From b2a7fc3bc9e14094df5a9113f08a0638a2ca4c91 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 13 Jul 2020 11:07:10 +0500
Subject: [PATCH 001/825] Link to deployment of PKI page

As suggested by user that content is missing in the document, I have linked the page with the deployment of PKI certificate.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/6360
---
 .../hello-for-business/hello-hybrid-key-trust-prereqs.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
index 5a7e9bb20a..898d43aaaa 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
@@ -76,7 +76,7 @@ The minimum required Enterprise certificate authority that can be used with Wind
 * The certificate template must have an extension that has the value "DomainController", encoded as a [BMPstring](https://docs.microsoft.com/windows/win32/seccertenroll/about-bmpstring). If you are using Windows Server Enterprise Certificate Authority, this extension is already included in the domain controller certificate template.
 * The domain controller certificate must be installed in the local computer's certificate store.
 
- 
+See [Step-by-step example deployment of the PKI certificates](https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates).
 
 > [!IMPORTANT]
 > For Azure AD joined device to authenticate to and use on-premises resources, ensure you:

From efe389ee3bf4f59a53bd47737fa6e2fc6c2ff778 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 13 Jul 2020 14:45:26 +0500
Subject: [PATCH 002/825] Update
 windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-key-trust-prereqs.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
index 898d43aaaa..1772e4de58 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
@@ -74,7 +74,7 @@ The minimum required Enterprise certificate authority that can be used with Wind
 * The certificate Enhanced Key Usage section must contain Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1), and KDC Authentication (1.3.6.1.5.2.3.5).
 * The certificate Subject Alternative Name section must contain the Domain Name System (DNS) name.  
 * The certificate template must have an extension that has the value "DomainController", encoded as a [BMPstring](https://docs.microsoft.com/windows/win32/seccertenroll/about-bmpstring). If you are using Windows Server Enterprise Certificate Authority, this extension is already included in the domain controller certificate template.
-* The domain controller certificate must be installed in the local computer's certificate store.
+* The domain controller certificate must be installed in the local computer's certificate store. See [Step-by-step example deployment of the PKI certificates for Configuration Manager: Windows Server 2008 certification authority](https://docs.microsoft.com/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates) for details.
 
 See [Step-by-step example deployment of the PKI certificates](https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates).
 

From d46766bceefc57e2f3024b2ba5237f36b127dc10 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 13 Jul 2020 14:45:51 +0500
Subject: [PATCH 003/825] Update
 windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-key-trust-prereqs.md         | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
index 1772e4de58..d595c23de0 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
@@ -76,7 +76,6 @@ The minimum required Enterprise certificate authority that can be used with Wind
 * The certificate template must have an extension that has the value "DomainController", encoded as a [BMPstring](https://docs.microsoft.com/windows/win32/seccertenroll/about-bmpstring). If you are using Windows Server Enterprise Certificate Authority, this extension is already included in the domain controller certificate template.
 * The domain controller certificate must be installed in the local computer's certificate store. See [Step-by-step example deployment of the PKI certificates for Configuration Manager: Windows Server 2008 certification authority](https://docs.microsoft.com/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates) for details.
 
-See [Step-by-step example deployment of the PKI certificates](https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates).
 
 > [!IMPORTANT]
 > For Azure AD joined device to authenticate to and use on-premises resources, ensure you:

From 8efa046a314e4ba3cb053801f1771fdb1ebb2c23 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 30 Jul 2020 08:15:55 +0500
Subject: [PATCH 004/825] Added certificate deployment

Updated certificate deployment for WHFB as suggested by @mapalko.
---
 .../hello-for-business/hello-hybrid-key-trust-prereqs.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
index d595c23de0..1ef40f8957 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
@@ -74,7 +74,7 @@ The minimum required Enterprise certificate authority that can be used with Wind
 * The certificate Enhanced Key Usage section must contain Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1), and KDC Authentication (1.3.6.1.5.2.3.5).
 * The certificate Subject Alternative Name section must contain the Domain Name System (DNS) name.  
 * The certificate template must have an extension that has the value "DomainController", encoded as a [BMPstring](https://docs.microsoft.com/windows/win32/seccertenroll/about-bmpstring). If you are using Windows Server Enterprise Certificate Authority, this extension is already included in the domain controller certificate template.
-* The domain controller certificate must be installed in the local computer's certificate store. See [Step-by-step example deployment of the PKI certificates for Configuration Manager: Windows Server 2008 certification authority](https://docs.microsoft.com/mem/configmgr/core/plan-design/network/example-deployment-of-pki-certificates) for details.
+* The domain controller certificate must be installed in the local computer's certificate store. See [Configure Hybrid Windows Hello for Business: Public Key Infrastructure](https://docs.microsoft.com/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki) for details.
 
 
 > [!IMPORTANT]

From 72674159bab321398987df8a7c2addcb43972b43 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 19 Oct 2020 14:09:51 +0500
Subject: [PATCH 005/825] Updated Instruction and screenshots.

As requested by user, I have updated the instruction and added a screenshot.
---
 .../control-usb-devices-using-intune.md       |  13 +++++--------
 .../create-device-configuration-profile.png   | Bin 44895 -> 51871 bytes
 .../device-control/images/create-profile.png  | Bin 19760 -> 15388 bytes
 3 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
index e8f58439cb..054620ee11 100644
--- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
+++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
@@ -197,29 +197,26 @@ For more information about controlling USB devices, see the [Microsoft Secure bl
 
 ### Block installation and usage of removable storage
 
-1. Sign in to the [Microsoft Azure portal](https://portal.azure.com/).
-2. Click **Intune** > **Device configuration** > **Profiles** > **Create profile**. 
+1. Sign in to the [Microsoft Endpoint Manager](https://endpoint.microsoft.com/).
+2. Click **Devices** > **Windows** > **Configuration Policies** > **Create profile**. 
 
    ![Create device configuration profile](images/create-device-configuration-profile.png)
 
 3. Use the following settings: 
 
-   - Name: Type a name for the profile 
-   - Description: Type a description 
    - Platform: Windows 10 and later 
-   - Profile type: Device restrictions 
+   - Profile type: Device restrictions
 
    ![Create profile](images/create-profile.png)
 
-4. Click **Configure** > **General**.  
+4. Click **Create**.  
 
 5. For **Removable storage** and **USB connection (mobile only)**, choose **Block**. **Removable storage** includes USB drives, where **USB connection (mobile only)** excludes USB charging but includes other USB connections on mobile devices only. 
 
    ![General settings](images/general-settings.png)
 
-6. Click **OK** to close **General** settings and **Device restrictions**.
+6. Click **OK** to close settings and **Device restrictions**.
 
-7. Click **Create** to save the profile.
 
 ### Only allow installation and usage of specifically approved peripherals
 
diff --git a/windows/security/threat-protection/device-control/images/create-device-configuration-profile.png b/windows/security/threat-protection/device-control/images/create-device-configuration-profile.png
index 1b6d4aa7086610bd1c0c1b4b63a9a6686e6d4294..4b8c80fdd7f99646bb6e6dde30134bb005cc9104 100644
GIT binary patch
literal 51871
zcmcF~WmH^2w`BuC6C}ZsV8Pwp6Wrb1HPE<Qg1dW=KyY`r;O-C{f;8UHxHZ${oA>Xn
znfdXi)?#&Y@9L^kr;gseZ@7|zBs$thGynjAE-fXd0stU10swGFDDbc=F8C>vun$xR
zDQ#x}0Hg2a4=$M=g8+6B*+p7j9C-%~8-<=drgEJe0Qdxu7W<;+@#A>SQxAJ_8TpKa
z><iW^*}E;1a0hxD(p>zA5FJ!|wMe~+d9oChCfz2wg~q%Jokgba555&z5uX|wb;M}3
zUUekXP-;@-GIab=VthYGgO>Lyq1|8Z-8&R4y#C!gzx$tw>FmxE=}~7pJL&9H*aOjU
zq(N9BD5PTfvX<NdFW-XVs9y&U{ks^n{}U_y-!&{j95U>en^<|FB4+=-h+Ha#$-P_=
z2_r^}NBuX=v?wXtf9CU|5u^Ig#F+o5$%^zzAv48uJBcO3)TY9Og<U=N=ao6CiHe2L
z+kOH73&ZizcFEv%$oaCWwyq;p#pAt$4P<z3r`ND^-DjHC5bBX|5PvW1`Vig7LC1Nw
z11+!v9uwpc$;b=UJKC(o0vI+XIfU*_-Jj5ZAbP97=A|OJtJNR$H>uzHs<?LM3z^*T
z=h{`~41d|?WJo2EBi4kGzq=V|uFG$9ZCK6H8)(ZuJK!xy{2j3eJ~Uf>QA}GCmlI&&
z^YI~sx{Sx`eozt}{HZI2^06aAyD|YsxG@AC@JD0q8*+I{1Y(5{%Xp%?kI_H`xjg>g
zH|b-dF<KAHOhaoWq95;Yj_k}4RXrm?H_BG$zsX_h8cNK6B6XU7qN9&Fsy`p%Eiu@J
zUdtjlfUdLFedlVVmRqOl-4<she6=h-tDg_gXQo>@9RL*EHPqSp=hi!K`|*W^vIjV8
zxsR_pByhIhR5#c(VmBMA&#$=+%{gK{=Na^Ruk^w-fmaV^SIVDGe00Pav)<23t2^to
zp1qtUWXH-s%%|-Z%|pNv%Jai4uf}n9_2g3rMZ@Wuq$<_%Q6dy$G2sa$1_;pa4yCvB
z;=MYsN24i4i-EE;(EYn@&Pz5+n%!7#+ZC17l)TOFf48!|%Bulzc-HXqn%fgBDgf|w
zMhgERf4{nj7Vv04;SQ|id9~RefSDQ!Au87@3}`>h*bki)j_hLF9VG#^xg!H^c&Sx4
z-sLd6ee9`&H|o#K$q-<twy|-}uhvoRy0yl@{EMyaYw(um@)fa^II^bCeIO3tcwOsh
zNv<;xH{hX*dI9s-b~K~p-bI`<#kkFH3eag`_gYyIX8HZ!S9PgI6Ejn&%#La74n?1Q
zHx{yrMh|ZyGFtzJ-TyKtY&m(nmnBT0J$=r;z5AO*W>-|6rf}lBEs6m5bVA?1*}@+S
z8Dt&?0G>-u36pkZy)O?cXxaVlx<n-~_U-!NKQT}8c3O(76<&|qs4)i^|IA@T*<8}D
zk%JSTZ(yI!@r$QHyvQ!s=9y^Wf9>%J_X$Ih7}Qy4tdOYb$Dz78g{?FMHXIGpZo2dM
zQ0?OnX@*mA#51`3tEDH%>vzqSHNZVxoicfSzHyHtfw@0X?|E^x*c9ZoT$>wbh<*Cx
zVw$J+pmF*H8kEfR)xGi<Ut;lx2Yz<P%Z-x_))nP0WCwq8_EVz7r3OFp(3Lr|@9b(L
z3mLfnI)2d?ck3BX=S6DQ33#FgfTKPmOY1GPN<UM779lnAVQ=;6TTLp>i^KD2Ag@+Z
z3nu#``+95#rloF6^4<)nI~KNw|22>m&ICW0kR<J*%+3TOs#ni^t#NjzS#Ps?{Nt(H
zquc6ufa8u)88I`X7+IMIj$7<q7^^|Ry4-qz3-neCj}-^=CMnx5hav!gUze)?EXKRG
zecE=>k?0XjK@fI%;`2{>Ovz4hJ%KyhETv%-)K8-4OEhpm4tUI<dAdyB&`A_G?k6}g
zpi~fMZ1vjszRl~r`v!1!@38ID894uxP(Ew@LGwXwlYbv<#=7GwtN~4T*`h3I2LU#C
z#|%zo7a4L!wl{Sa4(eT|IWPTajSdd)2m|MrJyE?3aI=SLnkm6hlkV@aYswH^FC8e6
z75}^#^~mf6IQK>t+k%C8@Q&wZph4EsbtAcl*{QVBjBvT`B2EfT_of8MTnQB2_JZTV
zaI8*<P!#ijo8?n5GSUOw`|b$nPH*(tg4t;t-eZQ}eS!~)ViCP+=cCWJ?nbU>v&#w5
zbQK=7z5UCii<toWY4F|A;GjHrc|o1su28mSvNP3@4sL7L`)V)XejGAyk^gvCz7cO!
z#<g3Zi|4pd$hwC9j}pW3ABVi%$9^?5j886&^$U5idqnkglTjPkS$b#Hn80Po<bd^c
zwFCZHsnf)-NSRWtMgt%-CVT{ep~o1my?(Z%mEz?vyeG*z!RW%Bt?n+zds@Q@NYQN?
zESMfp5XDD6j$-lxJ@5EB1Q5<cu{fXwLd^+|QmoyBMq773w~4eM-*3fb^9f=W)pvi~
zGMu9UZWXVHyH#*V3?J9C*#KvHxDQJ-mVU+Fa}qJhhz@19L)jj09Udt{5ghPt&%OS}
zSZVGbngOa`NB_a*NaH3o8-MVwt=SDrMX-<TQli%3IeQi8Jqol0Li56trcT@MhN(g9
z=q4cqA5^CIsu_6!mey*=9>^0|!nq(0X8ui?zj=uK1%Tr{@bX1SV(>(b95Ax;M+Yf3
zz~ZYsn&<G+ksV=z!iAIBJQ%TR9+?Z0<+Jx@rH!;r*><Nt{6domp5<T2az<*8I_~hU
zMQ(mTKd2}MCy@?II(--L&FZlDJN0GkJ$PML`NugCQdBu}jU7~YUUpC`Fm?>Igt3Vr
znNf<*%hO7x=FEkL<RSLp$Wz(PoW?rP!EYbwHgSK64>)_ge3-l)!$<jnXu8@)9}!#S
z;jj21fMI1{%TV%08jyJ6@H|t4KKLf+HiUqypr8)D#Np_{&<p_x6y|b9Ir5vxzAIBG
z9W>{i$PXAOTHIVI&BWPh@}QeU+x<YWZa_U#N!T<!8t*DuZ@X?e42Yq>f94rnOJ@dL
zFh-PcL|TXF|5==dVqA;*zV$b=jDZG&p3`pt3t8oY7mHc19ONc=*>bpt2Jy$@ge$Xj
z@m*WbJ-A+i1aTrpi#{{REPig$J!}$w;%8}U7Q+r=I)B0KjL~$70%30H=RY(;NDiP@
zs!f8i19ZIy5^NF#EL<sY>|d=L7o?dB*+)V`U!jM)BHPpn;@Ait3^~^wfVyVg{1)O!
zUe!9<$77@UHb-2EsTTdJLz!?lSM@va82-bIZByB1x5?G3X5UtXnRnyv7v|oPz>ck7
z{Po(Dj6-V7#B_-v?Ht`BNYz`HNR|3aCA<jQh%<DZ70Jo@Ki{7&<b<XL=Pv>$-N6%w
z_CAt*T|2VAh=F&JyvSwkKeQklb=OJ8kqU4{!^X~o9z6V)tfn=vL}s5?-s5%hiqx6v
z0vWyfWWq$-3he0}IE!E0S}N~_r{C&jNJRGVrW#Q$%P>}9K3z7b;Awf&t!3*6uos>E
z?^i=(1*7D4yny;N=@?-ZKW~h3quUT=QD7O9y8`gDmvxntdjWkBH(;`QC(-zdo{_^^
zeAyyNze67pnO%c~gDY*8AYgGOvE+)~NzGbTV=YC==cQtEDa1gHCl!iwHCGFmm7T>i
zLOJ^4w*Z%W=h=W`S4n5N@_6$aFGzuC_q6-Mu-dhFHe+dV*@s0`$Ggp-LWE%4K}%k7
zwTIRB_=3hvGO`lIz@3oIoE1rT=(X5%zyzV&Hdm$L=6u^>>As!}6tQLTJ2z631JA^d
z`OzZ2t%-v2*;J;8lR{sf5eIvea#$r(ac!;+jTaoOoC8+2F8c_MbBztvq33ECEcply
z%$C$=UoMU#vmF_Z0Cy2Wx_GQrv<L7VEnQ1n^Z{op3t}(Ts7rASYP@nIdl5zVu;Xu!
zO$E1+pM|f{MuC$(0822pLw!2S<>3h(&z~pXZ$xw9c!9iYa0e$Q0lhW!LM@i_!-8Y@
z_Xr`kf0gb|c;B-ar3uHBVlyILA`+_!LcTR;sylTrI0_+q!$LzLdi6ZBk+HcgauVF8
zoFmNonkWJG8-oDkqJF|+*pHmc0S6}u7{DBt*ydYTYS6h~cUE~K@>Sy<B+DCNabg_m
zLT}XcXAs_F>T#N?jlWhY+1c!_mAv~Fot^V2vg{P05dp~?AsxU16~~YzBD0hNkAZj{
zkkSezpJwKa32bVO8M99$zc@VzA@RJy*d`Sz?@BNguK#3bsasW31~YV{(GPlYl~1Mr
z>Tksu47B)fG{(>)1yQYLMkr@Xy2%VUp`UpYbS|>(?zN*=X0n8F;B2R%6}ZxHwjJ*b
z4IJd{>U0(cHT^9mo-oKJTpj0i{Dh41@D-$Ft+RZva(u2wPqm+9K^1A3J$a#r(=lI`
zOGuc#X!QE7!4TtP)LhkC<@dnkI&j8(yUck;*mg8p+SU2(S#MXF;p*5OS?j?mA&)ML
zCknVfAgtoY52uuiQ3DM00Z#d>LI0MHSS>VNcSY)40nm^#K-jFE%dB0syRzd)Ila1u
zf<bm;GqaFew^HF(?8;L98XI&lv|q7_l1tkGyaewL>cMMvrrrJpP5JJv{+VPYwNtP4
zk}nhlnuGMs*Onp&z@!Q_#<1|e`B*4VGQ`W&IYPo6&}H&$*@Zi57wUnrV4pzz4)=kN
z$D1i8`fQA@({z4t+A~1FbNz4+=^*o~R;1;FGS9u}fUW2N|E>SKHQ}Po#`e%U_5@Ic
z!leJ~+AOWnqJct)78-rb1xwlA4`A;0h%3(KGX=wpfeSZ3Uy$F#5+Q9lkHV>jW+C@|
z=x3Pq#!XB+V&)2YH0GkwObX9DdKfRol1M(%v{Hee@=~jE0>DG1t=73oR!619^?&&b
z5d@xIb@uW!r@XE6>W^mw%&efrfOe)ZMG-s%OVJdLSKaENX+KhZe4c!e+{@^AYOZE0
zw2_X4oj9IG^j-X?LxscassW=tql=2U(AW*1>z>#ZH%fz+(Zi>NSnxjSEu-?P(fUd$
zp|K;$<TN}~*4JjV&V-Al$;aI8!3BJ<0nFs}xVuLcIB}4F{{)+^(Lw++NN(MKgR7yC
z@AE@fsyPN9YJezp5zF=FvOxES__-s(93<rTBj;p3Duj{y&yuM246=rTA9UMuXsBE<
z6$`jVNS-jlh~xpA)$Z3Idlh_fyY8FMt?p}$*mv$bKYH@v4RRRHTuj!W9l@Sr8TMMT
zmJjh$?b?l}KEmIat70D)>^|MiD&_|-mW~m&4=7^17hcYCzM1@<f-$%Go4>_EJ?iYx
zcLAXI9I*I=D6mpmb{G4T|HVaEBZh+<P5Ii;Cn?rG#N^P!3ZqAFj97IC2a`YFChT9o
zq%NsU7p*)*Pd~<uXYwk#=Y)E+Y9|Q9rT#a}wQ)#ZI^&%ZaZ)yG?h-YjnYCFU3V^2c
z^f4Q{HZe}EyZo=Y+zA&C$NT4!LHh^ID_5{{hb`_&^*_)>|935UA_M}Nuty-3KU}Ob
zwB-KwufHYwDE|M_mH&71{a;%A9Y<LinbPv|S4!I2=}Ad*OXL5xXB{SD2GL?=t!Zd*
zH8<aFv|Evg{y4wHNcOV#e>ZPg&d>Y8vD0ro4rU4#78bJBXkG$(TnOv|LM&?k;6Ekl
zz?7724%%i`l<z8QlgKczddKWLHZCPE-{E$Wp)3xB^1AMtV`n{c8Q9B4&s>Tmh6$4>
z3rC+!j0+c4GDLMP$(8*g(8L?q_$q2U&;Jg#LM%$~&<<-lk0V*YuU{0lwnqiBsrD<4
z(Jj_sPZqaht)EI(Uz4KjL0p*Xtk1#P=7ak7qH>dOn~Q%NY}UJRZ@*t5$}~{5!$}}m
zUUZ*z#%aF$q))KCUOpW1VR3J|G38}{2x#%c+ZO_o!|WDgR`N;Z#uvZi$B)rHaTS-t
zN*vb?hIfq`w6Hfe%6Xh-T_O~w7{<LF<{BQtB$t(768@5ZQ2{PCrKW}kn=+)T3%Xn~
z-a<g~Q{KAx`ER!L01wGzd6!eRb{(X4Sf-;M{Y0ivE^_%jWgxkOI^l5JidcdBHn~e8
zD+e>P;k2~=)Ip&|!OsC%Zkt;Ek7h;nE&SvjYo98Vxwj?Olot)!*5o<AT&!IZ_9GD^
zPuVff`q|04)X^S#vvPJwG~s1+TIp1-_;&bU+J#6Q@yWt0-gCC0j^J}Pzg*Ir?&W2j
zw#R)!`KM8eE9MUM%CYCu0m(<s#9obH>->89)p3QxFXIB*US~?`SQCSW#4Qj=QjNc=
z-D&u!rrclqEc{DCIH}p!4<IeQjYs%U?U>Zk?>ZAWX{@FLKSe`tVZB;l;JN;$lU%F}
z2|y5CgU+FA-H<__GwGneBE7m*2xsbb#xvhvD0gx$b-=}ee_r@NPHd`qta-$mAW#q9
zWpwSsvahI~_`UqArOo!+Eu?JhBE#{dA0KJEdk}`@Rqcfl_$y-C{OvE4a2<r8kfA@q
zh{ntgA1}$E5UDicS98A7ocv8o=C1%!+?9{E`F4})d{;6T#Du}{p6-FK1Rd+BRt8KO
z(U+&RVMjNK3v;x|W?Iwd!kNNrdtxu&@)ED!@d$G6wyfEK2GIxNde5}V=oG!BvJm(&
z9-3C)Py46<(Kg`ciXEys^4#tDgF3=5Rp_2K(I2Fcl=Ss|uMX$AT>Bjg2sI;VGnOYK
zNfaEx1^A_got)SjZRytt<gb_=GVC9f4-f#KC*O*Ce_Sd|Y0W2sPb~zcJ3YX0?e(U)
z?2O)Mu4tireREt#s`d26yico)mivf8sY{#0%KL5Kdakzu$1dE&am^SFr{reo#D1KV
zqr+G3Lfe^k<f$JyTrM!99=ZsGd31ZLvin>ieG}AGkqLQeH@edqyyzNXz&Zd^WqHgj
zmGzKDnJ5U)=VF{Y5DES7#a)F>iCAgc?;5LGl}vmg2lMaV)?Nm_gu`(ui{DKvg*)wT
zdC0$qWCzM|f5;bY%_oNM(oU?v2%G;>SKr=f%&`#_0!*<tybQ_XZM2ZHK~C-M8<}w_
z3I06gE4u!4(VUqbSW+qYt?{3P&cW{(hb~GDH7$ZvxMc_|Y<B|k5Eln7HyKhti3aA%
z^SbQEg}w|)TOHKZ$BVLddy-dIucp)rVE!NxQBdaK-(c&W45f;x_%Iia&dBX2Hl>7{
z*ot)yx=JZbW2xnTIfRm%ZQce4@FZc}D61e{MH-#@8v@|vnOz|Fk%c^0xB87ZRSVqy
zb?}|krVT6Q74&X&$PL_vCWu&>I?F8FEzf?^>{|98HxkVs+VM1>wJja*jbFZ-V>0}Z
zz9`Q!H<aa#w#v%hh>H*>H(_74y$$meveJ+eY}AZO7pohXad1bFl!E<is}C&ZMaGG&
zL9@?EAB85?ZauC(##Crax(yaCs%3_<tKu%llDx<~gDh$P(Z3On;KJDBHn|bML|t;8
zzzc0vUUTqZ)$x51FDh3@;qsiHYpsUh*Ri7%-&&IfFZk#M*O!BL4wHx<b}qA2dXIIU
zIxO=6kh{Wr(%~hsiJ~_l&3t26B5mMi&h6Z0U}IxrYd`JHqvEYaP<E6VY7@KSQb73a
zXg6M^?C1-UPOA+&SLNJl-TsIM9E%Gf6LhBhz|G#-Ilr{xSV55q#JrEx2a_YurqH&E
zeBflG8K2<$5&?v6j^Gv3qH^)cXvpTzvN_x<oMywEbkmy54_v2<xZEW6?<bYHhxaF7
z!QE3RJt;NS-HianTBXY`q)_0~zbukOGyVM~4F>&xdzy_PvcpI{+W4rl0Nwu2N)U?u
z<%uU@ncIsM!`A>cwM9Er!l}3N|MDN{FZKp{F+bm%f^vF)^kXpK)BWP(W9>*Eq9}i{
z@r%f?#wMmQbSTly@SXnMX!1i|W@4mF!J)nJov!2bk+<3)e*4_Flb0vQuyD+3E6e0`
z*Rd?^%@khwcm*+9S2~S!l_^jO{u$%%@5#bkc3TCz=juWKpNI9HU*$$dM|B%S?>cn4
zq^8H)ZlGJgonc}W%NgaVlo*-77ekYvlyq1tm&fsqW3!E+OXM~jo_?1{i&b@*|LRtd
z!jVLL!HvxmnK<rEStz=bb9F<NDjhDJdWA}fQc0TmgWq*8a*O(E)paC}G<crN@xAun
z+Uh=nR$GXh2YATVmgGNW(81>ll=z18bCjmk6T1^zb-G{~^)fYDHM+H3XyY~cnnCBR
zNRk|ibqK?5zH)D<XM2sH=K42ec|8H2w81lD;&@&n_bJIw?rpGt-nL||y)hk%Oe9Z@
z`M^46+B}I&TRUNo&YHkLf0`IK-764+Nzkyd`A5$4cY-l-Z<8?Y;wRD_Woz*;0jJTH
zh==)XW>0M`onhP&odTIkr3Jd==+riCEzcG&bv5<ZWMXz!s_RTZ^zkW3bRP?tD4hCt
zdk1Xvz5{+PtSeswhI&;YiOvNHP>FBInV3wemn27XjRa>3W~|ap-u_44-riX{xTKsX
z-iCJp6nko0rdBtzl`3R1s~t8yy4yZ!>;i|;o0vk+q@pvo^7~rms3h&!#5aZ>3Ypl)
zEBLN)AaTSyk0>b3T}fn0&U#9dj;sC7>Rr6_yVE}Hx}tMHu7GE7w`rfQGSQu95*Fmr
zwm%Bbd*hnrWckW1x<B5B(kSoy%qyyZkxj^$@j|5J+0mhnU<3pITdo@!4;2dlL4Zf-
zO>N(=ApjSkFXxMj1(mKF*;kW*o1yuP-SO~8*mbk;(LEEO1r=s<{Cm9Wz|59DSdE80
zBNP~dsuh-uaB%l7%5`?7kY-Fqh56$jI$9hyNe2Qe^zQ5AZd#_i`~oI$w4>*n6TgUI
z%J580-*_c8^zID)z5-@Izr3_x28D3N+~XX^Ug}_eiO%~v1uZ*a{=Gi<aq!2x*|V+o
zTAn+tv7Z?wtaWSrZM0cm5}J7{Uwyw4_T^P}wyQt&BZOtDJX}(URw^-oX+vqAPMxk8
z@VS7E^;^$w4_Be+gEjz9p740J5CE3<vi<G@_X)g-6hv(UEkCyiG0i`d_zVEN3RW;d
zF!GKjMjgE0MW-|e==wNd|4#G(1o%BplTS$5cPHCllEp4zRekOwM%pRS76-SX&#bBa
zaBbD;_~TKwW1>R~`19cD00;Qma|oWO@?)@rZP&SJ5+ypmdm6YDI=X&YZ<%h>NJB^Y
z8;o6=xze(R)-MfsCB&E0uU+Z<mwiuQMrTDa0f#s}XtTtNJ|`l@{gt+|1?gt*bLfO6
zweB<X>=S>LGz_y-D+7sZl%7>9Seux@yf@>nM6CpnScu8aCcsLTD-<-ovgNB&cRW;K
zIJw7{#qUeB4-^}n0A>_pyCUl&!z#_s=i_|auie?%?{t}GQ${(1`!9Y3^wNG#Z_XtQ
z{Cd<>9B3r#tl=8nE~lo%Wf_;{W?Deegau$g%$~5Tdh}GyX!h}o3gSH6zLlSCNx5H<
zt7ysJWAN@nFZQe_<?*B-rsHcv42mlfBM>oDk5)m&HG<cbO{`I%QYtZmFIFpgr|y}Y
zAl<B#H|{7AJ^`qfb29(6ojGuV-_Gp(c2@&SP@S{XRXTaf3=Xc8c#mp=%P6JIjrDCR
zt?l7q6UP3mt7(8MKVAKv=ffvTgdrNbl-`sAZD#D(ui-qP7xD`|TBNmNsq_dZ9JsV-
zeYAjpa08~3u*n=|Tx;*np}3Xt`>ug=R#<MBv9IuR347<ERpe8wCRD6?*{FutmVwlk
z&L-@wTby=<i7QheGhcY!e2<i~QqQaGI~sPoNfot6!2W*h0zD$LO?0)8Z@8|EfArN@
z`&vehJ4q?Dw7Y@7w2RK6NJm|@s0r6<#Z@=<WUtpuiQ-WcB+)iP7>^au0s6J*;Rc9<
z7&<;xeCcl)bEm<E_RRLpwZxCDc}HS%G${_h!(+e66W@VP79WluEn;cf>8cTsnd3=U
zQPxg+SM#@ml{|x1)le%Xv)OwdelLKy7f}^@HGG;xmX)~{kp~~*`G#cgyehwdugx0x
z`HkWtt#10qb)y0XYEq|`Jp;ZR)-SJrZ#yk}Q|ntFeoL}J!5hEg;1jB37!G?dgA%}x
zGy1~r`z5O##?rDS`iboUl7neigpJT*vmsy1BE&!%OnYmn;RpeLl=gnH){$_qVt;2~
z*Kqdg80=`H{8{{t_igW$3>z5yHz)*{`0c7?h10f@(w~^k=9VRP`oYQd;r$M{;&dB=
zvUbDzFP0PkWCdW|REDl!Qpt~RDbc<i2zs_1p(#Aur@heZ=V--LX=8StXAMSF)%dEI
zQZF!-O;FM@;aX_}b_9nEnvZ1AX=l_@s!cfvMTDd-LBfIv*T`8coyNRK1EQ{=t<Rl@
zv8w`Ecx;;D#(_u3Xz9gJ7tdJlqd=*xI)4NT(#g`sC^BI+nsoCPi!TolW1>2VlCQSE
zwpwYNH<*B~BYj~G;~id%;3f)I0fz3COwaiUqG5K00+ncYb`YkC^(l?HL=-y1V2-!a
zQ}x;vFXZu9Ne!u`_%l2=Rh?Egy$oEU<kt6^y|9vR)k^TLER4e+oL>DG7l8g<Dttg}
zQKmA&pJd**Kfwbs990xW?$1Zu=L6*Y)K(XKI0dv@z=N^OpG??~ilXkvsRb2=mtRD}
zCo<5&X=r7VaJ-F97dJXV1Mr*2>`V4H*=%7@T`k^zgSC-+0<777%}-OS59(=|ZvZ~b
z*_;6F`{fq;ca&GiRVldUR5w}G0?qn25yOz6mH^C+-XT(d&uMPwjiqGzP|ij7`>&R^
zYEm<*uq;a@8NKG>kl5uL*z@4s5>HAxSpGz<nAyub%9oOaho7yicDME{uWA`_u{Xgg
zSz=}A#I#B^c2$eKIWq?)kpEpzxnlR1L6JWx!Vmgb!61!NHJ+uJSWuCHpRIxpNS33>
zz-GN))6%M4^V#@eXKA3C;>tklHh&N$Y=Xh)U=C;0Hl8ksUy!a$>*<imGdPPe&Pf;t
zk{r)z;&1x65aS1&*wx8bNw{|&x$dWB^&{Bs%rIKaz3o`lC;d5CPA&ICDASNmMn)kP
zb#kZ+zsr(uF$^pLmAW_Tr`GoMHS~6_G?drYfE?@$Ar7OGvYvz6YA$8hWzhYp1+*~$
z$v0^z>dG0Ne&-Qls0>T?optahW40r;35tW2!oIiF*B_B=H;Z}eLe=o7e3=>QK$B<g
zHAwduUmea0t(krr==Id|t{Nl<hod@fSq~}z`5-M__c$6L38c`z<g_|T#0g?sebp3t
zoWlO6n-g=NdtI?1)e=ThC)cd+;j}iF!k-suk}wZ(#<cY6@`sKChESe3D`nY^oGJA1
z%`KQ_HrAOxk<F&<1}wOS2q3Eks01@nT`l2IS(z;Li4~|c`t;#7d$4_R@RNxD%9n}`
z2!56aaCqW8qlk^&(8yw^j(ylc`E209ivS3@J^Pv|WYf`0!cgmNXFhgavr5caF#PsH
zNU=i9bs)R%H>&e|ogq#?gT-Idl!qTxLRni2k(5<f{?ALu510!a0$Q&2zxae2uYG{C
zl5p*vd(E1V3+^0ADx7(olgy?GUe|3c+cX=#WHKf_Flbmz;EMax!jB0iy}gM!gP}L!
zZP5@j1jv|g**i)=GrOC;;f^T~b;vwnEN9u5T;IB<DxhHWbN<A8I@QI_I(q!m*ZED8
z(|&KX&y1}{?)%H$^=^>#J)P@!go|Q?GDF_*J6c2t0*tn5<Ni!>lZ$0`;VVGXCgF{k
zJ%B#}E%6Tt&OMpXbrEik5;j-6-k^h<-*n<{e_ojCu2~B@8IPUnvfn`2CL=4*Kg-*}
zFZwmP<V7}kMYrxgbn)|#&QE@<zR_>)#&3ZXCkZsm>o@1#DbnIvAMKq?1h0Hg)34L#
zv^?pEl~rBnAjz(_QO3Cm<qdQ(-5?Rtg2cvRt0K(jaHmW}d%Mg0vKrkQ^Y`lm(qbhO
z-U`IroYxpq^H}LHjo$j4{_SPmsxeg@BhFg^M-}^T{Ad8p!GrIc>u4-q43gVu_FAz%
z#|@9EY;5fr+Ag?k`+mWG7O(Y7O5Aftbrd~{_Is<<{$3?Rk^BV;`*|0Kb&=`HIRF0g
z$oJcIj^&((pb@E=iR2nNWo?R|={qQ%It_f&B0qlz@`<}<{r!@aC*hCNBJtB~L35E7
z=j5p~BQB=LM@O|ZS0$a}S#^5hG8ah?`W6K+goV%MPxM;6gcERUAE*r&9e0KY;6ywR
zMnTxH$-51@w?Dexew?h%%8_%f1Do5~9YOXo<mJo@p5K;*+U#nhZb$*T9k-eu@E}A>
z3mxT4F+#7eeQ%WW^`2&aRX9=t#_nvp9=ckD^mJ{H3>L0WXN8xZ=QC3PHY$z&hQAg|
zE>}&iI>*q%zQKJ1$S~uTb}2B?<0Qj5oZr+VD|zN8@ghDt3SG+u44F7fj%#!MBp;X;
zI6jG{)AaE0t|j!dCEMFapUqrWM0viImzC<2#^OXVrLw=biI}L#Dw<43`t(I_Zkfua
z)SxVt#qQ+8^={~R-~7PP2#bF6wqVxn`+%czMfm!2RzUaCpg&3+SqjH$hq<^UxoRn?
zRs{^^1RPVBKU#(G%H(~_YUqy6gg+YGmTv)0WMX_GT?{Mf7~Oe{)v)<%3IMEFE``o&
z(?s*d7idP)1YWH(t=+y)wnlc7HfnO%roP`m(rOzwXc|N3q;(WNDnxFO-r71Db{ah}
zJaC;_W;d$@aMBjlrTGsh?*<2SMAj+5YBgluSu8eE#WIc1q3Z>zd?XiFP#WZG+hr5i
za96=lS3$FnY`nkh^ak44y{6&54RCGD1usZIh%SvLNvWip;+aOhlqyyC_PSRq<C7LP
zVN%%a2%!1)jX6R<LmM^8R3UjPj+q)lKvh{h`=<xwnECK^2IMvf9N@0tuswq8ExQDL
z8n-?$ZZc^!=eWS1hDsl<I<w9p&#&J40Q<cOCcr%JJKLH<a-qK2Z^k{OzJu>KK2!iK
zi*S0lT!>Q&N<bFL<Xga>34y)lP+>!No+7pNnncvqk`_xj*1bo?*Ep9p_2Ij_!sCSV
zsANxnG?j92Dw#k$L$8ZzlN;HBGw!;Lift-oy|EeLsXI+rMt{{(XeL3Pvi*VDZyz<{
zo^^9TO($pX9KC2+1eK<m-=%<>xwVU>n~O;vVjwQFldmlu^#$PW8ZsGkIA#5XZ$ik&
z85Dam0|YelNH&o=uS*RQ(-;cB^!NpSEOO?FN*_aputAp7G4;q4=n-s}Z6A@s!5w-6
zu0r1&LT~GoK3?6~D}RV4#D*|fx#k6nV$K2)yxy<kuukmPGl>x6%O8)*wZV6bWob@Z
zrPD6Km9GijNxc<eVu))8Es%5Pqg*MIcki9+e_{|zXm%*Tyzw8K`XxO1$1>>hWaTTg
zLN1TEt#O-!VX?wC(En!vVi!E1+4q49jro4r>6^+YSto>Qgz}C@s!x=N;w}Da6Pr5h
z+@BQAT<VCl_+HW89lDrF`|$x5w3x5TCq>uSS-9<>og$vfzd>LsAN%3G&~kmQ-q4k7
zZBan?vL8wuGi_qv%3oks#0;4c*5bO+7w<~yIAu>oj5#3K*7SBxUC7FO-+3ETc~-qC
zb}@HAkXcr@%ST;A86A*P@j7+%YUkqqC3o8Pp3}=-d?VH450nQBPhn$e?B{T<NLY^J
zFaVO1VX6-_L`ic)a1nZ770@TV%2cDJN9=ZHxs8VR&Sn49?ppQEYSPGF-1==mTHF@v
zcycWs!?R7{PGF$&a|Vw2$)T|2_3E%sCFi)Z=#XmJJdDezh>xq5q4%0<<vkTuNUA!E
zvfF1Sw!^?ppPF9~PBV+o+%~V8iT$o=7%C=c7__zW-JMqw<=AudBWT<!ax5!p5I4Qs
zbOXn+|B!cGy0~qzxreFP0xq}>=Plk=udY9w;y*{3KHP{??rLa^20a@vL^<l7U3D&r
zE@N{qJFkt!=fuSm4cu@Y@(5~;<C=1|HDulEd?Z%2BGKse<lJrX#`BGH=(W3UY^XaV
zXQ#SqtVnj@2G`dWnp;;I(zZ6VGLCoM4b+lw`u_eD_$<TeE|5`sH`>Kd@*~s1Y9pH@
z;iY)vL-K2}jn3WjjfQn+2ryLSLy=mE8jCU=95#0HJC<*y;pPRU<JdJEzc9YXGra5k
zjsrk>44t51T@1z~lrWaC*V(lOyzc|Kstu5hiacrR`56MEFuN;s(N$EI^b|k8lCob@
z38)}(vPOG&vtSkmE8~zz^HDwozvGong9VA^nxCG>ZU_A$+Pr<{0QioOeWH=&X=;xS
z#WU*Kyd?dy1uCgh=Nli7Zcra#M-gUYZECynw{lTfro45owlwO!qxo39Z;TlhLE-fN
z{WxQC7~p|8mMjd>$YugQ=()|r=uKT?{t+D?fiC=mI6Z#U%(!(It*z)sHbAx4AGo~V
z?*c7P?n%hHJKYDf8u&SHKIY^@ged?}*6O<`=e_Uv`tjX$j%;1Wu_l0H;*-Zm>*-$N
zX5Re<MDU0BFZM@xx6p}h@nmt~psow?-x1;n{sMfX%`0zENEK5wKxEhu7iDWUnl$Ql
z7F9RyhSe|WcmZ{(Rg{1vsFwx`0Gi#Zs#)V9XHvx?_(cyX3#8x<u*E07uzWoGnIr4!
z>|a*rC$zlTNcqsi%#J#!jI451$63byu9FrKph==>xAS)&m*>@I>*f9&v2f0-5^~XY
zcsP{08Ncy&@M)V%4jD{Hk%BZv<C5%f#W_NMh#9~wwi4;0&8JWLEsQ>~U|3^-aZ5_t
zkvC1{X|H30ehlwRJS~b&r2h)wCj;~_CD{3`8hW)@eL@5mMzMIMscD89ETP^{@rUQS
zVOm$0Y{F_At2T1d%zN`8=yD*u53>6FYt&eHY30vqZp!X61D$oVg3~=U>E?jDEp#@&
z0Ynd<OT$!A>{#f1x8y>~a*aFb7BZyA-ATD4t&LP_6;X1P`+>xN2Q|qoe8s&4TZ9kB
zMuwSWC$(Zp_EYo+WqXSj)3jC(`BwmA87EqRBJ&f_s={+!2ykW_f<^SSY8|?0A<u#g
z*lN95^w06GsIASb<p4cg)uj?vvH+FbrjpFD)6(gGgDS&@<C1J&`#Us$1h`)#KhJ&W
z-G;on21F=On5p&p)p{9N%J=1X-?q5`uzfn}eUl5s#HjXCY!Z}r7ujag114j*n>khO
zKm5)<+xqy0S;|CYfHBO*BQQyi>W-6+O&keO$n*_-R~^^L#6YLXy{?*6_*I8M(_+FO
zoP%_Fd5E=8C5Krfd3BQmlv#LcR`GJVEBzH>uD|;DEu;BqV=+}NiK<*b)m~5iYvt?L
zScTaY8y#%)Yz(#4)A{PhEkXdN=f&R~n1S$k5XSgU<7ucs2Tcoy`GqBGLAmm4giwwK
zTY?=4zrveSwFoi|pZM3K2hLQD9Cp&oUE0nqG%Fo89qZB(=BLnP-Js10jB8uqJM2;V
zGkvBJx2oj~(%A|T*i(gOCWWWlgb}iMXrdSnr1T-6pu-pJrlE*(K$v9pCEHOZIpTx3
z2CeaL0j9OSGbhP$D>#5r%Tq6jFa<mFv7wvwnY%$^Js`I?hu@A-t6n1RL$(2&^xu@J
zKE^|&Xq`G!o#ierv;E|g-KM>j*xif9Uz$=gP0R`#m2J@kw|5GA@z^?Y3c&(h)hK&C
z*~?$VTr+Bay+S7mAWQA5Ko8el$qioJL<csJkBan8Jdcw6@z!8i%4vBpOmxe~caO{B
z1*oOsC9A=2Ry|Rx#tAwet(TEr+?-(eUI7+wIKS1o{_E`Yv>WbnTMYd<&!^=_`<*h|
ztljq7pTf7`x=yj9uC{As#EWK}ZGE^xI$CT3*XM>7zBl3XP=VjtqrQK*2nsj2ropA8
z)QoxZfb$<EHbqJZedWhN=k`=}w4QdEXcVQn5mCM~+ag$4p{>=<q~h=17#d5!=EU8F
zn?bN|P0N~7@9dVp1c2*acrMfTZ?B`VQ5-7Pk`#Wf(K|X+nTD0FkdF(wyx!a}CWQ8O
zsPE3BYVk8E_r_vcQQ0rh&`t_doqI6n53%2Xl$G`@0@-z)<oCo5Hf5P$+ibVJ<bLbn
zBFf}yymFuideeArTvpDGg1*1id9xUos<^y%rBWJY2}=%99TMOZGtZgE6x(%f>fmj0
zj(j3j2@9wyYghWF1{THgu+jy#ap;oY9j33TjYHLF)Mb)OtE;PPYiIiV`<GkwO%)gH
z4SXnG!*#E^Yvot{;>6qvTz4+w56gN^9c-rE5ECboO;igoKcY&jVPW|5TG~2#wDw1l
zzvq~&hl}A?nUrQJD&%q^eF4KPAzO)D-R*Ddq(a|PYC_AVKW(K6hFQi&sc`rJA{ulz
zkHaBR&k>O$wo{MsD<LNhMjKU$7k)x+6ujGAfAf5<%rLUCeW~QoeJX?`gLbdi-Kixg
z2*aL)?wY_iIY?fPg1(?2#IChIbS<L68M`lf36`r1f}u0B{$V1_l}3<^TlXhq{cx@M
z++QW5$IbcI4{nk~va-BsqqVNs?f4hxI1lv&x>2P=b3zWY?rR)vy8QR@2EHy^LBzt$
z_G&Z6_nO}Hi@qNz<sumCU3IxChDB>v@drpeDYvG+_0oO_y(xfO&;#}y-)v-aE)?Wb
z+f@6RE6WME-=z4HtQ#5x8t6@ilh)ynLpUIOtPMHUwANF7LB*oNsEH=da48j$ll3s#
zj(cm3BuidIcST8{>Wz5+<By*u-v=>ux%lJ2#i!pvQPrpsIpWK&ql7IdOq;u5l!qv3
zPu^YWcxufqzo+H8HkshX>-Ds=gy5>k0vW`;JI{<3hQm}`SIBZksPIm@fJd=I6%SqN
zsGy)=M|-<YWq<&D%Zi|gsfD;@Xv4+9N5%RdVO!vV+P#4v+<O?+mfH3^)p0z~3_~}h
z8FnsM`onoa!FhsJ3WCBdaI_KAia#=f3Q5`wNsm^1bG65bJhKQt+uK*_F;$h6#7j|p
z`}WQE;rgVHDb6zXm(r`xn{ui|FyIk80){w8sfrY+m8#Ln@74UwDYV!Fl!Kptu9X!Q
zN-*HDkNQ8JBL@%tBBw>0-9{tWvx5<GJQJp(@L+jEsWgesVj_adf4O~Xb=*|Iz&i(5
zE?c)YDeNizUU5A|R%Ia+OdI$#rd{Q#R>%Njp2SGN@L27ES3P6xz-3GM%rp+YPW?i^
z&hP5N_DY+7D)rlBC=zzeu6%F`3JMUAF^=06;)>GsYAt(y33fDR`;c(+UyS^Xs^35}
zpEruW_jvF&;FyQKW+PAod&&+|hm2svo8lrtjRS^fTD%l|koD_WuPb$Sc6I=4GD5De
zT5fJ!0XsWpFiuL-hTj8g(+>fJKiERhu8cpugSBGPHDrL4<1hA5;A9$q3-rS@4E@U%
z!y!ww{2@}HLgOkCf90>Cxi6?bQ7FlMQX3o`?AB6Sd(J*El>he{+W#8t?ncgsHoES-
zJeV!7Sbn|gtefKNsBOs&!$v>m>%mlArdpa5AcB}Y(ye$px^4J=&(@|8I`HuO`PVYh
zYc#YpM5a`J-}_4iE4~+w4<Bmu%i5<jY=8n8a~Sxbe>yYY-qf3W7@^DkJcQtIuo#q$
zCX_jj7cSNW+^~q*1c5B=*UzTMUtmkmkOnd_=*1Ux0y>YL-=*l@Z)cPbldf8Z0QJtK
zM@$<X26_6FI9xu<;0oQQ;}Zgb&lxXZ=VYx$&=B%Sg!&kY-mLJ0TV4BAwT}CE5sVaE
zc@<P&tWYq*=o{z$WE?mgr>);Mbd<!xTBD)nAzb{*0a?&{yV6Y(FOo8K6fUga<R7ys
z4kSY_VwNmpeg+!la>GXE0k=MGK#*^qr&D_yPM^TvUoTe#xm5BM)NV>d?<J$L)HEDI
zu6BssiA&dcf4}Nmvv(yj$Y*<y?b)jXKf!<x0C6m6ds`L8hDuHrzxem^)MVzuT4hnR
z7ff81>2jC-^?dHKOl|zDHxm9w_G`^PgCi@uL~bGrMg_-WX*ZPufxG+x9)sipJf3E!
zLTWT>#s84iER|sf;d0g8l*K1k&7b<u-W7JzcEDg6*Sgm$%gY}#27|S9bsz5Trt@DY
zW^o|-Bl|^DC+e?^ZT^SnBP|5}M2{Pk*x1-@ryBINGo`k+@^W*=?1|<*N!%_k=xliA
z#9|l5a%M}=z`+pt)XMKmt1x|4U4O5lt!@9dx>lY#YpCf9-t4*9ij^MjyR?VrzJr-n
z?yZ}V-tpD+c_o^SN=U=f@N-tYKzAu<zO+rA(AvzyMC`M$1urnPsmcAUb4<MQ<PeQC
z<m`Ud4CloRtg|#IbXeY=i6Mi!@saG>X&wuu+Lza;H-ozjn_czWl84KTTn`{iXPVx%
zQE%k+Qq4|ZM?@;L!?E1Gv*E8#NB3--D|3O+kGxAQS!CtsqG=KRYE;l;>cuQ;hC#>w
zcCUk;)iJ$MYduE7`|S&^9%pF)JMRJ&Yg79z@TMB6zlWj01*n5R7`Mq@*eBPBCK)Xl
z=1wJQN;K+)`f_S?$s#{lPXAPP_JAhLh5_l-W-clgu(8*<dE3$k0SqYwjrVts{TpG@
zUoAqN3G!+ZXx;2*jpbhvaNk_gr@xHwEy|1Dde)m&`mHfm_8XH*zE2bU6+#v&JY05j
z66=nZ)okqS&f)a`z*XkDOz^?o`9RJ;MjRGI%~m{2uSh9LeeHn_wE9iNF-zp98eKl5
zPI#Q}DYsFhM2!vy?L}rfIGFgwxk_|tsRPx{gs1=`WCk>&JflU;?`iU1ktOxwIhy%_
zJBR9W*&#>tU#@fmZ%Ujq9uR{{O;6hc39vd<eC5t8LbjvMkN}I6hwT_#8$h!s$3W5f
z1CqainOH)qS)?beW<XeT`Vs+Pk-kl1hm1a1CZ<5WLS(u(YCh3?-AH1`8<LTUd0M7M
zhyA%k4Ni$x-E|;_EWdo`$2R>}02cUc0b>d20UiL9PB8o<29|&SHXEk|)ve*4KPCvy
z?W&BZ<*B}GNw3Jcs0!if6AYVn?B%sM8JZ8l*y^*>!vD9lCq_M)Sjy-wgKXm4r#Hf)
zTYpFp8yXs5hli+cXIFt%+S=L*<EG_f_>!~oG10iZ{j|RIRACAOwEsce+E;GZzrx0(
z<FZgPn<H&^^nEkZ+TPH_uLhLy$)reEM!EQ4*J2xE%ZjkGlfN9Y9fwC4{kso(=``AI
z6@A4qFT01e&4%>v7;S8Aaa~<oxGN)pNt{sYLN-=q8e1D%#pFjYSkOC%?#>V&H!U==
zVN=3HtD9=DLsl<cN{!tu)4kF7zN#ncwP1!f^wT;kH`7omGS#T(ti=_&Cl<+S(Db7p
z4LvXSOnmxlIVw4R%S|PLjogb&j8gF3D1UR0(uWrjupkUJ{WMPI>hr;+Fr@p$Y%n^-
zzxBsOZlwmW!x+Sc=mAt=Mm`xGQv)F?>fm;M&1>QYyh1FS^><|>`+jYX#6sR1f*3ns
z0R&$dQ6-zk9Q?z$z~ORs8EWX)dA>30*d5$}_aAV+vZ(gDN}G6S1++3gTqE`8aH>W8
z(}IBW3!fyK!Rs!ihSC-N#C9d51I74-EwU@}&q|0&ar1|8j$hc9u(<Sv-syk8HR?(H
zKfr-4!i~jvQA3n+iCWfLkYz-8xbzF{b%qs|bz#fB#>V4@N-q!h^#!5EyZXNq$yRxJ
zrFF;|hJmoc)u@zkd=Spomj0<HsSH<|NG&fX*XnWr1JY?^sCEuu)LvNrW=^}+f;m^R
zOt47L;qkRVBJ9NF<>ld&lH`U|qhDT&_3UIhceJx(3?7OVfqigD<HN|okV{zQ49n5@
zV_0n1B*H$o)om8OJ=Z6#+gUh&8l*BiDg=Rn8~!=k7iU|d7T=_saucP8RAEIAY`&Oc
zH9EVna(z$mx**kD{=-<*ua5C}?I}T1PEJmJn1nM0ktHRxS<)ie1}`PRLP7f~yQP9~
zapmc8NF3;UaKY~WbSHC5tE-!6#;+MAx@1>ZSEm-eHfg3*cG2u8g|9oa;+cOc_$kBm
zn7G;5XDffXnEg`?Y_4?nq79F2d4*?a)*2Q>FV3I~x*Z#uvxAl16Gg_25^rm3+Xj=M
z!B#UOHrfo9`JdW*ekh($wdmQysyZc_debqOYrKWE@99^$tr>q!A%7h1Z~P%$wNpe=
z3(@PXZYMSt76T?Vu&5~~FHalTC_ZLgURG9CQ8E8i4VQb~%tpFnJr{x1^4Rl?cKYMc
z^8ALhV^E+K2^PXVf7L73x<$icDy+h3c^SOyDdp(#>{S{FXT(NJymr1S))(q&W7|lX
z^?YTXif<E>QyWH0$3+`PWfi4TAxkkG<9zwbu`A1}+<<bT*{V7MkxN)G5u)c!^FNBx
zPPOmI3MniqBB&ePfL=Fg8u~U=*ukh)Gd=Z=nWsFgk^OAk+)dTh`wJDii<SDWVD>hL
zZ8$(z&l&;Aq31vp_UNt?ED_S+AVn%Ct&+{}{e&&s)uH5gW8CY!-?=Tbe`XM$$dfh0
zGDF;&;}iAs;b4DwIs$8{RrVR#{pjnG!dI@9`T6-Y{qpj1o%xST;nm@kKhq=i8eUf{
zuf6wdYX_NZ<nz23X2DC^86R(RJ+d%1?%C0?5;bFYeho-T;fN>?MU78?>t3KTJQh5b
zONhIzE}(Ynr~mtCqhcq&>&8H{xXpTnVq%$<3;d{bKl!Ijc>Lp(HY0`IY+dF-x@XMk
zQ(J=;8|c1w+Avk%9<M>1US#K->7v6hZD#g2Qb49I@@fLvOK1+<?i{0xW!H1nPfEXg
zUq-H2`{M|6F{{-P^z9v>DOP)jLZQmO@P*yY_pPMF8m6)Is2wCyr_@S)xHK4iyWvg{
ziyEISL+QL8)jsZcQbG`ou+QnoH4gL&VH9NY{n@nCG<%G0e=<MLVZ0FF?nk5VCDIx_
zkdQ-XxyOq{+?;WC9k7?b16vgVQ%{h6^4zhZ%vHzz!YO*VgU?(ZSv||$A<$IG;nCU=
znJ6}HL29T<&-+kf=NA<A`|Nbktxyh;$EMD3)^f_tu|tzW1zLE^*(Gs~K$Z&v+lfGD
zwCjP%a$kz2lK4z*YKMTKfty}J{qe5(AU(`>fkc=W%YI8r#wQ<a=jA+0C8Cz*6kyF#
z3dIQDp%qcVj)I+tUjdhp{bAX)U6pfZhf=)r)6bp?ySTPBQyBSSYsGn`+IFY9A9a^#
zKF%`T``I3Kpn$gGzqkNEOcVi!hIH<j@L1h9`2>lSOvIf$UyyPIjEAekxZ2|-UV{H&
zP8*b7aCy>c)8({rG&OpJ?O-~8aI+^69f+M1gLysfgSc*ak#ZJAAldoC**YKuyeb*Y
zCa8#qWj`%8zQ>V5c~GDbM$Gd(E3L^p0zh0-??XLs@7*yZW}y-Xe3nfTi_`|>K?d|>
zm_-dFCs_W5`Od_c^Be|2+YPwUEoyuQdl5V1UIM&OqCRRml4jmBvL8npTa@*YJJugB
zg_q1^TPrgp+7WH(_TWALssL2`PmZbye#cy=mwlE_Ly-+ljNZb6IB^HC>xqknrCPJf
z02db*6%`fSelcNc9}rHuY-eQ(`TVcZyn>YPA6Ikv-=(#!kw<vjNCMg_kXahD|G3^#
z+?nJu2KXDKy$Lwz{Dv%ToAYC_6j`3zSy)5Yex6QI>u;CB5W~gdV=eoca!zhcgFKBc
z|3G0s_|(glU4H~z$0)imXT<(VR!hL5L+PUQPE|P@3wO4%>>M=#oAq%`>!fTG$i(Cf
z{)1+Q8aXIs(R5zDOtWN!_0`9RK~_(|-Y#S>d6IgV9|6J50A+uukgEWf)Tv)k`)X~u
zwzTZ#VeR>-sw--#e_^4qMBdYKJJ3KIp7{HoBz5P9w^I=2&~_p?O9^TViA(l+iS}M^
zZ4(tU0H81Hi;0DW@aHH-SZkRG|3^u3M>as<Wc@GE`b7;h`z&r;mJ|a5tb|~-gB7Q*
z2!>wT2{Kv}743YP;kwN+k{e0P<MmC=i~VnFi`lK#9-+EL8jSc}z-ZqNW`LfQpn3?Y
zTWn|671NW?WpMJesU0Axpi&n%ls02vQ)R4D)=J;Z=V-2!qAfZk@3A&gBuWd5<GNp;
zRM_x60b4uyvO>nqNz(?r(ckU=yi8G1r#tu7i7cdxfZ%bw|Mi$*IV5OEEPaJM)^R14
zzk0Y!M-fl^?_WpTb7@FFkzAlN8JY9c^xK*IWYz1ltgVhH+7CSSlAGVk#_`VYC_F85
z838-?H(IH;GR`E$w+NXL4LL%jtoZBxPWexTc{>X+Bo~W9A&NsturPj2z|+J$TH>#0
zsjItEqFU5gwoDK{?fB(qB;bX)6*-ZBC}&f1;TA(ak*tTzF<p8r=HlaEMRkz?B5;Aa
zd@w@(#KZB~pHi0~{%DAwfTW%~@dK`fBAU_vV(cxWqWb;^+))IS?(XjHmXr_#QDW#6
z=>|!qq`ON+K)Q$S7`nR~Vd#b-?!oWxzt(+mU)=q|<zmg8v(G;J?Af2^^Xz?OlCEvN
zM@3UrMD+|`iMT_G9dkER$BMwLl(DN_l*?MpLf*x0%bj=n)ajfc|FeV=>&a&>gT?xT
z5uAG``g-3}T_-ty`{@lLUXUCZ5Vg>_VaJ=eGc%kIy!UUX-b;r@XOT$IzW~`~&Xe!d
zG08J}_%NHrUiupjqqsgjHYu<Meh#jd_#1@{viz=DkO1wA^ys`6fefTLN^S-T-<?eN
z>J!H@19?RB=x@g(du&!Uz+lUuzvmqLNLzqZ&QY?K57nwq%0U+3ACj}%Y{VIIU<0)Y
zIOu@<7kiE2b=LK;nI0a$vpr}?wcoC*ynH}wechnGsFaY!weH1g_Sfd>e%z$%NA4Zc
zK%N}ywC9yw-5Yei*?47OPBV;Oyd6UcW0RzUY)P$`lO)CDjHwGu*Q1A9RU%f6*tDYP
zuG$<<o*fM}dd)xIU6q?(SW5XkCq*Uz4gxFx*jxz=Xh_9##JwEAGx``}RAP2NkH#?V
zy(PGfX1y`|uYxPrxvh<=FPA0^{G_X~3r`+s>+Q_~H<w!%vhjN?+UuJ|l&`Zj{Luj$
zSm6`e4{`i7;~B@!X+%Hgu_H+e^+o>08rXWu*PYw<`Q#P?lkKoHlLONFk@|<xidvnG
z*XLm&VR520B}3vyy*Px?$`_`(iNFAZ2lTU$Wv~1Ri_9^dW=x_qXC65E+5_dYm*VT!
z)*Sn2Hef+gg+ANivQb#xvZUJ30^Rxd377IU@XFuhXm0!(8l}GzOT+H(%2A<>i9Xy?
zNv_*^<(#-#4K2h`d_S=jH2`(TC*|ni;GkJ1y@gD025f65rbH)5vcJAJuqm?gCZYvL
zB0hiSMPFiUR3rr}wxpqR)6Gd8O)PP7g4q4yK||(E&f0s5G-cVtfiwBR!W8fO8erIk
z5VM-(n409&p7JL1-n888RPcx}2#7G4pqRMj7b1jL){SFxSB#}yYgcLYqVCCL&bzk9
z>zF1#be@23FBWku4TyQy=|N15Ol-Iw0wjy%l}rpKVYtC%Munf=<&1HJa(u#&@V-u|
ztYqk!R7CdtwQkDKfcR088nPBfFk$Ab+I@0wz)i+wUYs0JALA1ns@0Qwdmra>B7NEY
zDUhqLvU24Ci_Wkq#^<C%uxfodvKLX*VW;~q)-f<fwaKyvUyc)!-ez+XR&pBjN?a&b
zsD4f1D{k?i79B*d4D6<ktI6m1OVK6Zpx~y$Wg*9F%PW;sF7#qW@9Burm4>%ny<##!
zx|7uPy_GBDfz+mG=oH)Xw`ChVk%JQSZ^&^|P0bojCMqt0`WQ}|G`B)U4o-t#4DAkR
zw^CX^oiyrI)T_|JugkCc>|DL?dV6s$p-8QT4|;fEM9uHlDBP$$(X(5(lWi^pPdjS-
zuFVab%6VfV7vDVc4b_B<cE953B%c(<>~KYn5N}3e6X&?NZ}=_kS14)`7M%;twH0L$
zH9BC_cBfK^SNnxQQ)AmgbkJl+79W_2%WcOlC<1mChtF7^e;)4pl{l9#u||8H9&Q^I
zO{|hooCz^GpP@epjYf9_=S^rr+G{CB;ajE|A0ucCi*O7Zoa0PSekrW9<!$@h{0LRx
z>kG8nad^mZ*SjwaSof!Il1C(U(vM56f8i<G)QN*jd)?MMHLqzp^pkY|SZQ>z%9EFT
zq|N?A&iio>4-bIhY$RYdD=l!@NM%ViH>5^Ue5&U-$a9OyTmNY?7Yeh6^6`KAe0G~(
z;l^DhE#o5Z$$9UMM@^cF7SbYS&uBcyj&>w!rvCj)@)~VM%|!kzVryQMHD@Tt%a8I!
zS0ra&3|9&Kxx-UTFSk5JyYHA0Z>6K-n=cVEGc(m`8!!0x{!p$VNl!epAOdIpc09Wt
zi(^KeEJ21YAC6Q)Gu5O;@E;KeDgxL^2S1JVgpdef+N_twj4<-1NG?<c-dD6&aq@Im
z)B5fEb6pskUU9bzO?`6j^x91xlSkTbo2!~Wl4M1F`NBV@evfJAajx;Ij^U`$@2<?@
zC33EFq;$|i(vK^b(m<KKUtd|U?i2Sa2alFIiTF$g?(7iQT$&qA$bYhww${9Bx2w%j
zdjAJz469U8ut%&;H2O%0@zeE-+N&Z#?Jk#64}U2qpT{~UReyh){HwDuz=P@Axz#(;
zGrk^XJc2pbu(<vFn{tt@*p4eV>(fs~Y%3D86kcNXQdvpo{mfW^eZ&dw5P7j2!HGB?
zDv@R)KTl9@9irIo`_ztTmz#=ZZ|v-w>Of@wT9ywlT71CE#^SA^qK0N_u~Z*|1tkQj
zk_c;Fpl6d}i4KQO*4zn~B*UBa2-z$W>>?Y-*WD@{ry-jm&qkZ+p~JcZ_R{0Gve7@o
zHhBihatbTulS<6}WK6n=_Zm3fh&M}N?zE>9!c=cIf4R2q-Wgov;?BiF<afczL{c}K
zH1-PWy@4oh;h8tviiT|c3niKy%-fWoD_Tw<Dbyan-Xwg?U!WLsEEnmVrdGMFW-D!}
zk-|b1%7_<bax?y6y9D#QNbgCbEZQ>pnXxoj{F#HOM73uFj2R*+u}mTpR(x}J<p;a(
zU8$Ae`z*KQc-5*$!KPcyL{HycQ*&^DgGVtnJK@n8`z><Wu-cN{H>Ow*xsPJ1AA4dt
zW%JyYae26{0jlR4>iKJupMIe~o?UCVpg~YkwqUkSi=O4|`sN!8heg8lz`gzFGF$B7
zaQ4>gX8R@QgQQ(qD0;n+%Qa`zGbyH`(zw?}y@Ox+G+uuV4<qLZYVIU#^M-u9e!hT{
zwI=fBYHRrTSRq)l_uDb@F=jG^v!TKGF@1Dt2{oeX;j7Q9EbG`Zh!xds-<|O#9j?(p
z61#oN&33wdOTGC((u{$ZZJ`R?3O1n#8dgM_=%h_#m0IHWUuamz8Jwre7j9+7Y!Nt~
zHtvI~oxiU4M6P5P5L{1!uT2(m&N==2yvioOj8Kc_4x{GC0!OIpe5Lk6GIj~ercAjH
zA9ZVk4L=ecQ`7e{QE)Eqw5m-0VZ(+MfAk=H;EMud%}|!^sRhX2rdn_=%kKG`%_}L9
zb=2z2kdsuxzh0*yvE#KI=J%zrubvMeNYe^GXRiX#4Y=7P_YAD@7<|4c>JivvCu9W4
zos2yLz1bA?j-_Z<n_Q7^kQ~z+ZY6X@KD590h@h6+z5z1encCH>?Lk-UdNrRD1sexb
zH`d%6?kCsy3lzv#keB;it=+T=C|ED<Y6lw(J*5R2@4C_mqmz0-F$olZRbuE8%110c
znyBBnILW(Rc6a316|mdC-&M!6QF#OMp9)eC{90R3UCC>l<JxqNkk&+W6%c1NQh~LX
zDr;cv{@6ricx1mymyl@ZyQ?){wC>>XhxAawpeYAF#?tNN26t7XjSz-5b9M+Ml2S0D
zlnLh~vbSy!j#m)wjb)tZ3-DHLYC8ruoN7k9RCBH@p=!IDpCsPR6O`mWOl{~5YWEv(
zy8lW3?s@o_Ct`6dPX2|nY{lt~!mMj7a!=jMz05+n?Gh#YKA6jb_~OqtW>-kdog>4`
zoDD@*-QQeH&fVr$(VpC2EoGZ#Ps2y(PUVMRmR+P@7PQ**f%k_}z8!=`Tq|wi?%Vgy
zek?ssKwg<fCBsjrxA$zd&c0O!t>{zm?8hlB!_-?Gsd*79D?h3|1N$wAj{a#y(|+`u
z%(dSv%lrk*BkEc&Hgrhr&}w>_A6s(&u00OxUKB=0kMJC^>29tKeEUllsqFefnm#v8
zLy^fNU1^SQ2C`OXnAOwK;uTTymUl5~Oqe9Hv#We#%rjky9j+@XyE6+N2q)hDVJ6~S
z|IWzZ$5F!{;T$zn@50%~0$2Fw^lci@YCC>MaPy@bsBP;Ibz1tn!ND%-A#D&ew8Pd*
zzXU#!f2c23KkJ&hl)|~3p;5cym}v@~?K#><=8sJ$=NyLrDuRD?=ubI%?iN~WJySZA
zE_hTkWAL6OF`j(v09T9|TFMuKZ|0R?UMknw^!p+zx74N<quKUt=yU@~-C1>V(Vie1
zbUe|vCLvcO6yNesczDUl-(}{W+uvi4EzqzM{<_+&;o@*I1|QvznOk)<Hr7@;tR6)g
za+g#GAL<2~;5U04`M`qO#_*{+S`T&QACKOHFb)OZCBJY7gK2mU-7$FiDDKscobS>=
z`pnBy%oF#6k0exY5<ggaHeYkwe_+`>HJ%ou*g-uXPmh-OcK7UcPYywAEzG<^>tE`=
z%SSoQ?k^Vp`%d8@YWR|En(?GfSvOm|YU&m~k>f2Bn<`S0BttwlyL^isVN5_Q<xja3
zkf36^(He8vu0Y|z%nM82M_5?LA8<BEJn#_U4YxI5TR3yBcz4-hrStkDx<7qK0zE}=
z8t3vEOR*RG++E?U4CRczP0%oiD&fP?E6!!=foiezQ|Uyswr@u^1eQ8l)kL;ZClsm9
z1NoNK%&bmiB-Qf`*r?LInP%XZp36<1?tbc<p>6S+pN=^3=UZTS_~b<nnM0e3EQRNe
zknx}h8TOlsaT?FV;A<gJjQM<j!V5J#>Y;{TK_Sh07+I;$>$zI6_nUr%_+2C3424yC
zD7)s&$UXmdH~*`tT4;b!$lBMSQH^INe2HwSUDvGrGRf2%R{vbI6J1Kz02LfVp{iPJ
z!`MZ-9{#l}GbBtF8S0`!h*5++fH&`0(nn9oseP3`eDuN3;Nnvtw1&KL`DpKMXLZ&|
z;gbI_eB7>VA(fS&r>Z2!=LU;`U2@X+F*1?4dVzM)U{&@lG+I*FjR^z050*6@?#^zk
z%!X2!)MYzMn7f2Q<;d8oO2mn<e}t!|;fMxV$zID_@Ep(Q2?E<&%Y`>~Q|wis6d0-4
z-yaK!i@W3y@wf&BN44I<lR1xk4sQs_z%+&r*`hww2TP{~G|G)89fw-u@cd-oAWASn
z2?8i%iBq&n_ce?rIuc&Cn9#u$(Pu_NM%LtcwjD_-czb)Bw55~OA*N+OfrG<iIh?V&
zD(X_dY-UX8lYUJqqm9arbPI=<8MZ!50VvZM?si$=ytU=LGn^^vZs*{@<>j^Kxa46D
zshhTso4IHyXim!Rg&&?`Ei@SUi7i~|=DcRe*cm#I>ph-b&+RjG3OxIEpXA)Rr07^k
zyuijoJ)ygEwvw`s)dOo+5b%3fzH!~Pcrtt;-MlQ>Tz%yv&%6bF(e^1>5!(s8jd<Gv
z*=+$vw3*3Z_9OQi{X=A|DlP~8$&93?Zi5*u70J^E*296wsxS>gm2}KpgLDq73R<Pu
zSE&R9-a9)}E2%#!cEYdj?(E3JRRj}g;v1<>VGm`VK11h&RD>bJO=2FwKk)$O-m8Mm
zz;2(lPxLZX`o+x<emr@n3xAK-@xK%V7SDuwn2JU5kJVL94#TW{re2$q?yZ5>?Gvs;
z+3I#oZ^ew&=Kt1iFa)ZoX?}WbQS1tf^Sf%ivRi5rp8Fc3L(L@QvDC2H7iDrs6wD2F
z6e80NG&Zxb7%a7Zt;0jji<8@H*7Jo+_t@xMmh)b=*M)yL{Ua7=T5jcU1U63qaPF7X
zRZFLqS*iP2dBl)6+(a*t4qbi2#?7TIkP3l~I%4L&^VEmR>?Fky`)dH%fK)jfxgJeh
zF~`4jxI75&ej-u_4st+>PWU*R&G<+n<#Sq}ie&OY&5}==Q)6t!1ytr=*%vk=>VZNT
zxwwugV8nUOZ+ffcnE`M-NMN&kdDZ%O4<KwoyTv-+dy(|zo9ln&=H>?IQ`gt;>~_$D
zja3-p=WHlQNO)3J$S|NIBb-!JM#CAx?d|Q(+k<OP^}fEoE)uU&^O&BhtrOU}#s-G$
z14s4wR}c^o?(gr>I?LyH-%@*xKn_V88-k*vF_Q<-QBY7`y-EeT;JbJ4jEtz@1*Vm>
z^nnq`xxfyjJgl=V_g5De7gtx9FJE${s<iwoHgQl#uDNzqgs6dLZnTY^ot>j2N+Kd6
zEG(n+=<I!>SJWE{|E`V(f+x(yg#`kCvuQN_UNZ8#M@W1&&h*k{PQv2_5>h2S!MSlj
zj8){nwq+M0ivp?ypOOTVa`EwXZ8^<-dj_?OC)}tu2G0#8(NyVF0*wp)rt+aTP{lgo
zDR;!SuI;c7*bG3cFvQzRyHw_+C(Vkb42AlXFiA3)H8dhHpSB_qfecZ9v?2o6lRFnD
zEFfp0RZ%`f`94g{F3Nmyf7cu}mRXs>?6v{;aAWqx3T~U{I{0g?Bp#3?YivvE`^vK+
z+Eo#kzLa;D5@U6M@w@jZ<6sB$uL9Ll$y;xkM2Z3j(P|s%hH}ePvM(@v=0#n0Stp3x
z8h^38Deu=J27wOXxHvdCC{aWpq9{B%I=nxn<<01Y-qy7crv+adwSg)D_=4?5a;>mr
zw*<`XQzte!;NUw@;ZDciu9SVjBrGS(2up&SiRGVVz~unvDBwh|j1*N{#$rExoPI6|
zx_aS2p~rRGyNk@{$vus%rTKv$G^$x9U=w%zu@oE-7oSZ;m+n#bOTv@H+5qpQ^bZPz
z+~90|Z2Ya5o;v;;0fN;}y9^*H`CJCZd57Od8;2}Yrnxu+Kg1MM<(~(z_?h;tE4@|a
z1L=*4lHZ0E8o9@ttNcrQO7|qw__6!PU#<86)e;t%HX!@cECgBwqu$}gdG(0ot;NT`
zeN!gpzi-Ppr9~I_ZmeO7sX&WVK=HV*kD-`Zug}`A?6;Ncnz}$TdZL+mg4s+Fdb;c|
zt=y^1S8i1#@abs<(%U@9-QC^tvH>*d$mhrl^l%&^>EiC5u99>lPKVQ1H6kJU>I9od
zQNng6Q_ORHdMG`f9LRC1===H_B<P~0W>Ro8Kx?TtV4PV^26IjWxt4Bvqld1}&0?2p
zwy#3kRY4)ZMhP*o_~ZdDX30%69DSh#xuxxg@q4T|zLvNj3B#n(_rmRDGJvGsOVH;^
z+|N(5T7Cob28@uTeUFpPo+WxxT&41c<4>uu!{rQ09)A5@n4q6&r0Kws1nil^hVM_u
zWexB~z4OkYn^~X=kl<9igZhcNt#kzaUsXAF%dTcMXStOr-ut5Md=81v|2i@EiXY^k
zhI=49HkMvF?rxcVCp)DRaE^dO(PoHNXVzCl+xbk~KSF89^!B-8UluKmy%GbNwHPov
z<WDye(kOSV4OxQv`1WeHvFRTyUr)K_%$a!_3fH!D<Y%ue{dk#bR%^HX`wrMIQr->h
z{5!dYC;E8Q3ki}Sojdl4FAZV0Z4K8J^edisw7PMVYdqc*L?yyZp0B)YhhS8oZxGK?
zxl{Est{9E)V41f?`Ot%Pri8eeF!j<7JvA~f^mZ|4fsk=A|E#j=bz-_@y{79rQ9^xv
zKgAIo*1x{dugl0m0dyj>FGP>O>>o*tB$|XkMl<vEAU9u^`_6C#;7>iin6a0&?p3*X
zApew27cvR&LUB$85ug(MA+fP!Lv9g$6J%1)!L-k`%POiEiN}N!clqb&y*~URlo$S;
zJNkS#v9Om#Q4x3HGph>&?~H4XRr|`r!efK+MeRl#*D4R?#rfTNzNF7qqL%!uaxLc}
zy03nH4I1=E|B{2)g?7;7X<dz`2iKl<kY;(aoakDak@Tz6bTES`5)ZvzgNtIWMy8}+
zmT}6>*$(jA?mI-1CQlVONRyG3#jV0E{AH)=VWoPJ<?&H^wwqPrfV>}m)UxvtIiDS)
zE(beKhn<hlWfA_cx=Wcl{Wx0D{mG)`FRAwQ5|M+UnS;Zq)Fa5BqqFAgK&BtZ3jetF
zG#xOuxx&{g@j^wdS$`XYjNWY#$QVfUph`e%XNZUs>YbWCg~nq|a~dwg7td(l(*2p*
zYiJM&mBk?>L|)ySDtgM}WC%M~R#qN<i~t6hz8=F*j*m0mq&zKl;KhS>L|=4b!$)0^
z{*ruNDGVX$1KYRclD2zHByX8dQDLY!bdfEV#X>SmW9FVeinPoudPy#l=R$(tLrHJ0
z&Om=JyDMsN8+;r+Su%M9Rf#AWBRGL*;GF4feIxM1u|v;1x%0Te$41S|a!CT*9`HJq
z)RMigoIrK9$B}HY|3|;M!oYiB^527%sNgTg@3uuIHG%IsB_jRpUq1*UhByY+D+M@b
zKya|VD9cz?dhy)Pw%;ZyT`W3}RNQd;1NUHOb91rIapU@ABc7C$I&hJHW8~A!U3zPB
zWS|Nn1JX>S3`gYs@-)4|vE0;!jr5$Z7A@{h*--J#8)T4pKFMTiK}D(PpRGiX3b}<v
z4f>+t%HPoqmDRTi^8~ie;g@nv)b?gxB%1X)gke$qwV%?#)gdv7MSP&=3)g?gX|ZoP
z1}b9G@V2>BoxiqiwUy+OM&(!L;Qw?=o_E4BFGUN{tsY{ZpPvk_)*$y#gyEKi_^)wZ
zXlHK<{j_Cfu(BHysMRc~?Rgahsh3;OOLo%Jo8EI_J8+wk>gCJ*ShTUe{w*Lte?Hq|
zJv1*buaTsGs)3xR`%SlUjvG~A%*iiBLmqJ54wNBy_sXpg$4j~Z{zt^L1O(uRFcEV9
z0rJnOv*O}-eOor30Y<hA94<tlfG4PATj2RJo}dr+8K|LlbN1#}O|kGt2<}Dx7bD8n
z8r4>bM0;@pAo9U#C!E_Z*C$FqF5=CqjOdB)b+3d4*FNDgMS*BcWhLxg(JyV_M3#n8
zV-TpbVB?L>Rswalh+VW2RqW}kP&U@=aPWgO0)c$!emu-9xXu-pWcx5Xc6W2eso$_^
z98%;eYL=?A?-y2uOF;?TJ^YPUz37;NksaJzTljQhQ40euNOh71(ha*K0zCzRP*Jq+
zf9qm;{l2~BgNc6ek1mw+o_piP5mC9cEZ-G<JQ+Y~UWUId$8J^Jiq<vXGm|f-jzvFU
z9^GvS21)7uWD1YQeNG&rd#cY^j(bCqe5OHY|D6*e-fx8Y?52RC;JnggCeEhheX~=t
z!H}A3iILr6B7r66T$1Z+8g@xdmWXHso}$H_s=jJh=aj~<7l?@U0{SHjC&eObQ+r2)
z$e@Fh20J#)>{VcM?@f*$c&UTh)>=KTE-vK@z<yfJ&m%d=?a-pkFKWww<Mpc5{CZX(
zXAA;5hWZ^LIR{;y*xCWT`)40Qqus?^`xn_ulkVqIMtutCNqCC_5*qOxAc^Jca1278
z_qA0^!1S8^#%9-{WMIl8@^(Nf<$~%n?6nz6t?tW9tY9V|*Pi+3wMOJQCZ7EPrl{3J
zh@aT;w^<I9y<>JGpc^&S)pcrgwbj*Z`VEtv7~ygqH%V{TzEsp)?EB6cu!Gp<?moxT
zfBk57Xm8{mdvH@PL^jI8Bl$9!y;%JdJ3FMA%DYr#M*`HAA69HQ{Y<JK^+V+r#dC*U
zhZ;L*m3}%t4>jlq+~XwbP=VZi^68s?)NAL<m>kcscC^3DW0Gg7H(1_37Yeo{CQFjQ
zh;^alTvm5B{tdL-1TMaA3^6Q3@@|c@*udvvN~!3_4`C3}P(-M44-W<BXT^=ul5R+v
z{&JyauX*Dv-gNrCR&E$xVp90pmjrvJS&P?&#f~#}0~ZdTKFlI*E{$kWmf1+*MT<|L
z^as;(;FBNX69Q-=lpmQrhgdUlf5`)jb@*NHBB2<-g}NQ(?h&taTbk}O|IY>Zod3s#
zCHL7kO)vEt(!#ow*RnLR?MCm4rlKMR?U%i;mfTz6OGgctS(NdhZj71Ru%`%&aO8s)
zb77GIzEzg_K+s5559)`oJr=oL3nl|eyLw@7_qQ{j<y;f_B_W6OUTr*@OTGsv5c;OI
zdr5uQ=$ZM~>J2xPUhZT^-FGR0-LCnPHL}0NBZo-!d1nsOu1+?9L%FIdE%^#utBuTJ
zM5Y<eVVJ#AJNZ^_Y@f6rVe2I+`j8(+o-gNxHwB!RY=6nIi7+rG^_zwnkMa@`U!*Hx
z`@9O(m_ZdOK{vAOuvUE}or<pS_f}T+r%`+{GM~Ms7t6-JKv$#bt3F|ev6XOF81H1{
zUCnd<%uc(&T-8p9Kv12rPp0xuL^Ta#(h{P%Bwe$Yr`F-;;0?Wxf26cEPztT}c<pEY
zRGzDgNtHL-?I5O(I_gABYYcP(<Et)9bqX~HU{nDctpP*ZjG<q1P0a-`GO#2T*415~
zKq(EYKgEKt5La$IT`?|2@M-*RcQC0I?x;XUzA7E-!-qwnq#bPr9m1DdoD~O@Sts8|
zD`$vp`%#6Hn!8qv1*stW{E`gDCqaJRYZPU(0{iX);f-pwuBKldF5(7~y`HUpPDi>_
zv<nG%NXeWfK<U0#a2NDPHW$A1C-<scV>irPulBid;v9wNW9|i}ciR|;zGFH(%)?8K
zNew_@@3nDhu5X!f7!rf%m_h!uom9Xg1zs$G`!fYWR4Td#YeL^je!tc|EYERkgrAT>
zcb@1X#=%Wz$Sz-6*Oz@RE6=LQlCq8R{a*Y_<Wlu|7o-j{LyXi{K$}$iJw9Y)WXOdR
z6in@nNIsHD0l}KOdMuoTP(WJ8H4#l$&SF|Q2?a$@b3cZ8pS%UMEjmdDS|ctEa4|eY
z!}K$|9wi8r^!JM(yZ6Difsjxzc9hLG%!H5q>e-`=)+DuELi~F_p^QkWXI7hRLvbU8
zQQbON%}LNK^i8SaRVp_SRaRkKWj}iDmJvQ)Y$ZdI0O;}7L@ZDRJL-lT6#Is6k0UCu
za(syMUdihN83txheNvjy|JbdI`_*&Q9#V;8Ijt)M){bX`g!aBaw7vL|@?(!p?UDAM
zPW(8lr+-1!c+XmfX;oIu5ID%C8bpAW`jY`RWBvIHFgJUe@q2HsM*H1um?6vc(mD4<
zH(wNVXe6Qnw=Fm`$j2e5S$Ag7=_=^hK>&O(mDRE;q2ZCiv<R7*YLN8VTkg(jz+}U3
zv%Gq&RAs8(+>$o_y$vj0#T47qf0&0yhbvRmjof^Qu>0!3FLC`rzczX474<|IWx8bj
zBONbNNavb^(0=d%BX!_x1g|90@hUB5Q$p&6^5s`sC0EbkqDt}+T~;iDfy+BRwuEK}
z-H$OJ5R5{(%tJ$dZiinrp}-831zK4yN1+Ig&wUf=8$oXLVaT>$OSG>Cnmz2g5Qz_x
zcEku%FKo7vK?LDJ;R*-#*exwg`JxjaHE5oO*7n#dsz4RejDciM1g`WU<J8o6a<o(_
z@u?{Z35f{~Wejxm%zdnvsaC!>r^`E8e(e=oH#^ysYQAE*nNQ$qzTq604@D$q&)HZI
z^_Y>IP2HP)AtoU?1;YE2r(#TGL1Nw)7!!JVI>4#s_R?MZ>g0;k@-F4nRJynBru^n)
zb#>KDL7HKDb@fM|nTaI!TQ@df25DS6eGp@QD8zo-ce_w`8jZyRyQ#Q2X>0Q@QPkJm
z6dHIl5jhdAjKszQS#<U=GV(Vj;z%A?bFjfD1in2nNO+{~p#ud_Oy?<YstSNhqL`fw
z4Jp%U)EXN;Jcm`%ISeEsBO!SM<sZvnWaj(lukN-(Z3HmU(TOAF!4p8$Mn|#Wxp#E(
z@;#C4S-^!k6=xf-e1wdC`}mF4OaK)H<6-@DYYdJJP=oCq?&Q;xlV@!YbQ2hzTozTS
z_s6EzWdF*hQ+)y@F3&&-IQgz|rP&>}J=BK**t2;Yk|2&`2Y|`|#j##bQc}_l{RL!t
zz3AC?7HH-dDn<yeUW>WOsxm)`J7GFm6{QzhD>29juIdjophZ1$4kD&JDuXBrfRV=8
zYB3y(3y#muP|?uPUcNM{G82${I8E}b+S9$B$*|KV-yHEgPk(KQdTs^pxIWoIh*BFu
zJ#S97_LU=ZayLLSu3+W?zh67u4ccRUa*w5(%oIJz%lbB)>YqJ(W|K6iO6M$;v1;Tm
z>fph;V(w?y_JU6Q`y*`8_m;9&!UoPGB;;Yz$v8aA`65DoV|A4ZY`u2Pw)JnXSL)^C
zv(e2Rs72rF*RLUX#2~0-3@Opz@LQ3G^9={0U}7Gc6jX2{C1J~A+m9bV8Xv+e_yMLe
zVEU=v`rnN?If<cx1L#WU1`c1C8NE2UI@x-ThD?SOfhiQV09}B4weoPL1mqf%an(6S
z!d(x)J+_YJJCK`OxnqKr+LLG}Ztec*${QO$N53^IaHktpknUGSL`M_bGz@~ss<tj^
zrfn%#%5GCzo(;<(0FUOk`?ZbEdrQd;m?$+Xw5GM?HspF}H(OS%Yjq;omSE1U%xd91
zB&hV?zI(mBVuLi!V#e9VtDRh+VoY+#TeLwkj9G%<UD9eBFQoyr!n;WN{DbHT%ulB#
zJp{E>3OU3J6jk32>^Kv!{=I}JB0U7pQyWdi!a>N02vhPcTJWF+<nS8;MyEC;gxLD+
z&q7U{e!JRaMmk_6>u0A=N>49j0C+@8#S&T9V4K<LopbMC3NaeDMRK;m_u&amV4ui>
z(sIm&0bFfF8)f)I;5S+%>z&Kfz*Dy!`Oetq0~9wbkOH4p*Oylk@CE33+<#YM!wbQi
zGy9ghhIWQ4V^P(2knfJ5z-Y;rdDjIZ(!7}y`T<1oBvTFXai?xT;NDzdV5{i5ph`CU
z#x28EfQ)%oyY=voe9qV>miO%JbAKj*4-bvGUXTtf_(Pn)lxao(ZB|T63jC@YSqPzZ
zI<!6O1gS0rSe#LHw(-~x`XhJ<h76)a>mh(_?UR2TGl7%ISafS|e?Or7GL4&1%l?bx
zAq6k!+*S0%fD=z%FnPc3Kmf_w$AJ#E8rA=poEc>?xeoOyBNa#JIXA?Ue;uR%7P|qZ
zQyk_&n+QK_JZb^{0Xsge88Is)1&4Wee%f|u<3d9=Y7?>}eH$@mw%u0Qg9wgA<1$dy
zbaxk!V>kh=y7ct~;()zw&8hfAglXZjV1sk%4^!P8<if-7%qSHMSK{IV*>x^ic|ie1
zCCmiiK7n=<)5Ox`v*_Ip7yHmtk0_nWpq7m-bxuWoApev3#0Nh&zw<GLT0hyPmO3`3
z>V@WpnzGl4U^LHqv(J7GF!k+RSFt5Ms&ZQuH(8+j_Uf<NhTUzkpUof$gZ;c5>oBkZ
zQhRY_NffM4h2ihIfcnJfc6EfMNLP0on*aVj-+zA~`CTk@lHBf<Tt3i#nU!X0o(?Km
z^6?>%(?IX3u}bEw#28WL{e?KNe7y38*1gQ@wH_)XRsW-I$tJNqDj@E*KZe=t7Qaqx
zT=RHJc5FFX7aSW+KBYap!Y_yAB{y``$nOo~fa)cz+lG1D$3$N;XFVRf|C&9k*i}hR
z?Ofxs=xG>74B_T&`{Z6$_lqSaL6%}v7U8?1>PnJ+)+Pi=PsQmLf@^PSv}DTh7$*<(
zHuIwoq5X7XKkmP?c*oNT(~5feRqmv11Zg^Qlh)jAq;1IHc4oACFPT|@e!uEyB7R*i
z@ZRS*;k8NMX2W^pyA91~O%fzf@W{ol3!d9t8bH0vDq<e=yf^Jc@m$J+!wMy%J#{N1
z7IFraSpj{aFFJD{2n)JIP3!dR1Mi61e$0s(@myi1BB^XYP{S{|meQ5zlJFUD=rVOk
zz^Y`K`7Ha3NvoC8h*+5!j@QTCt~4`gD6%`BSO}AW1T|244>!;J|7PR_5muGR0Bjay
zJ1xgU$2e2)XVe7J=v}hHmn7{8`VM3#MH|>KT`s}~(R6Yic;KTBdmglpz7!y!ONb@5
zH~f6R-ScV#ARW0P3qs=kP1i!k-Wgn4b6Z@%4z~*v%R053rNvV`Ej%+kY)0?4w^_W%
z{>MFPA|Ps(q$}bS0W4Z|Y6XKeH30G0&~rPN)gs6)(oC!rAJF~!F~qi3%Pdmw=}$H_
z!Od!xuZ*nuC%Z{AuIS^3jP5^#;xdF)U9wyVLd&aED{}WcXv-#j@A~DJry%Y{eqMRj
z=b2>HNhli|ACGMLM9_3B9_46&AN<v|qvhGpu?k$DEN<UgU>w&-4R>Izv|eCTB=%+<
z)0va>IUocnDT#{{A9$C=0DDXqY`j-R?6=zp*|y?~BD{&6gZ23DW()Q>zCVB2@~7dS
zMN&OI)!Q{+gXQ~sAR7P2j%I+!*)GZq`Q&N;6G|a+0U*|8Xw3qme<@puL@p#(ETZJZ
zHjoU2R=8M<DhEx=6$6#zcIa(A^<7&F0#S*E^EZJlsH;DBG!ZnyJ6z09rX3e+lI(=C
zz7*Ggv+Rptzo5=qe};GQ$963E8IZO&|KgeX(PZEP7F-r@x0pLJEkO9AMzfB;R6eiV
zE;&zt@a3%5iy(*&2tbnSmGHUx&K`Z__tE^d$3IxZlM_p9`;vhSYQA)M!Cq)sykx{p
z;n_%t0gLJixl=J6f7bwcB*Ll!J1XkhbMHCieDe+Ax|93tB=Pf;GnzvWHy{gh;`q=g
z2$5TnH{werP8s5Y2EoNE69(3R|MI59G^*k9*e%W6LTe~Ft$a*|6huG`(S^LzDCJyA
zzyC};t6Th;6uQJ|f(yVJ;^6-`tQiuZQPHJSdja~p9A~-{K265`|AW;qXr~uUyQ33g
zf@asPKI}`Y$MQ20h^Yr|<OgThC@<awf<S;(q`Gh$MFC?qA#De8+<zVyjphbUc@PVD
zv`PCk@g3B9n_|AtLbGqw(@r{Xd42Y4aa)D1FCnh`#jOQuSH8v{l`^;_j60_dnK+5&
ztWwwzZC20#B>2iXvGm9#yL6lQWbe9e%BmiD#N&=%JM|<0|L9=JugB-IA-`gOZV2`S
z2{FwNN{)D*?Q0R#Pf@Zs3DWhHsIuObHy$<7xXYMiaG8ULbYN!Zx%0{9n833(-8cL0
z6?IqS*-Eo$5{+bhn>cg2vxdOVj-v01&bMI3opQ{h$?L$ymZF)+`+(BqL(fn^%X0bI
z36g;Z$v#L^u`$d2KKlFhFy}M2q{(k_Liy0*^v?55g}I#oPjzL0ZjwW1@{8m0`q`lC
zD<cRV<0y!bhG~J>Nt+s9aCOam7P?m$v@ebcu4$)@w_>2pg8^7vY}__6g7f1p=`VfP
zub~X?T2ja27|{u~uO%ht7UL+x&ro!xTUx5`T^UJz4XgL#^}(CyGak_i-g*x&%GWJJ
zNF^RZp=kmW^#MGoJbDkJLxxdzmR*#!_)YG8&A7>r_t^)VT1U4RjHP`xD^ju+-Pt6M
zPQ}unJs$I0KmV<&E_xj8d7L})gNIGlx<O4zS6*KC+50^%+}ZnRT%J-kfb@!1PVU!B
zt5-56y}gZOW=h#}EtwP<0@0%H8{MHAn=eCNSuHqK1*(uU1lONVwOwBUbno?j!Ss9d
zH*Zl800kmCxb?3HfT)U3Au4U$I{V{-x`K0kT1otfwUN=2zqw?O=S<D>bW7cEHU$Ar
zia(oH<f4Bo>}Y8l4w<{nzT!uV>T^*GF~H+DS(mIFEVKwAY62rhtH{j^H(w1mYG+q>
zXjoADc;mvoeiljoHcWeeJnLl8+w^iQ+V}K$XddW)i!m`VAb(OWKZBPu8(XZFu$8|m
zgE92-4)sl&3UNQJCq2{NTt>!7z<HM!IGYdS200Xc*aT?kQU-8C<G;3mr!BR_QcvE=
z_Wqizz5xABjpo=0Vpmo*2)*P$FnY%-*=4FG*}xV^TB(`A(oi7g{D6^3Dcw70`qV_9
zfn0dyM~)Uk|DPj75}bbpg4Y1ZI5<Dg6gN|$$Ovd9<7SPra?mDSe1xVC1vH+yr=ciT
zM5BN*@~rpSOAYf#oyJ5(8;*s-*&t0fspWg`i*_ZpzNF{ciD65L==+e&n)ME291$yV
zfm!)80|2?Rvwoxp63PwkVHGWQO&9IoG*f}sqp9RE2dVr4feyz9Pw%a${hxvAsBJtQ
z)S&h0+7&7GyJVF{5<gn`Zx@SS`wf5Z(YJDJEN1_;)-n_7eYf*?v-3FHC|M(KW4|wY
zWjq8{s(JW)B`j|AC=nPgwcw_w8ORBGajT=0+Q`ATZecnd_8Cn0Ak?Zt6FB&3*zXF!
z0=#<e6OACdiz|11ic3{51DxWaKxzAIUX1W{1ORK>vJgKx9Mop<2<qyIVkhWsvj^-S
z;Ohcigb4nBdVLRcpRTO)Jw8Y@M1Qd@836<g?3E-S|2GC&hfQGwY8vXfwNXfB9*u)Z
zRINJd1e^r@C7sJXdu!hgTt%I`J3KDc*N5j(b{(>5Ow2{8m$3}@T{AZA010{%({z;-
z3uk>dt-kz^dHbiPKTs42(D{V{B8^9m;TW_r8}r4!mB-eaXHH0)pXP)2!FDp<GgdZq
z{i7}KR*N~-*5zzG?jt>&CY7Tl<<M0|8nNwT%4`FXd6M5iihbzjh~mjFn6I%;K0um`
zs!ey>IatbnBCAo+fH%Xg8eLnPAZibiN~vCiEX&z^h19p*O8tKVAc?dc4?6r|L6H+a
zo0RINIZuRdciSi-`eJsX@~{UskGQZ?W3RXZ>eZ|mPuky2-zH1$0^rIkxV;k{aMxDP
z`_A6{qK_UGpl&Be`MUkcnS?va++bwy+{YY@%4*|QyW=g%k9Sq`L#-YoJjOP4U$C)W
zyfFCz+mI~!>TqO$V*jD=%|p21oqRbQzS3m5TBy5JW8zH1{!99$<JO&fG{6W=fi-?X
zL7rL&uU``9<W}}S@*MaGE8LydfR<&{9<{b6p4%sV+CVw=(>G!J;;O7$!JWc5d)>iG
zdll_{XDNJ?cVxK}j<~}9<!*3!5#3Llf&Gi#3lHJ&2(DcUxfNwO$wbXdV+zTwf;c=*
zce=nqlMFzNSpw9W+Y6ZWrW2$<kt6$`Cgbq#T}*a%c3BxGbb(YcUeQ7zoj91ABoZ(j
zfY+=X!C=bXyY!a@4E5emX|C<TR0DhKPk$DcO#X$*4723m|7}4ZliDux6A@fvC6GSH
ztXMTC#-2y|3Ir9j+uQ>`#cEhQWXfUtDasXA1RF+iCbXs&UK=)~@#NS~;dbx&hB3k1
z$7Ur9oc@%5p;(h_&HrB6D)bZ2lK`ManjcmF9frm0r<|?t!{}(t*r)TervgOj`{PCu
z5()BZq&ECP083fvZ*PAcYz!cd=LiTps%|#_;@^oN%8<?{Gy@=-voipWkYR*0&sqa{
zK^p-$AclmAMV3$XFvRzn@l<H-&n+8XPGG#H`!7K4AAv$cG6gQLuH5x{JIr{V{lH(z
zBLw2~86Si;-;R^3r&8;~*jACYZ}jg9@|Yyu9#RIjkN`1*H!7+s8bsz?U}$|8Vd4Kw
z=zCqrO|4f-tKR7|=y>Jc%AmgC&D~LJ8|20H+G8n6T2r!say{D=w51i`4|*IkD=XOy
z|HY{CTb9Z{LDz72)dfD}#Q=RW$@#^`H4m8sQ5$F5Ai9}%UCVS(7m?kMId}igwObGX
z3TUy&RG3fc9K7MP_OE86rS@kK0VMNuQz8aOW@eI?Oj=_pNk~krW5qAGui@q0{SstR
zoXKlQ&mNA~9A<SaAEkQAD9QY0Z(ks%AFf+dtJ)yq1Lg`u7c~vgW4t{t`puqR`}96D
zyCkgxIAHT2>agH~bJwd?kkJI|iqtjoS6mPnRgg%cHbZxNIM?fg3WETt1#8^gT}o*y
zUErdqq)Vj?kZ>y)uKX2rKzb8<)D96sOOiIl*jbTIDfiSSLwX_u{<s3s#G4L64-qA5
z@33-v<0Cc(n_Dvev4FZ`Q(i^^c8Uv%Ze^Kg80pUf2qSLVwMi_z;&iY&)~;!Uu#yI@
zK$4hOwGjB}$cT^S2m&&&ieWiaOFFodp$l@0(jWcr#>sE*qzFW2P$GCd7Ke787_&yV
z3RAA2ZQVWa@<KJj_p3aGckG*myt-{*RX1Q-@BEbq)mM+msUeaNE?z2wncj+Bh+AF%
zdYtJx-;n5M4*p({4apFf%xX#|cyJYsJHm9}4FV)nEF-p9QM#i*?aU-+PT<Mw&eTcl
z9WH(5|4-@#Li$%9Vv(ma7e9`_FmhcR<9US%8f}sMdQiXJos*mHVd{7D?<|3JBnydP
z1cs`y!E(t+hN@6wGO&t;#pwPdPsh81e2jcXIa&tc<~*e>4_DW>m!WikSvB?tMYI-Q
zJNq+>C$8v|YxTaq&TQks4HQg^_#e243<fyc(-Y^EA0aGvNXbJyr1BVJ_1!pl5Up_t
zg2^2*X5+TcyD#-G?(XA$vKrD<eND<G6V+3p)B1r*mHTQX%--!h&Sdx6YiWRW0kT)8
z<JdzlmHF5Cu$;j1O<BWlzf_kU7<{=J+G5Lqo!ui7gOy!UM!pGWAQL*+uy=BMJ5@5%
z7U6-g?zO2e3(?c*4$s=wVy(sY$@-&Z89`l}<Zsz$Q{Js>e|h~>Tj^d~5^&g^Vr{6Y
z&e*q`D=(iRv|&8~oe5(G7mOW0wCz?uD@cu5_pKL6&yQ03j@`UK60eB`+c>e>@XH3#
zbeeb%soM82e4m}YUI!4!{(XT3E}8<0z~PRy(=X_`?!R-qJo#k9e7gI{?^G;YIo9>!
z2F`zfM1^cLQ-&3I<2`MCYkd_{5^ebp;r!{5II;%RkrPcX0~J2dq$VJKCk8&Z-J0Xy
zO%%3C&WpR6rxzace_d1i0?@;EB0R%s)XM~^(*F0r_Z|S0#)gj<jY!~%oDYtcIwT*z
z^>GS~D4saLqNgHS0l33uj(v_=rC?wOqzmnWmr^|<`)}U}p&J3*Y*K``DUa(^R$5vB
z1fVm4lQxFw#&i%sXGmD8|Gh<o+P!C1WAlMJ-WA_0YRpW4TOx`*z@iGcxi%+4Z(O4C
zCUcoJH40-vTp*C4MqX^)5rjuAr_b5OsE7?{3>AGKtc>oOKX}gBNUB*6<mV}hVpMyI
zLrU2UJ|dWreOA0@;y^_?>ZFLKFgMWkQL+u<vpH|UeO=4Rq5P~D4|<)rFC4<+9w6am
zV#rTD0iD$_E2X@RNOEOC8j_H)uxPV^h+CTw<@DKDzgin72l%YnJU3vGH@@3U$p_4V
z?wDk?yBSw8#h~d<vc4swcORyEi>(}O!rf@1#sI_t^Ju7-dP*5Bvt@n{@F4CZ4I5+;
zz|kHSF2R!fo>P(AyW{IpraVyfs$CV+UhqkviRVxcTsQeJuHPG)j|YS?l`?hVvg%d4
zQ#d>preH$PUnc^IUvyJwMAY81yvhvp=(RE0FD_H(b3<<ptBnUP(_2pm))l;oAM)l_
zcLi8klQCv0nA7rFz2xxnnvA+r$y2>Oc_2|dD+|C}-OzuC15iAod7~S6ltVN!Wr|)W
z4jj@i<|Ft|YZ#Y~Lt5<&^>kR#3iSr6R5!FA)hs2eCwd{YOwRhxtD=o4AquI4hK1Jb
zuKNWGgtf1i|0IRa#k#`xIp5Zf5CoJCI_WJ0i#uswY9w_-E6N5SIa}tCB$SD;sXxOe
znEk<PmrAydmH8baZ%W}_Ym4m<?tS!Vm`8-9p$#4~O>p7bQ-?y^*I!-+$D~?*20X?^
zVfl+?A>*FLFECSpuMlM$jo68<yp3LQITk}Yk1S)|6SY@WO>pn}A0`>ta7G~C>+cUn
z^>G)b<GFwJpETZ(+Xk2*CJ#TKOb|#t$5!3!0dCIgRMvppfI466n%w#tm(G((Q$X<8
zPGadj)kJzqkzV8jv-(nl*i;gj_YV)4P>r1Tz)#rw&)_E!M5edjHFW65AiiL6*@VDT
zn8ZB&=G+O={pDTwUU78Ses2uW>_FaCm_ZG%4_2Ktj{y5oxX8vdi>)CUH)VwP*;C;&
zP#Nj|fYRkk(<N0r!XmWq?4#2Jp)opBi|b<IlHM68I`>cV$^f^pSTo@z#{4|Z{YS6u
zJ)+={tMEu!O_$<&ddX>@chULtC$^c@w^q`J3`((mD&6?rqUe^S3v7=T=QUO&U%%oG
z0m})H^fzu+6Y!O>;`Ce^e!juu@r+#-XxR^#XdT-0^5&p(wcLP;Ql<@aMyn*vek-K!
z?jAntvS}~nFI!gxJo=kn&*zmNDp2LrbVUFc-@FpejQP=0%$(Vdpm<0V)(8Sp_3D19
zOGTyf3~mi7#WlmeKe!6`lEhsg^upm!04_s<;4<U0lzJ@v1>PHaF##NFR6t)}yJm)k
z_Z6F1M|H+&$W9Z9{aZf8$maM8!pajY31*Acv+%+H<~`tQ|CH&cJ>ZqjnC5*_Rh&GV
zhsm*k)dkbD$AkgOL^-X7Sso%&O@HV|{ZzO5%?JRGc~G1BTOti#R;$qqkm*7y{b3Kz
z|G5B|$+>{<aFOh+4>A(F(xDY7)!QBz=2&PEiyZK3g#3p*TqR2->{E3Gva~ks-bCQ$
z^%_Xb8<$yfUF<G%4l0G>_AuJa-lA?H(t>hs2|KPkf+awIMGcrDR`T|dW`*}7+%LGY
zYL85^*DQ9QXiCvk;kwJEHnilC>T-8^ff-Cl$*6*7dGKLxiJ=Lw!)y$-Nr#(G7PmtH
z=c;JJ_vfK=DcbHt1*fg6?qNGG(tt9l1cmgA1@Q#15dJ<#1dje+hoST&Sx+|O(z(wi
z^s~B=sN_ge<w--cX#D|SzzqF7-lbRXh>K%%<i96RNv*6A&2C}Tz#YlK9lx$ADpd?7
zanvg2PjY%hO+T};%~9Et<--0r2FrOqpzTwAI}*mGyuUx~J<vpj%;b_0VjAkp^s2}(
z^Q6{ynBXMK+{`$G94>LqJ@zKR?`em<omw!tGU1y{6c27_Gq#KuM+?^@4{LAUewBK!
zTRe{NSCnI=vW&H6v$qdZ38zdTtKw3uEXMo*ro3S2Ub%K9Hy|-rBe(2;uGbzGGB)al
z?XP|{gJgHiXej|R<vsnLK;#R1VE1aoQHH4sQuxqgQxsC_vLp&pmI-ONUx!>VWpjET
z;TVayzhhv9d2LD^KpFj54c+pDeBAFH%yE0B$88suiDs(}r;bmK3|29P7$)+Zk<EF`
z>+amsTFGukzDwG%dK}?!eHJr=Q~^zFVFT>gPa7RtAcJFZy?EKj>c|N17Kc+d>d6Da
zuX;XAc*=j0u2yAo7kK4OYz;~K+06Z6U$&{TT8OV0;U8hTb#d}#zX-l^)Ia=H<~X#&
zG%Kk>W5BYZm7}$)zQ0Gwj9IGuYP#HduISXfz%0`YX#@IOmT2VeEoO$jUE6J<a&oZ>
zMyYrX@A~-4@S=(y_3=C3avIwA)l7l4cd>Zb!|oT)kuJt`H*yefFy#UV!?Dc8>O02O
zwfx?+^5w5qY&FGrV*jGN-&{+txv;#&s<i12`^vj>E(H~K?Kh3)u&!&fL#Bgr@?MgD
zZ7DLmp!H{*y{!wGQfU2fJcv8saps{+IpmGj&_jSQJl#50&-R!KO%4tUWK+63i5`!j
zoX$SU7`)_f(JD!9I_>}Xx(mRJArxwkDpXG&Pfej#j#zc_?2D$8nfb#TL4iqKf%ri=
ztg86z#}ioz8cd@melpUgMIP6mM%-?D9g)AwmHWNQx<?ghA7faGO8xQ?VDWmV0{I9R
zOo=6{fYsxmg{2#9&5k<8%w98mDUH1(+I^@%97*+Ix(-I3Y5SrkSNt1iVX395HT#f;
z$844I%BRd0{tOX`b+*%ku7W?+88Or2Y%?ZyZRuA7@z`oL0Iu0}l99HcdKx<+d=f!k
zkctw8mFZFX`%9i{4sboT(voneW#mpWV~@w}LjsKOli%o^t&|qju)>6Sg=b|SbwK_<
zY%_biW!d}fMrwtf7VBi_1NIL84qB$|#a*IW9-Z{PpwCr3@6veUK>J%J4`(k~pS8Rx
z82KJk1_tK9nh*P<^=LM)38G)@gk#I8x8u);MW{CQYNJ{t7;3ecXaV2G<MPDDq~_qS
zGaf&kr)kbLlP>n_zyHGdx}{l0zc818SWHoFDsCP9q;!Du<+Q~#(>Zg|qLVZfA$Q7@
z`e{W@SM37^w4S|#s@MMG@s`P@pq`)PNIg9u&MpZ}m*d)$EqJzTIK69~cBAkBR^PC@
z(o%*NnPsV^U5q;2<G|RQQqHYXUFA?mVxzfLby(c0YFKYGYY-{oR>oF1)x<JB!#`8&
zyc>i}f%^9OAg%ytvq&mS_;q_1+ErR*rSXi=e|5o1zMHY%Iue^%lDGzf32H-qB*55f
z^nVHBYS#!SBdB2`iX^<yZb$ZSSuT=#!TG|*pykm%pJH4_vkfd__~mlM)~|VIu#?rd
z53x<3rAR1g%>5y=<9x>t8`topd_a;<{v0gO!t?wX@#w)^k8h9DSnl_|5NZp?-Gun$
z_hTV4u`)rL4sqq}r4i)kmwZj9$71;aiK4E;R?}5qTcqi=x2upOxyT|MCa<2(Pyx*0
z#-$QxfC0^|&Bmd?#YGn}@xVW9Ifx$G0MwIor>;9|O#a2j9$Onz|8Vrv(l%fRvAqV|
zR~vdP)mUwLhgs_s8PUuaP%beSHxYcSO+l}W`^d_W9cm9yXOp4vxDzbhMl@yudr7qh
z_BBI|mYNrHh$fymlC)~w_>Xnr)UQNtYLFNDiq010)U&>mfhJNK8Vhtv`&NUz-94D_
z)pE<YfN~?1E9>Lk!}!%O$!)1?f#3aYNUU0Z$?9_(1K;gt%<}?AZ--Xmvv-}=Wz2G~
zDyaR}It7<St+~>kZx5p$dsp+?PkAp+xtA#4>+X8BTWMfp4!qBf64SbzZ`|>^z2)G4
z*qf=j+gJDqh&f1{yKAzC@LbNKVd7HabIO*5)obxx0AP9Cla?`$T%BL&!^Z!g^4>bC
zt)P1sPF;ZFt_|+))|TK}w0M!?QrrR*DTLxsTvCdAarfZX6!+o|#U1Vm@B3Td_wQZz
z{&%z5l@`vKnR8}l?`J<-hSADp9wG6(jDx`~GE+SOi%TDsFjO6d-)pHqr!Ozb8SguZ
z(jjgxF7jGzXRgnEq&nFtJ1Kn|Ej!|CesRv|godHms+cE@3DgD&hrZt$C@)I;;Lj%q
z;(#}^=(H}ZrpfZ4RX4eHzoAPR?;q&%I>xA2gM&+Z!QG^I)WP(yh{Dvj=9**ZqMIt;
z%`pUWYrn#H1X}o{tU=*EeKu!niCKKr+{nD!>PPuf#JmS&zg!r+$}DVfbsO|Od`4_1
zW#4^YzJ%&-f|glqp@nug!zIP^)7<QH`=!^Wt`!Tn)CP^#FYt-5xI#aBdT!7Onr^+s
zNRzD57zMI`>s6eK-pSoPN130op=STB*5>dIm0W`&5tQ<N`zu&h6#TwFRZ$HgK<M3Y
zo*lVm-#pmVb>;tP56vvAUomu_cVVjMKXzaeo=Li7^Lh5L;oU^;r9J<Q=Vch(QEWe0
zfQ&=z{M365|IX}NeL~WYH@!QMihD+@?y8F;^!nQOs>;Ws!-CKEwp4fGnL@Q|&;y0@
z?N5}pk(iGjUw+goaCrER_I^|=c0>~2X1%R{orIRo&IpnL5jGqFoB<t+#{no4(RAyN
zRaK@N;CP(cb+vyZ`q7c~?dj3t>{=plH(i7ZLn;u)1o-+J<|G#`71thY`|g}Zd9<5F
z&-CG*)<k-gG8gy<J{*gC0W)s|3|*W<jiBCF0r#AWyK_TDk5p{Z1A#BQxs=>nEah+G
zTFO=`Pmo*fnV)byl!sMh^QE{{QT}v(YI?q>=8cNk$%;EUsLPx}>Dbro$W!iH3R`nk
zTk(ladc=YL=+!gOGa@c8ZtkWW6%D40s+T>GpZ@Y(o$uQo0p_H(iA?l9#^FWRwIEx#
z{>=?rY?o7je>ZmUqD))YP?4Oe`9!OrpB=k$j~F^&#Xb{pmAZUz#bR@H`?wlgrgU^g
z@)63*?rdgx_!DW6u7dCJajw^vRuRO-#4Csd*bP!Q{s$<&K;RXNa6C`ltJT>hyw`t#
z&=i7#m#4<TpOmJ5^eqGs%F$-r^DpdD@jGIT0O2D1%iP2~p6*#ZxiUSOf&Tf{Qp|!h
z1?wE5B0?Kq77n(<T%|<K7crbOtLMGp(FNSV(Dml!jPh=ruiz>6V|_&oA#s6P<idjQ
zK-s7%9Ec@ZX+@<58N}r&v<JM6gNHvNQAD3qz$5NuOLLIapkh?X2S&j`#@N&R!Cjqt
z@qq=ia*tMBoH9>bV;vA@(jnpH@y^vFh7LtiM0dXnJ$3BubzuTdQ_dy0`U{MH{CR1f
zdV;jOhaxTDx>uwCbzoQ13Mo7B{L!>Pj$iDgSas0xo#O^`m-GCW5L5`_)GMLaL42+g
zyOGFwz-@A6>E(LmKYqu(-|n`4(~&?df+B&r&4q-8gDHWSkC;{_0plh+*36hR#A>l#
z&6=}0|Cj0-d6n}={R4K+^M1}(pz)#SKqAt85KU!E6X{p>58QK!lz2;7(<e+#yyLHs
zy~G=hJnghji_wKCLgcCj9nl3H#M<$eb3lfQd?5WRVF;KwKg(Tl(F92?VoQl@A?_j|
zYKa)S-yWvzK%Vf$4E9={S1o*&$drgXxWmX-$W<o&s%1w?OAAnMf3ca^q>3b8txEqK
zDQ`*?-_mdf7^I?<Xy{d<$n8=NZi3&}%)M1?WmQe>^r)!6A9~)$rm2|tzKGVs^2v8n
zG(ER?;K}&kz!ztQtB~a5l~iFKrhBPDoLR<t8D9}o@v)=@X$tUU7>NTw$ZEP_%O?|~
zmCQ&n5@O;PKWb2)GuKCrc{PK_By298JAdY;@akZSS;8l$mL>tWOUXS(hbH@wbxR%+
zMcQiZ@i5(^rT5`!w4L_l1K0BpkdgSV=~mJ+AsxiMJi$PCAHb+<cg2I*n<uW9l0ox&
zB`&O{{Wv|HXO_33e@VV*IP^bYF>EG#V{gCT8%uA`To2TU7@@VVDZ`vzn4dHCEy(FB
zA9c|6a8>klME|m}5|$IwG=35^Gtbs0gd}HJuTs|oQr$ZCMA^2PkAR#vwOIWjDR;?i
zt4HrHqH|fFPy|tX?O4xvP^(w&ErlGarDc9Mz2ECmAv|lk!BFA$#`TOJzp(h^s|Uan
z=ros4h9CU{ax>>nxkW_unBrb>hcyuhzRrN2&-g*s^8q@tY)*+rcnn<HF&~Kf*rt7D
z>R-Y^3MTh;(vnW?&9l3Z0f#kz2VzWqnbs5RuEzi4OIHw0CVUhqCx;1{?l7}A#$jTt
zl4KAJ`3m~!`wu*6=M|+<>$zfbM5Fr$(_a49ylf!7+^z`pAj0(YKZ_?7NL?0Pp4=Uw
zfX`ViC-r+v#d=7dPrTG}O4@6w)q@if6W1AceiO#c;dVvxD-NNjTJZvLUIFCe*$dC#
zNo+1ZL@k27YKM8Dl{Su}(vfTV6nBtMrT>eTZs_$+RZovhCUSCauIXc&{}VKVS)_n@
z2#|jzZDt81RHBBEq_Eu5Fh3EHsGlFUy9l^v9sv0^nGFrXe0;8`+;gh>slcX9*~<rm
z=&7V|ny%MtHNH)q^TeV(@JAdzVjHBO))x)k>x-)oV#%pcW68;LAke{bbelEH=#;OT
zknrcA|FYbzImdlI0RquErZ1csKir3Wx$oPrOFUGeXVlH4^?F6ZiRCQdamRyTBO>q8
z&CtTN-dEwM`Ba-o)T*R1CE<KP$31}FZ5lK+P-e^hQEI`1i%7k$-CGE>0gzbhOu2vD
zM5-qNjtU^Gj*1y`4JLsudIWy6a3%FB03o3dI=*!HePT=U3-R+vB`yc(L9?bdV>1mW
zzrPWZTXX<FCo-EH5*tRJ|64A|!|r9UBCy8YBh3K#Z)VJ48kAHvK&x9r%*}mDR#&A?
z#NP2=-bhlHRHO7zBw7x*JZdunaIVEB5pj2X4jKsSMUN%ksZLr9Yr@gis@7<!s0Nss
zX)L<In%QJ2Edok<(>oJun$~gB?@StX?WpLYlJaLygKc%6>09S-NATG^I|W@8E$jA^
zP9{IIZZI(l5KS!CoDr~*&!6G^F+-S;`-jnKuB&VxKVkh;w$%V*$p;erOO#^zRA)9A
zrMz=qp{y4(E|VU_FO42R@AmSTl3cMkTI+{1@G=hEya?dZ%1M|gQ|s4=5;XN0!-%p@
z(T(UWV`eRxtZtgo?9@#=iT*G%`_r~$#^Ws?v@fqPxcv`CXJ@tDJqxwY>GG-CV{aNP
zHWQ->SDpE3YlozG7oYpkxT+C{y`22K;m@R=rdGV>K+Qk`iYw49w^c5yBS$VW)<^(s
zt#<sxAJx6NCU(H_5heS!s>hU$l!yCORnOngzb}SO*6%!K1uT5z&F@whYO}r&Lhl$%
zSVIn@M*dULhj#`Sh<KUHMaN;p1aZOR|AGE#W`Ap~vF{hI2USaqxmG78(R(vFO|+>!
z4e4ewczf&W8jw&aR@OGoqV`K|`jk_5+sgDMtMD*6U0hJxkAkA;Pu5cdVw$NLB^4CY
zN;C=btmLM`l1rE4{;*-@-Q_PpYij4wY~tf;b5%3gMrpyP?iOt~P_liFH*cnZvreNJ
z@8=&QDd{!0z?V<si4XqX4d2Fs#I~P&`4{!+L9>(8aO49$BDxwUg*2eRO!}YSNY*eM
zjJqr##P98Vk6q}BopLa$!b|JFIs-)HXK&5dxJ)*fI2WQ=?ulsT2S4NA3{!MEq<($>
z6QFe5WuiqX9Rek~3CMKe4X>Mte*QGUSC#t?yiEmdAd5fA2JkGVq?ttzzWUU&_`1LO
zX#ehFeu_|<k^%LMB4gBX_3H@{`A+w78_*$v#(wfGT4Rd82G5ODR_%V9Tc<Ej?k-^m
zzu(qBa*A#o+Kzd8A7+Ewx<0gwPMOk89Ram)<wXx*a_eYj*gburhmG3Tb>!-yz^Xfa
zCt9&wPtaOJkQErrVsf-x<2-W}T;jzU^H)~THCs^sw`L9(6)=+OiD%oW5+O9D^wNb3
zzjpGNXLQoa#+{lcv+XN~MoE;&?a7P;fOMefcV-Q8%2O{<nL(@6rK&~o%#+re=u8)E
zS#)0oBOe7E{{2-}M~OVh$9^@~0FOi?r~WDl>`MhEz){FO^`#e}aEf6Ap9RQbiQy-F
zBK6nVU!7XsPo;WW=dt(fQ`iSB$ud=*CA=H~>NZ76N_I23gMh<b?!y%P$`q#__9*!2
z5iM9uagICDx4Ax9;PNpJVsXeiXwO=$>X8q{efVZ+NQV*lU$D>)XFuK^ZVlK&-5aV$
z05a9&mG>xFrdp2b5TeMWKpp@)Kv+G@R1<mFi`uCiLwDBu^Bq6y_pkkYhxBTn8+3mh
zwIHe@w8e^+ilmBrEb0B(T+y0MQqNd*YfntBeZ}&uCJ(>x^{y*7;>8SGOyGwXiYcc3
zN*Ui0EPnn);9+qjn`ywh&^EsG*_NzdT`dowb91x~JO}^t84F$?NZP+h-%s*LUmHvq
zzDVzq5_yhBp=V@dbmn;eQ#4_p=t)FoPw;9P_o`%77iSwi1^mPsoJ_=1)#;uF^Z&G5
z9)H3sEX+U>I-+HG+51Bbia@LK`Z=$9iMRa#1d@6(0PcW&sw^LK>i&%2G;ZUvn<cUv
zY{a5QGqu^BeADYj|4cxaM5vU(-yD5W1-Rp{-;xAG%xlDRVr9mveEDHrH^sY`!5P>z
z%dT`vdu3ka$okhr7$6V`ol*=>N1?Z_PJwtyZ67{b!*3?Ca+L?#*(>|~5cqv7X0ze}
z#hqoX@@}2)U3=~+@G}rdVrW=$L5LWi-`Qu(_~3jGJ|kn_82lFK7-*5)7kqeEt=5Ne
zdB$D5a1mLWe%+z5ek+ITZA%Mg%D>I28gcS`in`Rj^#aO1mtf|3#@56UK~S1}J#U&{
ze;nkxH+lSI8J2f0CEY(3Pni2meB9No6CwT7s1iiMu{NWh#X;sk#y=_n0)2UpScmDE
z=SY7##(WK->HSb}KH?EjQo`xoR_iP3b(L%Kq=P!6rB)G{7Qei1j~Mo@O%Ow`56jw7
zi_ntil6QLgNq@XvubHY*z2d2LbHp2Cmc0vHDVm671Z?LL7X<qF@0=`Jf_4-f6&D>w
z9jaKX;$o)%2MWg7t0wey35CTo=DHt<EF>zVN#RRD)D!w!bZ|nc(B@6TLi|2pJ+@nw
zbD)1W($fX|piSKEfD;0Nsw}BQJ_jb13r_6_<-o5&o|@@k$-w8h+&<5;FPUS%pSO?P
zJ2#@izS%jESPDu2FU2q`=~1g<MQ1?LDjWP^477$Vg8n<)Z5Id9Bjw7`*1vM-(sbhV
z-$EdqGdpUXK{zg|6415IogFoC1^q+uD<$mrI4#10hH#3vE;?exuvuZhX9h>bId)zM
zD9dwyDvr0m6p3Su+Egs+9TdUQa@oKz-(~u+dHgZGZXp7-QXL9{pE-T!4H2`+91hP)
z#Ztd0^i3rpc>@vlAtDxcdx?$2q+VWEdI2Zf()WEj*C5$DoQsP+W)U0Fm9WM8@@KuC
zfxa<jGkycwl8dJ|(fjatEz3CLd5urO>zlmMH1W0;<{KlO9}L`65nabe+4^4zp6W}H
ztZtr&LEPMbgj`G-x9MkO0%u`F_lGRkZ?OSu=V^#|WOE8rCM#}g>5lTjpyL49nSuXK
z0a&-w92dLObnAH2Xr-smvuwWI#Y)g@M)NAme&uq2R<_&fPp&>AgIurMivHKF3)5SO
zzNhJ9?Du_A%G`*Tt2RPDoo}KU)`?EZ)Oz?rJB_)LQm;<5g^4(a-hcLc&Z{73-IumN
z2d`3_UB0gGbVP%8f<PSZ(9j-W^I-n=*d2T2QU{%eZ>gtHBbp>r&cWufw2M!_eHNF?
zNL9pGI#?X3cU8uStoyK#S(XAD%swENz1}M+KqqP@GT}=ZG%h0v*T=4_D%N0mkMD$k
zIKuI%<sxQhb**F}v)6Qq2F%#KxTgRD5kbTtE9UD@KHZ*J)uaJcIr&n;VOgq{GBRh~
zYPph6&gRS!YuBdDZ_dI#knLp1ohQ#QOWbrO{xgS_s7MBQM<l^EJS94J=<y&y%}UuS
zs~Z|~1zaC%ja+G-`wyB`eHa+3VKGB<FjZDbg%2bAo&_%3KY3V3V^q-zPUwG9mm2Mj
zfqM-^qk{qv!9WFg!Rqy)+}rKKZ=r(_JZ`T)aJb>h6$t$2sQqHXxlFKN^0Az!BH@h5
zgW7L%`(wqjkyKpY8<Q0evW>Dn;89ixE0WUF=_gpN-DWHq(|kk#igwJ3H>JTUnw20F
z0)9;#a^~2^(dnQ!L7v3dW>qD$P@c#-4k{cpqwbEO1J*+T0<L4KWnMau&tFpMd^sh#
za;YFE*Qc??Z+%F5PE!U+Vh|h_n;@-Vy(SvY#m1&x-`02ueyL{ZoTYit=+$orPVc3O
ztNqz|>A5a9z<A+_r-N=DHg)%${kgxjQVbA8RLAm$f-1H@OEo`GqIl~Ug2)6>q**v-
z%-e7s_XURdq!1PU0Q6VvF9|8>jaco{yCbz0(Ou}py01PSxA~tpVFhRucbt8_v*v-F
zOr|M=<MZ=KB+{YgWG|-3@SA;HzTvA^FJC@?4x~Iq^_jwYI`B*sKKc(@@g@z>#Ud@Z
ziboq?H)jt|W0R1O02P$X6n+6kUF5PeFPOW2+5^wuH>|zFJean*KcS&#;W~FQYOmZq
zkd)=kX55wKBNz2x@2e9y+R5Xi%oh<VDk=^J0R{#R6}nj2EY(+$xWqw^>99-ySRX3`
z>oLO>;p;Hv0z^5}9U7}oyg)F{v(Gf3GYDP6lc!G~1Am`9>0jl_SGU5hjbYCw!=@&|
zr7}W1%yw>wbwDt_3#1J68ZzLhMCiQCSEq}XNu>Hvq`$hB=`lnEL}GG_Qy+%Oww;+5
z2pCrwI8iD+>VN}>7WA0{RchE0dRHAoAmH`dl=vSGZ82qUQ(LjIlLWc6Lts-h1WD+T
z<Q`Zr9-1H?zx_33s+xq(Z}<?@8dW<na{>yA+OGT=7%L+X0%5|3tFRChxF*)EFH3Ze
zwIQV6b98OlPm`2<$X4CNiXijsaPX&ku9~k72s?onVAP|&xL$uI^?c}7-FPVOO=_!v
z6po)mm~86IXz|?5(dv9$A&yqb^i^kq*Zmh2d{Cv@c9s1V$<qs#CgHpB0t9fy!sX$$
zF6t|0xi(&+1&jZZN=$J0)ss~~Lf~<PqEjb@bNXSMARJEV6*;8%r2OIhUTMSf&<lyH
z)5ue@%S{o=NP9Ns%YU2vuW|=z!9wb56GWFz+keMb`nNmF6b(+cGBg4l3HGH9=bsHJ
z=kNTB3V#IXXmeN(N6d>b?I%kx7&dk{kpqO!?}ZP|N`;qJp14jfqwqBmHujuQqSiQ<
z{VK$;L7V5uXkl2?MpUezgaFV)ukdtQWz29BTLlVRZ5~cN#;JMIbwLq5yq;g07uv@s
zx;Dw_F-GSlCI(Nab^LnHe%E+2r~9miZco(BwY1jPS{n^Jt>5rsXFFH9<#zTPqG^2t
zYOr+rsAgwycy-3BN7ze@-C<wQt7a*v>FvDsRo8fVfJX?kmW}A-j^mH>n4vxW=v1d<
zF;7{Md;#=z+G8Sfr>Rr?i*@oe=kV^{CO>a<npe#>rAL1@#@mV`hIYLW(a`iGo29<S
ziltw=BF^)>PMJquTEzx+Rwv26=d00X0Cpi_LcJDk;wc*iECEh%=!_;QZWt@QlIHnu
z<P<KY7)67-<1oL@D;w{NL*{)-F?H8-l_?6(Dca{g$A9u`JA(UO5q|o;o&2cA!a!$=
z(onl{Bkl~dLCb<C!PYlq9?J_Ryvnk&F}69u-c8OVe7#j5>wFt{(|R`c{m4@rP4sl6
zLy|ajL)z<AT+<d`$J~{GxcdbnrW|Pa_WY%#<15de?1-nqp<HZ*X`GjpYmT!<SK34C
zwCe+--$SUiFE^b$%zMRRy18%Ndsfe0)<in*SHQb&k+veN&#Idh?mT|%{Pl}zxi-E4
zi34SKK&{X2pV!8}6>(v5HN2g0JMX>~>72ckQm7S4AzZ?IQ8=|Uw`IQ=>DgmrF8*7k
zi#dWrXg?qQ@|at??;1%_w&s4glpP6ghGy3I4Ez2Q%7-Ug@4wy+ce%kZMKUW3<DAYa
zE-_jxEm5*;Z6}I#T^y4d2d3eXH*7d5cR2I>=q(%<_r5gEPAn!A>}DbOAnZtxK5_Ox
zu>k)NW8$~S;M}3Joi6=;KXGW~UUwlP(s@3HGOZaJV6l|B=zO7b)@uf!x+~18`?;%_
zMtGgTU@|}c9=uE`WBt67HMQV*JX`1V`t|Dvj&)kzywEuXC($g^i4BnpWD*=+`*vmC
z2GvqsX^FYWmXXgi^Wdi$xcA&G*12Tq@zm&uz}(BP^x{Gl`$jmTA|p;%Zp^=Y+}D22
zi!r-V7HGLDCW(txB&`j}d-+<fIWZfWBR8*Z7gR;E04x}U4(19oB_PEm;%rNg!AQ9C
z*}YzXF<6FMZDmDSs!@tL9xn%c3f3ytLn=#0b{1bXZdB+NYMu?0mpJ?zpGdf=d%N2=
zQDZT0DvfDCIj&cIGu7W4jJb<bW4PaN0t$<@(-RYQ>V^E=a~fPC`>d7uPk_CEh9E!G
z_2gWHzGT|_Bds-C@AW}*FJ)26;uRKvx1T<I$@-C|;^hESRIALjpcE&oMWa8=uBI9{
zy6v|DMD9~9q3EFZCH^0phS}e)+aC>pg-KAeca%Co?$We=n<^pxVaEhxceXZH+4>eb
zKNaAult__&aV|}dm{}g$^WJ=fDLr2co#ynOIh@MP6|MYSpWxu5V%oA*;bnOFSK2}J
zWhlL5H{0dkPu*!y)@Qf>koB}qSKH3OA~{yQRDkd}bY&h7R?Qf^!UDi_D^LSciYr#}
z*NY+i=p-JCok_+;w-SD+-eH?V2m~t-RHv7ZewI@x%j`y;-s~oMD0hX6q#Qn9F2oI?
zvlBX&GFWnAHlPRV9QR$7UN)o8HddaE>B4oRWgwMGM_u)pN?6e!MjPI-NV;E!iz@p%
zw|Ds24^+ZEk@dOcv{<oP#lD`a@*$M0o~t)nnQ6A`m*PXYCXD8*--cyV&rW{f9j|DV
z5+KJ-uhg%F6xq+#>ryHmC(`?w;fezpC7CE;p>!n3*)^$lcd!_XJ3TYgL{0;2y)R3E
z)(`eX2Q|gi-K7O^npI2{X<AE5n@dYe1NHrv$hDVr;kyGbF)+xv%?1)V+W=(;1)cP@
z4>izrIaGcufNo|UwsUvokN1aJOd)c<L~NsF5>!^sM!4G;02z2UEj+_^<g>{VrH%Dl
z544Bc4Em$T_ly30!G7$=2?Tiq0iRx8Ue?yk04{}YSEOkJ`vdrxbUl{OR!vgqa>zWJ
z@`|Mk#yA0HL5l0%oGe#uXL*5*o%u!(Eow4;IOc<GB#!ihHZ=lechh(-sD<>TM897u
z*=5@mri>V1uMt)4F@k;V;tAZIrdG)iBhO5$t4vrz9~C{~<@(}<$B+r{eq6sFE3`mE
z;@k3UG}P&Wxj`-*?z8-BKbr(VXdJ(;BYU#b4)3fmjZZr(^SYRXoun_>Gw3vaxfKpP
z1Yu(j$}<b6@{I;;bY{ghyuv&I-~wn*TwJTNmhp3)t=}nhfarz7uc^er)0vra(rTnG
z`E!Y$iy0Dhw<WD!q7Jv0fMwbVz#v?5oRnS!c6VYcHvRL5(g>nun3$!>uo#1HTM+Uq
zCmqLItjBLZlF^5)dDR86a}uNZx57g1f;=I>AW1HWqf1F`{gHBr)H~|#u)`Cj7vTw~
z6AxNJpVK~7b~9ehQqxfdGrz@3T((9)P|yJ%Ks1lbr@{y#sOcu}X!@`@>98DdW%eA^
z@LIjgX|@w2L?09B!TLd<&kN_;p^Y?wk7K9CEpZg+QjixTHrym8U8ghVY4KXy$$G9l
zo1?@+0lpG`@6mm~Qri9l6nyK=qB$fTpGDC_#>%O`n@%^^()&Yejl{2UE_62YXin)o
zJ_`NR1%a1?4}gkS7nJ6N%H$JNJ;w``&P0O<27xzy!->bE16bfigQunp@9B3-sK9c)
z6ZR4RYIE5V*q;xhFQn;L(p2zByRarGGt+>-O=%WrXVxZEbOhwgP$N>6C(zLMp4-?b
z^sHPO-u?lw`Jh>y9#E#>(Zh#8L4b1$(X6~hnIiFOonp;GjcYSv6Pyql1_q03pwv`X
zI4(S61NsFpdI^E0N9PN66khi6;LjUp!64>eQ!dP%Sm4Epc7*;`-c}suuc&H^SInRj
z4_3=m6e2M!m|zgu&F^0wqdmpaD{C;yG=M7skC6Mm*?@9!o!F>$k&Ff><Q&g9We@<G
zh+~_w4+zNDe>~6-!)zF5mqY5nTQG2Pr_b#!8n8>f#H3gF{H{ElS|!nzd#25@`}i!6
zYu|t`k0Y|@Y>XhjcB|7xhgx*!C!py3Mb2E35^O<m`P(zQ_lHNG2cIB%j-4;AQaESE
zLo+^bQm00YlQKN4=*|qb76VRr^QVGo%cXkbN#KJI|BY4ck(wCO5wuuv(mJsPd1e7C
z%lLvU+IK?XZo+C&0EcK<U~iJO`m@4wZ0~tvyop*YB4%y}xff?04$TW6aC82wSbC(>
z%MDHBhQ6+~z%^X4`9(APW)HV3dNcdQ7L8a+ylMPe9@ckhK6AbpxopQe5e|;uW)(oa
zHQ)p=I;NFe>{j5Yx30v*$N+zTAZw!Y@}&X|u#`R?v4R(V{R*gISwW`^OXEwjS9(G7
zb2xcg?`+?C1xMmjM*5uuA1hQ=vcm;z9=CZC^leIca>UlO9(eP-I${!9$++@(vH2r;
zvs>>slfB%&@siw-aDC5<b&NAE;|jAGf|23jK_JF2%FlbEN`x=4qJvq@1qfOo>!lJv
z#RMS#VJKuJg90$w!c3bbS1|2$9#`C8P7T3xG01l{-*V{coh=yceB>@p*(vjtw0Wm+
z+E9OTD!U-G3!I?R=v+g0`VCFP<{@oUPUwlTClNkjW?)61KMWy`&@CSS@&$CDd{i<R
zWEb{XIdz*-n7TYMrc(#4?D*jVJIbC}03YV^3)`;kp=n;PI-+4uDU91)Ve(9mD^jeN
zQFf9j`aFUo%tP5ts^hG{A+S8DetVokCSxv_<mX^V`=r!d<w)o40_!F;U}iFZ8>?fP
zM|b8!4qQdc2$KFeheS&bv>DUI3sF%5uiCqnmygeLLFg1h-Hpu&jv&hPsZnN2<8qe>
zMpCh`3@rPslj{TT$?28|+au6{m5s2Y>;o+9J37jk3)WuQmMZ+nhZ{}wMbg{ekY6YF
z>7p!{gCR93Bq~grXX4V)f%F0pkWW)EFI=pmShygnb2gRAcxPu$Qym#S-5fHXb>|rZ
z_W{YfN4oHm6|`3||B|)QVaB4c&h9wp)5_?N7jIQtfIL|ch#K9@!wBKIoMp6*Oqs8o
zjsB-H?s!)r0Q@S9<AWdN-!`q3iqG<8Zod2ZbGUIO+_iSIGai|aL$kV+z%?CMX3<87
zWFE%PoBl5%yri!#1ua!S`lb<ot6^Et*mIAoFFnk@2;loX;bhB@r;0hBbjdBASx~=E
zaL;j4AdTxJ0rjGd1+?-KYN{apW416J(__SD^YoE@N!mN(K*b3RRW=?xd+pnUZ`5)2
zOfc9G9wGl9Xi*w~dq4YT{C+6K76D_hLmzzc*-J-v*!Ivi`*G(qA^-OYLt3yEi;^J`
zeiH|iXGUg0Mwx)Od|6ZTVi=ugM$UL$Q||Z;)|Kwlx%dsy&Q9G_uXwS#N$h6ABK_@w
z?g{c|LRW;5_-=doCuSQI({LoDA*|b*L;nc{F!VnzRh_zs_$4KYgZRAgt2`0wI`0)x
zHh@<BnD`D76dj6<twA~!AJR@%cfKR)2gBZOR`e+;&`YWC%souo>MH>LP%Bdyq&o#!
z$j!z&A490IqZhe4yT%Q1sMqMP)Zz!}3kJ2lk9!}D#c7Pi?f;fCpPY01Uag^}nZF(j
zwtKRxGskV5K6}Eqn^#a$G@YQ@d~{~){f}62X)#a&xI<&?$@gjB)iQZ6uZ$jI#bY#e
z6%BoD4Q~c(0vF1#l*1zEG+l&Vopn`CJf8JJ5t~f*WD#|o#@0ni0^j$}*TCF90$~$N
zaY!jxR3OLc*qj<SIqTwxuuaIYIooV!YQpqVj@oa(e>%dbziuD(CPqV~eXC-(W4O+W
zm*KP?>WviV#v)cC%c0kbs`cJ%4+?x@`g@fyCufR2h>%5@vBg<KWV$X^Cd0GhkbHX5
zo6U9e)Ycjw0y)A}&A%=8>ruHrz5Pzuna1OrWMbTasb=0OG|XVo3%r{7vTp6KR=d{}
z0S@>najQfgTc?vZ(hUn;{QAUR<+q;V05=RGA^?^Y#3U@SwV!oe*w$PzH8G4B7jeTj
zGk@&jIAK-xjVf+FpCHzu$kB7+3TWM+*7S4ESQjqkuy(Vn!^4mnp8k1f!-C9TudAYV
zoCfAtRc3ONL|IKa_3K9K^w0g92B<H;-Z(F+ijVZDja$vN*DU_|n%$Q_ujj@8P1{Li
zNAGG)%=0x9N$5vF{rn4_Ir+GP13-oNXEWfe>V?@?iF7rc!E!{n2!8S1ABASpJgz%C
zu}7{=Y^x_)A!IHc6YO!r+9gy!pY*F42&guMeeWOtgQvPD4E)nVvcSLR4PMIFjaZ9;
z)9%BQj3QQHaqc3G3yv%wvlzlW=E6~DDcq*)^WP~B5c=&>+zY7ikNfehd+x#E?={k1
zYjT_s0WzeO!(ZE!sP3^}(Rlr<*SXs7Gz)u;t@&njSp3h2EvjS24wV1Vf!%UHq+&I&
zk8zq<G5F{f@zMR<?3=u-nJ>{&qWyXCBLBp`NuPb*54h@$wzhZ4XT6jWm*uoY#A2*>
zsyMJ#r}cM+|8xW5TXObW_E&a+eG-<vD~g80BJYTJ?FNR|B@>Usz5!~Q=oCejB#g;P
znE-;*gshu5Z0BQxcM7LeYJW9vEBrRMXpG{=@z{GL1oC|;ulZN-M8^x^94zcX!yJ|c
zY4M~bft56QWMQUj2!?1;smLAtyY5fI>DV%pzNw?pU++%L-g>JqwWp1GgPH^~Lwt<H
zu|r0Nk3wWl)?QD?)N*`-F}QYT7~~dqwhai?b68PhBZK^zq%n@2ge^`EH;OQxX!J+2
zDX==fYS@nkR+-3TZI{%3`qUE+y!Q5MUpD7Ljq`%R*?lJoSgn2V)3CTjb|&vO>UV%x
zP;X=53j1L4DQ4rvTM1DBu7ZesIGg}%4R~z2?%sv=YxdHn(0n&p!2E@=lL$)P11huv
zziSouA<$`@A~>H=s;d>%U}_W@=P``<0VoPUcKeBcCHT7g;8|D%K8Q%aM$X4YxOHWn
z8hY=Hp<uZk08?7fri}FfyA}con={?{fF&va)mM00^ETY04ew&_{I|Vg%&UJN?{9bt
zAFk+mhzuWB(#=JVBQ3XibcA<iY80xqA}ZqzIOh1umkm=4g+_&lI-a1qC$bS62Ft@J
zKCQ{8J>;Yt0&{o4km&g<h)<yv+N&<|g-PKUe?9l}mHKn>1r4)Tw)v&cg;2O2^yR_2
zaz<w)os7@i?Cbxc^kzaPUB34e*mPGr1){XW$qc*9l>D2c1v~#ln#5G0w!c^70mv0e
zdw>7y_2FI51I#C^z5+C@W>u~vwrO30ugk;im1%wsE?}mMY05!jyJbd0yN~DJrfIr}
z7@)NG-upbh(8%3_kwYu}koa{Emk>V~I<3{bQn9ro*^u>is`u*QG)Z~QKyhJzRSkh#
z{Ylie2%u#^pdVVmqf+wq9Zf%+mU!orATVde^|j}dZ*7NxUDaTN<#m6X?y!{7hqKAr
z@;mDp&muvdFS??_za<EHyT8RF5>D%9Z6#ehq?*Li0AP_)DJ)`G8bal;q+K|gd!`Zo
zKGBs$xpaYrPjlOuWX#3(5As~K>FLo3s_VbB3ue)nE;6@A1QS-3&*_fnS#yHBA4kN=
zE7uS`iM=R-;0U?t^(GX@cFEj1HlIX<G^vk!uG+DO(hh41aapI0bM9^@E{FF*rNY|o
z{WBgB3S>FciK@;;Inr7ss)xJWBSr<`jQHKkq!w201NlMLV)`_wuEXpAKLelN?RL<Z
z8PAkZIA7-Gau*-n^KOi^;$120T%;L~q9?>vdgvx&ZAhzT0OH(@@Np{Wa55y^#yBm8
zIX4-U4lAF|ve7}UCPFP2IWe@*(@9S`SVe+h3<}x3nLIVmU!gksO-KnoY%|-QbM+Fd
zb|E3%clDW{_1N(&EFNJHa6HPA&MJj($d%zQd=PQQyMP?#FRv=jr&j!2^qdH_#=u|X
zZY)mRup&z;nb<z@_#U5e#AgU_qo7uXH3`V=aXd09s1xp62W_a{EZI(vD&q^0_c#i3
zpty?s&=Ov*F*LL9nF&*bF;1@}-q`-Z$D<R+mW7P8CkQaHSyftoWs}Aun7k@N=1h?a
z|5!q8N>Jl+$F8TZy<LqqF*fxQ0?x}HHe|a#+;STWwt~J{&}SUCI1Y8T!iVop#-`@(
zdr+nuhv$4Bl@(#<>#bQR%vBME57;k-0`5F<@$8Mnqc7jxJ;T?PvEM7?DB-?^@ap))
z)}EJ}V50hZ1F!Asl44I0b6HB+CMSqkCZdj@?n><5HDrCROEBL3%|4)0<)@O>By2r0
zjKj#NiOm}|Mh+QhqU5cp_->(amrshMGKD|%UTAQrKw&*5t2hWlRO3VkP=-oS?cH9}
z@1>Nrp+eR)$gyID!(|o~_;TaOdV$9c2dSUAIy<HbF7WkU6^+CLZjyQhhnGC#2xBm0
zbn?DXU9tgR{yQp^;2}dbNCEY#rvM#ixGJk3r|Ynjk~-`Dk#1F;Gv}E%EI&i9XGQ9M
z3%<(*=BEQ6%=PBZ>I_oXHMRF(FH8z5c$dA^m#~J}32NZpsD`l5s?JW@0`0t`e0L4{
z4CQK8&6_WRIu+Moz62hT$O6^_x=CrVk+@haS(h>>7MER>Ru*`ex9I4-^R4z7-SF5N
zOW3sR3&xVGAqyN#da?olDG8O|yxWpVY(lXb3MkgJ>AS$p38lC>j<~sMO`5Tvqc{Ny
zpR6z#m5A2cOUP~YdR~nnG3Z~x)rZuh`c0j7)AOA5Z2{c3@%23tjaPr9I=pjpNqsNg
zc*1{UTJ-%Xqk;4?@GWS*b3<tFFl0pft;UAY&Uv%D%BkUkSYu3QjAcT<3cjQ4@jmst
zMv*s?buV;(z4mxnr0Pnec1U(&&0V0uDc8Fag-i)g)h>n*Un8tHttYDl(Q5Fvd6pKR
z&JkSMxS2RyzEj*K4!0hj>;9{{vv^H&U=2*cEE>d=Xi<Pr^sIJof5iFI&TXdgkg!u0
zhl@v7ImTBwjCc>xy-JEh;4J<_gc**4lp2ItdkYqrpQ{85BgH&^)R!03JCZiVxv1J$
z{<fWRH|own0oJWPH;c><6^lFYlJODMf)*=rLRy5P!)C7BuB1`$f8bAq7J#K(J8ygh
zN`D@bua=A%m+<1*%VxVFD%iy@+kL!7xTSZ5F?W6x6)j2KPpA2#&OHHjjkL1Xn?v%1
z&ApY9%T)lq>S)vuU)+$2Ywt}v*_&`|RNG{E13yj|0(8~C2PiVu>y<t<bI1P(e*3Nh
z__IxM04Ee>T+(F0=eFLxhtRqC6~<@e`LsW`6Z+H=&Ia<!w6(2sQD~vsk4=vYi`e<%
zYrf@@QgXSg^tdV*TyWz}V7suE*PtI&pB9mBkyUa#OqOpL{lhsmR1?8yQO`9l7`z)^
zc(Te?nlqs4>78}NWbt;(^&laT`^ps=;ah$u$05F)hH;vMHcGrS#OR>h<+;(fdpKvd
znig;8J7n^AL4``wT{*-{weg=p*N?<}JaH>PA9@AC(Es9hE(K1aC7=%xPoZucH?+!{
zRzB@!$~|*g8Py&_Ov=lz7BT9tC-JVE-ndNMZo~B&`CgCtu&pXQi8kI%x!U-eXJP(8
zLOh3ApWAvl+tdElmJ+9Rgo)D-i!yiRQ)$_*L;Y2Xc{=cP!d4!=ENj-KyjW@P`~nd{
z9%ivXaxKTpLL)$GioSz9{WtWzmVR?1gxfg(5jOBne|N*j4C;R!_jb<TDz-E>Tdy5k
z-N<(5SbuOPkQBJg4XkD4(PvEW*G6)p%)4?c%BH{7Hj?{#W@)8{Op$40=6Pp5**YDc
za>hSv56lEDvG#8p;xSW3*qrf%DnQD#r4dZ9d#i|lLg`?3fSID}4Gr7Z_Zr?7ok+x0
z-REb3IuZc(yMgLJvXkQkns9HK`&VO!ho7?d%IVG6BMedabRpe>G<0E_elHy!<>@$K
z*Il%p<URBXpF3_f_((iQ`{jWi@SQ$V{IjF~8yd<;#A{|vZ&$glJ{lLD@JWpuPY%DT
zpJy1Jrl(U3VCxtA1%U59x7&F!Fa0YoFUga!OGoK1b|MF5x!R_kOOK^#4@8edo+daA
zs{i>a|HuJgHi)wSIg1kYTDj7vHn=9h_FQ#_^_%*KlOT}GP}ZdexW3J4e$7Qc-|yzj
z5<!!)yosyT`JAG$W+z5Z;P6%Ox4HLGRmZGlGYJJ~rx04USy>2P!*Z09=wH-G)HXZ$
zLlA;HX_U+rFjyX+xslatZ0t@ma^z{P+V6lTTmFKlYVJaiveQlsBs&Bj=lxc*|LBc0
zxjn*c@c+ZJ4j+%WU+u^klH;@PLCqx==^;Gg%jDV1fB3Ql%%cgj>~dE_(A;tw)qp*@
zdKkjsvLIUYde;Hn^tY{SW%nuof~{|M0b&0IP)rY!#vTyi0nttpqJhXlSLIRNK5ER{
zKUje1O8b8DHxlJK!N$`8wSFG|(8wLy$o>qN$$w7)QsU#}CKK=LpWodI_BV&bfz~LV
z7X4n@QQU3|T?2v}hKT6Nqh39D{uS_20xr~R_R4cov`c2Ri_|9}>}Q%Tw`=NG_DU`=
z_R`rZjMfd{B7p4>_I=5kEPJ`oeqNe%GZ`>Tv{+I2j6E5)@mF%>RJpc7ar~P-%YH#u
zaXPs`RKR~wEc6z#a`sh)lM;ZhW&L4jiFl6Pqf!tz1si*f+({cK)!q{nQSxQ6dmV44
zt#-uLzpiOya@x*no1@w_aaw4f>7h@98Pudp0%%y2OGysG-6d;65slgYWj{cOwY2!C
znzpof^TbvnBzgEZ#(BW!ZATBWiG~L#E&XL5+N{4{{pN0(;nPEEFdc_f*yAqPt+miu
zR2XcdPk-iY!H(|d+(E|h02&EpkIVMkgf?@y;|y*^v3iAB>x2#023HJ8`b4hurRT@A
zc=6LfF;U|m&sK7z`ddg1l9yLiOMDFbe*xAf(AnSHqq^V5{((7(!YzE9bk89)W~=#*
zo-%w=HdI5DT2PZI*GAi!gX*rZ;QEsveaJ#so@}lruMOD_4a!~t{iXKp`wCBK4LQN@
z8h@qc6<k*3-PCTIQ6o%8X9wMXZBJdB0T~P>qkZgB*I1vWl<<0Qw*Z>gU&Ze{&f#vQ
zox2)auKXTJ*KD3IF-)Q7R*$DNYUxo`0-335k=mZmQR**rQEZABSNZAML>66-_{i}7
zDCOIRx@*j&My%4HwF|9P^LF<3$9h9~eYR3IPUn{RlE^&NUAz%WDlsS{<}WqeJX#pm
zAn5vT)~!pwaeVfV9T_DVmY}z>1%tFH4rywW<;_w~94sP70XonR)B7K)dFNu-!0mlm
z1C>GUMDTlkHhBD1ppVnz_j8<m6Wi2?=>RQxV=wEZ5_XI;z0|)M&m=;G2AgBI94~m}
zeA?%0!T;f>0pNyf_&sKSa{ROi@ei<{CT>GuGMVs2RSUpkmF&(}FVzBKxw2jZy#z)d
zLFP(UldWqAx#droo&YgZ7wBo3j+x-AIRO3}pyIU@N%={bc~I~EdToZq@tH%ZF8xLz
z=gHfQQdZC7Ir^3(Yl92Pf9DI+T}{@cx(DI3E%isil(Td{iI=nH*G#xJ=2_)@<_+RV
zu@m%=A2IznXQ~U@cZ4^MoBUu5;5iCW{IVCELu?{dJBq^;Tk|uDNyC#z)<E>oN=X;z
z=}ojUO@l4}D8I{oO(Z9SS>PFe!Af|9l}%@|a~b6~D7Y??8ew$TkeMv#=uJn?ZtsXb
z(=5Ief@f9B_16s@wZH+UcM!a9iB@k>!C|&2AVizc85x^qS&=lu8dkPUrgiGJ-CbpC
z+|TT0yYFiR-Sc{DaH>}s!tU7o0mqK&jBz@DaY(@C-gALfV^V#x(UbkjUgQL;gsiop
z-814fR};_MG=%v`i~_qIvT)?kGD5jS5WX9|{R_Wu3ctGqx6ZJq@>cvFNq=4j0wc|r
ztoD;bupJ<f;DH#*z%bF#Q9G_F7>o!x`+HxH`*yqiFKR4sZc&0Y?{&^3q3}M@8U3Tt
zp?i#-H(`y~)oP;j78m6i<$oV2@FnN+=|aP9f^oQ1OAtEkR+e72HHH+Xi%v6@9<Y)^
zX1XtT#y(A&=Cu&v-VU^eqwL?0m4_L>mo{ue^NTxXk(PiUsc|!~wq)ja*5j#6o)J#F
zGIR$Y*X=*Kv5}Qo4UKJNt5iYIshnCH6jMTrGr)9E5^QYZzDP}X@pCaRm^(Nde5D+5
zwRQV_SGi?=vt{XLesh~3zn)W3US#~zuQa&spw|>0Whnk1)Job*!mQ{qta45cf5<6C
zMt^%fSEsaIeSRdbB)0<8%Ehzhxxj$pz*(CWhPF>m%VC2Ti%^`F6qs?0+9lg-mArK2
zHU0z1y($a}FW97Ba#A$nXld#w7VRp%;Ur1kQrfZE-A(^K0&A%v_UL$1O+PsZ?e@<q
z2=wAq7V=g-zuHc1CO9T$Cr{F~fxvtQHh6ih*S)@`@dD5cAkgt}uyim@{KCgD2eOIo
zVaB)R?fY(q&xu>@-JMak_^hwk0613^2l_KVK;|#Zgr)>K>+Q8E@gRUx4t4*RtFHBD
zDvxHB6D0wN|K(~Jo{Ng31y<rm06w5Tc39E(KbWNgqpU<w?OVt_4f8nwc5fm5eTog7
zO9cQS3{-Rw&;}{Q6!i__|KDvOe4wSn$45AkT8F|^AKUa`^2fi~aK4INIH5vIaM}GJ
z&>x7KNBeTlPtrxLMKsn*%<mR!R_xM08@@YBDl8C;-S=?6@B1tTjxG4zB;}nVM17LZ
z+B|hz_p71a-Sy=hTvW_S$Ko#t9dPfWWc(p3_^wXh6=^J<HO^w>|C{c&q`Vg7cHyo;
z`@A!}Msx6{+g_9>ssp9eK(&TI^r9`_>5*=E2YF1R@SnT7{%9(WLYH_2tc4rko(sy$
z(gg$2vxEHQr$%|{W2=W-I1*<~ibA}l#SPs`d$#I80fcqb%zb$Vv#;3}#kabG3m>PX
zELE0?65kcQKWxZvPY60S)ZoD@N;=b*lvzmI;5y$?v-2_r94+GvP?Fw&?jQX!R_+FH
z3IOetX_r!NJ;0!=2}P-AA|qgY890~2jC>~=TOR>;u0RB5{l`pSYYwf1yC$mqJE#Jr
zfUM~oEZNygqeIHuGZ0QqNxM}^e6sDN-f=^SS~6dZ5bHB1X3u`#F>ShyO!<nxlgkgE
zvhg1~<*#sVi}6@U0~Xb3k!<c-RXq;x@X<60xJ;#O=si0!OU-<PtP|_0evr<@ipXs;
zn}p3y{RqHlx%o~^wa9ya%~b;WZ8q;u?*L?v>{M=^1@5r<20B|DX%G%CTzB1KKYtxv
zUq57efh*E3K{MBdkv+eE_mX3b)<v|W<X&~@cYKa$Rr%wBEP*H1LvmL=#FpLe7JbTq
zfrF^S;M?Hg7b~z0!!9DjW~2DPr?{Cd+8YyEtap4(S0tYen1z(GJ)8Ui9&4*IG%4FN
z&L3t~2@NW#9JU<&HuvN}s7WjgaAg%%%GD%U2Cz|wA0A)IILzw+#FH}ff1RmivGsal
zyUH#FgV+!k9Sv9abOT(*)7Y%E4CTmUkw#~4%Ub!}Hr|O6w2=rPFgK+a5QRWMXG*53
z%73`EiNKJ|f*-a%P-C`)akzol&u=?!%bl1_YzfM!C`@UUa6U^n_htj!xBBo8flaYN
z;hx??*huaL$qdvahw1sSUAj(~>R%b0IPGijd*5bPWo!KUU}M&Am=e}<IlZwj6T?5<
zAH9uIP<MMhi0EzZP4~Lsx<$5og+>;hfJa{F;8D8PWYed|PFMG9@|+gqL@_H7TM3||
znw)X46Ihz98SX=Wv)%xqzbij+U3}0Z$<i1II=fS?YR&dNGQ9_k3W{fpJt<Za`xKdl
z;?hP<NOZ|!9Qk<l4y;IO5+WJ8JYHiDn|9$*6jBH5&HY>v>E0(oQD^#a^MUG<yl=pc
z{(@|U!=MwUiWerkQ`W`)aoR$x4Q7uAVqOdw<FmxK@VS~9TD7dd|H|BvI`eXM=UdRW
z0Y#q5&|cXvHm8Re<CQw#ef`;U{3mc(7Rv7OP^}{^gqIGQJmcf_>(tHNsPA*6s8?eQ
zFA2b{O{~+i_p*#_pLlu?3zJauC3I0L9)3^1+M4VDoZZ!l|MK-4a=&)FC$*zQjTAbZ
z`cOZU_o6AeVnXK$X@#~;2AAb^=5j>~K8Z~QM@6R@UxI<P*GXZ+8DBxrWr>Hj#EoRl
z?{RwNaJ9n|wjJDhYaY+0W}ZcNRk(bG22ZWJf}VX|VzK({$Ul)YKrywiFYn?3o6*3K
z#Fs}_cf{8kyyeoWc!D91nB0p$FXdGa9Bys$2gbrte@+m+Pf{#C@4L1$*5I#!#quss
zLFaf`2AoVnGw5w&95n_`9Pme~JFX7xIr%7yN{K|PM&Bfx_|yP%{4ElL`lVVBygY%2
zNY21TpRdID%*%L)_j{w2{SH77IvVNNA0SOSB_|p}mrUv-cu_DYB6P#Wy;+6jTO=dP
zuZ0&AS<DQ_yZ_Q}1ew@!z6ysj08}5_-02~<hUr~zv+kJ=A1#7O20H~ytulX`px3{B
zg<j<|N<U<V0b=eG`FX)!ity6uB-IopA4}rd=e+YnU6a)o{qx`A@cL;xeAuMnmLghL
z?}W(GFgFCuw|(Sv0r>7=7P2|Z22HS&83tJ(TD{Yze^^iTuMOq@FE+VhZjvy%q+h+z
z-2hsJ3eAuNV8z@LqPVGPX3j;)h$%cGwVQ6;rPu=~()n`isP~$#Sw=*1p<O+>@u>mO
zC^BZ?+LrT46JNN@@MbY+5|FOtcLh-~rG}YQ;47m4VI4Cq*(m|S(Wxf$8Q}e9%#S4_
zOxyR+5UUC8q~S(wOAb8~lgzVXV4k)Q?@l{U#vR%YF@14vn(|E=c+a=04|3t-HM)<b
zc5;t$uASK^B<5P`^=?1RQkA@VpU_Vjcm@@aPm5=NK4GaYrsTI^Ze)acdJZ)Fk>;@Y
zx3ON-P5>P0dl2@5vT@@zB`&gt{_$$(*Jm><CXZ*hx*u~NXG^678KYG5muDfvz~Qo(
z@i)UQBJ<J#`wHl{$4O7lII`aV04$VG!h6Wj-cie6iKtkk)_{(hcW7U((C;nB&vzFW
s8~2*=OZ3bCTYCNf7#RG&)WF4^M%vRXYQY;>U~)jRl1h-0cOU)#7yLDNmjD0&

literal 44895
zcmd42WmH^E8!Z?@aEIW~NP^Q4Ab1182?Tey;O;aUBtUR?ch^AU65Im>cWDR?jr;Wb
ze&5`=Ywn*rv*ySA=+&prI;T#ZI#o~Yy`Nn_loX_~(8<tWy?TZ9Sw=$T)vMRpuU;W|
zp(4Z2)XHh4!~YOmRHVgTRZmdt!wYXLMCC<ay{e1Bcr-?Wm(d($v|V1k!tVR$hmgdA
zP5$at_2p*?Q8iD4qgAv|Z)d4c&e)U9)1}?Pg~k1^nV|s;%uJSa0Pr`fd&LpfNlv-*
z*XJ@nD?v)5Z<*P<LAXEyRPGuHpt3^$Ln-J?LuvPAZ7gGT(TtcV*llXPM9O@v9qe*6
zvAo{N%XRqbll4L^&4V~9O)##Q%=ztMO_!2vB!SpJWtB?Cv-j}Rs5CsvV*z_wAYNw#
z0OIKsvFnBM%*XK%1J6yQ%ac{zFWP%`CmfC++s18Q0<Smuak5XMnBU!mJL#&-9rE!L
zsk{345HhC<HUZ*F7vYy{ne1LMo5z4)s8W$6G%t;0{y6e$gV&26-d;Cro-L0?%UN)^
z`469RHL-KIv3I+`4z)9Dg3i4q4It}U;C8;U2T%5zj7`2Mi-+9gp0zf~_NVsjjVsB3
zIv4r2n49P4k?nRi4cVt%J}_aqYs_qy2=lEZk(VxD_advy0cg+bKe?lRLpHnK^i+8c
zgNYSLMfIs6@Ll))P2=KF6~UCyUAC>4(#51$(1;}PHVz_Eobe#bX}W7uJYA?WE!A$I
zU-Nsgi!+J(vJyxza@bcmQh>&sta4+9$mVw(;@>1=vLpq1RC?B;o<{6&<cMO>5@?zO
zxGZ<_c$}_Ds;J->D`bUBQ~9bD?uOcJPsub*%J<=-c@mu<Laj^56{>#_sou<JsrhYw
zP<R77CJpr8nQv%bmkXJ{zfQ-N!O3DP4o^U=?rXI&fTX@gURc`x7?tHBAAXz}@#9BN
zv(q;ETb~h8r)><_b=m1;KG=Wpx_t+5c!Jb-{&d#U&ux%?BfSZMZVIno@Y(D7#64f(
zu7nib)Vpgh`^_CK)FGaB+!*u(PBtNOnEp;!fQlfS4wUxZELd;HNSox`wzZHrux$Y?
z8{_V-jC#?EbibvqVc%*No`<(;6flpp%e6U)3Ev6SIk@_<%KG3da(k(ixi-y<jr)x&
z6QwvBmu-rt`3F_$gr0^tdHD%HU8-gZc@vE$0|}Uth30$-M+`wRFt?cP!cG`;U0^*4
zQg<n-*n+<SL_odjSMRKOB(L0ykk#mX$}<|wC#vVl*e(+w<r`$asIYs738tQYzisMF
zr{Pm;J*s*k5Rz;Dl6;g}dpF(H?6t40R{AR%iAB6CbHtR;S_922=>)muaYRNsP3qC}
zHRKwl)>RWkyfgaRDw$e8F~+RPJJ=ZB`SnEJz{SIDyq*z(7}h2qNrR?#|E*@rCRL{S
zR@rR-itEeEzP=v>PJ0uSan=a_I4wE9+leq04_{b05xwe6ht@?B&i^Dl`sPuvV9I=I
z!4x;s?_ozSf_QXa-QzL(4{3te&yth;fIFu7{_F<}92zq}AIg#r8_mIE9R^2kaq}5z
z!)x<yP=5GWgLt54Pj|T^3{@XS9p;Uo#9a&dK^fU6<g^EB8iZrok53q&ruq6P>@QNQ
zZ|d6b(`81^%YGTyUUdYbf=~>dd_3h+aG04RNY><Rb67i1G`uRkS(y!YmTNk(>yF&c
zOlo?~pS<yx>=F&dkKJuz2-bP8gbrf%w35za761)bVl-<RiXu-Rg<l?Bz#E1-7X#7D
zUwKzz4G$^e=q+Qi`0RI^rb>kqFDQqebm~kknxcQlt|OA}GoF@ZZr{(#`sMI#c$sP7
zh=OAZ9(GsUJ_rs{b{LqTRjx#^+O2aPU7g3xtM)h$3hvrc-L;ERs8%;m-c<7PZfpCD
zH(3N_>Q`T|xqmWG@|o~>7FJn*xc@j_H@<hfZ-`;Hc(jl+bSYLf0K&;g=`p}~2Jd2v
z^V@Q<%*PCfz^-AFL~i~I-rF^DM|!)1slZV~jHU@rzx38cTYXa)X}J*2m!|P_mu8<k
zSSp7pG7-B$<kQ1Vgqj@1l#8o}(fF6gOt$zheAg6FHyI+pm=ejDo*PzLs1<-Oka;{K
zXp+Cn8_zuaHEa|o*<(K8w4lL~f|GSr7Zh;XwO&3(eUoKp&*oLnZ!N#8-;<wF*yY*l
zaui%fr^9~ByXeBo=&iAyr9=$X?x!hfK%b05sQ?+W3Zkt(K`GifnNp_Id@#%jt8RQM
z+J1CB!sJ{}R!Ao%CTQu{S)2R3G(Nk2_&G5IjFNNIPs8s6`I&ep{c8D~KPxU&mt)%_
zjG0LEhTrnf4u9RtXEn<1>j?GIN$cnzo%mcSympKV0~9?~z6h*OSeXw3uZY=T;S604
zz1XF<fqdBkaYwzsaR?~_&nF8}^)?B0jZlgLN8DIvtxyu}9$D>&mV4*Q0K}bHZa2fr
zL!o0M@2c#_x2oib+4LCC%y7M|rkefYp3E}zdrk?Af;<gbpKy{E>sr&DFbNNtPsst)
zi4{I1^HDls+P{BKlFp|v4{BNY8c~U@74<op3}*Ry?i{Rf-stFhb$nGnQ-gMxEV~zc
zF@4Tn4T~_84mYjobT<(?qA1e=$9RhPd_Nj_6qhJkB|2_4rfg?j8+lg~)1fhMXjIeK
z-uWrvCcG8&^4m0^b!D2aX^JJjL*&*6qsH5~Zd<Lzp1vMBN!05dkHSv)NZ)W_6Te{p
z40sBzVu1%D<4yyknwpYL?mC`N0{+h+^YQfW`!glIqQc1F4Iyf20%w#g&ha|aQ#?7h
zloc3j$+_30+)=}@P5&AJs8j`3$IcWr?&jNY^U3szVy`AC#`Cm3ubMzmL`%Rwrs36$
zEoFOu3Q`8K6P?tKDmu4&%$^|54p>enZ^xx`UD%bxGcV#6bS8C2%(gv1)S27ryF1|l
zsH|hhK4=*WJho`_z`s*(i7`Bx56lu@ORrx%^!1KP+4L;WL0NK6e4BReor4rn;Tu~$
zcj0U>{vbTrI&em6eY-N&VK>+8_td&_F9L>rRjXw5KmIv(Zq`2Z`WGTmpu!s25~Ym<
z%U@bO>vI4G4xs|8pTWBl>1`7ioFbdG@JG<l%Dqrd%?>||R##((=DOq-QSrG-S<M=D
zHp8}p-@yFG7f<uLj^KyppQGi++2gjwd0|bC8%EAMh)8mF5_mY)Vbnk`Ztr5G5S`hJ
zuA3tasj0oOdZdA|V2<T(1DHKEH6`=;Gal2OG1aTeEk;AbvM_j^`13e+UrpQbKU{11
zYUCa123GKo`0dx3#tn<`X{B3bFWZ<n7CGC223XWSidP|+UXJRFu}ne}IiX#!!rKg#
zUZ<RBa_Ku5tFr!BIMiVu5^8tK@r;&hYq8kcxplP=QSMfe>&gw*==8)ub<ju0!69b)
z4vlekTL`uHKkwWybiJ)xst@+PZDpeR&H9Pa#kQlg8;Rd?VeGa26}Ks(V#TjcJ|rfy
zbD{`N^~jn8Zusc+>$uIhz-P0?(SX6`1!i`zY@CmxCgZS<v<&fGVENi8gSvLm`Cv$9
z9lNq~#kW+8df~qU4LB7dSEs6lSfb|0x&z8-b|-G^rQrr!5tjbf2)7B-_+$Gw3H}_V
zE|_UH+KxkebvKr~e#5sNUt3qbk`KNcT?^L)l~aA+;E;<*KmVhuX#A&C85Uao)hTOk
zimDBC$aZaJfv-4|En?DP^7JUA+;sl7j@4gYTX<&l+pV`z(0%7-%`DyZ8q|$g_j8D6
zPJ=UWzUQD5*0p={U@+maX7>OaWjEcQE}|`}Wz9T&^v&2W)dTde&!in;1h|WgWu1Zy
zlUhreCp@It-7{IbDtG2N`Tbf9BchHx<!m!(wR{Uy=BpNw<@u3|Pkn_I+bVe+{Bp2D
zCY5^k=xfBkK!E;_=__@ngC^HUi_OlGOv5_uW-2WME+4(>y$Y)oLM?PK<8_rR#z=yR
zCe?bl^8G%qUU5w?Udv8v6rP75H0{srr0`#NTbRReA5<R$7zWo#4q_u(KDvxSNBh3#
z{K;+Nn1<S?JdU!+@V4Q(!_2w8hzVUWlt?)$r)%ApF#;iuwNJyA&WglSdo_GbS^mum
zAAN>VEm?JnU;{x4!dkP(=07MtJcY7?#jGe*AT;`&l|h=#Ny-yJ{*DbE6J*atJ?Nx(
zQV*tfa@td^Df8iwBT(p<DOzW?f?PAg4<Zf$%HF)JD@X4j_d|m-sy=7s;Rixiod(Th
zBgKn*XAKEeZNjlAS=PJ{Qw5J?p+1>UIFL)j4=_`Ea&Uw$%2#&PX)s0_-Mwk4Nc3)W
zR^wp9*<i;9c<>NF!KPq@D4Zw%6dS(rne3U3lyesEF}=#^cYBr`Bg^O3H%ul32JRYQ
zto=#@)DlB)Q&7oQern<(t?~d|71B77>gwv8<=i@_UwZpXawNE&$O>OTs`lSkd=1ie
zRpu+I5(+rHenQ#6>d$w}CL0e2+(iX-!s_n{+P-FV&jePGl9n=ha5JC&Mn4(X_RVCB
z*>gaw=VIAr@|fbZ<f!G|-PuuV&Q%@IHDE5NhY-|rvTA;X;MCPvM`?dcm!8kG0{GGR
z_m6Go6Gmg{`osb<Xdo&p!hI8*5#R__eSW3w9XI9zqSa2%AHENJ`Yn-3HPUIEW*fV^
zA!r2j)PjP#g+#bG?)Q*SL=G)I2wx4$gGN>bteQj@vHiwI|3pdfA9341ZFoj}qD-hZ
z1<3p{vwF;E`2NIkqqFz4M1<*Z%&SM+tvm8j|2WC*o_y`LrJyTVQce@YjI9pmFGc55
zyPHgd|85x3&B&G;?+G^Kb=RZ#6K>OO9x%EnZM$rv>g<TyN7YUr5HS)(5$mh*WtXYO
zE8t0<JTO77QHUkk?RZK3#ANbiNkP=!%qB#~@8Gb%cKasN=PvfTS$An5MfrYM?nvum
zUtyr8G2}5DKIZJBt`!eI6S<O7iMR-Tyiq|R-u2lt@IK}y0!0oq+RRJHB4~p<N3oFD
z+apGjUI<cVEmH;8XB4Ophj&X?G!jkwpSApex3{j3Tudr6%f?tUH-2lZ^W0#jg{DU9
zS#&2Sr#Ymo`l^NcHuP4XIRfi~f@`Jh4p)Ezuyva*dB_{@=fzkZbJsRksq-`bM7@_n
z{L-hC3Y2dP2@hnRu#Ip-)j|VA9l|&yYvoq5a=o_qkm{YOU-?Pt={iHXsy%I-^|2ve
z?!0I)7Epe7JunwApZeAP)Takqcf>{$<gupCLP+Xd*-^e$n^6&21&!~GOIpoVj3fi~
z<d`ZhZ&CKXLKRHcjy0rQBZMPdr_>WruD!B<pWN)IOChB3YinzxVq>#;$}ya7CCv9A
zw~QtmP7di#-csf~rgsnD-`&pv0cz^i7^zRw-OO7H5uW8;3+~UB1b1XQ^64$o6lva7
zz>cQxj^5*%={L8Gcf~YF%agt#b}T7(CC~Uo@2o$(&oQ-czmc!KG%$wRe`r4`UfsOg
zrm{9^M$r^+tjS}?wRwsP+CBVUrv$+2yRPU;PzM_2<>k%6u|bi#dMCZUKE#7*s@1;z
zco(94XHwDb5NT+0Y}2n>`SYsyZtzS`OarPYaR;X8@-7R)aO!k<^kH|DvoN0UXc4Xm
z;!K+|@4QUoU&o8|Pd?#nzgdhm6taG9+?f9yu}|%O1bwBg(s>K3ht4lKw+x*6D(?+-
z*r_^q%^_9Wj5+8UG}$d{e1m@mUH&dX7%lQXRnbROc7XOfh#Cxh$j-w%MsA0yG+xK-
ze?PfUG})W4FvCvPSAFK;$no;ExE<Y0tvLImHCe_SL)z}lPMxQ-mQE*QTJ`#LQ(EN3
zXN4~PrMpa?nEM#|s2R2l7WP4cSto^^Q8(6~cVnytStW)BkuLW~v_f4_^?q1-YGn|Y
ze#|xEZ%cq8#AF%z{uzEBSDVNZ6viB}{bPyq=L{HLtKUWMV8Mb#)ly@5F_*K3%cwJW
zC!qmmb<COmnCYJLWt2O;DWu43tWfugY*#tEwYjyj9~PeOzIq@6>T%6l@;Ly(@1Yf1
z_d$nRAy7KTL9(5fpp{G53K_gHPHx)OTG1850(>)93r9ZlY&9b#6uzXi^4ZDKp7}<c
zcJ}_B=^*P?5V>Z<;hxJ9NN4GBcbAy*7z;cwFC$3e9#^#2ML4&kd7))VNar4~K09GZ
ze_!P;c9b+#pz`V&^Gi`tDDLQ=K{f4V*)OOxO`if7XxwA6@(*}@qdP|kDu&eCIAu|3
z+<);*p1%)XK_mj58L3jD)}eQ3qS9P{e%3kqD}&Qc8%$E6-`4bab9=rGGlVNKI|hX%
zC8`k&|Hw6{by(;iw11Am<drr)|106x2EJDOSG+MHc<YJ(?@>l>cfvm+PVmATr0jp?
zoIZNSGgf4?_0#~Y<(Ix3fBRp=b`+6*o*|%>ffy?G0aPXfH5?(n1D{(0zn6rrWH}Cr
zi-$eVNnBf9u8}j{-Qb0mEgX<^)qvqqVQJjyXJsO)>PHM4sWQT^h(4W6cwPRh#lcxh
zFTMHS1hm%kkkWbmDGMN<=Uzfk1vQp;y;YE4uO8N4o;6u}EE4GD&z^493*fYimJZ?!
z9WkEDmvlC0>sxz4c~LNeSB#j9^HAsi;@&4QF~|T&k}S@j-MEmKd3>_@3Eof;nDHtV
z@mul0#S@p6dZmMJKs*_1C$m!1srmBtboMFC@PY7t7Pw_+f5uOAEfB*2ytP@Rx_EdA
z^F?|05rNTLp6Vxr9h|$E+dqR4Gk+SWxC$#fE02*Po_9_Mp>S+pIH961Y1I2M{cb=y
zcx)hFUmG)C1_n;hjN)<4r+=%DB@CN|COqtCd8`@N#05P<N`oeQf=~+VmYbZ7tk`bV
zf)sFYa4<<ZCDyPXw!e*0K3h)Z^FMrpikp74KZ@cIF%&!87{9eMX8;-WW%xP{?2!<^
z4YtEsnvB~m52gL!d&Kw#$ka`2tZOAiz=1aabf?>LGbZ=>YK8GLcD-VJ(YujSitbNO
zDPi6jaD?~3hK(@?5G523)1fsH7>Gvy6_0W(BnKel*|+XGGqn0iu@dE9t+jJ)rMux7
zlB%M&Ru4E&Gs%DN{pghFs}@Ndy2X~W(%`Y~OHAc^8JDUOs3fefhOqI|YNpoj$*Z}g
z#dx~#bE$eoaw;MmP$D8AAXqN_Wa6=1px#Ro={~~8i1f@Yq~fgefWEo3r3&i>(i;zZ
z$Lu{JHRZB7^xUK5#}7{e-`gz(i$nSfg}_H>iNJRQ>U6tq9N-#-;|PbCjz9=9^v=n{
z!Jf`|rda%lkgo7+{pXD|7e?f=D`aC6H;fXKMVxc(!w4Ax`<9H@*m&!W?f?=FlQ-F(
zTWE3lBm%CCAvjcQ#V6xa1=7$BP8u47)mArgN5|R~*s!jE#YE;0fRLBb=~_oBpA#)7
zXJpsLqR4fgpUb-tzof8M-@xD9Y`QjRoA$I%zuZ8FN7|8b3^a5ZaQfcbMtI?#EZ(NL
z8riC<HY@ER+Ssvfk}#Y$Qj^D_cQKqKDb%H{MbLmK_~)>Di#WGUuarSdV{(xED%8~K
zi0#PaBKe@kqWnz^+UBiqO8hg!LmSYXiJnBCcVGnYOklDIf~IF3YY9!LH=I0<SVpCF
zoebn~=@f*U`X8;0kA{g;OfDOSGM{iI{**V=@?VYj8Q&wf+@}f{7jzFh4j-JxISfB0
z3(WCMGasR9^djH&-tBDfxlOG%ZL-6XnmrD^Q`W6DC1!t7v|Z;Ta7cA0oZS!Aw%O|E
zsWrtVMtDh%iAa;^N9+&{LLNqd!lhs~51SZ(kdDIq{bnfD?@nKDpNC@zEp$!4%a8K3
z>!p*z2bQe3);Lk~umj8j{oT2!)^DSCP616X$;(vVa(b!r`V^<wZN}vAIB2e=JZ7%&
z8Tv<MEwj2m`_BIPl667fxsD%=bLYJ>7DZ}ycvpAhh3S5zG=btb0sL#vmvV4v>Za75
zIygs4yoqC@@cnV5YKH@1v#Y^HP8er#-Ht;`pa)S(6SAwzkXjL%NUq{Mi)MCce0!5o
zC;tcB=H73-e|CRnSTJm{-|8~6Jpii$sFSXChMPd^+zt-;4IG|>Q-L7@f`0p<N(Qu}
z%ho4uOzGRE<dB-DcLP$!R|m?aE5|GncH4v6E(OGb&we!ImxG3W>{U<bepj=+2}Sq5
zZ|7_?a3=NG!$tj0r|Pdlwi(X(hc9dmg|MreK%aK<%rm+ZKHr)Mab{o!DQeGnK*&AW
zy~qAEugnAL2;?%BFD|%KZ<aW|935bLIO#`8=M0A>B+^k*WJ`59UEwZP5bD%}pZ4S`
z$Lc-beZ`{Ze-7U~)*aa&*KLv*j4?S^*&rKJXVHRKrLOM35w>2J)id0U`eDN!W>;Sv
zDe_@AipcWh1%<8n<$bm4MKHtUgDM%DJ@I^Xhj8nwc_4po<>BCMp%|)<ZX3(;?77X#
z!2_lFN9bW@%*#3Fc#?zj(dCzEcw<CUHm(=AuCbaSUq^Xwx^pQfP_<y$n_jK;4%A=I
zKdGS}vQ=AH|8U=)+2F82LngYC^q^abBIi|Vb+x)nA6;y)*xrs2A#%a&d^i#Gxr3(g
zxgET<U+)B}L?Gh`KRrFwnU9n4-|iru8svO17W;uMK&ULk|L`W;jVQrQ%J?n?=xF&B
z1-fFiw<9>pV)WaC>vv+uB!PMV_U@>!HkRol0Qg``^*6e*8v?ln4^5yP+fGi_nXlRK
z@zk-btloKNVF7$U@JG+nJ*uJhYy}YF&SkCt?U`T1-kt${uo>=duMug?U*S%mI6pkQ
zwq(i)t<2uP#WOKP?;|TXgj`e*jLnKaafoPUDWMc3`=d<uzB?xqv~SN$2BK`u)8}lD
zlNCkIS-ARKewm>>vz%eycsSM40O*$J;DGP9pU9kU|6(;xTzCIA)vq-|ei4fuY)Vfw
zbR8^do)ygyfH+cbQ9G2T@Pn4#8s0uf)YY7CSFSmhQ~2kMvHxyNa(=vffDF#_{ytnT
zx|Qi9pI3RBz-Vk|xa*Q${b1+Lka=4wq%&Oe*~L>)F9O5F8;!}H2Lt5fPUI&uZ`^G$
z8>R4EPvsXfM?AkB!F8mcGf&>-^-9>v7jx!*qPK_qsLw2kfXY5wC}NZrBip&}-Le$T
zLHzCjfJiC2ybTNS=~rZm;9K-Aeo{wrZaf&_D}bBw^9~hXp+O|O*_P5YsX^eZ8RPy4
ztu+9wq;fffq<nJEcB{A&F2`?jH|BP0PW*cTf>2|6+TxS@F}j8<q*k1_560_cY5g|3
z<L`G!KMRz{?xVrd9Y8p;HJG9<Izy0w)@YvVuRY8QpZfj#H!izlqVDcZG8`MCdn+w2
z5ulAft=>1)QxD%__I7r{%HofR>QBR!pWjCAuR56;8;<dnc6!i#Wu**;66<{GEPNch
zS@6}3j40BQ44l%p-gNvU;5U+58vRXCXM5piXKD$PYAcw?0xBEgYZT*$Cb<6aTWPTN
z!fdba)sa`Rpm2jLQye!mx;(-T@d?-b;|s3X(=K(dUE-9Pti~*w$@-uAFG)|10$%Id
z;hkLATOmX5K9g!4KrorUgYpc0=n2-xWTsOXA}B+j#l@Ut3>{$iX5{v5?&i|{qJ>P_
zN#`reI)4UB7S4#qe)pesHsfy-EO<$B3Vs-RG)IpAW7-{mdw%NfhV3OE$!p6%&I$R_
zm%Bc)RW-c2v!F6Qxn60V-L8EBxcamTV>lno%ecP>T`1xAl~B_3Pq+s#G`RQhBw9T%
ztz53p-G+9nE<E=`V#%psO1?^RpeFCmPPds#m6Ef09Ns8lMY7w@*A#l+F}X(1tK0sB
zU!5V>L}~PG+de7ca^?zu@gA>aD<IJmXyu;w!g+QfG|TbS__A8jz=vz)Gxn{ZIZ>S`
zY3CgI%ooarT{&h%n3zc|vygB}#oY1NpgjqUMhF08SA2JZi$>0J7EZ`n#q+MPJeR!*
z7?vbh$hz#S<+nZNoeg^;s?)(vmTa*{&Y7DN`9~)Z#w^+S^DS3u%kvx8RbR~0sRP8R
z$2xs2Bc2nA;N+O&0iP-KG&w}WcITT{8s@2EDc98dU9z>F%v!2!*d|F<Etx-wGE`Xd
z*T_TaBk~pg4t82vJYECs)2o%jKW#B3Te^#1xZlZ8;5!3{uFFhJ+qwOOlcnq>9;-#p
zq*ru3>$Vyk@%Uk83ES^l8ztu(K&((jf7}M3XW5JWk;a8XR*Zslajt3CsrDI=(=jE6
znyu$H7PjqguKV78_g<KB^YX?!R(m<CWBEe6g<qpXT9f+O*4GE0^VPk9ubAynaR3AU
z>$-zLLE(qoN@v*?-|(h|aQ4P^Y@j2!>2-A$m#bl_+d1nqPs{9S3&Y56-3rpmH`LmR
zF)8-bGQNueknIn{h?+-Cgwk0vP;7QDfmua<uZcWT1vXWC@F2ifXXl*`=(a+oC|o%f
ze0yfhp#l0MO>b4Rzr)L8RddI>*kgh5r_vMI|EWi@UzSm~6M%fWX7`x=wKv{9=}hLX
z6^0KXs{Ul1WpMjRZ|j|ikm+HH%!doQcy-QF$72c%CssAiNuhvxbwQ)LG&jGqY14oE
z-X3tlzVd2>$O%cc%$5k_cb^0ve-2(wMKtTf07ajK;-`xj9+Q!<Y|Ht2tfl6c;E&0Z
zzov%9=?A4<Z6c~Iz<)*7cShaqL;X2H3T5C6_p_{fLAEqD7h%M6`sM7sa}gIp$cS)&
z7&lPs3Lq4;*wM~$HAbEap##`-!3tg_E+pC^Dz5bXBK%Rhc*UjW!5D!fV)Ns|rt{UQ
z+2rJL8$YA2vWsQ_zsISVJ?7Ny-VzXG?$lDEgblgWzf##H`f|Jq7+-%R<MsM(GNZ?S
zNA4gxQcLWg)e-Kj_~VB+45xZ^q<ciO|4M8rPn+xGVTwQWv34^?c58C<i-LmG&B-cs
zPHJL!_(w+$%nOk?d;eX+9~*%??wsv`C~-BlL<%2dWaNB!I>DqYzUZFO;SXOkegqWf
ze6;!Ml<i9*Re9Ef@7<Ec!G-_4iLaOXPybN=#jCzHcEi4V_K8#+WBYYUg~f1Z;#%z&
zz22(GB+uE8pNz%1nkM{U+)#5Z)f3a?JrVV2q~DTyJuAaZc6ok`5z{eY$|p4q&DLg;
z&b-T)2qIXxA4kyIP%eL!p617ST^FxZvCR5o6G~uLEd0GK)n5z|9UDp*=A@k+T0PQ>
z5pEsBX9dh15Gq~IaX+%qWArWElqUWFs(KgrUhtk@MH!&3ek3;NSL4Mq85w{_AD&lT
zGIr<thXqqt`}(Pkx5;-2vwc)``=x(;a1XS~+kt$|OjuALtL7Yp;2`_QAm=gB*+>vl
zE`fKIlzBn6<zzC8BdPmFj!n_It?!Ici@?$!uvDb(A+<Y2O(aoJ1=Aq?Jas)@T0{hf
zR1_JV;XhzQu_Y;Cy=Nk5QZ9vUc(9W1%)-N(D$R9g2#*7W&;2Ns!V#7{$-C~OI$@K8
z6FVuMrJOq7i*Q(6O>o*0CDXYX$#%RD{M=#r?Azil`nufJ*wB65hrD&BqEBAZ{1GqW
zQg)o9H2V8#DvHO3CzMD@0g3DI?V|HAWJO+v#lhH5+t9V#8~J>6K|oSPIZVizaH1vy
z+~mB7V5yctSH900%k*UXq$g^4#p4$1FaPWHSUs;3hj?I<bc+JJrrJy;t>Mk)?OR9@
z+KcGkagg545~mw7xAcA=>L_pr%=Ftkv83*ms|kDMgl%y4F~(Ust}~7;mFLz+^Xjf|
z^a%n8x~#6?v<7!(jn$*z+VA?x+Ai*Du(MC59QGPVjE|nrSghFGo!Q?-6ikNCtQYbO
z43`!V0qG~{;X;Q6u(Ynapq%o#WMi}!FWo${k?>(!i{i&1ya%OLecV<J6&wxipQ)GJ
zIv^+YFS-uEm)g^F%Hnn%ZB-8Sz(EF)%|m<`flpI+TkBmxf+sO=SMtR~mY_*A?DoCz
z+m!DZ#3sv4c0^QZg~HZWhjUe_A~_HhUGUnf13YAH2Rqv8PT@%xU-xUWhAC(EjDb-$
zK^$)pBNb&YGyB&ns<=-_gW1oe%aT)hyYU$2BzE!gD*OMa^G-3@(zKFka-PMqkn;Fv
z1q0UQdn)KJMDF$vSGw}5QVd(_NUpZQ?R9)NotTE46tnI=#{61rg+T!<ahn3@7;V-Q
z`}M#NOpo$v^PRrfQbvaR?x+VkpL1$#BR=1@_7e<s(SII@dnw<Z<p`-cN@@l6`3#P3
zD8|p8;yDy~x61;e(3?br`;X@;t-@-qnKb0Vv$q$O%dBHJtzk*<1)ZN6AEPh*#?sW2
z#D5{r56X4xEj^6B_IcQi>b0WZ>MXGgUqbi?Iei0j%Kl0~$NB0iPOWGMDqNVVyz4_$
z)G4p|%6snn0;#<<;SILsV1<Ac-W^e_P@3L^IRq$nMstv3UKFeg$7oZP60hrOhtRG2
z$Ji<2^zt;Vw(%enKb_)au!tCAA_G0T&#*=sh1=Zi`bu@zjjly!6sTAzvc7i)Y2=Ok
z#o7{>)Q6i~utJ0yiPo3570*@~+65y-gstGgjJBV|;hdGNy(qzOGHo6n%Qh1B8Z{Nm
zCs}q*8-m}w?_=xFEipMiKddpmWao`svw`@LhMy#0Z%4%fWuHYnj0TI@H+{WG&7bmo
z4YPYZ1YL3~GL4>#X`>1nymD_mJkA679Cr33tMA?b^5gjhD%g>$$^)kk9`$XrY(h56
z8rS#k2tw|Xye}S}J#Ee<U1v@)GP=OnWXBYdC#E-VIZ=mu$4{pqH<0Fs0564xr!c^G
zLBp$_rI&?~%R{;DRMFAR4|+SMS8D^xkhAflAdN@o3DPk#ZWM;)=R(#tQw%>JUtVEv
zf1DG`o4pNQEpRoE_WH>D>JN@NqGtwGj!DWlr&Zx!O~mvh{@ESg<QQ$2gEvwh41`~v
zPp25p?^Cftwn?6NCMNG+t?#zZM8<CQOgauvO(~}_6Fq`$+dmtAL2s{M*Q~&hb1|~I
zSDUelF8QJSJ<qnmtlSwmnEY{M6rvi5ZVpk5EO)MnNip^FS0{pS%-8RZa;DgK`eZ9c
zI<x9;J#@c>zn2>v(`$97M0Z)10=$Lm|H&@^5kI|W-N!F$HD2JZN#_oB?o$WEBHP1>
z`ITkk_RO^7k8KL7lFHRB$Ive`<2$C`Gv-Q)2NmKEOwGskniq=51GxjjoP-Uk)2_~4
zIf|0Jwduw!*YBEsDATQuU5{FssP%J_)Xc0nXBJ(0cSHE+?_IW+ZJj#OpETg`lUvwt
z_c{vxI)tOShQC~k%>gw1OhQ7dM8ND~hG5#8;r`UlyYVbc(6}Y;e&iyjy3{CRP~GD$
z7yZTf?y#vpkiCFYf6hmHcX~X<K_&r(|MMeZ<OO-E951sRpbt|lJb3>>j<U}d!x>7v
zKadD+fw!@|gh>u_z<F}gg5dkgDCww>h(`-ZKaz|?o;P9g3%K}DJPUF*@=hApW;)X<
zQ&9oWU)@$GGHs-zGTvMwLHhmQ3o;VeUlfkPZzU1R?~<oa0~W9LlJ~s8r1awU@QTm}
z?wltzr@tU`gpS(4-{-i~wGnQOYsn$&EihFtIQ(^|=oJ#u5q)Tb;dm@W6Z{tUAAuEy
z>-?~;xKQ|<eOIj?mh(c-Nqi+$vshAw6p5>1d;1;G?-Rv9Q~19Ai95Tmcuda_^}wAj
z`0YD#{cX60+jnAFbFPZQ5rHcfj`2U~wf{BZiNa;%f2Civ|M$}G|7TTEEKoytb{JKI
zacTPo21fjagoL17!MOQ^1O)G1u3)hE7yS4fl_FWD0EU7>xJvzria9v8eMOGasjj$y
z<Q<)MQo_E;m;g35_McgW|H#)t|3kk1=M+ao>k=9bn5n$_I?#PS{^8KTK=8nt;a?G(
zNBn=QEBd`OA7IeYeiE8O#;fCH%}7Ej-L+W-HzXR#(Y3>{{ML%q#l<uf4ij{^*&yyT
zlfHk?;MAJ^x_gGm!A}f8-y~3DOX;biFDf&|h~_4tjFhbahjsxL*4E5O+5M4#5{Z8s
zezbJ5+6L|VkLJF!nM8z6Wx>#Lm577Dfe%Q{nf-wk%(V_N$die}`o{G#>dprIgCd+)
z#<M!<u?CiYw($tq6M1<Is;&JHNhM+c=)B#+I9hGf9HR@yMVciHj`i+G{IJJHdP~iu
z-6@=i17PS?x}EShtqYhy4eKxruq6{CrudcGXuD4Pw6Q}P{PkJ06TjzrxzGULSTn#v
zM~AHQ>00-r{R&AyKtQU18}su`*URRl$V*?n*{B4Y*idiu0lFA~4bH{51yk1wI33nN
z4R>P^{nJJkV{+Jmnq?{@QS7#7mlr__JIxlh4=0Mh%V<thK(x<mR3eXOL67tHuP2X=
zZ0`_F7ix_?;S!H>@fXrNtg{uDN#nDPo@Qrg_+y@mR+(<{D6t+(FHvFmrHK<8!qgNR
z9|Qe`J2u+XC|(w|^M%>fvUaQ;6e=MOET+D#`(ZwM013bqlyZZ2!_KCu-6tzH9ICN3
z3CcF4&CZ%%Gd(_xg|5<}wBI~>Q2NeDRIF$S^<mazI7WzBSy%d39TLPm4#yO&Dq^>|
z7QVy~Cy3uGlQDZu>P$ovJc91zgo`V&()L;b_P2Q*TCF<8OIh}byjXd{`W#Q)2wzSQ
zDs2f)tu3JGhDEJxz1PIt28u531fKK^45L-V>g8&9Oau3q`#~blx8h$2$6A6dk0c51
z*hGXsP9;gxanxw(bw;xgGUt}3j>#P)^XYjUMNHVUdK?h3#t4R%A158}h<mT9XC{cq
z!yamzBM&v1a|5|qW=#%v28&%Rq}62PfNMC~Cd3+*S^?XGF{9gilR1N1{Snaf_`n17
zau%6$=6$!|#%YE3J&h+9?KHn%qoEXA<N_;PR07*$0lPuxse$jO=%@mXQ6sm3>Dj4$
z7eo6rrNr%Tomg8hG7}@g4*a<uGWFB_SrdU1=iQ0#&A`coy|1^&-UL>TozW~z^L*CU
zlo5IpgQFVw1#Ix~gSu<ZU|p_@CH8K43c3W?R2=fDPd552LMycHX!LHuZ8+@G1wV#k
z%Zy}O)S|t$I+4-SA@$n_?%zN$caNyO;RFWd5(P?*Bwgr8lGE`LH;4L%lo~_PsB#4p
zbVp~GhVp#&N*B$Vd=oH>aP<Tob(Z=Lz-Pwu5Dxx+H=bfXx8#=}%xS0PtcUiuR5a_<
z<x<5TAu?xGCHVFlOCzb<)N+>6YzGXq3FPPJpIy!<j#4rD`T3P97lfqhaw_SIx*;(M
z<A_lj1NE!CWXAaVP5C4A2CsukR<I@yvI|hOsF$$VCMIAP;-S@JJ$VFH&YhPZ4C92~
zvJ|}^8n&h3FNXTx4GkCYIT{JHwlIzg;^_a#6lcgyH2TH+Ml`!fDV+Uq7Uy~48>N+r
zxNoS@w}g6mD+cTyi|kz$1O^ezYb<FWie(_U2vbpWU`(d>hj_dCoTROY1KkrjDZ>Sb
z^}C73yk|0-e(P^4qPsG+PFjVMjKc}pej<6zS)wOR&+SX7wI+#!nNeC|HD8f#1SIzF
z#gEswp_<>(W83<F?iZ`5PUe;C#Wgr9Wc4PIMN3h=_i|2IGRQQ4IW~iyZ{70PekNQV
zCSWtP$N^1e_{hMLaYk1i_V5?{)ZJ!k8dSg=_hx39AkSNrk(#dOaLEXw&E4?~7|O`+
zJn{4U!<q;RI>cE*HO<&9<4LzST|dol&o*0-Rd-=$qQ|@3Dh=3r@3!zXzu}I0_;JQV
zlSO%IFRYVt2&Tn-e{*k(zo%mXhL{>QQS8>ej%D53Myz<JQO5g_I>Ms$5l&~(`_%0T
z)ti_k{fG{}*1WD<mxT`+iz=PQ*wj?UVrN0;9n^C53i@L75XhU4Ww9ZA1va^!l4Hy+
zQ}VNr&sdqs4`rVB2Dv|E9BRZRrw9jh863UXE56-<aMVnw-aGA;=XdCYtgOU_yOe;N
z-gL{eP9}5Rh`OIxtAp5?ooAAX-c|lO9c!w|ukL6E;FP#1@xZ^0t^>2K)%U>5tU8?1
zH%-U(>5A-~SUWw1PoG-c4mEyY3GkP*lvYzqPOcrIy7auK`hqBHgQ%7^ffM8{ZB!bw
z6g6H%^YO!5>+O7vae?YEtuw@Fu+oq&o}?VD16q~g4VW*{WM*HmmS#$fngyj5<4jy2
zhH#d%52VUU9j%VIwNQkb+&(3nBFN>?7)3JDHYd6EQ;8MzroZAC{MQ<b(t1`-;;f#J
zr`n!?JTXl&JY{rIeq%TztA$d~eaOF&lZ)#dF21kLu$S_IYh@v5wVF?#J`0sN5XS0~
zY4wk=KwZ%Gn@5=K?py*kt1xi&joa&?gsq&X6t}EdR+<#217cX$+Fw_&k}(XslIGo=
z2B?VIS*mDVkA-q=>0cbnO6`juMe|l%aYKKyg!um9DK0E7&I>HC;>|C{gni<7J4k%g
z6gnR_urw4?(vRbXM=fKJjGKh0CvuTd)(x`j%z7pl_FutQ<|ZJb5-Hk3zgqel=XWs{
zBK~}DJk;$cNK+6}kWCN<W(s&QFtd^}A}F44NmZzNR-M<w5+m4azt6fkchcbRN@9Ol
z=R6<{F6H=4QoMVNk9F!MdiJ)afEyH)zmWrqoUIz+(Qe=02b9fwIv+i$gOY)|^aC)D
zlNEj@YU)qv{4T{m9XG|8XlO(QT>r+xGoJKTzk<=G*Zp6B&TA13)7e*tMM4&f3)xrG
zUcx4{bbe`Xb7<*z9uIyRYfFZ|?PAS-vZ19j&@pHHl+6PH%(!+6NsW?nXx}UfP2XR6
zYn6xFMNIt+XSe9*8DUKlJ(3rlV5uroEs^!Tzl{4QbN2Lb+7%ChKrTnwyTV#p?AF?~
z0k#1L=phH_DiX3{luny>DVMz+zxQ3^3knMShK7gnT+nHy4HPIb7k-k=%<RnU&K6tE
zV3|dHPH=-V=R~A2?$h_lc$|{KNYAV|$}NU0GE?fBS;>h_ImclwBOjC(=A*kbK)XL9
zh!mfx|K45fjZSVp95qb-E>~xv5b}C^goqR)d|#S5K$W3FQl|S+-+WJDGjlipfyGCM
zl-pTdk9)GlMz&1_QMM+z1>@Sq(8$57;alUXj`}Kv^7f@cL2`%-nr>fK8T}zo2SG9<
zQ)`trJ{;KYp=4LAT$J5At2gf(hl1um<n?rab^iQtTA<hBjEaSoM5X+zZC)0>#KC7)
z|DI^+J9O!pe%n7Pmc^sm35pq-8O8Fvi9mY!xugmoEIVODVW89%=3V3kCsB&ow#k=b
zZDCDP$v*q)^FMyE?YCPI&gm5uEM8X!bR~@r>i|L)jl>y@0+qXp5H`-c^LMf-s_MMF
zf4gg-_!knulbu4u>8+igZ!{VYPNCbY`rPH=C(ILQ0D0!x$|YzLTVwe_zgF?84%h_B
z^yDoIwha^1H1O9a-l-Ob;xRoUGS71x90f7nM4_o~&S@W;s4}hwDM(rQ2x@auTpXRg
z!+HJOGhM08#joYPn`W_tlN^MC6W($ib%0JdOIUcDxFZm_03ibE4Eck#Ms+_yf8-Ca
zNcaV`(d`P$003nR_`ZY+SrIo*K&jiTrhVwt+SjZ{`{g&yOp_?@-PyY?%1itD`iA^Z
zp<bVDl=b6?;Zv?BF<4;BL|&Q$S&d)&ma23ICv+a3QdIsyTi5+%S-{Hh1lqV=Rd!R=
zf3f*Yy_u=h7&v`k%%uSMYqJ~l{-pJtZ!B(`<Ub%RSj%K~^^h+52{}u0vlA)%F$E8>
zhJ*h-L0Z_OVd<5>PbAEeSnP=4pG5*!3_x)MJbS#|j-fih!50g2gMZH8Sd>uxmHz^M
zfY1MGQ<10>QTTzYatY`gWWo~*pXi10(V2MP-18NgV8Q(^bSXeYMKPISRkZ*HrWV;h
zF8}es4E283fghPG!_6`8*{vy+Nur*RBREvzk1_PA2P$Xs#8LjCOuNc(r_3<MEM8%5
zX+_q5d@-2+zvNlLh~)33(rANmY3S*to)4i=x)(Sb0P4=+ji#^@n-;$Jh9~2h;5)QZ
zrQuBIJ$n;2=;8X9rC8=ObYtU_{_%gTK0N<p57&RGBY=@XF<asvH-yk+D136Go}Zta
zu(jm;=ei-pZFpjTpzw3T?<PCl;E)iL#d@<_IFQ04Cy%J<yqDdfz4<RK1yg@DGuwo_
z1P1<;sZPNI2IzXh6ov)lwwdeO8BT~xOJhRGz5Bdcuh*IPnY4*oy^uJ<1uZOEp_`w>
zDz5SFh~hup4u<FW-sj3^@RVv)rNfha2!F%y-f5i?jZ^KtQ*jYY!Hw#$%s(x5$Y+U>
zH8H4b_My~dR{Ny>f2)H+*oTCTjm?A^Qj+6Grdh3rr@E`(>4(H!F7Sh?dw9G`E2!gN
zV0rf_u4{9#*e1R3;fEoHC@PH(DJdyzz18h-#2<}DVl>%J!o-ADPhY=3(QJ5l7-lFf
zEqzzRudJ;6cd4;r<+b%h*2SRHMjs)lpdy+<BAu2{H~A%m(pLBOT90)*oH%<TE8Fw2
zsooZj@<m+9&7xmI*4_0aNau+i8ED9q&(UN%Bg{5N(D|~mza5nvY&=#o_A!u5M`ekR
zbiU;SDU+dWZ^z{tzVN@77~K9MNm(8d1x-Oa5_rLMwSGO=w!b}@o1Yk6y6#?kMKySA
z5t(vl7rNm01Twfb(5vzUwB_FlBwea79SAc%6xx;*nVPaPG7bsrg18*aOc(R~ahtCg
zL+oW!UY-*@u{G`2@%Z8V70&&_II<K%_1oOFk7PwW&#0~EtL-@c?v%H>NhP3Lg>khu
zC7@{RDXF`5-PoxhmQ0?vfPC41OB6!p^YZ^<?*S9}I*9kmVPHUMU*JTui~5uSur~-&
zUc9wpl?_C2Bp7XgIvWmxN#|>7eQZNATK$M>>w#k5(KQ{P>W2nik6l&>G`FPvoPybV
zB?|^r8Fu>QB4-E`Rendw3X#KD64$JI%{&xw;g%gzZ{^#=Bj1ThgJ7Q@ITMQ$&~Iv*
zy^54A_bd<*S4X<wc*H5_x!CL~9slzDtJ4=VhClH8!$eqSaBL_kJbK}(!hH$JK_iC#
zPwIsvnIirGL%%yZA0Hoya5Dt}=-cb-@*ax={(tbYx&z-90tE)eBwgWld9~0ENqk%o
z{}km!+Y!sbUKV0b5!Z2(hzFsja!`L&mN6L%nev4j(WoYKOgIcvSO-tD21Xr^l#Isu
z>Z6O*w-tHA9z6Sl5Kcl*SEkpq*CCWfMPW8Ncfy)qFaEf3YHE>YU6Jc3FREh<4&b+;
zgNToWqEcrxophh+6u*0{GMuYG>tUWeaxcfXbP{wgEQ$nT0EK@d?AYeyDaieZ#P1GD
zd>1GCxR~XAebh6O#KPgcBZEoyk#W-IQxqS+sAe3J4{LD(A}^5yb5)=%ZU7+;8}yaJ
zK#-i<Jp~3bOa8&d0cg#uwCTO|S@IB>dLGWq!be?3%?(So9Ipap^=r-K^ze@Wy<HtG
zG_Q*KCuMV{WqOpTbZ0&QU&Rbe*ruufc1d$hrQ#?CKInd|zRAvr*6XISs0nA1ykZ#1
ztr_L|dvcoy@;x4~(`$C69L263x{q9{*85<UC+ujBvi=#fLrhiqu}h6A;?tf1s(jIU
zAH$A;vc4!PM<_}b+-L^l6114ij+!_0*YDg-K*=#1N$i1Vao&lTFtNk2$?9SIl_CMF
zL7Xn4i>eN}_I2=^LjAIy*C1gtw%=-jT0nlwnUxQTUMD~4W4Sl>?{i}eYg%rYT`LXZ
z)tPbhM7{^R=KfgBopjY*_=v%9#lf+R3~tbBL9+_knC2_p4JdAPz;p<xvTR;npRVH=
zgzFuD-x1UBlQ>MkH(;dR?OCxZJW4-P^ZW0U)t|2P5064>?|+LRJ>zarz1J@gG`4d_
zS5ZkcKAW<4L<<uIC~7di&Q49FKoemYolnFSs}zT8QhkYJuF+)N=vZVQW80Q>e_95>
zy@cBhlfvR~AJ*9))e+*Eb~R@I+23Xq9@y&3-a}Q9?GHLAeyb&^5J@z}tW4L+UttL|
z_*x${#TCpvZyK7u$47xbmUY)#rw{|<?opLy@T~$pN^;g%l9M2EGu(zrNJ%9#j;qRx
zb9!F_CBVynG!%&14{lfj2+bA(K#1~dD&<XMIs!b&XG`)UhhUASX%PWJ4|%q0JIx0C
z%yLk4*My!_-+D=0!QupQwhzUq51F;V5-g4gJ?9^}3e4FqYn2?Yf_K0LNR>(wqS4{t
z;D8yjv$NmTbmX=M;yxIS3Iw8jY$u<mn904!>(%{qhxIAlhU1v<Ma+m8m>tT#)~C-=
zo#eMqzXUQ=?zESC5dB4IdJ%20_EuGc5BwIz$MAc}FbWYxrc#9gEvG^e&Ce9B*Cuqn
zho}x$XUc8!CWxCytnf`S-^KRPwpUFMP_d5tr@f7Lzg+WD&;6$TCDQHVxu*4|)~D_O
zlgo^>YV>DY6!Zp7p2e{Oiw1}6UkEC3n1>@^d>2CNZAKhW(jp5xS*3VP0P6$%^T*z`
z=&+zKt;M?2qE)-)@U|JjS)PnA0w&2((Ah0tov779r>Izoh5+B$h)5?eK0c8R!gz|6
zid(Gq82>if@{6Ri?0cygK;+uyc^H9rVv{dop+Z&e_8}a(rZSDzC39ha%~Y9#>s_G-
za$#$EKHvK6wbAx;l5;*w4fTp;N=lVh!#fhxzB`t7@f$hoaY|}5WpK0ARM?|$nY0ZR
zL|Fl16B#ye+ndnWYjqay)EJFlQWTC}N}?iGy_=aW50z-F=jkm<#y;~Q?0DA~D!Sxu
z>qr`jaFjrO+(#p`DZa6_g=t}7;hN?5%HJaMt=XN)&?|<-cwK4G=9J*;kv+VZ56(Rs
z2uHnP76h!xvum{{3&783fN9cL2rm{xywADyL!kdRd{}N?D_pe_`)NLrc^BK{3bSDm
z98ICxaUp0~t&8YRsL+#IOw6P}d(m%A-a|ptEOF-NFfU4X+bH)_BH2t5&i&{}B8+L`
zj~)_HjO;<#hCR$AJ1Q<~&8))U-Sd+n`r`6$6l&3{H*M|V*XF{n$5M)_GkiT|)*Ky9
zqbG)Ky%$4uetvgG1(U!-3Vf=Sw*%fN9worz)YE~`XlI=q-^04u%7lua+s^s4?6Opv
zbR=(sc~Sje<(HN~^%?;YO!K5GrJN5=<Af<8N;%c3C$PK~ogVP@g|xE|^;W{;R98n(
zJ9Z1wdr#5_YL&H}5o(Lc@dm2L#n4YiKKPFh4Kc40e85TlB4P2{DYOOEf)tdljyDPe
zf#*}D(()w1fB)02!kzkz?uNUIq~D4+@132UCD4`1jtWwV{7E>ZCkklEHLtvjkki$8
zFWLiq{!a?6%0B0D5cpTYCNAGD?srSCAV0<DEZsVE{X#G@&4>tTZ)R4%vjS=u$BLHG
zmpfck#e+zV`_~^~%%d}iSG4g;kfZ__&F%@-`?-Q@F0qfL)f*T80QJN#?a}oSgG^;x
zoNPw=Fp&ipfgAB0a*c{GUj1zG!IZH_So^G2f7Pn~S~#`Tl@>CSX6qgFwr(4UH{fX?
ze)z^Ba}vgrnrzYOBNm?1A*}HEUk0)BTz|ElC^LL>z3fnNmDgn6_G15ay}z?T)A9C~
zTV|^d#-t{5gn(kQ_zYQ+l7ed)oCKtFpk!0Pm+uu3y1Z!W>+k;jO`~vIyYtIbC^{Vb
zs!7KNZUvOA>iv^KfdgNF?f*(E{%805|DzO0|NW?>_st2RX>e@*pTf@s92!2hcNOp9
zi?7O0z)yid5XoN#E;JgV|EnqaIb;8Q!v98+0z@(`wz+-uhJnHD@Auzoeu!?Yud}ka
z_Z9vUrlViY9sE?H;<MRB>XR`sAQSWbIm!g>N9OBo(PZ?T8mUJJn_4Ng)5&(%uV47Y
zcX5mv7SO77;*5F7V;j?C>$c9<`^<F6*|mE8?LUbX(1+UuFP}ZScl>nd&(%Ltg@wOh
z<GN^hA-=e=3L(*S1oZ98;f)4?h~BtkJ(CN=IGJROxq3tS-zi~TYXOEm0PzWn?TIqC
z{KGhJrcokCnyr)uXM8x=`O|<2fifZtcN}8KBb?JCd8m<Q{@hkxb#iz<)Y1yNEp*9~
zM1A$s2ok3<s_~`}BeSP_%kCK{2$O2EarK7kzf_?1Y)`UYbXSEyAp5-{<36m}M*ok5
zfEaP5M6?5HV7qMI|3TYZg~ic!-MSDwcyJHy?$AJR_XKx$w?=~m4=%x)5G(|DcXti$
z?(Q_OoA>?xwb#F8U3(qu(>|!GuI_qjK4acvOziAEh`x$y^x-&SXNIFRkHyrVUK0{R
z0mT>w&j4K!G0(j5DYz1m;OKqWIdeF-9m;eD^Kj7KK8cL!pv$WFjf(OJH{G%a9__#F
zv&&CNWQQo0g)Be(JMhRwK}_drQ&@$b$<0M!GFNfL2MDxbiG1k;dq0rS5|t<vqpRK}
zmpLc0+_Zc%{k{J(>yd2x_k<VKRA0O86RC!cYmZorpkRGas*h!ZK!~a6533by0KmI@
z!-&fxua^R}b5p8|Cu;&S$f;}gdfSJRL-xXQj+6GFbO8bqIRY`cxyqwB;!R`;l<qt}
z(!;+JB%18gpM~=CKhNr(RG|f>{w)n_z0p4rHAvAB%39|gB`ah4L`+s{ZS;Mmt4l)`
zDXCeZADTzper4v$7pILcJUagZG1YftGBQ7{EKg-gzvVx>ykJQ;*1b~`3u}YtjqxDG
z{HP_&)72J6ALy=`-!X=|X>>XDVTCkt)t?PkXUs44h6d4tf%U*&%hwEv&13nih_V}j
zwhXheegtR{E$-?>z`FioyT)**l=^xEz=E7hd7;yie&&D9B`!f*&(Rj0?1ERn^;JgV
zyZa|6O=rCOxa9M!R87Ww{!j<^2POB$lPM}iBF^-4l=q^J+<Xei-C!q;cgQrY#Bzh8
zxrxoZdL$oEd9jc{q)eA)QG=pY{EuZG!z<5qeRpacO;JN*%L8MgyC;IbUnB_PA=VhU
zM-mG$8H3~6m^f2H&eG_D1G(dFU6>vEtqzrDKnD526_S)S&G68{?o`ijg|u?}h|i|%
zAd43J_uaR)sW?aR)3v~DBpyw1#rD{Ho+bMzT67+~7e6#I2jQSB%d*JN)EJQ6xY%25
z%DelHY1$2_liktJ9W0Yfu!9vn#Wj2|J(_P#f1qPy(A@y|Lt991`sjPu;4jBHhO9Eg
zKIYoKV7@*WJZ#;pWPDV_*w9UJ%frn$bkJYE+}B{=f3Y@d2W(<fAUjMqys8I*RTiPD
zV*x6?@B);dUI8rs7<+!1YX;Jy^8r-|+_x!|42Kh@^+4Xl<H81np4uJtOb;SvJ2Ecv
zR>tQ)tB>3)M{qpTF34fK*FRWEo)=w-OSoVF7V6=nw8+093p}u*ZIjICh;_2Ot)6o4
zA!UQ(%3vqBeQe`-4Q*?yA=hQS=+dh#0epvvd+s-tCjes9B(%nJ+@R4d_%tQPE<8_g
zr4}@iljKs#Le>&AYpgIO*1ci}Tz`m)^0t=_#1WYP=XO;xLk>+j&9WXlt+@>~#1$SX
zBNXd+n-#AM06L|69~1!m<!ZupPPSEv&;4*fXf(~o>mfQfJy|9#f-BMwCtuP$7TrLP
zg2gS(24I6?T*nBm=MxR>vK<r5bpWJG<Ambuq2X`(<#ZMgIRCR9OVLi;3Q8HhWA6AY
zF8M=O7+pJo?)-f6o9@$tdrWb@JQk!R&$8MS+&3;9*!VO~v5{>{fzy!Ut{JUOdm>S`
z_i*&LWb04+{w$Z*w9-*O5Q>ir;VMBQwH17XU_zQmdKjF;e-)Qx_t-JZ6~e+7!fsnT
z45Xj~lCHY!e~;TX+qu)*aq!zw`<g@-K*fwQEyATCz(zt~{}AjP%*H_nNB-7<L(H%+
z$1x3Ndb{}pLe<5#fYBoGe6CEB6HEYz8#Zeh&qvABc~iuMA)ra8F`%=iVye#ZD^~#-
z;70$}1U`{#4MCqnSVAohPtMw(Su`h6S2MU-QH&`=Emghwe5Y!g{i8zyvR-D^#<IHr
z8u37fY%TM=JJTbOp`CUZIqvGJ{V?e5&rI$y#PUx0j&Ml-XxD6Kd%&|k<7%(bcGhrB
z>)*yss%->U1>c9&Qa23|oAvEUiH4b}*SHiUB(*7|JYBjG&hUCOZ=>R<s09}97|-eP
z0AuEaZK9vMTg;@Uk-&dWL7l7*3leTBoLCe)w?1gh0$b$r9s;cWJ{4?<$l?U%2pgvx
zvHsJ6UD**wnW#)~t5s3HO8nen&N-=IG!Q`lQS7CtbeZ!AHKONnjA%m9N9cFTvcO>T
z+*~Iak%IqAq&%dp_Tliai^+r5YC|caWzlXVL`4%rq?d*K;7m_e^eEO^I8g#^A&!f4
zl{SbMf1-E||4_(PpgG#>?TrSBJ%1O}XL~+-#9ta$cl+Y=E4zKevbxW_;b&k=9@6+n
ziSM#qY&V4!(K;+7TG2%Gv(v~qQj@gkZpr4ES<MuSJ`C^!cwydM!3e#Vqmm!sQEtrx
zncMjzl1W%QQ*n&xJ2Zlfni|93Zuf0$Kc`v_*^WAeY#+3a4!&;_9Hpwuw}8)7;LLky
z%qz3dBU)gSfP-GlK=%i#RXO@X`YTtVpol%pTwii=X9|6#>6B8HVb!4|X*lk3V?iYP
z_t%MO5XM4<MD%@RKZi$vtLo$ybh?GprFfn%0zbL{aNB~z5NpJ`|NB*utesx;pDWi%
z*4)uy{Cw-naM64MoEd;g!aq-kl2AyXr9(j{$v?aaz4w1Bs7$hF49~qqh%LG10EVmg
z1O^rdkA~MKRj>EN%$fQZ2cZhx+%qN*O0Kt}uY#7~)b3~pctGHe|CrNZ4HN>`5!4tZ
zxf@jz7o@-Q(ak;vy$ij%3Y8a;Avn#DmNEpx1oO<$f53r-B1CJeZH=$vUB7`o?z#ju
zo-Z*$Xj?7Nz4u)&boTmQF@lPt3<HgiK!w~f2ao?FgT|UwkbbO3H(7P_Pmb|FhHW(P
z-%2|=yv?=N37`re+%an9z>8X&@7xFz!}0RC_>`BTF~0*%cs$0=dk~&{j9*3qoys5h
z<W29X`2pw0f8hwoXeeb2>RpP^$k8bw((6BUU>=pLt7|T#{4@di!GZ|R!F<rFKLWo8
z8-~K5W4Dj=9p&$Bv<p+5x3rLwxhsSy>$%$5Tu|!$l8j?W33!ScM$}nF91ge^Z?*3W
z+<W0CIUk)~GX<Zh?g!kO+7ZnWnvY4XKWp;-T%pkzLoN`_ha~qDhW|{B3&UIatMooH
zK((;ULo8f>y7o@8vBJu3{N0CFt=Pj=Mb(W2@@>J&4a?)hS=`Z~`d(W<wF>JeBymqc
z^-6gt8WCQEM9sX*u-J&tG*9T@suBSM*K)WlOZ0}4rAQHAHu&#R!{>5T!Xf68O2p3)
zp9n^7z=-xe#zm$+a=Wk;WXS})l})#bdl4X(qY8IRz$~k$Xl#r!Js#5F6h^Z*Ez7r7
z1kFNtFV^D^9xpYM+j#vTu{l*!)r|~RjE7hmldAfcP@FVD%$az&6q2Bdttpq1g-oP_
zcs05#Hz;YAD=`2&JwJi!OW9X5L=T@ZD$2CiJo~);DhTppg7bE6k20DTzom~5Y0J)c
zOVR5K?x3Ct6NS1Ty9hf0Jpe-iwc7_zlhVIkmeY*cP=Wa9>p^xoradUN@*$Ob;z61o
znu=(%utws#z`j9mj>ymOm4vgPMD#M*j*oA-Yt+_rC;z&Ka(@3(39?+^|8v4}wJ_cd
z^(KbZ(`7<)3BtR%vtsAVQO(IZ1$s=xI<X~E&5GkW5fslV<XT^m?*1|gwU!o~_OiJg
zS4P^T529u_btDrW(+qZi3+yIe%x@9OWt~r?sO#G^82*gIxtdYwk0}~{n$3v^<C_q_
z?jUlx)WI%=m<-FU(-u^D#<l17D{nc@GBAMobx><MMcSX5Hruia(4V?>rKMH|jCLku
z)qSG^L6oV+Mmq51=*W<@1sl7Z75IJdaB&j}aBzVTf*nhvm>yoaDgF<D^|m<tng6GU
zBKbc)h(rLnL9n#9b+Yn*i!DR{`uw9i;N2WI6ub7}wD%OoVfWNFnJ*jZI}<9I%0MR%
zjcL8fmSGtQs<am{EWO;n>qy@A(gRV7Ec3)=<KOuzW?k@vILUP;QB*?%Uk{w8@w7gh
zP|Ek}gV^N<PU;7A$p)i&binxg`=bvS=bdx&qLr4FIgsZMvV>Bvj+GXxRt_UZ@9Uu2
z^7gG)5d%}CdjD{%<iZm%q?k^}=9+vzyu4PAy?R)t^xBjK6+$<m`y#NszC_IAUi)5c
zilN8RhWs!u4ih&lIiTx9B$q558gygVxIR9FzFY`cznT^GGU;^0SM??rxDkprUTTvl
z97@lwfskC&7)a#wi5vMZGo_gxh%c(e>w7&@3GLE%yaA$`?&;X{-d_R#6jUw8E4r0s
zCU`XtJwcLlv-@gSygjE4OifFrZdcemEU(bA?yVCN(xR5m|Mj)Bc<Ns2-lg^L<;42t
zs<8U{-Sf=8Hhpoc-=oExZWib+%AxH8UvSU_Jdhd`G*r)@i_1e=K5=@d(wa{X?bAIF
z-mL=UFG<@+noxFotOd(O8YbO-PjJ>48Gdo@f`ae%fzo4K3a_?##YFQ78s*8D)VoCm
zdK{pMX+8tY8&K60{O7`JhBE>>3Ed=$Z#QWuguQA)HFp%X?v}I}o0fV<CBHDLPFTbI
z=NIi+B&|o%9@SSZui>$B6Ysw5s9USsU~)fP#Cc(OJ02Atgx$+C^WJY-)JCDKbfVET
zH7|2}8Bxk_p6k#fq-Xh;0*p)e4##P+)u(shyU3N>$ffq5jRYiy@PA1^8mh{BLhwwN
z%KqlX*HwZrTTPDMq?;iTRZP^Cv#YH7kof^|PfbC3_I=3eDHCydH|9mmUn4TUG1yPm
znH->;)2EK(bZf;xY%3fF(_CMXe}K$G9<uEC_Vq~V`eVuZ{}yY;gFrDQB}~KuZZac~
z8|2dd_QiUbe2#6%syFd`H;z~|_24e7dpuz8fZanoQ<WY@noPoZvr%PUj@GcNzLgl`
zkHd)Fzx_L961`2kP>c@I-P!J*puIL?W%rv}nP(sBS<l-r638I8>NfI?exx3{aT#Cl
zwPe8YS|7#<pZN-xAsfCJAN@Ojb$&76g9qLw^5bc^(G1e=j)K@#T_Q$ruoC~&cKdJ0
z!+}orwuDiSbq18>%w78J(}$k-RA2s7D()7UtM2*mt)ngN%5e{kwJEn${=*n4&H)_t
z&<2UZC7Bo^FnmGyTmku8Y&BNqDtbS`sOHNskx2J2lhDV$i4Sql{d-m$$C1jsW`sHj
zJ(pR#$H6a@)I1nttzz+i#@*fxKWA>tSVN=Xb2Da2i|xy}S)abArL99P8@&*{H`efg
zC>dJ*AR2V&@SI_E#7bRlPuFw3Z~Yhx_3W$mYFL_%Yod;GHd?&}wcV~e!{OAC19h_d
zgv6n>XZ*RtKE`}~#YmvpNX7c?VDwp1)x(&TPL>~48eQeN`V-WAxKnkX>g+NXQj|cN
z+N%WFB{EpRO}6snbO*Xr$nJ*Y<$0-Y&a0}UQZp5fPjwKEOgc2j(Y_6dNrm_v$-m7T
z>LxVLq^b~RsbYBk{-79=RD|Rqw1^roavC%QDE5Cy$H%UF2Xj=3o-z-`H(DP2`-{KR
zCh!B^&*>i$Eg$ncfr}Q=RwG!|m9C+*!t-m$SC(iYKBN8Ggx$K7Uh50R$Q;57QgJN~
zppjSV?G5wTIWIKb)US&Eij}V;I83WPAFi5a`uk>Hoo)}AKYJakN>G7t_yc7@0u91<
zA%InOH}qW(*TnG?aDH`%3o)DUJI7gb`HHWV@>V1x`Xl9|W?Q-FgLA$f#k%j&z&fMs
z{P^Q9JX`KkedzdqU+KIZvqN_65)hJnbf}H3bW>7Ot5;xD!A(k|_t}8hCvp_~(Rvn=
zBX}jFBQ)vUm9~3$b@n4>lE1QfpGbRb0T3eqW1o!d?ry<M_Z|89$k)Aor0^~jJ7O>g
zvDeRga~=a$A@tW9%)q^!oBQ9U6uz73rs`2-8y}d1K39U54E3ZYE~T_ya>)+uIne-j
z;|E_IK`*3Rj<I5|)nuki4YPEvJnzoho1jm4DqWJIO1LD}`S~PaTSMX!aJ|}YT)6cb
z{WP~fw|x=OZ9^fY-%$zgs77v6RvUuyWjFT0NUwI;{`eV{bRlz#(YK;aiZ8UXL#<YD
zJ`FBm5P!C>(`wmD``Jsegi|L~k9_MUjUIoOEds7_!^<9Cx2;qlH4Z#ED%oSOGM5qM
zcH*bX!bG@K{k2DAHn+)B{d0raZ#`wZdxB<&3$Xgq{z4}k+iuan>vz;2lT;`Le+M+0
zavAf3bbiQNBh~!xMY<33KES8Ld_@C1__SSa(4X&ZKcV7a{9W>A^}Y^zxG_#^3sqMb
zUw2v|f%_7c*zx2ST(e84Yp-2Jp!e{kJVf->5>YVk&e!$a2Ey${1|E(|3Q9~^4+_;w
z*vutI-w0|?48n}^ByJxR2p+zzMB9PRuMR9zz+Z*K0(L6|u{Xo|6S-UJq2*v1@#Dj+
z2JBl>y)44@)(ZLghiNG)!oSVRIY+-Mf1i)yg@dK3*cWsIx+6!j5Dy354Wo(9J6rS5
z+Kq)=%g`q&34EnY1(HKLRwE3+0L@PvzE;<0vQjQ`@6{+IQ-#QTSiX22V*=MpL18bg
zkv2F(T}uZ9jc}g@0s3V%TE8%~KGCn~B}p4;KRtNQb4j`O`$*w;%{~0Gwl(Jni21$y
zBm9gqfVW!MyrnVV!)}aG;7#^{ML9Y(<Y(U&Uj1u;wc2Kn!S6!F({@4A!VqP~!j2nX
z)b=C$M>IAmVnOIeYg932`&!;&=}uIHDGA&2756W(w&>CJlE5($Ii!yZ7$W)9zj*Dt
zcbZoBpB~SCu$!YMl$%w*f5vq%;B*@vyvAw&K@&1h-CsCF1os1yWpH0qOcJS|A^SrR
zfTaF6<LhdS)Kd2SP1bCAD}Ql0d;z++rn9SRYD%EXM<3sB<ub0F=cB9lGI~c4S&y2a
zy#I8V8x*Wg(|tAO;k)Wh2-2&;3^r7nGqhaTQjrFqi3A*H9Y=8dDp=vq<ri*yqOQ9U
zh;BQ)blCxgl09Dc)RZV!_+LyTT9bxKLF$S^9_>GK9xu3|ZGU5or$?X^9v+mzo-lNG
zZt8A?cwdWFKjG`%T}#|_58=G1#)ons0udLsAQzzV8bLm48$o~c?N~VQ%$uuP*lElC
z*TQ<d;e2;nW+XkF{PgFXKIS~%P=QkY**s#6uXVT@LlY_ThT#!6`-I9S<=cHiw{vxY
zwB2)s<(Usn+*=7Psx4jIrB<jowUd{`hDx7D8h6?ItQUtejSnt~8&P1UA!nbTH(e)i
zy(cbPVYzqDPzK!6wHW+iC_n^OKy=SzoY+z?x86;TC3uKm;>j}hjb90Xyk{Yl`}mXB
zf67qckN@pZn>W#Y0LDmU_dI*p1ND=FhA|lyLDVNpOV}QKk)<Vu)H_O(7Z<8bylE+>
z)C}B17)x4OzK9&vqn95QzPw}RQ7GS>IdHG`9J?xg=*3e)RmeOPZkFZ{%VSY`Nvof%
zNZwwjkYMD?6ENy<9<J5HvW?wBivD?r>iRej>r55xhYGt%3cGQ(_L?0R?WP&HY11tX
zyn5)hSQoLWk=LB=I45G(Z6!V78iFWX$&K>Y_deKM_a2^UG4p(Nej*4z{l(aXA2!Ct
z$PC{q$DWd>3n-wN%%t}Z(vRZ-I)dvLa6basz4q>9?4GKy81U|;5lu1IxnR{~-qZL*
z81gVdkt(OX?uZZX6nwiCOFdvgl+8k6t+bnM<M*l_SMv%v?fantw~7>sP%U}E7;Swy
zo~G=HBzkDZszJJx2t|t$FBV5pfc$GdpwSAFk75EbtR$s#SyS{yqC*7wBwuvJ^|WUM
zVMme>T3m1_W<K68^|fyNx)XV~&3H>4I^QPvt$gMFjdn>x6W!fhD>f@M+!&i+%ee2R
z85Tx%MtryWn+L*Pr%P-AZjofT@B_rFgUEGDzsc7DZ}7}9avm&q&uWGB4?asu4hN{6
zL$|JQ`mK$*YirzixGvy6d9*ejl1QN-FexKoo!*dVVuRW4fau#7f29UjJ1mQ6REhgG
z`A<7i_-tFY(O$>WH5W@ko)kPr=fif5!$cR_L;*6>^(GVTXSuc&$h-Nll^n_TNIxz)
zJzhP-n1w&Am3rZo>&blDuZj3k%?`sm^jEZS+`>d>Emc*?E>H{>#0tB0r<~rsaV!;0
zc#aB6yA`zX^n*uR=&!Ku(}E2>>!$uJl?%;zeiN>#iaHpM&k0}6Q%J#CjFOH}(kWP!
zwZToD{D!E#A!v~9R|PC+A;33gR#e%j(~)vwo*WZd;HG!Oc<J1{aLCCh(6XFm+PTb?
z4HwR9bMhwpSO0eLz1!CNmPD++peeZDJp3q$f^!`UsL=Rq8+dLgm=G<vNy)8$&Ng_W
zXwg*WwUX7_FFqJE$91y)h57i&p9`M#PmB@nw)Yuo$aI|ed8`hcNLb5IEzSAocWqXV
zxL&u-;c1{;XM0~h8V_GWJb$E~j2CUhWdW%Er(3blsWNY`_%b_i5=k(_k9K=vkgf&Y
zwCS9J*JG*l^f;bT$=>w6>tn2!oi~}@{kmd_18!vRSu09dkK={N8lBf4(Gn0M0R4Pc
zPIv`F+#gIBoS`XAfLn8xxe+lr*GK7VA`S4{z=Lf&h%M<T#lKuL@?!Oei}EK3o&_ZA
zFlV)JHzc`yqeX|@z@7mJlD-oNVP7h<1t{br)8;=-@e9ZaWGRsnFEnhOyHDj4^9Z^}
z%&70tDb8n7UdWm^6=AmsNed9)rsUZYGF7UQOQjE_XkHe`$$M8-(b%Q9Y(IqMSJb<y
zO|PHG@#|S6afywRamJT6ht*I~x4V4LXE_+G^9!oc){dwUfA3I`=pB|X&)=?`Kv;3&
ziTzZtwG}hujW!Y>K6Rr-k-tsX|8t?HbjrT2rf!6!bChbuXJg8`_I~Cw{f*O)>lD41
zI)zd8DfQS+$ElU00Qsm@n~#4j`)>^Sr_ZMH;K5qO=5+n7{R!9yw=t~w9;k=%C*Zau
zjWZ$omAK&qU4H8S=!evrw;FcZ>S&JR8@zjT-Dgp&(kF`S^BxOou?{q4D^RDqW-vHp
z(%SKn$ASZAQs<GeN3O``=lhgHikyGCl8W8^)v+}!>psnC8e;F%^(Hl#<>lp7kmD2;
zL3Xm+P?~4{RzNmF!GwAW|IsV_iAL@vLeqN33)^=?giRCf0{h$XLtd<(buCV3wO~?S
z?uYUD4zTzf(<AvS(;hRT7L_8ztMsHI_2ApNeku&BhOgekgf^QST?jgM_{^f2MS%Zn
z=h)QpfL9_aU1MVi!)+7Znakb6;Mmo)Hnt1At2GTy@wzpGO(~V_OJ>BYxC>*G&}{*q
zOV%9kM<%X~_H2e+H2|-$>s~8}oyV`mmZbVN(#t;WxbQmPjA&=_yTU%r!fvdL&*sLw
z;$Qz69kQRnE>B(vZA1>}EYd}5aOK9a#VeB{G%V4ub+ZFvEbWzb5oWP2Ht(Vl5pnyW
zn)8hIByl4+Zw%q&l`Mn{vGPbQ;jwNNHp-vRB?~$=xDyKQzJxQI5JY8q8#y^5NQ^vU
zK2;Ou9N3yy*q@4lT@G=HPxT}Z7r$vSJK{&V+wzFsksGcjo|-#(D+?%vuN3}A$C$ls
zP#my1jr7j16-^}~tV5`Ku0yqyjMP?K>(nF@+=}hsot)XS2Y;T#THVb6n>G2nUX&VI
zhqRu>grcr>&@LUB40&!%lvNG<WH4&{gbiM*7jO1xW!v0iYPngl0PkxmTep_XAic<g
zH|i|kwGayAIERf_<a~AqFtTbQp9s|U)-`Bx9W0Ova31}hvF1pD<B`;HBCD}EjPcX}
zi4zRsz=&IHF*9|&rgMK)FRrgx&n{FIDxcTVKmt7rhuHRc{%EJca=d2^Y+oW(IJZG8
z>?1i}2vz$%#&axl|73MMlKr$mY<gGQx&2kxOV*C)m9l9C@-TO-k|sk$Csq%2=?Z+Q
zP5sUS(Nr4!7}tALmPhSH>zzq)4(e)SPyq^zqJQ7{00s4mn~sG}8Rpg{pKGirN95n=
zA<W?nS<YtW#b@J)P&LIn^|&kiaZUk$i{Xi~@d^?!YwbT#czN5K&~c4lWfR9>NbPaA
ztU<~szH)-fN_bn|>0l|&QRQKn><<C1)7x0V{8B)P^e&h5zyV5hiiqjLv^?9iG}=A9
zts&oOjvDJeWcB|=-rhRNS;8b-@f~#gC*bSLv&m44pyz2g`+B@Isc3%;$z+AGIHW^K
zZ{y~Q`5$y4q5Q!t;LK<JVa(@jE2f*$WT>N5ReZV09r+2JYI9lSHS%-ahNnZWu^*oA
z)hKTxiw?vvis}Pa;rH8()}zISEnj2M`2E!~`wOWs<j92BUI{^O6v^68@`f#b8HF8>
z0}Y<CRh}9zf#sHWdoY;y5Y!%m4(I)t-wKo4{*%4)X-em9IDv*nik>pKJU}E~4w3%-
z+hI1{D_0D+(%g9wc&pDM=^;+R5+lO|>St<!yQg7pNHO$n1p&l+w*0L-pkMX2$MA8Z
zl2f+9<Am_`WQo>An-bE=8FO;kRGz{UFIUN1?cP(>`Hc=S-z|it%T#Dq28N!@#9*m)
zWtOTSTQbhp+3=~h(I|cPf-YqEn~ZRjHjC4W;mwL8Nj`WJmDa?-GeH1dxro5CH(r6V
z#+yyCO19&L<CXzYI%u2G0B05Z`xYK(HknGFN^PY#ZtuUimFT=@E|zHkTk%I{bF>;U
z6R5%5m#YV0h`_0?5>1TqL$QC0?sD_TltH@;dA_@~4G`_PpM#B5Hx~YgG&p>QM=A<_
z0Ef-L${BZSBY+>zC?9h^or&A)WA1!MU3rITTZ|QEYKYM+<=M4pmR}}EfO0H@cQx;U
z?Im9`jQ!xhzm69l{ZV;mv9#sfXpxpH`4Co&)Wn0pOJExuEL~RKx5aCbvs`Kg(8=cj
zdAlN>Ha%^&!<TQ!P4ixSUaO@0GAzlY3I*=cVCQ>~G|3A1fE${RQ$?}86Rw(|`_DCs
zqxmSW)S9fP?k%@vm?mi$+30U<qn*La^2O6k*}oB7T>H!KmGXOdydFE1X)P8h+rFD{
zIew<axU8sd?zoyHI#NB@#o(LG48pTzk)BR1$XUKJ9vF(o;qMSuiTrbE(plKdTVaea
zwf*jU^ZYxLdG9w|h4`oS37gv&f&d@hY9{4f{iRFv9U{-vw9V3Bn|dAAT7^kwQmmh2
zoHb(%M`)6e4s3Wl5qosgE*FqlbtqiYiq*V%=cW&Szh1K)J#*n1qo0BYyR`@4zVz^d
zqEAomi@4;G($1Fs6oL(p&H<dz)*H#T4D}Z68^_B%b>>knGTV0T1~-xpjY;l+6Lc!Q
z=^Gf|)$aX_*Mb#@dX&n1<!Ef<Sm9yR{$1?i$ZF^bB_{4u$>mQV_Qzt)bq;CqvFPX;
zhL5e4kx_YpC)c!S1s$?)hzgKRKE3;Pcc^~?$v8mB`eJMG@koi^%@HGp8(~c>O}c!m
zJ-|RT?GTgcGt2iV-m{N_(qg*>*%ijOW{r{`14_h>xzT>$LV!+1e+^Z}!PEH-LDC-|
zVxTX5H5!}jzDc`aXfa25#bPV$>dQWY{hbhxzB&I0g-|m+m4GWlt*8NLr6Jyc)ps3?
zm-lrt?`_6u<8gO`k(dHths#$W=zD*?qL_-$s!d!dTQ-s%9Ok(o4q_qs#yP5LQ{}w?
z?o31%L!GZc@pZF;r>Kk^27pA4JS&;mb5s)TYt=)bleQMZ(Y%L1FI)%xDhz$1(8f;!
zWy_^C^CsBW-;g0B&UU<E<jbBQmxoWpOSf>4URfloqqPVz#%wWif&5GO=8+<Lu<{%V
zic%Viavc)8olkwu&XU3V{2D<8Iar?-)7qmc*xPa#Le27UyIVM}i|pbdl<!0fo;#g0
zx1!A7#{`EJ4&UFJk65?4u<&g=gR<VcP0e9BL$|WM#)XV!mz$XPRI)<UX`?+jn#OJC
zGP0mo0e_a1gmF&UNMm;lL0VwFh@kXeZ$_RDB=Igk%&tQkWd#3KmQPu9b)*O$FN0rx
zSS;0f5A3;S`Y%l_@Y@!Ue!c_Rg#3P;zpWH;srYdLEqK>UEqP3apur2zhuTU0>h9vF
zIYh4S+H&7epyagvG><BcaOM4p-VsnhA!eY&&tkvx%vO?^L|j)wdHY|&*DlTLPT-#3
zUq}@*rCY5j>o`uz0QUlKecb0VRXC|Ew^yER7EnAe4c#sv(>=?S6ly0-aTB4G9L5`}
z9QQ`_(Lcy0r(7S?Gt06MW;aP3@{@-qV^J#398gK~?Dwqi&x;R|ajH%Y0=;fQQz1Wy
zBT~EieOP3Tw|p0n)S?IL&L0G%#eo9S(u2-j7LCL(ZTbaA?nyLu7DsV&&Du@HySxi%
z<|~Ix(|*&(<ra<0=2TG}3Nh#+EJCR=zEhX};pPdw95m)V3Nr_>IP^ds$5kfu+q_|A
zpZU0t=)toza>%a$a#RCPmF(L-bRUR#?IFk9z7lU+@#1IYt)vv^k42l~zDH1uKHrE{
zofmfbGB?Lwu#*lt+9dwFexs}OUUzkHyJgW=)Acm!DmpdCbtZMRpTvi5uVO=wOIW(r
zi!{sOSB-W%X3AyytmmSyiJl=XTjL>d?W$T#n9>Yq-gad_!~(@j>bfYY>GKT|v=T2e
zw_aH+xMRIKb+C2{1@dhne0t)|i1`Y$G^NI;x2<ngDIZM!*AEo1VByOyvfy;3YQx}I
zYQzZ;nh>NQbw18`QSM~%s%;%8lM@W2nrre}<@>TL;6aig38XJ7lF2$Y-_>np?6Yz3
zmNS2#@wrHWQ+l?AE9SJ(u2%s)ss6tCpym}@!E1Oj6uad;OY*?q&hXGQmicSHa}t!8
zI4Qbh=6LX2Hj7mv9M`fkx!TH^u(cIeCq&5dC`VcDD#W`(s4k*F)Lo7^r5EK;WIf?2
zobZ<@L2Vv5<io^-<Iu$!&bk#?%EI!i_?e31gT6{J+gyrHtr7{CVnLt~8cPr2Rf-Gy
z1|cWZ3lusb4wp#WvX%Ly;N@0Q@DpQ$+ZEH(Qk>#lXwT-Tpi@Hm856^$dw3X_UGbE(
zJVKxhQ|ny3Nv~)ar>)K9PD13>tOucwa<E-wF+<}~z|)Hof2+IaMklCDLx>8V)fBq;
z9x5Ke92AIFdq_>;m6kair<`V8o9_N~-Pt(QR>m}yLhDkBQD0PkXte41V~+<RKvVS8
zB38sZ9xhw1-rGY7&0&qci?!hKu4!WwbO+o;id`)MX{84?oyIt=--unli;gX$Z7b0U
zC@cI1e^`#RqeP-u<5XG*zr;5e4yW>mt=5-)oY2Kz8J4;{ScJz&TF0m5kSH)G5Y7**
zL-FfI)CH1v5Yo*%SMMHJo(MOKIY_=w()NuS+e$Jd?!y4fyYWJhx7^FhjWCID*Y{V#
zp*gn{7I$O<yqA>M%Y&=e+McX_q4%Die+(!JJh_*lxTq{y5+KP5Oq$`~B~Qdd1W!)A
z<FdvMgT2%5+vikn4!y!ENmQuj3*PDGJ4CL4V2s{(v&M&tP&Q3kaytaraIf3Op~z3j
z-s(`fS5Xo&twwI@!}t`&Aa9bz)+!ef1)%q}RFBGAXSTI{Tz?WFQyD^Oji;~%GnmWg
zc9}K?c-PbIc!Gf5GvX3z`ZX@wNCM|RcvwfRk+;8QD{l4X9%_3h%UB+-?8CXnot_)0
z1w<r5XQZ8YyMce&f%Jypf{*6>mV0I4w;%??qXT~a_ofLbOSbyJvfruf1~cFEwX~0}
zV|6xf=-RF28XM_wp?@hkdyu}jHi#n*hqSlsz)W~6r?<vFLjn@7+&Hm9`O6X=x&p6)
z8tC~T!f(ZBWexd|SuS87Dt~RZ#J^uOG&Jl)zTa_qMt!}gWCM-w5tK)z7JmMHndG6J
zqAY6(jE>~m<~6CZAM(DhTC|@~A}ZIls6!bu<Cix-N98UVF-u^jmEz|Sr|<G2*s^vf
zaQDljs_f5*YGPg)Uj5Q{|6M9sYhti@MOnY`8_b@|np2N<fGeiyW819BRn1adu~LQC
z*n5lA@vLzZ{hm}ytk5r3g+Ttxa52TX-3@~4Z`S7klh5tMmNY_|`oCG#TiF@k!OX1U
z+G|HQ8TtaR+-d0PA<(X@=*1N%d+&I8E)(pr?s02>EYbx1swWs?gF|Gpu&f2X8s~>h
zr&8Kh0bI(^zh#^VLdt8M+xwiV=N@XkwtO&(h3IFdCpw)uZ#9MZP18#WsLM|fG6Xwm
z1s+szxhVWz0EwRTI!Ek%%)9Y0q&L^0*NBBDdK|BGOdK-`M6NuBYhTR@QW6U{r>1zD
zwx%Yg5)4I7h5ql>I0WPWIlcS8^UHD-TCkUfoi?Oje<+M@;Y~y8vt{I*$F&AH2h!E>
zqG#RQc<`{!_w&br>|R!E(0}@I46o@awpT2O57X&8CGG@AA|9bvPaAx>h7KaTZe~lR
zip>ywrP}X-jsa_GP-`T+9jU*n7hs#V0EyWD&e(sukvf6o6-6TWTux|_-JPQCH_??$
zQZ7|)Y9{faYWu(T_90v2Pb_|Z+(B(CMd(g^C$1gi{qQ-ivFzcc_dIQ2el((#SgGfb
zcBja1a<mkE8!OtDlN-Z-!=s|QBR}y1yv2cH;s(Ro<sUK)tf8#;M5)Z9cBWpsX1Dm`
z>W=%NxtZya1oLN|Jc~mZ!+1<5f6;+&3`J*iD^{)+VmJ3XF7Ejsh{p_@N<}DWXJL)*
z(^J`;yR*ZySFw?xvrR6b%~}2>kLfQm7i$7*ym0*$rb0n~BqYXkVwP6g#O{|n&+SxT
zSh){^52}6EwGj~V$d-ea?ENMSYbkAJeh0#5y}RfveqhzaXbQDgW%Qv<Kx3G;d|eFe
z!DXKO;C!F)D#w@TYlX)_)UcIogZBIS(d~GN7u`{#eos2-U>&axGYY;bx5}S$8iS}3
z&K==ev`{Bm<>ZF+ya))ZdrKC-cWKAO#sV7f`tO2lEOS8en{O|2HdsS?n;92cN!)25
z01n;~rEj1*7o&9muXb8|vRIz0C0C>KtWVF)ixI7LuB5ZWyAh^w_(F6a+(`&n3Lp%U
z26kUKvzxwV0#X@&Wc`@*g}Oyw_=<BjBc=Drbfo->+1v3>yuk-s<Kc_swe%=kzBipm
zto65R6*4zekIt5)k6yisL01#v_eKihcIj7GF{?#^Xjpq2jBDO>l!i2Hs91Y;67b4r
zb0~$lg}F=Kb!$p!eAyV0)>wN+rhTYC^+?<Z+2OXH(>J#>WA>|S(Pt$eI|l>pb&*9%
zPTOFc=bK38FT57onQ%|Ru*y;~oj<fQ;?vW<ag4%L?1t4}Bpl?(Z1sB!=!vPZFEFA7
z9^b@?sm(XQAahk$THC=ydvU>9s|yY+0N-}(QvcLC5SS?Dc?OexN+L_?u#!r0=z&#^
zaPnsn*KTS+e&!6dnzBB+wX7W4Fo){Y0gX(C>wJT@wpt&ndLAjNdqSD0ptaRK`2mkI
zWHdw2fJrZRoSUhCyu;pcTu=sgVo?2_%#($WY|~v={xpBPd?LikMPt{-d{GP05a|zy
zdz*GnezV?yS``IAK&i-AFsiI(KmvBZg?SZlbiv=h_NKw@`4Q<Lw*213q+Pu`Pq@sk
zQ8Ga8)u5dvYo15fJF0XmabI3-EXJrP&7lF?Jz{5xSNHPrG6~?r6n}5xn?a}$9`8Vg
zmbmI-L#epttvF=7WPHIk(7zaOFE~tTfNrjb$r(>Fhm-+iER^`yCk$i*tia{cv<0E6
zryA{%;O>N*B{9Yh$@E+2*Uv>y{l0pHEm<TD?#<@gIE!dycMzw^^G%(Ob3EMOCA%Pp
zVsG?Ll+QH?#{IOsCNtlTz|JesHHvCAGlQJ$NlQV0!FFp|E6!Oz<>Kk)pyYMJ?K$%Y
z(xM%m4_ctTIMYUYdesV+xA)HVJkp`lETdU&ZQWpa&sTM&dCa^-M!9MmX*rZEK015$
z)A5N(;!F-|d3mz*^6Z|IoX9%BUedl@)GDosBp_QT2u4u(r+zgJoxVIm{b6bamlI!`
zPBU4dBmEAp0?(<HL)@=_#WwV4ofVNz=`X29LtW1e#eM!adXohs{t~^kL@T~#LxFG(
zrOySX*GJk~<H4Masfh<*jQGr;By3^W&fyX6pMMGKf{u2c!<QOh`j@!H6Q`JzTfME~
zYq4}GJjshhDfb!D&;?zaLx?m3n?2`Kk{P31C~!Q_Hp}pnzxWcH_x}Dfk{esW*TA3N
z4u7n$7};JY@8o$DZgJvC>3p^}-+adHW~GjVmal8_`C1Chwv0*;wbn_rT3tc82BQk6
zJohd^sUYGYSjIf8YEqtcK>go$#dfFaBHUTDH{Kl2b0k%Kh+G!i{&b&A#sklzf_|`{
z^w|1H4v7}KJ5pWc!o}JnCD$p&SSEik<&viH3JVgm9`Tj_SP~2}&)-faees&oS~8KB
z2K2J;ZgHj~at=<8J|8l8NIo&gYW}R|ImJHYzLrQ^OWo=}p>^IFVz<+Kfk}|)cs3c1
zaT0nUv0zc^c*x*&ws}I=BE3WLuC<3nND9@RzU6xuW(py_>R^mX-k2FcYVJxg*36i-
z`UT&?gzq@zhuC(XCpeV38hnjaz}#3sn4=$y=j?Q$W(NR57xI)zZ8!4lUmQkV>iye?
zyZl7Iaw!gb>p%5-Sm$ocq~xWEmh_bx(NCaOyt!V=WTCQOCB9en3#j4iU(+?QW{;Bz
zYb`nl_q5<o*^8H#KxR#+?-Mh{9E|n20E5YhlVW)3Ih}?~BsZrmXyeY$M*@V?P39EW
zLaYs*=h9X3=v*qulQ-SVj?XFr$9@gGcHz9j3o%XVZQTtX$vX?lkiR7lB@CWGLk^~H
z=o&CKIO6xg%lkhU95EqV&wXQ;J20dDr{Wod(EEu;W51U55d0$s74M9KG#OhklR|mL
zg~J@}&G}zg+fUU&A44#bpO-7;5G$o`KT8idqc~b)PjjU7<q}QLN^kuLt5>>gXDU~%
zlGToW*m*CmoqFN1lWHNbW|pp4AxogVwe*L1*lJ0;X;LRC=-S$%@C(hbO&Ux8hv+)l
zXL;s-#(>aIdVNY{{J3dNu|An_b%+o@kisK}SEM6#HELdwt`=Geo>JJ$P^fkmE-fI~
z`%-WdETf)Qkd{?fQKC`ykiJv%e@zznpTWWN7|+4|uF0qE_0Hh?om9h~q`)S7VPWCl
z>V+`?B}97v|5N<joby>!jM^Jlo#gYnP67ZfW~#laY~1;hioc4y2!tpK-hSlZP}}~u
z<e`p-81_7elDencD0eoT^wFv2-1>{W%X3^_k-ScyiyD09_W8kY6eD?FNac|&z;SJ~
zGmCijFK7<+KOa+79CdKYzfu-Ul0(GFq3OGuf0apwDKWowVvOPJcpZw16Nmvcne3d9
zXg}J(B=euc@y*+>r)5zNGJ_=LY@lA<2R9MG>KHq%&?}iR80rH9s(W~W+aHx*qGvt~
zofp3YB_?1V>`B-Uzg-MHj|Y+0<xllfb5@&l+5^G=NzBWSO{J8Q7w}i;p?f3lWSlFO
zIubprEzQ>^(NoDvzs_9E-E=qF)=Q50bOtGVIvRDO<qgIcI(zzliiV|U#ugrf4*y#p
zc?l3kR7{R;`ZLNhoM;NMyk-W>37;K$;0_-)x9qq_nb(?A;0F3;n7or%X!)yA?LX@6
z)d*e5j_5Qdq%1#Jm{h)!0vLWDKB;HXQ7^mlYH)e6u|14AQx$#rHVt^&xSOc)c#|K5
z)t(tl<e<Ofyt?>scEj{}pfPy1HalrrZmsd#du0H5>=jTsl`;7A29#J>+WoHDVC$=O
z{JHB?%}M3DlB`ER+8QKg%n2oKulm!FIU^t;xPyYB$0yGSf?E+^KRmBv%pz~GDW3j{
zF$M0nSK!9ONO*EPif)Tq`sz}_)u!r7O?UaS1@6SM9Zc<ZYR^TZYY9)<kEia4TFzOy
z=@1nyfWG~%j&TeiewP{gahX@*^icV=6JaGNko|~4Yt=2}!A-Ky$lPb^T_zjVG9I~|
z2td0L;H9TUE4R9PtulIB?fd9wc7||6(s|{GdC+IxTiIO&<^D^f@<i5BlvQ^RK^Acn
z5@z5P#j#cnNmp}nRxp9lulP%;ogFsM>n%n07R2#?*NS*Iq86rT+sTr{0yEI$g^v>Q
zi*#ed8{u_h4C2r-n<+|#-IVgQ7{BODRTn}Uj?xOqMe=zdER(#<OnmEKO0@h{qO|bR
z{iJd)KOz#8#=5KTl4yFiWm>R>S6yY_6YUKv#hG})qY4}DS<xx)?bGoq%`>H%8W}gw
z3nW*eD$LbCl>I1P5H?pUT$2L&Ug?YT`v&;1#NQvH>=3YaUtPO!*tw$HlPYRInsb@k
zTs#y!m8VD^ul-k>HAf%_8#|W&q^vj#j(VWVNqrJDoyzXB$8NTVy`m`nul8bK{q&7>
zmzKyuSWa=L6lfP(h~O>VLy1;-Pd^V=UWd2v#hNy5TL*7E!@A$~&A$7qC28h!p3<$F
z4)=}HrqwTGn}eRb_~jjIg49HWVonYhd0Tj41+^IQnfcW3^<8?}w6PSE`M4t|L1$pI
z+-E~cUN+1($dS1j2_SF2B5~Vj+Td}BSe7j#e!GwxS5>|JDG}YWe6=sB!A;>}DhHzA
z_Nv{5dQzebZO2->XgVp*IDhX5BAeP-murQV-H7mi84O2{mQDx=sNqFzb2~kkV(SYd
z5Q&k|EGGRBoLc!c8Lud%XoT}TMEVR71(gfPq&_O}>6|a*fOQ}m5|xMq@x{QQEmLfo
zKA;|R@K4-2z-8r&X<-0=3M2m_k*l;<?2kc>ka{vpA^w3b`LjXl^Ox!vMhaZ;SGT&}
z$7j5&H}C4@d1Xe&RlH!mGy9`Yrrs^}i>@#h-YiSU3M1acSu)|g9|snU{|nJs(_e{J
z%cLU!@*5CL=m15Sz=<at@9&h7OAe8Z#8pHZG8Twz-A-3!(3HjYG-51*X#XQ%1pY_B
zc+7C9;YB3yf|rEYwb-5&Wgvc)e}n~bCtmjj^0?iiIUn3;*1G*+Qi@Sdy)c^?OObm)
z*xcgG0Adb3!f*oMg@nosJ{79EqnsK9JA06Xq<6739XQ5uEW5qsV#bA`$BIbQKRvsj
zuZx0j<_rhM#!?E)<zqLMvij~D^!+m1<G;HP?wuPXreC&PBhNXXXWPQHG(t?RT)6`)
z@2q{9qW7+Vp&BYNsg_o~oH`n7P5qbnIMz9Tm7DD~m~2~^0c07LKaga%zb88q%1NpC
zxN9p4w-INjNTUu9Y=O(=GRk6HX{HyS=NvO+wfp*G=Q-bc=LvX!C}l)1@H-rI07P6?
zU;UpSJIBYBNqv3p`nbcY?yqLd&GcHJ=k^$ewtV^S&$uf;LtlIxghba80!Q~CxCbeF
z9|1Gt)Hc9kTJgtdt}LgV=B#<gUX<z>Rk<@ig>1oKp}thMCJMy@9l9k)slJqQqD9hM
z#%Www%!+XT)xxDY+s0qK$>RsP#?Vuiah#Uge}{A}YeL=>3BNW7s6eCi1^-O<I>mbr
zAaiSp(vAM0_Um{1@{K>=m=z0lTgwG!%gEFX?_rkmr~LumiSV_K-9=)3DVF{~A{UL9
z{r7x=&6~NuU$5r~huaHqegY(eL>7Y9MpFMge`9vXXs>Y>CdZ~+v!W_&<T(q9A4cy`
zY1z<hyKjj&iWO^=gM=f6^S_mr$0<}_#PZvDDPBSdc|aYZ;kiyF<BoQwi3@}G{^!l}
zpCLYw6J^n%(|oVHc)0yLRoIx}s0!a?(*Cic>WTxAT9lLmvM)iJS%x9tmIb;1&9AQ%
zS{#gw1IV6gZT;(>yg6g{?(^fjX9kZfq}mhcWRk?1@3iZD{Q`EhTbnKGd&@3FOqz8d
zFm{~YTg@?FIk&!d$LhaG2cperfR@j%J6G|S#ghr|`ZW@WFVw<qlkECcoL|~4n~(6M
zu1pGyi3u$%f{69_{JqF^^JlD(D<*G;b^n5d*bIdk8u9myQrjG2dAhxM5-jQZ?%BT=
zDp8tOYYo1bnl^wa1`3E-P{!e(`;cDN$~yE-($ohxO7MR;ZW_LB_qm(#I0sEmTQKtH
z<Q$P~FXK#m!77m{1)r^c99c`CpDJ<P@}^1WBM=#`OHdbYSRD-10e2qg@0{Mwb^X~I
z?uEJF&|iWqWw>vq;7UgU<!d+Xuu{RTO8-V=Z#UmaUJeFQAguWZHD?utA(q0;@}40&
zLs13Sd?M3x3CA8-->CLeoi)6d0ZQ|@IGfJ`j4!NI8Z79w_wc538=t^-ZUQ(lB>g3<
z84zc@RLf&ZG^wwF1k0=&HpJ4tsj_3%gwIHN_q;J-owNU!8s?2!JV_ltKMc`II)k7O
zTcGYL1N}I5KDflCmv4<LFJUC*tQ~k~^-_P2u_X{%W4|6xhG(q6jrYKHSo@PmlwJlW
zit~7kSjD3IH-#*%w7&snJ#YfX{#kS-m+JnbjLbE7O=c)kLuSg2#X>%>#BNV(Xf18)
z$SrG43{~pCFt7cgs-*jkJyI<(@Qk!xx*lUE9A2XCjaLx4SaOfwk)v}w0l)e}Z1Q0y
z=G2BEcJG5U%`Zli)_%^r!w8f{g=F9VZO;hfHPM*ZyMGveb%NPZDV&BKdHF+IO!nqH
zBMidr`^e0RY|e0WzOhV)VxO|+a%sn?*Y_Bku~mH}8vazq`)7Fgq(3vp4?|55vAx(j
zb#7~GH(NBl5qXVkF$(VJ?C11T`Np>?Kzs7YvFF8LU$SY${L7OKxWb9VZ5r+4z%Vr0
z!d`{>m`pU%QkZ<~tY~4Sp>e3A5TK7i!v-?)Z@yKIWHm(j;Ez|ct1W)7TRxHT`DUY4
zlO<CVkDD0Goo7YWu?!Qkg{WoOV;z@{A0I(0sOF{ZYU(?@>BVxvJZBvvp#b;SCqYJ4
zk8KXv>Yvj!_l3<Uy|g>xY$yFxW)WOs;r8e7HB)n%l>19rQhV8T#wWgZ7y@_r!Sj)h
zTf^B~6~+%%Gs^eKg&#L0diYudkC+5}8wnwkK(#RUL!}+*EP?-f%A5Jardw2GuIOY-
z?mfQ~z+Xu?>?+maD0U!%8ydfDms(-@oOZL2S5mB_P|NpI+Hfob1k6x-Cv?sXLV;MF
z+P!*@=tsTEvK?`9hem}>lJW_kGnr`jaI6b<ehiP}|BZ*tV65x@4G<&MyPer2fPjx-
zi}n2?m9Hipi#YgNv3`=tK8n9KNNV5vD<M?=RA*(f<v=eE7FgGwJWi=~6j3AM?P`Zs
z!gui(ctJcczRc%lAK%eSmOVPo4n}j7%o&ax#h;vqwxnF`FD9y*FtOw~{B{B%CedVG
z+5}g@`NjMB8#kEcF7LH+@lWbeZ72=S^20g{hus=NAbtT&fi7?N&ZfCJqtOoU65-`o
zev;L$7=I!R;SSX@vM8Z*K$Ay4K4r*qlz?L!bsuRAM2j$KKV~_<HVo_}2xh-Lrjua3
zlss`$gz_+DL4Mqv@EIk<P1;54W9di8xk9i#w|lilB;7&n@9#z7*Q#mJ>pbp>-i4_M
z7=SPFD&*OGM`-Gw<v8inOxCsXKrQ$M^I4Tsp@=kc#Z-q}Xa+$)Sf7oR8qvTxaUF1t
zA&ftbk+BO7$@R4P+1&%YAF3xE`qZdkw3+#RVEy1ZePd?R%}uu)76jJrnWh=*?29J)
z)F`meW%9o7iMw}@pJdX~maHUdTa;y~4%c66#Sh7&(p|7(>!K<^n`!w02^38n%wEky
znQRy|0f4gg_ab6VBYn?5{{?2854LJf{5_<d36ApO;rVX=6*D&UqrDBn5-e!%RS65S
zCiz@kGYYUvL9k#*R!DnCBAlcC)VXsry%#tN^@jm3p|H(5kO4zUoGK(wAvARXx5tk7
z*&SY(<OvJSCb((-t8WTpxLr?`k*mxso=m0zl41Ql{=GMz0F7IZF2ZX6Srn-ES8CYS
z*qo1chejwIsCB};30X{Sp=s;>wp=PV2bujU3(wi@#RtEpgddj%{+F{JlmU?oVr%;=
zAsLr*$BU!%<_g>gFmV0gobvJZ@f|;<7<;{=-}2&}kQBN>$YCc0;!Jj&H0iKbm=_|_
zkE!bLb;Hh!bfh#(CUY1$`TF|27uyP>v_W##>t#O4ia*^%ycD)9Bvu80QNDeDfom=c
zG42umGszQx4>}D}#WL&+Et0ReLPJSi|5uqipfnLk{eM&D)_HHv4RsR(MwuYm9N~@J
z{}*kpA|(UMz-N@Cmf=gVG-sXBtt{9_qw7Uvc3mxFb$>LQSMUEvX^y4zKOEeDljbHw
zgi1k-i%AQyzwfsJjxVl8fx5Qs2l&t4xU*O5BSSl8kaG3hP)L45JZ=GZ$_7=p^XAgO
z$9_3*>m)r#);guoK&WP5F@ib1Id0}Brd#qzSXQHc*Z1O%6+ye<p=3D6*rb)#;()P=
zlFcnTMyW66q<$g2ouiXrZX?Sn4REb~P_wQymu)*ygwJc=s$Y4Ic!r!4-O7jDU%Z=P
z8x8|nV6@e9&^M9?(r^Z^CfqnTwUZO!@XsD}M6K6B0Lgz7>Pd<7_0PwCdpg@sm&<&R
z{XK&eENmZLljfK^KEpllxs5VLycmcB5nhQhNM1|-kLKRGtBvms`)#q{QYZusTC}(m
zq)?nfDHJL04#k5Pr)Vh@C|(+@xVuYmceg-`2X~(E{hep6v(76x`E%CFteM%f_sm@P
zb$>2N=}r9gp`U!hm3}X04!)0d_VBF2Rao1+^KdQyQRFz3++QJJexDtn!Bl2iF2O#F
z33Ju|p4oaeqh!=L=f5xe#XNA=N+szi`ITKe)@1Vp^o<eakW9}bWUv2-+tnFmWVQLL
z#$rJGNxjurkpqKpHvdv;Ev(<jlI|=8VCY<on=hw2_p%nZX`xz<Sm2pu2PEN8=D3G>
zS$+GA2D%r}Irm-8dUjKmO23(eQq8cvFs6ves}#?>`6dUP{Qp2^-YeDJ5eBwo@$Xj7
zv{V6$+77?M0<fgBR1d}uOX77r_IWhToi%?ja~hw|)s2-Jh`CXaM(P=C(~jlWHv1Y5
zzSL*nKmRi{P=X$(?PhxWr(?W^l+y}@dI=(>!#&*?+gt7U6Vq=L=aBj?et!ZLZ%W$j
zp8HZyG7;Ygbcjc}5u;Z7`!Ml{yVStK%Y#YCvwFC%Jrv*3x;trHz#fN6<?Xvm?e{Us
z&Wuz?LLNz6AZrN^(1HrSRF=LcDSTV>SXsrf5kTDhX+0*JznT0*#Mh2}5E1aym#c*N
z^!Z@QwO<(fZ4<aM!IEde5hE{@R}$CD6X#tOee#!He6kXFI`}fI0mk_M2T5+_ftCDx
zm5ivdH{n~(WwzmFgXfVUj~vq8_b!#6$gC&46qOl0*8{dFyY};YJ%LZ%BWE723zVw-
zaUJnVd&<9G5&Gifb52?m5?2tki}~R___#W)^diH#ZEddKOxXE`G1KRe75sSTTJZiC
z)q^PHnb^gCXVN=$`u}wkvwq!wb=-UlK?g72YG@+JzcO&u$|#ix3Qw=$fv?-7H1CZ?
z54VBh;aN{ATSy|eho9>>GMlSDp^FQ(Zx6%&X)ED}7jy1wKXV`Br*po=)}R`U<>pqI
zK)7&WhbAv!+E+PtpVJ?n7kZd2GP*hB?yru#l=$n?RvYgG6Q?nI+5uR2U+{QnBz}u@
zl%7eT-A6fru!cdGX4~7LJwhvR&Y&-?$o3KoCi-~cF+($mvR^I(xn!=*S|yMglpu<z
zoEPjh$-IEnVs(qw;&HtXelk8v1Do)`USq76l{i9NM#hh%Zzg|kE8cLGXWNfNFc$0o
zH0=BS1BNok<OPBgEjs>ICoFSBefnPnH6U}lah_m*0fjZ6MemL7@%$1cewyc6NVDkX
z;gy%3uBjYQj=Tn`>9y*l(e)b~JasU>Df($4QnM(QReHbN5oU32F|bEEXgjE>M_PxG
z6O~dnw7EF;aup={<!IF-ez2lBMnb14=rvd4`t{9@gT|mxW)e(0WS!W3u@;@;;%l;N
z$j;^>KS`U?ddh^7Ze6<C<S>^}DlJzRV3-FEi-7Y{1$Wj-KS_Vx{)h{fCP?f~4iirN
z=0zBIL{E%srI8^{(o>LVbgA(RcCO3k!!yO|<K4(6&!g;KoY(?QIJroiyUy78im<US
z+DdVeO_*87GP6ct9BGr;<LzdkGy8Z6eikU4@Uq0Z(eDL!7rM_<0#7lX^6U=iS@Bti
zP)b<Y&EI2YoK&qD!zf*+e_O$9kAkcO1+{fO3p@u~)tl^oJbGI@lWa8K@WdXT&%_WJ
zY&6$=2V~smjBmp*-F)KnPY!e=b^=TnA2*ItW?eA-4@iSpkm*lqI@CiJi)SbkI-mP5
z8PZ>CV>4?3oi<5^ECwN!=TI|hf)CU(<twWR!>)q+3{`r3!?1klwb{z$QML!`N)Q`4
zh2V9gCxm7B`U3}!L|q@OShw(leUpxHlfh5Vpo7ih;SBDyA9S8Ar*MDc#i6E+N8@X`
z@XZ=>Mc}~9C9~KHyPZ5-R5c_M$ttS=oiPwYvzL~Zwnp8XaKL5e%RT4zaD<|JoMW(?
zpbX8d?cOq_dpZ(ED{z7Y=h&JgNfLGjizGouen2sR^&BspGJis`vVF@Rt}#Vu#Yzcw
zRVyqu$KB)!Q|)e&uJ25$h-=WLy<J<W{*t@s&T*1f`?>5o3{9XJCC!q-P}JRT%GJHX
zEU3yy+{9Dcx!c+`#MB&g4SXZooaQ7NqI<wJXQI}1!Egb#Re+UW&27Q_(d6A#t;Kb>
z^EgNT_ABhCO3eS(1&{M*ULWysMk<jhX}J$#u_tkTzY7eDI7QFzr9k#8^&aG&M=T{d
zm!_U?xuFZAQLIKPOOEx|*7vHUZYMLnf;12Z1MoxQM!A11PHHXb{6});Z|fh(J`RT{
za`{!`@4fX>7t>G)Qaxl;WopR&M9pIZW$7wyp3xvw8uQvk;&UZlQ{&KJFW)AS!dsuB
z&%0@mApC!ynQ?Tj;x=}_BC9kU=yht)oQIc!{z^6n#k19TnT1-!oH2U+lUREGJ%}@z
z6Nm}I4%>_DMBe2R@(ygog~HxNaQaO@b^w0pqU+;E9v>~vx8ZF5Hh_OJAIE)pe1;CV
zTC7=?t2yQ0N`pVD8zyeA|C-AaGEMWYN!EA(H$k3e+L&k~-C2j(NU|T1tsNxK2a^u7
z9`ME$`cUzVmm|GSdqCr(U6bkL#cGcx)kU#cK(wGj56Ya(Il|Z7B0%-7A@GMeU6I`M
zLi<LcB(T(Zxt1h~$%#La%Z?Um%(>LpYt@#gBTjNn%!^#-NFtH-kz6N(o?N^rXWJf*
zbffEB@c!ebC-^klg?i_~p>5q-iT=V#JN3d#+s7bTd&_x`X+UV1MW|eueO7G1pxZZ-
zVdYK&jceqeW&LwGSHAZL+bexK$=xVz$wO%V4aq;8E^PR)Ty@(;YkvGpi{($fl{YcI
z;l8gti4k!J7|%p|>ns@=cwiDz{i<#!{oopKAQ+3<?5q3dgW-WhFk+$cm#HCmEXE;!
z{v(2R>3P&G>*D#aGg))@habiC5n4{16CuBAZr>UQaRR%h)4t0or(_!*DMtK20`kLp
zqR7m8;(lFS9vxh5UNIG6)R2WDJO1u_Brgs&C`O~Ff)&Khgeog5WwAdqoEm{I^*^Tf
z^|kn(ULeUw1)(XGFWP!PL=OzrNKwGoOT0}J*J1r**aL{>R9^l;ijxZdVWpVl*|AdX
zHUlq?K`Wh9!Bi_RO10v%=~W2h=<JXNsZgQ`aEE`fCxPj}`NgSDkT3Cz+u3rcrAY5z
z;LmNo)K`DP?<q#p)2Z}ZeaT_GPNrL2Hud*?W~Qnu{-<`4*cLP|HINuVso5uMeb%kV
z<c98S;d8?ygkWQ<fRtqO`MPyA(*NnW>^poZE@G6XDsh6G7N}m0QV?z^_1j9K-(dQ8
zYc{<q17jR^#tMTi&0(+N=#pQ>;K`jJk2e2x9Fc{H@Lgupo}px1J}}v2=$qQZC<L9}
zAbK$1qiH4(cW4Xwg=PJN?IX6D#5H4Pfex0g7Dh%Wl4%LDI>UZvVHASRKpHsGLYVrg
zJ{OB_>rJ=h>OoG=q^OHVDz6fDv}CQ#RXXYo!T4-Y0{2jtBM7cE1ew!A^1>QJZ6@;&
zN;t_hKG?UJ4uP>;;xRl9dy!Na3_^^X?ULGXgmeugFEnRXjr=nf!0=rLuG*%Pj#mG&
zvZ)cW_{L46LA1VOZZJF$`*jpzY#RbfKhggJSk@a86e)NQi%G<t+EB!foDFB<*v-b?
zH|&!{6t0+zVql9ZDr(f)>#Age$&aF`qV75VZYfD_d~wMI^$Q%I`NSiUs``d_okcAS
zgrI!igV!uR$bjj)%A}x*+Ke1w3Vvk6E=ZP!;H9#`a!4ZX9mVL-kcxhj3%SMNO44NM
zQe&`&wj((~veWv&fsfbHCyH99&mBbv)N9waPH(Ll)K+$Pp6HDdXtZ+p<q({#Dg}+E
zS+7seOl6<->XBu@uaP82ipXcR#o)N)9pcEjF+<bVJRb=pEa7=Y1lDIQB->GHqImT$
z@3X4Ko~X}qQueqgQwN(CeMRSQX8!>`8+&VO)zY=m7}b3;MD|eRRh~4d!U9nz$A9Dk
zy34bttuyG~tsMQ*VGT9I)XQ&<sd#?k|5uytLOHXxd>Kg?Bt}}CzP&(Zj#BEhcnj1z
zMamr%$!}FVz_>a*d;B*|;Qmmfdb&}rL}b#4hu6y!H6X-0+w(1W3Xs{ui5GU-Y|fYu
zrDZ}&2m8wUpZ=myQB-L`Wjoc*WcKv#b+V@g=Ez+W66WtnRJt%is=RC?m@14NCGzOM
z4o95;f|4t1`uTJ-{|ggBZV3vQ;1-TU&10-MXCWto@tv$WG%M^Z5~ASZkXV!lbcWl%
zS%fkQa-p?!k<oIz3mV}<+3RhMPKK45Etc$uzd;&5pMtIiF7n>qRAi445bgDDz>{I7
z1}@k^&2wZr)XHX?E;O~`ia1^0UU`{*H~}}q$0+IS0~ln5S}P^lYK=@6mXPurxc*5>
zP6Vof5ojwuN8-)fr-Bpgv&4nq=zj5~C?rSn*srFgz7a-@Ovb!Ob=N22nIe;fk~dDc
z*X+{q)Kk9dsl?(7)L8f`W4*RYV0f2rKJUxi*70|^@}FyCY)|#`5tg2v2A?j0Yc!mD
zv{gbhuO!n`B%?SJZM6e+tvjG`rjYbZer-#=fvGYriZ4B5p4*Md1)qH27!NBbzuA$i
zmJ1N?9C?JpE|Y0j3U~{f`4O?^n2^29)MezZ`ybEkN)$dbhMT^{6cxSTo0KAk9A*I7
ze}m1y&W?i&1L#_ZzSV3v&r*18TVd?X+!-Em=pcxz%Ss2%3^nFBnL-w9m@Fu`J9@?h
z_Q@IRZoKR*-lWtP=?i=D6LHqy3WfbN6WJP&gd|*#$X71hq<oK@`j|@j1)FHh3j^T-
zE}srPU_P=HA|5_<yu0Qq{-I~9@d3$tt4$3m?caa8$mRdL$jFS9j`82}h|&H{2>o89
z!fVqCJ;FoEAQC@9SePcMrYwuWlnd?OHMF(}^N=%q7-<8Orj5WEu2QdP0J7e_X~gpc
z_l>x2ru_7C+u(HFzPV4j7)b^ms67gIqcLM!bQz5acOlQjR5Anv*tg@mZ=O$l-uM>c
zU6Y=8-s6BCH9LHi(Cn8w_!44XHrhXH=8b%7Az*uYcVUuiaDk5@Gh^%9X2_Y@T3J3s
zB~1(;VgXh%N(eR*Id`o|-}n9zx)ByLE8r)1b3pyAbVay(qEXJrZ1-6Lj2H>neX4nV
zO|$OppbT5ZV@LVF*4%Rp<^;+(j<E(G)Q)XO&JUR;1B1>UhmqDtg~0YSHTOgN!C)jq
zCl<(^f<7hFgNR688;pE^q1XU6De!hBT5RnwO-&}}x~_E4a5>S^nB3GghlPR}yNCUT
z=Wm5IP9>6@^!W}0>%AZhc^6JGa(Ci8Q^-#BJKgH-tp98AY?C)g^L*2nHN#<5GN|*&
z<5SiKisie3Uzn-N*Dfzq5AGp&7L((0c<C~td+x5&J`Wu?iO%p;ts<RJ+OY>+T)&8q
zNyR({@WQ~?RJB99!K9`85CLy$28Qq7n0B;xF$;xheAL0C2*#~-xlu%OC^B<stuuzB
zSfMGh3Z6ygdZLxR1F5`uztNGGGNmzjZ4?i!o<X#QrCH$GxWL%}rKX+b`rbg_-sh87
z@5Jl{jkJb)$@9D#!cMk$=R!<AXta(Ca@$HISPcE>ARi!tNbvmOiqe>b^C!6THe6^M
zXz67}=bn<w{iBab#Jtdu@1}3J!PH9TjA6bF2%qCAc^}4H^{iMs*%~5W^4;l53`7~S
z!k|r;KTN0sTzXmK<kS-smoR3tXD%$~|79eh%y=z`^{;Ln73clEcx^IHH=wK%_$m&L
zeS)-yjv4;t9Ym+QebrTjtEals`cIhlygfa55+SO#D1tf+fSOGmMIA2$RzTeMKcYFN
zgbNjst#xxF{jxo+(AHC;T1jnG*o>p>;B{fjKKx4pQSg}8h-*sgod&<^&5Kshk?d*&
z9`Hno^{G6NNOhMS#im^v&CK?Zv(<?611gh-t>|MBXiFrzfj@KFS~`o_(T1DxNNeot
z{DOVD$wEC?!USx?&!n~oh_`Kw{#TtUNfz&@Notjt*Ux|<F7QreH~&1i!7W}+flj!_
z2Gs_^ahC$EEwN#ucbRcnI=pz<xq}~O6-)ssR0OGHEu)TB3K`yXyslrKA@lnrmV=B}
zwjNW&5<S%`rFFww%+b0~Wu(^38-1uj{rdV-4%5c5XVCYg|F6|myFGhy+wB-<F+vt~
zSzWj7r%go6Tu>wGO}0jfQo)5c!POKv==JRn=J;d#o|O$nOjd6Kv#5NnH?}3Wh7PBt
zWu+a$*^bpmU`DmWFCQ-MkT?X1ePl|_w?}N;5nyz@l{}qyJeO_0-KPh~A=&V{|5S6_
z;^f=zCMr<K2&lND>OP+ik|;z4BICOl?RRYmn*T~Z3^0EDhNpv2b?8Rt@4XXU&AIfD
z3~7=#`C;_&ZNL<+#-DK0%M`5>Ch(JL9w%wZ;rJpwoTd|CMqxUcp7r@m70)e2n84_I
zMuz;FH}HSR0*H5;rErZf_3}(q(n`pCl{8@hCEpXrAbT=`6?imD!o1`5Hmk(1T=me)
zWO1gGps0zfgR|BV;DHS9;ED<rlk7-{H{-UPv4mP${!%%8R(!qg&}{C_@^-I88Pf?7
zEko-g4*f>ba6b8bevZHPxg3}xsJgItg%}wYs_?aQPuwp2R`s@7S>pYeq5=;K!D!s8
z?E6Em3ggLuUL#emOc+-E209s!L(W9e=JDpfVf$!SwrkY|FwZa{Wz+?I6Qgc+z&PN<
z#9SFmVNMf&IQ>&60{%(3{@yA5$Ay`ZK6&#@_q(l~<jMk{4wy#y?QYQ(rv%OF`Rl0R
z1cr)?;Z`a!Kv$4j_GbF<T-z<+jMWv`Z^{b2|3Y*$(m9{Gx*m6bOT<@4JmPoGndj8^
zwkt2QAh8}~ldMa3dr6zud0KF6^~aZZ>j5=DYPY>s$V}uFfH8YIxoN9$?@L2ApHVKt
z+J<M~KP-r#ac$a9B!K(>Esn?LSwZ!^H04B9*;`sH6Xh~ynT@9}fE*9qSOIGLG0q&q
z2`2`s!I$=1*X;Va>Sb?mXb+tjkEM>}<m)SdRq7gCnkyL*(C)6etZDq=B_+M9&i#;C
zLs$6{rRlZt=+`NJFCH_0lt0D^)KBFJdDoSOy1;Eamlr8ZbG|T$1@x>`-t%m<<U#WE
zMW*cU@o#EJrO!&yNC8d1_28=rD`~-rhlR)m|KKrRcd-WvA2fhRrc{&VyZ4Pr_>R+D
zCN^uIeQP`<RaZX@yiT!S;%Rsj`2;kJh#yW98bm5bDQ1%HZ=?Cu^Ao%|6ysg4%(cE(
z7v!sY`(1r5Ofy3|ma&zGmuO>b+fO(|8JCli`v;j=Z9`Ni-pz5qNvuT_2m1TR2`qCt
z<Gpvil{NCtlBmMv6_X*gLo7BSBO0mP>*D<tuoqvQO260SLtWEp9kwlcR1)1pE4b1v
zMJ-VlXV&);E9;@M6KSR^>*aNf89VkiWuj^WiI*iEP+^baN*x|N#?kq-+~Z4~2hG~m
zE=mRB9RH-Sy)b2U+rU{h1*{?&DBTJk6yu;Zu{KSN@Wfw4iCD18FZn{Ts)fHSJmru&
zX@tS~>k}jcX@ps0ISBHUYl*T;^OyauAf2lUJhL%_4*OF2<&}1{GFW}y9>XtAX+&F`
z+rM(UC!+Agv>Hk8h(9PQcT5f;<&3@Nv{G8EGD#|>TbNmh0|hJrX5~aRH|E*y+gfe|
zBX=85pFN<z=zqaxoto}W{LXA($hadU!r?{qox28;=}Um=tmY1IF;e7!$EWd&Iwqs0
z?d1ME&}6YdCPx51x?n7&y?Ip@UoBT2bVvC}*u$Tu*;ml_th2f0vPG!Nrz_$M3&HJe
z`sqf~<BGnxm7%}uQPX88gQ+Fo#eQKgv=62qg%7YD*sK7$8jG!nO+*hSOLmnW9ObCe
z*!!Io2FO~U9+mr_^5|DDI<NON&9y%IbEK1Fa4p3g|KqV<xu;B#jOsRf6F3(B53v)p
zx;Z*J)Xrbw8ol~fB`qt+s0|D<lXxV_A8Cr)YQ&K_3zBzsIThTub?gW=5PN?YFlziJ
zu^OG`f9($qznAW()Z%}FRRt_c^eV~49{7kJtHp4lw%;<`Tz|Z}w`v6rZWJIMUeCop
zfOCHT=GkH56WwkNRoUz^y?t1~GX&<r&@1;;rMJvP8v=+4Nkp-d?c0k#(-7j1goHdw
zjeseK1~&+K*zwLga0oY=BOG}I?`A@paFQ4{5HOxwI77<a!cn=X=z9))%((WUDywl`
zb}Ex%JR`5T1c4MF0{H6KE}gaegc*A8*_Lb=YE{WsZvBkFD-6jetIQ9G6mV8E^GJFr
zId`SZD9%x{`3T?4HVq<_POonLlR?N^S?v}_xCxY)V9A%|h?5sO{2jNO0=pg(FluJ7
zR9GtOfjA10Ojs4(y8i}Wy43M2mqR0V5Up%wxw~S6+J2F4blRD)>I6MKrb`bFnQ7*o
zEPmv(3h78uj{)%eq0nbC1HekA2D5Zll{0^QMYI(^9u{_fQJj6>q@L;1pqH9)TFs|s
zpsmz|FEZLMK5BL&>hR+xk$r*n$?@?d3OnNb&(kd3=g<L@M4!Gx=1FtconDs=3@BYk
z6Y^5!y-RzQwJdr@B}~q-<8~JT$dr|p752ZYPv3<f9mQp4(##!rAU>ZU5N~{a!KS9B
zTU640pMO6V5=!65Tw?O-fRCrTHE+Y4E;oGj)Utl>Wj=F@CXbpd@z4~gtB+Mv6Zl<S
zt=TdW`JW7Lo%%`+O!g>@zFZ-hq~TYy&@?tP&5*B?e~@faz}bmBn497x`Vd?KiecK2
zv+zSA^KyQ^jrpt*8o)xC$QH@dDPfYA@Pi-=W#{der=NT`r?T|J118n=8{M#w2}SXC
zcp)z>e^=kO?&(;|ZN9_3_%tjB<mK><)BI2HcR@|X2bYOZnXX-r)=sAUT?{5qIFdin
z&>$oeCBL|(=}k*pp<Hs!l*XJ;+8ZAmqoons9ON1O7U(AvP34|PKV{VuWO@6af67s1
zGBE!>H5fe$<&Z**=DBl}F;1-9!4+Zp?TiMd!WGux4cWiY)8NkJlfm#6&FG10(L2w;
z>GMzd9qY64YX9v+p^cvsB8v9>;&26BRw+ZgOQ3EzXfy(n-Hf7z_`dt^D%uYPt%zJs
z27{wiUEL6d>H3>iwT5yy#${~x*Xz+*^G@TxVl__v{Oz=}27endo~}<{hH_QW!eV3N
zxNY03On|`^a5b7IatBQ7aPXH@UfRK@Hs`LbvS)md(kyVjb6QH3N5xy#k5or#o~S^<
z8y!+YsNCa%!y8P%P$_|9{AQ!055pYh-7)xa6|F2NR40atB<*Z&ba%^d50!*#I_j~&
zmt`snkO8pD;bfPiBCjC@R)kG+MHYOCH`qMS$t9GGoP|4JjuU=D+Rp!t9yH63DZe_z
zU0+{czyup{w?sI~grtAhZ(hRi$tQtG>@I$F8u`SSx!6Qq?(Pw_(?tq#%m~@Ar!mS~
zBj6a+Wy7RXcq~WD!}&P|ihe8O!J%4V?79av<-ruU@W99<`&K9!(HCal&30pI0e799
zX5qr56CsG1H{7s#`O4|7j8-}@@kNfnlkw_*_iyUF>c2q5^W(yb`q<2Y<-a%eXcAdT
zk$}dgt<;GNrLO+U*JPbr;ah9mSYGEXQE?QMNIG8d)SLn%8Fjb6PPu>(P@Six0@~+I
z<NhlF@l8~lB-Jp|``Q~XCI+b(1zK`cLPSrvgMw|43kLEYd;~(E{2L6J85tSY4h}yw
z{NVO0_^ae!H_p86U;^cmZ-vA*`m?I^y?9@O5>t$iH{h=7q;14Zue=)d1LF)G9kAt=
z8Mw+_GIT~xp+st2B;~d6;@4Roo;5Y*Qd#uIW-@{s;0yIHV>-_^*`;{08ZR|NzY*oY
z$D@-j?D`f0Y}+O0R#F_kl*Mg(#xa;{{vuN2)k!5soSmQdgkTYu`dmSjm-ly_>w`vq
z6?Qa+te{J=#^M#2J<ocBd*#Oc(y80iWv7Ako`nqcAN_{9kxuwdCjJR`DQitejx{?c
zXXJ3_NVRvf`Ej-J*L*x~#zeY@^IQ_Q7rf6L931AFz4%rFMx&K$vexEyk}=$leE`VS
zE*{pEK?FiH$7fkJW6&{Tzt$ETE7bYtpPPgG*ksZ5Odd@B5S{DG_OFTh`^~Df!N}lL
zR!`Y%6Su;2(saU!F7-51uCK-N^UJJniwaS{$??Nwe7(A@1jV!tYI7!G+MNGZ4JX}v
z&4vtIB9UvJb$0@8lBFEjX{)qI(Dz!>X;Zpm@9MVJy|l~umwG9W6!@<OwM(mX0356q
zGaWxF{83Ltt$35p=%+j;Inc?;DVkCU|G^A(OrSm6^)K}GgySx`eQQ<d>4D{)FRhdE
zCLeuonoki0U5NF|IB&FbmaL1jSxM|A%m#sK;neZ*@j#@Ki^x2#Ir1y;UQ-+zUyhqr
zUrn+*yO|HKDY)6Fgh(Jq))^L6g~^GQLoqF;g$oQA(OV(v8jKqCKL(|7WC4=Pj$co!
zOeEPV-MPYFFWw{)<<KFY9T-tC``@PB8X}^9{RyQXoRK-{;z)OF@Ar@Yghzr@V^=YJ
z!Bj#%KIJs5@}D(HbG}D?{wx__y={r`N%9@AzPpq_vT0vb4<!)t+8$eh9Rw*CIE^|}
zGF5rXYVIji>#8qB(z&vM6zs8yrzMlkgp@y`>1DSH{mp**d`itsCMD(!xo+NQaM`IA
z10AU7gzxUUD{!-{xOj*U)MX*;*tXZMtu9-i4@cv+oW8arHE$#p__K&yvlO0MsCaFw
z>*~yqEF0m<d|Uz}5r%EQ3Hz=%CDk*L)YjT4xQyw1*wPwH_i=u_{_T}$u+XJcg^)wP
zid3ly>h9k4N{fh;7t!Fy>dpK&uSkC6ne9%wC02UtIvbW+wcW10*--)rPW9j797W4t
zH><GLn_FNtVAy}Vq#1c5f~_m@h*=~8swo8Z`CvA+@COr0%Mm__Ug}+|tDwQ8*IiY;
z0bPadtS+S_3k@KlE|&sA#Zn>JZh9A~$pfwQG67RFEvn|0>*_|DyqEpHK?a;h@N^e4
z5czji@yg7yP{aX8x0jEy`}wP41vZk~&Ozx3(x!p4yq5}=WSg^-?^1(Om%Jd;oi7Hi
z{gBT%lcyC*E~d1UQ}g4;bvFaNUe7y&5o$-$@_OP>R*YGGj{y)G35~hBep|d1U+NX5
zOSsrb(+GOn=nO67yQ*r#*WnlPZx{#w3@Ld?+%JVR(llZ|_4n{lPD6vZ)m{Sd$Z6Aa
zQ(i?SZ89OpA2A6(8BYn{i8@g?ehD4#uEZ|a2$RJ5!~pv}(PwQK_)%5QWQ5CnM~2|$
z%IalFV*ZRs5&3nf;)b11kCoaf_Ll!~jxR~2D{H^Jev8hXZrlWac5~-EGx9`q|2q*p
zNl8h@SFh+d=662(@Bel=JpP_HZ??{)nk*J4OsbjrmYiVCl#F4RU0WXroh|E~Un6W_
z0$FRe-rEZhW_7!WN9*j;6B7KRxaZ{DaFSFm+4H-dU*hdfwp7#;tEh}w?e775t&iJ!
z$nNAfkWyE8U|Ap_em1MK&xl=i-gD+nGMxFiR{SZzH*opa2V9XbxVsY4IWuQz(!#iy
zkF5e_EIRMgvlEhmVoP=L{JAFXB#=YDs8)0f(bCk+&TYXt(kokw@&SEUz7Z<$17D+1
z)7TFvl3BDiN5Ev&jl3k`h+lR`sxvv4>CA9DmIYCSa{cbtgDs6PKqu#be>&Tj@tVi{
z%9ss4EONPp26>%tztrBGD<5qfpc9*j-MrF*f_hx_I28Q6qxJL4xbU~>-5rFIs0_RO
zhx&hZSz7y@>=WPZ_U8&WR%0IBo3kB?H(;ImS5xz}EyraU^@m90lG=zV%k|Jp`#<Io
zsY&-0bgb%=0D+i~U)uF9x9JH2vlV`hj{XQwA7(w(jl5@t7mboziHj6M|1j6?iEENv
z-`2sUBLXNyD<UgnbP~RaWyU=UgRj<tF@HYNC!qy|{*HOK3yN?o<)`j4YTe(GJlINK
z7n+msnu#qkLe*#$f9ZdRL)}OP(yYinZTfvWIPBv$C<kU|XNU74Ul>yb9a4Qg_N?zq
z7=s(^mg6gu>p|9>e=;5k6`g)d_>eZUjxpAKosk3EO?u>XcZ1jqVR_e*?T2Wr%PvFF
z=`~I!v-2KT;=F)1ovh&F0VV|<PZa!_)JG}hmA*PbyEnNa0K3(N(5eG}i1`Rtxx`L*
z$}TK_SUbo2fqtp34XrjSiB_@z_c5~-FW~wQ^|8<MBh8Wym1)niED2dn+OK||AO-K|
zRuW5*M-Qof9$O;FByUk(oT6j*Ss+>%6N8-rTkB(=38HG%vpn+z^!=C3Ttg1lsn!f#
zO*JqNXP0O+isqqIGJTi%(q;=0U>6HOHpAtdjLU<*0>(MRyM768sYp8#A1pCkVA;8g
znsg*#bkJ4f48!e0$QzGvyqM>bH}rp%gE@2|J7o_0VlE$r<Fi=)TJ2yl&ynSsDCcA&
zC*%IXKa&H<G+bKeM6A<jaqjZpE*71nI@i#MSjPZ#5AeE=O!b&|{mZd!fvV2MgUGMV
z#?==8o2hzPg(-BbNsYmfQL(FY`_4e^ETS_ayO2sg!Sz2Ss&j}F+=i?>pNDuziGYt!
z2+f1;?F_c)GKz^Zsxr%H*{$afZzwu=8(QdroX@%5`I9zE8Q)UfvAF+&<n4E1DXI4u
zN$<`(f1(C-|EgsxR`W)|kO4+JX>~c@I9)|fd-_{+9}$eKwSx$LmDq}Z&*W|=wCqls
z#!r8sEMgsH3y~m;8T0X4?#KMO9xe$l?X*J&j6vWxPKu{f%=uQE+r~j$Z7a@HY}YUN
z{A*EMUjf>=Xo06>lst$b3C&OF6#+SvzN2N2o-G1Z3o<>A*bBQv|9vPlpgw;jILSNk
Uda-)_?CGZ{tNON7+BoR{08he3;s5{u

diff --git a/windows/security/threat-protection/device-control/images/create-profile.png b/windows/security/threat-protection/device-control/images/create-profile.png
index ada168228ea08f5eaa533420bcc539f695216f84..b0b7eb7237e00bc620fd3873e34571a0d24026aa 100644
GIT binary patch
literal 15388
zcmeIZcUV*1wmus56BGnQ1(d2$K%|NEt^x|uL24)}z4sc5ic+Kr2uMdjkX{pN2uhO@
zKmr5^y|)m0Ac62(eCM9C_u2Q}-@W&_&vX9T>mifLTv=<*HP#qozT+K(2rZ50G*rw~
zAP|T~MOje?1Ujz*d^|6m2Sy?&ZeIm{U3OJA@&JKo+s;1c5_xG^fI&)66?G-b1*+?p
z1g>f~LvDaTw?Qh3PhR?_<0hddU#!Td+jL=%+j%@iURJR>8Wg+Sy<o&+EKo3X;E<c-
z^f4|qh0<1Cx+HDA4zACR%zRMI_r<<?C}NtK>xFeTr<-e$y13Ot1<q8|U)o%8(;VV6
zpbI&)uae7`EjXsXlA1Ty8=M0J{Ge=`&?a&<@-Yac6^@x1T^ZTD00Lz$OpddGKrOAm
z#XxWE|Iq|M8ZWdQ)z5~q<XXHT?p?+W!ivLLW!)|NGn-27?52ZA_>oQKx2hLO_qHMN
zpAXvx8c$aahMuR9VUDZujGJ_zScly8QGLuG<YZzq85a-`sFXLiw~Ai0TD0oaOgbjK
z><UiPxjYs+9kqPA{q&H(Rz&AEsYfu2v~F%(A`g;LEub6mYF?r`^^X2>1ZyhEI}E$_
z{Pn!vk;$}hTW;WmRHdhL*L`T2hkR3<CmXyrM%@TZ<~7Q(Am1o+i0Lx>Y3}-sjd`fj
zJZE4)xh?d2b7@)buBBbOosB~KsOtOaw=B+el?N{^E4|(jHYXc>@Z_)i%BArNc=9}r
z_{3-x;)1L8`SazQM3U?2+hP+s|6y&?HK5l(mXo=?wHCT|54**3mF>DN>9Nf&Zx}6`
zl&39WAa=wmtN7ttRfESf!x?3bDtY?8rnBqN?`5W11+=D8J{yDe3Z0KLkVtccDniQC
zM^|CHLr&$GVsG{O8o4b_VeoEF;m30(Z;r>;q)ZKba=tsUAj=HaL!`Xw*1AD1g5@vb
z61aPUJz1r9a_5udtAuU(>KHdYC!>)`S)Q4Eg}Q)5DL(FP9Mu|ChrEB!%(I(_I@r@i
zr#5nrd!HJ+CwU=lGSzC?{d0Efsk69qD>XgU9JP|OZ8B2@z`IL=GX8rjBQ^YD*v!b1
zdLH$(FgkH&Qg}ED-r3-0K`p|3<Ax=>+%MaW>x0z=;R_rRuc~pC&J$WMUk**E&p*Nl
z9r}1ZbCi>t`e`b4tHEcVAl<k%BA4xi6(i%u;bZ1nz8k)FIH@Kniqp*%a=Mggf|IS*
zDVhH0h?0^2tNiP^yc&LvWey3gg2!r(j#^sD*0_*^#;MNEg3XAE4+>$|?%5a-BEsCw
zgfOVu$gASS*`SlVB`g@I-@XtX#~rYe(sLxyzQ3j*bG+_#h}S$tzo?#pn&ZZYPVUlx
z{Y7Ly+?M0iIt8&aoQ#G$+T}A|7_W_uWMR7wP4=1({Ybs+5Zr!87J7i^sGLhow1dcL
zXqZ8BYWC9iK}?Se=*o~C-iZR)s>?BDKl8T_wnuyh5;KO9GbQ{Qa(?Z932xDo3UtlL
zNU&sK&ONzKR<tWTP{^q6kPA!|#lCrCfogruRc`8mgJCY3dqk&Qdwr6Xq~I09ChOj&
z-o;go8@qmWK+dTrDMQ+at5k(C?l5d#<4Y2AbYQ9%>-B-=lMk1#X9d|CqmXw7;f|87
zGc8R=)IOUNW31=S&Nlf`e+uFobgo$PCBM6HL`my7QTKX$uV4uU+1f*+Bg920O_v)^
zHF2Cdcvq`NxYHWb!L|BdnA%pohJ$lX!8|;rB_$BO3`YyW%M)qh!LI?$0Dc_2T5LBg
z*yVOs3-WQ}DfKp*X1Ij0o*Jk4Ndxaw$mA0U;+HxD@FvotJAhfEp5=z8-{(j8d^nn-
zx5kM>mHXEtKgHP3|E4ZRx}A^+(=Z2{jGvVUnp94o2IuGI*ae7{EBGWM=iGHgyVYs_
zYTzM0MMCQ&jXSN%qRT8!mPebK5LhCKG?G<NxP)KE0{WC;r$%4@3u($?`W$oDl4U~G
ztZ|7Kn^~S3Tv>2uiT-XprtD7;&RJcxIPj6o?B^v>4@5i6|6^L4?FPC$Sn-s6VF_h!
z3u{R6t#LMycOs%sh|jNZ2<bqQcS>?{m7JH^cj;JH#;%|)UcA`e)*)c>5V`$^nyEK7
zBHAec#ZU)wa(Eus(TT-&b~bJX1v5=eO&J_EWI31U-tmZc?YG8SY@qpCKXR>M%1?nu
zs>wp0987aK5e*bvu<rYR@`FuBBRMVJSd_A08uNPq?c86VHdpk<^_m>5@!CP)wl=%F
z1Ue46x%5KUX6A9>YlGD`9woIYVX-yN6WJ%|*X_K#->ckr@;V**Mpz}ajqNAve#!(a
zbQ_o-_;R>P?z;F`orEx)9X1cvV|)4-CFYO!G5Ifl*U>Nu_~B9+NADFH!97(DlFh};
zxB$N^c$gS}N46Y!v?O;9hjrlKmXRwAB)#oQV9%0S-9Er!JEO}|lc{Z|r(lL2)T?7?
zK$5HwPUyjg9d=&F=_L4p0moRqaJ3{wOkM9$1GI7^rMp{qu@7CqyOuS0>`&b5(p^+9
z{Orck*9xeuix~4{CbPRiwY<>Dg!$=U0RBa$jN8+Rm9T`7d(+at_`pJym7>yoi~?Uz
ze^NN?jEjQfYq%tVm0M5p8{N&b>G#`ZlsOrySsLyBR?25DubC<Ft<MN^7tni=y<}RG
zha3dm$V8<Wi;R7PBh&B2!DTsfy@H(FLFDf>Rec)Qd>G=LB<Q|#zwp8J4tf8;9Hv=$
zd&pnbvKSlWgrEl*Pp0F4aRhB0`b>Ng<A3`8{rmIdwJw{bA%J)2tLhCRuCDHLAV6RA
zcsf-zZm^#eMkCExg5{IzySjm6{yR4<qnKCuqcI9Xje3X|EucX1cIxiH<H4Rph1>QY
zkDP`D@BVqT@yE?V27&_w0@z50JZnLq8n(*n*N2Em#y+OF%dwh8M%$l)B{sJ^xtou>
zi??&<Ww7TA#y5|xY2f9K@XR~1urZBVZBvhjfJA@+>op1i2t$D;#*e=$IXOAD7C10;
z&x4C3JUU#}lf}qEW@cuIV4J@5qod?_JQbB@rYF&K7NYHzKi8Wgm0SA>U0^C-HAO*)
z>X0*S@LV1IKJs=0uuHV2I`qDC4V+gNm<U+caidkzdBKYN52T7@y9xpUwe8{7NLMya
zORo_#BK=^K2UHSpXess8M$%|xa4^;YZp~K7CgJ)R%WEle;CGa0uwHVTqQ(U|w`c%E
zE|O2~(mwS5P>>-YSbQ{w#Wn)+?0h`wH5uYe42*SnFLe@7B0?(0Hy`!?3_Rc<C!8uw
ziBmR@I}mnusOsUx+o4xmVWxX*WqX9iU;7N*WeimFVj>HG&l+~jc1;YPX#q^*2+P-l
zxEt1=hTOs}!1%XxelUK9TlIX1NO=0xA8@lJBQ${Rl?3ctVNmY?{j=V^l;)&~B-8hc
z?9!%YXA7WY8SEzOf&k+a2h31uA9!!#&W1<_j0XKGVCh@4cfD~FcGbAcfSEY5Z#I0q
zwiUipH9xMZ(u6>i55m^n)RVI{*a8BYl=6U0L|!W9#I@$|FrrGB(?)TD%6xhzTjQsx
zwCQ*1t8vBq?~s{troKaN6%{{9HilBVUz9$@5WB=gxbEFsu+9~_efxHvjq>-GD3GDJ
z^Vh9IMf%H^F8xSJ-zyo4Mcb2I6fVj%Lffse)ebgG?=Dad4#L&a$et%ogr(WL2F*KF
z;Tz-ix)E;n+T%(5=zR54l4B1bqfLxFm`m(nJ0d}`%^I7K-sFwxQ=?B2J1MNG5xKa@
zl$@Htd5Wm=@S(Sx4{rCuc&;+%mHU;UIy+UNgj2x4YGf0Dt-ii0P+Cy1@YatbQ@3{5
zq*RuqZc6ZqvR}P!@c=BS*@uN@5H4&I=ry_Q9X7#`s}$LJp`$bp)>X}4t!SBK<y~Fo
zZdVglXV6S^e@r@1QE^bZCl|CAF*pe5-r!Doz4X8vz#y}LUFy%DyVOhqu8mV-PUCyo
z0;Xwpxm*LK1Sf;TTC`8yqvNG%U<onh_q>WXEdBa0(`?daL<hgISp=;4%U3rR<}blB
zkEt!YB>B_jgOjY_2MW|8On|pVl27PZN2d!kvlbR$;GM(y>rQal6Cy$Ifz<eUHd~?b
zH9M1uRuzYM*yXNNA5I5!yq%q$vjyE&c>ElPlqt5+iRCoZOw?V&33~{$n_t$O)6+Rt
z$k2_#y56z3riQ$l7}<I1f50jips1zAgzMTv8d+!E=bx-|Q;2lx#OO<<*)`WTXJ_Bu
z-HHPM#M7rw74ON*Ps43uz2^P%!G9*oRwrwH@McJHPnQK*Nc4}AFD?X*<Njc>Ze96i
zBpU$bAFtb9ceNTCh{Jf{-Jks7N(3L^V*}zFW``o?y)?G3fI!(^=~8YJN&90TFQ$e2
zMg*K#Jv(`Iy^01j@QIdT<J31{80S#KY+z(`w9U2t?fr>!KM_FR3ppeTP|HPP`Fz27
z5;-PAYTeVhnYE?#ZdkDLNia*0gyDeJxwD&ecWZnJBEfK$Mq_&K*v8>ryA0<<gUIC;
zguZ^c$pg2shz{?qs^q^wu9sJXGG@ow?>sSWyy(3$ny(I_m-Jd&sLVQrcrI)aE*^!^
zjswv`f9*Mtz@4-H%~#Q{1TTXgi(0b$pBpocg5BN}VKSLqI(Z!gl4)(Ms;bJ#$$>SV
z1HJ9^&64y8b-V!j(MAHk1h_&woHGbCBQ%wmn0R(K&a)2F)*=wrnN<BFBJ%ZS0cA6H
zIDtUJpZ}|=n4$n_(afL4PB&`{d*fgS<rcZ5k14-e)gsbZ!7-@*33_(x2A>F&k!f4%
zD=IqSk74{(Fnfb@Eg=C)ZLRZgs?O$`(h(5{{Y^8H5Iy~6k-fD^Xv@}iY{$)GnXzlk
zx?kg6%Q;((cI%(!tyISjzEEt-tntEMe`c}1PXkI#EVl_kRa$8Oih_~4?KxzvrwR3e
zS^cGi&YOGejvMJQW7XaPmM})zfY+Nd*-4Iv*R-l|R{W#>Uv1>%Ig8S=kQ&@_7f^To
zZJh3J$O<+1IQU!zrN)*o7rAdjWXW-hdI_dMPda|DtTYEgFOnkWwe-nB&}S;D!6$|M
zc5U-2;78dm)Zzg=5*0Sp;o*uhkJ<w)P{{jxas7zK^?LpF8=#siu_%?KJfoubrKb40
z`ksQR*+)+sPxR?iJhz=@j&GGY{rUC?RQD(i#TdycA~J*<Yig2-Y<~kYmYpgKJBXL?
zLCQ!E^MK!kLo#3Tj)FkRyuewpwB4PZwXE)*9&~)U<oLcCJTb2vV!#EyCgZj_G~j__
z>Vn)T!%e8Vg<B9<f@3zBtk(!?MY;L#z{1D^*{jkmH`uM$#24NbB;{@L7Mdz3MFe(2
z1=XQ5Q_4=U)3{1HHS?x1vuc-L@HXI^%n5mc-Cu><Q2H$%wR8G$C}MY1C&!QRfSc@+
zbK5Bn)vU{PzvJSwCwJy#;;5dF6s;QflW6>A3iTS<V9f^;aKmEBpKCu{ElXd7v%R9?
zco^uRew~39()|gk!7Q}mNU87Wz3Q(AvB21KBy`#nGGFl*nI1{vYb^0goM;YKcc|}I
zo`A=DA!tS?=RuCEpmYXiW_y_NdS@D=qkb{$+nq_Jo!@5h@g;0nMa4WHlis5Z?fYZI
zL0LijZ}+Vh!8$g7G!)a7py&kayx=+<M;A4PPqCCOl;66y$UXT}Hya7g**}_8FSwe)
z9i=|{X)I5F!ZnYJHYIM=f8ndF13ITf)4SiKws+$9N6{E8<1|y2$;{v;@AXH69HvJd
zmKKdtN~&;FBk4N<hUJs@GFDWibx9MpYJjzT9}<F&<YTJEN==2yuv#v$#i_KmBRqy%
z2L4OGn)^p@B|ZTbeA3q7)YrI+r#;ZR3lg9f-PTXAM6o%}eRG3+L)bqa!VH|q2=w?{
zRqiL*Osn*x`nphN)+3P;V(L)KdK3@2W1Cl3?reB6^Vm^QI?e)1Ccf{{YUM#t$k%(e
zj+h$Nk4e@yl40&9Kak<03HpIA?}6X2A}yfAnD4=ZFQ$pTjneP}{Ai|}5_W%TNPkV*
zRN!50hf%za+zD8kTU^?qQ<|~*iDLI7Gk>H?Y*^qUmyU*(=gH2a4YGlqNi;n*&e8+~
znGn2L3K8*XpHmOaQkja&NJz`5?q$8FV+}E3aBOJ4o*ekO;cU(?!~LnyqsT9K$o}X?
z%{BTzbeWC7eGX0=&5NyvPVESCKDGt<o?42EpL7c30ZDNMeT!`-mJ3#SxL2d61D9xn
z<Kp*H1dSt8P3S=3%D6ue>c7%_?_<+D=?qR5@E&r>5q>`>NYINT0aGVL>RTH0ND^a7
zy01e;R(SYk2kCU%<V(2n5)?~SM8!NOh7k7gRHQ>>#fFEQ*Fw0}SvkSrTciVNCB^Yo
z&v#O$!yRh!$j2E1S_Ra5(&hRSD-T^qkop>I)>lT3BEk<>{Ar*fW#!@F!s`&|b?165
zd18iM!d?FruXj>`vF8$!1f$ovz;Db?;!1P8|2z^x*0>HuH&kPsjlY`Q29xQNe9YP8
zTdwAzFRr~;z-JwGyw}Dl<^}A=6AmK6vox4~piPZLKkPQ@H2P$i>z>-D8>v(a_b84}
zB3~UXG*2EYDxQbNR`q_mLEmLaP|<b10kSWQsAaq)X17R)zY-henh}mow&K4|e~Ur3
z#miaUW=L!sk2=h^SNo1$Z(prgwlYl6=gX9w{aHsJ!u670kU^>s#x=B{Ke2^g$42Z9
zOqHPUh~w@^&34(Xna^<^Rf>uW(;wB1qCN$@`teiLVti7{Q?VjkIYsugK+5X5($wbo
zlTL#aG5R>?SdB7a-cjebl5&QM3$7!zVT(C9)C(S_LPG6z+o%;@a20+Rv20d+;jR8+
z+%k4Av>9v!e$y{_%_1QyKIYI=6BA2IGIKh|=l7mx40mz(ZrZP!F-;V_LFP`G@ZLb;
z4H3Hn1vJDh*U@EXuahx22!027JES>dQhQ{J6Xvy^Q|yta%N?TpO*!-=JbazQR8d*E
zG){lER$5W9ZJ<yWL2p=ayEK0CfI}&@Y6BCVbBq|rHObyNcJjISpnH<-;@gfPHKk9#
zU92=7Nh~~bA`0F;iL^cyN9-0eXv$bj8gPZa?r&~*y?ziiv60Tkag3Unz<rVs>-V+X
zUgjL^lW^W_<XM&Wwp!eLVJh0S5Z4W*q|9u*3OZ)2FRK)-@ffU@*)_Xn(VP2Ig_la{
z(XvrVt%y_SD_LS0Mcfto2uOxBY*u2rdeN&f{P&5j&BS!A_28xfUF}@QY=4P#w^APF
zMo-?)(6!uxwz1!$`$M<_54`v-F!;@iXN=AHV#>~gte~Q+fw*s2O?f+qR~MWmvJf(x
zUTfA@yKclC=528MF5Y_^sTaJfe3FsCzWi+;&VoPPeHBa}R~03xYYkbKzob`%Nv*-L
zS~N^gUgZIU*L8%M`>3D4es>U()w6WTW+Y}W-y5b<TDNP_46pM3p4Ibcbhc!#WcP=~
z<j8n5J9z~`P*S`%HzMa{!@GW|c~;Cx8@DfN2Rpsp^QfelT1nBF-F3HJUIg#aN+SdY
z?~tFTsAoD{1l2N+GmK5-iUYLGA0;`0u?ZbLJx@iS-)%1Mji`2ffpuWBw8Jhm(x#)6
z*6&qc^0F}<brdrj2OqePP$0i^423Ija%#j;*{H<H@>*%n**hg5<QDv$$R3m91cFpL
z*y<yE7=3M8pu`-&0$7i@xMr{NdBcc6G(1q<sXe3Y4m}tgpV%a}`&suvdd&Nw<ow<~
z$F1|?>3GfH1;6#?ocMSP&X0b0RAGaRg!9CJN4`!uy)LB#>5ffQ@B^M!Gu^Jb)%9-0
zwujC{S4|oJ{K$Y;o)zI=5aNLo8(w}Nfz{Ewv3rcl*9wq#*8>=6-{zyu3KzXy^V=c9
zh~zd8{0nEB^wg$1zTU^GcAVhFn5LnHrk8{?QRW33R^+R}%;#o(ywkO_?LsVOC0>u@
zj7jC&nS~vBOintPlK6L{e#Ynv)^g(heY+0pFEPBo91WX)3B=cLy&L@qendny=BAE*
zVtJx~N8;Oi2|eFu5N*&Ybj+<e8+DpYL|xYrqqvp($l4g4^H-dEFA{TDpU{8wh>8Ak
zRO<dnbzi5Mn!L59dHm<*w*B;<$AeWW;?Si(PRIeC-GU82U}viDCk`5}tHLy5Vs?~S
zKmv5pNM4=D+9g{|Za=6-ILhCy^MIx&vtF>sAa;!h{#c<L8x~c4?>nDJ7W7w%Dc-Gk
za4LngGJ~bj!_=Y)4MO%q=1GAM;r_US&J$h?Dw-6c|JdfRb-@55C>&N-T#Cu%HPDDD
zS&Qh~3cDHzxP?~1xmERYIia?j3xZ$(%xNe2Os7ApIFWSe)*D@^opN72#wp}CH?3xH
zAvN3ZMAC9_-Rsrs3dDm!hvXIiy_l%1ee1Q*6e0Ei({S_hN)^adhV<qpgho%=<ai(9
z|9pzDF-S9S^!|eD>h1#p0dJ{{$p+JfJ~xq$xcI9M_1QFhptrl2qJHNKpn)s@K-B-}
zjdEZ9PZ<4=!T;G_0POTbSc-8i2MFZ*LJw}Wya0EW2Z6S3EZsW?D!PLO{SP*F9gfxf
zLY(;$sfMF~1lg^rG%LjRfp~;@W<BBs>&S-{$&}%&xrC~$hnc&~*lXzZ&{EZ~RhXs&
z-y>mB4C_L~CI}?plF3|4^ED+k?QaO;wM0J5r^A@se0m9pR=9lwG<00p#ih_@hNNsK
zx34@hy*JqNQ94p3m-B^G;_V`6=^&Q8Ra~L%+&$w$dN#$&+^uS}uP=|}tUXBjdQG<^
z66V(fc6c)icF?Q*%Rw8(Y14B7BmiMgNsviyDy@<dmwuV|J5{3X4Z<nK&&WBvCw*Zs
z{d4<kNUnRP$S38g9K*<2RJzr(Kiz^<e_|pnjdwUuT^SF+O8RlI)hbcx=Xhn6aJDy}
zDqfx*H+juGs&3}oqyo7{>>Spi;JzE<b<z&ywIAgqMPDi^zNdKhOeCnjmDn*}H>~%X
z>&epdd5m*Uu@uwm2%kcqz1-G4a1N6H!LR-0-eW0?XP}nF4&8Zpl%#^1hoa&=XD?^H
z_>9GdG0T=-kC&n?1N$3cuUbJQ0_|n1dlVqs2bxycw<(1^%%h7d6<mtg&P8iMbPznf
zxabOrK5ngu3U@11`mz|P#n1MgO)WJpWmusyr+-kGMX-e9rtodQ4RG2);cue<;L4AN
zTp<0%j6M%liPAM-`31Yx6aL3-c-^T(9u<G*&ur2k7kw9oKPzGUSn%b_*Ie}Ug-}M&
zTaTUpv??zLTqY2!-fGgk1_Yx(jQxK!_!LNxBTf!Dr7}esdm^<N!eQJ9<Q{#a2&vjX
z8^q*FCux8{xTCnP?yz8<8ye<`oO#d;Uve=|hwd!9(|J>aTvHsdKZ6HeqEEjn2+SCp
z)7S6JbvR*}mZwNN*#hF*)_@UrvYvEo|IEWNB{{K=a{B>SzNZ1r7@0Z`nr}tj?gw(6
zFBRbD{<)dw2X|`f)i`rIs;bSZI;!(+D61%|xrsOgr<zXX5D5;DH$>Dl6Uc<QNok?~
zRBBKShB*qvDXU!4tjIh`uT>`527tv$5vp?z<E%WF|JFdM=YS?I$2FtgEnIk;zZ+w2
z;JcE%#9Vs|&zg~PV1z1PcnS@*bS9NZNwQ93@4lfhd!$J>${3bnt@<*3y|PKE(oP%V
z?q2Ny@0;MzYyjSyP#Vh5&oBDM@17pvG!(lFrV%>Bu+GuYF~6^WIXb4NSFnWm3Y#P%
zB_P*oCi=oNASvl}oxY$z$TjRW-8Y|5{~6g!Nozf*;<67Z_{-s&>OPz^zvzjc*K5E)
z=ZfT?g^7N%E}5_3x@Q<^vgTIW^vTU$V{`B|jQv_oV1t-*x{)9_M?AJT5v}Jm6tz~w
z>zQ}&gJ7kePp{V{Tgb#KG%N#`=PgL<@ZL@>-qJY7)J2z9D=-A!4jAPZC4uLl?0qA?
zq-S&L)MAnCbKBkkl1C81)2f3%UMaMVJB_O^I;qFRX8JF$END7`!Ae=*ZDL}mN}*5k
ztrBID0VhGSJ_alu{TAM?09VRivR+=Wmgg>qJgSM0`SL-CWaHG;^>@(4Z&9;~N+o_D
z5V+80W;mRrNOQ%#kbAj{tM{GM4uS5WXDN9|^xmAKh5^H2Z&~!336wYf1`^i?K*I@s
z#+2PAG0OD{uC^Zg($y6w3yj#v8q<+phKa1ynW3zpdfca@k}vh>mtxPRjsNnu_Y!@?
z-yqc^yfm6y?cttG+i3ah7f1m5?b|o~;$f#IyPwuDV+DnE&YwySn}PAfcS09xDk=e?
zZffLu(nKha+h32ndz7;MXa54%uQx)J5#cxSto)>1HgL=ry{_$fSjaWYOsiYB!C<&3
zW6Du_{Th>>?XlX}fl*v~sk}?EELXSIWK!FeA=QdIIo3m?H$EPyC2Kyp6YB3{6O>bQ
zp+ow4mMm+Q$eAw+hP>2cUE)N=839q){;h&CcGFre%!@EtBd_Xjf83n=up@?+OIbDY
zk|$|n1#dtgmh!V&fR?Z44)Cyd<8RkO05+^JLcDm`*rUQIMBRAi7U;xDn;uxLs6}@6
zyEyuTWANFt{kl3anrNy3E(&(c&bxDO#ZmeW#%46OZp0<F3B}4_KAbdbj0m4<;#27u
z>D|xJt+?}RQCGVe5fs;?q~{Uu9QLNn%{Ndvp;K41I(fTmliITPmX0X*Er+h(HB1eH
z7eUDs{8Q|H3vsnm{;H|+ql!=i_gyOHn><PVJNHa;tS?4{2fd2wCI8|gQ7V!P3z0Zs
z+()q9M{3+Hoy42KB8BwZ)9wbJf?Bgo){=j`djh8LJE2b7;9%STpx-MY%I#AGmr88t
zWqn!xy`iS*2L0J9qQ6sZqPfIR6@1rHRin&|bcBB9FrJ0Kn(Iv$gP+W^6vfU}=!FhV
zY~02zmu_}P1yygR+dFK|{`J;_iiT#gIgph7B!re-=5Q&^Ma-c>B~qrbl&)URqHlCe
z2f?Wm4EbU>w`@Cx{<7{8`AOMW55|)VIOcfo(VGle+KANe>O?)gAIOo<DewoTPxp)=
zcEy9`<-$i}ZCxq|zloIv@gk<)sUKqoI_=vCgtdq@siu-s<jg~)Bl7JlY$3V`%avz<
zkga7>YlkQ6P&XGF;FKUFy>S!lafM1xQ*xW{vTfYCxLUpCr&{4p7G%6nDN~Zm#9pF)
z$qL5mm)1sXM@)#9XR#HlPb287tc+0O5Kj~9&{>V#a54Md&qX|_)cWR?y|1OZX*-lG
zL`$#h&H{hvs(U9m%271V2^~oTicz|{He;Rkr7qF-mI(geGCglNa`$(23yoZa$#zLE
z@d+Ywm9YFtDb4wFEda_CsmadHt`AYK!E<??0XMJ4nFmWO(|+9t*_5QeKyOVHo44dt
z{#$X#-^i@#bT{iXfH3L9q^pFbB|k^bvW0>`no`8*Tqnv?>c$ZQ0eOl*uQq*MqEr_R
zd}v4N%IXo!zXq_XFx-s1ZPDtlvi%leV9zkoF?0dw*uOd1|9#U@U<x^%G!J0E#V|Q8
zdk)kh?E5zf+^cf_pEsR<*@Mu;u_a(b0k~IgLqfs558Q@qU>!^KD-cTuT+BI8P;P*%
zc0_CHRax$8qHciB!SxO<a|eh;TuNd6(rtPn8@gRZAAoff*Nnze^s1rGoM7LWlt*yD
zn@{rrWuhPc^83LA0*SPy=S|5td*&mw6oJhyf@h@tHCJ-VGhKkVlj(iQ5TrEHR&i))
zB+b?P<?Ed5nR71`zwUSNz?$bANPVzr-6<vM_(%H0hLts9l#wpQ$<S039;p^-md<_6
z(kwOM26ygsZ<nc*8oum2cJ2-q45Od5zm;os4+M(d@r92u#+tJD*bMtaK5&|my5g!H
zNXpsS|L`_ELwQGN54u)Xp5plV&NKjX46M}k9zWIeVFG2d$8K=a$Ndu$@(LZk_WF_>
z>6?Rc8#y5C<|OTiy~-y#&7z}+En4@UF)p7?_Yw{O%ZA<w+cnE^YNev;4dtMv{XfgJ
zVsV#xMkw-m&w*UaKW4h1rx_XIZXhKzNedOtZr)Q>+r@2fDj7vRfScHF57psJ-uJ5N
za=L}{m?$!5)_QsjuN`l#jrHvYxYGi7WUf&KfZlc|KF;R=knt}>zZ`Cyh$qkO{{8_J
zGF=7=nSTDQq%vCp*tD_EOchz<fSkFx;`5-#Xvvo4?{`c)K2Vyqz}O94pj`X5%WsqX
zDOf?Sek-gqB(=3afVy5tc^QzCbEv4aNG)y}pa%lkHj#Hw7tMSAuarON!dO!Eo>c2#
z`pD+T8wF|))yNfx6Bj*}4(gnpop*gMfd<|#O*NVyPc1+)Cp`~#52Gn<zV?-Ws%Q)G
z?)NUDe=f(0#glk0UVgpb=gAHqlq=ye_=vhMF`91r7bsnUItojHtXt1UJSI&)yA`Bz
z<rfIV-{L5?ytpW;b6Zfb-%$+OG|8Bma3xK<!tFRG5zqEVZmAdNmhr9AE0q0u&0R^=
za+Wk5VO+9sZD&>bIAx?R*UcK$q5?{fBzw_1Geg|(FbgOjRM6`EH~;vGpxJ5$0aV<C
zRcKH|*6;UmdKcZ74!&-gbw4T%aO?h1U6|fjvR1_2<33@gN1!mhb^=@tD`sB347&gG
zO{K^+7vl;eKE~Ku?9RH=>yWI8V>kUu<!xv}SWidD!TXQ{Qw90WTE6G^9B1}4<))1G
zd*sADh7;(^JVM%et~;Oju51EddLOcmFOqtsBQ{P=J5Jr)v_21+D0SyQG|a4JVoiVT
zZXn@fr2g@s?V%9os1N^1h?=>%tLuJ69~fM9H1_@yX)M;bGwD`n5ApANH71*_Zx$7i
zo5lSO$=}WGEk^bqO>hP>MIH0~GIJehb|}0jN0^H92iyqfhtN>tQvKTP{EKPB_B1p!
z`@W5(70G$f*q>l<{b_)HQVeEfs^I{+zFCfx2EX}q6S+!K0BDijvG>~-9F!o$&Yd|A
zg6%53*hXeweDwouvnEYmwB%0NPZHhm^qNrM3%#j2-igI=`Iq9Dw?BuI(-Y4wWhrJ{
zkfLiW_<6hgWVyO(@B3N}b)!q+P#av$y!@gehU_zmIBL<hd#VYV5ijJLD$#d9{j{bL
zvrBZ8epzuu+{{o?6yuyS7Pa!}sZJB)kaz$Fgl|$IX|V7+tcRe-ZNBeCDR$D2Zx|_b
z+^s$-;yQ6wpEy=|GQX--?uvoxyL^coA9|w;=;>thPuWJ1QpfU5n@%^=MsqwDLh7_E
z+56zU|9KFS#<)p#=l5L~#D0=UaD~b)KA~h8n1M+>EB<~w@6JL8ao6Sbg@V{)KAV8p
z*oCrXX$<0U9Ur4?Sn8YBJT;lwK~cx+_@aX8p7Q3S)&)AB^11@ENM|QG*Oz(D-3`@v
zt;!F2!+r|`<i>K`l=3V!pjgLZz*}*iZVnvCenLsd9<YlNPZJ$gY?F37<e-=)DDH}C
z^~BM29;h~%r40xxMVX6Cpr}%K-W=!j0@`aZErpzF1(^S%vE}00&v^lcd}pG0SXC%3
z$jl$WuKPaYE}pr`-gkJVNMf;-B28Q=YWmBe+CDR+j}+l<aO%O$n2-Rv@xA?wRS);=
z55mE=5zS70Tz!3iF%tvjzh^HU!7FYxCT(&AnPvpW8eb|M7Z<6TYPrw1Jwr6pLw~(X
z-QdG`S@n3QJ+PGqCJqs6Q=d)6#hl1BI2b(r8t#d(=}r)pW}jS_aa`Q|ZXP?dBqpD<
zNn^$!miuacKcd!Foe#flh0EZA4dVej<Nl|edQyNGtT`=Wz5mf*JK06?1HSGY$akRq
zLyyZ$1_T63XZlBE_;=5oe$^GT3vATOpsc=g&Eq)$%faq8KTK}t)-WH1vEQskh~)KL
z6sH5dg#bfHk-P|(cSSuwv^cuz>AgOJst!C4%7*<%wsY((<@x{IL=!4c$(|cXd6>62
zz@yxpZi&fA*RXN$0jf@8Uu&GjuhWs`Z-$HXn9KqHy&ugXPd;BZ2L%8@(SMx&mxuWO
z@n@<k7dHK1FAtUy25DpggXj20lhVIv8~*u{ldJ{gl$m2K(^}7hI5gP@x^V%`<T3>r
z{PN0GFEgv&UXMt=rny(3LM7gRQ~2)iEL`v)ia`ZS)t&14I?{&)<f_rkUc9Q=1D79J
zKAd$yc2|}8k>7cx*#uS$ux_9idc3rSg>z&^Qn*|<RAGq|Yt4eeUt#NX>WvlcjWi$$
z?tYXC(Y%m)=;E~R`pjXy3qJ>2(|r2^UqQICQUpKG9q+e5=FfAkXflS1M<tD(T`X`{
z2=~Zli8_DFMo0BiNyO{?c0WBz9FJhkt+PC#oz^kb+b4184C4qRYW#8Yars-EV)Q%{
z$8%qmb$v(KEX*p#VY8UosP?}Tqg1i1+k-JcEQ|hnFRpj2@^yaOjprH6f5+RAj>d~t
z-s{xcl^1}h+b8O%U=sIHZ?f!uB|_dpEssZL<6yK>(3k+^iQ3>2y<ZN!?RT=yQs5No
z#*O`^!7>N6z*d^SFNPeL&2{FhUD{-b3sl**kh_uz+l(|_KfQK5`(c%Z%B%J{O_EcV
zRbqI!gpW;=U~Z_=s)>N0TFODTl@FeKYBIjrYw<I$>V%#SQoC4PT$o>+blE~>JPMj6
z$XXT9S*B?oDJ4Vtx!9O7SJC{rLPH!E5+&%35R<F>Wd~&WR<jg|awH96Oz@QvOyR8K
zcZQE6x9EDi8fLo|O0l};EIGVx&~Mh}I>%o*ITeyzCNrCZ^zoA(?3H;2i?x<z(-vRh
z+vZ)G%<|?U((MBK#QC4{0iegiIL`XP@(_s(@Ea_AoPGQEVYqWp&=YNiH*HCF9xD{I
z2u-oz`c9s?-mVIGqkL6)Ru2p+j!b&}6~2}7lOiy?8Iu)yb5dWYTxB;<AtX?-Ev}wN
zZ<9rS?O8@v8R7HSbA4Y*5boW6CV30Kh3I}f@s3;YfU0yxpLtt9Qa4*;*`R=eiKJ_Q
zf2fv0*qCAWH`T&x`>;%!-PiFdK;+9vu02BtJd}7dxA4=d5L;D5VHr68?71gq)rFP$
z)*TX6<oBRp06n4A#`HHTRLgH?+*ri(C#b2`z|od!@ybf|;pWrQo5=*>s`Nft>5@l$
zRk04r5*tuj)#+)LK6W>A71N+|#{3_rH?P|0H0eu>#NPq3%|CO^3}2D`+C$=MJIVF_
z`V~K!O^8*&n&0+tR<4jHIFMno8mzVP(l%Yz0CRE|Q&<K8zBP$YV#C%LSPoN%2UNvG
zLb$Y?Lrf$3p|V!QleXZ^n4=Ic*o(br)?ooRLZ-4xoOX{(DFYAjRfzJ)xyHTHzKHCr
zgv2@~$MDau<{NqDp%|$N{<W06ABADH{6UVyyDEX+>LOyUe*DJf8)11au^tRGRI8I3
zkL(*vb&eC1E1G9%&9#8()o1J7AV=G0d5zO4gx~Oo(Z3wbdnU9emGXRE2DlO(B1=xa
zzp(Q1^g<esc<Jf4siRrBviQumRc3M(T*`E{@jtdh1AF)dgUt-xO9tRl!y{Upo2!%^
zSMIC%&o1^;tHvZsQ0bIPvx4CZA8&oM(%8nVo-gh`T7S>!gU`&lW^*@|cjBgOS?5%H
zuz8%<kGzG?xM+2FsG!KRXweNwv+X33jkA+V*xabHzB5;WIKp;G-viA7dRyQtfF-9q
zyuTCkIu>PEU5ly4=kv2M@`1rY9X!0Jf5cB0J98+NI--n>SA1al<K_KqOLOIp?)`7g
zyt1xu3CqFPh7Wm5(Weskciy#o{}DHgfD#**n<bk)h*9#ipPDQd60k2qJi)|+FeX`%
z8F-Koy823gGlR>GII|FLx)Gx+X7|oLlrx8W@mf!w9xn&N-C|DG=gKGZulQV-g<odd
z#b(h2b8$|8t%cuXVPVY;_EnYNY&|f4FP?#k3D9hyoFC?`3G5kHrh!uIW8!-G8TP*w
zb;iNhTTUfj0lf|TM+wfqd;eUJ^lxeWTN?jWo%U~K__s3rPbtHp{pnbPm&5u20Pi)o
z|21FrzbEMag|GYn{^vY&Tdyf4kWXk)xp23)-M}lt0l$p!G{gwazAK%i2R*isdFb4z
z_Fi4_MTX5a-IyA0K@ezp=AGl&n1|6MAL#g5<=>^8|2?jWrp!FIbxHTsVX7_{vHF06
zK2DfndQ;MUzQJ6erp#H=hY~(U!n4S4y`nq^Lf%SNgwr4h#Qj;alSX1eu%7>3O-+3f
ziUuc;V{tAh6eI{=yU=2_e(kqdAZA&e>=YzN9$*QZa;wW+IlwbXdGgEcdxVLFqPg??
z1(ai(oKG@vG(lhu8{+cw9354qJs0^gzYkLd(Y4{|qd)KvpRCn`-N|$B!0%?o^+J=8
z+sP-VD`>BiQ*V)rwyi%o@MZ*asKX==C|k+o{JN75#n&cYpT&{O@CWbMn!E$IGB6wO
zKh9zTZ=jo7|D4J-tc87)Cn`?;*~d*s{AO^{U=1c`QR1hzA}28}D{sr_f*>-^&&P!5
zNe1#VHJd9`fyw&>@21(I?bTwc`~ZksNMR2)jz2IM^p<giI3^}JV6b2SjUiPR&~gOZ
z#_B3^5$v!^-I#Leoo8f0G$CDzD=0rrX<_AeV%X`n-s*EB`8;XGvaPi>iOO$zI*J;S
z!G7GeB80vJuIW!1Sscb+gWo9aM7XrChqALlww6Gk((L`^d-4xTuWqlpC;X-rx6#Zf
z8wh%Mkr;j$l@^4qTho2sq_k(ie>mMoXS&R^vOe5lu<&xSr(iWuDFBRbF5KBHy4xAh
zlsYc}@VhZ1{bD4azTEtS6PHyn&(7IcW`P4Im5(dIrj;u#H<Al`kQ$dVy>aC%gH+R_
zr#<1?;?d|~g#B!P0h99LbB>Kh=|)K+EvW7WEC{Z$8F#Vv1K*|9ilArMy_3aG#c`A2
zrBL(W=Iv7B?~FmvwffI*!=9OYETFGJA*W%^JEyk8cN8Fk^pcBTTGkt%dta602ZOmE
zXhz(8-yrAP+K=DhA&m^(d6eJjewyWzxfi)Hy*czLMAw+ieh$R{V;_T6Os6(j)a;V=
z+V~`<pl%>*+hE@YYwrBCt}bZJnt6Q0^T&Mu_=m$(bE9tXv^kRD=($GWNzHV~DHO$0
z>yLF{59{%Ad{E@*q25``(Y&;er<JcM-3t$HSvW;3;j|56uSm3VserUH4cy!+(W@IH
zrP#mu2bs}ts^$P|3iAeN@aXy*XEoBk*Z#XD{Y@A|Q&yECrmb##P98>`Z*loT8Kf)7
z2GDXx(bH4?(AA2v(n)Gii=^+&kr+_Fz?0nW3#6ru{$JEyZ1V$$prFft6mtI!6t~F$
zZUp|DDQ#qv0w6nD>;5ZO{tq6(g?@Wy$Nrx#`oEoO`(S5h?iL92_61o!+B!{=K;aY*
Q5EUR5B@M;0r?1}sFR>H}q5uE@

literal 19760
zcmcG#1#lcol&)zpGcz+YTC$i~7Pg>;7OMpoSYR<TT4*sdGqc6a%oa0m-#c&Kn}rt}
z8ynLRb-Jsfx-tv0BLDCFCrnjY1_hB2@zbYIC~~rr>YqMA@Pij&cv$cj&GQN`@E3%$
zx{Uaz$_e6Q@Cvl0n3CA1Pc<<}uRs{^I)bCDuJfl)sQv#e5J^m^M4vt>4#-K0X}TMp
zWg-}3nLmGY$?3Tm#LT~4loCU#dp7-q3)j&@3=MsT@&q-ALo6cUnBgSOIC*@^b*IqQ
zr{|LbsG%~bkCyzrwYTci?VmSTG*z=oH+!EH;*z7a^6Z{L@4bnu`Q>rJcj0v-eDS9}
z4~l$xkR5r~^=Q5exsTm2WZeIBt)=d<54;U$@9?k=W{5rVp%)Sy7ymn=iT-7+=}`0z
zS|59)wyLh~2rh9S`vwvcI2!)H#WnMRdH1dPn7B3v(R+uiC{hvFCuwP-$;zJlhv)9a
zZX>2X_%&Zz07)o>6~R(`6WYteY?%D2wvl&`L3URVz98^v&h{tp=4$jTd-o%ka_Vh6
zrJ4zdaZh3xRpjNJ=rc=XJe9B~P)ynf5OF!4fkDD$?si=?C?YKx<5>g*pozYsyREz8
zxwHnuwf(ruKl{eKo)O)(evPAU>bdoPzCNAVXus}B36#f0O=lT3#TlR2)r|2t^8STj
zJ@@(S>Ow-{vaAHxVp^N5Ba8vd(zs+9If5_*$ZARI`wEhjmL8>ad%IgKlR1M2rHlHC
z<mTpH_G77Z8?zTvRDw32yzijgEvJn&yF@=hW$FH`djE=qm6>Yc@q%O7DIB>QzenrW
z2J8D8z;+u|+*L%Otvw^Vd{MA;?}6ac&|I{LU)b{N^ABEL`!#xfCyhcyv6uTZJ1xDj
zWEKvq8ETia6`X9}_ZDL9BN>TirLFT+PE@xHxuHPcSE6}ZyyUdi{_*tRB6&Wh_zv5T
zSG%c#u8gQ8f`K7qKKNXg6N&3zfh`^PD>k7K5fVUP4zmvq4o+0G?=meqS=s~e#kjq3
z-{2K^65tLLZPAX(OaR|C!afb1d25QSvjxn>*IFVr5l)OYMGL_E9gG+Iof`DIJB|x3
zQt3xR%)n&SK)C5%;mFg*&(M^O!7;SQ?N-s}-jL{5tzTh7GOYb-m<t@oZS0gsdH~-5
z(yotdp+AopZH8XZSZ=?JJ4=}iAB`DFQCcyykD04AKj5Asvip{BhKws0<vnq28edGW
zHt%=+e)WMIPDMu&UY}1KVsGxh<-hL2$(If4n|5oI=>fOv)~Bx1jH*|)?8z}LJN)*9
zKKw;Pk)Y=)>o(7Z!V|HXS)Oo`?W=&hf9cnp&QKl$_VF?*3jZ>uP?+p})#+@2!WDfa
zZd_D<$)1$1{1CtO;Du|L(-K>ysAIR(gw``EOL#f8ou^CXwC26f<hemZ+^qrpIBRJ1
zXsqgb*Tbz9x@gCOfq{8k-Fy$u_IZ|z(iOG$TIxi5wJ+{X2?-p?A+?6@fM7ZIA*m5n
z?CZ`t2^0)VpS#y(&YUM1l#8Lfem_4V#qitvx@g=FSGCQ0Jzy@uYYiFiuo@Kxm4`ty
zd3D#jg!Ohg@uzLrXc2goN-w$Ag)Gy#8If2_8hZ53Ziq=q)i6+}V42ef!X%Aq&z_MY
zr}V(7B)EbwY#aL|uZQM|@Aby9y-vEscmILDE|Iv5@;Q4YB-+==Z}I$IZC1S<*KPN1
ziHzOOSf$8GRPuG%EpDnVM3|0Y1xNIP8MZy!uf~r4?OmJw_t0Bv^UDv-@<{P~dei<8
zY7@)`IhC{T1}$Y|?r;(DAAvj)c~cS-O=#+jt-Db$R97<DV^;TZEi?Q-?wJjJp3H5R
zs>Qx*2TdU~Y3kUEe!SKZmVwr|M~|_~-%&&}LPn<E*+h2(_!KS`P{MwCU2R)OW(mOa
z{G#G0I<lOL-9q?ySsE>>z7J_*Kfu65pH9mx!T-z)71X73_~;{bZ1Y2v<P}}-<TiHC
zw3j5=ILAwhw3oll^HveLbfkY+K<ZJKHDQNDKdfls{b$>tuz1?)7wxxYxc%Ae9=eZG
z>57alg0AF=o||;*DZ6@FyO*x5L$nRa5jGyD_40kxM{kPYqO<OY1t+VQ$q8=ZhBNE_
zLRC+B*2RQKPC4~nsch~)B&obTXmHscuw<(zcTD$1%6-}&7iz+r@y}(3(-x@;F(YQV
z91d}ZTm7^m5jDOd&2n4twWD71F-qGhyDj{(D77{_=#q`10qab@G$2(pjQCrk`;1bl
zG36%4x=T#gUf1nV?_&eA%8k&oAJ^44Hxx(ivn=rFBn5@e7P4kPGL}0qy96zwH}5mV
z?Z%Xw8w`cQ9v3le1!Y+)w7N@3H}|p}6<@|cdx8U4`|r+1jixP-aU#3uKAjar{)CKe
zBL2JR(dy+iiv~h8<hrQ2w?>P35_}xr<^qs+fjWn4CMG6kO`6RmXd;i~g-YoQTP)NQ
z;B!#kwcO-ADz#SCc-($e#)Pa$a)Nqyv_qHPKN~c>dlxuuq<*G-G+b1UcD;jg0Nw;^
zJ8n)2q<#j{KTF?BPRcsT*&L^QiQY~ldUs^;m)-|H7!I{Ru!RjObuNmHbcmdQI?%pu
zAKJV}eqZqS<&VzHw@0mbmSFJ_+-Bss8lU8Mn{Q|?fB;seq*o2hH%XfIRDND6vYUMO
zc3=C5X+B}I77o5*FK_Z+bDsR%D9|*WC$qcN6VSXHEwtAnpxqSP+^YoHM4F9l6w(&I
zDn@57X$N_bwmGk&<<ryROVWKiEGt?3Fsa-0(z+hu<GU%9Y=B-EiPXJa6udhimHqqn
z)_3F&4HE5^1z<I__TA~+h@bs4W*kPehg(+_(fQefn>ng#)T$Zf%Jv{xG*FZ#aW>6H
zwdm{N5mJZRI_O~G6y$nW^%y;O(?0h8uB}OC6aq&%@9}w@_L=Dl%4wVE#))8XoPQJ1
zB-0to*(rfeWsol0i*j-#Z1QX+E{ogAuuX1@+Ut5n=CNauxE=d-2r1)b+5dX;_0ky4
zN#E{9HBIUM#eUG$_mSiSLtAs-gEy#=gQB?s1GujKPV`FpS4=BUlh45ewHm_SHsajw
zRIezeKXBXjN=7-kn5qo*jfmtKwRhemcRZ{y?>yLH*)vi7`3ARn#+%<`-2mT}E6EOI
zk7mbg9|;#9AFqB<K~ATf5o@3cLK?}75n+tT7+O1GBFPRJGW;A?jJCMF&f&IA3)j;E
zVfP~S8;PXMD0ss7{8jz2tNBw{&th*fK=_&G6iP7)U7IOpYpF}0(uA0ytu&WU_?2|y
z^pQ#VxE@n%fxNPhMZ2V}|5wY6+Q|ncE;a0~-j4%#Vs<1l#i*Yu5~Z)J+0(o0y6(5M
zrwJH|tRRZ4JEq<rRawacjUqnT53t|YuZgt^rFJIMIPKltaW_uixJ1&NLZOe__oD<~
zvD!P;dOtd{gGn{n^e6Zvjco^sg?nNKI7o-%X%wn|JlH>l!Gf4VZ@le$<FQoO|E@G3
zMc}f;`<4@lNB$6iYif6qE*c_}fZZwR5{;(+Ae!p^zVH@ICeKH4cGcvl+U!4RNwvz3
zAF#<Q08m9gb_mZ1eV`SMyk87orJ{d*$X2^r2DCrkqrRqlvA&)4T}`xeG~cjki&;LC
zd@$?z&Eb6nGGuQ=!*pazDOVt1BXt<Ahn7tH2FL7gE(w4>8E#1JZ{UZ8T__Fqo#8<6
zs6A&hiS(`EZ4O5JMz~bElP<SF=-h3@;6FFf*SANXnAdDAIyCMy6d4UfU)bbu`|X$$
zvAbWc)~?#hz`c=O3<RR7Pj7yxG|S&26o|fflZtqGA&R_r2J4kf-K+zIoomrBH!!tB
z2QbtcMRD)dR`*@VGL%1Lpy@jN7Ns}By22w_=8U>B#Ws3>xwEvPf4DX?_Ohptp5e>}
zPbCad^-t=4Y6yMVT4QpAENw5&P+Bclm6FQa8x0K^l*0wIs!=;#L+uk%J8d&BB+Lu=
z3K$6}JT;=*xE&q+<RJ<J@Y4tsBwaAg{;o(-(2Vog68QW3_3W#by+ln>o~H&0U~^+T
zcTMnkUQp;ZBEE<vYs~?7-avaw&4^z#o>uKgAkzf<#-9R@vSf7R!zc0@D=Eo81T8ZV
z5MjTZ_0pRWGHz0CaIA<2#6#0qI#{};)(NrsP&6wg1dFbV)vh@fn@<v2_eWj75BHWB
zI5nFxQdmSkh2Qg*NFh5f_sy~+_qnq$JN^?*oTTryAII<U!e@o?``Ae#x|ZK_Ro#4I
zfcTR?VWNTfRYCvFaiGzxWyH+;g|?6V&wdQ}W3WZ&>BsobTClqxcU$rQ>g<1X`TuLQ
z$7$ZgWgBupN`b(Q@C*dv7d|;gbkE}^e-U&;P0sf5-yg~*&wN8^Fv1I`d!5Gziyl0(
zrgGYA(?7D9^^iv&URe1j*0Q4S$l1yi&BtWACQ4X5xZwT`^x2h#tu=q=um{xPA8>8<
zUavnqYCH>}gr;LGC&+BoxVd$kEri>X9;g_GP+3Ie4ucOJwUs5n9{^#w`T9xwF07YF
zPQvlN;)(oD9V#=9T-Sb}qG*;wbP~B@P?s6I(8mHl*b2D`KEqML+y52xMr75@>k8>5
z6eM0+q9$Q5`{WmLIo=p!Twgsf$o?m2yA#KIAW5U6v}k40wYa}EWfmxx7TvWM*?Zrm
z*jwNH3IDe3@_p<>vg)`7o}IYwd4#L_Dv`i!4#FTI?n)Ee3t48QWBg}<Hvcsj-!`|d
zKUxPTR+AS8A;F6hb`w)PSC)8UjF`Rq#%r8TtqL)m-kmQD*RGTRWgswhjO3y6s0^px
zb3iEqHBKd3a!g5gxU!mF+#(Okq>x3-Q<|2Oi*7g0p=p~cFO+I+Rb#1n-X9o&OZB-0
zg||x(GYEpr1msB@e<2WRcgke0tsR<v*F3x%oy%Na<-!^QZh_zdVGZW@tjx|x97_#@
zC0<zk{e}REOB<ev%e8DIJ_pGMKL~Qu$22qBChA=d1b=%Mq;lGo`?V}&iY{IxVSeHH
zK+Bq#s<Vu9dn|HVmQ+A|WcLxIL<)Yuph#I9#fNX>yr(`CVMYGbEwS<MjSmg8@Bw>s
zX@-XZ;nNRKUru#Tz72IMWS_ccQc_{|%4sn<G9;Uu18r5v@Ruaa@vD0JV4|m7CD%;f
zKo+aKUU_<;!HZJk);qRKzQ^vNYB+N^=0lIkYBGEKI~0-C&X9f;w16IR2jRCt_Kl!J
zq>SqB*WIZU=wqVH9r5p>XAwV8EllP@si|oX@*0syKC^*lD0W7)FNd2Fhh*bqDD5sx
zLPq|uGWNM+h~w@#uQ+c+FtTF9_sj@2C&v#UBOTWmeix<DvE_S3#MA7@!%fxDvrecj
zYc7wco{3#8gH{KeNx=x(|8_Yc?PE{j+hHtqDvbE>i0tM-?t8tsjL0SkzOvTY!VkXE
z`;WNB3HR`Qk%xWpnlc5skN^5r8-e|iHzsqxF#_570uWX6V<)YG0=W<11K)Sp@^-aB
z;W)mG9t>m^P1DDFWCV|CLzMrb<0E7c0O$3N`F2%7%inwEL(6l3vSZW4To%A@I)qNv
zF~+}~brOaL>Myx%t8ij`T9DK%=+&D97QWW=aZ|&KiHXUA5bI3-5QbMz84E<$4p4L`
z>gM104`&8n_WYvfGRR1ZCpk^=xBIZ^8r^iD_m?s>|Ao)&yLkRuscF0W7c+4jz%4Al
zMR`FM`nNsP<+@a2v>7iOCsoy}SC%f%Q&5XUV!QkNDCeQ?vfNAYcps_Hqd{DF$a<_|
zSxu4|ZXPXxzGMhm96yU=e6Xi4h<@Xel5uFfAJut1K~6Y;h~J*&8Yw~*08j+I?A|<1
z;F14jj7tEyOJPEKzb_uzCy`}C;K=b`y85X%?PT%SJ=4FZe3fw4{^P%y4p-8lF)hT7
zz;s>oJEf`z1?p?PC46#nnJ6hqFvXaiIoEiQjJI1W?->TbFes0^yC0wHd>wl1w^(fB
zc}SdeCVz5z6KVh@B@i8L(Fj(7SV~zW(!ba0XukJTW<{m+-?u-3pn$yT-V|uTEsn^r
zk-^GLv#%}aESZM76LK4nNBKq%kc`RYk_G#a<?J3F#SzuTU(ON#T>rp=E4uBOXDLQ;
zdh?_N>BxA91tLi?hyJeDW=?gCJ6WObM<aXd))AVkF#o|vJ0_4%7TTR0el^#1*I`@g
zaam4A*Y$FV-e}wvrwkzc_H~HnmPio!&2_<4I)fQWyluhc(#97wKPf<fPt3TMPTpUT
zqBg{s_w`hIpn$A_B&DWBGP*K1pzZHoW$0_6JzozXN9lCsb6sZnPMuR|aqrd6m-@TB
z^AxDt<_d52(X!|ntA$XrFf6v;LZpej%g-Y{N{Y+Ddd^ZLi-!FKwe`e>XBrq;jhQ?2
z5U#V~yWt8Xlucs|3K?zAB(TzwJt=|X(aKczE5h}gGH;tnM>jP#)-}%rwVoO!tTM^K
zqu2s^?R6`-6p_y)2mwje@;0m7n@z4pPZ@p;np&aXvWM#?9#~Ge;p-3)F9(0K2P&56
zH~w7-38sI`Kf~hSr8iU_G!7hndlXfsaHr5`GW;?>`EuD;g;RgH5q-t%H|r|7+Kp+u
zqAdqy26w#x^IHkdw;qMD=ZaDAj_JXqu7K>E28gaez3dAbI28Y*XFRwk5uzr`n(cFL
z?exT4J=INoJ9w7r%}y4yCq2%-XACtG`zk~Ud)OTnYUlwEBh@?Li57enHY{k;TVV&O
z_FW!>cz0vc7?FN(0<e;oAf{tvr#F*oWaU~UspnKO(U%!VjS1PdGi_M|uZh*=^#m&&
zt~5P>AiR7VzH_4fvcVNO^oQh(-F=VT?4q{yMLzRoZC%Vzeblz&Q0;bn&``&t_!GF%
zjFog~rkFqmy!Fm!!Y8d1_Y*`-RihP~qPHA1Gy(GdGlIDZ!O%XZP1`RYle-+dNY84&
z*~&XF82!uFJ+3-KeM8DOG)p70PD+!RR-P2EbjqJwRV!^KOPf^9N|St51BuwK8*<n2
zvXLxFBpw3hNT)?Uw)Z?s&u}!LYH8L;CF&M{;_m$Koza7GX{O7y&7U<Qbm2-m7evCc
z{n!*uUZ-^!GlF0aM))N+dxG)qQrkS?lB(Wo0o&L<ZNx^|hLJ=cQ@8=*Tvo3w4^kId
zG>$GS(o%!JZ~Lt<>k{aRu>E9feR7YNp4VM!vjl^8x>t>PyoeD7AM2^1<J$HlaFx5Z
zoHA&Q7Tt5Pp$?SAE^t}QZ2Ck&$R>B51>0YTj7d|1^NkU2Fp{;ngQHWbpA@L<FBZ_2
zC;_|jf0y@SrcEJ1dqfoOMUH@z5PQuq-ZTGd9{^@D5e;Yg+SvqjZd7)3IY4mRawyl?
z9bXqc$KCTQPq;F15Nj)($-+giG6nr$$I_lCVc#2x!Sh<C4TtfqBXrn<HawmNG@(lF
zTs`jO_hU(11$uF~&gi}nCQ!WOG%E#(qy85H<t#19MpVie2<Nz&Hkg*JTqCGhZfU0G
z$}XnN_ChigdElL3OUu_GM2>IV1!|`&&cp73>g|QM9+!_4p@p?xQdwpY7ir5dnZvEf
zB#*%>yn>1z;jWMa^&!s7g9#?c1xtgmskHc9vRnn|!lYJmVslz#&@LAtTi3IVR>@33
zRizt4GZNGMmd|pZA-x_p#cf5dh3_np`hzNZ<~x10B-TPg5QtIgv*KJ#&IiNSvwPMm
zc~CrSwdPt{_FcqLBaa}UP-a@;A7pU|;-s1V<vx@%=?gh3glj3_MnL5+*kYlXcEYou
zQ9a@LoKttQXCPOLA06mV7hLWSDT+|&iz7TCwdbvlORl3S4l5i)q@q6d3Z!0%i9<va
zn|dS$nWO_|e(zjpKRdxC>jm-_CJq_vh~(T%&BfHF0paZG#Beorz2JrsKWfP7&`4dj
z>_DO9$zaiz1X$}bl6gd%UG5l$QtWHUg?*-Ebr1+aUZH3k0`62ZWMNO;@?zpE%osu(
zoNIogQP62AZ<6Di!F&uxQN{`5!C~5z2ItC!QFF_UenoeV7ijvx8~I+%_b=fW*|t8k
z)HPnEpn*<34v%);1!A_n><^aiFtVF!&W{hXI4u3|SM0BbFJ!`)^`Dvmi$Tv-C7VkF
zc{LXcZ$~S?KfmQVtk{Ze{&@RFu2xj+?3_LZIo)X3G|cmvYWP`Sk~LY7!r_lzsB3Q!
zhF`@hIK?qS)6m-5q9Y(9zFDbRxk2_2hv8=Om6VwpRnVJF64rJwF^J~KIfg8Z+1udy
zHBA&V<<Qh{4fb#4A*GnXtK+6bcY2wob}(Q+$OdlbozyIj`#x&;T%BW3Sx)kkZj;?g
zknvmmSAO}sxC*p%m|TfTAlugP`LAIX4^)X<ufSxRqo4L@@j^+-K~#DVvlqP3$>Ren
znLB1*Z=5-n&r@#s`YU}&`%*}2#=XP7E9z@O+??5=H@^!gZn6TT1U~5^Edo^^NN>Fj
zhhsHPOF?f=+7n_N-Z8mmU8|64tsbH+Y2x9LOHD1QopAaQ+_A+eX<NSfpWZ$_c30c*
zEzF`xni~BY_I-1nty%X>()Thth0Xbac7iu46u^q`2DK@1IbKuzY!$=oL=-NwwP`u#
zcwsk5`IzkP!EAsie0i#-{EkV|;zu&i6mzl$Kv>r7<q;<Ho4r#UXz%93SY(jQ(#g^x
ziGrB3ZQ1sb(-B}pcit7Gpw>|&74=J79*f03VnVW!QE$GsC84AYN{us?g#9hqTx8vm
zD0g8T2){VR4aX*f0E&ySg9g4S^&!a&<|ydE`;$K5PnT(&bkO9ODI@n56MOi-gjxR)
zY=#`6VA<pQ`4orqq`U>tf2mJcYmHvNGJX;yK3-L7<R@uUngi0@MbTEI1~%P(vA&1a
zjJyyx4}YE84Od^DI?jvJt0sLDiIK59l?o4=4<%Uh3v4XP7{bsejoI2gnwJ&0(Dy9o
zzr#yPnss7^JkE~`k(py}|DAWi52!b#WVA;kN1B-@KmOUz0b08B!rM2IQbr*yuweLl
zEz#s7*iL{~2{5bf=vCUw4*!cF!``Wo>NK4ncX28&*__iM)E<4QA2Ld*eO0A`?xa9`
zZu5}qHPlxi9truBew!b1w*SB;+e=xakLnr|He$^o7_^%E_LtZ~iHR;3mx(oSA}uDB
zdf{~isZ8;XcaA+Sinr2xlf$UPTA)R`KWR>Y7N#Kjes6_c2-SR;|30EyAo?>~1G3$^
zBvCP0#S81|)*Rhk(|8REs%sfv%wQLjzNo-$lZNm9_?O4%^G87*LKfL}l3qy>>d(2t
zE#4=V1a=)6gZ>q4k_HUjhK;m}0}Df_t}ZpcL27o-FuF#fKaD0bds2VgZ?~4|&8RJY
z1`UYVRyF%XL*<`yfH-wkFwZRgc01#>*84NkdC53ZD}ZU-oKC6EfR|3w&XqvdnoM-w
zM8Q^O?Enda>w_gW$V2}7_Bqb_U#o%AJ?2Ci&-w3-0*yKLMpnJH9^CH+%X!u>`uYo?
za-C*esEekFA;ATSA93RL*&XaWDm<05I@NbUp%<#)o~{EH;~Y1-dYeZNJ*i!u;Uxrp
zBW;M#`P_PNd7VAB9LZKbPOdq}!>U*8JKkpinvTICaLyj&q#R7D=XY4ED{48lHlyy0
zSy$`T-5e=!dW-6|dQAzy6Tkn0Af%R_t_Lm-I+gnGqQD{qP!eiBHb_S3_0;7e%?%d!
zg9P4OhV)M9|A?4oqL_~96d?YAN%wzSy7K>?0^KQe<HV2q>;cQ0#o2f7RH5~DHTuUL
z8vl0u9@W<L-t5m~B_6IQ22A#id&@vjp(*~Lv*WIUC1cI`zDsI|id1A5#7@E9;GM?h
ziDi><e|!=8zUepIxCCk>gwo2Zrr$($90Gm*{Z=)XbUjiUvmD5~HO+4YT!I}CumQDC
zLrOzqZ(Re8F_G2WvqBoKg5I-|;r#}4J$ezeMc}sbFf40UnfVoFko#fiaWlS@>O^RB
z`VAE#jUD4J*sLv8ju5yrj=}}!nHh{Pg=$zJeXR!zf6WLs2N7x3Ww?aU^47LZHsYY%
z^yi&)rF4qB^gxVfW@ZV@!hvVgNq;kJ7#gwB;eKu0(XkUsvJZHM*$=<n2Hc}z&$f_J
z@2yQM9a@^v<G`u?ak4O)7sc=&6`+ckc&2pVanR+fqOG8kmeJUOTN^>J6=BM2gI_LW
zuV?(8Kr3=;2y6e&t)iI)twfg##P?t0OHWVIYZ<aba;cnL*;@Td&4~(%_>GPnoSesx
zWeBy!vbbFLhYI+O-#9F&p<`p?%`I^3F&gvX#S&>VXQ-Q&Bg_9H>a3vk)~Aq(tv1GN
z?b96B7N1Z6G-)!?n+6*CsvSYFN!ei|ZrIxmPeMRmjgFC|&kZ0Z=004t4!T{8H(J{<
zEUW!|@H1$_`u25B%QuK@V(UeNuI6f94Gb3`sic{EHqsIv7vR^fKlHY{XSieO6j&=w
z2ncS_`qrxWa=pB_sQ`wxwf&%)^>sR22$4>9_$!y4a|{)7btSC%BGG(*@p!Gcs(3w>
zA(GD;U~th2MU@rl?|@WGYrgmlvF807x@|z1WZ>JnC<4f@^YZRW=5V3{bnuc_`;80P
z`M4z?GNtKEL-ykWcOahX!Fey9CR{4H1$(U4aLCxn@@?0GoXQj$c}xblXZjCIh@9R0
znzKLdV=XAt&w&?WZsw=i_jkcmB2;x$1xM8{ql-6lBCV(afXf$rh0Xe_d!%x+q!XX?
z6s@C^=6&Uv+(|@4nleY5O_IJh=kE*E_Z7^@zn<tcZ8U3SYdCORxa2W_rJJ~fs&KbB
zqO$zhfd&oy*FfVD8NhZ(x<1L5!B^pB8XWw(rk$}ie~@TF+wB2cA3MtSpz|%aNTvW}
z3=It>2L}d{O)zl!78-i2DfE%zyELbsgJ)8CJ+*)^XvaD+ouw9CBsnoKe@NQ6MgSvb
zvnoVoPQ(3an`@Yu2U9MsIVx;@T^*yPJBDF@k=Df8_LEnj%E=-^rfc^0SHvF<Aqb_(
z7=n_*Pn@J831MnfNuC8H@I4B9wa>AixR7_3;diA(GSeRz8CzU%i$)#<n@nV@ze$Dn
z-chdQwg~7XNOum66aEfkI_B24Vu+ShnoDR%dho$S^vB(G_&h9#y^XrRdP-++KHZa5
zsk}a4yN9my4teMeW+Wsgf+I>6@Cg0~r2HOrVG%f`ks8gR+p)?CgXg1ygYy<lJN%(h
z8iYdk&tZMh#~CM;$uuGS`$k2=;6F3`wFJKh8sMEJzIUcAN_E_Z{@ANOX9621qP&Kn
z-a06uqk*YRNKFW9s|JhR04DngbNt|%oBseflZwAqq3zEz%Q(KP0P1-Dfq7`aN8u*X
z4I$`C0is?oiIs6a^(S(`0^$dQME~#nm6Y01+6)Cn;+rG7zkh$Szg>fc$2bpu9lOi0
zdSW{FWN8*$%WQ94V+ZcR*rRe%@X8j-nT??n2a7PuYQ^qIFut=ybv?kKLU*7>lw`;p
z;Q6aIygtK{UVN`cULPPh%IfIFIUWLskm0^0g1)<OkXK!dPh?o$-~3C+7&lL`cG#EA
z<#Jes18_i9mBS0jxNi|z?ttQG1XR4yMcd#yt4`lrp4W>lE!ohZ;$Y`AH{+||qi*3B
zV14NR3AkL?hQyw^dhp*AU%95D4mVu%_~804<YLj{uK33#JKp?zxA&I^I1GRm7`Pa^
z4>v<C(!C@_VbCc+T^cuid3>g45|p7sm635Zw>oo=iY5+>-z`eN`(8GdRDr|x`{dC3
zaeEPQ#o6J*{V(y_#8(GO$2rx<W!Qw^H7j^D6g7io{`?fHa#Xuiq$aUuvK$J+hsAK&
zl;p76K-Iv(vSYwOL95WJItF7%SbMbbulXnt{p`q@GMHun<HEh*EUkBz4T{<Jo=dJy
z=X^ufSxOgaoS3=H)0q~(o*IU|GY!p91hAL={^Wp+C^3xPkY!>`&WzpTBy49W@69!f
zRgAW?|Gp{G(CKM2CNCyfK+s+faJ@-WU-W#go_N?w-ALuZ2Ill!Up3$6S$iBRz`6WT
zjcK`>jWbmrjBs7{l8MymEGFK?%r*Y)IH<hcG<J1&JkWfFX2(I#jpdmcL%1W-&!-|P
zJU*1}Rvxd&W8qpQ!kGW((U^gsUKJ4;IS~?;B{rNPN(yx}ac6g?U`B6cljAEQ(l2Ja
z_YS>Mj$hOoy1|L)X^eJd9C8Pv<}<Oe*j5odfAaG`D0y_!YAd7}jRYkT<(4Vm3=PWm
z%Jw5P8Tk3N^fX<ROELDn#P;)jltDK1WC@zdapW{+$#M+`XX@6D)!4V;!$s1J3M#SU
z;^oJq`L~bgR-=cBg8&8=B22~s7RJPh`MFV#z5HN#1cCzfijs_-0R;l{2Fw=j_<E|S
zle-p8mJ=J?JFUhHh8(Ak<Lb5Gt>4<Vc38kGO19DN6_J8J&<q_qb5eV8R0Vo3(pCkE
z`?WpluRE0b9e;40h!r&-nsuydzQL71NW}*S4$4I!Hh9p;5)|Z47!7-)x5<u3)c3e{
zNO_CrHwP_<EU^{@!OC$&$QN(mD3vnpE4tPlD7h-i#&YiaXq*_oktzyk<i|cDkK=m`
z@Jf$zVdZaqIcXF0h~U7ZD;Tp=N5i;(*IZ3XU<?X|R`9D)NPJDwk$>XW+P@OCs&k3%
zt<>xkzRODVs4lwwaTareA@_X91~YRi^v*oK=2PKva0oT$kfuzVR)~ZbJ;j6e(t<GP
z?uuHuH($oS8*SxE8yrQaz+r5U=-KoQ!f2Zmni}}$x9#5*E3y5oNn=7j{Am`iB=+&s
zmr-2Qf$q^ENA?1~O8f2I9qrUmf&j@U7*0>(&tDN|S1hLsuykp2a_}FYfy9-<C9UKf
z?m`84da42tXOQG5wS`Du+P;((s0NuHfMgXArIC#0I|u|xXAanaiLZ`EqQ*BqRJvJa
zSm(@rj}&T`7z;f$NwR;}!pdV*g*#da2k0Vik@EKlZoVUWmYhYCf~RV~+lM)8lIc@)
zbpn@bGBK2swZ9$B>U=c_#F7pN#ss2Pys2^WL2!Ma67vYc8JMqqPg)!;6NJ5K=B9?x
z@DRym%j0lqmy}|3#r0;VjRWvmr?&@Zjd^D0J|p)Y<&z6!^-N(&42Gx^<UXWpX)mL!
z@o2n}!tO-%g{XPNuP_hQ_@V_L$@V7_4_P4=Ck_o`ui{^+5C`a-tRfNoz1I6Vtr2Ua
z8jA8JD)Z`iHo(eglo`Nu{6=$5+F4Fow(|0H=!@jIGbCL8=R-7u>y6rBd7$s|$C>Y?
z>=fjhlL6i{twEOSc=*sn55a3&j)N*eX$I|f|MA}~+TjRAMvT&E9IEOHGM-X<neZ@E
z=VdG6qJ-uR2>QbUFYNum_G;887tHXH{hfIAMCBhpmGP&|HC1?WUkjFJ!X`(_{3Lm5
z2C+h6I0k+(XuX{k(-TMHj9mhcp_&&bKdq}dA;1w{E%{ZceKGeDuHm{1N=uz;T+K?M
ziZ>HI4v$b!)oa8Z@e7C7ot7%d{auaz`C&aw8K}(Ki6TfY*^?Zt$B1VY_3Z*`Imz{_
z!!AQ2OoIf`Dq7TVpJ80#+}H1ihfTfV5>NEG?iXl<j;qD<b7I17vR|=&e5DKDcPd||
zf3w(Z+6`HSQ~>SNe`P=QBV?UKqEi}hw?gXVjt?EV;@NGmgoedsf?QSA+K~U~en9tf
zW-j$vp^8`w-obc$Sms>&v04Y;Nt4w{I{xK5Rb$Q$h<H7Qh35U6w-AcL`0#BT3;Jnx
zdi0rzIDq(fg3WfT*wKbWOjaDn<5A16dv+ADn5ur6w<du%$i*1?BHMGlzu0uauING;
z9#PYTXY6n#y7x>rElh`BPF8Vz5@R||F-g(Z{J%2s^*YQsJ|ba|mzA(z^44En`NeGW
zcdqD(_u5ujecwREq%1IBY5&`h%PFy7I#QZf`)Sm*utK?EzB-E`B<{0VOa*V5qQvR<
z?hH*clAO-O0H+$K=)g{cW4OTne!u6F^&BG7xygYOlEe^zU7SpfmsDMeD-Lek$OkWU
zEY7j%QqcOT+?R|l09`JnNwv>3qGl+b*K8+;4aGtj89$9q0BXf59Mz92Cw%}#@nj`Y
z=*u_Z<6CJnCH-K;I?O__m#GA^Mzb^YsDHvhhs=dY4<Y9(nt>etEz49}-zj{TYcaDE
z&c`z}MN|KF=XbVV$FP2-Eg+<}zW@gi9s_GM<`t?#tB8Ch1-65b5q&}CK9CB3GiWDF
z?odWVntR|>>I(UDW-oWbdha~EEWpnd&0fmuuxHrOs$ofOw50lQpF3=w-$zzY0L{;N
zcZxys*I%Dp3*Ka!IDNVa6Ty-^DyV7^A#@D2IqB))VhVS$58RzT33Os^44kHfmokh5
zd<L}4zP^(K^MFynU9`lnN>*tdx~%|-;k);GKK0=5`4B4@>(9rR7Jz1_xEyavtqG+5
zwPxkf2aH>2YYR3B%$6Nj=(<kNQ$b3r6(oMnN~GRBBy@pq0=%(4?2@obWj1h5Y`eU|
zF|5}?fy8sd@<v~%^0Z`jjSaWbLr<wsumZ#8r}4?lt#|+tMl+1<Sp18)d`DrBkp@cV
z6~gC&#!GKQ7^@752uPloJkGVT_{I&KbywwgkfT^UsR>Dv;<in-RowRNg(Rei?r0U2
zT}X=t^Mu}Shg;8O_64yDi&VL09>U88F%c@WS}5pE4E(6}t3tT_-i{`KvdU;jzJ?vM
z2pRrh1U&yy><6BbvM0U11}ig3g7}FZd1r%YCzYg$lkWlrSXO_T;Dj3FbQo8}GgtPB
zjlKmsI!h4>7=@d^WN~}&=oGHNrK#^fPIy!I+6`5BjNQ%dnVoVKi8wN9=sOGvy9}pe
zM3by{Nn5)hAv&~IMtdZ<QorP|cESl{d2i-K^_Ipb2pm>yEs<fX2=NmB4H!J}F~8nC
z;o{eSQ(1HJ?z^$qUb3b%`B_}~yRMD0js3od3ij8Sd!T7*ytI&U#r6s}=fsXgGwYBQ
zxlqAuazX$6-Zr3Eqb+0iRO-nZ+)>UO!2Z1PFIHv2q3<n6+BOzWZ+}4~W8d^TNUr%i
zA(0kQ``<nz?^MIv)>lS@`ZEd}NGngaa#>8UoWodev>gAU*$IWgzI;iqe1EOtu52r%
zvA2_4TML3iAl{9le;`48h~^!4fkYE_7~<N?8X}l2m;5IuCk{%|w6)=2Oay4~y5jTo
zKn`&;p|tuU&;9`;5b%utKVv4}4#h>!u<f3RAb7g}nb}dP8wAlWt0>YADK`;=4c--0
z-OU5>B(0a;P`LKdzca|56=R8z(f4e6&$CK=UN9p(K}9M+Sj!DZ5Fl|{K2WG*uo_EP
zDk5*HFQd5CPMWs9K9@|BTr?qv)VIXbp!0@IqJsY9Fr;~Qy%<&g>%g<4_Ib<_|6qqw
znWaR)YNb_0D8B><nlV{@HXUu%7b*;vqe$QrDj&m5YgH=ExeWi~K2B)A(y)}Vs4^B;
z7}#HC^DE3ry<oE8bcDuC-n=1klk?OQB(F<b7Zk}?)2Um{?Qwdc-q0?RsRL&l?)}yx
zy`bpaV5lpVdAF2EYMjax#$@xkc`Z{%$e24AF3felJf<_0CJ)ZoUf#icoXrUZDt^#d
z^`7-Fb%G4OM9=PQEH?E5Gt!p_pB{Qq??h~Uj*!2nMN(9ph0sF-wfsqRYSwxYmTfNL
z{JL&AP)0-BeM$TbUrjD7X(Ne<qi{Rrb$38iAhHxknf;-d46-4s-ZZPq1*W!+2~S)3
z?_kvr5SHGGq#Hw@tBmU7O0ESl9Loa!4(&B`V86v<yvSF(qwAO7S)kQdWz+TsrcTMk
znGYlBq!`gxvC&pZXbGaAJ!bWU{hP03oz}_`qvz6pf}{v_nd1c(m9*XYIb7Aqoz`$5
z-*oM8KrZI2224#V&6bPOq9b8e4mr;@F*z(!f*XT%l|jRdMk;OJw1a0(k7y7II-qx3
zWJ=b>rZf@hb>=!V=NWw}|5YgE{j;s-ZV5m5Df<c^oLN+K((_dWQ`6rv*1WXD1Tn0@
zQOP$dG8t2z7Vpu~R=l6Ah$YKdsvH}w(gb$bFz^VUGe<G;2>Qq5b3OY_-kdY%Bals&
zDRD#(1^KEi(qI=)Yj|RR0#lL1GrnFwS-X|7iYOUAj98tqn}?-8FRsTgUQtFhh6j8%
z>THnU>e{cqs2@zRRbzmNHrI_=-HE7Wa5%i%;`Y!z{F~SgsM3}u<JKze_>AmK0}85u
zli@G#F#miU^hqbiDu&4<x52Ca<$I2r<B}V_OnQih?!s>4W3DZonA7N(VPT!)^25I8
z%FMT2c4TJ`a30kZKe#3IKS$Dk9aaDQ4n=amMnM|)P7l3@83Y@2b{b2rLSXq$?I`Ur
z_@}|{1$@hX?}G85Rj`D{A6$3ei0b^uA%ua;9}H~A{qKlPh-(fJDZ5QUW1k|VKKHUC
z&w4dWZCN8JkY@_Pjj4$CT<@yHPP_-NR3Qy;_F5wc15+bn^plxCz@!U758~Fh6G7dT
zC!fqWSfvPk?KXzFdq^f~0DLX395;ms{#eYBGIsmIQbW>W*#kO1vE*J<$*e^VX9+_Q
zsr<@m4=uxa?&8F{f`C1816yEn$(cPVF+~n<YQu%)o6N`*n?wS&Ee5H&f2R;lfD1u(
zI>EFPng8VguDMhNyHbwOzs_NtE{ChkZ$dVfxhZ$EpGJ0aSn^;`NcDEb>o0X&qOo7g
z^di~;@O}6pPT`4(Lyo;EOMEj0m&)4$GJ>cNAO=3!K>ZV}y_nNY*}jGntgTfBY;~n5
z!V|*GjW4aT>AsdO)^{kKqKxH=Jk=P?77>j0keG@qaW}I}v|!|+4SNn!gV`A^F`U;p
zI~3G3Ssy#DrXK$SHc`2zy<Ld(hxQuhi{ij!@1Ama3`%FH50u+D!DfZ8L<EgQ)D)$a
zOVrNkJ@_IUAf{~3CeZ4*z}9;_;{1t3>&}81(W#Az4hyV!UR~GP9>rY`?A)~NwJ0H@
zjhdpeA(#>pCi|7H+(+5g+_V)jO|ayU>(oX|B{5e(uz5BNHfVwAq96ab+@^34qSaY`
z*vtuMg5-HI^_iEEd|I<SV+oH!^4ddwzguUlwGy^*jjTn29A{XCR}{C^3}FdiW0RsI
zonK{CK%3<kee?i;wIb(LD@jwKA#r;GO<FeWrcv&&)Mmea-^MUGe&g%Sn%omwHhl$i
zWwQ0RP4ybBG;Xiv+nG_5lGZ}4=ba8}2DOQ{;2mG^LAgf^Rf2)Sh&eXrzXF6Dly_%;
zQC;e&Q)1#RP=c(PA-#rsX9(r%>wav1qmCi=!vHf~EV|ACzB%d+;i1C3uHNT76*Go#
zvtFtB)99VHQX%%85&Fl*%Qyq$k7hW>2S3ce$(l{~=OUpfmws%z=1!oB7b*r;^v+I^
zZ*PlQ-|ke&BxfwiBy85!<du8aBSUs_AQuVW=t}SilB1>AD5R}JliHuCYW52ebn2-C
zb|MG8#XrqgKV$e)OHPX5(HY6p)-=f_ExBo`>(bkWI^I$Bv1dhvAQB&k-cbgOm1QNF
zh5d3oHF^bJQe3TS1ViCQ$<9ZR=^DVra)_c?)M2iscHkIo;6%RYHscSTUh4SS;EVR(
zcfi4M$p8Z#O>b<bgKp(9is1vle-4e@!$_@fT{~{XB%#dmB0$R?=`W6xlT}odT=7G1
zmt-wNLtp@dx1cF#U5G>h0hKRnaCCE{Ruf9(y2i;a*Jq^HmSye;rwY_+6`x0P*Ql8f
zHWQ0iUM1gg?`Tc@qfaYX%Xob~jMQ(`dTBheCQfR3RlzrhRp9(bydU@tG~Rq62MZqZ
z3ZMR~l}i6$YoS~h3W?2Wggp`q0RdrZ@nz}YBY2gSv)r(Q5Cj5^FZ}Do3f#sbBik&8
zJmejSn@{B1aNkv0UxP^3{C{>?l2SST4{~R*x=#Hs<kO2jNaaA1=$nbv_yIkZ(U&I4
zS{PIW{82%0-ex70NDw|}7ww93hJu11uBwWzp3%!n>-zGw2aJy-l9T()e$b}?+tFe$
znulNDD1{v8nBzTZ2_JUqAhE(#@CQuKMr%q<>4}#}KHvJ_XC=ijba)Mn?j8C;N3<}E
zF&YqKV~mO2_0htK;p|*TTJfTivPxbB<EaVQ(|%7)mvI^Bg{nONggHc_tq1aZ6eFm`
z-Z%01euv)24Z{^>snTr<t-M(H*?+9eF>!(##7XdA?{7XuF0230Crg+6KTT6p1amk)
z_VY;<_V)Vd=`(^2S&*xZaQOb$+<<xtA_l0a$ou__8pDc~>D(WqtSt6;XlGDIPEM|8
zra*zH9pw9Tz3+ZpkRmL;Cv1s2aUmic$g<>+j}<;qT)K<-j6xFpE_lj8rJM|tV_;Jw
z9Oq~hVr<po4vKshpo0pKkibx6H3E~+@jJ`~b)9e3e-Q@@$Xs1U%u=-F@?3F9)&$e_
z%XM@pyGmA-*tNgS78<7`HEHYCYv}flR1SRQHzW>i^qISJ`bpZ<fF|uRuZD>!!!W&I
zpdYN>WhYy39~@epXjk0u{CkCWpkVi#MtRkLV92pB2~UDM8=8HtZ@7qv8{J?zuBi4h
zn4{e2gtI8h^%){3=Su!r8p)hh1{N9r=fkFNmth>%4zI(8aR1<-XMfaN7L{Xb^fw|M
zf29}3<Gm%nc2|gRvpr;X0rHOR;mU8L9ZR;yAwT5sT?DtSXGU1FC3l=DELhl0uXFn7
zsZ&%$-FRBOaCMIQN&eHjG%%0~9PWXQhktUDg75iH@6rH0tIz-5yi`ZOpq-xVB43pO
z)5V8I*`=DF8NShJrWWp%{*yYcb{Qu|<aDn#<CvWp=?O+E(U*g_T_=o&sl*|WN8x<G
zwMGcE*;5s#au>Z>jnBl`Pv}O?9k9`TRyXfC&Q5L_;2xEm2K1Ix9^8g>N&zFm2mh;u
z6F}-Jn$$uo0zBG>(84|*WknNPbQOO1NTD|NV%kopC4S5=A#CkM6T^^6W(Iy2cN%Hv
zXZLp3aR9#C8VFA0aSQ5CwrE%Mu<pQFrrU<tVx__QcP<AB_vr3v0x}$efElbJxj)Le
zwyMySBhO)lrl)Qff%|hD*l-)LW!t;5?1M!#6vaVoUXZPMMvel?2~{@2YT*#hMZeu5
za4&J#QsuxjsRq7KR^1i(0AwYLSjbKWw30GCaz{w-;@-KpfBVVO%Tw8(rSy*fnHF89
z6T{yPaj3xONIL1;EGzu!5Dl<Jjgm^SW`>nl@QwA)-<h!TGF4=+U3OHBE*-Lx2oIqk
zfYEg2H_5@Nm~N{pDo4x$r~?!E3*5bT_4HRP4q7edBL=z>vUQGf#lMltW=}yP9fb1(
zbi;ADZ08uFw4NTv?i4y;>yR3^5H47D533^$%$Aj^nWa-j^`uJf?+Y{AZ$zM1fXm$K
zqKB;p&a!@-U!@LlewN)TzVVc%w0N^GUwR|>bEY?zX_c9--|5T(D}DRZPr12uYUJC$
zcApD{f9yWAalgF<P+|VH`}p0T(NU2Ul?VMi65I&!SyHULk|Vyk@H;Y8gQx5fdLB?t
z6me&JMHX~X)C=nEJ!V%t^}j@4WG%JP%QKJ_C@oKj>OaP!fw!IQ(c*&Hz8{w<!wHFH
zWB&61*C)gE?QgDp$=-hCvFSVlwv9G^;bg8i%110Bo-cW13`zGQjON4;*7Psvahf?k
z4u=R2DPRL`UVc5YO#)PjVeY3Z5^f#zT^jy~wWS)<s|9@rkBnvnuw_+td@8HFN-3S?
z=tmV<W`;}e|M28!W%+9C^7>_An7y&+`5`_BVd$Cs<ICAO$$__BM@>zTXDykZA0HSM
zz<mB*;B@!i9241$Rd#J07D}0U6g2#EJhiqO+WY*9Dh|hlzFfqYnssuhy%}X`eJ=vq
zr}=_nYy7Lwa6=yS9wQq-2>s!KeHhXvpub^mFJ=|e%a|O=dGY)%pDhX-9Y;(QJwnqh
z>0WB%v_A-vW{Kx3zZQPz>dIqx$f&^kyjG&BK<T~URI35}0-J77-kc98PR54;Jz@nX
zOlvPZJbceXKn07>&vIV+^OJ(h9_)9`D&bORXBsmNgvCoQ@N1k4=LT|95>SNhG2?CG
z$_=ZUurK{W1Ke-_@+ayvFxHr(<^5j-qyD>!xtv69d$i6qG!)yUP-1fUli=0aow_{)
zf^?|kyrT1^QzHNJz6p_-j_>ScZye|d6W9MYm@nO0JMm>6UJAzkkn4Q{yH3Q#mB;hU
zD0tO>R??}LC^_h@a@P<}Lzzi5K;*LT!F=8bM@yMiEN>=(h__aFc9jq%xik6~3+?<1
zZWgi|!P0Fm_R6!IvdMf5HwK%}4}a+T()N5mKCP8G{JIz4^}T4r)I>eKoZ!iPVr6my
zxKQszc@@Rqo*|tISozVDm?BXo<dixrO|;l~ky_O$rT})J^jEMn(#w;ajWhti*PDm-
zP#d~aje;g7ftxu>S`Q8O?@k-ksSB_5-qehR^|OX5HY6lFn4=(!7;DQHAN)elgbW@l
zG-$#-V~?>idpAt|A$5n6fv)1dt{Y?|S7tvKr?;K|<wq)QR3z~M@xSfz0u8V+RNc(}
z!$s1F%mH7%&wqGWeKAD~^6PO0H<<QnYb7br_<iNnYP^r4@~k<u=*<Uzkn2)7Js#}G
zpagS{|4aEe<w4NCjmfw-PJ_S=7&BZ;eCq`l#iiddmg+-C4@3d+wc#<WS=VU6RV(c0
zgH#s*|A;!B|DCA&|G&NY>z0pxJ8>5a09J?j1Oq(bI_P78)YjL5JYEyf@p(o_CiC@o
zx#yenF`!Sz&@u(r)BwEJYR#TvIH=^N5PyH%D8-hRQM^5Jc?kw>75bV%h=^D-|0C5x
zUN%OIdGqd7A>O&jG1z}O?q0)u!|?X~ykjAGzelj-K8hRxD9}3k7**_t!~ZS1`JjPc
z_pegn+zg5v5i~n^g-IwJpfH|<q{f2*PGiMga&T`duz|0KOY=o0GAz_Y=MzNb309Cz
zeDKy^{TsQXKi0pwFsa8Xj`%<bGhCc;0#B&e9lT^ha@3RB{x>3<q3Kw7CZNID&~Q)0
z<JnydaFKhdzOmL^-N+u;rt#pc#Ll;S@d>PY@&329D0#C)vUpZE7m>;pojngSK}jXB
zyf|@RCPE~YibDJpyOA0fnYAL~!MSCahvs5P(Ei-BzxMx0p8ZX>zV9*$Rg>b&x!_B$
z);$T4;~J*KIzNc_W*<2*b+dHy<;RS8(CkAV-OVyH3rsRmlndQSK7aZo2h$_#%P9X{
zEy%UeEL#q@TI<cI=g;FOUF3>TM}5PJmptFHar)O&YQ-3h-F>jAt>D`(u;SZ|n5KbO
zj*pFd!r{?y`ZIaJsb4(XMk%n%Ao+yP3UDC^F2Q@~<W*(*c6dX3+HUu#c@oGjTH8tO
z#PV<`LD&c%VM$HD)7XsLhs#PU26C~y_*gZe-aHNXA<a67Nnw^xS-GZ8Vfb%hi(tWI
zMx;=9ZFT3&j&X(5x0|$IKLb18{QSl7k7dLp$Cx%^SUX^QVgxlgFNWg5q8pH*{6v#C
ze!y&|t?H9RZBJl<T+mt=(Mo$-<I=;Lx_oG!YSHHn>1LQQSi}XcHOiNyW-XW6nbU!O
zgy&1}KR*vx`b72^zwdh6#<<3@BPaRPNUosRTnBRBI)|cPR_e{uV3i-Ptb7$4S&ozU
z(l+l+A;^mpc7m3UOpW#>7L9i3QVSdlAC^c@sWi28krqLW#8w%VxJq%O<Q7+HWzj~b
z8kWDkyQ5g-NA!MH$Pbd1E&2%4pyS(_R~x|>@E_Hy#p9vtf(hbJ9QdbHN&=>m=UGLa
zjgy%q!jMIlc@90tsrMEe9*FL2b5co2D=D+?fQ_N1p>?3nJT}_9l%<)aAf`F(Dhb%s
zqNgYKSkVofMY|J2gF?u_q({n(2h7RrzPr(AyUW2QQLQu}>sFy@v3Y`739)-|cO174
z8z(pUCm+71Ucbnv;W|SgkA>-JiW>#EG+T$Ti0VHpaCT1Tud!_^fb<`vIp1_ufBx-d
z3=DD0=U$LB%5hK0Z*BHix-SV-2Kr1jv=UUH9c=BICN8Y-rlWKI(@=Rg4~#*7!vA!a
zgzZffl6)Ed*DWGj0wR<S38gdYq1psj@eET_hYMqF4xnnR>#I|Wx9u29b4n}fMLB`u
zzAQrJu!!~*9R;LD{~wK<S5%W}8h{-KrAbFoib#<rBwz(WFo947B=i_+KnMa71(k@P
z)JTMZP!d59LNi1#p(cS)6RHA(l%a|gfdpa9$cXD4+#h!?_F{L>-u@TgIseUj&hx#`
z^98Y|a(R)qu;o;9Edc^I&7sse)NCEaAM3B7ua9S^^Bsd7kv{SB%~aq|qd92Z=K*ix
z4>$H_;dPy`HGDJ-8I%=0@T?%+s+Tivf8hP`>9=-AWc6Y|Luxga=43M<_!;QV8`l|q
zv0cY1iQUpxvj`O}&J<L%T9uo%K6iUq!cEX1x-&0^6}9KkKa`ToSknd;0DWq0veT!7
zlEqh{vqC&}IHIAp;#Pa1;$>qT{ycE9BJtOPG{wb-jmq}gY1GXqTOsaU9xNhWay;e*
zRphp}EHFDB4^G3_Zn$d>#|yD-n})y`w<bx~4KJI3s#i6Te&S39;;t7Yk*g1x>_`Cy
z?rhSx<4qxeadIY7j&bhBL`N4MdHT?j6%?AdA$m?2_&84W)Bu5Mrxf=Tl{CY+#igY}
z_l4O?<GKPtkJ8OnN};KLPWpdr7`aJ8LwmuIh=e5cY8H!IQTAHXqn&N|#M@FPKR*dk
zul<fpZZI{dI^tMc`8V#~IQTBE+i-gcvR}J+zX*rX_*F+=&l-a<I{*2*@~0y3UsjuY
zIN^%z^o*6=C1jf#D5Gciax}@K`FkMyQfi|`UEyulTiV>T6p-<pN)W?-6`%s2gan?S
z`~uhgvKX+M=GEW5Ylyu(D)#bz>3#<fk1&rz=!*i&ElKAVKgDHtM_x_a=!aA)#ccoe
zL1=vFb5&u~th2qnSU$*SdLiT6AQ9Z_0A?@CsIUHd@S*gJhnrH+=>}D6S>yix496*J
z50{ks7OllYoujwp^ztRRSrschaWu00u;{HSHM6tj5TX}@Wto57-#%0a3UBHMz1rAK
zJ$Pz;43%C1!*J*&fTQx1_8`o-r<TIyg>=ajoDjUrqy%LIS8AU)d$xEn7qu>3(UzWS
zx|*HTK%;xPwkQsdd`kX&nxyx4FT>|uC6>sC*Z-LkdTshnxPt^N6o;o-Pror7I&{=<
z-&Xtgc(%GWCt|)e7MGE+O;Y;CW#kv+xKlms%0KXYAGp~*{e*#I(KSI$FVch#KZVC3
zS#F5?R)~w55PPt>_V`$VW{$3ny@X?4ll!FYb7#@)%5ZA-6*6w10uG&(rIh#RtMor1
zE{-~!lvPFdjv4AkVoIZHEAvMSa!=p6lGg>dAjVgjap-kVgml&FuVlWeNEC=l7VAfR
z1w@om+CZ>ndGhDLYrZCwQn+58Ut2UyzMaumdI<ltt4hcrr+F9T?pmZjs_;WEX|a7A
z(iA%5v!|1&SA@%8U`nv#NBXZs6hT*Rx(_ygdF)+X!b<KjAczf*+cwI-%LUvFt)RYu
zd@!6c4;eib7H=}<{OK6kLa#hHX{mw>n`o2Y4kY!cx#UPH8=sha@MR8;#j?6%i}LbL
z&H<0njLx&~7e=*Ra902+m);=u$~*Zh?W|WvwbDfDQKlMZPxJ{RRrG3>h;}AVdQRgY
z|L#XkahyJtUASO@HU3Kl$v|!(P4|_h2~)sHE=cH7Kb$mSjt2q7hB`ldfuDw92+9Y0
zClY(5AkpG}JMgY*REkc43V!H)kPMtv<>_9wmMqiUyn!PyMM?Ce(Hp*4ja}Z#xy6?;
z>769bWhO|nmVyDBpULQ6SUVzr-S3Q(_e0lLj4esg%P~eMBtkZk5-GsnC8q_pHXQR)
z>{pk2gNs$tWg|)stSG1)O9I5I^_`EQAN>-UqGw9n^5%Rh(Kv1C&DKAh;(qTGCRrr3
zy&=>iBDY%qklbXh9{+_tZ|1uIIQ);snkr`L1o@<9DTNZ67cyA~f}TQX3KRTcHUK_?
zHX1fM1XH^>oO-}W)9ZV(!H|z5JwOQKbhA&KpXJ=83ks7b=8~hQe+Gf=*KEDQ(RL<*
z^LuN&l|WlN^sx!89RF?mGE~YMbIU1O%oXW2>6)hL=>$FL8l%j86!G4Md%-(OC&7pm
z{wd`|dcODI_!QBV`0Z*Y#nMf08x`QZ(NZth^&2dB=;x4ZCDS|l^H{#YF8~MGh(BZe
zV+Tl`uGq<gog$O&sPXAR<1Re^ZvzZLKb8MD0Ib}(`IM;>8!1ALTPyddySg?aA;nu&
zH{j#C3Gd^Z50Lk?gK|0Fst=R7c-fkne<c)p9IHa78qeX}?!MxZ-U)DqX4I;hl8X%P
z>zc{y*~mzNfyR%bqdqEGw(sOhEk~IGW)bY++dP<e3_}|(8G=fTr_L>+NLnR_nPjqh
ztnbj<e_P_afQ8IlE{O|!YHF0H+-rZNO7LJObuck&@?@tMGx}007w;rUukbTVZeFlB
z`fNDd$40Z}*=m*tu$ua8ds3~sV+Z6`X$E=4+!@&yZ%6$d2oN|iVi4LhC;9{jCSf$C
zstn!StYT-MZYa}_bGZ~q-(?Q*V5ux{104b_D!BBMP0w8jDbA%M?0|Kt%?8$N(wp5^
za(KNwk5pAN2&~E3`l658B$!1L;-F3uQ5Br?{VM-Zo9*7jfC8NRa#Q%!V)mkzv?ap)
z8uE>)k3Q#?T?QDh9+?t#D<>JY95rFmOCNHU;fedayzM)nhT)DBq@fTu%z|Tlw@;Kh
z-sBpo9`Ia`Cj99&$I|WP%xpDMclEZ(`zmHHf-5oARcmrZnt0l|gkF|$-YK;2C~77R
zWihcHl8TQ1VOdH0OA(Nm!0OH7iI2B|xWHXgWc<>Ymdv96aJNy-Hch#gi!sRjs>85f
zz4tP5E*GWv6TyWS{HpR?ZQVGf3Z7L!bS1T#<WXyyBi>O|8!<<F@c#qDt`k@A=>HeP
sx;KAd7~{X;)^D}s)4;{DLdSPuLc@j$f#~-Lc;#%L9n8t97V4k)PxRn+l>h($


From 3aef331ebadf79b44fc14ee681e038833b6d0d6f Mon Sep 17 00:00:00 2001
From: Nathaniel Chin <22572406+nathanielcwm@users.noreply.github.com>
Date: Wed, 21 Oct 2020 17:16:44 +0800
Subject: [PATCH 006/825] update kms keys link

---
 windows/deployment/upgrade/windows-10-edition-upgrades.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/upgrade/windows-10-edition-upgrades.md b/windows/deployment/upgrade/windows-10-edition-upgrades.md
index e2806e3c0c..ff9c6ae451 100644
--- a/windows/deployment/upgrade/windows-10-edition-upgrades.md
+++ b/windows/deployment/upgrade/windows-10-edition-upgrades.md
@@ -93,7 +93,7 @@ You can run the changepk.exe command-line tool to upgrade devices to a supported
 
 `changepk.exe /ProductKey <enter your new product key here>`
 
-You can also upgrade using slmgr.vbs and a [KMS client setup key](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/jj612867(v%3dws.11)).  For example, the following command will upgrade to Windows 10 Enterprise.
+You can also upgrade using slmgr.vbs and a [KMS client setup key](https://docs.microsoft.com/en-us/windows-server/get-started/kmsclientkeys).  For example, the following command will upgrade to Windows 10 Enterprise.
 
 `Cscript.exe c:\windows\system32\slmgr.vbs /ipk NPPR9-FWDCX-D2C8J-H872K-2YT43`
 

From 3b8e94507a3d9dc77119d132b3005d2a8f564e08 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Wed, 21 Oct 2020 11:22:36 -0700
Subject: [PATCH 007/825] Added entry point for WDAC Wizard topic in
 design-guide.md and added topic to TOC. Wrote the sub-topic for building a
 base policy with the Wizard. Created skeletons for other sub-topics.

---
 .../TOC.md                                    |   6 +
 ...wdac-wizard-custom-file-attribute-rule.png | Bin 0 -> 152395 bytes
 .../wdac-wizard-custom-publisher-rule.png     | Bin 0 -> 168464 bytes
 .../images/wdac-wizard-rule-options-UI.png    | Bin 0 -> 113690 bytes
 .../images/wdac-wizard-template-selection.png | Bin 0 -> 122681 bytes
 .../wdac-wizard-create-base-policy.md         | 136 ++++++++++++++++++
 .../wdac-wizard-create-supplemental-policy.md |  21 +++
 .../wdac-wizard-editing-policy.md             |  21 +++
 .../wdac-wizard-merging-policies.md           |  21 +++
 .../wdac-wizard.md                            |  53 +++++++
 ...fender-application-control-design-guide.md |   1 +
 11 files changed, 259 insertions(+)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-file-attribute-rule.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-publisher-rule.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-template-selection.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md

diff --git a/windows/security/threat-protection/windows-defender-application-control/TOC.md b/windows/security/threat-protection/windows-defender-application-control/TOC.md
index a8f8114e8a..731cab3d76 100644
--- a/windows/security/threat-protection/windows-defender-application-control/TOC.md
+++ b/windows/security/threat-protection/windows-defender-application-control/TOC.md
@@ -20,6 +20,12 @@
 ##### [Create a WDAC policy for lightly-managed devices](create-wdac-policy-for-lightly-managed-devices.md)
 ##### [Create a WDAC policy for fully-managed devices](create-wdac-policy-for-fully-managed-devices.md)
 ##### [Create a WDAC policy for fixed-workload devices](create-initial-default-policy.md)
+##### [Microsoft recommended block rules](microsoft-recommended-block-rules.md)
+### [Using the WDAC Wizard tool](wdac-wizard.md)
+#### [Create a base WDC policy](wdac-wizard-create-base-policy.md)
+#### [Create a supplemental WDAC policy](wdac-wizard-create-supplemental-policy.md)
+#### [Editing a WDAC policy](wdac-wizard-editing-policy.md)
+#### [Merging multiple WDAC policies](wdac-wizard-merging-policies.md)
 
 
 ## [Windows Defender Application Control deployment guide](windows-defender-application-control-deployment-guide.md)
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-file-attribute-rule.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-file-attribute-rule.png
new file mode 100644
index 0000000000000000000000000000000000000000..a285f6a6bc494b5321ed123e62e933b83041d884
GIT binary patch
literal 152395
zcmd3NWmsEH*KS){TA;<<-5rWci#x@O7k3F3oVK`2C_zJUC=_=s?ogyS0TSGUOMpY)
z=Y7t1exB?6IzMtHGkYd`_Uu`5uXV4;4{Gvn&`HssJbCg)Q9(xY$&+XBCr_TXy+VEL
z>A>-BfBbstt|>3|q<oBg=dtnJ=Dq6sCr_&4F_3029@}WH3i|F(p5S`?{XB(QQ+Ypm
z@=%~C^IqHAWIyZ0XTsi<eo1vxHxD3?Zh3i`X8Gr&Qt@YW+9XZXNgA5Ro@JjUfYA!*
zXhdSX^9wOEvUB!&yZc~lZ0w%VYg4qQrbYz(BvdNr12aB)s1!m{{^+{&pWlyN_x;Q~
z<^Q%?8Ip<h{xj<F3KUl<hVAc+zY|>|^>E=NL;I(WXhxW?AlvgA{|>{i7&0Y<uiO(y
zEN}Fmi<&c8vylsa^%O1lJ6NXtcRG468v@*WwQEXP?K*%jk>y6lPEgCIZlV;!*^3_^
zKdXK`>b`^()WXJPBG&i?H2YP|uR`iIle)=;<HN(&(jW+#l^KQBKDcqa25AE(KIlrY
z{^waZs{(E>!1rDU3%xNUd}8hQK=zN7ziQ6KipDe7_UCILZF+F7NW}awxe-Q1STAw!
zJs!?S3n`lH=r=@tk$F&Ob;=a=>!g<ur`&R0w=UXo%*^>KJf^SasUkOq<dhAPw8y(>
z&fy~Beih+)4qH{`r)pjYOP$pP%0hwXiCY6MXl<3Tr#G$ZqX`4>6V@Kr?cYA*7p2%E
zHYgHA5BKi5R3_Glq=J3?7hW6cl5WF?!pGoBxBI0x;}_ZPu-`P0;gaKF|F;J=7l-qs
zt=AYn_#1$rFR8yujeKnxj*s0^_S-f9cMh#%)fczOWq<8|-k=DxUip$sV1Y82Q9h2G
zlIlS;UC?DLw>Mhc&w1<>4X5NHh|fkXez+6??(q&cl1pMZE$Xg~q<_tAj#=@usb~zj
zSoIs1;ly=EDWsml<3L2Qjl3t0&9og)u~3Gv8EYrD6MiB8afI--Z<fu`+nm!}?E>Cp
zPOX%%SkhDPBmc2b@3^*iDju&%_zI8r+gJ%l81rmyE8Kl%DM^9Fy)(voVw^#E{T%J4
zLBWi%WEyh#bIndrrct)E(~!0z7vK5^a?oIpyD$T~)rrbAvqm*O2N|J7?}9i4Wjv3M
z__uHwJ<HPPK88teqX*K8nzB2IATBC`|D42Dee$><fu#$e-9rAL*89NCef>-|CLg!0
znTrR^AlANdlc=83d6bhviJr&}G}p#fg+*^lGaO7!tLQDndCa;#ulvp!iPP<Br2O<x
zND7`!c0}8UuPSK>Ji}A*c!HEM;_>>nmvdFVl%;V4gWFQipu&Sm1*P+CHli=bUz+na
zsxH+zvSfH2z-E0;g-)o^56M5>V_u$p$-?Nb*|U$Ct3JKEWTRnC_|}2!x^QBf2X0nv
zGI7=m`REl&DXL{P<~wm^OU4_E3Rc<P@l+8FLTZ4*HGXu!t{!M?+lXO%q}3^r>o_MT
zz=~*v<70Qbc+1s&QB&i~K#DTs_GAiCuj+t3YjbwS(YI#{kQIn%5P_lB(4N?M;+|Kv
z)o}RQjafWK*{vCG#>GBP{lWSzRgg?y^2`3zvpZhE-Lj*RK=^r4Hq}~3qaRf$Tgv&q
zIGxBbsd5VYAIhT<)8lA?I(pd2*cQwj&zb1*sPkr>a53JvlNEMYf7wXbcPQioxN<Ju
zyfB0*xR+MW4HI=aO9GuD&k6+7BipO9zJ(v!IXlQ+i2@Hltu>36rHOu<YoGi^aXQaA
zWWgTvvuqUqL1eB9fOm^|XoW1Y@Lml$eJNPucNAzg&bwx~engOn${W}6sLd{u{yFTh
zj;=!03>nczxM0Um!v?pz8_)QP2Tsj|3Zpu7E-tQ<^+7n`&JS5ae8j_>a9r?4$g`AM
zHUrvgUJE!`OnIGgMoe|8tads4bqA8k2dD31VqlrtTEDL=6>`a@^Wg+mbke>C6Q7yj
zvuPw(*BRn^nP+U)+b`>r3jR<nN!l35prPbMc}{stU~^BZ&1sx&z+vcScdn_RgTFO8
zwIJLqL-Go5mKw$yd4dlgLmc!B8^^kB>}iVWJsTZAGULv8``*`mg|~XfR&j^-+aPg3
z>K-Q5(59Mf9IlSS2G!VC<D6Q@4{2c>td+iho{kV=L{4pf_a2<&_vIq+8w<zrFh>cz
zw*OG?NHV0u%pp^(eW#nUkLI^##K%&DpKG4>Ed7nTkN4|<zOM_`ohqntlG6ecWFG5m
z`kHgPVV7(hpAG^i06ZBHVBVU>K$ai;j_M<w1Trmc4k2Ok2|}IGbj@mn6-(;yzS!D+
z(Q~MBj|h$VC~a9IVBYtJM?d;oub_tS5W#><%ywJj!RYvMcPXG}FnZWQ&z9z4^Ewnt
zEuy<M*WtpYERb1fF^WXCde6Ggny^(kxy2hQzdwW@$Q}=R(z9!Vd98*f%X}4w2!?wh
z7GKh{r3G7=!M*Z}Ggr!1qqK3P%!UQLO)?Uj#Z!rvxpUS*6}XBcYPf!~?(ceLE%}?_
z9}W5tdj9ZDi<o`LKU#1l$8BRMmxBE^!!#6~Kp|VAt$#L%NLW$~c({})aWIqn5F&{W
zpLLOUN7!Re33$>%E-e;xp!C|{;A~+1>UP>Y8i*LBDK!w4YAjPY%ydD;oQnoZqbCg5
z5YVro2l^ea^7eOg40jGQGgJ{2UC$#OUE*!A-o#RCe6^uvZ;Hnh7N&7{_ZoPV*_m1(
zfOvh`<aNV4U&BDBgXqi0T<+he3fy!apu#9w)Z+q)1ju#Knm2lRNQwd-nOFgsxEQgv
zb)r=cr)6}N@)FiZ5M#$hF9<A@*9`9^(m$Y%n>*cAm^>s*wy$a`rh!qz)T<n2O1V&i
zT-ZDD>PB>bu06O#fC}>nz{RlR*2{E35&|72bBIY;<|KNGcqUd(`!nP!maR{VQF$cm
zCBT?IM@S`7d~p@T{=$sLjb49yK?nd?uu7kI70woyim1CBbUBf#FuoKtH_9YSU={6+
z0%K>DhIP?A&p<TH&g?+4N@n+(JhvoDk|fC@FGe*}j%!|0@3Tt?NBbFNBlLzz%ije;
z@nmED6?@{oHSraJ@;{&r;SZFJo+cG=3B=`?0pQH18vi&UU9p+zv_%7!L#c_)p1YN{
zgSg{~9sNg9h>59kzPqhOOT`MC(VScv{ea?B_a>oSi{5+Qe1(#&rCtRAXJEWRAA?If
zdzn#F7V>)O^yg_lPvv3mmk~GU=U>k57?v%n5iU+_Govc4+owy@{Q1!bx9ZBHiiJp@
zxjL^F5B!A-5k1wC#7Q1?C_lT2XB_R0YCcbR&F+uHvioE1V;p^So$u1it&U=@69JHy
z;n-cM<MgoAz3_QoaT<mxk`V9Vcliv$RzoRypDr91@E=Dk9bPL8D(n-C`7tPKwfpNQ
z`P^b8I(KiTmD0<Wj#@KG7kW6(*PFUy2-jrnagww==Mta2&+t(*BM)4cwxTf^PGM6<
zRKHaq_EyT^HRnZj+b#5?9fAG~XTE~qLqy6ULOD%1K3SrHB#}qZDFyvT)Y*oy4eN+o
zk&D$988j-p5xu6XxvX8knZx`K8WX~m2HDZk-82OyI1V9(BgzdQ{oGsWxh%nhtS9P_
zb9@|N>04)cW{HxZtp%?l>~0t-PghVovPr+~K4Oz;JF&%)K*7Ogw`)q91-W>A8)P!G
zZ$M)z9`q(lbjDNkB!sE?j2{2)GhH}lbpEs?QNId_=|KOA*V})*JtUU5;b~V8)^&AZ
zEz99_a$zjl1KoRPVwz(|NqN|FMowr13>wTl!uaxOyMQjm4_W_}SN@}zt<Og2RS%Wt
zGbOIBB_xMRPeIk(5>1m#Qx_<(TNsF%p(LqM-fhFyb`oDo%;#RIgzlvRDB^%T6dmBU
zXwA7Coh#M!EVT`Hm5PhyT1#ZU`SO(>)wZ2>UMgW6OQ5+2Bh@6Mx(u=h?YDl&D&A~_
zk4NlsxVqch0dN>Wc6Pr-eWOso8UJj#2@Ru(?vHO{1x;kIA{w)GSxj<C`3O$R5>S-T
zt2}lD?wZR)BA=;1z2m}Q9UE8?BuWPDG6@Fy<6avsZTVe;n5|H&y<gVs{YLYzA)v{N
zCsG74AgA0JCa_%axSYI_p7%(wVSg1V5$p`3e{S0R{^ZPrd^srDGW16xM-Isr$nSXu
z-tpBC$(TvQWU-gxxPI04pkXEUET;3?{+|q^Hax{Xm6E}vBJKuEr_Hm1(tHjRunOY!
zD~=eRIB~h7Csh>L_|W(J?N=d2B(jwHu%>vw4lyqCQ~q+tKO}96i3(?NVwN{~4!3DN
zZ<p*+yN}RBG0B;Xj>f`e5XR)btEvd{5^)-F`1nw|$yqBhVE?(?PE)`gE11)`M^MKE
zy&%H6zY}CRV3>6E6rsR8R0$o<LJhm3%`!=f{|7DHH+*C##H0}E8O;!^YuW__o%9aA
zCgJt=zjt}{`nCVgaC(#b1`O64O|Nve%XYkDbV72Mjg4y$2dl<&zv^TV?^vNG0h)U(
z`R?a_JZU^pMlfD^UN{Z`x4(<OiRcAfzEbAu%d=}@rvyKAkei(IJtZ(qWN?1=Ur2(K
zTz&NU!GN<b!Tl2-c$Os%h13vRMq*wu9xu?39my$-%z(mpmNdYdjvCaPj_}iP0Sk4L
z<Rv>uY~_Ce4>D-YB^vNQm}&f~`;YejfSC;G$p3v2#*x$0_`ktb$_I0!e{`Hwj<@o5
zS9kXxjLZiVe~S*+l7CT__wVH<cX^KDld!~{43Tpe$&Y#ey>#W0*8)6(C<k^bAgmSB
zcnfTl|NS%9Q|*}H@iaCQ$trb<|3PW35x!rv{vG43{C|h#&=~su@ur#aqZ&eR;s3>W
z=)Hzg|98*z|G{lK=!EvY_Pt(WhD#&s{2p<_TKLw7N<h$8C%5tUF*=LheBS$bL6C0i
z*v`YVeI#C{SMJL9J2kTw)f&_MI^^vS0ZE~ES({G69+!Vk6#m&km=!b6z1ndEsZT3+
zS`2Zl9AY*^4;B++;y3M%jIV+UcU2WQ0Mb6m7O8max6a+KdSWanFk;!th{XrU<;59o
z7@iIn*p|(L%?M}NdA(cuk5+8nFV=b+`p;9GG4?nM1wfU<^#5~z2L-kMs?$nee<X`p
z!^bvTv<7L@?bv@0@S9}fAg15Z4>9Y-!e2zyzcvOvkn<T7nc0q-`?np$^^YIr@uhdJ
zhUzd6iL8*rPR<vTRTz`69oAdwuXo<=V4IeS_jZS0HZ=#lkv%N8I8krmDRLRe+S8l6
z0w~5Gb*SID!~-^N-b69*`Wl%qiCD%n=-mx2VfYLzw_ILtgv*UkE=8r_0sW9jG+z{N
zKMWkMF3o=ycNPA)M{%oe&Bqt&YD3;=iYe@(PK^8Cbp*&P+6@m8YjSEhiBtN4(aIq-
zywiecB$I`!vMh&{^HstY<2879N!;XKY&@7?8!pbRv|~5}YfxR1^B;E*y&^Af^3P5z
zB4@sz0hFWiLmngwuuG)QTSIYh)gmNzy8mN#tnXr|F`#0bK$2u9^v;>(ka}S^O`ew4
zrl!rGe_<oSedN4<%F2i{aSWlEAV!VGqDh|zy#-z8wn7T<g3hj7)th`INQ`px;3T3C
z6mJgk5tSW6Kqf*b`*?UL_kTs=aqEj*B?yL{dDG6tngjF}<C+@7qVzTGwPe;kQru!i
z+~A>U<Z@iEjQ^knORx#jEjbG|sO2~spvcvr)pRO^F$T{`<h_9wo@HKKO}rA7wg!a;
z?&XSM0(fjm`S+Ki^Uh2xM-yJtmM3(ptKU(%G-gSwPc`lOIUB}`M5T<zvzWMDJdd^z
z)PsGa{;b~d5Y=@rqSD0~kW0Gn50g0WOd9LDcYGdou(}~0>N?hY$tOWw1^qnlNUwkW
zWufZhjQTBh+eE;Kq_nVRT5GW+B4KNL7$6K$7h3U#2`FH%wBdOr8lkn>N<5_anI2n?
z3$eGO&E0<7CpK-ga^BAa=I|5Ch^ffYNnHP^*>HArp^g|QC6p>sJ>ZGbdQ(e$<G-c!
zA93joB4g-Vp&2m=gmC28sNel6)>1QQutSgIvt;=YO_m1Tvj2cB$muK<WG^tU1f19u
zAv+%rb9f{5A@7n9rm;_+q1GHF?xSrl26h%-J=st`Q=teBYPz?C39OVgu1hGodUU#$
zpHg-^TzebAl0wyQz}64b2J2<h8Fi&V*WEt8s;JJ-V4=}r+HzI=yC2Ecn`zJYn>@n(
zF4d-Lyxq+5U*x2{pWC7!8C<8r<guTUeRh<Y@1GRQ?;v1+F|=M~>igC^QlTf)W`Pog
zY-}0Uxe+^8AEbEc;$;^&KC&l$eh4RN+a?B5K`qD2X1pWsWAHbFLgqywHp<7|f-7aU
zS|uh7m+jaiP$(@Yqum#>woZ1H6Cbtky$~{^9LF5oeU;g7do=Ht+WgYiWGggEK1kE{
zPMlNCz~LL5DHP4UcP$M~l>o~5OsrS4QvX^9b0o!krjW+8yi!!HHZ@iIWDfNo$b$jx
zQc*3@t*zDMwIw$~>+TyKONG>gT7A|k&%N=U{p`+Mwp9vwA^TJ2knhO`{!72dX`ECq
zMvs&?rxgd2S@@{@#lJ}DWAN1mkZxk$#>{mhjwB4#O4jHUHs^y9H{lI62a8<C0o+;X
zo<oU(0R|`FqaGcf55?N^RNVUh5yHH|E|?+Qo{OkTmTHP8>rJ*ZtvH0zuQ`QPyEmwZ
z*d(-UIP>MI*y+{M!nqc~>rlkcbPivV1hp;58(1>koX^KQI2eBjlAfQ&%GX*5QT0>D
z0FvFc_$%KypAs+8OR^;8)423vCM$8oA;%nXfFc=l9s4Nu)8&d;zB+@6P5csX<f_);
zKh*EGdyLnre#P=D&M}OfP<P>cy<7MS$gG{VSUkze$52p+!cQZ<T6RPpR(u+TE0j~T
zV}?TWoY$u5l@p`NzGd+Es|Z3ooBr#n&T9PK?p<vV&_9V$RpqO8D6u3E3#_X?5wbX8
z5zfuTp^7?M6t2C&!hTOKLKTMSEy0sgO}CJm_rIo*9ja#-6FSyP_aKQlzrpnyN@Jo~
zyjn}dx--xPQu(v^4xN+!%F)twf}YP%Nv!o;=xhJHjKzlE8@%TwR$Y>0D~iA`0uUb1
z$EFgKjjO^1wt1Q%ssua+J@cq=7mPgZBe^w7n-aX5c<g&dVb*|1RUEm6Y1TuD)wS^y
zz2x@>G9pDv;G~uo0XOJ;O2Dv0AD`j|3841M1^dSmeV4G;l@JY3FX4k1rFqbe=EA^b
z@2T}d%n^!wdw20^p2D53zr?QJm~SEczh+0_uhnrii>^;<fypC<_T)E5spPi^8N~WS
zp1jrnEo=eto51Nx&`Ra7P7EEV`t7=N?j3FFk(^n4XXwA;pbiS*Q85N21oO#*sFme+
z`*3~-$z5N{^A;Fbb7n6^a7;!vCjVjxsRLh;-7RT;ajU%*c4FK2wC`SbhB@970=N&&
zim(?&Mms|)gv<lXh>`L9wXKz^9<NVy$ht-b`Goy1pIl1?QUgyB5IF8-bmf>3S0ky6
z{F+Y)6@Z3{iw;e*VMEjVm0-E?#_pd|qZY3$vWD`hmhU(#QdGFtSFFQZ0dkyhD+wwn
zM6+N~QgF-o|5Rj-y24Xe4av-=-%=MlDo?-kzsIg~A<;X|QF?D`ZjuRJbHjEz$@3{u
z$y_+0`vQ=QKFSj5Yl?RBp2;u?9y)Othn!_qr(IaQv_Gvi9fC`<o8+k~L`vg_A1-xs
z>6oZMHI0V<eB7rW*7!g!+SfenY>FH1Z+0?I9v>8Uk?X)Xv_nw__5Xda`M!Mq#0Fg5
z@6EXN5o&P>Wic|mqN$Us@NDt%TcfMJj770oy8XI(3zS`g<;O*osv=MDIlJI3qOWRS
zBnSkc@>&kOyE)rA4j>+}SVR#xT!@qiMBQ!J9>!9>z-!#pqRciOD+q_U{#ORJ9%Ufw
zSLmqq-6*pQ`+P=_T$|Blae{!P>3CXqgXwusQO^hT%XF0u87ad4o>#pNAkv98%?R<Z
zSBRp)S;>TLgvsRAk1isR4WE^YvgRho!2PRB1s6n0w?aS7g*c1amJ$np0~pu+TVWk<
zqL8UFV}R%vJ3hvVIytXEp$+q0b&Jq&h1^iIiHStwQ~n$;ukF+dW_Z!)>J(0!qE?xt
zZfSOA7L0IGch8*;uGW(9TQ~mB4bmu04qoKtbh}N{Q$05PIbp7>UQwa!ZtbRQ5R*A@
zRsv_vdMg=ygf7luQ`L%3<mK>sM#x<s83nZI4<RihF#yG<L_y;u2somPKF#)E`oFcp
z?DiAL`_MljwdR-NG`$~BBhsb#<HnSy*p-_B_lgJUkjObz#GR`Lz$IcG5H5|jIs*5y
zx#LLOUx-?(JY=G_Nigb{8?3ADV*X<wL!}}Sz-M&xr-U@>);VRSN>4h-+lIFfWv|SS
zKeeYdhjzljfa6841r6hOBCQx3eateYoPh>aSucZsSM{)s<o&97&1GReR-6-qTzeHj
z<dSFi^xBt+STiM8Dv;`A=0NsF@<#5%$&HajYplS|vou~W^1QJ4%_w!ddZT7}2jN6<
zIrYP@^Ml0H;!M`Ph-iP^nK8la*H+y=bftu<zs5zE#3_2ov&Cf56MyZ^AJ?g$kmqwH
z7-yK9M`UBx)S5c(ZFsGT5yN9Vm`06KrSz97(sXxfvM4~euFfZ0F=_l@LO9Wcz?-?u
z4k8lqol|^TU|$F%K+x)@+}t-K3i-Q1T%PXx*5s7`A}y0?kXWWxvgPp2H9lJ=fs0+Z
z@YAM{JH%);-15`N*q&pm#Ank$((dBK>?*`Z`*wZLgdsE#pYsu#oObm1QiVM4?$nWj
z{;i?f!Hs^~uYbT4jHTJ{@~|mWt?1$;4R%gv>Xn?YlBRik%ZU@<#K6KQ0Lw5GSjfK+
zYJXbJai9tv3m2wp1#43_2zDEvY->*VZ&`#T-#_Lh{)>Q)$dzI`%%E00_W`ArwJWnv
zX201{f@j}z8?(;R3%OGaZ7IgAAxN4rGZdC9>Z@VhCzO&E;abBlCp<>pE(n&&NOjl}
z2Fz!~cE&cIdZQhg*#C<s3E!%2bVMDnVyG8cPKQWPhR@1Mk@DO9+CYiE_Mh&LF$hSg
z08{uLNEs!Sy9S&vU|Jxr)QL}eXRieA(-$wlVgHksLma)2{ky`A#DDQ;@1kt%|B<Hq
ze}i^N<1WJYA3qYCt?^KXKQQ31lb)g|6OF@vXSv2NK73UOys>02a)K-iDiKS@rjCk_
zLrbyUd{CT9r!9~3-z*f}JYd!rGdn{5c;4fb8>$dX1ouOhZDe?>EZ9ivh<}|&+>Vgn
zVrW3<f?{0*iSHSR*862m>FPyWuKo8}@AXHFW#nc2>P?AqMo1*$lmYO))}d*hj^myh
zGBBIr<_SD38q)T_F(FvbXWivH4wbZ6p0$_@gzHS5pw&o{jQ{B{yb{keZ3wB8Kk~i!
ztJY}#+V!=WI0Eg`V@fAcV2)0~iGLvTr2BdWp4Tb8pStAPW8O*^vwXfcNBU(W<w>*b
zI8}|yACbd>@yiZ?`CN<nmU8F}6`o?l%$==>#TyG>ox4TB(fbz|LL^ta*EeJyW{w6;
z(jM6moAE|Q$DzsC0=~uSt?*vQC66dQ<r!kH3Zwq++18;F8YFA!Eah#uxmfZyEpW}z
zl}UMrFX}xe&%QwuL>|C5eI6n1(7^Z5Lh#%#)7;0^i^^~8x$gy3to(PWBlHmGfrd!G
zW~bKgmdecyPRiNlMk-hB-YZA>&`k)34oYXX670@v{k7mSkJ{#m-tqfgLE^p$C!3G;
zpCs5WUGjBM$*_)~TZf@q<l<X|b3}0m=2I!%Qc{ggZjKm+4Nf-w5Uqv#d#d(NzijyC
zIxb&zx;-Dh_&k~+0604fIPf;gT*I2HamQG!cY=?o3gbHW!K^wRQ-bcOZ&HMSd_}bu
zJVru3vZ7p!SEPbc1!Zn-=OcesVp_viB>FZ-MH|=b_K!?ER9%0+!K7$B%fQ+2+wuY&
z|K{u>mm865SiH{Tjgwyjc!U8ihu&Zwu5iG%326nnvKaPvn45z!z~z!ehakTOH1wwN
zoC7BB<893MIL^YPZd-%`MJQY@TsT@dXTk1{3$@>rf##x=X8Uu^X+K*qkC{(=ln(?2
z+|L8eyACs{W%lKlC5ARRL?iy-8<0~OZ~g8Z=ITM{r*`TxYZqZQfo`OFJnNmIUH5Ps
zH1t>+<eK>5Qscl3hoLa=HtmCtH$XB&;D|vXlWdqI(IotWs@t~y({W>yPgg~U30)SD
zdkY2ccdi{y>ucZEo<w<~3%fN1GWxMfL&rtdp|N&Qk62NHr}ynml-hE@h2!G5MSM~R
z)7VP2X9lywONiGK$dWMK{_@BnNKlN^^<qFR5h(9-kwBLme0x#7(W8oc<rn!oyZ`)(
zH$%XAbKeR0l3{&};&7?;dqH<-3ztL|+IQVsTK0WtB*0zI?fA1{KILME@?2eTX*`TR
ziFy|y{fr7~wPLLi#?_Kd^L(XM$u(KD>%E{0%%kb}^b$T;*RoHD2%yCxdA-dMSv*nC
zh}L^J5g<C>9Pkn-%Y!&UbobwU4)y~^`JK#fJFhQK<+3|%8GIMrymVRGoM;;+7jZiP
zLUM&<(wcgg$+qU}H=d}A(VYUv4$Pt(sT!O`i#>D8ol;dB0!=I7$1j|t{5VS*zTNd>
zR$cxQzC`0%ebt^{u+`LZ*uuNL$pPS6+W2(=0-QW&mq0``1;w?A0$q2$h#pA0WMNzR
zW)x#x9RGG#p37cx1%rZlf2v;HUb}7~-+DPO-c75smml9|cHpkhgX~<tC}c#RhRa+N
z0T$ekTQ{BSz0D%faDCvMTjj;n<<R3yqCl;DxSX1ae-&B&BLsWs_^UZq7oZ!dKhE=0
z<rBVA?chr00-#C$5<xHDuW`oxya_8IQ**UB()9JeE8W~fA_A6Li3TQo=yrJau-ACJ
zXr&KbPo{Npr4JE13FA%VCn2Hmu<Cu-X`V(-ytDgSm+awk+hFkwhcF3FsBDB_TW82A
z!pFB^ug8vtIn2Ykd*YY;nXNtwi)4L_v(g>SUeAnb`UP3H7U;#yo}t~M3p-KyVSyqD
zQ_8J}yZOD30hV#kpO((?*ccN-(XcS%_KlHHjLabNs0uVSj_a>>8EOFFIIXYxGH30+
z*NJucF9Vtz;3)CC%lV>t0Sjh}S(BMAZ#Oqe<8UO>hz81C$e=?Oi$hBnv60t|=za>6
z?r`%aYF~MHWlH5@H0E$dc1s6Dap9{Dl01Ah$lswyXHD)sl6GLIAGCjsGm!A>9c?ac
zBfDdp?<cwg31rkM*lViT&IZ6ArQta|<#mNy4)r5viW6u*f__eWN#*XlsOyy}I?N><
zR(*5D)2!n#qLx_5cOz(ijD+taf4r^pRe=x1y8F+4CkdBTr$-+9->9y1-JSYv^L|Pq
zgjIBB@T}i@8cFzsIq2S=nlIrDb@%g#wFZRZW!OwM4b!Sb;<;T;DoLbPsfN^Ka0VA*
z#814oy^|2-d{J{+^nx76?%_4cMXJNdtq;Y^S=A!1jB)<iJsT{ygA0^$r)=q4tduCq
zc^m_QhXmzI$|~Ozc1kqKmz#lOWllCtZE&VU;9~8mM5%H55s+#Nw&O0wO`1&vrvclp
zlrRxd8s(aX&lq9DoJS-2rg!*)*=ENli%c*uC5!s0c#7rJ<04P4uQnMtjoXH2jzms&
zaxIp`fKjr;Gv3H1;RgTbvi7ext$#Dz@E7-&W3vrQ?Din>4ozU=cMDakmO`kvI)v<V
z17A#wG+UOR1L!I5`@&-!k!To!`(vpLOiezU^wB}{krOMu3okH)SwoQP(1SETT@Te~
zms6Le*Gnxy-@XLAj6R&j3;V;Y-oT~n20wIR!fo;yd9r4+x)eZe!j~pO(LQZdktIBE
zzKGRS?IUs^Uq=05y^3xV$3_jZ5&36mZIo@!7bfP=v7^3{J!ZSr14EZkZcz(pyjuO*
z2wd6v@nK~cb*5<ScE$B#QyRb}(G4RQ`Fcd;e({w#y3W8|w^6*+OEbBnWl5wevHqt7
z5vSRi!+czuUhq8c>C18vi%MCO^?n}*p#~QQj*I}QB^$Bkh+zI7e^Op9K&_hj$p(xw
z;xLLZ-EQyc>ea}4m`aaU39#cUK^S(kTQ;LMb0wi3+Z_syFL<s%Xt`53Ln9g}b2qi1
zvcKZ~@K@Za*Edm+Q$^?dy)bIKF!R^s^PnNw82{xUN|SbpZP?=c)wS!y()&@bWo{X<
zUkP*3DADzaZANHO$xgH(A1$!oK+}yoKjzX^NlJ_~XbCh1pJPh~(Cp%?$++4+FaOO(
zE_C_|q!{11-n)^taw=rSbW^`GROC6u>+r{T*HU@x5YI+9+v<t&<j;+f91F{lbgG=3
z>}tC{y>;7*x8fpLg{og$*dNu8>B{S~TdyaodqlBxls}RDzBFxMjvV7s=VT?2OvH^X
z<7;D9q#p*HyzIe)9!z<gP%5J(=V9Aj$tCLMID?xWI33U7Zey2IW?Y+udgp7qST%QW
z{}|EZ;Yin|ZvVp~LUc&$%%8y%<rLijsRQ-9@yUF2j%Hk66$^w0Mo#%1MO}qYeLDVR
z@NJ|t3r`u=Wi^miMSZs*xHb_5uym0~gcyfUPH&+qb4vc=GO@l1I>k}lBaFoBx5ad6
z3!Nuc>&^)-$>w6>1POv0g5v9@nPP0A$?*%b{flPZ_E_J$6L382SAwm5JTqHeqf1Z<
zKdGg>9uZJeyNy}qWa}uywC<Xo;6GZ58!?d*@+;3bQ;-hLZ7QB==2CSaAS{rNuK;4>
z-KzIx^0RP~j7{V0*YvqsUk1cLQ6(S(VYp~;pJxd|ze%*F0zQh~1PDW(_s>-8opDCZ
z9;xDnd{<r_-ryi>#Jh=be@VHPMT=rOa+Tb(1S>V`ScN;i&mQPZAMba)UUT+ZV(YAp
zZ=T9Cc0%TvL-t~_=7sPaW}s(|%dutzxO{$p&|+?6JjicYvP91E%?cGRvg1UhcDqDP
zFo*C*RnK(;WNp5a&jKNIjJ(OuVtsiVl>_1>1u<KQ-Wqro+D$pfIDU)EP9g6cAD3rC
z!95uK3JvYdj60NGJn6hbTv3>e`ecyQ_~)*c5?LWxF9w+K9VesPM~AUb=j1jn?sgW+
z2--+(w&tK(j#s;ElybKb7*TP*`&f{*TnV3L=C8LiuxzzkR*$qR)mo7?6NdSx@}}|K
zm#g-eXtSEJzKOrDpXkvBjUk)U_<NO;_<%ai(Qca5O;l;a4WASiXZ&vfcySyCdzeGr
zk#G5aZ{2>T{OQMCnJ>9gAs(s$4ymV;pDb5pI6zZm*T4z%z}{J^(lWJY#4^7eB<2O%
zsY1NJ$fU)HEp^DQ+Y%Q6#eXp$_K(}dG3G(P4ksnXOCBhKX}T4Fr`Sbs%v+{X>EYb?
zIsbXZ<6Oi?15BnGg_P!>q!w@9^sE+Hj8}+O?Tx}9{N@*8=%B^+`}<7ew^;!;v^+9$
zI6m$eQ=5mgagPwJH|XhOsQRfU5$mrkCqr?+s_luLbIPZ9QjNlt3`!}C>IiE`k@l1k
zU_%0v7RHEhv{t$0Q>3h#LEcZHOy@{K9CDejj-kvZ+>#vO55HQ~?d=b%%BU722|;5T
z?FKK<Efr(m`&E4iS7WlYw0(V#hG%>4AMykPD<<D<bbntzAZkQdGl2%cS??nH?u)q<
zzhqTN=&oYwujPFvMMqj8Zq&AjZkHnJm+nFe>O(zli>xp^nXMS=CERRt2Ia&e8Fv8+
z0~KH6V#1)Gqw!T1zlD#L48odclpO=SBkTGnPXo~!vZ@-5L;$M5AM?GDax|Ru5+>F-
zf&i5e;*%?$G<0yT!aZ$_K~?lvK{b!>tsJzaE!j;U3NQWRR>sY#>*$psz`!K*QNBxt
zaP+O66iPfwUY-Aq6Zu_QZ4g_iGY5_tp+!12^65QPOf2Y)gQoCPsX2RYALn;~`r#}W
z%q$#`c-Sg2Q>d~YwP_A3yJ%asW_-Nc^tTTotT<V((=@m~)y+pl66*HN)%s7Pt=)a}
zP_Pub#?Z0aiKM{ieOY-jXLLCB5W`OLqw;<x8ZR~mQbfV1dBa4Lv-k8(l<t=OJ4#kC
zhY~H{$0Y5Io{2Sf<oCDN=w3M0qo4l>CNgK!9x1ht&(L8gdfij&;TFtDb(Q!9;+tX<
z*yH8CeYbd_zOCGo$JAxLHoO7(u!e2bb(|q25)oIAmU93p{&U~2>M;t4x9)YDu<NlO
z<sbwrXa#o$w7VelpGSPB01O2;fCoV~Fp&jQyb^zSo?uip-C?LLAo372J0*PUlpdv~
zc7)dQ`_?<!1IYHFGy<ewL3f3~t8Ui|lX?-wYqn_COc1M{Y#f54SKR(Qi?e<tRdEv(
zA``bb&1w|A7<r=6WQ2ozo7#IvPUq+qZ?_nVfVq)Q(5gQQOAjsu<K)y-6}rN@^i>}B
zPov#)F2SA+kD{94Pc&cFB!c&5tq^(B+GQWUdZ4w*#DbDknQYvBF1UH~D|!)?#O$aj
zm<KbsR#01idv*5MJza~f6P=i}fVeRZj9<OImZP^cB~d98A{y=KL5TRN0`V^(?_2Lk
zwM0ln!l$GyPNk}6KHCxi;T12o9E!&%MAXBx#~=v`J;y>+^;+q6%T?pdl|)lp_W5Et
z+86svF_STwwKJ?H?0xCZuF%MKw{Hr!(zF3u8ZDMIFnN<T-4KF@{B|P=fRrem{yi*&
zYEk~Hk<TE69}SC2vg7NQ%xIHJFE%%;0kz}U-~qeIYD9cg487<5rBH)Kj@N-z$04=y
zTIM>lX`)qh2aR1}k~U{@6hM-bF{niB@Ru0=&*bRy;XoY2_$!|WPv~$;M8q+(D!!z;
z+YiDBvzxQi+*#Le!CUcWvrM@kcKwWeU`4$=yF&!#Dr&iTWrvuN-JBsGYwMT&ycKsD
z+2o?ivm!*x*{U#}+SfH{aVVmr6vdkmwuR)yWVJpm(onYy0e#&#1(+SZ;N4<-hrad}
zImkdr)hK)EGQ-{ChgwhGTAuarx(K_8)~HISRY`4z(}bq}knd=~2|AqqA%x_5QK)ap
zV&Y52S!!cSn(<^Lcg0#nBxAtDv&?09pi-6H25IgH<LL4x+Am59#Sj`{0;Tl1np++p
z41&H#-YyRsMpD0P@>_YjO33o){CDd3RKGCQo@GXYB4$AzjfoIp(1-HIMDg3DHDVVi
z-i}X-l^`yk=bgsFMq^(m24L&!c0^obkH!QMns{?aY`Kc%Y`80zlzLY4hT<LtXMJ}>
zqi2L_c~qHrdnCSwpD<g9;TpbR6D7&_4dbh((^M#1?B$?rCV|1j`o*6mT-e+4wzL(t
zk;qXu-)HRemD#Pb)i?w=G?VX#o%VTELu~!Rm@#-TlNjpU&jwypk&PBoEHY0ypx@dE
zS}b4O9lF8Zqsx{u4_DLOP9gD<ON=6(qm^Zf1rmI{;6{XJ359--Mei6Gj6S~lO<TXs
z3(~P+FiIA-xxxz+ug>5ND6Dd^#+z{x4bkyPC=*aG8YGks`6IK#sxMr##XEmOKo78`
zrx8h%)X<c1fXbL~6hU8tOuZ9z3qyjL69up?N47LiaxM9vpKvdzWEof~TKSJ0B=o0(
z=xL8(IF!*5y%BLKZ~Mf#pgWb3wGpBi<kf^6BZ+Sg&x~pj3EMqZxB$Nt2%u`P_MF%j
z&rHNgW2xB(Eb@~qQMd#P`1R22b!%6YUrAci^(#-U?2YXL<~1%<perqfrTkjxcfMJd
z@vKnkx#axU-(;wS&pO}4kYH$t2RXM&ak-g#(30oI?8+3;98aRjICZaA)ig1k2s=z%
zdV60nv$$_D<vo&$b0NP#bhQWK$?q-?{^Q)bJUX{o)HGV^5bEBA_tP$O5dv+Si9gr<
zw2QT7_;Ass^<0?jtt9PrD*CVlJ+AVd#zN{vNT-Xtu^OtUews+|5*{dJsT7rHSK)y{
ze=LW`&+QEJ7~e>e%f|HbDedIk&GNl6xWRdoAwc5;2jHs^#y|U`{Gsw)AiAFIaB`eo
zvHnk1AVyGE|F@)fHz#N1CXi&s(By$z$^f!JnTa#VFEPvFO9l$iQGxv^W-?_}60IVh
zR-@M&&5r!!^URJf_{zQ$UdJBxUX&5!bQF!&WHib*wgBXH+>4ISD%0h9(;P4)pQfJU
z@Wo2Q2Ryf1@2PeJFQ0Yc>f{o&c5Uc_S6!mJ0$`nu6sSMEdJP}ISyjFtdcmS&&73`h
znOm-qAuy$z#H?YB#NsTJI}jOZPE5>}oB2H!B=_ux0CPp#Ra*Jl^96=ER@mG(R*OJ}
zpxlsFy%tgy2vzZOWlbbzQ+KAjC`JvcHjO@{RohPdtKG)=w8JE5d-}!Wd!nIr9Q(F(
zCqrX6Z*O@rp|vrbHC?Ut-8z=k-=7;hy74BNL2Ld*BLJ1NMYcsZ7BMmAEqC$ANBgEt
z49kYN=|pR_e#C@QRejk_Jam;1eoV?Al`UnzO*QbeKm9(!^cv)Ii;qD-TDNi4P-iE0
z$jmkqOXNJCDptn5T>8g)b#k%RZX)4%38*U1CBT06P%g9zgN4;UpxT+OVe10hNAH^~
zRx9F!wJS>Bm{_wygpDq0vc|b{tH%x5%0aR+9nY#$imheGZX88VXFT|$D==*+p~jq}
z>LBphT3@u3j`GwI$mP|FND?7M;VW>9N11WP1s`YS#q4-C-mNti5t)s@3J8@0aq#ww
zh~3CE@`ed1@TN%iVfpnP!oB+D_Ct9f+eK`t>QrQrex2^v@<pL#Y*O-1J;=xxCOg9#
z0Sapq>pv&=`Ge`;B%dUQHKt*mBw7-9VlzTJETvt6LL+5ibn(5vF|N{Vg_@>%+DeO~
z0M?m)wqJwP*eI~q$jbGUvG(pzjBg7Q-}%Lr*9T{jXpehKCuXM%Z3g`$^w$nY@}M6F
z^H<b3ZyX4w#{?J$-yhgt*B*StCA9CK6UkkQIOCtbPp`iQB{uncy3zYqeUfUouY)vi
zl^T4TE~)18G0^MdFP5F1h%TNjFKYBMa8}t>KM?WE8I)NdQc+(s_$H1x$x#Wmr;p88
zCAGWyE=|$waron)mu)%wK9ox{&zfRpQE4JaiZID?P;Gu!oMcgg^1Sqn+OGSsmNhN?
zv!m*@k2WW%Ud8(w4bbll*(ML+`~9cEk7P4s$2;H=R2)3DGflbn$O+>dZ=Ph)DxAJ&
zy%+Act}R+A=yQDd(cHgb+5@kN(XY*B{5H(vZX_9X4pDC-Z-)d&&GtfFT2Aqf_}Uuw
zSz9@zc618a35Y23pzaM10SoJPvJYArgGYeBWj?(@MBU+3fkIN~a*tj#`~7{D#ZpvI
zSakTMqqc)Cc%2LL%>x;?fwu>O`DHwW(Wd+T^mxXA`#XdPA}%|*mShqnGHAHJJ(oxA
zE^O~7H<fKhufI@hIgpMJR2Tdktw*d#|IKPl5B$rcgI#`b|9_yUak;jeO=D!Dhr)EK
z41TKbVg4oXwUVW(FdhuUD*m!nxc`<kMd>l{@@oEv>E<1t;8_g@6Uo6{BnvOpANA#%
zyuWNdZ=KxS+^dS|Vcs~GB6tqoY@n|EUmQV2vxgqtdm`6!<v`{D?!IulGWnZAevm$s
z^Y`~(lH`g`NDZRM>ZB(H&+5DEReJk5CQ7<s+(>dOpd<A5Jhr+0#4%PZuUfJQSbB_M
z3!D>PB*(ZrjAYWmgJ0(@kG&@(J^%Vxf`bkvHmz-Kb^SkV#xiNBso#};e1jT1<99Ws
zq^s@C2s+-H_sqlFO24nf{f|#3f*Oro(Cnvjx5?IiW6o|t<cw!NcN=<hwxK{n8L)-T
zHcJsaOFJOjR#8(EaBayLbDIt@4HyL1%;w?2macGvJ$(6YBH)(lY1!_&D20-x$DY+w
zYok!pLf(sLE)r2QRwC)xk1-X{n4MAR9A-?>hdQoGAK5DJLpNF#i6!Cc6psEQGydp{
z{)>pvuDeKE#&6V*3v)>d((YHtIoR79zCPVzF>M#y82V;0l+3bFv=ST~+ysD!T{NBp
zUo>IEP#s?Nj~RDvPWq5yBWCU3L)Y+-kFiP#f45zkJ2fDpx#=rzB%7P02B#7}$3UK`
z{M7X#h4<~%r;8X;vXJ951aD-zPDN9H9IGG3Q%WB<&O1r{s0Qp!2||sPp^mD+*3rY$
zg4K9;NUvpJGlkx}y))mKu@9*HyS<<opAhjE-nCx%-$;WLld;!LU|UXJ@gjRMgsp8c
z#68!XMarUjMS?w5<G0s+iZ<96Aw1Q-EE0=Xsa?HF3EfAiZ__cUN1VN#`JrWz?sroG
zm*c~D5X|T~B5>bIKkWizuq&2jUourFak$oL7`OGc6;2ph^wh!qoY}8WF{fwmLl`Wa
zxP5v7cxJwG)3Lm5+07l;SdXXI8!e~>l0dhDfc0A3Bd?R0HKg#MESmYBetmxGf86=9
z)@d<?RyL{<0GD&>x*h&a(stZl8^UUp?#`wXuE9?!5?suXZB(G2HdNMnSfP{tH_sUn
zO&QG-Q_+0Rum@Hq{?m-wE1M<k47CrNR_{KkqN>?x*1`)B6dYf#$&Sa!arksSfMvH(
z&7ewFw^?+srC*QKJ2blgMtB7Lbn;`^d)}G1(Z(VDt@E#ef}*-p7pJtoUlokp#qL_W
zvt$ElEkq>HhPR#$=UbVo;nyY9U@ggYEmfB&ogXr2X5(P3@M_=|))IO+on)NlO#Pxk
z>R71*$wjaIemgXsdUhvPsz>B%XIO&YZZh?vJ5YuR*^BCQQtj%CAVQL-XKk#!DbU=(
zoj%}C=U6$%&U!4x5m3zu%wy!=M&j5|?)JQuBAE)JmsFu(>~a|RJgx^jj)4E<L;d|-
zUtaF6lBjL_<94JxVzT$Qc;iU!GLcZ5{p+6w7gpUmWL87%;T7{CibTEnIS00^j(hxT
zdOxR*kFRiVf<!U~rLCGh%nm|7aX4SbbLMGvGuGNp#6YBNusJ8C(cB(YnmqESh?LqV
z!Hm(fgGI3Oax;!(pud3ALjGMkzg-t_C7}Nc%1izZH;M1~hg`DSOK$u!(-DA_s0q78
zx4>3i#ps9iS2FLu%Frt&g@m9ztL%w;=Y0+04t&y{tCjGPGI}doQM(-R3>Up4vMw?H
zV=XssbGHJ%B*f-S=20Wv2MoN&*visk7p0UdWqjePPZt>%N6R}T(^soFU$bqahT3eZ
z;_u;$QHmuAo9lx3dy6qdZ;o2Pjs>>KC#FmFqR-|_dDg;r&dRdCcom?pu_I_Oz$%-_
zRo|EeH_-O5;nil5lLv`pe7UfCQiTWC?rTWr@$RMFWv9OeR)^4>`7hXp?!-&*2tz;)
zqvd&UbOuq)fk)-$p}%XU&oCwoTgsqlijJRG`R0$AnJoh$mx+|lEiNghVca0!Mj!qC
ze62U7{$70_7E|KHgp6EY0*$gY<sn3-j#8PJ56A;2WhgM%36ojt{eedJ5l>$!L=gN^
zS<>>b>QkKh5A`D}-@@?>*)0G2ISa?G)Z39%vG8Kcv=Tj9CZ8YYpZc&&H5hgHwV3WA
zbol9}76>-<^a3_HAgVJz^NNK7U-Dq7^O{}Ro_MD9=imEmFP~VL?U1nkp&Y!$+vGjk
z@<~<)W+c3tSDeWG`KbK4Hog&*WM@;&R+tt&RwRvN3WFZmM>WpNB7Jcb%8#W<wsVy<
zc#JCEk5S)0rFwM-D~4c=j4pF-w5JsBzCK6m;gWdz^geZc2bQY%>Y;eJ#a1tmdl1A>
zWcxF2zlAV38+%DF<vh<44nZCxURvVPwoI=2h`nxAs;KW(Nan`q-aPE?pCzk_=c3VT
z`285T(xg|HgZeHDT~nhT%@KJ%T3DEA*zk^wi^A9Jc=EGjA@m&9xKD)7gfBMat~GPP
z^AWxK-FLC>`n6lc4dgqvCOjQBz7fSio{X9OL7%i#WPJsPnZ}e9SFoaLJnpSWtnp+?
zy%>T!68B$BX*McZpfj8@>a9tIP<1FokiVNKr{{@i7S5zmHT+QOh$Cmj)(<J@PQ)|u
zu&yXVVG#)?ap9_AtlhvUPD#M<Z@D3?8!p&5?(C-LNRDrl9Hkq%P#F-(gwjVag+A2$
zQMa@$wHeQScR4=D`8=SH^(V`YUlhSCm6>9CFlX#A29*T<0BQUw)A;ehnX$*cBeP;}
zq_Eo-t`n$IY%DtcWJA@-Abya3a{M#6LbALiJgsK2Yaqvy8#jI|yY|yoJVqpbeZi0E
zFOzn$`D2+_*-YR@GN(SKecT$N^3CnUJbdRX9+Eo?*Wwq3f6f1~lDSb_*u%|U#RBrU
zI~<G8yyung#lGTW{oH)D6$TcSM84frVMtim$uL((f|!q6Uo2Ts>~~Re%!cDYoC)kt
zEea269JUK(FF4ZQ=2>k$HHu3i$g`z}WajJlHt!#E^ncGmVYXV3`H9Zah|MzXyZt7v
z>>6T9<vaBNe=KX8&a!{whXeYFCM`l}16zeSwiU=fe8O@ft?Sh(WT2A|P-5sHo321U
z#R~AR9r{~|aIe~Er1lyuDPhtd%r_gt{I;dkEf2dDx5*$Ie*qUX@%gPtX6BoA^UgE1
zCGqBXtX-SD>xNszDX;yory`n5?5lpev)*+(0`_)9WthC}*LkxVduOi}yzu4nL9>>!
zsnAaW?Ycm0oZV3-$q^f<Ac`<TOY*{`!A^etF*$1kjT9bJzO6QncpcCM8u(D2B{5K*
zWhm^=Az{II(F?1!10-Hpjbw&kFmXn6#D6EEHNhpoiLL0^PPC1P3+<F?^w(3&Peghr
z_3Ttz)GWM;_F6mI3e-QhI!JUZs>MKG3i1$oq$_!$C31jtiE}S;o{7_HdSJ>l3oosS
z?qjY=ex<HpcbvP$m_KjOm&l>>VXfOt!QS3|UnZ4vMQ2hHm7q)%M<r>3x9Bii{-@A?
zx=bHr*x>Br-$)|i-zcDC)gMQJ&tZ^E!e?!px6>hN{6aK7IQSL1Zx0;;!<U@a$g(>Z
zzF982AJ0A#_YH4nz7A`pY)K7zyv)7;)bo2kn9wFtQ>gmg<w4!fa9-tP7bW#_=M!p_
zDdmbSrC6lp3erUgR7n^cWkqZ9&Ob`8Jo5TpQ<s9T9U}YuuiyqnYDGwPIG!D8e`((!
zbM4*;OgldOLPd<|mPn%aaNQoESeqDXWf(>fK0EoH#1+9Z4GC;(=5z9PuP<Lw|0)w1
z8B;~;S*SN?ZTb4<TP%}Bt#aA59o`EzFt(J0!7G=`-z~#-voeigm7Sb2+oz3{Xlu?y
z9iN}Y&YinUHWRY<D*}Ae@!QEoJk(C>ETKRt;>EY`IlBdmhE&hlQJ<aE=dXmLT-pA5
zqGZX9-pMA7ALz)*>O~>db4IDMK$YM7XVEjO9Hpbc_FQQn38*LJ6vV1rgQP_XYvPd*
z(8)9|&YR)oLig1t#C*N>n{t{c#Jm%ZZArN7YK%STsK3}!L1dcXmIAvWP8uI43BH^E
z$QaT0(sJOzx@*nM-x!8l;G3^(Ua+<B34ostPrQkdbpEs&9&qh{FXpdy1XD_&xEn^z
zecZ^dZnj8-t%luL8ece_d|ahjH>&U1_L}gC;rc7z0;O+P*IU_dJLYR_hzJ^z=eSmD
zBMrEiYQSX{@SF3pmCD4r=t7WjEvA}A(6R&&R|(9N@ir;pcfZVHjb=M@rU+0k!q2Q-
zSv#MHM<zsm6--Uy+lJxb%{+mM!NPF}4t9n%D_-q*p6&brNwoP*_|54xCNa=Og5h>n
ze@(~(rI8F;mA>bI{|wf+?5&8W-O_i=gZ`s@rL;*8h*;#d{;2J=&y&cLKa9q>82Tsc
zR$kep{El;<HON4fzH&s&ya{U8Sega)bnVv+kLBt`RcCNi{xZ`qbk~w*YW-3l+dzpt
zk=b54!9hyAg(|C%*YIx<BP2<-ht;Hi<mQZhc{c~X#3$5yX>i$;UA$QFP?RdQzZ>8+
zN7JEHDU^%$dd^rX*Y3y?0ufAj>xWwAMJ0EK#E9RlFZ8+#oBp8_el4H<DGAj3Ld_7r
zoy4JX=U6E&=+FOR>@CCESl?*x-A#)WifggrPH>mv4h2eacP9|siU)U>V1-iLJrs9$
zw?J@recAu>p6};Vt}CDN%w(RKS@-&_6)f=SvwE?yX2K4W)F8ScCsdl++=eSxFE-uh
zW}1-$Tlv6F`;5DV=`Og06MJL3KP+;7^R9xbUZ=ryJ`n~R&5&F$qSTF1#H7i{AWIws
z857Rhf-Gk5oi29AnBO;I6u@7__wsLMN)5B)-6LGAY;@7yhQms!TBz&4ZfRZmxY91a
z(-@6wG0xd2wmSzA)_HxRQ9r0I@nn3vurNG!08T^q>(0S?${PHBPfh)J_DOo)iBB)S
zCXzHH!;=LvgK6vq4e0lgdn3?0NJfO=uhT_;2i|mqtOZwTP$!%|y_l>0ww2z$2*-0N
zYdgYTaInBWZIqY6cu;xJeBRo(6z5cl)5&lCqnd|q`V=eD@RV=&7?y^U4%rl!f`$$A
zO3<syEFsoHPNagDX`_x*!DbJmT@<$H@p*oK4zJkJ{OSw=AKu4a!ySNsfV$;h6Lyox
z>W>sh;*MO#xN3_OsYfnLRs7dlBhsqli*YWsuF9>Lq0SY}XT><zx!-1;>&0%7E721d
zqlS&8&^<CoXshiB@&@@gS?zT~vkX~^^95nluFd7Qijz*dR7ZFY(g@0}d@7}nS82h%
z=%q?&HrQ~1p8Bjb7JR)f5&i)O%y&a<po?W}XMu2idEeD(r>(hh=~^k>haV5|^9e3(
zI}NIL^@9uyUO_j`P^BIjz>7fdheD!@ZV~Y*TkG8UslUH^@qogki0xHk4&d!6X`&(_
zxOoE+>?1R47>^CW@?ZYCV#JH(&s$zwI?nPDO0~L6bQjVM{2AA8Cv1I0@cM(Yw(%g=
z2|;u^uOr!fg?@qEVhtGq@03U8sIcXk`9Nx%(|~6HtEzGMt7JJ%Z;hQ`nfP=uU^y!5
zDDPYP3$qq97>i}d3EalTkR0*bs`NKKB)UORs@vHAfi_WL!5YVpWaflBX(QQ}ezJz{
z5<Uul)P|@Q8!7R;_ufpm`OkFvDiTZ|6&^F$lY@K0s+y`3;*sRi_N!<X<sBoE42%nh
z-?fKzCVy82S!Z8GnLB=Kf#pF;pM_Dsgk`6Kq$v(AC&u(@<64)Mk&mKxdlMN%q_g_`
z9juV0BO`XgfAj;W<jJDlD1+)vlHa|Vb3pm5kZJGM=sTryv~tz75aO#Q+rLCiB?(27
z$RuW6?YZXW9YrUC+Nnz}bXhQD)Z1EFe|cYvd|2{ntEsM&VQTyY<(0Rgx5d`2Wqf)I
z5Hsu{Xx1<FWFp8znatg45cQvy)HYz7oL{4sP{8j`v^j4aj-kzAGSeE;RHmpez)4g?
zbUrVW9|?i%=<cd_)yJ%@wp7C$RPpT%rCI%fq#a3Sau9jq<M?FzuMvuc3a|o=GPl;4
zxBF!Tn+aP{=}2F+i>$Lhsqo{K@xs|6b>&jrR5(e#iCbp=e+To&O5lWgm>1YJa(MU&
zWgh+{e7(K+N@Z{WzyHgf6MBlGyFBv}?V{N2atvQF`0Mf{CE5Y>KDoO*seUoh-_9Z6
z%_8WYj`4J(8MhZ*J->_euJ}(Kdsiu>B=wM3u;onDtzN9`sW)k`mo!W&f2-f>=Bc+i
zktb280(o(l>E999mL8|-TA0K=RxR%Q0&2!w6lWe*!5Nk*xTtD_lElZyzS~*8y4dmI
zr`!~;P+?s^N~OX*$s-L~aBqeohx**llnJYWwxKaTKJ?^FP&pGOGj1iRx1XT#a>0f7
zpZ@fu66bZ2onAy4A1%2*_3KTgL&IbGQTV+??fv`rR<RP1cuYm4i6=A)DLu=}j~Ft;
zrsUot-en9_M}Dy4QB~Y7Z4uVwSh8QajXI`POTl;eVK6E&C9v%pj7s{pK=xDhDW>so
ze-Z~;CX4if<t!Poj+B=3qY~=>H3)}n#d^Hig~P9yM1kb3-}8=G29kfk_8LI3$K0~F
z3s^a?j5cO(Pl|2-=YxKYWeqlPw~oCX(Gl|>8oH&S`ah)g?fXJPP22GQ9~ODjcK)Be
z#&@luR2jqsDnQtoF*>QBLS6s8`N|@DI6i{kOoO97RB=XBt8VuQ1=ubT*5t$_yBzD`
z5u_`ox^!dMOGY+u-P)Pc-Vrd}S6*7o?{$Y9CiSFZ=(2p_ExEQJzDkP_zux*N7>u;G
zrF?eD@N~ATK_=5K)U(&`-UJj~sV%;%+`zt_^)0o88x9@%U|iLAe1AZ1D|~QMn#h|z
zd~NvTctB&=sN@JRhSgtRNKh^{+`#KEHM@Kx<#Ny6FE;F#n2&vzt#2IvGuTG`&LpPS
zsrpQePHNnXK~?g@jnFv96oCD__Yp~D6<c?c3!s|t9N=~vplRkXuH(~eCj97bUtrmO
zVdwMDGSo`BH2hIm<mK}`PgI^;?CD#~Q4G@=a<VhNac5pP$x3sEn?@;e>zGH(3%(`{
z;pRwi|2}xSwAMz8G(%Ykw&=q7$6RBV#Ak2OJ7=3yN454;XFO-imF<wRP836*HR9q@
z)ZiVr<Q4ZLBxsBv_YiNg`8nG_U-JDGe*e1Cl~$Y2+4*_r@Y4nF(`xknq4gKjkj`~1
zWPns~f%a`n*CTP;*p;U%C`}5wXqsQWxC+_#$20Kuv)W@zALT2bT;dg8lkVD!rj6nY
zk7zKx;TT@=JhpgB_VI5ur@DC<e|f=MD;m965||7~Ab0Q~o`2;n=(!UN9izb&O9({U
zp9>kMW6k|KfEHSTF&lII;!3uzlsQ%usZ!_L-U(i$ubqe;w-}{#q;xlZ+8eR37)cv^
z3(>GR3}`>%_mgl*UE!+_sl5$u0q;y<T<OBM!p1`<OJD!tDbENKRmFAW%}^b^Y<ZT{
zv*^3pXV!+smoLXgGGfOZuZ;gvU%ppvs$BEZzDy~S)P<5wXyyEEP?BkKGUA^u8n+lH
zYHUxieN1J4ZiOsVd#6?%R`kyXDF>I056MuTtUkuVCRCyc7fJ!nZ@fjou^zJ9@X20l
z@uDXsVNmLaNGmRr(|ccHd`|s^+LJxsSkx@N`ZOX+dy5gRfor<)QkHguR}hRQB?jWB
zuqq^1e~gpkVmYSMl|4a!18Ez2lSl6SPAHXE{P5{|*9(Tl__k4}YdR;WtBwG))|aL=
z!Ot#aQW46QXd{^OjwXR7mcmE|f9WFz1Q)CJ(8PngcRdr+gsib$8X>)pAH*tnJ#n0`
zECsH013H(7w;u%eqB4HJDivTJR`71y3(IbQ^!2p5nuA6>jZbWD+rtkLvll<(2Hm?O
z%xuzBIK~s5XRxRFB8%`vB9g*$FK_&GQlBc%Zq6-s8ud%Q*C3h_kYeA{eB6RiUale)
zto>}<L|<j9+en%wp0?#!qn_GanFA(`>8AKWMyZDOu0@pyve$w;y<%?P_C4ch0Y&XI
zCf`GJcwS>H`2J9A_pzN+-D=Li8hko@iW<}#*1AkPxfMi1_<FSFi35Hd)AbJ;!&`Fd
z+$o=x=m_hC(F_F>6;$1i?S|KpRFPb+*J!UK=G#5LwBI4^v3Q6siZ?!xPc$!D1sa(8
zJrjI;n}JGPF@}60_$-!7=V?OzZ+E`dBk&V+30o2xIG8q-PbQj;*4wY}eI;Kk)al_Z
zNsFI?mCS)qqF01dHj77aklB5)*^^FK5PdfQ-+&s@@EoU$`~f%8kW#$T!E$L#eWi`I
z2lz(_S7mp!NUoiT?^H+&Fp+ELOF4!A*JGQ2G37Mk=yOzsK?aZd&9|y=_`9EM2FFv&
z-jil2HIAo*7w}sD_{D~E6P!pFiScZ!DRq#=De6{y{@dPcC?}y8L3h%jN7`D9WJUO3
zf%pz~KK&lX9Ib5!*t->}jcrxmc}a1!;<O|65{*2ooPMf&KJultLoNCmpvX)#7jaJ~
z!Pn7*(T=ZAV^~4rfplVad@i_juM*#WN05=uKn^mS{q=1OaG*pEbT9x`%y-+D2|j~+
zP@aP6WxqzuFr3x4y|_xhDy;aSg-Ky6%Oc{(f3U{+8@9!}7l=7H6}0C*XwT46tRH}A
znOm|TO8&2Ih?OJb4IN4>MgE98en{z-93Qo}eLlEOh^7nM@9<+IQP((fwZ4koskiZ;
z@T0Id*<IzGfA#5p=_lNmdK9&;Pzr)xVVV~mNu~Wd2>?)Gh98|+s5TRd*T9Y2z$H+u
z|KJZs&r44e%q5zR6&TE-3EA5tqgk=S&0l26sh8Gh*vJ>DUd-AOc^jqhdJ5!u73`E`
z#?G4~f{4O2mT!_Avr)*qKQy+2F4=9UnxK@c%=y)>7>GjTW09Y#I*(}Vl1)010076y
z0Jq1u6Y+=5szph)!;rYMn>Y8)lN>PD^yR0B9n|uMgn$$w7Ad=}VlT<td!^nsZDsRt
zt5Cwu$1oH<UIbnE;tvOjX9Ii8sI;m|ny?DFPunP^uT%yy7K;QI%K0|U^w&c|&pckC
zTK2gZ%X94O<lQYXkOQa!NAc<9^YEL736fErCo*3U$x%+Ol5?<y_n`}b4?R9`7F}YV
zM0l9;Y*#Iv<7>3Y!DQ?#6)o?cn+~J8q*Yc%5T9K<iwVxz_Q}qV&+dIZFW$RAkK})1
zS~w6FJ_|6LEbGEd?L-EhbF&@ec@vj+7tY#*Jj*$ows&sm>~ODrj-b7JH#m`Ub+%!C
zci6VafQ1%!;^>QhI>ssA%RYnQN1E%(k;nzM`a>^)`05U=0EUnzq1E-_FGDrzk?JeB
z5uf@g1KAGr7T6-x4jOoW6!fuRIMBI=skZd)wsw+ao>F4e;Yck#$2@1Gr5rc^Rk&jx
z62dW;TVY<XM~{Em%GiRW{wkJQAoc-KbVFCEw&<UTR(Sf?POEuD6(Fhbg1Yhk{=u0F
z;YD(W)pjZ5YR^|@10Z{EQ4pE}Eupe;C28wwUI;@amUl%|K_guZ$H)TT5ZCtsL78)h
zJQT^|rgX_|ziZ8+Y~_)#4~}d;K;(jsBc<y6YocW)1W1f7^XG<zA^jge#p$Kj3oK6=
zuF{*+5NGApOYi@YMkAH1f8Vc7H+wcn&YzWsr=e~|*DR-+>1zw!=}8@xOJ&DP)``JY
z`|Q&jeM&wKp{kW}E*<#tFiS80Y(Rcy5aDrRO%cvHQ9J%m1a66J;+9C+GSJ{V<ywAC
z9B<}Td@_aa^0z-GF7nhZ-7gZBgxqf2?H!qlJ2lCKORW`E`l$O10;-+|{Bo7CBKh9%
ziV@H6aqSAClQBf*R43MV^_fe{)QR$v`Ua;061xW5+nf3fI&~aDf^gF%&B!K@5mG=r
zZ3Her?l4b%-+-sw?S<U<2HP0*os09b^uGloxXEzzboqX4>wyebev~QvJe_+EGkNS{
ziGn*{NqpVx6GOd<k7C(8d6sneoA6+#*x8Zd?u~$N+nj;MK-RRJ&o%vF*nTFuN4N55
z5M(Sp096@|_VRH;E6g6Jy|;7G$c=Fi&;uf`7N%jS!(Rr*3tVUH;rcicd94JIhltAQ
z5i5hM%DNyBE6YCcnQd{HhV~{W#SlV>{d(kBC${l$6xW%Jqt=rI%+#n~V(!K3XNvgm
zAEk3(tRNlZD4<D1Tkk-uz(m=g(O4u{w%U|Un~m?3<DjG!_fp(vby2EO`Ph2Bme<h#
zh4d1xoUi_vqiE=gAB2fUJBiBQVS`l*_mL=$A+NfdkL=-m&u#(xro(&K8Gxi*UhTTN
zBsZ^IzQ5$cxM?EVu$U6~co1VgqT8I+IVx&=-Ev>H;3^>qzi5yu<M+_8%^ek2T3dV;
z9@XK3CjxDOo;?+~Gjmm!Pj|;4>8r!9>nA~bJbnT^?ciACWmi|Kb>@}7Qze{tz+FBa
z-s8@`;aDkz(`bIRnN0G5JM^6d%;gTjCA!}FOM!xi+g#gIYaL72!wt=dZhcnlXSA)B
z!OYrH>FG94RA~TT=$KoID&z&MdM5}yP)Ny+?vlCv2{dH>_tDb}bn^AkO<&97EC+v_
zSkS`y{PWAT^kljx&w~Sxz=H6$;Fw->XRb&PAC8I9aihM~S`lhwtS~lQy2@w^lrr{`
zfn`|MOYy$B(`<LMq})f;_H(-c$Z{%)C2e~@P0)esv~h1>s^GTXHlwTJd=TkaYDIK6
zV)*AG)xa;z*rv8bZ3Rt^hHe?VcD(5GIedWzN2T!>&MHscrgoP%)1I)A+G$J~AKp;5
zzQd!8PpwoPr^TE~#>kW*oU>{kghfu?Fis?YX+fG^d)%@RZFa7SBc*$dQl8;%a$o&*
zl+5K$BlP;P=dnEF@>)9nb&ZEM787Vc7iP~ZejbD8mCtEZXK2}XB%Gx$7{9sh*ByY6
zFLl9TD<P{3N1Lp;-i|rc66#W>4B4$Vr?Orw%5IV-@Z)C~`gtzEDVqH^m*Uxav5vPt
zrwKwoKu19;=vufQrF4f%@tL5O&(C$3OQ+68;xJ&liOiVVVB=lO?SXu(pCOhRC~}xe
zL3*N1N&%|nqlm2B=%jyRE|}529;9IzxH8Y*q7^)yk&=z%@?;#fYdKxknei-o+;TtT
zx0tiKbjz8TLNYt{==p$L5sVW5xh^$ay&)ndC1}ymhxVcohe@TSn@6Pi?*{bPYVt^(
z>~oe~27hMBI$EAfqv}x$fyC3_XVBqddJcJ%zs+TDw7R5718kZ>Fqn|1#$t;)r97v9
z!><;My>Ep1ujs`l&@Y2MsB?Acax$)YFL+d;AF5K@AgtwkQ@wX2i~~~xlk42Em#;a>
zWTxnAx$1l`%9o&p@C{eiM!s}UyUZKLz&1PY6?NV8YIhzPx|{JC1ioOnbDC`7gWg8@
z>@O90IKoohtL0n{-yk;6@XP0bZrqxcojehuK_OR_gd={G77r;{P7}KjcPojio21aD
z#qW?Tq7{c~(7|*>@?}cZRev<-Xnkq>AxfNEfbDsHdTIU_W2lc(>v`+>EuI^g_+TyC
zyKw9XWrBkB9+V^n`mA@tf1sS54F(gcrooU^kATLRmW8U8br;lZ!QNO<GlG067aZQB
zOEtZ%zrTiu`VD=hRzbJ-*4qruHi4rwb~syuoPj1BC=@5*O<8{=7F-?Hg!})_MVF|z
z^7s~!Qprp*&yaP*``ld5RA?XoA_0-(FKb7SO-*22@n3^iEU@bG;uN<E^3u~58M!R<
zMJ2T-jWN+cdAgocv=uPb00J`@baT{0Su;Z&5%+^3+`jhi9*p1A=5)6H0d@Pg{_zh?
z^Q}L~wZE-YM#T$@qw%+N%v41DWvS8o2~KEw?ooQ&I5tx*LNpmkww}1&omq46(ZBbg
zb=;(1$*C2y8%VIg+N{8Nd$|KH&*F5zDD6`3lJWX|+&_x3R<J1Et#3MSaTMlTPq)<#
z83r=c61WHq#579v-(iSS$UHix@p4hE3M$j;AnSK{C`0f6Zi`S;3AZSB7q!Z?e>_#M
zyR?itS`S8(<BStD^bCz5RZ6TO0_u=1NVV0bvPitF?5v#ZaJsxq(R`dg9qq|Uf19Ve
z<TRa3{#sYLf^eleNU=^D-w7y+PzHUFo(%AFa{dq`x+EL>p`a>jp{uXpgzkGIhCOcn
zDHIbC8k}<%B8E!N>HqSt+UiTrpe?|rAdIybq1GQU0uLZLZP0yx5Giste9H_a$&Ypz
zy905pF(h0L^BOv_O9@Ng4#?f&`-Wp)Pu#sg;wpzF{m9Z1SSd+Om;sPb6ON_Dnq%fs
zQBsM3s^&VJYniiO^=PC`AqJ?T{qPNUP_}DqI%*LRs7(F?Qd4WU|2?p}`li^N`N<rI
z-Cd>X;lUhgI~$dx1T`5WAWs|s#^$P*64h`;eV{ZLtQa*r2pv|Dk+MgpqB;Cdr_!M2
z^VF-=WjSwoQSPirI-NmbFNn1jh5xT3S1W`3X~hnk<gydr5%s9rPjS!4Dfo2d{$$a6
zid(>DVgW^>43AmYBe{)=SjT~Ap!g~s=WTZ|=-`V0p}|Sh@WT|o2e?A1Pu1dzO&)0_
z-}=??&SO_k$6QqEw$eSZ1%wx22Kd?mC{|@Q5k^RjP!6aPo$R&F7j79lH-uU|*f1eL
z_eY}n5$+hu{zcu5w&*>3$-?+#x(Rcv+O_Yki@zp(eL-4EtT6s`XatywwpM>kJnQsL
z@fG+9=IGWsbCr<3{X9rDsXcSTpK65=wO^uLPl%U!V`>%|#r$kd&=UNTWyq7|xtZKs
zFJihsAwu%eP59W1@92jbzU`<xrv<yMA}6gYiFhyrSe451%pfyQaWC%Y7)#$J^#hvg
zp<>}NLE^q9J5!^*+pX&dXL-%Nc!-sN6M_UZTWo%aKO7m|Y&GD~=d8DJM&2W9ZQBjg
z!-$cbImTq}$&sI<n(5GCk^kvUM+u%WKNxtpvRRF!pI3Tty^k2%$|0Puj%m`QYG%8X
z!0-ER+PR|2{CO&@Ab%`gg+(v_7=0p)eIK6O6@j^n{+LpqdU9zrPvR!+fpd8$5dM+d
z@}j@~ZtFQf$IEXG&N=j!r;{$MShsh<8AAL$Pb-AShux2@SB*%!{+0}(Pbn{B9qYlb
zJ-aGV;U1Kj6LJaPbhY~zHD(nyk$*n2lwW*0VBsOtzkzw1p^{LBJ81Zm2SJ*1D{=Se
zwGCTTlFMR<u3oCm>r55^3V_o(FO(Is%*O1mk6PToKM}3_VTu_*x0=vvA>_-&GjKZK
z$&7KmB>!>HDsFGm2iu<X*fc>HF^_@gKz6pv0@;4_?XbhhD`EA{xAT~d8W~dsjbzth
zf8*td`y>?ri8_on`x-Y)SiMZ8d|f^?K`O+MSh-ktN<fOnUNJ5sfhb?AWloquDp>kk
zT4Yo*F;<fmpZe*;RAI2U2#C3Y^YH#fw#<JZje{z@ZDgsqX{Vs*N?RScnPn+^e$Em|
zwGs<~oiC_7w+itL95y$GSmC{TqN6TnX+2>lP`*eg8@RXXcleSAVZwkwlz>eq!ZVy@
zjj#$M&>RA+lvC<x|BQW^&xPjOrTfMP8QO(Q9i@*p#Rep@%UX@yViWsExxwhtC*Aa=
zYWgtV<E_@&Os&g9o!thdzkAx^+`UqSR=COiE?~Ck7}>ESzMiOA;(8Z<JDk68PV~4h
zIe<xY*WtF0i-~{7{@qGNn(CEnITEK3#a-O@TmBoZ4>ni*K4F$MFo(&oCgta&k9>j~
z+)S_$cSiLf>A=qV(d6gCoP5Zczu3_u7^2Z6SGW+<`fM^bc(I=VN6r)Bq^aWrkn}?9
z#E1bn#-SfYyHGOe9nweH7zoNRf!Yb5up<%Hk(V7%m;Eps?ES=!I<)m9r51k+gRpch
zFuFY)Sw2O&Qv}+UX?y+*F@2o!I|68tlfcEActzs-wW_<eUwQ!x<k_1~oyWnJ$FilA
z407=mxYx_=VPeQVl5*Rdr!2u$vR{tLZqNJdE+|z^;yGyvtT_mZ_14U&ne~!jJd=YW
zjgh{B=oi+p=spd5{}{WE;h6GT?b8DJo~&m&NK1Mf2F>t|Jq2d*0rtyQ4NeZPUSmfF
z3jH_7TF_S#UI(xq_W(&Ekrg(n3Fpf@6!!b#japR=Z8lGYxA-k3S+}KRm2j0ny_w3C
zbS`t7^BmSF-ARHw*IA0)=o5)BV292A8Jim7{ZrEWa3v6Q_<Ok&{<;U3-7<Isfe!3U
zoqLXSENjc-1RNLpsA0`|@arF)l=0DX+et3@qu!L`N4XU%whvqDmg{4jNetfuN$w*q
zhr`VG*}cilhjHOg6^8t+mMo-_Z9ho(#z!+L4RX9xXv@dOH46hU7$gIhYj)8;>CDlI
z{kgRw5sf&W?~+S_vK_Ah<a`_xTOE?=!ml_Y4FjnS_MR2*9xMwC>h10<2gNM>k+9e;
zwc0PfxQHG~^;hy5d3!{C#kySp;<nO{Xb8IHOV<1&UU{^!m-Fni(k#54LP~vB)I{a#
z=YayuqAm%yMdEd~ng2Zcq7lYwbDuw5T>Sj=2Q>$uc7qXTYQsp8M8Drkvv1(^d^xp(
zejH+Q?G}WaPWy=@Sek6pscP?A9X+_Wn9Y9K!t8#0dEw<5dFj(#=)@yk6aLYlLqOZH
zuP@6MRFU4R>AVWuc8hP~b{=@Fx5QX^{q8N&7&gL!ggE}S+<<N=lkS#irWv0UQDsAU
zLs(q=8pfa&&#{OTUnhx@Ao&4k|LTT4d#F+pY(TA$85*1)oj9MErYLap+7d98jTEm-
z0?;l&Y@Vjc*UN4(yI@Z&wer&o=zN=^CSlKJZZWkyl@G(W?k2bGv>t<Z?GNMGd{GXF
z$*Z{+!k$WSCQ23E{Ggd>w`#OT@rtFRocj}UpfpLH?DkE`7y!SNU{0Ztweu>ptGU4T
zH@Ba_Ca-c0P#bg9X1ABlz|BTuAlN@f&+MWGn+zCis7Y=%N4L5!V$I|h@28p%@`{XL
z4v0l*Z@Oiit5iV*;CM#t;4Se6n=bP@Il$$YB7OAyk2vNX-kY*n=5B|L%F#|eST9bc
zSAo5`zNm8ew3}$vQU>E6+r-nGG8_<+)x2pM`*n2f23Elvf@phsiRcn^z}HCxO3EEB
zeu}<qu`=!F;FPVE;B*DmY0t1>2Kl(hIhrvteU<ibPGqQ8)@VoYL`%i*uRD=luRsGk
z2(BX$Lq&FeD&Szul8}S*c-YNnvYO2IvCeEF2aWlqjLdjbb?YTwBmDQbEH_{bxhWJf
z7A^P5YF3*|e3bF*x+qM1)y&+;Rn&yTZP$~5^`yN}PHUlqadhcA*SqnDk9#{;qF0-Y
zl?NI-mNCrX^@G&-NTK~H^y<lmY;$re6mLLUpn+<`p)Mp2|KHV;MJh&VhJNAttYKrS
zE<qM`c$AsfuLuw+Us|&u;CZ*Yx(w5duiA86-}0CO{t_@l!k79sU~@UF)d3OnfurG+
z?1%dK@dW2?1DmtdibShXVxu}!rIso>ypDamnShO3r!XtC%;`o;j1(c}UQJ=9R)iZP
z%=%X-By_6LQANOYuM2}%WytbDJX)7+WkphZyjdY=h)oCli1tY)VQUIgr~VaOUu+27
zirA{801-}eN)%H~JY(01q7qB?HDVq+wobFbJ_}*>cH<+|$9AR(ZV-@vj5sR!@}Tlb
z83p)4D1aJr8-He~@FZaV6ShUt+Nx#4F;;sI5_B`9j4ZbEr{0+s%Rwfjuc?pUqpwTm
z0mqnv`&A0>uH_J(L$ZY>*X!m#G1%mWR@s;BQ9nkytl=~~1L99pwDiyEwM!B8L!%3-
zPWhEXz2mtwETqTNMq^Rusw}se)jsDK&Fab~aZGdGeyWu{bfn@sgQlP_NfZ+jyG`20
zPqKLy1zYoxX0*<|!#+{2c1+x-^-^KwFINUdsqa*FmMzw5*I4i#7J;NJaa<Fx09Yti
zjV-4(+A7V(DdG0~mEU2hWul-h=a57Hzghh2wGQJ9PzOUT5D%=K1q;4xw<U0LiLF5>
zTk)un#&%*`^W!j(sCCb-SrSQ~1SE-dfSHZ*7O<vnW_;w%0kvJM^(&GMBP_q%!G0Ce
zyabbm6|>fcN*jS8{{&&WSMy~0ph-rw{J_Q|ldM{W2yo+E3?J0O22;b2@_2U1`K2oK
z_)9oUXl)4;X&0M`z8^jX-KberhmzZz>vWvr8rHFX{SLBgd%u($`dhHKD3&IJO?yJJ
z_K8n`u$2B$$CrM@X<*Haxl3t`YA!(n%30Ws^QD25QnZJ>cu_Hdi~mk-_qxmV$Urc<
zu!X){;&WtHaizw%_-K)D<-7IqobCkIN3Cmf1(r`cMv--czg)hx4gNFw@(D?qvqp}r
ztH4AOsgD#Xkuw63T*>n0_L9%%SRmS&2wbxSSt=MExH-o`x&77@Ic)7nad3viJMz=f
z;_`WXn9swC)6*xv+H(mtd=5RrnRZ%c3!9WMktrcG$Ck9&D;l34Bsm=To7W^pM5Xp2
zs6@o#gXr_qr_)~_|FSMqY5y?)r>1QG(?U173-46BP<fkw7Vu-BA{juGDwYf!(Hmqp
zP2!yN)xma0W9-vB4$-Ec1hsfl7+dB$e+69QCEXo?K+`}E5|Y2Uv&8rNk+J*&4P@PZ
z{0jd@CiWrhbbY+!_qk?Ns%c%h8TRg?Bf$H(YJPzcFk|&2MpBTMeKkFXaq%e}Yv-GS
zif2donLhrcs(fZxrDgb&ep`S(Q$Nl+QGWaFmv~>{*0QYkZmqJSp0N=z>Vx>*bv`RT
zd(09C<~a7v8n6N-TnHZupuz};VA|Hcwh^ppmgONVJ?!QwyVAWoFwJGpmL*_V0W0=2
zRHsj`ly$)(zwa2p5d~H}HcVpSUW2U+vHAlW(_gx&Y#M%l4J<!QD^XCXFB8eXB%2R?
zrTt&z7cBagQ2|c>BCs@&@Wp&6X=z=wUrsR!A@YV}<Wh?Yg8A9H9{{Ah9mpPznPv6L
zqYe7qWXcwv`F&W*l1nVMmz0|E;62KA<ez7X@(A8v@DqF7%P4B0Fs9Ir4X0yi4B4b_
zwo&@|5=QfxQs%^cv#oh%ikT5rF2f9S=LBO%>5&q8Ds&Zej{b|DPO=?d6zFzSWWwxQ
z(v2R?@PI|BQWG{^Fw{Tm%lcE{P1w%!$8+^Q&$7K_{mbn>nz348;qmBbI+e2b@9(z2
zJ|j4p>A@z;jJT;jnhdmkFI?qi@p-{g;qtQIaZ#{)rtKn;eVG}B=+@q{$1lYbhLpw4
z%nB#IptC@jMc#R2O8zq9vUM?l<Pd)uyGCZw9Ki_`C%x;71w6GdiT19`)GY^x>q@39
z2j@I_GS_@7YGnRUqZ5JqSmW~9kmS}3p|eYgwxeU<H*z&8%abQQ&eU%4@IFnAY8=&e
z$70Nm6mK;t?O3ug)GEl1bH@fxwQCJ|vtO6w5)VFTJA6Z1VP6^ao4)bO!>X4yl+CI`
zJV+Vmw`Ktv1#e94u8t7T2+`Q>Dr0qL2X?&+-S(0%LitcX+umd044604wIX3=C^?C#
zG24f$@PjX^S^tz9VLFLs6<x{S>vV|;jbr)tKgkU7yv<FGI|}*~AZ9%xh&1^WG%H|@
zbpCvM5Hg4f4N;SVSM7~p_~=()juo{JPzdx-hEGlZ^3))yK|eb;o-QueHgOm}3czcI
zno^d_WaXYdhTPfwrNh0yAedr#in)Tg8=0Su56qTQg<duesI}tPUz*`Z*CEu#5<E(C
z7p^a6`Fv}nyw1?v*b2;nIaX)aR!qY-5KrNb;u&k?#(WP{nmBcqC&kz4izWZ+;%NS|
zxS`f-hi`3*+3$V(@&QGL%t&u^Ml!<d2Xy4t<5bh^cWu%>=Mu+l<UJ^@F$8y5@T~S1
zLahkB%w0Xpj6G*Yif_i{GjHU*^P+SFl9Gg`olw7{KJ9umL)y^zW>@_x^P>%$U%LFJ
z5NnTZK8DuRU~0-WqI#X9jGm=qLb;#5&F&EWP&;Nueh>_&J>Eph-{L;Rld!>8zP(!0
zqeJ;KR2!%3-cYnqZp`gUxF(tMLDn5fcE(0T#Eq8gcTWYg{hlt(C!7br;hzX^Zz9mI
z&sq9JKp=70QmVObgwFTz4B44=^ar$)FFopYO@$b@ygtg2r`y%OasUvP`@RA6^E=YV
z1l5YobawL9gQ7gKlp8dG+UPd-#>xD9c+%c9S^wfPuB~pOA#ok`Wvt+S0^lu@FFNlU
zZfP}FE}+?{U-%eY<fE0#OHQ_`sCwyXtb!rZ+7x0xidxO2M0EiBXnvX;!KGB6G=4*q
zYrb=&Cv^UE%@F;|*O^|mgh7s4n{QM+#pGQ{4FO!Nubix}AT+YXqyTb~!s@2E<nm%`
zVL!q}G_OfK9BUIV#Z$&)_8D?H)ou|)znaMG)V|659yEN&WBB(@CVCwk7N%Gq$)GaV
z-?xj%UGq^U`fcw>(q==`2IwajYmM6Lvk_epzg=!)G`n0;^KZ-4>^U0%4P7@bBCtT(
z$?^4&;ykZufYoa0o7F+9)7^G1@#^f`LA1YY>*w(Fs?pAn=F@4@0r9tXmysK7Q`vcc
z?qk<ltE+u}9Z*TvPC49))0ken=a@xM&bi{D)6wSJ1)QV_J=Stv)0Muy;!8~V@$b}f
zoNi^i!m3R)SLd7UNCo1>r9XUO9K1y)E&n(OpXcc&-X)dr#pED7CeAenp|rYG0hI+=
zSs&AK4r^;|%syxEK4eX`uhZ>bu?)FZjCOryp|3jn=hV_E!b=ICb#aod2I|NyEyUWt
zL0dm)ZXlmoNj_C1??ZbE0^03sHkENeB%e(`=Iib--tiDh89yr{#s~~Gs232b`J>->
z5Z&*YB0Nj47P-!PD6W-nkJJDbg)2V(O2z+M|BC7sU84MpMJjwzD3Ct>R_ENWe-acp
zAuN4w_QL&U9U<PG?Y%pMpQnd#Jsxoo<D*?RJ-L$H#!i*#)3qh+;x`)l2t<8W*atZ~
zAD6oL{BRLq<xF7ut2`ArOT?cWeUlLO#!%&m;%)z1pxuA{?9JzQTD=f1QxdTwYcgp(
zqrF&fk8?}jAD91CDuOn8>xdNL-i6kvzvz<?=E>k?Y5{1@OiQAo%J@+=UmyP>xm>IU
ztX{V69a7gEsmf-H4a4PZUXoroHnrpT$R25S&Wm(Q;CJNl$?hZ(^@G?+U2Kv2X3l2b
z;OuiH6id=@(6Lz+m^sHd50s+{P0>-={`m(@I(2WvaeG7<^|U<|yO<p-^l$6k&QPS`
zg!PY8AyhvU2K7I<D9o&N?`#*(Cqim0y3xxD3%ypcvvjX0Ajjk5H7MnOJ+pZ}=*HO&
z(3xE~ek-zLctTSip(J&)TOH|+BUHnykRR+x9n{GsCmuhc{KdK?96{HWvd+Zkc1049
zr*bxSM>hMh5dQKj@ja1R98I#QKw|h~v0E+tNO%gyqEJmDCkZ$~3Bxd?)y<>qnMML0
zX?@|3u%Ls@_}%1mM2mrrhBYeWg(l@9o4m7JTLD%~n#oN13IEj68Hh_}=uwb}63OyR
zGF)78IJrGmX8FPLzwQs2DcHe#Iu#0sQjrWP_)U8w^yGr*=C$gNk>%8Pr~^_XXPTXH
z49UmR3p8alzKDijW7#d&g#4wOEM(LQ&)<Klj%Z6N=x(5EZ2lr(?O9VivE_*6+2}k?
zVFJScn1t;~u-;cfl`5AkT3IzK3CrHjS44h%#!)Y^LkS$q=}Dl$7;KZ&zP#Bz87w~%
zB>;2E{rH?ZHnQJMAeSvl{;n%$T1HZv@%ztzWH8@o05~u>k}HJin~?gyF?NRC$w=|}
zmuhJ?_fwemiKge28j|TKP+$zE!si;gTHpid3v0G&p{v`!Dt5-}_cB{L+P@7c37m6k
z-D2nqRBx4QtY2yVO`xTScju_tQFy}~ZwCz6kk)R##^j(;I-ctV=ZO4`;pCM~=11~d
zLm5b6KtUhhtJ3>?cD|E+gt?<b5SNv}uMQL)kvu752=@X-D~REL+*KYPEuehUofBC7
zKdcQWe5Ec3nAX*F=2?)9ufZEk>-n2ro}VT9k>-n(^bkH1xVI2Kcg{l6bcU=sRo3;A
zwLt3dSg-mxk(mW8FZi~GCW*AVVG~E-S$hXmORDAiAZdWvw{JQxtIH;ef?__rTmC*o
zTTZ?3WA8MoKav#uDl}W@!?ba2FO_8juB1p?U$PPEeaL9ud~6l))f}9f^v66hoWu9u
zb&`A8i#j2BiKsh1@@kWARy2e3-#-f2EO`NNJ#hG~WZP8FwCQDGvf|}{Al-t`8OOW9
zg!lzP2JH*#-M&R6zH5v46K#HSZ-?fH!e~cY#=SpHx6!ym*~*1**NP9`@xm^YB(Dka
zK$^bS-ZoT|CvqzC<R#LrT~1+N&+Su6!=E5N*EGe-4mKv-H&vX;M9<_c?`jA>wFE-+
zbd(Dy>1TdlnAOT)XqWg|Mp+_0sCvA4*nAa6<p%@|B}X6elv+uyuCvBX6Pgg~hqv8w
zyAy%g<X8=9A%*FR;*taQ6tv7bd>3i6EFfW7AkElJQOiK$4w5;V7f_i0Go9fA&P^-q
z`#<-4x?^+%z-pZkmhr%eEwjlVHVK?e;(J;(wA_~Vg$DTKAXbXL$m_h@7j9ghrSO=W
zET(C(tO5dSdPAp<W>X=30-B9^>*MM^(r}!>?|vRKtlPWJOLcVS<IBty)*PlBd-0dv
z^{Vy^g`<=w7wjD?_~HshL0R&q3E?aUzM0(8wGx1y%hNulvF52ovj!{IGJTQsq<h*i
z7mt`;DOP>@X<aB2b!_i$zxpe1i*>y;JTq18j!5cZ_{sfrm}4Vn+Y!g_*L>5w@0uUK
z{=lA};h^bvyQP7B#mOJuSuT)8s(-Q0lWsPu`*#?S1j?1Fyn;QLIi7d8uor(23aflE
z=X)rg$G&GKFYTq6Q>L(r!=b4!5y~G~f?W&mGdDtZe_?j9^7q0&P*|}=Y&&P9%$<af
z{T_Sfb!d5R5b_wRcXMnS_CIQ8FceSOr%gQ6)_I=uWATX};W56gwGDSNNXY3JU0=9L
zGM8DRTEBN*K7!7h73-{Zk6)+)E>xFZeLQgo&@<ZRVTtagvfTt*c&Q6)tJbW=D&ckU
z)^ugA;A4XEWb;wd$|j(X$n&~+65%Vs<*WFA^!O`-zed!nFi3nNLRu*1>mzU8v|u<|
z?bhLG=_pEyoEhG~EA**e*E5YBQpon+Xl@0(_}SZy|Nall4CZC%GbfP#A2W^ulc_Oj
z@@B#;CQ*GQ*m6ENKfj#}ZfXDo*DpTC1~>Km8b#q@qIfIkToe0W;Y-BpN9TQxM_>y#
zv2t$bA-Rg6x9&jy7SOYy?SOpq#US86Gq>&k>1KIVg9&NhO9|dji-eHf;%wx^4);)Y
zXzf#_286?l!=18!KP#z-&Yry3wXl!D%ei?A1lzPGD^ekMKMaT8;$$P{BQiK&LhqSe
z`W)BV<UBl@-b@&87-7TQGipJde{dN_0=3*l@oC&sGXJ($5Yh6sLe%G(#Ay|^37-vk
z9RqHs%qkpneLiHrz39q1gIp#`U$+Zzwg5nTvB9UVbK3bvnL?f(?mMpH!)1=Atcx$A
z&w=<jBsa3=6Mcx`xJ3*QE$HKcZ$k|)cih(#dX~QqjFm+3rG%sSGMad|p#PT?@boIv
z{`VfRTM0ftTC7cE(qt_+j=g?mr5YY;wX?L-e&H?rwY47EW;p#zL8iuRu*zEm?ZPr`
z)Zz`p?TH~36k-Ly$9tRfUY7@8yHd^TUc%&-iwc`Jx_tGeoFUtdmJ87O?<%Lo<&2xo
zgY_l$AQr7)Y!~zi+Fpl<S?$p&C33dh^VFyZb3|1pM7BLE>re}AnOFP8g^ntK%Olr@
zPqkR#I#=)`i{&}6_q)$jo521fbFMyxfBu%=uQ!i4{R`ysM{kpNGwHY;zI_P<p8CZr
z6x~tO9~?e`AD3GEl-PK^10UO|5vIIZ*tt-8{i-==o}iaQllwCNgvV}>`}N&ig?=gb
zK}~@FeEhJBoa%W6<#4T{yTnmr0$v2~PiD&+lNA4*)5<SQ=R?U%wt-Kvck1k{^J_e-
zJI`IKdwy2JQcCW7-+l}FHu#Q#ZPq!gPtg*jWm-CH=tWs^s^hVfQ>&l$m=pSs@*H}l
zeAwT{c#-G@U+dczB!XmB^9ahfNzLk^?{K`5jQWGgn7QlC)sCl=$T0`|7JGlM?Fpt-
zW(V|srm{<Pt;L4DS;;#(GjX^5`7HH{=W#A!?+C`ScVXe%S<o9<WCs96tD)papl~f>
z!%lxU2K%B!v+HTK72sto2_y`K8mzRsrEK@dx;(9zA0Ngz`%ZNP8T3$`&2e{y^gU;a
zwE@i#Z6UdM4MX)>>(_=+PfKuxmGxwZqRilMObO(ny#i8}L}P4hyu?)t27^VP+j-3B
z)(Ig=FSkuTDo29ie01-fg;cN1^(j;B{ce;Ct_~H<-eyB)hU=fjnnoko#jrWxfByb4
z{88mM%({za4IaZUac!Vk!X?qgEwq)<9@crdAydxdA&;=-tCkVky2zH%A^z_|kMQp!
zpDV;SMD?b1&38C;T=X?UrCM$uCvb^1I;%$RH0>E4Mg>fMAp$wGdy%Hb9&bz23oYD|
zjz0K?jg9Lf8<ARU_8-qbf%5!60dt;^dpUzKV^7V_<NU53>;weePE1~4om@l>Uy(tE
zoAbYYam6102|(6#7<OV=f`T}V;^)ux6k^IAk%^^eS;txgd9d#kyn8gFii-VKQatdF
z=2uKtaRCx;BqlPC>ly~;g=%>oI6ZF2>m<r{WAE$8mIBl5ZKv|@ztp(yDS1JV%g}+b
zeJn4^#P5>|EuYP<%2q?MAfvGO*-*!fArSq28e(?KM70C~Z3TbylWfFv!Pe?+{G*)y
zW#4^z?GcKwt{EPsp~^%`HO!V9zxdodi1WWx0uQ_wr;Lcy4vbP!#&O(B%o`;;$(i2f
z!ZFbp7EO$}RlgX>kCQ$Jxv#TJu5yq8`PT@kD$r|)SP12!^O$nTlqa}2(qi_&5XA>O
zh(c8!mO7KT%PgMp4=1ZG^&>hY|Lb{v8VPz7zTt_(b6|@^Y?bpkV~y9cq#*VP;85io
zk3R>iF#C3sZ<5UJ%1lL4bP%zo)2=iaxssVX!t%?}nADu(vP_*sER&yC#w?@C%(eau
zvre>75VT0|0`%QlA9X(DxNOap4BNa=d$eZHK9(PJMY)gDy`&%ed-V^c-x5LP3x9Rj
zb!<@yY#aj7DE$%7^M)o5w?;;(I61L}zt!<JwRsQ3d-MOH(+qgq^SM-VgeFfS7X-e?
zWFR3TCh!4G%1Qc;+YsNsZ_BY}BvZua%)52OIjD-`kWzD!#KAJ|9qu0%_9BaXGJ#AE
z1_@$J-1l{B`tgtV6FVj*E;pVSyX=D@)F1FIsehzm0cx>Yxjzd^Z}nc9&X-j@Jynr$
zhJB~tU_?A(57zBm@4wJ{`VT;TWvZ$0W}5y^UBm9QR3<6ezmd#=7rH0gb()o{|7@W*
zNh3vGmx@^LjbjxzY`9-H-Y&w|0><cL?G%KD$hF&EY`+*`_up=hlt_?hU9ccno_2~F
z_>e)g$9~IYRu2G*!)?=}1@QfO<Gb`j6T06l##Z!slNL6!fBv=yiK@066UTfwkRx1A
z{j`1skDS$%jpq<y>bo(StI(AU4$I@!k&S2Mj=dc(9BwiUho3TGEAzxz_&hx!^F!m@
zR;5jq;sXB)b6U?j()RsB*G;Uk+x?+mmSm$q+Ut$yUKfWdU}0l-ZFB~ub6UpSygwO#
ze=XYi)<w(<{HR8&@a4dI62<l4?A%ujtN^2{Iu^h#mX#A%rPFCsY9isGEXbyoV;xh8
zCjqpRN<Le&4^9H<yb@PZAR!oLix+}iwyKC>8puGRhBJb3O_cwL91qf`X2SWxlCrdN
zySpb{#o5eDk7YCEqQk$I*~C-j{a<T@w0mw_yU%!9gQknB?jCUb%n(i8iZ%{aeSaI2
zvQmkDmRvSCZfbEr`2nChBzWsVoMSl$Y5~I!_j)@hC@iLap<{jugG)(If*0(aL4$IA
zHKTj$)p#1U?=SC<wy(&au<C7j;RVVeY5WfF_ED3H&1eC073*EmnT?CJUc@bEzXrA{
zi@*J9sk2gz;Wm|ttDEe<vNnLkli$MU=B!Ct_Iu(45S|6<i^aOt?x01gZ_7Gg7lX1f
zLq2~Z=26rowSIkh_PJekU&3wW4WHheFi43luQe%7e?p|ls`uPjx=Pd%b>O{4hOR_k
z8k5*B%Y9D*Kma;l2Vq_&M>#=T3#SG$|81O=J>-$VyzZU0BU1&L>0Fynp{pbPA$SGI
ztzPMc+8o>9m@i#>N-wyB{J!@sR#8Ho;g_(Fv=qFo1qvC_9tP-?R0VYeLD+D56_(db
z=B3(1B}?q7h93_3rmz~L{4D}H#5)<_wgaERuI1(5ofQY|`{Cv_zT@|+ZJpO)ns;s9
zI5yua<zMBz2lY7wiTh@X<r`0}XYA?qb$@gV9<gKPQ*B~K$ByC$3HJ@v6UPq3(a@+G
z8~0Gli+LFzmj5+ku}f6u5}K?r&HZmNp}4COp=cDwUBPIi0^f0Vh<WUc-eO&rkncP2
z7{;QdgJ`$@Yaly+xHn~IWi+-`<O<1%HoNXqvddgSlKK9g=mNfdQBlt4^Y2+Cipg}Z
z_nYNX32Z+OuKC?g%EL5xncU^!N;OZuFPrw|D|qvpxc#~Hd_D3rV*{mishb&(6prA6
zi7Q{pG?XcfHfF;K93qK=y<v%LyjC;1L_&H$Xv+W5OgTQFEgyl+>OrT$ZgnVy<&9gd
z#U|D)D?XSg`97M71~92JZ-+HOZ#a@Wbst;w;wjVl>b40*DDAeRU9#MC2I6VM8<eZO
zV1M48Zdhy3<JZyd?zUs=XEiu1Mh4C{yI&1wSpGP?^_WNS_P?FoEb*tM@bK^{>4t)Q
zQ!ti^kZn1}e!>ItwT^p%CtQU3_sa*C%l$WoUDOw59UJ~NwS;}z%RE;TesguWoH^$!
zvTKo>tQY;5xJ)9QJar!|nhDo2ij1N4ZjZfdv*r=8TTfbh7RgnAys>My=%!~*rs8zY
zDVP<-fS}v_ZCX>>TdHR|?O0C%GR02#ZhUc5evZo#_P*SIA{CD!u0r8oE3zcUk2#W0
zt-zsYKN94~%9Kou5&k{7ZJTlR9M~3~4{i`}`h)oPcYRW#q@voNEC`#sPjxk_`#tWw
zJ0f?yR9~MO@xNj@4<i4jj0jL|zobcTRBZ1Z2qbCAw)v~k`SJ!K3lX4JBp<LwCK3Ep
z*xIXk*MN<+-8DZ>>{y$Q<nD-NU2j@<7f-GI(asWD(0L}vY{-tSF4+|K1f1MHwxzgR
zV-YVP*;6uj!^KH-VK|g_UQca`8CDG*o|n{T=qi*UY4b#KX<Q61_z1CND^x;#Vr`Og
zYzyTc_YX!h{2`CN`F0iw#R?$|0%^+_;uD_ti9DW^c5_x;-BfSM|9Df+*B>tyxZbjO
zOIG-*KX_+2o5|nxlUJj(yN03~htnr;HuvvbQ*B??%zk$u75zz}tE%SZP4dDziNWto
zn-v(sVWYzRf(|fL>Kz;O?H~MB#`dD~calWZDdb4X<@_}JYpw@@2ar2ibj!7}=szwr
z;`LKajz3dr$pGr`4x;ZiGBBJZJErDPE{6k;A(5ts2q$E8vuEqAl6RxaoNb$Ky^bJ|
zUX6?KU3dZtdqzYd3IbbZzV_?3{Kp0>IU&m{RB^p6YDUVB>vtDfNz^I{|JZ_(kf$%+
zxLcFpOqH)Dqp^BZ!%;zdgr%69av>fn0g%O?jj^c~L8CF4hYWJb^2oB2%~glKl1P+z
z4A>901)3LB&QL$UN_}t#nfShX8+NqxtKYV-(;U)>Xl#RXRHJNxR+j%U>T2aXf=e%M
z;~k~(6Vc5RS^?Lrky<!SWu$Cq3afZG7V%1JjQ5olPulW{@PDxA+tM4mAd2eofh+eH
z`@~(N!ZbUJx=*b9(UK=%|1GFBK$Il!9?!pk%I-UP^-rvNb=16<N1O9~el-RKvoyd0
zg-pzfABl>+Qzi46Hxpu0cLH$gCIq5Y`05@HmRL7EVGH}HN#HbB@XgeLd~+M4h0O>y
zF9i1Z8_P+{b~L=d(&8F<cuN%$D>Fhg6{$)keX-f(y2Kv_S2DlPFubqQ1mK@`{Az9&
z0i`jo5gHOUH5!Wc9RXd^xNWgh12@*7{3F8H`J}Dwmgu6S7-52RIS<YBPa8C%FteA-
z!26*lSqLY=Lp$f)NyLEdWb-BVe8T#-Hdi04Zjt++7@_`y@o(|GemTuJmgmP47(^Wx
z$d*5p3fJQRO$DP|VB<q~m$c_+5Pl^;1L@n-$$v-eg{RW+@`*^C{P34eV%O?+;hpf2
zkFW<8DQ$g$r#am^p!Lg2;GR|^#$t<)V(FAyU!|~0h)KwA?MjB5%R}v!XG-GG`c03}
zxu`okHilT=LCwcXr@gRqML`D>$qtLCS1UpXxu=IXm1&57u3wmgy-0ya<qgPAHIRZ7
zaZ?@=#n3K-)t}{au_;soubwWwE_M(d4S~c2d754H-$|2=MvkSrf23t4?|+itL5aXN
zS+SEI`*UyHHQu9=lsyxly0@^6w0TYP{}FbUVQp<sxId>YP^3_xxTI*HSaFBqMT5J$
zyK9TPyB2qMFYW|)cZZ-s0ypP>@AsRp$+Mp%d+jwd@0xjk=ZG-T!i#ea&OfB5FX@U4
z-qFbA;5sWAB=q7E(GXW1WL<%907%dksT#gY{tFbG(9H;kFlk1k5~z|exbAw~#P@7I
zB#aL9-R7Ppl&k0X3%f-UJG%!R+Sb^h$@J+bN~!pNm?97W`3WLw+RCLW@*nhz3}$<^
z`8<%B-rU*jG;q2j(>{Jg+wXctsm9Er9?o%mrlbSsnDzeIxP_V{ZZ9MRBFz;jhdWts
z)W##Vmfz^!THxl~LkYeI{2W5C-E1<1?v_IQh(Z{!Qv47PWN5^|0!E>=!x(%)*e9VO
zR31_rbcwjnNg1Li42hoASln=_*R3}*u`D)|k6Y28(<6u93!~2QmB#boY$Uo}t=0bi
zH_-Y2Jr`<+=b;V*dWH{clExQ&36BZXEN(Ck&EN_nS$ip#wavbN+ow(z7ruL4YK(j0
zU8ByUhmd3_fd)lYqqCjI&MCaW30y9Y6$;b+>V*-XGG0RCU2pHUYr^dLH!Ws<W`(^Q
zQJity<D&NE2}Dd<i5*1pY@iWoW~3;cz4p1173wOO0jt>xs;tD5#RZg@uM!<qwAN@D
zg+>O-+zAwGFNrr1w?$2R_`7iK&K6q8q7>a>Ek-XCF^frzanquoo5*wX4pYCK-0qF1
zXZ5<QUY+krHdHPq5ndKf3&V}_{#(mXUN~A6-3gMNovm}?d5<++tS7{AJ_mtiqI>JM
zQ%(q^OLP%0)2`M~bw?kMX!uyx70Sv)KsK>B8c|`-w>#}b`vfW!f?-bG5|%a&m`o^1
z<3p#f)cOYxQrAX{WpgFEQQ=ADb=TsmstjjiXL3=cYgI_Ot&ZkO!Ys<=644#prHXuE
zOJn^zIbO(uvTTCe+;x~+If24rbsgXL_g(bKB_MfFFDdU7TEVFTLn-H{_;HK)NKc%y
zDW?hU@RZ@-J+bOqF}m@c=43k&-2${M3Cv>eP9oppD)8{+yA*Lu5ycbe<}+YzdH;8-
zd)s{3o(T^3lRNvy_GWC+*Bz1+E5We?^zAfM7(6tQChC&z@U{>M+L`#1%<*5&@b)(B
z`C3VDQv&5Q@`baq{@XDBdlWqX?}+;U{>A?<1bN`i$=MS|q@Mdf>TmUXI1IUZyuGV8
zpaE0~zX@+K=n*k7O_s6uH!NOjITFQ-n7H_&4bs^V-q7a(I$QPZoPpcmuD^x<ZPvyA
z-LbDhMrT-|mppHXx#j&WJ8y!Dp}fmHKE$2R_xYe|Qt$ecz|T{-V2HZ2yBBxrtj*_k
zQZXZrj)GCVhwvWEiH97xKhGux{&)Sa0H39t?DePmonalSVR+iG^C^FUz_0Hm$z>1~
zk8ymd)~J!seNn8n;S#btL@Af4u7&idBT|&BZMJ6HynA~3Tz$OvpZ6O}GP{*(Je73t
zgz2-i%h9QpnKo0P8yesMj4HzMz2V2#JHqCI?L?(pMuJ~s22|e$qo>D^>NiG@EH4wR
z2H8%El5%Psv9WQ&`kcH%(?gKls`78@S?j!A;(glECLht%u?ne8$Ty39@2KrMA`M0G
zB<6UnMF*Frh$h_A)=w{aDyI9Fbb7_@w42QHtS@!{$62iQpToAZ%z{hvo8SG!A`iz>
zVr*8M;=UUQ!>iy4c&=HZUYlojxxV`fdlnTJk7qU#kBJb59JuoWU=9(G9xAC=-vxrU
zy+H7(*`Y#;&aE@Ok&ldmCmYS*+I=OiV>SQSW9$(Qn{TxDvSxF=?+awKf?|f6sDAi<
z9ite&Lqye0rU_2;j`@NeGhJRou$mCz{Af>|-%TP-9`U>8y&wxDQE<eL7)YLrht!;%
zca4-YRVpl(t-U%FT3zIL6D+uH7FlE{g{tRT9;P=o;7oT={Gk=TVAO7?2U^mLuA{FQ
zqglGqEDqZRR_JYBnhT1B;exJ_v&Q4`4F<tfGpAd<o1uIo<(hz7;;x!MJD?{8WdCCM
zU3a64kFO@wu8AP6-5&Fi<P_=(p`ETtW%I)-?xTKfw0el{vrXw+O?{b-<%a$vNZJt~
zd8t1-hp<N<8}z<h^$*?3Z-V?&h|6X!AC{RM@fE}Vlbqp&83O*sz7@I4Mgds!S0V(B
zYZJmF0)JpOsNo){ubYr6H(a>N8-Q9oDLTL41L<tbe1@RL%CwzCrSji&$l|h6=aUAE
zjL+}#a@E-W%WyhxaFI>dFDgFjp_AU7LVl5NUW@?~v>k6FICT)sHZ{|S`$S3p9s!aR
zMo<HNyJo(yYqbJ=vt5YXSUrAtrK6?AH1Ge5LGefO4Kg=zTq&#ZKWo`BxaBGd)ec0b
zcmGFHaKM%XNOaa}cRK%j%xe3ufDq0q2gnY>q+ZM4&MEVl=ZF?}Ea=B}Gf*Fati1e(
zg;4#Ah;F8xhG1-Bto`NZXRb<vwbr{>v)w&L|Ef()^1hLLt>!RqCBh!ko}?Q!v1nNG
z@YWATJw9*{>S3!he8&H-8XNbE=$s%v)X)2&DcKB9G+U?56+ScX<^cJA^xI4;c@-&e
z*o2poJm&rToX@yelryX6l*m3`+yvvbG#^_<p-Rp8{_jNiR=cSdd>?t;?&Djsv9;7c
z!^a^VPwyG5<uY3Ab^>?954NQ*a$<SaxZN(u-Tc?7<}k4bcezZKsqWv4WS@s1u9IE2
z_P+R?Wg+}g5nFuq1KJ_2uNOLheD`i<ok7w6S6<%78J!stl$oDy@Rt*l1CtA{9BlE-
ziBa4A&TAU<<!#gB*8Txry_im<FSCNvJMYH@5s=_A!rw2)$KBR+$pd<IXSh)JaKuWv
zc-T>o64{|AF$a;ZZ`YUd*#MRD#k%J!T0{=7nAD{=>)fy?4KHuBY=rhJGNPl$bNvmw
zS9YGAT5jjmxdP8yiVKZ|_)*SSG=e&2ivg(xyOn_hJ@JGU;-S9w#h}F1>GsaA>-K%0
zIDPSKSzhIO<(h?$OIWu<PhWU+PW*;CL%b|B{Zi$V+z@~kvE}rvc-6+s@sG|gFRb?)
zj||Dzi5u*vPRzAiZi~}3)A(doZd^W8{Wwr8p^&1f{Sch0dchd2jF1EYBTHB6tEVY;
zN^pEO0-kWI>(%#M4mGG=<XytbwAqfht**e|<XH^uTojHX&hnor5IXfPW7^#z*Td5h
zp!VVh+OAf!@kHkvo4zk9Ui0L>{?1t;W7ks+F@>LIPkf<t+I%-_4oGLW?S2yz;Fw*g
z72Q7hW#?$RflNX>(@ivgZjP`+i8oq+C5k%0l(pW+Mit3I=p9jCdXuqH=;y;FY47!t
zPfiC+rX&7g&eqom#l4hLx4N3D&r;@3cH7K)$&5oKIchcT+upvf76gmrJ4@^xv__n?
zX2|ONkJu|w8nVt%QqB3J9@K=3Y1cA#LTSSU$l40C^NTJ07%o!*Xw|g>d-bSigV`BS
zH-aNF{1hEF_hPHlOE6Jac$lD9)i(Ji`H`SmGc+pf1Gq!xrS{XN3N-cbQe_J=2)TVN
z!a#M?`%B&Ft?f+7P1g*Rp5j}%J(FyAU0?Qn+_tNz%A090l(nZ!aiT*^=bRi%)Vr81
zbYVoUH;QTRE3tc;zMj?na=aA%rQl$8!Q*JTiel4eHj5N{aob|%Mg*oExj_<Lyxd71
zL1f#qJ$ShdN^r>9_`_Xm)xD|7c#3cfFF*}hO7;(K@n8GDjL>;>4$odaTOGWvVm8Dd
zF1N>dKA>c`_|xN-bF>@Rt|&yL@bk6C>kY!_1I|rCKW_J{0Eyb%wkg41dLn&>3+bwB
zYPw19-Mv}y%w*nlZ%+jSr&Y$sH=P5Ic=3>@L*4lBK<lyHrf9BoZeU%5^Mfp5vk!<!
z4i1nHro#hXt%~KJ<?J?x(?314VHIuEo$ipg*c(&uVsujq^Z-GQw@?GdP2|PNob}G(
zAk^aJcD<h=xYyt49X1k2QzC+H>?{w5e4o<TGz9xUms4ya4M^s8_0<R%9S*8kZ@4H&
z+-OVReDT82NvXGY9na{G%u#jNiB2HZ1ZW%GoXnqbXMZn$Nj$IOD)y)E<+Nip>k$Z7
zEA83G;Xh{grJW8l4Q7CFtYE-?1D+ntMq3mz^`Puz%(%ANo&8-CtMcA#P$<fQB#d!`
z;_kF}es^`L)`#hVq7t9~map40ddl5}3J%Gt<}ur504=u~;Aq`vD+1x1Pj(SpQh7D)
z8UwVSpf}9U<IQS7zHeG@7~l}If|0*_INf44t<IdaN9v={__+>!8e4{j6^6y(qAPf>
zUC7A80@YoSww~#Ek{@S4dt35E%9y)JoUZRTyH=@kH)%HWwEGjck@SGk4ENP-Q|(px
zWZ)uc@2{Tsdz@jI3?0y&v16`|&e}mOzr)8SL%HNM%s#Q#-y-<z2T0+CSLCWI@i8$#
z&XkAU5Pkv;-Y%klsmlYkunLWUy3RRJ@BNanF95Ez*8s%p+2QoF)cPd+PSVbiRUD*u
z-s3Ay#h*QF86@evgB<SoUYFgJT@8)+p|%sYE8TWe0#F&Xu8fA9Fu1v6$nuT&Y>5le
zfz7IHPFs)#vkO;}V~51%vJ<pT!>Q|NI>?cG2HQ^dW$tIXL-uVV+iDlkg8FIedimyO
zy7z1Z{Yk%RUoJ@MT-DGXJ#F$2x=F)Jxi4=Ra%XpeSUHC`8Dc8?#^jXBBDAVQur|+)
zbM1dyBavTtWVtM*VUFOzLX?$ur(+ONt^)MQ{bg{gG}QgeY}Zq8LT+!>PWH`_#w~z+
z&k~{X3dxO~GxU_x7Tfu<=?3RHN~?b<aI1X>_7?c~-c-S8TU6k2i`vQU8;`9p(+8nP
zw{(6VWS+)fash5}-G&aN75HK?v`UX%=MPv+{`W}{-yb7CHz(y2v_1JJZ)gQf{-U~O
z2HJ*Td0*m6bLtehr_sNxburRilzqfFn%mM6zM?ode(y@cEjAam+wf#f3~~{0_j-1;
zm{3O?Uja7>Wf9cV;SbICp^<c<dcSZx>0_(qENSpw@Z#!4Z4Zv-j<3UFjsG=OMZXv@
zAPa1lXwI8&F%lhk;qa)}r2kSfOA21!-KP)NIAnp?z^w5}K=@N742P7?%3}-GD4wH@
zeM$s%yYyau)_p*1x%_5+qZzYL%UF-3RCNQh^#f*nAG;;;sRLR_54X0KB#AM62hZ-K
zmIw=X`lstPv?e1ObDMeHNuL7Ex4-gu5hvqmivnF}3-0HPNI$IaUd^;FIn9gv*^#gl
z`hn~lkkl4q4#uWKXrK-bwy!L|Ug?+|yn<pE5QgB$l)grylq>0Xf-cs7c_ud6B!+?o
zLzn*%$!Ihk3n<p+{+``q^{~6YAH^V0+a9B9T|zUNiMl_z-oCcd^xkRPy8wILd%A!%
zw=_awX_vTi^%Di(?MK=4sIQXSSRb_2Mb|GEjhIt|WLCrE_SWTFRRx*=tv~vE2KtjS
zr1tB;T)uSKI-Hft-?DVCW6VT{s=PN!DRczwhWrC!K1Oy9jP{ituYW71!x>g@=GB<A
z-5OQGkQv<cs*@F6?-p$bwNICdXr;TIj@iTwzyaPcC0?bygmd~wmzva%;jBEFVA*$j
zkJH^V4@ZyA_MA<(C1PVuFm?RQFo+M`t__=$^R|AQD=ZVt1Lx|#1$}@%TDpw`Is?Tc
z1{Hx|f@Bh(q9B-3jWp4XbhhxGOItDx1(Qm$wL5nOv~cw2YX<>@t$gB_j5`9NVZ#8X
z-4zhj)v-5`jEun?s`oHcC(U~&ojsFOgfeZk$1I()mM3;9wKN}+g-#-=SO}E3klCAz
zm*Y3qd>!4VvN_1yn*g4VfGI^c<>C{MArEt8d2QRl@OT5^g<>0PholJ7zqKKg1dp5S
z1{dBQT@eUY^2KbdR!kU{7wYkio8GcO)A;B!S85Z0=uC{&M<AF09Yjqos<&>!Gz{n<
zOO0J5T7T*paExG(B4P{J7^%}!W44=dQ!ZVNf)`mgr|GhMQJh8`T^(R^<p%=eubld^
z|IYXIWrji{=*bgMp5Hh9-NYCpDXQY1jLR9UdD=n{m(!vD9j?h`z(&N~b^299%Ufvs
z;d=T!qAauf;E!XeIY*V2^hJ79Ypp%PDtNO<e4?(ZeFG~nQi8u@aL1!QO~42Db%J`9
z%ujQNqzqm814VXro*lt;=R2j@Iv=HUm&a)DTzGpQtFD)p;naq6s$>c$d+x)e0~Dh4
zjh#M3Kp<Va@KnCqQ<e}<a$<URQG?S@z^m%qXkfHbyR$K@P^)@(|6F$8G)M7#_rb58
znb#V3d;~RKPzUXlvwEQY2eKpKPK}gxJ^uS>qGxpig~Vx+)#=Jb?I&e#P$VBepc$IT
zVxm}g<gV!HMk~?dC~K~EMTi>BHJkv<?nFX2pkX|I65LLyFMZs0!YQV;xz;n74H*9d
zPDx5<2v_8Jc>eNDBl{O#geuMZnVt(hGZwD{wgtq(!{XM>Edo5Dr(VERgRh1^ItftX
z)V3o>5TNI)5|yx8c+Ru|8r$eBRjI}Sprq9;SzlYz%#_WrZ6BY8@LTeh=S#EH`S5lf
zvBz{Z3X*#r$Rw7_OO7og^Dl%BRcLZ$Alwws<{pZ+MIIsbWGow%i9dUa(NG~O8?19I
zFlda;#;=zuw*3?3<s&)1eGE0D6Vr`jT^!pllhmn19svXNmrur&E3yLOJy0C=VTS%j
z?`WyP+L;X@=<k874li8PAY$or^3qUjk(G-2t|yXzU9CMaJYL^`2c~^=Vz{0$+5J$+
zZW_m#7fXa~WwLu-e2Nhy=5n@i46G?rY!tY0r}oum0zybP4xMhc*5b-x5`@J{j|D5V
z53%eN25(f)r;Q{4S!{QV#hoj~oIBE~x+ceE;gDAgVy)<GqrGuXw@VKq`QTuYN?Xby
zOJvdc%H_F=#+Sx1z4G~c!#fHbP(WW*WsI%M!0d(BesLb9l+xi>j>!z62;3V3p7#!h
zYlE6fEXK=h*SQNApv35x#$`$y$xUjHvWBzX3!G9vc8muQ3=OgQH2S}UuRllKOgjXG
zMS@+PL|!mvOU)qzo>i(Je%hvYMNt^F=pHOP2Tnaw=6gSe7kumht-iRFw(k7{Sc-8x
z@sJwD84v9t9k|f(a>vc5P&t4ni$w)Lf{oP!{|0UF2o-=h>L?!;O#LEBb)it`&CyZJ
z+yyMP{#pDp3C>7XeTaK9B}QvP`uv!ituBwh+h~KRsQV6{({CfUGw&+}?s%_{I?N|r
zKK8tvBK)*ko%H`kyT3+bykH9iKiQo|mN&M~i}NgUpyfTIz_IiTX!-jB6J_^CCqc)z
zZ~FgGsIuqVL{QvXf9~beWbJmsB#)LYp6uYFPMVr^>0$AdSsqzd;9hpl`!*&g(|7#O
z^`cN?QWme9Vrl$mzUP0-_DCm!%ge={nV9c)iQQ$}#1Gf-Xfh9YoA{T0RKJKl?#($!
zW#k>HYN53%tV7Gj9K`){jZPj7BP}zsxnhXj*D`xUqV8+$FGA4tz6{S0<kWbnODyc2
ziT`HLaq2p-N1Uhm8^r%CsaQpL=u0zDyYh^$0NGdF>gnlOvAThGOF6l2xXE}brc5Ka
zD!80U`r>nBKyy~FI|l3-{Z<1^%f)9ZN7WYqIU-onpYgJv9UbIx<k<Q8YaDwL!Slfy
zYOb*&GbEcG-)pm)roa189?ur)TeSCP(sKI~2~HS~k3?x^*2<!8Gv9uR@xsmT9XBe_
zexs$J5IigfM_AO+vT)~V`?A11!%S&)g#3$(ee)oDpPRss*$nS9Zmf!Q$8D8<0iTCv
zJqzPbVipXZ3>Zjm(k-<9eEbwmyk*)c43%piFD3vfeP7kT-#8u{3M#I-+oONCbLmLN
z_e;r#&awL3!IR1uL}P=xkPkkFm8dM)*`0%$*_YKh1y~VAUq(kL5&~C-W{NyNr8kw0
zHkZfS+iH02|05UnO|Z^fo22daB~VtW%bxnMH<9NU`s9GLgO2v=56p1fTR8mzcr(^-
znK#5|tm__jaGd4P&7c<Mc-mx0tdkHHT)oWo2a9vz^=J1ZQP?Dmp&ap9zV%9*c8K`!
zQ}q^E4z6YIA0@BhEffXyXBC1;)fLekLSJXBx}3U81;qIvluP!l;=ZAgvrlAn-NjFX
znZ!Bk3oeWN>B&#&VAq#XiBY=!1*SxE-|U<aY6Ixt+BiT76oJ!a@f}djG}&S4b=1vD
zl+axnOm=~LXBBDs6f|!f{t<6?XX0t98!o?z?b&X0j4V`YA)}#rPlG!cj<ov)|2;WB
zIt`8@vO`y?w)A;|<0>p%&f!tC<5?bdwyJ6N0xB+f>8^BO7L^d)&7lL5)*AHlw@*Ci
z`2}|h^Ukd2NIWz2Sf{EeWiT_RPH1a!CY3%ADinLWQoES<>ULi%j}wdyF7qzq!Cjs2
zC?re0#xZod^X3X{_P*3%0b$*vz?od&H)`|@hU}7(kA^$v{W_X*tBsFb4K43=F^iAq
z9cc7mOQH8JLo+tLKRQIBXH92mo4|nn4M01~y+2@Hk?){fX)%qxg`(}q+(z|Kr}zHT
zkonU-i(=t@d_CK(rKRCZq!A@J_Fd<s%&+b=jPxcWkyQbi(CVIPeu<+MH<U+j&MSBC
zf2is*t|l}>VIx+r`=T#`Ti@f@S^=XzTz?7javy)$dQaD*3k6+oCGjOK48L@sjUUZL
zq$Ot**m1-^C?a5{&f(>2fa)kW*7#de{~ZgEG@6-ivtv?x%>KNy<4vJ||Ea(4NC-~5
zJ?1x|U3X*JDi!#}oMgGRpYzV|=5jG_dKIwwk^eVfk-~mTBm9e0Z>`C{?nHMVDDQ@{
z>2vVk(ONu6vU-OVtvo16rnBMrinE(#{D$zOPIXH%h2!{>w1L$17KAR*H?d_Di5-Mh
zi53U(Yf}D|^-{X^L27rdR8RR7{0LODg&6x>icEU*{uXI8mH!qHQ*iv3Q%uUaI;xu|
zpL67WR@G;m6=!{&2Va@!lF{GiX2*QaDC|D0)3tumlZD_h{_45Zolf)V2UdaSHb%}3
zaFE?hf$$9~OP#EufDMI-gQ%p2Z=QRpAsYTtN>e#vf>cJ<B4#Qd?e)*!Y_;P!t8r&T
zm&hy(hWbI0-m5-rBjajU^biJ>44mD)6LB<BVu|6#zPWRrc<bftotBqRH}{-d2`q5K
z6~b`U@*mR?qr{j6U<psY;Z^O4;Z=xa+_&j=65iL51msm`d6y~h+6i~8YL;p!JC@|!
zIsR?wMFg$<m!VEr!|@u9lJ<v#OdR}Y7;vQ->*V=8#wm7}^=eQe^&P~J4d6;FTBU5k
z%$o@62F$uK7Ah`Rx2T&??IN<9{9Tk~UWK_EUmHtpnreQNGybC&Q-@|X9bPz6m~;X=
z=Jld~1^H3_y)1Mv<9v)`ER2%XVw~NH_+9Wb|4Ul3?L1Pg`6J2GqMV%ePRzSkL>d-6
z92_w?4+$Q$W9a6h{IGqWj*GkJLKSVuw==#W+$D>iqdhl$YV0N~BR;Y5=*@V4E*t&w
zYO`<O7bWN~$j>U!Do)_PYNKxm+p8deBCpGJ53SgCH4xlH=C4W^pz+I=J_wqeWqlfF
zP)@U?i;lDQK@~^fG;{LPyWYPT+Hpb}KEMeQNga8Z7bIW(qvMU+5){u5uJyV5aR#Q)
zjWr2a4vEFaw&2@BmT3M&$wH0}h(S{J=_c(%*P&j|23vHrv(O22O58D3JDFcnzGG-E
z)#<=uP`fl#39w|-^v!<aW>lgBQ3!0hha38WJXSM$shq#s@vz#4#VoE_==Mr=sDucW
zNw~=2M#%DfJ1*D(IP8xbbvPb=&5z*fXrT@qVjLV>wIA{@G1ayl!m`8h(1YrC{IFKW
z=O9bfW%+(2=H8Bmk__cCJQI$D&9N1%S-F_o;&LD>=}IYJ8mN<uZpjCSqERZ^Hj3Bv
znGO^s2#N2MR5teI8!|s5Y*8KaRN$VCR?;eHV1pxh&p52}Q1jz^EG3x2Xu8$1h6{~n
zq>HO<qfjssocSO(kST4gv!@gbfo`wge@cGT?MoIz%R_M`)Q#z>naJ*{$~^g_uT?l(
zW}>4b`;YbmmXrQWz%e5QYi?LQ21ABQPxk0PqFa!(1#Z4{cW_Hyp3YUXbNHKQ5a{ir
zQ-jN;WRI6^Z+nzR3*A~hsTd<HQMb3Jp-<0U!(c+DI?1fo@DQC9;?c@TcT(-PUL$bB
zmtpci4H2$pxy^xijtKmr(bU)?JnXRfEh-bxOS(?0$dMT1Vp^i!;kUQb{l?ZRs!WN{
zj-Q^s0;U(6Es~?w8V(;vqHAg1jFHd-8j$s5ZwM<KY7HZY%B5GVE0>4#R{V9mc$2rz
zi*}C2vo%Qu2Sq;v2irsZ{>erTlKbFgO^NAnedhkWZ4>{2n4`j#i~~8W)JcV-9VdWU
zLCZ~@GCMA{<fBEO-{p7<xwaWNdthuV!u#>MRd^lBDHI2RH(`G!diIj;?c!GUl0V;v
zr@oooPU1vvj)#-7rHX}YhULR&fZvvfWu2>gv?@Nunm@KKf5odb!eGx2PP>DjDz(MJ
zzf2GQL@?2Zi;IE?ciNpsy!I#G$3$*UV_o5=oe`zER9tPw|4gef?qu*Xxe~lsXG;zz
zumqMj6AP1L+hV^X14gf^weA8!n|p*3Khs4}#G2YzIqJ_csxqoe+<^#pNr-L)CpCGA
z4H<~)W}4*W?$6f8T8`C@mdhEVOYm<=H&V}PMNh|#Zx=C1zVrqSxe?4alB$%sP*JK-
z%Ru7F@GpsVsdiAr$48Mi3Ppj-xT#8U<?3B{qT1U7?4=9cLrl7l+iyTjwX0j?&qk6T
zQzCwSn>pRyJtf~kk;|(zmfhkL5U$A*)fRfp;$=EQlOwMp$>2l&h&C76;#$>(4F!yr
zRrV)*4WPs9<oo%J@;5yl^rM1Pyjs#`xdo!>xWwxR@+$qSsh=wEFxA}oqnQ;}HoCf)
zLR<V-ehsK(rc52{eRe>|k|4bP0)FrhrNifkUEvYTH{&Ch((-$G(F7ctgolmg-Ja%z
z!r#QkbU^47@5dQ07*YC)3IEbS>7JMWF19@Oz)oIu6(34RiO-EvouYQk4{6Pzu2xF3
z2nsE?o!r}JaD3in@|2V5$B860G>49`w^lVGi2b=^3TyEXPx#{qViK(E@{I_kJL31r
zx+|Sgm@4H+pka1l#F(Rl|9Ue=LJ!7(=XDYKMW%H;*5h+Bjy-fY;Q}U?T|fXiA~;9T
zZ0e8DTDw~ewQTxSg$C=+&d$+tJrE8_#L;@bbJ(XsW6|~W8cRL))JK~EA?gW?Ocdju
z#bIzc+y}GWb!U5bpo2glM!l|aIGU?CYq3H@DdU#gVdn!J^0OG3ym?*ESrU^d_L?Hd
zbd2hIXyDct<@P0Ps9*3OBnJqD?SeC<@sy*^TG_0FxR!DxEx`;JWAJd_hky5L7GoBo
zi(Xq+iEe`{4a+y>c3Iw}@LHnC9y$*6PWy=JA$7sh_>ub_o33h5q1u_zaK~>I3-ki>
z>rg*UBAPec4-{IPP)qxEeA~Z5ykgxP(~J>(g_PNrll@{cbL|@*>CNp*tJP#{wpzx$
zCuu3$&^sU)vw32?AyyJIsH>5?LlQ`s`O5I*+!ysmGFOj3Hf$<uKL5%paJrPekn>;w
z-iBFgvSnPhPx!P>KE3_&(vpa)HV~8?2|GFj>spT|LZMW|XIb6B9<zun_lq}GHE?p@
zRWaBBZ1H+0Zzne=a~+6`eYDZp&Jn?9v%*FV%9bfpF2(1xC62&jI@s<D>0SmB@^^aF
zJxd6bOb17RNQ8$!xu-_aAI(Ps-1y0_XB1Bw0i~v4Y`dCX6e&w5zCkyy9`7oQl~}j`
zYm(gQ4^ytz&7#++i=~i2=W)BJAiy&kik>&6#y+eLbwBE=h1>4sG?A>_90MnymV1W1
zXVf-X&mUfz)+TELr}|UY?RPH+a~zc*=z)-=2<$aqRwJw8ujHzs^^?DrF?$NCR~*K>
z@h!4RfE*ya1B`D{_0|9-vk8m%YOBFeuc#%SQnK!QtD#7%jgB0i$nS5URQ4J^B~3h|
zDmA8inG*OJO*!i>Vge^dOjN#5H!yRFJ+S0sV^aNZN&#E}SPhMZSB23}xW$hETiED?
zZ=pv>jED37*CubB)JG8#IY#_mw=qU}7CrI2ir>zsH&i2)%yupdKeuJqlu_V^{<p`o
zjf;RX#toB_>k^D1$MEet#x54+b1ptU?VBWJTfxgVfpzGEaN`^NlkgsZ^45PlBmqy0
z?WNE-COww2VurDYAtpr*6}~cF)pGG;LyW1816|*Zjj?^ZH?JDjCSOU<DxbgpbZ+MH
zvf#kr`JXKI?3Fhj-%Ax--XT`R?y7Cd)12kpQdxCqvbOnPstwzbB{J^w%o>0lQQCyp
zpjK<jbE&m(0^xZzp^*UWRteq++31?DE%1dv4fe-TPhnBH-4mIAW8-_BoW_$)%lIMc
z18Y^-?7oHi`pXA)E%4vSa@rLbi(1ThuenN<xvIs(%xhqc)rBb{1-e#mbj8f*-jZSc
zm^;JvwM+?#;pPWRajlWEpYB!KmPVy-{d1*CBRPVC0Pm}RA)}3Q`ti?I;0mFAjYsaf
zZh!zJjvmhzvRnAYTK$RjxO0b%;9NBV4gKUiEx<kEQ~i-N&_v-G313XLaXQH}qHHG&
zy0XffCEJ?Ynf7A)viWz_S?Lk3BihcKhI$hFPXG~4h}r}1%XBZjP{;(`9;0uuy7tE7
zNILn0ff#_@BtG`wRG_Fjza;Ka)biHWQ)9X4AkWV@Dxe0;=vcRz-NdvaS9ONVQ1|Sg
zL;vB!8c_)4n%wB#t6Y2`=eAutwd#%f6Jv(7YkkyKKDNcmGqsbMYqF3eDEe&qFIIW0
z5?_l;&{U{<M|=^5w58v%@`iwd7dDG-jlR%Ag@y=x$mzAlZgUfPUOaIlhL~Fz4kgob
z4!y*hLyJg9Pz;Dp*Kl~oZ-X@b$+iIi08uiX7Jw($VRxyMB8Ewc1XGBwJ|FYJ-rfzm
z;YD4(c6VH`#u(8x3~0mUwf<LP6TJwuE?lLo?cNX*pS8%^e(co6HUBHC&*>^ofDU6!
z8R#cPVdi?#n^^rp%t^WEXW5uGkYT}#+R+$``p_!@h8G3p=j~(Avf!{G9Lxh{Y(1>=
zrSCzEO+z@A$`ef-cdMYvj1pn-Is}`S{B6z0!$Cxd-|mUUFIO&WOZ-raNZ<iP*%9|F
zUE200BSzwqTzM0pkWi}4nMu%56|h#ub9du(@#{`4)<MkB>+Ynm)q%}+E%oLQY_*9=
zLqjkp#ru4JKD(wO9!)Iid^_f2b0-eEjd6=B+xiDrj#0Mx*wprnm{QFetr}?Daf}Eg
zcspU?!~pNTP7*W_)_ue<`VtH`5&m98c!#Q*zkVMu_mfoYCXaTQ=Y&i|0A2qAnAD=<
zhyLEOh=S*$`=O_dnBVhOe>|1BD)ueVv7La+{%c?GCoctbu|d1>Qt5Ss0q)Ln&R{M&
zY7B~iGUKhQ5W)Id5EVzvsZ{m6+ILil?X($+p7KqeXOp;bS$tZ?B0&G)G4)Y!u~7Bc
zF4fDroR61BPObtxJUmH%0>gBezTDtC925+2i;kqDp;J7pfgPHn^W61>c=8uCskl}N
zmE-yE$rt>rDs{1%cMNhQM{w-om_0@d)YAi%{|0I_T7SJC-qhF^HD((I`Op{YUtR4j
zv>Bjrr-cNGoJtlKQQY2I^F(8qtyc4gMMq*eo+b)KFyYpHE9x_N(+X|r&4_ila|nN;
zQH+DQk(BYB7%3ehWnNMj$XaE&G+7&lwr&q<1#9NX@#DQw5>zLYeSUmKr;5=dX5Kia
z$>0ebaRTeR6vWlkiz=V?rFdK_RgQi&)m;(Vxl@~*ycEAAa#0uj8&Po?wY|2iGHxSJ
z@J5zlo;38g|0zk5MJC#5%%Kx&t%M^BnFN(NSAnw^Rn+0cgIzV+rhg7JdR+rSn}NL`
z6unwmX#I_dWB(TC^g?{^_7cp|o~-oaI%B#{0HhhU6S4MCqPZ)fngfu4(dRH9-^y(?
z3j+D3F#HIxUnk`44!&4ePv-^QleMNB6YzUBh<D8vNahbbmJhq9FzTeTn4rK>E^{+d
zUs1|nd|vmF@cD7beu|!D6@A!9i^c^%ZzTa$%HCIB5sK^ms<ETK#nNn2vRx0oc!-^?
z{qxp?cWf;iKZjnCuddyb>bQ{l^T3{_W{NaJ^!LYnV1w1{Fa0-NYu&lP^fbY(8w!b1
zEOX$+U0CDhuWuom2M#j@l2x&r;=-AWBkoy`V%&}G7@o+SQcFq847A;i`0Yf2Qx39U
zk#K$JFy@iV5}$(8ic=IoDM87rOjj-g<K7D2@I0vPsLIsDNL|+_QdeHt#?-P0Gtd=)
zjaf_GMxTs1Uvb<sj9);!Z)Gaqd~ZI<^%h};{j6E}B}_txbw;^^g099_?yL=QH>CmR
z5o}rl^j~df@x&<MX{MGp@v*>3@7!e>CN@FD1eWwnhpYx$BgM7>raIQhpDRO=@b0kC
zH%!XddpD9dMDF>ow|3LTM7A%NWCiP-2(qh<fA)bk$5SOJ$1k#$xF3|(l+d#}N6tm)
zpbqz{0wr36v(f@Z2J0{LYl6+mVY_Nro)`bLU!deppBCge+t!z<T1dI~88<#DG*slx
zy<><@^S<OwX`olF`v}S1KAM-9ufouuI59G?xfYq35*FrmKEUO~U_2b+UZquP$5(Z{
zng=47$B*R<zURbzU;^%-jEe0&Uv`_pYxqn7pLB(MafNO;aYFQ^S~M7qpy5@nvr?Io
zJ@-v%XtYq|_*D?-IX78`IsUx=wQ`jWaWgYfmS7~)<avKZTF?@qb0p!Yeyk;}0A)WY
zly1&a+y6X+aq7O_Gjq)?aSX_j&^18MBJdc5y=VvdD#0NIg#5kEpxkcG6&O~ndn272
zDus_Qxn{w@HG?A8#<bjRW<YSZp3(5HSF|Sw<empcr$+^R&o`Mb;PZ-zImt@x4wJ*N
z-wa$G_UvHWi*1>eYi00}P)9~+JA@P7r~&E5MTaw?Nlp6zT4_Ia2*<Na#6&Z}9WVK;
zmViGkBdPx#vH876w?UfezxW&etCWgwcjC9Pv_b9~aC6pgN?sftnjMLZN=VyJVhB5z
zi6olN;Q7>LV)?)qnbZ7UuRf?m{qRcPS#+c}B73>Ae}GrAO-I&}%g`O`z&py%`%Oi0
z?`IT+K;*D{<FyRsAtS<W?CTOKQ8cS6N*yrfFuzI8Lmcf$auiyujQ{=j7zQBL*h<3m
z4E9hxnKuY%^bbpqQ)LVt4HA76ew(*-vPA6CZgpH4hsKhL&?uM09<Y*PV&=9Umtt@y
zfm*K{<uaQm%?CXX@lUJxcdzR<=Bj1`QHA*yC-tgy)aW=me<g}d{NUZm)AcsOA$mni
z2tls4jFR*;WVlHt%@;nu_SWX2KsB2n7m3y^L5SaQ##enBO=qX`dbn^2dI8Qww_64!
zZ92v%+bzy(7fPZb<)^wi;a&WhkuV93a+lkfVYgVXBXF^5Hk~+jQkLBRI=PeiU0FV}
z50@yabPl5c^(p9;!c4Jy_RyV+-VT<*!nyYIFR$<*&RjU1pZ^cIBDZl5ob?#`e%W3Y
zxe5F0;+o?CGrih-<VL*L33a0J#<P#OESoRtJJf-m)uZ30HiVXJ5?hg{!F=>=2U_KD
zgfW=)r%*1kS10orQnY_FL7+R9gA*&eJkK}o&fa8=-x>~rPl>Ch%j{KL*S*G{!e(2q
zlM_9>-mF&|PWsNdkfu)}+VJda42BokY*xd-g3pnzn-5z@vWtbB{dKt_+@GIJtDAPo
zvoT?#W*?_z%vZxXa(v_tC$o;`YO#5%1RZsrFYT8MJxJq1@3;*KI9h-)+Pk~eB3j>_
zJIjAOxK4YG3#&$+_w@`-epPuzcpqX9O;ajKuri&hRs!;PFJzC5#qc0?FR`LM+M<MI
zj7f_!cgaepyyQ$5-Km{*kW2<q1!%bLwc=7dU7!n`vieV5IiX#$pYPvXzkJxd*GoQn
z3^Uby038YV)}Io~F%ZgR*eX$_w0kR6RyCYYI-jhiESJZ$4i^MD=&2R2o9UP@-m@-L
zwnr8pT1k_>R?7QiMHiGRnj7ySMCwA3pdZO(CJv1xYM(=bosZ^zn{I;1Y8%`Zs{5-K
zQWCMTvS>vt37yY`mlh_J&+m{?J=qH-a)Q`M=duwtIrl?eooY-*e^t{_<WRm+N@k}=
zlq1b{YGE%tdCM%$q?vC#ur}S>_HgP1U-3yQqLC6DEp7AjsM(B`5FkBT-;285I*!if
zJun?j#5@+c(sdnOQ(>Sq<!dM$9;m&U(masgDOEQ-KU`L~meIV-m-ErGRN?+3Z<Kxg
zNe%U1dd-GVIIaB#j<7Wctd{S;D_1VPMhRn2yF1h2z_|<$Sn9T5C|9dCz5Jb3z{?-k
z7_*OD+mA(OtYTA#M?l@r>t$w%aAvZ`^o)$mJ=v0DJKJU<DS0g7C<->YU*Ac*`R&;F
zt=4hH`C6HgNnE>QfoJo>XlIc@U+~Jq&tkbO#~_|u?*X+6^&YRw&f-?mvgXw=13ZEp
ze)Jv7E1e5OJ!AVDM>wG|J1&Y<zSBjb_r7|kYZ8><A=rElB#`BAnCQh4n2f|DCj|~x
zXs$FW?edL3-*J-=8sp(~@KRI~y}j*%o+H~Kra!-<Z8*;YJ~c_t$tc86SsHQI)nt9p
zE|QBgkXf0Er)KA<zwB2haNlk5+sEu`W!bsxIJNt2NypUOw+VW5_DS`!;k1}wepzcq
z=0u6nS5D}tT0(Z0dVZ&J<avgVfZb%+(HNQ+CFgJiHFxG1ifH_cZSR(Xb``-=>!@m_
zHk?5LDH2pmekhX9-+r-Q>%kBcji1nquUMfkBE=|j!t^7cN2~6LhcR%GUphUsGNsMD
zbrtEwu-3RJIQn_TlB;zYIsY^=^?v=0TO|-ps7j3|kWe*C1)}d!Q=8c;=RezIrkG|-
zLSg=(2X}q}iR%_q`+V~jy~yF5QuO)ppjXr4#cj*JB6K-}tjv(8+FCZ{uqYW$9Y*!K
z<~SOWIdm^GKdgNlz{_|4Q+lufIdP&VA>*N@82l5Zex=Ee)W+9$awSZ!tx9AwMv(Gh
z?z~|ba|};K(V>^m|NUv3lZB~O@N7IeT^HH>niHE#XYSj5-?ev*DJO!fugDm}zZEZq
zNRqeUw3SjEPCD3d;sS^!#SJ%uk!f2{8XBwWVF?-NG5T^J7AN$j!>2?2#)MW*b!GH#
z45LzoC6F2IVVd%gbQDML?*S@m)@iq(x@;AX1h<oOs`Mh*JckY=qMj|$m02U$9I5jJ
zdNVt4kjejsEQ<<<?TnZ}R{?ePdLUKf=ky#wkXVHHIX-L_@!copl_AHtxNTw0jS39d
zsn1|m#%n*S0dpx1x%MKvn~+D9@<aYTpk_e)Gp^0FYr)-vx8&-%a9f2q2+NO&0Dv8`
zJQh$Adf2}@PKkWG5Y6Dq+SO%x>zUsa^LrwX1I(fy6-CZ6=x;YeDQuQ0&l>NL=hB!^
znkbxchwODPy7Rnqc}R907{R9+2mG<e{27mwI=F*`>5bAI_S~tw@zHO-NYJuWL+l!!
zYL3F)5G3O%!*HuihjBC;Eei<{!psIIvNz72ENEhGnhG?+*jAz!NEJOYiqI&l*3>8k
zSyMthw3N87-eE5WUBlF59o7W<N=m!0lp`VINjx_u6MR2EIqobP5Z{$cH<z_i&3+Az
z%8=}=5*a?I{8&xb$N9^0)>7PWqr+oG3t|5x|BvdBV*QKD$=r0P`_2eQ=SW1&EGhxZ
z<;Uy|-I;8opE@l9Ss6(~ebfgX(=u1Ng^}u>9~w;pxP1tMePNjST^T}Iq<ZnZg%}xT
zXw)5BKsLs>IO%Tmg2NH(3X+X$oHtL-HF<fP%d8s$x83vYlNX3_szcm@F5MD-g>a<1
zyQg`;pOk70&r^QS`LfY3#|`Q8XXE$t^(D)W$*z}+fJ1}QwVT_&lsxxZg+ZPCM-a*Q
z%<*2_2~#GNA~wVOrrH7@72HkL#Q+Q4+z9#XAKuQj;};L?03Yp$T&)Wl#Gstd33S53
z&u`9w!%Dp7YUQNt0@i;UaC+PkK43X`0QH)y<pxejT8nt@ip}sh3k8h^(f=H})i<Wi
zRt69$)}J>!pF?KtCJQtxv)L>+)5fritqujjp9=emqk{DLO_gU|GZSm1r9%{RM?;iL
zb&{eUvTK~&jTk1XpBZ-st1#y(rz0$Oy9y7A1uZP-&(|ZK=B?!O6`3vuKk{pD=I}I9
zPA=J%t~v-{HZRoa-ys*>W&Le%>Hh9^LNgiEMVth0jwl$T_v7auNo1#^bq2e88)1AR
zYRL1+k0$Q+P1J3)VlkTLJAs=;yskQ4*4KM4>=_ZVK@&;bvSY~+#%(mx_BEedL=wVv
zf=v6C5ds?Pl*`p3*oQD`OviM^KLPSwbKHbNigN_h1~_i7uPOhSD>!2S@`JP1MKWev
zpDD$?XCtfq_{hm>S0p?Fh9(bgf}>K~H%F(VoYXn(uuvz(ElO$Us#DU=y{i9C$g-5c
zWGZjHTIqLRC;1;rbt*p~lA!{d00x&;=fq3RK~^#6l+y^T7ehCZn#(Z_uNyN}v)2>;
z(`#uQVOv~+9i5q{gl|B!qjQH$0msbuNa!^WO9VDH))+be+%|J4)GC9zwA}rvgF0$g
zom1zr{3eMCTM4gje|BugW&Ls<D9IWhd<}7YvK9oPsnDizhaKD>?Bo4FF@S6cl$Jj3
zss+BVgdrt=Bn5Q!W7wq2H(FRten4K9U5Yya1U4yWoT>*r#p;GS_KNExf&}BKWuH(m
z)#P9QRx@em!Bz4Yy+7jp*wOFbcMO=jVmTl*dS^MB$!Gkak`?X8;iK~X6>B@cfz^N=
zOPK~2+0n9J89g$uOV<?=P{Llih5O&6X!2#_<_;z@thx;c!WBB)9VR4nDyJ($&rdIy
zEjgh1P4KZScgwupFFlReM2CM)@cK#<IDcVi`bhLWBy6SC62rPIBUM66DKvDS&>!O*
zu#2uuqSg$*4@PX`%5DdD9;<TmPBYhv5-Cl$Zvx=;O&OY{3wfii=X#q9oLd@s;6K}B
zqjfT0{s4e$@^P2H{25Z&Jh1X5qIQNH5}-{c8j)C4$?6UL1MyA9*hL^hrrkmJU>}{F
zC3Aph^ogvhU#EBroy(bYUvDWDJ8D3%OtIwb2^W1gOn34V=LYVYF&x#050fCt6+UJ&
z9^dIHNYkP`+yB;MO6K@{0NQhX{1=U6A!T`U&vd-0-MGH$@TqZk&Er0kA>+dSc1f}>
zk@lkPltIYu08*IMaD30M!{av?YUObxPbWy$Y=@b92XiI;5cH=>Il7jsWXXcQy=mgG
z_b8eeWnr6a!Nhw{DO)hcbfV%nAN^|j2zGk{RZ#kTJ@$T5a&0~5OuaI(pk2pco~|CI
zW*0}+iVKC+68Rv&{pU;l*LPz+eS6F{eohP~?d<5?#7QGZohhrFa`xYhgvtt=3>=m|
ze!_hs^bKJ0?dZ>BcvgSAvF~6|&0g=8ok7`Tb-fz$e%v>Gx=b4i1r#gs8RAOc15B2J
zDdq^d(tqoW?cg|NfS)c*{xXKKy7B~x0P9BUIczMw|Aszp&Qy9TX*xeezoW$>W#>oC
zN@C7xyD?duY&c>GI)N3(_ha>+FDZ||x=>G-7hTt!$RmEb7^|pu{BC-neQ<v!d%=WP
zYdByXPBl%zmvD&TA3B4`M}z_3!((v{V*+aL0%^z6(_oVEe88x(<RXb`U-!<h+Tw-)
z-Q5Uuz1j1K$%d-w3~}t|T|j$|-NNH{hhzMrSH7g@Rm6I)a~ad%MYESZp%<QA)}s5j
zNbklrg?tk=&8`PWiAiCA8rjjcO0<oZbn?>#w8Y%j)sC-6qx`oN!MlcuR$;MX`0>rG
zufa4&<g~$BxSV9Pn&+R2f~K{7i@mpofC}^sw8S1aTg!6MwGO-r8_QkV!IPaFJj~dc
zo=yo+mO_wz36v>bF+&A;%$GZpH?+}frp!e*xk_+opB;60t%$$tUfo7q<I@Whtqh@}
zxE^pkJK)vnki}_05%-pUJh}(=-J^3Z2rfWi%iE|-)X=G+?T_ZZRL`TeqC9uTkmHcW
zM1f>xNcxevqw1H~;z{WI&KKOtDkjss+9&ej)Xwp&JRrmxlq6zD>_5B9s@@dHv;Uzg
zkJsp=QYCsVA#iA%33pWS$O;Aiz`VwDEY*|AJSAcQRzM6XJ6agQO_9<k(4dU)@(R^e
zR?WNgk)dVpFsH|a_U*w<1Wp3Kq0e5Y|F}(TWIkKa6z3o~dar9D-+eXc{Rs@*Ii96q
zF$Vw10)jI!bu!aN3#GnWO@ft=+G7(#JZn6)z5r6ZTL;gze)kFMAHcgb1d<K<Lh8*=
z<XMpK6vjr&V1PZn#qrGdcHNYFBW1nsMpAfG5&uQTOD@pu(>n9il+hUi{*HOH*!ZAY
z!Tlp~K<*%O@)Hf;gh2mb|Mk}Pd%3fxBw8iY&%{sx?u1l_qbTE%GsnwEhL2=U?gfA3
zUK=7a+T&TM$_ztOqIFm}Qzz5`AGu|cV(78v6DvON*B4>sRiy}hO<Q}8ly?$$v_w80
z&Y2uU@N#fvBKf;}UY^S8M*b`pzP+8WFP7;|;JnrjsNOH9&S!fYR8tL!&HZce$D|q(
zNhpv=t7JBN-nW<TXLx;U>553oA4cZGVYXg4o=z|{t8W{)GMvK{6o?PEmB}i|MMTY7
z!3XK%`ecM*bW4kty_DP`j?;!KayX$7Q10q2f77Gv&7`N`M~pIAYnk>|<_cc=&SY>;
zrml2A{v#qG-ugG@T07)(_gPgE>&)KQAf3?avb9AWpyOQO**@({&9_fE$-lHOarTbd
z6hsG;lU9;@G;cM^ZLl?cuW2VV8;YH){>k&6k>}|nQPpvv#&mrB7=rOS8W3qRoH-sY
z;uCt_aZ70JPAx0(3?{shTt)ZZDEs%M&|6uQ>yuyV0K7pyZMB9RNKxQ)BjrE;xhg#k
zTVb2)T_<+o>ECYw-V5JsB%6G`=5rJu+^leiMkKxLmube|4OrV9G25CzWB0&}Sk~~_
zbR9E#?XU{nX0g1@M&gZczA>3CkjuZTC4yq6^YkrGFj6>F{HsBeUefNR#Uc96?n}v9
z3(qU!DV_1gC(c*&7N5aQ7A&54&O3sf)l&N6F<3v;bP~gtdSQ5|4;{Oe*_xC>jWb`P
z6E^<F%%C%f!0hGd#u0NdIjz0<o$*pPevx=AsOIavUvl)N-ThWiQ*{H|t5iwTb+6f4
zQwYm3V%_$(9A21{;n*)r`r4*En_RCs^OkVl=sxG4*~#>~eucpn0E&fl4Q4W497|F&
zMGSr=rsO|u4_FrkRv?6Gm~+lmAi;aZ*_+~j7A8*r-oI9A#6R<TuHdrp(O~B+()0vt
zpgy)-{`7ys-IMP$iY&jL+2yGPLra(SSe}G@aD7OHX4W?Ao-e2-U0|tKpdp9jh$=S0
z){MravE4@xkRzXZ&qxCaZR0-c{UYz^Qp`D8sS1kK>45XNQ%15)(Ra^B{i4WpP{w_Z
zy}r6v$Ld7itCLkP5yKymY^?@!_TL1>9B>n3-7;|Z&kNYPMT5Y5qGBJBUxQ~AXy3Av
z*rYFKgf#wP<P#7G;Mpa0&^HjYt+<d_EJQqre2Yv9XmhAEw&T$-Wj(SK=qgM19|X7<
z3PX)v29?diUX?WWx}++Lw2&RoOyq;EDIe>AX_pMUGJ{M|s6FT46S|4Wr6c3mGv-8{
zTJA&8>=*fp+i6`CRnoCzRwoOXkc(xEt`z1NVtP!=$O`woxx5paQOX27KGS%TjDedr
zBp*x0P?DKm(_|#|+W0Dt(xZY81qN!1W7y)ozDVc9_3jF%PE#Vl!cE9e>v$WcN3HU;
zYFQFB{6YsYrD<mEnb!v&$W6g)UBp+Y^MjfC$BWxv(2sh4xg<csycqAb5Cy(vgQ?y`
z2#aXNf;6OuPjTe5{|^A(Kq0@pmCPl}bG3h24wPQYh$d;cxU?&Ehgvy$b~@u47RO$`
z8&wNtWZ8tic-EW7$mUKXPwApnzD9Jvu$SAPXXo44A>90_02K?2VeXOk)XN|;tQwD>
z?IAON98ckIH}g%A160gCg0>5PAZ*hhBJ+*mo2Ge)h>CrqKJ>5h8CO2SckkY1>(;H>
zt9>{AeNZ1?wrkh!f9*5wh8u4DJy3k^o!j)sjW@#|CF7^}Y$i>Ks-$vp%dqQvI1!N=
zpRh>YE0uvm`yNuE(tDiUFr9<vAwFYHIyR|*r{zBDwqK`Ojj}{uJIDn~PD<zfA7+gI
zBwiuoj>qg?f05F)%D%Ef1NKL(S@bKmRPPgD^`vaIVw_*Mj^OYZ?pkbAZqkhG`XF{3
z5Ym+!u7{_jSh`5&|GJfEdvfYDt534HOB}iGNtxnV2)S^KJH9z7mMMU<`_{4ld=SYB
zmZV9kLfkvCm8a<|@qVh8v%iVS`14z*xe}9(5_x^uzx6C7E0^H@@x55H79!&03DQ<7
zPl{(ZSh#XC@je-7(zG^DPi*6fmZm%t5!YBWV>uz7smW2i8a0Zi=Gy)ZY(0CAlo`v=
zsAhgd;Vhc&ic?JDlt|6#y<13Iq6#VP_nEhBCnc&kBzFo`sSYmg*oarj8e~btq2iz2
z<iNF9A)V^uR~skS&fw@JJ(kRQ=-8+n9{M=;uUp7vOM0>g`jMk_Dbg7quzKNg9O(+;
z7w^S~)rw+za-Bu1w_x?nNaH58Fa@7r^2XbI(xw5<Z!+UJvUxALDt}C%rZOwX<verM
z3i#dJ#o}L25#pbMD%BeCer8YZA6~?Uy-#_bEIn<S)+L2c6zi8R!>2%PKFa%Y?c(s;
z$2k2wEoBR;8GRwbo7WRiqAt0TAm!bFPpKLtd~bSs$4-)!E>8weJuyM2S+eCQ4pTY`
z=L+QH$-6Y^T!&pV=JP;p3TCxnOp}jRwaaQBm@2={{gVI1h-e|_I;`<=<oc))1#B02
z5Kxi=8I+FgZ2xr~d8*eTozFAYtyxL%LmMfImZ3qB#2**OadgWea#SggLE6c6TP6x;
z*RyxqHA;M(ldUrr^H6)Mkd(qgpo?U3ew-V9^)!oi9wvFtBGj!=jPUR<c`p9mO@9>B
zHTCh{-!pUQ#$OFpf3N#;yWxf#?=IYA{9lYeO2*%Hyh6s`Q6whgZn*Kb@lWi)>4qC_
zxZ%d%i?>O}Urr~w@sHx)GU)yr<W#eTZW7~$8*aGah8u4D8{nQ9f6I82nel=J3$kwA
zI#Q%a;r!t59ffKm>b2^@g9oWlp~7$Og!WHE`O@CMe_!*%R4WR&Ujw`GwxFJEPfyQ3
zG>h$?8F#}CH{AGl;%&~1yUF-l#+#7wB1MX5+Zn4$ewWFkY9p#Vw{PFpTtMDM!$Hl8
zt4$)5Y{`-(bCYp5-WpWDnIS_4{QUg1_U0zzZn)uw8~^{pO~(JlcoQ<Ne8zY0-u+_d
zw09lKXI#yUzpHrk=#jRLtXiYi4L9C4+&<%OxZ#Ey|NrA{l5w}s_&b7s%M7j}2<rDP
zBVm17H{5W;4L96y!;N<xZZhtM8*aGah8u3U;f5Rk5Zq+^9Yx5^Q#^=BSU)(9+t==4
zwMB9L+I?+zz;^?2TsnAwUAuR&W9JUe-g9k3{vWV&@5)tT5({p5&h;B1L_WU5<vag*
zpC$4Uw|_UiH%ENL15O^jD3T_?%H;#cc^)6n%~NN2_Le639nm4|+i{3!*ZE602)=rj
z-8*-(Yu8TE+isp)9NfJgM11TMPM^N@oAn#<;06z#SzKqYLS4IZ_nGVL%@OnX9*6eq
z5;=CUefxH9hDN%s{4Zb+W8cp0>^*he6#&nI&$52zI!;^<b%i+b{Khq2FH+>gTig$O
zSzBs*?aMbVz0k>{o9DRm+;vlY7*{Xd<kHy-g#DL#w1+<u9X)rQ{qGPJa+iamH|1)g
zzMps-uPohg!womw_`d@;8Gk1cMb{#QsXJnq>-;8PHSbICqXT@>{6}7_Ve*fAi=3iO
zxfVjQg1LM9I>W#3!16QUu4{?$jDd|>axL-qo<W;v(R>^+*ocTsM7~_Oe{?2a4O-_q
z`}4T7Z7fAf<YRpTufO#RdCC-H@r5wr!=Jy@<zI{?W7@Fv$RqBbSi$@~cU++g&l%LD
zHOnsqbL-kwu3o=|F8&5zH0#Yn3_O1l;fnVv_D^ch#4RDNGbfHO8p`H-V75jQ7WKzV
zvVT%X`p(?To!d9LbNM&}ySCxbgG80|U#!06lZSFUv9%F@hqlc>WyjT<tY7p4-%mdU
z(dYT}hoM+J9n2f~HEXZLh^2Lh;R8BTy-Z=YJ#yWvA&3@5%QAlVZP&R#XJN=EZP@!n
zo!A)J`aK%<*`!^1wreDxj@^JICW_xSQ(hwO$Q&B<-sn0L{4buJT_amFaPDF5+`7(_
zCr`AGhTZtHc+;r`6))lUS0Zt`|1Iq|iSuXhw$lA8ks#wgA?LfU8#mne-@`qMyn~24
zzYu%fu@t+wgd19j0i(%?!Dzr_HlubiKRka3qxz4g|I`gc-8swr4Og_7`<Bh&st_bg
z=qc81Ij4oaHQ4PW%U+Zo?OXC`+s_zSEg8E{U*zVNWeC?5M6hbX7WwOqpNF2~YgW^5
z_yjHpAH!_IEI(`(;_L?b8^Mwvhtq%XG;TcyPcJV#VnSFxdl2JhZFG?>8%LKcXW8<F
zY}#{83%Pk<1<O~hVCK);ev^<{Z2?p&^8ssToY2m<&s@iQ#j4_MwGbZ@t33gZ(DRHN
z_5&j({fwF$zI|XNze<|37wm`F%S`_6TLupu%YyArQXP6^D<k{$WAfbn&SB#D878^n
zEZ%)zSmF_;$Tf6cY+3jNy`{|eUyxP@MvpXn+N~9BJ9eUT$4?3H5jl(|bW*;UIIH}H
zGh65IL%*>soU)WtPvY_Q^&{r?F=qTYfM2#;k{A)p9@n2<6MiLJ?y>6)gr3>LwrzWu
zFuX7GHo5BF@|ama_G0{)pP4g#i<o&YVG|vE)ckAOeA<q7UB9P!b`KWpRWsUQEE&<8
zkweEYYQa%w<fo^Y_}zC58a9?CdxSy9o?^_fehgZ8#Ccs{dlo{T5^WgJsUxF$Hs#QQ
zW$a$Cm{cXZQ?GSxI#o!?%B6e3l!>qV^`%0N^w?gEvr)_#Hj`|nOQLrqX3Cz_E0&Ty
zCnV4C6GZ3!l%n_6@>s6yS$~wejcbdz5t#H24lMnZO>2IkSFcfAb=fqJ&a7wXuyHKh
za}|GI=N6#5rA>_<IGRB-w-I*jBujTW$^XtJbGajpC?@DI+YjC5+PYsD*l!3ccihsh
zC%|U4QlWWw+IQ@%t%RhuHUH<}z#wH;<yXId*XN${EXebx`>$lnfmyl;qZCfBebD;X
zkTac5(v|#`3?|p__hnJxy8jaA&%hyNQf2$=%JtVHk^Z$7rsPy|zioM)d8qm^zV*D^
zaO0naH1j_PonEi4>8$<!$C)7=o<2U>10^@1S3S=k#4C9v`u*{geji4&7hWE}_qtha
zJN;MY_CI4v?_X#!^DA1Ei{R(giU0~x(>iM%W-lME>>Nw~&3Zca{G9xu>-cQ;QkD$v
zkHz+cA3C?^r&Dlc&1{w@Fp{?gA%HQDZ?o>eDUKf6%b0~{C|x!u>qqotw>F9Ul+nGX
z5P}!aL+*3al7gni)AD)a?gUx9HNt&o{}Se{Kh2^p%~)?LN~^+2m^EP|HZNa}AK6RR
zkJ=G;WI8jBKjXyIu569VM#DNaxcbWg)`wU)y>KAIb{hHU!}na<rN0VWd_37d{sg}Z
z6Qyr|%1`%m(Cy>Y=p13p=`)-=*y-M|3&t{aD46U#!`2<+^x`3m*zHN}k5cn}-4?`G
z`IhdjK48%gpK&qx0#)11B2U8>Bt5y6!?*7<pxLKbRGgNjSnypN4jc26FH>3ye^7|L
znRAghe?ii?wt|<IhTeXQ4%O;Yr)nkY3|=K+Ug(V;SRd?X@URWsKK2tm=ia4b$2weG
z@+}Jv2jl1M!J$*<C|9ix8%A~Kbc`qYa%7`eiPAjWyO23suW)DcBzjESO_e(JSwFf5
z7i_UiY~F%9SsPKKXf%Vq?5~m71Q<;oTt2vgV@D2hbkA;f-ixJP>FliQ(SQR!mFe20
z2@ihxhF?zHU|`FRP+iK{yae;UZNn*DZVF`2O3C~$cR4krD#o{82|32f=&whTznk3i
z_%Yro0<`O1$$f|ob-Idp=+oe9G`^r8N9K<qtlST@DU}|bJd24@v04Fkow!8E{>A94
zjG<x~JBKekXU79Qbw2PCLudr|q#j3g=*UrPKAIPJPNzOg#Sl42<2LiC*q}B6)@zu(
z{kgvW2gV&sLg(*4C&RUcd^vXszl<C&#>Gv(`TSE>UWF4Y=d*ZLKPr#DO1(x^xwK$D
ziRrkPUjQ?^*PvRp$}C*CP+M#KpMe7}Y4rC(4II92;MgNQRv|5aw5L*J-a~$WFGO}3
z4<_&SAVh5P-ycB~5!A8zm?xia@?`Bpoyh9C^uK^2;s%?6A2xXM^$rhCKQ%J?pqV(4
z<@faGZPU|lmzgk$@E3@n!6+p6>=h4Y-_qeF$L}7T`d@ZP^uO7Y4WUl`D^h;@iTrC8
zBk)fVWl7g4L|eNz@o@r#h)W(1pX=Fk(Sx~n^rD~tDIW)(lEz<EFK)Q;cjHgBU7Zlq
z_{eY`1mEM{-Ma*b#p2^_c3n*jMZ{zHxo<ztN@u6HMDi>m?hg@L>92`;{D?bu?h+LI
zkkHVFTAp`;f{C-~{_w!_TQHhExV~)~lUAMo4MMKNA*AMcc+B5J$fGW?<k&UV_3Oh=
z+b=R{`eF(6dQnb;5SR-muT!u|GXi~msMER%PwyM4Q6&k>7A>Vr=Wlqja0(mGKA=JM
zQm(t+7IavmmEZ1pPM$tTmBA}$mL(}xy(gYpb1>uQ?<<YWK|sokG;36vycHW!!RI*V
z@5YOPro$kFP?5rq+cw2<b}c_{+C|Z-rP0MjQlwI23TI2lhdI-8<7N=MHt%G|?w{$~
ze-x)4UgYSpAiVtosot;_IkKnv&9>mMTQU0Qq<Cf@<}X`8mcpe;V~xcoQh5agV!yJ7
z!-3W5R<<}*oBznLTE&PHxob48LCSPGc0I{Qr-~`@%UF{3rJl3ua%#G@%)tCf<2fIg
zjBH-d*ctXdpQ$*RO7Ur_Fm_${By*Z%<SUYrEUD6xK1<F-ve~ffGcjSqO4e-N&YHgU
zBrI0DqBocbOybAk%?BvirURMMXQO(}S|X{P_}ExJZqSb0c?*%pVCS~QNXAsj$&oWH
zK3*Q8ZxeQTSZX)zsKv?aVc^!~Gpx9uo*(KJCP(=O<jR#*%O?SPF=#{YUE|V~tL$1n
zg!4&jQ7OHVjVG<tYh50nBpK-3CJ%=;ZsTBFF*=k_fq&-Gv?>0ComWj{N|TcO*^;?Z
zbHQ?h0bLq%r_fhSX_5s?Y`iM628aCB84|i2o3>1p*mDrFhdv`#5xiw6{pN3A?d1O4
zaH>Q@VC7ciJiCEetDaJ)T2hMUF2uogb9f$~k(@q(n8c`4Z7fap0yJw-gaS1_B<#Xn
zuI$<bRX?X>u58q;S`VAu#_5xHDbcJUzGBoilrn}t3*dwIVcF6(RPEe@n~Q&8=jBjZ
zf7y%1?>}PH<QW(W6(F@s7KIq;``V27l}($r(xOERZG)-5A3~swI@TOBGxNHU`;j^>
z+%d84v5-2GB2e<vX3AAOMcRdY%CWjnT~p`kr;dXj7+Eidjkkv)GxC%B)HP4J=4`i4
zqNBpp?E9;Dnf}Z82@rzil0(HY$+5vjz7z>nefwjP+bVxmx|%$%rLX3BV#AEgedu6%
zomlFpv1_B2iu;1dsXScyB!<dc#d{ey0jfMY)*Utzm^Y5eA6f9T=y(t*S0rr@*L|<t
zqZLfZp~NwYem&*)Tl!S`Q(*~dBp5l0{Ht@NN9WAC^NogC$SjigQ+Z5YUB%L=FLjSo
z=g#wlbbpHgt2`3wNy(wj{Qrh*3H7VedbPe366GuREB!~w*uChPo!PZxsh!e6oU;mu
zx9Zq>#>9nq9p0jkgfb@F`zl__rrL>@=zrU3b*~sXV#{uq<BP6zl+5Z4gr^urF%lLL
zr$c=vqLXuH8*{d+1pTXHZy8H|J!Rs#I(EfLD0@OXQTk4h&shg<xbf~lJyU-WLa_Z{
z`BzP7-D?sH7tG-Ewx6?f%XJK1Ch1@e(!rQ9o78Ns9<ygWht{m)k=2XK%llBb_i_S!
z<mr>1$7GUt64xXI)A(YLRwO})yQ^n13aPugb1gGx|HP!>-KbQf1M_~F%bfYkco40Z
zxO!JQMrX$&c^ajsH)>%fc>s0JV@)0{NsZ7dBI3;3AcW9F$i+SEK6M`txyPvF*M1_G
z$&2S#meH!~93e{n+ABrHAhdf;fBjU(@n5Htp~a6(@7J5DLJ(?(Y-R70NQ@4<5K9~J
zaTZdf@ZshKrvuBQD_5{4%|g`zIT<x+HdVTgAy52B79Yt>xorR0)&8Zh#p9JaH{IH|
zqEqKCG$@*03-<Ka@hn&lo?YkWy+_i>q%#c*<EG|LeuHb_8Off(lUU_mA!V|}#ql8C
zlOG0+<;Two(x-Vl9>of|bS+O9A8)}Xm6s)RX7W|2NB_b7Y1yzl^-5(RIwt0SbQ7@K
zEJRyPG_RGLVdIwYQMD?>L`4fRvtyNfO&PKgc<(5eC2riqJ*+x=TO0i1Ey`8Ghm_IR
zIIE>(<M<65$-E;-TC_e3W=tW^?dgnJ9YjX!O`J|4R*qk@k~y7$n3!1NWT3Ic$H}0T
z*je5#<&Bs8U8f3Cw^obNg`GI5-;7yPaq;kZ?b6{>7qvEOlX4_%vShIek(IcX_;@*1
zx7*~p9lP~q9HldTl9XhRzs*6Vo(Jc-7y4WVu$PF73a5D8&a`gbhMto)lHue;_C1Dd
z{*hd|;dE#@cjg|cb7UoH#3e3hA@QOIJDJiNiHVKFnz$S>S7}_S8UAJaFj@Ksg&ZaF
zbLIG9?fB~1yQD3cO*>YDqg9hv4pV->ii0~D+Pe=;J}gM7dhN*e%4BmM3R@P^=VDf>
z_(J9qCE54u7|g}n%Qexjl+~fqlXf7gQH9s^nJjlso*mh*rEuuTQRP)ds^n&_U%ab@
z1zo(1E`4rlW$<U<oRu`}HUi%}Kd|lEdt^%%Ly0CmSup7bZcgjMBBvLa2Gyn%wfQHZ
zNYdj_Bfs3y@m<+in&h_fX|Z@}2Z{lC+rZvyCN@9R<0;S0n)7BR9+y5&x&yO3i(4<4
znR?R9>~luqq<`IW(Znz3Ow2fD;*rFOd1he3aWl(r7_^yBZ@ZrPXU$BJdk#L)Yox{r
zhjamYmY#8@xA?lWQ@Q5sb%X?ojF;{jIsVwduV+mh4Kj+6CF6%Q!gF_w+=&r+<XDly
zTfrug(ai2p>Cffd2_a>Y+Fp?(RtW3d3r50(0PeUb<q_g_PmwpNhdq+VUNH{0N_iF0
zR8R!%)D4r!EI&#2j<mA`f~dxUxF|iFgN0m&m{=h?R5B|A!Bb@3cU9@j%w>_){0ga5
zL{G==%Vs8tu0$1@J~z4a`O|q5k}Tem!G_C{?+G(&gADTgiY{XG%sORe?s+3N(Yc!Q
zdGN@{R57MDhKh0V%1|OiS%~MEn<9s#aVkv8Dfu3|C5Ez;X|l+6GD6Kzzm!c8VV%WU
z7ZcAKu}FHB7y}38o;eaWM`V-XQgjVrPmD~Ed{;?3(QCvs0m{gL)2@6^i=pJH%6row
zeT|+uqW`C&M-^X<gE4V>ewB9fvk>xM<eFLP;^))Oc5+-~ere1|JCV4HT<v6;q!(|K
zb}4OYuKX6rJqx7`s&p1#G;;KwfzzP|mYy>ZC28oTE^Shl1)_5$vxn&K^i3nTq+e5Q
z>C9~-XQYiSmom<hcCkXzH<{!)xFY3{a$ZyIMD%_Ck+V)FiGE^4em5a^<6VM0o_`!_
zhB!LnIpx|9X6*PGtR7XF9v!~qL991E_9yJ!wUfO^Ph&HBW6%h>CpsYvnLljJ;11=*
z+O^BWVdK=1z3kevj|(?%aN|*!bj*ren|XHsGC|K{H9~HQg<>tcGI7!r`gN;GvJB;!
zIB^oA2YyesK=r!Y%BjP<*|YyD27g~1u}`=e6w1vLyV-T{6fr`auOHpXo+D?l8ocBo
zbr5{xHqp-?uye<D&fI#Arx+1xhSo#*W$R-&Bl7Rsvx~h4uj85AgS!{5aX;uX+qWL%
zsm+MD^)b75Zs)}LM|gNE5AMGXC(eb^v1?1rUf!5|GSj0|R#q-MOV;<YNvG~dmMls6
zuvHHVo*BjWJ^Imk`aOnx(T1$0@{l}fAqu93@+E6hv{`+e&H--|K4j0EInhcbPPF@R
z2qy-Wq|=DaykD}I=01`=TLymZ(4LAlzoulL$z%^SlQnxPy!=y>Iek)+*+clMZ5^8S
zJVd|QVvr<FLgoxfwe);bXC$SsCk;l=B;(~J)UI8h373TgCpF@qE;s4?UJfU(!z)=j
z(k1o8SfUQ4(&eXcPEUN(WEN8GLAo57(R*iP#*mNrsz!MlbeTZ1)JaK_LDKYAtS&V_
zPin}R3N7f-{c~<+>q)0lX}Ga|IyGw4VZEa@JwC0%lu>o~QQ~~_Wf$(`=t;AbkStR!
zAqql9OV#1}njeMWC4AUwAXDC)_`EU>c#=JLMll%u$&xXU4_fr6y6tCbw(Y^$XipqM
zEdA5wBwZ32DFtbB<iJnTDP6THKmG6>*A1!3lFA3~)Hz<nNtZn<Ca)~aS^focn|w@{
zDciBi^O%@B`=`rEO78?i#!UN8wb-}o5<R93=WL&r{P6uZOubTuubWn8^04ZRtkjCH
zzv#+?Jm1qW8I&lNk={Q{aorCghgP!jayW-pj-*z#%5)eqkIXf`;bZU3G%4MZUmoS9
zSF6IV*gDeW%12U7Toe8QN%8eGlQ~yja%XiKb&2soqZYKNUd(xtGB+hN<)(DKl5%1v
zW1j4I$iSK@Z!Yb73Jd|{%9@nq8Cx-;`emv%XvzApwB$|a#fP8uBHhmZQntQ)y(pFe
z9UAan<=mtQC`|s;1}f(*L(!IvNT0&UrqNxgUiT}!8cv{HE|stoY4Q|j^YF%0sq)Xc
zsi?V&TMrGS&SWLIL;7POsqvx%Um;Ipc6xBtV5ewuJFA4a#RS->o&-i7F%d81C1Y|M
zRkB&gB8+X|Nh9f#ImnpA&W9Ooct#o+d%-}BJQl+5o7f`keBDtYvnCtW(pz~Np-*_x
zp^-9WOTCvy($8)o>aLKgU@-t(B+)G6#1SE`QzX5@nZ=mBVB)0MczTiXfRL|KitGs)
zd=g}0-UFzU-O8pD9$XR<oIvF4Ql<<6c9MGADV^TNAt7{o<Lngk)zR;eG#(*cV|JLi
zVX~9YUraLBbEW<U_}QtH)k;MfCx-18GAbRBl386diII`s+d=kJRx&vZEWROfOXE2q
zavc-nxORFw(<J>!x#z_oDK`f_mopzbnMHSf4m(M2))Y>CrjOM#=8}Q)LT0yyLH(Ta
zY>B>N?K(~O`LkF_A8%yx6+O{mMuy1!g+#tgMyWqn7K*qkqu_=R$=SgU%B8h4bdOnk
zceYrF<yotP3Mm~--D^gw-zA#^FCnNi_jwR2b)7lN$iVYrNQnW^eXo&R8N@J^dL1RQ
zS>^Af%X(_%vk-E}#742uoNp8)Un%P~sjoS%d<QF+9J!P^z(G<ebFq|m%~(;f)zsHo
zG3I>bTJDrKK9u-#_jnTGW2JIh8=;ZXPF&rx`Xja!?@K$Wk;B5{n<iF2){)8IPR^88
zK1gdNgO@{&ZG4c%&i=C=OuMS5Xhu8R#fZEs8J>Blqf~Y~JCA#?>zR&yLcGrjqgHKc
zyO8)>QmN^D9lS4j7fxm8h>-k?1{<~0*_m?Kgu`xN$PoiYvRcS#)AK;;<VC%@;l?|F
zKd}R+4xc1CCRHy@aJ%)4sg(}1@g(W}+Og{VCRX)oM`*$Nq<y%P3m)}YF`*)#<gP~T
zmB&c7z9plB8nSU*9cFiL#s*6PKFk)&^;1tc`Zy_TR}UeX?kQhatU{sDTWOfnK%8_w
z3I?+eAtxr%c!0#+Hjs$$Xd%Kzmi7LWZN?&GyuF+F`orm-^)Me)8by~O{dszH9_#OA
zpj*oi2|l@=r<uF(Q@?^VPE(MGdflj=%Y#kp_tR<8e7sh-XIw}NRu4_h$glU4q)-y>
zZuyn)3f(FHbP?U=+~>P4EvZneC=0*)l8E9BiP^J)5Bf}_S-xb%S`vn+SMjDhaPHW#
zgXGDRyF%UsafIG_idU92__{*=4yd-GcHpd3sgf(?-9vD2u(pGt+Oq$zfFmY^hv7b?
z5yJa>uuGgr|0T|w;?b#1EIg&-^ZNN2@JSQ0_FhZJ60f;~yb<D9F>VIF)f$uk-U@1r
zyv*tClU&#S3v6LLxNjqs7(@w!mObhbkD~lYlk$ZF{2Rj(7KbU|uQgo%JYslsGYtQ%
zsd?2q{m&shJY0J&{>~jZm5=R_)1EA`TbWeEO0;4-LX*7hMmlcRGq83%X{6@bF7_m&
z5apyoK=y^|7*{P8Td0v=?+Hm1!gRxIrE3ZUTWnT(7qoKryaz+B=qM{B=JrDqfm!4D
zAkxHwr(zHZk!h7x=&|%^b};}{e!_(~E97&>GY5|z8A+Nwp1yf(VjO_CkjxodJqauv
zOOw<>7B_g}FUL(&!Sv0ZWGEcZl~YC>LaeXGI(W~|!O@#WDt;J4%Tx}H#HyL@$WRkK
zFT$KERt7Eipi0#kN|+3EUuWi<Y8HlVHqgITJYr)IpCFes+Gk;UmR~bs6IQtU5lpQe
zM^Z`Crt~BvewxUTrg#h$Ek-6>7osZMIW}64J*kz9Iz4;u>giD<hC*f?>RpJp)kym-
zdWO}FBW1LSrdte5s1rxD7!xb*s|hLt_r$pUDy@#uXAR^QL#cB<t2|03T5mP-Q4Xo6
za09nJtaJ#}v)OK=e_<<!k9o1v98d2&c1>?yBHPSOp7@HcTF9_5a+N2=%g3=>NO_~`
zG33`9=()yB^XjqWk@jI#vWaotVV#k|^<qgKEBWoz)4zzF(NdSwE5-Bpj+s6;9dt~o
zXY^GarG@m~yl<5Hji;ZgFVUUKciKj&ucEOumwbo*>Pg{`V<;J6;`{4TXJsuYuQN5G
zd5eCAZ8s4k4WMMvIBLkywRDFETjhFLF-)3fR&R2pojA=Ot(}~_E{0UNgP>p|c?wE@
zaK(dEC1a^A_l}h^=J+s{T5|m3N>8%Oah((}VXYa5{Kelw_xv_?9Q5K$5)0l}&7_ul
z>q`7FYeY_ozjwa}&8o$aORSmRD?G8K6$44++!v&0M6Ea`uJOQ>+D6Ow<H;l4w0b+~
z9G#VnZn*K^@lNi*sRjvy!GyP1wA+51grj_2%y(9?@o7<}^y|)m{{6YLWD<wtjoJ)}
zim#0;dK3DHgG^o)%)o&I_`Gu;Mot|}u}C5ECnMm-ZVq}?qE_KREG{DcThQsv=)(^(
zb>$-l4<5jnX`MMZWH_PmW>UOYi*LW}#Fw3F;)qQ`=dRu8+@dT8Htmr+jTrorQ@431
zx_#N3Zz=~ce)cxa?L;}XI`jqkdO!oD*TmB|meq?6QJ`{Z(q}CtX|~6F<yUq@mu6O<
zZuDrMpT$!*Vsbi2|IP3q#otWC|F1&lmGZxmZ2cR=c~hj!^*(+<yXe_>7+Km(_>)9j
z!Gn_Jv#?|QP{wZ$WyUX~T;Xp3LjY+K5pe~*PpUsf#1-BhBCg;?s=tVcD<l})e<u`?
z$dJ-b@I3<-lX^qwK=Yb&@d|B~8u^(#>@>({p=H5%ei9<?8DgT{AtMb6T4<fqhDk`6
zay3dQflbJ2Mj<S13s~t@A%-ur+bCBgmhXiK-M(ewi-XRoVwH_a4o?VqpL*Xxmtq!b
zrFWo9{OU!)C5L(?qh!)tTntWfmH<VT3um$LNdXJvYR6D7xzjH>0qQ>Cb@Go+d$W^p
ztI|QNnwobV+cY9BkUt(VMmp^<Qz(~(&kNW{D#nXS;sso3s<dC+r=W9CCAaA7y?AEU
ziY2e;){^K(HI5}b6UzN0@_~uYC-gKfB!)^3Wew=aEk?_z(n67+8tJmlgQt>Nl0X}+
zrF@-B#WAUrmB>hgn1oKK<P%AtK|5D(2V8FmqQp>8VXB-7N_gcSb)p7XEl~6)I@LVw
z1a>)Ab*$u8$63-?wfg;`QY_s?=9t9uNGeNBBJF@^A=gSz>gP-^QLZn-1fs|WLWq0h
zwsHBI7)i&KE2#65S=!0LGoJkX#6j1h7OG1-aY$Wi^H;9&Y3^>WV+HMzlCXr37i&aF
zn77o4if@p1gtRAhNyS%T8plwO@alP_PE<YCh$W4|&X_u}6!F$EXssAOnhTD4Zd8e0
z=Ie$V{}d9M_#cE0v&qb_L)ufTW=%$1$-#j|Ly5j}9>4qraKuDl^G-(oR3TgvYuw;^
zDAkjqGZ=B)y2MTYWcaGiEHVzeAvrBR{h0k5_po;1S}L|~gnw*|*5~{#RHFB8a_-?J
zzG_jAT5YFb&Y2E-d@M$9e+=@ZtB%^+Pw1+4tY%AG#T6qWz{f;HWHbS(Q{Z?OhC?i9
zorIg?PEjTM$K3MCO{EeAB+P+T`S@Bb+R}MXZ{OzJ$(7WtQ=4xlAHXxYr*tgNWdAo%
ztHb;opw?7=*Vk26R_nicBNm-^S~~O_$%IK$`K(@1SLmNZx<a)WHGLAJM-HGw+P{i^
zy75m#k+Sq@EL8B;)90W`^ReA~!^DpJ>Y9*N#V?F@O8V>AaN9^wxSlQ7OxQdf1ehE=
z3D<Ev$iQPEM5zPpT$JNeLhO^Lv=T1_^FWx6({~MA3Nx_!f{90Z8`V=g2!GA+P(H@W
z2zc;Z&++?uA`=r^f%?cV-qk<m5|Vx3y2vVWEV}I^){#P9%Ve{1=BkNvLXh@cGI3Yr
zPu#<({xwEAUx&!>VLDiL+QhCaMxG17%^@~kgvFWG3ut9`kW?6dc#MvdL3-}R{b!$*
zAe;J@K#djQLMY3obFlHUiCYmmwp}t3A>GJ}63KybQ#p9g$gCqK(r2`h+U!7v5*~}b
zls?0SP@cMBW?zJZrdjO7$a#RDjkHllwn-gb3(>Pn;^oa^<%X2`#3KVcMbC+s>$gbd
zRm@>$=UFpHZksqH3i!xh$|=Oyri764#fm->b7;&q^84smbIr)I6DBfcwvtlfMoPJq
zI#d}WMNiq&S_uy}b4cVpb;rQD2>lDgNab5Or=4xCe2<D&%LX9CUi9xWdR{;hjg;`b
zNnz_X16M-~{CwU_xQC6(sq92cJ4w)+%HR1>Cj^WBPDncmm(cf;I@l`pcqLRvzGM!z
z$nlL39Z{05HV-GiI8{z*QwQ%Dx%SA!&v&7W7@@f&{%$Gj3DMySsb8yEj8n6Y^^(T*
zFsaA14%SOMyDjyo^010=Huj={5}B-|5<;$g>>u3pp#DD7OMc>p8~-5wyqijm(%f&m
zfiX3c%R?@GpUH!uy`yP7GK}MU$72pTPVx6UF(qg%v)=!hYRiw4d_xOH1vg{!pd`GP
z{X6EJJwhJ82tq>R@QS}k{m!FF?W?2vgvI3Yiq$%Y1ibF15-FK_SPoIH=m6%QJ3?N+
zc%our2|6~7#seR7V)tln?i@~|K~EDMhjH=1S2WFCnfl8Q(>T933%{w)wv65R#5#pB
zk6N*&&ISBGyF<wN=~y@RC+Cn@wv9+fv)(tkxPLqs*7l{zxHwMi8ihSFoaYgdqC5TX
z&W^o_n~GYic=F`Q8i7=G@vcI(5mlbMckhxlYt|PZ3%*NGhC)O{g!WNq(xge>X??o!
z?}lny88c?oTu;=q@FsoeU*)Evpa_NX-Q6K%BSg9xHS1h8yN&a~dfv-m(`NpSHX$Ro
zjD!l2ORapHQ#pia8MzcGhMJIYwaUqd61GF)+=+rJ`7QW_3jr5`qX=!~tTt@V4eSw;
zq!(gZE}MlELSCG+$&$YiXLWCgi~;HW?IiKFlRv<rktwxy_T^v$=43Xqh!LPZcHD5)
zNVLeA)z3k)Ks%2^_2ia39tpwS|3rt)!$Fg*R_#M$Mdwr*<6{gQe-5S72^E#{?2<I@
zOZw#{UREK(JMZZ!EX3GDWODYlPQUBB4~*=SG*gK@p3-j>NpHif#gXeG+a;0BE4dJ5
z3A-r9iABhGvGfj(-xT5}y6~3r)E7O*Nf}j|9wN_9x%O1ZVx+-NOVPE`{}Czw)fmyI
z#P=3*p34Vz+;+}<7ZcK*+eh>fZD8eXz4m=gkqlM}2+2Kl)4=H{9hv+@Z*s5ldAGXs
zs#eN5DrEDL+)yyRmBK>C58ly}Rpdz_c^;NBXOrUqIaXy>da}go*(Uiu7yUNMCG9cF
zz_AF?TN)cNkz#Dg@rR<rr;iP65JIfgZx$QL<ZpsIiH9)eBck8Sl5ZiA^F5I%Lhe;B
ztv^U@lQ!v$r#`GbF72#{7%wZY7-W2Qi2QI;wG*k63Rx{Akt{UhLE@`+qT1mTX(t(^
ztjVP9z3-)Cp%8hsI!%MDc9uyx9+FNvPe?BHl0^)yvr<lj==07KJ<p^KXGmkEyby7n
zq_<kyy-n^-FY!}|5t%B^z!K4MDlyWkWOQ)wx{=#b3BHn7gUoieoHO!Jl$AWGTu);s
z?3saG@*LC>oxJjP#0@uo2XE6&<xi1u??4#$aZ!RgY-K{76hw&G?9fT4Yk$V5F73IQ
zxe{rg93VJVYnF{JL(?pksJreADb_V*_}xZqpWKjn-?d~(XnN`V!g#1}$g~0Fnb@)@
zzj%Dd-l+|V36It~nFJWj-aI@yj(U9_b862pq9UU4@G`SzU^|vR%Rq^AK3D_uQm<f;
z5a;`xIWUgv+Xqvx|5MJ%@eMhy+dqsO$9mE{Ye`~iwxg)eT{fSHW8BZv37OM~v5(uZ
zy>A98ef$|Yt2e~+<QnEaEz5-s?de#x1?elb=F>JGv+9Q~T+dvAZ1ymce^86I6$=m-
z|J%g$O~`n`f(6;QaU&^Gq<AL@ZUR&rvDs`KIB<Z96)O@SFTLYC2K9#F{{8zee8%5p
zeY)}QhjMR=ii-NL#5n<fB^g&xR7}lGYpXm-R}(KpQO)#Og|s?*9vM93TqPsPX*0np
zzM2iy<~r0p5~fx)QE6!1n2;#78BRiaIyqKL&8c(cTHqvD2}qQ_TvvHG38nLzT2V#K
zY$uR16<0xvD?gQ|=5iqMw7n=KOwGh5UgJX%O*N|;pFoOLesZK-B$S(pD$mRECcv4u
zmcLw3*DSBZc`2JpR=BSQC5s~RN<ZqFlZYqaW!~x+tI7FNcM1AbhKQ0$#ZjyKsB@*C
zg!R!?9tm+0>fu$rDLCs@T~~`rDOZ`7<#b+qz068as@_y8s@_y`s$3Q+gJ!sC$0Do5
zNnF29BA$TP^G$s3Yw;uvRSu;SrDIhW33d2J?L<PAtBAT+wZVjR<Pf`dzq2kRdrcmd
zoU;w9lb3BtE^D%?V3nSFYoyAl%AxATS&uL4DWP69eaZQ&b?k;4zmIo}j7x)-p7Ytg
zTUY`!kkUu*?1Th5gBefjV-6g@0$u?WE>ut~=qQ4(-@`9MHjI%$Jhu3eK9xTnItwRH
zo+3O}EaAL`$)Cc?cMV$c{@4{X6zexyJ>`iZBZ58d8TUf1WX+gD9zJ=Z!~pO%T3zYb
zNSU=DSps9Z^Uy-pOeu+venL>F?ZxrEP_gz4n`xW73c34DqgY@JDRUPkTQU>R9^K=q
zHGoWMlM?yxGN-RSA$`X5@=%+|mMt}rx36&e#&hzNEJhmLWA;fIZ3a)W=gCiU@0U7w
z9dAO$|J(<h{|r=ll&tUa2b>9HJX^MeW%S%|<Lx0VEKGYY{s}Vv-{GXSiOKETfx}63
zT>YT)&)d%PpM<l#3eJyN|9&Vcu9}C^`P;AGKZC!k?YZH`--CCKj4P<Mz_DBZlY|OE
z*4Ez^^V4dzY8{1I*V}FrJ6Ns>Z57K^0wq7SzPQ$zU?Af9dYb-ln6;~h<A{usu-||X
za%Fj2wXaxQNR*CU@>8=5FXAMQuN@ok@_$OV4_i}n&L*m4au6M>)_j)kLarsqrpjg%
zQ{1lPROOKS6T;M5#&(g{td-FrWt8*Z6xNCV-^jRXEC1J4Q*pzM{|Wyb8Fy$ihicYX
zAx^s3*Jn9(@}Kgz_Aoh*|7WPa>c5xab*LFe<v#K-1_FJgzZW?iBA0V{!rx2p&*k-Q
zz^V6$C>;@Y9m%}ai17E8Md@6v9r#Fe?&E>>{gtZWcL#s8?YZH`yN|a?#??!uKLtgu
zf0KkdY|hO{EKVY>U~`djZF7=@n<PN_^{Nd!)W#?t>B_KhMo)Cnuezta0v9oU1&PwJ
zCL+(yYp)+$hz#?i-{OUoNFGN-bleMh63eE_rlqIIz3cvjFfEFdQMqWuD`Nh;!n)yx
z8ws$5%c$(eUkHb`O2wTZBhycrn0C&@!+6!9zuF;r37Ma|+ss3=kYrcbZ^P-f;oKqf
zk3jAdqBZS+2Mf-cn0?mBf+J>5i7W|5!hhn==JhVXp}BcPJU7yJw+E}P83>cmKRuBC
zDX8fy9TWF?FjwmROoUpO-F4|5g4#EF(q1!9rS1K_`f<aJe;?kFXGAP#gBO0j=9gss
zEkQUrUVgss{6H|Ic5=S>^``6W7GJgK%l*(peA4_!-W^Zvi!?}|lWO%EP`h?@>VG?u
z(BIq{{5b;}Hs^BUYr&gn{mE2roLI|@m1kUmFY(~mOuibh#&!1Rad+n!GWZwdMGm$T
z6wsw)`Lzcu9W;XTZ%LWw*7WD2k2-NBBAU>!#08IHXw%AkSiLTFYuBPiokm=G8bXiO
z{Rs*^&EP@HG+)WrabQw=CTx7*I&&i8;Vqs^GrqfLAv4!HckKKlI6miVN|mTYy?XVi
zS-Cu222Xym+}fKU<lZe}U$c#OtQ<qtnpLULv^^*8tB@E*_Gw6~8f|Iz)o?;p;T(~i
zJGq-aH9uz4BNgW*rnYOqn4Py=XHFcQ_64O%ek^j<rAGD2eE!24;y6x+`n~^S!zrm?
zzAEQS-z|?_=QpXADHFYyJNFM&o~k2im8ROai(Tgm&*@&GC>3hfqi&sAd|aU!8*YSg
z=*Lf(y#0w5<KfAlsMzKk9y~d~XHEM3<IkY-v3~T(#DJ4Vie<Eu$wSW7j>HnKwgFe$
zihHTa8zE`2R-NWQ{32ZbI=zjZTa>FXwRhQuqaN&uK>G+WF}G8*uv#1~&4hcMQ2D9t
z>UTuh=~FR|E_rQOW7XQ%PM=-vKDp<mk)XCi*RkfX2YVx(d8upaLsAu2ZFl}EoY$O&
zM8dK1YknzH!Zz;-Wl6j<Wdah%ckZg0sO<9hRW9o+r@F2-#L-K9b*|zn14GHb?wFZ;
zg<|=tl!a8H1GPQAx~^nXAJQrvd%4cF?b_uyL3e76_=NNl*F{2@l1H5<)Yt1eQ96%)
zYGi-BodFf%sFcEvny6E86E^TkEPn#DZSY^D<xF3_y)a66LcU6uO8$iV5{{M3&TZ@y
z>+02Tm0!Zv^U6?E>_Y9Fs&4rG`gOw%Hx%S?c~{_Yx`q4=aM)jC5bqkI4s-NEI?gX!
z?FxwF&b1&hRHC?X;{hfKu}9qC<j$j93{l&bTM3JCmMK0eLK_I>h{(v_WX69T?9T`{
z=V0lo6|7ymkx!BwXYjJq5*|yuR+SDS!<}^L(T$rteXa;Zh<1)Oj4PM#lA%a#+SDqb
z1%*AjPtXG=iLyn95`6zDwwT9+JbStDSKRYwJbC(rs90xPvBpLb6&XfINSNgIpNM%H
zf!%h4C0m`kxVvmB=kerOxF=0|btkX3M7)F02SGdxRdZaDcbqHD$HEo_4=x<$@Ug2r
zOPJiXM)4phh{xdxl+4b3SDfb>leRKz&abo`GnU9D?dULevlh#VIPP6{FlOUwR<B*h
zhBd#ECus;*F5X0!q9EUXQ%55n_Lyhfz4wr?=gzW6hur4T<8Y#$Nmz`tr1N`Jr|+5&
zGL~yh>uULMSYn8ai{sJ#Ai~rx9xgl!xhHy;x(a`_J%nCAO@*)KvTD^T)^FX-dv`Z7
zdW&<b_-A)cb7bFH?x}UgG}s9~f0#qZuDQw>N$=LxS$pwinzsAf7&Pe`i`H*uS>Hl@
z-DVh9cl^RZTTK@2o6jd{uQ77Im_@pHE?zsuS@|WNFu$^A8q4=y=W*n#RQHj@tJZh9
z$hn#g8@DobXdTSqkGX#J?tj#|?f!1AJ<P_j1<PF_F+_zvVeS5t&eM=nYz@9f)LkdZ
zb|QvnG2Z;Veif_NtYh2G#ni|aK**h|BA+K*T}_o9%NaWSN79(XxO(~CZ??6+6N-@C
ze{8@bxs{@6tklSDp<oh4hTzauGXwXVnSWCvNn=tUzo`$~RQLcDeoJkGF67*yXX!}~
zh8{FC@{~ziK5p?T55^xg66GRYiik%%Gcroz3_oCI=4AtRNj8B%sufbUT{93FZD8Ut
z4^~~(6RSv<#JP3PM1RR|@>vtHl79jrw^;S;x@lyQ<URhF5vv#iThDq(Tn|<R84?jl
zA=Z-q3Xv_yA!JS`$EQt%NZOZfniweZ^p*5OC60$($1;(9;9d`QKGnZM$Q2RachQ3(
zQij2MJUASw!&|Ro?HOm-sFNnFuJWopy`+G1B_Fkf;@Sryb)25*LcRy=Hgj1F8%va)
zozjh+zUIN=>jvqQjEp!WIy`KW{t$xhiyp5VnYhQy1Ig$1T``(O&Z+05=a%dHFPQk{
zoS7jKHcND;>c}j4E;u3bNSQ{QH)zJuzROaN`^+r4W6%h_6Hc9Pk$j_~4E!i^1x4za
zcf>=}#qn?{n`ruHCBNuR$*%~t`UQy`vu_$SLaxa2?u#ZaNcZySp^0IlhY_L&hsby9
zo{>!t^%{A;A;&vH^&AkHSBcK29WxQ5=}OX&vh9>It(NdPa<5tf^K7)*dS1uYGbS!c
z+Ulc8)%NyYbe3h=y~Jg4!wokQAl;f9?-~wG8c%_rj?pIFE*4)_9hVWKN%_UgAmimL
z<l+dOn}5rhJJ%W4?Mr@|H-#pRM@l>!9m{25-c2Epo5#>?>~<}^w+9_2vssNV8XV7`
zk}{na^O{#=kv6#*Op8jLc%l~I5^}k4`f!Hy{ejP??8fflgO9Htmo|;3_w)nYST%<p
zea15J+aH9`ox~K7ggeJJFn0VHy0-m{gF@t^FRo$yu!Zc|wT_|R3`b48ZXHygYF#Jt
z%hG)=Bji<BEqbc7`<zF=jML6%u5s{f=ZbjQLKslD6(=NY%doC|K4=jAd$nNtiJR;g
z+K3w6CiCm+ee9m~IX%bj;o{-NG;TClVp|ygSwF^1n9MizdvNZFg`<-@zKGMb@lYAu
zj&bbN9X8Kj!;W)uymt$?5_ZFvk=JN=!mQy_7(a3tKdx3J(TvH{2g|)}G-*DW_~@&A
z-RW~CPMyIQAC+O)-e8g?P0HbQvl%mTD6Km5;z`_7PG7ms?p@nCv0yj@7M$Sh>@L*(
zv@g>pjG$$Q?-7-8anVRR^c>8L;onm_Z*!@Umr&n9m^~6|&q>;hQlDYFN7KFMJg(i?
zN4x4BxGXlw;R)^OJz*ag4=tc+lTl)1UFZDOYpmFD#C5mapQ<byH%ud`96!H&2an8I
zxpVw1*$NleuIDO{p5Rkg<(Gw*E&u@k^hrcPR46G;ntVms4C%zc)GiTqP3rbQCcgW$
zybSYBT9g1!A3yfYAI0Q};}|(?FiVbwpfj7aXX15in=ylm%g#{UV+|WLyTVR};x#EA
zw1+ElcJaVoid1Yw5_{s-B7`t3Na|x6<Hn3+@Wh`{CZU&aAR&7vlegk{CT-YA$u#nW
z$!*%R=)CbCgIYZzM+OV_J0A2B61GCfnXqeaTsN^R*2Xu*EL^|r!HEbdhay$3@E#I=
z?UI>Ou{!pjGP7S2>R3n!y|;t(N$r%*W}!tMn>-(i_6g)4qqm(;-na0%#0wIFxL3%m
zT7^QvDiI2&wUa)Hl}~cpxF%#vZ95<K#K63J(7jYVDIyIlyDNr+h^SyT+Q}(-mC0_Q
zO#vHMg@|tx*}4_9vgW9n8$x)E&fJAW>Ns}Wz%zB~I*y4qFzK9u28H5jnZd64r|&vr
zCOnyiuivw>Leh9B^0~6p+E^aZRmVaWI_0o4>xhwiPsJE`V5d`23zd^Ph;(MB&El$6
z&R3i<;+@t;jdTv?A2E?VtA#IeI;4$C-TT>jKhVJkIV@C52E$Jns4r<(^wlx`jDe@&
z23B6zQ?G;t4>6eL1?e<B1WNdtU>(<kOq>^?x)rf<<*X2Bu|0R5G;>mCqf=ok?~DC+
zUg~JS)me`xg}9#(l55gtoki#Jw}|LGLsIAFOnXk4iAXNx%i>^y$f~CASBm_;>1=$I
zTupL`4&>IXQqJ9%jHs7UMw`^hZ9PfFs_TE$K*NF-vc?#geoN2uFe9hcyo4z5(Gw#V
z!gO2}!|I?^Lf!mUJY8)=xf-3nW8%Pb2aQDU*KQcOrR-=4KPQIW?Re*G`9&e(hwM@o
z(e+_zbEjiomc<P>+;GB8#@{)FGH~h{awLC*!P~;v$-he2%gtI$9v&QAwh&95eti0A
zbH?{B&7yseDU#|iXHM<K;+KLQE6#H8+(imk`oMM9TY}z$kSm+1*RTn7Yu9AHxe4D?
z%*C_EPqYn^6e7db$GAEiCLbDq(ThnlXJK30m)*B)+DEXqcr}}A<@A9?Tu+sU#+{o`
zqiSv(@v-=4FTuCHM({;RAsag`^2^|1JSvcnLWN3`CVm}LHs68x2=dqcnjYP1YHti)
zhus#BPsZ|ON^+iar*{*Sqafu1EgFf4j*LbB=nMnbIrw?nOlHiQOSN2S2z&N~d=0*%
zOZy@W7<-dJb9&OYTYu^XtYiAt)2uyzgcKiDqigSG<nj#S`xy@y;)+w#YX!?=N>Q(T
zVZIsNj2309Q=>^cviQ3Ml6)O_Q=rs`d{DYHC3B~fFc~ey(83-sL<4rro=D7x-!W!*
zf0|X##?y#6?3OrkmTy7-5tAqoa+pK$NvU0~6m2^;Cy73ah&Y?5;xQRMXwHC<lPU1{
zBu8&wpy#LqjQDvb{l<SwpfIe&6x7qlpZR^7(5P_(Di<rlo-~c={ZVR$4PH+5G2>|2
zrVE4WMKWvNVumh!&X8H(((a3aR5LGT@w0-|E?bIkT9tF9CNOy5<E`h?_DQs!dXdR9
zn_`HH!I99*$l(6+t&|mu5J8<{OfeVf)?pfDtL5O<%^Tc0cl<^BQBdEUWXMyL(jSx(
zoqb6DbOBC=^&hw+WxYxUp9f;JMlf#HRtYl^XGlxa2FaMc{uzf39pa;pOA;5KI0pxM
z&j1P)mpb|213oPNKB~G5!ZtSTx<u9T9<1JY%^6kIl@#coCgbWQqL06g(KTXdp4Gvo
zgB~mn(sS;Cfs6M|+HCi&SO^kBN-e2(B*?%eSNQEX2oZv{M_5@KA;2j->{QHc#ZS`p
z^Ky_vh`CN%Aw>S_)CchnR-f=-;9)ao!gbo_Gs24n&dqjwJsjE$Xn@?OW<gc_J3>Ow
zJu)zQpP8LcbUcod*e<21zsiNiU-Al+uI-q}T_UTM<N-Fy_`qo~ToutvfOCmDCwbFm
z%{}d86U*_3O<r6u+Q=x!JH!Y$Dr9izNt3n-(EXSM86BFD`7}(=j|a^Bc+p5$oYbGU
zjnt7wI&JYF*3X9ebp8cBl!LTFbU#RC!^5g)Td;xk=S+;eq_)i06Jd4WBk~9M*f9&S
zJQAX3&S4V^M8{EL<fvu(N=kV$3TeL^YT)c6J)=Yqd!FhDjZB?mc${6pt&23aoyImN
zY-3Jr+nU&IlQf!OVyCffH?}5rW7|G?zw@2zI`iZCKMyw6Uh7_%C9LLj8AGx^Dg(<p
z4#ku{KZ)kC1WnR#E*B>*kAG+9R}(@NFx&mP|CBkC%Mb!>etaF)L}uNgh!qdL1CWoC
znb$zRgF~*J`A?<WEu|fD)nr=-4<4&jPp2Zf)TT5i!YuiLS?mz@#$c-0M&Yo?^jCM`
zVY{v2&qD4~^$pkAD|vojnFbgVE&+CVH}OGr4I4qYnfk*Nut6o9V;=hcB|=4}=7(n;
zg?lDd@e)hXI?=+}ObCv$@0n+m8^NXv;Ko4;bFal%#Lgt{=5+k#Lq{aXKY|^RFP3{a
zmepHFdsO?d<a@Azya^GB#+%oRYNSo+$4M=<zF2BZCA)O%6vxg~6Ut%KBS|&hC*B&!
z2Sq6;8svJ1+$|I=ho7}>WT%a8DcF>PzlVQA6BHWbDB^>A@+4Rx1Z&B5qCs7}&wOF8
zQ{|J9y@yourZ$&}87fdBsDG#7MLC~O8keP%C<|Mv*x#g6ePp%tFbsKQo42_xw4NFT
zC)cMV=Gz*DMPh}SDRG6eqmx9gvLbNM41bLUyLK2X)#rT-Uy?#U+bD!!e~}<1^};b*
z?S8jmqFF39Ro+{VaLfC@jz6grlLf~3mP+2{m`{d<N8+v}C-W`kGp%7WzLEBg#OJ!6
zs$tS#FXkf!epi$)`|?ILu1CU8X8*571`t~)ogGXdPIf4$!5Bip>mBJy=T`tsff7jV
z{p1#o(yC>ZsY4H=G}F#$|F0BB;c0Ad-kfov#hz^g&O<h=uVX6ZJfTayOLr-Sng+LY
zpFA7vzXofPlVR@b$G6H`2q&f~Xnt^evmNh}h20S(qULgqPC^)LDXU3|-qtj4QDD~-
z9mdxjUF$)5`LAChle&hm%p`Q1K|MiKLhjPI`EpzFh}<Tg$AW7EQ?;kZ?`Ud|@$c2@
z5xXVhz-svsmD&<ekNBaqk=n*z3{|jFEJe=%x{Em<h7zZU$>0~Cg-PZs{SX_>jfsJS
z0W9r^BM=B+pzSE_dQ8jF?5tDK?P_x!hp13hjdl`DiMD<Ebc`)+yHR_0vVsmhqC_ro
zJ>~lyKs><eW?Do!_T8(>3jy%>RoU}|OSCDEo6aPUAFnkpf38M@vuM~#mJR~qO=(_@
zD?+{imt)G^sG%~CN3>wk^?aKyVANy2DU{YbMb`K&<Iic+e{K$ZiqI!kCpMP@Tw#jR
z5BoFZX>e~2gxOQ!&1~h`m$Mx7FS(gi@$YMMCX)9tm8~E3l?<S&Aj;V3FlAySn51Y@
zCbmJv>+FxIwN>lFD$xiI?v;rth3jI}y1}CRv^?M)B#7-OkK(v=M_8m6wQie&1ol?%
z$aoT2Kf4MvQ=8oYY?#r|(GWXA{s?5I@(2xzt|aV9Hc^p=DC<`0zcO^E^X96eaY~@A
zg7{*jq;#+J=oNNy<M=vaEvh)Q#NpFo9MuhXF8i(Tm}4GG$mf3PFbaH39anz{T6mIG
znMhc(I~Tu<->!3=)mdgu(x0(z)z%oYHlL@)>V$uA%;<|!xC~QmNqRHwi;=#E6)Pnw
ze(EJPwK+LozoeQSrq~#kcB0Fb0nSSPKxFVCqt|Wr9j{?3!xNh|i!D@_YI;sT1^$OP
zNCS78YH=9z<9GwJ#hz~8gV7>>>jEQqS5eY%meUQ}nw(=2jGAAqPL&$Y)+T;*mEQlc
zF_p!+Fn$Qf@>Sy@`|^p@i9#EYByz1Av?^;?7l%&MFEut?Q~lOBn#z~K=#eE8Qo5ym
zPC|2=)wlne(F{4^3@>a%#~>(V#<8x|Uf^$K9YHndw!tw;qxuk-_wN5B{;%d}sbO)f
z)fdPhMrF)CrHAY-JG|}B5hIRODjBx^bBs_?JU&4$Qh4`YDrJ08x`H%_>H?QM4uY{z
z8=s@lKT<~|nB1|>V|KiTluWEr!N-kgp6_zt<b7w@AEiE>?3ayhkF=6MQFXE6g)0W8
zjM*kwFElM?^WT3f<s5H**Tv|}Bj#YYv5TS3W<8%OgcR^+k9+%u+rv5qvBktNZ0qGM
zJhiBBbhvh=Dqm7~_GtZ=d@#_AdFJl5HfO9DLh<~1b#L+%NdEq^mTShLF<UIrV8^`7
zK&RyoUodMvP@RZ76$)Xu@3yNDiSpX{*(lAQ2%|!%m7xQ0V0T|-=CAk6>JtH*OpMQ7
zr#vJ-DiBT<oKrp`>x|#xs3!X~e`UVH555m(cN<6Dd--+VlS{wsPhky(t+9Eg+bt6k
zznIJL1bJd3(Xd)P&q;APsPyA3vq(a=D|>IofN2%$lhyjVgozB_AUfqT2X(^SMUm+|
zW5k1b2&M$wAegw_ip}QL5GhM{4%cqAe(8l{6rcQd<~;v(nL5YypNg$$`L^C(!W!?<
z8T1InZ!FJeq`ieUIM2)w@rbUgn$<%Dw3hBrV^xB?E&ShTB;ARO<f1lACa!c1sgcy3
zuK$)96q;=5MrjlL?i=RskjZ%B%a=8`jB$7Gc*P*Aavln)(HGBg7Ky??Qd8{W2d&BX
zQ{ko+1uWGA#XFsGNz6e4J(fjI&3nIt=Eu#=UzE{yGq|r_j45|&mb5+kd%LeBO@gS9
zqM>Vf*uay2I#m#J(8=W1Tl$0=Szqax>C6|2(HW3?%CwHm<;>uMs>QpM<8u8lf+M1q
zkThmwSwC2_oen`;YjnCzhvSS+ZDOE$*!mX2(^_VP1&|HfU^}aVb5X=^{@Ob=U}N-8
z7%Pd=)$@KyhFQEVHD;81fI4cB@3slTHx-?jfjKuV`JIfUG+$4S1>ch*7!hyr@tF5Q
zE3@ZEp1aC$V77VjX6tZv#?i^l=s%<1c`p%pLRY^qTJy?zu9VaM-QVld+jFpO2BoA7
zjFq8)4y8C@sDQVwJkOc<1ZU8m3%2a6*eXf)FAN!0fZ~Md{%}(UG|qNZ!eWid?i;z-
zf_>@P3%{_W^J5zd1_Ejl^B<ZRzdE=7&|*a;%h2?SWS~Fdlee(obo}7>0nM-9z%ij>
z2o6S8K{bSkwD$ZB!XgE?<`jB45H+hTH+jh&N)ER%NJB9sN?2}h%0;jZf<`Juc?8n(
z(j%f$0CYFyf26$<KH*mAy(=*1AJIhne!#bz7F-zQT9`Gb{zvJ{>d!K;T#4ijJY>RI
zbIrJTYOH{8xu6Q_&l)3ij;u<v3g*wt#jRxtcu)++a^omg*jY}jStcXmWNS>7#VT`Y
zIto%t-Ck>D!C{#w0$cI|gk(J3GA{5PkgSK28K-SEGJ+!pZn5^Vg7YL<IV|KP2J1@&
z{cy*{(lT@M5w|Rn_I6i2p@lyt`3#}dwa&-?5KNAL#xq=z7BnfH3iCkN^}kMKcL{RJ
zd40;G?DYGI)JTSvOv(FYI-lbC6~*LJ4P<yAq5kUy|CY0HG<@V;oNpU^$3u*(_Vl2T
zM-{Dt+{%m5bFD@H2*%Jw;6RmU0d6i08U~sJ`bk!d1&owNCFW&pqNw>uENwzcRcjK!
z>k30g1@DiM!_93M4y`bA@JIr6W3QLz9slb=%~pBz#{I=r-iUq-m%q*F*!atl2mEN}
z7srIQ-+ZTQzM@Ouk1$^bV#%rXnn0i53nI0rO96^R6BgoMSV<REAq;<|2Tyc8Ek=I@
z98=zAzHb_ci$mw(Fs*#Vlj$>X_ohyk?=6PKN6SZ6Fx=y*c5%50-$pyqO6xT*5h2kI
z7&|H7BPxv|eMevD961UucP}${(wmQDT2%7s<MhYMLtH#(2^|(xRO{@#K>1u4H~S2Q
zW>qYzR3Yx2JBvc&E67vGaP`PVnwO*4BS|UeaCm%mH!Q`%Ou(+Pp}Ho-Z0OuONdHfJ
zkQ4c)GCIV7UV7`T=A>T`VfT3_t+&LQ$2veViwc`QHc3}1T4q(JzL9L#%v$Ei{;OMJ
z8LI`KY1Y~<qz|t>Uc_&gOB@C+TQ0+3$pD}COm{F9@EyzjG+khzoo#2KavHp*)*Jzm
zA(IWVlvH^{GDTkz4EUJ`xWce<ce*(KPAXgv$^GUZ>z&+J^w8Sa;}MEcx>XWm`aacO
z)W%IKc5m}Bs7y#mJc^HR4iO8+o8(I$er3_Ce0VE4rx-d;W$a!ZfITfu(Q*_B{=9Kb
z*^ZxrdYO+Y#E47tP;^IcNlj)Bq`9lwqD7fEl&*16aDhW5_eT>C1^b`V=|PiRUxKN8
zB0l=bpQ>`6dBq|k#Ea4Pd05G@WFoljs`F)JOri(w3dgBG{@hmi8Rl`JrdyfiRWvX?
z0Q{jQfl0sDBLzz;WBi#qOAl1h*7hr(>CPnKDIw$TC3vzGs^maErR>cTX7|wm)puJk
zf6!YDs^<6$ibyc=mEXBvlkv|!d@NEi6-rpikRSWZpD|%t6l@_MfxL8Y<l(XY{mF&}
z5z@_>=-74L>ukLWRqw$u5UVpkP|*31yi+e4Q+uXeW?N8=S#IB)Hkj)!Ep~uXrdRhc
zCuU}Tnk{gU=}wMcVtb_`k{U>G5*repHZJ9tUcA*Zvy9dJY#=*TJ4o3BQ_TH<bzSsF
zgKLW2B#@SRxK~Nzk=Go5aq}kKr=&-9+f#7_?pG$iTMB2GKIK*kvNuF~)<=}&FdvmH
z0;rIKhI2|kH}_@AI-QO=GN^b$IVVRVT83Dhnn6z4+ULSVZ58*yB^3NNQy}whRF=Bn
znJ4gwyJ-AhEY>?4OW}E$_dRyt%(?nBPHT!QLMmREa~A!1==rkt=X-gaZNKjbG(rQ)
zPij;#nP6Nl?5gjwRoN}lauDq#7)dC@8~4p9A)tP`Q)@6$KV!s&aozw;Q%R1Bp<}<z
z@IHsJeZEmx5nfYVq0bHT0)}r|y|$g9GRX7rt1*vW`w!>XCYUyP)uGt0AuSWPWZR<z
zny*D~^?bu9K%`hx%jOJ@qGzllijN59n)8@YC9e{#w-ifJFU)QO<^WMZhIO&h-rPB&
z&8_xoK^r%wYo11)Oc|VdJ_4vse($E`zWfoCVI|G9CHIi-omgj}=YwD#FX(S(GKrI{
z+$9Remt$y%l^RNlsZ4B;!?lMse9@aXtn8V;`7;~GAIp}{m~b1=Af&1HaOExZ-@!UE
zFToq$mcmdIMbl7hdpfsoQZ{nPyFaF7d`(C?jfS89(XgGwU+*5vKCCmZ7;5#J8$jxw
zDd-tGyDe6-{jq|L_f@uSd3mFCL-JF)qw1!aw2FXxhmBJ6e?Tu32aZ?P|F~eH!HCtq
z51?2o8H$X2@2O{pciSBGdKeZhoqkJQ1JXe&Y`cM?v^0Emb+y@W{6WUt-dWFsb1~16
znPQ#oN!E|YCRIP|L*h_-C~3yVdpAvXroEw|VVTAe5tb$IJElBKqMNv(Rsa1Dkp-uL
z-y$w(%-Wnbx<^wu;T#>$JTk$h4WOGt^~;@+LP(4UN;p^~;8kz=nMS?jod@y$4)Oe1
z(m0$ct{>MHYIOL&ys(Qm*8gFx@se*1E11t$=u;^?CMHolNBq&VVNfgj$M17@zCT4d
zrtsc8#8iRKyW;8N)LQ&Mn6c-#|Lh9-S-MRZid*X(fu-BN^XBTDw{O5Z?Egn5+j=8h
zF<bdhDg2M3_TS}|ylLoOAUrP30<`ZAK4Jpv6WwBwJpE80in=%*l@l?2Z|el7v1L}9
z4%E25ebKx>3f=mbdb4Cf#ER|}p^!F#>3zi~5Vh+3r9*tCr}kLTY4!ay9|OZRJtYn|
zA`iiHyauA$Oo}_yg=5=%m$<T)8wg~xzMc?t&*%(Fpgh90eIyidAT}LPq~PPvY)?bQ
z#PE+uU_^Vfc!AAY=?+U%uBg?-09||#P=sk7Un9=OyJJ@$B6s7nxVCD@=-6nv+{3uL
z=7<}JGTz)Aqw;0+zWAro?+f_-Wf|Bkn%>mpkHVX)Ps_5xUl(lZG4rdJ)%k3J2H4?=
z`*nZYKWfeW^e~J$U0p7KLW?<>$w}+iLYu|<nII*u`*;R3KN+n#=|B;ND&U1J6^@q2
z`7nynPYPayRlENx8O~1E<DWS{yN7oBMtnn5<Nwm$o)etnE<7+54|K0Mm!cLA`Oz%o
zE3JbBg~U47uIlwKu<fc@U@sNBoPS~nS;pj_zblS4bOMF$mX~Yj^L@RcMv@c4D&gYr
zfNzy&dmAa_ya3MU!b;!$2OMxl`}+I6z4$jtA^emBussu)Alb8+-hN`S>mZft$T`Ef
zm#i>EwJ&UYBdF|85!jXM=ER})-GljE-nNgZ4sY3ims^E<9~#>iuGHkD48?b3J8lgV
zyc&`3x-(e+HWW4;0av|U74f5`%3faAzZr&})11=hF==_UlRoMVnncn?Pp@8spO3U-
zWW9b{*8UiKt%G@nS<>|?OF$d2oEQ=2<uU^(nLGXExS^69hzre`x3D9BI^Zxzs$ZJh
zIK0dr6=twde&+7jR||n<J_KDC9~pcZAxPD<8je-17zS<Jw{<WHJ=PpsCIUAK13l`u
z1|xK>*6T>Ncm*n#DHJ*O(}q|ZZv1f+lb3v8K0Yug<yc{a<1$J=s;v>HTzwt^7NMNx
z9xOC{8ld3V#0v=jxDK4+0ZpA>(;41rKVJU77ytEr)VUW3we+!wxqecgL3>G1B`jsz
z*xHMnvg)5-N2`s=N$BY`>itLdP_u4#n!Yx6egNETaaB{qb_{E7j?|7owKaA`K^3B}
z*(*E^k)V6{uHB+3I}!P3nK+9xJTRM~o0A45g%PGdnre-v;YBdSLFlpSCW?)p)$#fB
z3qq?~Dy1gXW!$p-;fs)=8`0p;5%;#|&+Nhamb?3v2LLM`!r2-T<LP+7XqrfzVIr{-
zdAcrl=9H@C#a5o%k^`u+=TKU9HI;jjXXv48rIHg(xmxz~r(<Q}#X9|cf}o6b*$GGC
zy=DKvCJfu1&D1b(3Qq(AX9E^VU7$Znhtc_;@5pZlp^5#$>Jj_1FN}}KTECZ=R^9DC
z`w93K_YrWv#cN?cCAV&3&ja<$`wqk8)49TyS*1%+Sv$?PnYH%csy%Se?YFJS{E3&t
zdQcKl*v&2e|6f6!bsCRM&wlcYb$VV^qtEhc<*M!3bKPrS?vxc5VdQndjt3QaTl<h^
z9Uo7F1;#FzX(<VdmQ34(#84n??PY-7=Uh$MfW66!hWdGmy&(E<q>kHC0_@b_pgmA0
zLFDyx&*I_Nb0N?erEc5E>8#~gP$BF2ooych>$jU_cjy6_ux_}9!-#?hME!+vF4w9$
z7Q0d{`ggOc)8)@B^byu%-aovY1quc0c|wU(MlV-^;8TuodRv|r_TF@A=L&Q7S|j)M
zc$-*Q_-=^a$mx=;AnJp;GMZQ33Kxebe~{*(LPMLjl{z=)-d)6#MOyHe5qD^dkpt$M
zBQ9Kk(Pfa>jDzmoG-7Jl0-(ht6j77}M>0=GED!iQjzM^?ni4O$!5z+VUZD=Z7|KZ@
z#Mt?^l#4Q+IW(BTTe*{e@EqKJfsKKKD&xd?&)%wQX=ht*EVE~l_(hgDomiMR2Be#w
zp*9CQ{XSu8l=*s;`Hd)sB&KXdL2W=nhlvT*Hdmi9EQmVg{-^<*-u`00>ksDJ+s0hL
zlb#<6g-xBds1RjG?Rq0vqDp*EPY^HKO@QrUzvF<U%=Xc;ynan8b;K^`<2QV_lAX=V
z-JO-jq7J%-$|YKuKO|ES<3UahBa?Z;(W5ztCB(hx*bc$hH8D=pu-f0rcD%5t_q@T}
z)ANQ#lDx!s?OwTcK%OIn#I#Q$U|jxmAW$vedb#Cu0VC4lHdaq5ClMcEdKzl^@LNP^
z9NR&C9^D$u#NV4<$%ksqtU&iK#Ox`i0EQsjQ2Ow-j6IdMdFds!%grYA$qB`ZJx?p)
z$GTC;&RxnuVNcR6xW?^=f(<=iP(*(ZuS(g|2L>O>Exhy04icIe(?LDCblTD<XL$oK
zbS<TLx`kz@Jwhc%j~m)bWhSj-w@lny!yZT=YzJ@3n~q^DYbJ_MBt}+k{-i*fl{^x=
zOgfqhfH!d1xz9B^PT*-n;f31&Wy^F-8C9=m%)i>pw#b0(6$bP{bp3tXI?_-yDfR`-
z_$C_1{<+)X=jz@JlpgRsHjWRDs}pTTro!a4xVmq-CbH^|#%f;y2o5BZ7_=8Bb2*Kv
zTi8MJA}T_Lqfk{3{1tnCuiv8<&wmmHwPw?5cR$4sC#6Z^L{R0?RE#piMIPZbz#pv%
zSt_fpuzHzMAtv2Fmb%tRkY()KP%`tgykvgOHeFwl$g>uTWk^Y9AL=mJ8PqVJXl8c7
z7x4dt)gNW?av@bDzP7=viz+$Urf<qYIN^L82`{Vn>D&X7i{RC>av??l0Ko*(jx{#X
z1NZ^8ULZqUQcsCo+>3eBlx3kQCF$+PWsNee_f~;nkAIF4&MA>~$)SR;l;yz7kU=E?
zU+*1+!&-YK0Pijug8N-YaJ^Ge?00!PrF+;B+M7*~$i~9-0F(9f?*oC;Dw8oFhSi&O
zo?^=@-o*2Hg~4KtewjDIrYMeDWz5gWqedn7Nn&|{0q1`@AL<!*>U$rYla=^eAe5S<
zHG6|Y`{n|4XQ!cSWxeCTrONIh8Nz(7t<98hLLAN*Dmet%=FZ-`T+-&IXi#v>BuIA&
zn4%C4CvYI>#ZRRWri~|+89OVpK}TyjoCk9s;&inn(NIAwvCKoV@TQh`!2lxwM=PsI
z_d6{uj#{d-&yM4(hrCqtwL{rTL!92j$cDvac>3}m5J>dxnov<yJ=@^7+BW@k1}U`*
zqKmXlv1~8|P}H0|B9U7rO3ZJbWBjTG^c(FdaZb<@GWk$?D)^lMZ&d#h$|vWW{`iG!
z#n--ndKQ9xfZZg}@^3eViJTV`R+*5VpwX4aC8^BF-_kmK(6bORMek=^?PrgQl|rjr
z*c?;=<r*^pL=}raBQZANX!9`hm+R&t(oA4lEv1YqpAMK%H(#_jR=L{yv)+notbz4N
zh^8VS7bw;EJmfU4oOpcz)ftZq9kTk%=;wa9!}<;MU{1R45+{X^f@ip>B!RC!NNlYp
zfP}_kunWogfWi@B>pCtk<jBoyNO0lgMx(BxE^31yu2(1)$CG#5^sB2+Z%PhHi~!T7
za*C;fUD-;`WF8#3O|u;UkvKvH+3EN^vaI*q7W;WU2m7>Xkcb6#MI-}!NNX*}&CE(S
zMLQx~D;#&AX(6r-%i%=PS?u;N>K8>t;+&>EXFg;ERf>>EKtv&@N0*7l7`_Z4hB673
z#6<;?C#a3&B)qQXd5Js;Oi8q5`B{;rhf289s`R}|<$c8TH+fCOPeQn`4^_n?B<>yf
z`%TmYg|A3Bdd*)FbJN)_LpYFj194jtg`M!l5O<q{i1RSiX=FGYN(`;`CKz5P`4|_}
zlyW6UTl*%n!b(4=Se_}C>A$?#Y5ci$Vl^k}09!Zf!IUy6jw*AenvlZ+IFzfp$9&<K
z)$&VU(viWZ(D-%}MeSrVi@3pd;btX`qnJtApIDN-jyO&w-wuO8txSGx8}|#a<{Ef!
z5TJNm%P8o7^IeUD;CoJ{o-caD;|buj_-ZR-C^1=!Su&8cU9u;Eh}UY;k;7JM*7)F`
zagfb+Z}ApRipKGLxEdl3z04vFNphzvxjmt4zC(50dv61J>4T}FL9T&Ryrg7%|3k7!
z0N##`It2|sVS8674-c++gQ(f7Q|i{o?6#)nO!fIpgpU?f8usXlQYx3{F@gRR<g4$@
zo+`@5WdU-X>1vBr{^29VnpYF#FF1<AeE?s@?;FIMOC}~$;dU~=rLC0yP_tenPla2)
zTalR36gCMZv_qeWh$z7^-GFAde=$lUQ^ajfNCM<_k)q&%lC78K{8<SF8gjca*iXVm
zVOYO3TS#*auIPd3d?8HQ-opz|H5*>Y8+Q{I!y@vrRauiIxzbsk6cQ1*h2P&uusv(z
zg;?w3r5*nr0}ghyNkXDJDWs|?%%)d&LbtCgZ??|GbP>&JB?`kfdIlzhcVYCq1q?Ys
zyqU6<!`h*9$rlwmQM7n>y6%Q8&#CF=ms%ZiJAbBaf*|A_1!aT9Qqc=F7R;1{356Q#
z#oHioG_~=hb!gP%u@M$dd4Cz2@!<lAyZ{q&-Ax+b)g^92tHt?Or4VwObTo*L=r3VR
zY|;#;_#grWGd|WA<e(5)`+2Ddw5IP^5t`xgeA@^8y&V2rN6pIkBz-dZEd#HN!kd}m
z)uwB(HR_BHeU57XJKWxV7q*)G<GkKtBq7LgtZ!u7*biQK3;m}#uT^71mRWoS0pt={
zP|^i^#w7mZNi*YX>gA{$VN>Bg2|PXjpi>_4$0JwN%2g6ucBc^HaPS<4w7sw(En=M3
zCvxB_dwh~PMWxGpDlXyt_K2Xt%C89NPq>JYEMeM%n8@aqA*w}L+(zw>#W67#r}TWx
zP=@z_kP#Vwll~+bUZ~WYH4loqSABI#&&a^)cwrn#WX`o;Zb-!8J6revwxdBJZB4MR
z9!srF*Z5gzFtIzsx32~Zhow*^X%3&Y+-N;4BpuDky!%g7o*ea_y%J{X9E%Ld*&a3c
zP>IG;MecDO>wxs(@iCU&RI)msl4??VW4KQw`YU3a-0tq^qxA~dsYgK9U|54b^tDHK
zZKbvEHUiCx%Y;9;ea08;nxoYfpRCWRM3W1Vh|mPxR)lrcT0nXz6RlKKs0?-LrZ!?I
z@NRTx$u|!_YS^y?cA}?7%I-*!U102$nGYS@Eb>L*n&_t5>gkBfR7UmwOAq@*eU*b0
zqugqsd~HnLv_mJ3DMoxStdXbeFQvhvHF%Tc%w?xSR=A)<T$_k#&9744BtS&VvfaH(
z%ZGO;Tgm_6>Ej?U(m?zzu7R5JaW>D}SaVKMI#e}}C_^qE>yu!p{Ff03bv^BS?Kowz
z2LiN7wm&>9^bZ{<o;hr<km)GM*fvKg?3m)Lfy-t+ii+&EX1@rn1zp6fnL!m$9-3am
z22d41$H5eB$;qdSQ5#><Poh(y5~vueh0OK@QMhH_^L2IQu_#CK+|+`MHta~nm(Kr5
zekgzB?c?4kTN*?^hV~C6NoNgbYC=fsj?}_R<@TI+AN>p#HO=%I57k(<dt1Wf_yYDY
z9Qs<Pv&D7PyhYsg!u~ikuOx2uWM*#dPxBGqobmbZf4vh)EmrR&KqZT=F@YNAfYgnw
zT0vQdvUP)|shc=5SOMNh{LYmp&^>C!l8K238V>vrdFmkugFm(b<I+b74#jH@OC7`u
zQpZo;8+olE^lslr6&;)|=WxcegokE5bcXRJ;*5d@;XQq$<1{Bg2hU!>EJ4Yj5MD2#
zzPQ8=cz{aDpl&-2D=I0Kb_!u#d0Mo-Kw_20I>9d&4ReEumW9`G{2z5orM-=H*$fHc
zkwm=E0)@1on02X=&VV@<xy}!C_6c-(JZg20y8)bUo!hYHl{Io!Ns$-!M<St-R%r>F
zl=ZEkw0qHb|C73UbtBy0+aeic@9T7}2LWlMS7}DS0LRyU#B>hgRkP7bjr4y8d)kw9
zIR1qeF|8NIEW!dn*ym=@-WQGpB(Jus&0S3C0l}N1`WM8$dc0=LRPdn$Cpo9Bm+RZd
zDSo1rST7^XGg%!ETI8H%Fsgs#63=_haK0vveRX5ILh~r);_V~NV%&c6@>je<(1h7U
zjESK4wqnh7adkr9#vYMm|8udnUOCLi3{=iqca=K!?|PkgpWqthw}(@RgTD`KNuh;>
z&Tgf!z#RyxBT&2y#8??UFCwNFDrWUhs}}w0{2{Cp2z}sn_#}c~Tp`Wqq*0<qPrkjk
z)f0l2h=a^&Ii8Mw`PTOpEM>g^vTQu%7<Ogf*4dPz{qB%)h)ZG@@>X{5$4K3N^y5tr
zP$V9Ki|*<0r$uaEmR(-ucQ}17%sZQy>Lm<ze%jG$X_9Pj>R)#me<Rx!ss2<*)r*qq
zWYFm=7Y~ev4n=%wt~HslewA1lwu{g4^Od}_@q@o+_*-^UD-)t~N%$yLr924l^Yq)J
zD;qz!-H2;BhQZX^E?2n9d(L{PoKzCAeo#@=_kW%f0c7bR%i#-fh=a|_R9UJoHb)JC
znBpZY65dQ>ouv%m7m`av!)dfjZkOOL+7YN%ynPdVV<&tX7*QJjGX2Enw#8ndzuYry
zeYG#>1mLH&)Ju08JzM)J_mPJ#pB{y2kZF%oTSJ}8IG#vpf!~xdKsLmN<e|u;+u#9=
zsxE+8g!RRo5{o285B^Na;`(5?9|=v1s|GK`pzj>?rY6ZM^mnW@X|ei<Pf|cv?$ux7
z)tdaZ^!()aPU9sr#nThKbJ$G&p%S+nj2zEt?ov@?fNH4R!gP)!B?Zu7Yj7a`SnKIT
zRBzLkoW&StQv?Z70LPJ)DbK%_eWl$eX~%SV%C_&zG08F2P2}*}M>sg25xTneChJx>
zkN!!Uk8tjzROMD8CwVWo?un>>CCPhR%9$D963lT4h=R*^H2D+wfZnm#4emLgRr*2}
zY1~CQ?9`zE;;P1oN^HdCdp`GJ)}zS5i1NgTF<TDzEkK1q$KMo}B+o1M<U7Z;t*h${
zb6lz&$EbSnHf^5me=D}PljoOecXCf`Q7Zwyq2@ZzFORX@N*${sES)Q5ne5>NaRXOo
zCw30_*mTs+ObAr97`gkCJBPNT+Iu}g^wR`9o`|)$(X@_(<hMeheY;~{SO$lc8)F2#
z#hxc4uc1lw$0)W*%tmYJ1cFtLgUPrL%C?b-uKCIoGG%hC2|DAHuOkTz!YgZ|*)iRA
znLNLgS3xyiQ{)c%Z9!sDhu{ppFbw??%ISUo@GR+o-U(8XPjY|&kLo8s$mM-${N5Rb
zOM&;(8km&(_fp?9HO#9}x+-45#KIKv;c^&qfabLB13f#DYaab<vT*woo2|6z?eQX`
z=*~h~?qY{GYFwe+S2c3v+fXUH)wkb+A#jU6JKPNAtVnx6%dVQO!JrSQKJIZuXpXfO
zE3(h_#FLK(M(;UsyTvypcvqjyERm5#)u$9;d)TMS_AU*07at$$q+2HA{yJ+W0rz!^
zJVV1Zny9p~;-@Z(@p(!qi+mx4r%02@NenQNP*C`T%Emt{ORozpLKROx>(ZTtX*4k=
z)@R!_1M{1%BV1*N|9wCTyf{RO^NbTKKjN_!OsS+3Lh@Y-(cj(fftiV0Gi8#4DA}$I
z`r(%X6)xq@>LtfbVFMc)qsUf$5REfuYfwz<JnBXcn%F^nP%F_>EyW)Wg;4=OS_k7a
z(Jl=KkQHbd5qL<t6YG&Z&~KeiJdNa+_4(K#E6M8S%dk0VS87Po;I3<m3c>H{*)wFH
zBV4Mgy>~b+a`wM--5J)j$fAGq_#h8U9|2m1hODUeVd+<vk(4Pafoc(_i*!e4ReG(e
zueFvF4J)4y44%uV<}j2kr4tx%Bu7|rMDSwaHA`o4vvl$BlCoL^%b%B|Zwx`fu`45a
zkGIVB`*$E!NI|}@zY(83uGK<y0a+m~+Lps_Ak&#LM8VYilEsolRy^HuL)Xz=ky&y6
zc}KZ{L~39du-Ixux|rr6?g7F<yF$&kUf?1eRjRex`4C>f%kDmBpyO)YKlH#kDB{WU
zk&>}?D4#n{*V0_F^9#7eA9ddTW#3b4C@(XZ&tGNi+~O8_X;X2&r8$M$oFtdGf;>8x
zp#6F+CNK&^;<8#UA+3#+Bgd&=eNyrm-yJ<yR~A-rcqIMC-?btmjzE={&3VtF4Tx4a
z$pB!zl@~2g)%6=L*Q&lG+mmW3ezwoLkl>cPs5lX}n7RIDuVUnAIg!SxYAwtgrE6(v
zO5_`o<0Zgxc49oYT`7OF+ITKF6HY*u>SCA9*<2fGcGXjA<{U~RC>qVND~$5QM3vB<
zN$S!NGc7|)2%3UHVrO{(YYuY6MzU7MQ6C~c$R*^jZsH-A;C_2G6I#4~6ed7{qfa%Z
zXkE{+aLo90?;)aSSeQSPQn0f-G=y)G6E<tp=Qiwo<FwZ|C#;r<-(7EO>pUZIk-O60
zDFNOaNt%EHe7wB;!rwS4W-(-bqzn1XZF0VH?y3)OB?)hdxOnM2+&~VO1G+8sFt=FI
zqI1?_;Odx2x>9K$JYB7S#x&m*r|00L2yj#9-x4e<76JSm(UuQ2yUjP*mjGupme~NV
zechxcyuv1+7!6)P4~qgb?hWfmdHv^uhE0+i+lXtRU0?2lC@3ovR?Hn*9)mP(lSq40
zm#}gGjpAr!QJ&y1jr)ni%vhVzrZ#%oyMZ%eRkuU%5+RU1N8a1?JG)OV26T$@h+RcK
z_vi1BXCyGPfn0G@7F0Q)hc+ReavVjh(*Q15Hk@n>;?!xMQh}Y5T6iBeMLw$tys18b
z<p`jC#q7!X&HWMuVDA~{>O6*-U*V{l`@#+^ru|@Y^PbH3s%fm;s2(G(Fe{xpLT-yB
zm2110cxBW68mBI48s^ULv7-{j8<*gL@tboX%fNX)KMzq@gnBOSFP#(R9~p8|HC6U5
z?!pSPH;8N=!`O)|3xkZ-<qlJxN8HZ6VOM$dGqH%bNeArCA0u{0&F^mZ()EPW!=`a-
zpJs?;d98xt^q$BZk2{YC^E*Y3XxRh8p55Oj&Sge5DLPjjU$jKludcGhZ4_0pE5;UZ
z@T^YVe_rV3&Fb!m{wv5a4>_$nVV4Pg#i0^&#Axu&unI6Wb;hx`9{^_T3m7wpXu3<$
zEXhW=G<^k<i0#JS>@QW5O!E+%Y79__4<JY|E5rp`F;XXeOCiV|f=w_dBr3j$kGKW=
zj=kZBR*T^^=(o$g`^T)VvjP%gm$ZncGzYPvIv6TaiF~?=DST5ENp_PE)XjyH`7<a@
z<!AmlJy-9!FslE)pU$rJ_r?+~_DQ2h*cKcY8jaFuyjmJc*w$@%t?Kj=ZNWj+d?L94
zZgLK_u0PzRbn#SCqi#Xxrz+r>Dn1=~Enw2Hmo%gRn^|Xj02@!tQy#J9#_@-I=$+!@
zLYb81;5hUpLZ)CQCoGb}yx72QiR+VMF4(`8SBcw0C!B|5BxUu=33^yWdpTEMCG@Th
z$!m24F=)3*XY`~&y=s(mBy~ZBZj`z=nWID+`q#oafiipv32&%nxf>d<crm*P(c$oo
zzGNZ+goTpzJ9<{A!<J|pgAdE%Qo$~}{|LzYcJ^m%xOA9HMsZ~DynffRzQB9mC0=Pd
zWb+>M2?tVV5Sy2v`&*;kQRJRCdqu;Yy|77NJrhwG+vA!Dr{Zhdl&CwK-0n-P1o$Qv
zPrEBuo0?ZRu8tFtmpPL11!s{1U0K5V!(H{j=zCD3Fs_U;=@GLk<SKE=;UZ`bmnP5I
zzjD6Y{@1vBq%Kl-5QCSlB3yo*Rr0&U)6pv_hz%W?>%5d|fo05kAi4ra6sXtbkISgW
z_5umXW#HpuV4Az%qf)i+096}t#;EV`7I*RV)mZw!x~H&MH3g7iDZOidU8mH<GTY*|
z5!)m9IRCPinvp-$|GedBP{Ng#K&6<0oEG%pjFPi1ohkfTCL<v^p2ch^1qBVxXGPWX
z=h_cd(KRX&VBiAl4z2AjGT*SmLJJjj+QN7&JvWB}v7yDA)Mfb<nARlznaVyM0Y}5t
zf>7BXk%%j?vom97GfS+5F>8+iuR&goN|~J<SH%8+npyXN{)xoZ*?BPjqL#DQ6#LU(
zs?*{`{PG80PBv*bdBU;J!OxY;5r*TOQPQ+L8jdLwd>HnwOg!!lMU)hfVl~l{XLxW>
zu(%2B;f|x6cx4z41y#6~vITSixZ)95bOmaLgi527tfwSOU>ZQ{vN{`=%ImBm>(J*M
zN6shMh;BqjCA9pTV=uFn0Ovw;Lx@NSG~;vw!WY!Se#mE;u(D_$8Fuh!C#~7v%i5#i
zlU?`ac?|Unb#f)?%V!wathU&~_b572Q$pj`7%^Z44D)iaHkAdb5SAq=#Ck$;=jjq$
ze3KC(`G6O2JJbjRgZp%lh9(hq=Rt{PX{1Dgyrc;%ASU%;J9HeFzVu^_ZYkf<PONiX
zaEoJm(@QRqhtaEsYM`GIOJX|N>;Ah;WtYB}%fr_s$CZJ6BOF8v>0jMlDc69SxKVC;
zw<Elrnb$zU>l<3BVnQ>yU9jeoe4gU&4|}Mf8cUJMz^&<he=41R8<&jGsx)ns!U2=i
z!M^Mg(;}T}Ek=W5w9`BK(yn$p|9cPWw(I4_UkKwpAnzSFCzw;VrK_3Jq|IRIQRC?o
zH@e33;u%(#7$g?Ez0DGnpyI|KvwrdADc>{$s?=J=%kx{S?v|b|QJ~%2!1a9t(o4x5
zS<N5U=kpD;^MWJ7pF3%}S(%6DU!Pr@WtDkB_EX-f06%AQ+mp%}{nJ}k?4U?yukunS
z|Agn;FOD^j=85r&HItE$C~iDXe+40LH@=Ce9@AG-#*eaYJ6D2RcSVO9S!(5nTUHuZ
zz(Nz~w%0ZW&(wSndy@*|5-GpvY40Nb`bjSE438<*ApPhp4%(#B5JYm()+rcW{iIUk
zZ4nm~<G3f6<-DGYHE3W;Zh6xcA5&+1ZLO!rP<`+GVThHK#xEqw?BOF8PrBiB27p$T
z%~Vo#%84fb8%<-7kTP<qPT+twQtX-rykbf?MjR|h@r|9N<9^rFN#*`b`BEo7yk#Nx
zu1$j%xaiGGTfK9cR@t%~yd2S!9z86%bs1o9a5HkX#CaVP^{ZKstrz~|Nphl0ZDHIc
z(a6?oA66cV&X;J#1oo(%T1ikBtw!joRjRuoFwR8h@%A9dMbBW3-h_b1EfL-R`|(Oc
z#>-XjYhZLy9L0uHR}~_)6LAY<N}ZEBs25scAokmipC&3$#!aY6`H&3`7EjE>hv0^{
zPnr4|#+sIly2A<?Ts#fVDfLjA=8ReN>qoaz%f{WQs2}RtZw{0x6cWpAd0KS!?l7l`
zu0+Up8Hb7|RLH92!@7YfPYS>TRc(OA@N#1(H^qum;{N2?iZT+-^wKyq6^}Kh8Ax~4
z({G+@pZ6(TS`~e1c&z(<FZWTuxJHVFpc+=@dO&f}hGTznAGzB}38Ck^?ZJoqEzCl?
zcnx0e;dikTjGMs)Vve!MsZo{9h~$F*(<f>DbfA^bMl;$S%8_iouw1%{q7e5TU!LC?
z^(pAUDj1UY3hHpNCKNwt;+w*tg$d(aD&AaGzm6q;Of$vss>5r|cl~c(BY=bZLJy}e
zVauhBylfcROT*mC_F9QN5v`+h@`(2x>LN0QlrDm3&EhO`{9@w{?c8$=yNKDEDX+nH
zIefMgV8eyWoUU4M-92&qKGH(l<YW)a?myq;$_~@|DVQ#6D$E0d2=y)wg+K4%@ggLa
zpMrrQl7R@y_@=IhRrWR=aLj^6cNeaN68+|r8cg!r@Jdt7sg}s;#}O$%`eWot=l-$m
zvf)~Bhe5Ody6Cd^_jJ`goVR_Txm1<iN}jL8?%W5IWz;V8aA`q(-mL~}cWttfY!b8|
z7fWgSY?A|VT*qX92??|%jBQ=Uz$29o+OML_-8LIZ9Hv0+z}}j0k1RBP!->yui>6j+
z_pGTy_#!1}xiQ4)I&2;?wI(z82}SWtq~B=od*<=M6jcF1DTS^DFKGsUXfzGrK^BMF
z50gADH_-E4BC55dsmYHU*6is~mGaD20KP)0rS~v_%Qat$*|t6&RC1ZsIl8bgSy>Ks
znkBokuEZMfM#nOe!;q>Jo--w`>P5@t5z=bH&5&1mJ!>d%@G8by$dB(-s{;}oU{__s
z_fHpP_RI&kvQ5b5I{)rASch`M8yBEZOVSR!wX*{0L9r~w?bJ8((T)i3tH|0oq++O-
zKjx!Uh~__yAwO`%j>+QMRHN|x$heVvAX8hjTRNQMb{@TQ`ZIlg{lS*!*NTgJ9_lZ{
z*tF#?@R9H5pqragu8bSTfVF=f@k>H1&e#9U;Fn~>_&v0_79t1~U8?NWn3Y9Zsx{UV
z&HXN2w&r9K-4DOli}`aY*aOm$1ZX(?9ue9GDokuLCi)j+EfUyKmgFj*yRPk~LjRr*
z+X=EqrkUC})ok0vPB_XOj(HR%8J!_B8Ya}hMVq9nM9c!k76fwAsh@{e=D-1lX<M9e
z%Ef<mP*-*D1WW{f+<wvFcp4{AHpyCCFNB$}&B}|gVGgEU-F=4CdrFWRtG)@<>2!v_
zR|f{@fpx1*b^_4g;HYcn3bp6C;k3nx9PbM?&K`ja^mcr=ROvW)pYPd9gV47`9C%vK
z#-g#e)&t6394TLXAJ(aR-&o)ZnX`}Q{9H$Ul2GPNC8WDAUpR>DPDl_g0P=ed5o|4`
zd_4Ais!7a${HCWU42Vx;3oQ>!&sRm>YlJFwpijo3&&jUr_mXK-MY+v>6KH3?^jd3e
zpLExyF@z^eR6Kq;_o3sAcC701wYj03NZONYoCXEPaYjoB!!ZjEjOA|;RBwO4<0-Rv
zKDHgy*Yol}f%l2dFkbq5O6>2rx%IHaq~n7T(22)H!jno%!^fU2?DqR?`;eK;|7^f6
za9loYca{A(i@D*ttm$9Zp!*l4lwSlY`RtA2`z^vGDfK=gx|*ma<2#n=nKQ{Pl<qEu
z@Yg4%I#v7fObykI2a|uuruv;)8u7a-YVow^d<5@=`$0yYF1T6BrbI4jK$NG;!(1}5
zPd&~4&!3_{e@5`UivLhgE$|5dN)g$Djk27H`3PQcQVuFsS^)g<aY<f6*~K96Ovr4f
zb-Eaq=$~io$%{L4@^IN1R({vnQK7l2tk0Vi@Zq65V@F9VIwDcVrH<!L>WVfV8T}8_
zQu}kojWG#M4*ee_D}{RdR*~qE3JG2l1$!wq>4GnIBUo4n738U2Z78*;z0bWzKJ+tn
zMz)*co2J$6%6?;d3gNa~^g<afB679j`|+cQtvkoG>FL-_)aH-0s*ph_(zw0A_izSv
zgn$jX;o}Py1sP6iYUqHXuc~sMl0C?~$q(d$)YS1a5K@mn)rM}7R!P)Cc*E&(Ic&P=
za4fFrjWZkGwqfu!-8-jHrx=`wN05Y?^>;y;5?{of4(=>CR{UtBz!X(p5q%Sr`cbj>
zWChhgyrc?;r28ya{Aw!XXCN(y%{}^KR9ax?U~XV7V{~IAmF4QmF<(bwe0R<iK9xsA
zRuMw|`#Jp^tSAGH{E>LrXhr<!_NAO(xP>#dC87_x9acqO_!nEn%Ua`G%eme66wcDf
zDlb`bvu7)OoxHBmcWcX$`W~rsD?n`OECaj0mHD{Pq>}KRz<3tmJM`C1bLR{89@(Q(
zwMI%%u0J{lwX&lFr}K;vEGjYBabx3}J~oQanw@6kytM8<3VDc8{$L+CVjx7o?nN_n
z#<~$+NviAh{7IBYbjDVJENGv7BZiwf;RybFK?J3Ghpg+tN(f7z5TD--f&eb_?oYt4
zztK~@zJk4}VwF|u!}P0VyeGPeJ9l>KwaOt35*Rf!PlFFvQj@z3;{FN1K@fyBn7PJd
zUi+1gn~_G|X!w}fl`$nlD<c!i{4|wkjEhUk#^Ee$Yr}P-a5T!R<+n>&J^bO90wN+$
zg*58Gw_V~!<L-EkM82_U{oQXtyy}R11zS~wGxTb|L9;}V&FP~LG@~56haLwCccelG
zYUO|6r*-{X<HBlcR2N;`r@dDW(Ja56oz__?5tok}Inxdrwtp6SjLtDyVLT;>RmyfU
zAml0k*;+(u;oP>ZX;36d>y3=BK)xz)+TJuWqkopdX-mA?e@$y&LWN+^b|L+HH3j8e
z+O*-yAkz4!QbXg)ygmMFcHUah3nrnI*I3k6s=;w_=u!?SpS}>AI`#zRn)SMcHP6rC
z3kYcm#!`{%9nIePoa{awoPfn(l4#KX%GJbZ(_M(Gr5DF_$+%h<O5}RVg~sbc=AP9)
zJo`Bf{-L`@)-V@gSgMiFX`80cW~Wf?v`tU2EyP38GF)IOn|q{qtp#nh)h*w$aU6T>
z`1kipDcaMiJzA-5(tK@Jus<YQgxHDaJ)H#@3+|dO*X8wYv=x;tPT)%O#MtO+TC+~(
zIBB9Tkhj<r;hyc_;xK*R`Oi%R3`iBLy_)x|ZF-dRW^*S86h~X#PraGsKD@z*K+=W-
zXai;yc3y(N)Mf3B><hca9Em_1*BzpSG8MBhO_Mts0VKNmg#j5KZd+W9C6)z?$SQKj
zW6=xnG}t!w5p<&0{?<O=G+j2K%T<(<`*j04@ZJs!I3g$~?)=SX$138#?Cr1~#14gQ
z9>6*8j~PhrFiM6j&(kyUa^x8+q=JtI&Odr2ugUet4oGML{-)sxLtupTy8Z#!%hKZ#
zhICgJ8|qN@3S7+t5)I6jS0T22k5jecl50Z#lKo3#UYx~DyhnOQvcVGu*M=>{f?6W+
zea3DCNv|;WjhzK@X9R;Dw_n>Hurtv}M7Nl?_E+sb@3D+xbu*_LWrWv$mUZqN;-*RR
zVhl25Z4luP+Ky_=@%t|9-Xt9jCPRQn-I`pOvpNFq_1CzSHB~QTT6(qq>P2annMpQ@
zH*^j(3*l#DZV|BcrV5{9Yr(M*9Z4&sdpUskh`+=}B)8`C=(ma#dhBQt-yC;s&NVLx
z6anTL<O{l942TD-(uc;NY&!9NU8@6A(R5LU(L^%=Y+!B3jWrfKB=8`Kvsjx!QoUF*
zET2<r#Zyr3^q3~&f`Gav(kyMl0ZNm8vk)4-Lf4SS?nb4VM$5$l_~Dfl&E5%e4tHph
z?ZI}kRd(Sau)P2sebg{q27)kLoR2;Y_ODPGSs~bzw*aRUUx~eWz;@%>rfwRFM^?pH
z9vY}74&rV+s1<`5vwm8HI#~%~!x2KTG)Xr!J-f7Z(uBPUavq_z)qBv`i<QxZAd=~p
ziw8H0WKB-W=^UMn0OwDVS#dLGLNIq+J&RR22yr7jG$Ze^H<@!GGPMH4geX!PJ85np
zp3dLH+vanj=EQnSpbKjSD%>tjp$=q>xV2gE^+zTAAHUaK`4*pXkO<cMI)hKqHp^7Y
zoY{@jGQWQ}$#v{(B#i!wj?)4qwJ2a*LE^BfQor?gbab>i!P5k6)PDvQ?mSDqRM$Ti
zW2uStl6iZt>&DKi)^4fGSV$Wg&?$=H0BT}8`vnkZ==WCNi!6ILRheFf{s6WBbujCJ
z3W3YA{x#Eq&7y~skwnzqexUz4fn<4!+`PNyVoeS9XK$8ll`9&(rN)ppq1~yzEqDUL
zvhBwRxfK%KD1<Jdrkd@_&gXkeU+Vry&EmLs94YDPuH1xc*5_P;>W9z4NK~e)qGT+c
z>qAw<%~KlofrSqU)dT`ndFouVx*`^`9z=8POyZQ$FHD^diW=(J%BQmjs*6dGwAd<V
zV@8(I<FPelq2$aLfEce~|Ke1N=2;H`z?Ow|AZZU6X$oe2^FqFsV}EtJvP$$V>xXtQ
zgm05|jl&Hz&vw$Yj}2Ubww(^sS0dgPDvm={Hj4e^Zf|R48e188OUaD&v~__Bwqq8Z
zqH4oL1CN2#$7`#Rkk#LRWa9!urC6=GO%Zr}e5#fje}v{*taeyM5vNeVI1?~1w|x7F
zcSR?3fM7e%^wkkGBnAL?m@iG9&yWvOEurlWa8<UY7nhby=k8J7+Eoq@`l~vR>%<R8
zdBpfFSR4vsN-Cr_gB@cN5$bIr9xvojM+eEYR-9zrLuRS58!KYr49bID_6ld4{`m@p
zSCrNvch^r?ti?ld<B1ZrSx(&h9}rlU((yIpN}Che8=MJ8ZZoSRJ>vriSJjvC>j1xX
zxZk0s2VMndhEn(8w|1U}$%xIlS^;!XJ#e(uEpp1^dHCZ|7dK1;QhKSsbq`Xm$)@n6
zRJkgeOE`+OQTcBUCEOcp1QD=4xgYz67sL~C2yvF+(5{B-aw*iI!t51XZw7gY6wEw6
zn$Ofu+fLqSiy4%i&^7!j&JrQ}vfF7=N7s8W8y;)CqmZh_((@I@MM%~TAWc%Z2R;-I
z9-JXye`x<Vo|2YlC!BCH4OJe`<(BZ_9nipv<S<3(ceRZ<ACYCV=S=vv_6LXFp4)1R
z3)_}6luAIrseB(+a!%&=;|<U7{8C@)(emK`;pr{I+S;Op>r=yuyQjFj6Qm6g9E!VJ
z@!}4r#Vxp7ad-C?cS>-F;O;K@a_+tF_a}eyBze}}D{HPj*BoQw_=OVBi=<vdf11Lh
zh*N|E4cgsRI=$VFnCmqwo?$XHu=#4E!QtUysMX8j$XtL_lzg|Ge1a}r6E#$o^>I>M
z<5jvQ;$nU9|Naot!J)A2-3#l2#fnH;{d`Gl{>|+&YHIz+j0~FeSca8Ok_dw;eS8@f
z3`J5DjL6>JRg!xCbnW_gN@eQ^Q7n9qg^PWH1P50FcQU|FmUq7s%NwYinbg!m>-3p|
zP|nVd9EYBS1X>6(nZu>D?weHsS9}St??mqwaGXjz8BU}M#(uP+p5<>5F8@0S&W{6b
zuvRg!!)O4YJSUmt_{0g!Z~48P3$0uC{ny+^5l;E^A=(KP?0Ih@Az}SO;rW8}s?Ki*
zunB^*^l+(q&^zw@0>2!{J<b^JOQs7a0hN+<q|iHB{o(|ivbPyiL(OmVxFXSa?Y|f7
z&_NRo<8eOqx6;BqeIxMja6+=mfpTeaSpI<TO6h1szytr(aLh=_o$R2=gk<7ybgf8d
zRU85u(!DS%{o7fUqObhBjg?VdTkZpz7oWh6F$q~1wK$uM@hv7+Q9F%Bv`q1+Uo6dH
zvao-Xl4;>cCt3#$<+RNCFicX9#-+GY5iu>90zGn$KYLTCfr#)RhWhpSGSfc|R{)hi
zX<<EqhK75KKr&UrA$d!I((gC-Yi)gcl|-#*+XM2<p$lK1dlbwS@WlNfT<q~Nc~LjI
zmEW$T3FiwMhF7PgkuRT>I32v|Vn<%CSQ2XUs#x?zWkfoI*!j^advL7eb^Hb@A_;E#
zFd0Jc!C!?n*&!O?X5G*1ICzvlxMguAxx(IUd2StH!GzW5T(%K@c5|l8oc%k0$%C7)
z0jxB+l{<CA9N~(gm^VSPr+l!fq@r0DrF23psmzi<Rh|C9i2HjSV2pV(iTLXQfnec;
z@!jcaavZPpU|+j+e?*c|l3ufeP7(h^BGa@7-c~%e0I9v;4M-_<A=&QM_W)ztgFin>
z|K?RfyZ`>oj9^PVwHq;A-Ma|4#2JhtE{x)|yUVXnxWc~`qBfIbq>8ojTy!TqyG>M6
z3^uUceaC^duKZqf<;W1U_?2|lA0QVsU!u~>oqp@c)psGLAb(h}?x9%-fN%~-1dSgb
zycX6&yG=DiH>(>NlJuU(zN|+ZHLg@V$FFpFO`B>5D08tlbK#Lx6|7Kxa4Fm8w6)Xz
zZt$le*=d_V7s_oEa=#xWqf9P3PbL`~EvOk}E7ih#i^I@kPOU&H5|1>Cx9&HOg284l
zZ|1McLstpUdkRtUC?|&dRhT{_UsakuBa-YFku%S4WkMtnhsAhJ{$g+6z3YEh_1eHW
zRUM)3QlY#vIXU@hAf}RXxHKj2PJOflXpUZ}#_;?$*H5XFc}x4dzwLATTVX)ab+&v%
z3JZ4vvH=4+?dsi`Ru@VAEuGrq7{dSyDnD41bZ@1hG&2}Wd9r@b&|P!9Gz0qz>wH=1
zfigzO`}<Febh(_58QLB2H<(b7BP70}Ot(}hzY~~(Mp|HE=eigBSi`+9$ge<k-eh6b
zPid21qnqDzR=LE$3~hAM9%R$HWteTU5Kkj0v|tkWBSxuJo4;dR>udy(67zUaF%@A3
z$-eM#vp4=lyRnxj=eunvDgJY<G-FCeV!}_KZpmG{1Hm;4Oe1{2*k5DvIx8xMkd65j
z{F446`UiloKPU;V{Mq?R&6Jkb)qmYWW^U(Q(#Jqpwlk}COa@*>T*<rIhzr12bJ)e(
z4`?;+C%U7(jH{73BnRHvVtx_L&CM1`zjH8#;p`$J<dvH8h$4W1$IEA$0&CVnX;oce
zkzBMF#e#>YLaSwAxBWYCnVxI{ePhR0CbwVk2I6X+`s8ms<k~A`=vwvemd+`1Lq<lX
z@`(ZxWq#Skeowz_f*Qraclsbm$O(fPlC}N65|ZQq<xvVtLqK){_EpXxc1McBV#@c!
z3x0C++WlGv4LOdV?A7Korv(*RcMPWbGe<a;wovm;oJ%^K9YUNiqwnaqN)956&>XRt
z$a7!C>Yx^E((~kVL6V8O<{8!{NUcDQ%D6-f^uS1ZL*S-5B=?DH$%5ccm_0MapK4(d
zm><xTwGvpB-`Pz^RfH%L5%*6dj)ADF`o;Y8FTDPiZ@+-|Hq?grTN79+H(qzCSfCdE
zlY+|nTD>`r=QKJke0V1+>~DSHKQr29gAJ56KdVYnt~tNMx_)x;HTHESB``O~`4HJ(
zC|msc5g7F<V4rHF7Mg&)53ibU{C^Q<oqFJEZ*nr3O^=ns>}4_VK1Z^Q270s79gu^7
z4|C_?zF2Xz0}>Jv2<)XmDeJMAU74kuA6mb$yKCvi{)%VX;hq(;V9OE5cEwor!HCu=
zS}S}g@~Wf(JUZSefr^{gelYc%nWcs7vOwibv^Zv#Q%S9f|G_!Q_<2EW<sz~dUV;^<
z#J0T(JslHy4oL)6RFSOC#INOb%?c7GzQ2;@G2`dh-n~B9S8KzyV+032&!^Qqi=lOf
z=TXpeHspTv%fJ8~B!%oLSF5&cd3KzhnVcnIx#~1zgV%CgY|uqz*w6ZpTUu~^4AAN4
z@%J4mwl2%9M9|rL^EM5ykAaj%0HTmnoi92uf|eMEe+sp@7~@mS=Am83<cmL33h8<B
zyhDQ2w+_DMe&S2fFEY6eFjzXcPCOh#IU2ptvC!r>=L5%lqTW^#5%J2NX+-8O*OFQT
z5G&5x77B_K+VrSgR2*tTQf_XiXnhIIn!A4+ko1mo3f!J9Dco{6^b8)69q?IU@q5-A
zKY5BdP>uzq6fW>pv8QO=m{sR;)wd;?Pd8NAbrQ?{0l%dEHPoFQ9f6aIt47T)a9H_z
zb@nS-Y`qgwBi&D}H<CR=BCVq?KEl*{<c*+7QBWFOl>=+=aGnQcsz{B!N3;<*Ht&1>
zDmzXpOz2R*m6ee8rjS=%#ztb$jrp1h-80of1T}%H6B3fy#9csw4oCU_*FZMYmBXS-
zzXwF23BsFup5v@mI{gbZ<cNonQ)M*L44P+@Gu0u|e>{o=ZYoFOx?|EYV`bnt?xng!
zX}x6KJ1&2b%u1KYZ=7PSARqbLS=#Dpj`D|y2x{rY%D|6d=6p3mOV$)hy(i2mR70^`
zJoig^Q$KOdIV$1iDAxXu36iD^U0)z(mggG!CRVAD-<x(y<wEC(+pz%WI9#W8Sv6y^
z_H3hH`=JEp4)8>u`Mvo40|zv5xw(SQZ+xXdIeXs6C<{h1_vi#b{+~kZ5ou&bP7pDn
z({c$f{m)JwRkg~|ckBk~Qpdfaf_uY(k3GKWCk<OOJr1a)prO|<>I+%f$YkER(b2SE
zv)|x@e={OQADg91|N8T_Paab<0rs{0(FXAEaz}6pn_P+&+T@~IpQ7YOmhmfrp&zaI
z1JbM4uAMo&+Q@fL7c~}i2jF&sym_ScG#SqBPEYqTZ(Z)~5BUrxjz#5B)|OI+t8Kr3
zv%wM8uvM<)TGeUZCys1pr8QSlCS)S3D=^bcPbyR1lbA2HOj}qRf#ZsgDbnf7cGh#V
z%R4X+5jRc!$SiDJ=_)Fy$DU|S;=f)tk&g7XiC7r2ZW&GX8s}qOb>z4X`vIYgst~js
zH7E>M)Notax5)G=GJYhWlhEyRdJKzL;+siyP0XD|#bKXddcx~=`fn=O*_m59P4^L9
z2wa%$<VYWS27D;+r6(m8XHhk~El(^aU<n|qFM-J^dzj|}@IYeuBdSb>Ve*1IMUtez
zQ+YM!g{9n!_MY=MovDp_qf-=SDkOG{i#6QPXTIuFF)FR$k>uX8#F6nMpBN!G`hO4Y
zZ6mNrbf87jCfu<7?C=p#SR~;OABJ0Kz8=}Yn2!8sbHQ4A5^J6vx?*0rOm2z?9?t{~
z=b?#HMI<#=CzvfYG*7=NO^(Z9{}UKOGTEX@pc3vs0j}y}zvSAh64}`pDMdGO%h1=c
ztC2Mbv2kb~&JyBy@=Z)`-4~Ug?b}&($%7@}OG2%mRp^!WO%{ba{0ZM7U0d~B;w7J0
z8-%Jh!4;_b=*$`I2~sZ#?5rJYv(iZyMZAbUz5nSVhSo~b0&ocbW^!=tHM1`ygW`lr
z2C5p*Ti#SBzXyfMOFpe_PvtYPk^_Tow0ei))p4~A5$Bajk94*we#f9uk=sG#)s6AS
zRdfn23JYds^xC=C`H{OXWwP<?5R|0)gCFr4^Y&gx#s!AlJX69`%5pg7^ks+;@fgAO
zv2T#3@&_*(4~e~nK0ZcNMi!1o0tS*6O@#J`7k0*}h!+P3OZ^>78!O)0(;^DJ97b(V
zJ*rz-<;0}!Kt=P+C=|D627TWG`|?lC2;?Lwhpb*D(x6GV;Bs-|^)5$x8bs6ZD|$om
z--0f>ZQgO@jF?VBwyrnr3Q0Ph-*HAYF{E`FWSs@3Z3^OezRPb$b)Nx8J-VBr*9Djh
z%l>_PflIiAxTKakC$r|*gW4d&>H2BbHV3iaD_-(U@jaBCoIw~!)=7FlR5+mXarf@w
z`-9ye?&D}-HV~O_kLmfxK;5%#sq}5xG)^n}kI5C5vnwW^LWQPFf9my@`5_irWiBc-
zm^H%+ZYk|{0ptN4@Xc0{F=$-d!IpF?*>&pB;|*CVu!Y?bg1+HfW~fk>wGX9+o42sA
zqUlZ21biq}lXH<Cvfin*+`34CVxlZec7$3JuQB>OyAK&GVF-?8mzO(1u&DahQ@+Jz
zR<<LTa;KQT9t*MR)hD&S*y`M#t+*t_Ni5Zw=|BHeW75A#JQGY2x+1JQ*-){uczB(j
z(tTK$ESrNUA!(}5ZBmydg+|7C%{H{4_|11`X7hsh2E&o7O}|jsLsO-)=6O29-gJV&
zS*E&0o{@XnEL|xx+&smo2_v5)dFe-8#D8@p_rScEbUw>tQ4JMZTYNO<rRHt#N2$4-
zuTAq=fmnyyr}_6mN<)vez19drJ?qy;0%Ch3A8WQ8Osz=Ab_?6XqrCbf3Z=!}?BHH+
zQ|I%sXa=H8wud&y)|?KpE(r&_g5@vZm-8j($gD<QNN}r^g@8W{ROdW6U3&{1drCcX
z>kQWiDvusygP}q8ea#na-cCTqpK3?^7mvs<Aj0eOe|nK8b_2g*cl$f34t9BMrFETx
zdiXn9Yr<<2_;E98UZjH_GA)mO_@L?q{JR*W#F3>uI(LyzEbPpi4@S3w9#+aYAD*7N
z>3flJRJ@8KJ{WBBE|klAh7n1bc)Z{0!kV-<r_T5lB?Ob~&lIpLne*e9W)eONLX(TO
zJ(fHPN*=c!#>benp8S73RUTlc-UIHGy$dAesLFz1JfhJ`#Yn*$T4Aw&@SLWo$PG9{
zk#j<&;8vVz1;uPaWHDnFe#PJ@V)1MoQDE(X68@6B%ejNl!E~g0urA-$a1)zk2E})5
z;j2;7Pk78T{3cy>nT>5*H<ok~444+P%jnnkFvTZpJTJj|G9D|Xy`^Otb7wL;4fh3Y
z+)0^cdRauPV($84^i8h{k`LU+>Zn;^i@R4I(?px7skL7$9G^6h*%Mge{6Fw7Z0BoD
z{zS*MA4`qvC2rj3<N{z$bqs&zKNkPe_GmDav4Lq=YORA=DgLP|n8$lUrAUDcyL*ep
zRe`cQRXds^fg#FbA(ra6byFT!OZxa^OB-k+*o)NITjZczMtkp1bhZ$WoIwZoPMx-5
zbptEVPNjVxEojmYci(+}Mn%u83mOu{pds5eU;BVjc8y`31IMuMcj5H>%{gauz4My<
zrs5;ZWWm7^BYs;ZReR2~_ZsyYn`7_Bh1s`Rf8Mj#tolkskU%9t5NT38#HDGApDC!4
z6Hwk%5x%H26@ZWX{p;`d``qKukq#qXZu1@w`dtoT=CqOdBv~pU<@Iri%six1EBIrK
zFbl4)oZ;Vm`o$ViMziD!vSvS%C{xYA1FurxheO`1SUk1`;q(^VQLvbl`ZO-L#y*sz
zp%HkF;|&SiJNv?8##Lc3v?!ycxu|f#U+&~tP207AK+%SL2fFH&EF_-)w&%OdW_FG9
zhIk-v#I={uvwY$;`R`|-v`lW8#Yv(=Y8i*6!pZuhO(>K~%i?jhJ<tOtC(xC_^!J=y
z>vRlMJ-5Zm6vW}_<1OOXRAdD&YeJ=3pGdii5?|*_JdU>FJS$D>T9lG-wWfs>7T4Ts
z60g<|a|yQk*4|G5j3LylP|7=6IDL_9U-%=rmF2u?OS6zn@VOK#YUSWq(*xTkRNlp)
z&dNMX%buE}iU5Op?Az%;>NJ5TQ3G(Z_-cJ`d|2grIW5VLWr;TEnMFm}W6H&hm#mmK
zUt<8oyXKKiO)0E&lG;bN{FvAcB!f3)5PyAy3lzV^{V80`a-~ktGY3<6#Z<k!t$7`y
zE=ppN?=q1uJ!Lb~e>ufBa*1&F(r@W(!9p-aRxiQ8naP(O5MORX`QNZSwRu%TF9fx;
zUi)(XS$EF1w?GOQE+m>Rbaq(d<13pyNj{p($1}vWL&I|z86R<B(i3G(uHO~@$Ag#m
z!TIGeAU4Ourg!02vv1hn2(v`<vFtZ`2E4B-ma5)u+PCu8)kYCZSCd~Cm@uvGCh;B)
zW>tFho0?gp=uDz8VLMNpD{5ABrS;ecwPGuN<<z#Sc=kt)7JoO@wt1v!l;dl@Cvk<O
zhyiNcTzh7zP^(UFC4;~TeZ3m4H{Ly<nHI0tTc5X<Y=5YnJiYv~C-tf!QY<6W=1q8c
zpJg}NwIn0>do;EgS`*UlIDCUPZ6q$Qb-pXk+^XC$t$k-Mj&Y<BW(+bP4(Rrm4tkGE
zLJ_%UT$fnw65(3#{Vz|eyCQxk;WTv&3!;zf%Qg-BRJprsdS#0OyUsro!)m@Zj`=@d
zg8m_TE2+CZ0+uR5w^j*#G}}tYwUX~bzklo?r2jXQmxRXz%`bF<iSP85KXnWAfNd*n
zqs)Ll^`_$y8+F3aTz<zyc6kI&DBffBY}J3r^ZK+PW8ZllXDOaQI^?*oT=8tYc4i=R
zndV_#x;*SPy3z912bsXR6<6AdVd@RI_Lqxj(L}cLRg+nZhb2)~$Y~=vuw0D|@*xre
z`(p{76mmd)a$1O`_0mNvyrb1Pbe)+z`Vz&TX_gOk`D?TUkNaUy9|oBwASz6==NV9I
zSFxR2!J&xhq+ti8-mfn7r}rvzJ*=6@lxy;qt%k3r<T-s;{CV+WKX79!nc!|#LtE@M
z`iL`~*8QD%dhfVCs>r}_Db%5tp4)S#sM`NfsqdR>k<_TBeh!g%Tch=kOFF-Oa3oWd
z+g8y9D9BH+J$WG7_HThA&>^V2wW|WKDwR${e?q_g2We^kcsLRD-9GnYEM2tAM=NNX
zikWV6wsgri0kf*gU-p%T$%3m4nV*k5g7|<{^*#rfnx{Gg(1&SH+;l;(HLitb&{7&j
zD|;&;G36#+dX8KxR5!aD<Kq&vNkUKeE@z0X5u4uMYJb^>^BoXlN3#H3nS<keQNEp$
zhpnqQW{%BxiS~j-Je-JnW9hZfPFF0{3=nv(ke&H<ExSMlQJ0GV2#HwVCj{a_Zr$$<
z^prBP$E~NkSa_7W>$Z<?hBcC%zb#dX&P(v68XA~`*VD#wctRR|@O=Nljb#ejA2mqb
zE>%t7vSRDd=n?_8rDY5Qr*pwnss-#r$Ez%ibZoQX=^FE<f~`)p%K{ED%AauRf4)v@
z{q6kbT}Q+iN-YwGm2!JI)yn5J-Tt*sg|Fw<Q7ST`DzJFE`U~AL8%@vK;<2c-nuww`
zAsA83Jwp9yEnH_gF6S;ACjX{s!U)wVoa&=y{Gh}|5_Za0;TB(97_RePf%#<If5in+
z91~EV&yGuXBy!2wTa3HR(n*YcblXbi!^zRErD}0~t12^QWGk#7eNgxl!^O+a-FtI)
z#CM_=2GS^j7UV(t)Cg&|`DnHQiW8H#v#QlNxT(Sjv85(*OlBhu-QR<M4U?z6P*7?^
zPaDdl`=}$8t=3W^d3DH&9=2^h9+$w|jRV7_A*`fsFGp?W2x<w6)FQ<Z&ytZ(^eJj!
z>~A&b#0_o<`iY)aAJ67OPu?fSP~AXC#ZFa!SA+PKU>CH}8=c@5M2e=puNhs_pV~By
z_kh(+Zzun=m|k*KD{YUM2bNsYyZI)C9p4d%LKa{4Fot^6N&r?y@zDkRJheV$vTo0n
z(PJW~Kk)*&y6Ia!?Q=f?l49z>eQiFm+ZU;F;kAwy=WI_RHMZue6(UuIFA5duc8y3b
z-?!dlqC51i8h>za>Zv#nnBZCe#IJbTKT2Jx!&{57^s9N_g8zOnm4wHUXk6{7=DCH#
zNBX+2`77Jw^?u}2Bmrv|p4`G!`THW9kuljyT*I<Q(tJaSco8=lGhvy(p$wVw@i`%B
z=EURPlm@MV;4S4lDrDle2Nd}M-p%pl7++7{wBHStsoZ6}qDyRrH&xMN={z5bfzyJX
zS4g5MSp^e8Y1d_$KllF%xE?fSH?<3d2`1EbbEgO1f)=z`dt!w|t@Ua#Z}i+~ilt%s
zmLRjHe4SqMW09N0m{3i#^$q|f8il3bC#<Sc1SN?#!Z1iIeDIdu4BLvbJgvz_SW2zs
za`zss>~2N!PByUiZc!#<r#hHwF7#GI4O)2Pc{y{Sko0I@n#@YD`C3g3^kq&Mh{>Oi
zSe|h-1Y~K(s8;RVL|X|m)yFOB3`R|;Np-EEyxV4^X(Bh-90K2Ww@Br<n+=PZWBUP{
zw?;ZnGaq|m1}4_RX(B_py`b+yuB~I*U??5bIU9+}-l*)9#SITbnfl?U2mDo?^5EPE
zI#kj2^e3Z7?qU65J;6xq9RSHv4Mi&$gQi}QSGYZ>-I_+)1nTQ-_Vwu6sFhbHKSsB=
z8zB4WxT6P#b<;|vlY0ui-q0Imck}FFofuC)Vkp=f@>5+~Nr2bv7Q1mr1A+}RJidx=
zojutWE2O+rmQ~cNy~N8^9s0U3;)JcaQGFeke6HXcS$|1l8~$vb`t0b;z?_`Fg<Nyy
z&nw*|PqS90EFhOIy$qLluY<N%YiBi-g69$yUsl+u)9L<>K)Ry;;Qsrq5lTMz0MJ3+
zu^1+C$;xZH`Xjk=sm8pYxg+>@^7Ftk>un$fvo)OvRZiw=yvo?}n`54@v{Hh(Q_#sr
z=*<vU1bf4HJX>OP$MC{Kz2`Ik`z&mO#Vdkl{pMm9+&mgH&j*;0)h)Z}Q0&yoZ2QKq
z`Hw!IgFV&)%v{4n^5m2n?S{2myaa+jYJm!;(PUYB=hi4Y&(x@P<-f{&6Q3LdN$!pQ
zJHg6OeILp6Q{d7LzqtY#rm$Gy?NIX3$y17moh@TDqW8(`Zui}5StjD$ffG;~`T21)
zrry;4LIn3$lzfo&-HqxhQYD0yPj~CPGrO9{$o_iOKhVUJO^)jCH2icok2hB8gLOfV
zAI$LYfNpc>$tp6|7uo-;$4D+og@F}OruVQ~k9=|t%#e8OkJy~O83rqOXi}6|NAx$h
zWnT!hzAfgFs9ACp`}1qfcsuPJ#*la2hV)b}bGm-Fsw+o-A1qE!t7v^0>6&0!D*FN}
zZG}B0cSeSCeIKK?<1YTP@F9nDpLe@*A?Vg#7n-~NKKZ&zVVCs)wcDSDDrCDl;D^@K
zck5nZ(-RP}h^ZLndv4p8qab3`pp{>akxdH%dJ_%8i)?2UL%|o8Uy6HwxjvSXF(0Ho
z&rRNe9$T-apVc3whX~|Uip8UY|0@mzQm2fHw>J3W<uM6eGG?we|6K3~-lses6L@uP
z<IyekcJrs6uR|&jT~>0OtP`b3jW3<Kc-khKAEFqla2csIXiM2;cWfV7lH@+&A*aCs
z-8`d`40l4!aR0(Dt=NuoX>X!WM>ksm(y({8m10}%A#)q*Mb@lGxZ*vCy{?!#UW&8J
z26xe!?U%@q6m717v>(94V}rFwH5c!Csi`13ud{^OSrPUC&(R%9*|hTpfIksf8+xDZ
zyTjwq@p-WUPw0AcyLj<Et@|Czc>fsB!PZM`kHtL9tP3=cf52GtAToZ;G39g1GsnRW
zM!?`{;$J7?2ZOC+pV8ArI++;66=o*{w8h1-^5@!X0_+)-Vr&N?cJB_zI}+V6HAt3Q
z@THTh=#=N*+(!*fHa^a$sqI|#P#Qf(tsAW7ECP<|OBFvE_R~9EPrWn5ECs7CFN&PZ
zXCw>6)Rw8cMX+msChRuItS?ur3e0MyhGuHWO2D}bhq<prvY=1Uj@M6Z)#<$lepdTa
zjTF*P$uu>$Xy`}Y@un-*!bJg!^};X2-Y={^Hrqu@A=2g|(}C>sk<RAsda%J&(0*(?
zr2(Y@b&VEb8*=m~V`&l_!t|a7At`GiV9-`MuqHskfDnwn^H?BQ7UMPEub6)!#2-IZ
zEML<&t`~ucv2}mz%v;`+%7mPf=j;0eFGh4<|4)vM1c!^o8ROD+$-rOa=AoP55Z$>v
z+{;@vK_NHX)j50Woyb}Ia{qtt9%-)GH4~gi2@_6lG^>E>pBpVHLpJNbWzCF*1czFS
zRpwX-^M?n%L^_r38x{#9>~6`>#;+BQ#&^O&hxlJPJ0?Ecu;%nUVkYQZU7J7GP8AQu
znz1*p10Vr76W8&oY4Qp6S7`LEL&{N0A!EbiGY&HmTrPLmE;h9Cz3Fvk>d*1JK0ZXd
zy0QlyrEJSkc`vhw-A`8#tp?c?>}#y6=LeTjn}z^>RW?x|3Agz#|Ch&1K^*b%HNeH0
z?|{9%J=>)5=g<H42V8Kt!TuxLOJk$1H#UrI<|<?(@R?XAU%Gq$eEAY$G9NxGt9JjI
zKG{Xv=R)VPaUAPgQrP@C0H>hoR{9|dZqLQ8wPXU7#3f<zIvn{b)b>j?J#3m-Ws#}7
zH8A#(v=VIP1zgYDg;U4J3Vdt));Gw=TvXZlaRSr%`Z3_;K)0%4XSFeFC2U;cN=^rk
z^W{~m|GqV=Tvn}-CJlE*^qqs<j;{h?=1&ll9*_+AwxiJE2%4$G1<^Y*2>UME|I2XP
zNua~{VxZmia4oThti82@MKWJ?-6#uD{xW{H*mjJD(I)V)G|7ERC%;$yJF|!wbBa0L
zt$aARKhg`&woj|L(7*W)zLV!fQD?3?`&*A5=vO)e?CBK1XR}L$KGd*4z+i7k)Q434
zZg(|_M#P;BbfaIDx!4I&^H_r!wxGWpX>9I<yS=xxS8PQPW~Q&IQOKggqtPV_Gt8SK
z6MTCm)4A-`kQ2!>gC8~148zbi62mhGZpRacYbEOg?iyqqhWRay!n6tS%D?4f*{#Tp
z(%kWTRf>CUi!E)oAD+%0<3tRk9^IKjSvjd7KHREdf?1N8Jiz(*QcEA`K@OM6<{O*l
zGuc;lXk?@lxn6t9%8A~_`98XqX`O0$Doy*GL6K&=uE=6Tke?&<Q0y?CMSKJ=TdCQ6
zKT7&Mt5VRJ)I`^HfqxP?`ASXZv0Hn*$T|8|bC&epsZ>I;=+Fu2aD>-KS&c@z2;e;9
z-#j`)qXx1&EQenG3MQc*M^29$e><0ADV*%63BSX@GrnE>h0rNF(X1zTnzXqb3|oN<
zRzV242I*9rXH}5;#_XbEhq7U4olw`UJoqJqfNbt!4IsyRs2H61=D01lND9L#pN)8-
z!;Wfa`G%p;Ts&CR1o~V#bbQ?JQt@Yw=Ut~yGXrc<X^zb^f>n?3@y1>W#*)LK?ARx+
z;WuIlZ?Hp85vZh=&0^nvRMdQBI$i608aLIyJaSlSU>b~pKivtvW)Uk(dQXiq_f={m
zz|m|M*$uzZtIP%3XXv|87&jYz==~E*qp^4vaf<#s^f!n+nlrVE(t%1E_1}eL3p-_G
zX7`SfQI?Nkks359EV#@NlKOpZ1xss87p6C4=CHgddNQhwGd0$$Pn!BbId-hpePc<(
zK7Xbz6<<~v0*!3OramX?{0o7<NLF{mNGT<~SFRsq_R0qDa^p7j_Ed&6sM`F}EV^`=
zs-guAOY8Pv#{;Y=*2B5hjbUL^)LKJq4)`JOyQlj^GR9%g&}(kE@@p9}T%K6+_0?p(
zyt?mRc_hX3*@tSiU)=Voiw=?m7du^Tx560+pdTm{j3;)477TmfYz4TBAy}nn;b($g
zUGM9Fn_{E36~}H^P9T7303H&bu=y*@%<!y8G9`UvV%%1{(~_+hNHjRi#$om(P#1-}
zxVVT*xG}oLpzL`k7R%ZACZ9h3d|&(7P^4#1A`H8SAM~r(^mofz0WM5Pm^N%E^_!uX
zU*8i7hI{<q29*s)f%E4BJj0Ib&6iMPSL)>p0u|glaF6NOb$VTVqir)+LDi4b7tO5=
zJ891iX<pFzD1qgu$8d^{bvej_C8!ho`L^kNZjVXX$XD{9q(`ZgR(<4ZOZpxOjQR#X
ziMHB37O+7VX7uHs=P(g}`G{`st#3Q?phMycz|r92!`b~aLBW1}=t%W54!qL$kCB!O
zXn%ni=1GJb${bE%lDoN&j^>Qd{O|4R2Te!8n9h2ZKlA)h%fISMnZi9`MH<947h;YO
zrF?KF<QVAtldBWxbnb)>aeuAI>O#uOk2iQBRq39Tgq*E|+i%}pObKn|{jD=mWdK(T
zj%=P>F{O0l&d(^xcned;0jMez!GVP!pzxw@Ut6ai?^Xuymg>Lc9(Tk8I$fiEPEa~|
z4q|2@en)Jx<TK-)lI$^YIOff0?=>lRmYFnGz0I(@sfIf|?00-$zWHw%8WZ8H)8ZEy
zmK)gsJTl1oDV#(Mx}UF}3|-IZ6sgQHg438#<Tm|}N(&BnP0onu(d-|LEI;TxerxUQ
zrN%3P2Hh!@Bg_z;0g(Sru+2Zv?Gj82$uXBnY9Oarjy(wBSCFd>#1V*e_V)uo6f4G`
z&u_^yc4c3;-z{FAq9Y&e?tKYlvpY-+tu1uM7CPtdjX%l%3Xc@&sKF2zSCiYRQjFob
zD>)^N9$*}t<%yVBWHDLy=A?rTw|MOGOSMJ)l42rZtD7&lO&;atzy@C(yM60`^E*80
zaSN2tg$}f;eH#75|Fl9ceGk5z6&!29lqLR7Pg9MBNhN$Ps>1z&KOXfC{z;|f6)2GO
z^TS8(fLGs9WkCGD&pL63VXmV7{{G2CQ?yf0^;9I5Q&UrfT-mg;@&9KAa8qy&MnjFW
zgipPcGQ!s!m=Vztu~p2GfQpN+e$15fVbCX6_w{tm#%oWWvd_={XgfOX@{CML?kLg!
ztVrwx<B}5LThX71MvcQrW$e43(Q*?MX{H)160q?9>;f5=Q~E+RAkZl~{=@sj`O)_%
zDK>;$*%wFbwoS(BMo<_q+JBIg6+75b2p%4A74*#_l@*J;P!eL^TJ$52z)KLyuz2sW
z*C=V`FVT*$%G5tlkD~=mb4yc@p0*Qk3`i_H*CdJadr5z-mQ~yi`6v5<!D6uP)YWc@
z@=1NziDNd9@0|^H`5dkO#rl?BU&}U+|LKa*$_nnB@#}D$?*NN>No>u{6%IarkZvWt
z-{UnZ6=I1Hd{q<M`oHV2B^`0mz2nN-c}|RnBdd@}TAfL-ztqiVhyw_N@Ms&3_5C5S
zLYFLYLzLL$&VFO7&kke3p-_1Km=sQ}0h?}Ceku&Oa5`QU4aa;A>-mGD*NWQ7t9+UA
zlCT)0b0Cv;sF+&6#dzR|nRk^ZUm}@0X4f~M862%Z&fsRJ>Ka$1lNp$3J-nNgHsz9B
z@7(XMbdnV<eR)jYeHC_-u<Y#kpg`HTkbfWg2rA8gC5V0BGby&j+B*Flm4Ev`BR~`|
zv2^b^hB=Xu<J;`s>`%<xkS%ujGp!0w=6bK26gctWQs6~GTzN|}Quyk@HSQ1GbI0w$
zl_1C$4#h9TXUlACq<Kk2guG;7k<ow;Q0tj*7=$Dcc6NxMBKhzYAFa<2)j*~8IP`(V
z>zo}Fb~K5m6MvGvplxcF7hWej@!ans2yEf|I1!@Sq=eKokuiKIRo=P_=r#>+pw0&q
z<Fq8@y6{;QjT`)i*z0L`AF(z=#;u^4(d5GJIoEVHaZnvAuc_bvY4HA=n25tkz>f}@
zliV$Iur;4#nv|#T(w9X$uxp4oDK5WRA`o_x_4E8+6l=~5{9rP!1|O+ydaKKwNhwt<
zhB|z93GPDDKm%RqqW^ZFkBROqs|3U@&B;R*7R!t0<zn$?wLdWP16nM*o3pCr9li3c
zt00q|OgbB2Z4nCF%#MQXbWR18$Yu#s!~pz$DK!t!@*Qx=dT}uiZD-|-k*Jy2&Y7Mi
zWnEg-=R#D!c3RUMORR6jHnN_i&(QhVaEPc`P{#;Xm*<O0m8tjAKZ{NY4;i+IJoG<+
zUVNv73-Vpo`DqC(gZugKF$IAEt*jICta?pRP4>&M4P%|dDUhA#Kf=K-J&|SL9*H~^
zp&`_d;RF|5>9bD&DeeMaKfmEruKWdV-0NEkz|TNd|9WpdtIQMsvpq7NxIej!<P>6h
z0rVKTo4WW##6R;D1%-S&Q#)meBqXD7d}fV|Zj>)cQosYNtE*DN2!K&?b02npV6hV0
z45)E(qJDlsHfLvN4Ct!{glHRf`o`23>-Ct5=ct5!xH^6DQL)SoDsA*^d2K|k%a@Sg
zDkp!vt>)i+1Mmb8e=c!--4_&D(Z{=e_M0(zz3;e?K0OZi0}-J3`sVCan>s0Pz0Pv)
z;QYZUA;%-M=9a$LhSB_tcK2-ctAgWhzMjGPavq5dySx>(B^x+lG^pq(pO(y}aZ5Mr
zj5oG2n(vX3@kmK~24kiKeOhxdFa`>o6&QIix&WZ>D#KwBe7SNZ^_KSNR9y7r8UZH^
zL%)B29(B2}Vy9Cj$HKyLKV6YMnybVE1prE4{pHjD-wNog@{nE5#BkZ{H(-z7givr-
zTJh)29!l9b$ElE5k^!?%DF(0Q(IPDVp6`c8QK^9w46h60Bg58=d%#tn*;`{!8p|6r
zjQ`5YXDn0m9CD$Qf7bmaZOLy^{qXrtg-0eu3FY{_m^fa*!nB&ZWcGrGM268WDfJqZ
z$$(-NT*<}{)9&Qtw(A!g)!%|SM?urK_+cHOfulm9J`4VZ@D|koD_)dM`}n3UplK(&
zKTa;3Lp7B7Vt$uoeww|K?X1mcckCS3^oc}KZo+b|s;I%<HQp?xIG}TALOksH<G`NR
zfa6!t;=izbZ&*Y+uzGFE>KKjL{L%gtbYR$mxyoTQ090{#awt}4XRurT8WZ|PwnUdz
zq6gx+mX$H`>%@AYwm}0l)O@ugvL*Hu8dtdH3IS)7(pTbLIWg32D{4D&#IA6#$JO~u
zKwtPyZWPH=SA*=kc8KR$u&QU$N)10b70S`nvv|3P*nS+L=fNhvL6=JJ8avTqHG${w
zba`vku`f$pxrWPcK65EUDygU)k>z}K8F`}k4?gDE&84|wBF%I)hY$V7W|Gn#!|%QY
zBE+gqA-l658G=x@c2D_*5hjqTZSbimPrdQgTf1t7f|GdS!{S+|RenGQebdg%_&d9$
zR*1b;M~lC8Ye}#707fOmP?N}Dfq=UqQ#qzi7EcwUNTZFqMAwx*y7PzNx}GG#K~Max
zP@1sII~Blb&4VO*rEbb6#i;?;>bQC5M4?+=sg5=kCr@Pco=*|cvLhRd2HJYH#3cM{
z`LZL7;5%!OaTN}_Vn7Hg!&Qxmro?FNrZl~pwHBd6wYBNut7gUjhMvpyn1Vfj<{T%~
z1ng?kX!=*0pcVv%1WG)*L5gY<<W4^7i*@Hiv;}yRUyMl;SdWv1y%LYzOzy}_>nrea
zlPsV^g##7ld13S5fNlCEEs@Ia>1!!S=a3IDbY8Xd*B4R9LQ4fNbl{hnhJ^dd^cb;R
z7UNOt3y0zlI<NKh`vw`$+iX>T8Hrppzjsw!mk5I!D0H=lj{swN=iPC?q1M*AjzMwj
zpgpqjGdDu**|YUpHP62l6{yYxU4XxFuNHUI-lJsn;=iP4G_Py-_!HBMR;5L9`y78C
zh{_r&KtprSY?t2;Wa&_o$Klln`Y1m)_G+$d5@|Ws`7cvG7aGWsMG87y%gKk##N*^`
z^;C^lEW4(1#s%mVlDG0ll@AKk?k(8Mzr>yk1;o|wDLXw4OOM_T7SFdhpWuc<)(E-p
zjJWp6nc@TlfOFk7c18xBNewz9zp(dYa%fl_pgaUmKSVRM>h0HM<w^fc!lp%h591ad
zht{NcbQ<h<tSCcdWwDQ3QYvld>)_Wsqx{0+x2&1Nu$>GcIIph$txIyXxb$saVN0jQ
zKY>NnRF@x#+=us1M7(He1|b%k$KfJtd=bA=wNKaDCN}NcQ3=4?S87Mvd{%TUm@8pM
zr3&Al#+2MoM26alY20tQ-#Qp<ckaBv1go;!12rE>ud-KRx=jEP2L73fthtmpmM(qo
z)v!t*-2o-CKdD@12pu=22cg}7s*jky+2~5}m`-B?(VL4xl3QbrBP$NG*WE3cL(eqc
zM-omOG!AOkcD5BDJa%ApfX8daS66s_Ybb4SjMOdZLa%t*=g~Y<sbcr%kpAH@UCD9>
z+JsGI;U<^JLQgKTMVd&Z08i+=@f9L(UZtVVZYK)maX3U7(7hB2&2SOGE*Tj*pV~?l
zuK1wiGG{q*FPnonY#A=;oo;8I24h)eE(o}|1LE@<Dq?o1C^I!A+AqZX0GjS>H0S{o
zc_rdhooA+UoY@FQ|G&^45OF3x#~!O$tuE*t%VWjvyfY!CicGTf9_Lky3+*C})s5bH
zXG99ZdJucSXXLs7&#C~lXX=t!P8BWa&E=pGQlW}R4w)}30WVK?bsxvNWH%2j!iAb*
z{YN#qbC+dsIMN;5Sn8j}I#z%&I)g_4G0Q{S`}q<rFZ8Kc{#|zBmtj5q)AgkuE|?uD
z)bF9yN!aOvICzJXg~-)4A8&H)+Yf@$DV)B4-|mn5pr98JOq1VMzYQV1`z5WA<@^=_
zq<e5sGW^~Cv#623c&{)%N@2F(N)zE)Dk3CePn%-80ehZs)p>khSb6EO7nFkDDB=dp
zZ4=b8>#w;~(M94L3hKchNSqV(Vg)fY+e}(CV*F8_=RUnRVCUEe&+kk+x%}lUHZZFi
zlK;xy9PdQYc1d+f5v{AhFg6?=I-2Z!;>Rct<ll<OqqT5hB3W*FcQ<>xz>=6+;8l{u
zd`u@0rcA1wPGq!_(@yo?*K;yy{OGSmY54dP&5WZc<Xii8hcIvO7kPkcho$w;I|Zxl
z35I(I!1#41M@@6|_INpiAYEK-tp^K4x1#ax+ClV-K1G!M+z(qPeqY~~__+2eSaKf*
zaG3+(VzO{x+6w1PZ9aSU^t;Ay`rr}=n#rnSd&Em=MYmY-JNWDN7UzqW^_l}!sa!J6
zO}pRBQ8yO3zEgvipT=C$qhgVTn3c*4W!+&JB%&2x1oiGyf<-k23AuzPOR1lgva|VQ
zMCbL}#?MD*p%W|_JHX-iEo_(>&hy0(=aFd(oKY;N8j?A{Zp0tYa6CI;6I5IEqF;eJ
zB;|#yzb=>HPVsHA0;lnDG6CeIo}M;c`6lqLt<L*1hP=LPSODK8YnPsM-v3O>5%F;>
zoGsk=PbuK0!b!MC;^Ma`Wog~I*KYq6xu=L72E%jX7gNZZ-)LsPp5(6=hKu~K%q>0#
zghESqy+A8|Z>)+@c_Se=mUN*S4~`ERjhiQPY?;2~pL>yZa3POhP`IiveTS28%C(u%
z-%j3^@2Bzz(HG`hxT)3j^M%)!m|K#ss-gXukFpdE{mQ%hPqS|$qn$aU9Yv6~MqKH4
zOBl%TyB39X<AB8%Jc(21=n|t&VYY~(t<!e^OozqslYf`Vg}i_KD$yesdLot95;$x)
zl9`QI>()yvGy*18d7Udcny=@+v=A_Y>FcqbshjdMkT11}gnqG&A5S0}kNbYaE8mr7
zX)aa@g(Na=_D_VClFW9}w#xJ6YB`CUpntA~HLbMxA@9{m4buhfChw7uOm_y+DK%3&
z3f)p+1iM)NvWx^Jj_oRTneI5fY(KL1wJ^rG08{Fn7fmsdtt_vWUQ4cR>JnL%>mTVZ
zx-ViyD4t?j^xPjYDkryid~~|E2u}tf1(vItiC4E^hU^bOlbXKvndP{?X$rM5Cd`Zx
zu6i|}$Eby|Z7{)bB0HbOs64w=_<}Ju(#+a;`9gye$*MF*;o$bvMnJr+(#^g$kRzBB
zJvZ@CB(xboUv!MkOfag{yBQd_Y7j0TV!F-x^(U(=ZoK@b-Ptd?yZ}%>#`16)^v`7n
zy;wPYLUjK>ahwc6dbi<EjtPQ1G2dv$^2Gd-dwTvxqALyUskX)FD4m5%;NHG)(RX5U
zoTXRjH;1?#3DlbDIx^um>dM#I(4?wNDic?yusN~qJ@(uwv&ZB}umA4@&I3bjg|!*)
zaNi&l5CP#aiAjQ^D92O`mQQ>_nyv2t*IJ(G`cW{(O&A~awU11YUOzMOy?-otj7s<~
zpi_;z%xlkVH;(|(qc;6m#caWwooS~Iev<-#<I+=1kVJC&9e<}+%m%F=da?d-2GTgG
zz#`dW|BXeVf}4ZTtx+0VY=Uqr6y*-LZ}+czTH@CP{vJ4us6ce`rKf8%X<o=&KgpCw
z!TCP_N`ejBonM~QYMl1)+OH)pVIV;ZBuQbsx++#%(z*dykw<ZhkYo*R9*b8@X7wt{
zvly0ETH@=W)dU#!G2U4b&Q+AH{~r*N+_aG#*3Y-af&r|7&p+qifDpiL$)W?cOXzj)
z>!l?9*)>(E(7qb^`sa6)RoqUPZ0Uj~YTvf}&7uan8K(T7Wd;;75#2FQWavP2PHd}2
zsL0Yn0P!H*F6qaoz<T6T{f$|m^|4-Wy})apBmtw8kZr!ySG#`z5<S6!%0HO*=@4F*
z5(a%A04|(8xZwr$9h!iNu>#q|P+WozSEX2nmHod3!!@XWfkSnlaJw0S@kQSm9#?JU
zQ8xX9HXviPt*(9sYjH76(>0?=!fY$jF>enf!-)E!NX|@>OJsli6iJ;6le*-=Z6szt
zRZe2*0Pa6hST~naCRMDM8OJ6huNg(5+|Ff*lT54``WcEY0(8d-P%c!O7b7y3QnB0`
z32!<LrYI4F_5Vi4soEZY#{O&A1fJEotD#n(J&k=40*GR5z3Ov09Mh;H97(IO`0sHa
zk-^|u5L`@i()4>3EUozYEIvG(-~4T=nW1#Lkfsp3tv8)Xrv`?UUD_E`(%3(%BRgzq
zAnR^QK3zOne3Y1ReXtTv-mi*HnH-cyf}c2+Ow>HmDC<jb8fu~mJKa>U>#?L}8@$=M
z-iWvcw3F-=FtOH$w+J)qtkrU0kTnjLk1IHPeZduA$j!(+moZfy3hcc;Tnvu80ze(E
zQR0QlWMH`BTOpMREX;-Rb81$bx1JoG$e5<Dh3$m-eG~m3iI&AF$JGT}Hq31UU4q+M
z%1;<m=Lv%IS#HsAc6Wa+vXSw$7vxFgFYzA!O_{Il`HlT{RfkFkvs7C!?~|GBoyAhi
zYo=O*)o0lcz}@IVm&rGoQyRqvTj^uOv7uaUl9{zHt-tJ~8K^{(*t3WFT@r`e(LLNJ
zU@$USKKU@KF&?J6^$I#VHNlNEN$*~K=Ef7q%d5&*I$sWDJ>_)0nY6I->EJ4f;x}<)
z)*lnrUk}wANS6a8{8+e+q3-%Yxu&#4JV5$FgM4A$<C&cKDej0w#-6&VK-Bx|^k8%?
zWsjg}V=99}h-atpgr1Zvy(U^wK#DB-*(%;%yhQ0r30`HQUNCXCRB@I3w-qZ=67Ide
zdrxGRiTi$rPukp;*v-8&$JujPA#S!#8^IB%w!qp3Su<~eec3W4iQyD%qBM%^;T2Y-
zpR5v!-g6%dG_njEa{LoeU7iL8YmEcTL&=tcoJX`<@hGb&;x-C7R<%1svbLlbx<5M{
zMZDfvr#DzjmnXAXe{E)GSeM>Pqb9LD5JhUwv|C&V#EEXp9a{TI#b?3$%^;_!GQCE_
zFl1*Hh9URA`I(&@5Fs(PF@G8!VP80w-2LqXGC~)e(=D74!8>AWc6DR!NuQt-)W061
zysntr(FTa}yJanCh>79II+Skj@E6UHd%itWyfXXSZxUZ#lf+;yLmEDJ^f%R9umo1D
zE<5IEYCo+5jw4uDmZy1yzWsXfI-6`JB{{02fHXr&(S(V4F})Ms#uA+#;I(KpQAAy6
z#xLLXJGmNlR!`=O(^zr$TWg3<LNr>^w$V!lui3ktD|TkoG=$^uwHYbD|Kv-lbL^T#
zqj5MM8_YaBh9<gV6n8`_Jx#i(W@~y|!sz%Zp5u%s1lyM~2$smhGOTf7Vi^cd%wfz4
zA_<^H7mjmmec5v++=mr#0-e|{Zb05ti%K_(lTSty98Ke<dh}H+3ws}^%G9@IvIJN2
zNV}ySxe7*PkecsxoE5y;kkWWFR6$*R7xYd>uz&+j6Bb1(#&`kg5WGB<&7|Wi&*na@
zd8RObK-A(Y9#QC|32t|aa>9ZV`h&f2xJ<X_KCK6_Q+MI>f{-9Jd|Z@o|AsN>2SYBw
zjZ&Fy+4_A?0L$E>`u`+&yK?|S84*%Z46h>WR0m0({iZuU=ZLe&$q7fq%h0^(3L?`M
zsqvpwsDC6tTwFa0S%zk74h#>yKyZC4tu8ICt#m=pD>9}X2yP5jPaFUc_m`~HOrYwW
zcS%81tk58!W;k1-T;WZZ_5)Mg68gc87mGL&0xSuBAmlRq_4y4V&+<dAu+DV>0hCb0
zRqf4|Yne}GQ*<_jL6t+cx$#Iy!j+0?tf2+sZV2OPW8BhsgY~qoe|TJWaE@#g17*s>
ztM-GK4Cr}xJR@1dztXQLDF?N*Ggk9H3F!{8><t<dY;|+~AMm!;>BBbK3_mv2FJnOf
z*~JQJ+=PD+8S!u@Yjgd}1f?9YPQ+jzOk^gTA|pS>0K}VI{R8GgUe!$Xg_VR2g;m*w
zF-ouQfih=ReNWpN{WmX1F6I||M0<~wEAagDfG?JTS)I6@x=*uF;%Isr&xaG1@4OSn
z>X_?K9jnwXI%}JotrqJn8oo{SKnD=`WxcVj?da{v^1)JL`OZW0<qLw8G)i^E*@~xQ
zY4w-UJgNS7d)*Lm@q;RJuvCiK9GKI%`#FGS{Ub5kRtSMFY;a%zmlEfPsw*i{W%5j^
znjZ9#1##Q4Db8`bv8e=4;$vxSZK9}^!&#E$7SXU!dL~9cB3t|4-fxJb!?o<be|^v6
zF(gJhaU`YM*kXvo+=>4JTalwzT2)>mT`ftVe-AI9v(^@=w1}97^FpgrZ0D;A%?2U=
zlOPwV&~1#sq!8A|=m+#6G*U(i8pb=~vU%U&i*dp?Iil6wAWFnpql(Pss-`P3Cg|((
zP<M9Pf!^1$#16rx@N7S%I)_nB%NUB^sSnFjj1;W-j&g-;x3_49`d!1)m8gZ4Sr&cT
zxMj>hPyYk@Kj78{2v&1_q!ERdWj?maZ8E2xUg5qU?+P#g5WQe~5N3{+$nQuZ?E1lP
z?zF%k;nF)@-MJYg-iBpDYnhWO>Db6x!&ojaLl0OAkCJsR>30@!l}kUH47Z~disT+8
zfcH++smGLb14n+kMm2m&`=1c1rrnRI|3k!5qDv2S)wF2r;lp`Xd#*4fwI)uVL;N}W
zRhjFla70fz$ZzR8uY;#pKRu2OjZXr@`dQ)Len0qZ=jx8mt$oExhSfh|)qMs~uC<LU
z@s$g?-s150aQ^+UW_2~tSfSVaV^leiE&x9f6{HKQirw_^$KnuY^zytyzr0?Q-DM1_
ztwd`$TWqq%SiW2N%mj__y~~tt-kKKoJ>_zif4mbbhO^=$`|!k6XYV}rf3(wXPcH8=
z@$Co*nJwqP5>a>5Y5$GTW#c{Z*E-)gnf7}HMgPfidGaE(dsh2Gd4Ek!#&2)(bW3q8
z;{RhP=Zt{#zadj2FmL6NGJlIyuO)Glqj%Gx?6iW<lr*7LdwbSbM$^Tvbm`6Z@}rvL
z2SQdfhwCqNLg{obq3608HB6ky2Ilu+CmpRGQEs6Ch9H0X`zfU&4zYxqn>*B&T1bQx
z*%h@3S@txot+i6uN6X2v{}0|kA-{P%{XvDPj*7JWy|;B78_x$>zH2_5r%m4>1b*jp
zhCVw;%gVKBE!~IaP3S#p2GRnk--<3K!cwRFudbp}$rj?SCSZI_!>r{v`yrHFGZ*mU
z2fY*Ib7m3EnhfQQPG~Oa9Hysq7xk(|+t##hJ&+~4uE*E;kPB4IR+<y<6DwI1!z$Ng
z$rV3dADB&pI!$QZstsNG&JtoTz62g_pK1wj)3y!G8`o#@+P#17%lrkgQ4tCL%#qBS
zGMI)<8#8+Cc}qxK#CeYI*?^tu>v`0FCA3<t<&)^fB9kkLdU=A68R}6hixV1Y&U#cd
zs*;y0=k9Q5Y9~4j-hokNVB^3koE74>XX_D!IXkm&QWxf(c+9@hb6B%}EDgIX!sP70
zo=N>#fBhqRbtDFpObA{LliGFTVYCt3F9fgjO|Or4_c7|jSl(?E*CLHLiL#$FY6^jJ
zCwxyXVa8d1ULTuD-A)TJi}ZI*=*Rk-LFi*6Ek5QBat#yO_2OAvD3e+@X5l$MWMPkK
zS-Tp`FTRJMyL4(Zj#wea_s^fmd4B`SS9|F{_ZTu;IZKB%W!r-|Y?c3Bj7#(F$Er0b
zWg(30F0SW&IPc#0;`jbN0pY({3QZl(D<2=CMAbD#2N4nzUx%YZgOHj<ZD=4bUcTbz
zdke>k6)XP)Rx$oFqJPM~El=6A`anWJG*?gGB2F8`+0*yqZ<;BL*Y{r#5EtKxCi-&n
z#hmfRAN|sk$)AV5W@fKi&*n{=DG<DqvAdsGb|q#fex-Un_fDT9Od~CT6Yt9=Q@`ib
z$=jsNSB(}`a#+F)8ntCX9|=wHGj7~_C%&1{>c5ardYwf)eAfKZ()9*33CI1GsCO^9
zabp)duElQ$A6&%Fm-l%Uq@Y3n?qrK!_eG?kw{)yu5~q$umv|zxw0yqKa-J_s)nNK`
zrKmr>G-F^)>nfZH7835oWu66zIFUE0)M^OTTMr|7!a0q44RM+;6s|s$SNC4>Q5&D;
zr)&J;o=OYdNPKy0)Vo{6rme@u_3K%`aU)F}Zqi^}{4(?CLo8_qX+Ec+i}d5g<9D9~
z`{sdFnRZ2l2fXI`m7VOl6(8;|%4*NcJNSm$(x_h-GAFpnX@x-3Xg?K<rR);7WBgz8
z{FM+!mMsZWd^vtmXo+zWuYB2(71SR!j);wI=)UZxI3$24K}lG!W+Q9Yj3m?T<#by3
zK!k^K>%}EDo=Y$np6z4Bg$ww+i{$-{BV=kcg^in5vv6odHVy2~*>GWu-8@X@##7j^
zehphUuY(hdSa|uP<#1i(J6=5T6HnJ?qWxcdkvA>FnpfkBxQ}PXcjj)gM(p0cjJWNC
z+4?MsjYFpJI&%{gre9M+Ndi15D2U+T;LkH73H@mnb=*c}`>Fm(x6aYc1zmU)Hj3o5
z94d^G`c?3>cjD>EEx6Pi%it!B>Cvn@PU3i#5XcG}S88_XO{XR;=uj&w_piOcGiN0-
zJB9HfBm#~9W1jkHP<*jimBDC3#!|(|oHifro3tiRI!ELRJ0e~mW9MEU^buibOhFu6
ze-I5G)al%Zjw1c`wX$&kx=24)WimU4@;)>I?fVBjey1U6%2M<j*_Jkg22##388v!z
zpwq}+Bnf;(An#Z;|12hL9I=i@Zme6)Tdf_-&WACwypw2ezkJgFm6YC<=-#CR)jfmB
z({v^|4A)q+axH@zm8Zqb6A7^d=0L{x>C1-I^B6XCGXehR=-hP}p^;DN)UZEyeQq#n
z;CObd8O_*PmlF=MV#Uh;5>_$(6Y^-yJTfnTL|doB9FX)V3T*9cv5|Zt9i1@7y<}LE
zw(L1}jDhX?a%lGo8nszwIktb*+-&oc1`!v~YuXV@*pI^odzU1nu!u_=vN)SjIhoke
zr6$|oN@4!Asn(kal3;68vvKx#+O+M=*ga3d-VrAk7harM!KC#!3AucTKArl~t63Ko
zY<Z2Hs~e$@Pcva?Cz>_u!6TuQ%^$9?VEBACZC=K>p-U`c^3>!e)agEvDYN$d?x>Q%
zU`K;4y?C)~v1NPB)-bwtXn>O`gqf{-A(;;2Dpz92#EEpMU!NJrd_;(et)tq}s%r;2
z^k~ODp;H!gu1>eXlbA7X7%j(cw50WV&lHC3J<pD=wdp)|EPcCoq4V71=)>=F=E@D`
zZ9RvpyBEe6hp1R$2;J6Pr+FcFk*S+B^{&F03BzewrxAOlmE}XOGq71l_MbXR-&XxN
zuzd+lI<6Hv^z^Lk&Hf-!nx_^pVA>Qqm8fkwwpHE690(9aX{W?loJT?-#7nk}DF_M_
zr4xHsq}j=mX3u8bIP=ng;lT!av>(giqZ?^db13hE-*fib4b}@G5)@-klWyI4vU-&z
zt@S&j>D00g4(4E{wdsZQ`^EKDqiNcy4IMf)WWR4PCnq(dLC=ZIS$c%~d&khd?{fBT
zoKCZjD=lfP8Z?SNJ^Rq6_9)&8Tjj;pp>*rF!V;%t_jQE5Il{4X&)BhW6FV=S;NXsR
z_yp*2bauu?F0M!EPSvUX3E#dD-zXK8s<ps$Xp2Q4?%8sa7VR40D7`$XP>5rsRYR57
zrOZ#K#vbh3bpv|`2i%gT5aGg-uyrM^n*(8LJ*InW>DGQchYzo#L5*R26bU}tJecnN
zSFvZqG+Or9By6MWoVj|PS?f<xVZbt0bSx^;@xV?m!ztz!`)_#B$XkW(lg0LHA<aCL
zE?qjy^o*ZoToGkypC%_pVT6SVyU$Lkw5)Xd=+<M>7tVn}T&vPn63|+Z%L(%J!{DB<
zTB}^~sY8)GWE2VR>IURE+Z$Qkqalm#Ia04dO$ug8F3u$){dVwK7zGA{9?7gVihCjx
z{|vE_*r&@&wTcyJ*lQNM7qrK$)sX1+ZIsftGqR#<eU?6Sre6J;<QM6iEeS}ov4}_}
z4Kleca;f5&WF!~us96(@!6_+Ks#d3TEzyo1o{NWBFWOjV?3MrS<<l<-r1Q|L^dC_Z
zk1W-hF}Wdf&(bU(Qa@oogk9OqzSk~Ps#lk&3ln&gwFy&eC!<T-QPf_x5!+)M@o~>i
z)mrtqvvVYGe$DD+#fp{x2Uaou(-F?NnYSokDjDfB*|KoiVG;IuYBF1uJ(o8w;!Ww1
z3>w;p#r?7|=fpcQ7!L9B`3>HLhH>PGFE?)8CVh!Q2}k`PZ0rbmdWxnUy3($7OQycb
zOZOVN33%;8lx1kq$cMLqqBFKZYcf-*>sYpKUB&bH-MI8#>gW~dqC*J_kLB>%iM%b;
zfN3*&kt2=5GV_GiIW1$Ruclw2IMyF~&W4dg2r6AeoU1b#qIa_3{0B6lez=wH%Y;!)
zh+ky?YfJ_$&RMFE*5LxLMfu!IlaCt7jUrD*g5LUBej<MN<~?P*Okn%|A#9qxo#?k4
z8GR}xyEkqZ;=esa$6Dr+E+^uQnKlRaODnmfh81fMQm<-p{C!^FS#~rl*KH)_@j+}*
z7p7^|(oF1L4ueo7J2vdVErl815Ah?im}7b78%FPmbJ;Vp0AnT|;nMb%gjOBPfI)p&
z&?5~C&-;@)?hvn^T;pw61jmm1bM5v6G8fIl)0ZLi5y$Qto{tfu4x#jL=hmk2bn4QH
zR*f6cbB}?Y%W80O{!GHEkB?8YXGZ3(T+M<BD=8t$wEv)y3@Q4EdDpbGtWkkJ{W{`l
z8;48Q%D8b6zvowZl&%0(yo^FKiL!bxtbvF}3|#V-m7905W$^^uWoAPBUz4oza7Oei
z#(?1$8NG8B!^X|VJ7Og}&Yfr4v1?QwJerX`%j2x^q35KVjM*{M5+`TC0**V?pm~*I
zj9<~2&J}CZv|~Rqr?E$G5a*3AEkO#BsoxM5CBocGQYz<b&O8t0{KqIN=S%fzmJMn7
z{6subxLTIkmyE^Dqg&FcQ+t|MugMwLN{p$TnxXv`P+^WJ2a&ga`R}n{(?N#LdBnKw
zGZ;R84%yz%VJ~H9Qn?IcJ6A$jJK`xcvVCGJE_gSib|DX9O`n(M|5cGj#}i#tBuqvf
z4yh~Bqnv@hBUj-Y_>t@T=CSsvC%qdMATlB<VVXfRaZ%CaC|iW5XAcn`708i8XV8jg
zS|2C5zG%?u;(uQ-=(OncW+DULkgZr*+?6)GdUYS2XcM#|?&q@$%m(7(G?p-(_#3B=
z!9GK2JcBOq4i!!|GM+zwhQXx&Dt)~W-jRVK{i5YW`Z8X<eqi}EMyrk!&!Cj93C*YP
zM&e?k(5P}zIOTipy^A8LXA)lAd?4Ca6H_`>VAV~v5afS;ckgYSh@tKfN;ykgaSW^4
zpIR%{kTr>D{nQb}h&&j>f(g)T3I3?2-k^!(76yo&y(5AC?{IXnAu=S8aBVDsK?=H#
z9ZAx^{?4rxD^`AStYZ8pBlhJ50$rWCy>vX+L)>_H^pFU(wTw<lNK=PJ#^_0%Hh$@R
z2d`w<n(e7lqBu)dtfu<Jous-pfL$l!s9YquCC(4Stivs13Fa+Z&a&mpIk;jH(gcor
z(E%wEM#~fDDYkcVBco+@M>}$)lnb#fdK@8CCI3*JNk-e1hiU8hfdz}FuzA-7Vnreu
zGUt>I5OM4=>2-ufhH~}LT4v6i%M06_<nXW;r%;eKjio32eMBd0Qo2#!J3TYk?xK9L
z>X<cJkt3NnRBjoVb57zxx}@TZPUOxYBi!E~r`$y>hr6dQOFnl;WcCiENEiTY)T|f>
zmM_AWVw7^S!(^i*SB`j7AV)?AM8AthrxOA}hyl^*HygJ`+>b>ZYE=%Qu|X*(d76y4
zi?0SDFqAqy;c649Q%fP>m^2wG8&@ji&&z@}o2fr(6V7M*a^#Yca{1EXo+ACHV`bu4
ztxkh?-QKKPv5Hko`(X}zVKGd?V~wOr6~C&hbBdJ6V}#*jaw4^7{BUHdv|gygBgFA~
zq-mrjF>6wJ(I~4sQ`YXMVu`Alv{G4tT&YC&(I0*4oLI)-UA!rsJ}Cy7ob)NheK3R&
z<C2zC(mp}Pq-I{L%5r(jXx{GM#Qa55Id?}IMa}p*PI841D0<6$^|8`GzDAuepS9UC
zTgE3(?DrRWowhs~+;u{znW$K%0teQO$Ih(@X_Ck=O0GNNzfyY9FM-?F-;$|V4%Cqm
z)af^yRjbypWKL~9K6+zm^ukRpq)wPgG;Mkhq5?jmO_I)1e<d;|mlG1K6CzTdU=&2N
zuwP?NDe7`@Zhx^Y$4wSRi1;Q=tNq`D8I8t7za7_TpXNDpXU=5p6(ei*Y$cPekwQ&c
zQy{5mjYN4DZCI7c4F@r{LK3FW+>U+voT$WuU!+kr%9pE6rGoLLnXYIxO6SW+zXkJ%
zJ-v+SOEyt$(0uX;0bI3hbzDRVTLiff;%1vPwCGq<)L$b-8`l)+l%sI|(rnx}o%1W_
zFlWt1i;<pLq*<j<d`(I#p6OEFnHacm9#N;3Fn!q;Y7Ux5Zg&@|wQq{06*M?gr_-0;
zo8T;-)3G~tW4OM7DO0EM$|1ewxk;Hx)Nw~SrayZDR{fZ1YkU|xJbpFeCtC-y{<S^t
zx6WYko*Ud+)t>q@F5p$W2OY9%@%4Gji&r7MeRzOLXF@o7asyji)y7!6HwAScdHcZ+
zpVuLl=go>0EB{+q#rRLgj@ff5F>E6f#*Ag`%vFp@cZFel?qf0uQDD#!84*Lik_CCT
zaS2ae_^^EbKC+gmNtyi4tXzMRiZx1;%keH}WThzJl#u9;!l)PGNROlF!Bh@TpA3eA
zRdR7|;WCbH-oU*V0iu%0`1tNEtCk;U->UK4cWF%F^hP41H1VTaLW~_=GMeWkqkKVc
z0$%x8L|II1ybrcsh_om@)Nk36ESb_#uvBrOXI;pU+6{GVG-^$}T>3o>x;P@EjTCHJ
zmVFzJQ=&$0Vxl6^>J4Z_`g+mzsbgZqwuo%h5gi#t^5V_N{%|gf_U&Tg=*DdFi4dYU
zF8<|0LHT;kxVB~lN!yOIY#W4#-MH}($F?tF{hLCx%qWDRF_Qg9o}m$G>Lqn9%gxqh
zjp$jeD{qCM)WpOJF^w=XG(<$lQMhzI9;{o+a~~g;EI34t(lx1&Psxf+7pYpK92w0Q
zxZ+TO+#W{4Bcd(G8ifc~YlM*2sf9rkU-~M~QVebAOy}VjDN?1VNOKv_MR_h+aG0EB
zYg4C`8{21Z;^oupOkewsN~OGU6dLx#!HWb&tBH<*;;l-vd&4P8R?S6BWPDl0iNCUJ
zRjA52#%$Wk(i!cTdgc*IlMvF9@46x*4bu5AWBo0jUERg{2U)0->H%X{9wA4OQY4eB
ziBP1cVfvTM+;EGhBF?&d>8Y1XNmNt}(jaG&ByQZle4OCmI6`0EW#fTk?BBbUj)T`x
zfAApO^%0h9&swf5w>E4bSJ#>-Vj_r>Zl2l5^`l!ja_Asi)=p&2%dB*&o{^}CFw9B^
zQ8F^za&)7j<5}jO3#4@wPqxh7#>*$yn7ZyG)f?2Nda|d?+IX8Mmv^$^QAX-y7e=r#
zoD-)Wv8G3H2A_4HUIABjZQH_|*i`iG?#$M0mo3u>{x=~RWzzc(HM-Aa;r#h5n=z0y
z!ZK2;4V3THgQBTy#eS&RwFT(|9&$RuhDv2}@>V>Cl?!L5aMQX}ui2DZ#nW2m`_E9e
zA$5u*N0+Pwv**oc+N3G;9N3<mo?g`LRS&nsMSr9bYk3B`^lyYxgq3OEh#Ix(QX;bp
z=Coy)HG4jb=gy#VMir?_)~9Yl`k6%fwF@Uhm%J2nr1U3Frstpz<nVN-VV{nqmZ?!2
zU1`?8)2Hvv#rKpZHF}p!44W{Ag^QQct7=w}o{2WY7g0wT*ILUk`X6JmNzJq^TgZ_x
zlAW&d5Y8N!NwtcVC@YNS{Oy;qu4`ejCn*zVO{Zen64Yziob0LcGH&8XTwHUoWc^GE
z<}btev3)33yd;ep*TpeDIV)DI{15T}Ui9b7<G$D2&hcZZf1hv7lZ{-7TxLXXh`;{t
zmH#hEO!Lnc{gD>Z@$~fM;gvI_DpCRW1Z5lRca1w?9yqEs<Sdw+Th~J<RXPXHPb}x;
z4Lzo;`RLuG6f%7<CojCALdC+U-`wG)F(U;sC5cbuJ0jH;X@R0jl`4s?Fs__@L6OSE
zJ_+%7A~~{U193?Ul3d|T(Q<ise)1%KL1FmlWz=iigw%R}F5QU1JF^Y1W8KM@M#q*-
z`-n0nr&;@YILEx?wyzyU@}(v8#XbD&Gl@9PJimH`Q+M8wtav#Z708MIgY!hBC{0eU
z&vvEcQX(yyk~wo`qWm7?6PKI<S)I9k;VJpc<R#$#HH_)<5dH8WsY@5*?YRr2D_aIv
zV=!m01W~?BF7$!-Sikoo9@$D#zd`|?TtA1GcR9Q)!?mF_$=8B0_l}cW)YMs(a}(Nn
zIoS+8<ZaNF{7Ga4JvqaHXDaFzv?WBIiyW!r$9b<EK1Pb-`3St{N8t*Ek%hkG^lN)6
z6;93LBTG4Z*MK=&A$m6|4!S^2Uiv`A3I&OId4t!sxyhGK!{yUH6t7qWLSAzIt+Nm-
zF+6;$qL6oL%Q?`0<lLoT%9YQ}qr*!%cUP#S9EIrBu$b7X<@A~bJPLCrN&d>Tt(Xa8
z&;ynoc|-Nm8Htgl!aJh_w=O)VU>R@x?p(tra~>k^KOjZv;<&5dvt`RZ^sZTH+qeqv
zA6y_dRcW$$h-XgwmaX$Q@WC!M1u8b6LT*>yUOmRaJHDjOUX^+kg_WXv!`8VQ`Jnn7
z=i#;Uq%2St5A#R1>^e{3s-<~*^f<3Ik`s|9#cI{TJB1Q+^gAv+)Ka=c79L-?LHaU9
zFur}nJ6USd8GYG*`X;gBQtdr+)3{*?%gB1*!;3_C6d`-cc)=X|;Tg}=Nhz4ci4&{l
z^EAR4_kvYvT|NV7eAzO86CdnTQ&{A!TrO7vAD!gb3wykihw<!nByk#zWrmTGje3(W
zMGQeNpYu`ch)x^#r)}szwdjvJHkKH1yvp95*yw0drbzLXE6R66W`kT9NQV#X<L$>7
zvR7?Kbx~$&VW9uFVqNsd%Fm2-(VriSr00Ih6*v_NrKJ<H%qU@&VW+bF%5U?V5f^B2
z8?ccCv9w@|5XzD`PT2idkS@byFj__{rOrZHc*695?41Q*6i45OpS!pV2}y8*Yaqeh
z-QC^Y-QC^Y-Cc^i1$PJ%2!y!j{F}Wb6xzODX-nGB?$a*0ot+)q+1=mF{%1xj1Ww}d
zB&5&aA$~V`8J~_4dEHQ{v?!zzLEl-B|4}iX()n79r%b*S<KG=2bfrO@AsHGoy=x8O
zpkqem0;E}YpH@ls7c&1TQrZfff14PWFfN*7fr)r_>(nY#Ml+*-FR~byNy*4!Jb6h@
zG5)8`R7}mS3AuNec}rKbW%Fh>u2{;h%P$iaaS$&AX{3JAYef2;U^^_4a4gBq)ZBtM
z*S4|#_%rP7ZFqfo6Vo<a!CG2rO&nJw`u*~iq!2HF&tZJ=vQnCu6ZPR5lSWQs%eJko
zSiOw>#~xs?N?5h+b68UPL}7k<dV#Zd0<p31XUxFqe2O&~!}~dW>GxML|6>39kzC<^
zZ+?VyCSBuX!PK5wt%ot$D8wa9=(h0~^`!|rWMuwp81$&(<BaAa|8^lRBa_lej<5SN
ze-D4EXIx=wj>(7X^qIbiZlf1cIGq{#xKOS?4I*nsS4^aZBf>&4vvtDB#*`3g9$SMI
zu5J$K;$sL4jg)4W!pzbUcXwN^Y@Wu^@Iv%&QiQnhm%IpbqNG<EBBJ6^Xyb`e>2ONr
ziW$-XA2W!LAUHBk2!G3jrJ03rmwL37rWS;~IKYgZT9(gfPkh)z#&#V~{$cZIn9Z7?
zpg>|&dTgCsak8`E{-L=X2`|f-Hl7?lbPu00MX|MzX7~suELwx9wY70TkF|}pv1eVO
z*AgA8#>Up#7~i+>Ej{A}3KZbbp+m-=ajEw#B_q|9%a<=xzI^$g=O#`;NJ2ayAi&r&
zkR?l&WGGM3fHXBhuhWt^<+t%G3!-i$?aTZ(knU|88yoK3yN6b*{oQBizp`iiKSol|
zxTB+^EPP~A9MXHQMT-`4&v-JCoIT@zLX0a!V&KSv5j@V^jiL3j5F-StkR;gHD>yi9
z4A;!^lG9O1_A=G5da{p$eg<rV0?62?3uRp2vTx^OtlX{m`1lPax-{j*iaA`2OG}x8
zKBRYk&b3cP7}m<30WGJIp<G35qo430bq)G9ErMzAQx>e*ij7AObZ>6*SXq!sLt9{`
z7Q$UxAmZgAW^9jT_PFLkoNL%Oc?i$E2GGIdAxlm?A&aXiuOgi2+O0Jof11squyTxT
zW6R*4+vz!d4EDjdSi0dLsWPSKL$Ct-=vNeNKafIc?09v4BRl=l(Z6kJwDI32M88Fh
z`}p{<c=2M)&CP#^m*(r&uZ<=kk^o6*NMbxPGSb*kNR=v;EJ9?G4M|*Q&YYRRz(C`S
zFtQl`Zy=RrO6-V`k&!gSAAM%Xd^;&lj9ZzjSv6)5=5?pj*2kJy<MMh!q}#xuDI@XA
z-<5%N@``5KLx%QUNAHD;$r5{%?&Gd9a>h_xR3EwX@&hk^+Qie$Eots_iJk9@FsWN9
zE^V2_!O${H=-@!F=1b|ka6Sd>@6n~p4n{2-&y%$yxtO{&<C=LBab+#NcgHbjTw6?~
z0aS@%eCAFyi>J0F?&BSX51mEb@iVwTe<ImCPo-ua8xGDM!Smd0DW^Kj-cO|%*VdYz
z?Kd-g*;ua58^rs<!{}Yfov@H7UR+qm;V^F|bSllpiGy*fH<<DnY*0xHN_+#~BE}_~
z@v~>o;^dSt4P8n{vKg;XAz?bNl!zpbjI%fhp(G=d-2A6)#{Z+pf=4DLB7dz(UXoLc
z|4Ey1g>e~UX}R?;A4<|ssVX=*r!p=bu6gIjo9IyXteV5TO&3vEniBQ?4s*s#<Hp+%
zG<p-13O!nl*0}1LwA8pk1Y!(R1f;aI!_G`koI!!K=$ld#!{b+<@XD8m_?T!+MWOui
znW!)|Bl_hf7A%<0>}A`?Q*R*U9Rl&w+LOuMn#gDkp1IQU?$rllFKQCfZ&Ota&jLfq
zkUp&lKL!&^OY#&ehxWNI{vV!jFVc;I>77KnzyFI(dQtxfNH6u2{$iJU?0=N<l#!A7
z@sM81@+NO7ZIk(N`4eK?fJSLU;ey%my?Bxsg%uX&=9rtAqSqyebE8<3HX+JgZBkRa
zX&c(K?aAbEJyG5HiNHK{>EEIbMRTSxPAe#CkqB3TnF!-+ZEZ+ccp<Tl8B9#EvoIqv
zD%Q9>ycFLrG3d0|WbmeStCn=^+K;A{vY|G$!9gEGSd`vqUmp4)3<p=q=I@L1MLc?Q
zOWbU&iHMF#m^)afLFtkU?{rb@SiObxWgFmVrjc!fWn^SzWMpJyWWEc3s%KoQ(vY)y
zXG$n9v2@EZe0^_m>-0f39rs0A#9FJ9T4`GJw)v=>3yz#R&%^uoICuUU)|s*r_v#K8
zE}Z1>nFr{EpiY~k0I|<5aq7wgVhlPo8lBMJI#ls0qwqBdH&uK*YJ)Y!%9h~K;k8`6
zdYOHvZ(*DcF)>{d(sIr!tpaOnYpjHD*Q(=DDLtrCEF*{a?cn<P0~~&)phnRgsN>>L
zOL0j{C5!OmbyifWUWI!HR&eh671nP&Ml6;TE|QCj*CVM>$rGLW@9A-UbN4haLXvE<
z<9O)%6ty;-JHCEj<@cW@mg|QPv2XuA_Uzrm<)_l}lD~zPXE%L~OGAG~6~vvpZ;AZ)
zoIB4xB|83$D&j2<pCv9I{})h&zT(ueD<Y*y#B*)`2?E9SethvNLBDR#eOJO>-{Vza
z(qI}DXU?A?`a4%4P4ov&AK1s<ed0Ro+0FSoFA|UZG2((>aO%WWQQMM;<?4Zx1c|bG
zc<~w`$y8RFP(Kds`HASneQCAJD+doI)T@1ax&BgG=kgDr3E}4LSAY0E@xOhQ{rmQ?
zPn6@{{f7vUCM}ndk&%&+NoM|>nTimvYK0YT227`D8a;uZf`quSp<K~|6t3BlGFhyI
za1^3iEktkUe&n%_C*V^sPU$>JpSLnyYv<w3t8hxU?M8i{bXa97N~;=Pe0m#*d%>F2
zFO`wlcvo6?Z;HKAT2|bHHsZInHja#Cn$f&+RwBZ+<j<28ODjiAl?f_AuhU@b=0n@Y
z#f7+*gnYv5SQD?NK-~`1$Ysl$Kozyybs>*4q|RT1x+T*St4f^^zCIS0!u9D=J1-#t
zp=8XT0~_Nk8Rp~@B0arc#qTW2_MM2OPvMHxpLQm3{}qGUj3XfM3LV<al~!#}Aen{a
z?{k~ZwL0=NFp|*VkIWp|nQeEX5|4dJ7?YZ}<;9odJ>MOpO`G||o0_2djRww#>#G<%
z`B38CpXc?dd7^<;g2SPS4t^UbR<9~M9!8?jszj47dDt;;4F2NpjpaR9cs!v|F?UE!
zrXP4Jt%m=<`4iXl-Ie9^9lnY1@DPGNyk*yzR?NDTlwrYdh51E2zOrr%$3KcPKQos~
zRf}^XBEen%WDUjZR$=$^7!;a#biXhO`(CV{){di3qIh?41M4paiHL8|u})uJeu^OE
zlRxA8w`c#;KQKE$^c9-6Un-hD-+&>I>67Oef3E7(kWHfg1_yoO<DFx)YTt{nZ@Axo
zX(}fpBO@at^G7flG-%K`$=2u(4@i;bm(?lBkU1OKvSlS(c28_f3|PB*;A8~}79<9=
z3Ue}M$xilc*>H0(N2Sr>lGc+P*)!vk$^}<@3)CtdsnTZ_e$rxN>4b};IU21Q9_igt
zCW>L>Z>18$^CK+17)>T;HP`P2Qng_N(%Bf$8DE+Pl;-xNad-HY&9F|dz&&F&5pQ-}
zY!t?HSlGFcIx(&^#<+Aw+jV<4k-i++@bqvJ%@q~Lx9%W)>AGZgHWT6eIW=x)XP5Zv
z*DPDMjJ9pt8hi64VtrR|R9A<*?@yAYX&q7tF?(S1O{%vjz>)p$>DZwn7uQc_*TGwy
zd>BMN=Qwtp51~NL)STWdL`asx*oWTWpb%s^v$`3>{9Z_P<<+ZKczSvY(e#c(yFRdF
z&1AfN3R5udG`j=SlP%x^0jcxhW*Nn<wWr8kFbC&0Y(eYl#?d1uvCCZq4_>hKP#8@b
z<{~i4ii{2_wl7)Afiw4U&0Yw*SYLj+9En-XWlr1(#mgrLX2f%K`$4Y1xR2j^1=&4a
z@jJhrV>h31)Au9!@@F=-E~BENjCSMB&dvlqy2Z<21Mfm|Qol?(j!c`xb3<0jRI7<|
z*n6CFWaZZ8%{+SZh%K9s;FPB@?lvZTynTelYq#<6eI$kQ=HU9lja<2XpR1RBd8)M`
zZ@N^(zq!i(7f~o~pW@a#KlbfDNJMHcve`VRd&@RFPt$-B+8caKRfe$rW7%b>E8=gD
zDFGZ<eT0Wk&$IXNU9y+*##S`IPOq8HzQZElk3&QQR+Qb<NW8MUaB|Z!^f?M)6L^DT
z*B<lw%3bb0I4%6%Bab*&_xe1KO=>cJa8n8uDNZGq0NO1Mp>LCXoL)7VeMfvb`QRf3
z3+BW^#JzRqOio<9$3;H_CA}P&)~z1fLJL#bC6YJc3O+^Up>~Nh9GX6bXKGK%)vkkM
zus;r>tW4hCV9|=zT)O*;oP`SzaDJz_K9BHy7(-r<K$c8g#Hm{kc@ynI{;bZtJ$IBf
zTXu5$xdHEj8Bu<?%EGD3IDPXz{;D+Ob9_vn{&Vmw*^ZD)gPCzcOVf&JxOhRs!X+c|
z@hM8KPdhmfQv|Q*a~!#PU&Iwl9*>VAt|cO_`@D@wP5vxSM8Cey;?-LSc=UuTuN>&w
zE)V-RULdDeRy41#vGsba@Ry2f2UoFr`yrw%J+S+5h!&kEleI~6wC4{~dHxcb6!W2Q
zxf)!VJ`M9m9mp9a(mZ9kF)shu)Z`O!1>f4v!nwP!bg{+K!qQmZe(xD7-8<3@KRb8s
zq;>1oiLSqm6yBeCE=&HUnLgCwd{Z+sG-|c+*(2MN%E-vb{B@+kn_rGM{9gRU5DntN
zuQpEWC2f*Wl~%j_%9LA(cIky69oHrv&?cTEy>NbZ6E6_8Mw~0TNiPl|<TXhvXD0p@
zLfMeE1T8A$Ax)YrRBzsfLg|H=PEg_ri1@U>x%h+>Mp8NwLzTq$ui_HIU7MIE;iggP
zDbb)Kr9ABt?AwzaJqyQdr|FWeG%Fj!nw>9&n>5>b0%n%hJo#x3lTVw{p???hg`c3$
znqBOkHIaCAAd?34VAV}{bZ8w1U&bV!l}sp2i3xbdmZN7me)J$S_V`huLQam%7{Pg?
z<w+=W#xCO%Rz!vb^4^e|`i0UmxNTqF#9JEY?0tJ_2OE#vW9xv{?A7I<QGrzK*>nb-
zxfS>C-6BirmZ+|;VbzTgt}pD*X>}&*RIkkI9aA|FpyKYfsm#A*LFwYT_^l3SX;r|?
z<y+$LWSOWJL2UVyoo;1QiDHgm-I(e42|r8w_v4x>8;uL-=rek=s17%2(RLpB>ej_9
z=n$KphqH6`Xs*WPrcR~wY#cUDG>>4%^zrzMCc^O<!&r3PK<)BHSk}2ESA>Ag?U|9n
zxie#8Va=hLJ!v!P3L_@AFs2F3Gx~JujXq0N3UZEa^M#;1G@ZFuZRs?i6WKl-V8FUv
z?3^_nZTuU?4(QJ2yKraU22T3jVQ}j{kgYmihO=~>{}3w&JN$i5aO%_vjvPA5>O&7`
z)1ww|_l{)l4SQplSpxPkY|RCZkM7JhyNYz})_~BR!&!baioDr8$)7(TW_lG_%QwU1
z;Tn;~0JewbqGKs%6ov@ajGe`M(HQF2YB)BfYLMIM2`kS$;O3SoEc11wMsY_5x9EXs
z^?vkhR+t?V`ttaVFSUEFBvUmZ<{w|;!H16wZ`W7&=|j(^Mc6T>D_4{`$&t>De1-Cm
zJ)LL-=Ms%L(LfJ>bB~?J&v5+kK4u>cqe|KAoL(`86?dFPTn-Fw-V@WBed*bxFx$uX
z=Akx>{%t0Zu2dber;ZfQAw4=CFn7{gqz^K24-PYJ>m%M>TExWtFR0g|4mZ!Q;I$zm
z*|TKDD^qH5-%AZ|5$CZZoY=I6;M@hMk}8TpE&5<lvk$$R6k_Z6zB~zgO*fG*pSIm8
zkT<*WIVK|`BO@d8XZil}K3NfB-_(Xoo>|C}H7n_yER8+f$%$UCB$c}><_i61v7W3%
zKVkdzN9-8bk0l3gGk@7u;b`@FV5^B}l|Ar%PQj+laI~|bcIzsH2AEK@vJ*SD?4V@#
zVT5g-$C115X;7nB;#tXs0<9{BcW+<u{J9^sr|hPFdPlTMOROxU<L21e+lWeLz#(;d
znl~;=?sD}hZ*zl(Z`GKXC@?XTrU|m7YL_+`eD^VN_aX9C6zNvS;8U?N`90H7DtlV|
zUcTeZv6CD=x|l&j#&hZQZLZw($I8y0Y7J|WHH-T%2LC2t5RE$%yKEHAWX*={yUFBT
z3U{M<iV`au8>4_vojE5>8~KpCMk!*RyvOhCLBh%nqeh<mbm+aDR@odeadxL}O>bO0
zD^k}hoIMxraqNkjwuQ2Sr9JIB)+L8e89Ekt&*|spWb|+)Z&qtmaZ$Ke=+C2*O=(rS
zH%YS-=gd=)hDAh!vP=Q|Za(MMgSQlJ+88?<Tk5y2NLY|Hl}lT(ZOa}i^cY6KhQ*wG
z6hxg0g~?p7EDZ{KQloSMo?d&5&cclN@F3p$2k`X9R+c?<V{CZ`u3dUg;bsY8HfUF!
zfLo_H^H?duFN>{Xdb+gC#?5;HBCT#@%brGDEe&Q)xe)Ck*6-L$mcpfRODZczab549
z<W}msbS_><G=!%yw0vGvN(*W>tc*(<E$74Y)3LNG_8E%Prf?7k{W8(NReDy>n!#;b
zM>3jz;%sz5I+ae1eWv2H@(JbgTU#=^ry@@wS2DZ0lRk5HkQUyGjl%!UE1vniqs4*)
zRCf~%b~77lHmZb+hlUH01?W^##FeQ8ZHh*7aM>0frmsokqB+P{qbZi6UKzyIwNAXo
z7S=X6IaqV?*d@xgAA(ob0*oI#ixP#i;pi;#Z)$FA#0R~9!~1~O?A<(*40VTKrGLlS
zxI%O^##NHmMIt%4<p>|LHlk8qH%!g#Q~c~gGT$HR3xvGMTT0txeq4SqF)m>+nxGiB
zziC<%>1F%(!~|EjE+%`YrEHlqn~lfL&@A#NPJRr>M6VO+&>5$HOq<4$XE*K}{rmae
zL*br{s`+v<bJ1$5^q5LMX0zi)cFJTjdPzQXDlFY|(ywcKdiCi`J;@MXVDDm1;0rZ;
ze2kxekf>w|LPJ8iFBwtCJm6_;c5-I2BrZ;aUR+1DDxQE?bB0fz&%&OC8Q!QJpHxC%
z#wPUat5hl>@J+~>GY^GowqVk<iL`GuoL1#MiHVIRHuis82TS7!Vl*bSsGFOa3wBYV
zMipXWVvJv8q%Ss-j8etL5hn#94HDL9aLHc~{ncGa!v-H--NJ>BktlU);u6i48?^7p
znQ7fn6d!{$GraT#<@!^pQ5ekG$2L^*HZjg~9vLl#9ZN26Z_<<;%Al-QXgl^en3<yz
z$EDyj@han&o%9~|JiYly3ZCb;?qQZbCpEHVV9JVZ)DhP-W6Wd@Kgvh3Y}Q1HfTeR)
zqTKYNY&G%GWGLQ%_U+oyfBXjeq`AcCGdeu8IPvV}!-Ozz-p3+scCtFe;CnB~=yvtm
zTRhUcigJi2GD<Ry&=9RLr(M0wOcnyTQniXiM@NgY(xDM$WS%7-uKpLetA(KFN7?_#
zA2ZQNjg1whsB|K|>Iv73mm-48&rR{Li@?dd5!=@+BkO}X%sd=ScAj%R(a)vlO0s1z
z73ar^yol-~T`LhEx_E3e6l6e`4)pHbi<;T(r4!JqRl=|MVd6yE_(xnf4xWhM;!{2O
zE0@Ia<z-%p8#UzWdBUP&ga~&;q5fbTkb33XO_4tX*>h*)_Suuti5xw#h1UV13^fVY
zLi(WAuxC3ubm+m-eVe&4t|QTU7c!|HbKTgA3g^-@1zsidVd{64q~Xf)OYpykWC~>b
zvMX=$mO?gpA*vsnKeZgb%(s(dtNDA2{+v2>%D5c<y3t)o*J(MGGA3M)d+YnM%}@o~
z`_Je!vJ6wk-eKPSTFmL%g9uk|p87{Hc<Ky%l&7fQcR%ZQF5vaX!K{gH$h_{~zh_*k
zE7GDrl`2&dqUk<^T5o3DmTA}~9+yzPK0xoG%W%kBf}lG(7VaL)iYCqQvq?jsCWxxN
z=F>UXL;8+=P0vOO4!+AvvvfD;zwj&;CXUqWKAsAxPBHh0Jrf31=g!7iobqVIz*0&U
z%$mpLC!a9MT7U)P2Jv7)cb=A*PnSYJoASJW|K7N0inL1T%VW#g8B&a4EuHDzb}<vy
zPs4Za2;!@B#edln$}gP8(at@oxp)cLRJZ6j)R$FDI&)$9a2A|>hGUwnjGH~3<D<Ia
z)q5F*j3)TO)Xd>Ui}UYkDfVYq&C5?Yn&T1j5Rck}nB2^p6LUMV<YPHT6@I}T`>u4V
zB3=Ktbgw;;c1ydkcjQ6Ft)GDD?JaaT;KqhA*_hsOAn|Dm@aT0kBW6#<EB+95hn{8I
zwprX?-kaT)-I(6iz<|~}n6_~O_->}l(e%t{_@1T5Tp8O>ToXa;)13@h1Is2AVR|<a
zrbj^@y@_VjEYVQY{KUXP>v6~~MCmI>Hf$V3#F0rf*kE9K6KC$|%G1BGB|X}%X6pLM
zT$wf$Mg3m9Sh$D^i>707bSc9(p1{n?kzO+v5x;3LZ^|v8t(Pf*r{^<#(PP}RSrKYc
zk!2GquwY1EF8Ige<XnVl^Lt~suz<k}AK{+WQuwLBvWazAGQ2CLhb<>x;6ADjKgQ@u
zO*l078sk?C$M}IIk)yM^5>j;ut@4@h@uzu=Sn^baV?mf@MV3ye&69&un7I8BSqo(6
zwSQ*T&u`7?<y}~Q)s&K+4!p3h&4Rx9Su(meKRt;gTj^>{=+l9@ovRXCaTGc4ZpFRd
zaw;SavsgE*8|iv4#{1bKk>)43iMYb8DzjvKO|CBO&6@KjbnIUjJ6m^A-(r9F87g%k
z{Md{BNWE`AKhu661(Io{{%`6u`8$wI>$Ys!VqED^MkXa8-ItOrbAtvAj2&1q-yf-r
zQ_u>WGJk|WD#rf^Q6ECF^GN88{=4`}jHgh(6ywRk8{h2=o9)Ne&BMi>j!7l6k!g<~
zt-ixp*~ow}?9+VTl~{irriRc@TAWi`CGLMuq6mw$#mWBvd!9rJKX$+4=UWirM2T?h
z{)T6lLBtjPbzFv+FjOW^JbQK*jpp|UaQ-M_T%j<<%IZt8sW*<7F=%3mj5T0mZT<~{
zT%=pCA|@VeZ7lwPfd4fLr3t1cQg8IHO%f9t2mimH?};SF*Q{AXr%s&`U1VfZ4l7r#
zq+`d9#;KZRzCXz+#(zLF6`3UdZXqrsh<nYNJ$D!|t4E@PlHx78knKC&o8McAOZ+-a
zvt$zD65k@S?Z1N%mk{Cn9YS0}@$0x0HcmpE{kwX8B_VE5zhUW^aZH^)ovBkMF@F9I
z9{Aqm^sc208GjrTD+@_#|G$`+TM>D83$1&sM<E&ofA%UVl%~W5+~?@&XDEI#Cuouo
zSDHwE?g>B7f8{4RkUOqqQYv!Y{Be=RcnZP9B>7(=-vjA0SaMA3^F5JTt;trNR+$(-
zX)1+191<NARO~s7qNx&hWn_L}6iPF+QMZ{q>o7&jSEE9O3REbbkF=iI$>eHnTob@V
zyf&<?t&LN$nw$LkSzu~mC5^$wR{SINR7>)}Ot?w@t*tFl3I~O$dE&k`mgdsEst|q>
z_Ko41TZq3_#ubxoT{4g_cRH-hB)5d)R#w);KHW#(F$b`;Fvrd%Bl&W=VItC><i|`z
zq%iq8o+LNnX#8#ZA9(u(K7LGa{J*EMC?oT4MK)7OX1>Kt#mC2o`Sa%+1>_(3ocvGm
z?%g{wWy)k6G?LPg8Vb^&LuoLJlatdAQJykCCP`)|K|w*rsZf9K8TuobsVGgX(1h%z
zNU_x%xV{NnT{L=22f}Zi<<>J_&b{<z*~A=-9x<7hubt_?Y9d7)%}^yy`)Vo#^}91m
z7`O4V$Zsf7irO65*qwWa7BXSeMKb27$C&ZWad>lvc4O9|)+#95b|_t|<l^qWS&ZA_
zi_$4Q{hF2H%DoS$@B5LZc3~6|YTo<3MWYYm(zRG7ADG3<;mv5h`7QOUSEhFTLd3-9
zqJHrx#!i@ppE@_QmrTSX;518CU*u`{TXZT{hAf;;9{lJ%U=%GUY{ADVR)lFx`Zpn&
zsjOYQ)@Taw@W?_YZoYxNjRnDaTc*yKLk{PJ>lOXr039apz}dl?Pr)(tm_HrW!CRE=
zR`;v%HNWKc!G$c?dJ7E^G#tE%`UPzgkNi27R;i5D+(Wd>^X2FZnSU#*R;{8#hYqrt
zN-~k0W-786PiDSFj29?SfMdswkveti6e)0%km`seD9)chPn9ZFi~=O3AvI_un{jD2
z6G`}_<nomHu}OL`-@SX+SkHb$F`g8D(sN1@<J#~;<ah5vmA)-7S4X4rtUx^;ayl>u
zolOx^y+1<cZj-1Sx0kvzLpi*E99H6fGnkk|)E#PgcVWWKOL$zGM$6r4IW)|jp7S5F
zWKn;%3}}kF_7tpFHpjo&PDYe<;L*DvGAZs;r^f--A6bX$<t@UW{Y2v~S2^}(52@~N
zV&;~IoIiexX=e_S<-!OWAIZZ0zSeY_70LF^1Btr0jHzdwvARE>5|a;;|ITPST`$kk
zuAyYA@)OsdZy|U?f5tp6%gK3V87mqSbq6dUuR|<<Wci3M#ke%BYm`cflkPTUYtCfD
zrM)DMyB8Nbo`^UF`uE3Z(PJGePVMH&hEo)6R)7ZwFLCY7Q{0O*q<N{I$F)S97)SMu
zI(9D_kE7XB&Yd=)aydN<=j_BLdl@=6E6dAMr+69{%Dtx_Xxz0AS!|=&wsr$=K7^9B
zMh_Z#1~PZv9_)nwPR+`&zF`9_r|+Su=Npz!+=#|AHyv6xAYpkqnSUFy7*Af3Q;f@I
zDk%Wz0!tTH>eZD->8I4q%*@PK5tGbRe#_54y-8wRDoZJ?DZM=9?Z@7vdqE;e$o^<Z
z=?)7EGk!_>QuG_NYAmyrW8u8nELgIf<%61HWoCkjskr~69&qfWFZ&ixVDQq@*qa6t
z5iN;&NywWL@!%|~LTxCW+6w119=Iw^d4BUOkFK9)SdZ?UdJ;rbR6O1lYjbWwb()Xg
zPNtmscyjIx1)KIHr;{c53zZ~~rwiV7>*Aft3JbG@XJh6Zh4A)tBuBI6xW0NpjHwM4
zmNulaGR4Zm3d_h_yo~gwY<?GVHED*;&C9%vx1?mHN@TM&Cu@P+7(N7`HgRM8^abSm
zgF^h5m|EE2WN*b!bEi|F?@TgAK4b6Ry_~)L7@dhF4z?Don7M)Gb2gHmw`^Z{kkH6G
zv>UjYN@a4gq;DULGomK4bk;d~jh}#rgJcGji)yvfGqG7894fX(b#57pZuoO&%~;kv
zwxvYsU=}UA!QBmGIrt(Kty`By_x>r<I}XOFQY+%lE@AP_w^&<Rh_F;_89Ea4@-6W2
zKhOG;FA`&vk&#I$$YNaP5Ah=i4=Ig5sz8#F`MZ$r5vd3MSMw7Kcbz((DB&C*7mK79
z_0m11*Q2$xBTd?@%vrONb({BbZ1*DEOye*vWGn=^K^xDz;CIGg^r{%tdIRRx<`k|s
zh*hiCvj5a&#y7}AfgY2&bm2Ia^hc=BaxS(WF1&prt%qw2hPZf*ab9`pyOuF-X%k0`
zbG&?bLzG<_Y%DaW;<ZNqCgLBxwKJCL_lULugni__!hng0U;2V4<w06yS+p38FTLPT
zABopXD<J$u!p<}0s5|4EW+fuvH4h#><mKB>#)YP?&2Pzlw@$S2k_=PySXf)2*PBtL
zVjc1os!Pi(A9?)27>YoTN^Op{)fXv>f5s7YA=;PBM59JId2#I#N{dXiX<nT&)r%4J
z@CmugRw3%~K_-mffTx?1Lvh};E0KxDjdJk(+G9-3g%}Ti&f5J?xpHD92QFXa!OOtJ
z2xMerQVOydm-)-+v<Zt2{3#6L1#f(l|NThm{<~wARs>BJq;gEW4#|-xoe(m~Syoc`
zzeJ}Mf=u@px-P#L$y~Po6jE<<+O%nnV=I1cyc&$+S0ZVW80n8u4C~dzDGJc4VQPl-
z9nS0-QyD#d6FSR;*;Vu!HLfL_Q&w}1fs^O3bn_8nm3s14?TEwOMGT!ghhc-pbNa~(
zHcuYJ#O23{Q(920LJ7R8w#Dt~a)!@eK(7HqxbQF>b5m*UUMX%#Lz@xt?iLFd&ZkMY
zHFO@;k<6a?F?q9x(NkA*!#@<gMG@-Pw`Iz}(RAy%iUuRPlNPC=APM<|JV;{PH2wuO
z%K30E$P(k&(Z9gP(NiclWipQ9w?nQfj2<<Lj?K!VdUSv`TVk0psk)@I1)_mttm6vN
zIFOd13gf!J3+X;jhpMDw_v|d3vWPe-v4rsKRwx-`AL1*{e}4BpHtsHHRq@1%)3xy`
zbmCbOYLS__%T}_mUkN79IfPsMQ|^fKp9=p{14pZhLv3PDwrp-R=rWRd3pUcNPHtn2
zGBPqL2U(1#P{vnxqWiYziF>c;*L)Nog09e}`7Bb7rS?M_rq4z54xMS&wiS&BP2!!g
zTk4mDGp=EC9)D@Z_U<UH+AQYP{gZ4ymay{Vmjqm2PQS7H6Zif+Z%@x6on2mhjW0NX
z`Z_rkuIzdi$iaDwd7Mmz>HqAZ@j6{u+=aP^5_$^X-&{l0PJ;;g&U*Z#?>Z_JC{Kq@
z9ckOD8ErfE;Q1d|j4kBV1A@d0|LsrHNbgvXgtc7-F&D|MaATj}C-%=@!n0&r;O*MB
zA=GO;l4rr6@DEN{tm5LjNi=KInl=r)GGg@^qg&|f2Yg6al=Y9H_or>$A$;zH{05>g
zETh?k^8`QIKn3rL31!=|Deb!S;Z^cZW&O7z*^>V(#Kpc&g_%=1_8gjtwO(Zu<eK<+
z3O4Ob?>++<)WwI|0~Rr?Weo~=7p8HG+E@r-D1{(3G<BvKSh{B$b&7dWf6yv6jjxT;
zE*sO=E~IKcFRC=CNx{rHXwb4FWeVq}WUJ9E=w1};a<XvSYAWZ=OQR+&sM53>3nn*2
zr&i;TuO8zEl@%{52fVyX(0j%zI+jh1#-adgx6h|+;hf|s)s$gfeQ4Tm3Ek_Jqsh>P
zjH#6a)9m$GGPN;U5srQSCM=oK01a-e+kTj0&T7<u;aX|~uX9f0&5+8!ULWGY)k9cV
z=o!_%H4R&L;rvG}c||&{%naN;G>@iDdXc^V3<{Ygo*+oqbRqrozNbxt7Bp_yjBCn5
zES*!IaaHTG_C+@OH}b*WGdr%*tfb~H<jRwQNWV*r?$nM}V=mHt+BlX?s>YZqby@#1
zJN+6+{<C21n1NY~I<u{F8#<1h&qrw$TNxRd6oov1Gnq+x(fy%Ce_}3ED^Cxiy<2i-
z&tMchr9qKt%s<$Y=5>y7;o2<W=QX#le#A<go6E(VXq6IM3k90ESWK*}#fwWzY>W<T
zo9{b{UaBjf7yZ#+q-xID9Dlagc<k7;`s{HX$%>9%XbfhUDGVYFT9Jkrx)-cQn`2kW
zW)dRunF`))qiB=cT)sBl_(@kHIwX*2ojLBQop^U{3IjHKuwzkuLgOrPcCa-1(L_ZE
zKhh^(C#=m8FY7ooS}ieg;GD|N*hBZ_qCZb}jipliSv1=f!py3cyxG`>Ol{7w;>KM%
z7n1t3q+X_Yv_gc0Mr!cza7p}ht>M$hV9ab%;bdo?(8HvTM_PH`+F8VHY{qIux$Ci3
z=+TM)Lc?Nka!ZXladaq|i&~pslX_D%PUhakc<-xZZ9J9Dhb~dnM7?EH8(g@p`?a*t
z;_g!1-MzR4cXxMpXp0l15Zo=eyHniVy%5~p<)mldeeU`j8yO>O<Xvk%b54159vih%
z=#?6Fa|;E-ePx8-@cME0lDBVM@A3(Em9<|6HaiAJT-U|qekUJmlJcPcl0aJwYsMly
zztU>chx_COQTm>CQ$+TzFYLw+m*JlGUMFyez#ZxenuW(`_UlrJ>C=EhE+Fi&eiNfF
z7=Eu^YcbyLl(}~AjC^HZF>Sv4`%qErf&8hHd!q#Nh#`1B+=Z1q5rjoTV$jXJkk~Gy
zU6VW_jWbx3<1}^x#q8o>J8&N^F6gR)v;9J9O^T*wz&6B3m0ppfXEuOHyuNO<#vP~A
z$&M*{t?=3t)qGf_MM8+krk;SkbM$9-eP!TFm_%{48z3YITp}$c;G-;RY)q=f+hS^)
z<%HEM7F4bJtXkM(*C@OK;8Xhqyg5inY6iy_7IEZg^kd)<1*HZdK&^J4!j8jvd84T;
z<!bAeIR^;oCt8QqqqYRK=aTLmb)C&6&9}v}&<X4ZpNmn^2D(hS5<g+4q(!b2zG|1y
zCCDZW)Q7h+Wyn+VJJeJqcN)ByWVwe#loaQWi03jt;yfy)8BtY?kY|PAJ0p*L5+3k}
zX0z{sCO~WTWazYfhk5{pngxRbgK>QZ!M6WAD<Yf4u^5+Y<ce@#BbskuX-^Bu;C#?3
zv4cb(uP-ONz^r^!fk&fD$uK-nYiX6|tg9M@Eq8;W8<cSh7=qye;mAx5Lmv~%$mY)$
zU3Hx0y!Pf2{N1W7AI&Tr;+3kUwT%9H$(BiQ4~gj_sq?)t>o4`5s}h!Zn4RiOfg8<6
z5b-giTeryK2u-%50Vv^e1XG+zh7SDZOoy?>Pcq7%ez_)!mi73CD~0K7Y-hk1!rB`;
zW#3I(zsI$-wCwsmW%o2DIC!l;dcbM~Uk8h9I#b)0vdVvPw})0ZnE}|>IBh|NpT56i
z@!ghG$X=N&cmrMFuo4ofgJjqDYb_w!`TmE@(>4iehfB%7qw_wHYXvN2YzfjEfl<uV
zz)x$~4lt3}78m9HfP>|v566!1$yOF_Rzo?%7zf<dpZCe?0geWdmHElF=KYBHw<)%W
z$9E$lQ9^!+?u;YTCO3!{^7wK<(z1|meiO4z=gaO_bRMD%u!dT)mD{RXK0+el`7Pq$
z`jC`PE3_b8PUA~^&QQ&;gBcSV6c_`x3RgvqN@#M2g-V*Kl`;iP`o^!#4cePj-b9~e
zS*ncH)~|Bs1l5g=-*HIH0U+^=4RH=Y21`4??EYS_*Uc6sG)=>7G@3;;c<6-F2#NWH
zX{J-w_pJSPe|q&l1)^0sr~0p)d^co9*P>{VG4q2JxN|j8G-dyVYT6hvl=(wir|rjZ
zLy>GoR-WGo@zsI&g8Mc0le{s^2YuDvI9_h%<k9#5)J{{pb&GGH!pTCz*IWVMoO6H$
z|JHuqv?7Q~)$4tatn+@e#{CR>#pB;|dL8zF3re*~OpHot3?GL(XTAMPJ5mV0`{Wv^
zkS(Bakx%Y+wi-zbqMB*k=WzgrE`bjji|3sQ5iFyMlvj<#BbOYjG66+D$x{V<SxNFu
zeiz*TBHeC{A(^}g@W*YG!XLVeY?X+F=D5l_bb9@{nK;E|4}h2RAnD#17_lPG1%gE7
zzD*cK*42?eEy5ivxqPY$f&~A0ZW5FX!F_{vSxet-tC)(S*A75Lzsof)bzyF!!)9`A
zrJ%M+qA|1_x=V65P_*~c$^=9`OOhD2$%qOa>RDUF^MFx~@8o+#IN0K$A+cs71sb;K
zGgLEV5rNT?@Z`!?)LgJpes7Gs=h>{hY&DaT{Ugih_x~t6^xyqnkq`_}@^ie-dpM0h
zgKN?Wri1XkLwbb9GFV?%nIr9cm<MBua48~xm4p&QCNsBVhS*_Ns$83+%jJe?q$Yi;
z7c>Eug?gu-x3&IMdK6op*J|<ChIuX2zZEjElw0&2E8EE9M+;;0bBxh&>AaH};lAN9
z3pXd)xfG|*<u5;%dzSOrodQXE(#lbDi7I8|>;_yhsfmI>Yl6E>@4mtkRj=dJI6LjD
zE!37+N~ukwJk70nC)A+l`8^<WXZG~*oK_KYP|>xjpW|EK;K^qi>nc`wPxtM8_lAk!
z0T{_@Xu|eHIltsZ?`=79d0%LVoHnN|m-h*xxDDdK%{?A#;>-EH(-|nK!MAFr(t$Q^
zQ#z81U=py^b(0=qhd8XbUfYj1(}-(xIV0?Q%PD`<Qf)qqWSWMGgxk=95F{02*?Zu^
zVCWR3`h0J)YJzURT5ohV)pOE`72R|!e`X*E)J_9rZ2D%)#lFxe52tH^K{PndXW?uN
zX$>S8)YNBZSrX4NL{>UwY#oYA&Q2;a3Y9vs_USV9){IBP;pld&?OD5Wib}p`0y+)H
z-F>jr<(=5_LGa*%IWTX@nA(yVLs0s>*x9Clj8dg2W&>89EFF1V;O?_6fZx8q(41bI
zv8OVgl2dtl8q<L_GK=V%)q9t^u#!-;NC;A59hlNkMC|l-s=6ktkz=3DXQtL^GFJGd
zu!7L;Ms?hedoXdg*l;2&*Hve_RE^Sx`}jv&2f=mId65W{CvnD-bd5@b_m8j|K%0kc
z2(W_^o0XU+H67i{g;~n61LtcLncOlLAf+QpkHo?G_|#vLskJ|&fgYFLmB#wCJZf=8
zBkqG#1LZ=g=1B_qx^7`#DnEO`f|H-niK(rge9~CvSU7fKINELR*i0J1Y7yROqs(|D
zV#h(xgmDOOy&pNTzUALjP(KZ<c|1;#$j^|F=3Yw5cNo*HjBE{iIm)wPD3e0*4S0zu
zIdqy|T)P*fYxzypx@VF|g84Rz035v3_ihty77%aLXiV1EB5Ez6o;|~$)fztn@dTYZ
zlXwtAQ%Rsy+ilg<AS6B?zHOn(;yUTnj&L1$7*(`vQ4Uf-ff5085&WCI;Sa0xw5%qa
zYdOOhD-$`>TP%)f)m`5@fDSSY8BNFIbV4@9|6HP{LhyR*Ms}|<nI_x6y6@TIJ&OY(
zye)}e?dQ=A%3pUJzW7vd%|YeC!JH9iP4A&9@`ZmGRs+9)${#jac3$rb6CCZ9vkstN
zPFRQw+qLKuh?M=AqnT!0DJ9J$9akR0HO~Xh{3Kzp-8Rn?w^fQC;oM3ANdr5+&})3*
zrS&a6kWPzE>3sm(UXmDs>|@=?MA4Fh>S`juSdVJ(u{N1obuw`g;Fcvqi8sHL78?xr
zK}WLNQ)0rm;S6YptBEnhC_`N|Up)_XzjQm~n}gubhO))#*C{@>fYv{%ht18%Dpf7P
zCG`|7R)70|RKN;nS@@_+YX~G9$2yS-)ctK_WGzDDF_=f+`S%F8i~ufD=1D47Ee8nf
zHiD!~ai|rNMRV{6(}+vy9<Byr+OQKqZj-Co7q6xpzfd<aQ%UK4<F~jmo3Fu1S>g4|
zf-Eh_T637HL>%K|d}ej7!4=oOexrt+^p_rPjZSHGLNmQ?H{VY+a?|0=!*@0rC!E9L
zV{w=eDD<F_bj#2wnEqj#mzu1S5F=S3NjYO$?y{X`ViV1G$K%RWmRf6q3|xpE=vIqW
znEMZbfZo(wGFZx(7M}~<Cn$s!0Cj^>t|+o5oyPRqN@F+?mk8^VA0<Z1n~03OF#1`q
zzA2KXexSU0I1Z19h~xH_V@)?ZqnwvZCBay>5J-K@=Yov#CzBUkB1@{tpyuiFV?$(@
zmBq{X`})R_tQTL<b(64i&VR$W5l{VOx5Y7?cY+t2&7_d8kXS=*9=z@TjC-BSj1u3?
zqzs+??FZa(O5*+LRt<^w<dy?{?YRpL-ST8bR0m?3yE}$VZ$?wFfHCC5(ahZQyV{$Z
zQL@qJY-O=u>9es5JJ*qsKlyB#zNXbVy0A5xbM$iaRGWJ9PXNw(D$8F}686~g1K@MM
zC*7>Ix+FWO?r(E9@+{hBo9lps2O|2Cxgeg4DCTd2I^~CD-+Z&W2?L-QnSpzR17{+2
z5Zv_6w(-I<W>GJ=%xmyfyjy3#IiQ4DtdzUIR7V~f+O2Hz*Mb<aSh|FFu{c9S9Q84U
zPQst2ohNM=D`BiWAw8%cc6MYs_O)r8x89rMTG#iw{DuraL~*}}!!>ng1XS%yUoy4B
zp<Cr%6gd5O5>QJp%RWof+ykOFg<fEIWI4R*I-5O`t*wmbHjQ%$=$!l=PPffChyy)7
zS+8mBNrE%#cxWcnv(h3bR|pADuYYwP&(_#GBbdHrJDiE$+uknCvZho*m}e^-<zg6g
z#aHgwOKz>XKukqNV!bD0M0N3<z9=T0h1fwsd@PiMl#Tsd=GH~hwL95=6a)5oH#@0r
z(t6iBVXPQOj&$}V*Tz+Fo2qS>=F&v>^ohLJE(r5SX_lATu({Xyl&SBf3K_h6_K4Q;
zc%866%O-90=dP=zH6zbIHR?IpDQ4>ROm2sr2zI2%xWlV@t|PhV5sA#Z7oO-({g_6A
z1vRP=&47{jdM>30h%!dQBIa?4rc-(QH);>8zL<};);S+B&@r@qKg2lYQFmg;AZVHG
zax<qR5e)8cue6ICl|xHb1f*;Y0#W1+3>{gP>658895HN}llPYs8`YR+GxhglO{%=b
zn|xk}HQHFunH~OCu4-v4cJvkddoOVm<<{7pSDyYE+OJre`V-3pa$s>i`($Do6or(w
z=^OgS!v$e`N3affg!(hk@$hK7*v(Zi2avyNYC`?scgKga=A8&Cc+|<`%?tyeRHy_f
z-02^o`oy3`VSsGE!@tq5Ws*A|$5%mgzA^Bd6-1vqIq7off@|>zuQJXL3a5!luId@u
zPKA~4gA=`(Xy&K9i40KeM2GZU-bt_=))v0^Q)443Iv7gWr=wA`%gva}%3qA)1cyqY
z6{~LR_aW%&V>)h>T{?xLHbg&^4c@O1ZQtBs(q`eXtA9Bcm6zGy`fhgtM>eLiwPmC*
zv`Q`DgArxAK)7@5M0o_E-#%djJptA8yD%Z8;fldl_A;Q6c$BK3i=iE=iA$;TgBZRG
z@;kg)jJG4sm{fM-+}Li#gsLKG=9-^+xBj6Oz8Y5+w|_zJ^mYPlri4M^!t#+Q#&?Mo
z1%u!Eyohm`M*7Yei9bjFbzo9Jxq@uKeST!uK@Fm>ME<&d^ro0?l1$1tP0}NCoQf=A
z_l3D<Y$$CZ>o0XtiyI^Q=tm*7TUlm!{!pAM^5LVypL{2R#<JXNgdFYOc%q>UU-zFv
zbbr$(Mxu~K)t`NZ5dpVej4=Ni(_Z_EZfx+z2I#()gKIu_43&yQ$Gmq#jd<+?!(|U;
z&SN$7eBh>b{kZWdjw+u3?ZX?59<=@X%O56H*m6YWf#ZS(m;7)|4>F0zvQu`5$;nyF
z&OkSL`$CIqwHj@0YYO_|dqNu-1NFUM9w9j3$ng0qrnzl47rREJmY;w2Z`LaAlCd5y
zF9_>aUZ>eLlcde`0$bmwNH<uOJgb0@Bo9|)#51jhJ=2Ut8p`M4jexMS%&$MIHjOe#
z$vtEfzd-18EENd>41N9}e6ecb#q9Qep^moj$<#5t6R&5!?{m|L1AOJNSCEljB{s8(
zAEMS_VfKh5<c!kC7S!fSUg5j*=~ir(3ggdhgG#gl5u9;*Z87ibmc<MM??lqS^a2b=
z3d9SZ^{}^x!x#nvjoylJ6%YLw2UMvHBQMVtUI={LPesz6OmUT~ik+rdi!4~zk~ecC
zT0b$fy)&MzwU}bAKyQnoZi&bH_zV-hMm$AQ3P#rKnYfwM83Koy_y?%ynuM29YbBM3
zn#_{>{x({R`akxHxJT6?LCEk}(@hi(gVyiU)h5W_zrXX~jHKPgOX-^&Hw&$%^JuSJ
zQz&|Ze*KCH`Z!ypn2oqwf@&gcjl3IdOF!PtAfKMpOn*%x()w1S0^UBHEgBH<@481!
z^d0zTzzNWcud~#{{`VQ-&W?_b8kKqxiC*4?ZmdkZ`%ndSXC!fy=DP}hJTA27hkHU3
z%D32P2M<vYsH~6tCWU!>dm9KXVfepq_0}<D@&dO9EeSJYXNsQkl+Dm!1d}gEX%;Jy
zIy3L0;o?f$*)gQDTPi?L^)f<c>CSl28?wNEin)3EC8ntC8QMGgAvkNs@I>bNzftH!
z_iq)rnL)>_|6SK8q|hO6<Q4|V^Ug-)%={}GIfI%?=tmG-CCKH;Pi%?Tmk9xf*`oW`
zqaD8|_4I3UadWk$aJOMviqy07!G--V!}Yzfil&GdVT|i7WMO@;q~`nm2tVJ<e%D1{
z0u|awq0F^6Hu3oUYnWFuz~Vg4v9i``!si$IeW2uMqJMfymk}uto5}1g5B#aGl*jde
zOj)^Vx$B*;>vnx>eVlyF3oWzxp0hi)%IWT|t*^t8`r-{QX)Jw`%=vY1GPCzGT@fmt
zdXvGBRGV$-VcYWp{PI@U5p+}eoru$8HUVyNQ!c*eOhTHM;#rx3Lk){)5x!sj+FhT@
z+_IVzm6(~%btl?C1GQ@1Xn{D4M$;?ypQt6EbqP*wJe^8}x_#{}2s}QoFw;NtI`zF1
z56F{Fbr&u~pe1pFa9<Vayu>KrJTv!jWI+Gp-oZ9w%_941BHFv*mhDdF{4VG!#Yjza
zLyRHm_{1>4Ic-Q28~Cx;)FN6Zq(~7@Hi2dYJTI2w$@lH@Z?brePoGvN-_;>ozNAAB
zo4<mKnUjLsOKMJ-Z)($?%Rj$MZ^P*g{!~oI+t=q6etK)cRuXE1(jmxc$SikifOUi>
z_1jCf->GG9#?L+rCfS=3UckyN%d|RKygK=Q&ZuG5c8EXCj_MZ_RpG)|E%6k4D)^nr
zhji}Ubt2HR_p5E3kBJY#g5byGDD9!Nv)EYfi*<pRI+8US<#HBEf0tTM6_h)HH|>kT
z!M9rN9EschPkabZO<Uc`GLfxfr%$iWSF{oCQw}RgeBpF|312m{zz#(|?JL5WyPCfw
z`u&Ih1~6L9=6>bwL7z+v?+|HAJ6(3(7t0g-$h{D|t*3-9i^)halNzLt(dvAmjhNNq
zPovKx=v%}jl3j!ta&0kqbbUKlZP|k=1TLYOfWr8>qGppjl7FHZ^K$>%-mnImu`g_D
zZ0AN<T>h?kD2tldp1Y4CsXqY1W<-rmrlh9g;k^BuC#}=fpjCi?oevq%O^W>Y#br8s
ziXG$7vlBN9MMK#a;^D`TJzKDYxOZZ&a2#61<7$k~Kj^uokOKD;+ZuP4fxwnImAz5Z
zx)E@sxM$!>i|UiXiDQ4TT$sQ*b{?XpDa8Dg-vt<NcjbApO1@kwlg~_bJdnO_RxLh`
zEvUDpaUDD<91P|{q=%jx?oPdK{>1K)TPV-FF`K7vT0&}T^^m0%>pm8aWw8LMr#<Qk
z1VZf4To1VzQ(O#0+SPp716;TXzwTeG*|#^%8rkg1hb2+AwAoTgZRq9#?~R70LQ{Zl
zel1Ws_Y{QJ_KH0+mboO<2CLgTZ#?U(s}q$PIh#nnb2Lko3^$0^;Kk0jiinuT_VWP7
zmG@@i<L9g!Tf6R*pXpOYuDwFKFavJ1J-zw_TFxgQElTKFjAdQR4Tvp<iq~;xzyq|3
z?2;M?g*lq?E*$z|LgP+*Yh`^6<hCqK-(_$Gft<Mu(;&6RaI%dtWZgQcIcDDE$FQ*K
zz+MEO`;v)iXdz92yo3k6F8tkjY;O!#IZ|0n*bzQeiw;|39gcmwUbC7TCG~2X^Xl*H
zo>CB@zx8;TFLlk>Y=-lC>GumUNrjY1g;agLwmC$@sc4Gj06#Nxhoq(6p|r1Ma#_Ty
zp_wg`)%9^-*?kl#dp3elfxj3sr@r*oy&~dyDyf;_sO;JfU%)DRnbXPa8B;HDH`iYJ
z*$<H;8_ugXSr|+&t%!wCHQ}jHr$H)-QdjwyneSuG#&*f<vJ4gv0u>TJHdnQZ0TE3G
zQU9cLkJc=HLe&fSHhZ+o@f61+&`fwwM`G-S1!2q1Ae>M0_YSLW))uP4k%>iTv<iGg
z4T+WlO|dn!a}$rAO;f2Nvf{&dG&VjE5%k`;K3bavMtLhI@(6%aFP`H(45IOTUO%=J
zNZ2+^(rOwBq?6c@Rj`)7lX(BP9|$LNk-_U48Xo@TF_RXQ_q#r{o-iN+opMK=2lUmO
zE0H8cm}x*Akybrvrl@kezWg&mIc!}XunrXhiZW>z8>I&vR~n!6GZ1FXrXAZ#u{{1n
zU-gaEs`keohqoXd%;V8{x;JhUBiU=f>^b1SO2plV1(&C*T5ecn+$d)V1Vm=pa=SK(
z2#sm97x*r4Crqrx3Rc~*&9T#eUd+k|?n@ncq>N{TFdi)43#qo*XkV7&QfA5TIORGs
z(AgR76WJd5KC6JQktWvl2DeC~y)|u_LKIQ{+PqyxIqVFNIE=F#cM%VU>}nm<{1SV;
zHa5?!etCzM>vr!cGkAj#%5bD``F+v#r7H6qXKgv$!<>seNpuW0y35hWt=j?-v^P(-
zf(t)cH#S&Ux6Wta{!T+SKT<K>N5XIE$~T=)s@GvjH;5i&bAM+$i6N$R&p%?YTKi4M
zUpdQi%g?7~Et&6+!@D?;&gSYT<C%*Df=R0}HA6C8p@8mdtFHz=>QwY-xb3>N#k!LC
z30b`v(eqZbZ=?ut=`2qv>~PrimH}dp8y-tiWko@_FL``Y7TkGKr?753PLav4eqL)Y
z`1TvfmJVt#e1ib<zoUE^8Jpo}4FuEn=N=x5_Ogxr&(@}o7?1E1TV4;|Y*d9iH+_5n
z-)*s3cw#H^JnxH>&w>`rTPm^W?T+<vH4W@+UHVvv<3-ngE{3Ic9RU5sruwqA_=PYg
zr+RG>*~u1>b;2$$mi~@BOHiR1o-cm3Da=xG8M7<FUiWz)t|Z||Z{uhA5Na6)oNtg&
zxO!=l$ru^2h;rdDy=UKAdR^u{uD6zrEL`<WUPrm9=5m6S3#&8XK!q?F;H5`gC+Vl@
z1}lOU13uY^s`y+>o76QzdBdPz3eMuT@>V=<XhP?fN=3sKAF*_NPWZ-uL+ilK;Z}AX
zd!`5sftT{4QGug63Q!+DKKLeY#(Mf4VShcjFk8RI<Z~v!Cza3}$r~Fj`SoWNG3VQ(
zdAGxv{)d;}k8eYDB`?WeS_T!X4C_iPsgnr(dqUm$L-Kd`5hyE|9<L<6J<=z!p5c^h
zA<C!F&eNM2Lqf+BNLq0{Vj+L$zaObRbc((#9<VmKlR3V9gzA#n&h#Ei3)A?V7I{6g
zgN!vbHKIR1z%6p9(SopnH$n;SzQA{CA}UcH8u@W?MvkJ>sLy78^~qW6dpYhdB2^KC
zWoGIs5mCN{9+WgJn1-9_Cz}Eh6GXmFNB%6?8zH8~_F^S$8`&WbQ1iDtjs1-3#B9i}
zt_NgSAKAA-wm>feT)~(|&3!4S8FF+sVMf0akp*@E?)}E29Krr?mgWo;yK*S;-QuuV
zSE)ZW=cPPbC0gDztajr5!^pum;xsR1T^0Mip4g@&UFJESC9UlQ{1b+X8uy2pU~zg`
zazPBuG4riRPSJ2pOoy+`?jbXny1MjdhJk=-*oI)>SBc0(EZX^eY-=X<60SXsm;#J9
zAsN9A4KifQLr}}o7$AiCGgj$5MnHzNrN!`|=45m6glL;yV~RPG!a$S?&duaO2#?$S
zSafU?%3=B0l^O`7$K|xX`Ri)8_6tejTxDF)pl0ReSS>1NfrH64;@qW*^D!9T*V$e_
zz<U4slEGfrgIsQM9+8G(M3elgOa?UpHqHVpy`M}Y-zN-B?Y;bC&ct{!5snnL#2rWx
z+r_f90JJ?wN|~rn>J*sWQNY}OC-Fg~+C$Xm8njC8@>wRcF$+yevC<py+`oM$B0O9U
z2a-^B<(;KO&VXjfjPt~);~!s1nuKBD!FUS`3)$T4AV)`3nvl&uIEr6mFczN(6rQK~
zeikIx+>j+Lus_sB?Z|Ju9m<y`#|udx{Rd_2pjrStq;EufhoCz4v`nLBH-*{%mU{W(
zfm}9IGMu^s6~ozVe0v}>dxGF~Q^*~yF3LddQg(3c^KtP;C0q-GW(`DJWW)!zgMx&Q
z6LwTBfqqY-WX62xG|i}LFKs$>aZw2MeTVEm>k%kRWiUk|<aDVlfd5{%7Ii}wsNtGt
zs&-J1Uth{Ik;N|tF-BP8E&DtQi%3Q@(Z{3N9Ly(V@WqTW1R=S=BweT+v*O)h+()TM
z3pOu5KO*9JGkeDkA4}O;)`t7m<gEQPp+Y|^rC6Fnhv;%!?|Lm{_~i+AP)OqHDin2a
zpTs04CPk~FnO_AY<sTLlU(?3*1ExuS`1m5ej1_OG#vP$S9$K2E_h};%j*#Wad-6>e
z9)2Iq8yF+PNI9BAEkL0qD@z8u4atjmn1R)QQ0|YYMP20P<3p|@YiViSujWA=e5+fm
zM*XN!6oX?edvN;OXU9#YDPKg)C@0dZL8lKa@eC$W_JF?!B(Oq5UM(-h*Z6y{J-bCW
z-lOQK;@!OElyh=WINPcQ_vcMK1k_c@I?~wp3q)f0kcs?dE72u}v0a0D<DKT)A%BS2
z{ajLk$LR7#Q#g2!ZdnZ8>8kY*vM2R%g>oLX93Sno>~&iKzrz_<m&9Sm7skXOH+_kj
z?tB3_=u!E!77JiykO(Wbk4NxXrZ|sWI=d^1HM7CTA@2|H(XKgt?%MP_7W2rN<~a#W
z+Jn~1tGKp!2pT@VXjF573f^+W0MU-|VKtds`GUk8qa{4nRGs&$w<*fiZnUn_?r@l|
z==XP83Q~t~-=Q2>`GchfcKz0<?UoglFD{2nZz=-xQC(f}GkKh*w9pENwtDk>kQT#u
zSFydJ7e^K~XJ3fUVzKyVRK{9E>nm|#;X&#Lq^5#biY7ziWN9b4HMEzj=BTKsG2!Up
z9Fd>_8AjU24~gwd%alvIZ`h+rjQRGfjROm(ul$O|8+nvx5hfJ2Pc&zrc;e~xZLV;}
zWdH?uNc>H`J0mV0L~XsxC?zRe<$~5Tsh6x|oYAE?gS~UGgC-5MS*qwnn>Zzv?LN2g
zii(OgMWkv6W1?8VtKI6jkLDe`9S($=J$kh9U8v@CSmGqOe~t-ov;)tCDyYW0S6M@U
z<N8MW6iIBQgvj#Br}Db<Jx>g>2h78}@JgWP1LTaWZi-FGlnRH%I+BpS2)3nak8)kC
zaKc1K`sPL>_6tc_yR^KmRYpZdvQ2QFot#8TelhG2vw+8@4`&;TKjK8ljsDWho6J1{
z%ZVqKnD6}+Cuuxo0=(~|(_|g&Zinl!EEhl8AF8t}pv7&&W$7SHp*}2hQ?CCbcE5?$
z`;dx^-NR(&Pud(^B477pg;aCGkzCRC;TMc;W}qTot+^9qr#q-%L^mEWM&-QYXYrJk
zOCnSE{)B!=(uER?P`_&=Y&h2KY9rNr*!md%#V7p-DZrIlp$ipzg0=rp;zHU%wGtaP
zt;`k&cKM1+WKaL~b_Nw3uO3zkn3>{5>#Hzn0lh}z0+OqXQ8%VTSo+mp4OIIl&Tb)A
z9d|d}q*U}5IWG&h0p^~#MnPK_`)S00Ru=@}XMDhcUdR!pYK_O7-^7E^pAI|26)gF%
zXrUkSmcq(iqQCwi`}$?MItFhedH?BL_q}}0Dbjeg;0et#+B)#>!z>>NUjPf=^9+Xj
znb8<zxqY1`h`X{#;)3&@eevrm4o+#DPz%nmW{7^yO3n1bF^|<uQZrFhG_yi%k;55$
zEUWzd*_o7t*Ts$6QZak4uZDaLrJ+E)6L7#Vvz<weROwB(b+v`AxGp!FEAO9WU@#Ji
z<?C&h93cULGh#;i{s1c!@M6`@{Lf(h7?(7;+2TrFq1&Y3_G(}7^lX_m8Xq`ppvE}C
z&B-oCuERf5Ck213t3<~*6>OMue*r9CX^LxaWmh9;j&?Z3H(_*esjxDp1B|n9tA}$O
zv9Pk^jGLh~qF!2v`lhEGv^4sn+$E-Mffmp!tSDuy<9*^O3pi-SA*#%2AsW~}Zz@(`
znhF`E9rL<>C#Y|2&h=q}MIG(j(&U0>3T~i*K1wDQFFj;OZQ*K9JwY>S!Io4r6g_C$
z1~vk?;y)}3W#eEor=GXpSVP}kb>0wF&hyQZC@RuU&V5tnS7V*`8<{nUJIP${)|OHz
z&B!+1VXrmLw>Q??^je&8+RE{~$g}(>v}a!}yPAh6ggZMsF&VU`phJ-iaeQZ#zoS|D
zr5V*B<%1NgQvm&n7H8qYW-)FjhT-bJ)UkTJccFujW@Y#f@y*Za2f-wu&C6^1_OAL6
zYbjIQIWm;l(5S+Z6PUTlO9{<OZj8xDQd1>02a%tiZ3p+D&&gb|3Icb}#gJgs+NZ0Q
zi`T0M$L&os_DYT#QH=JmJo83p$gYAN;s>wYijnZ26)iU$F<P77p3YLcdqecKJSji5
z*)?bhwo%`eq7Hag#8wG0Ix4PP_6@%ZWOId;j$%VhFO%XJi)PFqDr`bR-v?_(LvnD)
z)@g|*n@$EgU3lTKthyhZZ&{+}P0WeMnz4htPq)N}dXsk?I8qMR>1xeIO&d4W^AKWk
z&UV~6JbC5nem)PUjQqm+P*t+fB7BbQu<iVt7e=!(*94X_EIHa@x@NGsfT?$G7e?mZ
zN7#F{!g#a$wSXJ=8qG}iE}WE<1f~6xVu<+B@9sWyGWR;yAwW}mplv$=z>g7(`u0l%
z6C1aKGVi})h^XrRPGB%h=#v_*n-p)fL%LVFoA((+xfYpq^4Qn{<J8MErgO#MyamMA
zNDq0JE%f#@U)Dumq_&>983Gl<<@|)>(i+V$j?94;m!U9oS=A6lc;~Njd{I{NJ0<pn
zNW(*K(VI+tl%3ey=(VWtjyZpFBFK3}dozhfr+2MIj~*8F+DyAkLBQ%R7NEp^JCDZ&
z&Bl3S&C!Sylf3O%hZ{tkXjS&K9l6+@ZbQglCPOVGLFe+hfrBHsy8=$de#gV(l<&`u
z2P2J2^GD$QsYQ%(co~cIedWdb!5NIKyY5hTc9N6t0Hy=bNGED#U?X#NxhaoU?rGwi
z64B_XCD+(Sb<B8>ESuK>aiPP?aP30O4SpTyKAF4vBot2S{<H|15^iDN3{%N_I8*rb
zPPSt%`#srd<acu9u3X&8`KQ#hadgqO?^e=Z(3ERZ_{<AbT2$KGoMT`SVpIlLe_&xW
zVc@zY)%LGAZ|z_oaUBgNv-?6r6ka_4d2qhJ(UD$r7OL5;X5-BkD);KL^*>yv@a>uA
ze6bwMnGjCzhbr4wx_k69IY(aaWl?x5KyZ=WqxGN_KwYWbpeN@N2j%6GNxSEv&CHou
zNXTof<@i#~Rt3;pT+>k9ulC8-B*_XtkE4HW27Y#k|5Hk0u7<Jh+$DT%@>nDvANHm2
ziWg~LG$}lyPx&d^cA`XSwd_n`tt4rTV-{=Zo_+dE-~utC1s?~UYCF(}poo2b)kg_z
z_NygBBJ{*e!^->hfa#n#BiD2COb^kWqOR`i(q4|@U=mMCUtspKfgAII5QH2wm`HuI
zLgjOJHhu#Ri(B~hMTj4Gd*6YpBlRR&)IBqxvNN9WaW{?Kq{n4tW#ezW^M5tazxzO<
zWdLRBBQ`q}wIi{Z%(AZ+d(v2)2t-%5lul;KysYz;?R`iU;##m`w{&!T7fUD_i;Ykl
zblDja(bB@TX?XI?&ZQj(NVxbuUV*0z^?Zb6o+a56bJj7Lnn2IYje*1nE<P4G9;ppR
zGF>if>wGD!n(a$nIatR&8e1a6)?R0}1G57~DVscky|O-Wf&B_h^{28xdP^E2&%~pR
z{M2U?ZgRHdg7f+31oxn!d(T7lHer3H%)*4kq-HHn*bv%<y>n~TVz~8!L%Irs>B6D^
zB+ri|cU{U_UTxqMj<SoDJV+4su}uD)I3b@ONL{pe*Xw<v_P8TISo2${YBcr9=LWpd
za<4|KT8paLVJ@_4IdpuXu#CwdbDSBI42)tPSEFDWv+eZ(ekeaO_|yEJI%JtpwGxr2
zIRP?axQ`?T<FHz3+V4fZ{mH``$5UyfnMc;k|K<Gp0WY;H#;!2FouVi;@}CU%uQzS{
zp~ZFI$;}PmCbKNf1;L_IlU|ea_ItV+rWs;4A4xbMBM14t3~@nZRC6hbG}E;5p6X*~
z5*wZOHjwRZYEpExT>~5x@6x%91I}x$@?Q>SOBtOHYp=-ugxd3CZyj`Hmd@jB=??;Z
z+Z1OX``l{@NhU7D;xGY4J2$CKc7D#0#peFFu5;Oh#C$#Ld^6+D!s{r5Q{@)APq$US
zWHONHXYbt@*0U9g?o`)iVq?Ittbex^8ae1j$e-hP+`UI52(rpEcl)Ov(M~qj(x<Kw
zth*4A9S-HIAJ&b*v~UX?<~m^uYmMVS*whq{r%g*t-SI&)?9J~7#M+D!`LC;hL*eU0
z+}LK3iZqC}_a$mqM)T3iiB5t}VZLEUMsR=XEHs|Kk$Y3Js$$+M&XVP`tr_)N12RDo
zm#l!8<X#my@N!228zRiI3H3FO{WlT#v83|l9@c4O=*98P9{5Hxg@IAlJutww^+?$>
zXRBt#(mw-;=n+qQW66jmonC73`fEfxLt~)8nk|H$I}I_~4=!oJ)7XO*>O}a{xA0ll
z6)h??<nrb3pZ`qeVVx`aCz5<NI^M%))`%@F2`+!cSs2C@?nMm(()hItC>35Bt6jh6
z!c(*Gpv(D6l>-2*7{&u-h+5jIrc<R6i$5A3DimMrO>KiBn9@8y<Qh3d*wR@7knqVM
zb4%gXl&&elBbp|9eHdVMBg@pA*T0tarMM>BYQ^(9Zm^$Ym`YgKX(FDTelQ7=uzK2(
z=-HQ>^DC#G|NA*5?_ff%>b^@t*B(3UrA~E&Jm$6}oOMm%CsIb<!v@hqouxP`dwjcb
z!~x!C&PzImOg$&XOr0+ps(`6n^k1v}<cu+*5pvsl#=qC<dA^`!QANWw7W!<5q_|@Q
z=%I&rnYd}KXyqmpvH@Ng=PFQNxV#Evg7TM|P@Sbs>B~b<xulVhtaHgOSC<Z?Ul=P`
zbGWqrlFl4%9hpTLQma@{i(h1;ZFlv|y>N##2bY8(A;(NKM_xI3y7teAM_38xaMV!R
zZrC*si|RqY0>aL|h^$1_<4BfrnN0Ph!c)4+RNo*P9-fG}_@~nM{nx^Izf6+D#H#rt
z*6?IIyBEi?2s(p|nai%2dY|3Jtz&SA<R_?;dzhENR!v-OyUH*>HkL|2;McolN1o$A
z&TQUukOXB#)FYN?MxUe<ewAtSQm1B%xI{1p*1d#PE6+#b4(dIi-*JAg*S)~OqVwB=
zUduaq<|XS)0Olnf)^wgwsFb8X=XXW)-|=mi?H5ia>NEZY+!H~scqJ2fj#X9b^Ul*&
zot5qHJ~v&2>ok}y@m$HjKUL4oR=xKqr=71JP{mL-;|ra?6J~8$2F8PUgu5qkej*?m
zo>0GXh1<Tndy$n-UcSd}M(iI5ZGIC@-+95%Dk}LCOpAo^{{TaHa8WYvEw&7XkBmUR
z*lp)Spn%xv5k!fy_3e5sFJ2Yf2brjUDi_9jsRhSVh^hm%iz4ACR_XQMQD#fWJEgh>
zwGE-Jfo=q545Gk+_ia5s#I-D_I(Nx0fQ^7)IYEh~)5prd$f$My7sis?uK%1rd~0)i
z>?(%im;*HEnB{aWVU=h5@okZ7woqL&6cJx^u(0FtFdr4J#*x?mRVFW1c;Hd{6|ePK
zWP79OBIXIqcTMH2xczdXkx;e~vDF*KTA)bHcY_=LPEu^uX&H<D)Nhi3+Phuif5>6<
zt%9$~>=^8{g)Kd~5v|SQ`Zd$%4)Svc(>E@ZsIA&>L_7^CMIzYEW=f2!GDEr{Pu=?t
z$dQpc6XnvtM_o|oDaCh3+(Vr^6kCBm`1hwEO*|z|#S@C@Qh|57qShbv9CL*Vleq(d
zUt3~u(^Zq-xUvJnHe0OS2>icIqXcKB$nT0!Uv#m7&hk<4*9|t8zAsY|c|Gznq`vcI
zci}>HQkJ*j(84i8F{r$3@s=>|_1E}lemyusS7YHcJDf<-TFnmD^`5)PyaOYni!G>n
z-?G_>7LmP5RBh6Hvd&1gwy2Ks;Fg_%-E2?+XGE7YioM|7Ru%G!UQ+4Th_`5%r*pPU
z=vzDJb+T~9#h`g(B=gE4&TH{!7%+OgFJd-gAyy?iU)*NQy}(LBqqRg}`%aW#<r6lW
zOpSq4(LcNpwa;C3p=>Hvv;FwBl_mNEfeNeZ?}v&+4FJG0iu_?&_1BG#T?QMddpzyn
z4|i~%^%o!qY2e$~z``z+JW}+K&sqLGkD2ZjZO*vf(v|ZSO!drqf5EC_iPcGz$;vJc
z@g2vBmavJ$9+Md>;{McM8WCPIKp)G_jdF&Ow;ufhmW^X?;0>Mf)C)WalQ`1D93ri7
z!5@zfg7X497ky84G4uRd=sirPmf`{&TZG<+t79-R96ovPb{y``VsNfz%WULycKl*m
zongs~XXcb>t<2UA%YTAtI(y7j;ZyoU&CJzzxuyQ4=91)VRBf(!oZf&F84U3y%lGct
zan)vhKc4IKoxMj8fgk+*R#M$J?M%jSct3lF>~Jgk_Nzij+&Se~J!`#vTatZjQ+zir
zIw76`@n$?6t~$N(?&$g}fm6*K#~#<%#4PX`%4oz$O`|8=B*5ZHxxD@%H8_UWzFnm=
zs(-t^-Y;6~dA><397eTzjh*%S>wb5J%h-48A-mAh{}M1U=B@sNvA5LO-&?V9I*kpb
z=(2d&MlwOR|HT4aL+A!Av^QyfJmE0aWim=S$8zy!&3ya$6YQ<D%R^qOLvZhTQ!*J1
zKbxw}+_t1T-R336r_URld})P_PnCR~dr;!5_GA)rw;vY9ewTovyGMbThafBvHxdS4
z(>5<ZK+HI>VgMi6q&rkT|4f^@aInk$*t8rq`r=5DehIz9!3!MC)1v~D&QJQ>9_6Zl
zGnm=}F@~+#nShsOdz0apul{9MdGF4(Rh7f(_^XHNFBtN&3g#0Vd-b*+arUF_R-4X@
znW3KlsD<XFvGH7c<F#g9kSvpint*-IA>_kNn|>0^>=8aRo6nDO07<hr&0L_2n20>u
zT0pK%{rjdpLFflc<;trf&pS=b%Y)%=6e(QLJcd88vH<=T5@$}^h~if0k?spPBpl2u
zqC7lw%Chd{YnSi+I=b{L*PU1yeE4C-gK;=SY~Q-;4Yxmw+4zlAbwpjhf4X7+pxK)=
zwr$r~+)4FGgIO|pLOn{g#-Db8#13yX4{iZB%irX&vgF2YE;cHQZiWMYC~+dwI^Z5%
zv2AWQT;5_W{~S~}|MAKW=Q7Y{?7~Na#g`?Pyavfyha%zfI?Ls40N|r}6roz87n~U&
zcAt6eEnFwW&mnKEK@mI*G^n*!#NkV1klLfN9j+oCf00seuC^7zL)Y{Q^!CD(PZBCH
zn_!zeTS^&enQ`{ER<#*>?i;T2<>75aRvbexLc5AM*oIkJk&@DouuoGU87P{4cE<Di
zUDDz(Q+%v)l}yt;D<(H2u!opAM}Jte|Fz{r)%7e>Q0h(rBL1ugh<51Cp#nSkw#8B^
z0%-Qp#<$I@nja1+Wbm&a4(KwjG6rwBvT*D9_B?EZ?I$bLd^j>hq*SIG)D;R5m;cPo
zK7YwDNcOKUFz!YH7(B(iO8HLBjfMew6>4&Qhx<?i_fAeU#(+oS%-8mW<IAzjNG{v=
zvtAY%W0GlMt3yo|IJXky`%BfedNkD`!{Y^NA=4#B`cH;}ip0QRCkkYgia(F-a;Xaf
z`O^ZH8vBw<Zu*Lo@harsQYs~Mrthv;W&Li;=hz$U9AeDN#Yl^^^6IHLa5=KqCZ*W7
z#YMQrZH#WP0?gRvk)NxJUddr&I|dKQ!&0y4!tc7+X=9-vk*@SFDeP@FTBO5`<RdUc
zA1D?&BSFpbvSRy_<(Y~RosHSg=e;Q%PC%!601p)lJ2&Jg4rF%3nc2!&%4R8P$|S5Y
zQw?A#QXnRiYQPs*2}od%g|V8+lZEDZ1@}Z<XfERM=Af*%-u~&jF?+%s`O)2jOb=<M
zawW_pV(I?Tf*QUqiD<r(x4Yw4lYzj@nUYGwQdi%-vGTFQo2SNOp@3Fdsi5ss=mRbr
zR@LB-H*!23L3T@KVWZVNtagvk6syk~Pe41KlduX^x}#fMnMrZdH#tN;v{)cFFI$N7
z(Ty>tP{?pulo&bE4m7B||Cqk~W_0wd<yx!#3bS`~PsH9t{?#DgYLN~_E_S)vNJQ$W
z9v|>dhN9(hg#op@sNFHCoz8z@UPT!bJnkdQ&nCU0`#bvc3yDn<-S=#nXmRpVboJw=
zH-<jS+PRFr@mslKeJUjWfySbZ-}+wawj!x?NVHJ()Rm4|PyR&Oo}@QAdQe=aVkiNO
z2?<5C*j@4=-0;gX<!_8@fdB@g2*vmDccI(G+3B)RKNZ;$j<iQyznK6|!y|^{ggxyp
zx{k#h0=MANUAOk%f2zzf;v#BQ8NE4QO)mkbFNx8OEs02jn$Sqq_n**~viPz?o!N%p
z<OmDvMc45%YGw10{Xqgtoz4XGj)mskYaVm<>=_P^m38~7#HEQefGR4e<-_KV@o@0w
z`OFSqQ-KDMh#K;hY`_YxT#c;shuMOyxT8`IOC>sa?pqJ+gXNfnKX0QSqCYHRfkXrP
z+SnYIa`=1T0V~b8^@bz5sbs9lOYv61B!dZRG;+xHzEn;`#7v4%9K)GlwE5w}hFunm
zc0v~vE0JbbhyD;Zb{Hw`Wo}jW2F0-<v{Bsqo<^#zc${o4$`!pz0%t^GItAl^FFMl<
zVnysm7KIc{RNepS5@7^Q%w&~50@*!>;pvb!MJxY^obXskEx%|;3J-@Ggs8^2l<U_1
zNGw}m>9BwNWJzl1CJDx|)x+13X5iox<jdF5$X8v09GQh^G|L3ls@V{2FoxDOd&0r<
zJ<paYdkU2RYH9&i!F{%fq5#@zj;5X&R;=Y(%Y3Wx4;;*K3J3g1g(L5R#q&l}xf)AT
zwRTj63>y+5SDeu(j3puTNTRA*I>zWEB2m-Oib&J#g8o0O%Ce$LKotzJdN%+nRzB$l
z9TLc5BH!@TrG0fHJ7SgC)G?3Dy4XT3%7B9nkqkM}iX$979Aj~xUKvmNymh^K??7ai
zPhPvF9L^Din2JM#-UOrK^Z+u}0$;bUXnb`;JV3kUmM1O`7>_D@DuD$5zzk$$7>|gN
zW-&uXjOhF2Rj8OH*Z=hzm)DwWzJpN78Z6?ut(V_9Z(0IWtR7wnM#C!O3I&PlxqXTb
ztuWg9)o&-*fU&D+>rF0R8(o5}Od)BKx6N9Iz6*{~pkWqKD<7&V*;vATc(O*Hy!sH$
zi>;NAe{5k)ucs%VdVRRd51Fp!Ce<>RRh$6G8ngpwjJukAW-O#j>$(J|m<$T)hKJM#
z+#LApFcd2Hlue%ECmtJuxi|O<MlBpNhI@N^^%HP-+ARLO-)4S7`PJ5R9!KSAaibjf
zz;P<wVPRUFzoFPxQiSgRKWv^~Ae0~LS*r74c8870bDB2sN-iBuvB}15{L7}{ktAyM
z1;vN4pMXQM!=2)o%PxO^NQ}dNI_{T*eM<m&2AenG#ig`FwWs<F^`}(711uUWA2JM2
zkkwQdUf2_-$y$oUCxl#z)I*z)@U(e<LctYo^7a!e_(HVp@rSPl5g{$Vt_cRG0(%e}
ziJqlf3ZtFT9b^m-u;4N3eK1<1NFp9*Rm)fEBg~~Hj956Oj7{i79~!Klqj)r{=C?H3
zh`aAMm7BF}AY<h4xf4*(X&r&3RuplZ&$B=*{mHK5RfpqaxzZ8%Z7K?2XFB<}kzKpV
z3Nc-1&d6z4DfH%a{A8D)C7)LOc0?U-evPVovWL|UxmY&)1bz+{12In|o=GmC@<i`X
z#Se=91IacWCd8__$e*viv*3FsKBg3TA5v6uzb2=L06rayr~=>Y+#5o!h~~cX)HE4(
zCIn^L+Z~(vg!47L^;}X!eD<u{#n%v?rd)fV1|i-|P_AiP4P*k2Ap|~oFIWTjIzB@C
zm3_8Nf?6`la0G5T>AA-bA50@9ucrbcBN#7Ru6Elu4Mi;JpV;tUt~F*2TA)9e>*Vdl
zPh%^7WmsUs?T=C9JlHPj>y_yZKIBKA44YB~9dg|xa;-=q9;^pNl*K6Jycz+rCd^DW
zOU7D@3*~3yIWjhqL3OPx6^p1bylMs7tVMmO1*s76<5Qdwoe^jcO3A=(j<vb%!g*(M
zGjk${Bg9~P0!JFDaaj-!$aXGQMZBI;zxQP#q-~1k+EnNEL^Qjz=QIuh=(8hERMnd!
zV|8$|T%UU3EvWVUR5o1#_4Py7Cer`9Dx7PkwY244!y^tL5z6$eSfzbEGf_)gNDB+t
z2YH6h`!?Se3?7GeZA@?QG0J)*3B`&egLo|rODoQU)ieVPZluyI6hazKt9<{GiwWg$
zy7mpM&80ZV0}wBroy89m3uI0i{H!9P*}qY88&ES+<$c?k9SrvVxgPwDy*NUh7JUyv
zV=!M?`kIh_3ZC?iRsi2Nd5$Nt8r;w6R>-C07q`f4KX9vqWz&I|v?n{~oTpYk*2gP~
zo35LS5inLBa)G@c{0TPP=|nnn1Ud7I>a#=&35k9;GaZ&Uy!oJri>d?$DmpE`v;)sF
zrPmXfMBNUtaDhv*n*g6M7%WCtJ|5ukY?CMYB}T>AIvbvP^;7=A!G%%11{0Yf-ACb2
zldZo$LT2<hkOAS*5raBuj@ngJlHk4p*|{(3xF5EB^fHK|qS50d$bvpbU`1oX(c2bi
zo8FXa#WCBCVO*o5-5B(3MKzS%>~2~15@%i%an|(oa9r|!!}oW_|E!URO7?PowWKKW
zl=mo;ZpC`LwPkM5Ur3d$sBt3R4(pEiGfrnsAARAD%W69u^Hv$F3O$;Hs4&T+nQ!@P
zAlkz^QV*@CMTR{(IvCr1x1lTa#sIJSX`2<31OxcUyl1K)UDP0LnHQ9xkPE7ax>k6<
z<3&$v#_b^^k1k{xsQOGMSR&y=(Lh3YgBD$!9OK|1&AFVTidMym=B@ZeH7%4)!#KL4
zpIJ=)dn4Zekk_CLF37)3qW>S>zWNtIM*Y8JHaW`Q7nGa?$>`Vrqz?gyNZc40Ad*6X
z|F5LrZS{XSY+qmBI)`;WJ3G6m4oh0Bk{Ibn@0SNwC@L+LFXMd;kR}sgU_flpiEeB2
zjbu_xB_TL8xVX6ZdwaY%;JbC7mFqJ3f2HhLIhVVrQ4^>^2%FUaIt?{CZpH)!iACZ-
zRP<Z?pShrIDDpKX&|}>YPrvHZ&7nCf6Ua{b-lJ5l#OvvXR;NM(8}e^IyqlP@zQJ5G
zn&{QyC7)D-ah_v;m~9%=nDqB`Bn%G5l0-yD_s`C<PfJKrJ^qFkV(3aUn>_l{g3#m6
zTw7r19)I^gpo}#|Iz#EadokiawAY?wz{_{!89A*d^#5nym=R>M4j)TpAN?he`tJo%
z(1|tx3TFS`C!haJm<+ZwmmQEzIE<&1D^@LvX<x|&M2ez^OT`j{b(<Up_QS^RrT*QF
z25Ll+7)%8ftAMQc7#V+EMMMK9l-uk-G*<db?r(5{8}Q%JI<X-i#*R3M1L1Tr`H&p?
zZP?4TcdIl!0N;|<uQgQ5Egfg5<n4((k||ez73(ep)050j6^q97!F&yV&fNY{1!Iqo
zCF}O+0Zo!4ML}WpnBWYp%936Q&X2Me_^AUdL~Hj%S?2SgICiYaf5(ZdY;#i-6t0Qf
zXF@98Vyu9?CnzJ_O?yr$>2;ZAC_6H<y3bH;pOjD8&Nc7S4PTs%2SWH>Pzr7juw;Lo
zlNh~xG?XkS3=6ybqbtdoB^v}*eXO=+ZsBVfWXGf1807a&sd>T+!bTQrmFqb_Gasr|
zUD8R7a8bkEk7u3_5RgY`qt3W^k4s4&THJ?<NBoyFCfYWf#E&B^<#Hf##m(;~Jm`xG
zc4p&e2nEa=KhRD~b1`qd=jWW)?&p<Fy|~$QN+TkG?~CEiAu4G>8*5sy@qgzILAn$`
zfyib=veQ6@rojKF2X42JLMw~38f>tL_}o}3*%+^1p=C@=lkZ7nm!_BDU_g2xi?eWW
zW*G`9+UZ~`CpE@%Y<+M$5@zjR67loFx7Yte)?0?f6*S$VApwHBYjAgWcM0wi+-1<g
zgUjIV8Y~dpg1fuBySvMsyzlqj`<!#<;m02K?rGW8)m>dxYat)<x}fd!M@f1ZVVOL1
zNb^5Z00^}IMt?W-<$?Db{GBx5IHaGQPEkY7`!2tG0y^b+{sy?1K!1Jw3|f#kmNHhF
zvcP6FT7a{E6uWa98_Yxy)id@!8D0$waZhP*d{3JVyiZTR!{5@%z4{>Q<$&yX0+ZWB
zLJRPWpOp~E69|P&6-dU<I0zsfyigLU<M+J&&gn&w*nGL1c#GwORyTVWn9>0H`b(7c
z*Ivj3cpVNw$*<Q(>OvIF+AahkY+Syw^g`dzJbp}cF};D45nwOe*1{L3LG3mdn}_OI
z;oxNQE{aU#`MxxMtIz5;O_a~?A4|NsaB}Bz9z5f3kFD|;cTTs5s6at&g%PvupQs!n
z4uS2A7Csm`pGgH%hRjjNRg@{a4i2W=Z}^HBvi;u*Fe8`lQ?c<w0n_>P3E21fx%-h#
z)<bIH?-1l974MEIP@t3=(>sk<QT0@6Ka#j$%VZ7Sx5As8zSZRjx{>0V*GK1ap~`*o
ze{>5QBH;ac>;fNFtlPVo&WSsKR?CT{Z+aOG9i7eg^t883C<xc?gw<<{RfmJP{|;T(
za?PUUYBii;#QCsbvbk}d)wEx^K=(SYcYQ8!we%0z+f%4RWHI|}iG*l1*6u!i6?1FL
z8c$77%{Ei(x@>7ZYttWJMyjeYzsSdX`FxFqb^bSIf64Wk%TDsm+HUb#6-NU}v1HxA
zLhS;2)`0~hFDp3Scl>u(LK>d~YeJE&)b#zqfqS0*2MYp0wg1MmW%=Clbd3U^{rHCE
z>PFRYOfrLxi35z;QfIZaLZ}CWF0<P<^Y7$}{`3=nNk5BZq<r(W<9xlZDBtcE5bQ-Z
zAjEJMYq|8X30a?E`P&kWS|%JVwfI8DaHM7=5pf&DVA^BhPx*lnTXKq<iL@N^dF^#{
z8^Lhsj4UP1#nQ8co*?gNqWLtuqzr(vPO#uPPl67|kM-$7b_bS-GAYh!`#}SM@WkSN
z5;rbw(AHdiWI9I%Dk2}7Y^H9T6MO}%gcVItoXxZC;xg}c{Bof69^BRDvmD@Dm$K28
zx?4}Qw*Sjts$-~&@6%<zQdkV>qGS8cVPU|5iXI^rlX+vo{>7Oh{jU{F3R?5NH_wgi
zHnX4ke3<2+BlrF~-tg6gdEWh=7EWB6tI`@DyO14#Aj1{(V7jQF&r|5>8cpT@iPUqC
z-^0!7gEn?DSFD|&9TWzS<>ZO<2kp%T*EuLP#cQ$of>YPL(&BE5p<IVO&|(XW4dV3e
zPX>JH>hzC`(~yFCSY`JZmeK>4eK68JTxlj$Xt5&77FVtW=m`?)srqD)rf5`8GPNJ!
zK|WvpG*dk7SDtKIz-q^xZ01!2ECXK6k0a7_cB1Z{Z(FzbFapQ!#$DYqv(|rq4u)}^
z3VKJtsvhKz&d0Vnf88=Ymfmt<EC~>*@|bZ>Z!Gu!<7KXb%@BT0oT)C2);pg(Jdu&K
zNbqY+^y;b7Y`dCCv-Itw%E@W>sfeY#4b2~v1+|~7p{1)!Wxw5M2Fccfv=h}7`sdGB
zFemmEB~fE+@|$`p&O_nYboVyM`40;hW+eg1e!{C<26;!JI$(!mdLaxlxDsWenQ4M8
zn-ULBs6{)xm5!OKXv>1j8Ga;aLxWVm|EF&pr+-@T;s;W`(D9C3g?>l)1%u(afM3+{
zijd$xOUFByzF(C<Ig;2t+x*N)wY5ZGL?Z{?9(JTqE>&B{8E{6<cz{DMKA@HC=4d?l
z9=h13Gr{)}s@Lor+-4!#<g@h|%fpG{AK}0ltcQ0tk(d;l%MT&wO!fk^Gw;VI1G34I
z$T|L7A5!re*tjX>T?dvpvX^8)m4m9iH!CKS6q~VN+y2-KibnM5;EPVrVv7-X^A90*
zXo`z`1bLmNP=mi4)sK_#4ampc1HTCmHyp^bA#76JchFHQ?a{Lf=xU4Wp7IlYB`c!_
zSR4qaY42}_K2VGG;3uhTA^wQ;z;C>W!wa=zGbOY=u}2dV_pVOa1Z^%$ghFi*Ec+#f
z+uZ<0m@=u{?GuXU5X_mf!#z)Ii9pyF*HHL0h85HkmHOoLHpmSZ%L=or=C&L(3K`3V
zX>7T0yd?7TiuhDu0w6{!TXZzDFcg4(;aXi10bX1bQIDddPY?UKR}2_IyPDq8zJHJ`
zrW)8B7vo^>{NAsQlpVAE989-(;I{KPHR6JCKt!-FQ|vpy><;!e6Ol|yAzCQqwBN2>
zhG5d+Is42zo?{YGbQ27`VrfL`HDycWpE}7ecK4RD9cJEtQ?0~3)av*w7W&XTM^9Aj
z%>f7#k}mnsA8+we<q9-l_hjd9d4be#B_@O>G#PK-In7*4wwU<xcsZK_tQ3(a)XrA4
zn`hoU)G;5^59rB~A!xouKhxC9U+B+@v`I`0+r+Lrs?HLT6arPZ^9SUt;!jqXTbbJ*
ziCr9nGrXO-mk7}#WLQro{fNRaq>If>sM{>5zl0#{E$3&i-nB@tU}_%LT750BZb9AO
zl>y-u;&RmBTM_(es`il-O}jlG**qiGYOX@UE=Jh%IJzSJ*h!nw>MH5WNLw;tH<)Q;
zvpSa7;jy>ax0B<YWf~YXdIQ``$As46`g1MJI81moKTu1ll^a;{|B+5e<Rm$cUy0c9
z`vwcBpBE0*7r7O}h_52VSP7>N$qu*JyrK@tSzzA$!Mt`4?Yv|dRsZy{k!3e|!t6dO
z$x~Ur%cO^<Nzy-2Vc0jEbaS{|h=1d@PWpPM(BPmma!K@-+J1;&u2BV;|HSKx(>;V8
zr<KueF_vF%o5}(j3;kXN7)R^>P9#(8_ND1vCMHRx?;3D+G*!m+20hNq={BaI5QOxh
z9X8O>GQP|M!euVWv4ou144lRj&0#ijwD7z??K;F=nbg(>0NyZ?%e8uP?Xz%efW#Aw
z7e(%&jH7D+bXAhsKk{nj8F8@<IR-(v5`Ql$XhwN251HVve}1*luC@Q-^-xiu7e2j;
zFc~f>!EZgqJ#%Pk2F@|OIRleZ2IpOMjFb5gtUTYE?j)f^U#wE;F$8BS2-B>0=7??&
zrEwJiHfU_z%GHzA7!6awhh0iO({7nTC96JynRpbexNqe6&<t+4*Hd1b%vUOyfb&&h
z!7CN@lcdx%IigXP##q5E{3>_Fz!(63Az5L~Q4n{E?eD^9Itsit8i59);@Pq<btfw+
zd=5Q*@CppQ!nj9}qw<7G1N~dXm)T+?Qj?AD4vJEXTb7dr?6u?_C?y~0Ls)aG!8$x_
zEbcvS!&s#OGOaqlsJB#GZlB$q<U&)};q&Jq>FWJ|O2s(-UR(syCw%v^_TtU2tEFn0
zGF^(7jB=`Rc*7#<-}~i63qE^`N@PmY;g#+qb@P7yL|YGyig-1J%AVfzWdnaE&EPjR
zvT+a<I#l-GwxMsnc!~F^{k^CtM&I1mUHX|bYt4G*H-(>!J+zz6=@5%;J5M)-qYa|+
z;@z>P%^yhHcBgugdjI16!JCLj#9{F!|I(bYH5Td!xBSyDEM(OKjebwxX}_EOmI1<(
z>)KQvg~S66h=z4Jm8wxMU1k8oQqEtJ)|Hlqf3K2fX_gpnW@c_A^EyJ+yH^pWrbc<L
zZly|2hc~r2m@^_%()|$Bj747hq{*HU@IsjcW+g*k3As0ZEjoMbc$2R4iYJEZbJE#<
zP+@>93^|mJOM2wqas5y*7WKfw?Y)NZIhu2Zgq}bU*GbtvenzszT}=qbZ@dxN)l7de
zpa_`!y)&fKj7k;~m223D)`}R`JA$?zd_0)N*G0O{pvjmhQt44CFK2LM4ATl{PX4$i
zrA(ABkH**P(}-9+^o!0`&;#eYvf-G51i{sGfoe0|j=09VpMQp)bhR}C^gI!=#d=y;
zFGHpTwuu%%p(kFBrM$Jm?EJ_vIVUD}IYd~oEfSsd_TzgcL>o$isFrmh^jEzN!HhOv
zBKdUopEl^vjuJT#Is8zTYwnO)y4YKXK@j}X3jtPvbgZ=>+-l~^qvw1{kNK{a`rQFT
zCMmInI-33UPQ`vFLqR&+Ds6qjlF>v`XaC~2u5sXO;7xqV6GbC!1oaCRf&%Ms*h7}B
zvZw4886C$&GwcI#1borPkvXdlAH~kk4JPs$6(ezkQWxZw+0OGZcc||64yzb55f&W1
zkD0SA?EC8c_tKUe5T-*>)U`hOZ~477@0HBP?a5&=S4%L;a%PG2$LiOeOlO2pI4Ro)
zNmu@h{pJFjr5OF$9y3?C%^67`>{^!_Wl7#_^W`H8(TCqtN3-IRy|HD&oag7uB0(r6
zU%3eTc?`8_F&s_L<FnN4bW-%Nq?WLC61S%pCw9dvB@30~IqMOLtfse87pD^ERtPt;
ziaorok-3Q5FykdeI#<BEnfJs23k`sTzQ3q8rnq>2-dstLV}!}ZwH0@=_4u!BSMEk<
zzA4(U==j7k6oM<3-a|~a3T4ELYYrTKPwwDaEOI{$P2=DQP_!HhVn;CfFlo>w(@bj<
z^^8E`Z}qT47@1R>a8S4e-7hIUHH@qH%W12y$VgI!v}W$CwDGtBWG#V8fifa69lUhT
z6nc00dL2Uw)_s4)5%~_{uQ{tF-$PE{#+a&pE;5DS<=HaQzdk~Gi7~g+*x9xtRaULo
z3}w;6L6VtaR3x%AK3BUB!@W_2El~k3AN?l3?rG(cy!S^9JYv%o@L~<x5_Wz&h2>Mw
zv$JmL#WiZhQAhD=)S+fp)mKv}RD?v9;E0XjB409Q2WIdkbn{0`b-^W$<e6;j-}Fkh
zTg)XFV_Xk~mx}hhwKzoH(XdJ;I+u0R>pT5a;qVSaib3%}F~h|5x5|zH`tef-t=mOA
z;PyW5xHHedlMvF0w|Yp*YOfog^`RKQR#qJ))0q+2v%EagJxAe5Dc?}(eQXNzWUS=8
z*|yq$FMQn>moXz@%qtA$smu{z-&YWAb^{#u+Snw7n@ij%<!WPxARS94&q@sDcXYL)
zI~)pm@&}J*J3WbzbBa1{bi5^BE@~xelvdT(lj&y{A<z=azCe+7^wm1qy$C8(R-Y~b
z16+b>RRrbeTeu8K7*})5Rt!|@9Nm;HIQTt|Cua2DE{}Y|tr9}=eVsxdl%bpN=(?ND
zPJpg2&`cA0{j;w*wYXe@oeUCCwHO`oobXoY_A-7HTsG*&eXhUjX~IC2Y8@+L?`+Tr
zaPD{<mBBX0<v@!DO7`hdt%X&#!u}<akTu=!0Fw*v=SY3|!<H3(Sf%&^pu};~n0+Ld
z-1)TH^^kBgD+M4LfqnTHJn6+Qva?bfAMmD(NN^BTCV--mXuMgtg*NjAu`O)tX5N#n
zh$vAO;BBh;WT~#Zo4$`C(2^Z)MxNbH1JR<99$5TPBzY#wT|A^XHF_@&*=n>=QLDGc
zks`R0f^zH^I*^kq-zYI^t2qd~cy-M`nm78o*3V9nrK!sKCr3VA4JvJ=MS1%_$^07w
zrjxlMJMreeu`+_Er>AIsZ|P<u$x{t>x;s>}-<5TaIZ6V2wqFD^Av6Q>Gimm-5;C8h
zHZ5}^uJ6+0u4a7a9sZ88y%^II>7nDhyI+Z37X@6V@c1agX_P45*M0Df3xU)$4ca`D
zs&b>dG4Q?IuOD~ct=&>G)qiigyO1DbJXtAMLO;QKZrfW(-1gv~dZG1%1s4qcu<l%@
zVSs9@-HvC(ucyWO@$fr1v(;f_drWo6vbeXOgAGjCXJl;@Wz&C}SiX)D%4MP5<cW>7
zS2i;{g03p3JH1COOesaejTVl!t#dr*?B<4bpc7B~hib`bk4*D8Gm$<M(^(FGdUsUH
z92vW2e<ZLhi(v^KXk=m>@h6KexHV$B%Gg?iK`%7i;)|!|724HeEJG!BG#2T~w$8Z$
zFm;{oYph~el8tUM>P32Ri>Cdg?Y%MFaz-pm6lN%6TY+bk3NY*>ZfZ^?Y>T%^QmBtq
z45Fs+`}gwz9u}7R-gyoIOdF2ww=+gg+m>#+lp6X&U8oH9X^y)*?=Avh(U^!o?cC75
zePC49SC2kdPL}#^K?QTTJy}qJ9Ho<~49;$9sWeTUgP=-<)z?+S3)8oIx>h%afz@{P
zA%kix;)hX_i8QIyq{F^VJng|)3Notb>|*J@8q={vsEO65A%@}K;(7F1TG|PM?t-jE
zZlosfuk4k&v2Su%H=<c7fHNE1Gl!YI!S9}4@W1EjM#HUCxo<boG5I13+^Pwhf>({+
z(+Rng2`4u9p=b<84lIPSs8lFG0_O7#qE#MoEK>H_1_CiY_oBa?nXwnfBW7`H;wb(E
z4kqCirqAyl&70W@cw~LHTTv#pv0oJ}ymXKMy)7QXiQzGnm~Aq^s9bK0%UU=h+As<W
zZ)HZKhnD1rvX|jTJ_q_^yXt}H_aHlZuAZhhXT8;7g5)(J(AD5A^sG59Eje+UiE{O8
zWLFZJ>+AVO)8O7nN|@`g*xzG?D$lwU27Dht*%A?zM5Lws>pNWLbQ>ANX}$A-qE4fI
z*5UJt^xeY)IK?9^Lek;KbLl1I)|*$VG~3Lfwij1=O&a~sv2BP>8CO4997@V(XA;jG
zLj9hRy1NoxY7T6!%APtkGPq)nt<|D2ZuRp1vbTZD^VtX&S<GUt(}IDn9t7L<OnU*|
zZTst>dODxdslSX!#|ySv&Kc?Yy%#{C2K$==;B!kN&TIBpY_93nSX{pG6PjeofCo+<
z>Lfl6UXszBb$ycsGX{nX46^4rOe7(f-mP)dqPDW}r6}~FN?<>F!s;SFPhh^dnD;a_
zPn)lR#$E=FpW$+Alv@2Uy5}p-8Ztq?UoDo)*-{$2`Blk|dcXHa8brx7J>0Zf^7{IE
z|67Vwf328$1_1E}@8N*6)W0Xlj(vzxCm5Vqzy{6$>BnqKXty5n_WNb=vu^s~K{9)p
z`5#>F&`sor5BUlIPP60uIPu8c<2F6vl)Tdq*`v%~EAN?{A1`Plub`*meO&D2bgd|&
zgRRQ0cl@)Q!UN^VY|6gVrFD8tWTF?`tipo?cDo!=s}Ry{h^#WreS_$(Or3=Ub=Tj<
zeD9yyB9@q|ohYWqHv;=sHBMd1MN-n|B))i1s4CK0D)CTNX7{mrijr7+Fq!O~-I+%4
zNCd~@YdKSGx$imgY1h;XX7MuQs~>O%8R&HSDp2(wc#XTpKu6kUVkfO<#>zQcaV~V0
z`h0;A6iU&MvrAjJCHvwYGLxr>s>nbXt{;lH-HsnUx7g;wWZbvtgz1>$k$4`=5ZS>-
z&-1;DE)dseJpdZB=H^)jGO!3~v$%^w%bYC&yilXyzX*-yzkfAUuq*MAS*fu*0$h_y
z{MmZS7D>cC9*7)@Vy+#LsXc}b(3jl55CxB^N8D{D|HLCQI5_vi_w(n^kt17FAe@B|
z=lyLTxD+~tZAW=Q{=cDV7QT9sZr7|I9KJX#i~^up=vFpur(dqtndON%7_bG(zv^VD
z6DchN4IQuVb?JNIsT`*A^Ic!iB+^fTi)ou5hp6VbH}UhkWL`0b{p$=um?P4L?9tbo
zb{L%6aLQyIWbWs_y=;b@<>EVcTLrmHzF!jxelV^-XYa0`z)V|AL=_Z%DJ|a)XLTk0
zQ;W$P_*viO8<QY76pHOn)81zwYRNZ0Ma_yFp<q90er+eut;}Iui7=svx+U@D#8#h2
zoLU5)_Q$LQgz<U)R;M7T_o+qmt31!H(N;gV1Z2vip`0$*GhzbECot={gx~i4iWc0S
zB2EVS^D$PVVQ@h>sE=ITjTZaG^9&L<ZC4Tuiv#)x`13zJ7U)!pv0xsH38ucpFg2-P
zx8OAIaq50mV;u!~dEmo&mU5(A_d!dsa-MvuyY?zubFU3uU$_C)eN+qU2kI{`z9CzY
z-xeQ1I5DWk{Bz7QkyMCRilj%aOtgivFju3=dWXCAnfpq2LiUI<vAWW3m(Xp1Z)Kvh
z4uOiGy8D>$!OB}*w5xdHHbuO{-#xSPt-0a>X!m!<hT$4baz~GQ4q1<O@rQ=A=z$_s
z-5R+lS3U+mq*pD#KzllW*w>7<9RPtc;9bTyx2!}WWx?rc!=kg44xwTNy6K`h+^=B~
zYOh8lj3i9YWC`)$#FT6BcAGdAoE9J`C^(wIH9>tG$&`u_Z3-PvA{KJN<kIm)MIbsn
zoMm~Ghnw4*(GNH6B1-L})@(#lS~?8n&#|9)q*Uo$6O!lMM;HJWfNY6~F=pQPo?Hs3
zS4LyXNPMROyN~|Qn&Q)jmuf8lPO|4m-`kPn(`19;Fwq`Vh;jsdSnne(h7(6s`GyB!
z-b=Fqut!HuPj>uR@vPX=?}bMsJ)%949b;o-Q4^R}oyLM(Y?*(ON=!-Ki{tv5<YoWA
z7pWdO!nv~%V@lWwPR)mZmjQFmJ(WEKY~NV=9X**alY84G&`X%A{_Y4#N=gFUm(gq2
z;8Yez%FBv0A5fr=-Jh-ebJ_i$9<b~0AV69N@{y;ss1z0-D-CLCHFbC&`5MWMPu&0Q
zD*M2i=7_5V$;*mQ<JX{k7X*`Q_<f{}{MXC)UMS6ETAD`=rWTv#)DHV-0y8=M3!(qd
zXP;Q~zYf2DPCu~Q59Pm(%m3i`#65+^_WkoJ{`WH~6!brcOrNJaX{?G8H&%8bH2zbp
z1ALPCud?^gU@)lexw*RxPAj4x+OhvZTk;P7-<x2bU`dg8uMG13Jt!XV<6xX9@I6%+
zN=nM`4i(Pn_!b#CyJ9sk3rM_~iZ5>3#`cJZub;zzQH7o;z@F71c@?I`kH*i%F)_$;
z$@E>*)6<r^=_+x@VTn1Kl?HJPx}0@7cH41@fwM|rn@7B03df7g41zpCPui7Ezu9GR
zc^U5l>gYWdZ_aSNCq6@sDq)p?fS^S0FDupeZ1(dHrd>?#e?3vbihqww>G=@(=SQtE
zl`$VnH^Yb%`rLs*K!aGyD3?LsYZi|#^YdUd4c*<{-DKyxr!W<VnmX;=fyHr)`^8`^
zN#IrXlSOZnNRY`Z*_*86a|KRhj+TTqy4we*cx$-wF`{9AR;=7n>g^*3ku2E3EZs%?
zT}o82u-1i?c>1F9=H(;K@x1ZnW9qT^ID6C&RXg&d(;I}tr2ZQN9*h1PEiEnB`6@|S
zNEUuou3fvmy={!K6F+G`l@A4G#OfXy89B6ge|_o?bx&c`kNo`d5&`&PzMb_W`LOTX
zayFo!^E%}K=7`E|XB#tB3y1l;qYU@0K64llQyc`;r$;Pth1<IRL;m#2b|e$VrO`_#
zU~DI`9<SD@9Atyp8l|ym?9eGrX3YE{=%Gm~@kmN*r!p;pM_RW@-TiS^mB251C*d#q
zTF;?yZPPg`4oPx-+0pk)y0NLh3ssg>LXvGs444Tcmgp+#`yoW0_xl??(di%YNI#ia
zkV{yd?81Xh{B=rf&c^+X#Ut-3WINJ=cryxV1v9{h@ZI7`jy#L$N?@Au#*l)iugR7z
zTT~kD3@nL4l=0k5`pxVGl2P3o8#!Q>Z0G$^+~GtT6O5A$Y?&~+rmNn_w1v?$pSes0
zheR#>4b<t{-GhVhr0@U*3x+0wVrh(XL*kD#@&|{FUt45xT}ASL?eG20vcCSrkhuTo
zAhdAftlg#fI+RNagjN$47DvG0{{FEK^jv>pBQTy<6_-FE`}TwTj(-oKggT(gl$<`|
zXD>x<?-*Zo%g4ptXeXMPtEStQPhHyi@o&x2#sgiB%Cakk=#bd{_!3)!{Z13g=810Y
zwF~d1GvWKJ9q$|WV;n_SKktz6pVb#5@&zB+>DzrRLbyPm>ga`9ek~M!wY7((73}^*
zfpz!nzKtS1#HC<b{zP2(qgO)ScNX1H*(YLtguI5$=c)a?8&HbJ<uD!;Y_;I@(Qa!J
zFK2x2tT7mpkvo$L_KJ}5Jj;6f%@%#5oa<668MW*pZ@M>+d3XVT>hi%sephv{>uQ9E
zn329YEjffq)2a&T(9m9`A}9Y8gwAt_$L+`$8@SW70JS3UL&$gi40MK9RL;s`>94q5
zV*4_%!}2oRGy#nsgD!*>WFq(aP5~3}?G;H@PHqkNlCGlZGcy0>r<$6Y%T?!zzZLZK
zvvhcYy_=&+zlK>!oBl=xYs<9)9m=-hoTiV&)#|SG*X5=Vuwv`dT9ubexIyTc(Y6T_
z5)&7GqeqLU>n6*Klm}ZZc9~O?(BGAuwO$EU_V@*=AI)xVmAj2p`L)DeU~NMqQ|enf
zlp^3}9z7W0g>JHi?_}9ava7lElJnPSHA=9ukI*~GvdE+<TULp_&S!x~k8a)Iihs>B
zuG3{i{KY%HpWRYvMDp!t$kzjWW{-xfY08Y3)8j-+*;`FeA)NqDR)J^%>otNqX;MmJ
zBYuk2!lbA`)^>k4_l8eE+(_|etpxA55ZzBIudh>$NcAjzbSqe))^zq?xsYqJ<o9-K
zTJB;Bjjkr%^yi@uM%*46WYT;NImds!E9A19Rfa?A_I$&mPMmJX1Bor2l_7Hxbh&Le
zM7G)Wia(4bN4>Cn1%EYJD3iYA(Gq>x0p={HjU3JAoSM(qP4O-Pb_Q;CJOPBm1|P6R
z0aqJdaq4J<Fo2F4LN1|a`jzzn$MVVZj*oXLpoYe(8g0t%?(X7xS0p|clF!S%1T{uP
zFie2boDmnA!TjXG&6z8W(bQVKji&8N1LA_7GvacC-AQw1?^bBthS!CFp8J|>b*xyA
zo9|isDBF%u`TSI_1WxfBpvtE$dhG~xmVx=|iD>h78A+p@?aGHFJf0sBH;Unr3kRpQ
zv$tCxj+cwl$fDMCD^%XUl@K~R-D3Nso)-%f;=t_l#TW~-Lu1GlJYr(eA~%IZS5+D`
zmhB9Sb)3I^jW$)jahD=y1{{XVFQ>?yoi1G=e3(LRZl1NS);*$Ex|PlY8}`iAUP-)g
zlHlu=HmQL!cvsVex4Ga>8rPo-HPXO8(_3<6c}a)g(47DLAbA-hWs+o^xw?}jG-rU1
zBEW=ypoW>`KFHk1asdV5;l4Y@g=_P%mk%vexqu?jew&O?V!=5f@YhWC=C8putMIfw
z@t&vQ{&9c^-&0i6$Z$!E!Pu=jA~H4C2?G<RUTbW=K6mQYD%et8@z_^K6PJ#H8m%YM
zenzdZ%P-0A>HNuq4WC-ZTgqeg8X8|Q^}9yG1aVnQ%YL4>Uto!QwuMGaZ&rG-U|{+2
zEB?%b$XoR8y%dL=EJ0=Ebrl|kdiL^j{ac7JVuw-|oG2V;$|r%6R}*s&mU|0Ajo(p7
z<gz<<ea3Y^Qlg6wQd8?B#87?y+}fav9BCZCJW&=^EKHUb1|xKYP+53g(j3TfPUQKE
zyqkY{P|aj=X8+}h>0KT0Y*7%6m>iJ9W%X!O8xpJ*T0Q$<9fBBY+b#)6KA%M?iW><S
zgVR}nlvELlrfRXmD8{6D#4c9lb6~l=`aav}N?#}K_@i$azS(y@*JfYLI^|;C%5r11
z-=bFDTkh=s28(b*HCt%<j>E4&_UyMYUj0k2EupW<<!MA+eQd>-<CU2C67GWf;LIe-
zq9;O^amULUT6EQGjM3Z^z&a78kiDj(B0PQq7LX-ixJKJ`GI$%%Ar-0@;ApxiQOF8T
z*#d$BzQIsY(}OXkL4XB)_dIZ-`nj!#nP@X|LP{Er$hL*EEMy}`ZFNHL(6b5}7CC!_
zoMnf&zm$6wo#ucgTC#)w=>Tp-NOc)Iu)c&4Pwrc_IS$hu>}FCs1T_!2rL<n<dIiZ}
zUz`F@$xA`l5m7XHXX(VO6`n9Iz7?Qnx<A_Rz^}_YDBAXK)n#1pCbv)|^63^o+@;AN
z{%oefzX5k{VZOt)+{9)YW+A{A&o{7?q!53+szT-{-h8W8N7-qSxO}#)u{lkUGD2HE
z$U*DH_jv=}*utAw;4X?KZG6DXizrpI<hnwh;RiAAwxWDi3q^r_$|C<ZU>7sr1`m52
zGhd3swjh3>2+;~K`lK&S9jYbb9L=u997qlcQhQbVv>PwHM)b=cx!#HtQDvF4X6mmI
zOr=sYkrk3JdHshiu@I3hG=hF^VETMLdNo1j#<XOP8%bmna~PJXCmVh1bS1_bHChWM
zCI)S4Q}@pfNtnv}haGFQH;6_8Zw82=qr~=#sFMk#O@rf=LUQ^x%1fT`hq{CS9I>-k
zs5uk#z8JT{FUVOIS1TvqArOSf0zU2GGtONOqK%z}w%~o9V3=ffuJ;#~WZ$qkzNydO
zN<M-<KO*YP5a_m)F7PjPiE`nm2=Zrl)RNfd=F=2=D@wfZK#k0AQqYy0ENuwJE-_>*
z_8-(iYrTl8vY#aR**FpTW0%0%8;@Oa<@Yv|S~kmp4p3l390HSb-5m)r=$wb@r)H_G
zUtx_vt&*4n+8nkUnA%7`#(k<YPxA#u@*X~)GKs|o6yT>X{~`g`Ftxdx;{6p_xs@(K
zjlV4j+Rzs>!{b#BcXwt(6hh{)_GG0gZTS-S_rk<Y>!2cn5&M!>ww*E2n@{Q$yaGxz
zDrrBI2nsDuHew}E=qj*UM%={;O@tLT_VbJ+933khs70>Vug1b1H0D9eId#8?fn0<U
z|F}*kyci`S0t=gU(0*f#625KQu>-d$9upYNAw&3V>v9XB`&l?p4L+^ti=hDgFMyKx
z6%dQdACAo-C4!>Nm0#XC%_86-_VF|cLhnO_RMNpcmPkEPxg-o#_QC?02(6<dk(WCm
zhziZFuHbX!uU6^dzo^=$6S{>v?L!9q&02vHxYq%SnHRpXV<^E=k0jmFE^cZ1-#E`G
z{Ut@?P6YpOFH^2bOOL1S_1vi<0?|&j45nCJ$Lgw$K@p$kUR2OF<Ql98<!j=k?-~xh
zQ;)5ciTLR@8i-(jz}-xGAQR3oy8FX7k~pj?i$wUzQW7rGvc{K|RF4#xeSz<~Bf8Dn
z>|-1YskF@+)C!7s6ckyuctA)v=J3O|qeJB9pAn{Aq9wgLYJhSGhHd~_<tE5SiF_$^
zX~u#Bm0nmmvfO$hOFF114SZoQB^F^0y?&bo34}xmw}<FNky^?b3(5zkC%f9t$~8_V
zFaK<wYD<nU&03!R1gW;*W@@4v8)3<J>8#&`SYm%-$v#y`*(cL56#-Z0KRlm$I!iI7
zfDLP{l-8sescZUs#qYq&kxAdnVe(t}i~q#H3WM+&*2V#Z>cal&;Ou*1>Q{O~Ho`--
z5VzUysK2QemRwcyJZlYwgnEa4@P4`Nh}XI+r8VFIU1-(Wr$k`q{8ysaG$FUNNQ_(I
zx@xU!hA4IKmZCXcZ#=<)24e!B!^&?qL4>s4<ig$Lf?ECu3Atu{JraAkbIErM{I0$z
zJxmCj4f_o(c(6Ul<n0oqt&%O@vI}mo=P1{@Ii=TXa!Fi6&VKn@d(mXtUVRCtriA#O
z6aFi^i6Hqr7Ynw6t{L)5zVeen-X9V(UlS%F!KQCv^>S#JIjfci0B%BLjKwAXz{Gu|
z?0$-_x};u0D}niW`=@#p!tZatj2t&UWeYMz;*n=I0ri-;#vyup9usahn;S_<2r6Ih
z5DD0=h`RZ{yf$&F_ZZ5|@~Sa1!ofFU)!UV?6q5LhTaU2AJ1-oTC~VJ(v2Ytk7g#B8
znAqDG@WyJ^0uXyQTRlv+#y`hp#LckiQHHE=7f3=f>Fp0(A|VlFA9uMm5DJ{3fts;>
z!)hoI;VRB$&sO<<#tD3}RE(;355~66FveSL8dv6r$*nn3``~2{^DMGJnRvJ}ar8p#
zBafBR!|Rl@BLv6n%aTM<yG`d(h@0K17%qySwVKYj`sGbDdE8IzpBPasRfsHzrHV7Q
zpjM|>mD(QtvUOM0X(T=(cpys|bCt_uucmZV9@03MMBf3~A{00C1DqfgZH0H{Lx;Ol
z<d%FiQ`rb4Gg<;rvIgmtHWeb8-TrnsO&$<6zyCG-+eV1BqSlT;Ytz^u!tdkzsqzkf
zvlS2Nvs#XTnmOujcXdFe-4;%d;qj@n=O*@B9OqW=uF^t)?SLDfxzap6s}@4FlE-#A
zvqAQ*2x@qXKn6l9&q{CTsfAo|54mHyd5AKT;Q-l<JpWT$cxj8Ycwak2w`n<Y_>J}m
zLZo@eHX$5FjnxXRpw^G=yfn(?23WE{Tg*gjoSVR}T=75K?q`{&f&1~j-)Z&$R-rKO
zY-|uc2OiASpo3cV*Bu)sL4&e9@+Hv&_ItbNeJd+Y&v~fq0+CKBI*i*B(=8!3exOsb
z|0ot}9TkKO<(enyRJX?vt)vo<<k&(r=z6!vqIxhOxuAEnIj3SVDhoco%3<o~aQjMU
zf!YIAQF>}d<u>~7o*Q`A*Ho$Paw}YHyys$0*voiAUQrs(^m#~)GquUm=qQvW**``-
zgELpB^yr`nAVs3j(YBcpu!9ix(aZ+1RrJZ;1=Hv@6F-I1O+deux0!Twbc|MqE2@Eo
zVhw)4teUuS;!6p{8AB^u4=ClplR0&{_xtCB_`mmAzhEkI-3WQdKrBnV*VMk&5y9C+
zh!11=yx$+17y71MDGNE6ZRqw^$O9<VD&c)-p%cc6kCvY<Jm<0yV+^-naY?408TFBo
zm9n#RLt{lhw-ZKHWRG9}7<WUv#yHA%<4hV092j&1C3Kg_eQ7`eU8WLd+?%viw5W{f
zU|G*_a0FDeXr>%(UYUf-<1dxTN2Z$OQzGUsK4h#o(owja$W#gV-v4-lCahF86l{lP
z@2s2TWDBUbIpWQ0_N}4dZEC7ZI};pXPF^mUI3l4RQS7`iy&&H3tcntUx#u9deK&AF
z!Ea=O@guJp2U4Ja)Cf-V?p(QsjtCyQk~dX;_7_g_y^2=4x)dXWg@ql^_yqUT^)NoD
z%x{ZZygiQ_vwv`qvnUhh;V~Z@ByNDJPbR~8`ZMB;<ZGJDl(s~$JtkiG3goh(rZlIF
z$UK<x>xn(raWC{s!l@ktrI7+a1z5DKb~%_rInK)$<Q5XxEQ8dV9F5;G>!|6D7S$Xm
z86N#|BQ&8{!!28kut;I73Bx=nNj7YP{c;w6D0|CWV#jMLWI**5daunN@=pa%NzV3<
z@3sPG&_inG&ymSd7ar`)-$<I~CIn}qTb|)6BT;{OYv<PRDR^fALIpuGeZ|T?pi%-C
zXanTUye6JR>;-{@;W2yCmCyW#pY|+TPLiGV6!TPct6l<HjAd;%<n|gxF+zur#npDF
z&(cpu{!%LQheE@g)+BVlRM%WulX|_<UY8PZlrnHTk=E;m9g9-ts(5D;uIuOjB;Kg}
zzMT`_6LANdgyhSc7ni$tsq&i+e$k~yUD&5B<M@Zl+KKAYHnO7=uK_0j{;pOryy;Jq
zPpc_i@z3i*ocboFBes-hzHFw6A7!Q{Wc8>q7spEYSDQUjR;9!CS;Sek+n<|>(p3qM
zr|KmzgB9YqRG$(`8Gr%&QN!In1{fz&iX(U5Dfw(We%}9WYqHnVaEqfY@?BK0%apfL
zXioln;g&49@<%y6Dt}S1kwhYtX+C6j7iPu+B8koay7If*U*BL1KQ8^jyQk;kd)b2f
z9nY)!wV$WjE`)Y@3VA2ZEK9o(b`W<Gh_Zf<92>#tgzXa}a(=&Qq{#Zc?oY!@Rf|c5
zax??qTptlrTccSz$fcjpdVf}uVQr74bCe~TT?cIpOuZ9o+{*c_&d?_scZcW;J|_2U
z5uoKnnQph7x{qG|1;b*{M{awO3+8PbZr~nnu!SL!;{;-){;+CtPY?0CNAlMn5@VSf
z`f$p&O&CF8L(h7PBCH(?+<?R#WAn5(Tn!xQ->QD@i{?QZ2;0}?Wb7;OD+PY77i;y^
zV_Y}$iaaq#TZ=+<kVA@TaMt_LB6CPQPUhwn1KR{_w~xe8<|9C35}WN7<g3#yBJi5%
z4ci|BaPwRcHD~R30q*PR(Cu=3-tfl`loq<*!QcOUA&%0?&NMdOe1fR^_3hs10PXZF
zMa!H(uVI{EbO6Bja=&wGL$(0<raCXVWD|DAVz$D(J|JI5h%~ov_L4m;AINuJ_6Xn~
zd*4F~dP8L~h@y$XVWOrE3l`rJ+)_Mvr{RMiXZxkwU<=T+D~Y6V3;O-l@JlPbK?0@1
zE_R#{%KOVsM^A(&POWht&<tI_C(VNB0r5jRQ5olDu~|o++ds?z`8?8vUK~Y{oK`gw
z6knEKHE2Fn|D)?O_)MXxb_;w81h_<WABv~YYIZ4YNq!6u{rur8nyIWrEBXpa;VBS?
zf*lkg)eFQVKgZ{H+Ldm7+y<RTmVATpqv!uLJ~rlR=rF;y6doR4%?38z0+aw@IF-h|
z`l=xaxB+0}&FJ=U%5pN-zljp2n^>M1r}rnsmsQObWPHw1OfcR^A-KplHFDDaGMo^j
zAK<gXR8BiQ`}QaE*)q-V1_?|s12DeQ&F&ZL6*&)!)h5-hCmJ4#VknRzB}%)xg%Mrd
zFWvA=y$W1wK`Dm5xI(X&J+Q}>v@ioi?<@Em))@azv>tb2$k^Cse5zEy#ZYMBP<PZ(
z3@G-NZ7TcBQuISYi9BJJmX?yPZ!5mRgofs<{2+OMI>>36u&=XUTh`w&{7)$~a48If
z{mWsx%HAfx&Z-$|pM@UEyVjybre7f*n>j){mqRr8JbV#X<X_{s#UnM1NaJ9vXG{DO
z6BFA`l89kKN8DZ=x`~ln3TDf}fO#(_MvUOT!zB5)-WJD)!<QC#5WY|OZVha74xQ6a
zJ5WJ;6IQPTfp2>DlvS(cq`d!o8t~|)wce?%z=OxKUTq@9f7OdF^~T2ifC<l<#v)L?
z>3iUxdh2x;{8jDLPtg5*RckO0l?7anQauV-xWJ{xM{ur3B!+8E({C5T!(pzD5s~wC
z>n!~%^jrExk)px?A}B$>gTt<@N2mUCT@!|b4epSRS`kjlS8lNB10F-jEgTYKz5iT^
z{I5my|Nr;(CkqNPWJkE}E98#cvXYX+st4tE<VSD8hpn6f5u#0ue?L2DO*@B!x)b2|
z$_BjLBx|QhSqL=*qb>Kx5EH}mu>Qx``i%t^4;Jv{)}sYD5(Rkv_rO>xGz99Uc0v%J
zkN1BcN}}oi_f8<U+@09-pB!uV_d?GG-F6jFAoHHT{cCRC@@8iNgrHbMj~(p!uOt{J
z5tQG^+eIovVHpwM2tN34C&h4BO<~&K?sYM+u!vlQ+O{L;?)!Q0kPeEr*$7{E_?Y$`
z!p953c2~bPVmQ>J6MAz_#!Ub8E{6Rl_7gx3$=)XL5A_D$gE9J6lhlXTzdsRm`h8%M
z_O~HH`^NulCg-lS#t#uf<0I+Jy&9U}Q;!_yyxJk`qrMwK?f_2&g8#Rt2bMu@65&^6
z(vdlHo!uJ~Fx_xNK77%V8!^tD)=fU~*m4&b;1?^}r;=u@cdh{zjk(CMu@7n(oti!_
zy3av>EMNZ3EGqFxc<>Zg?B1&4OBiE%=b7ziqvc;=Ab@+nQ)=CS65$4*awW-1uBt(T
zM;FXqJvclZV1!d0`&La4KbFBYz_Fl*4t^0G`$bNkKJX7&M50zr{10|tX(cQ+tlR10
zJj64v*B^HBpDd?&nClKBk&E*wf4V9)mk1<mUzImFtGOXZNjWpyB!sk3fxzPogBkM}
zscG`BSxN@929XKOMHeygpD}CQ=qiNml~*JaAd3kC_&u3!;<J>3dS6k4+4@}7UR%|>
zh}=r^5cn*XrPYx}C;TU-Fa2gX_@}vof@0A|3Sa+;X&x(T4p@F6x3~&ygwNf+aCzGq
z7Z>K%3HNmPP8)fCQgxO7ag$jmb|p=Ke;X`jM4!m<ylb*9|J-mX(gUhRgjD$EKMufC
z966|GWlgu(>=D7_@;&dmXRfje^oOU!ucBEMyDBi`H=TJ?RIO@B6r^UhANe)~o?edm
z|B<k*rVw$a@B{324(83*Z}zsBT|ZStfe)w5Se5h44xu3|LO5ZM1m!CwJ4Z{Dln$C(
z1?>2Zhd}d+@B_=2Jgu&1J;V>~3X?^>FNXH2GO=`zj^W{cal#ui8<d{7BI60q9McTo
zc+dddmSEKN{O<48-u<+Me1vFM7)E$|hJ$+rb+B~``sPgyzV~#OVc)PJw;)BpA_>!d
zh2Ry8Ve=@_2+&9mRMHapxj;o_#P9Vt9NSk7pqK%3t(gHd0R?36NiqYn!-FZ{(9j9>
zmUtt}GPH15mc+mHNbZp13#99Ew<QO<o2NTkOFG&KKz(G|ce37lB;1sHkmqh^5D@0j
z&jL7?6c#YO>!b%Lc`M^_K7eul3Y@S2wD(%+*$H*q)!FWT(2T<F(KQqWOn12d>IqnJ
zM7v7^Ye6tAF_-dx<>Wb#Pr(Ki!jEfN#E}M@^U=o`K914#y<Fe)s0nP~rCNhOq6BSs
zdLTwjphi9YET{Ubds2kV2m*q3h0z=*qHdsByV{_jMRj;L@sP%qR%2C0y-a{UXw1`V
zsV$h)gAgi5>0OTV5EudZEK55uZTz#Y1w2B4nE$A|9o+dg8Z4a<b^2jVJt4aoNu%l(
zzgXhW^&a);P=4>KpB!$Hf84K8JbD#HjI1jNpCtt1c*&rwso1&qp@X(1B?Mx#ZB2k1
zpCt9S2LevMSPHxC$ocU7dRLE$(w+EqTg>}7qWP=)$j`SZOY=KKQebcseoBwaSL8dS
zO@(2<EyBXXeJD}ov41k9NA^!^Z8b@XgsGhgjU$?zx)aGSmmBZ%5;B?Fl!v04ciHeA
z&Ts}?U;|mK+9Iyl5XwQHvZe`7>6Mth(xQp)OR9W0tyk~_b<BS#lt!I%sI}G&c8(Gt
znjGL$Q^XPGjGEU{kU)8eY?hCc)Gb*VKUzbbsrbVR9X%RX`(L<~oTn&}>}@nwM`>E5
zr?!jqrQ%Y$#WFkvph0el3!l4!mCgVUD!k<qdt{?$P@G&oZ!yN<+N`Jp+K|BX&mS<B
zljM;H9~dI%jF^fF_;;@O$hR>0$%YaY#yfxEMN3S0fOYOLG8lfU)d3kVk5g=@S_#GZ
zG6gUyrzJ2{c8F_rEajRwlpQ29)hxdZQ5XomF5JQ7CFFOOqjtTd1S`qa18fdp7`Z8e
zI=BF_wYn0XJut^{4A0;dd#g!m9=FoeGz+W_hULuKZlzQUnBI)Ea$DqlYeBNMf*C2S
zE)z3$bc64d7^92~-uOFw+NnYHq5$9>x|=5KOg|&lX+t*?DqOY6vjH_x7Q8Z^q&mT2
zVzlAj#1{SH5+kwm-^T<)wB8E3Uu&qV6Z4g1C;wDh+92-^cv!kG#7Q8==t{-8e4mhr
zQ+(+5*Kf#k*VKDykcht?rAlzXJMm#rokr|gauZ)L^`;&E<>p-4HhFj1nGsys^d@D|
zrN3W$MXCXN=^S54|L?W-H}2^?1mgJ$n;FO+ul{RG*FR0q)oalj{~!G~JQC;K|H0n{
zqAcxnB^133HKBrBK=!$EL+m-o&~gfW{MXQGwW5ipuq)YrOBT%DUX}6c&SpOo8naIU
z9G#~P>ToA=Jf}Rg`MR(%|3B3h6d~68-}Mdru%mJ2IrSy(EeY?<<s?HRdoSO07A1Ho
zQr_$1E@sHcK7&>MuYTV)epMQ59jZicIfDZ?ky_o!N{lhK$Vy3l4m0a2st1^`<Obev
zT%!~B62l2nti*AFza95Fq~jhm3FaW5EL2MMgdk28%3*_nZ#mttQU$yk_|R?BDG_>v
z$<e~Ic&=j8{we%_I^QwT%RCc|A!tmx?r}iqay$#mwdxp1*ITTR5t5lnQ0K5g6!;Zc
z@?bpcDy8GKFA5BV_MCnsqGC-8-nPZ2C&H*M7+WAs_y>l5i4kZwedNddPzArq|NN<8
z>|yPIEo9)snmb@Z;Niz=6X5*xVa1^%s&<@rB<s!R<LyDYSdozbaWjybfuRq)$wfg5
z)z?f8RQ^FpNm2#mJ-^t1KXAE-en%FJdOC65+Ik=*hL%uXlX6z`b!i`E@nb!mxdEe*
z;oNS;NMB#iDE?2~N_W&L8E`ND*ccd_zY-L?%PQL=!1b;vq-11(Dm&is`uh4RMuwLx
za?S*Q_UcMXLWdv`M(~|CeW9SBV3AXHsYLcN7l@h176K)VH^C5|WDFW6L`ggq8?6st
zNw29&ryWnOap`eak)kgC{<<F`W4Zid@7-*Q++2h$OrsUUNR<_dUo3vvhy-<BmO<4D
z{5oIX3ZBRg=sxu|nEu`GXKDs?Xdz|;1n@GQ_|1xUxdhbm{!vQ3+vt;sYf;~+^uS9?
z{Pj0`+W&TFFVJ<N+4Uq^Hb;X>3)|e>yxD*fFig?!;g;dksU1{%`F>nh$qd*QUj^<&
zRV>OYD)wLRjR5A<HH~`1P*ZtbX)9W<Wk<94u%qy~B&l~RxG=>eYM6pT$AxeW=R9#h
z?e9Y5p<*yt`$jwC{J)A8eh!#)cQ~VKR4fI=9*K=;*eUV#f$laCr5^YU2Vwz+xrGyw
zh$dvv2K*>*2I-)8#E7`5azr%Q#&4OkD6a9Y<+=@!Lkzs6ty|c(!!fzaEe$0Zx!+DL
zFR3Bu4Xe>4l0%y76RN2U#RldP^Q<{JnRNZ_`g{+Ma4n~rP+Q4oN9YD6{_VlQl9Y&?
z{i@&Om{*n)oudA%WrK~0`4@eTL8mS(I9WBaHbQ7GQFS$LIF-d@vcu1>&Ta+kUo45w
z!`cDd1UQ<az+@mAcvio_?6@hsU>3Y4*&j^^I$vuc!$IgTr;(O-WiHpmZZ*E`z7DS>
z>q5E_=OFF+L_Y`W#w6a_es47LFkqK3Uyx%l87>C4)&}@hMu$Kg9Ri(*e09+H$nA**
zzOE}<7@w)Lv0Sx}<0x%}=A`EYF*s|I2p^nedGPIf3!vS_-~U*Y@VUC=n(F-xyNFmB
zT)Qvuda(o#c<M=5b=>cd+c55}&r(LC=F5F_{m<U>U%z9zyG7jtQn2B8vU|CaSr_+O
zv}?_)C!HQ6Ya!OP!fqnDgqnCfu1#l4l)wB7L~uJ@+_I0t<LJKJ>bcs_aA@An($@m=
z`ht}~MaGCA!K0i{lk+1;+VGw8xbSiE?z+RM_bYl8+pbsy6EfFb3*wuUX-mL7fd2O3
z<L63<La$dsheSb<!etNR*M=m}DNPwbQeZQRm?nE~fNmiR0f!xUdHp4m{8^Q{ad+ej
zv>^f<17eJM!J}h245Y_|#G`D4OgX!^c#L}783<EJ7}TJ+3-S{___Qt|8g|%1H#f>h
z|E>J5u7F8WQ2QYCTk$8T$6=CtrTXG4oB+jjF%WgrlU`a{dd`Ei;{!H7l@_;D4jEpI
z?zi_+xlYhmr}AJXKF%m_&xLTFc(hZMKSj1TQmMqp$Hr@*7o^xzD0e_@34bCPE-vX5
z^)(=g0D({<V?!9>@~JyMy~p-38G*LGDZ%MEPmGnIkA|+@^52$dWB0wQ$Y(sV;OV`Q
z+n*hGoxh?1eT+IuyRsHxd{(Hovb-4kRV&*A?pjnFhj7nOww(W0>4>~iviM&0VVi)@
z1<rfYZRX3nrVHitr^dQ77l<veld=W8n&t2eJdX-f*({J+4KBJ0ASC=vLbv38hhqKl
z+HN@b2wejSiNA*+$F-3oUvl&%OmqZn^%!=;i-m4RDHkwr-xFQFEG-4WO-yJ^7u%$~
zFDzzf^g%qKKy(lr;jwEqVCs7WH>}#}ZvKfwfHc|8()0$<qutkEUN@?;+*W?6+FY69
zzF18FEZ}QP%U(Lt|92S>DM5+WiLBi;^Sgk8$7(`0LBeH)EY9|%wg0<^wGflJrXu*X
zi=OFq{<nf|#3V)_L?(f9>t;e|AP5#+4}us*T%rz?PeN0L`9a{#C#YM8L}N81&EB2L
zdL{?i?K)NBMa<4LCK9cU%(dZ}@iKY1x7N~GhR=*ZNI{-^GbkAq=|b))zp&tKA_GH%
zi+kyTplK_`qm+8{9rBh5_5msD`#^d)@sGl|$aJgl#abi2LGICff>Ay6PS+Uz$Z+%&
z(vzW?%ZsazKoO7s>I|4UD5&gSQ*tWcy|viPL7<cn9IU*K^2S78vlI2gXp@<CiDo4c
z7L!5bj3VEdesin@PsgXjofsiEO{FczY?=e@>&Jxr)@!)Rx|)ws@Tx!pHGEvy^d2xS
zZNZ{w#n^n{v-*5W&0e|m*+j4v%EaNqKWG<{_dw(=VZ57fMuQ|z+w1l>Vb@Rd(*a*J
z%F}sA^%zx_R(Dpyg)VeM#!xhfR}$Zw;xB%v(wn+0`u07BdO-ox-x!<sSn3#`;Qk<@
zA90*)RgzI%iykYT>H}}*v+GVoRN}D(h(4hHp8&%JJo@+k^Ckqt<$HKj5ClOG1VK1f
zDDWmL`1tNiaP6zpk(B5|g3pVO2Hk^yFWm_*zte^UciBZu;(Lm!K?#>&?WWuVo_VZz
z%C(vb$Ke89fBp5?xN#%C|NeXT&716!lAfOK`i`?}3eSi)Z{8fAefAk1ee_XGnKH#)
zb%p)O_k${$?)72C((f?u=Pj`4bi31fp-cO^B;frd!jrLU-2zOVzZ9VWP_I!3oPB0{
zDu)g;uoho@H4D3)WSrBlA3CJ^@zrNvU_+salY94pv0^HUGP~o9=4qJo)qmhSxj)+0
zqEV3%!u&6@kaFr-=+L-6>^(nY(&TIy4O*e$*6}!VR1!jSh9Y<E98Ahuj$pt+<5SK-
zw+>Aa^p_qq&;Dz~2OzSViXaGrAPB<I!K<k(Tej?XuBM{Em#*TSt9s!6Z-BQKOvb=A
zsd(|~%MrTe1>E1QF$#-{5OEZEyk6M61h;OuGu1kM?q2?140wDtzWeXXaDpYj>3uV0
zVI9q@sjy3T+0|6aCB_*R<NVf5Ubc`|Q(=Sru;#8^yWDjXFTeb9eER99t_bBd$=P3=
zUlMfS3xD=P`Rcj}L#Gi46(JH1BE+-UF*G`78qt^XSftiNp|I;_qNuvN4!H`O1alA;
z?eP+dn&KcF3c}G$C{_?*i^}0ifD;ZN;<lnf$0i)hf)Ut(4?dlYi0VP2U5F<idI-Ir
zpMeqAv_%Q^hsTWN8xB#KBIOq1jEHeT5ClOGgz`~gVmwX7m@9h0`hQPg@_Q5T!GwR~
zgBvbF_^&VGlHAWQ;?rU@Zc~Kin_A)i>m&H{Ba5-{e~;t*o>!uK&$<{kY9Ste?>pSn
ztqw{<zi%Or3KQcD&wjJWWcQRlefqfThu5xM+ZE%pXU}$BR`>-!4H`5+r%s(*v0mj+
zbfnrjxZ>KoF>}E$a8i;m@ZpgdI<O~+@4)XK{lpP5E(n4k2!c>PDpHKUc}X{zPc6mi
zv+u&=JI=vnd0)f6>P}4m+uv~7ORu3vY8d11zXnZ*t-`s>AHn5!et`R?{(>87&%_l^
z%)*!Bo<u=@!Ec(BEz9A=c)5JW<M1m=S!CXJ+ikAk9ye~B`?`C6^XBWXzmC&SKOO!0
z^>bZQs-zHSoCpfkrugKm8OYDiL&5qD7<o-kL@H2-3xXgBf*=UT8V7-*QvB&}PomBI
zXYuN^?MNU6TxvzIZPgMi&R&i-0|(*UOar@uTM@1Y><kt{3Hx2o2s<{hT3P%iG0yNP
zg@rb+u+pttH}@q#>`Q+2)mOXjDSYlAAMvUN3vv?T?hA`{?LuK`z;%HU1VIo4K@g4y
zYy^vo5D0})5=g{|@h@Y|hFK^|s*eY+KNA}_ZbgAV4_|({7`tb@hCv_H#EPG$VfL+;
zU}{bxf;rRiQPx^${IF*w@tfRKgri5?R0Kf~1VIqWN5#0Q@LC}X3bt*AlhzPv9@4u;
z0tz<$0%SBnofHG>fB6}k^8%>Tsx9i2?na)Gfrhn{v17v;I7xL8*tr@-o=mi;p91H1
zx=vK6&$w{(h!__HK@bE%C?6Fi#u=5DCbX@+Zpf;x0~WiVDA05bDrsO|*n?jS$qR#6
z6wyuNkUmx^t{rj1elHd3GcE{%AP9mW2-N|bgmzgiZAVy$^PWSRJmR`lM@aBHB-rDk
z+f76JRwP^@Li|XG7#9RV5ClOGgkyw=aX}CSK@bF?%E4|Os;VA$+kuGBcqJn~<ANXv
zf*=UxgMG%cva;Ow*!*6f@u~uA?c(BMG;P|{eN%lL5#yDNh;cy>1VIpl^1=FvA9g(6
z^eNXXIXT&VqkWvcVqB<PM2ri9AP9mW2nV8U-n^MadgVSPD!_eHsUQe~AP9mWltl@L
z!=l9h0CZl{QV;||5ClOG%Am-!xF86EAP9mW91DQ|4;4x{NZPVsbpQYW07*qoM6N<$
Eg2Fqp-v9sr

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-publisher-rule.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-custom-publisher-rule.png
new file mode 100644
index 0000000000000000000000000000000000000000..0a8e9e62599e578757feeeffde74bb54202a96f8
GIT binary patch
literal 168464
zcmZ^Kb980R@^)<7p4hf+O>A>w8z;7%iEZ1Om=kki+sT&~_x|ob-&$v{v$}il?&|99
z+VxaDJ6us-0v-kj1_%fUUP@9_83+jE4-gP=Hx$HI&6*~%<<}puld^;`Q1ukv@mB%N
zTu4p`2&gU=_RSFds|;-~sp$j+gyQ_y1-xlS=ne$*StKPYr0TABmJRBUCxsibbzR9Z
z_QOWcX06%w>z9eS)_iW$IJMfbcl=p#v0_pHOW*eAqk@8?Wzp2-QG0Q5v0fUq7<&K4
zJhacEp91-aA~8xJ;fb<`&GX<hagfKGzMi4Y4>5OgV(U*0^}fmv0UE-dxEjmiX|`ki
z?;~4f?N7DP^Kw`p1A7X@uMuE9-xU0Y%*Ux4_Ej5epQX1ooj+<>CpwS_$piS}i71KN
zpb3lUk?mf6;q-S0?)dRr21|_1G*h1{YIFBk+TM$W2fdn$razV|yOT%*K88}cHYYxq
zyPH`rQw0q5Ho2F>S`w8#QiVI8MLr1=85c$d58rilE>~}9cF7qk{kmylMLRbR=iku?
ziz)Wcb*IR>spK)P2B5m*gH59ZzV}e0viqI!CQDJ&4X%aRm_3BX43(y%g3BK5&r8NA
zuje!IQ^z9)F;g&owD@UqaslchJR%Ws3F$WpMOfzpl3El{FEO@K$v&0ahI;Y|spO#5
z#K*GJ1tia_q8C2c69xT>K1XH!Y$0ZA+<Rk=1=>p^%_EaPex*x6&?G0e)fqGCMvP-*
zqeZpN$7k)UN5$jU*|W1m<`xb0Gw*r1PSARyp6{!Qrw}+{-u8VkDNGO+F}xUikh(GP
zn-PnBBME6}W0EnO+>L)*o-=nCdaVO^m}7iO`jQnuIhpQzX_H@nCh)QJJaT;aBSo`A
zVyOP85MiRH9$AA6*VFK@0fwfcy;ZpH`xqLbg78W;7w?p^0nOxtCG`gsbxZqgtuXD1
zNPZNx7DY+hA`wDT7OGB9h#OkxJ{9hrV_%z9i31u^2?g0L2lx$5PPy|*LkD*3Iq?ue
z2c8ep>Md~pK+Kz)4Riff@mKwn!jJ(g>4(R^#lLO~HIy-KB|7})p&ff)WE;Lt9i8tV
z$vPdl0M6_oS5Yj2HMswDfN<#bRE&Lt%%X2R5^r$a+k#q2yhkKj4SDDGjpx6;-on>n
z-_#5;^oEt_S;^{|q5g3NC;okzG}y|XYcle$fIDx3+^%O&WBTJMbPgBmT$wd~A(NRL
zYqEq5Mnf=}$GFJdh9RAgXrOv@69DioM8h%mddUR%+nCCriK>V{ed15=8ybFd^R8g)
zD-B?e{Wg${2D^hUVXYmgrwlL4XCE*MWXh>c>3(R2Sc^@h+=?R27OQBnJ+)&KFY^0}
zwVU=wHX~d8#Ru3-*Sjs3Mte?<_)EFh4fyYJvaz#`mavVs8z4@u>-Cx+?z|jq5-Z`D
zwh}0ZZWCgmuIDrPnk=0WTkf~0CbEUdpYpg|V(W>w*3Wf5=eOQ=JdXb?!E4&2S*2dr
zO93J3$k!|zo?pxjg8Xg#-VAv>M|OuIk#TXYd0xa#^yx-P4G0^6ii!co>%~iqFLxvz
zFpQMtAQ2}Cn7HANZ3ViohRvh~YFjy2^>5A2NX}rl2z&uS*$~u2zsb&lINa1TpCJvs
zqf|DzYC~`w$D3`_(xpS_wcl-H2wC=<VOk#K0omtI+V;+JAdr(BRWK;n?aoxi_dm>e
zUVKUHCWEwZ%9fjLVVCUI1N$%R7EjdciVb1T5SsA4fs?aYbnwXx@uxE!8fM%!xNTP2
z3DWn&f3~dnNuqGLUDqg=y`-q)_}c5g@@}og{IgR&_#K}QFZ;Brmdsub-5>6bz4Eid
z9TLZaKi*&0Y`Wo_M}Dc7MNRVPleplh!&R_=C*KGRHl-#b9r?hDolrD9OZs=RN~b>(
zOY*h`)pqJ`_xQEDJ3GBgH{vnDQ6GxhJ2(a(FG^*3y@7#dun+g5Q-}({Rg3_$S}ovZ
z((8ssX0MvTRucY(``S?>2Qmq@I-Lg9PpOlh(;AH`tbp~+0KQl_!G-Uv)^li+Bh@J9
zTO=xiRo)zk9qf|5%?B$s5@vS=oviq^s=VAyzF?cYJ<-jHOW`Bah;+r?Y{RpdX4md}
zA<?aFCfGQvRuR7wl1Br(<!0LF-Gf&<ge+fG7eWm=?AF6TD<q62J@l`i==wU4GYqMR
zQ=<Aek;bI2dSbd--s_wVU|B6U6QpVCtjEZoy11i?qcaU|a@B2{FDdmb3510?R%86<
z_Niq;;+!nR@0UBDMUT@YH8AYVcDx|w6(9^;M`Ab+A<y2NZoQu0Yv~4eHXyCEtnCmB
zp6Y1e&D3HCE`XTDy|bF{s;G%{i$!<!hXcDOXY#*$op|9o{BdZU#7N`$5pn*iIjH{7
zL>8{&;5K5@Xfu!C^NKha_q--1;N-<2)?ha2Fr*gjW=q1C{iOQu=H6jc(#toII$P<$
zG>Zg(f4OgH^M*WgDk@OFMC%s4UhN3podgY*QZa{3JUBz;hVLRlvwKo)#WuaY0_O2L
zKt2#a2m6$h3pO+d%ah7k2#h&{{3AoZUf2V?whFU&D1bp*@(Qh}jyXVU^M_ovM-C!)
z5#;6p{T$>W3MsCv%;G|2RZhc$L7w$-64uZ<jYyU%Q+gRw2%}|KNlH56$NaBDRDzi;
z)|jC|<5<YY!5%v%J&a!q8J0Y87FpzF+cJK*=#o@VjFIEU0FnU(=0wFhBcJP<ivv7j
ziPP`-Z5qR}yIc8%WF<Q0#pWP$Y8dBQ`%2JjLy};5aBVeLL<2z{gaA6(AGmK~dtMWz
z*P-_PvJm4`JFz&;-kZ9j`!cj?X_}9MiX{vrTE7*5^PYvvEsXR?DGV2+%6vs-Q-cTn
z8k_LRh}=82lUB_xJ46)se^BAT`sC9_;ua$#ghYtv2?oCTE@N1a@q7EZ<xSx+1-3ZT
zC4G0N%>W4&m7<y1QVAR{nVZT|e#@i*G(5Gq$OEbn-~+ez3qY9F(9Z$e8^Xm}^WPex
zYmTjxOY|__nNv8VNuxR>Jz{-{)?-r6m?@^nKjbuq5!W23PF4Rtw{H^54d$^kjg~5T
zU#<$_`^i$3_3i!iOtmgg=CSd|uXFPTr$hNX3nnSM4}9_IRkG1^%1;`MN<@i8Z%n4H
z0j;yPMV!!TOu?}`ZKnJog38tF9|z3D@N29i832h|?=p(^WKd5vnONHZh%?y9sK7rz
z)GQ23)cOq?^T*z>jnay3Gj>+*4>_4VkkxFmDOSH#aA0w{*qr|$a}}VAl=mnEklrHL
zjRXgHF?v4}**x8%tNnl)8a^I#AOhjEa}c7xnJ=s5fMGlGZ;kR8Wb_lGWR(QB!|Ny*
ze(M9B@w;bR-{=x@HjX92lA)Lov)YHfyA%M*tI^vnL{>bMjom4%45*|m_Z0PWX+=}T
zj8<XcF&Olp+s*%(oC{SknT}AUBKd(*zkQ{0hQ*Eq8hX(?KhUgcl89XN@(KNo#o8$^
zh964FBx%giz>>kzwde9_Wx3%;iv@-fci+m(b>&4dzcJ%!66;>9YV?fsqhORwI-Q|r
zp{|oGIqY5Y(Cv-Q^|Q~rlJ*2a7oqFJC4;&lXZz7?$9GItTUG?afRfs-?+O!7s;dd`
zXZR~{9zX<Ep35hS(MdxUMjH7g?m`ky8PP+#=OSqX+TG<fmNr!Dxj{R~e2mRx`x_R+
ze=yKzD$MOV8_)lgd25R+=sf+zcWH0Az4>SDw^VBM_-r=X(NCAEUXNPbF7+~NKIvsr
zXaj0;39I$m0tM>LTULAt9TTh_cVHvcLZ;n=Pk}d>yyawQFV|tS%d`92W!@Q`v~4+g
zC^Smq<46V!{OsU<aGDEpbJMc8bE>7#16XZCWG<j*PRWMMSu=jBQpb&M5D@5HNACJu
zi%#UinxvHE!;{`Tc(j&~?k82zZJr$k;l?9au$iDOxmbak8Xm{@rOo@cwt2yqb8_~|
zG<t+8zyA<xy+1JFofzup6wYQ7Fq_H>YO9Fpy>jMT>GFzaDC@vKiOq;;b2{u5K~j{G
zyIC{v?(ps>QJMKXN5a3+sVB<u=z-9VzCNxkc9UVS2|l}w#+$!1dY)KG<8z{Vc$5wb
zprAr@r4|+K(*ArOGzejNM>oj}i?2l5e@6O|KDQc!)uyCT2kmAfaa}l`f)}gDh)wIj
zMy47yZY8CGk^H1y^Lrqki<$QNS?*Oyn`}HGpx=*H!<eK=qtz0;`8+8FsA%*iy|G9n
zFd9L38++={BTq5?Wefu7@4cVo0_DD~X`j|F8O!W~A19|sp2AvA{LN~_&RbqMkr)i3
z{E*so-E;-8`TQ0VL;98adw;ufx3@DE{5f~8$+Vj7Xb?fbKCgGkvAO&nH!Y%VvgAQF
zcNy9J!4L4ZYM1Uu$U)+K7o-vxkQS<rqVYf2Ggu}6U`1<m;aH_9)j7GIW!wUpH;1cK
zTrv^G!ckD;4F`G5$>ho>Ef-3Fyc_`Wa<GfM_9`u>dXQUfUPi$hONYBwb-nKOkK)<O
zWPnd*um*IIgR%S;6NKW6Ivg>}8}{EQ)ng*0*NN`UKGhy{_ex6XvlYZ5Ur-3PNgAfK
z1Fo9y6a}#2#~1k0^FpcZuIJ80bqu;#m_*Ms+3{h4@?Oj80-Li-l6>5pty;J-)BXD9
z7pBAJ_EVu?a5TAsmVm!gw3>J{tBA5(y(*A`pE_&31qfR=$sNNIBC!U0^etoJ_wQzr
z$>TnY#af~v4rDocSS$^qsD6wOn`L(^3)8fpn2MvWaO)uxrZ`}+;&G-~0eTxUJ3}Au
zrL7;_5a@0qr#kdulru2cS#+GvqmT^xg!O<(3N#O9bnzUk#T|n%kuV?MGp!j&wt7?H
zgmN}y?^BSIY0jAHZyQ5zUfzl+{#EaB#;Z<Qylzl*%w^X^gOu%l<#gWcY$B2BU4zY0
zC7KYJcQ;|8Wi0?!<<%8|baojA)OQ~#zZ%<1K#FmvVz(%(bR%crL-Lto&T4b-4%S5V
zg+b&gzW#|dUp{%>Sq^QQ<$180CY@k4L|W1-a{V1=tXc9plU*M%lyGg@hl)17PLXS6
zb}c@GGEcWP)<3@cCz5m#3ZLg45(SJvaFvNhhildO(P4wtBDJWvnBlfRFngw($*(MI
z2K`QfvM08v?1tmpK;E2!LlI;&tNyV_Vkl^q0J&hZX_L@;0BYabBDzoHr(QwIr$i;k
zLH=EefW76#E6?hJ+&v`w6CWV*{OL2D_afav;AxGA>tBd+IkC)@+0!{L-NY<4Q|#+#
zla>t|`ukv{?*5s{Zi28>pAY-zLG1M>G;N5*Q_r*eXJ2hE2UJV?ryX>6fECwG{^I61
zJM2I6$@(M&+rjN#c&3Ud`4jk-EBM_CPS4KP^vnGQcOsixoA_*L#T=d;d1Nd!QO*Sa
zSAtJOn6}+Z=o=EM!qol0J^8<}Q;RWrrJq8a(|>BRdLS|X{0A6KF$DSW=KcqK?YuGn
zVaERbf2}pb?Djk2hO*-)VKJ}n4K7o$0k-CQCnqox5)zs4{{?Li#9Ji3{DjO8u|Ca-
zpS~xt|LO1<$+8Q^a!3JM^5d0B;6Fg?P=&E<6!ZTi>Vc{NT#8Kn7ho})ICh^C|EKrc
z)3~v=|3P~A-eWNT*M{^Yll^~_39cdjKS)TW^FKo%(U1NIPG;#t{f`1_0{zMo|0^%x
zN>}Z_iqeP5{h#iLy+gA8dtZ~i(ErIx{gi<I-??G-r&j(4m2&oA{Qrh!2!_4+L=}GL
zLq@Z$$9M20ugmMcf{w1kclc-cH+(RZKROAY7)Ln-;uX#3Gi4%>jkaqTps$F%ZK*r#
zzZsAt)t*^?{(8$aK^Q7!Uu5*XwH-T#yuIpGzO$M|san13{e#VeY|tRk;|*2rk`(~8
zcI{U1*cYa@$mnp2pE(pOcIk!ev)U*IS$_C%zLx*}7I@itbNt}Nh1NP1*>bI_@jtS7
z3ovt~?)AXG{64Jp81U4&cMteoqqno#Hc6Sv#pGG@fn!+ZpABkIqZGdabZH*DjgLpi
z_09-(SM?`k-34MNqlB<ipTGA-DLP(QEhGd;P$v$PfbS8YdGodbg~8X!OVCF_xny>0
z%mlXH-ye-@e?A1;>3t2upqDFlT7Mj0vca4g%TO@OEtvOxE#}|l`G5e)BtCq@7)^$G
z@w2k&a3?rq(CHmo3(#2W!oqMV4|s(bo7N{b{%olKMnhG%lYyxANHcEZi&dlM)*GmT
zan`yYj+;8Y`&I;db>$PG^j;xk4qhI;36XmXyKQ#+*)@t+Z*c2ESb3!K>r1qF8V$Lk
zp`2S~KK(9FT=SI1fuMW7+MPP3o4ao&%nyYBp24l*U*OM|A=pfTlaj2LYnWPKyEdI9
z9AE~jmzx%g<=={@R*6==iITG&mS1NxJ{Fc(U_iG=Kl^n2G#yXDs&xkKm-U>$)qsSZ
z>Z$XHgKBHWU<;u&Uo-R_jCP9kC(~4H_V1Vsk<5TcJ&Y2xl3x1kr(VEs8b0W)HChQ~
zve@jTGpp_hIhWx!KG=lJA0N6WWwIEDC%OO@Z?Xlr>Y8m6WSU_z89Za5e46`=$~r_H
zhkb7mMt1!qYUi+w`VquVauo#E&DjQNtJNa<oB!5f|IO+Sn+28FudJ#p$Cg~YO^a@u
z5_KCFiHhJgM>oc^;CJMK`@^JF(D5t5Y7BobRwVv_=TEtcr6X<+a=o6^X6zA+SfNz*
zs@e8?Bw8Nt5P9BA)W4OL^~vj)9tC@|1&f^oZKlU}sT-VgR&TNtcd{N?=t@<4v~BAC
z>TWdD*c@kC83IIeYY9sR;|Sb=Q8WBP)1ALKzA-=~qlT3DxD^r`%Ml}s8#afJNp$kz
z5p^tZ$#>1?BxtAOMSx1U=9N^QLkQIspky3NLNaBR?*B8Br_S$#;8^fV%!32GeR>7K
zt_O3ur;s$`K?g92nG-qn7+X1bmIoi-BI%RmwI5UwIzpm9jMIF7NPec#h=E&Ew|I<k
zrriLM&66U$k}`0`%9yskO5~Faov$$57ymuJ$Wdh7Z$EmZg(J^2TVA8po`vK?IZlOd
zO*RT@D|A<o(gnt{7TMky@_}xZA!CoL%awE~EB@w_z_&zceG{3_Re!{qfk9`L86Eq)
zey2HyYuL!3%%pV5oQ|OTX7H4vgsE6wyR!A10%HFkTN5AeyBGM@5-?`KviSr?k`;WI
zxCg6Ld2B>hCV;<)3j76$B<xp&!rXme52tlWt{=gM`eXC1!%)%W69q-b2k-wNJUo~@
z2)~ES$LAfBxc792-ySk-kKO*}<Zi%hf3%1mU8`_d7;ipVyTww|j~=S5doSEWlw9=2
z#%QdLT0|`;4c9g@q0@kR$NYe{l*d*qJ=e(3_b|U~=d`8-x7#Xdb^bu1*YOME2Okw0
zPT2>NZeG&;4&!Cl-3x#{yt<pUY!$`tyHl~*=z!5`CeWKCYk;%Di7cF4K*l8C9ZYvJ
zclcap#gdmFv{b%4DAAtr{^bC-@_^^YpxX<G<got&spSYbmcCZ1#Qk`(SFmtm8umzU
zIX2?=(x7qqJ7A4t^v`j>@{<v4EJ`iraNgYu!G_r@pj3V@LOrxfnR3O3#`ZIImJ-5~
zH1}0@L;zCzYme#>>GeDPBRTB)M?PV2Og}qdz5X@MJw#XEXnIg(&%g^@SN}+6@lrXe
z;sdPS&36_r`uulT4+J2J<*+C{OgY~IeBohs4w?Z5iFFZ(TFQAOLLPRQ%Ovq)<DR=!
zovJ(}a?D<>zjMQsp@#A|)WuFuC6<U5@(?l(6Gd-FMrXVR9KbwuhV!{d6`9mYCQj!;
zq?Fx6(b~$>KvGzc@gr6;e-wE47)tI@LZCS)Hn1rttXMG%>D8h!51RjC;`t!j!ABk|
zZrW0xGpqll(afx4J3=-0M;OJ6MHXZG<l{a}NC?g%VeCL!i7UaeIOg4Bc|1+1G=3dk
zDuG<&1g|R2b=lYb;>(`<(J^Dhay09a)e(3?`*^yF98P7=HrO%f+%Wf_9>Zgy9mfZH
zPoAx#!?x%OQnDqHTT-{Ks2KkH(uE?|ZYBD(H85i3qCcTUnjlY;jel~Q669nlfoguw
zgP?!7<WPU1Ei-I_2qzZs9#b5qHR>Nt0=C>;Jo9SJzwG7Z<W<n3>2m(%%9_J<k!}A8
z7v6v-@%SUC*7+SeSSJlQato)jbK0zt%Fc-V4vM)Vj^4wO%0C*Bt$s1VVA{C?8>6Bz
z<U~b7_HrpVjZRgda&NAcn4UZE&c&6ixs9n(%>jN|zjs$UyaFx!r&mNo;np;M$L&XW
zFUpgB@GUV6yS)c6;)|dEh{$@I7a<}c|KRy)i@}s4*1im<NZC~IJf_+J-3!=oa}5{=
z54Ngh=FaBt3$wAmotnc>!UO@GxKA^S#sxB%Z%NRYTof{pZdg}?ukW$5>s_~4RwFw0
zB)21hzlGabVAJ*Xc2&mc2~@JkLQY+<A<aMKH0pdInk5bfXNsT2USpAwzQR*+WY4$r
zjKENEERkLo!Ujgm;9O_u?$6}Dp^nhD{fh(wKs4ynbf(;MzX=QmV%+i0dK&TbRF!t|
zn%HsW`T4-ci|R&yA8yEGIii2>cAN2H@TKN2)z?^7&g~o(`?TZw1f$n!kD^hp4(pM@
zWH21*XG#izPM3D+o#d&xI@yQi?RLQ8@@~%ioJ%x9`_~17qaXESp(TV7h!@8CJ`E4M
z${rMY4*1mzX+7)I0eOOmBLzw$lw~L%wpa+s%qqNC*z1pgzg?7g<`XL?wohLn+Q4k>
zp(<k>T74cuBDXk2`81a99D*&=z9?plQYAEdjUClrKlN^z7Ki#iPL;=!AZSXB9aF0P
z3mcO>wvR3|-^cM7?4xr`^tr^mw+E6X8nGU;O0@VCtL`G)f+9_r(QF62S?{ob0)p_S
zxqWV-H+{0}%EFMxd4=daKY?9c=;hPlthvkU`RK}|vJHH>3{{kxQ78wDFQa5&Fk|20
z&EpM7w0CTXZ?=5^;>q1caOdURJ~^YGO$^6`Aqg`aJ*k;($0G7?H*v}j|4SRFv=GI5
z0|svs5t00vHTg<?_9jjSUIycFyb6$LC(S^(tL8-N_#^`Xqnyon0}+(Wp(C}3r<~hI
z$)KaS^_a)!MfR5E(f-7++A9<GLla!*qVxXYK0`gZ;(*GP`Q5pU3&{go%)R(AotfK4
z|3!8A$kRgOd{Qc<WAthHHN>BuDX)}&$ci-cPPLYCDb07`xcAw)qwYFwgL`Y!kcB{a
zhI>V;#U}hj1M4OC6AVD38DVf_7ERTE!m7p8gs`1Eg&mJ3VvIO7Bf}gYAm(BX8Z*^7
zm*o_R#Ou&u82zrD(^z5W7(Ra#&#woyjN1upE-QND&_WHINT*T_ZhS9{VK$9P;MZC3
zxkZnnqnBvHqY~{olRN&^wInE+335?wNvyLPvg@kM%dAQLglQdJ<?}22KSpEOIoD=p
zH@ZI!gAJ+RHKJzPz8ki=dS!7D9RUG>Ju|jW+;ewy2q>va6ApS4@CL;4L#H!>GKe62
zV~*5MPdS_fgg{>aUgcN*Xy$7CM2Uf{64>)x?GSA+7YJg_rilM0Sm<54606fo3u&FX
zHP3eJreRp*3M^0N#v!8w#P%#7Vz3773?-VRdM(%-r({Ey!$+*cs!WL1kgawy5uV%B
zhFGvHz|mCNP}UIp2Wxj&frvE8_A$D<#(bV^OcHyK*?OBjnmkuIsS^q~fgTUIOoq{D
z=A007NwH&5{bB?^T&mrsM6>XI++g$e`{en!I|@dq>N9okxe-U<*&|j?4Fky#h1pnD
z-3O=B67EoG&X!#?rw*SZ#8P3KQoe!KP3b_DQz}xCy+qkp<k9<+6(sAXKrlq~%Fhv-
zAs)D>VFb|z=o0hybw3XTOdHA=%YjgHWAh07lH_`)4{m%s$k}-!k>7QvzD~*XKZdGj
zV7blDQRqYAiY@T%_jc$__<X<Zy6M@G%7WSBWB7GfARi)XflHIkuEWu}racWO)@=<~
zzCvAL{zfb@oOX+@P_j7NP!W+J(MgF^jJC%?@2jHUEabo5@#RDsm*34dnorZ5vot`%
zj^HD^fP557@Db*b>O0~ZGd%WsM2uh}F^^v@mN^tBYY|TZ<z8wq*@%Z2D&C>dKk#d+
z2P}cnJLD~Q+bx?I(Zd7P%_m#2tdceHeUEYHnH2E}3_QXsgG@RX6r8!U2Yxq}WMK<a
zLC>r2=e$t-GQ1e<pV!?v+<$@g7NE}QDIwV}c+2g-sPa&~e<|+v8_j=VWsUIm8o@ug
zu`ez4AYlIwd}IK?I{pv#1Lr!V3zUjII<gQAS?iwuL?p&CM#hNW9?up)u3$olXM*mT
zf4)Bg@wwX0gEXRJkJJw%<_4Mdd@!9yL~?e&K7tl53tMW%8pQ6QYfuw`>(9SyE+CXp
zm887OeTF%&3HBl8cniA0$tS%&R$s4zLWCZvvHB>DL&D;}1z)ujW+Y-I`{jCduW_fU
zKI_+Fr-6iwLwC_V_$7Cio4wEn&$Xujcav>E%A~gO$EFwixL-^!jW(m_f`zkX7l?pf
zf=^Db%=m2OmfG6v^w8&-6<mhLu<PA@TA+NM>%i1<yQzS8kK37nd$8$k%zz2c8&6i&
zEUbzve;t08vFEgB8owXaOG{3~kcx!y9y(#>`0pJrGvZZ*HCvt+r6a~_X?Q$uW1ctp
zz{~9Zhr}8i2?2;2<J%eEJKweV!T2#_CZ{oOJl;n`Er!`PWr>&18X}B>ilw1=gSDM4
z;wLC8bpkmiUt9*nNzqhj30sM+NJ!6xoG|+}<iB<p*_VqU2i4txRVGs@I*ol>=e%SA
z=DG2Lu!9l!vA8-g?s``>iVjn%O8r7b<b(8?+qbxaOkMO;Hklif@N3j}>(}HYO?=t8
zj%*Gy)QXM%^`{vt*G!%lc&SaOA0(y(5A{fB$>sO6uI;d78VrMh=AF?}1AUyQW)+=k
zMd7OFS)R7FzCQV&*!tJ#*2AhW@^5c5tp}o+lUovHg*R5`wi4_nAj$_7{#vFitF*g$
zw;}}r4PSvO<Njcrdj~ylq+OsUX?RGA*_}(`5=X`K9v4(K@N5p8j-C#e3OwodVed<-
zzgF@ycl2wfx*FUD1fI5QA#Y>rJ6Y5;#dqiahp!mMbAdxgI%PGK^_OQEAtz1N1+Q`N
z29fmrc9lZ&;`cMPdZ2Jx&Ja5cQ+qRY_!hrwp~WXSrT9shy4{QyO6O2AfB5pMwEH+3
zFMR81qGlgNwiB#SiqP*=Eo~$N4`gbz1y`+JL!j_3uy@jPo8ZHj%nO_?*Y;z2|Jh*8
zXmzX0RPElMLm)I__Fb`9&#$u?D5M0E$>szE&UzVNLa$SR;lbunW5ISEYLfiNw>;wT
z{8McTC2Z@wkt>0rJzLTcqd%>NrP>wr5Da{wrKzDaKh7{_qaCdG+-do94Nex{fCfBc
z`xf{`>W;Tvqi`D0nDXE8qp%tw;;kf5vXaymbe*lYkQRSA56N9S2$GRMT1R`{pXTlR
zqr3aL01z=MTf-7%yna6JCWc*c#>7lk{Iq!w_-Q4wUf_ep<bxctbQ-c(Lt01#CqqfD
zly$F}74$oCNM$138_%-<^M#cm^yOSD-)Gz*45O2=*u~EIXc3xioTFDs!BR@DcfYCh
zcP+hEV~%(ey@P=`&%%#Y5M$TPpzMv;xsRubA@`>@cCGufh`j97-EZ&}XXj_gE>55)
z?4^+@RVDLr(P8fXQ??oTLhsyI?RW1b;EpJz!~QZ@Gu6;19O*!6I1QKIovk%d;c?kT
zN4jB&>0RBMaTl#P1hYNqYIn*PTIg-?WNg(TyTt7p;K}LIHVRO1Tr9#x6i6f$BU0>`
zAOwVZ*wK~Ben4hDECDY;Vr|xQtUew|`qV?qyZ7{PlD*CPvQ{s_j!f5xormDpzGooD
zFr3C}xtta_&euUTJtsm9PUr<OnfBYO(#<3B5GrjI@H3V^Djy#!oVmc^c0zkXVy3-K
z83~>aTP%Cm9~CcJTptVzopB!r6pTZJU8~zNh3lLd+93>w<-IGFNb^<l?u{7*_TBPw
zH(L5@C424=<4bI=ge$RN8Y))NbDq*XbjLz<)`1p`Obh0k-Ottzsh;?#66#^jw28^F
z=6hc7I>YyqT<&bg2VpJzqzZ}EgX!BK=qQd7ea~=Va$NMF$_K*&xh!zAE}!<qci4=5
ziTl8SxW|bM*L^WM2dAnbfx&SOT^C=|%T{V}gv~N7Y5IT{cdd?qh{h@KINh21$$y5h
z+H52IUdTUe=K<7I!Ls|~Gn||*Gs0KTkI}f+Oc3(yHVk8uza-V*U~>ejtrf`SghLSY
zgr?xPE-5Atr=@cm-w%)<5#I|2<~D=ugZNw`d;r87N1os7;1PHcjsGGZ+!6`_Er$l=
z_lto0`T2dkN(t!e>l2fci$BpGqzV^h0fIBh*Xp8SowQ+xtfo*V`%-_yo{PUxWw=FI
z(8{hq3bT&Pvne?2$cDwvG?;+ybWi>;er)dNMl|yzR;5{yzCyL#GHli$6WLbF6J2rW
zuki8;&I<~K+Tf-~Eq0@#pXd<3$ngs9TpWh(Gk=AB=CMVkeK{4TlHk}eXe2r#RQaCf
zNUj_qGDz7-6{pKdNDejY<pmAiagJ=1ON*M&(S-D7%fHJMnuQ5dR7G|`b#+CSC!D(>
zyj&#!KrnU<yU>Q<z`)4%qL;0S(><y?hF&=W9HhfQANGR)=+UWR)$b=#Yi4SVNOu5L
zSR@Ax!fGytJ2p@(xfs6=E~$f=zc6r~@GNlufQ&W(S>_R@Akz(npw|B56p(O#0KJ)d
z2>VT|+JqnQ^VKalxX1`EcR>iN?U*UOQn=!61t9Z>*vOnC&mb05cp*qkI0DTUAUJla
z{T3sK6w#vfEhC6P89S;ZSPlLFN<|A3qc}Gv|7`>F*M2D#Smp(k9~l+tI!D|H<~Sg*
zXc$JR4ly`HZaCbKuNfXgYpRnPOgD{OwVX$+agDFEo6!V!Tmi%=7B)HJ9y7XN+!<v!
z3YV&Kx$e8gqBzX$*|d;whX+TnN+J$a*Y8?x^k8+jA4(Nnq}vnD#6CNH`5uq{zl5__
zFh!ksPdgUS4syLnqNo!zmyZT)D*G!q0s=pe(S;AkUd05gy?$e)Y{H?^!_kqmW_w55
z$O?~mg9A3~L=RhJtCLkU`nXRU<b<cJP{-^wN4K@)-6y7kC}e`YzlkeV^z1F>ee18?
z5ee2x4uP$kAldbgWAK9g1&sbat4r*^(zV~DNGIZJn96~jYm3Z`enEx>j|pG~_k`I^
zmoyy5Af)H*YLy(-vf^w&ZoaQ3YSi(O;N)=1Vs!iiW!RtACtN3tFWRy^5?hL<C!Ad=
z2H4OuL3Y!nOf5-9qSpxiSk!`<PN%TyK#5L)&cQT;J!WwsZJFM4v9FA)PD{E-$=L@C
zM^=X&xT`f+P*=7d5J%ByOL6wT)Egj$q)gDk@r+KTG3FVD<oBlsCyPW?<fv$jw-4?$
z30G^ejM}S7(lF4khncV?`PYgFL$pvkfB(7E!J|K_ZN)qE5wkY#34MO3j~o+KN)ER|
z%wE6!e%5xi`$R^p-Nv+gz3-6?FiTX3IB@?#XHBY_?JUVUeXOhUbgKrIzB?a-mSIA}
zz>BmA6=eN@tff{>j)y`+DSnjQlVl$vOS9U7flx2bx`9TWbV{7v^7qj;xI3E!$tC{8
zSL7rq<HbQHlr7ezjiKDCEVuCWJ>{i8*9#<%#x)ueBcwD8<T~Q=<e-k=mOI%SH5S0S
zW3Kg6E`Zn_Js#KKsKmxuI)#liX6@h9X0;k@gLhJ_F!Nx&U`3ogz|xp-95sQVG}haB
zIE5?K3pSEg2LbQT=~Zk-om=nm*G?rgUj2A(^*CWB(3OkP+DGB-<<Rx-sRX(C27-6W
zE-?qGzKv=eiZW?M449PR?Q5a$Z89@2Bx{)ahKxd^de!QKoa#!4Hr{$r&S1bU99JX=
zaP*5~fUhr{AzDsD^WiZYNTFju_B4Y$qiz%~4(?hu5_<{!ro;%HUga-cm2e_b7ARg2
zC|e!K{=|-u+v&eEnUU|CIw^TV0PM09F?!<+fl~A<`Zk_QKr4l)V77utJ@FXtZ9h3a
zmA94E2Drrwa|g3Rtjw$_UiIcBh3uJ{WUt^@GKm|JUcAI8J-}zeN#|}lqIf^MbR&^S
zB!6&WO3mb#9#XpI-En=d?hnE3MC(=$GfW%~+bCa}8j|otYz}#T(OGu6q1J32R1xF%
zZ8|CJedRd4RF(2%Mao5}+txtbk|Ot)nr;X$Q#eP}A5kMJzldCpr@|a2KQ>Wt5~X7D
zO(P-?=3L4_Yqk{Cq5B78l9j52NGEvikQ~%_7OWSsR3a@Dt8Y<SzbU}PW**x6uIbdB
zvv0wNFu%Y*<Rs^rK9Zm%!bz<thdyrp@dCX1t|)PFU^k?QblW3#hN}>1R|}8!F3BkI
zkughzD;Vv@*A-z%gD1z+c@yct<SU~fwo*ui>?>r)%if`XB?rbn1Or%2CbS^L{y0D_
zQ2ksir{Vxxj1D;&HB$Z=R@G^0r5?JUOi0V@N)VSSE2hYG%|hlN6M{}K<vcaEokd9s
zQ}}J#^+Ix=C{)M|Rzf~|#J^Zhsb)*QP#Qg`R1#jAtp;43X-UDju3V|yNNQH6*!4S9
zPJll#knx(js7v{w*ho&FB*6SRP7Pnvu(>r)2itX+lSoAwK7Z4T;g*X4d|w!FW-_6N
z+!jPQz#trO_HA5QA6@1RArkz!;Q*2*gjScFtbTBAaWE`72)Dqo>jkU!4;Y*{D$J5)
zOohk|iOT*aW1DG6U^U{k52;v)v*5yO#SE<T5#&a<587`QJkHaoc5oe}yC(?lrC*_*
z(OSFp>O^-75NA|b(p3S<6Dc58C%6v|eVnqtlRUb<9Ib*`#SUdYavSe22=^=?E{^#U
ztQ>MXE*Y^}q|4-Y(XkII+X1BpOdjN{Uhm`}cs*QD=QBc&C*TG?a8fAp8>T7V<?P$p
zRyQQROmQJD`$nUjXZsM-dK`B+i+J@`gsvCj?$d17XuAEg`HWs8o*&^FVs>B5J4;*w
zh-RUvVUtX7A&$UPWM-A<wx$m2!f1f-3cc|fG`4h#9mojXd>w-mF(cnS#&@md(;O*=
zNbt^HnxX`gyAEbD(Y(gprbDM$n?<pHLF)0@A%bt2F_`1-yKkm<m2v2Go<Wqd8qtc^
z21}q^Cy&7+vs`Jl2b`;H6thpjY7J6a%tEHjCvbCGD?f=GQW3F}r_U1buqCgm*1F-n
z5by>r&<o;O9b79rjstks#0{+GBU<14AjoBpVARag30&(GikM&cN32m+tQ=Xe`8QKV
zvRk3pH;Or15C#Ux(XY8zv8i#8u;dt!$s<(w^2@w!kW85}i+JbtX_`8IEuyDKH222X
z^4K2@dQ4nuCEO51rRvS?qWd^wRT5SsntPa7eP>qor6aS^iT@_V8|jrIG)FRNf8zm!
z@F)|o`dy23XBQ}aA_6O@QI+hfj3TSSw7=T$d|T6-J?3IF-0~c@52;e5Z&T%JlmSXN
zF-QD<b1j}So#t0lx|MYY&5<fSi|hfWyVM@_5>lNfj%{}dY+|q6J^-jLN920lBpAP~
z!4s+KsHQiViDeCGoD9>Tuze|l{UXg{2O>v*GaNMg#(2Ye_J-~ZgrYix<EdXg1@D4h
z?Z_A&2~z?bLa5S%+OATM+72jLJ)4{B&w>Pz#!pz8DCiOT-RB|v<*hOzgr@}eB<&(s
zk^q|`;CO>nxOC=&!4%uI+Q(i8n_Ld0sT(XDyq?or<UC)f*jIxq(NQ#<YrAa~Lb4B1
zzUBuzz_xUxL-2`*@_1)0RvE+0Gi~;aR^6raVW1eVdb);RC@#u)7t&w?a^SYmeaSaB
zr?<8%V7t@w!L|gj>w!t*I+Ai=`Lm6nNmQHx90Ksid|UgA??fLq=Aplm+lh4!B%kAr
z8WcInE4M_F2{)`V7+Zb(I9>3BT?m6>*m&|zUOJXLZh>$PTub<cT*Uh-A@FgHQ5~Sd
z!vKr?$aCKmLehDf4IeiLIP1;%=H`LEV`2wOZoJB*e&tUNKM~sLzd}rzGd9-<g`7-i
z_p8k!hwOAS?td_jjt@#oGMP#B2l^y$-62k#FQVGvd3Lg5f%&-q3`YduGuHZ<pS2$Y
zIBjuQ%L@gonBkd>_vM_kS3u`+RV7B`&y{*^7am)zWwg+n=5@v9m%5nRKhfO9a1HV@
z{d8<th5Jzp29DaXz85i{s9lC+bwR}40oS(<ZtG;hrYA|pk3vq3HH0g5k+Q5d$p<&z
z<K&y%1C9jzDA%J6!y=wFD%;hMq7v-b3w$%_v6@T}H=JEYSKOfzwlae~RfoCZJGQk1
zk!T$p7&FpG8-+3P<?e+d1}+et<sE@}KxFcbAlR$2fGVJwW*z2m>^-Pd$6oN@Pu%+b
zl}@ih2HRG!f{=9i?=CZ-<#5@AN?dJc%%_lp`PTe@nQ9wtmPgx{FTkt_xK}I|#s<kx
zW3(4btf|FV%>P7|UeJo@iwq$SC&p8%BShp5yr>lXrkzEftW6rk4g$Ochs9lp@{(fV
zj~ry)A9*59PBz-G7*={^-)d?VW+pZL)9Mw$VyTi(EypM3WMG)s-cY^qd>)r3W-~}>
zZu9bIEz>MF6M?QXZ9ZxLc0vOePDi%*B7!pSDZSUuNpYXWOf9aO?P{cORR?JunwF?g
z;A4NW($Q=MHcl1dP%u5XV!ajBx*i8ym*?YPf6yb5`iPOxR<p&HDH+20op@8metgNZ
zBBw510E8}gf!h02E1pH)AX`Cgz9Z8e_5w5o0l4J8S0pUAG9O&I4t^8$qj<QG$WD2L
zpnFmk0j+X2*;xaI59@9MngsEoN~vNGA_9Rn0LL`L@NL~RjCKadRC$Frq7(_!6LzEH
zPPnbyXU5)yVa^Yr$Uf<_V7&nDGh!zi*9XQ0eddHKo^M`LY|+hzqtcEcD(g;W<U+0?
zf>@w7q?X2Lhn;`(TOvIPgoM=C#)FxZojNN-)spF_uH%CBDjt3*1H6`J1Oz<B;Ly<H
zv%$ht4r0evr@m)XHV7t1ln8@#%YYtVvCBlH@}kV{O?}_dMhQg<UR&&!X}X`bIZ~{n
zCs)uG1Eqk4Z`ZV-+08e;`iMyhpK%bRf-BWQWuv*502qqIiy{YvNoxC$5B9%EdGp~S
zOYQO)k4407WyDtVc^VGhh%j0%B=rbcEEG~K*$Kp;oO|_-VZ|JAmgQ!`dzKf(zIxxc
zi!u6b*iM{e#>U{yHc2VVTFj#dy|xV1Q2?`+GLz5_Bb<9;4u?6)&D87}=(wN9YBZp9
zg)a8?X1L6>8S^yawQ5A!IYhErbe+Uo9DKzVKh>A-LZYgO3Fq@6j3g`VeGzQPC;txA
z>#ybsLh9S0<T;l(%cVd}NrO78v7ND9cLWahow^W#MT5>2%Ssne0o!@|7^Kj|FAu@v
zKsL1|4Xw>XQoj~T#xEc{?0i5)FbXD;eN*O?VR5|HfJeUaKm`sRyr@;L#RNhpbC;{t
zKuc0*BYERPCgvpap(Y;z?kf$FpHcMvQ}`~q{)<h~uMt1eUr?Xn==%@J)QR{qO3~AO
z`}`;Vz`?o}Kd7wr1d$3wNd_tyhbxoV%ci6s5rs1n5<(Y8aBTN#x~gbN@>7cO9-bSW
z_V`Yqy0Bj?66{$eaZau^*C`}tRl+`dg-je~6a$<pJnjO#2Q6@65bx5h%$)>kP?Rz{
zsJojyj5t!w)y7>LTj7ZpjkG^n%VnC{ir7A-Q8?73i%gl#vBjL(X980)KT~V4%pD_C
zXpDvB5Q<h%`-T@Jiv(f=Cm(lz0RW8gNG?dXHsWaeTbiuer2<d=v?@d%<qJP62e6Pq
zK1Vgk92B6Nq=BQUchX*THGE|8qBBhtEzTt~w5SM9D9{ulSj+O5PPY#+p%P`ooh$Wh
z^2939Afcb3P#zw}=K7=M8c+-ax))+F$cmkt7UUzA8J~g`y_UI1zB6;oB33e8nXo)*
zNfgTL&=2Fj4<p7a62&Ldu*PVe<X)mm`_O9H=kpIQVSS_Z5^e}iK3O4B#2ux=zhoqn
z&xR4M73h~!Ba_ZSpucpnQ(&Fkg57wu6IG)Yk#<`HL9xc`>=G^$C<MDRTVA2D1VW=u
z`Aw|JO*UKKmx_Rq9tA;Qb+q}U{MNtrWSnngaCs(4XC(#~uKN|2t;-Vn;NQ);tS*}y
z_+Bj$r35TdP7!pdXJYFJr1x80=6LOjmlK=sk*u%%_&(2GHe_%vN#I^ee{k+6OSm>n
zDI0a|#esqkJhgc%_iSBIfkvo<Gks~+u})lImsq8OqEGQ#EkCLtXm6=S;^e02VPyIg
zCeL7Smyl!<aQM24V1=@f$o|!R(P_MJw6kStcj<?*ta4i=IsUGsD9i1u2C|gP@h+NQ
z70bZ%TC6w`PAfNgU{^s1L?pyAk0sLC9&}_j&w5sA98Q^?D8wr<?=Te4<AUUY<UJ<7
zd=MxmXZiE`SA6^V)AVe;>MM(k>fJ?j=na3+J5RZ0B`}qh7OF7%ww04<-Jbs#W6?^X
zRv@-jXQ4(GGzqxfyAqDYQDMBhax83Ed4tKpPX{d8{W1~{?Pte@{))Ua-J7}6;%W|=
z{gtxJ`lL2KbP)Q8?fpt)kb*U*JiN2b{gVax@cJT6CjZ5*^M%%l`iDzMygYvKzZ5$t
zE-$+=voCA#&m)|lj5hPE|I2?10TK((fFDkt%mx>?4AP!b@b{?{t5_7S`rx>L?%%Qh
zupC5GTH(L>J6o|88p|K?0LtmKPrPNipX+~F|8++<_`^5ZZ23nO`nSIZdG_@UNx|i@
z!`1(*k+X;NZ_%dwApaiqkOL5Y^ZA%7eG24Nb&~i);I*X5&0mZ7vk>?5n(*^lzhD22
z?YV^LO;D&>m3rsw4339~=O0$1FFQ;!#KXe_w6E4^&r1$5>VQR(z>go|WpZhl$0bh_
za<XMgd)IwK8m@n^RdF7!-+IK!)q5|3S{EZOJA}#?VequLAvpr!lyzLKM$x6Idh!vm
zS=qh*5;>hQ?^C3@--b`l-JSDfp)5$Z!!`W0hz$o`M@MJ-=;#T641jZup|_taw;4g9
z=AmfiT)mDh`O@l?xuWG_n1=%*-wB%7^NEX6gExQDc?W?S07rVLW4z<7N)rO0OeO!b
zHn*z_-xEzT9Ddqp6GkCjhrW%5O!HS<qNb35Sq)JW;bmw#YCZ|@tGgV{*U7|m!C8=)
zgn3pfKjsx>>NyKZWK<xlUL^C+#nX#0mB<wlGmBVB;TVz#f=SnbPSy#{9?&AT1K^bE
zH-O9~*@T1=W5Cdqyh)ixOee|?pY5KbLtlKOg-3s9<!pE6Cm7bWw~*vYBJ_dK8emD1
zRl%!CLn>)sS*$_(70nA#)g>Oqz;Ac$Q0Hm5k2LR7)BTO-;Z+mW>Mutzw5RKw7<E<F
zK9}DIXD9+4_0#oa0eWvZdZ0qRW~RwnT{esJx@s$yn5i12*2>-ZZq4zsiqhQZ?cqhw
zg58XiN7A17Z-SIa@y}D!LP(rcy3nL-j_rwfA5P~tD668Fz#2cseo`YbVA@n@C|DTM
z`07A4TfmkRqWjD=1rZE}2qmx2R`2QJ7a#EeR>&F=z=SfL%QxWEgJjXDh0-c0YC@JD
z^nNw5_l+cq%q)7x{bd0(Z&nQ@`|=0rnO0S-J7^29Zk^vF0Uoyx%nCvDKv<PRUR|Qh
zvw?6rn2)mt<=r3sNwb9}8&@3!o@jIizMQ_jA`V#?_;7cOieP+r{trAg)OkYFfwuY3
zy2BZVGh7w;l4${ebb;71t^%*uK>!gxB|qE53uW*K7SbP)eV-jfp(^rgTFm*IThA|=
zW*4voCS@h_pQ_)GJ|};KP5dc3y?w4Cd^h=pM%PLSJr_si%f|D*V-0rl`JF?i4<k_j
zax`%#gR3LHB6{WM<Nh*^rRR-d@K<@<zA=Xkoj+L`UUO9;{@Tf`{g1GY>^BNooJ?Qe
zE`-0_pGLC$v0kba`dTR_<6$_~AM03|?6&;}lbN=}{J^?Js*b?1HF$k(=6N%vh1l2t
z<)EJ>=Jt21ETc9oa5k>NlkE+;H|Gn`0QGsM4W^_!^@2Ru>LYdH7nO>YsBxa<JxMAA
zcCW#jxUapj6&W$O6)k6c)jFdXRh|tGk&VDDV+2RAj)?%Qt<?R2W+7E-1)o!z-2$wa
z_*rG_W!#$vcyb!YfIFIjqOe;Ztf1VU+x+6y9FXN3<rKITXr(p#;)*|51?)u9Cs6(_
zkP9%eST?6_{^Y{`Uau-R0^LySvgf@}xdqyXaqrcyNv<-(#_Q|K$5daWLPC~xzIzYU
zbh`k^Rg!TiXDsstx48-P$M3jM!Rn3r{;u_NtAA31+Zqe!Q4b7|-Q^6gUK-E~n^wPp
z+MpH_QlS~knGM}W(=_aV0I>JkLt40G23c!i5Z$oCcMwpHF<%QIF`kOhsP_deez1z>
zkBkXlo4&x-gtV2I9C&f5aM*XCJi}LQZ84|EAoPH~9Kl2mggVn|2IE28>YEITti2j_
zYF8RIavX=js&%J1kUs|$^Rdr#jRbZ-JLMZ4<}J4w(`l*MMKutE<P&^^hsZ%1o;Fvd
z&9;D>;d>$Qv}1m;lBW)zr@qnHgiFiHMo|u~z`0+nw>g}zektJ%>+3tZfjDB3?c-yr
z7gI0022E#nmTOB%)rQQF3_jr`f@`Yp(xqZNuE>e;%gsT`hp|rP@_Q32PEa!y1_~UQ
z;FYa@`;@}Y((Zaa{>GSgBIc=3I5KEcxdIX6Equfj*OT-|Ry;f!`CHq&;i#M*A24sm
zrFbW9u_j;ivcoN~j(iAr2vY0KbrTc=L$6eAI>wA+#fOV;WTSuLXjJVRdHa?D9kZTG
zj<Pwt;IA>~VvEY(m3WI_CPU;$?y$4%f2dk_P6^=Qn#=WX-tW~J|3Ku8SnNHELn%0<
z9T*(TjN_X9p7etWN5!mKRBF%k%nuK0QX5$QnZ&8|H`^J%1KbG5<cQKCdD>brQd`;(
zuT%@jT4a)Avm{^x^lZn=o4L4$HrRN)#PIq=chocJW3x8S!2AP^F$7G|JQv?`9XN69
z7rS-p$1ty8Ze0hH(Xo6xA>BxpmXZaRCoC&9R|1A*SQ)Ch!R?J6XNwtO;1-_X<6@ph
zk0IA^G+}JQ@wq`gOs$qI*_F$vZWlhYrHb)jVHws;6Sb<+EK<^gd$Sj<8bEz0z9_NI
zYLYpa@FE-^*b#@3^QS{iI@)i%J4)03T*wRK&#ax=q?2GNRC1&Da9k{{Z=}vf1%JJG
z4xi10rp&N@thWY8CsXfS?F<|(*O6k-YWV-yXg6G{)U;S_q+&Mx73^}l6wctmY{+l7
z$*UCS=eYvYp-*WL6Dew7&nPS`jD&&~JjxmQq@f~Yr1SVjM2$%o4I!72r@03~`MnV*
z#yx$faL&;AHic5NjXi_IHUz_^;-|=K-O*eDI1Yz(IQMsI<Bw}hdk3lDI7pt^T4``r
zt0g!&+(n7~@_PrC1z@ZFlH0$$haMiQX#ee6d*-f=nAv^R&ZYX(5-8L@W}02J6{ZSv
zG3T1^5R+d4gN9izQS-zh5FedNi*DC<@Q5ViT}`0%2IAcQs1ZG2#pMnX<f0+PwpOCH
zhQ?0C0>#KccA=YK*|&#4sylQ~I4l4JXfbgYjb@@i^Az_cjhE5bAg4&4^4?+)&y|-0
z3jS)7&}lQB1KVKKs692V*O}C=cAj#d6&%?PErwJuJZojQ!cM_NL}$9F-Kc6i*yegC
z#evl6F8K>f=1Src6mN$+_)TSUoX&s^o#IN_5aaH)znIm+fDIF=Je=6|tburu+RoTL
z&!}E?rwNst$WYXn!@+|JWfOwE+fu}mbQ92)zhomWKjMeqgIL!=m147&6K`~}t8{Jm
zUt}8oKzh+F=VXJ1jZ}JFlp#)S(y5dJ)lx+v@ATWLY@Ynw)>cl3^QZmsRELuVs<-PA
zLM%Q{)|ZEKSPBY?+38RVJl$(&ORqx7OlU60|Hsrj##R1>ecO|5+qP|+lkEwU?RKu6
zt%;LsXWO=GGA2%T-TklY{yfk9a=%+!>s-Hc9mn@P5FKtDo3lJrXyvut%?A#>3BNmw
zXjpf~Mv6<e!sz{OjRJeercgeE{9Wq0bP>i7VCvObjx&9p8K1+1O~$C)dnBC6YB^@K
zx&~p+e=oBe++k8Ij$kDeez;UL(u#%3=?CQhsydH-!ZkTPRuE72x{!|iRxD)oMB?NF
z05l9NgiqOK@oZIk6L!e~OpG{i3Qy9LId6M|FWL+HabOz9YE(|Jp(HT2kuG=lkVu}o
zonDXpI;$p?E}1fT$d*iq3C`sKN(~_lZR#!tXXILE%Bt0xHtzRS`~FR^9Ii1vh4M=>
z1QKcp`5q~Tw&SQtBs`=qUkaJ3A3lu0LFFcr-LgaPY3iBNmH=+ixPZ7d=u242AJroa
zvou-_SeDrw8;WB-*Gt9A3zp{14nb2khfl-Foncrlkwe0>j2mJYo~e1gTUlCz+hqg0
z9{5%!Y|w7QHDK}EH|Zkb3%l2%R7u9{uJxx<K)+ED|3j+Z-na*oQzh<)f3R&Ps#sX)
zb@Yht`?(p~{tz+y<A#j(Njr;=a2n@{TI}a<1cw@fHq~Z(T|z-G)W@rBnJ=#&jflwM
z_BsxWK`XN1NWa-$3;>NJiRQ?O?@)7P9vdav%sjDs{|0yYrz?hLrVG?60WEpTm;mFu
z7i5hXj`TMQGX&X37ypiA8D*CRxtB*%3`Zf~Z7teK9d<OY6xD)`y-07DQ1t{!Hj_@^
z{Lt+lMHrY%%%;PgkFP0DwdF_1>a=3`^xX3sf!?_Jztg{e1`=hOg2!+n_K(>zbprcM
zU(8o66sfUx3bGj;3~zB1v&+Qf432t+OG&)lvS`We7b!OP0p}bcAB3pr6qy=KdCh8V
zG#T#dzF>%zS(7)#r>b+HrEk3XORuRDi@-OkWL;EjVmXL!a$dvIGQBp5gKf<G@X!qw
zB=K@2z{p72>#(U}sn@-Ko&06#CFnI_@4?Vg<gA`U)b?2mL<}V1NkPs1xHwYR5k)qY
z&ZBPD_|nxPk^3WYrncKJtH&kbt@Wy)UK^$GwGHe&&5;V+u4~e`OT&1p@AM|wb%NBK
z3ZY<KG<$<%z!R=_IBG;kF+h^4<d8f7z0XWi(uvie@=ly-O;=IBnMkI2YUpi(<%cS%
zDsdqi9tKRSh1giXZIwX-&T*}<bdD6wQMFD--Kdv2`S4HSxF*+#{a}BByYV0KI|;D3
ztMz#OWijD><O3y#hN{-R<T<=PsNLe+i}b%_FkikNoNoEP7UB5rCcN<?U!oq>pE(s5
z7-cn;Wx7=HJrW4Svc~u$K^@Vs9u3ySzUwl^)GAU=E?#&Ca`hP5EeOnC0Pw@EZNj(R
zVo5Ees<0MTQJ6u(Nao>&<@l@You+D><ZclSar>CtTWYWN{6Vrj{K4z`!G2S!xqqE!
zTGq4<MWzogn%0CvJ(UM&T<5*E>Td?QOk^NPxfau?eY&!wy)8U{)pdQ775OeB7N(*n
zh7*1($I_vqTLI@a3i%u|W`k<Jo8R-~JAJz6J?FtyQVinP!!T===@HL;c;`Lx<eIYy
zPL4t6KlO0QyPS7sokPzw3Y?GiScUlk{^>^FYJSXC{rt{LU+DBQNOi!h1}1lY*y?e_
zs*Y0;qB$+UDc}l^>@80Uh{4CM{MM!pjKsll5}<{mPZ|H}-Ga0S%^qt8WOFLXqp9Ni
zYu>F*K4o+*8lEI_J9s(s(ytXqqg|dC#PO~PD?M^CJU!5I8VY~B?<Ei@?oCA(%&!li
zJK<y_Z-?gC8#bhh0_OQ_Fi~TYBOZ3#6OhN?HKlUJ|Nc7~quPvel360hGlhTbD?j@~
z`@Nd6Dv!r`XHW?i555S*O^83<^MZ9KmWFjmhoYA9nOjOSz$F!Mph5z};wsJNC@qq9
ziPSrd_1$(!hF@D~nnW<-AZ&uXD4VGBDkrRk8)n?{o5$=9t-7_;{N#{o*CYw+8It2f
z@7EtO7ewQ5o;8^#`C&6Wz437olG7*r;d;F%wOC`gVFh6^m4zkb`+&I;G~(z!TBcn~
zyj)|*@W(*M^bbWaX^*Bo#HAvs7;$yP@)(kg%z@+zOcR=$3nKK~kb7!{P+neE%$>3r
zt^qsWat6%aT6tgDSso%4cc65_6>+p40}-l=^S5y-CFBlfJ0}ZuU$(!I=_^j>WU9X@
z4TY3Q5HSN-|7$wrIPO+LwIQYIy?PweHmIqjb2cC8K{Tl&$E+!)>)|OvQ&`Y*twm`}
zAI!*pR2}>dm97p!WK^O!xDJ41K!k><3PH35X1#H6C@4V0$gwwURYNwYVeVhEs?{Xv
zo3O6eRJ!G^sCyyY($EfW)k4PTZhp+#ve!c$sKQ#|PN^F;;&1TKLDGqk!0R^uG%(+2
z3T3jKYrvtVV+OWX7a(diz(FTx-V}t$OIw<(cxHxdVzJiqllmfUG|bvUKZm3WwNZ6E
z34-1lh<d6He%6hX#<#?)q+gm-S0Fr?1TDpULG$A?%Y8A<s<=#tVO&Jn=WO`fNVH#v
zv7Yo_bfY6v+t(K??(7-8Z~vqdsg>~WPL~j>^_uF}WCyQmZW3|hBhL2=-6NMX?Xl6%
zuZ`W@5DS6RxSdYW>YJGnh|~5sX%-p2G!#}W=P)o5oU80|xpNPri{dy}Wwh<8@;~Yb
zG$@C_C<k&xXm+k|rd4fL^*`8Kt(n6_SbFlaGu%wSG|QYo2I}_ZzpKp=cjjg}eUcmk
z+*z{uNvM|Ea@53Bfr^a^D@wtkrA8_q+}E$m@kZ!d2Y^uf&dieg=}Ac+akgnt(!T(P
zVLZz7wVi%R__PbF!qQeGN_8bn8ia{?^APPD+vdY7!vNvXA+#$Q%zZ@Xf22!b82gBF
z85=iZdwEM>G4X3LyGYG~vqH3{#5x~CUZYz%v%<oL^f7MniKkTEZ;tz*`ryzM5v^&J
z)ZniJ4?6j*`#}dJ-@Zif)N*=*CEa<+bf}+JB*zJPMZ@Tv>AcV6k3<+X{vSX-jD09Q
zmfrBXY7-z_nE8V=ujjF#R*g<9m4f!}Ik2HDTTa2uFlOxRC|{R2)hjVp(E!p;Yet4&
z<}Y+|p{!k1_AH`l0hz3JK8^A(zKA7;G?THUlGRRgk)!)^L<U3E|KCOh%ijN}p<+1S
z=l@b_FpQUDOGSghd0meX1qB6FTb)d^nN-_cEWcv7lyb<P3D42WCT)ELF!~Z0xSB`u
z=Ivp8-)M!cC?}}_yc^<c5qgzjsSe+VtmrJ@ZPv`?iqvxY66sR*5X7#XX;&!}HzL9Z
z-+dfD0=WN2qkYEicK=`SIe=NjcWm4f&Lxekxp{Vb+xRU31><Xr@~*cS8zg|+@XhIZ
z8avN~b@%kdnfm<xKiNy$;QvEH-}+v2K=JvO-*%)`ffVa>Zy0s!NhQJ&_acIlXjGWt
zRnl}HLaaOe=Zob&7yd8B{a*t?aQpeMA2h}xb@Jbf_^Fe@TfYA~WM9Yk|4NkbHq-xS
z>=I6IOFr;e{lBjx{$K36FD=+r?1Sa_xoZP<?%mTk%YWaQ#K_c-<^Lu|eJZbp(|&bM
z!*dK)QJM%^#77>OW-C6~{fvHQv9$(#C%onAx4Y80%L?qb`n)*LT|rUWXq0K-PX+z8
zVl?p!K0@-{nc}%v_}MoY$K*U7(;rB~!-FIagl3wpGl$`{`vX1^*V)+Sm(>J;Z*r=}
zvN6Ylev3)8jx1Gnk$~nC2(yl&V<zzOO@sA?%LWBygY0-@rwFF=1m_iDIF+AcM}`Jh
zLFAI<<t1FZ*Z6U88xL>MBa6hN&idDcHeKLOwZ!jGExT8P50>Dic<gB7=7C~FJzrmE
zhNi1Az*BkPLm!X?z7m5@<<wY{%_U4var=)lQkXo{ef+sAIlE2w>ZS4i@iBRG?Wz9y
z<I0h4$y{W|zxP?Y!9YkO^B%It8Ny)mFfg4i4-8ve<U+{}OYU@(M2QkD31td~bWXkm
z9u1f5_ZDY+3p{)Hs@N%lWwVRP;MVRRWZ;&Uv|5}f=RJRmwMg|p#AT22>xcpcW@bo&
z=sX3!BBY@0N*f14@xAL7W{#fVH0kdje?5hh+HZTHvNcPDFH>Q`A57bPeK4t55s&BL
z(;lPGuXk+_v84}&M@X81KO5e_^AdZTNETrMj$pY)5O%chW+*}VGl=j%=gOEStv;#~
z#;E4ZUj6;{sZC4Rcb-oDVO42+y!z6UNy6UtlZF2nm22(&jWTRKK>INN*-ANl$TkCV
zm_Xux{t!>m;7i@6l<&r_ASp>awWct_m3?~OCl7D>1rPHZS!Sfh{NK3!<9F|bF)UU3
zgF+pI059m*>8`inLIY?4U!+Tiy!hp6-`yPTa}nn8LwP1fv`5xLf0)UaTj-Fy&A~Qb
z$AElVnz@R_-G3EI{~G<2JBMG_5Nl^%p4&hVNUgr$5zM{;YAFnw=S30fc_?amT|GQA
z=LQ-9#>R!t7(YpPLl#Qo_fL~en8$n2jP!fRzFN}Aapx4`E{z#~kXk&?(JoLF9b%G}
z&WbdF{HuOh<(h3?;PfX4Uv?f`sbg{lskn-gQ~|vETvY(lfsGI(;4Eo10F|s=N@Oz}
z+VFRb6&y$Nc~?*)ltQpS%o4M{J7We9;!kMf^X)+R^Vf=yPxr<OZDRK`Zi%j&LpG-c
zjLtSr94Lmyfk<L^)f!nU#f?DY*o*aR3fPdKg#m&B#hC7sr2=kv>zY{qKXZkzML>vh
zMEAM+0168QeH2e&R8f~yY~^X@!Zl_ItduGAn2AU8a@7dcx?!6+Vpy4lx2Augini@^
zV<+JKydCze@>-QKH>tL!&p&<$-yY1Pl^GU5<8zk9WGTIL@(?J~LwI<sKPrP8M#9A9
zC6Bw9!G%@RhB?dzFe*D31|3I=Z-?K{ebHCUlb_UQWnk~<V3q7(8V%qAHiVczNClD)
zh{bYeR9;4zm6Py=Wq~8>jwJ54c#H3uM7}<lG9M3N-{KwOliv1&aP9=8J$S~Z<gbYk
zsRi^q;p$ZPQ3~BgG+waiszu7Pvw(0nqRzvrBun$}a#M_>4lG0N5qt5+kca!<EGLgK
zu0J))wkyB;FrICrrrIt`uHoO;y-VkN?OPo~c9f4}QEraTbo1%&Omu5bh7vZYkhV)X
zmuiYD0bZR*P@ZJ6<TmAurL0)lnAh}WQOlhJw|#Q_(8-jcDKW3q1u-9KB!di;_t^Sa
zh@p_m4ig_iK5I}qhxF)~>V#KPVwP$;<o`~BQ84j=Cp4z`?9uV5=|h#IJWz%hd*1pe
zzs51YLTB7oIXv0&@Kem%_Pe?#YAyOsgG;93iaDk1=Hg*}4-`EnflJo?evuddOxs|w
z3<HVnNkZ{d3|K+huB{AHX8eu=(a!RR(I^wAx+F(2=>cl9>H&aD!r>$HnG@ms=hONI
zLHTR>4~*tqam$Du0fIS?dm==Vd7`z=MpO&9TNQ7!-R)+GEdctmz{D-hDQUOSs%XE}
zbs`BI-<N1HAm9n`tyY%Z^+)RPa2OfO?&c)b?E19~L#snT6{*2kn!y|<r;4I@LjOg2
z<+TvbC>?x=VaXjMWoNFK9(R^_(Txt>o*H6SO{xcaA#~u-*b9i;de-|A`~$Sh_rAW%
z-qaR8+;{nW+nDLZbQkM)QunWaDCvP`5WEtR$_asXvrRib^m<pz+rPba7FbU*PZYO;
z9onb)P_<pPAZd7QHMjyT0d$Vx(GS=Sw%Q3IkS|B@@I}i9AAE2gG%PI+WfO)znZcLh
zr$(Qv6U0hVyCJax4)GJ11TL>|gXeHGcIFd>T3f4NhTW?m0$r>*aH=FmpuKj=Mc`I?
z&1pCNMYzwmBC36n&9@Kw%Jk`wxPS684STwrF<a1SOK>XCvbijNv;V6Pom%mIC@4&(
z*DXvOEuzEoS7Id=K#x=6_q0C9aa(Iq&atnOREV)1)yr$d<Syx*x1)<^87Wor<1FG4
z)f63d{}aA@G)T%0dFP~x5qHj-!|eUBXueE;HNb*|+YukBYsP;t0Hhd{TRYbm5E&T*
z*bZxI-TebDQ6bQaNf5PS6wGam{nYsn9R}e%q@dn4<SIB3ckJ}|L^y|!58^e#T}F15
zi<8J3^;U&w_;TwNWG0Sb(+y(krsMyHlGotIT(Ap*&@n;iu#r?ssoX|s+lkZdcre)-
zCk7>lICUpWsPzVEHbanS!t-7sFg5|Rm=jKnRLmY}fz{lJs#f6dZj^TZ^Fx$LfU+X?
z4&@oSQ4NvPcUaipJrlAgp7&%0%HSOfLMEg`7&2eB(V9l|3)8vujvNJp5S*hiKkcz3
zcsArG`-a<-ZnQODCQ+HOo@^}2EqSoY<IeZmpjXUKBY9thL#CuXUM3*lCtHdwQ>O~k
z;9ErC&Ow0$Z{rWR=wi)2at*Pc(Sw!Rd9c<+aAo<<AdFfp7mY!EUvA$L&5b^E0>qgW
zBiQAUy?+N_869W%f1aQhOv1K^El81K-!WdI9tsL}69o7r7zX=SZn?zGCoxgB4(M2p
z%6KqaSP;SC;#xetJmTPI=gQ=8@IvwvXa@%elX}fVW}`DkabYPbFD|%dleQyCNjiOq
zL_IX2>3EUmmu7`FVmzv;`vydC9l;?`t*O}L<VFwWarX)f7S2rB|6UJIV2JHPmvK>6
z$+?Xos(Vw|AHH+CtZHN)gyVYkJOC0;<CUa`>jY&&Nl7WO@dc3jw>!g218GzA##JPF
z5jnFo<_$U3ON-j6l7*4kC@(FBX)9*5|G`D0OGRf%%1P#HGINJLG2<}$5l&xrMTbx+
zkXwekIcezc9KYiSkU4`IG$dH@Z4hn5dlg6qbs_6|DjM-OH@GnX))yr&v7w2Q84QN2
zf1Z5ENjbGJ#at>DS}aRrs@TQWbQey{_DtAi2DVuc;oDa-$lvJ#7d=uaka8m)XL4jJ
zs)iED4e^WJnj~z3c#OQEMTenHQ%G{>B4GmqL(i%}E2FdyEMBit;&v)~TNa^eI26l$
zzRzf9hg_ZD1B2#FZeI6ah_uALrpy&|5POA!-Hy`ct&@1LIG<Xru_LC^1%0&eGRb>+
zj&MraaNfE$JUMwo79Gi=be_79O<As@8_8UQFU<WFNGE1h`#ZkxNq^_=)h#qTQZ5dO
z8v+;HoNPNxSHMM-P8Zhn^far?$ZQ>o+hR+qn-S<O{Hfssl{zgR$)=Gq`n~+(O~QQ-
zo$;aR=4AF8{3CpDBD7k@y4qIs^J9Ey);bSy+h%mxtgMcu{3s)|WVVjcA?x6Y$#1Zv
zhOF_UTl`>CXR}Th^y3ib*!2|zHO>Uh2?*9^DQm(2H1Wq7+SQKM+2;(_nRB^JbW^ZJ
z6d?$*(quidjC`I<)XOs!|5e5JkijNB!0bj~p+hMj=MF;Q2jVJSwb`$`Qjhwg+f$-q
zp(<(pTm^6Q75pYGg~L*kC5jHc7}J3}x44NRc6hhx@u~I}%S9>4kc#K7<~No88f$Kf
zV;=D$&i&Q-L|l$`7<%L$0D{c%?%rh=?RsI?0ht3{ihJDP^-5i{jF(%HB~3?{5HaC8
z;;V~);(+c=7FD%?eACIdtr7?~i@uiuG8<i<mIE6KyW2HbFL%iA(MM8ua|N=xtu*92
z-+ToGZ~>0{#oFwR<(cAl*))#)uv+RuS_}paSjm#*0D+YD6<BJDj%Qg4V=%lMEbAKC
zByz63{w^o)N8;kLErdd7*U=!wOJ&BaN7V`_LBS4;2Iv;)<z+jkmw78t7_U_@G@YAR
zqKWw47EnnECw+oOg_QL~csLd}PR%@he{F!F6)zXbJ;|rQ<!~97&5gE3`V(w~MKCIP
z>?DNgg)SuPXRTVf3jy1CQ-(<XtWG)fTKw&j>g%*0(%nB&Qv$OFb5$y6bso7JF<%gv
z)|<JO)pEis1$uh`rB_261kf<ZAWk$&QZ&Y*cY&1D+bkcc&E4snN0NzksbsC2sQ)SN
zcRD|~mkmm)gv9wyhis|%h)V#kC_mi>R=y85DNC4T^364e6(h^!<c)Lie7mCgA8WR|
zB0&f8f{&2N08ZM`JWLyf=clh^XHLz8)=2LFM3wRYLX1+;-;HDWakqV~Y7}+$7q)k&
zZ15kN(%cQzT+pVQCu)ut#`;aFPzIvO?LaoqXK>CR8zkCSUHwfI1gyT7%%Ka<zfCy4
z3Tjujiu2(=pUJ!i7=CN8*R;vLDyo>d8YAD$Xf=uFBXS>PycjG5tD^lUcQ>3Bc^;i+
zVT0W;Eva#{ou?9B|07r*&T|+QzAeyU?QEBaBR(acnB8%t_G7bo?*X5VZ~&(CPkxmU
z1-+NwntK19ZiLX;T0nkt^7a|4$W0?j9l1hVPk_0e00zP>ArvYGkN%hYn7LwgiX4PG
zal40+)j3TRJFOz?__;3xs$ef=8)lY|MFZ0OJ*O>$yB_EC(NMXN3AP#`eIWlD!TH>l
zwdN{2gqUL3%;Ks!!{Y{yS+OdjZ$wTr%vij;6Umh9+Bx8!c5>SlQ(}W_Xfu_7wdxG_
zX|8GPcGCwjhaF~O7}z_?lrGn}o_3cA!YDM}e?xNI<ZXpNQx+Vq(IsMYSw?jGxeh7N
zbqLGPK_G?DGQ201eNDd(3za=ajrO^-P9fOdO~UcJHVh?d-%dc=>}KBbWV@5gLolkO
z{?!EYKKRg1t3YOk?H`v0?{zz4>F=n%RlUQx`cHfN4NsJIp5r<Hf4o&WJQ!QQ-{b<^
zT3!CK8Epy%J!h-zTt?mFvO6%R0r7&_1g^v}+~J|r)A|<I?3_P=$ksf{{h>n)tPPHi
zjQ+SVpUE6*Rgwsk+aT<BT9J-C^?<66lZARRYDT^A>8|iycTw0hWujmx0v;2|88KcG
zi(*&B_QC~RXkwn)ou*$r9|n9x5?POZyDMr=g<^*#O6F`ouH`3Bwg_T=LMNXjGn4LV
z0AP*n^@JfRSE@&Lnu(k;q}NM-H;Nw~Nr2pj#2YI%;8Z3#LG5i|?snXLIap^-z|cCk
zu5?wkUp@gQ+^3%Su}c#p1!s{$lsOV?fty~F+5FH<{4-&qX16y-Y9~Tgg5mCVQRO3f
z>bbTc4?l(2JOPB<EUtk75vW*{mgG+|ogNRW;W&L{j{8K4O4?5aEi<2A!a4ywkRE&N
z6nOXMCX$u(yd+i9qfu<MTRwDf{!G%3Ht`*5(guH;2{qD~B!2yN0DYDa>kZh&;<CX{
zXxE57c5D2b-^R%6t_9isMYP}aCa{tsJyOmWRKWwL86NjlGz~QDGq70<3o;V1LGC|_
zgs`8G-jtRH{dHa0YgWNrg2*L-#~_|-J391-La=5UfcV6%Ds=&7^B@pqYqWJLQO=fl
zn7P*=-1ZM!a@1LEK_l8MfsObV7L>qSs#s@muL*YZ4NsMVru6pgi{bV+GzUshxxkT8
zq%t2W%VTX3FV?|4`)y1}0(U=AFlvAB_Mll+67o$fi^Uvmf$mR`Q^<D<@~4Ri2983d
zNFrI!c29S{F?29&m~0%`5M30+Kkt-`Q<ltfcA)qm+aq}2gN+Voebw8hS=x-f+2X;3
zYYx!OELf{g&LGB>PCM&-WadvTY_S=))W~Q<CI?vT4Gy2*6@LxPN;Ud5#?8_;tFe!i
zL$dZb1|z`qYoD*-Y!)YMzOjWew|9VQO7JWz<1jCl?4iX-Si=6ETF&*Pr!jM5dyjL9
z9>-nGHmX?@242H2B?*|U?ThB<2%~Y;L*=Uhv%EgUmOz9(JV(}v@Qg%Q%R(sqQI;60
zLK_6|`UrnatFS{K-(0)DEm<?6R}#r$YP;31v6T@V(zFneRK1#R@fjg*EG*H*Wto`>
z=T{2NesHsfOR_C!UT+DfEjGkdi=kHrITbC!?7QOt_w(yAHIhVzIu@itr#v1fWS{fd
zPQf?uJ(dR?9tl_HjIndx3(L-qih@O5c}z@=Oeo)pB)!iRx9X4%9Zm??Mn%Gh%4D)!
z3|Z^_%-qWKp~762hc0;ee%j{&MuyLAwmR9=p^17cAZB*Y3x|f>Ij#p$9RpFbl|_cv
zKOhq7R<Id!8&GLhn8Z^nq~<`cl#{vJFmg!J{EtkF`x^P`x$`!g=Ip-}FTbt8LdZ7~
zhkA1y<vTDFO>g^$-vg+{G+No#6UzP>a)G^eTJDibSMV`lo?@Qx`m?V$F+<xS0;BCy
zZJTsXhHF9q%Q&|%wKBoBUp+VnHbNpEw0Ji~NpR{SbSiu;>F%5+R>v2cSfghA>2#Vt
zKw%Vb7h+!6Yk@2~RMK&IR9!NTi7f*UqmD0}C(l$^1Q(B9i%n$lhcD=5l%Y(dX<9E|
zta**t-4{5V<iJ3hV-P`*NSSo5UU+-=_hg+GPfKMp{$rxqY~)3Zm)D!2p0g@iKajZZ
zc2tLR#=6e~e^ID)KMGxUiq~5!{AkO^^f=gZH1gXdUOO6;ZKLFw$B>iPB&6W7!ePh~
zVw<ZnXZd$<CFp61o)_?=YS=+=`t80bOSXU==|TGMvc@24D@ME+zo;fRM^G>2YLQ>p
z&D~jqF2^fbX%YGl`o`hHu?5z4cWy$VFHme{s^3m3pwadZs+?ep`Gqq}`FZmgddwWM
zJB(sK=;J%6c|wOb)iz42ntq?E#FcUxc`8d&ye%BSR^#i=NKyy(T-lQUhBF*Ihw&G`
zB3NO*6Su(zyu!*$8PF3`wglqCUv?X+ic3bb(jqe-^3W0V=9g|BjV+4!xjP)a3p*wN
znT<U?1c#o!9H9?73x~dt?L2bz4dz2oncqoLHtAP<EE1_$kxJaOWOJCu)Rd(GsHyg$
zJA-Kq8%tD6GpY8ZAy~O(gxIv*)z^#O?`81ANXOwupDx)I@B+IZNs5!_8D&b8DOepJ
z#5t8QB4gsa{vAK*mUZkwTPfv)?)}Iyv7m55gVJOdQ6y|48o<69j9nwB^O1BPRP}cw
z=E1mKVGP~qGH+FZD7?R&HaodtTJ7p)c~IO4aeBw9+A{4|N8b<#$Leb}-PqlACh&1r
zb|Vr5v%^6OAwOsQt<(WrN7BzX!je(E5(KPkOOytSeiEv&Te}#vx)3~`Y*uIAVgH2j
z>0{9hKaa{uXp@IwEPf$er$ve*>Ih?qDed1b$GyL32X!={kN9g8DkkpXcA7x@xYfdY
z=Mc5Wl?v7x1`T?~?XwlK1s-@{R?dMttmE`vnqpj&D?_YkhOx%2*GVILR=}L<Q*+5L
zv}utBQZVYWf?1+3kb1QcPW(V^bT<KuC8~qa;+o*7bmhpIKk6IZ1*la^J7CHc4SWnd
z=Fido2&xQc-l1J4T8svqh`b*6mF-%qHLB_vbbG+GFhQx#T+m;3djorQxLn!=2KuRA
zJ_bO?#{c!cPxjnoQ<!-^MiXIlw@Sj$?%N-S_fskUkxqt2z@+a5w{zw;idtA8DpGn)
zNfQ;47oAA6p<br@njSv$M8f+-Q4u^uo3$_Xrs=R-6SO1NPz^s~x1k}tF7*!@KGN2(
z8W;*-)IbrCTJs~3_mh))PQ>#+PwF%sk`=y@m_4Mq&Q|>0v*9Myk~xhK!x`Wm=SZ$=
zZ`ENFp*CdPLre<7o|Kl9k|ejjz>ef^!;Tj>yWZIW&w-Ejb@T`^ogY!>E55%3()<#u
zjC3!XwZyo)eBL>5hsOyqclI7oHHbvS7N}Lji5NY>UA&ryQNwv8r*_sWR?5b%WpNbS
z*<Y|(brr0dE?2AfQz};4d(tY4QtiH<EBNP!5h5CB`~)*BrUDVpOJRuHucDT#61o)D
zpH>~U7<F!Xyc1sam(b}fk3<|mege7YhgNZQ&iRe;0MX)O$8eh%FGw!_8wz?m8D-6K
z(yFrb*1IVtMs}}a;HiM-7>sxje0dPoT?Zx-WvSQC#9ub2M&9TUIDj$55AJXXD%rb{
zBq0KG_Ep?CE*goEbE<v)3}4uiR8F|rFgQEMUf|6uZPMl8*9{l0n!!iX2G&1nU#>$n
zv7fsZEvYwJbX=gE8;^Suqx$~Pnz4hRpLX&4H`hhDY8p{&$sQDpl#wrOVDVR*GBwzM
zS&)efKMfS*%S!@r!&(br$Zv1L>)8optO*SXT%=jvxiT3?QVL*F)o=^IDO}8v()Y)1
zXOuMCrChOE*Zdze`uf1XB*@iN=$<4n1-DgEqeV@<gn=Qd6t;whiJ^w$v_zw8?b_@y
z9Zj<2YG^pnwX{O9royfJC4-S`?>ovXiBEzV?$GprC<~~9(a5xtg}u$D2pz#IVrXCm
zvRxJ0rQDB3Ny>=~EM{nkKTqBoi_-L05(jo1i1#<`8hMzYmKNVne$u?L2U&XIU64!-
zWfYoSeed)bR+J7K@DD5oI~gB=YWr`oaa@%$gcS+B9@kdSC7fy+<l!Rs%765Q-{7$w
zBe6Ib3RK$s%2Wf<$>lnqrN3_1?|-|Lv)Ou(v}SInDv%}zLks(~$Mrp8F-F}+DR`c<
zTL31qk0ZIu5*Q(T`Q;pPMZbKz+*Nd<ImO&{COCIx@%-uXG~L~+GX=}V{kg3O+C@`J
z+hcif47i#W+Ka>_pekB44p`Miztf`}ZTl2n#JMKV`8x9h#8W>*(u-sy&ZXCe>0Q+y
zS;<HIQj4*n(xPFWT2vEt(x)X1uL*>te-2=o(~1scT`+@bp*APeJGcDML*oafh*|md
z4FJAL6zH~~V^7C{a#fDIA1OH43;LFdXd1bhC&UA>n!5Jf%lJpYZw=^uEF=RmYOuG~
zJQ15F*!n7BhYvz6#NP>!2F#6BBxmI+3te>NMmwky(*i4qa`TZ<dQ*9nX%mvy2E`-*
zeJxG&Mat!+ufI=G4yI`VQG3g+G$E4}V(4|e(7e1hWRl%t#exV)^)_4cWKF`Tj)Lz6
zvU=a_Wp`895IAc|NX@%;PjqJy!q_duTiARH;*rF^M8PHVC%b5q=|$><za?)P>7u*Q
zLp#3r!dnYfWvUJEmxOCb4trTn?kN;<=o=J{Kp{@fpu79~qFn$o%9W5rrjfZCUy+bm
z*;KJcO0Kzw?BokWtW&Wd1vPFr8}&(ukn_e2l)3d|C`VI~>-fQ<u$x2i2QkW-z7_up
zE%xBkt7xX+FJ8FA6f%Uy?in-@tl!0*UU_<9r&H2<Q8RXuSqEmh9IJ?JbfYL0Par%F
ziHB3Vn=~fqD~89D<x26jaV+PvQQ=m~N-*tH#ZPA;X5`7QP#z?@<yHaPhK@k+q|}q>
z_uFi<xiT;vH>uv;g}~@iDL@`X!ov4Biy^&2SD?trcnXyEPvgP;E)Le8HwK;LyZ!iU
zYeF#5nrE@}S27B#rcbTTu);mi7$YjZr=@GoZ+Du!49O<Fv&?%?R^xxnojU5lH9Unx
zqx%2Si6d-&mPLbAD=4V(mPo`05dDZn;XLI+UCT{<DiZT-WJ%U?ODkal1Y9um3%OGn
z7|h}mlmZ9JSF84XwC`bPOfR#9W;-?cHxjWiR7k|E7Pt)jlZkOuVuzcZ0smOl%&T&E
zk&6pd8|73q$x4n5iW!<!DgkX25oT|ziM)ruh{tZUhw{zzCNp_qyGpkPg6&EZ<l4Cv
zcrE%f0#fVzm)#~agb<Qxs>BT1=f5Itz!S>I!&4SbrbER}1opv@4TRu5f$(RKQ-cHF
zG1#ovoF4*6jvW)GkXC=8=^Vf*-W6t}|7hr^3$Ad3x{?{`T8l|@(~whojCQUK>Y@}}
zPWG5g&4CnlKP_M>KT``NmJ+ueMaZXgZ*g%mWl_2e1a*8<OWlj%(N;EzE5%;3Os77Y
z1<Wg`;8Q{&xvi<EgQY|StkDX$|4OCoNGg7`N`A_F%J~RaTgQxJ0^lh;^NQ-3xmwZX
z1;V$fLtVYnI8VjjOY)&prBgW1Ta0E<K$#UK=exhgo#@pPZyNqckfVr3<kKLd9#*Qa
z)rYB(GgPCLflXuSCXe2az`5!-u@2cLNa}KF*3t>dE!3+PtEaKR=7<vg3;mNU*g=(A
zyx<&Kk}kT?u$0+G5A?0EhVo>)LK!`|7+*?gbh%3ADU#=PCkDoOgC=LbPP9}h-aZPD
zkTR%S%511c=Sn}?M5(2-he<q*9QknT=R06K-v*cVXb+^IlP{#c2NOc#O|kuZAlz_<
z&W<w^5xbT|#=QLQ;JvkVpbGt`AB4w%>R_dCCV3T#XqC+JW+NK$uVeM_IMQs9XJ2+l
zXHd{u0zYD-^*w8nSlelaj%}U~OB8w~clD8<>E^f^eC>}|t8Ob~67*Jh(*x}0{e94T
z?lUiO8X8{`B$;>Oky#tPg(94;Uz@#7nef#453^HoRTz?QzJSA}zY?%xi3rMC5WvJg
zB+~UDc^JGmhpR<e*&qT3v*qznOt_+|wsMp~Dw*tu+}S1%CQ4;{Wssn1ejhcQ5nChy
zyu}=u-go$m@(cXqnF&r3Myv7UsFG|bT?6pMdM^b1kG}`%$^VML@GJ4ZkH5+O^b2OM
z)-T{_J651Hmw>^ykbO2)kwc;scg0bT&SiL1|6aNC`b4Jq^M@%McY$U0!^wIL(L8kl
z7-7?{zRs@#M0Ns(iI_xalChg^rAma7)R9!m*navKHCjtA?`u>|s*WO=+aua6dgM83
z{3q2H>X!)<|0SE_@EkdR&=n$q{mH+@<FK*;snujP2V}~nU&C_*Y^sUsU7n}Nh?+g~
zI?|+xH4$r680xk)`@$RAySv_k@;R7z9LInm&-hl11&(%Wsl#!A4hc&NNgIBjqsQ*#
z?>4V}gV?=*Fqi7$_Hm^ZjI_Y;O!U!|Qo=mLUty#x<FvUnI37%dDCtM{JEHXZB-`Cp
z!qxH?Gr5p;;chky1sMF=mGJ4soMlU0eFV<TG2x<%9&oqzE|Zap$Y8R@?O_=nYi^5u
z->Zm}9AP5J7uycv^g?}oqs7;$T*+{S9)ol7Rb~jK?58(5Et;123`qs2i9`Lv{+uYg
z8<Fb9R!>j4b)OZ;C8I#kbTxxUP;;3OZVniLFxp4t<j&qH)9DZ!I7%V<`|F&etdY(i
z>81eOwfrH1Fg7OJ*^_8Pay}6V27SkiQ~9E^P&=s)-DQvI_{x%IQ*V8BqV3UgZ>4L}
z1zAm(KtLD=PT|r#fL00oFgxmDct=h{tyYfZgyej%P~dWvqbFi2abS1QoQ$e$<?Ju{
zyB1eKsCbD~?>p1UoGX&%*m;4hA+*8~k~Di8v4GXxKz&R%>qf~)g(Zcv%|CffLjiP^
z()<2G1YuUY1+(3xwb2XQu-)9#Ju!Q;P|EU9I}Z5*<&8wv33&6}U^&@pp5BT@Q6i_W
zgST?%d^hH4D$R9D7ZJbKWM~lw%s{EC<JS$?@Z!go)1M7U|9W-aR$JNw{;pPm2q8hX
z;t4%BT{fi5^QzVkJM8dj5kTiq3<bSTZ=_smoy9N#B2gN$1WYWInyFY)(nXz>g*omj
zHa}&?g)C(a-a52h4g3jb0RMXWL=dsJI@$9i0j>rYSKcKaa9jwvP$#OG)!HF^OJhTV
zb;$Jfu3N`_h=jT#0?Q6tqN|h$zGecxhl65OKbsQ#0JJh__Vc)p*A7-xu^3+oW>PBs
zMhnrl0e(wMSqd88>v?NCSZn}?OjI_G>=vhRnMAJ6(+^_v#hjg*dn#^gpTD<u(d&-+
zZ;aL9i0BowM4|Wv$jlyLP*@;7c>gyA>pXbNd@jh!3*uzRrS3WkU#1jE+T=RmM2DH^
z=Xq8nT;&Xzd@=%o#|+?kl)TD27bDp>1sevI+=c4gE$?K#8l|(SAzx~r)60Q2x^8QH
zZ|(!?X@Q4?`kpp!3Zvb0tLYoQg=KF&l}6&4E?mQR=|f=uqDPUM*@sJt3;8wXMGT&V
z@9sDOdR{rh&QraZSEr}&$K8y=b&AAlasw`}DRl_l=NQ97U$hp!8=)V`?aE^WQPc?!
z&Pu^!h#}>h1?`$Uc2<Ro>A)Fb#%vcM@nvqrMQ|8vft@qssXhXXQ8{XjV$_8lHmTD#
zB;tAi4E}esyI-tCOZ7D2!Ae*YDT~%dCZg#~xSh`Em&(7wt?{W0>X)UMRw_?;%^8re
zF=>|rz@?XF#2~O6S|!Ev`&1vhDbRj8iw-ZACsruxAKb3Pf2u>wHcPsk<E^07ag7wJ
zWp&u-Idd8)EOh+?Qux^G#e$FXUYBQuK)ahhqU3)*=|(n`B^27r9C&#ng;`HZz@axL
zZvbTuQxy_#`lRnjy6_!CF>zZg*yt_gW4{6;hZlj`sQU>h*&dT2f9L7%i0TMJxZ%SD
zn1)V<+jhNep<Wo*RYJZ8&*xH`c;%kY*7YF>s9>VuE_cGgPYFgy|J^pxS?DWk@W3#L
zpBj#fG{fDfqr6n@geg=oRg8Gk5okyF=p+Kq_1Ci36Cub#xK(pL2V1OKMD-|OQ8Rxb
z#B}!p$X!quo<>uRzP#|hC}zaZ%5uyv;)Z&=15en-2oTadi(J3cz?q?kdB_tT-Py(X
z#}my4{xK-_?u6avHj>IQ7pvN4CmNg5)HdTNH@)wPt9c(G8@G)|EZ2xqNM-lU89)%g
z+jLoxSk7<4?b*e5n}(|UdCOUh2F_ai!!;$tANqd&$yBz%w5-FAB6@u!N<}=tbG6>Y
zL&-{i@{5{fUY&w^7U`?SIl$f&c7c?WUlHf$2EGHIw)leHS0M6HHEGpL>269aP#Ah3
zDv3utYJzdL?i!JQ%r;7Wzjnrp81Vj8i*|tM93yzs|A)#n{(jAuNJ|VkRbJT{)IrS`
z{gWM(UbpsOo+JeI`z%RxFQOXX)WhCaP|Rc_5sr1Cjuf=r;kMfD(>$GgaZ0H(X@Zfp
zm-a&|1~c9uVL4bmYx4bq!iL{Uzq(FW8@ngTK}*qe6*D`eM2cLIk=nN{X&!Ss#?+F%
z;r@(UmKK!WUX96efUnc}P@r{XzUpH`w@GXK$c@-n{3->q)1ruupSr{!>if1aBt~CL
zh~I>#QF$B@Fp3n*QY4<!_xqd9$Ld2&NZ9=E8x6kIDtcc>nQ@NnU@A{%D^=;ws=a!_
z5_PHPlEyOf)dl#r)X6Hp6cTKdO1m_a%#f}i=GAej0^J<-adMXu^(u)prDg!MKFU<u
zJ;+dkkx``iK^E5T%+s<+P_2tiq)JFfkI_KfGx%j;;}NLiT`r^}tV1wH7kJe|q+rZE
zJg^tb;_LTO5-^xYFMFt3v1H~eKV5|~XMFS7_9h#kLzn_1A2ZYkuKP!6R|C>zoT5bD
zUv&5dw}C>$9tL~4MF-bvWEz7_knCP96BmU;!(<%F4zawp{%&vtQq!|)Th3!qTDnLF
z<vLQ|Ir=@}J0PQ;cR_`(Whq<A-cjq=@fG5JH-0^C-pXO*4dj}_gl9&=Td3GG#WC@z
zzxT?k5OYs)igO+n(Mo|9_B8R(l&VYpV44Qy!a+63fuyG+us+SQ46SuDnid!3o{|5?
zNMbL8{csSz#z0G={>uah9s}w0kN1aWE&^tYj%Z!iDi@uYPTG}9%Jp`AK+f015r}{Y
zysy04+pAqWD8Bt_l6KurPh+f$u}gsO*2n`Ty(ELa7k|F~o6N4T-Deug-ZO#@@#@rt
zc`>i>1$CHt;n7m2J1>Dg<kqQG#2-eP*$W9?q6BCM+ryAPQS#xVUu3D;(A89gF+90a
zG1E$>j$V(2K7vU-Go@4P4=aZ)WG}C*c|FY9;)8w(J+=Ryhj>fa{iX68oc*~CT~cyH
zh~{w4ln2wKL*D!hTOXe%SdB-I^}7$Q81|kux1v2P&>Zi}I|EcQMMfgLpIG1HNj=#H
zwTq|rq8}gAuLH=YS&sf1Lo!e>px_*Qn*A@L+TQ|ua~14=Ec$b9z(n8p)e*q7qBb!#
zzaJ2CF;SJKk-HWr0yNm%*vNm?`A=-0PJe0(@k8;=`(Gm-o*sz5!aX@$b9P>t_c^T}
zG*le;#Vl)K_&#6P4)PAb6XEQCxe7f08w31|Ly^o-FlUo*71IajY)JFIh@bjI%SU#8
zmP+s9>-s2o`79lCX1j)OiWKGcw}_A38Q3CEwN|GRFj9*FjHsqlavJ?l#P31cen|LQ
zz(>>QcaH>_uHL@)SEoZ=*7J*|$h+Inz(|zo^RCd0C!9Ul2dsXZD*|4ZJxF4x%$;6g
zZDwt<lfO{s8=m0ZY(ZV)kXJOst^Q}^$b`IMtd;O+wO6~|8FFtR9E_^~77{W|>)pct
zRImVC_U`{Ol@;tpueN*Qo%e^ME{$*Nzh(<P`<tA>t?_+ujUKv$hK8EV6-vowvX@Lf
zn0H$t@nz$s4|x}9mtKw<Rf5%=^T*aqJoYvg3QOmz0Bfcy3zc8-Wi7ZHYQ021Uoh7_
z^Mcv8*7v6C+eX=4SfJYt#b&BmROu=)Jd9%cYQ8h6a=2R-pK!s3xj#DJDKRTno&mA-
zIrf)_;}Z0L6&NKF<GLQ;y71u*p=AB%B?bon>I#1wfp=+kh!=nO!0F>P#yr?)aUAIb
zz|3{~`<}Rw_$j>cgu0Jz`|td79HltkMiFRHNM{C?m6i2i&Rl~Ko+mRo)LMQTVlrq=
zTD`IvQ;e>q-*l=dOVu((Il1}sZ0fF&xE7ukcptzUjPqkA>mLRSGb<Z#R2R6#tJuWu
zUk<Rf_=26|%|o&<0K<L6a0nH@c<}iwkk_5~r2jQ$M>fjfs9i^b;Zg9*v$WaARyD3s
z&DZT_C)guI?%Z4vRa`vN7r1S-{vY#fymJhHQ@ds<^*gAjA-Oe>3gG|s02mmkPltxS
zpVo>h_z0AGIL9+Bo$IZN2P9r3KUb>;f5#VCt&^!hj6s{Ld%60<9U-*bq>T{yPT>4T
z)J-|+dA=GPgTrF>@%GG}y`9b5KK2=l{7exA1Ri#*JAI(7J`-VJ+<p(qxgW#hu*&y)
zzM<7?Ec@@<l~1s{xHg-?jcrRH5IE)<zRfjfyR!mw)4b}h793#xEoL?Nw*-f1?YX`6
zJDV5JX6)a44$~P>+CN4CSTqd*2@W@`iuS+X1ZWPX%OuZk%vm39JPvv#IGMS@G#niw
z9;=L6vucDxv>2rux;j*KeuRe9Tw_ZRBKm!V4eY+bJgspY1a^hz47P5*LGQ0GNkuSk
z&30?hF#dUjr1!m-VL_;KC?n6ikZ71*C~#jf>+8Mby=I5E9pYiuDDAJ{vK9QpLo&7Q
zA-)p#1%;k!IqO%}wr=}FV(jm>ESsDR8iIIjM8+Sl`d5T+K8Q@jcRhdkTX`QieZXaS
zS&4Wc2VPvs^a`scu{%0H8Er>v&lRjX?+D(cj6t{>AR;!aY>b%yUTBgX>g4UQWDwsY
zciMe}lce4JV)fZK1wZkBxLN?N!+6XZv2phh_hd9kbqZGg_Hnb6&(`oE$DhY`cvlo=
z01)BrD2LrD;{kbkHpQND|49M2JWmQujOND591&&{c>*><X7E-(#|VjB0+T}^DewA5
z-`Efo^PQ`^M`%)Li$P6(&-rPU=uP9_9orEj{G@^DIlLO?X(tcou$W{DgV8|0eta0~
z)yi$dxhCaHUf~8deipA_HI8GGmz23tVoxGF<<1cOBuXbYr=W%gh!o7)^=Y-(m9T&Z
zy;RJ+Jy#Dak@4&zqA%L5O3c&wX;FihpC+VBTF%46tb6}`RPJx(dCrc!x2ua=DADtO
zd)HN1HC9W*>om)H0F_n)T3lv@$y_gb2EPd_Il|q*Dn4F9yN)~N#5ue|2-F{G^yRP(
z6`7SuQ(Qg^N_NiN*rYK{S}q?Fz0&RwG>CAsr3P8bw2lI;>~$wgvFe&KB`a(0u}dvT
zshnVGVD=pBprn~0a;c<T{`a>)zkh)Lb~2`ZV;0@Su_e`$t0L9Qht<0$=IGzECZ6&0
z8J0ZgIIlD^kHQjYCd;J#1*9Ja?AXH{F{%YuN`n54*!u+BqBUX)bL6E&X^JOdM4mv|
zLf9}qB`{LOa4Le*{_mi@onq|PY*)eX6<H*JE*Q=`5hnc~VvRTv$r4TJ!OT@|19lxI
zwT#s!2*TU+!4h*vR`U@~$*Zim-42ogF;vy+Guk^x9Y}`o#eOmrUz@{SRSU<6uL(ou
zS{?Qo0mDe&8IGjdj*4bkmxS(e+cSS=`HXV344=|5UE4SWPWmN4mYW$<d=LA1V#Go-
zX}r1eaAv|`W~^85^6}=)XwW)qb?b|PjU6r-h5mlHe`l;@V?&!X`z>zZc`ZYc+Ib8f
zV;8YWk13BrzvZXY)t|0y-$KkDixRV;=s@4G=ukx4YN8agd99PZJ5`(Wd=T!5&&#f&
zAQJldwh&b#?){z%Ms@Box0sn!&a^B991@~4Kfl=r7i%_@<fcIszlNZ*&!^_-YP(w|
z;REKhy~zanQ15>~>A)!!!}|IYI}t=m4N<$RZ%vay1S*}0WKHNAK8;~jH=5_`4FrG%
z5y{km2{Mhfs0n$@;yYu())?7jtO)9szK4JPtKDC7o@;dDOmp!m<|;9G-xd+Ai(t5k
zBgKI9Yo=Vfq}mmz*9Y(+Ik%*C@YPSdFfl`rfIo;bI09ZG-BG=ghfe2%=%dP${rLd!
zxL<;?6xreX2PpxqJ1jDQ4~07W54TC(#&2`JGNvmEeCu4b5sG|gW=oe$C&qH3r5;79
zcK=+?*Lq-duV(spraTMc?gyGy_z^R^QMYVAt_KErzY66QD$DRl98t_yIEmTec<SEJ
z>oJlM6z;wAo-ffkl>+ta6!aF&ATI#!!K=qPiKLnFusYXBa5>6M@J|mib|sYasT(dw
zCkLk$;6VCA2bcN30qDmtqBzSe2rg~t57H`=L;~PK9W8xwjs1=I9;^P^VarM}1B5Us
zHbw~DG%Dodv_Rt3Dxi8v_&6aDxKW!g7SZgKcxIwWE!8b3HP>#bOt|Kb7e7rbX;FYr
zyK50T_OPh|(xEffirxhf;BI~Ux*=2T(qVqEgx?en#4lhA$Y6709cEewbBy=(!o`gC
zt+dWpYa!F&4TR`?@82cBreZEds{+T80{qi|y&kN=q{or}n!b*4%1IX<Gs663!jsz-
z%*&?BO7W0>pr#G%`Vm~~<0F#@6OJX*;CO2A$*o8=50PP<eri=&VI&<^P#SUE8wCG%
z3`2>KJN|m#=>61T4AH3!5vNTZ<|ETlvgN4~R$P51<PM5^xb3*G9(uI)@%CTyPYysD
z69o(UqrV!5bA+gwR`Ue}<0l8A{nO_<Ee%f`CM;LOMAZJ6IU%&i(|kDZwL4uixadJq
z^$~CDnQ~?hjX*oIvC01GfV9=DjGd>dFn?alF2iZSQ##J;U9{9^vwmP)oGC33ga>5+
z?cL*abW*htGUZSzzf%X4OrsJ&A?eGDJL@S@>kPJJe)&ts8>;lFt-g;nt(vw6qlvP)
z{9M$E8A0YFaql1;zCbMduJ&sHj@19`_kbsSF=m~qNY1jv9<LuMOuCpg;)t<wE=5Y-
z0+V@l$iaz5Ivmz0^4yN_Fl}IUd*&L!k{*nE2h%6>CHT$CB;opbbFhzsG42t>{dDeN
zjnjmYTk%PSR&|_L9+0Goj*6Oy6#Q8It=wBqQ!My%Vl%AfPv6cv3C14`Lf7bfEoKYE
z8$3Y5ov>s|$X{zEVw;I070m_vkwhIvMvqFY?O{4m;xyg^_k$fPRO%RrGb3dBT*OAt
zXE+j_n~sX*j5Dz!EC!Ial--e$P%-;&m}ECh!&<EUTD|GXY{4GBQ}ex58l$eH+Vtjs
zX4k+orae|fq2v_w{`k=}_`bF95d{WgWYkyq0zG`SNr)7xN%N>$t31TX)z7|Vp;ENm
z4!&ii8U%kg-aB}n6y|IUHZio(lpb7ptsl__r|CM~&MaSYJ1_-`zCbn2A~L`UJ#px3
zo?ZaY3A!LO7Xjnw_c}EB->`#)TmnuPH{Vx}9U}AGZ%7#_;R7*g!zFDIayT%hN*JXT
zf3;w*u>1;(5Qf0#whK3t8vuC>Xc-`@goIPElWKGqj^@>ZC!NihEG)Z5dQ8WVy=U#r
z=W(qD{u5+x$qO=d{}7eb;nf^-El?e%Wc8o<^EVJIdv3+H>6gF#`_r|#m$!Gp|6%GK
zxFhYNt?iC&n;qM>opd@$$F`kRY}>YNTOHfB*|ENQ-t(O?PW^$}ReRt2UYKiM64AK8
zC=BoEj<h9k=;lL(a^m2oN1f;78;s-Kh7DJobz?6)`{a&wUoMSOHs$h)*{Rd{43))n
zl4?577twV}pY+R3VD!HO)(hE5QK>p#<0F{hw36$y73z<V-!wZqA_G`h2aYVwCQ$tv
zKMOHnR(9`hqm9g#h-u>jV?%tZJ9Qzqg>b<75glP;LlwAY>_<Hgh7sA?7cjvYzp)K{
zAUPoh^rCN?T^E2iX2(M=WfhhMohXV$Gy97J+l={yTW$zG4wjj1Ml><o&{SorVJtH)
zTJ>_Du)GaJ6U^3WTLcnJu<^&Q!Iu3DrIb^+ri5=?F6<qK(dlbTM@^0si)<xtfy>De
zOU1`hQlgTOv3oF%x|>W*UL%mE@Qvgu6^qQ9Gk4wO=kg8mo8rHL2orv5j-5yxxQ!Oc
z5$OwM)~RQ#{a>9`T|68FS1XzJwi8r$tAKAlIV8H6;cUU)4T#W(p8}gEN3}0^o&OKS
zd6K)ka??PnfsFUi1Ek8R!8zA6hsDH5uxXWuT&qRiZ6#o!-p<Q4Ho^IwGV;i5at~8c
z%>g#$jGJ2{0zQp^P94GF5>+wPAXs^kk>0@E&zj$}D;Jwtr-OT>6r&O?HGk-aBQMtI
z%Wx<)p-QeRF%!G>s<IH1?DbpTO>M2|95(?+o(sU+XFAB{j=uc@<;SnZ)XN<^Qte4L
zbQ$F;+Oam|&Zeu|8(~FwXHdn4-9XGk3Qb~A&(TQ~st-T-aAIdIc~dtsOiW6eb*^R^
zN|mkfF%d?>Dbbay;gFyV^KCYROd`+qr3BC1@BVRuAH{n~Mu<1)bw?vq0q1Rv4Z7VW
zoTNNn`d7c8UmIOSq;Tk<u21N6TVSl7l!Xs;FMh7Y=zr!evu?y+V1>U5N&FdCO2h|8
zj)*A@KB&2;rTwl^T0%<(@|Uvf3_ca+#t)rP2sSwS+s+E-49E1dcmTLFgxZ7knVif;
z3T9mtf^b?Z0~uto_O8;tO@uC}C8rBi>Fs=`lev+E^cjYu4>NoyuL`SZXvO!RiciBH
zIU|$#aKP@SvK$^4B9hc?OYJWrM)|{2Uz8;tIkBW0lS#sn5B&arAcc2Pka|y=(J%k@
zC5;v@=Da>oyEHc8R|Y^R0SHY`G0^SZh*wZ<gX0(zb0%YS?&<VtD`oH*@afU<*;e_F
zb!QrE6|@zunj|BQX7;{S8$j!hRK(Fmc|~#F|NRG!a<LBKQI8<`Garw=U~USn?r1b&
za=AeKLyz|;ey`_?JH<D>YSZQRqBg!c3;(5wRxS|XZ=y>fKw+jB)4d+9;5=gXu$F`e
z+P{ZP{IVaFL<-j8ki+N2h~zmMxJNj#q5j}|nn{n@_zQ$oU5kwE+9N$6b`6!y_jMJL
zw7Hr8gylSsZHz44H=Tz+EM=PK73k|iDBbaKd6XQ~Rchff>o4)xnr)t9deOWZMyhC|
zkOn!CQa>FOxwT*5$$E4LV_h<O6*#DOclYM=I16B=<s>;ecz}lH^7DTOQ_54ZMXy%H
zggSN&eJ<7O-Ti;Fwu7&*McF^NdzpDxa)s7l*X$1rz;RVS!Du<Vf`pZbl}Xj-_+2XG
zlm>qUhSN9eYjKYo%#8|Pr)fAtW$hNR^cy!2OE;(%M9)<O$i=0Yen_omd<9{{LxKY>
zq66RE3>5xA{(dkP`%*4MZuUgSBvdO@EIbU04im}CJseGFz(2>F_*lb=`W674bf_0f
zSx!?LfeWO#&i8a4c}k9qZ<Dr@%jty%yD*W&-<bJz9Ja{dH%%p3fo_Yw{3BWh(nyT1
zV4w8%@{WJg3q86-r$fjR=6`oH5XcuzYm>~ZC&?pMgSQB7vDq;E7nRS&*1>zvZWoUC
z(5b&zv}e9r3imN3t^dduKu=jqO2LCVw)O*~fJ1-eesGno9L-C`RVb#Yr1c_y>J1w;
zS<pScMXqlFEtAQ0oGprg9lz04S2VhYKmIq0pP7J9+s7=JWpjk5HuYhcX3SQMNt}Pc
zZ_6Eo^uvT)StPz8#(|L_Ng=zhyBS5f4(y>JX<3(ZcwNNNG+yZFc{26s0{3Pcgk!p#
zpfg^DNJU#iGSVUTD_~+wTClHSE(QT5`cjA!qV7B}n5yf3?SaJzs%r1$Tl_!27=N1c
z?g)r5_RYN6G8x7u_#v3h&qD6fvi3tUmrtbSk{jjijqsWeNumYxXZ-RMqHb&rsYoWF
zEeqHtYe^u_K1>WzTcF<%j#8<LLt6#e-F-4*I?K;c?tO%=e=%c8n}0DcTJOqr)bykK
z18LomO<RB-H~G#pQ7Y{VB;(&WHG=mcP9s%R3DnuA>=d^U14$Nf9N`jtG5-J|c(H#K
zORT99nCU@t1w$#kG26bPlWBohy*So&q*5WR3Z)Zz?4$4u3bA7JKULq_8odG9vUm<<
zRC4)LObH^zaZyvQv%o!^e322=>D#AUk^3r~ycUW5^`p)(WpkxGb7u1W!S!!8uhjow
z%&*@kC)W)PnQ-^M0ll49dp9GL5U+M4rQqD553IWZ|CPMHzF!~z57#Rz7xMpdy@LMF
zfVn!!M+6es|4(KHJ~Alja?=q1fxkZh@xnDqLj69zk1FNbFuVZv*Dtu!5aN-<-Dh^j
zivO5lCpRRsf<DbhUaT_3_pLjh{zvh^#Ysqf(}hJtiz+E0i;x=TsaXkNZjp~*#Jknm
zFT-dEQjSYUX+6e6L&J+nnR68sl2T0zfrm;65p({x%^zZ`hzwpEgSj)QE&QA9PC$nN
zfoK8mw=k`;`f3*+^)zHNy<OGHC19ix`@(0*ma)^p!2RvB+MdnpW-BHs>AOVyC}|5Q
zQ(7bYH)okt&V=_{Q(a=WP*!TglKQxX{zu?n_{ufVjv>+V=D-0fTFa)#ftm-={GXgp
zB#f*&R#hzvqWKMjnX(g1wu3g%$}{%=Jn?ZC>3%fJ5=Nyh!b#KdVACg<1qUFw{$$O}
z4%J8L1*apR%?D16v}PD^Xo=_778oU_&maEhA;B!@vN0I!MRe~QRJ#@G1$4v=i%94x
zdF?DvDYt(-|9v=-s+bl0MF7EwN2lH44D(YqC1~y?uvcn)&r1mCC?F1m)!m5JC~c6v
zJb9@Sp$0&iQ4YKqlU-(9h932Ebh-aSy-uI+N91t_h?6vb%ClXZhU<*JAFM^Q-XbpK
zNv#doBg@sDS)(3lnyWen?dV0^dw)7SPm0Y6?7r%Vahr)iV*RXQ`5Ew`E26|J1VY=D
z<1Vz9g8=bRTm<5W`sODIeBQCBSuw<7<Z9}~Aa`@z*c^?gz}x%8fhXkk`JNTxwM`t*
zPW(*?jPrefE-I6`f;*-Uf=@M|OcjL}Iginy*yP}D|NEg*+T7aO$_A(8f(ZhLahQ4g
zdhXf!2{W7W6qxe0wZPzEw|$!J!Fn>?$@<`Qus<AGrcuAIXrt%(boocMR(H$GEEq!&
z@q4jfNN#NKhF*NiN73P7UFF4wC^}!Ab@w=9-CWI@jY4lH67*Iy64r^yNY6|T_cS&i
ztZ3Dd9k=~4zs*bwbV8Cnl!5s#-;PZL>%S+FMFJGiURtNTd=M&oE5W87CEV5(x1iPC
zSdQNz`5vtW*qyi3A<y*DqLoMmTgPDL2dF^?4=p5GIrwcZ*NAWQTK@ZtSi);p_`2_e
z{&1**@xHWGbpsK;cs{4_?T`Azv|q3q{rUs9tb>*nhQq!fhUxhAiVXTn7mnul7f@N6
z3%P9IIoc?5ef_>KjGsd)t1>%=XG8L{(&%xkl@4Ch&M(8^#Gl#9Lbc1JW}Sb>&U@jJ
z4*cT+;ZS}Xu|;%B$5&c|{X1pGPV77$irEslUF$?`)g>3IS|Pn$MzrR61E<<XvzxXH
zLQ_>^u?@yh)40>h`<jy(tF9Y>rTr>qGFP>yUP8Ti))9MeLSlMW`mvD=)3TxR2G)+s
zQXa$*mQ=ZqY||thzCR2kqYzy3v?HdA^VF3;+X1c7`-z`~PI$!a-!3sG^<ELtBvbr3
zgu%1`c>S@3nOOMdY~k=ok|m(S@tgoec<pv1uu2b6*|TC7w_^WeH`IFI0;*nWMU8(R
z3NmhIN$fZ@n*U(m>f!1H8@&eK`?wdseSKk_RLB%4-r4Cv?)H2d&I19P_5O#f?fd%J
z)%~~?ZZn#jeuE8(pVRxpXAfny)tPMDml;sf-|xYC$G7eEo{AERLH2I+)gO8c=rh}b
zkIHBy+7oWAGuR<$ym*#?Pl>`0_+6Sapf5*{CjZYn%5nwg6AD3O$KSjDwom6F(Qat8
zGOgn!>-9KR-%qBHT`%)??-~UDbQ27W`qQTyV7MLfnJb6c1HnV;Pi@94T3g*$Yo?oS
zE1)ZyiqeQ;z=0*uV@MdY&E?O2!I*}RO;n?QkNV)PP24h-87ABfFq*6yzKvz!*3;#{
zIRTSj$vqg%_CDPyrabZ`2AYlrGyi%@v_e-?`~x}x8`W(!VsO%Z($;Ls!_dXdi&|r?
zDSbDRb|dHR<N)RQd=?D?cDz4O3GO&&aMQ&NEycnQwO{Xi?+BiL!>0IDF#4i*cXlTT
z9Vi?blxE(MV01rV!NpX?dM!z_ON!Y4a8mEy=1Xe}8S+cAR=kUiRpwarAaET6gC;4M
zjuh7utyBS`P!}$l$Kxtkvruwty4t~9&TVsC3(Vw*9IV3kw>G@$8`5ge6~(wJV|drk
z2eNw;Xh-!bzbaRS*)jMyaD2)4J*T)IT4BB$ZzI5+uiNiMIM`{rBC&I4h}UQbA`8zj
z@akQz1YUYr)}El=bA}(yi0q$tZTVu@8cB4}Nx$~k^W5C%gPod{)7YILO&`lcQ22TG
z0$=~g1o86+I=P8VxxtgwT&;$@*H4=-_o8+6U{|@cH5kzfe9cTzfS7Sq4F~B^3T`oO
zap7dPW`(jC!8luJE?$1UhkYXpCmlb>&nwOkf~{iZf^=IR_17J{prjdwOYD#Gw&7mJ
zP_vpEO*h@S*H=KLY$>n_%7eI&llGRxnd|Bg=4>2i3JSf*vt2PSc^M6KZa|@=*DxGU
zW=K48U?6g;>kk0c<m|*BHkJe9ERoQ%6y}vs?0xBO$9Msul^~TR*O)b*NK-?5qN(<C
zGecFab~`ZA^St<6o{DW)$j{h#&w{&fO*I?fckP<`_l%9R&23=oY}SyrKNS(HN3)Up
zpRu4jnu+exGxk^Xj`bn`+M^#qxyORxA^A}T&(K>1{!zc2t&?Kd-0p^T`!)2i`$Dq$
z8b`PIvhqG>y$Yj(tfnvV+=ac|gh46|x#DUod0Hy1!;hFSe?RBt=Dr7Mt=Wp?L-f7&
zN3T#9s#sQ+%}yf$ogD1)fvqot`KaEdkZ7a|I|}UJefK3Z>U67>+4_)>N{c}-gkb}8
z@TmQCsS@c49B)_RMqS24E^L8bFoTl{B)h*z3fDz5jDI4(C>u9AqZMVd$Pwj3!KQCl
zpb%Nd3HdG6NjyXojj1G`FtFoa-zxoRUedagewk{9VDarA1K?fuvC>x(?3;dFCtuK=
zh=z}kAC#-|_2`|O9%Z#Jit-{Lv&t~Byp1?7$o-oXRhi3)Cnl++u<&eM;_lnI*5UxF
z%InA<4-a5;a10iZsLBwkO%beZ0jI@FEfO;&*1DX?<aYieD#IK3;T?WNe&4ww^kS~;
z+Y;8GZ=hz&;TdS601zQfBolp-Qx%M{pHT(jF1i5*p%fvAI<$P>_LdM5w!R=xoNhro
zf&p{hT6vGFOL@ybcmYsc(jxVF-(pN=>%0!2Jgv5&3fXEZ*GKks$$PuCy?OGVA!%-h
z@yI)g1hmY6aoEXRKG0Gk)QR7M61fcB%uS;|vS4=82WAZX)VI&6@V@YUh8WpuYx}ts
zS<w}5BxDApqja484+%on2G{c(8YQqBEolu4bMx#{1+bR^R6sYR7>sT_qo;wR)72J1
zhMrkbG<&3j4rj?s$g6tm_g^w(pl|>-ws#!pTsK_nEI}+Jh1~v(rNsK@Neej*x2Yt8
z04Z{Rr;aH5=2ri}M68M;MIqE~MM_hbLBBmRCZ{8DK5iZ`eqM#qs&H>6;}i>yO}7cT
zChIMfUuIW+iIH&o`;3OCWAp=!oRX>f|6B!WCL|}Z=W*pTI0uTRLLFYmAhTB6QDqq@
z8&y!cLoHZML!+z7@O9?%<$CDc-)I6>&vc?J7H}(<8N~`y&`{EZEayHEPUqSLF~4~b
zr{1moIj*Un2zev-oaE17$F?9}hez+?HC9r7S=3v5nryZa3GqF_Z%10?E4gx#2frOW
z4MN?vI}st-z7Ec<!Q9-~N=j{moG#V<m|rawj=|Mo>M|y6(S{8I>ppO7X?lSza?~Oh
z?-_i+V!Yj7V+9{>Xdw%ZY@|nI$PPhKk2n}Pu18MU8nYpmMTwQm&vQ@g<Zquuw3i!7
zq-2awD&}Dz(1kR!WbMk_>9$gIIB8+b+3bkXs1DL37ybmjK#MpyJ1^0we@sFi6@&=X
z1q+p9X95_~mL;l6$*AV5uKam1ks>gr+Jwe?wjDer(P1{!=4|6RE@}B4d@evR^4)-#
z*=jq;xK&9?P5sCqhF@xQoRP+!kHJQhi22v`Jl?HkV5JelGs%tQF$jISjU3&Q1)Wyi
zZlu=RN@YD<tZRvC%a+g8dM#jUf?{wZWX%28bG6eM^fLa%B2xUn;0BgfW$;$rY%Dzr
z?>8e;y|)=WJ`1=v6vBw^j?yZXhYt<A`;yP>QZhEv5fvX_0+Z7&7a#0`4=c49OO33j
zKh74wV0V_}bfpvP4GA{@#2a8RxA*?dDDCmGboD~~H^K`;X8-dpd6)6pG5n8i74$H_
zaBsOfv+<4L<f{oTTWczr>I1%+o%r5%k35&x6}Rf1TRrDEf_U$@;jXIEI=A6OkpPh2
zPSxRdjrfe{6fchw^^PR(3VL2A#OH}7{%9i>Fo4#WdLxX~8j9Wh!E|Yz92dUi?s)?t
z)?YdY7}aUY;)BShDHey1C*5vf`qk{STJOR3#IPz>za=!|!8zyUZU=v@j0P9-EG!j(
znR*Q@^y#JMNpP5vOf51Yuel80KDB57xX^vfo(t?BFyru=l_YzIA9mfd(gg|a99@R{
zy+f54B2k%9h#c<vp`x_wf28Ny^fUaCmCNM?k%ht>7<#33aK19umQsg_#DtfCG$Z>!
zVjM=<;0Vb533hKZHk53>T1;Efd>KZ_Pg$rLj*7iqlEp3fp|DDPyU7EO!;KmU88`pa
zHo8Xq$lY-Ui;$htz&h3$n{5qh(2c&Y3t|Bo;DKl>$Qwv9v28d!J%zncLHv&g%sHIo
z7Jy1Ol#YH63xcAVmCXrB1p9Buzx!Qz^H-=`ab}@c_A<5-bM|g5No)P+EBgVH<DxzM
z<s95ZE|1}LpW!N}1u48drP1clUu?~5FidNnAQEr&{OJgUG!`Smh)}w|iaa@UwQls0
zr)&L~=)Hgeh=twltIoEQ9L(xWj=oN~9%!z5yt54#|5CX?jq#l+JkFq<$9G1Oco~$>
zHv+zgL-tVvks2?Y+q>UfL%k2;(a#-UxBCJNdhHRF>I?@8KW21jQ5?QeF|$3SjJM56
zXTZtog$x`DalDcg#yxD>-RLhf7w}U#tA%f3bmpAasL#=lm@I$0JD<?lZvX3l%xp!$
ztn?4~=;d$5@O;)DQ|m#`x%vZ}(sRkEX!UV}99c$iTGmxnH&On*bdk64D?R#h8sPt+
z$mo?{BsoC1m%AyATw-7DYwehWPx)EqCoOh38gnH%lwksGOtl5yoq?H0Tez!E@xoqe
z7o$g-3?qY~CmX(4DmVDX`dLMpuL*p!!J|Av_*!g;){DW&zmO!+w-UbB+J$7FGjt^3
z`*EBw6j%v!h8e>$`2xovlrD<hJ<Zud2*v|4-?faiWA&7b#+VM>QbkLe0;BjMqC8Kd
z49yev^YfKO=zjMpP)m66*^LgPSRmgq<8stk%2lp`=ZIZ*q9Y5}+KZdkvV}#4V_0hz
z!}3xMdty^{N!4ONdK3B_9PFR9L&IwEu8xrp<YU0x!T4@ed<z2W57Rl~x3U_4R43{B
zCoasC^+)KN+_^C&wRuUWro(RuIZ)v!h=!9{AHcsa-jhP*E9cs}`k`Q+ILzZ1pj+c0
z?;7Sc1Ulk(PXGZ(%oR%cq{b}NEluOGC-gA}&g^(YXBfB6P9iG1m~5wLL5-9ndk0_C
zr#MPj4^B6I^H|ll7j-IOcb^z!)19O%$yZ~Yjz43X2to|hpF}(#iBm2GBcEdh40pel
zxO93kX^0-h#qk7HsX7TupN~Z|3NB`AB_ULxU670a2JL0b<}dltw|Uv8bGuPwaXUe>
zTQ25R>O0f%qdM754@apT<WY*Bq+TJ+RovTtuux)^5XwZV#8>Vy*+X?4vg0jEXp6ks
z0vsN9Q8#tx(PZ%<jeePt#@q=2VI~AML|Xn^6RG<H*}vjETuD9j`V~ffG*+0AkWT_(
z30jQa<EpS-IS5=8t%4brWQ-=`Gsi5{Vhr_cB@%mP>a4ysPSMbI(>Un4j$R35NEg`j
z*xWjT3g{K~uGi87zLUFY25a<x()DCQwJtY9Zre%b6W+D8^`qDTeEY&bMUk7l@kd6Q
zh01vk_V~Prcn*!<q+Z++kKXVHn?K>?o`X8^%H(R#4Te`U!ra>tbV76n&sg!8YIW#~
zvfY0WIIWR>tZTz_6N?Nz0yJE_d0CX&E)pjU^~$@)+Iu1RMs!6J=}KO(kzD15BO-|m
zQVU^@k!oX#vvGIl6UCZ%91#%?mh;!ZF=8$+&F=BrP+p<V?Hyv^n@c5jpJMX=C7AEx
z-6F<HZ?8{h8t^vq7>)=^^bV8|Q}1<lpgrlc9Y2zL_zs}4O$tEcea!4?Jd<+88Q~yC
z(L^H9JCZoRI7PACFtxQA(T_peiRTtv4|oq9WJ23h2PfpnvHr$ZCMCPSLKvu={yq2d
z&jlUh7&~E>$&QxJ-4R=T<9LKe2O&v{aUf6@OUY{QXH?Z;z<(Ml?+sA_sNKE6P?7cC
zlN*4Lh<Asan8$n?CRAAQqHiREQszzd%foJV-is17A)b5GfA2*f+mEIV!UpPy=tS1}
z;s>FWk7njNCr#_MZ)DdDB<!VXX3ZA!D27DN0jk!Yj<)NbkyimrVmTNxfYot$4bFVD
zj3(<~P45vS>)z`&{GyQPdB|{((pj4^5$tg7h}AbG@=$;$Be2^>8Xd^5J?}}{?MBfy
zu??Kw_zFX(25%tna)y<#;q#9c?KJ9Ne>`1l$G~;TjF3tvxU@NJ>oP^R<gf{!_QoXD
ztU*r-$weeNsejQ_%i^trhr?tTiT`A+x7(BgAGOGzJC8%hf(rz=CZXtzj$9C-+<nlw
z^4m+kjz5y{^Aq@UR}>D%ou_d+pj9lETgUtx^~Z9hUT_}}hz=DR!EqeDR1(u0xq^zV
z^L!`4mcrTB!31{315Rr74EG`?sMIU*_X`T7L5%Qz5$u038f~9(p3eCacNN&}IUpx<
zG9wOPxnx5+%rVEAnTIXE@+tR-B01aY!Z1Ww+qZBMb8vjQS*t!uMMaZVB!hT7O73RX
zz+1=rrL~bqs70TqkuO$g;fAVD_jgmSFgu?k^C2pWChIpm{?)A_*1i4{n>UM{rP~U2
zJ&d<Enez8#R~a@DvMFFEy--TMjvVyKR!E8K^-nLD1?*D55OVB`SYiV0d{F<1aKmSp
zZY5~5bDOf3f)&L9{BJ`(RF7i)j7_SN_ONUL1884QP(ZGGzG*Mv*m*0Vq&Jb#^SOK&
zg~`%1I}~~TiTyXqUyl>!vSx|JaxGLSwaMYFQFUhXbEU4Z1Yx`<e8n<3O!MD&$Qx}U
z7Dj>pAUX@ZTSl?HxzK-)dmKz2gOSfbSLp#DUMm(wyzP9ewmz|$Z-@;0QOGP)o&uy&
z{qO{4rs~s`%0#5`*Xu#nDpIhntyF&--b6Z^=O9X{mZQktd{Qdm#l%GTYvmx8m2-#H
zPsHrS%!tcb{y{r<vQn-oqg;f6xqZ0nAMEUD^SQzeFiHp~y7{>KSQh8=bjRYf+xDBu
z9zCQ92sux*dEu?$2Y=jG({N|SuYPmu-^2NIIC$dM=4r=x-{vVWRY1cr!$$p_?U9ki
z@4O6!>XE#oD+iS^Lsj000%50R-A7K%6JPC2T)i!zo4(d1?aCbGfFC)(TYw-E%s}=<
z@RC}I#^a1*HB&GiPdW?z>gt{+sWy94e8!mvkm^JLE^cN%8%(EYs8kvCdV+$k3VX=f
z=o=hg6r29uz%UGchdOE)40HNtv=>=-mn70+j0q2&UUV9HAy_vUN_qNE@#^M{?z-Be
z4jVnxvKr`BQW~xx4HSYN)LFPPdTsLKWC~zPc%+VUJ&nO^X_*XPf;=d9nCS)CUIri8
zO&Dxcz)<B(qjAi&)?f92XXB-eye=)=jTdrcpg&V280cz<Mah;d?r(O`*VQhgi1SCq
zt#j`m9qZYz6yo9@w+?3YFDRAi`GPZKhP?mLG?=>Fvj?;g{;Dk%{+%g{-68-QI%6Gp
zybq4=o{8oXS&U_R=*y;2sX~)HKsjE!2h^BA!@`PW^SHzzqe0x<vnw+drn7Mwi)jK7
z9FysyFV~z%&0OtBm4D84xY}y(v_q}zkQXSV=2Iolp`1OKh^MO@#jmk4Mi`GrjW0#^
zA47Secz?dJBhcUk`wvYIgQeeN1f?1|iWp|XQzasCxso9tS#nC&lX}EaT0t7;-3#{m
z5-6~D6j-%))wwu`KY>ET|D6DPo%kInd5D(P@%Do|LqXyMHvO!fx8Z08i83AEmhdbt
zvIb9eCb*Jvx{r|!q*;?wRDx2=^Eldz`<L7bs&2PuFi=@BmyB*fWgX+i9Y+s<NupLq
z#nC3%Jx?KgjXVr6>-b0YtC57o{KMgC98I-q1;^yxxadT8ER&Tr2}dTcZXabj%l(IM
zXIC0?9n8I{JW{XKiNixVHdu**NWX}<ve1*?2cMW9{ksJ`C9jqWX(Ndwq<RGs9v@P2
zzN$}-+3}i$mb<%&#C4YLKsN+p(W3EGGExo4Q`v87yqc@+*o&efj&lKM@$Q8}Qxmr=
zL0>ps6TCvha1pAcN@SVC#r@N0V%3@j{9w34v2Yoey<$)Qhn1XsnNJ3)^j=~<F{0c4
zG>})8VwCy#4emi&S%&e{K>OToduD7^Lsi>t{PEOM`|EM1Q=n__Y)Y|mhptH%cMF($
zZV;JXW54;IRf6sGuG`%|*fPoE^mGO2yHfY#Szx~_(S!N#-~i86V;W7^5l2%$P?9-q
z-m1ou2dz0oVH-l-FwrNk!Y!vVMIJ}6dSbT=ofp2$v$DgQ-2{@x67fjv2uYbv=|S~+
z1Du{z#&)e)6dPR>LW5#KZjpQ<cR7XKiExAYevS`jCS~G7IEo@t0^QPo2ow3EE@kF>
z#c%;#CXj@s4dFA`5Zbd7Vd8Y&49&HdVV-NXM;l{loYVLSg6GE!Zq9`rjsgRBf5UU0
z7qWP?6Z<Cfj3sZAOP0%;a&4F^`+bxz^$KR%fINeEMbM$K*xA`NUZm~{1j_UKFe*?u
zZ@Q_Lt3cG$)GY7xo~8nQ!SlafE+j(Wae5};xf9i65|PS*{2uh4hSj+Fsq60&9Crq=
zR)D}K2Q{^{JC?gd!uS0Qu;MLkzj63C?j}02XXd-(Zv?{|`S=N5WJ}`vz{?jb;)}^Z
zIY0kgsiUm3;1f1GpX!UdE01MuLw`yQ40Z=Aea%f}tR{|@;XpDR*E}_AQ}>Ob1c4+u
zE(TK<ZzRuE>;6zTJ+^W+ZpMcvGR8b`iN@-rA%T&w2jfdYD_L--IvSwOW0-g9r3FX0
zW?34#2+bQ`0ccq2`fBMBV{G3vo*2#jqZe?>W~T6_i(b)tp(a4&0as3zPB7H9sDp)t
ztk`h*<lQ&d$DhRHTmp*3WLUu>WgkZJ%qoq$(*D{k7nSqO`~{0}zK>5zmxhF1gF#5=
zi{+_H!{J^SzIqgV{3syH2D-HSi*dInE&L^gUMr}r?USkgsFz-|30bOF^K-+fON=IT
z42YPtBfYlfs7R8{laULUUxt*Z#+5$)TTcXIyYR83|NZqj@IE9%O<ONF29%{U@}01F
zBTj#pnovrB{S|uV)swHT+pqP<5V=nD4f{Ku@O@OIVEGRf&&+rt1>%*~c_`ldAx>AA
zu|XNm6DufHx^}sb>X#353tqX9%sE|JSpx|#JkP3WwO@)yVV(0ede_V>rb*+f&;yjj
zwx<hfm*qc6;Vbbf-FkSB^QXW}F~%XQycluv6rsxH!Qrh;T}u>{w|`^l^sE&w8UEa0
zwDG73o}nPLJqVk`zOhsqcZ{LUmfz?;A=13^Uf6_N-9OWA`H;S<yOjc&>)*+XR_js2
zx+3ldTL!*u(&_**GTNFPD48`qoI8K+8UuP&M}~&<`vV{b#H63Ew}SP6jG5Us2P5nC
zCTZgDUUq-d_%UE1kmF-8F^C{6EsC;BAh<(5R7l47Bb89T{#vc9?(1AKAiOm<m+0wg
zBeX<5({Qm&8Jp7<A9$Vvx;!2X@Aij5g}=4$j^2@KuVLXvYIQmzXj^lI<$|Q|0Ftws
z2E&SwC91yd!?@0t=2v{mow{I)mA^4!-pq$&x@VhIOszFK(dLx>SL?1=&e<!G!Wp)^
zUPgbosGuhNV_~!0hUa{?7SeZypC;goX`ORqGyetiOOjr)5=5R@{Vrg7#vn+oIN*BW
z>yIb-*?fU3gyf{&6LdE~tq4mEj34FRjpPP}XfKw%GB#hV+mcGVhQhiqVDC>Ci;S@%
zQni0laIRADakjY6F;O4}VUEpSdRp!4YpE~%MCnv5f9qFO@6GEwPSUSl9i!QfZ`2q5
zu2AYNOM`B^qE~5|vfG#Ig~cH)EPqNQT@o%Xx}|H@s4(?d6#R!9W|x=R0GQW-U^s~V
z@e&%o#7R@RYOPjGxs3lbh|N|jJ{eoGF!34^L+sEtj;X@K)3hMLsHpYeAw^7^|GeQ#
zc0r!K%LtTsQ^Sbkse{*qweX7VXA`AJWw-Cs_8XMPr{22K3RJurZD(E$8>U!4L_-n9
zffBq)ML7yO?HmgE4E^mck8%t+lwvY=efK4mm&Y-T&0YW$)XKD2sIKT8n<i**of0rn
z$mjdjL*LnOS72Nm;G>PH!sDKusaoT=zmOtLIwp;|JXlrr(%Bbv#F$=nD_a%Y8JX_n
z&1~tZH}+_W=7A}jKRaqTyb04rlojM`qG@EhBLUsj0;6@)W-t;)nzjvqIgcWY^&&*Y
z*JVZoNI%55O~)=Rg!VD7LnUu84)~*O?B>aSSYx51B)Mu{=J4P#RF4)~O2jh-GW=dY
zI0!C2b(r;otArG$3?E8z{JodhjL8zYJ=iX0C3mH(MZ6OmOW&XMi6o7t7>FnunlC~@
z8F4U*#N}(;(BO8X+Yeu4Hj^U~`o<c_>)Yb?e1HFDVfL3h)^58C1yj-c>Y)Tf%?nAx
zT668t?@Fil$ooZ^g0_ct-RS9kdR4HRM?^thsM^MLb)y#5Ix<Pvvz^dQK~Fg6{0~#z
zxW*#>60ScI*{p}NnY$RFXysEZlcO*t`UHLdzTPsK@_x`UzvsbGS54cw3dHp~auMVF
z5BiED%z1BDTmGlbFv-AcZzZm5#GX_lk*pU?#wPB$77)8&^WoNAKw6c(-l#(spNC2s
zMy+;x!z`vpOF9fgYatq?Lf`19<S9}lCVd7CJr2tJ?$+R}@e#m$`^{)7S&QlhB<S5n
z{A+|4`TiUmGHC)dHvEJ+Uk$UX7l3^cEAXQWR^Rz~Bn)Uzj<xMkVDN~K9Q<PN(5%#C
zp-P}K$cw+`gO;qt;fL_G>J{_=IGg|3e_5hjxU-D|yfQ3K=L#k7r`g2DY%m}f-Rea{
zC2^bXIpQDr6EE~<!#|*((j{erAthU@hr9jkjp<iluPTm2Zo3=X(2k%VCw{pTrhs&h
zxQPt4^FupVhh@C#=#$$ze64aEmTltda<GMbD}z+MDDIACR9${s1!VzeR&8vIrR1de
z6Q@i`2SiZE+3WymQg;!ngz}bR1u{^0yg%8b#aa-Gn%7q|o>n-{^M3**C(Z+=(u~$P
zYOpXcdJ{-?I_7YNJa>uQk=ccytQ$*`8Maoloz^^3mj_H$QV@q4kI<sB<7L`3BuJN9
zC3XHP6!}(#OuuSB@y56gVxeDqr$VxLr-8_|^cx?AEM7MSVt!z2y09NSG<-<VLe$5~
z1ZooIETTKHa(B3<|J0k6U*?@q@~<e?>?%EoH{7z=1uay4nW_tV4ja**T)WY8q@VT{
z4nEFS9e5Ju{0+u!(Pas&N-M_*i|r9Y9?tM1o8!T2gOvssY1HOzpL8_68j<-c$%`vI
z2J19L_-pLoOWHDpr%4{>f7<C}(51SSUVEdqI^7DT;z`Hi$wKXC^f1<{MWGf5zjgxS
z9<1+xmku%k0eu`eMP*D(j7X=!eOz3e-*z{kP_0@sfLp53bSlB-uQ)31VB&16v052r
zm(ZL%hJEd}Y1Neq=pNE9G{;&T&e@$k^z(<OI-^jMk4sqX#pTiCmVA3VH=?^*H&T5I
zFm!B;7{6J(Tc1{tS1aAV=#@+Z$%9X#=%z^=;MW9auv@{x<@mx~hK}X{!4zo}T9ZLt
z`IQ72?-GSZrax8VgmF$nz0xC%rnTtd;nod*iCDl_r9xPlO-nX&cg9`FF(&CChg?~W
zknLYu;wQHDHOM?GS+>w`>tusk9R5US<U<7H>WF*Jog@aTeW>4&!MqNAn{0?~d(!Q(
zvP?7K{u7%&u<(lz4M>M>^pGuxkcWYnlF?^jcp+EG^5eoC+ovMz<{)IbslZ-rfMyHW
zsr4TqrzonU#}Y0L7psZ5Qm)P8U0f_LM>Q$qG$)VfASWf|IsQe6t?7~wr|ac4up=?@
zEf~N%(97fZp@VFy2y7Y)f~F5(K0i$kztod4Ta@C;mOK~vi^3=3RAbBVYDtOnaCIDu
zhH@;;+1^u)+3EFnf~V^j=wHZ*QAos?m9CKT{1QJ`Y$Rh=2nf*u6j-*?m}~RU2Yl!m
zJbcJQdpx6>)oKrBK4>{ygT;}kTl~YB-IN&-6y54@3I3bn=l8>aI9JeDAOeHd)aT8+
z@2)`_>Up&4@-B+I^H1L=@y+SLc(#avKxQ9&y;w+5-v-y~7-Ar9TfV`CrG{XrqQ^02
zBC0iJ!DvYOuei=pKIa;ButBq^!3!g}-Q0H83N8VOB8lK%oLx+wLbmvw;zb|xFm273
z(CYDDNPoEkA0}T9yuJwCFZWo!2;sdzQ{-{mJT^p$c4N<Y!I;g3kdo-tvAi`;`o{I1
z2S?Pxy%0R}<pX(uofaJ39KJxdM@iD14I60Ux4lMNZhRgEQ8lgZ<S4DXR=-l+FBX#T
z?b(W9s*MJ)Fm<#)U(1|+&>iE1(H%|xp#ggMEzGG(d{@eS2m{j2Y8t>A_4iKxLPdPH
z3T+f2J1VVPm5>1M&;5jd)~Is3jDafG3?!HnlUl#W^OIIZD~KfvL13h1<klSFf1R5R
zXZSoanODa$fia?_^C<HpV0aPa=7}$SB{I3+YH0hu!!Ge9=5c(~mrwhm08z!*0$y!(
zMq@8`2Xhs_X$>6qpTW_tqi|SZDX4$SBq8sgK;(3__{*yU)kSmVzbLc#0c!3ergWH6
zM}~Z4#pliAIGiiB{ieD0*txZ%b5ugq^2(*o)GViWZ}R93#<G-6SgR$$t-676<YuaW
zPyNtN6!$Bv6ei8pF#*q)ea*ak=8IJU_8~*9eh<I9+#N`Adqc4pb^8Vf58NoVR|W84
zNT6YyLqn%%yI=s3&5a?2ZncCOE*!YY6^H(6g@JYX;KGHhBDIkLxYyXTbVw~%ywT00
z`%F&S7^lB|rycu%Sqat$TToX1@5(Q5oK`>ScA8*Jt3NLmJ)f;2M4^71c7jval;Xjp
zEW&|l&vq!!Xz~h_A-$u4ovrro%k(dNx1x@2xwz+TN?uWNHbg`yADH2b<-H!5KLn5{
z*`uJ5d;*8Q+X)d~ZpVpk3KPt9RTqVOJ@G(n47omb#L{$n1-Au#gHCRG8V-U<P#B3e
z2dg()_W<vh+rwYdylyt|pgR(oc3*r=FevU`H!;-SdU{=mpVd0tJqQ(JobFg=H6BK&
zIgsGqmaTI)0VtSw;YcLZ_m%k{y|O(>fJf|B+qb@%@9H&(Fb}M-(;aNM;Ex^lqwi&U
zqD=s{SdHq8|BV2>Mid;JkdiUoz94vU1SQ2Ge}U@XdycZgyG!LC2qS;p-(PSFnkC4C
zy9YmcTkR*FIS6~;nFWj0S-%QrkL|YZho>?XgK;`{>gis!^5i1|mCrx{l$=~J<l6oN
zuVP$nN4VDnS`pFegs95#r2n?)v%22UL$RhsyuvM|Xk~@018_siIMW)xe`LwJh<sCU
zBcoOZDkMWEkC4;asPGvsS<H5c3gf@H5P%MdI#@1%c-lQmMV$Cnzu?QUtZ`(>ORV-}
z&WKA%hxJ0GrLhQ`yxVguY;<`v3iYjB24V>la@qfgB@)CGXaq)1TgJyELg3VFs|}B^
z9h0~acAReL<y#=#ksStiGJ0W2j{93B(<?#-&ZN}isT2ORly*u=1qi~=yOgd%(@{Vc
zU<z2KnVm%a{t*eoEV#I>-Dpy!uDPy^a72G=^a)++$Lj+b2Zx$Q*c<!p3gp+o?(S~f
zIqi?Y#)_uK6Gd^Qi2b{ZHXnN{epnMnGYNrMwo^_woaJi0Sow`-eZ$U#fqWa!Mgy)<
zlRPUm0^BF_V0r#dk^)QFq{e)Qi=An*su%UWQqn^;@`I~uhcVqYOv2%`Ywu-+fqgQh
zx_os?{9QZCZ!S6b!`ZkH?Dl_6bw`V5WN>pPi#4?g_obl}M*9(3$Gjnkz{!V^dd_g@
zJKskPk({vC>Wtmx(goCSnt{1eIa^ht-U%<ep(w<kN*#C3VpgbkJTF$A%3e@Gdg7xb
ztjOi^L;eV~$jJfqLy&}G6Cs24M<GZxI^4kw*>AgFxqB-&Px-c~F8?WW2CV2dycU7V
zoW#$>S*sVCm(8x23oHfw5x*F&@28FCE?VBy-ST!F7I?Rmg1cGo0hjr9hcT^udM^<<
zvbCh1Df^d8(|>qf%57M;j!>3vTXfol-^D~F4C|420_qOtYvBLVJ%sFc)+#AD1dthe
z{dTtRPWdenyll0Hhv7~f2A|p6A@lUIZNmy^4@POr7FzHKM=R?}6>Y3Nsld_djEwcH
zJ#Xi{B**=3a1W{D2mpaoh%l6KB))`IfEN%+NRGbM$J8>LUpyPBMw5qwpm$#Ng-~yd
zyup%4wg)tf=IEyDUw<TWie(i4*=2YNo2)eB#WQ|@+J>49j(}ChiSPM+C617u^^<I-
zst@^#SC6S9IumSS>PWasAOPr}Zq}px*x2hW&AAV&cOV`k(h#X=mm82OPU=LbZ7-PX
zdr&0Zi2C3F0wx>;o(iWhNd2i8)cqyo@Dy>@50iCm-imed?m)!X-px&{%|=VU)k@7O
z5FZ7JL`X;X#OM9iq_34@N#qy~Khm1&Ktc`%`Dhc{fq<89+w6%g*vLzGqa7Vbj$>_e
zC;~{OL7%liFz0XpYY@;2hye>JF!;v6=5t|o9QR9TJ|Dap)=8>XP4Mc>H{{0HcftZA
zns_o>M9Nt@iAHcop|M-SMnxs9n%Z@|ONsH4LcSq>X#W%0PYimNufgxiBms{XkTSKg
zm+Yo>`O*x>KNbF(m}w+2!+_0W%+%p(9-C}N2*YuaQu{-K<1YzB5WS9Z`$mC+D-4Zl
znMB6(4AZpc-H!iVE#rC9{ziWzwy&*nDdOP9ldz^D6nV0BXn1wR-hS71TUtHuyfpz#
zs`$xV{{!{%)OIjZ%$ahtEh`m}PM(5$w1@f(Yj$0(RA{Kn#}7b%GPxidbkp_K=fN)f
zum8!xF%jLyJj0aNcJ}A_ym-#{f_dmY6ga`|CFS*ijP#Ft&)JR5=aD*O-9t2Qd;`=*
z)?_5;{z%FG0tfx$7Cjw^zB#`BW6kr8oFkrD=<!=ou1X2=4+Wj@M<H+7ay{04hw=^4
zd2At8jz~3fq3wZZ-JJOTn~R`Vo&vAd)-qMrH2J|{pua$#+uR7(z8cPq;*7udB&+kq
zCMrn$WBv1@J$R3t$Q|g}-RXxb{-Z}E4Si?6DhG9qUXP*!WS&stw9>XtbYLnfaw-Xu
zgli=n4#Kb0ma4(%SQWOLMU1uZ#+Teb{zfYaad9M!Bd(Rvfd`fbr;k;uysbPuoR?w8
zl{ZF)U<>;-X(xEIo?iG0mpD|LxwvZJsa86D`ZMph04y0AF_fmNy#DoeK)DaUa<MLN
z(u@t1Hy2U7FT~o>7q%xA?KPoQc&7S5Im12i^^*6dI-pR5kP}EZK%l(tlAJ;ej61%A
zKfI|!0x)ceWorZb#jPu@!yJ$LbeHN%ZNBxU$dHn3qjz%{_9hS7o3JUu8J(z*9JDfu
zgY|%GRB+Uzag~~%nn??J9z9h|&VqrTqBO93`JKVIN0@tcGivxZTR%!KorvvTd$2cG
z!$QO<^rvHvv3cp?p;{i9Uy-(>y1EnX0ZwX3);&;e3{@e+9WGK^17&shH2aX4l8bF-
z*xCah#1LNUE<--U=#$r3_s+|s=9=!L%h@@R%Ql|*qx-*-6k*gBrx2%9ec@SJXOanU
zh1vCgLZ<#hzuw8wii#Oj>#sh7yd=~@eLiWDc+WP#t}_I)K3SF+h@w2rmb{JlTWv}5
zT~#R6+K%f=O_>*^4t>-M*06z#f`RcF%K$v&JE1ooOvtVLUn&o~{b2oGKl%9Z85kI-
zwA<?RVF#|Ln$w}0X}fWm!#!~`FAdO5r^VxBqQb($f)f)73=dSL4$gyu%A~@q@%8PD
z;Jgj71759CqtP0Q-N+JZ{l&zt1UU#1W2VsqK_ui!Q4t)usD9>}=J#S~L#9CZws*SS
z<kV3m_x?y?(7}DZKSDE|7tAFvTSzQwvmY9|ui`9bY$k&kgOgyl+td%5mk7Uo7FJcG
zk21uW_wW!dh!OA7g{0(#h~h~Q4Zu`ju#NNP3tuOA);~yhxy^Gt{nCD_e(^=L1qfOy
zpA>zYD3=1|<sGeNw@L|EWXG<<$y-_woaL*|*hqHVXH>9*QLg+bT4g^qlU+ut@&oIR
zQw>(%;oTeExGbNJg1K*)%@;jSdwe^kA<E_aPkL5vFaH|75N1Ua$FAEiXb-G9lz4?|
zuZF>FTn|joA@-~=4p0N6H+6YHWNY~X1GDKbhe*=c?Quy(yp@|TAlpu6pn6Rvkc9|3
zbuj|*6h-3~m|?vo=}K2gnH%2Wxen=rRT%7M-A-N0nrmlku9${a&4MeV|MGCKo98+F
z4e4*!HJJD{K2sfdTeFT+)1nfzwH+N!YfF6k!4kEz7YO>Z!C<RH+Wl#tkjEK29DL<t
zc1tU;rtzjg<-&CA{)xDQp)COJ0n%vNhM&d*ug>63I7o2aKj+~(-!Zdf48Mzr08`hm
zGL=$$zQ{jPOS7%LZD3(|E{h0Ph+Ji;7ZCBTn0qjnO{?MdE8_eptKP&=u`2HZbo&l_
zu7$B_SgXK<npf_WAA2rL=*F~=WGW4Az3hDv@i6S&9rvL03S}R@1jKln*|$ru6B_M#
zQ~0YOz25Q29Na=XZh8UDf&hXS5=12(-!AuM_q7p-Q27Q?5Oj}(T#DQ~D*@5Cwu&?*
zI6oMS3D@xKC))623y#&nXe!G@x_ECLE=H1ZFMaTH(^Pk|2DgAQp18$l4BRpLrOhyT
zqlch={RR??NSv?2YwVJ|zcwd+x>?A}<8l^K(|sapVHLVtxf0*2TdHWBHP@pI^w01F
zNf&v_bee|cmBi1P3e9yE?o^v%_CoXZs1M!$)KRTm!|#YVfM8(|B3HneIRRI%og@AQ
z6zY35z|yD$r3(BL%6(hQn>&T*%|Oq!Jy(^A+)&SrV^lmvXSQ!a5^hy-ISqfzqoe)$
z!?b2fs#T{i{O@c5Dv?571XzQIAhq(y!5w1z30p+6Z$o-O!I`ZKj-_tKF+@>t{i9nA
z3XgQ1FSDvRwV%pKY(y?SZf-CfU7}e?X_asBZ~Pl4SiFgXq$%8cFR*K$BA)5h2gH$1
z1Iiw%xHo#8UIi!*;1w2@=LmGSx5wg`$yhwwMH16q{(k&UE($2jEY-Kl{kwt2;u$y$
z3m`pk6lRb(m(9+;BuU1#KN&(XE?WZKM*W`zb5Lf?S7dXi6W8sd#$bK18M>_vhc^HO
zuRUEKIh{3#Z!|rP6nmD9(J{%w|1Eu|K)=wl&FvT(QMXli!K?2su{5tr4T|~%*%!Qs
z1xI(gJ&d(9=HMTm8=aOQj)gc4m9<UK39J@imAV{mu}rB$0iar`1Y_ihJ~Z{P5>!XJ
z?KzP`l`bowN=@G%Z$wE<`x_hw2+dkRsqSPGslJ}d_x`}Gh%3}Md%!P6svUTH_;UB~
zr3@Gxx@Azo*U?fFhNNtdGquEyPa+p?+yi<#4PxSReW1!`rUvU)2d5>4vrV^fx$g2=
zK4%AbE@c`#P8N@)O9VARMC2P4Cd>+ShBi&T<ttrJn)B9yfz}cVh0L4iV?AT@dR^za
zf5N&uJ@Cx85(~D=`RM9#$6N+Sl1b+8k7X6}H54nx$^<WDJcu$9EE#NensK=uv&CdT
zh)0@8DhE?OU1iU88T~r^TQLyahI+b1jO3VX7b>x)yT2H+)RtS0;|XK{bl9vf>`G?v
zP@B0vQAEp1JG#2o_3wS2D8){w6hf%U>-fR`gdL>S5=MWN`%<0mr1f%lg)^Jc8|iU5
zsAp`!enW2^4sT>s>UNVf9!~=Udr#@FUXZN6aM1jBrjGOHUVY?t-GS?F$Pbj8rBDXP
z(wKU-&dVeVh^0B}Y8WJOGC6GXMUh?3mY7OGAdZZcIIhsCcbL+w+NeXkFna<g;$$rT
zs4$#-x;XA<BvFIVf>I&uVY$`Jla>)mw*6J-dIf2{+J(Tn@xa!BYXIXImCrV>iyQo@
zNXKynd5oD${N)u0S%?VfftWOD73&@P)XxF6gvYLPr9Q7Hm&ZYtP;h^!qrqInea=DP
zPY4kh<~}><8y2U9;qS}nb8$HN4Z#;Usi*eB2gh;uLXT<%x}o4Jz4*A9M;&#9gQhEs
zF5#J*#s=r3Lj0TWFw~~un}(}5%WhimyN%D+7%<~{UE-DQlS_8w!~mB{#vNPIV41i$
zw&RMJf>ae%Bvv`>hvCb)>V96^%c=H(>^0PY(7)<zO#6nA6*Xw}Zt!^7t%O#|qykk?
z8Y5$P@<Uwghup+ul=~A8ibn^0fb*Wv<@h||dq`W}#%yz$a!tVQfg~w417veY^q?OJ
z8Iz9^=OHmeaWMYf+}?nbt`hmAiVD;V&!#ce=i8pF@pLkRX0zrhj%4iu87T`aduP;e
z%g;vQ^(}(N+TK7B!^56zZ0y&C^E|0k6kS(Bb5?7%kf+n|9-R=<>}p(1*zb+JX?|+N
zaXI<8lfO#VQROirIiv=PUe`hFn*8&fYrB6FQv+^jS7Hxz*xbHKKt{IbAniWoAxA=D
zg~L*Lgin%C7EI}e_V3u4OKtGH(7DMDo6m$CpAyUL{e?^4j4#rPmgDb9v|(p05_WZq
z1VRw-{glZ<^Mli?9`cNKi!fZ{LSD%x4<oQ{9&c%~u+~c{3eUNEp_CH&$W?yslgc|j
z0X~8tapKGAW<DTVWmgo5xky2BBPB)esW$Vl-X5<arDYKd7T<NaFky?FW)G&`!TS}>
z^_dQ@&*CUZkZY$(k`(oZ2ZzO_1G`~!GY3-Wv%xZtXF}bIJ)O-$d5%7r?5kOMQht(F
z&d0II%V|JMjQ_Or&8W5{11HJ|(4yms#}x&%3>}IZn6ER{GF6HjzR<vX(xW3X3^Z%!
z@18>Au9}PmX#R{am<Uk7RxKrITb5B93oruE@p6_)<wJ|)INKfrED5^gE7$!-nqdw8
zKLG4N6Tk8Nr6^mcIYindVRnzVPy3XI#QT_iG!D({rpJ)-)v#Asf0~4A0en)Y;Nx!x
zlX2cr<IbHsxOwxY_4hCOu}Q}5+qbO>)lUUBN1)Dx1|2Icvf}TDhzL3N2iDg2(;)i(
zd1$NkMEwj(;nQLM`kmnzcnBY5Zt!qaAdQzNq;7?<XjpEHZ#^1Q#tuMu?!l;H<Aj`L
zolrhkZlH8$6p-7ZLPgWbdOs3Q-dSN!WGW?WGt@%2O0Utn`#@X^b3j%P8z@{d0=JK1
zVCQz2^*l5Bwyq4jw4Sh&NRTd*Hyj;+Q_ClyP5ZuhmX8R2+4QjY$_QIwyiy=j#xz8y
zDr576;+Q?KH@Z!liXep}?Bq7c=$-C&ny?gJnY{#hUAA%qRIXiwt|aiz<PMqA5$=vM
zG#oV@c2{PiMVn^Wc`X1+2WMnTpH2v!t#N-;ezOGACeKI5iRUnB%xK6W?qYPmj_BO)
z0Gf`ShPs`4qg=qEPktth7z!I3dw98-Y_`kfQDE%M{lYavEOUZ)TGO+XaP`Uz2PT)2
zf>_)y1IDx;he@LbBB|gIR4CF2bK51LWruE<>zjlenVjL6rZ(D_c#PIP2jO;<GrSzc
zXfSpLWap<+S(;+^^#HhKDuV3l%b33Vktq>^!r2q9b{2_A&}Co?oZfu{ZO4yA)XKqF
zFn>12?NeZI=hj&AYb$JS)f;oBkHHarCk!p(fI`J`WAdo^sTSfom#U4t-X5q{DuZyJ
zzf65(s#+Lqscj%7#@owTa2G)LS-hC(=ECXK!?0mWceHKa9f1)pa7;*o|Jzu2<}8G5
zBif-$=Z<LAvN`tonG^+vlUGjM**FYcx^zZ|_T;DE7=*(W8M1g%8=(>v?u%7j(qPmt
z=TL0SK2#B{MZ1pe(X3k+6dke%wK67aM^Zaiq)nrMU9nooY2%I3rEH;e^gtRLDcrN=
z!`5N#(Ya$+bQ`rDZ6~inQF<pQFYJeN{W;HVk#+cL)A8DZ=J@x57s1u5#|n_?q(kfP
z-}B?eooqt!`BsEh{L|oL1Ff*)pMhxj@-4=Rt?MG*y5Hsx1JA^M^P)~3*m+y2RNyY+
z%bAq8_x|{(b46AntAD5Mk!ew91=A;2{{HvXSso))YAuwC6lNskSEE)#!uuPW?}f0R
z;^2jBI>?m@Q+ZOvZCOmg&}r0c1qh|wM66Oivmkj<=hvTGBx?C<N}KXad1ItVnh=k-
zPd`GEDKk86O*6fEtp-|yh{|UncVGHRj>7=8#sGypd0IJj{APUS82i>AVMaG(%aBZF
zS$;BwB1LQXnw-sLu`%0?8+6bZ#E_d#i6QWyBTChx`17rpn59u2hFAWHaLt<u&Snql
zs5c0XP$FaYw6LV2rZg3w%Kpdryu7LI4O*zRBp)i5J~j%mq)euvHo$vpo4%eKA(K;^
zNzuqz{<=?}oJACta`sswI-P-t4+k;|i_h3zMZx=Ve+G^vr7Tjqa9d+jRIyY6nW<V$
z&}%_WRj7X^RJ`Z&-@T}lVcK%>_x)J$^TK38VQI%!SYgG_3=5aAF6#WR;0rR&`1*kB
z;FTTO|7J4&1%8tZFj@V~rkniAEo7Ww3HvDy2@zs58E2%3J0<Cm$`zl;IOC59$=9A+
zT#}z~+Q|zaQwOn!cb;sYh&Dqalcyl#j4%Bp$01Hd#u;DD@@I~Y-q}-;aR!@cr1teS
zIa66IWSk+ErXb^t)MT8&WSk*VxFcJ>WHQcBq{)QrDabhE&yaD(=jBaxFO~^poFQ>c
zBam?hFBoQb;eeXY8ad0KpP7E<oPCyviHtLtu#>;9ka5OmStBI7a9iWBsmM4(BKuVT
z|0JPeLdOb$_4n`mS;@E+R#+i``U0yBxfOpJJS+Dj79@R7e9LU56;@bbg%ws<VZ}cV
zUTZge=@#R}cGi8!e<c3MWM%K(y|{4Ug0M{$@4NalgKZxJ0s;j4M<%^L;|vey@#V{x
z$dMz5Fbidc6+a5x{)-kZDwwQ%i|NSsHd(R43M;Iz;_tzaHd(PA4D>hPTWrX$T)Be9
zix&$gll{!#1xc4KT|$WxC4^b>pOKJr9@);lYSpU3!Z$0d_>o|fnt#fM+zKnKu)>PJ
z2S1*WTW83BIR4b4&VK=THlG)D{)l6szZX(2>a@a&9|_(wnH6a(A-BQ`E3EkciyunJ
zm++!a?(eO3<W~F%aHISgXU46t!U`*_u)+!}{%zp7m(=G<TVaJ2R#@?;V4cOb!U`*_
zu;PD(bt{UW6#7S7P^m>vgqlxTe6VK`HeYy-{o_aAOz_XJP|-v}uFM~dhE3X`Yv;~r
z(W@=?T#FLiKS#jX#aOuQp81ZU$A-Z}aqUAGw*RsU@4lFDS7F_t-nbWMzWvLH#)RfI
zFktmn^F45Eau+n~y9yz%Z(zj^AG7QC#s`e**bYliJVJD2IF&XTu}}7+L6!RG+_fv(
zw`qwPdv4?2uEp4P^(9XJx&XH$%pOxA7*o2Agy~#PGYo2c2#cYMD6F5o67Nl}e*z&G
zR;4;xckYVLRDT^ibi&0qUrqe0FsNb>7M*CmGei9fV@LKw%XY0XZR<_JDf-<(bZFca
zy;^j`b|2G;rm<l`@Y%BjBW4~H?k&*2IfpJC<{)LPA5Klf&}|P*H?Q`gOw)dNZ?>@8
zIH4~#?cars2U51JuOSX&JCDP2^WFc3w-{8RD%z0T+O%#hm~L4~xfNDeVTBcc6$T@3
zduYW^i9KshA^OEDTz+UGND%>#@G>L@fwz6|F40tNk+1yl=*35Y>>2q46*Ksd7Xf+=
zRkG>wN5TKfF%;{*6zex`z|IB3uzFk<yy10}mXiz3f8#?Q<B30)MGdu(CkbBMxPrhW
z7qlJF3F!qsqeXmN95ljnBR#*4aAIbfq|`gls1lQe<Jdoe8nP-e9$G%Z<qN3r()T_#
zoxWtcHAZ6B<pX$d^C|4JltI^~#Z2ycHDY68ldZQX-yEljNJql|&SSieNnU56S0x}e
zKIK`J5rUsUv!D0pw&JS1F#6ZYf<Z0n;?76GSwP%7e;9JL!N&FLv3198jB8OGAD{Z-
zQIH0;2lYo`SCc<gLM#%Kw9pHgP~rZS+lZ&=`RIB^QqUPR?J}CAmImzyc7_)_k}UMv
zB+6ULH6c30#*ut9hR@nV6kY^sFm1(ptlO{=EBckgu-*&J&yw)=(IY(lkU}FeTFPjW
zeZa}t=rMb*aBacrZrz}+G8((L&BvPseQ`Qmi$%j%qS?ZAShcDfwv3-nDiRR(>=w@6
zI*7{;f=mGgL}B&(**J1BAe92+nJW{{FE^!gfBzapg@ohcy->PKz_F7)C|<P{Iy5LG
zJZB`v$3l}rXVt2yo=AD{y>th$f{PJhFZ|#a5GK^OA=SHMxiIBGO>xDmw8C{Vs6D(F
zW8ud2*s*h`VDD`;;reS3iHwlY?~h@GTw;WRe&18|5mVX<sSz^z%h%t&53tGqx8?n3
zgAr2k=Yzk=?XSv~>rwiHWRbFt{&|qxNKUEi{r6-?`KD)9Sn)^TNu9rkkc-5Sm=7NL
znIW8dXTJVNq4CF-51u%)z9%+s*(W$jq*6#Je^P}4b~Ym1U)}?QCho(rtuxW7-!dX~
zt#B%e$ljG1$lGKVg-~Ny?H0K6gEtuwQ@&i&rJ*YkBzDfiG5T@A=g_+CFT(Sn{j<<v
z>3ul5xe|HbiP3|4qDj|Dc$TPvot-_Lr0+1Q)j+&6YA~<sa10wX7%i%fBWfmvQmV(!
zMbpuvRdWnnZ6eg?XOG9CMZ2+S_7JQ&5kkehhuW3uW5nP|xcbIKw^Bn7*Bs?hC*cXM
z61h)&b^$I0TO)s3XMDK36TPRMB%wV;|1M3?qklJanlud|AMT)Tl|~pjYzD5~zm8Fj
zT43Lqi<sP{Gd5q3MflC*=+}7&hPUsEv9m8z9s)45UUTd_dl8d5cg3!I5jeJeE1q4s
zfc5JZ;L`0oSbpe+IX{3*A;<fNXR&$PW~^Ah1;JEDa=8MIc3LcM(FSK@fTug=pmn#N
znAo!eN|zi;p@^l&zQdwvW6-{4O{{*XMWF9d+&q66yKdgb__o9Fk%(gFe5EmB@+5Sw
zRTE2n`D;ZOruArzeuGD&U*)pszu}IM2NOh4+B?D1hT0c3e7nr)krZW8epYvDfW@26
zVC|SL7`pTxmGK1zH)x4{=PqJ=r_R`YSBraBj^Nbc9k>%>q0dIN{&hd**Wu&yoe`fP
zhHLy2T=36^s#z!jmqN%Ba~pod$g@>whM~PX!9B&cluO1>MWJ?+Q82S(>W(RM3*=H9
z$9p2iYp-R+$|>bYQGEqOpF*g6OV~W$jDhnn;l+^&XxMB3CXDKjrtOB{0|kw}wiRtU
zw8!9KQ{W#N3ny~BG`l0l%sz}G>nEb;u$35GzYT8CnECGTaFpn_hJ3_hX#G}LJbxnw
z_8*Qujp;o+ol<d-K^GN-t?PGT^~x3h@M)PuREezE%FI6^tbZORa`|_INnAn#DdurB
zKKyR_M%c(jxcW?n{Q(jrlHczkZ6;P~l>~eJWOxuSLR7Q_AGACu{&rqC&muuyB7{Ur
z@H&zDy+6qN*JW!`F#b$AIG+EV+%a*c{^f%N5uaw{$jvCmeR4~p>u=8!hbRA(ulRTg
z9z~14J1H0HC{cnvR7ZDW#E^gI`2QSC_5LATf;Xh&o9aDTo*H`pWOSblBaB)xeCe6-
zAI-NF{}%jZLM{?XVdv-odwYA~r<8wwl${ww#&t=Ncpnx=q+ALcJ6qBw|73S6lEBuS
zj)S8k92`v7HlLk-_`g6R(IX`I9W>N2eVIEE<Tkcnp4Rt+@c!&Z1SL8{=j4VD$CiLU
z)+_m~XNYA`M%~BA4Uw3)buvaxU4*Prdm+tW#Fd-DxOwO_f<8td?9EO1q%DaOrb7>Z
z7;K2ptr^h{y?S&*i`HXMVcc3|x1sbSOvKKpjz?4iF;0UH_F2nf_M%OgQz-${m+ptH
zjgmSw1EM42Ap39~i+o?8a_@c^+@~^>By%nCyb7JiW7FaJxVhl~#c>+_Hu$4vr+R4K
zrZ%=r>y0<mNq^AVW6tXNsFIcG*5@!FN$-e(eKTX@t^nLRaR_BwH-cEFfnJ>e&f30t
z(_!0aHg;{<gP|>IK&+0%Ta7&yteAz&&-dYO!I2m>x*s;oX@V6imf`xTO?cp448te)
zL5)gT@$}FtJT5*4qeiixM)+m!Dm3od3$@z!MAvQ;P^(O7jPFp!oF9@24TMsK4IHU0
zJ5pPgn%fm`(h(OK4N>T03}1K;D|YV0FROdQpypX>BQz2_beTL0`!~17!tooBr&&)_
zY0wevOJ~RX_dMHcKv<*-ou|yj{!J~ha_%9#IK2XwojYR7x~1sbG6&vAq%;PRBj)7|
zbn4a@J$iIPgXYUHhDa*jtj8|_<uP~O5X|2=AI}a<#-VlV@w&`7j2hVw>u1)-f`#)@
zxoHnHYu6ja(pg>%5h-4*oJC=N-_}6?i71vq1Qoqgmf?usGt0-5q$CyP*o2qcC*XK&
zHsrPqMR@odJWotHD{X_)MRUN{=LX)TcSq$K4Uur>8g3okgS=h3!bKH|h&T<j@!=3>
ztbqB;HlvR61<pQvfk6XSq34Eu_;uL~WOJszN9~94`;3^kejLWmSOUl3y>QDCkJHy;
zaqHwoyzqaEr1v-RJbfWNKD!LYS{*TROgrSrm~vG;kr0Ut_FR8XPXFNSI1vESq<kLB
zG4i4U<IXEF@0rw0^h`gCKY=)<xEDyJ`7cjHL=dqw5NR;gRPuAaHsSL)Qo{5swSNmt
zVN(7q?%eJ}K1i`YSS<9dsh?ZG3I~z#`wDFR2zV$>gBFw1lyUu5Sa$n*zK!5BZ>L|B
zLr=rVji)jkc_G6sBIa^R;A>%+c&bz)#8bbdq%e1%%Wyhe1cf>8CM3&(-6TZdShh^a
zO!6`Lk<&Y|?~xRVR98gT%+J2eBgetdBt%R@LZvtpLb9T3i@Pb^&+jex(v9^-IklNR
zJ_<acSIjc3@L9L3ePoEFdlRWnj@N?E<JRj$h}4i$PqKJV^|<*J5oWsnqdX+T^o)O|
z^cX4qQyVdeG3kOF1|qv^H9*M;L^wG<OW5QvmN+f<{MYic+^0^{g3tXXyIG*1^4+BO
z?Lw3o3Th{UJc;A%yDh`<*D^e%_91+2p)h>9uz?iLdABJL{r~x_dU763_o>sh;y(ui
zw~4<1CgVm;0Os}`h%w{FVfff_IQB3aHvDFO2C3W@Z!RxKzsZN;kyeex<7eY(gzno(
zIgxQgQUK-;8iLW3)~FF9Fq+aEHGC*mp7i@pq+9}f=THo5(iKl*cqTe!-k6N*aC+q;
z+zP?pLdp+qK8oCV?6CXj1C%f1iq$*cLaIzYGF_jP2#uX5T+H`rl^PW4Gz5_=r(%_{
zCC+xxV)(pWC{wDW*~gEADlrZ%M=r&xRm-ty({>E4o*o9Rmbw*F(=r+iBu_C6dOgx-
z%_+FKXLN-#DR4%i^AVBswTSkrjH{bQBks;6Y+W`T=RQQi*47SLJjshz2Zccdbwn6G
z#D2v2WBah{#7op_-4u4(L^yf4;`cTo(y3I))?gHzj}5?@+Xc|Fv<EaA1L=x1xJktb
zk5(aLCZ5#=3g<5k7aK90++Dd3MMPu*+&n#mXJXfMK=gam9lHV3%X;AC@lDvUdKZGi
zH1P0B`^k@79Yq5-5k$4gv_!2T5}Kk(>2(HVC|nJV8#G3{7ERzuZA!<sB-Fd}7Y9RJ
zG~(>NK&erL&QK_ANKytkIJ?7LXznsdG+JnMYUn5~L532OJe}Oqnf=Hi)#(rw5rcHu
zGO+_}9nukz5iZTp!Xa~E%vrh|Yu2nrog#?{drxd5HVX2z8O?q?kxmg$a!7)km%HF1
zck`e!#zIYU)qidirGJC5?b;xw^eF5c(2!m&1ze1gW}9#gB6Vp%I!FqbG88TIK<RWz
z*nZ#~Lc?Cb_rV*%-GaJh3t-oZmB^K^4&7x&RrfO(J~J9E>bVQ1I1;K$Hr2|UHJjjH
zCbES#F&?4xmSh!n8&yJK>j+&!9Q2M}V6}lqNq2b?N^~EFx3h;}r&AvsZ14^}r|(Cp
z%5|}7_a0Q&yuraeOR;{h$sXPWJ#5ouN7v?c(7H|Af5>Eoi7MdpNRDOifl=kv7+YF{
zoHj;kOWc%1NYavQi3CVV#_@Emqbv%ffZnA9y5}G9LMW(l&Lu)0K+36xp3y4-o!%6N
zl|&}LOxoFh61k@)4MfZ+4EyEh>_0WhpgYP2$H#H&>4u;4zicTaB|^$`IUG(+1TT?(
z{P{m6q~z}`k-eG)bg1a9ha;6Oj+mL2;u8FF0$g5lOP+}|xw8y7Us}3NCPdUbQIMn<
z30|lTsF6#Hz9qFtOKwb}_!*Z+&9X=lhKcM2QVe#!6ANZ!QYn#o@}DT=C0Vu>SqQSF
za?c{!z9#akp=%*u1RdqOW)8jZ#fHnAKtGm><vIW5deEBdftolxT=gjHM!v|KAS-&t
zzFC$WlGC*0nUx2wGY)I1cP8~ldd?PDoOcTu7eLpxGD?-o#qqGRWFWuPOVWRwGwOjz
zo^0pJd6QAw^AD6^!4rv4kD$2i$W2YM_^mvo{!+lR{Zs~eW+^*A7gHMSpP~@P+61a2
ze+t|*mkw9&DsU}{<d`Bp4#)p-o#`l$(Hx%3z;ST;oINfJx80O7<*)W82{Je){+HsX
z{HVx}j1^mo&(dbOJ+W0Jzjs2ta~d3!0<ygFXVxM&y?>VYsc8xA$$^v!mbs;Eb6hg2
zMD}BP->4j%hWVW}jf+<N=RoyO&E?NSB$h%K{|p-sJVndSebBv4Ni3*Q6FZ;9!j_1m
zy@Mkh9i8A{XJcygMuRX&aB~k238jWgjgop`8#@O$IXc3bXS^L8sKYa5M=X`Yp27;C
zuwq3zH0;(Lz5BI5^qB)t6mKKU$kr;7i8?u>DIO<B*xNE`6~TtmH_fIy!P(KC2#u|9
z?O@0AuJn?~Y~bKv2U~OcO1VsU84Nl-{Ut45@Xux7IBj6(D8`MQ8}U5B0nYYH8a$*z
z897ZG#rHizUh{H4*1jx^9rFfb@Zcd>xN-uHPaT4Qs6^`Qv^0oBLG6|YO}rjp=IX2P
zJ+Tryp5;cZqU9jDw-zy(%A#z)M%cV;H!9YyV2<_2f%Bu65FHjPV9V171Y6faNT)u5
zwcB=L@wO9Yf}qFYtsAj_-%gBLb{n-DRYG)F1XMaL5)(8?dVK|>7w>_CyEk-+2@n}%
z)EP(9AWISIwTOv`gvh-)`j<`vjiW1(IyEAqxqb|Yii!I))A}X!h>wm$5*(3F@c^&0
z6eqU?3X>oZ=J3dPG;UiTr+*!S_1jjU?XX^W8KFUZylI9%PsPdz-7y=Nd>&xw)YZse
zyAv*M8H2qKLy;|gCPapZB5$SY2-!XpmwnmKD&(rt3Nl?RViQb+T&WGlwgcuxi3GhS
z3DME1SF37>JhEMUVpJs5nM$E+t^kZ!umKxZY{c6r6}4MEVxyyp(h{^uh>1%gW!Di2
zuP);1!>340N+KUR;?l`}A|qo_s7VXNADo8GyLV&$!7HS|rfjcT#K$H=A-rk|^c^}7
zTPKYL3baJQz%|%*{4P!{9f4QwEzzi1B?NDpg{!w7;Mb|^kgIYtxHvoD$<-qyFUxFp
zA_kPng~hKjBfs)3)~sBCU`;Oc>!QQR@tbjQ;VeX!Z;K*49Y@gXREUc=QS}ln24K?I
z5$Hdz2hyf3i;iWo3+@)=s#pORj_gC;%B6+-isjvLIm`o9sp%z>f*O~ohE^3%@tN)G
zS*fw}!ssTpm@sAmcC1^9bI<%Cb}5G1c2_ZH^9|fQya-3%7ekezRgrXQJ&gIPqguaO
z*t+5nYFEyT852gsUuy?<2PdfbQ_3e85%R<r3)k($s(;XAg(o$Rz7(TNNex`7>lDik
zXp~Kln~xM2eNB#~J~G6SpZ)jbn0HH#={MwvA%E{b$S~hmjzu@+m~u;oz*sR}MvAf4
zSAkux#fXlP;um`M%M}H-1WTYKBD(IH0<*~PxN~xRB=SN33t-Z8_a*tI_~(=VCC?;~
zn7RRhsK``e^f{`;vfFZ8dnd!#i!!L_xhzSH;pb(bKadk42?~;74#hG1yc}m@MMQW^
zq=bojM3e*%VnjIgK#tu(VjR0G$IM#_45zrr8MhuQFy=ZbCcZL6Qhs<8;p&Ksm0$(M
zxtP+Pa8ZsRCedcH!-VMaYbnAK#aMY;f$^v4IT0{h3U`&_n?qq{T#@62j{Ta#Fgd&R
zR*Z|!Wte?aig>vQx1Y%{!$(f#Qs4uHeMe<vS+H!U-;p7R^59RhUE@PUo@6UB3r<Ny
zY{d;3ZU-tbn9`YZRgNPerdd~RUtI3kk1~w7OmR_Ntt8_6hU#tiTM_)8DlnGHJM)SX
z!>>{Og-9{zgc9@a$T5lJcPoj;Kob5=k`w1;I^`vf($&O^G2yfl)5+~2bw8;HIYCQg
zde=RYCHdL*UW`{%ucIH)I89xKg4)siv!t{UVdQY!_U=&IxF0OVRLc8nlGEEDDJD~1
zCsG@^ZO+4Xk|XC~2IqmoS!SlW-8_9E#{ddDn|>!k#ZZ!bS5P~fO|lwuQznqvE3YNO
z7lwH^6!3|rwoGN5b5(&J^jt~gck?AB4n>eWRT7M*I`Jo2%%eQ~N^O1mT^STqN0Uw}
zg*I>?Sd7RhdQSB<?-JDqmC^EHpWBNeUW%SalvsIRjv>bsxULc*nA+vSXCwm!5I_pZ
zuTRBrQW$Z|pX&KK)!hX-G?Y&z#dCq)vx}7eRC*7VQhIafebJKNcxse$>D`)kR*3^)
zBo`9kIX`+%ex_5|c`^P~lKXg)(Tdyj&XT-^W?;pC4wAC<noh2iKL=@r)LVTcn2;Ni
zUSj+HAPgSU9a*yEfn(4%tbCOleJj{w{LtQ5zkN5(zSN>_mC}fOdJ3nXr$P5t`EdQX
z4+_+%18;i+w$2%d*=u%V>t#PYKf4#wTosYU&6Y^U1&my995w2cqh5jrdyx!j+}+`o
z-T^na?t)i~VW^eQ4N8Sv_=L25?f^_%vKJ4+?NPgCW^5Te2#4<aVei@{SbHuIUV1-F
zpEd{Q14XDq1Nz%*YcO@iRRrGNfmti|LQEvBB#r-D79K>EUR@Bp?-xv*zZM4%9)@42
zJ+j)r!h%^FaPQR<1buKonPPUBKCCyEuQ`U;bh#+3JG3T^<E!A=Gd|6aPmuf?o;;y=
zgMv_}P912Ca+GUW4_+?jX+)b$C|xuI@|LcK!g;czV3|_LmLnUgH>iy0+n4ZM?SXDX
z2O)DB84A^?g=!@Wz|B4fnpCZf;zcskU}B2qd*b!$*T|G9qd-Kw3YJ3tJelEalOiFx
z2dY)hg;${lG;H4sRf=UpmK+68r9d_!$Kfd2wm<6TOovQ`iy&9_94Jz}Aadp}iBjol
zaQPUIN?j+RW-b?GDpDLdvSgqE!4btu=12Mro~YiaB4S>>fyUkoZMrmqi;WYC6)uDf
zo~GGb3tqi?g>2b)wp59{#fu`NcRJ)MQ6F_G6hIm~R}?N*fYL00B6%|-dyxt#naLLK
zLbPZ_dCQwE1Bw=;^e9fLM}Ab#Z^XTuuVE}y2NOG%M)m@wAdCHgaD7G$9@~%dl@nF-
z8FBYUAW*mtCUq(en=~0wD1RQLqk1e-yfAcP2jt0OnrT<MW<=4#x#8)aJXP#U?@->H
zB#R2Aku$S5a_7qpB~_lciwq~OgrZ09)+kcCC^BXAg48ZON)^wGOkO!qB9}YVc3Dxc
zK}C`QrCGW-GP56h@>3!ovSi3Y<#7S%-uB~NymqOC=B3h`Q?)~Z(j`s)`8G`sl*^kD
z4jFQxY0VsXe&YcGor_`0ur_c{p9hum=y3OXAjHM$VPc0;P^8O^Y_4+HrOgZvd!Al1
z!aY|B)GD4CdOa!9)IQQ@FNBg6s>Alp3q;6sW9ZP<!b}=N?vNfuixz-qI%ksu!)S}5
zRJIJ>?x_bQ+w`bittQG8&Hx%?DUU@^qi#i#feVywnNX-e4&=yN6#4RHgS(Rw-uVh5
zcjl}pSfc?vH9^pMmPEgvZIPYYP>nie5$byt&voh1Zy42|lN3ekR!7xhdEnxd3k|DO
zLE!?~QIYcYJ~$8#*=l1{zZxm>L&{x|+(fSQ^bSZ-uwX%`)#`5|<=h8cyLJs(vu1_2
zx3}5#OK_i|)9HRYPI8tJ3E2=JL4$l+%8^)@!DJ%$;*A_{<T}i#tU>TIISwZnF`}3j
zf&L0Sk?Bz<s}7~zjmYm|z$qd)`3mX~^-+X@HC3pZ4p>dZD^orV+IbtXgosbMj7I!=
zTY_=b)o7W?AdpI)b!Tv|m&M(HB5ryVbpy5%2`xeG#EJ64UZgq+))A>2RacD?RB@Z1
zi%>6*9!j+YyIzS=HZ2fDMDW}r2^x}OQPEzEDZWxP%1yGRICw(V$-#&~B7cplC8468
zh`T?qs*Vb_p>iBk8<9Ryf<T2H(<*AAptvkOv8|l}WjqbYP5BFXL*$t5OFEKVDPA_u
z$?XVS{s{b9O9MY5*#>?c^&*^n3k)rzg*;k{Jz+q7Zv(UxDbIrH62wTCU5i0Q^mzM9
zifDHorkB+smdM&;nE^GkkZj!y$WQV;N#v?fQ4K<gXb&aXR&h1Wo-$-4oU<<_xJ^W~
zTwyf^=GDWS&2h}+pJ(IGkOC6xrp34tS`<$Mgp*?OTutFfRwL`H(A-Icjju(h=qkd+
zL<5%BP{T7(ihWT=WFc~SJkf~ZMRj;VN<)aV0dMXrV9c$;xMF%d@|Pl0HXSliIy~}o
zehxmDpnWAZx@Q29Y$@86*5N3T$}+ihFn*L{bF=|Ha_WUIB0P(0ZzO_iN9C`eg(y;r
zD;fiqQX5H|AjN?gBQnQIaYAjtaFW&2r=;+Z-;yMAp50awp<hJGM(L7j45Ids$<Bxe
z<mawZhdES__wFc=;HgJFYEu_NfkkyR2qXonNp%%EW-yYHDML-_b1(Rdkwm07E48Ov
zRP!CF?Uf?=7bN)~qqdkMrw*6>C|pGi8dA8$XXMCVfckka5TTZ$JeAFX%FbUij7bu#
ze<{K*4OFNom15LG5h^>2a90gfPjA2n(nKFp<}+xeh;`Lq0@b@8$u!1QhlCJ`K)xeL
z^LcC3V`_N~%DYiPH4^N611zEXs^K8QjC&H4rg~fbN`x_GHPD60aVpLT?<7(V9krNP
zMh9t%Hf+Vu2kw*kl=AP5OShi=Z;BYtCd=ds$PF4i3;Kv0xzb|SxZZf3r90NFS%w_`
zn=yRTLnv6q7CP`mTswXqu_6T?tQ&%Df%&j##bS(ZQX4s)6R>vIRX902<L-&Q(0Sy8
z9e+O)!1ii7VSwUKW_rEpTC9-a?wY~a`>`~(ZC`?@gQIZlc>)5joxw{*2`pJY3!?K&
zu`jF`R&AIE^}bm+Km(W|IsnIyUqpqjbFgYeO)MBc4WUF%*iuEWp-!r5JIwuME@n>|
zjO%mz<GxcdR4tett%lCWxWVPIXGCvA6&Z;gEBoN+jFEVpX#d4*!(WBcEgK4FGnqe_
zAVH}zWsxCEE@bhrN5&$>kdAr1O;$ASKM;Mpwm|W$CWDRi`O6@8TI$tF)`cpT5@vgT
zG`tFxCuQKvX5^fu0@^okfLwX=pg;zDD4esPWR3D@+`c0zQ^I~A$X22RTop>>DOpIc
zVa!~z20FBFgUURz6LOR+0~aQ5B72l9lg~6OXXA<bO<SUUqlWP2KoTdEDw>y{{05Xn
zItzm*fgLlF4BgqN-WkP8<bbWC7mDN&3`3BuSWR^7)B*Xt`6IFeN)}0uGkwXH=s2i5
zdNwI%%7fGewHmiXhj#Vh=^%K4H~Hx_s2h4VHu;gI$%4Y!O>w6$SPf09<`=FR3YW~E
z(zU=fYkp)Vf}W*VakxrU*t>c)4xhS-L%U9+>8Or^d<v8+24P8njW@~_GnteWt<o43
z3uHy!qWRcJ1qD<1DO<!Fs-QcVJ9jH?o!JN9u(TN5n!gZOV28pM{{p1QU#5s4D|x0$
zXg#nu26w27v}U~_L#bBiG?>cRsH{m2q-4~r*9iI2nGJ?Sa+Ii47Y!RVL5r5H(5`(4
zWD(?(2DQ6%M5k``A&B1$nVmN&CMI*5PmnmGROvh>1tAqEZ>7t?-rS~T)SfC7H<_m>
zU9+GdDIIp6d5|ZgX&r%g{=&%U!0l3ra&_CGVZ{<CQzkE!nBbfTO$Q7>|E|rbZSwm<
zZLe^7QZBfklA~y)5<>c7k6dWowmq6PEcID_Y*4ykW3-|&wr}75pD|hC<ZMU*qQBuP
z%VIi{-74oLGm#P=)q`Wih$j+v;-!@IWG#vkxxG#VZK{t9XWmK#QzD&?O#nntb9YOA
zUy$Rwa4`<Q6`>{(8oAPdzPSt-ao849?n|MiG%Pcn!b~iY`Xvu#xcFYod{)@0#?tk$
zMU#u80WK1w;LZvI(>XSu;69Vh8bJ9EB+}zYr27I9xmLM}0H&NDqHs)zc}+<el_xEc
ze@;FVl`$g5L=J`WYD@|OKV;K{H}9pGd{u!HZzRIPX%6#AzoBc6ljl)*E{el38IFyY
zAVw>~1(MeXsUDTnTE6ZIK?Fk0;kck|rjnlI$=CMOuBCK&Ly)Z;XWogy-`I3odd#vV
z8JkR2lEHFpT~v!lw{6hjtQ=2>K+DLD!6s~_@@U{dgst&G1<r?wKpc_AE(t;%^za~g
z8mUvTV|i1$8HjLm2IX=ijmILqB{?NfT^=XWZ||u?eiHWWSfB(cD4;y?Ogwo{1zU>G
zSw^lzj?)uiR*{lZo4Vrrkz(wBB1X$%I*<<fDICj<%|zHXgiUI^oai6AmMb|A)b?U2
z4^+3D2S-mf=U`cw!jg#5hRS}=*9INW$>5(P!pArfvNMULIP#J55={4O%E2Zv+#Xo&
z8vYnZ@fWAT?bHhqiV*>q#fxz#N`y+DMqGL<!*r7WS!&x!6cw8m@yB*AYQvy3IGrF;
zf)2k2>QOr*{q$3L_^-P?wH@;6=4ya5Ws;YiGcRD%FP_yGI08M-z}*bhXCBHYo0)LC
zVsoI(8MUZDjjzs5TkHrTAyYed<v2NVk}r?Rk#S<gQJ6C?WQefQ3B;Y{m*rC%Cizh~
zPS%S54$Rvg{<Ufs%vM64V$;U;STMOSc1G30w1!UDdHEgMwXFxGjR#scuYik3k3&r@
z(Ub}ic!dHsA~lX2J%*AES|FW`l1M>GG;GrxZ%*$+v`CAiS6-n>qteg{Z{Kf0L_|W3
zlc&!?BuT{4gNKn6_69fo!l86>MU~2x;o#whylLH0phyuorAY%9dZVJ_lIYDbB3qe;
zD3!?`UIoe^SIkZLe2|$sLx~(V>QMYLv<pVeT#T2IDkPHjEvJVHJ100ALUHK&W60wI
zaNzQ7BnI5Y!?${2_T;|;))2qtnDBoR|AYy__k$8WXD`6$z8%ne)*4K2le{4G&qA58
zJl3wCk2alpV(#iyDCPch*W14lf4}{>33`zMHN1>i{XhmWkrXCWFNi#GZiEk>L}uI_
z3~(Sa(z&<>eGBPO)KP@(_hhJEMvcxyh`gxZVtZyib+rQVB)=Ico`P9)=w4ETwwd*i
zYlwIh(BNP*72<;AxJcwj`0_?Sk%q|HYcYCNQlotVouKe=G@n43VIs}5s;tE&srZvU
z<@2Ki!ct{&H`*BBLGNpwf?D*XH0u+wV&aohs!TeW2sshC{}4tI(epQ?G{{LQVWR)}
z2TC@nxcO8L_v{+<q;eJ`rBWc$DZz1?6XCB5OfGHh^spg$bSkDn?_ydaOR3{#6U<oN
zQIrTV>k^h{f^9K{-%WK<w}Ogft23<)q1R1MB#TrwVK<zV&`~^MS3Tx7NyI?X&zC;o
z^-HE_EEg^LA5lFCJ4zWbj})i`N<>2StWFRM_R$g1BIcMpoKe~MLS&K!rInTx1qU0w
zsotqxauH!qL!|sc7!Ua(gi$?Eh*aQp)D#7bQDVH6uzw@!<<ep64F#?cOKs?4go-_w
zK@<QnY#~PSVuh902{1ShtgNJ?JUEg(g*+6bJUE)%1wT}FDJfP9sqB3{L|9COKL?T9
z=cIUWe0~ukq*1Wlx=FU2EXzBNDFNlBGPnEZ5)>qbshD1jUq6aahLryuq!>1?tU@P}
ze_F~EhvhnAr3j>~q$e2^&#prcYG*Ao8el{6PEoxAv1YeGHfM1$2w(G}xs3GSKF@-4
zKIk?=Xam5_5K`u;oZPlJEmmq<ms8_XeKih0kmD^AY<kA!u(VT0djo7qwjHUB^(m}H
zX_704<M%|!CY9$BDHI7*v7D9_{|#_m|8Ju+y^%^Hx%OFW;K;F+$U>cko?0C@OeRFa
zKxHwSO95_lV)GmeXTnH5mVJ)OXqG(!s}|41o3t%aA)6gE{B7&^KxuFRq;e&_8#2@$
zw;r9#IUz}-BQno>aO>#>;MsL8U6bC){;5M{81*{Si*95cI6YjQ_4Hy=hb+-xR?kjQ
z*O-F++c%(I(R9%A>^!}3yycN8O&XARk)_@ly_ar4Ik!0BW%^&hvf`PxsHmu)`WGJ`
z4-LsSGBOg;(a~S^^H2X05)y<w^53sL|2O=iW3+JgNDCKx8OizUe!lG&E$q(X;o$+P
zF7_+Wt-t@}$M3;Eqx^}4*}|G7)F`JFW5ih{CY)DbZ?G7SL{c5uf{41dyjh8i8l@O|
zPKg1R<On22)Tgi>+pZ`u`;r3jG9pt%aGGTSW}jDL{UZrFl+ohiZHkZLob!zOcOo&1
zPAf3=x(u=mT2yy3n$8NKpMeN`hs;JyKc&QcUl|m(M(T-$N2VW%#)Chg(2dAej}{q3
z7<*EQlSH`E^UNU;TRXWPgNy61=%Ny1&nU6|oyC^g1Rh45IbMp)#Z`woj#OSM&;A4h
zhUC%n##3-$V#NuXp{1J|d9`@?T!v{E74W06#D)A>{G`kqFZg4b*%L|1;Gsu{bRzVp
z_=k}^@5P!H0t)h`z?E`n@!VfdaS}ncGs20PC`D#N<WWY1uX_PK){`9PT$Uq&?j;mw
z)6BpOif`?6DGi6onM~_w#0?^C6Dge|B#*ASX-qPYBN8f4&<80-omF7rQ!&~TflNbg
zPA)nO&TYU9s+;{p8hNp%jOx&Z(&Btb&9cZtiby`K48thh{#WF}7lQ8PG<e{nz^ofG
z=oCZ>sr)Qk3(`>7<yVyGc~^pd#kH^{Ma;oV56=V<ie#q7lwy92m80yQq=3aqF^=;1
zjPmV4<A16=<j^3GT881~Jn&Kz^YBY~7U8O&4C5~-a6D3k_Br&(on4DG;WDAj(H=T9
za3i8hem!i6=+fVI`Se&rZDi4H88T(kL8%kLo)m{dSq*TZ@!j6efNpv9SV6LxdqoBn
ze=VSJuGDsj<3mSnpc~2YsIRGQ|N25A?2uyte_di_ZxW?3<2}6(q>yFv)WaiQiiu|w
z2&BTfQJfBx&O>Tf6DXge%vzKoWsmFMnaZz;lVB{pE4((NJSnl6C<Cti$<ai5;6i>p
z-RV7Wr8Y)+7)s^$i#NAF$_t5AFj-l8PmVB>X^PjtivQ=}aYQtH`4;2E)^!oD;wJxX
z5KENMgdaqO>U(kH#R1sq5};CRAg30!tAA4*&oBh*2NcGVK5Y<EYYlohtVYl68FA-u
zLsao-jIq9V;CQGnhFs5vt&6+j@%fv`Ri!30K66m0@nS6Vd4x9Elt|R1WVvEExFlgz
z@ybZQ;2QcBl|n03;K`Z+82_*kwlD4p?bF+c&zT9Ut5%2CFE=r&x*GioRz$`HKIZF6
z$hN`{)q}>O)ka6$+BX7^4$eW}wOZV`)B|-qnqY>{B^>Bf0-9b2F|}e8%4MvB0e)|w
zo?a7AtE|MF_SvwbUkhBxHwH_3l*Ie{H=)g55?(~)`DOYV45XwuJ3GV9PWWK{1@`XU
zi;EX8V#tso0^$9c!KV_wc<};RvSblv$^WU@!QTVhcRhXj6nXOGftJ@GSYgEv0=NGH
z1qvW8F7BI%Irjl`=gvj7YSmDxR4KFTmtf^wrBeN2oXI;`2wX@wK!taz;PIc0IXF1m
zVhhh{bmx7_dG?uih+sdw#h*x+;WYVS|8_(=cqa><wc`bvHWWrfB!R6yOb4`>XB-8X
z(oZ11#vjf2nP7%OZv2erVR>GKi6gu4q(%azqh!+vBEp;=f2!rRKnauv`{kKr6VElp
z!Ey2IBIlC{ooOcyN{jp{DNSK^n0<XpmtiU=n~HFp9KY#_#ZPkH_{%60Oa`aHYZPKB
zFYMEX(lEgkhT~+@6E-mrHWj1CZ0f=@>^z0bVR`oq_Abbl+@w@U&M)Vkx1==1#&*J{
zx=Li?MSkt*8JiB7U@CnQ<)1I?NM5WsaC}eSOX2LQM|_YRi(+(GT}m&^ZVO)(C_Kl@
zN(3)LWm$i!clyiqN=~2hCPXfzMd9d{XL?x_yfcVUZz>4}Un0_7OAWRr(F^_=rn=xS
zA1bPQZWsK7-9FC)mz|j<=OJaCazaV;vy`3F<u3y)4<*INT$%lIKG-D7(r&rBZAtcA
zXDoXW$yd0hy5lgs!wN?)?A}8$a9g$5=5wCZ^qlLDO@I{SF6<;jVf9fmbh;|W%6e)L
zzlII@Wd_1>Poy&16S?NLDzqC4&vEeH|KyGCO=)uZ)l^;%Cp@FHS$Q>?lv&!FDWAMk
z5Ir`vF}e_ZaCyw}v00Z8sTDsBxWDK2W@~FU)BKK@y!7B-Bjh5n4Ek7KjGc59Q-2)}
zg+WajHMz^Q;g~;VG#-V}3tYS<7LI6#z>6!e)+a3%O)iPiZD*m;v^gm30pVoF{dXe}
z<CqVde;EyzxH~A@Vm1z)*$pRsk}!jv3_ip}i!CF^!?n{a)X65M0fPiXz2csQ6wkeA
z=w+EPchxXln>Z29<fm~#E!Ga10Jko)h3hp#C%~)EQe=HH2^}ZhMxml<ksxxw;IT7N
zE=MHBby|q#bACbY$dhO@VJqBSydl=8(O}#hl#yM-pf2-~uJ!;-=wAfCj2eokVU&J`
z@|ZKd2NX$sq{7$nM}&OOo;|pF^(q!ET4Z+lxpC>zB~+|fQD~SyE6$xeCy*X1toYGj
zrH>WqZ!zQg-h|u)(;#j^azA8oO@3~=`rLnNx6f(7m-i{}7+;Ief-hrF{WKZB7l#R7
z#$k!wgp^?zUyCKR%jcoLOo{Pj7z>i0TS9(41&iC)t}OUH7t<Bn7K?D?jvQCxiTv3a
zFuAx^uuo<(ZSnK@zl_iC8Gm%ggz(iHInHVH=%0&7KPv~RkU9**<nraejMTnUOZIcW
zjFfJlKj+Y2f12!vk=h^Q^XH~JCc^pzDV9D12A0r4OpKa|`se-`mN+dimBf<Hm(P-8
z`SM?eCA<k=^I^r$f*(o9CoMhj*9bX-ZOCnGWJpRRBATK_iNq3NM-f3&Ht3K<@roo0
z(x44=t%r@B5}Kq$L2KpxmD$!$*cOord1X;|tWkBu)=}k<nDDjyP#9Yq7}QDlbWA#h
z<82L1pA`*IC8;5$^i6(91ODXSbS<TP-`g<|!%pVK?frug8=C-)TE$ykoAXBH5z7Ul
zF9@IVr%t5&ie#`+%3;u|p(Zt#%g8z{myy#XW%)Pp|BaBJKYtz-DpdF(D~-Pw&YU@e
z8Z~N|@2s%m$KjtP<f(`4uMOfnJIJ$(mYL)q1L_m0JK%{x{;(;`M1Ho2@&6Y{rc_2Y
zd0=~e-cS1P0g-Y_lNZEVs+xvRVc+c3#P0imXPtT0pX2{45ZWI7<vrtnb}%VtQz>q@
zKSGvP{QL1k3Hjpvf89ihiD+U%YBJ6+8uUcc69oI+L?WvE+@Mnv8Rzd-M9LG0+%kKm
z2Wleb>@Pl1MFUVAv<}74uT=@?RQz%DYoIVhjz5uch7gY_y#&e++ps75N$KBookWA2
zd)`{;*svg?Bcmw{Jr`EySn_5R^2_^B^RxK41R=aZr$GV@x=Cs+40<kmypSfB@%PBM
z6;@bb#gBo>EPxl&v1tQ;8vmS1Fd>SJlHgLPnEa-G_9cwM=kz}hp1Boc>rFY9Ka?U$
zEyhuQ35;g*jIZObru8#`<W4N}Lzol`ugh`rqv`a_zXw#$T;Hq&=)~AS>92ewMLgB>
zkD$D4uJON+@vsO9u0@c1==x^|o7(&+#l{LN{t!g;sXPA}G*=_EDk&;;>W$**c!uT2
zy%J2UU2|1KhlWK2a{bdHF&L*W-}tnSCi1l(UWUXX@U{=$CHy>HM(7h??AW{!n>KF5
z+C6&_^BW?Keg7B_Uq+bkOn7nQ2EtSc@Huq}(O(ovkLTB~2n&J!H)wJD><Rd$NITr`
zI?i2xj`;AGxajlR?E1Z7#O-7Iar!<V`;Z#CxHmYkbu%_?+Jp`3*5LS^K&sy-coiB0
zzcZ)t#&jmpXGp-^OFl3id-FNsarMMy#F+2C9co<PzZaV}Z^Fin8?b%<Nn!ES|BCw;
z4`KECt-^`CCPd=!iq%-XbU#8<CXf)0JNG`5zcCKiu09mD8%stKuI<|+<a5)ejaaj4
zH-eJ1cz63U0>4)1*Z`coeEXB49QpbVjvx0)UX!K`!^s^-g+)^qB!oP}{w*X2s*{Zy
z)?wHFTjZ+79g?{v%WwS7z$fqnKHQ^pW6h5L7)+$_WsnSGE+{bHM}et#WWp(e{ETh3
z1-o17;iIFZxJrbaZKW;l$uQkBS(h2bxJTqt%=X6Qo(#4ZHv6Mr>Jfuy#zi=KQ-Mb|
zdQ?dR+<7a-@mEa9O}4Y9Fsb8{7(P$SlxO~Z3AWR<xLdAGemU-x&-nhg;;{Hner~$|
zGJht;#`I;u<j%9FDZ|Q$3{ScuL#gaK6nAFZXbnlX)Bphg^hrcPR8v_kdE>B_pXEL|
z9n-xfKgsg^JU=Es$@#T_WG)rqFv<L>tsYIX=!LCH*~H{iep958jO6^7@ca2QA+;aj
zC-|`-g}eD@ap%)K!y}})!GxUJ!q>}Ug%wr^F!H<g(|}2N3R9FH2qxvKpP7sko^G6o
zS~c3^ewgY0?)C*(fA$G>j~a}VZ!C1hv=HW>foT{yKE6G6KG4C@-X4<Zn`qNxf%%y9
z)bKwwAM>{+pH@k<6l?nR#p$<3q)FpI9kto{6I58)w>ustnQ#9xA~B(HT{M`!%Y3iH
zls?tasM{i_?cCsK$LsLF0hayEeh(@AygiA5D~=*ZRy(YmHU^<7np>FfPK;Y}5q3@v
zP{`%5wX=uM#u-?BCJ?S}X+E7Eml{DB-(eV1@<3zk6O5g+iLUshTRY*?@SnqLA<hV~
zvv6u{?6o!MFm0##8RIKuPEp3l2Yc|#ZeR1A3D=hN!q8*Eu(y4W0ZqG73c%4teQ+ew
z85t$_(R<Wt!Qb5ji_o)uS#+6sSh%;~=BfdxS$D=~ZRj<|br_CVxvO9{#)s=DZNxY@
zsttBOF?&e?-^D{vr*=2IG#`d~cl$)tt5+Y7%*;CQ)HKv-+W<Z()=xh=FawJZ_#=&z
z9pnm1L&p1)2VhLQ;iL`#5%)Kt!N7$uI@;slh<4cXObGUmLQVvF<sB(nmRDg$H5G>C
z(hD=E3Xw?IfBZ!>5nf&#M?{U=l!$tJi#zZB!Q_cIqz#A?BOq2x<Vk{QS7mra_YqoN
zx@I9_B81cP7v%nu!t%^_%7MeE7UAj#)1J((ZbZsG41yxSX@<p#@hnm-Y!~;5tkSdi
zC<!K8($a~9Jinp1U&V<iT*@(kcgYeVQe#?}CtOoxyfxi>%F}ZSA4<=JG8#pAPH6=v
zh)7vU9fwgb!fT43%kV*EI<8zvX>!@wEuQ3NDzAxrt0+!B(mjyk(^Fgqy619yq_Dg|
zG$dSt2$2Ey3L_lpmylp8XFTPBO*~@AUreGHZz(UI<Ur~0Hi*2)Hiq}Zrn+Ex@)n9r
zR5}0toF8&mQC9fyoFIDcPxpM(eabFUPcpw2B0@fQlC_NdQu&?}@qJJ6Dkwf7|0E~Q
zzg8f@9A1Qwc&<5)iPEI>LK8&-agHT-mL-3i<^{fy<jz|)@`7Ey=Go&IN;8!55=QY_
z>QZD7A)4HIfA|Rc8_D}HQhMwjM&SgL7ju$azX4w<ixpN_!4PK1t@!y6k42Z2*fygh
zb{@DOxX2Vr;fQ~wot<F2kHFKIIcN-~OrL{Yr=Q{Yy6p(0KGN|1I+kv^D1<q;W;y)7
z#*V)uc+Eh~cHPmWd2@8>F%Mqv_u<96Ky2S;%0u+Sv)JVu0oycbU<~uas(B+Zd+!Z;
zB84rHcpI4>Z~cRW?)~}Ut(Y`&EEcTd=L$GF*yH}OLl{3|EKWa-<meFl@G`cn+JO!0
z*3y7R4%)ZavVJ30%$|#z!Ksg<H^G1``76Qo!wZD)ZP){7GL}GDFBfPM!tmyUiQ=Bz
zG8e;!4a456elTi3VC#lWSTScl9)v{W#)b))Gife{Pg{d`oJ3M2cFviO5yPhA@&nF<
z5tr7CGx?dm7E#1mx6hx6AY$SEH}+uRqWPG!&re84fJla%C2F8~<ECiap%W_Sc7s&L
z>lP#k@edI8XGZ8F%$hU|3uY|CufLuq2S+&Dig9T3S_~gD4FM!D|8r~c3+3a`!#4;I
z{y;Bt5)Lg{jh$PTVCdj!cy6xy2gg@o)R<{lGix~x+<s?rG{ZG(LG*6l2rXMQNAKBV
z@qEt(feZ(oT7ualr(@`Zxw!G1nXDccR&yEWVZ`)xh$I4YdDmRboI9Tea;`mw9*K%#
zSUkBu+O{5v^4bS@`1m<C>`-9pxR$8hX9!%b?ZkZ=^@}zcgbCyNBYg_e|ML8LT#wFz
z+<Cpf7_eP3=Rxz<_0h6bTXgKw7#>6wBuXOB!i;cAgkkahEZ6|@Kn=e&xgNG2y=`(5
zd!t6Za=38HG#h{R&@&XxQVo(6)9~Dm3s!1?Mva@JZQJ%}(x8Cg?&R)<54X;u+4%EV
zyYo0oyEwooR|=%;9|sA^St`QycM>G20QWQoP!kajr#ToT!394#Houh!giuB#?e<f7
z3U{$U_;%b-V8bg3j=q#(=QD|5>w6_o3V$M!7A2Xy;o(~;uD_SyJcV8ITq4YDGl<g)
zhrfhS`Y%36aNwaF>nT3ospWOB6q{a1;S(Ukif2+`-)aUE{P(<vHnCGqE11F_zc0t0
zS5mCMp~S&Z5#`MkKX3oX$I&l%B7st2x?cQ@NcCGeet9UvEy~vcN`vh>cT*gfK1#6X
zjvUuwnHZ<YBa!24K~mhNGAz3y$1@_V*D0^dUrKP%Uy2K165$I1zsr0|rq5#qMqQQT
z@;f5O8ZkCLkl|*C1gm{zcuVajh{$V#T8yhC-(X5}`6C&8sk{sBN{MiaG3AsJ>qt&d
zNofcOmSM|FDQ=RCSG}P6&`HqafD-#DKPM>9OJDL4?jmfVy4XarJNR4*-*7Q}s2&do
zOK^_zxrOTM(+(|Ep7<nE4(PRf`c8`b<agCgInKS8Vm{?LfRz6`od4^Te+s7}8FJB>
z7_Ysgz%6>gZD|Mzru;6aw8KNCn0;H0)0Dqy_obwaiZJJ*0v{<I1+|B{m*qsRCFp*T
z>gKfsK}5Q_ZE!wB<ldFaa`24=fnhR?y(EL4chE_YVia9#DQ#8|e4og1l*)33%EHI;
zb9=PH3M*3Lr<x(R!h)pdNAX%&1Z{_R#iN6pOtTi$`3ay=%|RcG{+*^Ecb~}^-@PjK
zEf|U8hnC>*10pqhCt|>?gH*Qxn7rv0(tQ852dN-e*x=&Mb=bFe57y4=gOJ>vkluI)
zE7vfI1S0R9#JbZjNQqFu@0ma9bR7qq3(GNn{|(sN+Q3E}i7kt^AR+h^Dh@r08ohhL
z<N0L-KnHD7EP{<0(XVNKOd7M4Vhcpy0h>^vQyX-tl@3Gu%|V<t6yqnaM$X#pQNVIy
zWGd*Pv(JEGWkRsd7kG1h53<zi00$a$qMu*D`omA*w{sHKJd$GYs9tz*V;i0aJjH~m
zYmvWk4><X)!SJI}^qM#VEi=4A_t^(=aB@$qO~{K0T`J-B>1znSwj5(m%E`}2v`8O-
z*5me|aQSk`TeJjf)T)Dg*>j*q@m%KouyQ5F?S1pmscR=R>(~oE;Uq_?1PZwphZZcx
z%h*VaY&!xO8Vy0K@`+eHZv%z0L&)1e$a2<3pW>nDHsUzEOIAeQLS;}puNdp*tV0YE
zFmLcUBxP@cz9mA@YtjiM1nfk=Wq}wtq7S4m)?)qnlqMoX<Uaai_11&fv1>QB&)9|{
zog2c|a2>5jokfF@<1nd_JBAFMfG6ixV9GgL^qDjQP0~I``$>n9w|FHKEm<D9(pVa&
z1T}j0M1DJ}sdEdlLs<%qvT5)^?+jDT$dN`Gjac){w1b^3M3#-A-}++uSq+Ac?g3|F
zMyB&KEs!C`-v@m<_CUvWt<kvO6hxCNAJSq;*@B3h2N0K~3R;eAi|ac!3T_6i7A33I
z!d;(}L=<k}oNZ;)%&8O>A6g){vBQ}aqtUf%XS8Y248u3G$%-BHPcNZP$Kj9_YlV`Q
z19X29E}=FW(5D>9*I$N#$89k05ffzz)<2X8CpYGHGh&C2R4`?d>BU&@CqYKD`|evr
zx`~7yi8EkMSq+AlP@``V9X#zQ&XQ`Bb1|5=;4{sX*3G9wUJ9Fo!rmYfn@Ep%@ZdE<
zj*fa1a5kb|AuSqs8ij4^Y^ZLw6S;GC)+3KQDXc`EUlCE{*;ihtliyp9j1GGAEu}^&
z2Ql`(7NK`(HD(pnW6M1m)I{V=sdFOq7Mt}p(`2s*FG4AGsR0#p@iF#VeEcZIv5!DL
z7d>1gVr+ga5w^8sa2{P<^=O<~kMvGP*lNYNA0@&~B8Z-(#56CWL31yIu#KGsyvRSN
zHy<FQ#p@R`Jf==KuZt1-7@4rwd#NlscvHFi7S<7Ymm$$kkG!r1yd+Y4Eske}jcCa7
z$ZEt^BIzuLydFlJXE|t$P&ydUzqlI1i|cWl$a(<f|8x@7MR^UzmeQb{lNc)=NRXNG
zmxI#XLW%%I`$^^;Uw$e}lcE|F7K`zK+QML}!**#&F$t6ia>|o|@?Sy+CmnA?NHQeH
zj=A;NM@j+jPkA^%f)=?AICfWtVntNcM`{rlBtx)i%NCRD=^x8SF@?f_jwQ4xL+wCV
zq)Gqt%(+6z?izA8LM41@F#R|j&yX8Pp;_xEMrLYL*`0w+H)X;prtHTGE37bsG+Zko
z{|Vu<b1m-soy3sAQxSCc2-ZEJ0Z!QTmg-C_f$rlgJdl?`liW(k(v?8%Y%wU@qAeaD
z-hdqsb6{{e12$|w2Cu4B;VOjs(J;cOQ$d`wDYh-{2`57m6gF(tNcpz4gN;H8twxOs
zb=n}Ks}nkPEQTPz$B+mkrkI{fpv_PV)4F(J(bP$}C%1zeb=NXmCp2kX1fHb}LGnHl
ziNWWv@39}|PZ)~9^N%4R@ex8p4aicg2&xtKf*l(wegR(0Ye20*{qS<bFW7b@2CbVE
zfljR@-9`>a2PH0CdWd=*dn1EKPD~py8@b&jNMEQhD&%rR<nx!vUcWh<DUT(aHA4KO
zvnbbnFmi>TN8ewTz@=bbynFNnxf-@0KQvG`ZG^;U*Wu{lg*0hBDgE?FWAA`0p2?;$
z8kGU1+DyQv^_#G7^D2~bBXY%~mxzd{gCj(*AK<FA2-+9*M*4~k;q9G{N}+*Aro5<I
z+8fy_6hY{NSCCQ~&aUa8klI6L!xYwtjCqTpUKwv>FIR-}{ucMHTtlALosr(f4K-@k
zC&exW>o9{qAS+~X*mmL^+IOr6+`54H!flYxO#-LlT~Jiyi_4duB5&j7aFmNtws`|2
zKEDDx7f-mSOK*-P8Ta;$MbD+raNzuEs$Lzn4eh7FSFe{6X*6B)?n9Pg`OvayczORC
zhWG4`TX%M2=ApZSy9ru2=PHM-o7Z6Tww>g65@=i(h#i|@q{P+T>v8|)P7E8g0Iz)y
zU{4T{ZHWP{*-IgPfFHK+y?}}}E5lZ!N@b9vPK-m{p-ZuT{YLEAvmd{7EJ3b`h_%Ux
z-51Xw*NstFbkX#chW9K^-E;mE)WWp)vX{FKiyEo0s=5Y`pUB`J3&c|Xc#=}3)MIiv
z9Uo9An3Y5kArstf^q5j!2VH^~>4>PZc>$lG$TOL|54Es&w?#M<My`^e?{PlbofII7
zoA>^vMw1M>=KYn`L}HoL^2{k!JHqH^M}A|7EDo!np?8|<%oIXch$@632SXBF%MC(4
zr9^BMlvm!LI$5eF(+57?g=hQuu(t{YHK;^41CA;2tDh8!8uBfpXB5^ey%v3P5or_>
zqcT&NyHDkqNW_>e#}wp`^Vz$S3d#?pNS{z*_j@+=VE-miYQkYHd^~y>$w@((OH><C
zuAmxqNx@*#8MdzE9ai3wT%726ES0xg1vT<YNKO<N@4L<RPNC$7<q%DB7+zir;_Z|N
zBC6!h`C)m+QygAY7vOlQD5Mu5l4MU!7dn#3v~pVENO$_*1a_w%E0xg+A~@Tdp19E8
zIM$Y^1de=A4<%rFLNX@5IkV|t7cM~nDPvEm0Tpuu-m3v`JMv5NO;26&JIXW9fU_A8
z+rja|VO9e8@EhJ@QT^GDGB#9pcDK~M#av04MW^Qml^D_NPU#yQbf3z?dzXKjXtKhJ
z|2nLM{3nF&1(xjB;^<W(1;4DuxjhrGaq4o!P%o{g4phrqp*g38SKI^K5o}^V;L0-*
z3U}xO`MO~^o3kYr4$X!^BiEuvrHVq7KN5*?(J0xlJDRudfUeDI!in6BG8bs0UkQWn
zg=;tIUp|-BfZIe|85d99MgEe7p-M=gL50dhBWKjRXOQJ>h)pXN!v5SutiBZnu|W%A
zH%^TPYPwKnD28H00Nah3jIsT?qDk$JNavs>Vy;TX4^o2(c^r*Y6;R;)EF2WqKxRiR
z;*+!_Pu`YOhk|*$aP2J5=xeZT-&z{1v^1~_!i7i1ba-{sN4S1}+ZP6p+z5L29xeJz
z#O4_-v1af9sM2J_8y~ZuJ3cVD=YmMDg37#GkXDm~=oHp8M!gn^RQ8n6Yc<f(h{@|H
zL|)mDBhC*u<7uG2cMYLY@xs8SPD(N@Fr>U`Np41AM<F)3p|Bb)m6YyN_)(Kvrb2n}
z;_O*=!I^8fAZLToPtZc*m>wP4H$u~<-LPU(Bg~(;5y)2<q9+#+#a<#V;jtzw^5;*F
zmp4rI;=#9kVRX+)bxLxKOTD`B;?nNuv^);WHY`P6W*qW-sFpJTX98#hj<}B}&c%_3
z8wr7TWYU-qZmK_ZFU}oUk6)$?MAod;(4$dN!QBJ{RPnJ0RnhA~L^_G;TX1DL#*>T<
zYHBCMh7uoO-34bHJG&Ee7p%w0HGQyZ&K4pHMkGknVMx6s3|Mj>^(q%eT)cU=Co_zC
zJz^tx!3L#8b)X`piRq)l)eSk*x?}0O=~&agKCV+eR&P`qN7il<7N3Wa^28<`0u%XL
zVT3{_#=h4QusC9gh}zm4;pRvRDls8XcLVBX)d>nYzZ*KG0a+=d>DWDs4lYEh+=u`M
z2g(sdq6?2Df)-C@P>T`4a;6q%v8gsDi4j1Iy;&X|ic#IMz4hns8<Rbj7*DS9brKP>
zJhsG<iCNamu0uv@b{0j9!-|RA=_uX^BI8C|QkXOn_!IGc{6+>bF;;uZ3j1Rs$TPES
z!w!uYrvv%;auI@JMW|R%h3#eaI2s^<jiVkmB!fcP^r)Q907puX^TJ>gnb#o_cxToM
zGD*Yal$y;G@;{(*5=LbKjs=SaB548Zio#L*6h{^}J*X=}#q4^NN@D<9407CB>XWq;
zrZ5SaWm1F6nMXlorXLe!;jkbgt9eNd3L?t&&2kV?c+1v$Ts~GxJX{QT6DY$6y8aj=
z!80QNIjA1JsVsFeQGIa_@Y!h1gq(kDsuc230+m4w-}h8bx)<`s`Tq=hV#3wEfDtF;
zC|#J}JtGQH{x1ZIkwoeGQNeQCQBstT&_pp_zm?!M5p-_dtl(H=Y60ipQdX{0Es^gy
z`kj9z5!So#E-gk|Ju*|<%U~``8uH7V2Jd+w$0L=Mlv`ni0D74uW$QJaTq%DJXt)=(
z;)j6uuH=2oc`@48@Z`x81O)}5PMtc4dU_epoXVkN`CQ;*{vEut;=%dD$X*~f9K7<t
zT^))vRa>K5p%}~=xdG>IT!&Ms0q9sd3*sa1BSYCXC|$BBKHPkPRs-4#$3=f{yng)}
znKEU9ghsH4fJac|uZ4W+l8K(wAu~KRCoy)#DR_A2M!GyDQ7WSjkIz5C$pfqL$g3`<
zbg6?6kDnrArAp8Re?-aVwQzs^9Q?ZJ2&Bb^VtU6i2zvY&S*zAXI$0u~J&i=AdW}&p
zj~4S6EW^HQzQ|v@1xlnRA`zH?npH{(gN6mKUcExLY}x2ajn_}!qez`fa3=!iTCxsG
zW)tDXGd0SU&47?t2XyM+5y8h6V&>A#u+LEuHHu}1e{dpdRW1p~oJC+fHy^uC`eFCY
zNKBhD9$BR?F=ys4*mXP@9mmf_gNBu$KQkA*PLLm;DDpD~X+^<!tMx>sB3Yn&dkLFw
ziO{riULkMV*pGOpNsG!Qi3yky`ymkUE(n)|k4RgqIr`VK#mv!D@E~4-#}8HL*{?o=
z9=#^zr#kG^VR-z(0gY>xMZnp$c&N#Y^tN&ouU-Nl9tELPgX*v)KYs7*(7s&<WRBd9
zNgJ*pDJdG!Zl%$pY({gcD){?-K=B6EU`N7p%8?TRr!J#lqwXlJI*t{qFJt?OTWHa5
z78*1t3-!sl*n8>`_V~tP%A`@qnZXuEc5H$yS5@RrYeNk^7HgL-LzF~`#}|)a^Oh~}
ztlSQ5>$_lX-<ddi>>gT8nTFzC_Co49RT$ocJECf(JVe%{kny%5avh%gt5B~_3E>EK
z6ZE)u_z3o0IEy2P4q@-k?J(r7gj}KsY~8&TCyyV&{{06Krjo#|R1-8So>^Ep=$gSB
z*GU=4S13CaUPVx*dJepK1hj2Z9>GtZB1_ep$YA=A18sa54sP9wqi2re;QswMe(4s<
z)~|(7k|)c@#wj<-c)Y=e>qd0!Hw?CK*J0MLo3QW39kgxSloZBqJH&_kfNR&Tk<yVB
z-rnA3*Dt|+hE7Mc_;=!zlYlPy$#C$E6lXq&(Z09_Ig~~ea|gCOl;gx}DU$5<C`g1b
zN@76QoCa*XZ*q^f)1!iy0lB4OEccV*YKR!wz4a(06JzybBE=2{<RXI41Wamcgl&Qp
zTb@bqj!2#t-Iqvj5Ecb8B$P+C3D4lAhqG2BtbyQ@7CRQv;nHIT4)_z<rt(xHLdGXM
z3SlVk&RPl9J&}=8s7FI0iJR}sa5d3@>E*TH30ppxg$bXFgAwuJGHiJ+L3$4Z(vs4V
z-XOuUyHZ>a7o$~iHHy0$kxwSV+`BSd{2)O_cReyHO>yw4k=dM$IP*-7^Fb2GNlC~{
zWlwx3!<uJO1Q0pzS%mrqYBS7X#S|u*lmi*bAcu_+E@||_5%EhNNpU_*g0kuLa3Vji
z5{xMBNpkYkBlL|Nn_oz9os{T?84Y+HB|<)ukqt#yko=r`qQF6aDFP{ls&0UPoDrqG
zX#mzyJQSu%4kGi^XqQqNLS1<3&@z(&>!`j?21=o!dMuX4D4gFR$d6?HmSmoh;?Ck|
zgkzFasK<DF9fs!DBO-?KPjbpeb(MUos_Cz*T#W4jB9gNXM$+E1Q5^RkDX{OoNHDW0
zLbA%B6k*dn86rt0Uepc>r!^uZ5h$6W-i3duJ_E_U6uI-Pe_E2>I%<=Sq+qzn4aiS<
z){-*VC7S`O?#XeA+N$0`kD|^Z9C|8+OIjVWDny^YoLFJS&kpXBf5aIq7k!`c!9ZJ$
z6I<8$(+2}t@$L9w2Lowi5v_5A^Vg&OVfZf|43roi4Y`}MaHRKd;amKC8)C3(@+#zM
z*9q=EzoN%!7hK&u!u;&dA@0R_%-Z__!@5_%+QA)Q?6wo5tFbA~A44A-1C^r_QZ}!|
zFe;<__bB84A24y|qx1j%gMmy(&RbIDITbcN5ljZmj>1eY{pI>%(v#9%O+Pm0ARa5s
z)|#!R*h;}1mnH4wbl4xes)$JPwFyRHaV>ukVZP1ru^%>JVABP@W@4RsKWkGMOIm!q
zyCocd>_|SMosl|yj*HDjOp7q-n$qF41bvQzu^*nzO+JR6!ip#kPRtD9>j*t&vkFFP
z|3)D$w(c^?z+@_8@yj#XoCe3o<~@R04_yn{p$BY7&1KWlGfqa>&4%OS$Ml@#o-(ZI
z+LV7wU2uLl>D2YbF<4-dpI|y;zNX*;I4=Ggk(_@EOmaNxtAxL^2E#}}<I^{JR~e-_
zu%%tFnF`C7^TILkEI79n&NI7NARMOi$vs(4tjO_~Bd!-N0{!_^7E67x6{f{>$qFm}
z4fvr411&l5sV}$U-w4^?PsabNu>A(2{VjgJ4Nj<CKQ}I{{S|xOdSmnQ;b!+g4~Og}
zQ7TO^7A#y2*XDD-nT#_epOJBft(A;_0q&&#8Hfb(m1O>z$QKbbB5oEpCUI;wz$Zz5
z?#_Oh_$8X%_#{t_<vJCSOHPN0I3Gfky2KogiIpiWHpgJ{&1MWLOSn{IoRK;$)8R&(
z7bcir`c0WW$FECK7Sk!2rZ_BRNlC^ToEM9K;SeP*E0x{imfF85u4Eao-{kNdmvD%T
zSq^;tsUFB5ugPG7$|RKWxg0(ZYr0Nd7o49j>nkNpGN&NsYjgTSx}WDi8JwQPR*wc5
zjDlieaZ8;}vV1M|&9m&5Jf}p;vZRy~*O3s8;^B6cvMiSR;&4_nZiN+Q(7RwI<W~G?
zNF<V<dUl-gEwhzBGcpx#h)Hv1VdCh1$jSz_e-&bTH0m=NGiJ?3_olx+BWuOK6((|H
z`lZCz+!&v`Tkb7xpFg+Yx7_~-zZdTFXTKN!*W&qBHw!+0X1V_@|DWUc{QglqfApMT
z@srZuw}fMSi$5mJM%2!yMJ9PlQx?Y8!v9fxzlGll_q8;vu)+!xNG-RTto(TVk;%&5
zy?X^SkY2rd3CHpO%#cc@2n-BF`t<1q()-WN4*oVck8J0jB}*2;oWKezeiYcWq-@!;
zg2~Fa*pPo;lNBqhu)+!}{x1Abla<8>tc3jUz@M=p*P3^o_*ua-<LAzuLzyyVgav9p
zBO&KJo<4mVHEY)V>E&s~zaQK||1&n^R#;($6;}LRuoCkB2l!!&I{zVDxNt#O)X6i^
zKP$fXqE0KU_${!~7at#QCFE9EVTBd{kMW}kxz&c;ia!l*lt1IlxD{4dVTBb|SYgG#
z57wjet@sYmY1L5kK{R~c^q+y5(`(fl%Vlc(Xwq*qK*L)b{3z&k(EP?W0tTJdBr}yt
zSZHN|PNOmJobV<7kG*pMkQ{mY@H5?G@2t&P+qP}nwr$&*wQXZ&ZEF@YJGR;WD(P7q
z|EIm%yRV<S>~t!XN~MxiepPwvtzT{g8BqUH8U8Qyq72l=>!<!aJ>#E5n$Rg_QlwAl
zq9Tci_!H(sKRWkczcqfnB&120<g!;KizVfr{Xv4#fVZDX<JS*r!h{JECQSSx%*><-
z6is}WB;8nmOOcxRrRbX5>nF1G#1q_lwCB)=@4+tG_$mF=sOD6z*NHy8deNpwBNpy^
zCx`!-S4Sr@ZpE#XH3=<?TDRhyZzu;>Y$o6*S|^eDEgEtwI%V|_6G4w+S!p!$RLVM{
z3@cHz;Y<R3?y>2>{glwZ7|nY+)NjP5%P;xx>KVyjonPbwH%b($M$bOI>C&k^^AA7d
z=GqCYJoA!EYgY0o;^%~)7yW8>A|z!^MiaxM7hd8=3_BKYCg^wTMIYMd%txE<ed*P!
zCmoyCWyb?4z2Am9%7>R9BU09kr~<Fiv3DOjbZtS;8HeOB|7R;{)P5wBdUasI@fUJf
zz^j|=p4Xo?L$}H6pGbJRlS<`>5udVd#FO4NJAXO%_{TJBGDV!Vk&Dx6kh%N1lr`AV
zwHj_uQ&xV&t0PlH`i<z_rx)G2c4F9seInF{-Zi=qF2_iqPlu|wJ@n*I?^<kmCI`yw
z7}kr;PeN1HOqeiX!i0&x2C2i%B*?#0wr+n(rSvXby6Y>iC&xw*lc*&wG?+xa<Z>{X
zH#aVD>G}(zR1g;)ZR}Y!Boi5B^wg3V9!%0V>;RSs^Lj<Qxrf-XYZoVW?ZkamAKr??
z$3`0^l|Ctscs=Nnqlt=)CNk(felf<WN}>Y;h|;B|<Io;tk@S6B81LSA5*R7<S}KSM
z2_`B+i}(BYBz`&%T{1y_0r&+3rvzw-iH;(``vcL^j2u5fBl2L*%|{Q6tLh-G27bUS
zA{K`n<>}R`v>coe;m_+=uZfYBvpywFFL_FAUG!^iow>>_&mcLjM5ONrUU_~*o?%^}
zj(TN`^VXQJSBE$7A!}_0)l1Eg_D#9`?#mdBq^Kxdn@wi-j-4Dhe2l4WOA{aFPe`m8
z^@k0iL~5xp^!R*u%}4KG!os9|4MYWn5*i%KyLZNWBHHsfZF`O;ROL+95k1Hxc8iaQ
zA|k|>*Pgzg`-yc4p}cwXp5Op+4<&uwm`g-$o15)>wzF&3ZVqi2%EBQlMN>(j3gpqn
z%UpWwWn34iBVKaz^i^)ZGfLxECuY)T=GTJSfZM3qlpL~wqX$mmbbJcOd}CNL?kv+z
zY-9bgd0byO7r7MGY7&&;1cgZRI;Noez?$`Y_$aRV577`76hX?QnqX%x${{l4{6aZ(
z)1J)FZu3@N7q?M}KXE_op#Mx<h!<4`t!L+sUF_R`nDt9Li_lm?LZXr851rDhAr>{3
z(6@AcLjAmn{VJXK@KEA@Za#7oCQO(xVd76<66D`2v5z>Nkc&f``f_;J0XayiP#{gE
zuQ0d7&N7)(Q@XP5v_GM*j?uUGbf)*{!0`YGKQ{^2)(fOW7}ByIZ@=-FFr~Q#NwKl=
zZ$t14l#W?3gr22yx8-t}-|<CsU;Y3GmsGs)5W;=W9!3ut$5sDG?CflDRQfZtNniYv
zLm1R~D!UKtXF|J4LbNF{7mbU<yVtU9$qf3<KPsoUYs^H>y1(YhiIvRV@>B@N=hUy!
ziuGHL^FA_Bj`Krw*kvt6M@vsmg$WV+{5+Y;b|sgK9f9|D(0$4&l0RN$@W@f@-0#NF
z*%R^cy+^}ZZP>i?94{Z8reCM=ypM|J#DX!*Kkmc(6Pp=6Z8Im=tzi1>^Qgn_(zioO
zocUu}eD(t`L<1n?#S>1SI)QI^1RhU5$wjcRHs|G;^~_s1k4du^@<y~>B#$)?wkj4j
zYR35}xUy(0GuG_j$m$8ys4`6K<w8=JH+yyqVLPEW)6azv<^P%x-?uz^`-Blq2M|mI
zU5iv;@s1;Gn%J8uCw+wQ^<;RTq3k|%gasXIGj!WyV<u!2m>G0Lrie~$SPV9)Q;DWh
z0#iG5=E|E0ULBZ2uc_zIhTfuYmq~cX#&BfzD3*!i2l~9j`}IRSMShK#(R=GDMwhS>
ziFxr_m7YQtA9)m>n}Q+;GLc{RR+JNDE?$Gqt(xGh{nS86WX7b;v>830{26UO&pK$t
zlBB>_%$U7|IdkT+c=9sB67*P$EfH6D5!-AM=f>KI@_Hi2Rw~WqSpt6!D_aL{?3}|Q
zQTEfPOk(vp>AKk9qzhwUtHyYw9?#moWsQ-gbiS$~6-wnVrfb542@@tv{86OAqJNJd
zmuzGH);F1%cq#vT+ZtYHw(#6Pn%i#!@j9`LYso?~e3~a(VU9)EQ<h$~W%j(DbnG{o
z@)qu-E}DUxcb{|Z)D!HqiM)Mzoeu@8QS2KRgSDLlyJq&FTjvfm8?~EWtG1ELGKNHH
zYC3@=_*5D_daa6_<(e{l)KnI>c4UJP(AL&g^0d-wl?IE1U~Y%JMUmZ=HiMdxQAjeq
znI+Bo4Q0l<NxVCL6<ypB#vT1Ys%%y`<;ug!wIg{Su0WSM8?$DOq;w_+`ItXMPm;!t
z{=-YNcjtYspFB^kb`3C-+#%{k9+egxSiKI{Zi|>ZV=>D|k0P})8I^N3rcE7)%gghG
zRv$;#PA!-}r!yz^Y{J*)5uQp*a#tx$iw;$JcWy7ywI>+k%<jlRw=Gm}*_O&p+R&(R
zKPnX|O24K>Qt~4mR!_!)6=~D9E$v%0A&0$aHt3C`x3wA_%76#VJ{HZ&rSllMa1i#^
z3dyP&3&)J~9W|6C%i6GS`5|)DZ9~~=O{iZa2eENUB4q;xD;N5X8O~A>=ji5(JUz7?
z|Dpq#HF+%kJ69wo{%dba7Q}i#U}*QAbnV)Tid{D|d)qX4<;H$hQ_*m0%g}jCNWQ&{
z1KSUyYA}h;9h$Rnb~_GkTT7{0t*O<x9r;qFBqy-6wgk;9A#Qt6eCbMD(;7%Jn0=lO
zL?Nz+G_AHoa<WRS8M(8hKbHe-33_%FpN|i@<ZUz{F`~oDB{Pj%wWoEPHgs%O2PYeI
zA=43!*6qZHzu~F4#wQm~LOMHX+V5XNt5K7ybRF8YZB6U8?Wk8gs~qn4?i~(Q>R|SC
zD?uq8^g3~!ga-eNQd}SDI+-wG!h{JEe<goPkeivAW9wiqyYZ41D~liYX?;eBalI;*
zi0DKi%9U8#+MxUc;@sTI8hd-=@$Btw#Y^{>(h%W>WI{uu<YWK)FtB&qHCnf;LSVQR
zecD%G!{(=m0yb_n7(JXAL|J}1JDn<-qP@nFylf&H9lLXVfSy6qc2T`_N>AT6Brz_U
zK8p^seb-)2>~^Dh9wllaz%?lYJmcey{+SJWA#Q9P<uHSgVHwk<MyJ!uW(Q_M7)QDk
z<Ji_^lygyXe0o>5c?M%6&e>7w234z28ieo`X=v2(L`Fvv5^6@r{zFNlNW#KKiuB89
zlM+c+aTGZ`2C&hy3iS#*kgV1jk1ZCx5LwdfqY{!UM`<ExD?6isM6x)K&y72AKWUQ_
zsL*>p>$^9^BK9HE2Ts5zUWw(W29t<mX3(QjCCP5<B$Cux`B<OOi}Q9!pNl*>a#N&G
z0lBAF5_-ls;^<<3gJ^ikIZD)u(vs5FV<DaaxuaPv@+%^1)X6D>QYFDF<yz$1Mm&pB
z9F>S8)^#E+=_`grlE}^vJ@ct?%w3)xd$zD+$6+S6wa5L!J4tzpcHbwLmQrI{Trnvf
z5iTKB9MaKL$%$yc8jvazcAIWZhf!QK&gR!EDhkwzEXp8^mgeyU=rWMTSzZxH_p<Sq
zbD5U(sFjm|pm0>;yb=??wmA{UwsE9zfz0H~>q@4g`NZR3A@+{p(i1h6a@i4VQI=+|
zDvo<cV`Z+y>KD9HNrP!K<SjwA9Ig}=4JFqM(sfQIRe_2u96pS-Ev%{2O8UYCIb5B1
z{VGuYE#VmvK_*AZu*HN46DCZU`0Mz?CM%K{H>iDBJAM+g=FDN*?0H;$7cT_VPyJGx
zTiWo^V>SJ!9w&V|HCq<0=0lVaIln`cn_DUIx_XeAQ>Qa$?kpybTZ50r42z%X1y?97
z(L}h@w$)TrO6z~!C+5W02f1WcpQVFZ(XmqpM$8<;t8H`mm>{*DgizD#(55NEfO6qX
znZB1JTjy~pwl)oO6~HO+0uH%KlD&Ngo}GO_)q3SqQvH^gp_Y{1SJ-8&K*>}d%viXB
zt>>O%W2r=GY0bSOyI8$+0ps@v(WX^()M}0Fquop?1Y^h}rp{f)<G22(QWvFA21nV`
zh1e|JsZy&0gHvl}w#td8mp7h%uLz2_!Olk915!NWp??Oc=UFQx7Zl4Xv}VbY;+L^!
zRubasWEHLZ_vHDOQB0pZi9z$`5|XTtG^tF%x-GCgGmrg;&oXuLP8xO^%+nL|S-SrW
zegO(H<#DBAqgI%oo-4<hGGzyK+xAA>h2qf0TxGP4WYyLi@^1-AgBqmX`5zz-C{9)i
z*JdfpgvL5XjGw{MwR;Im&`4Y5D6*Bj)Jtoo$I?0j=7Co^cKr!TYjbf<a$y<ELMjuD
znqsYbkm1o{<}O>!n#<3zw)pxP73mmsB&LYs=6y$UZ}So~`MT0XcZii6Pq1m)X!OMf
z(7ID|^vCCN@W@#vP2EfFmR-r1Aq(%X@8`bXCsUz#1~#e7nYb(@KHM+LYZ9;Hb24sh
zCdTwzz?yN>v1`+xLMe}}LFzd-GafvD)#mi*)|oba+mSs-d72c;B!?T3OH3+JBcg$0
zVQtBsBjZsuUcvBgZRpUxJ#&XtV(aQXD4m@-v}7g=L|rju@?_k-zTBVY)^^<5y?})a
z<}!1Js85z`5V^KNVbCI3-W2M;oi^&d^xgW9CR0}seR2@f=gelplpzG<Z%O04Klc^p
z-+`IZ9BXT9EPm}1!rzRULeveP9ySvuOqlq8iX_PY(8NFrA#~N@$0%QB4O=d3z&h~(
zLmDh)#NG3>%;|ucg|!geQg4(RwZVcn$Hp=8crNZ9ZB5VmV`#l_3FR_cp%7x-QoJ0@
zB#|i#y96{k(Mk}a+Qv#jLZb8{HN)D`l7qdfus6*Jmi8*f%cDzJ;*pL6M`w{n9LP+Y
zM3P#Eg^fLyqHd4&J4lU2C%N)yJ2pbdS=-o({D>ENvN4{OSeJYBg&0YQPY}Y-cwXO%
z-!n0gHYu8Dtu<*JzV!Nr1P99Y)&>iE%;F+Zq)CUZSv=1#UctvKGi552BE3jDF)9SL
zby}Q-NR0{#!6{?<Ki1;<A4t>uOA`Z0Gh!x$2cmPxgrnRo`vqNm055$L$R_fjx3D9X
zRT5!=u|!6PVU;yMIbE!Y2?@bEU0M=DBXLfjhQ#2Hybq1TC1U}yrZpGagT(fXSea=E
z35p|KMi+56sCf7KJ&6hnT=V6{7B#_P@nlHrl5%7tUnU095fLoX&yW^FLM+MV4%l01
z2n|UhwTlIj@sKu^EpegVd<cjoTfQQ=*y;%hizR(ZnyRp;+`1NsL2Rp8IEx6;;_c~4
ztjd!7MO;PxAUW&_w>^TOKoM#b%7Q@^OL&qwX`O9JjPS)L)`|i-)641URdGZlC`s$`
zr5iUnHWH1cBg92vlh&EHcOIe4ngeIwQ&b)NfR_)~5gQnaQ>Jt%b@2p7K&Eu|g!#QC
z(JDO-W;#-(O+`dt7^za?1V<}LXBEk<7s2E!ke72)T63Y`Ja+b%8YL21aZMs|k>aO>
zL<WW8kTD$=Nj}`U^n&oTxv5t^Kk_i*(8r=2f-x&lRGedG5u)Sc`}f#p$VEDPDTbcl
z0AKOksz?@%EuB_N*8IiAwb$W&=RU#u)ReC1DyJo3(8d!MWguPJuSBjvT+fgM(q~9z
zY=p=d^O;)YQ@)=?oY1f&Y%LNoIAp}(QyW8{Oi)B3&X#(71A>vpU+Q%_(&sKhdVAxO
zpiPRw=c7MK@<T5wKv9>u7H}n2oVSZOZ#kAWhL53oa%4({E-8>VAHvaF*^=Ki&*!{<
z%|ACWkOEuVufGoIND^iLbJdx`+zMUfTTY(2PsTFUsgO4vTAi`M_;(;3-&!=xzaV|R
zF(W?kJ^sn|<jLYB&iNZx#3oFbF!3jlMYE`rzsbZvtN!3josuBeM4Y5%gTq{Xx}P+5
zdiM1y&)PIIxIMWz(<e{BGfaa^@n$R-*_oFIh6zEQliP>eFlW#z>W-N}!Blz<teVK_
z=P_u~xl+_TlFB_NP&Tt2vEJ92zwZrGC-)I5QwVAy$dB}^#nsYl**>T=%EVjb%GHz2
z51*nvG=axidoZMFPOhw+!s|Q(=~46n73v=2%HuuQ$9uDM-ZWnLT2p7>FnZQ-<<jOk
zY`Nx(R*{)$i$;^xLV7u*oZL6yzcy3n*Mj_e<=;J1r<UC_hjaR!8hcd)B?c{EK(#z6
z+kPMF;D-$8Hyi8pPN)=Fn7Cp#xqj4mGV$m5X9T$<#*<myZwS|tt#Hsrk+#MFW_PcS
zMlJcIHxv0uF@F-xEnDko`Zj4wnlhcK-ncO}ie{FNVMsBR`f?nj8IiOu1xa6#B)-mv
z^inb+;)r9INnc}9!al|O62~aU<9seMYS20?vZuqK5$Bb;D!r;^=GFbnJhy4cic!@`
zN-~-$ecD$_>+5t(m@r}DpX8eg@)bw^TnDP;$Xsb|j=4d@$IvLU<x0bm=>vG|+>&L>
z=91>&IwtOUjg^hmg(X$giCj8(k|?ZrwR0Sso@Hdt;(7F~QGpC*!E8Qs8%Jj+o}N2M
zq;(GL<yVCfsp8irCz7O2<oS_fn3b+i!Hib;hzk9IS1i`z82%5h@KF4gdflbtS=$*n
zJYxv&vi4-{f({&-GYLQ6yG&g3fH6zfGoy12QNVw2LY4o=NW$Zj&Gq-n*8<|-hdG_5
zu4dDk#Vp;i{|}3C3Cj$na67V>d5c%Fe!WSI|96n?Zx#2h+@}7(1#DU|je8pgvF}*|
zHddBcC=DbhC8HPjl7*!eS|1PYdSzqS)FIR@l@o(jB?P}lh-C{T4^C#%V$jOtKg=yG
zG3YcTtF+>`<Y`7c?_$wuHS%@~OAEQ~x3pBEktSEtXfYG@fu(4mOOu4DH3sqfOZ^~?
z9ZC#+&fVyotXsd9rOQ^ZcuYG=RI5#~?5X8(8;C~3mwnBR&u_}h&x8pRCjRq?y6zA6
zkZYsPP_^^|#;u=<!uJ9*cSdmj;!GyiX+g*1Z)lWRO~9$C)ZgjCp03f1*q5GLhZ|Eb
zTU#dIaOXmgT*UXf$Gpa=ND=})`TcR~_dSNkgT0KcUxAu)j!`$85|!2<_mH0&(ToW<
z%qf#8mgo8^oZml(%uX71_Nak-@fGYGQxdmMRk&7q18bVUrBv+`JbXNl4y7uPcj#tn
zWD8;WfC=<F=FZZlwJ0`Z2KB3!qeg+OBugGQz9GM*hy2>LYs{E2L+)w&o{@URA3b_R
z!GZ<l7wPxdgC*th{{8!uDN{!7z5F*K2@zwDt3e(F`e#a65?cz9p440VsmIgAUxV~)
zXUUR<xH#kB<^RQB*F&zv);5M-MeES^;#2CSPo_(y64Y3IkDkTN*gR)6Cmx4mpQaLP
zHw@wGw2pLMaG(0!TQh6?5cV$~%@c1u*&Fm_<>37EuRk37Jejf1+m;b66pWp`gfL$-
zYEGHQ@RI&Ct+5cxlIcl&<xjIEd+1j&Jy%u?Wa7DC?94Uvow$vP`csTrdy*tyD|+u)
zOOp(uUY7*Er7fY4R#BtVC6=w|LsDEk=Gh8kck`4G>0xNIccgEz*Nj|#j6{F2@7|3x
zOBYMCa)oK&7D2y4i6s4a$b|_LCQSUzeA6ECm4Bv(TzXMxk_itDB+9x7Cok?IzpaiW
zz0@O;l5xqtTmEGFL!?ifTD?wALi%8;)2MLDUz3(O!q~ELAs?JtP(7c+52o@~C&g21
z;1Z4=+Ct{w1Gt@kE-HE}4C2M5ko*OU7nIa1^Mluy5Fa}9#72hT;}u7X=?f{C#g$!$
z*OFiHmQGbGbM~VK>wkEVlXQWl@{(S_-}{o3lq8D<Y3gz5_s_-or<YH8{9g0-TNWwr
z2?+^e5n|+Lw*Q_bDKSw_D>3okTOQxz^6CEi=X!BP{hAoT!r}dCQoAvEdat5e2?w6<
zp3m9v5^USHft*1*S#>6e79+Y-u0$IStzX2Oc|!;;KAat!Ch~0Ac<x5%33?kyh2e{s
zJ+u@n`p%(b@5O9e)t()rrW2&n;TdAdGPmuVacj%E(Q66#aEuW`ET2AmgfqK0Qa;@~
zMi1RjpBd{|HZD7(+s`H5!uqQhj2YUbID$ih2@y+ZjJUVM!-&_IVQF~Dgy9G1J5%gC
zCL5#L&Ov37j)9YwQYoWW9t&W?gb5S>Wn|6#X9jgvt$T#qo=33LCWsf43JZG$yZSc6
zqtH~`1{GmV|2Dj>vWCH_x6*HSHXfX4O3n1mnQ-?ZwugE$_DM+&tn9{Xk9*{(Se1n9
zb12<r150l_p<8}i64XYQZl4BqUM#VO-NP#o@^~lpTFhqB>AR#m-j(?=T{$wVJR{2F
zA#uQcHZ*xf(W-~J@4c6UJ?e75%v@IYEk(%7Cq(OFiLfe0jXVZ=l`cb(^|$F$*qWqo
zSnL1SY{=c+-Kkcs+CL~n{x_E|UzU3zO_=!B{4+M>DLv$cYf@+LZ9*4U;%45t?4Q(_
zV-uRQ>~%(}7jYprDw0awX3;v^4XQTr;PSo2OekN1j}==|&?cGKI2C=y4`P1nDNMex
zmwblTG;(cE)=sTRt%*ZxlZoM-^V6xzC63)%f}{UoYIc0Yg3*pFzMhx;i&`L6)0UCP
z$e(8hO-D3Gkr;zj#$t>Z&=o6v5=u*3g6}P*$&?tLUY?PXe^Kv^8NnkV+U;!N$Xa)5
z_pOg2LF}8U7{dp4BbAjX2UQ}XJz&Cw2^0S~-(?TE^y%A7nVM21^PozICm|^btq`5b
z31+mPv!0AEm(sRvSDt0-%+hX!QP^arX#Vs_UKR_MErFFLnG$_h(LUpSx^?WzxLuc|
zM9ERS0l5klr>?6r$+CZC`DpS)DydydkT<;zNeQty6z$CNiOtwJb_Ur;EywlgW_k`<
zLAF|L$e-2%otX=zOXo!uXAt>WgTvifv}x6b(HpOmIjapjCiJCwn?5L;&7wn52YKQe
z6Tcm)fuYrY-`|j>Jen}^-^L*O=C`zUVCc3Js1J>0=PMn#a=VbFP*Y~in!~actEgGn
zL3S0X(@Nf~l;p{vCV!o=%$zfy<+G+!AYC#^$!g?DQ<dq-k=j7hK~tGCe-U$r_Q1tj
zh+>t-=yFpu6f~l4PL(qY&o7*jLNM3H5TZ&$b{8v#OrOU5g-aRTz6KU%Up&4@?+nS_
zTp}?sQL5GDXH=(Eqj$+kRwoOFO8YL7_N|GXB7u7z=kbZR`0Rqzgb5QS{>%KK9&!mY
zh2+!LTpl<iwDf0;;g&|z5rfprBhpn`Vred!WazNAwL+7eEW5mteBw$i0y8sFF`Fs5
zvvvThqgt_hQVk)zzxHiyCQl5c)T@PfHVSnMYa3DF8&HWCjXXP`WE*RyKrh6;S|_D#
z%o|dEET#NN-UIaVL@Ji@Bs-FK0Av2XwOQ?dt%uy?WyOSvFG!8kzu$&j^0E@ku&S-8
zwfO=~^IGG5WfiT*da(1{TFy)v!aa=xs(5S0FP=jM#dVr?zs2?ob20b2#+Y%7NOVp|
zggQHiw{~P`{rQYIv6*~U@cyzJlQx~j$<7{qmYQrDo`Dt}JlJ-A4$gkZY2N1{yU)#J
z&%g$pQD;FBA4A(AYjAzPk~x<?l1iZ@U4?ec>Q@I%k{YFj4Iz)#(PeG~9>=H1g51i+
zl9My0^HkK~c6r)T-Ef3C=e<a!RFb}8XXf=OO5<XAXs|7ofrU*r<R(mfjfH5XeoylW
z{81!5_LXJwch5KNAzyLij|=j@7Behuv|L=j5u1Abshn9MMD;gT$$uk%NRWrzXX$ZI
z`t|LMw3pxgi}*Pf#rl;8R@GWl$mO4V7>$Cwsu1Mnyt}xc{kPxAlY1nK##V<8qsgBk
zCE{0vy}rof=zP?zkS!&|z>U58$<(L;A5LARc!%bs{ekw-a(&MpvbE?+cH^X(zl$$|
zJdvYo)}t!goc2|6$=lwX-ocfq>~yT<!j<O=TGlNjhyS%Ca%j~$bR}BQuCnpCpGXdV
z#EP{i(Aij_Qzw(XYI~~N2N0a92)YMXNY$V{`JH|&#G*Lvc8Qw3+VIn<X<|9G^9mI@
zHz)P)>P?Jg@0?Y9kOqB<dsJ!bLYIMk$z=6sJm}~+zH0*yy`!nvyf^iWq(iTM!|E9a
ziNld5L;6uPgVA?(+=s_pc%`RRlTz}!Ou|RD?|)5)o(<%w@g>5a9OA0J3T;ZJhv*l~
z-u0N_1G^x(7QcODH@dvJi1e|dX`>YX>fujtyQ-&G8?mm9<l^4FJn#y~E_)$5bZkvp
zk?@nlo6%S5P063RSHs_2Wy{{{Xss>K>(tn%uFUWOWjW?{o;tl+%g^KWlj})ztxpzD
z5ArqYLVSGeuZZU_{B?p{>VJ^tZb(9DWh3_@E5tu>kx^K?q{m7dOGreV)N?^<Cr8W-
z8j@5xtgJ0Dx3EH+5Kd&Q3Nu?r(%D<ezT+*dt>p1Nl2?}as8AA;wOBg1kV;&xc%g``
z#QiGGs+%m*v9Yto+>k_QSS)&l1<t9Qv9(eV9ug|o-L}qYuvO|)Iy*$>3|je1q_vf$
z{8AGqhF+tQC$W+`aqMg@#l9h*_q8`Sh&&}=Zf%b=<<)=ZZD7L0pF<Mkk9^~~_$KN%
z)j8iQl7oTvrPIn^*8VM`{9Bu>d?$ijLK5Xdd8w2BQ(|1=j|lQRb30LC_Cwq~Ur{Zq
zg3EJya4CB~T(*tCWz{u$6_9$TlSxurWAjP5{7rl<$hS1j&AocN8B-?}v0?5Ep8blG
zXIJpUX?oz%ww|o~*p+S5tEYtM7*nz|MGxMkwR0R6sZ)y=@7E+SvUn+)-gqO#YD&=W
z;ENy+rioKVt~FXp%$^ZqT}6+I_8g7sjqmGqXrmHvN%iyB<!dx?iC8%N`a}429IfX8
zs?B-E%^kCu+N(W%*6t%~ip#;ki}Pu@O2f{TolwWc<CLQ?&lh##YTk*=Z<?88I~O5l
zjB&s4nugi>vfcMOX;VV<k@x8`?J~PpjVB^F45tife^iG5i`Udm)0PpJPLjh$P2{DO
zOn8=$Ya50bH%n9FTMOZ3T$9nnigR={o@2<(b<BV2%CdpA<#ma}!|Sp+>qwS0)-k;O
zGUh$H#MAK&@GZND9%=5;YeOIx_Dtsf{&}p}wT>q?qj_;)Xv*Gjaz;biEJ;OJ?CviO
zkNfk;H^~;y3&Zf+-kcocqdDPzibnbD=~Ar-&Byg)lbecjhesLXzgkV!{u=zQ4PjK%
z$~ZNeNt;?(2)=fRNk_uDd}<|bH8YbmFMu&WqlxdV>B!=@4Olv&JaGxhC@nLQ-!+iB
zS%+}M&mEr=6KK6b2>sI=I9wwOgD&|CK^`N?&i~0@Daa)x4>|@>zkEXKrI*dMB$u?(
zG{xctBAK;FNNLGpSpF><VJUvfr5EGZ+a#oP<S?<X<YWAY`=<OBe<gQ_VnsftwAHwu
zvCjJ{If0oxYw{<5<uW3o@$8Jg&wsqHbZ%nBB*smc_zGJqB@55{G47BT6<i(vm3qm_
zT*0m9k(?S+j0S~VWN%FW2EL^rpSt4kAG0C<HW-8!PyEk`@jpfcE1#t1`sRV`+ILD0
zkxX{1EiJIJwG%gk1&Q~zFskc#rcax|vTfJdHe&%V)Iu=5Kf$m$hva>BPnpE?1o`JT
zLuqMA;qv9loi`sPD)pd%?lC?epR;JuVR?Jl&3!C8>x+HrG$eXmXYROO3|(;)4NB}C
z9C0v@;qb=2#E7`p)-Gd6pZ<)QbX2Ta;ox9{`*t__ckRLUn?7=S{+AB2da)a8mdxX!
zueev#@0mSy7PH1o#Qmd`%8${Lt!O<8guTT}tZ4)8Vw<l%m9nHI#^*M>PQMhPNo-v(
zjBee#vf}VXk`ug`Gi?^L$4=$WM}LmY?9J?%i|IXhCeH#z^iVIBj~Ypzu0uI+!CwR<
zvTte+=FD6o;>_Zm$j0_1^Lh8^75n!tV%L#_%-(%p#51BWx5P;_(43u}aCAvS76%0u
z;`%z;8o01=6R(p+if^tkY+!e$44cfb;oHStsc^E;uyw@(y0-1hy*Ti^xRt$I*Rbc_
zYtC#vO1$`Q&9L#TTt1U7ZTfK|OgfsL^P8s8yZ<O=_aDu=OCO}b6wGkSn1d?Cb5I~(
zUMltNPRyN`qL~K|-NrI;)LaG)8p+`sks>64JyXOv&R$CIA+vcG4IW3<v1#oJo`!xJ
z@1Y}m-BD~CS)cs*8d1tBg5a0WIdCNlgIg6QYqi$6zB|X=L@3j40vnglB8UEqEy7Jv
zR>7H?QL1RBl#mq4bfQ4w8Khk7J8RGCS+%(HK)RaO2v*mjY=KM|5+eu*4Z$ZMgb?3I
zQn@%2`f?|?oH{VIUtJ31DM*c;Q|XrJ3ELh7%JUuk(uV-0g|&QroSeks=!A3nR8lA|
zX`Hx!cr#tyG`OGIfHY^TnU$!RjjHk=;cGE2A&YSdA+#k?|4EEXd@Z;oAuetI<OcKW
zZ4y#C^7fSQAMTs-Tm1cWj89vQ`~6sqOMIC;=rdwnO6ybbkN1_%?I+2YFkwO#g{5;j
za%)0a9!x6vuUl@8FN>|SrQAq2@rCb5kem2K%)>(jSmdK}+q!t2+Dy0zv-ou9DlD*1
zdQblmyJ@j}ISZ!u<>k@2Jo7xy*@sEIIJlgZ2W~<9bJpFD!}Wi6{{AVfZ0tC`dIrmv
zE@9fp-WY0+C#Qucr_Vl;x5s~Y$oa>CSXw9uh}AKCfg6<~&M;>CCG2diu~Niy^@Il+
zzl*e4evRg1#!}fak{}@@HL66EuJu_vtu1S3Z4jwFqwnO?G#J>6LG6k$W9S$nlH=HZ
zK<qbsDwVT4%E$a6dfA2A=%!jWU5w-H)x+d(+5u~Yo`itsTzL@0%?%UrFe}eSw-wkX
zdlDGv!}fzWXgz)=8DDN;xpxVsFPh54hPDh}xQ(OB#&FcSEb}LJASu`n?+dG08&HO6
zi>5H4fen2oyHTTM3(D1POuG&PC|{%~-RhS~$&V!X6nNb^#mZ&NS-NHuFJeW5OCdzL
zg`T^|P7x9v!0^7yX)<LKll$i8{P9a-FDoJ<BPq~mIBR>SW9X<u<gU|#GF2MUv1}^N
z9y~9a70Ddhw3i%>#<8w<T1HPfLim%-%)RQ!n)OR4V*8M@kAsYvkTECT|2eZ3tYYz!
z#mpYOo`#cpVI6;#KI=mnvT`;X#@AuRtclz`x&X{TGrxu{VHKFZa57_RD;Y3-2W7?a
zYt(N+v2>r5t&-9W>ycjEs@JxT<x<`jG{|R0G}dB^al5T~A}M40NLHy+Od7;}^7tsL
zpE=Q|OC=PVB#d)5ej*zM^BZ{a>;>))SsBowA#bidAo$W@oZEFLleLzhXIELbb{!km
zuVwYVE3!+}(AQq%DpNis4I^dB<mKb5Ae6sie<|(z?BZUQtyn1<H%r;&@kWH&5dYMj
zVJr8ODtBS|93_OVm9*wRf;2goG#7wrF)gO$-@p9c$@VmI=cSIsq<`Nc<=fQv`a`5w
z%6DY4^4~@3`T0F2D<?;mW6-V4)XHzo)9W6z+3iogN5eRkrW>jDO(pZlF)W*Pn(OBm
z$?>-itb#>@0k~fZz$P)0JkBvBWzEE!n7nM8(pHZ1SMs&V%C7cBxmRNogR58*hXbVw
z<|5f=Cyo32aOv!1f)7onpLZjc<loEcx9wOysvI%*mNWc<6GiSEpuoEIoa{J?G1o;S
zWZz2GoVbOVHa)Ws%w=b_>eM=WpUT!Rs8ZgIbB7AyTyzzk+m*qf){tPHhQ*WH(RKKC
zJcMBUnlC0Resrxcj)m7JGquNNoD53FZ|y*jItN&^ARjZ2r>9KBMpBK~M>kR4G7%nB
z?sbS8$5wHFWgpf$k7R4t0zx(3rBeH?c<h_b^0~{n_2wSM>&>Q`Za2Fehq0-1K8U+Z
zl`ebOGcp&WE@kAv%(nEbU7m5r?~pI$@&{gC!jLn$IlQE~F+gx(c26D`ABKL_IEu~~
z%bXdPxpj7q*z%UD<<{YGcLE&>b!FwtbENZeqfnnDo}4N}?GA_WI6RSV6$UW>_DV(-
z>B92oB96Bk#fIxy+3X2>Y=*O;gDd`fr!mC87DvZaH6B!?-7I?-1{^<tt3xRB2KJ=U
z`scI=nMJXU`FXmfjT~!G<7yNvUWhkEMzE@#D@5O*dhcWG8kB+2*K@INYD+oZCyvi=
z%lh}lIkb5qcIwAeF1wD?Pd4I2Jj2S=rrni0RCIvImmBFkHGwmSM{s;vJC@yt+zwIf
zJ^GX(JC3uU{TDHPZ_8Bny-{Outi-a(O<3Hn9dDyTsItMGcACw!nyKaFuKvczKHDfV
zRL}XTYC3GR#A8EG5vapADv>+$Iug=+EzV2o6FcQ4gNhq>`I@`yyK>lk5(|5a>-m`%
zG{`!LO@1EiY*B!KmM2-=B@b&FyVCFYyT9FJMS6L^fB#-~x%f+QOqek7??C!e<mBW;
zrc9aSXaCobOjZ_M@MrhEP@YUHO=9A|Z}L0oE5G%?YaH!YfO-W@CMyzuZek!4--eib
ztT>mN+jowzb=w{uoL$JCDbol`)}zttWH*y$X|hu&=^m%OwCKa1a_WU0rJHob_P{tE
z7i_|?QDvAoek*nAezMp8b|ecSk}+Rt@)j&6i*X61ZD!1(ALAby&cV}{5x20o(ezyQ
zxK2z`JiGVYp=|YXB*estR=zkVwT>9?`*=iWWZi}}xccnl<f9n$>Le1S-c*g6g!p)D
zvel$ffxPsZvzU3~`%|-IL()1*9xf7orIS)G@)(WUydZ@W+_>UggVYvD#3rcFige@R
zRaC89kh6QX5)$dng0-{p4AG!UN|N`^QOK3Ir;ib@g(oM^VwblHw=W$ed!qpyTrq@8
zs~2IDqX_TL7~?!Xbq1?k<x%PrNlY>}a`mbhKKL5blhA9$absgs){JOX$*472RB>_Q
zphYOJeZ-Mh;k>(WihzhXQGx~%MH$E`invK?$<#wZQgi^xs%UwlCcV^K@+pownS_L7
z3RJ6v=b>GMM}@KPya!g6Uwg*Upfj_kSn=%S&RvGZ(|fUW+(IZ*6WgZ;cpD7~FZS_7
zUy3S~^Yil5aiq?T`zOwcb1aLMxq*m4pRdYZ&#qB57<48xD`xj4+Q$bhOVFx<4?Eoh
zh<$dRH(6^?EX6onuh+<4jwG7R*pK^}{kZL3M8N{BnfjF&mndDi7zf-olCzHSo~~0X
zflYTZ(<vw79#In?`<1zpDBD<ZZ)GagkzC%JSbgL%e(xVMv`Hl<9F3=L#jGSJB;x1g
zOQ^`d*M|>8Cw(~!gHDV8+voD6XWri4eDn>KLdA`(KpF-xVec;Pk8a3;4=NgWsW0sy
z)ztF7e;3kA;nb;9@(V%|?xw}Gn3jL<B6ZrGK7ATX%Wp9tOnL)<SxkJVNMhgAL;mgg
zJw4>HA3WIm#DadUDjGNHqgl3O8x>3CATD)jtR9@gp>=->_#b8dn%ij8Igq(<OZvAi
zg!`76gcch}+fvr7n!27=lSY#%Wgy{S$=5yP_qQz|uJR~q=J|T)pMi(R7qaVtj>`G6
zkes6y4KuvJZR;D7)gRFnYsBQvwYj`@4Ou&M<mK*@)EwLyk5zN=_!vtT*T#(QUzM|~
zmXfFUNL(!fSh?~x{YSPY@x>*UAGl1k!kmU3hEq3tJS%tIV`y(<Z|*0)^pHohXZca;
z4evqJrCq#qu1B-daco@uisntya{7@qJz5mv*v7eBc^NJmHl68MDLw1=JYaCIR$~8T
z&aIlvqrlXJn%gsM<Pb8(-(vpSW5g!g(WKijY81EU+{$r03Q8l#87|_ajl9f3&s218
zSQ7VbQ@D^+mAM0qZWv?Ux^wu26Fpm&kk=(VFYY5CQx){rj+3GLK=OrMVez&rq|W5X
z^5xz<d9jlH3*2Zju0PJ<cUX8t%h<l<SU-C-Hf7pl<K;vB0gXAnVAqf0ROa5%#hmeS
zK>6W3FI-2le?+B}qlU6=!BJX_?T68+OC;NuouK)M?t~m$z=0ddgb5Maw9`mx6}8~Z
ziU~XoO-qQvfng&Ck<;=$Q|7u+v&T4UxH^l=p1}H9<9HSCjI)KFIMI0QG-V|vZSFID
z%t15?I~tA{L6uxa)1rjnJM1}^OrP#wH5^rbtXO-Wej{3v^1UL3Xf`caN1b64$RT<C
zcz2%J=hVy}(uBm|+w4BCrcbwO#;CzJnSWf*_<mJ{IQPMA+b&-F#gisS8SLL&CfBH0
zWV^GQP51m{&mbz%z-cgG9(7!e?tFqC9cS4Vca#p+=!G~pcgV=dDZM$ha33wl_LT>l
z`dr<{-r$0a?@(4Wl(oeF&2A5+V@dT!mo8mWLQI%2@o&b>&5a&CddScHukrhO$PKcc
zwoY#*n+GZs1}sH2r4j4@B&HtnpECXX^0M;Z<@cJb{C4!{42r*f;*9^7e#oUBY0LlN
z!{oQb`AtMKf4~&dHS0+FhnrXvU6nJ7x~FXWeZ;;x&A=rO8Q!ZB`xnol;FKfuC?Ul2
zZ$YmUHTaM08vn9${O|Bj%+x6zYybZJbnDhFCB%dY6aQxZdO>c$#?p)}=dC!HXdtJJ
zc(cU9fCg$R*ht=&L=;iIeEPU233utIEZoI!y+QJVB=xFGO5;-)pY?{cpI+W-_#7t9
zFY{Y43G$yZedTxMWyQqr=kFKe64DL%OG4p4%Wn~(f0<BqX3&)G=w98yKU;J5|3NV>
z;aIRCBU|R;#@%Ps7`N@Wi*bn`i*X5)82?T&5a{PEo7jX#CZ>cLd3<6md+vN0%$pn&
zNy6uMxQ^(EX!%9_XW74M4iAF9bnK{O!wHW1Vyg8|qE{yp?C;0Nj~@w$i2oEybZ`*9
zzCI${8=t^1^m;8}0mgXV{=q5n1bQ_QAtACb`9yp~FtN#B?0xkKA$WU<Yv3oDI2qBY
z5{QV1N?8+ev`NGzs6qS<@{^AHk&nS&w(nj(lP6(65?K0Vf+By;gVe7R9}$MHk4RtK
z6A^!+zwOSUl^lBX<(!gYqDYi1=Kd7%?4Pxn`5PATD)LKWap7UatG|@8J~@`qs5tp|
zWKcNY%33<;`3VNJ?ZV<ccTz(1Y+XEqmr=&+Yf#7G^U(_*Uw=ZwL*;Vy{uuD1!ROx}
z(rY?A-i-QX)U0cq%;Lgk47p@3=UXMjb8xf*m58IzoAEJ5L8RIYOQF0YlcaaN0j<`I
zcyT!_M4T8AW-eX{q45fQViiP-ZAyg!bCHg>*f%uU3=6St;*TMTeUl*n&X6w3_q=>U
z>h+iSxj6sy@-;uV{ok-SWGY3Ukt68WrKxNp@pEy0(}Ec#8+B&*h!Hd_mrY9Or*TZn
zpIZL;#%Vn3h74fp;w5Zazm^db=i>KOC!33H5+{ycNm+w!-D@%DvgAZk;w3FhwZQK$
z_(19$^MX^ijqXV$V&C86!ehxT=(i!!=OLHw|F-lW?;1&+mc!VwbrXF%G+_H(Nd$Y+
zFk4CHuHMA@HLKZt)B~T#yJ%9gJ8oOIGI!Q6diC9eBo|{n_mewA2Bx1kibKhVf5kKz
z>9OgdycYe|gF(Ifv)av#`P0TQdF6gN{N>)Uq)Sr(**mHr=)ndCPdmoz1LJAkeJb0w
zZe-N39?V~9ygsR-o^kr_56|hfTOTr|F3Y2+-y?Qn8C$&y6P9gbi`xR)HW|o0zhCfy
zo8-lzLw8eFeo88f7*3wNnX;y5L&usdy7gyo7!|kA-p4HA1!wPlYWT!6IDZBTbXu9R
z4(oeVAbq9o^0=5s=kJQM`WD19aoB8{%-Kl2Q~{!aAcZM#4t>Ds2O)9{RqzYkHmqUo
z%JG!QU4bR*HnM*GenS5R`cvxJ)<`$8P6+TM1Fq=|_;^{;^{gcaUMUGmR<QP(6+7Nq
zFz$*aK0<g8Ib}tH5Z@m6tQq%QiG@MIXb(%?_*pRFt_25QnzPGOgp0aw&jU;LzE`sR
zh9!^0zLrABoA_gxOjiB|{+G$hp+kpcGm!4xyUWu`f6qwX9RdRbNuNG_O33$zl*fR8
z05WIJ{69ymn=tWbknXP<HEIwW`}fY&X*5|mK(}sPd9tn*osL%I<ptx!NC~mwSlT-C
z;rTsM6|6{l-5V-*S<m&u%jFNutLo+D<Ip=SX(UbG^@MV1`f)JiF4>gvTsZ5F%FKom
z6|0fO(OecHXYY8Cqi}VK=W)dU%?B*RZf{>}sZuSQh<{m*U#fa7GWqSN#_A-luIP?F
zE|6;v-jcgmd9u1#6Zi2hm!E}GpnN^@r89nI@q2QPr=jL#aLPdba)puR|9W=&JYHe8
z)NWb@dtEfI-o#R%P&Ul8QM`GVM2^fBM2bf`?9oeZonOQDcX^pTpdrO-RwAt~fRpF%
z<D8)+Rmy&v5!lGB6>V6VG?IPeE8ugmA9c=G;O*vel*urNd%;)aa*+tVvxI?L(s5{`
z(Kdg3w~Fk{Kbs>h{HW4-2L&?}XYZ*c+*{F;v8P^<wbmkbj;}(OTuxNj>&?J&#wpQe
zv@VAANDmsm8p)*dI&2)vvEOYVLAMq%d~a697e2*7`+3amB;_-TAyul7X4Yk<Wp}5>
zDjipsc9heBI7T(-K(tE&cJ)`YvP&T%{XUW;nh7r-y&-e)S`^A|Bd*JP3^ppBKMA5_
z-P&ZZiJ^a~h75anlL8`@z{?w{JnA?PpPWYX+MPQe62v*%QloJV63)%0WUo7{-adg6
zB}$_CaEUizLTp*3rC#ka@&NrR{SR<`-#n3$frT~l5i{)tbE<zCfEfMZCLS+iDOjl<
zuBnavd?9bHbN_8LHn~brD~~ys-0!2(D#?()BBjLo@T!v;w7(jImZ-U~xSiM|hTbL0
z@?M{Zad%JCAmj#J7tH3xNj>g<7f^i+Bu$P?sDoZ`@qssrG&!k~H!bnvaNd`nk*{?f
zQb)bvn7b!gidLm`ZfX7iJ-0nB5gxB4XYm>o&TNAr@-@dj-ikQYL>y<5-yNb-?d43|
zw}LxUx)WY&96c(RrF^>EG}vOt<pr(f^D**(;%UZlFZ}Z7nS>=C-#CX)qyzPuRzezy
z^77_!yrV6!uuez4TBT7(`QjUqOu%bTwCQqCt6Xj_A3Kj_)?!pCWpsw{ElgHyt<6|=
z$cBS@9i<)NU4Vk&ZIj6CW5uEn9oy?@c<*V&G;ck->uWf3)rP0()FeN%qFQYgPlaGl
zHki>mr=CUc%&4z3$HP(0q@sG#nHzZLYr&-FW=trr<@#eQo;s^>E2AS(`|EX~$z<iH
zOj~j2cTVhQ;+r5{WXT@8Y}v9YA>TLd?(S5rTJ<;C%>GkczI<7>b2nk)TO-+!|06x+
zX2$1l@3uSi-DsSMOTx}Ejrcc;v0ZD^a8Dxri?~uX#Dkr_&{gO^Go=E>=e(MU2CTU}
zGwjikt=Q|>nd;WBiMG!`m%?UDT)c}yB?@t3@)#!WSj@(*4e>17mu_{+vU}WUPTI7i
zs)!$Dn}M!XYm)wECte!5Q%Iq~ee)z%y3XXtU_1JbTS}!`rC8EsKL^k6K!0&D-4@)Z
zb^B6`8oZiy3BF`Fwu~+B%_*u5V3=ntZvCJ~hx2$mTZwh(WqS2^!iHH6H0pbo88e#`
z6q$e~F^sqGd~q$2gL#V=<5;XLH`h+b-*zz_3V)d|SfR8aHt;=abqOxr3ZzjjX<h&Y
zx{&*HA2JeqO#;~~bfaToYYdt%om1U5OlNwYh4|KLhf9tI)X#ehw^QeN{3<uIx+qxd
zD+<nVg@@YmtV<E&5*^#rWWbTDG{~=~OsnCTZSKeFHv{QvZ7J8A(oCtE<WD`;sTez{
zF?E;iW!mxXq`B6f*Sd}r5J~HNZg9#hKc4f;QK;80=rRxYB|TXjT#0_wt(iD!Ek~ap
zU`fYD1hyDQrNleT*y_REW7AQZ8Ay~4VF#IN^`^P?6gEAECSk7$3UxpkaGpL_eVI^Q
z8u*uhm*;!3yA~n*%~L|jP1GGX_CFoR)=_0B@7tFH;qz#l#!Qr@QtoyAMAG{U^qsVo
z%GC<9pyNSKo!^4;mK!Z5ou++<irhNsO__yt@bmG*+}esAy}L8%^hPWUI#Ok<Nh<gD
zyfw5VuVf-Y1_n>9!|GAniOqP6=DkMp;mCZ^bVz1W+vyCtHHsPCM^ms#a{{hDCOLZu
z<2OVwa!5-u2EAd@u#x0%(1^{0doykCVeAeKWbTtZv@T-HEC0(B?pch!eMeHLQDYIO
zCsTGGp+I~L$?9Zr{x1nn)Ds)*!<*OXs9L2SP8WOeZhmWAKb@~85xvN_Wc2juYTw#E
zpTl8}6pVe(Fs~Rk4sVFJrzk@USHf?&anffVL!DPsd2%o-CN<&Wns&^|*p436vT$`x
zUtZ4HL;terQd0YiF(As+K>PA4hUPF3`reAx=Pj9^57Ih_jpF}^cr(&F8+)}gIE!~@
zq8UxH8MygDLBULVG!aVf1Su$#UPps0D&F6=r13%MS58d{twLNG1Fu6A*k#brDZRLc
z{|;^a9U^(7GhyO)B8iXhz32IpNsS2;|7~>mCs~j|(%?TJ6$kEy(z~$qTgl*|rP#Ln
zp1ehR3ICw+Al8NU<K^QBEVQAN={S@wl?!om+j5?KRAa8!lK9~Qhpv3Y);=>`Cyt_J
zvnt}n9EegILRk^NYt=#`g|xJ2Y{MD%a3KP-)4NksoGs0`yL&BJ8qH#G-*I%w7|FR8
z0UTJom(CmZGqCp<8kTSsf-8yDGxwmdv_&bz!R<|}@kwyR!OqI~k`j#u8(Ya`loe&0
zb)b8fuJmnQm133KF>p`^Y~CK@@Fjn2^g8s(ui3G~L)z;z=9boY-#*2V=0#Z<)`(>t
zr2Hm|W94V`<k`%gGn)bJDvI+_OU3a8>vUw)Y0-!!S#6-(xM9p2GmL!AI*}?lS+W9v
zgaq`q)}MRXC2Z5WpbnGluJt5nT$sFjDl2>U!C!6tWs<kAuuhW+>jcS8+?l5JEV*zy
zLJq%wazA-W)qt#Jv3`4!2gzVz?nt99{pr?!5<QE>aq3PGcJ^86HlioP<}D)2yURQh
zSJdJMZ+8XR9bAZs)lr~sSJEmY!O@yG=iSLvr5gEiS7X$mZj{XKNZqFGQK+M^aJJyV
zvD0E-GX@MS#HQ`fjY<88D_d9L+GZg`2Tr1$lRp<e1hH}2M%u4B!qC2>*|&Z$j;RVz
zxqt)lDh=9jPab-T^c6ZG=A39;Tgj!nk|~f9tty`EwT4q6VJfR`=b&Y&%p_@~cZ~u^
zXB*D1o<sUp^O-WZKkJuHCAW(sWtw-U|A4mea32wwdosMoASTsK&+b!C2n~opA0I*H
zime&fuQBgMV<9G6FFDS{y6M<@=n0M`>QE?mDTa3MO4E|A)a^W6i1xbTm>FnL+l(vs
zqNUUP1p-+y`;dHpnWr(}v34~9BD8T!k)Pyf%$*h7J8_XDLpmCE=tGB2T^QY=A?dS~
zr%U%<3}~F4tM0FiNqr-v!JCO1anEVZ2oNm^X+~(t)LZtnB9@FUdVB(<8bHB)e>2hu
zp<XtVj?-RBGCAp~<YZv$2PK8Y`FRVmKA=W22g>PL`^=nF&N}QxTCGb6F`h?94qI`&
zA3Q)Neh&(1!a7?kX*BMaMPaf5GVv=&g4~1&6aO&sbEu?7ZY7tm1RBG>!rImz^Azou
zsqG+K&g_<dTbS!e{QTB5pw?@IG=<3*uF}}@3EgW}WcJb5sN!SDTcH+}%a&v6t_zH*
zpMyk|^tsu%=d_DgXk_u2ZZ*p@d6&_ax@!HVyt#N){;g7}g_JW88?7aE8l&_1bg8X~
z{usog5G|QANFh3`EUYk7#}jLCpk|%Al&;>HGuL*L-4Klyb7Wsmwl?wrc4=l*TPLIG
zUwonv#6l>`zav9QU9ck6%a@_+R5!LxtS^UuLh6k!(PlIo&Riwq{Y4!2mO_OHv9Kmn
zdRtPZPK$%Jke<?)j<3G_sc)UcH(yQCIVj|rgK?_H;(i@z-Y^GANkY6!9TWEXu?u=j
zSjs*UUiY7nzH|xMr@c;<1nC<yzp6ju)?dNe#%Syy^)!Ft+4*Z^tYY-NU#)&aUR}B+
z|2}!}Jia%#(XGb>5~G4Rc<BR{mNwXlhKfX*ROvAn!WJ_N>}0Q<R;0C(+=@#6FU+KN
zObP)U@wTIF=?L0XXoYX;5;Uw=l}rv+s6{zyKXqUPo+Nj%!K5x(ow_y4;V7<;v?W)Y
zzStexCP$Il6N)bh6DO{3nlzHZkvPrN7DNQc5S3_4UROCt6tjX;GrBNzPY`t))un8q
z>?mXxAEJE4QnOBdUR;uF)GfsI6(U{SnuB`HXTa><A}ryvz%w(`6BVH%Tkg!p0D+~r
zRyIz?8!|pR35PVserxB{_Jn>6r~0&mjHwD^+SH)ygcBrb4LGGXwqBi6I}j5riERxU
zt??O1NLI_PPCrpg+>g(%+)i2hIbujKPeskzwJBYrCl_w+A^nFF<Sssf3}tIjr&?JY
z#7!%CC$X_HdL>iql{nfPub-t;TAaV3-jb?_tS+K~`_zj5r>$5R414Qna1@#^s}Sbm
z@{&1|mbR(P=ycSICpKD!<kDlCMn`c`tj;zDGH2CM)Imp~)Ox~0l?**=#hf<^CRNsu
zGrfqPL)zDx9#<{#7Z=ae%lpTW`bZS-LKJMdX2H%|#$~gI1)*`$C(UnnlbHA|Xo!mW
zG=NAnZp8~FNux&<7b_m<l)&!*ZDKru{=WG7`tmXG>uK44h)$hAe9{kX-4bJB(He9_
z28aFZ==sE$Xf%KNHZ%|y6-oTp-VhSwh>lG{uSp;*@)rg={RPB_1rrkeGxmUb72zRK
zQeF6&_^@#KW%0j|%H+%I;@8n@lL-m%m#>YFzkiBH04=dGf5kZ)hzSkB&rhW7<3m{d
zS7T7L(c+jN2@L<?5G-{<q&UZvl^>x^jOL^FN1~Fx+}yE#Uc7qrksp^}Vsz{edocy^
z@xN|&`QOA?R$W)k=I+>TT=e`%Xplc=&YmVdCWg7g+j8#n7|Rl5N_CGLk<ejCN3QSM
zNMKAN_qK1qv1Ly(i~Hih+1oT6vyBbIig4qRAEoM4A>i&qtg>grEIfuVRSfE+WQ^vX
z(d;{amqufEuwiI1?mY98kCHK8abDj$Bj4Lf@rKdp%qUy03?7Ge6P@70?t6ZeC{v6k
z)oj_d;|Xzox4HfDEn1tjR4tsu<M**-%buCQXRpy^%8WAN87~9E*uQ8azT){XXw@VM
z(InxV$%PM(ZV?`pNUEY$P`tTGV#drk8qDyI5b{{<#lXQsk!vOKEW|`gk~uTGHVj~D
z_W^_op`?k4;GK84T!#flCJFIpAUecf)DN+|d3>1W9nP|Jw>0BytY`oj@A2ltr;=6t
zO;$;hx=3DRTp86f3!_GFA~-sd_xDb)_+l*M`;;X?q@$8Y)IrO+tB5^%ke7Nh6nZV8
z{vXA&7|zY(OPP0A$=tE^<apWg7w6T(i{b%r=TuZRZeKab_N{wxKRTGr^EU`(XGKJS
zFLB|w*mYA)ol;pvIjactPQv@f4ql}$M@ex7;$ma)`H(<N>^o+*9z>=t6DVevK(xw0
zh4NLf(L@j+%0!ViBl>`QJPAx9F+3a#mkg9HR1jU5CxI%-;6Y$jf;6_bcrAXKX;cLH
zd>~4cQ($NU<(ih`(*E5<MSHUQaR{Y~<fl$8D;AC3OGKOxhj(8jC?bd=HR_Qwbt;k1
zM@WykI!PthNtp{3=h>|@;+G|wq$HAsGEP;c1D#5w6)%otk`hE+Eq!T-*HfWMd5$k$
zf`5ECm(E?}ZBPsvd6G2IXed_^FVT<-*Tu5y%zesN&dZZ)$H>%h8W+~I=lb18WGht_
zuj@PIIJ-~Zqg2&`Vo$X=rns-gudLZ@xP9#wk)cuYdFLuzj3+mxuLLQG_f=A2(pU9Q
z0V?K+=DBYo*|TLP;JK$bw^%IFWu;_+{Ak185R|MH?;3FoQI--qwd(V4X+pSU_1ABL
zzY;T&)CSsBPv&^jWY*SKv8SdQOHuZ@bE+Ah-)QTt5-pxql~n9(DB@JrU@o$jXs%~X
zLlrqhn=w(TXK8&ksYEu*7f|EYNX3Rm$uvuCkn8i(g;g97ad$URQ9hMHyt7k!0ZjZZ
zq>fHy+S0A2Cm0IiAE_rWT7g%nf|5CPq_H>1eke`+d8C52wzmGoS-4)kdL@gd1`Qgd
zgh2SI$)syEjSl_#l3MI`bIn-x2d3lI+#z_EXhV_IUwT*mZY0-g*|X<BsZ?-uP+i6z
z{Xn?aQ!ZcM&BYgKsb4W?O3W|3I5duh7aV9<DSJwYmU&H^5nHt}p_i`URICv8Ke*iz
znccVn7R`H-{f9He{3g7-yvUt9xA+xK*MhlN6`Y6Ob>;8(EN)+nUYkPc&?GzV_aZ2q
z_ZtjQjeA7P_M=Hxsxo0uu8}Hteymc?FY3`o(&Vj1fu7ST>?DQUBZqxnk}7tmMxI}D
zOPI{eM)k33D$2w-ht1FO?D8RWISLYVY$6>->?1P5o9nkualj*y7F7~y(_|fuy496u
zo&4i?(Kcr_9;r0Eet4T5M~{%UNMmxEJ!9~&QQUjs$*nVo`Jl~3*#dG`C=)8%GB2bG
zJ*yc9F?~W6aEpG^SMl`OHMZ}+LgAYANfW%Crla<v^M1nmYkst>Rg$>3*V(pp5o5;h
zqDh~2l4&e&Zyv#I@fhZvQPZVKNn?V4Gm?3fTCL`{*pN$gz|EUC$(1V?S+ZnF3H>Qj
zouSoge=$ud{N>A+6fa&JrDGAA*GR>_t-HB)>kcuBT-2^okjFPKk*Q2mavJAh!Y1%0
zhdySed7DlY*4$>p&SN}FD9XlV{g4bU!mb@>{occP=`u5YLJu<JEK32a=d9RxklTLo
z)T>?<b8)?MmoG~?3ri9I*ys2&Cif+k)B$Ldf$)P1@v7RJ!jU&P`QC-j-MiuJcb1I@
z-6_?1CT&Y)q)>x;eB8N_7hys~zKNj5pw2XJ*pMg3*Ky?JCBo7br&^&hl*|#wCb#qC
zs#TvN*<C47JS&!tSt*(~9roD@pz(EQ@8Jg&Y}SJw6_qSlx{X^eK2WT3eKOl8aQ)6p
z%Ga!ky%2U58H-TTH7&L|Dw00*CU2Fw$V-ff|B$=4Zt~D4j!NZA67b*}9{2BZ<7F8A
z7OkaGZfmqcL}@KEQK{^wZeMZT)k#=olG02=k@{Up6L=iA{g=7*CXTU7R#4p80<|g$
zyR5~@pH=EXcA;b*E6j71qq=w|?zvy!*4<m&3ASU&y2a#kOzB&+%Sgzf#oV+hNrhT<
zs9eC<BW#~87mC0D^yVKqe(@PzZ{JgS#6oK1u;=XNmE7<P=8bn8V`fhxvy+mzU>~mE
z^Wc{I4Xmp5Wz{h0t3fJ?We8`}mV@{tSWvcjMJiUVNq(1)xb3=(OO<ZaP4k@1d(M)S
zwkQ<~6{Ad<JmT)Kz{>j)r(^TcFuw~AAGmX0<o)LDP?`@IiPO6yY(9R6N<HV&qHr2=
z){sm{R&n6WL%ghWF?n=HuIzE+(v7>gR_-9uEGph>=D3zCgq?jx{P!#*s7_akSg6Qf
zsS>F_S587SCR$Osb~#jWNmOmsn|#SvL^)sKS)`JBl}qBBF*k*CrN%OKehOH=XT_$&
zI92S&*p?-T_qxmajk~$=A(3e-=94>PPV!s4ljAs7>d%ChMZ__*LXcZfv|>^6l`g@Z
z(|fpfJBkW*N@C@Z3Ey1{@U7I7Vsh0i<;O<O&!<^9sx+#@?IRmFcKQ;rnaWVTQe849
zd5F5~JnHl%s8pmF#foIWDs@gdpL(qdt8}hkey2D7e*E|`B}$Z#pZj0K!d$_v53xKC
zNT7f9OlW>}K%|*$vLZ#1`g<h%ZprhO)N}sDXSgxW*W0DApZhKK^nZ$H-2baEu^9c5
z|8FcTl*~TuL;KQc$&=Pbq$hU%mmt->-(n6H_q(q!t1)(uA#bjx=tK)!Lh5K5T30O!
zNiPcNw-v65U+4Ev3}j$t=Uzl9%*oz<1j8E^z<ptV+_U$_dFNPMR$QTL?oh7mJc*A*
z7OK^%jzzdXX$s`VMje5tuZDbiG7$3S8J4+<lIrK%0e_gUXX@P6G9R%MJsDbB+M=aH
zwaQF7dJVg%2y*7mh$hmXKxG!<&kbSavl<L;Vn<?za+J&A%;ZWHDYDz0`j!zmWXg!n
z{|z3`eMpt7Jf-s4Fu8ICimyC@ON1wdD%Bvpt+*c(BY67K4~=LHlqy*iGeaWYUV%gg
z29maDIkGt!Yw|A>0|n8$NPUiGYeewrxmYB4)3tpq-bJ?I+|BtUhQ^aIoddz1_jvd&
zoWd1qkUg~--XHvl3<@Gk=_=UxUF5=*P_%iA(7r}dIsJFH-FX|Mq<qyXq_%}f&kJ1f
z2t(^yRKzL5jaA(kd_4!();Fh7nR@ix^NJqjjGszFZmg$i$7y6Ad4U7Ni{Z1m2h|rm
zr_bVpOl+2ghxe}&8K)$7*~;XyR}${?Myw~IbGF5;Ll;_KxldvLhXh%;;+n;gj}IOb
zWuX@WsuUR=W9VBU7fusj(j#UH8)JsBe2_8EQ(IT0=8SnP=yRCEw^kDGd!OfTqp{B9
zN~MB1<T!zE?(+CUB!$aY7v*4s+W$SzL*lWtbEZgsV;m!|X<2AAJ71obh4F`@<Cy1P
zg<5y!@}|>qW;9GIZv02|ZoZR6Czg>a?mVrV96)K~#Okw45nDfVXY*t(r|!a}7Wu?|
z-j<8$MqsyZBH6ZFrE?}2Ual<FkKd!YT?lW2FEXIXPWHYzk0kSBgy?vDV-+(GW#h`e
zp~eLNX8tV`1L?iaG4QmO^+Ot`gnS#qE-#?ZwX{?VI8JE2`OIr0`T6)E;g{yIGQ2KL
zQ@>%{zE@m!o0GD|goNMO*{sy|VNsKxb{6dEQ;(p|`xsSC@**M;O`k%I==|~~DRb3+
z6Lg-(7<|={b^U9mg#2}UJUx?D+TJW_CLZ|jj1Q+~u+h+m1x>zf-oDLDo!=)WFDpMq
z^0Hzw_xTPngk9$*t}I*ClQX-FcArXxaWWpsTY!TymW{nTaw$AB*)88PwC70X4(Y-H
zFCnOoj39rTg<_9z`gR;o&|fUZe~i+?lA!nRh>i@$|Nb7LUCLn>dxq}4jlN|4PA;R*
zs@vG7a^!)>2_Aa-uzK7m_CEK;Ufk3UiU3A5A4p(~C(YZ=;i<P5n+DH7{?e|A=k(dL
zy!JRi_X%4>KoSf4jK?!fkLK+$hR?ZxR`rs4H9K(eo;R^6p8<b}9*YbG7?}P&`$eMR
zk57@cQcodVtqHujk>1nK5%G9GgJ!Mdo!<*4EgaAL5BF$LrxRBn2a9vsO_zQfu+5Vb
zze5Wcw&fWQ+-5Rr<2Aw`US|HBlf->IE61_RZHzNw`van)B1sAj;`z(BB#8!DK-ibb
zKXhs}1=^1x-JK1xf8Ax5tQgp~6y|0c?yeiiyln??KXH&|T^Goo{<jWq#^}v=2ndeB
zLX=tPwQF=6yns-V?ww^L*n2x1LxMju`cA?-ISI8+PhfC}xL2%*4tPgQbR@xVukkt|
z1Fo6vP*_+K7jmB=<0f$R@)ed$o`T!6BqDEbWAL0cyz_a=#6=T%`}R6BrtKn5rRVvP
zbu2scPR_p(1$tF1ul(Z0xkhop{U!O*+px_$Gd(3SE=MWJW=V{TpQk1-rQA9<hSv#T
z-5F`v(-+G3o-K=UNm%R=FPciFQuDyqfr2UTzk+EZ@se%`hxFukEhne<sXxUjLv~6P
zE+`M?Gx6&va@GIlVq79^t#M2!8irNXA<X_6F)rbhzYfm+SGe+4#g5e`G5%w+Hkkag
zVqBs^@A1@k{rdZs9laM$#r4-aR{u20e9ga!7?;S=XzF(<#wBt$p7zbf_#fd@TV49|
zZ(Bb7YvK!1iI@cWcgV}5n|Su_9b5Ka!ROK@PKJYxWr~T4LWv^e1$*D;Vd{wb)NDC~
z`Wau5uU<tVcs)3GHI7PI;MR@HsH!zavXJ|hSX$ZOv40hd7S3nh5g(>)T0s_zBrL6s
zb|x0qwpd%5%b$FU3E|wmTVEFT&dtdqm&CpnqEb;{Wn+cX+z$JU34Dx>qhz~UWRnJ5
zncLECKyL=k9!|{dXQ(5Nv(Uqfkg#WX#+q~g>@q%vnUkhaamJ78M&Wcn_XR>vQj#T|
zMm6I6w$q$Fai7NRs$&qMSfRAU$;pnR+YeD?@KS~k7|Zr~%gAPDz&T%WMh|I&jpr>a
zTTGx~t%{79(VK^7ccXN+L9K`*)Y^i2?W*E+^&AduCelEPGrbpgPaL95od%Su*?>w_
z+EFrZUfS3C@~Inx2DN!1N*7gd^1@jXvKOX=iv=1Xr0pED;9y8Y`gHb$9zBU9fvp{!
zY1e-swM&<SAYVE(ZbAOh>#3B@j#(>@;;;AOxo0SG?>BJjLprLIEJBxN#jp_N{`|ro
z7A;!H+)d|czhpa^?PBH8_2%YQqA`?%R8FaIiFwc6C*B<1b%a{OmNR_dcy`ZUM*QXN
z?Dh@j<GW`B#s{)@-xt?<;^L4P{GN>~7cy_w3_{C}WK8Q4s8lMs5%EJJSbpF!eiz-i
z_$r8HE2YNOkBEK3&^B#I)ps@xi)2QnPO)7T7z|QlG-U;~xS~J&ys6QCiTh6=HI#qP
z@>lUayB#gpY8(T*)|Q^)pT#0eX-1A7!`MMR$^0wkS0;W+&T=&<l<DgpIt$7*sz)Z1
z6XX9^7@hT)VWIr@Eno6);%ok2nyg4KvcJ<U-tRM6iDyK`$`o95go;iog08J&Sx_^k
zWID+?m(Dovo<y$cb6DAL5&Q1%M>2w#*0LNGHXh?_^=3S3Gl9z$?oo2qW4aHT$LRJY
z<YWAmd~LF_wMAZH#=m9wS6|-~efLwh^CNCtTfn_#y_lmLz|wqs7<ao4hvqim_3lw@
z*Ve;j_aX{y77dP$qZoW)A4-3JQrqiT(Wo3w8y=$`+k%S69#Yfx2^A`A;l}NH<j%jD
zT~}9-J}QtWUOF07Hlt3DZQMS+G3Dq+zL>1|(Yf?67Ckt^#>P3g>O2$oT?MFL`5?;|
z<zw2h^t4p$=6R(V%x;_)?~iYAGz+B3po82xwGPkiLmB$91?Q*L0H5QO8gZL*>jn~=
zWQ$$QA=-Anz}Uh0*brWilas28IL9bG<}t?xIWqKoCXUSQK$q%enSTBrxl=l|0xm6L
z@R@vUZWl(U*#~JgcsKc9Oyp+z_FP#!hS^UZP?ltBWT?x^;A^;dDNEW(_h_F#iP2@N
zP<8cUR*hWAz8i-bmah;6*KMa$4riWTyHD}19XZ&wEQOcfBm3E2tc@DX%AsG~1M%mn
z*W^0G+K00~p))5&R_4iyzAUmCM6<UucwKi9)9U8tW55SO&#j@?d1sC;?@9EVm-s2O
z)1q4bl!RW>qQFSDy*`U<2A{&#c4c_o>JSUtW(U<Ry0$vO`00fiHupJ8XLrX&A3^`t
zQ<!@HDpie+H-uilPsa|Es6BlbJu4dh@lLN<k*sdF=#>)&mMKfallN#Wo1(v@sp~M-
zzq`bzKC6i58|XMAf%At(riA>xNR1HbE5UCO$kM0IRjXD}vu4ddWwIhoezk7hI@*Xv
zjC6bxCQST$k;aysIB|jj0|t<kBn=e)Wh9f81?T-3zwbS{GTZ&D?5{r|iSiHLahw`g
zoCbwVCMy!tRvi3ug4|4LfsK{XxZTXmAdgg5SXs%Vu+_iA8Ku(F8ViF)T$Dfd*;z8<
zu(r08N=xJeG^%9O(x`)<L7|Y`aK&Tm=!oKP>R0<cf;{%w9y%`a<J8V^#*N7@saj_S
zL)+%zW7am<ADBg^1^Y?0zYn`U6s1_sV9r0!%JH2;m{Tt!zFn@dp|hSMnLD!S$wSJ2
zZLIqj@wFh|+pRpIz1$gA^{bJW`Y`78Ymc9E1snpO5Ls;=Q(aHcV)Q#2)fB=pT*<t3
z^EutF6-8IC;=+L0^xH9l`2(h5n<+aH-YVuDUd-O6^{KG?D%EVB)1cl~j<_%7(wq^T
zh_S?66Gkf6&dliKNRxhhIJ0l*4?g#N5#;_1s6BxRmv-`Eaw86Bor7CH6|EbcWzMub
z%sJ}B_EDJ_Flsh9r6$oS6Lb1BV8DbUoDvNNA|5iZ>qH7Q?7+(#mnhnACFP@5GW}36
z`J~AdGBsrGU{{898byHy?M0l66zQ{q)>b<ieKiZ)C%0y9$Kt#%zJM($UKE1dS2Oxt
zHg?Z1L6b6Fn0Mcum}P^xoo6r=L}O;lgGf?mOJL9P_gsl_$74WUTt-}=Ro+CV*KbVo
zvsX}yM!_0I3)U76X7q{2SQ+$ujIw9*=Gi=)-HbWGZCOy|5l2JYuyBacotjMi6<W5t
z#@e;bm_A||wgocq@xBnZop!LgK|KA&ED+`3LXvY9mW=Gpo`v&xqp>G3F@_qg#?igz
zrvaIsbSXcP1-B2A>Fa7D){~KA#*<{75oLTlh1<=>(S0ak4Yx6@vT?xbojLVcVm*z6
zqbkVjdxn*!=Q$U~w=G3TNGP=iE~j;tv()Q*n#$=Md7H5;JEnC>`N;X2&gCYv`0ioZ
zhFl`@)pq(XO5niOfhi$>FOiXvczSwbZvMZ!D5Z-0)TvWcuU`F63-UX6?)<GC3nomM
z_%=w-v5Sifg$fn=--9|8X1oec<hEBVUncna_n{LFi3WvJk<rOg9#r~o;JX#%3Ue!z
z5ieN3|1#3;qe^h5<Cr#lJbV~U$tG0GVf&jzxzbXJ*OkLOu`ETqN;!VFD3@no^MAzQ
z!`Dd`Ek{j~H8nc4qf{olpGixJqe}qoiwt1siPMyDQS%4e0KbdhBgiFJb!sfJmK?;V
zkeHZY9M!83i$=Vpt!*$zN8pQx`0LV9xJV9cMRc7y37ygg$+|_In1rS6xA_)q6y#Op
zJW1{t^%i#WF@JzAp5Vx2Qad}LH#5gdsU<mHMSMaW<}MlJ2}9J0iI|HUTO%5BR<_pY
zh3E^7O~%$ay)<V9DskTCwszvG=}AmbV{0dgeglzVVW`cNq)U@pvScPPNo=$Ep(~az
zf?PBd6Oyr(ob+lnXhj*CEA%8KYO%3VAa)gvN^`X0*kLhAq)wj!OVMacOj3PGQx(9A
z2f-+EyHYTN(Pc$+L?}rbb24ObF$%>W$I+|Bc7>d_E;)|KBn4?xrCfiV*rqjZQ;Q5(
z+E|L{$!L_;qMSt9A;D;^ZLzhm5)ZzW>_gei%1-tvEtQFdC=-Ra{xR`dob0Vgj*B8X
zQH_1tbl6MZ0d>iQM5#!V$_A}Yl)dHGO%=&YfL2adC-w_V*5T-2k5W9(R^kAX`@ygn
zaoyx{5YY`PA(Ep|*xHlU(dcW~h(UHoW^HHtQ)@s&BB7zN@&L}%jyB>P<FT-@{}NB1
zOq@!ALyA9Uby6HjDvfNWq8CEcHkEY!#kC0yATUBf_5vBdno?L?y95<BMyJb0BtP0J
zgScMbc)-LjAoY&Fef#z|3v#I^?9U2viElB|--HPh{|uizEBzKEQEu^Rl7W9QDy{xs
zBgQ4Zr68Za;?N%x<Yo$Ul*#_|s8g4s<F-;KmnDx593|KAVZ5C>l7tQm8C4~nEG%t>
z=#a`=VWuY`E(t5~0+)KSl?tU%K#F&m`}{%dvF*r?VKvZ+la)Gsq(O}8qy+hbNmE4I
zhypNAF*-76g|L&9l)%E;fmcUH(tCq}t;@R+@c1ONm%qU6?mluGv?!HE!KSnjVn>Kv
zOS=y=&en~wS3M}5T7#LTtq?&%h-g%@e_Mq#>4M0!LF77Fh+4_6_s{bCOjf>sz82))
zD_;b;2@~HINszyL_wIiRa;Y-^D+Rd;6DCZU`1|;_g8bkg8`LRzX^6VNlhca&Ozz&8
zG9}B>YyNy{XK^BPp<<NEkyh?O54pRCPQ3>+aqKV#4p~IBgO*KGrm}g}LI(8e%*Ly}
zSXo+-DtiIyl+1@J<}ouTE@1Qgi3}Jpn9JT8v0aFIvqZKn9?yWmLzysg1haSCLiv?X
zZ)w)Bbh!&rsX_(X_Ucbg?%?rUPsFoBEOPU}!O@YRM+aH#b`2W~D-mBI3RQ@FYfH{=
znoJLo$5n?PVeRBV#Do2G>obtPgC=vwFBS_C*TfHzY-N8-Z{R=4_dMXugb5QSOqeiX
z;uDfR$sg+>7h>DscbSrn$I*W9Xu7s-MpkEA98x7PszfC+EPurC3^%FTb3U`y9wJBN
zQEE3`#i{tqjIqc;(e)RZRL+MQ?GLm6?g8%gE5+Gjn{eykNA~R9SbX&*MS?fbX@ePe
z&d=uF($0*3Q<B58+H+-QduD~T;PLi;Xe5&dYX{yOAIG>eIk>WG7*S6TQnklg_FlP(
z`eYvlpUBPqV`I6oxi2G5<>%q?Ce+E&j)}MK;B;mf!`w6DHn$byI<}_ws$FdD--9L_
zE>SY!6=9Cf6v>oPl*6CvCI4SN<cAI&!rk4SF=NKa{*1q8q+W4pA|q+i9m$SWYB7Fq
zNO_bdO_A*JBp=ZxOnfV(-jd9jGyf(Va#Ihv2@@tv{CoMPJ>)C@pvj7axw!=qey@4&
z<;9Uhd+~6OX8D8N+-lR9G)o>(_I^*McsAhb%Jvw-o>8IZ7}h-7$;`Yh7=Gy{HFJAW
zKXW_A-n~QMl&YL7vW9gny(nG#7}uWe!z^eom1+pF{(3b-s#K!pwhwg7r^ENiWa=JF
z%foH`KMV5r=cd!F-wCSJ$i(xH4lLiZg<84oxwmH&W6$N{#{QAq+B#VL&d03-^@SjB
z&y3sdobQ>Bm*tl;yk07H4{MA4&@;rW>w;gE(Tr+YmcqGn3N@`37a`@O{~*7`WaZkm
zYb;u{h`6{f)8&7UNMctSOjfK|G5PoRD#)eT5Gz%xWD?{iz9~}WED7=7Vnc2c<R(m*
zF!Ar@TMF_&HK<eauwrX%A@&1%2Xj`oEyTGpi>Y#926l7qQu0<O7W%j0`26N5qFzv`
z=4c_vcQGSR69%5UPQCozG|1MC33qSdKdH)RL0+o*0WLi`fVmLl)f=AR-t)!uD_@;v
z2fS&PJ(+-GQ>c3=-46u$o8x1daG?O#_jF=N!<qz^8^^vW9k{!-KjSXs<L3Sm+}Syd
zQ73b8GewZkymgfmLXcn2(1)gltVz~FnI^p{rFg>TGdJ13U@<LLU1L(C9HLDA+>8tV
zH5>A)SFcjFYE`+1{CnlnrAySVT{~sXgo$s5$%fp72@@v%`+QqLe&CPUkeeyZN%FqW
z{)?~B7<9x(`SJ9*ib|!jkesBJdnGd$C_&&I52DO13GjSOU`T@O2wtnvij$I3F{J!9
zpx0^9>I~wyUhFHxue4qIt=6EmPD|mews>5BghG+PjhoMq-0gjhL9auVoGA8nV9K(k
zMDFa%{Nuj3WXMcHbO0(eJidN|SToseggCC6WHT%3R4I>*b8ZHXoxq?rjYzNb=Y=Xe
z6UNVCOskUk_=lQok$(pHn*B*Lo^OqmM-wJYm@r|&go*DRNwWMwwP}XAt%1XH`_iRL
z7us|jj7{eijH;6phitiVRwR<8>JY}&iKbPPW-Q(Q3@aB0^adq43b<mU(4khFlcS(3
zRt7B&nO(`^Vu9Aof&BTifnEr8rK9+rg`_woy_Ro5ccw2bT8-tM$`YmIKrN-?ND||g
zj+w}v%>`9bJj#saSifpII|g>fKYu$~I6kLN-EIV?DNd2>k{@IRImK}m$;nh0wt-r@
zLo}$@fTlxNqq8>S%#!ictyh<0k!2X&xjc!<CX)vfCQO(xVZww76W@+MWwIhoiT<T0
zQjc1tMQLRTS}o=Ye(bpuNQ3f434gkmahns^dvGjPLg1>U>9s}LRyLMs#cwkUE0lT>
zt`lKaN>s^e=>YO?slz<p^CIqX1*lWRk|UGH@UhA?rnbmVa*8R5!rT%Ig#ne?D4vy;
zR<d7gjarAfrG*gfddw6eKpZ1krAs+(GCI*fu#%>4N9vsiomPiZ{_JcJ@y+DC{S~ud
z{UMVTue0=7|A0jcrr<0tgXe`^ymhIJ?VTgowH`+K4F8<D$k!7CJ>I#9^*4O6vr&>@
zV@9X0^Ql@OWlGAg@V~o<tKlW-(&*Dnk9v+RT0+hqJ@GnthVuQpknsn%o0_8w7EoaD
z6!QOkvHdDv+#bfUdgK@qD)(nx%i{93TN|cxIHEA)yX4@^0|nh$l$68&TB2AnZWi`+
z`q8y&4sjn^efGnxj(WtTK`YT@a1o7EHQ6e3WpvxJDO-O7q1TzVJDKSt>U>V~m(dZQ
zsKMU$i=XzOhliQF>H_92cIZ?|WGPXDQN7##;xy+!Mx7Xs!p2_qi~fngcUM`u?kLd~
zsTn<H8u`<})#GzHxi<={5(OAPt|w07n#V+j;<08a_FWcIGl#UNFLOpOCOXuTg1!3D
zqnfLno<!jNgUnrf35!%xJ`>4Ssy3s0w&v!ZS?s<Yjv+Y_rR1mH+KEBqXOK6Qalbno
z=iv4@1P5z{r~^b@R-q5Q8YZ*tPy&PdN@h&aOrJEBrsJmLyM6<OhfE-k?AAP<m6Ny9
zboLPBto=qzCMzaPm@x6*N2<fWr49KXw#P8&H1ZU$(o4g*sD-%DqY=L)-`&!LJ-&BO
zGH3QoHe8Kl&Z2>s$Ht3&gb<cRt{zp&Z%G`hG&&)iwInC0<dgpLTO3Q1$jNO>nKf-5
zK_z-HwPkK0+P~O!>$U37Vq8L}R*B;XF|Cu*NRp?PPEJY`VqA*z>A2#jK{9ob@~)EO
zNbyxtUgY@6e~B3Xqnz2eixc}#bJNr4btT}zRql9(@c6_LUPsG8s3QaL4@oet{6joB
zv>vA#BbYgT8Z-OXVd~)C1pZ91g?nD*>Vv?PH6yq8@8fx_6HU9eApK8thmM;E_7P}o
zC;kZ%xVn2MbM{|IS&wDIo<;22=Ye(B(zLEyC?#C*i<etXn72QXzdDpa^@BLk_x5uz
zEH%Aq=VC<LM!bqKhD#)dKH-*M8YWGj$;@dJ__%!#>mL1dy5!_=fBZueQ`WvB`XxJ$
zKK>12T(pgYuF<OZw3Ia?0gp}+k-jdoXG~$n^eH$!+`<6RKrg@46W+#+h8X-m1oL%n
z^hu%k`$v5)o^`{Ta{OJ&ip)EDcbP}+VKW)u&W^#IW)Kl@hiUtQn7(Zh)vWI_annN)
zFP7cgm$Pi`BA$jD_dGRWAbur!vS>vgj!quUv#+kV|HBhRXK2VQDW5Z@Vt02l)6V!(
zsnt;C&m4~S_I-->n8ftagUIpK{QVCPY$9umnarC#of$J{(YtjClKmfZ{M;*f`<xM-
zc<<bhl8!c9*|V3xWI0%n#IbG12}xNqVZww76DIx+B;EUM45WoHPq0YG#2JfOzFfS3
zXHCM@MaY`pF`fP=^ja16g_^Nz^J<nZU&F+%)n!5b&q?LK0ev7Fywh=WYd^N{JSGQ8
ze%CE6%(1k#5v?;N0Y|6Oz3Uv7&l}0GX$P3otsggpHcxuAj#@oei9HO=Yu}N3-&n6J
zEG)_9nhSg9RHV;dfo#e^Axv*DV89xAd%&sX4B7e$hcsyj6+&=m_l7hbxr%Uc>)AOt
z;G_&;!Qkn#2--7tH0_$Tq)qD;LXKNvZ)48U6|-nsqZYG{JeAXXv28gsC$3=bgrS^%
zEM#NybGo+c%7D(jIr}b3j`KtGWGqmVN)c~(q7$<D!wsDBx1?0Y)P%k`$>dcYqNqZd
zKCmfu8`fs{$}Pl3J*Rv7?hNcUfUB=wvAk<zmaKLY!mbw=UW-QCyZel6+mU9qTCsH7
z3vrAv=67spjMJt!H+)s>SiY2}m#?sT#S{)-xXg@g;y5WtKJcA0W|wEabau{6<#e$m
znVEBZS_gU$8qCy{mwA443VnMmVCk&E^q+Q4-tX4tsWfiZh6xMy;+QHGv9TBFKg3Pm
z=6!TA!?ryU=Mu!!{!OXZpbld<AL81n?OfQup2b%J<aiR&*P;yB^NR9MMXI!!C|@8e
zZ+s#l<}M?eb!E%WH8g8H1~1VT)ZAZB*XAQ+Gq6V8HlvPt$)VF%8MkyxN@@aKI#%!A
zL;dW|<jI~3t!M<lcfUZ!67A#}S1Z;k&4=^XMMP%?j+jsPas^Px4{$Ua_N(aCsW_y{
zM?Kp&xWAObjYt!aWyp~idnuo3GEp{PW?sD$jXEnQasJsz?dVAQ%xT3rq%+Pcnu4XR
zE#bbNyngeB*RNj_B1FEWg%xRSl3CiP885SrXV;keBBl;=D{H<?HK4%S*6KHZDKKHe
zgb5QS{wltWAeWFtc|yGG#xFiT0nHx}<DZa3d8|lBN-II?HBSluuM&D~2SM7bWG_*S
zz%%Rc5@FJ8qB26H*u}n}|D5~GI<=O?%U7Uyxt;_oe=gsR;L(x2TzTS6V(2|iX>w8a
z514!W9<1#g*fnDi<As>+)4dNFx-KD)br7EKjs1+8=wQ4;;!v9DNwmwx%57&DoBa)A
zRveYhD9jZaKEC%y>35!?C*IL#*)j&!&rFmMODeUByv-(Y;@o0REZZ(pyH5AT_vtic
z7!!sxVeyE*1SRUZ?-|3)9h+(3nqsr?1N1`dx-hbb1DlTo^Yr3TO15i>g+YTRE(E`D
z6=&y<BecwDE}XqY{X&jJM}~9vZ4C3buOsi99UM*FpZQCsv1@uIrY%~-DYrS?&)=Nw
zZj;EJ+JNWL6`apF$QWlzMMg|sL;E2^XxwuUgNMzhapelk>Rl}*KT_k$nvYkuFlzjG
zMhqRmcFWH6EMdXB*DuN0S~NI@W@X5XC(Jp%ilwVoqPx40yRXhNe0?~Fjvr)R@ABxR
zDTk9I@%k7lr>Tw%Bq%}8xjAEqsx*P~XD?DcJLIj=mFg{fGrDGGIi7^2jXhW0rZ9fO
zScdoQ!?Nf0EE`gaeUqnR(|b8nr_W+m!)O+5J<Py?ZnWROo7oFiP%~}?>-_W3wQ(gD
zjqRC|nn3A9uH0!*hd-iSi)nP+FqO2r1av7jEe2^KF5Q>U3(1lln!L$?Mq&B6r{BUt
zhwiH(8&)=UT-iM7b3RwUab|Yk@+n)j=nV$h%hQihD3!c_bPW%W>tb=|b#SsQ(qHXc
z!*PENHWr^;iyBSUzP1W66YKx=`o)9^6DCZ2Ur6tvZzsr2{9!KaI*6rJAk!D^C!=FL
z8_z^zX>AlPW(ozG*eGJ1^QG9iT9e;JO|dRR3EH-RjWLZl(pJNyRfi~9;gfjzcBqq+
zsMTdO6UU7f`Q6OI&c#t^RI(=?33GEL=0cF^v|0)jH`>hRE0q%~O`;G!@)==nrX@CO
zJ>1uH!F}^8wjSQcySM~wY#k|<SKOjPU|FjTBn5f#Cd7-4i>5Jo)g_8mEdhziq|1?+
zw7+;K3(+SUaYZ_fMR9mETdrrNea&pB)jGMS*ve9gw|^|fOBn6T>(^>cHb(_%vSq<h
ztOo~0k+o1Bd7EvHd?>=-(rm^y24)Op*5cV*y8RsgpjfgO%4>|1GauIR0irRXL!06Q
zT{7YNtU3jHjhghu>oab`M8-~-#^DW9kcJzZSy_`WhbXt`5aLtkC#xLWo+4TFc-?vk
zg(`@vEy!3vBqtJ-9$=+~97`JeU@6MlD<GB<C5p&l4ePWflbzuwU#7IGB#JfY&J-cQ
zM-Q$<sBbhGMR;J08F_@TmdIW(7l{GB1Y6{!pp-d5=>qly1c;`RWXko``AEdPI7FX8
z^J%g2GJOl!Vi0-J#u?3R^x_(s+1bm#KO<+!f>ahsBz!XSNwCKLt7sZ^G9?=Hkn=fe
zPz5=k>1A8*Uq_=-(R$<<hKXh3q{%eOXH8;!JZT#a!sF~I9M4Q+{`p`L(*bLHopcMO
zpeMo7OoW;+VZww76MruXjSiC3W+bYGwh@c;Tehz@@sD5#xWLL=xj46HF>~fF;Nbq*
z9G)^3zc>|Yjh3X?7<6g!P|5rbTipW*dwGWa&(c%1N<EYp7U7e-HZ6wNV)^VH)TsZZ
zSN2<xEE)$kE<(Jf&Oqk0M&)MZloy*A5AHmC%!a)uh0IZi|8$%@ew<hDUbAf7bt>1b
zOk7kHDk0R9lC;FVz0A^cAL!V<7pWs2;u)Ytofs$XN0FdbLtJzW78#q+p-@^%Hg8X>
z2BooAX2;P^M@($|uk>mP!4(@#GMOo)JI(zJ<%OtCBsw-p2tE~2F^SY`RGw2C7I6Rh
zHTqBN&+}jvNeM<VnWuDdybrnI9UR5!O?yaJra2dP&BoWU7$dtk;l<VSWGGff#M#Wp
z5D{nd9#RXjZLW`(zvf6N)M4CyBndzxI!zL4Gh5O*Ig&AB20jfBNluI>Q8M0k&QBTL
zb#~qeCgj-(j=af2-QIo3{dyZmZ#-e=#_dGMCt;r^FBV~!dGPo#8~2?-rP0%{Q8|vU
zo6o(cSLrLx<!!Vjn$R~q5BRJ)MI$O6g>4$_gh<X(v^$+#UorkjAT=vz;qvw)L`8?P
zdD9IF*QigE>|VI-dP=0<BbJ<mdKEID&`It`jrQ0wkr&BYv>VxK_N1VhFAraOk-c7L
zqMokh(Gzd>AG%5THqroFBdUZrjLwVf89ycq3uf)*<DIjdwJb}+uT1*YNpUFb(#rYF
zTC6ASaz1D3ZqJmhqJbtvw)$u4DyhM7=fW)>-Mht&>(_Yr#!r-u7QNgRu3+KD8Mrm7
zj=Q+Gnzby+s_Aoh{NyRSmM=kFsv4h$9h)#=!h{JEe+xpyC~GutF}-uuJmkxurf_CG
zg|q0%l~#|X+`;*yZZH#n2+3IA+S(dROUsmyA0kaf@9XPJg9Z&q5P~~b&4v`plG?b@
zE(cj$G~_E&nY?*i$(J{~5I?18)1(-;cJAW3uZmU!##1tj9XU$mr$X8CWKUOsa(VJn
zwR&-^zri;UZ*On1XU`^23}l}!6S)c&CWGUb1DRQ8rfP8u4qtmu?G{}rTRb26a%acY
z)|w}G+)3MP7(L3nVxKl0c?uUMXO@f<tyG5`iElY}<spSTETC(}EMj{G@)RnFqlFb2
zGG)TGU;&ypF2=Q^CwUyEqD`O9WU;d%eTM85aLt}_bR%9~Uh?$*U{0D0naEQx54rPI
z5)GF!WJ={A_Q^_-Vg<;ODKlkiH6}OSoWA&!M(u`EzF-#8rOQHok*0N)GL*G@#p#oe
z@Nz1_q7h9fls_-8uAk%jO9kT=&ZS_%VwAFdA>us7%drGYMmE9D#-0pWbCXA0$2?i>
zc^PO%g`&nhDlHtym@TKco>IT`7o5^$5P2+!i?tn%>J;GGuKnEb*U)~@Sc+syOQU*O
zICt(QIcj#MX1O91aV<)v!Uhgr^P*wvZj>mLhZ2?RlT-JevsYizxczX-6f8nUMIgTV
zEELV*A|J=fAvIZZ<|TUuV|R4kk`*u$dc8`^j@Z3F&3TX4P@*m4T9>9&i~9JT+=0i7
z2ugJxN2|gvWY3+IM=t`YP@xb~|GX|T66?&lvDJj|=Cvmw2?okms6wp*<{aDPfmOL?
zjBfSClZ`{V%;LHiA-x@BDA54xR~K-<6-keo6DgePi-#U-hcsl#nU8E4jCNOfOP0ez
zZ;5Mm>De$NRmM!@FOr{B#*YM_NtGoBp<WO9;NyqSM{hzC6_hG1o{Oy6$&))hN+(z9
zmvzB6DI;~7wkNywOD<l1f+~A4R!r&5&p)NVj5Me{Qk21OnX^EeMOK<-KSvJnTxZFW
z68cl5IzuZOt0pfiCQO(x@%<px$x=Q3SL1Q_6=vhs?=;Np)PT5@-aHAZ*W6$*y$Jp)
z{%bRJ8r>dN`6f5zU&R-<hbDeE(&q-#<Nup6xji&t!i0(cK2jb2t=t|?muBje%u`ev
zGt}BIi%E=|_%);((j*lA!<a6u2@}7{r#jHIn3nHtG4bz2?gtyacBf%#`-a3P|7nNM
zCVqk6(nEgz`gK;WTq*l@|DKV|ZmwRvD);V5J>*i0@q0tc<E2ZNs9n1@YPDp9Zo<U3
zK{8X3p4qo=-<o>J|DPaT$Hc_M@3QVQ@&6mCKKd5Dw<e5y%O3J+%MVC`e3ua94NQXk
z8}h#d`JqFHWRW{yzyJ~w{@ICs{uh$ykZi~$`&a4V{~ljTQXVB6@?5!c$#%FVOnfV(
z`@cYe0<vAWNs#~dk;csg1O&(?aZ(*9)$Jxsd=E(X=KJ^WY2Us*4h{~c2IDv2n+oz3
zCPDtU@L#hb_wewbTD5QQ!R60z`SN9I)vA@UX2Qg`BRV?zyXqmA8p^@J!E(JLrIS8=
z`u~}?A7X~Jt&Pzqu0czp?CR+EqQJ`99Cfn#S3Ds70^*#lY-~PH(4^O>NY>~uQ(9nS
zWr0?mj9UB82w_R|NR55zt4PU`Uj{0hF!4Pgz4!9x&rj;qsZEW=Z@{+}<ln#thl&3>
z(o0^G;$!=J#Z(!Y_`CQXd!nRg)XvEXb4$zL`78)AP7>RfPNZw6&P>~M6{U?d2f`;C
z)s$!g<ND7u7|fJd5zOATXGj$LDpL0Snos-wWOp+K)>f9B+c1uPgN87m*I*7k4aLUV
z8fC;Y`t%#fZGSbE=AT|&zrVrqS77?`X5xFqbYK395w8)GAU9#cgo!`H&xz81ny>Qo
z`*J7Eo@!6ij^(*~=pMCdmq)2HU}0%43uuMXT<(FF#*Zi@K`nkuy~fhSRPwr5lu8A9
zWg6<VtcZg_imQ~vEi9#d5OFQ#$-<<Gxh%|$VMffbv9V_R(7J4TosIF6$1`C-W4wF<
z<l{U)zn5b>cd+TmeYv4wCd9kBg*nPE37Gg<5;^I%hFw>_nmgbRk;MJeH~BQrtqBt*
z{z61GW)kGzE4o<TfAstOxi={?got=G(E)zMen;aJ6T$*`a{n%O@80Fslc)Srzqu+l
zgy0C{WILY-_w^%5r{Ux4cjA@tQ^I{elK3-IqyIki1ipVqK;)OfvdJNSc=?5+NeJid
z$MBTUZ-s^cFF!u@Tf~Qb;6rd!%GzH?nD;yG-!oo^dk>%T#|+T)1iX7oVAPjMgpz`#
zvWi3<AIf{5$du5(9{-om@C^9!s*e}PeJt*)J9qB!)H5h06e9dY`HB2|LYEZDdrv?4
zx9^K*+`D&&JGY<W7xSsawfH=j!lkmg!-MB<Q^NlUDxN;L!`<f}Qr1QJM0}9?e^b`}
zeaIqPh+S#<gwCKOb%u<ja&jS4dI!wSlG!r33yqq$pjL|s#93Q&ciRMNG-^SehP`<z
z>Za8_`f)ABMhNOemUQdSgXjo$&e_D=;R6{ob~sJyHDu_b(^%Np66<-1j?F65tW!%`
zHyuNe(iWvugk~0)sUNUrr$2M%3?gT`bfhm<oAJ#{i;Ws~o_fTJ{j0cpY@etX71$Ue
z=~lY{dpvEh{yi2se<jJ@OzPf_MvWSaMocf>M7*a-)@s~|kv6_$V&|oNd78c^k<lf~
zFzxsoc}*8`pPB{B@Iw4PzGxd^a_C=!-}&XZM`or{!6@eR-jEXdg}?_}X;7&ljT_dW
z-~5v)p+AR?-BZ^SnzHuud}Lai)--9-kP=P%6DsQWD=Rke@;6jSFHi2`>T9{+ek1Wr
zsa1p8O`B4yNe`|DNOio5%~N~OuznL7Hm=R#r^c9vr?#d0;#<a*&!|{8pbPaIHKcj_
zG5AO?TlI7LHEm3zy2E%Z$I<ZgrW-?hum4<!pI+RX+LfBK@bvSPke?E9dpC`mHV}EJ
z#q!g>DWN|l?AdmTr)flB%DVf4*3=okm(UNlIdb;THlR%W+Yq(z_xHKggb){d#^PF_
z2G667>$f&cWa+U-Z0^yXLm$2eMQ#)!M+Vhn=<<`?@bKWw(M5C_wdZF=`OBk|n6T<j
z%9@0hg)Lih+&h5)&-eV)w@d=_nm6Q5e9Gz{CXC)C^HOQ-o|JVx)7urLc>QTas^j_K
z6Oj`B*An;sGTYC+7QX`MU#p|>1si&e2JO3W)8|j0)Q?DHR>PVsKXMBXcX!Tjn@_8e
zOH;P}Zw&DtShf9(_!Ud{V)>{(X}@uUxJHv&6{cj<Swttt^WOK{locVDX**;lVM#F@
z*tAxD@$KtVi;?Rta{byBF6>&(n5oC)sLMN)$F)v>KE1XtENz8r{`N$P67E^54*M_O
z#^c&WHjN(3j_a`^h8JB+ittOfaQC>zk@*7{vgx96=iflgoAd0vEQxpxQwMcp&8aKw
z+BA|;%cPfkC|!s2l6!prjgnjv;}H=N`1tq`6cqH8C>QSpgARj1kL&?A_zX+;B(U}5
zSxzqQgN^nTbLL-T-rloZ+Ow2A&U$>_yd_p{JR1mjD;n5(4gT-^c>DSh>FQ46qQ_oB
zHZ9<uh_Q0e2x`r|ChpTog!#TFSsYH*<L2h*Uf(AqXGJpE3b~}#pwp;H(u#bA-{9(7
z3tBbqfNRJF4oGb@3mckr>__3$I{to>a^n@>G@>h-MzcA6`V{-t&B8L~BQ^<foRWK^
zHGF&%AZi?l4htqUEQ~O*goH@XkpX>F2z&OQmXhJg#m&5VtrN8#*xHK*hWP8{zMawi
z2QX~iX@c&ZW6!QFOdPRM2>dA4P8!G1A=7y!3*BfoE}6#gp#zwA{H3TmpEADhKqk%F
zDyO%7@n#-~#_ffJd)T;dIWyK={wyx_{#R)?_8{x8o#E7(s|>7^Q-p@IYT{Ui4V}R&
zxiz8V(%OZLnJ}D(qH=c>AwJi3Fsgq)RvvvKMfl9QsZ($qw3?GA&v1F=NUY6t;xbud
zV+B#qjxciIPzLlK$=!%}?z?Sa{nnKX8#j}W;yAW;wm3K$xc61~2f2+N%Cd1|7(RR`
z^EO=mO0gu6pw7?16DPR5rxPny9p~AGKI}HM<jlE~oH@0ZEODZ-uKmd6*mO9(Jtj)(
zYcv$-F`09x&(J%6AREqlbA8bq@{ZZd>D9#<-c_mx)!cJG&(jYf#@@@&ORPO-!=;=1
zc)WP^XCeIqbZ_X{Wdn<ko)vl6!@cocxfvyLog5>seW-j7gocI?E3REqY!bHSk6Ct1
z>ZI{w+Z{hFyn?}6+yi2f>h_IeM>BBvC{B2O<ieWGtXaH(EoVOv{PY+j`VMA++ZFj9
zGxBe&iA>0dTjWy>Y~s5@#fr0fmJM&ok<)kO5OeX;x3sjt!pa&;D@#$kJ!b3dc`RPF
z1&=3z+&g>4*mDu}nv<8F$@@Gxa~!{K>_t(p)6#b2Y(|Y8%j_9Dv3a_h*TG?2y<+T|
zi1&Vk$J<0~>>W_V`fy_RDt2F&raw0qb&eJ078W?Wq>`tP559eY^($9%;H)HoEU^<W
zCa>FfMA$kW2N?U%)xIw|d*mD^PMji2YM1E3xpLtGM|bStMaa+fv+K#0x4h8BZ;T>N
zluvltoRmuIgu>E})Ty0_3wSIV6nELXWf^-;-A}3T)tuS4mQ`yv@it0@I{XcnE?#7>
z+c6GbIZk9sx7S?{QN|(O+`M#!)BD%5;n+1f{LaDoOq#cxIPo%ba&bZD`<6ys=Q4EZ
zWxAHjikHVpZr-_v+uD^}d}{0g)(75Y%bW!)TDgUr&x5#e@+wkaurB-sr`#oR56>^1
z;>LxG+_{&s?=wm2E3tOT$msba7&~qpQ&zbVfAAy^q#c5cX)avp#?`0Bp5=%qN7y)b
z8M9XH#9O=v{BG}H(xhoT@CzkhkqYR1-pDU<!d?)SF%KnEiEC$VM=B@dK$iRGcd=~Q
z3T}Cd*O4gy%OXEVw(rC%CYd*9*RgKi8WwFiO`Oy+(<N|eha1aRZs)bXv8nd_)EZ-)
zt!L%N+tC&C3Af0GW6WJ<PMOH22mV-#d%fML$&490o-woL;Ow=DBd-H-bSg#Zg4R6u
zF{X9zK@g=1=NDI5N9w#~m^Nty<Hn6<=ET};oxf1TuqJ)}vdoz%!o@v0*KH2h)*h7`
zfRPUmvPqP~?A5z@A0j8mvy*FBJAVy}w;A(xWB)8BEm%u<_*<+~*Ja)GiL6>VmdD%N
zxOaRXhCHLOvQm5{68=3%w(pLPj`E;S7jcjNoUOUg<&e27UCNtL(=`VR&j(>?o|8^3
zOEIvd6Wv$1i?@iaY{H_H-zG}g?Wn>`AsQ+QQEz3SLYd4W+=8rW?NIr?;&DPDYLymZ
z!_Jwkb`D>}ggCxg`iwY41&}O`E7}VJGpt4VzBsy-53yG4+P4$EIt;gs*F}=4=-6)z
zCDW?@enD;~b;%2%_oM)$+qlX>woaMImCG5I5=|)>d6xTOTI_6X&}f3#xNrt@=gnvS
z{CUioJ6ALl%}G<FAwAOhvHSHKjy_38zec6R*(P&&*9D@qe)J!`gH98s(!$k+XE*n=
z@2-Lg^SX0>#y|oKwr6UmbPVdaiZ|ysaQtm%=FT5Od6#77bQn#cQ7fq9_?QW9x2aUU
z7Ij*5pmWD2l+06=Ze6R3qZ@g3&4VJ1CXhX41Z}Y@g*iF7KOu!XGPy%)26R|S!1H5l
z_q1W|oKX~Ub`a;|%jCJ27&><{VOwT%-S{ZV6mQai8!N`JdebIu_$qKzSaWO7F+x;o
zrcK>WlL<4ZVi&?I-$-un*@SnFwzPBAvirzWg6?18c~Fc9-^fQ1-Zrn6{l}hhZ|yXE
zT$?auRCVrbI43`sMl47c_4(?}yIHX86jjPOvUguH3uiS+*`Ahim9z5h##IW{>rabP
zdfZ=p-2-n=^|JZoUk^OPDdCzPPf^Wg%P#7<G#Rk_@Iu_1cJ!GvmK<uee4lCqyoj}z
zzSvliOBKl5Pc56TP`$WLQssdZkjpeZU7Ka#{?jl%Ufauz*>l7_FrRsIX0vwxMUpi(
z)EP9MxMQohdG-Q%8gwL|!i+Gl2i$z*$BV6FxM*LInPdBtN#n(qMQ%9N>`c$<Nemyn
zo33-_VmQB;ZMUTNt-rW0KMjR8@oz*_p{5qq_lCyz0?!o%89uKk*AMQN!;CLGakUiY
zIGTkprPBaZ<vY=-S~?bt8P3+_<2mvYybq0|>Cnw0ravPm?ZhB8vcDnbmR7vJdxO`n
zUUKKa3_hl*&;PM^7VvQ!X&-*<H8aK#J9ZL>90rG(nVFfHnVFfHnVB4B28Wr<Y%lMA
zqqWndz20|iFYdYRKKUtLjik|NG#dS9^v*l3>WhpWzs;~c{QPDnZoh}Ey$#o{Uce)7
zc^<A9&+OBWuoEvUTX8M322LmX%Oxsy*+QnGMR>ky8BZmNl^n<QmoXIdlGA7CVi8*;
zgE~#etzcQodVZltzcr#ldrP}^BT%>n;%@hA->tRiowCwD*K0OC68iMUetasl!^PT+
z$h*54zw9cXZfvC8z@-EPRpHX=F`NjMbGT14wtTiAcQz9S&0k9Bg9CIMyA%I{K}4Qh
z&B7zEMclU-GV&1eq&qaI(+izX2~2P8q2>HbxM#{r#*Dt$V~yFDyHu{$kmR7DG|8WG
zL(WX^!=QDyC>ZF=$UY;40FGy1>%N$j68E&M3sZ*-Wc{rE9C!;)xAdpZV5uCuW9W>X
zoLN4E!Rv2QFqb&C_YiTcIc8cV*Ur4)!Grrk@a{q#RDdF)IncLNN}R1rJ29^JK%$eM
z(6-|uvej)#Gry0t>@*FvTL9h}eeiL#K<}K5-q~NUQM8%f-8g`Mr8YQO%Lu!<gQ;t8
z^7`-$CLIW&XqjBBUOR!1r+4Vkc^oEw#ZcZ@MvukMsot&`Sw8Kj>-=*ZozR<w;$>bn
zvy63%5Ax~eYI-kyDfVef<`4U5Gy61N{+Y;-!2>Um1`qcP_<1^`6Jk;MUHht9Sx;_X
ze1TrP;G0&;!Le(i(e`mI4}Ch5&s&B@NMgNClhTlo$Xt#B;pccD1i3aLl(V;=bN|63
zu5CDoZ?)3muH2<*$7STG--?FbZ)nwX7VoaDrvIwf)NJ33OmFwlZq6mV{Q}77?SZXZ
zZbnY*Xz={8W5`%sT6MrS_A^#q9zuNn*=q2|A$ebs1oY2l-4$XQ6Dwrm<!)sqo}f5e
z`tLl*{c}6GHo2a7j!bDXYZ(t8KOyt2;Y{845-StYXf?b_V)z)Ikn-(S2yCrru&WFT
zN{2?8h0feo2<jIYtk;xr#3~d&^$O{=Doj1A5@ddzP3PZXVP%7jjX5z9?^(O{JiVrm
zB)fM`MosR{g^lxw7NY(2lY4|KWZ&7L|5->)Ff)<%<nIKcgebQvJ!LBtXRpXJOLLLG
z=3X@G(uW@1yV0#%cY5~dP8K1&6Ot@wJ*GK}%GJT4O&c<sDMUFo!P3?a_2Y9yd$gpW
zpBLpTm%v(OPwhrEu(z_{{xb!os~5zrcwKzM58+d~3t1E=Y1z0duf9YQtO=w=4s(iE
zD@@|cXE->!;qK{!t!oAxtljXl|0ddGW}*q8{JA~J?N=JgRxf~iiF#yBIK%CekMS&7
z9dpynIEw<Ietd?_=k7CR=xDA*KO-i!F)QI2)ROh{22&(Y4i1dy$m#ev>_wx`>ho=G
zT2!WjuQUD`Ghl9_$I>PX^(uIhEoVlOLZc0xO=co#RyJ9wE5ftq^g;RgGr_l_sn?_|
zuD<>_nSU=h^~fw8$eJyHqP2Q4s6l0s_i_JX{&;5H0@f}N@0?A0S+wy|YUnqPO=?A0
z{{A${W`kNQ3YGL(NUt&63q!F|DMgTIU`oG50%cM;7F*Qf&)4_z_n1iI8@_X2tX7G~
zLG0&WqAtCA_7r8H8{K>KqE)R@BCcd)P6erzHI8Z9kJ6w)d6Grr#nj9kTMIR(4t=0?
zw}!ZRXA^l^h>V#EQ>Bn-;Kse?sdps`x;s#_f(<X;N}VM>VljNCGV&Khyupk;<mr*S
zJ63Y<*>xsQSjorBo7f~onYBe~MI<vr8~U6J%93=coC&XdwP}<+f_x3?asSj__FZ?N
zS$<RYA3BbG^_pZ#IV#PNKG#3Jc7nqP_HyKtFB`XyB?EG-Qe8Y++Sp-dZH`*0phEr5
z6w8;Fp}m5*d+Dm7cU)@G+t^xydtvIAgUwsEVP3W*0itNitet4np$5g8)Ik6IGm1}#
zSoiQ92e;2<(TSIYzdFc=P*buLD^81=Mewk-Fr4$}=uya_!Jv*@UAvau2Vc>oadEUt
zHKyiPqER43sHj}4H|t7J-aM4f=*){Jk6C<4!-RpIsaT~mhb9cbREWI-l`2s}RE8bf
zwc_fTW4u_m5Z|_g$!?<|sAd=HlqyJ<q0RVsVXqM6xyhV8k2t?MUlOdDvST;C7YDHU
zc8a-*iKuW}bm>W<^0n{|i{eG-LvEOqr$c!kybIK)re7E(Th`<Hp+g*d;6Wq*1dbd%
zfm`jm<P(~{NylCks!$8hPhq?fV#ic17il`osZ)oTFl{EyMoff+hg_yyN}Pon(KyFj
zj&IpRWd1Hx$m2owy2A-fJVb(306v*>;_2W>VxkH4`nTos>J98W@{T6;g2cT`$tx#E
zD-IpJOyj;|C{?5?YiFz=r>iM`LB(lMK0EOtA!Kgah0NY=H0sexG=2_~t7>Jezg%Yd
z`Ri0@QHA$6Zj-%5SFw*fjeE8b`<%uvM<BjAatqN=3?CuP3;Woj)<|8XhO9D>7^}k8
z*~Z{TFMsuVgq}UbjwQh~?O6viA?m*NP=7llnK)BN97KpRHjLmCM>%zTD+3pwVC2}A
zaP<hGA|J{IW+1TP5b`LFa^mPc0$X*(-_wnzJzDVT)-gQ&0?Cp+uMqGO(X5)-mTj6^
z>>64c<l?;Azhd9`|Az_Ix_CA%T*1q@mn`0JMTmx*w5ZyVsf*TNQK<*@{68?LWk-fj
zo5u^QywoUJnAZI&u(D%kM)jM|Tdk=m^(I14TVN%*FEnJ4Ui`K|W$VX~fmNB+x+~MC
zZX!%*LDQc!mJX%HiaAGiaC1r*dJP^-|E}GcwSEtmO-eJeMRCfMEkmg`BPgAGlSi*!
z(x-6=cE7a5^3S#*7lKU^KuxN|FlPQ46iJCZe|(b%55rK&lkmw>3dfhhTv2F68HwW9
z?k#NJv6G!Ub{PJC67o)+6o;8>aT>NRBpT`g#Kb2GIi*7-#GHA~(s;(6;6-!{H!j~I
zPHd4Ur+k*n>u1W*{nwE{I>Bq(@<d0zqQis@>|Z;Ivj?vbXz`r&A<5jka38Bo+0ZDG
zP#7ji(-RXN!rO0JkzAGQ5_WD1=U=KwO87|d(QD)gu;l208zkKq=eH_DU{OyZZ{G&R
zBW^`SBl9Uh)e1$Kxp+Mr7A+&UM`~n(o0m@zCG#aHs0cyDbD&L9qLwG46oNAA$6y}H
z^*nt39EDJ_8bvb6qHL&y;8hEes}agoBYE)p8ZH_N3eo5(=%eG@*%u^)+~=t@h&T0I
zlF5n4K+2XYMuo!CR|*Sy^vKN6Zi|VGlM^2HkPF*ZbIE=%w~z1U@THfO3E9BI?<_tK
zPH)S+7e$%cr-EVJP2OU5gxq*e)WbKJ7b|9{Ph!Hth>edne1SIe%S{ILMPi~}@y0a=
zg@l5-y?qh;?tN>OSmdgV*Ne5Bcq1AIQ8!q9B9Y1^Gw|lt8MbWO#?GBP*|B{qM=sn&
zC9XSOZbF@QMRCg8i`?$XBqpiQYSbia%qU+qfMa`4k`VoY`%iA8(nxtC@XSWWm&dsq
zmB^WkiTHU-7bT5{GD^C?DpFZ9-o13kXO?b{WW$~{bni8WJ*x%?;j<mNcx&l(dV@`+
zsjU-Ei7$})XeHtC;Ejqr?fYWBWH9@(wr2al4D=elma3&n8TLp^<O#9V>M@BSBgQak
zKqq`fn8w5wWkRT7`-4Z1k-Q<8nCN-_;gcckk*M%;<jp0-l>)6^Cn_H;QL(X<ZQh@i
zQ%91tsT*@|gko+YDrc#l5f!#nL0M$XMu3wWwLA5oQ`07NXgd&ZI|T~mcQx$4pcgNM
zM9ebQBJaylY?D_bcLtGb3N<>N*3fGwncb*T-8ibG?mTOI^4i35>9u5W7{yK@CN(+}
z!wW;gJXcfd#_gy6Dmx~2%PC$g8s2^WVi1L2?%u^SXJJhA3Y3PPCpC6HnJAwxCmWad
zXG)7^NCr7(;>DX1o#azli@Ad<4sp+UCj}ADqxV|!bsT_xR!@%S?#k|d_H-DqnVMxw
zkd&PK)3MTvOq2@r=Jxa&KY&4lMzdw}c(#oi2lk#g#lIwFNKrf?p=M;x6M*{7Jq(9y
zAMsY{fvu$wLWZ=8G$|6X@~cbE$3xgBglC|)4!Kez%AU9vY8_d8oVb5C#T@DMg`<3q
z(};VM^4-?S)q&5?UK)PKync?x&J&HJFC#}zW?I+6Ol;Yncx!h;zwYzu1zLxU=)_Cr
zYhD>%&eBG4zOPbO9dn!cr{&bBnoE?o1hg6RP}h1dgKh-UG?xR3$!f8$$OVxXUj_N~
zt@C(WxE1~+VCIpF(Ifjac<5AC4ll;S=|>?;R<t4?4E;$;AyPy>_+@hB!;_S>MZS85
z-qBl#DUmjVJ%pSQEt?Qx)rkG`1{%)ek*@%sA6yn?<L^|B>QS1QQK9Y-ZoIfjkLm#^
z9V@YH$uQb<9mIwe<8ZOb#JFjr>Day#vsbL9te1@JO~$fr{$M%}9>eLoM<`(L!H`vB
zn6YXZWgW${ps;1ct__qDEt{Oh>o9!E1Ul9(hFL%^G72#*sx|{!l>*0X)mXEAHGR5t
zq5HrQLSS`d-+_f#i~1s2h&zSCksWugkT0V*>rTI*bq-Mn{Jfj`Pou%a&6G|&MZbZA
zS+waW4!#AbC>pWS6EVE&V2akrkB!Wg?jxr#Zp>&#j~T=Gaib8Wo+5S1h=vOcoxPRJ
zqD1AaUKvjzHw)J;iGyWkW{xh$yaA$4y#Ag%LFLKqYnO7)$@B5Jw}JlipRr``NL=(W
zY#h^<uA}!0VLqINYsPSUQV({%$-<-_rEty}MDC21;>g0ZXzRq%c?ZAs>bn$V=c>`{
zn$Vj;;@(}0Go{6(1-Rc?&%lK*S+HX;0c9GI+w2NmXC9z>&9XST6=ZS0LQL-2g^9aE
z@ci!MiideD^Ck_YSFb_D<ZMqhuMFg@QVthOH>ORf&Z1F6xf)@PrOK3iwX5PSj<NO1
zO|g95WXM;7>~8i1)~F)#2W-3oDVWEXs$-`izp#vP#~+cy)Kui$S8OOzx3t0D{wvv9
zFJ)?pI7Sa1$oOe12s5#xe50bNTTQ9hrWhYzeKlK&<7tG9j1KP^JE%9acif<K|Aly5
zTgu37DwfZ!1&JS6v3MW0Ib&F}<vKVNXF|Us4C^zGhN8Z;C5h!rx8vyXU8_W-e#M@t
z9G*Lj0i##be*IPgMH$arp$$_ej%W1f(Tp8Gk?svj;VSif2f9M0W~>=hQM`a$C||oE
z&Ys!HpTmoS-N%vr;Xe9}oW?Va4;AW{A*B@LV)2~%EbZ5q*b@EdTwb#MmpY`r)|y8C
zYDjnPA3rgWG_WbH{Rm68nZI>npy)fB>AzjY#+e;cHfr8euih})*2_(}Z#}H{&nCn8
z4dlKgUR3Mj@Xe|q+@cN}XE$J3`y#xnyPN3^EvQwfBh!PAlh-jNnjgv8vu7z&rYz>>
zX6)@<jmXvq=vw^yYB8BjW16!0nH$A3n2}I)AcF%=(s9roJl(?y_pi*Rg@f7Fx;1%b
zOec8AY&vZm&9V+1xf^3Dgk3o{Z0O6f7L6#nd_N_vpU|wyR@NPu#Ooci7`yj6i6&~Q
zww%h~3Tm1S+{5-&lYSCo64Fe1RjO1Gzdkdh(PaAWS<2ga-8hkPAd{OW(6QxNMh?l$
z!V|9aE^w92Z!0sgdolKn=|e=LaddTiPOE++h*VforpE-jx<6*ZC3lt#s%MD*<Bm=Q
zZp%&l{(;Ef?jWf8a!TZJ<*k($Q<p9xDCq(fT1;Wcn#r6Qu#7<m*5WM^cwv4wmZ)pe
z@yjYcwmwX!LWy*((vQBU)?mJIAQN_L@W>QTf@5P=PpQqkX8DM3f1GhOlvK{&n|1e(
zaI;5MV!EEBQ^5qfRu&@s^b(FXYfi}(`zYolrB2E4dd;b~Z6D6N1~6f-7BAm8;+>nb
zdQuJc4X?+^@IaE{pA*<<7Q<UO(56}y0^3d?{@8i?Y@Wl@8J)P8V-(}+hSQ<VWk&Y*
zX3-fp77oeHh;E&@@j*%MTCJJTG&j8_oo4HjQKEhDjtQ;XA<tZqCr@9~XVzM>hcBb+
zl%rUPMp~5)<LT4Hg-Oj?knCT9kf(3xJ$o$$A{R69RyG#(tIoo%#krPcC@m6qGx1^^
z86B;#^vFz;&ZB57E^cO%78F^#ojf<@(C=J!woNL|z{b-UxqA$QvKHe@o<OX$4rD4(
zh9P~s;Aj7W9#y9@;p93*J4`%J&*|KJ8MAiJBY1Ef&cx*<F6KG;o6TiN6B!d4w?UDm
zJdZ=((s%YMD%+o<T>B;TX;(yu!<CdOR~!?09FBoiSUYnd3&+(K<$62Mo<6}$`riKk
zAk{N}*2F-cK7Yo}(UIiDL|nvQbBka5di3uxl}TnGqHYuoBdt)&GMVJ|P^!zcV$pxM
zT{Nf-w&y0ur0bUkf{N-?3YT0JN=UyAFB`FLVP(bH`E41oKMEUHH^xk!PL%)`lGQ)|
z)GoP1OmSzZ7i}{UmpE6-c~X$hZ#ai&>`Q6<vt-EEiGdPC!?0-4uR_nrZ{hs9ML1Te
z!;$GTC^cd}<qeI5|4i7`U~X7B67cpM<3jSWb5!NjE$M*Bi?m-E&H9lk?}h(0Cr+Fo
zPo6x+iGk7xsScOwqI5e`r>V>wGlS16DY4RLC&`-g_hN#XxeTr0SQCTLlX^tI_L}@&
zWYPd5>FpsQDr>0+^4E}hZB<H*!KbakkFGwY$Mi?@dj$FKK^OOl&q`N(GJG$F)1DMT
zUPj!f@480P8Q%nXT9C~4iM@y{HkIDhyoh_Yh6V$|IeT<O>h?d5Cgvld+6?%({XPNp
z|M6>aCVu`%l8X->KfLH@iFow|%d9>IZw$Xq%05<NAN$mh{}l<JKB92-!TqOv&=M}v
zX8k+TmL6y7{BH$$T4H8yDe7lQqzl2W)BM}|IXz+&<bRyIM;5T-QZxlBw555~tf`^@
z8CB?A=C9g;oI;Ek)6~!pY~<H53i7litp)ji^{v&+!iu=}_c?yzB&SZE;L?pJs7=j&
z)>HYPk;J%?2iNbAsF6nKE4g{`8qso5UH|@fkr3m0-rl`#5M)xC&OiK!jn%I`!lqc;
z#;{`QLOv_Zh<b60JFlWd<KnOL`PtMl<DV|ZjffY^fo0scEkh3>#wE-hvs1lFUc>MI
z7Bgp`A1cNrel1Qr@3au(5;ENXUokF`vd{loj7!*O{9cSp$jI<J)0Wm>*#2&4)Jjxp
z4QiG6`xg@9-}AlSb|b%yg0=cFecFWICB`KzJPR^(%yh;X#rS{3ST6tC{NWyQNsNcy
z+QqVC&#6+YA#PS$Uf;VxhBA#Qoy7sAS`yScR7y263roy|x=yjx)f#%FrF99dT8Fh`
z7^B+Gr`6246!84axV|f>-lso#GTMo^ooMArHpt?yQmHcZzDu4)EG<%cqofWbX~1BL
z+ba{S?NqEDG!jj@j#LcLa(e4QWJT)Jp;mrObS9V!!7aT&)gm3%c43U|x|G(_ClhmY
z4(H7)Gq`>p<Qfw!Q%7@4-X09SIH{jh&Be9oG%CYq+}}!C^^pIsIDh^;<;s;yT}z*w
zIdg_el`5sK88MP}7<<V7IehIQfAi)IK|w*rsmhI{8zgT@Cr_R<yqo`>8&f0y9ckJ_
zKL3xJteD6!*M>7`$apFbUqU%wGsD0q$?i{`^oFA+-s10($m5T8G-_9s*C)4g?Ufwg
zJSC}CDkC=!9wQ_w5xv@s{8g&plYE<rQ}>dsOa+RSEkM$X59AYKD*oOHo+R0!4t+_S
zeE^NCmB2y>d0FgpHXpl%xw#2yg&9G0>XFUC#4zwq66EVgO~$M3WNPQIA@S2G+Ks%*
z+SOx;d2o!QcRpcZ<4DD7bqMebW3&+DEhbM!_T(6!9fK&D(~ZP;x7mB)F?us|yzFey
zd*`QWK_7JD`mP_@iBq8(WOKFr&7%B23G&^$cM}{OOz+;kN&3!RQhG!Z9j{)!B2%VJ
zh8KT&>>ZTS_~OM2vSrI=d|?_%bEI<i?AbG;ApZv--H+ttWW$WOk~mL~^`DV{CQ{jy
z>W$K+OB>8djb-!4leU6<#~%~qCNfJ@?~c=J!Bdva8z98F!eH-hVrqdl@g{vcE~n9$
zF%-?>hWyzv)?A0Kt;(@u!5qr=9)Wv8GFHykXu_VdWW#0p%xcZbo(rkccMyfMB{8-4
za$3!tPQ>=nY!3}!c-LASUp^h@`lDzPXu`Zn6Y#4&m{J+znK^JGWv8y8hL30zX!%Ky
zd$tjRJf}7BuaD4W<_i`KE5Xv$!8GmN9rc6V?7Hv5v`M8H*JeJgW=!V&h9TU~)Qf>t
zEtoQV9>qEjAhT5@5zn8p`*JLU$MwKl7s99!ducym7+x|Zzt!W}Z|Nbwc<~|&7cL}G
zyg<`4QY&2QA(wiG((6MnrBSkTuUN4nDucT(BSz8&N&HG>%-BQz&q2B;>3RH&k$*O7
zwc04g(}*+`<O_BpD_N`I_;Pu&{VrQRQ<)i>s3#n~ok*Q3L6{h(bCW76Q*_EtTzUju
z+SkIx&V)1DSD?;Ti~JeQiFj~|4-S<mms!WYZELyp<Q;E6CQ!a%WgZ{9O2L|S@N<!K
z?#LbTRjx$R<FjZ3n^32uFL960^NhR{uzAR)>sIt>R|RK#JKo&Cj(vd&1USkJ0@>U`
z$AjQ=B)ewCRri6d>yMDDPD`9Vo#dr`1)7z~idP0_&K@{~f8{bfI&y_Pl`E3?_#Bb0
zCCF`hgB>9*bZc4$dpj4h<j>E$;7zFfN@M-#Ab0FbQn!#NDrr`L--vV*t*opJLh;uK
z2?^oDhY!@KQNyrLdS0Ynq4)3K8+rx5UQ>Eoq%=yOl(T2g{;S)Ki*fl;izLkCayik_
z(FP&>pOE&Kdei;={qgaUCi3`oq&h?Ty7NZ_xpa&)=uq-#q85z>Yw=flCXD<zqz035
zF)rzGF_N~VRfGK8^~Zl~P^aW>%G}WttHdwF=}dpJ2bWx9N#0HLS`BLPGSLZ<uhQuW
zd;O3rmv17=QJqr0aV(rX8_VJy7}d7}zOEK%bz)z!pY#&?Wy?;hQHd9m)?gzplL^7E
zRvBi8l=hbvaX{*xsfeUV4TSg4?sDZu2s!F?r(4yW$P?t4S&4Ir0xOxGSeR*0NgnpU
zd*4YJtyd_~nn|v-r1-TclJ!)mRE$SAuW;yUIJGM0L!<m>n?d~AeKKOih!G=3j2JQU
z`;nyR9~9&oEL`(ZHAgI44_-oLVrl3tihBQ?PjPaCNH+BFn3|C*AOJhp%rtD-n#NVj
zk<mdWP1Qk;>{&^S`9y3?GI|`au~L#CS79o|{a3%WlBtJ5bQ{i@()zQ^;E(L{3!>Cw
zTXGohLz4{taDPHNuTDl#mBzGe*@B9Byhun)#ydwYq8{BM!Ni)#*N=!c&x*gR)Ns&B
zhor=>QDftm2dD67d`=WCO>Hdi-bUe<rwCEEju4h1Ke=2iMEpiEYQ%^UBSwrEF=FJu
zN7BrH&_|9Cy?Pl9`%WjX@+#A3%wq1G*=#&;1)Y^6Zmy0(?dwo0wdASYoxtQXj2%0k
z2@AFnZstYXItAD;eH1HqUdGPT6TQ-rS`CVDaN$h$U-^KGmpf*9A-?ThaIiK@5#kOm
z*jwt6Ipn2#;{evqpUToTXVE*_Ao&yjiX`CeoLw-}DoK{7%z`M*ZkZvlCJk~YGI_!T
z79O}q(~ixtOIG9L=3?+aZfWm|orvGmJ~zFa=VI-`8O)r&lE-0k(Fh2ju#Xi!xr<`S
zAMvyP`_bN8MS-d<2u-z&xxH~3D^EUV+khS%d7B=3=u;X&XD4;0RN3m(t5b&xO=__9
zyfnMzzw-Rpbf&DnnYt#SWohRwoc|Qc>Tz>;|1X&;XK}|?+>B3M{li2vpmGo$76hlR
z!@i-7soZ8hpI@G1_UenNp+6R#GM>mdX+FG93~k(#uM;cJ7*?Mt2fxpUAAyQ_O{!D2
zdR^+)twXJ9RakW?Bz4<wK(8b;Dna~+rBAuSbXoE(Pj>ZhK-G?m`S|P%bJt%<4gJx4
zq<gIz%slXbgxF|9$k7pPC|RMVp<GpJUWYx`k`3X%mA&Hzv-MF#>e~O0GB%WW(f(F^
zI!^V#AnMewPwkr3Y1FzqZ-0Yj+8;41F=E7s5hF&vVe-e_9vUz)#oSD0=*do57cVAB
z<%_?P{i8u+eZP;iSu3_n_KebuZep9{_FJP?V<Iy*xHgnJpC!{2!*tv-X|f&-8tE7_
z>9-COor?QUUXaNzJC@qFESh_YR-=32Efc~!Rn*DM%!MM-{K5;0iDA%{Ub1&Lkr~Wd
zq<E#-^(5026BEgQddkE=(!@e0slD`)=NMw2Fm2IUx{n`#qayLUse6ALzhzM8FWnw)
z?$e67mm(OpdJD}8yAwR43&EMX;=FM%&I``bKD!Cw&+hVBmw~`s88KC=F|(BHnk1Kw
zI?T<*bt#k4S=eCqgZ0AqGj*=3pN)utPZ?TPvQd3Xg_8YQd+s=XrW(UN6Rja}L(I9q
zr8|pXHe%Jt;v|~bV<$F^C|;Dj+pf`4n)O#|8)_BA#3dUVVm9Uqh7~JDrG57)WgCmN
zqf=_@QBP8QB3f}@9PFfl6)Cp1ilijWY#p&mz1VLP1BKGkzW|2|_a=VNXmO56T2;x$
z&A1NSxjh#<!%fzr)0&W&5RJ^r1zW3>Gbs~eNm85O;w(*fDouK&COJ`wsf~qbyrnp=
z)~My;IxR(c(j!ldLuF=%li2=z?_hcc=j8OFYBbE*iS<uUvU^lb_M5b3|KygKYE<Y%
z`Hzo}$JWUOb3?MVggtq{XA=+d<n$H^P-FhnJ=Kf+mQ1!3qA_fS<drinP8=&5pXMgX
z3<@eqgW!9VmgZHCyHDOC!#McjIGIJd!=BvdGals5<(=xsH<5SuUJ~cxN4`wXB){BC
z@oq<XaAp=QGUec8$w5SIA12MnL9;43d7$XZo$E8P64xk+Pn|N6m;@D$qA@ECW7KHW
zhWxh@_sC2W#?#xOm<41bz%^yyi!vdW1dS<f&Z*wX)uBAS6DIb_F7~nJ&7rZhKH<UT
z#Vx5HRF2749&o)u07(;H(zlQl!5vDLAIt7bhw(PikSOlIm3W@aL_AMKJQmrqlhwuA
z5VcmBfXc*%RqYy}8@Q7GLGFgm1F2XjMIC2hCGM5jFEKU>jj0Vz4%Y1Io`;j=PqMJ!
zVH%B9aCApsLtNpTJ5wdND)-kkHKh5M=TgMH=Gk*4{^I$2_VlT7P^S?iMvVN8k?L@%
zPEM;qoqw>0JQX33r4hZ-%fqk;VI=*P?8kqS!r$+s5yD5TOD}MZVO@<%l`<oz^jiv(
z#Idx$<o{b|2uq1cC*qWTi#7zYukW&J=Qg$-xI(249q_f#|IFiw6xYAHB$R}kln!0$
zxg=SgBIcxCb*&JNUuWsmit`)NXGo8p$fzg+ik8A%ulU_!{12gc!nO!sPOR(3){VOi
zK?eJL(NK|z7ptwMj_V7%FlzR3&h1@5mtG4Q+o~1EB83(^H;KGWW=N4RxL#`>NS(B4
zh+$UL)G-7i({Qu5LH_X!E!)gB1ijxsleSCl;o$1R%S*c%KV~RxdXD3v5Z<;nwm6u6
zWLW*~eA3C8(rGATMvb9k-SNZ<sb?kAuzST!26t^w-=${_@g1Ksj+JW;vup8aRvdaS
zF7rOMD>o4F&f><$U+YfS;+&-<b=A)}CpITOIg4k(mIS&x@a4{SI!`#stCQ2I-=sgY
zr;VX?yZ*cuH#zRo7TWdf#NeUb=)ds@;WyS$vvDtGPTkCi;mtYtKypv1pijGw+<J7F
zTBU0-bJlpe^&G<f*YN1(d2R$B=Cx>KxLK)~+rKl5!&-7s664~?9o?$Ya?mU$59>qI
z!7B|ZJw3f6;}@Lb?C#lg@4tv)4Vx1zP7``;Bn8_p5ql&tymdz=c4<ri^*{>0+aa@<
zWH@%U2$u%entz)}%i0cG(dd=VbLOWw#eL|xUWDjb(zyw%_grGfv_1@7_JCIpE(j5Q
zmOXdg;GMfXHRO-EBp2<_$HDjnwIqkD9q(^!qU*#H5P63_J=!pMWPiF(nMLTQYt*UM
zl!+4-aO3WIhBWQOiK{o5-m^O!E=TkE++MN&NG9~`$He(pA^su#8+YWyHEEw7Y`gh|
zGy4zn>U=PpH!kJg%NJ}u`A{@oZG^BiT#XRJTHJ+j)`Z`uW|byPnz&G$E11DeyKwT_
zO{R74#)eB#@Z}o)yLV;S(D9sj^c)v=OLny{$Jz%{Br&ur-;rnH*Ui-vXw$zh0|&Hb
z>FG<{e)f`+`?v8q5iCU`^DFjF&Z788O8yc38g=5-^&3nP=h}EB2Gyf&^zJl~3pb97
z^8epeqehGvF=E8XU+hhyN2NETe1nek?B0cLox4&bvo)%eS%K07oe=8InM={UdOj3?
z(qPU{CpYq5;f&5H1K~#(a7VN)EWdVho0?-CbDvQg;+eK;1pP<NBwPGm%zX4*y!npn
z2Tt<-OEjTxuX4kyD239vW6avlk!5{r(6D|T%GViAg$Zj3klaN^rTA0VD-(%MRH2vh
zF=si(PhZCL3QDFf-iwX3l@K#JVxto<5530X>kld3p)-R9)IjR!RqITt&|xUcc1-8S
zhW#So2z@udp-Ss&G-y_fozuJXCeDO#tpn2*PNA&7)RX;7bR>)IeS2nM-OlISICg-N
z&Fdr6s?aKv3_ZQ-q$o^%OE7W9G8#C4;KYq5^zXTpHcR%fcGY&;l+24FJ`$~W5R+&1
zWO${5tlNJc?$6+XU1RclY6#b4WBjCrY#mXaiG#;bx?V@>H0wkbnJaJa-{O|e8OyK>
zLQ<!Y5dHz5@?Ds{atp~v_VGO7J`;9on7(`{gGSHAJA9ugcM8s23+LvMGrWHDnb`MN
zx#wSsJi51dmhH-%RhvmXxWgbaO_L(%UB3|x8q}sj(GE0NF&{t814f8AXGn355$mCA
zIdyzBE8dr3(xl!@SvH%;TL)rMxD6F*wWLv@tVAp9>DASbHQV2C<HSKqH>rb(Ry0~g
zUddH@woaRdd-K_>Te*?pEoxz|iYHWD+swJ+aJ#>oCqYB$*S`xZCf8=wie+3owVwOl
z1?W4v2eqo^;{M(>ye=_<e*L6<YO-MdI_h`oAns`wTDKiV#h{`Lt(6y@i8=GT)uv&+
zI#g&jmAcc`k;ycIFSs#d?pR#z?%{cHajt%yMLe}wvt}h5rp?B)^;{OtpG39nUZ_Rm
zUmg=7?!T1ddQr}jkf|Rrbm<G0uiwJjH7lr4AU`$Bl%Q?*0c7=Z;Nk8W)N9;`+Epu3
zYf&tF);A$!!&2Ur8A;#1BFz(Puy*xwHZ0si;IMi0=`+C4s5fH7h!G=3{y2ZwhWvkt
z5amjR!PS_wsMAo4e?=0LO4XnD(%rN1FgXKESi9{KMGI$S#pc(@EWashwIUg<gWFHj
zdppQf6zVvH=tW~#YTAZNomBLjx|LFei=^(6b|fdn(tW{E_U=E#xnqauS=<SY$Sa*b
zr2!#*HIaG{r9rc<UMX(g?A`2fv$ryQ1(CjanCex;cvs-o_DLjMJ;9vey*T_S+TgCu
z%S9ZZR$`%-p@@woEb1kDw{Bqd)+>~0+#EY?GPcf+{C`e}G$Ow;RUd}Ok)Eu)U6@8e
zE+|xznUXlSSftNT-rgx`GcmCgLR~?$nH|2V8C)nJlfj(I$wg`=K*n0F@p!P0VbenB
zJ)#j7q8vJVW-@G(IojjxWQkHCl}$+rs&EV}&9;TJm|yw}6+5gl>}M*j+sE5Y{7Mkl
zCb`Z_M(5~mXoyJIo2n?<V-%q?2eRI_2f-~O={jjA6^jR9D)Kj@x2xDI5euC;YBZSI
zWnkgnJ?z_enAsz8bMMRxk#C|QWbejTLn&8#Q)0uTvCQC^8sdbrg_7jNB*RqZ(zB%z
z*WzDmFfIqXu<m|w8WeLj<dw)6!<Ud)xe70L>D&;IB@kP46YLBoJrEtQz{Ne~w@ftD
zbcxY4oU)tg#a!95Wj52Mtl~qQ7Ps&AF&FnwAy<e+vJqDs8og4kDUuWExBM`B4;&&`
zG*~(nvNO#3YnN*FVmOzZli{}%kA;XQMksI33@JBFX6Ycxob;7UFVZcAn2M&E9&KU*
zDkl%zr63{hbBVH;m?SrR9n&k4$kkvl2X^n_uxJ$fC*I(bXh9__RN`DIX*Lt*GSkRO
z(8zFgG@60@6Orl-$?chOF)rzGG4j{tzq27X@|*ZQHsq?8`zhb<7#A<Ez~DJJ<{Y^z
zt!82iXCC;p!C~Vt{Fdw`Y+@5)N{^+o_cKP#xx;}o%NUo#glGNkak!@tv$A&VdG?%|
z0V%f5Ka%fl$k)`(LRh~LMppXnJV_yRXxM|Y?RxWc=PX{9UC!)W+o&`;i8-Unb9DCs
z8cv<h&9)6GuyF&2S`MY}wt>u=yo=g3%5Zw#TpH~-%;m;qDRcM%Rc!7MRAd>KA1z^e
zi}u(wY=URfYeK?uFt(c;Wty$x`iV6^Yh8Y`A%91U0=<}a?=TlS2CzQUTF#C)6~cBe
zi{|8H)GiMul|04#XAN01rXuS)H6XIvA}U>+$&4r`D*KsoDmEiC3q{iBlsAWFwll<k
zZE6Kd94(9f(gc+6wv)O1MrO?D#Pf>>u&y<g{$3}jF!DAB5A~pDuD;BB7EC4~I0u%@
zkLj?@6k6YmkAq(@v{W3`{2Md#?Ey};sExMTM9R25V9cWD962$cfxae0OnSzyRxdHJ
z=*6|fH-t3JOvK1HhGVN{YRs(n2iX=>jA|zzP{COwPWzE^xf`?Y@i}(4t_dQ}(k>4e
zyZkkWj|`w!#a2`rJR6sHJD7JnfP?ePP_bGMX0MpV;!ZP|c4H4GTl=v)a0kanCR4uT
zaTZVYWBef>mNkx{$C_)@tdO4zkDf82O$|B>Kg5-Ti%Gn{mFB}vGHiT*?(Ue!tK9vm
zE8EPW&_Jqqe_`Db9rH&Qpy#l?3=#X>*(UbMJCG5X_R-^9ZuU=ULih4n$vy5Umh)?q
zIPwJpzcaIzzdcO(z9+eUa3KlzHq&Cn8HSJV%dM^Rd6RztqXI6`Z_`^ES1-)m0b^)?
z>K+wu3})<QFB+7zp?ABTT-4v>T$g6t&0Cfn$#)6O)rIySX3}2V|BdaU={sG`vE2g=
z=li_3J57(4=h#p)TJ}FGuB$IMH_zikp+WSr+s3$4j`V6*j68V@^W=%qhWwv^bU&o~
z^7!#%j5Bo_Nl!>+Q>r)e=g)5_n?`;-X=+3MM`!9Z^85Hbf?OH<kq>e^0=!as|D+zi
zkjIa3b9F*z<%Vg*d(1NDz{Mn#)0+<P*4&rUm8+1`!<?wMAtX6wBa^c^Zyr1$W4>Ie
zgZO?dDT2I=p*0@)@*x_JJb2pwTsX+X?sN8GEP1nKMr-YkuWc+ZABXcrq~AJsDT@2M
z@cHRe>;ke9^Wq&Da|I9;a)VoMqVURAhC<ox`1s^84mon;V3N#}kZ^M3_QzBk!=-aK
ziIZ7UtV}uFOp*wB89`un|I{<5@J*1bc^&c=pTKNrBR&#u;faT%g6B`;@XKV$$7pjh
z+Qkzlcf!xhUgY6RRBoB^vXc>V?G*3gWR$905j%M(uVc*#@JZ<%ez$KtqaK%L^XSSX
zyxc^ip7)qIsxAsAU&`mtB5s?4n^$h&o;x4<&k=_68~QGiKXdE7o@|z}$TQ@|(^kie
zhcC&PH#;_}kDS_al(&|?RH#yw0CyP?uOFdw&54hrj92%ckvV@(qF;zS_s*Mg?1Pv1
z=F3jhlMo!T2V$RE4~L3%vuuI5={|CD^HJVeXA*H%A;3+BF5(V{_uV7ZJ%Hx5%Hkjj
z$+J7>NOH)Ii%vnt>{(EUeIU`sn+*2JJbN0Czps>6GP3$Q^XbV|?!JsBZ>h@oxoCLu
zGKyRQDPIVpo*d)!*$A|`3evJ-UQzfHxN`mq(Q;eLRw<2x$b?8~pWp~|IaBu0#DC^(
zf;9mdor!pLlP8I8<QDfx>z<1Y-#s#VRUA*>$NhA!$dIEVo=Eh8g=kSBk0I>i<MZ5)
zvLmODI}TpHxLfOZaP=gymi~BI+29-KhZV_OK7E#Ca}O$(3qqz0=hWqw<S&$!glH48
zX31cPOBy5a^uZT$=F3dvV{xu?;#|4Kxyq-U>*=}eTzjIYVe8sFee&dQCCH^o-oBn%
zuh)qs<@e7pHN)CUh9X%hYN@Y57MPprP^l$%vfm$Mf~AcWTDcs}Us%I_opel^%&kzN
zLPm2XBk2a|eSGfRIm3I;#l^*-JB<8T(o~QyFbeWNg+JnDB|Y=KAWyG+6XZXhr)O6%
zVfA??uG=bvHN?HxM5_@I98T?7HS*6QHa7NeHFdspPH6(RWXU8@3-&H<SevL(eLr$u
zh;g%oN37WVhPJ)yW1&`JBE)#uy<qMndQ!2FKjxMqKMbN=h;efz`xb2`pj~$YZB&0*
zQ7#Gc*RNlbl$1n~B57|DXvE0x;q>X#<jR!`S65e~AWs9*x`*889>B=&Mk<iMWt#B+
zC4WT7{8s!5)@8x+wFWUR;h3!%Ti5kWSuygD<L5oWe|1c-wuWsz>Qc4sV8#y{NQZu7
zc&D@$qWarsaGALUvZQBhSbGM&2)7W6nYkHJ&u(z`%oz^sy$jZsB0R;eRc5Z@<eH7V
zQk!96`JHDbflM@HB=fhFN7f|8o0JHX#&?*S%6>laTROogc8sJ)q=vkazbK-fGxm`G
z3H+8G@{1QQGJpPjgJ0_OjP!Dqdh?~;p%lOF=}(MEv&KrF?xbEwl}eQw`s0v9f;1VG
z<U-Rxsz3do){XpQkQ%1a^ZobfA(wi8Oqf$S4`D;@Gqaj4OIl{)ROth3Zjuqby(1Q=
zh>TQ`L4Sc7%`dQEQy(;mrsU7(&x5Vg*%(%sNxdp!u8!vZlQ-xroG6^vl|dz%5wvDK
zc@z=2Wz9(jYw-e-$$0<b5#fmz1Qy7Nl{%it1P#iFaLC|`y*dK9g*$F`=7vGw|7*VX
zkS8Q0P_$@KLs(MSJ6=a5U}5b*j;xvZ{O&Uze%{DX6CIv}a|S1otN%*W$1hlVcw(0_
z2?61sKjGq?k=Xa4IA-$ve+R1nE;KLb-JlQZYCT!fp*m)^|5_GaJ${H>Z-R?&0N##2
ze%#Slk|LwAbaTN(9!pe`IT_r3{hjz9(I@ce;akJp6FEhm|2rfPT2YCXczUD^msiGq
zCdo1bw(@A?RxUW%{QuAF@8S6T9xS?P%9KgdDUju>%Y|<we0j^;s6;Gm9Lbi&H%)p&
zPn<YGo;-PsJ>+Rbn)Z+zO;-LK{*xfzy?Zyo!NK(H+t=_ZG(97Uju$Up;P3Bmc=4x4
zK`y0H5=hyzXE)k-8cB1qX3fg8XV3mtf_z@J{Cw_romn-VI5w&b%dA@Aa4eW%!8^#y
zed-sV&fKG2sgr*wjr!N)-nKmyUa*hmiAPv_`4yor+{x~Hjb|3cun7&N?To%0YTlGP
zfz>Ev8O7CS4(vQWoA856nS1Un-igsf=WEK+mP-6Hj;3+1rqt-rg^;O*xKi=}+j{0B
zS)Rs|D*Oh1DagaGt)j#9%LL`mL`-4=O*=QBdtg0=zYL{S*84OoxRrHx=ku?x?*y8d
zI1o4e6eovOChq<^+zNE(yk3c7^&Sd#ZiF*>;$vem5klYIQYH$Jn%Gz+PR@3ylHy6$
zn&IS-60=&FL{hREOVMDmHZvh9HX6O919sMCoS)N<v);p*&?uaSMRu_4-cme%QiF0<
zPw2p@w>ik^8%=0(VOGp;FNAD7Nnhia>Ua~8mY76roa`~vYlw+Y#?i?!RaA;}#Ux|z
z>}YUApx5e9tCCThS|U>`P>OX)gj$;`m{h7hfqRZqS$>@>Z(ONSF#x4Fmt1RZn50V_
zEegLBf0BsL$uRNQzo3m`YKI=Y%#sKDFZZ#`(~p^b%BF7oIhSTNr1GQ~Ud0EKQ8Xl*
z_*!B*{3=U|h%omu6w6|VGCmf$i8+q;wuTAblEuB1**Rcosu9<fgoC)Ql<U+G7n=a)
z);QW)p%d2_o213X*&bc&C7RV+#rpGWm|tF8<JQA8@HQM|;NykGbf15hB6%|s85cu~
z9&;&`!&Jnd__KUdDU;F2tgtmVMXpFfXJ&(~Maq|{L}?adD{)V)%+L!>Ax&f$AFsm3
zPA1Bu9A{@|PM$nT?%cVJf;^2#OF=$%-gcuP|1<b4J>-8S8}jq#&r`N+**_!}{w&U%
zIYXsNl~UJ?7)d++>Ne!kIleWlQv~_KnuXY(r5l~|=-6@a7LzuNV@B=KjJ&v$+$Ilc
zQfd}6_P3=~jh&phzY+%_Is^L0vSWxZd#*eu`i%)+o?WK&kYTi~R~rwTNct76OVG|M
zwDwP?Ti$9kzj2T~rE22TYcRzvLl`>l5(mx>p-uH|9D1?_cb$f)uurHhq@GNfVFJ1T
zHQxkzk`Uwt7*eYuWtU%|j&I6#wc;ARiqFNfXL}}g^`l+MO)S1LhO-+t6Q#2f!cLD?
zXG+74O<7X9Hiuk`aOS{t&Q5Q~!ZnFZf3cHGEyvJu>r_sRYs1NBT4KG+Fri2ki!Q|A
zV49gB<8m>f*Cuq@WQq)3LyxRa={$G|R<;V{IlD2tz$4nvxrej072TFi=Ty_&95Sm-
zqteMNnSO~DV;3@YXibCIjkvysmP<ZyYU5Z#`n5_??miu*_pm*fYLW>Wv4N&G`{_IG
zJZ_F&RBhqI&Sf{Swt7oMmagocT#uE#TXQ+W99h;ntesk)F_oJVlP@Q^%hbj><T&R(
zg_EpsW#Y`X49H)S*owm$*2<lbk9iqbD~k4gwj<NYDJIU<$Z{`z#|C5X6pB7eFIJ4L
zZb;Ynyg4zGk%xWQwy338`%L5fLXh9zh5Y1pu6&SVVP=X(r6fnChL|6m$*jvCsUQS!
zH~Zr>nsthzm3vdi>@-gc_NS`l9-4L7i(?)?y7sQc)~?I356VrgzHNEGbRrkSOfb(;
zkJS^Kux)H_4uz_T(7Li^d=qAmm`AiC8UJPzXkfjGip`GDepqvEZ(NL~aCeri8A&cX
z={rXPeXG@??)nQ<_A*=oI!!ps`t;*wv<$Nx4MqGl7*U})i3M^~sAeTz&RI%i-b_4w
z@R^kdcVKyPI{nwYz|qQvUaJ?u+CeOPCd0)%3$5FEuw>RAMoyW;+c$5>kt2sukf#x8
zDagnF*E4k*`9~s&h4kL@Y^;oo{8@Yxvwtll;T|3y&eNw)4YMQv5*tTnoV{}}Ytu&Z
zxv5cTO)!)6g}EhWGU@9W*xIG`9(wuVEd;bQu_<~DNhSfTI5>v~b9+!IZ*9)JiO15+
z8hfb|lw>TeEip-qBTQk2pO-tPP6b)MW44GR5eo+=gSm!6slrLb>*-{XF2wlHFp+vK
zU-2%gIOS8txP-Zt$QPFalyQH~_B$W3HkTp88s9A0$rg~6fPer3vS!5=6)ML(jB9Ak
zh}kPSW>JZz`J7OTf018ek%ygU-XUu?ZQshF=^cpr{2uorZCJ3hH~R-nqxj@?tl2k^
z9liT=_tsh7m=<RGtcA>P;ZN88N11bQ4Rd?=vS{vU8Z>WDukmvjK6)rs3$$crsu-8}
z6!MNjqG9kAnWc=CLTHwqvR=gBpKaZG5tgh)<xrIQYsXQ@Dw#yDDlFT26q_?ExP4_8
zi(Zsq!;Vd4x-^X=8Z#1Op!2Nh^k`6;N_7gM{SwW+gWI{3<W9Y!^_aP77=>+>#Kgq0
zdh`M+%n;|=+ndeeT;WNg4Ea@O`TD(>AKlCQ)O3B%`<GGVuU#s2&71Nb@3|fh9=?8L
z%NAhxVwEjhc065dQ7Sc5YuJP<`!=%b;uG4{Eh&npmZaz?REp0`?Y@@oXAiP-%_55X
zn(#5oiCIghP*ruBxi3qJ>)MR>x#^sYjA8$gJ9HX8hfQ;a^K{255~~bn_3rhA%ou`2
z)lM`l-ijGxN6|2QWoGUemny~u+UI<VFGI;xF)pFGyNzWZ%duX>?-e|iQ&^A?V@kJq
zQ|VBp5TT)_jGr}+F@>W!c=!s#CSPOm{xwW*>%!6nN6;n3;a$2jbLMxaV8POOBqgE{
z&v1I~Bs20K5EZI4KZy||MvNHwhaojuGi1nM=u!K*$0R+9<Rr2dt4WQzHSxC-jaw5N
zY;<9~ek14E(LLPx6oZ+mo{t|w2uo6MeDM~{%2mKopNvwiL;E>|E3qDIy7`vjCBJa?
zR=5yCDudS+DSnka8HJrcL0OWBH}|7T)rvUE6=*FrDCA1R<WSOBkl-~VS$pvdR^JUM
zO&92;2EPyP_IJ211n5r)v8PfbQMP(xg7<AfXJ#exIhq^iPjU8aFu}oRIU5{IxRB`@
zah-+R_2<d#;Z$y26H}#J<ctZXW-_!fQCN8tOo`LN3YpfD%>F6UStXiS<7g+nxLt8I
z3nQ@RF#1(7W5L*d^q;tk7*9X31uUJMvCt)<R47PFOb{Un$dy0;67HVaokw@Cq^_lq
zY-Wq2p##tr58F7DDswVt&1l%B(3+7glQglI3@=v`Gzkh!y;E#6d_-`3ydHbU47eC>
z*FzdN+rrd+yIC=`4!W2ml11J~qk0V2X`(0D^y|6Y$Y2wXN^OC^hcuaj0t+*(*iRtJ
z&G%k;ynG#be(^!-S~RyKeaN2yUfjOS=`&{y=AUOypW?xrNK8c|(JEUh>L@R=Pmzs6
z{`Q8My-h@8RHjZMLheU_)DPEowl;Wp`xqK4%9un<y;80#qlZQ`9GzLUWgM3`PNR>w
zXIEnMxVTDo>2`QIiTsUMqEJbbn?aI1<r;rN=7)>b4IWFkAQfd?GP2b8y*>0KB<OK;
z&VY2~(zQD|dLm7M=IAaOrz$zg_MV1qR?cEwFBc6|8?vO9hb1i<VbgCpf!VYFYQx&d
zUju0_MPm<ndL{l92Tq*(>A{Y8ahIo`VtIM>BJUH^Pj}ImdzaX}VLcl+Y+%jKorEQ(
zZukXpAMSDIX+-K;3L)pu6DD5#H%^`>HZ|-US{|J{L&SeQCR4@LBm21cBrJ7Zr1{oa
zjs!m<G3piPZ@ftjO)HYPcIqPX)U}uQj*GN>NL~9;=y`DR5bMP~*tk(FTXyg<>5o**
zDlQ+~$K|Ktsq66R##xS@4<RAq1s86;O%46gsJXarC&7<GQ`b{?bap>$)^1?W$!Dn{
zf1LQ&54ip^Ds}C*AoAkGRisz!!{Y~8FXgLPHf`O>=j6ZlxCBWIXDe5eJg$25YK734
zYE(KuM$c-)ra>Lq`M`nZttw+_=|z<wH>MBh#L~o)9GF-ME2m84$(xT-^$PQ9!))5N
z>%b$gCJd;PpPc2&;$<P~E}e{mRm&rE4E<KDBl6%FI&|p7`bRN1*!WVhYJMR=Q$7vH
ze0s%~I3+?qr8A^lvSmQuvP|wfoSoaZvtYqY&fSecr%_^Q?L$lZI1VJsu{3p~R`YhW
zY}tYqEn3pLWlJID6{69TEJ~RpqgKtMY6e#l#J<uzwQ5l(TI8%t5sO{SU%r}=(>I_L
zB3+$2TXg+~1=%!a5?iOt!?xaVKHb{DqX-uY7b%8wrmXZTA*c7~wJceAjY736q85#x
zlrNeY&?FsW&EcmhLRXNnTx)_j#GvUr*|BX2<EQSTUhCq9__s`6fK{zQxR?teuSls+
z%*;&)xv-Z5t0wX)V-t#2t3d9@D_FH+5r>niP{&0{Qj$_!hlDGEnPK~${j5KEQ#?zy
z_+^b|;gn!r$IDR)ao@0Ee%6ng%$7-uu&Fx;C-Zm|O6gqES6IDa9*x1ZDseUPoA;3H
zRa#>IU?Vek?`6s4kx;!Qfg(Idg@&|k-BRRn3tG2rNBKP7h8d6(k}POGq7yA^b;d#~
ziGGd2q$SD1mmWPF>DP58ixw~C^xY4l(I~cwxGYQ7Am@W6tXa8;W2!nd@_EVhEzc<$
zRG6%OnJ7`EI1g6L;J}LUyvx>(oNl6lnVLtwS)y1l{wR?ttxtg){d)&7vF{jm?byb=
z`LlTFSW4vEG7<j*j;pFu(_V=BB+>9N>~BU=)DzZh-@%I0mXxShnvMmc={bG_OV{3~
zXw5Pxl0-u*wLE0anUkl%+ewU%HGK6l^4CPPPca$1Y_ooBGouZ8TJlG1$R90gP2Rre
zxfc3?VjggMQaeujcgJ~ce_WSbqH|zMkCs%i{@EWnzMrXcUEM4kFF1=H<(!BOKg*om
zRvh0w=BMe}zjAwBd*;7s%chAHQ$sWiDo~h$yRT9~^#SL=9KRU&ltll01*m)J1r<|f
zOaEPb^Ftm=HES<!HC#m0mfm7rL$_j<Y>4g5=g0Gje4j}6EGaz=Ka!}sTUdD4p9vj(
zsNvI`^&hWd7qWo@oj0;_^8qSk`8rAdzw-O<X%fA2<ic&-R!V13pnQ6o(Pxz0+&Ay1
zPt*Sz=eH1j%su+dyTRg#EvRVjz>_x1`Lec~*rKFEAuDz%d-L($bizN%$(~u7?*Bg^
zd7DX@um0a7`Lvd$p8wSziVY6t_|B=U95#~fa~JbsNqffL%geB~g}A$X0uL+9Wo=6f
z`pme*q6ys%$Ne6jEbGJI_(mKVRz5Z4KaofUulg+ia*V~<vyoxKCQ7&~kv~4pgv+Mf
z+Bq|IzrUX!a;aQc+E`;M#JF7j&GgI6(uUOWWd@W&I9XbL>sePSM6*+7VX)y%N%pt2
zOTDxfR#s>f$*6TESc~|j-&#|1tSnOF&})$^by!=OAs6CQDxsDlzhqh^$;xkn?0?Cx
zd0F}V;0ib2Mq=%lf%4^o`1t4}ne+HzqK@L`^CW_D|C$#N4euVm!!vhQQoX10<;ipG
zb7dnY<PDyISul@#$BE!Okfjh6JWYwV^uW_G<vu>Vc#1a(w$!d!5>rJO!6&Z~r?;VW
zttz;gDY<a)D4Gm`R4kr@gwJnCvdw5X_Vd#VJPvcGQn_5;^~NbVcknpzBEx+PmZxAQ
zM-l%?-Xz*nr$z~M31NJUv&7HGi4T{SGGN|kx^}NZkxJ!o5s@gvpK#*xYjRhpPF5!q
zab0i4b!9PJS90h>PThJ(hKvE^62j5R<P!&uJ)uzP+#-MM@$t6f!G)8&OLCxgjpAq%
zLirSLgI`8FK0FJ<-Rdf(TVCM$<@ttzk3S)Q&w=B2uyFRGYWZS6-}W7GA77(z@Wn%#
zkxZbB3nN@^gR?%0WV=jcu!mcR4)W2;jdG>)6Z0mP%z?g!lB);};pEjf<Pq1E#Yx7~
z^QU+ktH38`af;+{=i`IRTz{2Br3O`T67|K)$1w!t_7&Cf2lk6=ELpcQ87#i#^834&
zxcea*8z)aHl`V=Y^s$KlEqN=}AhV;Mx1v0Fi+r;noE~}GQFz8sah`k>$SQsBNaoyu
z<KUf-@<9Q_eRze^$xozTs&kS!b>tMq%2edWjT=Tk<Y`D++K{Kr)M*stY0mE#<Oy_c
zI-ELXeK;ozVqTBRoS)r;bD28hym=UI3s2Khdz2~j&LMYqA+T5-9Nyn1cjvZb3cbvt
z6AJowsKm)-i^<%sH`#u0+4)|OZ)lv0gb`2ZT{vZ1x2h%SzGe%L&%L2_n~KEVKgm&f
zAqt01XUcJ3N@e*(v|n9DG%L;ca%IW4@gVl+PgAUIV?OTP#Eu(JaPX_ipdQ5;SGE|A
z-Nq1o?;54r528kHcVh3J<Is&SXl03%Yuts*wjWu){shU9Q50(3gW|p^?xwy8^3U`t
z(T4N(c{p`)0iIzu=`naH?>?7i?Y352ePBj8-#47RnM~Nbizwa7GoV{-EHsg<oHvWt
zu@=<q+>ao$mux%rjJVHg%(BR-SE~==y~TlTOUYTXG<Q$mL7w=MSF*f}=-rI7V@lBO
zs6UTyPhxn`AO<h#OQ&HgShi;;g<at8_9eWq^5^-@b7ZX0i4K)>lK5~R3szny+0~JP
zrRrhw{5HjUwZZ*uFe|TE(x+uf&a7WfoOspgT`~}I{Tx0Ox`<;lGptl;nqR(7%13S$
zm3^x+^}{*xKibc%71u<Z_5_w_N$YBvd3AI?+t0)jZfQl!&cktiG?+Xck8tqfE{=B_
zz-ik&oH;fRmrqydF>Ev+!ppICV`Hv7l+mb4b`Gtb&bg3iiq~&T!y?XX+I)(nh-k`o
z>`3&1*<5*JPlUA_gZg(Nqe&Q>7O&)Clqt2__MvP(8%{49&CU0YMB2DBVnk<-^exIb
zA--3PDon37gK4|-0YQ74v$gatHnq%bxQF|8f5L|yl<jet?HBJ+Tz`Vqhwh-(I8nZB
zPs;lwvvbaNG_Fc+-Aka`v@ztchMNbMvRB+&o6i?`RdhV-yLyZAvYL1Aw77`prcaGR
zygsv*Qy<JxCA-k4XGxY#pMhMwVmB_i$o>xpSy8GCEiYdouOV-fshFuQ^WL8(;NC7~
zF1x|tx#M~A`0?LJkQ@1T{F)&DC-L^&a+Y7q&h+75J66&b?Z<2Eip)v#0$*pY{wMH-
zAr+@G`0OG)QbT?#Mz@D)OIizZ<M)kpNK(iF-dg3RUhgJ6+P~iL+1%{wi`mo+d-Z#I
zcA7?>zLOc>qY8%>j^O0+l^nRM<Jry$4488W)X$l`?JjOVzTEr_3rlOx?O4t3T{~Gl
zy%&-ByWnGThm~ti8@5N^JIVUfFR-$<Amr6MYIPok!`0P{+I<B(Yb&fxW7xK28%ZC}
zP;KN9%C>8V>&vUWMT0syfl%`-^l6-ri6fVY*j~}2?|O<hZ$aA%t_<omm3UP+6Q-;q
zuvTmGdj8tQ>QLEuGo)-ZYp$qyeR&UAtF^|)9AaObXWfBEM1&k=>Y8&j>otz};H4aT
z6V2+@EqRu?DxF)GVaJgpL_9mk>}?Nd)U7?f@2|07-y?COjx%fRdu&Z#GHA$3^41$b
zS=m#Xj@d_!pmG!pDvcNRsGeV?Y0uHv6mDV=;}W+v&Sv#Z1>HL}W#y=GL=j4_Zu2SJ
ze<I_%RbuD-(F7k}z=0?5XzN(|&OHK}C(Jk$!fPR@*IXCJb`-~s7$c6AAyXx=ZP`9{
z?AXS(IkT~CREMI3(W&cPiVm2_1QF-<=|e<A<O-d}U8KRtF-&fnkpaC1Vv?;KxeFAd
zLJk*_twdPKNLJr~7nk;vqgo5B&GbY+J<HY;&$+W<BwOD((|>ShLT>Hl)$0%@&fG>&
z(;isfT*mnGj`W#0j3z$fUd`UezDd2<qRhp>W<|Mu_6BdxE@a9jXTv^?y<gIP{2qeJ
zl_5u=qExF<gTR2Sl*t)Djd`o_xj2-XHQUm8#0CP&1reCHFgXg8pju8d_OIDaLc9=}
zpYGDLyHqw3nKgJk<Y`9t!r^oqcaqr08yLDVoPGm4;A0UXb@38$WiRKhhT>#l%7!5$
zI2EPm-HBzazwbo5Hbt4)s43xjTGPHs0f?7OcVy_~v20x-<?VL1&7Ol})4JprFU^kP
zyk&+>M5asmbZo@P-yPqQZ5h@3>wwC%N9I%fA11~nJQ%ZUGC%&it&#MOQIMxYu5Vw#
zwJSSl)^q?*t{-IGW3aJG`6y>%DnlLmnuk^;sh8aXvkZl)nmLX_O<VKez-qSM&(5$?
zT2^j7j92*zse?q)4ynaxYwwJ+gDq}BZP+@i0}eVlmewia*xJSxYfCfKDg~vhH^axp
zk=CsW^8V3d(YBC!6iu<RG)3i8iJ6^znL2O)!E(v^&=hkUN9xtdhexpj$iBpq`1UM2
z?_Fnf&*n5AxtZ|j`-F$<@GDe+^7*{6{ndeAdX#b<Rr~ki#oF0yJ`hjy1_jV4)#CgX
zSX-HkJxnNHyBS_i_T+JO;?wJwY<Xcr|HhRF$W@gkz1v}`*OI$L5SiS~sNbp;56>Op
z^0JlW>)IC|nUcbln^VN!m8xy4iw4z2tew1Z_edGElVIb=wzI(m-5bV)LthMGCNeYX
zHg1Glmb_$$mGk!FGoCw^rFvEi%)N?I(I<v7?b~p3`x^GXD#)PRqCv6!D1MbHlT~C}
zO>wMy*1Why$MYF2GE-9=oZRs6aOBqItrV}{5#pW`;!uvNS)@3NQ!85}!F!IQDAJNZ
zR~hyN+K@+kg*crHPOhGqn_82cB=V|vH=eGV&h{gTG_9K#l~N<}$`X4U3(j14ME$m%
z@%7Bfxc=kGF5>aYpO2zhZ3%n&k{op!VrOnjiTX8(dvuN}eMb`T?l7%JPr)`Yr?~G=
z39Q>FWuFE$Nql}C#|&OLOL=ALkE5Lfl2uGxa!#f#+r`m?%jjL!gqAhhk!YV47k6*0
z5Dlv^HSPtA(V%uQWbfXIW|t|Ma|cnQh!@#Q<|FFqCvIQ7Lf+<W@pN{jT**pkg>a7e
z@&&b%KP75Zr?i`rcQMJx%&jO>y*v)~T6Vs)r)TXvxMVGlzfUHSvpVT!rRJ>z*Dmg$
zbi?+dr5VBt*NRlmVvWW)A=E#P|MWHF?~2UA279}&Mm9#$22q#0e)WC+`}n7p%fAQu
zpG-`Rq!&~n%->_it(U>%6sw7MR#0y2d~ym=B7MeI$>qpgz3`2>#kC|TZuOCKPfY2%
zq&s(g95_4R5LfCyz^3>Lmh3v75@#ABPmCpZxrS5{>HCV(+!amiNtAjxeeo)K-@2l5
z(R20geX+F|ClBAEK*<5f&uvDd)1g*tiTxOYJX;;k44J~zVje8M+6+^jl4NN#q^VMf
zY6Z6b#VD7p0Ats0A#2n#_MeF+qoaz%#AJiL>92p>*Bd6$(AX6xe?)b*dTn5wt%`(X
z6<Uo3rAjOQsz^>w86mGw$kExkP~A0#tyiDXCzp=JCtuOTQIA}nYS!gjlMb?J)ZJEu
zm$$u9zt!>h#Z#iirjN%?lBq}~EKHx05GT1`P-13hho^%Tv-Yl~V9wf<D|Z!hy_zV)
zDOD(x3amUb;T3U%y9y|1_Ld7T%ow$z7r}0}T%B-{v*phqE4zt(*Mf;XmLSrbdaOz<
zu2AHmPDZtQWhgD$LFMz>Qm9%lM%<c(PvrG)alWx()PR!cw(KIDMq~&-!xMFOT<uK_
z_fZ<%uaYOAcP>rf=jt5DvXk+SN)kn0>9lH+g)lFg$Cu5=j?$!e1vc#1PT4#@s1)J^
z0^ckdd3N$5G|$HCYu7OK3gqeYr?econ3B$CC|05y(<heU`9-l$vjARSy@rWrF6p~8
za)Zg74vi{VT$7UNbt@q6xr|xO3y>+J8}2rqLO5$sh<i!+1I~P~=UAi4Sl@an?q#yL
z_j<!XC#kqNi}WZ|mSiuIk4KA-LgSts3%-O|sb-u%bCm*3)={*eGmE3Yhz6y2uGFHO
zB}v!dMg{v&c0Y)thwDA=J$rA6S0k#)ign9S%o@t&FsDev{tUW00ngAmJQRmz{ZIDt
zM*dbv9%(LLzHAsfAl1o6jHCx7F&+{UVlY`T^4COGvUbDq<?>`hr7>14X@%5_Y-MF-
zaO3rBNDtBb_wT7uqXx0huk+Tu6itG%8@5@vXX5#_Qv~D-#4%$oJoK@+lx<9h!g3al
z-9+%s8@LzmMa!a@kS9GObMa;rEmV-0hwo_8tr^Z~U^@Ed%^Upu{E!JD68qsLwt1_N
z%i~+`w3&ToeDvp-wB`(+e!0mQScITV@apOdP90j$3!j>dZd;Xzm#@fFrZj}c5Y(Uw
zk2lU^{>B5C78%H-HpTh;@+Da+RKvqe!JF5Kl&)5r>bca+oxPY{7q5}6d>sm9H0Ska
z6_v{d{Y;QccAk<yT1m8idL2prs-?+bYKmvksua#_!doGtOO(h&yvCg(SxiZ^%1%&V
z24X*dz%o}Ex^%9>u?6GVdgwX@DmNgX8${~8D4oyW5WkD=KHDR6F|1(`lrbUf*l~%l
z2NyXR?atUy?eTTA<?Mmo*cT{-Rg8jy)yiRG<xklx@oc}TqO6Z8*7>TF(@o3!=O4*m
zw>}NCM6+<>PJ*vr$ERF>8W;8@G2toM%e16$;R3`w_(Y2?^-;WghC|_6<dBYi@tI<^
z%b<Au2LIAk$sl!J*<?ib>?USq8qq38N}Ok}T_;odzBH~@mOPrXtX+GVou}{7wD(j>
z7x3cUrENS`XC{+qI25Q*0yiO4y-U`hU?#oDE79;P=0mj7l~z4kibls0=C9t1Q?7DU
z%%6!5;aVz{E`(E#{BU6zdrv>+;C%%X#}2{I^cAyb&SUqnk93|eiyE~{p*y#jy{E)J
z55zuW2I5XAktRNr%Ik;z%Vl;va%A4zjy&DIob_9FaQUqT!)H$-i-#?5&TZk5V_o_e
z(lKT7LaqxD?&DR6x;66h;bl0*YL>@Z8N;(E2U@gfipz)1Oxbt=`z*N$$Q?wFrd2pI
ze;OOFU&GEd3uS9m$35{qI{&g1^s%98t?cZcJ&t2<Ad_!Ss@E$)qR87UWvk*Yo+T4|
zA2d&HU|p#Z&HTSGXTmnBHmF8Kc=&Jfa3F~}X;x2ZrduB$pVZKQMXEC-&lrEihFm&E
zvT>FMQL0rcti@l+_SwjPk91$`L<3v8cP=h2xVgC*7vqvH7O6Z21`3_v=x8XXM$!hU
ze*L+d*dN2WYmbbBI{ys*h?kY$hU5jo3hN(VHvV5y26dK6lS28U_%^8X$D@^pvT#T@
zJUecuMImeAp01{D|47asAD+6$e}P`yQ?0nCKl0nvuf?g9qp`G3lTT#o_+-per}X}J
z{FZ(G8Yqd4mH*AWtQh%E7~RVmNv{|ObEX|q9iDcBI=BBJGbJPGhCg47OZ*X$@OL64
zcpoOEdl|&IgjI&3bnQ^a@cX~U<Ohp!iC>E|jl{UbZxPym4>2xbY3z;q2O^0c<6>OW
z<6`8mi&2mp`Q1o@JiUJcPs>I_-kLq=-@Iz-nvi5J`DoSb&+|NBBz^HuZ=f16V#J7%
z{|@OrVl-L#6OdZ1|DVaq?%lf$W+1IwxBh8xVR}Up;-R6TxVyU>3Q&6N9hB1e<;xem
zyu6Hqu8gE9Qu&wsQA>8=Mw1mIMvNHw`;wL>E8`a!CkFac_)miTkK2&{ZwL+!HrSA-
zXBSJSPoJi8<;tmRMvSB#f4`YJjTkXv#K<p6OF?e5Avf}ekqTydCcUT6$lnKJSu<k9
zh!G?IEk;3Z<ac8fAV!QBF=E7s5hFhc6BDB#PtWLd-w9v6&M^6n2u%5#ZqTDtBpYns
zlfF)z^J|Foe}6d=Uq^&Xlm7hL*l?Xz`$Mi(ulr>@`joWjH7Jy6H|@DztwgT+^-=F?
zr6MKIk`hs<B|G<&6sqNNH2>zJrTqAH^eB>lJrDmAI*l5+NJnyV67nCF7aE1QE@_IM
zZ>S?82oL|)@}d7_p%CbQ#Z$nybS8gGr%p|xG#QXmg+}CcN?!i_SdA(rpQY<dOiY=;
zNdJp`lqOe_^6+O#`IYi&#E20iMvSBhdc9GQr&kisO~*ZdW!|M|2(GLc#oPn;SlzJ&
zdtOQc;(twwZR??d^{CjOEB*WSrDN~LOxyI>5dKRZ?;FkVg_l#;Bs9!!+?ZqUBRH^p
z6JP#CgC#SgVJ)sm6G;A7MAEUKKQ+c5OkIbS9ZFH4<^;ZcxXZ?UcTz)tFp8(NsNH}~
z7oYLu-c97+iMyzqt0`Kr8h!frqes`y%s=>mOG`#D|HvcGty#%^Y0A%k;WgbVwjwlj
z&44<Zt9PD>AMtEoyovCX(BHv3T4v2d+uj4{+qWNGn$>2_mFKD3{xgcmm)w0Bmb#Wg
z(%aLt?$MXdJzCRo>{de~;qC2tH0(5*DSg^Ab@yGvexDv+V)N8)H0ig&u>O_!+iNLR
zVgL!L>nXgUdFI@->phS@eft>Fx&GD%_z+C5p1tVMs4|7iG@w`at}HwGH1!w}*Xuo$
z%UO=z1NzguR}Z>&o+olj$&?25xM?_np84aNGi2LULUs&c+?tfMNrY^gM9(!hQrC<a
z`8m?SapPiK(&J*}uZwX|=bykI8PvI;ZCfsftEo0}2A#@gB6wyu&SmO?^QOT#&p$`I
zY#Lr(KFup_CQ6hJ#5^GpOGi7=!qSkCsKwsS5@noFcJ?k<{@`X;%EUlrF*i43U4v{S
zjC?`gAZbeibxKra=E<x0n<}ujwL-5-MrC2c^Q}Eu{Jb7>`v#I|l@SjcQ%032PVTK&
zXqj0$RwPmp%lj`eSiAY-Zm(iQiDH!9c8~nB54idIk}@n!O+;u6T2mRG8C=D>mgFQk
ziLtR*yL(}8ky0Ujn;0mR4mrxOE3gHL`zC_&Gp*_u<VkcJE?l3Dozx9#YJxI8oKF#n
zcxK9ijk#XLnPiC5-rEOj`3o+edWS4uL5gRV&MB@m^dsR46a4%$8vJ?dlAd$*^!uOo
zd9rf|ozG_C^759{%v+d#`(IEkYl_qOPp4+n|4d$XO|NEHmpCz@4d-)=U~2O~LtnYn
z-1+k1HF}w&C^t?xI=-QC&hAXQbQs&@I5K7OApY@Y3U=7X&8vHGF%i<&)D%TR5-N2(
zk@2Qv@%J#qjWUKepA&JkbHvKg7Ms*Of+sW#9LR={W7tcpk*5i)zK^@NmSCw3=iZrn
zM0n<;O1?~ny|szYxpqceV}5as{;oXO)P?Tnb8}^Nf5Ud^Ud*af0n6zZ=$jix6v;-x
z9oM+fRfzL5$0)>GY8M;I^6NXXdVY)3XBV^dY#}b}?3;T0OD1;c%F3&Gc=~i9cB!H8
zi28v;*&1>b!%&*=<LwD38~^~3^hrcPROGI8gu6Ev8OlV=`T6uXo}KN}YD!ywBJ#m9
zI?uIY|N0K8Argu7FIJIm*KhD_VtrP~MWb+9Yi=xS#d<|wmJUc6XnAjGe<mv%v3tOO
z_Aeh36T^!aFN}ja{~<{CF)}jpr!Ra)jHDMNK`wbfGn$pA4N|_Q*`Uq^+l_+!&)|0p
z^4Qx{>v@o)v&v9w%uSB39l?d!JqXU!8Rsn{@L6;a+2W=g)z+a*mJjSWry*0+Wy)?k
zPsKYu@tI<W^4e%x7H-6l8>cAvgB#7?3-XOkbMwB#MMl?fLG|Gzjk|AU_QFQ=?0%io
zrzZ1e(@=VSY{=5WhiEbB1NEwSarsdq{bo(%MyI9}ShJdaEe12@%n~Nn8;Vl_Z$4a6
zG5^vGmKD#(yUHEO@ct@qGPhv&gvPAz-J9h6HE~Zm!(*G)jBBGMfBrsHt5=7Hefv<t
z*TIm+Z-V?2Ju45u+{Kg%i?>t$-D;*Cdc*UZ=1d!tk)d0i*)hn8j>8t<p2>%BQ(LC@
zYC!$!gQ?!233cjZW%<Y@ROr}^hex;J++-HbInK!KAp|<8Nb+vLv_6isX*8B<UApt|
z$aXTco<gS6ofvw~lLezoGrHGEs?NE@!qx>1X$!wNk22lQ(57_>l2kI<4jNAAqE1}T
z-5b@czT`h}5u4?GS@Rz9nuM|PkTvf<&ZD+#VR8=aO5%k>xb)paNBwN_wLir6(_7fz
zeHN3iEuphRL2?f5Nz$c5ICk60%vuV%HXnvv&O#)g+DvrojqL1K!jKMlMx&g)n11Ip
znXQBfyuF?>lRt3dz(9uAsDwk+epr1t%ysh?Y#!)Dn`V=!(WM)=4{Rl4+ePHM-hhtB
zd^mr6C%N5z(dtt^qjI4htU5D~wslu?<i;W#NMcCwveY?to3hT3^kO|thevZ{&p>fN
zBBT0`r|00Vv}?JNLl<U~GVPK?2=#OHW$wMxWU>_Lyt$ULQ$KM1z&OL!_s6C)@N@vX
z=QK8~e<k+W2Fh1mOXD6j&?dzr_p8A4&gB?gsszbJ^04VjW+HBmH|%?TSz9)%db6ls
zQN#NE<pY^21o@7B|JlF1QIP+0knZv0$B$XDVg-c@7e=j44__;d7y%3Mj7uKSrcIlM
zhlhvJ<!>60rh<IFQIP*B{9Zx+Vsj6wtg&MCkh~1&GL8k$K48D57e~E1;=FAP{-ee*
zzu$5WUS4PDMV#BI0xF;EMC9&Hu?xc)^CT~O=ai-I$~T-@+RqT@kK}tnzO#LCro0cJ
zcvf>_wAQp4y@=|TyQtaeDW{H)=l!-(^!`wf`MGy8_Ci@U&#24$!xI>G*N>p<JIJ+6
zTu1BSjN3Pgh7E>LqhlNL*kq(ZlhTYTS(sw`?orp{86}D?;nL}HWXivug=+`lDu2o7
zNjq7;dnT>gFW~yAb*ZUK;hP};K!>uU891v5GcOjRLBcW|nssJr-;+$69KiSko>W(D
z;7gr33@`6PY+MxPNe?OCZWA|8t>MLnz6_3N!GXa-#D<-qWZ#QStC+;-J5KbgoEfj&
z^>Ms4j<J!=*gLQ|d^th!J{LJSBqIY(d9!77J-Ssd#nAni$tpyzL}>6_S}xbHdR7zU
zNh$(z<>2C!j@-`I7wy8K6q+}cncY`#_|htDbhjx{cr91&PM|@S`pkQM3IC6)$=O-S
zlcOc6++rtZb_}O&v2M(~zL=g_>ofP2*yqD)^7Mwy?OrkIMJ@IWE6wxOeHa$glzl_K
z_WHi2s#Os7t(xN|i{s(-4~#i=o*GdLg{U{->7hPipE#OVZAzUgc{pm*f-Sv@z{kUs
z9DI}geOwuM&Y#Vr>ZU~Zm4v(WYBvP;Uh^4WPD`=kt2udV5sqI4`B5RrT_F1LN?MOi
z<fstj*XFcm#KWvitZhxZ0Y{j3ZYTA!x~E3?f=U*}aB0&5XIU(du770Q(W6w$nDRXR
zJ3$`(cr{J>KWEh%(a=duKx5-U9)ElKWzWW!&NFbkvYd(&57IcFBiEL;W~*iZ3;Px}
z9Q$a+U?wKlW9L7#hup+ehRpQaxpg}6ayKy**C<1yQl+_ly{S0&&&JTC6U@!cxpU`^
z!PRB8YTv$a88MO`Si5#D<;s=A$H&Jg$kTwd?IGV`v>{J_=-9gM0`0oiM`P;4;Ev^3
zw(1U8N-tEsp+HElDZTz%x3^v)C$Q6CG_yyt)Tsj(d#LF-elrz{r1bWsCCTwIbeg`I
z6|2^<bL~><WRam#>rkZ*W>h36i2`hD7^r7vo6>uYi5~9^u4pyVU`uf|S`{%ac{sLh
zIW@CqAb4^s7T^Djjinj(l899)Fx86}v|fi68D<t{XiYrmH)=c{W=WV?TBgMNZ&1sV
za4*(}%;&nX`dK+D2ih411{z-XQhtiGNdiQ|%F@R0P*_-{#Hmzk#kN#oVj@GG98amP
zv)S0M1)dhK7}u#EZ{j7}z0^lZh#~Z9lyW%=dCDYDhI4(Vt8`i&_8I)ik|{H}g&3F4
zq!nRb(<3c9omtAmDc7Qt@=ufta|^2!vmK>Q<cGK}$sEWqAT$LjFD)!n_fd#_q!6hB
zNwq6fs!hbbF#JqKi9^<6tXs2$6)QJ0wxuIyk3JKsLne;=x}ywJ$s9%!M_+?PKA@Kb
zV=@|%?w=8Jg?g2HQ)0|+##hP%W)Aq6d?v*#K9P?aPu!dgD}t2tNqAQ5z`!O&Qp=4H
zeqZy`fC`6fC0H-gxpL(eMmM$R%!zNd?ou4TCf;;f4R)RZBA+vnGcdOh<8C5Ujm*u9
zF+*FhbZSRNwrppxz4yxK&4*8~4aZ5m`uG-4udfY)e-=`CS0%>r>HS;Yym`ax*RP3;
zPeu{@kp(@b^U~bHV5XH;n2LK885)c3y9PmeL#Z@&U>Qk&7{A#3g%R(u@85bx(g8`2
zc5ue3E)!amqk8qKv>V=^SDU8rCdnk_B`8Fx#yu~6%S148^k#Oin#9q#YShh?4O{(b
zyffz~L*w>@oV-J+YX80m?nhxFGeeR1bB`Lf8A}u7dX{n1=CJh8Eo`mKglM+m%C2=R
zoIQ;J8$QsqX$4f0AQwW))Lf|U&)4bPXE?{s-z6$T2});mMI(uDNuNmtRft@zV-qIV
zaU%HgH7?vZ&E*G?LV%hZTCBg2h2Nn^Ce*7mHa1@t8!UtJiB!F1P#j&<uAKx3!8N!9
zcXubaySqzp2r#(2ySoQ>cX#)}2X}Wk^StjlU)A?-dTMo7@2=k6z1Ldzb?fh%QtLg$
zW2n%mvYyTdy^edZn2r5di^drnCRLu8R3eD#IYFr9=S{O|2U}_#;hg-%n^=?uw|@KZ
zHD8cz>o-8|<Ffbe&J^Z6lx@~gBp2fxqkjiW&}s}O2NQq#k-EqR=Drh@{Wc)JsNDH@
z`Oegp7rYrT%;fa(U1%?94kb8SzTY|gv(T!p=4NPDn$cr=s~@-~G(f{ftMrJnT)bRL
zIa5lr*=)vWdLaZ>t_CGpOuWIzMYpKXX?M>5vaQYuqRxdtxaUc2wiXx{e-KlyA(Z7|
z73_9JU3VokT)9F}u_NETf7o9PItKzion2NTxs$7VoZCG`psNk;Ms|4RCMHH|`Qgu4
zgP;P2wrA=v{mL4n6OokUO9Op+9T&g`ep0gk5@sm`_TQDQ@0DZe#R^%RE6q}Rfom<4
zsvtO#fc@7^VD$)Xg`1B9Ttcy|abMtdBo0@4ik3313Hg9zKoG=wZB5Zn)wPPA>P<#R
z5j)eF6(%r*DfK?*9b1RPTuS7VQl<tYX0J`nv~<(zd$~HTX>XrsW(#)Tq?0QE@W~~a
z?`KXg(%QH(yIXSoL!Sv{x^PgQ0V6F9`EsrkWx8}hqoJuurd546TT>%7f>By{Z+rr%
zWL-ZrCiO>Q$l>@2KarTApNV)v2FOBX>x5!P6&*K~g-Sj}6wN08o|UaYl^~g1uC(kO
zEtMU3!{aKYHHsU%tKW$ynVn9`@O#a!9Vc4#z2Zdz`_|~ke3>#Y%IMEhWu!UkePaBw
z&97kYLp*&P_jn{ZjnB94VG~i37!o<Fpz@7oy{*t1g$kR>-U*C^LM#~_U@ep6uEUkv
z=AJCrUf90*tD7|>HH|u6rA!z?R8Q|bpRAS+6*-M5e2!g0fza%lhtX#Q!)_ahA+ST9
zG$93AE6$bzj!V(-T4Y$n=r{vHfI@nggt+FflQ02Fl<{|U^qosL>}=l%b2;X=(NH*~
ze(C_|<Wd+UY0`j@`cTcmQ*#DM_Qqeow7;ks@$oW;!Q0L?*?F>P&Z6RD1QdkezJMST
z&0JQrO2a}Gwok0Z{^rBj$}N$Kb?i;106gmtdq<^ccF_-|&&O0n`9Nz$3M1JWb*&u;
z4qYD4nSdZDE=Ti0Azq2G5on!myoY&y_oNoJR_v;1c2aR4kgz`)*PD{Nj`J8~tt|P}
z>v??&Ge1sa5yVTNhV_7(FuiU+sj^w-7D3TT4K!~@TPUZ4JbsbKKUrc{t(cN_{J0!F
z;%58dO_7iSPI_`y)RG0SzFm`+3{l6O4{^tXv7xZAO3oZRZYv&43BK~=(iw})ZW;=u
z)>^bvvv4FJJR;E;9b8gC9X3wDSZJaZ>ttHU99O4EX!K*XzHwGBk}Hp8&%fv^20}?G
zrCbF|_#7E8N6^nlz2Wu@*B|q(3N;!SO2JLA*m;t~%yJ>^<%SZL)PMT=2Hx-NQEyIZ
zaD-#ZB1+b$=PXI)sDAQP68mWsB`$AOOd%YhdjjsGA!n}=SUW-Na}10OFBXbbKwkJq
zS?;aVW<~JQ6ulb_@NkCzr;{tq5!AE8@u#CZWi<SbYbnre@dl0UjVOV}lTU7{T^uQG
z)do9@zPkT&)a^mfEz0NOCXwbOK#S;pBJI~anFG@k3Y1my&~MfzVM2XUAXjJ~wk!;P
zSI)BGl8U8PMr5D^3n}XTA(F;ELxB1XpWK#vM41y}`r=f7{kr~$CMz@%1&2M)L~`At
zRotZHXx4a4n1a~Nb3$gk^GWQ+puahX9P*x4Cb4&uK-f&fZuzK`h6a}N>C*mf0z~9R
zhaY0egVI5J^~#Ps5)0sox*xM5GoOjO%kX1?4%y2J>Rddhf0BkmSS^M`9cbEiuOSo<
z^eY}eR9t?w;zBeP%+eF#(oQf*PFl30$mMKL)w{L(#S%Abx6du*VX?~YMY>Mtoo7~Z
zyim_0e91Lz?@+h<(0M4M%@cKxUqW=-JXoh7t%hV3i_;v}O)|Ig-7@%3!Kl=l!P747
ziAe#%vwrITPxa{|>mqwTHMb{pmYz0aeZal;GY;olH=!(ugq!11G7#C)C5^hy;9i6D
z*b+2+{fGuCrY%zr471Y#vth|L5x8-Xj^#%pHwM<Z=j_~Al4UpK1A_Ng>j7+)m=$>)
zC1g@roN5@t^LVYL0N&sWE>tXyVp=HnO|tDf$|j0~+<*JHOC95VU2$@poX)04WBaVs
z-`?9MiY5oHJ$YTS)!=ZL@+a82W0INNBEs1RWz#%*<Dq%h73cCu{m{&mRb3+n4|O@c
z?BS);0S@(jC`}I|(sjHx0;``&u_2wD5;-{aN1mU=s@>(Adj$f92k|Jl1j@~0>`gi8
znY%<kpbExS^XHz&O;*{$_W!-8xUoff{8VRRyy7fc3v_yxK<dx7*mJ`+{Ow!vQ~5N7
z<aNv|u(2ZMvlb2nWXddBTZ()X5G)b?uuk1TJ-tk?i674ARz0k{d7^EAX?o%uQl?g?
zY2xJy1k2yWKD@D@+}7fY{ec$3wxF0_omcbi-SYy(CUa=AV)PVGeUj1HeAgjhRY{sQ
z!BS3FPh7&`iXr-*n77|u=G$pK7^$N+?>NVfh|e`JOCo-x%7jLak*uMa?%@6Uhd+qy
z_Qc`G^<}lw-LAOF!LDlla(>;F$<zdSg{CLu`5_JP#ztm+Vuv={8D7_swc4lv(B%pt
zUtmqCRKfM$zCfbxi%?sQ3V3*fIya9N&x8@D;A&6KEZQr?Zn)%2)se4q5=Z=K9b@qn
zq)A6SiGB@vl~88BTYvCF$oe*~6ZwfluzI3IpHYG=Q1-Qq^9Pgd#|JYX&K-G;b^=&*
zfij)3Li-e^Pwuir$sc?}HUW!-1g3aSaf)^@r!Hg1a$yZ{O2)LHTS|U)#Z14a6TD1^
zNOON8xVJjo8JRkzOt53FlcZ{+e?18J?72b#oz5dMC`(2PpH1?`meeRl;xfhS#SL`T
zhVY(0%kzQST`v!StxhtjjDCTEIr3rgo3ZYp7n_~Z1_rsm6Q${f?t&AC)|>4<i#FoD
z7!nJ4Kl-0Dabk#y7XWix_^+qL`;`R+B-1$ppX2wj(hd}oELmgwoIE_Z(P(+ZQQ-H}
zrAMZ@o|igE3a!FTsG3_^VV!3?<&saoLYpbqTaC2dTzy)GbA4n+3c^ZuvX;qBs6V~F
zOm{S1yJ|yYZ8B-dZGHaFyqM$2ZtY)}VRet7F<A!3?HAs&B5Za2Edx-lVrHk^<V7r5
zg)MUo;9U8nf=3jh8mkTcpKv`1uI91<X#s-`Mal<Jl(dZ5+#)^*b+u}d5&@!SK3)GI
zHllqj|3r4Q%N%pjTeH&&_1W_hQg>+6_;gnChc0bso>iVLd`mrA2E@GPRTE^<Rux6w
zywcipR>_~ma=dQto%Zaym`JNRh@6j%Bc-wMyv21zheJeKHCM9~Hy(f6$sUt4LvE8!
z@qKF+&L<;W_F3^V4J(1ysw&n@WkR1U+e*w?%R#en$z(IJk0vlbcpl?FK=xz<vnJC+
zYzaiyCa4?LN8=aHv#i834I8L%zkAHep#mg2gq(86!?rRKvs3+a<~_Y!cYn)V%mI(5
zBJoX~+9!S{x#MKyC+WcWsD2sxv|RS@%l)96bLdU7p&!^e>Ci$t#%VFdMI=WYj|95f
zKT-VBsFFycZ(Rj;j<ftQG3{ba%EYrP7!$?M=ih04w)^H}%VBC>drIsPB&jL>EjO7j
z?h1Fbdu7%yeW={cB*aq6V{cnX#Gt}Ct?=jL7(aBf1596Tp9fM#B>21JnJco==CgZ4
zgu~jKBa|8LR?^E9xiw%6X-kX~$OHFeiss@nTZ?y}GblT54u9D>P-N@)2!ig1Q&nkW
zB=1E3{LP>@nrF`S)KzI5nr-qeMOp|W9ppQ3!qP}xHTYvA8|3b%v+5eJ4((bnram}>
z)?L$YPdz1#vUhZ$%w%pw9hoYZYswkc%|EmNuIqdn7cPg^hP=sdUz!Qi-yfvVX|p$q
z(|I|*+*u0C`=O9nPU^1)zgfL)!8yWNq0v|BiRjEuElin4DH;1GNkYD|>xx?%Nd?g(
zgz<DmrnTD^I8FBs<aJ)xEPaAt1{Q$vEfnIKu8WbsH~!_RTGT8I*P1MuTy#tKG;1LZ
zE!CKfwxu+jYZBtVTba4$3`wVD^ESHAS65N2r)=ff#z<M?t|mw`RW)F9#)oUhuhu-l
zC$%>d6?{P8s%4g_<t*_68G~IldFGn}&80|)5uQzvo})GrG=2E-vXU6~ijjy8Mucol
ztmT~!Ga@s)5=c8S-w&cFX6WOfSW;%{J{f^@#HsUcSl3**Ot$uPq}>wj6j7kR0CF?B
zlQ5eBFY<G@$(9S#R8B|kYax+wv^~mAZ)O`uufp-|p8zwe@e!2DT6R31a27+CNIl;0
z$gs=Q#s^yAm*Oe8*JoH=a-06urA(8eV6lJ$<=(9oq(|4m72)hA&vReNaso%NI2Y}y
z9ma7lSB^xi>)JIFYou@OJ6hu#&$4H+#%kd}o}8M&A4`(fa*o`@Pas`RU|AZOTE2Vi
zcv7&Q{b*&0^FJ`$(~3VyuVP#Qj1(hhwyx;5oyQ6+NJ_${CIVHG5=MTjl(LkFNc^6}
z*$pz?y3(#<Y*Arbqy|5DrQga&!%;|%p}}=M?K!2`7`F6^|7wGwar*hF#IGI#t3p(8
z*A<Mkb5?qE&nt3rn%<N1xpD=hT&j`MN6u?G5Aw-6q_8`5DFZErdynfXb5oR{IqTfE
zoW7*^)3F6sthY0tcRFGPs`yWICfon0v)~?zdoT?CIH~4zLZi+PeOv_K^Uj%)9q8!v
z$W9<y(h>jBTzCiM6X;5U*&}Ckn<EvQPWwHADSXw9{P6@iOy4c7n=s>KIFF$>H0bDg
zt4I8?UsSaNEN<+0f6f&4@ilQ_NF7bSWl&z;8SQPP1==U4P9v>2?JE8`iXl(Sx;3wR
z-z{Ib&p~^Af=45dG~F#^1Ag4-duJ(y)H!T~*==HbL(C%iuR6U8pQMZMW>7?$_kl)b
z(plrm>M^esKeod0*gV*2jTW9H@j5Zhe#}w}r}9|y?uAV4=vhdGlL%xPxo^QlX0)YW
zso<(xf_)AS5$$i57~oX!aEGH_>9Zo9X(vl=j;X;ZR^z%KDakO#;<e{D8HvJ>|5hj_
zaGBD<2C#cWEM|A^4ukIg92JLq@~aHy!{HkPq4hcIEjuMw>dlXJpzWYUaP=4R^VsUY
zISe<~{>Vb|DIk`RB;Y4tROjfRL^C$kI-Ta>T6SbNl}3fnxwnjPcn@K(`8Q53-s-FD
zw`*!1JZtYy^YhPO^n|3k)QpVUCOtLV#g(bpu_;oK?2_d`k29X8AC~bqm#ytxBygKe
zhVM_XWkg!R=+r_Vy33Z^$RS1TuMEX|a%Kj-LJM4viLg``Fy5G3GHOC)duM}#Cr+Uo
z><Sg*#~Nc{5KLJB{5o{!zo@qK-QN0L;wbnr6N5V?k~ZE5tt-Q{&V;5T7}RneefzR#
zSgT!Jy2%&BPABU0sv3;@<&)+YU4tzhyz=8P;+$TVxFNypeVva4|IDRUFF6WY<^4S2
zxNz&fr!3@t4va5C9OJ8H>=jTK2lM8Id$0s&^7-c^#iwo$!guaW2Q9uMXtRaElv<xZ
zca@SwoHima(`+;|U}7-c>w!HnDzobpYs>{@*<X-M<meE*aHmb?vg(2ON(rGiP8Nsm
z35al8PDZa5ZERG+=XpFMH}3SpRX-1pI)*B;xB^K$Fb&t=m~me*<)RdKQId4Encm(E
zJ?TWbr)dpVI(0JjH?t|G`EM@<bjbA|%+En>8r;v@hqmUN)Hl6KCl7!ra>efpqhS^c
z51`Rgnahqr3&$O%efV1`QH9NRvT*@ILs7pz*7obzH-;u9?<>S&x=p#kitbbZWm0#+
zXn35yIJ0J}>t%MHcbQ5VDs_@WVqx5!AM5z}!}<F0Mmxvm<|g<aVf`g*GlGdFt2Rfa
zNDBZBRW@#{*4)Pu4NT0zO2awP+E~}tvI#rez*PQoHWb{F1NR?Bi@u9F$U~eQ@>mL3
z7wn{}dbK&RY+kWU#-?c_W1)*2_<p(hc`2fIas9DKCl<A4utMN&hOp<-*|#}~{~S?&
zXQ7r{oX}h#9Guk&foR5Lo!Tm-!<3oBmCl{?Z?0+?vDPfCAOL|PMYcfdSc+C4XRiHY
ze*j|$A+xVEFQDaC6LKVnv103&JDXj9p1FW*@drNl+s)Fi$CSekWUF+f<=Robg!nG(
zP?TfMw!J3wv3L|&D%Cdhgyw8y|8uVXSEM}GahFW5=Qx{pD;E1J&J&K~VTiJR_8Wvf
zE!KR`V=-%fdMHZG<#O@>=$In!y{{cofrG|k4u@x=2U7%nV>a#BHFuFK3_qj%C1`Mg
z%z(H~DJ!|^4BxkYIyLJR=@b~NU)N9tV(j_0=iGla|E?Gi+nYJM7EkC375v-BYP$$0
zN-vB>W3AFmzQ8xjt*H@-&mQKu&ofMDTd?Nwm7cr1x<<lY^QjrhY07*>9#1RsD${A?
zVnN*KoxFaP8iW*=*OxlHClhb_67G5|_|}L#>*=Q*(Kge$hn&t~J=p{|2l)WIbXVFN
zOSD(IZt|;I1e>SHk{g`P0QJ3A+mbgzvJ*@ncqhU9D3v2B*XR?vsK4!C;5!BNwVMb#
zcEKIYZgc{}|A}Y)vUB9H3K@;Nm+(5q51BGjs(#=+_U6iJktk6om)e(<HD8V%&});&
zV+W0)2!3RK0A5WgJeo2E!W>|fm7VZJu<!1!dPs!7^S&{MDxlF0+?qTn(^-T^Wkpe@
z6|Zo$=68D}8=WK8nVkCh&<sVr)z4V4=JP@;lqwJj3(Gj-T7q9q?i%^|`K4No)E5^Q
z!E%BmK1_E*1Yqva*19l(lM~bZLAt%6(@*Ne)9D9kaW}qZ3JNdooepPK&EiRO;f#yO
z4iuT+^Ac@KmeB$Ah|9JiWjHzk#5`~X-3!U_lN=5^N16I}yq}MrTf$wPvdHB!e-v19
z@D=Usu2-vB;Is#otIzrT<>e2~i}UWDR$}*|9_KyNeySry9$r07;XT;OG`-*c(5cPr
zoD6{@0tVwHvD=@Vz~%=rPV%)NNQZ;^Z6Dag_I-pD_Pl_+^Zqwb2le-xVjTrj3Pt<;
zP3I>v*ZIO+Zl|Q0UB}gz?jr(ot-F*btZavMTfA$5G28xD*i-cGBZ&^)k-+oc0-wee
zi)!ZmzU~$4b-v7^H%bM)wElzy!Y<bEQAlR{H)9VXIvRrS=j?a&{5_6`1eq6!VY0)<
zRL2h4h|r#`4f*&ehZqXx<v%^NDP}JVIoioNN`&`~;DKIQ9aJpWxBzc60_7CF!vbKW
zr|JodtDx~gGo9EF%yQYCDOo=UZ;6DQyc)yic<k-)ELe?Fg<8JKLmFH6yjFYOEA<`o
zLhy5Zm<ppY;7wKD{_&c4sPQ~h*}x&65N{{d6!U`imdq-zOvl?3E5V7Sta~iET-(FJ
z-P+j!!FZJ~*W^#Qp3+7wv0E_0z=jObz=tvG{dcCuU7l|=1P3qYsw>0#xgwp76DM&=
zwU{gsyw<Wu$E&Psrvn$oad$i!X<29)MMIBK+dtp2Jr|?a%TJZ_2VkSObOK2v;px-^
zl9k=(ZMCo-WA0Eq`15{8^V7Py;8;=@X3+4|FxB!zeD~f;c+32Um^3P2^vjkRDlCRD
zzj{4nG%6gosY`%6%Fn#6)<e#?|3%#>$EHvv4NApQ{i}@;?~Sik1%XPI-{9EH(*lAN
zw}gkNB8xUOMhEA}5YXFtG&ThO$&nYpwYAaa)BB(QgwTKf6N2sFmFpZ3S4r0xG@MY(
z2O9dFb)0aU!GVI~5_G{=QV@=4xJdRhS?%C^xeeNNovLUM>V;P7TX6fK7!%>oAg#ZL
zlS|JP&l<_5jf*l`jX6C^WZo@UpJX_V@g1h8O5Jj@=?__hFGQ-f3N*24B>>r)n!3I|
z8S)2ZG?lh=q6(9HpapTiNN+NI54uxYv`P0GUY1t&pzv$$^^0!2qOs|z;OZ}P`<h|u
z-@-Q`9y&gsp$=Z|bIu@kW|Kx?f&yaWDr*6>Jpu8XvWk3*6ruq;?7<ghmxhXDghr)+
zunBl88WsXxgd)!*so+kYh7)n$4D9Sxh^sglu21$zYchZMb>J=LAZU*dCsJP&|6Wz=
zo^a%plrCp0D8An0gdZy02;~{QQtv@lCag`dLD!r3c^;0E)%V_`$?4CfHR_V9c|T1J
zGsn+kl)Af3{D!n!r4n6e91MGMX2q|}%G4^fbkR)%ik3nxp?j6uzr!WvD0y#pw~xZ5
z9(}dr)X;5#iGKKFc`y-TWH-y=pqLVgvGR8L5nYyj?)v>7Lgmk0kD4Jx^_YvNti_fI
ze?&z2^9?S(U7ZmfJX0GoobM_Gzq#1Cy-`N$kdb}P?Jht?7-2l?=v1c>3HU@uXC-7X
zfBGS%EX80v=MD;GFjFd={8qQ1WomBj(Rp^x^@U9eqx<asS*TXXV*H1@92w<0)xY(o
z*!K0&Le;TO^|JR(vtF~ox(IpiUZfN;tq5^aK1-6kG-#?0{ZL`Gt=8xg<$xo!!1B_$
zY&{A~(v3>Gn0jcirEqwVa_F-SoFsB5IiRkOX>r^?!$_{y7~kJxSz-2s-+`t3LzJ5+
z8J61enm~8KJ1h|PzDHPh7!CECE#0We82!;{A@4OeKN7zqUTU#>4Y~wBJdl&O4&#?q
zG%xxHz3dOVh5~0X)}7`sNeP473t^#{^l%@o=<Ie%QcP=2k6{1(@HlkB7_D;AvN=>-
z$M7sdoz)s!60R+~ot{d_zyC}?b0N4<>4gI#6<##TTnQYy=5(gLE7_oX`tXQ=<iJ2u
z$=eUyzrn2kOu0s~TEY{iOdZ%$&~gfqXa7k^s3;YixFA~V$;Y$%?<Bn1Ulx2T;uR$|
zn@UO(4?!fBTpkujB7vjqAKj3?{<j!oV-@1)x$~Fy{hOO7Xr13(U>13<#61$(LKVg{
z`ia~-L4bgQ(p=cKOInQRb0TE~Ok0t9rGiiJ?)c#rATEf~aR$n4chEkG7p9XZ9*rfP
zWkhi^OlBe!-DRkMEXqt7cDcUuf(-23O&UuP(qwTwT!KOc{rSs{5EeEXe0xBxp6QXn
zk*_dNZ+7_gF8KSb`oeAwncMA4ESJ-7v&hqdNTP&X3#bWO+x;lkkDF1os!=$le==$p
zguJwl7#H~b{$ct|v@(qYVPZ=he=E*Z0`r#P>I`l5(NT!K4xTMF&Y&{r#d6(Tl0C4)
z6L@^Q9JSAP`f%9{#a&|+s$dApm@Gv5<%q_Hre{NaFhG+eMfHp<!_Ee4jFzZL=znpN
zC|SB$oluCSO2}TuwT%+u14EH0SXos9wUmo9p(9Fc#HtkRZHBcrO~;~4`WP@x`^6d<
z!XI_zlgrVL>!1CI2>$CjWikQ{7l{9V{qd&uG^V6<v04>#zHkvfx2v3_q=8^Z8RY^o
zgkAp5KJHSSqB?29bEt=pBQ!l!g_<Ay-toE>Y}umJbB)DFxI@#2BU$Q+RxHV5t62^=
zO+-GmQlPPTLVXt8f9%vTx;XG{-e40cZ*T7rlj5U0E#4dS;jR6QmV{L^@{vo3gr&?p
zk^NxML`FzQT2?J=)WJ-25+%)@p~a+7=^{=YI+cI@M5Ykisj;&i!@SxBsc@DXd}RVe
z(n>a4DJQ)UmZftth(XWaY>~Ov^M%%B!&B_sHf!X7QrLJ`aMr(7X*#<PT;?53S1r}?
zle3bmGJ3v#923opFM_#h5GimfRM@FVU2jqDw6wz8Brtr4=S#GmNg0Fk3_PkQDHWu*
zu1h5M01+(NbPCxgLQ4<3<_nssyU^u~Cqw9CwF02Xq|hm>o@|#&F6ym?#LrCsm_&Pn
zkgkXWL^+`^s7uv&+llzt`3Ef&#{xIT)oL#1l-KAqgrQuencK8${w&LiO{Vsg*xYJ(
zpEC`PtCpCI8UZxZ;)(Pn-|&h~{eVSMa~<9;?30-jRwYJ>G+Lp|NjQqLXE5{X)?z93
zjAXFMd4R8W*Qx6fR-<8!t|;MLdgi-paG>h7SbsOCgyF{wreHM^NVm~Gq2vJ3A-t6!
zpWbEwK91SPz=<gIiaSI0>|TjNOR2>0VV3oZOVI5#wkC5EJ^{9uo6A1rpB!SyQ08#@
zv~{9t`vw*J9S~DAfq+!7(Y*z*g)xL;a({cDGI)YOSj>ZEEb+nQd}Kc}`pRUq<6^~&
zPRbqM1sh_NO83syqEU@FD+vC$;chgj68SZI@HW8+xp=s5Fz0Qxd+Y^$VxazU=YT6(
zhjaMZ>5$9og!E$YM5#=Ug_hX07O<+9t@T=Cw)x|F!eZ9q4ifTb|L8;{PL#C60|@P3
z(s&Ba`gEL(bbdhrLNW0t%;>@n7~c2v`ikob^~nP^IjU3tAR(ujV}i+NqV>vBDp%2n
z=oY(#`)?-PY$d3XTOC&MF|WmbVi)cY2r5lqUHX`Qy1tQ6e2+iF>5BSzb@m?T_t7l;
zxYE~I-+FQP;Ss}i{NL_vlEodREbF^EBar%YJvfE0^6N8H;Ys>dJMeHzEAwNl5qq%Z
z|C$d8Gj=J?V=LLYyX$ok-)~D+4(hKT`gD3uSKDyV5ABQ7p?<aumHjVGC{Mx;rC@X{
z$M<gc<5Nb><#N-85#o5EETK2Y!d(oEM7Z7)=jG!=5E4P%KSrR6BINh%SzcZ?2(cQF
z&>~9u{00S!b=DU}PV+xQd?b^VRXea_0i!<yK1oMDadB@xp$?~WN_1Ks%dCzQSj?xe
z%;s2(NGrplqV}I}55fK8|K)ppjQ`6kajb#6<4Gipey4l>;=5hU><Nu)5c^jc_2%^S
zVtQ4+8vh@6+Vq(kE9&h&R*&Sr5B;ylzn^))=5i#R;FQ#j9izME^Wm?3o0ZQ-R{~!}
zbQ>&hyXq1}A#rzxZ*wBQ6Z5-aiSvEGQGW~99oQ5U9f)3mYBx|XqzSzvm$+n0`~m}0
zNU{9+n9)h{RWUs9fVa(Le8JAlZYwP-OH!(DAPj90b-#_Nm`hpV(aVU~{r;q=A-F1o
zB1a-X97&Taf=lr?J>1vTexzrGo|xF)cVDEMRr%BMC}Bu91&o7HUjbyHkw1t1`jy8|
zm_on1wL0g_CNZ(T<{+uHBdi{4+Rtw7u#mlW>S<7s$`y9%E5u53Vzfg*7nr4c{f0Zk
zAY{JvU9oUdo$c#8yjMgH!e!{?HSs_YX_u=Kgaz=8j7^Ctcn4@A4t^BlMGpzAj|pl2
zjIOygHz!^W6{=XTfJ!@l#jgHI54Okx>Oj)EYzo&7t6nC_I$EH)Y2Gkc6NAj~1m$L;
zpYorj`--c!VC6lb1~{E+yx+OlgEOxQP+8{b;Uu{-U7nsRo~pZi;-7)d)~oqr#SVKz
zJM}n|X@2mF6}s*0yL)>{7c-eUu*$JWI3JA!b&kb#c4vZ|yQjup$!@&2jqTTG%Mn**
zCF9qF+)hv<^AXQ2A1}!VEudgOfXmD;ct8Wq1rEDzmO$oD<BQ%bVe`NkNP%q24IBY$
z*}=PNpP{a+RnNNX1+qy-7CKKrA8DSGCIt@g)$|DquyX=Sxp?>cOm5A$R(UyaI$Oul
z<vnZ^uGz^Bw{5ZeTU{x2N5<^VNd(iMO*Jm=Fwpi6Ios^L-{BSf_)cw?uKlgFeqc2|
zL~GcS_n6QHo?r;794r1)r5gbeysbWgDT6nByKD7e%du7ep**uC+-%dk^ONbK+C(NR
zA_4nCmv@Mp+pgRKl`fhqFaM8#tv7VbVMZzH#7;DU(vGKVgMOSNf~L^|uPWh7_2Ja$
zXun)o^RBg=k9{YwWC9IfAjko{f8%t%m|w0M^2OvIa&mPI4l?@8^hd%&0XM*vd7_`2
zyFmiF*J-&L22Dt{Z9b2oLwIBFhj-IiP;?ol^_~*Sp`Ozuzg&K#Mh~|&_77~Sm$6_Z
zCmYuPBfvRk6Enc{el{WHCtyK2MXj%Ke%7Kq&u+&YUp`aucA?jgOce6I-Wi<~+cL~C
z8sNFyjzFRy-di@W;by};UA|zfrm*WDN<==B!;A#JKRHc7PHd)5(6Bod$&+AU>dxYj
zxsiK}!^#kF5WuMw-;5xJYy^X%V4h6-(9cGGRFh_O;YuGcfICm57nt9Em>F%PFKRr!
z{v|COeYprh6KcK1AtE!ROQZrf8rRcc+#3~a(`)0}Xe|U%*zmC10fWJai9jxCv_uBO
zXW(cm<FR@nbH2fnUWINwY<<bp@Ee<SESlWZ(!F$SdbU5^>C(>hD%$nw?)}MIU5@@h
z0E1@_ADqr?t-X11-m-J2{d0jbW3H~vnRYk4c9ZSkLfBrdyL$0WK!r`}%{8Ux-J*&0
zT0&5i^s?fg@#hVVTJIRgI;%+~YmL_L>rFO;)nnBaC3Zao+OP~>Oy4eR@Wei@NKiLl
z(S5>0@L-%s`!fTb+b74iC3OOG1m4gIKc0Bzo?f#W&a{EI+sZ3($zjxsI7F7~f0hK}
zo4#rrN95ZkqRsA~?#36ZCVmF~tiQTlaahTuW%*`G^U9FQk1yFuL|UEcYq$A{T2MmI
z*1z3dZuS;lyXPaW#F^od9D~%ZSsYyw;|_tHL@%0g8-G2r@qTrG0}s4j_|fs&yKbRe
z%@*wQgt+Pb;Ei5#F}Yc%mh@hil#!&5vPnbs2E$_S>+dz4qra2wH*MfSi91U+wwE+5
zn-TeP&13C-=v3NH<#hX-$8N=#-S*anK3A5%zck0}7t4r!a%3+bl0bwF^n<}{rcB4{
zGc?xws)fn>6Fd8vp1=ICTCaIQ$Zmhkg;0;HJMPFFYcdB8G{?t3OkQ?)xM@Wbr_Upe
zZ5N2G+B^q`5WOQGaRH#?sSOsF1N)E{GlqW0I|Ayt%gU1n>0`A+Ab}@J#f=BqGD!*@
z23PVHLpF;%)hyxafUb!EVZGt6;~4uR=P0oPF7@q8U4XpPcND4YAh)hRfa6O3RL%oj
z=P7C=uIK3*q9vCvcEANFIN_+7LXaNNYn%^Y*)#d%LK6G52hozdPIDI*$<M(Tkl2SG
z)eBvLP}ctVZ-)Xp*)!ZGS}b(*1<LCZpsu^cW(oPy4W=^=8ZjNF*wym!1;!9|VG`0w
z3d$tn)`}4mwC(7f$!SK@w08!nbYp@g8OT<Yg#m8ISg)t>g_WQ9&HS{x?3e)_hy$Aj
z4(O{a*j|KbzP>*A^mZHgx6LN~J_Afn-dIH^+u6)k*OTnOOphTGZQO9BhPi88FT`8C
zMpUdbnDA_P1OioZ@Gtq?D9nn2YL1?@uRtqM600njS=o5Ox;~!KG#-eeO3`TZTOR0_
zA8i?ic0%3S`a-+e*cRR&NgBzZ{*Jin?Tgt{0|^GBkqBN5l$2VSbB2x|VVGS(Uu`DI
zHhc(XuywNu0xA|DfpdpU?DV{Vi{dJci<U274V3uj=HuSr#|9I7T&<@wG|mR?12CZd
zMIc5#=fbaQI`X$m_>)&C*WVg9G!f!;RJYbv@Pe8UdMrhlB$%s3o1@|{t5`z*y1jIB
z2*3;sc6%TIsaXc6dkp6bU&cw4_>`asiOCV*nNAO9U6)@Ytp9CKkr5e`wiOMtfOeVm
zBz%O=hz7Y4?oOrf3#<KtfylmySOgdM!ylTBuqSI>XG4x0KATG&6_xR@IN)8qThQzE
zJkY13w!S|$1p#h$W>=aowC_4TdG^gdr~B=PO9hZ)cQiCLSL*EqaI;)Y4#jZP(ym^-
z%!Ct6>~j3YbDlBi*-@Kh0GQP>8)0b-0+ELl)&W-Ip1j=KxCevZL)ZdoV+fNKzJ#sI
zW`HWvV;W%h?fL26RUUC`*A}s&BCLg~FJk)8)`InxH<9%3i%T<~NUA!{l}$7U$i0(Y
zsd%|=*cMFQUJtzd8ci95=%#T<hZk8wG=7%ls*UsMhN>XcY<fTtJ^AlM(Gdxt?H_uB
zs$-TRtSvZgo_8NEW4F@0);aR_oQ$s*m$!`0RtTAD)<0*Gh&vMvi?Et|Fvj}3yr@R*
z>zOnR{3ucOzWN}4wL?@=Li}a0VpxLwcu;7pF9oZlG;ip@xtOl>HQB~RjQgRU=*WOZ
zFc|7wemuB;zwoN5*A$L8$(wog#hDWzz;w*45-8xmvm!_6Qi4`)KH2xPQhV>_;oM>H
zv#KXa_toh9qXy!?sflR98HoWh|5fgd6_m8jVZ30TP;373`a}g|&(lXz@hsSIrWxTd
zin&|XH930}?%h(hgt*Xt;7FUpf}ddK;h@O|Z8n*Ws2y^uuzsg%!MQP;dUcTixbpM3
z>Ph9p;`-prG@lezso>Jv#Qqu4LJ94et)nBgvr%MB(eWX{B9p^7iMRZxmN?kfMzKgS
zZ;XFJuNDK7Zvpe3vI1Tm??nKBYwKCa&@s;5mv9HMspaq`gF|i@NDA#j?+&N^u%g&#
zY6aiXiS`fEshksuOyswjaLjPqUW)vXVc!$k(cHTdB(EM8BFAoi)?dTzlMHA^o8?^P
z#(a%NPwebZOF}&_uOGIj9FVtq9^b?meT&ugBdW48w)4C@8NE&zRv!0gLeF1FanO<S
zG($XQt52N)A4&WgAN}H`e?Q197CP8;?2X5#Xz%c^35<$2LXOub9K497Y`wOz|F+)S
zW;T04FOks=R;Q)xUT0+N`j=k_9ZIdw=6m4MX0k)iV`@4`j_OS0yz&5-ori-QFktmx
z&b>IsY*xeXC;Z4b5H8^fe1{1Lear1Uksm#;h$>dc8JWu22$C49yD<6wR1LLEiy2F2
zz1q+Jyq`VD-YJc{<GR_+$aCq(DAlh*pJPD)KF!>x-pxYFWH;btRofK}CE-R>4q!&~
zA?eHYBFJ||>2U!4!brM*pXYz4)?L7H-2x(hERHLD91PnV7I3#*uJY7gKiVlaXi=Hq
zX@rpJZ9h=h3iVBBmi}Ge8=HKez8`+s8p``UF0F96EA8OjZ>3NorK;m)=w@2bulahr
zoSN8%6oEO>vs8gDgZ;{~YnAwW=)+m#q;V#DIp3vos8sP&Xu)Zagu#n&6LuZ+FN0vv
z7ikNE`J*Qh=mID-M`OLX`qHMV8|;wd9Tj*>D7fr$@9^wZoj+C;vqQ70vsx(XcH5;b
z;KW(wvFq9)VEJP`i0cPFUXC00KBo^R@Vo5?5tM^G*)NwX#70r1wP2h}4~2()uhIuO
z#BijIfR*1cl>FAvX13$PiML1jz@5K_Cn55?jVU2USM>}AYjc`d_WQ~bVGOY5n|d8j
zcl}szyAelD>j^7DQMANa0&+6)?B8`aQL`=yBh3j~F|$12MG*&2^Dp%Vat}jxR$pIs
zr!dL;chdaYOizqw;QFr>V$>`)%o&5b?@%wg^GLGa%pi2=3HiN`nRut19yj}5$*I1m
zAD}K+t^63D)2+!lph%hC`~5D>Fu1VVz3bCU34FX)dAoV1T%em0`&`?)y2<_h<UYl|
z@3J=Xcr|ufy;DFqvEyk)A=ldiW6XF~DPO~3$d-+J$4X9n7{jZ1`)bj_2y*Lqx~Fx<
zGu%qI1cVuSHyc2Av>)uv*G4Qno9=ZF)Gg>#WHI7QBN7CzW-RisMTt2z<$*tFCAj%t
z97*)tUNswRok;jSkJ&xn4yv!l#r<d*QNCfAqXXR}L;nt)tz?9>HS_&2ej>qA-eG@Z
z?}_5cc|uR&=%zf&zZw~p>8BIs@72DH8o=y_&g+7^`hI=|O5H<qxd0aFsgLh*bM>E{
z0y}Mx{w<dN8!BcNKM9zA&octNwQ^kT>hje-FP>hX?25F2v-zX3oYmru1m|Q@1%WI$
zvg`U`?3jAN?Sue~{rsEll&Wr@o}84ZqjWw6yFrL2;(aOBatq;Xj=H&0OJ&KB?OSCa
zw+^M<_>h^YfdEF;R<S##Fg26l0u)Ey`9;o*Ddg3g@6grZQ*6B90f)Kyw=uQKC<WhR
zqm|umjY;<-H#c0*&pGF#t!H*s+qnXKrO_!--zjUwS$i{z9p6kNEf@0roj328UV$@$
zH-%FInNE(tO{A#aMa)J)TY__xhw-(Z?ynm8;l@W4cHm|XB&LfDzo&=i=G2*dd(0m!
zOq2eo`_jEB)`*th9*lB0FxVq7^}691Yisi216JBP6`V%-p2#a9(p8x(XhuC1?gx@7
zPx_{GZ(Mx)jQU~mMv4Sjn5;dy><#R~*B*<>`>mV{CW4mtbYX+M&%<}~<T!|693<qE
zi6s9f#KU*9V0^VBh|mb0f7-sD9fG>cPamV{Ak^)E4F5?J;eyYdYx9~7s8NSb{Idpg
z$^Q!f(m>}Q!gD`BZpJ?H7gp@ABs|<Y=#b&EcUgE7$|!=0r-TOc>zNz}vVIe(=c`K@
z%NTi=hK42Du_eZV*9YnMu7p5Bvlwxw*~6c>xqp{(6r=&?s|t**B~aM;M$z(d-N1!w
z!;Hyqc6!LmUP+N@+EiospP46LaB~-N^n+>Enuqt*b*6^2SjV^ezPCWYbpa5h>rZ#9
zyqohq$2dK?P2uq35FvJvIA;Q)n&i7)P*vIA{55GWXfE6#kRCb-I$xc8)-JpHqIoH#
zRIOw3>^cLhyFCeB&20Ju>>_)RE+2c;?V@^<iv*1C-~}$u<}oY(k?!6vQ+z8*H-4$^
z&iAfJc~s-9n~z3wX@_{rnYrq%1l(N5*zePA)Vw7T{Rvemh&b)*-O3HK2EN6o2XAfV
zewnTaId~Xs+4akrxjZ;{ItY`G&EkP}MaYbt>a-KeEa|yw?@{Bu9vE(UNv_i1K69&J
zSVra<>I`>q@)?4&n+~ZxckSSJM!Gm%M${L$CZ6C?D45Mu)wqjIVu^nD@r-C(wC$^$
zq|R46$7wlB{*d_CSG68%=;@t{Z*JT~jk<DVz<kkV`y$V`0_W4>zIU?=_F<o3S1H%P
zU25_&&}@gJTW9+bq6NV6L<P&;@SOM+e=-a=vYF-T9ui=68Xy_zs%dO6tz2zDAFb{<
z0+~j8@cGuumQR`KLKiRmA=<BBde-fgbG~XQ)p5MA(@47wg>+cZ*t+z`=$!t1I@+Yh
zV&2vRUIXVfgsy*z7OYq=`J~?a31!=Yu9rY>ZKZQJo)>P0MLEb&!4og2bt6`QeJqTB
z89Leyk#B#0Z5}TL_FbZSvil%dBk}{1Zcu<NdBW%iV(P-exKN>k(G7uREzfIm7LNlW
z!0W4XO8qj#rMElOV(WES%-ft^$TlthX!Ui9z2d`eah*8MO;59fGx&bA^)LNxP&1F|
zA=jXHzM7_$a|_J|yzoIgp>yiSowhc@Z&t4P`-7_6NZ5>t2Z<f4&vsve7sIWUO^K`Y
z<W;1wLbzHRum7kEyy(6D$Zn~IUc$VLXi9nP%_<_#_xU`uUvKPGJa02B)vm|E%joKZ
z)0Ye3nG$V>z+9*dI!R$OLN}rbcwk%54ziu*jld_|^p{?59H`fq3*0&gB;jqBct5=q
zeAXxEV+qjfb$;(2dPm}q_5v>_^g7!Lwn!3YiZ8v6R@w>2WIU0l;W0S$cQ#+Y*CawT
zbeoJsr;DOF940&yCJ|(21ut}7qX6~XSZps{p}%`G!V<VLk<xvH?`#FG6J|t?UwR|6
z(Wr$u_glbcaY9dNVAiq7bPv+EK<%?f4GQV=bvW9vzx?$^kJ(y>(3XA_Z!fnUJ{R>K
z&~@dD+01$=kZV>~2w|_aefloEi4&Fq-4QteforcmOf!2u)U|>;k17vL3z(ww*!`Cw
z)_ahc<|~&&n_@^z?S5PoZGEESCp%T^myw1qxGo=GW6%z58~*p&DthPO{+k3zqfRBc
z#Y|yqIzq8^hcw$?6W+&c{B=WT$Qp-xZq{=itc`uWs0KaA2)Jue6ADa4rrFSklI=M9
ztm~JS=aq!`uPFhOicLa$;pmE^h*0o}bed9pkwRe155}O^+6DgA>iJ5o?N6ihyMcse
zc4OmJzqLlI-pQ?Rs_)Z3CR%g)ZIlcqtFhQjf9l~eqjy)oqh!SURj<yB(Cc9${1YQ`
z5a$NgHqNw*ldxL45LH>vq3&Dhgu!xY#~yS+ewKHmxo){LD4mb_l9!ik@9C=<AH`xa
zdEGZ_bn@T?YyrM8{B^@=miHiZC?_}UYk+Baj6>1ruz__E9|Bmirq{#ro$pZP)*KK`
zueBobbQCEzYh7QZDfib-3Dff}Hw6$ci3~+)+4x+_ccBWL+&TDt`G$^sW4OBI;CMiU
z#LO3Y_+!tuB&G!#Zk#u?q)lCXXh`1Sy@xNA{d)9jk<n9XT*blX{{7L!RzD)Ex2{yX
zNaJaun}Ws9Fc>x%TX3!oL4rXQfo<<rfI0Rd?x@MQ_tKb4QhJxc#OQQR*M6xo>ZZ!x
zfLR+F7v))5PYk$_mvL404V)y?_{_70h+OY$L27%FeiEOS=C+B)qL$AP36%fhVUch)
zx2V_&_(1oA?vLYute7T-B)Ol@=pgJO9$ZzB6tI~m5Nk#Fi=Plln5-Bi8S!o*@g3xh
z#L~Do8*cy15*L?Ld130LXA_JK)v?w@-?YVobg6?GgBRmRIj#kCSkxYgp!TPE;bi<+
z#(A<e(O;^BEF2IkuvUS$A)EIz-MtW7&fNe7wR8dbfg6Q1ZQcUkrd{0e3Mgr<E?yBT
z={+#@-`pu|k6FK>C3gi7!|3njpC0U`nA(-UC+nu{omOk-xmI6eb=#u@p%D$N#J>Nj
zed(GMGbqV+Eofj-Pns+f<CocJbEaWtVVUi4bIQKnxo2N4Seo9ORs1&>9cJNuDk770
z{WY@E$}sUNpX8Ru^q5k{qmakN*#~CHoIoteK_Gv2_mRm&NwnkL$O_*2`PW4nBUYKF
z>1@Xvz0TH!Df~wphniiacuac6Y{enq?cvpfk-b__?mk%KVXZ$kD?8dI+XV~g$dUa~
z5AO}=f_Aaf@H^5%P!yc9`VfAjwu?PkUY;kwK)u1G?;Z_eLwaU<^S7E(F`{1J+BbRw
zaOy<DeUc6Z6@=mR_J!;Ugk2|u+;x4bBGY}CF%FR?4-2F3`7i3G3;6$B{2;<B!NN46
zS>!7-(h05f1f;4ZRw+LsGtuLfV_`<q4h3nb*w6~K3mV)I8GNnHyd?JoV1W+~mDc`&
zjOhdOdE`cwZ>^-zq@kG1PDMEs6tGi6TUn6-by`xO;xK~#K)f(bP-+Ar*k30na;^5a
zO(!%WLRdy7(tYJee8$Zohj62jTD>SSm|UqM(Ea`2B5ep<HDNfxV#@BA70+JVu)cWl
zaGYI<uiu|2+`QDJ4<R)bD;3PDc!cW-{3Obw>S3?`F7b_n$?clKyk4lqg?E&Olpd(4
z^5Dn4+1%e;iKX5M!CS5bwnsqh<p+;1r*jq-KGftgnSt+J##u}UDh9uU#12XLmFTEl
z26&oN2D7r-avx`EYX;c*w)vTk=FZ7IbCht{B3c!je)ElNSVYjo;Hd7lnu|JbA~7+o
zK3yeG9l7l7SvY)dP}W<19h%gJNbE$te4s1pJG*^RDXjd!P7sQ^-i=jk>3c=^C|&sp
zrV~57Bj_@M+SxcAn`6N1`uSNtP>FBf36X&AL?#znik|ziqQ|8iMV+8fyUTf>IF9U&
z1GoAKZxw+f3NRZPN6p1>^W1d1aPvVaQyLG2$=1k^W(=V}Cj{@=TQIARnZEw(p=sM0
z`b}J-+pS~&mh_MBw@3a04A7efCIXnj5j#P;KlG~gCo|(S5&~j(1QSnZywb3T#RTFW
zYCO%iVVDu<dG^M+Y>Y=f*MzHPGr5ikZu*L9JVqLS2|(e=#(rM)BT0ey?`DKYrqpu6
zvuZ<+G`hX{{;5^|BajQ>ADM<Hjj~#<5(Q7Adm)%~A<+|`!SJ88hW*F5b#u=Vq>-=6
zkZxa_q29~16F;AXTWW%Fm2K&xI7^_izx8*q4F_X@(pj+SM&MHVeuDHZe|uANf^FQu
zMZ>-OWqoylJ9B2{rN6!YP!<cNaccr-P_2d1o16`Q7Ge3fm}oCcXET4@?9md6+5%gy
z?|wMKo(}u)`AXtC?$l-2?n5YF<Hp-z0X*7t=tr!1i}EX<3Y~bz2DIWR&=Repap^|b
z%$b!-<U~8&?;CzGkix3Ro)X+B_tpNmska;%i^OJ`X>+!^x93)VK5yQd>GFELiW5@?
zWKI#$_@}GC#WLLirzdxiVz?Sh$he2jm`c7sy8D~YB>I^XqWsQ|kI%<>)4M#@EmAEA
z+y2YVWY`DEY75kWyAjH_hkEAFip_zYV*Bk~QD2cMCpSe)gEKkHwc-DE8Tyn2V55Mp
zExU^zzl`YLnQ2<gWRloO{BATHjqkic`~S|<9|KfE03Jh0IE!km6)ZFr8VWDC$P~OF
z8#AmUA@6iE>;Hx)2zR3#1HQ(}K^Pz$@LKUgdBy)tMdqMl)`AthT`+6$@g01O|NY6D
zJ|Fr&Vc@@6aV9NA;2i%a1RQz5nh(_q4u6vd8Rrz({7*a{3O`B1ujT)DAUQOQ{{I_<
zYh+}kP_9O&Qmyx1svU*Hb_eVJ-!5E`ZejnRS`S*{+&J&wMsOy>@<OWr+yB76;g^6g
zX9mHXyG(_cG4Z1xtK9v2F8DOkeFF5#Zqe;&X`JabY6L4cDaJRmN72u)1(ZccR%5|l
zxqe%h!%-ZYp?7z80d~>w{R%WTu#VP^T1h;=y&?46_J1~5EnlElFJQMK!JbYg2l{Yt
zroZcUMgQH(iN3=RBPn{`N}fKh`%Ie(TiXYWAE~T-=Ijb&?m3imsS)Edx*xyQrxw86
zTz0)8;<8&SNOyX4ZeD4EuVwMx?ek2NjW*c`J|Z**y-sQJjNNR05bA<l37TE^JNwJy
zWwkf7T-UEd2;vTk)R>+A_f&IywVv`d7>ZXSeE%#%Xl$1j?EDWp&j|qCgkEfh0D9PR
zL)g5nUIMRnluw51eDEi~of+qpy=E#ELhm*qE=ToC$2MS((&968tDtDPBm43Nu!sIp
zDT`R$?wIIvF#vX!M7C!B?mIeBjXV6!xY$X&WlCg@%+zH6z#JPty(zY>xey`S?la*x
zsoAam@7-&Bnfa~W@(xdnm&sf5PmubpJbKlyPbqM@Ryo#xDP!}_<-wY`X5S9-IWKuH
zPdLPAZzu}<T<-__L|u<FbobbnaPuAq5;mgaX8Q&iP2~sbeFSj8<7@J%c{Tu}bLl)U
z3Q_zMq)g9Hp;0ILM+AlggThyB@!DU(W2T_3H|{gz`Iulfz`UQlH9`wn3{N3%y&BPh
zR&uO-GJ#_8?sMaqKP-sSy!rDPXt+!3rq<EAf=D<nHTUO=s)J)RnxR>%f8Uih^hb*2
zoD9!f%Zi^fy1p3(SyZx*M70~=$cqre)wLaI%y9Jahlq_)O-1H}Yxb5uZ*bmOpS{Rk
zc&dtz{4b#A06)fC?PhcuG(4xu1}8h|hhQ{<-G`<4FCDSD-1XM=Xetj8=Fv0>z(mMk
zk88yzF4cnk=K0{&ewW!Qr^Xa&0gs8n0xHiOz}{qMDER9onPj)XcrZ!_hyTvqI2)DS
zCrnb~!9uRN=6`o|f`7+G8z^4dz8`^OyR0O;uT-&s(Q1jd<93P%I;193Mr5R@WPRqE
zh9g)RnU`-eD1}2~=RkPHUBNfCGmsrNhs*;(10V}oV@-U3NLKhJS{3mtUUq5~K%3Em
zf`acrVJKa_^F8?8JRbqqk&f4H2*ts!xc6^P4m}D#5y(WdmT}N`-K>~`c*X__xSv2c
z)eCrJoO=KM0GKfDwQ1fiPeX+K<9;QQ^+oNHy@pnk7cbit#rL4rIwU>^V>Bj#+Wf&C
z_dya1>P><ZHMmec8mZBvD`SM~c;~N@1zm1ULVdgmN=}-!LItORUsAZ-Tc|e8=Rw4r
zaDUVMeBHTP;Y{_DW`@O}H~V+djxc<@$i3w#H2^?XWG(NQ@wUc01OmT1vQIdIR7sgM
zf@gICa2qpNz0waa{O}cXo-u-bRlb`TFsSR@`hR%(s<1esrCZ1Z3GNy^1b26Lm*5VA
zySuv+g1c*QcXxMpm*8RWJ30Tk=Vc!FhMw--wX4>ys<kTZRQ<R`il0o96EY`&!_RI1
zN#LuyPZfF`U48FmE(3dZ)dw#ga<viPy9_?Nfb1&V()6qQ#C?R^<%HTCKYr8U;W8p7
z^rpnCM*kmVI*#`nEk?g)sHU1X(Recx%^LRANUC)N9GFYX&`!@3%+q_TwQd6qQ(n~e
zQ8um=eXO5Luji;Qqn!k|IH^<OYrLVCX5I^Lpu`u*XSYy%<0r<ehSMvaRgnF4y22UG
zJW<u%&yvo{jwp>`9jHHm$uy`aseg`^0)T5e*Y0NLd@=)x{#~|br#DEc(Q+}!ctqiQ
zK9jHzypc5MMkj-}V`(ldM{RW>$V)vPGKY8P)RN+{b2qFdD7&dhgDK||ebln75NS9g
zgln-f@m14aT&LP%5KSKy)o_n=wzk|Z4Z+(g?^Xugr;SLuw0luEQt9$vNV(}5$e7Ow
zjA|u#(zI>3*U)gdT+M9j`JclFDELw<npUo-q-l~bYWE<-3J0wWQ2TXLgbaJ{kI;qV
zNsYNS>5MqfJ#@46=D^rQED%;qfxdsmOo%E2imGFab!#Hyz{iU7YSo!?kCSE{!S05i
zT@48iBND$2Q5j{lF{DB4I|Ew<njqCs(v<iBX|XZ+n+Y_n<RohiOVA%2+x)OyW<Mn8
znj%3R>6-a1ns0Bav$NLz!HJcOIL#RpOEYhHYpcBtcExXnOO&&tj$1#cMsQ=nK=XQ4
znBu#lzl~|o(4Rts3D)_V3?t>>^T8xQxbgG5K_+}_(VTB_czw^XfZVy~Oujj+58lfz
zQe7qd0Y{u|p@gf$$`xd2;vlnvAr5;j<YQu|U{ty9O6tde{X2)F{^ybvSLE|K($L0$
z({aoU>9(ikLGJrY9c*P8FQyJ3LOt`8Fi19l<;v{$p&uEpTb)_LIW{XIAr(+xc0C({
zccrhY;~szv`@fv4^E*|85;Ioz;zR-Msp6**9H>IpLTKkxdQ>9C97(Q8LrX|&OA6~_
zZ*^pw!n5!LbqGuKd9A??c&<0&;*zScDL)Lf?k2dq7$c0*q@3%siD1_akT0vxAZRwf
zM;ep?JT{u4(+HP7=<e&I9z<`yKQL3poEijaCNbTSK3X7Mwok+6dpPV|J|Rt*=%J<k
z!6_zFu4eY=7RAFL?Lc4U^a0iqz^7L6@#n$<^hr)rSediu27_As55X$(QXGDDI)z&n
zQz*hh|A7!kCL|(ij*gBqB??4r&PAq^=_8Yqi28g_iZY5^%zD(#4;U<qRFOg?;EFqp
z>s>l*zj{lKq#1o=D4X^LPW@)2Nn~_N@;W7}DkB^!jJAsPN|p#o-D)hhnr3a>@a7Ot
ze7x0QJBv<g@=(|-H^rYc8wsOWOa*yY!zh?=Q_lKiu4|sbqY;6N73p4Pn-IV}l17a~
zJ;1K2nUs9I=K%3ZgsrfIHF0lH0<zme07^d_iebXuh_BzrEEW*OENe(6$zP9a`UxNV
zWrY}IQjG4WxG}=H+JB=QZ8D1>g#mQJ-Ima<40j2wiS&5(48xSdpscQ{=@nOc!LX@M
z+nvw?4!ed97E*0^vv%<fM?n4D{>^TkKSK1>4yd3yfWEu(gez|Lb28)=n@nNRbx)3o
z%zF9le#Akcyh&1NsIx5!E`|}%@7$f*dP|TrWCcc=et}m-$KTiMhzU$)$Gd4qXPFPU
zqSQKOCOqZZs+$aO<G?F-Q{jCEkdS{)r22+VNen!B8gOB^E`arY=76cA{4O!!ypu>y
z|5`H~XoFExzv3T1G%iF50px86bCEdM&8W}P7<i@Mw(b{CK2^YY-JZKrd)6Hh@8boJ
zeE+t#A@5aNS;E*cZPv<Yngw{At~I6@KfFAZr!9IzN5614;kWVZi3~vB)EK?Z<p>FJ
z&B-C`lVkgIeXJGV4;mL!$z-<awrR|l12CLD|JLYri~uQJZ>^<U_7g5mW8xFII}qR#
zdD)yWjYj-NFuNdy>5?g)0JaK@I_io!w8tP0U5Dd@gkQP&x$PFYKrd0O-Si;vR7M|&
zC7<%^xy>A+tO+CuyYTdD4Kcs@W&`Z%tq(Fj>$hR{yT3krQzXy)8E3C0Ax0#A&Z^le
z#`9K~_xpa{bNk@>O8F^E_-T<1qucu0`E4vlKap-Eeh3<!yb}bk&V4gQZyNW|b;XH&
ztD$~e>0<EdYLUWp71f}FN8{@8+DsJBZ{Dqzq@zF93~O~~pKUZ_gDCA5m-y;!lC}aN
z`CRRtkoKqeEFO&Bmigcj0lRn8RICtf1wq5E?2^ZKg{U4DD6D*X_<wMC)WpoJKst%K
ze7J*ANjNG0I6{9Dr-cwyO0bARG^B*#fa-t?Oi|y(IB<TQw4{lYfI-E??E4N^jp!Y&
zf=(&A&{%d9<n5{VjXwA@Kd7GSSxfbCKh%?u*V7jwu?eR}O9Z6PM^q)S9hH43lG?S5
z;Ylw6JBlG2#o}*-HPkCfp;%L>NGo;aT=o-^cVPpb2P*YG1scaNOIb*j?oc8Q-rK%-
zJsxder2CG~y~Yz(fL!CpbPln|gA4}pP9G@uj4gKW=|Q#eXLVqB`^pNj<#6asR~3x<
zFD5S%@+<x7CX#HAxMGmDL_$}ZFf|)Z;hc{?4|2KEw;Mn7BQy2yAzb^dRUt5wk)L;6
zKaDr7C<Zm1sBeea-V3s*<c8XxhY;SI?}=QZ3^It_KU)2Ma!@j{Ew;~2!5mO=b~Dx$
zaF=?p5x-{HgH8gpR8?UE&O@&6)BwnOC&Mj`vas;xI)MTF4c*b+KY81zK-9I-Ys(LL
zd?CMu3hvGS^vcPK{LT$<;Ud8Rk{L*7!HSu`nl^f$D3PGNo8QASri&h_fA(9B;%i|<
zT5<M&@DHr^upz3dKvC_SuBtJzXP(|$l3O2TjJCq}n%(y%;{NqzE+;^rU6HbRQfykB
zzkyzpxL#QgqZk*XLun%AK5|?tiI&~<-J~sJ?k$9tqc)(!FoM|5cdgc!S(~ztd8=bS
zlJ~j0Fc!JFhW~HrDEB0EzY*N3CnE33xRZ@^Na6ksindI;oss8D<8{6)dr0?6BoN<Y
z9BuNvvWs%~c`eH2bx;jb7PznK`2;+XrnRZ#>7Vd>OxDxssk>$l)HeShlzS~5s*^O>
zzu{rW+1nHvsG+Yi>bI}JF4gXh<IxmH)L=LeQL#X2EZ-Y$%3@!v>Fo4WWOGJaA+{Q7
z)5~fq#X%QUUurG};$po$*iF3Z9f*bR34}P{Hsl1WR5-%|jR7r<dB_hNf~U;B8}l<!
z?Wx6d*1<3y+iUJb7t@AMO7{XYOMvgg4V^~~WOn|2%_;v*pz_~Cm~3C|O=hQ8&>%Y&
zdV}PZp!qcvl6pR%aGQu<V8WajxmGb07NcO4V)tBEK6pz<tf-S-&qr!^hi;JEsg}-X
zVlot9P?=F@tqK$)j=H=DO8O24&8d}7i?H10IIo{5yUN%rFu&vh36Qf(u?6p*3GZob
zdab&7ZmxOTxd_!l%%?Q+L~)yW;Y^xkkZ`{5E8E~6DuxPbFq*ZZi%>dRDpCH3&NFAu
zddJMhuDyB~53Axe#liY>tO)$UV0!dcG~P*xkJ<C`acA6XN#Xf+&<D*Ob0UBY9D`SP
zkFTANeHUnFbP|{!^8O=d_D;D~=%#sF!Aw7*kEbkJ(A&+`ffaEMTx*pLMQl%{IMX;v
zi3zSr2^0-Ik=z<Y5TkigWDg2tnvMNz1@Vx298@22-4^G8PQq{#sQ^UgGTp&y8#m^C
zY<kR9i^YtSbJ*>)QL7K@g!l==GC-_n!i~(>?K9kVeeSzMa@4I>g%~I2x;y_Hi|t;-
zv$ogsM@@+?9_$&Tpy4FMWhEd(({-?@vF{$k-ts#uH+bgC_7d&d&(j1BawUvbd^8(L
zBLa7)V)XfWf3|h&+}0#NDYJO?4&O|G8r;U(pe98hma2=A=Svz2bdad0qe}c37ZBSv
zj4XyVuM~m6=<}XDViDXngCp&O-dRFOh?**9lN9^i$6S)$#k#Eo(V8VBJ~Pbrg5r*}
zyV@FYnBQWj+C-eX#rRw~>D-s|d<LCZ$B&_uFT~lgMNG3lW5Tn}FIUbHa;fpf_(Lfy
z;_I*uX}b<C!|Q1JrxlVs7^H5-C#Y}#ir!M%3GnhVczj`&m#9Q8pnu$N1|n_nPL*xJ
zVVd8W%acK>g-Wu`WttxB(q(L42^`VwN!Wd4T}nO(+Lf3^{Te+L9Z-y&_%&AYcayF&
zwQDBifj71oN2+i~vwJZXn1&Iz7aLej{{t8Z(~>KTvc(Em(1!V<gaB0WZm2ks$lUJX
z=bwNgPsQCDh*4wxjiSmIdwU(W+!LII#Tti9lJaRlBu}Zq93tC?eIU6I6!YotF|J12
zc<9(7FV6Z_oWNha5qNlbsrINoDyBt6;VzR7q6mx}&1kD3SDJDrga{cFzJ|C{u*7v7
zG`aA|gaPM0L%nzS2^OR>N*bQLa}+G$>U7?9`MJ@S1^#F|#ik%T)D|uE8fuo4Qb=5%
z9EMuLP*e=5t7STrg6qWKZ*oN15@Kv6)e2eIao3yL(VFAS8d6CI(;=}q-eXKi6Xg7=
z`M^tlma2|7wa?N|N(cU!=NjL&A6MePHVJ)R)feFz*@`<yT%ePKk$wG<6wp4rI@?r+
zO+VzsnBlCIxu-OAIxZ!p{SEOap%xO!nlIX=kMX$<LIwW7Cpdo8C>W8v9NuEEF5&6~
zL&(Magk3cn^wKxn)O71yiZ`U9ZI4l`fqGt!66RQ18h&6u<w(tIL-)Y%&twVE!h|-P
zm6X@`m-~|qMwpj4s69Ugh-g%sJ%tc*fD+Kt_z3&QlWMPhLnc>$J>1K52}9lf=9*Lm
zK)p;LqYMf{E;Z|z!P-pUk)^w^iQz$XV4OarXo@;|c>AuR9MxBivBr<5`nB>Qi7OP+
zL!GdPJgxWC;14i<4Ndt)Ct`S^G2E?;jHWT{s8K>u)s(;D0V&FYf!f^bOj8VmnAS;*
zvK2$9<Q4qjWq6Q7LA@->tuj958)0Ro#~1wr2_Q^Pfjy{U3E2Q3NuU%3u}|#t>9Ax!
z0K*7IF>Z@e1zH8@WY_7J@TnNsV)A~mB>3DR0(SLjv>jGEB#>r0E#o7#TL*mNZedJ{
z*J_DRhGCXHaJn$RtQOlZXZjZ6-1CA{&jphr?~@$c#B6Lod|+L9;Q^zpR&^Hd_@c$@
z^O;;DopeMtW1Kg}t=I}jya#jjsae4O6zu>n{3j2D%FTlw4C+d~!+_?G!cscy;2`PU
zF+3sJP0L)bEQl_RiymnHaG9is{oOUlgWFz)INQ_TnT=xsQdC$Axj3%)LONf~b^=1!
zS*ZwwQ6tAB@Icq=uaq6l6v5mM8|6<k6-Kb=DeDFiNO`iS5SEG){LMp=DEJV}CV8BL
zTM|~kuWv@TTcrrohr`2}_nq&USUp<-QS<&?zdLGF;{7^w2RtB<nG}5CT*_`NLy_Sc
zmQz+2VUic4J}Z?7Luj^BJ#UcwGWEn4he={gv49w^t|<`bW7wOw1|<sf1eI4>O+xSk
zw>XX<4#%FDYFuHfKTL=9%B!i5pX|+C)_ASqQzm<s;a5^e0g+5q0kY!_N$d^ge}-RM
zktz*D>EX8ETyQ0RA_A?vX8k`|(_Sieb|D|DF!|Li#7;(6@a}uo=s{?^t}sRlH=zwS
z-T!f|I1Y<(jgOO3QL(}4?2QCW*ilJo({-bzr&+k(ry1_F{~`Q*C#wy+H*65Jw@a?3
znxv<}qu5=H{E!-&qqbu2OCYdhUE3!P#h)R(Ay&K89Dxng95N!~p&9=v=jxqf-h)ff
z6EE`$a!m$|gFsYjtl?pJEIAFkCUDo3&zHl{LShvGkLHQGl?rs@VTv6Z5NQ!=peK!}
zNcf#PG@;kp*?<doqO}3->!m9s4csMZ_Nr&su|X(|pVkE^Yq6)gZBqf&Cf`wtOB`GT
znEz_cmL*_|QQZSw6IW?6C221E8;e%_^XUq)J=dgRifbKIqYf_%5w%hvk`JI~e@mmR
zquGFh#LxA}f@dejEhA^nYK0ccF$AMpa-ZYb#uynzhcfG{2I_BCqaNy&tYLW`*RI(^
z+%|88G|Y1=%0sTXY%+SEPouu<kSBY68n<IR4}#sSRApy9pz~iT&(mN0SbOj;9rwK3
zhod>GMOuKvad&Ga_)-bLqyae~UyUMjXxfiI`946FXeN_9pq}O6e_hcY2%9<-PL*i?
zoO%WCu^To(OdnlqG{6m@qlVrwBWU?~^9u<V<eY@5e&-9Wlt}|*w+tqVw{sq~uDkKT
z?KCi+3y)-}7X9ix{!I;wYHJQL(VfS9%I*2sJ{3?u3PhZ&NAA>p6XA^sZ_OV11WQ7}
zd1WT!p`J_E0+|&0VcsLvzKt%Qb}cByyKO<yHIL&gbx9{JEBRj|d|u$ZIkE7MA+8MM
zA9uU-M12vdPKpbno~cD)vUC`I#wGV{qf&p4DIxI!kX`gtItTKxN`J9ey6tYh`F1Qy
zx4lguAAFy3F;s_Q__N#3E1H)vUNe{jO2`IFJSIFf6g4XngjK(gr`jXue3_p<qcsC#
z6i@p_d)T%~V7Bb6QT{FUE{a7;`R-@K<~n_QL*fVq!H>Bhy1$CMALLg@8eW(Y+_4~R
z*;&foahFpm*BKkVIz;`#V0#ZLg99`k&*s})Bz#gmI19f3cYth#x2QHFJuWgs3?WxC
zB@oH>iDtwa8zw9<c(XnA`s#=?L2D|^tNb&POwIwHHFDeWM+4hFVu_GvIobXdS?Bv4
zPle|!=58CQZECm<HSo#2*1%T`Ln4&M!#zu=JdZq(+N>>VML$;TS~_!2g8wX2lqf|p
zx2rKixGM`AtnKEFBha5xhdR(5On#$?R^f!SB!D|k=j4#_RZHNhn_7h_pam6Q`c||<
z;_TM~dTj`o=(obpPb&LaEyXHGT8w%8Llny<?kT|pt@@(QQGBZ3HXO-Z5_?DJ%Ge!7
ztc++zqY%Wn%>Bx|pw4OflQ>Y7hoHtc2Wa8H3l-`9CEuQNM@^t}O>vsrXSf;5phVqK
z?l#d-;~Wi+vCNJ_XiUhqYYjW-N^n1<gZ@a}zr{@{9JP+NicR`ojSNeOzOT*cc*+m;
zAOXg)H(QB|0@+&ATT~5d;gutvIRzOC_#m;V;(HeVa%ujTKixjoz7DE&G-2-V6;VSu
z4F7u1_xEpXvB=a+6#LeX#aao6aQV<7=3PBJN~9JakEe9r!i=xb-|ZT~X#>{M1Bv<-
z6h~yZp~Q%AR(LF17R9#?;z*U>SsOoyk&h3Of)+A5WNC(MITjE|mKUz`ID;OD*e(Je
zKpLBb3Z9d3c<PtzifytG<SjW2rqiFNioJHbr3~S2h5Cn65sfBKCE%W}Ck?FhlJ~J@
zb+5e#I(3%U{mf`IVD4Ql*=yT765?O3C6~$8Px~{)L?;I)<%*{hFR%Gq(1nJ|#U)^7
zS!su$o){}-y?6A(9i*xY>FUx>`J59HRS@T$Wp7k^Rs&m_Vv&9DLH0ru2?L<fu`sAE
zL0G!-&x#vk_gRI^d>CIC>asRG_ahN=-9(6<XVnJH^Zn5F(MneIZOMMbJw1-Vi-_fF
zzth;pF?1e<<s7Gc@G#L^#MgXuBE}Nk@w0DBX2ycpO7Qumz;!H@2-tw#{;>U3vz$e~
ze7s32@hz><nwkIr%wF@h@5?%eP6_fI$)87!8;~eRcIstM+Z%gF+e~J=2H*MzIcXIs
zi?Aq)l5d|;<~te^P7SjUDZj~Vu7W97?SM>x3p1Mc#)vgNG@8?)p*wANEtdNyEH;cC
z`*ukU=5OSFwMBmL`?;0~rt8-Ow8Onm>k3GwctG=ng}l=E0Cf$dQC>G@(SQYf+;kEV
z()Thm{Q*0q%WerQRig<81*hHJQ+nAHDmoy-Fe=I}J-bIV`wdaEoJnL)H~PMyWoRCj
z5cgufj(E1MRDA2vWRfe}hmghx_?ZC-gv~1}8VLC82!8KR6oj59Bz(3S1zdw8H3{He
zo&7bd>cR8s?pTZYVv_IQzk5GS^oad<feKMQG;MV+NJ7r7`L+7Pq@zN%;J7aBPLwDT
zRsvTYud8Z60`xTwSR}Y;B_)KxMPW;x8Mr(c7yg}#LZ%j5)U$W8sCBYi`r<Z#%viHN
zZOCDqVCAa`=d0#A1xs<bS18$d0#R)A)enmuSNG|%d-J201Vcj8wS|_|PZmjx-v}IO
zEfTtqTuO2E{?-c-+u<xceKP!Nn;1Cq06ve>c0-{jbJc__=ev7Tny%g684!-Ux@W^5
zse1+>!i{9%TGy-qWgS<NHx^p%>^B^(_qQdD1?NnYBRup%iem2~j3o8x>&Y^fP3&*}
zAS~hk!ImwMokp)6)yJoWy6A5R_c`D+N|fYAW`O6y9xaG|_*=hbszSn`u`4PL#jw>i
z7F4Pu;!}<CML=0%vPL5g6ulvofnkj<m74HOawB@C|BZfr%DKPWQLZo9lbSt=5s3PG
z;w!vkDwc<K?wk&Bbf8C)(^D#YtWMmD?jB>J*&i7lqo8n~Z@<ToIV>{Aypg1=Q%Cq5
zzG;iiF&K)?Rda>G)>bn7Svg#lIbZfymoqP?LMU`wKXfcx-jXm{EdNn1p+orY+dYwN
z0G7uQsWBc#>bM!gr&O!NA;P<jkl;r<dVhOK5}5P@JYfl)1-{$vERa0vW^ubLth{k-
zd#ikLY*i4e%z?edXSCbmWn+o*&V6wkc_VnD1MwXER5xYRv<M;_du6PS-V7Y1!qU;@
z^XJ09OsyS{+#3|JTnT!r{pxoQfPP=G7|eMAxy4}~N<*Wfvog9QBElykSQiT>Q^BaH
zSZj1`_v{g<RgO00(k||{Jg_%@ZJl7D@9f2QU1K8Yg(IU5zNL4<iGqz=V5L#3GgRcm
z(rB3vZCOFd=Y=+9l*gXG8O(A0HfQ7i$@~#gnj;0OBCYsq<kT1f%^ZNi$mHA>|GSNu
zyOdhXzA&W}$4_ijGY?#~3HiocOQoYIXw8<*P*A?mN*!YKmO;O3al7j&%HMC=wK1f2
zyJ|G$*Pv!OS6YLud0cU>63b!Y?BA(59BVbKlYybmWGXaOdEL0O%SW<+ACWMImc%T!
zcCi6B8K>E&Ka0j_n2`I;xN3ry=h7afZ-gGi1+D3uw3-%U^<A|W`^1c7G}n9>E*q%l
z1F6MIKb@-Gwv#736-|<NGx6$En+zThgnDMwn8yX20fQ{l-tGZv-oqetT({0Wv@XOg
z^JKO`ZPQ}R@xk|o<+Dpypa6b#l2fYj>|t#}f@yyZlxx~xJmzL#3@yGu(ysCmN93V)
zWZ%qL^UQbGAL`{P@O@L3c4M+|GHYJGfdnk4dS{|B;A_rzWuNM$TIWK~pB8p@L>nMn
zQdfYrcT4C__$+b|jWw~x=MhzZveV!3+a@8(vIkBmI4l+2X_WYFTMyGN?JARtP!3tu
zb$qnQsnN<bk}~19w3!OBX$;u%Xk_!GvX_PFwPg&q=|tU-|7qMUp;KNGoa8isIyZ*9
zYY%R!#IrJ(&|13lQ4<}Wsj`L|;e8Hprs+C*t64@~D6(m;C$!G(1aeP(%dQY_7uVAo
zZ@FJYP&pfs)q7-lr?v$+X_^jd`p#OXPizB)n6TD_kAQshjp5o#Tj=9Wt4wiC<;vXt
zm8$qlN03})(Cjr^k-rOtns`QK1uDoa8Q;b&t}v=M+M%ga!WWn(%Y?zuuOP_zD1Wh%
zDxC!hbv21bU5&_v{QLK_G*xi(Mer*~T7;5>L})TtwawYW#rr$4r=X`?)Xl156^@vB
zD5AgxD~cQ@t6LJ_{A6!0zb7Ng`nm?OgmC?Jc$ejR#182*r8kYkN7|FCdnxO<QZO40
zwtw6w1J%I1<YQms#(?L;AdTjs2#REU^N}|wnJiEeDYHceK>rFrPlew%3{S8!zEebz
z_+7-G^ny+kI0xy?xEaBPp-|>^0ZJn^`V^8v_B|L**69biC}L${sclba|45p=b?!%?
zoO}>W%-H9d;Jx<;52V67&f6WwxvOh2Bok&mt762fDkcNNY`wgllsNjkpBEro?7O<n
zfV?Q1QXTqW0W~fr9-82&v6|W1ZRuK|ittmGru=8B<hOPLoTgquBr-hC>Cp5BDQ>7`
zm~|uqc|pWTOWC^+jB*)uPR1b8as;sh4{Ci9I57t?rNMjpk~jW!E1@h(`0TWPEQrfn
ztUGRwWem4+#(o^yX-Qvwpl`j#(E17^n$YFueornYJBW%ChR!}0Y229Uj^zPD?2j!E
zze28t!FB!eTI~|xVx#Z1q%L};2WODk$TjIwRJKi1A+jx1jh&UchF7@`q3}l7r}*Zu
z73qK}CTBKI=61h%?@55_tRIRjuJH3xoI(@eH_hjrJpajCEhhVNfLd}{iiL-1>yM<t
z^Kol)<<&UZ>=#3hD+>0{*-!nUa7C2Ye06ojh$=s6OM70E!i}|P)x0}~BFiTFUA0lL
zm4dtEA4%2@8})T03);10*ZGe~NX3e#qyWYs>a~ccwZ7ZuB$xSN@xu`tX!<IYfsG`j
zO5nKFD;f-cUe?(Fpx}rz9`#s)ZwuaQ)j+#rEB2`pSp=*0eP+5NNq#~Wuw>)9L$?$m
zZf!E5b1{Ix?wYwfQe^hFK8O^p07*}Y)%Q{<LB)ETB6Dd_J2DRA-Lw$E8v4O_#e<I@
zU36#NVi<@no&d3@X-5RyY+zE5(NwQUMmF4Xgz=Sb>KVTWCreLrMxF3e-)o~koFd<-
zE4@q!<}+!`g?yn&JMG?{ANm*7^<yY<yp<8PXGPRl(^cX+Ry{x79+^Dv%{#99;LX<>
zPW89cve+plzhV#-wJsL=CwlZA263v-1QKy*)+UoWfo&pPm)*MfT4jC^RkNqiR8xRk
z@mpirVVGGr6qXqZPz1|c)Q~G|Pa%{6LP$p?$EYZph)xE^!SE1bs)W-<i8}b39#QvJ
zq^<?@5cov0$v&Y_fK$lvrQ7HfBC;-^#yAI)4&N)mxu+*z7fa^{TewDXb75g?1JMr|
z<(?OjlZ~FJ(4>h$RaeE13=71vvIkMdsbWREL<2G9HYnV8ZzWvJtKr33tjheAwA!K2
zDEyb5qBEU_=^jqFn$=exaGA2^^K4!KvYZ7)8o+zswOtGG7CJle2`!ozVATofTzMvu
z1MjU-zbftkr=ztVhIQ|xc}V<sB%gDaqIf{}XW#trYn+Zn|CubHjPPij{0S~sC?H#g
z2Usuxx!qa|LuUn2Omv`|hNs%y%GzDdg=HJoOMObh<R^QQn_{fVS^O>ir8qC2$S32e
z#-}|XMoLXI<#v}e*;rxC8E@Lfq>Y17ziw;$-XvEd1f{D;4y`Dfy(apv22-3zGP81E
zrjbr^w4DaK|1DTKIY013bu;e!;%oSLVxB1bYsX^bYQ}Gz91{c0Kt$XC?^%?(kodOc
z;<?qsPYjVDx>DU(m&ntLW!0n0CL@tLOc_mR0cF{#Jn5`yZmzf{zV2-7OU)F|S^bz5
z6l-f|)yOaTq~mRn%{W8Mt_7GhRF&OEAS=x<j-s`iS-hU#KgHQaf35aeB!rZwtKN|`
z#Kp)Q*>TVNsB99ODqYwa`Mg^;B33A;rhFq_A`n(sLQk_281bIcRe&VG?kTd?&|GEQ
zloKLU9|}9FeB>)<j24abHhoUNdox$%_m7gU%j<t;01q#0`AV{}G7~1AwBl}v!{gCC
zc%49iOMhhg9xRUeYCa4tyM6|_V76cFG6+FmjVB0qg`URW0A-_J{fns65~^0&bFTSj
z>+p^0R9}vxo@#D?1M<Fb6R$2iwO67tmn$QoIUn3Jm{(X*QlMU~cLJ87^!<2qbMKrZ
z`d352yfw81@0>F|@5{#J1;)h8%*^XWme2fAVi4ouBAVCa-f;48!Rrk7JEv+MsT+LA
zjn+@gP-!I^{PGA6^-7%9s|N#gGIZ`$x`c$K6!0mjyCWMr%n2=8F-qd6icDh~R+<{(
zZ4^ApIK1<7K{w4N`*@LUyr{{0Ox)q(OeE2|c0$^rW{Mhe1(ueWM5<1_<6$nS1FaLk
zY0>FrFrY$Wc?<?8jR{JXro&R`Z}RY<z9piGtDPe3Qb%TJTG@b@*n<CH294ZmDyH>a
zx61IkcZwj1H(pnGtO4m=PnWt{@?fr5Ds3_dz}4ciEhNcI>*Q2J7NIj^=_eXMTAG@a
z)B8zJe7e<h374&R0&d^=C0|RzO=zDhH`-heN`}nJt;EqfmJ%&caR$pa2b0g&HCK(Z
zJ4rLvh)61`1$!DPl7|YQ8K@tBeOnl#LF=z3yWAqMno7AVLHjn=I3>sHUYvxz?{&E2
z#}qw(Up$wurh`c4AUf7-O{7?e{bgr1S&w&}9XpZ7Ly)eb?-!~z=JefeiB;#d3Z>ph
z0lpUkd({CqM=SkZxXjldG$6*pMi@KSiC(YCH)(fqwG52)NH2$yGbTVvTqwDfts9D4
zlL0}O=$Sn|b^UB(;_+en+60QMJ4&?CQ++K6b@0Pd8zQEVe~zB+-2Fy}2D$4bJEol)
zay4527WX=oaVK4eSC1_G3S79iX2a)d(C0jdlga>N;NykPo?GQRkFZ32lpoLt+My~^
z)h!@Q5(a9TJ)JZE1@f{eM*->7+ge+lm4FpN6duvLu3z21&p_9-^8(Ms)*DJpCQCru
zJ$+k|w2F<dc2!&%Od6>$enzZjgqoU~V4afln-Q|OQuSkSQ|AJSUAbtmz&mKa^hZUq
zR?MBO=og*$qy*MFhJFruYN6hi*-$zQ=<h0(rgwRM*Vw_+w&X*=ln+rXb}E_LCbMo#
zcvr1O%T!2IqTS<;)|SYNo3D@cW$bHeUyRnId6o+CLBOP}K-xJkYEqWqyC{w8OJ8`)
zauR4PT2m7-ce=#WN~u~_k03-I6*|ja406#H4_q_RUzDjQ%u3OT!k!@rd|#TwNaerj
zHd4RT0y_c8x4ysfdT20-{C|Yz72;WTT=T+-kCvc~%kESnB317860iZTl|{>;f;S)+
zYFLQYtwBa11P@k<Gjl$K{n#d&uC+FwBLqSN>nX*q)Iz(>n*(%0f5_Z6ZpFI1AT}~a
z?-W?oF0KIOY1b_KP1RAb+vu!0Q}ZuTG~|IEa))ju0XCJ6%C_qo^nQP8cPGi&Sxe6(
zF42SvDOPKPpI%)vpui13MrAWqm3VzSPp<b?eZq$yHq<aoX`fu=(xJL5n~aIZpLRrY
zEEool$LwV1w-78g!c$pMd(A|lX5wS!ZrUqX8sZ+z>j|uhs0xK@JW2=zE})({V2RTW
zBb07CnEz~rqRQBqt1rjl$(k9&5vW+i9r9SGW?AQYBtfWE)*2f|22@*|)2$X$rT{@=
zCS!qYn$R|?s>ut@hUbugM2)aFpm%AO+2Ft>`^1W+SmcU4JJh_w^hd?jFwFed77e_B
zi4UkGfJXCdtbjYwgrU#+h2h(thh~pNR}sj*m4NAn-?>WgW-5{*iXw^ba2T@K1NZJm
zHxSBZ3Z66!h-qP6=0##u%1ByCwkYzqQ+_SEDLuuYKNu6KG9?G87WuOLC*8}gm*Op9
znVH}BwfG+4XZL!j-(%3THNp^9sqf^nAJ)ZwH1iBM<9zv8%4_GMVP*19p9L4uCp8hq
zRs9w`;5fJ9xZz2M!@5ba9q0|m9ABObraq9sA1ZMhW{w|Ol@9xLrSq>(cZ(AFAAbwv
zh4^b|@CZbUNQ*gXanXfi@`YZjtB{jf@A@ZC&>&f3f$j-<Qtu|e_8iD<Z!xe1u&;ad
zBR>i8vsXB06VdHYGLFy5eQ7V`3BIFbCwp=1vK14s#KW4%Lz|9*&zGxx<rFm;nD^ns
z&AC7-J3P)vLCE8MG^Ui~S^7fEG#c57kv&OWyDQRMD=Uk7R7AQT^K+Y%5T>%Ydobb%
zCg-DIJ<{2VhFHKP;$17ceb56E!*GkXp?@(cFjZ={DdkhCR2qczxI~Gp6R%&OG3Bp!
z6ZecKl@~!L25Dx6!Bz8?V!RMie6n{VUxZ3*RS(MXhF?xf9XH8|On;eqB|Qa;O6pBl
zA(+kg8&9!VtN)1T>e&stH_snYy^dCCk`{*kmRu~8bojv<h4`7B@{jeNh(mE6<-D`G
z-bwP4jkMp-ZJncixT9v~@p|e_+Y(Brl!x7SEo)K6X}ZWy^KRFzN`rCdV_^#towc;%
zXXJpEhF=TXL)!HImbBL%UWlNTzIbM4b!i}>`ED^#L}ThUvHA1lSnY%bSvp`4H};p?
zOS-RhA@MdPQDa@NO32?RS!0~T&+JTDG<E*javi0;O9LfVzr&4jv4Pw#YKA@rEg#0l
zLZR{BYJJ(L&_$p2AXy`eHGpJ866;O$M2a!JcN$@1jx<A@k<8Jt4?ZKtA||*YUOG~d
zD#ax~28omF^UwyleV}Z#Voz0*Qo~0YnL9iy+kcP4ENW+Su2pGfiXm#RO-JkY*+-7Q
z_0{BS6f1dPO{^G)gxqW?@#Lx<SITnOL;_S!OMG1fs_2KAjrJ?Nm6nK-GY}pU-bn8m
zYRA=dLf08(pZFUo@6=*<8;j!gsfh~f-gSFlWG<*YDg`BOSCTu#|BlyKm)GAYZ&~)v
z`Cv5|Y^`G>_eycd8KwFjJwcrJlRK+q`cmKeI?5EMJy5!#G-^JQy3SzG-)89Gh=iNb
z>Xd<LD3~MtuQ_UGzi!HIbGvp!@!#u|kGDyXFFL&*Ers5RgwK>lf08f81^nthx)9+<
zNII2WZ?Fi$qSFeVeor#iFH1BE5P&3o7Bw5KaK0hobGMYYCLC#eJsgHg6Gpr)cRK27
zNjYpy@=~K~yeW6SjT}j)`V0Cnd^w`=Nc$pOUT_b>9LV&Xj+XcfwB*1<-i*>u`^1E%
z?r&?tWzWJ;mlHQYQGG~`#Kq7r*`f_GpOYEQ3cGOcj-Vf(ZNo+95i#+JtO+&6^3;Ja
zO6ByYvdsH@)`3`2S{U=Td+(d~L>>)V<Gn_tWD4U!zrtu@N65%<w8{mI9nQCpF{B9^
zH)J7Ggaqc%>1u=z#{JRedM<0R4NO}7FLHaMaT%va4kjC*U7(5lpjol*oMG{B<|bJk
zgUY8!hC4c`F2C9cP!h{eziCJw&*@r&2}DB9j^rSjHzH-Ma*EYVOtCro1nKFH7FD4;
zjlQ3tIMpyRAcaT5WMw}TQ?-m%(e5`4uzqv?qCL@b)Izi5Taw|oTh1gxPd1xUM~a(t
zUs8+l?YIG(P!&emRpgLMGDFxi-@KH-N8MhZ9~38gf$AdK3ypr#0tuY%-sZaV7+AL(
zN!tf~8f8v3dfXoi_N+quPDiqAv_;-ew_}&J`DXf0S0oQ2Q8)G27J_!0ZJ6M=O=h`J
zipu|@9;+K~#cK8mgBl}(r=G4Hdqs5_Z?Y9kDLICaK>x=pQ9%KBfSM7JEN1u^RkT>L
zn(>EFkA(RZZN>hV9r6l)5Trvl#FmcUmtVrS@ITH75y{;P<o_p`h&yT3D8`?2$o`j(
zf;V{@pr!K&{_X$%p#*ijpC}p$@vPWPlS=mfA7`dj&efG2EUuS_g~~lQL77lS?e+L4
z2HaCu_U0!%U6&7Tur|XA;T|8uHwLGvG0la*B&T)jjTTgRZ2AFkA>4alu+zk4aj`<(
zc)nQfWa+my=wiFzKU|kgO^iPcVa5g{DOvx1|H(}<NZYp($Tro_p{dKp&aTFARP?W(
zzni#X?~Lg`^cpnIHR^VWcHhd8z$5yMt#^xhEoX&9aHpRaBW);{$D*1WR%y<943+@~
zg43!0&{9Hty#0tGy2m6g5m8)W;kQbSTH#hMJU<Q-u>tqk=|D}MN=9e5G1M>0Q5;n0
zf@vr5dZpl|sZ3TluOfN65d}ys@bVn9la2tR-CzD*GP#_oMgsS9Q~$oamFjo%>(FB-
z)9XH0e{S7`HIzvYILc|8ZLx-ZPn<vXoiZ>c1KLDF6;$2srQ`7*JT?9!^H78dV;<Oz
zNn~loV{`xiix)k%gIQj?EPh1>49~M53Zd+H+ns!d4M~r0+Sw?)6=KIiv?Myu7OaF_
zGhs-J|97FdK8%B)(6}YzfBd2&Ymrm?$jJ>Ic*lEJdy$d+Z9MSO)gzs9&jjlHJHUKG
z3M1=qGcg$%8-1=(`PUeKjD+>3bX+Ec3}#JC*|=V=g$M;f=YdrPB``K`(^<&Lp$K?f
zMgP&}%s#RU5H&4sTJg&OPVwhSqjj-n8eq-6IE<tCSh7iH$3l?s8Q=%}Bo-*;G{P}#
z<~EU%*EfOipLxjBhwy~zfaAXOzZ>Ctym99}15EXcIe+G2aQaCEA3`=FQlku7gYUq8
zfWldJm=ZOrWfZr(+z}YEiUfD5;(th^i{(GOlJl!XQ~aqX#laU9lQ_|jaQxR3EoZ3I
zQeQdJC-@%&TIS4>Upz@BIw!LkrXGS1Lm8}vDx*^4<s1#s{?0XPRtL!N##&j(+>}@g
z7MYH~nVw{cm(R-(SauWQcxt)8l1&Apm0J4yjFY|?76Jowz*7GPHv;^-hVk%*GyLP>
zgns`Vcu}2jI~n8uakXILV_p4<F*|)-cS2n~aC~$L^*Sj99pr?pv6X1yRj#WSFNB(J
zs^=MBwtl}#6oW}|wlIuu$S~rUbv+j70wgW&*;+*M?{qE1ac58RY%}?_FgeaQxnjkL
zkJb4Cp}VRIg!OJ4xdJf#Kb^4NlWJ7C;e!9|h+}4~_Yz;Mf2=a6D$>sV9-<8EQui+8
z6j1;d7xZ2v^vs0qV3K~@%>XOK5V>{@U2nkqyw1s85WGOKrokOP4*O<|m&aRjE&aqO
zV~s&c0M$4_i%%T@2K4#Ky$Zfr!6l!l`5=gI=R32gxGBHVUdBf@Hg@0CB+^FbNGK(C
zP0|YhOLMm=M73b&QGlQ&#^E7rXF!@Eq!sHBY>5H^e@MWFp6*0Q6LS0a4NEm#U0<I1
z(*~l$_yf#MPZFUsgIRC<6ZCV_wSnXvie8STguFAvbklTyZnEBeIZ9vZ1D1|9hd+LX
z7t@&*^4}^4gEBUMjx|rEbt?nsK(U8k680K&IFDg~EUM>3YWHj5N#Z)(?(}p;XYLyZ
zeb0l$pEe+C<ZHP8w!B|ZcC?MXL!rU{-WT@&ZG|Zd+JzmGUkrGCe*mhz(u`pXD44SY
zV#dPZ3E3wI0Q@`uRs2hks{-sJdx86wnMn0jCdfVuvHnrhpakZLasIqS0`8Q+0{Z9a
z)!m`1hBS=5LjuYx6nA510E(^kVQ)qZAhj!P@)N(qH~B@UDb7pTs6vsZds+Cuhq$0@
z!{3dc9ej!)UU!Fr{yCcQkzsJ&0qlY&xng10O&4ERYL^0vS_OZJn1(Rb(11s@eB#C_
zB#lMPFJBC-lH+slXoMk<fvM%04ef~ZMX)&Sl{=QQ<EG4~TgjoI#w%6j4F;t`K<n-G
z7Q}d$65#)NLn1RQIn+>W%|`Al_<aIyYo#=Ug>gJ6hmt`<1mXO;U&5wB6GbHphs3y!
z(>)Q3GD;R1==^tU^}+w4AA(<G8XjL;3lZ5G=w{8G!<O)Bz=y>~vKbNxWLJaJ_oECa
zNqJ^6|B27n<+gumgQcU`A7(Vle*ZigGyNE<xb~%?>~eU`1?m2EHU#Z~*BpRfweLGj
zg>-R~-nmIFABwvV9Vs2x!4b@}?iJtK7a~9a$@+KQe*Tf(I(NMe<HXeq7E|Ww#vT*C
z>Zv#8e3+}2a`Uz4pAVaI5l)Vu5P1ihD?U~{@E(MOXNQ5k-B)BVmAe%IH36BoKkQm6
zjw9}_1B*?)WfD)BC9{+mz&kyOsp+rkS#e64lA-+_`?ywuzvG|_K`g<zS|Qly8z0Hx
zvH=bkWK=ryteg;0A%2>s*dQvBN{sC8HcEfO&4IB0AKp19zpp1A|8+v}fHIGf2jt{`
z%l4wNQ@}WN6U-55PXtx{3Z9J&I^>R9bctLg9&{0Ubfo|0+c#Vnu29AB!Koh&k41hj
z77b7Gg(mJ8ZU_}=o(#YL;nwb3*FNU{zYV@5TwDDwsQvSB;Jsgh$QSz0pHC^9bVwXj
zZ{2eIYjj_q;rmZ~T*?bgUe6se8IPv&WZ}RKC@WT7=mUQ}Q!E&i2=oBG&E^ShR?iW+
zV3C6LD!^CgechDEVkZl>v4Ez3orq~l3JQ~DDou#f3kYdP?D!C1;9i;`a<K%H>Ll`f
z7oLX9!66aqpSh;*?_PawHT*&{Z``YZe`%?Ir+y%^(3JFAii0h>6CWr0FD4C8$qKz+
zWc-JB{GYw|6&Y2?_nV1is0;(uN1Xd>7`<X4_@OAG`eq!NFL$L-57;v<<FSIKk40>4
zZ9$U%0Sa7%qVeN)C%gZ7!~(8Pj7ValcZRUa79D!duSox}Ms>$+Bsaxgy<7(S$!tLw
zcXC){<_p7r|M`HU|LV~Sj7z{s1?4t_Hfx3=qqkq7CQJwI+um*cG`~vcE)3Gw9vOzt
zV4goMfC}~MAuvq2nUx?i+-PyY;dN&OlU|Wi{Q8U<`|x~0!GVyUO*Rkx0R45$dZ!lL
zoBuG+|GghBv^f!9;d#Qyn%CF6>6;l5<lPW#y`Jmc{+ruzhW$;q?ZJ{9-^k3&ug+In
z1ja+rLd#XUNyKk2SRqjI93hr!ct8JM^k)0K#9t!!l34M609@5sH)3BIf4gGmZz82V
zNJlvI=S1;Iy`U_x@L2xWCZ-HxwSTv5+C~%d;XQ7;5t&YB$ABwe<u*G#0haF4|M=ow
zkG8To`~*C1e?(19i_wnfRD24TtEVU_mfr7?)>JD(?(o?~`#m2N8}(pb+n6xv*Av8A
zgN(d;)u)XQ>@rXf8+y;|jUNLUuJ6OTdyJfJIpG4xukw_FzH1~|hV_^0zx?lJL}`Zw
zOvvf!<sZBSu6qFgMwCmZ(8m<Xr0ng65vdJ>Z>PWWaVrX3$)<ta0`u~|QBWAaf^M$e
zc`escVX-REIcp%~EZsyOB)WP}0&I52<cA+~VuI`6Vp^*HcwB2A1SxS?he8Q;W3O_x
z+G8`sC~ZdVhG`WrT@50|_cF@po%=8CTas8!;lm!8lG2RB!)M?JKvd(&!@1GC_M&9U
z!w5qX)z#N6G9l35<0{#6S;Ia7V3pgwoa*Bx?BrAMZBqbP#jD4Y#v2|K4I9D#K{5Z9
z+R1w&i{~+1r6+q*Qm+uuE)s^c%R+IjRD!^hpm&wy`~0Q4>zP{Zw^qo)f~pQ!)dh#q
z0D{})ELgYQHBTXj-;%f0`((At$LnGDnD22TXq>+NBEGBx!3*Pd$tQg5_jVuA>KAjP
z15&zmK*eT&f7sqKYRFrL-(W6JPJiWqiK?X=KEKByRf~F8)KM1Uu&*1JYD9B^PKZoG
z1~+un@^G%!ASY*}Zdh%OezaG1x_`5HOsGq5z57Xqs?K&fjvoFi|JNAX0ka$gVUK30
zzk<+Rc<-#)FV4`^`VLIe<iOm^{;U0}WQWw-K`Wg54f8^*7@>ATunoVo_frv-h0gm`
z{?FFIi;>0x1BUhL+-EwymW}0CbYesjIIl<Q!(eD#%>KF)guDQgS+`iJsS-oh{qg>i
z1gcUgLE?732tOQ8skk`+lf8Su+S~D2SuymwZMl*Oq`UF5g(cj@miVlqq}<J?kt7Ah
z#%4W;DYVU|PQBeey!74I&?ao1(8vfl;Xi2v#MWa)cFkwt<SI0js(h{PTTaEDPgbDm
ztkgprtqC?}Iw`8IyiqgDco^+Q9o@;pR=pTc&)u#;$1*d<27aH9I)dmKqD3Om$QfNv
zezd$Ca<%L>@yr&xOHHKl<9qqYTYo&r>9{?@n0vl-wmhZ(T><qkYh;}U6TbaB^?(gR
z1te)#hv31#+|-T29l$^c9FeNl>%0a(dAXq2p-l4&*v5AsJQq_PP|t2|ZdU4m@Mp`_
zao{E;?TDwq{vW}LGhzPq(BG@mg4Hma_SZSC#0ut^%om<;FaAO^{yj9jZY1z;uWJ1_
zd{^Si>ra5&C5?uyU4&IevT!3i$9^l=x4a?$6>pB3mT;bwVRRp1<h_x^ZgKLdStnqm
z%ngEMkX~v*sxOfnP*Ldcchm2V2=wCL(e;Pf+6u@^EHN5@S1?|wP{?(OL9@h>=}R9J
z3~_bO|G0F&IYdouG@zxgDd~S?pz!;zdz&@CWs;YTAD75v*3)U*lu4$I2oC<tM$t;#
zuLYjxTUkkq!Jwz}5UY^Eerbo@3Jd*apVW$z6Qk!Z27hF5x~H$?_@05oYYE*{RAT(t
zz(ED#$)9H<u=n{88gWPookw=}_66~BUDrT@jUtLS4jVEj3^9<FkcfLpd(K)TZ8aVn
zX0C3BRt;J#^>4$&c!E;LC#@e0VfPJy5#w~90OF3;Rr7g2O73;D0;&DbQsp8-LL7G8
z7~nF&zv%cce5NNt50XPY)w(@NBez5Yrbk8u>rE$rjU>l$0XslPlNpOJ+05|cF3Y-M
zT8)-@9(PBUlH=eQ5tYs7^$w&mk6MiFAh@fgN*TTOLUm5+fszAHT2JArv6=QAfWEbV
zihq(;lxW&`Yj@D>AZp!$_$tqli7_f4Mvx~6!QKu~x(z7y4#$lp`{bkYn&E*64Y2&$
zGJXjCx5QY#3Y%$m)?Q4a*N_D#8Jltq$GExB=&DT&hp7--9Pu*J4g09?a^~m1;14#w
zqsm^Rp3{b7D-pu=IOfj3RD)mZ94|hpd~Wn^;c`5XY+RX6XS1?D|J_WjM8DS#7Qm;}
zZmN8qxm&mE{_)9owGMc)T%CjGMK9b%9J&cLy(VSupvM~;{feRDmlo(2y5%2W3^?&J
zhPn4LA};20VzPBNXY>XA@$%+(M5(e|gL103DOKuZH;u-Pm=%Z{jON0(*V}xS%z0<w
z2fgFVW_Mulmmms7I$OHq)&~j_yVsne8V$X9aMdhc1X~p(&OY|OT=zGWflRK?Q(Fv?
zjrJoApRcuNfjtJYX^jZk(VO;tA$QX2R7d>*{~!EJSyOh=1*pot_~0VIh_!}0C@^Eu
zZUxRTg*&EMu3ON&POa<{){*wh7t5yQ54eI!-V1P<LC}cGeO?QtN*Mi#i|Vzvy@d$I
ztviA6*Kd#8Gzq?-_@rD8Y%%&Sd?J1yjxO&@Nayn{0%U=12s>XM0LN0CxavF)lhp;y
z3i~0Z^W_#|=Sz2>5#4%zG8^`9TcXIVL$m!Od{2X(kt?P9$d?;s1scNERtitvyYF*U
z<uaHILy|ZNWY9N*MoEm=O!W2bzbLUn8WbH6a-Qh$D)Hm8mtBXDrMS#hi&#56_*t#}
za9!nyLh-A*u{ii|`Th_vL1kIuT!Z4?VgmnTz~DE3Z^-o3-;B-nau)JxQeH&Xn$_r$
zp$`z}2W1zH?;3{whmvE%78~JAHSJcbc#Yj!9)kuoYJ1xU1-)r)C;5v6T*5vWC5tw0
z+Nz5vnq0VFt~D+S3*PRUCVrP&06C<6Qu^HX)$jFYSfj;04{R~lU_F*WgYO0TD2K(6
zl~`=WygV!bu2#KZ1H<ue(ufoeGbp6RcaF>n32E>e1mQHwpKZf1`LlWAPlZ%<P(|A>
zV4oa4F2r=A!Rm(=uuAdR5p~3ug2i*k>}ITc`3PTkYH6yzMT&>1ziu#Mk>fx1ddax%
z`T<|<#Rq$K4LUGxxin8l#u8Ww1U%P7{=1F$MUF_Sbz1A@lqezx&x9F`@t*bAKAj#$
z?JwH-iB|lwo6Y^8mQ8yhbsUQ6O&x4E7{Kb!LcSk*v_lZ7&ma;h`lWxpWye!{F+N<A
z|HmnnC!fJO?|LN4FTmTc)poN@q=b(*q390ywHZeo3#MGTDDvzn8JXv*<4&GduLI`_
zJlC-cv<J_|@f7?8{TB}QtnW7_`e4c)r#j~NI)*Rc9GRG-BV1h)j=K8p<oMA0f{6<q
z6&3C&#=fK6kVnbYcF9zUsR<d*Eg218k}b~AyEBM#Oa-}6h`RxhO?!bH<<NU&n9A!a
zirH&t=d2Wi(71RRsO8oXEuXYPIWpe+{<iC$_(*d1d9dYwW`TP9f<ilwbH%@i1hDfW
z>|M#PS=Sv|eI@(j<wb7m_o{SXniIAK=oWl~(?jsMVB>u`Sub5_L#MY=CDLuz3B$?o
z9>+ndLE+4Mcf&0vRU!2KyJ}_$C9ioeaYWdCJ4Um3odjMQ!;_gj>0FuVmjBnonLj0g
zKyln`Q?UaT#Us41P1h@r#3Rr=5;XFtEv*c&Y2A%2M<C1-Cj$gEu`mNunaoXEO*cBl
z15FK63>RdxmdW+Nbf-Mf3=?IY9qs)AZ{Bz2JMZ)6`@>tT;4w261cS9Jk2L2$N;UH<
zv);+?&!Tf?A|a>{UwQooHUcR*&DQ*!w|a{WLOo#X0n69JR<-Wjg6VpS_za>Yj>8Hk
zjz#Zpn+BMVEZBjEKGB08xOSyHaq?{JWdbJ0|DkqShI+QC1Q1FQ*kkCS<dCOtQ_kX_
zNPIA{PQLsMG5)i@k9p6T33$@GuVzVqJ@xQx!~iniz7;xeE=x!#9lip`oSV?3i3gvR
z&dsM?KuaQ-Sv%t%y*p%uShmbrSxQqX9ypg%mVIDVZ$OG$BHAptuES^<H~fj#;#J$D
zp8YQGoNJh=Dk>@p6%%vfbXJxyC=cdNcCAU0HNkk;BEp6@NwhdUa5miY7mOhoyGwA@
zVqSJDoRB$Q!?>@oy*q;dp7FeR?bmAi5+8+9L&lq7vM4UW87gnIb>Oxm2QVz}a9;Pz
zhPXS0>hU%HF_LzQ6}0g{sD#CykFUdde`FL2oSfZ|<knNR@eCrp^d{HvcK<+b3&U?>
zQl%c=hK+&g(?RhiCh#r0&sH9cG>}$NF@Lj{;_Eitvi{Z9#Q1BeEqFYv<MvgwUlhuy
zy%pjoa6<TkFg*J}t^l8H6pFPI2oSB+*S1bOBa3w)^NFld`nLwB{?HbEn`}M45UH?~
zq5GSsg1LcDy3(tdl*(qt?z$o_FBn<%**|r!{xh<Q##ooNK`~8YGx2+wOg1!j?SmP#
z@AT6P*1`G)qQHuLEy7s6`-#Io^#2*e|M-Rg{Q3(oRUjupZ%&V<ZV=sOz%fyyyK7Ie
zu#we+d`MEIg`YG%qFCJB-Jv4Vq?_>Ap8{<DY1lG^ZYOF!tSQ@+aX0XI>*9=6Vnr_8
zf9M{CoS{|^B~;@v#FM5!2z0!#U>ld`Hf4~aoltvF<#Pnoan-|-J2%<n>8_pC&|3yC
z?r9c>P0iZ+rhNXAaW-Uc34TY==x5R88@v=>zDQ`^0zeAWCED#x;(>?V7WWO+g#OW$
zWHx8XOLv`xtDSLiCeFCHh_2%lYj@hA_KM2hxq6haHi?$UPe<+vK@?<`kwz~8u4hmg
zJng0awp@-*AM$SkKCiQsDq>=BkUkw?coJuY?ARe!`j1{w4UQBtj<DzfZk(pHLIs5?
zDhqtp%SF8gl1(GE7Vd_2;KjQ90a1=s0fwRRFi|FZ0oBE3#`pZqOt;2ioJOg!Zfh{~
z3kL;)<fRgqM3XunL$<t<npW}IDKF6e1wn<{a$9R=K<f$+@`_2tPx>7NNmh-v^?T(L
zEz{F`gD*qdRh2zndD$hs$#pk*`h>%+$S@@&b-NrJ?AqWUC47jxwKos+cse${+YR`m
zov}e0M~r%3VqV~o00gjg6S`dlHaEQC1leJP!)!yVN&MGxmi4g!#8|?Mps8pR%SlAC
zw}iPcwA#7Ka3f3fjKBKy`<n%QY0e&O({^1&4U~#pa{%G82ytKT6<&=)9@Z(dOw@@x
zxP(jO#8!iKedjg2{M6qh5_xFi1DFcdYcx?2z<zE%MoYcfwjS;z_caP}P|-q)*0G{P
zTdyqW+Ad>3A!+Acf|$@7SQ>GkZ%v{}9A&Cp$2?5f_g)b})9#)##63F61<PZ8r||W<
t9HZeU<f&thNA3D{j$dv`;<V!|)_~xpT&m=FZjau2MIDNXXbi*U{|BDAosa+k

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI.png
new file mode 100644
index 0000000000000000000000000000000000000000..c8792c45c75206afbaf0e6153ba8b70fb2383b5e
GIT binary patch
literal 113690
zcmYgX1z20lwr&qClw!q-OVQ%R9a@SMx8m+D!68UnoZ#*$?(Ul6?oNQ<!JXjndV0>i
z@8;Y2GHWuj*X-GA&HvAuP$dN^jMv1kpFMkqA^k;M<=L~pHlICv-u?>tcMenw+v@kv
zb7vJPv1jF@q`SX`7Z#u7KRtU^6@_+h^zyfi>i9*=`PnlZm%qQySIj9qo;`cYlNSH<
z)kFVa`K2MA6v?->tD{&D$qV;}Rh4uxfV+DEU+u@Nm%fGX^6=dMd@yimP^ClQ7vSZV
zkCln_wO`=hhYm-Z{Wy7BN*G{pi+%Ww^Bao~XWHtg6Z6Edyldshg$bqyh`M($Z^S`V
z^Ao;9dJ1IsN_}v@`9bykl)P=k+-r*Np>5{WU0v_K615=B@j3}=Aa(v0_n!0o0=Uvx
zN_>}IjEZQ-xhQq>^|Xp#DLd_=`9gq$&N$z!WsuS=@4W{yxu#}QJigqh_k2iB&}z78
zGlFemINue#rE0ghyGURIPEw4-sNI7Mwy({%bWZDK&)3iB(~~U74%Vk^RXs%lueX!#
z{M0(L^zlWH$NDb4f$cqw5^RHyH{PDM>r*R2%X6NdUiF?p5epta>-52IY*DL<GL7M<
z!FxI*0d1mNd^7Wy#%UJR)x1mw*?MGklhWwPl}U3ouC)<5cHtBWdt09p6!xycK1^L!
zJs;k>uB-<~P_VX(1}-vd+nyu5PM6oOXmy_Ix6~mszP3}f%83)RdRD$x)?+HRP}qto
zKCJ#JTgw|tGVMF_Hc#)KfZp}evMR)(Y%;flDp7SezqVuwf1^5TlqY#ouhuHzMy;=~
zmZ57QE#Z`DN+n2**x-w5>deZtOPQvmnU{>at4O?`jG~O6@vXJrU~A~n-gW#7XyMmA
zM})mhc5G>Q-)xl6?O@~jT@}`OtJXvHrHRc~2EBwWV7=U)fll+}eW$xO=qJyj;Cp}T
z!+j;PB+W<*&Rj$`bCl1=4xZ9Uh$h7#<Qh=yFATPj@Q!Q7IM^NhpdN43)6UoqE?`&>
zuDo<0X|R*DgHrmEhP<=e*OH!CXi&V*-I&5Z9T`=KJm7aBAGtc8)kdi+EOLvdk&gZQ
z+J&8O1msz6ggd+^O8QS81-``x>?dI4zq0fbN1k;!dOz*IRfLuIx@=~&w;XnNQXI2Q
zh7mmPj$+$B{b^4+HW#w4m=KLc>YBEd=5Nb#1vNn>54+se4G}hxjr&gzib^v5FqL1_
zNE$~wH%4K?l<o{6JZ^z3gzlpj|0$L0UZ~gNR`I}PGaKFpyjr}wb!XOX9ACL8wwlUc
zNPDE&2fu%J{Afbj(0j*TekV!Cf{z+n!|rxY%GHi<Cp;gRsnfGW_K4u&YxBaf_<X?9
z&F+0o+BsTkc=R2JsD*7rMYV^w-RPmNK@|=ynRra6BqJIxP_R-`ppVY4XCH$Ifp_4l
zpVE>+6xZj9RZR^hn9lAf^Uz1S4O(JuYnhU_@<cWFxx%N*=LX{e99>xRP+J7cQ$l^2
z&QvYH#J)$=<D8r0mahmVigl~(LkEX?HQX(xJ<J@w|9c=OVHO-I$^6dSOcb<ynH*+e
zZ54jOv8ert!YyrwO`*8-IQaNx4tH@}4rI~6YsCDKv7*5oE}ziQubM+^ow|1!zn6!V
z5eQO1Xlm^_f2|<r0NwIn)2j7}zed8BJ&1S-=t*52IIVcS<2;~gFzhZ`x0R6r=BjrD
zEP8{5Ux@`+Jq?eqizyWOot#D#8|R@<=<dhejr<Qq+MkLa<LJ+wuVxYTkfYs!s%yHZ
z&^%cJcK1iB*Yuum%i0sPE>$Y`Lff{m_?kV|56#g^H%5pBQZt>mD=i0fIc$7F>Ixvt
zRSr0p(2kDNv8BnA$g4WuyAr7K-*Y4vqFCZ{&ON`du&{D*+~l=2i1w)oC!8cg((CHT
zPVvS$-lDWsExyXJM_#4i)coTJ1q1l$FDZva_~~*SUQyieiqv0=D)C%pv`TjT@?TaW
zg*17^>;&1}1xAoDe@#rGuwl7}H@H<^O`6?uS$~9CL1%pN5^eU23?QgznB-kU5)O)i
zO`l1oa;0(KlGnaW#O-@1_GQXjp{6fYO8cS6VsY8S_exZ3BPha>!!#)MF<dfuWzCcS
z;NT;ZY?^6JL&^^AcAheLz#2N*gyiY*fLGQI&Z#$m@hJ~$Ak{B@C^|fckH8PM8K%o%
zA<%l7nZ`^EtBFTHA;4u%$769}Qm`JMpUA!irtxh1o%J2(rxK6YHTt0VR~GV>ECaWz
zgf<GohEA}2F55{t=CYANX|z|3b)k|N#AjXW)QD+#SOSIYN!$&B=l!MUOP$Xr`oy5i
z`P>0Vot9`vts_R%D|b%gK5Ad9xyZKXmBy!?1lw0zc3I}f`eFGQdV1`IY%Na4UlT0V
zg>fQ`DiolIa>g%715yv_;rk28`6JK}9|w^%Hi>!FwYe<OMHra2b*nvbzAue)$S+H4
zX!hb@Ims8oqI!2z2c#zEweK{#qY{GA)f>?3H<0~fBI19xdW7PX>enF0Eyz{qw;kv`
z{<Y<r2OH5fdZ6yHF0FlQbJl<Rpa{`~P}IyWwm%u!RC#HX(sv#Tx0*`K3C+UFHOsKx
za@Ata+tu+5$1M_5Pu^|H+6%vHr(m%&D?5YImUwEgG2Jrmec0H))0Rrd!MHNl9)POK
z18cp0CdfrhZ<FVFmradHmW&9W8|&d1*F9>|CAiupf8pc*$}Ejq2OTpz*BS#Ia~(;{
zAZ*}c#jr6#Of6Xr3Nwc)t7y8S%l7MX1IoP1%veXukh*?e!FalT0)uH~h>1dY)wV7B
zXFJwZ_PE=Jln@#}p?ogAy4d<3sk1^+Ij$)JI3;zpJ0gdvmVBa!1S2$%{W*DI1RJ3i
zcZ+L_G*_~_c8x~e7(4~l_y$KSLdJR6vqZ!Po4ZNjb*X$W2%jaq?AYkRE!gg%FdU^U
zw7Q|Xf#yx^@LtSfrmtVq47)pLUDdcvqM30U*DQwOw4}}V7w30p^~o%gpXXewW=V4*
zS5p)MtF_sR<fBSOq=!O}Gt?{Q<OQ8&E}?9J1-HvoNu%wU8>P>K>oo^7rR5ut%c{+b
zMLK6~uXygX1HqU@4~+S<iY8=UABTb6p8G|wbhNj{7p9K`hOW=t(n}A%{{0ePP*izc
zTHEAEMwFIm*LiKJmZ-A;4W1%r%XFY=`j^1vM=K`v(n??T>9-D#WUvT*!x_d;H^)T0
zyzw$Om>;qaZPmfH9la(m-^ci(BBhm^_nyINlTc@D76P<3csX6GMKeT$%M+$*E&!x9
zVAK4cJNA?O8`<uZqlQ^)4%9P7#C5jA6DD&D_gydYS%^yVX-gisn~dX|TNJfi^Ux2^
z=NTizmutg~d^FBSrYn*guHR0<g^eCVHcPSmeazYJ#YGR%V0lW*_2L%8Ihg0b%vEv5
zqw34rOj!HT=i?M9{u=AdMfn?4F?P@Sid?tGPsb}h9!~pog6KcT5;7gcO)<1?hEKDv
zBi9TKS%`DhCk+k3D%N>FcPofy`85Qzb1N^C#vA1|G(~>0`P{L=2kC$e)e|2FRzLuy
z)QpEhB9bqSmeZC_98GCuE)e*WuhC_?nsv=!2a@7YNnSIW7rOa{f=;Mt(cYBMcB=qu
zuq|p*4`P}$XF{&D?W~nY=l*`h*G%XBY*|28*PygK+wm$a4|pEQRV*4G-6yCu+sZ_3
zz-y=Ty8K86^@f_2&&SFj*h}SYN%u1_)6yF|6Jji*^=e<4V2c%N1LtbRwI#xK)VtVs
zwB4;Fa`)r4q|422@cakqOw6&w3Gf4(U0-st#n#!MXFpJ)*TN&4$ZRy4&R^j@TdHMp
zybrON%#~ikdbQfW)@3>t)0KHUXDQK`U-$SaFTp`le{(*E)tj?~NLA1!$7d^Jn13Fm
zENip6oANVLQcMDQ)ywTepD<^%LT%#XElGY7qjYK_Y`&TP4T%Zp8XcJ$6H~xDw$bTO
z!8`BzPFEd1h8A%XmYVJ1WlbSH8QRaF!$i({+;Li9&vkso;=I_<omF{A@88k#7hje2
zTm0pv#+-a1_)kB5>LsUj6xM5ouEw0PRIqYR@5z4nNVi@J(_|*BKZz?8&9(g@)WDCd
zi@PM@%nRGMk0?_O{K3X$y#fupW6ln>bEc(1+1jMlS99aMn82-Lzd6pin<zi>Hqby)
z-dwMN>tgxcc1KT4<q7-}!q%5^f(KI{!KJd34!AS;#jC0fOrzorbVcK{a{wi=>Nv5k
zD0Ld9QFka#1GI*JKVRjC$cTs@z1_kOePa%b8ub#@%tYNM709JAiWx)@Lt<Ht`Qm4J
z{bxZ|Q0<qr?mK~gg*d*VS5wohwTFU97z#H<7fxo64GVMAc1SlR!)pU>IvMBhX3!?g
zMp)_ONEJnR@3g(^!}S9owPdakRX_PZ{@5=vZmJ~E_joFIATAUH%CU$dx4uglN_tXP
zDxa_%_vW<;bk$7rLgd0(bwRn0N$~!Z9t?UZmNhDS9>R<hKoljTdK5XXflGhKAUk}a
z?JJA6&nK`DaeWfB`=+WsO+>i6yB%VgXQ6Nch9&bvLCoy7mA?wkeSh$mEw*AgLYP1O
zOuwcZ`R#Er0Isjir_(=_D)In)_AQGMS`rCtXH`#M2n(WERQm4B7%<v>#0b^<f^Ch7
zVJmf$R3q|(c~(-R0>0^3PKL+EI-xBi?CD&WyVEs1K~j&pGf5^_LOO5!c9Mu|S7H*!
z;tYOOEIN5jD+YiKh*)*`-Zvx1@ef&iE&3WWbVa&Q<wi=>M%s8g9e~qr{$`{>;=F31
ztcZsyWc%`U*eOQA+B+s6w15yJGzehcLoI_F9aN{%zk*pX?(q<QsqMo>BsEzkD{Wt@
z(?{SOb*jd0pndI$t^SjrNNB`%$s;PQfp;+&bQK_!@;a`-34dul8`W)OY!Dz^n9711
z%A`iUv+27Rz9d<IBRzcsK}=Q)X-|UEMGY+aRwB4Ya^c>UpAH|J?Ens+Oj1|&^6iH_
zA~-!J4i{BrM0CFRC%Z+?Dd?o=)1CULdQ<4lMwt5_E7g0v=t;BBm-i$X471ZQRHcD@
z1=K|CH;FFJwWB{}a+K737@W-9)*4yWNIG^lpczWKv(yzqHR-eKw#HB?@at*Ej0`!{
zq+W9qqO9LI$DsbRc7=3zbbM!n+^ev>_fAoXGeR6JAnN^A!ihLNh{+XTB0dKUV`hWt
zDQUd=%wN4pKKC+vIDaH}7;2|~A;Mn0@$o~)JIVMT<D@CN?^Wl6TUJ&sm=Q)>+9DE(
z8xR$1WjD;n+jU$!>%76y)^AK63s6xr&sfuK-ElB%;GZRii0SV(?>7oczp`c|C%VRR
z9utW2jEs)WHr)^j@(H>Y(;&6o6FtEUBSEVjT^e9f!n5mlS%_^#^>F|rd|39JJNN+g
z@7Yfy4aO|FRBSCecMZ#ne|`h$sM<8NXS1?*0NO)#8Fmjxz@;>S3r@St4>B}$^k4qe
z@ey#*UWTFdgK{gEnd$#-<o7iRwy4s6)c?r(9~nlC<n(Xa%OO4qF8fcp*ozfQZepUi
zf5pkW>|H_Mc2~z5Msab-ZKdn(vJ$z)#^GT^OG}He#J_do;n8d=2H+^kn}XJQRo};n
zs6Tzi(zFe$8%T7ARiIIB!I!=N&D?d3S5j7|{1?#WUUeHMj=lS@B$<;CCHyY{%)OGz
zNqFA$pT<P12gClGR`*mb_>Uk}jrrd~8XW)M@)zXI|7b-%@J;vM^a{aEzQTW0kJ?mK
z|Id91$I|{!d7S?a55)Ap!*&cRt)}|7?s3fjq?6G5pSslL$YkPzFbah&6NR^?0Dfb5
z#aQWf4tH3UlAOLuOudKg4vNu#_qJ>D4(SYQ{^+G>EOi-jL@$CtxdoR5OSjtn0cc)3
zs^~vz(&Q}qjk1fH_%_VS^w{Y5_W6gUpN0Yj7DMIU)rqBD+d5eYa$nd6F4F>^mH(np
zd1^3W`>W^H(3Ur!uP(~jhM_~?3p3vi<KsI6qX@HwTu)~HoB7NW!P1z6rP>&0ckm+a
zAHBW6rXL@_YcIA4ZE2%ZIS*Np3c3FH9PAz=e9JsTa@A*f3}*wi4UajGeK4FM!z2^v
z?odV|s`8;gN%Ao}UPJm>g@bLJ?;T~8F5sMMBBi0a(3(`7B4X0wSK3y<>pb4_EiG<w
z>7qf{R+KB)^!NR(c52vMRUQ9&9+}D4Rlm?SJ&m2F;CQxUgn0n#TVxn{TK1RC>FL4H
zy%Yd;9)DQM@~zvuZ#^m&{)6Fjulg8`k%?mc9LbNLGJ8$jCvA?*X8mB_*Kg2NN-ed_
z?FBnKwnTFtS|lnKrG(xXY!w3+76Z|5WR-;!wSiESk2xLI6VZ%PMrZI5sWqxPBKK>K
zrlwIW=PM}CORzl!O{HB^f%M?;Sgg4<@V#303yIg;c`h-w*4mk|FBz0_-_yz@QaMDr
z6Ffqk74&JG0CdXP;)oZ2=EMp?gnG~hMXp*-{x=~0;~Yne@K)1$k5iUvz4o<Qd$Hb;
z7Jld+i<c8``|5Q!AJ;%Nr(c(xh+?T~O98_SSW2dWzE2vi7D+gvsq8@FHeRpv)@?Mz
zWVuR)qIlUE(l;S;)Vh@#yQ23wYDUI2gm2GuQpx;6Stm+t=@KLNVzzRxe$p*2J+y5{
z$Q&aMnM*bJxNbdY5th)S%CKfwF}s!!pkISkybI~G<(f~!8+gBpTHtV7Vh7-LSDIm~
zvGZP^I)^h<l+iiai;;2drb3~={GNo0EqwL2a#zNfBzg<Dh#PK=cX2!_gH2Ziwlkj|
zNR@Qc4|&nL(2$@)!mSDByBT2llB0&2(0X^BWeDFWEwIv92F1ntDxA56=+ku*H=eB7
zK18>{0DLK$rNx*o<7&FnjX*qdyO3LzBvNbJ!Uk*N0v<Sl+3t=?cgiCCuX)#hZGD*N
zk@2UoYQ)DK>NeN1U0zO|&j%cHA<3Hg@W^Go^?y~#NcLwo-}Y%H;5h9foyX_Ee@H9m
zF;gMDh0l?!6Z=Ql=ym5kHfj1W%kjR$`0fYmB~hE+eCPSDLG-~(I0JsTwfP-iQ!y%c
z!99%<V5DA7@jYk9Za(!hDZfW_JHAgyL}aIFt%QLE+*`V77RK&~;892y_!aF{<bn6{
zEp{$LU3xs>f~7i8%}OGgfc}Rvbet-w0AxDq?%$ML$lQWOww;!m($ri^(v;=~Ki`G&
zd7k0f<hvTnKx5HY3gc%Wp~&<aSU^s3Fxl9W<Bn1Vl{gut^!Do|dDyou_-M7o6k+0H
z1seELs~Ax-YApnk79Xi6!d&2vMbFb&Gq^^<Bo!Www9`4|Z~DFoc7KbjIZz9-b|@~Z
z33_8$E`GS=claTckJtZe50i<lKt@i1Lbdytt-YMRtiKU-`baybCQOhoqAFO$@#3CA
zvhKsgduI-rdUENZA}PLlz>5}oL>5f!&IgH@DF_Lq31AYGQphwKV0%begdiU#!SKi~
z5x%x)z9$!|w@(}yNOw_y+XIm>?RwQ_Io!@3fs866)^;k*iWLVsdW8@l!zW8!eyKIN
zm-DH)?7^ey>*HAwxe%VzA9a!?8-JL%U9b`M^QP^R(DO3?G<8~zZSEf6q@Yoi<_QAP
zJ2Enoc?QfJ|KRFH&Xqd!-C%EVO5ept-miK#rMLV<X|T7iL|JE|QN#QqtKi}?Gm36b
z@xado94l>?G3Pe&<&b)&GLw|;uQ9U5W;MeJT&B9iy0`faUljU6jw{QpMl6WkjUfxe
z3lvOH0UUW$0$wLJbW<5U2kZPf+}kZ>#1&Jv8~5`3m%-MV6sHN9<%@=aqm+nr7`c%e
z<S%P?2{IInU0$Khxxs-$hRS@O=K^GGW6L$vRWk^MUoN;1yoJy&2BD0BQ-+wBhP`K(
zxn&RBk0nyo*(UnL_A;MO9x!O?v2a>VD5V+YHp00H;nH;jkN!-v-z3t(N+2Oopi!G>
zl*rA+{oXjzerOVsJoTaT?n0(7mpczaP1QPdb=GRpD$%vSpdKQ9y?g3`ztgcu$;9n*
z7}_~T8&}hO;2nusVW{{$*m#Mk7);sUoFt6&TGd&az4UQo+CC9DG?8c59~-Pryr7}l
zP)dwByYOoldxmh154-L7qTAaeq%3DVrx1<F#oxox@lArN4g00wNF;eh3JhicbVMc2
z%)K=JyiMK<Zu>RWDXggMVS2O$!uYA}f%X-@fQp?)VA-dQset7mLJ<uo$3Jel&H1yR
z9*u0js1Ro3F1l_TaAf7Nc)tKE6k>LB;JL=$n2=w5z38`{Nf<a^s^FE5^Oe`p$^BVI
z+1t7q!>=W7ttvfY^x3RK?;=AzcfMYEeu!Xrdp=ahgOm6X(rsL|zMcNFIMhfKW%xtA
zOqj*YyLiQnlmbtj-KSES-l1A!b}@<@=hJ&4)|Va}PTQ<UA%?pCDXs-<aqK#I79EXL
zfVDx7Q1p@S`>WSZfq*in8k1-H<yw}@Sw$>|FC#DZXTP<ySO7+7v>ys8Bja64PVYLd
z(_U5%iKd&tG`x*cRMjayle#Ns;^$O_C8SO-&$bx4xP0Ajf*wn#HF<=MWPAE1YcsR0
zOzKd@Q7HbvGJaztp=EHIEyh}X0#}G1jSVs#tW}-alrF`hb9JnG=;7fIF2OW4-A_RY
zASb!(Y_;~@3$d?yAyj+$X9+slQh+_@Nfhnp*!uod>-CR0d)%z8{aqIs#~Y^rTNQA7
zHYjSaR9$@dG92ey8-5uMj<r4^!pwMDlVz-+;)Men$_}akNK=DpTVD2<h-A7T`Tz!j
zJ@Wsmy6lopuJ9O@k;@H2{+t;4i0OQ?`d7QX&g{xaxIa#=Htuwqa<Y6js2bC@j7=#?
z%D;L$oa*zLfL04Sz0ELfB6;grwvkD{W)@Q(m|*8gTD!Cg^Xq|NMjU-qTjj8nLYY{T
z&ungK&I_hN#=l(5cyP;G2xd2I3PEO`?Z329Xj36Ff#JTjgg{VOhM(bCYTJSKHIh9m
zc5=e=Ze%Vf({CF*p@p8yI3M>Jt_WCNXeHlVU3>T{V|@G%o^&5&+>iE4-oxBs$nIUf
zAaWkgJX`v1LLd#U2)A79T?xRxoAR+GFfe-^s>EjW@>ulqi`r;VI+gc|=Y2Vg{Mu@e
z|1Fm=ZOBwnUVTR&IBC_UjGfRp;nz~;35Wdiuu$~wHA9C>1{zw~#9BX@Xd3kr<cSK4
zo;SEw4hmlsBRct;T#b;vBk+3Sa!5jGUV<(D@@Fvm#h@8ql$&eM%7T`(=nzng*6x<^
zlX5F^-qw4DirqiW-E=-||AO=~qAVCf^OAN-Yr#!8^{<z&A(g{guJ+d3yMf8qELLQ=
z>PPG~kNv1B+hw$~AzBzKb(mg_m7!gVxX!y1ZtaKA*ycJJ)q2ghwUSjn30BtW(&f&b
z6AL{&#8vXLn_oWt@=x2m8d40kIM+_^%#>#DzM}hkT{9_Ifafy!?H(z<@S}tI)%%Xt
zcCd2c16C=lDguK<LurH!BhMO>PG`iyQk}3kpLO_tL~y<tK&&;TMh|EzcX_{qTm>-X
zDB?x!u6fVPlX{R<G4lh*3!?Oc^|r6@MV|ETEGxE6v%1AawY=?0ZT#L#5x5~b-){W6
zHj8T*e0y)uS5B`jO>N3I*RZZvh<pD)FiuTwG2kXJTaSRQjI2B6IaUAu35HICy~$Ai
z?sWgpEXS6f3O~{;jwq^cTtyPi6~%(a!~;LvVhb#RJjc+!;u|Ds{Y#BOjLh$6wyAvn
z)vbdnVag0d7{JT$<K8HLf0%0HDdnvFLPs+Z*_YTu=kngg?QHYDEWTyfuo~FBcH~a*
z(g~+>QFhPZQ7!9feSt=QE-n|$Yj&7FVhd{u6X8~kd4H@?595uO6T9b84lz?-#EFzj
zagFoQ+q+=Z#2htl?pHcks!4Guh8s<=B=gnh><|a4oH%fWiKc|D4&XNX@_)B$ajUZR
z)|fPR_#Dt9(Zu%k%cl;P3AqQW!uhvp3$5qGYV_qlb$5_;C-F>nZ!c}3?J-pkgFnaA
zQh|e%f6VFwr+DMvP~+=94B_bVU@F8Gk*D5cU2D1cHi@Hb!QC-?XK(n&auU%z2Pc`e
zdY1aK$n^|KZxaTt_zu&KkmHxM*KI7fDoq{*oq~Z;i?%a-ac?PfaczBgVbi&_a~4M&
z8;n!Un;U(SGnVuAlz9R^eHIEb2bO3`X>yArJH7lnT32YuER9{2Ma~0YCe%o43znkE
z{I0pK$7!q<bZ!WIb~_>0yE0&pyI8qF-+&6ux2H3ZY{r_VVlswNPn$iHcS(LnKcvJR
zOLcUEQEezb%dUan<;m)u;A6pbu7>(2oG*4IHfuk*3aXavcC~9cpZ96R?LTs)Y7~i=
zIq;5KJ$k>+t$MjRATwLwNJVxD^cy%|T!tuatbR}H?{93yg9uubMLiYy*M4zN%8#&C
z$}>j76#r^^Gzy+h)4W_^_!83zovjhur>Y+UZJbIobXquA)GZW??-5N_ZZuRB>ee$(
zk(--#?e<Zb&<TXu52&=nc54M(u+s9?+R<FqBl1=92GLuhlewYhar9{ww=QH`1VIxz
zbK@Ty{09?C&X%trp^hTLf)2XIa$U79)@mTe1RD;!G!ju}P01fEsQ;{MQThu?@6jHY
zRMkbqA9E*64ad!xG7NmUZs}>)he=hoDEgbDQM~PkAl@IQ3rd#`LvO~<3rhbG0v7<1
zvwdSNG1fNgr-PMgTlR2n8@EdLed4`qvo+trM6TOze?U*SuU!bk!j?Z;FaFy&Y+2oV
zDEObA@!pGu4}H`1lDJ)>eI-;EetXHJTyG?sEsL=|d)egujeV~L-!obI&im%{E)fxc
z1qyc1R-si?>iNSC<VIzxbZDw;-4J-+tNn|#bNxD3+5ZR2^A4KinEemLR{MY0{@DNj
zFg(f>^}i@zsyg7maGs4Q`af(1kOt{Y@kijQ)YU6*94iMuzfOPhlU3!A<UhpFZ`^Iy
z|J#h2ptg;U`M2k4ROq`LFD8r{U~GOZY}-f^H~8rhR%^;28d4y%-a;2aC<2JO-7bLa
zT~8Y9%+~M<16>M$SnL!Tz1Zf*2w?M;tVA&$exsekzvP847`<Qg!*(=D_$`0~BCkC>
z;M|w|+n(ad#YeJyf~ann&aBb2r>Cb+Xl6Hhp5nMuNWQ;%b#F$m{@B|MFwttc;*&y@
zo9)$RUMCzOf<HCsr(jFbyVR@yLpbcZTm6RWSrdDt)2jlqQ%?ZPCjjQd<j30Ot%f{;
zo`%3CSY6h~qovJJy%2jyX-_G7?o@F{gQST>h5V;5^wI8~my6ASj7+nzI6(sur_BqK
z$w}^MwgfO6{h@M8@3O995owCm)v{NeaOO&n*3Hl`wG^K(f_O$%?AIyT3-OM&OPK0-
z1tBLUN|^7xm2&B`1mLhr@Dw93UeW}uzs#L*zLKiR>26IUn_P!=KJ51Mn0=Oh)6(Wh
zQqqBzh{ZynA-CQitMnUyGX6G73B4W45ABW{S+^O&Iasm~W`+G@cyzrt?jD|EcXx%g
zYWtP7ql+qUu4E2=8dv<tzCxw%mD##+d7Nxo0-&#}aI*3x3+Rr+2Ktiuxkd7l>noXv
zbLw+Rr`19E*SriR3UCQx(uBq(7Z3=m+r8R0*U7&UO3&wd`bq<7L)@6AB`V!~Kg(wD
zS-py98B%Ds2DEhdX15g$hCwQhNRIeAp!eNy>gD~Jnvt60+xEQ~f5w+o3ylxy9RJW$
zlYWsif2$Fza=5WLjG+28J8pdTJeHSuqyoP*T+{2T__m$q`ToZsc|ECw_)3czadL41
zkrJxx`<<-#$`+s(z-U>VRV!;Wc`KZBKFPuSV6A)DfoQy>dB=pJCTiK_aq@F?9ZQCD
zb4iydoKgf3KVjW{zq!prKCI1y<q%^%u{R?^N*2E?6|9|jWIFV*kW}wgOLM>iulRWa
zMy&%ZGoc`1^??TJ{vt~QSrn4WDq2>cI|n0NDGvC56;yuytwXeQce(VCiz#$e*cMus
z1eCq~!Gm0*60u}leHqX*%gU1#0yU7$nWgytH8kPFBHidSiN%K~=Iooh#1YK{hpf*}
zNA;0xN|HzYZ07{AqIn$TXvjG@U;P(s(@;>_(ysR(7jM^3r$)7b&rqUBx4T2*Y@yYW
z>per&cL(f=k4tZ(Ru89{Rb$USs~11W{NuXd{RBup9;I(NC)RbqLW1~%30Yzblh#_?
z&803S83g4c1x~@f7q-d?c2PfF{Eu=SL2ALF5u9O_3qNppqyj{HDkL?k!?sabh9<W5
zzh7ACM9LVjA~*cy;t-qktK=?}XS+ZH>OF|3Z^+Xf0+GDm<Jsy*n0dUBfXDJ{`C&Pk
z4*W!LI%pCgUmbx|-q>>x&TxG$y~f230wxC4j<A}$kI>{Z>kT#6*$`b#JwvdP4q9M9
zHgs(Tnz<jv$mohHqHbCKytx+!Iq@Zbub*-Nr+K=&a`B@Hi<xJ-!3%ww*LpVOWGmgH
zs%tJJH8E{DHX)5#pHEd%uCq0H>N;gm*}WG!i5wkAyVXiWh0$&*{h*Sw$4&B3d)H}z
z>rHjlZAP7mfm5+On@mChR|-c$pM3XL>cQnaUp`6Ty$XBz9Is{ZW9NlP9>B{hDwlSD
zs@3J)Ac5N8Qb&axc9{D60G!dWR?@-7S#XW}A%}W}u9*0CdF{buQg8Y9QvJFxTA;%u
zVEQd4dQmne)4$4?)P-s8{}-0`s*`>4x?+Bdwz9I)*u<bFB=Q1qQ4;+_S&&N0gFPU>
zVw&P#^Z1DIxtBGDcJoO(=mSTh<;eIcXHlj+^2VR1Eqxpz@!Lx{Ow#9^kF%ri&i<u%
zgG}+K$K0!4Mu)xsr-Vyl{zvL%6!{;*SF*iG^`GWqS4g(1g8%0)aq9j5x`{j5|L499
zR?HIcQBY8XgoObBKvls%9QyA)WZ;Tc0{&LQNmf?Ybg5Qc0+U8@MX0-zQ|HhS+V9{v
zS22hDj-F*SEDI@MOGFL`MgNF3yX23{jHU5OeMFdGC4AIDZFE0el$gktm^nrqLOES_
zl<b$AB?=TW2t~ZFYkUo8e*mPIINPm0R!CTYUv9~K@U^z*CC19EsJ*xN;Us&3YroRk
zVfO?S^1Y9SHrPAuD@5-&CS>{0<Jun|FQXbye%oCN59v0nqHn{c+rGLBL<0=6B6iXE
z8-mv2t`?yy__)sPdwtKVZeR(koFz9#d%i&E-RX6=SALm*g99)sTj4|Hv5WCR*;6{7
zIpQHGNAa-i?-9HRgPhKP&I^;t77r!lw#IYan^u<Xw-`z7Au#an=#Qbc8vpqm?Jcw6
zT4x~Qo&M(+yOG*VNth1i$20VN{EI6a<<5>&CxiC&q-|l6a#EpN+`mJ+ruA<4EH^&8
zu(#^h?$`2#IMCAz%g{%t7a$7eKt_i?jJ3_zfSsNX6#B^&u2-*W%!duncI-_@RU!vC
zE!csNlBJ2SFb_l?uuSEQ`C5)?`VbWK{TKHB@bi{P9NWj*zs~0G=r!9fi+{%`&HuC^
z6(Tcq0BVpnwpw6aJ(+hC`dkq*x#_B=MHq`<WdMKjK**R{;KN(_9V@q(;-ak`DJ2!#
z9NG6#)lP5>AQbZJI;5>-6jXPwIOS+RM^2vh@6f!)XkMS$!(@pQL_?l}8nDMRGAe>a
z^3+Pyhtv7vmYSSvd>_0JN6WGsy%ExJbQmPO_FwPh)A`ujye>OUIgHfEYm=ixYBR*q
z+f5c|$nzaO&Yh)%a%+vZG&=*Y@OWOD<w$L?i9aisAaMoz1S>e*jq0Vxns?8sfqHD$
z@2kjmaLi~=hMz~?p~ML}^DM3Z5QhL!J+g7n*U`*5y$A@xjh>V8JI32Qj{=-YORMmb
z_4>WD{F(?|SkN+kbAgDTb3PjxB-k2K&B~=mQ<tnU@6jAg7!B^-8{6}wmyRDwLhCD!
z;jxgMX4m?m2{FfQAh#TdWe*jI^jO0>I^m-U@rSyd1(@b4>=oyW^0lOlpj517h%jYF
zD%)ndhszjnQ^mEQEmrQA>O#`?zh@D4lAByA1h%x%O*C;@02EV6+k`dVkgqC6zx$E1
zuaJFN{|0+MJSmM@@fb#>ZCa|px~x!-aFxdO3e4Mgdt)RmlWJ;j+)r3<KmRL5mUrSV
zpFXC91vkG^QrNt&ek5JkFL0I5eKPN4eWiy<TuY3<`tEH?bsp8`p2+N>kiTr$u<?Ar
zjWqQmfy3E#hZ=&sQ6`L(2rwb;xN-ZLTwkcm2ZY7oO}YTFW06t}j-j?l)!^W37(FtZ
z`@XRh<@8RKks`(z@1bI2C#7I>FeMeYCTP<67IpHvc{Nsuc4f5Qk@f5d6?17aTK6u*
z28-KNF71nWa@4%JK_Wde)+F5(j*n!OS(_$esKHSo^*IFrS^h6HW>{s~msnA#<a3J#
z$CLY)nB{^Wk7mjG*NW&wot@^KF!f*4s?OF@{X~avFQlcnc*o)v9LKOr1rhuh_MbvN
zpE;N^mD`oI-6Si&PICmjTHkIX<S0-qN0@kfXX2Awg){+0uz0R^bh1!2d^pz#%_&WK
zO<(A(bOq_b9c43KQdltYj)K=SpMLM@2!Chwq#K^Yssg}X;#drXwXmj>Bpo~LPfACo
zqtQy$$BVBBbPN<&4IFuW&p=^w+_I+RuP%V^OdnrcAMsCK?*J6jo-2+ZsaLEFKNt$9
zOw!hmMRj%$Z1hQ|b8ur0BG-yLt#|sU(4DWXgu2=a?<vO0r2wXg8ojm!><4@RH0oTi
zN?s_DeT~;CEe<FFxOQR35$ZXflEYu=gV8spx8)nHCCAIqpa}kz{GQ+5*f{?LsO$Si
zN`-=#++eAvSD3(2F+t)0rNTUcjdXFiJ%`|fm!~6e3iHC#DfC7#XoeT5-M*g1#k<c5
zQxB6GG#@#r{Kof~i=>`nb&nc%fs;n#YK-%)$MbUDXL55eq(;ql-<g-+`IN6<Ocd`t
zU4cyDw^6)pJmhye9ZQO4`o0AKd}3z%t4}_SXQEtBus4E43O<@aB<#f%K^(fus!F##
zoRYJ$xqEy(HeY2j5%%*|-gO`W$4>P^l^o?IHYur`qameY&d5&p2Z1&;_BmdqwHlRa
zyZPi^j6IdJnnBxklg=*opyO1o9PvP6F01L}{5r<T`jIyRz6<fl5oyXb#xH%LZb)ow
z6hFo)e(Lu)O%o6WNnY+NWvP%U2mwA<=+B5U2lZ>lEPOa)2IabLBDSbWTgbl*FYt36
z*Xh!v-t6uh1vJvE&n8xdFS?G+RxCH=`4`T631N!7t%|g+q1Jp68QkqgT!U}2DPhe;
zL3xYQ5moa2v<$M<-{xFvvlIxGq-O;$4F#RTrfdeEyXq!NL3buC=w@F4hf>V^3zY!x
zvB~vG)9!>fX7!Y(qDIJAQ!Cbww!>~7J==+@UPa+CXx;38#6<3?+AYy$ZfAD-vDR_G
z?<Ge@r!VJ%H&G=ighOk*HGX7!f@K7#5UAa0_`#>4LB&?FMiRq*3W&;4oOAFnr5L4)
z*5@waygV_<OxKrNj>MH%#3(i|`89YR1vqyxI-LJR`r7TIpWQn>y5kxQbBos2_<H}u
zbt=RHr_F5W8_d~o;(qMBCnmJry4Cl@>{wnIfjfnS!-;Sr{<f9QNY}JiwcS-e{hWOT
z$-{f_WNl05rFyEF@5-6>j{|Dj-B}V1oW)6q``cCFtGj0H#7*d9cmrBI#iA%;l(xt3
zwSC)?EuBf-JG%@t;bCMO0w0XVkbXpt<qe$FQElPizn(D$zrxFjlF!<mE3p$^)arRf
z+9M<-(U<MaRpmS)NuJC_nsUnWc@~DPyh?i;q5W?A9g(ag!UERCcNhJm|I1$bg(e0&
zVW~i7n2F_TXAKoKw#4z#=Sm#0ioKZ>&rSBlUnXB~TA9xyQNl=jd{gTPStKd9%RZ7t
zBKJ61TWc(i34;7fIJE)fuU=!~5IH!=!Qtb3ePzi@JynIAxMU{cxDVg59;C402?5Sb
zQXH3-oh*mH_SOv8kK@bYANGomiCT_$I_{*-w{nrXk;(G3(<sD~=+W&TFpN<HpS9Zw
z|5~wyul`D?x#I)!hL8KlS@JmIs%J!=gnX&0xOVh<d?IY4k5)au`(RpB7B*7O0OL6R
z@@Cd~h_G?<uh5INi#`5;B%2)4w3T4;Da_SX!v4wKmda-2DyNZm!|YePx@|elF#Eea
zj44dv_0zT8TEZ%=T-~e)KDrz|pQd)Vvi{ehCbp+v-h!h#nGR@{gUj$x))@vjRc8xg
zq8~P_1ildcdAWB&_Yc9Z`x9_h{86xqI~rA_bc-TY%60iK%}1vS6iXh&rKCz+`>=lR
zfRAPf4rB@o!hEjCgn@|euCC9Aa5IIY72TAjAUrG17)}cXj(mBAzFpo^C->eF{xF!=
z#kOuf<`Oy@J@W<eh)ViT#fngIL11B?sc&5~fR8dj7OlAoc<HcdE$}_sk_ioHy51*k
z;|K`sI0ULT9?M{BYF33AT76v6Y$p}KD4CK{l3F&U)T*Dnu+a)O?`p>Oxp?D#WNXxM
zPp!*W3$D??<hY#cL1fwu)A1H_JIMCDj@Z=^q=h2V&2HGvi>95KN3<_<b}~#3FhY9=
zJ_VP&5{qI@3&|7rYq!?+e{O(bx*CAJq|1q!SKs+~!^yC0L3y;7Y&R^){#d?Ts8dEc
zKt?vcXWJ4xI)N>Pg8f3^chv5(3*w-qKW4dw&(D$eoG0_$>LRW^DJ;mnXuGyTU4@J;
z(<U|?Pm!#rH$tb$_m0?tP54cRj?*IMP0*gfrm_ALxQP+b@>wd%$!pg#5iG5Fy8Odp
zJ>6wbB{)*lJNWV1?T4HI2Y&g-it>p5#A|_^;L`Qprj2xO$BdbrUZ;n%=Zm%W@^>OR
zd@jfDt}wxyD$yyvq8FVh=l4{9t=PbS2N|q!C!&*pq>egG$8<93B1&Q=`W8g=u!l)X
z@yf@)2_)>Fob%#qi8zyJS6p}}a@;Re>oz_{w-Eej^fhK`H>k~az4<|E!14Vdm=&N|
z3U)?Gs&N@&NQ}@G+o*Cb(rCiYo1%RSoe;rRdo#4Hp98PVG=?229yDKyhdtwVeq_9G
zPzNQ7y3v`!BMFYU`<1(+N<A5sAnI0=AVWUC!`a#*?S%5fL8sGS5-~T)9goz5LI>MR
z-)V=n{1!xVe@e^GqVE>X=c1|&!i{I=sG9(Ap5RD|t<4|DTE1N$i>LE;Cu(@=S}t;v
zMHslDGdV^Tk(TA;TY&ILW@Dea3WK;~xNlFD70A=r6(<E<IB-x6KH1@#{>q~}#V%M{
zhf<XPOf6TrOQ!MG!EoRVH(j_gsfGaY!L#~suHNGTVm16j%Vv7JsYGG2r4K$#!~yn#
zMdq6IIrIbUu?l*40L~Lo+323f_Z)B8;^{~ta!2)ID$=HN4=XW+7VFha0U3qbGz^0E
zw(IL;ewasXAKM<0_*$L(1^UCtqIOqk2q2dvBZn>Sd>&$@!Je?1v;4({BWzr{bUb(l
zMWJ2^t|+FRj9dswM*FTzhPfVtY1>f3j?yf1o77mx@-D*1PfVj67s?!IbH@r;3le?s
zC6UwqapT%AbfhmjmQ`Z0z=J@sf6)^CP-A`JpbJ7g*$m~d=!DiQs{Qfq4@KW}i`>@X
zaH$jyv-wIRq~9(*N2|tMTwHwq&clAO*2=o*CR+kjsMAnR+)aXBQ4ww(f=;c|SG3gR
zo5E=^>UeWYMpr-bYl@I_k<xGWPKx8Ffrg5vNytoY*3~!tfECTL2YLZ!^Y?1oXhJUP
zPMZt?bQ0!_1f!v>JdyD!POHVPZvexr>bf9P8So&LrpqtoV@X&76`!{wNzIMP^~7B9
zWAo2);W%s*>}P4+0<tQF#KO&P*d6C|*h`lxcisyAIc*B<X+SDn*SDQHmmbg(Q5v_1
zHR-~a5%Wk~+ALMd$lh`Eg^2akjHBHRO~(Vmb9dVH{k{4<jMMltql{Or_>wge!*OLC
z-%3Dn&8iINBn%u%H#YTIQhjc6P}fZM5z(Bk=D7QcR;IQgczzd~;Iz^DA;}Xhw{Mfw
z)02<v)L`Iv%J5)pPK`tM&vC-yhGSVcrZC_Ahi{lo21`D5+8I8<ZoRVbu-=aB{Dn@$
zn_32^bF-`8cu+852)-T1uE*Mbduwy+V*ha>tgX=(0Yv-`rfq#G2s-&<il@4jZ*!Gt
z{iMOlOr<P$VpGDWRYshiZZ{K?F68}XJtKsA3aIM7L|w(~Z>h~L3Rn|pwig|0$Rpj+
zpN(3n88r+6<r$XMyByDFY5^-a+O2pHOXxjJF#?P(#xNiD8baC98Kk^*tj1MyRQ$dW
z$u<hHW#08+z7TYEvED{LW_2jBlFa4d4IR2MKdA&H#z>LjYe|LxR?U^3nQlpIJ^5F2
z;~u^Zo76y|h#d94ik;~y0x2Ya%j5;I(gAA&NR_3_DZZFXu8S*vSLkl&hWyrAAVH)h
zX@;X;W9)sC_V0sA?(Mr1;ikrk7*#<Q=R_prl6yF=y9;@^UFOH8W4VdeUP4jEWfDP7
z6a^LKt75t=uf29WaEkh5M~(%fzfedhh48Ukx*!-CS$8(vvn@)krQ7V<Ql{yJmj$@|
z<y<w!kJ21=rgMc9*p;J88P!;%7TSFNqF=I!(Y_$Rp8mMZY5=+%56+1qA7^gki1nx<
z<jP#Xu5MsV80x;ADg@CX7^_5T^Z6z=tzePmjl|^GU-U;s7rtC?7v;+8$B-CPme@Eg
zUS6jnmfPX!PoFph143ONymbV_&cFQ*X8ceS`uTB9yj|&oiSydEJn|t{O~b?aI=N`>
zz(EV*`~g(HjBfm}Kv@s-9ZJhAl^k7)T;~Q|g7b9E4Z<xSzx5b*sOeh%=IzUTqX^kM
zSGFz{GKGp(R{0%Pgo@QlByCGouvgXIVyg*y(b3AMe$ACjiJi8ZT;I>qKzbFSlFgEh
zlMzD0H7FsI%aB)<Eu9OcdPzIZn=-QggH^lRJ-y@oqC6k)ZZ%sRH%ODYoPm(Tji<(3
z&SY>i^f$Bz1%B2E389tL!=}I~>G|^Y>+m@l%$iO>hS`77mP*F-TWbwSu0LW#m(vpP
zX8-aa5Y4*cRGd_%-ydk4VPLwqCm8=EB&xQbXL1@Z@#6N_OwE=`L=jHIp~@~E@{8YM
zfrB&y!8u3OIo|{b<kJkVy{{vKC6xu$>Ej--uXEC2%k_qRl#F4{z#_mT>pj^d6@91<
zvcxWw62+hg?oPfqSQ%DjbI86&YP`A@kku%s(`j29CjXkqsX<ZP)yEm|GOp?)b}V0u
z<9X+ED)Dj4kjP%c+OkmXi0T^mlvnGxo&bw6c5-MosbH16rg7sHrMjs?FK$W&PP;fR
zIb`L%L{@hapVN70e|)2p*WB|e#p`G$4OS;}dBy3Qy3*z}|C#;#Rih^9H%$ziOt%nx
z*wZIc&fM;&O>%n}7S*7L;_EWHpq${VQyPJ9F*&?S)#lRS@38tcm6$<sXmf0&-EVL^
zQ!hzQY|c2R?h-b;dw`oPI*GuRdYrW_iEeqnaw$S9WqSM?$qE|goxfTX$+|AY#503b
z0=trH?y2T@*m^~Ej8vMs-;{p^s0e`KbX{DQ(C%t1ifNWanv%XnYi3G<(CyNd<#|aq
zrtQE|wpW6J4LC)kU1auw$i>Tc7pAgAU5OC|A>lmAHGsEnEXxr*F}w}#Wbaf0f~sUL
z$?6Qy*p2V&&1>fUa;id>GT8+JT8zQk^X}-rcG@xXr0;G)Jp)r2wpN^PoF3jcbWxwa
zIrlv8);~g#Tusg4YOWz^Dsz^^CGWV|pPQ)?flH>1T3rhPfyGbrTJl9Rltj+GW$=kD
zdE1GC?ek6P)7fSCc#)w($b(Ve77APD0W)1y`N6(CS6??_2*^uD2GW{~oe~U8!oszz
zJ%k+s@v@zId|k*Er0pt{1%;t+L6_0<AZSYz&V^VhI5T#Eg2VjGUhH>FiR}@wardbW
zRFB!1*!U(RR#oVjdb^@+IKdUoBf8>6%4aP0)5=U#5Ikn=io78^R*BVsOAvGU*A&!W
z7Kmx$R*i!T5d}F1sI<w3-l5bL{aPfD*`<}f#S?0FNy2#&>>bvr=vD9nth|o!@g=)0
zV7R(_DVeO#NK;*Dxn<_dXH}x_xjydN?BHj6jHo8;ErkSoy~LSA&O<&2ZQMGjzGi>A
zkk61QO3KNh=5<&xJza;-&{Ug`46b(gGw3#cxI+k6fYbP$&8?>kzfV}Az0jvL|0Qi<
zwx11Hl2-#onoZ&o*?inz9lj*PT{z)GGjJ{H8R^*|@}vBH252vKk~1DGFb&TJq9MDo
zj;_b#NUK)xf-RhS*$+6nwkdwPrn%*wjAOfa3W5}NcIHa3fxaYzUCc9t3k57MU*l2w
z7kp>BD$SLLvmlE6cxe2fX#!yEeTn1P^lb1}<#DC)XMQ>=hYnl5Ffy%@%lwaPf7KSI
zfp#|vYObcuoDz%Vy}<AdKSw9BnmO=hM?}fy{w-2njb}{bN8xlfX2YXM9TyUj#H9h<
z9>AJ-VrvS6df7WQP7&kI+B#h?<1LUA?I~iQyJMHrO7xas5*l`%sVp<&!)Z#d`Wh>C
zi#7CU@vV6&TD}^j*K{m8qPE?Bvt%Y9b%BbI+wFNDg}73c6L(A~->>PHLye?q;Re2Y
zK^8v@=}cmbmxLRCsO>kzw21-32>L%Q=IZB;C4o&@iDL<@KIYHs$z`-ePAz`rVmL}#
z{T6B5;}F+$LKD5e)*gPH#YrA%9up%g{`f;{hJ=iXyL@1UR#gk)Nk971M&-)_!VObF
zayC5U*R4sC72gR#SpL~h@0`>Ft<nn!TESm4?=uSsrCACz8}A7j&_WG0O^NXZP<Yd`
z?-%Orc<t4^*nc`nPU62GJoFjTY6Fn)Gr9fr2))nsc1)K(PXctMr^Y<lNUh^}zRzF}
zVBa7BtQ+B($@(gMXT%6y5dgC!{XT3U!xV-$6j2c;K%~|YhR@%ysZoCo<a84E!`UBM
z_XstRWDzLn9!u0%OXuPZ#TXQ#pm)s@GaZXhNKc6?hK?=J;|I#9|8%*fWXA&WpYjFC
zfRnnYA4m1F3=^^sGzCDa1QA?^g2^sxI>|hKNO00g<rYiwm{Vsui+7^fgx2CUOic$P
z0#a<Rx184+-c6x~p>6A@YRes{kb?S|TTClHwFz|$C%45G;z_&*L!RZe7X~RFC~va~
zi{*!nTo->L?u|?t?Ep2rSIQSC5&|zr7M-1jn?KTVP6bb^A{|cC66f#>Bm|=P?_8aK
z;kap3IRh~>r+q;ET+CLeR`kaA#_8ms&TJ5{86WUhVD(SjzO>$nU>S_mbq^pCNZpPW
z@VMx$PZ>3zgu4+Zgdxyy;8LWfRECJnH#JcSEVt<WA+PHwqnI;R4ehnk$TjylvIh?@
z+F6WmGRx#G8T<7op%_SQ&5@&Uggi8fC9v^To$%H#%XTJX8-#8Fws*Q=n!c-i5(1AO
zH*^QOPp7_wTM!S;9a0MEp~`G4(9Qyk*~d~O=#*@2;JL;+7Mr7&Xt_+9pG;{EI4Pwk
z>5Ue*p<mzc4&}?zX>Zp&w32zj-yzitn^ySYNypu-zBzee@>&rm6xYb|<A)Y8vJ*^S
zIY`-aTL@uT?;L3O$h@A^cR1gsV^|PJu9rDfI$M_}oE_c39h3n7Jbrr{^2ltQI+x<h
z{NpcAZzV;B7;N<A)v-kqMfOxZOU;uTSI&b+>SlY8@p96_K+JH2if3%K>8aJyc`n_K
zF(rXNn8Qela-imV)#>W_VbaouO5=CJ8swT!pA$_LN}+BkRRvT7i4(!yk;wI=uT3{*
zD7Qg3!|5#S?d!R~vtcsdm4|4gC<)ux(>%jX+^VY`S}p_mbO*AfTE-Z5RQv5)q`@2{
zED901%e|RHhQcVprFy&H+X_pRI`y`QuhV;sgK?V1#`@=~L5+nTVLyw`;YITrPT0JX
zYIJ;5Z!NG4W-k?F_oui~mqY`1;-+p|ZRzjj1puFLiBNp#%nuf1bL9Sys<YsV<4NCk
z5)vSR;O_43P6!rsaF^f~WN;?|0t|x$x53@rEw~Tv?yiID%kKX6{P+C=eY&cvt54T+
z-Pcozbv-h?3x2w5)S=L`XF}%>%RJ(9N$V_3l~|jIsltS?rKR>4rgjxh-uf+}@-lt^
z?UkUY9r6b6!xeoG^?5LRVT?7ziA|uU2jt(?AK|S;D_Grg=DDzV4W_%<196j&SbKiS
zC>+z1a`+M4`V531rSw|@qE@QUuCN$uQv)peo*L6PRyrYRagFzProKfn9ciyoi_4Gf
zk}5~R#Ygu72<p-X-=D`Qa*#h~?gR=VKMC;G^BR6Pj7C=Tb%;C0cjT<AKvLZy?W>d!
zA)w|!%bVULz?5m`ztJ8O<&1ks%ks$gR^x%61g3*V^f}I_M-gN+g<0c#jQO7CB;ViM
zfS_>^1o5=aeCB47lWH}j-ifRNIAp7v4>dwNf6rM)M;l)!()8OGm6<6&gJqZV4U;8k
zd}_w=?s)upc7O#RGjC9JyPNevWRt?nbt7E~YW`4`gSBa-c{MwK>x9IlQF&BAYK(Hu
zD87K}fb{PMG67<Lvv9ov5z0Vn{c7OdEu~|utc>hKjR>{4um1IHc?_#)r&6II2{v}_
z%2d+W&{OMQYjl2UX504kp~O57#K_8NcHZugC2cTpm~etfZVPkCY0Bbs-$y>3CrT#9
zqGI=!#M;b}rgLo=)v0%kFOrhIvQkJvEl``&k219xG&hH*f@ReKF$(|afg#`YPJh1E
zi<L89!FVEPfJv_{qEeXQJLth8;QWT#Fh-<?v3Sb;>5ysPh7+iy@3k1r!VgD-vfUFb
zDtj8YXc0y-+o933k;)O3f3JC2#1H_Ki54-&q1@!v%bhNPA+M4e18O`RM1HaXSmiy5
z_lY+WeMScLU%sp0$V!u2AUNhZh?)3XZwR?x=Ug1+(bauun&8T&JSp?kuy5_GSVnCi
z#_1A|2|_MxElimXcW%Vk#C#3Mk9~*oQRU{R3(l)hX9C|c!y*GK4sV5h`EWYBqyde0
zbcqk3m~pCFB>stpby%`jL97=LL*+zOrHHV(xoM)H0C(PrhLW{%scP>W=t|{<Aq{CE
zIv?w;JP!S(v5gVKDb3+173kDgL|&XYDxlr%eNWxVNs)|5Ya#SC?P7W`g(BjCD**Vr
zir~fZ%d;ak)^@KV^{vJ`SRe%@r5`Vyrd{-qew9GF#ZAxmD*YzrJih3iTYu}GYOpya
zyf~5KfTL2o7$pHuf%J7wL^lC);<$2^Ibjv`OwnYxi>%o3pxJcMCv$d)ZYV^JK1sh+
z)h;Bwi&C4%diqC}2xIHlMv8{LqbsPWSX&Y-iZS)#=&+qdzfyKf;p)+ff|SSNQ#`%#
z14!YXZ7*6SOa8=S+G2$m;gcF2pz6K4$7`WiL_kMcKoi<ogVVTYsONDbDa6Pa8T>~C
z6af+>`NL3%X%ittMK>YQ@YE9`aBiz^OmjmO>lR^pvLo1SrT{{MCx{dZZw^WC<$+4^
zqqE}2@kxV5r^qG2A<wb9`gosNHPl^Q+_wF~t2mmhNKmfNDHWW#o^ibXGUwem{!JA4
z&FjX}s%7E*5Y88B=7>?5nkdaJDGt#Fr>tbPp+C-FefjvMM`->l+jwNiJO%P#O-Y^S
z&W0|CI2F=5cPlPdL{m5M*q2S@)x0oGN@|ueNBDxZO(UC2Qg>n5WzrV`-0DX+A5AOO
zkW;oBR3iz;OBXR8PUIEQr%qFTzjWT=E<{Zi$ti?-68BdRzx{$;<ZzbZ-7%j0xpJ+#
z2SeaRP0+2zB+{mmzjN-E9=>$v^M6YG&$fdm{;5Q@dzfv)k5+h`PsG|2LU3>l7Hba?
z^X}ezJPXJ&hypvKb<OKc0tA;w#E73S_{V`gm_eGF{+`71t;|clcwOsGk#o3c%>Lwz
zQI+P43O5=^=;KnaM;Y`*9-Wc2{&NoZESQm61u5EHiN~mOe$0XR%_JLt*gyCh{gM~P
z9nA7U{pijvPYJxoa+bHxn?4XcYDMpzquvd<8j|oJl}4s`UhrF|2fHr)jTPaylGGq?
zqz)~V{@Osh!#untk^0r{vF?b)=6ZEqY%u4RKj~vQC>_8!PC<))PZwfe7Z}Z&O)CO|
zIJ`(~@=(Lh6Au0`#tMFoo89eGJ&;KmsVf0HPFl1C?!Ty?X8)7GBPBI)Ms6leEKIz+
zTNI5*N2L-!$?0DDWCTzmN{Vh+Ki>bUXeeEKa12cWs`XnnpHJR$`BNuQp1ZnrYnIaj
zaCli(LpoW(v`{>LSK%P<ENxQEt^=@<gf92iKyuiUfyOliiHdCDYbY0pK4B1aM!Wu_
zjYM+Lw5-9Bm_C+eeGy`-2=V({i}zWPqPH+XE(rmyRVuwBUjn|W*|K177aWO*+ZB*r
zwd2V(uhP6}IvxcGJN#RSuvEvVA_Blr*;63GUXJr{QrYFy;A*aTa6s$O>1X1gN~iX@
zX>asJ3<}eKo`rMVKmI3BnDY|Ex8Ua&f4z#6Ss*NV?<4!=IpGyGnb56HZnz+O#-Dzn
zD2_Ue6g>&cQ?WR+{v+nSF*TaXMyV;`)%xKrm;S|1DKP2W!@u~J9MoTF%EA{ae^+Q)
zf4A!d>)q38YqgvRc%^xN#m)^gx=i+a(DtbprKFiLZ6@C?XA?2IRq-<?{j@RdHqeHo
zL1BD6k8JXu^ZNawy_5$pR4Bw`>RHKkHPn1}1g~y2#Qd}ruZng&MkFeY^2V6YVV8L|
z?B9g<%csvGX^Mkhp}C@B@LQxrj25g2PK<*q_w;D|qT6|KyS3{pE9H}lmDEcs7r0tP
zsg|lj1ER1?Y$v+Xyrqh`M?ufAXD7pl;)T`lJBzf5eNI*Zznzf;$<}?1;o$fWLX9_5
z-Q&&dSn|hThYg{n|KU=}mFx~4CtqQnXCX7mmn2@76XE+mRKA7%huD6zwMn3277lBB
zGU>0}YJ*$7pf29M#_hMSyU|+7cv6*BculHv_$F_s#}AOn#zYEJGxlH$vs;LKeBwJ$
z+A1PCI@*`xc{e_f<Bym(OXOPFX4{H>G^bt?2athphwot;=@xs>!6mI$S-va)a~7eY
zXs_`fLL@TVLI(0WE@@H5z7ZnWFxW&&bp%O^)Tu41w$ts~U3r#Rg>thFXrCT(==a+y
zL8_6|*pf1x>*J=ctHd`+UL5|(A26MKU$}9C1yqF^)3OoDsxOs^5Ku)-A6gL=mpGK5
zqeCQTI!PQaMBoz%cKZk7I?-`uVK8CTFC%ANhhLyze>U24^7Qf~+rD(ie$nKK#uhxm
zm)8OzJiGGyCX2|`K29f<2|gP(A(X7;AT(?6xu^*Thw}-3FVV-17Oi%}oN*3^g%7SF
z9{A1AC`K|uXKh!Br>OA2TLUbV2q4oOsY2V7hUX|h>kc`doQnO$y~Mcrl$pj|FuVOB
z@rDX5b-FZUZx;im_@VN`n~VG6ZjKc7Dl1%*lAd*@w0RQd4I4qDtle48*Ku{DnU)Q$
z4v5dPN^kX3`4=^m6FHogonZFyuJ8Nlz1-5J!bm5NHlm1QDmS@OftEQ=&2VpQ?>=Aa
z4N9iv87iAnxdBe{mdkc0CgUnMwBrD3rB$;tgQU(Q508l|`RC4N2r~TG3I2#cfj>VO
zX^14q;V#YgcJ^@|D<yH77^cj%!48Hq27LmHrBl(Hq~sc%F2I)Lty9v25z4Diau2xE
z<N62vcZ^pEa<{ig{5pH=a7<h?oLYYz*_?FMgHO>&h<htkD_X=w+T=+4eo`tQn9!$p
z&!rV(5n~6Bj|Z@FG*8w8NoaT##XG&4;R3S0#VQYr*X!M$Hbaf7<M4~il*?Sn>uO|1
zN@}08ScxMDkO0}AOIAE1CPntOrrA;DtaEZR(~+tpgq8bh&u_&)-QE?AoX@ZbD%2RV
z%(x76oZHsB({a2-4Uo)R12g^Di;eieXdhGdjUzPo%FH*IXliI(-oc#<Q_~>dSf3rW
zRF&Q7n3$c0QInDj*@mW0GFWZc&?#8g?Hxb<ZcmGAW0Jn$@4d|{u8s8mAz>%}u`h>a
zsD)9J0Ud^Pu;NS$P~d1;+`m3x`zEiXG-_I$$xT+n3t8a!BHXt)&W~2L=B`9%`6G|T
z@&W|kLdL_!-^+OG59DBVg4eh}^_&B-rH5sGs$rBy%jVz^56;{gbuysibPVn9(!fQ=
zLPn4RjvazTjBxewxlFp5!}@g>AD0fog@sB`rQ=>%V)~oK$DE;ka5+r}OqIRbchq))
z1q<fNl&BPw#K&&mmZn%hZf{OH0Z#HcWApE}YL)!<v9ZeiV#^ncCLBllp;{}>K6h%)
zSlIw2gQoQ_L(`6YVGF(#VBZuaFsR!>cmdQoAQ2rb$j=0PkJrstL!eht0So$-my1!{
zl_!57f1X7TY9wM>kpIz;m-`EGEWO(Cvh8=Yc3c9*{@v10cOxy1P*2lf#+1*wGiCjX
zf5_;xN3|I_7hi9WBexEKeA^{6EB$Cki=^A?+sWn+UDrxxy<wV`iTsR00G>?KsmW9l
z-pZwKN&>D|XOvQCzT5i4r?xO*ysr*5kLv$M)I~mUkiEPqRM&%S1n7O%Zs9T=O%D1s
z&3UfcT7q>Jww`Y*hHQV@_p=CpfNn!-TVIBzdV4;lA&ndSbLLT2g7Ka61EWKn<`Tit
z2+nxABo{4UV>sNaF69I3YGikZWPTo@ysRGqhnHBy4=Y=kDlgIp%)-_MJQKWD#zfKu
zdRTl~m@$9sxHQ3V-2qK~7or1@T>q2iyVJ$NW71Ho?goL4f=Ub$o0J6D+sZ@<rLtO`
z5YMjEXhrMKWN^~rMEw*y{BbN1#e;MTKnSmnOb+Hy*>FALB`lQ8qf1-2=P_iAZ>({W
zBjvZo=IELp9W(tD%Q@H9b*<xl8^&2O|HYI9MQfEXSDngz0iE4?STtz}h<$!Vh$ez6
zCI-{$6?~8gbya2BRUp8yvOU!KoEm4FY0Acg;%o<r93#D`FnKUjY*}yB9=vw=c2*U#
zT10IoVMe_W{Kpc!@Ncp_Clb;C8G0pcx7JI{7Lw(h4c$R)#qa1==~z*AS;t++&8(pf
zih(n!E0T~sk<Cx5r7dCwGw9TIFb5zSdG`0|mNx!0jbID!)~$qO$s+~x_8QZVpEI7a
zz&~neGVNL1N+NVNV2D?TJH3wA6vtC{jWX_?4P)b}2EQSD0<cd3nk!UlyFU$z#W0Cw
zMyV6%t68GQT~s$Vk`v7fv#f+)FboaH*y^HDB|qhmJ$BkQjW+jwKpz$m*xS=#=Z{H%
zWUnT_!4Ls-PY(>*8+#w`8qm1i4V$7jI}RNbCJCN0DVX1@mRp-wGT~e*3RK!Ta}}i%
z<|8HS*W6-Y<E|+8sTaC)%%p>|b?Fz&-+tt_N(^Wg9G&olQmZ8N%Nn7+T2atmtjE<4
zm>U3#2m2C+22<ZGGRA9)e>4#=b11Vo7sQ8ZJ3%Mhd-VxIhoh?lur+sY2{s5?mWe_T
zQS#;k!IuV3!Az1Ie_lS<<6tT74`)@cLwwPO&L1ivK3IM9QOf*#qzdkk-x7np|N0<M
z?Qha-Fy0ww_;sZFvj3Tug$!iHGZp7nc~XC`!(jGjBdTdwkW(;0Hm{+WbHT9sbTwUk
zeLyL@UwF+ua?T`cH=K5PZ_cP}?8!orp`M@ieTfH$T{LU=JuGHy2!_)xuaSxpwdyXl
zKiZ*OcxVeiJ7gGqZ+F14h^Js47Jqw{QNdw)iO#`8|8)q9Vs2LCbhbn-3Oxx;GwPQT
zU9nR3v$9UN5Mg%{8f=ScXZ~eE0bbA1LdGXIZOA6X1B3%JPO(F_mDbDiDu1_yBX$jo
zwpnxqVof@s9ZG9Unr9~>m^IJuuJ_m)>9)gHF3EPZr##;T99(Hqcn}$>SQy?>O66*F
z6+))Nu}IQ)2#5YXBkiXB_Kc<<?+|3(+bdFhbHVOdfRU-acc<V}#CvQCIT?LtKyLIG
z!uH0GA5XIzVJ&o)*T$h5Vbgk%aTD#=t=xZy{_*v%b7HmnyB@j!VPHqYS9*HCHj*DI
z`Ilt1DJQ?b>t(9m*CKR&a+x~coSoaz{@5Fb+!NtcS;LSzHFNCJ-H;B@l-rp)p>oCW
z_=6iiU#Cyh6ACtz6fj$)P7KDa|9z~>8vhXK50nf)I;mkjQV`r$?bo%nQyr8053_v<
zstDEE=&_WF7WqUVz;(5WWbbuon3e0Zsi!8B%+~NMtcd(0KCb4P=RX*?n;7L+$N$Od
zWQ|+?Z|cXfIOTsVj?w?8{gD12id#y=?7z~H6~_O$7A2|IzrBU8YwrKka!faW?&sFI
z;@<uDVtl=i*6{kms;u$#lkM>Q{QP^Mi|bY`D<N)21HV8bEa7RKk8k5(C&J(cche^v
zUfN>TV)D}2$@htCHF{?J!%aIs%D=}#CF6PXTre1l*jt+yjBKk9t|Jzl%=7W0DQgYO
zE`E+%)7agUpPR1bI$?XaO9c%(T>O2^+x6nD#NrQZjY*TU@yiAlUprgRM)Qa=ql?wX
zOzZ<x{m;i@s`o^_sm<|Y{|PjaCa#9Zb5oGbCZ<(bURmiNKSqte*o^d|xFq=sp}A?|
z3bnMHVUXGb+=wLBN~aIH>s8Dor7vps&s>3Ms$&})C!qQS+BAa|caMfm>ifv_ikKAI
zvisd>J&160g{>N#Kv;7}eReO~M&D^ax=)z)qWyXbANz@&ox5k#I$3YA8&I?FkXl4`
zpjDs+FTK=Me>kNX3B}Wb>6gV^4eZlNnn;5He+U<@OWWqdI0N+s3yC|}1Lok?Cwci#
z<VxnHrM{plOIfx=e@Wuaq1c6d?*0l7F(Z#&2l)}la*A4>L4Z!I4GeCb27NCyLvMdo
zEbMk6DMl#bEub~2@x?~+cd~+|PQK7*&(AqxV6kq7X+w!OEq8sr-tGG$in2;&)0<c=
zDeF#U?8YnZjvj(*duhpO;?k3CUybj1%DP84rBq5C?d^1HA=<a1gHx7YY7efGs*V{z
zF}GC?mih<0)`~D1b*sB40yZJD=Lwgk)~29d?n8EuL!UGQJ@Ej~TFa#h423rRAZS+r
z80mg2<23T}c;Xk(hGl~+;2%lMetMqIVt$FGGhcI4=4?0c@j{;?$91ibRX4Nn43kl_
zeB<yEw_whOfj}C!RtKc`e(M#!T`wH(>?PHyVya;qif1vtE-6H|Tz!+SyEyOM6PUkF
z0GpLosWnDnlH$}sknUt5r5WQy)mG)h#I)%A!GnQo)44qKyE#GeY;M=7&MrOB{K2wq
z;k(&lgu)Mlv(JLQM?KF7ItSNj!?CMUZ04PO6f@pKgDE;XyoCyRdbNp_*66K6x>l?A
zx<!7%anpwyF;`2LZ3gb}K5B2I?fb^;yWIsehazO;b^m#Ho|WT8U!UZJz?${h?kqXn
z{z5Lbpe1xvU0=(kHwq^_)F?D)L!rpYuMeg3vqo*8p2Qg+-vN+IlFe`4=%CK_cLEQ5
zfVj%V_FWjxh-0P4HaW}5{NKs1>hvc@e=Tbjpw@LEcU2+mEozI43@XB^%DDyUA-BYQ
zwf49G3OKy^7n>kOE$Fh1MI+j6U^S<-O1qP2?+Z_4^V`fN)Q_5SC#5*WT3EDS0cD$2
zaxx59vXahW2;77?+ka=o_lSu5bqcWdy@}YtzW-IlrsoAh{fPd6zswcD^7eMqRdc0q
z<IC|BWi6Nqz)^hJA>on^^72#~xE9U}xYGIKmcVfv5QrQ6{KI8<BuMMi%(4H=PNlrA
zR|w6BH98??{<S?j{`r6|*6LrUS30?L25FXm59l}plIadT*Ji_0&??o)qNJ2bZ{|~H
z)XY#jXOLfZ@?VHTvbsEU^-Zn{WN#14Qxu_PkJK2ZfuktSU@6J2<|Hs-!U0PS$3!#~
zI6#(`x*bDbou9+z_+kI-5iim8ANxyjFaevFTdW$P9MmFRiv%EYpq);<%X&hTll$W(
zN_B5Zo<xjPgVkn8Xasggx%&HgWeFSM{kcjGIVt3|9KZLO&t8eu=kG`gk;W)sCK~$k
zvb9-O5@SE=6y)FE!KY^-|1b>6WEOPdBJ&UVTO9V7hsp>QdW)`=!lV%fWRJC3A{hD&
zr!~1nWdS9UFjyX@^nstCQjpcVH7O%D7|069G=2`x8BjxW8rHYdyXk|pzTFm%V7KiN
z>+FKExm=qa%&;=QdqgyrtYH0Thke1x#R)ERuWb?^+JgFbn4*RnW>qGG!u%<yMZ4y$
zyMNRgbJ)=9RkBoC;8dDku~0bj8bN1kL&6cMHFo6+IT}NdkttQ5vtkS85JjI9@}P!Y
z>s|TZv@?W$S5Z-JJffuG9Db{QZ0p8L11w@$^qzw6W51mzeyomnx*S8-gUw{yj0gq3
z4~}X5qU?QXF2w0Ab;krR6_z?uDel#Plk&?moKTg^3bA^Zd0olU_yBwKOP+Un6r~}5
zbl-`2M|7)%`%bQ5c@UAFFxZ9gI;ydU4Ss4^QR^FB#K03>EIYeYb&m+|X^=|R>CsV`
zL3w@tw~73HPc@<rihw5x2q2Aa)&BN9*hHk$xI?<_oBTa$2$&O%=svbNGN1u=#*W&3
z6Och${_-9kM#dMomXD4XPD9kqzOhF}%0cFn+$s4J9}O#u1ox&Jcz)*67x;upCK4%G
zf`g8q9Zz@I1I+X(H1F-RKCNW5Y)j@_6=<+hr#POLGRPcX-`SD>p%#nSdu-(|Rope-
z^8uk$i_ttAPedbU9|)YlASMouNnzZX!$V)v85e9`+bYm==S~a*;&qjuOIGHE2|D{P
zmBAyIt6`3>?QMlsuef4VC2oX7ux}h4gtGJKFjH&pT|yfK=1JTvv0)jpP(i-tjS~4G
z<IWNw8VpSmGC&b@^;g+~QJ*&i`8OC`?WoF#W5V=`gx7eoM-otuzx*A6;Gny^dwGGc
z_RIlMIe@;(Gt0asR5MLWEOLrD-$hwNf$*U24Xx6XL$O`8l`XVge3|<iEq<qMoCkp6
zTJQ23<InK5Kc&KHo`0(3t9gVuG{p|kMe))~I$9+BYP=jk3=i4*JAg#g?i@!JrOjRZ
zA=BRLhvk{G8@byKax8spurq!1e6x2;ki6Ct&fB|Yns?rENBTUr&EmBSW@DjW?rmAu
zNQ?a_$TT@HfEv<z7(!i7h9=4!ENchGL&!2O`q?M&lcx)mm4J|JE#b)L^8vM7c<S?#
zhC||{WZ@4AF<y(4BFg4)<5DBlH#Co%vHSSlm)(^FnApD!AOTzU7%wQ>zWK+}idA+u
zMzw!sGeuxu$X)$PHL~Gx?6XM7H~5s_xg(&5Brrn~7Pe*A_IHY0U+gO}h_S)ol%d5m
zqi1d)yRv2KlEWj{C+in%S()1n1us6gr@SV=V$^e`$PbGFVpEZ&v$HA@pUwETV<=>d
z3Dg<HGa=fx#G)$VG$o!xeI#vi8k{=2HB&ZccYYLjFU7;CDD1`y-d~Zg0}~*Lb4mB2
zCsp-N&0*3~DlIeREoZv^`yYpByhmR-4*bXCFYw{3-%ro3<&Ai?x!mCFhY5Q1H~dyX
zKtIl(?8Sfu%+<db0~_a@=$TmzYyBKJ$4%DuUcCN__G^8GV3530*Zw$25;>*fWMt^<
z<K4O|+EbZOO)7C*dP*#2(Zy3<<ZbzTJlV6fnQ2fC)N{P7MCfyr6z2$Z$w=~h1IIx-
z^Uk_<FCa0{FHl&F?f!JDud=$4^vbR{=LtV^F-WOq-PtQ;BnFm(&v!{Hg-qC;1^0YC
zC2Ee`*4_DGk$qv&a2Hxf+I{JZqd;T5I|#k@digC3>#Df9<<~go%YfgMm8mbUr}a&m
zjG>j2ihj7yP)~cNzE|}}-L|+%5FHf9n6hUtQSoee>bIIX<~L=Pd9+yKZ%HN%LNz;c
zTV+36%>2=eV{&?N4gHba*LIkBT{nx^IyhH2i5OB<-yVK8q&BQd3am4Fnb3xKQW*zl
zR5R%{-Sixet=3qqJ5(NtPaV$veQU^RH2u*l0T*AqjLiosRoiHo`wCJM`Q=7Ef3tL_
zLgG163jl6MuWcO3H^s`({SoHWp2+K6?zxuRPl-U<&L$!pl;$rZfrqdDzKO!J+Ek2k
z!|o;OA%Gs+*TVo1iCQt;>=#4cn~LV|Gw{n0v|{eYk6XT5-Q6pp=7C-sqwri15I4Wb
zUSCWXsx~vM7kjFjjCp$X)nj?b+uuK4FF?*GZRF_UiwLb4)Uy>wWCP2N#A{c;NBV~1
zm_2_<mJuuJ;nP-z@4M=cZBKizKDToeIH~$BxxX5qVnvvBIdUElJCEqoix|g&-d_4g
zDd%Dh7p2}S-6SD?X>;MNA0~lC-*uq4vVB3``~AoCihpI@&@*aUvHotlDcLezUeI_t
zpUNhD)IFwWD*{NvU!C;a{aHmadeOF{K*b<@*mx2UNrJ68J7Qo)@Si0ae)2jXtrij*
z{%fCi-fVV^gULR)S<zi6!a^hElTmUxiiG^p1lD2FO%P_irZmS&D4a5#=e3#aJzvno
z2bju!w744=6j+eGKk8~_YO7JASHMO1_@J1!dsOS@MIyJ?e{`DY2~E|xI#7Dz1Q6`d
z4-TA(y5+90m!Zl*g=*_t52hy4_m>+nP3n8nc~|}Ok)+T$>D-Kn7i*%2$Thfb+}It?
zC|2~TNhn2q1@TV5ZWrnlQeZQxXIetluI*Sk0#{7ui<Ygc*<S<Rk|dh;Hm9I!J&cZO
z$)g()0}`$hrO-C!!^uKlbx*KKj(BU4>9;t&Qtb>PLi;Qt+)vxH*%@OFQQE>x8__pz
zb}tVr*F9e*+J~HDPI<f8T_qTI019YR$z6D&4V1)fMBOb<H!|^D(T4EIJF*3~`P{++
zP~ImR;OV_ildGj%g5t3ip96<AzVsG;(>1|p7Esu7xr#D|M^7#Imu24bRPZ&iz_^Mx
z&njAn|2~QM{Y{2=bNr+IjIWnph1tQIaR8|lRM0;lW)hs>8jeGoKCH&7ANcrNmZPGT
z6!#`wQ?N&0OR^b-*m60S@esNou5N<Z?mL@weXKL-^GL&OwRmAAgxLD6&%p3vGDmpO
z>EhTJe*#FRj?0p5JAi@3pb@{0RA-_+DfXV-NNC}lP;}Iwr~kBRyyE)JNeH=}J<g#R
zGH;6<E<B3iFA)p!3v+p6!o@r68r$+=054CPW~fpr6Unn^-soL;nql4g5Q%C9c1ds5
z*<$(rSR-d?N}bt0==N--x5$Oc?M~oF3ZJ^IUyBJmd%6qRE1nUhu9}s2X=1ogYa@O`
z8ec#k31HeTUgu1_ZFl9eUy3>AjYXQpL}&6H757@-zBdf6-0lq~o``IJkkGar<ll;<
ze*$6JklSnWY%3~Qk!oV_AABpCRUVm5)%TeEGu@@ZfPrrEeJ}v6_U?52Pxd#nckzI=
zUlX2wjM91xsx-P7H4%z|Bq`L_t*#q*R??H1PE+Jzzk>Jfudr|;kG~G>q$agK1SR`A
zpV!ye&4QrBI_FoH!q&+f!^z`Zwv$n(_kPkZnQ}j<r_pEe#_Ac57wgyaB}e6EHC|@G
z8mVpOmxI-O%`NUu^)uAi)K2-drH1qz9)gvAooqo0NquAG3n4yReh1GbbL@6}!~(84
z`o*sD%Rn$Q<L(978I`S<tI6XAn8@HsbYX6{dbOnWfK8SxKbCGjIc|bl_qNLEnypga
z)@s~_>A)T%b9et{)6|ufM66s4?9qklG@&ctyUy^-$mrmHG+qRIgdu_4qzH@e@TwsM
z5ZVp0RLkV*f$gCE3g-LbOM9k7*Aa{{C*9WzJR83AD~Z+H-IA^A#HLRyf74@gnVGoB
zU-p}RvZ~6|ly@Q2NxPUd4L49ogfEz;bYZee*AQhD9e+Or=||IL;Iit&WZ`i=#OwYd
z4XYOr12}{2*_9+#4X2r#!3xAm+N_5P;7RrWW`KgHcBB!^CktE<;BSZlh;;`H`%j<#
z^b*IjB=!XS^r<-<4>$)y3!X$VeN&7K-BikrRznZtHfF91y*WL3vfHuyyaPmtkUVQI
zSH~Ig<E-PdEJ4xU26aTgtMb=+uPbYQO#WgaUYxMoa;z1ly~)`cwJD~^6oP7>9&|t1
zVkS1tyF$O1#v{B`sBlSKbh!o0S9&rW3q)v+q9^dk=SZfwavfe0YrdG8@0#QvwfC_a
z;69Y&Ytjl&%lb<7WPLbub;IooqO>c6V)aM;-kBa;KitlRKeoq=W$f!c{wWP<wKjYq
zrGM3w{q(<qZZz;92n)JWI^LMFEKc^-GWGb*!pkRJ3VXDMC)VtbFB=RG6VFbc<ZA+q
zx=e&+RIn_jZVTnp1OgNn)Ti!^(&tP_+4t*75<^i;@Apu`Y^SAK$5>Ca!>5&dZjbAM
z$j9@ErZdu)g&KtEpL`NUoM?JK`{1{W{^2ySxmdO%^-U27DryvBYlUE9<9gQbfxQKf
zXr)jI`z=HbES4a@Hs1R{TFf5CE}K8f6R0Jm<$iLMg=Ev#(~o>S?KLLY9PnPFJy75q
z#C6e$5|Lzqk4*h?gCm)K3i(Al=R7Gp!s>ne@sseewdwciHo3sm<-emaw@J^j_dyz-
zUwUXLziDPtCY@)(ZnE*8^?m%^SiTR4_@SGm)12ZyS@AnlV73?bB=jIT7(jL+M+k?)
zz@R(Z31r8>;mu}lR6h37&n5vE96p0sQYb${W9TPDYzeE$QC5u=tWvg!Vp#FC+Dvh;
zbZ5U3+DH^`^A|fYD?V_U?hMbzhUt6_rq2&)@`D)mL9_Jg@gJw?DTQ^BF@2J?cx~`A
zul?6C4-*{k*TIwbf4X&;N{}(Mam?W60U_-Gh|-7#jk#hdSP`uJo{T0crv+Kw>e|KC
z)M269T2z+)?wZ!mZ=TtlGNMpqbG8ZPGTkx!i4pfAsXv6KieTz{Z*&tAX8tf*U%xy-
zpnU#JAdD~hF^Q{*v<%zVc<|;k-bzEjJ*LNjacLsA6N75rs91FtZVaFg^tA7#^W+$1
zm<PyCGvwo>vF%VcC0~p!my3rFNMbh;iZrh^TWLhRMrQ8oubxk2bHOs>6fojwyO&_h
zZumlfYNVv6Cz@b5YmhZNT5XxKi8pfpgLdzBluMgr<kD*L_Nq^WYDPFyElw&&E+##*
z{YffVfL}&CBgsd^!bE2&z-kwHBP$`}QOPtpRlk;qc=^vdEoZ2SJx(jkAX{pYzB{Qi
z@p+SXNpUeS9ezexjv}}Hq*DRtiVZA@{&>Gp{pjx1WWtp+^+x<IvHRK;>+QG7CH^Tp
zYo%wL*aJpf`xR=Mlk`H*t-TD)*(l{OJnrbzh1gBU)>X@BjlNKWo<xUyx)^iCJoB}$
z7q0qWhL1;LZG{!yk8<AT>Wd}EGWCd~iZW~~%7A)Xlh~dK9o^d+Xth~cOn<l2E-&8n
zz%IG2=UFN9XPDOd;TD1DKo?f9>n$d3MVh0nIh*^0^Sv`2BS(1VLAh9S0(4^z4o=;M
zn@YcF1DTXJsIJzrsH^u-zZyBpqdCOqk=HoSEo-%xuv>3=AQ7L?a?BoHoN#}C%)F%a
z)LlR?JQDx>imi?GS`;2-udk^Za5ku}OQboOBxH*t$r_n;*ZIIFvHE>yX?L2#B_d);
zv@XpyKbA8H&GUE95Gt56J!+dWsCrpROHaDV$^N+BIq@d&yxM}JNZWXUd!PF2^$SXF
z(_mM|_i<C|*X8dWPuuJ%l-R>9Da;dV6TpXRj*&FmGS9I9e-C%S`fVfoksz1Ejg<Xg
zn+^^@M?AG`xuY448UumNXkMQUVzT2)9DtyPmjC&4<0A(KK8al4uhzK+%ijV^6Wd<5
z)?b_;srp(xS(MX+wI&<T>i0x#f%D49+p6Gr$>`0*smL(sTZo7oq>?a=L+U-L9Yt{Z
zcsbLDr5pB#Dqj8;3O<(|hNNoGO3#i@zNwypie2}cl-GFeE&M&drBb(?29a`zFjXI6
zj<JP0;jaKf)kb{}kpVxp?Uj*t)Xc}(DZ{ZscVtysCi8I_x3<HFMlB3ffzJhfz4+j<
z#=EtG$xTLAIX5p*p{!mD7YYdIvtKW>Eh7ZzqU?TKnES0Xo(el)>u3p-=)>4R%Ivsg
zEVKf$<*nSWp}09-@8~hxbSU74jH(_2<#c~te-KY>y<$+5nHbA@Er|d^w-kB`V>BgS
zKn*R9pAI8Zx7%nKYr*EK`45oaiI%83pDhO;%W~)O)fMz&RWM8@GI&?NPt^6ro;%@g
z3W#qI?Q4m8{YL!ilEXS1Mg-!{IcE&vIeP~Hc8-i}&kML<EsiR`&m%2D%l_RLMM36X
z{C!D^^17Wuq^#TzsSL3jiD6Nf{v&#}_nBgvvne&tr?y*HJhxuo4!6TejtUh6V-tz@
z8MV=KLtyQI6xCuGFLRQX?kDkt5Nue%t3y|(u?47*9*h-FsE5{?Uljy1JG`&4oQyiQ
zum?UsDdXjn<mL^;zmZ=Lcw<}t5%Hmr|0SpOO!hg62#%lnekg4^4%;c7&3E19{&`9A
zX#bBiGx}4&go3ni?qO}uqL}zNhR2zx3v%|{OBc$p*?pPn5~6E{?|f%NbJJRe69s6_
zA~ltpDjX@ZI&n1KR-jT<{$(&cm?FId!h96_Q|KB!+ngj%{x^}H5D-HjDzs$4AMBNB
zu7|{%VGF8h=+9q%v<0LE6+cuthL|drs)>7EX;p@V8BwsJwg^jnDO-^{?~APr3<bWZ
zQg6wAiKS8%YopVQXCPjTak_zb)#vZpnvTSO1UJ-$_+14#udO8iW`b~mYM6t`6@gR(
ztA7Xv$~j?7w@rsY^j$@1US1+Yog;P3-KcySKfTro)#cId3iLjSB6wO{+{<gHH0bz8
zR#t%PNUD4?PS?OT1IzFIs;IeHg{NsXR_MdvV*RqP&^SLI_-R!PB8vI`*=@FhhK$!I
zWfzlK#Q9J^2-}HweJh97Vmm$uHub0WJ2{12DtSLoU@9Vft>>pW2FCbyqU|9~Dro}L
zXg+KF<$RH=6u0mD<2Fmej`**~qAXCw>-8Vbp0p66V_f>wfW0zYIrH9Re%2=fY^Bjt
zq&y}v)$w;rf-cc)tMc7M1|x-ibz;v*8xmtg=)~D+2b(uO)Odhz`*}xuR?(nuYXChH
zd2>wiLEz1J)vK#10Mje35yAe<VHNBC=Co_M-yxn=rwoUdfE#60wk*~uVE`?_W+e~H
zqasB&la>!dKZ%APvac`n@sOK)zQUPC6+ulJlbBl3lz_`T;0c}$7(GV7E<spfnJUSb
z__ym#Se|8>K3`X5*Fy--+rbJ}QCha8pUvP_(qo&GpE$T!0nh}FT+wWYOpMF>T3+3R
z$3f5#0C?m5to8;KS2K&U`-3Fpb|XQO@|}|L23shc><IPZWV%drDAtl#qaRylb$<DU
zcH7ZGwWk8S7buGFXDXKf@DE{JF4jw$YJ{!$4<f~~Q8*NUnXj?QSjb%@xLWvQhbhnN
z@sMH!4W_nGCG)QY=y<b~fDS;o#1+twg$vRx<Jt0b1XBnvWMD6LGtgiWlPK2gx$Z9T
zD-sEI*M^kH6U}}IXIEs_uK)Z4<B0)gg${cVayz1X*L$13AtGVzG9$|Gbs)pD-s=vM
zIqs11AlhjD&Q32Xvzw;?>dq<9RvoUI19Z2on|{ocJ69u;U5Kv*Td<Wa?&4)-Rnkpz
z&-)qUK4kGNjR`f0HBM{~Og-}MjHW537g>db;XFu}h?yFvA9q;GSe|9SsU$XO^nT{*
zLm}=?&L<Ag!J?uYl<*EKekI5q&buq^DvrTYG57)Gkk~uH3j0Y*rutFXP(lwK&v)X8
zjg6O*XW*q3@JOA)=9R6+gv}SLSOeFqaYYyCA7a^g;`7JRh0fcD2V(m8+$V-n!M)ML
z>^RkPyt!^&+VecJ0k4{{(jP;bZoXz--S|BoTHepY=Vh~k1-n&#{uo5mLmIJPKOm{L
zXsI@Fdk$u>3pzMEb}&DGUEd0g;dAQ=*>?1GWtm>fbHnKiQt_pLwv-Qj*COHY8NxR{
zDZ!qtYlHY;47KH66GGxvrZK@PvgPWt!5qH0ZVwWY58#eab@{&QnG?-CDrmU|0&Ojs
zRHhTKi|N|S3}T*r+<-yr0X)H;71d2iZ3wawroWb?4~=7zY`oYWh^C8e>Zt<Ku99gm
zB|-tV5@e)hLU0e$pTDcidTdTg=G|+v9{3Q|^=7Pn=_Gvso1F4_xvp*x$zYztDqS8}
z$M(7Eq}@VYOwb<wRF${bt!h$)(E&?+uL?Xk&4dPp@kv>=gC7H&Y#xZdIyzgt41V<H
zbl@w#u_bdoj?{DN|6;fL=6e1#K)d=dY|eXdzdM*k!Mi^_lP#&~3SF!$&I@&uPQ5;2
zVKrh|Iz-LxxhAw?luYrvbrH6>Jo3G>WC7$_Ky;)vC(qbj;-@{gtk?TL)lx_TZg<hF
zg0r;0%W<h;`*T%`*G^;Cwq7A&Ui(}Hv42vSM*WX|e&9q@OiIxy)p2rqzBvHAI7EIV
zgtMH;WHyU7uoztU!tF8}Yi3%g^A;BX2;11Y8dTi>lk`kHI8kg&8%x@Z<u-$|f%|fS
zT$Z9p)F5@qB6~-vhbI`C=zle^wi(J-ZW1DzCHaS#(sAdmh<AOb<+Ku8cFCyon(QEM
zv{0l=q-|_~LJ{M&(uXoi>fh*~yHIb}QNTJ>Wl`=UJg?pTvB$FJgTthv=vIm`g$X$a
z|KNyIgvf`2<oU1^LlXgp!}FmsQw5^@wx5Udat*OAG(q*zh^kxac3?36x^z<QdF=h<
zdGMg-dqRAn?kXC@td~Dp`Gf(K-5>9`^NFJBUJA9`x4W67lJ1FxFvb{IW@M!l#?5=J
zaBk=*l8q&k5q;&Q-gQT)wXNe?-;{a*K*JeNcpyLBaxI?R&|lm<{%HC-2ML;XCmfaA
zbHY(pfupkKCNE{1*5wIqWorgXTm!J0oIg7PzX@uw`V?{7j<ix=JNl?_*&wG}FUZ>Q
z{1E(}G9#x)EQz*ZIn<EcBb0n}YF?oeJ6xSMv`FLBolTLtP-}b;Nz7lh{e~dDyBoBv
zHXF|p!KUv?;2ot>gE#NE(MIsd*u^N;T4ns1qRZ-BR&Emm6ykgr=9=0q6#7&pk&MSK
z9DbiD^4i2C4P5fWEVuiv|Bi7(w>#zfr)uWW0YMa~+2bYi9(kvp`J<YzzD$ZxBjVso
z(qHjHp4=ru6U@%r9^3+@dKwp4ABS;GY1;L)l~V|VTD&JSq2rGQI_~g-7$yOWOdz|%
z&E<~OaPe-?TJ{j%@k|ITB_B5OGqXg<`{yODc?Bhg3U%-kLRrC+0)$_8I3!4j`jew)
z{&BBNSDX)|3AfOIP<{hacr=M(01ClQ>erl+*kRbJKQh}_*2QXZ9fbd+`Jx9&$ey-|
zl`WCpWIUCxDEc5s;pzuP8_7oGwdNiuue0NKkoo)=iyZ98qFm5d%;$_jD>qyyo<CK?
zt?IXSuBz*nD{A(@Xgy6wT?V9oRhe@dx*p43EupmN{5qb@eJsisvi<h4;ZzuTYo|5%
z09=ltk_N$`^goC3KK9%lPCxCr#D*ndgfWgDy(A92GFMLbdoBd7)&T*xugw&KG>cgA
zX1F*HBW)6!f4nPB@mB0QfqV4{r~jZ|o;Lc#YaLKuMg>P`j$um>Uy{;wVZd!U)r5&#
z!%q+4Ec|vu=GG>EAo+ElR?be8$Rz^Vuo5$0AFgmV<0Chr%UT#a0^tn6SSm7z%Wf%z
zfxF2;pc^Dc=w^~MmE2@200x@p|4DaT2mBpR!APR8Tx`G}A(+k_;bCR5O;=oiO!ILy
z!ZTa*W@tQ>aizG#7SR*m`HsVX#i`E|>mmpXFCDBjJQT~Cc$^yuUYNFKcbJ;Nm1QkL
z*6ZD1#T+kCgiGcwQFz#fk03Pw@kIv25K7ZrW%z*MxfY_rT48M%pt9lQ<<J-Pa>a!5
zT```@wrKuL8SQ}Vn4+<gcn;BJE5TDL>?NXa(fook`nJIVx>aGOGV3yJogb1WN<S%d
zdnP*M^6BQ)s5bXG0iu2%S^elCl#N6Ft-dRjCX_VYM-pLB7f+~4IG&+wVm(_n8j(UH
z6rIz<nq4LQ9>L9VXD~;k&SoL{SD3v4D59Mt(|p;J%Jta+RRN(All$8NJ&W~*>79mH
zBi@(yls<Ov&*`8A@jv-P!O8dNhsRQ;OkF2|1-}}j8H@I9hV-6@Bhu*m<EEbj11&lt
zf`%I%v)lj!gX$(pV=V&V3oev@DN*mLXfR-V3MB29*S^I4$(({|`xl(A9d<31D|tRQ
zf9~b=5>sigqMP*lU}g`^^BtNQZa<NraKnU;t~6W5^R-)6TDD-AKI)0Hw3o759?tHV
zE}YF2yjgOJ5=}YY*>L~WhjVefqeS6~Y<AFLlQR?-Dc@EXEnRBC@W??+soya{L@@p*
zC|nZWUgiBm{WIb~(Yd}joO;o$MfcawPEzW*NdoEO-_o+t_A&Oyn`mh*%(v+(qo+qv
z5y0`TFqD{=UN-9~dx<Vjmpc~=ys{PJ`RZQQ=1VtvfV#5myEwx~6o|;^I;>9c7m?&x
zhPSf-0?TqsR|IALblB#h>_@{qBI`l^$_hh`tDP~wuM=U7h)ZlCJ0mHRUm%pQ&!XKG
zgWCIiPPo3f532QI#0$iu{m1HXGI!bt8kZyA3X{VN7A`E>^s7j7qrauv(_%DN33C^@
z?3(Vu4E0%v_yHqOVjzZ5aD60#Vj2IP)fW#}yGDhW`Jr$1mE513FUjvL6b7Q@88;5n
z_mcLorU|*e|J|Wgqfgas_05IuNMp1jx>nb$AIiQ}D_Z$UYQdmxxZ%O!cl;G4!tTpv
zkotT~E-Rw|PRCYSDC8Q(t+;Z#J$yTesl&0|57zCxRZ9P5<^(_1{`E6~+mV7=bjz0P
zDQLO_sa>y509shR+o@|qp_+2eHC~?O3FBFkQBJ`4FbT?5l#77yr>ig1i@Fn+`nV|<
zMl`hX6!d92m2W(c{uo46F=ho+<<$0|M5YH;?f+FKc`xGOsz*n<{TvdG5CI-O2-wX(
zS<QTwr4TVVvBMgU>Pfo?-rpD^Uy@$h86xLAO5E^>+R_OYI#vg?UZK*7*3-MlW0Jh7
zOD8szS9N_{WgbCajzc?+Lkh!7aCG$K*QOVf)pE>H+Ua4~*{+2>C!e3*<*~snOFLRB
zX?w}OGj76RU)Jos3cB+kHhbt1E!-$qa=bHEeSG#*r90GRy6GeP`<?3e+2){0nNj)~
zy>dDB&C2LxQuzc`*3agc`@^2`{K~MFmq0<~Izs}LCIMismbs9DX7n@k31lKMZy3AT
zwL;+I#Y$+`s8X9qN^5artfE96k5X!L%1~Ed)$;LPlkP5I79h8rZ5!^l=JJr`c@)a!
zg3LOyd#W7CdH&>fZM%OZPs14#U%J`f$anxO7g{;yM9*Q2bW(-tqXwiqXgMQ!8+&04
zk$%`3e9npeWT6-nZ5M76MHQ9MIwUH-?AK#(dGUk(Axx#}<(-*m=;}+Fa#5_7;R|@~
z)O|VXOnP^9R=;_p_2m8{;SscXV4GJ6tv(xUdPL>(d*V@zw<lwwkktpwPv&c+mqhnZ
z2J9tjv8=QWB@OYiCn_9N!o2!|2*Ma?HOA$Z9jT{qEqqFX!VIb5F8sP)Nxa+yeM8>p
zE9ljps`B0MFZcB&$jJH6_z(KWgCF)#{XcQj)f?``VOCC<HnV}&W1ZO_%f8~%9m3X0
zX@PF2V=uc_-P+6F;&X|f9=OP!agbzGmOO3~`48)yre9X7|8`E#Ykxk7Rrx}ls062w
zn_~M%v*2y;EgdhAM(#+wm|%M#MImiBCo-W5U@zhhnQlfw$Ht_L_*|+ZIXN#={;ZR;
zq>1j=@~F&KCRF+jzs<dkh^t)V?alj}V4oka>=EVbFanVKa{<#?(nikh*CBuCfX_;@
zT~n~#6hPJn*L`OKK?oQ?1Hh#*lN0Od_G@nnrShSBM}ko8I!ey6bV<8q6-XdKw_eXY
zS8;O*e~?N3?9tE^&Fy1t9ZxUCbIvS7Dj3uMokYmz7qRr~-=0xMe+EGsG3G&iYdfzp
zN8uplml)~`^bU7L23*#h8Nf^8=cEc9_^lWCR}?b6>H#Q4vy8OuE`j{a4!?1fyJ9a;
z$WYlJWzwTwOr2evwqa1_thg<{aVs74nx~ea?-BI6qM1GYfOgHLQ$yIpekM&GjL26b
zAhfL4|3~1%U6onq$g?a^=3b5Ns(;j=dEluJ5CRHUFTQ#r2k!9+3Pf{7@$z%zQraxc
zwkuqjP!^Xw%DwhVd(uoStrK|m`*xWV8`M%PO(Z+f_r=2lG=JebIz5)zGccgc%pRKq
zNQ$;nPrJC}(L@d3ll0JUd&Xq^tNiZbWrg@dG}V(y?3=}PTM?ab<lfvDqN}SlDAfK6
zsA0fF8Hv6x`o&`^v$%TFCNdyFw2TFsuE$oUWZ*#ee_mfetRcex_HD!dA6hg!>i_6c
z(HXzO!B7?Lr_r{`e~7AR5tqTwOMd*aGnT{-Hy53+ezzySLqosWVvI0C3b=DWGzNc1
z1ij_uDO#pSe1dR1s0cBDT>${ltp>+<+g1LH@_h|1pQ{+SUM9SAq{gf7H8632&0Ov+
zr?7fm8~0Rx(Sr~l`v~PvHap(@#cF!7hm(ovJu`_E(?jHFb5SaLznPb4^ElRqDSUsK
z_i8S4KAcZEF?8Licd;;4V)+js<x|78(0)57&iyT-2^zW_`RZOogKJVZlNt#f<|i#`
zQy5;JL}JaQT3r6{>UFX$mr#G_kb3{cEj*fr=H%d{@Ot-nKcYF9))Qgz$dVXxhStR(
zu2pL8tY~F9-!2-^c8u8P8q@MsvkiYNGAP$^ZEGVGO0p=(*SOA-cY3h?JEfR0EzS7R
zc&YA$0HU{iuCX)Jbv)1Z4=i}O@|Y^HC995w%W5A@3y_6xAH1|o4ZACbuA94mdvUF`
zn#<s^4T5$QX};UJ{kbHuH0c0=ECXF?*kH{XQ&w{!vifai-)CQya)iO)YNT=A`iZie
za;@nMJ&)Y<G^#?CXb!Va-a<<<u}mKdRq`o8CT~8cI8#b&Qu*8Rp4i@!KJET6S4_VS
zOJWB{loBczFSC6miu<BJ+P42xs8vs1+WaV+xS|ce{hu42c%a@GZzp;UI2JJ~vas;!
zn(+G^i}-q|aQJ<p{fcyHa=zi=eeM3C)dGUkQKb?m3G&_Kt35?j7NAvB-0w)Ph#pQ7
z1*c1{>G7q;Ys<NA?r)9^DA+ha)eup^^UoCOj5yW!)wgt4KVr>e#(%B|GB;8xa(cb^
zU^L<-@tUB17{n%9yA_F$&M|r%{@@ICOtmw)Msv3oq2%dGW+p7ys}3;4g?QUy6aIt8
z-Op;hKowF2q>*nFVT-KU_*2c?gr(tl1|zB4!2woU?GVHn;X?g(u3%n!3TTmL7m%9H
zZR!w+^Xo2%d67=7k!D5b^Zci+JlX7fp{2?QT8ZlQHT?q(R)2D60m_x9hOxp)&8haU
zRHs?Y%UgkmQv8A>Ms_J_R0eNl9Ng42|6C+YhrKti?O4}<&UmobuC(VVzaRoGn9>NT
zKL72_a7pr5+DD?pyr<VP5K9l|o2yghyG^IU|7*s&+Y)0{hk1t&PD9$li|rYrp4~Cu
z@fO^ZHACHJ+{tZ1Pq2e**4h7ZPNtw5YT?lFy)G`Y9mLNP6pP&y)z=Vg6+;`HZLR6;
zV(!v{Q_W#V+{?!aiq4TLpIwWh!`9}^-34oivSmr*Q<xxMv;Q+`6YYS)>8AuZM=(7~
zw(che&0?`y+3ho~VDyte(M@I(oL;>conN1lS{+EI57ebCLaCr+S<Xz|J>6&~t~nY{
zo<!OrgfA8OM|#zu2P02wF8Z#D=NQYWR+RfWJTI5Hz!E$Y6L#&5=0p%Xb+#itz&FYL
z7nE4egae-q{8MOc9F8J=>HB?6I9A#9hdWudZthDG`cFQJ>%)a?IuhpVH=92HeZ122
z>jnQqKi1{8eWs4(l|JXw`hP^7Wl$Vn(C+^cG`I#2?(Px@?hrh9ki}tfmn68mTX2W4
z$l?TNad%%93A(uN<*mB!y<Ih*W@@Ht&dlj^x}W~FGJNL#4=GfpJQg*Kf0xBL@o#`u
zW`p~Oha`&o0uK$`j}mk<)P#WOlAY67oF^p$M)~?EZ;6%uyJdSJyyGvqoKcBOs-t_f
z@gJv}B2jl_|2kx^@EX*lGQRm)%wZJfo@Y*!LfMGbBDb-RBmD6j_>-I}28#70YzbOM
zzTQO?zC&?mI{Q}WVUH#sEU_7%38^j88@N(V-dNR-f#%1L)R>b_OiUbH`})0lKZ8OG
zb2N;Ak<Ou?Vi>-?MO$AfKl{uw%3P7jS-Qvga=6SL&Y8~99clsiNYT*Z={}uD-o1yP
zd&S3prHoepW=SB|K++kEh2j$Ps*Yq*G7_Z>4~epu|I_06zWc`8`vrF~?oXMF{7_{R
zD>()ER3$dX{oRSMFUhzb{=OlKV2zTcO3vr|6DC3Twl*O=ifePlW=+-pfdN@#McoET
zqjKn!kkIz=cY2Y9kmzjQune0qqS%LFsm_aX{3`wTGo+reHUnbDjC;4wG3Dip<M9^<
zQhL=c)034AEj}V}i-v!9joE7ZJCNyC`6<C5W{^tfmwcKy^H%eDpRW&|uTi~a4aTgR
zR|?y7wI%I~j}jp%5C~jbTRUb>y0ZQH7G6YL>vH@Acq{YCiHO86TBs}VjG%%%TFHwZ
z)r*isr<?7NIg^u^M62v;yYfug?#{R<xsb=tBd>Q68kH^vskHr`7#)!_#;sv2x55C0
z)L(_KmCIc6RwNn9`7vcQeLlO#fH>1OrLANx6&f{=L4Om}3k&1A1$VuPls)g%>9wX>
z(n!=bSw!F55SyyL2VWO4fae-2RPix&WQViCK(_5oaL<ovakVPh_iJ_ygvrx))s+#;
zmfDZJ5pWwm7qJ#%<-<xC+(R?3)cj~4V8#7(SqUSpH_O8#|2Mb~_yDcuj&>q762nX6
zFeDOdbm=F_=S&}P0I5!X*Un$K0Q%_B?-JFUjMMZL&3}vF%@}~(_p$55;1g4ZWAByf
zC%%d1eW|(Uj(V13<p}Hc!hNno!}1$Rs(Jj@zMo*=ii=-G4&2Eg$`^7`VIAt|p^Ixx
z7nghV%K27?JI%e;ahsqFKHWOmR;w(I>~H;23pj*Y<2@qcipny<PNIu4T(wU$1XU(y
zDMxvC<wLz^<h026(=I!0A3u&QR|(FW&6X*}ZNQ;EA{iHad@eiw+`}NIQ5)IY^g7cW
ze~yK5Dr>cu7a!9HYcW)Gv!1YAhtK}MekX7xYQ#2B5Z_FmQ4;U06dH-<$;r5!sQssR
zwnnc=^Xd<8>f@iGjr&Wf-M9(e7DNqUS3Vz-#$?~01v&FtOIao3x1#U&AsPO5;<g>|
zMo*Z7(777j<ZU!`<0TlrQ|Gnl;|5ud#w9=d^RyZ(rhQ}8SZVxKIKDqyqC;pH-ffHc
z2Vq<N6F-~ol+^Iu<i&F!t8568SH#@p3m#a_yNa)uYcSg;#e+dYt3DqR7RW=g8t6Uz
zz&)dR#Vsz*?9mGju)i<QM$t+#T`G#l#wJ$3eG0^cbWgvG{4jQCFQGO3r<cyQH|?`<
za>;0&Hg}Vvp6;q?^v8ube8NOq`6;KrE0-;im_)O*zi%EXS)Y7JNzSlJvTVMxB%sb;
zrVY>EURDBEW7-Jb&HC2WRP&Ajqz<cV2-~!{2O&9ZdPGQvV{HKyluoaLf;yspBxf&C
zZK*71qurKDcmmGsoD#FNH`EHpd%ILeQEx|Nc?9VVA}yZ_Pv}&SAPeL2kQ7?l=Dv;L
ziFtcxwR8$>dBdO&rK;wur_VX9RI1xXnR8u*R5=!-aCyto1S7}vjqXmyiF)@{6WoZQ
zs4cB<a9OsHcv9q6k38mA=xY(A(cw;fs9rqw>Z53i6GKDj(Jf^;bUcwdcjYAi{A$o-
zk8S;L&pQ-h=L04e2zml_qN93Di(AY%qx5hdcjn5Azym*<;<wt;JNkgU$d*>8PxC=7
z3gNy3$IL(?&j3MQ;u`4GHZ8fZdqRLURpQJc9>6Z<w|!X~`DWv<uag*b9zm)M1O6#v
zk))d4Kol|jjw#WD88uJS`9%Jcqgpkyu^hfkV?Qis(UDBCOwFAj@6Ynm_=&>HtB78T
zz$4V`$*{!F0h)eM1ZTFEd~S=5u&dN;rn5{JPgk1OI_yI&x}kAd8CRt(_F5{S7{~D;
zd@*k79JT2yWAJb_!_7^jIt*I$ewRucw~CwNMjZ(%KtoJUmi>E9>}62h??~S6sJ!lA
zsYSp|{r!s8CxHuQ4Y{drJE$MxL1izW4FjDZA;EGNL@YmGYnol;?UNg@GcJ763+>LO
zr%RfH=|ZHJS5@mw1{&_=B?z$T1-MuJEE{EQW{7CMGWDL>fB|T}V_*&(m+zl;-H&a!
zPUpQ8mWzgG@&U6uPi8&u)&Oco9i?4lf3Fe8xk$eW2Uf%L-PG6I+FKO8yp&!KFR!BV
z5T*z|)TFmcEbIScF742M!G?XK7ABS(s;&U%PCo%_FYAq4!G^Pmj}#Rel^>rC`HNpA
zo3Cu;_*%@WWP0NSwm7BGtHlI49W_vs^4?+WV;plG4}!(jxjt{boBp?r89M9&;ItnW
zW8}5mbyMeJe@jDj+F^#cz7dn)3f?QyTMq2sC@>AS!Z2|eczNWi5e=G{wI;TmJ++{5
zR7TRku%C_6GMmvh{cSr)y2gd9@hRwydHlq0*LK?xUFtHT+3N<`k&cldb!Tt7Y;1D9
zUiuOnrWD=}o!JWoUY8<QcAAFFv{XbB;gWTa<KQL;Oqx<Ut?2X6qziljXwcr>pZbbD
z`Fj;@$(fSBwj6NZEbHVuv0POBp}Q@4nH8Jm5~!@A{hpy_`eihXo;xj~-21U^b8knz
z@6O*|$mbG9r<}%SIhunNTwWX&D$jZZ=6Faex-Cq(H~n-H=uU^Mk5KIy=g*%8UT8el
zrO5CWyCPBgSQUTIb2$FEnyQ06wzkw7L635}3ic8G#pz^qI%08S%EFvTIDaX4%7iIQ
z=~O#c_ciH_=jOC&O7zWjWfI3<J+$lR&zsbVF1tKk{(W6V{n1LN?J*DZuRx8xcK>>g
zxH>t0>*<d1o6w8#{F-JadBuSHHqIRe)4-K{@y<3bk0aIkzrACVgRaJqblonh)!=ck
zL({8Nbg1D%CW5E#d+X?u&*~vJ2wP_)y=?O8I>s(5d&qhbeiDV>>_`LTHXFl^YB3QD
zcx$-GUZ^)&>n|Ko272hJ6;?sG@Xiil6i8=J3z${Uvam}v?<Dmn+4dc-w=+sJ*6617
zuYVps0CoWeBVLo;7icK88vyuR{NaoX)8pxKi9#>!U@SRHZIvj#-crcLGJW#LZfAOY
z`I|zERZbtKwDnc-d=xq^v%g=&soL{~1Q)pf06CFwj#R_Bl~dwlLj|>FF5TSau%oog
zWe=0C@0?uxx+n#7^aHIY#oBHTRMX8YS}9o4mulq)HSYJA6c7Dxh|aCU59Z6Lf*)>*
z*YD<qkamluD#V&S(6C8F%~1n<y{u={%N$2htqjh@ugHXcIGsGY?WKE!c)e{{?tM*s
zMk=d(jWHY8L8{QIZJ7a`>>QW(-w+Nbrrvl|;n1b&_Xj+(_pu}n>I{x<_&vmErPr;d
zzaWt}-o4)|F+1c*soF?86Nd~D^DZvw4RQs|l+mc)Y|WBnACGP=U1+!;t>@$BV*+-U
zV$BubZ~6;l;`mu^?2$l)Spthk4a0bRW~Fu<<<y_^`s_<Dr)>;3#2=t^zE}Tb!RmXc
z%+Df7|C(towuk`YcQa<_3)M<%Rz8%dtF3vz!`30V2d_&zQKu2jNV2><N^c>3{e>o^
zddESoN>zLoo!YVAiuS`UkM<8W9nsnCOG7Y^?V^iKmz^E{ys$8(S?RP!$;L{PxMPyp
zoqxwMRo-fcZ=Y?c(+EeCpKC_L{b%X=Ot5lWe_zqvsQ-`7!{QXX;>HZAa?uVF|0w8k
zU$r+TMigmU`jo<&WxRZPx>17hZ#law;Ncv0Tthd2!h1N&adotqe=05K`Y%!S<KZ=O
zAt$gPDF4)7U{F`ivb;pVC*$~l%>QEgi*Gb^Y~^88saEbx<&@{T{96G_)4#bA6By0i
zM~W0dU{XiPNb<m<PNqbs72c~$_`a47z57R|5$TL`YoLwXJn{Hzqw|5saharEhpp<?
zbZ2=v^oootheGdHY5;v&!zTB&uR$0XXTQoMJ@jZntAFwhVy%QJ@pCF@JQ{!WaH&(U
zC@g5enzma$D@@i@Wp}7Vi_nkf;>aUv60VXSj~%^-;}(DKKTM#@`B8C_G9aT%Y?(OY
z8-D=KXTPAaT{twOc_$~}{xKFqRoLe+3vYscvvPsSIOShS)Xx41vwye-nju@BAY+Z4
z_TSZYRc2x!?MRapJ_N|eVbopo6exJl`kYYpWD!DXG)(O#5Ek{8ygq;dd^~D8#K6_A
z!z^vy)vS`m6C(ZYAJ5s{yHkhfUjryR{VQJ=*zeNN+_0EdIqqC>HSz?YC0jUO>OaY^
z@c*0al~rz~Jp3~Fg-VLk5dgPp{~6Ib*#TT+X|Nx{-YW|~%n)(J@JjQvemGR<RY&yy
zsi-QS_n=$9FfCPEW!^eqAx{j(lLFZ}OA8F9n)mL)cl|pOY8%v(3H;++EXuTspY_};
z{%abY8|=LJFO2Vs@U2&&Yi*Cmks0$`obBw;xwD2BkrC?NMp|f0MrUkTz~D5?s9Dyn
zf$W1)>~I9*I5H}Hql8BB;TVHVI1H{;`t=f`@=sL^nIo>7^pV~E5HEOvEv59`q&nO0
zX?e24TbQLUF|S6AongJM5RQhXJ2J}Y$#Y()sLa5SZ!!p$ty#Q06mwTB5vt{f=L`MB
z8?;nH4*XKnW)tmU`EQQ1MYNkWdQ!~H7n+naJf9b78e5>u@0Ir+0X8!aBC^#6O8C>9
zMj;1LagGo}>QLQCN@)f{9hMV1m5MRXi@w)Z*RjNR2lLg=e9dov5d5eE|I1HG0pSD@
zI|{4Mis+=?`+O#KmNCs#)EdHf_YrwcH=;S7A_!wc-G{<04z;QIKUmk`>~Tj?y-Il2
zIEHVZxzc$H(AG9@-))}Z+N${WhfwDVZ);|52iv(_tYTp-TkS?el5I)cV?=VTmpmJx
zc};9T<JDa?#w1#N6IG167?Q0B)%(wCj=U}<b46^bt=tpSGli@<cuOb0Z>+(MV%(*O
zpMTtwam*B3*uuUE@VNu^lVC@l%<r0*iEAz-dIqw+LLG6_q_r_v)0raT%e5gm9Do=M
z4LJhI9h=|UFKbdELad`3$Tj7SCLKQN_a@N%UURkSk%Np_YSkHT;P@MJ;0fULpH{Eh
zY0<Y?5_d}OIE})KtcmTnW(+`5&xZ&&J_C1kAP#0W_E%3qxzFEwroS?%k%V8LGle;I
zg;z~~dfzlwH{Hl#8eV;k%(Fe(b&ROSs;V1gd8DTuc!brsWr*Gyma66TSL-}R@Q-G=
z8=7pk*)WvlWqQ{GgmSGmwu<U4n0CCgB9j5Ki%2#1Y}n6syiVH0x>ycl_3y1Ki6&*g
zo@V)rfh6d8y3h?>6!bpUJsusN&ts%<EXT}$j<|{=op8vRjIxkwkyukHS<pIs7|_ll
z;*GYLkc+bfx$b@^+EnXntgt{^=lcazlg0B32yd}w99SV%A>Yies`$tIayh|vwi(0Q
z3#+EmOoXJna$7kB?O^#&RyP3yj~=>kORxAWtKI`pFZP4|TL~Ick3}tIXDxXW*#k%~
z0F%Wj1)I`)NcYIh;?#=FUS}LTBFAnl2<az2d;X@j>mS<mOnW}@wh|i+bv~hkTkj{+
z{!mwvzsn~0Qa0MVMY){Wxr;%CZ8IE+zpu~%N;m4XN<O^<i@j<&BIH@@0IK&d6T>aB
zD0f|{D6ieSe(S;uW4`%N6t#;^$hD{7Vh!le84+HliwNeDrW3y%4fn(Z!J+CXgk_o?
zlEgd@LRt=AIB7iDp${LT72+w24mt1_*9txF9oE{fBgjiGK%NWcJ0a()ruDP~yh6!!
z-z8@VpA$q{{UMq=?;00RrFR&JOm2$Zt>kMrqkh}G!A@gejh}{mfyk{7Z=FcpSJJn7
z?Vu7l+U3Z==(u93^29lcu~jA~e5hs{jj42Vx(0KDi9?8IyEQ6pD5}L;T*E|f)n>r^
z=3)M#NwK_T3EfA;yH_)bU=wVR+zCLw<y=|BP-B`jM#+8`HelgnV$OD=^Z?yU58YsA
z`95XO-PRJRG$ul1bXj02M<M7WuTlL&RGH{(Xh3#yo1az4>*$RWK%!J`&$M}^`@`^E
z*LnHJ5?Js0Jc$JLNQq<szU{LX^EOlW;@gZEzG2Q@#6#7)nuWv&#%!DABGFXkbn1c|
z?X)X48asUJ3=oWDUbzG|5zDyy@=278xOOibNTk_z_I>8Hhs1c|yH~!!fS8D|D058?
z-f~~^aiPZEn<7cZlxU<On(;$JdXxz@xKsqN!2B5-t<xiW4mRrIx6F20I;T3Q(#Ui;
zyyphb5p~TgyuZ}=<Y!R3>E9p5E0U#sjl8X0Z9qH&7*+_wIPBNXh&kLHI%iP1+qrDO
zd5zd)CY*C^ryPIKeql_Y5@U_nPog)rTYZ{L2wuGRZrg^Ph7D|Ro%;<Bk>lYObd)@R
z&*9hvgtFV{?#MASoOBtH0f9OE;T#t<Y;j?^DA4_XKVUn)m4Zk8#GBRIhxM1k)%gcW
zVUoFqQ9Qe9t7-J#I=!=Zc*(EiTIw@OCS5iEGUh!_vZsszV2|@4!bidxJ0U-mByJ02
z4I&=Y$5U3Nl5ci`jL3}EIUb5*nOxBZ(%qkm+7qKxvv78;39{*M<;C0PAn^_APUv^?
z&T=ipK|nnWj*4@y+urdEnwGV80^+kA8btDV<H=N72hx!<lbm+3v9Yt47hwOF?VTW%
zDmN91tG2C5fqP!F<$KFA<)g5|q;1IxF(+~fFKl@Yj@Y=FaD!<(^y$uK1?kET0@Rqj
ztLfRXZ`TotS|VH9{}@k|?-7DhDuII3-NZ>RpHj<<eSKP<X*gNCq%5!8-vmZY1sbYY
zCI1Pn`}Mpbt1bD`Ew`geblk3Xa7Z8X@PrR&LBN!QG<6})sg@~3ziblk$=4MHnB@f3
z3r#|{*MFm-wS)gStczUC9Z4Pf*Go-tP;=Q6ZqI0ay66n{6B%hFRrGcjdbFP3y^LqT
zvBw))SZWB{(8w8edS+wL_|Qa1nM?k2-qK!?n{gTXhToSuF4T-jO7;eqlnhr++lY=h
z?%4ct(1W~VdxF?Pw1A&JBEUgO)|Ow%DG~S5Ao%AWd2E@U*sbA>69*%3QaEKQ$<*n)
zot<PZ`js2r(Psq$ngMeJqhg^tiD{Z_niZs%MCDljjeSfE{~S}?@xBee)oG5zSeT9|
zWZ{f#aDL*8f^#v>S|O<D`(G`4oJAb#_D#=Se}8v2r{3RB<jeRU;!hJ3a3I^CMN_UM
zZYot4iKu4Gwy}J*FU-&Wg{F-C8z}q`H0kvpLI7(gf2Qwe3%#cHu+T-yEhGJf{T-MP
ziswU~%MqIVl>BWhvanG5r#^2tY?gsUzug9_&;%*btUp4`=X8rhz|m+ll2I~-a`{(8
zf>2Iq`5)@OUdyZ+r8-rJG63n6SkD#|e`6m-&BqY+xQ`9;xkT0l`u6_FG)>wu6bOBY
zjRINRSbA=ZE7t#a#}!}x#c5+0Grw0G*F!jZcu{fU(B^9i9>4u!sV1z_@*3}U>OhU?
zj7#mMn)+mAK$&17o4AVUb#fOS7L?;bfjAIQakj5N14t5lj068N7>;f_6l}z>QFUvs
zz2JH}cFGhyEvL8}gq{qxzAf|Q{IxoiAzm)hN~UhL`J|>z>XIO=yvOTz;mmW`8~QPg
zUh$^Qs^QEa_#8`$50co%-y0Z$E(%nP`o0-gQ*GLww`6p3pevdUa^%shE@A$fsgzo&
z1rB^ynLZY3vUHN-rA2$JZ0Sxzd3rO*U^v}G>!0?FnSMpwOCD(vg#-jCnrl>IgdT``
z;47kW9;Bb)(OMl7r#c3=Y-07x^rL12gZkJuZRn_^v`csJ9ReYixZ*5|E7GtsOnW@|
z%?*0=xds|Hyx$-MSTCRP{O0m*qR4+2cy=v^ZWFyDnv!2fJsNzha}d9l)jjI<<Tad-
zijdFTHr{%v9S|Fx$sGS6H(TN+K?F3Ey=sFGABdn->Dx-CtSd0|qj9IVA|2+}n593n
zk7tFpGwIg<!8zoIz%6Mk1d7XSMam5tkXeWPRV$Muj#BB5(fb(Gz-WY$bA9{8kQ^i+
zkdq^~u}M3}P$D`z{$%<OmWa`3hYQP_on-AgW2M6`<ukgJkgc01U<5=f`?w3Me_*ii
z7NVXyW-ya-BGdgd_#>Ys6QOGxDkI%k64xnuZ-%0DzF0m}?I^7UepGA7*H_d#a>R2O
z#))L!oLcVz+8d`jRpmEHbQt+25mvcOQv%slu)&kpt}>3bR|IaybFyYJ09&xf^!;Tu
zWqNsm!)4bM$vJMP9ieubPPO4riVs9AmtrD+^PB}okVTm5B48DO#Z0)=@BONcA4kd(
zdtJ}J^?(vuGYqrp%~k{+fs*%Fki#=Y+%u+96@xGKF4)Kzk4dM(P<=lcWY!KpAyW4n
zj#9o3)ab2|lgD11u8kE=>9k$mHns)GX=R}5YbIhtDL44o>%Q)mz??93h%T9(;jB-5
zlb7kyQAsc7zZb&ttPPbtmfS<m%iXPll(A!}E}EC)CA;V|f6qfEby`5&1-<x{h?0=Q
zoTBb=+i#;Xo!vLdPj*JTdd%en?r-Ke_hP9XJreVGUBahY?l}EihBtmwr*}WcC?kzB
zea3+?YlO7UB1ez7`p70_!nkEicwvk{I2=y*Q4>Brd^+Yh6+s4BdED@QU<Y&62I(Z8
z?fhXf`;P_jp&0v0E3eESGw8UNU)H^I;WrJVhTN%`e<?=Nbu;@<P`z|B`HPk@m4Qra
z&-OeRwS9=+!qdTQuyMGuzb>0!>U_<p@9EEzKi?n0*|hlm(?P1%z*o(#PFsSa&CVY~
z#uh?WELv<F%HGcJ%;N*~3;EE#6+(rWc>EVuqB9;$h-1K)XUfkXg`7W0BZC=|fvy%2
zm{t0y-|7RDc2`4oInq;|5<-cYbj2`Hu#I)njMu=as2V>k0bjoTO#ijWHd5)IxDQQL
z(#{LI*Qhu=cq<ZQ{oyP{tcygs%cw$;z})a5&uHMn`DV)uV7%M9zUH4-Y*chSA}qW!
zOfyLxs6bV-gev>%!?vv{Cs_)HNd<)P{8#Rc`1|Hl(V`CHXT*=HWLzpQuK_AC?}uNa
z@p&&&GNXf(B!M)KXX(#L-I$>1q2IHtu+w!}ffohQbI--<3r=T$1j#?oe<9)1xqrWy
zz6H(g%=!j8h~tI@wXwZ#i5xpRkWF(3(fVWSvQzav{lv6gY(w5hkF^RM@;7e{Q);?M
zZguj3W!NgGO7BBuj*tbW@A1x#Q)WyGmF7#`Z5DGjs$NmTzNoh1$Et`mz4G}=cCx(p
znjOw+0JrpVQ4FWmI5kz)^NtZAagOXLnOIuJeT+iuGTk|SGr%l%-xO+DBD1mxp3F_w
zA4`(`GQJYoBLP0!wG>#H$=0hHY^>sh;+|{`lCr?@w{gO9Y%7{;zS@W<DKgh^>XkqL
zZ|-CmBJXlnJg(yFLV>O(ZmF2Blp!i_HEuUJ+=hAZ+5HtgJOMBRKQtb$ghRO{cgGHB
zo4FJC{le0Lcu8=z+&7%YQQnG@1!@g<jl;&3f{x1b8y`L*o(*>Q#a>82TPzNxMd~6m
zzV_1qo3RRD<!py1t4L$Ddc5t?bURAKK22yPRaH91eiatYv*XIwb`wUme($f#XCxj~
zf@J~GL}JxEslpT>rhWfKE)mk<T>ju05VgfyK?<?KXU56tBM<W#)?^3%O`l^nVoQ}x
z!zJQFzLFnaJftbu>o2dYCTt#SEMK30Sew=KtI0m@xy`|F2@dGr468;wACN{-X|)hM
zrOhHO@vNUOtNCpB?%K=Q#RVsB?r#o~@jXbN!dG>L{e6JW8adlXtrFVK{05;&{AHdF
zbom3svk6bmQ^o`P%2b;yuiUfyJ89QTUmkJ7ij2Xra342j36ECs-w_rDN^{IrPia(z
zfbp!2S5p6bz;F~tk4l={?6*f9Ze%`txl0k)@T>#FtiZ{(wCVPZaj<hhN2CCS=v1Yw
zmIe_KEA=}T1ZJokK+6CEz-D<=Gu_%vC7WUEW~0&!G3tIypctC`^f(t-g<ds0rny51
z$yH?zM!a`=lNs5{6MaKN)#R`o(RzFF$L$h*HCxBpln2@8OBzoIr=5IX+KKJDgYYGG
zUD2g=vO<7Q<sUCc63_#d?7+41%r2y#S!3H_vlPpIjf}TU2WzLv#4^Dc)$T*Rg$t)I
zpQECv*}nbU$<TVn?n)_Uk(UV1UDrlIjog{s!dNr*(etczFVnGWpRFP43SSP9u^;F-
z>iAwUi-K04*UH!S_L<kJZ=6(q#dGuPJWr%AW_!cUn%1L%2GOO?m+pY~*V#>kiyH}K
z16`JyHDf~F#SBx+G7AjJhjv2MOA)x)r&}-%6cU0LetWC6<7?X69~kd_L<(Ktv=(;y
zFi$$eQaxK#oWTCAv@Cu5H0NS1Bm?Zb5K->JrEZv)z?q0R<!LVvh51tbm-MphK`{?Y
zO^wmgQ@8`k>v}EaB5}`<;Dc<;sO#S8KbZofvr=_cIbNGR?1k-dJDg|iK)MSA#d0OQ
znbt!|gT_!TFplkx`LdL60+Kmzr$pC7_b7tUN2mc63(K2Ep|%thS`oUea2K?Xvat(c
znOR6Yvqxp4+LLrSKNp%|J=-N8i|=EKiYn3G(2~c2v`f|FTCRD1_8t!FI>+Kkl(Q*i
zz7VXI=71xPG~0US4xIU(KuFXu?j$^@Y{6VK)SjC$^0}HcCQPqJp{`_~e&@fs^?AMF
zTE1x#lfk&|G&yeiGkQZYOFR!``4ma(0nn~T-AtX1K`OngAG|!JOK%h4^x1z*aC8AK
zHb=yoO>03KwLkH*4jevnJ$LPgE$n`Zj)sOd67UG?3<~W4yCzvsYd`<ya<tRaG+08g
zFkgma-ao9-#B>cS6D2ajew&e^z#We7`|TK}3kS}fd0VS$x6bEfmAbDP62V*_gER_~
zI}XXw;5;z{Q5!b?s^7Y4037%95|dTHk@lXWN9ZboD4wHwNI5$sxyWP*EBRt!n23^k
zBnFzTS$zTgw23~B1B2d`94U>q)TN7-pzrF6TPD{*^Fu;h55@qL-KZJ{LqS#k3YL@!
zKtf(*q^Wk<&rbmxuQZCyU<dkiGh&*>&c;PZ$4Dy?U@CXfp@B&P1eiU)^atXO%9iwL
z+?DNCsp!8g?i7HeeMK?rzLwzR<`Enfy%FIY%?)6<S>W)LP*=TwIusJA;@zZg1VDy#
zG#xTr85NVxfxSeiqEBr^X~Afai|mV)fxsQG@G%2f+-8yHp{Cf9U^1mLbgAJkIiF&&
z*>R+GailI_^$}&?dA*DtFf+tkWUtd}aBA+}Bq31S(?0T=#m;PUZNO9J@WUEOrq3<^
zYc;ewu0w))G;`vY)8cGwlSSuO=L)&KNgwvBawlVXsnV)_AIq{zCa@tX*Fj#vI~gRw
zHT4)X#s?JTnyLeI<#VdGW)4a|rkj^FN*Rqln+k@Kx)%;UptHtPiT$=2Sh;KKSmEK=
zrADhz*5C-Q>)a$Jt1}MA`FwH5+(&9+n7cD%e|dBC(1fd~McL<x*?eM2emg1e;&&Mk
zFv~+W;-l3e7szgW(~TFt>t}76;kuqZli%^&9(SCiv;j4Y&x;z-eOrJ#Jz|qh3|xm^
z!N{UMsmHMgU3P-0N5k;K=udOVrMhkBv0Xd@pPR1pVd-V_9sl6;!s?}CjOLl374q?Q
zYf=_n_Cjqg7_Xljmj9)23N-3)vF>4UQ6Vs}d&3=()1X%r0Vg+A%^N*bP_HC_&@|&8
zg7ZaN*~*^;6$-ZVN0fcs2uN{DFfxOn8?+qjZIjDKU?H!QW*UW*s50-a?ljsYq;QOI
zWqO$aUJY?jY0#y7VGwcM#q^PY_61Asjep*Z!0PB6XDtkKRBM9u#z1%>`?NRvY<!f)
zEML*zH}RE)Z?U?N+i_k2DUScQ!ZO7?I$;k}$kDn3o64cnr*AHHWL^Z>kMZuQk&I`t
z`w1h~@|kDDw-`7PP0+3^^*q0tr<HxGe1idE-azx)J&I!B6Oy#O)z>sc&=*e^CO^UU
zn!7kUlMq=Jnx~nX_8hz}=t3VO&7|RmQVe4djscrG7O5`FWu*&@!t#G0VaVfmJt7^g
zD^f4&7xD(fI@%kAmXj<)97cfA0;rfTQDFp@89gEGgJBpSiS1XI=SH3r!AM?c8=(?Q
z9pCHK#HZrEgDaikEx!9dXLu7|-A@HGfG*VAkN096R|zqesfD7^ZiIGWd5@r7)7~)M
z1q=GA=ULyvdBp-L3p;dDIi#5hfrp}&C3?D=(XesF@tN1j!4G^r9|2rImwbuE*<}y?
z6t9JJFA>Tztg~Tl5)#VFPIj9w&M3Epo4FaZS!&01;I0JLYvnCt1TMrx{nXL$*;G(a
z+8IkFGirZKI6wGi$Vt^5Ja6Zh4Q1%}F6EOPQOKvPtwenF=}rhp$|nLq3kYEFNTty`
z!+WewN(t&gH)}}wUHt7E5|H^TXr%!CA_!0CHA4~fr8$EUoP^-$J^0tu7IX~dBTPl`
zTh=FVgFsbaaE~PPxBu>wm%n;J;YD|h19$o+-BMT3eE^2<{Ymd5Ow{3*ks~!?NCT-g
z>i^nE_DAjjOgnHm%l|V3E|2yQ!|O==KYPKS+u|eqUrR-xE_YVEzKj2Vp4QSU9ufB`
z{T=2L2;~JK+-Oik+EY~cf9;~~q7123uBdNd9aB$F55Uu9X5)rLJ*etZAQp&AFVl*}
zNW8x&_r;%;&miYy-^I;qXnb7Y%#teZ>Fi4t|K(K=EnW=}y=w8hv#VTOOU?h@x9|dN
zcAremsu^R54}^Qfi~B!87%@n1(6T4Op_Wf2UlvGmTERgKpXF<ZCMAB_<_8X>;>@l_
zyHXFbyMQy6z!FrEZkQBe8S(x1VOXSpt80i~7&K}J<}Zcc9eHgj^-qSMr<$+z-{@-z
z!?ka69ZakL|D*Np8>m@HQ7B3es@RO&LK#llW-ENS8FXrUFRBuS$S7Pq+=kZI-w6^k
z(re3FG<^pRf3A5i5uo;~9L<KD+}YKouWy|~eR=0(FHF*2IWBnON7a&^<nhtg$1k~Y
zxd#gk+}olHTi=R>jYYkR?Ru{0vTB;4-Yw97$4t8o$c!$5hW2eJd8f5Pq`9d+g2Y8L
z4>j|muZX>04bM+<!6uQL^%-M3b?=Y?em<BN8EP#pqRy80Qndpu+lO}jl1AMfaz1K|
z@}2Ct|8Lw`f_`=5fOdW~fT>;^)qVojBVPfbkf;2KZ96n8?R=s}r}>aP(>fgU6@3!C
z)gE!m%5a>OQz=wYGCsD)O3`rxaDfwI+F!g}P@am>oR2iJyFGoQuS>Eh!nH~$6aNqd
zptny`x%2VG$>8AC2U*d3uy~Ps{JE-f;&WI_Q@1|r8QA<e5Zumdx2AVxx0>PG$>8jL
zNiNdlpwJDea&f=hhS$I56-9EFO|MG=FXO7kZwVMX)hg&d=J1i5isfO|tWMXeqI6}n
zhx-v@Id6>w5McoO7?VAt`H*-Ez1&FW?I(W)3%Yn}%Krb)pK53U``+|Rlxt@XZZLgf
z)op$vf4c;$_~Bq~Om2p#7qUJuaPqh8zKizzDuUg5@|BKkg;?7Cy<2O@`kKnKCn?o@
zot(hr$GsY%i10GTGH`YOZaNvU{RK|nD{b>N{Q{{q8?##N2rkN-b$hJ8&__#S%T-%i
zDR5{b>RXo<ZQ1^oa>zSWxcrP+WkO(e^9xQ_O*)!oXu!4&Uh44S1c<~~+-$L^Jh<~s
zx=6}ZX5gz9*G(nWG5U||6+O7z9hu}@GpU67>)VKYr^&x!9aj%-$JKR49kueXhNerm
z5FABK=x%=1_+Rs}KVGMN5vH#QsS)e!Eeze{wzb4g3)ca-Q(&i^1<8yO@pFsZPgiS@
z+&HbNyhVQ05BcHc-mjSaH!L=rNw=N*jhY;K3X5FsUTh0EfN(pDPJpsS^|_5+K}kjP
z#+R3rd>|3*v>7T#HaggJ6zS&@Uqt+i+xPBkmyz(=lV;-RW_kzGhn;O$DA+{VTRUg!
zR+lH}YxvHgG1|!En`PQK*W*aa&gwiHOd)zP>)szX7?ixRWCiek1{>~()Hn{x7Q?)T
z({p+Z4e+-H1YJE?&F!UtB$w2%_J4oP3zS6Cd(Nf=TA5aj2%|-n)a5_6L?p4gV?-aU
zNC1V?sOzlOffd>{J7cf0O!9hDhF&|hetvslQY$pGn?~-nOQ2Nd7zbTeptVYnA5O=_
zcbVusyL^B7c1_BD`mB%)bpn1YUWRA~V|BbsA{UeT&SwkFs^#M1Sv&qn(+W78&jPo?
zWr2aGS=kVeCEomc25F9s;7gK2t~zL`*D1x#Zi<XzI^*-<&G=iTk|-MHR&G<-|1}tU
z{jKziXyL8ipA391zv42N%d|!t?Rf1hR2s~mbN8PT1~%(xIrh+$b&rcQb4d@zx#{Q>
zx9zF9#q+$Qf3A4gyE&X_QVtEcd9PAZ%8F=!WtqiKL?h(_NTC@xh_DoWZu*Ez^hEZ3
z{A%P%y*eo)OB$*LN14#$ifPiO9dfiNob*+?$de%Pv#qVa(SLAu`p>k;(p^M#(9lKb
z@yHluI*@Y62X+q??}CfSKf5SL_+Zai3b>wJ@Y9e#RhWthnh|l@2|CDZ|EH&d-09%1
z_rKqr#(l8OR9f}&_uX(GP?F8VJJk+Q$r3?NO?zZY&A0dVn!nhaMHQ7duvuN*pfY<L
z`s$iJ%_;}FdBcogA2X~%gI0GVVYmDa*hq4nyAFn+9+&Ne`f(eu&@5H+&hMi>7{Sr^
z&?sfC^c4EZYs$dK{Y2pB088Ssvb1?&X5&D}R(D%QUAOUIn8jqdb`^#T_!Q@B2aUcz
zn^=o~_;0+_l>0|Lr{rdLOtIkG2B#AZwY;_Qyllmor+>UNe*Lc3YqS^I6>5F1B$=X)
zERXSGpHwG|2w1d2?Fe}rtmgJ}yie7^lWndp_rzm{pg7w2n7Inw_ce;TLK`vuTAw6z
z`9EUZ(6g|d5yR0ULu6#&2eMp~(!Ji4L>w%g-QuA#GI*>k`ykiqSzFV<tD3?Kar`_>
zhA~U(K?mvw!BQsffp23%qBewHRfQK_c*OY%&ff3U^TN;h=&oX4Xkc^!^8Qk94KxJY
zUAcyCi+>yo2O^FC&Xo8TE?6b$?*A(QzDjK|oSSp?8anM<5UIu$RE$z5Au(^t=pR@6
zQsmLEVU2rfm17h`H#lJ4Z0F1;!u*`bx=s_7?fc!1ac>Z82A|UGAM9ZMY))m($cFYx
z_VC6BB#On6J1D&T!J$h3p_a4RjLF;#9zT+4n`Arc`&-j0)Y`_Gn8;1X&`(Qt?r4j@
z2>t$dxm+uxQLdPiTDMrQXb58SmxhH3jUoH*LIg|j|9GSly&=;c^ZKpB!^r69=zz$m
zkw?iKoSm||wXM6*Dlr0Nen<-4NC;DQRO}PKH1lY!++hG@U|FGyjf6Q<LeTbIfMeC`
zqL8-uuL+#(SL!5fEA^8>#}(_1M|XI<q`aaRqXCk)=FIGJm$ocyozcK%2%osl?P*4*
z1eZ}!Tf0W;!;2@Tb{YkVZ}q_Jc&7g{j~3_)$6No7<D*SuITgd_eWd%%=opAVJ#gCG
zh^4W}=07FG4&ps1{xZS7eaUAwTEGJxT@r3c75DP_sqB}LrE_%55<;I+@B?E()9vF+
zt%Yh7t(=&gwZ^uuMD4-)CpMm_ruNrP-@864Rt?p8EQ2$p0|Tbq7Km%P-5aG6J?NL;
zb;RS9X=UHz*t#9#5%jxYE>Q0|&?1%FZKnePVNYn55{pKJ@?7O_gm)*B)uZus-X-vE
z*Eb`LAaxGtlsLeWP~VBOG)VOEb{VGXMh{d+lr7e?6cj)<-8vVaq7cucPw$4BP{~ez
zKYRI>c~g>3#J`dZq#|6Br)YT8>C!*gA{>D#K_@%K`(Iy}$gEK>%6wv7cSkZzI0CFm
zxC3G_^lk5kq;+53uraV_Mx}fjUcRclex&-#f)NsJs*4W8`1E3m15J`30O3*f)}9;*
zc^~jutL5+LrjWJHJT5I{_Aa-<xFnZ(E}B2*=Vz>>Yz)1%(WQ~KiWO7+`NUo^T}6=x
z)c8F<Il&XO%rKEF`Yx~))gAFXtsz}UwYMa#@$K!}iL%N5VaYqASWm{`QStw@c^2s6
zPD~(q@5+SzPT8y{bM~Hctu05AkcI@8q7IJy%4h#@A5DgT1!?Px#R6R<5j<%JL&u`t
zseB|_-GYS3ww!6ejq$Eo;uQ2U$vVc=GP1*W@0?wD&}r>8F>2h~c-RJRZugVjnRe<j
zXbLS_d~d~V-)U|m1RFj3yIUr<4K<2yZyVYF^#1`~zVUx8d7EzDUG!;59=W#q+HE{9
z=tLHPcpqLzpGe*GywokdG>-4E))k)2sOI_-nfj#v?!-P2qBpMWwp4~((wSd>d8Nfu
z^8ARj#H(?m7T%Jup+|cPk<<i?M>MK@Fi11g)K(-VPyno+W1GjdOuiI(DP&V`5#K+-
zON<?sTry@0#qzt{!~YryyFADCa#cDaQ3C8_x_(Fy?-Bdl3dsWvLK<#xy77en07NGa
zK|2>-7{^a(VgxVrh<d}dWT2mHAeb4`W%}YQyVO#~XXePGnCBoOk@nwm=+Fjnq8NTx
zy)KL3swd*V>05P>)hMM}zDQpMZ(-p{cKY0DbK`(m>+sLfZA&GKTX|s5A0k53$@vtc
zt~#-W6U@E}iBr6jBSJ9ey+@&pzF`BPE-7zzpJN**BmBQbg4=(N3K$k=amnv3732M%
z;wMgE{vo1=n$KgmPiSm3lfae6pR|k<s0i;g{C%gLT#kh3$D8O&fLY&EWlT#_Fay2j
z>g`>_H{p6m{1x|QXTreqseWDewPS_ssO96MAjthQ>r(w0hP6zlD6NB8k5M=EH+Jwn
zm$fW<)7fA?n=4S&@>OaAT<U=<FA_NJGWmzsfl&_MJ~_L(H{N4uAe%fyEc(k`@M!20
z1Ee0}63$VbB)p~e8YR735pDozzSZk47oq&{S4q=9>T606PBb&z6dxLta_8q~tMB#S
zbVY}Yn;_^cdt>fEFpjB}2QHqE@shM3v_(WO+xbaIZsChoQh)N$Bv*H+addlox~F5;
zC+<}2!SYp%lZAYg*O_e~mtBjb`?%$KkyDtfhByD&d;R6LkLsk2Rs~5qpIi=xue(St
z9^*~49FgcMF&5)(f^l^=cM?V(BHMNG>fk@eEG)$MpHeSOl0sK)l?&DA<f5M}^yt%d
zfPgl^TE)#YkHc?uEF{5CgzVI@r*(<s2*!LDXKw<s8wz~n)s3t>VsBqdamQ{0TLgVX
zm-46qW{VZ#KKtYLz$F*`32+C#r*3--mwT1|?jL~H55+G(n*6LK&zVZU>04Y{d`c?c
zD(lbikTF_*)wT*OrN49<edGNJIfCVSE462h4<H=-ktJx^wkOjI`b7<GW<A%)R-1I=
zZ3bJ$!RHrOG!G*zO8XA?*`9PXyTb5=%^Hzs7O%xXnN@YKr65_}Luh;}Df~=8q^adD
zf$7jXBm#%z*<<?I&5{HcLE-_TUyH{NopIAvF+?veDb2?r;lWTzNz{L(QsPv52M2{j
zD?iTcHJk|fwn7~utW^5^{Tp}7K^%8uN?kb(#+gBey|Q^qclu2W<Wv*03E=jy4-!`e
z*Vdvgc&Y9~2eaCvnrZK-gQmRXjfxzvCuCNF@{C^iXPehRhzI+Se1k7Tlj+cd?J$!n
zX&~3{24r5(DaJMYqhy*;MC^lTV_29OzrEX-6RE03Pe;T<%~Q_sUzTy9j|Dxm>zT6>
z7$sKWnZ1_?bW+~Q*SNvqqU!bL;LllNVYlnj;R_-$BjfT*GZ*AW(0$ws`_XipuB_%`
zsV1rK#-P_hsGRo|O~|!hd_uW9<wfm<wZuQ|d+Db{B3HL1exjGFgv<u{WC=a-N<pWQ
zljZSDZ!we_I~ctfT^<ii>3d9P&s~qjlD{*R-;HsB^SwDaVw=~BZFM}4f~?hgOt$BW
zQcN6_^R7OVYh$Cg`d%Jl+CX=@SEiEJ_;Z5FYe;LjziBhpy62*ayw!29k4FE5xxU`Q
z-2SGNWMqzV9%5KXgQ-+ZyRlB?mB$;<`+fnqG8jgy2g&{X<4n&%mdZ6s*#1<jQAO@*
z!-qL(y?3`Yn_FUSGG*C5;$}p(mJhCS?@GXUDhJ<rU|)0HrEO|ow=pcr`22t(SEH{G
z+TjC9myqyrvmC?;h~%^;r@PsUAA1O7tQT*EY`f(5Jj=TY@*&6aC%kRdthZcINUL7y
zhkq3u*;7<L?xghxKjW#ZS6dw+$w%#D@02Z@!uu-69oF6ci_f7-8e|W#g);uJdPa7l
zFD_LOkf5aeHrD%`E(8kXmZ)u&J;m#K;_?tv)-$3pjoo3oKA&pv7xQIV^`ht})lL}e
zdfiXvjl+iY^x=Kj#}Y)4aDZ$5?W1}o_?{;b%WN&+KxMn5BIp{h*8W2_A{b_PdvU(}
z0mGL)HHxs<tVGk>uf>8OmB~7BarXUP68BU-tJf($A-?q@EwIb3Rm>-8^}*MNrH&eb
zt^vkAhhlp9&NYF1=|g#}kI@a{$^VY)T(-imm_O`|Z*Nt6Q%WBxXjEC-Kzz=hG=hw~
zr3-uZ{oGi$1KCe}x2jv4Jk2%q-qw%kkc=B6lL&F#r;Wf0ihu}W>pvA{@ZH!iIIi`6
zR`x{)_;ez{Z)!u0)HY*X*8hENcNFlQBUcKJZ`=0qVw4`7FnjE=xU*!HO=y4Tmp0a4
zpzT*_IfLtT4GsR4843*O4{^a??f{?|PON{rTBH6YD?GBrKBDrZRXT1U*<~JT(#5~Z
zjUfA_wND#c6^GB-z4zTn;NpGjxkAcM3a=bUzJa#uY-<0>h}a<KvT96l<`6biu`MV>
zdF9K_WcBy^e})8=n(s-P$h`tssp7L4XMD&vkLl6e8zRup*~me}1M=D?wN9oZ^><fd
zOJYe#t4?@kXxlx!*yu2<KlBRDuJhzq{DWNOindXD<s%Ph<B=SnlXyVe=MZk>xV(wl
z&+;x~Uo);YkUi^i;^hY&9E`-G`>gSq?j;3aB*vT16c$z-)}s~K1ndR`*2}vjfwA0B
zh6a}-PpOWm2>W?%zcu;e4stb>16mAQ&{oyr*J4)^r`n9ZQZn^rurEiI;97}7YVWY;
zOa`mroz0WjL|#YlHZ6EqpQR4;H0dhL@Uvhs4;7bP^O^Pjg*f6w0H!P*K4<d&W25&W
z`S8xM!UqYj+I~h?W(JMrV{?bM>$BdhmqCK@@occ)t<1a<_9}V)vbGDwbhO!X1Defb
zB?Apnb0wuRT~}fvZDDA$MD-Sn930})T72zf4P7rG{DxS6U{lPR`%nK#5M!?DjnV3q
zvQ?Yhu`_ZQG8v0~z|{jc>=eFI%u~Zc9%CqYf2taKoy(-hK9TH_#p;QPb)@uV5slpy
zzwwFI8SwpsZEqt5?NuBjf28#pS-N;0%$%*?;~YLAyj=EtWNr`48hxmVXVR+pM7$U{
zJ~uBP;i<BF>WJdHf7!?GsDb_<W;K$ey0+SxgH(lOp^}~}Dq70x_@Z`|d65W_-+NK$
z$`;5YtXg!V?$5=(DAt%sRawh@=YTOWIalB~oXtsvbYV5rr?0Ny%ttT5)>or?DFoF?
z768nAZ*9--D(W`7eM$DVWK|)>{+yjQwmp6M=r3x|VO=Nswep)4-YJFEScvWMQfv5i
z8P(TXZAlvSpvee*do*>NMQ46I>@vgSRzN=#VztL9u2>49Kj$v4R>{^EIaOX^Gmt&`
z<x{Rf%WC}Kuhb{r87Xo8S(NHAfwe}oLufn(w#cMAY?_jJX2a$E>E}+^sj+xwrbM;X
zChQ|i%5Vj_3*xC_%&0XlH`@#MBsVsv!Zb)182ogH7;^MWjpwBZrL5FxZsBSDVCF>7
zotqomdxL_v1%;FtdO2d2bwfo{x_9y&h86J>qCRbcgMu%+`w`zhv?}q8gcsiUXds{s
ziBxXhP=dTj19%8Guk5;DoJkX@S>;mj&*ulNu`?_$^G`apBN(JY3Am>2*81@esGrM2
zu*sL2^I~9z8WQJB*KL6x;%Y~#s1BW*W9%jh+et`x9Jnet0;R$F;SOa@$=qJJo`J#%
zva8@fh&xB4kOHNmP>t9T7d6wIu1;S~kupII&Qq>ZWnSHI%Obsf7O@SU>`XF_2-=SC
z?&+mD9<_h}VgWubG@_>`X~HGrUX?<c!4vD*iK^WG5TS@)55Hj1x_`_ecz~^n8WgIe
z1m|3J6oK8eAnAu@b~S_uyZ25~@Gt$@uPweGvKArZPkDfQxV{r|;9Bef(z`=?4Aq$i
z=+)tTd~wdTjiCgmz1$q&K^EKh>Ol7SqL79ZcZ@jp2rs7#IX`eETuW=E{z{2_@^%t%
zKIfr*w3MGSxtCn^PoBVWE%{>b+MT??w0y=;yJ{*{O7(H3&e1kZuyXu!wZpv~SD!%W
zl-t&SWAa^AOU>2<9LBgobuoNr3$X?;Q1`645nejZ<al^|>SAc%hDi#i?th&o@iDY|
zgVZ=$nn{ruwr^hnSfhqR=A%&hOx2vu2d_qx=O+&3WOfw%VB<|Jvx6-8D~dU)qixQQ
zpID5z8TV%_he-{tC>2_tHt6IAQPYusBH3|!Z+#MfE~eKq)ZSOhN#h9xL9@GrPW;?|
z8+l?%S1x{{){_nkn9B?($_5?#x3~_bM;s-=GX-K~80m36phAGkt77fdH|~|Y>U}$@
z-V6(*jilu6zOS1?%aKCk5z1h@)SX0Adf(e)sqL8FWijCqMlCSYYmC!iV&vU+UF4AH
zV<{J`tZL+G1TKB=J);W<yajK%GMkK!JGy1G!fEuQbU%H8s=h|hZ8hsY4)%LbP)R73
zq`fxA`4dA#dn<LtJfd@?zI+pW@U15tnM#|Mfa0i3<+X=^>o*QZgTJ66Y$k(BvA`~U
zo8=nb`O%1|{>g;JlJh&%#j*SHB)ze2Avu@`l~%>5{FOsadVwk_E)7xpz~}93_QgYq
z7OLs?@Jo29pA1E=TJ-j+&3q7(M`zvFiXQoqZG&`<xaKds$k!DUg8a%L_|H7o&;j0&
zuTfZ^S2V<u(}42v+j)>)_`St}XaL!@2o{a$7@k3lINSSYT$VXfl>rVaEm}Q3>F_xE
zZ^9S();;)%C@H6&n|KYO&2LV%;T~F2ok{&&peD_i)Un}zoGetDYki^R-n}n9KRL&&
zvd{I-nf}USzRhTIrQ#O!<O;}iV3&}J^fmop%JU;{eZ>NGeJGmFYh=-JD50S5;M+)|
z$T$jXyQu7j_27h`KcB;YlY$t4-P55K5t1pP;f@3aa1_4_`+OF4Ko-dJJEp+;%QDzu
z$CsiJ;v%R1&1>Mxbs@>X6FWnEhGe57QdOD%IDmR1&i@f9!1|;_aq*|6?+ZmNV;;5M
z;mG@s&o)a<qT~OFUuy$rzx_E&^gd0$Z}bB4l{`*eNXwHFG55Cq4Rfy}RET$?O@&Sz
zEG1|?X!<`a|MyD|)9kpEY~;dnSJ1X6-3#PDu0#~n9WhV^#?AgXGRE1x)Ag;6Fi^LO
zxM^WZTHBU84mluvwn^6)na{E4?rt3FcX9n9BmU_AAGR*$)+NO)w{Tgh&d~p1>Mf(<
zXrgxQCn1CY3GN!)-95NN26xwB!5tFZ-5DS-XmEE3FzDd!gS!qo=*PRh^`3M3U;pdw
z>RM}8)xNGf_cPprK$Cf;>~Tq^167l%oPKAQs5#&NII1PG!*72!pl;zn`I&jamgV_j
zBH>nrT6OdC%>90^R7LCZaU`vkd4+A|98oo%%k;r&vy}w*(GF*ypR<)T@7&Y+Urqeb
z<uy`P{K{abVcv|b<tHjpBB^#CX|IR-IEPm;IUS9L(hA75W%M&^rdWD`w9x}v;@vL&
zN$Z;w$GAzU`yq{!M!`IeKMdy)zY5yK=8uHA@ODP%`R?_rn-2r~TUs1{<SQNK%N9p?
zd>)mcXl~Leo!URdy2qA_xr6u+$;`erp#_0gdNd{E6#MCH%FN(W_6o6yCgz<7S0=$t
zk{qSGH>n8a7*QGx#fVg<UcU~{Zu^1+lM65LU{7VRu4o}CPq}uX$4VJ^T^|f&^3I&C
zCJGR@wVAC6Ep-qw8_^DD%kuvfACB3{-XassUZ_?7^KB8SDIipKrBz~@mCd|tP1D(p
zbQVA;pU2BWHoyl4MU28xn1~KD{D`LO709Od%D;u(Lku_tHqK8KOw!)-3mR-?D?9s9
zd`QgG#uFvg%|=wmM-DHhvKwQaWy}47{ub)pBVwg;tkTvXp7M7#iE~{j(`_|%S$YNo
z^HeGoy+h~znT&+=i{GLTyFk$UQh*R?s{(g{PVv_xUiz_TfBe=?Yl{7+^6%3VQNf;g
zBS)&7o>2dofWw3JMy9fk_hnjwq)2E6|G3;g0!h|}4za)epeeptlj%}MjgQe<fAVT+
z#W*;o`h1v;DAD#!tVq8P>T{EU1<z9R$h=>`^xnhAeYZ0BO>5$_+YjhR^6IZ`?&aXD
zP&*yrQ{t#=GTABa+#Lp1eS7;Yj`;LkOsX*0;YFx$hi@vX=~mYJ4vsd&ggGerpf6LV
zv+hpf`xhy?7C>VQHfq|Z#Ps)s=L9z=yz!D}9M#9xID{7hm@6e%+78?|E{};ICAy;$
z(Y^}vOa3MO)<Te{`yJTDUl1x%F?6qDd4Ufv)qNh|K3+*55{XVdO&ilw%`rMnfm<9k
zo`Rptt@~Hy3t;huK8t!3#v7A;j~b6(zu*CQN!<(l;D!CVc3%~bzI7OMu=mpe{^}ZY
zB0Z>=XgODri}dA6tJlmEDdzyohTx|7KOS?oR%TQ$VM)~osWbWbMyr6Q3pAzRsi|aO
z*?VLZFOjsFDFOM2d-3bDS>O+UZBE|_Q54i17mu6f)iIse0>?`N_5FhHPvTa2O(r*=
zENrS-y}Tl<XKO!~?{Z~v22Ue&6`LgR?Y5&0?4IFiu{}rSJnX$$Q}LmHTs}J-k5rIP
zBr`ZLUdE^;FF{o`T!8HSgj2&U>cOaU%U`~l{}OAo!`nSdR6o(-{^HQdR+`zL+~KaL
z&N;Nt7M||lhsi)z&@x!PRBJ4r_NCU)Rm@X5<F%tO1N@*N0d8aH6OZ0T<{*2O1-}@B
zRTpidF@B->$O3o1l1?RdczMK8c}mU6pDWN&a3ZW;dv)^5uNVbq)_UQ`qvv6{5Mvq4
zz?`emTG}G_7rO`)yH}`T5#l6@!cY3q8LwZ3H0yjZ&NpNm-)nU}UdEgjdR%{G!S_%p
zw4OlIC|i%eg{Vw+{raA|^{%z0tpkT$WxT3)|C8z7iHrkaNns!V+vyLuK&!u4*e|7)
z1K`kJ4vLefb)wT3eg&un$2QA|QS#Pr97dy$-G0)C+M>iuBPoO14=j|eqqBxn+@%T8
z5uaFgnJjj~myS=Zm3r97YJ=tCxrU9D)8gxyx@f3nm0?0Mn`y0Imx4VxjBymqvsT^g
zW<K!Ual1JfM)afdZEj`fh9h;A=tEU?Xr2adI_dh~#vUs@hgToX&tFP3GLqIVmKA5@
zU?QA{3AS~@0RX5(;^BLu8hf0{3>Lc|G_8e`5*IJ77Z3tN#OkzNz@0yxJsJ#yP6XH<
zI6&6qg|?4bI+WWCfNo)=uFQe$eGXxf#&~rK`4%e%*}FE&)U{W7HE!8{FyqU=1&HLm
zylT<=EUbR*h!2(+UD{DM&Ek%!)PCQ8>bRIp3q>#vLBEiZFNU@I0y@@`Qqr2}SK$GD
zM0IqzRxb;ZL+UN>`N)xxv<p9G9tZZO$ZwaW8b<uLX=2H;WY#pODG<?XjoSz?jVRQK
zL`J6)rUg>zr`7-L5uPXE;5ew)5`*A;jM8=-PphAZ@M#NPluXvG*%VYU>YZ9@{+<vz
z1ia>yIpy(8G;7TUp++LtDzNATm^>;nQ&T^DHzp`6X3?K+GDM=VpDB>Xk;NFSCDk^F
z=Z*USfF?NGSb6&c0N@`$=XyG${Ztf1uMbv<tkJ^(x21AhjjSz2%-fz$*x2}^d#Q>#
z>`r+2^a}d}p{d%I#ZoK2C`-^zO`v{KiVfDs`NVznb4+r-9Ls2Y4$paX{&@nq;HN5T
z6zj|k6T4lG;bWDgLtZ9{E5kTP#mJ6+1$2=uQAXzgvxi3QDCDh&Qz*EbhKMHjsTxGV
zKpk3xf5_$Q8=;UXS3krhA9<U`FH6@z8JoXZTL^2q3!;X_1g}RHhMZcA8|S^z*j(N)
z9L5sdaVZOAUHEsOcbH&kr=<M}>ila%#`)g(ZkwyX^1^UYg`!N;g-B;ZJoz5$md|gp
z6S9Sbmi-B5#mmbdzsl*@B>HeJU$7GQ?rXlgkp-~jv<G=2x9vn(jJDmJL=VZ9a8`F0
z+%RdqYrdjeyj>#^&I*(O!DP}ZbregB*jxK)x?FzI=D${qWdBF3mALP4C%tE0o}htA
z0q}aD4VSeExqxkW+m!0iiT$l(nX^6Rs)HyxJ3&(>u(xkCZ0<N_N&-W#g6By1-!hY4
zPNonFat+L;?oczid=W*zd;|z(BOpusNBdTTHR^#-^%AQlFT4PeE}Ch-xyl-Raz*`q
zjnAAHjlr&OsniNpn;LX0hqZ5gUbtwMsyO5gK+;rI9Q-KN8n@_fV@<h%FN}eEpSsmT
zjL43)wO+SL7QI8?dvmVXH|gU1xA2$5P%LsVe4bN51Lvv<o<<ez3uv1l>dFvJmIomv
z8DYnL_QYG4U3JPnofT|D5z4h8=Fm^MtU>bR=ohgbgOO*5S&O2-Kc4&xJ0>T~0&|UM
z)lqR-DS`gHe6nlGZLXY*@MH4Rg}E*WF8X*WWQHdzxfD8bu$|mhFBzAM#OsCz)<y_}
zb_f!UkUDb@4y>gHL+b3-)bOI}+z#Z4d_2oa?ek)u$i{^1bO8WIsd8Qi+qplC;~%5>
z^ZXHhpRhe%ZX<<=@elS&qh^Zu(%9;w6)OnpZ_5<4&|&2a?W<6xirujFTDQ9^<?zIE
zJQJJ7#D1TL@S@j04QYS93K1B7p_N>v0!TkD-RMR{|0Xjp=5Ur%9CyqBpW+XfgV%{3
zb7l@xeLzyn7hapPk_A-!?c1_=EWn9r7PbR{zu4s5uR)o8<u%s*=na(_zvrPR&8OE$
ziTiQ^=6|n8i|)~O_w9yGvA|q#s$DrU*>Vj%D4-BpJMs6a`YU3grd>1uPYMYAHYXlU
zDC&;mqt1<7AWS52&b58vN*nVS1en277rvy-Zpx)ztp2<<60N2}f`7KM<x#YW()}tY
zfcMyhmEDP=`%DrMA1#~5h`-B4IHX;|)+b6levt^W1<+PH=nD;|`H!ilpR#?FzFEfF
zS9<w)itJSbbhsS~YB|85q}-t|nT}jZFw^e}QkxW5{;@Z|GAfi`WTcBv5?duj(~;j2
zd5q7w>Hd!LXM$`1JSTWjW)#wCiP+DK*sLwC;Ip<jh|pARq{0gQ_JBfeHu(tz>@YT=
zQ1F79^xW<@LFa7>rZw_ItlximK;M~}5H+7Y*i3<(R?hB>-J-|rHg@1}n2A!b##I!R
zZ=IW1Om4*AE1mE?)O%Q5xv7P8#MGvBtWMZ~slh#VxEY=V!Q%1V%{c5tZ*7DwH*px!
zV%Sp(kT9<_?K5Ew(FQnAPcD}CLSd~6`GK|m1^%azwDkL6eYt?&@QaK0WJTp6Ct_e`
zU}AE1<z1e;ViTZH4;KaJ)6TuKeunHpBbRV=U6R{53fr_+k%Mz)t~D@_9+oLrSkhji
zwv<W$;r)}K_<0P8W<Sp~W&GC1&q>XXS(nk>>Oi&+-sbCIsoOO&*K)m0vYWL@rl^Xf
z-mdi3*+mH<G0<XNJ|@1e)k|Htdfc@883MW3KmteRv<0Ze18%Ys8twQ3rWT_00Sbh?
zGtR(N(Oq|(^0^>a^M{{8h6om^k|<1vpDiu*LH?SCb&Q?Fi-D0>gM)+WH9y>0Bixo-
z#$a6evn<()1~Xh$V##;^n5CvgrQJ4mB!c*>p6wDA*ijQfJP|x9hj8aHbbCkjEa~(=
zUX4WeLJ#aeF9sC^9{g-vr%}foq9S&jBPu2Q>{kR(w5z33e}pbIc%|0Gv_JBvZK$l>
zim>PE|MLb2q*oYtM5vMDfu##+7}r^KLT=cjh3S#1>xb-A0ixLbuA^G)bolY4>S>uy
zWZNn=hxoVq@oHnTIu|>>aNY=I?aqiK#D85IxIO@nUTHxpTp?OsoPxfKG?wr{9NRt~
zJ<xM{4al|aYV4}QZ=IHogX6N`<Uopd5lp*(<R`FYzE=VK*GP`<e757Rws5Lylt_r3
z2i?dYDjZ3blD^<yy(K|&>INgtjYLH`c9=<aD$G)rhz6kre_YCa#+RfAUf!%S=cQ{>
zb%rx-&y#->YR8nsGr}*XW7*u){*+9NNNzfld3@luB@peKa^i{e$aJ0w5+{-Lz_O9t
zbG0Pa_0|~qEya7X_?$jO#~C|bMZ-X7l5ZCN;zv2nw{^u<rh9PXq;G+!5oZn)+-j+F
zVcZ9|Zf#@Je=jC^aV$F&vmodTttOr8rV!t%Q_?~LuG!P<4dRC1*XS{f=d~!n<AN`6
zn;)je6nj;da~qSB(UJ}2>~<Py9;u4}BciWZfE+w`%;4mA6TQkyd?g5mVx=R>wX~B9
zsrA<OdClkg%@IGBtZTl-S)6U8M=}Zk<?l?%MbolO!251xnX#_NU46~#be~^sFs{VP
zAtU6TOpi~1ofho%Gsh?~uY2Z@_V_#oQoced-dpNVVm|O&e`i}K?Jx@(y@1tB-i<Xf
zhy?D=tGUf*vila}63O^nx8vzJtGpL*1dsN?cO{EuuP?SUAO75^gul_-DR#4=Rbwj&
z`GXb@9wb9_niaDS%W=2ls$d#+Y%+;=f<7hqf?lM-f}VdC7a`2X?C(1<!o|y;<uEwC
zdwW|+NM>R@-oozNEETOz14KSD`KEoPy|Y!gb2Kc2{-oEGnJ9Mqju-Iog55<r8{?QG
zG*$Rm()(X~f_NbdVQ{$E@49{ff%=`V(BWhy-x!g5QSYK=3U=3D`}oKfGBT;FJ%lCC
zh57d;eczf+@MPQ$6c)yF4i~#f*F>|&u{Zr@ENX6+DMC%YExQr)qc3QPZwVH0xR{Qh
zU-5I4G2{p~Z`4D)`PnNYJMupiDWG9rnhZ=M8UWXH4V<)z_?(7cS_&$%7LqqB^=FC{
zt%-PT`f`a)TOK}ao||%|=xK|+_qVSs(UMiAkh!_Ha2&3yDl46?2=-FRDVx8bB8%AC
zNvGv;jN?T(Iyj??si8Lum^*+@DuApU;4TA3k31diLsexi)=iBTq0&;dha1S2Au5Ej
ztnGHmfkmaOzOeWBPOFJso1U1r8U)6uDl)QBd+?j8j&(eTJsCf-a)CZ#o&v>Y*6XJu
zvh3zK?Ri3FOeONwG*MDwcCjuL)CZj6htk%<6|T5>i4B$2N1#&K+QsmE`ou`c^dD(o
zK(W<!9tD$18i6p8a!K3q9rus*=tk}OI@19Bk4-j;+KK2#3r-V>vcrj$yfH@a?ghI8
zu-}W4452&Zl&yAPE9>7D4IETz;7ZI+31MWOa>tQTLPv%!NKW+T^QPAHqUz><TlshI
zv`#vN`E`~iP(-xRxGbXG6A}I8qmSuB3QZ(sZri#4FIkd)tesD7o=61YQoD^+d18S|
zajL}GPDbSk({S$%d|Lv728N@*u^}8rds>Ps$|jDFb31VSS~hkp2&!R1C=M8HGHpD(
zocfes8@*}H9ofeN^6kf;b(+tu-X{mdCC6kt5%~cfIJNP0QVqp!i)35T1+uG%ucSCC
z7b`&YvN@%5KN?_1BJ}3}4O;mrO|U9w5E?~!uc4?nKs~wLmn5E>a>}NiIFhZ{zBW2J
z&X4^Vly%UXDl<1E3%LIRD)&nGJ4MYX;HS8q_PpeCiFsIO0sa~iT^@)LaNC7W3hYF_
zm`$wi(ROnemME`UBW$^+kCO@SJ|Pf7^d25Gfh=~1PdAj9j&J{r3+w-6y7?#KCt(qN
zAG?KF*t)m4eG*P$FKs&tAen^inr}OaktcuOdZy9ZQ?S8ld{NS|Vy%M=&H$2L?D|Tc
zD9?qv1H1R(KA+4{snlk-+($754Q~7U6wo6W64vZ+FL7FYkHb%x%0s|Ln(B<EkKbb)
zJxxg0F)c^vl&0kj_!s7sHQD7YRCF?1xsr+6Qyr}zEc>gIL~gqNY?3j6Xga2U-$0kQ
zh|E8W+j=9$VQ0daNR~ov?MXel&dRq-51)McUNAa%XX8p-;4Mdi1ytf7p2v#)?yOhF
zHb-vTsa#l}G^P;kx;~R}v;MuhFE-oXG}rxD3l(UZ8)jFjZL(E`h?CQ3?e<ql+4)5K
z?OdXup`P28$@sdsmk=$Mh9wRN()A~3X#an@ryWZ!M~FWx+?T{0&LkS0+ST_}izMsg
zZ_Si(EyAT;+pZ7BI=JL5RIC-Zhiv;YRyyDLe;lKtb&#3%S?TVaZcU&)nA4{u)_R&L
z!4sX<+8omH7d9vUQKs&VA@0AYwh1TEyFTdaiD<CE4A8Wi|I;8|Q1{pRx?op0b0uV+
zRB%S?zMn(P@T&uD;DCFn%tDnRLE}_rBdR_0(-Yv$H9QQQpFcfL-oR)g6_Ea^1Geju
z<lQ(C42V0vBVQ)M4MbuX*xflhQhLkCK2d}!a|c_oHlaCbJ&TbM96ZZ(u|85EAY>+O
zNmuH1y)+iMddO<T7#D;n4c+qrHVQxmH4#Kj?Y=NO15`j_uf9;*Cau(8O;CMo5To7Y
zRIN^oV+)bJfG`7xJc+DrGag+G6{ps0lJx1y+}I8N_z)07Q7H&HcK%m3q<kKG35HKM
zO(mx1jLCCJoh+B#*~BEK)F^oH^OI1F@1<&szXzQPH3QF%#VGO=B~;fLZ(oBXp0r-z
z_k9a>k+h-_9h%Qu%dBUTE{;w%RZ_LMyW0KmcdS}bZ%;)t<|$`dim)|+TWyO+ZT8lV
zky#Y}LN<MsEM1%(*N;eN4lv{k>E{BIXzr-%>=08;59}*>Efyd64<mvW>bDKX+wFcS
zi1pWL`j~?3WG&mug`tICE=9s&ixamBVv$1;I?mO=evumJooB|IYY{e9cM~ENF_Kb~
z<y~L+Mpy$2Vb|Y#HL4<SkW>t*Wzgc;=3li?z3aqNt23Bzn7+09XoCG;eLu)bC{ZKB
z;Kb4bb=?K`Egr0^kM`C!x=y2U<4w(cSb#IiEi7kDZ&{|13YL#+%p)4yM77=JMq&IB
z!Ys`^gIJgjy$4&xU~@XKG^#A+2#}uYjA0}~Dh=@p;&&l91xQp-YHlBbV$pOc42yAE
zNH#qzo=LjA%o0iIauIoTU8x^U+-*<RiH<xNoB0;y`6(=^r9U|XrzPZEe3+$Bv-76}
zHtlDlj%Su{0kBqPzNRaP+X!ZidfF>^Q4Wg~=*)9uQ5f#uEk#MSJxK_3_V7uauoP&F
zI#%*V-7*WkcXJUBt7jU-hj9C7I}0Nvl8<JD#zw`eg6V<x<;{vPZ}6wY-H`0dxyx<y
z{%3sm_k5<P#<{)Jxqui#I#c5Yi3;0LhopRKt3)(!74KLDcuZjLJV={f_ZlH+f;oRK
zq@2V^tj8lpEV3gFi_XbaSgKId==z)i)m9Q5c;<sNU<m_Nlwjxf4jABj96eeCn7weU
zgu+S>SQ!%1@P?m{U)LghlM)h4Q1>xCr={109vSs>YgR-R-vg#3xcK?E_I}v4)I`9r
zS*DK<Xzi;tg+C`kna#+fp9KUX_e+IqQwA}?gHp-VBiWiHkhOk~iuA&UP7f^XEhzz4
ztX(uS5T#WA2m(lpcO=4($}d40c&ACGA{t*wA|&_71WRX*=Ny%eL$if!n;99@<Ah?t
z0Y0z}`TK62%~y+<MjZd@OWIdT_DH*V`Bz4$AaZtMhalrL-u8*fPyEAQahCPpkB<8q
z7{0<PFEv-agXqs)q<$X8?|LGl-SW{n_vX^*N(s1eeG+5ndrU#~XE`0tNWu#3=ICHV
zH*3#0;5XRe$p}S{;b2%64?7y#?pCUo5{Amb{iJhUJzTMKFXsFw1=_Yw?jLSmFjb7Y
z##c47rHvxB_4-gPCX{N0moDAh0qaV}9scQ5*46Z&ZxFu9?tP)c*VO(JnM|{{V1n_k
zy)|=i1JB>DuYC8Qpr=ks7*=d}g-L(KL?Fer=DI@@nP5-WT6k)_TcPQkU84e`EDCI~
z#j8J~JC;CuYqB4DLO4BL8{q!lc!2qpi}|TTXkD33o$m3t7j9^F6>+=zS2%LL2>MI`
zdbO*_=Q~)c=h|FuknpqE+>WFgdg5BUv2I~w^c09&qg44sn$Nthm!fD9&sdj8sqjgL
zAtS|KTEI4KAltIl_}oWzcg=D{){tS<^`qr<7i%%p+QMdXStNYP@1ljWt&s?c=Cj)E
zC%Wwcb9L^mr`&TnG*!kFDyGw8%^r0vlXbv}<bHY3Q{LWd<5z8Or$m-zqzMCyl}&8n
zFKE7S%(#a9-juG?mxL9smNrI1gSqPOFekzyb?M!}P%gk_L&tRj6K3r&qU41Tq9i4%
zET@anrw3Ns&deN<gGvu=0NhySA<A%Yyk;M)n;VV-O{5l+Z-mD*Uy{~o8U#4)9PY_X
zt?HKDm?G1V>>0|up;_tQ5nD$dM`t!L;*47cI!h)ZaXqA(44%lQ4@R{6T}roCb-BLN
z`{EV(O5vv7#q!sO)_MjD&`ZI`7NyLR#K@jV-6T@)3Eg&FoD1Fm&^5mHP+Vzhyr7<m
zc)yiK3*Ps_IuX}W`uF?i1wDTjHjfWg)=x5r(|JJC1us>gPq27vwx)oozeE7%>JM*4
zx%>e6-zSmMAcNgk1eiGq90hjzp*5y`c9Z#$M+*QC{Dnh2B>~J{mvQ}MLFnu@xnUnq
zt_AQmj#O1r`vBKJawZ8qPayrTLzO<LV?Cm19wpQc8PoBxP4{+Bv;9}*H}q)6kyly`
z@&5~N&{}+Mm9(h{tG{bB@UqDskAP=L0g&HLI{p_}iy9G&lG*+he8MAJT~Fydtxj9X
zIPm|VXkRQ!ONfBQ|4V}uz{vAaT>ckbd!ywrmi8aIsfH}=m7)>}UcI?TzP+{O|L^q*
zd7=@onmS0Kn6R9naB*osw|zkkA!w$S!onhBl4`{R)nhM<QH;CC$ru<q?7O<V%iNU@
zVn8Y{g#%f`iM0M7u;`UFP|!j;%Gqv9#46w#8PxrhglQaOIT33EBncFFDj(kfulYkK
z9qt96p0VI($4)J{Ru7T|2K%MEx4C)ue)n=+BwSghlGZ=j<bz+nRBoW@A;?qs+D`xE
zN7kcy{n6L)f4>O%#ssR%|Db57e)SvdsYl%TM!TP57}axlJk5T3aBplK#kIE!RgFtv
z2t}ytC{a`Ef#a-La|Bg&3LF;ILG|TzIpO8ei-Ve<?6ZB+3YMi$>?El^w8puLDeqdS
zsbujuNL*^{AFjd_d);Jq2~_Ir2!5~2j|v_2v*KZGB})nNDCjvHI%BU4qXd7HrNiIt
zICErOR4x0zgHTO%bCef%IBC<+a$iiVn!B1p56$|`LYmol{n;@~j@EBB5$$w^-D2S5
zwT!iN%8J<#=@3u=q3f)QAT+{A$REQ&$gL1wa~VVag862jd$TS?2L6o5Hy#a5FCb|U
zL@2A@p*7BZ-$1mO6A_*5g;BN(UNs$Ehhw0tQps8eGVhT`DEw9t$iumP0GkX1&gN>3
z`P5wB`*(Bz1v>5(^_tJ6u2k}_zRH85{?E^n`uY)Kd}1l>VNo@AIH{Z5@+chRmZ?_j
zW8pdO#cKlF;V2ZmVd+aV>X{mz=loK8@??u(%I^XX&mR>bA4<m_m@axk`e2jG>9mWv
zDk8$)d_yM@OZanlj{k4ntw~fo4J$_)YWYF|gIcV?@3>W=+UVqFDvl^uVd2JXb+h$9
z$>~Ks2WFOYrR%G5E59?hv+7|GRj;3~1btROiwm%B%nwbnavqL;-T%X3YP?9lOv~n=
z=_&Oz>vVgtpwfP}dg(OtGn&Yz5ptX<Hlz~noSrGRC2Xo#`j&*TachF}S%yjlO}@go
zK5XkoFL}K$I4M=MP`o_M0D6rLK+}4IyJVhyisb(X?n*j{WhHrfLDgHR{Ps*<VQ>7z
zlbc0AX!4@=%kC!bAl3V~T%P%=`TU89>K{c)I!ED<6*>V@vIzA>X*|E~7$Guo3lEPp
zT<rg6GXCnGmS7FPQi`Ixhnx4tcrVqMa|i&(z`7xLc(SSQj)*D|h{|{IStf~U$1OOR
z!fT=e_X<A<yJ-9o55xE4+qZM{o-Hx(;KNehGV#FLE+|_xr?k@wkUc69;|yFubo(e<
zVO2l5F6d05_t~e?@O}kTVI?MXXwrJMomBcc(Kwk&SqrZ^OCBx!xPe(ei^VgUoi^I*
z|2|+~VmCK?LVwCH8ch#Dw?ma?v`XY@X)M!Eg<6{$%*M5(^$aO_T4yCnu}23iwbZnk
z{YF|zSXdGDf@<Yf?r{!!%B91jOV8onB)dwTR{aFa?j$!4+=BuXXFL>6DhkxRv`JDW
zB+M^ouJdS)15q=H7NcZC+mD_R5k8|`pb|Np#&_kVAE=|Q!0jIZ?Otf3xl6XtN+uo@
zOS;P*$Fml{Z|Ca>w!pPu*{Mi{{%`+_kxB1D_f+pBSrMycjwLrGbmbx<X=z!}lKUn6
zV#2J9$0;wSsk69k``~Vs8MD0TXewpH>3znZ?2%k>nIg>9gb~}7N_01nmz!+*Ci{hU
z#fQKD5zKVK|D&L#x`q3$8mJr*h$^a!nluKD<fj-}gEg9s)U=Hfaz<SvlqB4&3JYEX
z722X=hd0XyD=v%W678v_bftZ)HazUPV~KgKCV>crD#zeEa?gCD?QxsqxMFWnKCC38
zMsRs)>63F(l2S;BtjpsRb`{ij=%yVV3^mRKw`HS~T^@L|*E(M+Kz>Dyyds&6y(!gn
zk#S#6?~2)LbKX!P6|;g!d{fL-g<Dc57~yd8ny0Wgri6h+!Q$gHj5G@-nWkHB`8Re6
z_=h<nE?iU-Yk12Jlk#yPJI>NGNCp(=)t|qNk75t`(lm)#o_X)(Y*6_wc${%>j39?p
zJ}Q3DelFrPMj`easP+?P<?g}gnIHCi0!>~Dey=|D4o%&$B$b|G0mcMxeiff!{(_D?
z2Kvm`@sbZg5b=nRMOAKy`O0*dQoMNa;14?i{6}Jog$T3Af!wY@!LU_I#<$p;+>t*r
zZ;TjrWTZT>Js{j1zv|*bmpzg;ISCqgRhi8Ew~ptZcyx9-ws*b7AE_>b4{)CqzV86<
zzzF<Z)6-}ht?q~o1-JLk5-Htl`nq2NKC%=E=h&W|%ZoQ_cgB^Kb{vCIPTe0yl;7m$
z12Y@nlSZdKbpjVWhrYP=dV2Y^B#G(EM4>|8$^u9IS2QlOqa!i4p;ser0-(}K1`krn
z-!=N2W$}okKpmRb=%?+VRWnL}FjMfEwv3`C0FD$95oy|&3px=EkkN1p<-p}}&E~*O
zHN4c0I)h5#IK#h0p5XDs1~O(Xlzv-RBHTH9dsjsCtz;XI%Xi_D<|m3DoRYf(&t4kP
zltzyxez}#sITAJ24J9Zkbz8UplN~pt7`9MbPkPaXCJH!Uu>4J@vTNhMO+BZjDz22t
zuGIh~iW)8Tf2nO0rpx-{WyQ75s<mnIDl%ciYdd@^t~=eD0cGM~P0Up8`ojJ{I9|87
z*$29~v)$`Vh(UWmY<W7Hv(Wpx;>$*-3qkZde_4=9r;hWI(iNlh%aiQ8?!Gzm75<-F
zl%8ZFRKXa^%OMylIbFfVKf1eLfr-saG;ukC%3s^WfQZU&4904+-1^BBw<y+mf*3nj
zx48NG)^Qm7L=o*E1bNIm0q<P_+xPw_cA7~XnJg8HZSiY#;}PCmf&jwn>z@>rd1B)-
z!Dbd?cq{*zxYWf;UxdjM7}@&uQG!}L_TL=_KV96w8uE50k_iIxT+z*tubu1PP$So)
zNn7FRqCFOce2K+VE(2s9jDu5qW7r*gm#(|xeua2|7~LZl@kI5R`O5ElgKlrsSNo-(
zK9COb$7|00^K4|8dm|g%PD-q8C@py3%j*h@0<BE$x%ilG(B)xBKzIg`0?PNITX9K2
zBH*0dVEgRtb3?7llG}Ut^n#g8N#?w>AwF)@0^aq-w16b-X`fEUP2CXs2$L!+cst)8
zXqsw2y`~C6T{o4k$lLoHhrB3C`w5GNFud2R_yYvwcZ>m!BvRfm_Jg<InK|=xf+_;9
zsy1o@dIf|^t=2<M1l)ok>D51XM|hY;moA^vjZOwSTl$yUrwVVcYS`coWX6kQ<9+)r
z9^1Tewsl)Kc!<8IC6&5(so5}r^<p#ZiK?+|{=iF=31yk-N8hFNR}rvC_xO^pbK$M~
zJ}eP||3l#*{8c<#Ps!lDnEhh^=2d#?fI_EHbbNTb*IC(5EFy+s3oRngH+W(Q2BYMD
z({<$~NiR~WHV0POKh2y7_`u0$oC4o7MLO4>=McPts8`pdb6gx+a7c$|WaGWA4=7ZF
zLMdNyi&aTw!wF><IlG8oHFQNet-to|ozqZrCOuz?<wFaYdRIvDO&dieUS6J0p6U=%
z74R(Kp+6s!#0Iv7Jmn^jS|7H5hK&oD7(aL@*{db(F4$M<Zl=%AT+N)Pc&9GBIj{xa
zW=pR{oeB3r+4qM3{IeH8zR6kFwt#dGcgEy-sJ3nYeI>!=P8vpz)*zRu&ceBnf}8!w
z&qlGq?Po3<ewVW6^sf(iHzOM2JFCrmqg$#3O&4!`5mXku{U|k*7_I)(^Vmx;up@>J
zP+(SPi{%jhVqtvsxN5kTF5|zj9Qf=`5@9|ULCa0pm~~+6t4QP<{;}xzV)5l_!VFDR
zzQhrf0&na)g7xn`jy#=T{)BS>@OX;aXt6<KBUaw#oeA;t;o@LByP`MH`CEhScF3Eh
z^9T#fN=qlhBFVm2h*`OMAWpQDdMfdpWakfNLqaLuuE_`(%?^XriHi?t{%BO{xC+Y2
zpSsO?2^eQNk%+BA^~NI{si)H>&?{j#t`M;{ew={aUkE?M`)2#uTaJ~i+1?C$3V)8=
zxP;GXl=5X9>`aUY1cxNhbws4q4tC2@VrOYvuk9j*bb5iotg$+-GkDS$o|iUI`;RKi
zg`?>7`f1OvtLD#nTN|0tz&5`x<wG-7<KwgRnlS+^$J3q8$`4HyB@G^rk6sLB&v$;|
z%m5#Ncjw)Xz}se&CQ;D3<%_l65Y+lb4z*R_nh{k?)cmm58HYhHrJz4bonD`a(uv$+
zYW`SQv^9jLd}1S~n!POd{10^K9LzPdiIotn)KxqBXhoFW<hUQ{iUuou%L<F+IcXyu
zEE^MZR!#nWB3^T`a%jKa6@E%romg*Tx~jxS_{M9u-;wqZWu$)=jk}$dBb%(XH2zqz
zD$!>KFPkkTJnSTGt+PbAn$M#friw&DH=s{o`gMakaJ3yq3XHw}BX#?2i!5)i<eAUQ
z*^x?!^@tuwm*4=gs&N~`QxTiJ5byeY>st8lAtA0)d$K~4Y(D3z(0|TgWGh);`zIfN
z2zmO`zr>j-zwg4tk@2dv_UG=oxq5>IxUv_+>LLH(i-?V9NOa9V({ETx<0r&R==z6#
zZST!Mb`@v{MAr{7Wl0A>PMm1#%_lHDa$Dusdl8+{L`O<5ue`GgH!oXF>Qcsnvt9p_
zMzs((_*`!t@TL|M@;=K7UlnIHSnCLJ;FI8Qyg{0`Z&A)gK}?L5Uua^s9FMv=S#kYU
zg7$ky<u#zO2J+Nlwqn%(X=FYYCJmcuanUuE5^;8M1CRAbx{1HM`3-lEP9LNGH614M
ztzh@pESC&r=sb0b^mo17HU`F(t{~lCwh4(G;We|!p;(SD;x-Tp{8Cg*cRoJU4A84h
zQcuTX(4(%$$k*~1dk!mF@u;;Pq%d&7qXA`qENMWb&lo0#1WU%`c15^SRs%&{^9-b2
zf0|sXIf}K9#4`mbIFkSp+dG0exbW)l7Tr0cVY?L3{-X$1qZvIt=FKf$d)&H5jYTzq
zE~wrl2t-;%_dB5Lva~$4#$`21LrU2@d%8s)R9lh$cUVDi$Kj7Cctd?v0yC*@XKUUc
z_G36njq48maMD8Xb^Ki;V8oCU+Zk!2wSIL&8Cc=f#`<Pzg@|`DRkn7G`<*%r|ITWP
zPkpK3R1|S!m&($uZe4`O(UaGO2J%hR37C9!oK~}M^eLP#U}E4jp8myD^z0Pa4=(a$
zZzpbX75H5c%IRV|c<0w{!Ggppqt>S5v1>%VwlZ;G3w6DGQdY_F{&q$wz~5?0Xo}1+
znpK<oD+qpZb5SB^Dn=U*Pg3l`Gb3N$z793#|FA<bWQcw_0e8Hlb-^8qB{5UMa`wk3
zCfl=G&&bs%(~fKHY)}3RAg>czvwlb+w1;-af69Arap$`8aEnO7p-~_?HcCy)ul`rc
zD6#2-77MT^OSyfK?t{cmry?+3Mf!}pNoO`Ty1OT#>{D)-*git_AT|5O(Tuj)lLN*|
z<p{Rad4o}*`|LK;h?b+atlne0s~*XD8_r!&^p?}Y?Ca<qUVI$$W=%2Al}t0%O9?m2
zkA2JU$pbAZ4x_QLkP8gnd1c`c@E{%h@W4N*ihS?i+Wv|0oyf|qFi0*__`p2xaxJEM
zspI%lyQ;yPjDXTh$ab;Ynd6PCwwh~mH|VscPM#1MPzDaBwxi*&WW3862pZs`l6EOU
zoWZ^%v99yIGiu81RK4tlvoB_&ORBOI3=id02-oHQ4Mq9hU{A`3kMa)+%>%Er!~Krl
zFf{+jhJw$&5K1c)>q{Vm{gP*FIlhWHy+-=qR)23FD}?R+3X_RQ{T)_Td(Wsnc}Qrh
z#^VDSQUFk*r?=n62*iv$Zq(a-z~5*~=9=!bF?7Q}f;0YOWpfx=6tim^oZm@;#*xIe
zN#aY^lBjuaBEeQ~Gsc6mb7Q`QF1GcRvEDV^u=snbUkmDK>eA*XP;u2)8S9PB!*Y^N
zpWmb2C>sU1{VzSHX=HvfFZR98-AL5bw6%W6M!BJ3rjy5|fHrz}NZ_yL@Hg$c?5ZJf
zIED9<m?}E!T9>SZL=ruI_v!zjF2)vapWk9QKFQrU21Ga9E#i{w@Fmqo5=nV$(+cEm
zv1E>P$H;*CNdm)n!_jIiw`Jxl*M@ej@p6szR2T3JCwFXBQcp}995_e}!wL#-FN<~H
zj48wWV>Lwm{KwxD;&K>k|41vRK_lqAUhR+ENh6JWqEeU=qJ|wHH7wjBW7*tTAEzW1
zb07_WC$T2biKYu=R78J#k9Mt|n_UZaWxpE!cSs`W7P3!ky}98(1Y|)sa(vPFyYP#V
z+{zrD5H-qwEdQ2r)5=vu7p%2Ld3b5M+-M7-I#-+hn-J?@+`OC3Rn>5~m=$7Z%=z<@
z@KL}B)8oMRmey(;BJS_q@SvZ&l761G9_|6n{UaV-EOkmI4drQ$4D^bq$`O>TdeC?S
zyUVqnQyhxWX9?X_mj#1|?Z%^N*laFLy_uJOOf>}1Y#9sFP_KU*j%u`B$>*{(7zeZu
zGGDNX)3S*OC~Eu(0Ks&ePPU>Ck5kOi{u;$F4HUSY=)^gNdg<NqXDLQ^6`s~C?NlyD
z*_)!;TrH_=$_5mkY>d5~I48B?qB@_#0G6+J$Z(GF*vI%(?XUnNBMoK%1_*Sj30g7(
z^y(_f)7BL#O7;MC-vDJHamsi)eg1KSR!d`;_B~vnXxQW1!+!ts%FJuYV}s2~kdT-^
z7~E$nQRun9-AOCh=pfy{`msvbYvg7O%I?4Ip3hjV)@5MFsbQ;J#;tlVWlm4A#jl9u
zX0b7X)POVC`n)Y0BZl#rZ(*|Z{7%DhE_38Cce3i4Ze+<<lX+A!FNxdndq}AedTL_0
z@uu9kk}Uz$j@>toY}1k7V$=v@B7B8_-@Cj{dMFc@dHpg*9pVE!6lWrp7KH4(ZA^m*
zU{<Q(*58bN@Ki|mG!V(mR`*arr`>D}gY!P}nzT=bHZS-~hqDD1YIIs1+{V*N&YA9%
zFNgelgibr}G3=5sBz77MUs6y%mV5!7miDKVu0{Q8hfZG~n-{WuCm}Z_9+|C@y%~YG
z)|q|E*<S-WKi*pSH6#pB@kQuONi%95$<1e-((ifZk*$e|cU>*R-0_c;_~oM0+%F>A
zN9g*jO<XQ$eE;Ad!cy@ptI^&~+_8HttL#2as4$!M?D=l77JXY4EvIRfpZ$VV83}Ir
z=@Y0Ef-k;nJ4Y>MtU=$G%l;EfVO*Rk#Qy?O#*ahRJNbSlLD0{4KG8}!D?zLimA1CZ
zsal@CYQisOLd-B4betFXyW_w%<hy&|zr?IcZtULn-0pCCF|8zKGb~(VxOQ5!x4?V$
zAJRTx_q@m$I;E7x!1tL<W5qZuJufuyhB$OCZL-~-d8dr}^T@jUf2(W)xMjN+;CLG@
zD;n~7yU@p7hK7uvB+*l$e&ibY4v%rOqj=I|drh1dGZ7wst$bOmhR5~pKY2!CMP%X~
zEBU)@*db0?ksU2@)%a)XO{6-NpZE+FCo2FB9o+d+(%o(8zUeB1?LFT(mje}D_J@(s
zZ@-sm8KZC?N$q~l*I-*Q@D3Jgbth~Jv&z?uM#;z%5w~;0Ys@0Ic^Rht+k7M^aIV;J
z!hhS?+=<pj$PQf@J;-ZvzOK2T5Eo$BI35}n5ILw9j@ct!-gNb*9qU?0NW?ES>gKT>
zX)JO+ot6p<adDV&+jDHU6<WlmXc?@+^JYq`UT&~>LjJ;%9Uym~U*vbQrm|X(M^{;j
ziO*~t`|$?i{20!b8K|>})iZubB|!G1Hy&7$m>-Fr+lApuG>rs*i;5w0(_<-4@9JaT
zQ{EX%``w|-HJmQf9X*{vbz<x1N4a0M_Wx5Un+YucB=+m%8(1u}+fo#%|E)2e29E^(
z9(Y$S5QgM==JNU?a<<+nD`ycz`6KAB2S{s*Ii<=F6><aWZG}f<6*74%;QYIMp~PEf
z9oiQu$4Y5qrfNgtbT~tcDVW#oTKmqJJ`}ssi5MdWOw7#VrhMCeY;an^g|0*|nU#Kf
zlONw(GKqh=;~HJQ7|JDxM1tC{E5v`sXE1D|CQqyA86~}wPZq(il2MH+gh>54{zCh5
zAH#tym@MEBFyIG>b{d?Z>ZzczizREQ()smAV}gKZzYwG0=EChZUmQ}$Ovbkm5T{*{
z*%|cLuze$;n6s5+;_B2x*9(!%_F%SAh;YWreB+lMb5@-kKeGs7xku5D-)<>C)(~EO
zj|DKo{dcq|MoDunE-rTVMlgY6f>El(yHw^?NlGNkAG?2jU6q{RIJv5Ri}ilb=RvM^
zi|oRYz-moVXLZ%5S>Cs_hMoKRFR7&HzQc~j*$Kkc5sf~xciz9$9|>~^SEJUa)oZL8
zO7#!-x~0z8PoMa?uqAV}S_H4qx7%$w$5!JGmyu#%+08v;eOo~HGk>;KNE!>bKb${y
z>xLh3&`i^dq2n?hv6<saAMOW@h|1~yjd>#-vm46l)tc>pppmpG+$V<%cld<TCziNs
zohxS-9CFxRxA?ZWIv;9>q>)Q!n-S8l)}R)pd?x{Ds9XL~JvZ9oUrN~~5eP`u<f7YV
zWo!xc&tcFgf5&P)U*kCTc^<4`ZISI#sGJ@y0e{~wqQo#yLeOEugq=-jODScsG+lIW
zF+d@DAoxu~G@V}miQAL3(bto5Z`_^Cpk1Ot&bo@o-&UKE^j()xi<i~cz+$Bqv4_aW
zl4l!D4)m(^C0m2##8xqqfrBlXv8uk|bOGWUBFnGZmuY?pT*NHdDO;;qeIo(^Uyy>i
z<^=tjZ^x9Pi)jQ}z40GrTYoMHA(v!^em?vxp~04KG%;R?xnDNdiI~2pWVys=jBR|1
zs)whdSX*q!KzIOJ<%?FulZis{oIkO>aCQMtm1=K2sQb2WrE{PYP9sg#xS|JnGHZ=@
zo2|<n-To*UrK2KdO)@jO;O312MR#pDSJC32!{c_R+zF<h5IC*M$7<5_irGYeCr_8B
zeM_;%=R>b3=8DlH>^ost8v^n$xxW?p0TWX=@w$*uDSjdE_h&hS7&a@%s<pSF7&~>-
zG{BQ{N=VpZMdjNa&&fVbKebeA_tdX&BP|+mSV0}}E1TfKzt6Uj^4ydDCaAZ}__!=s
z8BKc}ImCGV6+CJs$8<X*DVbJZqMY4kj5f;+hKv126B5mJYcKiH(a6N(S}SiL{R!_x
zE|gQ_r{~_=u2rxE{9Y<eT!;>~J~wl78Bkta$xz?UxGF?bZ}+2TEQY^jOQZkJtsZeP
zs7U+A2X;LN3gJ1d)pCy#OO=HM)7vgW-ewSd)9*j?Fdj;G6Bz|uNYH%NKhN!f#C#Qf
z*ggN1c=8_DDSHsJy&UkVbN~)2kJRG<qAU1+TUvf@!Ssn|E4DAud}X~C^8H?-E)u7j
z*SmE|C0D^8d4@ZkED$K&b)X?BOb&qK!}Y}N{>@3>(p!rsQ{|O<E#P^t>T9q!@-vRT
z{4T`G5>osvQ8)%n?eYIn?|x`iD;#C3PjxuYU+t1{_ijnk)Iup{3;n4><nrcLP0CAQ
zM^G1e3<u|8K32e`oZ6XW$$v{Iy2H^}o2j2OlRl}ZLWzbmGjuY^InT+HO5??-B8}Q@
zT;Oo#FOQ+`b)i#tZp!dch`>|~jescQRERWo30P@lw451_C$Ky_Z~8s`<%Od1Y_y4V
z3U#yF@cg@S-+vGX>iDxY+C8|ml}h%IwmB`fQ4P-=tm6eYUi~Pjfs9w*wpRBF!0U5M
z7F`;H0&d;SyI?P<bo5#}jUVU3Q2ZG|S;cH+8->W0dqv5Za;j*>Y5Jt?*US>4(rLFc
zPh;NNx0<t1ySm<UvZOAr@X35?`euaD(oOr(-6n?BW_zo42w*Zcd`hGz9J(2eeW;M>
zx_culirzza;C|P3Q!Y45+!-G~sIpTZP<f%!5c!RPd5l&+tDhnDnT0JksKsgc6estk
zte?Y}o;+>nT{(5J6e=<@MIq~KFge|v^-9oTLwQ!t50L#~Aas(kddo5ZmruUw!%Nf!
zyS`F420?eI%pz&5@GbNg1M`R|U4mhOPb-z!Wr`&&!&F+jQb9*(xUAZb4K*KaSIeH1
z$drlGF>v2R2<a@-1pkRHz3A`T_`lM*>YQPmc`$xjjyy1E5WOYPhYOol#pHUif9J<a
z4!852R57w2q2uL1x$A_))jG(V$YE<FYCeW^Ivjso`T)oU9A5FLIkweW#_=pZnIu2Z
z>X9#WeNVmz!#a%lS31*S&l1<_pPX?p$ehKKTHQ?qL3X7e(il|=sv#ft_zKw3w6#uw
zQ*#OWyNs;IJfUsucF7kg>6`UCnZ|=%wa2pvdg@C*sW<`IsvhkI#`qPkHalxSiuEx4
z3xF0*`gyPH_}8Zr*Zb!`b=%X_Q>X9$f;Eia18s#o>-eboNFiM>5@t3+|NYngA}=Mb
z0ca0aQQbN1^WzE-7F$I#xeIeH2=YfSx1NMJ+4{X#!+sdmQb|r^v5f?5QWJD|cY?UB
zA3T^LPv=@3uHli@VvJVCFZ*&2RGI7J)&BpgNE9j_eHHr2_lLUdc7`&DB!|fgyPH!_
zSN5=yDp{7mf&y6{b%trU?v(&YnR_4ov=y(vjIt?s(y@>uoT7Uq5##}R_ef3a9IQm!
zeu|SRN2mXaIK3`|YP@-nt_6RleLv&vygmKpv06I>NjAbd_o=oxx8clawafWSeR4dO
z0)67$_qem?jbSQBGNV2zfQlIT6*f(q8&%&#m*Kct2dgog810i1zdMQcl;;Vpney8@
z?U@CeF2?)_UE7AQ4(W0tud@!_!+z~<DKEq5by|32(xm9oUcl)Q^!5BVvwBj)4HBl8
zIl>C>7#&BTEbOThn(|sQ<eOwb#=?ms8D|T6dLT3tO0Gc+EG39UC}KW7CmQKY#66Wt
zW>?$OPG%f<l?(~yj1GrE>}i0;F3M_41M|JbpX3hpqvv~Ghj~>N?cnY6Csct;lue@0
zA{#85=(+y$OTk-_?*S;Agz?%{(-s&K0rwYx7`V&l<Ss(-VI_tx7xd2Y21~nCJha0m
zksRP#*vr5{DL#){w6etqy!_HT|9SF8-7H1B<}Kqr1d_(ygXNh>V_t<4*8+o*c(~c9
zPS=AECj!w<b7lRN%^hd1l}%5Ksy<A7_-_pU*7I2bvM~1XwH}K~6)%39-5f7Wqbddz
zjEK}J@^CZ%PKDa4I7QB<149OuRJ5s#v5;3U;qF+GUEIN%E(O+Yal7V5T#o-5Ucw%R
z84u=M5u^iAMQUYV&!e~|;E;z)o_+L!LWc-_`%dHL9vSG*DutUW+~h3C@9HKV+v)f=
zb<R;~;|Pb3bVU|#PdP20A45Pt**P_&iN;JQtg6=nucz~Asr30RL_2-%DCFhkqiVg0
zNx;t2@W-XVXYVJjUCOf!k0j`guvjPXu?#{1f@6pLOfbGwtk{AN7aA`%Wrb1Eaadi`
z7kiHMdqU96CWYvqE38LyV(m&)nO3fLIPWBt6yV&D?L|o1sGS-RhXs%k)B2a|>57d&
z$ckh;j2mQ<SRl0~W-$?13+y6gC6SGK#Ka#3hC(l;Yyg>WBqP2bP#D*G)?JP#Osibg
zhl0Rj8NJd-d1i_;Cy%SspLdT%B&528ZVI+d{u_ccH@sh!zke}t?=nh2tCXvBD)9nF
zrbw|zD)dU{9pGg<jp~dk{wHtH9=xvQp1zRQQSJ7pPRVXpA03H8aEDX!2cwlIm31S9
z-^;GfKmgBg)s+-V?R91YQOj<pcvjfgSr2I8flAjauRd)^ONP6%2jzGQa|w?du}<hq
z>TzPDFM7Z_*$;(?ej#IoE`mz|E}5G_RRYR*vqp9!g8`oQjirV?cA619EL=<P)2+{2
z1}=p*vejlgHMu5hgxUPm48Tbp`h|QJ{Rj7LU3f8$g33T%VN&|D<Y=?BeH$zPa@xCq
zFr(F-(h%x`lznR6SzC?{OUNd<^d3^|?HoR$b^yshiqP*E8$-D#*dJXQma*fwKPx+A
zBR&jSM!QUaLzhXH^I7@#ME(kq-x7JYa<NIAAapPRIx&yvp<q}d^#mj;lT#(4ruoJ4
z=#L0bG{hsDgzzEe9)}00R*Cd4DPG5=e|?c^WVS<^N#6JxVZ74NRNtbt|G{pv!O?(N
zdDi=E=?Z*!+?#zs!k{V4mKn`$1wLRS6!IW3M*k6^8ime~r1AnzU#VugBBD4WO^zvq
zWTw|;8VsqQQ&DU=!2N7yB>cXYeI5+V0@*Wp<6%aZl%V3XE=y>soEk_=#jsRb<#!lc
zJ>ytTY#jWOP6i$Z*}zP(Dzp5h<B@YtA?xS{A%Qn8o|;cRApD;HY4Fdfp<zfADIfa1
zSGDR*e>PRV|Dr#n(B+5C)IQ<w>79J04p*HzFm&cJDt`R+?)qpc`OHx8^0LFwCdTOA
zcjXvPL|S$dT<YcZ_(xlGXl!iy@RV=?g!}x!ZJMlTz1J|I2n>dlJA&QdI$Yhv+rG_(
z#^*-d2b0N*tDQQt^N~jmZ8OcPPDisR;3B#9qLlxSs<(`aqwC(h?}Pve?(XjH8r)qP
zX&|^;<9_4PxH|!YyE`Pf6WqOVZQL2&ng27-y!EA4ovO80o$@++U)RsGr0;e{eRTdp
z@!j9RTJ(&aP#Xo8qLV}T*xG8N88Hb5XuebLxXjy(-u2X2^8V-h-J~6>`@+_4F0kv~
zc&0P55`QJgLD*-y&Oo20Qq<PS()7L9K=b@>aHTb8604)~RqC<qg^6)xCti35OD-&B
zJA0!gqO`%pNG2;|q<AU0+56`(6nw=dL(W5P^Wqtdot-mqp>zZsE~`)sPBy5~RAW<f
z&Soy>lkkeV<yOlL-Ze978ghYAkAF1KjpY5i=w6J(J*$Z2#iIS;!Y$!>lqLEW{eYK+
zwxa#Wfx&8o&uY3s*%Mo#v!NoKM`!lgpyWkRO&a0(+lHdeJNdfLec{j|AfwBo)Be>b
zq_Pn*o~*rsS|qy646ky@M1|C4Sb`_@2xu-R5%9@C<UQ|n{oWJ0CfVF7z)wJzDA-}Y
zZS*_7>s!O%H}=&|Sih&+{FBRu$_=_asn6#kWlr_HGRIOR(A3X5go+&kF$33U6CS(>
zYyp}Q7+jOBM~Siq*N6gyDAUydBe?OU2abg~;gpMt-B$0Nf`&`6o{LhnmS{L)pXm-u
z54{^A1;ysUaqFB^<(L(YALB@slVwgR42<|Cnr2`T#iC4myrmv^Ex}6T{lSZbd5oc6
z7`nU_umI_jq5d;|khOkCq`E)u2L0%oF}G9MJ-0d0{&f8-8ILg2aQTSa;X-*5hVpEq
z8lwBg*Ma$2Tvl3r!+8O)t$Tytk7{RE$`rt;hXtCi1F|Xa=E2)O`-|r`$;PKoCPp1P
zY^^&d<jG(f<iaqVVwH;6XuOt;xCI9akQ(BO+lf?Mb<PpH11#){QgM|RFY(ij>F-Kr
zai=Ae?PL0j9{Y{sAHP+WIOt<eP+y{OE1v(>y;^3Yr;yyMztSIE$i1S1mUxr{g9{lA
zt3@>?{8MxV>u_FI-O-vG&~ZUA+Z7C-sE*b{k&|iXc29QY3u-YCabiv8hjDJs*Rwv{
z+(F0Pp5+^R*1(yxEAxt_*n3=6k@n=pXPyirZS5uk3n7$)Y%~{d@=^1<cwL3Nb_xk2
zkq%5n#e&-F9jA<(&{DNtz?*-xVYiT|V44Wb({z_UVb~ki=uV9O2)PmSw{kAq7~4UH
zMtSA{U8g&FYP(7$>ETX@@tkVSrVcPJro?g6|0bsaQS_Z`PrEhJ-kdU~f0+`S<qp*%
z#$ls%<S(+ZW0(0__gMI8u5K0yv*1h*0GHtQHE5V>wHafGOKZ8^9wkf4yh)?x&DGH$
zk9m=pZrPY3FRfLj>CVr3+Tts>h@o^O(g%jP6)tZM!`xy{hh$K2m+9QGh*dlBU;!)B
z6=Sba#$yHPLvk3UUp|!{tdX=b)9&Kv?dmwea?tEMpN}NblQVWkA9J)+$orwRF#COT
z3vqbC)~E<kuXiSWa<i8Yud}6JbL1E}pD0-WSFEz9nw*X-#bnpl*Du+Je41cAB%pEr
zvq%nGM4NEdbjbzNp1pXLMU~S8FlI2|Z1wJ)A2O7cG5dw?Ixa7~cK6V_x1d1%0Y#Wb
zO>EWW>ht2ch-%c}1^GZLlSMU)GS+y;a`(-;gkiYF-|>MDDo!~jv&@|4qs)UT42*6h
zIEI3UM~(hBM~QXFHPm??Gs|i~H&US?!XCpJ#FL1|iqu-zfKg2s8Tpl(=1+8Z9$FDd
zfgeN<7ySfqt7$EDf_5hTCCHZiRCl|IPeM@H&!Fe#@Zeo+#h_Y?fk9Mh<{g}cdhQMr
zO&yE-N9{0LJRPAg5sOgS(-lLSJYp~HVF%Jr{jDp3sE?j)Kneqg`6^QyToTu^<C!QI
z4gT}z@M@((U%})v3Y^R!_lShm^?Y<W1iU<=5JBo$f50fOjB+qpjvmslYZUb!qT{TR
zoim-j6WMa;%(28&1&Xn#_=}a>DtHtbhe9h)^;e4zA%|aWO-6sr)77)Kb<x{cDD)cV
zenu|#3u8p&SM>XZs1hRv>izj_G?~N&^ulOe+(jE75je#<^pF9nsAoo^=%Evn1HbJL
zCf&GBU2g5L)qoYwaB7A+ENFZ8NLf5lj=k7NC7Y6iN7<VBy$T03@H46h<dlz!cu=Gf
zd^{R15&%DK%o>5IH@0;e6MowKJsyvC#>`dyDx=Cb!jg`ofJv}U{047bJyO1Iuvyu(
z-wN6MBH<b`21riNBD7{RqlNdFk|HFfof8|~rAp(({KINjqjAF`;>kB=j?-)Sh0%*Q
zB?&tTt$_Zzjj9bvfX^G@j~yeYG5nCKWjW<@0Kvmdf(+Pout>I~AA?lc>DM=06-RPc
zqGWqWc!qYBS{dC33>$-sqsFE-3Y0)L8mg9xs8GO{8tu`<XckCK9#+c-Zq20PQYPWE
zO-%MZr;~_G_GS5!ViKPCHDR#~6PsX}!Y*o0Dm@<4gcD#4lbsl}?DN9$c#TbSHA;{f
z%{RVn&nfjOrjNlc?(AuzcY%7F$u5IRgdsgb2i{j|fXDU1>Uh$1_itQtT$2WcgoD}A
z+8EzDmSkvnge^QPxj#fJ19Mj{ak09E!JYdNC|8#dGW7Mizy<5b0~f(qFlDuBf9R~i
zf12W5CP9fHG;VXpPN$NhIYs<RUv`(_O@TUh<QJ2FGFJ1r!BUFg4h60#*yQOIZIxZ}
zEj^EynK<ap+vwF%a_LWLIv$49TjJTud6_Ske%kmGYgRqy54KqW95w$eNqn}G9LWtd
z(f;l_ITQ-VLs<-W5g`T=S~YYoJ<Q~U=9HG0g3jU91gfilOhk2okZbmnXnB7yX7B3A
zbSiFPuf3O!B~}V+i_wajt@y9u>qsl2#$Q)*{wCULcZLx{M^p@%cX}aY91pNiZ`>D2
zDX!`AfuA7*)K@!FA+7R^u@1eK%VRSN<IZ2eFH9G~C9SBeE_&)*ti4iC1K05>NQLW~
zp<hIC<EB3qcF<Pu5HLa2LL_Mu<xjJcfAo^24t!hPg(Sc1(<gW)(fQn+#C-J=D_BN1
zGV;(yb{tNy%VW>i`eeTT++T+X$msC~UlvgqMOXr;066lHvB-{!kAa9tV5?hNa0v?r
zC0Chm(nCkLgyI#mQj@xrl~zN6-$chyL>Z%&*qh_!(3iH+tcSM-9v#BTU-p3j;&=GG
zm%v=Y%1XTX!EVXDO|!o4!pcpLkn~p1J?_HO!BGPUG^Ag$Aapn3HB;8~$p=m=%x@Si
zY~1?u(M)L=$M^nsEcBM6rDk^YSY393VvFIqNXT<V)ETp`Xd`=C#rRHP)P><<#=_r|
zM#s%WJW~sD@fmir(M8B3i~wk2YjCZUKaG6vjU4*O$pVggT`R%PSZk>C8!_7Tw)@-`
zx7HYXHiDD1Ne7SMuEqkLTkTcvRccnHGdEIGwt@Gq6)_T6m3|k1`fk)SW7Agsoby=#
zJ@-g4^<}yJT)5f8@)72G?fUND-v%1`^r2rX3i%>GZO?`0ltOOX>(O6)NOS*D>w+Ye
z6mV@hCOPCi554o%`sTB!3j5d-^8fL4WX$sFpOtegpA(Ws7tgL>#H2L8Qrh^KUax+Z
zYzEu*?>iI#A(Pp;a4GVy7m?1`DLudQBXsnPe1~%mJ+n&RkOQFv^+eQ^mQsN>_>hra
zVA*un8M~(Dn@qxHqn)6uJe2g$Hu^A&i+Oc(q*L2~<AF1M?_L(bgBKTJe^`7SM16Vv
zmZm57MlP*rQ1k)Xf%yRKbWRERK8fSQJ$643vYtjL$^Syb5|yY<s5<!Y{hnP<`N(&u
zGkNeJJsE|OmVT5~N`9?lzq&(={p#$`DiUecu*WMu#AqfPS7RunZ3$x!BW!*A?k+J}
zQQFD4=6$L2&DiTkNYZ+%E+U|ZdLYR!oG6Dgr9|+t!4f@4=z0@p=fSApV^6;QALP%S
z112FUYZmK<yc3?Qx4EXuhl&A}O0P1Ck2kUx>O(DQ&5V_lwD1X)T;!u%($Wmvc3KE*
z_I)R*2jbmu^zR*Pws);YXBU4&g#CzE`ae_WH++fnOZ}SE|B5Fx-*n9afd3Ige9Yg`
z%gO#9ghO0>9rXX#fch9fKO9ie;PwBMOd~E|&lq7qK*M^$g_N<QW~u@<i$}MIc7;Km
z+$aLV-uy2Qd6LC_sc`xN{wFU4F)6L-I_6fU|BdjTDOwf8ttXsW3U9aG8W>}u*I>hI
zj6zdQvNE<;0(E2_B@RIg0722hSw){U3V>12rTA4l{g&LAES`FY2_A=V+MkQvM>;5c
zZ6P0?wyq@7wqCn5|LxT~2IzO8D6Jf~9v5^fL*&kOr;{^@5r6_TCB5Y1$n{B^bmrv}
zi!g9@%K1b~ODRoDyH^v;mtQzt+GsXr9_vjW)kGkE4urg{vyl(qnzZS#HalaS+?wQ^
z`J&(v*^fcYxDM^cU_bO4`5veZXRdgU*L##X9!Q9TQ`?b)KZ&NMyQ_jrzw;5?@I^4j
z#(@EbD8qlTyTnKU*_>X2KAAbuv7_AoIZGb}(JngE{{?4otm3|jpa{sAR99OrNEu1r
zS^b-q#fX26O*O0~u{8VRrG9^4(?I3$_I2E-DT^>|(&=T6m;-lg{B5tI)$Ja~$K!%(
zDL(hqS||d+Kgvawr0yM4`=vE*Xi=r%`O>-ZQ`@(zzlAM>b(Xsb?!+P!MGYlwB*tWx
z(gBq?V2Z}V-0TB+NrKEp7O^MSx9pWS%2X!q%NU{Y{UkNWR6^KCTB7#V6)E((wch9T
z8z`;f`@a>zOYZn5?%5FC0>tHpFBo2KqKMiTJL4G@d?m_pHDECmp@+2iLKS=|>b@Ur
zOKJb@`R`oQw09t4+q})-h$y^&9YCks0#Su>hdrz65XpjtRQUJ0EOH3Y<mt*!vvfVE
ze1OyWZj0RH7Dw4(T|Pp_aAkpU{CscB%Vq|8Gh;lt4i>jWHeDROZN({-iuugq``$-W
zsjLiKe}wTde3&k^Hs#PcciHNNq1N2fdTvT@NdKtK4H0Rb#I#3yoN32|o(j;i3ajfu
zObypm_iyivBi!JGQSV=W?`N@a*{g-?ukO3-y-B1pt%?U`R+Slb<H5~MEBxQP>y6*6
ze=rXdvQI_idwu;_(ltW(<Hz+(1`;7#6sNHqA0m`dKgcm}Gn_?3E6U7?TB&{f;jw*;
z9m4KeQs}u+>1j3+B4hVejorf48%6*>*Q9AHGykhp!($SIEzP(J$!`1y7p;)D)Ubi4
zOh{-Xi8f2NRk2f;{WHGB)lRQ+u`<y_$tKCKzJKF}w}`?^DLS#XP*7_2i~e1-#^CpV
z;Uft=ia<d8qk%aY>Lb@`v&#=UWJ8CuoGH1&meZEu(E1O_<<T-e0W09CLAtF0@Es0>
zMJLwcA6%Br9K_t=kiV!fUGaxPvcs?jpjVX=A7^I3DA_V%Hb_BJF^DsigHbVHrtip8
zI6bQE#JPiZ7?RGT;QSKyfDWer)bn}%5waVIb%SI)lyGeVFViNic78>qR~InKY29zE
zxTAy4dhT*I%B+rEqY^m&squ6rbd3ak{P9I&A<wU%zwQ4%*-BqHUv$OJe^PHRBcpuO
z2aK4|u+W68-eZiU&ZqtQMKx}Lxgn+-(dwUTRTUdg>+v;GQPQ8%8b@3|%FF8t;syRN
zR$K*bFu`_eUWm75DT!wjcFG<c4X0G_N}24of?hufRQ1`m0|ygnscF!XAd0(pXOSzs
zS@X2H+s6q}R0++J@R%*EMzqRNE_<CciCo@Sd*iWxM$#DEjy0M*KdpWHaQck%M%Gh3
z2yPTYjC_&`75lGr<3ikKMf6s!MEb5i5o<g%6wK!g#Rx~u``z$EB2#O!f4u?VG@=)=
zw(PP);vG%Ob9V5!tCK6!uUe@`pPSPmw%;oSb&ow5U4AxWG{l<SW$gFfrvZG&z^#$e
zcnS86#~a@xWXEFGj%VU;a5i2Ax)XPYYm*L{x{zUm&9(KGQyftHF0T0olPKC?>JS2R
zcyj^=TmT6T%9PpFXQuO$oP3YZKV9S%B7H@G@ucZE42pN1p%DTtVWcf2TU%xD5XRIL
z(~7hP>jRQpotfFvw{W~F8eQQBh2f~MC$*B%=jcjVnZXDU367YRB$jbPf=Sd{3Vl?>
zAs$AeVgaa1i{^jcZ~b6;wTF<+ti*mZRi7tyuc-v&2K4E=&aa5HR3D5x8BH#9c6O?a
zkc+=Z$%D)Hp~5n(`S@Jd@F$lR+!3+wrlf50<V>dZ_EqZ~vaowJ)^6UFIGigFKkkf>
z^POU&CD+!c?ge-7*jmZqwnLOm5~pdsgHamN7p>f^D(h2#!G;&#)lCxle)4svr`?7;
z$dt69<>dw)H4*8xM{H#)S?TrW^-Jngi=Wrbeuc59(Hss8GfUg&xRDa!su0Qu4(1Dw
z?5C>WtI^Kp{f3CLLty3+-fSCh%z@(WOh!0pfAmrT0)|cMU*3FBc?Jf$B|lW9xJg(@
z7L0moUm>duyN=PQWMgYZ@1_?_|1{FQiM)ALcXYHBZXcebSW6Kg{r=7lW&Ihkq*O}A
z5ak*n>)~<m34U>X{k~tYW6H&8Ddu5PhSb5s{eMsUf(<<xk+BDmq6(@a%Wnw=^c$wH
z_WQ=7p*GSq8{9HJ`ULZpVilL|o^5UEvGP>!#8}2%!W|LF8L%JU10|Ame_oL3F5=^w
zU~_<H_{T?*20jBw8WfL?s)lNRLWgyfrGb>fjDWMB?0Eit9puL-MVLbqBY}fW64uML
zEY&8@4wn0CO##68cM1Z|%BHr;&DNYCkXn(x;7k=j^o5w)#{At!6^D!gEI61boWQq=
zSBq>n(q%w^PzQW0@u_~N|3&uhfrgnQmzjikCd9175&$RcGi8Q0^Edo&M{90pvbM5z
zq;l0uO2OahQ6ye{mk)_ywZFtH!jQo(j8>26uhw7D6Ywgv*Gtw~5dh?WwFw%cwzS`#
zb<J5i36y44hdjPKdvTUK0*=F8ZknhPI})N1m<w5G>uEc5AZ~le&!HX#0=$g8<`Q4g
zrs>{(#j?gdb>QbvCw8QF7MOIe`la_-vR1eaO~e`$ZKxV0Y^r*E#WFUerTQ1W;JkGE
zps;<ts*}TVf|OJD(GBTv{M2gc7r#;#PrkLM@G0}npjbu^u3Cg{JM8R-p(p|P@;JOz
zgIrJD1G8tyjGBfc_DF`|&}flvV+>r6cW2HZq2K-rMQ`m1OlM?ATGs3jR?1Og@%T*a
z(%r2n_Ajq-PuW?4<=tW$9Rk+dnWA#f?>pwSrJv50-+!M?<x@}xPcs%gyouA;#uhul
z3JN^0rpLY!c^8k1f;FzudIPpso*EUy{IUOp`*7Amor~+9Rk-2gy?h<0Vlut9U*M~F
zM?o{zT!I<20`1q^fHXS9yW+5_qphi0!S)bj0D^Np4=%E$aOe)8n)@%$QfdW0_9^<%
zEZ9|O6FNlko%ZTxB?mqfPgJ7FlQd<+!4h8oMM$`|skuPC1kl5hk(E&<+K~5vzaCTM
zplm3T;2b%3dH-j9K+f%%(+bQHG0D`oK62xPgbnQRg@JcObzo+^8<LCWlgJ#zMt#<w
z;=DVyzCvPY)pmL2|B%d$zqJ129p;k-^v9PFBZ7}LAR`yaH6dgbBKChJ@Os`n=x*7?
z7baVSTyY*o@w@B`9UYbR7ejV-Po(BE?dC_6qN(&R{!Kc|Q~019S0w9n?0zR%ENu9|
zR6Z#Y+&WMiRTM!Z@mL@!KT&?FCx;DR7vr471t5$X73E^ZXbO_|GAg+hU$NLLGyWzc
zQ3NdZRG5||G9FAN#%GH8nlP{!c1IL!qbAkv+7C{4Ob&NXv^pPQ@Q`do+`TEOH+TNI
z^jePYF3BC)bFbg2PH@~0`FJu&I$UA1NUo9bu*8OheA(H-tOcPCPHV1}Nav8PZ$)OU
z8>xMM5i;k8W_P%zET!}9U})4{A@xIX4HuDXP<F=(?rzG@tU!-`hYB36Bu4*+uaXMB
z=N12|4BFGbbGkgG&i{tZ2<HMMI)mOiVG@jBRCzik1K%s$!aV_4#CfSX5<nY)rr^&`
zpa*2}Eu$!t`YT==A+@%&G&Swwm(llhJl=f81|2;;hF<!j&Yg3N-JZ0o84i;x1|^>Y
z-v!&YT*K-+Lma@yQ+DCf6l0#q7&dQCY;q?ks)9CVc&_YmFF7l*3&?(f9+MRvgis&F
zh~9oeV@`o&iHa-D%khmIn)nOsG8^Rpt3zW*K`oR&rI{SqDj!cxy=S)JZXDRE9O*Oz
z&`eA;A~$PJDCheX*_xW^Kwa@O`=+=2c^)H0T~bk*pL%bwVN@aIL_2+@PZ}YLQ5Ms|
zTP?7^7-w_8=alvZH$^kvD8EG3F|4boY^S2&*T2<yMwXuMPN^}dmh(x-*4nqX3crjq
zTMyQvR<9l0)nLtcN;ESUig|}U*GU7K*sr0Gm^<Z%um|?$)SOm7=(sD~72?<kLstd|
zP>F?x9H3CfSFEZ^HPf?o=Q@FLV1}iws#>g3Q<!NNd85dRHZ{8v8+o=CYD>*4Nievl
zsj8zcr`7~tg_Our-Q06zgRauzVd_aKBhBq@;)+QNH}A1!<@?R2AgZk<Kgs6lRwKI$
z6fAMTQf6VJt&QVqgENUq3CC`&6Oc>5AHja_ioLU@)UWYUlAI|TTt{mlCy%Jk;j-kp
zg-2Z!@Mdc;(;ats-7`=uEVhm8&0{l0J$s&47&4UE^3!2)Bsl{ZMX{jT;IAO<>og3x
z8cQ}G#LS}(S#czT4r7Gf=KU_-#clJngXs$w9bd*uc=v||Um;PLHYoY@{3|_Hc6M#O
z(245v;X(4gg<WPc&nfI_?bm315qG`JS*YXN{7=Ecbj3Yb)Z6lnF*;I~yiFE@HZa-L
ze)vYOcoA_WB7_4OJeLk6av&Hlc=B&_N2idWXO-fsS(iPCr?`B_x#^d-D{*PC@NK$h
zGH)r*5|xw^tG6;^d}Pgwyhp-9PFjWGVwKy~16EsK4Ef&5(rzpzSgky}b*C?7e!HmJ
ze#y`v5_C^4l!;5!GZT;%dbMfFf4uZ6e(i}%%8UJZR(sFy_ee3+>??k<a_<bqCDC=5
zal^QJf6!O;^#0TZ-(|h>eD889{)Lv+P@|`GWp(9mg%W2j0rhe0HjJk?<VV=;aY#u;
zgZB&I1O+NjZ!uCQXKjb!7S2(zxgG^#-9LL;zvsP)S17;s@g8>Js9(-8X8w{`*HppC
zY5~naAhG$my|GsoZEbv71#G|i4Co}v5WS!%2_+N3&KW33^187)4zu_A_O9<8no~DW
z38vfGaKaVI4hY+$PXVGc9~D~eKJrY(ej?`)$H$uSaKMUrxv`7pv{W_F7twReaH}h_
z6Hb-dO(j{Pvb_4+;tW)oz{R!}5hmzJaOO_USI`J`V%h=a!rBKpxDBP^T1?+g$VMS!
z+jXT+9_t7PpDbNhNA#7?Axv)2_0tX~*gjWtoQR{RRsV8oT?&k4F(2Q^6%Rto+#|5<
z9Y@S)<w>0dxb!<C3kRLG`SYZf+*_cf<@VKc!uFS7p=p$3CoW{FHi(lvE*!qg*5R)Q
zpAEMs47Vy-Q(55DUC6We-@Y7fyHs?T^tE3Dk<0sRnJc_=#>>v=XNnrrEz=D5oaDcO
zQA^Nq_9J_$!e+y(ujaNtC(a@+;j78MZ;*$WSzP}1aLz{GCS^unL~id&$<0k1=q4hR
z4iQB2q7O43!yI9xGo23n0_^Lolb5xetRuQ=^d=I@VUwi2Tzg|eAyuMTA4}P<#>vK5
z^m}q5FWb=-y4^$0yhZpiAJkB(1ej^~Drm`Ep_0n^vpKAd0y!!4a!P)9KSpC9+Sa6T
z;th1fU)}0GJw9Jr-(tX8tbwdgRPLrv96`TVhkT^ya56f_;_#(IPi^WX{Bhy;@fp12
zN=Zc*A#o@k>2wL^TP_LT((=~n*7ulyj6Qb>wP9p^ud|A0RF|ax9)Mu_$L3`Z8>d2;
zI<SEJ+LA7sfB5)BS&?9F<xn-FueSxju`_=FWr;aB;Wq+Zj>}ETn5ouS6IX^<=|JZJ
zrz;*2ieR+k2f;*NZ$wK@B%;;MT%uJnaiNMUSy)>D)8JTB{8~JDV~z3D3aTNw3RiTM
z&E0n3Iro5s=vX$Zwlic6yVI7tPw90_{ZA@(Ufr%NmRg#!8qosy&%`TTl*ss6%>w8K
zNW`5Lvg@QD{sV`y<EHqc6Q+}^ov=#aW`E=Smc8#A?=vvfw=F^#K28;auAJTh<u_P+
z<Q{9urKLY6qUGpK=c*5tjX&|dIpQS}bo=%k@6=ggBxx!Eev0+&=19Hh_D3FjkxjL0
zQ`Wul)^^|noBx1$A-;NqbhWf5S}K`?7)W9WcJ-Wt<3t|A3QJgaJvqlgJXJcwsq46M
zN^(DcPm)f}FrK3Aecvgo0*-^oIs--BvYN@gcL{ylgyC$VBGS16Q@5X82o~7<*;_$Q
z%+8rVUUCAu#$R|bwABAVZ0QU5(7oO)uU=K^fL|}I$<ISp^mZ5t+Ldzb@DI+0*{AX1
zn7Q47Kn!Eior`jZ_a+_H4mG|k5#8~z3V`|;O}N(PX%XKwUPaHQO0!73YML32V|0No
zOrf>zT@kZghYeVF2Cn<jU9=>YnC6dAJlxwP#9(#g_$zHL-i8vk(u6?cpqg0%r@n~g
z?c^BM2H#LyffGrOX!N|%xW#?`EK#>p&QG`)=NVeggV*~AhUR=O5!k%_7-yE~t@XGx
zr=3$Rpe;}D?D^eBP~R9X8s8D2A;Bv6?o9A+odo=gVh$raqb1b9i;@WQZrXSJOS#Cu
zhRf}GklXcaKHo(35;Pmnbq8>^)0Iy*uqmaFx87>~SFGm+htA`~CwY$8TASBTAf&fB
zl=jyOP;WkUwu^6c%_fmdILUp&>nn_11O8<E;CaCW<?+!}kIDP?E*Ad+`S@6v!fFrs
zd<k*;7~!%PUGRRD4OmZBa{?;!csRyQ)PbesB%DAqTJe+BY<-4xx%>H_5pC|$i-Y0n
z0Zv_KGGfLwd64{C8S%>nF<3)QcclF6dEU_89LeP3ZlbNm2j1-^zN=IaNJLzUeHz!1
zL<um#C{-Q8d;_hkg{phd6~}Fy2Ml#U?;GAjRwUkx&hlCX)xIc01|&(|_Bl*(4fgZ*
zpk_KYway+Tx@tIMv!S#S?2Jjwcqg_p?)kCW%t2nJvIcPadshioQKV}aVq#SSzC7h9
zx11Qdx%pb~Q%@m}9JZ=-jwlFQe~s02zhYGX+FARJD$2=RHc;TEn=o+7$ae6S$&{g)
zrt0cj%M*pN-sk0G<wqlceR=ao92$%FH)`SR`qc)i=!45b3vr=hhy#n0F}$`srVyN8
zppTv=+|r5Q4s37;w<9q7bHjMvzo}*tfYN<6r|Q+39;|@Gchx<TorR3+FsJEkKT$BV
z1lc{zv0mZ0c9NiOav~TC(O<p7(7+mD^9N00x4K;QaLgf|{{4`E4TkN2pVI+533%J2
zhB|4(zy92M6&caR@zfSIK9zhzpSq?upSyjB(r!5}8d8Z?;<$t@SU5Af&;+DK=TqdV
z`6%e#s@fN$Rw}_enkTme#w`qR$hMt_2=tRi@7rm$lzrQa(gMs!eI6Vi$*>OY^(@N3
z&O05W`B}}1oO9-7Z-&?9*F-Ui-ziefVkCmuUq3%>2Ek=>Fv7PbDIXa3IZ>MutMNCc
zLq|^dz4B?NE#&W{oP?b_|DCc!<9)*}Iuw{otR4=Be`GhV#sVB}DaiLQiqX%roiC`=
z1D%3d)a-}y>@Nn>iwA3{?|B}eKQeY^KoppX)9Kc8xzUF9S;n+iK{NW*H>y^lY+53M
z3*V3nbl3Gn_0!+b_Aq~eHkK=R6<GqpNDVd6UvT)Mgl@)vqEkIL7R$7pYYtXY>Lx!n
z4BZ@Pnj=5mT2B_xhS&097WDYURGS*%#1u=<_qPV+)*~dS<OQT(Z0OU?Tr!QZghN|p
z9jgpAi^6ogJqUuNJW(^fN@g48RS^bs8S{?*l$3C}o~@)8K&Y7PB>R}XXzxYuzTLK?
z{tVpXmlk~?nC}566QvJ1fJuawM#dmPR^tn_ik-AmQBISGHq#yY|I7+_?Ec`9Wbq1d
zCe1C@N^8agVTqN_?a)UbKeM?j`Ak>iM3V|dX_~6?mTC5wFd*yauP32g{{9<FG~0sq
zHikd{jy^ge{MFT^m-Cm1{c6i^t%yQ3zai7jO5QWuV^7avo#e^kqNI+7%WUk|j!=&G
zX{fI=Rp<`m$x*<Cj{51zbbSKtrXO1{avJDsIeJ)d7rfF+W4@^Yr=kA~b>iF-7Ib^o
zF~QdF9%W81H8osTb#}w?yXBUlij4GQ+s{hxs`PTYU@`1jRz^<F?y`g6CWiBESAY7p
z0DXA93>#_HYX4tR7Bj)Gk58GDT^)0f81`WPl<aYR)M#3<Tf{u!S1Lvm*TZpxqv=9i
zn2VF&Gqf^w`etl|3NFw|`U3tqkK&g&$pj+HgE-@tmy^bm1p<5RdYj%t-;*0e<dP}j
zSL=Nur9AYS;3m=T0>v8?`|lkn%ub^MW3^%`+v~<;Ri6>PtPa0ShjbI07hRqV-Gjuq
z8c|6_=#E>zqBo1vU-({f+Z#Sa(-K1JtdgLDx}yopNZ!}~1fL&CCH+u9$rCAR2PAks
zV4eru5fZqc#0)i2-(+02IVl~~!9UkAtw?q5l6P|0{bLD^d2`H9=GKY{^_?tP{#)5R
z^Owoo=3Rt}kGsI~S#^V8K3rjkT|if}9#S#zz-yy0^0tWIb;$+EE;j0sxwK&&g{}DN
z?VeK_b~h4Ctc!Uj`TnM)^Rm^&Bx3aaEOSQ~bW>oRr9FrAaJ}yzK+6vsS}vEIDE+5<
z!_{HoE910|1`WKb#j*M^O3spl9&dD5lXy8mMHIY}L3x#666s8SH5Kru!!#nRt1FVe
zZP$v?ZO$H}AArhbcJvU&6hQVxCCR!^BFA9aT_EcaeB{Y{g{`aCs;{p;yZnG>3#*fq
zq&GM+4swtzy1Z+)nvBrn=#b5L9n2PxpQ;H0!{0XX6Jd&*%`W>6Ho8bqGJJ};@){lm
z=Q~hG>-eTbW=WOVly2FT@#h4^d@eCJu&f@!i5mU9R&Iyyrl%E88Z)^ElrLkTv&%WX
z1QeP}GxEal*54c#sJRJ83maNPANfMsjMp0SyV6oIbqBqU6z0_%Lw3EePx*<4vh+=4
z=d;wX()ze<32o9@D#mXL$1_b&`53lKFMICeM|zYc)Vx`s-h!DK0{V`)y9fl8lGFew
zrH8OjBEunYk?t$-#OLSO$blYE#Lzz%4=h9+MGe+c%OIFCfR9;J!c2)RWevdDldqmE
zuK7kGj3h4}bwVGU15SBn8QpDc%?~Bq@ibL{gUip`#jJ-ST=wD-?s4YTdCZRYo?3Wo
zN1Q})$o<GBAF#U3HwMDXG-r?PKDD{paNQSqZ$^4A&bwBaXuQcXTGBMS?svf~o4x+U
z8VRB3bh$>Dv)ns|$o`B=(~HoS8Iecee(915^s(hBHj-esR~S>*Lkqx3$cy;~LJWp;
z0evLG3HS+UZ5Ap=Fdcm*&c^pT-Iqc~D19*WN+@@IR@mPw`j(bfXYZjIH%BX(KjKz<
zysa4JOQ-#r?5_dr=Offe>2FkTdj<J6_A>o5ys{3wU|OG$+1qaG8~2UA>?WU#o`#@%
zk#xyE0p!E!{BAw#n)gGuQy=AD0exuaUY-;@@I7WNf9bW7aj|z#(eEfbJkByubrPp@
zJV-ATf(QH3`L+A9RkW|~p7k?2w=@Joz;I8(_R~5#E`HZ`%8y9KCPVFwr+%acqwegE
z_fuK08IdyP=uh!ht&N4R@#vnvvdP3-7opCBJr0bSO{FSN&2dV`3;E`G`L1P4Lu+o&
zy0!XK&lk!co(&E{@3Jy(pLjxPB=XGd@|qtyT7Q^ZGuL<Xi#46>o*pu8G<eUQKKz5a
zAcwZ6Mjhs&z-RRQ$@`V(`YC{V(;O=zMDvSl6YlAO>IU+*eP^7fU?|;Vel%bdE<m3#
zn>htYCZugc&zaHux~`*|myvW)WPJVBc(1sfDWz|*;W#L$FJ-Ld9Lar@&*aM&0;i<s
zV)cyBZP=Mr**HejmYLsuFFjuC;yTz)76}j)`h8O)^3(0L9qDjhojbG<gIb@_2!_=E
ziP|R?NbCM?*o0DcL_V4tW^c7pK*HPo8ZlgJEVM+E><%OSSI7k>Z>>6yop&+G=@tnd
zl>{T`1x+RvsAeN8D=;2wd;U_B6eecs4SgicD}B2zppcDHk-RWU<AEXB#-4sCoh;!r
zD%l0+&2(79koZ4y&)oTswjnV$Tf}5MKK$s_M=q$6VHhe%*}r3Es+?$JdQtYVMnH}6
z$wj%a-_77rK2#1E%qDd6G*R_A<~jKT!;J7~=0#<p&4ZLDl(Z0&#c?(fz9is*Vk_#8
z+xKsaSFOGMlL%L^G`9YO-6{!A&fQj*u4$P;3GIat;b6x#k4A}{X?8Zu5y3`CJNMgq
zu)o3><D4~O%G2-FKCPEE$-?Wqb_sme{Agwb#7nLBHykV@dA<z(0&?H90xqVH;cZ-X
zZvD_8it6Ogdd_9@!+D7hTq2@5Q-?Sty;8c8aze7R8j52Jn1`03B`NqZ$4?wZGHl>n
z+aZno)bg`SW<h_KT*tHiH1V4pE)Vls#^TQ#p1yYt_PXp`|CX);mg3EoYm3n2iVgqG
z&PE_IsGM(?&QVtXvzCZX9ORkrflOj`935kb|JPFJR|tNdqntgdIf4Q;iZnnUmvIzS
zE*Y3hr55nmY866?p6xA~`T!o3zE}tpS`|)q)5x5rlhl;o(;Kar*BJ%d&l#kCL3r;{
zeCzSa=a1=}U`s~aw!30onI4R>L9&622D*rzvT_xM1>=us@x-+iX-0+p+mOV+$17F-
zRcWnoawX^=LWL*I4u=v_U-m|<$Rb5@9jSTE%;O#!%f02&+q7V0v4w@`BclG<b(^}~
zN4OAy47JLo$_hOAdOEs*WL;JNh(sFki&8FIqVLDISU3iBW_FwdgD*J8zru=Zu{KWk
z@-xfnu;{B|jL<OUFIt1ttlm3~=20$bXI>9fgDMc7r+)U!>pRW<tN9Hpc(_GCNVj8O
zBhh2xpbZLBw*Ja)Qcb0*lRQl8IJGrEud$R%B3W}MR!~<`iT5%agJGU6RhGe7)3cmb
zWLwRy2zj5ml25>$7*-zn%{jaYQIlX+A$0(@DP|N2Ru>->^s78l#K$LppG%lm%o2&Q
zG<x{*E=KvStoSv@cR(-?BzERkt?X>Wv41XB49DyVyFf-s6LzCc7^IYhOy?z!Z<j@c
zE1`U2Y|+UTL$9&%^XE}lBeJT=rAve*&ACcZJw}Wd`shgw)8~@P-<9!bxJvGG<c8XP
zzDWi964n-Ja^0bXEX7yDKlhcKiTB<~HQSH5C70wK?X)KSKk|7?t!DTinVr3S+VBkE
zg|d8kk4_KzN#4l4jjTs$y|xYMfX(k#199zK>cZTd-x(?*dxQDw53W9VsEKVQhJ3th
zKJ3>iX-5W&xi1uI%>ZyM1&?cylv(mJhMkQS{oc=%D$2#XPVrrGM~;__MXx(3`-2vw
zylZpxWlo@q-GeGZDBItSl~pNcG#Ph8Y<1sX&wDL*5ZgS}mH3(~DbFvrOvA|J7<^yo
z>X*IV9rA@!1*KANaz=v!GE8lU%c}VbF9Nw`|1_TSh#{Qyc-_CVitQg&dh^*a6RvHW
z@yf-$8+uYpM-Xi#Pfy?0g|?t|TsHk;SlsjQWhFhP-wa=gYSy$`BbRUj-m$YE%&K_s
zW#VXIDF;C<V$*l?G{?EJl8l=jCXdXhFv}$N=yWti0r&6nbEZIu<nk7-qOp9G9!{BQ
zyW;t~1s7aGoRV88N3Q&cmT1OFD5>c>R1obGzM}DF&P!y`HFW^$DDC?W11!C2u_6;j
zfx4eT717~=&TuS-r8k2&P?cOSd&mI`L`f6s#mj|MzWX~uIS?p7I2AdLFqtDqE{^4!
z62(@vP%+c2!uH&<@w=t0?oJyaR6S>ST(`{Ei6RaHBtAcneQ4E(s=ClxI7S}WsH4>6
z((PxspNk*bgj#iUk+ny9(u1zR{29RUKuoo4r^{azp<y5YFgr{9f75Wxt;f57!wE_3
zl3owf26QvU+*M1y6fylKoHUK@#*fox1ukR!z6_y?*<NgOzkPf-TQjpKX`d0TH~*$i
z48^<+wKyAxUXq$#<uSk9yH`N2lXNA`_v+-a21R}UoOsv||M25Lbx=A0sgvVY|GGMz
zbR{_<9j{(bAi{N+<^AR4=p*{#D|9&}YwiU^$E_}LzV!Z9l$sjtxZQtcO5YDjaXHi^
zkeg?v__AIG!Pw!9E|8`Vkyi|sOflTUXfkUlDyvC#D{+yOg7gMAAu)BuGZTC<w-Zf?
zP3b}XgKu4_NVhZoD2YO)RepV*7HO%+Jqci)Q&G#nNDbrRu3Dy>VPlY)`*o-6+A?aH
zw~&G&YDMRY+F-do0&F&5)Q0zT!0BOLjM8zbQ?*z1TGG08T90iif;Ft3Ja(C!WF%uC
z*W#jaV3m&!tqwf-CU?xl)H8240F1y0VAa@v!}Nq(EP(tqOpYr=;0N%aA8ck2P=7m}
z3vGDH3iWM&5qzof9b#{wX}obaSy^?wo<5CBe;+UzL=3D--`8{`0?6n#{OoMR2zR(h
z^t5S1quwFLxG(FBLl$t`I$m&-jx(!!6Q_`XyZNK;ljEt;cPA~LDxjg1M1ySo*B{BT
z=bgO4a>{i36!&YHMWW4yosb{H-SyK>0}U>phY6|k-Go!bvUsu_)7dg8eL=VbV=MK~
zvTUKgU3TJKN(i^TTueMp=k59P_?s0EVo#>TBHQdD2WDzB&klY@VI!>MtkkQoUH?)%
zK>g3k2YK;!u=}ZfLLZZ0Cb4CMJ*@4=cKD6GJ}J2Vgep_9nPNbgp@E#v1(DHZ7LcE8
zEuT)Hz&OuU$UyTcCtSVzNJ%8J&O%Z~H0fkr4&X+%uX2!+C+WGK%c!}7x<LtRPUIbF
zb&6d!CFzN^_iJYO-KQ3N$|$(1Os#ZINXs5^ug!W)q1NgO2^n$!`p{=gvd_9vwc3);
zv~=QRSFoJsx*QLe&OFD&zp!7IU8(`(O8Z+2qLL(~=h{ifD@hU|)JU2)?KoQ)23wuF
zhm|g!q^GZ|Zp{|83^$>#UZE|s;d>90u(@A*Ip$%F>EuH|2i4G8Mt!h>8XKnH!`<41
zO#985<vQ+;X2Twg2sPw6u(EE=qHb6`+WP5ULJ4N^rQ6-hCMK1_qXkE3TkZCw*Z(2^
zc{`~49V>dVleh@o(Rw$kPy;#jd~GtcM32KG;FEujkH+jo4DY6Qc$~;n1T46F`)!aU
zIVDvs-S*UcO27+eOxoaZp@iF#$6kG%t-nr~Cj5CwB*JooU2?t{<h|-IzRH8EPvGWW
z*<pNVAgFIUuM8|hRp$W7%8#i}xK<P<<Bt-sElNJRHOyWBRIf_wi=%rE&T^DJFh_IV
zlx9if%L{KP-WJ4iMjJ%~N$%!&GAQUQ@cpaZxo%ptz?lyx8J<nwijqpy*=?3Pd9h<U
zkmZ)KqfY=?7O@0OYuVNZ>LZiGz8I391j*(;0cdS);Q34l?x{aFldmntlH9IKl9#I0
z5N^>|6CQq7G@~h*9XpyAj;^l8d6>KGuc`d^6<XAIfj0O(08uSN4-Inky(%w#u%^B<
z{dNe!3B*m=G?Ta(9=1ib!EY&p4j%x&mdqD18t{V?plmonqh>om*c->ORpMX|07-5q
zQLUX@pTq&=M8bE$bRMq7NqNXhgkA}G*<)qD5NsB&e|&fGs4t9pdv1abX*`IUU2Up8
zT>KqR3R$vKrnSMFA4&@|MESA=sJY>CwZ{K$UTor^A+DL5`^Mb)?bf3x$Awz38h2-%
zEd3yh0ge&}$$sZ|_ZUA!bA_Wk3-?xvV6NgQ(kFpE7h8GKwT8#MK%^%gM%RK1$|hs!
zC}V(1_*qI|(X~NyR%m!ESI?xwfY_47a7^OBYU*#Sh#57+iKYw>5a5yNx$;+ZEl`6O
z;cu31Ql^1?i}EKf_ht&kUnLbEbU=9#Xl-F&4Kng^Ya)J%MEhW-^u|IzaD=Q@LusXB
z-SBcA+Ssc;_w%vfvt~JV(W%C<3gfh=cWp+)(|w65LiZ9x6GO^aPftxO<AFYyk9gpf
z-sp3(q3+)5#8CvDdk$a4${juIC2J(8h)tb=SD(-p&eZ|Dna8BVEKG=IN7zSXj<ytO
z>U%x!Y{8;0>t|%SFiG?$n|YDH$BWoqSQ^?JTxhlH8EPp4oN6nC*Lk|7XuK8JC22^R
zRqn!@-U+{6O}(x{JF6NJR%V7GWn)39BLo|xb{n_r;7NX8A6t$;oC`hkG7U8KF)9+z
z20q2gbqc)NQef1$Jf50o>mxy+a)l8F+~ByD?5+NdGbY`ZtUH+JZCB1RJ3PL6QXfkd
z(~*R)%Jz>@j(3(E#~BAld%lrnF1#S<l6-6`^3L^Q_-t1Ue8b=*83kpgLK@{To9(#E
zlu+P7N~of)b22#G9r_qlQ@ZT&<&)NKZ4-Vc|Fzp4sh~=#3tG&p@kq1l+r4K%0y%=t
z?VgQ*kU$0rx8H;BMpm{!g6u<U$u||9(d#jktlpPIfnA!}P0AR6k>PmTVFgeKgme&F
zc(ji<(r$%2cyC{Bc>cEqT<5@<9m~8L4{{|jy6Bda&c|gYTpXZvryhbS<}9;~KfZU6
zdThV<QjeuG><@kk^{pv*3QU4EN4j?Uy*h~D0+psKN}l<yCGx2oBW+-VXgU*<RX(DN
zn-$Kd+=%{NFG^Ry5ogmuR7^gS*<fYi$3Uln&}EN|6Z-r_AU2}Y=_B3QXZt$2<;mV_
zHyt*6vea1Pr6Gsyb*&*jzw<9?%7(ud{*|#Z_s?|$WT$%?nQHq#VXx<AO_na)DH6UC
zB<QjOyFD|6o|`+b)kRag-&p`PhWpQyw2?7$*OznfR#=CVy($|A<8@Se!cRhC=th@4
zS`?_HYkzQ!m`b*{o}pzHV{XnvC6xkrN;^e`cI)jiRUIf>+t!miw`!eTTjs~`U$%CS
zWWXx}o%|PH3%$KLx9hCeT0sd0LoQxdF&SJ?53W$S?HnJ_UBywQ04RYq?QE+q4QHmw
zpFFR#Co58ec8iYWZ*I{w^zivhRYl699PL7_XbnFm+#)V)0xRmxovCWxNJwnf2<4ll
z*9#{3Ox)>i#gu4Y-Rt*C)+)=#^RM;Qr#oj8%S?tZI7)hrGA^ztj`rQ-%}tD@i|<M#
zN0`bL|9-aUx`zc!I_$3=J~6#oQA~b{X|1~^)+ULd0vxC`w6_dqy{xJd=q{RI%8pGI
z$#O|17yBaz7@dZQsE=zTw@W<QxF4=zqhz<0X6C=xtdrlQ%p7{S)>^8jHG96m&hBq~
zyCVb~11&twB{zHAjmbvr>BM(gb@56&BPK64e(XgTKa@Q-g!s==rVCe4Hw9FJFYu__
z${Jtz@*)7onLw%l1V8H8#UWMN->`nxpJ?leA5Oc=r!soPok{F1X=~5+q+6Eb-gQ}|
z2CkMfCys~Ri)!t3dvJ&|d44Nlg<)gseGHN>`Q0#i4Gh>gKGtBDB8+}UKg;5ROy|GO
zp+5w`@>@q9V`VSg8G5#7KE=CIQ<YeN;UcL014WLb;Sky~%COQ-*gh<Z4tHa#E92E;
zgi*9y^tB7=L`ey!AIdi@rc<%iY-<0g<&@~F*r;;|AQFBqpTJAX$(F4vq6~CsPCjO?
zZBVZ^R8}_$V;HT>@x63?icDKp6<4pHZr+&Z{l`b+R|BUy9lBJD%+I_hFT;E~;ZP!U
z_kYtW_$+?^nOs6pkyGX<Zi*p%E0_+z3{Jg?wsVV?X<I;YM5RTDVsKJBaN<=>H~KfH
zp&?T_ba@1Vld+9`T5)GrLKVq|onp1i(%VRRG{b{Hq=yM9+|E&3|LXhrHIAp{S8e~l
zh4dumQn0-}lsxh~DF=z^h9OlAs3ep8(Kfu<BhPoUcPvK9>efp<BF@2I$?LWDUJxIR
zq`X*m4s1;aN}42h`={aH5jio&7<3cVh6TmrEAS;7GezwWhp47i-%qBKk}@JU*3^l|
zAV+89QE}o#1A<lk-HmLhoPxN!YmgO=D26JhTJA2wFi>I=C)*O=?#U17qN3noQgf_i
zYbOlkh~7@$Q(&}LDH(T$Pz?5`T$UX_2?(Ns{8hs+3*ErRI=rAC{{jliF*jnpq(381
z9{|G3m@t)yku>*<tKs(d;_Je=Awo*gBLtFGYLtPUtUfTmj+xVnOFMMzj||zv+1WY%
z@Na1U+9RHfO5z#maV4XP^TFZ`ADqMv@F>!drk!Ngp3<UYMzc0?l*hyrP*cG@sdUD;
z*OGE@50e%2$hMyt!MG^lm}jGi`P^wRmoXP5m7$vr__r;K)$mTMDq21fQ-fV+88M(G
z*F(&m;Bi1N`xRy`mgVDe<{8PL-VwgSx|lvQ>Upy#;wSyHxOwrjvhy>d0^$l+rNrvs
zt&~WeR!NigajIVltGXtzAoHKMc054$&e73yJ3cDPvAF=~p55h~fPVP>+Z%&e^`e#&
z<=A)Pi}DqD6<=@sja>Jo7ah(ub|i0RHC+K4ul2pA;~qGeNbAsk+#@#5mY-V4Lz|tg
zG1c`!rNGkb!ZO5np_6+ei|hQPf*;HPL}gnA1@axDet&9M@d(Bj9QNv^M1~95+Bn`g
zloQtewY;n=RnUPBZy_gX?p42nhTMUS;m$I7m7<J)&Wr6P$5jknGfS2YsI8+7s44vb
zrBhQxw0;njY@_Jxs$`bTs3up4kejbm;s<n6u6JfH&vGpt8d0<%s?oseG}()GsN_mi
zV7p}wA2cr%eA@k?V66)qI#6We4mgf6suJw)D2jl>8UIo2tYOWq4lr+-6$N8K-q8Yd
zQQIW1SjFju?mrUc)utsQ%yjA{)#}~~QtUPiib^B_a9TcJ-|w26=a9c`b>|Y#m(@}w
zz9aa6z<56Vk#mU%g{9g7#lfQCM_p`hT?1&OmfBoMnxXBIAYKhk^}&TcT7KX2L_H6>
zUZ5ANzt1}PG5)q(nIOR;in-JM-GkRlhh_RBx5Z>a&<m*;0%#;4V+q0)n++x-7nXQM
zD#J?c2~$sJ2=+*(P9j_^lRLR=KTdqc7zv1}L?G5EoaNV5l~>oLrY;b9K(2`p_&&2f
z6QnArKyvB4ZQRr0@&_{#au5-%1UU?4q_VWA0K>g5wD<L{5qVh3WX@GcRXjD-X_kEH
z>PQg&I2h{j3U8vSdWOnsa&2^)w>?XJ`B-hE#*7LI*{5f7pS39-YcvXGlQhaSa9<v|
zm-9Q(N2fN{kW}2V1AS$v-VLG@#^}&*Kgxwh9m@pmDl6yYzPu@<e|c0VAHMkLpQ9uK
zC{mIlL6!<*L?u7H@&z3BS)K~x|1`b7qXhx|5t2Su{_lqKFHz)Kr{rn>cNtB7u@wvQ
zKU-sr5R2p2KD`^pkKvR2Cxi!r6!^_r%)!DTG9@MDNn=0g#q>(MkR{(n2te6er-{q+
zT$m2NuGlfVMO1LI<$_~K_DUMyo?v3CV@o4N`cIg5rU3asJ)PzFJg2}jLHByw0~D0J
zPWhtc3+%lpJl2Dq$ObIyiO>j^gSq?<5g)-@JRNTf7n;ZUmk#$c^<CF3bqseN(Wb2k
z{N}qhCSO|;dUG7JO}>fcLp%CW>i=|?E<neR!9?inMsJ^KH7v)H?d?+_L?&+sWb^Ir
zjz>pN*VNv=EXoD3&fe5CIHf)FgN;$_w`XbX5Se4jo|Rfj32+QglHd<-zMyQ-2`_4j
z`PzqIJ5ckWUo^!negnvHw6zT$nCSTX!@O#5YbB-ssPilGEo3FE=F#rjYg`J*#8g$Q
z)mN_#_+NB=WmH_vwrvs;2<~pd-Q9yb1b26LZ6v|n-QA&am*DR1p>cN_=aKWyJ?Fb`
zjQ6j9^r&67Yp*ruT(h8ASy+B3D*K6jj&VFh3I-M#ku|ar%c*Q>L3gPpHF+*4J~1at
zV@m&fdR}4R^f#(DJAkgX>ftbz6FZN%Qz=HesRJ2c%xS<?x^v}zV0k)E11?+dC~@F9
zM@ByHJ~JSyNU_O<&-O%Tbb!xnXog#%sffg^(b^PzIh!Hi^d+*1Fs<*}deto|BkvP+
zMdqcweSxVzcR}{XM9uM`HdkXZszX0$O`qt`c+F5(_l(PGi{mbenY>Onc>zKeJI)Pc
zB+?i+Jpr$nJ{Z}#1XHS)8`9LbHTxq(TfDagW_c4n=<1fU-S7Ah5zeP4_Us~q#j_=~
zy=}Z7(I4cYM&c%FEN5*e^jd^Wwc)1wUFV?fyT@kYP_-6+fD|DR0pXkV&ozFvcoo!V
zl{+(k{=I~8S|<WN57D<VG<<VpRG6Vm<?>2;G*Y89Q<e=Nv+sJT!wV+Tl1)}aeBPQd
zPWD{K^alqVB@}8Lz5~lUC|;ILJ6V9UT(|UZ3*J}gkDgoZT&*)@N^WWMwOdmQd^?9@
z649JJ6Wi1EXY+(Ff#=IE9Upk=KJEFoA}v1Z9Ih8)tGW8fTjvs76T(d>_ti23^Q+qN
zoV3KH;-cyf+OC~Xd<n;SukJzRbO$z-(;;tTbZn#<tAnX2hO`Z(V{h(k-E@GN1{>kE
zN}6|@UQDhf{o;=9vzHo9P97YFZ-3v?zc1o5_Ul28oahsdb7ELGI}VYIoupC?-5tJA
z`fP)SO*`KSr_;{2GXwY<R%MWt*6#;Oh>uyOC+aU;R*m?iBpietfv5`@NzERfTgGOQ
zflKU4^u({g#WJ1-A@9;{GigOf<igV87ENrqO;xswOW1r@Iz2XoCM1r+>G)JUaiKYl
z&d0|Oe8Gs{NI;CLx2>~Fn}K_$twu>+VF!lNL_3jYso_?dni>iT_Hmp~1NA`6pL*ZD
zSKi&<@Wacs!x%^(hTc8c-6)oHqvehq{^#`3`%Q?l1KB|!ZANGvrZ~KqZeUPb%FfaB
z15gIfO_!)i=UEvA)A8#jMH-LK5$2lP+ng|EvYmtfck8%t`^}v2=T@!US=g?gY~sB{
zJr`%qLa<J-Dlot<sIyk6K~U|Pri<`anTC5KhlJ<~Ph4I%cOqxdy<Sa63Rb$N8hLT%
za4J33$RxKgZ|tB8#$*LsSc8ijmc=1j>YjT<3eNd-BW<)es`gMF^2L)?NUMr1ljuLo
z@$SF=2=%1}g9a>iQx-oM78zVRrCxqFy$ro5Il-VJT1#BfV2UwUu7L^###!UBgcAn1
z3~UZ(2+@`(@kHdU8DBX{GyVz4l;sL6L{EWs0DkomH9hXvQ*ka|oGUe4S)uuSoq%hs
z7G^|tNLql73z#kcQB}@SY%-Y}fx{MO3-3)uOWh5W<Ev%JF8X04tvY7nNZb3>K@A6i
zTV=L<%ZjE3);2_1jFd{0dm3kmgr7eBPY~S@e@CD*aA3}<4rS{t2l>Cd>m%Cu^B|-P
z3>=OVPUD%-W&gQG%kEb*d4k=ZNbMt5X!1QvdK(^gF_O>qdYPs>S(?Kml~BvRv~g*t
z+_Q63!GW7z;$B|dyQX)nHk;{;#jFcnb)hJj@=~*oC9AFIyO;Y^_O=qUj1+Oe%;Kp+
z{_*2^vL))+-Ay|(kRf^C?(*k`Gx7-zwQ-3tx_Xi9wg}<Vr2FOLk~wGxhJcQEH=7Kn
z=*#}5HZCW=NI@flyd-ICv#9kP+cx%u!BDFf)|_|k%$%!~+4Rvko`3_46VSc~Hz3CC
z@Pn%Cd46ga+sdW|FpsnzZ;tALA)nPUTzYh9g5evmI>s*#r1y-Do*V*}09NVfo8ARK
ze);>xIVR^H<oCoW*20RcD_qRpir(tQUX-J+%*=qgRNUTAoG;@E52J9vhy!T_jh5jD
zw;U$aP{XP_V_Yzs<#@%7I*mWC%ChEqw4-{628)wZ4N*WXXOYZPWo3nOG0xmqj>2mV
zCfVuG>%i85u^g2z)v0m!pk^_>?!a=6uP{}S4fIjb0xSIo$=SarwcTc`v}&Nlfue3&
z@{N$N$U)uTa0v34a#I>8w=_!}W<yJ8u8V1GJzWflB1@BXjmSZ1Zi!6-8>2=*{%|J^
z<f68haZ2zR2;|q%(J?IgUYwJI?!m*%9;%cKj7v!pwGa(_Y>@O`_Jwv>Qf%LpLvUp+
z)A7f+J^oV!mz4B3PVmhdk)lh^-{!(cmXtC@*cF1J);v_RM3}EvXNtbFcR+Fxr+i;i
z)#KQ<%v7hvXGy`===^S}e3Q4Nc@a~XEo*}uhhl^J3IpjtL*rMDoC=XNR6u~Y0z$;e
zYDlesz5xA~mYpt%P)Zh8JihTpVG1fL2F!=Gxepj*mWkM@%;D4WxsS@N^IxR$Ia#NY
z-xcZ<tiRP<{)Q>TzVSUEl+I1J2#8{aud*t?Hk2{3%Hb8PLL#$K_eNNW!`%9TGo?yh
zri>(y&O}qIvpd^oBFH<wOUAo$xxE?HL39@DwOn**Y=eW6!n>QK1L$y&e2un5tW~G7
z9{q&4V-Els)iCDmP^k%W4!TenD-JvxAHzdm9jaj}E>3Q)XX~Qzmgcyvx7D5@BK#EY
z8v<&r4QaY#?KoIC&gB=6+0?Z;5$a03n#TK3EM;S-tr>V`X69<=%K=pl#3Ke$0lrWa
zCn)RjQAx>(?(X4Nv)L_iESMJiE$US4L$n0V?K49w?hA1VQ}^KD5|#s>_ER4xxK~ul
zFCaGnLY-*H<yDx}wEeukotb}hI<D$M($RNoQ5PD$wuI~}i<(Dyjg--YDuv#Wv0)Ns
z{@663n6{BD$IzXq*mMk0Z7*tzLknXx^GjDZX8Z>yta>uiu&b5j<?fxURjOfGQf~Ux
zIaXu}1z>@hsbcASgkllpUs*Ve`Cc6&F)_2XV{YTf6o=;>xYUPsCGFzg%$-X!Oiose
zLIH&vk2ow4sHj)5)R^r}F&S=Fg6<NG9d+mWUPxwWVPRXr^SMjY?W<^&dHK$mHHzYF
zDK6em|F8SDCU2nvoQMyZ@3&TYU>6n^9-W_~ZL3f!@xCfBy#j_K1t#vRZV!1LysJ!A
zQ?%`hnQbZXaia@{>fe;iVU;+Yn8enjcmY9Pw9PmDBygEEf-X;W?JG194`z<CfTpQk
zZIh9b;0ME5(*>V9Zg5oUK(zM@7X}~O&nDL*p&8c|4%~2NjR`v<8berlc%0F-dEDh{
z3p#nk=3qpyE(iV#NrJ=cJ=ciH$IG`!r&xt|1N>hjBT@}WHj5=6<Im0~3$|W7Ebl*v
z-5k<VJE}GOR`wAHUO~;faaLE4NyzFCf*724fq&n(nOm^~4eoohyVlFiS;+(hzXOuH
z*nFlR<I%+Ja-Gg4pJVMVuLs$Tr<|OYZeH9fH0pv}aM|nJc8}{%?mici3&4a^xSB2v
zV#)x-5GH)HiZ>n;#?v{juY_Mx-B`2h*X>v?N*QGNN#95Z>9x_jzB+sIH7=++TP>$h
zh-UsR_8^bO>g!lv-QEM0_&B`WwhHIp#fg&@RA2rH)zY&#S3GMaxN3{toE1JhSwvcI
zIj_dO{SwdP;b?Gf8+Sdk)aFf-Y^yv|BKR%2aeTkdW#6G{Tg)`<i%SnLSCbunx+?+5
zGYWmnU?YJ%8&s~-!pl-axJj2H-4QE4OFr~vF~%Ne!9F+-3xh#Vyl<WqWT<#qg6lWa
z$XmCs#eUw3E+=^<>Y5=-wha<%Jc;b7^AXmjuDad=I1M)<FNO~HbZOw9$l~__1aNvG
z_s!Iqjs;t9amB#jAs+Y*n$wf(T-K@Y@VTXuJU*~_M|O~6BR{F%y%0=f^NYp;7z;6@
zet?jJ>Lki4tOhxgw|{1PFh4OA#R6;y&EjY+=IY7c1>9u&zXxg6-JqLV3Hq|ygq(l<
zY8BMAY!2ObL(<p_?2=ZI56v3%Z0vq3ogec#;^%fb8aP1aqokkTGRqvy4PmVXp6x2P
z<G;hK>MgGyFefsJRgVQ<K46ZpkSx1N7WD3}6K4YdsK^)is}Sjpzh({Cyl{5DeXtO<
zor7^@(>d=NKRSI1m6cK&^sl#@`8n;~hO)CC8Q+m<39HL8M5u?zQ8hqbwnr;<_XB1!
zJFiS%<#m*Swr_DX^Jm-hb-svWQ|;rr25<cx66%wy!A=Z!1mND{k^dEqKTn1}jIUeG
zs?q+@5~l%oQH)L}9Hd_3$W}b5N6byFH%BH|K(HoP>y5RMXGkf_IeJFJjWc)KJKUe0
zBx~ukHAFx(B=ulAO#dm3qo<TL?TcRJ?pmSwTF=q8r8hvs!F}1wFH3vE3KepyQj4S2
z_2}Ek`ha!%3%4#rRzYL<g&y{3{N$L?QJH*+lFEq{(D7}FBel(l2JCXyS1s5<g)USr
z_Y;xc$HiQER6HZOy9~XY(~0O;{hV?}ub(7edvZv|C%Kc?EG5jauXcEbCmpoS1`%c=
ztY^7-2uO=u0QHt+6b#?G;A-|QW4xu2qje}wx1&#q^n#z8*I(|&ebK|#@89LzbGkPD
z$~9)IMQfXNs6JU|oIFcg^a1XfIKP@hPHC7zk8YM>x|H20DVceJIUzW&{O^ZXiLD#%
zQ?&S6<a@5}JwolGoJ94~35gL&*u%%NfV7fBFD{VThYNLmadA1YGJ>(0^X(G^A6K0*
z%p`qifkEA4#-lZ}-HAl^%0O8fb}*z94Xmy8>(9kbE~2||tm#(xX?C{D=`6#kKL#Su
zi=%pcqt~PPbM|udDPueUmLc9QzmGak$Tk{?;5`4ex8Lc1kV4`kzsO~Eeun;Nt#Yd4
z;Ot`Z)-&0h5icm_O7+VIpty?CnZ=tjznCK${$o$RHQEN68_ujV2W(`wjWiXra+Z3+
zi{8CBDQ76}$5b&|z5$wVSfmPF76TISab=v!jN?pLr-D(WqYJn8wn8K05W3k)P8G)9
zMEc(^+$=RY+nz+JEWazgoon+_Tgn&~K2E{=Y)f=wt()#Ay*ZN)V2Ik~Mm;$eu{346
z#SNIvleJlp!5(cQb{MI$D|q9331tCB0$zQB_&KGaKdiQ2S8yhX%oYi@KV2ZXl5WBq
zF}>oE6`F_)P?QGd7MHVhtg;PmY^c&%Cr+P_DCdos4PI!nnX5JxQP=yzhCN6HQvRG2
zSz~OGAdU0I+jXh*G(pX;zAlMQp7BNLNX?C&7^v)Y-$Y$tc`OYqOEwG4X*Jyv@2LL3
zkGCFA5=ds9@=B?f&Eaz>wF-tt)!UTz=+?;ccE~!qn~(1}yqMumV=eQyk^77Ym+@UR
za_@7BIMY?<AeDmmdQXp{yilJ7O5Qt%bVWw56NOpz$~!fm*nb>d;=?Rw`)$UC5~5sd
zNnJfxTF!7QPS}{VSl_-<5ObO_gztup!M9cC_DZJs5s&7ss7M$Md~-UOI^xLQ$(d9o
zKQ>Tq3PG&KKS?rL1<QurpVA$zh`pew%@v0X7AVbnn=i<6&b;J%4`N79FDP!(AMq>G
zg0@X!y9c}nnk6H4(9lq_({dM}1^IQI-{pyOTS;XXRb@QRpv62ve4GWiJxuN)ySzE!
zFsgUJj%y!CCACK{+U}$n^Hz?GJw6{zq3adtTFK3F+39Kh`bzmRauu|9FwR%WGgV;w
zE-YFaxvndktuhfWk|pfPOBTpOvx-%a?JhB|u5NrkG6ECuflizU9=e3ffoI!A)3Y33
z+iE`-z0)R`rm}2-EFqJ6X~L-kX}<wkd%rsIvG0Z;60$a=i5lk|n(}>~Hk^-Vam;4X
z(KH2We+IG~v9xD#Y~;#%+?|g9s0qeScNudxg&R);gIWyuX)~JQiU~bJkqNDhZ}@Bu
zSZ_==uoe(11K}6Q)19QXpyv61kl>IvK=Sr0^?E9COyS}>S<#NceP%WPRi4k_tyN!O
zaSr8?XMs?TkSMeU>B_Y}I>czi2?MPrZ?LZlo8PZbTvse_GEx_xT1WNCN!scN!6$7P
z3`RaY6g;N)A8vO28L2h#BhD>xox+Hzj+LTf(^%}zdicTus1Mk(lCvD0=AJisOps)?
z*$DQzrCxI5*XZc+#oo0_WA4bk+7&;9N4&dMfSo>4_O^tBzv&+7dBzmrQx#9eredR6
zt*3~Uc(o9z8N~$3Y|mRvUSF6Yd$rh7`Sf^imCs&aKYr@vZqz@Ko}IFN%b+{nuhr#=
zSrkLeksZvcw@_DVIBjro?wJ^&WSH|D?8b3&qQMjC)#)!Lu<KyWjMC9WYC7|tfQkkk
zZqPNGt)bRSy(P62M{bl=SI;>-OsOVSs&|(qj%qY`c3GCqn4Q>1(dm^wF4usx#3tP}
z*E>bAj=?^Gr=4mS2p7e@F~wXd>O`QepYe4xg~_JZE@$8N_!qM8z;auc1KpJIBB@->
z%qOXChck^N@r0JWueXDobs*uYdAwewj<nhH?%{d~jb2P>ebl*_CfzKtwy3QG5_yzt
zjR5)U1vs2HVmnzp^RQqM!3WJWJ>`l8D1L%>(>>330~79%5Ased@N5t-b8=~$ejsUR
z3ce>Gd&~<IvP!`_-fY>2it={cka(1(3M?$BS62|po0`hK6EH4}%g7!c0T*BF6byPi
z)Uh~s0r^Zd9d0OCV^UMOQlW?4gBBQD4yHmDOe9?)hdr<>+$XUnA_C109rU!=GSX)?
zlPp9h7)1KMf2F`*8Og4`ZLl|4n*}=2SH-M_!!Cml<7xF=!u&v_8@>-*St+ccWc#!h
zn{)BF7M_-nYJ|%9YFd3N=Q+&w!lEsRy_GeeIP9bg!kJA>RA|Kn-mq4atMs?a=-_;e
z>xbtheq7rs8|yJGuLD>>!}|yO$wTGRcj-mL6)<d(p>&ot<du-o@}7QK@VvvLs9!=#
zj1xX~id9_H*5;KotJ`Fz6GVroarKK9WxlZzSHgjasNU3|PqS$_RDc3*7lV}DDtyqP
zB3G0775eLdll%zV^HH!?)7H7siDQ&($bQel7vAd~RGG9Jf{l(RqfDH@7J2X6X1~jI
zwv|`v+c3Wt=J88Jn6JCdwRufKUe0J#m`xYYv+`H>sIx<*i~f&tP062j3zKeA88Z)A
zba&qsDqG`=gx_QD2<V^`c%I-w^9Y{Ka-ya?%Dg|aA<ubIp3^Ujy9z?fFSh-z-tR(!
z|E$GItlI(&z4Up3`GGYTLx|YN(@3K#LTMI9DkMCN=;4{1Eh}Dx*XbCHcBy=1vbFBa
z5J~VHvkypPc?mT$*Aj@qTwJrAe0{@@EZtzVrJ20nmjd+1&!B^!?mJ%JR6;xz-@UPj
z7BEcJmndD$a8%&bWT6Xa_kp%)u*j4!ALnHzNFw$+CwMOgpuCuUKf-otk0dJv>mvzi
zrjlq1BA<g~96Bl0>oq_1_=R@(Xz&HG`$x3HRJ8kBkoS08jF;IbT|Ojy#0of2Rh3{f
zM7m@$^)xA{>#i92agL#OSFz=1UZA<m{Rah44qgiv54XOkCYhqn)VHtrdcV$mm|7QW
z-G8Bh&3f51Eco|N)xMg5d+Yo@ez(^O%CW?jZM({)vYfTx6$zvf9c&9dbXc$|*wEzy
zVuLrK8v^1uRa=%dMZ)fdYUA}WW2vTRaWb5|;UyqNRn=1EY&1o+K(v--I4N4UlMs<Y
zD|W8v;pU5JQqh3$;}`nG$LXcz&?_m2wHvQFMxWsOcCDJ)>ff^}b0Q$!I#`%cS-D=J
zN@qI-lT|koD$#<PyS-On?oGsJcaN02_uNMyawd5jA4{V0RcYzPkp!{{SNfN|9ky=#
zoxh&(1VuKp@9RG8t2+jMdLXisNn1=W%r5D^>Q@B=`jJzqssYo|s{IK9wZSxHhQWE}
zHD%ic^Qo9eS*WY6HF@=m!%s<-x?<UyP05&LzO#2W>VcOtB5DL!V9vwH;HjhFy<Vz)
z4TqDo*26t>>3mNYg)~f0WK5G6)Xk|h<9;=l!Tr#Ct9e}wBYY>CDk*G?mFkc1X^0Bj
zTyL|J>Ybj@r~S7h2?)%y9i$nY69@9i*SEz^>il&y=N)z0F3DImbu~Tn-GY^finWds
z!$S&-rKM4ZK6!BW?F8ARGaD&YT|sfr7)coSo~`NHXJT;gAKBFqflj|&ia5^aU1vFC
zGteJ>@%b@799SCK!0&x+6!`#E#>>M}uTJtnaF=`P7t{f!+g)rKk4I?TdoLCo8ZGO}
z$XP*+<)xBvY6IKAmMS=~E$|{{nTWiD)8C?QFIHV!tT2#*a6G+d5S2jxNSej{^-!|C
z*_;Q*3SeDkEg=H&9*t^d&hO-wGSu$pOSWH}P>`ws%uYu0u|3Yc+u4s*$oVfQeR_2b
z^slSNe2TD92{XpV)J!jygpKY`^gjWsG@}h>QDxj;*>tm<5#O{D2Vu_z1{RXVnYSa=
zxUgUm7V;E`Vcf0CwHPW}64^{W6|6qrnTaG5lk>79K1idly36Yl?gjE+5DD3h2blDv
z0i#dEoA$mCxEqkO=z64bELwP+w!9uRa3gmf5_of8tfV|f_+ET5ZGXkVWx)7jZuDzl
zCary&#$*4qsRg{H0q5mHaF$?54pN+#wl*;FH<y0duR)EhXeIh6^&qIK`->aXLryT3
zTPciqEb)`-^rjhb<4;cm*5$KLEp-Px*_T9^sg;qiJ$RofBeM5zE)%UyfV--4OU`lt
zn@p)wrYcybczYGsfsZlql3`4LKzi2W;<A{^>Kg96f#y%QB*Vo(ga)2GP(;miwArmF
z_H~-FsN(@AogQP`+KNb|9Gjhez;C%{1=1<9X3d)U4qt55#`Izq$mldM8iCE85iY<;
z+~mY$1jYnjuZ&^KWV1)U$z~43l5W=!MDq@J7V1s8jGgL<s<gjwvV#@QGC5V|-XD4b
z5=x@?^6LRf(TYL{DV;-aSm^w|A6638xu=gkG!a6>X2iU#tDqhor(;6BHJ#l$XC6BO
z1o5&7NA4eNk<8VojRe3G_bUTU$?{&0xl%OhOfR>BVE8kQ>RFPp9GqN<mnOB=<zz;c
zi}{sR58GATC~vEO8DRn)$=C&B@w&nu8$=Iqp%fU{N>MExJDz^v5V|e*e0QUenmn}A
z!75>8h`bRZ5^N~sybsdXNek}oh6hN)ugrK|(NsFP)&9D|%LB30xZV&=EvCk0peZ^^
zF`AFf3q~QNDb`*!xHogfWhVwkwm~JCc<fl5+B?nJUyezxy&UPQx~IO9Y?#h2<CkUX
z*L<aTr^!Ec#UP#B_8VhZT{zdEa*0X1x_+!8u(ixh%)*k@tzjc_fv~$%q}eGTi&G-K
ziVx&t6Sk$hiAzP1_mL!nbmFm`yAV$Nz3U-DW*Ukq<u5OR6_wXMAr+DLdn^z~Hww*?
z&c3$nTiejjwmOG;Pf1;NZY?#uO3_e_r18iATI)=RuNUn5H3*q4X15NIk8fk?6%3@*
z+_LBq7>ygBpLhgKm^8?6cxAT2zlVlOeYe{d$|*<Z=D~zP?37*wvv6MDqB&C2LSL(S
zI@}tY?SN=Ccct=6Ng1U3M#r&$Z=Cxi`5MixEMNNb6by@UUEFnASrG^Orv)2!+p=Q%
z7KGn9bXsK_Dc{oI_9IwfQBkr=-1+UxCn$ZD`R{QOq;HfDsfX%q03#)ph*0i#znI|P
zQ{QQw^PVFlQKKMFc!e%dcS#-<K}K;kmlvRQT{?@_D?Fp#6H19lqPm%=sSj?Bq7SEg
z1w<_6pXCwFV4Uh|oE`TUm~pxD?D|SRjg4&t<8(%myOEd#rWzY#DwMLYpCvN)vQ(2#
z6opZ6P{BWaAoOu0V6j1-cCa|&it5aD=Sj(DU?6Q86PlxH6v<i+Y;aS;8=J+R-S^oL
z@Co!x<U-SG3%M9q?ph|>b8n@-^-rQimM`RGal0Vu6Q5H6=~nc0sHdNiQP5?b^uSnW
zdWmE@KY2_1`JEb0yWA|D8ND_$<A)%NGu3GUq4Gmb`KTEUy|-$6Us=m(SNa(^k1utb
z>(zh0R*Q^!*0JAYe(y^L-0-Gx*~ok*cn7q9#ElFA(&G2mFmOBQq9-3Rbn`xRtWwD@
z3l>kObGDwN+P;0g+n3~dW+GY8to1!JBF7v)%7j|-xlf=Jp_!kIXjD~g=Hw}(0q$aA
zlzNMGiAK-}?4lNC7ehrO9s}ic-p`pce$$&Xk?p`$EF8zC3aQH7LtT0ib#Q;@C$TOt
zb}!E6xGCbBPXgJMn)PyTrxK>hEKy-pbzM#O@O0M94D(fZWVX1E^m=Xz%%KQLrE82p
zG~zjsp5D3X>L_DgD24&a&+DDO_oaB_7Nn1T{z5rRc*f}()Il)`{ZZFXH8tydiM<iF
zC9RBa6(`$WXt;0x8$0{L9Nd+O`8#np<oPcu(v6Ce+F-W({jx5?T>5-qh~<~UGsdtB
zy;7b4B(>+|CG}}W)&Ky&^&XKnli|yQfFIgU+#5ZlOJcph8GUR_Qtq8k350`B6)RgV
zT9Xv8wa%RaXAv>q+i06Y`d<$KD|j}O<ZW|$oiS6TavkBIJqNW4U*?RhZJ(WduX}8;
zz|}>xDkp@;X*-VjuV6x3Q!MtLstzTkb=Vi9kg>6*wr6=7fo1&7KeqZWhx#Cy@GFx{
z$p1B|RrnBJEon_nM%$;8@a4>?=shKP{|x^Rx9$TY8Z%l&^|vd3+1DKe;x8@#{w?A-
z7y}C-`EL@Q)D4Yl=zpXHaXcaa)J6PPWbywr5d1@xAkk0z|F$hc+~P0sz7qdtdDn;%
z=F1De{a0=A?Z3Sub%U`G{_j5p3x>n~(<!sqe>A9MUht0=@F4%$#o%`a>^~0^+{uyq
z&mbpqW7&89MK%BBR5E+N+5B^4_5V<Se47dSZ}02=SMUGXAObOz%YS4gZb-R<{~Q+@
z&Sm^Ry8OT9fa?F>3dTRj^1r5Am_C!?KLb<v=LDePME+x4GXK}Q5UCv{{Cnyp&b~qV
z<IOz)3-a<ZM#7|S?KC_Bhi|(g8`~qUU@9%nU2j%=#ksL=5)+b=sII}~B0f*l<G3z6
z>G2li$y&+@Nk262X2I8LF>Wp-;Cjn}(b37$r$RC^^V_36!XoW}OSgfCU^HzV`F+T(
z_UikJRy|cknZSjVR!g6f=cnyB!Wy~A-nUMsqV37tMJkW#49Cl-eMO1C`{a#qN&@%F
zmoRa96}qOTdt?R1$_m%orow{z-XV(oB{;B!Ke<Y`af$UnJZrd=8+fZc)9nwNNFL17
zw{R$1Q&(qV5a1vn@JMRLfWPOthnOw<Y5nx11`$s_cX$_AM9h(7Q#|27|DHW$0u9aV
zCJTTOJ$KQ_(rU;-Mnm~%soJl$tfH5A?T)Fa)1p{c>{}M+-$#+9`(k-l+EzeIH$GAk
zx^L`ofdia)kz=ea&sg4jOh+1&9#fFGmvwNbJy9i!vkL#(X|H&YEsFbHh>@u+kNTe;
zyF?sai5A(te?P!yPq$p_=gAz2WD`#Q(rH_+Gvg?xr@+Q9S4ctYo;U?aQZwG|CYttF
zn;p{=qeNUW-mN*fp0D?w=|D*`1(wpt?O&W_YDbKs10adz@l98|!<83*2i4+5ovn@>
z;vOFPy!+``ue%00niLa<LufTQa&-h)Z*@9>3GPl;2VaE;DV4m1HFqRkPk7~YCFv>d
z&W-n{CFc2fKxoS#p}pOflNFDkl6tMUsUInF%8jl4)A(l1NU>$D`yx8}=UIFw%N@}}
ztZa}?`Qy6>cQ)D~BNPmWpJK5^MY5L%J9{zb2qr-F$0r*t(S4sfByyY)PB&zg<**&h
zz;#aN1~XyhkKM9ZQlTNEY8*g<<;h(usy}~n&Q>*4ki0D!co4I4)lUl%K)1WF_l^^s
z*2;v18NBV`9e}`WeDPt*who#$30{U>jRFib$E_&@wu~c3hQ~3cyOb=oRw}0PF}fNw
z-*I?uKOX*}MZ!rl=eF<Lf<#90Cu?LA%cHrd#S-$(xf@nev6ro6*a{~bt?5?7^Xafe
z?JXxt{MmdMyH&OsOXImpi&SF~robW0LE!T}&36+)=HR;%W1#y4!1WxIM&-EDgNAUn
zGQ8XOsit`U=+gg$6NRWTLL}?m9^QYD6VtA}voIAQQd+H3lQEei%R>IK&}iqNukA-%
zf7H5J$S|eqi;BbPy)8mEh65_N#%vLx%7lstvqr1$da0B%pW=%Rd$23jVP`N21uzva
zQY4FIV5|Kwv$~O0?JcYgln@8J3j-hb!Os_#<or|s(vpzT1WRje4$|Iz*d_o(z7cL#
z{XMv^z$C1L313FxzHluEB_yCdJf-`*Uk??Omq*-dCy3iN`-dh=X6c}X9MgYmwYZh?
zXo}I`fz6-D2$-w!GqBa}*#a&eBa`ugHLmT&_oyajFsb~hoP1FUEWl^Rh^KY`y}^lz
zbMDZPGu@04ElVfoj00eq$(cXI*eA@jF&2{(q)%*-Ef~TEfnQYK#*)TWx=$<5hNZa3
zS7s|v&%aUq{44Fqb$-%mNxbY$9uiRc#D+WH;c;?ZP8LLF)N6Z2(-m76UGj<^)wOuu
zXw(2;U=_*EFte}N3o2~d3f~5imnkIG%JJ>tu+L2q&y8IS&EyA7`-HuT1)(`S@2ow|
zZ8O+TvZ7^X0&TUv1mm{L7%aHkcQSoLwGiLKK9Lzr$Swr;2Ca`0s5S}Xaxi^$sIZNG
z-bp!n^WiY*Y7h*af71-u;FW*id%pFUmq!mabx~RGIAUc~PkFA-yovO*9()3Cx>iZM
z+X=tBgZ{8L{pC3>c#hA4rh6~Lw{V-d4(U%n&Dbh_du#!xl!aev%i;bCU>gGxASi+{
zGbok8k>>Ei8E9{(a1Vy(KH?^;JwF7-bZ*04@Y%AJDLmeuAc>432NSd1XnMDtW8b1W
zfoE=>7Qq*ZW(Nl4c<0uX$bjkNqRkt-t%Hi!(}yD>|J<vJZgFd<n=DgzZ}rS{pM=f(
zN%_)67Dd|wyZmM?oTK10(BABly>F9!ysv!k)v*br@S#hucV*;5<&oQD#jWMnSS#K3
zLsj%(f;xl{67Jq|Biwb~qGtjRt76ZIcP~b)j6i_Id6P)kze0nn{nX2882=NZx8%IV
z&01v}B!axxdCdLVKdFOU>Bik4r~a?V{T;86d(ngwWSK{z{e|E*-UBEHJ+HhwU52+u
zYF3|6Nm=59>jMt+9*Po(ueAtcMU;*L(e01;I6Q7AfqG_uLixo{6dXhXbQ%4sY|lK5
zE&e=s{1TQ1pI2vK=3=|s?)sb##}sPNhvHxSuo~_m0gFBZgLP)pW3v%sY}t-FcrLE4
z$Zwj=;3<`x;{6aC^_yLv0s0mp4*6<}scdazAo^szQZ!Y)j{ytt77f>wKzj-&WQ{*&
z5K=&tNHzr72VNuiqEcpmS)6>+^vuxIAToq%fnWC|dZET%MysMC(7!U=Q(o0oXa*Lq
zg08x{Rsm4k#?PAWEX?2G$J$4)Bkn>1dF~po@uZ0A@)S-3Nj-zHm6q!z`;+PXyr9P(
zORJ{CXP13`To-y{89w;LyWNc&@|qlc)!#HYB+1<q5+udF)-$pp`NCr{fk55QCtGGQ
zQ8Ot(%C=1k?x@B{Pm(X2q;c6_-O*X;&bPA}92-%U1$=RG07}`lw6(#uZD#(yT4&<z
z+H3WcyDQ|o@!f(L2ul*{+t1EH=XP4=fL3qF=r*d1;CmKhEs+H6<P=4BpokXJ<3){t
zrT`E*ym7J=wr@DwiyrSanQoV_Cmy_91ylvu#=BYO75JG7kLj7GiJv(zhriur@QFMY
zFxozA5$iRG)^AbrUKHU(tvK1*=H88^AD_B=+-h()hndZu_=v3fGf*`C@JeCq6{Iv=
zYjfb`4xbc*j<!(4ZoeR&F3&=OV&-z9itN44Hd+sbE2@lEncdnYAh6El3ea%~<$YXg
zBc5K3CtAA(cNPU%8f<?bIZO6%IefPT&K}9*0-{nA9PHb5N>n_eQzepRhdgWN3+!!m
z+&^Ah9P#}tT)Q%3LbcR>hdrrq#w*30Zl(Ml7d1)-tRxLr8;CNGVY_Kb1>g8LKz6*)
zV$xCRytjM8IXnYA=k0w(#8_{6OY;2DhRzCI^1k!YfcUC8G=q(hNTFgi?$4q@jB3U~
zsm-0OPY|?N;Gu7qV9rh3717e(?|bs6gMlV>8f_Gq>AKNVV~T@gy0QnZZ^oUv4GLe~
zL~S*&`|}^81z++VSi=-qoJ{1Sby+Flh!F<V*P`U0g@7CbrL_L$q8@Ii^6<Mk0Iiid
zzq|_bD_{MVyo|lG6?GeP%8+k;f#b?VCU^e0%E0n=Wc6(us(=EC;8pLh0+u2&K3_bE
z4$vZAGcJ+e(lnIgEm|GJ*4wW7uh&aso3lcNR~6fqA@Jm0b4}{0PU#{h+Z_PY2~$NV
zPUJ!j`?mU?y8LvlsFdy6(F!6(?qX%fbYp=fk&!5o49Lm9)<yEZuHm>A)&U9QO%Z~7
zguN~%(C)(Ovp7u>JfAU{)=T{34>eNPefpisi;%T}6z5*GArQ%NDjd@D(T6@FUJ1Nq
z<P8$ws~%@VQOJ6H_v|!P0k*Fy$dkldK1>27DF~kfS%17~hDtAU<KVI<C1Lc5)9jJc
z-<VrjkKG*`S<C2fJ7fkJI>-|v<iUqnz?G)CT1<<fmOY2J-CG}ew&OMxIRNiKSph~K
zpAltz62m(-NuNLnt)EME|CQc6z{dD<zqwF8et$WP;M?gh?%LZ}1_ahx57rs2{1_C#
za+I&Tiy{80_+V+$>K=7lf}Z2qB{}<)UD!FL0F(nrm(-f_3XsA*AD0SI8a}9%F?MwV
z;1x`SJ}lS;1g7dXRLV&!c?!Z(EmDU`yp!Q89p}BW_Ze3gPU^SbDT87z`)hYCUJk^e
z2L4dr?+o@%T0h_yJMP_Ekh7^4CVN&1s`LqY(fG=M)yRG)K&y_x!Vam9Mfv_zWitkn
zYP6W(65@Ek-Zt1VQ3Py`;NmWm*C&_zqOK((ET>~B3s%jq*ZQf65bQEhVq650i2=-Z
zucYASQm{$LClt<J204K9IF&)DD2{VoDrv8K9w5E#myoWo_*C>%wWhe4M<rX*!8-8u
z{_sc$s3Q^Nu@S_S6Xr-(1?|;B3xRh$ljkPR8!(!>tCz2?ptsx^CW34`8wB6i&|sO7
zcuXZ=(pFm=_wJ_>TIr?g<16-zo}0PacLY&dk1de+qs_5M_DSOKY`;a&Wqx~JVcQy|
z`>63={2{+6xVHQi5Uz5)K_nmY29G&eXZM<4mVTrZkozp#lA0_+NepK-`2DCw=<rd8
zGP<^TXo*o_R;C4Uwox~uQl?r_``cCT>E1T=fIH51(OTV-!gay~ntbL^n+q=WC*J5p
z+(c)}{c@Awem$#|TXPv%@#&wa4nJ0^``_bya~hhjw#Fx+z*##;3i<4<gPQI3naMA(
zyO-)s#!p9y)_`ll`RIS;r@rV?>lE*Iy1@DWh?JsmIXS`%IGFh}b!8y5ieP+Pv;G;z
zfbnp97w%ly|LyiG(%=hc1?<+#DQ>9^_Z#`$Ry%ileCx91f$~vlK5Tl;ahuwO>}p8(
z*R~07JB6-Ik<P4Xs5b5n?8V{K5C)1rv-aPLSrX1n^QX$AQq?G07nJ()f1RzT3Awwe
z?9g=lf$-$OfDcyXWiLR$^TdzLC(+YJ0x1UMOOWO3qc}=GPp5mPH<Yb3n%!JL#yE#)
zPT&lTsf_8_PMgj3f;NR7AuURLCm}nR+L8v&gp6UjR2$Cwi(Dy^=&~!*c$ISl?ArG#
zdEAX#zltY+_m*X>TgXsczaeHmnyj~p$iAnUc-rb{!n;VYOu7;ybUXP(9=C1Uo~Ntw
z*lGzb2_Sn#?wQ(H%v$a}%Bz9STO}a`sn-!|ZQv9?wgf7~_&WPmyBBq5%q(BtmDyFZ
zmk(F5DP2ZrMEbky!i#x}<af(o%+JXwC!m$Xf7tarlDAGq+ncq$BG%2Ei=QN~|8XsE
zUq^(-(*i5F9FPibPzKIg>^KYAS+!GQWrtryA4We;Ryr%3UEiT$gKxq?n_k>YR^~VN
zj`NkZ6=<tsBv`W}K}vPvNK-dH^t;fdmE}maOa6<SUT~2HP#=kHGqW`+vhsuMJaxku
z*?R+Hg{=g~<oxhid0U5;ni+|osisT9($l8In#$@K=;`wwwzIE5C8}NzA#n)oUJe^U
z#mRUD@6awo2e*RzMo@N$FnB+yY(D`L^UsDWjx@jLPa{G&)mga*S#{N)`EjZy``8>_
zq#ZobBno`Of79f+uCGKxY$G`nYC+(_k`oHkvY2NwN}+-N{x5(h>g`ay?`mR-hA4?g
z_FP29@TT{{fh9s0<d4LLMl(~e_-4mD!P&)zomWPCQI(@CqbT?Er2#~*<l=&YnkcFL
zyF$<5)mHP(=&q97i}3-B&|mvoITLq?oh;`sUKGmdI9O80wE2D+{8|b#H|_8Hp>HZ^
zFA+0c)yN!;>!6{|#RW2)ir38{sc`*Zk}65MtBj&u49UJiY?v2ca|zcoDckp5Pr_O|
zi28G82gHSQSrrz10jY?Rror!(?%)rE;`I-QeP-yP!Z_Lx!VXWlzvq%sd`Uh!VG4X|
z$Cr(YLGjHbW?`^=N=L=d{3ZSaYhq8dufHg)`7>zSP}tOvmP=F1;hbNf6@0RTyOWq|
zV7u#=4Mj@27s@E)P%|Beg&sVy5ssv1R*RBHImLs710tEB&>T{|tQO(7zXOI2+90CJ
zwF~@Ye_I`crHNuJRQf<>dPfY`|7k<Q$C6ls3?1Z=iu!{_q`_@b4Go1bJ1o=f>xOG$
z-vGH0&5UAbm(WZkZbEu`E>ly1n0*ZO!)7N#$l)e>4INJ~zinC5>X1ycVD82=mRU`v
z-O4-Piju7PQ|-ss3HEsz$Iqq2l~V7Qvv>d$Qj&gk=pmimB@u@gp(JWX6uYzUc?=gM
zYAEoCFaiDQ-5oNeXr4du4ok@ltgxu}tw!`6m{(sDPc5pnLp}8MnL*c7b@y|8K!l>X
z)eeM1ZX)&%(W*u)Y@s4GRzt#~o+;!_UJ9_*{^U2$84@9}7U}N1heKPT4UN$3GCRPj
z9?t2W0@C-ogGnVO_#zZRQ%Oyco#q}U_G@O8z)dH>WLH8W1Xxe_7r-0V8yMrFDg5?E
zaj)a|%#cTW#p8FhA#OT4d>}u;a@#HS8kuo#|JA0*Yto7*K4rR2bM%m*;N}X(t4CaE
z&4OEVR$uD>qH}Hp@5O@ej<Ekh^`4&;KDYcYNba97A<{oVvY?E+AOD3KhXQ}Ss$kWd
zprN7tP}UBUQxjA$`1oF*cjQOag=yoF>L8fZg?mb-n_3$qRHLDLDQ@_9tgZgUw0RQB
zcKY%{Nh6}@92ITmJ#oUJS`tqAGMivVV5%OT#LH{LG(Z;dYDul}+!KyB&V2eBn4x(`
zwn|@wHG7GexA^Xw5}}qmHmQeyig@>iTX6MyeO?NSu`b6&DBvZ4&lCM;Y4f7phvsp_
zafJG{%30p<?1t<)cD0<Au22!YdX?6FvAUh@>`q2l`D5=l$He$wu+Nw9uRe*gxi*$+
zl5cz`^u^x3VpM5TU^1M+Td3&p{+wuUN=~lKYV2)XeaFdoQ?xc7Sm*mD*l5RPz<se8
z>$HuBiTe5rz@&iZ7PStDb~w8imBSDH-ORs#PLw#lx!&14eV!j@VMM|7Ctb<w_RjyP
zecKnEV$trKpbqK0-)I{+*3pV+wkzVsDwzx5%)k>pkgDw?z?GhrcbQ@*16ZzSY5MbG
zG=fte)9iwwlciZ;`_@#l)0c&6x!uT(i79Uwf6j?;>g!*A9G#-=3j;COwJI^PIZID|
zJ)+>6rL3y=!b7?9+^uA--5SUmKWevobw{T?M)|%LpB^wvjSK{%H3nr6x@0s~*d}!4
zDO@)R5b)P0w_v+CO#cEMT1@XXVsHPh5i==u9^Uk;B`u4LgjZE<!r*wIvTny^)c>Oo
z3BEGieS~qfee!$t=Fw-ME-z13w7+&mrz;Vv5-r$1D4`(Z$X?3Fq^w~pW+ll~+Mhs5
z*OrOYx5Lw3cc?D=CO{|a5{-IB)T5Ic-A;P@sSP2Mgsm8h27rlYLl=RJq--o&yFVpa
zwHYFM{KvmIpNuKF%INg;S0NIdLULZUN|Q8~!=Dch4#;>sKYkyWi5uX)(IG~>eVP<w
ztEqPE=`EF#!f<-IVsqI_u0vLv5A;%;Bm@n$eEwt!m0u*KfY)}1N8T`&_05jrwjwU!
z8jsW4|9TKH7x7eV(Vn3;U#@z82)%+A!a+rq?D1oAwDs0pr1mEv2ob#S&<;FlW9QG9
z^kg8tQD-`Ie5QSdJO^;MSo(Nj!l(93{Grfr^2Lehpia?~B@_r%*BgTA#InNVIN<s>
z7LL&EL53WstKMEgjh~S8p~qRBvEue60*}|DSd5PR{IZsY7N-$UHsN@QPM|*o^ddV-
zbxDLlc`|V*aa=BYtk4!F0iQh#BzS&n*_{{p?Av?2K-7%!4&FhSl~yDE9vzO`DPN?T
z#<bTB$<M*r*cr$$eyf4)Lo+Wq+!r$$U~4?%ldIXl-(1Crl-f(B_ix$S{Hhnro{UH^
zP$fy?2-MD*xm@Vb=4uH>-H*G3gCA)0j9>rp-PxE~aypq4K$cw1NVxrc_htHI$tfX1
zisBO=eh7DU_|-ti!Dbozf~uz+!OCcVxdNIc%`g?ypIz&W*E&kRus%iHwK-8Q+d=xJ
zRJ)BwKL8<Npw2V*#wK#GoB!R71>Wy&(QJbSOIki0&p2$4gpNUynoF3T{vuCfnz=wP
zm>Hv%v;vCXi=i|Wu1+8!W?h4BtPa%>Ga?X%14N}2QkLtUHfMV(3&#~S%H*_AyH#v5
ziDX0==y@L39Wofj*HM6iL=n0SJ4C|(h680bgx5Q0sGe8IpO>@N8;VIoQ|J@#ym~^R
zXtm8Il@wdnee-G@agXGrwDL7#)yL*l+|3SHaW_X2_BawA+bQsLZgW``jEUFn5l_N>
z5GwhVP<YU*v6-1t44$lU&=(&BkCP>r5ZvLw&kw4Mh5L+#{x}9&>Y;i$!KH)!?>y=o
ziZ_4qB!!YfQgCW`n*;>JC8(qR!WlKPgwha&gbQ#7Nl(O9&A~vr=ZL3Pr3V^maQ5qY
zza7K5e;vCPMKLs_y`&Wi#_bm2%C6db6B?xswwlqcPeW&8PC{3aHr0bGgWoHI7}l;`
zCvp&F!e&24vFghgBeSg0A`>+%ekV9K>k2CQt`T~oDI=$_k|Ei_wSFigCY9m-Q4V`>
zSu2OVJ@~hrl8}!WwYYrNH#RMK`=7yw2Xs}oS|SxTNW;O1jL)$KO9zgj&2gc{$t*aP
z4y)4ExK~x-%zG%w6WQO^^N_a(8n*sCW4G7wCo#I=o;*KSH<e^9{$<7{Yu@fnmW5yK
z3i7H&*fd&}MW_YF@1M-#@~zb}c4DW`W9+^88ae<q0#wNnPT|nyE&}^APRo2?jUpQ<
z&`n(QgZY^Z4l7n^>v_gCErS=$XVXhEu^W#Vt6lW5^rc{pV_<1=2{8{@(A<r6Se;?Y
z64*ddVtW@^-cg4yt!FM*KJO-$E^8_iu`vS!{lO)Uwql68E>67I?st!%u%kAuM&SHj
z!(w)!w>#8AmMpQ!B4EyZI$Cx=K4kL>qqo=^iGVtVQ6|)vx-Oew*sTU~h_AQ0bGs!a
zT~t}-({3X|Omiv)|B8%-5AQaG%+qwTzi_s|08P1^qs6NBneQoJ%P|mPOGlj~!1sBt
z3F~srGhZCtNp&1&gg7@`ik`ku`bo0vI1e$)>;d$p{pym4_QYrD=gj5h5<OgYLsrGy
zXv86Z)aNZv8Ev<{G$rjd=5*w9pXe5Mdz@>SIMDVGb!&&O_si3pk+2BlVVl`?U+pNG
zj*is$qtUy*doT%{1xl=>Dmzs42u!LkaF1g+GdS61kzj~2>j_aX4q@CAn2YR=W*{z9
zmKS{n-(bI@OfO4%T`h2+?P%{Gs$qVmq5?f$Dd9;0UA=X<xLM#ms4hv#_YG|0N8&_r
zCFI(N4$ctEq<i$<ULp9`TmyTCbYxNtv{zoqO$IG=fHYb_@|uVFSeg6B3VT}pwQ2<s
z<KoM+c#>r@f-wIMKIk@#%RP?$W!7UK(<)v;+XZBd&Kvq(0{21VFvCCo4kRMaK1FYv
zjU@0o^iGA}nKT}ws0hclRur}ulRFkk4p$00f2dofvf4ovE^}bL-O~`0&r5FQs-C9S
z+%WcQI?>xchAi^{72HjrP|fI-yem9xzrAN%<TN&f+1@@;{(5`^tH+a$w!Li;9=^pF
z4rxVO_{)x5i3gE&7k1n!>uO5Pjd$o`9rQTgFa?U`;)6r!C=IUx`Crd2@h%^}c!5`p
z+B<nvj4R4{*^XhuL|T1WPc4W?!%}z}ag8>XrBp#&Vz+4}Y33&YGqg#c#`v2h^Ssd!
z-)b0h=oZmLP)kv~*Mn9TKA4-N&2@V|aj+CEa;a1bhy1vu)|)5T$cXV>A56g&)t9hl
zS!8R{&eIMH7HIQ(o^jqFV2bLnG*Il(>LuKf@gYa$cHZm7SCinWONvDt$2>owN(*)~
zJ!T{7RGTzDSse`FZubKVcqX&o0@j=f*{r(0QUo*MpKY1zLLZw(8a%f{Nd4hh=6E9V
zjCcz;d6p1!I~^yZD>(J^cd)Y|-8<p-6u8R0*!}6R!Vg498=0>?j%alwHdAz3YP2PT
zEtcP#zg3&B4y&r#i{0;JV*ey#?S0L*H<m87?HV6KM{RmLChp-D9hYurcA5r%lggdl
zsEWB<jAp3OhVA_Z7+}yp<iTPwY>at&h&Wx!7EaaZ6YW>9wd<`)ovhgrK`~wNGBk`6
z@p*)j`ACK`{Kix8tqYg2u5Wm`TU{YtW9z^=dO%+mJS~4UCj0^ocFdn$Dt7movp1E&
zm+D&}F+a(ysi`i0@|WLqj$ZQ)a@u4d*FP!d<uFE?<YUF67(d-?^2WU_OqIuO5kg8U
z*8XEyi=f6~ru4=9SAIC|olu+|_u=?6xX5wShy;4-U>ar-!MjzFr+`ad4of!JQ}+m)
znww8nE6V5*wKwHr3%9-&&bTK)f%oB+6a|6s+u0+SbR`Ppizv5Kx9@o|4)V{~tWQBA
zg3D@i3qcB(bzo&MK1_)IJ&a%388^cRtKr+?x%Lii^^+A%ruWYwZhUVtKrK{9+3=*a
zlfxM;c$lTy=!(~lw+s9QalW<G=&wx=-fF0sz@w%o;Ti~{AGb8Hv3W%;Psi!Y|GMRS
z-agU{JvlqdB>Qz5uk+;*hGEhp(Soo;@G_0=Aib$rPJ)I!nozWjdmeB^e=+<tXkW|P
zOZ+?Ng>alKcP<b>;E`n(glP8Y1i{(1%V_%X)EsN&r}#j0A83r(3(z%jzZLJE8%Rfk
zAZlo*7QVmV*<I}u`EZ|`jKvFpkdN{XkUiGjKRSvI9jX4VryfAQ{kgnJ*~&f@>b>TY
z4pJ`V`(|e*;|}NLjTQ?QhXV}XiDC%tm{GUYvAvU%5Cx8EY@UK!O{--16wwwP)b*Nw
z{=M_IRmQy+8xv+1#i|wWWMt;=!Du)AX;80u1zk<G!+>a4cJ!i!I`bQuSY&E{kBi>5
z_Wc)r9uiI3%T0%ZfnMIFi~aDNv&bW-n;o)F0UW7K0QVH#EhSScUR<r8`7wl3cDjFJ
zaPkm9sM=QNx7hSXd*H{e75tRTJ0)j3i_yVZ)vY5?$b>@gd|@^!u&vt<K8g0h7-yTn
zC%I+Ts(NR(y!~d2rk(fP<!Zr)A)p@qR8wC6h(y>!v6-U@0Tdf7cDa_m-BN2r<B_-l
z=X>HIhS;IDb9%{Yvy`aND}J#CQOV_Vz`UQt@QrB_M@JHwl+a|piV`p5_-Y1f78|^z
z%&kT4*g~6qzEI5MHVg&l{l@@@dnM$lGzwQ|HE7mhNaPHAO>jK<qYKaV2yVRjCV5I<
zc%iwpBKGT}v@>uuusVh@h?hUh0Nl_bTdx_)d)+0kTjVxb)vUh!&AIKjOy3~3G)t_i
zOWV~#J#>Vx2{!?UTuhvuXdSzeyHb1c<fM1nSfv&fliR?=N?Osn%$ZXbxz!*+RkpUU
zWLs)GyCdc7yR-QJY3iHfD_NSqH=B)Z+qSjw#<p$S8(SOOHa2#0V%xUuY~Hi?-rxIq
z=C3+uW_qf-x~r?Y>s#FpS;Gy^!hrAo=n)d_nM~Dbz2ZQdu5#rw6vTDsVR^bX&)u0~
zwQJMB%rP{v7OZo(HQ+XHt&1-ZvU1fql*zEUe;)y6sm`NnYdSxUF@Hf_DGEA0+7~V;
z_Z~ZR*`7lc>$3Nr?NnSqE;&_yme0axxi(w%8#Jc|F<L@gT%mduhepuJYMpmIoUbXW
zUbZ2X&5#lS0qI0XH)e1&XHrLNrf{Q^m-oikGPR2oxHmVV7mm8`1_}-e9-XETr=@OG
zJwqvLX_qP#tQy;TB9W|iS|{%sl#Xf!)h+hKykkoiq$uf3?CA!vFp-Otf7jHeG_)QH
ze*5Z6x8dnrT;1L7Y11iaRK8wSTZ`O%|AV+{y-sCgfNj9x0GRvEL&efXz`)7oyNJdx
zxqme-jFeQtajh%)kAX5FNCO<Ado<cC+?m6JczY5sUR)K9tgw<aT{&3;q6ba4VvUAJ
zZ;xG45=)ho@uEab?K-tAYx~9hUut;@bD|d&HI)PFyN_K%we&jELs_IJmh?JeF$br=
z+(vG&M8eFa-aEijz-Rs-hWU-tG1e$opE=&O(F@(0C8<WRhfTU~oF3nm+27>Ztg*A6
zvZrOWA8i+-8BRFk9B2mKtc1_cSkf%?X1;i6&U|5cB<5*TmrvCp?#M7G=C{M+B76My
zvc)V#MKug)HlWeuuo+;1=`uU4^(-cV-dza`Nru$SRlAF;YuAhvTaVNb#R8ZvHd=3m
z4_1X<Z|u0tS5=>WGu`d8oL%PGv9KtBFKuvgRfyH#T2aa_x*w;0ky}@m06C=h&o6V0
z6hz<~xUuWrYcE=B1+IT4oXO2ueAkk-Tlp^5LI6TMPTtA4!g$5!s3r4#1WN;qjMaQD
zxOjs5?qS3T7Md~J4aJBU3YwC+x#+i}p3SAv$IkC>Ddc%>&@C1bh5M7t(G?b3@MgmF
zFS|38SF!0iW7PBB735h}FoMJkC!$}|(+12eir}qi_8!J@H*Q$x<P&qmzZbAKTFxd?
zMY1z>`q4#<iJX=}Q96bOlO?B>i72lcu+Gj#v@35Gt(8^ID=Mf`6DwNq7I%D}A~B#7
zX!--<i-0K}k|sEi7oIKs?!Q8B?c$*+ASV_mZJIr_Y8sTK>SBVjv3(mAZBm7g@IqNq
zxU)}F6<K(`q|~)*OR=h}uOsH*jzLB+!k?z{P}(RD;gm49L4y!yIG>;%VQ?Ez@#&nn
zX`~`1nZm4gGz$*)e3u~?pytoQv`iX);-Ig+sU$#X<VZ$aP#FI@ArqW7yj%QqjPB6h
zMb^X^Nwr5{SY&RJt=WZHl~zSbFdltS9{u|Vij!l$A=MpYNR7&@^v0}`g08=;mzR<R
zaAoO_q_488<Rve-4;k=?y+KdK-ccAC)o<Y*;7#2h_!y3oGslgIQ1Q9?(<+LZrst!|
zrX`dpXhqfe0ggm*c5N_ds=zc;?nmUA>jmC1p)y;xdE=*#o7pX67$?kz#0I^-1B2Ol
z>w{Qo$Ss(lb!+JLHv=x$m$FrT8|NL>WOkoV+H~lnMT*)}GoU_)V7A7m(`q>e{ka8=
zh2y0k_p6p`NvLS(I~v_2BNP}Uq?~7}zH;hE=#7`Nae-sWG+msHPIwyF9N@6m2g6Mj
z^A^jPV>orj8mcvf9~LOt;}KOB`#Gz_U|Vg^nn_B^+O{3Zy{WnjhQT)SYS3~WJxps|
ztdMqqNjKf#ULSiJDs&5VS&g#W3dZaj!(5@PnchYnMUk>-#|=_dYdMOm0dV@)rNO1e
zgot@35wjCJIfw??`DSjZfXys&8SDhlOWLACZls!WGi4&@97j3N(XmlwqUAy-7I^P&
zN$V5!`lEbAH^E&l^vIA{#}KYS2p%T0*P~G^?`Crv{tHbMx9xAf4}CW?SU;#nRe95E
ziKp383Wk!VUWmONVh2M){T&Z<D}Bt>I8qW6H2X4G^PU~Q0g49$B8b1qzy;GOZ4LPy
zGoG?qNX+K}DAitEFVIijto#KF^*k()4zhJ_#xwxsENQ#R#Ok*PRJ`f%Lyzkf?{-o|
z!aU$*y|$mnf~Hj**rF;Fx&2?@>3n0EQwC3c?;h#W9@pC&31-zcuGWU41GVhr89JB_
z;}wjzObtjCMfO>Y;Gqh2s;p%Jrweb?9rpNHz(v_bXw{r4<k2(et*Ws+l|9nM%L(GQ
zY3}L;^RVu!VS!z~jx;+_U-@Piw8Sv)JhZ6_<qoUC{^ll^BoowR<=GZ1sp=~p3H=ZI
zjxibux(VbyO;*ilEJaq4NXolPDXZqQ%GHc$_E*v)MPy%PN-I%e2@7W$2THZOLd1np
z|9~;tR{7oxEBG77CFB@w2BKxIjQ-K>rL}<q_b#DnoSffqU42vGEcx+{9%Pa5SwrJO
zkms|^Myb2-V~I8od~8XAqfPE^&buo#9%2%q)K9y8h5=f?4`1WyB4E}QD@(2+j7(Vb
z$>epliJPi#7K)X*e^*JxUS7ZSDVZz5*NN_lQeY4bi1v5X*8W20%c#HHSP4@MHd^bV
zkmSuj;y)fLU9ED+;KVm$o7bYm1Ci8FBgdwNZp*luq2u@SBV(}T9Gw-_Yw&zx!alGu
z7A|awY`iOsyhERQ4#N?04*hM_zi<`Bf`hmAf|s^yVGd|FKQj>D=Q0^Y3pAfD6$C~C
zjOaxG!yyr_wIEzJMf3y}f?2Y7IM`Jt@trMgC#~iVx0kF?Z7f4)3N0YPVHh;op;%XO
zwO*j=Ojpr~>m2Af&Ut;V5h_I+uD>jFj;|-+gNh@gc1F9U;PuXpp+~M}ov3z~bBspu
zKe6sMaOj$ZBD&bL#TID1Jw{<G#;#29iq{K6<f&x<C9D+UTrpzCVv2mQo?0z5&TfSd
z`B;UuG1oJmc1QJODU^V%B0SfKincOaE-akbb#uBF9K6_gweIihBI#i<__jZvH9Ul(
zxr4Y0mXmtX@d`jby?0MUhqIis+!hI_S7rYA5Iv{7Ih?tisNhaf(F6i-dt<XrXQ<$E
zXx$;~))bMt;Hp;Dbe1Nabx=&3TF{S_DxM%M+cXU{48*$)`0Ozj>J}%n2tW0O&gOF!
zB3C&e0+S=aMa<V+pI0mgT!{oH)@ICx`OZJLsk*prCQI(N5SLtvBz~YbY(9Uj(o@0)
z!|_5u1CPQRI7QIitstvlv|{^p*}Isi{x*}Jmov>FM7RbP=Jk+Qn)@pRFMSVbJ~=K^
zr{lRdh1JWQes48cJ~c&7J;PP#Inwk;sDu09_+Ay*meb^TC<VTE5WPQ>w66ub76}X1
z@*BQ(rCpKYnJ=Bj?T!^LkCsqm_0GJ_CNcpICDK#T=GZVqOOqw|U6;0CrJNUdxVI~c
zF!9x&D-!wv-R-C+ebvroP+IR3q|E-tGy=uVXQ)k_waofm!}AZ&8yNEe7>3QU`X^n(
zlTpwXx9-?QHf=`S*UZdIC#<zq^TkBh3rsNlDho7ME6Re1BA!j)bdAlN*hXBl%FV5a
zsW!Si1ioWIWbAqbaV@Jk5QTuzP{SMtrGuR&t30iwt)J@<YHEq#b7o-F+F=Mz;8z#$
z?ep>87I{1_o=^R?mxfly3$c0f>2AM}=-mB{s;f(XsPCm_*MR6&E*#Wmb!ljw5IeRg
zX3%E9H4TMM^P7?Fk@%b^|7qe+@FBwVv?iCPuEq=gIM-}7ch5oXCXpjYy{k=gNhwIH
zHE=tcz+nMEP@~1zb+65f>!36IQR+;Qj9t8Vf5pRkWRtB0)1-k+>46D7_E*=S1(-aG
z3bADk9><rvCwI3I#|X=<F&u<QCoi_$$Y$N0VGll?_RuX>Eh;+NJk$23-8Sr1gtO6*
zl$^aEo{&aYS3)1AGPTrmNSoDVKWO4@gY$`&oBR>mcKK}drrfU%CL7K11Cj!He7lGm
zt(C-E)Z+9E<)%P{&COc+#=$Zi?i|Rch%$-rgk;pv;a>V_UW^auW%2k$pE$Y-?c(?Z
zb;RPEAHn#Se+^f*<{+OIBf-gl_WlMv@!fJ?RlhQOZQruz1oU)%@EBa}j9r4ArLkYR
zbol8r<$D)7KtYicmeNOCdPM9tphjC!%A6{vO`zFR=LIndd+zGLG9w!12<L5mA%B==
za#>vpip3Q+s`=7(k0<R^&FJ%Z)Y6PA`$oPK<f*C9z4Rk<w)uK76L0=>227y6JTVEl
ziz^VzT&l!k(#zaW)BhF$eJD<_Oy-B=*@=&VfpLCO;n&eEOp3P`O~<sp)r#d5#EAQL
zYPkybBjd-2U9LS19?#YO^a>YwsKECflU0|r(R7xKm%QNceflE8kY;o{1N~TC?>E5M
zyq`HzKQ>mhJ*ui4zR3DEgGZeg8%yGr#DE%#`{}9vW5?&1sVs08#gT*A=@A;Z$SHT-
z?lt@=YmGY`-33IHs2%g)=x~F7!t9c^^3>WFyKbaEFI~UHYXIzu@>z3o#WpNd_hKVi
zM!I2Xv__Sxole(HPT{i$eWLA}Z(L!Z$!JLtp9GjNnR(WteEZ+_3~*ciiS?#}&rAe@
z8X!N*@g4t*&L8OxNpn*DvlBxP+`)-C8;V6v@v=$}>S&S5?0DVda`6*6upo!^N)l+!
zF3L`AP#bQaD@Y!VVQI5b6O(b5$#T>BcMEX8I|_(&pk@w6w2=!$a*}y7>6q?BstTQC
zzWDr_%)M)*D8oYbt}sqHIa;(X?^C+ZaJOOA!0GZ9LF<<;cSRu7v*x9Kb3mh<G4T%X
z7|mfu%Qi{-Urw}J3=*5+PY~aBI1iBaZh;>p?cUZ9(LE2(ijS+@2Fd1Q&*HCnNRD1}
zOLh&H-(h><aCWT8f}A9vBfHgyXYP)|I&zKngS=`dBlUsj`*1mxMWIg!+hv54UfeQG
zZiJbvjUH%EIgxZUVPG`bQPfdJcjC}*?;l0U!TCAL)$Hs6aE9g46QG<A``C9%IHU2l
zbPIJWRtHybVC$su-VrGzCx&Ag@-!M4Cv7vwmT=?@@Ni?g=MZef9<23Vn5@{dhB^&c
zcx@V%-!6RNvp1(6=}I6imcEwMk9F{xKzW+Qo8td2HQ}5R&!Iaq41uFNeMxY=p~O&9
zT6tWN6>4J@^|Ik;=zdQYPT4EnYC&=Z!${-vV>+ryo~zfOOiOvP-#&+Xton>Gy78F5
zXRS5g6sk7WnrX59na-~E=-ZD$^OW~gEgsg6HN<|tKagZ({pu?K|Da{)b54Wr>5C+~
zxSNazTDD`7Ii&NSFsF!9CO?<*N-77!nWhkoXEJgc%pd3nV=yH>Jc3_y*{85a2RrOn
zJqMV*>m7<CIYJ(ZX7iYQEIs1M_lv+xc;C(`ST6;>Zk@Zl+X2WH^w5@?r*`tNv`(1n
z5v=sECqkaJU42>8FphL{FZdpwFN@?>+;+9_z05E^#O_T2QK4K}YLkx$*{HsgbA?*Z
z6I5SjTDGsQ#6J!%j;G6@;<xzwX?UFPEzc%f;$su+ZdCz0FD#s;c73(7^zT<(CaveB
zg9u(Bzj{=iA7b>!m#2E^g9zo^ESt|od`gVLqtgWgb$!D0_>x|Zev_VO47G%I<;{F-
z)JZN6ee4P3`^JKNQ^!Cea7Y_b>M8`}#=Dc&m@H1R=DX2thr2z^nk+LStMW_KP~jYN
zIbxa#_$E)$qsrHt;S=CC8}4^rxL=hWjS$7U<zx=r)XTrJ{@z(JP?}*cmHTN2x9Vyw
zSK5ra2OR$YxH$7<52T;ujc9=R(?5v4YS|`{2H)`dD$Ay+K3d4ESJiv=%^+r7#!0_2
zWD;kcWlCF(-aGI?UChQHTH!Dkus1kt`0{&wm~^dnL|&Y^VS%#ev9vHb_JPjBS`M<1
zWZ0h{!_m@NUGHbe$^XU2!NY5>wx)&n<m5Y;J7u4vk2VFW)zvG$^GY<l_AW3-)9`0!
z&)d!UxBceT;4vfU&+&;t#}i}9WevfTXilD27<cGOZAeDJ>E2%Oh~#R%k+R*_m}@ce
z!#`aOTHF&iLi2#fga78$in5sp=Nmj!3X3g%H7Jwzs_xfRvkr6#F^u#)liA?{INLp$
z@(Og#^dmi^e2x`PQwdDw+}=_J&d9np+Y)SW9u<qBw(}^+<#{-R{$#yQ+x6(5&X)rC
z@PsA8qxUjA##)@s`B=8xbMAP$4826SKn!f$9hD)lpRk1N6^K1!5j)lcPnPqEdb1t%
ztN#fW`_=ucJjtKz6C2hO55VnyaF8_aYe$HRVWfRN0}JESX`$gshnBABoQ5TGR<3$K
zUm@jj=Iq(m#y4JGB(>sA8Zl;-qZGR-bYsLSM@=)gy>Co2siZoqJkTJ^R>Ra#`(4XI
z`$4vXF27M)<3U!g47qL%2)eI|DbY76%Uf^MGN3H1ymzgz(lQg+e72+-TeK$O;`yZs
zzj6xwvuLz;lv(=Bqv9!-_Opt%zY3U?<g=`jwy05?GvYZZg}UNTIBH#EZoM|2R#Co?
z_(XPWt>XII;vN(3r!(rSBGM;vLC$RiH1%i_+jGzQD!!Hp*0UrY%BF7bFO#ibw0-ys
zJ(>CCoC-0(41U?+^@*LVCqSI$-;MkyLSO(LG*MKfRM7Uf5_V9FLsAhZ4=ysHL>ehw
z1kByOb&kban;Gx=47b6l22h=K;?xFXf}v#kLrYtFe3#cfjP8)BCjyht#S8EDrxqr2
z6!c_p!%2c8$pKIPO^xx=%^lQzG<hnKTH?jXI~eozb^<l_se}C_5^qn&gx-xarBprh
zTO~Y})!(%SfFqg~cebp&DL11BFFPmqCqq{*j(oq=){&e53edM!ma8m4Ca+UKjergr
zu~9WWXmyCCX1Ugi>bK_Uf#r~`K#g$@YfgtKx31;>I0!EzN^~JTNW0*}k4rMkku&Rd
z`<N*V?>?8irf1PA<C)&Q^No&Zo1=o62z#0+tBne&xRi`0nlVXA%HIb234H3Gi)XlP
z_8~P}9|77#eKb<#bR_h%x@Iak&A(7+*PIiTZz$P2W)mO;c#2-*{snuzC}G|^${z{z
z+7ZlKh^l{p&)Xn|M3<Er+g=EDUfWwP+?SXRz14NqWram(c5pZmH}y^NJw1}2_TV?V
zyfRknaaaaDJ6)0ZaQ*hcaPS~&JmW`{YuD=MPLQ=VoD2Sn3pf2)#9?u2>ThN)b2<;#
z4;Y25!T!T)u@tz;HnH5Yhx?J^oiWLld0mPmmgO0db1E#7r@G~jDvnP?uOVE66pLaT
zw%r5ASJUwT?!U0~i9UbIjGNP!fXnBD*M7)nj*Kg9UX?x%`v6#9kFQ<*4TZMW#b%}0
zE=xJNI0<{E5ZlQEkFx%xLEiY(J1JZ!e39<nzN~+uo6)PYzS8=Enk4Ige>xW(AM1QH
zFqlP(nmE&CC1(i^Cf~omH9`@l=~CVV3RQ(95}o{Ug8K_F$#+Cmwi0mpaEh$X6IDC?
zy%KN-iF^be8ZuMjMJW!S-Opdk|Iq&q1#R^s><Gd3zlfuKxBAZ@ZOmhWovlX3>C5J!
zhOtksO}wR^{eNdLAox*fJe>vu{MApqU3_!9)!(3)@Bd7mERm8WDZxLVa6E2$3&#J%
z_x&}-jufK&{})Jzh#j5wzwka`dRWr`j{{^%bTR&4C?Fzst76GNdggCY5HrJqS^sKy
zptqYPoL>2F?*P8;h8WGN@qfkqxTO5w@G8i_|GkB4I%_NnOwX&5czlog8KM`jDi^G4
z$1U}@hQB_KFu(twA*-mYYU`NvzHl7;Z13REyScduY=w7@A2rjrCX)0#^^rg5<|2?q
z6RAhvWx9XfT1+mkM-|63MLoC_mt+K<g#E+z=VvOHS1Ztl`v&CbPbBS+Q3FL|>SJd^
zxv*=!#hqq(*0+gn@HS8GI&R)Ca#Ao08vpVkH=fxblwSF6MK!iR`(RF8F)(IF^ak7i
z*8M$iSvtB))?alvE1xxguOVv4@4M!_2{B8AjF*^V{v=X{Z~NMm!_HZm^y_($h1~6D
zxSA1jDr$UX<r9o)J|+`}z`@nj2dj#u4lpldt33;pyMwi!7)X^IK)y7|l=g4?zI=w4
zQjvX%$@(y+i@8|VQ|I^W-{RDk?puoBx*9qOy_r_V2ES)bO&eVE?%fbvJKx!#E@FuW
zTWrO3pnPgh9P_&rj2xttjfd}vl@ouGedchcYK>O{W66VHM600BsOvshFoVpOPRh>o
z`)6OfGA;1O<4py5v9~RG=?A>61+fZ<e?`6hBkFfQp_4Uc8_7Q^#&@r)U$cEXFkmpQ
zm|9P`ntfQ9UIshQt;CnTh-5bCqj^R%V=-!77X<IwUCVoXU+&195q|0nRVyaDCC7H_
zj{lJo`xJv+o`)+k`Y<=O{-LVV<b6Y?!ySaOZ9R$(nDM?@p%~YCW>Z*je(HsbRKNDS
z*ns*ed+-P1`pV<!DGLB=1V=U|P5HL|i+DsPpK?%@Dqj&Y>5nm0!mqWsVaEg$=T>1&
zs#)EHF%^Y!uhuZy{wR%2pAUhlyDkP6>~YHIgEuU*%)87Z-lLAOjys;I_em%8%AS<Z
z29iN*SPcAEcox&~0jax`J;H_@dh?T826|>l0Ubj65q<6V_F_j^U+Jn)5H=M1;EAZF
zB<oZ!QJG3}MVfUb+v%N+5AnLPVYJPdu&`spJcs3er(b(pW7m^A-0rUD=D6xyYC%W8
zAZnt05zih=!QLA!xyh@ak@AEI_L8$>iOWQJNCDgmiB_R1m426bg3s=;7%rBo!F0vg
z)h+c*mSm${ccqBD^q}Cp?6^4{jKZ{^QDAz?fYd)SJ5M7I;xh#<TKmdY;ikVG9h4HZ
z>hu!31YT65{LUCPKghtu{Z?Q)H5${pk(wXyVzH}u^0O~_3LkuS)oXZk)b~X*^$vJc
z$|W>T9<Y-O=auiez9aG@6}|-!J%0$^S0{z}F6{aLJjb8DKFo7`7Yzf}P^bt0)@jb`
z4r4FfKhU6J4J#TpgX!*rSHUubjUNAS*u@T93iekyss2KvL#g)@Ev&g4nQhAhy0T2;
z@DkeMGG;0*Ijck$?2QE6OqmNc_5!-U9FuPj%5Tj_(V=b2^^a+9ZJt*o)@$@|9f1Cn
zRzfY;0aeu53i?HRwBVL!4zbbBTk2!1Pim_^tzwO3$eOJsc|IM>;)Ex5i0$5tIIeJW
zuN=usiFD;U(h8K0d=qM`zFQ<q6SH#+4e@g_-!9xPEj1*AEFD;2i$pf%XtuLKNk)mI
zh=_At{9atj0|w29#G}Ea*BX-5R!n6jpw>ck*xM(G5`!U$H!vbo2n*JesiuF2#8tUQ
zflB-Mu7c<w2C0Ex0Ub8%_J;x#5f`~LZt*03SdkPzAWKJa8xbU)e074y9aF_>DNOmB
zB7Irtr|lMeED=c3{SNa=e;Eg6t=$&Awe}xa@XZARpI7*v8C9J)Mdrs6n4s=?j#;X(
zSN1e3-&uro#HiI9Uw{2Df*(L`<B_^wmxX;}xPEnFw^z7`zs5b5Dik1zO=QP(N|}{4
zq7_U=XF+6@Zw|_QDjq34;HUuP1jKIDV=l%0X>x^f<QWUWdur1suEBpR_UFknLgtKt
zG-8J8HC6W><d4$?Sa&Z)?w@h%PlZ+xK{O_uFl(#`6lgVf6N@#!sRNTu>D`IcUJ1{k
z)7iTm8K^fpV<mqYfz>CQ=1M5G!0V`EYsyUTQ&O1}Sv-&Ih{g}me7*Xi;jp`Zr4{<7
z-l03E9McpY7DkT<J3Pf?$Dsc6&?mG&W-htqvdzlg=4b~qu>)>yk?ZDp%;@?sck!6b
z9g=?wEodz}c5+Wwv`;`R-%1nva>^aW)$RL3h*u|m3m&|ByK%0IJ^bp{I)u~WJMLyU
zGOA0*b>vS?F<}?_nqtWheum7)uglm7z4@11=9^^{wyi~cjnz_2r9LPfiM|~8wzJTk
z1m531$2Z|}8X(IMXhljoG|WB5vVOGR!8e|HbHFE}d(U_<kPSv1)-7J!hnf&=LImpy
zkY6E{B!YKBj<OBMtr3n!d*Z=!`lLQs`98}D<WD??cSs;2A?X+oTnX5Wua8d$ZFVqC
zuPA5ZfP%gICV?v|LjK7mhsgilV-!kbELaK1H6-Rb#SP#`UDc@t43V^%Fe3hxB{;Ex
z^^jNI51zpWjjU7m{C>l&kVp8HC<|Lv(~&D;8>4CvFf1k7?+xz&n+|ouo*?-V4c}zI
zK&?yx3NFQ48Q-gR+{f~{RDjv`fPtkz;CCY@+9mN-Fsh9f3Sm*Qhs+f8+|WZR9^&bb
zH=%c^+|6W}3ER$+>&T7`aMaTy-^yljqY2J%?KStdpu!K5b#keK?frrtT!=!t0R%Xd
ziR4zLAz=`x5o4zKqC`op-so%B4-O<j4w4y3S3(aK?cS(cYxC|74Cuf2vG4y9ajr>%
zbV$a8Z;})5k{HN11@N_+cX@DN+pPvyuwV5~Y+V3AQsjQ;VO#+g)E2_6zXQAc4P<!D
zFC=Uv1+0#RO8U0p$nX!4g}16d+9ZK@2{OMp1D(SNeVh9u1L^Hrw5`pUk8gAvxPL@5
z@Y7NtA<X~;OHMH3P-fCJ=H3-)ZG5pbRqKgHtbgim{8p;uTp$&2xZhbj;)rU<eIg6z
zoaM*zt3sww{VO?d<IhC)!z7^OSP$cJWDZ7%D7XnmaKO2~3VvHCku1D67Q!AUcCR50
zaMZearz9rMkDMOBVh+s=J9aC#W!`qIfP&kX`B_<#W=%d{hlv%1f`kNhi_iQX4IIcK
zBFcjKSXqAw5oHio-Fb<BD2IJ@W7uKf5D5#ThIaaofVYGF_c?#o8^F)Zzc)+!YJuPR
zO9(L$QV;{La>De%M6|zDegul)ciDf6GZ0E2B}(a!2Ywj|NkJ45q_rcE|1XX7apG=7
z`0vvLxQ_o2&;$7Y5h&0O|MwqB&7tvsg$V-lAA)fGeOW;i>O+BRA3PA`=H_OIykY@c
zL--#KDIUB+`5M(}slRMB+Yx{x;8zyEUA7~Pr7(y~OGl+UbG!Ea!%EU6Y$)G6D_mV&
z-SGJMK!?ZO^&pO&{=sNcsdg(fJU(yO{k=0V#MJ0~xvsqHTu=Z{rbg{yzi{aTgo6fo
zs1(Bn`7a+??US{k+K=80x*eDW;<1B?R7!F2@%~3Se)z!CI0vn2I>Afk!W$b|X|<YQ
zJ3SwS7%_Q8<*R$Gqe0GJIGwk@z~l16h6;R3xS8*5oIwVyIC0PLEC6FtReJ6!AjVvJ
z(c!c|W(<%{_}jwyPU@`%Drp4tUV{W4`$*o8D`v}WE*0rw(b!-qW5I1MXNI4DK9*|@
zKp!tRB7snOv`mPvAPWt?#0?Ws7j_*{IHweQqoxznl@ci0n}sy|&vNv%A+v#w36O&g
zdVbh<0_z|dD_=TCB0g567=1V2reRI%tcCUOa9O*{(V7mh4Q4+<_%8oxXFpE3)l@ZR
zVU*dnp36rOXgQg~sIlxTBoZ<Gx5tZ8-A?W%>y-c|qruXHfdLWT_v?O4Zs$_y9te2c
zu*^){j*rK+Yj<AAk(ntH)=n(W^k`M8=KNlxv3Ra>655!r#&qcjP9^-uGcD}z=^*SG
zXy92Pxmz%yb6{2nr|NOZVM!xt&$lbp*O5)^a#s;&TaqCkcNj>{XuY;iLMSCT{y)_#
zSR#9L5d0XwHLL{5_dtYh<R$0LMJB-F(2|1+{rM6=?E2JpZXY=@j!sjFj>76N&R?T-
zz81YFuIGBo@C^zI>XZTIZ&jT=v-CD19|TatTVYC#RCp7gIr*T;*&<NCps+BHVZ@C!
zqO6?JISuN$?|@maHNmyEwwiBs@rlLYhF@;9SHSQd1ZN3{!1gv;%uSamQKU+f!{V^R
z;&D6wT)T*ABsVlDfV(6(+NnR&>+8mCpOHKg>gosWoC*3V{;iuF=hoHxClrG8AP~*D
zJ&SV%=(E_<-{8h6+ZZCA(u8>^$5g10^=ffUF_@F9E7jw`FCM^G?`)w9iS~kEpc@Y2
z_d*t9m;&HkAT#;w(lD}J1&YE@Y$I2I8|5O_m_-fkFYynWWUb||<_S6D-a+Gcu;W{$
zNDl>#qz%i20ir*|j7G0nQ+4RSkqqgn{;L*7DO?`$NwL>4lPm-JF{pTB)0}$_13{$!
z48%^~C;ljd95(CF?fR+x7$fj{T%g`!p9ejB;Jwylv%u=}>Wr3|F=3iiKU*k)vfy<2
z^ma2XjIeW7)2(Vj6AF(P(MT?f>@0@)(Qa>ap^Piri6;!c9=JAVD<r863Gas3)p@nc
zK=-yc`u2%%ajMdnGNwB~-rxEB)ZT1(4R>+lqsXwnwxc*eTDaXaNR|4#j(QOG_)9?*
z7Pw9~hT6SW)cI9csLO_Y;eAG|Wtk4+`(v^?6Bk~L7rOpYN3S|7FV@qfqv0}2Akq={
z&sK)+kUYDq9-nNrIPW1~g1C2eWv8ot3Igk)pr=LRg;WGRuJ#eExWD=&Ne%}ojzj8x
z_h8Z#HIXiUFVmFi3yv#<y?Ano@%QX_jX$`KX^zbLJzvnG#=gA0U3H5uRqMp3q(Iax
zRX7gfuvrFCtCZ^>O=g*|Hd2{Rq=RKls1oalLWB80rs5b*AYA3?Wbvsp?HRDv;71-d
z3j}{`eo++=K<kPjxzTTKGGA|@0*A)|zk0NIUUa9kwbFrmuxo)yD3R{H7Kg}pTcbgm
zJLZ=5Hl@z?uB51>Cx{Y5+5bt``x8S2=ds7^YzxprQKJ92^=dc;p$D>Q9hLe3GrLsT
zKTfsB^bkzp;L}f<G+6%@D)T)H=VpKU?dJTB<;LRCvXK!zkq7f1<;1dw;gBLt^7xJZ
zrvxv2jdaSNXqFbG64>$s(M)DNZFm~>-<B%po1I$G67(aD=v<=_8@6iwgxt9Bm3rN}
zI@cPjqFKGU1j*Pob(AbPI1K_r$ub1Fr)n&W4!uLmD)K)+&dkDoeyTcOEuy)>W_>C7
z%{_h_eDkt%$GL+<@dZ8<#x@oMBu6|GaT(w^qHX6f&fV!=OT-X!xMm<*=`XpveCPLy
z9-MTRs}rb6IV=F(%xS7e2w5}cj}ub7=elQRzEF>Kx?mN6q{LCG{Rl%D`R^o{4oNTi
zT^D#}-wG)GT@MTl%uKNi4w~^;B$r9oa||BOJXp3PYBD~bCm|OXR#{n@rTKtF0(qX_
z=O41$Au<`eptqEoYrPas*lr9#DP+yY%P4$~wA!=p_`6?i*YC&GsB>dvt2;i9<pBsO
z9A6Svpc^26O^}la`G0{GL$SX7D&s+9YD}PT+f>*)tRcaODetk39*H(g(_@f=QOCqo
zJFu+Jd@Q1+OPEKddNmH{CEzeTWC5)u?8Gqjy9ihqi2FNBA9v)P=(FR*4uu%5xTo*@
z{!}Jn`{A|%Dvc#S2E%bQl~Z%s^U{wXunjzCNkOm`w##avJUE@rs$BaPjYhTf%byIp
zE(N#iOdhvt=>5n!EV^rJKLoX<>HxFD?hu!&8o=0zo8kQF7x0IZh+esvzSok~-N_l0
zy4xHLbzZ-(ZH<@V47lK|)^P!`DHGy{85K7-M*;<|d&QK?*W`z$bVKQETH7o*h^T^X
zVLK+1&|m$x>y%>S+_!z3Q9{Hv9JHk2!TDYxRjc(vgHb+1-2C`|wmgei54S+@iOUYG
z%60pf*b9u;=DNBRKpv7r1C1x7nO2!^TbhIzX9BO_+zF7QCXAOOf{(>nkV!<8DZ(}x
zaAw^sP3u%N%ooNNtG}t2tM$6O+RUB$f}p6cb!+wgAw!n7@1_LA6%~I;8d=QbgVop9
zE64d7j!I6S2^BRV7;HX=);hmJ-pfk$r<OD@83Bfl=UBm;77@1R7UpWLE?Dm+&!YW>
zONee(V}2~QPhb9VhV9sAS$8oLh|0_f4w~%0(e~rRZ?6z|<zoW{BQC90<x)5oIUh!i
zqz-qWW=!dA!QCLEnhANAH!=3E|El)!%>KIN%A<<!nD5bfdfnz@zE}qOXp<VjbJYUp
zgFn{S&$5*7C5*?*oc2%Go%Beb{N~;@#P`u=IBE7079A<5y(t!j`NrK*r-~_Ks&1pI
zUWI-vl1Uxfkt}R;25U-64%jJJiQUcm#L{O=<}s#Eaf}tF540?pDOHp=zI2zAjKEeA
z)oocRSD{G~pb!0?2-2qQ`v5eQA!%-frcjhrNo6ST3n#!cRCqx=WeyT~BA|DiJ&*#(
zC#9{avj#}BA+e;}vqULr9YH)%c4<@s779b<67lG6d(icun9xat_*2v$iTM|!0^YrY
zM84~e6cc@#$45-T9byiwIdf7c)7_}VBcinK9Zgjz{66qWZSWxYquGzpK!;AAuv`PV
zp9OTZvTjpHV+$((c7mi>T$3V+01Ose)`DpqDq0E|JHc9eK5&<`@Bk_5y<oJ8>C0hg
zZ8m3|Mc*6ROgp;%dYQM}NT~r(5^&-(K$*GI5=zVc@LTHLj;?pZJ(Ty7J9Aem7i5S$
z>D?}@#(j@?_w$TfQW(W&n1ZVDPbxcj<r-bSg*!TibMI|`h+2y|^6@kl2&rUR1*3%S
zyGb5u%oIT{3!p254AL^E8%7d}u(RD8I6T7jH5BO6Xu5B}?;jkNx`e_X<bMCQ=a@Bq
zM?cI{IqC$12O08Si?JWUogdxt^;twd+ly6CCky9#IUWOQkgQw0kt$iHN%Hv`kbO!j
zEEDZT>@j?I>|4f3WzQ3zg0W&ZX@Ht#!1#|*jz+QnM5JCoW*Xa$RB-8o-P`gFGa8-K
zt+J1#p=tL|U2K7#5(jvUW<aq^hx=jpN$UMG?R;k!4>zk_gf5>K;UZy;NffI)dZxl>
zyR=fgFh0Fz<Btu0rOo@JHM?%W1jkn8teWT3Wi-%)M#~+`c383UrN3>vFi&EKva9q(
zsi?2No=nNOzTD^M)U>z7X8;NcDJf@4C2Wj4O5}5_fywX@gK-G3JABAcXRs#jUh5}^
zl-eDfsn?wEvPGfr(t~TvaT)!#sskRl8TR}vX@<_2(vQ{50P47+MQ<1C2kej)CS2&P
zxE=>rexL2wvD%xY$HshnM_<z-46BrJE^4~r@wi<@*1%KxF6?V5{?U+MiIlQ^@EM@9
z_+cgdpxX5&di;D{2+KxP%#}Z}jjKHfXiQDEdpAGoOiu2e?JoY9UtdT)9~F~K2YXLr
zMNj8UoN=>VJb}H><UyLq(_i(ZB_tFS2Lyaop;ywHbYZ4U8LA=A$?4_%tD1s|QGc3N
z2B4RzeZS+{fm{SQNzFMZjeQ#+FEQxt|2@<2@o@a;3~o8!yc_5edc8h(lFD-dRhiX|
zUS-z_IyU=>@L3l+X(_LJ8OdGt?ydlIGm#Wt-jOg|B-1A$GbSKQHp;klAINd64-wBr
zZ82$8nd}mKv9)be)SG&aoC$MT`c0vGQ5XpqVNuZ|>bF*`-a`L#0G+!a!F=pR0vxEe
zUGjgxAtMJ&T_~sFfr*M<zrNd}kF+<1BHp(exVaB_Ld2lI|IvSU7WqC&3iq!Am-i79
z$^EbLA#cDB<FE?j2>+aV8i8GoDk96bVh;7TFc(^-8z&NoOcnmy8I}2MbT^|(L~Wg`
zYC_itfaWBYb5Hd<;^GA)A?ruP4-3vvZ5$S@Z~H!2Ko9so3)F1Bo$J{+MF|eZJ#QLO
z=$A|^!es>t6%xn`ELPkU5{L%@_`Vqm=s&(Bbu_k#sO~Hlo?PbKO4eV8HB54PpnK@3
z6W`PHyBlij<OYvr_LVUsJ`N5{BmkL;=x<FT_T%Jq>Zw^DtFz<({w5}VZQ$kb!fIr%
z@kMIOvjBBpw_Qo1i2$I&;^%ai4o8AVY+dTnj~x+uGWDhj5X>aYQj?13zT3dbcqcJz
zh|Wjj+iC>K>T2k^6DFBmnK-Ue2rDC<$>|<EGlgcn+Q__gNEB7kG;Gybv?iJ8%{=*c
zv>Xh)3@ah~^7n1A*2#9cDWhq)Vq316H&}M<tJd?KNYB>f50UAqouJyaE8+=cqp&BM
z#P9vee~Zsw!xgZ7Y4GWL1SGDjcD+S5lV%xz{#p)Q{R5kwVPum?yl(2wFHLJsCP0%v
zb#gLn2_R704_ok_x6^fE5|zr2?J$mpY}L705~M}nl4bMqet?p!4zty&Y()thBJ>lN
z0K{^%k<9#DWnGmmROhnD2ryUt7{}$gtydb-epi<yB9JRnQ8sw)>2r}(jqpuQlD*_)
z_JS@_iLVMFu)5De%#Nl0gDqC(8E;8;2#|KR(kMRZ%i$~H&QrHhvfgs+E{b=N^``Gz
z!z)>Zj$md|syAJhNQbwhFxxLS6yyuph0ClpxUWlULXfDYn<;*FeRujHz57uyceW7F
zF(}QiXD~#NM~$%-^n}WV-&$pTrcNiZ2>B^(-gf<C@$^V|T->V6Waj%#RbP!=qYD#*
zY3xGE)_~A`7SX5L#TffOQ}}4PZ(VGD?z49^zu1c(BW9e_w8gGNgkfuEIrfWcN457v
zA3*T<0bGTH(v@&&#L`hOVqIijWhzA*3DIU$<2SLi?_}r`0kWLnv!9B<tggIufe7|u
z_>lx3zDD6{___4LQW^VKOB@9??~(NSu61o*?iV-^zc1i{y0}u$9*S283;Knktpq;L
q9tk)idI&1w=UbL_`ofRw?*ff|SG*xwAfaD?mxQRSNVSlD!2bhA!Y@An

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-template-selection.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-template-selection.png
new file mode 100644
index 0000000000000000000000000000000000000000..d523a7f6b0c0ebaaf8b5c66c59144d3a955195e7
GIT binary patch
literal 122681
zcmZsCV|-rC)_0oZifyy88(WQy#<p!Xw%uHD(%81q*tTu+P4D}h^L%+f<acHE>{+vB
z&0d`UgvrZ_!NcIdfPjF&ONf701OWlv1p)ce0R{2-WJMj>{PX9FqoSA)NX0nb(PsnP
zR8U3`1f)6!_EjJ7*@m_gS9b&fL2>%~_hsFL&<zCSqd?-jpt76J=^8+9P6ZcY^TDGX
zps^a!%H5mMZRhHWYX#?H1jn}O+=Ljib$&hx8YHB-te9=HVEgVEpNK(O5pc0YFC)9!
z2?PQuOAz0siWFHG;K-TR!-zh94Eefy3f;7dW1V}4$jMIIlbOqMd1L~K%qz3BdcHq?
z=N|z_rCRhAazK3>y}7FXx|TVy1AFVRkRS1+-uPsiEnY(;k;0erq{Lv_!xI0#r^CL+
zexE0PNUGoFg_wN#mg<UOWo6bqpqS6cQO!_&wa0Xm7+C$)#k;z*ulOrlr{uJcTJ7cU
zcin^jCpS4OjQDdz29$*io{6wA21KGz35k>t3Z71{iN^L-?RZ9;qt_b)!Z7WPd75!U
ziRy6}`;WMNiC7GB^~%iin;V)aiFn4h{F69O_jbuX7k3PBHr+67HSYAr{4*d2o%@Ge
z#fu|~$>|T@gw0aott!dW(RUd&e(2smzI}#~h@^#I5f}>WCLSmns!hx@3v9yP91Pf#
z?+5ncB@7e4Mlu{#DdG@T&eH$BadEM6o41|rgnqN5rK`?x-Ptj=_HuI%^uns95Iv@M
z_O#bhtX=$JCD%1$<;7vIQ6@tmpaC)8^Dc*_+mmh38Xv{4kDX8Kj#&&zuJ19eJ1^G5
z;fBjiA^CQrvQ8g!pw2JxJ8g2*$ADQ%Dm7k_Ao#;A*FR(9v5hiGvKn%oHcAZVCn9Nd
z9K|KZeT+~}VAKR6VM-H^gYR|Io?yQd-)${RGGzr=vo;RlNAF;_Qoj3^TPq7(7U6mj
zYppNJepU>RecLO8ZM<l4Vj*#~Tt{-~j;Xmp=fu7s4!Iu(p%>PDRy-Z4+*S(dIws*d
zIRdE+=~1j=Eemil>8@0%)c*Dqp7LF-UK?ww!EX_kI1ot)ig@=Xjq!z$GHTy-6r19o
zCxKpQ<PiX#tc<_ifk@Y6P}x6$|NI}zAa-T*<*B)JDs(|}k8R+Pj{V<vgx1rx@g0YJ
z(_cYwA9#{9KwEn-xFCdPVY=*oNRs|bwT)G$cSI9%SCE)|^?t$N6_k^xkpZDVKLIUr
z1wC&1?^HriPoXVNNAahXGU;p_E~lxh3kTIEV>r!6#t|5F@#*VppX1-ivFv?azKk9>
z!rr{=Ll-+34rK1hH!UQ3#ENKb_@hI<?XqnS&$~Ba&^LC4+V3QjULTW}aXiV(dgAlv
zPpZVH^C#Oyo=yQWmV&L;ash1{@_$CdE0Ppm3%4dm&Mpj`OHZ*}uh%TA-QDasRq&wW
zSNLL=aOpJaL_=K4nXGrnIInhYG}mB~1~L*?z7Dd>iXBAbPqi3JtseZa=@7a{<GQ-g
zB_$7Kb?hjQX{~Huez6hzD@iYoh<<-EspPiXo$f1t0PJoDAEFOxEVmp%Gu_l`vm-Jl
zCPia=Ya`qc=@t?<Ec$zRSL)oEp2uQJ!H*z?AF%RsaUO96l$(Ch89qrXKdHc;^%i?Z
z6h{(xQ>#xf@Xnkki`Gr1qwOB-64Lom64(&{yS<7H#0&2?h~%d7*)Pv}%{wFHTJxLJ
z4gC5Hjh(O*jmmbj?MlT&Qw%o;JC#28dkqhm&gKxSGw)%(@9GigrSrM@gSBRN<+RrE
z2%0^+$?TJhtzBaZFlDH;_{;#XWQM`zJDOPGG*Af6H<991-o8$Y`u%2@+l}3wbIZ#6
zj+MB--v^=WE7lav;?mL|nXHM7mBuXCVRuFwwsa=5Ng~cYZK@4=BHh|QnAptCTMH1V
z^6iH*z?<^u!7nNDB?>srF<%qW6}oHi<@%Copcq#1ySd53tua+!qu4s%V4|d8nz*>T
zy*`Md-8XtRF~%5;roL1Yj_=<v{9>~XnkyXdoztNy1f?0M`(CP2UbUZyrZ%3zs{K0R
z*iJFF^p!10XFarBN0jK9R)fvfPbCjC;%I_Wd9nocMn8oY`BJWQ)gc`Kw$xUK#iMJ*
zUAN87)8dJZ|E@;gu(8IPGN#IW+HQ)xqFSyMWa){KZ9jwIMno270&f=WqCH45+Kq4V
z-cPaLufI^H5#*Z^*)_f6XYj%-*GNRWl7*$shqEG7@Rj(Hr$HNG;FY+1s_h4ELtXsX
zjSA`EyG@<hJl@ViMv@Y0QaK-3j(+JbTeiU-j-v1(Q=QRC^^a0}MeYPAbx=2<O=M{v
zEdOHdmQ6LJD)Y5p2m25G*2EogmqIMo2b&<MAD8G(sag~SnnG%ZyCXBn9mW8oD{12Q
zy-!BN=B>G_y=~F&-3Et>yKb3KiK62@N4)8Nz_4qraiCi-yY~GQ6lS#Ahp5gvdeg`@
z9#P>SWf0nCi_4V#+K3PRS8d(obt=5vt=1agF-p<FAQ2K<+Ym99UTu%aw`7Ljo75>+
zsJ}n%OceJJ&NRSk`*M;dT03YqVbMKY`pbC3Kr`FI3SA!W_f(33=eXxY`ezm((#NYb
z4ZR1y&IlGU&uCT=5Kszeis6~KD7ory8_!?bh5hUS>#K_`?}WazB4&H2Jfwg1rqi(^
zkjLtIwi8U1rwXXzjVIH>=_P5oHfZcDK|{8w>P!O;ho14VSA_XyF=b%*6!ELu#IcMd
zYCswJrejDk@a#etioq5H6Yk0g)mudMbv{ST1bUreM2s2Nc!v8*)rvdxxUV~j3GCw-
zXsig~=m&712tN8b>+bgA*o?ZFFUFUx4C_^2aV8w^BO|D(1>D8P7FO_NsUB4ANl~S`
z*S-g5k7-Cs+aw|gl`dI{Ff;$+f+a<iJP|YEBg-G15wwxmK7#1x%mWfMDNLeSk+LO=
zo2c)z{rP$dhl(3yAn|ust0N1<P7ldgQpuw?(+J2Mpw|tQLSspsf80OBZvI-WbIiy5
zzz{zmdACl{C94$9Lvr${{CQg6=d^W%(Ovugy;%L8?L{MsUoPU!0XE$PWdLY&L*OXf
zghyJiC!VJHn(l<HyBdA-BrEdQVo@~MtWnpQO$i-N=JZN+2E*eHdwUb$bGsy_>)f~4
zWG(-eNe`Sh&Ud>Jj{Mc4;bw^NRECaR^kercxr<J4dCIc>!jl1ImNT!9WjlHVJNdpA
z`CPs?4Q)m{B<#UUj;V3B+*#S<K{fJ9uR}J+iH*Wiw@zvBl#%dFT0)<`MxAY#<H3c&
z#3QF#olkIT@_u2?Q00NKYhKl!3z-w$S9H9zYELj9!W#5m%=gHolk=U6Bz-kjCc5`1
z@MukKg`amb^+q6)Ea#Drr$K%CIuvkRMgk!B+EWJmligT#yLc5g>QpW}F+@#IopNHL
zcf4>oELi#v-u9E=W;dq&b{Ohl&GH&M{qM*2#}dLUBSSMkHy~8eU;%F#qg5_Xwb|NS
z#hv*kXB|;doe15rx@_C`Hk_DCRzg97C)xXBE`Z6dOYo^Og`A;~C+~vQw=af;1}E2a
z2DRd6aF{D2%`K%bF+GXGiqZVvSVT16;O(`JS0z$JN>~T28hVH@GgbFxQ#T+PtRsp)
zR=#+K97L4b$yPwzTCU*J{fZWR+!0=!Y(OL@W4ERPAjtBB@PM;Bx9>R@i9FZTUs{H*
zGz~8QuE&dN#tptgm}r~p_?=K_=ZzCAc0X`<ZM80g5oxQ9?)`EbP^pzr_`LM(d8-e0
zMWNC+nL+OF-rx8<A5oO)b`p%FF!&xdTCcD*S6(c%x!)jRp#|2OjuXkPw>ccYATRpb
z!VQJUUH3f2>R@%$!DG0bL{!ux>OU3xrM^zY*x5@c%90i<cJ^#7Q)=1$38pQ(3(4ud
za_xs1n)PX#<%JH=34fF(XP&h{S9Ig(8syKB_ad?hb3B9zx@$=75z*#Dh@qu*7+(7l
z!*)LyL@8E>&xSJ6+7Qx`e><c%yG5k6T7$-lkH5w6`>UcQs#M?#ee~cMs23K6nIn4t
z?w=V(?<)c<+e$t2Fox@b`zo=#IA4S3Tk}g~aOH)X%M~*Z6|bHW`D))YWK<7TNxgG$
zo=wXq^xj{n5jsOcuD8M+VXD=3*UHivJcQiOCOxqMRs^T4p^>t*AKoKoey}ezls!l^
zWW>uC<g2{QBi34iiOS^z=*@J3$*bmD&M_g~@wGYn+f7#U`6Ic=A2@Ij99PjmR(&7l
z&N{m3-O+(yUrxQKsG8o>xroaN@?t3Y7GPy+!|d>7E=|Q{#O9W3E<fhI&;c<`m69r2
zy$<c@2iwc9ChMQM&dH>wKb7~roZe6l>(3bXM>C>GqOUc)8X_w~ee}6Ybd-Fe{`%jn
zXxRsc-y10`w(nk8QKE2%8@g7V-Y4^rfIZ0|6c`<&y$4yD-Td$D-Ud^356-(IM^G7}
zVP+WY>7!ivcHx3RL0CH4qIo(7Hn~<m(vMK}(g|!WaX+vht~&#8M+I`GL7={F&{(mE
zmzr}Z83ZwX_jm~k7ar_DtRI5XmY9rC6r#HUp2tA5r8Z7Hr<~L_9u%QPo7FXTfHS16
zV1|W=-L}=&3ZO1cbfc>XU==cC=RuSzHeJTh=;u$DG%p2KCCpt*Wf1nv5__wR#2tE0
z#Ee`j54cC@-$?wcQ!4#&Ns36m9>+0<Zj8*-h3#RWcWk-7Gl`V)*(f&aJpC=fBx2*!
zMM|aQHoUW&oA>HN=OqIfl(24(zoJ<A^~MfToWHk+$xSs#*t2!moB3#T#Tsl`Eyh>k
zu?cE(1AN$_D2W@vQgZCxVEyHkC~M?|HgwSKYzGmPHSG!bQ=G+GK`TOO=P{PF$`<QS
zh`k6;<3ps7f`u~46pCE%IdFE6kLA(QP4C3kRx`zaloDj>aQTTQ+~<k8Big@v>!>Bi
z-hstkRJL-sSz&5;TG*4$esz(v(d5xuLn*&_KyNhmPhQfRTA+YI&!o!_li{|lnc1JY
zG4l0Z+Hk~u&K;xlRi?rWa43JsR&w@K)?aB@JXe!0-=U15nM%K}U!U^Lo}LG$TAhS9
zG?xkZ4Ls&$V>;aPMJLbkG8)d)L-i=xKR50<+a+5M5+>LTCRlNk+hF|@uaaBT<FtD|
zU@*hz_DOxC)ohTqdAY@4(1|QMG=szDQInO}O(TW$y5P+!eq<As)4VzU$<w{Qqwj`d
zGSHon0|n0>U>dl8S0`2wPldF(AN<9*v!XTGHtwv)Nm(l$vhX**Zk|jpoO{)`LpH6w
zds}tl7`&$U+cj5*zthK7Vj~W1JmPiSBNk6~C}@-cH9%TZ(EB^kMVJhg30O)JASR~`
zUnjaPA_Xt=Qceird|#oE9d6i9jsUacs#w;I8Of-hbdZEP$if>-?=OE0|1SLb>Nu&4
z6$E**GHe|ttCk!4!{*(@J+V*c!V*h`uO2Aycfd8gLa6i4wob*P{FJ?aC_oWk2)adR
zsQjmq6)be+C-UDGp})h>KVcBmlRug~H5yt1>R<l<CQkk!{jr>-fePg(MC9*#!}EUz
zyH)Gb({VqO`dzetUK08_HM1a4tOpPCp5^b8^(^+!6hn^SI%hd(aTK@$(-%9h|4u7G
zP-)yx&i*fPAwHS{{}SG>|KwJ?5!EnkF#lyj(QV7*{~AR@Fn?tLMXZZZsUHOTk7z$d
zf`pqy{BOFqJEA~I74qK%Pm~x#Jty|RtsZip;)K70KUX6nUmx-hp+GM|e<FDS*?&1r
z`Tm9TKNG-sV}<_nax6n=c-eo3?M+H${AZYivQf}~`o;A4|Hq;~CDDI4fzAE-s!5WH
zjQ5DdME-sm@LISi4P~@KKTg}|D;nbux^;08GRYAEyoOHAwg1>6RqIIBp1}g>vhk~M
zDSxu#1wiAU&?bwt(8jFx$OC@oV@n@{U}tCN;Nlvlvekp`E@9fSrz8S}NuoGzFpnai
zbL@ONKl-E2VM-a1^U}*yA_>EJb%K1-j@nLc?Jrww<QEGPu@q^5ZkZz-<04M=aO3{n
zz#`<mDOX-7PhOy4N~lz&$BeOSV1ERwQlOmAaB?ez*5M;d@RG@lS#@9+bqY&<US0Ne
zR{F72fedcLMa7DS`H5%zRZG$8eQ`7-L|D@ry@C(=yFMc473?>>N5DPn!j_8`$Z52!
zSZBRoDu*Y@^>6tR@4r&Z8azBYp$vJoG`w67uX8z?bbL~Hd<JwK47=2o#6gO9*v7uN
z!6*F!y#16dk4Igfs9;LUnPe5ITYazYdm-pPMyIiRU*~;XZ;$v%q#Jp*L{JPfJ0RSg
zHPP!&l*QfTJqX$H@Mh;Sfis%b38H%Ow6m^FxZ2^2DVKZe(3uq`+1rru%eu9Z<11lB
zfY4TG|3c<4^aX{%g&jtur~XN^8k9deMTl3v-s)yl8N&Tx^==IigmR8c;Or;jDl0!u
z5)VHPd^RFt-~&E?pSqQU>gSqvZ$5XN=Em}7z)i~q!~oQGv+rt$!}*R{D7vy&&K-Z3
zPe-g9l=VG9b0Z-jI;yM8KjL#Wl&m~BBjGYu&CyvrVTNMko6F<SKNt9{xG@>-Zq=I%
zm(v`Z-1b?b3Az36c79cZ<-j2j@JFIj$n9L;C15=p5;Sj299pvjX*Muv?d;yG3W*BY
zG6a?#)-IK(-giZz=OEA7Cl)z-O&SDtVw)hT-04c&Gzu&CB70Mk-lVM>M`m28&$SmL
zQ3y1OasR4Dnu5Ul59n?YhHT}#=Lu`9hj6+p&(3ED+?&TQ7`GR}Y}U(qmu={wu?Y!=
ztv*<J+|B|k;~7_j!2u2yBo}M2Q=QJ5bw_ikr4ws{hj(L-j$`No91+oPo;l97J{;Sa
zWDjpVou!_Wl^-BZr;EtiT&{z^Ngwv;D-8{EjB;7hru{>X%z5*1qajsY@@)Cdf!eLN
zUHh1W*bd0d&(2~i2xpU)L&|ua58~%tsXL!_4cj`~6@;~q)Idmb&Np~Bdpg|FKm5pg
z$Sc1C?W41RMnH@*APZLQ!-nwXUB=;38FsMrGQIOR{_e<)<vig9pC;tAsydHR!Zr9C
zgmtmYIp3*Lcd1)EE(nGLdntwLivn#c-rJOU;f2gamr*(C5GJSuj~GLE^3jhp=aWT<
z&IwLxXT$OFcfyti^N<GNknO;a(ky%M%y-;8m(}lm8E=QP?KBz)sR10#D`)NLlO5Wg
zPUo|zgB33$#nQVXb(U|;Hq`{)F6AP5_rhD~@7Iz#{AGxsbQpN4>}YGP^@CjsD>(=3
z$QIm-mOItPuZ(pzOJFx_8%ZJJP96ic*RP1Z#Uap+iEx^<`;o_fL1M30m)mT&R#PbL
zK2P{t4hP`to^09Ltu9s{r$MMXUp}{~Ao%S@4^ac**Uv!-f^e<1Z?N7^_EW7CY+BIY
z`{s<z_>4$MGHG^f`&Os48DGq*R{z?^HbR)8PHJ<74i-C~QSn#Lt1#d_&)d<Gcm^9c
zIex2O$QQrGdsQ*FUE64^^{b`%ME@2kW-fsrO*k&ASN&jFnyKqK5DpD#^e#IP3$g*P
zcMv<H0U(b$?cq86KL%3wOp(Yj7D5Ly(%HB6_5z^19c*zR4CPPg7uyaf&)3^SR&)xd
z%1S6SVixIK<q)#EDNi@*F+E)`x^v1$rm9?2XMZ_>jMdzncVjJ<&@`MT4Y;2SNU#|1
zSaCZbUJT_9$%rRae0^W_2E0EIZeE{rnkgAG;*z3zq3z-0O&QK`@?1U)ra7a=X{VrK
z8uSzEUi@IV2jB~;i;3OF54wAtWewS+z^3$djRmir>}UIq;1n$yP@V@v7_2k!=a|I!
z6)9Iys$^acF11I<Q;Hz3q8K`$Hqfg_@>xq|D~2F9y>WoA97Kv(EG#1luLqu*lQHzZ
zLV+!MEVf)U)e%$>iscP2O}ekz3s7vXds9_;-EPv`c(`|eAZO(i9wrL<5e``Ooq_nS
za&}<z8_7fgQiS?_bkPVg0=vX{TQ{JLSI!}9YH)Eg<vJYf0K4TgC^|mxm(9*_NwB6O
zFU=GMez|Q`9&5@@#XsQgM5X(+*$D0TF;z3+5id3{Rn3hq!5Ti?x({@qtlC0DHv?Ld
zU<_X8m7p$pgZX4&4W6q9r}chAnx)A4QTtjY?SCwaDi57T_p9pKw^AKeyI+yqS}CE;
zwL}hN#ELC)8M3Ud;Sv#_>daQcT`yRJ*>-|7M21`m`_Ue@2~aaIR9f3R!@dt*PDBPl
zp<mERA8M?B5lN5i0k~+bwt8XnTKpJ5{&2Gb-qXx`kgWr8E~?W%WBwjKDG$!SUe{gj
zwP5@(l#!T&Bh@GC5EBcFvTtAj##Y$(B2b<|Sdw4@%ADsLj0i3(DjV=Rt~D5X4xiXb
z%}K%Lz(3G~;GT9Y9o|b={NOhdc@`^l&rGk7if29Jhfv!pp{sy6yqNwIemhc418#b-
zWNHn+z&SZowci7P_r=r7fc499vf?%kc93Vs7k?R>o#^Na@}gR0WTD-AOy0Gd^d_x)
zSy}&p_IAAsGm0uCZORq<-+CA?n>)9d=_q&vKh)(-OX<JY?w4nT!<3AU1!5H^98P%`
ze^m2R2IcZ%hK)gsCc2`)u&UEGwlAkOmoIvuW4`X*gXd9G2N|?y68gAdi{;qeBpEn{
zOe6SvMt|||6tqH*mM){C-<YnA$q&3l^@p|maM#7N3`0FO35c!#gGMZQObzAw05x9b
zSvlvrG~7v<Z#OrzGD1?Nr+O^bVCx1DJX23U`yzeI#)j{yAH}dTUXvjl0sBjlcL_(j
z&QqGKn@%a_U^;$zwV^3CXSLD+H$4b8qVI{Y^{fL(0;OZ=QBzmflT%nmW|Xnmep0ui
zIH-D!S##_pv{7%>Y}AmjvsfkD6A9M1hbD-n(k*Cb!>Dex&Q}zgO|ue0=br2Pp(-dI
zSKk=hlqjJl9E6ibylcj(w93x0a)$4ZpWfM>4hDWQ*4gil|8W7<TuP*++5PZz+w(_!
z-oYUfM8;-|UYC<Xw0hsG2dtE6_19eB-3}2g*WGu#;0Tx|hH=$SAks7|kc#YEx`zp-
zyj#(#=wEx5r7$yp<reBCbIL=bchF10;cbQu@w$p`(-AV+=0)$6;f@~46-{a{FdCI~
zI8)2r;(QYQ9x%9luEg8ceo>V(XE2{7TI%-^hJU$G*s~`?I#sL5K5r`rN6-K>6&g@E
z0Y<CSib@r6-;<4#mJiJwja}mhU<r+42UQ`}$!abOGQF3U=i%`~pZUFAN!+P-Ma8cc
z85infECH4|lL<&MG(f^6jCoY!%^hdx>E8pJblJzAkBUhUQAdn1Y~~p!qj+25$m`R(
zv~r*B#;HPH^BC{zT*%)>Ft0T>`S372v&TK{naK6c%Cu5%&6)Vw!LeuB*UOE$QH58z
z9dt+W$RWqiKMq0)dai}^Ql%a_bZrQ4G#^$z6x#>|lt-zTDojEF-VhZ+FycHp(CF2I
z7T4~}(WYnRebX?i>-}@1surO!T#x=35k$Q^lnkx%k*7vp8M0>zs>k%5BsdD}ibre}
z#@k9LE>XNp+Z*x7Ss!b;vyr2+{rPsV#;`lo%MDrr=8lJA-N>)s=%=6!e~lq}wq+<W
zeC;19fsT3MSbX9|JKESYwKlsrgrsBiB(9EdDg={K^Z~c4=BS~8<(!ewmIB8SDuH4l
z`p~dFrAEECUoYa7-u}cA`@a2GVxgD5cds`JzyGL!Ks!%UI;e^%A+nC^-VDT@;i|oE
zfP<ZwCbfbFEhCzE>N2urdJVhOW3JQxpw_qjraxcuHYD%P*pehw1~WjW#8$2LBkKz6
z((L8C7OLa4@Z~{?-tA*EzU|+1fe#9>t4kULV_fRecd4Ie|EPiWuF61~ER7FQDb-C2
z2X?O8>R-BGySYDx+hn&7u{x3@cy)SDyPjkbCSP;7CD8>2MT>UV;s(87yKeNR)0>9+
zAYZ4&X;h7R$w3cMQSnE$fbz1fpB?6VVM&F&QH38rW<}2cX`%fHgEB2xwlpPTEG>rk
zunbV?kIf@zCG7iBOG156o+G*{CG$d$F088I%oKCe4k393A}VgtWmQJ%yCp7gnUz2$
zd>7Q$uYUfrmp0QA)Q9_e@qoNSt9?BAj+{QL6I^LNzDR|tylH%0ebM`|il3NIXCi7Q
zz8tOOEmrh6r24b0bfZRRvbZ>#nN-rCu4kP7_2_u>?dx=p3@H)GuMHb<O`)7^1`LQC
z8Gva~?R@`kC+fU#Q<HxG17AP<*RRQS)xq5>XfcN&u6BFFtoAyUIvqa+3@v7@fGL1$
z2VVwvAK}4)ny1NpBgZ6VlU?Hv(eE|sEcU%HjI~{N^*Z%nOID0z>Rzyw;9C8{YlW8$
zeWb@Zi1ZX`A4HBCvo`S|8@L_uW6!V8(%ti>%2sd&hKpm8-$r_L=ip-uZn8#U>!>3D
zF;O1*4pMFA;?%Bh2ty@af#rj}`W<zEMgSt5m8Sf;<UhfWkHlwqZ%KlsCr$1_n?MQ~
zk!+AXlq@yc{ciYS59IQOFde_#Fb8ruL)^T~86ZasMh2B(5E-7g(PI4x(1wiJu3IGh
z$mlszDx56v;4^Z$>+0<iR$RKlESlpf)E>K8(LFj2->7~Kg?w+v3|?`q*q+`)ZK|r`
zO^4*Qstg^}5wT?<_MW%8T)%`&#+Ql8=*Y1Gs@h#m+XFQxMe!(N@XKlI@E;E>z^l@u
zUfx}+?2S}UKTgE7eqaiivt=eT-*5F5&s^7Jb{8iUR@sl6HAyD8vlqkog=kotkTZ{~
zld56XVp(;b-oaMx-ktKIMzu0w7>)F0DXR4o*Wcr;s&m3v${F`$zT{kXkd=qbIBI~9
zo4;Hi)49{P1lv-`CJ~U;bD^CxAr8s`J=iJ><udv@#%Q+wxc+L4WfNv2dPi8KlSg6i
zl8QYT8l5+|hJF2(go4vhKKpCoOz;~<KG>1GR)KJJCamtS4_@39()3qw5>83y={xM8
z)@smig>o@Y*vw$|t~zdiZd&SSu``xx+Nv@Z!&xoy<tKab`4AEK9=4fG*=nBZ7{aUR
zzUiHQmf9J;d9E9>$RQp-)pRHX2^{xRQ_*KQXQ`A46Ba!GK#%6NW3k*&*03Iic`cP>
zqeqOLq*#5qxD0e4-cp<G<b@dH?*)Y@PsO!lN{g*<P}-f=63Y3VmpPZ&9ib0b@r;_h
z3N<*<>)GXCi~G**+qp`IH{;RJle+_9G#VQRki^Vt$4kKrO4YOwC6_xg6iePDHJdjC
zoam)!?Hi&TACxHZ@U^p>tg>et_dZWjx~mic(rTr4SOEB<Gnu98vwI*E7>Q%2KQOhE
zt^5VILL<{0bDXeU=T&)bF<fuYQ}I!cfAp_&L$m5Yaj;Y(YBXj(l!*_t{_$Tguhr99
zqh35nkT(<R>Tb3IT4R15KXViEz@Q@?Wi(ko#GC}3<*3}A^x6C#m8kLSM<1FOW-H#u
zHth1LJ8aAZv~W?ny&lIA$XXSTuS*u?^%H3Oln3PXS{feH7jwWLc)C&Jq<moi=_Giq
z86NW#H06%E4?sO`Yt$Ewkqw<j7ib-}(oWZbQ_>YYgORJpF07!K&%GX|Mh6@r)ZJYE
z;@~JFH#u$p+TiGlC@Yi@-uYDtH7bxF8s<S#E2~w^xp&<Rx22vkL{WxI*qAFCL706+
zdn|Rio@V<LHt!743en46een-truF28j}2n)rz7&7qiXIYeO<3cpU+CNQ96dlg2Ka(
zdbiAFD$>Pg`ddDJVwC)w#I%eKouY(()KhmEd~24yx^+hSVU9FTd(q_~uYVNeXlC8~
z^R*bb>!X-6_)03CL{*M88zcr38Wsb28otvLW-RV%#RfzfD4_hAhUp(WEeoIc3}~fj
z94PrxpBZI36ped1WEJun1(7W|4mm{kn}+GZAeO~f0?p=@1}7!zJF@#KJ?j98YCn&F
zH05X|C8+_^WiEox5HVt}ZxRH9$OE({Q@w)5ZW%Lp)No)<>?)l|x&6?KFugqx;>%D9
z6)W4V4TNX2=l*l;q~$7GqH)BG&k|K+dA4XfDE6*BjY9i`;$lrcW)^i@w8TUf>i3RB
znq|j3>`1CY!Hn0Vtf*SijRK?^BcxU_F%4v@WWVH8c>B|PB5Hdc6<9Tf&?G`nvqhQy
zHB{ej^~?{AyoT(Jjl#)D%%$iBQj+1wA}mse##ea$WGGReX8woggxJbl3M6!h;y`J4
z>GLE2?5};a))Wgq#DW*wu7Pv@%?Fc$K9=_pg)>a>d~pCfpZGVpskqS4NEzDcgklVO
zYwVx|X3al4^7@nEVrmZCU#~AC&A=*Y*1_LO*)Exn7#)V?n)vF&I0$0eypfMfjA<yh
zo4thzQM*-gm3um0vwf=?q}*RC?ZZrOvPuVRp`?%Aho2Uz6xO-EAw)ZT+zp)dY@#1b
z#jeSbSX*nYbAXB!vZV|b_D@&}SHJE`T*7!qdZnk6_CHl)FVWGYv+L|?YkHEfMVp7J
z<I@cF77QNlJj8L8vS1cVx{8&y{S@y0ZI&q4V*j^b$rmY*HU5FOemC<(?Am6>f5~(U
z)0G7HDiVQ)qDw7h)Nfr`3kAa@R9G+eyG<mve=U=2aQn1*WJoQW=UdB=@MrPwXn^c{
zjlkLzF&R$;MsSF>fs3)#q_tKnI(WNEKw1AVNl1b+co&*8;=#mA_i*lzm+^3wemn+z
zY#PDVt~&!(8IBRd6Bw)$sNJmx<!~Z3LaUL@9WC-ZhsP2oPE!1t2WXj!r_tCJ^aQO$
zM?t0$Fq4di7#DUkMh8)BX}Z6wQx)y%5W{8_K6vRXk#K|1&`z2Lfjo-c1<yHeWRPTz
z=<;b$EcZ=mPxE)C7@M8&7y@Hzbnl$e>fIkZZQf7d+uApIsfD*&zTS&qS{>MaC`pTL
z*Wlg$BNPwa<$AnEt`UN3W%O>#X83F_BhVY0P)#N@ktmthHR*Zw&#$aTG+G2lz{O!^
zh}yeN_yCyzyaH<C(mTHB)yVJ7idL)JEm6JY%$UenmO}f$r#S9X<vSg>Dt4PySid=1
zBIg0Gp)Bq-N8`l=4~G*JFL)~X-)8p*&tYD>F(c~_*~-;tzdBjIc@7ziO3T@84&kGf
zs3Dl+Wp0q_k`rwXQ#}SAZ)L8d2JxKPZ5l9AC)4=_3JPCj1f}rtQlsxO>`V3pwAsC_
z8|u6gn19<7?$9z%$nw?1Dlv5y^C}%vo8f~!=MNWvnJ}PCmRZJtCh>o>+e>Cp-mXa$
zB!AlB7fR&6*YypTM3?NMCkJ_{;O|DXT0h-$kATs;*+K=)la0XZA0aIj?m@u!BV^7G
zbohj95z4E{{>2%sZyaKuP!WB8T&zSC8@Xn)f40LX$y@F8HMBXS+SoB-RYy({gj>Nl
z?o6FIuVz|5E(F}z7Q;Myc-@B0|M7QNyx#ce>cqRXRqDv-U%vNU8W8RVEYXI-n4T~{
zJ624%MILga+R#BLFn$(zc1ck_i`Tog@-2E>?*WUKmOnWCypWu!X?eYnEJKtNQTf11
z(Roww`;*+Y_rU)aJPor`xS*e;l_}MJFV|l0?+O<ygqBZ`EGZ40W%&(bCzYrO%_mkC
zhkOEOhA?y3SE^ne(2}(yd*Wf^pdx&g0N}caLH;4TpR9gXgw>7Q;B11)-<lSDGq5|y
zTl^DrZ%EYhrYyJK9$x+LTGcxSa4j!Hw*_Zmol}=aISx>76vs?142}vYUt1W^I?p_*
z-yzPtKm$Ys1Ofquh#}j)kUe(%ubs8FSGJM=miS{Q&X0pUv0S;DCuZJUkD@S&;)@ec
zWk9__t1q8NF8X-9M4mmBK&~JxzY)IA81|5V^fAczf|DnpQ<uYx|H3>TR;1oMF7mkm
zxs|L!CT7BTt(25})lztlD*FXPb^1g6q|84+^iQYULslNOYUNd`B*3x9=;^}f>|+7y
zbbfGr96`g{A?X<TbHN)~0-Y31<V`sWvYwm(#t<IC5a071(NvTqUVMF+sIE!6jzuRj
zG*=m%#1Xxa_QC)pB*GZ@gIpwR^bpv0{ZtnstOjNJp_5-Mvn={=Qv$#ybib!U{~Uug
zu!_eW-;hiqPkPt<os`{FGq|PA0ADb`?ATslA)>JTV=)0P8&9C8f~y;kyMM#UMK8Bj
zkmOQ9Og$MRPgvK4rgwGP*a~k1hVjga-Rm~$AuA}x1+>4V3cFFYX<W`+<ezj~{V%X(
zr5H{D+FC3a88L!aqX<>iN0krJ14jvnOa~s|HqQgZo|$Ok<@<tV@DcNCJwV*JrtWD+
zOiAcQv6!jzEXd1f<vc|;$knEIB+rXMgZ`Wl4xC~E{c-}~rRP?f#T;o5y8G(Adzh$!
z#I<hmG&=Ne+^N+s;a{40;2w=FL0oiT1Gw<hb%sctHXe~uvT%^759LY9ahMx723D06
zC>3b;9Ch0oYTVcDIPpBkAq_K9kn3++L+57rI&cFsHQ%nfEG8Nf5Eg8Bg1W~LqVHYA
z3z_t=G$&3ff_jMyz<LPNVrc?+T?kv~_RTzv66WW2Ub+uE*9bLj`g628&^GHqIuC7%
z)Zv;Us=d220UNJ_0ha(%Ql>X$@c9Pm2}7UVn@Qqc$CuuPlSfX5;eQUOhA=OM28vm~
zq43`K>zSwcQ(8fF=i^>Yws0CMC$v4bdK2^kn*+R&A@F$aL1^CU9}A+n@9}Q?sWc@=
zZGm5;lGg%bc<95RnOz}zh~>COi!)KYO?3s`?%~wrm!R9<J9=AS4jE@)qkKjKN}iFN
zxbi}nNZ{U50D0DpT9=X0-&NW8M_Mtyzc-1cj_y-XMI@jOgx)0MB2(CG2_&YG;cQvj
zcVDosPTG#kTneEorDz37>C3(Dn+uIZ#i;XNskyTW;e~Yh-}Dz6C^W?4`cNhkD5aZ<
zjGI;#Qz~QvTG7>>BUP5-m`Ff*5o$Km$K*0o^=L1rdLQOV%dV6*D;t{iI_yxjCo~w_
zh3VbSn!~`RL{ItlLr_)NBP;jAI~;AQ>`SuimNtP?_%|ziz1!s2Rc>kQaGa|OJnb~W
zY{Ov{BETwxUb=jSG}O{#j@*lHoqdQy_V!GN&E!aT#~!)<oZvF|B30Iy(Fm=%jFpx;
z;8}Ow<Ao+1N6M$aY2Zvj^O*FG(RZoN!l0dJdUi4W##Bk|4@Y@{&Lg37<=^xMaNdng
zc|EM%B6F-^Hhlp=r2FtlgDVx0*k7ox-oz-(a$<TvZk#BGZ6e=G&iqiYKe#Vm7Qsu5
z|2YlR^@IGP-?WVx)_r25f7i~j3e5y!!Fo^75)fT#yR(VPEM#bH=insJ_=`%ttt7C0
zp1^vzwQGG0*&QDM-Y&mSqRFK?`^N+_B$A#oWdJ(q+e-J+47#}$22V7MaA*cMb(8tz
zBP1fYmUp;aIu3k^i4a>7sNWYk`z3yqfW_CcyQBjOXbMQyd%Tt?+0u*6OC{JI1FOj*
zXEViNX!CEad2Q_g9a@1-WaAJ*$0btR;yOE+NP*ZN0E%)nAF4!{#o{Ep22*nv4SS%*
zdvMmMgskf%)zu_FTFPr4W9-<32OEDQA@0&8P90?m1Xn#o|8(=_XF+VzypA$MAz%=h
z_R{2}#9e}oUwutsU_9~!0>C2qMb_$9?R#_h`O4cCuDL+j4=}NEn4^p&TBDf3V9TjR
zhegbGL>@skHx~bdz5x|ndHPQ7>!s4E8V8*3&mud|Z+5%GSqSv<dDi+Azz#x4c+C)t
zD4gIzxvi5#f{fY~VrxnE+0soI({yB92C>cMF@f8q?GUjorY4Iy;?n6rKF7*U7iu;i
zjLFWZv-Rp!I~F_|b;fZF*mb#rjGw;NPo07Po+NuAAAb$<PJ;Oo6k*g2RB^91m&c|p
zjzfV>$?QE!#I9=7=7Xa<2Ja>b?H3rk#`QC(#iG5w;E(7}$Rc$~`PHZO!<-R-w`7El
zLzZZQq3u9B49BY8?^DLJy(@95S|_ez?gNq1ZNSDaF{a~0aInT~fSukbNDEc3zSL#)
zOp9O)-lw5#XNa6TY=V9eRTxx@&0cF<^`|>G-uXZVgG~m|+U*vXnpqXS_)MjvtihkY
z^g3E}7;KgoMc2vFiP2D|!iN~CQtq#I93+8dStbI_&J6(4Lev2r(3dRG2XY&p6qw5)
z$k`A&sPnfkVDjx;y6PI-87qbLfjEj#Y4Lpn+h{2M+7a+<Q4lU%fYEF2ME^N|yFB2|
z$bMJ~Df{7G^fz2wt&wC)@lu}Dl?o!+80sLBGVkT8>BmwBi_vsn(3{tI-?IccU5&x`
z8uimlxe+JIv?&Cg7#XN-IqG-I#p|}VyMN#Xd`!5opzY^;{T;Y+R}(>ui^h_W88L+W
z9zpthaYT4f;bO!XM!X1N{m2)EYTlf9SG0H$>}q-_c|u?8|FDgyF=AO(4foT5_kA^w
zj%F7=iACwp=wZ5BHH2Gx#<D&(4knGDHr$Qd9gQOxUP0`8Qn%+oYJJVDO#f;NK_}$D
z)aK6Hzg()n`E+1!f2HQM37vfQAgK3Cd1zQ@wPXn(y^0^Wg!>xX?&e`6a|U%VWLMTc
z^t-j2(2q8BJoyg*lb*LPnnoW=|BI)8SsKuOYg_o$lMZxzX<E?z<jcN$?Gq<jsA0_F
za+R8XY=B+B6ioZ-s4l&6#E5|#?7c3`V9y$#Ks4OYsEtHsO;?+d1@8DpbWeALAIByk
zWW+qdQc`uQ!y}W8=;0(|2xy)Qgx<tmVQMwIyjBA^waWr34o*NuBVk_e??NnP2HtBE
zxu`)M#Hzh<)W}XF(FcQy(8$`VJKNxCI#wU~;BDVR;i`8a;r<z{aG72RM!_1Rb3LMq
zTadwZ1Bi<ua*!V`m|oQm=Mh)_JQ-o`vL*UuM54b9X)Cd~d7%(hL)PV)2Y(M7;$Y*5
z`p5EQ;SE37vlHLnv*NbJA`akP3}ygtt$J8^zhd`V_F#i16Hf#tx<g@L>vE6(6;$5}
z+E8K-!4dB%^4nJoD(03h8RAc197Hj5=OS%X)<MX|Ejy7Z2E}2#`S{qcIS=0ZjWE9`
z?W~hsr|)>_g&`Pp*ZJ|Kl3_8u4J-EBugarIpv7v8kC91ZE7okbpy}-Fe6}v3-YAG4
z9AG507RnP@pt5bQ^BeXTc7arNMY>%wqe0Oy5d#Xo%rM5TdV+1BfNzUi&u@&6fnfY-
z5>%bDf1nNQV_Rw4CBu}(u?Z*kL)NekXN!8~W0+WQOjJ#cs#G_p^2`=jclTqlI0~or
zM^7y;i%!G*U0{?)6F|o$VQnBa<46nOTbDdsoMyYU3yn|ukxPoyPVb|{25xOA(^Mj0
zU4@X*Y=wWpQOUD88_Y57$LcAo;RS!N$|7=`iYZU@1?UsK+OtFhuw&^nXomA=s@+2a
z{OCgFyAiNiOinw|0lbNnz%{^cGa842#zF5+`PI-W!IU2C`r754<#Kr*#^ufPbAK3v
z*tc&w>mFNAl;BmHnp#q?gf4_VS*S)*#ey-4HavIy#-q1)XtBNsXt95xH@i3Aat0qQ
z4=*((5~UmnuX1kv5EUE~uqhx+Qj~^5aJUV@KGTQ4@%hue8Ka@NLgIU9H-~8!G3ov7
zD0O38j9=%8z`u~0A$GAZp4_Z_9$^+ipt3G#d_K~knuW?nd(3X>Bs3<q*q?}X|8HrH
zWzbIq<}5f&3ta|Jv52&&*Vdaqnyz9-(xl0+nur41a0w#nZ8r!k?iL=ZvzeGbaz0T`
zZs|XHXldaz8*M~R=F9aNd2|=3h&ONv-0=9ku#RR5#VWL#DJdy7cp)JnrPJBq!64v%
zPKhsA3atY^G@gf(Xr^k6rI-j_mLt=e{XnlLwyeRfNyVbG&1Zf)zz}aV8V*Ji8xBNX
z-rgoEK|OVhr80s21%9u5BBc!0TAYiN3ddD(W0jslE1`IUzkWsTjN9WE3Jt744s7eJ
ze0tov5&a)*DANCbs3bHUW-`FP$xWaaG3ZOo|9Xi2KX9RloX=e9Us31&4?`sNlzJCi
zI%m<;)YP@Ut|R+T|L4h7ve1(~sKdL&V`wN8i`gVdI=d|fzf{T0(dO|n3<U)RC0bi>
zzp6sl`XBUh7o2A8+-le0(u8(3cG7<-Z2U$XB|h+DLu^7M<cs`fJRIuV>T(v&WH_+-
z{`PV>l?OQxh5Jypky5RvMXGmoX@b>szg(LQgxpC{y%iZzD0PDc?ERCr?WW(Yf8k`v
zjsIpWDV@oK9fiY+;y9E-uN`hNSE4_iFJU%chOJVm6UAydKP3D$0C0p;0CK_XX?H4%
z<%E-zTBdk%xqFX%%IgXV!-h{VLX&90w2<*JI~<6V0bgl+Mol(*S}9uyxX70;>3gr!
zU@KdtC{!kk6dnoAVa)oQI0kx|U#O43Fyx}(;?h8D^FX%gb^CL;p5wK(w=>yo3c%sA
z!TI?37<6istBi`MQtPr(VJM%R>J`p~3U)ls6y>1L%o@1X&l6a9Ge+ZcMv{uf5cg&K
z1;~P-TQ&KZFbLgQJZA9wc~dY5+h&1sS$;xsHX>$H-m;Cl*%908@9(PyczXVTLE2qD
zVuKIX>`h9tgZv|!KriTvy8>BmZf>n6yDxL4s)Ofity2Y3n4`Z~VR=38`x2>?CUZq#
z-8?)Dp04+{r80RKvzQEnv0^(*XgMdQ8v4Yxu4W3M;Ne9M6DUH%8-@CV6+Sn_*OkH|
zu_AO}Of%QGcA!YUh3)=PbF*w}$G3br+bfE2szgMp&PEM2gF8y}VZD5+%ovxYNF9v%
zVI!c_5+-ncF_4_KG}nA2*=(u~*<#irFhW0ivV^MeU!0s5_OPpWal(O17MHUm+<-f_
zy$)W%=U#4)097lrkYB=LVlYRdv-rGmLJ;tUGI`uDJ3rnK|7u)qZSCSjgp;gI6K^N#
zwDJA-4zH(JUPle5j}^=cSr@yyh~Cln0K2tXTrbi*WbCZ~wj+9j%dY0oMn{O4LRgm5
z2xh^pOPw`Lv4-*Q@AHmG1PppIzH-v3jqvvfT}2fE@(x2Lso*Yz227g^JrK79wNU=i
z!$to<2xA$9-4-km=`dhn&?tXOCQ<7jjAu0Yym2kpnFpk%Vl~Hn|GadC;yAWYp&jx0
zZAS>U{V|Gf<(ojm4O?Bq?D;sS(`xrXZ#;iCv^lT}oz~3pIu7xDGq^gb;uEJh)R#Bv
z$<~D=*<SC2f>Y`?0Z^-yK$s@|YzvYUh@*$JNEwAp>JGilbl=KW29rZHOpv3+fUAIy
z(twYeM;2z&6_LLLQ!7`t`WG?iMI7!*D{ND{w7I$Yvs|+=+?PTYNa-rEULcjyhspCP
z<}i=D<8D31A?-|4LxuVQGS*KO{ds#dLu&YY)XsIj#{xBblXDqHpg>WmTWYC_h0Jn)
z&l)_42w?)uJ7NxI9-6l2^WuTY8OCCB!B1XX0&*}bgd;|efp4_hZBVfL6aDdIQq?BX
z++Ag+h9v*$@y!ky>v}U>a}uDfjn+*|3kW3nlSG4QG7hA|kdp|9+%l<EhuhZ`)B94_
zKk9=KvDlgPFaheEE`~8HUf7#&&y1XF7t(48hasJXFc`@i$5ap%rAi>^;Kpdf3WhzL
z7r#RagqzLN9vnAlei%r)79{KsR#oKq7kJqLM-bNGC@_At`P`4m!fZSo*x~(>YrWFo
z5dJmC1zm@aT%DGePc#OL7Z#Yncw~r#iW-5H02@4>8R(>HLX-|$8AJyETlY_NaV=!e
z6jlHwST_3~h2}YMVlEsErc%7BRJc%s9gu0g<(7@D_9|RuE<id3fX6|(t7YaPTjlDP
z)~6l$>*ZcQMc}T;0I|qpntt%>CWR}(!<c9sn(eS$(&^n0@VlNq(5zi~;L{NHFOT&M
zPg(0nzy~O;|K@Pn<9OF$!MxdL7?^?;o0^=72AsHHb$a1wU`z|x>UFygE2^~^k=Jmj
z>oFe2RVZ`QezcSI^a{lls1f4vIlxI_jP-tAN2oU0K^Q&M1!K!o0FwV}tFv$?c6}~>
z0x@YM!aEoL1lSU!QuLqD_-f1BG{8`*<?vA-*oXWf*>hT<70n;lguff!(;qWQl@>jm
z-W8cKp_^<|N8Obu_v<$DN2gXcn}lvwqUt}waXPwGI-|CmSJOA{<@`Mo!i9bvYCJ3h
zK?<DN743y6pZs*0vqc&(_ted+|HZ@(c>;D{$%YO3!^3{yX7c+Im`-H&*BFmvFP!wJ
zd~=@*g+7}3E#vuVwV_98H)Wv)P%pDr%_QN@-Sx%?Cw%u!-(YAb=lN-JLAzlBrfzA6
z_V=a}q5~k0cn*Luq~^Z=F`LL2>B8fVZBG=3j{BowR!cQugrJh?Y-hDKd#`|rz}wkk
zrOvA$*}t~`6Z|VhTk)R#ZMSVvvL|MtBYyM8(Z6J3587S-gX@KQ5+J-*r1)2!yTS_p
zh5KTP{LgPA{m)ZVf&M4tA^rpt%Om`E?a}{<bN*tF_x=f<KI32G|08wtC2Ra&<nQMd
z+#p4X|4|Ot%ftIGP#MqTKM3Sl2J!6wJ;e(0ACC3ikY;Lf-@~KVZV80N9N+43w*~)x
zyccbYvEz#ML(;A1k8BvN^GB@GM%2;=<*@Mrk?!D;!|(~OyB&Vvgw}VxCIv|(=_c<x
z+VRZxXuCWa=^AVjySHs~yjCAwD_`9c-(paiWuC_alQ!UWn%d5m^Bu}~7Iy^XlnQ5@
z{t<iS)tM7QM-Bw%6<v_FVAAWkT^YNiEYU?T+Ez^M!T8qj*~=?8!o(?#D!fayO{(`g
zxSIb|ei1@isZ$^7{4*6)H8F?pJI}awv!7Z7aA?s0bg_DLnn7DQ(CZUnQ*rUjUrT*j
zpmZvGFA~<_xRkfUHwqu}z<%o;l~V*|dn6_RwrLafYvE^of;U1ap#c2;*(ZqRFe0M=
z4wv2T{Zt+Ja4jT1eKT=@<^(5F(?X)uitW%d=<4P{bGSOKH|tmEAW34WOvF9Tuz79l
zW8Fq{9^eYL?ydWh_?v|WB&ANhdRbFee0%vCVba1GtKq5wc<qwwf3b<DIbYlOx{D@Z
zM8u7-bmej%%#dGty0Y@3YIvw<(${CW<p3iQot=$$eesKP6TAeICIE#@GFy46hEk~o
z{CamHAllKjoA%+xLjUkpi5IUOEi8+Ic3{`<ZtvFBD7tqI5@Yo`MK;_|Y(K}N-XgW`
z!*B6DH_x#p+p9VLkohBUkv=f%`&_QELW7n5C_ixqBUto=@K*eug5@rGU#+o~QXY%s
zT_&lECuUsCdH3}r0!fsFaODKiEwx1oo!_+aaPCnoyaS0Q`=CjVc-%M2A1!dtua26s
z-coE}=W8&+uWw=wpzegFkaMC--;CwU^t`p;5>V3)2OsnzV}#7wK;_jgHyfZ4FCaFR
zf|#!k_H&$$rYV)mkjT$u+T7l`Ygi?d435Z#4L88PKxE;YDb}-4zqP5I@4$LEfE1h{
z_OFHdr?y(rJ)=d4bVkEZ>CNIahosP9KZ0>1EMBEof|2a9U_|E`BlzGY3KhF3?bbD7
zVz}WZ|KtvJzmYg^MR_wL)L5YX*%K6=%hF1aNdE&(y(V!WM@(f^iy3rpI9c#x?_jrs
zpUINe=0%KDzJuNi#$N7CFWkdltePPtRSrSUWYC=ojX?+0csL35p?lTcG501_#(^;F
zCoy=QC#z_^4l2?M21WEBq7CtWH9tv0^AUR>WS12iF~{+m4Hu%cWxzKp^^yJ3=o=;n
z5^%Uut-uUh$sDVCf>6o$FPCfvnS4K~NT6bNIw!~0d?5h48>|J2@a5sGi*w(z`yniE
zjb|O<dcr&Irre+0iwjk!Ah)mSz~mbs2jI>l_gN!`@Ykb+iv5G%=8B#oL6Wl_Ih-CD
zqxq!Y`P!s2$mMH0Jts2JSF&`t!vc{UKd`Avi53T?URRz6f7#i|_<@Q@=Bk}X8Z5Wk
z)h$%}{*b3qi@oE#I_ser)6(Jla<Cg2#K|w`hOueBcXv0xs-<T-_-^sIOnM>G6hqc}
zAwHI@spfi`IXhZ3>&0N=o8+adAe3k9%Yx%oqAgY|xf<;YpFz&rx6#!ED9kqrQUPLS
zBtXJo(u9#@9u?d&4A~hnJUV8S<dNrUu9y_5F#%L67yW!6BnB-VW;HrUuy=IebZN^k
z(rZI@QWyKo3hw?NQEwg9#uu%Be<@bn-AbXj7l%TDB83)rcXxMpr?@*5Cpg8eI1~>K
z!HWi$0Ke(I_g(KFvsTt36Ec%C=j{EQ{e1QdTgi_0)kDH@T^6N;^-HK5GK|x-kP0Da
zed0l1Y!hPci9GyH@-c@&tASQ{u6^t|z!>H`^lH5U6~4pFp%`TRT;uH}D#PE+MMMD?
zvWz}3;3h*>H{1ZybAp{xz3(9t`fzIxjvhG18aQGl)cKHS3O2lj<R37o&N>yUcj-iy
ztB((p`9ga(@1nme4VxQA)q&q0HnG?zW^XF@d#6ps?E>X|51Rt+zA{3A;^@xXIml#7
zGLq8juP}OJuMjA;`L$If3ue6ISPIUm|A7Dkr)749@Y$8nmE6az0=XE*SN-88d!DTm
z2+~rDl~TRp$7--gY69E_Gct8eHjVaoQQ8&<axJ{uv%Cx!rZ?6?Joy;z+iqWCr!nXM
zf|O4z0(y)c=S%tnOVfvL5i-#<r0D2-n~o7Y#eQ4~@iqqNB}M1<PMr&~-nzIRc;D8M
zss$MGq3nC+@HdcbV3oj{1N>_dm+&cxxokcNHjl)pGNKtnD&>s%fa+F*MCM!?-Aj$(
zvT<Kj+ri5)q5FFgSLQ5&S~hu^+zMR(OnTPo3X(X(^TSZes#4wKIEifPFcYM2YxH}U
z?575Vm{!ilLp&cLl;mP{;mzBSU4(L1E5)w!l=OV5`cX#DGGWmqEqmj|MV-%sQr|jp
z;dA9Tj4#_Kw|vlgmYAcs*`^%bStD<0(x_ReB}D(SJ@PS*mF>k|iegHmPcJ7%>?D*e
zz0MGXt?6#3tiY>zf0w$jV9UHRxVpc0&+%d^kR6~J+A(`B8Z0NOqpdq1m$N8RPn&mi
zbr(w$p9Gx*;_J%WXJWc*$r=vpbrTJmSf&;^%Bdkpzt^f_ML1<P3w5d0ZX>-FKU40<
z-1-^vaBExr775le-T%S;n_%>kaW@|H6@%Z|@T2dW;-QTPP>0PZF+S@ds>QJCh(R-b
zE$BZJwS20?_ur*rb=ycq)u$pv0duSgJvy4;b7bt4t%2KAw4fe+zlJbl{l)1FLG0Pu
z8%AB-El3jT1L<wVb?-aO4yijSIKCFqUnP<=E6+}232{uGM5wCi_T*EsRZ;Vllov8;
zD88IdMoh}>%QOl{I4mr_dE)v(zDbJ{WYaIr4cVC88_mu{UZ22_i}P1+YEiV^d)JsH
zia@+O+-SE<kdd{6slw^og!ep7hinP%U?<wT0U;lvVx^65j;6zoEu?Yv&$D;;md`k~
zPcp~jQ#6DMRMMZ*c}301JHt1I)(xY7MSah1dB>t3jc@WiRp1v#&SEbgmD3(W?ct7P
zddeYp!ds<>(q=Ic1d>}ScIvW~$uA@)Jduq&L?F+3LK`cULzL#@!?*f~z(*zb)N*l+
zB)Bj(Ic0M8bHlyTRX>IA+@%P9ro%`8+-UQ|X6ze-UJHDSf#DOgi>WblTU)945;TUh
z-Ui3re>%?SBWCn^o674q@t_IYfGK^{#@oh_eFFT;?n1@NAwPw55NU(pRSHAsFtq3M
zee?REt_YTL!}IShRjr8!4W{>AE@m41pqp8*30qf|<hav>_CL;#=AcNOi$bf5Z+n5-
zugT6USn@WbixNn&8!kj2b<}&kx{oC(#iH@$Wm3CoC?)kI<9;A6Lk|Yic(DHRQ3fAV
zE2nw(gSNYTI4e`+qMDAzOdym;-Ve$rWcy)Btp1+`ky}m#8cYs5X`Ca7Mh2j;JPGFC
z+nhG~TsBO$CxQ&Q>R{C&xx_$~kHbaA;XpCKKEncK_7rXHbg>Ox!DlIY{sWenun4^9
z?5{Kd-bV(m49PKiG|O&H-w;{ASH94Ub3&a~K%$e9VIfj4!XNBx8Zp_5Sh|QV<+R-J
zN7wDbn9F_%Tqw>iT&+Al<ZKaL^9*2&F<OLW{>+?1!RlwtsQ3J!9(x`ICd>W<5@Xhd
zXn+sj3CBkdhtSVvvT%(chu1%OPN4OSwXX73p-c%>7U(n@8~b$Ah1B1llUVADG=g7Z
zrA1W7cKgjA-ur?XeWs^`K0hmE{1Kr+KWGKbedv(pACvcs4^!mivx)MLbx9X@goL~P
zkw)5(bTwrt!#E7((Q%*=hS2$+u8|UH7Hog4BlADuLBaZzZ8SP4CR342c~{YV`}vQ3
zN}VcM43*hXiJ9C??H|@}e^n@Q%W|Y|xy%eB69%>?JBD8P&Q?Q5?hRSM6IAEg^-i~1
zhcr2g9f6c?F{(qs0e&3r%ShEZH$-djwbaXVI6b7PN8w^&T3dYGLQ=Q6$fm3zQ)({J
zxv5Nf;|CFsW|v0SXNK2V4cK^smi5-+7W0-YsU0WkCD`T;?a?bell{F&l12pZ&PTz&
znywNoZ+brbygYbcO};@<PJ}LTLupI8n|fROluf~??V8Dr%&Odgy?=<R>wBxoCxBZ2
z^nGoU`|VH%dZ@t^o#rod!pkoXUk<X&K$m53h*$eToLji=xkhlmpqPt!?a@CkY&1P0
z*FQJJK;w7B0<-CzFNCH{P3`_5r)m~(lmd2iibfPh(rf9R>S}l)gh4cmHItln%HX-y
zQi!e%@`A*3tqD$Q1^YgG#+w8kW)7oaJz{ZRoCn&sJ3cJ~Qzlqi`9{QQ^z`1Wn-Sr~
z`^HlaW*~>rItKOXa?e^~%{mr;gBHYfi`w5=LoQ0Rx0IeE%}z3`^RIp)T+I{_h;zT*
zU2oZ{j%ZO@5DZ<o_#822xg4cwwi$|)CHzI<{5`5q0HnNw83v>c%};O0R;}DJXL|g2
z2KBXq3h{m$_IL<qVf_tJHO88KFxd<IYk4vJ#?)%KOsE-8{C2V*tG#NADduMCWd@Vg
zKQG}BlFRAv4GYX%a+Ua7J_LMqrBo!(x5josb8D*;r+d({UEa`~<QvrPpyfVamnmjT
zy2;PZ<xMCaRw=r@)LibFhF~1hi49{QZl#3cJ>oSnsbW@Ph8I8&NizO4a-Ds88}<s%
zc;WrmgUm>*n|Q92)&1;hpm^)!;X)C{J*B6suh9IV5DJM;>~CK8kQ>ueZdL2iO`E8G
z1>3CgJLJNL468#Wo(LHC#n1@u$^JWZr(g3Kt^Rm~7*8m7Q?-K%%_}i|#nkguoJ!l8
zTn%LVHQl3A=OP)xKM7hIlWlhkqkjImB=Qu{7%0*zPFlE`EG<N=5}U}l)B*ixaSzgO
zBJ+2)xZ3I=+l!tb2nVBUc0W*YM|CCmV?=K|GOW^=P`ziPd(*+DC;40$P^28*ac|+M
z0(09%aZP)>hPAX~U+>8roiU7sO+^s<)JF%Kw|mDW)bQm%n3&HC(_H=-^D39jkzE}_
zZmD*7o>vQGbIh%3C8|ZvOMNIpL>w)$9zG!Qm)pN)6@O_NRF~}Xn?Tn83t~~B1zfD?
z1@_L8!|#kD63$Wuwb*CAZ8}C2v9U?3l}6-w1qGAAdz6fx4{uYw(Lb|^FlE0HmUvlP
zyZy=Gh>mX7v2)%t{I2wziJMsiZWZ?J?Xw4ZWfKKlooX}m?mB7Y@O_O%^I}jg_g#T)
z6cX6}YOr$h7-}+TcU`H2i%iv>xP77b2$oa_6TB-tgnKy0#lmQznAAwvszXaCm{28k
zccPB;a7Dm^Cz@W4kFFt&YM+%!qS6y;{ah%#%;|I0!?1G{sF^A>Yi1^0$4FXuLR*$b
zRr3MAQPHYo*y<~l(Q-A*8#TdVqh@hqpG7L|0<~dxhWzZ@=e(WZ{J*;<0Rv9v(`Gro
zwqF*0NGg{4qqT@`_DSZW@ee>O_1b@r^glMB%0l1QrN&s(0+B@PCEK?$L+-HwZ5AnF
zntl$eJ?q6ExN_-J(v6QdiXRM67wyC1bA#NcNNA9zLM&LN66hv5y>4Bd^r{W%Y3vGX
z83yD_u+H+n$oxSh?}6h!(M5whPU|=P^(N0DzrsqiL}`7%D^H2>erK>$&eK}auy^x{
zIt<Ldbuh$las6yUYl|gs3|lGwIcttTW|}(I@bi=$yW39?6NL7;LVk{;%*W<ByBP^l
zvz6JWeCIK9QuD+jP$ftVe4#_neGDeH_f<sH!D{ijx7kr@;c|Xo!$nxg%X+Wf-E4w#
zHYQN8D@m={a8H<6E4Z>d7R&a`T>sw+a`tV{eko&Vv|b=9@eA^_z_&On=KUhckobEW
zQ;S8)Xp}47V)v&Ph`;N87EvDgI*QmqJnm5A&Tb{aMZ2$3XCDkCC&~}%8FiXe$An)^
z?Vp^y0*%sBnuOm4<z_T9=xII(UpyNOdl+x?`s+CcHxmqRtnbXU=+TpRx!`ogc=e9N
z<Jt3f+@p%4OO*-5Ih~aC7SD4`P^`dFM6ipG$6`iycVK6qA?(Cs^=LJ3U5B}N5|hTc
zk1rOb>>(jd?Ma$j8=mF_S<bl$htC6b4nlDY<=mF5DeHP%jA%<z#dP0iTIPWI!ScYS
zp+7}xK25f|vgj}R#@xk=bpfDuLJqS*sz_IdFj1ksWal|G-y{2-^e~I%hQ;42%kY27
z06>zi5c}%%G@zZ)WHh>w9n(`RR%gYTi}Dy9Fi<ML-NMS|Wy@kg(ruqBmF(ToY}+%`
z8SsVs=phF;cefiLbY_Srv^igCfP3o{#P4P*MAuRg*w>NYKba{VZ7bSf5#UfgB=4?2
zt?Gu5hG~^xPC?qx$d&BquOWA^;)Gme#HA}Ksjtl;KRpFX;P4vK28LuNdCFT;W)X^2
z(7?29|Ct+FeMsC#xf>--uE@AXJ->>PX!3V-rIV_}%r6gQ0-x|X1j{0jMZF|LqZM?x
zFCV&=4ThJS;)s>v&JE26hlUKF8<wlJ;zqBC3VDQpRN!XcI2KNWzF({Gb4z^j){hFz
zGkty9vV46}qRxvfi`)LUSaE^H^rGU$9CmXQ`~vm8$rbA-MBH|>xGK`O1gjnt?Fc?T
z-RGbihPvWVn?ggS_j1kqBNG}WCg!fkD>!yKX%hR&r}gH}25kaA3uJZ}DaW_5O3L9-
zj?4U74Q86=6l3jmQ<^{ZW`%fzk9MI~J1;P%6GQqR^UHF*xHkwbP0FC+3g%aWR}lqL
z`T*yd;B_!NiNKpXMRYuGHS;C8MX}QG-}l5l@_S2T<QYBt3Qg8CR69?LCZ|{&0Ymx#
zP9~J+n8Rj993WV=yF;6*bM5$APKcH!2_4p4Oj!f}{E^`|J2+;=SK*@<DSgT75_qTa
zb8Gi6648t0k7x1|?$NbIE*9d}-w}}CtfKCdOTB$FC@UT;J=f?$|8cWy$z+tp6zg5i
z`O3-0eaaDWB;VwfgoIt3SaFuaRgk@F?EoXJsyIyK@>4eQ<$Qh-M@(W4@CHL5hC9Qx
z-#Z^^fMpeb8WQeIpkuT<A#h>t0XsQFWY4o`mh~7x3iB;zAxQk1HuElS`nJ01dc3m9
zj`>Be&64yD_-mKcp7MxRC29u)F=vm1DCnD4NI1`+{||xum=l$&Mo+;K`D5x2VB0@r
z4>UT`Z9-r9uzAH+Oz!<8xY5Avs*FQ&SSgewV6(8eO=65N38to+d@^-*16zZS@Cg*8
z#=7}*jxBlpn<_*h!&`bnmk*5L9odB25k-<t_A~j1%iVZmsSGjWQ4Up~6sTfOZhVUB
zJ^h!AcEN&*gR)pR4;Jnw#U;|m@eqP2IV{cuIitQgY{pjE1GYVye$!O>W|&fSkRJI%
zk(NZg^%VX${dy$IFjN|i_V<cC0&|BQ_yI77oUM-C;x3tFMtJ|ntCEavS01d}dmP$R
z=4qp^>M<ysPQImr)QD)}{H;yO@30A{ZYyk?mH6;toOr1QAN`ICD@AaVbq@Mj&n3XW
z>?w}N;k#BqTbBfoSV0)KedIhu30`k(7m|Hv=G$?+^Nv!V(V03uW$eu1s#sZ`FN0+^
z+(R~38)g%2?%^Ff^~q?{SxV5~$%2x2cIR+({T}41b?=awAfo3}U|)Lz_GS@hvQF*S
z^Y;E-;<C-x4CHOGrbMns87*0RMYK@wBl05OA+g6;INny=`%)~lvrMTTEHOIw>Szm8
zr+|3L&Nkhsx$oy=3G#%Up`fD%yWWFMz361H0JW3O&~KRpezp_s7$;!!H(US<m4Go^
zHS4?@mL@=|U`#P%I>>+Wd?%du8^O2|rvIl_g|Bc<_P{pGlWVs%>V!Ot3%d4$oF1#C
ze?ed?O%`?E&KwWI>Z>zs_|(vz!C@u%Z8^HYu-Um@Qf`T~Lv_~O$GuxtYU}1<B$@3K
z)6!ui=T+Kvp(m-TDAB~B@|Bkgbrrp+yDdaOm^VH@iel@G>GbWQhJkV3sG=vfeO{`5
zWIX1txUPeeD{I@>CQR7$YfRM6Z{sCDX?(^+tW1@kh6EngEwx~tFc*173W+36knLvj
zFOuEk?AvymLQ06yNPI--9bJOMVf?(+Ws%d<Mn;=6{a`;6dp9yIdqhZ8idHd>gYur2
z;c&zU?O*M&odK91Ut#b8=Xa7b!H9|+Rh_lTI8`H2g+1H^*)DFRfw&c?;DuC`-rw<E
zn$QbJ2~?{e7c#6}#kd3%7@vfuBbSscDo)xuNx_}<tkb_-?i3ocKecS!BDOW$q!DH6
z;w6lpFJ(tp*Bk0ud4+OPkQKSy<sHs9Gw<8?AjV0EKXiRzilcacZYw=*k7smX6rm;I
zy&dRq-GRJkTV>^@?dgyol}7QaNIL!Y@cO_T*xDY%c&zp0pmefg^e1U0QAZs!c(0$0
zuRhp-mc@Ag=5GrLOW9qXFv8zhvv>Pe6>~-#dD(3TE@V$Hdcji*s10Zp?+`mKwXR;`
z7uv`TC0~9gLwk?8NC_dxG-y@JeHnB$_lBfI>X;T!N;a{Z*ICH@5CRHM?`x(BTf=0n
zywA97?KTA&NNp{4@b7sje=6s!n^~}gHjtcx9{yvegT&_#UNU{{#Lir0nPr@|-m&;d
zhJPE+kQ5TZhy}7no}MFgWDGorsv67*Vv1V@nHvtRd@zn*$;7xC>=l*XAT>68Q3;tn
z**v~CJJB|ESpE+&Mpa6X9{%NSiOYR&EKcx)<~)HrZg#)2;p<*Z+p!N$^Sv9>1shCX
z%~TDYmdo%a93!K{UbM2Iqm2InVqru-G|{XblK@kA6(ZVT5xAUXA-6cSzPtRn_>&85
z4@^64*NaH#68fn#mVpu(y5}|$Vx8#;)Zm63Q2t);5aIW^G(fl3M!HoF$MEVK>v`xv
z{T#DdX7rek2XZ|_C^74}pR<!2B&X8jVh@KhC-qOk*#)qSYoD3S#KWJ|A->x03dnqZ
zW-0~u+*+y%F?Te)hHN)>DOFkFsn+U{wRNDWEPBEtW)&5Y%g_y5n`-<{nFLvE``WH?
zC+i{AaEuf6mLTZsj~4z{X=*O!HYkX$doVOR0TyVbc&u&5u+VP_2aPI4w}{K(n|}?G
zPT!V^#Yo#?<=>iikadAbPjgiB-w{_S<cClDv0t-I+=`nZ*jqIgy9p2mN>>ke3b7RM
zt@XCV%*M&B%L*8Be+VVvqGY+~Nw<F=sy7e^HEv5nhx2a9_%2=B_d~LZqf5o<%h6sz
zo~TwMbI^V%SQgb}u4{Z>DIo59`oVmaVviWfuH1A?*Ms506xoRbZ7tHJkl_aw+hn!s
zDVJNYb?qye{dx!TIT;a$i>VNAEV->edr@tH?J_R$!#N`qR<=m8RhsT>oUO);8q#@M
zP1w?ncHu&yQ(XQM#J9@U_mVz%=cP}Zr@d^K+@!EvU@WF{>I);ck;;Cp8PaR%uG1F;
zupeq--CU`j(`_!k6rOr;zBv#-GcKa%ahr6=lnGkpjZWN?KC)ss(Tq2>Z)?=v6?ld&
z?_jxEw&F|Ddzfd;?<`grKLXohSG(-z<`s+wIgh>y0oG+1sse*kS^jazs&g}0^t#>^
zUtiR!htu$}p!x)9EUFh*zhzQ9wI4c`2o1<I?^<6ycdT^lkaj)i-tHBR!l!AV{==n^
z^5xA}UA4ZKw!Z_53_9U<E-z9UVj)S)34I4(@ruYLwBgn~jZs`T+$-LzXv{UGF5(XJ
zQF=J$4isgLYF3dxY-NHz(em@HGYSV=Jt30s;K`>dVsIzXp)g|A!E4+?Pit8JpnaYf
za*I+bo7SISf&opwIB0`h$A#dAWYGu1VXw)Ck@WI+HmJi{HOc}va{kK8-i@QN@74ZB
zPBO+c^;ZaaIISL&rpZ%9UbdG)ls9?0t6qgYQn4v;=n#;Rd#-)(ahZhu9c5&y+=*Vg
zNZ#FVE;FZ?Oa@S15E{Ry3C(EZr;dMym=uTAM_TsToEwNgc20)ArPkNHesbu~W4;Uf
zQ?3vid8kP(!loV>7efRwE(+sc42TqttN*D<&2<fJv<e^A4s9N&LT!(3!JFE^B7Eal
z_qO=a1OG+WM~ovoR@_xJ1)GfQgD?sTj`%Y7gXa#IoeNgMElg%$%km2HiiyV-FTM_5
z8gmy<E0PG6arYr5xc%aZOG-WEAudXtK#8J2V;t(q>u`c8A8GhZJ25?ckBEd6eRVBZ
zSXkH(fFpNXrUyJNI(p@?VBaoI(wSVGwp*Kr_e2o3XQJH1PhnR1$K|@`3&9V4B0*t&
zZ`QISpEG@1&`uJ6JUUIjt2YeeIS!5U_+EYNS15%fRH3uNC0_AOIY7c40ZqJDK4^U!
zje%2<94os(@l)}9?yEM7$cIwVVFp*`${&wk*Tp!-D^zSse#|Np5WTrKB?-Bs1KgW$
zWHInoE#}i7kJ^toZ5mN0(Jqe;L+$(t#oqS3Q<Y~;SSk%nWQRXTGTLwFU#yeV<osE@
zHPtcN!(#Rebps`P!CBR?Fg|0$BrH9HyC@?We5P2?*gO1Ac!Sy0ned#yB)>TOkNd1F
z?>>>RAX^*s%t~hzC5mprnIPiX=+O-HJh%oDhbt8pxpld&{&13F@prdV<V{T7&^2H#
zk$X0^Wp@Agl#9KRKJ{eF510YlBe37swbu1*4@4kRQBk#@qD6O7*UJ&<NH2#TL&8&H
z8JSP#C>A5ovY$$EvLnux8bh|b6GQIKb(P=Zd&mbES?>MlRE+Gb<q^+4Yb^B(MiIUc
z70{!%_3q{C#VagXb6DW)D9O{uZgj{1ueYz`3VaZ2Qk0{{=$OrJ_O46(t>=;h=6QLc
zE?mHBFXe`&YiAr#uz#zeV;yII!Xx_gx~04wf&cY(DP<`1A%Y6Th81evzJ@oqKw2o<
zBN|2wnAv?aEi>n6KxDHh@a0s5!v~-00Ip}l6)GrqGLEC!B+BBs63x}GMIJY{^1Yjm
zS6s~!EzD#5n8kn{^y%eHtWYwZ_G++9$Z}r^l)bkhQkc<|Qu|F!b0k;WTK{xt$*q&4
zT*szwfzycp)<u@Rx{Vt1aUqk}E^F;NNlQF*>ihWHEZPIyHZvUWgk^g7ZsD4u40VgY
z0wBLRhh{H*OgR<Qp>Yj7*G@nX0j(zX&tCN8Z`&z^T^@P)SZ@o9vJPz$KC1ngmb_&D
zUWnB1*TRS?Z~M$rqZq}d>;mocrJY6*<TP+heQH!lR_hKo!@k$@kj@V__U<Af8uBma
zO}&j;J^(LlLfE;d=?!R9k3z-sv_b7RkMBU6C2wAj*xX%4xDxg3Xy*c$XfcjwKYNa>
z+{Kc;H-#qdOTZYL`a>n4!PA>JL$~P5Dx$~gg?C);rp^grX^4BS9We3s96?a~SqYl)
zQjJNrFd0(3S{TnOX24<|kB3Oba&a8k;T6D*Py1^dZRsBUa<mrz%2_kBR%P6=6s{$H
zbP_*(v+22}57JS#@j1Zna9iz9xcZ``Z-Xc#l2c0_bDjat7N5rbI!zNVK5kT1YNIv5
zx?Qe2>xP;&Azo+;q2VYzxTWu`s`r}zk6NWNbQ`QtLGb(3*Ne;-)n>68=l%P^5BGm#
zvl_J&F9Lm4kAFoj^ynIV2%!FK))tS8C}h-pr<NjLK9IISz&YfPAde{<qyHQr7AYAa
zGYrw>bKw4_aZvC#Fy^Gzg5)=^RqPwlY3XCwZN{CCfo-R?IFlMNOJ+0(s8ZUmdBn31
z#t?e7jH`MWHulu>x2OoN+D4U4ISoa5awzgf!h=krx_4{TlQmk#9?y`-OOEf%cS~n9
zLD>gw^CGu(I+ttT6}TrP5zm+46Jk^)01(o86{*jutu%y~H6e@?E+!BhkNHY<;#8fu
zFUjaj99z>oicA=a`<4+O@K$<lmfwBrPC_MtP`;B`$UD4I@z;!H-#zT4|NnS&vL3^u
zC}?Q#XrKR7Ykd^h`&d7?lXvcyVQ1|gGL@DZ20m&q7egH;a{e&E+2*pDu)fVy;Os8d
za;;@pzPPhNK{aTlQe1B#2x@Ihe7f)<Mb?YvmMNU2VOT?$UK7|Jp@CdruVJEw$SuNT
zY<wcK;W$S!XxNpH(A#{TFstQBlIR<+EfpetB6a*{>Kjh8n0zox(yPA9GVLdczUeP2
zbQ%xTB`KA52$u<1^CN~Avf$et$x`wr?LQXi@gY(__%<>y^+u_$+m_NKNkm%Alb;C(
zavm}aLfw@S%nwQ^{F;ezl>6R^j{{T7Wk0A&UYkCtyA|grpG1YT#A0V=BKOs0QY)W$
z;g{bh?MeOeLBw8uZ6#yjEJt2i0&q$S!8qiEa8+Ts2`c5%@!X@kgUjd_H|-IcHA1Ks
z>0_H8BGE4;KYI!*n~%lC+AGhH?i3@pQ4yk{WoKUt2q!U({`K}f$D};|K9a-AS46of
zk@Efn>L;>t6fDYmJL2*E3H=BbtA@TItue-DQgQ)j1d@;DU#4<K(;8lVtDzUr{U=N7
z-O03!<YKHI_A@H`BbR<X=-azs<0NVev66<?{`0BtgH_7!J>tJPJ8_T&+iyy>4I$O|
zk?vk!%UpUYCp;}J-!2MJd(_%)b!d+~XM2*Ciy=+t$S@MQdBuyM^PM5}i+p!)!HRk?
zpGMg13Mx0J5O&!M#sh<VhKW#HCq`1Kw{e=`?)=WF+4NB&@JY5ZXHri!JeHxRi3bK}
zaX9ZOx8)5PCjPuvlXCx7l6c#GA4&h#^OBg*U0$(VCQ6tjS+&YCGWfhJBGN+cZ18tJ
zYl!N^I5|P+>Pw-c;nm55ZQc&pYZnfkj*Lvfnm6y@?ykN-$dkAt&|*s0F^!J3;qQRc
z(j7I+)R9u4q-0Ua-1pJ4Z2c@Y3qR7x)r9`7t!)&nQ<ZxW-k2TNANg;?KD9?kE1<J<
ztM*TRg6ArG`L^)XRSeXboBSydb6y=bA2Mm762@q4@R9mJzW(ujc1Kh0x1^wx9CD-t
zTd$-IH8eR*4ob<8Q_%_>FFQDAwKL>9b(afIJF3tI7i-5R5)zjKX<5Q6k<I|*Z6u7#
z{hLtr?j{7JHF47vf?)NyYpaI$soAcxsNF7TMki|-tUmI>m~HSOe%ia~b!cBDMLLIX
z(LU)4&q~<D_a_s-3+O)K_++*exFu5pcvO$TzEWZL5V4;m%itFGJ$8)2P|)7n;8{ji
zuF?ibUI4LjqnYfJ_@|JTHu|=0vNzH#0ed5K3Y&x>s~i5EB?Qj+>~D#9f3-#acMl@y
zixFFHblc9{fY&fz5(B;X%=m98eXB|*6oZoPjwb7|ys}1P4za#s^OuZ=O<-=@3K}_1
z57xRs<U|M&*1EzhDdPpoJ_p&7;G7IBMt%J(=*|}FjSIl65HG#ThEzoT?TNMw%fmR?
zFddB!$|tM_zY^1cdFDmQtr`F``1|k6q_6lQw!hS4-e|Ytk7TjI@BWaP9u$F^3`?=h
zdhJX6r9Ges(v$Y{^TjEb3lcxcp|h9jiws;n$?A6}$~Dp69ZTEQreibVh#{J#F_Fd7
znNG6J@!FzJ_{h6P^^#x=CQzb2lhB$2T@`jZ_{!QW)k*>d|3jW9HXprj2|M*Z>;Git
z{nQrs!`_KlS%BybDT~+!jRdx)1<AfEduSJp&i2yQU+}{BxJp0y-h+MRrm4LsrWgh4
zt6KdGa%~JU`kSEKJ}iB#0Z_dKR*Hc$;itxRiQH(>o%DeYCB?{4wVk)eVVMlv7cBAl
zD{rt|_y^xxoXn;MuOGHBrQlUO+7GR<5jgqnFt{4n^d+sU7~LK6`vX{ro);fNFM<~q
z$EMyg&H{_LUzQD*s7&i*(T^Whwhxa`E+Q|)CucGK7(<<0t9FC87sjcZ7Pwp!G6Inz
zoFOL-IF9N%`Kj<v#N8`_If->(4ZK9W%hdZOxQA7pwVJo)8xx`L^W^#63_no{JM}~0
z^$(Sw!?Z!&5(j0f;+ciRGq&5`Z4cSH?ml;88n}HH@mM7rOLURtA^+x|A@ay~eY8M{
zJVO|;&^(-0McQPelxERTq+9j)R@f7J=7deYvM2e#+NKaRXt)sm(Q>UFUN_Y{W4=PE
zMA53rCYj2IH$Qx7CO48viD)n9y9@&pi>BSyYuELUlwM^$t^)bYH(L&m`Xc_sMj)|_
z>v6@{%tjnIktN5guf(;inW1H$B8+Y)Qs2If{%q*kq$$wd`^L6ZJ0em}$Z@>;jdjXM
z@0n}vOo10k&YA})Qygi#tm>CE{Hz4h*nhR;n?I~6B8tT9vEDLa{N<yHSJ}8@Bu+17
zUdCnBY3WZuEG5c9@e*=SIi*Gmon+!msn8{H^FIlT%l=K>m5Ym-ow+21Nbp*eDnc0C
zMWM>>+yAvtv0uL`bi>f>nXyo{(vXKlvD1nD{xma4a#f*NEjyfJr2UFFhJ+C{J?JU<
zxQ&3EeetkJ*`}~j1@x5|e19+JPxv-C@E)vb%BqR!X0!Bp$l0y_;!qNX-+{zhM%9~-
zwrH|4&uFRoWq4l++eUCJLF#_Z>g1$=gUqmz5iDF`7#kBFf1umwq&;b_S%d#Sms$6t
z#+NMCpc}tRqk6D<8BdX|PS-Z_olB{{W~)8xO6v2a!SILI4-PnqXuN1evD)~oIyk9g
z>EYSfXeyP#mIgzVD)g+wI}8CVxh({HI?aK_vyp9{@MJZ;!6*EK%zA&ieC(?8@0r;i
zhTip`Go+pWLOF;X`olJCVhfdx^ETrG6=-=gXKEB$$SNWAxUmLtp87y^7153J*7{1e
zLqJE?#GW;HgxUW!DkW613iZ2R(T09|NMtwAAKX|D!M5WymCYsneK>p}&`4sVAX)#w
zN0V&fq<I6^=COpeC_JgS{vb?fCm41(Ql;5;LP*N@9E5n!$x(0kzowDI=`ahDs<8zd
z;WFjE9F9@7n@$;OO&l`hluAWX_h2pGnJHtnBGbv=9J+cjH#%4}WroZwR4drw8E=VI
z&wgq$iW=vC>2I_oNvT_YgV@xq*#=nna@u3BhboJ|OmRoHJ7FuCbrgSB@;FSMH?ii_
zRw~d|Nl~~Xc1g1zY@f5(R%}Cg<YoxH_+z=tsE)+gq~2!A9QRk?dj`J=$yB}wDwPB;
zx79MPnR0~5^4JYOMH1@wF|!bhq}dUj5~f+wc*C1VlSn7VSR?rCo%zL5FzAZkx#@|b
zhj%1o<l?R6EaB&<lZwH=w<2_T#SRu0$Ths9I$zoU9N&0eY{6X~lyg~xIs&#Bh{s#y
z(#NUF0-9Zdsk~1y4Q5_ES)qv@Zacp*pt-b^34V6*x@|X)>4K7|1mqN_hLJHQeQi0v
z8B&<Q%c~NT264?<%NIz{4~jmyxKOCnAvuL1&!Lth^Jg0itlaRPq3XaP+facO<b|=8
z-_>(ON`Lwg=H!OH;Qu)UwqknT*ftX5)bR~W^}(4-bY{p+RW!Lf{`p!rdL`)Qbte28
zTu70hHu<JXd~%-}Qz|A7;}|_oc1({CM270)BLuC{&t4An3?Y$a&6W-$fl^hNr<NR+
z%8PGMbj^Pqx#~{)$ERR_{AKWW?UC1Pq$V=PPlWgYA)DZ_O>=N?@Lf2OiqX2Ax{7fU
z0b#G4z~q~6ERlpyF;U@ph@Es|asDQBH0dGV(ZL3Eh*Ps1oRM=^TwAamY^Uj9r}%Vf
zg+qGv9Jawgy>BsdF++-;98)9^uK*B7MzyVo*2UDXs2%e@eyS;J<L7{2!~dgDYZ!}N
zXTx76#3A0xc1&2#R&%AWaLBWf{~t8kCs7ePaxfh1TpV=Z{l9SR%V!8rctGa=buGev
zUj$6pt=L3F5dkj`$bix6hsr+>RD$QE6%4UYz-2#@#{>IvyZZ}?v-pcdtzJjCh~Hx*
zk6#lYq3w;QO9#C{<gf*E<N($CGcz;J`Jsus7wHG^@bE*uW>@=@85~A$R+?=hfU5g#
zATxJ12!-)oxQO&%Hd)OfJwM(^Kp{gQ(^1@ZX6o}}IRLx8%lx~lAm@`0FOynjXpv-$
z@kXbY=k;L{c+!%)e|#J*nO;HaXtq?T=nD#Gn`WaqhPZ^pkpJ6<4NVq8Xq$k?S&k=5
zEQJsu(1+s-U>+OvZbTzsqJ04x-bCZjNEzPzT`>N1<;ySr!hHYz16J>JjsQ*he}J73
z;MooVMzuYB@eM4Xc7Me4(?zbJoA_e2)=W=80J*5Yt}pk4pvU<JK}bxC-D<R(`PF}>
z`xBYh#L2$Np7MNHQj2v42|X{5a_C=}G-_G)-OIlwBbfmup9x`r56*BXnt<Q)q5zoD
zaB!#-w!LIO=mn1i3{-11DmIvYUF+~rkoVd+?|F^S;<14Mra8b!cpe;Gop`S6=*Uqf
zpUbqrp;o1i0rZ=YwzaKZyIH?jbD<1GC+An3_;j!XdpO8vJjj8SX8^Xx+^7;y>>olN
z_V{eN#G<eZc<pBEFyQ9LB>YXF5TZl+t8Q~?;6u0D6Ma7SbazfPeE`_4u&1GQE?d2D
z&`!Yciin6fS`pfb!PFq$EditLFd4?=cGw{Iy4=MH*-ywVt^o`hPM3zFM?2reyOCg{
zSXgYZ=jWm95kxdXL!cds<xEi+vG2Dm?yqMm{dX3C91|K5p~8uG`F&@2Xefqgh}=Pc
ztx~;48}cOX5VJXPc}IIc$;>`A!VK>Ty9ceMChjucpT_|X2&!0-+*h}Y+gn1a<}2Nc
z=?AXmsazqYI{i=Wah<G>t}hWEiP7J_eT#kPLFs!neAJndT31&GCMO}uv;|cI<_AMy
zfH{*nUhRM9JUIU@*|tHzE}i#5ju1E<#ZT~c2eO2aS2YQ5{^E176_k;53Cg#&Zq|kh
zr|~)Hn~o&HRVbH=1IDvIZB8Z(o{00ijrWzJxuO<mdx^;oI;yJpEw;<=38lB$4dco9
z;;r4^ZB`dcCqP;^{qY=5VhEV&2tP8aRpM7_)UhEg?+gQk0t~Xjzd~N^XBvoL;2+t)
z-(4My(IsG1{=#B>e~=$w3=D2#y54dI<B^yks0Sl}$ENKz;kKS<fFfGxTm9F=_%3ua
z1MrD-e@$mMARLE5@${4Fz7LjT!9Y(>&Q4BZkJm?gyyD&RE(cQtA!z>FJ<fa48A4MI
zvMAJ1_niF(vim$GzF#}F_52%Q5FxVNr-6^sfJ1aMmR=!m3mAb??aq6Hl@<3oP#Df`
z$5ukaeLc!TBa~^)({Lb!)c+0ru1%S8#V(z=jI-x&^nmE=<}J0qm)7E=ci#(Dm4PpY
zA#Aw6Q0I2O@f^plbU6$?J3AXmWlq;@$wuCQ4Uy&P^ieSbMn7CKKKntc09epsjZRDg
zk3eNnobTyRVJ7Oj;i|^xm5U;--6y((#5t54*d0_lq4RI^(zbybVA{>q^bJcd?DBhR
zx$pmg)#(+-3@hc)XBnEBlBa}tQ9Xt60%2D^QQhBLi3<qu8>r(0o@`P7g#s~nPL~6T
zi#q|&J*?fQ(gJI&(bnJt^zI``?w3o<SJ)@fOu(O(>5PX$y(@H8_G{1}Oe3Jp?N~iD
zG&HjP1Qy~rp2j+Gd%8L_L7~se5U}zn!sB^?{$cEb8b2}l{P$B{Bw)GqCEIAGd<INK
zF`G5u4iEN!tzy8dt1(Byk^2kL&cZGc8a5;OEgQew<Y3yT9R<IhQ2>MFKkMmcoJWOL
zSio9D0PW#0RRI2~*9@+{)_-;CDFL7s--pYeO2y&#*EfK1&sY@j8V^;fRdF~$zJQ+X
zE+9-P5-)yFw$0TH__9A$@t^+3jy>+R+OR@NNy+behz(f&Xj`tZ%=Si-B&y}pHJH6`
zPqaYZdM~9q`mOv}Q(l;Yb*C|8ytWzlLsP9{Z~{g_mruyMsHLRxwY84!?t}sEE4$<8
zmxgQjPYC{fI4ler1AU`7)_WbP>uL;O$4ggTFt?s=iMbDjUuW>Y%W*icgWp{5@Q5*(
z-wj763ASJVMJ+6>Ya2kIpO+Kx6dZt<zC%R?xryyTLEH)TsS5;baKU}Z#VhV#Ud2NG
z`1F3Z6?{dw1q{atUzlp(-^jCl?g0rU2{u#WJtp){mhZP>{_B-C^JM6|M0qIciT!we
z64VWkRA_KcnbE$(^uLy3FJ^};f))8(!6*aw{jzVF!N8r1nsf+Rg7n8U0*iL!=|3mu
zYd7Yr|9@&+pEW<foOzfVCz5**WygmWEN$W3H#_LD*el|VJACP#*}#-%t99HHSeCz4
z1odX0Th30E;bI{nDyT4RZ|%OnJ=ljJ&|45$F3dg$Dc6L2Bum4heyje|HS^C)x&eo=
zsmB%!r=(^Ec_4rye4pS-+~WMd)K01@w|Gb6IS)tou;P#q%}+_pWUcdhaJeCPYxlka
zLLy}0fG>?8Wln13*s58(ozY8JokY;}CwM}XWjH3U6XT`9qMwgBI5;>jjz*`&c6zL!
zCz_ZD;O?*cyuN2f{cxhUp2%xwZOW`j_AFG^SIN4xZRs6q@Cz2YKj|-C&N)tP>D8Nq
zov33N8y!A1g@Q>+mIkYXC*^Sn((aOiw2J6C3HQGB5%L*)I+I8jo1=~t6X@t=Xu23l
zqy%IP2~-REl5feFBwXe}5p-`Sb#5fv#D|0Jq=nZ62zyvIL-s;Cj8`C~hZ`V7Qg;9$
zPfGdI#tC+ApxEf-;(EeEk)$nzI)*~MiT^^-pRhdy)vQ@mz&*Kw;$8{}0Np9Rk1{J3
z{CBxO$;^9|18rSC_nJw&I+%_zaN9TV+E=gDWmHcZxj9)@fju!{Vq#uzx1W=5PXGVi
zE*@L!aOEo+LIh3>RI6Gs=sWoaBuIh^c`moCB2IrgI}_jTk;F-ULNio4FKbh`rb8+<
z2-!I1+Md|={+ZQ+<1gfa^UIBb1L7_K``Cp+soNgoBYj|8+)dY_a2Ci~ti5IM)RM8<
zL2eBBj-nFgA`35-QWtfNmr!7V<1SqRg49X58J;%d;*pv5_WtEjGMpm4cm0W37yhx{
z+R=?Xa}DRpE*Dh40^dXtfGmVHIgs{3;3P0?`OVrOl=W`4$LYEI9*wNies(GMZGV6N
zAlBkVYwKvo&T)c<(9mXZ0D*(Uxdr{oUEgu8-BNAt+U@QAaKt^4*l5SLLEU%;XK|a}
z=<0H-L%!x|meiFqw6E2SD^syrlT)=)^{af4rn@^3he6s;O!jt%hK33?>hvK`pLb8c
z<%>{+AYuGi9eLV1*jd`syxQ`5fjt<1tmE8+?hG4WRb5!)V3G5`^Vf{up+eIJ8Ha&8
zjRugQSuYpc5}f5QHNFC1sVA~=q0V0fLO`Wf`}Mm@<`)&RPZr0(#F94B^)vC6uZePw
zO#A}HwkrwoiPv4aZftVKEuF}^gm(+tC#vXE_(|O@eqigy%F)}!Z+>iz{8h*a;njTv
z)n$5|*kBkD8jRUe5b|@*o#$3pE39y#vT!EW?q`Nn;7pdI$D{G*+F+&aKyY$T@x!J)
z_+uTZb!%SmC+UNo=?2kv<MYXfN)wa`3JTJ>C`!ZzS8)Ctg<`M!AGZ7)scXH^e}e=j
zad2oBXdW4XXXywyP78rx`2cva&8FKHs9Y*LYR3++67oEYM{MLq6R8Jmj^7>#toj0T
z^&Z~p!9*sFKaL<=07*)^SVCN!B(UfW7O{+Ov-@8b<oRm<kI-@aM5GmD7&5kjk(alu
zSYYe}>+s^@I@AQSWEh!0u?N76d9vPFo(wi@eMLb<Jejv<Yz-4F18Hp~cD>I!i0RGw
zYJ!tf!82yo7;&V<ktbZGlyJ@SSd{p{KscEn)9Loqt7k?qY}0t@RAtDkois~B)1-}v
zcKGpKx`n#xF$X2ylZG)LHA?&WKbPynqS@#VNqbq!fV<e3=xA>?>Fj{LcE6`vXR<^9
z$e;`KAJyXMcHHhi2zFxQ=2nG`kJlW#vV8VN%o~^QcIii+2W;rXM(*DtR&M;ibZM(?
z8^?WV68uD}F&1qWvqZzyk2StXF5N|UQ`j)rZwc|p<R!lGKCB_-wp~H6;A0ChFvZ8T
zTaD|LVfD9FL+N?t!eV{o30^Ev*mqNbGY^3y)Db6QzE0!*sW*eDa<K7b`b@OGLkq8(
z<sB9(ij*z*6RgXUNOrL*{QaIyKQ)AUHuY!h4*{-TTN6Gs2R71wnD#`6!R+A8&=n<5
zB_{nRl;LA4gMT3fzS#*F1oR#zI%YU%-ymm){LmF}qHJ=3nS7~xQg#LMfIYg)b;!AP
zw?Yy@m@>T0gxR+YSIQpP44HP75^7$m^<ni)hUig1+oNJalbMdO_<8t+Q1hEA_I4B4
zpQ8KX1KarrH`>c`b)#Vz4%l@Y#dsanaE2;m3)c%Xb#-cR@srJ#ZPf4;$u25bAPcm8
z*OS<=C!;!9jqUPh!Cl_d*A(-YUE}shKV1FKe$EzOwVZK%G%bQYM?gvH@u*=%+SKnb
zH-V%bpV;#tu3%6GM{DUW^KYEdz)=Btgs(S%PFa<ZRNtU@)qYn8|6o_??n6K+eDS&1
zbo7UFbc#-!#Wdy7P;r84cuo)h3c!(of<(Q9fU|bCB$YgGLPxjT*I+g|<XAr+c>aZ2
zo&FcjTjW%{evjA2S3rl>nN|k_(1Rqfmn8;3RiKA6G@OU~=N7c|g`$^Mev^{wzbE$0
zMh@x&J1093cggEw*822A?tx071}{z={pW-qxlM>wC{Wu@)MiX~Yd9zp+6f>J%r+XX
zmSI=1%wJZ@BQQ@?zYgFD8J1Qet79<6wYBZ;M`-9B{?|wRTFoC*9D|9sGA|v?7Eo-_
z-lQlnWGFKeJ<@(bhm<~BzsD7M)%&z~cw$tp1Tq(!sNf3-H_Ryxgv|lRss!9a$BqH&
zE*1TQB5cODKgMdU*=8wE?dX;hh+nYs^75R?yzo#*MB}C6NP#9|cFwC;_h^%y45&*0
ze}hHum#Xc4AOAFg!rQU-p4S&L;H31`yy2LN`^U%V0}he3V-f7#ogImT_UWx-Hi>RT
zS<s&`7l9cE>3S{AKQLzyZlAfCm^X{Di3v76a(}0%TxZZG$x1=OPG1|C9xZwY8;>l8
zn3u9jfG{gojkCZ@DPzz-c_2J0K~A|v7cPd8ygk4&#yd>dkUQHba;ab=(1;<8i_$1b
zX?j2CBiRk)+Sp`AMCTusGaqew^oiKBOjbGn@4yGDAIS<MPnDXWqP6RW<E6ToAnsv<
zv2VS{v~}t=r2ld{cYSl1S|9&#{>z17j?emVkY}6>p!iWv`|}VOWW~v**lb|3)SCBQ
zu5M7*|F^ys8lJ07-8_X_)jOV11@>GiDiAU(%*e*Rq$o^?!M-%#8%s^j*8gpzmI<Iq
zz!L^wavtjx@C39VM?-0(XYk?Iuc6$W91fTLZ=g(#>^7@8I*@=sDzipf_Q>5?70QS}
z<IDwSpXVFO6tW*Fd<vdW75fkWrmmz^MwNXnJEqa?1)`017irslb|<<Ty)Yu6FEk`{
z?Uw81#%be|WHi39&-q5zka1PrY^Rq?dz9~{NI@C_5UqwLz83LyEvfYQKU?tBUfeO#
zeb2i7ouCPIh5+mjpWALktdmwC+2f^;Aky&CTXw#D-a=IWU$oAMN7#XG4`#r2oB3oG
zMB1;dP$D9_eShb79Nzd3;A|b=zGNb!ZGl7BfCy}OPC(xtHsn2OpxR=qRe6~h>4~BK
zfBd8l<w9}9-RXP-d%2C}Mhm4TOC^8+FKeri&PE{>PaYM5j1?`g4P(x=n99L%`Ge>D
z%d7S=5DxxNu{0Lw+0Fm?MgzE{yMO6i@>1#!Kz+UR+wQx`zQ}Q=>}<7OKn3#sfLlgC
zeRW~AN>yVJUi?ybe@yeme<FpHS4-P!7mF1t()Ki)pFXfRUDlo};$Bh>R5|V}=*}EO
z0jUk`R{j9HVnN{Atv4`Oq-(UB2P@IN^cFiu(56uwR$FR_Ll4GM(RyH)<Bd#so2IuX
z%g%Vz=rKb;4>eyr&j;qJ1*X=o`JZZ4D}HFkCoD1h!0w$qJv~SC{-KHt7b?}9=T^5D
zh%f6FFQ@meavWb$C#y8-x-Xe?My+N`qBJpc6D{zC-<4b2jPeB%NpA~m1EL5)Pu}mI
zF|X@GCD-Fc3<2le#HW7{5?m;$(ni_g*l@q->a-}+ml2l|a_8ug(Ex+76viQic_4OC
zggtHoWRQA~bA8T(_q4RT?Q1UL-D*xwPQcgRwS#7<cygvp8v(zg@v@6}o&>ww4+li7
zez_C|>TcSBafI;jaLC<e0MY8h_($RN91YF|V8a^pSlRA!5Df>5Bjdv+Cyxb~O2p_$
zUbdquOh=B?27E7!=YTE|sSxeyW(|{4E1w$$uD-6nr)+dQI6$_OT(Acd=Mr~F<NC-~
zTqHcSH>XF}1!&0$@@9HDGNH`5V5+|V>H%EB;c6?pKMX33&!qYm(CP4xf9#1(D2P7O
z`r`ukV#fI43edEo+E1WR==4S{khKqqnm2etjmZUFWqjLX&pV{!$@>5~g2U~vs#DJa
z)tBvj1P@o&ln8H<PfG7M$@F)jV33J1;(t`xvZc7=m90RlTY2hTFI2)r=5Tgh)>sD}
zGESu89CYG|lTh2@A{Ht%_RW+1{o55ZfH8ay2u?%fx|dc6h=@kOf&fVfSOMFb3q9&=
ziHV46xu6)>`w+q8>;R1p2r*Y7L9}%<ftwsj2{Ao^Wq`b75*%<cI6N#3Bg4jir+&5A
zWTgWA%>x(kW6(iglvh+#6j-(-?P(mi{2pC_&a^W2H2J|ZmS2E}4di~REwDFmar_cb
zAvB0ib!i5*8;hZX{?8`d883qa5)-Fc9cCkz<<REtx;BC&L!q*=U*zs;zd_lyK&bHD
zA3$aVq)Q1Ph%@jh9)#vNQAYO2aZI^<@hq4rlt4~lQj?YcuzOsvU_IoW;w3N8qqVD$
zlE$XTB%<`o{gl-I>6EWs0p&bD0RO}G@03Ib0(QudjXW^n{YE}N2cA0|2UkX7dWXUB
zL}?QIHoT(V^<i14$8i#__s6ckU%TyumzsenoZsuR<i43lpPuFQn{&T3<pwfVzgM8B
z`2;a%JrI-erm-8aZM?<4H0XnO)4vsFd=YTe_hVp3x&<_xXti!A&?!m!0v4WJiT`1f
zRDYQN6_p<NW9>b3U{eLM1Sj~K+*<mR%QiQW`6;1ZyYxLX2&o|8JD#&A*s#!;nF^6W
z>*0JW;lc|CPro`WfbHSC+xX?@5&-64+^+kwBgx{a#c{d)b7U+4J|K9I>M9~4B1X~x
zH@fG7>!dRr5Wy&;dUm^0p0@hnq0g9??!Y_K`)p1~h1{#}DQAx_vbFRV&LVMWy2p%h
zHaqG%M#j{E1r`}~<Tcw<u`i~T*7rW>AD_mKlJ;`#8W^Y14trPbmrx-3-W+zY^oo;)
z!ESd)@j$-b;+by#1LHBnrc*guXW5-7Ku-qD*L(6;SCLm@?0|=lRs_YsWJ&}N1(c?_
z7Z|})CH$p;4g)Ysf#bZx>#9t%b7*c358&ApG&JSI0YnB~{bV%ueaQ_<;IkqC%_%CA
z2avZJH0$44&;Nu27+mel588gG0=xO;D-wtSU$2j`&K`z>?8N|4Y<<5|@QXjB)G#Lz
zOS+H$p$@XyvPFP!k)H2$(~cjTjCBWhlgNy3&HsykV082=Y}v}d$=R&0O_C~ptDN(n
zuCg%$_tyhsihzlKWX{RmDX6h=-nLF{{F5(#>R5DQgct|Pm}#&xV$&_=pFcMt|Fo7+
zU)A%6QhCZ)G&+NCf7hu7q+@%hd*XU)kCW<KeFQ$M+fZx;_)<Q`E(gt9#b)qavag{w
zcKRt!1v_PL5UC)e_t)8K_n=cm8!TV@KX`Evo^(Nzf}II+*76Kxil^ELO2f5NT{i&w
zQr`>WM<;3o{FMI%WhMN5e&bw9ng(9g?7kt)@;C{rt&ug-j?2;v5F*8N7vu+&f}tUT
zsrXxCC4#Wt@!~6L#L#fzpc%S)CkCVQLv#%yqBbZwu%%?FHhaRbpv@05lC;$<Wn%@9
zLeY7CS=5)k>W8vT;tBS8idB|`8P&nulo~|*0*9LS)q$U~yHm2yQ2B`H4^PPdA5-TT
z9a+?^>yB;Pwr!{5q+?fXJL%ZAZQHhOJL%ZQ&3ACe**|Nnsy%D%r9JVygC?dDJWS78
zMRg$!4J5dS|2E9o_9r~pBa%M<2-7^xr1-@w;78L-XKM7|y6$K09UDQAY58<VdZj<L
zKi81Q{C7W|1U|!#a^bgf7s^CktTp88mknbsZo~a%*9}OZLj}CIh<7wk&6&;%(5AZR
z3$-Cjw^4Jdp__Ho3a$!O^tShS<QaE7nQ@xo`h2$$OoL|()~kc}6r4V9;8G6eW=<9L
z<EJ?uiB99L#jQ`F{bTn0(cjG+-Ms?N!d8D*lV>$w1|q@0_XA*)sUlnk)uDU~@4!#p
zDDO~lc6lQGC<6NXEwl)pWJ33yBm;IC8tQIpfXo)lVVbpJ{JO;Hwn@z{(KvfNn7Lcd
zL!&Qw4q|#@dcTLEeqi3d#s%wu!NvirY+<H$JsQ@}GL+=3P6!Ck|F~X$w#(6Xw;5s@
zC^v=bxwG7+G&`PMCWm9WfWP7og8^1Lx6eC{arfKOAD#Q$PKLeXAa`z=>)x1i(0J8!
zSb=OluS||#v>)rG><(>12DbtfduPYN6Q1mS@!SHqU=^Hr`~|8JVwKm+<h3Rhi<OJ!
zcCXids}HTP%avJCq1HY6D_NW`S=_!I?eVF6*YcF`GkwP;Lv?m*MwlGmVO8DKtHj=Q
zp3jOZ7raO?A<Kh}aR)b`(Ys`SD#>B$RjdP~l*#vM>Oky0l=QTn>7vVn9CC+t%YGJ0
zV0QS+u+aR0S{osT3tRzM-CH>Y3c92J%$T3Qto0h3!tGv{6sx6P=S5W<^)KoXsfn@L
zk7k(wK{#XiQQtHNn=V6ja4xIEAW#){#67rEyd<EjKlHEbm2eqB22oWPUU(uy5O`I3
z|KD#DQR>N6_kDhBHd>H|F<ST}UN9%CNzZ2je_^zktPK~z??nPr+ra*5Hneh;YS@#-
ztI?EU5U>dJAj@!6$udPEX7QPQPoQjLoLnb#ib4i;^tOWO{Y?@$Rxj()###>kzQn#P
zMyGz-O*jt1?Na|_=S8me{vYJWhP<Z`&Ot=g2m|r<GjlbBW?pgq|KJq)ync{V>Iya^
z{@NuMY&X}{V524!y%r69<G<4=Q4Pi3K8hwWplG?(>c7?1m=rK7$vKZIBgwh?Ywean
zUrNlQ!?U9qHQWel`ilE71gn|?ps^S6>rn9~I)rWOYxTE5GxURoh8<U?D%XaKC*D%@
z$k8g%?fJp_`q!BWlQPiQ**V~;QNAv=frhaGb;g&>i!{mTCfPi;%~C@)gXYw^bqhiU
z&LT5h6AIgW;KzZJUjO}Qw$~w0HR?2?YTHeO8dR-k+yBYisfiM4X28RZ7Z02zZREvx
z2C{wQiadfl=hY4OnH~Gpz>x<4foGr#uzw((G*^k$Zu>60M-x)6<HKpCjEn*;%r^dI
zIgJEo(*K+ND<V!d1#GQzjnYi9L{9d!K(=(Tma6=C`d3m`xa<HW_<kn=%lY?^Ns&@m
z36jBV!_#k`mA!6HEYv0rBHbB(Hyr&MfB*-FC_isR1BRCd<8^pswoB`QH-zFitC<Rs
z0I?O-4IrVIGJ6>cy(-wW{eNPw(QfRIo`|3{iRrARDs7B1w{@YWLhLhG9D~5JBXq)F
z5;U`Aj<%qv7k**Z4kDNFAV=XQhJIDxWEFpW1BQHovx@V6Z@-_eRAG=`wL`MOEVCR}
zgl`5-<Z7~Gp!fEq9!&yUBtW;(s0gE*24N;<Jc^@Uaf4hoY>7TUUCud<!?VND-6hvV
z($WLNf)6=PxxduX`~E5OTmJ_2aJdc+^TY?dZRX@LYbw@TxR)kre%Kz1ZfZRXz+%<`
z6=^n#TL^_61BQvcUKu}Z#}!%A+A*=NC&fnK@oq<oGbH~N8an=uMstT^Ev1s8@v0_~
z+7tNo$3HLK;LUAa5bw^fwoQW|C9>tj{@=ln>@W}DB&gJQP8K+p&HdYR@Z{dSmHxoo
zJf3y@4t1KMLBJFyE<-!PPwJn)-3Ldc?(ccoBLn!X#Q7#WJHt{3M+OAg2enpZfnesB
ztlpFaB<Fh;D^2dbjdlLQu4N!#w7?2FIpNBPgSdfrv)Wp@t1DdTm!L;%Qm%er9jtv&
zv(~mO^qa8vn;{JvAJW7!kmMArR~*p%Ac>*eUH^0b&X)LzK^}g3PvuM#+!N(YpZJ-1
zZQl2BQmj_eO2&w2Yvb-~<c@dzpz_co?=e_46!1s<weY*@;l<HY@4pNW;4Xp*!A(x~
zPZ#n@X~7dXt5fO>)a^cKF;50>B^M$9_XCb+DDP71KW1}a?#9)iuX9iaj^0SJ!=BTt
z#%D9y`g8Ww)p>c{hDL><gtTbLghoUKZJPy8ji>ObW|Hd-ulz(#{%har4DXFlo|w{0
z{na28C5`8iFRB?z@cyderk_Ra%GPM9paNU{U+X;NtI~_BU3a{1=7ErVd_H9kBEmS_
zf9LQ7#xg`=#C?VTf3Pe=r>ZsC-!-P~(qDf=l-_Q!We)jApNXF6m+ABZ;Yz#?136g4
z-u70p7}_pb!dfE^POc{C^nQ4zB{zh`Z7FdA=r}gnobcb2x<Qog1jDnQoIbkiGYq&~
zktM;l7e*K^cr?kh{m~PC4*e9lfBh3mI&Y{1y7Z%=dba@_N9=cc`mnddw-Y}}k`Up4
z15rwBz5iUBY5@H04*Tia=;Bt^05=g{OP;m_YO_)It!T&;E#BDA(|99MBRO~6;_)Q4
zSvqMPS#aJJ8M6iT8Xs__=E5FoUw#B_40kyW_D8=K%~rAb+FeCD;PIH;FAX}sR1ErJ
zi{b3g%AmQIHUt=<I@<ANJLJ(bQsB*^Ww((G9hGQ&Y{Hh*gp1Gv1lpa<f)o0bDqjCF
zv6=~h$#=HoS@&Qm?c=1@(1~SyRR~N;ac^U6l^^!i{_Q*hb@6kzLlsc1iTs0+Jx*2A
zVqwNn+5RMI^Uf&)G&0+8PcR!{4gRrIjkdhw^^D?hdc<bNVpqNSl*RZ%9h>sP?Anr-
z`z1WhAT|L6Gk7c%^>^@g7oq1ybaT~TbIH=6B}PaN2>${zs{ar7F8lBH_CkTTNdY?7
z*T6tCC);IcU2=@meFA-jhHS`K9x`X|M?2K&1u!5fmx8UoY!bI7C^xE>B!{HyuBn0Q
zZI6I8zB(Keg2d)OjWZ^T=1f9XK58%!Ed%2)F-OhUnPkW?;!dI+^jovdQaV;QhAodo
zBXf;YHyqj++d89u=4OxQa&4C&e7u41IwoT$U7`yeDMAfTTdR*%FlQW>(F@&k4k-wz
z_Aq=I&mmq-(yA9--e$aJ>6^)B(k;d6f7xVgJhK=-G$|O`rv=Db8mw<0xHVU(g9Kb(
z{?m1)`+}345B4lYfwefNYYvS4L+m)o4^~0965F5L=$^I=>8@{|3EQQAH$W+sIiV>t
z$AUkwD)(#b$Z2pJfzKb#s1e3i&imE^7*8yMUL(*Azb1F`)&yXWxIcqdO~vlPP7e+Y
zBu9<lI->syFYM3cbmSVO{ZKz2X3y6cq+~gOzcrPB+cfc-hT-Mp;0^DGKDF#gV!;ko
zX>dG=If@9-KOI%AqPx9eDO|3Gk5T5sDE9Y(wB0O%EX!pm6FDkU$?J%-r*`gzTF}Ik
z^%YN7SueAb8kn)Nb7l$~#!~LFwD!HQUhDrI5UExsBvPTi%Wd|hQ<3a3#5g>sr>#1l
zVs_$_1>=KvU+I>T>{uiNGgTEdyc}tUUA{hk04LnSooi$R0INC|+s?p>h8b}1KQYV2
zS{wGCH@R}X%xo@uT&Rgk4(Qo-W6?ccjY5~@99>)AF~cC)?d;6kpvN%{H|&g=!J1=e
zD?SSNdo~#UX9W11?ijI!W0Jinq$EuU2?(CLwYf2<byJSKPM1=*RAlta*Q|eB%NPzc
z`#IZvaU$=x8;fKP(x~K<TmI)G&wi#RMdR@Z?kq)#9b@lwS|!J%=ZdwM`ix^Zixx&B
zzF)6^UJLOLnD+?Q8LN%a0;boT5qd`-nX@J2CTMQJMll|w!9Vtcdme+(XDaQT4)}uQ
zF%GEP6-J+1B5i(`@U85LLwC2^eGArxOWQyFYioOJ_GWBYKVDL@+E<gUL2t@2n*=8U
z<et;XP3|@vQ|}jCmd^4`)M~?ni1)(S%{K$Lq(<%IPOvy8G64>a!7o^Fl1eM=u!O|s
zrrWk4z(_@_PgIyGd@}-R+R=AmkEiNL(L+F;)fll1)-sYQ2ZKbUH#jO?DvU)NLEqiq
zr)gmN2;<KK0q!DD6+tB+D#cg@SSv-Li=SMG|6Dd;iV8|f((N5M+v(pI-3;L;+m7ES
z*`70P6x%g9Y9=P8KUa?XaoXA%mS(oIKr$0Zjya4^ey`hu221;agqzhTvLub5n3O8!
zBB*K&qw$6)e9#ef?o5aVaN1)ip?>~tX(Sa#91{`fwGCLo&KV!4;}h;v%<Ldzi_|Cz
zp0U2OK7cPDGQs39S1S9jTeUDo4>e8=epeAW3(4E$s|*k6q-()dY+`ayxHQZ1R%0h>
zVj>ZRwriSLYRKPW0gK)9cQk|;D^ZmsM$+9|CSJF9EI%n>$5cOaK<d_TMn5kJxVab^
z<tRIU+h1q8V~w!!t}9QD3`U;hh|L}8lKAa+0K?OETD_84F*KTcG2Vev*9^GNL5aJi
zOoYa~rnCl3v#NDpriT26y0}~_98sFiJkDPI<#x>707g>~ob1)X%>3|&nt_X-=~V`m
z9=+cFhP+kew|iW^v`84X_2hH=xW${g7Z)n|c1G<x-92?3`a4F<Kxx^++{6-|F4rTZ
zw--8>B2p@|1Jm|UvEj3@>trS$K|%@qKs-y|11?ZA!c~-~l+_(19~(k~ytv|lax&XE
z*U<G1eL%>_dy2tfZIq;SK2GMQ1kuSQ$}-+96EsN4wD_^7?eh2b2E;&djHv|q_8YUZ
zUOCfXD~SnRdh}YuaNhUslK%T?CT(TfEW*IZOn>l#twzx(qLUN&TXb5mJqmB_Atl?}
zIq_V_hFP9Nb-1tu4WQE$qPe2ZAQl3+tn22kS1A&UABe?NE@Wg>Lm)aB5ufzo-JsJM
zjJ|6sABd{;iY~-mB&$r=;0&a1C`p9LZJxH(9lkF}ZS2DQUkyUP^{J#xRyVHgJ`Ev5
zji3lko#hv1WVZN3+X!N(6q>mn(nq?mRXPi1!|~+E;MhRjnIR_JkwJo%E$?rX;adS#
zi2E9ff#)N(LsT(?uS6+MuLTU|@Od|H8!(gk`tuEE;(U#*(Z1Iskv+M4cHiU6JDfer
zgGk-WI+J&kNP-TOFtRZ>f<!?E{D>dvQvKylcg%$WT)GSK0QZ(SFH;tenCxIEK#0L~
zpW4N%qCCPt!?)yQIv+~FJ1i*6+`;)L*{m`F!x`a69asG)vI*~Vu;PbKARD~CV$sOt
zlBKAUc=Wg&b#nAszz^%ZzitQBs|XC)!vbBL;K}$vG!xrT6(zdi>h84SCY9ESL%7t>
zX3Z4(LD;4*XZ)|uDqdo`e6PMT8R9xO+OXH)2<Kj?_2graol{QmtFlC&!#q$Tc$P56
zOxbF!1=5r5tAF@m$_?(mp9YJ>fb#{r0oTgkzK5@Y($2}@o9wOHnULk9H&j~eIUJN?
z`QQcLf0D(-$FA434g&%PcZpS;ZWaU%Wr4QYyg(7lJ8uSu8SGi7{LcLI4B5sKZ2>dc
zzK?-LjDIj{!4>`-inzHkx?=|E9yAyDTjQMDMV<xs9Te-2Ez^|l{SHXRrT$<r+&z^_
z<+5hwJ;oi8mu)&7;VGj}iw3(d&d)gUDx8H;9nlr;QS5KAG?NSo*`gd=A>FrjqUYCH
z3x_&bCTa|X8S2Nh(&Ix1Z1OPzu9ew6GzR(HeiC=qSS0dSUUU`*^Y9{{-)D_aohnO=
z-D0t=nDz+bRENc0wsbHB%&CtVvf)@Xq-a|QDC@i`v)F+TisePF`2mQ%)P7!-Sp2{&
zCR6=xF+!={4{UIjy@AIb>P{5tVK)>-so0)KjLmg<!!4ki+|h%5Q3*uK+5RiKLKhA6
zpI$ImDyEZZ{3v`IuEY2_GNe1Y;ZJ-N`j7Qgm>2U165B9Ie{VxrE*i4gjZt|qGSOW^
z!wVQKB@rUC84=!X!0J4mS&OO}fh<iHPQ;wIPN7I@Pk>mC3V<3e@R;nkWhT@3pu9b2
zg6t++u-{K${oh;7)w?6&G|F-?50PW@#wskCv$UjAJ>kW?#b_Ng9><4*9+h{w+`+-y
z+YU4t7m!i=3KGEBt+#xsP=W!yr=K#SnfRCCAbr9C-1mK&4_bHdegrmz5h+1`7RU_;
zfEYmecl@N3O_bWQfLHc@$Nhe+?99X^bs)Ce-vy7v+zkdB@m^)cbS5UE68Szk*j%T=
z96vPh<*5$&a9YQtW2$mVT~>xFu@zJJ%Qd}2-&bE&ec=QaJfby{``oI5$vzL_X)9W9
z5CoLMG`fJ2P(nBSnX9ciJn8HI%XCG~q~=Jx#`&P(bm^X>b+xCK!DLd`_a95J!5uvV
z`@^c88ZH6~_F|c<s=<w>0O*Uh2zpfrO^NLA6UxjlG_b(!t!S`@;R4r^yc;w&J%pA>
zA%b;y1iU@J&z8W2v1K^t!TqWYMxRM;(c|L%EP{j+FWM}Q09{Xdas(IuWOIVTxp$g7
ze*dq668*D6Ma-@<YEK{Zt`<KXJ|@pAE7-GjG@!<3WyD$tO{FfMQ?pNNb)P%zGFm#K
zwzjtY9ovVA>1pz%rKLkXMQv@FtL-kDyH5{%+FCLY_8yGaz)dY9De$X%k{UH93X&%X
zD3FM2<PJF$DKTs4xdt3sSQJHVb;)`_HnP|ed|~{X+IkB~%0b}BhieR}4NriS@uHOB
zA!i1hmUWFZyic|MmVg49H17HXA=je2+mhKn+G`LeJie?qoRP<g%b`0FQIg+#s87kO
zjL|%h^r5;Slq0#u)>I-c3>~4`NCsjI9>HquxG7AiaSx!7_JH2JdM6{XKJRr<_fIyj
z90Nr|mh33NqwY?AC3M7>-e@U};X!F{aLole>O>yZNLC8k6TWMtQD12a#T`>x0EzC>
zhLrAz>)*B`6%;Q=1Z^vlY_#mDq-qy6d0k5JPbt!6e=Ao_Xr4VqyjFrdu9Fr@j<&%K
zH3W+Tb9wA$#*yGKZUiFuu`UTa-bnZzbs)o=mWqNTGszVS*B=T^;y~IuYY7_)=$Nhz
z-bgomcoNcUtU5+~@m4F!m`Sz;5)=mU`fiHfp7Bhk2a*p*=7j?{I#!rtK0*(07m`5E
z@J!0&JUd49eXrNeC;{{^8ZC(UX{%CcmE8$KX9qS&pHC>Fdx0|b%M=Vf#j(>>tYai|
zUG{eaQczQ(&T^#gPn@aQpBo21L2_giF|fO9rH`;i^D_C=5<B}!e*1#Enb=1c81oHF
zxbv%xcCuS4E5eZw?D)74k+s@zh#%ed3F3HkhhWS{jgerT^ebstI*K~uv!1`aSgyMy
zINOrP=Tn38ju2yRouLo9b{Uyk%;}r5V`KqQPGJaD=me@fC?`w&h3v<`=3739ROneL
znSZ3~^=ygPbtn}7nU)e4SUHW|?rJVS8`(3=TQAVuSrzfwYktMU6>yP)p%oeRbO2#_
zt55=pTvK9AbkO70_x1Bvys2@-v6VuLWHM~;wi8b#vVKCJ1Y-e5_(q=rg7uRCOsGhA
z*`s0szVRaWS&|arv(;7vjMn(8jGfq86hP?x;ei#VRJ#x@?FkdSp{bF?eqg_poNObJ
z<rOI;AMqL3<TqPkZeyx;x|I~SEj)2km}%&rmZl4Pr5u@y44ydHvrgva#K~?dukAl|
zC!vvs6soR>KD<l|cKJs$L<LokqiM4q?9*LsTawRJx`mUbFy?ara-?KzqKOWyxGCFu
z(I54l8<fH#d$oA6dv`+_3Fb?S_8Y-TCc_15uvafnB*m+GT}*K)Ia3D_$<c!oQs(oV
z)244C2n2l8HXke@3X_E7V3$J2lWG-$ZsSKuku&dnW5&>S&cT8#`ZioLFJG;9C&J(O
z6bY>j2ca&{##WelGkt>wT+X6Mzr8)<sbR@N#2ZN<c8X)W@WqYhgN)c|zZN+SuiVp|
zIfxfgfa6ot1d+G12&W>0>xuBsu#JXD_S`8(T!<&|i{g8?Yzj9vX{<2A_(j&6^dtk7
zUa}0<2|c~@rF323-CI3@vFdJtaIRWRG5@vPA)S+V{@R~6K(xl94(lprb&nr~Cek=9
zlzs|1jz9388uJi<$4T~ZMrXpY&oE(1RxexsaVuDbL6%DyXdrQMk4HXiV#w0Gk<8C;
z1{E@nYsQLlV>grMlsQUa034`0{R1xu<iIQ4$1|lOo=E;}ZbuceQF|t<7;bF(29mzT
z<GUP4y>tW^y%`YP*@<B=pW4xm-ERv=c1$9P7g?KjB#V>Qm;1G5oX2I<^~dw>o69eE
zN*AnPi*GJ>=?_Q-Fxcm>jKAz@3Xg}wNcpT&80Hp=q|R^4ZY*5_^`B(9*>l&Wy~J)?
zk=7MHRz$*)8A)LLh^kCjF5~%_QPyRACmVHc$*emWubWF7Lo!*L3z~(+zGgLzYOl*N
ztNd+~)J%mhk$>mG0dFE*h*rob7))toI-5RI2$ua^kB#uD8*GSTUZb#@Hp_&Jm!)AU
zVfEu}JNg~i^wBf%69<>n&^XBYs#|q?0D7$h`8g>_Sy!=YQr_R*45%#{clK3VZ`3{K
z3s6JH$0;jFd7kh>LTE17J1N=9Y}z5W;J*shw_|EFQqa@TMGbSj$15$;k=+jPpqiY4
z+=rhLC|rehlPA5zW=B0h@^d%0h)Z}>l_r`Ej;-cpp!20L2rU4RDG0~k?952Knrf=Z
zqACwjH@_94nG)I?48qUSW0Mm^Dp!;-VbegI*&D&gUFQb*zBOeq4WnZ6z}zqp!{=a<
ziB`|Kr493QXSe)@8wN1XJtFbzerc`L3^u6HQL;_bBlXGf&9UM`x<0<!ZO{Aa0IGVc
z%zYy(S-o`M@;6qQ`a`+1=Kf>_j9|d$sqdg<X+Z@nX;}!?7lS?v6z9@E2GwTPfE5r6
zKn=-~Z$eur*|`Zb{5%irmTa#;BQYYL6*bjkila#@*NG$Fkpp4%c3iu{q}egeR>z`r
z6Bg8CjK23*iq>e9BiR+OEHoO#SRJUbWAW3KIyM~I*w{d)1Y6K6I!tK20NGVGB?75#
z1_giYi>)pgo@W~gpecEUc3hJ-Erab^rqyP5Joui9fMC|#!Ug;QUfk7{_`gPmx;kQF
zzY$iITB0l&UUImH##^0G`ix!B$dkBQ2^2!45-wL6lky63k?)aauOX`L)E8O3{9-O3
zaS4(m2D+OhM<s=3vLkuff_z1eM0WrXD!Ng_dqx<Mj5a~sbD5CG8sjvhBo9LXOt|!z
zV=GGi{1SM6@8&An4#702(FYN;DzIQqMq3TvY5+LlSrLK<Y>r>!L`0p@gk0si3rPKg
z1|RIc{vGP^Rq19FCR9_ZU?IkQ`y@t}eoYNX%v!I^={ppt^B>=n{(o-GjR?$D7=2|;
zxUCOm%Sm9wozuwpS%C{4?NNBXpw|d)_spQ)!|;Fs!U|vwV=)!dZXxwH(5tJR0K5(t
zBGL|MCcVFzP1!FuxZ-el!5|dXB%Ce4j}LBLk+4b5aiCI?g6U@%;Nmfi3+|Y$xbV3v
zNZgSjHK1@oN`u3oyD&50S1yyQytCdie+RoCLGsK`*PZ-o7tP|8lrH4vXpe+Wmy8*f
zJ0JYBouGbzPX$-!Iv0h`jw1n*iN-^M6T=`LbEb^;TlAG%wJ1mRbgRld?y#bsd}zy`
zrbG5uREJ_)Lf_juinoSrk#AOFRgJ_+5@3+j{6ymVF+lA7cP+J6WSRZsh`Gi*agj7;
z!tq+ZhcW!2RmuHPeEp_)iYhUZfAu<}l1Cn>$gNb2;i7V6ItpeQDWQ2r9)}<B)NXod
zP~-o(SIS7UF8CJ|*+FL&7xOwaINrXAQG!Pi^al$G!Og3P`*7O}CG&fHr_9*dl~EkO
zp6x9s=UKJ3JX0(lLKw_MU#>dtB8`Xt@I2Jv!q81>SrDN`TtnC)V<i1DJ8?TiI0I_=
z3OwRA1kZmLWP|0~;112^k=VZ+!igUK$)jgN!IfG^$6gyqb%!F%3y?e01|?<m&_Y%U
zgt5&LR5<~IytjLyni9cw@VR?MYWSzml3<g%&IIhD3{q<mNAt1-7aN}>hL|)5PeK7j
zLcO71TgF?R$rHj#hVjsVxQyX^c^sSX{&)u^EW1r{u`O5Qe26t3F&}q7K(phO`IEH@
zP$lSp+|X4K_(PJhY*!p*-sx)6;{3GDHQ9B)+9EqS%7Za)X1d|`SjK7_JsxlM!vE~|
zX{NZHzGj%)4VoRKCM2zc0fI}ns&De_Y_9o?eY?R1Mgb$fe<3W9_$DC2T(y4kd^H@s
z#dF)#icB<yJBhc0p(Xw_l3ayTcjN=)WKNc>$Px5@YIA|p+Jk~TnTQsrHK_+FKIT<|
zh=FfhV5{c1sHQStJ}WAd!Hho;OfRhPA<<Y6OxEzk<0yXER-~R{5rI*{VetB<QyW{J
zCm#9h5sudmhmE8s8hSd$aNuaRSUcU__*t2hvGy+n?`9)165UpB>N*N;h5ha#8>Lp8
zZ(7vzz=u%3>3x4ME9_(=4sqW_<2bmGbo6n2FikmSUirg&VVHlp605R;=!mX&tZbBB
zPpC93_HG!vdl{$43V{x{Yf&9!w3pma0{~}tI}d%KG%oh$KnD5gEmA4H+Xdp70TYhw
z>=@Ea!q24ahXtad!aALBlplzFy<UD+dgRs8cw{CKWF9T4!`JR6)3-Qw@KcPa<n?tH
z(Ofx1M*6Y{Y(-<&7om((>#*R`m{1ColRY-Mg4!)pcw@N+JwAzt4oON#tD||v%EFt?
zsCwWfXt0f)febHQI<KavWWuBQF!ups`~^|FPlrJCoZRr$9_(@2bRJEmOaYj@vFCi|
zg23spG*~pZ{fPvIGJQ_jJ4NH*f7V||e<AX=zJiXAr=>DEQ%C=$4HSLi>7+ws&)(5D
ziX69Q!NMQMCLk#RPHK!(vNrGqx+~(ed!Sl>_!s7PUqWnnV!<0@8-m~b%_*OJlcu&S
ztzPd$cB}~SOWVI4u$mHY`*g{>hAdT_7B*H7*7~&efa<BoL|$}LxMD?tqViMc^Ta;e
znI1XSvCXR>54#&Kw3tvNqX6MrUu9k~K)UHGsDGcaAOnf{eN^#CD09gHeXlzI)_2t|
z^Y|+PLU*dAjN&8QaJ0N^J~%l7JbQG!Xc%Onctv^5s(K3?Kt9vkI#*EpPx_Zl)jzVx
zf!?XUNOP7s;{%!tjUGsx;f;U+NYW}(<0fLM5_I%En3~~&tQm1W;<3?gK^6MQ%!M4-
zsSKxtyFJxJLCrrw7FZ?}M>&w~fwPS20`91=96SBOEbE;K;1=4@vw%SvnKV{(z;KO(
z5$)w>1}9M=A=*3ol<;}JrCk<ny4<~K$XO|~IPD*qT7wDrOb-W8vg<37p3E730jYJQ
z{hOY@Ycvam17B6VV&E=(F(8lV$Cy0s-0zhwThK#EMf8*vG)2R>IAC|O$Lt(;{@BJV
z#^SrLb!h4hj%W`_mSxoiF(KpF&l&gtqhxFnmEp73eBMx_i;~5;3pt%0aL?-(fZZ6q
z3?J!-pwg^DNVK>3LbEk+FhWMab6sBTg2}Pq!be1WC1sU=c{=ggdD$M_ctb58z$j`N
z1ABPcN)EbsMk}!IT~B{xT}+*;AG+y6+XK5sYC~-z39Jg+3W>?Jx1u6IM^6zyc)BlS
z710U(>9SkoC{<(1rhnKwm9>;%eU=bDC(ag_49#67nS&nzDBP?@qos}ftaOsY0@<XR
zyFksYF{<vGN8G8Z?IsGwFQJ(dne6fjeDaGhhT_D<aP4gBv{Gop!6PdeoZkZHT}JjQ
zOMXKqPZe+#V-5(M(G#?de$7|V2y*G|p~B^#(qc=mU@LG=amjDXKN<a+Nk(qHZDHJd
z!FYinFi@^6$_hQMvS#$TV~xb&!uHG=+8xFG?X=^BVD6K`I5vRvtoktG7klk^{~hg>
zLeKOU>ZLJnN>*Ob#0Gu8=fzMC!Lw1*9jt&>%aDl;75HjXtWFT!p`O{z^O{o{+h`TR
zGL^b$qZ(z=Tsbpc3-r5#2T>SDo1bmzGOO|C@YuWX?`NQO34R?oR}S?l_FM?FOBN3i
z`6|IbskLv$kVO-HTi!MgnBai7TAvah`c{`+NN(rrzPHy!H`HR0s6A|PbI1y35o<Dw
zLbh7FVv_2MuHa688C-r(1TwNewRm;Nnm$_g_m1H4BDVYD{$wUkYC)ZUY>jkvqB#%#
zU4$N-*^jS!+>x}msRO6!-ek7Ja<R=bvO5Qc<<bAKxhM)$IB05bPqx1J!yP?Rm-M;1
z3%(AlqVfkY*l!%l(*oX?R&>*252<0%#b~w9+j#PNu>4*_DeDn)FtgvQW)T!cvvvD5
zjF*V4IlU<9;rPrcjf3+mygLXa{k9@5O$~G>qXSXS?cs`St}X!^f6LuJvK3*~{tC-7
zP;doUb4vP#i3@>k({P>3kiQnyLgg4F&7quBf=)9$mBkV<Uc+C01)f;Xl+mMHIiRXO
zooyWRMTKaYmGKId6Ja~N4rj&BsF;wSk06;Od4Thlod4*ah=L-du!RCCDbfFxg`DUo
z-AQvDoRNhkC>T5T+!a>j%@!@H_(Q1dVK_~Y&h4FlxGe(1{@=Lc1@<N^#Pn-@)Nk3U
z*}{sla?vb*e0KVCzk`WpqB2656m$arrPH;Gjg&on=+(wYE^rqnkVf$Woj0bJa<2YV
zzIUEV*a-eihqQ)}WiAu#7NDjjHY?M3Ej^JOWw49kn!xxO?acSspv*!A+|H{3_SvQ=
z0y>MwUYQgRtIbEyATqr=zzW2q20PL<g6v>)h<$8cR9#XPj3%~o?>bnPz1x@^=>o5w
zx(6yAIjye`3q5tYSeE!wvY9C{OwSFgQ89*(B`ucQV^b;Gk?UUC{i&SiFdQ7N%AZ6L
z>1}wHtcp7O8D-R@LBI&UfJ`bIa<+1C-^m4)5gNw+ZBvBgD5X$@O9Yb=31&_HT^WCz
zh~k5#n;6TEUTCbMUqTWTv+}-TEK<njN!Kde+M?Em2>&e^aQOJ`#jXP=MoI&ohL!}z
zkG{C5iyRi)!&xsHAI0!~Sv4hy47WkM2pIdNXS88@OO~gA!Q1BE?xKRu+~L3sc=?PV
z-22blb{$U@%W@R6=-rCj;Yw5Q@axvi;XdD@<fu@%-Obq?S>T-9$-}2SkrbVvV@5Tj
z)sQ+n=!RLz*XUn&v4|ZsCBLkD-r8p=RtJZ9d(#8O)u=24JT{>5iE;DqI+`~e^xgdc
zNu!b1{g(rV3yFV|Bfe~lX2yA0`Q!D-r>*n@3PsOuC|Z;J=N~r`FABMlYa(#=W)qgE
z$K;0JM=9U6+*&x66p}0RCmNdmrX$b9?b0tn>9sbHB#x!_YD<J+b&lfuOSj6S^y33t
z6DhH}Dl@~M@KrR6<du}Bhr-yV{`qlT2Bhq~;X@Bima!if<n?87la1Eh2r+qq6`)+Y
zY{>f!arh1(=Uysxs|_TyJUG4QlUzoHV)_Gn6OGXG>qIpO2g{(>C@_kuy#WETJcVS%
zL;`Hk9W`%t;4Jr4ipIOYy{0K8ULq18|2z*4CJSO!Z7gYHO=`CxLdn~DPYi^FjKq;3
z8xS={RaBdR7XozwwK{o$<BT^m9VMNzc!N=2SBJP-P!a293kr6D9LwVd(PNjjK5#-C
z|I4v|5W;ke4^M4yz~9f_6sDJVs(K%pb?PfcFLs$tLLp>oK>P^>?*m!;zG!o;c3|&M
zwf!EIgc>L&SutD6f3CKI6v4yarZ_Cful7Cjf3uAMVI;6hNlq@fo;0THXu#)ZwcVSE
zAyLVPAXgMqS5^GH<YEp$X0sY80tNx6_dPGqGRw{geo3TlJZ(Vreqq?lQkQz)br^-}
zj)+~YQD?IR<u{rT)F}X)T-Ol(ErPyu%duzDBl!^bZwI1Sk9x^{_ea>QYQ4S&X6S>R
zF-b#LH{0dy+uo=O>6qrAv5{3>Q|aJVKu}c(o6J2eG$vZuO$NMuM!^4(B&dc!YYibN
z$_u!f??zZfozZ9mR+K{vPg1HPKSIQl634lCSR6OI=Si$CnM8b5y}#Jg)ahygL#*2s
zQJXYo>|jK=$C^hSt5is?h%NJSN`IjUM(LAa|Fguf@p=P_TDGw?vYZ{2CSsT0gZSZ(
z*|o+BCi9~vCjU0vdbm=heNC<bq$!WG<nOUOWdw@SG3nX`s0Uh}g72H#T_2Col(~O)
zd2oe6X<Xb*Eqz7^mYW^-zYNBb)a@^5ahr@wqnCa24e>U~WrFgka}6vY^GyPoym{um
zQu}h*e;lj)#DtaLS`68~8V%%FMX#~R3xX{+PXe9P35BnWwT%HmO)PJz_x4A_%3f8r
zeghCKg0i~s-W`oW&s`8VwzDI+t`L|SE`lT31qM`T0p~H>MDfWD`D^;EsS(Fb3Mv~e
z!8RhSx^A!eoyMlHMMqW}TUhko?}X2vc!7zOfbrJ2S=$BpWN_;}Gwq*3l1{~8Yp4x)
zYkl+UUwmlhlG0K_vOCCGIvxdTTJ+VMUcoh)s+`jI#ncS?dQ$5y4*t|#M8%m&jT`+^
zIWdjYVx@~G`}Ze|futC{c_}<5uuXkSzd4Z5kiu6jykQBpF`B8-T0c+OgoRlcZ6*vJ
z7S)7hHR##K6KAVjJ)f$^ZKXUsxK&hCW;@*vNMrQCIe5T;3$ig+%Pw2Mw>GQs#%T)Y
ziUObx*<g2#Ec?54n_TSjnE8>dvHk77*C-CLIu4$W>n^y~i%oXfIC?{Mn=iW9SCsvg
zzvF7>t?$|c`mNk6D~%_M*HF#Pxt#3m{emk|S!K9;r~9Fm`LgWamvy{ekwL;#lTXJE
zOWKHVCm&ZGGa+IGH3k8lx9~y9Bg|G0jloD$5~a^1UJnStkxQUf8OOjnAxMnX&m#dR
zUzAn{emLhLLQ1_MiTUW-7qn)@iL(_A=-E5o(T!eQoSe{V0{Z%g;v0=97c$)`G$aJf
z(wcS`^FTVA61l9A$9p=Iny?yvkND`bjMq?8m4v)^F#gR03QjH75l@ZN@c5U}@-enV
zgp{ChYsjYpxfJO%th!S0pIf-MPhWVVg~`25dVke5Hu|=ULEf5E`l2%A^ZxN7*)*%x
zx-<usd8;jo3k0X=p~K>F_Y1CoZsD4nN(uujF^AV)$~^YP?oqzU+#jPrXBkw~+Su{9
zG+~Q3^Q6_GXcJP=iRHMOvZ9iU{P_d&&)xtM<~`Di3M4X<l|Z}+sP%Ia11U~Xp#|F?
zD4@N7^bo7_6IhWF5OUyIEC{4+G(;|3k-)OvWVC(s$pi@v?f;|WJo@}iSQLq$Ojma0
zCcF^<d06T+lJuECDDe`jx+soeit}(~9THkHb0anjOg8~cG-r+r-e?I=rt_ORVR60C
zfvBhwPGaN<li!AMd#fiXcNbCgNHXu*m;dx1)32bInt=@LG7xZhVH_43r~DPGLgNq{
zg;9j!_A8PXYY%`O1dP*}1%w850J~1+oUjx!veNvl%>vLCM5K7bpsO1)s^7AXcy2@#
z)dhF@2crcg*_6n8b=RzLcCfTrf$6jAjXO?Ix1(CFd<F6ky9ijXU!-^GUsU$xlD+$h
zs>*md5kD6ON=ue72Ob#aBPL|pDa1?c@K9iwa-OMCxE%WM>6{`Gf(@S-`_kVZ@$jLD
ziWS5pogn_txBmJrl8cQdU+v${DsP<u@^Q4y*K2|3KmG!5=F3w-<7$M=#t6IDCm7K=
z-Ww;+{F*8|&1gjGk@<1E(_`TB?w-Czrm9Jv-sN%<-Yhn|f8!v7N#lT#yw6$1WMKw1
zt(ToHkRBy68JBCh4NRO>&bB^97J`)PPNSNkmGdC}=C^!Q^Nx*ie3$e#w}(xLv?*@=
z-~_Nqy!QUQ8XQD>1fMkE$Q(wjD%th^>CM!2Acu!-J;EMgG?(a0{q=5?$)>}=_NpW*
z52s5Y1PL~F+gs!CRd+W5%{kAKv=A`~3NtF^nSkb_v$s>Ls>niOphih3Vg8W)`xTi~
z?#F=#Dev3;Ww`ZhFLBh%NjO|K$Sr45yZbAYz+kex?|KkS<ErrXGvPub#0SjN8@-%n
zWIVj6ANEfD(<(s}Le2qEpVwlWeIri!`QOv=uvdou&L>4><$!o(7O4FkWhEuxAMQ*f
zCX+BKvH0Xp#`E=#h`fBvpIpPiP#}0b?m)8N$)R4~TrKQRV%0;Mt5k&tcUv*)o>#y!
zK^1FXuS8>v^Uh-WHt5~1NP{0)ZSMEvo12^Jo)<C0#RoBi%Bq7u#Vg{GsXZie0mnj3
z<X~a1%&QJx3`UVGlBc`<OTQI9$5^qM48KYludzhsn0{{i(|&RXj06HfCWjr4#WX5F
z=zy8+FBa-tgR3oNXb9fW2UIL!r4YUNkJbO(JTmngY|<aZFhKkNeuRd+?>sv6U$_6S
zhOaqyJXnXwi!a~aC*>@b<NqNY{ZIS*kl+srWmQsAA_@iscP=g$mbl^#hwo5O&`xfZ
zCDvNYt?}{Cd%V^!fx<%LwI-4@%dv?Gp))<Km%s=IlaY#@HWb4D{jDGCdxmPhN)xb`
zchUBbqO@ASZ-}n=-9lG0xktxYZ6I&)sIa(DhkJT&Gx`*ikNVH&Xb#n2zUT_Hr8SY=
znSM}eC;0gMUcMPCdie^!B)=0xNlA@+E24+9yIOjaV$o`d{=eNM$1xK%St9gAL|{HT
z<k{|jgPOWnxYx|~pN_2|Cu;yL&?yOOzW)Behet+%%6~w4U4A>6WAWE3EhtWq#U>^O
zMrQKj$Sdkb<5}CX)~4ZsA02gHTTqeF1TE&8N?Mr((d%Ry<R|(igk0xKE1}o3!f9C4
zvPe#hFP#5o0^IF7xL-7-Wff!JlhDvzFf!g^_W1j6)?im*{2vQ{Is=EuRKK{g)GXKe
ze3`N7%1=ngc=s{`9Bgs--{S$N^Brb&=L;+qmIiiGng~3iA8Mm!vmlF@`=|m5_u(rU
zu7ERiNVPzJ!TCz8=5#=0BrN9;RIA4coFqztwvseBHr<1Mu5BPczPCaeQqaC8;q4Y&
zXE<$eemrcqhu%m<sA01*A?t7v;ZW5eN_tK~$jm-Ki6}Ag@Mh^5KRSyyYGC9#H&lKB
z9p~tOhSSe*`J(s;nZQ>{z=)5WquDJe%m<&+Vh#AtYLHZP>OUL<%+WrwRsWszXJv~`
zTb*Za3WbFggNqYNzW&oWr7(~Rbuc?I4tq9F=7tw52xm!FDDjdn+zrNd)ni*Xg!$k_
z4}q%-67SD1vfRq2X*rtD_zDw$e@;k46Sbdcc2*tKhzc<HEhwH%xO?S(Xx3^tyjp$J
z<BBo_2G#n-4HiH#IXHTy+L+J_IQdU;*#8c_`wo$)O+D*a76LQqau_7+H!Obnntq-d
zIB_1D1Ar5M`{SuFoTc@{g<)`LEaMGnVVV16wpf${)~K}IEf*)|Fnm{TRpBofElW=4
z^YD+EuhJwWLe}D6I^1aiGY1W(Op;@xBzp%WxEl>no*%wZ5fs82`F?5o^vu0LQs%>S
z?PTc!X~D>WgQh|{y1t42hOzOiq${N&)!ZNiAN=`}iYVL;4ziOz|2u7e`q@V!kihwC
zeb2xG6o#|3oKh^R5@^{*!+*IR*ba1Y-1O;J(LZK!9-_s~Pl^=8SvwbO7{1{X`@BNa
zFgd#N-Ny@}yQE8lypqvr9^1f?vJm5(TlFp{de#ZxU9>nMYkMq2AV)kZ7rFMv#TbGl
z<~99lWj!6ge18uod?qCD^>+1oLv$yyJA1b+Y%lslA#tPGi2vK4!k0^We8O^|+K`D(
zyXzGUZ%-HSaAlf{qh`I+tymwQB&BgWQSw5!wHNv@RQ-9wY%K7yW}FDxqq%?(cu6=I
zK{U2fWx#=gCI!L?J$bAB2NW*&lP_+{eE=TA?tQO$sYpO3KKe9HRBT1a4OJ8PIvtyW
zVrEQwI`SY{p&vtLB|JXc9oHSJfVESvvIW#ixA$D1AkJpK+2L4PpLH)GXR~VV%29;)
z_5WSxyonG$qysV$B_*i}qNIM`V4uy+_WJn-+hdc?SzlPO&iDk2K*SL1OrR-iM-h^3
z;0Cv!v1YSAY+wqf&-h90V4ap{N1{kX?+=HVNh*+NZVbZHMZ(T0N<e8Z`(hC1+AOJx
z&nl)EM>&WMT%~eP!t1VF=MU|UnI%2qQ_Kj21UIofEEbk2Zbu%=LTqwFrRQKN$h60R
zyd&(Uuc(=sNgoVUv8+1YuomJD=XS&acd05b=>4CSdk4aWDE^3|CN8RAOF?Ic5c(^K
zv7&NR+HYX5enAe~K$Sf%&V+y8NI#k2aGudz^0!hz)^9=*2{;pYw%xQCdSj#RM@UfC
zu0S=4oBDQ`<mg85l584o;y{fmvG|+bBPclMVFo%Ob%FOe$^<Bra9Fk{cQ2^XacQN4
ztm0cb0U2^AHyN+FyO7A7i9@}^_bNn4P=)_&nep+IhXhnqRDLlr2tRX<2>KO9u$7Xo
zEU3M>{Dm$s_3!^|p9t0)&1gX%Ttt}`iObS?ZR!4$qLHb3BR}=-wLcWUxa%2kf+Ddb
zg$1SW$C~4z&{u@k|Fdr%AH;kGcnE=-<$~KP12X*}Ult{85kCV**8Y)eAA`tR<Te!i
zlMx-pJkAw*ASpy&LiRX4Hv|U?87W>uH3>=*|M|`>$Ls^x<Rf;frTyuS2Rl5Gm%+AK
z=k;se2+l!+P2P74`|!66sheKkKrd|^f}6cD!8W<dPmw^Y%L8(KM1%cBuX|#c@HZKl
zALgnfkhIwLj{oND$ZD-SPP6S=sO2?^SRO1cFJ}*gR*Ut>v^PYYG6VEi0?P9-a(3`>
zn3tgsjBeIO%qa2PFR&WSlIcw0;8JY6-v#!&n_7z|VEc=31O~g`BCqdRr(C!7qt6?N
zFT0rRwi|xdS{wr$Q6$hsDyF+Het4_h)->=s9=<)2Y`qZ+?}$2Y2f0zH-}LT8u6BD;
zm7@@We0+ZIJ5KT-_*reCh4V_<MOlHB?RvBEsucZO=D5tFKZcjPF;wn!qVY7_^#42A
z%U2-kZb8t8sUq2Ev6avcqP&rpQ|+bGc26U`3wu=-shA}wE*L+M%m?)J)y^h@#x$)C
zeQZmbcmno|X@n7aeubb{4xZ5%2n&S$C?--U^d0OTy!YxY*V0Vn<#q3I;NT&2*ZwNN
z=pOQw0x+4F{RcT4ZC(<v2H-%4>#w+T!DR8Foy6|eUmA0@ddbNO<>9d-Bh))Yxz~z)
zv0!l7j4|EHtYN4#n%3qGr#Af*6KbiwwD=|IjQ%kYzgqi^K&Fvf{Y3zQ^~G~z-&?=~
z?-M^9%T&Nv9s`y9bQw$&C&Q5%^7;ubsK15*kcbgp$^dYFmI=D8=VV%*s}kpz-^x~|
z?f@^HQOf8wLPc$5J4T!UzL*5!7*Mp>FGYy-kPQg<b0gnj8awNOIh`MS)(F-2CoWGf
zeSoSHMgWVoK$0EJu%BuICO;`qT&VA#8GysUIy+T{!8>P+?yZ%aG^gu<RY#H1iouUI
zqQDP`pCjOh;TNs4D(I{2Y`+E0euRJ!(-S`Wb!XHeuQKoR8rT@eZ++Jx)H)6c!=wF$
zRR=dbd|U0P57qV2$S5JU5$KL-`XF*yin~7D3->r^mOoINUK$a#fiw!!(EWE^7z#RS
z5y{mPb;g-w&C}XJc_RpY(#bKOFd>4r(<qTP6i_<>G;s&*NCR5p21oHMX0r;QDHY+e
zrq8*L99=oU5ISlXQInzwbczZ?rlsuHF|i+#GOl)m)v4O8l+XxhiOGUm1+NHM0jM<z
z>W*~C>Ge&!uBrYk_a1v+eM4?YYEce<XtdWFFsV0<XxDv^#0!xXxt#4DG7+}wM_Ny^
zz&h$CYRz)Vvhnm{h~bpIpl%9|^us_*Qv{QW30zz`;Jc;46qQEqk~U@)d$4heFa32P
z+yljpg|_q=T`CE{v9O;ngXmhZQiHgqKyW#mfIO0fQtOXVv}G4|QTqHoPm5A_w6I7n
zq7W;2F>O?nQ|nB@#%u8Ux>j*-usIp81VAiDoJ_7SYkI#e#-%?lgD{=7AoTESg1^Ix
zIG^i&4I1KBTR9B`{OQ_V`eK!Hk{URcfLm=|1*;&x7RBMg3KTsOYKWp}u5k%LwZ5{w
z(g<uZmo^JvXwBe&)ytj~_1od1?fSr)cVNckx1<1Xnd-lrBB(Xq@uFNJ15DS0sJrZ<
zu2U`^e4JUIcDh3p@@J03Z3yj7NDE5MVDWIs1$9!^h<!=u^RZ#NLvi$sx#X>&tJla$
zd^PkbGz<8}Z@T8cz>QV`JEf1+@e_f@$XE6kgi?>*P0ZQsGtoMi4<EyA#A)>fbv~Nm
z>Tv!t*26bE7*KC4ofP(J#vQInjSNglK|-DyNd)nn8xe%&QL71%;sNP=gbQh2lf2Mm
zi!I*qwdBD#@TP`n(#*00tXSPRYy+mN?OL(P`)Ppf(i$;Y-kU+r9P2FKZ3@v;gtlu5
zqN{PDCJ{{QW<o$nM2T7D;8~(^0|EcM8=J6VngPZA(p4lbS(*Ol5voM-6CyhHY{6EX
zfqBc3<ZtJ<9da6bBYnbM3^r&c1>Ri*!|qnX_~tPiJ|TH{-ayF}%1G~q5Kpuk(YGN_
zBreyQUJ8u<q85bA_gaAWDmup8u|m(R-tY`P{pvj5437BSjBj9%A$#?nd&KZ^?Ab{h
z=BJsfFd9n?!M}Y#t<CX613G}Xa|h7-4hy2MF`*YK*rCcRHgzT!igK;8{N_ac*CXZH
zuVz<$rp+m9rei7e;Z(NeK(AHGrhdOrnM@a3h-Z$a)Ip<AC7nzd4Ou*|9S=mxPcJxS
zgm)qNumHpI4BHwU`0M*~JGNTH$ME*m7HbyR#qnDABW~7&1PL!)ELdxbzA|IVYJmtp
zzXKzyv<(nHHTHoJTfg>J*U?eype+s#k(A<`yEn|`?Jr;rF*2F79ymTaBYXWlaLQB;
z5hEjN)Wr_KN%ok2Wnio)gx$p--k11v^#)grO15}L+Yho;=ly<x`bb?%WcF#Bm{&e0
zJF*Iv;ism7(?2x1x3A=KJzv1xpnkz(0vFoc!n}N?P=8OUXh!gXB87A{G=&`;9fx{$
zPE)e7WXmfm%pp!ssOag*{{yjo_0ek8hX1sO3i<LWjC4}7mD*lLig$7))3~QjqQyB9
z?OsH@vuh?xbD&Ge#uZmF+K4m6_6#c{x7TzJxPeN^OxqVW(UvC`BS46Ur$3M~;Ufa;
z!w5A$SF{=jSUHXEwUjL;Nff)(5{7)nkNp6ljjGh>WLY92FDQlH=sl)}vsR1wZs{k<
z0GI2rEPa2h)K4Q44lT*fjgUaC$jZ?N%%U^;Nk}&QtnTTELL^*Bk3UUgt1?`Xb_yNl
zZm$pDaLKYf;3$}ac$Kssl6XH5<-M98$hV4f2#<j2p;lS^)T39Wu*(a=g8gyZFjR%9
zmGt7!V<{lK7N96baxgO<$YheA;FrmCRyF|>duLv1`|hl<hwm38c%CvuYjA;uJv_qe
z>(PZHG+}T}zN*{Md8SLTP?uAqRfpKfE_Sg0T27(!#KhzAYsjksPjPphC7@>F_!1Zi
z>lZPFQL3i#VljG|MsmC^okVb6!u6jnNMspn7w&9eV~1bou8WT=el7}9hKBj0&pYCR
zoVdmKvjj2dCd%_U$c`-X!ej}!>RfTW_ugXK;tWOzQ&$E;_@*dIr%l<7SM9;UhlqeT
z84iKS{3~SUP93c~))W!l>N9ce6CKhdU}1j*II?7X3@M#C9z*keL4J%|DUE#?!}alG
zQq`l_Z0n8qUz#Hp{tPG)F64)!8^q~dkn>v>xK!qlq}-ZMq`}!FyNmH^2-ES<_!(%)
zE9dQTPcZ)v!$3U0f1)>PB8Z_;8xoaYNcw2063<0zX+1bb(wm&u$m`7>#Cg^MQc&4I
zO4I$xo6qTFle-03aygV9EhjsMIFqTDqDaZREkw<_A4#EADe~G<qGs$$g7fQ0`pcc9
z!_eI{E|<8d)4KOKju3tknP{g+&PP>{7qlFDF1$vnsg%CiFoM`jIYmknuT$C9A@7o_
zNk!r-(nh}@VQTrFG2O|!yD?0*$mQkkWYLuf^7ZmmB4_MQQY!=`^~H8#(|bL8d_+r-
zqd^%&K=0|vrk<qRk_T*fe&kE?=1UIi{ws3u;6ah=zXy-D1OL1|AY@+q=HzSweY(Ee
zh}+R{a$vR#d7Vp0__1NceWx#tQAn)invrl?pN@1lB(28mB{e(&dA7PA>ALCzsZF{|
ztgU*HINJPGBs?c=6}z%Jdub07vhFrhXUfRhzMaU@dokqRJS#H!Ts#fqlLdAl_7kpA
zH`T9$9LS}J6tdjah%9+r$cDwfK0yM7P9e$nNGp>rBtztFWUsp_nSLXVJY3>Rnp=$|
zTej~aFCy|pN54}Md7Icfb|(Q@0#a9+O73_^kc68Hh@<B^Qot3E_&e)}d9MYefz}CI
z1(1WUQwgssiq+@K??=))mr8n=S`kKi@6NO&y5kR%S{{#hZ}lWL^RAP!=sU#5wm(Ur
zN~IwD1~E12#<rn@<YmbCqh8d-AuD^^lD+<gB>T}C(sR;2Qb9xW15c73gO=0!6G^BE
zNlt!9CH(4S(p|@d1kkp{dxJBv9(9o(C!{X%DpAsQC0W$NsVXK<9$q1|DHqd(8#iu{
zva%nohCd3Mjy@#f&ePuwZay|GnTFxRhhhBUt;nqtg|nz($^dP={*Z<64^eRFU<5}C
zGsMMZ;%T@f2KQ=B&lf;mUS8PiR@TJOVMC}}8g@3V5Fek3M;EW6<McIXEeB|um_bEd
z1*Ms1;Y<2sW*;MZQcKL8VTr4EqOp3Z2ZDmaQ5p3P7W3~wC+Y-pD~b@Q+Zw&JG@&6~
zi(`k5;@x{6NVb~*vu4aih445W$jYnHEB}a;43JkUiA8q;;I+mc*RNf|%-$U^`IxUL
zhLBrF55acw4p?eQK|#|Dp50qx%i%!G+&CAi64G#9xfr#+50R8#3mF>^4DYA`6+LUH
znOk8(Hv`D%SU|U^0I4)BiDoS@+{2A62amD6;s3-7x6fUJ)2ubnl?4oXPJ~5$D7;IG
zA*XJI(E~csvlL-%03^gF;>e{BFt=%m;CDVK)-*u+%Ueh*=0Q?-Fg&c9LqXRHt@ufZ
z<<cjlBm+4mHOSHjpx#UibziPx|6OkcCzPUpzn<*9iTMTOe`4Q8jU48Qc}Jg#0!0|O
z!dWE~!4)+~`BIE7j$NT%RfC$ESVYuVptCNOKOzNrIp*C4frN}DM)#*pGc;hW&&QXr
z2%NZ?hy`1wpqT_<X=Mr-S$PEBK80qU>tU}c3AMIv7-^i1GoQ6FePBz3#?`_1!&fX?
zJqI5iJ%k`G91Y#OK|@v<3PqtfaOp1m{6E98&kU$E*=~VLWkR``=rvFyQqtfF>QE}F
zg}1pWm}OdxQ|FJMyPhS^g*BP7!pp&y<Dam0_flv#lZCoLXY@5l!u6OISTf0uMo`7f
zMSbz~%43?Q6pXu%hOsKp*1{Bq9lODyg**&w+Jl>r&XfWq^(-)|cRN5*la_}Op51zY
z)Auv5blZ3+K@NS_%|zbQo5(8TLb06(dYULf#l#v~+%zQS$KgsqIohaH;Qf0)$Z9L&
z>CM-WpcT4}>qr=>NWjRZBkD4vP)T#9BqM=l8d~%?&_Y8SpRXUr?RS2NYiNVM);jF%
ziTMSP3LIQN3&VyD$JklRktm#*^^K9^dcg0)X9T<oMAvQ|;L@=JqP}DyASeqxdv>HT
z_>fajfE4q7MphBshKz@zlmt3;GDUiHG+tl34BgS|(M}0aF)&4QZ8cQa`r%oQ85WLW
z>Wms@&F_jkSKeayj9Ezd5&;ywL}iy#=u&zU@eRP|>N51RG=i3@46g0nf;S&NpweIr
zoEqPZGVr)m>{Wjl@n(>rbu_<(2hW4=5P5MFUfjKk<-?uPcm8!z3?Z-2ABL9uHaP1^
zKwjMlBYWB6_`b{VShfn<(h@KqIU8z8-U!XEgp7$TCiF9cl(G%<J7{Cffc8|K8^K(r
z0ZCLirR18SyZdM;&^ps=(lBJbdW3uD&ckrrdYCHEcCo_<^wvnh<@kKa>zHD+dvBTp
z8Q8W}!q?a|+`D!k+UENB^8P(isTp1t@EFnA4OEBNV@!7=NGh4Yym=|2vzRtO9@26u
z?5MiDk|tye-{au*C-4vd3P-nz-`=E&`Qt-va`D@Yza26yvE$fPJbwHHcaCp`&QBJ8
z7(BW+LM|P_gER|tZvoi1Z-an0cM+>#fj+Hh1YVOFfK-5(4{8~Bd_HZI3A?I}tenV9
zmXL%b)zgF?V^+Iqgjpe{uBsYJo?{{D^AuMfy@kV&5$N7g8rQF1hGE-&G?omGz4gQ5
zp4y22cn94b+9R+;cs_%SWhY2w1tahKX0DVH#3TYPR?O=tIp}qpiG<_?L_VB_D?3jL
zqlgd)0BPx_;xAxV{%PFkmF5ysG!mcrDw!wxNRBFf<^yHn{CVo8k=eUq%7L+rD9jR_
zGSnbq{z@@7&mu`13Mtx`p_!#WQIWBmRy9yhO<g6bit~_~mW0SJ!0rd<V5ral0k`qv
zJbIo49|9iD0?k7sinh}b_UR5<)#l;)MmN|@JS{pR=KrN-S6T-i<KdI%IJ3k<6xfI|
z`gGI9(^GqpDmMV?a!MGdmyZ3H-ay{ICm1`R$@k^-LGqeBQ(6yr^cho`VC{7ZvuPOv
zD-%sNFO!v)LUmO=TwJ;${Ph!jNX*3W5!2BS=ZouJk#OzeL}OXOKk*YfYc$~f#d$F6
zHU&*>CSw~@BzzKnH}Q>(Xb2?qV5~vi(#_Ft?h)i>CE?sm73@FxRv3qY=8-UR-o(HM
z%_Gw+G*$x%X&HKZ%=~u(K37!NxjcF=A~~dP33?x_q%*5viGm4V0!;PdlO}bFrX@-1
z6thGw_>FanrY$KzWoZRXw+00{nMg^DL#0X&oH;ZVocekiRaCgl&drjv9<Zk|dPt~?
z92Z{1{WG&rmyw7S15GjeY7`qT<`*ELiWR#r;K`H6xOd?&On>qw-?3Leq&&TdGvPWI
zN$t+ImNrNZxQkCYQncfvOk*^y2vq+!2(=@ReOAmO4!j@Q17@2LR{1t*4<xBvaBFLU
z_PwDI;fKp-Z^LHZY`FK(#_dZdQG;G+PCH;L@4UyJDeaLF`U(T=^l>LmlmLUi8C0v{
zkn)q&27*2p!^MV~Fd_lHPD2qK6^FRM-S9fG8~NW=DVrrJnWhzi38S^6i4JG>8|Se)
zoQrx^e0ktgMbID;Ww!kgRs?pyh=pwrWNBJ_TF<`KDz@&kZHA}~VBoX+r|?l;R)pHJ
zLfRfABPy~2E3aHadkrqFAN0DS;^s5|zO@IUJn9TU#Fuxll&!$?!xPb_&kCADF@GNZ
zgRS$${58=SJQ5{$4<OR4Bh;zisDmS(TwD(|!yeR3p@>$gVVXi_m7K=iRGCJ*wzdII
zy`2#HM)(0`YLGV)v&+%kXd2qryugES=F@f_u3QX;+h9kk<NCp@<PZ+~TVMdaSpPw8
zxU=st412i&oHVRG^%z5EOvn6<+u)*6kHn_mqiMQhSq~MgS$LEkF$3ywecd9|4>^P}
zy6IT8Z6^{%27K^`SXlLN5qd-n95(_V&u>97)vwG-8i8L*v3P<xE*`qe9#6Y?7Tk`#
z(N>do9vZ)|pbGQ*$~;WtLydCklA!<iOanxf<e8H%(07yvJjc4@<Hh5w@m?GG1Yt0S
ztCl8eYU_oo3{jXh{CNs3FnN$A_);dAJbe~s&zTJy^$KddQzgqR+sVRQmsw>9(9<(Q
zQBg4)n)~J$9+wzn>f{O7vuO@8zQnQNV*Ycw_3w(yYqmjav^(qX-p>S^7pzCuZmz6f
zK#gz?^FWwqLygPEXUZ5PL{S@k9Od!!X*wJB__aT+8};ZkbUgAN9zZ4|DkVX<86%6)
zJ(SVfxd)Oj%|ddsanMju#ljACn13`J-MU!=@%OOlZ7HTtn}p3rcR(ub3(A|k)v_3|
z99@#`V)MNKVdKlqz|5I@(SO}h=%+u%xZO8U&598pL4l>{)y<Oe2$9jlv_aZ9u>A(p
z<pZfqLRgs@2J5He!gJwT828S+LXVLHAYfLiVpqyyssYsj?7cG{Mjr^}lxa+ai)m$G
z-~B9%pFA96d#T~X{x|ILsH2x5=Q<d=Dw3#eT-KHv=MA+rkZt3PAr>-FwH$=$vu0z~
z<YCZ~t7DCp#_Kj-iz#XyJuO-fgf;)=iS^*M8-^)Ur(@m34v38xfAsv{Lat*k$ogKx
zOHDJX!2oqL2ZTJ^fVBFKFlJxO@Ttr<&{`lgLL2uFVFoU0YwFRyrwihIUbA5(5k81a
zD?>Bo9_Xg>1=qZD+3?%v-obT959%_9gX}#ly`zoArhr5LVesF(7WFO@A&XLM+jkm0
zC(ppl<(uKzMjByFR})g`h?OI(uyNW(2%8Bm-X56)Kix%G<siVeZEF#fC6uH1520vn
z+XHH%4l_g75o3^eYdyU$>JgOVQ$#8z&v3_+Q)k(_QS$BvvRm21PG1GJbq$QzQka$E
z=)H@KWTri2nnPwiX~I~`l<SADpv}-p7&c)P;%^*cS1048d*elp2FBU6Ms;-^wb_Nr
zgXwtI(>onD(hV}u#KfsH*!I9tryg9|v27sCYIJN=VOi5l=<2sYS*frb8v-w4?`KI&
zn=%pmX}ML$h11TAm_HL@gIvr{aKtcIL%7*7uM;Wy9pP@)8Lp$4QEQ4+GdOp#gA`Rp
zCU%`*peh_yXr^ZYD;;@soOA-iIo=pJ#1j`1R4}-=C2FaXdHD1kUhbNRVMF?%de}+q
zA1?e*Z_wC*=rLZHc1veh7}~VM!~s<G%NoH|IT`K)hGE!%*>K(c5R)v}Xx~_V*ALT7
zk}zcOaE$Qqz&p9YRH-he%GnUZjO#FAq&r59aL0j|cKCQ}f#@tD?MCjwm1zbTGH@7%
zdyc~8PZ=0`<THj!-KTl?z^J#)5d3Hl6l5gf*wKnL0w5s|2M0R{KZ%opEiH#;)FsES
z#@Y2#Fn-uTyw{nEi&HIN=&=L)+zAE_8j3;Ny>b5jeJFy1_MJOHMMkJqTU&R6j<P%k
z9r8!th8yVbLGN|QV4U==hO$OWICd7@FrnA#+!-oV0Xr`~0i*bBa2q%m3EGY*xVZ#F
zh7HGp)8z<$e^eM>%zsQv`(AJ`(SS!MeWAbCMA(};qfZZJ+7%$LZU6^n&JmSuhc2C<
zBpL)Xv~qx!YICf-{|vQ9C&7KnJXFx<<Yb`+mDZkkyVn(y-G^ep%zapX`x9uNl3JIY
zVQXy&_gS<fO6fOeD2#1v;i5}BW$gyTAm$hb3>kr8qi*ARs1FRAzSWX7!{e_Xq2#w0
z9z#cB=+Mc~oqYorraJ&8{oq{wjD}GeAL@aeuDfx35;M)<JJT=tW0c%04D=WQ&oR>x
zSk@AUA3i|Nt@#-0IRM_RXXC*FX9yH^U}ws_BBLrmMF;kl!g7FIb9Q<HgHl-{mP{Lq
z5kscHeDxg+Y1<6r&b&wW(o+~b#2xb@jS&A}6_n+g!9{cqB;?S+xf5jQt?s#d7xCw(
zW7zQF7&u}!qKYM<uGbEo%v%cM%4wjJy|6B>IddHTyT)NSt;cQp^uYP$%smdn3o-!@
zwu^L?nEwLC7(Unx1MO{v-sUD4Vde~*NmE36P!1hkoS{f9MZNZ&V5u#fBq68W7WQVE
zFzdSkD-BZNHe?8Pe5}WaL3Ut<H_qL^g}4i|G0d|+!rHII?FC)f^9D^A4wuorSi?lw
z(isNUrdT-3nff#^(2#?X1BTN4jDz0dJJ{Rv#|bJE4?n~9{yYq)I(?+42hL?%A@$Q?
z+8$_PoSiymjq|{mk)Bv|UkZUC$A6g4q1$62-t6d$kyKxgr1j|7izwL7yMaY!F>rJD
zgvaS*JbQQ%O4QJ|?PL#Gc2HUZ)}1<|nW*lYc5*}uS}4q$p*IKSV$!I=I8)mPA9weI
zro&9!T-+8OZbRX={4#djc?*5oGMYMef~JDd3~OQ90Vd7mVNL7rbp25D8BFh$-p7t7
z*-%z$jxJ7i>;eD`ruJRXLb?IE<Bnpu@<sG_n+`9jPS6V2jzL35V8l{?cz=1tE-oPE
z&w_ZBmEVQG?Z!ZV6E+Pohw`cjtZ)`@{PN%Aud*@F--9C9we5tPQRy)I$&_|6|2_WP
z8w344xHQcg&wIVagR#O6te8IzfAm#W#3STl#QcZ2cus>|3z0{Rn7<{8m^6JBm;rw=
zV*bup_n!iHGx6t?V*Y)^2Dun9{~>)Qtw2v>@#wgizcWf$xM~eriATr9{LQf+u@sZ+
zm@lxzi23C(-v@{daxr4Wh!G=3j2JOu{#Q_oTx^hw`9ne~(s1U$Mr^w5B?|d@_<TOQ
zMAaXe&}UcSmm*vhLX4PSN=4iYY}>LK7vCp{LVg}TpIK5+<oQEVk9+6NBC}TH6(i=C
zQdfj4M`?R->K^L;9~l?0?SW|NlRqe5eQx2=XYp!4VwxZ!Hps;^r7i*eT1miTpPwiI
zsEL1!wyiXAz_%1tQ5WFgwo-KDx8?MTF^G`tfT^CY*y+&$7a~hVN17tQqa8ERclam_
z?dyc`Tkf-=I|sMNg{Yq_Nc%tL+0k{l`=t`q;iuv3v0fDV%Xqqe5EfqfBJ>moz@nWS
z@`OGyzX3(T=V8!72bV&bWjcj?IX4LsExRC`8k7FJJTP#Ra4Emv6n+uLPgsW5y~m)3
zUKIvg_Ck{A&=1t*VAIq=@EA1)13Q~x$ID`Xn~nkIJ&`Pm^2eYGyA~}*G6(S8=8i$z
zd_>{DjOATT@i1Mu&UNOS?Qj{pk9CXrttiFhHWF}Nc2DG|BAFWq2R&KLx|9e(-Yc|s
zn!v7_@>}zG_f$MBG{V%8Zn!$LJ9fSnE-Cs`J{((u9>YdrxLXgnFFwJBU7XSNXXF2`
z2)Mij2i|0Z<UB<Omudgjdf_1_$70Azk^Uj+a5c3-M3vAh=Ff|ygm@itF-_ssAgxvg
zk=HjPT2#TGTtAP(vKr)<)uNe!1E!7bBRoJUFUmzmMg}tTiotAhQ&GzWsVhNxrf{8X
z#+{L#j;zuq3nw>JB9oqzk&%V+T9FzO)Uxq1^BaxsN<5D#M89rbV4y0Eq_43^Oi4je
zP7#`{Jd4Q7vvD-h4(}e_$7Anz=r5Ou6dImP<0pyYvn$V%pQcYugX$Xgep8ZjM9Q#%
z#z{j4J?EcMRh)(Nj7%CQ1J$Cz7hYWz>Nq?U<z*r>yRienqxZ!Hx2gbX>Dg!yjpoQJ
zDnnixP&RPHl+oXJ)GRB^5td<o37BnKiu2N`pI#^X`{+q}QY;dZ==~Izp-!$f=FJ=X
zZ8@vzl3b+IJQdf8*8k<yqLN;}ydZ-<heCFpbRit%vgMvZpXU$Tvx@l%yqaQER8?c=
z{>Eh_^RfF*EaYo4=(7dd_85aPuHRRF$;qP6kCtn0DU~UH18O;ZDla+6D-x~(TqSx&
zCH3Ej_8LkHs65f<k(q}&(K6fonj%(CbIOG#PDPwAg5)eP%+?Ir^40hf7mJjlQWWNu
z376p%acF#Jl)9e7^ZR%3>e(I0B)mdiejefz;*nBZLgNd!65?0?m_7)Xt+N7p-OOxJ
z-KZ~R<7A8S{sV-E!W@x&=6v52pthzOd`=B}USX*)ZNjZXbpsC-g|yyKITRuZrDn|_
zNi%QiO3Sdji6|V%&J>j))iWRsv`lGzrT)yq#%++Q5FeL><kVD@6jh;_c@In(DqJd$
zp)i-JpIK;>?1t(})HXCAKbzi5UXwRdHDzoa$jHn_Wxc52#rzChWYRuq#<RV6FH%Pz
z?wvtuF%MaVm5^*<iCI%U(YW|vb!om(m*p0+I<=~rK1)s|Qqx2yb1PXH$t?Wd(PiG6
zWHZl$%2aVhqju*Ylg7))ZPdjaybSt^p1pd(pt%w<Q>Z>nPDV+7A?ljE5=wu)4NIRX
z!te0|Jbe8gQ(ERBfIi}k#5fv1g^e$i&Yz}F#iF{JD$jb_9%PB)@M&IYdqDN@KO1YW
zEu(c>)E<<Jmegl-Zw;0CvVtrsU&1z!3NtFJ>!?mCq3uB?szg;!RzVqxvJ#Ncw!+NG
z?%#Htt}6LnhKzJp6bj2GBQxh)+n1FbOY3$r^2*Cl&r!wX`Lm%b`h<y7NzbSEmR}{z
z6yevSyoQIGV%i>L<To+=`N*erj=5GrF}-&&|8tnPI#Qhn4&B_{sx3I|#wKEZ3z#iY
zneFCfWq-P{?|16z>X4R}220B(8+ZKPaI$guQX*!$tHZCb9R_sB$ND|-=x;9rp2Y}s
zll8;=10k3>z7JBK?ZAW`_feD{j|&f;qpeAE4DT}lxf~86zciqebuAW7o{yl^Ok6l|
z7P1CiVP#N(*&eeIK^xV;chB)Cwi=#Y4Y6~^DBO+A!@I{95mVM0b}EtByyGfL>t!LR
zOUL5}kC5LWh1Bpo*bH!jifCi9u={)QFvA@4$2d}-ENoo5LNUz?+YVesAzupVk;Q1=
zy){nE9*?_GdGLO89#Mt5aJ4tUOc!Ik%;6)<ClwC;%y516LR|7sM8MN)_*A5ZKK9>@
z1%^9^7UD%<I^v^W;NX?77%`*^A`gwg-~*q)D^9?<bvux6GXPG_Q(@b_59%ZcydU1c
z@u!&>@8OKVJ10@wX$ras-eK{vD9jks6G@LYW73`{C`yaN*?Ui5W?_$KXE)$eWClKc
zxPzNva`5b|f@8b4(|i+@r{_b{P#T+7oyUZE<51#r8k07hp~g%kjvRXdhd~2T?Y#+h
z!w*o~DHD&*U4T!C7Tg?6aA^Ky-2V`TxR@~9xbp-(h7M-8TmB=HP8${#6%{mZ-dq&&
z`%szu0k856;ZPg^36H605qb`<8XVC&HyDmH7NO?BS{zR?!?+&Cc)oKaR@_cPX}mYK
zJj;S-^UrXeyce~lS;($4gj&Hp%-C?AKBF)kKK=#{Zf;O1euME7_8_A$4KJ^pKx&Kb
z=pqx2iPM%NDl;8tj$J`3``)MwIEQ1m1F3Z>hk}BSc<>?+0%;!Ypz-0<#ay^cEUIyQ
z+a^fa&%$8lLo&sd=;GWSX<o;1;GQoeWcbwJk%y&TCT36lp1!6{UzkdNhON_3RPgE%
z^%Zckti^&^s}Y=#gj=W1fM@Os8y$8#FqVe$9Guv{3Bl3nc<*%!k7JcExJw)C8Doc&
zpG%P)`w_=>T!QJCk&q48kIvH%(N1|GZXZ1gf1WY=+P22!{YTJe=?awGT8lGTmKfX3
z0FSnh!0NlyV2XW<t+WiswU@%7<EIcAn}B;aFCbsV33dX1tlxJBmD1A4jIDx>Ry=lH
z%f{4Uo#At68rIwlMrPbg9J-K#k;A*-#`qqXa4QV_{4Y4W`4DP44?#zb6io44im$X&
z@!{!Ryv>opASZLt-TgTT3JQX=GqW!D??ENi-A^%UydB;|DPdSQMQq&o79RatAXTXs
zCbY}KwB@%kcg9c@`klte)n`$VnT%TxAE0?#3#{zh9-&o|hzKl%Lr+a?oH!A0<8$%&
z##t0fS;Nsn5u3(OgjYl&B18Oe>-k3vcJGa|^E_}eC=a1tSK%Gk41KN3v2DXKWLHUm
zLyb`H*SC;TCV{-zOc=R1K}$|p6H>iT<M_vBSUHOsG?GL+m!8lmi^cA}2asANh5WC%
zXya&xd&|e*L|`sL-(G=Nv?AQPnPTG*8=U`Ag}9F~u;|(z-g_2f-`hAuy}OI2(R>VU
zx}g^3#kn<j@ID^#G4H6%1!BOko+x^{9<EC+gI}428~YC+s+lcZEhNz2!W79ISp<7O
z#(@(bXnFQS^2>9GYCZ(x+azQ9nkSeu%>#Kp$1rOBB@|{P;rfGn&@gpHz{N%I3d=!g
z@I#z<Qi?JC+u-8CP579?MMFseR1Gz7Y}rP*%$);;==-!?*n-6DWSls58zwI9P)<7s
z3+H8kL@r+3yotMC_!#PHjcc3d<LrYVBql}S=H;ufA2uB7e}m!K=;&y68C}L6`=jw8
zI1XUeA+IbgA-TD^;@@xd%g)Xw)z#J1F8_Ioi;KzKyLUyt-w=Kc3I6zwyn6MDy!{wL
zYPh0shRR@~)7+6{7X*+VoyL*-yQh*3Z_>!w$sNgp2RWoB{1`ECT1X?tlJ*AHB%nxm
z8WC_wLw*3!Hf&G6RtbZ)_0%Gh&&3Hn(I<(T%?J|td>euOcwrbtK!5M|3?&Xz&j<r*
z!ibrk2}z~Sv0bf5XsIxGMMo8KBtn#M6Zl#FWT0b5Vx+G|OdKZ=znBs>e0c{Iax_v{
z-XC_k6UXW2SU0KpOiWw1CCSt|ynRb@F|?cw4n8uDbYFCbbrVuTJS{EB$1;((3F%)W
zNlaWQ>7uJn9%d8rd0Tg4yY!y$VDf3AYUxP|i=v5^u|3IW1G!|Nu@pI<Ldek(mSn}t
z0#X^YpBQypL61d{cCBs5XVE?KIaQ>ADG*9zco+$OeSyd-*^&zCe>ATH8GGuB@L;JQ
zQCD{+)ufyZwJ;#p;)TJHhei?O=~qeW;}t~PWtlLr@HH_tn?MNf4S|FSq1g~pmrppN
zYyFY&@$n&viHRcLf0^1mwhp|0^^*8TrHKNCWWC-*EC%l&m4RD{^Qiq~&-9VxT}cHQ
zWTZp9=>zdy+nID(`+*dH+Cy}lXNu0E;#E)2eYKGo4qhn=$s_$u4avPEp)YXv5Ms07
z4tcoPhBz#IA`D~@RFai0+GPIS9HIZ?P9kqJo>UZtlGfd)3d4A*#7d^gGi*Z6oBhPP
zofXkgQ6&Qw9w*twG*FOE<F{e!62o#QO<ITZgdV>gM9z8~DarOHEi7G0p-2`s^lC#^
zy{Qp;DjpK^HXcMIo=xD9(9kdv@Z<<l)a=fNtQ}xNHoTw}f)aAblUUEcOUmAFC2fXo
zWWz{pATe&!fus>W>D8(Q`9v@Ac7+q^y2+p9`)nin-RBGAQOe63>v<Uo4viqs4^ATb
zz1FiKQ}w0D%`DbQGM=s^W`lOow0%g+=C&kVbPrp5X_F-{6UgNumc)7cdp4}#-b`ZR
zd5y$Am`UXASFvFX)zwVx`g3vc;6ah=zeNLy2z<}hg*Wd%k@5ynFiQ?`(9|KJ*)gO~
zyZ+?q{oQ2A<skBUO;_T&J(P;~6Vk$X2#r@l`k0xMN8f~#HY%KSVyCA;yhIP??!1m<
z;HKBCn-shvx@J8{V(3)@Sd&U&D5aJ}U0Xy<`U#&meafVhjv9H#BV^4GTk=qp{t*uY
zvixa=(9@LCSTd@s9kDcTL3GRqkyoJwZ1Ca124v+^q2R<_n@8I87s(}+$WE=)$vb+_
zOZym-Ew6-e(jKfNmc#e6ZmOBdR2zMA<DXnEKQ)F##YT`}R@&rHNEOMsH;<T46rES@
zMf6NvNM?N*>Cjr6gfMlIvbLuxS?^O!o-TGG{q{!@l6i-;G#f>a<dg2E?a1?VVLZaG
zCAA!(GyY2i2@iZm43snoJ%fbr>qR<EdoDak@4=#3D-vH<Mdmr^kWKIF*wB)PONqS8
za*`QzoHR3L(x)^;k#?<m(Ng|OwB=fmfJT#qTSV&lBKKdM8#iu{va)~Dxc>pzc;p@t
zPg(i9LAXdw{)*U`7{n!|q2VX*;{?10$ZI=eYWpAzKL~8<Yl!+<(aSOk2}sMyfyBK=
zfmSzk)D#9oLK?Di^juXvn6d+E<#-iVkAZ{Qv4>&R8~QnkAeN&rNX8p|CojbGNfYrb
zS%8S3FK}|}EsUpVjxK7F2u!aAwJ1<iEqoo>z~iC5<{w|HN$PdR^Pn)?I(G)khBSw}
zqXVL8xCA}7zE&9jlW!!Pzop*}omGL*%t}ZqYr<StIPoLwb2xJ2Utra;rC7Fd19G?m
zl>aaVy%4*Gx?<+Oy9f)71GlOHg;jOzoUi6Ot%XrcY@uD6hmuMfu3-S-vgFcm)>o(H
zTnK4q`!))*t+I@qJor(sP}-^&+KX1ll9W*fDG9;C?v~hoI{;r2G9X`5jBI+0%jJPn
zFPcKYCy<tvMQtH{ehtRxAsXOo+qWkQ0zZR8k1J^lcb5cD4wC##6iM~P=KhNCbeo9z
zQ$}ISqbzo3#J@G13dF|7(s~e$gzOSg;CHxnwP@zF0c|3d<9z7=^wdy6JxBN!Q9@FR
z%DXJ0{d{58cO)Cepvcq#0Us)@M7vm~g(5*<3YRuQZ@WG{kmeTv&xJct_FyR{FItY#
zQ<fqrw-BEaq%mZWjxeH2AGAtOKxSbn1bor^@Y-5%`MiI+6}C>_W%v>oinC`=peOGE
zjJixlWeuO!AwJmeCpnpT_f-a-14TPtcBSd3B_OY&8q%7E&|+kPpN9`gMfm!3E0!%@
zf~A}8K_JINU6VOtRhhn++oJ>aJP1W}QVwK`i@<E!Eh(b}gI2<gHuNm4P?nU;PN`9D
zA(BG{eVEXkXBAgNQc@^*5)w=q${~uDp+(>Co1v+yDkJs7MU3h_7`J^Q@in&+$P`X_
z;PUvW6X^i~ql;waQ5N(DJPQvPh~&9v|1Jm*jAHAEmX019CMl<c%Hkxn>$ep4`B&jF
zdpRagoC=@xe`n_IUll&GsVv0A#3C*s1&y-^8)4*6Qri+MhnB&8#z!of<cJ2^9<Z93
zeFm}+l!YQm!UElyz4ck70U1f~6}4d2Qutted=t=fkPGXEwmqyG3X!hb8;d(vqu=nE
zm_212PJXOILg;6-cN-*(ht?Qiq>dN<rOaz))Yb?mBsFk&XsG)qH9_41xBWu#^wJq@
zm|=^_j;44_D}WRPG`>)7LVW{a>o$;eGwJs;R>zx=GDs_`!NNeB4gC@lg5s<otXaXd
z2aAzhD?mX((}uDdr>1&h^oFwt4~<4m6&J;2v`wMqq0%VxswU9qRv@p0%Diez=rUV6
zQ*14ak(!hRDJhZZB_RoE8QP{61|v<nJzSX0e;FhdpdgWeRXsam)%iDw{E`Bxnp))5
zGwlHvTn<~aDFS-F47f$<2+C1|XAj}XuSV}aP>hK}S#1MkwM2<FNI^j|7pXAA_Oa#|
z-+wq3&lr!D=OQ2{wgmqWh#$k>4JlQOo;(-JmM_PmDI=l&(^)i(Ax!^_UV9e%_fBJ9
zi}RYy(<6L7B=k%mQ=UQ1?j|r%1Om|<H3b+`-IkIrQX2IcC{$E{ykv7+PRPUSi$^iZ
zsTv+**Fmeb4sz0Rgz;#KsSWjLt)=|Kswo1#0Fu)GINhftGnt(;>PU^EIji?$K<frX
zXEN=?_xSqyTF6Re%vy$Wq&GC6wWbPdIPt0R%AlYihmO4_V9(xN*t}s6d?G%>O=MFs
z@Pp1^%V%laIlluFCrp5|kt7;tcrnHqOAgJ8ax17PNj8~t$VXBh4~DH(zg>%gDMKk*
zhEk=eXu9r7=!H$Vr#T(>_RPohh4X21(ZCifp?RfNk1!H7Xb3GEIdv^)NR%K?G-<Xb
zBbC}cdXT2=A9HU)=-E`^*V9hI%!iQ(dwLb?XIf#~jH&qgcmD`T)eOs)EyL2~D>1{(
zP89eZA`nXQ$~~vBcl}`MsuLO^A{d#}rsbWV^5bWdOoxkoUJM%AP!*IQUu4u)(r2XD
zN*jFI;SEbm#HGXg(Z2i=rXP3@OI=AMWeDS;Fde0;s!&moXQ#Wd(7$~8+#9#f{sy-e
z$?SIzau_yh9G0Kh1+~mb6jg8`py#mhWz}Gy#`&Ipei};E)S$w2uBj}tNXeo(?KJkE
zz6E=BZNrwWXAu#4A39B{-KR6_;BB}NcX!Uj%q26RBO@}*D3bJihQjnrXtdT7=9|hM
z3#SkzL=D>NazClpe6(z>i@X%(%a89|*f0~y6VBt{ipf|ubs!XFgq;#*;S4Eiyf82+
zGv%z>+8Ba@BnUtC1hUdnphKSv^L&`}8JN7#r-FKkmUx_+gU6@#V~BAQhR-_49{+oz
zfI(wsVfpf9SUhXuKUqg!fLf|!dapcz9jm5Noy2sEzH2x_ABv=UD=2gFQP`+<L`cwb
zZ`6~9`f5l|ZT#+_2-%GB%9q0`-&B0Oa~6v|n`7SaNf0#GLtz?K;w&{tEH8(dz6O>3
z@7HAXn}kT-no^aW#I{MsP9B)ObQ>mil*h+#Dl?Mw`HSM~80sK5rLiK^A+f9+ruypa
zN?kmWyvWnG%G_}XcJ19m+k>5W85NHO_DxKslvh~)G8GrDAE6z)3Fu>`1g=P~B_u`h
zs&i2;se$IIGVIDnjm=kDdI|JeH>a}sy&f<fX9;axC^h7w=zB0S?(fIm{PuWqWEG~&
zTm%cXdRh*`GA9y^nt)0+EoW(EHMCNox}dR$GgDEkrA6zG^!GYWAvAxS3c&sN8zj8H
zi!I9r;L@sT@MU_|V*a<#XaBb}$eBh{%s+w8Lq%m3I8-oXjCx|(q|R(`T}>7Hp&Fl8
zkBYJqK*a-#I!0l}s&fbl{DebC58_K|HC5cTB4bnz+xE`EgEh18IwTNVCv8W!85_|u
z`xbhRUW$OwNZNDPf}^7aMlIWn@;j?=!!Huo_HIVK*%WkD0!qs(z!fPi*MWWE|Kv7&
zy~BPmVB;TegX{EN2nh<p-BW9kt>K0t`atJCz3}PrEqwBeL*HdvQFeP3ZqoFx?%srk
zc2m%qHaewc-_swybPF2Z9>$H2QHY8Dg7f>9A+E`Qyp&BJbX2LrlUIRw|M)mAL@@^m
zYlIZW`XeUn1E!4Ij()2)Lq}BtQe~NV7Z8RgCzs)o%2+J0kfYZtM{NTSe6FYrn~%f-
zn-EN2bCH(eM;ttH6au5(P|lCS$KWtrKe!gLw0pytB2Ilgk?3~^A87t^%WF_wQ3k$@
zDOQit#j3^o5fc6ei?)2i+O<=`uPaAIwa7f-b5K>?0J+L240ZRw(@&Ae%aMeIixZlQ
z_c8iem}gW~E$r!74VjH09hf=n98_0UQe%X=>Z;i1X)$gCEaR4A<;713dH)de_ui!^
z^HE(V`f^Lv0joUKuzKlXghsr=(w(8$v}p$XPR_)Xt=AA05ek8-H5|J1#>Nf9ac;p3
zy!-qKYi1mU`{MOztyG87O3_H5iat8qE8^Az9|Q#@vLAf0Nb_)cwL2#6d5n;dkJvYB
z6P%~5fQhaN96BiA=EDz&jIP0!onvrj-Yho#RWpynW9bIyHccPRv327p+}*JWKH<@b
z3=6@*{aexW^E>Nq10hKNjL%`=IKOKn;%H$onp8%>LHI{6M18u08OOh3>*@)tF<hM<
zfvCt(?3}+8sza8;Oo}h6ca3FO0h@^%VG_9%Ypw($#OFR1AGnW!Lq;Gu;3dLCL$GP*
zexw!(wMuWduJF2di{5_<DhU^rWu=g8GZRx=eZY$2PZ9j-B6dGk#mY(cC@n5wKd@uq
zbLyy@ApQMGxX;>#u!u-hlh)|g)s{Uj=I5Z#u%Z$i=F4;yJFHzblnt$~t)encH4~3R
zbs6(9ur*c<sK?AXR2KyX;Owcr2#Tv<N2MEW!I@jOBJA)2JoFF6sZ|@G*MBJ-rG4Sr
zZy4SMMWLuf3GJM%F>v-4sJ`EX6JC*cbZ!fxl}2KwAy86U0gk96;L?8(BH!G`N1qTB
zbG{quIeur*dBkeAJ$QCwH~gxcvD5{ybM24tx3}Q`@e8abtb^Kz%{b*9iHB#mAg<Xc
zOrvc^36;gh^j)WKM2m=1I7#EgMn}_jX(2u~eTin&5iWW%c>2&EpWa-@u@~8_Q7kDf
zgNo!(d<hT2#@WkZJaG+7lq4WoT?n5y!T4}zD|W=&V(oy|C@U*Nbv=)LBVAF-l%XA#
z_bS7zd535j`s4K3Lr7P4fh98W+%FVQF0R9K+S{N-4*OoCQ5Jt2Z~VfMUtEdWic&PF
z>S5F3uGl$a1wMwo$NVKXF=Nwus7O?ytWq>EM%(x5sv5|1GBIuBAl&kaLPkmzj2)aH
zdRZ*ye+v1}KI&v&-O9>BT3VX^q}ZODl#C3u^2xuo9xfxu%p3h*yOuPQ54k4!V5Thm
zTv8Gegc_K2kfiziz07i^vi>PP>XcG|iD^4@Y;XSU%XtQM9Ya{z*ub!*7EH`6VQJc$
zD!v7f%@0LXTq<Onw}ET-&ai0P2G(XKY`LnL_d(CL9DMNm0!imdI5M{v<XbzyOd=H_
zU%sMF)fuPOkA$?U5r*|@1MfG!sM4^*vHkPeYq!!jg0)pUD9cKqUDuxAr3WKAp#e7C
z+oSO_GkwSYP%r<AFJDtoDq)Nr$Jaq!3NRPNkBYB>v*$2Or0Kt<=~ruZ!ts6cX!-=Y
z21c;5vVgJ-AggJHk$ueY^2K{<ux3KpVi*S4h^7xP$mn5US6u}72ctl<D>hH)3F}TB
zQ1$5=uEhezid-o7oQFN*?Saa496WLjCME_bK}#Gxyn%fSp{_&kr@amITWGUoXwg;=
zE~6GgDklVA;?p3bVS?dfr@*mgCHzCaK(WIJ%<bP5X4V#HW!WA2^$`e-DTAS%BV0P#
zz{1KDmOaNor#1pX;hC_Vu>rGPbRn&zMUUCQl6gfTtqh~Krm%K$MK65<|IjZ;Ez!cE
z)0?36C+Ld*uRiLORn~;5g*7bNG?4*FL(jM^+S^*8MGJkjv$lb$ZflI3Ivz28Z;_Ex
zg0>wy!>NN6j7`j7uCK+OWz}~gG%Ldp6qW_YxtlT7Ne4y_JyD-RpF5RXeb<Fp=3xev
zcKy*^uN)uz<It@4Z0w!Vnd&Nem>8SE+LU?aEQbO8tP%Aw5M_00u(dT5e$*);ho1d=
zA}!n>S(!PIFdL4eYdq)yN%Ze$g-E{u6jdo>;P^Q-{Zg8KJXHG9^e5BwCFQ7`Hl`1>
zupNXR1{LuB^aZ(jxv=Up^M{W*RoZlgje0Sa&uFMSj>Bv>7qquB!-pG(kU*&H)mEeT
z{H+*ft%8ySADnrSh_;$?s5k0Mjj*9?yU?0mk10cKT80+Z)-csGz^KWi5&8Z#GIPsd
z(xD3mkDCVhq9{ZqWT4})B^cGmmev`4bm-j+<#GN<$PmE6%@yrUEnsfa5`8C5L1Dyu
z#HG|>#^KX&RF{Sd)mgT79bnvC4${rE(YBox?bwe%tD0zpL?uAVzzs*1HcpNB^YHtA
z)F}glHs-MHU<2jGWk4t@EexnGvqjt1+Awb04we?iXzw-)x^=M#j!p(q)J4ypUD2*h
z8>(a5L6+(o1)UBUWTy(B_ra()?1NM5MngiQ9lB~)!9P3>`MkC`eRwgHl{7JSh$DPn
zd7(_!1P70;gEAF#Ej=Sx(6&)SK@$3%T%l4Nim>=fm^s)|{VG&un$|sGf((47c_?aV
zj`b(^z(5YrW#Siwvij3{pgZOabHck9UMQvMA3C-cN;G|Kn!crlCDdv9QqA-*Vt5yL
zKY4}x+$;zT24b`m?G-d4p@Bg?&1nbFA2~8@v1*nFI@mivD)lwayvv4(h7|biJaJ-S
ze;T<M=k^?es<9<1>J+f<&>@)6Dy6KgPwPQ@w9#t;leQMHvM@r2!E>Nh9mD3ID7M1D
z(G%d&K?%P8Vc?j!VZ*TQXw%LH>V^(*P)|W%L@~6@ZPCr4BP?j%+c<inlS&5sf|8-@
zxfmOVT0u%q4d#|surbr6?Yle-X#KOI2KWF|75E2*A}L=Mn~&_JZJ6-Z{_6bEKkAfV
zKI+^!+Ku+sM58*t5D6)2&{k%^J0OM~t>HE(qKk(!iUNZmFtmq7OZgwBI{X}x)Dq8&
z2|}i%5jtD6_~CWfFM%<}YfDlQ9Q+krniiiU4GWhpFj1EWmwCVQ1CmfwF2e357cgYi
z8W^eY*;hcnHOz80YHDgwQu_IIElNsC;N#<i5hK3Orxf$Y=KWe{Y}Y!DcT2ucc@PwQ
zfLgy}sEm9d3K8>bdH?=B^z`&t1uEu`%kn{1u-qMqDOTUDw$#VV;pt_Gs1s8}A!7a;
z9HIu@k|j$-J~4kJ;;u}?<oJOI*)4pNz#>ROJ9AHbOpHO}Cs$(rcig;r6K-y9tUdNe
zW7E<5zjDfogcKy|3vq1MUesxr(B7Fjlxwq)TUn2c*eIlzHb6>Jf}O{!pdb%<1qJr6
zBqSh5dnR&na%`BKj1;7#Bv6tTgD>f2kdc<5;q*9-qd<?#&||{uNkUdm7{>hMWxp$a
zX4*h$dH~*pm!Z9l4fHi?aB1IJ<Vnb~>B))WO41I5oU9C(DPHw;^~{6=cIt|ZER!z1
zW@9{2o)zTf*n1Eo=I3x)dIy&${rE;hQp*uxj~myo79-}b&#KeU;MrF6ErkgE-mCCr
zV-v$fjF`VTZ9I42-m>rebg)Po;??VC_~V&>V*Y5b)1IicEAsww7~{4k*$2TAb{O8X
z6HJWTp!fL6=%A?x&DMr6YN1MPc4<^3`Qhm4i@1K}0?u7{h-w8s-rT;8H_xBo{HbGj
z8(l<=W@$9j)`PW)9yqnBxOM#z-rm1~v**s^OFo}HE{A%&e{z+kaS>N9Ucf!ycxpH|
zG0G*SprYLxW~Qca>De1vNJezJ0F{{mc<3F+8u6uR{;ZoZyd@c{oEqb@GSZ0fx`C6Y
zF5*RCGGr7LP?hu%C(c~Jne(@hP+TK6%EkOF3Yz+8t?`prUy=%FYp5&oh!OMGhnY^G
zCikPBlvdV)A#Df5i21u9tI`q%TFpehMr2@UZ1ip8A2DKn4rYM(SB;P}Uj-|)Fo$++
zJZ?XFh5U+ob`=R}Sw7-|J|ex6D(8||9J}p{o`c7tpQAA%Kl!6pMu5=QuTi3EjY&i7
z;6sh`e4aG&V*?PCQ3YvIhIjX$LfLi@+-#L__1X&%YD|CizJ~Wj+891+1Ple4_!ynV
zPF4Bd1W=cN`AS-V(yT<}N$J3*wF)W<5)m4k!;Z+;6eY248EN52j<l={vVE`NWwH`R
zjde%Ln+u4~%*KsduV6cH0z6$EAp5&)3jF7z=}e?wIqhGJm_Ip91z%hV#Qc2`w+CXx
z{5N1n$p3u^vo@(#du(050M;#K@$%+LtX;YV5oKH`QsbBTcro>hFQkq8!QN0Adio~N
z)>5IhRRCEHeK=aTg=!mPsMeOCs)i3~8Cgg((^H55%7*snWZD9nZH>Xt%Y`Jj6z_wQ
zFks+dXsW8g%F2`(+-84`Fw;zmqP=nCz&5Nu^$Am#u7;r^vrL)vHv?Q!^1GWc;H4!v
z2nh*+YAbzIm6bqEq8!l~TqsM`BhWtp6|#yj(A4_XADaG|sm_jqx3>@dy+c8hb%+ZB
zZ(=|%2e_@fioBq^aO>>|w>77c93PMJpDt+rZ%_~$4li$S_(vv*LPRv=<L#R__!Jt=
zt~P>(VuXbR!uP{__`LH*P(;f2)h2$1%B)CuzZ2d|p=e3xe-A!VVuRrK!51Iizr(wb
zAD3ur3b#5RF<-MpzF$vmaVmVhyz!o1lUdOs;G-YCUxk~~i~s=N9Z5t%R4;_ah}Wk2
zJxPxEgm+YSJ_LmSU~+#tIu(wteX;yT2)>-3P2K&l;Pi8(C8htr^7ya#>i2=l>N`Yb
zHeE{ysL73G>p_HQO|#mfGz5I|!v|Uq-g)^TF8hZCNdGB`jrS7t<GuW18p`n{+#kO0
zKd^N#BK7C5S&{t}UvqxEhhIZ}Y#5to-;e$X5Bp5(;Cpy``6A_?ZR;=QH-l50!0OL;
z^q0|OxzvidxA5rI5pE0iA}zujL;KpnZT>byeThX;%}*9I|2HU4j%M3~kD)Q5kVeYc
zdf*oriaJJ!c~yuC4`$ng_df679~>`iC;kNug<rqjOXja!`ZYT-2p@f!_P_`40)Cpu
z?+EHk@g?Tx+lyZcr!ohh-g>d^L2zgo0%_g%@uBTsSh{#9;I9OIn7_&(XJF>LsJAqP
zxvdjsFJ6H@rWJVgE(J0&jL|CrW<voP85wrennq<W#zKv59*++J{SgV_Jnp72>;JOH
z`OI3Q%qY0<!%JrM6lNV>VPZeREFGk6I{@p}EJFvi5_koEp(ilw)zTAb`ph+?nAKN=
z(OD#DGCZ1AMNuXa;!~jM=m}esmKZl{CM;DeaCYl@JdMm_=ehr#2)VcmQ|BE-P<$K`
zg709c+bjfR3zvX9xNkGY9Sy?kofC0%-v*355{%coXJhMxp?H(pWSzi&gQ|>|n6_j$
zl9E$!Zv99sxbT?`ugeO-%9*S2Aug60xyeF9C-emD`^<uWOadaqLlK*p(`3!>e<a|{
zc1&Av2*Gjj^j>aZ$beZ0W_DKicc{<7Kr3h5_#DM<B6EB1VvJq75gGr)CMb)zg>j3H
zi+sPH`tm$PhJ@j3LJ)>K+u`^#e|(7u$JZ2Qy=gJOJsez|I~(iHKS4}f9NypEg<hlg
z3YXk$NWqLNDR}?h3;V~l#Hds8v|)aWW202ici>!h9pqm_^pka%zwZ%Jqx~^$L~q=W
z7S_4+x5qJe-8p=YjznUPaJMSoLz6LZ**V0=#ULy+9BBpr%Ccy{d8*SkTztyji_gs+
z=reBr56g%C5~`wap-0yV_?Y+=adF|;J$oqT9e*S``Xhm-=40U*VLkp&C`wB}XhakO
zU!8%S!w`I=`40<;KyKN;S%<~^YErz;V$%4{@Q;tj*RYqEJajx>eicgjwWDj{xb7WZ
zA76>rXII01&3n8)u>rSNjl=cuU#F`$B|(@tdmR#KdvJH}Obp-snhocdBw*9Txp+<6
zrRbQi;4qDO`YUvE9gTNi64~~ES*_|{8RSWCPGRz-t)hE*jtQO<@j9{T!k)hbKIU|C
z#*w!nh@<Vn^NTw$a^^zB{;-jpkh*kljGVOjKQ@}VwZ(`E2}N8&IA-;8!q%HUh=~kC
zOhVqjZ2!dk$zbf%U$yL^q!c&>N%)*z3mvUy;B(6H?tvE!`t$`SItVhBJ<(RN1U?_r
z(4~(9s?);p;(a2zdbl9snIFu%^+YSxDtJE$hIQ{=sEYAMuCg6E=~v^0S0;K7=nRRv
zbiDD&M&BW>DE#~$S@LaRXDElTcW;ouYlYtSZG@ZDNXeigI|88@3h3c%g|=<<@c!Bn
zlxn-cSh0{AZx!g-(;DF~?;@UK1ov**cy-?&R(<+GyE+MpytbG$#tp`*%&IW8DB`K2
zd)Kaz$qhz|R9iT<(PTRn{|SGVWe-V#KV02+;_yc=jPB|Hhi-$>f$xRko8DrETXU@5
zcm^_x>fl$z;MB#(kd#z{wuuo8wN=s1&IwuylE@5sg3~u&AlTm*h05(<-ck`C9$&=0
zr(TH3mx8^8aQD1M%BuP3J8TmA^l(Ox)+Ly;-482f4#ej1p3t3p25ZOkgS|~Vb`Bmd
z;{(oyXyVa@P3YXk1s$yngiF8u69jo5&|}CUoD6)85nY&jafeOAYYf}qjipoE@Z{PP
zloo~K*8P{rDpQA*sc@IJ^x(%hbMq-aMVG?C-V9Qt5+}A@$L_cH;qK@J_mN{!^>#fL
zU97~MQO@vs@&E#EF;1TkgoSHIv}~adWty&k1+z<?a4jkSJ7-besv}xRr{mDki})B6
z0lC)J&{6q^ZC+RuH1y%r%>|w8UEq7=JSLrfgo*uKU}G-aY0>-sc|3UGh1eoF*qQ4>
zP?mxV=g;DUe+YbIGGJ+A1qCSrujluW{N*zqy?BfKS{*d!hvC@SJIJlpgjHK+S-v_v
zK70%>f`ahzeH8RM*+cCQG}-Zgwd`T)i_KVaUx1en4x)>r16=!$MCqOB*b#36yULf?
zaX$(Gd_aT0t($2eF5ot<cqc(iS{-U_+M<=ZHk>+Hu{#64xpy8<UVp&H&@a$3wTGrc
z1+Jbuhqpd{D3&pTdE?f7B67-`VbRLzaCGX9R?)|>Gu{F-`w;XUybp(8--4%$3#<%<
z>og>KT|=tHLL6T)8eO_}hN;fa&(%(Ox)IBsNaN+beZqSgFbah?r(kPzTTFJ5!KH^W
zs84!`>yJVqrE7}T>dZG0e7wGUfy#|H63Ud(!L%i~`C+*6P6l@_ZG)p@7mOJ0io46)
z@S<T5+#LkC^*kJMg~7Q0sT>`h&CuH1421#j(9p`9-n%5VD#~#4>;o8gvH>U27YEMY
zg?~gE+A>S({Y)ipVQLMR&dzYLQO4Ojsd#+j2wb{3!Js))uS#+G%z1cy_=Hk96PW2J
zqa@}9j$L_*&>(*VP+jBPP7kCi1Gl^bkstIN_g_aq(ZB*l!Pju%jz47d+CfiU4!nva
zTsV9IzMq2-`Lz@l9ZY{%_Vtg%@4D<EHw_*xV=(vON6hH&3<sBf=&qfNev^-3?ldQC
zS+xuGvg#le8Mt`m7V4n@H4R;u7;B-ebtmXj{Z<<5g(H_ABP75NsnCOsz8YeEZs790
z*Z7=L52yCuw)bSItmVPE-zd2C>52iia+p5<BGxV)i!%#Hp`_nV?3?ZZ2Rj?EU+$Dd
z<Mi_~T)VaxJvvi;Y1{T6H_mFLAsK^QCSdWCPnbrHS_hZ@=&liuK9f&i^#W?t-+hF<
z!g$=d{}f5tvaq!heg{-c^MCZx1AL0igk>jdC{Uy6*6uBscJD35cXvX6_u)|bdI6)?
zhhXXSz6f~r2zA^loI3LshK{z-(Qb`aa@ly3AOQ<{?+lSIt{_#G)-|<CoIQCCK7N6y
zRxv{x?SH;GgsgH)+J1GV?U6HLpIn8@#%q}G>57ilt=SRPD6i|d`rtJ})46c6F$8M!
zasB);cz^s1zsN)wTG&E`3bg;*2Z*N~`^V2;BCSvrhAL?|c>F3-^A%ug$t>|Iz}vGY
z@z~Fwwg;h5Z)XQ>#a}&U`-kKYz3gF7?5`UkmtdxR$PxtIKZj$-kK^Fs^H6Y^h9MnV
zLaBL6C`xjmX*m$XZ0fOp&t5!xp8^>rIq-=TTIjWcEHxH*JZZF~ZfOYt6g66+xw14B
z2L<TqQA2^<iAoW=dYa(YNuux6`4EJk#ohzgkjrHzzSHh8%{kNaWVTqBrbc2bZDnvd
z^^nwPi`mnM!}r2rl<2s?NjV$aw;V;WvH=XVl)>Rhve%X1a?x(!Y}k?@?A);vd(OXv
zfC_Ecv+LNtbqhY%w1sDPQ*fA_K>j9tp$14<w@I*TVk>kUHxFu=4-w8aK})q}Fth21
zjvcL`p`;A+4)(A#kjLpwYY<*4K>epfa9?!^R$T_5R|jQ$`C5d~({r)QrvU>!2O#(1
zI;^?(<14<Fdgd@}DS?>K035#&g(aJp(a<Qoh$%+w^}QJC(G5f9U1CQ9q&1A8$qT`7
z4>vfEU5WI6F)$c$?+~i{Ohx-9I<C{ixlqY?jCj;w+r%L_;LpME;XQC^*%-Vm0IJ^Y
z!uXwj=sI`^bkfgb^t$_?JrF8t0(M8xMkcS_hf4qbNTcpkvxj5m^#phfb^#~hH8vf2
z0aE+~ix;03Mn(pvPuY#ivQ$jzH5M{fz0td)DrOEIhLrzTv^ebUarLyb)`-`h$v6~5
zFqoES`t4QN`YajsL>87EJ7e&Wp)jxefFX-7)0h%CFnJV?he=Z7sXg}eHOItjX&61M
z8_uqsil|zGoAdhOVxa*%2D-tp{v86-{?oCXzXo?t9)|VQSrG0CDP+mUS@6Ac27GNZ
zC^yrBgL5ZXnVUdfNfXXp9idX6fR$?wv2SwT?i_*5uS?OpcOMw4*C8vr7>C9WLbPN%
z3>oBviwlO}Me>iYSUNg6K&CnmLGPa6ews1%uIi1F54TXPs*KYU$D&uiKG=LMoQ<p9
z#vHlNcVGnVq>b2m=U<M%-8yjy9j4Fx;a--np8>xI7m%J3jHx4g;Iot?dRP)naG%YN
zFuvG49%rLuF=SYO#9my410M>ZC@%vd;C|n_UqK(oH%!6RGrLiemx|dQJ#alk3%$FV
zA?D5=9C?+8glAi^>rNyay)5b$rtSBJOb+ef&p(Hb{XNlME(+tPZ5QqC`|~u^GT$ii
zzF(W>a_i6m_$qG+_W>PodgdU!&jl)Y^61lN06azvLiyE2SoAm-5;bv{N%cjv5;bV_
zi{NJ37Pm`G;A+Ojgqa&@S{%%9ACF4oZWz$7Ke#Cmk@o9e_Wk83dVLiB8htUq<a_tT
zsQ(n$G`zx-oK|S9r3xd<4(LQXq1r0SFtM^n2TKjy-M10m>GeSJV+@+J6UGj-J#f%P
zY+?bjXd5u~WFq<u84Stb{TQ>yTa>a8bxlLGGg3uDm_Lr3dxtsOm}iuahXE-l^0|y*
zLwcg$#DhY8tW5KuoQ?^eL(t7*9K!N{UXt=(9YJslH}o_7KH^|JXezAg-{1uYI5}}B
zRzAwY@L_%7wQnXa#87FAyNyxHZoy%ICoBXXF?RM5dX@y3UGM8@$Dt9og}b2<e;6OA
z``)_Y@HqGpp6=ZtTlg7kw_gFNkHSh?4#L@=<ybyrGjeLmvDtk9@-#bPpsN}7jO&kp
z!vA0Ya%g+NscYOepSF}27h}$)4D=f^2t2>tn0m|~90_?CS=eK+`%u`cBw^r$U2NRT
zONV2_%R-DC>4IxhyQ1eVe~cN~A1@Bi!;5SI0*;Kq&QNK1403~oVlo1girMqT{EjR?
zd7V_2mXO@s+<)trmtR1Ni;GE7Q4#wqroX(rJW^OxObQC<v5Z*q@QokI$jBmJd~cBD
z>(7(iiZXgm5y_|Va&z-Yk;q+8SVRg7^6B|Znlv3IeUUrApopZ0zah^8zLM;mBywlp
zdUE3V7kaGVdtM3(Nm1c<e?Co*JvTp}{-t@O{-WX%nnxy1zUaC%ZXR{h{5IZ00geCd
zenfd|O!GhaWoKuT>gsCpuVC_d_wHSh?>B^7NDgjYN#@R-OO|XsLJI0c;grC=Lx}b4
zn<AeGZZfej(k9;JgpBWINj~NagNHgdahtU!Pm&7ARC5)w|1(Dz$dW=jx3wfslj}%b
zZ9Pf%-9=hj&lMf}j-bAPTs^dn?ApGW9DDYa7RFryjrJtAR(O21i!qsV?TgSO;{NjX
z#B|g-k?$Y*xML9MxahvfCxVkm%#3u&$Lbv7sAfSvmkNXTdsvbkZ(_-OI~}s&RR-bI
z&<of45GyS^l2%qqY@kU3gi(bwBoJ$J14463hB{f0;38pg!G}G>xa(5tY9PHWtjU)K
zLh7H-Ce~ALkQ}egL}$QOQd8eRIJ`2l-cFG$dQ>7j@n>lu0}We}dr6{#;KmULV;k}+
zjVaFtlJs^n(Q{bA9?JQ6oy=OihAf-Zn`oI&XT#j=El8N?60>`@Bo9-0tb0d4J90WK
zgKX-hNjlHEL`vxW)^gcHe<*x>d`MzqqR97OrYMxH1M}z3A{#DyivoqLcWp^lKhG5T
zL?m4z(CJRH(gKKXmkGkKd@rKyG+yL>OSE<Ska})3>0oG2VuVF4B>f6eF&IQr${I*L
zheIB&?n>O&z7ZY#PF3b-a_rDvvTgNp@;Z%>w969+I<FNTtouSN)wRj<T%lKpfJ}65
zNtWFC`7&DVqDj`i&Jp=U#GfP3>qWkXT_Xx@g|b3O9&ysPATiac#G$Pn@yVzsb#)vP
z{b)Hc?Z1x*60Z?c)A6KA6q_aHB$2inPKq)=5#8=nMS+AoU*<%*Zu~?9X*Y>+&n0Zw
zokd;Avd5X^-h3xA>fi^$tFI&chB(qs&w#xB;hz4H`t+wnTd()`YsZ}-O8Oooy@Dyv
z26A_)Bk|nvi9O_fbq86pdNY~e(t>oF^_&Pw-VmMcGuUIKB8r&V_9m=`5@Zqw?H(kb
z6cA@ERkG^V7h0#P$se#9{J_D32Su*`5`s!{e*ZeQE-YNPgQQi6!YNs|W)qEW8%4fG
ziixY4JUJ3i$Og|2<W?M?4P7|En%s&P2;D9w<oM?ja>QMaEPmLu9+i+mW(MSVL=9=6
zI;TA4I%%csNK^bN)#Tyvtz_4(9c0%vs(E=~q*)6i@}WR@^u#E8;=bp{IvaLs3~ANl
zr+NKO+O_FK!*!d;*GK{B)>fIEPAMfLO)SWx6k-1F%<E33UkWFeCR&qe=Rydtu8y`*
zQKY-B840f>WO#FsyE#oIrGRv&ZQrXJLKeGOlLv{yGO3QcL3GSUu<i+tmgF_lUPc}#
zR-U^_{nv}M?u{h{)f_6rHRQq+b29cw1RM8XG1I}29Hy4LkX+K=)R>(8QcD_Y>qv3j
z1=32hH(^?fnyANQ+Jcp2^_*cuS))H2duC57@+6sclI^40k|Tj-to!PWo@DjYL~>`Y
z6|wNxN%CvzNi}V|{)*hVaf6hV3Ge%l#>OLe$*+DNK?Jm?#^Hd=<+48x{n0eR<8s)!
z-V&0MC`}H-g9rEE6;q3GliVO(S5MF3f{Hzp0=ObKpT`x=HD}VK=`cr|y15Mq|L_d=
z?>s`eVK0nyY(>xgKE;OcdEhpgawDMWvDXm@gn6WXE~kO!k%=P^U6(oub<_Md-UFY;
z|8_s3y#3{n*1&{WOR#R;I;@yA4$Yekoi*3hM8?-xkxxWTDfk?D7^u?TIW1#aTon4u
z=<^b~g)q-3w_FnXI!#_0mK33|ya<oa?!t!kYjF5}Iz~<HD?0cc2{~;{SiBx9hPB1+
z8S?>^R_tgz`}UmDx1Rx`qL}gM?+hC;0u^6F@N<LY&Gj^q78ft_iKs4tfU5v~B{eE@
zjrT(HF2O}rX%%v-D-rhi6gF&Jk7es0p~virXf9pPj?Vu;Rt&1jjloR5VdR#}5y}ZG
zQvzn>L>3cVTfxgO0VhsGVAis+C`*Vzd1eT<Z`pv=tG1!YW;nVU|C{qeii=TLRfq?t
zchd4)jT2AvFma9t-W?u;f$Lsi&YJC5GTjquHNrWb%#O8G{8{*X3AS#sZYtMxL<O54
zzJ+Q1M{Hj;53P0Ez$@o(G$T>n0&8g<ShH>e=D9nG0)^<blE&ABJdsZbKPM3ing&o(
zkYq<|*)Xan1XK?)Fdu(QNJxTHQHmN`$26Ku!>CV5KxIWXPVU=+b*oq7U1=K(aM2eX
z{f=^Ld(2<F0v;{GF>m2naGGnvP)|5b3Gx=`Y*dNh#P52J8LgYx%L<`Ui6Z|$qN5{?
z#6;o8pp9^HlAxevgl0;z5Qy%DDm_TZ)S)0PA0?HAxP5X5HmqBX^WGI0F}e$TuRkR@
z$RFC;ouI71VZZrlgsBF6ZapLn-O;JQAGEgMvA-f_c(g`RaxxM>-NA+p>#=;z85j>A
z4}*Vmm%#G0B-B)9;rJe=JlDXt#u}b3%Glb!E%ryKW7Yaim@>cu^+grnOG>ccC9yP6
z`KPka)&j;YDL^%}@#x+WWO<#!@~MN-w)<oh`~}ti&my6Op_Asb?ZK+~)1mu)V^*l@
z>Yy?s{KvJ%c-2(*0hVoO5psFobqZ}e8{KU2QGafJHFR|~*f5s*a^zK(;p6qaSifN%
zwj2w@(B+fykB?sop7W@loYoB|r%yzwls5F0mC#)D=GK)y+n9(1p+`hVw~>&`iNKGw
z_B(3yUMkYVeta9ltwwdF1T2l!!Q)XIg0^7{e8NR-O&zlGauNIPI@Z(nVENh$upB!c
zdbCYq^?XxGQ;?gf19N&KJRVaH!n(rR57drf81G?=H!s8R>XsMW={+?hMxm}O1qXL-
z!rIjv5GLh_-W~qUsd@B4<X4v9!?itFzkV%toC(9&HFFSteJSk69mS;OyRdA|c(mk}
zf*DhnU~M1KJ<@Cmn0@#~ZZ2O6Bab~pua>FUy?zBOTWjKKB(tTznBNU5F2C9!|Cdlh
zpg~F<o}(xIAA4s37{$@B;rAqWaRs7~AOS*fcXxMpw<1M~ySux)yGw9SLWnCd;x3oF
z%gO$;dmEBK+pq0kpujxsk)7Gy+3|U2c6J6shYrQCe%)bbLIlBQIr)FXuIQrgR1cHJ
zjl|%gqtLUND<_!$zDpDxA`~fRLmFy3*cP)w-rh?r&Rxf&#KZkK;hX<K&Z*^#!PK7w
zQvX6hIzhU4XE-5}mj+r=nK1^IXkXh1=gvOkZHfLB6hi|?Q*`-tG1ji%fQ?&rVcGD8
z{8=6TkB{SJsIHp)5at6>DHlMmCMqNb<CdSU^0;>=81))dfHEfLW8-k+%vm@!Y7MrI
zmdCw^UqIoi*roe;Sd&KfOkjSca(w9`h#O5t3CJNQoinxr$-??yYiN!pWlT`L>m00F
zw;t=)Z^70%{a~U;I*ufy9~%vI8m9g-0S%@sA<c%alakkOW2aAPc!4%x{4kuDI~F?x
zu9#2(C|a>L9IeY^#fsHfPu$;iU=v!EHzil*z~`}df!Fbc(Q+MC{sA`5sAF%09y6Bc
z;&baREFanc?)M&`=D1a;QcMV`CKK5z-Srw$)8^gErdM7Ell`lg9gizdV{q`$er(u!
z0OK9Pu<7z23%ef<kpb*U8L+dnhqXoF9dx@*_!WNZmLl+D|0ETorW``=sk30AmqXG#
z?}V;nsykw!CXJn;RaLl%{c!VLo`5CkSF!=BSQ+8B<;$^d{d#QMeE@@-6r4MoinAv#
zAeDF4$3GelmCK_{jmAj0c$A!FiNwP&bF{7{LhAecyngv{Fq$-|${ol1`6D8^a8By+
z%ddF1Y7z2NHU*=m9Yz0XvtcdHMy{$rSV+ApEl~lr?Tj#BE}O^JW7D=hnA^V=ltjQX
z0x|ORT2Am?^j&cU%h%6@zDh<K^a6sM<TZAXg%wtdCOD!;oz94BF$m>|jcb*PaIHT8
zE7q*ThV`4UWA!g^BAtCrb^?68!gU{Se+tR3dGX9*UbQJ)EDSL>FFtqeMgJ;Bxb`{*
zlU9y{HAzlcRwi+aRBmjU%)6I&M^_3+9mWVDQbfW{SQE$h@4&W`=V0Z132s68&-(EZ
z!lH<-J+QMW2E77`z@*U#v`Bl5?RWB5zk0BJDZ-q`qlK8{0cC+Yg>4V=>Kc+4)B-&;
zZ(b2M&tKJ960(&>Xj0k~bq6iN8d864*tiWFr*<qfohr)n4DP(sP07fJ^oF8%1z5rX
zHJJ=tc&6)EKDqM_H5%3cNXIdoPpWsfPs51h3tMum$%uuocNCw_I?S7mLbJsC*zWe8
zw*l^NU5cpk6VQ;9(HypID-ae9@qg{=<xrX2x02-5_3Jld`|>d;sz>U4lC|}X^9ECt
zSUqJFN{m_xc5{6NX%F(^gmo{kJ!m~-6rS#!f#u$57~9SkrWNX<jJY|MEMGy~UXSg2
z_n}8EZiokgPv0U<Q_%PMuyLE`K1>`?-_Zn(hVk*aX*<^a+7a)cK7_--<!Dqw2oqs8
zGUW_g5(?d0xINH9L^>z0@4mzmQkFJu*n;J4#MpYugF8?8N(cmBa=m&Y%9a1l*YK<;
zm&-pNp`rZC7*>Ou`w`5VJplJgSA&(@4}R(vczTlEs#yagQ!|L!<!MM&XZ-P)G`nV|
zP-`Uk<<K>RPMnT`<7%R)!X1)!hp_v=atxe25ch1Yq0UZ+aqTWxGpaLpAB&w-iD9F<
zqgfqS_`JS{^}C-CTYa3pwFuqkjYeP@C8Db?#Nn=G;IVuV76qB0q6q`P#Hu)SuqWrn
ztPbT7(Dpj+tYE8S9^+bg_-a39&FG8UBrKM4UlNvfcyeqaIT;00b5qh8Vf`<F)QHG>
zfgvUxyNYR3Mqv2$;xHGfkRi3jj^z_bLzRi;Q)Zx~o*I5$!Km4PC)N&QI~GbV9`f7~
zi1lG+qLc2T3a#OkItltimUHG}O{QU8^I_;PVhUU>L<kKG#Pk!_QU2L-RBrBpB<2<;
z@C!rY+1w0zA3IGp*t}yt#!VQ6n|8&Z%t%AgmP0Xb<yN$uHWk0Ubw+xsKTIvGxvLBM
z&CtXg627t3H#UL3nI#OK??e5Ax6#;6i}31GuwhVn-3326Hub0C=n@U4_UH+hGNq6i
z>jQDm1K2av1zOT6G&9kq6zSH$+%)f4Opf(Q_sSG|_Rhh8`F-K*ToQ@N(HOGeG)^vk
zjNyaFqI@wU#D9oJ>#1uosE#9dFNoxDOumW69dDvTNhO{q*1^$jjUki(H#b~C=f1z9
zn)wHGUU41`N%q<@r!Srrt%G7I?~&Pb2G+D^KR^pbt6KFj>RuQo70J&@b`59X@B#)?
zy7z)h>5@o~@quBVL)bZ>6test!or;IYBB<tkZ`FC%&=wiRE!!k1ea`!AUiDuB|419
z?1~mdQ9Z}_*|TA!%7njPJjNdMz);c`P(}z~&c_Lh*uWGf{KjqNhfhT8_~w|q?+Rz`
zyx<6eew%^5<1fHLszJPr!HzwfaeHn{%ncun;48my*A;~A2w0dG7`nCVfTQ#7W6+TC
zC|}e7anaG}v1mIEuN#GaJx0N;vJDd7W}>LQl!y(IE+73Sf|(g9>nuc!o0u6xqVEX*
z-3`$FNCTACCZOi*jp$PT%ZyWff7s!I?>)?#G!X-@R)L*165bi*@%GkY?yS_<^kbc3
zU`*;Mp{_kJG%;mg9isJ;(|A5%2zrcq3nxJkva2t|?vsZxVtP-EwQ+=0C5OC7S?pLm
z<>Sa;F++Xy9o-FX^{XS;{WcaK*3B{Bb!7uO%$|hbZW|)fcp!F9sDrR`%Q5j(04f$Q
zg2130>^bl&ckQ7m4Y5TzAMZ{K<IFl7aLM;BW=$D~ftN^FG~w{ctOSo6>>TwB7@FnR
zvl0ViQnH0;v*I*fkDrDC6C7Y8Q6pJpfF0Xb!MZrGW9k$<wGtsbI24YgZof2D*A^L=
z<i`Vqq<$cIjFsdfyE>>Z4#lf-D^Z+%PU*flJoPcU51j~?B2q+$hhxCnGw6f^aA~v#
ze)3R|X5uppP0b<wXm5g*`?q7#qTcYfEe?@V2BuU!ted?7hej^PZz&as7>|ab1^WR%
zn=Y*1xI^e0nGtt%0hSn=kn}TwQQ{M{>v9*3OPk;W(+OKAx8%-Kz7A|^2-rE~3;MQ0
zwxZCBDayYHJ9WmK^oEU$@*AyBNl8h8o0}VY_3Fjjd_!_G5Sv5_H#xMnxBJ*@%gN5-
z#4B5lW#m|&KhDX@gr1S9uCQxz5F4LH?iIk&#tsIg@=#`{AUT6{&IBS9v9W>lllCqv
zJqekzT<Duv!HS5QJhIXfk&&$;6`;ND>v=|wg!ojbwL)0f*us#ln9^ROjN?dL&-CU-
z;66i{ff#<&Fh48|vNEzsN5X__2$ZrcFj8aai%DQq*@#JGm%<`q*vbKB#5*~}|5;hN
z&@fsEq!zH{R(a4N%OdeWDl@Kb(<n&=sD-Jq?n~0#Y#D^cMumF4330L9lo3cQVOPWe
zo4QoM`vF(5r8oNy;&Wt~nUInOj`dm|ip*rBWRdbJ6r-q(H6-L*RvL-JoLra|wSk_B
z#HEpe&Tl5fZ{!|%b|%Dzx-??LD<GAygoyRT_&BIEg8caW5Aoo^12{N1a9_oL3v$vE
zktS0SVQc`~qWr6OMvV-TSIvw`9w>NBn%&GyIZRD;!cmz;@_eR(w8{FgE@s8$v-IS6
z-AJ6s5O&rUTm@W^#Q0c}w*k{)cKA2|M@WeK0Ii7lfw;q>QKln-<Y`8r2V2rHW8MC6
zb0IpeSK{rxRiC-bA|qi*Ct(pu3}I80h-(&YF0s=P!OG@W2HBY;znGG|MojXIWTa-Z
zc}x$*Y>Scdr$I(qDstqysfh*_cCawypG4w;Ex)E*JP<9W$mUkuFxJ;)C|SA;M&<?U
zJ|$vel8HYVNX;E!Wt4#q#Y$nUX97Ao6f7+~totOtoARBXJkpZlb#J;zeA<)vWJ!#V
zfl5H)+{y?_l^8|_0%T^hej{OIG|0+Ua2*dWycseW6T!sQSqW*Jc(=2+{wNOri)`Gu
z5mTqK10-J&Z8l=#GDwUGU`6WCyc$|g>JhPl30J2SIwp0EkaWs)!Z8=IF-hFL=EZDa
z#8p7)e4Q+SSy7VL^S>G8$jMAWT9$$cMKct&$nS{duz8Y{DJxPZkYptgk(`hSr5dEJ
zw&Ut*QWDVAv=Zirr=i8~%>dDmu*82J78%L=Qc{nLiT70UY^X?iGn9}3kTxeKHkHe(
z`sQ}9G!jA~OGO6T9*}k&dd9G0_gLYPlXg)|>Q=5T)T&6iP{EWRq*3R{pq3heFBTjr
ziE+gLS}<Z0*cUU!+0iwyzxY<%nqQy4qA+aSib&kDUdw}#ry({qheW3k=0$Bu9J6t#
zi!0+IHqa;Sl0MNM1=EOY1N2E7K-|eC{?hXPV*R5~v29;oeEwLRIB^2)+qdWR*nf?M
zo6k}~{x$gS1o?MFvgc{6xnC4(W;Ew*z9(WazyEGbII$S~Okqj^zO^9#o^ac^5OEF0
zVL<KgFejxyz}QJ4*m-0$5k8bZ<C_Tb?+8uoZH%28hrI`f@;2WS=~&Tk8M>cb2l}q^
z%kW<o<O_%(XZvv!%6ChV>V3XbG0tL#rBsYl{so#(UHpBDaTfDt*hR%S<zGN#*XBDF
z<1FTwL&f+{3%h|O7335Og+ifFC=|*!gbH%XPlgr|L1Be9`eBI+3q`8@3$Cu9l_MzV
z4_1-j$w`hubn2%*qfov8>TJA!9|!*PGoD<8_=kaC#q*1xmL(xH>d&`TPYe%3TJF!Z
z(h22T!q)wnh1Np^k|RSA^Qq;(iVE+8f}!}6vZl(2Ls(2EZ=(F@ux|*dAg6r9`|K)g
zxfaNqwAjC7B#yeL@#a*loVFC9@$WHj#tNkHw(NC#7R|=%INgdmxl!I&JZB1~Oqqho
z^Hv~~zc4HG9_Ft(sWbdVZfu>4qp#w5)4xRudRA$N*M;iZ9L#Rp47=TR>vw+%v?(u9
ztx6}v^5);;`Q~vLv-=fq%IE6lIXLNFcr9tlm*e=NU+^G`Up`P7jo)U^L;zn56md`S
z%fb`L4!es*TQ2D=37T|&{Px=hZoOZYgy&~4e)44eI%xuCY&lO#i4MPu>#+8M4{!P_
z<Y3j5NqCp?FRwBceGhHh&PL(p-VgO%n<I$*ruhpIb!Qb?3|Y^cexDURTH!?Cr)4n<
zD<=H{-}FE0(o+6SqV8|Sf?ZE}6L5FeRBXDJw;x0fcFtV_uY^Qw{Ovb{%JP-vnRN?r
zCq$RCG>KtYvyg2MregAM^YJ!Dmww6w56oJy^G^pTKIP@%MOb<9-(Q+_4ypSuMHgHy
zREw>>n`6SI54`ycz(k^L#TxMZld=|mZZ6tPyvUpKd3JCi)?E+fO_U!6b{R@4$SEH&
z7er(B+M_yy@&hhx+mCfed4VYR!1hxQNjEMFJGLG|esjs-^8Q^2$`k{#8)#8$GRpND
zkA({sVNi7~y0z|$5TZuZ37*(<vhX&^{}ZhijNsp%St^2|kzt`#OW1y?RNnx4?4HP9
z2%%66LjwbD#gjimqHhR&$?vT)K_XB{i|W@RC;U1#o%QC9vwUx2-{$SO<e}>r#=pFb
zOI}G(e0YWZXV@h=b!f9Auzlw#PIw1inu89b?qJlSg_u8o7Ahy5MfL70xa*>xoW$`5
zVchXwgQPpVma*VpPJgi;3=Q=^X#hkpApeQ}ER+5}5s4+xmwvLW#wQpU89^fc)DuE(
zbr<26^c<xScE&kax@;ByHc^EO>o#Ha-p8B?+V|LX>>7lI0vy}A4KW2??A<@P7w&QF
zh=&il)E)w}79&V|un=Qf+hB0Z_ION0s9shucJ90M$s3wKhuzrbOT0H>^P6754LQh@
zB>MW$*ZYEbO(254p#eV2<^>Q-Noh1Fu+bh5>r*P-emv+1Ii(OKn)iqC+v|uS$60<4
zVAo|d?7VMsqiCr&PNHas;V5G*fz-eR`3pUXU}|ClGyPm_?LQb!OLn1ewX(3VG)K+u
z^Dw)XFNQ5}<CferGAOtO#3v{`F}zVLbnV$44P0yCZW`$mq{SjNM>mFYd*c|?Z_^n=
zdiF%~_DhM43`6R5#N64#(Wz4_^ccE{-?fv$k;Nm?qJ0O{YCZ&>sk-~aFDyc%wjD8S
z;0(Oak$zSYvL954_1QIwgV3*O3#_~x0>r&QpI%+jxnoQ8pM8wG&TH2w44A(O69*5&
z@i&h!v`JUYn>7rbI<`X3VVn64el$3=Xarhz=zuychQd3WSV=_ey8oY{P4L2q-Yw9n
z`*7^O7fRyN3^{=((QV9Zte7zrbGF<=nk)@!aV!QmYzOxwU6Um9KZmv*XLHAg7Y;`&
z_E{~5!-suV)?2jhHWUXoPDj5{yGeuUhoSXbpc{$XhL!5z`kxKcQ_!+!Uj*H{!5zPP
z;Eg_m2g3h>Zo{j`51ydk=)TY+9V8=my=5LfGgGb{7?NE0+w8-bd2Ju6Sy;lNXmJc$
zdJ1LV&c%i|*)TIPhJo~VI$b<rPY<JOgBIx8tqa<=ABIHeBl$x#lw4OX9V^GQBWc|W
z!+Uo^znM27OTLAAO~zu)^v-D6xGiQM;5!NFK^QlrJIR-A&~e1-k2~6)Uon)FgYFnV
zYd^`WlFu6el1cU1l>mcJqDI+PxD}y9`lB7F*Qz7hwC#jd{OJC+$=$Jf$5ym!Jq9-(
zA3>9r<FIx{C$u1bm~)8V94svWV+Zqo7`2w$)Jsf+4_nqgCH3WDwC~gwefo~a(^v*3
zX8Lg7HWEXZ?7+yrLvhwU4C%?KNFe#XUhCiZyGVK5GaOy#+$TN$_ZTxs_pDB%)`5Lr
zm+*KSdQM!31(OG3{_d9ud36-s8j?DuTW7TEG#pVnCn$e_xK2M*%Xp4=Y^9cX4~eCE
zqE^y#u6<B>xIt5^3o4rsQAz4eQ`7u3Wy^typ%{1Pj)ZC;5#o(2aqU5c789^*fD*k2
zZ%3|yIgCk%@OP?2o-j;l*AZQMbVJh`^>HF78%$Or;xlw_irf!QL(Nv5FsMf#G;A=1
z>om+H?Zb@OW6`-Y$#2~kA#Y;TjV)8rl+^tVTlU7?P~DJp;*;HI-Ju=&_ZtiMR57WZ
z3;Tr4qar<axxzS%Y2OOdwmu|fDgYw}bR+FSYjm5qm2^>n54TsN_ta&WJ$@+GoxOu!
zyY<3M)(@SCA9^f7GUpm_ZPOIa4-JSP?uWCvQ%u7CJE50FVfNtWXxnuNR-bvx#icss
zAvzA2h<&RjV8X(4NL8dmAxOo{&K+?rRM!(y$38`?hQqiw4%atMM$>j3$g}$3K_q)V
z4t+az!0xRJ(7F3cWFr<+TDK>0+Z|1+*TvCyU+|R}<*!4s0~O>y9U7!2Cn6ys0STmm
zE3_e)WfjykN`wbd;2#1!VK-<csyVzw7%^YJ^bGaew&6zW4CQ{9HGMW_PM?AK3x36u
z1R_Xs({al^1x=b2UJble+ZK5C{0Vsu5v07`=V<Y3gSya;IfP5+F5ubCRVZx)ynpu+
z;h7>tUY?0xZy4bD?JL+iy$SqZ>bCdyeR&IpO&8+o)w^&A+=i3hsdzBACC+F`rFY{x
z-fXRjF}-IXKJ*UiPq=|&x31yfv4yZuq~Oy{V+CS87-YZ0*v{inYTRbb?qZ3KZO3BB
z`b)TS?H(G&Z^fc(kr1T6#|_V9tUq!P18S9q=i{p|YOxeouib@>-&UORO~<`it#Dq@
z5BIKL$E!_MF|6~iL=YK6^qCM*U`o$Uuo-v+S1%kuHy2|lwE}3e<MHsBCk8A&gcXxo
zBI<=30uoA~b%hulyrm1f+sT74ZrT!$=C{Fl@gUqK&w9DO5{7n}hAfQ$UJtLsqU|!A
z+&cy{s#Jqy>S<ggar^k%QaFgd#5mJ;hDL$-_;^wd;*pe*H_=2#$=b~!iF(I%MBU@l
z(QD)Ygaos1chqomm!V}HYm#F{NPTw>Gw096jG41AZTdRI3Cu_*(i?tCThu7YIrWi_
zt(<Z1We_BKe=NpX5z?#YEQ~sLAD1p(#^JU7h`?9C<JmLhFd7^lS{G03W{|W#i-9g`
zybVYMqs_p}$G6aC;T7DwyB6n2nPi2?Z~X?qdE{Y|FK=Udg|`^B>Hz|ejl**HQh0Lf
z0=CZS1d&{~*FZi3=ouIw@x?{d9e5aP-0q^a;v(uyeTs*7ui^Hs{dhj7Cti|PKP~7b
zZl{&S%{#l%s7Njz-@lEvi>~565h!PgAK2YRXY?HimoX%76F>aw?2e(UAHsl$u+PZx
zL9>q2Fn#weoIbS!rPZm>ibTlz;D;-uhq>?6A@r(gk7sx9LF`Z$j-f|zfqO+K!{(hY
z(SA@B%<0k>uH%k!&ze;F6-KOi0zGvK?!OMexOGRcbWBln?=%||F5V?^dj$uU_k>=7
zQQe;x2I;9uy7nL`nOg@xpAu+QNgr>*HITo13U%LAXjjP}9+9M6Jh%<lMx;F;Wx_z6
zfaOzX;I|nwFn9h;Tno;Efk=agZf{YiSq+_2JPq1)L4x-kWaJ1S{Nn}z2Zy(TUxPWg
zeEuSFXCJEDND%G+3O;cvWVmlfuZ@v-arY_?uj+;1=N{b1dFXRDWL6l9D_3r#so)AW
z-ik)(;W1bnP#F(N-T(B|5G))r0ZD0rXwqpumL9u_6DPN#cuoS;OkvLmM0zmPL}2;w
zkx;i^i1oiT!pJTIP=ER<(jMHw5c69YztbI(+yvZt9fs*!4`F(*`Utvv6WJBV<I2_B
zXr#G_Eq6X3X#Ys853a`f;o0$lm^WY~GDv&Cu6bS<1}pnF#rv8YaO=`x3~yi!g__tZ
z)A0PsV^ki#9orZ8M5_A(yb3c#n>uP7JfoXZ^!D08WY=hmND|%+?`z`W&Fgq}tS@Hw
z8$-JBQUpD{f!wMSapl5n9O+vJp{<vZxV?Z!cXy(qC6$5y4d^N>KOgEe9NMu4ixw@y
zitR^`QfT>kV+`-)fSdRH@cMoj>Q}ZzJ=ZGm_6owSP*ZemT7+mwB@|L8jF>tN(|(;o
z#K=mtt|~&ViXj#3=b}4rJL0^*zmE{@yLQ0E`9rXI-+pX+CPgU;$(}+Yl1T%8`|Ncz
z9zKq{($u*c>}=RZT?@vzELzvn?RMy7FF{mjI1XL+g@rf*hxYEnaj!IFg?Zt|(Zg`)
z^BZ(m8pFcM<P$+Igpr;Ci#ykchYb-eeJTQhXK*iGA7S^8VE=(5h*qfZoOA?4LLq9m
z>c(&PtO8?H9&Ku}TOJcX*y$lE<UJ1G@Q0;190!RXj=f7qTEGj$rl~%kbrSy)_db-s
z$j<Cei$F048`9s=a9fYt*X{sE-F^}fio{T>a?yYCBs@BCfwMb(BNQ|G*TA;3p0E^!
z<v+{+Ibu_l5S4F91inuEwC~&+r)Les)_wc1>!lH@Skq#UG+!)Uya-DcF2LsV&v{E8
z>qcl?EEdmV;}GdBN3EK5Q7T7{xI}LRimRg@R}7ReDb)zS&LW+~slQ^zFTbF4ksN49
zhl(u+pQ6kEe^v%qiV*>1j_ISPVE>+-c$`{}+p1n9(T6ZI3P<l|V&W9t5}&mjQ~|pg
zrhw!Xy;7}Eg?+grwn8z3WQ0X}<Eozw@_@_OzwaR26BY1&`39HI+(WxjBf0xUrq<9m
z(EG$kVwmRoqic(?Xuo7XT99n*e(NGKOigf>bU+Usy##?g3imt}5SrOyaObAnUF<gb
z;xesJiQQ&FuLz1s*$+2;a4jGQGXG21zn}OaNe=gC?xakAUPq)pIE0uoBhcJVXSOX-
zgp>nzdV&~@+x5^{5}%6L(RB+4%otZ4+qQZF>2L5#QVXNY#p9G$CbIo5a?g58p7rLr
zJ9k%^dYxd)z4b4KmKBUJb<8wUR(9Y;mJ4ik`*;1^Fxfb_e<K!>_F&nDU5IAiuoa+3
z|K@md{}CQu^G55&rBSb19e8^N<N3Q3v~1!^t|0A!$PE3*PR8_UQ!#z!Vsvj{0cEaM
zm)4&qHoKY5U!Zo=_IR^x3fAsDh;5f5P~J>J+!K@bzyQxKokzt%Q@G9IgbtNasyM07
z$+6bFINH^##NA)Q-UQL%vAB8d9;DI~9NE7QM{fl{5gUj*M|LB<`Y))%?IooLYX>Xh
zt%4;%0I5WP6I0saSaM73pV$ycyiYnBDx`XxC3)-+{L+<p{oIpl4_q2|f)!WfRnVB1
zK->DH{UA8n8zCw@1~;y`L0>-whgm<|4T3D<EkY9H<lavrC(9q_UW+khQdQ1a)WJ^I
z9+01D<u<5YjI$=~fgZFfC0dYr!sqfC&hGq~mzX}GGwER5fW9PI_pEy%<XIjFjU|a%
zq9z73(m7DCMLRs*FcIta9>BKi38+BgkMbXY&LRH^5f{O)3)W%h&Yjr2a0-fjGGNtd
zKnHkiUx#Cfu4rry)Tmw-&+i^ZkhCnCu$vW<hEgriM{)Ziu(q>@sj(EM64H3;o1(Fc
zAs#&{JU{l~y@#k*w*kaLQf2<hJlK}=&*Am;^{8Lo20I5g!lI|iFgDPQCNf%e{=Gz;
zeyqkA4c8H1(K5teY7G?GIdG~_9aXEi!pX4}uD!W|^2Q1%KUTPUpUfX;VW5zUFnIq_
zSY26yL+qq?MgapOE4Wsz0oU@S(dF0uII*}rGGz*=h&cWT5k$HC_ja5gG-@bhGB~-`
z;QUb1sSR!rKR6pJKN)=@5HG11)yMD@oWrhF7kCCiqa-58br71%9^%!T;|MG^0(I<+
zkdcw~@mZxxwZ#qhn<!&c*pKa(UdGGIt5DauC^iplh}pLi`7=K;MQV~VunXIF?ZL9)
zpKcK?MVqFjaen<01X^_@qF91~F40)I>mp35Hv!vxsYy8y8Ct-`$PBi&#b8sy4q`?L
z1FP~Vsg1(BNS#Z0+<Fj-W_8MuyrLml`47qgV}g~p-r(fo!6<E-gpr*Z!c(S!R8I&2
zn^&|XP5I0s7Uc_DM#HBy_ss<Z8R<NTg%VV#S`(FA%c4Q|d3bno2IR6#X!AM?M9qIb
zb3_A~+8!%*O~c{w6Ts#YjXVohc4bKZs*JLwDq_Lax0q8)A2Ov1N@amOs>v$^IzQy(
z<PZU^j|x?YA1ahZqn-<J|M)b>iQfuJ9~L2Lh;lher6YgpE(29=;SKAQGEyf^TL{VJ
z^|*ZMI_eIYOoU7_iBkhzc-d$5UWEHcryxfrC*I=yNaA+gy*D^IZvdQ(VlkvcQ#_-^
zfaE6=jGVCoyGVPmb>%#i%%6qDQM*+KM4jD>O##KxqYO~GN;QPJAH~yf0b07SJsJ)9
zPY-q_98lE84i+W`+zzg4(wVATw=7;hc&BrS=jHwDC|0Qj%nTTkx&m$@*6-mucq2TX
z96*bz<#26w2Mj+M08>N$+XGVPviEYZ`B-;E(pXE%mo6V_$u;bTd|4S8DDGT^<ljmt
z<y0Rhp1Gkxv0UV^Z3+*!tL7)Dlv=cyy#;kbk6`)pRPr1(Bobq|koKTr1!uGvv>G>e
zk48pTfjq`izz^)s&N@G2qD0v$s8*#S@k0ZgczPc-t<@k^!DpzL+>dcm@H+~Ibb1S-
zQ7MRGZ;Sq>-ni)g6wjCr=uy@H$;qiGQH~8S`>cjI`HVcPn40sGg7;>%Q9I%OU=NyA
zDTDLV+F{gw-S;w-Zwp<AobnlxCfy-(JA|n6HNaN4c9rVj>aOLmD&L045&{vNa?;oq
zsDhx#$wpSL6f+L)Mev+~IP@|Ea-{}gZd<VUSs5Hy+LAQv*^p(VAVs4@a$*9Kk~8xg
zW~~fMru2iasw8SPY=lk?ZAoLVg-RhuHfdB_^lFFK=gx5R1l>*_Kx8sE9>O*58eVAU
z%4Nur6vOn<jo|w-2qh}lK#dyJ5cTE~O0@2aq`Suvo~=TH`z1Uel~!R*q=ihOfSq$M
zoI5)dlR7tsf04oHZ5M`cxg~1Wtcl_V8SsxxBo$*Wso3%=bK(biK|f>@KiFXUsD|))
z9tbDS4^<KK?glbcV$Q#XG`VecG<D9zsT)MS$v)t~mDgOygB9a)B6#x1C1PC3Rr*p4
z8B`o~YY#-*nPZ7r55JD6Po5S0@mU|<vd<Dhk+<`%HWLdb4?wV>ENV4sgbsCWASZP>
z<<F_pz9Ein*oCrvJ96fFEh}N`!ewaMTsK0kB_cSdU__Gi$&r!thb5NG?SmCv`r&14
zHc7iITw6T^Z_6&kjM^s1BAvC2ltdzEvyeo}L0V=3H&VPXdgfwCOOSlgsVk}%w}PBx
z1BEOL8WTJ8ZEu64dtQ?AmV_P0Z;%RHO#GpSI)_hdA^_xB84#DLgCVsA@Qh+mtws%$
zwKc$7A78ZZ*A9<Po`HgNWS?9)i}&%0d@;kJMjEkcGiWBZ3{jy%yXmlMH5Rs!kDw}E
zmE^CQkj6bi2+96xk|$OCd^ar-<7)XQesHdX!8Npa8x2%v{a~XHzW_f@D9Q7b0grj(
z-mpu&frsxip^AQj!;e02qlfBTHs9x|7A*;P4peNfR#+QNO20(k6&Em~Pj$eoDF)Th
z;N1rSs@EjXvX;U((4TvjBCofc<bhGYt$?9pbu{bT6P4{OxVWYK56U%$vF9ngur9}K
zU}jRP2Hu=qhA43pl;B<yk~k*mqT~lgSQPRcWaX&Qap`tw_y2~?_ui2-S0T>h7)I~c
z;`rf7kSa4F%SuBmqee<nA`%kQ3)PLM7Z1d}STj_wRU3Ue*MM3<1T4u9Sy?%#*R?Z(
zuAT%tnD2h^0DM2_M680;#VWooRx3%{p%!E4gkj{lUa+o6>PM0{lHOg0QG<af5`F=%
zV{#x1y@TU#<4AtvZsTFwmTVXm?}$SeXJS>q`goMt0D~)M!#`1inj}A$E&}+5gpf<s
zh1vrJspHjrxlk)|kgbtm*n~ldaVLIotx3vIb)*H{Mw(KOizm{r&&R|WT^i_P-(He;
z6-n54?jaaPK=QE)IR$o7XTz44ug6VpfbO*#!FBX-&OCJ70DN$N2U}M*yw#EFN1m0d
z2PKJ{yhk0HKLC%Dtx%(O9rSGPO4`{%trF!M!M;Tm)$h=KQIm?!$W{MNca8F|z(%yb
zzCP(;|MBVqtgs6Y4~MHO`x@|DVhwSk2dcCkhI-DHq>?a)ASMHK1`kJ72V+v_<RUIf
zgVr6Jfqg^GlAe-)Qq`KH1ZlJf^r(yrNB86Omg$&sG#>X}Uqg9PajS{Qj0y6@!^h9@
z!0j$xy_KVJiz?h}M+hXSQY06fckai%>-S;XZ4nlBserVkcvzONkESiU!#v<7_FcIJ
zjfEXT!!j{$Ob;Z*CZR$5max(nAUlOzTcHWs^&SnIglky4=M3C#UqgmveROQo0ks6d
z*na3F0`<zGb@39Y-L45N^M_WDk&q0>S`AR4T4OXe@WRpuA{^f`2^aQl#HFh@ar;#i
z>bGeJYbFgEhuUc9Y(?%<BY}vnhQtq+#1B~{9xPpTekdAy1?%>nC4RVpOzS3SUDFQn
z3At$9p()qV(IG|47FBU+?OI$8PDji7)nH$t7OL3^i7>K3iyFEu<Fkl>v#HV)mF$dA
z%+UrRVa2fQxAvSnWttB`k=RSzv+m!yfo$$swunsu+Bd6B;#P`EmNIPIwjcLzK0t{+
zOR=P<3+L{Cors7Cn3|fx%8HHauZw|&B@&5%>@{*6H)?2LZ;$W*0ftQI0~<pjG>S}Q
z3GL9T0bgE8!<>+&M3WYcQL1`dv@e^94SUaE*KhrBMmPXL7iMvnsbm=l@_&n$PoCi3
z-Mfg&wnM$Dx+zaEv_X-SSJ=4sH16K;M4uHq(6*EX5@O;}rBx?%=-mZDdp6>7KrBic
zr@>QE72|q3BPPWVUE0(j*;s?*gfvuZ-4<QDcZS!6?KpA%25vuo3#VFb(6U2MXrG?K
zUQ&+q$~Hq~rxIw~v<mWPwUZ8OWDe?+{9Loe02sdAh!^JlaBxgn{I+N#p19q{!w6&a
zYgZp~lGh!pH$zDa(kW2O5GS`lm)1la6M>eLkdEra58a3#JXt?nVEyn8WgE0dd2<cY
zh4v(`7s!KB2efw4!@jM1;g)HG{<WRp+^8vvC{rPFs)u^qu&owJ@u{do+$~1RnuC=D
zxt1L<roC=@K-12h;C^A7?paUXp<KfbC}*ZdhSU+wsyG2gcCbi%icR~^;?DKA7_@dL
zI+XonIQTo@<;$0-SFav#`Wl!*UlEE@^?IRMC3`^M1cvb`aOg1>O<ag7Wz#z@9rfCE
z07(*#th5B!RA_{<c4g78e?#0owHv4RufzCtZaDS&C7O`ptX8X${N4)>9zMsz2lw#k
zaU!WlYa#E2ZJFX0IJA2wZeG6)Rr$f#Fs>=GNP8eIQ46hFbbxc}8|*lH1sO*6i1rW1
z$jJkc6`z1AEn2|dM1-7-B+{|1g_a%r!i90ivMtB(kkpSKL>1AgbxX7=&0yE|19+||
zj(*h~Nx!2R><#iqq_dI}U|y*nYE`X`ZYAQe;6gNZY+8s{XSd?i#T&Tw)E^a_v`1+p
z(n&COM$?LH8D>cNOGP!_5AyUR=sVR$t4{q;Uh^8uw;scTyVnsTt&R@$$|5l?m4vw+
zEIuxzB0}>{P4IZ_3S97yLH&AlVeM1}jVhZXDaROX>g%TC$kG#GSf&B$m$ig(DJMjE
zsxWK8P*{?JY*W1x%Bo&r`L^SDaOXPW3~Hc#eP<*jWN?ECY!IF8jj?~%F5J3t2g2&3
zv35e!0(HQTjgOBHoSmIHJ@#MY;cI^grtdh$Ea=+~*#&xFlz$iYwUxQKIgE_*B<$y;
zq@=*j%?-VJ_2O;5bK)+-uIVal+qW0ac2=lVS~pMnpOEE$1)HB`V_1h4czt9RZW|23
zuF2o)cKMXQ%7X_F;NalERiNK1;m60J`T;4PZW;z@(NZX5!%lelX9S)Yi)$9sG00Vg
z?Nf)qcGfeDtM&P^Xp|q9jT<*&>eQ*c={rK<g-SIB;@8b5P}9K(70Z|Y<n7E~CpY>v
zR$h3C5xx2#=-OKBiL8#(%lq?ZDU?6v#EBDV-@ZMk$Np<9+<cZ!S)qI(Y`ekz_-uII
zI)&SBLU_x6hM}!1EYkz9ch3&Qml#IHIOV&c<ba(xJ<1s;Po9Ejc>Z=;{{-vG?IC-8
z6g&2wL+yE2sTikxKj>G*vkRLL_TV(GJ@JC_|1nEKV&#P5+C=QzvlBkT<~T{kIOPX{
zj*x!^e##MY3g!RFk1#?`q5PYCw<F{f%6|YlLjE7;_cp1ZP$(1%g+ifFz6SrwDl6=o
znC!=j>`zaxz!F4%3jxF*?-dYt^!{|yfd7Sv+@I&C&$nRCM<8I3tIXw=P!fvuApU||
zr&B1D?+q2Q^HvYxxv^_GZU)Pc6Lts7cU<Ld^U2N0#;1!G<SMeE<Q8IJAd`Ka-DsH1
z4_Gs61jaAhh4^%KB_RI9|AJdRrtm5#{{}vn_u}~Te|K+8RjLo>FWkZHn5dTLK=rq#
zK`@Y$w8&c<M3XCrJeRIE@kc1+*~nig5J-M^5v%sQks}2*%$ke$x-E)7qE#u7rTAnS
z8;zWlC!HO;D%RgiuYZo)fms+cX$CI&q=Hcw48@<5Ba;<c`Q=|B;SE-8xXk6*f0NT2
z7UOXQn+R&;d>Zfn1C=5Nxp`}PFlxwh=rUa2ivO1a6-)Gy5%mtYZr{P(JGb%lbpTYt
zzbndFF|LI7D^FyrMMOj^@#e`(q{`WiX823~1|mHM5pQ4N?%lhbpC0*qfT8~Ht!^TO
zfl(TEuh@cEg%~Lz?(hstp`x5Zp>TL?=m!&%>UfouY`t|<+fCOsjJpLZ?(Xgyg1c)A
zL5h^(?(XgmL0Yu9)8g(FC=~Zn+#TLr_jBFv`>geS|7ER7CX<=W`JJ=RKKpdTE$nD_
zo->6+wU%2id2hoy=0?Jmux1sx-7R!w^CeOi6cuNq`qTy@T1v>=kceNr<to1ZYU{9N
z>tgG)=<lj;6K*8_QgD4R{Vbe(r&luC!{2qdL3`Y5XyQ*gocl`7XWP5fb;8#Q9Eg#K
zufOO;UW@JqMsVhc3d$fjcD2{xb=3Hb<T4>@4vGP-wDB;Ox5igsY+*g?4px<2N_%=S
zNdc<Ak3v=rS5d!wT-eNR^%Mh3i~45G=M{^duH%RnymdZo-I>9ugCDbXCO*`o@&8PO
zfU6$vKOK$A7ORF=dZoT{Dqr$R9*cW*YaHxvY!3CF(0yx;YQHBnieKqpdF5}xtPW52
zbkE;Yd21|R^IJ8IqaEu;?IhWd)GMqeO7xVBRULNdt1G8HCXb<|J;wCgaWS(j#TJjo
z*Q%gkoEqHCGQLe*5y(MtTAz5mUShXXwQTd*6`N~{;NsWY9<4!ENU<$qTwruipt7o^
z54^e-?zGTfe?dZeL~JP{kfPDuxmZq(n!%T;(2@msJy3bPzY2-Em#t<DhCRqgTLCLG
zSth0C!^1jLEgqm2Akj$y6P7=_Uae*(eWHI5)pgo>w2x#*3%?9ahBnYFnQ3Yv>8yRc
z@St)}rY<c_z=@$REva3p<)_4)yNQFG1;WU`xR>Z8PMwAi%@G+c8wS}DRKFL;^lp5Y
zS`4?fbqb4p2D58JL`O#l%qLIG<b-#_G*=T_-RKIIHw#X-Qbp<#U)_=pfXuGGULX*6
ziLLjnLHjK!@H(B;Q;wxEp?T+EBvaA=_RkOl3#Cf^dC;nrVnRBRFG3^VZ8s7v>7FGF
zrgmIf2jg_No?oNM*_*(%Vh6D?6Gk5rqg)5Ta~2Y<$&x8`S-ouTC6cX2&@)VsN(3h>
z=%(JM1T?he@Q_P5ZuF%32Wap)R>+$8(O5ETdcFLHr%Z95qi5vDsxah1c=Yk}`xZ6-
zQ!e5$ukG;S$lR@ZfTLf2M3w$RX*+7*<jE2-tJ<c^dq=Hc2dgkk<uv8`j}&M?wx5>|
z0dkhA;lF7zas0(t4{Kz|*b|qquqctXG@AQjL?wEEj+Txmv=vdSAMXDCN><JRtoc}S
z{@91QBv>Aq>nq?#woLF>@gbOl8Y4bVfz+f;)iU#fpKp37FaMVtA>_b`c^!5?L}zNr
z@sX#=9qgGy%akJdMITg|XBmrN$?CFoaD(M+*g;1A=Y{aJ;4DdxDuz~URJ_1G!0T<+
zbe4ME>*_bTCLL#^*bg5hv=tt%i4<CTZUg|J*NcEK?r!$Mwp=C{=7$Ml7(JkoeBaR|
zw&9D2b20&Gkl^WhR6?|@NleIfQzK4#QvB}S>A*VWGGdIbN*3j)qvN>*^V>-d11||h
zseKseOaIK$ChryjIp{Jsl2L5khc*<OwlmGq$3x(G!y773_`$kjOismxkf+%H;xV4m
z^0`?{MkY$(u(ei_=t{nM(GWM}xvTB+Mj$JVGagr3qErHWRb|Q)7>+~@&_ubop|d&?
zZ@Rsy^V#~7n2RTic(lzcVthv>Yb1sm$guu|_vZ8C?LGqal1>Y`{^E{s>!Q&9PU%6p
zuJP+zHkEa&g8qQn#+Im!pdXUaJX_@D-gpVL8F9H?b{y~5we!<uT{6)d6cTL<1PO^m
z|EI+5Z@zTb@x)!<-BBYGDFz|%j9cV|F+?e-se6ZQ&ihQKzGX#nB_egrJfQpW+_tS-
zjLbyJfvu|PBEqP4B?C@c1o;HAL1+(jr~4k}FiRdpknkZ)l3b%@JG6{K1Dke;e>gO@
zRk5rl5o9VjCn_FCYt2DR9qERlKu<#_DaRU=Uc&mfLr6-w01|W4ms}$6bib>(+UbGl
z`Q4l<JqjXEvZ*gPO+_cGC@UO(37>lCjLXO~zBQ4d=mjNfJ3e*K(CC{*M&osEjtt=q
zkcEr?lFbsYBqqYF;A{}%@|%ZKtCRa+8jof1Zs&HbbE(;%{uD9H!tygI#)kkH&(khh
zr5sMVyT9@Mf|TY@DfL-Re;L|Y(eXs@h9EzGIX~^Yvt`|p^32<@oi1ZkO|K7U!^h5g
z{}C9mq{N{}4iUVo-DYT)<Ps*GT~BmAJtiNp+*6kyRrQI(%4ghs{qEc5WJ5|w*%702
zhMv`QOy~K!do7UF@jyrMVKscrL)VF(8s0jxRcblG!g*)?GaKb9BKlc_amv2g(LJnz
z>n#Nb`C3pxzrM>|_isr8cx(Hf8d81dH(eV@FlI)WlcPzu4<NBnV(`>zhwCT_xqedm
zEM_sQ<pF>7G!N8DDBdfvb#ckzbSOaFx^`-T=zU7lO7w@gE<~f}#LCHXi&N-829$9r
z&VX?o^VxdU>8?*eW#fh@nWB`u-5-0pU}LzN+TTeaN!pGMAVDWV`9UZ#vNq)6`i~f!
z&|m_LwRylDp@Hu!tlG(Yscl!$`k&@n3zs&M?gSK)?a}r5ojX{w_7w%bGoN;q#Qgq5
z&{hQwev3RCZI&dlHR!q#7&?^*CeeI%!L(I^@T5J@f}}b;6*3ziYG$!_Kh#fjek6py
zGaPX@of|X`3u+sc;j)twJQh-(J9^fe5PyWj&Tt1tb7(sqR+1KLH9Gsb@IJR(kvW*I
zMJ%d*2}-}l_E70NN0h%f4<>C<If{HLZM}CnAi~J+#7v|t1iszMY$m4#L%RplJ$~;w
zY{cFK97j$}Fquet!gBhdB}}o_e>|qDUhxIoDHs}X`-;)%@=TD3z=1)BjAE-XYVcoo
z_ScTGR=;tGsCI|$ZuT?TY7=x$Z}cp`SDvvN@R_17OjYKxyKoQ-aKqer!XD5T__198
z)~J;h^0^`8FbPEPkW-|-=_z;K+4X1>_lkLH^(awo4bQttH>}a9II~~%_d-U0a_{XB
zJRFH{OJGT_-0EqT7izQsbi~bxXQoS<&nd<Pw83{f%)5tt<M<m@U!~S}a!arBz9GR)
zjMn*TPEpL~ne3~_bbnBpel$g*oIwKym;&4Bb=#r~yCc!L+hO<AbA=0zmhhPF!W+(i
z1uI-okt6Xlt!AYIc3!9K-x}gj?tp1t7b|?Ero+fa{nO2%!PKnpUd)H<8m}A}#!XAQ
zdOX_NSxZYx-OsVg3Sb&jN^2+&Wg5izh3CS#%ioXZiu#)2=Xd9K`}glX8R*zTE`HRf
zW_LL;?z}smX3OFVX@7?^*5!LLi4Y#f6`)?rvm-xg4manYUGXB%EBFD48<n|WVmF{9
z``2v6#7*-~w)9T{t^jH2iN}imEcirVc6BM&$I;T>i7nA}mGTYkk8Zh(6Wob54D{3q
z_tXiB<8hV(uRJlr4<f;%V-uF<U1~fhPn=-j`kEEA)-KW;fIlcE(HZ<;wNA~DiwgdN
znb+erRLY&H7iURG={s&o|H$1Kk!Z;wac9vbM#=4|e)4hXxgiHtamvy%nlqc3_9M>+
zO06seiHX3yyRCj?22s)62i}y_)NEessdEOj@a_HmAp~UPt1p4saX24`6HX?kPFAu?
z?z+6j{ia^Daw{ZuScGH1EWZh?)sSt4o)ABe@t~i6<*G=`<ep;x=<M-e$-^GI!kbu3
zlf6!G#6{Z5Zn0nB)h}lHJI|Kuh@#(8+&pHv*~}#yTczrfAd8gy`7>FC$`#sRb|*mO
zX9a3=wwm(k9}Fe+p)wWSq3Ht_+A!K3`k#i4_vD2WLe0i~xeZxrWf)ogvlxvXfvWpO
zwHb}#LUm%imkLy#CP_s*B}CGPy<Lj(*OT5V?O5Z{p5M3xZdJ1p)&tCS-|d4;7+j$o
z=$~#U%2OOWf9bwhM!r`GTXFefpQ)QiK3>~QmgPSUm$gV>LflH1zgAZ9Ih)#d)jcAF
z?vYDgy}-g_^6!`sUycl$OSaq;)&%-%Zzoc^xf}(yImNW&1fSuRiS=Q3{w(LOSj8y6
zk)=$Val=Ww{fTP-j4=}^Qh3<%m&1Cvcw%8t+NDQkf44n$A}=99rH0wQ>xVVV-%c*g
zRm1J>(dO)r;~#jb4;Xl@I=}6H*3NFBSIyQ|Y@bNtDa)GV<P}=EO3mT!$MWGl2y_P9
z#Y;>r*O$+CSo<pq*e~@^z8LRvwN6ulTO2ofk0tzaqNlfNyj{Ly^LWtba@mh0VzCbL
z<@kp-V$)vi{&r^<9y7DceFrZ1;<QL9EDmA#`LP81%E>+O<G^LjM4j4B_DJ0)l?$Ht
z?N_O!Y340I6s^<}Ylg0uuhSaGcdj}4v%iqucWt+3ayNgLRmw<MIQg7K%viu1YJ!;^
zeQ-Z9m~t{X&t@3yo&1eg!f-vg;^K&&;px@>%jq$CUjFl>+!tUo^Qtp-+G$)Ugus;}
zPLS8`@~KCMzZLAqo0<*LJ<h^(bhn1{z_zZ$=olz{bhL^a$67F~gwIkEz$7Y0%aY@8
z&ldF4KJ&F_`x!8Yx<8OLHc>=QAu?Vh6ZdJ-HV$abB8BC8vu(KlJh~Q_Kag@kWq3F-
zV5Bmf|6|o~a-1M8U{6y;tA`$nxKZbk_tSB+=f`sCEAFb;ZVnuKF<MLH5s&Lov_+0$
zijUwkukBfMap#z<nR?T?-rw8qk93$4X+I_8Ep!NYOswX1j4`d;p;(wYQwgJ)SBmIb
ztTqaL+F$QmRO$ED&+<I#;QmI7eZ&TT$1~;rk*9+CDJrcRXdWm3z9{4|(fRq_nSq@>
zUht*WpzVRJV&kn>ic_>{%0@v@y%ZTX`R2j@ql?PKP?=qk;Y~vwhdD~3bs|`|gXWru
zz#fxli(sq=QjXKAe%70vo0y!H0b8?#uT@XM7E2gf0l_zSVY8$JzIs-y!A+IfYfeqU
zP?|STC%Vc9RpS0$;6NqqoMSq&AAg{xgl*T4EzLp!h5Kyx^vc^Te8oGYmkb{$L#$lN
zEs=X6#2M<6&Qigqk$9%LR1uFxSk|lsfOQZtO~}j+G+=K!Ze@j?Vf<(sajuT3LHtHN
zvkK?|o+i-PM!eWMZmw*+$Sr%$iS70f*C2W+KmrAGJcn9>1M^#omjmgigf~r79wUC8
zA^JM=2Fx$7KA5ym3m}Je`IOxc5CaTZEtI~6LCrNa>lzuD_$8FZ=lx`g0&w|kdCn9S
zbLbdQ`1#s+Yvz9L&(C6hqXqZDEdLKt7${Q95%F%ndWqQcPA<+>h4ismUEFFD2w1im
zWqYIPM8<ASf+X~6HER7m=PNYPMNP~4q*(SPVy4dnP(P2#F%6l1vSSI?8(%!zW&ZLp
zFCSVZ)69YiTks(Ys#x^nyHAnvw1ZcMMclCl_5iAK=*mPg)m*Am0L#cqYNKZ7f&vqJ
z-qs%-vXpy}IV;^3e+aQ8X}OM~JRN9QnhL*nU;=1;s6j$laWOKb>--sj-U$qjntwWV
z1Zq}+RrBeki;>AFe!<p!IgY5P;mwONmICBUP3;0}Gz0TK^y7FA(5*ro{WV$wKKL0G
zc`JSryTk}Gu!BLjSnD{W5ob5w;hphcrnaHrkjv$GuL&{Y?NYeElZ<$|j50gfjN&OJ
zOLKDzdS(1XwJO|<e7TL8luiT>|25`Zs3mo!;m0QF;YMUIk8v==4&&BniYXOw9X>sV
z4wXOQX|)tpSW;TLpktp#Ep=!ACkc`om<+v+IK0<=VbGp2m7^&8?QiRKVxg`;OlEY<
z*$RJGokJdU;nA~Xa|75tH$yxtl6l#tC*zbMqw@5Q3nSr&@l&Fg<v%s0NVk(mL8I@Z
zd?)RSUz#iiw9t|j5Oj^;o>L}fN-IybWbkC(OE5@60FrxhQ&KdOATK8zxShUw8v|3f
zqeb$cw_PCvpx9Q&9Su=OYa=<(WkXTWM;g6l&Y7t(5`CIdCl*7JmcRCNDb)i*$rafg
zQou+aE-Kq1jf%@cblNofy-WYNjNFi_&@}jzM2oHuu097l0+v8=Q1_Cmo2oWQdAxUY
z6u>a5I70JPr!+u=#m#iD;jo{>2@-z;m4#s)BXM0URhgGAJrFHU4NJ;7zbTVb`P*Wn
zFdo;_-~eoL{0%z^mESKd2|V#7Py!RlDcg1Tx$l~W%-TV$Kf=Ep3t8HPQywHngGzZA
z320?lMAD5gYm7ooQhHF&{Li14Nu$P^Wka`#mm2KJOWh;Er=?&f2YPD6B$IL7Td2So
zUnxvQw5T2X(GMIWT@FFy{O<)X^@t@n1FUdzq2)!bUa!9?_d4PRvljQLr&DCA)eFjI
zrIcAbqYdIsS}ZRKM9_^Zc+u!bt?7(}?)XbJEoQ1^$?sEQw*JO~+-wZ9@y`RFQZb-+
zT9>;{`e+ff)Z!2;mrmxbOul@YiDRyX+Ct1(ch<wN71`9^zt&;PY9BtjAY`&|rMM<z
z#;V({5<5rhxxKp8>_p?ClrE>Qnp~JMANweqZ#L;CmE<78jxCCs?somqUd}-f)BlTB
z!+HkPXG#llHWag~?N01@=jn8}3py?oA!#tTy67F(_9Wl+!leimNmp{YaV)r7+Bao=
ze(t}m{$pwHM-cT+ki+Z^Bp+8;m(jF>YZJ{lVNaHnPI7s%(>Ouad`j!P&D2>7hfW%B
zyVSQx!Ec-}RMB|ge6cFqb&c7xi&a*XBv0*_;j5RBQe}$nV*Zn5-q?kJ_P37Q&m60^
zV0<hZP}J+5*AoZY)LyLXjew|Qw(QmpYI;8F1O}8_*aC~N$Vnm>h4#(k+=G(}rD5G-
zXOz^y?G)knFHhMUo(xK4ZNA<0E&~9LsE4TMFxr&YS@yfaY%jS1-|sP2!m}xq4s(RI
zuF1*Zm|xP;ZT=6qU)sFP`u-ZPKAfSWR?a(Av!bj1?XT7l80`ygl=$<z2Pe{#5)@|0
zFI3t+baQ7fFJH=vjPSm5lGMwf(MXoWU`J%h_Z*J!t{&vjg6rp!d}YK1<Thbl>Wg*r
zLhIYppSx|quaf$`QkO|7du^QPS-xo&F_Pk+l#UZsCCE`S(YcWIHV=cPB1Cgfp+~1E
zv!X=McA25CW;j~OVE)#q`cs?MjMolZ;$CcU!B=#%^+2#qcC<*|A&G>je}IaZ@}Bv?
za9Oy+_8a1}0#Jqz8~!_u0F(7uT#dEb*7hKJ+sz2xyG+cW0j_tN&LX|zI9uZ}>ml^i
z+kG6X%>1~%U)+E<BC23Wt$98jjx+o0gTV4II?Y!luCyf4=zuLV+|5E7*)krW*195j
zNh4j3BIc(|r4iJCn2=APwT(`Sxny~+R(S$GI}OZ7ACWiL0Knfd!m7O`A-vz|p@tqP
zG!IdU=jUPK(dwAY$kneqW;?o6z>h#apTgUL&d6WR-pcRn$;D9*{Y121vEH1PWjyc|
z%yo%t#>;jF(!Y)nD74cfX%~k8QmGGcW7rYwv^Gt~(t_)C72VDxam0-UgTGfq;k$B=
zrL)H$HxZS7-AiJ#M3eESZ`f^r&U4T*7<FAjJGTf|=8-gJR*n^x#wQKIClJm|4J!A_
zcHk4ozHK)G*fsx+etmg@c*`1p!&y#um5!+uZ9qU$2sn$?`99~=U@nT)F_hwJS`z}X
zkj-L5q87-t)Ke9qq1D<nsAtext)+z+5VRR6wZX|kGy+sOPFLbdWc1Azo3gV6?*!S_
zn@HWY)OYN8Z0i)P3(2WwY;;EGG4;Vs8he#((g;0-;*SEm_RE^Wr$$=CyDTn6G(7&3
z^Ep}K9=Lbx6La)GFPMbTf!iJhRA+*Yv<R()<_o<)vn0K_D{l?sIucNcX1_5DoJfZ5
zFv8E+83ekKH6yU|CYb+S+*#_d6Tux<>CfT;35}!;u;*K_KgEI0Z{n9)57^eNcN4ci
zMy$&Ze=CVH{_1>{k6<z69%%##0%jnlkw$7JoN-&<I2<px!?pVV?EOYnrMH(NqJ8j9
zuOxzv6@KA~6O=kn3xzdM63D4BU+-VNEHtoPeT2+r@6&~RZ@IA6QK|0U5$=W#sSO<M
zd~$xAXP#K|BeHeTvq1q<#SSKm4?DSCSsp9cM})sulCJoO<92|;k^ehfjrW_``XWIc
z?!MHw`EdFCsxXyr!0vG4p4IG#c4M{eKerEA-ZW(B^6ot?4=YaF_tMqER}u3^)i}(N
z-)h+FJbp@>cwPl-sdVrfW;-2r6RD<RgMZ(qE;ZRR@UW;1Q;CXOHe8Iddbi}8A()4m
zn1(0p=x<&}Tb%z|931)9+<qmAhE^-n#{MZLpLO4S>e)L>z#Bk#)7twjw6$$v#3fpY
zwmx`u)r6+$A#S`s12#PdMH#pgux6(Ex}V}T-MBLs8}%JB-a`Ad&1ukfLziHmA8$Ck
z3NB*2&l--iQymI<1Q4~_ASWCbCeof6n~l!I2uXCZMzBjpH$Gv(EObCj?-sKJXHc)c
zObjpc=5oDZgt|9&Q1i0pe%djdsJxT%=2d6g@W=NoIH;+WnbEg+sLL>Dd%>Tw?+#Y_
z9#I@qL*04|S*=FMm_AHsehKK`!b7fqz1F6&l%+dMt=qlaD`fw5+>n$pWgs>J;Qhij
zd{H7_=RGK9|Kl_vn^b>ud9FeT6!tg<|1Mct<QS28*@x(F<%Ze#E8bEIn4@4ns(q@q
zASw7)GklwyIjawccL=}eyMB}E@W&VBJjp-`bOyEHmVPllTJOvSHIwh4%P+tT)KIjY
zy7Gi~kE$CnsgWM$*IhT|v+iOI1!O(hKdtM$CO?8KV|z0SJm4dGUZ8dV42LAW`>qa6
zUAP%oO~ZN2u?l_;1I4V523MaLEiFH$cEp`UB{@|oX3tn6KumKzmfY_#)Hb5zBP;sB
zdTr&}uQYF7U)632iYZEZzBhJWu%!e?hebJwe{ws~CjNTcHJAqN?6r}LViQcFkNvrC
z1)rO!8Gxipj97mlZ2to<*hOF{N^#L_;2BZl`+8)5CUB<C^i$ZnR{~ZlBlY2Lq<eys
z=;Y7Jo1<GdC=G|<0Cwfxw?%N?O-yk5Jc+aB2OBPDVWZ_EX~oOvd5!3+qn7^4D||i=
zI&t}LxCBmBU%gD$LdRc)lVXUPPQ)qV-&-2+J~4?*-xEaZFVgn3U`Gggg6>nbm+rXo
z@KN|H1t=3JRF9nlChbdqWyb|KvqA3LYz|CAPv;dO&;CCa)beLvKg_sRW000SUqE@@
zj!d!bz#K9J)%r`28C{>GT4>DF?K1(J5rXei&rlhf3i`2KAu(Q<P_X#eGTP?J3oJoZ
z+KwEM#?O?Bi2;uW-j&Zr2bnuKppNqh4L$%yC6^?ovla*wyKST0N@JaQyG~v!qZQ@Q
zELEk~>`u$_8-KO)4#_T>IESwW*~3YgVS-X?<&w#~96j{yNEAgqtyt~~sg8TX^n`Br
z#G*@mA{ZiT%U5}V;jYIPvW@8E-XiOf#|hWxYNpW#`^k4+_DvaJlSCTkRg%J_4Wi7M
zz&?-1D^d~`z-n+lyXAHG8`)EhVYJAsdhBxk_m;LaN2KUmDl-rL;HJ$Ww*QsacfYWE
zj5*l~161>D600$i65B(bKdq-2d6O^)K9d@Gt1j+F;%pii{oj6A6*2vdVc3fv(6-uq
zFGW+S;~{5X$BEFgXZ8t5Bk=_9AZaBzgWppj$D77lITYHNn9SNNl|Cn%RPZU`lD;M?
z26cGN8kVbxB@!(G16OyE$=VS(Z;pGq?i#t+gR7c5AB>OD=l2XgHG$Q8gtPQR0j7L#
zPOHz@yh)W;pnc^q>L9EXJy4~;ck!Fd7jaG9=$BkW&>hF$`>dcht{8NNjFf&%gg_Ui
z0ddnr@bND3Dr4bd;aZ~?7lDc1#%21HyRpwb#&;i9TI@17caO7+F7B(95U2QIBChY`
z9qcY#k;=)JIz14Tv=MGu&1J+9zt_bGCb1HLh5s{_@1hY!q-f$sazYRV%e-SS?z0YO
z;9X>ticSyYqpJ=JLog3J+L_gmlk-fO>c=$Ef(M5F4oi0(&(Yi@SrN($Sg&i2n6|Hp
z5ubB=5bO}V9(pV62#9QUwjTImuIoSJxZ7}f5Y_bO3zuyXP|4`NL&jxBL%5HCfUNZE
zAefhaF;R5HMD^Tu0yZ#OIyeve%+GT!nh-nPa$W+a_d{xeJd>#py`-Fe=0#^Zh<o9q
zb!_^?2SdLG^h%hQW=07~Rw`{a?ZeqNESMzk={U~vVs+B-*+~{R^+3^R*TE2N`YhIB
zoV?0Jv@$oa@6E0RkIVc_D@XW{Za(1e3mk;|u#UqN^P_M!)0PpTId1nl=P9+wB)&UI
zx-8I*!Gtw!_w>&H1!i_sDXn}B_nYj%NDO8#@@H<`LTKcpwRt6hmp;;rD$Th`kc?XY
zgWqU(^6UZo(sZNZ>aErNhZKr9_aXcK_dYZEN@9-}C)m5kL{fDoFHGMY6iY~yCG~AO
zf$%WLQw_uSj~*4$u=N(mh07Jp$DiIsDX1rFx_*Zi0+%J_y|Zyuq$dl(O|YU~0GS;{
zbP{nn!X1N3J<CaZHupnis`fu9?$ZWkwe@m=R2r)W>S*8ZB5@xGVqS=J28ew6y0>qJ
z8Wp(QxtxGJ2Vdt>MLNWh11-K0xN~_plR|_hSneRk2Z6@>w{B8$?WP(aLZr{_-wgP^
zy-50&J+>+U8%b*F?xNp~5nbwqRq^I-I)%Ro2{vIkUbzBWr`{gBmS&J#;YlE6?u6z%
zH(ahSJVJzjoC28>RP9h&84jF_ke>pi<s<Gi=Z*eEZpK!5k&bO_NwSZ$)`j>n0(Sjh
zAyjXFQK$gr7w3<*2=st0wvQTR&W`gewm~MZ1i!j5JMnDo?s>&f_~p7i(joWASHn<o
z0F74(ouokH1}*cXywOw3>O?L2&)zGXn4#D6d|3uY0Ve3#^!gb{?IRc;A5DKKpPNRY
zUDhTV6(nTc>)12_@!efQ6no<y5H&x3rPZItXPATY{!ju^YC+Tc`1~s)t$Q%gH|%*r
zpXmHvADlEEHQTh}6h|qFW+9g#H_6E~WY|PPz@{W1wbAmX5~mH-O1O)PP8V0oV0$1K
z6pDq}FN|^~j7}a@=Nw|*K&lTGCR5G;R?L~I$2BU%Pol><6DFs{Tu|cQmfW4yMbH+T
zRBU>{Sp<4h2Kp&3(Nm;*Q#$>ZC&KiGdkkc98wvi8CIgf@@}TEe2<4RgSEK<Oj-2}I
zf8YFrT_*{;n*Sk~81tkXiD6CmUMUC{$c?mPQg#cLLpSc9;S_95Ud2OUl$cEC?jRxJ
zZCAdL5iOva+AxwVcxl;St@%v^16PZ{EK^g1Rab#-dcn{da%E>q7f^FUkdngvY%nnV
z`KcR)t^n_+>zkh=-fd3Y^CuU}c7=?<_(3+lDAivl)sO0CF1jcxBhqdzSTsED(O-0#
z064kvFezVM(9k|M$L!YIBczzBEWWLKU6krG=t(N|l3W_g2ILl$1+SraJ@n&ah`)<m
zXSATw_kR$2^n|#MF#qS5;Y;NfgfFsgY-V}#O!?AnHu=J>1Gd_3gWh4u?gFXwH{Y*j
zrc|O`o1S7(7LPwuJ{F%;Amleog$hCp%`OFVUK(r`&R?nCR!CuA*?D+p?2?gFymrn~
zl7kn~#gZmSYfbzjFA{mZe`eCsasW<R5M0Ph0z;$<LirgtiWeCI#Z*QR=XkjuoTw5W
z>2~H%q%ed@`v*VkD3ApR|4ICQs@S%jA5@>azI~1Cq5ZaT5MoN0qQF>VEvxP3!7Z(S
zd89FgB8N*&B1-H+s_o*dOSp=5BPy-aZE+{7$|6Fm|8mz7`t{j;Y0v)p=7u_X_cP+N
z@G)+}*4CDjyZhc}rnJJ`|8gP6Vp^dghr@>-e$h~Ypo=e@QNZX>370$~BZ~MjBWN!G
z^fd0-&>tX-cZ|G$%1XCakpXfGEmZHSoELZjwX}^zGrU2e+@e!od)MAwcoFAfZWtgQ
zpTwCZF(yT2d7@|bk18qgwV<_z@|YRV!{E|Pi^0u-ZNMm`c&L^5f<yV%fHw8Ca?Ex^
zyQ1E3YeO3YqmW^0;t@K}G_DtueB=naO&<jT9!n+A0m_yQ15#>oIBfy*xtc}~BnyDi
z4pCsI_@UgBdY7$0sHhoZYAMDnfOzoSn3R+iKU~VmRs8|5D=8Z)4@;b6m)5pPD>Jwq
zk;G`dx!bAJ6{}xd{hj)Hgg+6U7c!c>)nJNb31q(bib4%xR>&YKiUPqHDlvTciVjgy
z8FIMe%UU6(;?EBzP7QTEo7<#J4X0|yA*iN9L5&&yFzuF={E4T5D2)>wr?oi5B-2+$
zy(Kaht{lBRhykXuJdYUwe^E)ug|&^M-}2<pGVr7u`bsOs5R%W0>X?vM8V*OVXk?k}
zWI{K68#5}GA{W;%cnt;@C$i9~)J7R+FAq%i^f@pLm2Os>GT`#2M~%((jcTRThDPsK
zu%&I)SE95uHTA9IIVS0qp)K+;hkVpM(NL_6SW*ar9Bn{kx=FG$SI{uW42r*2p=$BL
zrSZMIoM_Y{kIuAI1I7r`i=vXFo(zd&>P}=uI3BGmoX2TU)TW>Ug<q1Q(5qZ1DJdOF
zg!K|%etF%G6(;;^AedpQEaq9f@E`;voHAy9Sb{m;`yZJchW3GdcKX3;$M$On(ej3%
zQbV*lv(|SZ^G0NnNAdpkz_dmIkdFbzs#cq_d$}c%s}RiAv9mpH$LV$N4rq~TxVRB8
zf@53v*9#{kJt$iTCAxrUP=%gr4o^BIBjM*3OB%yVQ1(jK=GCaw-<7YyL_WNT39{Et
ze?uq(+?DA`M3DVkAE<s#5Fs__xc$Z-c<+0;Yiy4`8ea9C$Qa9O$FG{CatYyDl0sSp
z5lLe#T?6M1UAe<#V)Yu0cg@O)Aw)MhFRqu77OXXZ5_0bqxBcb9hRc5k-5ygf^xBHc
z^~pFaq_>O}RtQi->X>*F+sEmd0tSJ;>M(`Tqnc{cau@&9abmGU(MN_C>mUxA1l!?r
zFNRVC#$y6*ISV4dRfTXGV{J~O3T@Yosk7e7TnD#f<P=%=bnxlq*Uo?9IHv{(3Ou$S
zSP+g@8{H#H@l_-!m4WHux5hxQ<rj4k9h%jfI9WKrA6HJf)L0_6wbNkJg1@U`UccXE
zYBeRv4?*5WnX(ADgEn$;FeF}K3)P&GtB7s*I=FI){%kF#+JJV;lM2Rr!lN7?I=Q;)
z8~THAAGVFP1`sAsFui^r)GeR>JhArZQW=h5tXNtfB*}jt=j@#%j-fbw@D%c`;eV8U
zrX!VtCtEixX7@Czy@;^AgN45ze+z~ygFArMf2aA1sdXjD2c-lj>mV?T8fH@A19S@r
zW6Lxjvo_j@{$@1yF2xuf`(z;{ma8bJVruk{V(dKW%1+a)vWuwH%#4$u&>KC-Mqym7
zEN?;_MQ}2MReY6&a1ZD~7s@w?<pw&G`-BWOdPDdgax|7iq!t0B#`CP!u@MX|T?#B*
z5MW79L#JYvNI6_iMt$Ei;h-56!Op`^4Lae>A<l1K{w$R8<>^K*oux*+2V>}Yat8lR
z7_4h(msng=AGk24F8|#H=abGad%&W{g~J>EwVDgWN5DV)+vB#}^f$^dCvyL{kIZhK
z0{xq6^vS1BuxAZKe~gXIJ<vbRd)5y|HL%#<j6@&;7Loi`qX%e+q7m!r`NI(potoHe
z6G#ScG{4(xDm3ysu~Lz;G~;^u^O|X{V(6K#@uyc~QW2nl?Wl&v8L1UG^^tZI+k6Ds
zG3C9*rb<7VS=z=Cf6muvZlm`}!`}?>!n&IfTf$06rr>;uni1s3mrl<?ytAZdJDHem
zGUu-Tt4FdAL_#u|j=ldiPsF>j*ZIIFM(SG|S)^8l_D8NyqFL2hi0CCbZ{Di<#~RB{
z<|Ro}-W>{ozL!~~HDQQ$T3zd0ydJNxp@Ba){uL+Ej+X{l@{QQn^sB|MD!x2Q8*J_i
zV1^dDD?C8Zea|-(&E-E%Lx8{lu3Hs2RQl#*rnLbP;L{}@Jj-Ji7gt}}j0fe##M9?1
z_oka98B67(g~OFH?o!E656_|ZX8DMqwDMqREUu%FBI!#R+0cC<yO9pJDnNO({L_@2
zDp3$twsne(h%{dpt`2P#Y0;qB*hMd_Trl~f{D?t96BTXhmed^wlhd`_48&|8@IF9k
zC!s4xU>ck%rnZUp`p9nx2k^%lEEQ3X+O($$RtF)?<D#;8AzC_E1yx%LoBv#JVi{Av
zxVOY_p;{%g0)i^x)&nTHu2gVP1NrR74EvNy>05b5auMwvN|6l{a!73%HHUi9<gsuC
zFfYDx_{<x$ozUxrqs%0hDt<y{ZrCgBm;MIs*E+X?A-%h>Z>zrg@*zs&w-h$G!sXQD
zLtec^a&m%>^wQExx$bCloSZVKi(JjEsi)vm@1M?7M4$KSNVK>Cexf}cMbx&v#ROaf
zrbYue7iT(Qg%dK{p>36-ue8^g+$}P~UB<Kc>m|qaTYgk?7;#BCm3SL){_q%fAK<L^
zn3oP|ca8(F7vFhbjA-=%v5iFyOLFq@^`9G)>7D|<nrcg{{YR>6IzlQ6R~AFFqnujF
zP)QOGz8dD~x>5Dkmr0K-<*mH}W&f6e$+|R=Uwq8mqR?eYyc%~X9e?}d7kvF;-JyNy
z^cj*vgBQKg&Y}_}dUOOaY<YaPO@j%1@}$s1^~TxiE`V?q-qtbiQn1OOJXj@+;mLkI
zjWI@&hM*)06mJ&bqXKNnIWlNV;|cea>X=Fi`{P`Ud-7?yM};Gl^6j&whLZ@HQch1V
zFl-Z)FQzx*3ZeUbs+~Rh82qb~$<ZQ6L^r?gi>EN|>*dl$Hy;^BbQ1$PGVO<|4#aWI
zs#5BCJEXG*U1dLo16oIf%>3D2ci4HQ)tEF3wX<y|FkQ%xs6edtxYf$eh;T8}vc<k;
zKGe)W7RQQ#Mm_=(d_g&mb|KD$C81}0@ype_ijM23xM{izRw)l3kqOfF&GQ}?A^tJI
zJ4ZR1`k<r(5gWt=L=ZsKsNT5@uRGhYJ&#gyP>L-m3B@<VS^`ypDwFgu7OZ#~&)@#T
zQWrTbHl}y|uC$XHzkf<4#06w__500pmT_7w`5^XGU<xYM8v_!d7R`ipe(enZ_nI+L
zf^Tr1q*uRoD1ZhCM5BYLi`53OVsi{El*s{)g&2c5##>o#Bgnr}niMWE<c4<u27&ZM
zwq;~otxD@C%~+zwtaOZ}eeFNQtxw;tz+mIb+Sm;$;UeJ{59oqAI~LhdJLhdCzLUi3
zqbg-7gj33XF;IEd(qKm~TbgO5!#cU@9qUXM+Rem-)jZj&${6J8x5Q}2kGA~^+%l<Q
zGg|p$;htM;;JHXidWvA7+6HK8W{r>*H^Fh{gi$_|1D{m!6$2!b6?T_#7ZdLKH@~G*
zUtkWTRc#r#?}#(xp~xZ)aA}U!Kl{*S6nG=6=V}q{P|3CmV0pa-wfT#}36?B~^m1_b
z&Q#()`$&+<ud~$E#q)opL>c^R3=jfT266kw&m)9Z{Q;A-@Bdlhv%wg^vEg(2W=IH6
zH%g?`$A4pq!ZOd6IOJnwqwpK$UI8}+W$vj|ezsg%aY-&&h~ByB;60(BxPm%MPt5yT
z?l+{1s|9=&N)tlak$7{C5aK_{TnBqddT~|JZe)@(1YpmX`r{AydOsBQ^(>h0nHXrv
zSwC3OoXXH7gpZhI=f_NS!qvU1A;_Iz$wqpVX-=-9SO-*v{1WuLIBG_z?jTM;A4MY4
z{~6}F=jx-w(>qB;42@<6D<hd#9r+*F-Iaqwi2*l(=iGnpg3KPLEG9xEPLgVvRzu64
zeW4;YW)2Qmw6raEZ%_Zb@Zujg9~qmXr?)rwiKPGtfgu%i7?`in_Wt=U45b4<n?!FY
zd{8xm?VY(lDn^lXOiFM%#6gIMLpOm86JCx9XzOu<FBf`lNiR5OYhi`rA)Tl`O65RI
zqSzxIY*LujUqtj(i@5Y-rI{VemY(3~Xa=nu5`JTv6#K8f6ci4<dn+qeYM!LNx}cS1
zTVfPlqN1>H7*Edbesbe?$Bq*%og`iAIw63==S+FK4zh}N3^q0l@E|h3sCKXruD~Z=
zX2JaaIFwC4g)Ykqs4JW)nNy)j%SWGim0BMSTaAfdE;^1!%J3`bdl+W7#AQKNfn0%n
z2M@jKpaSi5Gaprfeib025?VkWgZq&NL^leder*!Om7YQYL(~ffOli}VGzO$#=<BT|
zy<UhoxKT69PMK{DS#WEQhl`Jyy3v%jGqQI}9EEpz=*?Z4n7~#+WZ@+HbmZwgh!QxW
z)QU153j{X&3N*G_Y1e25g7Hzg)x6cY?LIzSqm#Xze6Yvt11O%@gOv#ACV#B@C4;4W
zbimmpL}<h|*L17H#TRtXJRVH%=@?#Lg!Zv__i5Pj6?|}`k?2(03Cv!@@=VwpMmTHX
zdpro1&M0D%g`RlT@`QqKPgY!gj=P8YCaue<-bgf{w)@%tpO75wY5^(>88htf7<Z1u
zLSzFr9V1~iULiDSIA?`SN<Z-j3yGD8#JsjkJbzQXOq5E@tzc3UdH2XLWbnHY|M-WG
z<(v5HQAn3lYxMu11bd>Ta<OCQIYz{cLwbY19jS*5!y?+akA?|%*koCSwl13f3Q1J*
z+}^#M#a_HgxGl^43n!rM<pQCQ(7#y2<s{BOi~JW|@KgRTd;lH(LH+-b2Br-hs1)G8
zh(wwr%0Cj4>Rvf$>V2+G;#|2asK>fZWX!@3#@AX*lBBQE?QN7S{mnu4tC-2XtZJ}>
zXD7+3kY|Jum*(?0%}oz3X1vmTC-hWmF6K;0WyrHD0^C2-i(zG!JghV6tlm?^3r3XC
zJ~T59yN{acUy}L=U~y+35B1=WC1Q6T-M$JEmrIRF4XU2arlbX{?Y8kh=+X{zkgi*d
zzR->6>SSpLU^PVJ6uPrUv*Ph9WZNjeHdqxSGGp5lS9H*mF?R7hR57P@V;i4oNvl2B
zj%wJ<+*z{aB*okWn-Z4#0Gn#TG0C4}%xsid`Pi((2JHE<B-MiZV{obiQ^q!+aD3MN
z0IR0|Cm}hC7@$-W96kH>OydtkxmMPgfcP4X<qwnqR3)~qG??K9NE?7{=d2W(HJp01
z?DOzO(KA(-(rG|jAjjk?svwYSW{;t8XE$?X8R~QrMmmlMz2qmOC_-rWq0589KF>{c
z+L}4X34Mo*%yq5l=65inpb56{BbgWrM^9t2W7|mi5@o8qB~@GFI9B$b(}UpWGOu++
zw7ubNZ%Zu3q3=Mea;W!lHzeBUsl=Q|ZkD*VX75~FOTNk|()-EB)~(7Sn2ttF<Tznh
z?k95^Wpcdw&zYx9WJ~Lc*=`8E-`C86stYxt#bGR8g=`_g84B3$jJ{@WdX45T)DQR8
zko`pzuhazg@JmlfNZzIP+`bh4I-+&S2YPJ;71r?CW;Qbx_O4&`Nl{Mn=%@l7OcC#P
z$iVj0LsPkm2Cr1v-66mS?)xN&+>W@WhIKht&1X%H?p7uX1bA`Sz;G<_WEfoq<XboZ
zjqlS6ydAq-L0s=o6yZR`@JoxH0Qu{qb|N+Ud<s3X;b;`k=EX<@gEkeSzo@g2F7EZ$
z?Xcv@7%E=HXdh9Uq;EwVl$x(tZbyD&>LZo%%;zXckm5$}0>BoSW|jcHT`87#J=<VE
zBWz(eM}A8<Ph5Eo7pYCK3&D(GsEaiET)BvrDvdG{e6Ulb2qoDA@Q;2QU$q2IjTr4O
zEoMf!u!m9%OPserQ9|seEtl33I(77LA)X$J@2uIE)~|Wr*FMicl~-L-T)6jX{BxBa
zj%=FU!tyRtdjq0ct^?4_sQMu5EhD5yUKHt}Xr%qK2R0b{riugA$`>{rtho8uftwP4
zz!fr}hrA5gATmtCb$SO4CP^5_;=Q(mTvS$LW@u%>-sd+GyuXG;wupFiLo9VKvLcSk
z5WkIT-xM^f6x_ASY%tEl3pv(pLuf%6#gx}a8meThRgG5?H!R`3uR9;IFoZAAnySs>
zNIV|%)*>+ojLu@^5Jb-s^P7v+W5RXx`M&vlEIJ9cInA>2J}M5XC(3-`O)i;3bw}It
z-5*&|nH!xqH~ciW{ES>}uRMmZm4r;Nn?@OG;m8Y94^wsD_2S7jk7oue>XceB#C*oK
zo&kK=fEu5NinhOnsvX5rg-Q%vn031WXqLwf5x6cPCtvnomfAy*fMQppyNmggC92-E
z<yItJF?#0$(2X8XhoK>v7_c!MifVoE)oGbMkozTWj<1mZ)4MV4EVtZ^AOzP1d}ao7
zP>j2Ndp0{dNW?|B6(b2<R5!}|+oa3JUI({6t<E;syUaZdz^d6nawE;Nwt=Y2X`1J&
z67G!>5gZ!3InSTpyJ=^IOj-<V@gOGfx8ap%Xs9jU(o}|^5)rc^1chr06s<+m4ei?S
zQ~mPh?meAb(txF$r5hxguOi1pRDlYRXZ&4MB<%ntH06jmot{9wD_qS26SHBpQ(BFP
zU@g@_<UQn|G*sy09QENv8{=9bn@Sc`QkILT`NOfz?tMQrm-wu`v=F_tV4&l6#WrRd
zZi5E3my!emLmg$9v_ExMO$px_GwZ{?aU9<o?waV5uKBqVo_?r@`G^#rsaUG<Lmq*_
z$3#ATjp?Yc&)wk0P*Xh@x`UX%+SAb5RJUH4M|t?uKyk*GCz#=v-GF}%rM>*1Jh#$C
zR47ofpBb~-E#&#<thioWV+p;vncHXAeDW<lCxKQa<%d9_?j+y?r)GDUL<8^qx%$1e
zC<X)W#n!v8Qpv?yS@o14ZKe(G!Kf&K`jpK{WW-kdQ^{U&xzU;--Hp*CD7g75*mPU^
ztaDvyj~0a>bd&HN0A%cu|0N(}yjVa^ZMmV}(3kg8UrQRTv9b7*V({UiIaskBB|)#K
zJe-2XNLg4E`uF?dNFZ?bss7hXVNHrl!h1y;?RYtmAJN69N9dQc>P67ZH~flZkPRP)
zUG6&Bu(&(YnG3L)P5i9Sl-3O+BZyS|Y~O~TUL=Qz7beeA_h3lkh`vf>M0O=&0BuW|
zKSBtY{ZN%gJ%!=k6Xx?!vO_yP?Ck1bEzq(J#cI!TUqMNvNiNRkwj_RU`%J=}a&KLo
zqpSGegePsXi=K%l?0}aILA?{XiW-&f@PdKqUjf2x&n)n=QRQdHm(zM2#m|0qqM^`0
z@8NK1c_G61li%0^NDSi_yY&dimxd;H&92<tu&nl}sDk$-(?cS~`oZMC_tzB%cnjIm
zXn_9aFMi2t5Wi^yk{GUTL;w}Y#8V7E-oOKOraLGDJaaRGTuRR}8|!BD2^SU!c}8h+
z5dc>GCX7nRu;{5USicR#%Snm-Fl^DbV^tH=XP|VDr2WeBk9ES+8keT5>NJ4o;m`S;
zI6$5FOpmFmfM{pU5>XRP(RvA@=!ZUV5CP}M5z?8+qEe<Ru~>V<V2__PHinZJ$y>tZ
zjkItd>H~ia1z-S9ZahHSKYWptL`XKhD1Bcspf=peHc32YNx}Kmn<eKo8l)7Q-V%_Q
zsp&FLf1>z|jM(w3xhG4+Z6@OK7ub4KOIP}V8T>Vm?c`&>DlMf46A7kAeV-Wl`i0Wz
zk&j2(xp0M<zL<*iY#FtX!fVdE<jv*Xl=2bvPf+}v?lgfd;nscff?6%w?r7bj=a9(c
zdK{?W!qI96g8DI@G7a1}Ml><C82v{*_Bu?CVP7rC(A_^kpNOy?%l(-<`5GOi)D+*x
z!(PTTCc2WNkio*MO2&$%DhQ0s&WnP0;)%n>>k)SfilefWb1iw43Zms{-N?qFXkX66
zpheg}v6j&~f?hI#RSSKqt7LL=fntSh^z?`h4i0}7s@^%uJdmuSWq?I0EMNLug`7Ef
z0R0N;JvVxdP~si-198+$dkU(6dy|~vcwmb++TPjK|0vz}EH7ubLi{inCDiD<@#zLr
z1f)$-Dw0vOXxem3HAa?IwJnW^3=Y8{cGqf0Qw&^gf*sS?|CV4!U-FM=*>Ud~!6o>7
zlp5sl{zMl+&HV0IWas$Vg&wef3<o3Np*7+70b%FJ=-gB5_0#`WJD1H>p9Q##O{=an
z$erhF;kGi0fE6sz9a@3mM&mUh1`AU#uA;{MzD9};IcNksX@$YW@$3Me@AwJvEWru7
zDqyvNNVZJsVw0$$si7sY87%3a$`-85q)-j>05_FV;4!oTR*`L4eM_zQ-%Os}b(B3E
zfCHEb*h;c5#NUAcRLm|i&%0Cy>l=Qd-8F?3`KJ`yAF7QUu0`~p*RHSQw7ao_h0xJ|
z-B$duR-jDl)c<cLjcEhLgA@P%<Kq6SlHM8ub#DH3n1K%-Gt8|2Z^}?eRrP;!b4(jp
z5GjTK<y@Z>(eA!6gJ=MOAc)3*IrsJTwHF?A($5Itm(u{Wx6Ty(aht=%2h-5*2KN9x
zJ;MFT+(;g)F{zT-e|(8)RAXlbMn)M^(?V9k<7W}HJ?n^*qKNQth)#u8Q+$!eD}%kY
zfRGSTm0r!GHv4UjLE9l6!7g+*nvtubzEI#SwV9_9)eMg`<d4}n0y{STm?Ukj>H}wk
z(-kwzNH<cT{Qu1*22c<>h)6@P{=d0JrVWhXp#NeS_-K2^)KqVp|0`0UUE-Aa-@yU_
zDEVKc>Yq5nj}_s62M<{P9LfKUG5#z*{NMc(4Eq<b{?Dg)|2eyd+I}1Unb%&mS)+KQ
zoWQ2oCc+#^muvJ3>#cj@*`%f?@g=?&TeGGOE_E(C%%<my?tWAEM0WJI>gW1^FX2&8
z6X#Wz`=~AbN-0;c885z)KpiW1q%im+-WMk;XFNC1l8DU_9Li8-n!ICUpY;R&BF`V`
zV^dv-0$YUbMor%2#@0(R1=EH-ee#}ZqHc{+$(aE5h()2rQv~ZhvDO)O@>-~l5tgI2
z*Ok1b4P&zT$^qjmfgcBDU+>k2uEP~q3pxM!e2;WN|MxuN9uSjd*pc1IH%F~nX*LgO
zGbG1X_}heXEQkVz^W<pPq$%U`Bbks0rYx4@7Y!z;>N@ON#Z`B_G{Duwm>*3$;psvk
z=xpmEtKo>7jg7u*GBFN@hI+KrTwIDcA@oR{I(~`4^nHYT@ZJ^$AiC$I-#zn{Soloi
zR})s3cS%wkGY(3(-Tu3jK8D3qD)DE2H8Pjbl-4(9Ky2Gs<ntRUaQ(Fr?+xYiZ{>N;
z-}us9!hhCf^SXDYbAO0;)CJU-WW`fY?Kz)*SDR{hxG?<;GcZ8E_+3&NYRicH*^n~3
zWTM(W3>d$<x4E$5_a~8IbLe7a7Vmc8K@a#czyHTmNyu||TsZ>Pd&3}jcwgGEMiiM}
z5bL_v{Qv{kkAz4V+V}jYUu$2Q-*$8_zuvhT%G?FQqGdG&ezrF>{?pu)Ar>jg)^jku
zm~34&9OKNMTst>(4yNc2UqXCDEOu!fE#ESL8;q@+bOq~F_H9|~@Pt{01BY_MX#jLu
z@cCQVeZ?=aV9T%M&mT}EFf*l?!bJ43R*<yMCw%c#ynHi4epO0dbv}B^U81+Wh`#Pl
z1zh@Vs}}U#hW})u+z(V^raF*R?S$Kx>?mv`h@##C30v!;2o#{9xd=D}2-3F=zZ2`v
zfM2`uwn;NYQN(%@D*o+yWM#6lRw!8i=agBY*X!}Ak>$0g7D4XiL5B=>Wtj~J*`+;1
za_%D1`99h|farB%x;+X56PN?MbBJJv_rdiisz*wR3^)_`47q=yOyVQJ5p2KvCT4Gh
zAGZ-E<!G>QoXC+r)-$@8(zv4*n1XVgmJ!0`M`10>NpnlALCYhS6(&2l{2#&sma#ju
zBL(Gf!=pW$!xe05rpfR_g+&oX1H6TjV!NxSXMBhbOIT7A(b4ZUz{vMNH7WjjVhTU9
zka!?wql?$M^knXpqOUK7yV7shyG9zDC27gcJsu)}pm04EZqdpdeBMZus34i_IA8y{
zKzdt*zS(Ao>yKkEcQCH$=g9ab{D{O)$|UO4m7ZCMiKN3CCM-15-2Dx%9e}apBI9!7
zXt7ZL7DZ<JA7hCoL*IMrI@0d}UFJ(KT!ax3)%ITK#?sCve%>(etxZGkZY6fRP;=%z
zfrr$-Zg;pD{G1^YxnkaUvAEp}XAwG=rvBSs3U0hCmyKxYw~^$UJQl(S>)<#ZkJg(R
z+Y99;w_8m5Ik_r>Xlu=dpF)`6rXgWv!gAM+=rYu(nLTig4;46uu)j2`Xec@U4^`hB
zUrEz-`^2_w+fF9tgfp>in-kl%GqG*kHcsrE*tvP$@4nyf-oH<us_N>lu3CGoy;sBh
zswZ1ogBe_=x@AyQOQwO{T<|%55pZUHsE2UaPQbt9$j}-%En8t$%jMb^DYiX&_i0Xq
zPO||is?~b(ZubjCEzlV)v-vUc1Q63oQ>jicqDN)_*cAai>v>PDp1_V0R<U>6HG-{C
z6UG?LI~8bKspS6=DdFTHEOkNmlpTD(GiQvXwn(*7>k;&RaZz{E$=IzBRq@YCHQC(K
zTwKRaktJ5pttI#Kq9ZzqugQmM!GZaK)Pr#S$~EcY0+lX|=nkiNTPq68B(ueU_?Gk(
zl-&7(W~z|%X6jiTvPBupiCQ)TRJ%LVdN~rQRM-*wX`r$950_iHg?Tgw10%22#<gJ{
zCkr1T9sGE&tPBJ(@`}p?l2S|hzS7e`r2q`SgUvXG)YkJabQ?^}*ovW{@G$<0%hhBt
z)&ydAA~Bp$&u1H5EL2LE$G5*{)l7dBE9oYjGVt;qDz`R)iG{NI(wm0+vjq}J&m~UF
z?#{*zBwl{aoyXvX5q1CgNFYf#Y|r?tWG`$f{sG(4+C_QcTVD!zZXf}jq|cl7j@E<Z
z3QUv5va<F?pVp~>^$UCaJ%QG;DxZjuqI-9EAv6^FJQ6i!b#Q#ZiW5~wviixkh?2Hi
zg_DYD{f@Zl2o~}Dw{*n^PC3U8Q2li&LOoVN-nIHR=HmJLe7B!(>sRsTqv6FN=tzQp
zPVodliddf-Wnfk=`e&gQfQ5&xGYiL|f>Oi<OZi(8<Oaw0M;PM8tvA3(?Z(zc@}7rr
za6r_Er-Ob*$6Vlw+BL^b@*-3*iqk8=_JcElt%P{W+&`XH_2Lw_tKa)aM}`2&nIMKi
zoddMD4|dAwwST+Q?%rN_rkWk#C`Y5UQ6JNG7);_-nY`yI#O1n4N=|wpqgn&|b^~O)
z$~y>@#nEv<sreIEEL1Qsd&Sau>j5@Z1kK_2hutL6xBD=~$VqiqzM2hN!9MDZy&96-
z=_cl<K68(jnKnxm*i#twptz94#(2r-@49kDDPBle^cp^VC_gKR72!<e7ZTXiSUa)7
zc!r`4;n^Ug9WW46g{q+p_oC;^3r6)`RI`8`vT-vw`gtd0qBDpMUpy)G`MPpZ+>l8D
z;p(3fEg?p;zH>CA7&7hzCs7(;zI!EO=s_3(ZT0Z#%^9J+NDi$o?%b*m)`7$>l*7)K
zQ2Xl}$fEs+&Bbt(O?J`$IL0QGDkQ*X{Xl^(W){KJTsni>_isSKM2q~R=4D``iM{~!
zdno?$xa~OTdi$S`Wuw_VY_s>U9I2=zW+raL^{ByvU-VXqVSP?9j>jRk2*VR2u?}|t
z6FH{zaF_+>Y>Zp=BGcqRH8I-9Ps2Ys0wD#<>!D#VZK2O*nGON>L!?Yoef?l{H<9uo
z`~r}dtTRTNkExp<5M^Hz6rDaV_*~W6BQc-9>xy>pYmG8qzil6S;D6)>GNBM%1$zS3
zm>;N7Jb+kx>vn`8IqiW@N<=rWXY9mWPfwCg5Z{z@LtUAk6Ti%9WbYFTw0kolR>{K%
zuvShRe+Ldvcg%i62%U(OpSd{)87HG))l&c)>3VadiY-)e=o(&v@oBLC{7oN%Pn*(%
zX3~d2Zovc@CyjW{jIaGWWxe6aCmhfBq`WnPQ4|pb@(9`D_swKwP-Z?0bSEp6B&9+i
z7gN|*7?jnU(F=`H=VPpx*dM&bV=N;;_|q&Gr-)$y)Gvw=Qf_K^pDc!FKKIpHnMQ8r
z20TX0Y=5duDp5jvXdOtR0qGg&1LG0{*?skU0zd4vIkP#VQJ5^xOf#ZD-NHwdWJ_2O
zrLT2Bw!KhR(N^LXw?H8lqB~a3q`<)q%OVNKz-{JLSWJ72<E{1})iX&0z+H@re1B3K
zOAe<krNdQZM40)y5xhPNUrbOp=4aO%Kt(!7m=|v;l)gVmHnxr3$I+IQX1R@-+^0-b
zv}51Do(G`J8b|N|nNJ4^aMpC$<YmSeFOLmT5Q9H*r4KaN=m);<iEi>M+@>!<$)!1^
zIb}{&ygXo_JQT5#DT$9Gfr+PJ4?N+E+ZcAd#z2vZRQHDWB>Wo%S5wapIpvFGNiU<3
zv$m%H@X6l^MIuVOxUilFc|E>3tD0Gj<{8SwJ{pdqjT+bu><o`{_xJbtP01>dS;oL_
zMp)+VMVV1%pq%1?UAQ;Je}#vQUNb-r9Okd*Z((tv<zqpOTaNWAv>wrpHc3l@3rvq-
z;JQ&`kz1T<lbf42a#s<AVd7*Pn(AO_>-4bdDW6=7oZ}T;=a7hMms20K8LlfuLn~@H
z#8!luyw_PtgQZ|d4?XRqF!)J_S2D(n<ajWI9*FUhYOrl{Hnf=Lox?Z7EK^cQkoLla
zP5C)*E-`N|Xs7p28(&)s_CR|-szW26O5K#|w%DYapOH1)45k12%n#$i#;e6>i;ZT6
zg(erUc@qq_719?t4|I^f>B`MZ>F(Q;%(NxJ9BJZEj4URRd~Erh46-w~`bUECEFHY5
zCa>3zCiR`o%rVV@=~*{A<ezvfIPWe*K;4nve27G8M5q+dyNxdVY#)$*L{|ga=AE(3
zuopm0)XyQkw*A68P1fZURd||p?bmcJz5X>fPG;jr$nn<wB(wAM`tNM|5%@wA$`l7f
zOo4HI#29<Ss0mKPc4zC6#>?4oiwo;fXf4Lwnu+6~y}78wDg;sTM8?=O7r^}6GqjrN
z^XETX;z5aBv}_1wLWbLySCe@Q65A<x9{ne><E*-6oiAiOa$Y`0rq@nLB`G9nDlnZK
zd#kGnaupgQ>C@BtDP4OEce6n(DzB=hlVe@&{BR{h{Zt2oc*B@6Q9W0*N84E;au0%k
z)6p7eS$>!39NEC+dr4<;>7%L`rO6b`PkL=<7(<tUMzF33j(Xf(vxO7^2PcZ+Zh{Cd
zCc@ThD6Vo0X_JU1H+*9@`c<RU%V(e?o5@I4fX*&_kg6DIwmQ75HtR0>?Tbu9y=`Dl
zwjOqnLxOcJcKzhV$U^7gX_62TPYEUZo|pIgKRt}u7)VSJgU|XCF54m<9B}#w8mI?i
zS(OdEB*>nOE2oC!3S9-#Tx~X(b=J{@5}vcZ6sPpc25bz#Bzm40x5eVN4D!^{!)2un
zHIpD!@->i3j5;{wLSwSim0$J0NvN_LV?m=Wdqls$gf)RG5|zo#TceCMm*piUuuF)^
z&%Dl8*2L4_<@8SMX$A>fM{E>X5)RD_#D+2A)NMxJ5b$MNqZSChQKH-pg)P9A77;!P
zAVJ_sT7y`YiW?(FKXD+dg=g(mz@R|pYd(IUL50avCheG&!{m@aOoO)BXbYQBb*NE%
zZI6f>P*|FrO7_Vjt5Brw4O@H3$}L=?6`EdAJu1)pbs}f!7z;^y5>A24YB?$>m<ht?
zv)uaw)Ta(PK%qn$`Zn~fEk&zpPNZV2LnGj)?A!kG^pbkRF$E@5djAI2k1EnnQ`lCK
z{(>Y2+q%)U+At|4{e3ZN2^1?R?iA`6QVLrANv58HUwtq;{O~|O-^D}X(C3~~j5fVO
zk?9dMT<YY?2C;ecKRR~5$SGEi5}uDQ1(hvuC051tSN1OL(Oie$G2gYH6ckauj!9DK
zNWR(9D4`JHbAj6XcPDe{_2M3Ng?17Tt9x_e)YGHbTBl@=^3IoW8S18@9TIerN~(~-
zUUUk40;SDqNE5t=z9>P2=X3Y@%{ixaL1$erkfIqViAU7t*RuC=7I??{yA|++ieI}&
zwCB?Ll;e>$IXhzsyy`u*9^lkzT~1O(G7rW2g{*81H@F;v9cBiJk|>+E;Rm-D3*tYe
zauOSe(7aQwD&J6*UC}ilmKn!MfTYA836}=UZAJG7@nEQ+jJBWfWl7rU>DM`ODR4BI
zsnEDhfW+Skw@Qh($D5|G?Z4mtaKbS;xuSCFg&}-r#)HNnx>9TA<Cw~0!?U@XMvm6T
zeH?@b8ju_Au$$*GD#kQO+0(b-!S)}iG29B0n(T`erua?z-Qx2!7QsUg8J@&jO-8Qw
z&DDWNtfdal#uqB?blbneJlyN6GHW#;CglEU&6gxJFjkG4kaTV4G+(xZ_FQh3sOC@2
zB${r!_ZAqoh8rHnyVA~}*w%uEi)JiQZ_rN1I!3j{RTR9~f*+f*R)_sd|8Jn9#@=rB
z#c13Q-*)N}l<0=zgbzd-t3>}}&g<sMBQV@&Bu}Ob#h#fZNW}s2oQp6pwgpPwCM%K)
zmef?xrjzzTqC$?z8J7=<(D&2b#g49|k{3jFK4t^G?uUpRv2C_`Ae66+s}lUY6e^0g
zeoWurBX4ZO+-rr$)?E{Lls~4A4|C<M_+*}pA+dhMjJ9}zaKen(f~_=XY2nN+2Zo(@
zz`lx#j=FOtev5aP{@m6gtI0L9L<zpw`2n*ZzQ&lGo_zZ5DqACl!EvjF)Cu-?t5)D4
zrXpl}po6)K!QzGFpwsP8>$tE6m+PQ#M>7MB7W<0h+K4YyN>s>UVY{;ZRZuxMcTc@3
za{@Oa^EhO@T%w{Ca#1G@=)NGr+&v!b)gc{*iZ(DPA7c0klJ$n#qJss4uK#3E_DK8%
z%C<iHIam=4S9bQc30azxP2%&SxJb$^`#3+rRO-`U`*I4lB7I0HNRYDnhsQ$-gUr;q
zp28H-tx0!Tf0C?tcLx6~<Oh4(%T95|PcmQf`R5)D{e;Vv_h>3R^i$yM$J^;h7$_uV
z6#BCGJqqqgxIknJDPwRLrDMd$b9G*idV@^ak2Xr3cn1qXR~>h7y_ywnZZ`(>gP5K3
zX$z@iY3sc|2H85yh5N*vH}^w#R#q%eQjj6BCx7N_wDf=WXmUSH5_H>L8_u0!+(an#
z&NgD79u)WOAO5!95)~ulyB3}S!R-I8JaisBJBn^DEvP(xXfCLaAMhA8lmn*_=9gn|
z@+ZA?#g)HuvQhCEMuL!YrjCfd-YNZ!2ghh`3VJIX^qyc1D|7^YFx%|<=JCZND#r<I
zKlGm1pM)THhk=ZDv8|0-xfpF)XFEEKLZ|M=6V>to7xFv^o&A&t^6qGAXjN&8B%UhI
zJG8GhQb8h7_vKMy-MJJ8CM;w)dqQFN_&7L{PSW5qGXZ<Gll&`*e^RkN2@@%H%fChe
z{-8(^>ytZ)gaCYg4n<AmS{V^p^VhJqGNkDzC&m)KWBkC7uweDi4${3rdi>T`^zUPY
z!AvJYdmE)`3ie#3pz;Ddi^Z_@WI7*Il@*qM!U0b6eq8GH!37+59SuB!qx8oEwpB{D
zc!|stJeC@atKCL`+h=!cot>ckP?1P3T|N1ZBY^|RDLu2h{XOHhM<>;h@x2pGB=BwR
zQ0ZHYaQGHjweu~r&_%9gqq)OV6kQR%Y3D|32yG6qI$Y<r<Nk+BK4x$FQos+HBoZ>;
zF?qO^#!=V-4UCjs5XY4g^}%#jWtE>dAOk~3sbz`PTy|wR2JU!IsDny-{P*DUigHp5
z7ddG-G+M~VKam*Jyx7z4;mQ=XmsPe&x=>F*BBpug=sL`FVuY(~t=cG^pz&(P6Tx$q
zn4WedsuP2erHb0t2I${(Y7)o6GfHKhC_xwHaANHB4bp4JR?>3lzRthz?GP97c?fdl
zT9!#@VxlKHjIQ!{?N7OJ(oIYB^*9e+l&~<H^SOFCuJ7C%Ea)#H`TD<2!3e3i^IF@k
z+GC-E<I34;+kJd~Iah^yC=9vZAAuIlj&$>J>7%#(gF%-hIrB2(u)c**$*!DW2CcrQ
z0Qlph${7yUQX9(L))X1}^?JEHFk1$H?48XBrf*Xc8(t`#=L_XJsU`*fGv{mVS$~nI
zNR$PeDrBud?-G_;&kQ=r^|ygR9@^r?C<R_9y|v>3(km*Mbm3-}wR($Y(3X=`o^LU$
zy|bg(h#;Q6PBp$CK`al-Kt+hY?Zz4Pu`=G3BNaLwXf2acn!+vhc{QgRq(K>od$$kv
z@Pm1T%+mUP@HixBS=b<i-<G7*s8qW#-2=<*3EO>{Gtz_AFOfibS(eY$-_B06k`)N4
zwe1~juN;-ZGD}+f2Ydqen%>}vQH=SnYpmvMK;npwlwidH-z9DQiX+#-`|Tyg<`MdT
z?S_L!LxS&^`T2OkjXc>YKP|$J<&7My6cm1>h<g*$BZKPXfZ@5-sX5TrW4AAUc@H~w
zg;Uj8M1ZWbS4Ny6c=j6rFe@)Dku>BP)g%PrObHLNWKv*HRz!P~dA>0)qb{~fpKQw-
z_EIIR3^#ASX?FK0EdVt1mf&XhQ7+0l!;Yz?3Ir{o`+}=hjp{*sC}L^WXA2GA^9CQG
zN~mVttnvc^3d>cbc$@&G!0sO!7`2?8)iYr+UgwLj7ta<tX7@If$M0h<<9@(EO|(*V
z>s32{1bZ5M%R`qmRU-<m+BGcFY9eCXKk0-1IURO}afw3Twh!S6^779%PQ)@P>;aks
zM?N~bETvpfp>I;NRhk~H&1ujMWw^}AXSZjS0%``H9+>6rs{O;nY>Tx`2iyPHyTJK<
zRW`BJ+UY|5sv7gHtqMKqMHZtv?%^o-4q9I$fbfNS3+K9ys=hDMk@+dDDj7OCIbq{`
zY`aq(ekm}n^YZHNMl-`ZQxu%T6~gle!cM6HlrFTmZ(P49S=>_cw=b~8JT4AwsCP2d
z=rRrMe+YpS%(-~>fN$RV7XAHITJzE~iYNvV3A>t7Ebc@)`L7h|_M^^z0mk(?ROF>w
znx6|}X38^fLk)SKUb6{SBRyTu+9}tip`~CTO1d-r_EM>jZXD-a)t855x}Sk;jOfc`
z(bBjA=KwuNRpFbONV<mqW`A}BG{iUdZh=ERd^@kQ#4gqm1ApE6Qn<c4j0+BveAL$y
zw?M;hcYYulxn7A=d2K)I^{=A5P3MYM%{+~K&%}2`2t2#~79&qZ^}jSq&j?_O>hznJ
z`mf-sYSs}>?SC1gB)g#hk7fCPrCC*ZcwkEZZD$7=B>R7){r_P~_*S#SUjA3o6@1%-
zGV3zh1M5t1OO&ftqf0_e{10h-*f+aQy#t3E4S6`8Ec#vS*&XlSGqz`~*6}wxf{_>S
zK62da4|cNCBlOKo^)kbM>qQhl&!NFVt78Nm51=KYu=_UtjdQIS?Un3*C*vV>2NSOx
zkdtvsfMA(HZHL@a@OVEnLn7dU=f_QhetQH<A`<e484QE~ziXs@cSOJGp7rg(Q#~3z
zeDPT|TPCa4c)17`sz-iHB}fIF(p@~~j^xwjGXN))_=a;m6IU>oEcy#N+u)ttf<$jQ
zgSV72!Y8BL!M8pl6O7*tmO!6KX76B)b6@a$5mroV_dgV})fIQsA%-5@P{EO<VE6ZL
z2Jvxnas>Xm&YiOHb-bgLpUe!R!r^s#KA&*M&8TKmgzcLqLh|vz`Ob}U!8|k0+H{4b
z;YF(-*tDPF!e*-O>A(J~Nf?i<{TB<=eL;wX?1r<tI|lIc&qn+JwA{pD42MO2>-}aX
z-=`5NbKEmY7}tkDlDor1;QK`3&w<lyt6J9)Y4Wqq-uO)HfR%1wCrzw%mVg&-ougwK
zkPynPdLRS=&t8bVNA%@pm9lcH6RI16pzz=K;gC<98u>e3uOo~qXQ>ZOMuXya<ihON
z%7B>l0CCWVz0tza?raf>S-2uB%7_su<rYcBNQ$3MtD{V$&5b;@{`4ajF?!DI%=#Xu
z8Qby--rhu-sj^E?k=P=?jye`%0oUkglPoJbM~n#a74k<tmBfRsKcRqUfklgN>seW1
zb`OGeO#A?3fmbZ%$(kF%G`?O;41s3B#%#1c2c}XPcc(GBrprYTF9YQM?*RE<I_aB;
z(d{<J@1FvRr@kmok3z>WP6gNbUrZl2L23ubW>G^tM35L2ss8!XXGqMX!HEWZlV8{k
z)<|+`u78S%WuZfma3Thn47n3`id|N{=R?1zlw7Rs{OVI{G;z<>5a$&^2Uxe@VCkyI
z|EoQ(V3eTCcdKu$cqCYVtTsm7k1vYtc(2)%-t&ntz^!No>*^dLKOIh!ohc^$vb|S9
z_(DEvuzo~@of_#Lml<U+;@<_BbdAeUSRC-)AxaE7w~t>VLb_*6)em5tGFW`VX4LBr
ze!+B8G63L&-6Kc?&d9T`&#^`qEgimELRPcaL6K~;MqbWa>W)_O<2<vzohpuG$z8J(
z^0nabu5$Q)Ir3N{WFZuK(E&rK-M|D$un|z^#LJDY)8DxLKJjfQt7GR9F`ZUIyFFv(
z!MFhZFK@Gcf?zA`I`)^Z0!iW9kqg~8t!z~!@}+P4S4|b}E_o;+Zuk(c{B4>w4r#3A
zFx^iaGTIw%Vi_Y0SKNaGcxV#M0|;EMMVi5xpE20m3y4oMo8K|fjXINk&_>(2?-g=a
zxU>#GiMNff0~sq}UapxsEo~<?@|Pw9L34^xCBn$bFVGB^=lKS^;YrV|rZ*96<A#`>
z5GplVyra2_#d*&o?}+=CimoKN*FptbDYqvqDOhLgxzCo$Y_*rl)$?;ejQM&u)AXAO
zstV;}&3cs4d8+<ex$K`ZlBjSSKtmTci!m0;$@OfNlVs!RB9z%SrTvp1Y$6UA(+)MW
zgekHUr|_y91J=TKk(v$`6_U0dDBYr!Wc;I;QFfT35V7aG=iKx^cL7If+BJ~BWb%x^
zZEoj#z{-DJ25%Q90NI)0@m7R}(<l-Zd#23UWjljDeBY=3!!3Ka%trfnGlgMuDTWw5
zO$V+vI?~(1`Sn##!%su->3gpjZc-pfK8W96@{KC7TnsDVUz9eB#Yg>=^kMce-IkPv
zw5QiaER<;9eb*ow+~V=iQteU-5z2%rR3ecCgt48k8}?=4>BC16qoSb{hYhCG*(m*8
zu#eL41s(6@zVZ}~pEn0+Ch;|wpM=FU$vTa2mK=@B#17PXq12`X>3>}baNm++)-xlC
zAv36V8kpUi>&16GdWp*p)-2YMAiqOi(7zq03hBSzu7&kD;weh@wG?q!o{s@<##Q*+
z>+lE@5L=zTkaK>1^gK?3GDqxR4$SCmO53j>Z*Fbnw=T?!)G1RVGN98buZuX)4Fy2D
zrILaK$lieVp+P&eO&oTocfo<nKzyQ~aw&Kjo4L9g+qqpoO?R^`q?3_;bh;+9EPez(
z^hEXdi9aTauEee{7|s)#CJTv1$A{WC3&iC5L37#V7+oWw!C+W4<8Moh`nOFYO^z(v
z@L{X>fuZG~%NQN3ZgDp=@Qz`DwHxjGX%~fbwJ<9GwU&s9t{&!Xsab2O6bf8-Mh)2M
zZO{Gd_*YRf1hG2SsDQavzOrbpmn<s#fkl*#v*fk(r?nn$q_t~oW2dfIYBRIXo7?cj
znDuFPY!s;&Q?zI}mIprC^9SWY`D{q_!ySrQZD(%VaZeDF@5JCeNNzsY(5Tr0n_*1-
zt|9&J`Vva&WkRotB~^A=*lOL+JBR<#B6uU07T*c6Po~}59?-<aCj91g(%*68UW2I^
z$G3BVLMdS8#O+EfJc_-CXEW_WV2trBNJP~vTg@jLNsTdk)%5dpwzZA+ArzH^*F~UI
zx?O&fTla;lNumK>>O>be+wiml)i7s>L@CWGV(kiG3g-Z4aptTB%$iw>#*$TQSyCc$
z?CE#t#qM<h2a~FiQ&esVD>|~beMTt}o0J3(Yy!q3pZ~mP%O*1X6o<uj1@z41cD~?-
z|KhbKupY{#Z?sg>4Ej!>t6)QMvvt^gqIb552fGj$16+jg?2!u(<0j3Nj{H@ja_(r^
zQ|W@~x#sE5Hs=aKtQg3zFbi+Z$*g}UPXye{MW|Xx7*ETrXNFi}cyl*9Af1yrsW7V9
zmKX7l)ZtNin3sx^NUqk>L~veC_)EfMa0k^3vB$u-$;_3QVmdUE&BeMYH4N%^tFy#5
z%1@&+sRg&$)X!P0gTNloFwMWi)YWA;Bm_Bk*PU3Q!59uK)0P@l8EQMa?y&YV;_vS(
zWYoVdYIMI?<hv-K`<%JvZO7u>0G)~Db+uIMY|&RztFnuUbpMr-L?B@TJ4(P`LW8~&
zHRsanF=SP`tzoL5Fj@fKnzUJV!&fT_-{|~L1i=QNG!hN4!CJ{EAGXW=#t#2d4{zk<
z<IhRXb_Nc|sRuTr?EJ{zSM!&3p*7E0Q7R_=xfL5#4s&m@Mi1|iu$|F3Ilb}Jad$6W
zCUS@O4QhI;L0bms;6Sdvlt#j+if@H-3~4|;$XjHhpE{4f>6+0`F`?WoqH#s|AkHiM
ztZ*qATeG6+lOyztzUg|cfwI9=j>2q6M3Y-G{$5UtITa9X85t*>IoD^+iBjVuAW{@D
zV2z6Ej_$Q_=4KNpo#oU}MfJ$?L@)S>5(^U%O=>h}nbzN8|4|;uJbq?xG5?S4?^1=M
z#=}))_xQ1Fnb~f2rRhk~a!woh-aU-f<MFUi=+sJ`2pUmOqskSTqp%Jm@Yu>gmuvA*
zXi=F);yLq&iI|b?3i1wD-=8(G(eA|E^OQo<$8x>4olIX+!81n|Wx5f}&^FfA4hb8!
zr(<Sl1wJG8xhf8X2ML~fyXJP0Rb934;4UH7fW_@5dd=35BXKx3V5UOj^Xb+)+PpD}
zP}4mM2~<Q$RMRp~{727-N@HFs{C^I%K#)RhRYCfo(yJQ_wycB)L7DE`jvo)BdgjZG
zEPrWZO|5nuPc}O(HX0L}drZ$=jqA9ST4z*MeN+5nGn)%MI`Y%_i{%0V6izBVY6?72
z*AUK&mLDwJIVl2!#k|aAb_%y%6pBs<jxs?tMIH@D__9kGdp=ec7M2_~KOxm*u}p&@
z32x*qc$%fMDG!`l@<;#ZysNXN4Nqy#*J~Id4kit#TySMRoKy+q67gE#a_*gs4;j-Z
zDZr`G><)j|-!IkD&9MUuaSue^2llJSdre^*8HG8{NY6A2-rMm-4YB!>?miNb@H8ys
zsdDSZzQ$kW%H=<#2^JymSOH=*vS!xe8gaUKIt`$T@qSU99ncG2v!#bB#T!@8#lf?l
zZ<>VNYsokd!?Fe`q?6L?IK)vt7|-xK6Yhi;`v@7$BZ0MQmI!bxtfS%(*m2OIh9NYN
zm_<(mJRJ*{M)c+@o`_9r_yeZLqUV$8Jvzg94)DKgK>>!R3g4OC;OYt}1-#G=jav+&
zE*=<o`22nf0vFr7-4WnivjBr79@d*~OP-D72{)tEhC^*UPqJQ~Hc`dC>sE4^{PCCm
zd+^!oiQ-+nY^QG^o7J<Cu4|Q{|49)6=94;SYhs@;-00RU;`pS$duZ10E#o-S-d!}s
z!+|x~?QFL@cc<f-F(vZ)5o(JwvwXs+RSWg;=^<J(JANG*O}4vhvzZQUVG`>0#Hci9
zwQgYZbbS%S=$1+EXJp*3Ef|``96k3Higg?mIo4HbYQ)-Vi{z3Z=^`RKl0mOrXavP$
zj*Wecz@TxuZYw8C+hq?^JfC5V#wD^d7LXpfGv;>59Q8xwOy4?QZ;~(y)D^q8&AYE=
zwEA2!S~!`Y45uqu@3h!v!gSiBV&P#05DNAVGjJS69PUT;2(c9K^Qa29ldbWVl*F~*
zNh;`#OfBWyC~C?4rYlc&*&Edjm?|s%)tq-E?{t03;_Fv1q9o<2<z^RgAd4$!eYCw~
z)p~qCd?byWTD?O?yB$W;CsnRJL=(3b$Y+M+Krt!5*p^h<@W31l@cYr-q*<%)uZb;{
zuh@xp(Emdwt_Nb<OgIPGB^kl1-+aBah(iL%%g;3WMHJ_r%Co~n`m0fG-Qj2u{9?;#
zp-s|>zF~(Bod{7Tjt)J-Z7eJ|b^MCKN(%Ues-<Q}F^o|YBS@wb0&j5B>kp5fD;(HU
z5{tV3FThmnWDU1W!3YLS5qqtE?%c=Fp?|SBOFIqHqQegH{Sfqb{xEyV=&>o&R{i|B
zZAIibgl908K!F`CadCOc;ZUteEr>5inMgU#=X|0c{f%NHT1IYiQ)z`iITZumzn~xk
z``U}YFJdoZsrvq!UxRX#-ZA8ZxBXv~3^0)ruJ#_q_|H(j|LhhlU$t2FU)0>m<_r*`
z_<w#4($-dhar`gD1`y;goE8(SsWkpKW9hqn9-aC#61D%L>1_<&L(%U+{?FduDLUy$
zcsq1tr?sSV7xxue>hW*efB~}wjFSce?TbMt9S^T=R!&cMR5+^kA2McEMI!mN)r)1|
zFFi4+2j7DP?vX)w#7^yALdc6GWhPU9jjWy!b3+F7?|CELIM!c%_Z0Pg-<NsdFMhd+
zR0^or*kRGp(Hs)_ir&;|a+J3RW1``x6qPJYW(~*(xs`!7m-%9lRz(0JHgl{=A&6A3
zfWO}z4XOM>deIVrx&0FS4(=AZoG-7gtyvTnW55oD`pf@a0DqY;mOWi8OXPSwB!_YA
z!Bphv;7|s}zF6|n3sij1E|7G<PqzU4W#h-cZNOnM7Kw%;o;+A)HHrX9Sp7b|1wZap
ztWFN8g+F`#eHuW=B4V|(Jt3Kchb?%5o<ZE#)Ub}eKQ-O^bsW!M1WRnyir#6ZUTWX(
zi`HUeC=sTT8TD>up=kr>VvSY~<fR#k+13Lo%aa1D+o`QhN4lFQW{yXJO%JW;d8=Zc
zBbjECxqPC;!zrr)SSZzUu~<v8K2hJrX(V(@$p;-FewNr3tUy&hmuL@ajvW81)JAv9
zwO4)eX^Bk_68KflOeK#~I*$<!Qq;24SfS`*=}M@%)lKxB$mfcJ_3`G1x-9V?44w~{
z&_}mnz&npOU65=C=j{ZOQ#zj)rd7;N^Hme7Yr5Xb1@W*kf)#na(ILF)O!@%eutV1q
zL02fJb5l|23X_zcq`;(2%@(<Ke=t|K$4`M?Ppxbqg)Ovf$9;F<QJ1ef`VOhG4VS3F
zVoa5kfkf%b01--n)ZR?l%dGzDK<8YSPJxldZc5$|t;zraZ9^^WaXKgZdR(CMLdQ^K
zl3@9RH@2;3(qQatr?QR-btrB;x8ZS7+EyT<ZdfB6!SE@jw@0t!a!<FM1D{^gZcnCH
zm65-(c?G$@q<AAICvsG)pi9lp(fYWohi7KRT&-JR<$KD8l8v<5u&rs<tf5U8>Ir7f
zT<?hAYC<$b{rW#1epN7^SZL|N+!@8-doPo!ta5lC%O9sUNmj9727t{tQ1$1vRedjx
zAwE$C`1^bV;=yX<2~{SeyJaxrJEFl}7vc4skrpP0vjduHf#&yr&TK9mT<cewq2$wl
zHf0g6bI$c;3HoGw7t2SvzX5p)$o-%m4&K=pe!dghLMbvHEI_Ed(HdGu$V_LeMe#UC
zFcf(z7r7w^TwI9FGY{8#t#G@Xp{rd{NavZIOi}`(VU}mv;1vS68De<w?mPSJPy02d
z!#s0(D8O52LME`}E%w;d=r6@b3px}Epxd28==@t8Xcm*wjXE@+`l>39hhDgU*7l*s
zcsR$#-B4HS@eZBdxzWc5oWyl(cIT2~e5uj5EZpWWob;S=w!s}x)m*{vbL!3kIFytB
z>XtX)Bi4Zr%sjIg--5{Q{v^Jw*>?#c!{iIz?SjL8uIOnd@bRLH=4Idg^E<xgY#|;a
z^}4}bpC~{DJzp{YzVfpG4D48AUN&a>MD(xegSrRf=^KohR28pv>$OOCrw0r8rNQM3
z^?A1$|0-K9$sGfL>TDTP$<_x^lL@XzFt>I$C_YOt-M&$*3sU|h+F|vWQF05N3Z}NZ
zq^(6Zsbf~z_8@wS-C8eJR28GO^U18T8+WoF#K)a{U8_}!SJm0(iM{LKCTZIl^HPT(
z&A6H0Kp%nRT~vE4m5Hd1%eC%PB%#t<;`!mh`OOpKB{GHF_!!y}Udv?bjvodH(^@?9
z=WoN|ws(XIY`rlMU}s{mPP^y~x9eU?;cm9U<lS)))ckR928r8T5!th3sJ`4mCOa*R
zXb|`H;NjYrb(1ypAko@nf;f<xv)C-kR8?rOu@0_I1R~pgF<K8d#;}yCUqjWW?|Dd6
z);cO#NjR4fGti=8r2iu`gkS#f=jghyvxciiq!%)})L+`eRo~+#@~<9|0&by}p(<Bt
zej?DJ<Lx&Uj_;4K9Vy`_K;y3`q#(Yt$a_YmK(y!C(x~_keP#t$AIU>ipS4aWnkm|4
zqmiHX_O&Qw3_>P_d~W(rHo&4-e)&t><n(rDzDz8H{k!hMQq@DF%Jpa(hVk3;wd1#w
zdtL$umYFYFZFSzXoJ6;95&D9DRc}(n>5}0Q(bYy90v+5XgQY_(u}JwZs4vTX6Cukb
z^L_vW-l=X6?EX8W1@Nxppm6Kt@M5zzj(2O=@pxTal}W2NX6r4Dw;nB<5(Wg%HKZaR
zCTpW7ym$i1{$Y|<@SN`_pYOs-lR1YwZikzEvG*S0CYr;!P|deo*hRhB7i<7et>9_A
zK~r-_6#`hzoFkM0TNAS_5lZ9E_2Dggllj81G@e{2^8}Q$&B#RldhzC&B1JC$Jv~#8
zaNKmcB=pm0Jc!9+y_FA&ki7pxr_p>pZpLe7<xy{kBh`Y<4Ct{h;rwn&`&2`a=d;Co
z|7H-_?024oQ>o39nc|{Ze}5v%AV1+(sAw1vfN*wqvWjT)_8Jc7e5ROf<8>Vw=Wl~m
ze=A+(z1mt*q}i2_#Q1?C8&j=+_s6m_mFlOq1zK}Qt+g)`=9_IQ%6qpjKA$x$Th$ZQ
zuS)fJd9acBl0OyAOgzE3ixlL&%2!Q^SWS*C7ciLl?ylOC@~NEZJe|H+WD?E=9+Au5
z^Z5)@k~O{fjv0gmxbuw`Dv+Oz(tN&&=KCd8k*D9jAeg#*%@9*UHX~P7D5Eh`GKY7y
z-m-bkHBukELHKAZCA;Hgk<OThw(ATvH{7l|;}Rohf~)N%C7yu^Nwix*CLprvD+-H0
zRihPs*E0h!?!0R4>kcpHo0fL!M%pkFy?iU1p6-N=EYiPXjf9<fwdS9b^0a{k-W(>l
zSRW<kK(iF20^1J>xlM1;ApAO~+QaEnH1MIY4hd|jpLkp)dm{oouBW&oh&!kjlXCd0
zDeW#D-$Vy#f<hI}h-5VGT+#6_lzF8#ZQJ)|t*c~1gme3^(&B2h8QtQ$k)^d-S=_a`
zi*CTrm6B8L_B&>}<0-SN%4>7=8Xl*|@pfp`0qnIdkgE3kJ>Mi8D4eHf@~!pdeCg{p
z%>)WENhgg}t)o1jC@mkU$PFPs&XMcTdVOyur5eclj8^eTzj#9gtH}1trRJKfuIeS5
zOL>cA@vv(~u57%&m^eZP#x1;y7DC`JVWdZ(4W>*cme=|88*X5dl9E-rP?QJ;tCeW{
z-K{cwSP1J#yE20l(P2<nk9BwM(1<jZXgWKOCJQ<aGhAgualoxrZo{C*l>OburFX*p
z@IrUhZl=vn$mG<pH%)EWw;GXb@!hYISGe!3$t&uN<m+a3!|){?#&omYs*%a6L^d}#
z3b@ffD=buN=8dB1N+24rt${{|YUYNd%st2~64vk@=*DK(Pu%@!L9mfJndftKPR~Pu
z8hmYLAtnI%%iFgoI`UL-zr7{jCGrR`(uruqr9&<btDs%gbzLubB{J%K!IBNEc*o{6
zCilW@IXssyq<{NL0)K5e6)RKPcsb3q<7u>_7J@$y{Cb7)_GuHON{KE0YDsKua3M|i
zj<|cM1u-7a3YLMWuk-LnuAq@o66nB-?#7=AQ?ePeG>dHrO>HfCT5wW=_pLCS^PA-#
zUg`W1YXJqkcP<1R8x8T`PJ8YkR%Rdk4Zo@G2ncWImtdp)R698JbvI<Pz-`_WA2W@J
zCVmbdk{VN~;>B8KTx_;#ESF7w?NV>|q&&oDoUc4KHLY43HS<uoDZc(4Fmt8<IE{T&
zz42o%Q>BdK7Qb7oWv|YST_t8~cd(pD<1LR_*87dQ(m|kzo<X^R_jvi$@}=XbRIH!E
z&p7mb51|E{|H#U=8VkS+<UFn~E=e=@=%hgzP!Wo1yswCh7XaDo=U$y~=$LG@y`v%7
z@a7P`>EAO-GXIRHIMv%tX<!9neGDa&fDa85L;7*0;hi_b(p_L4H~cLGH+X)5oOKxF
zSAAii)SJYSV@#hbW*kLoNNF&g!ks6`9PCv2&PBMDJo-2q8|2vn66r;zyJ^;1ej3*o
z1*~#YD|WG(t<W!xyF69PZ9@3P^Wm>Khk_JB-o0rmRqs(^iM2rlOXJzGQdrqZbkip0
zY=Jli90+9DkIT!>Z9{2cT2?b2i+N43+nGzha*?+Q@bfmKb!;ZX2=He6Zgj4;uVH<$
z*l>T6qkgkt)fXEhWq%NU)o>&TIxREXsCz~EhX&6%1PmGV^fw){H-D~Y`RB%9K2CrL
z65;lCBH&@`@!`$qmr5<cW@$HQ)6oS}Qyp!R9PmXHYF$Nonf{}uW`{|2<i_Y>R)nnZ
z?Owozm-;nmprgZCO*m6N!|Nzql)K$Y>aavr4+yPc=9O^*5iDDXP!+2BtJglop5={b
zw5qzC4SW1rTv&<2B1~uY(EYHv`iv%Phi>{2^3(ewyEOY6OPb~k)8(r6$Pu;nQt%_>
z;qaE$z*t=GSmsI&fcuAN<JU;ll*o~r^IwN!p56ODBwHc-TVHtVNfRMm4G3DPQTn~{
zNl{lR3DY*drmZ`WM^6^QoqHz5BF(H*>8lll4#4FVBP0>`gEJEcsPVYW$ymEvb?^*7
z!Kh*Jt#B^E<J^1scppq2HW4BR$M#e-zu>8Q8PDJ0=kGzS;b1`wO$%oxhkgX!GyQ^A
zvE#v+fRv_nYT^DPc~1unN_mw(98<amf0+c3CWZn@PqR}eRgM}|*!sT#5uY%BViNIJ
z-0a34p-aeebcS-FycMmtUl@}N>>P4Vgb09yQCg`H9f$=QF3T+7^OV03Uc<u}VWbA1
z#PITd(3Xp6JrXl?&RuWFP%LB-n#~~?Zk`DrrQI5H=v%ScYJ#W7H7aXd`4B3fx3GbX
z<(Vprbj{qYB8$uQ8Wz%pX_z}bl>ty-mPEbbOQNCql}v8K(pgB#-TL+q&&03#L5;S0
z7f=(}m7{ng*ZC5K=nt@o8rcAIBkw5jgN&lD<SK&j<5>Msbx<H*$(~9*I@h%J54*yV
zW!-bI!KAzqedxMpP`JSUWzJK%kL%S@3nT<TZ;ae(O*>V1s}dVN)0&{ar-b#n>q|o@
zUXp6~HbFm~O}Iv$E(^TQRikbNdbjY@g5Bk0D-fd__hAn!L?$Sk8ZQ$l?vNjd@$ojY
z8m+V-JARp1WDJF{2^UDOl>;m~BahOIa?{r>t{ToqX%N>^Db$WE4`MeZdVT$F53Gn$
z)4rJV7#RB?pU@ezG}@xzd2Ug0aTFp(Ml}3>L))l%p~8Rd`UC`0b3F*S5;mn|il=lW
z7rw>Daq0OmgjW>?#(mklSO}%er!@HlgZ2%!=L-I{O*DNbY?l{P=jVKEJ7F#IkDG^i
zehI!Ea$^wZWpXUG$8tfroKhli6GcWcE{V}7OFl#71D&>Ct;26?_)VgBU^=&5ctA%y
z!J!eP!3u~f=*syfHoLRrcsgMs*>^GVdnrlWH?{FUmAq{5v!K_65@Rzsj`rtPR@)5N
zK{AmP+Z?{r%Ci+{J)BPNZ7!@IxLaEt`ShVIaN+X}aRoHGCKS6(3A4~_>nsliRinQG
zQUoZGah-#-9^1w+d{WL1t?a4nz*r+Uv+kC9DJVy8O(%HxmIUk?_7^o`c#}sYu|+)k
zxx(+fqd*}{ywK{L8qrp|xpJMU8NuyTBTQ?LrB`(jcgB7`9kun55v<|sgvIiY3Y;mi
zbb(>CyOMfeLc*??4-RFAwxy=!<bO=uY#gc#ZjFnEpJA|E;Y+56WCN*p{-D=0G67No
zX=!ZhKkhYRT7Qu$Fe<gwM&oa}Wr+kIHo4{Qt2xeAI%>|Zm`gYJ{&OX{s@$$jcV_I0
z>f%CfKV!~&&pWV=@ge@Y_}oe{-!5glJbYBFU!J7N!bBz`SeVdl4t!d3W9*g%@-J$T
zZBwx@#&haqA@8gV8D09f=A}knHm?mf*A5Eaq5%tDw*kg)m;UJhU8V#?-!0JdVD%><
z2%$)?U#zl&J_Zki>pt+0a8{mMg6j9!w~?VnmF~~@7@Q~mWXuB@GbKCvV{oGXhM_iu
z1rz>V;Zp3VSDHb;@s?|?HVB7Z=!wC@pe*kD-fb`GBRU*0eX6rWcGpH(Kyi--#hgW$
zpNqJhbi4iJC5Fq1?(`SzC2aX7j;m<ZjdBe*Gs9w@Bi%}l#O`gcj2|ZlFP7*uS_}j-
z-3a&J%k!7PrPJot$P?dq6>dv79Ion@2q@23SF-S_b=$GI<h3>#64ZeU)VI-_eW}qA
z${nT}+7}F4KO{)JZNxjs=Y^?QNI-n9-qWt3ECoCg@_HAHM-#O!&_v|2pb#7ki{fvO
zj9Vc*+80tvMNit>GBPJ~_obg2Th!6@hjnwQV;b&f&M&R0Z|3w>8TI;>1I^UgDhY>I
zsR4!zTWu2gg8NlE9iCcV7vf++S<Tx+ri2pQfJ2%Vfs>RY$VkNThP*<vC)&v@mh7zG
z5u@40G+7xMkyy%&!Zs+Z`k2T4EEYIc`{KiI8w*YK3~*}rlr3uDY^K)*=5@}K+O65B
zP3I`J?(rNzJ%a(PEjl)%S9ZtW47B~8tXMKr7sZj{ZS$qfVUN5<tXV}<r3;lhAJMLh
z0W;+d<7H4<E7hh)YA&-wk+0!a%<_0(76%5-$a@(GB`fQUj6(ic*<IBQH>I5^Vr^Tr
ztl!w*Q4J0BSJnnSgbJ(G8fwH!4M~5$I%@d{%c;2HJC85#m6)0V9KEg&xZM+T$<(&!
zTmc}BqJu`K1u+zhzM1mVNe)<7RK1?~P_a^H^7gA!JS#ddyc9YTh>L+Em-Ou(VW@@s
z<FOi%zn$tQD_w~gs*TN!Om;RzMM|CHrK^1Qs)VYJX39?c@TTC;lfBDf*wbWkfZ$zc
z|2x|JO+%sNO1)eTH%=~Y{mfdt+>1bZgChjR`ELw^LRG?Bd{_r62#WxX&?@LnwDL)1
zJ}rjm?I8r6Niq*{m?6x*trO__<Wec;QNgR7+I*>WOYJnCfKUwFcmXql$4}qr&*ZJr
zQ=JIoLh^*YA1%`+Y0nGBx64T`P9&nbZosUYLgQ>&Qu?UGLB(@o4KO4Glz#PP7%=K>
zRI@NL$-^tTlMAU}#0K#oxP2si(~(W0)f;I}$QlgHkKEk@eX6M6ks$Ih7sfCRh^pNV
zId~R6H;tdSYvISn3HhIb#1I~htu`xA{W3}>W)419D^bsX(~uf5u~a#gp2oQJ8=pPl
ziu_rM2b+<1s)h~;$@PL^tmomtK4I43)uF_+$xyZ_W9r=e`}<)(8+jKUg7UHUI>uAH
zC4L30&4k4M8wL*Z9w`5&?Zga0mG%sRG=rN%Y-}kJtETcEbu^kSIj10B+3t@0Ponq4
zB(w%?<$i(h!4SURoQpleR}8PNRorARCNr7lp!S5Pr!DeBte|En_shzD;ybV?VWZ|;
zi_3(?l4zd$%MdFsQcW|`3Bi|3ji~yhU!PB0NbjFK6n+;lgLw)3dL9QkdaK%9@o>^;
zenj8@@HKtPqnuRl4njnb1WJF^{j%bUifM;o$GN4e!2FqSkc-29y&jtgCt+a=?*oN!
zoPbQBEY*0j=+EFZT<;!_3@=hSEEWWdF#8AiK>Bh&0TeliKFs7eeJ*qREkYEEie`6u
zDkm34M$4;v_w&K#O7v*n$OBDu9W}U=RNNvZicTTYQ%Akl8t0Dc-l%^WnUMZEN^9V{
zie?DuAQeGF$cCkwV#3kvTF&&dKBab&XwSz6R`iHLe|WI0lG{-Otq>?t0fI^-nbp@$
zfF+y7g5ouz&iQpV5e1{;p<cq!RK-Mz>$~<Rx*^44BVEvP(tqe~RGT{%vpRk!T<@5u
zKo{aAm<k!|^$$gZ>RyW@D@TO0*-eIxaeH@^3(!S_yPHU~2WRr&#ps5J3x7np>jdz@
zH{})E?>1&g>CKfyfW?q-CSK2OK4=%|N1=rx+s1LX&gS=ta+Z?%QAUYM=KEJV7_gdR
zH(pi@_w4fYZNf||GZ~x>=+GT160ZoyL@Iku!#0Q-#m{;+HHP!GTnJ32`&;+9ic`Tt
zy8b3Euq@xu$YnJUf{%V^%0!ADm1j!m^}Vw%GE!9~gBud=jJTB)cP&Nwj?KDgNx6BT
zWTIv=`(+h(EgVM!TCODks?9>VCT&s`f`uA@jx=ClX#LwQ(ME+VJ2LR##eXcB&wKiG
z2u!`zkvEa4eW9zFOQF9YEC!xTC%pNfl{eWAi^1gmNmQf#h`%meu+b(lop39(!FWtW
zA}T{tWR-H=IenC@0Rd-RjVyIZr$@L&vogof!fx90;d$yw%@HHn^bfM8AZI}rRhh=P
zP7t7pg_z|Q-?GJl6bSG@K21(!bm2c)u>q|xRREk^5?kK~mnq${iu&bHM75?j5`1Cg
zSiqq+8-V)1tj8}=VezHd<at-nf)izl)EL~^KRQy#9^$TN#-#44v~WU+ZFxr=&-c4H
zoey%@r{HRC&CfU5$b>xM&9rXsBs8gTv93uXqhK&u(jY%M8;7yw`t(GZ?g`zzq=h@5
z3ZyLLQ?kAuP$+Qblj`*kOoXOgx&6U2<JxPH#eOQoU8q+l)>Ft4kJY_9<#Fj`){45=
zxtQpVT;XnhIRvxcfvBJ9rNg*qfaw}Ei$LDE<b*M>rMgNh3Qb~`A3FRoKZ+pfKwCH<
z#vSO+7-6>0LQ;>C>U+6ZD;#zs70=nl{KJd`4O9SHP!DR`Y1b`(*(fNU(;Chh%><qw
z@o;hT?E7HfPmcw8%i*_CUj0on>K#Ngz$al3q%UxdYS9ZZP0saBHN3&VM+`Uo@EA9}
z>qW<y4Bn_iAJ0raKc0yrRTEa`J(GrR>!1E}E^;FL3EMPwmT#s!LCcM}CH5rZho6Pz
z`~uIYF<2)*W8HG{rUuPgLSlz0DWBUZFKFds3q^SJUS&V&=>?lyB|+)7)?(C${+7n}
zcN!Jd;uP5EGAb8c4iOH^JLd27G-pCDl})OVpxj{h#Q4*@-Go8x#XG&#{+-KKFp6B(
zAC+5NGM-FNK7R-R{cMAT)UTqPujzWV9aH#&P?nGi@e<I72G&NmGN2W<ID38!<1iMZ
zzzZZ0+uC<l1QowEK>;4O+DM7-b)Giu>teMrE51Em<}zmcoj==x65#|(xs^D6$Z!X5
z@7^0xMR@&Pc%1OJsiIpnSd1BH-4PhB>y?sOE@$-R&aJh|6asR}Csk|z#&=6(eseay
zcO(aFBajj-SZ(Y**%>6VQV1=Vhwn9@ERF(X#%K>cj;PTkCT?9`Tq}eiHm9@&T~qFd
zVE1k5m<si$br6ex%<+$|ZwtC5$UX(Kzzoot^hG31UWAZbaHf)FQBxB%amaxa3Q$C)
zq87ljQ9aol8dM^hJ;@zRr3dUv?qvkm6r%%pM63CW9Os;*lQNZ(&MC(^!X0Pyd__JB
z1Xp1b&yIqLMbHRQKgeU!R^6j?+sqZ$GrwJj?uh%P7;{OBWcJ11w=%g8Z%Be4ASQ;o
z_}a|&rBW6(q|dX(t<ZvID>o&hP>$JRtw^zAbI4R+l&a11XpTsZYl7nSpq<m%PbOgu
z7K5P&=;MC{(<zY_(gE{@wWD40e;ko>g@Mm)vl-LqXhRdRQ9asHaLb2AN`7;A?%iGC
z;haTNaRDQ-at9A}uQ3`hU7k?`sYH7^<(z^R)~#NLn7nFu+RA4A1L%V>0>@JJ_eIvH
z??GE!2?A=gj1U)luLIbfx8YtINiL=%oL6B^8CB*Kw|^BpLpF~KS*M;Yt_>V{(#5=H
z5;YptjH78Z8=ow>AtDYickK9EY9g*xH|cVCI)Sw;k#F~~gdRTjD?__IE=(otI8xUc
z63|ystCai(Uss}oe@7*&=6M<uu5@?<MIZZ%&@nH%WLKo)si>xhNANd2g6x$<fR--y
z9^ToR`E@4`(kp*rqP9JxPP3$T<Kc`Meq%fEgdNX=P3y%L{Mgf8Z=#yH19okANO_*A
zGK6fS4;RxZJs(U3F$!DjMU%#^4kJ%~Hnd1vMeRRP?YWyUN&TOu&NHluZR_JlP!K`7
zH0fPXQHpdpAR?iPs8mCj5)kQxmLm`;p+^WUiF6b}x*#Q@^lFeEdPi!Aga83<^m@<x
z&hyNN`7*O-?X~y*uUWsfhuh19iW<VXFq{exrCv#WXv5TTm6vVn;DzDmlHQWbM<d*K
zCqAxL)OTEZQ0;UFU)b(V-aRMWKTxk4bLX`b0eGFk&unS-kZRN2flfd}_{$Jqp<oTm
zaa|X}K)VJaFK|>7CAIKM(}$}i7CJp*zodVWS#w!V^&$&|Q<s-@P?$-m5A?MT_r(IP
zVG>~vgPPh}*r4;?x0DGb?VH}X90Bq5l&ig!Oi6*hGTD0^LH69$_%NKgYZuMzzE}_T
z+7X};mO53IxwHrQ5-Wn!gMZ}6gqr>g<|4hbQ<mCPGA1C#**fo?uJ4VC!aFrTeBXHS
zqMLmb-4NZ3yxwUT8jqr}{aLJEjtJ&B1Mw1O^^2%#yXS~9QkPm!+u;+}<MmWQA&WX8
zR}Xl!+c&)q7*%{+=_f9Y2_ZKyxEV}m+x7*s2@cZd;LD<Mz77W8KhQkX*pOqx8?oV!
z!^1N^or72BuZ-Hu^61%C2sNub3U&^ZKcw+$jkvG_75q?lnP-Wj8_A+*HgsCQ&<|EW
zG9PiYx`6)ECA2^^8JK=9TN<ilBEvAMe*9+N@nZVd$5AZi&NTAuxRWSky<W`xwRzzI
z%M9NyvPi4@q76dlF<lakq^tsI3u7;#QF_ZBlH!91o7^B}3b7zIvr$Osr{iMvXk%J0
zJ&n4SN>GU)8`;V7U~v=8Rew?FfWaW!^9?$QLWy$SDlZ%J+oNs9!?@ZzZ)R?#2@c(h
zO@iscLvMxW>A8fN;-~6F^~rq_76hXn{T6KMVONCOsdHd3g$Ia3h+H^q+_o}p0{PYH
z$79Y>ic@eLi>%6}up=US+*!hbTcL4?wNM817EzCNk+m|#Cf>l~-Y0gM7;k{jIaH|i
zg4AAGr|4jh?vhCF(Z}|B?OYOlo1EVMFYIE2{}<$d&AXQ+_!0h{zo+~LCFRs=m+Jfd
zDudtVIF^UtGo#CN2;m-~kOfUS^YC;^7X26PfJtJX_f7{dQ$kkSn8?Vl0#De&S;V@|
z6kiLPO9B)3gdhfzTEAcf0S!PzsN+>h5VBGSKgeCd#({eB%ZMrSn$lXQPktGcf=q-K
z2=08M%UX?m&%gVH^>Q5MGnOL&7`^CYdB#6i_$z78F4i^6`V0A>U;%@Zuy4-!_iUtY
zpZ-vaArM75$`4*W0+doyfDpyiDhCh<R!yjG>~)oAy$X8D`t-jH2ATF^Qe^i0f}%;k
z330Lu8cknx?y5iImAGQ^p!!l`V&XUs=eyi<McgpsO*;T@S?m6Ivd*&<T6hcLeTFvu
z-Oyib1zr{y!tbN(Qd(Ln-O|$1hf>d00F73-k4QB&H3jX?opbDnZ=Ib*w?@)})}5J-
zW^=16u|wTS{V;fO3u9j5jswv3U#vqw#Ayda=QHtL+FX2d?1R8;*a070+-Tu=2jg<|
zbG;9(iO$I2vZ{4&PZcw8#pXdr?~+&ZY@#FK^g2-d?rGR|bQCkvuI^?ld39X*)10XJ
zg9-=7)fgDO*;(j<P{%%9<rIWVJJ0Hvg4_H?L+~@gex?2!0*gya1^e-k!({}Si1VW0
z{7;U5ZsE**O(@6<{lWIMBjucG3Cr&4(lg5Gg>nMxc(Nj^sb7MMOcjcmF3@upy*MQ=
zb=jh~%=s5xk9|y^%e2*>4Vm^$_+NIRwf5LV)~{k>a;rb)R{JyCyBK!5JSceJJ)mCq
zb!O%A&-#D28}s6+J{$?_nx3AnMeWQqhp=&R=}p$SDTDV!PmT}9zMxR3pPLi#@~4gN
zR5s<I9K5`Jlxl;Rq$J4mD|e9z)N1(RAQa6KPX+I6%gBp(#!jzRUS9W_B0!6w=-Sdh
zrV<|eDy(b_I-P9`OKIs1Wonkoi@mv(`v7Jz-&v(b+UPN}znySwWs1%{?r(IyU!7P(
z_8GP7ammT99j&eW)!ll2k7_t{y+q;}TzI!UZ%bt8u}@AjU%i*3)Ypooleiz^mp7n$
zH%C%6am+H(^zfI9{)UZsDEnX!b4-U=MsG*QdB8S5m)l}m6jl_TS*ARfs2a0Aia*=^
z%9NuTnAn*lVAkN{+;a3onn%IC4XGMP+N>U28!Cj|`Btr)z%%)IP^N_xA@%s3+Q+Qi
znSsoDSatUkw@aOQUJq>q3@rTA?gS7s7NDfsK=GfG0WDj1QcnUSyRA;l!jZd|ja`b(
z-eK*uk+R9^g?!wy=Hf&=rGB{~RSu>~L>XB$R`A+}R;OI^4XeZpXknI<+@7?;1)>Mr
zTJ%61<f9whNWbw+VG9*ENs-kZG3zp)0x*|W?Wx>4a0Xch3tz&ew5S=+>+jc53Q*0Z
zd6xtqgHFz_{T`}+?7+w?XkKn}_O@GViPS+@9RwXI#hUXEUn{<oqX6Pq>`WTdXz*Pf
zC3l7F|0s;zX#x|5-e^%9qczG7;kGTIncZ*+Ha<S1??p!V-Q9{6CoSS5O0q`ZetW3i
zonCivy5AGdmKcy{RhK9_HTie{P=BlxHhIQ&Uu=Kk@Db=1&9U|s$&~3=3>T!Zbw;2c
ziY5AoY7-RzG-9P}68qlUl9!*>dyVAAPzA*vOf-4$L~`;Md(M_;FdF8s2W|k;q^^KE
zhYLFoXkAa;6yF6Gu6*8}4YKo_8zrLMh8#J>G<E>duN3O5+__gp_#Vv2{O*5A_A`wt
zMaxfWXJZ;Ni)mq9g}nfZmR<i|oRt3d(P0%%U0$9&vh~ejyg@EX)>)t89mX%IE@Y_q
zzY|}9H<s%4#p)U|&UiFbWM0bjs$5t_u>&^rQ#!uZyWFZI9(!|@hTS`OwcLgH@E0G3
zM0I!WyfH3qHJ{b3%d(bQ1aq7S3{x4ZveB~fF?S-Zc{6Z-V=uN42?!u|(OI(^(L4;H
zL_f%E(zC8W!?U*u%u~^=b0#})wc;nLBD-fVJ5Mp)Em=b9`#Ls&h5nK?chMUg<UT%e
zA|8JzEP1NbF^0GNw~PxIA+H8BNbc3j8M3trXe>5HW@RgSx%;LX6j;M@oW-Q1^s{M9
ziHSQ?4Q2!cIFsptg9BCKdQau&F?9YZtrB+yayT0Dj5O6eb&+XxW&jPH^ZGmg)xO*4
zzO_Tn&_eQG_>S}O_}gvt)PgE1>GeU>;*L$XF6QZwz_wnNF3k!2%@d#D6_UJa-{*yX
z@CU5Rvj8*SCQDP#+ndC&`QOQ6z1^m3R=dH)gFDg1J3zZp>YB}+Tce>9k7@sf^Nj2{
z&YDvN5$bb8Olrcy5tQlHUD%p&<@M>pSozcMG(kO<7FqIc5lKl*h5BhjHdd5EGOfmd
zEfhfjvF5QEL$A^|Vquzao;o)1t)x{RhmrfF?_#**^CBhpM2+`!KMG7d*3{n>7z&Qs
zeVJ*cqZLZ!+uXX9Z8$zTv3Q-<wdZBVsBCI-g3;?pr3<mK;{8lhSS+3PSGrh*xgQG=
z`7k+RU2qEG+(UN9t^H25`k>d{`8c^iL;50t*!FH9;14Jm$3%nVr=@LlnS2nnb^0uL
z>tnw(ozJzB<<I@fzAJCWHX2^cQ=vomV#Rw3Ndw73)D(9dqX{mzsMKcLrF2}L@9IF-
zP6PX1Hx{SNDo~#(oB2>Scpx;u1J_e?yMMiLRHt}!e_gFWMm0JuAB>rQZ?)d}MS1q&
zM;$XpUEBgvnkfX)*BUr&MdYtHEDF7Fake?pGQ4-9YFSj5)|wTn$H@acdT%Eyrm>}<
zn9T-=fwkTV6w&aZD>6gNSl0T|Vi?b2jSxGFE8E@M0Q9$?rSl%skT_CIh|-*1QB8n$
zpS9fo9It8iBEC#c{n;wYY;6lFiEvQU;5z$fBjfC)B*M&7b^Np!S*iWzk``*JVR45t
z=URV!KGGI2kfRLH)0@M2VMd}3rW$;qTr+tIacR`zg;xzILI_VFeAhXG-IR`fWuexy
zZ%6#bfBm#l@rHG6-kBsM99W4My<qd=CN|*&B=N#=<GfXkJD{_iZTGtEWr1u9sZfnq
ziQJI<yM($>h0Y}Q+ThzQ$jj6!HThc=Xgbb3l>|hwqz=2&j=sK$qEUvy?VB!vfaP_=
zj0qUv_{oE{1)9mQ;f%*jj*_YBH(n`;KtYe@2e!TCy@)Jjv?Q$W-V+}1MyyFtEr9}>
z{$6K-6xV(dnIR~X$x)XMFZ=pW4Raj9uV*3=4ln$_49uL9aFNK#;l<J;rHY%<%{(_e
z`F0JLJ5cLk<D|wL#y($CAS_SMGGYC*b?*+6C>wL+O%4ng`)Z}MEQ0rzupCsW)QT`p
znexM=-fPT-e<S9>gca|lE*8%>s}vitB7yQl6WlHm-c%lbStejVr}MWfY3!xeqMR4r
zH^9eXY(njRHin`sDV27PNsZC8#>6{Z_om=oK{?avFT88Mdc<F`r`|4SjEaWZb3{yi
zwY)zL*E2%nRO;up->=4ARQ*&e4u$!*5B7opPdDYB@nY_7`OzsUH9C07^jy)_5SPj+
z;j%0?zi$*$@<-mdcY(XAoqLPcOUCX|!efUvW0eu4VUVs&xJ6~wrKBehN;Z`1_<0Tb
zj>N9h)kn_s!=E>+E+~5Qim5UPZ{&OSjr(Vt!Dzk3XZ0A3x1-7?et_|sf}OU&rXc*G
z8xthF-Hl0XD9IYd)u8l%xH(aa@=~s-ruf$R^XG3lb}(?<uqx;`YVlswHHtUDp32_7
zd7J(mKiieo{N!l0pxuAw=I-l&9Bgnfp_^IXI$I}OqM0J;I2~-Z;o&p$xk6Ut#TZxC
zemWhfCWo62f9^aNR1!iKWthnIj7t(8mg*3r!wZ|R)CCgl#@dRqQgXxg6xxe>59E8K
z;v?$0wC|QJ(?l~LW;y)Q)xYKH_ALo6fT4N(`s}0Po#K2wKZBP@q{!{DCxqqU>QId!
zK~MTNY~_ydC8s;Lg1;rjb19`=PvbEy)H`P-?-@~A#@p-KziTA2H-g!dQlwfh5-wJ=
zp#a=<RK+$w?+>U0i;emE!wQ{y)8o12blKLbTx^J0m?W-+JjogN^Ptgk$6B<&Ri+CS
zZcZRn6b8Nj_`i<(ph=};{9@JP!?*xt^1AwoAmj6LHI?v~=~d#l=BH*tePe8)2iL_W
z8Co|^8OVg%rRqx)6}6RLr>7T3LMm*}A^lRo(_nIeAfkEMN1067Vb;}NnX@4Wyo|67
z$F7J3zIZ|Uj=~?DTaQ~<N{Q`BlX_TarO>n7qi^F^^MmdWHcd(re2PlI(+E4n`*F)b
zvkBtf%g^QC?r{nS4pfnzPjtk+g|E$2@kww(21g9Hy8MGLNmKLZDqf|8c_*dxclDEU
z#yFNz3*KHVl!TCWg<4x%CneO>Y+z^1=_+Y?Hlw!3Tx_qo{`a&Gc6V~C4FK4OU@W&|
zjB(!=QoCb`<@F2Y8f6(cIW{9{^St>IKtb<%8<CHRThpDPTAaaQBd6@O>$i9@$CefS
z*N3)j%RU2eihOz-<Ujnz_?N_@q#(=}jTnBsUi%rKq>5u<yOQtUG&!!ixM?RYCCg}i
zU!u~p*x#(Pqdl%dq$9)CFqk%HtG_MV!`uI#n2Rh2G{K&>DkZ){Ach~0{&bF{20KN6
z<WcIF9Aw*=-x{$xbZ~Lzg9D=O>pI*LXJ)%*?x_fOjsNxSe=}(XK+0xWgv4!M;iRFI
zR{xPdUd)s~#ZscdKi4xt|4Ks18P$TFdf<n%!LX$^37I?^|CS5?|5Y|8s-vJ#H<;on
zA~~-q^l)!9*}2e|5&%;D-z|V06!iWLqIm^Ch%Ft&9RF`okOb-|z92p%tPvAp;=>^3
z!{l!%4pSo|S19BbDE<$MuWg?hZKL=cD@B-N?0;|ir@<6F-V=ZFvv5s+K-H<-N{|ze
z_pXvQw|;xEnykl3Uz!ai!<S6Zp~ptMMTC&WuAb(4?crW24|Q|M_<=*{L(<^4*t5RD
z!XZoQ6>}vMS+~6p4_uHY_dB{PSxgR2;A&@ic9hXn^hzv8ZABsI_IHdH3SF=SP)M6E
z-l|De!xe0qU)Nups2uhB@mP)|4Sb(GW$fNo%IJ=5@z@BEMR5oP!qgN3-#M)V-)j$*
zFL|3__n09|14|M({h_~e5T87nEt2QNOl8E@QOOqN9}BEbS#Fq^o>qS%@1Nu}F{W>6
ze!#*4OO2<bA*dtBs+;wa?G5qRRh%FIc(6J+MzGj>4RM}kD}$i%?-Qz~FwbrGg2g<0
z9k0jO=tOa#B?+kwRxO+c*{J2RLU6#iS!!OY2xbsdYVMP|n&KA@eDx%nGeA?7Q%2$t
zd`j(5oNiksuY$KT{-l_?>Ur(h@(ZH&_(M>d$|+bsc3k@O<M4g*agFev<YB(Uw9JCD
zf7!=z^q$G&>(@Hlko3tcAntHa#5o&2kW0>1GsdxYYJ|;L0(!22%ew<KJrU&l#b=8O
z>3;FA#@((hTJm=vNbnuk@ZwW&0Q}^{FjYF2!P6V_#fR$VZ~pGEUaYBtr@5wA!@D*N
zbS!%+MUCAt=@^9soyMdZDks%@JSoQFBR(}wcFMY^E(r+mMy;B2Q{iP5@0Vg(Mpikz
z^(D(92eFQ9?Zofog1%v*g<kjxXplAq_~ia`3BCd-nqPRs9)RFI3>xd*(dQTMW%nE&
z66KTh`lq0RTzbN5F@QA8b(YW+P9|Fcq@=-_Ru=Bh8az+TN6o$RKlU+-3}R|gvID6u
odE<y-jjj0kIlIAAN6tgd8^FAoH(UvHe^Cy=J!746ZM%s70N#Hb<^TWy

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
new file mode 100644
index 0000000000..269ee7607e
--- /dev/null
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -0,0 +1,136 @@
+---
+title: Windows Defender Application Control Wizard Base Policy Creation
+description: Creating new base appliation control policies with the Microsoft WDAC Wizard.
+keywords: allowlisting, blocklisting, security, malware
+ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+audience: ITPro
+ms.collection: M365-security-compliance
+author: jgeurten
+ms.reviewer: isbrahm
+ms.author: dansimp
+manager: dansimp
+ms.topic: conceptual
+ms.date: 10/14/2020
+---
+
+# Creating a new Base Policy with the Wizard
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016 and above
+
+When creating policies for use with Windows Defender Application Control (WDAC), it is recommended to start from an existing base policy and then add or remove rules to build your own custom policy XML files. For this reason, the WDAC Wizard offers three template policies to start from and customize during the base policy creation workflow. Prerequisite information about application control can be accessed through the [WDAC design guide](windows-defender-application-control-design-guide.md). This page outlines the steps to create a new application control policy from a template, configure the policy options, and the signer and file rules. 
+
+
+## Template Base Policies
+
+Each of the template policies has a unique set of policy allowlist rules which will affect the circle-of-trust and security model of the policy. The following table lists the policies in increasing order of trust and freedom. For instance, the Default Windows mode policy has fewer allowed signer rules, compared to the Signed and Reputable mode, and will offer a more selective circle-of-trust, less flexibility and subquently higher security.  
+
+
+| **Template Base Policy** | **Description** | 
+|---------------------------------|-------------------------------------------------------------------|
+| **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
+| **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
+| **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph techology](use-windows-defender-application-control-with-intelligent-security-graph)*</li></ul>|
+
+*Italized content denotes the changes in the current policy with respect to the policy prior.*
+
+
+![Selecting a base template for the policy](images/wdac-wizard-template-selection.png)
+
+Once the base template is selected, give the policy a name and choose where to save the application control policy on disk.
+
+## Configuring Policy Rules
+
+Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. Hovering the mouse over the policy rule title will display a short description of the rule at the bottom of the page. 
+
+**Policy Rules Description**
+
+A description of the policy rules, beginning with the left-most column are provided below. 
+
+| Rule option | Description |
+|------------ | ----------- |
+| **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
+| **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
+| **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
+|**[Hypervisor-protected code integrity](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. This provides stronger protections against kernel malware.|
+| **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
+| **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
+| **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
+| **Update Policy without Rebooting** | Use this option to allow future WDAC policy updates to apply without requiring a system reboot. |
+| **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
+| **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
+
+**Advanced Policy Rules Description**
+
+Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of the policy rules are provided below. 
+
+| Rule option | Description |
+|------------ | ----------- |
+| **Boot Audit on Failure** | Used when the WDAC policy is in enforcement mode. When a driver fails during startup, the WDAC policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
+| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
+| **Disable Runtime FilePath Rule Protection** | Disable default FilePath rule protection (apps and executables allowed based on file path rules must come from a file path that’s only writable by an administrator) for any FileRule that allows a file based on FilePath. |
+| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically-loaded libraries. |
+| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically re-validate the reputation for files that were authorized by the ISG.| 
+| **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
+
+
+![Rule options UI for Windows Allowed mode](images/wdac-wizard-rule-options-UI.png)
+
+
+> [!NOTE]
+> We recommend that you **enable Audit Mode** initially because it allows you to test new WDAC policies before you enforce them. With audit mode, no application is blocked—instead the policy logs an event whenever an application outside the policy is started. For this reason, all templates have Audit Mode enabled by default. 
+
+## Creating custom file rules
+
+File rules in an application control policy will specify the level at which appiations will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports 4 types of file rules: 
+
+**Publisher**
+
+The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specifity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
+
+| Rule Condition | WDAC Rule Level | Description |
+|------------ | ----------- | ----------- |
+| **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
+| **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver corp, is affected. |
+| **File version** | SignedVersion | This rule is a combination of PCACertificate, Publisher and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
+| **File name** | FilePublisher | Most specific. Combination of the file name, publisher and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
+
+
+![Custom filepublisher file rule creation](images/wdac-wizard-custom-publisher-rule.png)
+
+**Path**
+
+Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a fileopath rule, simply select the file using the *Browse* button. 
+
+**File Attributes**
+
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (eg. DLLs) may all share the same product name, for instance. This allows users to easily create targeted policies based on the Product Name filename rule level. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+
+| Rule level | Description |
+|------------ | ----------- |
+| **Original Filename** | Specifies the original file name, or the name with which the file was first created, of the binary. |
+| **File description** | Specifies the file description provided by the developer of the binary. |
+| **Product name** | Specifies the name of the product with which the binary ships. |
+| **Internal name** | Specifies the internal name of the binary. |
+
+
+![Custom file attributes rule](images/wdac-wizard-custom-file-attribute-rule.png)
+
+**File Hash**
+
+Lastly, the Wizard supports creating file rules using the hash of the file. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. By default, the Wizard will use file hash as the fallback in case a file rule cannot be created using the specified file rule level. 
+
+
+#### Deleting Signing Rules ####
+  
+The policy signing rules list table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Template signing rules and custom rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
+
+## Up next
+
+- [Editing a WDAC policy using the Wizard](wdac-wizard-editing-policy.md)
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
new file mode 100644
index 0000000000..b94efa4c7c
--- /dev/null
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -0,0 +1,21 @@
+---
+title: Windows Defender Application Control Wizard Supplemental Policy Creation
+description: Creating supplemental application control policies with the WDAC Wizard.
+keywords: allowlisting, blocklisting, security, malware, supplemental policy
+ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+audience: ITPro
+ms.collection: M365-security-compliance
+author: jgeurten
+ms.reviewer: isbrahm
+ms.author: dansimp
+manager: dansimp
+ms.topic: conceptual
+ms.date: 10/14/2020
+---
+
+# Creating a new Supplemental Policy with the Wizard
\ No newline at end of file
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
new file mode 100644
index 0000000000..cd11f70511
--- /dev/null
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -0,0 +1,21 @@
+---
+title: Windows Defender Application Control Wizard Base Policy Creation
+description: Editing existing base and supplemental policies with the Microsoft WDAC Wizard.
+keywords: allowlisting, blocklisting, security, malware
+ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+audience: ITPro
+ms.collection: M365-security-compliance
+author: jgeurten
+ms.reviewer: isbrahm
+ms.author: dansimp
+manager: dansimp
+ms.topic: conceptual
+ms.date: 10/14/2020
+---
+
+# Editing exisiting base and supplemental WDAC policies with the Wizard
\ No newline at end of file
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
new file mode 100644
index 0000000000..7653a2e3f0
--- /dev/null
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
@@ -0,0 +1,21 @@
+---
+title: Windows Defender Application Control Wizard Policy Merging Operation
+description: Merging multiple policies into a single application control policy with the Microsoft WDAC Wizard.
+keywords: allowlisting, blocklisting, security, malware
+ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+audience: ITPro
+ms.collection: M365-security-compliance
+author: jgeurten
+ms.reviewer: isbrahm
+ms.author: dansimp
+manager: dansimp
+ms.topic: conceptual
+ms.date: 10/14/2020
+---
+
+# Merging existing policies with the WDAC Wizard
\ No newline at end of file
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
new file mode 100644
index 0000000000..c21368ab72
--- /dev/null
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -0,0 +1,53 @@
+---
+title: Windows Defender Application Control Wizard
+description: Microsoft WDAC Wizard allows users to create, edit and merge application control policies in a simple to use Windows application.
+keywords: allowlisting, blocklisting, security, malware
+ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+audience: ITPro
+ms.collection: M365-security-compliance
+author: jgeurten
+ms.reviewer: isbrahm
+ms.author: dansimp
+manager: dansimp
+ms.topic: conceptual
+ms.date: 10/14/2020
+---
+
+# Windows Defender Application Control Wizard
+
+**Applies to:**
+
+-   Windows 10
+-   Windows Server 2016 and above
+
+This topic describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security administrators, and system administrators with a more user-friendly means to create, edit and merge application control policies using a GUI desktop application. The Wizard uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/en-us/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets are identical. 
+
+## Downloading the application
+
+The latest version of the application is available for download from the official [Microsoft WDAC Wizard installer website](https://bit.ly/3koHwYs) as an MSIX packaged application. Additionally, the source code for the Wizard is also available as part of Microsoft's Open Source Software offerings on Github at the [WDAC Wizard Repo](https://github.com/MicrosoftDocs/WDAC-Toolkit). 
+
+**Supported Clients**
+
+As the WDAC Wizard uses the cmdlets in the background, the Wizard is functional on clients only where the cmdlets are supported as outlined in [WDAC feature availability](feature-availability.md). Specifically, the tool will verify that the client meets one of the following requirements: 
+
+-   Windows builds 1909+
+-   For pre-1909 builds, the Enterprise SKU of Windows is installed
+
+If neither requirement is satisfied, the Wizard will not allow for creating, editing or merging policies.
+
+## In this section
+
+| Topic | Description |
+| - | - |
+| [Creating a new base policy](wdac-wizard-create-base-policy.md) | This topic describes the how to create a new base policy using one of the supplied policy templates. |
+| [Creating a new supplemental policy](wdac-wizard-create-supplemental-policy.md) | This topic describes the steps necessary to create a supplemental policy, from one of the supplied templates, for an existing base policy. |
+| [Editing a base or supplemental policy](wdac-wizard-edit-policy.md) | This topic demonstrates how to modify an existing policy and the Wizard's editing capabilities. |
+| [Merging policies](wdac-wizard-merging-policies.md) | This topic describes how to merge policies into a single application control policy. |
+| [Deploying policies from the Wizard](wdac-wizard-deploying-policies.md) | This topic describes how to deploy application control policies onto target devices. |
+
+ 
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
index 1d18afd93e..bcddc618db 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
@@ -45,5 +45,6 @@ Once these business factors are in place, you are ready to begin planning your W
 | [Understand WDAC policy design decisions](understand-windows-defender-application-control-policy-design-decisions.md) | This topic lists the design questions, possible answers, and ramifications of the decisions when you plan a deployment of application control policies. |
 | [Understand WDAC policy rules and file rules](select-types-of-rules-to-create.md) | This topic lists resources you can use when selecting your application control policy rules by using WDAC. |
 | [Policy creation for common WDAC usage scenarios](types-of-devices.md) | This set of topics outlines common use case scenarios and helps you begin to develop a plan for deploying WDAC in your organization. |
+| [Policy creation using the WDAC Wizard tool](wdac-wizard.md) | This set of topics describes how to use the WDAC Wizard desktop app to easily create, edit and merge WDAC policies. |
 
 After planning is complete, the next step is to deploy WDAC. The [Windows Defender Application Control Deployment Guide](windows-defender-application-control-deployment-guide.md) covers the creation and testing of policies, deploying the enforcement setting, and managing and maintaining the policies.

From 8e585bb9451accb7410be18e05b9a8e0933f05ca Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 22 Oct 2020 10:38:27 +0500
Subject: [PATCH 008/825] Create pin-reset-option.png

---
 .../images/pinreset/pin-reset-option.png        | Bin 0 -> 83633 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-option.png

diff --git a/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-option.png b/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-option.png
new file mode 100644
index 0000000000000000000000000000000000000000..7415de9616afe073ff1ed7380086dbec46a5630b
GIT binary patch
literal 83633
zcmcG$WmH^C&^C%BI01rtfZ*;9!9(z%!QI`04;Ea4%isiecXxLNcXxOBhMaTW@5-OM
z?z*?vVrI?E-o2~4tE!)>dYWK)SqWqWJOl^`2xQ5xqTeAP-Yq~tKpVipfWPtB|LF>T
zgLL>VAq-JEO0W<9@Xka?MhF6;A`<aQ?>+c4yzSQ?4iFF@y5IgF<7hwNLqNRdNQw$6
zxo96PBYsgbS`j>BOwOk&W$?wWG^+MAqL+7I$0+m0GNZF0PYRV%-?1(rpQ%kMt;d_G
zH7lq&G{=*ScfPMG&L#iN89O8Wi^YSJa8O=BGDcL4;q@}*G9`(%3u(ALpUX?IsgL`X
z+rjwL?%}B`Q97@9&$M^Ye+@4u$>THWzb#8#cU)Zb-?jybwD8|mL44jq_-OyODA>E$
z*jQVpcUiP_R8(I_|NFX5SM2|A4U;L^f8Aa{z*zm)t0+->M)-f-_Cw=T|JN&;D}*1%
ze|M0g{67-}{1Eeu>qAg>aj|qNcBFpNzde`gfMv(~f->{;{5<pfct%yHXFOA6#_3-v
z96j~N#kVN<4e|Nis>u!AH-agr$N!V+@4ZXyzyJH3q6fZ~{6jIrmv5uE4TjeuqmZIy
z0u%|!@iIV;_5LU_`vGLi(BBu9kXhkVzNAl|IGcv1Zof8T%Uq{%2D!DNe0uz&d6NMH
zfI*smTn@Tz8@NBfUmUAtX}OGBntkWGyqo$abv_z+E*gZCD&ey#Wt1v{%{dfia#2FQ
zoZxcXf3|mUz{jbs?%lxd{9Ph9KyufxWM6ZQSEf03$6#L|(04X!giygp!Ss%r@k-b+
zqjqmVx6&>hvS)y_n12N?Mn0lN=AKBs{>}^bVbgQSWRdt)#zu2)r{T8v=DO+DmGW)g
zFRa0Hw$xodQq>!d530}jRq7gkkMtxj|KVysXinhE0R>}8Ap%mzRn*A&YV-nT(cj6O
zu6|R7>3&yIdq22^?yuPo{n;9I);0dN*YF4k(GF>3$u=d&OUTp;$J=<}`G&ae&3>61
zTS%4I1VV*5q&eKi6pJdf!Oz&67`d21>{<3l#*SEroXQ1{NVsN?d<V?-z*Ycb!&c$#
ziaSbFRMg&V2~blJb|ThJi2Ne~f267N?EtdcQXaw7l?B3~sfHcdjiewWwz|PiKf)jN
zlc@YT?(oq8LR*gx>SFoZiWZ5|6_INXC#}c_p22b%jUr`c?)+f~FTinW_9zHm`WsT0
zji31{@8VdH$1|B{RHG!f3P0r*|NbuqAi~zJFe`NhJ`ceDUEitvsAs4qb(w`m`a*hN
zWBoO*eDE$eg0%bze~Jgi(MiR56|I+XaaoV8&hZIw#M9|)-ofSd<8wK^7C_t88hh2|
znbly)`1wA-%_j2pybr)hy<3?g!dLd<idkINcjGiT=JTLEPh{}wpmq52dDXk-Ln$#w
znU1X&{e#Ko9U-BQqluu--z5Mss8pk||Aw2n5<>0HE+SdnuC|(rQupNj0gWdF!<x#g
z4%DQ0Aa&~C<oa|gkD1cBva)c~qqoZ}!#zgo824DGlC~Rb1YkFu+ch!Uxq0bFkhb`O
z&VE~zTzxpHlPB})NI6ul(zap<KvK|-%$ZNc%ldM^QKn_%e1SZ8$h<<9`K^I+cU*O~
zZ-=PC1tmO1D{|p;6&Xc=kl)<SCr9od{$fCn5)g1s+`2sA$AXh%*YKuOi!8t~9(a(~
z{IY3Py&2Y#D$IuN0Wfr+_xN7>dJ})Mx0uJRa>UuZOF5>yI57Lwmdp@+=>;ih*N6Ba
z#G9g=Kj2+jpSHo}H}*N2K2$rKna6Q7ku3^#QQvER55N}k0?c)*vgv7HqfAp-#Dk!t
zYy%)2V(NM`?(jQ+LesU4P(izI!FLDeqj5_*?aja?zHsep#Izvd#jgB~hUz0fy2*Hi
zP*!bQJ!jjJ<Mia`>Gfy3{fEO=tmP2L!!ghX)3#U1MV7$Lo9XT~_GX0lhX#dUJP(yz
zOO;-{*Pw*{-P3!v6(3=as*5g9rPF_X@JG8vgBE}%9HX&7rBh97EB!3&1>=6JtT#zG
z%eW*MdEhPiem5mh)`^OdvG3=qCuPC`S)pNZ*;KAQ%{cMY^>#bzXaA1Lqm%ZR%R$cr
z(-ODnkqgV<PaWzNh7OUMErH@rnvoV)k0tdvq0U-0oy9jnt=Tn5&7+?lV=fb8O<j-&
zFU2)zMh~)^U!rOuHMFX4pQ_3Kpp9_X{i>-DsKZ~nM<SS0g1Itd6m+kF7Ib>-FAexs
zzz~FWD}`KYx!RR3@hcxx<S7u=XL{?j*ve}CPH6BMnDHuY+P8TpcI*2m#t5efcEDWC
zRO8&}DXB|!x4iQXS26!|V1VbLB&M%hT>xDRmG|SEN`?o+VZGqB{keKr`iM5!GxL@q
zdBl*>n-|Km!1d$EIvfc8W{KF`QCeBR-$+H90wXBIsr$9Wz;V}3^ZuflbXoleRtX0#
z>pKw!^$Pv>ZZ}5-9E8mtqicy5Rxb&u#U$Pq)$V`H`}r-A6vSeW0<93MA1w;h&_Q~t
zGkF|8m7odFTiGN`#_Hsqvk)Hwl+8%O@mf1eGGupGOxAF2u;x_k3TJ@v?PU?S3+wJw
zT-@SMNSgbfsK%LaeDyvdNO(~dK=9O67cp3bkNPNcc?mNtC`2*`xL&+i@s@f7q^zVr
zuy3iq=|)g9{M&dW34MGX*JD1lei<@03^=HK@P%~GvMFu#eAM3gEn`a%L?~#z>NuT-
z)t=Aig`)MTljFKI#H++`E*B=Fmq}dK+@Y10*fMBPqUK;|E@cYY8USOs9s7KUJ%U;T
zmhx<B-(9Vb85t?9)Ia^_h0}NDT|P_Y$S4^}D+-04*&y8t5|Hqlv)GaW?=o6)hJq>_
zp81~F$hnx+;yMXHOuXP7H&dn8Z*H)6q=pS2d45`3PxYnDO3RLFD9wlI-iwSX{1N7;
zy1e5r4z#zH!UW=F4E(Sor0OCK^b8y@j@=LN+KdGy(T}3feQfj3Oe(7MQYaBP!280M
zF2;>jLes?<K7yw;{(H=Op?hl5a(eLN-Tq~OSDz@RW^KLBhm|g3`;cjO<;O(UeiiMQ
zoZy4)MnE`8vO{|HGo5MrJP(wdU0B7ba5m40TnnB({a?SQ?JtBs;grLl6;m_1e7&Qu
z9(W(n+PrjinXj$3G+zs^Ud`-Z*p({-oc8XyR-gz!N|q7O=+k`%v*9)~I)A;X0tp}S
zV0!2=YJXCp&jcmacbe83sJ^OJkY$#y6?k5lfq$kWHKl2F23_*XXGfR??Y;=fbhY+p
z_E1y4G)2mC-*=UwwwB}8>F(h$_j(|=#mhoI`&Vh!D%Ve_J{V7!Y1?UMTL?tlD@#<6
z)6j^02Ex61I{&Xt^BKM4TiYW6Q%sARhzer<nu^=9wA&`3Sc~tltW0d#n9#8}Ftqv4
zY1Dn6AMph=^m#r(_r47rr1M&X`i7TWS<|DVqw%=qL{-1aqb|y`Yw1sSPwiQP?)hfq
z2z_o`0@calKK?~kT8wHFU`Q99$B}6{_X+Or#EGu>zM(nxPF%yH5xAkVAyE~`zgJIO
zhs#I=mqKw6lE2v^7!wE-|NjKz+Bbz32jxP}XY+dOgZ~-|_+{^5Z6d=;K^$%6(NJ(@
zxt=(bwKdM-e|~OGmy?u~3{SC%rPLnl0|mB9Brq&bZyWSQWPnDN%g-j5oRWfyeSLkm
z2>wNtu85IJ)%zsCfh)m1Cn@5mLRI3###fXN9uDtVSEzow|9csDM$5$CTjiKAt_O2g
z|2|f2I|xUedd+BTgkfiAhl9T-c1nd?>=yWE_Q0<z#T`OGxOpP2J7SOLk=s4o1$?1Y
z8&PE^<k;7tKD>9%jcELU8I9%Lmxjd|ga3vX)U4p=%fWB>xUb3WHP1@mlj>Vzi_AV~
zP=i;wKjb6SaUh_tV<-Krr$NnP@|o<?U$dI3Ju66TF#UfXEEBm1e(>N+`I#UUuWE$$
zI&}5#67eG4Dt}AoA;LIMYxp)TesO}KK`@jyU!eKjb_9vkT*3$=5aqK$)6iHzJ<#sB
zjhAN<KZyCaPe=9!!fO7j4d)u3W7WD3UuXpZN-D}lKFK#~n~n`ehqZUga}ZBgirg>d
zYl0V+;fm#-q0rDC4D+3Nqk;{MxE-`AmvWW+;}+;Og3Y;~`63GUgZdq4${)+n_I_&U
zSh*QP4{l*K@?Ge}+&0d#Vce1n{Q8x2Pi0joG^wl@bkv4TldiIj-o%dIBxhz(=9$x<
zxU*M<>Z5>iRwbVojqJix2o}Da;C{nT=uO})??s`-s<tL%2V&f?Ij`elJ#`~?8v4xS
z%k8<v1-+Bl4i|gPL_UqK;Bm`~%p|q+gg`!K`u7xL{YtIEdnyL3X^M3v>F@vaimkbB
zULZcSW)&P5>K5?H?bupI7@#X>4dv=%+pjcHVPgPSx&p}T(^874dON}`&L(4S*G4?;
zwX)+nJU-#?Q%mBoJ2Tiv49=(uE58pxv20(!PV4j>DxLJ^c3PQ|U%K9cxXUJoI%!6H
z<{g~T7ID?$7n!I^NO7wbn-_YnDu=k=wy!&s?wQc)cd^1t(-=b#db2oloI1bSMG-*2
z3+H18Mn1Bet)#yh`>cFPsgYtvq+2nU#IkdKM`De-jC4$ex-}-I>FF@6u>gJ`L<39<
zAT((%OjC+|!9|)N+X@+niNNnD;U|{RvuwjF;U5}_m)g2Uc({=6GaoUgs>1N*b~$W<
zgj~(S!YGGp2j_?YnxTPqb?&l(zJO+ZZn@D|YY((dlh&Y`^dvi#QioLtzRMF8%h7>O
zSlajv;(~$tDibLyMFp6&v_=BhG9~t@g2?ml8`8~JUL3=!)YAozX%AVuHVOKd*sgbM
z>{uNm+va5x#F4EJ3@Uj;`^$7k!y18No6>_OdYHMxW33FdGD8A7zg*206?XP^GZg8x
zN9RLRPX)qkbs8exY^Yz>4@LylJoa=yfkrG*<@mxNoU5PQkBL=LCGkhD5e{RWxv(xm
zbX6flqTA7z3Fd~qh|~fcEBGsMGA9%0F_Gza#f#U_S?Tohd8@<x-ZDBV@fvK{G=+A%
z#f<cid=*#aOZst1s^$(6N1i5I@x3%6Cnoa?mai_|x0A+~uQi0mR`Cq9I(N0VfdKdI
zTcdQyJ;3fezVsIoV~N2Lv7x96pw&jHMr%iq#|7rFycYv4hw-NbF|EIrW^ExluHyF%
zH!E1;HJ&}Fp$B%N?V^IO)<Vl*o`J|B_SH4QbLI#2a3BoHpHNLli4B$}c}A3}YXr_L
zi(&32glY%uqV1I2AFRaOdE5@A-$#F>HtD*DJ#*t7_4lb&Ndl20?+HH!ythDvRUz5+
z=8#fVyVPA`Kk;g?MQeaHhb?m?G_w|V`IB$I6j3(+2l#hFt&mX`VhbuOzadX_Z;m~g
z+nUTF*RyISZEcRJTj-@U>cr)nPDNNXGlhL!(%UnU$>e|}jQ9$q;l#co@;Tp+sW5HR
zqyXCt*QtSNi=Ei!OBBUbvjbG;%(ng$ZJm6oLt!D(PD#<(QZ|b2wC=pm;~GvFz#h_G
zYD++z{J!7im^!S@BtNI?cKuem!{O9|aA}c>mF)Hz`}_);`G6`$f7Pb~Wo;jOR=3X2
zA;DO-D#anw?`1N@dbO^-Qk#&xvJj(b%2;2&n1idkeeQE}><`l^OBq2>e(bS5@^1l2
zUWvBFT#~K{i=Qzz_!hkN8!XQ!TLziUvtCmy@-(GR^K8c}C|(Ho;WM&>wNJyKxZ52f
zBv52<BWzpxGY<z*wS_m8#J~|YFLr}H=4ABNp&gT(@edM?kXwZnvS<D>C+%#v6?f1{
zf!(<G`wIt)zL7DR68FMl>JdeOshF+vK?~rWFwB9QnX2%YyoJ}vKdY?QmzwdBSCrKj
zM0dk5hk(HMc5<;}SEt9Po(s;2gslv&a$C<-y!DWX>C=J|XgKU<6qA=n0_ft-f+7d}
zDJ_Mg=^7Gc>-bG$qSoKSoCS<3y(p~8YOwBqv@m|-m3>0udtQLaJI%XMM{XONPETUz
z>d*QP_A6Ny>YFqRg|U(WruvntMsr>Tg@fU_+1H4`<Uk{SBpHEKgpP+_0RoGfSh-K+
zZWJN8domJn1IF_2NiUGLrA(8<XvM|JDqAk*jv1B&ziTL`#6#wlU=3ZKi*I~gy6uLt
z9Htd5Sjkg$rT*Ymi_mnG?1o(iK<F}vVPd4mhYc-WwI2#`*4vyF2DawWe4tZp{j=(~
z&sZ!p+VNcqPF3N1P|B@N_o+eP#{P9eCQ8GgNWY6cn^&0!+8E;mOkh6MK;J?vEYo@V
zeN9*UQ2s{B^}L(&MS_F4QU6PkeF<Q-boucjv_1n{m}sQ8xq>+{u~O63W_Z@!y*F(6
zFk!O+R$TvS75~Pq`gRABk8(xAHS+5A3H&Xuht87gDSj7vI<PBgifKn-o3%xbsI0m6
z>2_D&WAaedPH6}MgK#N_FMw3-DQuxhDTp&By4<$Nc?5INM98Fpa?qp^75X>Ry&fOi
zz1LMAXzp%-ZRr-6S6&eT$@ziyba@%2*;~`qa$_&8{ne_yQ^LS@)#8JI$VJudBgkHU
zi5ww#BN45GsZ7Uvb@dTqh0fL<ov=9oixXL;^jhyT(oCVHU*Jj^L#WxA%=OQH<L6?U
z+tM;;OX0g8mU6)0^9`rP_kf;3cfkXnq_3-op)apR%X#^-CKZ5ZXAi5zh4eR5FJ%rt
z$}ah+FFGL=r=0IR-r#1W9B1SnXUcQ%eH6>P{ud&uY7q-P($r-xEkHfEd}MNI3a9dY
zkDia6PC|TYN@x(@X1nu~)N}OmNBCEKWctx_2}9{(p1=#FEsyoJP`fx>i`U=&oG9ix
zdopCv6?@rqmZS3_BlrTHf@$Fr8JXD+AxqeHtCsUoO*&j36(@gF-zet}Un%jqRUJL)
za3%ZX5xHvN>rF6XoR1wm8n64Q5{m%XO{qjikIV)yLtV$_TXcD}d3ZZ6)LC>=z0<rF
zI4&#eqR5(h5bIf$ms=kqp{p@N{8ei}Ros-AKiS>bhFL6i(n)sx&<L%gFJatu`Z}+l
z&!rz!j_&o#Sm?z)D2+T_1+Zj25pc!yDFIinUHTs7LMw-u0O4ky@lG)U%^SEK>u5C9
zzNWM0`kSAx{x1u7x=Z@^ZnYctyxTUb(a7<)y>(+<cYTeoremp>3~9JDqqHjt*j6+T
znx3clo^t%>4fBtrxv$rB6wME40+@X-7R(>%p%v-+3JK)Ie64vNm}i^I_yT&!SVT39
z9IyPg=THS;i|T^Ld|2osKrimD6!;E3{6btrGK$(`5`ZpNfD2OO%etJ)J=yk4UT@c*
zqsx>kNX}uK%^XL-)4q<zc?T`vdxSd@>rT$P;&$t2Dv+KmFj%>FXIuG~i{kT9((igl
zbOEiX5ZsHzk=JCuuNWKQ+%~)(3}Byv?Rlb_ez{I{d`bL~{f8EoqA;<<dX>+14N9+N
z*R|lKIhKGHkC5lGgAOYagF*%2KJ}u)#I;`WQf$C(dhD$v($|W0=BxNN*f)LKTbRxd
z;Xq3Z4q-o6Q&xVoshY`}l(EK+Oan(0Sr$?+x!dxG?oS_47gyCuHU#O2;195eLe+o`
zBM(MOG>ca}+BD-kGLmL$&x7wo1KzdkI3BDH_`ewJeo~MdiDO(X(pJk>ZoQ+{aRcS*
ziEDEC&Okyup)Jv3q3{#Y`duL$$pX+C%$-s$j65arj3Z}mk-g3Kz)KY(IFMUn+#Izt
zuYg0lK&d+s-A7kO?qbT4_9~LUlpOx7GcZ1(+H@1)HS4~!D62t9u__)G@Iyg8C@l6f
zUyFhYxtM?@ZboN-edLCY+k5yHOX$Fj>#|Q;$n)x?EZbU71{b=CJOl2_yI#Xymp1XY
z&YKn%8OE|Bp4&Bb{@a)}mL{(JF9+YYTO@%+Eu3Drn>OHN&Z_dsvH%7=wF7DngQcnj
zl5)f43g<zZ+n$5s3K~3O!umue#k(MbCgk2Q*T~GgrIf0lZ8z$ru_50R>lpe@(Zyo4
zx1C1rboz-fthSywF~-IsB;=Zo_SYm3D-;?i6{_ObGRqe_l+IGeHj?b<Q&H;es-dFB
z_(FM`28^`4?R8#U+Ae-j_g*+P(cS)`+qG)W^tkDKy+bg*s&j9(K6jy$Y<S2*vV0XU
zWwpJ*!~5obOdpl;6xO|{)dqMSaB=x#@6Ks#Q1>Fl<@xPV3x^0H=GmkqrgBsSB=&}W
zR3-fUY9n4o#&@wf*8n`6eT=;95*d|G%LOz*$)jwW)5}n-0~R!`KpJPgu1EDm^b|+z
z&Tt(DPuNe|9@JPI)?Z3TAo6nhm0L3kpHBK%0dREztPuqLz4r5L^iSu4B&|gpr)nh5
zCWGE)e=dybBmGzd)qu77n_d_^h23TuYwjn)fTlsrDf)OkMvMeEmf0z*zGk&~;#d}B
zf_sP^qrnWC&qR!Zv_&!Il3$ekpP#A4gi0+Dmag^qI2MHHHaX`WR*06v%MMLBOoz@^
zo@_8kk7+#?0?EFw6#8XRS0vgUw%8z{cv?61ZZe3h6*o52)eN5QQAffw)y#WgJ&1L$
zwNh&LorK7LX3!46jnGcWG7)BTn?)cUnM)_j%6>#6-likJ5PMaCA56!NssITA!n`Vi
zoG(&ZpR;4-GA=AWuNJ>o%K!4Riyzz9aW?`7i<yX^Sk^I^-ZKX%ca}hn&=C<C05QBk
zX3mZUtwpAJig~v}KBAaej5A}jh}Eq1g3b%I(!<_X!|~X{_5yRRlsm1tiQjk?1PLHo
zgp3TcgjJ-}0h)zW%C5d_Eek3}l4Kpq^_&nCE7N+%mbC%^?GM}9vYW4^o}O57n)9x`
zE}1wwHgQ#h2{R`VZGjrG$tBQ){;!h?{1HL}dKiNi!XVxG*qJoJMs+CsZK)S(?n6it
zLg?)!<sEGA{y$0{zXf0wMmr1oPxiDAL3Qgb%ub>blx-`#&Xaz>wVcVsKpl50&8#`I
zyE&^?223_}OWHZVw5?li!`BPO!s|`!Zw^d@z0)%H=B0oSk!jwz=8B6ynaL*YmT0a{
z*Qw@cL@G>Y=ZD_4oQ-EPEYEzZ*chH)m~r#;BUBkLNUobCLcth1t3aZhk)L6pW0Qu?
zD^a+0>^`?JrMh1jQq|K3^nvVGb&h>|b}|#sK!PNNEx5SUD7ts$IMM)m==%?_<DdQl
zD`ctRpgk5^5!u{J#+DoVm1i}TlHa???X0H<o>68~qx3)2u3YG(kFXDTrv8n7ET#l^
z$jKDgYDy@F#S!oKzT%5GtTo;}G}fl`3(g0oigBI9LSu0O2|gIggDgz*OZ~RjP)74s
z0-h#scOK6#a!c;kW(=3+v!NQy97x1vQ|miB^85d;t;}1wN{oh<_Izk`CecpEn<E_A
zyTAaGhDP)Cfa2ykouPIY4jvUceXmQpaevs^&}P!ukCL$l-ZgAWkYdO!-ZwJJT@;8J
zC)DAVuD7Ger7VX|`wC$pGd!_*&DMN4hZ)}(pY4_t*20o9StR`=JfVdIk#S~am2c4a
znHYIA-o5;4B->-1_L0P)M6j}vDxJP1)qwDHq(HIKj0R>?_2$`z+rYyndU6W_NtR+B
zw@u^J(|~QmVY9_!LRRVQm_bxQtIa%uFn~%F>1141gM-Ht&1Bn>o;)zqE5vJAOQnT+
zEbj%bw(Ivht9B?8#TIB>wq%cE6JfN&wfk_z*yr8020>{N%C-CIlDP(1qz7BHdnuxB
zsdTO0F~+xqkCrpI(A69SH_&*enysTsY;~~Vmr<)+?>HcYx8*-qXTiJZ@UGU5v6z)+
z<%-CDx*;Bi+16X8-yr1yB{V@N>oTfU(#G6K_*9SO3wI+ySy@@r?8t5WN@a}4r``0S
zY6X&1vlrT{R>e^p^?;gQG-M|+VuKlRt69!c!K+M!Ctg?$8he376A)c-Au6{8;g!&~
zlka)aV#(>qBGCNy*RPA?el?QSs`3svhZWL^_=}aNZ>O6_&ym~h&`u6uKNBYIVco1s
z1@kKIfi?T7Yu~g0vwt-@`w2H}Rg|lq3|64m+DSKjVL1I+aEm5#J!-uYMQGwQ3CCKW
zx00R=Nt1pVjX}JFe${(9LI9EB;+O|#jE`3+sVOMTgFl7huTG<ZYq5+QySss@CQoN(
zPTocjV@VvQQ@P<w*<SjqOH;MGcTbl1*Gng~;wL=wdaXK8S=SRng!|kOWLt_DfNDZm
zqhCs66|A;-jW4A3iYGnYsw}?&e~^q!Vhg&%ma3D!CS*rvdD0Q3(Hw?{sOaf$D1Kcv
z7cZDoO$xa+(p|T}uO7XOV?0!lj2t-l%(~+886J`KQla>SRzf%Bigdc@7C($z5}Ixu
z&+SH{*{cMQ9-P22xXTqCd6g8Ydk_CeVI6K#ob_laQtOtQ^T_e(mgeSg`jY6-y~=LK
zkT12CaOdN*c3DSrU|O{2WzyNWqI0&|!@b5M=i(K!eYd-MbYytL#<Ic+5SGI9F`=wO
z5oM%j!Lx^ocB*p);rwNb`g9w8sODC}_OJ!Sc9g~e*54ktUjEz<>QSr!niaZyLN81k
z4@iI{ZNTYxA3>yL(Ne`PfWnGglgN-WWBU|9`6PGs*=3GtP5i8XwIIDE<({?TCd041
z#1MO>+PzH+%{Jy{^n`(LOCMcU=jwH&Yj8Ic$7a}VV%;R~NEc?O#o+!A)Zl6GvV=u?
z%SQ7JPiIqO@>g`Qek&+;gUeAvPqqaO7u%EAdFJXFN=aVDj%`+J`%;{05!jI?u?`&l
z9mun&mRAt|vrfr7>p?`c(1qDU=N069p}i>pfdE_Fy{$G@Y;*uCMpt$$^$n4<YO8cQ
z8=J;aQZ)`^-@cC&2bO>xig>VR9JTeN<{to=L>PvfKv+&FWkw#?Pgj9S#c0&Lx8=eh
z%Xs*;IRR+(<qaQs^??1fZpZ(H+2C0Eo}f*#v-7ogGf7ZQ0_7Ux^<{!(8Y*NJ@U3N3
zAx5BA(rRXgWCd6!ns=h#5tahVU2j!;)@}<5^V`q{qP|Y*^Whm|bKawTxk`O_Y=Myr
zy=CKoCmu5Ft{YQo=2ONus@>3q(N1QA=?Yvfb!HHhZx)QCIo(!S><s{KA|WuVQvqJq
z%|G(go~#DC_JTc{qy8*~x~FwY0RV(H%`A$??sV41Fd;pjQsGW~l~#r<Y5UI=l{QEe
zquSn_FRc(`G9exL)J3{Ch&>`w(N+@anCUI#=(;qk5eY<0e5<QE-BT#ty1GXg%@e;n
z%eDQYGWg_r+^3j#g0W`~0cHmLcBvPQ+ETbkt6A)crOmSnF~<6t9>;BM5)HMmI~xX@
z5;bgyZNv^u_9KdCOSBuwH6Wg&V5ComP{v$%9SMJ<I@~u`CL@DfSXd~ps1;6Q^l|89
zD#ENkN*uP1MyGV!qjUU$*1a>3yx)^S|2VIS4wJmKg{XHBnYbYJ<`$(wh2%aEsXaAD
z5$#pb{?|Akjsi9D`V^+aZ!S^{$cF@nHi#<%JHfR3WmF*J1LPp~(+qL0p7VD$H}z3^
zaYLoi=R0uFM1qWRUFf-;TM=5p;{=s;We|HA7@6ufV>W=J-y%AuAX38pbr1d1X_S4q
zr!bl&5^*V1jp8j};5IkU%W9(qUQB6{;Mx<&KdE557McI!RR3nqcF28ek(wY==mFPb
z!r?offF~y=N;nZj4Big>f@zY1!K=R*u}pyJ7t{3}_tixAh4Ha)&dcM=#O*Xk{x(93
z1o}SUsii~`H3CXbYpC4Rb^8(;04XUsU<MEdDWDU|nNZT%o8`R6&x8AVcc#U+kayE^
zbsST?w40Nd=^?<AHZYrJGvCL=dFtnnv0Zf;5+h&6&<f2Y;z7~rq0s1ryrQX-@8NX-
zAoknDDoUT}Mx$7J<@ltfIrO^tt11=Nptoqy<N~dWl6{Nem}uR?(nCV?QvFC^7503L
zp(pQ@5@Z+oH%wArQ~dsYa_)3ebSpO_;}iF;>+6y`mdQe$c=&}N@isungmJB7Wp*ns
zs}iQ7sx4OPOI>@s3+;TO66DZLde=OJ;N9I_Ms6;QkjWtPx(W!G{&52Hd$iAfg@aEl
z9bHHh7LZ`aVBJdcYh;R_+;%(G8%PiZv4AN9uDEDn!6CH=h2|xdB|ex|0vls6gi?Qh
z7yXAJV<gI@qNNpXj#f(@iHtbpF>RbpYWW|n2LvYHT(Gduu;-Uf(=2owh|n$+1O6#G
zp+(Vx%Z#qLEm<Ys-dSa3$sh%-ag@Z%T)mZ|{<hLLlwt(Vh?3LHPnXLmRSzIr>k<FQ
z5;}RK=NO5$=LT3--kZwEbkQt`cK5n*WKonV@?m*a+~N`1DZ%w2Z9m-Fb}N84EYgdQ
zZ-x-2K0yHt4}nBG3Y{#Zp+$3!DKmO7O2C&dD6YyO>~{N)Uj$-)6P?r)9TV(gvhMR)
zY!a$dpU+|W&{s!UWbjt-1fS0QmI@92w?Ov1ro7rO=n?5QPokm;lE~E*+4@%#2j)@D
z1IWqoC5u_*x#30+2l}+tW>ezUGZm5lJ?iH@m>yGqEyHvCdQ+g&DwY#U8+okpxITP;
zp?*kwG_RT#wfBIIf$@2l@3h9MPhqKe^5W9?!puhy>ELr6)Gp)9+9~DMSazjHW-$~i
zVCMTG75yUMg9-Fgb-7HE?`W(+XUUD;fAuch2CWH-))d;+m2HFLZ4JN14HW2r_1%)^
z>200&&b^*>H$^pqXj()YCel|E6yR0Mt`xSe_zw8clg)A;L_Dlsy!damt)KnmcET8L
zrn}Bop(58yCSfRbq1F#Dq++^K-0&2C;+Mhk5`P@OSyt{#j`mesl_tS5u2f3AI~uCN
z@z=4A<8>OaIr{E?^1*aUoY?8=GFQUF{8zz^pSi@Mh~;0t5qQ-=^~BZGItw$y()ZRY
znNIk87l$PEn>*SEm8f&M^xBI_;nC@%=CoT0E<-;(U7H<p`cu$+g5Va-CcGMwf)2KR
zim*!cQxH9?&%Gq7219;~l{ns2OKMUoDdjYu(R}3wdD&`ksuI5$8o1?uIDxf7IN#Rr
zfVWvK#2jSMZVwkc^j6_q^7hgK`1nR=*W2z#k0dyr&$TLBTq`Iw?;ob(`zIy2_76?v
z8MVj4sd%9^=zcRaX~vr&M2s_=^|p37bGCT36kd!UIa4$FbT3ZKS0K&Wr7=XWf^KbP
zF)zTJfp_~H@?7<Ap>d|~I70?yfD~ZI8US?L7~yZY1A!jT<=Z-N%pb@R<cJjOG&<St
zZAGe#@1DK&Ob;y<_ZuxbnfPsRd-KXfci^qU7nY{JpVz|m!pX9s&(zIxVDp>j$4k|w
zNSW}Bw)&3Nmz3^?CPu+O<JM3VBwcV{8z7YT54Z;Ll^85y*^jCe;UARJvOjPS&Hpng
zL7E%R;}pqRH8%5jQJmNEMf0Pon%xz|a+`}&dA2v5u1d<v1u=7F-`I3we1Ln2Ee%KM
zGL}DeaKt~KwC`w<_R@%1PuLbGVA>3QR5hq9c1B;HHKeOj>Y~R%&nU%q9@c^9D<ZCf
zF0epmR(&w^;1E?AHyRb4z_38gOS>GG9=hBHm*+H~YM?xfU0bgcgO&JfkZvbAhjvp+
zo1rG?oLS11(kN}-2>>hAPrm-^J;448TqP?!ph@BTiDh#-@8hI%s+v$_QF#8^`UC|S
zTMP@0OPDs|w?w~uup_lEihtx31^pJXXMnI%+>8}u*AwX-;x>}1LtXnl|6SRb&2-iw
z2yt>}#vtsGoT2M##a@8w13G=CHsneY%CN`mgU8;p#&EasR-uq4POcoXqH5@2NZ4$d
z!nYJtSJ@)~Y{6hu+f2FyLDRI`@qZ#Z9^1ENl@#I;s^4c;79v=w-(^`W-t0}@nCu-e
z5-t9SU#zkGRXF&qCR%2kxG1hKK)D)HBGmcQA7EHhw`r;yy0n3^+UdR;aSLwtakAa)
zB>6k%s6=Fod`kcJKY>R7)VQK%zs=_29`4=qR>zHAG5vt%eRGCy?E=pl)(R67vmR0a
z?vNntY?PD76XQ{<(NPj{#@u|`^<3@8kAjh=Ls1Hq+{ivS1!M~0+B#t*8E&hhPN-fw
zc~Fs$1~jaEIsCQ!yDAxgbq*6Tp8szK^?r^<(=1DbLcZPN#tq(IS~XhxQKZ}w|Bd?Z
z!hAzZQ&!n%Bkzmd&!6hsIrEWoVrNj+7EZfw+q<dy&`<lom^=fKz@XA!)vzZ@5xw~x
zty1aAfuf6A#7M1!qwhIoW+to}tLqCQX+N+y(5=#@ei|ET#?Bmld_4$h5~@LnL~A?X
z`<5|CVPe+(UGJ%M4{y8=mT1+q8_n9kY8|wf{I;`Z)$BV?=m?DbcJRe%7<X|w-j3&7
z%D7p~WjtJb<)hK|ES5pSVZtlm-Oe)Si!bnl-?O~MP3IyiVuo^6?5aj!m2xrSmkmQ|
zWHD@UvVDiP(gML($MiwIXfnWHCsWCFR46g2p?#q)S(reOTZ;iHCHQ*KZXv0gDk~;#
z7aN8e1cmX7FHaycXJKSA5GWiFuz*PeqJ&YI%hlr567==8Tp)de?BEuKZ42IGJSs(j
z1%d`e4h`<Ql-v@I&)|LXpSj)gT>7vOlz;v|j9FLWy2t-b&d6H$pC7<%hW~d|+J7_$
ztULcFzV6#Jeka=v-b46H=mblHtPm1rM%`ZA6Lk7n75)(`V->i3zQ5t}u3wpIp#AE;
zouFd0oG@wXj3Y~L<&TwOf{l6@uIEL?S*;P1Re4&I64+}|t6`{WT4=mjct-JCmf5G&
z9wn~3WopVD>G3^@v2<>$Sh*t&qu`E`l{!fw-SAm2OBvL+8r+nDZd!vZG^_`|mujpa
zH$9SRgQzYIyBvZXOi0ulYIPs2HUwrHt=(&HOIvq2D_0DxLb;qtC#!es8n8!ovcc6-
z^OL29L{^gs%}GOJ<HATgJG+DIlO&V04k^Z#&k4z;>4T$#4UH)srO3QKL25{Q5E#~v
z5P?qyOpS8xDNA*bO-$n~Z8dZlw;z}XHZgWe?#>>q7kHR;_98PYJkh8)HRc5Z<8Xn3
zbpATAb}e?R3ya~Pz$y0%0Ti51=~Io!gWQ$!L~g_Z8Vq$ehkRbydQIy!({3d-+Q4hg
zTpNp3>`hNHQWhSE9VF+IC7+d+#|#TlseOslbGwh<cx%gH8}GtHU5tY&G3{S=cJsi<
zvXw}R?6Te<f0#b=DkV(tfd_T16$=TEHC$E(BXlmq0b0m$VxC9T$xk3h__z58%_=t-
z-W;x{5#263aZ=RDF*HBd279MG7dmxFX(bTjmsU;sKXR1<CT)^M-Zmd-O$sDVG{Yt%
z71B+3hx@iTRR56wNWZN8{HH6di`*WlKnOanWLQR{HX$6439ir#B{wXRxZ5;i%K7uD
zYl59q*wwWm#X<IHb9a|Ap;>P4x0k7dDW!92JS~#?{o)_PFYbWqhkYd3L9ty~+S?N3
zg?Yl#3Y}G=<ApSld)x+7%J#PKlp;C&J6D!n8bSXOVlQu$8EQm{!4i<#VJj*cH;FJC
zTCV5Iy|u@qRa9eXCW(e(*I$l#KX5Kkkvvc@;wVDbiG*N6vgmh98O{#SAT|fWvF!%~
z8J>t?93B%SZQEQZfA4_V-X_&trAoe8pNU>Av)(~WaS3+EOf`~giyyPQUu#<mfs)ru
zbgZ#^7|V>7mI*Bj`Ot|=$@gKBK+rKa2WUgMKNr3)43lCQn4bBofCv>G-LJTquHg?n
z9GpBQS;bg}kl$7`CyU;lm6h#h8=I2b2jL{G2j^TQ?1kE&@*O+<+$m0|D>K>v7!$yS
z=vQOn+2C@yQ4Udg!6o-oPmUOEWD|hSx1rGiZqlp;(L@f%J*K18HewxsXFIJhhtFSv
zepH=2?d*=ebuK$rKfs28$v%j@9DxHl;C{r2321o5Vd-0IIWK{@NzuCVZA1kkAdDdF
zN^%yVY;qXMs1;{NQzS=YfMaV9(@H$6Q>vsKeb)yMs{vCx7zB*>|Mj?4352qagu(lc
zY}{}{ktN5XvciXru2?&Si7>HL?W3n_X!!Z&WI2>fBBGxiY!v(592Jpvsj4i<J@i&6
z>qR27?Nn#jsS^j?M3x*wm|6FR>+tWEOs!b<Q{YqmMhn(cwVze$<%U7pC=LP<8LZOb
zG#@R>o(O7%%rdW=DQ__sJQzfcH1}^GLYWONu_?Ejp>wU_%3Y6D7Cfn|RUpz<LPeZX
zLV~`IchzQPk(R;Dzx(Ip0qFDMPO7>?ukG-iFdKO_hfwuCnRI4=RKu6)V|%T1oJ9M&
zF2@+B^s~Myrbm2(m_akyu6*zMo;$W4I-t@`Prl5Ta&4m=oz<r<rhV5iIPa^=USl$I
zzuDa+u1L7h;*l?pji?#aV^w+|hI=XU0&J;0mI%JIV6(s-#rV&Ur-|^_Ef7rGrs~^c
zG4V8<<O;Kq$i!ZzF_}$%E>^1$J_e4=g((e(I_U%F`hdWQ15xzvhjM{gB06Ca2R;ru
zYCyS#D<5M72~N`yTEh3=Geu4myLemfw^fbQ$y1))cAuLYD9h!FM_hlBU@RlqXy~TP
zv-3@951~1>mXx;o%ivgFF2tGnA)R-7qG5V-+j|m?X9pIIXaw)MQFPYK%{4WX8lrRI
zKusvOcc8vO<pT6fb!%$|=c75F%iXbTr^8wEa*E_oZHqX|Qse;J7F1|j0-;^^KvJbr
z64J(5_M8sXH)82~a1;h^r35fmD*CY#W#ePc(@J3O0l^ywHYLxm*4Nj=a{ehvX6gf}
zeR%#T4u{9P&d%iTWK7^)=g%RxDQ|-fbS>UPqMr^*B%35Tsrk3JZg=?ztLc9{;hi)w
zLZ&wDwaB7J6-5y92A~M2g%(T^C0KyDL5t;C;X(aP>^T|Xek7=_kO~96zr*wOy2m~g
z3H^;}`q9A~=(iyhz1v$_+q=LKd*r|SuENyz<|f(hTMukCtLN67gv)o^h+K~Lyw;|(
zAMIW*dF<`&x3ECVE}P*v9F~ciq>V2wjr)5#I&P2vkDVV4qM|1oW2k6RKbsu)KhiL0
zf003UA0Z*VpddB8w3<htSFiqUQ7Qn&t0g*RUsgJ9Z4LS~>{h+871Y$I>gr3a7Hjub
zTADQNb@m$#!x)l-nhW$eE>*vGM8iq<R?@ySZxMp0fSvvc_n+-q&U9QC&S+Pzqs>X8
z!SOzyWZ?;wZV33nAY}%_mm{mUK3QmyvyWlzxcK9fW9v7qlP3oqKAv2}g<A7c26U~+
ze_=utC7UUezZ8{-vePfkMoomX(I?a}InD5~n;~V<X{rX;(Lxd++$<K~q*m%l@KKOp
z+cSMcdh3$lRJbh-B5TZKxdel@o$BNLKk*_MZ8?wEc0I{?l>g*;(Rqov+s{isOMiXp
zJKjGmYl}B2>UtR~=dpX2i-H?Dvxu<ujWe}h)L!%*>9iRdorztgwo;!M-GJy0l9gv~
zG~DMh+Bl70P;}9cp}E-{i#LqXyAHOpp3fh<4sD&SL=zO$Rp4K^Zp0l=)@VTxoIlNe
z{YjK{F<549$o*ix#s-OUptu0pkXgVT40ttyGPdTSPQbhYy(G{PD07-VGQ51(I^#QU
z1`M?G-hf234@>G+I+IvUz^Iri{_l9eL{#VTo6UJ*+mk*70>N{_(Nx~R)3(=@<AUmG
z9Bpouax3;;6nJR2$o9LdxPCqo&iZ1A&<zd)7h|G}i|#+1f;Ad#7>Rsj=<&4QR+0FM
zj)?^g`J4@R)$0b%%2ddd(JEyi;|s=O0<Wut=?*1KQ2N{&yl^RoY)9v7(6j^|QPM?D
zPpk+z(2kc|!gHt#6iJ!fSg@gWe*CJNtTs~zWwR8U>$g7P5Wj5v_!EJogdJ&}9143}
z`ds23a;|64#cn5e0FNJeGV&fqe4`HFg{3tqXsn!)FeOrRbG!&XBZ4l+=W}=G;zan@
z2wVlh`su?-Nz%y%U!gaashB5Q4?b|SoCbqJL^rn69V}feO&p2V(j)wD+;<)5P}@jq
zxb^{K9&<moR3msM7#%I|XB4?_bE?>Ec}9d){MlGUqgMet9U=~T-f#lxCB4zJpB>!q
z!!A)<)z70lcMCxbb+sjU)9Oow5}zM%8%>TlS;X(z4nOEt<mg*6ym)>qRXLJ$P?F3o
zNpGN*;vKDAaUp8@R>e3~ylaPNo7&wbI4Ioa)l%J~_(Lt4$k)uw!M3i#Vn8E?=~(4l
zbKvgmw>>?hMp?(X6MHwLM?T+ei}@M|(J!m=jHGCxIi9GJ|8C7M{_p89Wf9K5*3~Fb
z|6J1K31q;*aT9cN#Qg+v(cUi|nbXTBK$J>^$Dtk4{0QdC40%(lUk;1)daX=SY5*O?
zrF+dWI*!WqW&J%WBe~FC2$O?X3)j;X{$ul1SE&oM@yPr@CSakJn6?8euw-Ou$#fxy
zgyundiGdB0XmSh!!^G3Y`!%y4^f%u=I|~%tnmI%8o)s5=*6?<ZbD(4PmywtXW&UdU
zSOs@1dS=8Y_tDTZpA<3l_NuP<H2JbsCeg&sT+o>)q$5M4ModA$nXORp!7S9-O)t4V
zm*|V&dCCF1sbyJ_PwP@Rf57euh!I92lEw5=9O<7-z}L6%L;Hrj7VwDID$t;<Ra#hR
z?_O9?V39Ee4z*6pk-Ij&R~VSktl07XM(A>^G0TOkiKZWsgB?+41X><UL0Mn|2^D@(
zJOrVy6K9dp&zRMwDCZ$}N=seJbJI`LE)nS9Pi&JWhlNmN*_bSP&3QG-=iH1@JeU<}
zd^&l#q>=7Itf3tgRh0R>u8nJ5kf|9-N}%jluALbFxo9ZX;R@fSDh1>y(>#RdThK9G
zm1xW@hjcQ#i)O$d>GonH@2II!oFl;$Hvbb;s*e8s=bUB&q13OH7&ES9veQ78`I}1$
zn!^y=Q`6@fS{~T!!#bJj2Kv9+kH(%1W)-*Ey#DeG6zG_Rw#m9PWuBaxT22#qJYsd_
zfW2w+QyQ+mvdEP?G(k4M%YX~WO@@RHfWA!s$v^k~G3XKL6a%sgmMdf)3Kh3Ra}i?`
z0xoH=Sq<e+tM1<G2nh#S4(%q;0Q+npZOVN7xj*Z*&<6-N7yasr^YiL3Bfz$FFX4|e
zu)qgc@nbuatxFd=i#wMcPVw<;%%X8FAiKnIZLfk9TcqNP<MXeSnxD<}D!;e)X;_|#
z^5dKo+-lP7<>)dqgq3DHY76LH85IU7f(AJhdMFC#MU{a9RA9z7xM>lC_rHajyZ56B
z${V|_nR}BBh}Lb-&UJY@FBb_HmNmgIqcGh01n7|SpXy-5P|5rUL+XPj<_KDdro^ho
zGPvl}@O-DaJb^5@63``L76OeA<F=wa1#XBqRS<_Jn0l3bt9zDc>1Kxs*I#=~pIu`m
zEhrAQz-Eq)R{4B?O!~C_lf-;`!B?U&yRHCP{QA%vAp1&A>RuD$-dL&=Z3>ed%I|h5
zBeG_QlqTBGak-~9)Hp4=7{cKm{-H;7CNTxG@g`gpl(MYqfeK}X>c4_)<NOUo5b#gd
zc*}X5Bj1FSh&a`!0$OpR_y?<hKtLlu7`e!#mDH9OxT-Pr3T-FC^&6tgq3LeR%(&UI
zjxJ6Djm=|5xZUOI3gU}SH8+xrWdzu7Km|la>0{+(ZpG^j)n7^?EXXdH4EmiN5>yU&
zT5t<mkD?i;EP>*Mo|yySl3}*aD5A3rC3|0lmqGq_-e7*-RMl#;%*1uRyvj2h*xh1K
zroLK;C~xoD3Kes?&x%Qk;j0_pAQzmkPk!yAm}-EHwlvD3Xnk&=6)rCB0ncAgbm0Zg
z-}s&)d)Y?>C9_D7X!tF=VG9dP0t0BKVj6JnLIk2s7^U6G;rqJ#Qy-k?i>q}etM;PP
z=s;~gSvu3;#0WD?LGLBin9ry^u*mWua4IM_tsq#8BRff;KCjL405_=VG`IrSY1(MR
zjsAHIcMjP%W3h^|Na(p|qDIW$>fsaIh62j!-*ig<<69Pcnw<p_O$$ayNOpmQbNqks
zk0JX@j_{bjB`BG3YWmYLy#&de5v91UC$x(a3W<}x=*%)sZ2Xqv@Ar*vDbGm%7+gcP
z5T=!=qm|mT^xidgC4Ak=FZVW2NLEf)XViBITm<ig{B0Q5)CkFv{wXL-)I@^A8`sP)
zOV7K?Uu#auj=!OfNWKynfKV2dn~DBGMveOaVw<;T{NGX_TkoHqo@}4ynBM>!svz%%
z$={&`<yUYWP)#VW?JGziB3x7$U7CQ;-+>WjzcQ&I{$F_7xsCVt0a*dyWQ-%G3(tR9
zm#m^l@Nt=cx(WKf9FYbWN5D5l&z5S@g0UsIE%p6>d+zz4F~22iB4Mqzu`Q<mN02?Y
zjq?nvOP|X*&pltw|E?o#6ma1)UA&lawVcyn_**^vD_1EB5%Pj;T1n?mO4{?|;BQW?
z9kPa`+@w%w4{T)UIrfSjAFZ@5c&uc=@YIMKH;HmuObmQH1t(&@t>2BP%P#&IX^}J@
z!xXr6$+&Q;OYA8~3Ch=sY+Z5rhxZQ77j2E;VOC?N7I%YIRr6!=_1)d2l9r&Hw2P<e
zLOqw+z0AOvDb`Gn0IE9#JxML8)Ved`NRxdI;qClFIW+L+0K~B<1IOt*7%>UbFaCOp
zDhA`l*9)#JCQz3W_?;YL8!S$X4?q08ui~6L)F3vnLM+rGlc3|o8f;dknXIZhcktqN
z-MwBu9D;MrUo?L&Mg1K(_@z1d?Ld*A1OuwF1z?CTTcu)VJGUMGOi9!IU9ANJXj<f*
zp<MyokL1ApmTjJ2`B?b;g71dnp<?nd^o(=iDn)1JP5<aq%rb^SPkUxqvzCOnZ;33p
zvF9rWg>YGEeYWqh<Bu=sNZMX<okCMNyx(@{_f(E3RVZC#9>3uZK6?M2*#{isgn+dq
z)ZhOdSTk2PCUd0n>s=t(*$Jw_@eB}L-D|HiqOCTa5H4+aNM^Tzsb}FP^{q<y2yJVk
zBiNA3Q6Y1*Y2R;L?iOO{TfnhTCuV)~;gj9FPB1ogIr?&-ULgPxHR0!-3XF1x;!^)}
z#A?e$>i11g;7?j^EtqITV-h9s!!u%HzN<pp-_pLO$g-4~>cd#@U_JQk1pO>-a`S?N
zV<fkh;NLu@7WW%mXpXsCX7K9cBp)d(gjCIK{EU426Q?%VNnb<cN3u}}4a@vzCB$9|
zgPJ*#XV!d$#l&FqvszbG3IQqA2zPm<nD_0|B1c>8?Wm4%Rpt)k!$~;Rte9i?z}UwA
z9Xw1(1FZZZbH!<%(fvIlhej_78`WAH<duFp(O;Tx?3Bi2oXWQoTe&y9D+V>}5io+L
z)825--+o&4en9FRmd3TDCoC)00*5l8C3-kfa7T&hg~hm$XqD6^bErn?sRb?)%My0N
zhnq6TZ8D|b!5rr-x2H=Y{N^u*yb*hYG|MdrZ>9bA#fPj_D-pZZ7{u~(AT9CF)P**f
zqLt-v{RZiOQnHTxXJ5xvyeeSaKWHiKQX<`|QVJELFXEL!oDPG4{)5WqmkPSq912qu
zBJ4tJ^fNoLp1DOnDLJktnlwxn{8(WH%kJuP(?;qJ)7UATVD6dyNst&7s%Le<<$^<S
z>q45tnWkuhh}{lbSkeX0@G|A5jSXFo;ED@Y#V+faW+zv(f~`>(hvKBf-2KVB#4VP8
zoa@AOhJqi-UM&GvWMmsvAMwc@t}v91JSbQ}{PkrZvff5l<LY$cyOx9~UL;C@d<7z-
zm`uk>1(<5<!sW4Tu7pXp8O)sc^G2>;`Y=4)fT+FA>ym+mGSGZ6bXNC?zX&z8^#jT^
zoru?iG+&J+?>Dj4K*@qcRx=2wWa#^{>z-~K3SIHMWtZpd2$!Af6}59U7%#Gj!<^K?
zrxoaWMt;1a*J~yQ2DHbqj=a##nS+Uqa7O)E9nh!OFu~3~ip{aezAi^$f!n5yhPc!Z
z3=&JwWd_}oEr}C4KUV4>pedEtY+M1tf41L)F^x6>l21SHvy!t4_}@@Oahe~l%8qJz
z5*3(E!HSKGa0r2ODpu+b{p_NS^8|AdHQUg?xn@x-;Ya-JK=qG4zQ<Hl$USTBz6wue
z$6QpLz)Kd}a?m@`Yp4&o<a!%zzRV`afbz>O6SSu?YL^2tk<GECV=mV|!HUb!o*-f_
zoVI=SFu*qEV7T#-wrWsX@Wh@O=ZWNeZc@FC7qfnXWzQ)6tLW8415TSEHjS_wnL2mh
zi=R4jfvXLN>_bhr$@>NFkzY*;b|wISR>OY^>sc25627(CoII}-njj9+i?GSl;lXtN
ziDj0-z&IQHW0N!CoJxu5cUOF1va*=I470NhmFS%fOqaihVHp$IMaMwU(E;MB>_iYD
z{MPP{2JriBBk}q3b%%^FS{zQuM#?klSQuGT`T7^G4YFhW(0J0H&oH`2hM%u4{ugV1
z85Y(1#*d;P2q+!WA)p}LUD8ql(jnd5-Hnupgfv5Ur<8Pu#J~(8-5{L<d!c@R|Gi)A
zbFOn;XT6wr#H?qn=eh4s-Qkt~MNUhAkZ>VJY=d-#I$)u)UFzwO!5E8p*PI95R$5|i
zj}s*o^-cClcQJr?Tn_bj0rr|)U~^^z;j}JWUpwtUlGD<nnw_^wrZ~n0bA`=JO><gX
zbq|3wl$8d|-z(umb)#jY3~?IJL0^(8zhxp|&vWtpJ!gO-;c|}Xf(;KAB^54VB2i1n
zh1Fi?W)Kqcn!v4kzo4R4yp96LAIvFX#m+?-WUsS6PwZgWD(K11;{PnBFE6ihQTg*m
zPu11pnK4@h9Tm9{rip<&wo>{f+e!DKm<dnwBnS|zs#Q=j4LU6;(?KQsV|QmKerp=Q
z{P5KG`wz>NBgnxd@j8hcCzaLy#&3|qYvaVJsQS|p6<!mi2s3q;-<!2%ptKd36CXx2
zNjEYn9sb(Dy}#1i_Y~A+Zm!^TPTlB8hL|*s`J$q&e57M9po5aNf>%koD;u$6N%?}3
z_5FzQ^YcA!b_&_d$4Fbxe#-5(qRdPDqPaLGH?OkpM!s_B)=U3t?PB*-YO@?;+)*n7
zfHP@>9ERI2SC%MgLNF%DBO|tli~(%~x|lchl0Css@SXx+eu<IK-4e0EI+jJR1&zc#
z4JoqoCAI&N+q(2U3rLc8w)i{0gQ)5*;Cm3ecFI<)iQ@_vL!uTg!-AfkR(o3uQys;K
zRxOykKvT&(*`ipg7dj#s#L^eJ>qdTABS;at=SFD^$i&>9_x{p@DyNwC9ac<klYufq
zBerF6V09lyBP;CV>9mp_^!!qd`XmZ}>=;NGF>iXkQFUH#yIksSa$LhAAV3xoIc9Mq
zW@DLE$l!m$pkDUbx=oU#u8VTN1;4cF?k?k@EheHUa<17Kc`V)Wz`blvao@lEcmQ}X
z*2#fwDjO>|b}6}rB&P$0OCG!bTz{i-<J!I>fak>9_yW=!0ZvOK*9wm8xF$pymhMMx
zSltkie4-I}2R{7K!vtgVzE_oSKkuCfq2Y061qgK4S;4LSLTXvPOu%ZyKw&}Yf${lw
zXB^a@_rY>>!9^XJz2g3Iy&)5BMZC3S&~}o5tDIGNvoeKNWFnMMx}7W!zdVtX2lBw3
zqubS0`y>N%gc5iF_rwH&Y>DJazAhhStka9CT8|=c7Ijo^2s41<IV_o-dN1DX9XTmq
za}Eg-F~sMou`%Fi?Ds|sLt3-%g_EHYaCL9qlhTc+8FjUORhvBrty=x0w>6jVls%_V
z>uHyHmuy|Wr4(TulL$7Q?}$C;w(7WtfS;SlNBs~yka)hK%McKmWX-7?m#{T`sLW~R
z&!NE=*C4D}hC4Ga_93-<h|7^_SOL;pf6XajEBgh!y3b`f&O<;q>z&s=#wZa5>xC`i
zP-iKs*5$+1(sYwrdsEnqQO0`KdY3==eHY^-c#&vBr8E`kDrRDmck>3|&!}F$>@@qR
zvJNpo0lqmc7WSu;bg?VRUZc0jwoyeE(9l4_Md^Fftuwu{alQ~#2#)r7gmPmftbv@L
z7W@RhaWQ-a<N2`7#pzz)BYRdf@`)x(KVw3j!QZ%t=@LWjKIv6T^|km$s@-06g8sl3
z`fj0GdF1mJ7DnXa@%igpOosve?=(NIe9FDf#D7(bZMa%hDhh5Llc0m?#x8w%&KGta
zO*1AB3dMOpROrVwB?+;^*#+B$-I_S-e+9eBC9m<CwAxF!EKYUT1|lHm_<C=3kmxQd
zZn**&^5hHwX(Qp@k_Xzy4(*^q@{FKmk@M#@Iu95RR};V?vWP^@%}8<mbTT4#!u##1
z<kfV(NBe_e>+w6ZFzJ|{9?9O{<+PY+u}!EePluWT_uS9HqxOKwVog3iEIy9@H(O+%
zyc24VRcK+J3fp8aqJxq7LH<n*%$$PcrshLf57vC_^p7rmw-ImL6l#XNN3tb1+BZD^
zHKlh-8TS$^@}|t}W)W4@w+K$HkBOm03T&E9iqL{gFlnw`Eh2wHK;ns~u)<EoK?4h_
zrlF9?hY#!5r`4?7B+4Y~+;YE78ubv3nK?sUeahh@^vhZ|Uok1EWaTQ>c#*|h&AqN{
zYu}O|Mly@E)t=+BQsER<%aZ=4dxxB}@YVE$bk$4U5Y&HTkNTJKI=bHM0%10!q!2de
z?abE}@)Je+y6rbzl%VgLb^V4ye!a`A-OMtx8RHA#23Fl$Qf1WJ7|VkZHEr~*L6+u%
zciIWT8|+LvXnL4UKYuB-_qfrey5eD%_JH@iwGm!_o>NpPoI11<&edB4F?}vqm{xvh
zxf0}+omjiYX<zTz4*#YH+r0%W;7A&Q)&J?ULP)$f9IRg2wQn%Je2D0&qkb$ktE^oV
z90rk?G!>O-h#8e&X=%;q;^*?>M=6@*6Dpct*Dti@=<ZKCgiuTMJqckki5MjYuks>0
z_H`I0RDqIVtJd<$<@;PxxT410GvyP_`br|{2jZmzzXQ1$xoYlU{JH(*1&S3J|88Wy
z)mHE7>)Z~?>O$AgUo#VC>GsMWaE?f>X<a+asrWuW$5viL@7vd!U0z;U+kDB+gqoB>
zOE;?hW0sB_lh#&x%wNJJA+Av+V1DiFB^{i&6h_#!fY6xonDu<Yew*nF91YFVx+klv
z_1D6KVW*g)U-P$RT$rlJHjSN>=|^?L&hiFl>Dz?a-i-*Mbra5EOuLu6mR|D3KwDg-
zP1?XJIwrE8fFr(}25y<ujgD~GpGl^<fiQf=9)Cy(AHJlUCXY(f<}Fv+*qp8^R$!`c
z5pYTkiDJu(JId+wE4))YWRS2_5)sdyAx97kR=R0p2*ylT7P(xcs(a2&Sr?bWvsNnJ
zuxAJ`R;1zAb-MU7#z_Y>E*MY7V4C`;r5tl=9!~(H$|=$XQG{KCz3pO<SosU<O&?NG
z%mq-#1qKb`O-8rY266qZ(OjdrKHB!A6f+jK7EyOYuC%QHamTFqKfZJFT<l_SN50Ck
zDjm1MSg&k}u7f*8p<-USNA*+pGFq67`o`RsjEmAOR_-;t88geySGH;OAKn`hzAemx
z>`zB`pT{!q?$-0K>^i%B>ZejZE;s~t!oQHvq%|k2CQ5myy3?%0MR4yyET3fcgJE1p
zngX5dC#EgNK@YRsgz3zXzG6b&#l6M(6cGW^Ti)`8N^T2t_ohBSU++3=Z;XxiHFa?Q
z8scT#zfafQXHLZD=%skn3K>c18ug6JZ^b0mL&zKc$6Sw*{Kw)>a`ih(62_8A9gZ$$
zXs{-dhVj*W5B_1z*}Hkbx|l~%&Q+<J_HH*}YNG!~eG#P&pp@8oB&`*?@M4K}y|A0K
z(#otx1<#FpOu(2K;)lA{wst~=ML4*(O><>49|5lV#JY-`(zOv%!CZl8VMK8|#B*e5
zD`xc|tpBD~Zh7qMiWu}_)~b%*@`XYDe5FWmt%xVpt6I!Gi8)$x60tLM+O(YA1ii&S
zg!G)t*NAjnL&!u<ca{HxpAYOD{{P0jl9qd#+@$qo(^8<)mW!>j8UqLF>C)6*g={>V
ze+55I{p$!h9kcQvNFyBX6wOO*+g+kqi{x9J1Tg!c_KI5Sx114z?sV%S7l!#TQaQ=A
zcrH$~CLzc~Tw3Wu^DKn;BK;E*H+7qh3GUCxo44pe+X9t=hS}TR3TIPhuaJbW65{8~
zC$dGI22lrT^7M&rh*9q(&Fg;NN~;WRe&d-{V=2K^5FVdDd-zK{S8`45qp9S6>VYtb
z1luZUTL@J`dQ`?xLF{9Y{h8>|u)r5qY_7Ez=;qSjSwd%@cTRab7R9PyV?XnnQ&&}8
ze?gh{H{foY7!RvalVqWDVtq3Giz$ay5hOX4PR=gwM{C*?8nrh47f|5!$(4-R$dbW<
zIbdRA9J%kC%loPAYNn_=Tu5g&pI5^oWs7tCt*qu}n#-67T0%ZZA-bSAiwB91dc(C;
zfdjoiVlWi0yu$hg?5C)0EM4&1dX^To-TL<gu+-+$bgHJGm&$;IYpJr}?H|55=Cu^|
z;&*ozpd6(FTkJ*WMt!n1$|?|EwJ?sP$>TmY3U4PQn?cxWuj0;P#N<K~%f2Wt;Hq@N
zdl!n)tcZSewwbJ-Xqo76u_wZK))*}XAv6j=S_3%e>4Lb1PT?FYkAk)&>TO0OXNRGX
z74FK9-_GDk{tx3E>|2K&k1ElGPvV`d5n>bcH_U|=#PI4(QRa#ufL{?SglG*LKz=n5
z<q;M;fAy@<QDEG;p$e)43dU^v<#wykv?U4EzjcU78mA>ri|bxNh5e8py#T}3yK-&Z
zz*PQEZvZOR;%^@aSWO?{FOarGz{S~=;v<dialMgzTqpv2=Dao53ow%v+>{v{=3`vg
zHSy(Lw%$s_(=n7J*psGRpSVG#0RTuT;c{IKih1WQq*0dv$bWRueMf#&hD)dB;b3#U
zRwxF=03k$b|CW5na0*Z(AN3XF{sjntPra}|x(ooX;G&?QcofPl6%@l_&8L(>rJYj>
z(wF=50QtOawGFP!N~fj*6>R?x0J_^12lARE1~#EJFSP3{D8ahE04BV}teUI9&>!ls
z`gHb^qSDILnd3ef=i}C#^uO@M_)A9y3jrOynBrkY$|7;pjd!M@ydQ)cPR@S}EZti`
zTZl05^?L}y$DuX^arfnExf%9cW($jYTB0s6KzIH3KL^xi6&AOPtGJps(+@=}-z<=<
z`82;-9;yV>Uu8GfD5<TfSbP6iah_|xeD#H>ZqhaO-`51XLQ8<4o|)0couEH1QXD$T
zx1w;>6U_Xs1pEZot;C~e?#~4%n*lBCWV+Diep^7Jh)}p|^9Jwl<<l$KZ?Rb?qH47m
znm1a`o{xyn-|J{1J6i#L%0yB}AttWdRQbEQx?YUEq8jy9sjQ8#QY7_|PmH2-Ivse-
zIsXM?<l9Fr^8eOhoe#a#0(bOnX-_W7j1?&hgMUO-c}t5nS)?jsvW8}I27}~gG>U}8
z-214D;n5f@ZZ1qf0J#27&kkS<TYy%122RbZNd5H_&f{$hE!8G9>zp(c$bQluHwp*G
z>F4A^MSvJAllt4o1CL$7FrfC8Fqs{yzaj74&ZW{Vg>7fD%8%=W9q%y2dx}+v!Q*Su
zFMVO!lRTYRcg=?c$?iA4yRN-x_~|-0ThdJQZKAPAL4L!l@RsB3zu!s~jC3)%DLYVb
zK+Dc09e0S@9nnKJ*D8mo5AxgrqHM}MhDl>b9ko;Nx&JcGVjTMqXr;K)Z=|6(IrH25
zE1E2&n@N&7V8uRmEty90?pkT<QT0ofn)xgRrD8e(|6-(YMKz<_oT$08b5BxUHyJz1
zzY72w&JXmhyCzJH;`c67N2r&jjYFU0GWpD13#7{!(fC1ibR?8sg<&!VX{pwq0|6ld
zQ4Xrmpdi~)Hote}Dd^4fog?OJSTDgLG1#Y1J<Qu{ghiJ{9??l9mpr^}oFLJ#Qyea}
zEPtIq0-pPbe4XLnN3e~7o0}&~kZat{vRmwjF_FqJhkuK@?uq^!!mL}?C%G}~^)W74
zqDY;on+rJ(-LcLBS*&Hy!p59lYHyU68i;?{!oVZLC6U;GTKUkFOuRQS+MpDFY3_(8
zDIg9c#zb+uz2tf?Vvi^_z8pv<DINGoc0HF@2V2iLODK$bXJvJJfA{a=+b~x;i+tm^
z)bk37n$JB4N9X=X@V<S6vHPFeA2i%qn3vbHVZUIyReC%^Z=Gf8YPnc|Zf7z1#7ak*
zB1=1t<@FmVDbA=^7INmt0A6D(H!9pgN6C~F9x}sQ0!kw&%GM~)#>F`$!?9pycMzL4
zFYS$<4pEJsmhdM@YzFKvmY1Yf{&rc0As!gbeUy&(jbc@PIrUVr17xD27%EFrTCgnk
zeRln-`}7~k-Chl14!0!Jwnkb9rpoi=3+;TF?YY6c`>86aeCWB{l511F$9LC%pDYkf
zZ}}(ghuP7p?VMPTwfIi2LY<cSiPT7X{VUtlm?6_fpwOTfOB#Zc=fqUVDm%~EjA(&z
zw5lMYQT*C2ZJJ%y*+mV5$C{1wEGM>e@<kx4BBJABTh6MGIP@P*%ql0=ZBfk^QdeJ@
z{gp&$U=^BGZ&kp&2kj7YedZZHKAgL#3b<Ap&m~2MInjw;J3(JyVKowZKSI5amoo0U
z+tegUYE((eP4Vb#Nl7Bh<&0I8n@osJ*hb4d_j0rn!~6;B;!i|Qv?&gAki{oMiteHu
zuhYqy@G$D1GAl}R(}Ik9hPHnE%>#LUj+kjJ<Q$j^4VfAgld7uKJ9~e`8$xRK5*ia2
zTqd|8`c(3@!uPh_bR!;(i2eR$MfF0?l|@d@Q|(W;3DRPU(7mg-Q2A^lq~6=;GcM3x
z{(DDS-Z#&<Op`qfGzSDxC;nEx2R9^Q^55`;U$4J*ZI-%T-jlK2$dmw6DDsfO)*x%V
zY6W+#*Kb7hxww-0&83h*=37Y~7LwJYUNFaAah@TLCMpV4dmW^yus>?s9SOKgGk2dB
z50nOlsKDzS02P(C!+qg!8pvn$B9&Jf=jRN1Fq@7@@*M32E9k>WN^%WZ<oNryH|mbU
z)*IS?<+dz-my4Xy?23Jv{oVEGyVcI|rOfi3Lo8pg?M~C5JNhPM+fF4n_Gpg(iQEGC
z8+deLv>z|j)P|BhCn@ksup#G25*Id+X2Ot~hRg`TeDOWAB6Yt_dWO<<<N6y-YX9jo
z)7t~P`Q*^E0SmNh%=wVVPGq#N;R_rZ5g*}>&dCN+_L<0h=Kv+jTL3D14bKpr=zwal
z=={RzGsrHDO<g2wA#Xo1gByO*%fmcAF0}9Y_ZOW#mPBt3I1!br$n|f?u!t=C44czC
zfL<t^?H_hZHQr()sv{;L$0&26QHUIVWi&A=ta&G3t0gb7&S#`LIaETwXPjsO`uG}I
zQmJ8hLmRs2>g+BT`mNj`g{r<e0Gf+^J!&}r^*bJv8(z7QLHa<hTX5vZ(OH#zh+)`o
zIn`Vt(!wkuKuQWVRF}q4kNC_&CsiuN@n%%Fpe)O#yh;V3qx+3|Ma}IfH2##r@x=+T
zR9B796^V4tU!e`q_USfcGfgaCOoP4=15TWBJ1oOg^<tV58A%Zv?iaRB^G&cmj4`SE
z^5EBRYc<fEE1oS%{xU72!CirjhP`BTXO_}JQjYl1sw<viM(Z<&s70jlDVk?AMQBXs
zskZhPLj$BqMm5x<p5x|CqihorC%ahDyMxJq_UJ>Dr0{=QbI&1DR0seiMjkA_53_`1
zQ)~BX*Fz`(xiCp1=FYs-;wC#F+Gw`P<7SxYW|;I*EhR6Vk>H>k<&OwTXY_5J#~n{j
z3iaV4bpC0ghW+h}sr&o+qcp#}>TcFZ>+NYWn&vVt)Bhp_8375VUN$(UoUP7WM=qs6
zBvp=iwexbzy1e6fi;1;WL%_4HwCnggo`K#zrwL&<w`(>$huL@yhVIMMI3pF}nivJn
znO_WpF_SWqr;};}e&e331;UE5pAOD7BR0#-82zWvR0ygW#|oKB6}0}bpn}n&B=N~9
zyi`~n+uKnkR+A=mQU`GdqvP*an=fNElO$Dssx$epp2xnonEDB$cmTAXbG2O|p4DC|
z3Z@^VPwPk`Rc(b^p6~FG+^PW>2fDLCrU|b)n(oU+eh@c>LMb)j9$uW}1^6^oxHU*!
zE7`gz43)x6tYWDr@h`hL(Cs5DD?8^&Joy6uuf1zD9rx;Tt8irvVehJaC|a{UKaHZG
z-%V;_oOnV6s5xB?4j}dK-o5+$*MoQXhi%p!%U0lZuO{|<&<JCR`&vq=qjZZOab>EL
z5~MvS1gI9V|0-Ok2?6P4MbI!A5U8!({g-_P^%?xn!6xzl_u%dS%CZx<zhRU|HIiA}
z(vpdoR#sNO*4Bba1XR}w;9g#K2=CUk`~4c7xw=QD@X;s{jMrT*3B@dkDf?;;kkU_|
zJ_Q8LfY9^*kf6Z%zMhGsR+rJC8eFn#r3!xQizoBZRUyVyYov5<#ubuxq_3x3o)PjN
zk2?^>Sp+%=^}mh4;mVfcQ}t}!+2U#{rmliz*GyLV{bngW&M2}FF#Uc%&xQuwzUlkK
z4OC~5Ky|;g^S9g<WkLiB(<4f4#hV73P<$rs0WJ;wU?4EdBsBF#GheML^1)(f_{Qxx
ztGdLhd8ta|&!IG#*agId4+umqAFR6jsQk>%W@-{gx0@~uAV$0aXMeQTOgcX}&<4LO
z%5c?Me*dR#ami-|cB>OTg#&k=;GhP5L^z(O)4vGF>ige|Ao$HfT1crV{AY<#tdNIm
z+85RG_r73bSED?2`u5+KEh@HBqOcvWXv@2(r}-d0Nj^J`y-hxirlqe|JUoQt>g`f#
z#+p_3V+D7H`?iDi0?D(W1<yda$NcT8mBBmmg3F}R$X2*V>xfk<&@{xm-xTkc0j&p>
z{q$@{M*8;~V%14?t&hR7lLTo#c)5{Q)KONzH?OX!fwYv_yAS@~b(}WVkZIY**H7PQ
z;sCxpTkSf1J5_`h6O+SniJAp`wnzOysevG~XNDu{pBwggkau%3TBwNETBZG#S1lz<
z?!B-w)sw%t{SGpKT18XfApJ>}dn}LbCh`^g%*9WD!dm_thcf5u`Kob@y!NMpv<-Aq
zHRQ#FZ4#(^67P73hU?b8TK-6Za~1mEA2H^%nVu}MQdJ-NT~;Got_yUA?Pc}^D}bbR
z|FRPNPtR!OJo%Vx7dZNTpMD%CSt~682_S<<g@aj7=XtlWwKcos(PSUw5B8X{bx<4z
zY*beMv`1qb9kT>5z2RiJv30;&JM~$air}O2WA(zM6npkzchC7Wlhd)exj99^y@Frp
zbcAEqSX~`|Xn1&o+@=1}PeS2WBo7^dw4Qj>KQ@(nml^TEOAii5dTQ$)vKS!HmAIpR
z;Q02^tf^Ur19%SF!fWi_UT)T3R4P8o5#xEE7&>VonhuPWbCB*4v%eeT!!i+zNSFNQ
z7bD}Od)$3n%!(+1?0~64ui&aMRDU0q3qf+`<koN$tU`0Wz7BK%@dB~nQ@1DRx_v`o
zLO&{J*Q%_=Bbq{6S!{p0d-16E59JNt5*q>Z{J%Dm^`$H==`#IpEJwa^AhWccec@*j
z<Hl}^^sTV{|AoJ@2HL~QG8T>4uc)8wMC`*z5K@h|{8<LMQUg0|0;%)WfPDh$H=o%$
ztT@K^;nN6FZhVUhGjX(j3Hqm(ss6ElB+_1Zh3DUCQop=EV!E-=iTphBG-B#DO(Z^Y
zogiQfU%PYxQF@EA1qYC{V=GU+LK1I+=n_YZhS*fkM?ehF9Zxtout*8)Pu(*Z<PZgh
z4cK*6+NQydgqZ&E(WTgHk=eG*bf{6QsoEM;t9oXX5GVZ}C!8uH7PB*KQJv?ka!cme
zb#0bXCKZE+!jP<7M?kJ-x4`QHXw53BUyC&Wa77Wk?jKr&$^sghz>Dk>`D0u7V8e^)
zkrUzGOUDt_$q@<byO7M*b)5%zzH`sc0EX*yW{16Y;2<#E8Y8=!sr1V6y}j{gN#}D$
z0!$uo2*|U_ny(+F_QZH~LUm`+0M?;|0C>b7rt<l`+}hy3c{3Lcg9eM{$ibDbG0021
zei+$){owns5qBpq6ekY!7pvu1WtG%;DqC9!9OtYGq#RE*lYq`+*8nA<n&0so+C<$i
zJLj_-2&|gVlNmG&U>g7d@d>5qYX|D6*8UsKgh22oi*@<bDBWs$Ck$b(eVxZf;zNTq
zs*EM~j1@O@-LaQD@GJgJp0)Q&_THxUitN#gCJAg}*LYFrbA#19H3-t$d68(k5Bl@-
z6yc$0wC%?twNSV8To>a)Ez*G=>2$qs;A?#Z<g0-e5{*GVTAsueH=BZvwXZGYW}|?Q
zHGf31Wu=`L0`8)D=kmLKZqb{ey3+O?%~EpnJLOD-`rrm8wyWtnwA_&d^ev7|ac|gW
zc=TnDE2z1s$RsLCB~uq?FJxfg-MR9>$cV(-w*jLq1zj20=-4@L#_2-zRT+_7CK{%n
zM@v*CI-?NOy{_BMdFpJ`Q64@vSpT-u_R_E^xQjgvcITxj#y7cs${^P<1roD;BR1p7
z!R=q9J7t^Uc!GM}DhjJB;lkecH9VNm7Bt^F66vJ$x7M`qX;&Azq5Q3xbHZN_rp-LP
ziV54p+q!K}^Rhc{su|n9n4%=516NAx4wG-Fysi`F>GrK@W*ORR$scwkeMD!Fs048h
z(@@5DpF;tj%6&AB--_sW_7Fc@5JWo7P)l%j;C>$1;i3o;4V7F>$~!ob&<JBi`$VyE
z!Vy>oCdL0Mm*!o7)YNqjzM5@|ybDdUXY&&83gdW7!kqtzfw#4%EKxwL1i9(l1dFkr
z_D`JK0fW>~-HBOu`z^k~bb*CWiM{xjd@T@h4N+r^ss<F2oUg7PdEm`G0{`KI?sl*|
z>U?y+R&BUiO4IAU8ew+ZZyP@O4}8%@=qD*Ja6bzV&fz)zDfMwz;!l0+Khv3;BsCmF
zac(TZNROiu!G*eCPzEjr-paM!N4`tAHKnvtiB?D$S@_x=fe*#+N8r9aEGMhsGx5>?
z`8g$NJ$ul+8?h(f;DRSpAS-@5n2Cl)irMlp75=@HQ5Kni+d#hcw`bk<*1^=CW2yeB
z)qGo6kOeo2!xsu%0Qvo^n$d<EA<);z@yJ$G+oQn7nYe~*ugs31fB9!`%YA89-P-i&
z5|WSU6yiB)EZ!4@=>r&+gHhZ~IxBi_o3hZv(7bbMBSdf+4sSI=;NxxvFNQ>fvE%?v
z*MLyKJtUWZ&16h{BRZ&wr5~H{b)zI)I9d)hcKk~*4j>;7OCiKEwuz*Miwm99weI<h
z+RSb)%Fmuw?%g6%6j3`cl1vrQCGX*I&kVlH7IoD8Y;J*3a)-=nmqY40ZPvzV&|+$$
zY&<m)z=m43H}jkq*!Mx!3IX_dl!G!4Hh^<2sXmCwCmp4#<}-^}A&&;-F=cmyA?{~u
zX7x?kYFk{JIOl1+dc~T0dRauj3OtsBVKJ`{sVhw$Jv#KIzze7snxAP8`2Om81DZ^%
zU3IevUkz!EA`04|G^QWw)S&aF1oI{Nc4Hs0;tlsh>4x?w3N=EW8Vn5lVD&dY=w@Pn
zJ@~;8-yz}I)n--Mu4Ce{?=xu^9GkHtRT-pBdN980_uRc%x~xboXM=`k)UJ@Ne99Rc
zei0F9g}y|#8AVB?Z>yOSA`qzj^8(9_Z#(&5y<O}p(m4mB_5s^VPL%xR@9bBdMCYfA
zOkI#3j{jHcNxl6c{kFQ@Z*9y#12CP1XpfW3nZInAnMsIi%T}`PP35DIo<L~au51f_
z7U;L-px!KX&`x-9FhPLeRR^Hf66$?b2iudmPUV~0KtBr{)IjH!Xazhi!n4ywGuBC_
z*F}{a754M3hktdRy12|pbU^s4-4uIzxNt@b3H?C8nM_#hg=B&P7b|@jA2{R?Bh8mM
z@;MvK!`gYI<*T2$R34os^UQ0wMf;>$dgW(@BFXjh#m4V1gxm<5dEAp%)O{a0F2C4z
zD_m`+5SMI4c44w_G0H~EEr-5jK?=be>C~mH%Kk!buw%X%I&x=VYxN*P?kkGpi4i8|
z&!d2lLLxsVWe=Amc4X4X9Ka@b3ptq40vxoPrEMq14jp1(Hy0M*3(}zs6HEB}iZD&v
zUt5DmB^%*YYSDHj@3nY8*tPX(Uxr2uJQK3Hy*pjJx`0x-X7GgAhykVSMh9lkZhtW2
z)V?=#Z7G7Ad#~r!>}Y#s@Mz11f7KnyAHS97+p9ILlo%Tu=h=|jb=Hyi#T?0x0AgWp
zRIHeE4;|svHRn*W*4Kwr51qEmktI)c4$)z!M+z^WZOPV_T5yz@>nAgeOX%C)@U5>`
zVR9+FT`+Q`;Bq+iXfkcZ2P3C6=_<VY_-vv__#)9B%x#VP;dXpHl>PhJfjkj&ovl3(
zmY$#vubu|G;o!YZpcP}kt$H8g>(oFgvFuPoR3f}H<9l(LUl$Dsdk6Ti3((2<(QYq~
zG?0aUhkaJCP?~V7FCG=ih{Yog+lfv6@(2%mM){)J1mjH#{w%1m5!h@iL>2*3%tZ(Y
z`4HiU9>Ss#H%Hx717D}I)AtiKM8?b8UgE0R2OECzm7Vd^>j(UlQhC)PHDAz7rU?)u
z9k9Zl3ryarj?I1mw}Xf*4|PWpVH1%`%-!tvuk;>Dkko>?%7}J0Ks=OO>Tp(S5$Nd4
z63f=0EN*JH?ZA}i9^qi584>mcE=g`m*w6%6^A`($ZsL+isx0?->!c>nZnVXT=UBl*
zW0$W{`-NBeH#74TVzpPZde@$|!9T_JJZES!o%FC09cRrd&1|^Q%9Nst)9USc1^(X*
zmLb;ce@K>=igTHu9fkR_3B#$bA1Ss&U!caUN1L2-<}lE6IWkgF5%q6pa8jI-Ty|*|
z4fak%u|y2=vzv*hnBD8Lk~)C-81k}<!ZY2eZK9js{LJk0iS~_c;OVCZ{!6ur>nP5Y
z4@Pyijjw<BBwUn8EV}}!c(Bys#K7eNzoTi()Tu!7p3Y}UFdBFU^xPIb*IigqsaA<M
zV8i#mJnW69mR=_Y&Se*6Kr1_iCrxV0I2kg%*#^Aaxw&4y76@iH6E<?fL{X;OXX-W+
zW1kdHP+kIN)TO(VQucD3F+W&%=zY>85YmS>VIX+K90EC;#Gj*8MIWyNJ0WKD8eqKt
z#=5Xs&yXN&5ZuH9dcrDQF^=F>1%$vj1)_kBjE_zLMZ#}7I=bTcQwf()#HXGu>mRI#
zsBZ?J`MZ&+$JQSp7g8NbqItWZ(^GBznkqPx1SWJbBeW6a?~S5I?o$7MW5BHbKQLe?
z?AMkg4pp+uMMIxYA7)=xl`>=~Jpw^9G*9XZv;2t5bsGDISvsOcU^|LH$HJ`V4|A=5
zwgZ%%sWt;r4bK}7L@kwg!fb%x8(@|Rl|B1~-z(COv2m#DH4f{>W%GD3nT>=3ITf8h
zF3pXMY(gOGrUv_*c@#wx+=(UzEj4y4((@j4mPIu}Pu8}~b2TxKWE+fE5-tsZqTK8a
zO}oLIx>|HP!Ix=U1Y>imwKjr8U$jxXp_BM~2{fdkEgxt1sqN7)p#9yYEt!*wB`prK
zVrjnu-Ms1IvA1E~Rd|00HL%?*me+?(BZ!AL{mcT=aJUd3|I<|-Lglr9`mDpC=uv~Q
z(YGs2h&}F!463HQd+r4HceCpI3-{P&3$0|R4_Dk6L*-qN@<OZ!@cDqxYjP3aGrXUt
z>qNuMR32SMciy-D(`H5aM<Ss-PD9fQ$WsL?JLd<#ExhoBefQjp28MyejFRWaW*>0a
zTMB*!w>}swQUo7Y(hX`_9~_1P?f|hfnLe{zi9BrIy7_3F-9SIUS~0-)h>hiw-Nbnk
z1|F45#uE0m0g-?^rXC(6a97p>@8GvZyjbNkd{*|%#m)wPbWYYby=i>@tfP%WNZ^{<
zqvs=G4r7|!x~3YBG<A+5>mAGo8;dB{jzNG$tm#n>n!7a(2s@t#_!lZ|kUra`EJ2vp
z)Z-+KlnKV(FC{I_<e`9`YR&xP{FVR<d3@u}i>RI|8=uyCycgd&sz{Fs7v$^!d{ZYl
zInxJjjUwVl3XrW{E{b~n=0KPVp}I!Q=I&PhPWTvpfgmx&#kSn3%Lp$C0p?AZN<}!P
zY{e|`v_VI@<hug7_0;3S07TmL)ztui_?&P95QreKOqICNbI73h+ZAuk%x0t<nd)u2
z#_gUrdB)_6vA@ET3@o+rXY<jLbaqvu>s2T^Nz6fP-ZI3(12W>Eg`f*~ENtix>e=>R
z^kX~dnt=gnJ+l^qS+xY-?N#riR(X*C2^Am{ZfDYA1Cpyw#8%zEUy&_;{cmVli`e71
zko3Z@RL0t9n~UjTLUG{;rt=<lb1HL1NIH+2KtMxyW3<ZSJnc7A<wq<vij=99_DS=>
z$i`zuw6%^4NDp`?)kKI!>BcP2aA71x;dto7h&N*{v%1hp5}Z(V>`!34A>QUl`QR#e
z-$U%8FxUm+)nCtx?wQJxUb)uDk~A5Hd8{2<YU*$j*77h)`5<oyUcREd1Uvt}qX13T
zZ)l}FBx1hm6>B#73%P-;$${*L*7ygko;d4g%Z|??tXRNAh|wNs9ASPjq0ht}FBcXq
zz#Sb6AF>?o%*J3SSfYz5(p9TQZ_3u9uc>$A><#-yzq4wjyU#MC`I!VQ6#Pc-kM1Z0
zJ-EyLHrQ7}qeut|mG;GE<oSmef7}Cx$N<ilc2Kz`J@g7MZ2YWuSmy(_sQ@toaC?C(
z9&88<|MQf;7jUk2(`OqR`<mmiOx$`iZgUkI)o<{)c|2Y&WRG+G$Z@e8ut_r82)c8_
zsF*#`$1rrFF*8Zw^qc=o!UNumG%mnl9Z%u&dmcP$Agl%N-;sp!yHr%Q(#qwQPbUwD
z&$*5BzZo?xnVh^9xbRSo<*3i)q|$OjN?K|$emOs|a?Nfz5xiV0`j~iTSskdI{x`x9
zV8{h5bgpDL@E#m6)YN8peJ=!=^~%2J1n7q&iKmZ9GjdKn;i(2mIvZ%a<ZH@FJpYTa
z0$*UM|3DZrme~=qx@PWpx30)dnU)=9BMhM~Nqo?tKOI_oZTfeSfX@>%axyeg)n+wy
zb?dmHJQfXblN#s$l5$)|k1ZzLic4hC=a?e{%C!ZphG%9p=q#WeDA;n(*TtyQAN|qn
z?1}>$)=Gf)Mq*?@qWF*h;m;o!KXH)Mi6O4hVu03}UeZHk<N2ropI_LH6|%%*m(U33
zSm9Fox~q+b(Bf&dRzPd0BZ^XTop-B6N6XtkYXN+a|2hUTx@$g`O#k^U3=kwkvquB-
zy2-Qu(8h>}RGLO<GT#l{U*B;>2J<1)*wP1x^_Sfv-#?C?Nz~7rcGlK23`m^zPfFre
zqb0EMeJsNcOn2;f!uTmAdS>^|gHh+X{1W$LoDL~z>3%gQ=9IVfsTg2yALc&4YTZG>
ztp)8^=wj2946pL3Q<>~I*kpeBL}ui@%D(43q5&@2AFuo{{yMJooD^fWG`dnQvoWgX
z0kzYaTg~dmHv!DcfLMI0@#qNhz!)#B6tSnb84C^MIF^l5^&zYwNA25oED&7UT>3)m
z=`}qm<b46`JuSpH=X<n&eOcRHn}F5(y&lItY?IW-$45y;#rX6J7D=(8r~XkVdG#Xp
zA^ZV0YVpT`Q!XbY3cVvsf|L6=Mjm@^HTNo(BnE_h?jRSY;zpVB`tCz;`6wZC_baF~
zodoVgqgdUBwrHBuQXt1hJB0o0lsFD|t9pg8vqs0>8RPpY1Ne(4BZlKSlI<+G!tO<-
zB08j}X0ffN!>pPSLAFIO)w?d~E0FK_R(d?__|Kxbm^Q&&JKTA)L+v@rwTcLTXMYf;
zAC?kFxTJ1{Q7-(v7r2_%?K)iiK2uy&^zKkOne1Im?ZsqL>)6Da)+#$u9-Y1f5?X)u
zqwxp-kFB-GeuMiZ+Ej9E^68fq&B-H3&mTEK`gg#@0t}Y1M(Ou@Q0If1t@D$@8Gbfg
z1^`pUPq9ru8FVy4&=vwgkAlOGjX0&awA$T`OVq4OCoRG%2pns!{aSj)AHQ15JFvas
z5YGCG?moihf3E>DK+DpIq(NQvQEr|<hpVK-x=z}3ereP;YGt`qK7)msSzWvV5a|>T
zyVf4$jzaP#-+z8a>7+i>ZGt|eI|0ZJ(s9KMYUo~~1QbgjD2-r4Pp4nQIie=RtJJ|w
znz06*4bJ|ckl-TzWFQRxm7K0C`*Vd;;jm;#XzB4cFQKPbjJ|?WO?aDs_b*@vs}Mz>
z>%;gh3T<dl`o!(}D_GWgV$;3*>GZ%7<jMCCgZ;T`lxLGv)d{qUB~zx318Bw{zo8WG
zI{gtF>`bQP+h`?r`B-3ywG2qcJ?nPidW#pR!_L0p{K;>cF<7K1q26;Rma1)b|Kyom
zN+ihkX-$w_h*RQ!@8Wta&{Hn@=>;!iSjBML0_lE;wyVnS=35_8Y&@khj+PsfZ{|vq
zFW!hXjHdCFo|5Nt`#<Jh(X&mGPV=({();GWp2LBCR%lSQi~LkU_Rg1big>zMK{=fI
zq{cPD*j9=@wbSVSbk>?fDXqUiu|d5fQW(<HTC@qZw1sH59D3#*PH&RDdV|xA=^G{q
z{iJK}B>Ue#hmU^v<s&DhuY(22RpWWN+T=xVsOax=>&mf*%Z`V7&wWTe!|K}FjOUik
ztwmIXX2_G~-ey4Qk{(Gl&&WZw$`M^OBMo)<^|aYn7Te5BTlxa+&)ks@Y})?s3lWH?
z#Sfqg0&xmcN{NJdZ!<-VIJu=O!8dxSpSpwcDH|$1BYk>}(vDqwZIPzwzq8)C;WPFN
z#zm&^DG7Bwg^%!d5LAzH9-HXyg_DpXFg(v0CSv|ix#P(KY+v=43XzygV{H*fu^E!4
zYUqBG=jI*;1`O#UHx%Ir6cIFeu-nUIz@2tbl(r7oJI2@ewtQFP`yHm0sY+0#{~k3h
z+*~(%_oEqBzfEl9&`=H{L>m!TkCmBbtQr9YSy4`Ekpb=#1caH*Tt7d*U3M-mP_Zov
z4f}uGG?f)r-1N*{nJYSZOc?*u`l;vZkHsu7<6~z^`Xhc^<APHZzw*?FDhW=J3^c}i
z?)-dfFs6uBnxlT}bWxDnzjMV&JU1;CC;paMdTMe?M9p~UXF^j>Gp4#o4wryVrYnBd
zp-9{<HFOndz_CR3FFQVf?7UAW-(EGEk*I?TA{3-6GwZFvRFssW%zqyJ=J4g3|5-=>
zpJRR>S;Qk}D{8Zt)R>sU|Jlo40BW~^VNUB!>Mg+oPHtg$WT_Z-`Qi2?Xazf$<}EG8
zfTT++?x{#dxPZXWzvB?Z0Gz(@$riI+$d*$G)%%$6O`01X(YV#Zw%XY(6vTJ~=x<MU
z6@Tv(8hK$3N-7%6(iU#~r>fZ_0jfk6$NMjsv+Ay0sdAzg^9zm<G_#fEhk1wY#Vyr|
z_GAuQ2$x1+_x_oDgyF-^GDYsyEYQz`<`|_lp8B67+VJLR8}I$ub;=`f`*)xZ*ZB)Y
zH`)Tp{6wjNL%a1cs~(Oc9S@PpYXn9F!acY{H8-ReFYLy~@>zvN#Kr&Kc`LNXVqI*y
zN=;2I2N;>8vl61cx4D)p<TY2J(cW#Kd~k7>vHh~E{20{{2t#<f@T+{yrn~MktMekz
z>2{asidhTuhXltAEgWoaCVozMi7?$a;^3Wnqma`j^=>tS1B;$o($?~%=wYt2A2ara
zP@qQrIY!(+8r_NP@g7hH)ylm{R`M+Vprag~O03vpqra9lNU_=;*zsk!Gk~@ql$<UC
z8?^Fay-*W$D%GWA_$54NxeXp|YFo=76mcVHIO0S1xfaGZK<d+OSd9Gvi~A)Y_Zreh
zcx3fPy}y|s(H-Ga`%KBvzg?O*^06f-Di)o|m*ui4RqQ5-IqV8L_EM26mmML_o8kUd
zFy{1r*9RAA8r#OT*)kwqWnVAimT6R|-|)xb$Is=ei(C7;jlw}(;?DK9Ud|eSZzTxn
zG2r#JM0_e>fSOa!3Io>?A&VCYnBbn>Lm6ZJ!#`4X1k`HR8807nDg1ES)3i=_uaPxg
z%s)1>66?8JL)^rbsI2<;sohR}OuM$8E*h0$V9{cLcp*0SL<sw#9C`%n<{lqg?!QGj
z-<x2;L0IzdnxKVR+W3GQis_d0ZOKx84g0S~ULN%tU<WMnBVNvvLQ$AA<?N;YZF|#7
z0Hxk4iLRukRV@GLaIq=}5&#I<UcteW=|EJgJpt9L*W;5u1CLRrz}?~9SwU}W^Qub8
zPEj~$eI{-|c*!qR+9p=5pe5C<1ooXsimZO+PIq^p@TSG&*UZ+@G{!&Ckkuawo#A&(
zT10fJeptlqEk)^Pzd9VX87_~*B=y~vL`kNVsb(^5a*<$UG3H`J9Z2Zg`nU!*E?Vpf
z?Ztx<EJ`qJIi|lb0sV!YMBejl!dF|{vO3@0m~e1#01cyOlw2}%&gyC?!)aU$P=)tK
z%xVK2QI2F3zSHQ;)&&@5uc*Gdcf>%<73qu>zXepRAZ_)!;<FAp2rT1^e=jg09JKdL
z9C#s*UimdfEgvgHLSNWoGBS$VtB^ELv)+zw{XUF-?-aRx<IG17agiQV&C$8t+`Vg-
zdz)5(yAK6MgU36US$y{b8j1CcKWGI|=9AQ)+tY4Uv;!yKJWI%6epsYm1F%ng1T&ih
zZ30*r$yNgsc<hgW75*FTR6ePH$zT<bv3dGN*p_T(B7V`d(|>&U>A$^^ii%~bDEr`)
z-9W|>{pUqy@6o+>gh<7`p4}vAJ6!sgYv^p7w8Np#;{O73u_x<GeuzRRpBoIvaS_fg
zA+s#Lh>(_c|B)Fqbp>vx*dTwqRPEIIea{=u?-qeSLm*06#2%C(`Dg3&j9*yL9mx>T
z$jJ2EBsynfU_jm2*l@z60`Kdb5^mblB?6?bY8Dc*?ea%B{sy?4`lo)gB}9j03)ndY
z_;X46AiD?ed&@IxH~4s-o3&ty)Rn^1<looe{ux`>e|l8H0-|q25Qa(v8N@H(V-fnt
z6FEi=VBKH^rXIhJT&^`ebRP9*1eGt3i3`lR4?0N5`J510I_}tI<>Zb5)wA(fI-kc*
ze)6;@c1>ib!oGOy*VP0K^6u&4u$@FEhYb?6?xL`ths_&HiFQAHhGF_qH~u4-M$N~t
zpR_RFTE1mtO}!#=6UrqX-?R<l=V1Eb3c<$BtE3LCF*esx(dJo%>AfP~QHZr0>;}*j
zSvyS3%JQA)zEENc|4>v`(g*gw%yC9G%?GXS^Z7Jv3G73R`yM(MbJUUlHXC)8T5+m^
z<DF5!p7V}gvahav+da+Di%H*3r2&E{rp;=)P%-R(F!WR%-Z84$+)?n!dd*%P*s5&|
zNOOCnWaFdA^M$~Ps8fOuK1Xer<iPmy@TMl-tLy8*dZn%2mSUAcqux(1oS0_Jx`5$D
z{a;=?c{vgC4>P$C;hC*1^StjbGhF5A7G=z;C4p_gvbZh;7%O?U_anp4FJ&|CgT5=g
z&6<SV0>iHiqT6kES@(5}(2FGAHjqwjI8IGo!$hoe)GdN;7WQ<Xy+;Kb-EYCz<opkh
z2t2tRxV||oIE(^87Z$)>DMg>?Le_MyK@u2$QriAKB1%{|g%=dw0xS17DURzxt+e^-
zjE?)L+QlPFlpE5QnSHHOx|oDFQ1A6rJ1~ce83<okms$Y=Q_t7F4r-PcWID?f2wqfP
zeLvylBb#IMud8WAfz;v|#BX?fcLrMbcnvJ-IK9z9SAYfT)&uOH@>(e{g%4zbqXrW6
z&`PNnb6lqS#E+<lq~l?KAUbZqRqtbLV~!izuJEL8o%wj?pK<HC<+us&ZT6szm81M6
zS=#k=o7p)}cI~euV2)GtHA(g=7oHE}LtfTzR;#pSbJRL)C+Vw6pURx88t$a)Cy1qY
zZ!WCzpC5pzWWOzg)a11?#nqMg{KizmtVFs`i=x#`-N4xkaf&9r8VAnw;5t9lo3q1W
zCj7(xc1rg(jO#V9=iK79@lp(odt42ZXhDdygvpJZ8!bs*xUSJv&+`zLh2Y*luqCA!
zO=R8G4%3#@-qN{6I5G#5I2=GLbvw|`d&W=6hVG8XJ6wvN|9s7}6caA_OH(mFJ$F3y
zf{$ZK5Gu>tpQQ*L50e%b2kk`w&V<M^8Rt<1RJqSEu@rv)0-P&FE%f(#PoC(&HF9=@
zkU+0Xp!dg<!gn_skV?`?6V(y-gE{<<2vDk<`6sOcxd|=h+><V6p1<aw0?ES3(z)9|
z1m%y)84vYCA|55XhUqsfASzuz*$Z^2h()IfQ<7Zig6jJMe+hZ3cicpp^y9|vdf0U_
znV5Uk&)1r*KO!qrBR(C(BmzV<!4a}Wcm}gZJ$wH7fO7`c&|@&Zwqhj-)y*5|e5YDx
zO6eu;&KM^Y9sY<;xrJy?CJBvbxu)<kKidIp$LDohIQ{YxsW*ZU*PfT=CiwV^?dVgz
z*BWrRwB;Y-#J;p=)f74@0313Km}iJIW`233w{_u}X0fhHm1c6y$3=pP*-)r%FclyI
z__#o3zubUE<0%y6rC<qZJ=YW^t=#`kMa-A5DHfB21~!rNX4(u#yUcwh?x}FXyV0x>
zJJRQrc5BtvFo3r~{${VYo{`7$l-Lt})yt4KYlYu77W-%|Z7~tN<9D8Aflr?rLCi4!
zK7&7B7|0`3_QjLH{R!6h|G0SRb*wV4#iv1lEme+4?lXjQu`N-=_2A2KBk%hW-ErDf
zdGHm(l7vNd#i_oDY0`q<ogHJdJ|f`F^Y4qFgj5?XZ$QIVR$e~~`_;dDl~h0HZyn@@
zPIagKB>Z;PQ-NyTOO9{sL%g|<EtR}hh_85oHMmf?AHUOV{w5uA{z+EEQ{Scm+Rn|T
zo2C-PW|YR?flp}N#=;$aOCPm*lg!ZZvFsL-@m+6hStPOP5Z1QgO?CLg?+)Uj-+OVM
zvF@!s-mHpoQSGfDb#rT4SzCK++`JU)cKPE1lHoUN;3M?Bd(YiVzG%@rc$@g=KW&!o
zBu!lhd{b^PCQh)=w6u^3uAjdm1(z;vf-s=Q0q?)HO4s9~5#tf(1^ipl{z|Cxh__aa
zqP3Z|h^CJz)}&3uSqB=ix{n=uGLcvfT#pctcHF4Nu=<&I(#wVkp7k8=Q!MKY5YY~@
zRx0!ukzq3i1=Hl!M^4Z^)1+kB<d&eOb%XDTUx_QEWV0n=muPGSJwbD3?Z=@n?~=g2
zX#QZDoP<7ta~oMzj0YW=yiygiV^OD}+fuGn;lx!N!!5q!QqYYG{w)*YhTHMYn9nT^
z<;LbF2>M58FnzEJ$xyvWv=M)Qh$x}cPPS!iXu}OUEBT?-=_H3$G?#4JB;p+K74JMV
z1T!sQK>=DeUb&x~$w_pau|H=13}J(9)2Mlxx9_vUT(xodqYah!O%R9Kop)@mEJZJt
zc>Z)bY;s<AHP311<!qaMS<>^jNBU_Ftvy~9W5&7GPuW_=x=jXX=2Q*&ew}d5b7)m6
z`eNK}92qp}Zg|lWSI`l=r#1X?u7A!<@*wr3Z(CHevwYj0om>FTm^AbqzX~l8;*<V3
zXt)ymwo7ihYbcPdGzs0@k#KmmtSC27@J2}QR`{uQrKGnVM{N4nD2$A*c<tncc?S%g
zjBugXX~mHD7~<R{@J(w!5NQ?O?Ol~cUQYh@R4P51-u-bSoE0|y1e@y}K(@j*onumW
z%@1;IwN^3mD!4)nKh3C|VZHxWP=<u@4c-46`_C@6#YfEJ{Vrgvcpq2JWV7pqHjb|#
z!}snn5RB{fwI;76AfDzcnXY*rA*bA3>6P|*2=2iBhUf0RIMxe5UhO(k>M){d*wuQ;
z{`t6osMegQyYiW)WidYL+dFZ$oP>B{;X%*pqqW)7h+l(T*B$~-8^9B^&uZgiY#~>=
zpMHcLtVFzjGP2Bf?X7F#jyOF3bHtSWWdg%=wo{d^(wR(ydVBGu^w?#jsL`R}cD2?$
zKFs%77@gCj+~AxWu&S=}gxBBZr8gS-&NqjPrg1d**72c>?xLu2x&<!YnvsfBs1eML
zV_`(@QZ+Z|o$DnO&OJ5QtPd-w@bBvwJ%6hDQwFM3<!qjiK9vYs_vYJs0yRtL7pDN`
zzc7Gl(;E0&G~B={9kJW$dtb;9Ju<Oa%VKHr#)Pefj`t|pv6vQvT$f3nOiK9*M-~YK
zfR(s+eP2ynhdXcE%{?HiZbR68wMlkBT`<?)@bFVTxvF@WRoFK_M}!j^h%+t2O<i7&
zw<#Ws^;1%Z9r&uTFASwI6G;5ypS@iWJ5JaB)c}moRR9V)mtJ5R-CVm9D`NRg***M|
zCs-oZ7$XUFyLJ2<W4&*N4N%!qlC4o9B~s2ub=RZi*+NV)BH(1kX5~1)O=l_Ed+p-j
zwm@~o;aZmWUrl^KOhYsLHd)<WBU7lBClj|wI*G(ywM5aZjee?5siPo$5}#3^F=z>^
zHvHl?va!oDo(QL~Z>)bUl}VEtri~!r>QqdZi86m5W0zEA@3r{CRwERpQ+^x&4S^(w
z_;>K`2NlJ%=j<`IbJX;GXyYn{!B;*|*1ML9Ep&y>Zt-Z!Y}=Wo<1a@6B#Y<_2V#=g
zvqU9l(Gt!ILUZizD=va(J?A7`t3n~Zi+m4d=Q~332kwVg$=?I@m#vyA!u*6I2VMZT
z+P^86>|U@TxV!jf;qvOFv~pTzL;xZ!-$8Q7GQRnVRbC%Rqa$EX)Zc-Rhz?74x9Pug
zU+;W6<o{$=C{7hk+T`<zMjCuK+Z*2+O45W;rEm+_Xmj}JJD_Xaw&K7D`_=a*9WejB
z@clOE4EDlsod|fwI=K1eedO=m&BLMP^xd3GxdIXJa}5RvV%yL68h`D?_u{3)q#;2U
zqkK`LUQ^1}{&tYI$<)T(uKv+L&nPGV8M9orBpQ$vS9VJW%0j`6?-B7!8X6=mty%cN
zkbnR<S9Y9RG-A$o%<)^6i4y0o21lQ@v0ZWbckI6rzI;2@BB^RagoMM}Zu<KE<9Bb?
zWHKH!v}~X!1<|F_+BxIhHw{eGDU;n9Ks%U%=}4DP?9+Z=@8)6T87z-9;APpcwIYK`
ztkcLBB7a~8_?z!Q57Ja1p^+Gt!4&&Cm6-fFf?0$MIqGT|1uF{Du3oqwj1!H8vbfG+
z^Kq_2PcJ&u{4=F|fCYFRvzt4*lw)K~oBO(Oe3%at%eS2JMQ$?QOM{UojC(mFdym6`
zHMO`c)KP>J_N2!#f3UYfnBHKZvYUeje(u-Z2cmc3m_12SmhLq`ncYf{Hg)=p2y|&6
z>!_uWY5sr!vdOziEqya94mA$5IJv%~4*{M>L<ry2H0^d0M(a1r#CF`xI<W>KH<K!`
zXN;k2_U$=}-1YO;oMF>ymRr#|gXWzFlM&OmAY57Yss*QxPljV$A)Zzbc7S?8L8fD{
ztBYw>n9mF5Hu^3mFb{>y_9o^3qV2t-n&{fMQ7nLph!q5+*eKFeI!IFi=^dm7rI!Fo
zlNtrVLhnMP_Yyh@Jt7LydrKe@fk0@Xg_?2(pXYtQ-&yBd=bUxcI{P1zFlEo|nc4ST
z*L7dFr{(|Fo|=PoN}^aa`j%OW{DZS^UyKgP?@^Uu^3@rg!Fk%eJ3JwWue$fX0_7RH
zxYb&d7wXx4(UP8CPZq1vHyWA?4hUG=>$cgvoEZXue4*v#Yq9u}+jWPY2L0kho*wbi
zQ?g4&#yPjCG9fpITx&fYR^D=@(Rj(Yy<x(wsz8Di>BFpU7JxygHN`JDZ`}2P+WqFI
zlk(V2dzv&I<v%i|V6#_2{bME$dQzOpgqEycA4p>^Sv$hO35|4+<AHLEky+NHNCLhx
zQPf{|`+8z9(Hl@kg`t$xHNNbpS}e!dWlqPXYeqh~(QHzHWNh%DRXw`M>Gk;hsMMc=
ztmu8|)94*Nl`&73B+Cvx)m%U`#7oaOsQTxsbBs($pG)obQlH3`1Rib<)R~fdm*hX;
z^2#G+O4f7tUh!Bpt+m4UI)1gujb)ltashfY^yxd_&nL`2CyKj$hBqanaud(}Ih1>_
zT*UqVAYnjS)k`e%S-uL7yT5WP&9Z!DXLNzF>imywQx!#{@>juXwd_d_Prby&^7T~N
zIck$g9-NQ>5fCHl#w8`R!QA&D{32{2t>*)P9vs&m0tiXH(1!Lmlk$U2$sc1iBGa7D
z(y;gYWjPF}T|}L^W!Tf#XQaw52cbMNL%6}{+;SS0h-O_KS+L@JKY1%0ldStg1*>!<
zWaLsk><&w>%wjM9p1q6OUNhg8O#E@ZWaeX$+E!y0Z2m)|tmWE{rviWt(gASM$6qUN
zo($TT4VFrBmqwJ%rWR(zEFZhk|7!9x0x*qrz`X}Z3hopLfp?5Rt9Tm4&IwxbAFtR9
zfSfrifKm4GT_OM+2av|>qOJs0{TF>chBz9nfWk$`A8u9P{-<g6@%ljfReAt-{aFd@
zjN#vmgzxe|Qpm~O|CC*t4+7wq|6uy_C;naSc-8+a@cVZ+$M%B2k<G)agIqRL>~G%t
z4+wnexPsDUK<5Mq;oVjuJ`q@Yyp6B<iM-6JhGA>Z+YNNc)<GDJTbkHWqDeO)KMm^L
zO<NoP-L+TC-}+8lBND%@lPq+TZZ1+`O4bwB4byK5@?t8tXU^U)*0?6sEXj_0?fve!
zd%!ch@h1TDK_gqZ&Z?%&&7Euzym4^dMM61uQOGCB&F<j2tnAr#<$Uz->zaW#+u4%;
zDo=v{QJ(M}&M?2*+^*3RJk?B^*jbj+Q)2;29&~rt-l@xRo0SJ={(&*vmy>vGDM`vG
z+`zfH2&MawPUa0jXim99!y_*@{HGIaxT-AJ(o0Vgas*bHmlq`ywDUyZOOp3fFWLh}
zl~F0{;}UD+!c<RDT`A!co0bdbvP&+y^W1&$V#@M);|l=^Bs64j#&hgGOmqEK*^K|W
zO^9VougRay5mlX=as#a<aGL3)L*Wd3MQ^luWS_M8=JV^ia3`MifS0l%nPgqll(77>
zELDNsw#|OJvg%1q9K3{mUZ3Eq>znEG{}_h?kJvAOff#9veWOAYwlVV)cac`aNc>xz
zMqiv?<F(xs#Gnswfo1(ybkfgiSM@(dCyp0vZT$53>>s^S04l71fFRo5>@ZaoO@4`*
z3C|OnMWA+nU-EtNzS>n-x)^+agUIy0qT=C5H3tcO)Q<4ue?8%@_;b>>_c~iy8H3`$
ztC-o@a(j{hLRa?LlDER2Becb}e<-&haoCWOxoHxUynxHu(U19TqlN+oTH+<8KMcdZ
zj`VHV<i|9MT(UgT@-psva#Rc=Ip?J>UGi<t(10$mez9rfbre^D+v~9J3YEEA4y^rb
zM`krWUA|ne?D)c72DV&V!j7DdLpq(jWUUWRWWD!CruM0<G=Rq)w|Pc3j#@IPfl1i1
z{$qCpi;F^u0qwb-(W}uP%RgHGkiQr;&4g{=>J>ku^;ub`L7Bz+T$qSYd*IV@-Nf`q
z`9Pt~Zx>Ln+iB-ap1hl(?@Pv&ep5?K%Qo)(=g2Pkm8#H#3q=gGw_eiT6L!o_W3HZ(
z&uG=<-{Z*<Xj6E|><jQ$Q1;wc)Mxa$QM;cz+HZzE-(P0CA;|w^DsJt~9D&_BEs*8V
zyl2p2KEmgg!qH2G3mKP&%xG?@c7ER@(>|}SyKd*8{%WITqKedOO>%oLq0Rr#&H)oV
zufcIPqj24|khM9#%{P}|qZ#OrOP@EnLiS$?&B_X&&|6!O$;D;Aah%eBG#$uT@Z-YI
z4SIdu8%<X=xXwz7?Rh0B(D6PB-?+_iU*4Gy!>2nQsoA!ic!Do**6MuB=e9(~wl_GK
zi3cye+`rlUBDmu!c11qvcNa@HI#TS4iifmw74C^TBf;X`R8B_sm~yb&;P^x-O~ftZ
zTX#H9{0W)AcZ_6#Xfn*Nf1qjjykvImsx8UmU%^S7q@x!g3LNiyAhkrNA*u(9??btI
zdGLZHAOA}V9fuMIxuFuXCYHhBm^OuW#-ijGXl1d|^2Y?XwFgTq3JC#z#>cver%xS6
z04IR)gTud-%2GZlza&R$eyqCkQzi&I?_C~Q@ZYjh^Urfb;1Of;`x{;Yf%{JczU~q}
zD#TpqoVy*sKO*$((@H28n)by4zk;ifCvu`tW)1ZI*f&#Ngvsw^8XL}o{7@5qcF?C+
z<olT_@QWLj!lqM=nzB}@%#klb4gY<h-g2%70AZHWcY8YUZ-_-_fL-{s6_Mgmzj|5b
z2=RE)2ev^>)!?hBe_x`Jv`<py3Ve+U?NbE^=)wM5H<BXK^le+~*ygxucW3`*_+K^M
zV-s6J#Kzq?*%(Iiq1V~&UmpknC9)Bha_o^`2+dV6%Bp^xD(oCo9ptywEOR~N3+1TY
z58N`{O8syzkdphTzAEHTr8WP3Q}AxXnQ^+DZ_E7SxU5SC#<EN!{yLq9OMTacb`!MJ
z{>v1yl_)8pV^W+e35jQhgtPV6614o9-&~^CNpFu~xi^OY-IeJK#`=>k3mbMNNR3^)
zdCE6y>5IiEhrst}PM(#Ixh;h*ee%k`?ay`tqLYI0tD_Ic9;iEg`$D@c@BG_-Y2ZIX
zfsel|fi!=g<d5ob4b(UKKYB2Wkz{H`?Tv%GX20x_EoBylaLagyS3Ji)0+okCHc6%@
zn6*r!HlOT-XVN9x=lzl5CerSej!Z@-0`tgwfc)$R)Mr536X$b0TAue~%`qDFpElh&
zwac9OsxfF_^R*xI;?w*oAjQnAM%z0rGRJh~K?`E~1@)H8_F#SA^$cmtwE)=et4q&o
zL9#zG`j+wx-r9K^w*Gtf1Io%yzy=^srN3!)N~kmOcF@~2wuLs;wS>O(h0*Nvh18Gb
zI!a1PfV1<*w99%!$+5BA|M>Av&-o~$@!Lrk`xNWmT`22&JY&kd_+P_}Egr@aNAv2r
zfE$OiC!G_i2Ygh|#Rp}c=8tw(gts)GPVnlO)UHj{sP<nP8XK$tDM+hM$N+U7fu?68
z#^-oDr{mb41W0`R$E!nJC6w;Tf46?i{Qq@0aQp~8Zk+$vp8TDkf1UcD=F4yYhqnvg
zGr*ct&!F08&Fs#dJHPJU+G0)-wtW2aCqq&3tO*y8cL*p4PGOT_gE`6!4Y*|+KuC7n
z{KSt{V;D7(8w+v{dih@o*8JFi&0jPAIgI0F<LCjdI;T{aTGzU?XV&^3)8j^o<9LZB
z2@v;zcAENp%<6UA+}>|=?!5%S(%1NhQvh;WV8>VSopyco->Kow@fwonJ68YZ_Xnw;
z;;CW-F2yCYr2oCI<wR4E3uik?h_ndUikbM`aTI{LhKI7aDGvR_0To6pxxPP`ix9h0
zAoN7#lSNpdV69=ZR!td8-;+WIHflW2u6Y*8G{D>mC+0HtHM?39{PNxeI-@6<9K3wM
z1JiHS>ix-Qmu?*9(5$_3aAQqieCiQMjjn*bya(scDs%bLSPmtlnFpfqnQHu;YHm+3
zTR;5$EAIBO%Z;9y+2><<uP3hexVBYZe?+X-X}6b|D;oUrehUvY)1ALqO@++8cCoy!
zBA)0oAhcKR#eg$kr<&D|dVI%Se?Vr;ybjbl#w?))2Mp?sO?@^=pXbae_R^iB;`9q<
zOu7|w4+KRLdzk5~rlVGF=M>}v^Lf81C@%%x(IG0dSuq0J81EY2Zw-0JK195IoHP&Q
z#BZ{&3^j`#Ly4GUDAAZ<<ogFL#q|Pkvd6ij>e!5{xi`QXfvoIx{A`)sB@IcpVJp11
zw2X)U<^Z+Zm%@+Me&*EEoc<xyk#X(H+h5Ylehxc&K86`s|Mb7WU_@ej&`P!YyFQ}T
zE>Gptr}yal4k~(h2p85vZ|+~FYE@F6d?L{^)3<#&)5|t|EkwYQ>!arcG3JR$PXM9i
z!>hTDo5I2u013xyp;5mox8>2|=T$GmECS>n%&s?7*mPZ%mXki8zQEjg{#?x_fxXaX
zypqOlmOFW1DvGj28DKl&NN&3B^*!;e>0tnTo`3qLcHzYnQ?E5sRtj^sk09fZVY+sZ
z1rop(ss6(jEgVoonvkIRDcv#K@0)kek9}-b1LmRTOtY-tfec_iBd#pKHzLMJet+MK
z!Q#&u)YFM5>k(_PJ;2?(xDZ_U!5}@H``&P5d(P!7o%5GHnR1__Lr6lUu~KEmz2RW!
z+o_sAH>ttzH>4h9#vrH)0n}3<qoBnjiu>u#TPNz`kdHgx(uc9$ddI5#Smj)tpDyd?
z&g9LZcPhH504@dUqn%o$^hn$jDXIQcwAG`>0|a?9L9y>U{zX>&p$k^$ukxNAVx?SH
z*?9fF?-K3Ff_tYg9_*QC*0s72>U?*#ec~CXZdN#Om6}qiYe{#H5(XBJU^_U4tL31g
z>LVV$-4`Q}`K!UOXNSKPdq5JZ3h8HZ4i@np<}SZ=lT^wX6c-Wx#N`Vd)hQPJ$UpEf
zvo9Y`r1yyUbCrlwLqFS}G{0iFEHt2el#`yC6oCmoT4Q@?`w@Djx8|m850HQ#kMp(*
zRvCd%A-AXWUW^;Y#t~meA^Iz*36ctz?yEu77S2{<F{2T1K}&A_yH84;;0D~=(tfU7
zYDe(x^C{-=L`jN$tkyM!@SbvYNUzSVso*YFn>Na@;C6*go$ps}_A<PDi>E(XE2?#S
z*LsWWTUWX&@<*xq#2zI~rIVse;NcL6nj^}{yirVh>llh5o8U#dXDHrH1wl>EnlOwH
zhv`V0nd(T)<jc1%6HORt3>TdR191_vKLjBoR!_d2x=v#89}W2|WZSKrSvYPxccOj^
zb<MH#$U<iCr)fI%k4BK+Aw#<Cb{KWLrlSTGpnpi(Q5K>U4u}z`Qsqc0QhuxxsX&0A
z_7Fdif-5V7JgN6y-%U}nS88A$bJJV>C{)>tNJ2SM?-hY^Srk5=p8q3nTn2yk<fy6Z
zj(M%4b3OL5R`GNW>UrA6_)=lrY-?1Tv>0^eQeQ~rwpWdLDfPUNsc_%s-W6NIiKS-y
z{;yNBPs|Te+vE0fK;?K$>X2YLce}GzP9O%v%wMR}wckA!90|U%E+9R5O=vMD(b=rH
zb<fRmu0MN$#x&dhQG6g*{5AZL12dllB8jka+lO<Vq@O0{82^9;8U7n7>RHlE6*Eo_
z*uLBuiTN;3^_i4!22Tj@rpQ$}Cqc+Vo<s$vCdArOeJ9FVKt#mX-~>bS)J3}$*O|sK
zEhTY{oeJOZDdS-U^6*L1u)}TY26o3WRqQvKI%O_lusZ;q*DRryDUeN4)D~`#y;~?h
zlJmR1$R4^AH_OU1<$WrA#8cK1cfVF&8d2bA5q%v=jo}QClt~Zl%|%jp@v|FWTMHm&
z7ljctn9KMF2-n%nWze6VUg#l9-)4%O{|D$b=Y2`C#;O(h6BJTQdBS+z!}I=Zlj)Ps
zFJ-)@wIn*5m|k4G_bO9iD0^~ZRDrYtb5NvKsBv*HuItTmt>{F^C+?M^BI(8;hIu!G
zX7cc8(5aV1CxWN`CnsA+{!?z>T0BXb4Fzq#-clb0UF|{zXihmCov8nVy5U&!zAik$
zA>=oTm9WU76uYJ&8T4n>PpDKr8*=cwj15^|)Ch>9g5k4ID<8Zq{XpASV(;?$x>)J6
zL~!_%FVgm)lO`>uh2aQE^}QrNs+d-%-8b<E<^uY=&|-^D5$aCz(FueYXlIp6%Y{?K
zWHrtMG?s=PkCYHS#9J#cdu+Gv(0of;Y?%nY)OA&x-vyLCFIa)<K9#mAQsW~bAm*d#
zJ?!-;E2)%x-Q9n#r7gJ3RzX7Ye9@GwbWqKycS)!`b%<%i0%>YV;R(Y%o3w;oBop3s
zC<pY6;rmL7Wl>7b#DYdcIERLK`;m`=O|kDl^HhG)7^b<9jJr(YxgdWgjdx?ho4WRF
z+KBL`>NR94-qb+6c$6I1z4#D0$BF^72(gGW>uNBTOvzYQ7`*>NaZ(DWQJcE5X&q<x
z#O@sYdH6&lNL94>ocChpRlMV!9MRwC1oB%8nN#cOtOLu#9KQAz11Uu5{CnzOGa-?q
z_<5Sqx9$U<zK+<Em4~2*CJg6H@rCxzX4jv(TyAbO86i~<p8tH<c`8aZrepefkuI6O
zX$Uv{K=h3K!MoN}nL~pVqlw=qo%NXSc;>cI%+Jl6R`y4QpBu3oprxBW3jNXWG(1ZT
zE)87AAJ(QvXpLsJcRcR!xn#bp{<V8*@Fp<kD>z2U<sR-|IEU&6Ybdm}_~<Sf{Q*QL
zAWNP5C7n)rh)x@xF?;CtwL|$s=DJT0%{*<7*q26K<(^OxreHtEWtLJth+m!67NzYW
ze%*`u`wS|;e8=^Uxiu_`e#&DC!hg<I_;y`y!`XXm*ENe<RiJ5Ijy2>vsFdwiO}Qpr
zClg=0JQ@$Xr=mdu`3~O|6B!!iF7vnRbomIt%FbZWlp~->t8Q9mDOu{8QCvKk)nCjN
zThm}qA6P?N+DUHB3t!$LO?zowxg+q^3ZL=?{`IB<&(k!qXP%a=j~QEpW=MwR{O_M#
zIm>35eSj)T+b8;W_KX^akoVLRjO<gfyQ&%aabyb~OOe6kX%+Jh8a2_jWJUFF>k|(+
z<PJZXkH<Um<Kla#T#L;f6<VmBef!f`Ro#-BK;cieV@^v7Y}6CAe!EA2-$~ZOsni&~
zso*5TcSNW-a(`YE7k{T~s@+(_kZvQ5mGJ&zM)7+wX;G2=^VQ7*H0AX^NzoYMn2XnX
zuW5Q6xA}F~?cfVbuaqD=V=hLc6(7t+@Bc1XZ=^5@KAi}$aUt&1`wb7kozQTPH<k)p
zl+dwZ1rUvecGm*brVyyuC!51c_tU?7K>uS|!j6gmQAo9Zsk{g1@^EE%J}f=ElH{fB
zT135@v)`39lfEA;x^ptc@Q;{@*`?sKo5)}9<v#f@HZ=3S5*pyt)f3AVa+;ZUqV}xb
zX1EHPQTHVsVD5Y8^1vV{A)2>6LPHW$=Z<dw?CF9;KED>kV(#8ORSQa0Dc?=FhiNVB
znp{<s$f1HuHfp-f`U3?<BjJg${_*{?-zl<o9K=aKG3<eo^OdvAc|CzGVZJ)a(_8^*
z183aRT~9i~wViS7)!r4HQMO_S?I4~MT!DiU95NjHrjqapCyJ7JsxED3`urC3dRpSA
zf`mj%=4TgF%p^?Jr|g;IMd#v0x62+GIiWpWwAB@RLcHTNn~UJd(cuqMVhfV%3;3OA
zV<my<@o279&gfxfN_m5ad`6c<r3q8eb~Kc<0NLbi@$w{O(GSZ{fN~)a-**a_X5i`%
zs^KZ0Dd1iAstF8BqfC13F){S`1em!@2yKeaWLU8@d$Wzpadf@iPUhNn2yi9e#ZY-y
zDR?O%KgsKRh$Flk#Hv21zW2^rN|}t8snS_Z-OE=l2qy@2qXZ+$6SgLN81nL=4lSYK
zB=7HQa|_wUorvli2)<i_?2O?{2Y2Cn$hTn&84`j)W;#Mq>mqhDc{TwnQM=_2IKM@#
z^0rH#__kn7%1d$<jv$@5)sTA{;%KmIP`*22sDG5vCnh^sJ@47;-(;K;3%^5hSH@*j
zohsJ4BewL7K2C7OFq!NNwQHue%f*X+H}6DQ)%c)t&M`2MZ+4HfDg-w}AMd(NWG1#u
zy`0;1I+)UrTfMu&{VfXq+0Ij0=Cafw?i|^``K+zLjVLd+-vkXviR{`9SZ^(lC;Fw(
z=fuXtbgog7L9=LBt~<p*fALJ}>LDTSbx*itU3tMX$YCcu&O4Z!Y~Z~wotM00f2Hi4
zjKU<*f08q8<=ah+^y6xHN_6=5%fpU5xpF#H^SgVbc*{LjnqRWu3$<&~BTodPiKD6$
z*s?-uU?QbGQDIngWPNnwlJX&Ov4vO~I<bT#V>4Z*KeF#2`-FxwW5^}J2TfNFC&&&n
zoDbjZ`5unRT`@upXgSmx4RDYeGuPm6()Pmrd_S#2c8!G?M1PNKkK*uMZFTmrv_foB
z7@G2o9!WUq4aY`ZA^O*2J5^{`PSMcJGo}=;q+rY&vg5lq&^#tbuX5gfvy2eu1)f#;
z_VmKJl>o0L_$wXP{Y<Dvw&BzJEH4Sq0tA06;u+Mce7FFOyGzL$iSEA$$nxqu7qvNL
zyngka#Z6tTwu5VXSxv-RY^8z;(YZYi>Ty=8s?-I@u4uyLBek_+(a_4k`_t=|?jSe4
zm3r=kreqc(%VEUm<zL3vH`XYJCcfGOltUMPG0dm-HUCj}mcH}~#wm$mY@VE?J1AI{
zVO@%PSm@8wd$N{OPn1sBlBrxmaG!;Y|IYQ)UzqXXj}XrqZT8DOA^q1abZgW^V3&M*
zM{`5lw<f81kb?y3SIZ77^Me7!tq<adB2@GF8_lysia(E*DjUt#6U5=+p)0#qL;zt_
z{1C|=qABj_i(MhLkyfd4#WgG;mgA7YqLC^C|J^1?5i;N)R{n6ltQ=VmrSz0NCaxt+
z%6Bzsh?V13;@&3P<@SwKkTwa9Q*d6f?o7mEM7d=dK3K6_$tAN9M9-z&A5wE(oFPN*
zRUwQj8#IHJ@J>Y#8w<UuZPIE=V&<)X#wY6b%gyBE$XU3ja9UI;2+4fAi-tz5oehid
znaWA6m8h_Ya4X%ac?Waoainod7AUSg5Megz6#Z0_>P84ID}$)JR^uR*gTyUYQ^z<@
zUvThYgeLwZxUyFo(kgBc%M*%9S(m>v`HH1vI6Z;5<diO+x7x$e#0Tyw2G?jR$9YDr
zi@u6Fw;uH7L~=HZy=^BTnj@Z#PWRGjcOmkoaf(=P8+5-E8r+S@jsu%_o^<L-5itSu
zW|_0h$sf%citMUQW5Ga;>f_fK1!RrOBeg<Tzpj&x<7g)ayE^0ehH@&?YqsC#{KM0)
z*h2jlH(kl|#<m$Jeo4}{9MxAvPb@2<Sy=L^HdNYlBD`^)ai-DRfZ$Rw)U42`Mj%tl
zD49&`Ee9#h2W?xY+#%(~x7`OTTrLxLArjSvlnI3ak1K+MyFKQ_!|fNTj(lu_8Z3@S
zvUvCJ__wr!6m3Z9&yfoVnZe}Aaaji0LV|gb$oZWUYfrKmX=rRkp2SwB3l<rho3HFi
z_~Uw6iK|m1O!cM>OJm7hDp^7x@g?d379iGom4wY5au2B=QX7CAl9Pc7Nt|S-$^lC%
znYTnF#<mF%&usAzjxP@n`Lg%p=kYa%TfHnYROOAD*&j}8E>f_@+q@*ar(3HK(n&Wa
zj~hC5r1#oAPi>vl*t$J#Kh}XZ=@~cX&~$pbyU_+~^nQlMB&(q@2Tye+4n>_X1}-fo
zax^qROd?ihS@67Bbz-_I3l+3CQ%K9eyo4mBQ2$U#vrLdl+8*VhSLcX})a-nTUf1*+
zbW^<?qC^80ThUx<JU9E>X(#WjwU#;1emduSCHOYz^oTokK!>PA{<QB^PZDSuSV^1j
zSM~NRsMf>sk;g=bJx6lWS!?rj^AkE(Ot3MvT|TZb<Fdo(*7cP53&XHIk~)$>R_cxK
zCmihcT(*(G<<9Mt4``M1%|>%rnWA>L%RsN|UCUOzG(QzIKQLvmP!p!1`Q;81=73GV
zHUxb|E)`U7w+u<TEJZ<n7gT$>!ZI=_U*U~v+v%BM;L7~uXgbp6L5FrB{q9F|3z-?F
zJ++!ji}as{hdvz+Q5JWm&EenQkol&4y_%K+vpD!TXo3B`2L8M)H7|6_U7M0*!tWIh
z9Dr*YR8SUB*VMwr#GMhYJ;K6nEM&NDh|WU$Gz#cr`Hhoc8V~Q4(RXmsMd78~fq};2
zRZ<f))GBi8+B*pgr+=3EY7oUswxyx@Hr9E$#sAulj{!%;*gJUXrT?)AkOPMAsR3Pd
zJ@vLUl6H#nyRl*k<x=78DZ}|rBJ0#eN8sU1L-TuiWZ6pf#PLVqepf!e9FN<t6F@)y
zHpL77E=fc4`mG}SKR?Ev`r8lS%i9~=gLMD=I8XCV;-634^k-`S-K4bQ|NSPj%!7i+
zcO@_UK8FXKoY_}2ftdA+-90m;q3B_gX+dyQ#v5a^O0V#9Gi5y$O8>kZrTaVALX-4d
z#%Vq3_Q|o3#g5~SyszLq<Z@fx;?DigF}&+xc09`L99S6x7kZI?&`Q!PnhaL%zKY^7
zxO`q@w4ot&aiT>xhj+YuXj_81DemmCJtt@*Jnh!|a_k`0d%?_50G7r+#pBd+Sq|A_
zUjUkjW)<}H5sLnr0KA1SzJe9|*8Dw8M<wl(V0sa&!WowGJxF+P(_F2UU+ECLc7yb-
zB|3{WAEEI?NgkK>=ya4@d%{nr#R}c9jOWlZ#bd^tgSO`5d8AtH0iBs5wUrr)&m-7N
z0z_x6Xq=?)G`{sig3+DpSs5Y_ZroRwWpU^&TJvz^T-P`;CPklz;rMhbiUMJqtT&#G
zyi3w5k;bYLtd<t2fn<^iu@s@b0@{PjR@f+j{I~O%$%h7Vn-MzA_!>$ejY;;qCq`xg
zid;=yilO7Am-+T`@n>FN!^)c1RsAr_PrCN{X2VrPQIS`~OVw#x(Q}0W!t^;xctTJT
zB@@Qx550O+sb<CTcff_5O&rcZ2e4UBSg7B)kX~KrD9OnIPwKWP*dmhx-6XkV^Ws87
z!Eei#OV-b~b>Cks-%+u53Cn!P?4@G8098|GaSTQDb&4b|{mgL|O3mP(0C?PNBg_}O
zd|D2+yp`YFRaV>w`$OI^FR!_lIPlt6te`LJn@`(9FxT~Fn)w>9^qUsz;qJg_#DZl0
zVBdrL9gnv3C4)S+Li#ggaz%M{@DUv&GINX|v5cXE3air2f|(-fb}{9UX~ccBFR1Yd
zy+aK4>ElMb39%x698t%s*E*cKn%t^c8CNpK>kG%1)p4`Ofos%}(@Mp;bffUq>f7{&
z0qDV}YPh9B%Yy<jUJMR(x-TXL(wP18VSj8A1SMfKJgo^X2vhpzK{W#RI*Nv+RgLcI
z!PMLnc@YbLZyR9rZaB*NZpODt*|pUf1XuQ*1S?hcg}6D0mGC)Mtm%YX7E*WCprltW
zxnOeth)j@#=j9nxVTaRneL*`=4#11wBorb%b-F<~Q_ue;S^}8lp{^>kwLek2q#fKT
z7J{&o>iu#&`8sh@0vzC)2>m`*p=-CNHCO_ADl1qtvh8W&Jl^7TPGQb251wATG$qEt
zQL8R$mq(<(Y7iG5p6b(7ayu2QHKRXo*$Iv7XCj?%HcX5=c|7oDg?;bfRx|k_p3K&=
zb0IEDDp1-PfB)^H9S;G2!36O89@_w?Z8f<qsw^(1P?UTCM#1~o$0^U|h#W#SuiT$M
zirNy&%DtuyD!GOb8clpt@%7qgBV*na>+l|u_W3d|(HS59mSB6^ROeZV1(X-)P1)nV
zH$P+^ZQ#tuEvT$!x~wB#J!T}YbvbI7PT({%3r&r#xgp2Wnge|*OAuatb8cLi`>IBX
z(SN&JJzg$>+70s27NN#miN`)N&xwMkw!07h`u>zD52sM>JV<>MjNziTx618+?CUlb
zh?D=sM6LmkU-Ty?sbZ+B<JK?7tKUc@CEYKt_fF+;`&zh&sg`EW(r|U?Sq#Gq?U9~U
zH1$^WqD{MSkI3EjslO!jQg>Z)dRn(@?1uLsg%zE9EsqiMo~0Q95>nrNgW*~_j-NV$
z6dtZQR5f@{2#@as1951RB>m!@nS_n~xlBJxNGVcdS~dm}`L0baW4~94U;$Ub$rXC^
z{k9m!#<WuonmL(5cxGbq2EJK#4)8c{@6EK{&IFl^N~0Z5z3tD1t-UI<YB2+nExinY
zQCsSjF<}QU7l`;{vmPL@Inbj(<q2ZFN?4Hpaz<R}*inJJ8|*FZ<acf;?WEcH>iq5X
z%QMJVIaa=`Zarcm#b3QvY6S9-uX^ms>f3+7AJ)bR&2?nK25`lSs=qd5;*XDUH69kA
zbJ0;96rbvcWZp?*0l~FE6`xKQ2bvS7+bZaLAiEso<)b;VavquV2029UL~5*mAjA8E
z{CrF+nLAZdL@)YK06dO8T$ySP_r2i!2W8##qoFoXfn>AJw9DZt(5G?FfLMNzGK@X!
zNx{pO;=Daffhiqmif(oMgZ4^rMi3^;a<O89P$4jw>&t?#;KgS9?VUFwn;bfBH(*fy
z<%$9Fhr{j(YYNoEJ&KR<W9KPX*hE$xl9bfC?Q!dyXvwN9%73F0T3rT15^Gu`g+?e}
z7=XfZS2lZ#A17&Z5;{($B3#r8$m`<@@&aT>`&;HNqc%PBYtk<RUmm1`_LB3pxeNuL
zc!MPt&86nYjV(HT#d!6T&85~p?NdTMyTY4r$WNz#uagAG&!9%^$O{CvxgJ&gN=;tq
zhicg;e-Gy^U}XCaPF?)rEi?Q^8}wCX4$-wsS#<E;{G<F+JA=XhCioF-PupsEg^;<8
zwq=l2sO-Op2_!@+V3>n(CX-4bNv8Jaco>_FhCI^j%)`*iJ-pCoQ{{J4_X0{kmp`?$
zF4%6_KHDPiSF?`rbn#xKH^$-DU)5UFDi=>!6y>}y_r7o0PRvk3z;W7tLk608q%l28
zUS5EMMAATZ>LC$&?vt-}5``_Bi_(cvN*ilCER?N^X^eTO`+7FjPMu3msyxMQeZ&&6
z+cdsbT-ULp`a;b{Do+TnY2S7qx%Lpzw=yu#^KFC_Z18Y6`e(DWNiyi3^P(Mqi7w>h
z!@%Fe_N2tGR7e+_zG3{l##LcX->CM_$tkrcJq7kgDsY{ivbevtiWilknC4=R=4<7h
zrSLkcDLUzs=6e)9ouHMBlR`oBIEmzFGpB-`X)HoQRzoJxqqGAn^Gi#-$j3&M6%32@
zLmD$T7!AO*Pa}LPw7rBq^6N?>N14v3JRHH0Et6Tn>uI@}15MPTMKQg6lUp@Re|y2r
zR4X&MJLHhuwHwyz=*0@A42bOL5IEG*E~G#Lab@W0Ai*atQ<aM$ub)ZUj(lmYi}6{h
z*=qt*wCO+CL5GZs@Jvn7=Y|tO5(unbOiMY}TIOPM)Ci&5EP-`Acqo4S6&CP~PK5+F
zIkm}Y1`rOlCb06Jy4&BuE@iX`U5z~(^R3109`lji(Q|)$<WaY53<7b9WhLhyh^u<x
zhwpl?@DK_Sr`+=z@X*%bC)8Qt;k36!!Q}mP0JSQHSvFMspPmq?L-+5yj@~Nh#G4Z<
z$raB+DT?ch`Syi`W#4r4aWD<EdjC3^Tt>yCxFI^46c*Owcya0K-#^FyO}q8K;==q~
zMfxnSt2DwQ>Z&Ki3bV770(MvR1er&wY&yM`NBNOYBxw{oE2G5&h|3EQ6XARJh5<6x
z==t-dWVoejV)SLlQ!>ZFWqmUcS3c`J=?ax}AE%Iy#GOa^7}+H>Ptl#%RZ@Ca-Vpwh
zi)M+BMa0U`#wItKQ*IfV>r23_A#-`PzfP9FWd{P^h~s!Qg$3AJG29(n4wN==8qQO@
zCnR*Yl8(l&_oRDWT^*{{DWO0MS^#vf@h%K_M_alD?D*RP5FRTUYH39+FE8(WJH_M(
z)W@MTGb|3QkPbXC9vRhod3O1(a{fCT;Vxq{M^ik&8Dvm7QOn&&=$UQ*Km?-i;`;jM
zc6N4dZo4wK20Joe9iJ(SI>Cg#5Z4-qf!$D77GaCQ)R97OT(48QtZy_o`@?F7_KZsb
z#;d7S4uxZ9s!vR5Y#+TOfCC`tfN9KP`iZ|mch;4f;j}OYmcw=sl?XagC@n4ZKHPCa
zs7%;_t4)vJj)83X&ViS*o`;FT7E*+9nrfSYNb2gFfs1bidN9~sPQ+eA%fvRvzgv^>
zT8a%O&2b%pWP<nGxt!ZVXb(R?_UR$hA+F3GHQtR6SN6Z5Y$F`1({Jv7+^upb(n<x>
zpnhWJcI6R!{;jwF4!+l8AfK|D(|_rvR;IiqkbBeu6@X0R<aQ@*%vu8*plITAnqmL)
znrNop6o-LBg?GDuOdHwOM%*C{7Dkv2bWq#A`(A@GM}d-f1<6c2vtDhV;2BV{7+?&H
zByi^TJ6Z<=Z652C<yU0~zF5dXV1t{&&$Ir)o!)jmGgTcQAD`!E*_9y|AO>70NMAjH
zy<CeO(Uuy@HE?u8m+opNarrP^W}Ro~VL&q9O|4GaQVFpr-7)Ylc@Mjl^5COxI{oNo
za(OgUTGr<ei_7foA6D2YI*5yY?U=<~E5u%a{NLjoJPY${hIT}MI*;*^_m}sN#$03^
zpAvsMwYBIg-f{s=A8*R;3S_vt-Lrlt$)4ky4mgK37MI^;j&Pc+d_k!v3V&wzp5P#l
zZUl=J?WSV<sEOf`0(u}x`l;E}?mUEl#$-JGlr?N(JN&U^c%VJOI{>*@<3=PBy=qQb
zydWPEJ#Fg0vW?4^^Sf(~hv$p_fJnS6&;RG9MnzewLGZzJ_Wix<nfA<iX;oqfYGh3$
zd`-t5Q%KvDtm!`UK<L@-X!H+>;6c}hozW!?t@5^zu>88=T-m&r$QY{PvOG7EEbfvZ
z<P12iQ*;E_qtp>@CL0Nvq^H;;%pOUlR!2M|&sQ(guFhy>hXXtO<Cgm{Al+ljq3>z_
zq~p6x)H))DA*~e1L!poYS<>bg31p+CQm~!~W2%^u@65c8m(wxaQW1h_doO23lKW=E
z3O*8lgNpKp%s4d8%@$*t9$A|@bIqjvx-7f3TT%Cd&}IF&McfO8F!HHMQm3fUv(30N
z8mifHo$Xp7-q_UYYerM*+&i)HXYQDXqptdX)4>co%NA}9_rp|4rn5diZn8{AHIICH
zUmPx_5K0gb?Y8M9nV?RcSh)WLJ`>u6J3rw(N5I~HOdGJb{HE=U*1@<O+frtaRr=<H
zc5BB{5MKIa2py-tN!k~w7~wv0M!M9i#|qSg0b(c@iTevS1Wtig%KdUY6`M~-V9@(?
ze0c!xoOT>Hr7{<N8`N}W817<HzCBIzo88Gr1^*0j)f(Wf882h_t)3?BX-|JXB|hAu
z@~tW05@~AdvU~+g!#>XA@MSDNP&U#nMYu`us%3@v-Fz%;rxgxa;?bYs5!y%|@N3g@
zm_19_cbOIsTSQMcD2txR?TLR#XkL2)4;~KMSYNn;X{PhV=Ae}cp2L1*)Di1c$D}lB
zvpqA#z+^3GXSCSh9v|OE=h^D898<6`bS;Mb5h~#>Q_`BynorNQ6aHX0AXvJX76;d`
znI_Q#i^XRY_Z$gKA4~_vbgPItJEUFK$F>qtl?cVVOanv>ae)HH@i_057Aohpl2vn0
zqlbKFLX5<&*vdZqk&NEGB6eRM62V4Z3n3>vYN(%GzO?oTC?X>deqZaGfTfsjCN`u!
z%<=88G23t{1c)1UI<Cmm+tnWS1P3-(v{`K5NzWDe;crfDt@i{s_PWh6seY@iH`vPf
z*QM<IB`<qD-4FQZeh~!#4YL;^xB%)Bs<l1bxsRIl{pfWpmQnAdVv6BiaI*=f=`dcx
zP(32Uds|NYfm3_5_0;FjiCM<BO=~MH6&TN?tB=l^R=P#+jerK&d0MjVLtn%6q{#7m
z*p%@#_XNpFzvsyoo{RQMHClVh$p@aH2M-AHVcRBew!i;2NkvdfB*}W9b~J|Sx4jx8
z1y8qIJV5*Hxr`Xzr4^oAB(7<s8LiA59a^_eEzPW`CR`aX6N1vD!LF?FozT^*3U@?e
zN{dIbLu5(crZz1JrP-kSoMoa<!wPjulq5@Z-gzx=4@{rrmOVwt$jf%pc*bsM;QKVF
zQ}v{oBsN!;j$=r5DiIo7t)nXT*e;k3%E}o@2vDVu$7%euQF->kl{~1J^q$pCl4;^w
zNP^74k@drxAXI}1n+(s8wfSb^S=hb0b?HCl&pOiTXnh@SJpu3ECxS_uo$W{Zu5I;i
zAxxpjYgq|SzFBKYSjbPV-LLprob7H$fNGu3gsR&)#YN*H)|g&n@amj(HGt}TbZ8RV
zZFM|d7U;Rk;L<E|yK5Wzt1{^Dz}r7qvw_(UWM<q)#3{6@Q<v5t(R=y%@ajjcRvxR?
z5gyakn2;d3^&r0;7HRmvuU7yd<Boos;HeH|<X|B8W*#Jri{i)Y{ARb_rUSl+LjG>W
zi;P(U5f0XVPxOrqm37mc&JmJ9(X45k^LGi1oPq+a6V$kiQ`%$^yq>#%0&TK>vmt*U
z<d@c)GLooGvYBC!q|go=Tuk!n5LJp55l0IrEK&3a`cB$W8vHup-zGwydANjw5v5RO
zzqz4<pKvn!u6L!m2UY$|hgOs%BwkVnBa4C`tvf>C5F}5MI{hue(vqLn?z){I3BJhT
znIs8bsQQUn974UeumM+?%7XR6!onzk^dgc=0i)$D)Z$Onx3P)6@X{{$OhXymrqfVr
zvU=*P4Vt)IT2bGouB?OqQ8>(Dx3C<LhsvZL3ZHb#&T}XsBEMTIW_R;M>&_YX7;21}
zw;-2Q(px2WjOPkXNhhd#nRw02?{DtkQ(GoM8H|3@R}J%zG6qdMMx66{BCH|F<h~go
z$w=1|?J~L;JdmSBV7N6+NNt%|BWDbtI2?~6*awzZm7UrhCY%?GciP}1AgjTc3BnL6
zoy&;?7OOdH5d^?_qfu#B?VE&BaP`&+70$UkkwO77T89X=Dfw2b0y6VTF~?XMAt*bw
zZW@a8N~SpDwG~8jYpZ3pUzOae-Naafl)_ctL>qVG!LCPJF`)7&Pm@E9G<Dzd;zgT<
z62_8GTH|yO4p~G}+8q7*Fbw^5)YH6#l{|Bc#?tD`JG&<x)>>4J&w)w1p^r9cW-KH{
zLe1kPG~tfUud^!PsXm|PR{YSKW(0eQPT9rr<X9Eu0q|!87j-)Nje>hkg)vaPZ8@;X
zp)Q_Uc!wd&Pl4nr#?bAz(!YT_X!b6MRJ+kb`FNSBAipxp{tK(gBKd0)+q`T3@UZ^c
zbc4Z%3mmUKL;NJ(yQadfq)#M0ht{jca1uKMb{wVovoxwA#fc+te-ZXg!jqb|21g$b
z0fB%a^ukFuEq|f4ocIj>KlOM!!JFVTH6PM;!oB+91IV?`bjOdj#mag8)I6mqT1i}1
zZp{6QxXIudNAuHnOUk`QxxPzG>Jv0Vwe@Aveg_Y%wqy{%83@@ypBeEKFL#0ndFhWi
zum95O&jR;UNy^$sjKb^3Of%#UjSatLBw2tvwQvyt=vw)%mcCef2rK!La)t)L{mM|M
z+E}h$v9w43tf~241~WG_Y|QUUNnqYXn_V;V@3!N-ijgzTpKbLqa*AWVQ+-+RIy?~0
zu9HNufZiL8<h`O)`zJtjt>SJN+j3BGM9{NO!f&UqA4NRH7m-ioN^=E(iXvKZJo;s4
z_AXuM^UAqsDZ-iOtYohK><R0DP<(3goj%g@;+D-*$=4iGgS1ZCUgPiF41c3yeb2qs
zGR6*XI<+*v5Aj5~0VL3IbcsFtxHfXM1DqiQgsaYYM?Jl`T>_R6v$ymLM!kY3lG{%V
zQxH4-g>EWliE%2Mns&T`H?_PZbc@j8JL8*<1!!J(Jh}apxRhRcYAVRN!9;u$KCw$X
zr-ch3pg98aZ?=y(Anm~QbWAeEr(`d;Jx03^#=YY=B!oPhT4^Q5xqzL2SGH}!XX6`=
z^cPVs+xvC}Za2>U6F9mUWPw#}d^r?S_B(%N*GvHA3xVozoBG3n21g3fD^YvVOCJnW
zOLnkveRN)K$7-_ccNnV6zJE)yiwJ8IHHWKL<!z;&?pZnq48|IRxJ~gMtX-Xdu1%76
zg$&oHW_Pi2A{dGNx7ho>y4({`U>uOM3AgC^oLM%WCs}q!qM?SK#!<)xDVWw`_b&Gi
zW<?0YgD!UqRts)?8=IsA7e|+g1LU%in+!Ya0N86#8}&WQMmy8nIM%JzTlZpZJM%QJ
z09T#<a1__m^$+01nauIiCxxsLL$Z=COv0;1b#m!9&jVTR3IHE8R^y;U-tSZxhmc~Z
zLxdMQNHT(oONlkp$%Sj1h`*kHwuWgjKYnZ5<CGh1ku?Rg&KTw#b?yvjYrVi1Nj?va
z4t6;6$&cVvw$2q~Q>n#bKM*fx@JmJaF=|9B^_?%o+(2+dNH9|qpFQes4koxa+u^&l
zfnc3UNB14_5nszAyu<hWegsCo9rFxb_@-NuZ2h7h8{-xQAHrFJHWfLr%jFBd?;}M&
zM7p)AigvOreUm}7G78TPtZS%cwxE9FCYH2Ojv6nHUq8@Ca+%(x6%_*;4v1cOaB!4Q
z#%lQ|Nz1`aktRHrtqH$+m%w!<MHpXobJ07U0Slh;)ub-Msl~`vNM5V)7m#>u6GTQ^
zz%9r!qA>s9r!3r9M@OMZ8l5r7Cs`_<Hsc#TRfTg(h0Bd6iz=&j?HNw&l)WE1vft1g
z8CG_QaLv9~XX`)WfJxT+)HkxrJHiqrVaMv;V^|wp+>PmP#{LfMz7}xj(rS%QpOs)q
zbOo23&&YP=oS{o~Qm~ogD$A3)oBAE8Gk(1N-YV3@ZMB&~Eu`uCZi@eUoM)99bj~s&
zsR4ktS_>x5bGJk<b(7U=!uMf@54s<gL=w|j`|j6dJji_AlY{OnITP}Hwh;(rEW>&h
zD`FDW`~|tMCKnZODtOQ6?o1ZDa*el|^AVe)Xz5`j(Pp^ec++BhqFrA)G+pO<J+$u8
z5Rau-aItUmsJ;ax6LEJvsiGB{@nzX0mQH=4WiOP*vT^&|1Y&DyBM=~0U+VR&jc0?c
zf`~>`tR?Uo-RLnJ(*L!ekg+@{z0=&9(&$TAFBn`1+)6ffPwpmJJ$-d|Y;<%9a5V7W
zXrrI`n(X}pc@~{GBmv)3wv>WcAz>+$g^>su&-EPP3}jXWi}3Qo?KaT7ysK0`2rM_b
z%#HqENc*opl_FC<kmTkS9=Tjjv`VayfEIz{b!Yc|Bh%DemBTCfsSPvkqNMoIFn|8x
zgKrv1=F@LHAEv}f1YXzZjxP<UX^50S52%CB#~@v*GL?s~0_v{If{NFKOe5)X^h1q?
z6ivLE3Y&>JE2uYKe$KxI+0LuW1vhd-yRO=b4sk=(<lJrU=E13&X{T!*{XK<J3T8Og
z^i1KU1%fD%)Jz7#_%(RI%6n4}e1DJ0a*%WcsjUQ-ev@1F3a|DkfM|H_Z@f^rKU~8r
zSD6#E%6jY9c#?RLy{E9c{*c*!AOK6~NpN!2?%+3#<yZJ-E{mEh^iKvBui5W@9CAT=
z$j|9x5KC$+Wv*7i*_#Kwvxsm)OSnHjx*av)Tie^wGOKR;;b!`b+198T!TY3G?y<<#
z>MFkgF<ev5r{EeG0keRvmtJ@XPn&TcTyd&R8Tj*o`57SHs4*!k92e2;O$v>!Tdj@+
z*V;)<ByJDwsP|F1^>!QehRFFD0k)`dNX;~1@}{+^t6QsNuU^t#SmfSK8ZQ-Z5e?;-
zNeJzkGE08r$Fg9QSj#TTMdsC?_n>ta+uM4(AI7U3Iv_rLtZT2AC7yOaf*i1OEQ#La
zy<7Y%qXoGp=SJ8b#nf%<LDf}rmyu^AK)&-Kl5RF_J6u))RuFIV+RIHz`aO~}J3kyQ
zEH^kHmSq*t$HJ%lgw1eS!TT(xR6;&7D7bMihSi2u3&Kn8d#OcWN%j>U`4P2!Ob`b)
z2iHnGAFuWDLL^5*3qc2Sal}VMb1@JeJ{GVKwgXG`L@o2QuRX?B@cUoL2nf!bXmOEU
z<r0`|eK9lANd0|7Xyg$hNVJm(2TAzV7%#b-pLuDPB~*a?jP2AMp1BR(lMRy74{@2;
zZL0p^ka8eD1sCvI`AY~~S#+Jak?{f2f~mRac-T-@PgHFrPA%?~2He{rU`vLn*94ub
zGouHkHB_6DaosOY%p=QnWj<^F@b|Cdv=SJ0SexCdd7azXC?mJ=?Gzi36{FY{PuriV
zu*kURjlZ19khVMygJPSCyaNYuG*CG+uuJ%*CI4Yk>vJ9`?bPRp2(mqmS?Ne(v<i``
zE(zJMSs7UFb>Q`yo%VB=Dm+z~U-zNa%VnXvqSh3$;!tmz)p1g2dzT83DP;(-LISSt
z){*mH+Tkps#b`halr!UI8bZ5-Q&aF<fu$Gqxye!Y$K}&xgT<_`&Fod10zAXA$3Rny
z$oc?&+yjEPn)ng5*QvoK3L4>)n}r?a2F%m5BJ9pxg{3XhSG%GoGUGCijy8fPUrD<B
zF+*UHamGJF4cC%h$H0|C0)!kXq8saIk$fa^4?olSVgOIcY|JMJ50M8jYy)p1gN3tU
z1DvB1;HhnDDFrz-Ez50)RACUvS0m-0qlsn6wRGZFf?u!!^_NMf+4UqJC?P6C-><X|
z8?>DBFU|7hq6_B<m1EzHtQCle;%1L+`9+9mDO?KzALD$8yT8WufN)zjXt$YSKX!p!
z2m+g|g0K^*13Dd{VA<%PY;pQ499TFOU>7)hQ7}lL@!=5mX$X%mB`G+suS5=4V1A#H
ziqty&-W44XoR7_i&l1-amZjY*Al`-0b(4}$dp8VwWmRTl&GX4sweMP%T2+&Rcw4R7
z8?POXmDvSn-PZ*$YKSVbr0SyHQH5Gu5DP|J50F;ytyoG)t$+PN+=Z4SgY283j@>7N
zm5$zQ@021kM#z2eBolx_7;bwq6)trpje5R=cP2tl6q2`D8oW4@PX{9}RP3Z@-hH^R
z3dmm6DWndCZIe$6iZwY4S%9oE`*X77+73YKdRf_YMvvLV$l)aO$j7kL%0$IPYtRuX
z{?5^3dYUDvT~7F3RZGem*_GfF073_#G1zpqCUsSvbh!#DX{+fohitK%@Xo%ZC}A{t
zApdZLg?!aj10jSzqCebgH=7axJ0IAiUiZ&eKfNNNbz=#JeTfIsAN%&<vsD<&oLATw
z7T1oj{L;;>pU<RUCIq1ynmpqW6l{L7OGgR|o(tMkAiKu4KGF6e)aFBvzJ}_R^xJpV
zhqA;v>xj^=8dos#)%Q3U`}@=tujE&1DdhgByOSBfS2Yc{%r?)>uh=A$lU~LRJiOYH
zQE=quPmsBspG)K6rzdkROPZ095mn<5^Rns-Re2qNXA)yhD$-X^>H&Z~iO{XAtjs3;
z+EyE7v+@yg1ui}4vmCKqLK+kPxvbMDtzWU?U$l&W7<BlPR%nXyskJ_Kk~m3`Bf`+`
z9tNhr?hPihef)HKB=L+JEti(YJ9r{E_Z>W~0x?<RAogp_7R&z*K5zYnH~73bM2nn8
z7m?HH%s-gyKV7iL&Ed{vN{f0t<f(Z>Ay@_TK$ISpGm(bdj>2~8j}@Fvt7~=#AeTX-
zzw!~qLZ@5+<EA<-TnO6OTx@(piI=n(HSzZ{S@0#5?|F@wG`d)AYAw4(MP$g8dV;==
zp}B&~sT6mZh)}O<VyhcC^Cy}ch@dmB7&$+P3|4L=!k%{7wKpO?8P|DTgLb*D!SM?s
zOo*t)?Ulp+62DD}(T7gukz(B<i<&6V6J0t}`|Kj-@?wsVx$;3&<!ON0g?;p`kJT7@
zIIPqtZg%c)J^mRl(>t6(s3Y136LfgAnAeq$xpdA*#;-Y;2=H^R6k?z%XdslE?HIJD
zSxQ4)bqsh#rj|0v%goYG3D<L@bEfXzV;e-nZZa;D=?_8FJkXuV-7w5&@ul=9ywhxJ
zlFJV!6kA;sT&G3cqjq?t)ggB2Cp4Lo$?3TLs9Du02+o+?4_=Wh%am|&Nz4EyRSr_C
zY&c_iJ8chl#K2MOL)Xk4te22B3iLYJXnSHF<yiwZAHs(YM6dWt{N6p<8~$n!gsB_l
z$e%0Kt`86(_sR>mLNu#?9iXbyDqN<@tRr-{Guz&fm&UOTWK6|kc-Rqf_Yt_t3WCeR
zHGn(s+Q}A-L<i9SJ;c~BiKJ*V6*N}xh=oJywLYy}z*2)M)$j>DPl&4?SI}-4Wd(QY
z@K4~NJ(>&|1!1qNO<Bl)Og8g*U$Bs_hgT1+-~_05fH%SO0UMOj!aG(}><nTR4td!Q
z>ez|Xw;}Nle%aGu_pizM5n#)~vtP?w-YDhL!K)2UTW|)m^5!T1?Fdc7aDgHeKelZ~
zcBl4OvdI+1Koh27q2&_{5Yrs$VM;Ffl^4y*Gj73}+Swy|Vs2eulG$I%pC(HjHNC?3
z7M}Yb`iX{S&<S9n{@L!Ge|QSu%l{|w(*OT@s8ci+7m!?Agz4)*AO8>b-aD$Peck&7
zQBV=F0ZS0Dfzm{!Ne5|4?=3W?mjKdhP*|d%fPe%c(tGcr21KP3LPrt^2vS0o-r@cN
zuD$j?=iIaRefK(d-1m;xKO8!SGtPvWIiKhIe7@i3-OoO$gD)Y5OlJQoUG==<-1D;%
zmM2NxC1@8I<;Cz=R<VH>N^}Lf^wB5q*D+l#pe3sN(MW1=?QkGL^4zD`Yt07zQLsme
zbow+sJw3=pWNLVN53Cha%utR4`$K(Xjy(_U&VvZ7&GfY$;0-i2Q^Cra?83rMF0|iq
zEI4z(jxApVL%Z2R65J#jQRa653!&$e{}M>m^PH4SQ&lz5Hb3bn1&L5=!yCH3Z{IRg
z<ifTWr-!TEcNV9EF5YqrKAiaxVYlbI(qN89|F6ybwt^%WI!VFIPXY$Um<D@bHLIo$
z*o@5NArU}MwLC>^9;Pq}D}gKTL#}gin9p{lyb>_TS-@lXi{x@3cTXptu!b3*WfsdF
zF!EMvXlP*P;Ba<cq4ujHUU;1>heeSECVn2=Hw-Egc`{UH+hcl!+!wA$@|&4q0!44E
z=YHcc#VF^THzO;Kp4@1_<JR|)8x<(b3cvt~KRO*z+emb)3|C~HN`e@S76*og#2USv
z{2imW#ja(OcOZ#@-mhckQSo8m&48mSX7rjU`dJ|&k@M}=<;SfUyaTcC2gwr+=Ro~S
z9If3r<o;B@V4L{XUkVBIX@W6@*Hb8Lf1;udTUIfM;f#cf&06#obX_!+=XGlz*VkB_
zbUg-NGZ7sCFFn~-V!4+f;l0FZ7_v?%uQSMJci5b-HQ6oS8A?9elNhT5%ZpVRy19Ee
zZM>HgLL>?$GI|pE!XSk=?u*nmA`lM#D?YGj#GK2_s?REuT;PyF&qTF2>@FAKBb~QS
zk34O&f@l7Wk<o1}ZQGsDwAii@^xX0Fxxo~*6xl7*8~sY=iR1)A+**N^bGuUD(}P@{
zfyLfu0zvS>66sUcLU(k_lB|EvwwGFe!2xk!!|ANo*~{T!I!zQxstsS9*FwI3S))40
zfV{5xquU?poW0#iI_-LiWI1w82-{UWyViS*H>#VblG07r#6sRK9x1LjH+d5b)#%=2
zgWfy|5lJPCacW>1%*v3h){Bce5eK`c$pG(AwOx={!Fu}5eZ+IB?8FRCRjNiUVcHIS
zMn23X)ah^Lj&~cBh*B^t&if=x5zWWIRcl?bk+wBQXSpjoUoAqJjT(XY@s~;a?p>z!
z@m8Q0Adb&467YP~y1wB?RJ{FZQp!?PPNRP$`)%d3ntDIyQXnOiMuSz0BR|1VOxWE4
z55MBMGmzbt%Hh=x*OSGuT8|NjXowT@xN;R7658Wlw__-9OB{S>4u|d%J7#A~Uy_#4
zWOsgKNAO6l4BYBpiPo_{#mWoea1-I8Eax3ojx7^8ulks(bkL>3$lAP$<fD0jmQ@r&
zop6k<@NtZ>TA!UGH(O@p1>IJcvs?*?$6{gavx01r8KW>xRkewSdCLXROe1=Yyp{!6
zZ0bsRL|Yc6)+~3?j!}My^`eUN6tk$M19MxNpdLBa9~!Vy%>t^BeX*P3x7Il|bEfGg
z^e-7mjQK?7b8Pt_hEgn3UusZWshcal+4ZHsSPbI67eyrW8Em(xz>*hz7rkLOuo?6!
z-PM_xW43)@=vU5L)Ql+ogp-q6HHi^eA}FJ3t?O!k4$NkVd;P??yb@>XnbaxwcDUN3
zAjNwAJ<s3GDp&8!6iMJ<RPk;pc;k(j1rHCKvEdIFtV%xh2cm8ToLcMew5C-o{?zT@
zlGugrmxz*H4}Vu<ggO62wIj5SB|OghvW><Nsko;?&iuzl1>th0CCit%!OD4&In466
zd#?y7#<e;4eZdpXDPXcHE{UBn%<!{ch~+V`J;!?`$sgtIT4VBiy3Z^V)hfokpkvea
zma*w-?dp|#l4R5<g+#6&FpToY2T2JByHnfs)Ub2yn2U!voB=eOeU}8Y&L~`#q^`ee
zr@KGpdyOciJAj01wIX%rWT>kQNa=*Vc<S6!{>5DKgJAaQe%v9vn8D`9*{^{w-b$1F
zWM9oJT}<-i<<lr_ujvj+8mP?<*VYxc#sJ~LIE1B6nc0;2tmi;>YpZs-pf<!)A`<FN
zceO3|58icY*TkS|r)Ox3V&e|1gEkXU-A!An61b!Kz&8uYoxpg!x5iv0<WBF~wDopr
z%s{?vQt;SR?<!0HCC5?rIBI`;zeKR?EA`37jB$*OeVmZ1JXnmq|3DJi8B#SH3bXMT
zk(Uwg5nfE_ekZ<u!ya2h$lO-mhBNteGBiF~+?q(G{eZg@@@$3qW;3n4SNh3fmg+60
zs1U2(4qlejTHo2SCk`*<nc`=oZL}2`a&OG`dpkrwjPkY3mnT0VSr}~LZzmV{%?Std
zCvTi`P)n&ZEF8H2eat2)njA;*>O@;c$h&p>Wt=!i{Cyn_+0_mYMM~JbrmD8hm(hT5
z6C>J=xjn@ID1@?D&%}OMj{X7HH=UO!_KiH-gn7b-qoo4)8W=Ma7iIlJPx=8J-+pn!
z=g={bsDT}$VEfEp5#g^zqqW3Y___L4PU-q{v9syC<1NyvnVa}Q`}QEajD4O}s|H%A
zO*g-CoKg0BU>}F={j5DREFf7#U2-yPF1!0WSEs)RJj(qnHP<_QrnReM+D}`VZVC#p
zoVKAd1SaH^XC8a0G<<{|5W&{9n`zE(g5}F^)816(O^I1?-&m;rE(l5NIQ9grjZ1o%
z!`_MjTQ3)+zF^JqVmB~vMUBJS`?Ccu*5lGQtdLBu33Uf{>B>zBS_bE38t9Yvyb98l
zU!7j~NoLvPjw%R*)q4PXjV4}<u$MoaDR!be3nT7K`F!q7jdw&Kpdiu>k>q{7jA|oG
z;m`Zg8`GhZa;s|m&<fw9vF6eR%=h}uT6dSL*0mdrS9l%@na#c;&%W92SnXLsPW!R9
zWrQL!X1=Eb)!lh7D0X0s?V<s})y*rkf&-Q(32}61z26&1tufMwaS^HEZlHZjxw&z7
z6GAF<M8n5LL=C=-kq&yB&$>+=HIeyM@08g$2^i&Nwem|!j;2`=0Y2L6It*?1MVxS*
z9*G#ssR8(C>yh(2_UY8SUK2m$l*Q$z-@U>kn%h1X*Jr0z)-S~_?k2{psG!`rGV?gY
z7Mm~;3Xo)6?T)Ix%Nqt~^0Qjjkt9}4vwb<y^b7$m=QviRn$61?h0{ORhYK_m&3mo&
z=?s~qC1<#dX%Iq-oz_Iv=P`c1bfo2~-8?d%&FEjUBOW{qfpBSXX*sOzXEV5N<2xZC
z2^LGVTYHv5JsEeI-pWS^9ZWu?*_6z6IqfRNEPzcuHvF!w8~p{ci&qM$FCM2~s~jn@
z>e=x>x$$e9&Tv>K7|ML>_(0jQmG%O?d1#SWpu-mNH(rnw^K0(x(7%`^`C*$ZIO?pH
zd<829%rnK^PJEP>`vrP(h_m97%foZI7vDP?8ELcIG!;LGY)1@9@JuB*Ez*lA&fmWu
zQx@HC#{3xT#~ge7Uf2~?C<mFpj(=I0_v*BoUk#X|?W;V17p24K&jpqEn(J0_P%Cj=
zM5(zel@YFv_NNYX-(e@jTn|MUHD2gWk1=Z!7tiuX6#KmS_z%-FB>N60>Yt6z!sZh$
z5)0<(>${&6Z=O`&u#lI9^c72!SPeWyXT|2VEERuJEn>|;&cpM%CStX!RVi<n=eu%q
zzhB@`VE9n<wo3Z))3|udyBE>7Z=lzQKumy}fAD9QSKIVZ8+Tbm)T{j7#=8)7ou9qP
zV`uYJ^vAktckYIg@44-~U3!wZ(nYb&w0JF=@G~g#ysZX#bd^9`;w+6OD44<im7Q@>
zFN4_wX)oUc$LFO7T&R^SL^!Q^s+x$#;3<Vi7vrcd%^<I#Tt#9D>n#wkgP#&q%9@rI
zlhOJMT1quR0lxJfkz05M=O!cT=AWyB4tfmv^#RH=pF*VzJJ%Up%uG)ARbN$KuX6DH
zp^u<{VCPr^tuR}t?X6tLiojyB807p9C&CVg6{d@P3rnDB6Q{C9L}ad`SK6eX>iH3i
z6m^^xf>U&MT|gjxYxbh3l`M_8UR-HHk?DPNt4jXrT(fTO#nRk-b{ZLZ`V`TaboP&8
zDka&U!OX(xCK*PE>NT@pe(7gEWWsQz-j0P#(9XsjDNUJh3YSwJ5+l&I7fN=lza#@8
zo=y~(-R5J{@ClP0Bf^$-0l|*2<vl9|?ZTJo)98VRbs_@LN?U-AN4O|Ux)~&+k-PW)
z=>V!%cP7>~@ZE=v_{N$2E&+0!%ae7^L7ta($5~QEhu>fJ*eK^~xIg@Px#c~R{2sDz
zeZLU`&!2Ots9pMboMy8vpt~&+#%eI*Gds^S7gFjQoZ-_$O&hoa+HfldD1MEGx_2pW
zLI3R86=CP*=}B*1XCDw_<UETTy}v(K`+jvWhsqunvXB~ryhOz7s!$^<O29zqmEHV;
zgOj-j0xJ7_i-Owi>;s3w;^O;;6^@dY%2UQFuG2nVMk5NK9dg&0b`k?MhJb=Oj61m^
z0yH!(bKmZXZjJ`nEAJm!W<F^-jC~CvvX7u~nWK>PTCc%#kzyO;uld^<>IK;FPbJ@^
z$unPk=AD4^7G(z5rwhsbL(@_XC>?D<=@={Ojoe-(j9VgoJ=b$LR%#$*Rv=wuzutA=
zyxFY(3_quey*sq?xRzo|x}@NbR?wl9I!(xjFbF6Eeb3c-h4OFCr0L(Z?f-1KPEg(c
zv*oIC2`Z4Y%7&EN!xoeKmn0E5vl6*CMvq_2rEd8aDI$NhTreJzt>9m698eIiwAq0p
z;#iepQ^9QB(3y&BhD4&aIF#DP)^^XS%ep6h0?G<`{pSI>fq~>ue2pGhV>^(kmcncI
z?Jm`CcO^i1aU4&QNTz3!S5%}%9OjR7^;c)2Qu36LpFgi}FnL#=|5Z7YJl{1TEeEU9
zZqvTm68#2>li+1Fl4%L;?BN_8?gMXUFp>tVj0V|`*<CvZm7pM!sm%^V0H%y}(L=w%
zUYXVP4@(T*bD#91t#*gHq2YX3f|##9k)|{beE{3_@Vf%u9^(&baD#FYqS9aS2x=6o
zZDderI%ZC6-L})Vu2lry>hIs265>by+`Z#aX81+}*d6%R>X|;zUfFpVhfr3llU4bB
zXQ?R#ha5?gdbK*veDDqPdK-B8GKtnc=Kb%?yU!>qxC|;fje$7i!g%Qa5=uM8-uDn?
zCYgGP$~M|MiU9+u&MuusvU9~4rDwR!^|~>@F>s=}2LZDwg_I|=>n;>%q{?W}ah%s*
zS@=TH)=l0CI=M`Jf&6`*(yvHgK`GUIDkIpIx#()ARIHe<m-=LE2(G4y$y*WlJ>8v2
zNhEX*9c77;u`VNad0sqxj+z<K>~DDMocs}P25veZF2iHzEm#u2-xnw2>?m$bevxM~
z{KNGEz$2MPR2mg|+AMa6chK^*&%L~|I#w`iMT)T(W!D$Q9wG3`E%=rEjRtC3E7(f}
ze+tN<Wk3JEWY)^IKjFU)$sr|qo^!~eKJS=WIE_|mnOrUzWN+1)OeX_B$C-yTT<&^L
zgtPewA<G_x?f$0D@0;lnyB0FI`(sC@uqK{v?ab@GS93u8gN>!F(}$vdWvL8|hMKvS
z)7_sFFS~us>1Wc(8e$EKWQuOs7c=H6A(xk(1ZWCBA*j@l9sPNb;Y*;e$AXIvJfKQX
zYq=#{pLj==?I{&|pz4&ad(J0E{{2%g9NOb%dtk|#iXTwG0CaN-#EV9!tv8=>SbQ<&
zZJEQrUWAZW6VfcN=<2u9g=ERZ<`(bUgVb~@j<u&EnK~IES|w{%v1jS+*<usFy{h+W
zP+73kxpg*+kx^HI3(OE_b-e)qo@jgM2J8%?Q6_qE`Xu?IM-~P}(2q_(JR$!^{j)yV
ztL)VPvV5MG*Qu0BlpwjWh})8k!tQC8#AUyRlLaAriq*8vk7Oj=E9X7mPDvwPD&dvV
zC=NeCYZ^tvwf?~?ji@Fk&K~_QSv0fNQTI?4NM&2tdD{pytxbfUMSVUlu<E&1DVj%R
zkJLdKqS(2+_QW%rq5F8l?$rbaw0tSg?=Cw$dzRB(xLoJgi6K=kgLaj0B@%T1W3&(W
z40X5<OPe@@@57O4t--u3QKS$feXa9^Pgk**B|Gi)N(DMn@j|Yk4%V?Tt(ebmh}D>A
zjI6ldZ#lq=Hc`k}e}4Z`6f!0%J3kiky<9Dt4KY9djh4oj>*VLM44&h*-e|1#8+K04
z)mOJ6mb;rv_JG+pm_K@Yy1~&}NvZ2y5gu*PxyFgQHMu1QMRIP9I6DqlvHptqqxY8f
zH3C>!ge`_^XdUg8_j>)uWi`+%X%8V)HHKhzk8r})2ltiaX9RiWc9|aEGHaiq#M&bg
zlV5;q=fAYjGl8q8ipVqky?96BqE=12BUwGKVpI?Bb@EZ9Oyx4JHDF<3fdxWzuiH!{
z!&`vIrqX%Jrup49;3gz-TmxFF3kmVF<F!JM6Wv;_)n5DU`g`=E_lN-*#<9qf*T~{T
zeJC_<1UC(|$X>vOh>u!KB%2kJl60>9Avh4#t$eXk;3_!$_5T%R_J2U^{a=2`PkJb?
zG6rz5lIVy1^`6{+{j{q31_q3s#!2$u!S=Q*?~zD|5l;*xSrO7nTu%Hsxe5jSibjSq
z@S)URCzX&RfLSpJC!6qd_<O6zr1&2X!9)4gRrfh`WfG08^Q)5$p-+4ACD8iQb5Z~&
zck&IWZjzBOPK-6Yv9Yu3?Mji`b6*9!JHhW?gDwiod;+TCpX#j(6|UT2pvrZY*Sh;=
z6dZm*m+ZNS#fx$*Rv(HjecY3-)B^yK;fO<hm;^l6u8M<uX+DgP4`k}*^pH`DBuWO5
zZ>`+<C|<BKh4K92*(w_jk1Af9?)t)zujRgIiTIY%$MxHZPJiAy?pM^z{k8?D^s%w0
zQBhHqm0PdGhl!W*^o4)J<Uy=sz-v6ui7#sbUl({we})RP_?!85f(AffK$X=TD$288
zGA=4blF#|e7_x4Jkvn`ylNhY!j*|g+Kfc9nvJ`TxG(=Pi+G<DEdFKz}1GvVCFaAsP
ztzsRImO4^>)9cs=2wV49ynr0resN#a(<emehr{<Z+tsfh8t`$IHBPXQeNSQ~VPAEz
zD3@ZkvO`Ghu5rBR?7?yD8%u&ssY>16gp-!%7l(}#<8{MRw5}h>`)ZbL`+UY&zt>@i
zy0jkjsFb)T{=w;lKR*;uAfRy2NE!Y?(*;yv0p=l&kF}b(=nmB+L~X7cSM7aC)cf($
z9eNGm!#cw?SVT066O_#`@uKv6Htzv~5VfOrXFCS3cM#0qG-P&r9pmM?r_AUcX%!=?
z@cv!;xW5)dtZe2CzZr8yv8zs<uQ?gpKhb}Q4;_-%h4FI2PF8V3C{4XoJsOU(dzkx;
z&wVbuX&{z{enVb#4ZkEOaeB=i#l;#wd8x*z%mPHf+)qXGZiuLgT}yynVgIb>7n&`e
zGuRgV>^cl1Fg!CmOVFpN_zYI-5{>Lu6m1W@N(^v|d1ql_dULeLW9&7auIzetJxhop
zQ8vuPn#hA>F8%w%JL=~bFnLoB8;xdAM?E!ulxkFc)p>29?Wbx{tSGf4nSJG3R{Ps`
zS6bxdqO)#WS3S(J>($gu`#3<Vl>OFPZGzT8wlJZ%9JTUVv56-;BHt9LJqN1JtQ~H{
z(YOOul-ZQ3-j8|rG(Qw&&FrJ9TWmPAempBB_e3pAe-Si?Z%`ceX`!Xj+kK{*IdF>U
zXZhvd45m_mNb9UaPMN%MjbH#4x-F=<RR1hl5zl!)zS-0<Mn7*brCAxXzZZKgZP0kP
zW_%#Vso=)IIWcDr&F|}RlS0=wW}SBavrb!#&34@mb+CRKE?_-q$4u1~V2=NqA-uMo
zzPJ6^xFBJFx?a48ao<A`VLZH0e8t<kIW?<lmens=VU~EWp;<l4I@gu#t`=rqIzKRK
zEikj^nm`DBmBES+V}Q@5KrZS%mBa6s@z04~R?I99RNg_h+9TClMy4fF5P2`ygXV5r
z^F+npsLhIT$N8nqZ9*=*Fl$pqjGf(Vf#^f0c#W`?Yp=yQhB`W+Q&0ThO`(E{%zMj*
zYwH-c4-AGGi<_sqwHJl<oSg?ge%FWY?lH(_nk*VIa{rdZHc}-=w&y&U!?TZV8Tbvw
zEh?wj`AKR~{^G@{t~4OK0Ca15O8lS__A`L__{z%hLx)|Q<}iYTZ`Nor;Rmrwwb6q^
zE&B*tKs7J*$v`d^Ch14wZ&SB&?(J!M+a4DSeVitg7`Df@*w)U_ee-})QKKxXE!A>J
zESk=`tJh^BSG!v;N!PqgcwJfiT;xzKP9CbBR%a)bR<rkhvmUj%TJnS~#jr_MNuQZX
zBX&GmP(RD2Y%-d>K1rJJgO)2eYG*c`{Pdo0NY=a0-o>yNoD1)=zt59}kE8puE4iZQ
zwkHtyDi}!{?#}rdNR}XNuS*k0h##z8RQ_X|8C1S1x&@b2+&yw<<=MlS{32xrEt>X{
zoyp<(mw<_1-Y?$d%wgX(N#Ro1pUbZS&ylRe#81q(nrVYA$|~)Uf0eGA{?ByX#X8a!
zmQ1<QmC-_zt<v+|cqQ15WrN0~P3vp?<uL2|g1FPI^3dOW?p|nb`y7Kxur7q!O7c^-
z=j}Wq%Q&%<UHEB)!@<*XvS`Q2sxZA`{5@g#QRn&Zzli!@`iU&KyFTr+Q(7mxdRX)$
zimjT`4>|12;N!}t`NqQs_1Ds0I@znKS?dPsXM`{-_NU@L6T(mhBavFP7LjSU^Kuo<
zVngyfcQ;|z4`FO8$(x;8yPd}fA+e80EPxE#M!6WD+ucjRUj0dD&{WfWuZ^#bOToc^
zQoMK7Hr7GMby<`kF2xgj9M1V+&1HFM$O_lqAAGkb*Dr=O%3iI#*09ohb$GM#Tk(gp
zUjs5PBW)iy+Jce5(p!PWH}k$1hdd~Yw>WP!y@9z&LL7ANAgIu{+56AU4|wyr3TZmN
zVtyc8JL}80O4%6T8kqTW_3@%JO3n9lsz!p}BrVAx5L9kbDM21$6Jx7x%m|BJ=&age
z8ooFETC6pFXf@JTDEU15n*&lSkGr*tjEs+B7f}g~Z{M9A+)jGIeu`(vo+<yuiCeDA
z8}()uJEhJAye^8#^++K0>TB5yJAXA?vZccMSM!7?@%wz(=7*(^fA?iWnizbldsRPj
zy7ScG-G2IadOSW88@#+J{tZE%d!K`=sv$)1sC~gBB@<cJlggtF`+|pc(l2jxgsK!&
zK{MOV+CEMS#81j<q%EWzsM7E;T(y<edf6Dt_ADUkt}L1QpzY?}{?+(YbG;{B;}i0&
zdmws|ZE5_ytr|4lM4x9vP{w({$~^wN?_2mAWF}ui8kchlW0FpRk&WG%Zpqws>TA(`
zZgU?_Q^<)W{S)s;@b4|WH3vw=D@l!c@GN+CxtCubSi9gbo!6*RvRN>=DBcqz_HxNY
zGop7(fG+zJ_0u$sOor`>E?S!DKm)iv6Mk&Np8gD+aUc`37cYar(@9s1@EpR=BS#;Q
zOYU1|1*gOo?AaU;AXz+pDTyC`;k2NWMA;pyr!jK0g*iK&Q9);~%%q!2#@J}nyNm{$
zVwc~TZ=#-->19^Ub;&F~<(yW$-txJ)!Q^%6NWZ+&!sCmyW+lkU&!$>sJSlmX`}_5}
zUDG&*?NBZQzai6TnJlHufeD-SRl>xC#r!yvs8=uZA{f0NTnshO%}OAb9<wvPti8}G
zrO_ts&}*mx6*^hLM<^?O113AK$J3*WelN9V9bCewWRIrL?dPUkqzdOOd)>R0z?)e#
z+IYof^*s6KE4Ts%=$l08zNpY`sc+<v8DHzp$MSL)4~;J?MSIRi-C+m^t^`?<T>l$o
z#Br9ym@O6`EgDILT`kaOU)s*1H}xJftc@{rt5WLgc_!OcHAiKo>p=8qFq)vdCd3)X
z-q)zB;jtp))ZAEpNT@CT(Voe<Nh&!YrsvI9d27wKl$FoKTJk2%iH)zife8#scPiKB
z^gm7;B$n;EEhi_a*qc=~hM7XH$JpO_jtE)zf%jkj`~i+DZ%a!~zCJ%vHv&GFas7i^
z-LpHd$Wr$l2yrUIZ%c3A2pNlMRn~nNJ8hS!T24jC8}Cvq2hPZyR}?mm$wE9lb-hjn
zHe+bkIm$*v`vzV`cwJs9FarZ?!#Ywixu{dP-SmHn97()Erjdz15neptJ9}dQ+xzKB
zz&P{^i}OZWN7=ySQk&xNgA0E@t%@vCJ}2LEoY&t(o-*#b?vCy(-EDpWwb<XhZ^quE
zDc#WahUmg=CQ{Y&VlkTRc~`PSmX^O<2YlAUbLNaRnpv5}BJn{RPs3-IO3UVic9rQq
z&;AUg`&?j?KP*@+TNm&<Z7M!8ivi^zVXxN=v6M7dbpC9L%6cRV`Qfo&?39=3_~vby
zUPj`T(g~7S_pk^tW{2iUdPV1^7RQhV6<P5x`3CzpW~F@Ic)?xHg69B2vDsJ{uJTw)
zuG*MRS{QDzX`4>JFf5)PeHMCJK@OGFs6LR(^ZVDD4PNbyu-bdy(kV+UTjJTwZrr{$
zPe^b7R9%<H1}D(MRnk{gXUg-C8v^)Z7xRoSYay?0WqvYddT$iJ%JW@)3gVFP#36NF
zLu3L0E4(|jC|53vvs%e7@JI}Ga2;@R{4f$DB@66(G2@gjCUKAv^5`YYjkHvZ5!7+T
z*5wwoG_8;bQUE`e1F;p;kU4AcWa|SS2nvqCOW&un=NACF5W?q|ltRuz2VU7yQ#~u&
zMl*O+HR56P3MgGrdh9FS=NqClH8fIy1WTx=V0Lj{rZ{r(=X?DJY<z0X{!}Ob`WYbR
zw$f{s2-2}+S#f!X;dX}bvs<s<f>fz@#ID_O0y<J_NJI(d221*gtxCx};6hLdQ^WKU
zZMg=k)cMt+S0Qwo<xf1Fs%-;UGoQ-yQ?*{xAr7jeICN}=DxT2`yX7Jf#y}NeJZwin
zJitHV$Ar&YD?)zz9|b-R0Fp@bp#~VruXxjyg;HaOSOI{%Du3GS7JBiGc`=a#XTNi2
z9YNZx^9NN#k~pqwf%~&5oQbuyQllVQj&k);1u1ONZ<G=ITn;>g5C1&Cl#iF!>c4DA
zul^(_VQfBT8xj&C<h7c45Q@ah%riov#Wb{&mW%yrf4qhx%b@WK;LP7!>H)yd_H4mM
ziAQ4?^I{m8Va$mkBEh1|Ik{ot4iXVs<w$|VoaJ^1d7^(oo*5?#U;godjLJU%7JZ^p
zIt;SA*}1vHDEc_RS-cRS{6w_ZAEw|jgPxI?FgH!?YDsiHhxzTA5_Q$fWY)B=A;2O<
z%c(m$3I0){s1;CfNJiPs25sOiv{c1|A`B0axv8l)t${j3f(<3MpP#gv<)!ircw3J-
z@JkO00WsZ`m?mRIeRxCE$?6R~%b5rVmxXICnn);>G9R{;cMcDhus?igRLGlOlqhjk
z=NSS2pp*Zw^UHtOzaCrGLraW%pazQO=F&J((ImkJ9R07ErKOs}?hCy@mLB?O5>Isv
zVlgW{1x6l;^Z!wPAi2Z*PjxDiQtCg33<hkpnmKuSYu*f^&XaGw*5?QmL%9a;6^Y&O
z5a7O!)GTl+2EJB*3l;l+D;Vux7hw*SLvWTP|14|mf9fTlmjKXDfGF3Mf@nG7nUIiN
z{nsPl{<72hKLq0czX`<6;B4cRTaBFBlfr$^=6Gs`62cEYiqy)+%|9;u_r#|-a**I5
zZQ3LqSaSw;d}?d=jzEy|Exu3shZIs=(nEn^J@71(OOXv(2G1BL@m3;KG;7>7`2lgJ
zVPCHxe<W+%{sLEtWzdCg7lT3@sh*Qs!+~>TI>?2Y@`5?P;r~8Iq&8_lEs+dhh9p03
z&AOJRm=DZmohW2avxM8o`U&L3acWrqNf|zGdm{q`AQay<+P{Yk<IGEyL=)xQMe<hN
zv&X+#R;Whh?Y@m2Kw?A>YF4`eDro;P(Azi`1AEr!&|BM9l8D_wtyyX)^bRCEsV^^2
zeWu|$ptOI+i~w?K`dp0(g!FTT61Zv`&IeikV?QLKPGH2U_^L;v@^<#AMta+;3x<TJ
zn{jp8A*_a7rpWgDSpLTs>+*^b!<<$lwZ2#+6j8e~yjUf;_2Q4AD)yFhBG;J@d8#ib
zH3vVQimekXim$72Qn;HmsQ>+#tWtTT1((Y4W_7YV{EYcJ`Z0ITX=F?_X&!-u(4Ra>
z>XSN}d<;W44~LtN%594pYxS6n#d`!xee7SPdY=~z8`aO@C4`*j$}STO+POqs3QXti
zhStszNVJPz4>a1xUQ+e`10xr`RTzsOyk3m1b>wSx9mfJLlaA*&R^QJ^UMRs40U2_R
zAn>&5h;Oy1tfCfuF%Hr@n&XeX=+?l@S089Oa8_E+NLr5_tJh4NE39I}Spx#|19bad
zd#iHP`!NeYn@q90Gj5C4d?;SC3zC98M8cVUno;pvip*j%6XicDP>lx<!s-8a!3F#N
z#09ly{sS&JU;GCy$UG41RnGa@pWhiNj#wrkk&SvREvczVlUtrbl%-TOnDlcqYRp#@
z0-hVH+FRA9o^D{z8Ajp-Gn19(gIN;3ba*(jRXeZD>F2UJNH55=diHAHiHv{NroI?i
zV@<g^h{XG{=jl%_Xi#nlm<wxZH<p(q_NVWB-ce6`yuV$)7cngEhiJj_^4T%x{{b2n
zTc*;DzbMs&3Kl#>>)OnczbK!7Vv-*z<T~^I^y$;P&;0F@ex>l#Mg_yt-SOgS*Zk(>
zhDtqq)YjrwxkNV;1>T0^SK1zP-7PnyAD<L|^p5NOs^WPw1-BJZc80FZIBWSwzB~Q4
zU+~AGL_`L-`*J_<>&o@#ZQvbWvhVa8M4dV9Z$g7UJ{WqYXac!+oa!xRBw5z4+N6#J
z8=>y+B`r*SmJ+VQaBY70N4cN2h<Sec+v&Ka545}3ti;^jz<P=s^);Ly2X|t~aY)c8
ze;TR^<8{<8EI3WMi&}=eTQF5~zaqB{7FLeIha6`-zaKy7J&a%63M3X%5*ej3Z_=yQ
z2Wzge>1wIbV2*Lrco)mtQcsVY$n(T2mKJFFEZPZx{AZ1W%U-2V-|+KUGh`@pYss%L
zpRR*>7zZvOz~oo&c-tS6(s=e}(ur;cKKwv(KijT;_-g%&_w&V~<wuB;*Uc@X-bVjw
zGkFe<@fg#6UwNT^yS$S;Rol_l>IB+`T?bjNp%Fz~-++}yw=Y}&83y-_+3F?CS7Z=D
z0_A=J@B~^7HPUW~4NtDjkE5*WWlJ^sCX(n~`y1!D*#CPmY2`nONuot8O4W8$*;&HL
zwc|HP^AL+&i~*t3DRx-L9kYZ`tKVD4SmM6~Ecq@@OLY4zq692{cWLgY28lu+zPqhB
zQh|G5WF0jt4=y9lJ1xod0$)Lc25Uw4?A+>=XF9w30m#t>MYBvQ=JeW-1cHZ$aWL0!
zbUzoL{477_a_nfn!NPIFWl$0SE=xpx?^Ual=2-6T{WGDzr-fY}Qh(3p7<uJKNyJyH
zciDR7R3Q{TK5noj2@{UDFntDacVbiW7a2^zWmg8R?Rt0JbeuYKB|EX8)#WtbD!+hD
zacy1rd?*0qW_(Ze-8qxr#hm+|=lpS?Sh4)pA`9urIRR@rxv<r?arOcjx}`NXUS<5+
zx_iz^584!(<>>fB>6u+M@Kn<X=w?l`#cgU<rQ{m;hH37s7>~$&B3|L)cVlG#?@~m5
zU+_DK=~!iZOOX<h+EG`jdIENiBktjFXHy6=Q$pZJvCGO&+B)|hlft<QS>J^XPV8#!
z)z5qXaAoQ|sfQb%35h;uZyX;x_<rtaT5h=c6$@qoCtum&=H#g?`VJ){{qy&ODak}(
zpSX-p$IMr<P_XYMq3V;h@gp~5{C)cOA*)wV*V=^?sjgzDqO`p`X4#+on>rEaNaHQ~
z>v}flvsT2dRZZ(d@><0dxX=79h%^?!(n<zpb1<&GDx^a8?sO+cz7J(RRLQ1Hccu=1
z>{YJ=sZkCM;q6&f0vh)bW6%&!z<qqo9*n&L=W3*}b&BM#E#|E<D6yfld6L>*ws1&%
zSd$sR)yikkKOeYyiAk|)C%@&zIhRCqTj5+QyT<m=sV%-)J@gFaTUs>MxDP7|{wWDM
zd-SMjq34hKCReJ0FVWCgAMEe#dxS9!Y>S5*jfh{lI`5~j=rd!HDs$QT5=PSvWIIS(
zlD({gK5}3Tv#9c2hU3LWR0A&d#l&o-!M(LEI*geZ-^H8NZs2i6I`sENeAglUfwn&r
zBZUfYoaZdvBWJw);o;hy*Y8ma5a!DMbn>$dR~#7b#8h*;=A-z-j4fsw!%Ys8%8pRc
zICZC>AK&ghxv>>Pqg>FtOU*upv(uEf&}c9t=#|%1-a{KF)ROLw-O7nv=W$cqR=zmb
z_W7-x1qDki%rnFFooZTg>+&YDD_&6pz$H@@vHq?(e1Z`{QN3c{46I+a$+oQzaWdF9
zK)Z_DBUa;BOCP@35J>6WQBV4i@OT=%A)NN;qiKyI^3ad|-h(_oiV58*3&CO9gvo5B
zFyaO9gaRM_|APV^HoE@@1^lZ~z)n3qZAn+xGI1D)Wi<5LTZ3tT14_r<Qb*%4`=d0>
z74Je}*O^NbDI}dQay6@g?7zP;3FO?6D}ule`R#8~ROe;BTwenX_VPz*l&d3)xXd~q
z(_((kxTMhCi~>L9B2VnTSrH;~k(i`@+ImY_ln>h&on^JBj-Fnm&Cmd(pW;!U;G*N1
zwop&R{g&IfXV-BKI-Z`MBAFKT{FF6%Bnw4NOg-<eN$qX{-cRNbFT6_W>XoG)TL;TP
za>pg%(z)0C+~VuFr`|jjE&JkcXJ34==qgT%S~Qi=lX1&Df3N~wauv5c(Kc*ALQ=(g
zs1r4-hX?XUd%nzpo9F1ULU<wQ!&M#tEPA{GC<&V*4C<lwod<4;kMGu~Mt_(J89<Fr
zdVg7|-j#XQWe(V4?ZPxumf)pBx>3pu_EOtAZL(tPdy!(#xENp&_OCa|-~3{Zzvm8u
z!4N_79M2YrROAnzUBVAjvzp0NTX_SAwy7&Lq6c3+zafL1?<3=dWm{2-A0zX?3iiw8
z&*o}hwjrwhF6UPgwk$CJh3e%Zdh}37fJG(^SUFsg1`hffiPq9e3fZXII#jpM_ZE$I
zf25|piG<ui18~CN+arvMVP^7#{a~n#l2?kz$@SHQBo^UpUWJmf&k&@USFC?m^D_Zr
z03Fqatz=Q6Qn5+h1onY@T3xDO!$t?NQG7Yq)f8;)e`)8zhunfLRwZq{4~Ee$bEovz
z-c0jBdv9{Mmzmx&EVwl;nDI?3?t$N8e0FhnU4~m|nM3bQ<WfIGOKqV%rT^#pi{@u2
z+Ze=!Ud5CxsJ2Z9Vxs>3VoA(_q)cF<9_7H$-*bHkKy<li{d&Jgk@0ut-sdK>ckS!^
zsuWSsC$s~NSe|gVK0s8~@@J>x{T<s%*{kx(``^kX*XPqpBe`n4oyK+#Yscy8C1UK?
zM9HuR&m4VDc7Q}rzD>gdA~)G_yO|VBL%zD2J#ceWTDibT^%ewAP5ZXFbY#hjGgfAp
z$7;?rYOL#QOcEjZlU}sSenMLn_N9Vo2ObE=7-`>V$>Y<@f@nkMrO3<vse-b=LE0I0
z#75e2erdlSr7lm_Q<-Mv&%l!f&84xKhC(h0Ur>yq9lr4Pcg}BX^)LD@rPi2d7}>^<
zNkNIa$ld4KiWD<k&uMy6t1YdZWFDZ@WsKVjn|e)kv~IR??JW<OFe|0nN8h|{NVTq(
zFSEqj9E@_-&kBLB>D0+`!_HCN)(^5;tr)aw;9noC=wdBKO=`EYKDU@nwWtNyTh!4s
z?X9eMoR;-yQxR8qqNdHKG)W4v4*=S$*M#cEUKRpFHR!2`H2G8gd_KQ9o1)n?2YtKK
z%V%9aMFrv2f250l03L+r+AH!LIfj+y4>*;~yv;$P<V3LO1$*PXt?-jNx?|X%>y3}#
zaVOg0S+_YyR@>|$-L25rEjz3qT1gLQ+pi4KeDWko97wz4O=0dp+Wq4qFX_GCooyZz
zxb9A@T<+dBAJl<F;I6H-2?bn*8w=@ag%6R|b6-e%2c3+*bEj7!yo1CjduXf?p|e?b
zy|1=N5pn7G`?)LTJ>@6n6U)9DkCbKfyD@WUBTmY0&wr5-?kk<m$?jLUXWcz~XIj%w
zqR47Jv21u!mdEB9BFgI?o)r=opMcmev0jM9^;~{vZJp(|Fq9?r>TIQ8JyEA_?+@w#
zP-xCIV&-h;ptN_wDnqTG(0PyS55RH&M~7I$%wo#A%D@uL*bDYMZ<4Tuy=8+I6Pd87
zQ}%-&uD;>uvVcHnX0uZFv~8VIL-;B8c?pI*KPU*u%-d&f>j`EdA7!!R$8547W%POZ
zM34fdoj7Za{&WK~X5vaP^($<*nGM$@Q=Q2dE5LTW{L%piyk^^FD3?7Cu6kYGosk%7
zpK)O4<b)=m<Aikp$vl89vyE(h1Ra_jybpQRtp>2>{=C}S{RjpM$Cs<K1DFs}l6S)W
zIn(dI)%-AewDK-)>Y<iRi;FdST#LSn_rh&yqmutfQWpLqDFGineUA8jjh4zdSxR*3
z!f5g8=ywA9%c@*0E1#}{W)OL}q2!bKrTND_4C!|?yPO6d)I|wiFe3u6=kF7}*Rn+9
z4E&Axknsn9`gd1-{AD`t;WvhOZhxJ5{a<;>Q4pe!1wR)Ol03QpeyPd->^mhAW89U`
zNOT_6!S+Bfz}195)BUUbfop-d%eqKcu_=_XCrcy4g>b<*oFp;DWwu`l<VY^p3DAM|
z;74;fK#*M&R=||za2d>zKVFFQ6Vh|V0!)yNf!5hw_~Z+($tMz;OP8i&ZEx?AJ`Z&Q
zvGaWV{4>*CDf_}+U`h&p2d<I0>!aXSdpKx1#3!o)iIxyBl8fcFjsV#4sa#SCrjkz(
z!2a?>v8ljqVLkV)$o?_WUVk`dd6xj5{5o~9vGjd?eS{YjOdwl3VAqqbBVk}`Wvb@8
zh<VDRHu*uX)#>k41KHIZB}#K$Gqi7ySxLr@M1OfjJzF+lr19)oQEO}K(9rIe1bgE3
z;d1JbQXVX^+>u05(%qSEC-ew8PnLGX3Cq2sx;$9&1oK*yW4--bNsrC(!RK>nz(2Bq
z{1pb}bF>WSlNJVRR^p`AW;WZC5th*4Ho3|M3^w>YQnRM`%Lju?@z+Rn;77;&X`m;`
z_v&AIQPx6>F%x#i9=d3f_|1`|R&;+GmmVUWy~K4izDXTQd|De1gTPLh1V2IGVigrn
zm&PnQMKV<*i|``VFu$6Z9Y;OlSJ{oplnKad0@Q*}^r-ut<6M1AYDK*J4^EZRVY>UQ
z5@0)R6WPmwBMX#`e$^PRnY+LVFfow5^;PM!-=S@%1bb9s5uG9xlxJUl8Mm#e++uxz
zu~MB4UJ1~76Lm5U+zT0n*Ltl42wZ+eHb`xc6<~1B9lI5f0PTx^ZZ_OTnbr!n)E}ak
zG0j21;bPUBsRrCQ+6!`()0SSAdmPv+&XGyq#Ao}~gk6V}lFipS)gH!%Qffo3=##Q>
z?|esF`wjQjqxK4L;pHQJOOh8gmwp=fnr=G!emNk}UU&FLoGBCe$W@`!E+k%Hk<zXi
zD%7oX&P%k6L_2L&apBl~co#nlKey?-mSc~=E;8Ge)rSJN7~JBCPrXxihSs!J2rr4S
z1rL4ef_At#2bZppR9<DVBGxV87;?VRTllAuVS|wufrV&4`hwy{Th=`o7qA(b&{Lh?
z!*7>lvCPb33P*8}?utW{ki6JszHDHos$kVc<D_olydfX$M@`9RPKmAlmLQng@Mmkk
z??Ir0&E#;Uhm_^iU!;s*Yx{BfnCdTO+*h6K(Jy7Z(2OOPMt>q*vr2+t*F?K@H#pmZ
zr#YfSpf*ggsoa+v7)ZitwemFyLk>A^TLl48BK2O(6tmw%1&eh}r}AAC0%qfOE#wpJ
zbX?+o!dQ%@3XQiU8)VAtEoM+u1=r@+$Vpp3_>t?j<mZ>cn9!lA(UsWTEoRPDq{0;r
z_N@|S*jax}iF_nJ)3HgZE-a@(1-5(<SnEet7`nvzJR<NizO=eI{RH9Kv>+LL>IwXR
z9|k_`{Zt8rflI4)9Nwl*dr@3mx9Y0SY&!OjIp9kh3O0%8V-SY*_%p1%5UC8kyDi5Q
z>cG-%0SKAag+aN8%U+^#ze@@V@580t(#<oKo>A=n;L1Zf({s-cd3{ZwvA3K;t`v&5
znKoTX4})#xd+khJY7fcpao;^|o#P(2Us-9};g~1c>G=EU^@YAA|MRiSdEUI8;?XFf
z@q##?kglC>=dZ`9L{{&-K)%}%6$Sxwu>F;USqkw@$-CkzszOBgqAV->Cr=7;@mm&E
zRCluFmtyrr%Exxa{JJq9d^1xwOR#Ib`8p12TqjXfNx+>hA?diHbz&Cmd`cB)?Ro!7
zKgfbeSCZz=!=ASvlLzI4zGtd1g_ap-*(#ZggLKD6?bqG*rjcZs!&SUZuph>9S<KSQ
z=^6nqQWDO>Atr4Q{LRRA>f)A>{`K-Cr%Z$~*C5}ZkAt_Cw%10MDi0hhN_Ffh?n`1+
zd049LBX3j?^x{S~(8@uF^78><!MRVCa2Wz;m9S{a;|xyNSzn7Rv$iSyT{}C^U=mqw
znju1|6Z3Z@W|f-zaF+_zA|wlZ{ipUc=$D&dUzHF7j9Md)N4f*3y}tZL5Uu;zd(0V^
zcF%r4;P~Lf$Cyi!NHYMp6rT^l#-#t=Tke43pW{+(`Qi*()nMxYSF>TSMMJI3Vh6NV
zOXAg&+Fgq8=9|w!>~SicpEh^7Y*x!D*CAtj<<}~Yuf29-x<bpD!2b|i-QsYN>(OeU
zbh%4-{2te4nTDiZ7F7VXtiPw;gOUv%DkPMv+2Tc|E3@@zsfjTS?WXqx*J8VfoAFty
z{!8v3@1qz_30>b6EjjdAQXN7J%GPgamAHb+yWp2<vND4yLQWI;Ni5m+gAd(rZw0))
ztMRXB=Y#<B$A5_Dqena@J>AK-%eA*r-x;T3nzxjxkEx=W{T`a>?ewB5)l1;F{B>XA
zm-d#rROA*kVpvbi&t?E9zV7Gx(xYY3f{+slvd;AVcY3m?r@qfWX}nQVHiLe2H}|Pg
zVD}UEq2@}8geiIG+v77t2_CnD`Ak8vi>W^rvo*ZV?3A9VD^+T|*w;%?t!IRd&TZyz
z^mTIoM%{lo`E$=L)YPc#8rwT%-~AW}iJ9f-a3t^QS2*u{vFGB}e?l^;%2n10uVphi
zjm88;ejC{cJ$n<qfq(W-V#U=~^hM15IZz$SnDg!p1$<VN3mwvd*q={kaGNoquQt-Y
z`9C8)U?TV9khpbZ`O_#?mx#{$L8YW15VtR7F3A22o<>8icHKOZFr>~~ACe}2c3IE!
zDS!Qq5vbI-<gJ7_W07;etra~jlcA60f7cs2Zkcz~SN()2UubKm3}fb^Q*!7V`dYcY
zF?6C-U;S^EdpHie67IFI?rCx6HMVxx3S{&zO|duU&+h*95_$~*_7_O#l1QS2eh*0K
z5nb@HUlRHUmfH<)DNOB}kr^Gm5^8&-4f3zpSyF#|b-AiUu&E9mVTW8&NELq|>21?r
zFXcFwD8gUz<9VjI+2tCW3nC(*?aX@7`ZhM+dlIuUWBG3@=~{n*k}eSvCCi$n54Vbh
z{xaWZ&BL>FBXQXHfoUf+AZlNR-yf)orURSS(@rrBK0``_h1&gww&U{;U^&NGvT`O_
zv3#~aLye~_u`<OCGq$B{rm~3n8(3MR_1%b(>|hY}mVadxZ+9$M2{Y`a<9ly@YLM?Q
zmDESV{>}L4+M`~VjU`$olreIs(^u$a4+q~tK=39%LljmP_ji&yUF$zc>i#47AEK1E
zp}u+)r?l9!Il~+fy<aSY$8NdXG(ai&8uEm1(H=ilB3|26ro`U_;nv8YjL|(c5!m{n
zE|1Z&m7$x<jjHX<g^m3|GWKAz(k*Dm)&QLk6EbX??^|c-_-o#p6{9itN9XP7%)0mp
zh1UXlotcH#o-?6>y=kB=V5?7=_lCV;jfdK>_p0i~f?1ili$>4_bC1F+{+DSfcvaIZ
z+y2WBpW?mgb9UrLezWU&Iap$bxm0}q{kwG+4U5s?k^W0<E|hJzG`w!F;k0o(3=Vo#
z#XaA*8^2uC9Ob5#=T_N{am-rDE5{THbg#3;FDr@b{<g4@0!e|EdJgD_s5X^X*$O^r
zUu?gY0;YiNODBX1JMtU?+BQpe)VnPU_$#*fsv`NZ>VK<1iTzgAb&C8#A4Lb^TF+S2
z_6!L5tOu<INZdLRCm81^+LyFK@bu+&UBnM7CADpViUZFXwS{^;CZC;^)dltlt&Rpz
z0~8|Q?I9nfg96rf8(=*X^4Tn8{*5rW;&l|pb+XvioGN?p<C_T0QaGw<-q(I{%|}`m
z*x3#f+bWic`DIWX(i+f$GsJ#maD8I11dmy<r%E)}zOzj+U?}%4k1`uqC{j6G2CC|N
zEC}+6cN}2<QD<uu2cP}WgAhjHel(i<4=9l&(Nwom&CoE8$zzn1ivALBqRaPP&p2_v
z4u+0d;MZeH%CaA>BIar}Q9$h@(M()kEGLR1K_uDzK_l;ZJ{mf@9W==gjz7G6B%RMV
zOQ3&tey(V~(o8avtyUqiOu*W;$z&)Y;N>xYI^Ib-i-_TH|7F*C&V%gvS+f^qjg7L5
z0QUBigDfVmha$m_bxPcb_uRxEJtqmta=`ynf-<oLB-ThfYo^Vs&{hjp800FZS5;w|
z#eKI+^XvA#>e`<HZ|?pBunSfEZ=aQ!({$%G)b4Uy)!sTz%gBg{I$IBHY;>S~?mbu3
z#B0`k&QA;+!2IU{%fLymOD(#p+9(lwVhql0oDcl;6@mbeGwy7?MI6f$5f_nszUuzz
zpnELzwxA#D9ffD(C%OA$%ffcr;zwxOk;N*0h7KN2p%qBn0JdSte1E%IJ)IFJ=L0!-
z@Li0~+uP|rTIKwlZHT*%1M254kG<{G<&F&yc#c+%U8Lfc4z<_`#?v|2p~t@?TLu{G
z(wkl7!bV0H%(14a`3^gegzVQjA?W*q$&&mCOQ~jf)cf~0(Lf3!qC3CP0oXOJZ$Rco
zJt5vESm;T*4=qA-SzVHe%?=Q>aUBuu2s_?c<J-_0VBThF+c$I}#Fs}X?v5_lCy-&^
zo4QuNR1RVdBy*r_E71zhv8RNN)}J~M&d^v4^@BkFZYKf1CNQROfKaTMM)ld(x-)B@
zKXn~>^VzUMIvqJ_ab@@E@&c+TserzkEe-sKTq>o|Z~{|lTvVWbrPccrc)Qodu1Ndg
znRIZ{wMQm#Hl@y8OU?&0w_#Q<<a4rbkQNPk_4>=z0vjJ2+VA!mGO(4V_EfO%Z{(>p
zzF>?PZL1wg0In9E=7)bQKTYi^bc@l}YIlBdHw<cgxG_}|q#-ShYEFXBVwGQ}V_;A#
zO-4WQ#M11Ug#dhJ%Y6i=Q(SzN09dWLEM1uExP8W<M$#7c9qo71sbDcK5BtGTZQDDs
zOQrhL6I`mBiwS92Z(?koDHI6;1$G}2)umCJPQT3HAuBIp_P_3!ZZcaG#Go)U?=+vO
zb(Gnl1AaewA}u@nHM1o!gyhLHWVT)Xf^1MB*Yn^PXEU8gCbf`qRa2vnuiv-rd_m2c
zX_bgj{BF7Ra*EGAZMB}%;f=*YJq@w0dcJ!YDK%=N3Z&QWq^brbem-HN3zwPW70sN>
zl#1e)H_YqPrK_#e!qq!WPAZ5(;GPgln?V=(!5rqF!B$IRytkCxVu5+6sZDD597b2c
zj~aV}xVa`Wb_*!7#C5|!JS3LTs4KL={8s1^%Cw!<h?45DV7|(yX_Gh0zQYxQF0_IS
zD}|^i=;;UM<<Qi(z1&>HNBNoZs^}XV^%#3xCVhEbU|E#DCc|3+n)f}jxD;F6>P9dG
z2MrcvX6UNAEEa5u&z<M9&EO(tNHT*(TTA0j)gbWl9ruyuA%Bs#E)yHY1GnvhYDos{
zU)Ci|>{2J2$IPQ^i;aZ8_(s|G`1ZjvC}+f_6yS6$QCX~O-Gd+B;`B2pf;{`Pq#X0$
zO4?u$otWAiNQd%{sGx4xwoe<|fn<8d8qd(C5uNz_nvJ|o^R}%Fv|^N#J8?=CTl~i_
zyIx+96n+nf+e~%D5qGO0F1D9kGi$Spn-&45$NZl_X6)x<A|TLTY$rm|g^BhN5!RNM
zm)|{8UMSs541EMyx?sO^->>o9RX?C#{tD|mXH|{WQ_Vvn`xl|B?J+zvgC!ZvjzGY=
zKM3wj#(&(II>inrI?KTOdno@A<+9NkDG(KU`0Iao>+}DtKzjJjz}xuWTCo04mjsDR
z>i?>?3kIvYv?jP3&l0c!r2xca68Fy0-!*v-z&95(-=%#L3Asw(cA;lra0TgF2aG6C
zq#ZDdJ{$Y0eBSYIxeg?ZmOJb7`hTYA9J3{P*Tne~?5)pHLhxII=pdqP0}?^ha{sVx
zWM*akSzYipC%FHuy3pVcF3o+P2O@Ovj(Jty;<&F&dG__UpVNXEA3;zT{i-f<a&z0!
zXz^VFxR;PfM4QCe(V8JZ&=9j(_2K#lu{<72<=LT1=i`I#!igE`-%6f>;5p$u*>_aU
zMzJGw-VV4O9C0xr2G~D{S2r-kEAeyCl_?^{e786C>@1ZNx?fTf%_(kkF-r-Ii<gf%
znhzcw1C|+z0gW0QHJWY7$gGR7TT(>wWDH+OgwBEFMhk}LZbigc*1tup{?Pr;*{L*0
zjVvO$3?B2qDX#=_O{+J$$oDIwt>(;yk%l@!@gozg&h37U%*H7kYnLE5z5%g%^;O;e
zY~8w_wvNv1Dq+sw{NKu0ogSkvoqR^=Asxu^n?$pbV|+A+V>jCxaRN<bj1kiY8yNsT
zQa3L{HetjEg4cRO57(@>7kwrul=*^3bQPg(qBBWqdnwFs&M*8wMgtY=eM0wJ|2w-D
z_vyBpaf>sXiKntXJo0Pr`Bc<?KX9Q87nlP@FmdDI5l0l8xP^~yn-?B(JaO!#MAv{v
ztNt<(Ur2hz)V)gRaot-RsIFXYg5p71eELLNbaiD62ptAnLfe_k@iNa+7OGMb=<#9X
zePTzckk5e3J9$-DL?dQZ8*>q|e3c=0%?tl&r;?}e?*yPTpD(C#teq(yj%eH6omf(=
zXprZkRk9oKN!M~gt+J$Plk4WolyzrU;=PvMRws(w9YUr#^`$z0D|=wQr#RKQTp2U%
zDZQwczQwvVwC7yn)S7Dd5ah($Sxzl~#q!m=A>)l<)*GVey`ou#7R572j0@F^QLl>$
z=G~T8@CBRCE+$WWMvs(SU9nfzYPGz~%>u15EL`Nfvr<fOhWl`T*)d;<SoB=2i61d<
z8?OC4TjV_nFLy~u9$*N)wazSPAL|{(#X*MxWh)=3QUz{(_*<E$Fa_c-h&KaqSo~ay
z#L=cX%DR-s8JEn_v%{{D0{b8kb$^D#tB-kKZ;`^*<0<w^LY)zjCUbuVR6NE3*-O)*
zK{t9UTzyLxpWkpez;gGT2`m)pmS>5!oq9rO$B%fd@XX)P<sK3X--F*iSbb$>F?`Fx
zx@_KIWSbSIM?MU)Qg1Ys?%j;G!wP+OleD(>u<u%u;PvKi?(pV#P@seFK93+IC{)z_
zfTnCr$Xl*Wi2h>|Av!C&v(Y<1vHVDI9SzwC+xbQeMsVa{*S1l<=}0qdzq5TJ7_CIb
zdxG=PJvpsAi2Oqu`QrPM`=4yk+))->8~y)RdFLI~)S9kwjumMhj$)x&K}tZnf`EW@
zq)I5EO0NN_(jp>KEvWP+(yP=^Ll>mi07)P;0Wm;`Kmr7kyYZYkb7qz^>)yHl-TU{q
zlC`q4_qX5o{hsIdY>KW6Sn6jcS_B`mOhG49N7Q7)(@aEUb~J*0md~YzuQu*)f5=IV
z-No@ZkB;4(eJG#)wc<G6_vM;m`1dE=7zs7waL4t*!%4(+e)5jY$I;G0px`uvNKv+f
z%UZ~q8ARe&RJD;lHX^Wd?qJO#S1kuXNdyZu+RrgMQWQU3#M>%l+6h!IU*9wKCs_js
zsZV&T<N&j3UH{JbI?w1{FY4Qz^ocK${8c?5dcQ$Dpxt<c-_)_SMK6nI#WeG{+Pjv;
zB_uQyJo!sKJOU_-e#o2&8VM24j{OnsxF#u_+n@5X5T6YNoPP+bn5}dREvLoY-)FS?
zq3_w>WE8lq^BnoNQ`)rSsdNU!k~+SN*AA06p{TKUz8QcJ2<l}M0jgQ!aj*=eoD<)}
z94CW@<KI~#|C;c~rTH^5Dg-cU2mPM#7>wh@o03*){uc5GAadJjQvZ%d{dPC2nf}5*
z-V0c{mh<;PY8n0dx-8J;!j1KAz7m=DuR?kI{Y02od7FIUY@Syz#*l}vz%IkN+_2cv
zQH?nHC)~3^<+aeK54r4^KTQ5!&&S@?A}G>lOFEfw%-+~fCN1uT9_7W@2DpW>`lpbP
zcf6aVoAI6akmGp|r7T-h%#bE=k6?B-sCXksTcu<n$jVvg3g1C%isZRhu)gnom?ngg
zK3{az70wptp=68Vv0{}satr9hpgmsF2LJ#jW^8*PI^DY@UThX0DA#x}=w|~5BQBnr
z0{8U}#Y3KxGp=n{Zj~-}^YuSk2tk<;vLWj*aAd&w{%6s4^4#590rNFk39RgW=2fO+
ze{i{MFuX_fo*BD}N4mfl8nA|natWxVk3VuF{Rg*ReAB;_wzn@@L-To{rGdxM0sY&^
zPYA1vxf!dY%rA6M({m92zq{@?|8(6a&9j>SjInwG6P2gwU{K)w=Zse?ZhF;@;a>}-
z-%Tk)Mg^|rQHQ?t6{!|XPuB5I_iX{#vDr?&>nC?}AGmq6rV30+h;bhKj@tcnG^FI_
zo}+6mG%I)V_O&>Oov$0v1YI<OYw5kN@Ube>hLw#BT=E;;u+q#?s;P|w9D*@nt%W~Y
zGelCG4AvX$-<u%GNV~h3HYYx5zxveSoF-jpG9wfUz&q(>qhm-FkMFN{wPf=3i&!QQ
zC_KC)L&ef&v`>9A=XuUFvtimTO+EEs+NDq8kGTFVr*Wi&jaTKAVA0y7FbmVmK&LKv
z!*?Avc);M?zY$oA#J?tj@gM7T^YDxa<c{MxX!8s#S2T!jp*8<n!6sDjK?qledY+Et
zmPZzdZ-~*#Qs6ujG%_I^d@%9@(Q1+V6LB@f==Iup#Rc0iOhTSbRStk@y{@=Gs;s^;
zrE<&WOyA9dkUtQu5Cx-Pp*Ps_gG;)1oOv;x^gWkT-rWITQ)g+v+~?mTl{m?n#V<w;
zb;3uR=}1W3wjQ54)^Cws+9;XxmVvD;MzUA0v0q(3v|?B-wl8w)_sbT0wD3M-w%xlq
z3Xccs+2sK6l!I(9xBd^-ng;Tth1}s-=Rf!GV}qrJf9=+bR!yU-g|gDS^~tMnSzYQY
zKd2vu)2cr(TgjIT#Msv6U=vQHWqXOW{-f@k%?Jz@%jy%!ee(dMam@8lm|YdZ$q&_Z
z#DE~dY&P`OH{Y}Z2K}~sb_R64`5N!8jIZo6T=a_^>4K+1vSWq^J{Dea9qJMS#RwKz
zWQj|x+kd%^HgE<U{=V)*KH&L_qn+mqS)2>Lc+DQBU;*I6cFPo3Od!Pi6X~4eXs-d<
z3$j-+;L@v_GIbhC-|Ql8eZrhOsYf+b1g#{*BdZYrMteI~B7fS~7HmaDMO6Wb2!}9S
z=YtH@k9aPo*TiO|g38H1^9-w*n2!7#k@pHsD;HE`CSZAOlArNnx-1#w+%E1nq{cBB
zOM4C-JXq_|kpAEI`CrPpClWOHvYRf?(1~)Ah2Sc|SN#IsJyPig^Rx!cUO|9Whj@Nk
zdlY+Hv2?oBPdje>m%DLMe4%gT*?^$B0V5*dw@c^Rp&Kt5|Dt*#UHl!F9L4k#hPQWp
zs#uuf{y1`GHrSmByStlq_gefX4c?OJ(ytYVzJGT3d!w1^=UdbE<vN@DOiUGT{b5s6
z4Ltl{7LA@;y`OtzrwO31wn>isZqf10xm#0G^`=S&{03)FMcCFS^s6JdtPdmeVh<)7
zHA!;D-|XuM*f9z8ckQ2w%{1%*^$Z#jP$OvGn7=OLpC8~`fflJRxJP=mlB1Z?Hlhp7
zFCP=fF<chL%e+7yWI-9=D{ZUB74~!}T6NWcdR`z*3hEqXTOYRg7AHH(5vxVJ4@Zg+
zrKC(}{QREM?Jvr&EUL+!5%i`!LcrQ3#YI!7OjYmy_ql~LhZfnqDE8X6@4^Tcfcf>t
z_JIsP=ri{$(rG-vshYbctDMT@X^hucH@f7y`+bp*mzN+q)%Kh2VY?(jUvVg3Q+&=q
zSe9Hy8d_{q8Npz1?(fQ)eOv)kn)V<rpdf&>?nY-e02FxJb_IQSrL%^5_wT<rWWb%|
z3LNV1{&PI~gumUtZ^{n}M_H9vqnzmtlIk{N8f}f;59xtR44(rZ%2xxJw&t2)QTu^>
z`@!_!79jEh(qj|t<lr!*4cpW2Pm$CH5;;b~HkT0x!w_C{sr?|X+YUFv`e3sMC_q%*
zDi&WO0DX`%s>0SEn9(MS@w`6$XM38E<PEl38!`@OK=}y9f_hJ+)az8|&{tg^6m3&D
z=boy+$lbSCE0oqkT*FkmVkG+0WgtO&TLe+eq3DME7*GLK_4O!GXX|mF|8u}?%b<&B
z{Im~c|2Fj2M~#FX|7W=XnP7<|=)}QQbvychHgdNJ_U{+pVm|p};$Fsm><_usKf!GU
zoGX70*ZY%YK&2Abg_H~V29NH%I%)s<#L3ajRtJ1`M+fXoTSiA@mB=xF&B^<;k+K_?
zG&%_Va>E@p!eSm4F_FqaUZ2YLW<#$%vr+h<dRE@dcjv0{yYP?^+Xt+pvCOQf?bZ@c
z92i-WOKm%zOx#o}#lpOCseEhMO}lBH1F68th?Wg3YxLWP73dZq9_Lw1bx}Npo~8R0
zNHEc4;&mtQZw_Xel-Ti4GBPo-%F?+X&&fn{aB!gTOX@kl`A&Is88DZL)Bf=ZnwGIF
zZq~!LU;WY{#*OC5Z?r$A0Pl}I{c#p^Bjk56-~XTG(LFL5Hb4sL%`Ph9pE*i1t4ChR
z%b2H9NT&Pyl^L=$`rTEIqw|K%>6{a$p7(>7dh`#m9-58{5>E<v4_vij3qYDLa4>K)
z=M;)2x3rrmY5rqGLUaA_KLVySr;Y)laT*$(BSkOUSS*pcH1DnOSVTE6vUH&WK5Aj>
z&X}(&E0H-G33g=DM$tUjXA(_fl-)qR;7r5!2f%mSj0%|qFc#${a&iJ1RJdOtVRDdT
zl42zActs~zEXj0#`4MnB<44(DwzjmqlpegdGFj_keTOvVi3+Bh0`B>D)9pxHL#Xsa
zTsU(7YoLm3pfu&t#)IGoxlWDE+iQNX>>3K??!GN<{ni^UEywFy-o<$4_o~3p*ngT+
zW}_=$97rMV5JUFUi@Gus(BzHz*8Mgc_l+>4?~`yePkKrNw>g%oUYwM|W$`TYz`SB7
zEHP$yN(YMA1{a$(NC0t5)8M*z;%J=;SCE(l6q}l{I3mrGvF;}gcLTXdGj;gxB8xPx
z$Inpj3Vi$$j+{;?5y}b==cSoq&Ir!nlE}VUjB4^%og~VLDU^=Ax;*jC>Y;zX(6w8~
zxMhHAzd=8K(b@d=uVmr`oP#ZkXZ#b+u^EnNtQT!wc5=UAZrXT*GYYibWP=&V57eQB
z=Vtrspt1O)1TBk>@(TV9_4wz}Sbto}@bq+AMnQ%KM6n+3F#G}TY3jr=jF=CprBVVR
z)i;*D7}loN&kuC^zJ>>|MOxjTcr(6>9%nccQq<PP1v{Ik_2T0j$?1gkX7u4xrTpf(
z<hi1<3d=lk)0+l*GEG5{bB}D1CMfsM=jU|_u{}ja%0)4~&y|))po=0g6_i!Qu&9RE
zqADgtm26><wDrsx`tPD@_Qj7M-e1dTuM#yIKuhgcMz8q?k|%ai@ehw17r}T}i?-)1
z=jwJ}53W9D!$wRt@U9o74f3tAW*GRWkVP?kGs+%cbFh=!U6}`^+kxBqk8@0&^aEx_
z$W?p?-+oz)2tt`tIoX!G_Ds32^mmVAFezNfoLP{o(n|U(+4{X;8%^;SnV|(HMdoTq
z^SC%ODA+j7!Wij4eWU%ha}<fuf+fCiJqj=572%LoQDksCzS@=A9Z{)bO&THzfg`FJ
zU$E;LfNSH^C&uA+;wFeI8}4f*102)F0n;`mH`(f-N$|ottG(BZN{9!F!B*cI4v5m7
zEO2oJxEB?v4BUh6%tRtbbX>ukZ*l(lECl5{Tk=puy;E0bL{rn;GC^ubVQRwA5j?bp
zDHri6aXKAFBqCS|%X`}s6BFsutERT$^9T^BBWmWAdB_BIK#?$CNP4KW*5yIOrd;K8
zdIl*l!<WYRe)n;WF<d|?$Q#h5n6TJLTYqXmgv~l>-yxfHbgrV~{oH%^R!x?_89L$1
z1wYtZ6Q_92FV#pQ_jLT0M9X<4UflNb4LsmPwx%(s;12Fk8w$5`OsJfd-#Ue56X=D#
zGDFYiGcqDaWE`6$xI^BO=R59i^A*}|UVRB0x$w=8uP|@<Q$=Ijw}H~P9<>*+XU%=7
zQM<ymu*A%_;=C<V>@S>3u!);%16B%kDBZeDAH3o2=`p-BHGP;ll=}HqQJ3}mB5AiG
zF54vmQx=lYdf~LBoU?V&k>c@zW?xB+_`#RhMl;@<nDe2V0h{o#y|d&_W`X{f4d5J#
zisqnsLvabm+x81V8kaE?2k<B;MXo5gsel!amty6J=8AwB-;$O)so4Q+SPSb72`^cH
z{6QA=RHv)Ji=>uTCJ2{>NOv-8#O9YJ2SAIzqRt?pxNy+X^0jKo`PP2zYIAAd`}>Xu
zYy@*F^Xl}brX_YedP<q#JhV$Wf2**g-@4Bm?6TZKG+gN4epR)k0-0nxy)JVOFqUq+
zUlr55Y;197^etCM=FY382>Wq~^s$R13L!n8qMc<x>JWvwHTuXGn_7^K(Tx(x#|bu-
zd?l1Vf+OCyoX^d4a}*R<$g*cUW6+dQu$_Y%ESF8t&=~T$&DcpWD{;z$yB9dCiDoBn
zVjc@0tgh@+yHFkzh?2{>HPd1?-n(tM`8_4!X6G`Ncj5*M8^aOnGvaQVAtsma@+WSl
zyu3wn6{p{AB7eKr!MJ&awTpToW+0_gI=+H`-G!mMvFSHYJBCiwmJd?V<IYl-S=gl&
z_)I^vscX?ggh{ff=lO%Vw5f?Za#a=Xn$}xupJ%j{m*>HEZ`sd%P%xULTVXH^i`Hkr
zH0>^>?7K`OIV-LM@9HNSxuR}O*Joq~WsGgrhhM}!bP(@gl<fLkr{z8G`Nq|Fh9M_j
zz?=&zk>L^CfL@CP(ua<ekoSlk*l!!{H}qkhMYjY*Wjq4`?!|1Re>Dn++dN}kI7k4)
zX0XD1W1YZu;CAO1lX`oHMYaSzGP~<lFvv`<!N*?Sqt=Qw_jc5PvFk?xhts=0TpTf;
zdEsiYeAB~8VS#xc_FPr^AV!h5hi|=1^pJ1Xu<!B~-JG^rS|!%4=)qE2=NE@$RUnWu
zq=X8luokzszwh^AvPPfKp7b(SuKBIXApOb{`UzSLWp9ES1q3;WNK3LP!0#RI1WKtE
zD@1Q^?FSUc4~m!d7bnvvw=>R=PffjD^6CwjAFt`8d#{Mu_I`jll0W{Gx!?6OyW^QS
z1vt6zl~@KzYsT+LJw47>gAV1NwdbD2CEb;;!-n%rN)#iRB<GdnS5}H*qDEvi5(N8S
zCBD=9>|+D={OTZ~>3Q~O-pQ;5$@YUM>=iV3(NWPfVg?V*C%SLx9>@+1Xtv+eSB>ZD
zYRuOZ^J5)I(qBV5&tyckUaU-JNjty3mpGiC$}i<DHNeQ&A{eJjme9no*2j0GiN5Mw
z&-ASS<-9<cV{iPyWm)oS<<5NcVBWpY@jqT5BBZ7K)gU3+zM|X{aFW?pqpA1yTrAY>
zMql@MGl&w@TW|CjyKid^DU;|I8iyqI$z6<a6=H18zq^b#e0kH?6k9rB^0D`M(h_;w
z-8s8%UeJ{8LI9uSlFCuST*E?<16$LKlB9A@-c5GWEInZen6uIM&>1)#aCMe4H)DW@
zBoYTyCPz;)bpVIQo1)vEj?StRBQl>nHDw)Z?aI~p80B0>Q_01-_0mikt5J`a7wxw<
zie24mbh8U<Td%4-bO*~AXtWztF0ko&W0ZRMmR@$|g;`aqP{<DVD68{BNS9lSJSq#O
za5>KH%jHK^ST`}(k$y00_bG<Q2-++n2#TSMAEBM$xHAO5(B?`aDwC3emWAHan3gF|
z5*HIJv?5=Fn1LE8#zB7H*+MK_-7QK*Jtcu3^y`L}g*azVxQ3vyw*aN8`KCSQUZ2?+
zA^gm5aZT933pQvcMhi@`e)0W!m}ibFt%G&g&{*jNwBRFC^1$h}&8Iv*ouV*)CTUj-
zkoP_M3HxYvF+&cJ(Z;><wIE%DZK|SHW$?s#8;5FpUAU2A(0cWN(dI_IpQmE*S}3-y
zYy{YY2%<YR*18uL8#r*Db-%JnxI_RgS{KkhVV=k49(W0wX^<{R`QNTSJ;OfOljM00
zYj)b=`$TF)re{@u^v*RHmeTswTzLP=Fa5vf?P9ME%Ed25M5AFMp1~>9OC??^U8q>T
zMJGP`57N(#y}gX$jDo3ezJ3NXmDDVLEyj-DM7LGK-41HUH+F>)!PnpRKbGhz%yRU2
zUMwO2BaWA}_Xmv2s$j-l3`Rv_ur*_F+s%_Hcmx@<Wte>fv{QCXYV?jrPW36(Idq``
z_0Dw#xQz)6MjhOhbx-p0ej%GpL$hP6nu*3D0xFTpuzf;TEkKv6v;;ApH|PeZ|5GJ<
z%+>w);ax4rCC}C}CXw`1Lh(oP=+9e^T%hRAT@0Yn6o0!0Z9HsB5=Vl!aVu>SPk3+q
zQFZ^Vo(9(Z59{Q=*4l>^IStLbyZ@pT|39;wI6ebJr8k{6<u)@j+vRK-BYZk<@g)F|
x-Fw#p=UbbIM}O)4tiK*c&;IjOX;F&afw6yoU+)$1>%GHuH6^Wkr3#i${|oW`tpWf5

literal 0
HcmV?d00001


From 2854c31f490d6b9a4ce88579bb07ef21e0c7cc1a Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Tue, 27 Oct 2020 09:20:07 +0200
Subject: [PATCH 009/825] add info about setting for Edge > 77

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8409
---
 ...rosoft-defender-smartscreen-available-settings.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
index 263e076dda..e0ab6e4909 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
@@ -45,17 +45,17 @@ SmartScreen uses registry-based Administrative Template policy settings. For mor
 <td>This policy setting is intended to prevent malicious content from affecting your user's devices when downloading executable content from the internet.</br></br>This setting does not protect against malicious content from USB devices, network shares or other non-internet sources.</p><p><b>Important:</b> Using a trustworthy browser helps ensure that these protections work as expected.</p></td>
 </tr>
 <tr>
-<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen<p><b>Windows 10, Version 1607 and earlier:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Configure Windows SmartScreen</td>
+<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Configure Microsoft Defender SmartScreen (Microsoft Edge version 77 or later)<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Configure Microsoft Defender SmartScreen (Microsoft Edge version 77 or later)<p><b>Windows 10, Version 1607 and earlier:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Configure Windows SmartScreen</td>
 <td>Microsoft Edge on Windows 10 or later</td>
 <td>This policy setting turns on Microsoft Defender SmartScreen.<p>If you enable this setting, it turns on Microsoft Defender SmartScreen and your employees are unable to turn it off.<p>If you disable this setting, it turns off Microsoft Defender SmartScreen and your employees are unable to turn it on.<p>If you don't configure this setting, your employees can decide whether to use Microsoft Defender SmartScreen.</td>
 </tr>
 <tr>
-<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files<p><b>Windows 10, Version 1511 and 1607:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows SmartScreen prompts for files</td>
+<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads (Microsoft Edge version 77 or later)<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads (Microsoft Edge version 77 or later)<p><b>Windows 10, Version 1511 and 1607:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows SmartScreen prompts for files</td>
 <td>Microsoft Edge on Windows 10, version 1511 or later</td>
 <td>This policy setting stops employees from bypassing the Microsoft Defender SmartScreen warnings about potentially malicious files.<p>If you enable this setting, it stops employees from bypassing the warning, stopping the file download.<p>If you disable or don't configure this setting, your employees can bypass the warnings and continue to download potentially malicious files.</td>
 </tr>
 <tr>
-<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites<p><b>Windows 10, Version 1511 and 1607:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows SmartScreen prompts for sites</td>
+<td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing Microsoft Defender SmartScreen prompts for sites (Microsoft Edge version 77 or later)<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing Microsoft Defender SmartScreen prompts for sites (Microsoft Edge version 77 or later)<p><b>Windows 10, Version 1511 and 1607:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows SmartScreen prompts for sites</td>
 <td>Microsoft Edge on Windows 10, version 1511 or later</td>
 <td>This policy setting stops employees from bypassing the Microsoft Defender SmartScreen warnings about potentially malicious sites.<p>If you enable this setting, it stops employees from bypassing the warning, stopping them from going to the site.<p>If you disable or don't configure this setting, your employees can bypass the warnings and continue to visit a potentially malicious site.</td>
 </tr>
@@ -169,15 +169,15 @@ To better help you protect your organization, we recommend turning on and using
 <th align="left">Recommendation</th>
 </tr>
 <tr>
-<td>Administrative Templates\Windows Components\Microsoft Edge\Configure Windows Defender SmartScreen</td>
+<td>Administrative Templates\Windows Components\Microsoft Edge\Configure Windows Defender SmartScreen (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Configure Microsoft Defender SmartScreen (Microsoft Edge version 77 or later)</td>
 <td><b>Enable.</b> Turns on Microsoft Defender SmartScreen.</td>
 </tr>
 <tr>
-<td>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites</td>
+<td>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing Windows Defender SmartScreen prompts for sites (Microsoft Edge version 77 or later)</td>
 <td><b>Enable.</b> Stops employees from ignoring warning messages and continuing to a potentially malicious website.</td>
 </tr>
 <tr>
-<td>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files</td>
+<td>Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for files (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads (Microsoft Edge version 77 or later) </td>
 <td><b>Enable.</b> Stops employees from ignoring warning messages and continuing to download potentially malicious files.</td>
 </tr>
 <tr>

From b69035ebc4644ab790b7a6d124c2cf99704fe61f Mon Sep 17 00:00:00 2001
From: ShannonLeavitt <v-shleav@microsoft.com>
Date: Tue, 27 Oct 2020 13:58:45 -0600
Subject: [PATCH 010/825] edit pass: enable-network-unlock

---
 .../bitlocker-how-to-enable-network-unlock.md | 44 ++++++++-----------
 1 file changed, 18 insertions(+), 26 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 5c7b1190b1..7ba0b08f43 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -1,5 +1,5 @@
 ---
-title: BitLocker How to enable Network Unlock (Windows 10)
+title: BitLocker - How to enable Network Unlock (Windows 10)
 description: This topic for the IT professional describes how BitLocker Network Unlock works and how to configure it.
 ms.assetid: be45bc28-47db-4931-bfec-3c348151d2e9
 ms.reviewer: 
@@ -23,45 +23,37 @@ ms.custom: bitlocker
 **Applies to**
 -   Windows 10
 
-This topic for the IT professional describes how BitLocker Network Unlock works and how to configure it.
+This article for IT professionals describes how BitLocker Network Unlock works and how to configure it.
 
-Network Unlock was introduced in Windows 8 and Windows Server 2012 as a BitLocker protector option for operating system volumes. Network Unlock enables easier management for BitLocker enabled desktops and servers in a domain environment by providing automatic unlock of operating system volumes at system reboot when connected to a wired corporate network. This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware.
-Without Network Unlock, operating system volumes protected by TPM+PIN protectors require a PIN to be entered when a computer reboots or resumes from hibernation (for example, by Wake on LAN). This can make it difficult to enterprises to roll out software patches to unattended desktops and remotely administered servers.
+Network Unlock was introduced in Windows 8 and Windows Server 2012 as a BitLocker protector option for operating system volumes. Network Unlock helps you manage BitLocker-enabled desktops and servers in a domain environment by automatically unlocking operating system volumes when the system is rebooted and is connected to a wired corporate network. This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware.
 
-Network Unlock allows BitLocker-enabled systems with TPM+PIN and that meet the hardware requirements to boot into Windows without user intervention. Network Unlock works in a similar fashion to the TPM+StartupKey at boot. Rather than needing to read the StartupKey from USB media, however, the key for Network Unlock is composed from a key stored in the TPM and an encrypted network key that is sent to the server, decrypted and returned to the client in a secure session.
+Without Network Unlock, operating system volumes that are protected by TPM+PIN protectors require a PIN when a computer reboots or resumes after hibernation (for example, by Wake on LAN). For enterprises, this setup can make software patches difficult to roll out to unattended desktops and remotely administered servers.
 
-This topic contains:
-
--   [Network Unlock core requirements](#bkmk-nunlockcorereqs)
--   [Network Unlock sequence](#bkmk-networkunlockseq)
--   [Configure Network Unlock](#bkmk-configuringnetworkunlock)
--   [Create the certificate template for Network Unlock](#bkmk-createcerttmpl)
--   [Turning off Network Unlock](#bkmk-turnoffnetworkunlock)
--   [Update Network Unlock certificates](#bkmk-updatecerts)
--   [Troubleshoot Network Unlock](#bkmk-troubleshoot)
--   [Configure Network Unlock on unsupported systems](#bkmk-unsupportedsystems)
+Network Unlock allows BitLocker-enabled systems that use TPM+PIN and that meet the hardware requirements to boot into Windows without user intervention. Network Unlock works like the TPM+StartupKey at boot. But the StartupKey doesn't need to be read from USB media. Instead, the key for Network Unlock is composed from a key that's stored in the TPM and an encrypted network key that's sent to the server. It's decrypted and returned to the client in a secure session.
 
 ## <a href="" id="bkmk-nunlockcorereqs"></a>Network Unlock core requirements
 
-Network Unlock must meet mandatory hardware and software requirements before the feature can automatically unlock domain joined systems. These requirements include:
+Network Unlock must meet mandatory hardware and software requirements before the feature can automatically unlock domain-joined systems:
 
 -   You must be running at least Windows 8 or Windows Server 2012.
--   Any supported operating system with UEFI DHCP drivers can be Network Unlock clients.
+-   Any supported operating system that uses UEFI DHCP drivers can be Network Unlock clients.
 -   Network Unlock clients must have a TPM chip and at least one TPM protector.
--   A server running the Windows Deployment Services (WDS) role on any supported server operating system.
--   BitLocker Network Unlock optional feature installed on any supported server operating system.
--   A DHCP server, separate from the WDS server.
--   Properly configured public/private key pairing.
--   Network Unlock Group Policy settings configured.
+-   You must have a server running the Windows Deployment Services (WDS) role on any supported server operating system.
+-   The BitLocker Network Unlock optional feature can be installed on any supported server operating system.
+-   You must have a DHCP server, separate from the WDS server.
+-   You must have a properly configured public/private key pairing.
+-   Network Unlock Group Policy settings must be configured.
 
-The network stack must be enabled to use the Network Unlock feature. Equipment manufacturers deliver their products in various states and with different BIOS menus, so you need to confirm that the network stack has been enabled in the BIOS before starting the computer.
+The network stack must be enabled to use the Network Unlock feature. Equipment manufacturers deliver their products in various states and with different BIOS menus, so you need to confirm that the network stack has been enabled in the BIOS before you start the computer.
 
 > [!NOTE]
-> To properly support DHCP within UEFI, the UEFI-based system should be in native mode without a compatibility support module (CSM) enabled.
+> To properly support DHCP within UEFI, the UEFI-based system should be in native mode and shouldn't have a compatibility support module (CSM) enabled.
 
-For Network Unlock to work reliably on computers running Windows 8 and later, the first network adapter on the computer, usually the onboard adapter, must be configured to support DHCP and used for Network Unlock. This is especially worth noting when you have multiple adapters, and you wish to configure one without DHCP, such as for a lights-out management protocol. This configuration is necessary because Network Unlock will stop enumerating adapters when it reaches one with a DHCP port failure for any reason. Thus, if the first enumerated adapter does not support DHCP, is not plugged into the network, or fails to report availability of the DHCP port for any reason, then Network Unlock will fail.
+On computers running Windows 8 and later, the first network adapter on the computer, usually the onboard adapter, must be configured to support DHCP. This adapter must be used for Network Unlock. 
+
+Use this configuration especially when you have multiple adapters and you want to configure one without DHCP, such as for a lights-out management protocol. The configuration is necessary because Network Unlock stops enumerating adapters when it reaches an adapter that has a DHCP port that has failed for any reason. So if the first enumerated adapter doesn't support DHCP, isn't plugged into the network, or fails to report availability of the DHCP port for any reason, then Network Unlock will fail.
  
-The Network Unlock server component installs on supported versions of Windows Server 2012 and later as a Windows feature using Server Manager or Windows PowerShell cmdlets. The feature name is BitLocker Network Unlock in Server Manager and BitLocker-NetworkUnlock in Windows PowerShell. This feature is a core requirement.
+On supported versions of Windows Server 2012 and later, the Network Unlock server component installs as a Windows feature. It uses Server Manager or Windows PowerShell cmdlets. In Server Manager, the feature name is BitLocker Network Unlock. In Windows PowerShell, the feature name is BitLocker-NetworkUnlock. This feature is a core requirement.
 
 Network Unlock requires Windows Deployment Services (WDS) in the environment where the feature will be utilized. Configuration of the WDS installation is not required; however, the WDS service needs to be running on the server.
 

From 5c9fae720f702d3253bc77c2f786571e0ed47a31 Mon Sep 17 00:00:00 2001
From: ShannonLeavitt <v-shleav@microsoft.com>
Date: Tue, 27 Oct 2020 17:55:11 -0600
Subject: [PATCH 011/825] more edits

---
 .../bitlocker-how-to-enable-network-unlock.md | 174 +++++++++---------
 1 file changed, 85 insertions(+), 89 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 7ba0b08f43..a514c327a4 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -55,138 +55,134 @@ Use this configuration especially when you have multiple adapters and you want t
  
 On supported versions of Windows Server 2012 and later, the Network Unlock server component installs as a Windows feature. It uses Server Manager or Windows PowerShell cmdlets. In Server Manager, the feature name is BitLocker Network Unlock. In Windows PowerShell, the feature name is BitLocker-NetworkUnlock. This feature is a core requirement.
 
-Network Unlock requires Windows Deployment Services (WDS) in the environment where the feature will be utilized. Configuration of the WDS installation is not required; however, the WDS service needs to be running on the server.
+Network Unlock requires WDS in the environment where the feature will be used. Configuration of the WDS installation is not required. But the WDS service needs to be running on the server.
 
-The network key is stored on the system drive along with an AES 256 session key, and encrypted with the 2048-bit RSA public key of the unlock server's certificate. The network key is decrypted with the help of a provider on a supported version of Windows Server running WDS, and returned encrypted with its corresponding session key.
+The network key is stored on the system drive along with an AES 256 session key. It's encrypted with the 2048-bit RSA public key of the unlock server's certificate. The network key is decrypted with the help of a provider on a supported version of Windows Server that's running WDS. It's returned encrypted with its corresponding session key.
 
 ## <a href="" id="bkmk-networkunlockseq"></a>Network Unlock sequence
 
-The unlock sequence starts on the client side, when the Windows boot manager detects the existence of Network Unlock protector. It leverages the DHCP driver in UEFI to obtain an IP address for IPv4 and then broadcasts a vendor-specific DHCP request that contains the network key and a session key for the reply, all encrypted by the server's Network Unlock certificate, as described above. The Network Unlock provider on the supported WDS server recognizes the vendor-specific request, decrypts it with the RSA private key, and returns the network key encrypted with the session key via its own vendor-specific DHCP reply.
+The unlock sequence starts on the client side, when the Windows boot manager detects the existence of the Network Unlock protector. It uses the DHCP driver in UEFI to get an IP address for IPv4. Then it broadcasts a vendor-specific DHCP request that contains the network key and a session key for the reply, all encrypted by the server's Network Unlock certificate, as described earlier. The Network Unlock provider on the supported WDS server recognizes the vendor-specific request, decrypts it with the RSA private key, and returns the network key encrypted with the session key via its own vendor-specific DHCP reply.
 
-On the server side, the WDS server role has an optional plugin component, like a PXE provider, which is what handles the incoming Network Unlock requests. The provider can also be configured with subnet restrictions, which would require that the IP address provided by the client in the Network Unlock request belong to a permitted subnet in order to release the network key to the client. In instances where the Network Unlock provider is unavailable, BitLocker fails over to the next available protector to unlock the drive. In a typical configuration, this means the standard TPM+PIN unlock screen is presented to unlock the drive.
+On the server side, the WDS server role has an optional plug-in component, like a PXE (preboot execution environment) provider, which is what handles the incoming Network Unlock requests. The provider can also be configured with subnet restrictions. These restrictions would require that the IP address provided by the client in the Network Unlock request belong to a permitted subnet in order to release the network key to the client. If the Network Unlock provider is unavailable, then BitLocker fails over to the next available protector to unlock the drive. So in a typical configuration, the standard TPM+PIN unlock screen is presented to unlock the drive.
 
-The server side configuration to enable Network Unlock also requires provisioning a 2048-bit RSA public/private key pair in the form of an X.509 certificate, and for the public key certificate to be distributed to the clients. This certificate must be managed and deployed through the Group Policy editor directly on a domain controller with at least a Domain Functional Level of Windows Server 2012. This certificate is the public key that encrypts the intermediate network key (which is one of the two secrets required to unlock the drive; the other secret is stored in the TPM).
+The server-side configuration to enable Network Unlock also requires provisioning a 2048-bit RSA public/private key pair in the form of an X.509 certificate. The configuration also requires the public key certificate to be distributed to the clients. This certificate must be managed and deployed through the Group Policy editor directly on a domain controller that has a domain functional level of at least Windows Server 2012. This certificate is the public key that encrypts the intermediate network key. The intermediate network key is one of the two secrets required to unlock the drive; the other secret is stored in the TPM.
 
-![bitlocker network unlock sequence](images/bitlockernetworkunlocksequence.png)
+![Diagram showing the BitLocker network unlock sequence.](images/bitlockernetworkunlocksequence.png)
 
-**Phases in the Network Unlock process**
+The Network Unlock process follows these phases:
 
-1.  The Windows boot manager detects that a Network Unlock protector exists in the BitLocker configuration.
-2.  The client computer uses its DHCP driver in the UEFI to obtain a valid IPv4 IP address.
+1.  The Windows boot manager detects a Network Unlock protector in the BitLocker configuration.
+2.  The client computer uses its DHCP driver in the UEFI to get a valid IPv4 IP address.
 3.  The client computer broadcasts a vendor-specific DHCP request that contains: 
-    1.  A Network Key (a 256-bit intermediate key) encrypted using the 2048-bit RSA Public Key of the Network Unlock certificate from the WDS server.
-    2.  An AES-256 session key for the reply.
+    - A network key (a 256-bit intermediate key) that's encrypted by the 2048-bit RSA public key of the Network Unlock certificate from the WDS server.
+    - An AES-256 session key for the reply.
 4.  The Network Unlock provider on the WDS server recognizes the vendor-specific request.
-5.  The provider decrypts it with the WDS server’s BitLocker Network Unlock certificate RSA private key.
-6.  The WDS provider then returns the network key encrypted with the session key using its own vendor-specific DHCP reply to the client computer. This forms an intermediate key.
-7.  The returned intermediate key is then combined with another local 256-bit intermediate key that can only be decrypted by the TPM.
+5.  The provider decrypts it with the WDS server's BitLocker Network Unlock certificate RSA private key.
+6.  The WDS provider then returns the network key encrypted with the session key by using its own vendor-specific DHCP reply to the client computer. This key is an intermediate key.
+7.  The returned intermediate key is then combined with another local 256-bit intermediate key. This key can be decrypted only by the TPM.
 8.  This combined key is used to create an AES-256 key that unlocks the volume.
 9.  Windows continues the boot sequence.
 
 ## <a href="" id="bkmk-configuringnetworkunlock"></a>Configure Network Unlock
 
-The following steps allow an administrator to configure Network Unlock in a domain where the Domain Functional Level is at least Windows Server 2012.
+The following steps allow an administrator to configure Network Unlock in a domain where the domain functional level is at least Windows Server 2012.
 
 ### <a href="" id="bkmk-installwdsrole"><a/>Install the WDS Server role
 
-The BitLocker Network Unlock feature will install the WDS role if it is not already installed. If you want to install it separately before you install BitLocker Network Unlock you can use Server Manager or Windows PowerShell. To install the role using Server Manager, select the **Windows Deployment Services** role in Server Manager.
+The BitLocker Network Unlock feature installs the WDS role if it's not already installed. If you want to install it separately before you install BitLocker Network Unlock, use Server Manager or Windows PowerShell. To install the role by using Server Manager, select the **Windows Deployment Services** role in Server Manager.
 
-To install the role using Windows PowerShell, use the following command:
+To install the role by using Windows PowerShell, use the following command:
 
 ```powershell
 Install-WindowsFeature WDS-Deployment
 ```
 
-You must configure the WDS server so that it can communicate with DHCP (and optionally Active Directory Domain Services) and the client computer. You can do using the WDS management tool, wdsmgmt.msc, which starts the Windows Deployment Services Configuration Wizard.
+Configure the WDS server so that it can communicate with DHCP (and optionally Active Directory Domain Services) and the client computer. You can do so by using the WDS management tool, `wdsmgmt.msc`. This tool starts the Windows Deployment Services Configuration Wizard.
 
-### <a href="" id="bkmk-confirmwdsrunning"><a/>Confirm the WDS Service is running
+### <a href="" id="bkmk-confirmwdsrunning"><a/>Confirm the WDS service is running
 
-To confirm the WDS service is running, use the Services Management Console or Windows PowerShell. To confirm the service is running in Services Management Console, open the console using **services.msc** and check the status of the Windows Deployment Services service.
+To confirm the WDS service is running, use the Services Management console or Windows PowerShell. To confirm the service is running in the Services Management console, open the console by using `services.msc`. Then check the status of the WDS service.
 
-To confirm the service is running using Windows PowerShell, use the following command:
+To confirm the service is running by using Windows PowerShell, use the following command:
 
 ```powershell
 Get-Service WDSServer
 ```
 ### <a href="" id="bkmk-installnufeature"><a/>Install the Network Unlock feature
 
-To install the Network Unlock feature, use Server Manager or Windows PowerShell. To install the feature using Server Manager, select the **BitLocker Network Unlock** feature in the Server Manager console.
+To install the Network Unlock feature, use Server Manager or Windows PowerShell. To install the feature by using Server Manager, in the Server Manager console, select **BitLocker Network Unlock**.
 
-To install the feature using Windows PowerShell, use the following command:
+To install the feature by using Windows PowerShell, use the following command:
 
 ```powershell
 Install-WindowsFeature BitLocker-NetworkUnlock
 ```
 ### <a href="" id="bkmk-createcerttmpl"><a/>Create the certificate template for Network Unlock
 
-A properly configured Active Directory Services Certification Authority can use this certificate template to create and issue Network Unlock certificates.
+A properly configured Active Directory Services Certification Authority can use the certificate template to create and issue Network Unlock certificates.
 
-1.  Open the Certificates Template snap-in (certtmpl.msc).
-2.  Locate the User template. Right-click the template name and select **Duplicate Template**.
-3.  On the **Compatibility** tab, change the **Certification Authority** and **Certificate recipient** fields to Windows Server 2012 and Windows 8 respectively. Ensure the **Show resulting changes** dialog box is selected.
-4.  Select the **General** tab of the template. The **Template display name** and **Template name** should clearly identify that the template will be used for Network Unlock. Clear the checkbox for the **Publish certificate in Active Directory** option.
-5.  Select the **Request Handling** tab. Select **Encryption** from the **Purpose** drop down menu. Ensure the **Allow private key to be exported** option is selected.
-6.  Select the **Cryptography** tab. Set the **Minimum key size** to 2048. (Any Microsoft cryptographic provider that supports RSA can be used for this template, but for simplicity and forward compatibility we recommend using the **Microsoft Software Key Storage Provider**.)
-7.  Select the **Requests must use one of the following providers** option and clear all options except for the cryptography provider you selected, such as the **Microsoft Software Key Storage Provider**.
-8.  Select the **Subject Name** tab. Select **Supply in the request**. Select **OK** if the certificate templates pop-up dialog appears.
-9.  Select the **Issuance Requirements** tab. Select both **CA certificate manager approval** and **Valid existing certificate** options.
-10. Select the **Extensions** tab. Select **Application Policies** and choose **Edit…**.
-11. In the **Edit Application Policies Extension** options dialog box, select **Client Authentication**, **Encrypting File System**, **and Secure Email** and choose **Remove**.
-12. On the **Edit Application Policies Extension** dialog box, select **Add**.
-13. On the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box enter the following information in the space provided and then click **OK** to create the BitLocker Network Unlock application policy:
+1.  Open the certificate template snap-in (`certtmpl.msc`).
+2.  Locate the user template. Right-click the template name and then select **Duplicate Template**.
+3.  On the **Compatibility** tab, change the **Certification Authority** and **Certificate recipient** fields to Windows Server 2012 and Windows 8, respectively. Ensure the **Show resulting changes** dialog box is selected.
+4.  Select the **General** tab of the template. The **Template display name** and **Template name** should clearly identify that the template will be used for Network Unlock. Clear the check box for **Publish certificate in Active Directory**.
+5.  Select the **Request Handling** tab. In the **Purpose** drop-down menu, select **Encryption**. Ensure the **Allow private key to be exported** option is selected.
+6.  Select the **Cryptography** tab. Set the **Minimum key size** to *2048*. (For this template, you can use any Microsoft cryptographic provider that supports RSA. But for simplicity and forward compatibility, we recommend using **Microsoft Software Key Storage Provider**.)
+7.  Select **Requests must use one of the following providers**. Then clear all options except for your selected cryptography provider, such as the **Microsoft Software Key Storage Provider**.
+8.  Select the **Subject Name** tab. Select **Supply in the request**. If the certificate templates dialog box appears, select **OK**.
+9.  Select the **Issuance Requirements** tab. Then select both **CA certificate manager approval** and **Valid existing certificate**.
+10. Select the **Extensions** tab. Then select **Application Policies** > **Edit**.
+11. In the **Edit Application Policies Extension** dialog box, select **Client Authentication**, **Encrypting File System**, and **Secure Email**. Then choose **Remove**.
+12. In the **Edit Application Policies Extension** dialog box, select **Add**.
+13. In the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box, enter the following information in the space provided and then click **OK** to create the BitLocker Network Unlock application policy:
 
-    -   **Name:** **BitLocker Network Unlock**
-    -   **Object Identifier:** **1.3.6.1.4.1.311.67.1.1**
+    -   **Name**: **BitLocker Network Unlock**
+    -   **Object Identifier**: **1.3.6.1.4.1.311.67.1.1**
 
-14. Select the newly created **BitLocker Network Unlock** application policy and select **OK**.
-15. With the **Extensions** tab still open, select the **Edit Key Usage Extension** dialog, select the **Allow key exchange only with key encryption (key encipherment)** option. Select the **Make this extension critical** option.
+14. Select the newly created **BitLocker Network Unlock** application policy and then select **OK**.
+15. With the **Extensions** tab still open, select **Edit Key Usage Extension**, and then select **Allow key exchange only with key encryption (key encipherment)**. Then select **Make this extension critical**.
 16. Select the **Security** tab. Confirm that the **Domain Admins** group has been granted **Enroll** permission.
 17. Select **OK** to complete configuration of the template.
 
-To add the Network Unlock template to the Certification Authority, open the Certification Authority snap-in (certsrv.msc). Right-click the **Certificate Templates** item and choose **New, Certificate Template to issue**. Select the previously created BitLocker Network Unlock certificate.
+To add the Network Unlock template to the certificate authority, open the certificate authority snap-in (`certsrv.msc`). Right-click **Certificate Templates** and then choose **New, Certificate Template to issue**. Select the previously created BitLocker Network Unlock certificate.
 
-After adding the Network Unlock template to the Certification Authority, this certificate can be used to configure BitLocker Network Unlock.
+After you add the Network Unlock template to the certificate authority, you can use this certificate to configure BitLocker Network Unlock.
 
 ### <a href="" id="bkmk-createcert"><a/>Create the Network Unlock certificate
 
-Network Unlock can use imported certificates from an existing PKI infrastructure, or you can use a self-signed certificate.
+Network Unlock can use imported certificates from an existing public key infrastructure (PKI), or you can use a self-signed certificate.
 
-To enroll a certificate from an existing certification authority (CA), do the following:
+To enroll a certificate from an existing certificate authority:
 
-1.  Open Certificate Manager on the WDS server using **certmgr.msc**
-2.  Under the Certificates - Current User item, right-click Personal
-3.  Select All Tasks, then **Request New Certificate**
-4.  Select **Next** when the Certificate Enrollment wizard opens
-5.  Select Active Directory Enrollment Policy
-6.  Choose the certificate template created for Network Unlock on the Domain controller and select **Enroll**. When prompted for more information, add the following attribute to the certificate:
+1.  On the WDS server, open Certificate Manager by using `certmgr.msc`.
+2.  Under **Certificates - Current User**, right-click **Personal**.
+3.  Select **All Tasks** > **Request New Certificate**.
+4.  When the Certificate Enrollment wizard opens, select **Next**.
+5.  Select **Active Directory Enrollment Policy**.
+6.  Choose the certificate template that was created for Network Unlock on the domain controller. Then select **Enroll**. 
+1. When you're prompted for more information, select **Subject Name** and provide a friendly name value. Your friendly name should include information for the domain or organizational unit for the certificate. Here's an example: *BitLocker Network Unlock Certificate for Contoso domain*.
+7.  Create the certificate. Ensure the certificate appears in the **Personal** folder.
+8.  Export the public key certificate for Network Unlock:
 
-    -   Select the **Subject Name** pane and provide a friendly name value. It is suggested that this friendly name include information for the domain or organizational unit for the certificate. For example "BitLocker Network Unlock Certificate for Contoso domain"
-
-7.  Create the certificate. Ensure the certificate appears in the Personal folder.
-8.  Export the public key certificate for Network Unlock
-
-    1.  Create a .cer file by right-clicking the previously created certificate, choosing **All Tasks**, then **Export**.
+    1.  Create a *.cer* file by right-clicking the previously created certificate and choosing **All Tasks** > **Export**.
     2.  Select **No, do not export the private key**.
-    3.  Select **DER encoded binary X.509** and complete exporting the certificate to a file.
-    4.  Give the file a name such as BitLocker-NetworkUnlock.cer.
-
-9.  Export the public key with a private key for Network Unlock
-
-    1.  Create a .pfx file by right-clicking the previously created certificate, choosing **All Tasks**, then **Export**.
+    3.  Select **DER encoded binary X.509** and then finish exporting the certificate to a file.
+    4.  Give the file a name, such as *BitLocker-NetworkUnlock.cer*.
+9.  Export the public key with a private key for Network Unlock:
+    1.  Create a *.pfx* file by right-clicking the previously created certificate. Then choose **All Tasks** > **Export**.
     2.  Select **Yes, export the private key**.
-    3.  Complete the wizard to create the .pfx file.
+    3.  Complete the steps to create the *.pfx* file.
 
 To create a self-signed certificate, you can either use the New-SelfSignedCertificate cmdlet in Windows PowerShell or use Certreq.
 
-Windows PowerShell example:
+Here's a Windows PowerShell example:
 
 ```powershell
 New-SelfSignedCertificate -CertStoreLocation Cert:\LocalMachine\My -Subject "CN=BitLocker Network Unlock certificate" -Provider "Microsoft Software Key Storage Provider" -KeyUsage KeyEncipherment -KeyUsageProperty Decrypt,Sign -KeyLength 2048 -HashAlgorithm sha512 -TextExtension @("1.3.6.1.4.1.311.21.10={text}OID=1.3.6.1.4.1.311.67.1.1","2.5.29.37={text}1.3.6.1.4.1.311.67.1.1")
 ```
 
-Certreq example:
+Here's a Certreq example:
 
-1.  Create a text file with an .inf extension. For example, notepad.exe BitLocker-NetworkUnlock.inf.
+1.  Create a text file with an *.inf* extension. For example, *notepad.exe* *BitLocker-NetworkUnlock.inf*.
 2.  Add the following contents to the previously created file:
 
     ```ini
@@ -208,53 +204,53 @@ Certreq example:
     _continue_ = "1.3.6.1.4.1.311.67.1.1"
     ```
 
-3.  Open an elevated command prompt and use the certreq tool to create a new certificate using the following command, specifying the full path to the file created previously, along with the file name:
+3.  Open an elevated command prompt and use the `certreq` tool to create a new certificate. Use the following command, specifying the full path to the file that you created previously. Also specify the file name:
 
     ```cmd
     certreq -new BitLocker-NetworkUnlock.inf BitLocker-NetworkUnlock.cer
     ```
 
-4.  Verify the previous command properly created the certificate by confirming the .cer file exists.
-5.  Launch Certificates - Local Machine by running **certlm.msc**.
-6.  Create a .pfx file by opening the **Certificates – Local Computer\\Personal\\Certificates** path in the navigation pane, right-clicking the previously imported certificate, selecting **All Tasks**, then **Export**. Follow through the wizard to create the .pfx file.
+4.  Verify the previous command properly created the certificate by confirming the *.cer* file exists.
+5.  Launch **Certificates - Local Machine** by running `certlm.msc`.
+6.  Create a *.pfx* file by opening the *Certificates – Local Computer\\Personal\\Certificates* path in the navigation pane. Right-click the previously imported certificate, and then select **All Tasks** > **Export**. Follow through the steps to create the *.pfx* file.
 
 ### <a href="" id="bkmk-deploycert"><a/>Deploy the private key and certificate to the WDS server
 
-With the certificate and key created, deploy them to the infrastructure to properly unlock systems. To deploy the certificates, do the following:
+Now that the certificate and key are created, deploy them to the infrastructure to properly unlock systems. To deploy the certificates:
 
-1.  On the WDS server, open a new MMC and add the certificates snap-in. Select the computer account and local computer when given the options.
-2.  Right-click the Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock item, choose All Tasks, then **Import**.
-3.  In the **File to Import** dialog, choose the .pfx file created previously.
-4.  Enter the password used to create the .pfx and complete the wizard.
+1.  On the WDS server, open a new Microsoft Management Console (MMC) and then add the certificates snap-in. Select the computer account and local computer when these options appear.
+2.  Right-click **Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock** and then choose **All Tasks** > **Import**.
+3.  In the **File to Import** dialog box, choose the *.pfx* file that you created previously.
+4.  Enter the password that you used to create the *.pfx*, and finish the steps.
 
 ### Configure Group Policy settings for Network Unlock
 
-With certificate and key deployed to the WDS server for Network Unlock, the final step is to use Group Policy settings to deploy the public key certificate to computers that you want to be able to unlock using the Network Unlock key. Group Policy settings for BitLocker can be found under **\\Computer Configuration\\Administrative Templates\\Windows Components\\BitLocker Drive Encryption** using the Local Group Policy Editor or the Microsoft Management Console.
+Now that you've deployed the certificate and key to the WDS server for Network Unlock, the final step is to use Group Policy settings to deploy the public key certificate to computers that you want to be able to unlock by using the Network Unlock key. You can find Group Policy settings for BitLocker in *\\Computer Configuration\\Administrative Templates\\Windows Components\\BitLocker Drive Encryption* by using the Local Group Policy Editor or the MMC.
 
-The following steps describe how to enable the Group Policy setting that is a requirement for configuring Network Unlock.
+To enable the Group Policy setting that's required to configure Network Unlock:
 
-1.  Open Group Policy Management Console (gpmc.msc).
-2.  Enable the policy **Require additional authentication at startup** and select the **Require startup PIN with TPM** or **Allow startup PIN with TPM** option.
+1.  Open Group Policy Management Console (`gpmc.msc`).
+2.  Enable the policy **Require additional authentication at startup**, and then select **Require startup PIN with TPM** or **Allow startup PIN with TPM**.
 3.  Turn on BitLocker with TPM+PIN protectors on all domain-joined computers.
 
-The following steps describe how to deploy the required Group Policy setting:
+To deploy the required Group Policy setting:
 
 > [!NOTE]
 > The Group Policy settings **Allow network unlock at startup** and **Add Network Unlock Certificate** were introduced in Windows Server 2012.
  
-1.  Copy the .cer file created for Network Unlock to the domain controller.
-2.  On the domain controller, launch Group Policy Management Console (gpmc.msc).
+1.  Copy the *.cer* file that you created for Network Unlock to the domain controller.
+2.  On the domain controller, launch Group Policy Management Console (`gpmc.msc`).
 3.  Create a new Group Policy Object or modify an existing object to enable the **Allow network unlock at startup** setting.
 4.  Deploy the public certificate to clients:
 
-    1.  Within Group Policy Management Console, navigate to the following location: **Computer Configuration\\Policies\\Windows Settings\\Security Settings\\Public Key Policies\\BitLocker Drive Encryption Network Unlock Certificate**.
-    2.  Right-click the folder and choose **Add Network Unlock Certificate**.
-    3.  Follow the wizard steps and import the .cer file that was copied earlier.
+    1.  In Group Policy Management Console, go to the following location: *Computer Configuration\\Policies\\Windows Settings\\Security Settings\\Public Key Policies\\BitLocker Drive Encryption Network Unlock Certificate*.
+    2.  Right-click the folder and then choose **Add Network Unlock Certificate**.
+    3.  Follow the steps and import the *.cer* file that you copied earlier.
 
-> [!NOTE]
-> Only one network unlock certificate can be available at a time. If a new certificate is required, delete the current certificate before deploying a new one. The Network Unlock certificate is located in the **HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP** key on the client computer.
+    > [!NOTE]
+    > Only one network unlock certificate can be available at a time. If a new certificate is required, delete the current certificate before you deploy a new one. The Network Unlock certificate is located in the *HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP* key on the client computer.
 
-5. Reboot the clients after deploying the group policy.
+5. Reboot the clients after you deploy the group policy.
    > [!NOTE]
    > The **Network (Certificate Based)** protector will be added only after a reboot with the policy enabled and a valid certificate present in the FVE_NKP store.
  

From 373561d1e82e0e6908a478803e5cac7f5212c19e Mon Sep 17 00:00:00 2001
From: ShannonLeavitt <v-shleav@microsoft.com>
Date: Wed, 28 Oct 2020 07:57:44 -0600
Subject: [PATCH 012/825] more edits

---
 .../bitlocker-how-to-enable-network-unlock.md | 118 +++++++++---------
 1 file changed, 60 insertions(+), 58 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index a514c327a4..4a7d9d600f 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -252,15 +252,15 @@ To deploy the required Group Policy setting:
 
 5. Reboot the clients after you deploy the group policy.
    > [!NOTE]
-   > The **Network (Certificate Based)** protector will be added only after a reboot with the policy enabled and a valid certificate present in the FVE_NKP store.
+   > The **Network (Certificate Based)** protector is added only after a reboot. The policy must be enabled, and a valid certificate must be present in the FVE_NKP store.
  
-### Subnet policy configuration files on WDS Server (Optional)
+### Subnet policy configuration files on the WDS server (Optional)
 
-By default, all clients with the correct Network Unlock Certificate and valid Network Unlock protectors that have wired access to a Network Unlock-enabled WDS server via DHCP are unlocked by the server. A subnet policy configuration file on the WDS server can be created to limit which subnet(s) Network Unlock clients can use to unlock.
+By default, clients are unlocked by the server if they have the correct Network Unlock certificate and valid Network Unlock protectors that have wired access to a Network Unlock-enabled WDS server via DHCP. You can create a subnet policy configuration file on the WDS server to limit the subnets that Network Unlock clients can use to unlock.
 
-The configuration file, called bde-network-unlock.ini, must be located in the same directory as the Network Unlock provider DLL (%windir%\System32\Nkpprov.dll) and it applies to both IPv6 and IPv4 DHCP implementations. If the subnet configuration policy becomes corrupted, the provider will fail and stop responding to requests.
+The configuration file, called *bde-network-unlock.ini*, must be located in the same directory as the Network Unlock provider DLL (*%windir%\System32\Nkpprov.dll*). It applies to both IPv6 and IPv4 DHCP implementations. If the subnet configuration policy becomes corrupted, then the provider fails and stops responding to requests.
 
-The subnet policy configuration file must use a “\[SUBNETS\]” section to identify the specific subnets. The named subnets may then be used to specify restrictions in certificate subsections. Subnets are defined as simple name-value pairs, in the common INI format, where each subnet has its own line, with the name on the left of the equals sign, and the subnet identified on the right of the equal sign as a Classless Inter-Domain Routing (CIDR) address or range. The key word “ENABLED” is disallowed for subnet names.
+The subnet policy configuration file must use a `[SUBNETS]` section to identify the specific subnets. The named subnets can then be used to specify restrictions in certificate subsections. Subnets are defined as simple name-value pairs, in the common INI format. In this format, each subnet has its own line. The name is on the left of the equals sign. The subnet that's identified on the right of the equals sign is a Classless Interdomain Routing (CIDR) address or range. The keyword `ENABLED` is disallowed for subnet names.
 
 ```ini
 [SUBNETS]
@@ -270,110 +270,112 @@ SUBNET3= 2001:4898:a:2::/64 ; an IPv6 subnet
 SUBNET4=2001:4898:a:3::/64; in production, the admin would likely give more useful names, like BUILDING9-EXCEPT-RECEP.
 ```
 
-Following the \[SUBNETS\] section, there can be sections for each Network Unlock certificate, identified by the certificate thumbprint formatted without any spaces, which define subnets clients can be unlocked from with that certificate.
+Following the `[SUBNETS]` section are sections for each Network Unlock certificate. A certificate is identified by the certificate thumbprint, which is formatted without any spaces. These sections define subnet clients that can be unlocked by using that certificate.
 
 > [!NOTE]
-> When specifying the certificate thumbprint, do not include any spaces. If spaces are included in the thumbprint the subnet configuration will fail because the thumbprint will not be recognized as valid.
+> When you specify the certificate thumbprint, don't include spaces. Thumbprints that include spaces aren't recognized as valid. These will cause the subnet configuration to fail.
 
-Subnet restrictions are defined within each certificate section by denoting the allowed list of permitted subnets. If any subnet is listed in a certificate section, then only those subnets listed are permitted for that certificate. If no subnet is listed in a certificate section, then all subnets are permitted for that certificate. If a certificate does not have a section in the subnet policy configuration file, then no subnet restrictions are applied for unlocking with that certificate. This means for restrictions to apply to every certificate, there must be a certificate section for every Network Unlock certificate on the server, and an explicit allowed list set for each certificate section.
-Subnet lists are created by putting the name of a subnet from the \[SUBNETS\] section on its own line below the certificate section header. Then, the server will only unlock clients with this certificate on the subnet(s) specified as in the list. For troubleshooting, a subnet can be quickly excluded without deleting it from the section by simply commenting it out with a prepended semi-colon.
+Each certificate section defines subnet restrictions by denoting the allowed list of permitted subnets. If any subnets are listed in a certificate section, then only those subnets are permitted for that certificate. If no subnet is listed in a certificate section, then all subnets are permitted for that certificate. If a certificate has no section in the subnet policy configuration file, then no subnet unlocking restrictions are applied for that certificate. So to apply restrictions to every certificate, you must add a certificate section for every Network Unlock certificate on the server. And you must add an explicit allow list set for each certificate section.
+
+Create subnet lists by putting the name of a subnet from the `[SUBNETS]` section on its own line below the certificate section header. Then, the server will unlock clients that have this certificate only on the subnets that the list specifies. To troubleshoot, you can quickly exclude a subnet without deleting it from the section by simply commenting it out with a prepended semicolon.
 
 ```ini
 [2158a767e1c14e88e27a4c0aee111d2de2eafe60]
 ;Comments could be added here to indicate when the cert was issued, which Group Policy should get it, and so on.
-;This list shows this cert is only allowed to unlock clients on SUBNET1 and SUBNET3 subnets. In this example, SUBNET2 is commented out.
+;This list shows this cert is allowed to unlock clients only on the SUBNET1 and SUBNET3 subnets. In this example, SUBNET2 is commented out.
 SUBNET1
 ;SUBNET2
 SUBNET3
 ```
 
-To disallow the use of a certificate altogether, its subnet list may contain the line “DISABLED".
+To disallow the use of a certificate altogether, you can add a `DISABLED` line to its subnet list.
 
-## <a href="" id="bkmk-turnoffnetworkunlock"><a/>Turning off Network Unlock
+## <a href="" id="bkmk-turnoffnetworkunlock"><a/>Turn off Network Unlock
 
-To turn off the unlock server, the PXE provider can be unregistered from the WDS server or uninstalled altogether. However, to stop clients from creating Network Unlock protectors the **Allow Network Unlock at startup** Group Policy setting should be disabled. When this policy setting is updated to disabled on client computers any Network Unlock key protectors on the computer will be deleted. Alternatively, the BitLocker Network Unlock certificate policy can be deleted on the domain controller to accomplish the same task for an entire domain.
+To turn off the unlock server, you can unregister the PXE provider from the WDS server or uninstall it altogether. However, to stop clients from creating Network Unlock protectors, you should disable the **Allow Network Unlock at startup** Group Policy setting. When you disable this policy setting on client computers, any Network Unlock key protectors on the computer are deleted. Alternatively, you can delete the BitLocker Network Unlock certificate policy on the domain controller to accomplish the same task for an entire domain.
 
 > [!NOTE]
-> Removing the FVE_NKP certificate store that contains the Network Unlock certificate and key on the WDS server will also effectively disable the server’s ability to respond to unlock requests for that certificate. However, this is seen as an error condition and is not a supported or recommended method for turning off the Network Unlock server.
+> Removing the FVE_NKP certificate store that contains the Network Unlock certificate and key on the WDS server will also effectively disable the server's ability to respond to unlock requests for that certificate. However, this is seen as an error condition. It's not a supported or recommended method for turning off the Network Unlock server.
  
 ## <a href="" id="bkmk-updatecerts"><a/>Update Network Unlock certificates
 
-To update the certificates used by Network Unlock, administrators need to import or generate the new certificate for the server and then update the Network Unlock certificate Group Policy setting on the domain controller.
+To update the certificates that Network Unlock uses, administrators need to import or generate the new certificate for the server. Then they must update the Network Unlock certificate Group Policy setting on the domain controller.
 
 > [!NOTE]
-> Servers that do not receive the Group Policy Object (GPO) will require a PIN when booting. In such cases, the reason why the server did not receive the GPO to update the certificate needs to be investigated.
+> Servers that don't receive the Group Policy Object (GPO) will require a PIN when they boot. In such cases, find out why the server didn't receive the GPO to update the certificate.
 
 ## <a href="" id="bkmk-troubleshoot"></a>Troubleshoot Network Unlock
 
-Troubleshooting Network Unlock issues begins by verifying the environment. Many times, a small configuration issue will be the root cause of the failure. Items to verify include:
+To troubleshoot Network Unlock issues, begin by verifying the environment. Many times, a small configuration issue is the root cause of the failure. Verify these items:
 
-- Verify client hardware is UEFI-based and is on firmware version is 2.3.1 and that the UEFI firmware is in native mode without a Compatibility Support Module (CSM) for BIOS mode enabled. Do this by checking that the firmware does not have an option enabled such as "Legacy mode" or "Compatibility mode" or that the firmware does not appear to be in a BIOS-like mode.
-- All required roles and services are installed and started
-- Public and private certificates have been published and are in the proper certificate containers. The presence of the Network Unlock certificate can be verified in the Microsoft Management Console (MMC.exe) on the WDS server with the certificate snap-ins for the local computer enabled. The client certificate can be verified by checking the registry key **HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP** on the client computer.
-- Group policy for Network Unlock is enabled and linked to the appropriate domains.
-- Verify group policy is reaching the clients properly. This can be done using the GPRESULT.exe or RSOP.msc utilities.
-- Verify the clients were rebooted after applying the policy.
-- Verify the **Network (Certificate Based)** protector is listed on the client. This can be done using either manage-bde or Windows PowerShell cmdlets. For example the following command will list the key protectors currently configured on the C: drive of the local computer:
+- Client hardware is UEFI-based and is using firmware version 2.3.1, and the UEFI firmware is in native mode doesn't have a Compatibility Support Module (CSM) for BIOS mode enabled. Verify this configuration by checking that the firmware has no enabled option such as **Legacy mode** or **Compatibility mode** or that the firmware doesn't appear to be in a BIOS-like mode.
+- All required roles and services are installed and started.
+- Public and private certificates have been published and are in the proper certificate containers. Verify the presence of the Network Unlock certificate by using Microsoft Management Console (*MMC.exe*) on the WDS server. The certificate snap-ins for the local computer should be enabled. Verify the client certificate by checking the registry key *HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP* on the client computer.
+- Group Policy for Network Unlock is enabled and linked to the appropriate domains.
+- Group Policy is reaching the clients properly. Verify this functionality by using the *GPRESULT.exe* utility or *RSOP.msc* utility.
+- The clients were rebooted after the policy was applied.
+- The **Network (Certificate Based)** protector is listed on the client. Check for this protector by using either `manage-bde` or Windows PowerShell cmdlets. For example, the following command lists the key protectors that are currently configured on drive C on the local computer.
 
   ```powershell
   manage-bde -protectors -get C:
   ```
   > [!NOTE]
-  > Use the output of manage-bde along with the WDS debug log to determine if the proper certificate thumbprint is being used for Network Unlock
+  > Use the output of `manage-bde` along with the WDS debug log to determine whether the proper certificate thumbprint is being used for Network Unlock.
  
-Files to gather when troubleshooting BitLocker Network Unlock include:
+Gather the following files to troubleshoot BitLocker Network Unlock.
 
-1.  The Windows event logs. Specifically the BitLocker event logs and the Microsoft-Windows-Deployment-Services-Diagnostics-Debug log
+- The Windows event logs. Specifically, get the BitLocker event logs and the Microsoft-Windows-Deployment-Services-Diagnostics-Debug log.
 
-    Debug logging is turned off by default for the WDS server role, so you will need to enable it first. You can use either of the following two methods to turn on WDS debug logging.
+    Debug logging is turned off by default for the WDS server role, so you need to enable it before you can retrieve it. Use either of the following two methods to turn on WDS debug logging.
 
-    1.  Start an elevated command prompt and run the following command:
+    - Start an elevated command prompt and then run the following command:
 
         ```cmd
         wevtutil sl Microsoft-Windows-Deployment-Services-Diagnostics/Debug /e:true
         ```
-    2.  Open Event Viewer on the WDS server.
+    - Open Event Viewer on the WDS server.
 
-        In the left pane, click **Applications and Services Logs**, click **Microsoft**, click **Windows**, click **Deployment-Services-Diagnostics**, and then click **Debug**.
+        In the left pane, select **Applications and Services Logs** > **Microsoft** > **Windows** > **Deployment-Services-Diagnostics** > **Debug**.
 
-        In the right pane, click **Enable Log**.
+        In the right pane, selet **Enable Log**.
 
-2.  The DHCP subnet configuration file (if one exists).
-3.  The output of the BitLocker status on the volume, this can be gathered into a text file using **manage-bde -status** or **Get-BitLockerVolume** in Windows PowerShell.
-4.  Network Monitor capture on the server hosting the WDS role, filtered by client IP address.
+- The DHCP subnet configuration file (if one exists).
+- The output of the BitLocker status on the volume. Gather this output into a text file by using `manage-bde -status`. Or in Windows PowerShell, use `Get-BitLockerVolume`.
+- The Network Monitor capture on the server that hosts the WDS role, filtered by client IP address.
 
 ## <a href="" id="bkmk-unsupportedsystems"></a>Configure Network Unlock Group Policy settings on earlier versions
 
-Network Unlock and the accompanying Group Policy settings were introduced in Windows Server 2012 but can be deployed using operating systems running Windows Server 2008 R2 and Windows Server 2008.
+Network Unlock and the accompanying Group Policy settings were introduced in Windows Server 2012. But you can deploy them by  using operating systems that run Windows Server 2008 R2 and Windows Server 2008.
 
-**Requirements**
+Requirements:
 
--   The server hosting WDS must be running any of the server operating systems designated in the **Applies To** list at the beginning of this topic.
--   Client computers must be running any of the client operating systems designated in the **Applies To** list at the beginning of this topic.
+-   The server that hosts WDS must be running a server operating system that's designated in the **Applies to** list at the beginning of this article.
+-   Client computers must be running a client operating system that's designated in the **Applies to** list at the beginning of this article.
 
-The following steps can be used to configure Network Unlock on these older systems.
+Follow these steps to configure Network Unlock on these older systems.
 
-1.  [Install the WDS Server role](#bkmk-installwdsrole)
-2.  [Confirm the WDS Service is running](#bkmk-confirmwdsrunning)
-3.  [Install the Network Unlock feature](#bkmk-installnufeature)
-4.  [Create the Network Unlock certificate](#bkmk-createcert)
-5.  [Deploy the private key and certificate to the WDS server](#bkmk-deploycert)
+1.  [Install the WDS Server role.](#bkmk-installwdsrole)
+2.  [Confirm the WDS service is running.](#bkmk-confirmwdsrunning)
+3.  [Install the Network Unlock feature.](#bkmk-installnufeature)
+4.  [Create the Network Unlock certificate.](#bkmk-createcert)
+5.  [Deploy the private key and certificate to the WDS server.](#bkmk-deploycert)
 6.  Configure registry settings for Network Unlock:
 
-    Apply the registry settings by running the following certutil script (assuming your network unlock certificate file is called **BitLocker-NetworkUnlock.cer**) on each computer running any of the client operating systems designated in the **Applies To** list at the beginning of this topic.
-```console
-        certutil -f -grouppolicy -addstore FVE_NKP BitLocker-NetworkUnlock.cer
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v OSManageNKP /t REG_DWORD /d 1 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseAdvancedStartup /t REG_DWORD /d 1 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UsePIN /t REG_DWORD /d 2 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMPIN /t REG_DWORD /d 2 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPM /t REG_DWORD /d 2 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMKey /t REG_DWORD /d 2 /f
-        reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMKeyPIN /t REG_DWORD /d 2 /f
-```
+    Apply the registry settings by running the following `certutil` script (assuming your Network Unlock certificate file is called *BitLocker-NetworkUnlock.cer*) on each computer that runs a client operating system that's designated in the **Applies to** list at the beginning of this article.
 
-7.  Set up a TPM protector on the clients
-8.  Reboot the clients to add the Network (Certificate Based) protector
+    ```console
+            certutil -f -grouppolicy -addstore FVE_NKP BitLocker-NetworkUnlock.cer
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v OSManageNKP /t REG_DWORD /d 1 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseAdvancedStartup /t REG_DWORD /d 1 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UsePIN /t REG_DWORD /d 2 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMPIN /t REG_DWORD /d 2 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPM /t REG_DWORD /d 2 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMKey /t REG_DWORD /d 2 /f
+            reg add "HKLM\SOFTWARE\Policies\Microsoft\FVE" /v UseTPMKeyPIN /t REG_DWORD /d 2 /f
+    ```
+
+7.  Set up a TPM protector on the clients.
+8.  Reboot the clients to add the **Network (Certificate Based)** protector.
 
 ## See also
 

From 0683698c0e40089c58ede8850fd50ffa8a381ae0 Mon Sep 17 00:00:00 2001
From: ShannonLeavitt <v-shleav@microsoft.com>
Date: Wed, 28 Oct 2020 09:52:27 -0600
Subject: [PATCH 013/825] more edits

---
 .../bitlocker-how-to-enable-network-unlock.md | 121 +++++++++---------
 1 file changed, 64 insertions(+), 57 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 4a7d9d600f..68ca0dcc0c 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -1,6 +1,6 @@
 ---
 title: BitLocker - How to enable Network Unlock (Windows 10)
-description: This topic for the IT professional describes how BitLocker Network Unlock works and how to configure it.
+description: This article for the IT professional describes how BitLocker Network Unlock works and how to configure it.
 ms.assetid: be45bc28-47db-4931-bfec-3c348151d2e9
 ms.reviewer: 
 ms.prod: w10
@@ -27,16 +27,16 @@ This article for IT professionals describes how BitLocker Network Unlock works a
 
 Network Unlock was introduced in Windows 8 and Windows Server 2012 as a BitLocker protector option for operating system volumes. Network Unlock helps you manage BitLocker-enabled desktops and servers in a domain environment by automatically unlocking operating system volumes when the system is rebooted and is connected to a wired corporate network. This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware.
 
-Without Network Unlock, operating system volumes that are protected by TPM+PIN protectors require a PIN when a computer reboots or resumes after hibernation (for example, by Wake on LAN). For enterprises, this setup can make software patches difficult to roll out to unattended desktops and remotely administered servers.
+Without Network Unlock, operating system volumes that use TPM+PIN protectors require a PIN when a computer reboots or resumes after hibernation (for example, by Wake on LAN). For enterprises, this setup can make software patches difficult to roll out to unattended desktops and remotely administered servers.
 
 Network Unlock allows BitLocker-enabled systems that use TPM+PIN and that meet the hardware requirements to boot into Windows without user intervention. Network Unlock works like the TPM+StartupKey at boot. But the StartupKey doesn't need to be read from USB media. Instead, the key for Network Unlock is composed from a key that's stored in the TPM and an encrypted network key that's sent to the server. It's decrypted and returned to the client in a secure session.
 
 ## <a href="" id="bkmk-nunlockcorereqs"></a>Network Unlock core requirements
 
-Network Unlock must meet mandatory hardware and software requirements before the feature can automatically unlock domain-joined systems:
+Network Unlock requires the following mandatory hardware and software configurations before it can automatically unlock domain-joined systems:
 
 -   You must be running at least Windows 8 or Windows Server 2012.
--   Any supported operating system that uses UEFI DHCP drivers can be Network Unlock clients.
+-   Any supported operating system that uses UEFI DHCP drivers can be a Network Unlock client.
 -   Network Unlock clients must have a TPM chip and at least one TPM protector.
 -   You must have a server running the Windows Deployment Services (WDS) role on any supported server operating system.
 -   The BitLocker Network Unlock optional feature can be installed on any supported server operating system.
@@ -44,28 +44,30 @@ Network Unlock must meet mandatory hardware and software requirements before the
 -   You must have a properly configured public/private key pairing.
 -   Network Unlock Group Policy settings must be configured.
 
-The network stack must be enabled to use the Network Unlock feature. Equipment manufacturers deliver their products in various states and with different BIOS menus, so you need to confirm that the network stack has been enabled in the BIOS before you start the computer.
+The network stack must be enabled to use the Network Unlock feature. Equipment manufacturers deliver their products in various states and with different BIOS menus. So confirm that the network stack has been enabled in the BIOS before you start the computer.
 
 > [!NOTE]
 > To properly support DHCP within UEFI, the UEFI-based system should be in native mode and shouldn't have a compatibility support module (CSM) enabled.
 
-On computers running Windows 8 and later, the first network adapter on the computer, usually the onboard adapter, must be configured to support DHCP. This adapter must be used for Network Unlock. 
+On computers that run Windows 8 and later, the first network adapter on the computer, usually the onboard adapter, must be configured to support DHCP. This adapter must be used for Network Unlock. 
 
 Use this configuration especially when you have multiple adapters and you want to configure one without DHCP, such as for a lights-out management protocol. The configuration is necessary because Network Unlock stops enumerating adapters when it reaches an adapter that has a DHCP port that has failed for any reason. So if the first enumerated adapter doesn't support DHCP, isn't plugged into the network, or fails to report availability of the DHCP port for any reason, then Network Unlock will fail.
  
 On supported versions of Windows Server 2012 and later, the Network Unlock server component installs as a Windows feature. It uses Server Manager or Windows PowerShell cmdlets. In Server Manager, the feature name is BitLocker Network Unlock. In Windows PowerShell, the feature name is BitLocker-NetworkUnlock. This feature is a core requirement.
 
-Network Unlock requires WDS in the environment where the feature will be used. Configuration of the WDS installation is not required. But the WDS service needs to be running on the server.
+Network Unlock requires WDS in the environment where the feature will be used. Configuration of the WDS installation isn't required. But the WDS service must be running on the server.
 
-The network key is stored on the system drive along with an AES 256 session key. It's encrypted with the 2048-bit RSA public key of the unlock server's certificate. The network key is decrypted with the help of a provider on a supported version of Windows Server that's running WDS. It's returned encrypted with its corresponding session key.
+The network key is stored on the system drive along with an AES 256 session key. It's encrypted with the 2048-bit RSA public key of the unlock server's certificate. The network key is decrypted with the help of a provider on a supported version of Windows Server that's running WDS. The network key is returned encrypted with its corresponding session key.
 
 ## <a href="" id="bkmk-networkunlockseq"></a>Network Unlock sequence
 
 The unlock sequence starts on the client side, when the Windows boot manager detects the existence of the Network Unlock protector. It uses the DHCP driver in UEFI to get an IP address for IPv4. Then it broadcasts a vendor-specific DHCP request that contains the network key and a session key for the reply, all encrypted by the server's Network Unlock certificate, as described earlier. The Network Unlock provider on the supported WDS server recognizes the vendor-specific request, decrypts it with the RSA private key, and returns the network key encrypted with the session key via its own vendor-specific DHCP reply.
 
-On the server side, the WDS server role has an optional plug-in component, like a PXE (preboot execution environment) provider, which is what handles the incoming Network Unlock requests. The provider can also be configured with subnet restrictions. These restrictions would require that the IP address provided by the client in the Network Unlock request belong to a permitted subnet in order to release the network key to the client. If the Network Unlock provider is unavailable, then BitLocker fails over to the next available protector to unlock the drive. So in a typical configuration, the standard TPM+PIN unlock screen is presented to unlock the drive.
+On the server side, the WDS server role has an optional plug-in component, like a PXE (preboot execution environment) provider. The plug-in component handles the incoming Network Unlock requests. The provider can also be configured with subnet restrictions. These restrictions require the IP address that's provided by the client in the Network Unlock request to belong to a permitted subnet in order to release the network key to the client. If the Network Unlock provider is unavailable, then BitLocker fails over to the next available protector to unlock the drive. So in a typical configuration, the standard TPM+PIN unlock screen is presented to unlock the drive.
 
-The server-side configuration to enable Network Unlock also requires provisioning a 2048-bit RSA public/private key pair in the form of an X.509 certificate. The configuration also requires the public key certificate to be distributed to the clients. This certificate must be managed and deployed through the Group Policy editor directly on a domain controller that has a domain functional level of at least Windows Server 2012. This certificate is the public key that encrypts the intermediate network key. The intermediate network key is one of the two secrets required to unlock the drive; the other secret is stored in the TPM.
+The server-side configuration to enable Network Unlock requires provisioning a 2048-bit RSA public/private key pair in the form of an X.509 certificate. The configuration also requires the public key certificate to be distributed to the clients. 
+
+Manage and deploy this certificate through the Group Policy editor directly on a domain controller that has a domain functional level of at least Windows Server 2012. This certificate is the public key that encrypts the intermediate network key. The intermediate network key is one of the two secrets that are required to unlock the drive; the other secret is stored in the TPM.
 
 ![Diagram showing the BitLocker network unlock sequence.](images/bitlockernetworkunlocksequence.png)
 
@@ -77,19 +79,19 @@ The Network Unlock process follows these phases:
     - A network key (a 256-bit intermediate key) that's encrypted by the 2048-bit RSA public key of the Network Unlock certificate from the WDS server.
     - An AES-256 session key for the reply.
 4.  The Network Unlock provider on the WDS server recognizes the vendor-specific request.
-5.  The provider decrypts it with the WDS server's BitLocker Network Unlock certificate RSA private key.
-6.  The WDS provider then returns the network key encrypted with the session key by using its own vendor-specific DHCP reply to the client computer. This key is an intermediate key.
-7.  The returned intermediate key is then combined with another local 256-bit intermediate key. This key can be decrypted only by the TPM.
+5.  The provider decrypts the request by using the WDS server's BitLocker Network Unlock certificate RSA private key.
+6.  The WDS provider returns the network key encrypted with the session key by using its own vendor-specific DHCP reply to the client computer. This key is an intermediate key.
+7.  The returned intermediate key is combined with another local 256-bit intermediate key. This key can be decrypted only by the TPM.
 8.  This combined key is used to create an AES-256 key that unlocks the volume.
 9.  Windows continues the boot sequence.
 
 ## <a href="" id="bkmk-configuringnetworkunlock"></a>Configure Network Unlock
 
-The following steps allow an administrator to configure Network Unlock in a domain where the domain functional level is at least Windows Server 2012.
+The following steps allow an administrator to configure Network Unlock in a domain where the functional level is at least Windows Server 2012.
 
-### <a href="" id="bkmk-installwdsrole"><a/>Install the WDS Server role
+### <a href="" id="bkmk-installwdsrole"><a/>Install the WDS server role
 
-The BitLocker Network Unlock feature installs the WDS role if it's not already installed. If you want to install it separately before you install BitLocker Network Unlock, use Server Manager or Windows PowerShell. To install the role by using Server Manager, select the **Windows Deployment Services** role in Server Manager.
+The BitLocker Network Unlock feature installs the WDS role if it's not already installed. If you want to install it separately before you install BitLocker Network Unlock, use Server Manager or Windows PowerShell. To install the role in Server Manager, select the **Windows Deployment Services** role.
 
 To install the role by using Windows PowerShell, use the following command:
 
@@ -97,7 +99,7 @@ To install the role by using Windows PowerShell, use the following command:
 Install-WindowsFeature WDS-Deployment
 ```
 
-Configure the WDS server so that it can communicate with DHCP (and optionally Active Directory Domain Services) and the client computer. You can do so by using the WDS management tool, `wdsmgmt.msc`. This tool starts the Windows Deployment Services Configuration Wizard.
+Configure the WDS server so that it can communicate with DHCP (and optionally Active Directory Domain Services) and the client computer. Use the WDS management tool, `wdsmgmt.msc`. This tool starts the Windows Deployment Services Configuration Wizard.
 
 ### <a href="" id="bkmk-confirmwdsrunning"><a/>Confirm the WDS service is running
 
@@ -110,7 +112,7 @@ Get-Service WDSServer
 ```
 ### <a href="" id="bkmk-installnufeature"><a/>Install the Network Unlock feature
 
-To install the Network Unlock feature, use Server Manager or Windows PowerShell. To install the feature by using Server Manager, in the Server Manager console, select **BitLocker Network Unlock**.
+To install the Network Unlock feature, use Server Manager or Windows PowerShell. To install the feature in the Server Manager console, select **BitLocker Network Unlock**.
 
 To install the feature by using Windows PowerShell, use the following command:
 
@@ -119,21 +121,21 @@ Install-WindowsFeature BitLocker-NetworkUnlock
 ```
 ### <a href="" id="bkmk-createcerttmpl"><a/>Create the certificate template for Network Unlock
 
-A properly configured Active Directory Services Certification Authority can use the certificate template to create and issue Network Unlock certificates.
+A properly configured Active Directory Services Certification Authority can use the certificate template to create and issue Network Unlock certificates. To create a certificate template:
 
 1.  Open the certificate template snap-in (`certtmpl.msc`).
 2.  Locate the user template. Right-click the template name and then select **Duplicate Template**.
-3.  On the **Compatibility** tab, change the **Certification Authority** and **Certificate recipient** fields to Windows Server 2012 and Windows 8, respectively. Ensure the **Show resulting changes** dialog box is selected.
+3.  On the **Compatibility** tab, change the **Certification Authority** and **Certificate recipient** fields to **Windows Server 2012** and **Windows 8**, respectively. Ensure **Show resulting changes** is selected.
 4.  Select the **General** tab of the template. The **Template display name** and **Template name** should clearly identify that the template will be used for Network Unlock. Clear the check box for **Publish certificate in Active Directory**.
 5.  Select the **Request Handling** tab. In the **Purpose** drop-down menu, select **Encryption**. Ensure the **Allow private key to be exported** option is selected.
-6.  Select the **Cryptography** tab. Set the **Minimum key size** to *2048*. (For this template, you can use any Microsoft cryptographic provider that supports RSA. But for simplicity and forward compatibility, we recommend using **Microsoft Software Key Storage Provider**.)
+6.  Select the **Cryptography** tab. Set the **Minimum key size** to **2048**. (For this template, you can use any Microsoft cryptographic provider that supports RSA. But for simplicity and forward compatibility, we recommend using **Microsoft Software Key Storage Provider**.)
 7.  Select **Requests must use one of the following providers**. Then clear all options except for your selected cryptography provider, such as the **Microsoft Software Key Storage Provider**.
 8.  Select the **Subject Name** tab. Select **Supply in the request**. If the certificate templates dialog box appears, select **OK**.
 9.  Select the **Issuance Requirements** tab. Then select both **CA certificate manager approval** and **Valid existing certificate**.
 10. Select the **Extensions** tab. Then select **Application Policies** > **Edit**.
 11. In the **Edit Application Policies Extension** dialog box, select **Client Authentication**, **Encrypting File System**, and **Secure Email**. Then choose **Remove**.
 12. In the **Edit Application Policies Extension** dialog box, select **Add**.
-13. In the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box, enter the following information in the space provided and then click **OK** to create the BitLocker Network Unlock application policy:
+13. In the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box, enter the following information in the space provided and then select **OK** to create the BitLocker Network Unlock application policy.
 
     -   **Name**: **BitLocker Network Unlock**
     -   **Object Identifier**: **1.3.6.1.4.1.311.67.1.1**
@@ -149,7 +151,7 @@ After you add the Network Unlock template to the certificate authority, you can
 
 ### <a href="" id="bkmk-createcert"><a/>Create the Network Unlock certificate
 
-Network Unlock can use imported certificates from an existing public key infrastructure (PKI), or you can use a self-signed certificate.
+Network Unlock can use imported certificates from an existing public key infrastructure (PKI). Or it can use a self-signed certificate.
 
 To enroll a certificate from an existing certificate authority:
 
@@ -172,7 +174,7 @@ To enroll a certificate from an existing certificate authority:
     2.  Select **Yes, export the private key**.
     3.  Complete the steps to create the *.pfx* file.
 
-To create a self-signed certificate, you can either use the New-SelfSignedCertificate cmdlet in Windows PowerShell or use Certreq.
+To create a self-signed certificate, either use the `New-SelfSignedCertificate` cmdlet in Windows PowerShell or use `certreq`.
 
 Here's a Windows PowerShell example:
 
@@ -180,9 +182,9 @@ Here's a Windows PowerShell example:
 New-SelfSignedCertificate -CertStoreLocation Cert:\LocalMachine\My -Subject "CN=BitLocker Network Unlock certificate" -Provider "Microsoft Software Key Storage Provider" -KeyUsage KeyEncipherment -KeyUsageProperty Decrypt,Sign -KeyLength 2048 -HashAlgorithm sha512 -TextExtension @("1.3.6.1.4.1.311.21.10={text}OID=1.3.6.1.4.1.311.67.1.1","2.5.29.37={text}1.3.6.1.4.1.311.67.1.1")
 ```
 
-Here's a Certreq example:
+Here's a `certreq` example:
 
-1.  Create a text file with an *.inf* extension. For example, *notepad.exe* *BitLocker-NetworkUnlock.inf*.
+1.  Create a text file that has an *.inf* extension. For example, *notepad.exe* *BitLocker-NetworkUnlock.inf*.
 2.  Add the following contents to the previously created file:
 
     ```ini
@@ -204,7 +206,7 @@ Here's a Certreq example:
     _continue_ = "1.3.6.1.4.1.311.67.1.1"
     ```
 
-3.  Open an elevated command prompt and use the `certreq` tool to create a new certificate. Use the following command, specifying the full path to the file that you created previously. Also specify the file name:
+3.  Open an elevated command prompt and use the `certreq` tool to create a new certificate. Use the following command, specifying the full path to the file that you created previously. Also specify the file name.
 
     ```cmd
     certreq -new BitLocker-NetworkUnlock.inf BitLocker-NetworkUnlock.cer
@@ -216,16 +218,16 @@ Here's a Certreq example:
 
 ### <a href="" id="bkmk-deploycert"><a/>Deploy the private key and certificate to the WDS server
 
-Now that the certificate and key are created, deploy them to the infrastructure to properly unlock systems. To deploy the certificates:
+Now that you've created the certificate and key, deploy them to the infrastructure to properly unlock systems. To deploy the certificates:
 
-1.  On the WDS server, open a new Microsoft Management Console (MMC) and then add the certificates snap-in. Select the computer account and local computer when these options appear.
+1.  On the WDS server, open a new Microsoft Management Console (MMC) and then add the certificates snap-in. When you're prompted, select the computer account and local computer.
 2.  Right-click **Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock** and then choose **All Tasks** > **Import**.
 3.  In the **File to Import** dialog box, choose the *.pfx* file that you created previously.
 4.  Enter the password that you used to create the *.pfx*, and finish the steps.
 
 ### Configure Group Policy settings for Network Unlock
 
-Now that you've deployed the certificate and key to the WDS server for Network Unlock, the final step is to use Group Policy settings to deploy the public key certificate to computers that you want to be able to unlock by using the Network Unlock key. You can find Group Policy settings for BitLocker in *\\Computer Configuration\\Administrative Templates\\Windows Components\\BitLocker Drive Encryption* by using the Local Group Policy Editor or the MMC.
+You've now deployed the certificate and key to the WDS server for Network Unlock. In the final step, you'll use Group Policy settings to deploy the public key certificate to computers that you want to be able to unlock by using the Network Unlock key. Find Group Policy settings for BitLocker in *\\Computer Configuration\\Administrative Templates\\Windows Components\\BitLocker Drive Encryption* by using the Local Group Policy Editor or the MMC.
 
 To enable the Group Policy setting that's required to configure Network Unlock:
 
@@ -239,45 +241,51 @@ To deploy the required Group Policy setting:
 > The Group Policy settings **Allow network unlock at startup** and **Add Network Unlock Certificate** were introduced in Windows Server 2012.
  
 1.  Copy the *.cer* file that you created for Network Unlock to the domain controller.
-2.  On the domain controller, launch Group Policy Management Console (`gpmc.msc`).
+2.  On the domain controller, open Group Policy Management Console (`gpmc.msc`).
 3.  Create a new Group Policy Object or modify an existing object to enable the **Allow network unlock at startup** setting.
 4.  Deploy the public certificate to clients:
 
-    1.  In Group Policy Management Console, go to the following location: *Computer Configuration\\Policies\\Windows Settings\\Security Settings\\Public Key Policies\\BitLocker Drive Encryption Network Unlock Certificate*.
+    1.  In Group Policy Management Console, go to *Computer Configuration\\Policies\\Windows Settings\\Security Settings\\Public Key Policies\\BitLocker Drive Encryption Network Unlock Certificate*.
     2.  Right-click the folder and then choose **Add Network Unlock Certificate**.
     3.  Follow the steps and import the *.cer* file that you copied earlier.
 
     > [!NOTE]
-    > Only one network unlock certificate can be available at a time. If a new certificate is required, delete the current certificate before you deploy a new one. The Network Unlock certificate is located in the *HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP* key on the client computer.
+    > Only one network unlock certificate can be available at a time. If you need a new certificate, delete the current certificate before you deploy a new one. The Network Unlock certificate is located in the *HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP* key on the client computer.
 
-5. Reboot the clients after you deploy the group policy.
+5. Reboot the clients after you deploy the Group Policy.
    > [!NOTE]
-   > The **Network (Certificate Based)** protector is added only after a reboot. The policy must be enabled, and a valid certificate must be present in the FVE_NKP store.
+   > The **Network (Certificate Based)** protector is added only after a reboot where the policy is enabled and a valid certificate is present in the FVE_NKP store.
  
-### Subnet policy configuration files on the WDS server (Optional)
+### Subnet policy configuration files on the WDS server (optional)
 
-By default, clients are unlocked by the server if they have the correct Network Unlock certificate and valid Network Unlock protectors that have wired access to a Network Unlock-enabled WDS server via DHCP. You can create a subnet policy configuration file on the WDS server to limit the subnets that Network Unlock clients can use to unlock.
+By default, the server unlocks clients that have the correct Network Unlock certificate and valid Network Unlock protectors that have wired access to a Network Unlock-enabled WDS server via DHCP. You can create a subnet policy configuration file on the WDS server to limit the subnets that Network Unlock clients can use for unlocking.
 
-The configuration file, called *bde-network-unlock.ini*, must be located in the same directory as the Network Unlock provider DLL (*%windir%\System32\Nkpprov.dll*). It applies to both IPv6 and IPv4 DHCP implementations. If the subnet configuration policy becomes corrupted, then the provider fails and stops responding to requests.
+The configuration file, called *bde-network-unlock.ini*, must be located in the same directory as the Network Unlock provider dynamic-link library (*%windir%\System32\Nkpprov.dll*). The configuration file applies to both IPv6 and IPv4 DHCP implementations. If the subnet configuration policy becomes corrupted, then the provider fails and stops responding to requests.
 
-The subnet policy configuration file must use a `[SUBNETS]` section to identify the specific subnets. The named subnets can then be used to specify restrictions in certificate subsections. Subnets are defined as simple name-value pairs, in the common INI format. In this format, each subnet has its own line. The name is on the left of the equals sign. The subnet that's identified on the right of the equals sign is a Classless Interdomain Routing (CIDR) address or range. The keyword `ENABLED` is disallowed for subnet names.
+The subnet policy configuration file must use a `[SUBNETS]` section to identify the specific subnets. You can then use the named subnets to specify restrictions in certificate subsections. 
+
+Subnets are defined as simple name-value pairs, in the common INI format. In this format, each subnet has its own line. The name is on the left of the equals sign. The subnet on the right of the equals sign is a Classless Interdomain Routing (CIDR) address or range. The keyword `ENABLED` is disallowed for subnet names.
 
 ```ini
 [SUBNETS]
-SUBNET1=10.185.250.0/24 ; comment about this subrange could be here, after the semi-colon
+SUBNET1=10.185.250.0/24 ; a comment about this subrange could be here, after the semicolon
 SUBNET2=10.185.252.200/28 
 SUBNET3= 2001:4898:a:2::/64 ; an IPv6 subnet
 SUBNET4=2001:4898:a:3::/64; in production, the admin would likely give more useful names, like BUILDING9-EXCEPT-RECEP.
 ```
 
-Following the `[SUBNETS]` section are sections for each Network Unlock certificate. A certificate is identified by the certificate thumbprint, which is formatted without any spaces. These sections define subnet clients that can be unlocked by using that certificate.
+Following the `[SUBNETS]` section are sections for each Network Unlock certificate. A certificate is identified by the certificate thumbprint, which is formatted without any spaces. These sections define subnet clients that you can unlock by using that certificate.
 
 > [!NOTE]
-> When you specify the certificate thumbprint, don't include spaces. Thumbprints that include spaces aren't recognized as valid. These will cause the subnet configuration to fail.
+> When you specify the certificate thumbprint, don't include spaces. Thumbprints that include spaces aren't recognized as valid. The spaces will cause the subnet configuration to fail.
 
-Each certificate section defines subnet restrictions by denoting the allowed list of permitted subnets. If any subnets are listed in a certificate section, then only those subnets are permitted for that certificate. If no subnet is listed in a certificate section, then all subnets are permitted for that certificate. If a certificate has no section in the subnet policy configuration file, then no subnet unlocking restrictions are applied for that certificate. So to apply restrictions to every certificate, you must add a certificate section for every Network Unlock certificate on the server. And you must add an explicit allow list set for each certificate section.
+Each certificate section defines subnet restrictions by denoting the allowed list of permitted subnets. If any subnets are listed in a certificate section, then only those subnets are permitted for that certificate. If no subnet is listed in a certificate section, then all subnets are permitted for that certificate. If a certificate has no section in the subnet policy configuration file, then no subnet unlocking restrictions are applied for that certificate. 
 
-Create subnet lists by putting the name of a subnet from the `[SUBNETS]` section on its own line below the certificate section header. Then, the server will unlock clients that have this certificate only on the subnets that the list specifies. To troubleshoot, you can quickly exclude a subnet without deleting it from the section by simply commenting it out with a prepended semicolon.
+So to apply restrictions to every certificate, you must add a certificate section for every Network Unlock certificate on the server. And you must add an explicit allow list set for each certificate section.
+
+Create subnet lists by putting the name of a subnet from the `[SUBNETS]` section on its own line below the certificate section header. Then, the server will unlock clients that have this certificate only on the subnets that the list specifies. 
+
+To troubleshoot, you can quickly exclude a subnet without deleting it from the section. Just comment it out by using a prepended semicolon.
 
 ```ini
 [2158a767e1c14e88e27a4c0aee111d2de2eafe60]
@@ -288,14 +296,14 @@ SUBNET1
 SUBNET3
 ```
 
-To disallow the use of a certificate altogether, you can add a `DISABLED` line to its subnet list.
+To disallow the use of a certificate altogether, add a `DISABLED` line to its subnet list.
 
 ## <a href="" id="bkmk-turnoffnetworkunlock"><a/>Turn off Network Unlock
 
 To turn off the unlock server, you can unregister the PXE provider from the WDS server or uninstall it altogether. However, to stop clients from creating Network Unlock protectors, you should disable the **Allow Network Unlock at startup** Group Policy setting. When you disable this policy setting on client computers, any Network Unlock key protectors on the computer are deleted. Alternatively, you can delete the BitLocker Network Unlock certificate policy on the domain controller to accomplish the same task for an entire domain.
 
 > [!NOTE]
-> Removing the FVE_NKP certificate store that contains the Network Unlock certificate and key on the WDS server will also effectively disable the server's ability to respond to unlock requests for that certificate. However, this is seen as an error condition. It's not a supported or recommended method for turning off the Network Unlock server.
+> Removing the FVE_NKP certificate store that contains the Network Unlock certificate and key on the WDS server will also effectively disable the server's ability to respond to unlock requests for that certificate. However, this condition is seen as an error. It's not a supported or recommended method for turning off the Network Unlock server.
  
 ## <a href="" id="bkmk-updatecerts"><a/>Update Network Unlock certificates
 
@@ -306,13 +314,13 @@ To update the certificates that Network Unlock uses, administrators need to impo
 
 ## <a href="" id="bkmk-troubleshoot"></a>Troubleshoot Network Unlock
 
-To troubleshoot Network Unlock issues, begin by verifying the environment. Many times, a small configuration issue is the root cause of the failure. Verify these items:
+To troubleshoot Network Unlock problems, begin by verifying the environment. Often, a small configuration issue is the root cause of the failure. Verify these items:
 
-- Client hardware is UEFI-based and is using firmware version 2.3.1, and the UEFI firmware is in native mode doesn't have a Compatibility Support Module (CSM) for BIOS mode enabled. Verify this configuration by checking that the firmware has no enabled option such as **Legacy mode** or **Compatibility mode** or that the firmware doesn't appear to be in a BIOS-like mode.
+- Client hardware is based on UEFI and uses firmware version 2.3.1, and the UEFI firmware is in native mode and has no compatibility support module (CSM) for BIOS mode enabled. Verify this configuration by ensuring that the firmware has no enabled option such as **Legacy mode** or **Compatibility mode** and that the firmware doesn't appear to be in a BIOS-like mode.
 - All required roles and services are installed and started.
 - Public and private certificates have been published and are in the proper certificate containers. Verify the presence of the Network Unlock certificate by using Microsoft Management Console (*MMC.exe*) on the WDS server. The certificate snap-ins for the local computer should be enabled. Verify the client certificate by checking the registry key *HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\SystemCertificates\\FVE\_NKP* on the client computer.
 - Group Policy for Network Unlock is enabled and linked to the appropriate domains.
-- Group Policy is reaching the clients properly. Verify this functionality by using the *GPRESULT.exe* utility or *RSOP.msc* utility.
+- Group Policy is reaching the clients properly. Verify this functionality by using the *GPRESULT.exe* utility or the *RSOP.msc* utility.
 - The clients were rebooted after the policy was applied.
 - The **Network (Certificate Based)** protector is listed on the client. Check for this protector by using either `manage-bde` or Windows PowerShell cmdlets. For example, the following command lists the key protectors that are currently configured on drive C on the local computer.
 
@@ -335,9 +343,8 @@ Gather the following files to troubleshoot BitLocker Network Unlock.
         ```
     - Open Event Viewer on the WDS server.
 
-        In the left pane, select **Applications and Services Logs** > **Microsoft** > **Windows** > **Deployment-Services-Diagnostics** > **Debug**.
-
-        In the right pane, selet **Enable Log**.
+    1. In the left pane, select **Applications and Services Logs** > **Microsoft** > **Windows** > **Deployment-Services-Diagnostics** > **Debug**.
+    1. In the right pane, select **Enable Log**.
 
 - The DHCP subnet configuration file (if one exists).
 - The output of the BitLocker status on the volume. Gather this output into a text file by using `manage-bde -status`. Or in Windows PowerShell, use `Get-BitLockerVolume`.
@@ -347,21 +354,21 @@ Gather the following files to troubleshoot BitLocker Network Unlock.
 
 Network Unlock and the accompanying Group Policy settings were introduced in Windows Server 2012. But you can deploy them by  using operating systems that run Windows Server 2008 R2 and Windows Server 2008.
 
-Requirements:
+Your system must meet these requirements:
 
--   The server that hosts WDS must be running a server operating system that's designated in the **Applies to** list at the beginning of this article.
--   Client computers must be running a client operating system that's designated in the **Applies to** list at the beginning of this article.
+-   The server that hosts WDS must be running a server operating system that's designated in the "Applies to" list at the beginning of this article.
+-   Client computers must be running a client operating system that's designated in the "Applies to" list at the beginning of this article.
 
 Follow these steps to configure Network Unlock on these older systems.
 
-1.  [Install the WDS Server role.](#bkmk-installwdsrole)
+1.  [Install the WDS server role.](#bkmk-installwdsrole)
 2.  [Confirm the WDS service is running.](#bkmk-confirmwdsrunning)
 3.  [Install the Network Unlock feature.](#bkmk-installnufeature)
 4.  [Create the Network Unlock certificate.](#bkmk-createcert)
 5.  [Deploy the private key and certificate to the WDS server.](#bkmk-deploycert)
 6.  Configure registry settings for Network Unlock:
 
-    Apply the registry settings by running the following `certutil` script (assuming your Network Unlock certificate file is called *BitLocker-NetworkUnlock.cer*) on each computer that runs a client operating system that's designated in the **Applies to** list at the beginning of this article.
+    Apply the registry settings by running the following `certutil` script (assuming your Network Unlock certificate file is called *BitLocker-NetworkUnlock.cer*) on each computer that runs a client operating system that's designated in the "Applies to" list at the beginning of this article.
 
     ```console
             certutil -f -grouppolicy -addstore FVE_NKP BitLocker-NetworkUnlock.cer

From f62824ae2a7b3cdc5adabf2333477400e624b707 Mon Sep 17 00:00:00 2001
From: ShannonLeavitt <v-shleav@microsoft.com>
Date: Wed, 28 Oct 2020 10:10:37 -0600
Subject: [PATCH 014/825] small fixes

---
 .../bitlocker-how-to-enable-network-unlock.md | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 68ca0dcc0c..092a234e68 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -37,7 +37,7 @@ Network Unlock requires the following mandatory hardware and software configurat
 
 -   You must be running at least Windows 8 or Windows Server 2012.
 -   Any supported operating system that uses UEFI DHCP drivers can be a Network Unlock client.
--   Network Unlock clients must have a TPM chip and at least one TPM protector.
+-   Network Unlock clients must have a TPM (trusted platform module) chip and at least one TPM protector.
 -   You must have a server running the Windows Deployment Services (WDS) role on any supported server operating system.
 -   The BitLocker Network Unlock optional feature can be installed on any supported server operating system.
 -   You must have a DHCP server, separate from the WDS server.
@@ -89,7 +89,7 @@ The Network Unlock process follows these phases:
 
 The following steps allow an administrator to configure Network Unlock in a domain where the functional level is at least Windows Server 2012.
 
-### <a href="" id="bkmk-installwdsrole"><a/>Install the WDS server role
+### <a href="" id="bkmk-installwdsrole"></a>Install the WDS server role
 
 The BitLocker Network Unlock feature installs the WDS role if it's not already installed. If you want to install it separately before you install BitLocker Network Unlock, use Server Manager or Windows PowerShell. To install the role in Server Manager, select the **Windows Deployment Services** role.
 
@@ -101,7 +101,7 @@ Install-WindowsFeature WDS-Deployment
 
 Configure the WDS server so that it can communicate with DHCP (and optionally Active Directory Domain Services) and the client computer. Use the WDS management tool, `wdsmgmt.msc`. This tool starts the Windows Deployment Services Configuration Wizard.
 
-### <a href="" id="bkmk-confirmwdsrunning"><a/>Confirm the WDS service is running
+### <a href="" id="bkmk-confirmwdsrunning"></a>Confirm the WDS service is running
 
 To confirm the WDS service is running, use the Services Management console or Windows PowerShell. To confirm the service is running in the Services Management console, open the console by using `services.msc`. Then check the status of the WDS service.
 
@@ -110,7 +110,7 @@ To confirm the service is running by using Windows PowerShell, use the following
 ```powershell
 Get-Service WDSServer
 ```
-### <a href="" id="bkmk-installnufeature"><a/>Install the Network Unlock feature
+### <a href="" id="bkmk-installnufeature"></a>Install the Network Unlock feature
 
 To install the Network Unlock feature, use Server Manager or Windows PowerShell. To install the feature in the Server Manager console, select **BitLocker Network Unlock**.
 
@@ -119,7 +119,7 @@ To install the feature by using Windows PowerShell, use the following command:
 ```powershell
 Install-WindowsFeature BitLocker-NetworkUnlock
 ```
-### <a href="" id="bkmk-createcerttmpl"><a/>Create the certificate template for Network Unlock
+### <a href="" id="bkmk-createcerttmpl"></a>Create the certificate template for Network Unlock
 
 A properly configured Active Directory Services Certification Authority can use the certificate template to create and issue Network Unlock certificates. To create a certificate template:
 
@@ -149,7 +149,7 @@ To add the Network Unlock template to the certificate authority, open the certif
 
 After you add the Network Unlock template to the certificate authority, you can use this certificate to configure BitLocker Network Unlock.
 
-### <a href="" id="bkmk-createcert"><a/>Create the Network Unlock certificate
+### <a href="" id="bkmk-createcert"></a>Create the Network Unlock certificate
 
 Network Unlock can use imported certificates from an existing public key infrastructure (PKI). Or it can use a self-signed certificate.
 
@@ -216,14 +216,14 @@ Here's a `certreq` example:
 5.  Launch **Certificates - Local Machine** by running `certlm.msc`.
 6.  Create a *.pfx* file by opening the *Certificates – Local Computer\\Personal\\Certificates* path in the navigation pane. Right-click the previously imported certificate, and then select **All Tasks** > **Export**. Follow through the steps to create the *.pfx* file.
 
-### <a href="" id="bkmk-deploycert"><a/>Deploy the private key and certificate to the WDS server
+### <a href="" id="bkmk-deploycert"></a>Deploy the private key and certificate to the WDS server
 
 Now that you've created the certificate and key, deploy them to the infrastructure to properly unlock systems. To deploy the certificates:
 
 1.  On the WDS server, open a new Microsoft Management Console (MMC) and then add the certificates snap-in. When you're prompted, select the computer account and local computer.
 2.  Right-click **Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock** and then choose **All Tasks** > **Import**.
 3.  In the **File to Import** dialog box, choose the *.pfx* file that you created previously.
-4.  Enter the password that you used to create the *.pfx*, and finish the steps.
+4.  Enter the password that you used to create the *.pfx* file, and finish the steps.
 
 ### Configure Group Policy settings for Network Unlock
 
@@ -298,14 +298,14 @@ SUBNET3
 
 To disallow the use of a certificate altogether, add a `DISABLED` line to its subnet list.
 
-## <a href="" id="bkmk-turnoffnetworkunlock"><a/>Turn off Network Unlock
+## <a href="" id="bkmk-turnoffnetworkunlock"></a>Turn off Network Unlock
 
 To turn off the unlock server, you can unregister the PXE provider from the WDS server or uninstall it altogether. However, to stop clients from creating Network Unlock protectors, you should disable the **Allow Network Unlock at startup** Group Policy setting. When you disable this policy setting on client computers, any Network Unlock key protectors on the computer are deleted. Alternatively, you can delete the BitLocker Network Unlock certificate policy on the domain controller to accomplish the same task for an entire domain.
 
 > [!NOTE]
 > Removing the FVE_NKP certificate store that contains the Network Unlock certificate and key on the WDS server will also effectively disable the server's ability to respond to unlock requests for that certificate. However, this condition is seen as an error. It's not a supported or recommended method for turning off the Network Unlock server.
  
-## <a href="" id="bkmk-updatecerts"><a/>Update Network Unlock certificates
+## <a href="" id="bkmk-updatecerts"></a>Update Network Unlock certificates
 
 To update the certificates that Network Unlock uses, administrators need to import or generate the new certificate for the server. Then they must update the Network Unlock certificate Group Policy setting on the domain controller.
 
@@ -341,7 +341,7 @@ Gather the following files to troubleshoot BitLocker Network Unlock.
         ```cmd
         wevtutil sl Microsoft-Windows-Deployment-Services-Diagnostics/Debug /e:true
         ```
-    - Open Event Viewer on the WDS server.
+    - Open Event Viewer on the WDS server:
 
     1. In the left pane, select **Applications and Services Logs** > **Microsoft** > **Windows** > **Deployment-Services-Diagnostics** > **Debug**.
     1. In the right pane, select **Enable Log**.

From bbf1bff0771821a4d0ab178a6d454a0e91ebe9d5 Mon Sep 17 00:00:00 2001
From: Nathaniel Chin <22572406+nathanielcwm@users.noreply.github.com>
Date: Thu, 29 Oct 2020 08:04:13 +0800
Subject: [PATCH 015/825] Update
 windows/deployment/upgrade/windows-10-edition-upgrades.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/deployment/upgrade/windows-10-edition-upgrades.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/upgrade/windows-10-edition-upgrades.md b/windows/deployment/upgrade/windows-10-edition-upgrades.md
index ff9c6ae451..033f0e0e0d 100644
--- a/windows/deployment/upgrade/windows-10-edition-upgrades.md
+++ b/windows/deployment/upgrade/windows-10-edition-upgrades.md
@@ -93,7 +93,7 @@ You can run the changepk.exe command-line tool to upgrade devices to a supported
 
 `changepk.exe /ProductKey <enter your new product key here>`
 
-You can also upgrade using slmgr.vbs and a [KMS client setup key](https://docs.microsoft.com/en-us/windows-server/get-started/kmsclientkeys).  For example, the following command will upgrade to Windows 10 Enterprise.
+You can also upgrade using slmgr.vbs and a [KMS client setup key](https://docs.microsoft.com/windows-server/get-started/kmsclientkeys).  For example, the following command will upgrade to Windows 10 Enterprise.
 
 `Cscript.exe c:\windows\system32\slmgr.vbs /ipk NPPR9-FWDCX-D2C8J-H872K-2YT43`
 

From 97929f6f9264c183dc7978818a1965a1883767bf Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 2 Nov 2020 11:20:46 -0800
Subject: [PATCH 016/825] Fixed WDAC typo in TOC.md

---
 .../windows-defender-application-control/TOC.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/TOC.md b/windows/security/threat-protection/windows-defender-application-control/TOC.md
index 731cab3d76..b29a8d0e37 100644
--- a/windows/security/threat-protection/windows-defender-application-control/TOC.md
+++ b/windows/security/threat-protection/windows-defender-application-control/TOC.md
@@ -22,7 +22,7 @@
 ##### [Create a WDAC policy for fixed-workload devices](create-initial-default-policy.md)
 ##### [Microsoft recommended block rules](microsoft-recommended-block-rules.md)
 ### [Using the WDAC Wizard tool](wdac-wizard.md)
-#### [Create a base WDC policy](wdac-wizard-create-base-policy.md)
+#### [Create a base WDAC policy](wdac-wizard-create-base-policy.md)
 #### [Create a supplemental WDAC policy](wdac-wizard-create-supplemental-policy.md)
 #### [Editing a WDAC policy](wdac-wizard-editing-policy.md)
 #### [Merging multiple WDAC policies](wdac-wizard-merging-policies.md)

From 1539eeb41ff9599f311409cecabc6d3d74473165 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 2 Nov 2020 11:23:10 -0800
Subject: [PATCH 017/825] Converted **Headers** to ### Headers to align with
 style guide.

---
 .../wdac-wizard-create-base-policy.md            | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index 269ee7607e..0d1d32ff12 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -49,7 +49,7 @@ Once the base template is selected, give the policy a name and choose where to s
 
 Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. Hovering the mouse over the policy rule title will display a short description of the rule at the bottom of the page. 
 
-**Policy Rules Description**
+### Policy Rules Description
 
 A description of the policy rules, beginning with the left-most column are provided below. 
 
@@ -66,7 +66,7 @@ A description of the policy rules, beginning with the left-most column are provi
 | **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
 | **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
 
-**Advanced Policy Rules Description**
+### Advanced Policy Rules Description
 
 Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of the policy rules are provided below. 
 
@@ -90,7 +90,7 @@ Selecting the **+ Advanced Options** label will show another column of policy ru
 
 File rules in an application control policy will specify the level at which appiations will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports 4 types of file rules: 
 
-**Publisher**
+### Publisher Rules
 
 The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specifity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
 
@@ -104,11 +104,11 @@ The Publisher file rule type uses properties in the code signing certificate cha
 
 ![Custom filepublisher file rule creation](images/wdac-wizard-custom-publisher-rule.png)
 
-**Path**
+### Filepath Rules
 
-Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a fileopath rule, simply select the file using the *Browse* button. 
+Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, simply select the file using the *Browse* button. 
 
-**File Attributes**
+### File Attribute Rules
 
 The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (eg. DLLs) may all share the same product name, for instance. This allows users to easily create targeted policies based on the Product Name filename rule level. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
 
@@ -122,12 +122,12 @@ The Wizard supports the creation of [file name rules](select-types-of-rules-to-c
 
 ![Custom file attributes rule](images/wdac-wizard-custom-file-attribute-rule.png)
 
-**File Hash**
+### File Hash Rules
 
 Lastly, the Wizard supports creating file rules using the hash of the file. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. By default, the Wizard will use file hash as the fallback in case a file rule cannot be created using the specified file rule level. 
 
 
-#### Deleting Signing Rules ####
+#### Deleting Signing Rules 
   
 The policy signing rules list table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Template signing rules and custom rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
 

From 9b7fd06c9c07e178ae7b604d10f5ac2d14307390 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 2 Nov 2020 12:13:27 -0800
Subject: [PATCH 018/825] Wrote the documentation for the supplemental policy
 workflow. Added two pictures - allows and disallows supplemental policies.

---
 .../wdac-wizard-supplemental-expandable.png   | Bin 0 -> 43188 bytes
 ...dac-wizard-supplemental-not-expandable.png | Bin 0 -> 50493 bytes
 .../wdac-wizard-create-supplemental-policy.md | 109 +++++++++++++++++-
 3 files changed, 108 insertions(+), 1 deletion(-)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-expandable.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-expandable.png

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-expandable.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-expandable.png
new file mode 100644
index 0000000000000000000000000000000000000000..d59559152524da6425262187a27702c8c075aa19
GIT binary patch
literal 43188
zcmbSyWmFwO(<TuD!JXg^!QI^*f;%L*+eI%H+}*jjySuwP7k77eU-EwY=lip}-_AL6
zW~QfSYI>@=`>Cp@gMZ11!^2?1KtMpiOG=0+LO^^rgMj!1fd2eZa#a6)_v7#hpeQZ`
zQ9h1)_;K;oL{L@`0-`Ds_T>-c$Mttx2@L=Q1d7AI{nMH;feQpgp`@gUpt6hZ$tt8a
z+6V!}#p3bb98m$rO0APKI#MeUMYLa4ooA|@sz^v^$d%iRtE;palxg$N8Era9RU5n>
zUh8fh=i=wa#wH(I<n!uD9}2Vagv~-`yHJ+EhfIhEI=aN?jZG4LwNZSi<t`ble}(PT
zTu$_`#;G5t0*jlCL;5lQN`HdR`^GJt0ZC}&Zo{M>1%Kb`KT0$#Vubal3&9||pVZKl
zYvv)J{@tmy=^qEn7<Nat*}Z;^S7;^8Yd~rUG5-GX*hK^OE2MFk9x5_&S8j;A#+Ax?
zSlU2D8Z-0M-1Hou^QLja;xldH1QRS070=$X^%{C=&^lXTz%pN|OKaBsXy{Luqg)wT
z|7p7Mn#H?R$wYWpE65hP2|Il2GHmvcri89IjHZt9HjQ^zMe=)DtEW3d#q~H@BoVgQ
zw<;rEnwI891gqIi5hA54^s9%3<vecfQj_&L8JMhbR%qvmOICAd`q>{kCgBr)6^Qv_
zO^98I!(P82AU571`PBmB|JIE9bQtdpMyr&l8Zkj{ve5luTE87zcpSKdEvj~6PoM8_
z+N~^yt~(_9jX_9y!Wzth8i0y39zx2wY)5?a(?rP4a4jbkU#MU_U7gkG*W{nEYx|=|
z!8u`KYs{1b#gcO^X6wrM+ddiP2g0)p0PZtdOFe$~?(%*ACIg#`K*uh3g@VN<L@pt(
z>WOxT*+`w+JtmyBJo*qmA}+)4(<zr+mxXoiV)IC@#=f=^o^Nnh%EWQ@fQcrhXDChA
z=})ZgdzlJKzGLR5Vj?yAlY+(k1><KaE6)0Mm95RT?h9FC+nBn2houza=c_H8E&}hu
z6T2MG1Ba;3U-}VoaSDqhT&u^)7w?Y_H_8;|>28p=+WD*Mur0Z{ap|QRyDaevdOV(%
z;E$a7vM#prR$a6jcQTDDCJGe84-OBNoUzGIOWADHogJ$00s;@f-zpRx&2NuGpin6@
zG~jU?8D4Jc3z5t<mcq*@^tPUD@O^YwZ<TFIOHWq@fDx%R=vgmSzEF!U6+P%NHm9q2
z)s(-_VdDUKJA$7+%&wZ<W=&mPedB9;pIP(80I`!;tR6IsbP~&cXLnzTF%2h^hwe&h
zWn_hYvS_Vf+Vhsy{AT+xZ$CzqVQ9XNtyAYl`NJG;)#d5rQ}~6IR;b(qTX)W#-}d8o
zqV2Yv^=-?7B|M2MZMR5YLwCYyJRj+PZdt8`A~!BcV~UP04H@8{#iX=~Lx-IUZ)b_=
z<~9;Jn<@*tcv5yPZll<p8p4U)ds_{Ci{-wFhNU}AAV_9m+H0?m!UES=FDlj$rg##K
z{%k%$w`$fZ#?r(zE|OVPEUa>%;f_RXW7+SANw5{6oI{xk>iXQgXyk0}(eMjhEW#EI
zTdq?e3zw+EeK8nsU2<ZqUhDDTu;2S;&g~(c7&bx+a&;gy<rs%j;;IjbXk0<7xv@;t
z^R%J06s4g0;H3FHtmV5W7fh)Wh(D@|V*aD1hS?YnJ8Zz@{s6zgu<`FzxbUP#O_Y0e
zzu8(J57XgyeCVqy+>)pU`MEoS_Q&tzbyQqG)7?;uia$E{H5@j}VAa=DBa9c;9PvnF
zMeMw4FT98VnPNEGm6xYhz*7ifyn`OT7t;-R^&5N%Ps^h^)r)(`)_Pza2~hk`hh)w-
zXm+vl+Jo&#Sbrhp_EVl|`1SfyqpOEgjaN@k4qp8iQjDzBwx>7!XDJTuI*U9|p@HM=
zTifzvdtSi)L|@dahsjC$Vx7||s!gq(zal<bHW%f<eXHB~=_XLN!_3j|YKIA3h`J|&
zH|)X=m(!zBspE6eu!n<^;gT}myXig=OA#+-7L2f!R`!ZP;Q9=;=9Z*s86TT6rrDx6
zF^P>_D$Av@;m&t5)=zq@6F8Xir;Aq@LRPo|b7V**bqzyfI1Y{mw634hx^=CjtCK^{
zAMq%l<?+<)zuwHjX7CEwCu^rfV$L2K^mLIl9pTr^^U_)q_tG-1O^b_*!x1dHt+$kb
z<i@IKb;JwH0{PD3BQ(NiP=eRGDZ??+2bXeK4u*3Q^w&AQx`>6Dl+0VwsV1+=rT%y?
zl+SqM^EPqdFlP-l;H^ZEij2Q8MhL0B2rOv(1d-`}ce*@~sy5rHVccZ{H^E^il53J-
zq|D{C22A31+Cv@rw&LqtDqgF}Yw~bb7kEOgOlZS9==DIFSmY<16L=p)MA90NVt(s*
zhsU%sRKZP0LzC+xZH?h5S4+qaDx7{?z1-z!^BB`F3OUxNNWlX6)hw6iv4|Ho5Sr+Q
zI7GE*6^xf}mxiYssx&{JEDl$Fv4ad#9zxO!L%nx)(`Cn{VmO;qCr4bWbxeDQBWcaz
zF_%VIwNO58<KZE8|J7#h>e}Sm7!<d+SMuaY3)kvnU?ByLfR$)bGvI8??!Z?xHt~3x
z8@sy%+!?iL)&R#!PQLJw_`<{8s+F&Lj}(aWSOg6Gu>p(wO?SIrS)Cp{jW}^?%z*^*
zVDQ^m@WldTyM|tvOX{pFcbhbB=JH@z6^9i06&We{1D6s?${I~8lrDAm_q>3B*xCc!
zCX(!$Pu0g0@6~dDblI4&X%O@3uQp|Q%-PxJmjxCazSZUTvm<!Jt!rXOc%pGbQTX&%
zgmD80Ysx&0y@kl=M+eea4&Khb0)8PC{6zQy(dnf!Tdbnj2J}aLsNZqRSRbgbud)DF
z^2G`d)_&$E(@6$VPYjK<UDxmCiDN9a^5hh2qTjfzf+Ulqeyj`WW!kK^qYH_tEQ)mC
zr(NQP_H52o%t!TXf=l!Q$Nqp=ERU8)eorPH;;kgkl^KE;=QMzpPqlenp>G`ey@IS3
zAz?@GmcLb1^bI*G^L9boMEGwb^90;~f^fQJ&5loDlRl;yI_qOmLDZ$KALoqC`D2ye
zF#)8n%dCa~&iwGB*<;47)w?Xf7bjK%uHq03amA*rswe?-1+NLp`$RZh*EGx>6Qwru
za1?5`?C1Q&PYzEidk5ty&Wew9yG4jcQhfQS=st;K$$%{fbmZpSw?Avi!qnHz=b$-Z
zB|N(uko*Z99+Q(Q*#EQqv77;ga~1xHd-A+VPopXftMo)G@)}nnnb}fxfkWi{K=Uij
z7-`)RxOmDyd8o};Nf;bt9W_RLaHDo?%VFuxJ)W07i&R0AW_*gR+U)w&U;Foa2Kk;I
z_g9`QRV&@CQ=UifgTYB0tge;<L@b8l;m%-LbG0&y{4%4tPW7L*$3_h5fM3{}N%IVT
z4LqM9-XUDxG*RfPs;jdxU(u0~k+ZV0WWHs6M<w5g=?}+Yeza+Pzd%N=Vg~m9a?9Vq
zv34h|;}pR=s-b?@oM>1SnGFHue9u>(Xt#<W$l@D(0xdA)ZR_q1qFQJt^ZY|ov4e%H
zMj>f7HM2r=3W7HPK2*35AoT*+TzI^lfQeTW4TSVY{V2(dr*!%UH#2|q%KbaItJ8e$
zruaDfh0vQ%+r{P!h4CicK`tMYTV7r+qPVrp`f;yQPrySph)~^<ZGSyv%(zCKq3YYm
zK+Y_v{ek2lhN1NT^8!93?tj4U%6s7-hKob|-vS8#BX9Rh)j#n+p+5gtWxD^WZ14Mj
zs!R}+_VJ9sqrl16|EZjhM~z~EBW8j>W8db3VN>i+M2TWQKJS7AiF<17v|S|nPWL!@
zS}}$$aBQtJ*K5b+A^T#xB1vY^2saP-t1DtCTRF9*FZVq+81GRTge|**!JMZTq+NZr
z0M%8JN!N(2q^wHmu$`C7ApHqqWBrhyfV+auYP0c4kWEt3<0pT;d_T<tE-2E4nEaK5
zLdZBE)n&qPIHE^5h+ZyI$1QLiP{fn=Qp16J_t)Q<<vD?Rohv6;9<62rAjC+VtAVj*
zV#}LfSQ^F}Zjj6oJCrMF03`ZQsPyZ+!T#GtTj8zWHx$|a!nfOfiX_|kht7$<u~{!;
z;xyVri_nPD<ioSG_NT~W!=qha#Hr&MK_zmRfVWE@jZ(qAjwDu#yNAnd<8jR%G!HTV
zU;a>Pi7pMteQ0sE)_EBvEziZiiA6G7@zI_j*1m(D#lo>b{Hepiyqt2<$szfxYDLz2
z&BQymRap3`+^M7Fw{q)pOak&Ljj+yW?)$ZZ>uJeElji1@r{_E(G%lOo$1P(30b+7f
zw4_&nd2wUYSWQ5@w$Z{05~;@#7YUqvenB`sGqWvs4fOLk$Hy>te$;`_4HaG`s`e$n
zyrX-ERq;-qd=z^Zq>8rB$3g;qbVD7;nXF+RP0ltf`gMx_AlMGFhrj>!N8Mig9Xoj;
zthfeV+nr2lUaT$UUqZNcw!V?VIenmS_x6->>$8LD5~|;-cW#JS|K|AVsJ1iV40g0M
zFTMrFm_5PXA6|{vQS3v^F4h@R>5cEb4#dD`>ud#!Vn4#q^m)o`@eZb@<_&LLZE?S^
ze@&x5wcd<{3q#L14K1O6#UcoodA8rGh)k;XFR!0jKa0d!ba>*nx5lGy8m?MajC167
zsX{FQIt$iODWKv8(_LR?SHP2hDD?{xsKL6XrYc4%Po}FQRI_YuYHDhFTK`J#+Q}^{
zuS7lo7fQl+ka{A3oxM;3DN<5VujXdFl}>ma$gA^9KpBz9$V7@3JB^8~RO;`pl+~3%
zYJM0~NyA+@hSy6~CSL4&%Gp=OBXrJUuGqXCTndNMTtmStjFw^xs#tl|>+f4clEq)3
z92;3_99zEVgc1f>#yGH$YvPl>YI;sahnaVAGw<>)Qd0yl=tvij&&--KKVe&Wt~-^g
z^dPDc_sF$*2*eyRFFEnedAByn)Vxp$))LuSum;0`cBzZSkZzr${0lg~R-G{(DyS(z
zN(YluA&gL{Jdg<*`9RZ>w!kKlk?{}(0bLA};`#K*v}K(<(1pNoq(jdsePAaeQVn0i
zvxFZqf%|e3&SBF#AAZ(-9kV&RyDGE_)^1uv#-QZYMk_vv<`0ZaL`rC^Ndh1d^hlG*
z4D%WxoA|Zo&b4Cbl|5>NcKf0iF7LI0#4c46OU6)KRIL3<yA>I5RmnxS==ZR6%;sBT
zA9O}}QxFougS%gZw(AR{K6D#Kz;Ua{;8gKY`=G%=_g+AIXoBofwPD|^$&`XhsnwyF
zl)~`U=n_pg_X0%L0$~36=4^mQpsa+@;X4ss;1CHLCKMYwlPxtuYEqRjRIY9W_l@;2
z)Srq9$Z>l2b}6+L3&?b1%#QdKWvDEZ;P2-hxF#P?H^twDM@g^upQwHa7Hh6K`exCQ
z&*WLPxVfrChMMM6CD3YlaqghMJ&P1nbs;^J2;zOyj#PKkSoI)XyGlN)2hEdQ9Zk+m
z;dLT(78`F>l&j{kHpvRn8j-=_f!!wpJBvixdt2+7QIo5tB)o!&G`n<$2#pSCgw3(C
zd^!#MO4}~m=3W8PacY`3E~z^$KZnbc)`uI$TMZ)Km087ez5q*XHk-5R+wC^q25W;5
z&mD`B%4E0PK`{x-5UA&xE*X9<knYD6)Y0?~Jb}ZW=>dfAec^y^Lv)lAYIe$x?@uDJ
z<KJ_A@eIqjUWt{^`U{rgL3b#9StL$;EZF}_=Yqs@^d}<Uux6m!gEJw1)Vjl^yhu?I
z<L#WgownV>({ySLuD1u!YGZoj*7;(3qtx4#HENx5U(_@v->XzY5@)E_1chFB9M0le
zHT!IPiX3l?cC>u|$~D33I({1BJ42CY+zG%OYp!f&f8|VX<a~`*&3JO*3%U=>?^Wtq
zdUg24J^&%hSLLcC?yffDfzQS2@gmqY{DGDNtADn^z}}zw8h>9pTYx*fsfbX|;U^fK
z@_asE`RL7iZ^u<N15wDBdks1AI4RGmjqy?*^Taz=Sz6<|&6QQJ5#wJpvs-CM3-~%w
z@6KvO@ql1K$NqKb4Dc^;C8k4xWrP@Hq84>K1H1Z}T6r5EVnaLgnaO5l+U{%3SXG+1
z=mDDFKQA3BD>*{&G;P8|VQh;do(C3KRcCKmN>cbN7rK2k>C9|=WKP-&Nrhqu>V$mC
z^#bZjYrAVpC%kSl`*r}xu?MIF^(6qlJ^U`CL&~49HW~@y=i6DO;1uV5)8eF|r`yR=
zRg%HAPW=a|Eb?ns@Z-Wn$C{EkIxaWhkhwPES@ci?%1+^6-*?gIw{$brzjklb2xZF9
zeD7wD#+6Gmp)HwEbw!Z@!;%g`rF>Yzi*J{Szd*9#*?qI`QXI8yg03jpfRPL~1jO4W
zp_2~*Hz>31xf`Eci7ii!(fX9d2s`#0#9uEC4ingaaN<j9&A$-XF#P`jZ2bS=2c@$G
zN;H^cv=3Pq8Ojk0L;6)RGBU&@B$u>up(4cI0-ZF}!F|y|{C#R!>fPQ$v>%YiE4n&>
zm1h+^HC3eB)|{A#+0M$wwpMSooX+be6)2C(ah)Ei(HM@9!C`By#j)p#?<fE9`geSz
z5VLRJzE$XT^lvir@x84y0Ui<vgCt|gWz%^yh@%<eO=%)H-WSi%v-D|YPrxXF<qNMg
zdSM0>ppk+2x?W-oL6zP=@guvYlBC4=fxoNjYHe$G6<}>~Ea~V5R2CgnKBR0oU->Qs
z8{`HD4;8DFq_A4dwYpx%#l=nKh;M79_DhQrBZJ2J9S?@#FfcF4f<#57_+TX;f<}aR
zXg#)GAu%!Mu}XwQzman&2GH3_OU6ENM!>nHYAHywI$jOV+98IKen!yKD)c-)KiOh3
z@YgIH@W1%Le;e%AZ41G^#EBzTv&Hcp9sCFxBMG$3Y;66pa_*rsjiii>RaVROjpHVp
zv16juZm|?V`6Pxex2+vFCQ>A#+0{C9nlc9}6*)d8Nqs&UEv;5|Qxji|wmNf_)XAyt
zLRrMRgg(VYI-GP{N5I5E5{t=vxmAqwx<~=uvikWs&nh<)S8&op(htwTAAkw>!x7#{
z`{aKHB!G;YBtiZNi4X|bA5S};ui$sN*m%6&Uu||Yz##OSY5ba~*JKYl-^H2?sYim6
zLpHO&P}bgV*0;6FuDmy-V3G@6H0f;;nLxL;vG8MT1?YTTj4u5R#P6Ee_9w<U%{yJQ
z`g4^lK-hu$j4tE8t==nzxdO&^kmrJw-KFtxHQsSzv~;m1Az>^g5rbNn@gKg1fXC(T
zz~V!P5uM4Gm5kA@{N1%T21=eL{`i>fyheobp*Vdi$Sro=Ci0(zgoLJJ!~O2L#8aRh
zpMF`39h3YK<f#R;Hjhwsnz(pxFcm9kWPD;MiW=>SOH7;X*zrl+fRUe@o11g9t*qd~
z!*b6{F?*PIeN$L-e3~&j+gk)!aI()^SrQ*;>!4ZcM2A^EacSsob8j-gwns)HrvGt^
zaOAfq^QU}KLI@lkkll1b(3LR^;hR?xIFS?kc^h+_eJX?e&kG48NJaXvN2cV`%F3wm
zxpEzDDyrg-|LlPApLV3ZehrkbqoJS>&liJ1j~R;Ap&v<>i|qrVyHIK&l4pC?MQaa%
z`=%1*3TMq%<}xG3=vx&^R~ucA=V+~Yn^AE!rmpk~@1_%btf=HpO*?m_3Dssj9O?H#
z6gH^zP>`Y$wIa;{ny*W$+74N!6~i{qTbzlgi{HeA5)q8+0TB#&WCu7T$e2WI@>(}_
z72iJmfrpm3!?E7224-0qnE*H}#R^?sF0CgeAr>PdMPmjtKc={!%%~brczASc;m4@x
zs~7`(4BaynkW}EWDX9*Qd=XU~DEqkuo-*fL?+2tcsLHZFm9;vVWwiNJuTsvac|RpF
zID6xUyt-T~hkAvJWb)B)7mhV1^cr0*eN^1EX{`DBn8BrHGq3%T*B5%ONkzUWCR{Cz
zPtP5Lc_x$Rul*d{&lQuo(u7kFMkSb|h!P5Ep&<S=D#_M^las9uCgqw&=uoZ2uaN}1
zgDJ_4d7z=6hG%}+3+bo4PK>c1ZqtQD9Ho;~o+4K?NSar4ra|5AkwVHWCK;~?7#Anx
zKM@v}D^4{%&O%9vW!04CUywvvguh;<uNafRLPJT$O7>D@u8Bj;OKWAib3K?99~)!8
z=eIr&CRM4X=7Pj3*5f(nx#H1l*}EscftDU>F>(E9A_4&~AD7!)m|40ox!#Y;`8qZ!
zk2^*ZtqP&tm6@L4`nSdqwm)~(LXOr~BoymNerHI2oF$&GQcVre*|e)-jL~e4EpFxf
zQ)}3H14zbr4kgNxE5}00_FcOVjxb$f2dBxB(%H6iv#AFSPj)H>a`TKmQ?ZTFf|0g=
z#-|{=CcIubtv^(2L&9bQUsr?mGk!S9haTF$Tc^cowZn@*{;LJJaP#mG3l$Y`xh0Ab
zI$Nkf!UIpsm-CFHSTf7S#igmKDf4EL{~C=A;J?3Bh9!UZcaxkZkIjhUPGNeC!M7nf
znn+>oQ4quEr9-F<@vI%jmmjV{6v21BdjW$x5e@IY`BXN(64#l*n^*rZRbov#X2{M;
zLOLqHyIqWu&;(7w6HPd+geMjyH!jp#nRn;S^499Xx&1g(hD=nZ2=X9pTJiY-3_ZF3
z!#i-DcIB?;V@p1in4*FV#FVS$ksu#HU?MC%kBZonVf^TK8P+D?GlB_jJJa4z_I)Af
zBZ>3`%*HZeVqzVhuc~F5{?eY;of=~BR2SRp7!1i3P056!=no%?%7dFd;quztG79~y
zYjmc=>-gu)d+2Kx4sa_;v0T8C2eLHXi52L*5AiZ=@D!1FIE|}BD`>2$y4CW4tdw8>
z^YWVoFvi}QigkHhx{*}qU~0J)qpYwqn6)BI*NE6@s)|^h=H`x-si0kdgu&S|9pzp<
z-JY<4`RhmQ;bC^zVH^W$5I5ZCGgZIDhlM`VL#HlCNaMw2HNI_vo|z79kAm2mW%i`C
z$xE$445I1{hu!fdtvSkWJw5px^+HT2S$;SHulKkeQdA^~O<{nlBhRZm_rs9cPoFHv
z;ZMZf-)=#*q~zY5nsry$J7tpneXZiYw^5}BHKXQvxGGhG=h;1LN{fJoi0$PxqVd~D
zbaAVnuXd&%BQn2Evi^R@+Rx*VvINi9(4Qj{1^YY`k(KZL6u}p07j{8=zOsJzWp|w7
z1vH_YSS)c*WqE?2@*E#rKan2u;G(`%WbW}3X6IGjhG9V}X(Z#cf}^+}Z#QUhYFoXo
z=eugFwcV`fR`VHId_{37VK8yfLswu*4r)p6nzf-+&6U1$DqT&$sJna1Vje~v(}$Av
z0)O^Ar@fmRxpu_n^S`?q7r!jsVAE22JbfDsI_Sk?94bhhJ=7=C5AjrM8h8m)HJ6kh
z{eAV(7SHgs7AN78mtID4J2!16rVZ5+VyO|e-S$Co@)r|NR&y*Se#Lig3qd5^^Ff99
zWSW1{zUuF*iL8u!CQ;2GS3b|7urvDWeFPvNF0gR9H($r6#Was-j&-^^YCio_CWId3
zf5mtHA0gNHd%3Wd4~pljW8Vk~g(<qDYaNqh2e`sHV<cGStYvuSWc?@*@7dUYAh2Hh
zaR}=C94oJ*HXaX9Dn=jln`t-Z+C>G7PX220Qrz_jIe`2kOX&2b;?_o6?C5-JYganc
zl}!0mpEOmcx@I)}?i|Qg>QbOTO=i_l&cVTxKEx0M54oDWgGh=bLguGzRIaBuH~sjK
z%os=*mh59wqGbWz<d3L--GdyV6wT3TbnyJ4b7d0manBFvY(rKE_f$qh`HJkI7yIJ3
zrpLMJvZEG&r}pqNyf1n-@J(0ZWhs9Dy|n`IZ5|)atB?Ku;3GnRy^__zWH~26u19yI
zb}c-?c!)CG>YRaBlmSgJ0672ndJ@5t7wOyrlV;DGQ2r)ICEJG?SR(nzfK@l!HXHh*
zCkpX-AVO_=C@MXIWi8Iu@BK>Xf_q#b7FQqN!vT)p8XWed%|M@nwu{kxc9(BiwzYe&
zS-23tg+(BdlY&~|ao|ikK_rL6@5K1{G3h6Bs$xu++d_-Sqy1+C>w-<6$uaK-wp(L|
zlT~>OJk4X)h2elDY@n3^>!8IcQS*ypZ|hXK_4ApL1ptY-DE}aRl1px-vAcZ<q!fLF
zvA#8FXDr@)GB=0}K0`al3|Our;If=c4TqG#t3TaIS2+VklH>DN^PdjqJ1m}7oq4t|
zJ595)SLh1pfZ}3MQS7fKmoC5X`X2C{?GRFfFqP5vgX$ijCH0-oGBFBu7c{gYb({aJ
z&Ph;dWk;X5;iMZIa>;4?&IIz8rH5**)eJj2(l}z-wi;A{O%d0fxBuK~ie)j20c~D{
zl_DA*%rH$;gnxTn*j)|Z5;+X*b>=->Ak@@hZ?!O9KCRI^zvt}*EvPT+jfi*~Kt<?H
zu;`+wRp{&Nmh3-3iax}!S*4g>Pql1!si9oNtYoTGL7N?7AEEOF^@c~<X{;IQ_EJ5Y
zSIGITyV+V?{CyMG-7x2=N{BL-05nSDlccMwQEcb;Y<v>eExZH(hoEGJ0%tJYG|RgP
zcq|omG8Z>Pp;TwUG}creL1po$jp!*X!q*ZtEm7%=i2Tz<>4uwAu<*+b;{)|B3#<$1
zRLL3N(-gD6<VA{3jVD-c{-8_ea@`Ijsc~NK-o5NY+@r{N?ehTECjKaQ;12wAmV>EW
zoLMoXct8~55w&jdl&}>DED|nCM&5d^z%A0+C&4Z3IDm9vd}a7~8#rXCd7IssL8h6r
zSK$D4*Fi{z65JkPKlb#y_|3$Ne50Yk)xuOv47k++4n!od2LOsn^xv?hf!LO=y}4Cw
zXR^mY>w(~XoB&N5cj>)za}Gn^wjlSm`r)7j3qXsFyUZ?j@Yv;P62`Zpp~P@*`rbnm
zXPaNJKZnf6biBR;GbMk!t)$d~98*a%B+Q$)EH97D4%x#rCrBl6Hzqw|!Ya)g>1As^
zOY*HU)IN8Ya9mz&j`U}TaM)S>Y1mvw8Kee`_4{p=%7dCKB&+@F^C_h-zo54lh;Yuq
zy361bte2XGo{<(6T382SqMxhfDE!$O6E!yIw*ABHw-%F2=jronOFJew7g4hK@CmR4
z<|OaApSP$>@jhpXv14%wIG2|*<2*ka7@S(g(Cy(AmLrLYn`5dYAL2okq}Nu=(E1c9
zJe^|_%gxH8&>XGY{Az*|5T~v~Y5dg5u`?sayu|qpdN+1wI9)}5dayw&V5a5QI$uz^
zSpM16u>_uv-@VPAqp5&%qicu2yOS7riC`_tQ1x}fxueMf{8)6#y6tO1%hPJwk~XC2
z4#C&pX4!(uKB4}caeIdia92H-ofz`9hELG$m*z7SE6V&<*D<OtY7y}2=X~9qj?A&V
zP)j8_Y!1@cWce^m+#F%PQyjO`&fxz1Jy%ktB|Z5lP1~VH)H?c0dcF1)uHu{Y1i%G9
zk4y7d-R05qPGA(WgOXLh*mE5t7;Yq#)V)OEMS|Pw>a)(YUiYg+OicElb#DTKu*iT6
z$KRuvyfkYXX)&}XL*(*umg4WH;N2fvS}(tymXe)}6-%}{8n?vV0BuJcjQxtR_mwJS
zaX!qh;<8ZX{r7R%J+EhDAoYDQGW??q1fxOjtH08(Hh4v&+LZ0HFQVdlNpok^UP%c{
zE;He-8Bea@8pfHFH;5P>trc&N?IlZBNxEa@^H6@&3$0~jbolG>4!^#qlh$OIsy3cN
zfYhd2q>(Q4O)~!LQ$N|wo%@*PZCk-PTNGiFjHJ%BveRCB*u`y{!@k{<s1eTiVzQI9
z0f0|uWXVPH`3X<VZGCK>k}t2AoI}_ONSLdZ1u;Q;#!$j9#b0K<*4QoE7wq9icd}Z)
zsp678mzjNRX0wEUdb|ijair#%zV?Slt~Ry(LR02pj&)f`HN0P=C}nH{XzOczWcJoa
z0oMGXM!01cmC|QipA;JwC6txxdD-aF!MD<c(n`f)7*9fHxzfxRj22(KIBT?>D#ff4
zGkv=s;97RU4*+!OS6ujWlw_4!T8ryYmMs@{$4+Twm(!)Lq3n}8j5GzP^AtlSsEb2&
zuy`$7{={Dixiv3a*s3aZAhB<Lh2J!hE-kMwl)LvPil>6PzVJx*Zc2kDf`!cqlc~M#
zv;$)5YIDh|35$6QUW17wrplPO-Emj{+|#b*h&z>-Os*UwrLz|sWt_i_NEduh|HaJL
z-MshZg1AbM49hXNaUu$aa;mY$#m2;FChx>YTamfm{V2PP##l)5Pk%@mmJ_<Zt7};2
zVwKg-z?B9M-}%fYon2V2Vo}R6Lu%)&97g4w!xYbN`#$qOS`HCQm`(no;I*8*``T1r
zo4L$-givbaoS<wxFPEpJ#7KBv8uX%Xlzox42&+r<bif0usHIkH=9A#yJ`$3dcd+*=
zcVsH<YEP<?C^yK1j<y8||D25xrI?rb=42nS;{^Iky#;mMR2gpRo%9yE{OiTE;lY+!
zO|<TU=X`p#<xz!Pxie4W@gYFLp%Fl>h7A4n!&b=<$+m)f*SQpn3%t-?MQe~lpX2#Q
zF`E)6(&Fz@gQ#a-(T=eh%D!Lf6l@`Ee9?^x%n$H-H2Li5jKuwpLctF8?mw!*2gkoE
zk!PODfco8?tqcZkDfZqzP<EheKZ748L^m}}jc|+}$(*FOLb=KO{)1t(K28D!%0eW?
z+MX{3h|4!4-%vSd^ig7V`vf>M#43d|?%2Bv?^83C?8iC<6e@jc8M$ojIxSnU@i_W%
zGo_pfW-3n-)G5X#3idw=-eWPIrk-w0NDs;=cO~BhK>L^5g`3ML;olZ@$0X5KUjmAS
z@^jNQs4-8~o?d0IK4YySs9isKEB}(G7EO98OeomcTzR~Q+_ta?!AfCwsow6xI5o$n
z)HN%Acs&R%#`aXrzLyWzV^)qQRoKs_)U)wZY$2v<Y8FzhMwCd%pzrmDu$#S6N>5p;
zOb(Ji_c`g&m8F%5D&qW#w-hEk%X47Wl$4!vreOFqR!hlSLC7fRS^u0IS)c1ZnmZt#
zl{-GSnV3y8m*^#HDECbh8*S^{FiuV2Rxm*=^Dw5~*uivE9lb(E5BYUU$v0m=UNItY
z>%+`k!_>8p?xv(?>Nx{3aLn-;PQ%wp;$+UH2bvtIvE8c*)H$ID2DEMq1V>!4^|vY|
znQ30{FxxmU4x<xVw`YVgiw*+6S|^OrF)}&C90_Ql;<q>;lJ)m-TNorozU$j2=R=Mu
zt_Vxk$s-!aa^-4@zV~??`F8r55hd1|bq`5^Q~74;T;T=xY@N?o#It*}$+E#&r0VP3
ziuh~>A@A9CcOSzYXRc!b4Cg(8qEU*c6abJkCvkLZJA_cUOIqB`bJXtc=es_)f1OWk
zSuT)Gw2|PlV|vls+^mmZezBWfff7_(7|`2SvFa)C6XV@?t7&S(Q40=pCIh`1mqAu=
z@Y)c(-oLOQ9SZ{g*ygaGo>Rh6gR@!y2AN<crk=c<eY!SbDX-bCzEllFOkf*-ZQ<@6
z7+^i;82;ljSsM>HV2kz_4nKa=MdejX_Xv9rFoV<}02EOWi<;ZR2$6gHZe1R|a>2X!
zZa0v;FToc_Y}WDf-MrjL!mI>x;#qJ;p0RL>SUew$V%(k8aZm8#nH#hi@3$hT^glm{
zY6GJJslLJ)rgYCxW3Q>E!=W4JF=~Oe&6n#pXYmoPSMOId@)zmP9RqoD<Y^BTS1rQk
zBP<9OB+^oZ_~Si`*H?|nJ;gK@($p3#Q;d<rDLkBwU%pmg%aWh17#lR4f>*}tR!_BZ
z7s@LBGNH!Uk&N<{*T|Zi?Q0iJ5w?!|Oowlj{Q}|Oxb23{@?+H-cZHF|->){OC8qh-
zxO6D;XGc$sW?^-ZN0bNX`mvk|5cn)|uy>eh0mK|_?d@Dm8C&7E;EV4U&*Z=JPDJlx
zgd^4|thjtafMwr9_9GjghN<D(+aa1cGZ?k49DGPh_x|>6G-IZ@Z?uSRBKN`UX+|C1
z0YOGo5m)yzLwW=4zRD>95lCD5w;DBuk9(zWAm|shF((|B#rlch{h}E9Ge|E7pP^)&
zZ?~Oqy82@}*9Ev+3dtp`&DbM&jz!Q()f1QXX3DNR8OMtw0@c5vw|NipOs6)F@%^@b
zG%erDa*O;4lrY6_1{3&ydwvD|xDQ?v#pAdXMZ`fnEp@~|G0J74Wk8fLpFApWkj^3)
zRqM8lU2Dt3p?@@8XQT1PFBbv-4%oe=qcbRg15v9?Zl2C;rZ?L=iEXt^5FCx}wF7dW
zA~ZRvZIuni^lG&wG0-ZW9|`uLlx=EwXC`X?)bs8=GnN%`{4}u{Lf9EDlytq!LC{H6
zx+41OsnwfMmQ|mj=L<K`SL+st0Yxx8L0_9(HPwtkuO)@20|zxO9okH{KL&e#arN6%
zdH`WhQS?%;Pwhu?lE}F8k{7p<(Uj4<{{Bvwws9BxMkf}J*IVXd4cX(PXyi@Dj=Z)n
zT%5{Y&wk9ex`o0V$>$nL%#PcTfg-C=qePou`(r=Osjyr;B~1A0l*RN|u3%r&mY=4}
zr*4%z2wd3>tNE8Ru-q@$AKv+n1YA8{u?;QL3ExiYBjE?mc`Mx<kEH^u{ei%5KrR#y
z4-cMs@F@4=4Q<!nmJm+~%jE17Gt15|fI3FG^n?)^x=g<o5(V7K-P!WK&URn##xglM
zIf|7PQ3lE6bQk>5;W2EJC4#(!tPEN66PJFKNVUf-6^gvlBW|=v$BtOIt=N@(O3d5y
z_Xp;{rRC)%YmfJ_&fs5SZG!C?{3Hi*w*=#)BS#}*o@pHbExoD1xdQ*Uis$L>j356R
zz|ViwnQ;;CN`auv{<-u^^u*L++x>HGgc<t$w&BFzo4sV`@d|FB-t)%fY^%o1PK}8a
zMMk=*<yxhDgPcx8>qMEuzM_ki<`+Rt*3*3UX}!W~SWyBeY0HVI3gVcU>Bi4i!n{R%
zf50<CRYo0Vb=LCN9rQ%_x)-Z%C2z-3WGw_Zhq<~^=S~)8I)Y<wZ2_D&ReC>HxJ^CC
zYZS`b=GyKqo|09y@Y~e63viVblbk<TEe}oY&ZibUI3f~9=ni8!N6B^#Tx*L2Z+rbq
zpH$CKzM}_Ttbhjxf4dhXNXt?9eYKI~Z1K8$0G1f6=bwXYn5;_@SO}^XIKO|7$6=Xq
zXG5UOeS~QWGnsOqudkG(#aAa_>hNN?(tWY3KwujyEeJo=ksYgd`O#2VDb}G%Gq;4-
z(m&6^d}kcE6>fff5PqZ6w%>VW5BV=ZvZ3|>JlTQmEAV{{R7cc!S6uvgA1rsPX|6%U
z#IjxBDI!WhZdeuMOb~32u3)U{qzP25(7-9TO5*qGNgD$I_b>(}>!kEm4_|Y%w25vh
ziOK~=^Z5SCw{fT3TvQQnR*xJYJJr{a+oW*kd~rKGHU_bmT8s=0i%68KViLw(U8(q|
z)bU%zjm4nv?3)O0{0j}g-`_51M8&Sn*{zlHGM+jx_2I2n-^oht!e&@&Tm3eom>5YI
zR{6-5Gm9TF=MOCuZGP(~Poztazr<dEj=(FMEa6KoAVn^Us{(N#jD+A<UFLtJnbLlC
zh)zXDX_l-04Cjh0kGpqLQ8$!1IjisIJXdV8w*E3XAe|VeY||@LA18ti1@x$&TCq$<
z+4^8Y{9W%>)2E0C%`e0K#vWssZ#0Y+66qR~ikPVLe3yKcZzR-+Q!x&qCGFuMtyS{m
zLkC+vS_1Ie==6TJCaaME7hAznu+Oi2J|d+RGIX-vyJM+-9-#I82EX(;Wgj36a8@hu
zdEr^vc#ga7d4~VNQ~54kt=n7n%+33>P})SmWs~13P=CJH-qhws7c4XQ?$YLx^8)<x
zJRd9Y@b8ClKMb4rGq9<3iiT{RXCPUY*Q*C9hors;0i!?L9m2S0B~2KW#7njRR7#v@
z^K}Qs$EjW!_<WAWi0o0M-gSj!ivIO0)AbqkBWXZ;v^;#(?Oqg;IZd@fE}f7O$>C0m
ztVcv0MHL)_vm15AkIcPUBlItPS8n5}Dv=kJ@Ulf7{N+c2ygx5c!46X651(#~+OMc|
z^3j-qM3~g1T0(gx!4S}&&lLHpitu|ozrrUEU%G|HoVjMDu*T7c<MP;GV*i<9M{vc!
zIKOCGdcx&#d(sD!3*v>`Q~y64t2fmDPS^Ush4VBtdrwQvymIOIVm;|4htWPVDiCCq
z9F~fmqMzy7$v8{jZ)|YFf~Cm=*6`7<i1s|srU8et?gXf@1RXMo%%T74!_R?O=DJ!^
zbM85z&TMsatKVxjXH2_7CuayMXez|ZZ7zVtqT?%?J8~mLV~!R;9u5M%PUWZK+`td!
z(OHeLt_x^9E^cJjNMtNp=4t+ziZB~BiG}Q6?kcjOA+h6~DnB<a`^-vj2UxTd@}Wh7
z{t$T*+Y=u93|||)+zqpzH5>d!GM0*(Az|9<m5xT<ilS$&AiyR(I(<$+65UnllGz+{
z^O715EV&F0xfu?QvFC|;-86T8Ezg4{jj#^+YwXPwIl?Z}q2f(=bWl$&WpJXe5Alt|
zEdZ6|yU)Y0l;|p|xn!fQ4*>)Oi#jd_ifwe1_^SPTtT!rbxO6kq>}QH@8zaCf0UV<1
zyxk&o8K?5#&AEQ2itx#g*xVxZC8qPDobDK5HG1`0Yi3D|6cRKZ8x);eF`3^htCo&0
z!54su3jYdwhpUPCxIns;<Se<2GY<RPc8U}q`Ee_qv#l*$`^ztKm^|+!8yl}Co7Ccu
zWxb2f1@n=(yNNkP0r92D_a~+YO_=jNYT-`l@qyQrYSz11w6P{Gjdao3LLG;m+XJo-
z6+ERH=dh%~=64`=ueGI0?wMthiX=2`jOOX}zQsp<VjW*1Br}{tGeyb7R~_w_c@bk?
z?z+PZ5?N%R%Wsc`CjRT;4~@SC|EBULKHnkq(6s<$DauByU0`6@M`J)8+F#ei-EkMq
z#C>|Dvg}BeRHHLG2+CR(2hr$wWpfmlrL_d`)w#MpXXCL?Ye?>kIhVKXX!|Iv3DRa$
z(nV@k4+^xDG#Z~C`X0-!fC6h>QjSc=1oXjY4Y$YhdP`YXtx6I}K+mnteoss#Lz4t#
zzwrwz`EUT@A=vR<YAiCb-=UoK)}88pR?2E*XfV?hL%LFZ`XLf)5r|H;pN=nAo7^9l
z*u86Uwnozyv~n8OR*XXDhFYRLb^2S(GIW43)|Izz$Y#xh2i>bCoWUwFTZ!{<v~;Xu
zy8rH6jvkNI)O}U%A^yuphocZU5kXYUoh^p8BYyHkK&e6!oZJnXSh`P28Dy;>6)4Kk
zS+7lc9K4OBgKFdH5C|l!1wCw{SYc%6z{}^7?byXJnOO}CdMv9}gt<<_tn$W1f~9Ww
z-q%W#nP(8?p_7=gf_sC)bJSjPeV3HJDNhW=M%bS+Io}!j3}D_SHJKcT9P|(s_Wy;7
zwop4;4Nc#2T?<rXU9`;3-yW|a8mUj06>@eWmRr@uFcs>|metC?{CextKx6htVYRi1
z7U-fgQ!(+K?7$9Mu!zlWppEU|skvcRIkDS#O!wA!x$wI|A_*;{l0w*x!&F$-cuvoH
zU}*{}kkC_84=Pe~2uGLbhWJ3vabDGd_ha5h{Hb)ZbK#Ey&sX5!;Vq&!YOo2TNB4v)
zEyJFbMTWxA*YOGO6Ls0&W{jdHIz&oocjXXL>aFiTg_8Zvam5d->1QpN`8b|<Bx9@y
zXjehu54a)|+Yj1%9-<naY-xp-0n524SSh9Tu8tysW*9g{YeWeOf=+VAK=YJBvkP1b
zjdo>S0a5E*V<OI1D=aIFz|hHMMOIjt+-ja?Nl2Vc7zwHYoV=^Zh6p0))k)NWIQy~L
z;SS{_-y_cLaf6aTRv~$U%;B*^G8N6*L0K2U+cId7zb;w!9xWB4t6u_?4AyxQm6KVg
zPo?a?MEMKU3y0HI;}0+6#G2Uc3nJn10$8#adHH+}TQP)^svWN9+pJqRd_xaz_pQ$4
zV-tgYj()2nuw;&S_>UHrtNZU6ujUrJd<8<XfyF|0kbG3Xh|z=N%;U14s~Ed>m(LB=
zipuhev{Kd&_FB%#EMm?hsTE-HdjI5XpBKGshSJ+U^rAMqKS|S_H}sKbzG+Gn38h2@
zwL-ZyU~zmN%9S7!K9T!;dn}fI{rO}2lAt`ps#qA8qRHWe5eTTmo)<ZlnpG|isZbnO
z-UUnnWNUSr$iduFb?iKrAqLdS58?F7XbBH~zwmHw_>4jM@66(Eb@)3Hjuk;N5hvef
z@%RVDW8Lh}9P^zrc5fr)>qEE3PcF8hP(J?5zijndh^~&8<w3iz!u8P+?l|({(b3_d
z#LexktECVjBhs~o5YO{Y4Ky1jrW9#27ZBL2e`Lk;5oHezsXKbXJtebqGsrPHjRfMM
zHaKtJL~CdLs<BE)_r}*<6~L4icf4^dL?Q#v<t@#}qNVY?)?tI7qp-XV=#FX_U9Zg-
z>*n_DgNMJh8q8SS6jFBkXSv0Efl{3W)0TNrXzi1ervTFTVDI>Qn5&~ajww>Mhji-@
zwXL13iL?kGU0i&Oo35Xji(JsHNWi+GRM7MGEv=cnQqP5QdF?AP(bWU}QB)MrZ<lHs
zG@|89w4qA@)ew1;Gg4&4MH5$X<&+bWLzz8{2oK8syEq9lg)+3dcMl4azu4s9mK^XT
ziw<qXU~ZQ-P&M$SC?99BSHaB3X?E}5iGOW68D-_WrC4vE^XC(RG6$@;7|a<J=rsgA
zoCeo(baBpaQyf2d${jwoDfr{%=Ap`pJhX?)>azt|Ld6d>#+yS%rQ#)iS%I%^DX*K$
zT*LMSW2=m?dMe{>US{WQ^Um%m<Sn|4iwiq_L9nnX?PY7z?N$__VJ+Y7mmLR8oVeK9
z#_r6u8aR@6hAviu41PbfI~jGDoZpuWwWfTdJ=<%a6E%Y$YnI0;Wj(KQ9SG6D1mLvu
zG`fStpELc2AI%Qd{5Mh~IlXpa3(V^@KUTR&A0OBB>sL&pv+|tLUzHxM_x+`$5|VM(
zE{WMlws9oalcR)cTROMCCD#8MD_#f>S|}r?W^VFot^Zo3EnENYrn~n+T(|kXU%qO@
zJ4+6p+qR1d_@<*}T9JfQ;CwI8Thb``MY}<wwos`;yIn$ySmT&$()s*2Xro8`OwXfw
z+P_bqo+}B5rQY)sI)^mzb)II|wk(BTheDc$(iEU1L28rD1h6ok<2y}^(BV;ep}gAy
zm6M;8y6PS~K>ujetJmNC*Uj2>6^rP+cAp2fDcXZx5_sp>m9$`}|B$8`@8`v3t3T{h
z`mZ<V3#4Gbx_KIGq^_gKG9qz&EEr(@VDk%AIbDQB*Q=gU#7KlX&x0}QW~CsR%0m?O
zkVP}d{?w>f@Ogq!vrA7#-J4v}t>W>-NrEs?$y}Svo5j9g`K;jAu(vH^G1zT3(K2i9
z?TzgEyHc@gbPXnf;;`S}d_rdmnKj#REKCXqI}U@J3|Nt|7QxNly+$TNu|x9BH12j!
zj&JQ)tQn802Ieo6#t6vMGZ`M7JCKs~#xd{iX$eumME~LMF%P401DF-X#+ET~P<2A%
zsY({5kGJNO5$*?<jI2)ZVC}1Ss1%8)2Wg|Ymf%;=Jk=*89A7$l6J58(Zt&_{a<p_k
zhxC-yFwsn_bF2TFPDU*NdUECA{gi_S6_6}dx2j3}bu^tzC&WsG8qSlBDd+S{_&pT&
z&XKH5gvyJ=&rGGPEnbX^`!a$29E%@x!43X{fhr|R>eBi3x?nj^P2+l@ykVJbz7YP6
zl@{mH`enL_C1V{ttshbrcXnp^AT2MU)Dl(g48HQmc(`bdz`eB6Wx&;LhH)B)tyC*H
zLRL?KHqo(x8Ry`b3c1>aU-n2ApbV;+!2Ozmp7(sb<^cKi=`O>$v-|J!eZYUby#db`
z4Wh6fOcbdip}t;5pRrjC*jXu8UGF$u5&N$WklqrZ1AmH;k6%*pqgmOl>nf6{X&<ZP
z5`Ohk=ju~PuV-dfPh~b}up2`D)K?FWv%AN1LN@JYmTZUw53jWPbo}5NdC>TmkIxKq
zI$P4oUwEXj6-DuG-uNJTz#wGAjNZ`T;z6Q#)U%ZApxv7MXHCY&KGnd!<%qOG)b(m-
za1k?$H)`yj;Y&#8zx5g~FdbC?S*h`^N>k)BNJYqWjoePF%#inS58?qsH6vhnHQgWC
zdOFF@e=dQ4e{B3c367h)1zGr1ZD7S1rv3CXi&hQAb4WZeP<giLp)QdRaqIIoJ_Em)
z9w~*X3R>)ox24{C9W>>Lc1JEdSE}5@_&j^mxR=)A^Yy-mg}Y}qeL%`$MFpNuMK{Tu
zx8xfsvT!k7Q}7mI8Lbu+1cZ_31b2}n#T%4&&5Ql_?%zr>GKSzYD#bma$@R;Z$pD<>
z4#Ozwl$5xK_&0fxW--k?`p+afb%qqNFQ5KE8j$!Ie&qR48honw+H-6=N={xMuiIJq
z_@^+1$4(OG)DXJV?5I-|=J6kbS#+L`3_kpX#7;f1UiC=ZY@7k)jm^eV7;e)*lfqbg
zgz%{eQJijtQyM-7t8;E9wU!BIB<S~Qt%jldbeC`>yL|1s9pmxB=o;;5>amkk5A|KW
zC4=$J;AP1c%h>M;v3e{%*QMM&S-hmrGLQNBqO|){Y2<;V>8UdX{%vlj*sSZnGAf44
z|NJ@I-EKRU%I1T`OJ52%ua9MJLvbR}pMtHsySz*ww}NuJDLt&bH9DI;a6ZJu!^6aM
zwqMrLW^4!$Mb8K}fcB9PkO(B~m;KT3e06w=bC1r~c}p*w+9)u;5@TJHpG%b{@KaI%
zDb_^RO1o!^#qsgnnbiX9)L=7ZbtU-HTITAoTcLvzjCqn4#=SS)2+}z<r)8n`G~YQL
zI_-Nc>M3nc)D=-^FUmPIv_!bF5-4>IX~2?U$*{9Ce@^kx;nDdvU!~_08X{)NA!JXx
z@_4xx5D&5_Z%R?&;q%FcdJewzOd*+eIE^RGFYJxbR?X?bmzBmFu(~88FIzvDZXpqr
z-&y(|Z4Lj_<Y2{m(x3LlrDJ8Fg4>bdLM2%Ecg-Dw^|n~1N?p1^VC^L15rIHM2vWzz
zDsnR-X5PVcLb3w|`+6ez$wjA?lPM1&X4V(5gr`%GL6JBfFB+^Z1|sY0g@j<x0D0r*
zBSu?(aS#_5M%@a}H+6QK75)pNa#w&L)V|J*%3lbG-CCpnp7%aHR(gY>e!{kC9LTLw
zzu&_lPzaXwmAO{{jTKuPho6sIWpLZM6g11VSdShzU4Ex?(QW$XI6JyZLi^U}ihjto
zakH=3@8$*~+N33yw*Fz*y!|E3-B_P5uGxz~!%BJdl2TTUKhvJ?6uX^B$s9b#!ad4z
zgRT;!paYb9+g!Crty}e>;%bvn)R|vFFbUya%uIi-I;1^xBCj1d9mG-2p^7rJhgVwh
z%70t!(^)}8i$Y9r&~y>5L3{osT@yq~4|3G{!JV(V<3_~{ZncM@tdKr+6NG2RiIHI`
zW71X%Z+(pyn+|zWsxoy%mDT&{GLRfyY8ZKbq-F_jS8_{TIPQYGO+^q3w7=lx)sMN)
zEf!=g-XqusZSpShm(wxxS()ppDSXHF5GjU3FuWpj>dig&xqj36&@Ye`kN!;4(7*uC
z_M-2ONTp*oZ$oVdycbh8y21QhR{$oO><J`PYXIsMOPw*!c$XA?-BluRpl!RvTOA50
zZ`pGyRtN8W*^5>>LYfhtnz|`wsne{>4h%FHZ8}U#lI<XDSXQF~LPy7wv0hju2EZTE
zKxAq=iHP>JUegz8FB0-KMGX-iDbD#nf(<V`yjdnavTJhg7jEAKzgV1Oa8*QT|5O{g
zzRqLf!HMy3dEd*OaEZ*xUSmzEZ*DKrl_tr)egQa;K<khN$yt2)BJNP0PxZ7nejR7%
zaRfAl-fh*NFOw&ep;;i%YkiJV8HgLE)S$6e9UgI!ty%H~Nfvg;z!Z)+7~A#fr^Zni
zYAD-Lh|@Z`UD8Bbi{~wp7EO*WBE8a*<a-))=v4S(%7TEF_i%ep3ux#b|BJG}3W}?X
z+C||&La^W#Ji(pd4uRnAF2RGlTW|=$9l9a7LvUy;xHsB()3`M54nOa|_o-7~)!7&O
zs&7`US~AD#F~?(is&XC(4|1G!lK}ThlXUW$R&Cz!`~FQn0lJ8+54QKI(&zivVg^st
zssC_)2@04!{{R5j3&%=#qVbq;<#@UPYPI>TwHpK#-hHRINLRgDK4=mOQLCLw<^z!+
zQ<g(3WlEg>5{2Brr9>uSLW&Ue!Kt~4JYZ;$y*)tXg=AvdtrJqT!qRX!kZhoEgc1^;
zoga8joR@E|>yL6;>tn5(N2jGJ8}G&e%1*i`V0LVB`s&3=&FTQw11b3*M%_4dxkklA
z^rS?+T%LYP${~DN;f@TalwchDhLZPF?N(~pG@m?2_wAeK4^hCN=w46(vv2es`gaNe
zZ*HtI0(p3u>(-ia(wyVx^>uSWP2c1cD+dEcdR~xfF=rKx4@qwHtr5xD@IR02CZzEc
z5kZY9)9b5v>s<1uZ!;exh$;1AA2uJJtSRxN1_#Ykddo59oj0Z)^xqTBt@m9OaV=xG
z*}&?wf6OuiM10nB44X~SL5n;ZjSXduU&0%{Ru?*2&d$^cim_9Eu2sB$XDv<S;VP-H
zIadV_KkhlhByTzY9aEqu`V{h2t4>scAPXlkok=gfC5<r=pz-shn&q_G>|_f*>AN$1
zz)$KdKaIx7S?@v(e>}7gTheSL2+xI@7`BIz+8Bcp<=r1P$%Tljszv_E)))54g4`?U
z+d6*$S-w;Fos|#DQmt8NI89VoAM5bUt5|YTdtwny0SDUvI#D2Z+rHlusn-3WnMsLK
zlsK75XaXd;o`u&8H$9c^i@SqUWk$40JR{8@nopLtxKPlO>1J9+S!^Tar)qWSqjb>h
z=b>ToQsZ?kxaM_zfM1KD@G3XeGZe$$%OTjyNG2XDdf1&FLUXr83@tttEr&^{-ecFJ
zgb@E~2}$$NM~~B>4?gQHnAxkn)7!r+uD^((l-RoCqO8<WIho0SiHP-V*}0agPJb5B
zxkgxXLae>0S<gte07dS&HPxs#vUwVlkCo}%Hx3@Vi<4GXRmJyT=)k-ir>vYUd@mNi
zk<4ET{%8-dn9RHN^VvPLudJd!uAKin&S_vr`q1(Ekn^%7@87cB?Jq2;WZ-so+;Zl&
zh*QdKeP_=0GK*=uOSi9lFC|MC7W<`KWIbMdU*m|3kZp;St#2YjkG{-`UP`BTh9XwF
zNz{S)kD&G{aLh%SGoXpOv(3%h^JEpz?l*M5dVgyXtKDiQt~Dv9-M_cZ(~kDriVYW#
z+wLH(GJf|5Z<Rh)=3bGW<mRkem#d4%Qkf8kSxW6$=_zVbl(;r;deM#Z3Q)dkw7|ey
z*L!N!_wNe_d{a}qh}4weihd+r?}?*+Yesfyg%!Vg1>k3+g|)m^aW-X&NFK^{5D>Y%
zY{J+QYJP!a)#tfKJ%_KfdluI`M@_0I`bwIxk_vV`0(##^vA7nAqE?>S$n->zWZaw`
zUf#L1CmAJHM+P)1O!V?`QwTO{@bm=)Ak6cbxHf*4(7^&zeCH|nH9B@}LKcDrSBO(~
zEK4f3*LFFa#lQq`yF@*CLZc0it_ThN2i&I%kbOO~9P4pJ`!b8LI8;jeKZO4#Sw)^6
zz3es5wvyQ^fJx_alj7z1pe*iaaY(O#9sJ@-m1?lwFo>Cr&Z!z?2dmqZxyiiXo@V=7
zUNLDp-4Zu9W!A_IX7DsAn%acZ`5q;6I&lb$kdi-V*e}}9>Cl<*o?A<PD9hr$8rR&J
zQ3!(OE+lqYR65v+L*n?@0n34B`i&cVcO{R}c`brn%X1*L&z`h&FK>Qw76eWZ{x8{(
zXV>YC{p$$wXAtxM)E1X0)+Udyqw??{PIu7{;@O@Fy!#I~pTO}4p<*C(wdcltSD-PY
z8~${=?fC9dp-*%O>cNiuV*bjnJ-xYiIqY-cxSQ&aC7nZh|4w*#=T}Rvc6acF`ycB=
z4XXX?sRO6;PI6I~HI^vDM&GB1@x;XSgLx!}I3b;!)9AO>)7TGsv_15gfIDO?!^f`3
ziM6MiJuE$7Ct*<T{f?0D6ZgKABj&odp2j1=dZdXR6X$A|?8@23ObzoRT6+8n+>a)7
z_))J2q{QqtTDXn^r><na=_3ltJ4Y`^GQ|S+QX+{JcUtSo|0`0g31!5?EQ*8Xo)2Dx
z!0!zK&Wmrm=#k&tzA$_{+&VWl7X7{iaRVFX8nI!{U-+2Srs>kmPET+AMahvh_(yw7
z<sb_F%ip5PfFIM)(C3e7oZd@>UaG4wf+j`nUvjHN>Hln4m)n)wrbJ&R5z8FY*l=r4
z7}t%<TB}-FRKPk=uWlGu@P%!5ARFgbgJej)550jbYY9_S|9Nj@%|2XSm&MaX$UX8!
zxhAJ8Zt9T+zC(Vay)xVzJw(m!dMjZL&1Z)Nm@an`(QYDRzW8?CdVzvQ=;S@JwXf4+
z-Muf5nkSS?+nQ@|HgsQh;x5|uDYF^YeX{(I-faGSCg8>7JT_9mci}5(Y*oEDcvS?Q
z2B{X)i}I$|Xyb2fqaQ_bw>*71u<En#;xXtL@S`1;;y2qUs;MFKHTX2GO|#xp)vb`O
ze5vQU*H|3~u3uOr1zY2Xt0;oEv2QVvl@o;*2M7Iv({JwVk7E<c3QAb940tVDPR^qy
zt3>hWw@;O-?a!_N&1@E<@+X#4W*h{f;Tv8ETys*A5f69B!hX(Td?%3UqV*^skN6CD
zm}U`1DGFT9l7bFP!apbvN>4{dx6ts0FQ*P}?`|nZ1upsAheL@idS>3;04J<Y0wx)`
z5eRmKHSsn*MKFB6BIzHFCx@M;yGprA9E5w(ANx)Riaeo<rudjPTO9^LO!u#{^%PNg
zefJxqIVK*)_`NbUwXgCzY0JFt%loV2YuJTL+b^FRG9o<))mSxO1%q8LmXVCRH#?tS
z+0we+7KP;LhS~T}fA`CGTSCGQ)~E7RgcRHO-EZ(<Mp$qp)$m;`=sx~^<;CGB{l(O9
z%fbDHqe{Hb!jC&Hn$dv5ea}nu#q*(M_ZkY>#I<@Z3=2qp?7$kP!bKLi^|0;1u^!@t
zO@#u#L7Q3uvY#Cled8mo4&eQKxbqjnw>((1k+dANLgA$ZEq*ULG9(!Z`m4f7tL*vd
zMr7Cv&r(K42P9gJrtym11=ZBOC(Zd<**}W1^wd|~;d-IfaphKG4_FBrPJ1hXz?1vW
zO(Rd%{rkl<f(CEg&8Z1l`?=BzU5;$SiEW&liCbp=<-1^dZ1R=%*(EV|sSH?-<>!{-
z)R`32nBr(R*_vpLL%0ij$IzB*YX_OIe+k<UE$4Fy&iGMn0(rafOs5LfB!M$N0Suwc
zk8@`?ULwR_yuLue=h!)?+4UVJh0;RxxAerntoPHDD$r3LQ*w=Tr#^nREY=nJmj~86
zDM!B!{8C}Q1O58PESkd5Cps*NSK@l$vj>2b(?r11P1lzSd`=!ObXC)AB@2z&gimiT
z0H)HAT(zicZKsOzqjdvqZ#5t!ZTd1q9<~Y$v}U%h6FYSnVJv-A(w9|jW7XXs<)(w}
z3w0L1pZy^r(&i@V+$n2HsG{AfH1soHpVh7)CmG|Fk5!ftv>Gr~_K1tCl>L}hMKV3f
z$)gofcSK>6>sB7%8R!;I8{g1psFE$Ma74llR=gdWcVx~79jPXZc}ULW8*fLo<SJ3$
z6^}_n`9uxs_IIXj9CQ}>YB$>jQ(`2uU|JB|iv-S&mw@57HA@Hu*(ZQm;e%;AL(zSJ
zeE_rn;ZQ09QI8@?8^H@;nuyFiDaV>YxlL0Uti@Y?>qY7KzZ@>kZ+p0=4hY#6Iqe2N
zUo`B7Ma!86iW<zzX5J-!=a|T036UKI6JGEmA^9x&gyfN5#^;LVSBj`AFg=|cQdR?~
zlXF*zTijjjce{^L(TWW9|D+HkL}`{nTnRRQSS6qt>N7y*(mo|gzSF5}U!L*3+e5|E
zhs<gW70Ne~3~n86cvdbk;?oA5J)Goe2(XKsTIB(eNVE~cffIYHxP!_(5L3l+LKJ>d
zzMRbT{N^7CQhuUW=m)L@!-@hiTZBwjx7P_`0Y`sN?XT9n6m3ieInKur+w>27Nvw(R
zkJ4LuDr{2eCB>*CD3l~wd~?P(IJ$0Fd*4Q?O0foN2Pgdz`nh1%iaT-7Z%-v^&}2EG
zZ~{~TqcD5&eIj5gmuS*dQZI;-#S~)Y5o4#f^Bt?N#i{W>9Jh3B#IK3*iYOW&PpcUA
z2QV&H_|pdOCezwv^^iie%U8D&AlzNT#)G;KmZ0BNK7h6Rkp>B_85PP0{gtfd3)3X!
zWZNtN_ga<b<B&>MpiZT?P(k)Sz@^Op%%Qu3296AS9YMe3E7sP3VXp{1S{Uw39$O#|
zw@T|79OOjWIFNZITQ93=C)8*rGljRS7Vk|K_ea<3TwQ53*9_h?oCr<0^`kUDhpXS8
z<8wDEN*n1(<Y_k9PyaM&gt`a4@IpM$&|N<Dsch49Xci@`vjpa(mL)_bH|;hpO-lkz
zO27KF9_q(lsdXQbI^irQuqgH^HQ&v~u{{YL2G!?j&1$UHjp4u-b?0ry@pk9<zm#4S
zYJTiBl`E%8c9ol8!xgp`&iFIXTSY5L8`LXTq*=dEdBx$ii&=&zQm^$0%}0;g8g@U>
z8AzTvt&p=FM^zb#?AvEddh<%Z0YzidxJ=_sJL~-mPLC3#jk%rm8!Mc*yko$N(^RT*
zJ=lvOJQ_zwC&&zEnkT$pN@YUAs34t%ehrQi7H(-NVDiY@xtY8`$B!UTwA&$KYpm#S
zv4DE&GZ~84<CUrw_k7kg__N=nXq>Opa>3;55m8L)U4WslMFP|J8kw>O06m2L6tx0<
zMF}F@F17)`QaRa0C&vnktYJ*ZOY<K^&#uvsmD*{dZFsFTH_%V&QU%nt<g4q-P{nkL
zMX&S!fDk--UUAE3_Jz0a^&u5H24%CtN`dIX4Y6Yl0`jR@DWk300VK#(`nlS*F*RBR
z0K`_u{_=YXiP6ah#{=UPBERO7R>M|3(wGr~lMW@y#SXn-I<mBX&84Qr3B$ihZ?=SE
z7b$Kc|H{WOMfe|~X*pBV3^)J%qER;cKGk;E*tq5Vwl_8=-N=e{mij`|R@q~e&0`^6
z!qdox>#u=jy*|*+ZO)#5$vh-?Ph6AVvBdU*={+J37tAbyh7lXZyWQkgI7Z0nN8xf)
zQbG~C`e}poTnQUS|K?wz*`&48nw^W1#W~%N&wHv&*5ahV5s14?6VK)9GfOPJqm|+n
zn#xM!RRdY}K^*ki{{+~+%tgZKqFxC#%HTTEHJhPJWgYLs_`uWlX=?6QP}`n;olV6(
z1>vKM18uKYC&^TeG0)pzm%zEP`Z5*c;;PKa>EH1^SfT*{*0z6qOVH&vkzXC6OYLGt
zd{Lctf%3onVx)N|*Z)SPL1?`X%*fS5L@;wQw5zH&XO{b1mXmvL)RpWqd8f@uKiU}l
zsOPuW9*6rXJ79D)iH%l#7cI~aK1qDHQc;{`Y_o5>4&f1@qms9uUFdn|<aj*1C8e>X
zdx{;S)KFQ}YmUciyMK$xee)rp?!{4BX7m@G|7sD-U7z+PRs|EL82CiJe((Mht$W4i
zr9h#ZeVMyZi^ZyUHoLa@bab=X1^;!wey68unSm2&<LjRr+i&%gZlhI)b`x!jG>iWb
zeJ0ch9wl0%w@msjvcPkbUt3{~94av$-ADB<hjc1g;dgaq%INGnnR>x`{N~}^i})Ji
zY-qq$6x}1B{c%Ie8#P_26haf%`7UyB6L(sIxTKW4zl4qRS*Xj}?`*OPNI>fNL%B;{
z_29v99L2su?#1DGOj@Pi2xd@p2HH6V)4o}w{B~h*+MU-lC-&03w&;%&pAta9KN?9t
zOND<&TmARe`kzzx>&m`u4P1BXuCPD~qIEVq?`iM)_=>{3>fqLO`v3m}eHhyRr||$f
z!vB@-?Y~p~@&BJ38)V%7b!N7A&pK%bUUg*^iuEoMpVOJNa*c?7ca9X}x}d77*{U)2
z$Cl!|w${yV4=><Gf1;<)9exsi**@?Z7#uWd^Nj6X|KjszWNdCOO%CBrCw3$A&R{Lx
zVEdK~5td2dPio`zb>rBp6eKjB4iseYOmI%7kxmm6|CxA=$7s1e3@x`mmVsd8Jv7pz
zq9U7}`9HG)I*eLalif{7E`{jJXf2nZ;8J&Y@bDW|D;F0RUS3|s_is*-$b^FY!D-{$
z9qs=A8Y*@Ht)gv)WYxPDeP*n+vQckwBc)Cymk`;yiEJ)hBKo_-CGvC&i)eQ=X2>y3
zSk~0D8Eh>MD+Ok1ST8_;e!`eDChv`yw<RrmgvjO`kUHHkYz0LgTKv-%P5Ni;y42(9
zZxKs1BA34y|Hw^XknIuGzkE)95?p*tq{ibZlR@Sc8<{J7R{1{g3Tbr7X0D!CxZT-G
zi5quL2FivmW7RoIk6jzoL+sjhk_^MB>5T91NAjAHs2rql*;Yu}-S;JPX(Npf;CsR`
zz>al)X|>xew^EI!5IB!sX6usmysxyFCh0ysR&6dVp&eq0tSgUuF$_MAXI0I|Nwcez
z*<iDI&-%dje6-F*`-#m*XZE<=qmj_a@)yH91KrwK=%4qB*9Udf)YQPiqrS2>4!dKk
z>F^i95igDh$}js})gP*imT+z^RQ6tNkaD%=CeY5_nXwv6Pae~I9;Ig2z^ihFEH}5F
z6`IKY;eBhzS78pPnhG9QKvrDjU+oQYIUV71$@Zq2>Z}j|2aH>0xwQ*-o+@4r@Ytno
z@n&pIzDX2j?Jn`5k5eS8J~v$unYp?s#`qHGc@Do2vZ0%Kvbx1QqDo~hMGK-7rYGDG
z(wSGg$)Sx@ws$(PFz^~O>*Jdq6<XW!yS{u3WIZw@@v5(|ag?i>?5h+2{!5;@e<Jks
z<$NHKSkl)Afqonn2IBeC>oqw`?9qzv-78)4a`R=2dVsX*1<{p@sV|GWfKPj15eXR8
z<!3;`rFqt!4`!@`JT^Ix9I-gI_zll6yW+9d1h~J*F;Y$O`61;Dr|pDu-xWmM%oQU?
z$T+1BP%yt>D~M>SJi_$^vgH{q)mrc7^jZQ2uy{EA#%aWgb{FRxNzHZU196nG>~&#~
zMj4}J587#QS~$xe?bqsdV%9jE4eRhgPq)u(+)VIUa_i|U{34cHWmh=%DErs>vEVNX
z6|0cJ*d{*ymgO#Lgy*DK;B!>n^;g!ilt6S%Hs(W)k>=*iLr-~xm~rh22n%7%c-{tm
zc)vuZ0CA?uTkR_E5huf1{fcnv@c{w%+`6Y?-BZ2^p}T1>nSnd+Yh5bnQ7LBYA`dV3
zoao(_LEpA(<M=!4Cl%gK3OxT4&9PKSn&SidWb1xf1r|pIRZ3<O|I_7F+_*4v_D6iC
zg!%G**Kqy2N6q#S=!D~N5|21~7Q{uj(;Zfou)yl_FxW~>jb49mpBubdnna!HmSM9^
zk4w6AJ-3`1SIwIB#rB7eQK#7zsOmDQbS-wQ0(UWU=n{dWyIY0LUZ(sePl$c9Zd46t
zf26Y4?>fG|X~~CRu&v>3OBa6tD;DZIs#;!&v$yv*G3`+%2!&2qP{HnQF#GxWa&Pcc
z<p48J)v?hw?>}2!<rQeN^~J!Qc4&a}63p}VEArq`3108clKDY=hZJI-s;awhX72^;
zuL%6Uo@=Ho9S5iWJqC%46o04cr>XfF@x48LcA-d|172icK#k9g$kR?*GJBb1;=-qs
z3~mW^rmA-AR13;_)&X9QwRn5?weEr{0~Kz;<~;%?c@te=Xih(;M~E}|>t{ZWvme~k
zUWwUcPXD0HX>N_5rH4jIIf@@uLkTshagfmy?^IVR$3K_I%>R~6NDnrK%<DiqDPS|5
zC&Cj1)GPNy^4spzOyMl_TvZWAE7vDF)sNJz>PScN0^$4d$297c?CPUvXsY4wwNUR+
zV2rER9R#T9G!D@DnllCO%dmd7gRNWoMAWf|YOEFKT`PPEMqBvIP}C>R`U}0wgLj^4
zK_47K@tSUZS=yS%^Qep@)Ha_WUEePn2GhKFxT<lA#YsaD=`enjt1@kI!rRR|)fu%u
zOV%-?d*As8p!2fmH9W@y{ASyCbrQCBm#Sh`IYHKY1{ybT7RDH6!L}<bMq^ipyBx9|
zE!3_Utr6FlWAHMV?vv+qL_&Sbq5a;@2al|)DAt3ULj%Z+M6j#Fo_jo#&(P%1Cu{GQ
zRAemjPVOoliV=6>X7*2l(xCPyWxU*8(kvYc+(dlQJC74q<eMhP6Q9%TY5_e~>yzcx
zqW&SH0wA(O6ecAE;(oaTU5F`ryZV`&?E>+agsSPKet9eO0ORSz3)%%c4#@S0k7eEi
zV8%X}ryG2oi^|v=I^Ll(Hh*&NXstFka4*l(i#I(Ww{T!97Q4G<1ZJc-{E0j<;H_=B
zi3<F>3S+IY$dgmEu_TCQ`P||D-x~)}M$(cIjb~q#R<n){kLr{`d<0e+Nv-X3gf6oF
z?lyF$VvxF*l@)M1EOkV9nnDl)MZ)H-CzkVP)15yY@Et6+BJi1%WqM4<&T?2-78eP!
zLd!a_wM`dTfEAx*@GzjrjpGx$7#|mSsbfAE3Ryw{iwXr!vt>F@@gDWN_N~pXiEe?<
zH=SY^=nP4CNf|V@OEVVD(2s3D%p;{Y09&&uG*UXvwvoOdP!<na7?DbIdjQys%t-57
z=5wMT?c($cx7fOkc9AxaR%X!0kA1}>OR98+>-;po{nDK{hm*1BWR(tUxv9U^C1#2`
z^3I_vEQva(U%)`Jd|E3+3S&0y!g_ma3xA6$eh<muNd*XKv3EJ-F2<C|UQMo1j<7#b
zzpEWnHIV?;rR~Yfrh*J$Is8YfCH*soQt^R`_gZWU3BDI|p?;eKpt7tc4NGQ_ZF#27
z!O{%w=b3v}?{af%ryQ(Hl1+ReTW10!y)r+pum+{rXv8u@y{{rPt^@8iBJPhZGbcrb
z03-Kv#OMZhMBzwGH~u8QfL`#z;gk_JT=*Bi*RM5~Mvs1u|0J!p;T5muxAO{tr1WfC
zp7!_sdZ?L6cVzqng%J59sgBl!<m5c+JY0+xR+t6s58>4QrQ4qQulozZ*M5}M@+pu$
zN4e}*ZlbRJ=UkccRQ1dd<FM1@xMIX~_O-t#|DzQZxG+k=js5#hf+DBXH5{=}bK{gX
zneom)PO<opfpj5AwHzDe?j4n7__T^j*!E3DR{>|MllcwxjV)&@4E;$d)TrQ~%cYC2
z1A`}<S=mn?B0}f%0!MK>CoEct8nw01$QH}Di5>R>8_en59_~j7hV7M}PqpL?#vNY&
zuv*yHUYg6{Er}nT+K**Rb`ps<^bx(Ike8(!Uv1d;yoWQs^h5RCg*^*IKntta>rFYx
z^E$sV8VHN&f>1~uVAqqDhO0h9=6o)HKdpfp*ZyQe4#Lbu!Gs%SSdJ6!T@-j6xL)sW
zzIdEdJB{zwvQ3=)?b-~ttlU3h!@Tsa-9%)BFTw9bx8X*{5H^6qvFeTRsP~UsKUWLd
za#y*xA1WjZJ0MTO(8-43(7rY$#qkrm&I7GhIQ+&5t}zOMGHYQyel3YP&;+I2ieJz@
z2I2e5ApJaHp7GNBl3FLZ);C+;(<4E~?~-J!X(;|VSv>~r{9s|6k(j?0H@37$Q?k#c
zR<&4F^)p@xPt_FbW-*UP>8uGVpvzb~Jnp&6dW~i7RhE)0aCNtnWHYaAb)7sn6OO+r
zePb2(x4GFPDv(OLIC5^5*h0v9bf4d?Y2$evQXqqY<sFErvQ9w;Da>7ODD+C_-A%q(
z)W>LA_0IU(xB?W~v=S8Z)9%J%&?c~ckZu&l^77;J`3qU|8<B?sMfO}}mg#zX;!nt+
zPRo!cwQqP1<Pq)}I0lK<U&g9Yp*SnOguY`sVawo7RRQn_Q}HzIOOprkB{~1!i-g(-
zWXpR!1EDQ#P6>jDS*{;<mTSLt53P=W969n3h`D;=7ZssE1)9Creg?-(bV)H($>pvF
zSDPOm9a0n*Hj__A$}eMfrbSQ~>PtWbh+a%E0dIcRG0e1I<Q{ZAE~CJ5MDVlrJQPPP
zz`B9)kM_yN^T#<;fTdKR!*m<N6KRWJje&Ckv^x}oO@;-N|6I3km%$S0>R$Pjaxtw8
z;hE)CD03QMd2f^##2p1xeE*X(R0i`6OlQumX)RZ_tgwseRY$W%AL_H)MfgZ4d^@w&
zyoPX#`M*uru>P-1*kEc1Z~SMfB;BtulAlWs3<-F+ET`W*5}c9~y!m&t_AmP7ETaPT
zQDgmiMhNlW1mXoasH&xfKgpt64)H6oOY6$3I~TitLln3gq=-bp4lgfzvA3)F+=_PB
zllpr6n=a-{r}tfZ7|(#GhZ`&sNuwq5-del|qA)<vc-&8zxBz(3^$ziKxXP!HiI-=s
zt03Lr?wwO^2Q(i5y9#P8ZPLrU7QQ7j)F|>pqlw=hfyUS598&&CcB_|fbPpc0AZnR-
z3iukf+d4dNlHhHm%ohcDZ~q^osbQ{Qlx_B=Fca(7yODP$KzI{as#vR0XzqP++Vscc
z01?rPI>55;ni>`t$M3x3@M4Vg9uqJe&*r%D*U{nozq?&Mv%um12lsg?InBhyPH$(n
z^;!k#$5eAl;fJtRE(|!TzJ0w4#^47os-B+w{DLFFhU1f21BTlXm0DOlhVaetj8=D-
zlMB(P!EKz*%y=!W(fNFb0O`>d|McqWItBz?fc)gh!GRK=0Z|wr6GvvnC#0yM*7SY0
z^qmsZO}99#(T`gWpLcX_Zou;d4^DgyIXjgS0^9zo_X^9E@8}Gg9WwoPcnB`mkea)K
zPgZQQrm?(0el^EbT{QJ}h&)P+Y<1abA9PM+ZmFo2^Njz+YOcRv@{qbgGO7&q?6c%-
zt!e4Hkv*H<Xn5>T41W8b!bjYQJ8+c6z|O91Gz*D#hV~#uZoSN>*UNVQR|d<QHPS#b
zp;pAR#)RmS?J8@<+>Oa1TPwopsXPgiNcL%5bSZuQe`h`ttf=6qMoE9isgy+4DF{w<
z*wT{zEH6q^T3VVa!}Qe5HnwKHJ=@9l_S<5kL2wq=(-LRRsGfbTZng?5v%V1?zmG)i
zE2f3JDQ1<HVJptCwyyN3-a;?ozY7<Huhwr(Mjtr<?GG^Ze&0&_`XB@RCvtLNHAO&$
zO-E0jan^l;tPGwKyj#on%-b1*x3%BMB68aN#$25LWcom6x|5|JyuF%o`!(|-H2ZeH
zP<JhL&_X(&3;}T$N7K{bR{4uOVs@-J&kG7@5d`EHeRC`V<Q!x5od+duszfLsjk&)U
z*~TLv>kxtS{vBk-Ou+tJ!!w>b4*7ehR3de_+EJXvcHEj2chhEWPWlVi%fw1b@^EE=
z)j)k2iE`@-2WRF<WkV~Cm4v*(mrvPS4|}mU-+a^T1Qf&DE`eIoYZdnqsMwg*>an@L
z+?J+`e7r({hxdc!_hVEOD;&4n=gEc9LfOSfH`9bK1?S>CKdjMBaC$k`y-wCGs=K2q
z<x07J3%TLy>eanzi@93YQ*VGKW^GPhRQK$!fiesSZ*!=6HkEOD4Lv-r*Woh5(8k4%
zp1bK-My4xi-wODMMJBuk8<vQh#qe`jsiz;%hmn2OdhO3`W<$y}SWW6j;%jfkIGl@N
zVuw4zzL%vqy>w2dzuw$7-?|)H)GyvpirTFd=Bd+h)gS6AF>g-hF`JQx>L928Ho$JT
zg)`jzoVlU4j>~Bh_71)||5kHJGff>?b8uiS<bGUl<Can1R-;*H-3PuVIUy$L%rhCS
zo*3RZ9i9hN5@^;8kBmV?+vd3L^Oj`Ah$r~_&6L*g<*FmVmj)d^J!4nW5nJty$-EAR
zU6!zZ6Ee~N(=HCKfxl!GQvXa(Y7&py>BY1&Vyn>ngtWKfJ_?D<&`MPNzUnmtifzj;
z5ai*=H|9^U4tN4*lkRoJ=y@~5lxg+=Gh{k=j&c>gp6uq>yNb|l9gQ<Qk-V*h4_(?4
z4_1o^Ei`#ef>|-YE!kAW4+<AE=laL%8aeDnAUlv)C%PL)VD2P<A(?~<diA^8Qy#`9
zsH?NsJ2A}jJ-wB$3$7_t#8OtL5S2Uv=ubE+fPKT!Y+P}+G?BK|5pRmIWI5a$pBDCH
zFOv(JHO=<gS*deTz>#rgd;X3-N{m7rC5gCFCme5UT62E=Ljf7uE$R~Z%BJf=WM=a^
z`9hXw&AQBOr(JT5YU_JhEZwLNHunYVx0gF$!Ks<tgt-0af|Rg9fp{Gl<Kx9DKu1U=
zI3(G7;QoJ)1I#$5tSWqC4_A(|=CSfkj6aa$xgEm)U9+}}7!B44SnRCHIi>fmuXf2v
zO%1Txjyo)`v0w`Qs;@$>#3Em9C^@(!^o^+1`?2{)u-}F?Q8i?`@>f&c@W`K5;LA{4
z>cOJYxrbNz@?`K*c&d5X8Cl435Zz>Zh|O%z_IRqD%1K1Lr{UwqqA@+(LnQ_>U$oRS
z0Tx{Ao)UJ>p8v{z`nx05>K$7}Vq)!cOR(}HL%n08z9Yrk%4|M({k>@Q4fo`TjdfD2
z&d&hIl6(7ON?`qkxgDRsSW(;e<!{>A*V6nB;EB<%hfU<%Hmp2JIf~}+D5_tpwo%SC
z9Na8#Mf8jpP3>;K%uHNYpE2~!KSbx22Kd-J{Mw%Vdz859E5t%iW+{(wtMgh7DTF(1
zw>AEL+|KL2QV-_)%lh;YJAc;rHXgpK4d~yxONK7AU=S{k*o<ru)SDc~Q}ZK=5-iUO
z@(8J93wD<Y?2gU!i1nm-o_zr9ZCXQ$BJ}$KbsJ~l*7<zZdi6BT-87N!qqb~NMaPBC
zG*f%EL_f5>np3SdAPh_>8wUi^k6VCXA7FV#g|7FRTSR#qu={@)UXIeAQ}U%X0rXL0
zhyH{yn0K?78vk=Y8&Z}kl?zf=t!GX(w4F1(eOz=iNwx?w@<os;&5YeF(FmDrm>3z7
zU{Rj3n61x|dmb9M<E@!j8>%~v*jFzn%@r(2B3f(E9N!>hf6j`Y`*GN(Q54cFt6)8f
zuM<+5dgD#MDx=g6BWv?|OKHg*vl>}t(4j1?ZRM%G6Y+!6;bQ+H@_LBvHSwmGYu42E
zuM(|X&1@l6mqc&4$A+0}>XN22tCc#d*xNio-$xDp0%CzIIU~&4(SC=kRD<Rm$80Xs
zd9WI$_)Tu4y-?@BE-syagFFqF7$~WAxzHq9yAVR|ip{_N`<(`#YYjH8<K1MW39YUc
z@hW#wJ?y0W?c-XB1Aa{9iQjHZ&GNPx->0+D@-<}FIhqB9Wlb)V*In7PMH*D#Nv;`L
z=$BDZdL{JpO%i=pF48hcUmX(WhWUibHe0Fr0`sEJMqJ_~r?e$O<h^EuG5|4cHQP>G
zw^HELC=r9h{cpEfZ|RB7EV?~Mm5vaXic9HLf9H9M&EB3TyEzKsC|{_#>vx5QuMCri
zoNuxGCM9JetyqPx#n76YO^S$v8O^Es^(8i$cF@U@->(LBTF!Kf@SRx8fHv=q{R;DX
z6`duRUbr=^r&%!b(l-5~CB=jy<yVa6VnsysbM=emRF=bE+#$L1-O`SMj3{<9J?xtS
z4R-pD(1~mC=^4}ztRw1oYOR)QJ?Y=JZEh_7YVm2}NJ8_&lFN0^kl?N|P6}8{(E-2w
zAQ^422rMH~G+OBUHF*0h1z|Fut)U{BJvcgs&)WYb%IVbSwOL=c(y3pzC|7$Ehy@E+
zEh^KJmxG*bc36P{PR7pOyLXzR@u6tb;l2Y%NJyMW7qy734PP0V*G}aDXX=djwvCF>
zw}zh5R*pzURUs0OgOB@MoUVGN@oJqN;}*>tXu9@I`c+o7y7rhNjQvLDd1HXzV<iX`
z+QQp>)w)%Xo<yrnGLXt*pa#or(S`CW*8(?LQpqptu!+>1$l-8O7LW|cN-ErgYagkq
z=;+i(%p&8I7_5p~bHr7b=gBH{BYgYDI;yB3m*nNbDK_memeE8WLG&7Lr9MIg!tx+7
z?RxUJtg!Vfy=K;(m$8b|!rVx!Xm&ZzShb!Ss?{(gGu~o^uIM+|a(|-RaiwU}!AkxC
z;=<??h^8#_F*NoCCB(cx2;2o6>4bQR8(%L#42Fq<BRUYV^K+eSSa{QYK)H2yd2UJ<
zA?=2J#J8t`WPym9Wv2>hpmXM1+VBA&gZ7DOp<-5cFqxMqaIr_Xsv@3J#SFDELAd^%
zfcIM8rSHaDB-tTa`Lty9%pC^2#YJL!?X&tuiShg<whfILp4Q)jQyDdy@~<1!#Z;vB
z$94b`X&Q_Ei%d_ZK-s>YK#O7OD1ob6MmkaB^zhAoVvbfDxR<ycx+hsa>t#1&$I0Oh
zpp<iNI4fRQx(qd*K}eNVNT(UjZ-~p%B-+{@dud4hZD`B9$RsHO_GrYA)l?PEslvc@
zL(kCpBAdfL-+uh@W#1z{fA%5Ed!b`KOa=y8Usg;qDrKNRkhsYI9cU_vURTk<WSeTk
zZVUf?CSd3ws0HBVnUX8nIh;S~w4DQ#bW(nI8$TXdp=c>wYoZgW7nz1ISI@LOmxw8v
zi$E)hR9r&7j;Q+$T0M=i^PEX7$-Hgvcva1kZwq>SNhoWjaBG&5949yFdd~7w;d2z^
z)m(2gIb7m@pm|RI!83Ps9rE4XO(#arZ8we#5^z>MZt%_N$VjMF3;45*kJlku&kVP5
zhi!)Q%}bC$$Tu#|X}m609##if)2Y`TlDyV)%5z6`p$MrNS1L_CIcUi$VXLYX$(-;+
z0B5ar+df3%{-4z;cap!JyO3VBdOs@(o-fZPoEMgv=q0PQF;v~bM!Qo&M_X*UvnFK#
z?o6&2!pJ$&A$xKTSl%L#*$`Weft&GttG~x@Pvr=W2&5T)Y>uxs5xM%5N`t4o6l;>5
z{nUY(e!1Qoxw2yTxOE$Idu?+GkbCwtGdDjw%6h8t0(rsVTeHPaUjRonv7W`rwY?Q%
zZJ!1gwK`(y4q;Be6CU`ngh<<nEYxZHt}ZD|AS=Sx(xP&K34fP09Mm@U-3P8(q{p*c
zT0z`DR!Oa?51Au7@(Jm~W5ugV3;}a_j+D){j!-5oVwqGk)HdJS9ATbXi1jvQJfwW4
z-3O>oUoXdb;2T>G8RYjoi*MOqDbH)$)O}lcC4b*n_e5ssqMUti?X0qGP2y=N!F0ms
zFuUT?H!0=kRI_I#m(I7}sqf+%q1}s6%VB50+noD-dDiB@+_$ZRp4?z((Jv)gVQ@$3
zI^a{i@_5b6*nrPhh0*o(+Re6`j{;5QJ|2%5OT6VuF1~8?2k9g9tX&K8PrQoOjtN`W
z91dk?hg*_K&7_>$7$?aV6HF1*0BztRZ=ErF{4m%d>jMVnp%8a89L;<e+iHPPirQIE
z={*J+hsB>6A;=79mfxME4NhSk_rmMOO<;~lzvh0k?&cy`E$JKlDsrM<7Q9xFP4Z>-
z0#}xKHeEZN=X|jttw82<Jxc&-lDFNp1e!SDr%J!af&e`;X|UpmFrn?8PNT0aNXK^U
zSet_M@$Kdo4xp&2UGnL{&GEgifW1$-T;Nv#8>OdU>tNu&Oh?~J>#S-1X6cLS<a$AO
z(LiT7$ht6K!ja?R&<w9k%8||d9%4R!9_MD)(|nz=C%okHJMyN$ecU!^#AFfYjr<~U
z<HI2Aq>n4{a9+oYqHSCPo))?yIG-RhxJu67!pwK$p}H0A>G7e5!dB&^PY&V)9jbJO
zbw)OMDw&%f|8R8D)AI^&*_Jge!c1!%ua;zQ%XR$h=ht2VgWIABXRmj(1t7AQJM^WZ
zSc)q&3yob1c6x{ZQKB~nwRdTKYrlU}!PdSq&m4MF-pEqy?Y`9RYQUCvAZ)`TCRQ=a
zeD8GE4?7vt?Y!)p-JkXQ-jxU2eE_Ca8NfRA&#6a)l27ctT$;55RE+G-rS7enFUf>C
zRb<d#j<zh(Lv9=yU6!8P>M*^|l=<s{zRl++I_HTOI-P_*4pJxm`H+V}h+nOX?&zq9
zqX$2~2`)Bo-{V-Nb_~*i%GeL%)K6>)h3+$J`sOYl#2(E;{a9-T3*kLv>8qXHL9&y`
z5*ugUiN38g{IgT|w7~Y!gVnyDHtp?e55P5grUNJHwNp7@NfDT51fMBsVi((fHO+G7
z9o?0Qs2`lu!<3e_QU0?=8EU&Mokm)V)?Wc($xp9Nmj&NUyvj0P#HXx^6_x>ra43;&
zqJFi{O)@R^`Bpe*wd&6l`96vMicJUfJ7LLk^ddBbt0Q%FZ3b5JwZ64xoQw~*E8D=l
zRB`~59hfj(@rBM&ri#u_#rC=?e)ZW*jM?+Q4Ia@)>eOKx*2t<0iUem`c${+A^Hr(a
zP2`+!I6xjiMlz3iQm}E<K1A;Z@THb|d>q<+eSCTCgV*Ler4Ryh^ZAVt>s~7d!E1>!
z7^mkGjZ$yW`#$AUyr&`<0d7>^JGqW;jI3kq_m>mRwLVLTaq3FgvTCYB{`TumZ)%hO
z1F}!sB;NQ_KGMOuh~t1Xk2$OiCG0^Hgs-VYU*-NwD1yDl7X4&T-TaR<{Gzlp>*e@z
z_Dt@F5J>su<lP&8yqsz!QE=hQzV>yP5B;sc8sIe!;Ek%NGnnx8mx1qpa*Y3Pa*`;?
zgiz`J)8+l-WVmQg{*KObyFzI~oiV;%TNZ&Tnk$p;Pg$+P2R2Q|+!D?s^eA$`JQ<aG
zJ^tT|)S?-Ew)NOB8VZUo5x)1@NX5x(2EpzsRP>AmBU<Wixta3L^tSIRnbK&b#nkBg
z*MG_O)lm;+3jEGFn3ul;<Y}OyzE4X3E2N++l(SDc#9?Rz&bMN|a4V2pqR5fdksjkt
zV}_FxQm1Rr%F0@sMwmOkaeC{$5j8`V$iM%bIp6A!lgpkM<>H*O2al4JaByH9H%!r&
zV!+?u+jr&8OZflf3#<rN518TzCpP_5IF(xR2bj8WAN-Q?F8JRZWBES)*ZW&@I^F!&
zi-&^sp8Z&au`le3gNwN>046>k(mnu2HzaLAudS!M^=3ak7flxz7Q|^}q_MwCDH}BI
zY7Y{-GdsNB^rFZS3^XtiTh4RKRm$!KKm&@XM5sNR=DjB-PcfeKJp+^pBUL)})e_R#
z8z`sOu0t!caq6Gu?5{{pQfY|RqoUJ0J6-o2f@KX7!_b@Gvl|IcSr6yUg9HU9%&eXG
za}m~GqptqJ_6OBoGa2gY&N192(NamQQ(Xnj+<XOoXA3MpS^Qh+e$Hd=dCVuOJQ21q
zJSY!Av+AKnHgSjRR@8^;z_hh+g3Sx`ORRQnH0b$xb^$*6w=xUUY&pSr0gsiSSyeld
z!v7;V02{4Tqtn}w2|pUs-dOPa$iNxJb4;jCXY_I(Ui7umxXZB}n})ybtElqTh5L2p
zCfBI1qQWfF_Os&d5i4@A_e_<IIYoYZk@IdJ7_2}vculb?)Dtx8VT^pj@ixUa)v#D~
z#8N)|mm@+MK3b!Gv7|qn5H(kGNVT@OX`a3kr-IAc7W#x_jX{gWXeD{%*h~%{9bNd{
zoxKsY<&I29fBWDtRaC>FJx9ETYC<}Y{^OGP%k3TY$kN-!!f6$ZC(AlM>yC~NdT+nB
z2>@^+CDp+FXY-BsO3xTg@fsIm$dLFD%+{7d<MeI!1zkWRkaIL!f5+jKuEP*RIjBrV
z*M@N+&@@0R=TKNu;r29U!$_rNtDdLY@c%Le34LuAebUmdOrV`bs^uQ;lEcKUWTFOi
z8f!i!JA}xp{x#)BGmq!vgH(ZYz(JeC{E27$9ZQeD<U)&HNyI`0lVj?)x4Ok&{h#)p
zeI0~G(9TnB)r%5{M)1j(8u(qV%R4*a*H^bW*8#ge)gRaAx>T7;NbeY3DUXau1Lg7y
z3j9BoNj(nRjnx3_c!TXqftQmhpK=0m7GiNCLlboKeQugR%z=%P|Iv)fWPfrk^K)Em
ze&wqFVHr6sEZ5$?P{NXOTxoS&9U)*&S|ot;9B3~m(6Wxzm~PKU^Yi&#AJXsJ=OT@=
zJ7xy3)|~%L+rfx@fUlq|2QWbfioXSlI{o|SiR9z6Gw!SVgMj;EYaO0olP~mDKQOjv
z$RoFr!890CZa3=s>KbM1VT|c@G(eoa3vQ=76sU5t?0s+aI%reM_N>V>()IXhg0+6N
zc+tdgMN8IuKkn=4_-|b2xlfNC^VHVEA-n8?hy`Wwh9r-fpT#6D2Y$@43Yjp$i^P`y
zFTh}{`H=-^aLo6*;jvkCFOHIrO{>c6;IuF~b*>l4J42CsdIA8Sv^isNR&6xPA_$*)
zOdGqpDq=>f;-`5;llMGVfoNDF58BCvQM#pDgIScuhDV26WUd^E;2p8{y^W2HX5o(|
z>_=80{V3J@#v||QeJ%*!wX50qd*7^HfI%JUGGUcAqlu!MyJ5!(s?jU<@#psl?`O4P
zjT8_bo#MxnqnR3?Z8VIwwS{PENmFI%i$HTarL5V`2pTE2%r7qLC&nVajg>h$`G0e{
zTMY_89rq0*!|RwI7dk(Q!B*;I9Ly1X#B67@Xeps!4)V#L%o^)Wsjjw(#p1v86GyqS
z_k?^DyLKqK>dx{>1kq;bpf2GnmG12VCa`GM@_oZNUB|g8W2R)AxjUN{|EYRvgnH`<
zlIdytb4qq^lny0T&1&tAaO2{zAMtKsdXXbnq@rSb&U)d3czs8RfuZuPAW0FcC#t2a
zWnv**`+MyQaTH3L1G%JY?5t=OQXI3e;_<Wo*iAxh5qVCY?;gZk`Kfh&&+CeYrj?LA
zL14uX5{4tW)4d3CZOtk*2Vdm+J8NvgX4wi;<Y=3sLbrPQli?A0`u*x({J{Q!h%6oy
z)@a{*ZYPAexv;`g(yFr%BL#nf*Bo0OJ7r2k_PyX@w%32Oy3bATA{X_s66AwivG3_#
z!#Mt_m7^juqM^M!?rZa!^if-epXWDgc8OPMAMEY@u(9E|qa5ZJ9sfRimuU{#8Zkkx
z{*{)vbysz)?Pzd;lf&#uGfe(Y&F5+9U*cv*qnI=fPg-@Rh+_Fp_`OoreUy9kIJcQm
z>Ow^(-%^b*DfEeoLrp0sC%isKDSCBxcprDwT-`W1L3jk(?}V?^iCI!^b~BF+w%Nk)
zlkj?<=@G>!`JchWAF6EI>7%<oPU1z(lDc?ok$9y~AuQ&@iK*P9*!Sl3ZB@unNE3}u
z8DV#u%t$zj9=7iw<wO-1n~d6QY>xHNAGDBUSH{47_tlzZ`OP9^x`scbuOF?`0JS!=
z=WD(m&GVJVkRFN07xoU7vZVF*f!O>n@4_qpc*0Q83E44qTSsSb9nhh3<^xs2>Pkr#
zZ=v(v=h8_&oSe{<PZG*ZIJqPuHi6estucZhXE0QgRtsp_5#^*GJVzA9P3411r}~;s
zdYZ=o@HXlYMn;JVv)U8#s^;~8Vq<nV9NF+wf6ebbDHD2?sTIpzg434Sbj#PPOPPXE
z2n9LW6CUWToa=E}`Nlee)_Gk?p{N1vJRa+hI01sfW7FTx)Iw|vX3?M{C@#LQ(DvCe
zgs&Abc+b1<x6s&fUJ4>lzFB&NcDyA4c#L9=+h=31iS(q2xHNVe`zkfdFlBTOzRVcd
zw)m+;V8&3_1GG6Z8bH#*4(hDS&9TyYpB-N8JCP$iH9BJ#@GtJ{2sIfghLB|cI=h+M
zdAu&XfC(?zYQlp=6LM0Dwk^y6XCgp9fHS;bzN7HFln<_Bf!}`&f=e?q8>Li#+IQPR
z+h_M7c&+spGi)KT0;8b6>E>;REA|dEINpeZR4jEAVa39JBBF<Vb6VA<OOtq9`XWA$
zlQ$9}1qgz2Noo4!x3{|*yj?E;)*GVcSE8*HlaeHMxGOU<&CQgO(p~19HiU)up7C}G
zsoc|O0uFQ(75N0+Zr>QsI(~IZ7I))j4%leyslXjkOOnmXHnnNHo(gAlG9F;>Nchr*
zE&;UK5@|_DzO6QE`$J1%?n?Qd$OD30<IVD%SNn-4JKjp!K=bEhqzbg<S9)A7mrTBm
zN&O)0!+*9HZBbn>Pv9;cAK1y`i))osgMe~e*@(sKYkZ8z&wqKo5$fi%+`rL%`(GAl
zU=X%Y5G81IPUU;jYbOwB{(s8vd?r4>HP5r&$W&Z>jMn<~6zviEmWVOaA~U5qQ16j)
z`H{Imsh2g(L{S2j{zX!#%WM$gO&38F5SG_;vI-vV4^Sk!NOJ>oS&~#hS6Uzy9GTM;
zKeW6|lkn-<md3wLoEua;zF7sBR@ffzNS-nmZy9J`eu=+}I&o52%(#WX(DIokyXXtg
zdhdg}t5EHXA5(c1JhTcb9nu2&I=M$uqQH{b1FZ+#yr`}och|wsge$}8mc;&V{)rLw
zft|8oMN4bYbcs+tC!veu`}R0l-!3Ou@Sw5UyvDM>0)IXl6H}skqgYODQymb8qP5h`
z1nI`(a9pz-o3W&EFMqAGH6ba0Cica>eDrsM822`VRc6dl-?+Q}H=It(d0)ylQ-#ev
z|1q?9@uqJx-23CreQza8$A5ogBfN~LEOGd~1d6@e?`({*nyd%h>~0q4_y_&ijFVYL
zH1Mk2<F*>ZgCiqoK#`XP`9FwUAru)wBbocE3@gf>8}Bbu4dsuCHVdx4Ge4YF;3Ofv
z>tFMKto<&`tkC(Fnawe>u@S1p^rk}LxCdw%NUg&@7`-8)#NW*9-Fu(c3#4GSbgO)?
zgvBO;?;ifSm)vATb!1zl#R-|uzRkxO7#i9eWiuOYc1+k<c7`X-a(90`6f^7e6$#0)
zr`bv69c92v?L>$<rtgn&t;AGbv=*j6m<<CEa)qN9-}7h1*=Da5nEA!@+M22@kUdU$
zWyFJ@+#tW=Ra{xf+HFcqydV9dPATd?G(HY_Y_V_k;r`zIu{~_qqEGv{6%Cdxcb`D?
z<X7b@&xAQmTb%!zb3maiB?Ab&K5ukLW}<E8``ale+UZ9T#U!}t_bmsZ^J?GVh(gZz
z%t7#=A*DP_L^qTMdiInbxA!N--PX!mIF%;ZGixC%u_WN(eTRB(#-s(Dn3Fnbb@G5{
z@RFIQJDS<8YEY)DNdF&2waua1M;KP+=&u$PI+=wV)OMK>%Ph;*0fP6*Wv1>(14LI3
z)qc_=*E0`V!86(#sH4?X)iEcl?E&dNlWowk3w~%-9YZ7y^1L)UR>$XIAxQ^%PR0gr
zB20y0I%zEzUx}%lY9B>G?yuQSLj?342}6YJ<;GLkFhVROBhyhOBuFd<`_S!`J4|yH
z>oVy<Mh8QMiZ!-Ejd*F|W39Qyl48eKt8lQ4$HRs_bEs$8ycOStScxD9Lh~Qt;~DdP
z2M}Gcg|E8hGV*lZvzO-zVhJq)e0`Zc4vgb3*1$2NRnUoWiThdsqhO=9Dec!<JUcV1
z0kw-V=LpV!eLHaHx6o+IL1(M{P+lW9{mL?&2E~r1b!stNb1|>*mF^DHF!JpmCQ(2z
z*Riu&VJ#Q9oB|(kJRXacOMgZgxU(AOmGpPBFme2K881oKZq9W1H6n~+EAVs);7v72
z*y?*PeOm_Vs5YL87$Ou|TK^7p9kZpYv9Xwt@eeZS0`vRtLMLw#<yK=2mRe16^NxO3
z@rl4}4T4mD6_*dBUpXahVdGh;*j<^Fm4&Nyt?wSR;g_@@kgf^R_!P)j2;33`i+7x9
z9v{Qg0(V1>NG97Ry8<DPk1-y|uMs?G^(7(PoQs8`jj03yw&Z<k>Fo~F?o64u&z49l
zvCK5Ylg$yuPMPGO#*6basTH)s4cjVXDR#@i=_n+u8jm}py!j=gnc_AvjB}J<^iNqN
zU4?TzlMP=_SXe{%QAxY*<-SzEjFZ<??QiMCgM-P`Jw|H6#bzM-V4N)4*VX?q3Mkez
z({Bc8y})4Y$Q0K5u38|L6RK5aKt^o>&%(&lAlmV`5z~+@;b8L94z^~|s%Yw4?8v#A
z>!54a&m=1;389_kuv3N>h4HwcKzZtRf<G|Lcafm0C@9%pQOku}6`cIy3-hS0nSmh^
z5o$n6S4d#MbEo|vdAX#0>BcJA{VDhpqRaYN+Rlk=T_8dE|F5#Ij%w@sx1>s23PlPO
zFII}TxKp4&@#4k5xCajoZL#9THBj84xCSdy+=7J!_W%I`1R4mF{@$B6^WK^@Gw+|Q
zb=S%{_pZCnxo3YqpS|}-Hevc)Fw4itqDzXu{E1j*vSAg~>=*nI|H=SaDI>TG)ZRfu
zL2$Y!R=9flYk3;!+yc+paAm4YjnvW%0so2K@yFM@c`e|=!A*XvZ)!yooOW&IQ#7`F
zouUT2eU21{M1<{p?OTbYc?Y&JFIrtc!@H*-37}nQ{!KUg<p(OrkNH`c;aOpYc|o+_
z^nw(NdBu%4F#Bk;IZpjuSCp!LMZP{n5^psZ-(sh^^o+!v3L)C&p@CBnyLNu5?py4)
zZ_rqXHYpI}%^%;GVr7QSt$SKZ((Sx0FquCPUw1SB7kG2b-enyI0}hw#d7M4=+tLmD
zzn6Y?kv_@^b@1|_6%sp|##iG`4CtWHJ$SSHt5uCsKl>N?CojMAgBhOfCNV*GJG3D0
zG>`~cxM(Lg79Ku9IAG67;2C1rx*&cpw0A<XoJrtUMw*dRd!>(TCtUea=J<<w!ac(z
zEBfl64&Eom&7OgNWbzo@0I?HmOH(=9wCa1W=vjs;qrM@9ZMkHjK3|;4dfj3)c5<Ba
z0l$a5v!a1LguHxMCk@az_yhljZXpzEF{4?ZQcfyIu2kF~V9?Vvv)(R3yw(|(t>#+8
zN-JTWC@L#1l{kA}=fS`P)m!(^B!+oZ&xB+nFCS?B<OTyY334sYkB6Pw*b*`dEjcgH
z-n5wgsmEexe8?XR@L7=l>4#IsoJsx>Tr!JR1V}0ZgyO_6w`Q??lxl(clb?rDhT2!x
zJi=s_!Z+A9Z<CryQb5|vx!I~a*gl?X^4kd#m1Rxe_tR+a>)T*YoWg?in&KMy&R|Kn
zG+UF+W3d2uyHc`!IX}EwwXC{5anNgaa!Xr#$#%+cczJufi^CX#|MF?Z+rmTrO9=z}
z&q|p8={DPK8-|Cs(y-5$>7S}}J2Q3|6R^Z*kB5ya-No%K9Bm)!9vubZ^v{<N)jriI
z?3YW5*RGwZqSC(GZT44>b1W$W{6jC-idDVHRq=moI7?uGOU~hXEM@ioyHw_CaenLm
z?VYBkCeObO$<4klT)9xt(H*X?c3a`SuE(*^XlQ7}2>&MkdR&;VvwC9w0w$7gAT#u~
zQ$y0mUuIN(wbdJWYbK+;BQdMe8>n1O`rXVkSofEpx0o`7%{9?iOUn!$(VIQ;VEogx
z5+Vs+E56|9Iw!YaRa)HfhU$q^L8hNI2YQ^ZbXN)9L~?)vI|iv9d!fO9j1=iVn-N;<
z%$pEqt#~T;jhnn(YNvu(4i7W^Z?Y0i{TLqEpJC)n3xt1Yf_ZO}M)hK;McdorclBM=
zoj6STqLzH9R?2wyb?9WbR^Gdcjh2u~%T|5RirmOUkP1Xf_e|FjB>gewreE9JGHC|<
zYJLPK+;xP`_4K=?>rbwgWL2sy5mD`!>-XnBt8Q8;YWlhJB>U5%qEYbbLy2u}8ew;D
zZ<mFi@=s(HC8$ZAZ8nPP4bc<tOX=fZh%dMMR+U$%vz<6VU_ycHrk;V;xrv0>_xfo-
z17Nh0We2tH9`}(O7GewTyptIgbAyQkEjfYrd1OU}g%16PlPxm5Lo_xL{`nXPknSx|
z6wLbUsG2a)1IBz64txHl)g>_}9p*FrI9p`bp#H1ceRX3q=+ex5J!qvYF-(8EG0QCn
zvVB`v@_@n{vJUzpgOD~oP8UFYzg}F+Lc5$F%HJenry5N|s+@RsUM73K-CS@qc4zSc
zblhE`e8{yJholf$SeyS*0bCi_L#@^0KWmaYlMS1}IVHaY2GQYqwA7Y`HYfzrp6Fej
zWvz-2)m^<dp04-RcG1wU`5f{naM#6Fy3HegQlqA9(V~`krL`@t4b3I$Y2lBn$F#{&
zFn1=HF5h8WsV~_<JKFF3HP=$}Q1J_Ur7QL$8ys550J_<u@O0b^z6km~H<l2=Fi~GM
zsUaI0^v-g7k!$&yw6=lc#hzA5OTNSGsK$g>13hwa#<_M~^XJX#V@WY@eP(&O{HV0S
za_)LM=Rtp<m#K(N|E_gU&By&cbIW4(#{$*9WVYTruTra92v>U4Oe7^ozYX|48bb(o
z`+rTjZ8LK8YZi&lJy{N&ca!w-)5;xhGDYpEMaBoO3fOER1{vi_t2_tpXvk@{A|?qP
zL*mrR#kgN3O>FTlQ_<0OdQ^FLjY{;7a<|X9MEUx=yK-j{l2;fumVXb`|E|0bDK&J9
zZk$atLJPYrU$6Geg{RICme0}JB>T`Y7CiZLiI?fsu-wA4yNwbSrd7>l^bkUmm}<s~
z^b_hKDZk}7I|J;Uofjo`^%#{GmP&n_--Z}nx;z0a1u|AU*#a^m3T;BM$&U-DXAjqe
z7vU}L`o>a<_3<-zU2w3lt`)9BGXiBqPOeD<!qw@TklkfKXT$a-fkhPbE1ORYC(5fW
zaNi?#m<GS0IHD+F=}V^Wl_sXzIcvX#?d&+V7vJmAhP_md?*6%KTMDPHbq$q8bTgmt
zxteq2#rp5xYHaIBC;Bkc_mgzX7dqB@J*yBn{_BnRN!xJah=%6<#acM+J|<mbo`}9a
z3Cg54X_<Hmv&j}Ig_r1u6^M{rE6Plk|F|ZjQK1OWVPf-QDRdW9zx4`8xajOxCj$?V
zNH%pX+oRX}QYmKQ8AK^O0XXTAXq-Q~pKylpR83XVq<CXEVPu>8aZq%f#(^KxC%B>$
zDRGEdNK;jEP;eEzywcnsef0RK8Wjql{JetKH(o<#zjxm+{>9E3(>&r^?$<zlu2fFQ
zux-go!C6G}G&NMsK-~P@@ke|sD|5ZvLrck61HzLcWLymD<e>I_+ma@od%dHRU1i|u
zQ1iEuEr+bf<9~9U0wiBuE|;ZqR&c{FD1Ug&aHkEv9QucE=gmy_1n@|xra&rbfN1Bt
zddl&0m&)Twj?mEli3C~-1O#McNG?vdvMxPf8L255X}&BtQ9$WWnAHhPLRQV}yeAh2
z5oJVj#I7D1g>rbB2z1QD(?xxgh(eu+L`Bpjt&a{A)#hE`KZn{ttxV3hr{0ALKrrha
z%h<8<<C9~zu<*9Kg65>e?ZAs{^06%MCvYL(IE=-;F}(n$y+!io)nzI4$ua>w5N2Ic
zvK~btPDsZ;Z9cnPV!>GRGA%Rlhl8Atum(AY?ubo;vst^gewX!!)L;ec$yi^@W~D3+
zB+C7X1n@q7>)6yx$|{pqPXPCnuhr5`^HlagWs4KbCUHL@wG<fQVF4Li^1py}wz>@9
z4dxjk;S!C`$k={*wHDbs)%lKA-Lm`PRpC{S7RLG2%<9}xFrlyF-sl?ayTgss&$Y7L
zU|+_O4Zxr?Ls!r2*nsVgdPQ7D^UA476CCGG@(RL&-ePW))q~j<HN3-lO4@x24bw`P
z`6gv5vo^<^HAFxj+ZOwYqGfG5d)ULfbJGmkbim!1qI<`ZFjkdPJl++#JPh1h8|Ojn
z5h?n3QGR0$4=1ho!iij#X!M%z4;-8*kmGl21`D&e(AdZxGXH8QP;YzA8odRMcuW$v
z;|><1?XzdT>X`iT<xUVe%68&)G85<TLw-iPG3dE3rlaD_w2C$1GREWA7Qx(#v2=l`
zdL_{Dxle`Pvl;ylUWVS&{g*d09^-WTN9NK4xG)mZ2k)0Jk&pK>A6(QB@{gg*{hrW;
z9M;&U!V9LtEn?2!BNqg*#$D_Si+1P)gnlH)zr<4KF2{GMSQ3#l%#w)3%K7z#|By+^
zj5>UH^#<84<@yVhrTM6+l;lhFBPM?F-2VK;Z(}wOVUt24=Fv5Sb^c4V9Mh~_AJ|l`
zu4+0gRUnksDhW+Z%KWW!BsR9&JkZ<8ifsb2kuQ9Jkn`wmMffNjQle*Q!(-ZcwNBIV
z;h$xqnuT}SSz)<W*6wt4fr3hsX|<1-IGN=pRLSxm%kqpN-Z-sQK8PMln>XtZo*W2+
zGC7cF?P%t1r>c-chMKdv$j0=Zc*mCJ8<Z0Z)j>M|fQ8}|ouUrf+sRUAlBv!R#3tpi
zJk+>+cm&kjITr;}1+_ILJ}h=d<T;5hhJk{VmAK#UVpEz^7C+>aDJ<(QR|j)Yt{=Jj
zp4F{dHvcioSHMb%+t6=BKj<es^?x=;8YQT!oKQwgE`DX~@J;7QIifI1Eb4(WZ6Yco
zFs3UtJuy{-P>Tm3BrTlQCtl)cl-}avd>b{cIpn;f7MtysJg7^FZha?1u|1;llprH5
ztHQT%vNTz_3X-(@`w2>nXx?cH9-CHUs`e-b7H|qZl@Wx{`t{ckG|U>d`bR`szD(lf
zE3S#lz3o*lz+AXFbxyhX*%+m{kYhd9)o+$TQllI0MOy6RhB_>!Tbf(Xa->Tw!n3pX
zpE1x%nLCNo(Ded!>l}>=ciWO#l7#TZA@fJ(<=pAb_G87d2*74ykh2sa8Q!fKv3QpZ
zJDNcVHZ$vYZ=~5}WUeagUrMW(Rx6#$pT3re<m?#WJq*!e%iO<ftinDbS?qCYt|*OU
z!9)AHB|wZxL#-UMo4UJ$a$<gkQKOusiOCo>QE&9W)4a+r#Wv?b^&qc(?D}|Ywuwmu
z`jFO-W|4}75z?+=H*HrCHm?RoWbf?>H5uN^)vn#xj@|1xG<LX&JM?y;{Z!=8oN(ix
zt)4`_t)<}}R3Nr0U-bw0YcEp0n6rkFB#{bzmQYExd2j@CVRv+#6#Mm^<jAyBk*5n%
zC1C8Ib@;+|u&1-9zDdMDxIRN7pi@@uxs~;BsV~pOOZ31b$;ej=Mg5Yd>2nJrCE`ob
zgsjx#hm3*!h^_lmLh_~jjv}a_k{k-}ysVItc8_0-7=ROP&gDg*ETb4HWf&=$=^$I%
z;o{DGWkN)R;ugm}dbnxk^IH!7dyUy7z{3H(j@nR^zr=vAm-FJ!tIU#fSNcY6asZ{9
zl%S9K&E)qX(4O`Wy=bCv#a1D}+^m}q<~u5tTL%FL7b}>y$M1ml7)}Ttp1r+c?i^FY
zc00dSB~?Bw_%-^Wv+W15hJ|ija&k-?+;5C_LC|R#l1dbG)e8+-qG5t)al@;JIbR>4
zve0_~&cmqi2Sp{tLI+Ssh1_blHT{(PyeFqT8ZPlNjx16_*Ofw+dkGC7dLEX-GW$`=
zp$o2EMQ@)?Xc9Zaa%W&x!%p|+E1l-0DrnLa47vLpCr2%AF65+ieCuo8o#>oI%?$C;
z+MTwZDgH>_X?QtPN<KvZ#}U9Fbw4{(-8oJU5tVlx+Pbbzb&&&J1Ab>v86H|w5<>bF
z|DCC4jl`$v@Uy;I*=yzf1DKw!e@iRcR0OzG*E*;X=P=znHU>7?fC{go6jqz>;Ig}2
z8L;MBOoG2)25dtA)X2{am8Xa%XH!qj0VVfDXj-mw6dzIf?-~mh-%pYbO4P2YUi(ZR
zNR;zqSrp@Z_+qMG<W$xB723PoNFY`Mbv~h(k_u^>Iv7EhmEP`@@p=OTT!ngX-22u)
zGsnvZ#A)e$tU=ztO|ZV<*1rs5!&||}J%jXc>EzVy{Dbk^M(-UrO<h8U?g{G)s{01k
zuw$<~ZfP)gWMq76p$t=|4LkMgCpO{s7dGq`0P-I#i3{u1SA}J*9Z_YQanu~uc1*vE
zyPZbek^V=cv#>1-`)wp<5acl~X?v6%oqOeb1pD%&)Szs&&>>tvydcn}hptCyNO&Up
z$sr9j=0;jfq)bLbScKiLFX{nXQQV7Jqt|+K2`PIXq|EktH>>gbHJ4I?g6A0W3QqcL
zypJTm$8GxquS0jv)3Bi((!mEbcVxFxpY2qewga4Z9AwEk`n^6_G30$R;3cF*CuV)D
zroGl9{5;qzxD;IFg_v`@@b|^zP=A#~C*k7?ZLp8ys9wAad)75Ufk)4}hnLZrmMnSe
z@=W)+m4zZHT(9)5#A7QqJc;21N2^<g_b1n8eca877mdGFX2UqTlivMxUH%q=`D;t}
zUhdy6{`O)a#$UwoKVA~m;Udp>w73cIK8yVR8#TLq2jPC#U*hN~czrVeX@CLa3~wB%
zGOni7D+iPsu8g)cJhChXF)%VFUJ@|V9GUBxs*qktPM4`gPkYc~n)y}8b}EUZf)k?X
z(59Y{H756<k#*&ms^qSqb@JfxVGtAEXK_YxhH@EdvP~+#%6r0P*smvEWYX2bx2m?|
z+IfTvzaB|q3uzc&E`7V5PYY<NsH9%`s$8VXV@?6yBR1&{vL`&kUFmf?ud(v#m1-h7
z!<E4m3cu@AWVIhmYGP1B8HADc`cASlD+ndFPMdEl2T$_?ROE9}j3vAA5!W$zc=ULS
zSO4(y3{(QH9C6NTvNx$O<0sjJhL)bpKl1v58YOh37&W2(*gkO`w!-rM{EZ4kn5g;@
zg2r!I7X7Ev0DCX+gPABd3yV*G-dzl_^14a=MRieaU_Pn+)`12JL%6$AbE|`?&cBn_
zlUHDKBEQrs?1%ni?velodHbpCpCl>D`gL_)(cT_3$gQjj=O+nG<*Sz2R2HHZHZP@a
z<tnlg^D*ba{ztuq4Ya9xV`)u1i@pgAvLEK?BD7!6y0c5`F>c*TPHMW`M;F~ZWt*=O
zHT+<d%A@*Y>H1fNkO|A+oLZMZMQ_Jk4#W(4q2@>A{8}ZuK8jdHc{ol@serCt9JS+E
zEZ90=&>#Q27??ynGYugeVhAO~TD4xCPJsO$<TjsTkb7^uRqaNvof~`)i%}|;D~7e`
zUC5Uk%(LBQCUA_ptdF|5X31-o7Bj;fn+*p{-FaMn;K~F6-fC*UidJ-VboGsj2^d$)
zu8bk8={IFcK62gNu0DL=XeZOQb;n=y$l+!`khUl{U;KKf{*cxiS|r0Vm|_R__kaPK
z$K5>j^#&Lf8R9sP3#k+sym56I^Q?l%_H><FxL^|0KRbV`f|Bbj#m-^I!so|!;n?z*
zji4AOD&liGZh@L{qyq=4aOobdt(J*t%SOlrYQmj{IdfFB$3)Fn{PmG=8>b^85$en~
z)e9NF(_VF!ps!=I&cO5PsuRrNEK4co;Ha8as4C{LTH%JjORpjSa<Hhq@hWtKXC|19
zP2{Nk=iHv{g@akEKgAV-4%L<j0s}wQ?_umu%IAvk2Q%!GMQ!G#u*W$I7tN*~ba9;M
z8WPo!vCy(s3fF7`M!z@}A~)n)=8z3{N$?fFZ*asSJYYV}ReaDZeIoY<4Hw)MhTy3~
zWV8MVcRgjVE!l;f&~@fW+RKPoIL2Rh+|0HuqfmG8R=LeusS)G&1m{$Y$$+70+m4hI
z<?ptyxd*RefdW!7i^f<RS7JuMa*?lRS%Id~<GtR)t3tEB-_y{lQ1wC>7$`0M=W<`1
zbxAMjpy6RqtmUgppkAG(ri;L-9XXiQNO_unIKyp2N(89Tg>JBXUQ42M_O038+=}gV
z<V#2~06F8H_1Mk647H`q$~{w*QW4H|37l;yZEDy@Lw{Z<1Zg&=I#0{XGWfzWs^Wh6
zwtUEbv36Rgth8Nn6qhv_p1OiG{H_jdJeIOr>@>frkq$}<FgM7^2L<ELRJYr%&Hj2@
zQ)k$zT%;w#rks7C^3Ji!sJ^}SM4U;VpytXN#p}n`Dy#mxmaG?oGrv{YpL?cFmVaKh
zQg7q|ttvM@=_Weg_cdu(z`1B>4x%%cYu!p1-%|PM)3~{}ZD_SEXg{B<tX18*-XYN-
zKWyyef(K6E7Vx{z2LYe=DD$nJ270hzT%4T04|K84tOne;j(C`a`l~(_!h$eUqc&~k
zk$v=fw6~(`gmFgvCq>nuf=deg!9CvALc#-jDhZ#7#nC?9ldD$IS^Oeb`3QnRa3<iw
z<)gIScs6hRek)1rA?WahRQ?B>Vxy6!&aE!n(-as%b`#^^6NXQQ2J8A&hP6GK%pMyU
z;NBd&KwOvS0r8YD%&mnKUZsAai8XX*Oyjl9X_{jx^lv>&ac=t_*ONG6N!{jEaM+I?
z$C)5kj97(1l(v+O%3(xyLE7#^{WZ*v^^a<<ViZ+k#~g}lW=izv%pC$H&&5I_j~Z($
z!@7PClf(snz{kd<BA#+QlYNplaU6LgDCqXFgxZEW&6~_OD*Mq&5aOE{PvOH>zgyhv
z>Lyye!Xrbl8i``LJHSS0wW_#A6@75ZiLI*^N2J1Qcz<FrctMj7#`T)B3vR*wnlEvh
zA<NsZ<n~8jyp0C%jPd=c;zj1~+PCLMF(#cY$U?UoL1*EY`zdRDu|}sD$#5bDtUp|a
zcLZ*G-u8UK`%?`Mc;ZRHH|QcOqma8*S9cN|JD;V45j*ok{QPiRom*5AzHQoC$;md5
z6?XN&>bN{GNgP8+GtIg`vOy2FIa<m&QKHN^ejYk{DbeR9QlG*P<La=~`D1Hx!~Dz8
z3@Kbg!Dt>rj!$%QBl*l}Y>!H*I?x}<HC`lQI1qp}|9IUubZ8jN7vz%~nIqY{H(Wi1
zRGe9K{y^ARr?n>7MX{r%?CxGOBX8476ITZIO)8B>U1_6td`JB4BJwS!cM$AJnL<}5
zo(0=%uN32BGr<@UxrHURTvFetuTmJSzBUyd5ADhM4{RDwmE&wi?tEXN!RBwB@W;<{
zsPR5ykpU-(kWQBip^QuK%3y|6YZDU_5C|0J7j}g-uM;CMSJKZFcu!}IKgJt_ZM40R
zj7X8A-iaTHvFFg?+&o2_*p$y~gV}X*!#M>d^Q$RNns+{?_>O6;vNI6jnZD-Kt4cWA
zBZIx}UU2}U6X(0`4Z7iWAkPkOchovJdYIp=tOD?Uq*3RbE|%zVn)IJanGU@*PDrj8
zTiIv<;2-WZOcw|0qhj+>fU}Q}SL4S(ju&M*i%no+vlO2(jrD)KOP6g<ZyPG_?!}v2
z;dGi}FhckVt5t9Vm+kfx(S*|!4yjB~n0T+F#v{bw85JC;L}zOo;}?=wu<yJ)F?!d%
zo}P%X)%$opJ?8MgsOIk6UksDa_<z7K|4q;n=EihM7J-}0;@<#KkD$^29V7kM`5!&~
z7sBHD|3g^+b@cxelKnRal;kh6rzl(VW$0C$pPb|w85VQ*O5va%rBYbk3>+>gEUaHM
z&;N8|bMt+3gQ}5T`y|f0Y&GoU@}RI{bYWp(dn{|d$_NccFK>v%0T8nlibi(gaL%*#
z*n}1zpK0Lm(yw#uy*H#83PrBTDGs(};D{vSg7ZoTm%kopivFrVy)rFpNU5gu?KOYw
z=skQQE}R0NVi)Iq4Q}}9i?V4;yCCt?jw#G!6X%&st5##TzPZ!XzLE5hZAel?(3(G1
zgF3sS3;U*G)Sw#T+NEx@=}er91Edp!T-aBQF0L*~WyW?bS!rqWl?L@f&d>&zmClX9
z_-4DQ-l?2~1etjdNX%=0v7XH&kmC7s5on4o>=q+~$m;@bs<V;B-2ea<70oN>b#DRm
zx~xyvoVM4sl05Xv`Thua+esZV7=x(XlL;=&U6S1Zx-8dTs}6?Muu7ew$ByF@ymfBs
zp5zq?Dvw4;EXKj6m2M}lQ@{5<$=SO_VtaToLjSQfaXumvE~&g`)w2$JnAVTM6uVQB
z5)yas-Lv=IDsPM*Rxi?Ob=w%olZzmt5#nNG#1YkOt*x)Fu0WFhb1N$=|GbHz69=BG
z_p7Aw9Ky4tLL!MYTm1^3+8qaiG~!r0^#OcPCyJ1S@31PU%}v!cpi4_m4?kSgJ~${=
zp<o_yDDTe1oM&)Me>4p(e!3z413tkS%)D8INd2{}byGSpo2aoDnMkbta*!^Aa>mM2
z>lNKJW=5BD@PVY5R03{mO|+Y|10USKzu+X4hvj<nG$}V1`RU#CK>$S1sMWaBaxhLQ
z=@qwOgWYg4yJz4Y0-=%??x`};VBPcefhX^woWEFjx@S=V<#low%UAkh%iZ>N-gHUH
z*6^`Exz?f_9(rsmM<;CKffc&~;d)+TCbxgAw57T#6gtO;euYVeRAl;iUq>~)zfT*f
zG^U(2&1S$bfc`D5x~Z(yWbK)lQ{%pU+(fT{s+UN?Esf`sy2OOzw(35D!1${UZLV<}
zcI~-V)tRa@RUcdDnr%~qop^E*t+X!DG<yj#`H~S<R#pl*cB5)x!w(q=&rb=9uFG*Q
zo@Nn5fD+-%cA($lkYT6O;jNm9n30)#QhHS6tZez&ZqaWW9Vv5j%ezKiMLXIraD6Y2
z8zeZy$80=4ew=KupJ8HVmcBWgF{rmO=?pNan4RY4o=N@o?GbLp=SkAZ6>1r5FEVR|
zzbN!lh|_pfCPS3NPa^+4u;@2GQf+vIH<d$2{Yk8{g5CG_7GizMF;LB~pz}0-qfr6C
zV>zCk=k~bHRpp+#!)6D|R_hC2V{QdHju7Z_Tv{v;7wzH2Z%4~sV#AYD51fO+iq<7V
zR@5S{tB^8nja;cJtuj77zU!MC`<$u24>dYEimOmU2T#n|ihypp!n?Wy6(@sauR_7w
zC`)xjv%e?9iZA}gl$Gjex(qlIf)pGn2^2?RH}jYyN}QzTizAmlV;O&itIykSRwmqT
zPX8w59F$Hef_*a9x>#%}WevGe=o<(ZB4Eu~X2IYO)KB5(2DM5%x3}4gXB}Snk>lZ+
zdJ2ftHwDyVs7n$@bXiMMuLJhKoUrTb>yG5^)*&n(&U_pl8fpa|QghS9Dzv#;8DI-k
z24(q$h0*)770n?@9N>hm^+K;-X*W@T=a|d**Ot#Hwzt%lY?h97?M}wB=+Bp7Cu9Eo
zs%akWokGu3Q<S4iuHCmcnv_BHkvh0`e;pD17DTsi^2PM^0DM9RB=oTN1%bB9wT)&=
z%4%je$*O0ph2uXC3FHV)QRP68yECStH%n}-`)_buu;^=z%)C=2M=m8r?GMyjbD`8N
z6VMe<&Zx+W(BYV!tGrnnJ@O#>&K5Z_7@!z7?a=u4?OP=!CDKS135kHIe0dTQ5_WcW
zf%gRk1!QDo_Ftcv(7jN|`^dRTn%YQp=7+6d4b^-dMp4l7kELjtah0Ajw?fF&u)P5F
z<J!Ggn<AK!3zxoq_Si#E?1sjd<e#TBB}^qe6$Wry^ty;{-vBq6*e*9|k!&xt@?l61
zb~FC#-~2$1x48F_)56a+NpFP2_v!w?z){Y+pSyjmSA(|tjwBP+2-M)H87xx|Zfhs*
z2H#B+rtexPg?~1W<?Bp}lT72QD}}s_37`!(kBW){tk`03rv?lTudl1Kdo)|7JvfyJ
z0-0!Ots{|U#>NMBS4MA0ZC@b^*rQ{MgdM^{HTK{_%|CS(bl>9g5TAEIr3c0|v+Dd;
z=+nzoVd%3(-=<XHj-3fcDrc^a5MQOncGU943O_A+5R%i?Xvmk(>i9<gOuPVXWgDhf
zDe!V{KZ%Ff#jL)_8hVO;$kxB;nLQE1yS~Ho>C$|D+ad&)_b?ThbGKAVV6-rRhLa%E
z`1z!f4n4WAxU%1JO93rTe|{k$V-8m=d{Y@2{)#!KG$zXQu+gxJBAQiLSeTbL9$=r*
z^az916TrC+PETtEwz_ii;*=TprdFLGjy}x#fu^Qc`*NKALS7kXGZ!fB2=Dj|+J!mp
zK}=QH2?4&3X*oIH)@ogbLTlahi9w!Y(*&<^{R2FoW!>vcZdTpWZ~b=Gkx4pv-xp$R
z^s4kwE7=0n)=x5~{?RJerKr~}NKV;%8sBcat&!4dgQI628~;$josQ2{RJQbbYafEE
zbxP`?P68tK?L+@G7;qO^d_@KQuME#|{6HNS>Y3|~yk)>L4n^GB;p}L<-2DbPC8@I;
z9p^7jPxH5;g1S&wVYqbB=Prui8sfn^p^C9Tyz;jt?>4m4aa`+evo8kC*b-qmKLSDA
zN5-en3voN5ik0Y8O2UhN5d0nY<yn1e#kYs-%Ebl;@;L*@&P_~kf5cOgSASnE`_I?^
E0poTzO#lD@

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-expandable.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-expandable.png
new file mode 100644
index 0000000000000000000000000000000000000000..67df953a082583d6afd7e1c3a9f5c795af4b4a89
GIT binary patch
literal 50493
zcmYJaWmsIl*ENh&9Ev-X0>$0k-QB&oySsaFcPZ|!gS)#s6!*a&+W+r<-w$(5a&pd|
zeX^6Cm6bK&^0HzGusE<FARq`5;=+m`AYkSoAfS$4pgymd%xBkqet|kFiV1>LP2!z=
zRv=6TWCTD!YGdJE4In@3Fm~b^jvydko&J76H-8ekfq?YSN(c)myXl^7KzhxK<3ewL
zNVacyL?#Q`ySk?IH3qaxeHN&y1}a+!>{{B}wIKhrEl#k-H))yqJM`Rlc@p}Nri~ag
z#&3AL{*p0ngqqkcL!Uybl#Q*9ujP})d!qn8^J1#`t~cbgcG#jU#?r_Sib{uqu@bQH
z#Kd8UL0;d&g!h|#V001W&C;b%#1%`4?5@#9MFs|$&t8?pC%^GXN0PFwAvIoFT8Cu}
zhHTA^6KcM@eog*}hI}18_+b29I5UDTXaD5eoVKMR7lC28YB-mC!~TGiJfKFNP;5`e
zVQ*sWFo*YG%3Svd!b<jicl1{J)RbaQ;@9`OUD9l>Cl5$LBk9rpZer5?Ya@yACsNg`
z+am95+5KDiIRM4aHfGjI>=hy#P%qwYQ{bC%U0fj!Ife}Pg!1cy!Tr!wBDc@S%?odD
zGX}C4_pczu*Di6x?l00M*T9BMe6!bSCr!oM+X8?fkabk!7azd@b*+~+C@KtOzx_L%
zjk{n|s_p#g&aPERZi;_cLyee+7&`K9sGMDpcAl{ayLy>P&0O$q;361omuy<Vf(cZh
zZm1V_lG`gWm}Dc5)~^->go?=u?8GZiLfFo<^iEoJPZLSj3`I?5s*yj@xUhu+fG^#-
zLH02Vz18jF+?>F#4#}97QRpFFHu*;6Rmic?w_}Q0seAJWo^diOEwQ*8O|{HP$bw&p
zgI?!~X*Xb6lSO_7{jGn$pRNT`SINcvYb?ZJ98PFs-Ema236(PXdTwO?@1~$vt5+4v
zt%U?umoC0VAVfs?(t^J{9sh@@H0ocQaXHdZ9GH)h0mfeNpqa{C_UC`>8H7IYG7q8j
zlU4qAPoW?_my7hxrP^wXeF1Z_y2I1Rj_=#kM0P`g*i_HT2-G4gE4$+br(o8W!NI`X
ztg^!ROm8Xs^)LE&3v1N<KV52AzAX*3gPG8(NVpIfr=*v!!VT&#%95{G7o%1`ZWaV`
zvNsf(%us;ZFv-Q=U0m&v60O)#a46n*MwhBdqP=73caGW&6e){-F4Fqr=(Ojltc<b~
zkeK*HU!c2eN_*(YEd17!#X(gWBNd9>^p2;prTN~N+H!OIf&_f-N_agtBI4lNStbfX
zzS-*cC8*YFrkx?od8BHzTtZx_Gf7bV#yfFTGS3#+z!#g<CuS|8?Wu{ZMvEWNNeZWF
zp(U;)@`n#fz{MhqzU!`m)T)o|%ig9~B9=Ui-ESRyL~8HdJNxnT1qj{HLZppY)0skd
zDXR`_aB|Pu$<EuCT#dOy_9@;Oql<GuUWpfb(NL2Lbnpr8!<penXr4v^RBGcvMBLEa
z3CCS#C!|zzb$=3<D?=-`7QNgHax^XrAfKdKo#k<6+L5YmVG`QM-1G23xPYwFKz|Q(
z$#ri$+}muu!PN_-*+&|+fv^c@vb8XpX5qk@-|8cLZjHY1y+;^y<$%Jw_F^0MF3Ukf
zJd~F+fXlV2{(-f>w}g}Uaw=h{)>c4|`Jz!?e8|0_1@aYIZ*XLxyykwCV_vmh`i-Q8
z)f#Ha{xq18u!^)Hp}EV~yM@Kvub$A*?j3-b$I}5m>%#q_AP(s5Rltj9SFwsfm%`i|
zM#iP?oLV$7@BTh^WG*kX>`KoqFgF;@VDctWvC$@)8q#B_e!t{saF;REL)f^D{DLEs
z(Viz(y=lhggPwsCtUHmO8+>G#SMd?evt0X=1LMpcDoF2n_ir2p-w|}XeWEit9AWof
z<K#;4;K+umHbzK?EH|KSrh#wkiRO;2Gjm9eBxD!6gVitnondjXsb-3mUG!&*Kk1tb
zP3dUUqf=;gb%rhHD?;d<`~|U^DAk3rREITGux!rKQgH34BVKBX>5f|8vf|WOY)u|M
zu&WfO!0{d}h@oGS1%0+;`&ubfEbRrXxW_*lKLePVG2*;=qbO;=Ud$TZs%5p@p$JXf
zIa|r>nuegpeAypdyMtQ2xn9Bbil$eUdCGioLaBBUi_OMy(I;88lX|;e@I<iQ;>gL$
z<0tgI>m^Vn5Zux>>QM1rjlr6eR&rQkx~a0A-pO`N70c)91hCRZi#BMvKSBc!w;Jea
zw%@WWmC*7haQRt6v(6bYaZp6`B6hqnh+!hlK65P-dVS9%dT&j`^9m*=l6R2hzKtr8
z;vh9<u70PUln1rRXmS=%V{+;NpqCwckO|(olGJEX(M4^^<CRE>U2`?D9`MG%z!;CV
znU!9C=i*#Elr;;s>RpQUw*bUFn)#61>^_Od+<Nw3Yo)fcXIr)%B0QQY2vto)hzX|E
zkqwDn@^k^%KhuqGHJMDh9X_X%_}$Rao8)I=NgVw8J?XK$MqCO<s<jr5)lu(U0+->1
zhjEQ>s8+1fZr6nvZSomniO?cfHs8odnTLbbb}K3sDsZ|h9%rn{R$$VjAjsUJv53B6
zv8tV(I$;O~X)80tC@@~I&3a29ZVVoa?UJ^*)fD3<WMMe!v@`&3(0jQaW0{MDW-|L4
zbjglh^b#u&$NhE}Xo;I=rFby_@&p!R@VMrBb+&?_h8IZ!Jr+A}jxrYFxQIXS7X3Dp
zxACRnWFBNDUH$G@9dB3}Z%_@X=75O4^cOZ&8bPJ@7zm1({jrX=4r$M0<-zYIu-$YC
z0HV=c@hKL&8Bvw(YS123ZMnmRu$;k74X24+Ai|hugP;!v(b$+f;N+Rb0EaHH5pia=
zWqUvq*oZ|IRaOS?_uS8bm56bD9_8+Uq<>m4Ck$h9Q~PlBC_%vRC<}0@NJy|2>p83E
zsdTr4uwH8r+UT^kcYlJ3a+PW8SRDifHbAFO-Uc;PR)QD9(*#fq3DvH}L9vYgiy~;3
zRvd%2K;*3kLsdSy*NRJ(S~c-A9XBLb5sGN**9qJs@BkM;lMSFYFI-||#QbyR_&u}P
z>DkSGKYaAoz3VxxUV*+<kgUjvA@Ci$aHECLU)P8rPnehquVn$xdTg=}$jVi7oXa&^
za%8usi*~^m5hocrdUq$hmTWy!twN^0bQ#b~vz9wItO;mH#bUS%`+_b9FDe!!klcu~
zNsvKW$Tpq>B~yXj)}~=NF3U%3d!7W6XxP_=v6G6GE0932q0p$wc4wZA7%RxM_mDuI
zI!Co50i#`!EW)S?0B+!S+Ot?wsT-Gu=WF73Bv%7=6$;{GWFo_(P{4>|HCy94FQ_ZF
zS_oudjm3<OA-+AqWI~}R)SAhYK*7;n?`VTG+3-RyzxwC5wX})$f<gralXbC-gmmrI
zvfV)*PG!Vm8obPOZ&(ycoQ82kvck=YS$PHgvT`$;QuQ+I>v4WVIru{+y*IJG2tx`B
zkBmBlbj2-XX?Gd|J5s82t3L-oZws3Sx>($a`c*y-$r&P}qSH2&WRxe3xV-+b8VW1z
zSIf5NC^wipj4n-vva>9eZ1R%+zGixoE^tKCwD)$Z#y<cPb|nq&d_5zmn^{c=ZuLP=
zI_uIOn6(#dU)|+cb2=<=SG64$XU1db%n-J_L?c7f!IN!g#c%!<=Ih^h;`t)1Mq<(h
z+4}&WSS+?gpnjCG+ULl3x`9%NB~o<4f(k$h3m+pBp!jRqj&1`2Giw-Ph1;wa#V_?^
zG)b+CX1}V)vTL&EyBF0_$0M$wF*29x$Q-XIP)^9#@Efoy=kxb^$^SsNqtwO={16W$
z%M#0Vh{Ybx;lM9zb@4wu{sNy<i=*_x9pz+oxZX+=U&U{P<}eAh=43w8A`R2Q+XTfU
zHUaomFch!q)sK<Lin!daPwjHH3{~%-w8N4MHkMRiI<#&!;{h@mx|VM+0FY0mi2p4P
zidMRTVawJ42!dRbFH`X}Zd3)ZN*Nf-*H;=g2={FY*}Hl$jkj7LR>#xCk!V#-{h|EY
z&1)~)^+jL^XSUI<tYg}{BlNW?2l=~H>;lt}(d%`>u*FC~gX<%T`yZl1;YGmaPUFB$
z)NCyp)Z%QeNp<bA2Q5x#hMGt<@xn}p2BtQ1b!d_IsGx0PUvE*^v@BCAO+?CX@QDi_
zU}86@B>UPoxi0QumG(ExH3j0cz;Cm^)HP`%<$NnUew|bKESFe<GFz`8<++e5)Y|>j
z=5t5r!-VJ0?;5Yh13$E|+-G?lm=MQ*u-$^VwCq*yG=k7%HC*eu=0_XLKzPcs)<4${
ztIU9Gt2Zi0bFxC4JPFV?KWStBj5tN#<GlC#kmYK_Z~9kspq{;lr>7Lfj2|d?&}+U(
zq$J0d%i$mJVW8zKnX?74iT7Hg9G+Do<34H?8Tr<YlQo>xL_OSI(Q>p}iH|!T7xnws
zn=P}GY070Iv(UZUb_tHZ0Q4zskZwKshUi=-6~%%HdsgdxHK*q9cnf+}let=bIM=fC
zqAkzL1pDhzP@G=ahq+lq;J*s;jpg-*0a_u--<CqgSDnRu2ke3W!P?*9(zJnA+kpG^
z7S?-Y6d5-7H=Oqnr-z4!n#Q-YMUsEmmk;~nRJK){EKo2H`Qk~$cjV)GO`NtwSM1-<
zBfc_0e;P&>6fYAJ!1-686#lPZ(f5rRcJ^PZA}$H!f4_-z|DP{{uM<{93V*F2|B4t6
z4i)<6Vw`f&MS|$Ri_dm=|Mw8e{}rO60{-`o^J1b){~6+Sf<yfG-k;aHFTVfvTEd(C
zA@;vJl|{)Cl;Zwpa`kEoCzmMtAMj6Nn4PeK`RlSG$^W^DkG(<uzt;OaA{v$_H}EVn
zPbrvRnL4^c_IDaliQhhNf9JDzVp`KXdJgFoM8kVj`@QwmT$1sX)^MYxNb#FVOl3~Q
z{gAHs?`~pX*z)F`jUv=#L7c0Q<eM~jdFfZ{0>h0G38i1n=FfO|-nRajx(mVX@7aFB
zV;`?{{FEY}ul{O-_hz?^*~$%G#5La6NiVxRygu|YjlTg`$;=@Ei>_}&L8^ENOlMGc
ze9cOH#!Wmt<3q0qa50>rVSu9#OntefNP=ZfcaT~a)rN2?7cEf#sGOZI{9Or>Mux`0
zBL{Q)#)DmGa_dVhC@b!jZlv_t3vs?7(y}F7zTw`dk01w7xp9?=@l`}sygb>+$H2|L
z;i`=p>v=4oq=p_)GOh1+C|4|&AocM`1p`F4-~Xj&EI}8GGncL7!;36QvPXocZ@G4F
zy4jX63Y$xBR7R5eMJm=arKGQZm(Wo4>*P3gxQ*45Ba${6lNVjy#xVLW`|bOkY6Uxx
zUlKIqXTwktlHx8?d>&yDgQfQJ5|V4jlDN74W~##RVkhq8)?<Q$Fe7hjR7(Qzu4YRl
z>SQs{x;p-gvBYJ#wf&+~8Vb^k!#E>FJeoarv6Lo5(><nhLw3(<iF=ey!BTBhEY@Z%
z(;)Rak!<WO&r8bR`2__#>*G(BrQ<&aM{hMkN<l8r(?uM|fhnL|990w1f@GQo4+xhu
z0sL++91Y7$K}@#l@LwV^7SF-(efS;yaC-?j#KpH$T4fuEr;^h*u?|JT#Na2B>f>u>
z!R{T_^?-mK!0U4%_L1}oQ#KrPUAqj8I$_lJPKmI)Xu=*&jD$4gxt6D7Y7(=&v*Hz&
z46XyQAsNps+BY4isVHR7e+j{lL#H5*%BVk}?m+gVPP0;IwIgexX{Fr1HHO6~eA0>F
z<MHy=kQ!!G3F?;dP>1jpY?Hpv^KwSF4y{5fzHN$f=*w9G6wW`wblaara>i`V*Qm5b
zF3fQXWEWsi*O?A1g5ndE^Gf_kc<uT-@4E<xcuP$JF|D@;o2~tZQ>(M1UZ$9EqHF5w
z0~;F~6K|buS>5u4o8P}I)&?;mu<CdOuole{k-SX%3^#QYsKYmtsfv}ey<NFEFdK6$
z`psoa)=3Zf<*BDQgG!Fqf<Bt3FpDrZRUuR*y`%cdR{c2e(xFlHeZj<AJ&I%84I&I2
zucBbqW`0#`BVK!@-X@p`j7aL9S~b#MhDfq)7#u<%n1w$BF`NS|Hy~mg|8Vr{8)m#T
zFkK@knvgR%=0fxhdZ_`iKxtX7pT&a_U6Kn$zog7nn*+G{nxigexdnPwROQZ~%b%N>
z*e#h#lG4>5Bx1@6xD3+>J)?7uPd1^{1!VLNWa?j6!bcK19H;3~PQooCY78!h?HcwD
z)o7?=Ut%FPQumMOdGseM@GoCnFML-R@*oMtp<Con_9V8P(y7gy=cUPD!=!S|K#+ON
z8k&=JYisRH6#AUuUTggW?WN@BY9p(gr~;bTtHt1`mIc-)4Pk?xJBD}6XMx-oyLVqv
zWl4SjS#sqimx6d?>ZFbPq4B!h@DX16@8wCSj}7zYge88{1w-QndIpbQ-)HH&J9M(s
zP<XXuH?||q#~$r*;~w=XzAK;aNFiOD8;t=yfP9;d4@-IG3}+ioXza~k!O(I8;{po|
z-VY|+D_!Us8SStKzl^3u0j;mf23qKbCt0Rd`MMiWyTSq-#wH(n`o2G{m<E(mYd>g7
zFwCbnnECfiuJ}!`7$Wujo6E0s--gt{8jQayh#~kS-FxvBo}{Gj));;8UB7|6kM?|j
zr2Cuf!9<^(k1l8I=2h8icZg5Gidx|2_TG8V@gX2W>UjWqsL2!~jC8CnfdYLy6VSZh
zC8?7qN|e(@>52pNQ?8Mg8#ht()R@GGo~Z;hGvOR@@*Lih#is_Jl1)@I3J!x#!&e7B
zlJw`&A1))xeJ=p{Y4y|fQtpXod=REytb6-uO2>@3NO~KXz@9qgIfGPQOVDCz8<K-M
zqM=#Xc!uKUl`nm`58XU3dq}HpRx5tsFL07KtJN%HT1LA;Y3j2}sGVw+Ne)V6Pn>A8
zaV4fS5EYEqo=;=mm`=u-adLm7OZOhh3u)f%r*^b@%%j&<n(cnH0qH~CZ#R~Rou#uJ
z>K+(`bl%QOGGhYJ^NWUz<cFso!ojce(kMPHOu*{4W4x%eiG88YM!iwH>rd?5`4PW@
z&6dN1&eV-e`O4Q~3uyqn+g3h<ff|33Ew%l@>&B-YV>M*-BiM3zJ;ZajKS+`NU9uvf
zdwi2e$~uo60dlqXWQEd=U^KERO=Go;_fNN0)Mh)$Oi{i$e}cLqj~{Ar%s{KVGm7iP
zd(}0<%Fo}S0an^$w)yN(U2IfzILn|cT-3<7>Mg2eZqNqQuCd`g;V8$RJz$QjVZFAJ
zq#B`_dO44~?Dcs<5<OMK4mBxCL*E~ChT=Vo&^{x6<GsA(^_gLVS83LE*9#-AOFFcl
z35TL%cWDR~JHiDXuXwKKBHC<48%0h0#4&)!{d$~Lo-Zb8qm8$qPtUun&jLTJ$PbWK
zV_}o5XIv&&hh6W#-jpHAd3EB%p^_&z3;O)7+Ek0kqh34hjh{7Eg6evtgetb5?j@aA
z`G69>4fo=?GC%TSp4cI3q(QyFq@76asTUz7?-}XLiQ7duQNpMxCB8@Sp<t$m^3Ri4
zPi?wG&Rk*tl2*jpJ_$Ee64nPO%mrc9gSX5}uJmi@L=5o}zF6BUV&xE8%WaB7+7C$a
z#M!rEg0`R_ci%l3qpKd5E<@xMj|}6hTrtQY4G={7qSTSF?7Dzk|0eZ0LJA?o`0#)>
z6mL5q68Mre{N^=up{%=U!-O{?__3-&s(v3kJv<bFf0w3KGTId(9`pSVwc#$Gmf#y-
zDt@WD81;AZcEhP3e><0|A14~EF#bcYgl}1YsC7f}&(L=bu@Hx2W~Y|Kzbuar?|V47
zQ`;@q%!%wj&_=s=!uuZ@i<KrT`411V<o_Qq+OZ9h{XYyxQjq;Wz@;2oCGigtN<<%n
zo_?DB-0dLg{0G%wM-CYO4@2RSycGOr3H|>}Hs)FW2Ly?+|G#Gx<o*X3%kG*3nHx1}
zqW=c~a|8z8eb~hl#t!Tp900{K89~H3O$`k}!NI}G-(Va_tt!7lJ6lj`{rJrn`wz$w
zJQkF2J#8{^adGVr$AiB;-=l_LGaC1-Hd@wtK3)`pv+(jqdPPhsEe=9kc=<KCNSbm-
z7xMoP=k+4J+7Zd5GrK+A6d{*(dfdaBPG+KnFs8u=LLmU+h=uemEvb@NdjpuuOUaiR
z)^Jr972|$dLtd_MU40*w{4$I7lhQ!fl1gg$$%nTK9&UepJhA5IQ}UtY@II`%)*3+4
znifNUAC}3Wjiy`<g^lDd;2iEohcoTs65k7?e{cBQr#ULr8A~Kms=$JRf*vo|7SQj{
zala>)d?M~qUjZAaQgsk=%s>Wot+q;7dLto6OR?e2ETN^U4SJ6%HtIQcnBLUKyNfSh
z=Jkz3UDO}x!LTch7_7v(#@C#YPONBhl~?$!y#f_<+VW42SLn;|)xFV5|MvC%mQ>a2
zWHvMJHX{?0&?kq>U@`xLSU!WpvDhvm;ZkHT)GK}J@%~;U7#2O~Mi0W`6Ka@W>JRhF
z!DG>bWP^up$6(adKp5K62|j<7F-YNndqqMDsFbo?URF1VUBW=4)WKYIXEfwb$`n`Y
zVvSnlU?{M3ruH_5dI?jiaioM4+3c{3=zt?{kB~RE171g-`^3Afy%FI8k?UBSiB7$s
zX_>N(9s|FaQ~vEW@qkO8o;Jnb{gqnHcK3f&*4tf?<Z^gLCem4oe*Yz(Z|CTA+P)_q
z9la1FtM=TX?Cr2#QYKGjhu|+6?(BA>moQryQrCQpfRCp(q2Wh>8L4gzMzq#5bf&=(
zbRzW43S<v2wXjt*&eS+i1UIz!>olv-e{_j_IF#rL!}+hgi=n7*kfGX4jl?P$ITXke
zST>}-<8hdF$4UO%i-oc8xk8zHbP^0iVq)gEjU<p84Md>NCiVlpd^q)D=%%Jp#Hppq
zBMc|K=&03eKy+`9a!Vsj9D6K3%+P4E;S`7krUgRs)BM<MK{zZ8%;@!_SOg7<`IX)1
zoho$2+MVc?hOZfqQ5n^LBV%AdeIQ+KueP&Aa0&PJ@TJ`mKHMcBvWRjIjuX&+$%up2
zkz6S#O@J&rsOkT6h}~;V8I$tPx&NHaPjgKB{CG)s$NzA#03J#QDURxsEo4asGq!!o
zXSb;~Dx--2hwTEakB`Niw*CXfknnes@r6piznMZhbK*B>(ij>V7UB`vZgwoUIa8IX
zl#?Csr%tBqjgf~V%|~elg@y`^fl+u<=bDIYy#MfL$O`EhCFU6iSKR@LM8VlN8DkN@
zW$?Pf95Q3BdvY>UEJB;?Tr`@gLsxIKAZ=T!f=p8!<GcAonBqF<*kB%y(pOd(@6gph
zF%gUD3h4I!Gxzwdqk|Q&xcc?MymBU2P*j@7w9eiq0AX%$FTWbheD?QDV;z(B5Mgq$
z*9Zf+zWJai+F?!Y>!`KbXX-`15mNLzNj`D@`HBRi*<=+C1_>+95nkfk+XKceRFjAd
zS<g=L9m4Fw8N#~4<;(3Dqsvf3)?-|Z%*U`{8x{oy3=-qFh}g5#)GH#dSF|9Ugc$v}
zTYG!n2Q`3mogK{@-+5Ct)YY7!(wMZO>`fc9BcLacut=E^SX$5TD4ouTFh@2ua8bo!
z|HiNdjv28-BARcTla0l46sNAb9m()HOV>&j+%Qm<DuIY3T&@Bs3iU;Irpw=+Co@Aw
z5-^B}9^hSMaEK3Ivc)h}mr6M{4ObJ_;WaXWJfxi5zVMu`CjqDLJ?SvuamXGaz4c4X
z=9zyZs5ij-sDxK&&ioo|m>>4#nuOhEm?<keOaPqEl+CUdX&aLW%Ayz4#|?R`mnMPm
zbvg8TG$T*Y7JCSLrunBR@JV7W>kave0pyf$$k5FlI{*xP#$ry%$|5N^31$d*?^^W4
z-fuzIOUtRw9{eoF`N|B-+S*O0Zlwjlu+0&c{B8V0rKgVsi_L{O<k2Ra_z1^9uDOFc
z!aG2&*T7CZ2NH#RjbGIuQGQ+YFzV>Uv1j}PloLU>&%vgaXc6)z05YCq7YetUDDfq;
zD4Knp!2r!TDIHvZH;zLs#Cx&gYGV$)Zd@n$#OnvGQq9L^CLs4jE4agkmXSI25qX92
zheClP?)D6A!>tFAG#nozc6m;5faCPPWDNR}n}nd-;E%i21p3XWLDA+0=viRB)`Z}C
zxry#k>2NR_{7KXH4GlpbP32%_bIKQrqvW|x+%+73fWO~S`hx3OT3S*ZorZioq42tr
zTsf%Ae&PVvSLPqA`zS3F14WtNxwYXmdTX(`+Q1vMnO$VH!iv`j^{cqHBC$i>G7$Gh
z=1{Sku6SB%imX2N`zK5Z6}VHD#~N!ySSwg>`PTrdalg+QZ0&rh?+>QeB~q!6b!Onl
zXd^a~RnsW9_d?-P)z+Y<G`EJHWi^6d@vOQpO?s~?G8r4%dh>c;NaY`V;QCgct<rSV
zb6>T8kh`@L)G<Q$JY5PWFf%fD599?#GXGl*N78F7Y)3t2fjyB(JwK<iqc!S(<~bfs
zenCVO{ag-%)@-kyK4L*vV}B&-2CLcT7tJr}eB^?vKUFi<5OKO9>^L2b|AxEzW{h-*
zkP#5}CZuj>jC8ptW-xsM3c00~1n!^GY~*k$DoD>`c<TsZ4u~IF1tZSOyYha4wGKrT
zI+>zPg1ceT9}=q-WBdhamP~!wn<1V^O9f@tp{UW5Jb_{4us;mcbM0`4X$gBAjXatK
zEdq1d$)g2%At_Vv`%Ch8kx!aQKb^?(g6z>fAARH(3=jqJ4Pd8;fu@)0z;F?%$Ch7q
zck)2tKZi9PoEOcjrIJE8SVF@GbNbp#r!iq>YZ=v=zH!2z%VSL69J%vtYp#YYd!I3~
z_mPdCtwQT$ECTeVoKqP*2{5QrV+Epd`IGytCBfbbQ6xf(O=haYOA=Qhb6okEpqsD~
z2rqCDIEgIbw$EKEjON@;ZSYV-v=*HN1XM&D^wRI>0{-$(zaUnSxG^HUx*sN(^3S5G
zw{(pbS3aGN28ce|zV`TCR(iCE9%Ju)aN8;i0^{>iPi`?gG{fcG%<5h#k?|*Cwep<_
zsA?<fXjpSr;Zkh4=!sALflpcG2!R`>o_s$*!d}lRTsJgQW;Q%JnRBR;Gr#(7U(Mvu
zMDQ_{MF%nXP1TER|0X@&|F)>-y>F7IeKDC3v=dR~9z^_i+3k{PdEg>lDtt>Rx=U|h
zk4eb>wqJm#Cb}<}HXd%PGUL)t$NB=?+aLET%}(HJ1%8n49*Y-d7$Hnt&nP1PvtR-k
z?L;f|t|mm7b;I}asx?UAiyMSrsn`5QPl<stl@CIWo*gwF%x#WJfbsEB+#ns|W6RMn
z_08mO;@Zy`tX`K9Sbcov`rPkDv-R116kxbuz|Kz@1skRvlhu6s_~mI9nB;k!-mn$^
z!O%P2cEV7mi32<RFWsZ_*)eH-+WE}<<ulb>|6}}!|NIALgG>J-{1)OzD8&B<aJ|{(
z|Bo-UTSww<Pl($(-<G8F+9s5Eu0}_!Zq+KfMuTnhgK|FI$*)d)xA8Sf`z<TEc(7(d
zNT3}q)qU<KN%OLE)NFJMEIwv;FGzgO01z5pEJ`Wvnm(B}y?vhJ4S#UK&c2I0xE%^V
zXl_i`TSD)buZxVn@$%x|>Q7ozT+=z)omh25Cw-Mzp5`V=uk<A?l71qo6rnNaCgtTP
z8ygR)<zxRi5@ay?`eA@E`DcRYr+3M#`|93wj+p!oZmdgmLQRg*GUF1AJKs{Q%^cnN
zr2<6Vnf;J`)YZ6Jb-N;Ce9L)Bq~1fZ@gs-cq85(a>P8lv{bY(S<>uwpy?4%Q?MuD4
zXM16PNoQy6iap|Dv^Dv`tIQx~>b|$Aq}Rz%(_G5X#AOemp6RAyoTv{}8`-&@kfQ^9
zn>S9lnr|iGX5sW2xQ@fkTZia+p(FCf#~sWlhH)>tcZeEvZTgbZTUi9X&Rq<9vH_jb
z=UK|7O6WeJSUppy0B*%g_+7fa!J0Ci#WJFDi5JFP0bZ2V7BM#2X4!*6eH4|4rwIl6
z(N<`#nC42G&Sa1m_0PHoDePd$%eEtv{P2Trtvr@bM;AVqEqT?^cD|3<;2-4lpcJ#2
z2AF3W&L7fyI?L=R`0dU^n_LDp3U%<Z+M?R+d&<}?@bw$@d-vfo*XJI6H*a#*qHzyU
ztBvT*;U^C}*Z1ws7SXkPDa1IU6<RNtE>q|J=we>>XIH!sx|)-R-Ql`CqJ~$iG_%@0
z5$*}Sd|J9_F)WtvhNrWb(Vm_X?z?R)2Ip>M5Gj)C8s*E=7`$4nx7dIO2cxy-y{IDf
z4vU1;q0~iu7gGuX=+NB0o+rU)`Fu{2po5F-HH2FiUgY9iO!_ml2S?nqP8ULso5H}y
zW0x!KhZ5#2TeV&5PoWM}`d*Ka@3=;t=%~rL27BOJwSeVPu^EROwpaCqgi8i*N=zii
z#D+a7g!*zh!!xaf`oqyU9^<#}9mwpuYoybX0<R~-8iS0J^V)@$JAXP9(CSvMm1&#@
zb9`h++k~34NgdO?<^Jf@v4^L~z0(!TZK!k>i?F^ap!@hrlj<$W_0ay&P-JTo&sjiq
zUx5Y*Yi#_%aTog{pRdgK&W-oUF58erCAPegmiyF2_V&0eH*5j3k)~G5oE1e*e_)$^
zUu&+u^qpP8D*kA(*><N59mb=pOv982Y~j>dfYPQApQYvOkPx8hrDL-Iux}ugyz{nW
zzic0v^G-Qq`8b1lDHX1F6#giI>=|njO@L2M;^-kpA&1tC<gytFAS6*G^N1#Qjtb{d
ze^tL3nuxB)U3u8u!X&?i+>2c)+#K6o8=fsbO>yHel+)4HdgR&r-2K6cae*JwY0yaT
zk@`##eTM`N2?mEk*mrex-909CKVEJ*qM)Fx^O<;LF|Ut8D+<<?h}qNnULpX1b48Uc
zhhv*|+ViYcc4MT1+1m%-Xf4;W){|fwTTGA!D!!@G0%{yjnAgQVBDF&-l!ERO)|P_u
zhI5!CjS#GRHxdTj+uJesC}VgA2MO$(TH9gVi=CmMboOSGaQhT(fz=7?I;>5#A_g|L
zx$?qSsg2ExiDLlZ+sjmIelm9OHI<TugY}}%c8e4$`_bg4pzg=bQ)`Nq`l_g=C=Atw
zZUsH%@@gJPb6n+GZ5OG`>OvsGy|xb~TVB-31I4Tl{*X@2=pR#|;%}BD8Gx1g9U<_X
zy&;a3MI#}j*VnzVqrDi5r`mGu?7D(r?s&c-L9h!LzUL+Rs`37@^%5EU)^w$+FG_Qi
zku@JI+S$?*EA+n>UP9yarl~t?yx$18cS4kD#_{FqE@H38eCrwxOr3Gq%YhGM?91I9
z4LN<S%vK&~xEV_1R7ZVHZy8C}yUhXuu5?{-$9p!Dc@b{#UT%-+8S1U_uWiW|HF3Bq
z4EW^APwy-*bcs}{{j4+#)>N)8>ZIl`-G(n4+CS=hC&IP*2|*;5XUf01zCKe_J(bR7
zns!gF*Va0>9>{TA@IMN!-$i<bKhFAu9Xi0Q(HZz!r93>@Pbr?U)F=#7rBmR(=#3pX
z+fWwn#g0tHqy)ZE*^9hbV+=<AbTIHFH82!{hPyDjgQOKwvG?roc+d3gD)XLQJGZ@f
zd3+>rv}{K|IIKOt^^sWvnj~H}X5nh^RyIuJ)D|%KpPU|^=^X_TSLan?KZYY%%RD^&
ze9w(}43~Nl(c&Vn*DYR~yomI04XvewQjPNE8>yD2f`3}FDWUOS|1DsG+DVtzH7Uih
zk37hgQiHKrZuQd+)Jt?9g;r_L{WW!XKh^8ynWed2Dt=0LFFdxE#g@aycPU_t+eYvk
zGeF);Z+$WgSC`@GvF<CYAZ}zjxo$T}XCxW*P%R2>w(R_3r}wBMRgUBOcp2m`_bH<N
zmnf~;$b#$!Uzpa{u{oyNvo-tf?A?=)d(W6}`|E;tgtho|)jA-XnIae5kUJcP(6cqJ
z>RF3^saUG=p0KWsjPL~9Uz!P^b~^I76HA7ADn03f+7rM2`D)U0Ckd(0T0m|iwo+?C
zN<W%twvf+?>&X9X)^)U_Dwu^7U^lA{D>A1S`VQ1R<86kvOzG-*7Pn+JP!P&Iz-=<J
zyQ~Aa^-{~BD7RMA>;CLV)4tY-Rk>X<oLG+$%pNTDqr4-i8lc&;N1NpPN(M7dO>IzR
zeEy5->ni%iREWnh!Y-4!O!L%>R!WV>g@vjww1MV~17vS)U0QuRad*H}c#?+^^YyKq
z`VvyTSQg-ZWNzB_4UJgNm>&a^ZGT71vPo=QZ>`qh)I=IvK{S;!_a}Q5KcZuvE=R@L
z+49xb%|t6mpV*(&anSW@5B=lcPZtO1d{3U|au&>mC-LmhWpZbZQBX%>MZO_erjX)}
zr7__L2>H>x#17a7nqtb{1Ph=1@#mr<00({0V6gGd0Xm=8&Z6S4EeQKF7foLhZ5^2e
zv4&eeXD*O4sY$KrMZeNU2QjLeGYa8mIT3=DEb*&0;8Z*)2j&6cf8>(@37KGClm;F%
zZ`P=))THBT_|Rr~V@*t+@2#lz?<uSMW_~nPsvJ_AI7s`rbeJ*Y+#N4!VjUelQEA3J
zEfg8?0ANL(A-AJic$_#K4NtR4By5|zTQ9TV4uZ4R;hU&eH_hs3E_1jeeBQMBZEvGq
z&%Vwr$sD97(NFBNl$pK^2IKeHzpO7UIkj8vq?T54)f`-%6fRM{28}eq^`-UD?++i?
zDAH-&s=H)fUy|>Hq9{1}(c^xs^3>a4ud%6KUrI^I=pAuv?Rf}Ss9(;BYqxmgDri6x
z@$fM)Oa4He+E0xd{)PUjyUOVt<l`GuAO2~6Ke0#laGgVT8EG|CbDneNxl;c{o7)j5
zofACReQ$AUlvf7eF#jsPAZ)EtSHPIw2^Cr?cfk`FcS&mcG2AU!azTK_Lb}6@7VBHE
zWComLIYZc*1$#@G8W61B2=nT~rYU3YTPZ=>ZuG_hd@INcj|f=}L02{rO}1*JcfH_V
zkJ_Ie$99{tzrxn|x=?n9@#kyD)!=xPkiAV7=Blzwh^)3WcUH^?A1#xSV3q>j`m)+X
z*$k{QA4d4kq;$dSV!oTA-{eW?2P1JPy=T!X`WdLTv4u)5K6E`M!{E?T=mCX~)=7#`
zo!(IUquDi4*^mR~Igz$00UyTm^?rg;hIOe{Il1j)d6A2QOSWVK-I=;xByw@|d^dL?
z18*>?PD^0kw-FjJg{N`=-Cjylk$u^cAvivU)7}F0EAo27J=UanB-i@hMLBMKYM{kN
ze#cqD^DXE7>eSj8Z$v?U?x7KAYA@DfZ-4Sc^K_c^T#I$Ccehw7Ssj0v6TC9*7WD8Y
zQx}g86KJca6(pt;zQ53E4RRkW<HeXY&W%1P7;kXDt#79Qw`+eFd>tLuNauvz7t@?b
zrjA8@<r1eb<CmZklcDk!MAkFQu-`#%2AU)<lSFP;><AHB1AyGUX8T>Eo7=r$Z&o-0
z?x`Ty9cTucN~a37Q9oDeEj}Ah<ut!n?78pt8*aXiTTD=_8%|q6e7fM|u?MrPwtn7Z
zYB1kDHh{LWuQ(>X0_zOpbV_+ZtM(z%;3ic+)JTE^ZMrr1@Ftze1_i4vvmgn>PCzN}
zrg<V8*m#<Vgr_yt@>nE%-e@OT$`-JoB^|D>caoToKnRvD$xc?Tf{&!dWl6!e!(!tR
zHL~31J!L;vFLES&8QEdHH3r~du1+V|alMR8D7>E&4kD)xMeXkL*;Flv!N=4<)fF4*
ztb%!Jv*otuH~2}Msdw~2J^q#O!5(<ZbyhhZTsM;RgaapKX^*X1yyexEvpV{R55>IL
zvI&c7PB!vmhd*4jFE8Z;`8WF3caQT9KjHz0JjYNMtcE`j$rCogfCJ5Z*ZZn3NRfh-
zkO}l{X1rEisi5WDn+3v=v}WpK;MKb4g1;%xcV-6R`i`P7|9suQ<F6_&n6}lo9p`wH
zcSDUr#earD0hsy|5WaygPs6}vbbS3|CEthwl#=6gmfsm=>4J}Y7|n6hBfo|m^zs~1
z8wsSvFE<><v9vnI3Yfj%iECbk$h@-wU3$`@uXRwpJLmg~OSdlc{iUlj*B-zK<jrFD
z^8BXZX($Mex{7`kk6^u{31qbJlopKbbY;+9<;{*n%6oi3P1WUres;bHolx7XXLBaW
zAitQSzkY4hj6&H2l*}`VNssIZhC>`qckl#vfj<+g)%q{jH9@W~X7>bHxX<);GJ~xr
z*CdB-2lDB;0v<Ha{)95x=)|>(qvj=#NGwh?3t1^uXQll5%~ZR1OK#*;3t0BtBm33|
z2<G;A@p^@5Sj)DHy36X8N+ok^f)b$`!Ux|As*oT%$KL8<<a9odc;Q&f<<{CFgX~%_
z7V4Z5{2fWZ@^1JE48(4$r!7&56Oxc`cKd70cjEbrHM4rVsEDY6r~%7X(JQr_UE1bR
z*o)|L%&*Y)yKgfsV}f2mP+roe=GKwHLY}!PS}^M`MzCwN2Egsd0|s-Cj^QYesC%<;
z-3wCt>P7a#v1MdhwSFV-i<2RGPj@VnvWT^UE#SLZ?O}Cc^V-(>V{5rnut1*Jw&}~y
z{#B*awR)FVR$D`d->R>t#Y!?!YnK6Ek;ufWXSmL!v;Yj$U7`bzQ1M`wx-Ypy{Bj9R
z1adz+VbiSI55EMH2Jn&1<9=wOKFIh`+rx$Vp6hBJ!FD&>?xwswoqAcHB3-}qr_h)>
zg_oCZHe!Y}WrIZX(#ji3$BY=9rNTdWXY^Zg=gDk2uFu=@K^tK<i7A|TE0}ICcaYta
zUh6&(K-K_w4Blkx@5_12jR6jZD{MhmJbDc*f>aNN>0L2)KChV7pn_epP}sgQtH34%
zWNZ?=-`Bugsw>2okk)6S{CvY{!#hUiDWe$rXt%3tAjmmj9w*g=7v+?SZ^*xt@mPK(
zxN}*03-4FT<Ooa#nKPg(gE(wL1OKJi+27YLi1~gE2x5I-C}GBEgJ)HczuOJ>1}j>C
z;^N{`(<BQN6?-2Lyx99~O}uZgMODVG0x<8s-GYDMQuz^`hFM*Uq^o2b&mm*mfg}m+
z?TZy}yYQ8@u#|IXa;6T84J7QTuSvYtddu{dd-r|Q(iQvejMMEPcatLp>j>Au*@=+@
z`#6yO#zkMP{Syyfsjrt90q@Le=lJ-?U1m6sc^NQI+Tc?%={YpJyw*!>t@$H(PQrn`
z&>mTK=GtnGE6-LIJEr6$hR5>}z_i2!ukDR0OKn%*SnID@6co&okwY`)zfkgXOfkK@
zD4WNVeO043BHA{U3lk4lv-T#rDMqh>CMyu1>SOEJnuJ0>50I*QVdv^RQ0BUYIPIs8
zX2!@K&ZgxFkGmj>^Pw=Z@Fpi=eJ-Jkvh@Dr{706<>$%Th7x_o`J5M#qFAvhSgh6Qb
zB@E^v!MmY&d*|9}Uk+g6M)0cdLT^B>;+IxujL6va;0b@#R8wAzKIc7pQ6>m-=%0R4
zJ07JPjhu+xk^F~Rm^Hja$idWL@f*eLRggSFR_gH7TbF*7rxbQ{tbi#x<ewO<;-|U(
z1=RR|oc{PRB7~4kP3&MfFJaWZ9MQW?A)tA+Le05y3v;%|wje8`vi;l-6}boj7BoWt
zX_fQ$kVB=0kub}+&preiHFMw?kH%=MmGqLm4tcKqM<sQS0nxd-H~jUhnoK?{r>9O~
zJ$`Zp^Rks~FLvF#d0V64u$+TxX)&1Xcy7)XNd<PPjOjm*AgR}Tkb=ox_BC`t(%T;4
zLY!wol<=18SB8V_!v^^R{iuT_1?gUezf9MAb;`osW){_0pL4=fdLvCBwQXPc%e377
z!FpD)@&7duTA;RZMo;Om`(E`sY-9n%<iLS?wFAN1F-x%eGzqnFVsH}l9BQiX;;sH&
z^&e@9e8WXCfu@Hvt877)sm%jRlhNG&>j(-h+zp}~&s~4Mu7|RcN%?hQn5=t!*B15q
zApw4c>65uN_yP|*KxmY*J31?o+Hi-V8dV(_W|nnzN~m=-?)JD1H9o(K1T{`wp-=W&
ztV_3k(R=wWbj+tMycA=-bI6Gylq}bCJPJGRrty_3nN}3i<cFX-N7l@jcQ#JYDLo?Z
zi;nQM;y58({NPgh|LDBSJbACZaPXNOfzoM%Z%yY90wV3m>MAEO)184=3Ppo^Cbx0L
zzj2-74L%hzDCKiR-?anZvm*1BYVO4odSNgpb3zt7kTuou2IB90bBQovz@hD+XwU{Y
zbDfV}8gyKAS`g0{7vodg-az%|drR4fbQ)uZ@t&X@m#hP(Ch<$-i1BRs((^nYMSDu%
zTJ({96>N%B`TPEiFSl%^SVw*dO#blZ`pbF_cMq!()=Wa{q>XyyYM^KZL4@#^FYPH6
z(g3#fgqxr5>F=Dez0|kx51(*)8-qyjq+0UL1>lr(ykJmoH$?UZqiY{S`1Yy&D7EsK
zIh`*<!pyGc$$T$k=|7OIzU<4N&Pg(x&q8SNCiR%bDjv^NqUINT3pVM5V~=D-z{%6t
z3vru7?-|5(tt~R;X-M_O+(aGv^4PZO=}kvAUm19k!AtaK?i1lEp_@g8Kw44A|0O?%
zyT{dRdVBY5`wXDG^R+Clx;GnkF3mB@#oUyoy|8&+_^POV)0It%{buz2Mj0U<4$+av
zI|WMh^w%p1_pTo$nAAo!G_vfNq@)@l^NUXBiPQj#njIr~v}Ca9>S?Jz#}?~>zq;+o
z6DifT%5s-Pg^c37XIM!~UMK``-t7GT629GI%9qva0fCt1OJ4R<Ofg7)fWBa&Fif?<
zhKgiJWv{g1V>1ZIGL$mUBxAq9IbktLlP4}sM;K6?DKq4hf%l-cy;-XjhFR|!V0+oE
zJA<asFY5x`e=3I8m%n3&FEk#~qE`aS>@Ranyf4ML!sf%y|Cb>a^x@lC8F~%=pE}|@
zI*RA)vGDi54dQ>kL730~CwD0GI{!~Vv7aMU@*ky)o#xi|@2oVakjx7c=TrYPGnkQw
z^?oEK&4nJs<?}k>`Hy?<`o2ys^BaVE9LOgNRJuW0`_89wr1Kuv*cSd^x!HGQ1MxEx
zMzFRQi5T|=c`DFJk>VeD9dDP@pyuy@*HYOZ-!6I9UDRJ63ky5%lkb#})BCbduAQy|
zvi?iZjf0vTK)w&!Tm+$+Tqkys{b=`~(xCi|`+8xd+<bA&-~vC{3G<8bqj-#ocx*#f
zvJjDl+Iab0K(ZgEE%N>CrEjjDP&7K7%7m=XIEz*KJOnOh>8~iY(1Tjsa{}6&nw@Jr
zfSFg_6N3nPt6lWHYm(~?87tSMSHmE2%n($FI+Uil&;FtjE796I4Mxe+RA`}AF6d5;
zM*~5l7;sfT;@3c&BTuUJvm=S@jfT>4cy9HRv#ZXIhKD986lTO@0!fynKpFbq8E@|<
z3QAW-kj=JnIfDjyV<XM@aUt(tv1(S!T-G7p{Nb*-924xc56-2IPYW}334PbQDAu^g
zx=;p-t%AuRoO&!Kc)h~HTn}doIwueabFx2vhZpj2`ntno%UDdS3mOyY4>zXAV~@Oh
z*l}2o+-?)v3;e^rnByKnb$XO9RH6{}tJqTxKTzKYS=7la)ZLR%qBT5Ag9T2f-K97E
z_A=P%ZjP^ZyGMsxgAe*#Y!c<>B3nDa<y`EWws<&i4&BWNid&9*NO=VUetVS2_Z)0H
z7`El%QR0G``ZXsr<iPm<|MZt$uZ|sYcmo8LT&6$YxtTuy>+}>kf9gJuDO#J$Nx*HF
zAR`K#6mFqo+*cn=hB8aFsPt}_JULnYr#$Fci0$`xQgzqElAzANvsg~R8@_wESc^Ky
zo>`0olLcNB5kI91bhhrtvL?)O1~KJ4$Ro|JdkZAOtWn<pvH>?o<!TckBt|y1cHb?3
z+iWK2DU2(_)xJ;JstW_6bqm|6A{ldT%8S2k7`!GK9kbXrix=J8%A$wTRX55^6$JdT
zCTt{K<mlH^w24{w9s(=|br^P1z5Xr?|JyY+6f12+{1JFA4+|<|8vbg9cN9Ddv_VR@
z*v+kXo8RQZjsEgVEWIZKG%INch`F@KnX$t#OZ626J3Qh^J<+Z)?(is53K?0SG--6l
zVAL%?QZxK<icCnAr&l~nIS(b*Sj_`^hE@EPjM39@c*~fpc9$-kMsdWKnlZ3$C8OG1
z5h4$k3ewO2(6XIGzN$Rc{FVGl;QtVR5xIagi{mNR#M<&n306tA`aH7FzR3M$bSaeQ
z3sc0X1wz;eaC6XJrRfcf)OGW5VLVgkVI2^KePXRxZHen&pT)6oB!$;RxN%ty>a;vE
zh?(L^9I(cV0*iv$)|tnT!e@dK2!+z`b;DrS(5!_8ZXcmT;n(y|i*g_n{1$kzSzs_&
zM;;zmsj1+BYFC>Wd=Rqq(~h>Yo%=SvQV;Dm{wUlj=fE2*7_yGvw0)PJrtZ9o)Y1qk
ze>g<Q;SUN|Z1^;~L*M+vZ-J_$z-bcCj^Y4zy_>Q^?ALr#Pag}wTsDoG3(BS|@TMhV
zz_yO$0l*oB&z3S^aL$msM2+EA=lrX5r4&38L9F>tK+Nfu!NmIY)#e9m->GM=DS<Dw
zcP}i@Eua!_W7*}e?p+ZEgRziZT&Zlnrm+$IU3s+7w7JGPD5+KZM}~G9-G~9{0`8-!
z^+-U9F9jDI2Uvkousx=yW6#w}ECV|t_LD9P+4sR85Y}6Yxn6n|n?9<*0kL3crW*37
ziNUh4Q$58rQtjcQXhT#|jm#C_+1<baP%CYRFVKGclYoxpW~)@h8H1fKFwbH9W4r1+
zU8v<^;5rRh(tzRB(#Uq_Fob<cCRVS6eXp4r95a%=<YH6*?|K;1$G|3-0=JejCb*Wf
z9q-p4@SHsQWXTeW@NiCWPAH369~nz+U*Nu8)+SMrqJz{W(?*9OP4(Y1<mpfN?2HBM
z%%&CL%~U`N%``u1pJmp9BrMUSIQ$jNEBkrd_}W5{ZU<JWl{Do^l^~kU)sap@)%wXK
z0m0*urdb;&gHP1Z-Q4Y9T(;oeV)&zxroYkG1><r$UBnplLFE~}G##@T&2_WNTgENn
zpvVoF6*{o8RLs`PQ?B*|5H~F#Q2&5iG?IZMH+T-wG8i5m^_>`wDXQ6v=}z<rHL56^
zb+O8+neaW!O7%Q`Wg?c}^UTQKy*RtJp>gp6!KwR$K>afjK;y=GEBrKQt<m2fP^C^2
zX<P;X0KbZO$n^(6!qwRIIvF?1L3>kc$>SB6=b8t_=OCdcWKJPdL6v?pdUd2xrbhIn
z9B_9$^z3uAq<*N-3(dnHt>Zt#Z6*nSIx7Kt(yY0^?bS4Y8*(}eb&%l<J2e&@D|5E|
zMd+Pzm*POMGd_mAJf9I9Fci{bU5-7dEIT9R|M$dppd}I7oULg}s8@G$*;Aj2?6A2n
z&rWK2jjN}35+f!ihF)!0JvSLjm6BuLD;5WL6zwN~Sxd`vnS;G&Q?dhbbbXXyQ83O_
zSh)qE_;NKcYi-DIYcb`@U~f#cAuvsohD8xElo?Sl%lzyqo0W@wHQYaXbx>EkE702O
zXqvCG6cvs(OU0~FrX!ul!H}RO$uTG`4PIk5b?-P#yEJP}G4-%>jSvpE1amN9uBMEt
z4bAZ@7=79}WWpm4=oVeW&&#jyP6qA|E7zOj@CGOh^6JaGb9tbK8Y#5u4u1;dLuEK~
zf3fg&!=F~R@9pkO@^6!4@kKP>enDK0#xNf^VN8P^(hU-<iuEI=S58F~Vn#+@;u;KK
zlkKqM8+mftsW8(PH`Di2r{=Oeae^QImYnr;1=^uW5p+#9Rt<(z`$(6Hez3P9+)z>F
zH)YFZ7#mxXoD0|eUJ(=ge9^)zqDlUH!b>Ly%pXG+X=cMBYkm;yYALdt3~QktWYm)u
zW$@o14*cjSqql=o`>tn%1+SS$Qs6VAK2KE<D*9p4()al5{7eIbP!k_e$~g&iwBxX%
zsfDDmaUD#=)Ihd>1bbL_57&B&?CV}5Wv8JEF}0pDaJXh0Rv5%bFFO>zI!Bsrr5&tg
zP|?U$B*3k!21p{23tK#8W0KAmdWUvsi0+QGd(%6_4`&rK+lX}-6At<RIMasf%g`{|
z6~a^=!HT#=3BG>qp{_XBfYBwaBZ~0G+Tv)&*~tOydHz4v-YP22uIthc?iQeM2qCz;
zOV9*&x5C{mxVt8}yCgV8;jY2m-Q8XPdfxYY`akIIvp%bn8sol4?b>_IwdTCGoiCtZ
z5)tD0)YS278yKF6`XuOd+e*J;7W9s5u51EB_F2IUMSvhvZ0PYB8vRDBh{W{L##o0|
zN;Mm9g5QYOBw-4+v{N6pE}EFGDES~8vLu1UmCG5m*&rS(B7{`>*NLHH<l@F-R>Kq+
zyYuyMycYO8rG}*HdVqpbdKm-I*g8sLmC*PiJ7uBq2@`$2En3RCS(Hh`@F)P$<CZSm
zf?VX8IE*HSQ~iE480y%7;%>&<<fILGuEx`atONQOO#Jm%XAIBH9%*srVBj(W*r;^c
zvb@obNw*}4a7WfSl)diC_$Ixfn&2JQx-tYQE{N}yjWEmoNo;NpfHE;7%qg->kS}(5
z)|2AyfX4CpEhRUYm;GZ(CZEbbn(m95v}1fRxVGzP@^oVfgb@4eIQV#n9L;;(Z7~5u
zPzyz7AY$gU2^M7<h*HSe$b}c}5ydR3>lU9cU+^}eFeyUl=3;|paQpU?i4VGdfN@}%
z5rxHJh@hNU4-)F+J23i;WxW$Gqz9k+=+pbheSe}}#VfP6GAf^|D|}aZyu>c)Bzc1i
zSL#|6e9*iL6N&aC_(&ytb7z?5gd{5i&SJ6Xr*K@|fTV@I?+^YcbK)?kDIVZ&d4&BI
zN$G#e@-msoAW-<m2T)EUfZqp95%)p?YI^s-eN=lW<>=XzU{_jegURm^%Zu8D$Owwh
z+Ck`cF*V+=<UEB@eKoJ{6Rt*Npo(?U>10<albL-CLT=;^R2&C*@nPh=Y8&oK-dQoG
zWLy-2?prp%%cIfWCcY}O1{|E0EYG|b441+I8of1KbOe)w0?AwpZ$O5@hn2mpjX6Ny
zF_3q%u=75LkMf^F%MUT7n+zQv#7Z+!O%%B(LC*38^=Uyf7&d*g>(A?fas!jwlFI;i
z?Z>8W0gQCX>?ilON*YVDfIt|xyo_6>nLqPrN@>&3V@XQCt(;YrCBLSW5<!j$n@M}a
z;Rg}9lKFi7h>sRiZA2hG!I9bI#sfj9QKI|KfcbkY0-OjP1#p3F(31s^V~0Z|D{lXP
z1<krbf6+-8jKCXSHd|0AoCQ(>=KHZ65j|%#JjrJ*2V9L%746=X`f5;Ulk!+M3-4HL
zRg7Fy3NXn_Qrtr5ogjzUO2)Yt@oPG9tYv-zr5<)GQX9N2M|F)W6YNb>6zwcyp-4hS
zFv$DOt^zAzQutL0rj_h*^TU5cZ(Qn88~^UtrEx<uOB57imyb}|$`2x=0P?SSq8EMd
z-Ku#=5~^EFjRvv*jpw~E3BMeVb;yvByk$WIT(}{v$hKv7ke}E8^d-D5_euXFo4(Oe
z1nCwah!&V2Mi}*25EyBu|FcYjUz|<6<JGI;p>&>m4UOH=yceo}L>PDp5<c<=Ztm@c
zf-6>7$M=g9?|n%B@#c{EzK`qcnAP<>R>8jAyD|1wdLdy1DPaEB)su+Wv(Xi`FmVxd
z?RUm`lBgC^(-nk=+;e_iaQfcVUjOPBR(S8&efRwh|AElALp8bIuPuhL4*2A{G20~}
zJfRLLEO}#vSO4A@N{9~!>vO!tL4#)KpxLwt8SXE;iYxfz)viT`-h~t}nELAD*E{Ul
z&78W;$2Syur-Vq#)xKxB&KsWHFiv?$mnH~_@o~+(ZM@{L8{hIG8$14QPf;U(2YC#3
z6BoCi{eFUuB<*gkA4LbpDS!PvOb7Wz*$NIB9ZXvE3POP-THF>^ix8dW&;8ZUjJ4!3
zk#|PJmUx|woj*8O&T6_GvVRzjO6e`u@a1v1AXi6q8Q8nd<KZi28ftX?`ewBn(tMOm
z6Ff$;oOiyWC#rn|dpgw66~7sz_`5MIk(#wt@+|YmM3J!?s@8T?NB_K-<vr<O20gbv
zO2;9hSY;;D!TdV*GSg#s0*Pr@=qyf(R(+JBM5Z-S$yVAV{J>MPze<SNffhBlfV!Ym
z@9wDwkqapapR94w$2r?mBHv0xbwBkRvIQ*<L%#P?dVa1G_FN1%U4aO+;k(a!q{8oT
zsKh)3cTAKIX|PSUb>EEzgf*)lL!(JT^P8NuOn7qc0Zq=k5*YVWrMx>IWUeu~_6?|%
zG&y{*4L*2<UK~&1N?13O+uu!zl8%GUxczLu&AfSEx}IU7^a7XJazJ+ci&qGEKY?$?
z$>$A(waNvKzM7QaxR!kPd9%TNp{yLkT7#u(5c=Fp^Zl*(5<`)u#Sn@d=#^1ce|I1y
zIx#kCOVj1A!q6_|8USz6S74^j<LAKql17f}sE;wp8tGj(MHZTn%~7l<T64bS;#{Mf
zbw{<2=Z#)8HUeO)&wM~6N}?h7cNL>e<cX_io~b2&p>?CkAa)t%^__#a*SNJm3jIKD
z)pBGDq4&ayil+W<e#`<E%n9Dza>~Gl{H7~TLku;_j~Ag>{^G@9q&;MU5r*FFTf0WI
zVc-Cg7n;lYBI2kFu0&7BeaK^_LS;15@=J&#q(tNAi8Zz_jpB0HB>$RORmJ@3vwQyf
ze6K4m4!dmj9=&+W?jUpi4e9R~X%WQF(tEip$L8o2vKQjSo0);~!<<WY10Gy9w0jPU
zY2m6tZ#coqc}^Vu`6r6SN2(=rC1;-5x%wV+$^d!e$<xzmOwpOUka$fQTt0eU1bZLs
z>|{w9+rHduYJc8CLZqFU;jS=pWKhF$pFaDGz6vxlm&S9B*Ig>28CF7kUt&&R*EG>?
z!SrX9%*JBps-^LgAY!gUF@SVs63cY!m`pLE%3uI@h$(rO$B#*a%J&s}uS2kcZ{FCC
zV_-F7OfAbvZV<a||LU75&)MgFU1#KmI%iV5X@1s{BpJY*6G@7}LiVIC(>}oFVAynM
zNiub;CCz3vfa-MILb(K+np3aSe)!=vc~NhWKD7o>qs)pD=&djw>?6?b#CK-MBMfLT
zuxWDFWzcbVY!`k`#sLqv3q4|k{T^FaW;GoJ<X0RM>K8?6!%{qScxF>avPje@{%-#f
zIYVE0v{h*WFs3`BpbKnsfky5|T{TDV9;=nXE59Fna;kmYs9jNcE(Szk&2tKba=Ikr
zoYDx#u?OHHmaPrCRq&&98oF1(j@ZA=IJDN<g13drj9Ki6H2(JL&3W(Cnsf6O^FKJ4
zORCCQY_rEMZ)7j-aCSOs**GKh9EG5uh(T6COR>lK9we-2@L49A!(*3>qDcJZ?{F&3
zrQ4VDd``^;<4?^l7vfcv1sk(G%x<MEhHJ&N6MaXRxJ3cU=Vp`b11<A@d4B8JJVsi0
zO_3>mv%7GLR9UFAR9RR@AN4|I)p4T$OybK{i&)l9^S?@<-W+!LQ$04Ba|aC+iQR{g
z`bx|_o`rB8*&?*yn~2Twpgi8BwTtE06G6BoK1}K7XCgEs<>e1JE}k_5{VuCZ3dgbL
z3f|ktaY=;zhkZg{-n2QCx?d!u?0SZ0Ram_jluq#Vqz9u0z%hdWUIrYG9gLmCv3%T-
zs!n<?)!sJgVDqVV$wn1z)=?Y<@LB1@uAkCAwPWUem&xjq{1MGg%$bRZ!`)gpkKee3
z9LR$a*dNU_nCl1Cbm$9w=V^OziT&1wI%l;pn$a12%8b4xS9bW(PxnFr^?R?0jtS?!
zy+GE@<u2b846dLgaDPniV4Vdo8#ctxndGx*K-xU%W<M&on{JtAWyM3QLI2JK8!!Ar
z&<^8N@%X5Db!hLYfr_KGc~l?)yHSW&-h(R&I%@C3wBzu095umO8{}k?UFc8y<dyW0
zn*1mze<NT-$xoUM5BsGRJ{9iNd29SQ?9-pYdp^iXq44R~<l&efN?e~5%QJ=y?DxYS
zgxF6%eOeFEwxo1h%=|jRy6)v#9i&<G=Ka<kA{_3c(HB|Ei~BkZY^LD8Z4Gk&-+Ym!
zJPf+6#MW*7BF`H*Y@X3QvkE1bJA*l*dVw1X@p!g0(P#Xx@jl;>3IelF1zFq=ae*&g
zEdt-1?P^$jUHkD>ZB}uUhIRt(=kP?=4EE1N%nk61wv&1N@XH_TBtEu<!l|6pC6if&
zjO$Y5e=b;<K-M0m5P~6*o2#%*L#5FGe`syE+{CVapTbV90jjF%ejs}8dlB(WOtkF|
z85vznr6qXjDF~^N`6ZYz+lJlzBe5ryKqI6Tj@m{E;29iz>00L&a)}q6A~i>(6Y_i~
z$nO{MnnPOjvz*`g<?7k3)J(YqjqoyM<h$&>&U`vtZW|wNR6Pod5-XZBS?xuSXavh9
zpAtp?Nt6WbK%8Rlc?!R1E@{Kr3s<yB!R#Nv_k}l`=hU+n|BZ=<ZBc7X7;L32+k^%m
zjNV}Q8a4w`gDg5Tz}1$wH3<Vx#YHKYh<n|5QJM^u-YUq;riuWxb;nBOiW+>qpN;Zq
zuht{-@$cFy3;XuH3o(IyTN_oh9`JN@J&$_r`DvgkBVqgE;QPweOk-3ajcvjWD~-8*
z@a3|H2FK72JwlZ6R+-vcYUNT5Uj70&+}aqQzxAU&4DndDXWZVkWUl^UsAltsT&jJ~
zj9p`AP8fA?JXznQ&(xb>BGX3Wr<+9I)ko+>rPT^Dx|Z<ui|e~3NJAlVZ!}~3fF5^G
z&nv)`F&(I)NE>afh12v*A`*&ry5V|(dnTS8pcA!cA>@F9jKdU{RyjJ^?SrwVzg6|)
zCl6P5NP?S#E17@ZG54pa#L?}P*>yMUbWYoV26bLX{v&8@4%@&OFidr&E#D5w1$8<s
zT2RISj_hh3sTJ4w>_kVeDf&|EiMLc_VYs!Qs^O$udvSK@QTP6WQEwx9H%KR}KhJJ8
zV6ZQFUQD}T`g~N$=|Rb5yEuP+<F-_(jsbK6<M)s%-!0((ig$heD#19EEH)hQ8vFt)
zy~ExvGH;hv-RJv>3q0<RdOC0He=5lVJa$uZ4oiyYW62Y`e(*dW$PDwkHp6#SeYupJ
z{&Jk00rI1VADI7}55Puxu7I-}C}lO5fMpt~K%1XUxwLxb(_AR(Dx(aV>|Z5G$$vZs
z4Q=bb_%5PKfiv@_ny;5@GhxC+#onYruUT?NH4+W_ePnnlEfF2sxRCPUSi2}drftn8
z$NPu39`Z2FPT%7apMYKmj)V@H*zAe_;;?h~3)3`n0ZYdDRe+<#j0;Dt8%dD#Ut*Z^
z7`%x*6?bnCBYMaR$G5tHqmUq$>LPxw>bpuO_s*Sbg^zO;=C**vtY`y$EUtms_`<la
z&h@U{Tyv4nH`#keFRX3qO900K%O6tcV_DqNRZtq@W}}_zm4tLNmQk(UD-ef0`{1YT
zs_*{<X`bP;XAWUMhLNHqMYdjqie;!A=##@TH=$poozuyElSj=Yrt4zf2~CW>CUpBf
zhB%#_I3@hKso4+xZ4Se?N8ebp+n&rfA*Y7Xw_U$-*D#?1xiW`82yMUWQ;TKh-LIEu
zTkjvra^*uExYjEl?@J*2SzJ2Uml@7-J?dX+u~o<K_g+!=pUKXkhU32!6g~!_0y6af
zsE0zX6%1HQ<Rab~tNM!))i0}P1Mk|>MTtnJzv!<i2~?Ha9Q^>lJG_#rp~2u6!Jk3{
z$+r#1R6FxaKbWDH&w^3>AS&?9OBtu|@@vX_(6uJmg%!Z0=`RH|tLBi=g(J(&(p@0p
zCmY^yzecQVkA3-17cjrZ@=Sn1s~I|jt7711pT1_z@yI&j%)^IK493*~UqI<4lr|3f
ziST<B@{Ibq7rEdS0?&_K+%shES6F?ayPn%{he19FJfq#{H7})m+fla7YcFba{NwtU
zd-oQP2lyj0^kijW4dr9v{ek3Ra$B8Cym)7~j*n+4cdj+5t!F~b<$nIN7=6$2l%`!F
zm^b{G{!j?Q`Sa}`ULH9Jd5K4ZFDqLPS;Zhf==!hjj77SUk;|7YUz6XHMBCIi1K>*1
zMnY3`dU|V3t=}OALUg-qsX9xY-O+GjHl@l#<iF@cASf|hhQ$f#BAg?Y-{qRT?MTER
z)?^EQ4;sl>i_kjr7gnd4Z#Nc7xP)y=sq>MqWjIdch@g6KU^?UUSSZ@;meV6oe2$s1
z>E9~`psi(BgC_C>PI>DBKlO}hQBR(jhM~PZN|SCv>D$av-*n1F0%?7t(KX3PJ1%Xs
zJ>LuJCLJf+LdMDiErIpD(DUcg4H&gBzlVUyj#{+u70#JtdUkyL*AJTw&k-@DYP5KB
zE;QlC8RJG$E34tc*Bpvr5;1IsUwdve=f1!k?bY=5FK^Q9=ZCroYe6LEJ2~4O)UPcC
znvgVPNgs~S1v3uzT8P}|AzM%Vj`+NOxKFpI2*O#AIPvAKzCK?#_hfSQ<TKK=dPQ~s
z0nD@UQ&&oLLtW3WtnKO>o9gemfS^=-l95C<E(k`8Lncf3>HfZV$2XgY$Sl;_Iy7(l
zLQ9j|nPv$!J0xc9&xGH`CqOCB=G0KvfuJMnTzMwUc-pcS3l+ST)t?4U7Ee|#JMHnn
z4mb~|bEeOq4GjCEZ*81t;J@9z@0Q5b2WY1tk1cr82m9<Hh-noea@_lbyktR{l>+VH
z)jW9MZTzCGD8_(NEMXXN!np&<)c6hiq`y7=J{Wa7uG5I+*v8fDW#eyL>I*;l-;TRZ
zJo||>(KfI;EK{gze{?VLo$PhxX7OA{QO$P5ofj*T{XRgT!7{N=dlVxS6qO0J_!M=I
zGA-;IFtseSx!dG5$hOTC`n)35US`y`*h1V_>NBqN<3Q^KC|6_jtV6Zm&;qYkY|xc^
zdavYtrjlnfW*0Uw`OHd(Asna9PYS#Md(l*jWV+pLFoNwA6m3@|UU1=F>W}G&sn>cD
z!R4RpvOg>#3dGO-cxGobvu!5mAid}C@52*pC9X{ajfNR$$bE^7>j>}Sw=39boo5KD
zS3@49viZS;%1qoE+Z~l{*x7t+A$ZP5clt!Lv;J~T^`y(1@6Gha1Dknbf+$zaep-ia
zd9!dDx7@Bxd<ZEko=uYe84kRdzYKC(3OJ+CYi1zyMEO`WtFamOnIbTxvEU4ca`fIL
zJ?DWjy$Bz&x$BE4@2XM*B*jwl?8lW-!Jg>)=i2Db$sPAjJk2xi0m*R2-&q@~d!e}O
zua(wP+w8u$K?<RfdC;^XYAPSG`X=!c8ZmMMv{~Z?gSdyy2pOp$tH**#V$2)L{>vz^
zI9wu{3Zq}aDP*ma{AJda21O%8Wyu?#^Ec6(HVf3~)=^I1k%nK3)KO0SpL}+GLFCZ4
z@0ij!<4`CB@0MhtsnG-r6aJX=L<|>$Vbj@*EI-D*c=nw`&B;-EhZr5tKcZ00fN84K
z4Yh{750rT}_3e?1h|!a!N0weN)rbI{FUgON?Fzn@zb(86K8DZr<%g>=6zj7bB1b-j
z-^LlUt}|l9%2q@ov%%O@^y({zq(NKGoLm?|c`ZLZvQAfE@-06B{qQ&9Dbb2K|Asi%
zMdgmZ3{(S8Yt`vl%_li!3Dg1C0?0t!=D3A1fa!iF)G^;~Pl6i(xy*5N6C+AN??Bu{
zt*g72VGw)P)z(d+@&WHFRC&e7M2iI0h~Y3D;T2SlDp#o?ZDpO59d2knqg^fOW;Mri
zEtzZ*ZJw=QvS8QE?mVlp2i%A&Gd%Y$3UTxY%_L}RdbdoXz=?}W#<SbuC^!-s;4s9Y
z)OMkqDs&JHkQurfzz*X@83SgiD7kR^xQMYqrq7#})uhxdW&wV|P!ep#W5z!r{lluB
z95_gy)~r%_d*-e$mCc8;-%bcIrL!cSmzSK14jK8`g(cWKFxrP@U^6EQ4<7(e?@XCr
zK!F9Y3{X!ZaXdKz;$Lxv)=N@we4%}5-P9(Lx6=wIn0Cw8u9IdtK%2142Tn-VJ@OpH
zNLG*Q(G-!gw8;k@;G@~t*env(rkk2ov#m&G?bS^<c78}4J^j$84g-@Bhk@23du*?b
z<*Dv>WD>@Z@Kw`85Z;bAVD2!$)jUY)4=Pz<4d>>3QVDB!w`hdvusqPnAEub=Z-g{m
zn}c8mQ?i&SnRZ|}zMv#VCEDtC%0;RZA+LHzQZWnb*Z6w=kiQI=I=a*_-T89hI5p2!
z{A@TFuy8>6EY?G94{as2vR(Fth!tZ;P-^rXU2yHAsiSQOwE7DS)}rrTm5w)Vao^DD
z_-4~CmV6m|zB(a9MVC0U18v%Pz~dg7$^o5mO5vy&eTX^K2lbb5Pc3zZ2Ij$`RdK9C
zG2P8a(ZmnbKYVLQmC8xH4X*YJO)qTgSbMiPpFhXzdB(f7qjGtW7KVuOwLd<h1+Y4d
zB|Z$$P7kFS5Bmr&;0`nGT2ybupy}6$u=5tn9coUYmuULCy~%N$Jw#wAP(w~kvK}FN
zNYJ`ZJT$-7ni-Wq0C6nRu$L#r|7lYxSW|QJD8YwDF%KCusl<S|h52WmT=I|9?p2ZF
z%Z(`yU;ozLtVZd!J{h*xxa9H~8dkyNcg_J;(c!(#Lp1nAT6M(VHn^-tGc<|gz%YD(
z|E23StC?<-W}EupwlGIM18KD?ywSZJg)|QVRv$E`xTHuz2@Nq;Ove0L_4qny!^pdf
zxyd{K>2#Y+Gn=q}$f|dO+vy^XyIf_4G;2>-G{wo=zZ3dn3_jvz0K^r<<%>n^sbL;K
zhoXe;jY&3TRbdA8OOfs?gN^|&N_q0bN`G+jW3`X0R%`R?_w*rgE1&@j%0qj@ZOZGy
zPucv4`*wUR!zeh?A2r}&%DZP;tQ&I0RFL7jGoUOYEJeBzK0&M_iVx(jT+5?ezTKZ-
zPNVlX<Wxma)W~SE0z_fMW*(|>{BrR-3EmT2{>?XxtzVPEs1PAgO5!+y%ZF+wHnIz~
zp;dE^NtjN10NJ!?^pk*UHpaXSL!ql#m&exa#=Ia``<RDv#v>S)E`z{lc+vO(>#ggk
zbHNyRkSQ1P39xbbIp0OmY$Q7V`o0ih-P++P1}bLNId8NxBlVOV&NLIXM~5eB`>zL)
znFx=yw@5HlUzTe41R;b5$Kh0n<yG|0Zr?CyLX3k;$dRE~;Xrz@fH3C{%&Fo!%mfy2
zd`gCs<jW#RpQA^vYLdZBt>J^`W(>TrxC=;SB_f_>(<~Vce%XEVU#t^csDA!jo5&EC
zsl~Q6mhlPnNA2UJa&A&8GOshQSk>%ju}MBfp}Ve7JwMT`dXCy+wJs_j^*p;+<6S2{
ziew-ElE0Y<OZ)o{hnrry{C-$^1M&edcz>5l#bZCtCMaBfum<aiKK64a^zmZ+-c>Vt
zo1!QcH2lJFZrkVC{$^7Y&lv+3eJLo2#FK0e1VTAOI^bfz4DLaPCradXgica22cs2}
zm7mDMq4uQV==N)Hq16hcLpCd$SWI7Gh+j&3cdpz9f3A|A(iMj6hf*VQG>HC1-SWI>
z%jQC#J5U@VZQ~N?%hpL~<ZX5kr7<%N(mrxP6+VjE>Z{ESuERwxN&*K|pp_f6b<Iq_
z4XT1adG4v^DZuG~7O$XfiEu>Rz>MtTAx0yIaUM4UnAZr20d<jZ-w{Z+fvJFf)x+un
zJ3{j6+M0Utm?^D|i%m4D?28^IfJ_6u3AOIJCKZAXGZ(0~P8<rMXyQ0I2JYnbm@ltq
zNs7m1pMq`oZ}4Yy<ihXfL77}mdFGt%=m;)G$18Ca&L*CC(PN}BU17qA$4a`|7}j3a
zdGZOUM8eiOp_%fc8B{O3ab;qQHN)z9W61_oaU>&))f`0Vb|-;rYjM@*ZY;kO2N9{0
zc$tEaSgLJSoQZFFZdj0KotM8IGS7~fMxb$1Ts-_jzkjK3y!;wuwaBP6^1U@1lExqO
z8(v(F`$W`g0>j;YdoSGbs{;)onh)^ujX<CY+Ul;WmjG>|I+wl@bqC3GR29&Tz(oCP
zdku`llaoi}sUaVPf2gVn{RSWydeCRnUulKU0!R`(i{Ku~(hM*w^g;hJzV;$7pA!Hv
z7K?hAsOGatJL8Tlg#Au{OZL8?Hoi{H_?rtnuHYy$$g$}AH~~>oBacDc)s)6S21ZIa
zH<s?2cT-sA@=rx7zjCI**e#Vt3Um3Ix{;NX5Fg={F=Ukb3j(Y(S1e@!j#>UfoOmOB
z0}!+M;DB;+x}T6}{u8wxJnu%Zq;01<H4mSae82e+QxX;NLJ9RBEYP5RUw4|{m;Xkx
z$^ULwvHlAx`d?I`q)nd7J1vL+`)Asj@Gs+$Q0afd+d~)JN&kK)X){ORU#8J-v4)L*
zxJZcKT@PHS|6}f>>z%~@FUL}u`d^L_`M)0s(*A``s)lt?$#Hr7g}3uQh7XUPlwLF_
zQB3byktL5lb|u6&(qhbE)zA?ujthh`i+6nbGW?|vbf(#c&L>vRlAQ`skN`xCxSvxU
zVUrfYSy?3I6%|FqSMIG4=#WOGZh&%Gq7&kyy@RW3Qa|L4eyGf!$!W#+BPhLLjBQW!
zc}*OmmaY|(Me^ZeR&YyG_I^0s>0U!DV?{76h}&)x<4yc)_Btvu3bG4Y^B1kxE->@;
z61SB5hkkS|CUalE05-m|N1K7zo|?e+>*yF57_<_Dem#|XEfe_?D6|ld-{0*Z5Kh*a
zYHHf{W8dqbY5{k@!a<y^o}dHg5V5-YTy?D~3RJW*Q&3Y88pDW*VojbjZI~>CFIYCK
zUTq>qpS0kWuc}q!WQ6_k=q#jWTWVuy#J3Uux1sB`>xDbYCJYDtFLE+W?TF#}S`%8{
z@?g_aAkdCVR>239I$c1d4R#vH4`MD9z)okkSn>GceYcvz)-DnC{dB2ILt1d50~({d
zP@GOm@Sic~;C#_TI>-Mb1y&rW%(HA6K-{#87*XAIDA88)+KzQd{5m=1!+^3>_+fMk
zkkU3_xYLS@&tir&RkX|Ec<_nA01QiipRG_7p#1@Gay0<1;Kyv@!6?>GuH7EQQ8Z`3
zXrKxyjJ8MWfiSElipBxtuFK{^c43GGUwA_s7!cd3DSh*BnD)E(^d8!%FCgbgp_}kc
z57hsN2I~Qe#{Yw8V8I)@Y%{i!kvTD7g^3Ae5?jwMV6nX=Ze6R-gwsl1@Zu%bJ8BW3
z&tl@#D08%WW*f;7Ccz4U?+WUp%WUFg_;_2$%0@YYdS7!UPsNbNLma~<&}ER4v!$Mk
zEg4N5(^c_XtYA9IR0X%)T#+%_^>~idJ^P`@%aF3s%}L@ddHRDIACLH%R7qEfqmwdB
zqT_L7KIdxua#1h~Mpddatz~q{*DiP!#oI|9T_7!ywe`X>OcXq4r+-(FV!jJ?@-s18
znxG{5jkq?Rc{Dy3w4BUd&rV0+0%+diU@tay)~e?jO{U!dBh40u>*|^KL@l$vDl&1Z
z){&s~O!}`0>SMu&m1Z}Ix1rObOdOWh?tYSnqTY3PpLsyA^mc?dI8#qAs=LV33q<z|
zPj6l?$q8F`p_NF-jm!w>K2$HgADuGAGtMD6DJZ<c2Z?h&tCFuaI(&6InU(aN@5?D_
z3w9BG{3{9>Ee{IsB4n@9!YfCynm$QKuX<xL1t^d^JBiAw;^5pJ8X`Wzre$LM7I(VK
zBl^FW<vr=-Q<lbxEw6?%u5(*vA{;x&Ar6eGx=dlBWjLe>pA0R7gDH4+SOFthF$2Hz
z2UFV^ib2kjWO3T~&6|AX49dm|>B#8~VUs0(_A}X)U9sqr<xTo9{B7>ttMAOM0R$r>
zHXAmMgavPOk$;5#IPM2yFpbg&oIU3Uuu~`+t$i(HQu^l4EScFFNk{2L5v4-dTfG2U
zU$LC1>72i~fz?06wb<YyncnvTvZ0I#K-zh0MAp^LyG$p?(=gvsu*cwV57rm32UnnU
zAIQu0)_ds~b&vTBiJ}OqWJ&z*Dy%y7iw0Wz{uDxY&dm;Ek~vu`Ksvw_59RtXQu|yV
zYR)&>cJo;dx8`CH*@Cww&U_B0TWP_%dp#v0C+n0&RpQV9KsBfq_*gYj3WTxY8%Ox_
zbz!3o8Af1*#c5iil^2AGmVOr!P?fmI-oQ`DNkSdHzScrSpDZUjZT1>+Lo?51aWV--
zB>!Zz3hNHJ%EkDv65vw1bTI|@mrAp=bF_9dlungUR~eSkr&dQBY>q<;cp18SI2#fY
z!-4)dh9d;-IIw1GH%iI+_jxaPy@8>Q?5J%jH_sp4)Qa%Sg;Sx<3rG9tIrTygw|f4<
zTCk1pYcS>7uEY{!vT%Ogf<iuaq}`XW{M*A`NW1@(f-1hBzC}f#N|?^;<Fk2SX5w~*
zJ2FAt_7ou2RCmu(JS*mk;#w3G7_vBZGjkY&JXM(t2nQ4lLJN!;?DTy?_|9%wYwm48
zr)!w3gjuTW?@{uM-D1!Q!>-VDZ5ctleoqjh0g*Ry+}DX9oeNxFZ$p#YI)6$Za+6<&
z6K)rZ9?kP1Z#{4e>IVUo*HT+OK~fBz&w29Q2C^t9DNmZU4zzZ9>qApeHnzPJDpV+6
zH4`)8>P0^y|GF!2)r-NPM=01I;nzG)P#Q|Ye>~j}cV;9lxEpF1B=Lr;mDSfgs{ar~
zh#R(+Yu;7m@tJYR&_DE@1inNBfZ{AJ5o&xjb(q?`qY%7~<)!S)ZL12q0<a$#ign$1
zrNZ{yi5H{b4%$6bdr;{~X$;hA>Ct+iQ&N+f_SYKJ`hzl;{np8qNS0j5%P7lt+6LX#
zFT!Ep@=?a^yl;h%SIYq}0N{AIq=gj$`j$dPY)d%S6%Z8W0DK^0V20IuKIscQ6`C0N
z9n2{I>S$p}Yhu}i<$D~qVY-^cQ(Zz#cPr$dvD{Aq8sRxvRU|1|wiO#-lB;%k_5@WW
zAdyg?bjFhKU)X3;w3==vYjwNh2FQjlR&EqT5$QA8hPQCu0dto5XLMdL38t1e3-6g;
znkx7K!QhbbJGs)`tzh3aN#tw!gE^F<KYJhh<(fP_^O~Y?`D=fEdwwEkhzW`}DAtr;
z`GI+_-4aF8JTgdI6bvG#x2Y$?Of>lcsa`rVWc!VvEniwLzNX0hT^a=T1eOibK)8<K
zsN6mIrUf-d-T1mn^IaEDTJc~-*BvnXCzVU>K~wA?n;6M_@Dp9XoGwyO0b`;iO1?>!
z6^%)MAa5BFW96B*<t`%9OSn8cxYNUqWU7G_rDfRKp_iM{lcUVPl*XCEN*Agtj~Kv2
z7}>Wy0PMfB9@O}R@TMz(zOAv=m06~z*>v7gG<aSV_KqNInW;hSn(2mEk^(lr5W)K6
z@Zg8)pVJQCY%Uzmx7ys*<ba*G6aJCgk;<G5C=dYkHK+HNt*K;I@KKL(uo+X76<BIw
zU>aKmoMrMg2kUEBf@s=c?k9`KSb`vU`}K!{+ohxfWe^7+*g7VGi0Q*yhVS#Cyh9CQ
zWPRt1sAOU)2Viq^Gd%W#r(I68T7mpVRRBAy?Y=`<wZ$VpI`f-$5ZY|rMjjU<v2CBq
zAovbk&PQQ2S4C0iHA5dWfaN)37a#A7MIP2SaNOv4j{bCW6uYp6i$zo{g=R^ba>A(?
zCft%)_DMQpVC&%Un5U(hjL&^3;%>B7blg<3;-^is9F<ADgjfOlCvBe4p2;RpUeM7p
z0`<CO=ONA|6!-Yl5;}@!gQ#^}Pk3W9j*eSsp0O)ep0?NESf>BT3M$u~`o-dA6t3|w
z^7YQ2{ZL^S?vP7oEHy=ev@u`>`R4p=>jP-=gFKVICnhN=D!-0nYrGagD|!o6^mVYy
z1i=RO^HjX}Kda^a!`<SQ*!}lyFZ%^^AT&e_B=Pdx<>gKuZ4dkV^`s0z+=;<tI1UVK
ztqr!&W9A2;Yf00eBvTxsVtQTcFjVS!UCQ;$tWW@&_zw&g_3)*t(p)nG%qfictb~H}
zRnR)nAXdUJZwpV)Z-+V#sAUE?g6QjCA+S<=Ja_s)TN0El*EoKBC4B)-i}bTq4&m4%
zy3M}LV3i!i#!$UHiHXlu$hJ}Y-H|%xN}tzp1b(#QJenl)7<u>$Rm5&x#Aef^f$8jE
zD@C&a)Q&b9x}F5h=uH778G9S$?<A18EzkZujluO7rX2hbOHP@Bp-Jn~;Oo*IPcrLc
z;?AGZ{5920gk-Pl#(GljsyrS_srnVWVlEBZXi;z)lPg;vGBetH!wOy}DNAreS6d=j
z1uMJFjrsEyUp#$?uRdf?*^4sC|Bm)i8v_=5!_sBjM`w?7Z4;YE5Sr!~RRKxCx5Kf{
z<}XUT?^=WGpl(k<DtMS-?72zOvd+kOgJ^*|fhn^L|Lk#1vPPDv@$?zsXYx1n$GLt%
zuHsa<cAB%{=5r&+@^Peb<C%0yEq8}HPsahm(3+pAhir+>>~j}d{{8IzpQ)%M5hpwx
zO=X9V>IrLPU2v|NV%|TCY*SV)BgSCbTz=I+1$nmNr(RlG@;VO3OkO}y8Dz)22Yxus
z!Hd38lYCu=wJ45kypvMHyM*r-n09HX9djT9iQ~tm<RP9#TcWtTYk1iB^#+E^^6&_g
zr8mY74E<`^$e-9g%lmP#(2fQW5bQCV*jmG)eGOJv&bPb0Vh~wInJ*rl@LnVbEbM=c
zW10;<`r~>SQ~vTtG#giMCF+yHxmf9=8)AA*tvhO((jS@eheHzGsJz=J<Atdjs5$*g
z|B4Fl&7;YWNmA$HlGhv-r|Pn$zXqx_EW;ZAFb5!SkC6{o7F!(k1m-E>#&;<BaM<ah
zF?yYf{fbYpSX+U?N}Gl{)X5h~XZs6pK~&-zCKI-IFzJ%&uwu{k{n|XrJ}WJ>KZekF
zN$V|zJb*^MiV5I$jOxzKy@G)#8X|ey3$kX{MS?xkOJzzHzK(>3M7|!S{wlBix-*dA
zu6u22UoF6dp$?<FK>5zYc(3PDqI42R-{>RFC-K|#u$k)6FKrmx+Q>D5M01q^jma)E
z6fTUcTe&FsD^U#eErOwH3$pU}D|-<^%i#F)q%CUnmlUP=JLkzT+(+j8?QG1ew&J3j
z2*|w;4DfG+5aSGa@Rx`Vkx<X6cI?~2SKS+b*DC`F3{C1_Z;W>8m_X3^|6G*dn^I=&
zyD^{jA0fMg_Y29L^q(jm!~z=;{rbP5bdxq0g#T5h|Gz|Cj1w???TEDN`il6tX!ihJ
zVjzPQXtn77Gp!Jo{N3@zIPX8<)HiZ(|Ni$h`oidU8sFD#FdVt~m+g0mx93?=VQIWi
zxF>%5Axs}K^)oax3;m-}Wpp%Cri{*VpO2q=Lr-t|62{mJeP9&Og<FU!`nFwMSxk-Y
z%?%+tGkH#MJTfmqfdA<nmY<7yKgCD|Alagb3URxRVq~9jsA!2)sMiT6In;3`4e6#|
zG1Agzh~#mkB$tFXu{B*oBQGpzf8Q=k0yulRhz+ZsX}Vm5B$|sl!^aTC1&_BsEB7~q
z-_{>5U{weRY&f5>p?i)?ZgUY89U6FgI8ZYAJY)!JHk)fUz5Rv|kG+|Lx;{Z*!h;P(
zJm2a-GEv82bKTaLMhu#bFb*7s+o3({Sl*Bc>lZF>jYU{*|GoDOfn-L#XbBX&jgx6b
z%`zd3e@C&!S0aobP~0Akm*+^rbu$rEm}M3nO^{33lf!g=i9((V)^M}k&_=fbU8li5
zOlQ~0Vxf#_2JlxH^l~;9!gI}~E?qPNI-+z4B4ZtoIU^ZD{LwLWJiR<wCdS{`;<Zsf
zVWQ`)cyx9Y={4!eaIgq>x>O&!-00dZ;Jv}u<m2TXuZ(q%Zg`Qus*J43J%?M#s9Uq2
z@Bn<=TJV%z_14Bm=&t_pisaqejB%=!#kjiS!1pb4s#T=@f$!1HN9Z-jY)NR%NP!zD
zh#@%rjd$JNrs>IpF6LeOJEPRfzU{`|9EK$A_{`4H=w|&7Jki3N`IS{?9wpvs(Agr8
z!)^vYEax!fM%qo6!~QHZN;zPBIwwV;CKWq%!3?GRl(7gE@(%;!z*(9B)EjHfKFJ>q
z0dK<dE=se}$n*TOvheX~)sm~h$~{v{0I)h;>YoarwJltI5+{S2S-H5bJs#20a@UkH
z8WE9o4HkpQrUK>f+2m^H>ad?3MzKo&s||tIA4?WM&;Gn=R0^%G&ZUSHB72kw&EZ^+
zTduh}r~X2ePpmH5W~G^WZTmodd8&?LyxLqpkVXA=L8^&VnWdZ1vCAQngpQu@JZX7h
znVC8B!E~iL-$IUi$BmYJq=$Y_SDJ8JOO(_BNAUShR3=WH$N8Ctk3$F1JjI5m$rF?B
z?p~Y|(3s9vS8cM)2y7TXR+7|he}*M*vvzO=uP_a2|Hci>Arl!m%RbO-V*spQ_GR(M
zv4ULPZPvl~r%!Ki=fK&IOR)orf2Rt9%oTQ+cbH~o2h~G4nL{SYoPMl+!69qM;&&U7
za`W<SL%aNX7@Nhfv@nIo&ooryxD8<VLjb?rs;5OjnQXHXj#cpX@hFwIo}zWHh8bJ7
zBa<z-el0eu#cj(CLx#Zz%A2PN-FV3@xI^(X?4M+k?or$6N$*X7&GlthH>#D*6Kr{w
zHp!Z@q7QKNL411t)o|jOVhd(>oPp4QvfU?xZ&y4wEUr2`O>8|fjn;7cz(4WcoqGSH
zv}z7*40S*A{<X%Jj&Ygj1yr&ebVZX&@?9#$nt8`CF2;>dMZfB-CqLlWu6=MMpWQ$F
zsU`({4|v5_<D^D;jiGrNU^`hm4cd!kvaw=7o@JGTDcT-3mr9KPCF(S5k2Dc@Mk;#G
zL^4_9qXQzXRUV=Ye$gqS`KCgH)9Ce%6bYb54N^zh|ELzf%7>4Dp&yu}N7%~4LgGVJ
z)xQEfoiy(HzOu>zPZBoXee^dw)%607*oKqG`+$y^q-R5^f;72GGmJ?PUd;H=-zAde
z=6IQC?Kma>YZ{@)P#U}yUAQ?f<m#dZVsb1lp0-kM@H+SBtb&e-ATv`+2#6Hicp?Z-
zv0u^Y&ngqo#26MKh5&r5rPOS?e-S1wEzAAkh41rpFL`=McyeIan|{n$J?%xk^7`IQ
zbeCXiW(H#(HI09(p`?4O6~j;M?O>^o<g$*3mPrus@fuy)^%7L=P!_ivl>%J8t0>iG
zAerIfs@{_~z8I`?_`V(9Af)0D4>$F_1uh4{wP-h|3!$|qxFfP=x3VkaSZ6c!4_5l#
zbT_#I{E4m$;i&F$xAm~J2dEs8Xq)vxAUflonX81DQ<vJXZQkkT?_pS-_J#;g7!z-y
z1f}uY**;HgqrnwaQFTkcVG<<<QM$}mON>UY<I%Y_(qv_h1hAE#>{tU?i;zUF$YOi-
z4>pp7bMH^~wP=(hk3BCiceH%De!ew$Zd+ySsf*_DQHKl;d$Ul9Oswg<#XtjMhTz?!
z&ml$&#*GoNlmdq9<-%?;nG8FZ2I{gU_oXYLF@j&yt|*n*4D^ZdJPq_IH0}frrkc?E
z<ujs?>-(bms8yLFsGC#b|DLcq<x)>I^BDJ5V_9gkkx{+(xevEVigCNUl&cd7m1pD1
zq2z|^U^FJtAyzetG^v?C5VuA5CrS6zxpUuS`C*Qcwrwv%?vdC$b7eK6*XF~ZQl$x=
z_IAk^j&X`f?rf2BoH^uzE+UySqUPsH=KPyNV>{ZuvG5sFPHw5D)sisLi73QPtv1(x
z`4j5dB+?^_7vk^&dr3;;yY|(vA2bTBCbM!gy}m(n;6THCfpM6n$DIiVAJSJp%aNAf
z0WnX*qz1mrQB@PlgCXWN574GXr=F9Dg~J=+LNWa0(Qq@5i+87Mby(>sbb+4NXUNWi
z`U^N&;D<bk4mgMLWNslEnMB_<xSSzZysNOe+RmkCr^Kp6`EM<ypRq>TWz|X<iYgXG
zIsM34+FL2P(sg61YowS!+IXk}=^+fHf2!MEi<ui#Chty)&O5DMZ?nntg8e`CRNM7X
zdGOgtMnFjw(n508BupU+#1p;ZdB>%^9?mA@#Ut54lu_>Fb3=pxI+Ri)1H(N>0<IC#
z!0%$sVqNnL8o8DwdH8Hz#M$S|aFFqWD$>`VSZ+;!fDhGB2ddH$Dsjda`^^NUYhL8=
zcVrR8v(8=k84k5Qx<&nEr^76MZ!Y3Egs^d<<)?c#O%a|`_-P-_LZ3C=sj-t~iDM-R
zvNx)R6&&d&kSHW$`#02Q^CtV+Y~QhabFKb%7d7?;etL5$QhG>Wv~FgA1u8iWZbPd8
zVIrrREBnKef+n5!NXl;qX?7!{;eU~NAM}xCX=cHXF*u}h*g@;pX01%<55|^&WB)8i
zGiqqJ3*hISI4Gvy)ZQ{}1edzev-tIWTsW*pM2nJk>Fgb+uNPDwfc`FNoY*r0+R#9?
zLBApN`25#@3L^aI!`zH-_rLD+Ffve!AWLf)?q?S<?4Sj8?OZj#@LrMgB-V$#GOn(X
zaWPS_l&RSU_g$25^#HTy<QWE4Oad#`QSf;M^QZ9o6TMqDuz~(Dm=kGEqIWcR<k8*^
zidmRWg?e8cMSb0f?T(j7u9;RlV+O2QeLJ~qEYG2;S`=!`PFZD1)neet=<-1I#)N}L
zX#dx)UXa9R-c4P_0H{%FQQI6M9Ut}1{U<l#OixU?2azAg+KsQ9;V5`7N(;6$01TT!
zD<;5td-5OBf~{Az!LGaU?q!kU5rVue4Vg+&LMa(QpK1S!8oLAI&L=8YEo2#RbnuN)
zq3e)8uMeMy*%Z3WGo9u>I~vhAsf1(<%3kF~s7~`fLo{-4_@sI7Yl9Cl6M}YbatnUB
z`}hlCv+}57ftx|Ojxci5HJ2DR`GI@)ThcNRVwG94j$Ge|^gTNZOe}9!?mrx_uCi(@
zRf_T32PV}M64W*uN{2zvZs7BwU4-iAC%s@>qve>x1|695Ir;9!(D$<3hzF1^QkoKV
z^wJXFX9iv34#7Gq913uc(zox2o68T}LioRE#;qH+cp2uBqz)6hJQ~`Fpee5WnzE*Z
zdQTCHZX~YfAsC#z<g@)tS~kMnp`@<sT{%M~Fx*moy1(Wb($(%rn7-h<NIM@2)Vi9Y
zDt3p6s>UG8Gr8~`>SC>1=w+WI4xJ*NV6&?zWKg5&3o+RkKNqzSIn5Jy<9!K!kv{3!
z;}@2u?AOG%smrrp_r+&7`>30b0UTb8W4JI{4=)JHbsO|QIIys|MZz06;+SNyC|JxG
zFsD{Dx}6}3nW)XDV}}bA`y9WvMmWj(LS(dsvh2EqKVv71@0wNLNPszNBph;KEz_in
z9`dtoQ+ihu9`obak!LiVv-x(-ZyGi;<|x|J%*lZQK&V|KI(?L1EwvoRJBIHRPZiG*
z&#AwTIk(ODM!;wF&5L*Z55hiZF5|wKuFbAN&cMqQLkj7Y-n2}g;7eFfZ`2JK#0aIR
zcoD9SN<O|OV#(35ETsTAYt|`~fUjY+g4%g1I_@?+8E|rS=YW))c3$Le0+L!%%;by$
zZ|WOjB@C72+wO@<QV)Qo$o*N768Ia%!-KAP;TFb>+Y;&e9b~^~&*?oY8vNwOP(8Xb
z^5!M)PDQ3DDHWPG->SBe%_zPk45-d*j2q{%dC#Eqp1{y^B-3+hseb&tP@-nM($NyN
z>nqB@Kc|U^uu3V!lDx8n{9|=)14JlZEw=z1Hjbvvf|B%-+LQpA(gU{T<q!lsk+&(3
zHG#rWVzXwo%*D=xwz`cm)zyY~lzlhYS{MboHYG*UCxTO!eZS0<;9)qtPdaJi`?`sh
z5;jv?T_91aM{F|rn1O*@#o+5{V+zB5E-Mf3+)RY8EBvswM=>^>RLH#E&){d|0{m7h
zwB_t}%~kU+Ja@Z&q4u%eRBv$1V9sPXiM#F!#g9{N3=W*Nw)nB%BbKnD5%WlZ<%thZ
z;D+xo=#vq522C98;fCi>0z!~_2bqud=UE2Lf%&rdpj`C&e)jde@pFtdzV1{q+`^Oi
zvKp07RK#;2=D;u`^PXK+l&oKPTZBN;6e`yg53^9#UnIA$TYY94_8lUBmG@ZI^!x!D
zD-M>Tw&cQ3#fhXU5f!Ck`BxGsRKCo^8-{Tc=5Zm81j}6CZK*?E?pN$2O)Y~cPy{v?
zOQ<DDS;b0*EOR;2^Y(-57aCompCF8gM|V==#j65~BC=>7^;JcV=njrf|Jt_Z?Y*7Z
z&Rbg=K{seBkae8)G#J=NXTP#ghbT6**AuurU+rClQOs}K=Y0p~k9l=G$fGp`fs#x#
zSG$vSkEkgQ6*%sz(;!1`WU?<mky{iZi^gCUv9^prXt1xbk3j~6SpqSknb5Tv-@pD1
ztQ8l#)9)X$xUCr+7Sd(b_Zt-I6?HrYe!@A?(Iak`_4xM5sYza>$laM`U%}5r-abfS
zlNHg^0j0g>g-tW-B~0u|bdYK~?{p*Y!ler3H4LS?Vgg2HFRnKXAx_gjC136BZ!P(V
zgFGRg+`=WIkhRZ+#WG?tUEpb0gW+g7-9hyoS8RoL2*&*#((c{rgyH+=_JQ6R^V>2y
zr0c3I6*NWw@jyhqwd3WAS-3`5gm!s*(7ky>x7Rc}sLCh|NOTr4yw0khDr9)C0&HSt
z{!#Glx!&VppKV0n2Mfd9HK=tDM|?%_19yYaLUkz>e0i(o)ZNEMKc&`6+wQ(+n*LBP
z(GH(x=PqCRn^9*0q1>Iz`C8ju<MBa-i(Auy?@S8OKNWg9Uk9-6=A;_o$5&@b#`Aio
z>FFm*{De)$({Z=Q+RYI_!rrfao%M#mc3dTfcr=_T_ev(I$*I1{0xxcyGhcXjGxdQm
zcY7=f*XT@wMRfl4hn^LS&WSm}i54lwMwiI$I@7HR(IZsLxV~-q&MDC}i>FgdwMnb4
zFD_#Sghkixf%Bnj7n+TjuTeYVDY2X^p1%mL;LF9wW7}BA_KCet@v(3+F(<4ZE&6i1
zbigNb)*AUTlT!x^m7K+=ZE(Hfk<(fq&W?#9D@Aix@LSxNBp0Vh5fL#YW9GIv{k@;(
zMg>E)e2((O_U%fwn}v!`Qe%?^>AEWt>6^LEy7lS3$LrvOmhR1#%LUQP%>#ZjEPPo-
zXFeB}=&1iQ!I|a;3m0LF@xBw~(3q>Deu(n5e(XfA51M@HW>Dd6LL1lrWDgc}EPzod
zW^J5~bJGDCmi4u#rjcd{=q*qKFeA^=1QgDBFPB|s?Gzq5?n2I&-9?|_5tkbXJ;z(3
zlqu$c-;T*O1%88A*5#`LE`B^CGA>0zo!Cu-YT1^g4PxE+FeDkT-4$_2!remjyH-bG
z?DI(>H>V`J*@iwhOCQ89N-^a8#dbaQhd;qz1;CbDo_;`W2{dP~>#V(%*2L#Duq(+G
zxg#x+Fe$}veUn}~K%61kfUBY$c6<k844M4tGLqG?$nOIST<^!LG)F0J3cxw;(@w-o
zR1RRoN&?1lS>Ww^#(M52Y6DQH^mZ_vEm#Nvs-NxOSHmYH41rZ&50=U(Viy{>FfN@0
zMF*LC+C@rsge;vx2)gz4`;!Z}7sK+fOw(PY>UH^S)_)MiWX$?&^~!kI^2J6zP8qKH
z5Ji{%?v)yFqS+!2YV$hpnXTY)ds_J!$~^)4fhN%6g3p>pUm&h;4naU-y9YUmKJVdM
zMQ4Vcc(zOR65HF8;tlP{nZxVU1N7OsI*oOOi8Hu}0K0#>1-^xa%AugRa#?AU?3I%^
ztDgr<@==H0l}F+_&wUm(i(?A%{ECa4zQg@s|7d>x3lOcv9&5aScuAQ1j_^MBT$n_o
zfzHkB_g1$uv+cFSU16p*BkU-FSoll&U5NEywVdSh=>r)C0TzK-z^s@0R$bloI`s|a
zZ!h1@GPJFF<FeWPf!FbN?uDd9SJqJ{(z{#Q&URgpWLi|cW5E@aY^|QZE2Ex+m5r8c
zoo3*6flLi^9b4u$k3}-KShhZ&!wR{8&JxUzCqY;|FZAt}xxS5Aziz-edEIG5m`Y5l
zX$#>R2^*BJ-zNA6BaRFO;{$c>b0OBxg&EEk6<>B8Aw_I?dp3wW=t&cuF6kp%2(S7W
zF*-^~pvT(|YcqOA;K-b09v;Ko;JU9EQpMcGq9XH(QIK#B@bM0x&$C1Pc16jfiaCx|
zkN%T@_Q@9J5WZ_UsSssY$PzK%oId+oI^eBc%;^qos!;w-n}^dc17j>4KPEeA|9rpy
zD^bB?-iH{ef10xgX5jbCD4o`Xz5?vpZ{{Y#3hzX#D|{Hbt6ymzD{_3^dVF2u``??L
zcSOl7K-vq*mN9+VF&CRt>MOO@{-JQa&Nm2nw>|0D?f6@5D7cTOMSejM8Kgk(l4hG1
zTq;}7NXM+V51+}p+pazC)>5$e-I+e_3AWiWB$N5T2N@Hb=(2qqeAa>(lfKkgTKipL
z|9_2rV{~O(6K&A3(=j`?I=1bkW2@7#*|BZgwr$(CZS$S(d++zgc)wnLos5mO*4}5;
zshU+aCj>Qh`8NY^B+qh;Pa@D*v(L_OFc%gy2@F*}GGDxDo5L&xs6Wsr^vsYa61UAa
zmpU3qar2uItvl7COJP6<d_RQA-I>gdPRv>@rwdBbRKvGDyIu5Gxu}QsKjlwv<|s+T
zSr+_a`d`s5cPbA66gxMv)ks#^kC~#Y-cfx|cG7dP59xn!+nd_!c2U6yaVQ^l2f+VP
zY`bXZS>Mio|5ND{wQ00dlWzYH`51A%yc+p`LKYVK1^{Wezp`q1BL98({#^|kze?tB
zQ;Y|~e^4^!M={rbXK?&?ulxTi+s3gj{^yDq=wXk$K+x}CfBR*=D~cs=ie@tf3aFOA
zQpPt&B_hAQ*^DYvE@2UOYg)j?E0D%XSHS))u`&hd7fb6!z>diM(Y^|8N7MhzN8iLP
zy5^r<O&z=@My#p{>j{7hR75GdzJ29oi!_o%Hz3gX$fajgO(D?+<Kg3Mu3~lMN$9>j
zK+<%_75DyICiY>Z;3}OW<z06p$MkFVYx!%$U{tnXw9G3!ha~5cx|%?_GC!>fBmzOB
zz9*$Wj)YzO)M<Yq4Ndu$(<6$uNRe)_LifT#h*F7Hc{^@uK|pwT{nEDvoDTT<6=X;F
z2RR9bgq|^+NxBQs0<3lh4*^f}(-ZGf`Gcw&{ZWJ4+gtK~dtao$QL#(nY=`zFig~D1
zYqH}dDCP?P6hl!&{*l)OFw2#rXvhAv%pUNbpOtf(!eSfdB_L*kjXz=SMy>QXVzwbb
zqgfjuES7^kx(ptE=dvMH4S*PI)PGKKNMg3fi0E*OXmxtG@i;`rX?4ISi&*!|HNfC1
zneV+pJ)O!Q)cr+`8zqAj;Nkwe_xHO36S*R&Ec+~<G*~VVR<yinQzNxs>Z5>-`z~8p
zT4%`kEP@AzB!Dnzw7tz9(JF^VFZc0lLAg3NC?oj8;GHj>o|SPR8Rwwh@v<)T+}{^J
zl2=70O`1r=!~|_}Mx7nW4DAA*9>I$c%**wnJJy8vWY+zK341?$`BX&zb&sTIp$1{Z
zsFu&wm>C}5IiN)8CM!jhcaAPKTxm#DTV!d!B4E20JWG*+M20(}JM;8smg}WI#*!y-
zit;2_Ze1DM0h)3Z3qrtRgs63?VOPi~yy|y7@&q`Opkt~>K?{Nmf&Jeba|sDco%-Nd
za9RN!+@g9bC+yDcX6$2X9~-0FM+%!@>h3!)e;@vb2?g{FTP_kj`~oC&Xh5>_J#XB>
z!5ac%*6aXZ?lgf^Y40!%41>Xn%$$WHI<{#2pwjKg)!7;(xB)d)p|N*58n}BIedjl2
z1nyD|GcRj*4QsJ4Gpiaz9HihPL}aMQ$)$5__3jJ>QaZuasR%tJR}_XaGC{#1K0Q3R
zumqW^^vTw6DQRFn-g<gf-&F`XIFR+C(S9i{BMnaA1rS&nsG2c}wfX4?zP>PVadR_x
zz29Rn!pkdsOjfyjlX1P?+(&q4#wDV_G|==cTLV-}gHUP}4Db8+b;>^nh4hyY8Ug_c
zqi4?qfZ!rRpJ~HIWbSQi&twuj{DWhY>k07_Jy`;nB0!qXC<N7qQbRZlgBg0?j-v{Q
z0+~btr7tv<HH#HP&)691a|@DO3Hp~>*T7?5upp1}tiY&GV_UP9_4SLOYRNxdF)8}T
z;QvQ)`!_?2nN!5xlM2larijcASkXb%wYC>%hqY4!{mbQFtL+5(s=CjdLR?F}!l!gy
z3ls1Guc^8;rQf8VU(w*S{1ASc=<Pb;C#!yYU`sAy1dThx*EOQjdQB7vB^?`tFnPPI
z(K`=A8~~IUas&3)&?n7<T1L&JhyiuZk7R4>+3)6RTu635Cj&YOxuN6Ag4;~?0l*f4
z%4~EIC8w{=?!dNu6v#W-WY2T_t~JSb7_4|3{%satJtqrX$F!#)G#W}G$`PD!EEOSp
zLt;&d1reFkUnr)m5K1;Ew`e+iANsU%Ntn;STcG&Sbw~rl(YB-Isp**rzpufDCWH@!
zKp9vIYeDp$8uPCR%tx<IcuDn}5hO~()-YoQubh-(u-cHoMl{G3&;-Relw?O?!W?*r
zvSRf%GFye}B{8{tUpR9gwx#t(K%le455VJo%~>6iSD5N~$`DPYO{ceAFrffVVzy=D
zaKekAr?3d&#pbg6U>j4bMK4`tGiZCHN+|6viq@Jk+QX@i^7`ru$9PzS=F01Gt4hCK
zZl<#Kl-K?C;k$F{`CFg6O|~;yfl$&B!05uc@p^a&;4-6CwF5{20_R+0imE6d0_t=8
z@BDG0PB8!?i7G6R+{W*La03&e9Yb0}{2Yix9lvf@if<9koCCITIdnHRL=|WOChx{G
z!kxaL4U|YZ5XhGs92Uc?BjbHK>jzpMou(G#%#$twDHldQmi<5$zporcA`OUr0|vb{
z;>m|RwrAY1cNP%$8U!5wIN|fPXnPH$F~4%|Ks+KYDp(?NeKe~tSW~M;^;-=v<(iOl
zfe3Zdj1Mn6mYFU;mX3&eLRXQfUo#^(Jf6=4oW!=Gb&?!uVme-O$UO3hh#xqV1s0d{
zHwoj$-v02~EzN#hta9a&y+uYvwVmN@FluMq&;+A2hP_GSt;)3DxBQXR%XV3Hf{^A$
z@lQBIX;eg#-965(U7+a8Au6%M){N@@0?9<WbX4Ew9@()?*j#TR>WVUPn+;9ZZk@c!
zH!X+qv^l|G#-BE4;qiG@RatZ{*C0HG;zS}&q+5D8bRkG_p^-)&OjnSeON>wlVsC%l
zf3CE`cu~gi!f$PgvQiT2di!gotsAG?fI~Xw_yL1AWT-BIg@_+5pQmSJtQ)_wPFM;H
zqeNe@elEL6x`0!jD0*go;yeCyblf;Q%eWl;DH~VG`IV(VRM&7FB*{4n9q++g{<(#I
zSO-xSA+mRhrt*q1Ex$6?TNxBXeNTzG>(#(8r*8-;V`{hA2Rc^Dy@J5BEcFD8X7_=f
zQXYipe6;JbhMW|z={l^!JSAP9KPTEa8-=9a5@A#~Bo!eBT-C+oDW4XdzwhkWJ;dda
zA|%<X67Ix)*Ft~9lgPI(S@^*<vTM+`#t8CrJyN&qb}~q&1!i;kG<palg4#|{W6>xG
zb+GBgyLz6BkK)VcbH@=&*Vlo`MFDv?tb>TturK-WKB92lS5&a=k|itgY)j--N<2sN
z9t#9zR&KB%-4a!xoxwF8@u<HX{q*vJ;VWv0<F>k|;*T7r%B%3sE}-Q_o0!l;Ht4!0
z>H-NDF{)HJ_b@4$nNd}fM&#5c7N?bTT?qv(D84p-4Jl}45Zi`mm4;o14x#MXlw8|7
z%4mqFf8xLkEEj-4chR|X5oZv#JZt8_%YP9iU{}mc#WTDbEev!QhuWzOCd$RqOXz2M
zV=pQx`m6k1=?2o^-WOd*N5Bj<U2PK-899CpBps77wEE!%L_<b=J4wB)k4P$=?Bi0q
zke!K(h=SusYA`_%AYN#PIkF!k<BPU;jDgqXA9^|p@+j`4Sj3_zU{2f;@yM?Q6D|FC
zhxEBUDrr&nSQ42;fBfJTDW^wo%B|_0ZxGmPb}!LPUs^}x7-N3Ug`k}Ed^MZAz#xP|
zc9j`M1-D58HM#f0PzuMsPHD2~PYFVY*_)&Sw{P8LR6zi^rFn+;=0KRg=;Vm1GoJOi
z8osj!d@q@-(Bgr^^=0W=S9|>w)eP>)o+f!;;;iWkTzG~~*YNA~)GT9HM!dmQ=UwRH
zkDWMx{E9q->37^`_z1yLZ9#@6V;brfxv%9e_V*yeQ4`3bx1T0h^?dKYJ9GI`wXg7|
zA+YkXLXC`JsUcW1XOre*9`~7N;M#k+2lbA05$<lU2HWOA<wW)T#d%`&GD=BErEdGz
zj$^0Wqd)`)!bK}tSTO2CA$sK#8Ow7ihbS#lV1JX*opsm-KAxb4#N$DRQoC0~G&Fl%
z8IrzGi_1LSbTj|4T}t%OGaVSaH4j%u^4QVS(ex9WN;pb0awxr}qutJqyR_ico1sRv
zT3&?dRZdb4nyoK%Z4o>o2#mV;m1f3qA-^9j^_OB^kG=_8B|C@Vhk@8~j5DJ7-y|Rf
z)!1%j-ba#SGdue%ZRJ8lqN88o@0`2F*Z0L*+u^*O%E}iymj0|V-KCkSyiGdx_5sw?
zX%Gu_`lau>X|i*`K3Z+|GHoo{@ZL(?4}Lqikr(22fgD}&NIJO)JMskmUcSpWy>RjS
zvqyjqHoB#235h3Y*N8yv#Z3Va(VxS8jRqN6`JE+tzPK3o$7z7SrZc~9BbA18KVdf6
zghtl@GriEWZit5Y<M!S3KYy`6wMj`M*+acyN|yZFn{iW5(cj9M&v^kEz1L&^$#46Y
ziA!e^qNDX60%SK}d#AsR6+x~!{|Z0Pg*ij}rIDJFA8%NG!H?VMeZIEM2_Lh~X$R85
z&l@_9ye=N~EVA0ZwRPnzj9$^QIit98)`_V5%pU~wNp>h<VPOFj1i2;ZtTeIPUz)m~
z4||FZ+=XZ-=?CXgSA;`{nj4#8b93DH>{G&O*efoEEFL>pYGh9oH%^4NlvTaGIBoS<
z#>^Ekurno#Z!sE<pf>I|faF=vnL%q1)Od{3d$XDwZQpJ;>LMudA6@WUwKfWVdw?y7
z0)@V|cGu;gzG=P~8tAy;o2*-UUN!uo#y|x#(HZW`4DIshwfO=;%|F#0$i|(G7iA4a
zqh2>~!8x2W5o7mqMA^Q})voE9jQsfa4QGWze=J1l%47;;c*Uvu*gVM;Pk}z?WU}py
zCxR!mZvwrgiKh)=;L8WiBm|4hCFo$c<ep}VVVP<R{0C_Il*`J`=CH-|;|P|B^ecf0
zI(FkAWpKW62F|HM3_3)2o30>XvubMcT_uHE_klco1{Zrn#(>M;ez>8^yAn}!rgODI
zbjHS-U#%*keN)?sIP8!7-U+%wV^@XN$7>HljYzDtcoZtGUY_!P!$Z6_{NmMxmnGBB
z*c6d>wQ>T=^A*e%UDUfhn76jJ?h!`<qWok8|4ik9UOyN^JRaM9c)H^FLVYJ%NZW4B
zOoFswv8rp>l{&~)ZaGNHZOw_~{4j}D&9jOQzJ2xp=C;n6bs7XD|0qx}src-+N^*Ax
zUdB=2s^Xt{sn6hE#R}Al$1Qp*-a1XdO8=M#yn+RKD|1r(AiO+0KRd;v*olv;nHpY=
z1NTTWi-?FweG|iaPL^s+gZM06Sq@OyeiQ3^b!>Z6sVNGwe%KrS`r<MuD<%dR8WHi6
zy}vz;wA7SWX~Kq%wOT;hIMfh0_8<%wd)y=0J-vGG{CNKvF6BE~r@x8X1L8Aw<K_23
ziG{O!?Rr|Xe*OGDX&vy<jU4LAh~y-Ab9q0lz1gqY@yk{a$U@21F0{Vl2GMuL5Dn>*
zC-;il4P;^HTw1+lD>TMuUg&1qPJtAU@cQuq_<Qc!@f(S)jgGZkU{t|(!PoHST`v%X
zG;f@VN;pr6VhyzA-OAef)b>Wd7uFIVi7Djc7(39=p3g90G%~bV*EJHXs<*%mf<5yh
zWqHcg^-GY4%ittK=iVU@)cPD{m4BZhMO*zC@)Eu-b{DT2=DfI_`%KC)r0dA&RvXx&
z;{lH!vk>x-E3irZ9bXN<-<6Oiu0Q<Bg#n8roSu{5($92@Q8=&V%Az)Z=--IZdYIY4
zQ!K%t=XqDBN0ssYr?I?{Qq%#XW#W3TY0b7M=5JK4=xlo!dFAyo78p+Eh<BzJdddBB
z@$-T+%%K!1PP&6aaq-JWW*F%0Q&kpD12w5V>6>_@S=LK3PT?BG{xAn7D+bv(K-E^H
zq3xFPfN$L<h1lqTtPF%n&#l2(;tWUG^Vn&blTDTKyC|bm;YnG^t@?r1V8Hsm5{GI*
z{Gu-NE42}gIrQ}v(KyLZ<$}yK89SDCbJJKt^FWkx;kRyTtSc{idv@O(6l`WU#8C(^
zPBPPCDGT*53(tIs#tKy*Enc3$d7N4uCF|u#C2SWjmqqG6=b&!zL`LJ8MVoZZX2yH}
z>Jn+w+f7zg=0o-pkmR|CghPcBu2IF3PV!r7t8QnvE?V=90jxUn36A*&UHDL|8lwoK
z<pkp#iIzqh&jeXcb)&G<^UB&juK3s)P@v?*MW*OmYBSOkM#lg(mB)kGRJSznAY?~9
z_)?Y=dKhcUL>}<YgnGT|>Os}x1(+YeqAyLy)#%i5YVk_<20!gI8ni;5oHxrT5sc54
zLmC(2U)+3T59`TkD`mfwt`@P}VjT5nrAI>SktLtgC4)F!*jXle(KeiA240UDd~mSn
z=V7;A98SDlFtC)=fVGYvBG4L>Hm0&TnrQ#L(@=!|z-J7txx^ohxoK%P<9&{eGy-_%
zWhX~r4t3}43h|@>D>$_0HI9;J^mthN#bhmor+?|JS5(!7Q?^+Md2lS`bENPw+2MGM
zf5{@Dluwj>d}$ggeEG=t+Ezw54p-u!80DvdqI8_axk>=d7Sd)-gR;5oig)Q^9HpFa
zymLdE(h1_&f&*3ehg&h_OMMV{Y(%r#a>HI{?0yIL*bMsc<hf+EPN?|pcS)mun0dtF
z_uSIz=~qQ(%CzJ}^HJ3vTIIU@$|TkXb-fKj1EX>!2gWuR7bSeWHWr@G`E@Mw#aVjg
zJu)R7y2)QXKecuVdeRci`+(<l?JIRDd0KNEl%f*{vT_vZIj=RC51bA=cOC7^<`7K6
zVrK`R-sVWnkN5{bR#DvqwVEgUQ-W*i?vItm;;xf|I7iMnXpG4QlnfMWMFcZ#TCY5T
z)Y+>SxRqYlbrVa<WKQ+C;(J!b&15ss%qW$_0l`NnRRe-yWMci~f@(qe>gz+S3k?n9
z!Zdi86$s#0dRvSitG$&m)%IdNT_TBsX?v;>U!h`M#C%Y1X=?#v-!3($#eg#pYhf@c
z1!BwA7!f|AB27D^NG~v65<E*GL$gTV3L*T)LJ$8t66nNS_i%3qeWHfWp*Hv~J{w_?
zJERB9eb<M4yk3Q#_u+`KbM-XLfdO5PXuQC$b<giOro(hpoee-C0oe3e<unuPQ(e3e
z2_Y?LyA@eB(HKonIKuCxT2s%@LS?lWk&cgT)<KWuAeWNN8;O2B4pk$qtY@KA^am`0
zs7j?ZqC=(RVeEmGx|+2GP59_OoTF)5$m~!MEBL-5!~PiSoCt2psXoGQ6Q@{ucL8=7
zJBE)F`@ebdX<nijcu=38inKT2*Z4`ae*ZYOjG*7`ezKF%Ql+4t8ePRyBr5|kkhd-=
z0~X|z<$`2~W6kV6`h^55T(5M4@#}^`6-1K9GFxq+oIZ_gOz5y?A2H@B?y(nXVsdbc
z{!$c4(QYl+Eh0!-dx-Nu+QB7LC#*kPUfIo^ntpf6AkC2`q6*F3#&QEk%6)>qAqw?k
zfH!{8`?YKp>{mKK8pe|mc3-eOUv3M@Kn&VmAoHj=r#)hFVDudR;QWJ_4$PjW%)iMI
zRJgNHi2lr?04xqSs=PX`&5ZYY!v=eT8j-YjBGloG-IA4Kz6rrUC#?xL9e^96DEc%^
z!z|RE{`Tm0ee40p_@Ia1-+LQ$#+U-zy?;lX>zAUHH$YI%k-Ic@uCprAjAAs1n(YWa
zM{dFLZ{Zn#Q1wuJ1)yMV!T^<CC#R1q1-Y5g%dft%kW!rruc^;F?M|#<z@uFIX~bj$
z-wNHaSNAvS^AIpbt;~1<H0PD#Ev>N;c}BC3Zp42@!cY1GBmTjZi|~*0)BgpHi!hIs
z0T|m~RCx{&VI~jM6c9i_5(uSFg@Y~&u>$CpY*)@ay{-fIV7s5dy;Nw}1&0u1T5P-^
zOsHI<7JPi_9<#oMBgV`oWGI4})TV$ih}&)>42eNtw1}eSHUH#dO^(6`sA}MQ0oa|y
zWMX}oD%bh$el>4F{Nw^ldWQis@yol0T9M#aca)DxsJ&Qk4OA?Y;g^(@q$SuJ+yW>f
z6_SgM{^{hcxq&JmGFcYkSD#St^xy_KLEjD`pBc<I+Asm-x3P8rYbL^vMW80mkHzid
z>xOFo<<GiZ0CmnCKCgibxhj#CM{CniX0mN@lDr~>KbxDg3<@8TI(H*96U2M;>MXgT
zu|J<wXrCIsn6D5Q@@UC4+?R{DwBvhjgeBUY>?*$A4-SlrMb9oH+hCf>1dJqK&Ner9
z3h1o^fpWk0YVx8ttjl+v%RmnE{24NKlq~0_DqgkLlE}l#Fd)?SIq-LYOR8YC<vDmC
zb(R05cr#nLz}J@q=IuF=c5U1Yr7tBaMP3`UmPac!ux+gV!~1TBYi*F9Vo>`GNh|g!
zMopc_>JDTjGx&UUB-|azt6$rIBKPfOs%l@=WZIL<BS7A{xa3>xUAVTMVQ$sGd6vT;
z&E_(4y?ylD_rr5-BE7Gt>uQxXs~$x1kYsP#7l=)oT843zqu<Oi{wP%iwzRY)*Xf{~
z1m;{H6_mG2D|*xj*LnU0V)S%)kGmC2*}#(IzC~dllE^nTWRf#+tTz66tESU4Y{F~s
z!p=@KOJNziQCSsBC6_-iX??y9Q_l(4T_HUBl=<zlL2v)$lWU*BqAWCl+W*j2t!1cG
z6$K>-?$vS>Y}p`j6q$kW9va#oBvJ^gNV}XO1&!`@z@<O*M}neGQUFVftQx2euO}Dp
zNd!UXIp0ipr}e`Od)<@pJ>i?yEw}Dw1MWxgPIBQOV$*8{`6ebk-eXMu53U30cda<-
zlP%&8$h7wDwjq2q2Ka{u_$3=Er9CKuOmsjT;N6e`Y|o^0?6+e?;4fDT(a`s;lAx+|
zMk|iBTmduVU2}`UigVI`OQrDPXgLeYr}oXL3`$VYJ=)ghI3ko)0Ew#!9_KfEj{P8o
zR|UK6;9Ib^cA&MczT^+P6W@^VG`XCrbX5_B;TBrNdQ|Ax1l!?6=3;rUFdlm-@6iO^
zc^wsoZU%hy6mmoy5H{IgffSNY=p_M2H_3+zG+7p2gu>9fT~Bz{7*hz+T7}=9C4g2|
z5d>nv!?T6HOHh<;Z}VVF4&HkaRnAsD8nR8E1s?-DIWt)UrKgL2^Y?6htW<z%Uw6%o
zNe}(CGTQN7^QAf0D<|h^Cw;00l?$T2{|M}mzEMpHC#ECuqLPmy@tlo5j~$E6Rd>fv
zugU51yDR%-&w8o%5&6qB-xoQ`Ve+}EuV@pGy%z*57}X3QEh{ZaH9xsQl*_u^CKG~!
z#0Qr0Pq#XqiSW*911(zptLjWbPo6VE(2%7hvYWz55;*Gm=j;-z42O|5JKA9P&qaF1
z3chfp@^+hOPjcztb%+9iov`apgYc%cyWksh><z-91Qa}=PA4F%tMQcnlGNE6`2M5X
z&dXN|^(lS#b#b@6NG=~K?Yva~ZU<=2luM2JwC^z$gZS!t*jLZDC0F2>6oYvV4$U7c
z<ay)9IsA${vfZ~NJ7m_nu9hmeE3iw)GgJ8LYGUc(&||Jb4b<|SQg3u!e`>mwGQq*_
zDA+3&qMC^wV{mbzdtvsldb*T$(>R~Se47dv7Jj+sbsn)|0&bhl5TPtob@#e{|0apm
zug)ceNjdz!zqp>>_R$@-TuZn<y!0BVzXd4d`ZM97Lr!165zG2`*XK=oCAY+3`p#>r
zLRX1BUhhZY+7h|&VxrGfe>)XO<TWI(+gICp{NU(_7pt_y&SCQEGQ*Bs1`(VDh3y@L
z!b$PPE{xTJyB^)h4>_i1T&G30?S+l}A`V*w$BT#F?adMcnI8z|>kXLc(x^f8Bat5N
zA|Xa9(wSbxz-~r_kNWG(++!w|kfkoz{rKMX&;h$MZe(K~^Ozcqmi&AMike>~kpy@E
ztO^|<phSvKu8zW<k33={TC#4{uH$Jwd4?nkmN;9U;eorGc64$ZCKv|@rv6?sxKFIs
z3@GHK!QSvhKf)nf#GISHzC%0+#uh^@O$i2f)xuR%IDcIUyyyk}C8)8A0d@zkch?cZ
z*3JNg{%F+~%<gFYP6W@!h3v@40z&$rEAKgM;h`2dd77n-$4>N06_TyOpHX!V^Nw5V
zB9IAzj#<aVRQ2h3sB5T(|2rWfp!W4gQX&KYMv~%D<0*#6F&FYJ`tR*E?_T;X2ly`$
zV9<{K6D;`ObOfL5pTW>sT#0@TWkPBq2b~keVX%1MRQz}ttnm-smTRSt(RuU6M8F&i
zAJsi+>!>2vh0`(-G&v=*qU9z>RZeO&;Tdq56pE+3N5Wx3*|1d9C4Ds5qC8I3$O&%>
zUEKm8pRph1fetdw(IcSa6zv?{%^DD68?LwkFC0OkXo2+3annc~#*aiiB&f54a{}ox
z_tVyM_TL!LAQZ=^$lnz@B#KPlAsOUttaWgKcvY<SCX5IVs`kPlEblLrVLa0gfqw|Y
znMdpq73UA#sJT?)i_UhN**v_VnX`MMtq#-)M9Pd>M?Vt$I>nT-sq9lxll?JiWI6EJ
zEtlhVKas?K>2$P*FgT|sN#9X`_u;gSFa{+bz6i^s{UXxLKwu5dlDQeS2|?`_YQ_nB
zr{mjjPiXz&P5bgi%S%vRR}Lz`fh%X-^&RIe6(vwW9;B77Qvgqqh#sIG9!~T0dq?2z
zY%dbV7(w^AtQ+$1RL?XovYY6j(CU@{RUpg89pdEy-z&hbm!8;zMBvp5Y4vH6VERhi
z8ds#*mcQAGa3U@}(g=9;%J35WENvaq*OB-t-R4V3m@35rGh?AmY_-j{W!b(bJGEBb
z7X+VoYlHF4Bkno^EO=bN@5X!k>Zl|rUTTg_wG-YKnvc{^`FyO=NfHKHtZ|5Ey$d(b
zKJ!~Yhgx>}?+o2t9~Jr^#GkcS_=>`LhfT^}m(4l9VlqFkV_bon18{oV0j|Qy6+Dxp
z6@syfO4DAWk47dBefi24n1oC3gL)F{OHQCjodNyTU>q(SX-F4P5&o4$MD(x0^4+Cd
zooqnu<IjnG$FXv%uX@>=T(HmeIG-Auu(B8k^UC*v$&MfNGkQsN)|75<pCWU@yv?ZM
zgm=)5UY(Z$Z<lB48J+{30!n0FC?SwS1Ezd}JotIV$<@WT9N=5m3Up1fok3af3AV?J
z@|(0!q8qMi86ZY*gwa3-7=<IE-=yx5Fp=Ogc|ZI`gEgvZ%)*7vZLc1agX)cQtDBl>
zw6C6HNCq!LIb8kCZqq>aVRNrT3S*FCbxl(sBnn<)rsc@5PWC1DXupYua%ILL`nIH#
z?KX-lc3EZ)r2i&pLr<&rE+WK@4M7UjiHV9T<GBBNKO%7<%C+E7k7hIz&GZg!QEk}m
zOs&Hu8AseNq-TGn{-s<Kf$miyC|uUZySgDMaMdhpvj=#18i}6f95UAS8Ng76nA~?&
z`;+aVP{+>!iVP2B2iOCd(D}=$$ve=;VyrXUXlrG8Zb=W=8Bd_jxfgUUg#P`~`qVzZ
zz`^8<#ZLqxcR{6(aO7xcCEe`O@)hvn;gVe$YNdL+{%fA<y``}07AI)gjCQ`VCD`d5
zMuXg37x#?u{h%kZRr*gA$vbWA5cRJC2Kz(IZwO$V)T_U-!`1~>P3!f{^(kr6HUct$
zH!lKGN<6Djux_+7Mh3Zf4?-Ct``-q@qUGwK(4OhKl5;ubIGm7U6gKe1k~nX&?A6J_
zRIvia@$&a(q{>zZKI{=?j)Z%?K4mptJuzB&vCe6p+S=f)(iXG5OsAO&1`5<Zrk;>t
zPaFGsK|T3JHL#(exFGjK)F`b*9X!wyt+W&1X>*+RxsLQZL402pL^u_}aEt?c^3gW!
zuw`~vcPSFS*z>9Fk`7sw1ww@$>R%J`bWFqMnvQ%nAqwyy_@m@a;|uC&OCXClUHEv=
z!mAc-`=ia9W(9oE-aX#+?S&8O;eFDT{IKt;ElMm}Zvo?=O^Mt<EzL1*oWMYBQn3_@
z37Z-$QPii5pPn-XO-oC!+Q<Q=#1J81I>XE$W%V<Q#{G4&;{&q48k9nGKCx?E{XrPs
z>aBBbe`xherzZh=oWg`|Z!!(keF#iu2L_^)IIJrsYbV8%j-QbapHpn6gF?ZI_{w@e
z_~j5Bk^?88=Ke&tH)o-$!Nkw9lcn1mJvb;**&QbQL|bL9cq1oz2;m|gzgEWEGoG|3
z=a?^P%z{Y9zdo(N+sFeZinWSrjjOHdHgk1IsR|~{7iW8|72>QN<Z5+B+xn>(H^4DD
z$S@zorjjs<yu-mk7tI|!y+tN)vmk?<@?{!vFej-=M4Th$VdvVNXWVzMmC;#^hHI9!
z-%9Iyh4`pNUifeY?o{MszT2P$TWt|c2A8wn;C0u;IM<WM4TjStxA$p+1;)K1Ann<j
z8|6Ty$<7NWd%4d41;Ms7TrEP;I6)k@XO~E0Yhx1>t~6dWzIn0RfUAN<Vb?RzTX|uU
z<75-cTM#=h^TPbJ7ME(FC2L0(ZaP;I_X}RN;QS9y9@^gOlQ|L_Vw$&RloOE2UL_TG
z;lKdCR#W4oFQo&ey-P|{N&^Ji9J+}qLB^BXIrh0a^bHPz)Q9|P_3*ifr8>wD4mUT@
z^SW8JptoG-)8#7ocW=$$;ANX(Q=$k+uP4H;*pK+_eG4Wu^7Y<~BCcb8-W4o(+^zvx
zK!JA*yeJtVN9dSjDa<FbKEqt|ESB7Z7+=@Que~D8+}7obT>C*MCfemX=7Hp$RwiYy
zMJ<0vd&KI%;0>Ptn9qk?w+r00GGd5MXtUVpmfx2*crkivtQJ}?f1DaD=g{Bfxitfe
z8&>6AhRb+g*V7mSF3dPTe4Wv13sJ=7*1DM#cUGqM@3`pHWljyFeY0YE1s<>ZsRC*K
z?Dl9AU;SvvmB-5fA6^NcN?KuU#)9eYTVU{(;eMoDOsT20F4w9ro|gR^8S=R;2?V;*
zpDNjD5G_bN>oBi<^zk9BE}Mq3$Kp^pF6vfi<#aOCwH1-cgzM|?$LEn}StOr}iBvtz
z1~7Lg91*1EA0$vJmBQIl$8Epn^Vl0M*GUpRd6k{sG0{rlbE?x+&=oqNuRZ2tZ>?^(
zp1@QWE56{o!?oi*h*+azyG#_OE>-hzRB(=gqT<1>{wD066Z?|K5bb)k+Jf@D@0uBs
z5&PhHm-aUV-VhL-@sOg6uG~1PM9Xqd@?l5G5{K^T=y6bOruLxWi#^f>l=reV*!5K@
zZR&WD9_IuArwE-azJf3XcU-{L9j*@A=mg`yP33*!*;75BipF&HR_AN5Za?miR=Yi4
zF2(u&Nfx;w`U}9%9L@OPOX0!dKO69zZ+c7-!dfb-PZ%-VcY~X+v_akHnS}?f46EdW
zvRs|ln)sZ|=}!#%BIWLhwz>VhLo^l`3e1{KUlywLA5ohz!6(&ek{ycV)6l>!l+6r?
zjEvM2DCA_!olW;M+^=;500GOwfbgBTaGV!RihID9>E#f8prxyb!%Nhm*((Y^Z4#P7
zELOW}BNzZVWdDU6Cb)q=T)rI5sL2r*0M$bS^G*wU`9UfwTki6&fZ*jhZ1bygftg$i
z0B-vyD;hVvb0O1W@>i@>sGa_}Ue5lU<<F5Ib$N2;Jt7m7qQ5nFMX3K)&E;64NZ|d0
znIPU1Zv3k?Iu{!AFI8EN<B{0kTL)q3+y8^I2)$25|CKC7y#KdNJg6mmHvNRibyCMR
z<PWmK%K?^t@z#>_vE-LZQf^)91J^U)9DF>Ej26Uer%(~?uHr=9A3TVEa}q@UG_Flm
z$lHl<x#@YXdJ-sWPADpNYRiJt)NZy+RykWZ6wL6B2uOSBIPww!n%klNWVQ?rBZ5|1
z@Py&h_=6=M<<G_(7-(FdxH4q#2MiKvZO0e;b)7ZHnh<^s=9+WgIoJ(!`L|koE-K(4
zjK94Ey}EVyr+LJxB(X54%6NJtvOMod#eryWpnAQB{I)#~T&}hz#VZ&|o-{O&)fj8}
zX1pPwp6J=*b-May{bc8Kgq!EF_jVXaSgCEmo<2Y5o>7-szBgOMdJ);lsp@g}0g!9m
zWE3gn?2IU~NbQO%CU0^hs)Ip^lT@m^LFe11X^nn+LPD<8Ops(`><P2Lu6E|9mq51+
z7nbzdTCHS{VS+=naiv*lwCg)JEY2WdsZgUyV5^>hczCd=ei*ZhR+$#+@bR~ycg9eE
zy!}eT`l<P)FamdLPA_H%6d<p?gck8`TvAiqI8~q|S;m7_F)~_lt{xGZIN9AXU%BKW
z>DE-VT490hJhn+tv*HRamj`qYPS+Q=AS|>T@r?IY+oInc^UU_9N-+|1@gDB=?j+1H
zejWdHYPKJBl~$xjH59$7%tF#}>@sixes_P(>^)(9trnT{Lo=|!Vs+S{FaOalamaGT
z2D`g=#b7z&l#s6ZdZp>;#$kH<J!(N*Me;r~s*cvexm96um)2@v;FeCv<qBDc0gkg3
zFO{|p#U#FtXX3zw<X}`ZbtYnFeYurzHc7(ZYhYKG`<oqjo)uj>b!KMuN8|pz`Qa2^
zAtBIaM>#{+Cm>04Q_wP#1i*%-d`posoZ%<je{QWs#~)p-xE8u+NX&V@5Q}4nY7l13
z`eaAbW~Ss_M$RO0vM=S<PEyukHWJQ$Tzy!G0lvSm{vcQCO)<jlu*R|(T-ljUZ+?D$
zRe=5`yd{qo?1lttioIyDL7f-;-}QR&Vx6$6LpyY7Uyt|52+l;rC8IrR5tX?-%>XHd
zOuTxv-s|5kCs>RW+XIEsW0bN~JluV@i>cH~daSf*NQ&`?)N}|=mSV&1y-Tu0k3kCC
z7jDXJgCZ;i37D;v`+^r$hCIcFs;VOl#+-tV>`KJ`<(Bbk#~xI|E&3ix={GAb{daSF
zB4vvy=;oVI>gLnZ0}ZVS2DNn8q@b-e1F^Cp9IPMky8fk+NXO#$619R9gcN<}xZ}`l
z5TSQnDf!D<Jmq<@(~gg*+0^#J2nSV1zy{T)s^cA}%S9<J`yQM6vcl5wG!^lx=bL%=
zaRWobaq$ZyYm<p*OGhu}(W-2M&h|c(-Glutr>>69#Ff2^`&N^t<{zjgS{$_^v9iIG
zE)M5UmtU!!>Z{#e_&8XHo=$4w&qr!4=<={AY4h**cs7iS&!DJuXN2M^&*cN2Z!mvz
zml|RzVt;VPV;Zk$*B7K2K?E*D^LCoOyr|fyjYhy$5>*~@e>`){AfGvrQ8oA>Y~*^;
zS{0`@Y!cVb_^0=MN3v4AWG`g2a7G)sW4te3@rylsF3G?&$X4?Hl+kT?#(iQ6P)mLz
z92qq|G?3tdYj#TqYyM$qxA#uKxf=Bc+KvTfVFdU@sO0tzvyoXOo9*G&o0!f=b2xN~
zFThwO(m6&-K+qP)kU|f{BqTlA<@PC*tT)2`H^nTl_xZgt_uUa;{;_5{LZ}slO7SFw
zvU+4o62l_vNX^Ee)}QneO9}pmLvZvnia9!+EaV2tV0f(;f-q#(1oFUil>|?l_o_Ip
zq*zD_*-!|N6@=@Jv{kQjCd5p*#5eOIG6UQDp;@_wWH&R@WQu~i*O#Z;^OY^+weR_?
zrv0T6#1;w(g6`7MC_iO2g1VNug*o_(p~8&|5!cCc&tp%0tG6$EgV;_&y@?igH$hvs
z8LHAtHaRVO6y|=&Q`SutYkkewF+d^1o#)8NFYg_F&)z#l#?R#_Nes~X<aE~@lXAw-
z>$Eg{ajQq8;q@CPDh+<i0-t;qo9D}SGmdI=!fwD>56SX(sv;bKv=|dY&DPmmICh`&
z!n+H1Zt4}^CBn^@+|NHYP-lc{HHaryr#AR4Y_0<(t<{0^`4+F?R9N|Wz6+5xHJ!Mq
zh@TJB7?a?Yt;T<>)vj7^F{yD<aLzg`CL@kAn%7~_uB0GGKFfpBX~msT!JW*27M^1r
zQW+Srlz~Oh#JoTI)%i-1OpFGVTm`uRYlVLMRq(*Ud69(}kR60rXS?bbcd{|PqFZDd
zu)xW-P=p;h`jxcg<fZ*Aaf5Slf7$maCK2OtYo#yEKB8B08c2xIJ0Q=S&EM`pm`Q7K
zD!Sntuf^C@e;z=@TG?gwj^fAd9`>dM(%mz;<F7)LCPo>I+>dSWaK_FCP+8Dc)>a<a
z#or!@Un|mF#|r+`mPh4k2mPrek+vZn+td2XOwT*f#um6ySAuiSN*z5Sc3)AyhD!t-
zGEynuq5jEB6@`DKKCD6UHlEKz%K}!D3%kQZ1JQvSQ5hGl^o6^O<YUM!AX*ZiD4Se?
zv7Y3fk$?mGr9kbo*4pAQjfXaxA(>-b{8V8Ey6N^ue5Wl9n8MRKwLA>(Ww5t<dc%|(
zJ!1Y?N-3Za$)zmubtx{8CP0pUo`rGiG=|h&sxmdZMvqcKVK4OI`QdwYIjE6o&C?qQ
zc+2rAzKsz@26v>G&g34-yo=U{X!0FalhcCIpVuTMf8YO(dzwy=D;v;nn(OCcTTm_L
zZ%@d`Y|+%uqYD~aSfU6(Ms)%oE&k{^$pbnN{4rTApp5i=(sqG=Y!MQ#H$ms>s1w@m
zVhLHQl1y&LnQU5G#e`KEV{U5ORAvyV;{b_M$qw9JIe#;yqFgwSfY*AX*H38t!Cw$8
z`pDX2QAHM_f)&O*x}q1hNJp-dOZ4)-2C)**Tx~69cXu)i@ricslfvObU%St}RDT+t
zaIdjluolwSHT0#UcWr8M7(OxeBfzbyi)+xhXk`PA1Uqanct67V<qBBe`Ey67oo~r5
zYxQOKs=_#QgZnghGcA<fj2(3FQM+sD1(QD{Pp6ATs>m!H7*tem|9UiNyZn{YsIHy2
z2zLeSynjlfe|s$#TLc`p&-{_J!~^}*hs9+tpo!W5<t0qEyr#|}=&^RVPaZ?D7$xCi
zOtts;>)GreNic+jjT>%F#VAyml^n9=dFf7aEHCu6(TdY-e=%dp{%yt!Hi2|&@%QhS
z7Y?(ps$V&NDIUP4y@dDWp^^zfCL2k4CXX$0fK4O7>vw%asBUk#?g+SHkj5UZyT?a!
z`=TyBU3m^u;^67IPS3;aZSWlXYuX*n<Muovq_W(}UjG0a!anMXK3CT4slgh0CDVxd
zh5#f|Q0diRC5g`3EyPr&T|P$}KkpamZok>P>nuxIiCouf(vuwE9rM$Z=b6p4aW?Qt
z`8*}2wE4$CNEH+m(0~6PBgvC-mjriAD|1Zh?H77TpoLSUlKnlW!2(4wJ*PkV<_-#v
zgGF$9H*qh2Zm}i92<gB9EMtG)C-Pbs^<<L1OV1Ocd28@tlfga6=jS^ja)wQ9-(q2e
zJ0ZYv^p)NE39#qPDC+HSkq~U5b=tz5NJ-*SD;&W<(zcz#+$id=g<_?x&=H{W%#m&@
zr$p(z*En{h3SJ2Zodzi|y`r7x)zmtn91p<&Kl|$&l@}oMs3?Oc9xFD<AB$HjPj8J|
zS9UX+k0?5I(O8Di+XAP%-zr7>SBo>Uj|_0SJ2O~9dBFS_SkvpRY?IQ4NSno$a&wRK
z))MT(>Vv{xS;@C801Ix2{iw3n`F$a|&2xwIDqpZCe$LXh<P@zr(c&L=;2{KY{(t=a
zAgr9je-oZ0|7AGCW3>Nip~>+$O8I~NbiMy_qPYG(7Z=2T@}TmZVV{wJ+~c48DD(ey
z=vz7ewkOO*#r%8hzL$vUzcCO2Da}8QzG={Z7v^RKE+hZBM-c%aDf{P`&^x^dLhYaB
z1BQTxlm72oID@+jnZKje$3`XnZ@_7}|3wwOasSN{+dlyO-=R(drhCo*nbOz)Mi0dM
zDfwsGfR+AxOJ<?Pf1k&HWXW^?&Gkg&zlXN6%>c;O{$0RH0E6onh`#|6R*oou4(-nh
za4Goy<+c(UCqE7c{pZXe8K-|2$Poh&u?378@Ly>3lKtPM{~HxP{oki6_;1IO5Y7K0
zDxMqr!h{60y83!OBO@?C8kiyeMuGj$Bp{#d@p1C@hhrgRGkJu~&8bnK@%BxA1r^67
zj^sc8oyXo+w<999Jffey0dRu-A*k|ozvP>mnyy%qlF+D>rQ#%S^Ifg-ru>4{v>9|>
zhK+x|EWnd9)$0{iQXK+ugA)B3j%T)q)r)6Mr2JF#i+HpC>@}M{Ffeem*~$Cya!QAk
zl+NJ*EtyD*YGUGgw!{#<(QH>(L^eO^1Mv&ZCH|_W7EN>`55Ii}H~J-jPa1ma>W+yN
z>;lC*1trTOi4}!4Cp;_H7}9YL8#>+epKx=pHUE!0?c!wao#ZFfd^A2bKF(lwAa%A>
z4LTT!KiD6NE?=xb;zDb^-2-MrTyDAE@@qQBpDpL%?b*(SHp@5-!V|VQL|gRKOG^Wi
zo<y1UN-(~HTQ{SG&$3o?>c`d29C2Higx7TV{?u&~xZ}@g)eZ{}FxL#@UuMNZLQH~|
z2GaA#N-$JaeZ&9)MW7L4KYxFsc#|L^#{iC$wy^8`*sHr`NsN@F?!KtS-JKk5!tW33
zr)kLw#eT)b6k%aud;h%pQf9M-pjyY7$Hzv#lfvX=%(JsIp^a5fg9jfbZf<V#%?{jl
z*L#7>jrQ%+Qy5TC(6uHT(1wPFCYM`Mi3IB4rY1I6JT8pU1R6nWYkKv1Q-43dFVg`X
z#h4(R30;(_)lZq3FvwqbqEk}Bnw)uVk2kAIrhqAOa%ggPEVCK}yhjx>7@3$*7TfZh
z?Yq%YSMY#a8=>}HxKAUPuNGTk-6mw66Wq|A>-48P%fQgI_eYPecfN4aJHmft?9=Oh
zpiYaF+MHHTl-e|aGXLF>QC5T9z7T+vx(S|H-U!KwG)FH68d`z}(AcV{;)9IS$<dMS
zW`{d~@F9$?p510g$R=-WWknrlJf=WFn^LFExf<}*NKBB7Mf~ay9QrAw>Q#CqhC7JI
zW={s?a{E1Q2Y5xA<ZGd1<yaZa=}$%L<Auwqa!$Fp{=U8}K^tAsq!JnLDvV!A$w7|N
za9(Z>2O+kLGlyHvZ{YB<=HdR;=fapUoTDmUqNdZW&R%Gxlm_C~6_x={c~%C!e~^s5
zUNH!jJfL%pmtmhls$~FSyJGd6q0s5_7C$vYOio2_a|WuqGSguA>Zc%Erp^yRhjjI2
zU~ew+-_SxLgzU7?BYmoUWVaYpc+LbNxj#hL3}?JswAW3)vG72_oh<l?NDwNUb9jk&
z*CJv+hp0G1<z0b?rRL^exRc+}On1EVEh(9Fv3~o<oXGQr<^QA;la!DU*c}Mp-rWUd
zWn~S+W|h&*eAwy+wdqhvk#H$qo1a&ji#?GX&7Yo`8Hi6k%*qGasWYE)YN9)X0V=e*
zCYNlicJq_GkF_`F5$M$xkW|6PY6+NH1dpT#{`$3RuJ4LBT{&HTf0TqQm=EFY69F%<
zcZvx;N|IxzfCIms$eaK94FoH}72Ir9gnrV3a^$bsoDsVYw0t2VsmrQ--OmIa6-+(@
zGnsKPO6PPM$P<sXK3`!zIz0`=2Fp90%F7b_Gt;+`c&a2WmzttXNA8rqE@FhYRwkdG
zHfoVboZyE}RsGZ5lB1P2%z(vJ2!Azp*gKpcTAI;p=h5V<G9^&)Pimpc4tK<+TeOn+
z(eMb|v+35wAAJ}ne3+Fj3Dg;bIutYQz?!!DT-qWc25l<5U+ioBU#s-2%eEl*#v#^p
z;Dk56V|=%S|6p%J2j4fl>Y}@4VE<#F-;Mw;e4yeRj%!a=WiIIZP$}fo=?Nz&Gp?^D
z{nYSwY%G_=sAH%?*ZtGA0hh~-(BAIuZofR;aatwY3kg1RY=t}w6x1+smUs?fPt}7h
zbi=rffODUuYJ$CJ-3^nrUqFwsEM>#EL*J-MrLOWA@T-sJm4ZBeBm9KmTIeq!llH#8
z^+kr37Cikh=T@|N`n6{EnAq4Yt~u0awYnyx>>qZ<bu`A1r57Jhn*}an;SybIyyzg+
z(O%N%XIeW!hkDsV^SXo?XZPKqDh#%lf6TDJ5B`;21MKPQ5+ZvV8a;9d6M)_dzxxq3
zR<E2ac0u!aUur@bG}^#0<~aQ;iY=F%qBD*9a2sdaClU_w@mxV+A=$xXCW5rIG#e*p
zC^l4{Vw$(NH=*wB)s<IfW+vpqhhVl>MFp_E15^LKu1$4y37O%QwY&;lE*B3ie6d?V
zLIg1EU0oCoe&7=d>BY^QP)XB=R3w6sxf>xqH4$-t|F`%?BDgZNxT)YK=tglWIr>f#
zc$!pL_r>!i<{B3LSmx})QC=cu;kDqBm$S3%zy1Tjx_rF9%9s2o{?v~8#B(Kesp`Kq
z{?&MREyagHJ5j@zPa$D$`3}kGcqsC$If$g<j>3Xa6nu_;nIjb*ainzsqHGE`P~O!6
z85t6*@j^e7JbZO^71qj$UiMn`O`5R%LEQB&0HtbaX=y0G3!wjtgo#NZ<KE%+tU&t?
zjgmsI;HTf$XA~3}!bkAiSjt=pS5`-87?lV9?|vO>+*S0clYTetntIhCmMIPkQs=Jz
z{7ImCj_;MEULMU#g0(6my1fkMiKnWz%VFTmR17Ag4CVFPh-4>*=c3u%3VMd=3RpCj
zSOJI>S3Wkv)QD%DVn6?;5-Uqwl~O;6q(C;+2P`yE_m^)-CQjC0do>sxgAqA&#nx28
z7G`nb8&xzFV8H`ZhkF=GGV4xnv_wvQwvJhmt2sT$j0kN6lD8z)vcx-h^&}<u_Q6L%
zK_Mn1gI35SC@9$fV?=V_lplIdUmp<_)qklkj8p3GM&A&Io*Jn;^Zi~>%{3t27r=Nr
zmD2__@YampNOsT9C~LK(G#Nhl%%L|NM{<<(hzGqa+jor0h*+7MXy=V(CAM9E<#e!K
zZPXy^^ilMW48_g))6#4@@-dbZ@gR{f1-G{#dP_=ikgP&TBTcYqaQ~p7h6?tz4b&9l
zl&GyjNK^7R4$=!Ec=zJA=YM1@AjQdWrDFm3{C5(h>tKqg4R$<qY~P|JjJ&HZS?DQZ
zD4T0BY4L-7eEh6-xc_`J5eMnN(DTrvaEp{UhyN4JyCFNX<YJx?zE<oX7tD=wB9j*Z
zF5K!+H4Y^Ul~xnu;NXDpvR#+^U!)zduR2g{cD+#C#HLg4o?u^GUL%=AW>o)T;BJnv
za#CuozTqcJf13gUrbTBpu0J*V7nd7{nOrpra;)7Ge;vC!z9~F6o{XvRd_B&kt}-V6
z-MKz~4G4R!JCF3iM@KPlW)pwM&cj>MGyvD0U3tw?8u_8tjs29hzKe^ZAlSw~ohBB#
zL;d}c_4bT)f0OcdYz)qJ=0%LhKD~w$KKb>DcKQ8{wf^x#m~nAv%}4X20(=HSjM*i#
ztei1pl05q6GFF*075`B?`Sn&g^GR=JXXdc25wjyYAEr<E`|PEYe7KH!JF92NlWgFm
zL~4P{EKfY3j9tTULjbe9&^;#UF~G4#tTb)dQ$yA&{E^B4XJ#0ttz%Mbv?yV()1{h8
zR$ZI=TV>WsqiIHnCLuU6Q7WyST7kWKXU!ddN@DYJU7b)}rZOGPxM$Mc3$O`gqWEZg
ltR{cP(aEpfsbkM;&uh3=LMBaUYaqa%xUh^+g@CTl{{dHF_W=L^

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
index b94efa4c7c..77ebccf335 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -18,4 +18,111 @@ ms.topic: conceptual
 ms.date: 10/14/2020
 ---
 
-# Creating a new Supplemental Policy with the Wizard
\ No newline at end of file
+# Creating a new Supplemental Policy with the Wizard
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016 and above
+
+Beginning in Windows 10 version 1903, WDAC supports the creation of multiple active policies on a device. One or more supplemental policies allow customers to expand a [WDAC base policy](wdac-wizard-create-base-policy.md) to increase the circle of trust of the policy. A supplemental policy can expand only one base policy, but multiple supplementals can expand the same base policy. When using supplemental policies, applications allowed by the base or its supplemental policy/policies will be allowed to execute. 
+
+Prerequisite information about application control can be accessed through the [WDAC design guide](windows-defender-application-control-design-guide.md). This page outlines the steps to create a supplemental application control policy, configure the policy options, and the signer and file rules. 
+
+## Expanding a Base Policy
+
+Once the Policy Creator > Supplemental Policy type is chosen, a policy name and file location dialog will appear to name and save the supplemental policy. The next step requires selecting a base policy to expand. To expand a base policy, the base must allow supplemental policies. The WDAC Wizard will verify whether the base poliy allows supplementals and will show either of the following confirmations. 
+
+![Base policy allows supplemental policies](images/wdac-wizard-supplemental-expandable.png)
+![Base policy does not allow supplemental policies](images/wdac-wizard-supplemental-not-expandable.png)
+
+If the base policy is not configured for supplemental policies, first edit the base policy to allow supplementals using the [WDAC Wizard edit workflow](edac-wizard-editing-policy.md).
+
+## Configuring Policy Rules
+
+Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. Hovering the mouse over the policy rule title will display a short description of the rule at the bottom of the page. 
+
+### Policy Rules Description
+
+A description of the policy rules, beginning with the left-most column are provided below. 
+
+| Rule option | Description |
+|------------ | ----------- |
+| **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
+| **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
+| **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
+|**[Hypervisor-protected code integrity](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. This provides stronger protections against kernel malware.|
+| **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
+| **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
+| **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
+| **Update Policy without Rebooting** | Use this option to allow future WDAC policy updates to apply without requiring a system reboot. |
+| **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
+| **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
+
+### Advanced Policy Rules Description
+
+Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of the policy rules are provided below. 
+
+| Rule option | Description |
+|------------ | ----------- |
+| **Boot Audit on Failure** | Used when the WDAC policy is in enforcement mode. When a driver fails during startup, the WDAC policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
+| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
+| **Disable Runtime FilePath Rule Protection** | Disable default FilePath rule protection (apps and executables allowed based on file path rules must come from a file path that’s only writable by an administrator) for any FileRule that allows a file based on FilePath. |
+| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically-loaded libraries. |
+| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically re-validate the reputation for files that were authorized by the ISG.| 
+| **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
+
+
+![Rule options UI for Windows Allowed mode](images/wdac-wizard-rule-options-UI.png)
+
+
+> [!NOTE]
+> We recommend that you **enable Audit Mode** initially because it allows you to test new WDAC policies before you enforce them. With audit mode, no application is blocked—instead the policy logs an event whenever an application outside the policy is started. For this reason, all templates have Audit Mode enabled by default. 
+
+## Creating custom file rules
+
+File rules in an application control policy will specify the level at which appiations will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports 4 types of file rules: 
+
+### Publisher Rules
+
+The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specifity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
+
+| Rule Condition | WDAC Rule Level | Description |
+|------------ | ----------- | ----------- |
+| **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
+| **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver corp, is affected. |
+| **File version** | SignedVersion | This rule is a combination of PCACertificate, Publisher and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
+| **File name** | FilePublisher | Most specific. Combination of the file name, publisher and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
+
+
+![Custom filepublisher file rule creation](images/wdac-wizard-custom-publisher-rule.png)
+
+### Filepath Rules
+
+Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, simply select the file using the *Browse* button. 
+
+### File Attribute Rules
+
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (eg. DLLs) may all share the same product name, for instance. This allows users to easily create targeted policies based on the Product Name filename rule level. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+
+| Rule level | Description |
+|------------ | ----------- |
+| **Original Filename** | Specifies the original file name, or the name with which the file was first created, of the binary. |
+| **File description** | Specifies the file description provided by the developer of the binary. |
+| **Product name** | Specifies the name of the product with which the binary ships. |
+| **Internal name** | Specifies the internal name of the binary. |
+
+
+![Custom file attributes rule](images/wdac-wizard-custom-file-attribute-rule.png)
+
+### File Hash Rules
+
+Lastly, the Wizard supports creating file rules using the hash of the file. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. By default, the Wizard will use file hash as the fallback in case a file rule cannot be created using the specified file rule level. 
+
+
+#### Deleting Signing Rules 
+  
+The policy signing rules list table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Template signing rules and custom rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
+
+## Up next
+
+- [Editing a WDAC policy using the Wizard](wdac-wizard-editing-policy.md)
\ No newline at end of file

From ad081c331b090d9a1c16c49ae8b6824a124cac81 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 2 Nov 2020 14:47:40 -0800
Subject: [PATCH 019/825] Added the edit policy content - how to edit policy
 rules, add file rules and remove file rules.

---
 .../images/wdac-wizard-edit-policy-rules.png  | Bin 0 -> 57280 bytes
 .../wdac-wizard-edit-remove-file-rule.png     | Bin 0 -> 46086 bytes
 .../wdac-wizard-editing-policy.md             |  54 +++++++++++++++++-
 3 files changed, 53 insertions(+), 1 deletion(-)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-policy-rules.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-remove-file-rule.png

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-policy-rules.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-policy-rules.png
new file mode 100644
index 0000000000000000000000000000000000000000..fbbad28cf2cefe4e97f2058a019238189e0816ff
GIT binary patch
literal 57280
zcmb5VV{~Or@GpFlOsq*Vu`{u4+n(6AZA~z-ZQHh!iS3-&wsSMj|K9iGyYBsP*4bUX
zc2)PTy{mqO4wIJ^gNMO_0RRB-65_&&005{t0080$1^PufX@cJW`U7!P6cYqgP2wDX
z4ZfKQ$Or%cwb8I|`ruz<XghIrM*slX>E91z(*)lQ0091y5Ef8&(>coo*Fu#-?=iJS
zPo^zALu-Fs2@_xWU9j;?ofYX%)I>z7PqiHRr!q7kFVu;x*|2-19TwDJ>oJSt6aOre
zgNdu1%hY5tL&j<bNR`HHQy@<c0QKi5_#QgdXT+GV(=iYbm1Wm}Ejjuf>f6_ZSJIXt
znfb`BFu~V&=hWXNUKAYZe`avA>oXs-Q56Y8&rngnIDE}d9XK{Qjuzc@iq(frzg`dk
zA<2=M4gT>V_%P!&=VH3`qj+8JhfEF&-JzlNhD%9G`|;mw7u7CrfaKFB6ckjBAc+@s
zX@cD9WH`F53fls*nfV5sZ-Oq5`O*fqGAJM}yq=Rb+Ry*VTgak4Bf$UY+#4MT;dwAQ
zK4(-ia=zdHFsQg)4c6VArPJM9oGzt#S|oOPs5pz9W$S3oVb_}Q$2;!f-BT%7PSH<a
z4FvUr(bBW=Xq(&IZEZ4{B%uI#?|L{(d3{^a<Iz^^H{eJG+wnd{t6gUb=69?+t4z9%
zyRk({9Sm>LiKM{SW5Wl>DMw5I5iJe+jGoCC(^OYiKmzDtNS2J4J{O#K*impREne$e
z<-a27b8=62p@&EU{MJlKUETq3R^7cQXm~;X?}wOkTp-~(8_pmt9=mnTuivxjCt5Px
zEki4ndQiej5o%vbWwL~<t!xiLB<8Pc)XZLg2(%03zHN=}PDjAwGV5)`z7A+i11Rj8
z@5Q`a&)V>xz4oVNgT&Ez+@^CX4|n}{275~VRXR`lk>xzv;jwmdzY*-tgr%#>AvRqT
zz?XgQ5E>p_l<H_I{Y*pko<x3iyceB5`(Toc+~=ttg%os^eQ1O1e`YxR`4j(39zC-P
zLOyzxHgBi<jou?oTEsVowcx_3HdpJZi=Nl*&K5hM;h9zN>iaojyds{WW{Cc$`TKbY
zTuUNRt2fy<8(7Ini>MbBQiaf}D!l9b-iG{%$@8_zsm0X~P^}H#Lcy#yFpr+U-~KMK
z210s1>#m`<B#V#vw7mY+e0r5Yy*n-~_pmjzyga#J@Hn;s2ww<=z@@jrn~3{*F&bS)
zO^^Zo`a<jeQx9M2<0WvZ>=!J=7ILt}b}}?Oa)fWtlz&31)RbH0jZVYM`rH0+GTz7^
zs=PSyV5d{W<ap7^8)rxKUANPN4SlESX*@e~kRv;e4h5x_Gx>5VEr^zdbRUU?I@g=|
zEn<vwjcTSS;MtxFS~L*UDI>?|=E+@0+w)+{P2j~7<F|PKk}Ug86dXPl#}h@=nhO?e
zfBTsxu>U%<X&2V+tucDIO`KfH+O(O{rCB?hMeZs=8w?#7wX*l*+JZC8<fq`6!kq)w
zYOqGezB$t)|LrG91lB$v86jV^*ZA*Dm|!~%{dB$!Zi`g`Sl&VlrGdy}s;T~u9p!3A
zR!k!KM}|{q-vYMJCg9agB2draw9`a;a4^}*E33ai#UmI7$9MNs6xX?O(e9Wz4__;e
zJ+jt+%sq45^_4o^vB3bZj&Thp%z~PHM4Q=&ydpcszO(9Yj^7pv<x!EufFWz7u1`CL
zT)01~KTzAEo{iAtv?rF!P_M!|Op#l*2wDBhQ0xE=M`8#K#{l`teV@ZE_PZr9!7wwQ
z_-62>)2e`TlYO7VxBF2OPFuP`xbBw<dz7)I=)A)98`{5pJ`Mf7AtYcXQJ4ewu)K=p
zKtb|72Y0&_>jqe@rcz6+Ogkal9#9NC7I#v3rH{_*XG%yWjLfzEGo&L$CGVF#UOS7(
z-pX{bYyWz*-_#ch)tmc|8uUWodBizBLxm_|5=tAS8%vftD1HX5(%?P8VCcHvq_Md?
zK1Qy=1{4!dTMlwG9G&0Be&*_#kdXpJ`_EVX^1}5c_Wsc1plCD$=?%~&U?y=n@63kA
zF{2T1+bW20>@N3}a@}k$S))PBF4;RkAk5B-(s(_@P1w*z292PQo9V2VwVuW<7&ATZ
z<KlV=n`zx~!S@(jmA}QGJYo;|u^i({;5uJwL<97aN^OtFZu3Q>E<7o(H>1j>&M6PJ
zEsg^!;%A|;_0`Dd@6+byPaQs>3w;pLVqu<xU~<IZIu~C1Z8SeNVzaS6>vX&Q=bE&Z
zOiC7*gU`2K2o6(f=n8+7?u8e3erYDpB7@WU4`+4RKiid!abzzTF7A=7D<QJ>{3H_l
zx|4zynQEH78fDRLe>@UXnTsGQ`m{?v6P`juiNYLdqa?-=na0?Wmh(BFF8gzs?g;uf
zGPJ(dpPMkpyq!GI@jA_&LT7p}yE)3zKgU*6nqJiKqK_L>X5jp~vfDRs$KO?xt2Rj8
zSFwin(s?}JJpy0#Qa}RAjr=A;{0|B75aEIyBR=brM!j9mHk<5X3D@NrYDtE(8ZGa%
z5AnD73iKm)cJd6!`wB&f7X0wyXpp9xOupeEKx%kb?C<@7b@s0#`0Q6=gCwKlNyKk9
z-z{nhV44%XoMD?@tGTC7m_l^hKwj)0?V$$LAxfjHti(SrK}6cl*l{8ucY9fKgYwZs
zLWnG}S-{uFqwmLSCR5JylZ=fMS;dvaEH4ss`HU)<_T|$ed$+WNEuFX=+3~Y^>+!|B
z+v7>tgV5tp0_Chop1rw`S}M%Sc$=Sz3}oQ5<^ADkH8CPQ-K{9#o}@SJ-n>f0AUnBh
z1xb=aw`5Nqr8}f4!09E==)e5sTdA75`rzPTFF-4)^WoY3sHy)foz+};5Kv+=Fgc=t
zhB^ux{wIsHq4l;d39Wp2T2ilI>|{kz+&G}d^4R{)imMU4XZlYR{LupZiy9n6y+S`J
z97Mi;{)-dDMuWtyy7yg(bP90ASq6-$-^K-{5dCmUv;Hs}_7Dy;M;13rzrQ!KToW1|
z9-`U&`eRn7`S+<8oerxXcyC^Vlbp2<GBWaj)noM39m4cbdt^D2)xh1_?>>Lr^y$<H
z3mI(IGZxD0tt;d7Kn-|&Lkc~piF6D{hMWWVyOdk6`)PPYHD1`@g@!V1lfk0BE^`Ec
zR`?k9l8_@wqPAQX<^q38Vj$+Zdb`u{zGV{k75lNs_18^<JaQAKg`)@<9+f6{37oBT
z&~WIU%P!8@8yhZ11ML+)YdmX|^UT`eMRupsX*KTYo3kiNby#p_3fgMTJ{zl@LkT<<
zoC+c`qoBvk5pb$$A-y^Mg~g6S*u@mjt2A7!44zKs+Z_{geC!8_rGA5`^M-}I6iM08
zybYiF7g;gSvVlWt2w5`~S-%2LGy+Z{BU^Ejd0&KBB+V7a@|r-}_QLoHd_ZzOHPFaw
zYikMPKkz|8K_4!Gaw32fUT@9>HBC*WYq_hpK`H7j@vD+;goG^=?(x1x3^nha%|u|*
zvUfk|DV}Z_Ls87;`<gDN*!svze2uqka{S+!WHy<+oqxdVNdN~1?wN8eRX*o{k>TfN
zx1-#@7lz<_H|?~GichsXICZ1>h#k>C{3dYos|n@b9F#D{h|7N@1r{@AxKz3SP*)kC
z$#5x4UkFmlXKr}U9%pH01_@@2TRZUI9Rr^r_SN5mXO5hPE@3idi)UgCBfsdOz9>ej
z|6#)ttpAT?%=v%#FwcTu?duVINn7CmAGx7r{#IoFt?n1titPUu8vK7qp#O&iSC{!8
zrc{PE;`$F={$KJwU+<jqNr_Z`@$`Ass8q4Ew1oWzN~yzP?n|eWlqhpbZ#Qt{pGmQz
zN)W{{X3LHN@iMWYto{3PlRhxvvwa<E)9b(|PqB0!?WD!MvP3qFYE~7t9*TP1#MyrD
z;VFOZP=2;ru+AaFv?wYjiXmu~+g>0SSrzpF`x#HIuaNN#pZj4*<9zVijPlRdw!3-7
zK!rY>y6d+lHQ>r!2qTNDi`!Qk(SsL?k-Gve;34Vw!h~caS;x?+D2}@))VrU#Cc9>l
z%}|Rn*!pYcY$@Eq?;`vWq9sJSK+M=NkExQYr9-+gNM6zPEJ2b8QLFeb%;EYSN}>MQ
z2g$c>pTnPUmYwe$7n?zU#De&&fvp^<&&XPEV?*}5sIS#2bAjj!*EhctarK}2;-cPV
z=X-VW2;%=T=CPWzu`IP`)1rQ&#W9R?Lk~}s9Ci1GYpad*x15op(hM`fod)kdE5m)g
zIzC8WJG%WSGv+V1E!_@^3BEnfRi7pafGX28HQx(_s{uJxIkgOO=8oo<u%&^MW&0M?
z^TP<QuO>JxB2}9@C`~Kr%GVQ)882Nbj{hJmEJZ~Z!_GR&8K?1pjtL?dDa&ATbOL9B
z6QjsEa$U!LPZ0^T#8v^Dn5@5N*b^$Z7Mx(H*vL^`DD5=HU4w?##x!*0Spl#7?#2u5
zls|Y(N%%cE=6)usm9?MKotAz+^dQUEeaSU|G*nxPOfdvQUuJzHf;mpZmxf4~L<_i=
zgM`vj@#U&$;8dJJC@8)WTuLSSed&%5(YN8;>tUzSxSLnGARz=>BVsc}IwO1#QThj#
z`F#lE?g;@mHBU%P*rp9WW*RIl>b3@ezZ+$Ej=u<_CPJ?X8g0mYgB6L9JC_%Lg9ez+
zO3Y|5a&Y#m#e>68S!(xu=#4cZiK62Fiv+f|LXqZt^<?ae`O9HeEl21F0>2<la$r+=
zbKp`J{w1MvR^l>Ftb1seLdv4F4BGmbhUHxF^)UJbaeaid4%hw_G~*kGVibmVgQ2L2
zhwI~DfneC%^2<l0YVkvGZ%=FG=Ls)b5mrh-0$YIe1lC{6^59Du2n{P4b-x)s;VRLn
zU5a*exHhmz=8qo$Yeiydj=aZ0$$#H=Hl$OwwMY_;#)|s^_)QW{J8Evu)0-4vo{`>p
z-y<?&DI75l3Ruk#!Jj57+~X&@bN@kX_r4{psMiN#!Gc*4DouUNWgT2giql|~uRtXR
zB)Kh;%Wh>Pheks#jZFrHKU^7{U_nS-_(u1+i|3pyr~Y(}SBII#E?iG$>L4&%*)1WU
z`?`5x_|Ct%LNyTfyc{E3V-f_NdWXroS^Ev3oVR1|$%Zn?SkH&=SNX}_yA{Lh3(|@M
zVWdd!v~FZz40tnf>cH}VtD#t1X|0Z|B0uS21x89eVgtUv!yHTo<FVYa6Y5rc`)5Z>
zpYp9u>xb@<Cv^*mNcKWSKy8k3i&m2Wd;J!De!{|;?1>bB_g#zroLxw!lQ=x0AjXUq
zEc)ZL?>%}HBqPMgj908okwtM5sPxU8WSOj%7f#lczw_An9AlQ0W=YmM&EOJ@d<_sO
zLU~5P_`99tm}{0E&^>HDKPGLnO5a)WNZxSpFH^n;17gt7EoTd1T5OHPNtdh=_(=;N
zbb3$@&`r$tglFG;Fi6cj4puiF2Q5$=E~jUA*;7$&2LDH2fB05inzUQserR8X=jFw?
zUZRA!oZ5W|VxU4k=F~4B0S3`8^M3W>$mGs=NDhJ|SJom3(hztENvcsgW1@&%tA;}y
zXAG4uRsf}I?E7c;Iq`Y0KqtshXX$f<%BRkAVXzuqFh)4yB%u}acD5WYlJ3zDA~0(A
z=6m0>3f^wLIt<%ttQ-Wd%-sZW8Na)1dzB-ALHQ<3f^NO9!q%`}p^zcGy3v_`^Fv;h
zLvYecoyHUL@D?HY=U%4z@qH$nep$t|iz!u13}A+%(^{!#YL^dP;psH1MK7tlWVaZs
zP{Uc;HlOp3tE#~jNdC16-RFl0@ySUN(iHro%t%1vci`|FtU;qurRu3Y)%ZMI#19_6
zaMVsaX1!1UqG2X5=ph{tc_mP25SC)M2DM7pIm=_fVY2Bk(>FLr%G&?5I<PXum@pwd
z>$))^caf`zP%z*=?b#J&SZ0V~N}J76RI9GE13@CcR*3HAo_)G}8}AB%A|`}8L*^n)
zn<T{ysrzuXAW88Z$%jY|$|d@^*6nyUY=dTr$7Dlm1$yrg47vidoD?vB!eD=#2VTT|
zzBYYGOzjPcE5F=llXg15Vx6q>d|LlMCJ5E{<$jVgYR#UzvAUF<jLr5Xii+I_62_RF
zw=>^fQbT_^b3Q-II>%@}U?uQW$&`~vCE`>M#<!JfXoA#-un2dk^2)DUD&QJYQ>;@;
z96{FY)J%B6hL-lEJW-)?4b*sXmjh2I$0(*f`85ZzxnHaQ+O8XErL|RXu6C4N=R?bK
za2#tn@nSoN6HaeAX+545Pr&Uj?p)ryV0~^W`~K4dZeM+N_ZM;szRtLI94W6MMs<OE
ziGKfD$1Dyvb3$RrR5_p9Lx2K30SZ_M%O})rU5)IVy_TpJ8cQ(CE`)FP?%>b0xj57l
zH+zARv}+ocX1V=shIi+|)fX5fK+OrC67&}ixK{Gtq`I?pc%3ah=(L9Frgi31@fO63
zQZl9Yg~8KP(}a$4{Bl@RB_0^wADW-njV0{=JYrPNBh35Q-a1E~`wmKfnH&e^&*xM)
zvSov{^hL)BUsHC%R!oBOoHMYze=<A+-u@3Bx%uCigYo|n&rD9$I>w$()=!m=bPG@3
z)>l=9JCtDjLpwe^A7*PSzh$~c0DZ0Zac|_}9386XH|+^_wgOx!yHu6h)^*(QT=+>H
zQJrw9(Lyfg8ow^~FaBYmr@}9@R4flw#__bp&YMDV`m$t4E&<QCCs30yP5|(O{&9|W
zuHI;YeeI$G@LJ#C;a+#u?r8T7TkEwPc$6@xeu~ELteC%o0Xd>SMW%Ly!f%1M^GEJ;
zhmVBFF^erfEp%;3;)jJ9t+xI+-vJGWC8Mc$!mKrBOV*=|`p*X>@O@-d9^~s`S^%WS
z2M-TaFB#j!r%s;3j4@OY{~k||)V8#$Hq&XbV?yR21<P<<&(DjyJ`@y=LZc6VuwWdd
za+<BrP`k9Eqnq=ZU{Zl*3{~m@IIA~@vp{0HEtaZchEuiBt|?HJ04IjaBJ$;}HY&*{
zYFOe!PZRmdCXuHnG@6Xj<lp|mRz9jPuWWQJU@`pzuKxn8eB5*my+RGPVgt0}VAID5
zYPIWBlE3R6HBC-U;n{Xd;E-W!rjuk$1(j4sr_LS)Fmss2*G>+u`Hp7Bh-`<sbrGyn
zGmfExJIb<?PcmI$ajhp2R6c4Pi$F$mc;31M;9lkdIxjF_@Hwd~!27MWqgl5qHmtdZ
zlOq17RmCr@QlR@=Af(%e5^a9>vk(;}xFJd))9D6HR*68wum8qRL*E?4H<fMFzaO5?
z=I=jorJ?8N?5M|V<^?Z<29HegWceI;XK2I!VY1VOE>8r?U#0?@BW5zqpV)MQS8I<W
zcUG0@gF6hX8=Ts?yxD3m$B6QuXxT5(shRMKD4R-1fP>61i*kHKZP76XNK#0iKnMm9
zzle1Mb$eQA8a=i@oZWVvk%Z&Z1+U2DE8V7GT5VO2getUzV16lwauFfVm8UXmY_+3r
zHD~8kTq2iF^Vai7MF;3(f0LSGTA-l~a&@CM5&MH8A+)4G1s;W1NC^MscFDlK#rD^r
z(-thAhEyFoQaU1`{;9|p^oWb{6aCn2*Z8A2X8S7+2<7`i@!grn*of4)fmJeJQO5v2
z<o^@EFR44<b7)omkAEm%9ObesR-}oAg~!n}VM~xcUi9#G44oGZVkF_7Z%wsUSB!s#
z=D*P5P1LJWJ@BHasmWy`jip#R6*PHhXz2CfoXdVkSmYKO-qil=TeWw=b5O8j_EOOD
zj&6_FCQlt->G-K-H=6Oz3=@NL3*|b87k4zw2Xjf>1AeR2@9r#HwbM1$JN1wFm$%Qy
zTRwKhFYCc{^@~+TSNC(H-F4b)Xm}Xd;f_Mf0GH0;cyP8-|67nSF)V0kD_kd}0yu?k
zW>xIh?dv^aiG;r@%NY;P1pCB2q1p{q|JR7|n;>EIV2_!TKR`nhEfz4A!<36-QW&rP
ziQP2On7PLa*Uw%RKlBpR>4VY27Wl-jhN?h<$AyFJagB=lZc%m4A>Fa~02%MT_rydA
zr9ff@#FzcujpwoW(8*SEmF(v9CeHhoTWrN=7m}b1lUPaF^FrPJmn}gax<-(<JzF<8
z>FzV>3;+5^cIk2DMl!Ro+&?_ntkfBot5h;FG7d#zLnhP1DY<jwWy*%QkBt9dCe?!l
ziL6Pm!unnZ5)YvU%0o@DzT!ShbotKhtz<^=SnV=8l0=Ka^}_EI8^+J#`fwCEoDcUK
z2SPKvTvm;JX2pHRgGDv@IXiV~^i=k2v$orRa4WO@y%?cH?C>~qvuV?2*{GHDzMy%G
zAibMK0N!mib+?$u+B!;j@B7TzS|9`*Cpsh`ePSE>4(<-%W@~H7Wi#<m$pywt<=4aG
z1H)J#$>V*0LbL{cIE5?q3oJ*L(}hq&OimNsZyHf^)TOSz_ExJJ8YNUWv#HUw#x(_@
zUrrXU)5~jkXtx?96qnhqC-+L45pi#3be9a#wh2?z>+I}0OwNQ#wTl|72!bbWPkWiy
zp<ttATdD-nb#D2fZ=E9_XT)%w*S91vF!1u3joypwC_7ik8Wi88*KQ>ZTJ3<{<S!?a
zp&L0#49hKA+to_$>pSjQNF0fo{8T+Qhg-|oOnfc;GW6~cyP`zeJ4JnSnpKpcYw(~F
zqyzSa++^>2dokB49lH}7q16~5eUu(Jr-UDsNjHyVyy-w}VMQ82TOr>U(w9ip;Tl6&
zLeK)I#%L6J$cholUdJbqpNW`76lmz*O|v0aC-_E7<~P39PS+DB@X-Hr30W_e0e^uN
zYJ=1Gs0Qf~Sa!;|!-qqm&S4u$s$!nV%jIlP41`I~RsQ+)Y4g!>xn7P<OvqG5G&D4v
zot?2-ul86?d+Bs~Bx-?!_RE8Uov$^Axa-MUWR7cbbACrKt}l|acX7#L^hU$?i(&8B
zqGhmXpUkoZ!hn(X+v8l0gYi$>ZGyUzvzg6~7#~=%0yOc^MuFM>abGcfCW8+>fX30@
zob%URb4*5tma?+2&rvyJoTVzZbZ`@#b;mYC6nd7`i5<ayPX#=kofhumyggm&pYlr(
z7vHC~fNGMV>mgDZ{pGecmZ)w={B2&x{o1A%6AK)<FptK*rgv~?>5ioeAeMnhz$=Cs
zr0?Q`8ERFJy@;EuCor(8UJg&IMx;J5>cVvKu>=j;(Wql=x&jaz%Xb57Eed{tKjU;U
z%8YTkWRIiO)@c2v5)Y-mRD7^n%#PQUbDS{-nUUs2xz?A|mUaUiv-bj|uI3sud~{`J
zR+DD#5vmSDd^Bv`#*2eQ$yu%vgGX1actFFE4Rm|ATEnO_Rc6W!*_<;m5a17AF5)-%
zkHevyU?wk)Yhs0zFf4JhWSP$r@HX+}hXPHtv<-x+oGnOpp0;FBADf6ZNBy15)PuV9
z9l~ad*m_k2SPIXYF;KomH}5S^onvpmY1G508-|b}P^b!~_AMb=x$ETTG$FL>SReDe
zVnyj@ueqL5bra%BoHv|YBc{fee7E4U{N7lsuMrPX^JgO6DR4W?yPe$LYfJ1E|J)L2
z2!8F}s+t^ShK(2q;#M%qzPTq<?{2bEW{}utQnOThohByyvjPZ&EF$`fG2{Ei0&;<2
zLYluQ;2?I7=ZX>WxI_Q^`4buWep=mK^6g*sEQgzj2=u_8qcrI6)^+d6v(z~o?{clr
zuMwd{5sxirio2nn)Fry5idEi4Eb7g7tK!F(1tA&(WZ0&u3=Q9!5Ps4F%?3t5bTpr#
zQg--9bSxEITO)wKJdFdp+i7>El17O%f{%5vXm2b-@?Q7dvtM@!1b6d5MCEi3x*zXc
zCJPmWG`wG;Q{8*n<A^}jQp;ANCr%r-S|_#EWuewRjRi!$#A7+iuNxyo4hJ@H>ab4D
z>S5m!(Z-@_XL`--B`RkVW6|n{<);HGV22LZY@=(!XsNPol{rFx+sqKOr;|(}HtT}6
z3=P*m<!>+p&4&d9f3d>CuHgdpn8S*O^W3O(BfiNlz4PsQey+Fv^ITu*7I@-nM?Rx&
zf&AZ+00I~hvdBLh5KbcyJ)NfQ+wnZrBtOCg=8Pw7^f8k9Dx7Z@!Rk!3a4d1zlh`~H
zSOFClZW1VQT5QMS3*)y$zp_DuBNr_72r2FJ3lza?cPZ^dY&N!RJ4G9R%(BVps&JE2
zY99MDUzSkH-%ZbVi$vme=BAag)D4MTxk*L6(*zcyJ{~E*#$m;eCGJa-D?OcUCAPD`
zXy9`n->HwbTmYP~12;PUBA>*pB3+eOLe>bDyj!WE6v?B;kq6kk{K(%iig{Ds%tp}R
z_R_IO=_RD#N^1D+@6mbEcru*|#a#AF>$|xmYkCtzwBP;T1JrV-ad|0lo5gyP8K}tK
z%V+JM1J(W-$X7?YEl2j33X*kcFrPmBYtIt5rSjxyY_<s2XMYo^TrbuoB&7V1$wNx%
z5yvGY2r0q!G;Npn>fLWmvSqL<R``DhJ{}vK9yE%$b2#{^tAas8`-y@*xAIpi&ZRmj
z=vQgwPS3F#&6;02)I~g>1q1}#B@lBVMjx~h?fa^|QYzF2!Ho_MB9k=4-n<E#hb(%P
zcbz`qF0&Pwry{BtPBTDo(V?@>G|INt;|9N9bXpV@($Z4K{kp`ePiFsxf$al%^^)3=
ze)gi#jqg+;VfRbG2kC9!F9MDs6mdN>V2&6(uc;E8g;}%Knz%!?A~R~2H7tuva`MeO
zg^`SSr?-g(;h1C4AxvC4CEF#q&Oo<YyB&>snwAFV<q5EdcgNaLo49wFG{$PnYNLF9
zbge|lJC|*2uc-fgP0J>*dm<@w^5(wENkI6*q7DTDk=0F<M<r*%2F50I+z;0L+_Wf1
zCoN;sdJ7RHc8|f_?8+uoX9B@IZ8=jj{fP#Ej^5cP!P;?|ipa4jDn-juB?!=$s4Y?U
z$DwB8KnHMk`bkq#$Jn1>NKoPZh>d(2cnaA?wLsrHj4ebpn<u79LYAqzTekmgu#wOz
z#=?@6r2S?Ojc*aLG^LhLU^d6;JcPIj*izy5sZYWYfhojw9{mkh!tTIF;^6UjB3xSL
z_ff$ffd24|?;zzlBGArb{%Kd{?p!3hn*{+vCx|EBtm^_YTDj6XQ$S@ha9Q*>^n{CY
zg<?9XN6kunq`WYW)>{S5@HQgoweFn0)76Nkuu^f(sH?~u?4u#KTg+Y8_z{oid0=gC
zHDq;b_x-O?=6FH0w~Fr{K|q-WE#z00r@njHRxR52QDWr3J@e(NboBH!=_ZT_{thWH
zw=pw_{I{h^sAy<^=ckWB898b$=M1i&R=l)-stjG!m+JBJ5QG>8L6~`u`e{@K8^a&Z
zQoeN>lmjQfFlFoANf?7sq0WS_-{f2OaD1)}3J-NySkS(3NRcy7--l!d&%DVIm5Dba
zD!n`1lr0XM$=-q5j=^$#dN~9l*4xy*8{nIe*z%njkhJZnp|kQlPl`^z%yI1mfytYt
z+&o9qL;4FgNUH5UZwK}@;wB^5ZaCRR&)^lenKvO%n9Kis&8@7YaeQ%JLmqZ?o!@8`
zvR1`G^^CLxT099$O?XQy<k54b=QeTCVwm0Ve-kWi?`MyG+;|g9V|H}<P-d+^6HB|P
zb^+hg&m~>Bqz1r0R+lXL_E4XAkmWxJV*9_>==+<?0gl={&GItyl@5OopZ;QkwXdmn
zzLNB*t4exRuQSOCjSRMq-hP79#`<GxNB5or_i!dO0i`{JA||73H7cW~BxsA1O78{?
z>)^=h)N5E1R;2;pp{lNH60Hq@tO@Pr7ofAWV+H%SRi$xK|B4?D!gDgwAFWlb-e`Wj
z4=t}}W@&OVq9Xg0`e(t|jTFNIINxw>eAb5!N>(;Rti`@<k~Q8=3HK=xlPhR7*Y4hz
zyKYFRjKnD=$q$@&j#|!@oCsG%TeffHX*RjTT7_^JFCBBcb5}U*h&uz^yo8iEmNp%K
zCn}p4%vKx<H^=3l!o1?CV}V`+<FXZ&nkLHE21vZb?UtpQV+J%{&K#TLMoBU3xNxT?
zaXUW;Ti$E!=%YNcx;_`%6+Ct04=ZTb-FPgf!l~5R<<Yp#z3|>-f6`LgA%sFpsoqMx
zd<5Q3-EgryxK_BD_^ge6Al?9cuGNPsIu(i)=iM1bCn0rZIgq1I9q&M(pd+!6GQO#X
zQ8yDl54<ZF2B3s)$@NWcygE8MmW%}^5++JQBH~G#1goH=aUvojGQ#ZBC;k<SOAY7y
zjb}llB{EV-*@3qH&AyY$(CFt0*nD{uQgR;DvyxV!GJHKK>{O9J`LU&;{_ZQr@L>J<
zNh}9Qr@NIubN-&j3ENfSX{K)EU7K_B>}hhgm{s1~ADE9vYHQ#g66)LT)1u*L6^tN(
zkAo~YkV_+!PRsk8B#N*7YWdb5XV{SoPrS?XA@|V}hfeYoJ4Mzw(b$D6#lsG`5qWK)
zm9XifD|rxz4kmc3_xE;yNX*tiFT3f5HNrK;3p-f#b-lBgcrnoGs?)v84<-bs)t8YM
zXm+54alv>V42QmUChNC7!Ig)g9j%2Hxyw-N@|EvCYZbC7IqjXN;bjZ+M7R-26$atM
zyYV<o_J@dr<L6Rt3rhIQmy=NRt9ker-5euSG9TN|^Fo;B>ZGJ31Q(vsB`al~XS(<X
z=Ex2Y4N;TePpXBE2Q^ujhby7lkl^&<LR8v&->T8DawDYG9jyi5BUc}mGn=WZWUcNu
z(DjCn5ap|G)0K@wn$j)&;by#7*I(a3uN?^~@LI_%=3^g~e*l1|?&!8dJhY0J?nGRl
z8V6qi2Y@u8Y!$J>_d@dTM@|rn?9iodv9s=@-Nm)CHLGZTeVdxT-xzD*?(ok+Y{;V?
z!L*ceysvm6r~|?|!aS8Dhs54RbVNTPi{(e1*&vDP!=}mTgcD{a7V_g^wE16O8pTrk
zopst|q3(N??RkLT%h2BzEv$GMn@~C>X<Tb-wqvK_UH9NLWFLqwD=re`(dk^Fjg5`m
zb`FO<@l@%>c2`?fRaJ8To7uTme7^%FLw1Rr=LAZY<R}Nm+|eMF1~oxtLK4UvdN!eg
zRy|UhaT;Rble_>N8Cf%RUxfaDCB|+@tzP{@(hyNKg_(+ky&`y5#0ux_?51>~O{XS<
zZ`}|Cnh6EUAOvR7#a0PWl^|CLKApBUr_S#Yj3Sb)f+YT77S8_48}+oF`|wCOz<ec)
zg~XG4gnL$3CKRk|l&qrOy6l0&WQ`PwDCgm-2x7r!_bzvh$_9H(*@EZpzVxf(OC@M7
zqS&&wc@yw%&@Jbpmb4_TB4Re;#ByE9<J$HRxDjvXGC%TNQ@~oQXZL$eucCSCD-B=3
z*gj*b9V2LhWT6`MfgL+Fnmt{fU~b8P%ZGHyf`zrUwZ9*ycEr~fLlrl>Wxb0nXZu6x
z4aEe3Q5b5T8z1DxG8>|8eS|W<TcI(xQ!c*4qQ!&{fp=KSYc`k0%CflU`pj9F@FQQT
zv9=}3j<lki&h;$!MtWd{4xf34U>}3SRb}1sdapK~@!m&zG_o;Lcnf#a`;ONd^`PT9
zH2`vQ9x9GDCmO{NZI*SQF8F+!S&;FUMB7ab19=D)*!(65A#Y!!70a3{5ZHeFC_Va%
zKGB)D(U7{Ik+csSx(#GU#`r2a-!6gwSKEC$mfvew({Z!a7!~sC#+r8VS-6)S@Ez`c
zf>Ivnzhi7p_2ny&e7mae>lx|uD+a%GK%E?(v#j<t?Fx1i2m4AeQTmsDo?^*@o>5h~
zehhtk0jj^B=rU>nCEbJ#PLdO@_S8?7I*zz^6huersdqR^%arP%CAQ`$(dmiE8#BR+
zQz?pDDTYJkfZQYGniWLV`ai$&QMRM_)?BSxMSkiIj5-h7+XXzuc|(`Jty~&#es5=|
z8K|DXO|STK-Gf+CP%Rf?BI6H#^fCNBvJPp7_1iQrG|G~_?E<o?*=k;y>&PD<jYs{4
za#+HpD|`Kl^c54PJRRALCZAl4rB3&+)A)niDh2wr?&V+xqG!=7=psBJ&%})Hcl`yi
zuas4NCbPf2g1`HXvFSu}eeXOqnLWpus8kUFe>LQFD=2)<PNFbf*-ZY4(7}mJ!8oT6
zW>2`jEtNX`G&&_x5COz*<VsU}|JZ#}@XU)ERORlp&FwEK9JbIKu(0Y=+2yw#T;sAy
zs+^d1)j|5&HY}&9R9@447@~tU7Shdk4P?`F($`@&56=^G2>FP|s8>&e^OCV@2O0|;
ztg1PCQ=&$Q@9p5Gm6%Iv4*N3-{_a=u0!p6^&1^)vixv(88Wz4ncRLbqGHw3FEWpKA
zTy=+I3F)L#fu5%!NYN7)MDaP3^7(}_{Ie1pN9NOsd(*;lF&+t0ozYx0TUhj!#(7P)
zuHGQh`Cn_AuA5y<tbFUGeUyWuphFX(5o6H?P2mxU5thrpq8X?{mk-i<RB2AGMxB37
z@=$CH+=^X}IB;f-;4R4dZnV7otT+}Us`sq&26J^A9D)Rp2Sb{k;{*2wYl}<Wwg)Vq
z2oFgoQc<l<kFAeVi4r&evdI;zu`rrwXXuGa{OeO|{_0PFFAFeTLEhOeSRLY|^jbX-
zn;bUihxL~R;cR9hoi(5TDf421+6p1>KN%T%7+-d3>Dv5_KO2alq)T&ahdiXW!fXu2
z9ZlJqgrsuAY~__2QkXy~O6CYS!AeJ!s2-${QZ=>5pf17T%$yo9l58v($CQV=hybsZ
zZ0vI=pT<b>6XSc1@YpHSL7CGj^D<lQD{NaNx%}33t)g>rO(DY(?2cRtlgy7&GQ{rg
z{^Bg7KMC!OIW_1OJv6|u$ZB$^*GF>TzFcw|b|=S~5Qs?1mt{brT3S8$%k2>DUw%~O
zZKg>nSAGsN&9TWz`)BGOH}+#XSRVBQk)&(9_BNVj##AgiqAYsQ!f58O#6rZ3o!^Q?
z5|m5aK?RD3QVScFOk=zm#43V9#X^be{aR`_saKVRg@{t636$z(-+u5)_f<NzFY3jV
zhnJb#+leIo=<rQQ3I?N<Nfqsk3J7qEK7A*C4-VFrR3U64|JB=hu8`a)cssC=saCqA
z=C}d9BpO*ERSCi0%or^P!XlewxV{`(s#1X3f8ZzO?Cc2qK4o(5`_uX_*mGKca$o;c
ztlC=h0AeFf-Dzb}0b&Agpy$-a>}rrUwQBk2*dzJB%rjyLuUU;ue(-(5KzvO%A$wFZ
zZ{!ODDBi7;@Xjb1W~y}W0|TkyLkDMU;2JAyCEbLU4^OAmS{e<_lNUt31Pel@Y<&ss
z4+B35Q+3sRD}s1|AgOqI{>z!(lZnO>8O(rq)*%?2`Vxr!6i2yEhF6{J5%ByI1v%1t
zTU++sp3^0mCLtbNOIZEo^C$jP9XovQz%<grayAQ-w*F7>68+WD6w9SCgZtd%6=@$S
z!ySH|4)JSu4Y%Z?_U4c({nTGSEaWFr*b1!Se>t6<XsW}fr_IkUaUx}%8Y)Gu(++e*
znVWxzO~s8mxVSEv&yL$U^Gh=fSsE7AS77@-<u=a^HCGG{A3KrSM=)3DSa$+G(c807
zby7BK#>0=G@d_oQ#Za{)P<2C5wY`3}-Rm&6JEpoG{j-smBJ<(NN6(YG(Y_s*cbN;<
zmO5gO1ZUR*@k47G$hv;dDb;k4|0)25IM9NZqF)zZJ%yC~Yhf3tg8yCrUo`_k{QndN
z%t*4gC?PXPku0|8j}uD1q3Mc+Oa)-_%D!OGW>W|INffh+7+&88;naP@3Y;)b?kL9j
zx1La4f5|slvxT~!LfV;R5m>z3)Uvq~&w6V)+a0%Z(K@I2=seJOh;nZoUxffBv-;tu
zS`>nQ-1Cbfy=gDOehNfgb=xxr1tU9t;UeyfzN{M65wCx(Q#<H+jBBGi1Hk3v1*4l$
zCPM7B)Zb`!&d&GFjlVrSJf_tw-eg%@2acr4gLn(OqMEAw{SV@anNyOT=vzTA4hkVV
zqrmako9XDE)Iv_!<EvrEW)>HgmJaHk+B`TlZl1~^tBH?}j_EP1WE40(+Cbr^;UXe_
zYiNvorOo~oU<z(dGpFwhC`15uNwU_S2Q~sVVz&?dJSPjKzVDe4V|hZmX+JJ}uWZ^7
zXi8->)8aR@CSKt$&Ggc84J|ArZF6)(6byLX{Z#5eP{q~;fUV|IYxYVic(aQ$5-@z<
z?+9+Ck6N4Ayl~IZMt{sip0M88T`uJeTc9Y>pg?%<%#W_gbqXK+*H6ZWo!y}tI*1BN
zkh$XsoH%Ja+@+P1d+qjZagK>Bmly9)#Z8kF5_%uiUaROzs&k#Hioh;bm9c5LRuh~o
zMJ>u|2Um<ec#UNCm*;Ul3$jNU;$*KRmxW0|S>QPt_pg)^MGY@-LPJ-g%EUQKyUWCL
zu-eG8*+|ljyybK2N7HQnEEH__InD8g<hH_+Fp|t8{;#*p2aB>f(~9<UHS4!*lWdo5
zqD;6!gXQ9{G2)&aPA;bM`S^mFngQyHVCa!Cx{=Az%X*{N_j4*0E8jLp^Gl*yt#}b_
zE%DoHpsQZ?XDy25!VE)jqeba2%2dTl36dD`0ZBDRz;&vHlp#SZ<>`{u6)QzpRQV4F
zOva4=YPZm(>n?v_9XTVk@tk(d#Ll^W(39Vkn3z`9ReiAUt<Uxc!4+F2Ns<pxC5vUu
z4tSSzfy;N3=h%!YyZRa7hmkMLec_2%)$!zzB@$evDrIHPN7)W6exk+MeBO$`4JliN
zsT0#N(hBy`dg11V)al+1L6h?}e2xZNc;Ovjp$Pw#3cvFa-U$R+W3g5gE0>WAKx+&&
zS{ySN!xXBGKBlo66~vDjn>360;HkHYaGJoMq{Fbkpt;zDmk)xEzYnt^vEi;aCQ{RO
zr1dLW;uZ?ZV9B-lrFXbmPM6jf2O_*$x@Ohpky#GR7cRQYVJ*_zDhoxMs^uGB#;($-
z(5QKOE^ae%KB`P;c3xgGMX$l!kVuM_AIPBo{am^nu+Qk<u2G|=jC#5cLmQpl`#Uc8
zhFL!ieglMIXC^T<873_lC@vr^GWB^&PSk~>kC@ulQ!7MVC-h;sfeqh{n=?d-N10=!
zJmO@aL1Bf66&~8IQ6I-&nfrHc#pQg{_Hm}U`dAtPg}eafZ;pXe5n48^@*lz2AZbMa
zX{!IketoJ_qvGhn{&5ZG-VXG$`3i{**>#HKu^~0G0@CEx)v|P}bTCMw)&zmn^qvAL
z`X4oJkZ^(cuyA9^jN$!Il7ZIsPn5g!Qy@gD#{1G-5Z5vI*6q&%tm;a#mihHM2y~eg
zANLEMXy`6Cl&D;GSuNtSdCszJX<RU8n(?8PyDC%jFSOB3V3)Or?R20ZZH2_lEDx05
zRsIX9CnaB|+$Jb+h$ch2e3x4Q%#{1;X)KIM!jgqTs3a8@#$aMBWe$`k3ZNJ?u$N_J
z)5X(Wv=d|w`vHSml^~(VPx+J9C@Cpt^rs>i0V;Zb%z*{@M>WQzE$Q@HaSY4{>|1-`
zduj*L7zcV5aFiC*3PO*G>Nzl89t-{j-%r9<le*G<-`LKCxA8^}kcC`J#hmu%4d3c+
z^;>d!2W#96Fuk7b(jA{WD=Sl|c+NQp^vHbrn3*^E=a&802Q)Z04IVltNqF-`wA%-r
z@{R96_W}g3$Vq2Tj%TUz9{RV{F^+T>V5Ap?Dml1TlzdOfA_`?^z)&taBz&=CVVB+E
zwgC|A@8|3K9^38ct5tavCmC0B#r7LXD3AxPAFfm!8nSaSv}CIrKwatd!?(knz+}aG
zRas7`YO=ItY67uNR<?w18xD0Q=JTkf(OHv?t+|b*qKZtZPf_v~sJ>b>F>9yzbdO=E
zRt-NjLZ5LCfA1|2?2CM|89`X_Gf-A-I9j1>yk$J6=-_c}A;U@^pe@&<&&d-y6{ni3
z`(DiAXAE3(IO9N7=&;qq?H^y`nJD^(e_Q*&vZW*S;m`L;ef_e}sqxD_I}Ow88X{0&
z4h5z-5@%<h!{qmC%0*=*s$?Nn8{WSE2YI|e$nIIy?qS^x47oY#v+oOO!E9^+bq)NJ
zws_Rad}DvwVcFP4;_;(n0j}%Ncw0+5JECh1Y>VckXfU1iocp`f^;{3wwnV}a`T!j<
zGYJ!RS)FEi5f#rcf8-Pni}J`J#V`47R2BqN1#X1bUtT-C^{V7Eu7|n}ncc)$oAyjN
z_svOgmbscd!<=-K^cA<<+(#Y(pprkJlOMFiuXHci4F;fw6aD3pJt?+~)IvKeWv)7L
zCL~)Q9v);75Ds^8102t-tj~(A7Dh^E>l({^**(P#qtu;^!lP|fTGr;>#c~OpP7`uj
z`!Dv)6&LIunuN}iA$zuZx9TO>I>fkWC>IO(o7c-4J&pF>ak*RuhPp5HWm96bA?1Qz
zWN{6eL4y&^Z=$hxjSuRK8-;|(DU|BmHV)?e%QJ&Hs{)WlB*i?7w-Gi8<wnR0JSKu|
zU1a_Ig?*QzIz6FM2PphCKYS5!EwEo8@RAFxpsNL4MGC%GKEJlirz5k77Tqj~f#xVS
zPj8bsmmQkrEr^b6toH0_7q9Xc1~j?w8xbWQQkBSqwQ-Y*x0+dA?itzQ$HETopU6MF
zNT(7D+BY@zFIGHqINZ}jB+jQFj7M_Xq`cczcRs>7KMVipYv61dpSivint=b2cw)S?
zKfh~AD_|Xk+sR0^%W0)Wg5CFollQ%4eqO}I+)%31_iW~N`2AIy#+;^`ySVDN&}X1P
zF^wbsLajQA64-m132BuJ*sH4*P5dYyp7eIgSk9b?!SM<<QbI|YmnV>zoGVT^`Iulp
zCYr>WKU>an>ni#&rHBhLvrJ7e^@a~iA8Ou@!D0caTiX*<C@S(oe!|w@`Z#ocx_4|W
zHy5WSNKpR;{xeR-_Loqg)7DcX&n;Vq8yLU9O75}gPbRX<(Q>ttiwo<D4P1zY5*v*P
z`EKnwQOhFPEyv{n^XF(ktixIk*Pr=J4&w0Mwv^qQ&udq|Pcz;1)$)a&>ObIy-S+Rh
ztLe<!|J0w~<Sm|?nGDx2x?*SD9n7vfcUCT^Z^~H;8$|<I&2qPSqeB95>&c4n>}>d%
zA{0#3>1)Yg)&WM{Za?eH7w)ZlJ+CY*(`7_GPtP+b)M2G81HW1qZ)I4py=pzBhbJ&m
zJmxpOj)=38Jxtx(jp14bRa7t@kcTH2sL_XS5!+e27Jj<-jZOAy_pv?9S3q8Qo;IkK
zz)aB)<kxe}wP*a2Ss0|<aqCQnod8QCmia??%clWck~(VV_I<P3ADWE=$3P3&71fW2
z<a5NctIureo?rQ))%|0(vl&cXk4ET}>h<GBWt?vLgwylSOxv3~)t;m2-ws*1a$Cbv
zM*>3K=7J!Q=wZ4^7kBQrkGF@2&DDj69|amQB5$S`A>ET-X~Yhbd}=$m#B!rfEJg--
z4_CJMQ9F;U9~nuA?dY5B&?N83s1{q<%FP6>U#FjzOIYXf_+z17Db>MvY~jMxmQX~)
zh?Cs?xg}ux|Jc194-wjo&IMv$q>yUJ&Zj3n_&<WPuyE2qrO$9xoW7s4rpfpZYX*Dx
z8<Q0a>>qhmB(H5JYmnRCajbz^Fg5e%6;F_`4lq;66KmShppZZ(ahHF)_N3~1_EbQ&
zva0NWmviB?Mq2+tXO7nmVwhZ!EN&dw-iXbTQ!FSjZb0aSMN?hkHpA*$s|?d$P(w|b
zm^P|+rp+7wNA<VuMf$gWvA7)j$jx?9WL)84Zfd?!sQw#fYrW~pTu2MsEK*(XrWOCm
z;ZI7X04=}TaF%_x?j<t$nn6};W`;gJkH>4RTvD-z=M@#EpJJ{}<D(O)t>;EuD1uO8
z1@0c69XDhXy{tASbUM<yTo1Vu@v(?3-g9SG0uD5Aup<NQ*kv?NNnvS=vql^|l+!{=
zdvXJfkg;6Rza5sTvs*6&dC_0e3Nl8G@L<}pJWlbFCrC+*{gudnEACsZReM@mO5Sxo
z?cGoE1=S=<iM`b$VMMBIsKMl8zv0<x&SODHm%~Qfh1BDp2W)FcyG`4@z+0%fZY78e
zXQ2*t<kzwzL^aWuO3>VITzN}}ctg;G!eKGl3^BkJySK=#_%NNEtiXHf#1;NxV=BS|
zy;B_!c`tgkT0PP9vasma?^;9be9)eU`O07%*Vt`WSnMM9)l7~Qruu)-6C@{PE*YqS
zYg2%fOALF^PdhtJ7Ao1L@gEGUX?a^;Py)q_MzOUuUU)ny_FOBW{c=3sT@|8vOeZsx
zC*~JcQWruQGrqT$<P7CRE(K#+Mz2+7>h>Hscp>N%51%<XW@p4{+Hn&8>Nyomig`OA
zQRVk0_A4&D-$w*}0~(=)ZqF#iM(Z=FNt={z6U&#MUb9sB{F+=*DFNx(o8GBfs!}ps
zjleV@+2*D{${fKG_x?naf+CAAfHAg+>yF*kNy&AO)>-vxist)eYd-jUjkSUivmT$+
zJYB7H0pEszTmW41FLgP($?m3nVgW1FMW6{w#3+c!AqqRGk)bD!3#g%8k$amNvM<UF
z%(m4xHa3R59ju(7VSUS6cl_5(VrHx)&8x^_!H?)JbsJ)Tm#ne<SX|*8+XS>`Rk=Ct
zP}Us98Fek%aKd=Wv80@~dI8%fUX1AkU%>9oC{j^uD|wO8Sxi{?tK6->kLd_QpPdaI
z6H)E6h8F7rQYwzmN|!|SQdc|Soe?5wVnY&oF4;&1AF7A}!=0lUMo}dRIZFodf#^%(
zOD3^oW0@Lt5fL!?tAV?U_f8n2b8^sI!<DJ#1CxIKSL{ZVL_aJ5N@vz-GHzv2$FwJY
z0ng!ZdAd?eB^t>x*swLiZZ45BN4H)@^iFC*5^%LrG;!W!^|*H8D1GxFudi<+VV;(K
zbJdOz+KQ|J%)l)^7MRlIv0QquPC$=M8xZ~-7N)2bTHC;^09vupl2<dK{0(rqcG3&M
zUpCFms6b?6Mv^T5yuGMw(NP2~nuLS;+R>Gms7OmfM2RXdf$6Qf?Y26}6O}ps_sNKz
zp$-y{r_Q88z^7I^au=u7=s8M;>#d20x^GxxHhfSS8V*8;77e`&+K`lD@~uJUb*ZO?
z`f9Wb3=)-Ht#oXG0e*}CSk_ze$CyqROk<T3Z1s-&k<@3bNG4M~txVZ`^C?&H_yl{k
z;aHLc8s<0XMuXMFJsB&?B6fSh=7s5QcnD^f#Ee!Nt?yj5->}JTPF?8hM3|d<XT#iS
z#h_u#D$cYC|1qx@hC<H1UVT|IGb=X>F%6R{<pTMUYp=W*q{qW0@|gB=U>7NlQSPbw
z3Vg~p%Enc3-Q+)BRKL#CW9oj6u0r}1CMn?-&<m-mW?SGHulgxcQfh*3)R}lNyL<B}
zSXoGp2eSN(fGKA9+hCO%#MoSxKE^#3EnYY>nCIZFRA|4#Q8AkfP4}XY4#gK(CC{Hf
zlk-yNaFZJ0fSBDOBT;>a0|p&FIsG9Jt>ER5?c=-iusL&mrP*zs3{0|oe3-&zJm%j^
z{aBqSrb%^Wj%}G=F&jF8*V*jCYZM5_tkm&rcb7fCs8gvL7<^WLM$YRzAU>2Vcjb9l
zO2z72A40TfIY`X+Ew4FfLdhJC!s47dG@2iso#mac(?B}g=UkYpw4qt!s-C2S?xbI6
z>uT4`7P=AX_q=~JcgU@b_dHL_x7FGhKI)==Pw9;BM=omz^al)cRaneBy1G_t_Md1V
z>q|E%5*10OR~a%KOhz_V;Em~j)S|E&GyE7G#Vo(v{3*p7;R!#l@CQ|$zFR{jgRBs!
zy|Pl49B!#gw*<z;LLxMeISa?mthojsG9j;(kRFp!%eu3fVp6HCrNyPeCJ9oLje?G=
z4-GAG%)@HEvd|qh++d#!^8?uHGFi{;7f6I!3cwLMW`0aj=8PW=5@1)#o%6#2rV3`%
zG|ukGuXITdVu?#nadp^g6tnh|%G$Te!pTV*OTZ71nBZ)(rAxPIP@5bhxKOQ{Ua}7A
z51|#dxH$_8OLQ(omotpAxVC4OAC9D^@Bcx5t#;!xQMbGLQ;P|RiXH&3{Nn+=EPmMr
zYT-EUc8N=N;FSB|kAbu;+xPZ$c+u}Z*>;!7$gp0wE*|!OQFhirarF(BMgk;g(BK3J
z65QQ_TX1)GcX!v|?$WrsLnFc6-QC@{Uz_>n+ufPnf4i!yy6>&J)%`r@oS(s?-cj$~
z`H$m%$L!O#s|`~PJBk@<T<J}Srv$P}VYIN`oln=We8vi-$_}QF^~Q&kSEHV_FQPTQ
zR{WhA?!OW32wQ!MjTw1b^AX5xU2Uy|ooKv$oSRWb((mfpL=(MvJ&e_QIPC%kM}G~8
zV|VbUXQ>Nns^&Royz2_eeKzd*rYdV?CTx}UlgIGcNSJi;(zh?flBC@5B4Rd`!HWia
zzCmxoRJ`EmBCwRLOM*EwKGBty0b97pW7oHWB6`60Snl$CILovBdS1BLa;@ZRXbbZV
zYaw6p6gz>K<T9`0o>F15fnn8%_<HhSlj7Gy)P#H={APaFJpI)Q4ie{sm!uU}herKU
zMCYUi?$ynqC7xX_l-|aem^9X9_eSvoKm8*8EE-3ulJJ5WIA;RxP}gC@TAqfC2^$JU
z3dFQ_*Qhif5e-7&7c~nw4$tjPdmrC9gyWm@nbc9eK0qN%MrX0icS@JsZ!+697`qd#
zrSj`m@duoC-^f2Kj%j~cSvI~eEAE_CtdO?ls+~AnQ}24NdsHZ4?)WZcpfi!foFOyp
zV(o9HaO6Fb*_lDpF4suVY}fyJ3xa7&dvh;u-%CUw^mA10BGo~B*Jf;=fr1%Z&cI;y
z^nOIGwOS)7iO>tEhI=*Z?yue7Zp<e%MF*WhC{Lc<LdmTQw=ZVbT%!o&s2y0=*LG1K
z@`k9%2+<A_35=aXw*H7C_UvHX9cqhKbm>V=J&<-J%il{o+`7Z`UYkUuJs=RM{FI0l
zvS%w@mf`6CN#F_d$V^_Ym-b^iWJZ(Q^GIaKORgSABx3910Cw<DP%XK>CwHq>#<PQo
zm{=z#sNLX2pBq*n4O<|mVb3Y(ssr$&5rgDu^=FAjA@qWS70it|;X=RF487U_YauNZ
zerg-a)a82#>l*xgIi+U1TM6*FQ&11LHoNdQ?*EUj#M{mOU;T*(=>Mh$dRgBP2Sok&
z>0wt{=K$wGraM}vs#)?Wc$rXFLEi6|<{h&<HXA=TPdGHAM|!{?Fu8ZUUwM(jl6ZQe
zd|EgXi`(NtuG*>i4`i#AwOlR-igW8a9Grz1Fq`t|GQGJ?^j_+VaImiqZNf^dX~6pi
zT~CB8l@d&>2R>zn42k@WE!nkM6fAttQVvIvMDe8Xc`wKFF-%inGi5}S)r$a>y<k8-
zeYR$`0u&01BEa?8m9H_Bhb2C$kx#?5?M1)v*|T&8g2oyjXW1`6UY<l*E?^*6A2)|5
z>*qHAdE8GR2>qhLI@UQlIx=YkbuJx07+O&O#pDucm!(MKY!8=ewO(5w3-YB1V9be6
z^J?Ad?H#OER#OJQMUaFKa?_{9Vy2~Le(Rw@Xu0EZX5GD*noN^!+o=g{L}pmvO30U~
zK%>f9y4x8YsS5O5W^ZOLoBt}+@3$8>xW~=eK++;AqI_BLV->pM%>Q($4zrGZYGL8P
zS6Mk}gUNvBk815@+=b!tcZ!j9Cz`F$#%(Y%K=n3@jmvnF7K67Fi%ryFq)#IiB5F&5
zbkeU_GiO9@@9M4G$=cdreJd@jsrE6KN`Yxh9I@X>{Kz!LG~qEUEBhTu{(4WgtH#C<
zTT$b<Or}XPd>-czsnXOrHplthwNf2$3#d+KkL}3_V@%kuS+znuXOX=%(Y)Rvf8J-L
zjo}7V<?jY=KVKjbgYh_5HR?{S*9S~foHGWZn`sWr%M(g_4!+V-GJjA1^$~`NGGv5x
zYG5~)s9B9Fafl=rDJZV8-gwf46K8(d)TO-l`AF?{MjVQ+0V2f~GxF;DA(NVhQX<Wl
zoi96~J1@IViNWJAI_1V6!^3$l5h(uT#vQEMw(W7l>@{O#X~X_TH+Cv+^R~pPQ!{JN
zNcdWNgQz+}P=S1n=8za)ze$kVs@*esI#ERSd3zo=G!$rQh-YT+gjWhRW9cWJb2>3K
z(NN1P0irkV&Lp9)SLW(Z@%qEyu6HRk2vNU;7U-YCoL?YKGb?CvpdPlZ*ekr#m%eC(
z33bjod;WQYB(8Vw7pGFv(*Xl}mfRvR;>%E+C)lR+uz41m@3L5R>`q;-(>1km`w_dl
zytATe&?hSS8P_gF;a`fDuTPBb7hi)-mT5B?@^c{Q@&uf}u;4GQMHI?xVrG=nMpxTv
znXZ`bbo3Eh;jfUJ?v}keSUdS6d!{PFX)$m9&WMPSconYKZ9Ln&+}P^AS>ZRcF8Sz|
zb$TvRCtBEh8NCiAJtb)WMsT^DtxzIYYtLYJWq36-Ku!~^Z&qZT3y{e3ERp@{MFQfr
z@-=qXVPRlzlZ(Q*69-J(ITItjGF`7R+^^>AP)MU>+S@!sBt*shfs-j}9yBtP;b8^1
z_!2~ki7_F%RzziTXki8(IegTpaR5s!3!1_Jb9wD?GG$rH-9EkVDFKXZ2GEGoU3wEU
zK2GMQl>&}0pd1jISTSm+BGls8zW`e82eqt!0Il%gC#2rW;r4y{?l0D)g@zk86ZyIX
z-p#1FO50UpGxc;h#?!5t1z4a*xL=oRto1~S2z|8>(I>p4)|$$(?!;_`VuwJ#G3r#w
zszU+LBXz=Q3I?IUbfF4=#Z+7gt4Zzqbaud~0xB7i9Tfa`bnMc*A95(9J53N3{2npM
zeC4@wg%bvG=1OF7;*8|zc0^*N^#_L*%fDVngHZjp*@A(()g5M-Kij`J(3iHDx-A@j
z$mlnEKb?PPb+fcsFW^RhRDK+a-Ruq`IewiFezd+6ref{5A`&YBljOKGJ&t}C=lwOD
zy-T5>zGlEQvCFbYOmOpM?_|`SGb$*w0L4d_A3TdGoeME-RIetP;EhRESWEYEH)LRs
zG-$6sXy@piyLVupv#x-L@bMP!NS^yfapCOwsKpWCZ6dn(hkLWlamRu4Cko~<!)h0e
zD7k_FebyOk)kq*+(kQ4!U%5sm)Zsc`Af&HmNHFkL8R~X<1!Hl0EE@v%P5^vl?mfp3
z(p4~)0J$a`TC#nuF5io9a#zd`(g!QR#nq0$#M46K_=8~(P;DEM`qtrF7KeHy%_bnk
zBU7<6kOr-n$X)pJ%-Dh<6eR%+iRGgBVfSgwGBHS=2w_uVS>e|U{7gF*WHNk@u+r13
ze!)=0Fua+WSEuIaAO`fr?FZb#Y5xZ*S9EM?MtGbP_Emis^^O!6k|zoU8_D+<>W!ge
zI2G>s&pG7Q@aBM+_U@{?OLxoGH+yAN#acQ&H|3lE!j(}!$-Eh_k=*kzGd^q~K>M@(
zV71)&Ogm0bxia8jZCNhUgXPp$0jbz!Fu`sy_aC%ZjQ7y*GF3X`WUbJPx{-T6dq=|a
zN4?%CC{c1KlZDMX6~(D<q`9J*9?Z$65hi`9)q(-bYsEqv^_=cT0w4mL8L0B0C?ed~
z9X2XoUDd3wGw)eQQd><*+Z_+m7Bvw!Vp%!0Do?Ed{g+_ov7eD4%z|mBJ%Er+5zn4B
zwZXWh;JMsbq>Mjky_R1dJNE%NufU7EmXC+h`S<PC96GQh4HMyuB7nLeMWa=%fmNsL
zYwnkL@#)L8RGBvABx%Y7UzL1z(lgOkH<$1`^Q6O^qL`w%J86jmW$d%>mDqMpFL;rU
zI2}V)Vadh3U0%c=968ene;`*`>w6$->wl>EiyH^#j0^w}Kb$yWvQSY$r!ODr>Yoec
zL)r|#pMzR60_$CRB*!dSh#IF%Gq&jQ1h7154nX&lg9KHq`P0*k^pjI!yPT#v0|chR
zZM{zF<*{dkHuhtNlf+MdlV&uRDypy62OGP)6Q6~FNHq3#4!G4s*}#CG`S}K|f-ob|
zAM2d`@Vw11B0QW~NQ_W<vszLM{s$(k1L>B1zIW<-4^VxyjQsY^&>U=M1&d`w_ihDh
z;H<E-v!*j5@lfOrw-B=Gwd>N{eb1Wh657X4E+dw%Wn5<+$=4Sy7<jCf{Q3FjKw(+P
z+{B@xIHrRXZZtw0;Z3E%DLSI9Q-2_8;o+WpBy_vHpZSfk^`O{%(=IUf{}l;`ZD8ib
zExTn|dLe1`&2p^`vwzJ4J~(P2M(R$9i{w69^I##M&@Oo$n8QP&)&j`p5%3#ug;i{B
zCL(ZlQzN07bt2Rpd#&d)yMFyzV=kFi2{3jw7$@91gm6qRKdoXu_LSnGnP6suwgrfA
zB62>de5kSNPGqv3`p_vqnabcJa?i4y#eH+VtQvp)70M^OeOHOsjf{F%X=1SIv%7lQ
zhP%!FLGT@J4y1=?3Nj>0%j~pnZ`mjhOrOCEfbjnZH(!xY-tUe#fJpN`9FE0}Dw968
z?wa@}>@D%U)1n;P-A?f~aUFe(DKpakql}lyDd^`o3Sal`s&m-ybiU5YxmQP)>B2LP
z`?-nVH)2)yqk_5PC)(8**o)}fL9>@P?A$_ThuCE<whlW{^8->DTI=dCQe>(Vfe>9`
z>n{tT@*><nO2vM}?*D+J(I*^;jy4UUC$-{bplPpkc345=JbytZlg?b2mS-if*&nSk
zZT(8FBWV`gcW*42G1Frd>fMFH0a%^P`|(30`i_~D=1##(cgpViXF%X=6}E_U`ikar
zL*Rfcu_kyrNpHsT0Z!(#SJLav{;0p7zwu&S7)L#ZIFChRv}^~3k~81$$?UFQ)R3r*
z#Sooj<|uYufVCM>jaM0wx~i@O*g#n2BHIUffiB0gLbz%Cz0e{HMZUVTm`618iy8ON
zijeI$8!`$&gNMs)!ei*EIsC{dxLfMdUDGjn-39YDJQjmdi)A&8m;QXIH2C$3@1ON%
z0w1w4P=3ju4q?1{-goVG0f8b;eWoMVX@Hhi$<z~e3N2HJ*q2K$#v*30<k?UsQlzKx
ztYrF^GcM1cBTAtEBZftQQW^4i3iKD{QUy=W`Z;7X&l9&;8<jH7adQ1@gx>{y20CXQ
z`tGlDg=-7d&syC<nHJNdg4fnL=$ZyI&w`5`7_P++mCeS5gSs%R6X;d-4#N&Ar<gTV
zY}DJIq$=={UZr3-TiI~$Jag%#Z8H&*_}xxX$)fIav^Bq=eczd^?0^989(cDhM1*g3
zD4a$*Tidr1kTf8yr~oe0V@o?~2Qb2yKyL6<uN>h>w~MizAG_9F9E8dbFU<#vO=keQ
z@zT{9^c+<04j!K>)Wb*va4)qOMt5;MuiqoS*oMj!NRmz$OS5VqIF^57s*o}H^pK&>
z5<|(X49V*!4E)C6decfF8S^d#>h)qZ*d2y=vq0ocmf%Pf*kG$NNOphP0kPVSaJB9W
z;iN)!{P`0_YQ&<7!;v;TZ#S>a(Ft(*ff#n(&fndai>K7*Wv3OEt-!XHPr+iCLYave
zFS>K)+DO7JQDe<6*i}tYQb3&%OP|?67xc7Y$UkxEG}j8iqVtjM<U>YZeIo$`<BXNg
zWEzYMsUsRYdq=SKq`p&2v$WJ8HCx6niVer&KT+`xEA0jwzmucd%I%V)nPeKhK-o7c
z4*FYa-_dD~PS+=e`!$}v@I6cdL&SBsKn~(0BdDk8#onDSsnU>mZ|Mof{;Z$VtQPBh
zVJB|uA9-LZ<(EgtxZete!`tLDL|R%-hAd45(VjB~sXhb6NYNiLS^WD9D2Ag7%pAE#
zmvMi9P%>=2VnywqZt_<VafiN0m?CUZN}3zZ_vn~oBl2FCAPts`?#+bR8XsV=u3P)v
zDgt;2cd|n6Gzi6JryDegq(M#=yPyoO7|HD{UZBdZ$RhCl@cPkt$m7-OWPQy&)9jTg
z?yKv4r_ey<8Ync;%*6VAe&b&NvJKrR^+Uh=)v#}AeSk0%X&SVG)pVg$iP6!~$%vKJ
zfSY@<g|_^R>ALDiz9i%-|7qr=10IKTjmhGVW@Lt2TW{0Zx%UCMoJw&1<*~ou>Jbz!
zpKowOX%^c=Xi4#shIjleEp_T*nm<b6&NP*r#HhIAcPGrFj}T!8wFgbpdjerg1v(eI
zCozOKkIum-_TY4|nB2(hdVl|n((F8bYzXX~UF5+?<XsN*A*xm>R{{!5&!NPx5eev7
z<!cwOi{&bmhV}9Ghri`<9v=xv2TUGotN<KYA<c=wvLxEvzU0bnGykk&8^vX!U>U06
zNM6ve-jR7fJi`k%)puGutZ0`w`zY!ihrmY$P<>-v$IxO!Bohxb(~D0+Gxowf5ejXJ
zAxW3)uK1{5U45v80ZLmSER-GngQnr75yXZ^5{5%d@yxF7DC@EFCKv1mukg~G9xUBe
z0;22lzl1Z7H<u`YcrhV$ze=wayb0sRO4<W;8jGV5y7B=EgRN}mVVdU)O?w9u0-eKj
zuC_^Us2r-iN(ZSVu7#!ile$^YPcX9E^r=&fE!5Hip8m@VAZMgBLKf~5BxxCD5){v(
z^Tv-J_Tm-|&O%+R9UOM1u~%g|6~6V;c8sKzneGr}CiBvK1B8|F{-gyg?kK_%L{yti
zIYJEOT*Cw-vk~2t#G|?cU_$cQ*qN6<%$5Kt#6(mE0|~{tIDwOUI;P?vJW6%Emc67d
zrf!Z{n{_G7F+_36iN*m^4+t~^tDHlN6*M3-g#G<3v}A1!S#?l~X3U5^H7VpARdA1j
zUg}X#RsmxPAtYv|$a(8-xYEnb1JxO>>oK0siRb1!R%pct)H*P<^R{6ZP^Y{n`I2&l
z{-!=Dhf6Joi>Z(X^2E^^!d&OsJ)uc`A+vmG@n$Yb>4@fi;{*GCB6+`Hn&CO_4rdPu
zup`Co!4(T~C$T)N2u&lrdwysulV?ww$at!<KS~NWv%IsA;2mXzd3^XANxyVAFj}4C
z;URV2ra3)YHal6r*U)D&X{4%ui$mWf{bpR&;ci{x=;_?Z6Kq=<L#lJI(;+fOHXo?9
zy*^629ygO42G-?cnnQhaabY3bIJp_Zxca8mT<VP%ZMsc^POj5ADHfT`VA&GYmkfhk
zY6weZvKUYdTz;5eSja$J+iiy|>-50MGPUBIbUh(|CgE)6OQa?3UoRVhU!b0?$$bcz
znMFp{Ppx;dwLLXiC5PgZ5Yu>+9}bI?XIyA!DI};RU|e$_2xZq?f=^@X+igk5oMg=J
zJ^EI&wNf{NOQE+{2iWavkUFb3kLqxDcNV^SW`J>DpI#bT?Q5RvI#iQHk1vaC60vL)
z+WwH5*+H|uy84=0b-(3n*m~`(mstRgi&iWOwSg%PXdcL)N|7Xm=hx1X@&`_h#d{<h
z6etEhTh#i76=_I)F->L+s$aTba^knI**hMXP2Ndt1g=?LeV#|qfIn}xl~APy!Ui83
z8kki;sYfg*<xY1qDxspFPzE>JO2Z(TLim#+5yNq!?o($w*@YJy18W%MHflC55lgXe
zxd7v*OD&7_-}E}ZqVz>yrE?7pdZ`aOR`LeSMIQ4lyY6;RH|;1Csk3GFK;2MEYekZy
zh3cXtRKibSB@Ci#s-YyjAm}t*-9@qQwDVs&DbL*j42_J?ikqDi8|#mDx0dG3#k&eM
z)eD^|rssDm&s(CitW24Ye)OhB>;%~14YaHYd{V68Pe*#jMh7>m>CXSs580k$CG>o<
zTF5rC&|}E(r=8FnOG+agh16MW)53e=JZ1ZN_<EX&yhMG<y?Ro(c2t!gxwbsgn5Cup
zfi;oPPhGZ1LO7!FT+W#bzIM`@UAJYRK+qPQG+{lkzrGyPAyuxJ!()>I@j@<=tiW(B
zJR%60LfbXFbZFalqebE6`ATuz`K{$;VxKc%X|EhMwkXY-c<$!T8m&fuf{fQW>;Vl*
zJYnon6s&z*I-@z^JE<xbRqYh35rY-F=#wDH_l@ivnY9Cz#!^IE{#)(szByqWcx`-}
z+}wBMaV1@SxC_xOs}bJBh?Ta*wN^z6bX)<vXNO{aSxu@0&8FuAu@QBewA<>_fFSu|
zIopMkQTvq-Tw6C?wA~pZ&YTTLHqNHY(|8qSr}Dcn{Uvp7YvD2zE?;kksHxSzedEf>
z=S5idlUjFqz;(MS$C*1^FJ?~b3zPnd#NjQUBd2sBD3;y7Ni~$?tPJQ_1tooU%(Kp4
z9DQ$}Z$aOBS%(U`{pOMuJA;s^TzUQi$<yWd-B%!wd2%<n*BBYeS;>qC>xS$xHu7?j
za?S7wuve=49!E(w!;onvwbu7k=}S2y$vvFt_`Xf{@h8Xqy!%0iO}pXz=AI(HlsD=J
zjf#$jIbc#XMLoyWZENeeeot1L==j)nRdNEh)Pe1kX<bU5C8Y+@>tJ)8{up-W=d$rR
z637so@>20xC0dvLlWID)i=}dRV{evD)TuhD(fRW~z!Bp$?3u9ex+}&j`4d8<@Cwh*
zU2@2DvO$BehREaQh5G@DPTs3dlA}I}9cLmh1blRHHIX)OapudaApi%QR74(M<hi*i
z`<g;D3XzxU8VTSrs~zo;1D~R8s&Rym>3&7;v<ycQb80~59!5i+??t_feIm59aeO7@
zH!Vfs^oC$_Y!qSw0yp<R2tAuC?i}e-s>Ad7j(rg+Mm#i4Ci}X0X63`>vX8~SwXj0<
zjaZICnDUgQE<jI5<=?UTfsfo}&4y2(K{EE?HPd}0u@~fq0XaLP`Zt<p4Gnw~>H7MI
zLTFwWBguua&UrkO8LuKa8pR?$Jk++Rm?LL~tiO2s);iRZl$r;N(;e3KiaoSO$6&VN
zZiUyM5c5sY1Ri^XF4P@!Q|`Kp^-t~`GJYx2i39#;EZQ3EpSeX4SeJrMqnzn_J4jf;
z&B4zS@&~1=OZZF)=_pB_zy#L8+L^%qcuyy^Hb}ed^=TuevU#0|k^$7&H3*-9Lb4`o
zNRdVDPvEbbMdzVKFXPGMQ~biwxL!L}4T#Zh;Cav{Y}>cZtG^!q*oEw+?N(kK8|cQt
zX+Gz5WU+CDJgwr-jEbtLXpoVXjuskV<M-rA>knKbOADGzks(JrGC4jvGT|}k-a7us
z)X<Rs%acqhgPpl-GgPuLs)ENsg*gZ{RWiu8-^Q-qAtcr@5L0-bBn$<%>7bhW&mkBM
zk3}bbOp8o$IdWy#L}^R+D<h+Yo{rP>73?|l&t&>Pt_KaSGx3&DH1qRHUFNf`AeHaC
zoh;ShmvBujEN;3=OC@a7LLYaknP|*w=e}}lKmRUTq6E$s7Ji!8HlY6m9MrRu9yyyG
zn{2j4Qbt9cXiQ+fkq20D`HuX#cIidYG33PGq}D<uykwL0tc4hMIN+F-@hOCp$9^JT
zlOO!D7}kWRKA@*O4tkv9kw!;)p?UvakA-d8<i>jp<FSbqWjG{h*X~ix9V0r6PFLYg
zJJ`4$+Kk3Fr*3BZ1172uK!PTPmlKB#@O0W0j$}<b2M5dE;C&dPH+cTo!T0Ay$n{7#
z{Wh|eJL$wyku-gw7J5Hhe^i_Rt78GhuuZomVgCV?(V?M~NP@e9yArf}v*R2F?n741
zF$VMr?UdGi%O$#x8~`vQXSqsy3`v#CO&)@9J}s<s0Q6OjTwKo|aDMF6YSyKz+0ilW
zQ1^5{Yaab;=U?$~WNkyva686+s&(fR6B|vn!ZIm>?$gy2_`T+G^JUHm^e=nEicS2a
zG$;}SOGs;*1cl~BEe@npuFd;JZ~97)&1m6FS?17u-%*VLB<kaA^hbfmz5b@R=EwcU
zp;zZw;qoZjrD$K!!B;B~RJz>XyNM|Q!&(H4b}H{Dv(?V?RudG@U<iMy7g)DzDFIUs
z1aK*jzzCPD^6HkU`^6)*nR(+ubc%X~p;YdI`HwJ3y&T(+Mvmju@tCt#YCnArljqH?
zw?{fUjoyyBp8WArS&Fcnu2+YuA>n!n#+tBa8|I8fEx7>rS*-R4Z*lZ+BHYZU^!Z|^
z7?#K6=v2pZKLJulJ8Ubb6aHK5nXhk7xXqkQ*CTzWLoZxglwIq+NUzXXTiVbKlRG0P
z3jy&D@iV<QBhl|QS8(7#m+a}{oskg_j{h2yzInPQ?5tv=VdrL{XQ!vm<A;%!9R8+-
zN*iO#W-&*`6Y}c$wc`hiR|oIv5Moh23j2X|`O&-}Aqh{AHX?Ld`1b->bi*Dx4*BqL
z#s40nhf1di@SyokLaAwp#U$sEbnP;v2Z{CC(L|FVOAN;Ps;Pd9y{vy=%EmxPPqMgE
z=R5a%w`{uSB7NBUxsYLlJ7F@xrlf~AYqrqBrwLbU%hG<VnkowtmEn@*Z^x!R88?2?
zUXD?Mk@It?8fI3i{^3T0opd&KCx3;aV?_CbGur+D?q`+%2HbmFH;OlmWrw~MfPi@^
zT3}${giQ}!ibCoS3L4T_*z0AQW))B>8uZ~y!{Bm+6vAQQ`sA>fQmRhP6BP!lOwxY~
z1iXP*bY&b0GA6dBs1Vq~L46GD>*pFGXru#giqs~Tmu36AJ??Y=f$3WN1BaF<88EU8
z2ad?`-H$FSHQxN-(%}Pv*VBFK_aa=;g-UPtUGhXufp6x0Z>6UIlf{}<g^TqM_jijz
zP@SCCy>?@P`_47tU}@kBBjRt_`#<uKvjmK%)-fc^wOp~%Q>4pZxXG2-i|_sX&I;sW
zviz-A3#?5g-o5pM?(D`2SDlHqhtS2rlZeqSa&7~-+xc08$IzM5DH5J~GJ?ZBk;oGW
zBuAY0N-g$Tvp;`HWKQQL8>O?T8c<L+4#uueB|(K?zA*}M_v8JsHTpWB6;kxEt3A=h
zbExL|zd-jQF6YDs(^{tVuy`2);E>bnO&kqoWpnUyK7C$LYZ+{IK1rQ5?}g+7ds@(Y
zxkQGe9slbm<D%b4Tb^b{7kxPJ&_AWg(^>37lJ=9)&-7aw8<fZsQqS>|AkBUaW&>#&
zj~|-L+91TA4AI~%DH-C?*mCDW_!u<6sh-yo^~XW!ZuB}OZ~=H6UVULpygZ;Z<&NK}
zG5X7+N8B@$pn4!LLUFl7BJDk)S7+}4EQy=%zC-k;<)aaP`~hSMx_N_4_qd#zMFGO|
za*;b@P*oH>hb|tka52L+gMVu3y0x->O(3`fH+b;j%~u|Yw@4u3;%cFkleK(j;&P_B
z49Z)e{&!_|u}v7n0MIVW)i09qWER!vJ|wqv2{GOuruHRfz^Xkx;3{b}0ppPAUKHor
zYHOMIcQ5RRV$G8H*q_R4i9E|vJgk^rBwmC$-%}PZidyT<TBhvbPxcr^5YVq&#nDf8
z(T9WNjq!tD|C7OMgW?DfEZHzt_lwPB-+0cl*^R)>w|{2}IDo+tL7Zj;ak5DUI@!(h
zFC!BRvsHY9mWNh03GBqvW&K7DfjESj1)RS*wBS_7dH${*`c-V~P;3&f;`Ea9Dc@w7
zuBRc8Kx1#`fK5-xhx}<JZ$BCaDb*O1s9r5fbd3R2252|dVxe4#LfBcggX?VNfARv5
zk3$b&t^%yrJM{0n1$<jEqN3W-Y#69|*XH&XP(Qsr{cdmCy39)iTI@GUVVN<WNa0t9
zo%?Rj-;J!>KqM-dSX-a(Y}nA?v$U>EagTU-9PxEo1?vKP^gyGu_$+r?y=Gu5SMTlz
zGRqUJbhQTmWV%s6a})n$!=HT5PC?MyhGHmtI<YzWXrU~$*w^bPBdT(%?<;3R;@}R!
zJ>|kHrbCM;6}LOFABrbdOLYt(mY$7cMC1)x^}g8b2O$$PB|O#<ucrAmcT(Y}uiIhe
z?QwDKudhUGG+KZ<3~VGEslG%ouwZ5V_rjmn*V<8LlQ_ZxyyS2V1Y0<(266rzeoxrU
zW@YDN<+`+=;%K8gtM-pLiJ*M^%^OevhCAnpr>$V#>skx1<T#vO2W-DPzerfD?#}p=
zLvAnSsFTI2`NuEHR7bN;y5&scx{%#39KxZaiQho1k1j)=OV?g4V~dFnF+m6UhAvLW
z9YZ4#t6}F$Rtsh<EF;!yON|^Mnk@}B(Q8%dT4PRA914G3RPsOH{l#u+8C<S<ZohM+
zPV|IsAwELtWs=3FT>9Ud3qV-c+1#LI`#4J{Oy!mt{`oHMuSwk(4%*;;I@1DTdVGsN
zr9f;+^j9jK<{{ncCXG?U`PijrormACtd@(3l${)H<0j<aXMev@p37T7#W*_NRDU#x
z@$c&OSJuvALxaHSuki8bG>W#tZ2bi4ha=%);^q`5Mi1aNK_=EiI9n`xU&u@dH$r=U
zDRVF(hbg;i738|CT74HRI-enQqSR5jdm0g;ZjNmblxxU%Xovpv#aSf(vnK6?JC4PO
zS^`3lLAz@(7hzu3--=*iptZ5u$r)22uf>#E;MM6TPI(H4@3=1NydDpPlRbW#Ju3qT
zaj-?yI*!FdnSa=kQ<EH#qK<(2cT05zJ5X+E_j;alS#RMxF6(T-Y8gF1<UzE;H0+9_
zuoi5b_tO*&xBjhFp>%$~H4c-s^|)|f*%Db<0bsvwrl$g9le)faD{M{ua&$dBwyU)K
zXX11o#2~0iO0eya$x+~)RZR10&b!FwB6rj~fD^>!g%50QZ?ZL^d|B}mIexA{vsms)
zp1%{Wi~w3ybx{g6;f31@SL~RF`Rr&U>oaXe9d8IfK0b1<HmIlLGm(z7-}=}?j(mk4
zub8b8(70JmlUQ=I^`NCSGYr&~WkYQL<)7l>EFhB+Dnwxe`RjEn@^_))d?VEPCVs;e
z3)kAFLhCX2G$O~bzDoATa|h3wQ%WT5w{=ECEdXG)v3iF6*RRTOU0XIQG?r%P-h<Xx
zX=k1}Vh??3vn;O<|25W~^EL4Qp6d1ncf94Wlwact$f=XZk3t3_&8{y!i6ikd^Pi{@
zYC!_+Y}>wC2(QDf5;q`{&QBVpVvtX@&|&T;$e6>zd5!jlQG+L6o0EoSfAWa@RM@E%
z?z&e=uBgQ5Yp7xC2X2%cX`I4X4G8GC(&lcPvt5}@PwFUbVLowTZYk}rpgA2Xu@~go
zSd(nGt-Q>oi*7+k?Coa)Eeu?&RKWMM>m3JLNOB72)xRMPSZ<G}lH8NB-ry=T&mKSX
z+{ZHL{T%imB^p>e!<{NG<6qW`FlVFs(YwJUBaWKohNRZ7QfUg`<M}BNPj#WfqV2j?
zNJ*p&cyyLbqbh>&45}C~JH~o1)L)k4529*0A)Y~m2O_v9jNPSF=i%0nezr_7!ps|+
z@<l|5;$3Ak@EA!pZVi^jd86vztYj>(+loIK=vs``AUU4>6$)-Rm<^hROwS~P0_+0m
z(a%={VwIqZoYN%Q&#fCL1*P<WJ*b*;#wBxg2xS1&ul6iZjTN}&Yo^H<!I=2<DMnCX
zJ4+50-uSZYiNR@WXP6u!%`XIxE3p;dR5D~%e8|Je7dI2B%hD;moiAqZIN68mQtygp
zAoz(-{nVdrk`@ahXK&2gF}WIX{E>yp(GGN>n_U_{1qpR+-{PoU>kxDGly-E?mZpmj
z;7&}VFdpuU(T*WEVC@dBFd~($k7%`ll~L461n{TnEHL9%I@{~kb0-#qSM0Rxs$T^+
z%)B0D2jdi*hoLVGPF_ZCX%Ou<8sE&ZaH{`W@iD%YdeI%=uqZeB!m8BNi8;4?D?zyG
z&iO0QBg`C$$Qd7Qw@Q`Ael^g8=7w2}J#LT-&58MDj+>@6mJEHfO*Kb>efjQqZ7CJS
zlQ!fy<Fzb-5I+{|%b~3FptTWOX@L0Xgdqezl39`0tKVO~fx;(f+FAzK0tukvxGSUE
z%iu3?uulPFY`tsb!m8A>cg;TVfEX}H4StS4Wz`PI{2J~jUx$mEwYqjSwsh7Hyti2K
zVsrt1CbtAh4VA+5y+a5fW_m%*AqAha15pr4BRB?G_PXCDK}8`ys{qB(MjgachKOI3
z)Pa!-6%Y^CGN&!3`GDJkm7*uC?8bAawFn*F!ojrRRkoq4g^?+}gtN3t_ZdEf;qQXL
zAh!puli%3Z(lRQie5<dJHU37*jO@<N1Ad24^y1+j4?9WYh68_z&wK$XnBUQD+<Kc#
zse;`hQb&HOvdRa}(B@EN^m#B6E=2XT@#lr}Z#k1yD}FVzkFGOp8E#X_W7(9t(Y>bm
zW?aE6D-CPI1|wdWb1c<82a*?OZl@f~g`>%YN*Ji)%EbycbBKCKWQtQLJ`GG>TXl!b
zWzd4VnOW^uM=*xmqq`<nXlQ0QMO$}M<erB!)|Sgju2?~L2CRe#WCm;Nwd3jTjhk&R
zchF;F_h0*mz@#2jaP<;FV+Bkw-(#maW7LL0LZkIsbudWH%KN29Mj9>%)a#4}Du@@L
zqfyK#HIJnR>-yn-->kOevT4t!N6QG4FUD~=qWX|M{L%EGnYlIhx8DDuAi;+r!DNAf
z2cZAmu#}(pbao0EM10p{bB*8L@dnqO0;OjHRs4IP3X6)gcE$#!X!e%r92{!hZL9&e
zNln5;P`}2MZ<odLDBrBGVr=YW&#A02NnAntKtmS5t;){+MS5D53O{MvzN+p{5I|J)
z>Yp0Mwzs=7+RJ0wKd5RGuWVw948Uc=*5#|LtJ4OGC1R7I!#-fYG91@ef`bjr%y`9f
zN3hIH(U7w#FD666vS9=}SzPm?H8~!E#o%^rLctE7qvXi^n3lTL;h&#;oTv4RcSl#V
z3vBox0>+=6!_S#ht!qAI!7l;#rXwk}*iE-3xDn4@JLsm*{N%S8fEL;}F`lEF+>n?(
zV-uT<bEtge97{f1qF0?9=AmsO$DT+F{ixT}`^E(n3#Qf<*vb6jsGFCFs)pLluKci>
zQMiw{vOkh6Z6ArS>Sl0@Nxw*jCHO8m{7XG`dRCknl&xoNT&`KQE*+<DE7}=xe@e3e
z<6s}X>U?COJyEfQJ6mS(Pf!r&z7U6aCe!HeFH~3c1I75#;=Lf6BV0B_0;eU;$0`i{
z`b=S?!y-$xfneC6gCW%CMnYW0L<v0_Ob_u3gYpgchIZ}9l_;5l^OW?Nu+?c)JM^a!
zJ1vpIFRBwAu4w2En&>g%1M4vLk%`ZddSzgqs25s$?VP#!v{CO^58RZTXz_i;%UP!8
z3y8FXez<#P!5en|tg={@DUgXRalNG|SDnWGj`dv-JE@?coU!R=w7vCKqs7upicka_
zk;zxxSj2My?xcnfdV;0Z&ck~T_trSIKE;_w{xxMc3T9h%__z!QO3c#|w@^OkM>+k>
zRGLosIa@X^Pv(9%6KzyVuTd4pw9&YHtk?M{U_QX0!cjWkFd0hQwOC==X^KqNGE@Ad
z94wTCzA9{V23e>;42%h9_sTvJR!6!m1nngXQ&at9nQ$#CVwf7D=1ifV#LTKE*UIBd
zj_;JafqU?@q6*2$<b8n#)dgNei%JP*BYe`V)Dn4|PK&gB9^etf5Lvi%;J>;<^IFoS
z#eob421u`F&o9VSh>m_{rytz!i|tADLe<oI4;t|Yrk&1gEsWQk4c0ph6_K3f<Jv_n
zO?*p3kL}VKG);fFml*bl*|@j%xm)Frdz{jp*&td7pVu<oikbwlg~WROY%>uqBSly9
zGYW$rPK;T_7?{OPbTy<#_`EGEL~#-;oRb<im@D`r!$?5Ap)#K&$yCDT!&eAwiaJzD
z3W^!7QS$F&-@G=^8cuYQov3PeA!^n*Qam4-eEuv@=wyu!4H_qUXTMvDyA_ZnimEsS
z-9@`b@aHx2VqnQ20M5{{(?WpVaMGxT-C9NEqt4FGojr%=tzPoLB1fxC`PSC51WFsW
zPpf+j7Gdg@0xfXvbX~1&&VL2=M=i-XqVbqr`prr-APWN<CV;?Np;cj+9%(AL)&o<^
z-LowX^9={;LI!O~2WVAWE323Y;5@7vi|)|{%NsMxn-Jvn-p$d(y6J!^X!$OP()v7E
zV2zT=^4YaeE}oW9ICupf`NRw>#YVY%to6Q7ZQj}W*dFs9I~Qq7o*|TZG(GCou~3+{
z@zNi=!gcpxog!jI;7|1>e8#6_1bsqnrYh^fe{>WQLO-h3+SKG!XB7{z@ljMmUiM$a
zm$RKp?%^?S5J&)Z{dgbp2iOi4OMdhR|1wd@<;t8Z^DRhBp@ZS?!hvd_z4PY0M{51y
z<{pb_mGzGe8-4ajfs#F+lzAT>;*2TJQw?sBv6b{RT8=hr;lFDXG-Q(VSM2Re_s*~`
z)7IXl*XZgHGR7fs5+ZeWLsL+ffrm25T4+cIs}i^M4}wuro%IXPZI5`vOFm1n?gM76
z($LvPZ+Z5wMjSt6gP0&`l8`NpW)6d+!M~ne`>44;)42AXK9k_6v8X6JJGClvYXac2
zcBwH!n>^bn$(eA9K6=`>hyv5;%VvWB)u^d)kvZTuv={Tvs{_)Fb=Z!#FJZg;6~FrM
zV`;J1N;{?F;4Cv%%;#}Ew~u&)?+vRK{%WZ__SxBbVJs@y$J!|%1UI3d);gzc(don8
zmu3y78JmIucop&?WVRhr-6bjT8Xz$P{JArr%X`PrwgSo%FfJ1(tbI<b{s(QARFqkT
za}_(}`nj5vn4OT2UEi{|J+?yOJSTuc_4}aoPcpaT*w%*(S!nNd8LI<SX*0nJumZ;f
zkS+6v&45AY*xK<=5|Z0WrC1zA-|}G7=;D(S_X}ICjincv&Xb_6js=F7kvG23Aj2{b
zh5Rj4&6D2mR(E7`NR&+^u$l>;JRhB=TB6rC+aZr!BypUJeQcUTj5Lhs95h-e-L|z2
z+MDqg#1b#C{;dkq>MEzU*Z$iCGv_J+W{lI73sEB}%v-xk)BSFF5iwExQ{Ri%%g(s7
zaM|JMI=R8X*HIi#<gBm6tkw<pRte%zt#SWjuVbJfUvUSfMEG&!xstoy%4%A}<(aza
z`oL;H3Ga-?(!B+kQ197s#3bx1S76VB!ts>FWlt$DS;L@WRA4<~utM?cCKN>dXZUj3
zCabNKGp5|3KcmZ-r8QEBmb~n}6AU+GPqX6l1ZR322RS}Dn~fS(Z^=*lkF6^d#iMh{
zqAZMV&Mf|?NfVureah};LBN?IUZc3-ggCx8_Nx3GIrcequGBn4YvGyw|5<>QqwvZw
z$28*KWztn(+X|hqZcat9o4@c^@u(-k7YT=Ud<Ygc&mBez9ru$m+}(@&;T=o6h?&*C
zrCI20)`5-KVz(Qh)-ONG?0ip10i#cUfVb3;ug8n}^LWPNm4}3qm6x${!^+?$!+0_}
zcYVU7m-|{FilJ+;TC&h&xhXT;)B6ODcI-hq#0@#}MXI;5`#)+Wz$m#xIFYZZ1Kib4
za|opHhx$d&kLCj*+CG2PQheloa+O^bBcmMQ9%=rIR{OEhd*3^|Y-}aC^93CgFC9||
z9m{FR0T`E68qb&7XCd-hpn$zffsXX*M1dlb6?VdR;45}fwdvAhkc_->O;{a^0ugSC
zM4s>Q;+NuDbqFGI&_T=_wVWpJ!d_2V2<hOcwB_hY8Z<OWb$}%`4|#tAE;0Up4i*Eq
z+$ZqN`m0{C4)(vz2tly@^U|l2V@tBQ(M^;pdY|gWEN_jga4hlz_{2g<n$p;LlgU8-
z8z06$RDl;q$DGqu9Rhyf>GfiR<#pocYydo)%h~iCGWOV(f7UP`ID+xh@Uqu(qvdMN
zqml)W_VwNtO7^Cty`75R-{yxOw0M|;`}W$-STVRvoyt2<-Kwa?GciXh3EC(^y=dkF
zXR@)tQ2rW#+~FhAc9!CRb;yrri632BK=QT0cM=K$JZX4(ZdTVMb1Iin)%rZMcn;_}
zIQ4ixFV&nTy?<T5AgDHYgbf_rx_acQ@EP}S9U>Fouv1ZV$z%G{cf50eoSg&5>tp!*
z+-NGfVa*YB%gpDUpdjIk`rGZXiaU+w0rxY^`O*1I0yQqHwH9tlKm}anG`jeBAos*H
zrOnBl^}rY;s;04+YfI3L-}gA~yJu^Hi9!)7Ei<0Q)VTWeR7Vq6AvM+pw-22%I7bBn
z(Q)JRm{OS+Yj1sUENAH*3-c3T+C0X4h`j5X04w6_KL#5^2!1D70u+esw3-MvUoa|f
zaXcFFlrN!hS%S;M)ZMW-o4oGA7HJ$*pd+mqy~a*%y*s%*arJE$0xadt=MPz|&u%Wu
zG3T|#XmC}gSM`S@OyMkA=9Q8>@O}ICw2<zW>r5SGw^O1b!N*W+cpfq)6b<PTXb}aK
zt~GhAe_b9^-s@!<rHyG<nao|B$+2IOeEw6KdVK_4EzsOEY&ofPW{t}wES&8^jCzU%
z24skRQ%k>IwTiG8bnJt0hRSzT#-R>J%>tRCSq2gv#=~Y;Az==PYC*X>%0j!8{P|>6
z&(h&cgAh}P7Pa!iNfQU?!}uP}Jm0pSl{V$H_W4dd^|Tq2W9F6?fc`i;48bM)@AE(H
zDAG2l|B?#i1W0|UT7XYwyE65P6L#Cuqn{|QjOrlXzSQDz2f<K9*pyhhuqMgtpGyo9
zCVZQfC0cmlt<kxzCoh1>MF$Q;TwOU`Eho!X!;DxKi>6;zM)?Vf<b$q{Oo~w9a>KoP
zIx`EfanY&F#w7yULPL1EFv{yc;pDXXCq62F`BM-R0OvjYBMSR|v%6e8oT@i+HdmS$
ze=ra)G>pU+cxJs^#n-XWdtvft&-S#e=xE0O0<?9?;4q><m#;OLDN)ockTb_ps6Epa
z@jmoEGODIwZB?3I<Dg*Q^wQ%S=nab&TfVIYF{aMb9ro|O%WKC>7Ur_$!sTW*j&PKv
zzTV6$ZIiSwkp`ljd);ZQS{`zA-qqo1-<~$wy%Muta127Mzp8zch@)iWy)+(qTB@WZ
z_9FZ>^^W_m(?BTGjKi-5hA5SxNx#{81G@=|Z@y?hA~0ZQh@}Id_`V18d>b=jq~kE3
zUvkBr7Pi*zw97m;B$W{$lPl=giIps*s#Tc4qB0?N4NdAl^`38!B3GUCs<sd2uf|Oj
z{#Lx3TAIa#m_(BFJ6Qu!h9ZYiqlIIIC216*NsUO+CIld1n<DrWIzFfj;r8Xl+W#Nj
z1+g_*GM?RUe*B4sxv{KU2(?ffKmUdo_MqnxI>QwWRsCD+glU~PFLTIt?*OOczgA3q
z-^ZO5*tmFtP?gCGP-F*Jd9#AXrnczf%~Za?RtM0fuLr*mI6+erV8|?RkGM0SzlSa!
z)Z6ZDr6}w;??kF--3v2iPlt4hcdi!qgIfev=_3=k_4-I+%`^n%#ULg;p?*F%Wz?Bd
zAVhz*eEgEOWu1Lvy@zB<ZRmS<b$<F*oU$mBAjy#dN?zonu*8XBPDa;N$`u#bxoT3@
z8dl_CMi6ZH@Gn1}enBkIixDJ34(;f%;a9jKiorB`&kVW_X98Ar<Adh*arSjsZ>%Ut
zzQt%}olB&>p9V4hXN{p;r;I*mH|~leH&_?3bzL?_+RvR@70O!&?s+8T{;whkB;?<c
z3hj;Juck*=wlYr;g(B#ei;VpB^QoCs1Krmk1;pvYA0CP6EitE*GIUI-e&3*?ikOLh
zfljSDy1sq+j_6kYH~~Gx6ip<q@aeX6$pY<sS!sao+DW?hJGfZ!Q77~Q7e|?EMa#)s
ziXuF{#Y+TMy<-F-Z+Vr!_AFXw?7P<CuIRtjILHqhQQi)<lpY=wM%8Y)xVh^Bmy*_$
zI~sS@BwSy}9L_dRtk(I5ou(PZZ)QCr?Yz<c@<dg;4(78C1^bww;>h2kC;^+S!&DoQ
zBcp%2O1qB?pUXWE#nbuiAkAvQ$I<9{&J!f5a5)!q)Gk{_0g%d^2#y*EaeL#-H*Y<>
z&om?uzf7z-XS`g&&<a<0LD}T(H_yVJiwytabX+_<jB~%uf5vh4fHs?x?W1?bNUtwW
z80cKyuTR2MV5nq27m)AX<O^2ciavzA?3Fl8?`5emYoh`ipR+#RW^nXcK}F>Aa(R)w
zv}BC_$_{~Gle=W^4fc*cVb6DEm#=7VZ;$f_jyhC%hrWg&6XPnQByQ+jEau~^ZTGvR
zG+U^iPJ9;U|HmG|he<?bU_N}M#QQ^bx%|QSc@uwzV#|YhhKtJ<s~=p%am?B?O_~w!
zSXt^^RmfYi(FOv~d_;>nDg&%63`B!4HSpw7{o7y$q=Nz%mX|)P5Bv7Kgz)7G;}(X3
zbDLBaX3qYz*z;!*L1u9T%wTzOX+e6i<P*^C4)?f?T)ouo@UfR+bX!QU=)HJ90CDH?
z%M0<9LA1a|P`dEgsHpcxvY%Cp4}txVGBRp9d)x9b5Kf%%I2ag^W0tp7)%R0q#lEJF
zHYs`A>%plw<U<rUzl3k|GBCPrniG}mK6Y<@2MIS_b6hSHd<*=vex_B|1BI!`$g?qf
zW9x5fYzF)N2?ao||7xR#nexR`w~A!-J)Nx(+&|$^*haWlc-hj3UTDT^A>!&g*r}h_
zj-GdyHl+@@OCx$UT9zZF)LFMWk7UFFhKd$IGe4%|Lq(Frk$7!wOzl){BYZhOtQLpf
zG*`^E*H57Wp&Wfa`aDe0gUfZ)$D50OU<Z&1IX5*7oFByHS^`6+O?P1kYR)-VC5IPw
zQQ@~;#Ctm=E*0g@kp7l1&>3^>k@c;>Z0y;erC3Le=1V4{GoL&VTTiC33iv38_3c3c
zF5{ig)aNi&=HqWGE9o=q@jE*^xw%Aamc{XzOI>rGR}a;BL5Qj$+j=TEwrpBxM~j!|
z!QX?0rCY!Hxjt0AZn~@yezCv*wF4=Yy-tDYdBk1RS0+z)L4LJcOWoklI?#3T8P1F8
zW%9ye*@n-Wsn3#--mvFV%E68Pvb3bGPUINIO9R5dNTP}sk3bP`Md7n7B$!rr77iSh
zh9Am3J9gxSe>Dcgui$OwM+~|$B>0V~2=JN>q)ew*F`CQp?ehjiTqip8PUgz#h+(=X
z8_g_2&NUwO>1M#Z0A~FMuru|;YUg{mmYgr{&J@*K_2J#U<I(*GbCfoR>`hm>v7N)R
zUr$mbX_P5<3O1US=o!E@LOy)Sk{9y8QmkJp|1EPQc5ek|wVtv*=x}0%SuV}meTkWE
znJ3no9<Uvh>NYo3bQOBP;Z$qw^*aJtOo@xJsaM}at@Q)<{n^^|F?d8h^irxg3Hdsg
z)%9^xcb2ysQ+Prjn5Lb;m(8FS`avUNR@(1X1@;@yo>8QEp_Yf>HnIWX{M@b7aAb1K
zTuT=EwU1a)s8Vpn6L;Zfo6Z=&O5P`?r~<1N4-#?tkFn-s?>K*zBeO*NE^BQz?#Go<
z9h=xim`EcXH)wwF79DY6X6md2>pVZUd=<x$)7||^PrKJ`+a82ZcOyLy%^DwY5bp7%
zAPMrQJ@R=l_V*{Zd3G<B+d+NnIpgWoK+W&ykeWqkHQK;TLvJ>2tNjUB?8ElWU7XHt
z|5v?j=cO3Pz6{PrX7i1skb1ROr8r%LuqpcPsqKYuq;etcz-?yno3(|(q>rCPH<f}U
zGin%55F)t9^CoZ?E>sKxjYUX!>SoR%1;ScO(_FR6V(q*?DxdS(CvP(wUADaR5Y>x|
zeNT{~#Q*HpXInAfL~_jghSTb@8uD0L$?b#i=5GIuZYTPV6AtbG=2Iu*MsKlqwmJAg
zh8e`yA}wBa7V%<*L3G#)gN(HcPdWf-fk)N%jV+vWbQ((7xSS2AP4^>woyC$3@GSf$
zIm7BKPTo!k#DpJX>i3Z~Ts6C?a&=YUH&;u;b8f~`#U++cykECbz<w`3ELgPB+hi>m
z-uZ>ojg`!I;J+MlaO`iHc5QKRAo$Zaf-8}2EA9;61TI0BG_}|1K4&LDb>*wuub%p2
z&*8BdPF5QS(%XtJ5Eb-l=}=X4usA226R!)E>p0{|NOT(02EJ76RCk8Eoq!H2`wL{3
z2_p)M@urSI*zOviiY~xo#1&I<(kuS4-&1=>k=`M{?GOnNT<H;3rih<_v$d%UoD`mg
z+xqcJ3I*VZc5qxwFfMd$uch$H$^>orEdAMKpdDRlDm<Dk4L^S*{i|$(<#>A%#7)~s
zZH5q6l7^L}wL-qkmFXW9rPhnp!<~X~RCP2zO3WG$$NEjSD1@=4IyjC^!8aNxHKD5E
z?w)%(`%gm!Hg-tc`m2nm$%wU9ks^iMZ2>iPd6Ug@kRoWwSAdY~0|o;54CW%X?)63u
zCPQ(&hT&mH=e<j?b{4buQa2J}#lIN~Gcf_PhF4P>5&L`n$HF4{&U#DjJwwc;xYc}0
z#Zm2zR`S>B4Kvc88x79%t|#(HQeQ$16x`{OzWtDP5H%fl3#L~=XOc@!AKHP1cX+T@
zl7kcqM#Kx%`$SiElI?CSaF{IPadgqrK51Z1UusH2!}dix_a4+pVQMC{Fd;T>Y;3D-
zXpNc9%+rmQKyUGU<;4X+rozr!TWDpBZgzdn7~Hf^{^P-$BT7Y@c|JgAN$p$nqR3}Y
z{3`w`g;JoVNJYAmd5+{JQ-cOy#5Av`NO85rSRn^qs&+U@`;kyIJ~bI4L5(7zNA%R}
z=6^BwR#9<mjTSB;L4pQ%2p-(sg1fs1hejHAC%8j!3vR*P-CY}Z_r{&e{{MZ>*+=eu
zzE3qqRgHeBRb6Y&wdOY)M3zZ62J=T;td=$#P7P4nfAh^Puag&k{Bf|q?a-AgI4JyE
zWwY1h&HaX&u520=j{eWKCdZwl9T!!D=Rq5^RMDq*I*@T_sVXZ4UcaHyOc`wmNUD=j
zXSxhfFwi=?^Krv3sc?mh-SIef&ZyTuUx=bxV^WhurTp(`39(2Ye+AG4>XaJAFZfR!
z^J6y^;NK{r)Gysci2WugStC#AsllNmbw;>}#4`xL6Fjr_l^M+|&f~LB8a^jl;|g6-
zC82Ok3eu>=5c{>uye~}j7vih&)1y~fI9jh>TSfMf=xxY+H&HX<jJB9tu^DmhDB~X>
z10rK!nqmT&8AnbG7x${(ssVS<JlnX5^exf8{=J~tpdbbh$c;72o)vE1nK(%BY)tK_
z4kuBtA=`r%YSA@wFx5uYB5%>IeWWHa9fj%yjfKTs4Y;odVLguw%}ol)&nl8kifT^l
zyYAh}Z$%m<S-v9xDl57z;AFL$>-A;1pY}&dA+?2s;!W9K%LF?HeFd<8EfDlFo$(6w
zb@aL@x{JPNKnl9wGa$OFynbsEmkR@UAF6a@OR&u>FxHk16${J+4MZc&_Y5kN=Gb2t
z6=Hsz_G1OV$cjP?#@SaJZl2)AX_zZTP7D`n!3WWB(q1XGVI}CyN&i=5XD^GVze|+}
zojZGc*-TM|{kL~k{$gcya_yXc#R`%Czif3CfRmaWf6a5708n}Qu-3kW9{#_;M6aKW
zzq6$`s}B+rBE|VO#$_jBnC)PWgxO!g!TYUM^3gHWJK0z0I$W<Vx3I*m?}vwC@t?H*
zoupW-E*v=nP5nnqL-#yeM45i}?w>pVYuS?d3e}%p<$?{L@DE*Ywx^xNMLc!<M;h6P
zH_bd<PPIB7-(#+L21-BToPfi%huoM(gd%?usVaY)pcNnixAl#TT)0CR{Ee6-7{Xw#
z&jwz(m2;Dp@4I9hFe48WEBnSA04_;&Ia`J{MCaE=w?>p!!-n7D;#t(z+c^FWKI&-%
zeJ9A*h=r2&9mxEjl%l80fRuMLcz~E%>BB+lq{SIiaj&%-BP<L7x8o%^gX)2CNGd$p
z-G}_2HhLGaM^8lUtmkJY^gUB__-k|MW=|KFJIn6&aBaA4mUYPgm60&sOW)CH5{<Tw
z9A|CFIN)`jopj@;%$2(Z+3;HrwdRI?&d(^bx>}eGmpgt%zU2pc^FZ7K=&bF9+sx`A
zuJ%yIC^lp}UdqPfp_UjHhoG3N7mZC!JEh)N2C6Tm_g2I1j1r+>DzMW&q&Z6($;plV
zxLbl%6)@ZpXlG*RSEeiT)`^r<7R?XtjKSEC>+Amh7iI`zN-G^d@%vOL`6-U<$QpO)
z_!r8gBO|kvAXX8qUM%lfbQm@rPZIIMb*(LI9`7=PCw?i0_mTMTg%5O~i%CrYKRO`|
zm$RZbd-2vu9_<T#d6~XPJfC!Vr*vugAF-Xjrq3b_xzKPmHby_75uqQVg#q&=Fm*c1
z-Oo-Vhp%PyF-F~Wlh(@<L|?U~C01y-TMB_jCB%rCf-66>HPikpVdQs#Ml-HUOTcY-
zO)!3)L+!abc699CaeByYa!(6Px$GhI4z%|{h_uvZI$+ILa=PzU#oth<n)L4${fEsh
zH|6@b&E5Wjlb{c&(bO?=l>xB6!i18X&2U1obbsQ2TVy(LX(V_HNB^eEy-)hVQH0+K
zRsMfLkQ9pi{)Ql>x{$uX{7(o{s^)V;j_2MBC{v50VNn5m-ltCJZ~ZYmgDG@2LuFk`
zH5yE*_}F28BETXr@xkW*8-2tXg%#F|)Yig%bNX&AlfHpis6)=-Z}0GtsbPIZLEw*;
zFI3GlrjyZiWr)4@3%cJFp%zA0CEezLz0C9-Ctyas>|Q?|uIvKvU&YBxW}f)?_-75A
z_dd9C5-PMt+n49o??vh^uuTL5!27p>`4YnIiR^2i{RJOG@0^d0gi95QbTqyJg%#^%
zi$s?bnZI8O8A@%P^8ZS}NakJM%Hnd~o=Szb^Sqm2&$ztQziOjgKmG!Y1zh~9B(Y5n
z6fVPE2Tj|z788<-JXe3se^dOfe)$ix*|7*5?SxcUrcx4db93VEbT*SsPX2QCtbdO2
zNdCS4ii5O7<1tTxx^FJQnfh;687&%{#2fG3GWs^lDc4%7rel9B?)Luqo8L;qecq5n
z{SU(!(Xs7cyVygh1FZhFo&P-}{U6bZ|K!z2R@7%;XO#MlJzu5?9w1<5e8V=X={QoZ
zWfail4A2A1abv1~_q0gsdgT24Z+ER5v?#|tk{sLNcC}~CuRSi(>$T=7#FKQtb9rpl
zxgUx|$b0wRQhQa{(R$k8wVXJXW(1eq%6$IvGw5mwGuo)4vX*k6sFgwNZ<f(VeFGk*
z<_~l}oe~Ww@k!&EECULOWcwEI54;Ed)9;nC-#f8j7aVZ|`hucJ5w2XHYxhCx7*%do
z^$LT*{fb4oW7~FhwV!bHe`y4c>{=WjF|roKj2pMLc@$_NN9T_eKymT#f2q3n{6I@+
zYBb4+DIea`yTD7w9x;iX>h!?dsK^ek{tTTqLG=`6{qF>dN4u4)2L9P1U+Lrcilx-Z
z@Cd`ftk0lV7S-8EgViePr-O%?LRnodlcO=6lil4;0uSUrX)JeJEe#V{h3ou#9*2kF
zrAe6whZvmB#|=jNexc<xdAz#9?p?oz2%laWkj-aEF&Wshtm=exXt%gI*}PE`-o9;|
zL!~*(r|^=?jt5|(6|{%L%6_@3MYm9B^q5FxV<{*@@+!<NdwE<~Uk2`y{M(H_A4)1i
z63gA)55KN+gBvqL{AJJeo8^(yo&I(Cy>QS(80$>m=ZD~h)Vhsa=II|!vAL%G@%F=|
zd>f7ds+VOgi?!`P^W`(vYb%G_+DzpgaXOrp1uX-KI5U_FjumC}R~er$gBgD8KK|@o
za8WvIEj(^{-;Q|VSL%|nX&<88KFP6r>1yU&j>9?ttX}R`^<ZxmXb<Sy&S+NWtm+7q
z0f(N`y+>!>c}+y`yr$67x#nj7bVw#}HW36iEoN=7eToQm0@mOTD9TE+=1Ai`9{Le8
z%B}N=*Qxt!z7}~B3Xy;cbqK=)N)b9-omRmoD+)f2ia`nSuZa@F-s8Xivdq`^>fAwb
zJ=vIxRmsK0B4jzo*wk0mjJQsb@j(WQP*9$j!nE}C-}VsB|F|5^bD6YtK^9*N3;qSV
z|NeaUSHgzn0Tg0^#lclrjOgT4OQh350o5oKNrN87K89OU#yzgzSm{N#dg8x@Nr&6V
z=k`aTq^{2Gut^kwUAN#tq|Ed);<snjxl$v$J4M#$j5k*9G(G$C=seDjnvACtO_tIb
z2l6>>+gye{yL;sEESrVwa2Z;q61xN;`dBLN2B6nNKOZ08Ts#c8jo^{tPD5bW<hMx4
zLqEg6)<M?c|6aLMrk3{Xjqb98QXVkTh_+s?Ukz^@VFa$t>LdY;vwM_q*-yt@ovt^)
z@S{g#{oL0`3+<ZJe{?GnO*oeQn8cl1mD6S$7>hMaQ>FTfR7;zs^5>b0OjmoNUZ>w?
z#|(9CoXg7FoK)<)Eqi?v4V>tLP*aVY(k*5tmIjtNmh+xy(+UC&o1#J!2(i$xRV*jV
zk*~&v0w~W?8?5w4R>+u%%^W8Z4I>R+(K(|WIPo!$O9>MMpLaUdQqxli(qd4v;!=|{
zAHe!*-o%}Z{J{ZUN4e1<`tjzmw6f)+&%IeprI$cbQg6|J`ry=#7rnJITWnxdoZuc)
zudRTE^<XT9oQ_A`3+#;6>ms$`1WtmY-JL!uinN~J22xEj+5JDD>$DIZI$_gB{4%M;
z28@}>)5d)1DKonK+2fL2EmmG#R*ysCFix>}Tzm^qFonnx&?Ua-IxN!al>LgcEZ+4M
zGx^F9Y*btH+oU0q(#>%`X;8rWW~ybwhb>AJgNlvvD&tRJUfwT{2_t`owV$h>2R=kX
zM;ejO$2NZP^=rm7-L`TE)v)H~h3I4cCtg3nGopkR&|06lq2w@vtHUb&8t4~qwEmkV
z+R!ju1eN<_r!q~MipY0WzgX!I4k|;NHRZ=laGbXbWI&X6;JTzA4cm9n7xhx94)Ibo
z6rpdVEJa^atB}J~0c;Up494O#q|4%tXPr)F%I#*xGqhD05)}%yM=&LPE$daAF<*&4
zHgV+(8O+wI^T5yVBU0|vco$Be15A%oe`<Q&Fq21RoAke!nu%5&h#cu7))p^x^aQV#
zMoi?(JwK&-@8e<;jSq|roJMoq@zQ+QuVpe(uC6vNI656p2fgM_JnrntawoXH+Icsa
zx|>*D9GAX_ey5Fo_escw=YOUi>v)h`+Z^nc2KE*jh2gNKrm*)AGv25;g1gTiRge(P
zfNRTktTMC--y4*^ZNvw~4;b_eQHDQkzVCL~!NAmya<#HCG`D$n@M_?kTpp+vULHoj
zP<_rSeY1b>0f?+<m58H;h)2Rsc$tz)<qSwHRj_u8pZcD(oIH{J^Nr~}l+qn{gPWG{
zWOZNhoAe!<=n`Bna59pV1-Ud5sC_5eA?=I#bHotbh@UU@dBA3&c*NNOJ17&Qmg*lQ
zC<~VRsP7$DEkIRr2Gme;)cZFd-9nY2A0PB<@3O?JHg#}u!rT)bd4dtV@f?NAd|p2J
z1FixQs5L&{n<+)sYM#75E7(<_do-}s(ux$`LUEU}@j*sd&*Z#ia)v-^0yy2~42AZx
zXL7lnQ;}+R(Ii7af6DS;RI{rMg99Wq-{I(O1nTN_)^s~#z8e8Ju!!f%ECCE_KN!v3
zg*Izrg<E+C{@4=DwAI!5r`9HXOjV@_7&oYKCJ;zUQ2#F35#gV0EgBRDDL#vfA`#RP
zgw-z06fyl8@5IMAnvCExDp<kxpi)T^7%e~dM|EOmMp(PZ>#!{@F7e$hqgiVxi!#_d
z%`{bpjQbCoReNtnzV+V=3^%3Ep#OwcxkKyyza&=l+)lk>X<n~>Y}+lm`-l02=3RXB
zlkZ~yx!AmCc2HFdawjZ_U-IDlEzdUDEk=tr=}RFcvI&E@PQ1l~IwDQ6*%us|2QKP8
zS&*f!Kg@-(X%}sn6)QbGyn*3A%MOhOQ6J2g97;_vRi^#BK)_<9E^IYjuCS~4s`S1$
zz^p<c=X@NwazOww*;g9TZAm96^oymyJ`#>~$A*E%LA<H9-Z)Yipeew-*DRX<r2S1b
zEt08n7YC_>`K~u@*Mq2DAoX*6rj9H3i=<rV4J|fd_1^1F&r}VAaMPcM>K2w;ffFC}
zC^NW#O?6Y~ffILP5-G|Up`n}^Aor`+ogb<Wr~A752>kv>yGcQ-d`-*2VjWE-)3C<Q
z7h7KRdQCf!sb+6B{(-M_DnlC&>CQuC*;L?gPId7IuE~vWX>=_g?@nF)b7q|h`7T{k
zDR+AjZS*sWza*VtS6#_h@L9Ir+@yDYA|Q-k;MP=`50(tY|3Pg?8;29s$jNdbJ0^N(
zuw$Heu#tjAe2%Uz&o{3k&5F+7a{H$kc+$wmf%jCn#&rctIJMLH6OSQoT|%{xR5X~O
z_0eqoV@s(h<No%QJny-*0ff@+lnw~(a6-vse;|eLqBc(iS56l`iRKpqw{^->QPfy!
zGVTG0mBp?OZ=u7;GDYUquH#YP!{q~(=q(Jy^Vn^*V=hT@h(GoZ7c9cBCN$L9B+i*`
z^*K4dIYkG>3)l;*?i84YSR@kk%WQ8PEgy3Z4&B#^eZ1GB>Cf9z+*o*S(m3i|uZ);d
z3`4En4y7HZl9;Uj9EwrDGd(S&2<V<sHn0|E1ni#>)A?HrQX3lNFG;CO2FOmhaRltZ
zQ9LT^uoj#Jh`6BZNH^aZAAEyZ+uFHAe()9eHcj#zF<u?vSin`PUeV3^if<V-Fv8#&
zSRWqM-L-mt7+;&5yZ~t+$o3NyZ|06L?!3ZD`t`?BL3848;K(h-IQ%tIa(Fn0_43=1
zqw#tt6{lBbruS*w94{Dr$mBD1X}v#vrF5&;;?>r&{}ZlDQTk~vYPoiQ?vUIdU?5tz
zI`s%GyOG?-(}?!bEU|r-5Egya^o^;mAhUQwm8B3uI~ThD8DqR&K222=z!p`ftE@Nu
za!{=M29<z7Q-*ZsW`8}A_i_2fv(<S$j(@e|@&NwGSNUPf{CN`#&lLLlXpUwB`Dik%
zZ_^<rr{L{m@s-W4-W4Z>xYjgI-VTT-(12bm;XmhYY;{t?hQ~o(p1FdR^lg098lA~*
zVkNYh@REUC$uj#57VxG-<|f+MpdJnH#z{rh)EjPx!op;#X|<K`-nl`eR1}wkfeoak
zm0pJ9h{tq3XHs4U4lVI(0K*G)@=h-+hKGk*z#GJC{n{M1@K<+#RMyJV6GU^D>h_{x
zQ7;<FiH5%gaX5UWKQ|nH8O2}CdjkzSo~W4aMy;h_R-JA>;|aCevO8l&wB`#{=&2m2
zj7XH>oGDw{{VuKGeJK%oefpTI{LxaTc9f5nxJ0Ev^FZ19@hdXeg!<2TGljm|gpzCq
z$KYy`$(PlZy{+4M%dNLm#@3-}Kf+y`^%0>_DOKylPn<BI?`@#9(++mo&}59#rO}77
zrNET&Hg$d$<{!aNjlIZ4)$Fgs8m9_sp!1N^Q{B-qwcGMq_SXsvqtufWMIX17+`KX>
zG;vnVBYh8bS2`ZQAsAhCKK}Ooy%<4RaP5ulkCE_H8{p63F!H5dOLm<?%9HT`+PovX
zutvPI+M>b$R1}W}oviFKfHyh@G`~n<sg8~0kGi>=(1RrNAEet|YxJ)P7{bb*mKNh&
z$mDlj5*zvcxOazW(fYenVEg1AWFqZRM+%K0Tr=V>)b;=R4SjdJ-sd#dOdW1<4-Tz+
z<zXh=qn1ai_t7pYv3}~3tVpw%^*meXT^(MLDOM?&1w8BLs<{C63;<Rt&4<N3+qU#8
zIsT6vjLZ!>OH-XTi&15v%V{cuO>Nx_%pK}V(`Wb21x>JHL<iE2SpxGDs-PMrl0O1W
zOfGuKTWdLR22A)&Hy(HWqa{4flx4;4Yjz9e9@0x9pJA**vV>dRO(PXd1XnX!?oP0S
zbUgZx0ACpxlwDqhllrN-;1EKG^#wR7;s$q7@$Jab#N61@Yi}mJfvL~lCbJ>LH?0M)
zO-|!CeVO5oGwW;k4Pm1xsxIeibFpqD%!k?cdzjIo;&-R|7d9iKi;@<?0Wh;yk6tFv
zLb<CmE{a{pOL3={ME27C&sba`Hz{psdRx?E`R*8!2};Ej3A21}M^Zu0zV@6}vFcZ0
z(F!*ODvAcoY*c^+q|K;Rj{>$oHdDQvR)b19jgAtP3v1bL*VfwgRw=;xJ|F3V6yKhm
z%Pf2yR1bau6T$EtlWPh8$r!g5r?!XJ6eiP!-_c1zJZPQ><vp99$H^kPPRI59yr(>h
z=A5RJsl4O&puV}J=g%M4m}WF6TN<b|B+XXQ@6OH!DR#d~dN|*(Q}z!2b`AB2;1{|B
zXS!~(J=t<NvP{>QL$P<!Fz%lzDlUVcNYJCQm+LIm?W|{;v$et0KdtassAV{Ivs!Gf
z30A!>Q5jU((+C!-Fp9hIIGtXQfhS@?{(CpN7)!fKxB-F^yJ1iA9bofABI=Q<cw_A}
z2C!2YToHd&rd=kis^#|c&UCni2Mef<^$RttJ$c=w7LMIQ(`Dg<8=6Z&#+D{%cLcmw
zg6I8Rbu8hz8<K@*Wn;$tqAKqpKhu96EgC8lb9X32sz616%_?QW?mUnESJkI9m?kUi
zo!$ca50*5<$-60^<Rt4F@C1e_!-L&rN}NEh>w~j)JVe1j@9Bm#T|oV8MEgZicS{6v
zv-=Xi8)ZcaLF-P_$tA@}QsB8Zl6<(h!GLEbX&ob$0uK3*@fYAOuC8iZi}%(a(&FrP
ze~Ca>S~5lRA~Yj796s%Pb|;DKs?c(3Zu8^zSbE``im`FaZoW%SY2C8w`eY?fcAM{B
z@yY?G6CE*m#*?zshHl+LD~+`ceSX_~I)<IwsjvuA4LnX4&I#II^H}r?h*PdLEh)mO
zP^5)Ox`Th!z~k^P^yYdwb}O0!bj%knu2;JG<Y%Gl(&}D+Xt6$U^_NmQG|?BT-*aP7
zCm&H-j(L>#5XgAQW1TLx+Md1~P!V!!XIHo7ZEUb)TK7&?UM#S<#D~ixqlye6f-epE
zU>FL-MonG!a1$%Qk5jsyuGuk))<GtCa)$*1!ekM8yrBAZcO8ueSr4R-4D=+18jRzp
z`21NtaU;gff&~?6m_%-8v&o?-cxKxtJ`APbFTHoaMUHG$E|$be>*d;^nm0rO`OLH<
z$dX?_@N+8m?CEBT0(<aO&^&M00z$OR^UcPNR=W#NTFGU+hG*CILwgDXKl|vNIIS{M
z>vtgmp-b2AZbkCdylT;>9r`@zr{c?FLeoBtcb|^aX}ciYb)SM-$w4#-wSoo#S`itp
z=-HTa@VBhz1gNdt4c=4K9F%)nqv$T_8mKxxyJa5z{)v6kI-rlHRyjyGEPh`R9E??T
zG~*O_0RX6ZP7X_(h~qPI9v9o!BcA4^#6XS|UN@O0KRi3!3RlfgJX;}--8Vm>P?6jz
zM%eD&K?RpWX(kWLaQS*3Cl%Z}34dgDZ(n8t9#JKC7Mhq6bQP<Od2yVi(GeU)9<Q7j
zIKfl_8}p+DT+n>c-V=A(feph~>_BF2_DDj7wy7BS4j8Tt@^4)*Vq1_r(Zhv%b1hyB
zX11hPi{kJX-*Sj5alaV1UkB8E7)ex0(BZlmT+B^ZDN!+3kNOR5Dk{u`_eJLOT-^6I
zKpNiCa{0mON-iW%Wv0`p+mXA}ktIfU-hA>_x%VwTGE5I0N0Ff1Dkj!>xYx@{;y~uK
z?kJxpX{n2HcvG|DiWzGqBkH>Rz^-PrL!iBrFO9A$!@%7bKN3mGl5?=ea-1qP8#6{V
zi=n`<>er}1p6PMSiA(6cy=s+`l3<tWMH$Ejc&GIPueXQUU2BGku#El{ooQtcHRWRy
zzxVQaGt82sB|G@tRMKd&1Ujj;M3E|HHgedl!x0Wgz3`zQ8>e&?3fILR;BSD){v}8b
zk#^MZSh0+#{%WF*q76Xw(gfvDMB}}$me}bC4%oC@s~KQ&JtxFm1gA{)z}YMf?@)py
zyHp(j;MwZ=R$#Q-aOcERog}nu4=LA9A5`;MX=r-^bQ2k-+hq74R~^%?BFu{Wjhj(6
zsef(A^_=iXi$b4`)6~3k7k6VW@jKwu`V)XHyiaLZ<Wq2SeBXEC8QHf4tIIn=wdiSm
z<rmw<SxO=1#ixqgxKO8n-$w>b+E1hIMjW-x^*ugO8{4YUaz6gIU0`HqJp>Zv^3`-r
z{nzZm34@vgx11Q|34$U?$l$2589;Oz_q_EjzoXHbLf=O45KaB)F(nmBHn=Ozmtl&I
zlz#o|o#06&Y8%z=H7%VUoGV@G?EMUlb=PJfw2f0R6bvO5e!1BA08FU`nVXG6`dDUW
zPyAu{ovKwR<x+_A{^lueR1_z(GR`S#A*xn4<X-9^RNi$2l^_9CTG4uRs+QkjjZz@o
zRain9Tl12QK;vAI)ADu85=-kr{`9;WIm$FmPshaQLQL0>4eMK7IsTSjtS-XBjy^n|
z4648$<CN#$1K)=2PmH5a{nH}QLEN`vv_*AImL_N&YO^(n`0Q6FO#{NHXIUEa*k%m0
zB^*CiGul0>5m3w=&D_8BHbf9;l+qCuE*NnylKB02Xy$oAwYNcZV05YA8r`ryzxNnO
zV(-QS9ps>35SPSEhm;lbKq1laao&z&I2u)~b=R4H1LT>Bsa)zlR7$~vzKXf8*SXMR
zeo081hub#04efZE@4V;^)@9g1yWyTar1ob2y16(zRlXa3$3yEaXf?ugd=3q4yi49_
zVlBr|Geo~jnmxqu*=IFiZ*Pw+ZgKFjRs|W0PSJ2MNLst^&l;iH4On(SW-1Z}6*&ht
z&vOv<uEy(VY3XxlUtl@|^TihuYw<Hb6cby{73`aZzRswvqHJ@`m&-oHd2G+Eu^(5!
zyR6ZzcuF^(X?Z6d`2+F|3xlQE@Oh%&oUVqBIjkc3x``TfQyjPA6ll9L4ql}?BNdy3
z7IXN$v~DcZd74_~0@$;&g_{S^t&mH+U4?W9Zo7yxOoPj`8MhC>-cG#!0m7-xT-!bO
zttWAy%$WCr5$%v@qkBHD<4uCc<!-Z(Meg?3*dRXxRhm1#6np}YZ`t9Jt0Bc`^#X34
zJN4mqi|Qb=$&FX9=IB&$bwApx3Sfm!9~CX_AAsmn?IS5iBhkE(?e3K~OTBg4oB-M;
zAHP#_UTnBt$Iwo_{-txFe#M%Dq0%{0USUUnyp*t52<Ra&=qWmEt47mx>#BI0|47@|
zbRVu+Y)cUGrEn`}RT-}a5IrBY0h7G(BNW-^U{w49)r`4YX`K=5?i>Fu<(OlFBBUn<
zGVmkY!TihHcoe*7e0WV@d}Z=+5TWY6>9DPcBOwzId@`7vt*Y3jcxDls-6K|ur1x7P
z4i3;XvK!bmq2HnHVb@}VW9{)vExUhmYps_ArGu1BT0jR*PQCc*5#3)UL!V8~rDC#?
zO?&_`t>a~-J$bGaYixO8;!)+&C?zrwMUO@f*X6zq&kN6IrEi3E1@JS_c|~UY%rq=|
zskjb>0X({LXWeU+S1{gqr8S6zKmmK#$3X-==hXojZ-LbV9pz|y;;=ROCj}<@7_gj|
zJYD0Jv|D~1=JMFft#*vloUkci?$NB`WXyy^o#1}8iAF{e&T*xVqnV_9wvDj59&D>T
z*XbJ^oPYIJR^i=#1<KpM$~Y>?E$1)DA&^?J-L$?c$X(0Qd2Y{hCRJid+}1sPi&nH#
zzpqaO5$%@aZYmybUx+^)Z`>fN(K8V~uJ&Z5q;as@M{1Szrzw9Qz?`E_Od8w?X3%Si
zeN3L%{S}qLY5P9UCroOw(kaUR;AH+$s@e9`Q2CAmtB_-5dFS3gD$82qo>M(S+Up@V
z^O8!TSQa_|>&oNvN{V)qeMs&uf;c=L`>~Z@?RJK`R6aD7YGIlh(4wTx6T+KnO8YLe
z-5n2QFxRw>evG#ff4qhR*g(jgt5V7j2tC>u!zbc?axuqQD8|seCX!ld{%A;f50&2J
z?6DhVOf4FxLk~lgwMF-r_seX%g-IDcgwN4g;e6wBys)2yDL{8|@KJVq%_rh<ER_E7
z=gMH<z(B-Zp@TqoIc@g&?!e&2)uwX(RK2WZ2@EEh_{?u=cFT;BDcvpxQ3~}@?UvKE
z_<h>e8)jI{cye`WF#GEeTK)ZoMz%r|=nuQ|Zz6CYmf17SS7(3y{uvMs-Yt==q(>0P
zFZp)cPcv%{(yaClNRMT?35$1Ls!;bI%0K55CJ`z!#epCA$n^GHn=A*NZU~^465Kmr
z?wvM1uCG##pYwQ8btv>2GlEeW+D5_C{lVkxn0xJ~X)acmJ!=;bRcOzKaJ^fjC%kpH
z1?$nVutfPwn%da5BjYVD!#{aQ77?>$!~pzFlqM)YYkZe`dwuC4J2*W*$+Xp~DLKmC
z3v*_sVt+oN^|=s4?UjRofcP%J>72OxWc2|8!Wa0V3hn*WB=Ub=@jkm{dp`r=30ceY
zeh0+M_mfZWhwG33{l+i<=fx^+{w~k}+L{@>xA!~AN7h-+RIXhId^nddvAw9NxsaO1
zgnco~4AGJ2nf>iW*GA8Pm_+(z=VK_gOi)vm9h5eW@GHmb;DbxH2NrLy+y#82Cy&!|
zEDHk*vt;WFW5{&JN~i@Z8HvJ87zVVfldXNx_asONZ>akXPSfLd%VOkrCKAQkpumlC
zfa{fd@tkRY(AaSkw3}0&^qa#4y(=GWN*lTleMXx|(u=^=MrZ0rWVpl83A4A9kyt#J
zwy|*o=9Gf|AYS_5A!FEkUg3}4Lq7dM&|=WfNx&L!{i@gL)2HiB2;VHisHE-0@}^{a
z`D~R<_WY`B2yyw=e4pABywCUVZ_iw64_5grVf=5U;)BgM2NO<b>MRag`7gJTHl{OB
z+~;xrfKR8nEa$N`h2vd5domf}0(QCLWpppN`7|qEW?RQL7(3j>_@#kUqWY)Z*U++i
z>uN;sPqQM^mlfnqbJp0*tfM`%j@RR9j)&{bEtU_NFmT*g@oujamdmj-w3tri6ghXm
zn&6u>jQNVX;54QD>DPrDn2Q{Pnq=2_?Y85MmR87Sbl(bv;IGZdcwDt+!h(U>j#KK2
zK4VCJC7$N4lfECkU=T8wCvtC#J~m%!hjY&o`6wlcaj74Jz_9S}Ow7d*4(_LB-cB?P
zl!ay{+Z8LrZMQ@{kDFtjjzmBsKR>C+hRbLU2hRhm&TW3zTl?+TZO18}a)bf7`t5$4
z4<BaO=jv4Gb?Q0n^nSZQU|{{zA@lBG1p>2n#9fC_ATuG7U|nbBPi#WhdwYFY<vl&!
zNA+txM?wcUU2eT5rsdVXb>q;QoyR=M%Jo;Q*yS=d!#FWFnSWn3jXU1o$2uT#r66^<
zxwPh#FVNR=xz^MhUbAedaJfrYAm#*EbS&AW-L`VKky%~bS4pc`1`F9qzkcI}P*%OX
zkZ*D$r+40+dw#Z){lij0xoN=H66urV1_vTI*mt2yI%05sFM>@*>3A6LwrG##a<6Ux
zevh_JawxJ9i07l6*c4X8jAtVKBR|7k?wp93K(i2Z?|eKxD@?EcYpwiZZ@`eb4|VZ%
zCh33#q8$>83C$?6k3uihR;P(1kovvWeY9yZH~4J<9Pg~>`Sg7MD1A5^mW16T6p*aF
z#j#BwWYt|B4@Sc}_x`EiR}r10e-8&JBGKtx#A-3r73$9V436g@ln>ANLzBh4zpxZ&
z?Rc17hS$5++-z^6V=%6N2y3nT)a7kD5EyY?qaBZAb$11(UXrT`7r)*cmTOIMIpjnw
z-2ZeBb$cDX;w`*9!SI!a^1MGF*cA`B+DSLMUZdpJVy}i72>_)EkVtfHD}fB9y3(3H
zB)Kr{dYj4->RzwEqf~h+#N8&uSmH?VKX+e$meeA`UfWb!57)hAUtio?iE{>Fd5jw}
zEa55kjC8rK!e<9(_n=L|!?gFnAHqv_Q>S^F$$SxtYi-(Tm;{kF%;{hdXBM9>vTlmD
z;|TsLk0GRq)Be)BN7~)uh>x<8e>B&ZS>t46$EtbP`kOzgk(!cDaeP&MqIvG+#qHK$
zF8_fr?fBG1-?F0($<21UPBg<5SLC!Je$rE2TW5dN)S2Fc*<C}=0Z>bMdTFKOu{j0C
z$f1QtiU36-v^4$kXv>WRS2jT@IiT^=Ga0CVQ)sUz4yhqKbTqZ!wRUP){&VGXdgmw`
z!(!kaILbDU_~39L;1sJualTffm{orIODexSX6VNbMp%IeFlNx0vy6sTvTVLm^G_X%
z_>3DwdmeEYw`9pDiP0^tQey_7nEUvTga!6Rj4UdBz_^@6@~ksI*DIiNH#Aa{K!*B+
z!PQz`!!&kr7uL`Lb8$&ZS#je+=^2hsW0O1HjWX7zyPkvmy_t?9c4vQo`E;$u_7`5m
zE>%;~gKRf{m}kQ8V@mP@^^B0^O=0hFEw142gXxvSbX8e6sZ11cY<(QLZ)rcf#t}+Y
z##-LN24+hrP2yVQY|Gkq+SaWpZ)+j8G9)m|*~;P#4QCq_r4N)YmleMnGlqES%^vO<
zjXn@HusQ8ov3tz;p$(ZaTs7(FN=n{0Y8ERY-yW_k^+eJ?R*=~Q9A}`j8M2o~#27r_
zRuHYu70ton%!%mKZ=$oX(X(2)y4!4K?vn+J5<nhdr)iXAm9ZdegwHrF*K(lPCUu-Q
z{WuTj2!f`QQrGyICLCvk$D^Y$xx~%r{od!+{DDQJdqLE})$enniU214?QRqAkr*>Y
z8s$b+0`7lzIJgV{;cygp7K<JT4fTzMLpwSWr^?n=GtMB6xZ0Nh>ZDL|#Uxc`^JO!Y
zjVPZBP1e(MJ-~KOE<_CJr6vq=bWSeI(Fv5ay?CK*Wo#LsZgObe^3cxTjxEZ;U0?0t
ze>y_@R{Z!cOM=19SrW2Maod{3bPE4C#-uTZv2x2Hg*Nj;wCw2@goua>BH>d>ssiQh
zc{NzRmHRL=JSJ9J-rLdDoz+GiagELui8`LQUOzN5$_WI$_RHI=1)Lsr+UXnLCd6f-
z5;>~HKm>mY;lZWuk{$1$F)~U2U80SE8v2AeWI}v5`rqP?FP%32eKXd3U8H}TP|3>2
zAlP(`Y!Uxuu6yk?Y#dA&If8#!A0*i<Z)NY+2O?sl&PUQ#uCH~sN?BTChE>0qQM$SU
z2fq`iH31Gw5~kGQhrWsnk@@%>3JS-`pw%=i0*ermB5QO4Ya91pkz`^;#GD>0g_f4Z
z7h&1p@oP3mx1R%e-14+IHvUrGzX8#})oc&p)cx~X6m@bESOC+I@e+5P3Nw?g*-hn2
znU`r>6`q#v@(1EvB($GH9or)DYul(%e}n)>D&;l{<A}|Kp4YU1!|6Tzsi!&R=eSyD
zGB!Y9I``dg3Y<S#R{53xHY21@SLpqhQ(ZlJWGCcT!^IUXS?4iL|9ViqJ<ETKXM?aB
z3V=JZZ^Kw|`#ebbd`qZ1hT9?cm&8w8Kwo@V^;(4w;8YTYaG<;#sB$ulG2#*znAL`B
zwp&-Uv9g7OM<{dC4NknhzR_MW*}dEi4xV3nRi_V^{IxP+?jd;XTtY1IvEB$AvSu|g
zI6P;)H%cEa!Awfe|63DE{q#!*1dEX{bbw#Oq6^o96=pd7oO}A~Z9HY7Bd1K_5VCtj
z&ijY;ANtHGw%PUf|Dn(RY@^`gPtT6w5C!fHG202GEKM|Yn+>k;)Y@j~n>W4{eM=Bw
zJ)h3^cATi2Mu`H<B1(|cAY5ljHSp0bV#r3kZ~s=Sa4-Am&|*fwtHk<Sxg_wd{q~8v
z4w>LU(_u5^5}t?G1`Bn~K_*W}bXc_M0TnRP8#;QTBM6ev&1f{go9+LzL_Q&ty05>k
z*AzAr6SMJpiYc4I{*~c4(q>`oSSXF{fax3W{V)HeGud?=xM*w(t*Ui>EHg7+pG1cI
z94ngwnb-I_9zLCt%>}pTiZpq>4g(`v%-7D-;XJgYpN5~$MDElfZ6by-hB0q^QoLa9
zag0gX>Q*oRDbD7s)7Uaqa8Xkmh8Z01fyChtpB8N-XOHOTg2WIwwSM;=XW2Bwq})W6
z<QrC)CwVz}K_i~67d{oase~rt7kdECF)r_J+9gDV*S^Y4LkFr4%}_;ed!)?X;b9)}
zY+1z@BaRZ8@zFPBZPqNtJ-alYvhF*T=NP6PXkCXq7xaT;bsAFi(-$YJylf>37l}XH
zEou3DpjRc(lnIi`U-P{G6gs#y_N*#4zx(TnQ~2(VctwScabwfq@Yx4G^ZeNvt6bOW
zXl-ZfI>;jpUw^VnWaP4AcUy;v{$}^d2vm{JT;;;xntvDB{?<0S(pnX3ISXK0ONZpH
zFH);&6`>ID1TRI-4tUZRI-d0UDd($QHLjR!3n3yFsX;=lkF8?VVQQ~R!{*hzwPzU%
zTmi$^n(waXmP5W1vXwen>~-zhX12Mt+)U!+YuzYHtH1#F?k5*Jghx8%$_{eg6t?OK
zWG2q^*fKI~I}1l%J2oChw!xhENEvVCQRTQCKD*92+hN7JBU7RR-_I;1=bU9Nr?~jO
z;A7TE_B=YCQJN0!YbRstw%sX|P37hBwYl=#tVFf|Ypz`JZz(@g+SoDUL`->k@i&XW
zbqa`6vspO=KhE6<XuPNi40!M9tG8(F*6tsk+h5gO!qFG3bl4uh);&dIBOGPAHAkaf
zbXDn;TODknpMU~8!M6e~cWYkeF8=yG|4Y&FpGp3QqD%R#3kPwJ@jo=1oeXVT$~GN-
z!?hLdsMj*b`NB>x!Q-|w<-2&Hq52ZeQgdbd@z;2g2nkY}iJ7&*Me*|D2Z)YOo}Zq%
zX|!o$ryr0vT>*w<l{Kt|R|2qqtFQ}C%6G~2n<FIS{ow1p;ezyUCD!uawA%kI!T$b<
z|DRt}E->1!HzB2zN#?Zgy{N?TnHCiYrh^y8vf+|7tCdQ6cDURx6c!T78Yy;k^Z#~^
zS4daD%Z*R;g;Q2)|2oLh;pD3DqM}S+H`Gz<$M@$=amTaeRdU#z{h&gweU2@~?dN$P
z-t{fdVmDzkDbCi{yUI<{py1$+Y<LI=6N!|l4Dd`2W<OC?brlb14Uu4S$-x#8gPq(;
zdM}NmSgGTXz`$5rwYyV#jC8)WZD&mn5o>vNQ?3z|brR5zrkb5&2iMDs9N`!)%JmEP
z-6{3Po9n0!DLgMA{dNDU%%87(|0SL3(o<qm%fWJl$HQm@EfLWC1wujX*Wtp@E=gLV
zpK^hWo1iI)%Eq)0olu-uV&kFE=XK}!_Y5LddW8TXrD?s%20Mn3ar|9d{)T;tHEN8n
zOL1c_$62}aS28{>C^KZ~sU8e|&e*`olf+L3I}bJv@&Jjj8(~EER`xH2E0!sn6WrUk
zZJPV>v?AR*p`78A@Gb3)!gim>*`H?7332B_zFGw#Zp?-+?5Y_Wx&ythOda&oC+E)b
zgGMaoZz#9qR~$-<gHIwR!{JAYr9N*#38n5oVba46eK&X8r*0M+Ig@r0HbCM$KggyL
z$cTiuml|aS*!+-Tm%nsnDBmHsK_D#H``EWuN>#CwPFr}4!w_~b7#I)IcWWSpy;F5p
z0^?62MIY{IK*;fle<Sv_LDvg8DL4fLz3W%`5`vrlgWq06<B}&Yy$+VNI7@_YyR7NH
zBS35TLO7-ovGXFrE64RA%UwQ^N<04iBADYKWfXf)QPa^BcI)#?gZtz4f=3vLU&JOa
z?uA;!Gp}_vp)oR~YuGAxQgY;RWcpV4UkEhL?G*z^+<JaE8ll)Ei)E3C6G~_=k8Dmq
ztsU|9co?s+XQ#@l(2R7)*jR#>pKT%(l$6evRwX%G_EDN0F`Te@=1W|*!X5C8NbO+V
zH~_b*@Y>odH{ETm*2HYenDXDSYFo^>RK|U9%Jo5O#R9iQK8ljYE@|*tsY2~kXB?KE
z{##-y$flv8*|-Kl1)SNXZ(Su&OKVh`4N035Ph@V7(c?IQgW0>TaicxtK2~Fl%*@@N
zkGm~Vg0t#BXHb$2UBw?O_n2#b-Pz>AkQau5d<Yf;A^>y@3ltp!3Qr@4a$a$V&YPSw
zmt9_rR(c*Hjo7X5^>`@**!8AwC73$Ba5p6L{q+we`y4iUxJ-lL!5|jafpuJ>;S~V;
zZKrQ!g+!cIDsHP*P0{%okEgEw6Y?He5M_Jzxn~@26uL!f?7$h_t;%a1Qg)Kl$6OdI
zPrs)>zZ~){Ci}7V3-MJj%<hoO0wpjBMKd}N>Nmr;C}7&3EN@30T-&keGjI&|+DIIa
zZ<-xfA$+TI{tU=bh&N<Sa0hHhCTwr3PsD1Ar&laA6TEtYrIu07GoSjl?q^m9;2Wwj
zoi^9ppG%B^6Ln@Di@YD!Qk0AD?v1!pR{2}LfgLkgmV<242%Htd_GE!LS80L5S5^4R
zMl0zku#RZH_I3fGelwow^uI`z^4pL!MO0KSIr)y`l|zs}UT{>>N+o0_$K4#G8*ej{
zO__XA8WOp`|3G=~8C6cUJoo~RElN73#MxHc7;J0qCQ+Gmb`(UFT)T?6j^2YtS`)?2
zQGe&2K0c~-WyxxDR2+5Wxyp^7ha+?GXJ6;hp8@pjqbz1;7r=I*AF#yPD28*zre+Eu
zg&vmHEL^=qjfo~CWr*n}`xWwHza~I~eD^VIdUKr1XtpMzY!1eju^5=wvlIC_X;kBu
z6czY19ER|Fmf$gI50nsn`qXpH{$zSZ>)<FLyFfzxqB7xj9^U<SH9G$uhvfXysA*_#
zB6;`0>oND2s+W)c!e|?^km`$Fd{BQB;o7~z^ctYe5ZvzUx)6ifrfNAR<VpBw+0(nY
z9lWJy5_YF9=ke&KAC>mjteb@C?MKN`E>wiHHkH|)5{~dk)xH=tm_9|R?Dtt=SI;0>
zperzX27zLD0gn%GzqN&D?MRMBSq}f=HA`8jK;9$BNTeQ;V!tjQp_8qYP@+HZj^jDK
zAQX-kkQlILi&gRaqUu*`9<x$<oZg>~gVk0~WrGdhH_NEyip0x_(s6OuUV8r9PcYjc
zz+Xy6$%&W4zP8SSW-3|jR0%B`DFJUhm49fdoGLS(CVVdsLzf6jUTx}YR`P7P%VpSp
zvIK2SWwzGQ3+W!+f)fVO$FDW(7Y6<=d=rak{Tr8Y`YGSoD4j^B3CIUkIHR^8@dvbL
zzZXS&usr9h<^L882)?;I@*k(gum5pYO~xDMX}qUOklm|0(5Pc`)Xqg&Bmw9!pU%6S
zIB=MS@MR8MY->@MHKR-j<BoZI6OJQ`9@w@$2$~gde10CDvxL2Jpm9O!aOXxzN}dBF
z*l6Dj&+)L2ua@hrit6gpDz(I!nvTBKQN~+he;sKix(;f&C0cv2b~gnX%#@%E&#yLf
zEn*)8RTnLPqmkyNGR$%4OU2aG%<#!tsSIj+3lVI>sZd~x)=Qvvbv)cUGJllYoLsFb
z`w*U6GTU2I<}uN=3ZGXENnBW}E`6kgC)8F;-n4iWBk3T#tk$LjfWx7!|E1pH(NMry
ziAc-DR8|zaX+}dJJzs(M(_(#Pm0O=oX+Z@z-Kn@cH9ynV9LY>txD8yb3s5=4VqPNI
z6#>X4s$N}`@)R5db#IxD8@I4J*VZ4fdTu^Lm<f*2lkfG*t$dVDnQGhyHog~=_04Bm
z4~!=pyk7S^gwC>9ImT-tz29WaBo`_uB@g%>%B9xfr42G&T`jBDFG<Ie|E#jm=xlk+
z?`FFUs>lM_tT$xWDUQ(VI_WnBm@U7$woCFS$GeKia=UM$w2ggnd)YfQAEq}39Zr^6
z^hV(H&R8BQ+4RP>p>b<2vmfea#J@a~GZ<bfe1rj&Td(wh8(eL{k_LXwkDY-p$6Lv5
zUZ-k$bwQB;O#M12h+m&w&Q~etdnvCkz`ut0`73VT1aqg7lasM=y&b7<v{{Kmr2o|C
zU2<kH^bDhYB4ylEHT2=GpiGX3@YUCPpCiA2oAyC1A<LDOEg&h%As|vZ_NXL8X9bes
zzvh2Lf6xEEIzztC10Ves9`qGEv^sW4GUnI&=#KThvb3{n;#`O%_%D6OUyQi0*j<iz
zH}KXEAIq+Gy7zR?vyvY~6CTgr9}NA1Tfq3U`P&x$s~H|7gg|ID9#8JT6T;_H!7r^b
z#4r1=5BZUr57!f?Zzp4xqb`<c3<8{vmkV91Ld_D$NpBJFWvPZ{YL^8WLoK(b3*sGY
z7Y^m8OP5{R(EK!|fR3?XWb%WjU(mV&EPU*n{^cSJSnTI()lc6)WIXXy8yT&N5%q-D
zpdD#HS#^ev_^{&D=H4TE2_RkRo-Exl6t5Gg^|0^xG90@R>t3v>GlVO>c1b<4IoumR
z?@cS0DyMyIH6)rziGHp@{NS4<vKX1sgLS4?188&TJF~N7mpNPh30ScBGTpkA?s#>U
z-8SG{5xVNVvy({o>b=GkoJCTv$rZn{-F!lPI^ngWb1>BdoIW3^JLk`rAUwGNU)^01
zh0ds>9xgcsFZhhZ9$>Xsw$_<64Nr#<e$e~yqJG*|K>(|}USt0<j7`*`*Cc^5-)1>#
za7sw|)M}<a5fF{8!o4pv!T)m08-rtiv3AjJ)=-`{Zlbs=$}abE+F&rnY3DF;)|gP!
z+8S&Lle@Bn<HbT$On55oog-MXZ|R)(tAS-7{NR~+rYY{Y-6L45+PBp!vc9$|Ekl-w
zj&pJ-`ocU^mLq8UIG*Kz&Q&2Mel9+JJo`zYf0NJQJQQu4TYRHDSna2W#|`H-{zNbg
zkzBngWO;|#MO0q!_zKp?N2tjfl~-^>OJXgJ#T9b}A&cYU7I1j?Dq?I*rZ)Ei{s4`j
z;hB}K1>D+P|9B76Vx{*qwbL}mS(Wt8K2Fubl!QsyezA(#+P2eOZQEWbSCw|oC%(S$
zqP!s$AOdz2t049nb%3Wxcpee5TO*G_5eOG)wTD~b9~E`mf{xds6x|CB_iAjsihc;U
z`6|%(yf*I-DF?_Kr>*ijZ}gU{GQsGtuheudw+u{yQdr!*D`|@kduhxJFK<`X?QRXX
zvbb<JvwtF9hlSb4gRt^D4D(+o9Tsvtn=HkV${%bKa$8rm9Zsrioo2P)ciWaS*uX+O
z8@|7rJ9~Sr4+1xjH^<%GLYFmq>U1F8q|}-Im-INYgng~2GQIVd@%y$#vJ`(;UE9Jh
zg}4lZ;yv!jY;~uCCZ(!wvT;tyx14;fiDRO?zY=xs#O)ddv&QWBw2lClkITd2Rl3kG
zDe`exe2*2Ytga^^#NNft{B@Ylf4JXpC5Mqn)nL+Z>Z?43<I3yn?3TvLF<%|Yi%?{N
z$^wyOZK=qehm%3{vm*v|^rKeXw`7u;xa$^uJ$3ElDyrRixVnkQ&3h;C=eP;(yfzVc
z2N;3D1G0<tK-Z2~wBSfYoHlV#Pj^&;Q$Qn>m3w8Yu$^k!qf1-vu`rE^#lcn!Suxin
ztJV4v1eQB(rX5+z{J0tUS=W#l&wE|0#N}r+w(i4VCU0v~-GZPtxATVi0Nb1$V}?76
z!m>Ba^-=h@u9|CdNoU|KxS=P$VS_?4Gfjnb%XX>yRy5v)fyq(Dwqq(7HP~@7isWX)
zIjMZx&ak=R2{F)l5S3dc+jP58a3secCR}nlS5r9sbme;6j_ypy#8U}c4&A9FGD(vz
zF))Zsf2G;SQ}5XBeBYrA88aor8uQ`TNTFInY<cg>F<DCc8vBp!w4Y4*X1JLX(T3cI
z^TD{8;oz^_G@eU*q(k?elQC;&@x@N(hEOg?kzF`Iy*_A1`lk26ljq*Jw`PhoK5nso
zo&Ah5;H#&&9v8j1MD;M7aGN!{na|(V)pjKA-8gK}(z9B>6Q6sO%GayBoVoU=y^$E=
z0)DaDiAU!=ugVP)37$Cdd#73KDBOotx)`mMdIy-5p`oT6jc((b6l)$uptX~IF@>bS
z#C84>nj9N|G!7Tv!<n@!*Dhd_m}XQ)1OKD2t~F*s>zD_8|81A}1wM~b5AzQiV>rps
znu<>?LM@N?oa=uw%&^j}7khOzVhll6*mB6$YT&cdt90K(PHP*}kwk%JZw?a;jml=d
znXQINLLONJ^GJnK@7@%npMn@A)VcQTOIYIudzl8qUXsjDK?J3C&Nc}MH!gxp`i4|u
zl{81t#htN40zKc#rOE}#DK8g_JI2KVVGvgqCzb^z0hGzO;VMtBJmf+?i|li9wnod#
zfh9=ZZMN=Lx7Vu5cv~W;+|?r>peO4hb4r|43AwCRUAIpLKvi*=aJBXBuQ39uM-m!)
zRFU$rKf$jtzm)reUmsiiW8jv<Zb@<W-~^;7s7uAGzK}z|n&S<W;PBq6mxZhN@Y3>`
zorv35`OW30lFiD4s}9)=f9D8h_J||po!Ym3F|H0#S8r8EhjvGm#kUvF^6M@VOBG7>
z9IKf?EmdkYz)Uuw&@RBuc2-<YpN4OS+8!hA4&!J(*xq=mB)}|0NHF7VrxK^x37IYP
z%sKIEh*>He?k)@s0$WBSOoGl2iMDgl!fdjNWtjS`XJ~VVvsAnNU;i!1J^Rd>x7GqW
zyOp9eN^$%0t&iM5aFk2I-kyHb`}nY=+OATj!<=H^-pwAB`Rtz9NReS&lxG+Ucb-2B
z1vQI^rc|XNTau?#tRT^5psJ<uJ+b2MdD=9c-|mw4{gtl8431v*KCC!+c*R*HA(RB&
z>I|8mQ7qYFW@CXesU!k5`YG1(l{?gglqE!zc<B>J^m*v*1T*`4>8?<nwj6i+TIg>P
zGsy-vu6M&>=2ign%!;GKbETBB%vA1ax=(86+ZI2^Uo{mPGKDmLmrBvjw1F@kFheNz
z)7+746%aiy%JG$8$(f%;^F;YtiCPq<%8N>#xo_M`B0%I6)uF-JMumaLsPk@3saWXf
z(NJ%S(ju<ac*chm_m=@nV#a!e7*O1GW^y{<Pn2h?Y}E2n0;yJnu{YdU#1!$FJ>8I8
z=V<FlXkUM|FiqE%svq}<<p8zxiP1ODmof<h_f}Fk!a4q*%C0gls;^svD5!)q5)#s_
zAYDqAbPga$jdVAX5`q$vGPKlyIDbH3W|RS>hi(`;q@;7`_u#$neLvja{ct~>->G%Z
zS!b`c*V@ms_9nI_Z4En0_D{0Vwb@RE>#a(;%EOvaEHj##(hBlO?{$VDViqyp(~hNI
zHS+Q~0nUnkSx?4V3uhZzb>VAmy(8_9#6#1w`VSvdP&umB>YSr2p{nC*xxA?&d!(tk
z4tE~g4WImpJmxD)mzQrNi=q^Kw1v#@>6O`jrZ&4iFEco#YT#+AGyFb-QDb)>*N09t
zu){$#KEFeNx-st)%*>(6Ewe=u3FQaT#u*`KAVX5huDN2@=0+PEyHC9E290le84&vL
z+!@;9nvnmR!Z_P;LP{Jxt}*-!{>6z3yz2Qo+X+GnuL!U(4&sR4ng?}cIxTO4TG|lO
zDQ*AwxIC$;u~_SI!N2`uvgy?r28oRECpaewV6Ir3`yM`51l2|5!t3frdA;eM{`vKA
zM<2~|iFpRon-qF8v<#JbD|G5ZKaxKil>ot~viO5yqJcQ9g8aNs;$B^LXsZ6y>5ULB
zs#V+36-MF<mKnm%*3@!>8wlLqzQ?C-SQ|yz>41vHr_X&7dJl9Rb-K#EWelDQdAymN
z9-BlVlOYxHk05sD!?n>VUbP#B&^dE%MyVHc-|3%K!Fk3RXZ3^5z*H}b-o}TcSy?&z
z5@8eE6K!!8-_q$tsOxAM2_Y^Y<YK&GYce?6yT2V*)H%8-GYsB5)$w8TRvtMn&n<|j
z_C7wMGw`gYKi-F6YD#05FvxHXerb(KO{a0BjmFy_Qv{3D&QhV#!yHcwKO3f8DW#0#
zg%0m)CCFZua3{XgO2jNIPQkJorV`c^JZfU*3-n+NwPnMD(N}Njrk_=`^Zm0n2qlv@
zvj6q#)mzEMV~mcpK;DCPrT+WM9-Kn?mFJnU)FBP52`lcLn(=|VpHIJ<$!Nm;uNK>k
zrR7eyA~@1>9aL=wYz{XUkD3wqM>dXaHe&WwJjk)Hx-D&;osZk)o&>I*rl=SP`1=SV
z_~J^2>oi6=U!;)q#WSwY>pX&Gk4$K2b&XekpA(Jo$#hP~%LRdHzK~Z;*FeT0hqUIS
zAKoVw+bnG5c8kJxj|@WFqH&r8Z_k3yxA1*^g?u)=^Nja8gE#7>ni^j#r(kkv+{R12
zLRa^D>h@~uJA(8Z`S4{+57i019)`Ik!CeUcYy9`Yt^ii>bg<v!`is~DAbG(0rOr%z
zW-!WN2E9q~j9^X=-DlZ<z+`nD1YQ(d9q7`=mT*ot?)BnXE=}dZ34p{EMpQ3#Cmog3
zQ@4`O>!p1BXELj@&~-{MM3jN|6enm;Vf&eo&D^(!mf)Xt=Iyv#PCyi@AI!nUJ7vcF
z9Z?qTgaL1{))&7a7(fv-=U;C`3MQ@XpPw*No|3pRiYMav^^MCEXcNmKMy76FFu1rn
zsKLwFg!O1*xI)<%<~sf}?`YDjAyH&%e6b%NOhZP2nRy8RBw-!imVlK#nF*Ygn*P0z
z9!S_RBE2?t;DR1wcC^~R-<+p}CK(Z{gY*4lVZKGRTwFXu0P*vO81V)OJS{kwX}((h
z$#^JT*A(yi?AzKP>gbz|z}?Y*e1djGi?tA0Vsq2uGEM<OrV~}iydIam(a=aw&PIAa
zu>6rsUqg-FNv-4D(sGqW!67r%#&lo<MCs5dIfJq7EN10{#M9b^Ewhu-kFTm%ZG%np
zPn2ltvgj4L*a(zI?M*n}a7=Pce6*ik%dT#FyQh*CM3nY%(Y5kXBZ2mf0vb}c{^S%%
zs`NsZ3ZY_7<vLupUITlDCq%mfc^FUC!k~ny<Q7@aPa(q3Lt*NN|M0vt+oD)w$&q2C
zL{B-);WvqhikmLJyc26Ik<aCBeK>`)%o%UV>W*A<*xxx=2}iyhy<>U)4n@q8%x$o1
zD+#C^0wjTHLTWD(%J+UQHP>-ja*?a)?sel<Tl^8LOoIg_oEMl(eqCcZnRA2;<JsJ%
z32n_uLefD!y~^rwW1~KaR>l&u=jM;gI%$8I#ZUT(=L{(vzgslM8;G+P)DX}#QN%2_
zQ;|DB1EA%HZ}K#+*IwQvvZ%666n%KJ_0*Vqy;w;fWbwOU@!56`!A35zob22W&yE7*
zDm+NU%MIh_JgBf;Fv|bk&Gz+*)<f|#SIqCOuJcDkshXlkqBupm0VKImPMP}q_s$9<
zDYm9?F1%i5!SeKAL3z3q<bppyPkeGv!w`blCehwZXNBpbc<r^6qSuX3*3#ommhW#~
zvmjkJhqf;vHw?E6et)rF^`G*-4X>js^(of)0O&;s55U@trj1C&adGl{A|~zu*R2u!
zAKCf8Phz1|l$4Yq6w=HVcK|JeZ{w}cLhm<ebIZvwsWiKV5foJbqIZY^UL%z3b~Bd4
z|2gtLV4}10+5A|$d8<yAt8J#Qy*Odl_?s?Gf?-if>?u#c<bHM=l+X>Y>xtX1TOPZU
z-oXhArK+;GkbfZPpU00?YY09ade?&1Pq`9QG>*bBm7GEb%3h=qnVRv?A@@vnmeFxk
zyhFcnaCR@*T&M1B^$9W$3s!2Ow85xRKWLG&kQJ$)?S{Ia7c4F<R*6{@uS)&WhBTIK
zFPz*uso!>^{p5gr-_~B!q#hUNI=vbd8c<h4@WN#9vo=e$AWZr~(#N5j<G`&VF>3TK
zM#XQSnkDu)-few|C}KAOQK1of+nBueKr{z8&@neXG4nPRvs}P=qPj(R|14<gO8pDE
zg%|X=7QbV>p#Odz*FtH--={E2#VE<rQdw2W(~oa+!ceJNi;C9Eo*M)uBHDr2qwI#`
z>Zq`VO*zhL%PsiJpjSBwoAlyJibq=9mWY)vaOP}(1WS=ajA*;FV`$FL$J0|49e1__
zHE4{j?KqkcHS{F`LFa685i@7wap-j2P+7m>uOR(?gWdAa`eBv2cs5t}!BeHZ<%@6P
z=)b(R)RV&_!NIwXu6`tSK*B&SDQGHdXVA)*{i8v6qep|Myz<(H446aGe$+yWyhSQq
zpSf>1Qe%aqn3$MRr{8HK&uo>_QkI{zT8rO7B-n2(_1)LCq;khPHFN~^|5R=5_D%gP
zBPZ^_1_VF14S^LE&FpPy0`>n*G>WU8Wy-6Z$!vNK0;3hG<*Di-(2*ppHoHQ|a|z)h
zmL2s}Z#UrgHl(dj1k5L{H>~iz7<)TfTDtUzKhLenM%V*U5arXJQoDld<bi1&)BR#3
zED<al!=BMaS-mLAsl*~swv1S|eL$ar>!i64P%rzYGo7C5PkWTwExhE=rZskbeoJdf
z9e`l>iAyt~9tE#khHt8LbcxM(l}`1ja?aQU;#=%1)cZ6(wyQNYdr-v~A_2=n@dk@q
z0(jrgmtr4w1c^xE-&o-CV+lQ;-7koCTvUzvY;R9Z3lKwcvHmKW`dzKJJ7W9Rk_@Co
zJUY@(FZmCYJZq!BI%`M|MvqT9)YFebPb3dS(iXg)v2_`$g8y9+;;FaP|Gl_LMSNti
z2i&#yG;t*|E%Svfx^{tjo9Y(Mg%f)B>US50utdRF0E7&*8|mu)Q+kH)lMrt?Q;Zpi
z#f_;UoLG5<S7Y;5A^M21L9^g7RpIns;zDP=)FnV#r>>O|`CP3zjr2I!a)?bTdUDeC
zrze0$Fwwn&j2h#S66~qnm>ce9?VYx4yW0E18*2F|aeh9j#8u0<*qds8Co1b8X+_w@
zJE93!i0_CvrPqFmP2QP7P{h_eP}cg%Cj17oy{7g@QCy5{H~6o63Nm>Bv*cT-eq&gC
zBhfPWE4o+GjCsp{HBGPh1<&`&>ZUoU&<xOb1k0H%oNDc+)PTvH${(^uMI(jRQsA2+
zuzhr1NT;MPtalWwPW9fvHeY0}8++O13pg7TKw-`Up|Uoe&@yYbaqepdi}=OSfe{B^
zLg7kiYi5p=GYe)BMC+h?N&_>+2@%llNyGtKucM$P%C^cR_!g~DYz_J7BdEGo$XR8u
z=DYH}Oc$a_csQtx1z0BhXUYSdUAGCO%MB2&KisBek)^;ax;HsKx#$axQ@sC4-Rkex
zlEY{3g|LeY#EGaLeh!6GxPA&*DdYk^N&7zlwwy>UsPgPTUNZ3S;3xrb=Z!Z8+$gZg
z|6gOJ|MtfJ-;<}9i7xA^3Fo?;oSe!^{;SsYMN2k(Kngk)7MHWKvO-Hs3oI(cd>0_&
z$a&CZ%zGkly6^lRtmkHHWsk>FI|6|){AM1|nZ&}Tw%E^OSUyi~p73Mnl8QC6ojM)P
zP*eAWTjo|o7xgXz`K-Swsdy{0nQX!|%ds1f6PAaeu`W$c9{lHZ3kidGn8HdLudxyA
z)kg~K!Nuu;xX14Ni)pG8g_DnDn)DjInSms5m$<!h{Bk*>JaPBJ4~<tQL8LL-4C3{I
z^bn&roeTFmy@u~;;oZ#xgolJ!Vz-=lc`KCSso6O>E#dAg?Cix_Ig$Xux88NZ7ksb+
zwA=Lvv%H<zhT*h>4?QOd#}EC#(SD|jSMALk?4CJ4tk<Kkr!LXFmF%eWO~*bny@^np
z9rmsDGANA|f10_$StKB;=rdW0<O63L6*QH!EP(^1si}nHr*N~XTO<??s_!UiKO=70
z5Zd4pJm4i;p^k0bO_|x98V5XA1?w$WX6lr_3og3e&e`ATzBSEVl~cY~7Msg^{^ut<
zOychI002{1SV%-fG&D3+ZVbEHT~OfU<b1Cv<Tz3$;xzWvvT=5pVw|}pa`z?Q7`_ou
zt#ID^TVYuU3aU(1B}0ol8%sS`^7$r^S|q|AD}_0`b1U40Z;WGb%S^Ynq3=__FOvM7
zg4Gv1GeK4ZIsJg%EOthtZjNKr!#&bZqpV$jp0b)p!{9Lld)aj^e=>bTnPgdj(fKA=
z!di~J>pugOi_{~D&GY%mF}9j`!<_;~;_)`Cb2&A?-Nic+nev3}(7?o@;NGmLsSFYl
z61YR`O%wVGs=e>mb~!KW6WOWwYoX%Uu8n}=_Fzx_^*ZN$4UKB$t*{t6@*nkO2!&Ea
zJ(J6_XkwFTvMQwx6+2ir2MvDzkh&d?Pl0DU<IF8^&le^8m}RTy>volOXnEpSr`Q&S
zsF-LNslKTm*~ox=xz3+<fCMpr{g5OZ7CPN{A+N`E&FmSv5Lk**t*uU4#okg8TZqi3
z_O+P#I>b2F^P)`1$4fxh2@6W*!lR<(VweAD&SzLC&y6m*|IVPofKbem;Mj#Nod+c1
z)}zxUwkdtuan`mN5zN-D#KSJMF`agvJwJ7Jt}^1~Ry_E(nqb%R{Ko`ThYM5dBnIxw
zPD)C07%t%leP3&fr}6dm#Zr`dsJXj8*^WDJe!GGHx@zKt@fDa%^_M3RJ=1Rs#>*qs
zX!zE5ex<m@i@17I1fM`&Gu7^-YNc{}duOYOj;G{zaHv|8UU&=t<AL}?hVb{?LT#0L
z#M?=HtRg$Ewb0~sorcP^&+mQj-dJ435@AM2NMw{grg~>*$GTLL<IiZtI8*3Fa#j|4
z^}uZg`FnZ!-4g9ptAn{GU>K7%;H4068mXsvHV2urF83-xDV$n|J8vMV+k>TErF;Ad
z6x0G_td9fze4rSgWS11>xcDl(7JQftwk$l})GF*GKm0)PR)Vs+1tQfkNqtJl2wjZ0
z6D8bE^l`^b#(P?P4uk3(qLZ1^G#O)%ap`Ik?jSO!hmN*w83ONX_lP9hA!aNmL}6co
zA*A^di+3VND=UFtf}b7gjX5I3TguPO&AnRbrO!@RFNQCa4eDeF_z?Gg`0!yIW=TV!
zrJ0$L=C4u<es8Ju>RYA$n}QYCX1&`ggW-<p1_YAlrrWlPMY13iyH!fl)v5`jzD}E}
zFlxGXQqZE4UPkV{$VpRI8km^(v@I~_s2r5&>{hZG7hGBCvvVwPUPqa*2|Q0|NNhVr
zbq6|O9LFFwUeyOmhp_;IDK$Xc7bV@uI?$5g<itDBuEo0Ht1D}1#Wr8{vWL%vFWn+4
zE`!E5?q|f68usFsFi&Pq&I~Zsy3tpYW?P}ihzP(BK4M__>AMADP;6;w$q=+mVC9;r
zAbH`Az&9t+|DvnWYP~T?uIL`%{odfQu9GTtM^jjbo;tf86*uYKOjZ7L9)E^t6P{H<
zA}aFatRj0{LI?4H6NRe@or3JGb&;CW=JN+Hoq3Fe0?bR4D?h2SVbIqk(_p|}8YK(;
z;v_K_N5<3OZeh_mnL?2%x!{0cBeXR{(o5tAvJvFp+B13>QM6EG(L%qY9RRA)ozKsz
zzq0)p_+6Awg{vUu!mOR)+1b0Eo}SH$?V8c%0*}E$C2nqR?ObWo8hhdwq}YS?;ZpeR
zj8F#gr=L>0TjdLM*oN+Cm6yS96KG`{bF%@se>o|XI^Lb23RDSDe*HehL7UW$SToR+
zJRb|Hs=_i(H%w#T6s7jx`zX37JzWeJ1qp6ye(XLfv)dW|5$mx%h@e1>*(=xBx7t(q
zZ7-813v*Zoyq#+wTKV-QWow3>_>r_KXt4;2LY22=K_KyFdGK(P;6Cb7k9z{8=h%!S
zM>2;WR#($&h8{L%2s>NCbx%P4yuSO73T74Zp9?*?1IeBd7BiT3Cy>E(goIbe%eY4)
zy#9K-^YgXuluHJfBN!LWg107LrKuMi@ObbZY)#eQSp2=2Ez78u(!2GVQPvV~c?AKf
zyK3U@W1EujlJ~%(9jC_?W<TI`+LL~pdrXm1A2VOU3QUnc{cwawczXY41NgG`bwO&&
z`O5C;?>{+>&;G^-jYwGI?E5Nsa8YXcv)JZE&(Drfc^fOM=Q0x9Y1Ig4sA9YDJTDaw
zZlVR(r{Lekjc$m)VZ{ZH`!EGyDv|o0RF6f-t5mtjp(BnA;vNXi$A%TDzhETUdADyW
zqMG^>nhWSc<u;iz=0mUofk2D|Xrom5@TbJD4xKXW>j%d3O^B0%YVg|%c8f}nW5UKS
z`=K~DLCeL4G6z^FmMJ(rm91;ek*==XIc)g9!ycWJ`^j`4LB&Rwd3qJ2;=x0fG=M&^
zjIkC!PEP%Uh9rPJoQq0ek9-*1=i}jF#Ir!41{@0$w5l=n+bOwvppf!l`@o+ASPU8m
OM@>mf@teF=#J>PSpdu0g

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-remove-file-rule.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-edit-remove-file-rule.png
new file mode 100644
index 0000000000000000000000000000000000000000..74cf1a5f45a32b658a2301c6bc313636ff5bfea2
GIT binary patch
literal 46086
zcmd42W0WON^etF+m(k^}>N2}*cG<RV+qP}nwr%^CZJSg5`>*%je3<z%pC;G3>qh3y
z8yPFkIdS&cJ2F&8O85s177P#&&<{}&0XZNb5ECFEU^^&~?<-SewO-#}!1i*&{6JMx
zI49pHV8(osd_X|8(Xj8j;NR!aHX^F_KtRY2|31K*M))p3K=tXO0(=TCTIZSI8fcOj
z!ADLrKL~UEazeuLR8~Uga(@w!{mRpEc7_ZIQwbphVRrKMUFjl$U>140cs07B3Hi}=
z>qT*Qd}U|kWM+J|@s$->Pn0SFfd~Z#;>)`LPk)2q%liuvN`RWTFZ90#?*DE)XW2B>
zwufTZA^5iZ&rP65>3yx9-k0tC56!JW*HSSqkcKbuq2T{@#;DUpp24tW8)lsnK#KyB
zG<xE$FS4c|0uIFKa{rTs9-p%(a#$KKJY0LrH7lBwXYb|iC_vGCle5j~vv1Jecp6<a
zBqOckmGmMzSx{gXTZGb13*$C)fMxr@&=BoCM?zBT)BfaqwLW?)3GsxzkJckoo?y_@
zR#oaW@XmNz>(k;xClvwb7nRFR<>)}^8Od{8_6phe&~Cg59?TKPKXGqvZUTsp>i3(U
zlWeRk0OyK#1pEwvXh1Pp@`oTZ2`V7GqxtT3i^v+BE@Y4>eqj^FfeMa$PDN`fj~JZp
zj|nwqlRVX8ulJXW&Dz}&mg?HqArlmKU*t2E^9ueVo}lzBR|nAoH<x>m&GYl21JNz^
zZr-g%?Oq?RrgVV<OUo@b=Rb8lfxEX4-st(sDDCMLsow6-%(0R^fTw$X4L1`*j@3xE
z(j+q4to&$SLL>dY4e~|n<^>b`R*lK+@!aM4W`m9OCls(1Oz-{a(O1D|?CgoD$mHnz
zw!Tk{kTv7pTKcm-R1nco&6Z?Zr2CdedND_)#EQ!OCd)8a+3p~#gnVx>bnod_dy92=
z-ZEdDT7=ytkCErfG_}G%a5Q{;xT<T)-DXedw|#j0s3<iRl@<PKM)@jV`}OICTq3FR
zbeHRGz}$pJpr2!G;zQrU0xH%d;3TW{xhXNUFH{}_R*REDh7rlQkjLXwYI-8?d1tV_
z+Wu<GOV?_X$P~~-&;7*z+TT<uag{0F_0{#PdMIz$&m5`PN-9;ji*}+~9KGowY(!yR
zx=R^<_e&ihMv!c7QU=zu(^3Lb^(=HsyqHv3T0QruIaM~|ZF`^_YiRFTQL+C~Xnfvv
z@gui1CkKkCFjRCnEWF;DyV_(`fkk%nZ7_n=QbLhNyIr1FNq(~1c7I5{EzIiRgCSY_
zu&;56u~A2%gVN|Hvs@p%64;>ixXMr)OxTrnr(rU;xO=RoW|2Z}>0Eog^RpxtWilyo
z5vqZ)ofw;Qcq++S#b0PqYBklK)2(%|zM^f<p-$r~X*`h`E5O0z!@TO%mN6$q&7WDG
zI?_W&_&@YUcw$oIrE6p>Wdw*&1GKvjXUomjTV8LE)QrDWRaFh>RTUKzRo?4+iXtK-
zLjy8s?Y*$X#mD!Cqj|hP*9Qj!M_!S%Z&<%vA&P$Bm5-o4q-7iEyY<&P4%9mj5aJNa
z&z}!R<8x7-S(sD0zMa4HXDm@C6!?hc17U_Pl-V!$YDHb)bB}kpHFpQQFKc!FNYMj=
zxx7nXeLB88oc&TejdzMnWs`|eczCI<!#A`A{H%q!rD)?|$D9kH;pSITfS4P`kd8xL
zC^0ibsM2CKnIG*b$j2+czOUpY#){N<c}Bx0J7&6=D^yoUQ)MHY2Bm&;zFO**hs6wi
zKR$=<*xfr@9#L?^25eGCLMcBuzHTICMnqVstxJ0Uh$lk(3z*Ve_dK`GY8B6&Rd2YO
zt#to#n#gb_bUnF+2`j5x?`z4j^Xidt23&rqkJ*XkCY<VZHp`+W{8gUq$*~5IfYcU9
zK5b4qid)&IZJT>CT+lJ|Dax4M4`Uuh<Fl^RRZeY)^-qt*l)^EGd$1e`ARshneP~jx
zHDh$Uf(cZwOt$SVb~i$g(ARo}OKnW9PP)Bf)$yKLX%@<1bt6hK|0-w1X07>%uRr;?
zj_gC+mi%YOYLGD1Y;I4e>KbEdlP?O_x60=*n<=duoBlvWemYmcaSbV(<>8?F9a#3I
zfoP-x(e$R+vCJV^-@C9!9J~S_Cr~V$jL5Y-S*++dC1p-1A0cokFBA`*fnMxN$=~!N
zQ`37Af74&(0ewZFZN@&!rMMh*Wz&^$A-;;7t%a*?j;^Hz$(F-W%o`sX?!a`)gh-%t
z!jlVFdRMq>0puj|e>!7<Vhb8N{2~?y2?=9)4T&+Uk1tHd_h4&k6>qLB`J9Fh#xYmH
zt?~N|7LmIWrh1hAa;tG`kM%TaNOs>o42S#i=f<dDx~>yrB_893Rj5#Ohe00!NBIqx
zYn@FKGKLEFC1t+CIXRk^jc$vCww9|xEcwe1m5DLw-7r*fo6qOUIu0$f05e<rb((^I
zR5a}Ljz!^OZnQZv$@K>bCyU#e3N8xqeW#&-ceo23w#6e0?~$Xv6Q)mHaOIr*KD6*>
z(G!24g#1dvnK`3p>0eg-y{2Wq$ny1${!rf&6&jrT@Kd0N5b+Z3hUeIf5GA6mNBy;k
z9wgTM9)6Pm7+EC1M|gOS2A3;it+JXp2a{WByyj0qN%-AMm=W(Y{m!*uSyvUh;wHOA
z&bj7V;dp7WwD#dohXv3~h(~tBX3~e<Q4ZQMAXSp>JK)6<wj(z&wY8nS<eaaeBmFs=
zUE6@N$n@*0j8+HYhb8%384HF27Ok7?WsNw6kVwg><9_NasphH;3(I!L#zpGROa#<{
zD_Sjyt@<O2EiY<A`rG&j24x!DalI5}O$G(LrRiT*(spX6f#OeEYwQm^nJEtB7Y<Ef
zsT47`H=8dWWEpD-WBtwbWHux@>62zkol8w0)L@)dA*@|JMd86{kUq2f;q)tVG}3FP
zBH8)wyR;dc?@^Ey77<tbwT=glwq0$|A_}($ok*z63=i+E2!#@siM!<|C)3<I%Aq&p
zr&e2$D`bY*P;B22;e86x8BCFH|I>VTZ;y+M%N84}v4icHverycZ}swTD@7P81$dj>
z?k&A+V5w9M@nQA*U;z#fx52f}I*q5@PNJJN<?+A=bBLC9C!xiBc`IS8(6^xnzCzW&
zUA1ilS*x)#McxZJy+3ifaiPDHx~3<_^p#J|pR;uaU(Mts0jz(}<BMkoAp0L?DFN*c
zmk<1hR0i;Yk){5jm|v$r|GQDz(UI}zOQ=AuG%O4z_TOz_yV`%<zCO8hKO;qmkpKRr
zlEVA<AH;4jIVpJb=nHE>Ds=3hKM|q->*|x~7>o43-yMOV|9{drY98&r=r$qM{i<XP
za1{837@{rak2<v*Ul3h_>q$*?%d_|QwW?KpTU%wsY0#3hng$ilG~e%uPtMel6OvPP
z86|C?PYnq6OQAa^_*TnyM1Id2aaG%|a*w3%pDhHaO=9{)3xRS7<L{i3)Adn?AoY5S
zWq$fh1$gV$j?b^{xi%W-ls%rohu>(?1gesd6gH;Bz*y?pQu_pY=WS6W>~oD%Y+h*`
zSfYGojeOu(;I0Nleot|T+Ki6$BFy-KH{83P1<*>uSTOU^Y@#fmFN1MaJnhSfZwPsD
z_MOe!K-+3>Z?CzO7NjeNaK&1*F~5|6G~0WPpNI}>77Zxn@8KP2fZ&^6zxx6wEzBDh
z+Z+%5=jG-IopU%4SsR1d0Wi>QQPg#M`wo^C#H0IRB3Q!uhaFOZ5v=oV=mZv&*uFRF
z!$(F#&uVyeuBN@96U}Y6Iz%*qnM)5Ff|1S{4@a<w{wJ9RU^f2<$Mf26<a;d&fspn`
zlM18P<?Mv#-O8E>ro#)Xv{1yt+~?AgCY%+pfxZ_%I9F|YJ!T*Pl4A~KWZeyoYB~&^
z^;FiP3D0Dw3MY%>aJe_jR}vF|`D<Up{Ig>3X1g+F#77|$!?Tn0=UI8}PCY|>P_She
zEOFKI=A)@qndECtdP)W6)}R-flO5Wl`+4ing!j9HylJ%-c^{@P@`cmc0#qL-rJ<P~
zC8GFnW2?0GGc1P&@&KDd+*FA<>q*msa+w>MYymgu`mDhiEXPTu8KuHQ@W#te7~0@(
zll;JwlbRBS+`IbwKVBbdHZ~ov@ESCgov)<O#7f^sMs)a46ibBsViGu^g{0oq!gAnp
z6uvCfO^|944?Wi*AtJeF@M!Gr6t)n9#(Na4!_P67$#*oDbnlAH)L`gWdVZ^?2kfh3
zw<TphwdJ4GxR;O~tn4SOF1qw)*l|aMZ0g)JQH-Qy;zKz4QDuSZ%CVFTXHUjfOhN(C
zmDI@r^|rW0p|NOyP<pZy9qzX|zDeS><Yyj4Rf1-ud=nsGhRJCig^q}))sknR@cve*
z^#_Bw1VgpMC<d#+{f`JYf?<9Svs}4L>UJJY=)DSwe6n&^d(LvmJ9+GcAiTAQc>Lde
z*MIfOFOweU#W5mcy@NgFt?o@m7*u>nUPB)ZCW6N(tL8arAoffV(4HLMgmKKj{G=$R
zY~spO9Ss&pjEA)18cnwhivfR>vfINoji@}IcSb1Ww>Eeskz`DO41jVD$(K2y@b4^h
zStvmzg4RI@kum?&n3sdqNn?=nDzkl1QhNX=PI<Ty?dHz0YB1S~?9*OK<@GIkBtiN>
zIFTX=wZD|IS>rou*EgQ`{5<w}a{AeJu(0Lf@NeC7%+rM_1_K(5yi2xNZy2cx=T6Ek
z0O3`Am~33F-lQZq(+g7sUtp31KVVtS);QIF(4139a-zAj(`y>MpAtA!mZ@cJ9=i~H
z#pKN&2PlB&1pK7}Wu(y6@f?X&#KbRc6(RXBg2nfx9MR&jH`>*#q9l#mZA%?V1R=;)
z5qBZu{S_EUhm^D>E+AuL0RxmY^L+h0hKOAl!}m%)=wkXkvnI!kD$(+OTQ~x|^|%!v
zYj3;GmmSz01fEN~qdxMLk~0Ybw5bm|=~sVU8{cO0i?3YZBUAI&9?fSrtZY$})KPTR
z?uxRcVQvHp?-KS2bQyr7VFzTICnABbx9(AC$UM9#6JbphG33p`m-xrk8h#B~D~h2f
ziy=hW0&Wo+s3jBkoQU~<e+?zoXHZ-ugze}CWCP3m<W$arc#1a)pb-Z!&3j3y6<NWi
zht@Zlg2?!6nFsufjVuWA3_U!c4lI@noq~kJdinl?Vu~NaRvoORKY$7gc|$fF<uf3|
z!oqz7pC?yBlWs{F01}*Q%TuT{SeW&&UP4o+zD%+xZtBMAb4hBqk0N4eD0@+XjbPy5
zyeW_v+!RuxuuQ?QRKg^xAiw-*vU8BHU<r2<{WvGO{XdfWbiKNu<oBl45c|-%`GD@q
zrnbvQ#-j0|OgZihX3yhUnBb%R8_)L&4^d_0LZ8An;@Z!sX-nP_nN?bx@NPCBR3EU9
z5ohbcv-WECQ@j~EnEuBWBkBHLxG$pd4(PCkUjoP{ZSxrdYa|Jd)!epf&YzyJ|AL`}
zON8|c%~GU*z_?ZXwJyZrLgjqv*2Z<&3%8;AQpHWxGwgg;OpmYf<%#;goO<*xdOqDL
z@Y4{qwUieFA^<i6Rq<A?vbp_B<2=Q#UtQqe-SWQUjO=|UEGV!%_+QZ||I%&<yHCLX
zYhy+xu%2vja-)Be`d%44PTiEnqh#Y+`xYklMN_R12I`G;C-ds6&A+A_nAW^l_jkJD
z8-2*VGa~mE*4u@$u6M8T9>VeB9AK53kYsF-BWmQ8!f!!I^AN@9qEx(6J{Az_T(+2%
zc5ye4gJVR5>ncLzJ(^U;x1m-(7`B|-tLCBmoei0O$gzgUi@0IO#Usb>4QI6|iWzwM
z7j~{~kW5_VmQ<A$Rf!GgeL0()o&5PcFv_K0Q1HHvkyuzkBWGJKc5xz{+w!%-+Fy>X
zG4Czj>wZC)be_)D*Y({nji?4&{D4Z$EiV>aX$;QIEtEw|{}P77VX?EnXgU-wVG<I|
zt8w6H=kW6Q5t$d1v_!kIzr6OK2K+^~T*}0%8QB2+hP|NcVgT{}h|CP)`;7EMmbEz|
zqvh#=U_!6qy2(rGHxu-uDim*(fBSGq*2nIq?`^yLhhLx2eckG_^c2sRffVLpGe_g~
z{*dkOzJ52iiP&b}n;o}|4wc|Wmgg}ltkfZ}xCxp}Kr@TAD@F)5W`n;Ws>ljJ<h;T%
zWLXEKhPfp_y<0t8R~*;{q#gb?LsOIr_$)&bG71yhb|;YJM?uAp-ZtzeD4$}9xF+ot
z6Y(=yR}2zIZ3oz-iS_OM?k7+!^Tl8Dcr^Mb@p<fzLz^@7TTLH4oRUn67q9>lJ!-f>
zuh5F>M#Ytso?7#=tx%=3j7K-W<q^P>wL|^I%;q|kCJZxs%7YEey2n19)~;=YxBC-x
zXXQq~c9if;sph98L|{;9%*a&_hvAEhTEnf+Abe#~v^+QUS^3a(6^y<Et<}|DI`my~
z5Cl9R&)Vd@lVDZ_f%ZIw-AX0D>9?+#;mY<+JV{giW1y3_>!|HnH1M@ohzIsySFG=?
zI?0gaFxccar8nvnmVNqY37tsBkEtfgY{Th$I1%>Dotesh($4X!c@ZO(tBau?S@p3@
zHrDvmxuNO#{d~U{I9$i68@gQe^;ZX9$KtDwf~^onJ(HUD#uq<(L7<MI;UonRW{$Mw
z3{k&R8ncQV$>!PWYR%~m3=Vcike{<4`<0VCf)=VHEZx+Mk9&X1%av^wG3FKRUGT9z
z@G2KQq2JrR0~RlF5ZP>@l*;{ibdJq#qyTHWuRlH(uyan&l=lEpyuZp!L;7AAmCZCR
z03ich8YIHQlN%=|6pLm>)_l;o$VC<h2NpCk=2h`Hsi)`6e+UVdnvG3I0`7vaPOan7
zixpl<+?cs<_1uJ;FO6$3sRRcdfql)ZH@Y%0QSfZYW(0_p9gKS;L?OchV9G341q$0m
zqajGHBpye&p5SF(+ax#JtZf&gzCL{ktL4*~gC0ypAztE*3UoIvveRWp&d=z0nDxYK
zKI`W;%}0cXdh_<+Z=Kyvb{0hzhOiN=?roZN$#rOd%PTDF$e4!JHHb3M=u#8Ww2+g#
z+O^Njd5#T<R=J=7DRe@v4xMj!d4HB1BwKGzt<w?fWapKg4E56yL{Z-$n+{)*Q;yNB
zixrIzq}?m9HpR;#jc-8SxO7-uuDI|^hGqG^pVaT~NvLHIkcp5dMt3(uH&aMispD^1
zeGE-zvnBEuQ;x}Xvk)OwD_;2|#zOa=E>{Enaomv06`}BQ+rcGsBcsJ++w@95lKHhI
zH2;B45}l3s_IglMIi7N`2#LpZl(Y_z<Q_4?r%}wTDj-*Jhrg`V-GYAtK2@$h^qOl|
zS?ec;yZS&9mX-bv4jYnDy(~dmJp}|-M)t_cQbh;aAK24&Uze+Fb((Ma@m9pzn{f`T
zj6d-KF3I39W=2fLaXCU5i<BeoHhycX`Oe+7>Un)V*t77i=EcgEq-7pQ0K(lShpdR|
zZAG9W4?0bz;HO%?`Rygc(Q9i3CHpNQo%LH{l}h8IdI31B$lTnh&NmHNdFlMu|C=M7
zm~Ii;Et?ba{SFUUNvsYVyA@1Nq7G$O{FD|D5$B4MzHd7wLyOI6i1?lTyQ}NsI?(>8
zJ7F|PA#=V=R)UE5b|0SP*TKP2<o$9s+XLUoT%a@woFXm`m3A0k90ozGm`*>k>oOR4
zb@u2MB1!)y%wui46c!tr#)S5PxF`+~A=kvxx%#{b&?DXqML{C6g){}Re&1+PHc}!K
zPt%NVUKX{xa)WV%?G^a#?N5(fM3^WUkZa)NM6`I3x-qQkM>sZ*r|p$X2%=m4TJE=x
zbYoNttb$wR%24oUmyv?By?w2A>7ij-Yh>X8486eG#rK^UAm}Up;RN@<0*qR6y^jHc
z%1zKn9M{pLD%mgx%&ti8f+_L#ClRm1W+CnDX=*x=wc)Flf{KXW-mwyQd9?1yEX3&K
z<djgv1<?$meZs^_N=h+eg?%1c%^17JHCB|(k!q(f2R4VqXb#Nr>JJ~IU97a-B@KrX
zOT3$b3TJyTYwEUah5U4%YpkY@=C?#c-^+oG*-a&{9?MuazuEnZgC{d*2aJJz$zn(1
zT>_3V=q!00HyuQ*3S0ppd7#Q!ns)c8HOF_}Kircl+?laGWLrzytm5PAhkWAkXbn;K
zz3}OC`Yz*&`l0Zv!9$z-``u|Cp;PJ2j_<^5Wn>_+!-3tanehPc7TG>NG)?{GPg=mf
znKydYf<#ubrc;3PnoM({rsJ91KyQV2mA{bDnH<QdKpd18*FHNdrs`};9}mbIpzBX(
zaF&HKS@JR$)WA6h+bRvND=jq-kkhcfx!tqS742ETJ_A(bePN2|Xo;}C2MZ~qTJbDX
z=RV4QJs!S4@qitc-CJ$%L+I?|Y2-!T5%RP?gA}QK)GetrZ^y#j-90(2q0JM;_^ziG
zfp39_ao{FBKcr*|zhanj;pd%-Or2`XMJXp{o$U*8p|CiJX&&ejsi-NEqKmKpx<0U4
zditdKGjM<YP2LBg5T=O1Ku<tD^hES>7GXSn0iEyXhrCd<U(j`~m*vF7LT_R{DMP=?
zb;PbPP=;*RP5*sk$!I*?I1--@S?-j<?l$ojjr@?<I!ID%RtRGc^X|{?U~ysd%Qasz
zI5+!o%FBVCkkOzgu*eG{r%(u;E}jbg%plG~0qasIhp;<9*sHs}y^^H@Fl=rz8jMq6
zTe|&`u2EffH9gnw3|x(TwV)cGAkm>#WrXpYyJ~xL-XJikfa4BSsCqh<_eq*t|8|o4
z2(Xn@rk5DligRJLk;s!>mDXQA`^yBcL3gJiFf^VTcydWdREu&4M0JQ(?v&TVJ8n9h
z$7*S(Caja*^i90u8*udS5<Gn}ibX%cjCZwggou19uY12XG^VO{GgnG|-Cfgit|4ok
z>^e|>47d=!n3FLxUc0<q;>4CE)BK}+e1nc{KWEq3UK}2RzSNiqq@x7cIoPJz-dM^=
z0`yRiHG?^V%>{eQ6N8^nm<zbuzTx5*Ld@|0(xveJzwj|R@O`3$u?q*=x;_8#M<zZC
zO01@gX;oEL)@(B}ii(T#^ZI|fZkGrR9dQjwknAGI6qaO_hb;fW*I%C?X2cm{Vq)L?
zCx33ixU7<rR)-7SJ%_x!JkPvTNg6PEf=_`(Nu~@_eLM&mI<N=_(m%mz`C5M`AnV{{
zzWCwcA=jfT78K3lWUkN#DSnhFp2wO`HM4A@?3Pt^Orh0mP9?0ZhJcI9@&_6W^qs(i
zLj&W1su&EFq~(O1(Y&rGOeC@N$%&b{%$W@#=6?wK%MV`!1+@n0w@^!K>&wf_H;+0l
zGBugbqD!LD=Kf@*xLDocBqAs;%_k`?F3Be?4^A=)7r1_hJvt*u9IH^_SJLJNF3c~o
zU_^bO${}U+lTvSK!avoF!fYSGIOW!(E{<5355e@m+4iFBDi%*mOJiqeudS_}*=uNO
zVrF6*yvv>K@^nvW_5SkG)YMdgn;w>(UC`7o4i&`@Eii2sQWgjGK}fP<X!eTX6O!A5
zloIJJD>>Op92JwAg2F%a%p#3P!wH3gGO9~GtPJLk*CWQStg}4(Bd)0GYx18W8M5Vb
z1#K)SI9R4wj>qlMVlta&yElZ?YNvy2)F()(Too`FqQPbu*cvZ|syFxDT~<nh@)&5e
z9PjTpUQJyu+k=jWaO*75yclx0dgd_t)G}R4orOsa3SbLMUU}fa;xHf+iYHd;A*<?&
zcOY@(3&MZyaf5x$wSx);CM6~HZFS`;jb8f_1&Yil&Cq}zi54hypTX-4voRPR8!;Fd
zF;;w-aRWK>Ka3D;UqHOeGRhNePtkQ*wE`5eA%k+Ia3O*#-k}O(da*j9B;YY`+j+1^
zTPs=08d8j5-<}OMVBLd2LvZ`z5h}n>1myB?swkNn5UvAEC>!WQimqc_HyjfNwmW8*
zvoKvgt1g$%S6>w9kde}$^Kw5{hfF8E8KnT$a*J+&oLT@z_L#nY#3`Du=%Vs`-CHRE
zK_e?~q$~c<8GWC*N&uZK;Nakdu^}QJKY*+4a=sFLjbK2IrNh8sj6jQ@5y)sM!@V`T
zxLaNT&4s~N`_YXtBN1<sH~1=}r4=%a2ry42+jf+ci6oL(idtGt=MnqY?9ID#a*;+f
zM|#6a%3d@R|DMGAj{njdUO|p3_AO@J9Zufte+yiICQJ2?^TT@MX$1uZv$g_62yx&L
z7a7)E$s&3c#vb1(;?N1B`cl+7pJAjBBK*5i1woQVWPA2e7#KMCV94MBojOd1Fa?So
z+g9XKIP1qFUfR0<806{$$UbP_wbH`EK!Bj2piEdpW25M8iTe!jhXj*1ON`Awi|#Jp
z>hHYg^Zh4ohiHp$RN4M#=-HnCxdbKffAntNz8A+O8ZB{^Zelh}XlP9DyTN~S#<QjA
zOkb%W;fr*NPF@+VcXPrBVGMPaf9GeQ0O7}T(N13a1;7ak8d^!t6h@w>jIdNO9cUj9
zhOoAhBp_O`n38CnhQzMi#o2YaYWyl>pjlLVE`K=AVZDp9T7TFz*%rHaTgJz=N0#tr
zxt0>vg%ia5E_A<p-;w;<+mGovE#yKr5bWMtB;~t`_MOQIj32eCv)^dLD2(m^JOqy>
zjMz>|RVj<-h|1~I?PPZX9!LHjptrZTySu*$3JT+SD?rTmDHk_odWTX2>qt~brC)BW
zcd)hP9Sbo7K?4pH3sh-ns>YQCi8McAJjr)vZUme$ia#)AzR290E((EG%N~Rusj&|^
zQR9t8#0*M;mkS<{+FM<)#8^VtEbq%4v6<0fr`_SNec6!AA9Y_=m-XcB6B83v9nLo_
zll6|+Iob<2hZ|b%*SMc_v+(eA!T%5hf0xl!BAgC@IsF^GXr&nyMpVki2a74+eB;f+
zsvAt^a%9?@VY^?+f66eOe<Ymv3Bc-va4|nH8RTqe_Er4A#P>-AUebvd7k~$bE<w7Q
z`TNb@fIF0-%fX>CW(lrZl09)aJonf*%7Ftpz%&ixvY2tcGv=6DNQtf08~@FAdhNnv
z(48{-3N7NI`$9&>IbRK3qo6WKiYO~Z;2jaE2%{g|-|htkB|BQi^ZGnAP%x2mo$Kwt
z<IuMy8j6MqZU>a2WLOvx4ZIvWWP6`|mf>MjfFM6rrJ~>kjNTS!q;t%gLM$x5AHX{I
z73^ECz3#tRkVNJdBsC6NN|r9?{)KG*F+-EcDUY3zl2Aiy+aJ@cZC|gIp@JPR+tfz;
z*P2VIjQB3My4sqfn9UYi95s~Cn*#C{DnIQvP{6o$`CbwD;TA;cjAVkJ(-W^2x5*bG
zTno5Wf^TtR&lB{vIB&6fjwggjvY#Y^&jaYTJ!C@%0tpu=b=5c^?(c8VAPs-ClojK0
zz{=4($2LBlOujGdRZj>;&Jie8{gou*BV2@M<mz|yR2T5U7Q=ikj$GeJMnLkAakIJ3
zzLcmg{js-{0Z4vJ;EWT|GD@=v29~7lmoeR}l8YVw<GgFCCYF>9=duq=NzA$KhP&Z}
zYT&5?ZZJMgK}q|I@DI6w9m4X>4--_(dt9!dww{7OV8}};MbsQA(a{7e85gvN$?z>6
z^~Q(Kq0|dqU*I62MN*Ixi9qwwaN&mqM{ky$nF3~@kc5Okq$&LR6n{)-bm~)(+G*vo
z1ft<F(=}B*wq4_$h=VPIAt5cPt*WW5cjZeQ&@n}Xf`h@C=V0-e!j{UqW3-{aP{O|?
zl8pRhrF#>_5U;@o6tk@``c?@fLI@?RT#0hTAx#H)Q(>gk{iDiq!m(C1KrFn$l$s%%
zIef{bfzv^pRQ+0<crkpKCVe?@HA>g;Y-X2|eG)(@ICQZpd@X_V3<WV$?$LkB^#VX_
z<Uz6$K*gzRW>vI)d@q%ej3zr&`pm0cx*z4sv}&`yS#3n(G=vCQTz^=Ul0|Ccv*k(?
z^wt@lMt@uQW|SCCu}eny<vk&r0%>(kgY%l(3k;Ofp@*`Bm7*dG3Q{-Acpbt2?eY$E
zw{tb{2#vVCsmKDm+}J4&kjSN|8M{&LSy=zc&s|&(IJYcqMag!H2%!b>d1&M1=C&mc
z4M0m6Gms##?oD!3XSVK8rNLe$J8F_}V&hgjsySLoh>oK4mwb+|iAvDs!)*{Fc|+{9
zG$D0VCuU9*Q0`0q%$;C_1WfR18`k85Uzd6nvg5{>J+FI^%f!KwO2ctZ^!5t%Y;%sF
z_QQd=qEg8~*o)-w2W1Wp((;$f@jh@|v>+qS!Hu|qPP(rsh#e@d+)9U{9#i@U4s9D+
z&-jAWz4_#E>S!e2^?du}bRGe0F=O;w*IIwL)HIa2J|4XrZ-+%~K9-AOlqSn~r3*M&
zXWSc(<(zdxx99jOWVixk<*!bf)Xj%Ib$)G&J2}%UJoYu}bGc+T+(qsEZlKetd`hR5
zXuKmjUC?l$y(IL6K2K(#L06oTY}X9VV{S1%f{9od3hj=GRlB>Ec%e6+8~v${1Eprl
z!^FdVJq*gDg7GRh^C?NRYP{<*>uc6&QFAc8)S9~I$+r%)WqObA^Z)~MxmLA^UDp<r
z#xEi=0)FsWA6&8>2~=wGwYwdYgOs&N2~$ECmEh>;8)@5}v+W!1zqcgkMl~VngnvkP
zB;7rfO34FNI?9vjbHjvqk9zM0Qp5;++1yj|mXiSDWbA9|$}5kVBJbOP1LqDWr0UZH
zH$wnApyH#!jW`lmFY-y~Zx_o+9!v?rX0un@D*?oR=i3St;RSMds6Y0~2l0NABTaHl
z$m0z-gcw2b-(<fv`<`oSu)y_l>|J;BR}1r`rrA&tZ~yY<xpp;Y(QIS;g7H=~P_OO9
zL{16d%AgWp9fO6-$#f0@nt#aIOC0OIbS-<km*I2`oJU4-Bt9Pr4-an{aPgUI#-9Rr
zdYp@AMMFRvWA>eo2doipS^onoC7}O@Fy8rJ%<=zfFb<e!@bU2xy{~eC?S3-@A_a5P
zyDMG+(?|W*n$uZap^V?zI=-~rCT<0W3NKjw!38kgV^ANUvB~m8*PT!eWBd(DqVajO
z)LvC}p4@yTNXGXOPhNo^Z!<fY^SXS?Os%Y{%F13VfBZmL2tvTe!^f8{K!O^`o=^^q
zuPDu@-nAuX#Okh#pzOihOa@hyZ?Y0~xULXYgPF*C@4LDxE0r+(K};d7rAdLVWcM=T
zQ<hreq@NwCJBg|q_!3yg&VJzPx`_L3*F~K1J>1{O4{*W#y0t1YD<KXaGODVjCC|me
z86SJ(<m4|)LEoeR9+TO^<AusEp>Jebe0Ok#Q${jV81q3Y@n_zm;YbN7ozJiiZHG3S
zuaI{~qnn;zK2<7zPH-*FfFAAe?+O)jd=Pjifjnjlup+~e4x(VGr-{f6l=fB3fjjD|
z#7b0JnAzMbSsP5ISYi3;iK-l#pqrZ*97QO9KbD+MZyPFBJYRADfVK^=5)m?Vpf*_3
z%VLif6zq*VZ(*Ku(Jw@AYVCQF)P!F8m0HKMv)hGQ(4f*1^Fo23_EuL78iQFfRA&D{
z@C8Y8=DBBNT%+C^-F^?x4;IUfl-nAxG19MtQCtkI-8J&x^6d~bfJP4Plb+la*WYAe
zX5_KDcv?GyVeEvwfHs06B8CHEAe3N)aQ08J<ae`_c0f&_t(%+MRW+&h*HKdcHZ+=d
zpc5e$78N=r1B1L^A;mSpw=1+iSN*vW15*DOo8zWS#3Pl)!vV;hu+8Mgi^A}-o6l+d
z05|<D8E$wp9Oq1RZdQtd-XS5VXm}R@F4?9cPOOq(f#vT>ZQBdAwL>HIh#l40#ajN`
zg4Fg3LT(BhJ!TRryF!<{05lZ`Df^FQOP8P0a0&{kGUnFI696U)zga!biQBPUjtx??
z<?p*H@8ZPN6#VxA3;TC1l=nT+Ly}cg!LYYo*4H<vh#LbxTdU>sc1{)4)nknFN~wK{
z(@1BNNK{tzqrY*|puG`2;#MQe?Z`LZO^z1L&(Cx4kcJ&3SL0Fur0QE^)okC}-9;g3
zQ?H8Xsy8_N6)I2w5Rr#5uz*kx0_RA!10LZ*FFkEgQtx3vNL6uQ6%{g$!lBEMmy1w9
zxiRJ|l+*sMYYj$X<cp<x_fzQf6B0hppQgX%8rqlBQZ-w)ejRlQ38kfZs~`nj#glZ-
z9z8h*ZEiZcKi@?AW`bxT1%%KGZC2dRl|oUZ>}HR{9P}WiO-g1(1)FOlZvV*y1sI?}
z{`@5uWU#U#LLhdM$=hrmVg{9*Kk7M^;6!r3`0fZ8Am0PYpUp8KAtvs{7ZeZ>V7uvJ
z{q}t2n??D?IesmxQUL`G4GjgAx*e0T4DQKy4|lu-$p>rTO+|DO-v*yMsks$P^=5{k
z4NqbA#;n?>!qsb$>ne*n{ohqU-suFtL<d=%Xt8$A82Xk0)|-z3cXXSQ>XBIZX>lKT
zk7{IO6<|7cBF=BzQL?I?%<9@rcJ~aIe=b*cj{Oj>#$O(si>X0mwXa<|YW0V)FfsY^
zD=I9WE;rE7&<5zghuM4`IV{_-7+#*m{2g;;V=#KP31Ude2{ueMf`g~GAaKNv=z>&9
zvIfYuqYsLgH$tYdQ-f$L`lK<_c)~lOBV}W7u`&}1I_O8}rO4DJbfd`J*|1#75TX)!
zGOcKaa&5@>Qr@9XOOLh*aqV{qN7GOEyhP?UZhK`$z48(vEON`Kb8~V<IGiuXCXB~O
z7P9S>+R9Itj5w#(J{u+vpx*`U!oorbSV>Cz{&Ambf372=n{xCv(lI;08`KR4+}Grn
zNB>^MO+=9bl~0witE;K4Xkmnk0P40PDn@cra&qFez%Hrk0=PU5MGL-kZP?3!D|ii|
z5OFdsl5KdH*cc_ntv&1jzB<`AwHdrSMok+8aUMb&2gO$SRXglzw>k#C$ATD2F_(O=
zmIVwEL9B4M(eHeF?mgI9;P@m4^%h)U740VIa^=Y1VB7RGu(uK<qSoBH)cL)~4lGZ}
z;{&L*Dg>O9^2zpsX^>F#BWR?Qlu(N?uFw%LUIXf4wyEgy^Rj6^X}!apmYIOSOytNL
z=;zw{@mxG*P}&DD;%Tfxu@tn`synJyv(!uqOhXy@G+V3N?LvSjrO;qOI8LRcPE_lI
z&Q9co%i*CzY+I1n<XLZHQC;%~{jF2D2atkdLL*SknLelEZGqG8?bzPm?2Us87-voW
zB*701&?|So?rb1eR*GYgdEZ<a@2{@$Y9uMBg()5drr!7w`J<|-h}JIGU6&Z#x0bEV
zf=tn5<%v@xfctBJE-JC(>;o6ES7`qR*EE$<Sj*Q?QTx`I;w+bVRu|#v7ZFNd@=^TN
zI(ZIN8uRH4{ZS~XeQ=cs7B(a7v<8bcWBNyYuMZ4Qho<LsX<=i!*l+5Rj!A_z@|x7Z
zT0o%B?6~XhnEz;5M-h_o^g%W|x8bQ;M|<NPf5_N>3;|8I1nZZ^P%Dj>Oja!;g`s2k
zgoDu8c|Snsa1NJFjzF6XoL{Oiu68sW_DJ{eC7f0wjUpLcznF*8r7!y$LeK-gQ|t#d
z7SpX-m)+v2BxQf!$cK_<^St^@uw_YEq;XXycX>$(?>j><p&XvmUzmf9JQ8tu?WBXj
zEK3|l>m6iAvr<%%vGFk=veJFq9a3R3t5V?z-Hm%yf&X|o4-BG=JSBNTwb4pjb@XnR
z&Hc}*tjE7N?N9idx)Ws#<w?$PFpBdh4n_($$2$bH?iS7R3b=GjKhT}B5#>Btq%Ka_
z?RtA{Xtk}Ua}00n<*$sVplqS>0Hdv38jM^<c<&jSiK|u8^H%--X$!kkIkYmcsoU^h
zGmw>Q^()!Ad(F+RZR*c1*=XXJyygwv)IgE^2iaXymi!1s%8|LCTK^GqTg3!jO6T2h
zx1Xz;jSmCG&WnVfJUQ)VNFfj){~O+j{4bpI|I|3cz={+qo(~o11a>E&`p2j&F#Ncw
zQiFvJe|~m>5B?p$XgvUd97+@`qC=}d(fIk==bkG=_Rz^5Vhw!Mty*t1Ha51k26kMf
z_Kn^02w;j!OHb~Orb7j|;<K_g3&k-AWv$;?I)8N`{7=B=$TvQWd+&i0YX8&ZKN<dq
zGy#!?#A>r4v4nD`_I6xe^lXO}3~YbWOf>$o1ET~5_3-fA7>+<gVgrkg65^rwZD9fD
zckU=#9LgxPT6LTs@S+bx@*+u{sBS%dwd$~YlX!ux<*}q~xf6kRF3-F2vs(V??bXHA
z-Ay3NQ_R3Ku}*ka7$52JDMorE1gW2s(+b_o18u{ZtRvlF7aReLRR3@*v772bN8r8?
z);(*xUU`xBYjqS+xjAOl{AQijDEfHWJjMOKl%;y=yoc1=dw-zVZ|*q-)fMxct4I;B
zA5R|1{@JqqN}!D|Ege0hpNf-0?h${;ux`Kd=P6&9AyuNR<JUJ_7=Kaj6E&<cNyv7+
zSuBoGJ%5c9d9oZ+ijLN3JD_Wja~3*+y~}ql(p&8~x1f1^TE5x2b`)E`+z?GC!E(GN
zxZPhDS9|I>-N-Km5aP){kOnMyWIK&6MK)qgA(%T?hb2RzXmD<k8X2oK$L?&ofj=#4
z)2cP@rmA~JDh(%ATr_k3%|a0LeB(_1;r?_kzJFn}@!&Ty@N7{vK)Xb|@%x;%rtVZw
z<vHMdEioqL=Uh{!OqQa($fA=Yn&jWt1yT2$*cSKRFmTe`TEd%z?Ukb9XG(G6>EF?Y
zz8FZ7p!Cf6BAYm7`70h!Kn2uiar@!rFE-~@Am`53{Bqa4`S&e})+yVkX<6yv8IwQ#
zLYUre_?b5KUq=%zx!#{IHw$U7A1}ls;%M+V&#+v)Y4m1JJ)xmR;o%S8zaEL}zRQI#
z!ODR6%8II@yo!p7yu1Ozy8W^jR^r1o_Y;<e__Ewmv6P<*)S8wn0c~yU;j(u<IAunw
zLygc>O?gpK?6FVUv6yIBS~QgGs1TMA;gSUM3QUc#@KKoi-Og8x#n7-A&G-$#BU3RA
z>$<9YO(-{NJc5h8z|}oHD@4RCis$ObeFJHbcr0|5O;&vZ(ZC;v8I%iiOS3y$S9;AP
zmIof$G0<Gttw1^2H}@Iu57~S*k1(X!1Aj#~;Tdu*hm`Qx^rVQFOwjav&uXsU&Io~A
z#u#8M3yaZpw=lz0ToBHG<TLLbaRYX(7AT2cb|-f#C2E$#&7OjT;XeQf>6{Dt?`7(2
zZ=khk+4L^wQ>1T?*{eK`{g3I*%)){@mdf3t3Q8IVRv=V~iGTT*Hzlwbz{=^#bo7gk
z%@p2%FXQ=*nHZS3@Jynrbr`llf9Z>d1Ajmw(1&wmJ|Ax;GF0Cv7kG23>5XMC+cL#=
z-zb#hPuMaHTIg@|X2g|0U1}1RnXt}@?*Tob>aXxP^y>C-<u5r_#HGFNBKiLOjh@at
ztM$|4`85$-MYpqR7B{>as4VT)c-Y`P4*=b(FN9$4%oY#YfQ5;Ny?5!RFLvsoejHJU
zS{78$L+JH0TdEZ4FTZYG;H{|hdi~kjIXJj0TC9HY<4Hl&n*d#UAg2^q9^bd{VNiZD
z2;OwDjfaD}y|C<#yC6lPE~~2Q8wG3Jlpsa0!{(xHr>-eYtE^nwot2fviBe|NM3~BM
z<&jbvx*D4vD8q3um|%(uldg%^N~5ZH02(;=(~LBf-~VL{#)3H<(G)%W<EnG5nqJ@5
zV{8{QdMbM>5drn*iU^uY!f0%@G>Jqivg`9;BV=c#R;H#$gK;!TbM!F0I`P);FQN&A
zWfZ@^ARDCk-C2y$w1u^pHb#n!imU5kb*ZuDDAL)JD%^2na$p8QMQL?<dt>d^+$+@B
z2)uz-?F5v{f=|00)Ds+kK9n9iv7N)Rr~%nO(pDcgy3A)ut<Mue!S0*Vwhsy?k+{SC
zU2wAEr1Wo?c7NnAFVj+0Y)fx6tWIt(xktOaKjdLgqs=n%7}TO3N!H>upRzUW$_{6r
zr=tCtv$qg%(TVnwCk@)Qq$De!xch;#b1<d#T!NxNcgCHbPeP;d{s+9=u5Nok;wzQZ
zDqBje-cnN)Jh-&Nw^|3qQ!!gKR9Y&V&Fi*w8YueG6Xz8hMH_{cfM93GGhGe>zXLYQ
zg5rK~)5Xmx@Gwr1@;N^)*VByKb2%73%Bf0G(Wh9oJfP&a|A!jFeoS7zzEH%Kd_r=&
zjx*fQC3qp)O6$Cti1ydq^@Bx_p!Hf@j6;q0@17$&0WOStPt0p%b+Cg}mtFMF-j5a9
zV$|uRzq`p8YZILI7d>Nln8aAc!s4bpFP{qEc-ffmJgy5mF!$MRx#bKO4`-|1ad^kx
zokRq)j68NPV*_Ij?WY3-c3Dwe5Pa6(`FXk71@Tb0C!EWA4?&B-?b!6Q0+`kuu|YY{
z4+0LorfyGXi-8{9vQxF1l=AXn`CJIxd8wA-xizfDT0hEJL~h)}OS~En`-LVhGck)K
zztg1$@qvfj%)#L7MvYqM!8(c6e&Q<FZy`c}qI5efJx*(L0Nt27?ikW^_H`>yV|`)H
zZKN0TBVm8h3%;tXQ2zcfrJyA651)Q4t6&b}M}!E-)5LoN3sA_MsN^d&#rXEmmc$H%
zb0q|6BF43Oj>AZmKI&k_G0IkpOeK=n%48b#CYMKG3{M#i4M)r>tkjm87Q0ZE@?k7w
z)bw2#-<&#)(X#n)P&%8PZww{@Q`!LLBP2viqgRd58Ix8hLjJS$b>Vw6v*f)-<wE#1
znzyLg7$qeIHF%++AjmooSPmnP@ncnrrhEL*Y6<AC3aVkD#R9XcEMFtdh4AT7-qBQl
zklKh+-ilw!5|<USPP|~Ow7b%suRVJ=wYxu80xULbcGks3&w(gs@-&k?M2@Do8ZXT=
zT|aRernNmb2Yj>?Zf8s3?Q&eFJS?lBI*d{xvr@Pu5EK%W`)u_RlF(7@4uv>Y9r`z?
z(C3DKQPo?r{GzG8jNu*I^O`6lqprhVu$!KopA@kK{)4_xGM0RUV&5vc56+!EXXl$T
zJ-AiUHU!YUUK(*-ihM)^iK(Ykv=9g9apn5PTJO619@z-4eYaF-KscnrBl{X^hm0mK
zlB!FG%>69H!A@EkYPQCauvznFCIkIsv;b3bdezOv@nJP)+kgZ6TBTd?K7iyyu+9UU
zDewHHX@quj>9AoP!s!A!;c9siyA%DYy=7q*J!UtXB!fChd$OCWLoxcB7ObJ*aC#%`
zp8fcKekp_XR@Wf=2Pz5*%Ja*v#Y80`=iest@wA5D-}|1xYoV77>*_|~qoO|JVFT$^
zM=Kqnn{|C9&mQ-P&&CodmG`~HovqjiS!|x`{cxR0@Ya$aX^zZx(?ahugr*Zl3^3pH
zU<1HyMOh46F~5m}JC-ef;+rtxrt^xJ(Sd1cHV)P)HYe!A^A#joYZ(7y!FQ+OO}G{1
z_0M#h-6xz5`=jkFoYacv!%G5x+`0M}*X1W|SIQu8hCNbn_sFcDj-YEChXJfD0q8ob
zfzM$W;f8FO?$v#hGB-WC0~!^EspmVf)Cl6XD1=p~oj}!cJ^oEPLn3cKLW6gwI$}nN
zo?$Mz?{H{RQ1*W^dQvmOSHeb$dIm3+(-AZyJM~1~d(d(dv3@P~_n-UYm-E6jTli~Z
zi+s*Ktf0TJmdypLM{x#tgG)=dw6M~y#9{3)oJUGDk<4rXrl&U+PsZF`=`g(q$*6__
z_Qw+`^VU-redXOe*qv8eg%V1PMh)d>$8_MgdEZIt<Py~RmLC4q1p)hz`|ufs$_K(=
z^0-HKewi=7prz#=TcmK##|Nl`^BdsJmkI)bAq$ENtKZWvj*ma(Ev=9@M3Ra)Q7>!~
zY07R{K79_(*bmx2$f0fMOy!!d<^PbQTEh4-M<qA!wk6<vI`14D4wEa)yEr$=KmxeO
zXFA_ay_-E^h<0PaP03*3Rc0^FuC?q-6usc5um7EX9PRDMA~Sm_BKR7lhbQ`K(`l}8
zhdBngVm-$)hi}QF*ea%Z|4#H8oo<ch%T)q-o6pv6d>;6yK)~O{`1`Q}b$~!p7+Bp9
z7lNiVWxI`rw5aVu7&V|No5~$4TU&)BR?IQgfwTD7wgNd+sSmV_Vn#R-h8UGSvSsx9
zg(&)a_p6ZAte10Bgx_lVilb+oy!mn2+{r&rM+#a<`gqnN(eA=T9l!-4WKI};ZyY9H
zha;df6<l}<)4D-XVFGJT<G+e9{#7BoUi-FjrdWP}vdNE);D`43Bxd$Q4U@CmB3um%
ziwZ>!SH}*zhtcbDN{%k`wb>tsf2c2<qf7w}ne~y8Q9?(P5%P~LrBxg#7!*mc3yj*P
zHA84Oa=D;lc{2)NwA2<{?M+H<izd5?)JkFtvuL}SVhY(XHxIb^?Scl_`<-O2H~R{&
z>zCmJ_EQqp%6+}~DkThCVT$eEU!QWjyDD5D4{%b}`9hII$h%tcuiM=x;5WE36>8sj
zL^fQ$QHEnNL4c4hPz=px%vCQgEesiz=r}0M6b99cT$#UgY6q&&PMreHRz$+EE<js$
zD%L$*;fJK)i>W$XNu~;2Xav<kvQo%?IK>SJ6|o|Tsu&??Z3Maw!1nQgqs`EDH#?H-
z$(u(pJvMf>RG##IS6J+d;k=B9X0~NY6yFC8EiElM%^}PHeP~I`PjRJNu=iWNk_0CE
zvhz8ytdhKfk_Z{eke2UVF#@%9adR+Qi-dVV)p-pC6&)=Fazq}w%r*}4va8bNhgUuS
zw}Q=#Ama<afU|07fc)<`TQ-lh&wpDBzGAnOSP8N@?Ubc+R2sLo?^GI}qOBip9v^S8
zn2m>1--MC7e;$!i`q_WeNB9p~M<I=fvR*-Zh;J?FfiqLyO~xv3y0*=C*MhY1PTYN2
zw2AU=*5)wi5=gg(8GygB>W>%e_qXQ#<wzw>%sS=U+!iad`NF9aU&{L;->E(OmIL;i
zeF;;1Bj1Wrbho&OYIT1cxR6vqo%vE37^59}84W9-JpreL|H*Nn-l;76{d^mfF!Z~q
z0-ScPrB`4e(06!}b*Yv=MnDQv@&NQ_Nf;L;G+N#DoJ)W-5}#vtggpnXTXgYPN|849
z=4>RLOU_!g^z4yNuXX&loQs3=?BU=9=4*oZEwTyJnwjI5D`_U9?qeQb?AUQ5kd>SE
z*gBnei@E8WzxiIqzcMzaW&~A^6pU6~Og49dDKpIJqaf!&IJ<&9Ll7;V-b6Q9V&E{V
zCJIasVSj{%H1=qG3-)c(_CF=>q~-yye1O?7hfB1dtY(`E?%1&!9mxTZ0$FYR#Y$X-
zcY+z}pl>hO=j`5wE_)=|?w>_;K$o|%DvZwf8=YL7sL)IV#7TZ+Z;!q^<HCV`l6x`H
z%~S|pXBdA#Tr;2q`g8eUNy8M?-&7hC4<dfN={*wRo#%r-6O!W;*ZKxs?H2%w<Cbv3
zi((6G1d9Z!xNTe~ixf#Y*Ex%%e+n6q%lIzT)w6Jao-5Z*zgk8`sa$MTIxlug@SxP9
z@0yez*gW|96)4=FMCx<qhKzx%@9m-EfBs>z@Nj#dU{RF1Hnz3;Ah|E3Th+$Y+BZv{
zVh*(46WjmI#^_(gG2-==%2C1GS!KoUEZXepa#R<gyiznvf;Hr~HFUZ1Uq!Gp;}eK7
zSXL=sp+?YL*Kn$<Mi31<tU86{BuC3Z3R-w1XTq2kGEMFOo0>c^MkLWtke?j!d#lH<
zN~-=L=;7+6g1vBm$Xw5x!@V;30v@E=ri#?G!?ZW>-XMpW5}q$BstI;G<t0fxb)|u$
zYgQjF*0`s`{V_*fbSc<~GA)%`)eLn6OBtodhaFt$$(cWl?lkzLtMX4A(<$Dzyl+ag
z7(EYOFlznUa}o#XMbozcmHMyAM3-+TR_9A)G)4aR+F+p^8dbzBseq7BP+*{;W+y$F
zhsN)7G^#a<JOD}N8zYnTXbfGS@}$ZYtHb;%3;Ej;W7CX`Ve^FngNU$Vu{tSihg+u0
z(`9CEF2UnIMe6L*8r(D^J|m%PlzLZgd1Yf^W8v($rzmB#5ngx}LA=NhDgXt2!bY1}
z%X84&1q#WdB~`p~ft={jk|*gsVe5-D&B<D`wf%3HNFzhTP!^R%*i?R{raF82Stbk1
zT;akpl}57y-BrqkwuRp&RaXInLuGJ=p7wtw>k00E*C*qboikgf2@gm7U%dTebfjU!
zwhIOwyJOqxj&0kvZQHhO8y(xWZFFp7s-NebnQvxmt^H&FOjRXWb>qT`<1V{-#jefn
zLgSpZJ@pW!Z`~(HR#h}sC>BX!X}(OQ54&^fuc7b1ilVJnI)u<bp_&?Ppj8}()au;5
zsmf!8t&UnbJK(NLirz3|q(CWICTRJZII(to#<E)76i64bUBJWkRXq1md_M`b>ZWsx
zH^%3Y=vL;Dku((yDN61_I2fHg3T4|mj<T=A<?90<tIy_b&g|A0YN`xazKlxl3-!fA
zm0XA=x!!JC7+><W!jJduDF$sGbhQn7-L}(fKVDvc!Bor-nw+g;A?6Y^xsUO9dt1Jg
z@=t*hlwN601WN~B>907x5mD!U(()kEdnjYMd}Eu9o$U9>Wi1Khk&NbPZL#K57L=4d
z$<e?`MLIZrdN<)b9m6(3-C}R{x#l6uwlOhzsy+$8fE@-5aJaa*|Kl+V0|oJ7qEt5P
zuy;_oxra!7J~qjd<HMG5xV~E7ak8ERZn8#Br;U60gYeEC$p230OuLFr-%!4;RqH;A
z1vB`o8BQH66;N~CDbBXalm0yl%t-%kcS4UW3KiP@6%bRrp$cIFEcjC;>(2m#B^I37
za=?t{?<cdgO#dB?uIAe{s=FTX^1CUWnkm<p<8B8qQwJf-gL+*PBuj*I2T4Vo@QLXL
zs*#;U!n#i*Bnjx0Lla$#A{HMVK~+}Rz$t=TknvoK!Pf)b)sxtajnK4MuxJKzfid1T
zIMgvLH9pgZVG4hY>G4L(!g)0U%r!V|Hu)+IoK|ALQDXq1B>l&D;6>-X*lM|G8p8J`
zcl(g%i=Az4eq(cXyC(%<?7NHgp?F%XYS8fKK;||2-cUWsq0!)YDF_4R#+Vl>ADLrH
z?A`OzJ@(m^4|gg|W$zZ!MQ4Rb6P%>aMc6apmVVgh)p^_Ow0pxwVYcW+G>(~I4uB-l
zgMl3wB}In1wdQaLJXy6CzarN{ORm$+)>Q3LrZ(2E>DXd;E<ko9bCazVRL%Ulw6<l5
zTx*Dyp5?5cTicSFo7)n(z(lCtYI(1pCZ5oR+2gY^!Prre`Ns1ilOjg&CABLu2-iw!
zX(M+*9%LrQWcP0dfwBt*%5t@({<Y@y$2e#%f?K%qou-SZaNH0QN3+M!#Oouc>pe9J
z%Z<iiiMU~J&^~Y%K9C9mtu^z{S2-d}5a|Nila_-p1BF!urZhCg-A|<oDG8L2QDa1v
zadxllKjbVfz6uIqP0SFM(RXK8)M|lI%tEV56-CmSIX4JO>~2N*^B!MwNrtS$>znbT
z;IH^nor!Mx7kSTiL7K-=X<Sr|AlS5Ee!l}fFWADh$A&pMTvEX}*E@LK|7b5%+E-qo
zO{9ty*B#ayQ=?07`Y9(KRmEx|KO-`t)89mH(IY?t_a<N7a~D1j4_~pnxq;z!hDS&M
z^YzbKF`9maMYS3)NqggyWck9idiBeCW%dV3bA@}WBEkjwQfA>BMt@<K!J<WjaA$vG
zp;V&baXeVEI?c<)-XybbUt_b+`tEd>2MRQE_Zlq8Xf}QhUruEb?>+fjS6al2Ai&)?
zIRlK{g0iX_dG~?#XN9Zc=*u_u&_^o+T$lA$@x-w5y%?1#R_<Ygr7M}$MjO7;jimWu
zk|n4E&`FP&qPg<I_GTzZC{@zAhEpd$;pF57btkV2SPpIA(X0%t5*`W0*;B!Sgse>c
z=J@Hn{;WUm&-D1-3jFa<>|BcaeVA%I)T#O}R~TK%=zlJ0#7*%*-{&I9)}0Y=e&6Px
zpJCgda>2d3ObDroKJ0Ub69<BBX=lZlh_6`*H=v9T62(JCP|@E7*IfLOmJ^_hgUs3*
z;Zf_s!kf8)6~UhSWs7?SpUm`N;{F2RhTxb6X)0Kcd4L;Sl%%Xw0sNRaUSlCa^2)Mm
zxqSo@lPvh*zqlF0)@mn^7oA%hx`95&R~Buj(B#yVoSeM0w4@$Y0cnCE2RqJEBdu4D
z>g==_-f1hqR8W$ie<MzuX2By9-u9&Pwqt237^~bNWPY#)(r#jdrl^0l7;~UviYuAL
zVSPU~$=&EJ>K3KLI998f3uP!G*c8z5amVl$@q+sfkAt@v)Q>7bqEM0FeKv{-QJck$
zQtt~IO;S@u0i)TrH(FjiX9>^7(JqB^AZpMc#<$o|IMV*e*{<5{{`Tw5ea4xS#TH|`
z4I+u5{)f-3gAG|MEYx3fDa<-@+)WML(<bWPjqg#SCih76+mHP`Z#yzlmJN$hAc#;j
z2^^jajH{e+2u(A1E^lc?C7OiF_#YeY`p9yWhzX|z^zIMihWI5?842-h*YZ%|G=aGG
z&K#{au`%KtZmap2>C_3mcLw!BBE^!nBH3MWzuiZo)57y_Iz|gM%KTHwSA^lRk4BE{
z^8XBsqaGDA7P?-oCfYeYvaK#Ya$bLn>n=`!Mo=I^3*BG<v5+R~x7hhYc#T9{`y%<`
z*unJ6mc_d%&}C!1m;{4gxf<*U2!ZZ~_CtZuYsO3AvhqwW4ql8-36y0^H4`QAVFmY_
zq>9!^swltm<uiq>ix<r5bvJ-yPW6MV@vG4^Yr%$#49mb?mldNsH_G|*k8uAg%dld>
zMxM5!%oa#!sq%{smm11Y7_3}DpisFSq5+f8?>$2fH9Sc>W7jlC(HhZsJwaVdQ`At>
zBB7<E-5>Y_YhHoy(lHkQy_<vv^E;Co1$u(r%W|n<fpqur6&VE@%A_A8uTBlR=!kTP
z3kmVYO(4APXQUns6;+!Anss9gp8wO)M!H?2#Nf}gYOCLF@5fW+wZWd*9Keo|si}0M
z5Ko=a*5{_>s|55VT}+F``}G$3aK;`w$V+4}^UwpD7C-|zAMdxnzF)l6M@)b`VnKM&
zr&HPmNv<!~oFfA@U~_EpBj7+_ny7t=IW~{_WYwYsAefp1hyrmg8uumsMlWf~(lPkD
z-<hi$s}FIphG>)6S&`Dxo%B%#XZPQEU0CNkEP*F$pj~P@=Nu~j^6byQ=oaJ<u9hjP
zPj16!=&8-NLxAxl{~5-M)@I{Fl!bU`&%)$`QJFGnkaD>l??}k3-#^HsQlc}VDkY(V
z%i#G)7ui>sQFdq>A%@GlrmDL!`KP!X`Xs;Ox)qrodYfnLVrwZwNO85@CO_C3KSHg4
z5W6i6k)hD`IfZ{B1zxj@rrfk=`Wt8cL!^oLd;JP}V()X~l(ZH;r|s!@cCKc<e+6$q
z^itOIa(_{ftZM6%Ru|N#QNC*Zdbpx#Y!!pY)^K=?x+C<3vljQF>2@)b*poG`m`E5m
z5sxLMQpF1QbX9Tk2>554{5_ggI*^B@pHKh`^6YSJIy!IPJE`!!e2qtMoJzzSng&yR
zQvMZF(MZM7??CN076u0Sl37j7%y3eo&ltMG>Krg@Hu~4N74k*d`i7rxktCP{ll^fM
zsm%+-sVz4Sr8pUlcR-~BL1Q|BoOcM*n$CWPjPB!kDStjD&?DhCSQV*f+VB71Y;vTx
zT8_9J@Z<wGAMrm;cvP(}YNk#i@twp~EiDRQDk<54DRj#X%hmr<K<&Lo2v)H>xi~I5
z1PzB;aTu-n>=>@n$;wLdx>|!c2c8a`jFO;wspe$qepH%YUd&6}0@7|0vCc3PAC;h$
za{d8=q$$trGSCnh8Z&skZM?pr8453@iG=_OFS%AX<T$MHIlg*R9#5kPLk#EKsyXyr
z3W!1}$Yyge8;v63#flmcelgkk2l2fQ!hNiSZY=GlhxKIQgY)HCm;oevBc0`ULqE@O
zqd)t98LH!Fxan%mO8L*T$vN~(urrc7_(j=&)qW&lcHIi=^YgDK(=G&hkbE#o{jC!3
zS%|Hnp`t@oVog9ro_*FRRpo3yqlg`&mfg6R>$JPzC9BugebZ^^xMY=NItY5FJqIhI
zi#2W6p|$w_#XZrhq)PMkmyzIxI>unh2f{5W>U-W;A)ZgbWWH|Jo6~hLtVk&#jXX&n
zRXyp>0e;hTR-J}27eZSW(ga2bnks^v82u#uLAfhe$~BF>S4h3L8iijp2Hwpefgy4j
zU6RxbI9m9`{#6Q0nB!S^wMvk1+uBfZrzYc2Hy|65v~hJ+p+K4^c2c2V=1?*S6$d!`
zbIyd40vPE5cZh^aTiu^6x38K4REb5>AKE#ax;LiAOp4`!wjL%Gk%8qW9X{_F5p@N{
zo<0;Qkw2e=31eMmNs&Rk8dab{NOIn9Oe0K!2{$jwNO3YA_f>3ty+${8$d-bD@xc)(
z6(u7T6$eZyVX{D?!}~}HiSDKyBZhQN*DD-O7n;=f$ZHP457ylRNdFN&Kw7YspDd9Q
z1=`0DchW!CO}rC&pZ<8Hzq~lpRI2$euf^&R<4NI+Dc++E$1iqMzZxeQUc-$b>csV6
zBNI`UIsET4o4kUp_=pF%A+CgnJ&%>vW5%SG9s5=0WgI(UBX?r$3ogx}BF%9fQ5a#@
zNm!H4ac<m$g=ROWki8f>cK?;gle1!~_9i*cMqcU1JEMxFsCQt-lEEPOG3t>gOWu)h
zZMN^EQGUQ09DtUA4mO?1advbhMgzpAuyEMy@(f2}V8H`rN(GC9`ojY)$!Yv1$oH>H
z;PFcN2!M>vINn7fB=3fsA*Q1r(Ys|`m$2_I1dWip>QwR3{$kOLd%Mc@o+OwR^?7?H
zqB_Cj%23c##4ni{txybzHH~gmW}I6}kJGUs@m36Yeox4;?L>DDYitYIOULw3UMTga
z%BPX+7Ku4@Qra($B7a!vWz|9hl!VAY-DLmVI--xk;KZ2|M>ZT=TiZ@pKowA2K|!Iz
z<x-6XZBeGpzyLw2Pqr+z)rBawkx&kM&#Sl(OLb6^mWqZ{-i#_B6|Ff(Ta&uWg6Vb~
zjhgiA6#7<%v_dxc<t=7zi>LwaPA93;&4J3>=2>{3-L#~IdJoc)DM6(4_j|k;?ek9I
zFdNr`>nL~Y+)<I7X_t7(b#yZB4)f)yiJ@V&4Wrb3ZkUw)!TU29`t?ve^!V4NVv}#s
z2ox!@49cR6o7Iot`}tzYe@W492?qxTt~(VaCBS90RH0s-Eyjio*#vb5Z!C*cL6+mU
zUS3i_k}^7~;A0*v)?N0KzE?rPIH8z?0dc|%xEa?}x4Td?B~%x+at=~lSW!_yUBZAe
zkyL;oo0f(??w2y<heAzIKobp`q%a6&vN-8jnUaF}?Mx-v;Wu4Y&poqDSrVdE|4~2G
zr%b-w=#hi%X6xS7l?;ji0V1<sKOj#EAB^mg#e@YXK?biR{SqG3=r5PKaJz4@6f{aw
zu)n{5_kS$*sV7?qRA9#^qoOI@38Rt<8y}&P2D{_rC+X_I@`k5OOi;Un*a%}XMSN#l
z5cxnRNxg86prVl7zF*u51I&2I-D@!3*`VAP1PF*3a%jRYm$L(o=A@COG&W<iwvVy4
zovaWXz*-$+<)di;pO+xsANKPFDeT(6lI%yS6c;jCeC?WDSt)jJp34_-#af)<Qn&XD
z+BjLTfc`HGzyXPuE~KuQZ(C!>!AkrRHzSALGh}5|MNd^%!|=0pG}E3<QM6?V3Qj@9
zY$`sK`Dl3I6ar}QzBhngMSsG*dIMRjkpSp-k|l-0RETh3w_`iuNJZD(VFj0pwY@I&
zvmNWoY%!*-%X@n;zJ$)%{S1tI-h%~6OB0r?xD1coFQ3&e1flJfRy^;*l~aF_JtTPx
zq3Kvm8-x|4vL<XELpM$?2>+KJJ#+Kdn|!WbUZ7b&@y#znIfi%(7ACAeb}WZ#O*&UO
zrKuDmS#(9_$6ZF0lWALy8ix}vg)pYp>*eyV2y=N^?p>eLNBAQ&DaFxvVz7><$cSc3
z-IvmMtu52j!`2EtB^8;ufr^!?I-HFkB2adAe}au6T9h8_bQ0ZJs)Tpsd9)unV>Q?)
zXWQhT?d|5?>{@Q@d@Xm50FI&4I#|mQ1ayMeafvw4sKvrKhg*?khrFf!Z%gN)@<air
zYMlBSq_DSA<w}*ABfh{<0fKH3P&65oN|wiBqNZ8jp?X96#`V+n7J2G!P3W}O*gH2N
zGrX)S0b1|=AAEN9iZv6jxW8R(@in*&ShdCNC(oEobxZJb+MRa~jbjGTT$Mm+gq5p|
z6i)^P6Hy}CY#LjJwY_UTiyWjU2}M5zcz_OAg~Eg`E*={Bnj%XRCGVV6Ytm{eh1IuN
zPfrIl=Qa>RQnh`d{Nk(c$C)!tSyT8+|0SV(@Ud#_OtvUDvze4_G$x-^nC@X0i!D7l
znzCK@L<$NM6?>mDM^-Z45HwGYApVG2X|$Z)hqX8h(o!tu`~tR%YJDQ=|67;${eye~
z4R3+T@PsoImlu_>IXg0yMcXq-wuLZT6W|<~v~9yPDcr&h;gvffz{G(xPQLKd#mI;%
zHJJhZh{X(Vc|wv%B&dbYJAY^`CI*_t`fF~;xTu<L?m|Ai>=R~K>)##S;r`4N2h_Y3
z+`GTKSE%c<hBaF%x#nLkn6<p+<6$*dZb*p-nr(_}X?{PJNGr(U_}oKaC8w?-Ff6z-
zcH>E$w#r%-MZO2zi+sbI!>*zj#KVjzX*}-q69`PALgN=@((kn0<eIZT(wPMp8wL<W
z$wFdWd}M+15e^?gscKa5AbA1qM}7zrZECBWKMJ<pUvBctv(6lwAqQ2<ryR3<f1R>V
zUlYfRQKCq_wPpdFQK{m1chsZQS}l9$PZFR2RYgJmT;RpcP4<zPE!;VC^0kCJD#!Do
zi8UAw-urGey{z?$lcvzr_Xk&Rw_`p&-wrxcnWBwHS8n^`-bUOSdl9I}x6Y>XKj%Wj
zL@U5g5Hk4Kv(3@sJ74vjbSh{&5w{oZQ&t!Dk;vH2E;F{Sh1Mtbm(|!%neM|=co8kX
zdL%1z(D9!JnNa-8MDe)X<nG&#O~)+YaoF^XjEahi22C3OI(bZqvR4`sAPOV-(u=X3
zr|$4NAU<I2(eM{3Q0C6mR#kO6pQlt-QrBYu5^w*wYx9WzMB|~p=|AIwi~SL7fd1{k
zUhm}IKqzuB0MP;m$f*&G9#rZ6D+hl_6YL4`jaFExKl&0O+@AZ{;OH-r^RB=oNvX+`
zK)hwJ&4#=R{Ri*n1-xcTjr?uflN0>szYv;hK@~-ym+z4B3^*>8OVhYf6llzBGr;H_
zc0K0@N}vaDPf$3rr%f7@Q88gjnYmPG14DSr|22}sY5`rmf6BHpz-aoH)Z1l6m7xk0
zE?j(P7X&DSEcF)u8V&M^8c^h#>e|x6fKH^aaQKjtimHjv?Rq)ZM;#yPf5K2@86hDc
z2Z?ub%=o2)TAuXPx|jbv3-n4fz`caX{913<u=KDGvf*Nf01s`~fZzCjD#p07MW4^a
zpaw1Xgo27nLBbF@Wk5|u-H<NFe6R_p2keYWN|p!)gSanRG7d99^uo+qma!ILbhaA4
zhuic}V1q{W>-1$zYLzZ?YB-2dQ=&93txnq*%qr;)O%K0ELK3h=(HI8EkAQ<MEml|%
zVOJRhx*zaTyeS(T-akvnCDGJFFtI+hXJ_to)^*_dVj@^2{b$A|z4P;9!eojgMswHG
z>-}#8#F#qSK#QzPSNu<Un@gE4)XcHs3u&?R4(2xY%u4Yw><jLpI`KvmTpSSGb%$35
zxG7iKjL8WPUs%5l5|1(|H>cZ9P-K&r9f>FuXWZ1TvU}>-BzKoLPqf%D$rUNKdX27^
z_{3|Y_>#w((Xj*x8`^82uO0}#7fypEK(7P`AiM&<#*a{<O2V~Qc1Ag7{4CGwEm=5i
zd8Xri&yi1O@NsJIn;U?rt;v?J63b!c(OYdkh?bS!xJ|favmbhWUQ8`*w)qgfT&y<-
z^^5`Jr|Ycr>#1H}Hn)>V>r+>yIObZjs?sP7uYrJ|iB?D{ex*C;DuR1UX9SFQHPyVE
z8O~TS{k=xVWyyOF3M79Hg&W_4`Oc#!`=CWq@xEK=>eX$RB0~-rB4Oa7AcAt|!qdHJ
zf=~too<aC;h+~lj3e5hRMe3AzxWDEoBZS-fe5}>Mbgprf$dd|63j^cQj%aaSnle0%
zZ5VQXtRKg;FB_?@v;hAN;cV}`<KS(a=^$%o)alAFSTvqF=hQTQHpG_pzQ4K|>{swl
zvB~+}7MX2YndT(9c5aq`8k61^rP@|%=(Ua(JMFjR2vUnavm~kPWSReD;+t`HG^SLE
z`3!0z6%K`)pgK)F{6yS+W?!Jz#3si;2#~Bn<UIkmqu-(c+ZYoZGiiNPpGhZC{YOkx
zzEOLQ0iCTxdM@rd{12C32%R45BW$PU)1p%Y!T06oW3Mjw8K+Y|kNWvJbMpwc34Qln
z?S{E~{p#KoF8}+B-MY7q_!YH@Op2PZTh`#fxEo^>GAK661RPrl9Ok<pO$%Y)@8uc*
zCDQ*T6Tq|f`{$)AN%vVRACVFE`J_mD3~7l`xjna+wOSpvZ^he$5Ql={bY=?{k48ZM
zzK+(_QKC$`tKeZ5pj4{q4*&sLk8bf;bbf){$z!gHWu1+<cf1cK`U<nQT~g%?CWj7f
z@;2f%*nAt*RN(Vpf{BzE8N$(CTv=ThpmmzcH}=^I^>F8AcEL0nM_(%Zev0(}Uxz5X
z3bcPhKVsOrf@Z8D$xp>HCE!x6ak&ym>Y=vhT#CoDbv1*+g;%{NW!&`Eyt<_FDw(}h
ziL{EPTpU7mLB)E&b$u|W*ny|r=n|C?$LO`gHsMeM2}GquqN<e;QBqRWkTj@3CK+VJ
zp{b_hr+OkmVL>I4#z^v0tXzspT%<TbB61>+VCAP8`WDUuZN<z&zj}a2xMvm){K<Bg
zr;W|&F~N_0Y5>0r`1SUHg75#w%?6m*rxFYp52%JXI3a9R-Oj<vT0fML(FW0%K7z)<
zisPk<(Raig?CjJYx;N&`aStn?`q0MU)YbL*Np+Rv6_iwT<P`weQ*AONRCGga)w>^?
z5e#N1E5gi{pa9ns`QIr7EGWcigYG4Z_8o$c-wEE4HGf5bCE#bRA>XjM_`~Smj@peN
z1otSju>wB*-$U7ctN5=QPAU38yfo;)4h5s?@GA873<P-hKf`iCO`N-c-}gx*)+Rg0
z|M#~9nk{LEzd2jbZ+pDCFX(^#e?ERC*Ib>hS3w;7t;v+|<t<aHM5QeM$~A6fWMrhK
zrnbC99oRp@+|MMSDeSaS<d|D>OpD1N@=}3$jvH#j@lIyElQE2jRdLarZ3X_f?9A!h
z$X~S<`FgvHk%{StpAaGAx<=++`f;EL$&CF3t5Z``^PgrWk2ZSqqq#}LIYy(O<^IN+
z!XXWss&ME#a_!#zgWb`_cYs#>*lPQAkPZp!_ZX@6`;)beQ2tz170oSpr3azn=(viD
z3|V_fHSI&05^AMNG!u<yutuuKkEzG(x>dF0{3=_UGIN$7AEV{Fz$`k)QiRK-?%!TI
zM#Fpep4uM}HI7f~PRzEud0%L>b)lw!BAh9g`<)N~QQfCEYsM6T;{Ye-5LOV@gRUSW
z0}n7t^G4*mWx0ncxSfgb_c8+*;B|%l*T%&x^+X*FfI)6U1Mx)p`Fx&^34|{FdPw^#
zWPRGvUnEmM+tr#3@_VhvfD;5a^QPJqYs%<-^k8}O;T-jNv?P)M<?b-vbO1Z#zhezx
zA+ZbjEnKz!d2$V_>5ZV~1PaR#Ctm-}M#Au<O8^#ILn39v`A3$M=-blhLbLoY$I@Y9
z3(&`r7LWb#aE<RH)()>%d;J2CGtr}9kg1H;wXLaS5zo=%5pwVFbQ*kuYUqXZjAL&1
zP-EfKR2R91`&vB^Vy6sT2JY0J<%Q(-OSEW;PsocgFy;5nAC9(XQf^Cpp1ra7Qg2*M
z<cW$hyn(%FMdW#23JQh}HYqIjAU0b0<gs~k*4D(`eBsk76Xm(#Zr$4+V1U05$)T*-
z!xX31q#08ZdO-(rT<upBqB)ibqynd!)(@19!1`_x<#H-;=+)=cf!4VVg-zB%IPXiA
zb1-}v8AbBbcAtB}^Xh()JVCe4;38-?`n=*gX8Q<p-B?%2k?8UAOwH%oJLe2}xLOyT
zJ$m#b2{|#OqH3+DCpYFYgY~L9{rPI!%yLQI!*lL1)W`A@wsAiMzacDl^Qy_FL%q#)
zKb+$mt27@J;hI;Nq_<IS=Aq1+I7|t(ATzRrdwAH7yms<-8fN35BDfTiO&lhrJe2OL
zP`u~}(uOYMwlLxm?x)O;AK4Yvx_Q{5YL8<xk07MTDuYBzUmbu%N=`T2+S`@n5*LbD
zn7JvlUAa58+Rqen2cCoV{*vFaMY6|&jNWak<f-wVwZ`<fXN)dc2jdv-Y7jskntB-;
z_B1pXMr&3x@LykFTi$4(ak!_QaL1gnSfun|lz*<5Esb(#wQdN5)PlGnHzpQGeP0?1
z0*ZXNy|{5i_hu>`WJ1`hyaSRkcL`|NmYN0WOMSc%Oai+EMNRuRC#|P9>U!dM@M3Nj
zB5ELbMWb%PXXxPJ;IFQDaLGKeFl1rzmNw0~;&^!LeZM!Y$?KtkNUYa<4B};xfRMGT
z4hx5t;Y}N|m&$hYTF>e8EvD`N0;@V2D%7-xL{I_UAB~NE2AA&d-<;iV)n%Qz$FZJk
zgJamv@9XuH08-Y+H15@B3@(;WuC!b)vFc1p(rG~z>~mVrD(~!VCun^n>BB~RvWh7y
z1<LP}w0)~qy579rYND?M_2jiBt4%OCm*q7}=<D86(H|l7)4ulGjTYXX=}g$X!`*_S
zrM>#ZRo=&aI5=pDt)!lrj$-g~%JM2;VDBCSYc9|s+3c>N*rcsh16f&&s~Cq#v>s)*
z!7oQoJcL0NP}r0}#kiv?i2|ZcHu$5bzfL~UQ4wr2*oR9Y%9)>-SbpRNl??_c183*U
z{z8nQ<we5gTRIjY_yPbXk-pI?*-QDbGi8<THG3JXt?KS{iLEA=9nZ;(E;yT8Fn*aG
zlD@ZiGWT@v<|mXWL=Itt-Z0oRR;%y;TPD0B1zs6t2wiNpF*ZogDf2DN4dS8A%c%}T
z@;|GH`Y%~Hq|qT#R~$svE#w||g<MDF{`P*EPvOoK+quxl3<0xNz(66C(uHjm&4iE6
zz-~R+o{9{e$?0e^NiT@OBV&^yRYtR~u}kP4j#fnnk9OgDIBtVCWHZ~I$dXDZ+M<HU
z+nBv+n%fY;UI1EK<oso~SH|y#`dn|=rGmFy#`dvpfXuU=xOyNA<i!?ejN3%(ah}GX
z&9^qDOux8mK^Fn5M{Q1(l&eK4JFW4T*=`)RR#}uO0)fsu<Va}-bopZblZtP(^IL4y
zRtyGibrkF01%UB0ucUx~6{u=z@)D9SEdK=y$YPx8TyU#1B)hfM(?DN*D8YN9OJm2!
zq#YRBsAK$mX1ePV5wp>FCn3+Kjwq{T^<{0H%sWH1+E#U>{+t!}e7i+ls-I5waoj?B
zpO@qB`FYFNDyTHKG@GSF#KmnsHtn8O&sNi(M|^yRLFL#%9y+E4O*aiMmnU+E-b)DF
zteclxVPK%(=8~1!yK^I3ry~@TTE#d}nCF|c4sz4w;ouz{Lf^x2!VDEhw7P}0*>nfK
z|55iw?95?Q@s*;B7R&|DsnTWuL9X#CPz4Js$nCZHX@9uE(()m>!4h8A8zMypXnLHO
z>OcWo?d02`5-mJUxmnE8TUONy8DV(k%GM#z2A2tCaDimNhOqL&<gClr{L#_3Rv*k?
zgdNf}%g>5%dZ1{!taW(DgdFcvAf>CGHsDK6Oyzv+JDqAa?}7#Q7H{`xoul2zt3FvQ
zs6+v7u;o!On1t)_lScv+d*M`(%PyH}s9$D6KJA?Ne&dTEpx9t4$BMrZx!Ncbka&?h
z(gn3VZFF$z+1DGizncQJXspnzw&!<(U{!MzW2}c9+^wn#8nC*hg(*cTKqN}a2hAKe
z_-XyjER1ouVZTL2t{|vFj_;NxJDm1EH=aR^xw+JR-eKL6hmgYj+OJIS{g|l}`qxO_
zs&_$>D>Rmj2{`C3kZVqO^o|S3pKC9+-z1=|Qh!usddO2zA*g3|y7C@tLH`&hDHE|G
zHi(nuRbyT7O7joS-E8{C_!vB~&Ql+WJ=gSq)Rgb*<8jB|p{2K6c6`2Cy?sh4CPh^s
zII;r+hnBKxzJ~0d+MZ$es9JE3m7X~?gd9-uy}R|&eNA6Ukui+L<33wZ{(fvms!-(7
zli>y;>h^;+3!Tw7T=gKSEM+%io%wEzP@hx0+bY<5p}X2t$zNOS7vq6?R*1Z|W@0t3
zzXmodsd-uZHyV(_X#uh%>%Q2PE(htQe3IV>)qG1yVMg`Vd*ty|;3<pqBNpBgd)3(f
z6J!%pC5EAy=gzpBC_b!|TQjmtPEHP+ZWtRPY}YW7CexudachlD+<CF{JXV~zzfwXm
z+ghVAxqW}ji<RDLk%vB7G;%ppzzE(7uTpjs#&qqT^b7tSvyq9BQLF?-YsTF8hC}VB
z!*IDdu0$jsp>#DMd$?*ect>I_ouZ!<T{Sxx@=KX00FyD|yNljj4gK+ilXkwpU%+cn
z0u2<H{nmTropq59RNdSHtDPOR0(49a>*8iSPNP#jBHAGdF;nU+tGT{9W;_|7Emui1
zJ*LX|wkWBYOUN|)L{q;k>+kN@2R|dFo+`P(n+>sQRdvnydtgm@yH?N_(=3uz!Lf$G
z^ZIy4_u}~YETM2Q1B6@7N^lM97Jh!i({-7s+kNVdZPc`b_II&iA!SmtsR=V4Zo}v%
zDkmqm8jmeR%;dY3clJg0F1gnES!QO4C!+4Piy#Cwa4{ZehRnJ<UZ(X)I^U8NPqX}S
zOrOd6vYHdl7ZldxYoKgtqj5iSe)o1xz9q6}%!3?AXWkVpcb8UX4Er`Xa`y~%&cu{A
z>fZTp-_Qz>;;1Fy@BRy}dy^UI`3zi3#|0Ic4cFJksc60r010A>KV5#?)$19@?#gp_
zvu!En^8%Sg2FKkzbwhh+kPNU@J~mU=Z7*?p7lKJ}iK^0zx8JC)y{;b8EaO&|RqMW7
zFkgC&66@`-Iq<ZI@lcqn3iTma_KG*D>MJRypLDvzOOswRt=p;{X*T}4GEIG~T79ax
z*otQ@XMd;tTN2n0QM8%D-CgG#oG6RT8(PSDeZ}6s7*)MFMeG&Gb%r+=`BIW8+Zkf9
za5@F*)k*B{(E?w~;>7D>ZHlmvRbstU@h6PYciy(=IHL_Xbl4p}r^U?Ubh_mg%DXy%
zHbY$4dN_Jv2gzf#HCiAe<Z*N@F;7yJT5Q|XPoJFNeV+saWtujnXb!<|9erN9AfN@a
zfqPr1fzB#p{<F?#FujR+TI9>}MOJY#tE6Pxb2Etl@Z<5YWW=Q9#!}bY;N7wc{@Ig~
zPU%-xyM+b<(RnJ!$j$U(?Le&U<rvOUM*U^)2xpXqcD)WCD+D0{-1-4PKl0_TTA#1Y
zzW?N@`<UT@W-?hS)~(DyELn?VmBos)5OC`F;A19CWF54L;Lwq+fbusi%YI2;QIZy`
zrY1ss9I~a$A^~?f(f#x@SOP4(|4CV{02m$#w6eT>Jea(ko}8~*FreoL^gXK{LE~Xv
zlOms_tgN?D2gA{1;$D`KWhh$v3quMuS(d9(S7152e@k5PsAR~>R+w>yPrJRjRB^){
z-G+pNgB{GO$K9*C{JYLs$A`~zu*5l%C)Q1qbumET5(*h;B+QbYC<`9uP1cUVdhfS1
zqf58r>aF5$!;LmK^MxkS7boobw&2J}!<6$&K4R1zxeJXLPc=W3G~;0e2YV-uf(o!$
zvVf7OLCtr_V(~ath*@WkO$E208s_<hVUx02hJ_26sOnF|5gkx(Y}flMa{^$i4jBKT
zz5&smiw5RA+0+J5#Zb2Dj?ahH0>u#pE^v++j^+6hy193yd_80nYyTsCT7Urf!uWd2
zEb}v1q|)uTkB?I2a<%YvE+s+^S3@G2tQ3*BkN~CL@6(%FIU3`-G&y-vqVNERE4gP}
z(U=<X49<)0p@(wN=wJh=U;!j(x1W@NNUwORek@|dkJ-I`rA9roSaI)8@Xapo8Ad0S
z5t9lA=x7NtC@=xAAuZnAt}zHvb@i!k59X4p0EmtOkQUH%KEJJDanoNx0oUAMx1W|-
z-@v}!RqJ2(@L5MKV2AWJAaB#mGL+T$_uJ`Uxg%<)wkv-p!(q*w8qRa=_hEC?6B!vl
z%U}#VSIn-x4fx)jwIH6TRc@{z5r{&*p51+&r)KM@smAr*hXf-<Cb$1op7|6|IUuie
z;C3nIyq;cEZ*a&qS0M26tR^vdT=vzx^_C_Fmn8@9R0xSAq5B@|aDIHP(ytzKRcz#2
zFWp*A+vGM~exSDZMYW=WhSLn<!?X_rbeq)!BkK8M*$i%WB045EyNd#6V$QkPoOaJo
zGpF$>960r>Gi7Re<COBsu>F;qtvY@0H_7RD?3Nz|t`n*kzZ@W)8h?8@p9qM&9Wh%j
zA3?67Kr2TowA*a8Z+Y&|Y<q}rc2OpmGhJig@%TK){G~pwUYVWmcJ>-MV?J*PmSAE?
z@5_rAqPjl@y9-tz)qi?xvSh{QaNk$TAWD)e>0cWd`#EguZ4LdE0$IuP`d4R{9v5#Q
z><h3vt^b_j<7Yurs!i!l09#Y5rk|bd&*ca5&{!=DrPM4zu*Vn(OxX=@{M^Mw=QU$x
z@$hEaUNdj*L<td-(D<2(==k+^@Ms83QHRgKcDG8Lmg{QXk{EeDE$Et;or`5@YD(`*
z1WN3)yxr7-klpGghH&#JeF_uOekn5%{Oaba1?0p%th?6u?lb;^2@%0BZ*y2rZ2$gy
zsgr5N_;gAX3MxDhmT#eNo3<W;iC}&M9pMLuY)3{$jCKocx9@SanzUpz*i?njd$d-A
zudPIzoDUcfpm_EAF?v8EuRIu=U8>E6##mn#MeK?Q6Z#05>$+Q(>|-1!>2|o+bq=Ea
zM!#w%wz4!wGUHT_ZEyF^kUPbBfQF~R(a^br)kV#yfMJ8gGcKcVig2BUv%kkgcpTJ!
zDZN*kUf-BC&Te3Q^pUqa*vbtvR?PYy#e;TP-AY+Hu^unIg>y1oG70~**=@Q5$(nk4
z7}yAUAxbA9L*;4rKDk|%azOmva22KI=DYB726~z`d%E^Nfm-<E=kEx$CX(3d-aou?
z2C=_<4mI(})1h*5<4Fzdy?6%JGRkd^WFh*qT_ayx;FFag7n5{er`~2S_N#gyoG2<-
zmtS$s+FgXte_Rh_KS`M(R2~*fU9^*}R9vX1PMHd1O8nKxsPqo#-&c9KZu<4O-wtf;
zk@IEhitr6;&Pl$y)}Gy(MRP5>Us5Qk@rReP%(Zq{n+{<6W6zVbA9<+<^9lb=wj3=4
z&CI9P(l`AZ|FKK*xb(W~-eJS*-bw%YM0yQu8cmy2v(2j8U?~zid{;tHfCj!SyZzZX
z!uaQ)yX<(z1&j;t)Ptu&@(>dJyAZwJhg(KV=3-^+*=pFP0DNB-9H2PBw$6Ow;oq@e
zE4(A*lJ6#sEx0EqBXow$?A^L=o|JlWz6e{X@vaw}&L<{lBZKy*R6W+adaJ!IuULl2
z5wUkN7|m4AD_V|R$jqQa;d{bm(o(naI8Ack#SVBoS*=Fl0wVlsft%zx-df95n&;;S
znYRs03|?kun*7G3uIDJVl54gfAu}msIv#Mj<P+k~7#%UH@(H?18J?CiLC&VNR_REt
z)TI>HfnIvLCzl&7tz3(PgM&eJXSslm)IZhS*2BLa>M>#B2tY_eLqqHK`Q%_{Pghgn
zyfWzq4n*#)O4WNyjQt+Kzv@(m=H(p=G6pB_y%U;}#XLR_!j>WKG;R>^&Ha5q4vUMF
z1LA1%@|4kb`;;A4{`Y6Pl$-J9K8)K~>N^O_W}o!hEA4~;S<Lk^fZORc%X9X7G98;o
zS;Zwm|1X=f!0HDs`HcZv=}3mP2bBh!A>1ETsWj5Wqu3<Z6W+ZdsTAf}cQT!-h<j=8
z#Ai1+FFM(%`*fo3NJVz<eTx^<k=a|Y8`-P;xTMacI`?E_ay6lzQX__|OX{|}{xDv=
zm-ANldlM5Avdxym<6|^bR6qo@Z$R3g&kw?jY@G1R!pA8@nk>ak4HG46426oCQfUi^
z1Zlumff?1A`QBcCPacA<JwgUwA7S;EV}LXxX{!`T{_Ji(`rMD>C*X3FUeMoQ&8-Cq
zV@8aa%mQv=LnPXfxB7;xBGy*r(u&F?s7VqiC~Ei)LKzxr-0ql^vx|AjD!<mCrKser
z*n{5QPUlws5YnQ6CA4p6+~tC7vHer@YS3F>^@ZKb)_qYc0h;OFF#%}YD<aH+4qW6u
z{___#|8^j(o;%TrVgz*9eK|g~1kkQl$1|UJI$%6?oy63sFpHaTC#|5V-32B%OtKG?
ztRS*6_d#-DLBE^%tOS8p?x#mCXQ!^h$Kf*BzqOq4zw0GPE`ZL@E9ZylTz$gi;UWGw
z+4=)%E;BVo8N^;pTGt`b$>|^UlhcW0A?$#4lKc4L-4c6b<NZ~$CEd%V<NOAo|6kI0
zZ*g%*eY(|P_%KI8NABXch;y)5YmLNakQdIkfq@;32L|vyP1xP_6Lk|IhV=w$Y~cvi
zjzZ`5$on|TsTj)6Bprns9-!Y0Ek@xkC`vpiPe^>CN9ppqbee}YpX|%hbNLc_=a|+!
z5jc(;*I!CZ!5r+k>Y%L_&#oE2=O1AIJOSTQVOpT``U+YiwU|eIEni0%;Bp}$p`)Td
z0b&TIorKHnS}q9h=R|!EyA^p7G>E~)H{@lz(;E+AJRgurI!iS{7q!-TGn$DCR5)Ru
zCd27_-j^-N4D1F)5&Phx%_1#JojtyPy;*(zkE-9)#a@=7d#6#aJK+aRER(w}OageY
z6fmH*=C?@YfEX^ItoQqOONdkobPy~HE;9RtKQb7WI29-faO{kNlAjGlH2*<L^4zKf
zNx2+|8Q)<19EuoGnT?ULF<Iz<@7J;R3jC!mu5M%Ds>_|8VGW;;VKoD?En=XQyip^G
z0;W3I{td~UuvaJ0HtvUx1hDbJgI%gIHgjw7j%$+-MV2^rKSxybuM$0bgQ?9684}*d
z$B$$VRZ{bSWPd`09|qk8ciYmronJR|b7r%|s{&tjFf8DyJoX!S%VF)R&D0#$LUo|=
zZ{W&ZC{lNt%;YY`|AHkEdD`a)rq13yn9kQL(BwiiD6pEz4!a!aW*9)mw0y+_G;%sX
z5!-F+b;u>K`Sag}oNX!K>^l?$*6dDlsiOcV0uG>K#eFj!;%(Y)b9Y>8m;iT_OQ%_$
z>^tm}XyOw7#yEmNFm2~_-h=MO?bn))4QiYWDOxu<D6Gz>O?|jN^P(V|eVtumY^+mj
zV(|8E?i}qYl$h6XHSZ$%^nnGU$97Ijb!3cDgXQatZR>xNB7eoENqMMm=60-nCwCp~
zzA|WI`viV6sJfP0n(+QvJ~dq0Fndfen&PDBy0BG*STN|iclW~zEs!3Jgr_BIpv~c^
zp|KIB{-Tua|6i3K`F>CyfE4-!v_^o-9~FP}fSkswJ>J9O^ZG2t!Sez(3+a4$7YZ;-
zAB5@h`FlqV1%j)Y9~d+&!BX-|i*#&kCUM`}T?<)cG+LWJv)}}rg7Xfc#?c!xgO;Bt
zMrfK}FChO5ngezC{~FD~|2SXk=3#S|w42gZzagi}_DX^$ap#f-WzE=pH;UxQ6Rt^%
z)(Q{P(?bX1SISj5tKwmS^rVds+zl+=)E<nesp#tKntAJ(Yin;i@B49Pe&xbAU9V1b
zFEedA?AnCMGrutRYW!9DJhF^imXx?<jUIgp!5a@i5Qg<ceJimM0@xEX&|i{Mf$Oif
z%E)&sBNfU@D@7pX#-_HN!GH>#Y~}tkn$it<jTW!Fu!8&gc))_AhtwJ!8dM40j_buH
zp34<&0sp@^fLEU{ZB`Ew9Dz!8+(<HzxpDeOa&)p*6IphH#b7lp^+=9y^xZEju5OZb
z<!th}Z4cdPUl-ck@4}ZIz*cL{FJCHyDg1w)WH){yZ$eB=Jka0YP@{v1!c&8UHly`_
z!)Y44swDzAO~`u=lMvBjIR`1Wrxuph=GNv94!ZN>h3O*&rlTYZpcBmzu*NMlSajX_
zPVYhC-q;g|sO3rt_0Bs`U1Bz0iIVM4mm8a50)>D?!#<qKqd-Yqa`i=)loOn$=Ba!+
zl}ZYDw8kHmlDUmPBN}EFTdqmY<)SxQJ5Z6)%9s+-w6Myf?b%K(q{mV>*Y`JzfJUdo
zv$hw<Xud5>qKVrC0QN;Do5LlqtZe)Xg9$5|C{znH0jGds|N4lxi~Y0*f;;98l!|df
z{V}XPc|{$}%7KMo%9FM8Hng!^RonOMAN!~lVhbn8@4tnsn--ye&ckzona_#4j;ZnQ
z*b!{+(`?(sf}b&nFv|Zj7Gbuth}?i&6`Cj+gl`hE=!+u2B@7Dz1yGw1ohq7r#zsd^
z7t4|3%UHjp>E*}(!Ic{zNWg5|VzcGo{P~fs3pix~fV+sl)Z!fdbok#Q#j%TTEC{t;
ztm&H$V2%6pF;V<)*h<gKHCG$j6jYmC*A-mvsl;lS7`q4O=R77CrvBJ?xY0gJk9=e-
z;QUYRWeY-Bg;uH$^8Fvb!4f}8_El|ma&{X34jxc%uy($H`TvJ$eH#x>mt|ZzB1*S)
zhoMo<S$H4(I>)J4Z>0m6J>TEYU+i8uNNt|4ilmXFIbIOm9j-{LJ#`*^QWvd}V$0u{
zi8=)(nr*7O?0nQZJe5BfCpG@xu%ex)8+ZV26VM5lDFp@4W`%=`3rgU>%gW>^PPzVb
zwI_miMFK>JbISjG*^i<B_HF@nF~GZJ)NpG5nqz?D3pm(k@Da)|jDU9bzaPs`)6>)K
zQvcQ4?Bsxg-i~4;mCvnj_6FA$^9Q(Iy_|}X{a=2NCH@1=12_wS|BM2ZPZ$`~==1tX
z452?d$kiRzXK*_n5i!n|N~i7M=qLyveS3kUOoKwer)2_4MpnCk2+t$r2jQm{${NS*
zLf7b_7g}Y?#E}CVj;^jQASC|JUv$W`BO@m#27pFm0e||yU`b#p2(PrGgA;HCgv|gF
z1ik#R?JM-N(Zp46hbJEX2~gDkqlu9Juc!6DulbiD|5x6u9jqu;pb&x@#E*myeCYTj
z7f}J-U*Em{@tfhteh1TOW*|dh=k?1K`|jp*Z<}K!?)w_KRTkUbJY7piceu2NrS{ZZ
zL${Ok-=}ail1mKrKB9wWP2C;M$QC)zikv#HjnajRd(3!0*RA2_MV!Z?0(FE>zN%NE
zDYZapMcuT&hupt18)o!6bYrb2KDK7)&eiKLmDf6mZ514!H0Pxuf)T{pXg$63&jA!9
zG9P$R*X=Dwr*cfqwoK6%aQ8*-0`yyH)?7EZrINW!h!;0ekVhL_9pNW-7as!g6~{Zd
zPQZw}AduK>tE_SH+jssu&!<fJ3C!Up+&FuZ^R?<CjrTb_U*+pvNAR;W=627{=e8bn
zpBJ=ZG3}uEW;9If8-CO%6TC77ibsbhl<IM}FL38f1uI?3#M~Up6-($1W_F4nG7J3j
zpYf|3tvoT_MoUasdM_IyzU@_)M2C9gi?A!U>$Y1Kwm0SvGH~Po2M71~-`C<U2rUHv
zla+irueVsZ2dg0Qv#I(VAdFu|FsQox)cgn~eyw<iQI>e)^jAWbm;8S=vFIGAyg2|;
z)JwzY6Bk*yfTT=|1q2{4?N@sT&6A8)f}V14+x&$D`Xl18zUl^U1}dW0%BcmZ3DkRW
z#iIER5V67ESgww@7BC#CH=+>cm*zvk!~5Rs^qQW}Dyu!65`5mRQ1@l|seT;wjQFzs
z1i;`x!1&5^zk1c0+C*gmDfQ>wLLf+A8Y(K3glB5;qO<pio&8CEL(-qdTIE)<i46_0
z2sjI7f6iBGS#7sJdfb;^L**!v00H;4)zvVeolaz2?E|4*rqh4A(*M~2D+fMH-?JxB
z(vXCTIh#jK(O}+lU2MalsVu7P^B6R)WKz(fkMvDRp<)eyI9!|*j4p@gUI~+lMi?x8
zIe+{afl_X~lOJsLo>C~_j+K7unzz1V;B>s8?nC~y7U5J;)sRI@I=<|$du1=M)Y-M|
zGm2-pHjy^J=saNKB6ed-Skh3&rzJo3$xe^`6$6MTm685WotEg!^J}VH!`L|+s^(J_
zPy7zI{?Mp@zWx)ZH*Xj2Kx<zGY*^dKMn+?@ro&}9)NXtA!kecO$@4U7$bvG5Rf9Z4
zedgJ|ld6%u&QL?$=2q5>{HKi2<-ZvqHFuTr<Hvskh)7pt1a5g6kbm@f<U!_cDClXo
z+f2)IQq%`y;9$JKJIHcfskd7mFTQ9~X=d=X`;WfpP6&mxWJ=vN@uctf%q;7YlMKBt
zPzIi}(-zigNi@X$#R1{+GYFC_z&r`AApg61iozE`k;Uz!{g;c%=oNy6$yDeShUDeK
zPWXT_**D!gth#u&n`!6Bp?#=w66Q#5e5j`7?4$>Va(6<)tPPxe57UFKnqZ9b`w=GT
z&vXI8LS$(;yz;ubva$f;G?uxe*C{QYojh9Oo|(II9Lf{Ros4e;0U65F5#!8|GKOhL
z=-_zlOO8`l%-OBtg`~d*PRYRXGl15tRcpP)4v!a1g~3w8nw7CIxS)9S^wjj;Y?_l(
ztU+K&LxY3m;c`L&*B0F#`OM`y3hHq2bC(;@*~Qo*+2qe#*-hMsN+btK&nf9gYaNZa
zTyE?4jpFHy{b8SUSy@s%PMaOb8{beuqAv?ToZCbsI3#r<0zQ~Ov(G?r6h&G3G9b_p
z{PlW^bIQEGf9Mjz8mNJhgw|DUx%E=0b6J+(r2c3{+YJnSn2fTo8c^oDj9^CKvN2e<
z+6oHC1AUufS1l{9E*$9D8M2XHAAjW`MD}2D0Osr2|Jzos7@+wCAJFu_S)fwYi&P@Q
zXoUvv=%NGnD(1+WQFAvzzE3{`L0;>hU0vHS`dl^AUWs%GB+zf;Y>yv~Csu~6e*#ln
zSsvkC9b>gK9ZcEiw%iDgNqS$ICM!~&8mR_?TabUCz_1mQ8Xq0ulncpeXy_=sX_k?}
zFUoX(ge5A<YmK2x3T^K1&o?wM6lH{c`+;})ew-UFQT=5?(~b1jLd|Wi3*dELFkubU
zyyo8T+T@m{mycr87F(F~98*a9-Es0~H1$>#eR}<mV%NSu%6~Idwg7TNBk*7as!|HI
zy0eEoF^{!56i{@Ojusb!BVAFqQW4r)Et?CCjS9B*JB!7Tt0XYvw>(cSz|8#ui%S-Z
z_Kp3vBN<HN36>&L^daAM3yUX2+$rAU8A*4x(KPRnzg()%T0L!&eu&b9JIisnDZZAw
zr;O>IVU}tUt)1W9)bY(=@-gd}I!6{9_8hfbiLTIdGwvu@5c$E0*v9wE^Fc0=hd7O6
znY(P|3D?ajotmT0eQYXdYf9@<2G{-4n%W*peZAzn-@S0kRX8^UHCE*M43{h5asSVI
z(Nr}EIW3MshvSKkuP=Qkdja}bM|L>-SI)8L&s<MWj6wWyb11xX4g}Nfi2LkZE=Nm)
z#%Ix-^EMaeJgzNH_sd&}Av$170nXt`Xr8+;lr~FAWS8YM!hCwAs7`Hgc*mxL+gV&R
zU#eBdtbxW}TW3c=)-KXk<(^%JBirX<^)~<|Q2x-u)&{N2NKZery{$v>VPdBJfI|)f
z@o%K|0T5e$hNFC~=Jy>X!3-KvMNigNu{l0fWnx47-I#(lCD!?1TU3z2qvY(I<?ENZ
z@5oC-0<t#nKd0Zogy97UzOVob6Fa%8b&nrkak~%yRwjcx{7rUL6cl`WM!zrsH5syh
z3F<FEt`8c}M=Aq^upN#fGBdINv*hUwUYMMOeP+wI6X>d1mLbW4gK$Du{{&eI15kl-
z&%q?fs?>1H&{*>VzQ|ZD0Z-E=m&2-DLc+R3W<8~Q2m$*!9RmL`H85c0R20Rx`14~V
zAds9;j1wCL01?1;tJ2V74krm0Dgl6pP;3$WU+`Wi)y0}z1oVEIn-1jr>mJZF5|%fw
zy_i{=O^|+eaNtKkIq^6>PSVh*R7>gR($e2umwCt?I;Sp6&R>rJ-89IDy0fz$gbe`=
zzNb-F%{a~XUXXfMS<h^qeT_N(sO?arlku&K7V{3Q(78$!vu5E*4rYPiZ!XGg&%7cF
zMkMXt1+a+0t1YGhk3}dBcfjL1Iy>Z&aI|wFZ}68Q=_ksJr)1)S%@v|aiKkG47N-K_
z4=$Joi71mrAnVjf^5?^x<06WU&Q$Lzk;Zns#R}*Alt>bQpy8T9o_Tiey>F@50MDMo
zw_K?^BCUjrn&IeIiH3y`u9!1%PPAJh^%LrwSeXo2#1UjxI%ADxzX46ET^9J@@4cP@
zXf@SURcbWLrmp|5=Dsqht|eL%NpK791b24{9$bPu1lQmi+#x{&1cF0wcMk6Et_OGb
zgERZy_hxFQ=Fikjy{b7s`*iQ_-Mf4Bl3w2j*L8|4Vk<|##abYSY-y1QAzA+fpZ-M3
z=V4!OD)JN(jU{ckyz9QeTP^EQUdpdKpIku?7M=>qBcWu}Hd}Q+KK8b~#I;dQ%4_@o
zGoD%j#8Y3E-`CsFU^S4Ct<hPG#utF=Inl5i>POd{^}IZP{s4O<g)5S-22sNNN|)zc
zAh9=_cR0dEcRqW$Xj<80NvUGCC~V7k8DeC$P&&imFo|i2o!Djc*k{6T;_>-RJJ1gA
zar&p){Bn<)=oDTsz4gkcpK5^qHNhJl*$(C`Ykb~@zUBKL-mfvSNf?ur=P5m|2J3Cr
zOpu+D@>Q|%X^F#{cFib3JWvMQjB>vGcZny8O8KYh)5Bp2T6F6noUgh{T3_~8!PO7e
z$US8)U`s__7zfQtP#LoGw?f6RyIlT43l^jhX#{z8%7Bs0nG_^$!5<7~?BI6($R{(|
z(GeZ2Q;<HnkkA((F#^9PrMQ5hs0^Ra{g27Av+??S9s%+1Yqy`Rk;cnr)mTC1sll2+
z*jM#o2-bfR+3Rxa{WH}xcR)#Tak1CVU_1bO<~lM*hLk9=+81JSxUm8CjV2*do@Vvn
zp4Jdbd{*qa4KUMO=P9dw3fFa-e7<K!@w$tiFGld2R@NBO3>XSQCoiKD+SunWWKkPF
zqI=hiP)7>8c!B?(X&_qq$^QyHwJJ2JF;t!H-VtS7+G;sV>;Y>QF~PWm)K;Q=fqr=u
z_)f^tBE_7}aWvi9rTlW&3Lz1&C^0Ja%h<~tTg12FbnKcEEx%LY^szf5)fL`qW#Z}F
z?L7?6x}lJ3B)cu+ep(Bdr+CfYDF11XPLokZ%x~8J@Y~YTBcN|uYiXUtnJKZMX<*IW
z+T~kjFDRW?*U4v2Ce<+E09^fdW$CQlMd$s+_uCuolTqPy=bvM9ImNgiy1tnc=ctPr
z=qZkV@_4nfx^K-3M=xl4%J|e|9-^0RQEMUHV8B2AlWfI!Zb@(Dr5qlvvL?;9?6N5d
zEzsb!hxJ5zAGhd7Qj=@CH%ng2df&*v>9V_?|EIZoKcD^EbWU4huK+iTisSioi*IfW
z=$Wkd7vy6@xyL1S*uFYTY!IgsilKDM%Sm@<V!@S|jAgsa19z$lnSRyzp$Y9R(8f}m
zw=6lcw?eD)s>0pkh*M$v4Y(-roz;qmk^hA_Hk7jdqcoXNZ9!RGP)?q1?O)4@80-#a
z6<n|@QinGmOI=wy@~-md+qS2T4B8nAV=v64cGkMW?z~diTR9Dp^dl_AtX$BsRf2Uo
zsPm$CKyl~+W@tdo#nJ!!@jUbB-xru-^<|LLw%hT1xj{=qZf?-v=V$&6U4*$09_%@a
zg){79&+6Rqjy%LR>3%j=fOU;$#PH>(bcKMQD})%?fR^!gs|6Fv6TOBCjzcW}3z8%Z
zTIf)i^n8i#@=x#jbl>u6H_1s+ZVUdTQM`m=baXQ=!gep)JS4gt4l5tDEQK5dPoL-p
z&B_TQliI$8vroyNigd!d_OJ4&O7cw}!1{aF-pSMf<Jp`W{(d^f7h5E0xsdbAUrK9F
z<B7jB`ex?$+I*Nf*%I6PPaA9cMb*X38QAbq-s40MAa1vss=JVpSZe$TTbv$WOJ?YJ
zDI9HWk-!UB5gIu|K>~ukNbgM+;dg3d3VPcB3N_9Hvp~@wcmbckdIgGhn{*{va1e~L
zv@Q3a3r&yaEyZVCetUA=Ou~U2@Lzl#z6&h38+sH_XjR2=tbEkC$ah@-K@=f^>_gdI
z3H#jp9@9b-$gRYaN4Ue1Oy(zoOO#EZ`LMT+Ahf8ZqC$?T@xKC0;f_vfegN|vt`-)1
z$%jRKXt(MAK9G|(-Y&b;SWq1r#?bPOHcd>RL;x(HvoUwv+v0JKf{MDy&bS)hSkKeL
zIrd-b<0~h$*1kikXSqd4Jr*>su4a(XSzrA!V~6lEc=9i(lj8M(C$r7-b2I@h>%bB`
zUu7fYhrpY#(}GlURB4gr+DO6N<8AdFkZq{nKC(Co@x~pGT|ES`SXbo`{ymTjTTA&k
zG*p!l{)py&x;pfW#-h%CL7xGa=TyKhWytp}-%=>d+trcG_S$SB1RP$?!Bb9vS<}?C
z6bIF~IJCyE80P8#?w*!J9!CvTn6|RXL19q*_S7!p4-zs_4T(MPXKZ38n!ks;`FV34
zem7opTds>QEp_JPcsfxqU188BmyB}~33hvFvl~whr7ZxiS&*NDIo6ybz<&r#vok=Z
zB`E{JXHb!Oiv=X<UYIv{Htsif^D}qz1&()vDA7FSRZGDw;&6I78{>T`u;I$YpL`gl
zk3{_b2=m%s-Oxq$+>iAvCp(9xDl*S<r8U*Z>klu~a;W#875;*y=H=zZJ5#;PuvXlt
z&{R{qKAI~97zr^W-?7Ht2M7FmSfZ`A-W@bh99`%YaeDvx8JrD;a4SDoy!^OZ=p8sP
z&^w_|gBvk~@_@=FWS{?TG6295_=SU?SaT&uuNgCH!Z=AsMIPIOC!1nN{c&%&Na0{k
zjFn)IU7L$kx$|qaq!8(!E{hpilSu656fPb+Sk@lXDtzq|Pt4C^Dq=LaLwOXL&o<Oa
zT`&}+cNCv7L;JEjV{nod&59F8b|cIaZHQvzA{EPvHoE_Q=YtZ!A!>g2*e4VpR73Gz
zhJle!m7pmMH90}&Do_mh%1hd3Q#u%`GKSnir!zp9C4=Gv5}%Klo14`aDj2b7EfMjd
zR`*lFe-Ackhl?tU%dI|uQjn4HX-f!tOBrgR?>s=BCZs6fzErGRr{noGKG=pL0k(|-
zR2dHU8Yz(|>H~Y=rQh!JP}+^SUkmIw01tn?$%PhkTm)MmyYxM#2Un@f2CZS)vgk9I
zOY$GEr_y50UK_VwR0Q?0R9P?j-i1IHa}$$a85yXJ@8dOKL9>gCo@c8~03qh??jnwD
zZ`S+gS1ox9Zf=*a1S!2gH#IQ)dH>a|nPO`Rn>0<-S3HHc^hAeR0TNITq4A|!%k$;>
zpCh}NO%WpS_b-*2lKQN+gdl@j6u@zfX!&xLX0#nLXs!b10ew*`5J@zb6+s3=eXUn$
z;}q*MU#27IeuCi#af^*uC)TGg6)8o%=PXvDAcQ%<D9(ZPKfS-?u-}$_PLTRLRUJXM
z_yTcdaDse2?XuCh>>2iCZ<6g}dI%TNv8+nHYR>xf7RdSnclBEG@v0qFMadA8x5V;F
z{;Tkf^d>En1OT96R^m^2&lB1~B82!&5;i9X*%I&-=wUseK|gV9bohh*h70l4?27Tb
z3;Kzh-DhBmzDNQ=6kn`6tpIr=1BHv*yQ^DLVT&~>Z9?4NBF$pzB@NXb>PO|U$GoJi
zw7gxa9Yf|HJx=@8*aGn?WXGgzM5EySgoQxv^YilBS1%ftTCvqwwC^81;aDO=`6ZW>
z1C}s0f2csO`T0qJ!45muyVQ|zyXq_2DiI&gQ+ogeOQMI#abLoHd+wY27l<8=L_6yX
zu@`c03{K+*f4Vun+Q($o3`s6J!h0H4y-&i<hrb6V<-i0PtfR4Oe}0%>*VOu7<`<!d
zSE_BfpDQhMO%(;B$J6c`PB-r_ViDl~cWi&OkJI?ndc5<7d?IDwHilOM3+BvotXj_U
zl|jdZ%8;4|nnioVc3T;vX+{dHR=G%@0T?Y!$g1keqEawS@^%X%f1U^Wnnu3u9#-f4
zv<H*pQk4fJ^WIHUxn)c?I8>$;a?UTgY4ddS%TQ%PbT0?wM8snnJQ$T)?>$CTbJkl8
zYmCIIpO6|o8-R~qw$*lb@GJXFQ?pHUyCNKoif3dLA#w$ebL70VT+DK1xP%O9i;|bl
z+r$(?OC4I**dKK6+Z?3PFj_*wq+ev#v|%+|y|OJJ4D~hcEhn$#2|hs?$(+jvrUR+L
zMuRizUZSfVDU0yl;xpGjx%2-w&XzxmMuvfb)v|JqrHhS|j8Xq(&X$T;sP%w6U9fmW
zd2vfe%h-L>L<5NTP{eo)1wvjs0~ObBAaJvlNJ`Qs^&RCv1mfe>9~~8~@>Gwi5EJd>
z(ZWydX6OJ_Q-A6H7!`KPmxgaJ-fA+n>gx)*n}DL94N267<KcHl!=E3S_o%V;zGj{X
zY%akhoz3Vn;lQ4|0w`dw*Bc#5z(r#dE)e)F_k$P+ul@QWh(0i9nPN8J2|FMH6}_je
z6}t%{cxOc2LNH?@`X=TZJ&|~!TUrzrQqlH@%OaxH#PMbZxZZ4Bn|F?aF0`speaU6b
zMYX>hNz41T)a>@M4Zkqn+Ha47t48P3w36ZCe7jSO_@o)N>>258(S@Sj*f=%0x+)LQ
z0<@3OtE;JWB0+cNP8~pjhP5WYAP-YbfvVTOD#<>!wcw4nPGRq51wBlNu%+&06f|~G
z5!4+~V*R|#IJE2x%_4{p!M2m2!~lXCmP|3qIzro157#YMfiSRXNbhmYop+8C5Y-AK
zN&TEo#T-htEb+)rm;Mf&ZddncGIs)@;Qt+SAFAsA9dn;0_Tu%!9~n`HQba?;W#Y|R
zzKDTM`Vw2!e*sU|#P3QM3t#SNP8FKl{fv#@`%jm+CH$sNGSJuba<b`Ix)dk(pV~W(
zES$(=#y{KI<n-P8V((R5v>(*Y3Trs5*H{<dsP-W6^i4n1Avd{YKZn2-EOz%av1(j@
z=*E4duS;1PP>^V?Qi`r`Sj)Us7uIkmw4Pl}F7b!*EIn)f`_8l_?MAOu#-Je2H(gg~
zd&~Y<7k3h2-|nj1?yc-T;rKMxHmKBZhcF)^jqS2GIq5Hl4moKj+RiHbRUOuCU1obj
zf07jpGPWzEmrSc8Sz2El9nSKuAo*5Zrl-pbG9B<1od;xRUp9P#hw#4c9DgGB@e+O*
z&wv?TZZfSKGpjo53?*-F{`7d~WK;R|=19&*#?y1XAh8SnJcu?8X_wLSe}?}j{ZIJ+
zm*}c_V&;0{3ZXA?i9aS!)et0M|3V{M!bWH??l@74>eBlkkTzt`=c#E%gX+!A7fCXw
zdZK0}<SF4)9$>7SeW-S5UKoD}Bjg9D>DuuY?PjJGro}JAX7@8EHTG;46Ql|yOSgRT
zKJwcqxMoGOT4#8K0j(*k40Pn?f>2@_^VE@K@*ntXJ-&fKUj9-kX7lEgVK00Br(k$b
zwOvB^3y4`PkM&I32un*MMbO8OA0tk3v@y&Og0iE2>i>?Q<6zOc<Vb8geNSMx!JsQD
z`OXZ9qIU8(i<Na+-4g%)DufEU2_{suxWUU`IrAcemDaNUCJU0j^YggV(8NaFlBH=`
zE5)Wimk7j?wpqY;_t5=NUUKs``6VuPpzCWL_sn7AVwa~^53iOBi3O!_&Tx6wI1Y<|
zmJWQZ>SC&9DT~IKFbEGIZ)w3MqGzU~>vhlR@@)WHaPX%uY4QpQS>LUCy=gyRhIp`C
zX&6X*dJ$?f^A!^Ki^}6N$uxCW98MzG(B=tvuu<=do3!*^d#hGOBUfTlw-oc5wxs%R
zJkNOb{58jTZQb1=G(PM&Gd|<)79`KR%Bi-g{(A+S%OVV|?y%A7^HtSVAtjNgVKlgH
zT+j2MdKI_7^|{#v9~j$5Nv?H|f6^1hyrwp8idZ(VWMPwP`QJs&wLQ5ZMOk6wA^5h1
zdS-pfb8?kwlj5c}DbO`ZKC7uL7+tfl<M%a7K*;Yn>D$+(x&O>7b41Kw9%RFV_WNgk
z$z*?h5VuNn5Dvz2&GBxVNJs63??NEB-R}%J_{ndY8F8iM*V_lR%C!>$#wV&ae4SeR
zwn@TohE~~TlAgratv9#mYs#cczQ+$6)om-0y<7KEw?>|(0Z)->BKAe}XAjF(OFxeX
zT4$fVs$Fitzd5DqBcQ7BV->0{FT`wvL$pyzixwZF>nN;lmm@L~q(;Hd>tfq*+zYAR
zXoSqiSA8INW4|y7+TOWTE#%S#8T{r3ox1e$g<XvYt%T4`pTg*q<(gpc&GXG}w|-L*
z1Li5X$CoO%ndP}s!dpVFl5$_s7M*sm)RWV9(87{X=DwSN0l=xYP+<Tz2#Na<B|Pw8
z_A)0jVBJ0o5*yj=*yZ`vohm$a<!^q2>LwyC<aRJg-lTt)34$G|nJdvq<8#`oF&A%A
zMkqdLeI&Hx$5^*TY2bhy*s9F)`N_&CayfG5(~yS<r6dCo+B+-dyPTS*4#f*c>Oa3v
zo6i02(UqaU7!2>7<@4Pv>3v`x@E66QB~Oatg|mDrJj$zEg?Ha%rc%ab^lBRJ^EWC-
z+|nbP^T8apWX{93uvc9l)PfyP<3~~wXAp7tq*1yj77bB;?0*^#d1`qaxziN3&C#Rh
z-H#2x*dl3tB`j1&t>6`x!|sd_y$TUl=?vJJH`3IfdWmo%S{;+_z5Ht2<@|*F+p9`&
z#nZteH0=~}ZpZ@b!GgO2a$h()+uLx|3n9?I-X6Op_~7bI?rHi~6{45WpvU>#ZkxH~
zzYbAF3#!69D_A)lV_cDtMkuao739m;<>MmI_K#!OxasIpfhzRJt-->oV}eKQ65{Ec
z0*kww*pR+#tt~|sd-<VilTr$XI!q?Aoa5E!T4G=?W)xE%;Z^pFJUZ1sYobNyKk3f)
zN+GeWe}GCc^YrF&XQ>wJED4OaHT;>nK3(Wmn{6X^ctCUXrYuYgzfcv^z)+Q~YEML1
ze>68}F8kr7WF+LI&Sl~gN&2(yPKn=#tajo|42G=Bvh#B4)n&iGf1g}7jW&cTrF_;H
zzdX_bgQ6!`k)sUBiauVI!*ia%u5*bdIv{*njn8mDYY&gX*eY-3=j;187Ls`Dc!f{L
zeId`mXWz{#ElL8U7*!34ZXzS$L||u6Ls8-^$I85$HsPyA_kr!=MNqPX`9p{;5Vw6*
zy_SSvt7Rpcj}w%D43i`hLAJTy9UM56qGqn|{1}&|{rXpi&Z5iad_fzYroq5uGVpvF
zo=IVbN;0;1STqN$)5b4KUs{OGGKEN;@xcKtCz_kFfn7I5){=;FX#*-j!fLy1?hl!J
z#X>E#{DM9Kh|l*KLcQ*voH5K`!PS@E^EldskyiW6UHzr|wR`w2^CNs)@xYaB@b3bL
z>IlHazDXUVUI)2|ZZEAs)%ErLD&gjCF?3UTEAGW$hXPNte+OIZ>u|@&H*vL!YwRq@
zg4I|u$dXuCK{D{iDdA%6Ouv4KT=M)>2`|l4PM(ad3Pfq33n!^<Ab7kiNZR;iQHgS;
z%um#}7*@^^aXeHI^d{)4A<BnVVTpL`)^OV$;MdS%#DXEtK+lS%RE*@8j%X^su@(Li
z0$q%W&t3$xvA<bmOY0+oqPo|;JP`m!CPRgr`>g$Z_SceDGr@~KP6*`}yhP>)s_)u!
z2<@3jMl3LgZrWVx2kR|lb@5e}Tue4_fBHy)$_~*m$am&MCng}B&ek*>1EYn~u$!4<
zA8*vcMyGBv_e{&#-0LR&SIgUkC-_eg*PHnER2Bo%Mv+SO1%zfU;qP;T^{kM2s)p!l
z<>>GEndikFePbu2sq6yph;95-R&zJ!IM-sdFEz_6my7h5biRzfm^z*;t5i>fve&*E
zLUckYTS7GE&|h=2-Y!VlXKW$`Z=>!R=x=6&2!(0wL;4<&KjdQss#dpUT6r}~3|cUe
z<)b7<urL+rcpo`52}8f%4sN+E%Y1Ra`F*L8%%d?nwAXCw85hBB{)7_s@?1Kq^<DC%
zR*$VC@3nL>cFFoHZfrE^W8K@`lyQA&*z50|Cll3Zf6b%`Qk>8X!GX_%>`Wg<e!lqP
zqQ~fS@Rg*A<niZOz8S7GdE{)wz24c6hF1<yK`z>yXLy<{Z|;igE#?zJH8Xo4w*&QD
zdFosv8vd+XO}ZUN!NPd}8Y$gKUxY4M-e)<sCIN$Wv#*POp}ULZVn$m=<efE-$CpjA
zgKZr)D}mNJ!WvdF8Jg!h_}re&8y+i8!V}zm&QAln<gHjY21veI;*x9?a64|I4B<wN
z2!%g)7sPUdEKa-h5hhrJ{jfF{GuJC4g$dac;&tn&gI{Pqi(Ghh1epwkWKJ<kX-xU2
zJu0^MCTdN4_|1plVV~|<_}3lSMBitdf8x5FVL{hT`l&(DbFJ23=Ib=;x@4>&;HiiD
z4P(II`E)Psr%R_j$(57EOtWx>jdFPaJy8X!Ho#L#Xj@xjQMOvPD&qbAs&ATZoIPJp
zMu}yeLgBJ6hKQQyPAl%gBt&OPm{nR)HyLdzm099%<1J!<-N>>|J?+@1WK@o?AR-zx
zH5)r;n@Ve~7D&`$N3G*mc#-|v&r3%~G0LphMpQ<hPW~=|F0Yz>$S1Nh?L#{F7-UK=
z7wQ?Bc%o7DM)qPki)i5FtJHS4dD{bJJT=HIP!>=rwJc(^y-wGg%7XTlb(kvJkn5`5
zHJ1nXQb2`#ozfhpYPyhJFNw7K=8Eprvei?GM#k_aGptPW;)3G!j~@?4qgAr<C&t(w
z`i>3N5%c-Tdx<=49XXr_^<V@2gEO-_y#>Fnm>E}bWxf}Dy=;N&L!uK#wPP#Fi(?Gi
zx9!|>$WcP6iq%)W_)71-Zs!haAoVc{OWqF#y}LP_bmzYzdjEC;jfto&AL2#2xldud
zVb)%u2$C8W4~X&SC1wkhM8TKyf#q&z7@}R_3@dBp*$*PwiHa3RkyA<4SQZKhhth}w
zzq&xrkn0kwt9{$|EY{9TVxRn&t!Oy4u4yUA=7KNvGbvZ@gc9rQa{Mz3&I5gQ5O%P(
zmFeLDEnWtr<H;+J$5G62PdiHya|67Bpw=qg<I6jXIdgYO<_{@U$7zuw!V_XS)eBcq
zq{sHH9L?@i{w(%m8zG!^#6|fiuPf@b!P;cDF(2fj+5_9aI^7)Lw4EK>39%u<+H}~C
zo+g{XtjdfwFqQV$rM>F(N3|`D{Fogn(N)$$)ci9_^SAc;DLvX++-7V3am#SqkWP}2
z083XIlJ0VD_pt=`V@4x$+ssvW9lA-h`x+TUhPwGvZb;VSe9qGt+~t{RH~ZF!tBbfV
zS)6RM)JW}gh?e>;`|Nx29o9~wff9p8yQ!p93Gx?s8Dbba=!lYlQ$9&yRA}yic(Fp`
zs!MK}v7j@Tk1}Xm%NPqtDWVZYFzMlxC>Oc!6uS^5pm0^87!aayes>CHudO(mk`ON;
z)i;Y~;B8#AT+Gnp*CFx29vlVrLQjiM9tQY>(%ai`-#<CYUFIfJHitP!C!2kqMLj6k
zR>G?~L@{kKR%EQ%y)r3tyVM9q1@-VZ7=)v$twm($N-z6JxDRLMR)8tCdVO5Dd5@#|
z)J>FI@<ebq-&AZn&i%Mg6gkrZ1%KH#UalH%X7+h2Pzn)iIWzHk!Qpqh+r;FD?2CY%
zU;0QtIB;L-xKv%leNGo*`_+~rcx(AICgg1wvBR76d^8j^LqkeMu}Q@o(K0~qBkpTx
zlY6?-t88Q?@Z)pk_<j?e^*-O{eT^mDP`V5}^L^c{==j#g4tyiBR&_OvkI5Z(b^)(a
zvTwM7PZK+=gE*CB*k>MNDOmZhTgNA{F?uw!`+{U<yr_ui<LuwsEwBtVKz9N&G<FRU
z{7(1%vGL9P<u9t^gzZ8WR*(9NiIzC!xLakp=|1u?8P!X~(pTC(yImZPZJnvX;b=yz
zW=FB1g0VwOTfzHC7G^_ubsF%YbRMUJt+)p(3Q6It9Qq;&f>YY{A?h4!0#M=uK)b+3
z6MDKhhR_5*rdJIdWLk1_xl#Qpf=lR4)*RRb1vvLo7ft1=t(^Ge-<I=G?6j>q3*<gT
zkr%&p!#{(%8Bh>nY}t{|ak^<Ll=7g^Z1Ez$IM$&1Zk<Ew`PTO-(&x-XS)AL4et-DE
zyim_ueV|G5^Lj&g3q>2=rMm?ByIag3>@zwP4QB1{=KH9ty8Bq=_}BLzS;ll$jQ3By
zi(Pa;W}_nem?1pE?_){FH@-tKDqvz6Dv*(lR!KJzw!1w$vvGcn_BEkaWWjXPaaWtJ
z7nwfno&2&jDYFj^-Tvj|1~RHpUD#S?*uM%T`z=GKaXMauY1!|#*+bmm<xzO7vv{~{
zyQ4dM+NQ>K_N`M%h^AZCd%pmw>1?@jC0vPb?!*UooT)>Y*<y)b-XWj=%xJ;#_UBne
zlPK&*j4jkwZoZYbFQk<4PFsQTcnfCp@8ZMrOQeU*n0av7irF!-yS)}f2&DeruvQV|
z_bfnn4>{T)l7IT^AxSp&k0Rb0$P2g68GT&($OKh-@hMq3F$1d}g-JN>oDt{Ks_cTa
zs<172KASGFgNI@fbBEW2T0M69Kc5djefOc>q%ejgQrYe()6?W19pCk)-Xz2`awXY*
z5X-pk_kblfP#S_Ej`5zBJOpD48t4y!ycZUD0ET!3JRKh*P>TM=5fdmS&EB8_N`*wb
zWM!5d`H1hlyZn^!U*j-TWq}H+JX_n_$6)zjI8+!|Sb9OkVlFzqET(FZkd!`iR(;&G
zvALIs&^aM~CWb13=XRVoKy9^FZ7L094SPREb_vPL%m0jyHeaIU8}xoC3r&QH^-)lW
zlFRQ7NR*+v*V{kp0MA=-Nra;rRGWmB0`$E(UZ#!>-&Wl3PL`;tsm~5+5!K3xugZMp
z#n0gV$86?GcF)gQF(Z{Sg_d$ZBexk=sxwTa^JC%Rg~zG_!~NsAU920keSxn3(23a#
z{{HJ<3n=R1v;?5ZU}rM&e{n0<OiN0-9cHX7nzLDOAR*72&bCbtNhGLU5;EyUh?*!?
z16VF+ECH@>z@`3zPo7r;%upWF;q7DJPdwA6Ca3NGh=_=l1wlmeBsgGx%~5Jy`hMV~
zq-qB=w;+%wA^cNT2?C|qD2g*MI{0XPE7dID8_&=aJ};qOgYq8(a9~{pz%Nq#*&cKM
zjM&r>cv+X-;Uu`=u1~&rk&;{X@!@-8?{W9?HA`_K&%9s5f)e6}dx?TM>FKSv`=k5%
z`pypD!i&9*X6c8OVmF*(Vq+m!C$5cWq5n~_(y6&$q^HA`MVk&lsfC1K-9<#wUPLs-
zX5fLI@Zg&K>JiA-I#<?-^VAt;W@hkM^dnF`@W>&w@iM@~M%Mq;EOqnvAl@3K1y37h
z4kX@X3Hu7TpI9}nfZIY=vwAkIrgHltv1p}Yh-H^#BRsCwHhQNwNB?l9q&`8;D-GM4
zd5y9tNvDo)M}9K{M9skJxw^e|gJ6ochC$$HY0QC_NaJ;QeSJC~G2`%HB}dOyX8@W#
zj`6PllL-;V_puk*>$X^ziA4D2MonSz_2o(JP?R+6Sn_i?8VQfX8Zi-(JS_vlrTE(G
z-pA4LP-MIcgO)qLEG6<CrIbV`Cnr2sLliW$0_Oyb^PSVKNH&hQxK!eS>Rv3vTQ8JR
zC7-s>^)%#$BSi3`2P=&Z&dxQ*GwB|t_%y7nm5C}}2f=K7!9hW19x{lps<+1r4n1M0
zXV&5}pZB7>_^l>CE-av}qv!8YW{W||8CPqEp%TqEyV*jx$nz+!`~Tffqy$Nt|8BOT
zEvg--Xnx%jTE^3z4*B@#w>(7OqsTa<Sm0X?^f3*-`-5PYZ@B9=-q}HNm`N3)t_^Hc
zAr_QzWr2gW7`3LtbMr2*nH2E*f3`o&fBpwqzE^h0J_CYFzzknDj=u!B<mCXj;O)T8
zZvEEV-cLyMe2B&G4#vbn68~tH>qe6Zx_6T}VhV!MvBVkP1M*;aG^2j+8{`D&P#<_`
zB0;>28Bba)kPbAANW>?*ZH=KiH0f_Go|!#8P(%@;F8ObznC(Qlf4<&!MioFsZN(-o
z&Oq?b!=fZ9oEpy@CzQlx`aY9MlkYesy*ee5`9C`W<GXRf7H2>Os*&QM28c#z<!k^`
zG8N|?;)(Mgg;z@d7XB-SfKBqB;s}8}#4{i$0Ye<&66*h4j%|oJGGHS`WAUsS{4@W_
zUPa^(A75W~CSLp1lwZGs5>A)v<>lmRw3&cyR6+1sV>S2*5QFB&T{xE7+KauBSo>pX
zyq*^u+O&2XRPI|6XMfIm*_`XqaRF+P&<L-K!37qiq*(RmDo!k*oj>m7{pB`z%zNt4
z6_}TmHg69gcsme7vOkfvUZ9vZIyxE*58wiLad30j>owY2)GmGEHIXET&RHKzWAgz2
z&bm4&$J*}fx;`6NeTM1j)ZE$-rBZ{pO_Hj`QF8%HJ77z@MckT#L`Gjc`C?{l>dz2?
zZg;Aa+)Fem;=da5*e%9+SY!>ErSiMb@Blp)s3NW}jj)Zfc032U752O&L85pT{biyk
z{v2Q2$#bhgeE!7qJzNyNpjc?;YyRMyx8kr4mJod82v)j)wW$hgtF5CPzsBR$X8K)!
z-7o3xdwxjQl(MNEug+quKrIDdKu6i_CW~L?B4o*_N7AaF|4Y8NY|N%cn+(6kwd6No
zf7i9PwnjyvRBNAPz9xJn_#GFwVUvuTu39{6#id!QiFzy#z#fp1i5PdkJIMlWoC6Z~
z#NB(QK(SK4DOa<!npsGU3fUBmoxI0O82LmKdEkP_G}3^f(IACmkL;mq4sSG*zPYtl
zvxg<}WxXW#M}&&QpVsF4F=6EeUt@*N`e=>sqbTExb<B-&W24|wbOK@RtDKH<D$&yW
zg|gy-ALbL9mor>SM_?i61zIwDfmGdk-`K|QbxtXyaT&le2Tmap5kDa+s$Pwb7ag{S
ziOf$c?Y`a%X4VUQu&}TOT3qZO*|}NuK>;|l-Ec}YG&E=g9PcbUmsXWGh#NL6ZN%Nh
zli7*<6cUEaiDmM5Ayz$@ef2h>N$F@RB9v&5jwkbA)m`ACd3r6iD$8*pV5a}^qBBZu
z&(o~s4F>K`*3ZT~Jd4xyw7<>Q!Se1rtshUGg3l=_gLtCJyhP6_^Oa{X#AWisazcwA
z3b7*nCeo%E#wRDgq~G4TTnN+B!ao7oWB6fR%{b=<(W|Ta3u^fBOrjcGhc81S_N%T`
zM4Bh8OuCa+fBvdfF55_LJ}pIgh)nEu*md13jzNmMe?Nmd-!kOyB;+q5S*18+pY99&
zNLMdQduJ6Xp~pED;MW>r;&1mKP|`QI4Xd@_h>`SE{r`U7X?Md4R=4prj2UtZyMF~F
zUq~F%>1?qYG&D56=-HtNY#8L>dLIbrAEz>voArF@eKPI|Ya#?>^(?<}&n=y>t2YlG
zinbx9u<7Gbu#V5=nYF|kVU{I(c+u|nHeudl-Sc=#qQ{^q7#^$xRH?s1@5(Y73CG5<
z+E_GA<H2@Yoh<Lo*OoXjKA^XbeRWzSZdEa2dq|rd-$K4EePB~CtKd@?2mGcXaaS6;
zS3CRrh57mA+SOYJQ-4z)>TTvy_d-z9g`9T=0m@b<xb(4?cah>A)`|*Qk<MiK_+JnA
zqT@A)T>WTXMN?ml<b{nI><+8$PDN2v5%YA#O6Lw{ZKN%rDYY2$&)%;FT6U3QuVdD@
zpEQneAr1A7=*Wc%nLkzhNqfym>**j&<38^wMmo&$0Vqbq2aO`B_?UV%)T~|oFfA7h
zQU-|o3+sSG6`%2Q%yuf5^>mf7#NVliT?Syi@qAlOG}lSrgdnB5I8K#k4!>yr_)OQM
zutHGfKejTVuqMQ^C1?qsFzHQmHZdDZqo|BcQ`v|=r&ohYq^!73-2gM6;a*GLF?gW=
zJ2;r>6W5|Zp{;Eb+ciO{0+UJ#YuPVEwNdxm10d;2QFET36VMfdivRpgq(@1$GRQW1
zOI0?QdKfZy&R3;RmhDvy)u+HT4lGQdrgfNkM94z*;zGygmnoc4Okp$LAI~s0HU=)2
z88o}nyQ7f_Kd&~q-1jPF2mms+GCRAIyH=Fy@_J^A$0VU%?~)vz_G<3&sVIarrhac9
z@Q1bs`U&$TC8wPeVdTYe%x{S+Z932oJIQeQA<h5E_!Y<2(VG4oP{p<&A69_07j0V5
zu0fD5=b7KR9QDA9ntq+5I>`;FzQvP5P5ty!?{{6xdHBkWw~{KgsOD^W?q<o~-paI{
zgz7D3lCg-_Gh+xRRjzvW*E2GCE`#0RD;r{yw5z4O5&S{@4;$nVHjZ_l>#@PXL2E!(
zWeO2^Ta2Z0yX*lXe)RKC+@>{_n~-}eSXy^<!z+Ui4QbEcb|*N!cd?s~roumW$s&;B
zq)K-k7LFXO`n^1U_`To)H*lJMxi{|d-DAo7F&tgQlYO&zw`H&Gf?=ZiSoy8-ytb_!
z+(yrP9#c}O?vF4I-_Zj1*J(VRU)!U(!iwUb<4JgGR+9ShnSaG$<5C>H0CK~{4e0is
zMBYwfHvzlsg5IaYiI>(|<NAxd-*+xX4`_60%B<TGXpe+RkSuBq?$sln5Hr0U`@GTs
z(CwiR&I+EiF_UVLz}wb;?B21SAJ@Zb+?H=X{5m}r?5QB+*4yif)0&<w7JVKChkmBG
z=+q%)9lA6ZU$38MS;WU__*T^-vqa`X!Ww!xDu9I{6S^nsNHMCUp%Mr!`6~_sJeKYg
zs!6%WACI8mZV0W(Nw?c7TQ;ft1DTA2JAR<h1{i-FQa5=X%@*;3i#=Ze;}qT@YFIZ#
z@SJuT@3NhgZ}pI&dfeMZu@^6(J^T-|=5@N)9~xay^BcA30$|_di3>Vy^#ZHxe6;*3
z+;(DUNLEhHSrM=ifF`70IXF4NW5W^VO9uy5kaxfezgol(?s|aBll!sFSFU-S`4Lba
mNQtf|$zp&%#al@`-=MV7y<DVC?%SY%pX_HP$qMnWLH`Z$x6YCP

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
index cd11f70511..d3ef342f31 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -18,4 +18,56 @@ ms.topic: conceptual
 ms.date: 10/14/2020
 ---
 
-# Editing exisiting base and supplemental WDAC policies with the Wizard
\ No newline at end of file
+# Editing exisiting base and supplemental WDAC policies with the Wizard
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016 and above
+
+The WDAC Wizard makes editing and viewing base and supplemental WDAC policies much easier than by hand or using the PowerShell Cmdlets. The Wizard currently supports the following editing capbilities: 
+<ul>
+<li>[Configuring policy rules](#Configuring-Policy-Rules)</li>
+<li>[Adding new allow or block file rules to existing policies](#Adding-File-Rules)</li>
+<li>[Removing allow or block file rules on existing policies](#Removing-File-Rules)</li>
+<li></li>
+</ul>
+
+# Configuring Policy Rules
+
+The `Policy Rules` page will load with the in-edit policy rules configured per the set rules. Selecting the `+ Advanced Options` button will reveal the advanced policy rule options panel. This grouping of rules contains additional policy rule options which are less common to the majority of users. To edit any of the rules, flip the corresponding policy rule state.  For instance, to disable Audit Mode and enable Enforcement Mode in the figure below, the button beside the `Audit Mode` label needs only to be pressed. Once the policy rules are configured, select the Next button to continue the next stage of editing: [Adding File Rules](#Adding-File-Rules).
+
+![Configuring the policy rules](images/wdac-wizard-edit-policy-rules.png)
+
+Hovering the mouse over the policy rule names will display a short description of the ruleat the bottom of the page.For a complete list of the policy rules and their capabilities see the [Windows Defender Application Control policy rules table](select-types-of-rules-to-create.md#windows-defender-application-control-policy-rules).
+
+## Adding File Rules
+
+Previously, to add rules to an existing policy, users would be required to create a new policy and merge it with their existing policy, or edit the policy by hand. The WDAC Wizard allows users to add rules to their exising policy seamlessly. 
+
+Selecting the `+ Custom Rules` button will open the Custom Rules panel. For more information on creating new policy file rules, see the guidelines provided in the [creating policy file rules section](wdac-wizard-create-base-policy.md#Creating-custom-file-rules).
+
+## Removing File Rules
+
+The WDAC Wizard makes deleting file rules from an existing policy quick and easy. To remove any type of file rule: publisher rule, path rule, filename rule or a hash rule, simply click on the rule in the `Policy Signing Rules List` table on the lefthand side of the page. Selecting the rule will highlight the entire row. Once the row is highlighted, select the remove icon underneath the table. The Wizard will prompt for user confirmation before removing the file rule. Once removed, the rule will no longer appear in the policy or the table. 
+
+![Removing file rule from policy during edit](image/wdac-wizard-edit-remove-file-rule.png)
+
+**Note:** removing a publisher rule will also remove the associated File Attribute rules. For instance, in the xml block below, removing ID_SIGNER_CONTOSO_PUBLISHER would also remove the rules ID_FILEATTRIB_LOB_APP_1 and ID_FILEATTRIB_LOB_APP_2. 
+
+```xml
+    <Signer ID="ID_SIGNER_CONTOSO_PUBLISHER" Name="Contoso LOB Publisher CA">
+      <CertRoot Type="TBS" Value="0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF" />
+      <CertPublisher Value="Contoso IT Dept App Publisher" />
+      <FileAttribRef RuleID="ID_FILEATTRIB_LOB_APP_1" />
+      <FileAttribRef RuleID="ID_FILEATTRIB_LOB_APP_2" />
+```
+
+[comment]: <> (## Editing File Rules Coming soon!)
+
+### Policy Creation
+
+Once the WDAC Wizard finalizes creation of your edited policy, the new policy will be written to the same file path and name as the in-edit policy with the new version appended to the end of the file name. For instance, if the in-edit policy is saved at MyDocuments\BasePolicy.xml, after edit, the new policy will be saved at MyDocuments\BasePolicy_v10.0.0.1.xml. 
+
+## Up next
+
+- [Merging WDAC policies using the Wizard](wdac-wizard-merging-policies.md)
\ No newline at end of file

From 8830749a15bd2b3f035caffb45a97d4dad5ef36d Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 2 Nov 2020 15:46:27 -0800
Subject: [PATCH 020/825] Created the merging workflow documentation

---
 .../images/wdac-wizard-merge.png                | Bin 0 -> 26245 bytes
 .../wdac-wizard-merging-policies.md             |  13 ++++++++++++-
 2 files changed, 12 insertions(+), 1 deletion(-)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-merge.png

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-merge.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-merge.png
new file mode 100644
index 0000000000000000000000000000000000000000..13d3a31cec43e8608133e6265cf991db5f661cd7
GIT binary patch
literal 26245
zcmd42g;Sed^e#$;Qd*n>#fujS6n7|4+=@FCcXuzv-Q9{?aYC8|DemqP+yVrL;9S1*
zyLaZCKj7ZEGw+_v-aC`5*?Y;e*0bKo?@H2`??~REprByN%6wBrL3wF~g7U)U?aSwt
z(a-e(&mS*bRi(vIYDUT6&y&}dVv1rYDE0C0?~PHP=jcu{I<6=vcy9lV7b_N&UMMIQ
zB(mSc)V&N5FjRfDrB`Stu0(cUe*Ap-%f!>zq`fQ<`a%p>Qu6D!4=OAd3ornaM>P37
z3<g90Om5oxFxFgU0%iC(wu)@U&T%~gcfe99cO3*xn{)v$P*8q4b{V(7LP7b*`_<`L
z#E&mJ&{0r+gs`EOxi+4M{o>*I_x)L@>n?vDKBC%q-@G5^EO9t+Rw;<i9fT74ytRgX
zwXlYf&nhdR)r9myWd}fza@f5!XwaVt3qw1k@1lu@c|H*SiAh;q;0U;+lem0U#cTgV
zew9VQ<i}lH?xK&^vT8j*$3An#ez7;(ZktnmOvwS7H>@c_1Mj>oA7ZrICbi2WJY1i!
z5WDbib|~IDSW*%(4Wzh9rpXm-MqV72a80lN_E+k|8vt_W3ueCQ6?sj0M}++j<)8BU
z!NJnDe^aQzm48l7&V14e+RWHwz~W)p%3U<K76t}o$;?W2t40UU!R2Q)c-oOKNqmAD
ziLRI7Q=qULX8uI6y>0Ww$i7b#`v+Z)U+$4%8+w)`zSYLjMo!L^$S5?s8_qYEf3)g@
z*z|6)(8-w<7KkL?Yt`g%Hu)uazUOVeNJL|9ktR=U11PtOx95+jUADgJU)+5k<NsFV
zijCp}%Fp~?^mKYYo11BY)n9{NQhsRLpQ0Hh$#dW+-3yJ3MXp{R^LMuB14N)-9Zyb}
zhT<oT=G9)Ig^e0fO4QWidXnI^w>@OIZuJgZ%m{Uo5H@Ey8^}+Ns+S*<ZR~<}+0$zX
z2qr57=6*({GB0Z;?gRC$hV~YRud~1T*CG2~Df?$}T~??ef2+5@5?4@ktNOk)gVuWs
zprx(R$!;#F!KBaoew52|bJ2$0m)u`N++lDV@_4EB7O`VuD)NctvvSXDlTc54Qg&cG
zq3|x>{36cTblt`^{$O^ap1S>^Xy6^-A*^D`lkXKnio9@j?KJb?1;v+t;O_;&nY6}@
zM(be)KG#r!%a5f-G7)Fm(+5|^nB-Oy3t%P{m?x_q-S}8*(i7LBs${#Tbh-!a=5kw6
z_@dH^3qxn@k!{auaqg>SOwr2)3=<0*`ZbQ*5nL?ga?vtYU`~G!Zf@fhuFhLiEnh6b
zO8PD5(6bo<u$CUXsoO!Qr`54fYSq5x?Y+d8D-3=dVhS9x-Y>&7v<<(FpewEZ%*~XN
zTGob(%SAofnP)a7EYHgHm1hy+UX`An9-vSzG4!8GRr#E4$@&ZH{>W~N!W?I*S)Osw
z*<YMKHl&LW`5mN(v?pmg!GrF_s<|)kj3Nj>6-eaA6%`49AirnY^jF<)2@o@xfOO$f
zatDZqA$YKClg9t}&Cv*4^XW>zvR3%arrktYdox)ValJ+_5k{W7Kc`Ws$VS6jJk7>q
zwGT@JSW^Ps^GO#5N_5u#i9I~LpS>smhzKJm4KkeN?>X(XAMVX8E1Ro*r5D{jhIrzE
z@q#|AMdsV}>jihT?-$c}|7aJAA$_A;(uJoTRUNgScA(q3)qbAmk5DUMkgdP}c_Te$
zS;^6X@L_~QLhE4FdWVAlc`yM%u;-q<fP~GQe<2&oxs^OGd_}GuNeIZd0T$%C(ezIx
zXTit1PC=sX**x;e9>^>&{nA>SO^*vk%{i#bNM$xwwe3!$+-mPtrjN><Px8}p_F^RF
z;QpHupS)^cD^Aa5;((~?z#Xa|pg>=r-N>-ML-X(7<Ao$i##M)QAi+6Pow5Gk_1$Ap
zP})VZI_%)F@p^52PZ#rpyw}|k=lPMm78F^3zB?1TV}r>zh5X#5EA&TMO=mt^LDoNo
z+e*oVZE1#tsndTGLzCeO<JK*3NUo5p-WWZ%3=67EGmc>5&NThFVa3Tw8{2oGw*ZQ-
zIPhre2_s5Nv*^B;8Z4SMsj_#>PuXfPT~3ddO8Gdwxo&Wjb%Wol9OdWdf|}T#GQ=6V
z;Z2;6UL-x)QP~VG$r&RWALUTW+US{r`cVL;XpBFOOj+)P5gZ@Jd!=Ul5#^aZ^tbd3
zdxIK!Bm{M2t>(B8&83Z;51X(dj;kR_{sZKh;U%iLyZy)EFU!C$JTk6VqGJ0NHye&r
zQsvk~SJ}%07F%k{1TJq~gG9MY*y=c@)O<&@TajD*$iYIQcM#0|RuM8RSvk(3ky)7%
z{RWj*EzFN9!PS9BRO7jzi^50Vbj)&@ehtB@p!1y(d!3G?njhvhg8kWJc@5Z6kIX3l
zC~JOn{6f353bMb=!VaDiypZxKT{g_AP#xsSv617#6RcmJRa#rx6<CrOQzLWD<thoS
zBXQ>CSRDT)o|Qz!a2E3o9TN+9zmR-A5#Be)xJ5SEe%!%K9D>w}7+8LC$F$O}J@3YZ
zMb>rP!#N?`Yg#fQcf&kC&5qn^W@M*}n;T`?-Nm^;9`2ZLFYIBge5LE<m1g%x)&x24
zJg%(S{fE>{3T2fPsOe){@$Y7j_q9OgZ>fH5(Hd-7w8RbcBSG0Nf3pLz^Hr**CW}q6
z$2k7*IXb>n&SX{j$fI0rDb-rj;56D25#jAhsL{%E_0Cy=4+m#luswOH5;IqW<S{D9
zLHPc_vEEVoTzU-Nd)9jst$B8^T)&&M2eu>xGVN~c9{3a&TB?X|;9dGED-6;W6Yi>v
zOdKdiDp1pPFCq}i!q&--`&AikU@DqO)vPlCu|U(sh8{HkJ!^GYwGBgC2C^&z!N7vJ
zkppri>fqiPQs-GQ&)~aQWs%opxD3VRC6Tdpjh@iWcvt8LDDHCYQ<lUSe3JHoG0W47
z?C!Vz)AUdc3QB-1M6g|_u6lK3U;vIF*VVo5B|`HzsnIQwgPO?a%;yYko_XtQ=vH#H
zX88XAKV7St)F84P4BD5z2mEd5YUZfA)8v>AKyQFO_>^AiOtZ4-p*;tx5J8jfx6RjY
z(!11|OjRHm<z~238=;chays8uwPr@1D6y4p)zTRaR=!*C2?Z%m+;1qiyX^N3{cY=T
zkG7In^|2#=mW{$s;29hJ#0^LlBX~v~j{k!<UcYAeZ!x2(iL3eAsCdGv+k{>38J%1^
z3`Y~O&2I!I>Q;~Di;Diwnu3A?hTc7!YK8i$z>@HP*yW#V&NCE|`rjeU|NWCV|DSDK
zPX(XrUTmzb<<%}^jV{=``d*Rc_0KjKY@Fl?KLf6zSvNx@29_b2e{8k?+J<@<<4D?S
z#&VY{0{kcZUJ3twuj6?cQ7gW0sq6L2W`+Jlpjw$Exg~SRw-C>^BsnGfoCT2MYC=N7
zx<q)M-vFzR?P|k%S31I!*)eB@yVV!DR`7%oKxM4ABG3>JW^60*M0_>TyHbF*YHtbI
z=#?6yNM0yqG0fMy8}LB+NqMM@JsM4FIg-uG>(&8Xc5y}Udmfe7hK{vg`Ajc^g$<VK
zxU-hui|>qP^V)7oHb1@yLS?TnS$#Fgx&5k{c(LtYZ{BloTo~Ntd#kCi7m!|^5c=vi
z6iC{sDPtFp&dkzdw%ZbP?zvo#lSx+wtI3TYF!IEK>Pzoz3)-aAf?}%oxjt}kXOH3S
z;FXp131o5x$G3PsdVIr}v>#cfMr<GXVKgFMEIqz}b!7V^)?T0lG>Z!JX^`08{Tm0u
z3@~Sw&KDPe?>X4jT|%-FHeMJeU7a73?pH%<u`z85X2!4B7`4Ca*Zp`Q0e))1L>L@m
zYzLN@2*1z)i%J*;G+${{aBN*;`iJHiNGa?SmX?J&J)V(pc-)8RaPry!btfhwQ*Rx<
zxFsHv=jvB!G4yq_qj6vY)b#Wye+V@#_Hp*cW%IjMXl5@g-?kn^bxk<hFVAPnj~zdj
zmD(P#9{!3i-&Rd-pdj73v^>z62RA*L38MVNzA8g2)6C4&Ve$GF+b2A?_eNHvLq%{l
zR_kLLE?&ENSOR+;--lXT^gsR6`+NlfA{1SFy;545p~QqltY(8-u5*{4&J4}TF=Dr&
zqcb4CPsSaK)d#<HCz9M8+iBzJMnarj{2eS>Cv>xnEylU<ogzXNH%N{HJ&KR6%cx-%
z2(ewioQ$7Vj9{XUFBZYK(_apmZ}XPx3Oo9w^HMFd3lGx&{6_6LrSlfPy#+OEQ&dCw
z$$?g;xSq<o<CBsNo*;e4ToPCB+piMd_t%k%y0=&8_5#MkeEz`}lUFJ1;j{ZgZ%TnV
zu8lpsD-P9WkA+)3?{)v)?@VXzx(E3FBn#pP3m=TY;McPR)foO!SNh*50De=Ck(|rb
zcuUCxu>SFvC<zje7i-0nNrsq4JiZQnqqH6qJ%z%#5l0loM=jme^{&UrB&@&XeKh+^
zsm1nJ-u6leKG066T$M%=G@9vF!MD_if_x<>BYO%<c<`NLlYWikR2u($<5ELe)2V+Z
z#tjq<&xIo+KzGyI%zpT)7{TpGho;3W9M_<>l)RK7-;s>8jWko%Df_&PwL-#i2O;XF
z;sL#;2cAVQ%bLJwJUS~QpLsHTT-mtW>;A?w`1DmrVrvr)0r5<W{}K-%>ljw-JL)pD
zE}xexxDRa!ubB9i(08j+Vb-bQ-rh#Q9CD>bnOiP;w8XWqH@yar%C~ed|41zgn6wYQ
zyY}8XT9y-;GTg&<%FHjxmE?rPOdvmT2`akf>g_f}H}6#)7v>t$U{i^A8604bI`!|w
zFmIAd4f<gMc+)QW>vzjupt#}Wd;<)9>ha~_S?%I`!?GZno$z7NO0Iured@5XDO=F(
zhn3ap#6cduOS;8xDOUSQXnboxPh#tB>Z#FsG21RcJ);~xpb-66R{xMKG&BtBEhRmE
z<}nPc)-J@XC_uGz6$97%wUE``n9Z2@nd>lVOn%_IS#ir#H?yLHYOhh?So61dS*~OU
zT$4_kQtD(FCHaj;7n5TK?~%+#^OPt~A@-_+%F<+oec6GY*3=aywrn3gSG=fVdMuGe
zg}u<hl+*50Et5*M_qXi7x1mPjYExhIEi!%?^s%f?7hU%o1|M9&lC|2WO{bNT>hI_k
zhe7K@MS&d4u)J@1l%y6`Rtp8F11Y#zu==fF&KAo%tZ=`$t*gn*XzVE!`%KLmFvbB2
z$`;0JhLWLbg2avxwN=n3y%Ot_6L%JAKsuwfM)Jo#bW$8Sno!Lx)d~kXaXj;+`zr{+
zXP}(o-wU(J6zV92iX+W3uIlf}4#tSVj{;^Tg-cJiGPvUOHM+e#aBE=5kfm#c_fz7;
zxOx89#;LEgvuGmWRQg8@ar(m)XL=?3@A|`}(U%Oj9IX{2%wJV)S%u!lWFhAmu+k~!
ztx29x;eXv{k`T1k!6Gj+&qG);TcQ$@xFDW+rJ_@o6aBmx=@tD{xmNPxrQORZkIp8a
zSWkA=bT9yP_(=y{3@-c^TYg?)zC4~yNF54pQLmoA9y^dto6`YKRFnh*oE#RYhilXR
zE4$D~Rr=z95>@BUhD~~fyaG=9!IMNTlZLj4GR;KQaJHN;Db@BPkx^mN#IEAHm=ydY
zb)!uchO8wR<RVvJtH{4+0!ZIVZow5{=Yc8uSB4(C*-;^d@qNF-vcX(gSEYEW$!{v6
zK7S|<*v5`u-nW-&U7uO;)~)JoSRA?J4!9Fgn38(+9%NHlyPq*$<XvPo68K00P9T($
z%F!XQmHArD<8iZaLt|~~Wt$yH;x_Kdm5}%MY<;Sd5+gl(?oWfSGM65e<=*$Uw8u3a
zn_Dz7_b}R;NMlly<F?t@QjMn8Ei}vdGK(8QWe4v!ajn-U+`{GWXnpoA4GS<(5&+Mx
zCPkhuvjJO59%7e*qiVeu<WnZip_Ceq@mK~jLY1N|wU&DhPaGaOa}Gyl3o9L$4_)FC
zg6ta7iOZ0WzAdI}Pak_ho_lLl1y~qrzSpu6yS#h7qAi?N339Zmu=h#7{IVoNAu+_<
zg?3a`oNmjKcNGL~>24|y?UhFq3!htz`qQFSr4-GWFxTIqgOApieCJQvVkDX4!4PCv
zsd+-mR*LEa($8;;a&Nxpd~ie_vH1F9<%=T(7P-J|Lt|}0<%CsSHK`!2-}f;bY=MX&
zJI<56y0ERmEwtjV=|W+wAzN@W2?_<Um^i36eJsW#gStTC4e|&v^u+?I>ZXirqZ@LW
z#K=+*uyJu#4e|*nk_us0z>McV>^KNuP5sqBX>~cg?2&uM5#TQ!=FW7W-N0VYK@;V+
z_}D@0@a1wAT-Qz<q_&q(K-HF7i?e}z%%?#?SvYtG7+K_9zD>7lK+dZN|2xvW9--nH
ziue;H8My|xy?gO0?t=Ey;NI6jzp2$f^_uSOZ<1{ci%YI%?UD+j%a#H3R-A?c+A_)b
z=4yqGFg**e3WOfk10;sSbm-4M`5Uam@41Bfx6-S+BKt=Y108*gqztzjbyVHWKItmL
zdxa#y9{GkVysWa+Jj&-3eB~OlFA`<Z8Oirm*pJK?C)L<Veg2L+kayhynF@xEvE%N$
zeDgvg_OIW(ejRgCYgMj!K`B=CN{=MKVUoj29GONpMVATgE{PMJ6Ita8;#u*r;J3~_
z0{(TZjv%wUx#nq&s<8o<75Wb1sR1Oh#(;~??yIEh&BH#E+AqPHq`E_o=61Rl0~wed
zhaDi6UYh0^4ABPpc=yG02J%VM$un?|4I93av&0>m<@H9BZZ1zx{^GP&T87opnj%{6
zEClfiW$Oby{muxY?uj~8ZhOnj>qZIdyRd=px2ZNUD&0f<81Mn)Zg`76j83!@A*ldo
z)J2dtKf`U&*Lj=wSVGA^!$RF_rHwP>d!(Pnr;E3UL%QqDpHa5TmyOpbC|_Pm{l5y9
zX?`Uee<b~{Uh<69AHS@U<oJn*D(4A3O%<UsGc%*1p#^>Y$2!_M*}J0J&za&aF7Hb!
zFG2iVViaA={x#LvDPHj13B0W4la`id+8a}_IZ7iP=a-Pn#SKkc_kf)wSuiM$q?1Bi
zhTI-X8rA$)yNUppN!9Ho?8XXQb~pHw$KRx-R*jh{Z>->2%~wJFxHOXs)VAN2n(Y^x
z<t=QDoNW$QpR)aQT)amnO~)4KTX*}?0>;l|jUFeS1$HvRRuX7fhI%@#w0K+liOdwC
z3pgzEL1aFEaN(nL=$H(%w7#|Iwze6VDx+VW7Q%)l1P2?ivZqhPej`7$cRk2v`Bn->
zxY5aT;x8r-@y^VVoy~7=5IfV{tje-kP55p0mY4SgONd)G+Ox#9jz7M?(-Mk^iwJlw
zg`Q1J*4iOn;nGOkEEJB`EELd%*DQYEp6;!Dw{#)-(luLu=jH88??$Vr?Q25HX1~ew
zKrWP@qRUzVnNuhSlO@sN;nKUKxorA>zkfZxzd3J8WHqQa2~AB+EwI$wSjM8Z)zh<0
zlyG3Lc6nX+H`tZWEn@J?Mik7;n`{Gw%HBd<a;Yfqk<VyV!;HD&*QaYY5(#6N2D!2f
z%6`M*&(5{(%aa>%M~!}$ZE-=p-<Qgyj#wFK)P8u;G;;FoC^7LURT!!P&@`)ZC?{0=
z`~7k4-%tI^m!61~K+mz)l(kgEw+`xFWm*2Wn18hE2NmgbKmq4y@|Y_Q_R=ig&UQiZ
zj^Cf!jtE+JCL|3Bm{H%L%>h2G_}$zZi2J>QNZGZTYgg&i5*u#s84>iz*t8Uc3W%0u
zYG95T!i33~Ur+AKwKvSP{E8xE^$<wR$U6D^a*6?sdWSNSYAba;17Pbp($b>2ikE!Z
zXIH!GnA`FTfPRa>Yp|Pn<8zYhFI5HflqX~)o^EwMg+SVqF<6xx2l&+Yr=S{CcRmKc
zpc(_)b^M_`qC*fxy)gJ<Ro@vtoHUqO-F~&v+1R**V&Xz(<pN%|iih&=m~rR)!@JPj
zTylhjbWWpXJMX6=jYXOFS65d}q)>4Mg)jy3S+4woc(FE%S3up{p)8h|8C9xn*_m<j
zT8|4V9_~rt;udT@WDBB5)a^)9jPZ~coghtOFqZ9l-+lRpnL}+s@rijXPk74y;9N;6
zb_%=WU7mLV`K?x7(QPj#`B`<`Oj;dl>5L(vCPlHMJfn8`W`Y0@6fSl^hd5G$js-NI
zNr8@p{hxNH?KTJy11H#NJDhA;?zWnQm~c>)UfC6#_a{}HE<#fL-5wEqddG!xenT+4
zZ+hSuno?~A+${yZTS%3AZ%U$9v)DLQX_L`*!^H@Ha*1_>_QX>F9Ok?)qk}X;9OG{~
zG3J!2@?sy146phQ)x91PB`z%I=2pD#irm?HU?oPL-wZ4|00u#YcbKp$L4ouQZ?{V*
z?u_p-<!V11R^eL#(5y+T!D~-EUe?n33tbBgjyH#I@*x`9UZb3l-cJ5x6&ChC+Zy0?
zSpF#N<5p|fI<G0LTN3LwQ7oHm#oMgG#!ba)r}fMD03F(CSRykplKborzf$xZ6vwP{
z_U5dDf`-=L$?;{|0yS@jl3oJkZKk`2<4$^Ljg_gXLN94XIfRKU&AKP^4n16@6vv!0
zk7PiaY^xk9Y5bh!we61SFhYvhGaT-4>AckxVZmjnG)PH=>R|`F<w4s}UG!@S2Pd7J
zH@#i~E!rNta%@JcS&FBNev&@Dzat~LhwJLnVubq?{p>C#*vNEoE7IMYUAA~~v-JUj
z>QP4OEf%3!{kX<IdLgfN@IVs)`NlgQD4$nxkUA%Fyjhh_HkdL6+9vAlN#aG0fys7G
znRgKEYC^2XV)`t1rdh!9GtX8Av|G|EU!C5o=QD@JPZ3Vk>eYCG1>=+5=!C5y4lxxI
zd&ndv;D_iH`{X<U=|c6-dw7?vcUW}t`?viwLWXG%x?WtPwYG0iuF3rw`L<oaRaI4?
zp*@lK3>bimx%|k;qfD77o=M53R|pF$Z)R>P%_K6)e3nQ>nHd`{+CVWp*HoNjeV!fc
zT796~=knR|8KzXJB08p$qd=gPsm<Vco;d6J^qgf)-2U>0maO%mlxt@-w+32u(JD6)
za=SvCw|}Uo!KYnPJ{>?Yt1259)$O%0UGV+3EAyPNMjPBxsUhBeq|y53@b`mqZhI1M
zU;z<&#clN-UH2&y=5I!PVz77#)h{9MRXw>Tcm=u+NR!ubf0Hj@RfOA0h+LDM&^o-!
zL6A-VOQ4wT(4}WYEHIMQdqt+TzC~tpO1Ii!P6vIY8m_fUQ2&JSk)%-}y@Ihyda?PK
zMOis*aK;AA#jYVxoF2WNF=o`-L$}{OJ!~ifoTqe6Vc6Z<X#))rUqMg*=z>(l$yUkk
z$JdxTOxec8S3~D~xEd$eXqmw3rPG(gDP~r1?9wC#TFa2@=~18kNlx0PSD@0R#=V=S
zI)?#jV3rx8sQ>l@>vKVEn^~D^(2RroAs5-Z*%#l~OKb2=ur8H%OEp!0pzWu6QA!oZ
zWQ3%IW1nS==@iwgVEtQ%kNn2prED7HDp%vAWH~PN#w&sQW+p3jMi0RXH4Uv2KAu*F
z%~r|vvuUM}68_>Q<g}`1%c3t(k3L2iN3(hCadh#m?&U|<nV^J|iS?!-8aO#N_SluZ
zaGul9+(#ELpM_}qrDg-y3#<wbE8Wn&Gyq!Nm<i#Ym*3BMSW)i0t3$1Yw=6v17(h2H
zdhCd(DZRhXuBBcAdyoYhA6%fvn77spzfo3J_WoB=mt=PLP*hN@JL-K-wp(RMGIr$+
z@qll@k9-bB2t%o(-6dL~ZYKh%#lH3SQMW;5P`!V_i(@<9?*@Ht)yGn+Ao1yq);EvR
z7=10bd%=a54_5L$Vtvn7(hdF<2)(nJe~5d?CST^{4kyNXJf5(;(`EH^wQm%V)tj!1
z!Lok3y8K-0YXU|7HpW2YJRSd&@*YA8=3Gu=QjF`Zf<mq))mMN1a4wPJkd#XknPb|T
zWJ5!_#$;z_hcJ8+4IkQ;qfP1zeNS4M&T7D<*L=7nwp%0}|BYH@){Gz{>WYO}q7s#d
z(V>R+KE~IVFo*8xnj6HmIZTEeTM(>W!pxXyDTYtUFS#Qg0U2|1x7BU@bkp)fEfm}~
zOLfLCEYb)kn5FE6PUaUYzphgGk3=XaqLn_S$(6XcxR@|M0T`rabkseTI6OT*UEA7x
z&vJIa4LCl#q`UK+Z?JzRR6w<8mNqsvryD((GmVyGn&scu5x%^~Fen3IbmJQa$;RZ*
zB`&EB;{)sH3OC=x(b6&chKFPNw);!)z^V^5xm}z@XB=+9N^vr@2{OeO39rRDgV42#
zROC51+Znhko}8Xp=6}kkscXen9*c_&MWNl@-$*1qJUn6oW?QeXud!9nwSw1Pqx?L)
zyj;7lrs8{n^2yhKyXToAM@b;~h5uabefw7Fc|!B)c?%`x=ks?_zI0MPR4)Ge_pd7)
zyD{~+clSJ1j!y5zwaT=Odx3c9Ap*gjr5w0brCG(z$*I?1hOUS9^Y~mE%@TP8ySqHl
zYT8?ZZ?z50RB7er<}SSZ7cZ%HzKPxEKQuPx_<Ry}s3>h?`2kftbdpFh$^~kg&0y@+
zVV!{i2&2sl3{}ziIKBlXlmzk<GKPPFv7w=;@qMPuC<!o}9R3X@x2;5Nf5yw5UkKjI
zk}+9><{yH3_sFf}mylbx{jG(fU9_==Jbfs&*rUs>KCCP*a5S0bK=8)P({9z{>Je%;
z<=e3Rb{!2jx+fqYfX%3li+f~1negRxFcqI`_vWjieg4N1W;&zHw)LnsgliJf=*^>c
z6wD_L>e3U1d45Y+zF%aU(B@b1^a()|Z2{ZZM&K`NYu&^oM~6el^c!vLQ`}^;&9N7x
zf};pXaXW|NXhJB1N-g3kgwJ+H4iE^%M*K~spE*C*hH>%uE$>1*G+NVf`j)}xd{SsB
z`j0UQmP7KMtH9|hzvO=}dInR8$yeAsMY1e!RFBC%j*HgGR3EwZ3^<6W=<&GOac88-
zXXxCz6W`h^=eQ`0gg}lby~0~iH+j)`FAW+?1E(mWDHpZ}Oxd72lU5B^`eqfqv01##
z1YoWfoogy_F4UoW<#yKf_mX}Op}!TCSS^%wxtaKW8)?tfG|KLGFl)sbs1(amQWQ#S
z-v&P39-TxNN(@Itye(1Xw;0aAB<109Sk|V+s~<x7boYtRHAE_NfO&>?*<!sj_muEu
z%{WJT=1&~X`fBa3Uf#Qa46ff9_Rv$cUg&2>9LYqRY6eBax+PxkjhM{f+8#rGPsY=g
z>q|D-L;*}fHd6ahhqIxOddoS~H>h4$(QSX-o1V%KpmUeUqMpc2%!j`(ao69z6WBh3
z6S?~yx9u5#UitNvQD&z&dwmTqu*G1GX6fk?M0Gp8;v#h~N&`<$v?TQ_T-(5ffPVv$
zZ)*q?{@4xj7D;RK-W-{By*rUFOw_5-2lw~)Pfx20?CC>2s=rYir@#1mCFZpAwnQQ6
zBJ1xMe`9HE{4eGYQ6FWgW%+^11;!s#Wtpfdh>0(>bZx>?l>0+TL2#ynIhYH!gW-J5
z;osBEzWc@jVK!O0Lh^Q%QVsq&RNO?;ow&l(ms=Cw2AjFkIn<TIZa}GAdX?!qSy(Y`
z5*jn_$^<Kt(F{MQp`SUvhKP!>*7Q+_5NtORX2?3bb>H-G1Hq)^o()T`q^0GLr6}d0
zk@Td6tA-wRZLMjQs8%p({*h5jPAgHh9!R3IjyA?cF{62H8CSlxQ1%O0<3zhtr^S7s
zTNEdpu?^8!`P`(zo{se*E@b)?b2bp+Ag{m>%7tNl;J|<NgFRq^lsOv$@_<>G%fI5T
z3(pTQUG0SEImtK6^#5VjD%6ESJPiB-=C<D1FD_-ydqV}#9EClBWwxt5=oECBov>GA
zh}G8CR0?}`Ry}$Rv>LX6!6MJ{vEoy=1hOLotIL}{f3)T@d7-=4@Id-&cXLI#V*0OG
zH&YB>Pmsu3)slC5Pa+J;d4Dvj2=xZM2L=XaXP=n*i;>LfwT*k4`jRB0Cq{{Rd5>Up
zoNv^)^j}f>r2=mw&fh0je~cdT7qq#<y}l33_ATvUU6HnVoYM!pZ1<Ku-!6cPii)(>
z73GUZ_drIZLP^r_syTfUTRfld#ok1d^)oZEblhGcsm964SmTDv0Ms4f*`^IM#^d||
zmwS`kiPE|ym-6}aaG_DT?Iwg3pjzDjFX$Bw4b1{Q%C$&7hLVzluV4vR^3d)Ohbrf`
zqeN(FsmJX+YLG;yon&YC9D079>MbUIq6Vvc@|<(+j4t&TP;>oSThzlK)51{|$Oh_u
zpjn|x*Zk;TiM`;#Q-ZPnn81)W-BOu0Hx}z@T6NMV=zrVv_0tb#ooC<O0PEv*va(4M
z(vNe@7ol?ztbrt0(XXM83<CfFR3TQ(QQ~Ba?Pjj^bA=QSFh3cEecAA{!|;Q}%3&%0
z_&h${!qXRPtni$n4zsxA=4<C0lX+t~YO?d1?tPAB`;d{LtsAu`w&!WgikG>Mwa4l2
z(zz@0eZ#2k3)Qz`I_ld?wEJ3u_s-{-C~FMY(`-i7Qa|>a%+@;@tfhT;uJD%Tk8)s3
zT}6n~*J>i^w)9^{Xj{D1c2CT0e2rVu)3wT!+Rh0_7rbdQd&>?dj_ATEh#S<ph_uS}
zmo1ms>%o4#xJna#&2pU}qBfgd`1*`*b8c|gP$TJ>Ve5FMH)Tz5SIq(yLhve^-BvQJ
z1lUz}TfD37VIf+b_Br5WoaC7*O<)U4<jTxg$oZ%x%29+kf@S-rHUCvUROE|^unG&o
z9HN`#+hOGlxQvUHmzrU+q{QPhw4;mL<81go!bI|L?k8t0b(4q7==w%jn1fMy*ZE$-
z+ac*_YupM}1GDv$?ZLv$x|<m3r4aTqJDnJhdQWS(1d7Syb4&PI%ybed@*Xfr+b&I5
z!ToIn{*b<nJv@5-`z!KjopYWf5wYr?1PEyKMe}H(rrjP4Gr%rxf(W{Fn?Hot+T{V)
zHbQgTL=a0L%oXR|5hy&FEnfT9<7^50YBa0WuI(uM%)0;LvjNrPU?Df@4nUxoIZ$K2
z+Wd|+PslBfP;`0pU`QUBpE<=`7aZ?7p0EueY{lf1$ZPR-xfwn(uGWL($36X+H8d?f
z*AU4N+MQ~=o5U~454ncYqm7C~UDkOOEXxDh++ru<8Bw+plu;SF8dF4(*l+udhIdb@
zTZ=5nD0zz`)qBZT>JJ<IL9Zbbw5ATm_`U+artEZy#dLF~OQrCiAT6fov;p?2vYx&-
z+5O|iblJ*Bbf2}4FD8Fx!QV-FI4->pGO$WlYE92?^Y}ru{{9}~_WQvC&@RH$Qm>m_
zWmrHx3DwK@pO#L_Ntt5g@;=)V^gOCd4UCQB1}N-;oU>F7zI_ngGZ&lzFpp~2c?UQO
zE=~GhV0KDQFvCG=rU#0AMUK~RdH{~G^K?Ka3xQ8|1l3a2ANifP9CR~20vW6?|ITvG
z)x>615l^)|i5YktQHWZb?J2-)^5+E)j;1BC(Ia78UPt9K@DTl&!}F$}me_$FN$s`Y
zVfpO<hmj8Vrt5VNLQI8`Y}-C!i_1Z7TnQ$E&o$5ht4SsFTw#YtfG&h+o&QKZ*<O%m
zjFozkZH~>1m@}8H-RdbXKM$6kSFW-I59$sa+xqwC0xB%=h#V_)jL^Q^1V_i$nWJ1U
zh<I0NrqVm<ejvU%S%)p&cwcE|mDNU6BzW#lAPSX~Y#x$->BdSOs;^xJLu0-o-HKJ|
zbHDtxuDB-<RLV)udvr)+(~*)Jsp~l>#QGgf9IIJ{m$k(>=Qq(nAWtZ1YlQG3$fr(+
z2Y@osXNX-ox1IP&V&(pM-mB;5&=W>yb6LA=bfY&v9)H0YNboQs!|!@faXr+}qT7Qi
zA+r*MR!%{s3^_)`?$X3*dfu6jZ$ty^IwrR(r_S#%wLu<*f!&N6A$k?avVqiHW4>3n
zo^y)H2OQs<yjgI8Uu1P;IgoE#YO?x4NyGlLKpz(`ve1Ce<=LvVTr#c@LJMK1X^Lvx
z7UAIK%yjo-h?3)Lq>HY9ngWb2;Dd(Sf^fsmM@y&b>={yJ7<ap4|371luADSmU2ayc
zXG~L~q-OQBVUY$4rWY2#hfmIPvUo+fJ5>FsKjfnF_ib;_r5XG;sYFs8;AXAq5HkdW
zsh*jMIURG^Z=~TY&IXDd?o4o78!KiNuKU)e-ps=NvU!-AclY!56-x)lSij^z`1?4J
zu^347eYLp>4JGC2tBR0_HcOWuX_Arrjm;l4nCF?O2oP>dO@IX}P3iPfN6Lzqijk46
z;LOMZY?OPq{1%NW*@WJb@>E$_*+}#OPS7!#ZoAB`k~^<0+I1TB80QA}H+(kln$g|*
z@~gJ{K=(6O0A<^bN+ed}!1;7QH96<@A%HWKmX3}_jR|ymR$iz+w8yk~Z{L?Xuhp#M
z>o~>(xK-dV|6t9Lsz9yN;%hv&vEBMofYLu}n0fwaQzQ&?=kslqJ}q7>NlA9Y5!C4;
z^}V%Y){wzWnZ0b=&<X4NUIW{uX4t%OF4U9sD$5nFD&%>4@|Dwh;Q2~5pwsU%xx621
zu-NGHXqsQbA}UNH8xD3HY*)a3_~?y4#LUviZyOXcjW;i7onKpQT}BC`DPhG43D#PA
zngA@){fgDUUKb&%=t#tZ!i?t_hP|x~|D`x7C~%EHlx-_T2qA#xu%CQUOi{xj=*&b@
zd;LbOkM|KTTJO_ymY~M_h45M<x)h3W_jS>-_jmEvR)TWd*&RZ{V}zx&ei!?>rk#!y
zLVpE<B3|bUB3A`+kB|J3*?dd$f{Ry}<c@sqQ(>2N%muCYT+IvDI9WZVA&=IdeJ;t9
zUs)zz?YwCm-JYwz5QqUc#>?_%XKyD$7^%W^u3xNaot%nFD|XuEeWP24ui6)?45Whf
z9af>-Y$iyA#JY2RCUND(*8G-R>Ni}{C7XT3oi7ccV=GUyeb6qN6d{~riiKvzNjbID
zqM9lk3$r3Mi7ItqE6jdUW4V;Fz0O%>tAXG^`c2w#qpf0}ctz&fv{^?1(cG-05~x3W
z$dJnQp?nOxe>5g0ronvZXbBWw9Y~4$Bpu7g9NJ&z4G-ILwmlqd0qYD_&?qdX<fT!m
zByhyVt>Duu=5aVK{-%nItX;{cPj@|7r&$!X*=&Wd7MpU9Bv}?~ktSaS=QnXNtgO>P
zkpA%PuX`Q}7n~!?i22He9A}BF5F=$lPKTpWM!K5(y5oPtc2Daom>-FB%=)G+9^N{u
z!;Z`!k)m9*>iR0fEj*icy~>WM;riaZjI6B|wAR*cbVS+HuXK}I92><8Xp5u17z3zA
zDeV~~Kna6FiwKjR#jXBJJp4HYvOsBHnwFcBh&q!a3FV1U@^1R$)yjt*xF4k?f}fx$
zVL)E6uFS#b=>@VW)bUVv_iyFnv|jP<Q-&gX?YX+k-Q4pX79`58JQ|3nxjPc@u>ZMS
z%YE6l1EWc0HIEQbyLI^S4n>rRmxUz;&{i}u%+V91S@d6?4_06*dUC^zp2uPeRcA_`
zk|YW9edrE_AOv?dn7JKi)tSvXwwKz=R%^sf)s-uX$+ws=yVk8$DK3u%%`OLv^hS?N
z@iyUaMEANJy1YnYrC1&h%dMW-gH$FB7dN+J^TkHT)wZy!K+Ek3Xnaa@h(vsv3eHF-
z(Yqv9UOQk;C;e&eep<2QlT*H7kjMnD3nh$;`lfR*mhD_%m%Fi;YU_yIXDug_bWSoH
zO>wbqh^@OXs>_{8Pi%NoFtzIQ4ti8NGsJRYGJ6-fixqE^tZW89yg&5wgG(urp9yGI
zsK?9`5@_#MsI|s`V-YRRrbV;lHKIb5wmOfmlKn=Q(n{{CRm;W`t1LKok^2Pm9d(`$
ziLGkCf4jd2h0O{j%}qk&s!HQ5y7g0bjh8Vm8*Q1>0QFXajd~mV6wDwV<Vl6vROZ;O
zR=IXfP3==53Q{^$m{gNduT6&47K_2CzA*HiE^i<x*CLKuY@>wyoac|I*T~WIPGBCH
z&^TXldeISQHe#5L!S+@Wz!HDB;Mn|>HWX|3Y>l*QE?xwcDPPpHJdU}FfXJ2yWlw3v
z9c%8JL3JFPn-`{1)d%a4n;L_B)@qG+N+5O`kA3A_N2Ap&lM1LKTXLFhSGGV#I`h++
zi^2f)1q<Qb?d;J!=0&BkL67rk@85A&cg%;zAJ=}k!j&QKt2{-CdP|5tiu{g;Um9#g
zUCIll*PBr?-U5GV|5(>&6@^ZgwRoLwB;$Xw0_u{IX1_wiYO<M$vVZyWIN9EH=InK8
zOw^n0rGMNn!x_HJ`5&f9CFPyg@|@_1y3{O&(SXPkQt0(>LBBMSgP)RfTEL|{JUFmL
z(H3sKhja>lqTAj5&G=)=M?vCO`hq>WIxdm)G#Y%aL!B*lcgn7|2RZ8pN|7P-Ox_l7
z3;#EF(?5vre;hv}II^`x_Hd>DGNWtbF9W{KsFtvG!8o}=9Hm)?YL}R>JJ8-vV&bs~
zF6yJxTcw|rJI_qB0}MjIW~g6rzc%6})yTn%nboorC&X*yS;f=G$erV|Q(<sGnB0<$
zgZubBql$11tt*0aNh(K+HK+P}3CVMwChFyR65SPnzZTvRz1%p0O>uAh2OZ@^?f)q=
z4F@!aySZYL^=byZ9@e;nj%wUhr@z~&M7>V^#MiiRuNjIj2v~;v)~z6cEWiU$hBf4q
zuRL?AW+UWLU1wh2%i-iK{JFc5rjf%z^ek<tmMoN#g@SDYm%uinZR%gN0RQzuW<Dgb
z#WWuH91Y`j{n!id)CacD=>sYCnf?<Q^sk;{s_h})KKR(lU-C!n#Kv{iEyLD-e|5L?
zEY4}kFR;yvfcMLSJQB_NTN6*|6uX|)MJbGd(}!E4-JmgzyN5i{z~|?YCOkgV%4D`i
z*IOWMZd{T#-42WWFpltx7Q#_L3vpW1=Vb#cabfLfiQC(6mKGY;cz>ez<9?T(L~a1D
zp&^@v?p%~0N7UtINHT-+Y^6qY^;XN_Jo!%L1C<D;mi<;*=&W75-A{BJlz@+~Et^qy
zGdV3QwQ5H-T~@GH$nQ6vn=(a*^C@x`xV5Uke_n33*9&@yx_8Xj%*fyjUe3t)C@tMb
z*(i9OI$?|Q-`UBm66CC&tC;9GDU2u-9~(k4bH8kah`xU2t3`)-Tl-<dlfAlj*4B)K
zdV7Y!#$VOWXGi;|*tqVM1NAxCv>ce5%exv!Or?2^O-)Ui`foki6-TD|r)D#=GMAQ?
z>g;{Q<w@n&86JN<nm?>{Q1)g$Q|3K$!BfMF#^zr`EAxV25D3p6U#>;j`0(<is+q~#
z(R31gR#Pi>J9(pKXQzlE(~16$4zX1kweu4G@Hu9#V(kgMrBR0Q!)edPEmyFGg>_?@
zV-sGV3;4#$gF|1$9^~ny4Tn!#^w4DG9`lT@Pe`WiSUgog2T)K>^lo&WTu^u7(=G+{
zE`2U4L*<((v}dGg>K6H->DjxV@e}`j`yr(^MV;PS5PJNBc@$CS>T!HU?nkenpU2t`
zpP*+k$oD2mrFUE*l&2;V^=&JX$7f?E)myAq%x?B104umHSc^v>I>D}!oHO7Lo~=T{
zix^o`e~*VdV&9$iG?f`|Vqx9SkuQ2TA-F^DY%O<(Pk#O@aGf8F|M{%4b6}hHOVtj2
zAWC~uEh>YeP+5C-ye8x-AApycnW<-xx8Iz$>bja!$SokH9XWDMeVS@*j{ykul@y9Q
z#L1knxSQn<oT=1n88;&3RRqc;w;%^bGY4or+kB%TEDFf^MoZ@^adUMt+qk1Icu&M!
zMs}kBy?OVJ8khvB);!Q{cwKucn{z&vcfaLR@u`tN&#@upB$rg_wRx~>KvgHPFg4M%
z|3&-2EwX#}S$UrgkvF&MN{@};KSgGKK3$s`biDJ|u^#qF7l)ZMJz$30;bG5oWAuHW
zgRkG?>-aIEcdtp2WZX^N`p`OyrM#ouY=%Bp+gXpn;S{D6RS6pxFZ#3eaLAi$0;U=3
zW4K}?A%b+iDpS>*=)0ilF*BACQp7zjGZfXk_1OGo7VDjCy)HL^&(D=}eJOTT*t@vO
zs1b5C+KMg2WZ4_Y786JZ1BsFpE~s&QvayiSXl9f)u3235u35xp{a-TcUF$ljVn`RI
z*q+b8T&}G43#`!IyFNvp69HCoeLOD@Lezm$$<kIPR<bR?<zMRz@{y?y4HU8BBi!rR
zBp$z27+-rofoNS$bA3IZSpSV#mIRzdop|R!kux_4Ac+LVq@%~pun`?QJ@tEhn2!!`
z-s2CAfq$usTUC)oerckOAIx&`ceK=g59Fe~_b0)&tP;g}w)WQNvGzZT5L)}-x^?0@
zz^1E1`0m}Ie$Dq*{v{&M+y)!B;9rO(pVx{@!)g|^w51nO%MMnj<gI?=`>krQcfOu~
zrd$O!HQ={KBNCkRM3@zZeXXUh#*2%Kx3;!c5(P_vj2lyx;(pPm+cLU#e(w+oIF!my
zI}~&G?xAUj_Zmn|*VITI9tt7%q3h8=;Q3XX-gv7ud*+#zzpS-P#d6;sZ(OxP1xM2s
z%m3*ou^(OWF`q!0DH)k(96P4Yr!HU?8X5_v<PzGpIDZ1RWO$|ZK%^{j!*s~sKLE$U
zOzVMDxGI>IhC2>6XbYxJ2K08<!DuIkFSdA}!PWpgQ&l!hAuI8IqE~H_uIW><?26s_
zL7uR0=|jsiHF3T>_DoH9Jm;bk#uFi@n?$S}DXybSFl%5f)YJ7q#7h7`mupnNp)Ul;
zS@xC5_67lu-|FVEmqYbHM{K~wM%(mWYoO&U%S50-Vuhmh_rlSiN(jpw?~<h$9*cv=
za9#Ved&!C0{R3yt*(t|(?Amkq-uCta&8-K0^{7#UQoA~HV3Y5FF=VD2<oomwTuzK_
z4(YtP<QzS~+P{Gycr}%<4i}1i1+hWG^@|6%G>ah@c^u|osVakJGhj`XCgIVXi^X(W
zs_*gSVC0^#4a8>_(Nem)jsM`^D%gxo((+4_f-<5dp<GW6kRy^6Alztcb)f0sOTmN@
z>uAQB+a3$p??&3rK!A?z>OQ)Kn%&GB>9xX=df^_nF#8i0AH1}h35~J?Wtf_-kI(W*
z^-M&BJVXQNe5aIS)Y$Emh9S}p6q~vrXC*AJ@?{Y@xl)yd{I%K4gsL&Xm99(SQ=nRH
z<-qS(iMmjIPzSdo<&m<W`~Gx~@^fdqzKKa;d%NfoHcA_5>2jAoFr$hm+~1;R@laT@
zFP@T@{igf;H%V-%cD>2^`g#V+i%-x`eC)0`_e8~IWv+br0XvekcsDmU0K=Ay>R11e
z&))AjCI>i%$zHMm0Ki3M<p5ct2~ix}9F&Dn_?KKvC6Y|iUnL)%A8kK6cPgjk<lKXC
z8Ghk^@^#Ki)gpfMtooDUfBg3#KI}PWqddOODc#lxdx9}nnGHToJ3Z4}pO&1hwErjC
zH=EDe!Itm>asCH)$oo(IPo$^Ih^M_P(a$_u@pXywYuhXPQKOsH)V`??oCX>GFUX+v
zYi-!!jPoJx(NX`LNz_W|>;Gv3@86Ev6+`D9(#ylXI6rj0x(j22Sz0|L{s#oOv=Dv&
z18@Lq`KCOR4+5g4lcU7kHDaexUH+uRx~_!J=5N1S`Eadz^9Z(4R8;g9$}6xlHa7l@
z^7U#XEHt#f=ZQL2ie}bdeW(nv3~p2{k&BCqvwOG`3VeKi?(IUm7*$JtJsKJ+c|!&N
zf0Zye|9_e=Fv1FQ!CPjE?G>ThiNbdySF0}IMElvh?U$_KS_N|G5+&A1B~D%6v85+B
z&uOzf&E#4I)Pgk1FBa1fikj@>#Y_04ZpoS(DW^%<<MhqdWi?|O<nD^Y8qCvD5$p{<
zV`J+}VG$oQsjqcJ#KFGSlFVw55jn=ZN2tz?KM9j5)iV)ru>D!N)c=@n_~ZJgNa>ts
zB=amALccf3zj$x%ok>urE0|YnuB_jTgOjt7-*snxadB~JDf$~VB_$;r8(XM270%mc
z$JG^xyKOTwiXSCCJ$)G9k?1*&u|30B(QfR_Djt6Rh3@Vx_*7Y5UY>M31v$6Pht_NB
zxYDvR)0eM*9)_-U4~v}`{m9^dX0$H0htjzOZD;@RKaXdE3-Y!DJ)!lvTen*ucmloq
zPt|khYK?03!3|X0jISBKUUf#`(<oiD^$TbL;`@rU+6ok&+2e*ew#Q0csZVQ-Jw_Be
zm7zx8W~X2Ov_mR(3^;l3?Cg}L$k49&yA#xultct@vUBrt-=tZi{7us|f!IUd;~UOC
za&glMHs|BK4Kb;Ie8A!VT5w&ebrbmh`HiK2`D+It8)DY{{Krpj-OCNzL(E3Yjdm+z
zwUBD{o-Z~f;t~p|^cPU^65Nb;)`gX+Hi_o?f@5?`&C0MZ!w0&VVz073sFzRcvuaVL
zS8_u}GT$jSrRXwhO&UFLac?d?kZZ0&Pq(AB7SXVs8BI#I&%DW`sI(%6HwEtgEc{()
zH|Ysf%8OA@OrM0oS4_m4T)?a+3a?*=-na4|_^%B;Q!*Y1h}i&M=HZlD9y>;IW+r2z
zj0n<Nk#g<)X7x!Q4!Y}r1_uTiR#GSS4-X%@=BH#D?71sVFsD_wV}op-Pj4<*jh2UW
z1J)Y|529ZFK(Kx)dw(Sy&%!yzFwbpm6v=6G1sPQI%hn)d&B4j+-d4An1g2~_jX6)a
zAMo55J-qz2oSM-Wo^R<ingd;?|6N=3-MEW3KCf|+9%P?qqCuj`$f7kFI8zHnm8#a~
zPbz|_fqD*Ue0LE#{FmLWO+2tSsRIw=paaM@v+wb;H=-7zp)g6Q7`aUS`FrQUbd!4{
z<Q>5ADa{>dApAFfY?KYHEI;4K%*-t7u^LHP<V{RT`LsV%<%ps56MKBE2?PQGfin;F
z>0Kh}Ss(uM$Nm7kj}&b1L17hy>aQlZNOh(GT0eLeBmUt5@@Ssc@jDVdxGxS0G+6_F
za9B#f?Fx_Q6RwArD$#^5)1hG=-ny)2F`p_dr#|@R>%~xvn{=OmJv=rHJD!{F;x0aS
zEjV4L{R_$6_!j=ym~Q4&?J7FYZ=K(?n1LH)8tlWUI6@4=Ew0wBpX-f6hqJT(=r5lg
zrNd`E6w0Nq(=>p&>sY6nlRmwCa6cy`@6yrHnW(kPHMTOFtmnX9Gb$j$ZVj1_X3X~U
zOC_lz;zHSKaU_*Df6%I!&?c-^nT=Bsg4}<zZSa~MCXyXco*KT2!QK;gxP70RsaiN`
zr7jm6)<tx}7n9~xsmW4{mlbWMn&d*a(5w<5R;rkH?{}0P>*BTeH=EN!;h2oWa{0PW
z7>yO^uuq++!^;Y2{m?Zb3Ln7D$V{9cibS>DRxO<;WL<2Nco5E3&R=PPst|dGviRl|
zb8&O~Kis-M_fi}$gCzpD>#I@P@qElD50VW_E_6$@SeBk^S+jG$)T&f>EB8LMAIEi0
zieK#Xh}jT4D4PPB>sc3=i;>HU;Y**94xF|^u1@(jk}P{1C0RpbE`e$#suO=_Vi_eZ
zDlae!#uYyICn=B+B$p{z$&B&4?xr+v>Sc1CGTJ2ebMZ)JE@^`D+Tz2uMthWHiLxR?
zgiH(}sK*0W2<2;lT;|Zs!pR}-ga5_W0KT&F*z;?3Y0O$mp8rtVDgJkPA3I-NGq#Cr
zq!csLk7SF0)5n%k6J5i?sv%@->2l~QLtfhuzP{I(*?h&G*ZyS?Zwkju5!a2HWMvJ7
z0+KlFFa_;I@sxKZQdA=e6;{m^Q>tnj_YFs=`Jswg0@fXxFP;$Zt!AtTDpV`DBx=on
zT#qt}B}>0%P(RX*Vvtoz{Wz;}Hh8NUg-yX<?YrtMmj}*n{I1r7zROvAz)twE>3@HH
zs+h&as9ugEjMq%CHYZW5?2|fan`&79(e35^hgGf@FT1uQ6+$6MQ71kUu=o#)q_onz
zucr8FxcL)S=rrkr3L}zk9|ws}IMvi{EC^$y3h4a`Q><>Nr5F>d_|nqEBfoh(!OwLy
zm__6AAhZ=q?K`NP|5tnG8P-Jmt$Wlzf>aR!0YO2EfPm7aDu{HH4hc<q@4YKXQHt~)
zqzfS+9YXKDgx*3Y5Rgzp59Q4JzI$J%?6c3g&iTAQPcm0BGtXM<S?j)kvvEN)1tKD)
zpIC7k8d9F5<CcRa$WLC#^2rc%U>=1c?qf3EHX(aP`VvzQH%`s`j=SD|r{?Bs6p?>H
zeY%B^DbjrZ{yklRezqwpBqRg~@2>SrhXr&&<cL5%KqFM|x;YGZSrNp7PoD;jY>uQ0
z@9i$UF$$$2xMf!6=o760)kc&*z0%O(%%=F|NAE%e8cDFQuqduhi#&2G65!`%O(f&Z
zk2_K>(&ria0j+ZDRA||LA7%Z3t~D;q@_qE9@>k_YQkbseA_X)xn%IY~+QBIGK?KG%
zfdr`VLy_jAB3fNDI@Y_tlFZh`XwiF5FVcSjMGd=ZMk~Y1GeHDbykXW6=heyIDJHjY
zVJ(&LOg~yXH?FT`QzAU_O>2B$2X(W5r?s(-jUqv2=%&c4)sVdeAaA8*y46`vP!c_I
zzHL?}<x>ix%P_jO|8nZwe(HsjRIRzj`W>qi1Ua4ps-@{t1AahGwa+L*mnyGv#wZ|G
z>0Ecd2lViO)Xb`s^xGX6=m)y}&GR7c;P_v~Qn&vz71h5TNWo*Wd__X}=+X0mf*7d*
zYw2vKwlDY~dm+D0>ze)J<12SE6g@)D4?UI-D5I{w12QMB=g*%rGk<|yk_8mqDQG*N
z|2n$oHHc^YaG`ieuVp|N3tPej0S?ZW|M-0W-IRN6RwP{O*mAxocdnG<%Xj(SPIjc>
z2liP_O7&yYk^Ke&f`(cc9ekg0zCbvq23tRP)TI>j`}ig&DqurNn3(X-6ikf+*Hkv!
zy=OLK@iE8|Aqq*gONU&_=U-5kIqDs}JH54uw_hmZbZxec6Z2TmsibP!udbLx{yE)|
zT9I05=i3{;W0*3d`ylSHz^-`jeR#2S=IFWWrbD!7pszbGJpUSIV9;=qOkrYg%e8#Z
zWg~|x_S5H5iBMU2M%lf9JRIyvxm8*KatRXJkyXp@($@YJ=TL^-DZu6Ru?DlNrtl?F
z^VrWfTBCkkE5#TYO0swjlg+s}s<dDjzFf!|vXj^R;mZi?;;$$*F`lt_w>}okz{l(u
zPeYFzuWm;fJ-h8(s!xp)s(&XQ=jUubKn>$<(jGQoRM1hAn5#aK{_+X9*D_B<0t<GD
zL)}yB0&hBbI;ia|(|hYHX|)<R?~)SgD)%P31PD*P$TCYj(O1SK3nyqWHlFL6tzg#%
z;HM-Wj{4PeqwXCx)Yyd@_nik)n-+IUN=j6;$Z1OIUrtZvw`agKM8TN}C|X1{uNubC
zO+>ii#E~79kPc1X33?rx)~miS0<6eZsh{U1L+K5wzl;{m7XTuK`1Q8Pd4F1LIYT!J
zwBpfnu8WJ(FwM85<E}_;5zSd{i^jbGT0C=Mkg#K&ZzDEZlfM=7E$&n}#7B$llno#o
zdeLdv5;W**jQb)ssJ!CkJk2Y1J&)SBn*#>1+THmk@sR_nhD4SL_Qv;#OD74pTU)*?
zU#5caqd^a}3sq<0)IP&VxTh_nHLwn0Atk<Uc9aTr2JN}r_Ak_P{8oX{$ni$ItYQmo
zR{!H-@1ZPyPwXN#mrmDcaBwrn_Jv-E_~=Xhb|-Gx%W(y5jGu{io_{W1BK>Sn<X)47
zi5dG9yoISJ4P4_eD_T^T&8DElP|wWA=MpP)U`I<<PfN*fKKiqniC?_wTKknZJ&KKb
z^>D)_e!;_nw@mW6VaqLp{I^ZFg;)O|4_ne^ERhqlLp%~*hZc!GdbJ928RXF=EW#sH
z#f3&YfwE7;RZ%XqpX+5WHY#N$;E3+GnOF0Jbj<~)XLWusqU~w?ASr?`SoVS4a+my`
z1}3HXPt&}18GqHzloEVbs#>0}7mIvvZt=%J9?<;Jv@!ApLEJC+Vs@cE43s_8_fqF7
z-|(09#RsQT9i^nv;gm}gq`V<@F5fKw65t8;ww%18m1u5T_RqL$VRy5XDZnbpq@bf)
zb(m$d2u<c@c#@ux#^%eIWdVsj;>`R})j9n@T7AthO>@txa>4aDw3;-`>|e?3ckaST
zzImyo{!kbXYc`N=>GPbQD0<XdDkzd`Dbuj&Y>h56+_!P#Y-(vLEVIPFfpnI9K1Z}o
zhDBQ7?zBF+L-};Q<jIAH7kVIhuF+eHGAfRrGBm?cFjvRA=9;!;0(V+@U<_IE!e~xy
zajgv4x|bk)CeikG8>GrXc>7sl6q|wJXiJUwJj0!uXg@*0n~rN)8+9XHTV$v4&9BM7
z!Wj$UuvBo}<u+~b44)Z6*=N@s(ehKTTgx%PR$5Ow`v><GTR_7dK=9tS|JZW4y)f60
z+~_Z+!KKeXQLPmQ`hN|$|54BSe+$w7yKnGA2PvL0&#rocg)3CBzX@v&y~n$iO_huu
zx>_LN{IBdbY@3|{>(xH*CAuxu!`XI)ne|JsZ#cKBL2^&b<JVyZ`~K@;1VbAn(Ga@M
zmyv1qIF{X%Y||>cb0x?VqnZ;J)KH(he&`d+bjclXt@X#aPwGcs%NRKE@U|{j+KQfk
z?7|{C8h{k7q@whqK(V4%%W2b2s@7wT<h$oEW&<^cGOK9L@!mpXP_JF`o2B2^VvlT=
zJZvUdL6S9oDe39BVcedJWos+?!%3u`=g~Dvi@xrin0I$g^;#22dg2ligF$a>puI&S
zrXIz9?A+4HHW_vlb-Mf=X1n8Fc-$~pAqR;lx~G=lAZDRFKUU@A*F{+7VQ9eqelT^A
z%!Wpp9>$lj=zzVtGgUTLdeuv{zVWu>R)z{Y3ufP6`ttUr_T$C|?@1pF&K5ae>!ReA
zP}s0@!5?t}2&3^nnV2*m-(B952c)F0UzaDwSdAz@h#AY<rR$ths0b>rhfU7Op4xdd
z4?I@WO)=TNX3`?!8&rW!MSO~@noF4ctTimW>s^?8K1LEq;Bqk$fav-vBbZxz%!3BC
z`dyAk0^&M@7^{Z5(J@+;cS4Z{aVLTdg8-SQrY&}=kX`Vn)|}knNOG}X?9v1}^{768
z)y3Ioz=9^N1%zy>V0C@20^S;89LTbBs<=40E><&L&;B%+kebnEk8y7l$v-|8JFPvn
z`pCC!oxVV$sJY~GI{2u=BV&+Aa>UQ1@1^y{WabAU5jFGgJ1`HoM1D)vWRFrC>;7D1
zr(c++`5z<kMTbPicj2U_>3LCs4ccA&QPXK7ZZXFZdMKlB<*%VC6#@X@V|nBR*dEcM
znkavMbh4#k>lAnF%cD7E<Ei8Gl&6{#&D9xd3+{OAuQOVq6}G~g#7)9DBh`vv8eKBd
zuU^S8$JN!+xRGz4^C?su3;2H5WQ!kQv95ahAZ`5Z<IN!pQ;4`Rgpn6i@^MenpHIuJ
zQ_k()Noc6koOgBhSL50-SGK6(adTSkaf$9SgJCK{t5mL+L-wrOQa(Kw95Cx@{XP>J
z6gf!X_-y6(+a{ggMGDT!%9G?Y^HoOD18(kpHPtKeC-mAyhE1WUlV)LpAKBSrT2OZa
z#qh5po>SF^Wd_|T-{xvu3n%$h<L0Zl@bG{qzfbdYD4eld+iFh1r0!i{iw2DCu|ur*
zU<Zl8?p!9<<j!QE_gZnOG^7tU=zSb&TU|~}UCm{R7)3~nxLhBdQ@9Qn+IHABHtk+W
zR!iS#*=G(+O>XQNoIV-JkZg*M;Hi~tUD>&PIJ}!e6sYCny#{aIO??q_2l3l~lFnX@
z0CVT+Gx{O9B52xKGg2mI)$UIIq*Wb0aSsxnT_&MaKA<rHX*9?$Qo@!H01&DV{x||#
zbI~o2;vWOnvapT)>m$pKTX?#GXJs7=95lH^G#nHUA8HB&W;f`UgEHTM1rH+$Vhkfi
zorOB<%|4!XLm$e_3EK%l7a%r<Z)J&b8BGtVBz`Nlg(7dKN8SVRId?YS$pjpLQ{2Ck
zTqCgR9TpMd5*(}=3dCh*WrS)rgblM{BZe@;v9cN^`W8bZ8JB>7g>_i%0mnnV5_*JS
zUef?y;j1C2aFziCxmH9OTV^P(pqM;9B<X)(b6Hf`HjEz(Ki`DTN0e4OTag-`H-~a>
zS+9;gp>$}HO+2O3mTGie3`gQfp%1MYD?A5Ug$ds9-J_jt`7~s)2p&c%D+R{7!zz1d
zIwk!Rm?y7TV~-TsdcrC3-t5H$L}PVaeWY_Y%yUq+RVF)2-A$U;__bNH6@qwpy?S-G
zPKo<&Y8}5bcS|xWRQnY^6$Gl<N0I+n5h(tK*!+8O``>AL{}YO)bzTk6Wufbl%l2yu
zv&@vUQx=`rG}XL{XJGs@exPCHvhb(U?DAe*Y5M8usRh&1m1>1D8#}7yks~>R%_w@|
z6AaSU#H4-dR<q1shPE*|YD1P!z6uw{H5a&wM{)&1Y)H;ZtstrKCkz=Hg{q{)#DEuJ
z>C?%dSzuHy)%oOV^=TyVqg!>ov~~-*qxJifB2OiDP=v==cQ9|6L3J7o)ff*IR+w4U
zdE{HVl@vd_n(T+W<(ITQ8)_dqB7=|TMgB#jP{-Z!H0VthXn1YOFNbY&Yr!84Z~v-d
ztA512gxQ5BmK<(LNq~l44pJI?e)t@;w)N8|KOO&s&~91tcVTl>FWHglqmD3z_;qZ0
zCRCf`2+NHqj>+y?UQ^i^GQxD%NTgmI>Nu@E(}qxGejhx^om=0_XfZ52;bFZ@&NNLw
zQY~F<v~YFf1m{9Z^#fD6oA-9>bJF`yb#M*_{&U9=4*{E<dGhV+)@)g5{7lZU@ROhe
z%^02c2A>9`v{tLP90CmBZrfW(N2d9I;Ym?_iO-;)eww{AH55y%4QZq^oOBx>{7tXE
zDkfmuK8STgzlkA(&AA)ize@Sx%MBJVa%Yac<^-1u@Kt46o)v3+$h8#moMau^fTh=z
zKvw1~{>6<W%ie+He{ExMk&|FvpS_rix|s`zy5E(3+nu0Tu(;2bdJycie9lJ<-Xk=q
z)jPEy`z3JofIE(e2U!YfX*50<YnU(G*>?0Z(Fi0T+%>NC@{yOzDrJ&rc;fRm>2eKG
zV?ST-Yt<5BPe6X+IG0{pXYsB<wTW$mPuM>3j-0F)Tks}K*B66Xc{^lnzcD%m3*H?4
z(yD1?ZK|T-dHToD0b@_Tr12WnHw0;2E3*!Z-|2?e*OxZLp~Wg1R(@?2bi?!-ocj8Y
z`Eej{_{biTiuP6iB&_h;{d1%}24XKUA3A1eVNtMWP_g8M2iX-J)_b|r>w3lR%x<Xb
zwfwpCO)tE!$#E+*A1%{e3imXg9Sg6=Ko%9=QA`w{FI<g8j815tDK+}9w=K?=agyrR
zm}rF`Z!2au%xdGEdEd`4+l`)QYW_O&4Wj*4KB9G<^vY^>vZ<}{c;HStjg7YNWppNj
zoj_>#Y2S4l*s^5lX}YFwl+50iw-%9`VW9n0FV0-L_C)RBiO~l|gge2gy9CfT1^KQF
z=9qr3m4)b4;3kv0+#BjS^IR0t0)*WOK)cAdVM6pq-(=XL>7*>k5RVZ;XsFRic8u_3
zooCN+2YVHo-*&Q}6^wE$PKt43sC>oAxqba+T8E{{J~)tV5900oXDRF(kN&HM)7^Cz
zlO?A4m~SR-D=sJQ0V8r)kUnmy#vU?~K3s3^$SzssHV$z|TI9JcRJ`V#M&|D1lDk{I
z((t@ZAgDBHc$~_%RAFvQb?vX-x#Xm2fm%IiW@vCn&p5AcEA4oefM2~pn$Jv8k@nZ7
zJbRAt!G``Kg{Es`^{ma!3zl}pj3k0ccXR}M_eQy%XPnSe+}Awb%egoX*YO<bc92Ov
zb}%UP?D6OCY4NzX*jVh!6EG0Iiy#ndXnd;e*FAc`zLuJjmgZ#5B>Ak;$32+<3nqqE
zA6QFC!<xVq@_j!sQA$E-3MS0;?mc6Y$9042;3M4C7ks!4W9bVpT){ZV(Y)61=tHO?
zRk6n&O0T3DQ+zjQ@AEPX>!A~*v(mg+Wv^)C$n*Jpg0ph|t(=eBj$x2`w<{Z`kHYR<
zpl!{Kn>4{3m2={&GBsA|#{(j^taS0WkGbxvH<&K=oRaJ`=Pl{`JtUxU&`G1AdAQl{
zQ4)>{f!{CEhs{HV2O@8q_ik{EJdvUkFnfEMG#jD;@x38y*uV3{v6x8B_3TLASCmg9
zeodAo*S2YU*Z1xdA0CZg3jQA);bVvP99N=aJZ#Y*q-y2WFRQtsEyQ92vh>ImJ7uT5
zs~&@LU`K7e?GADL#5#AMs?zuuh9PhRto<sg#S7tdJJVo261z{-^C;9ik3&9rELSmS
z%}~K+PY+7X1Fp6)4pUD2HsD%plzN}I$4^?d{cDt#ZQT(`hCMgRHRZH)#!);dPDO&A
z%guCi4IQYpzB8To!e*obymix?8}T}pqUWxg=k1-l-029`K%KH5kkXY)x;BoNl`|60
zSXk<O&m5W^Gxc3aTX5m5T+`88dIf_=P)}ymo_!g~JR6ads>GYJDVw)Qo+!h2JS9+3
zw@$(=Rnl%4_<sG-YSQdgabkw^#^vQ#`fjn3%xk5E&v(zFm_!s#yT%)d>vz7F%atj4
z4AMIp+^nZKa#d2`66=-YjaWuO?qKikh48P$9Ua_VMI3!_U%#<P&7yDD6>*lm300iT
zEY@9`VmiVd@MpOu*1xD<#WY`lP6JYG(l&z`3+M00aU`asjNe`DhVq@BtwVO%7UV@=
zfBI9b$8B1$RC~auC$Uq?(-F-mR=jgG9G0Hr{R@@mkg*f{@=yUxEFDMwN6@;(V|bx>
ziq~9G3-k?>+5sAl+vp+m_E{;H_RQs*kKq(#60*9O6Woy-JG|MBqmm<hUBg#xVlE4M
z4=S$uB!l@mOODR5731k;D4y>dcV~C%z5nTO@*9O*)!dHCg8Lr+7{jDw;ytyzywS>{
z+#mgU>JirqoD=%j35Hj>s#)p$+4lM-aDC44B^Pu5`CC@ePoh#Q`eQm?8YHRaOSpTk
z@e}rmNDf#mtVb55=Y<p|(0L@s75kd8(xPo(ikzk~o11Z#1;V76g0`4TdL5y<hnHE2
z)%h<pP9N@HiP%$I$!M2)r9w~TiHR!$H}4nzz)#C_r}s2CwSfdqaKHpaOJr#cBNo%g
zsnGnv7Z*5>S^E`)NQ(nE-r4m1jF1_xVuuT#8vD%^$zqq+v7oN#rbC~o*AEy+Ikqq9
zT2NRI$!4DUot14ABgN2<)z1O$)?x4f38GPK565Wk&Q0BA)z2COAMv7wA|1UB_$K=n
zCL)T65&63A8MhaKdm3Xg?#gh$aUHd|Xb6Ec87UxTJDI!`Y3CHNz9-a+leTM)MSXT<
z9=mgpn92#^7VJR*-C1o+;@qqe-R1_mS$N#teV&GKw{e?f*2>X@atkWf?h#8KQn?Vi
zH=%mZ<_&Z<Kr>O?SEqW4u3s>W!E<hX8_u-U*Cwb`Z3l?Z49b4m!{R%T^IojfWysaN
z?Vi<|ZPn#QgQTfp`mH_(F}CY#W;nA%@%XbZoaZFhVl9|Z7A<ISx*V?b{CIP!r)f20
zT<&gNeazgC*9A)4$<c;zwQc$(H$2Sl7<Tr7SlL*;zTYA3#e?i0FCbM;8!uWU!(w(b
zn=9Uae2)7_$Edf|D&8)>2%#d$4CG0a=G59M?ZZ)A!5aP6(HwmFrJ^i#iu*IfRimCO
zf=k7nJ@dtC1N3cOeJNA2;&R<J&QCk8(v_q28?mT(U!~*_kE<;6<ACo;JYeyX{4Wxp
zfQ|bVg7T@~xysH&8uv~Ua;`j)mrkwHZ$M+ZqM7${e)=jh#K8e+ZsJOYFv}ydwAV}F
z#s*vLsma>uSq;<#(wIhb76ED!<u&r<!QPAS{c_wc16@;<;9-@ZA70#|eyF>t`VQz-
z3HH2=fpJ^j@9DMAVK`!o%|C|U$-9rh@S-F^rvAcbI!H#$e8}@BF(7xx6i3rIXQ=)3
z3Y`ihir#X3ST2b)v*on8zuSCmVMNmON(+!u1W7vuaERP$rm!Hpedc<JsI{RY!UqHO
z@tIJ{IzxP;%t<StyCgr5BVcchc^mB7Nx_#-(RY@)=bV!MBLLSM4kuJS8~?jDp3s0V
zUpoG5qt%Y*zH^!SZ!H(x|6m3F|7o54C$8fEI@NzLTL0H2`9EKhM-&;-*`w+))H7@V
z&{T?ql9IB6T56=d{Y&UZnxHM&W05ydQaXYClar)AGc+0<O4jn?FO<`Ir#8@IYM!5#
z%OE2o19aFK;@&R6oQHTDaT_-F9v;4%K-EF`4&`QS<G{K8l4Sl&P@3OW@)Rrvu-h+R
zEd2icvgV9KNJz*ZcY*{EMRs;}@oXvus+k~QlSspB2%PTlaASb{iKHD8UaiS#?yEu4
zBdG(qipPBb)uS~VD;yHz-sMkL4CrdtGlVnC<TE{{jLn?UWKJBP(0|?R3)fitq8*6}
zUR;vPMTB>m)BwwOAKB~%P3l=gG`e|sOl?>4^7Fg?Wkr4Iw)GJhP=Smep@7M|+X67e
zbmO}J-p+DY=S`jJc%A3`Dml4>pSJmasvg5wo(+F2hg@!wnZ>u=LxFN*KVEAwDvd%0
zI(9O6Zc{CYEgqKgIIV0ld|UN4PcBfq-DZqWWl}>tG#7C*5)XYY2#S*C)Un35u(-{r
z1N&jwzivdTw@{3acLwX~>5=k1i5%FdIL-<o>)_NXHhUh(A#(25{EnGJJ&%yVi0ErO
z5f$gr-cnW#K%zSDPvla}uK-os0QUC>5$~!>z@JT5TQe;F+^L>Re#en){Rk!<m%UE>
z&@(JVRpB?6sB62`aBwDT23Q;YNWJ%k<1Iu%+rU_`1T@*2E^X&LP1+%M7b0sP!KHcG
zwP;>A-u*7JTH9>>0kLHaZc`fGXY{q?1(&by#2}4?solhR*jIY^*Sbj!^8i*cKuLzz
zQVrm50htYbx1$ts)NZ=4qmbRq=*O!u*9>45DkPq(a3`(+1>A6Sczg~%2&SI@Ei3EE
z?wf{kE-Ou<22huRa(+@a^n>^-iWDotm@Kc4e?EQ%=Y+^~3;L>Ym*yV#1PZ03>6JVZ
zKCrlJggw;E5~_ZmrMfH?^<3@Q%+xSXW3-4{8&W*dN3(ZytqfmIPQXFpk9>1ujoK%P
z=)yGYfdd_0(2W2cNI)=9lx)*r(a*XwmHh+b-0`mHk*%HG3wuu|C*wz<(O|TW3=<E}
z@Nc4ySAFJ54<v2&BLvkfO?y{!`#AWy-WR7;bFi9(P-ErD!1oK0y6MjI(Bl_*!y>Q7
zeOmoD(1dUktY75mC)hxJsY;EO_oK<+A7Uiqx=`J|6t@YRECkv3{6oJ9bd}7zdchpV
zFdecgLCXB@9t%3m{XoXQz-BGgTso!e{fXc2-Ur{%T6rziyA}pqU4(8YhuR4|L{9?_
z0$L&f2vLd1#qUsuZ`ljqq5BPjto5!8s5Va&>@jT9JfP-{pZor=qM{;a-Ymd%y<+#4
zg)gU<rO5h$f(4rzSG7xoW?=608y*EUMSj6|ee4AX!e#M|RN>mOY#JPzAO)MTWeIYy
z(_Rvn$?(hb)jDr4VBU+@8grb#t{^Y(1+a=%yS|TPNqyjNc^C0O2B2+g11P5kK*BTk
z*~3(4`JO$7mv{N~M`MS6R<o5*!E>TyM>S~s0ek-}1u^q88V}o<Ag6m-a*X{Ex^~vj
z9uyg}yt*CBk%fFi4H8tF)BYu6h!H6kD1Uf}k?^wSeE4{VPD0eiU%zCkaCxAwfsyE3
z>KttXB<95ZKac;AnsO@9b3vNX&jvkJ*Rc7^c`~M=>JwH1T2O6w504~y7PmS@AU<hB
zwN+r+<79j9M*-3K%@U6@?#%6e|4SK9lqkH>6V^t5fkKu!8gqI_7D$aqt#yRyAhe7o
zG3d5=X=0v^+<F)3o=in+ko32AE!>HrjmoSW!XNCkbbjvm8920W+{^b&PTR5>)K)7i
zV!)dBPhJcIu~I<LR7EAkI_ccr1?>I;bJ*LhXw3XlP>?ERzs@f^sApyL79^?<?hfum
z0T{(gF{9Miz1`gffj8HH2iMKX>A6P1Ai!a<HZ?Y028_z+Z$oK<=|Ip`SC7lCBnz`N
zXD#TF|8A3?!J}?1LTzH}%5U)fJ@<$3537XSF5uL0ke~h+SspM`R%{`=ZOBwbf-cp_
znBuP~OZJh)Hcm+)rsUw@l@Fmd(gnD$%4O}5MX4BG{A%gAA1MV0-izDfJ%G6c%#V7l
z3W>6}gEAXriRgG&`IdXm()pKW)GRi89dw0tL93y8bDl#*8kCFW__#7s1`&&mz8+HI
z!*#dF6H-a9XzY##2GL7GMmC(xyEK|DLqN``4DJTngg!@GK-eG56r0|6$$o6YGb}MW
z$zu{o#I3ViyS}g`RNfbQuvIG!Xap{&B8gPF(k;2^N<maC#NoRjm(AYg%sb*BM!1LF
zpA=N0KDF!zhwa?SUpfZ!8^=27{=T`ZtCf)#&0E3Cmlsf5D*@FEk=ST4(h)25syEQ8
zS8^Kh{qia)b;p7dMiU1snC=1~8(vx`pcT%=xH*4UsvHqh?#9ba?=fN~pY6+D7n^iv
zgJuVk`!z>o^3?M&226j5x^Vy#fjj%7l}S#+TJgu{W_+pH2Q*<okG0itsFz~%S@J67
zu!OE<Q9z$=QX@2x*J|=<clJ7xz`DcsCBKSK^b}dDDc`|l&Ri)!kC#>-w?@D?v3X>(
z77i@)&%eH>`pu$HPf?w2W&h8v{R30V5EG?R?T(cn%K6&z>*^+)qZTe-P4s*Yg$vls
zkNz6#1ucarCZ{F5Kju8C{$|CeuAx3Y7N;?`9(SY}A<d+qGNM_)!s_R16F~C!TU7q;
z`(BRKwFEf=_5&%r5n!!fPVpGP6H-!A1ZxAt;ioe*x{i*HGF1P39@X`o#_pg+9;UrH
zl9dGmo^n57Hg1)h+j%$70Ua&%_gMhu*y?H8d_MFFI2b4{eNC<;f#$|9e+jT~@bDC5
LRo|6L8-Mw4<n9Rd

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
index 7653a2e3f0..53f2c6162d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
@@ -18,4 +18,15 @@ ms.topic: conceptual
 ms.date: 10/14/2020
 ---
 
-# Merging existing policies with the WDAC Wizard
\ No newline at end of file
+# Merging existing policies with the WDAC Wizard
+
+Beginning in Windows 10 version 1903, WDAC supports multiple policies. Before version 1903, however, Windows 10 could only have one WDAC policy. Consquently, users were required to merge multiple WDAC policies into one. The WDAC Wizard has a simple to use user interface to allow users to merge multiple WDAC policies. The Wizard can support up to 15 policy files as input during the merge workflow.  
+
+Simply select the policies you wish to merge into one policy using the `+ Add Policy` button under the table. Once added, policies will be enumerated within the table. To remove a policy from the table, in the case of accidental addition, highlight the policy row and click the `- Remove Policy` button. Confirmation will be required before the policy is withdrawn from the table. 
+
+> [!NOTE]
+> The policy type and ID of the final output policy will be determined based on the type and ID of the **first policy** in the policy list table. For instance, if a legacy policy format policy and a multi-policy format policy are merged together, the output format of the policy will be whichever policy is specified first in the table. For more information on policy formats, visit the [Multiple WDAC Policies page](deploy-multiple-windows-defender-application-control-policies).
+
+Lastly, select a filepath save location for the final merged policy on disk using the Browse button. Once at least two policies to merge are specified, and the output file location is set, click Next to build the policy. 
+
+![Merging WDAC policies into a final WDAC policy](images/wdac-wizard-merge.png)
\ No newline at end of file

From c9c6672bc3c1ab923aaf98951317500241de05f7 Mon Sep 17 00:00:00 2001
From: Shannon Leavitt <V-SHLEAV@microsoft.com>
Date: Tue, 3 Nov 2020 12:19:21 -0700
Subject: [PATCH 021/825] Update bitlocker-how-to-enable-network-unlock.md

Added commas
---
 .../bitlocker-how-to-enable-network-unlock.md  | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 092a234e68..b69e88d45f 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -124,7 +124,7 @@ Install-WindowsFeature BitLocker-NetworkUnlock
 A properly configured Active Directory Services Certification Authority can use the certificate template to create and issue Network Unlock certificates. To create a certificate template:
 
 1.  Open the certificate template snap-in (`certtmpl.msc`).
-2.  Locate the user template. Right-click the template name and then select **Duplicate Template**.
+2.  Locate the user template. Right-click the template name, and then select **Duplicate Template**.
 3.  On the **Compatibility** tab, change the **Certification Authority** and **Certificate recipient** fields to **Windows Server 2012** and **Windows 8**, respectively. Ensure **Show resulting changes** is selected.
 4.  Select the **General** tab of the template. The **Template display name** and **Template name** should clearly identify that the template will be used for Network Unlock. Clear the check box for **Publish certificate in Active Directory**.
 5.  Select the **Request Handling** tab. In the **Purpose** drop-down menu, select **Encryption**. Ensure the **Allow private key to be exported** option is selected.
@@ -135,17 +135,17 @@ A properly configured Active Directory Services Certification Authority can use
 10. Select the **Extensions** tab. Then select **Application Policies** > **Edit**.
 11. In the **Edit Application Policies Extension** dialog box, select **Client Authentication**, **Encrypting File System**, and **Secure Email**. Then choose **Remove**.
 12. In the **Edit Application Policies Extension** dialog box, select **Add**.
-13. In the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box, enter the following information in the space provided and then select **OK** to create the BitLocker Network Unlock application policy.
+13. In the **Add Application Policy** dialog box, select **New**. In the **New Application Policy** dialog box, enter the following information in the space provided, and then select **OK** to create the BitLocker Network Unlock application policy.
 
     -   **Name**: **BitLocker Network Unlock**
     -   **Object Identifier**: **1.3.6.1.4.1.311.67.1.1**
 
-14. Select the newly created **BitLocker Network Unlock** application policy and then select **OK**.
+14. Select the newly created **BitLocker Network Unlock** application policy, and then select **OK**.
 15. With the **Extensions** tab still open, select **Edit Key Usage Extension**, and then select **Allow key exchange only with key encryption (key encipherment)**. Then select **Make this extension critical**.
 16. Select the **Security** tab. Confirm that the **Domain Admins** group has been granted **Enroll** permission.
 17. Select **OK** to complete configuration of the template.
 
-To add the Network Unlock template to the certificate authority, open the certificate authority snap-in (`certsrv.msc`). Right-click **Certificate Templates** and then choose **New, Certificate Template to issue**. Select the previously created BitLocker Network Unlock certificate.
+To add the Network Unlock template to the certificate authority, open the certificate authority snap-in (`certsrv.msc`). Right-click **Certificate Templates**, and then choose **New, Certificate Template to issue**. Select the previously created BitLocker Network Unlock certificate.
 
 After you add the Network Unlock template to the certificate authority, you can use this certificate to configure BitLocker Network Unlock.
 
@@ -167,7 +167,7 @@ To enroll a certificate from an existing certificate authority:
 
     1.  Create a *.cer* file by right-clicking the previously created certificate and choosing **All Tasks** > **Export**.
     2.  Select **No, do not export the private key**.
-    3.  Select **DER encoded binary X.509** and then finish exporting the certificate to a file.
+    3.  Select **DER encoded binary X.509**, and then finish exporting the certificate to a file.
     4.  Give the file a name, such as *BitLocker-NetworkUnlock.cer*.
 9.  Export the public key with a private key for Network Unlock:
     1.  Create a *.pfx* file by right-clicking the previously created certificate. Then choose **All Tasks** > **Export**.
@@ -220,8 +220,8 @@ Here's a `certreq` example:
 
 Now that you've created the certificate and key, deploy them to the infrastructure to properly unlock systems. To deploy the certificates:
 
-1.  On the WDS server, open a new Microsoft Management Console (MMC) and then add the certificates snap-in. When you're prompted, select the computer account and local computer.
-2.  Right-click **Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock** and then choose **All Tasks** > **Import**.
+1.  On the WDS server, open a new Microsoft Management Console (MMC), and then add the certificates snap-in. When you're prompted, select the computer account and local computer.
+2.  Right-click **Certificates (Local Computer) - BitLocker Drive Encryption Network Unlock**, and then choose **All Tasks** > **Import**.
 3.  In the **File to Import** dialog box, choose the *.pfx* file that you created previously.
 4.  Enter the password that you used to create the *.pfx* file, and finish the steps.
 
@@ -246,7 +246,7 @@ To deploy the required Group Policy setting:
 4.  Deploy the public certificate to clients:
 
     1.  In Group Policy Management Console, go to *Computer Configuration\\Policies\\Windows Settings\\Security Settings\\Public Key Policies\\BitLocker Drive Encryption Network Unlock Certificate*.
-    2.  Right-click the folder and then choose **Add Network Unlock Certificate**.
+    2.  Right-click the folder, and then choose **Add Network Unlock Certificate**.
     3.  Follow the steps and import the *.cer* file that you copied earlier.
 
     > [!NOTE]
@@ -336,7 +336,7 @@ Gather the following files to troubleshoot BitLocker Network Unlock.
 
     Debug logging is turned off by default for the WDS server role, so you need to enable it before you can retrieve it. Use either of the following two methods to turn on WDS debug logging.
 
-    - Start an elevated command prompt and then run the following command:
+    - Start an elevated command prompt, and then run the following command:
 
         ```cmd
         wevtutil sl Microsoft-Windows-Deployment-Services-Diagnostics/Debug /e:true

From 1f6e2b45bb0ffb7bccd709a236208985eb82d073 Mon Sep 17 00:00:00 2001
From: denrea <v-denrea@microsoft.com>
Date: Thu, 5 Nov 2020 10:37:50 -0800
Subject: [PATCH 022/825] edit pass: mac-sysext-preview

---
 .../images/mac-system-extension-filter.png    | Bin 25122 -> 15868 bytes
 .../mac-sysext-preview.md                     | 109 +++++++++---------
 2 files changed, 54 insertions(+), 55 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/mac-system-extension-filter.png b/windows/security/threat-protection/microsoft-defender-atp/images/mac-system-extension-filter.png
index d2f1c35a83dcd3f85e43e6e9e24417da30ad7c51..db725b26fa5ae952cec16d6d6d26abe4627b9ecf 100644
GIT binary patch
literal 15868
zcmcJ0gL_=jyLD{aoUlp5#x@(Yv2EM7-86O^+cp~8W@9_|^nUldf5Gpb=b6czXC^cI
zoW1vY-*>I`Mks!jL`EP$00RR<mX;Dz1_J{x0A6RnK>*J}zl|1wKj2Qvk|JQ06GX?r
z36z<zyf7G8O&sE@0W@$9Z!e|c1O|rE_wNBdWcSM$42(ZPT1@!6yY5*QtUuQL+mM;5
znO95426t?M6B&iLMI?b($kIR{ve&7MP=TLOH1ymrG3oc8rm_qX&zz}ChQh*V@f&fj
z9p@W1n-(u06YU0d%e)hiwsd1J?$LG|?H)G=XYCi>ep(yVdOmmaOEpIL2q7ZUdd;=9
zto+h>inJC8ga{$Gpb(L~Lb}X%zyE&o*NhTv@@*JBG4M&h|Ln<9gVo}R^uJ&EwzROI
z`aeU6(WS$Zc@|BH1x6wG{h0PYe&Ph0P-rr98&73iZM551Uz(abzk-2Guvg#W4jMNY
znQ%JXGfTVwl*MciIA-9$bM`ENg%DC}7fV*O+B$x-9On1tdmO6Mma#(6QQlh@9l(Z%
zAKRcVKY;yIX&puznaxqPxf?}i=+M<Zy1hG;sVLwugO@f|v?v1H;ViCK8C(=e0q>6_
zrp`yp<upMtNSKmU9hU0y@^<sRqn?&057n}H;~Gt3j<7Lm1SN&2#nrV|o4=JVWldka
zR>i4*F|#Bw#NvCMK;z02@Hyw|(gD*2vgb<qidEFr^*+&N=eHLp<`ZKm{!vT!Z77D%
zKwbPp;A>hE=Oq$R)<9t@7Dxk&J9K;Q0b7F#CrYB1v0@{Xda|-LbW-ry^r@?>;b+T;
znOxg>@fghQ<ZP+npMJv{!H=g&<~+^~cgnF^Put0*YJ<K-JwJZ$$IFo<ny#1gw!6E#
z!yG?fEiFP;1+ML2Oa(qACO59|rjqJv#mO1<Cfjw+O>d{ytD!hjLEXs}&N#m7VYf}6
zhZ$KW?yL#Hw_^p4jI*CsmD5ecno~ung0GkS4{J^f8fIsI=V&du4PL|ypK4P$|FrHd
z)98&eF$y}I2E&rJz5PDCXuFNP2}LF}X4MoSXJMd47=w93&lw`U3oH5s5-YM-M+(W`
z))z}$Y7gv9`by+7&Hatk^Kqi>ysMzzdTEi=*X5zYjql-<RHUcc_s3kF^)jo}<jz2p
z;L9l+h<Qs|AatDc{W8p+tG$aAw$XO|`J}AM_v7tBsz9@lkdSa}boBjc(of)aN>m^x
z4hwR&L?MUE!H^a!lI9j!6LKnB%dR7(yz_p=O5Nw=cggTcAT(litNAoV?TXXR+4SN=
zt;H<$UX^x>vfiS9<~A+ontf1bXId7on@Dqqt{n)YN7wJ;W%CZ1zqqjx2P0ze=r8})
zUXp@@5yo<j5$p*(Opw?8sc=C5w;;=c_tH{&8?{lTNdrY5^_CEY4z7#Fr&Ugm34w=l
z4K-c+fs{iczt_tjhH#I)3At$4*ldBSb#z2nWbWliUj6-O#T4Xh2=DqQc%KPU_!!T?
z?U-lx+w~8YANU>r4yfrRC-Lh)UCVRo@VlM;jCsCNMq)=91BZlR(5QuiKSEEfWe`2c
zb->m0uF?F(>HijRVQy#Vw;RJLg#toNZLh7x@Qj3d#rlK33?&gq5<>+grGy1it<VhF
zkHr2oXM<Gd`{v0o6pb&c`VETP+06H$ZBsZL7KQK9jWAd7Xxs1Yuimp~TmYSb1=CUG
z7*p5lIOk^jadF1&xL3fU=v(vt(ck2POwkHw`4~pG^;f}*_cO#W?u%CqGhN?t5B%6@
za}W-k7!?ckSTvfE4GQlVJ_Ip26}`xwaYzC-1GzIE_s>6cL=akZ6ylW1-J}*am)#Hh
zdnO;o&&gwEIfACI5%LY&9!-4r4~v3RaX)43Z^B@(v9K8QI{A2cc_}F&)8n!6aEA39
z99UEjC$e~*4&=CMWtlo|PwOUq@0ZOYo&qOD-d`@ds#N=#)3hDoRi#^Hzw+OGXXtv|
zL9A`{daz{x_D7e^DhFswqux4eW@aWopMnT(5K8#=WWFo`{$^%wE?BOazHXV%aZk$F
zP-^n$7pu`^I$&?zbbY+p+1MSVYS{`KZMDaT+KE4>n`M({><CF*wBJlv%oeXZ3=wDP
z=yG<a8%pjJ?&xEW3*q)yZo7PJe!OjteQrCgpZ(f)*0?IQyUU={n#^u`w$e~%Hfd{a
zPL|GGO&dp$?f34nW?f%9@_M4y)!PXr_WPpafkZb8fC8P(@&MeURl6>6h{p3CSW>b4
zvHPv$X~u_jH`2^&U?35TYU}BaVvbTNwnO*p4{NVe3k`QZGV~K2x3|B|a{kbU=At4D
z4S>ET<T_{e?fV=2y?ivv#|kR7K)_A96%=o9k%`{L(nt_PZzF@nz&A%7FwDd-LX3?1
z%J0(K98tg+dMe1^{nrgqZy_#=fQ*G%Lo^g=xzops4DD#MOK^lH*5dJU+ZbCEz3;K9
z>&?d3S0J({xrddE^o3&c;vvaU3NrCLu_p+YFh&B72wq<auk4a~iWNjH|5Ge-0H4#A
zD3y>MjRu972dfM&vIe0E8r7UNow<}Hdz${V6Ns!IPdOjtLG6{5D0i}n!R&mLGtzd)
zuFlS{uZMzRa0h#PWMIK;Gn}_z=1}xvNw+Sc!u#>E=4)RTwZADT)!1+Mrs;Z)*fvf6
zU@_Vqi~+FG&2Tbz86^x7KKx5;tkcJK80o=y1^}cyM*_ygP4Pn{UeQ=zA<QCCVE0Ue
zvc<;T$%j<~$M$>4<AorHE6T?1;R5~l)qp@hElGNJJPWJU&_O3j5%%@CwDGL<qVmZG
zdHVVt``aY`rkzm8z{#~oL3BU;6pu8zF$d);9YSqMQBZ=h%8v0FYH9Hsd0r1Q15I$m
zA95|mf^eB(+|Yv2F{j<aubJ%Eg>(gL_q~3dHIGdS@6vX{2tu#W3b62$@X@e|3gu|g
zBpOuuv?8jNUGJWS20~H?z5(QCuDeio&nzeQid;jVDw`qThkvP_2u2h0;>bq(Vbu3Z
z;3L5l<~gfV@q{ZyQfa<l_M!G+3WIy$VdQJF7wC2Q#`_DtU&Yao^dEwz&2KB)&I4bC
zc}l)!MH1B`$alQmucBA?v58oYWI#ee9TXChzbWutLG_={DhP&j3se1rl0I*P%}Ie5
zB<@0Q3g!vH>E`p+zqjRIyJ-?DMYp}qTVNw>SNa^*%Bnh_dl8ws&l8A7(TB;ETYs)M
zbY;Fc_YbAqeai8E{&AW~v2n_7uf2q8I{&bxu4JIC@i~2al~;^oZ~(1l6i#zqJ;gko
z-mLUw!0_bdrJUk70gdo6h?W9j$XIw}q8=C5n4Wcv{<Rt%a!8IS`<VXm^zGu~a!pT~
z4F$iy0!<ICq`jR;Rtho|k6v@b7ZNv!sxYA3_1`*S7KoS;c9o3A1J8(He_Dc)SzKE~
z`Uc4+vY{KyJ%BMNv;H*ntFm&iwzf9$&;z8{lIla&jnRu$Kr$DqGDE*MOJ=5~>#@&!
z(H<lhysEieNlr=}e=qt7hJ<TjfPt&)PJRM)nCTRoeP`snnGHbEH3{^-)PW+cPB*FU
z<(Qf1nVf;rRr3f<^BS}=yJ-_%{-w!O6&~ei<h(^4Zv}}$unL#Ba4bPfDF#eUR1HF5
zjDZP*il|w<m_}lPks?__xJQE^$eN?B&y-<!GLlY0f*lD@-E|E<i1qY|wEgYu#m=v^
z=^#EnD=WrCS#Iu0RDB7Y0iDKh830D#>uV$T4qb-2+S*~u2eN+AeoZ~SIDbR~Vn=GZ
zAN~Yr-3JE;B2Ia592v+WqH+`oFi?i-A`~?s8!Jo8URL;PmFP$Ri#!2Wcw2a8jqv1)
zt`A?Rlq3GAfxu9o_oqWW-zTcIWmr;ge}5&WEHL;=VG9eo)GuGYsP8!Qk)W<@7J=yi
zNwnbX(L19OghR-BQ&@X=GG(Ud6$PXB$=Sh*qOEO@gONmQrbgtwL+QM2OsE)z3QQ6m
z=j5{X1@<dA9YHFTbc`I;a5_PY$N<_#Dffva4oh$)hIeK!b35Z;x=DyAGDhD4PAf!!
zc^K1<vj(zh9YzpYtqJx3B>ktg%6888>#7PuRBzgICMqf__4gwhw>_T@AbCPdpcIi!
zTt)^Cyg}8nhA<gesqn}j?3K>ODPm@LMVK^S#UOU?-MU_gd+iHp6tbhKELIER1fCyv
z<A7KcB}D^{3Ck8Pgcooagem}sJ;mv4_;9{XE2>_tACR2^hV_&eMiRIg{Czw}kdz{1
zLFC%^u1t^ITI>&(&$Dyzp{E6Mex21~r4JDG^49le@#>wX^Tm&(X|cYdT^FYCqlL?K
zUJVl3b=;{ctcY^=O1I4TykDhRr7^g*%D^BKChofq<SXG+M(;Whh7}7R8xO|oWgc6_
zIoCrO27<()rQ=PM5<u=e^ZV6u)^=<Lx4HI_;fDDP65Frt;&=Ym!ti{_2D71q$bT(E
zekG@87}PH#yx`muuGn4U(?n;n((`s5g_!A~hM-J8oRX2Ep+}4MD|#;IhSyP!(Gk!F
zT|wT6Z<xf{QJIoY!zbD;8O$a4*U+F9iP|MGWpxiFxS{UamGNJ8Lw+my8q(i>J^Bf6
zrfJO)F_h(c+Y>FVXVwSEbZ3j@DMN(Y`7eXe%xQZ8Ko7Hje7%`eSo;YlBA84bufWKQ
z+n4tbirTa*6$Ia~V&P{ZvW0Wsfb33$wyNV^^ZH$fD0uZS%Z;QGl@|R(a6kFm!9*6~
z>K%}RQlN#Zix%AFf5@jXp03Tanf}4!b7z+O{3O;eb{~JOqbkKcBXwp6BGBTC+q|)!
zGW$$-v0CMqH=@ssKMqsSV_t_uprNXE7E&?BG)_<NdbTnH)H2hCtoD)9P{ey0u`v?;
z_EK2+Ct8lp*+>!#)-1X0XxIhs;k5MjP83#u#yH7`D>jy?#Y}{gWk%Piiq8E7=g#3(
z)V@5gK%Qma+hp9=dlAsQ7GD3%V45RLGd%Bj*Z{B;p#aw*J-Y!FBEX+vY>%z;yk$F-
zFqdvp@PjX*LKmtDjf)b)nI>?I@?ChZ(|@Y)$ZZJjD|*<$zRN=aZn#eV0vVE|!u{*l
zDSqjcheG~j%A`5^b-VY+hg4F_y<cU9iV5qMEZ5YOcKz$CCyl6lmBugkIE7)PYTxx%
z(JhhF8TqiLj1_y)TYe92s?VZhLl>m)#}Juyi--MXpoXgfr;LIm4qUZxG}Clv%lY;L
z9f_@hmr#X`cBu9yD=6&XaG%@t!cymE9Yw*XjTRxFVs5d1?#u!${r=@}bE#xA&;6sh
zrR6E|Q>Fiv$63Ro=YC_C^>QtcAM|LDP0iK;)$F8H-i%Gf%3GVHE-8;`^Hk50yhPH7
zVX)RNGLcpF;mW5_Y`gWDnG(C=S%c-8nvs4M)e>>j$1_69jKAI?Mfc>CH>0ozrl#B#
zu9UXZ%*1fAke$^`Xc}Fu27M<BJJ+YX64-UoGjp^OBIq2{SXgZpD7rZNGqns|g0*{f
z72Ee<!C#Z}6QqnMV?FJ>#=6lx+yt1l>?lG+xH*8K@!t(2&aVd2WU|)g>y0$3G*ClM
ziXQ7vacv}A(358BEu!Hq3AR~&tHVOGb~P$f+i0%oD34>`{{#L8i!F?Q7uhOw@9x9v
zR`2`V^O-y!iBxH8bbMlRSBt>A0$D&K-Z4^pU|)k!O|@y>GX;+l4qYR%v9Z31y*{|V
zF-Oo*UIY3~6D-6LDWOyWMDSOO(Dg~Kef}G6J#V?F0&QFk%voEfcJ%%p-cYr*Qr_$$
zI`Wfv!F08S)mZD@omq~a_ghv{D9QzFdQikFZVg^qN;<cv^FaA>3V!-p>RAPJ$U!R3
z@4V4Zk76t!j?-I?g=f}Uo7!g^-gG06&~4(c8ROe~8ZWq{jI&w*BNB^@<a9VOpVTpW
zNXlSgf%F5}HEexh`g5}C9?so3LP(K0*C0VmBhp`gVQ!7|Mtw!NmymI-pPD}JR(3qL
zf0_}3dI~L;<GkyTpcVViT#<P{FB+H$KK+V}!5=50k%ZnGqri-%^$3YwfDvRM!Ni=O
zwAT1)z@?$M@>6Rti*K!b99A3{1+?<cv9X43m!p@ds;X<iYByf+{n3h@TSHR_OdJC~
zM`L}p-a>9qi-$*SCXtpyLRoQMK?|k*n>-B?@q${aQ6dO^cL7szY2TT|&0AU;zUk!U
z45lo_h+D!yBQyp^QQ^-)b-%Gh7P?SGO?1!sL~ZMu$dBb}nKx<gpXd={IE<RNX<e`4
zdKalHD=YnaiORIc@-oSldBqI{R1A_!weKO+l#_!?>gp>k#SY_%C+1=V0=4#A@!Hvk
zT&WG3F_m(wCTibN@YF>>U)ii)0%&D$qR!S3<CqwC7p=`%d5KRhXz^5Wj06<=4LMoD
zlZ{I6Ygh)&nboab%jR1Q?p$Z)f(`*#%;xi8O_zs)3$)*fpmF`c9ESX%RY4<ktb5j@
zZRhv0x;X)`28c}U_6L8`0r>R-s*gM5m&s36?SYs*ZxVW&3Mh_l2t|j5V#kfPOBOp7
z09^E|=a7fMiIKDO^+^+p>{hxe#pgN7A#r>vmKv4Dbfgc%l|2!oE)~O%Iiabbw=~rA
zGj4kh!45B=jdX2$dreRA%^BKFi>3~GW~2>;Z;*_^!5rJtCnE6QWf7U{uQe@bs2L=T
z0r{0Y_y@H9iy6kYNDv@(1(yNv$qLs?p+#R{+>H$lS<W-k@w@uW&H6ooey_Wv&j)W%
z@8~p+-O4WUZQp45X{cn>>RMK;YkqiinxqZs@4X;1&Fx6uWgHnw-LpfRhzAsW+f#3w
zv}+J)_=CofYBHk0>i4)EHeaSzr3v5p_qEA#-qGge1pAXJ07xNRypKJJiLWEy92;#P
zMAp%2YRiS;WZFlD@wtA;d^Vl3)`>R5OX{H&PjBS8OUv#McX7FUeY&|zf$DrZ$k4KF
zF#+mMHEjoIBwR<H$%;^_Qx!=`Sk{qpdqU3A+3<XkLM5c*&n5Acvl|`2Kd4i`F<>QF
zcvo`r%g$~BR1pdMX*dVp^HITGnTJEsU&lz!aLN<Er~Nd$t~XcfpPY6Z3l&=A=jI&g
z=3w#^-%cCq>(~4~-pq1*?iKu=zs<>+7MwhtW67Kx`4k12Hq^t!5HX~qb67sCz!WTh
zckm{+<Dke-E>f3uqQ(1OvUKa&o2SUkHXG2!bKl#!ZQop63}fWAKdQ3H^wQe$tcTnt
z`1RFl?dIw}hLlOG5kn>nJSZ=O7<>>!w0h*=qpo`?seeaiS&o;$Xc`o7Xs8Kh72dOq
zkIYxU*xirx<;!?sPlt$s!FEZG@AHP&#qnQ)_*1>t9o#n8Gm0)P&3g0czg1nfC+tm{
zwzi*xfnr>qD@&zJm0aHU4mzd0s*03Zzq_;e-`z4Oo3~`7r&mV(J^j4t)N$Oha-m?b
zqy2d?8lO!Hr4W_?!9&DT?_0ZYphGf1wV=OQ*DVhlw+~D1&eP)!p1Br)hiBy_DjGBo
zZ1;uv0eOg+w^uW-^fy|%{D+j!M9~t^%le9b%iSz662`9O<%rM0d6>^w-;GBQ2rr|~
zHZDW&7<tPyZBWE=`J54iE|@WxJq?uK-{bte->+V5GSWCI^%5T!+qYNGK6QD&UD)-7
z3TX_(O}pXlmopr0<sGaHhCjDhMkhc+gIB_XpKd57n#?ofAhZ39v0*F?J7Fa8*h80E
z0t&IL$31XXi<JRfJwBTi_G<=cIN`&V`C$dc#VS1oY9UD!jF_01aF$P>K26h*y6}b&
zS#JSk3cJ|^QSFLHWfPb2MnWOJK&}i}#CeH(&~Wd5Le8^jcnx+8%{M9j_s3meDtJ~<
z#R<PyVof}hmQ~U-GKzn7s`KT2nqF^E#*!%oRt_ReZzLRMk$4osn6QSS+^p+l<=r^+
z{yBI70+Fq3wWxY)v*#g6+^UVz`VW{I(>z5ugYtXR%z#}8KGMCXOTTv{^_aw_6J|J;
z(i$~yw@?-&g3Rq>ID2Z$K$9<_CU_hDqIdSiQgzYKSK;@?<eSr#leep%kO<h}I1tV}
zwgO;p%R7>ag}+p`U&~zEWQ!3;izcIFqd=%BD??}mOT_E-8qLOiC71N=BZaMGbf|0+
zd%i!5qB^HCPT9J0A5NBESGba(UJP;x;Ug!l!WxMS3NnN@`X&GFN|i1|w=qGwo+Tnp
z*HPs>9i9t^VCU}=*!oN8uRSU%M+hgA-4>VY(xtXqaZv*!k&#%E^jmtG<p_Jcgh%W*
zQN5(;a;e8U+FI`7x8G&8DG?g-5_f4hWR-DHg@_0`5&~EOCBe1ATUdj}Gwf>E{5W}K
zrR_vf!#qTflXDv#z0kPY{`zQF#hsmQ=f#qwKDV+lr~;2$XHA>b8A7jF?$Lg~@RV9v
zj0U@Jg;_?79C8g6iI#Yd)DG$P;ErJVi@>eYxfV0B%fMR#5N+-3J^=KWLWy+;7~%2k
zig&)s!*A_W!rr9I#Gey08MJ98nrPV2`)w#g5_vrJj>UwPyV@iK&ZBEi!s69qen002
z8?%584pyRMGL43C9_SimXZ(QG-NJ0kqI$-WF=CAhbGB{YtJjZ%uq-xxZojOL%#7mD
zELJ3HW6Ea7K~G`D{9}B@da$%)*3`E*2V8S#6rnwTId1}AoM0_VNPF0yCjR&4zc>l-
zdxAHA*Z>-srml`^ydsnx3waQk9^Qg1&TXmH#mdx_nnK%o7})E76AN25ZncrWyWEU(
zQi5M)aoUkk*j}p=q}v~Z6}waNgq!1{IQNI6<KyGQP3n2<r~C^Gds+<A${Aui=b$hV
zX>?#_h32_!q@ffVlvYS5YZGG4K@=fD`J1o<JM$XTUzj8mALjXpgQGcD`N(A@=MJJ)
zc%aUhEFUDS(U(uEf9EU?rhG;z-H9phF;C#y*sHFM2G5=tc7lQNvurSrq8K?hOq=c>
zQ?`RqEOjx#`@s|r=Nws{?fZNTXMtYM|8_e|>if9;c(p5yl)>Ia;3x$a)sgGW<;MDr
zJDmaZ)C!@+CxA8LABqtGSak)=K1$Bx-J+fmW~|GqO_PqxyvkC272U>gOS}mNbI>o#
ztDOO>h4O$ujM~j;jaNl!x`C=9#iV|(4#xNPZv0Uq(#Rbjh#&kacYeB;!l`US5N;;*
zm*MQl)Fjii5HgT<jz3`)=p&%|7dMx@x66A+M@2N|IkBS^!XaP;Ve;NRwB>}U8Gg{G
zucU$4HNMjrUmP8E({=#VPbdm;WXDdQv}!&R!<wez3e(sqtlNA_+ywk%aOn7WB5edh
z!4Em^mfD_C8}-I7lsPT$8@gV2Ru8#JZJGPXW^+YQ&hUlpV|05c(Sw5$V$Gn=uZDgl
z?tM{#YSMZJ_eQP!A~Qg|qCfIcFk{D`=Zs|zpZ8Zn)?-OVmok*1L{Gva2YH+X@ll#P
ze0DIRZ{AV)owyIDodfDw6~?=YW4UB7>nH8|4L_kTHcu-Gg<|33hpmBSB93%p_yZd>
zu2Q=MPf0iEbS`4HFCDT>h2OBMxgTy^TT1#$Ot7WRGe&gO@(0{~W+RbXQBiTK=npti
z(IG2rqBFv_)1(QCVtN4)1h8|;IWVCRt_wPaOW=uP!PSa=7{KOt=Jd8CvDzYT+<xU`
zimbp%8M#HXT(2jXv(GFntjx{LMR%E=Daby)37BUN7zViNUy2^zzI|!Kjgb=hzLl>;
z&OmTV?G;*-TUGYjyhgqoMK6I3?X%4|W|@D6&IM`<@(qg;;Z_CUxQ@Hr6tPOcUhhRb
z+4Okpc&_TY6q5sdSnj){rrdap0UoPPQT@fNa3i%s_Un>SoPl&FHWIgJGJ+1|NroF=
z+!mb6nh%ilt-Gk1nihB7=u#Na^(E-2pEHn{S7oYyXQ8#SH_^?Bl*^G^YA&@IdT0=l
z#1dwS)^qKA-ujLZ;>a-dB4gJ0!y4zSsqvj#ab*5GR@8K7A56!$kMCwQ5-FK-R(<C}
zTns`;5mFKP;pVp8{@?=x187`ayospQ@I2vAsS*X~iHELjpXlk)0s&>NndQ4-B87cY
zadO(N6AxQVI=5=u*l_=kR31MooncFkJuIy{86BJw>1{*k6SitPtWg%>i%-O~^i1)f
zy9eDVt~0GRG_Jz!<6N&3O}X#ds&#mK1b-nF1(HEfLBe0OZEQ&deP1)Vo%A;?EiF&J
zoSd9gmzS0ju$dw~@q@`UHa3bJ40kHZ&DC3505Vy&{N@*1-Q`v@ElCjVb31zWp$v>k
z8|z%v5<Iz5c(??mntJwYzZXJCVr8K*^@NoATDxJ%fb~9icr^Isqr%J2u%16=ILkiB
z2CAxERHuj%^r6jEN<K-ka5(;TV-pjhlA`@Qj(fwSP}M6{dR^~tF9mo{K3vPtmlC3~
z-`oclZ3bFUdI(t@+eb!u**uiK|9q(DJdbQVv%daPANFRjBvh7>?tTydau)yw6r`Tg
zBTgU);=IH2x3Uzc)judv%f=!?Rva1bNdaGeWFB<xB3LfgL$CHqG#N-%9MYtv7#}Vt
z9w-K0lFLBv&8qOLL6#+iKi|MyJ3x(yvD6JT+sNxbq=v6|J0)s!akW*irRZ75(T%QD
z-Jh;tMAoxQgh+{ndqQR#U`Cl~bBCPD<|)o(CyQ0ZB5B#C^AccVNvo31mv$PIyy=4T
zP|;~evuNfjBhk=8Ys9)lp$7~ig??DVCr7obz-on=V3cypDGGrYRE_Rj^+Z+N6-{Cp
z`{qhmwGs@`bKoWqDsG;%#8ok{?sNpiaj29q=!Z&Cf0ZcG4#CkW@i1HNR7-(qWlost
zbKO`plmtUUx-jNw=dE|q$0PI9L;FCUON?V$@}`tyzjws_<Dr9uAIB%^8yb49w$VJ5
zR1W_5R#kh{4B;6uaP<8e5m)|hySi_;G+pClG?rTA0-gg3>1EZV7z_7U_ZSp_JgV!V
zO*RVuPPbk?{br*fAsj80$k4s~n>15ocg}1vTxt1)RdkHZ6}>7s&B|(>;#~8u_~Quv
ztv{A5mcQFy3}ydhb}f0uxrUquQ!_Ix<l)iLMzcdL#IdXihA6yL&HKl8WF?kfsqN|$
zCMr52<mgOh(1?gKU@f3lf!wfWiQzG^=OT(X3D=fW&hh)@lfhLSyh3r0L^&k7Fqcyh
z+M(o@+Tf5??Pb#TjEoV5&Xf8GE}oVPX2!fkl$tBKbQv*Z;dG$Z+}^OAnnfI=a+baB
z8x_PvbfnznJNa|ZUTUthkU|RLVoxIHCtnsi;5o2UHn$nfacJ)u38f@|TeXKEN_ob&
zs%HF?fz%#iW`u+qM(q%g8b99SRhoRJ*C6S`Qnp_D+!n0Qfj(!wmFIA>CXbvEv?_SR
zO&t42V4?NSW}2hM!|J8cjzF{N8RS>rTvgZ3I+SRH4&lo#6dw8R?{}Nrqw3{$<D>{&
zHf4wmtZ+J)kvrKQX1<az+EvLwO-(NDr`mZNWn&izUUfE!ofSe6gildtr<F{QUp_&K
z#ItEJsAddUhvr^UW7@G2GO8xc8wA9$F}J(9IS=7>rn*4beYr~aUiXZ{Fn+=-2riUr
zgZlWfIs~p|)~H2fo7zy5UoMt!;FQYh@J!p`^V@j2*2K6s-+iZgDoPR+CI|@8A)VKo
z-__KT!gPorC=!Neie&FnI*3MLZa-&m+I{_rcPA-~%Anhh=QS|-3`YN?G&QnEh+-jX
zxmn3$adPGHMwBPT1<{ZshHgkBBf`8gP2{?-)xf!@o^2#A0XccyQ~Ya^Fwsa(U!nY+
zx8)v|<z&}mqL&4Sdvpx^^BU3LrOykDh!;;3bG4dS5OV5h(Vv5=K7(9n0e;~(s?hhG
z2l@yZE?OZYD^9NyPR`I*1L0^m!`nSXNnsZ0RZsL^BXlL1iI0yxfI3!QR7Ay6)75^r
zpatvqL~=R3+n-TmG!zSzkgDgFm0ML^@6UjOEM_>F&HwS>_aVvZmFCU{5FGz1ltg@*
z4S!qr=i?Hl<}C;xaijTC6`E{!igfxX`vB8j+rp~b=vCXcGl0~*dGfxhi&dM6dh@$f
zn@EsANI^-Up1k>1MTD#3y{*rMfld+MLffle<Kh;!+;hVbL{Zw6#cW?b-7Q?YSG`m5
z;Kl!*D;UnaK(@-t=9qcUpogs2BxkPq*_~550EUVP$EQcp$tG;NSOAV?2J1_P+{qvC
zmFSc3_yTm6E#xY_nR){U7s;f_3wRfIZ;w8CBWhw?)BrE^AH-1uGi?fAUIFne<LA%Y
zls?IJd`gMv$3wx7<^6Wbf5kft42C^^j^8`?$f-{2MT|RSD>##<j*d=#InkdWTU6X>
zbLYNLWUgi5AQ%^czjJqf1o8Aml$H>PQ+|qF@N8kwlmYf+c=HFE7zN6?bVm;otdTY+
zhfvB4)OB!1$S@0q@2S0HAu0Dfe%*xiOItI>brEN5e~8EQf409DtLn*$N?KJ2PGQuv
z{5cnqe2E2{#8)R$^6&r6N)uK4?8SCx5N-2*aBt6rf%JS9a$3}Mg4z$!@yQiP2(JK1
zy^cfx`y)~Ivj-s80NS7D+udT7R#U9;`};#zj)2ee(_xMRiPU2^B<gn+mGKPDixf3o
zje2u*ho}$W695@)37T^MKC`ldz~liqI)KvsI8DbDzop;pe9fZ|nRCr$QKux^lU@}*
zknEp~`!SpIURY(7`~J_<!Iz!z_|x46SH~IM<HXgF&E9fR*Nc&Ln{LN5z^DgbI8^_E
z!)E0cxcQXXKUs`IX(MTIP}%GN_9W$#S|U66VU!^ld?I8C%&N<V$6+33B1ui^5>h#R
z<aIx$LZ<7Ah1;3~>>!7u6lDBTv%_w=MqROdMkooHLW&%Slatfdqg|Kj=b`K0E+2^t
z9iTWkss}{Nus<=afbK$Q*N(1AY!*|HWC+E60cbV70gCTces7;<XmY$+bqTKBa|=tS
z)Q-$*cLD1_P-ud4CZkrPw(rxv;M0ggw&w|5BIHYStT=MhrY~>0a*jV{7~?>h-*yOY
z{>q~UX5uqx)d7?572+)hfoQR_MBQ`}AYRj1h|W;KPI+-5W+Fn>%ij2YPZCj(6c9`S
z9oHXYKFbfo1;6I$(_%!F8W=17+T5u*{J|Xs-iswF4Bt9j6U{?R{7P)c4j0bf<O<b3
zt*B@XR1Y_&l_G6;5fMruM%)F<KV~=2%8==V#rYBMkcA|sJ0&q<5C)M%B{R^>uSK*V
z^Kz}DGky9ZRLjKQPO9&9+I688Ic@9E;Gz+vva{Rl(6Fi*qR8C<PNeJgdTjXVs35Kr
z@Gkw+$N`7K)0o~nK-8Ney#QGYlX^8+8r}KEQludsO+2B0f<NZS$VktUkV<pl;h*#y
zKqxa>q9i@>01DE95`w{TXx6lp6me(z3E-A_9i*H2UXRd(Zw(v4``u)0ZrugW3fnX<
z<UvP_cNZy0tRGDmj2O}8mI89(5V4y!7tvrm36Jv;Ahw0iKWzGKnzIi^<@L};co)K(
zuL9!>34#DgeN%#j!p*V=@>|h02Z};wDQg(j)zwviATeNOV`T+a5%FF;3|YW5un-P=
zwRexCR}dxyUQPkVFTSo@7?Anol2Ob$j7KnN=~$JpuMVbuOD9op7YVb_hPQs`D#AR+
zPDnES^IZYfiGZUeYYqlpwJ(-)wC4C8Jh11aMuXAhDg6Pa|3tsY2pG(ah($!pkPSjE
zdoo>BWh8r|Fj|r-E>FBF&DU~x>9@Gm(7tUUNI;wCsfT@wxCT63kfXUYyn2qmwgHMP
zWNU|DVseru>AeIKNO#&d#16nD;20kMWK2xp4?exU>ytqxVMj>td+}&mc`swT-i^6V
zk=jVQaJ1p|(VvJ8?D>DMYi;nfl3c%!mEUBaE4QmN`SB7x&Pb4LGs@id%#{yLH;1+D
z{*}!!nqfrwJ67+>Trb5K$C-IVut<PDbLpd>;~Sj1Y_!J=J%y{3`4FGFz4(r1n6JSy
zW)b8+OBxF^8T%eW-(_EX&^<YVD^Hd~fg~QUD?>8YdiZNPo7oP;z@3b#(U5x(arNpM
z-q+^-k(XI$Xy|5LrLIO!$e{pqN5JBiFweC#z3<rZ{`}WCA8Icb|I*F88`#mEz#9DX
zM^2d)o}DlVzY?4TbHZ8A$u-fiI*E&J4Tkw1@Q>9^Lz>fc#}CqvgyHsWWpX)C5JXEQ
z8N0$9BGL_Elt`0+lfV|d{iD7CYApCYAZyy`A@G|hH3-Av*7enf*Bo{aoBBM4bHkrv
ztEhiEuf*QwXt1oZHPU@Vj7;5}FV=7-TOrt#61L5`5&_y?@fN!k;`4Ph+r(7a5~62r
zeLXu96RJ<G>G;p*XV2@%cEH9qRSfxF2wg?piVhL^LIFeeGgyutPmS*9+*6{c7zPrI
zgNk~EY9{Mwyyr~lhFYr_G<j{{BA&MEA=07#$l+hO&_J{-DXv;G`MQ4E35qB*3{Zb|
zKDAi$b-iG4{j@9jUd*#*i2XNqb;3%m`32?u!wT<#AMKr#wd1Nm++z%EEK2bqaO_{h
z5%OuHU^p+Vkb~Qa<6HdK1ddCEhhi$l7$9qeyx=@vJR#ROl(=nQnqzh~FGeWQ?O6;g
zI5MPVr<lW03_tl#e*qj+70D<ZDJd!266;NNdQcf-X-tyLjx*9U2AHnVh{zcIuvC@^
z{)D|QYfnB8fJ*{16i$s>f?-7X!pJ(_nNwd5g@o@B@N*3vh3p))WC^h#(c|G@1*Ok8
zeZk0xSuji~Wc13Jz`RKR+_O+9mYMT*Y6iD_>A2=N#;DVY9Hx&f6Q(NMJN(TSJQE$l
zRm`t?q<=q8dWxa8L3SrA+OTj|>S;m+JX3%NoHdNnHTw(CF?K&=zdmz(6gY7>T$c5^
zo;?Edbs>r2NdmqdM<cb4<8VaRvy`*nvm_<ml{1vQ^7kT98cVw=c-&1#iTf*-oXNir
zVZC|w)%?{?Dv&un_^i!RXq+TUkuvdoZ&rgRP0`qN6m<xFku0i_4*3`sNN#gbM7H02
ze>-h0z3!l=KLzP%K%U-XB(+Rge`3Lnbx!-<%AK@z^O!$)Kca?8<oZe$Hxy(gHLHZ(
z;nUI6XtQb$8yfMLG{}9JDQcMW1_23{(oMP@8mEqWCPp3V@LH#~7OC_U43CL6lHdJ&
z_ZRSvLhZ%ju|VwNn+40^@n2_VfzaChTbvH5JMBV5yJ;q}`3WfnNx-)q{a((RYTz4m
z97m`?zS7nbL`XXIu#gyM({=1*D&hNAj!7z5qLaCY1`Sdu;Adh?J=I_!49HcVX%jY{
zplaM_2=uPYUc_Bh7IXk?`9ymACk-4r%|YzY8%f^h(<KU|YcW#l$demREyvo}-A_Am
z21rR*IsRN=H7GD}tq^JuD9G4@#OBYp#~~ph)$X1xB=Jihzv!_L@-VoZwVC%02ug0K
zVD;bwUT$X<YOpyWqa~DCZKP6W(B;9!^e(THK6$O|V?KYaae-s>^&>+=@~~WWtFUD^
z!8ck^$6~1<>rLIx0m(!@m%s^w_f!yU4;q#pCYfMP{`dnU_S>eRbLDQ_MQepm{#{5C
zL=Sh4VWlgmHjKMeQ>p3fRjkcl@2yDZjYChy*dw0%MMgeJB5{F)xmiwudq25(eyAv@
zjdQ}k{GE1hB0>pZn**aTwh0H>wDDM3=np1yP>X~JWWu=2UmvfeM0ZEW#v<N&I$BFh
z5rR&NGi+M{?*_nc#4o1<sDowc2;@$G|E|ar2AothZA4NIVxu*vsHsun1VQApfIMS3
zA?0H>4;@DFNE}3QH=!!T#*d(8AZZ)D9?mB^QLiJN#HwN9xd4;mEi!z6oVe6!Org9G
zZ|Bbl+kWW;h41!(#-GS_VLD=%k!ikOgO_7U2=tx-=sOsLhw^Ye#+2iE@*A)Zcq^+&
z$6Lbds6tP{AFYn)@V8;?MB&1<b!&^}DiH>|Z}*0nZ;PVx&yCv%@#cM;ME1Yuu$iHV
zc){V@Y96INw&4d)q!GD_X<x57O>QRx#etPOe}{SN)Jq))`jdY#nn}QD{E<qGdV}P4
zH=?yhlhGT^d^sni8x!RauM=_lz~`P%GQuH;<elXKL$bpISc4kYV<)@6G?q&R+EvQd
zQ*G$+67i4W+}J~W<PFF{qbIm(pn|AR#Od%YYptE5@%SWe3(W1U?r-|Aa8s1cZvAk>
zpxn+vt9|Cc&mu+`Mhdqij#9jB;2i{UFZYPiu<h#77sFe&!7CVTMPcLNL6##L-Fo^+
zU4YsKw?AAg7EVB&ZTE0njn731m)^HMwdjRJg!VbHuxdJ&zHPm->h{Nk3jfnylKPIW
zh$=56YKYD)b_^shd-#K(knGk0hTgaskDen~8)(GP(_ShimLY;Av_$J=fMe2hfTC?2
zr)}QWb&m@#Ap-uy?j=v6xm4*-qQNNfkLl)~Pm<W}x|hZa)&(P`)>U_uz2Z{zJ2}rv
z!Emd%DR0_eb1!~mb_UJ;mLaorPghBp<?2oOJpOpUYUc+eVG}>U{Qc(yuZvZ&?R+u~
zj$~@T6nVxkDhS7-C&myv4qxhF5ZZ<7U&~WB(z&Trk?-N>BXwD3;E0m-p+@;68a%i8
zQKo=ZXMfIWR!zqMGgm@DpJ-Tr!@_}cD~5H~!|A!-BL$m5I7(`G?59mv1B&MW<=Q&b
zi2fWVvTdaGhe~Ogn=Ufo<A8^PfZbxD>yRx?MhT4tqw2*l6l0HF;@LTk55>y2x2h|#
zmCf*r>#tvpi5|CZB#4I7Q;`?(F%3h{E5i$QW<@BdMk<?d$5rXavkZr8-~3K{@O?=J
zc29I}_$Y7?-G#Dy)BrwRROHU_=hAjF(CLtD6#VZJ{lkgRFV#i1;{Ch94X@&bP^NkJ
z+<$s!TXt=k1lh1Mtst>re)|0$`$vmr1fj3s{#UmIa(e#qI5%RnN0F^sXc8@MFcPce
z95Pw}CA{I$jx9<qp9&AcK3?8K3W`vQl*kts0?YW{!p0~BumO}Zu<_LK#N^&fSVwSS
zflA;9OcbTxaM)Pz`0KD)em}QcmW&A-Bkm{or=o|?kOxpn8(C=|klBkJS1(S}I+dwb
z&@(VF(9_Q>dIc59ro|F`Iq4Rd%~g!WQO<WJQ#u7KRTs+!@D`#FtrE8=WHi}vP(mKH
zOsQ9;aAJAvT7$yVxq2Xm0gTpADre+hwIwDP#9{`gaPi@4j&lx+I&Lwfg75iJpEYZZ
z;lH}x9!)=o2I&Ks3%H#xWMyUVTo9;;rBh}G$a%0Ad4={EIzfi8!_<jn77R7G;3@q@
z2xvht;hE&ZP@g~BfG}li5j7HJ=1htA8MK?Hj-7#MqNOJY2XwUn7K=(}hj7h-0oiYC
z^GD!`)PP_?1z$@k4VJGV)t?gU-r5gE2A>QHk=88BeRu+lTpvJ12oz#*#Ju+buq4&X
z)<91KoU!NrXbPLzM6}=WEx-+Eb$Gg{sHph(yfrN9w)wo=1FrSj_V(8Zn(X1RF~krN
zz;kzWy+4)^>YD{rpS*78-ay^J#>SQaf58D%p{J*(PdA5g_-rst`1SBKA-`^Zmt>1b
z?-ld{w)-`&i;lPFyS^ILa`k`2Mqpr|S+)lZBcKv}9Nl@A$fXB*Rs&vQLZzolowf<C
z-ROVSC!n_$%1BDvea~<*Cu@b|r$`iI_%UEuvw8-2jZvTrcw`|(d1z>8^dKn(Bi7cm
z8I-_sLHCYr>wpaPISrBCXr3ff>JKqlm~7S`0ObV%rPb-+Pe8Mf@Nhq`Ku%R&9{9D}
z2vu6VAzAwcJacu!n1*z2G%&COAcKM=206jzn$AIj^8<Jfq?O_*Zj<~ELcQ;IRelB$
z?A)r}3z0v65@5aTGx<e$-k&bt05-u~A<s!o;XLPqDLNe@`K#~Yd*DzRQ`B|$$j!}{
z;77RMku+h%DanY_IIx7IlW8{TgsDL0R5LKQyG4mWi%~2QH^v6Scr%c1?{+n0vKYba
z;hm9}1^dYR2gong+?0c+ZvPcR|6(H+>tAWJEi_&pp3fb(%FYm}Qb~F;gJu=#b*9KD
z^?-4rX~Pq-3B0`ctsEOm#tbEBrU=ts7fm%WbeLj?`WO^L+0T~O%j^#lcC4m!rLh1h
zGGd@HB|@@@z$wf~lkL%{pvOy~U|bpH(a%9nL;YhH{*c9DZ$d|iI?3iLqA-0wMu|kH
zlpy;GsuOMpic|jd)B;&g)=$zDXjOo&1R5P3C9^a}KwwCah*cGXRRMev-Sl5`1c)iZ
zAKmooRLNpvC#`_aDg1w51RMYra0P^H5q3=#l`nvH?$Z~Suvh5otcsybBAY10*XDk;
z^DnhM2H35ge_H%m{j9G0b_g^g&aWa&Ar+tj;9v6!K(8R^1YHUr@Jwo=BZT}@0Od0{
z5;|y;*>|UW?tgBGp*V{qh~1ZATqij5xuS&iEqr7LF`#2f1Qc@9Cz@6W;Zqa<om|5I
zudR#Svq+Kl7!^RJki>VzqJsaclc{trx()>foFo&CIWmP0X|`d=vu<C0Bet_PDsdup
zI~rg-GcWphVSNVL$zMzAGPpP6bnRVzyGTbv>Y@ba&LpK@Y^Bj*7gnXGj#6e`y6g1Q
z)6&u^ckvHH>O=!GEl~gWec&o?1p>*s8;?F6BTk^3l~&#Q8x?9P_rKq}VgTUYf!bSN
zco<(q#WnO;_s6T3WrmT?(9eq(zSKE+g9az+`1b}G8XSn<u?^5{fK3Fy2XySE8<XJN
z|CK{6)(Y&&HDgMU5}V{F>)p2Z@@ngxVa)Op*w_v$Iz%mo{5_-OnX{qN3QUU4Qnj!W
zmX8i$0N#^Sc>YqKa0UfR`pg#&j(pNayUk9QzYG7o&QI6-x>ahMjX8jTH#a|@a0>uM
zQawY$1V8D;W#7yVFk}l^Ny#uWIEFF6o^-4+L~q;VwbtxF12~lc{zB(7uJQ22!{60=
z*fknQM@K0F)~2ear`hsDU@WobTPC%2bxuxB|Cq;eAOC7wpqWHAm7ymQY2xI>l8dYs
z+m@EZ<_zdTT&&aq`LG+-EyJLaSU0WiE|lN2KxV#V^Ls4-3X=1&@-PJyN;<Q7xbAe(
zrQ~I3A}G&HG4wQ1YSN1&Fue2ayzN4@Qd^n_XGpWg5ZXfv*`_ZbJi8aBQnNv3{V*PA
zBy`*hG+16)`B@U6Uy%{Fv1QBr1K>*}0N?yYPylSxjx*0l_0TU{3k%_&(flAX%oShB
zPt}_7<U7Z$d~SQ91C~}+H#aw7$b>L?0q2yMIxNP+XxWEKq9!IqJ^HkajKs|P{+bpL
z{1+bI;qv-x?31sr9glX;*W0E$xF{@OP9nr8KntNK#FchSz$zhX(T~>`GBq`&P-n{+
z2ae~^uR`s)RzP$Zs4Xu?+D{1TiF1G>2cu3J*|zWgravcMpfvaU!eh>`MtxWkQzx63
zE{GOeImDOt^XJgfTuw3@4Gj(BPwnKbxOZTQm?ek&q;q%xDI+7|Jq@<@eYkTkhR>X6
z4o6aw0R3wF!~<Axl(_x!cx+mY)&XWcv}e@OB4VlLH~=sWIpFQ#>EM~-ZGgd-i=anK
z6zJamqQXKzH(S|nNn#hH&z5@C-<Dji$_^8aCWSkRAR<ESh^dsoi}KVb%=5hTQ5P4W
z^9awAk>nN$xaqy5Wnc(K1QQn*zeL#^FP`X5$!+h<Ka=%FaP4;ws_<X$#uJ5bp-95w
z^$f7==IJS-=%{iM)W2^!oc{4RL{Ocs$iHS(O<B$kTpRH<EK`IcK}0h(iQ&J1t%$}#
zz9*&_N)Ee)$Xxwk@|ii4nTwEs07}^0+B!HN{X*z^n-xvVz-<XLnjcA|c5ym{VeHaD
zktp*3C^Q{D9}(?c{9W^c@Wd0~JSJ>;nZH?rswpci4IC6+DJ?5=_$Dl1NtTn|uLoC%
zYBc!`n72Ir_Wgr{lTQR59v;lB&!f6%L<SMGE`S6K(0F61jD7llH@mu4&m;syxRJP#
zn3a*>mymyDw;oQz{5c*4Sl=pLWF=8B0mFW{OoHnNmvjES=4QONcGGbJADx1iY#M%i
z1$|&D;R%}!2M~^!o*VP?1F^_jB?uskg0k<m1HFiO(%_38dVbM<`ZTMC!WdqN;@%ns
z2{wxHVY?EScw)<4?G(n@&swPmixiCHmJn1`LU>=+l$4tdfL!6N<3+Y8os)jo1pEBD
zqyAy6>YYp<is^MTi6iqJaDBG|%}1hn@tujCTSVK2w<#p{(ay4wOPd>C1L=v29$3=l
zHXz?r4wRrK6578lh{h%W!1%JdD*fNUXIiI`x({e4&JE05Oqs+J4qcsW3HR%X6e#7u
z@8?J<dgiDzP)8a95Es^$2ugTppM^;^@yKq{tN>z#Is5(Vc){&?DwaccM;4R{k4$N|
zlqwb#;}F~6D!AXokHLT6RNS=tKcT`W=ReaNtnK5|kzEL=aqJ<hHAZ3o|7F$Tx-u=+
f=rnBKtDxQ$^xg|kdIiw24JIxARjg7(Kk&Z*dFz@d

literal 25122
zcmb@tWmH^Ew=RkW4<1~bZX~$7YvYzcf;$BF#@(%PmtcVe5ALqPA-F?ucR#%Em+$O7
z?)`Vi?J-ubTC1kjQ?sgP&8iMpQIdI!N{k8v1M?OvE2#zp1DpR^&P7Ii{r>6-e+&bI
zj%_I+p#qkWpj2_RGqbcdg@KU`Pf9`3QXj<c-$~YpSHTgF!zl=)Yn4M0nrx<gPlW<Z
z#8OwOWXKD!BET*k_^vfx3se13va0fWg}iufw)cZ|aSK><`Dvy8#M|y%@lT4=*rWNM
zB_}&G7z4(&VUst-7%;(Vg@SB=R1R*TKnV{7)>}i^_XZblP>Fbig^4@P%bq;l-N-2S
zuOkvZABa@E%;quR(Idc6o<V;Gql!^&J;4~T`zw?q_!+!8N=`^(=aLaO8(c@AGXKu!
z1~vUMO1{M&t?X!oy!8cUfKymM8x5wFe1WewK&M#3F7%M`om>HQRU88=>`okp@E9tC
zhmT*vhgPk7t?%skQk3?jn=m%^G#Y3%f#+B(NyV_1@|d%JyINQ&dS!!7qGf61Zj#p&
z?9iO1k5_2+eoJQZaIS&sfgxOFv!c!y=LbNYk^@H6!5;uL4!a6^94{85NTg;8`><-x
zZ4ycf=CxBndK*vYKDhcQ6;TNsV09X|a97<J*Rn8+5e!26gjt=+G8;7<p!0o5c^%_Q
zml6ML`kr^Iws2#Mb3k%{Bob6oC6TU;cL!FLcvdXjfX-3nxHi5&TYMagD8TNN@Zyjm
zFV}14*y;~P9cdVksp`d9fzp^2;?c@rlw&&)ocjLK2X6aJwa}|YML(MnM2L5{RcNNi
zUyjHWp({O_rM$Dq4j0P_2>W_#3>&dgP}#|A5GR)kmAFPvV}JHUzqmEtK-vsJ5kp*q
ze?tc&CF<cf^U*i@xA?J201%3K?uR@eMimx94yqgy!-HCszRAS{!?5iOkLLxI=}c`_
z^@$LA6nh7$Xu|YJysuir)==#l6TrfpDS+ON|A6sv62pMzN<+^%(S0pF&c&Fqu$RN@
zDi`1}tR=#QB?<CqN4r`bn90K)*2x<%*V)z`T~x#Ez7tBqh0miDkNEE!{dA(ldr$9&
z9s_`L=Y#!1v4nux@nra7Fo*cmE73YcVTA+xE|UkTT)aS)!C&}Ge8&M?bPAqFu_j=u
z2eCZNNDQR_qHaWoQQ4#hAT$ZV4eYizO*JH`#4p7ah~nzrl?^dUz@*NLQ6K~=`tD%t
zjEo{>+3~hJmup58(aj9vsR0?{<Q;qEFbLYVB}ub2SRE1iXXf9TW!`7;-O9Fs$6L^_
zU3V}uaQ;-ioSc&DKN=4E5jElN6E{3n&J)4qwv+qeBl*ke30ic|=p&@^Eu7M`!<lv9
z%)!#Gp$hs_AO~=e!*7VP%Oc@&-jraC`m(1Yngu$lpd<%;$VIe<$>`*+L_2&lvWCTr
zq2%wh253M$_G2E0*Ynd$MS4OGfMW4?Nk(Bg^$<Hq>R{UeVNfLU;v|7&gW`_Z^m*b%
zR8DbnCVXmv*5braeQ4l-!xp+DN@K7y^%ztnPMI!bQU(7@#6oVqid|x)^w+^%2q!^S
zP;#E>u2BtfnS@)O;;zFbsmI$Ras6EH(+X)cV`KbO+&|I51`b+?$$^7aL|Sh?2G1Bq
zYcc%x*X?YoOqr9(4C8RXI7YZ&!cp#ga|`rBY(uW-tY24z2>84?>GM3RK;Z8TT9Z8m
zogy2fGzJX@If}nCL|cbh2d)!;4LyyK1y&nkcw$qB@AU|7XlwvB_&01f*fu~L5=Io^
zlI#G!_(!k<P#6q;Pg_QH1SA9L(p*7>p|t~lOf(&N`2rb1V^o@P^$D?1mV_MW13f>U
zRRjwt22hZwlB}{%UzUiLNG>PxA?1tw)i)aTi{hUpGt<)h;C<bF5+<gy_0PheQ9k38
zefm7}*|SE;%EijNU~hudf~rO#J)$nPF3B~@HS#({>D%IX;4YCf$eXRz-zUH)=h?s0
zB+BHJP`pn;nkhfrA?-{qBhRL6WF|XT_q%RktMWs@wLDowOtexMhQ4`-QrW0j774$1
zlY%b6GVikZvQ*Qe%h;~)4E5gpZtxz;)zBsPLDsnEKu>D&FRUUzzLZa6f`f;K*q`bc
z$r)ll3@-HYkL}OQPPxr0&*bFk|M1mnkBqLenG<w{^+fSxdEkFY@GpU#6*Z|G&z)GS
z?)2<73=s<fbfb1Jhs>gj5IID3MV&_{6LFC&bM!@%Md3!#l2q^rTRu7xTBWYCc2-6h
zdWJ4@iz$*S;3yWQTXXMm?s0H&M6)KPm9q&M-cLr^;F~0y*G(RV&2u;vx%)Ntcop8M
zUhI&1W2C5el>Di2@?cV61TbmfXE2UxUt-piWwU#Yo-TKvd{Sd-WpZNF{9O0x`g59g
zua@G^1w)s`bfY61raC>FWy7bHzTY$>W^IZ;N7S_?w6kqWjxZLRU7edno58Lwu9`>T
z*DKd|*9V6z{J9w97)GI=L(yW2^S|ZyIAm=WVh3RhQx{P0OE1~y@i}BgWV!OX#G1rL
zk@K0GTnuRDmr9#PedhjdJgsStxdXT3u_M6j!ECJar=h0lac_U^y?vQW>%O!bnp?)+
z?~Ut)<q6%bww0$Mq$%n?<2IR$egb6{<wo=T9S#<T3dV|BJ)V|ND`zW_Ey@pAUIE@_
z_oU}{y9aweE|(7;LUR)I+g4rMzvbJ=L`u)b`s|7<<(#w+wlnzQLf=)g<uZ%|pcGmJ
zx0D0yvV=9DU6k4EjQ-_8?{|l!jF`e$kHS4XCLRM-DvX?f8o;Gjs-Bjdmg3yg>H2!(
zx<HpFwIHBKnlut9DJ{hu+0x0ejRJYwvcjfkToh{=n<oX5nvoO=a}7(Dsqf2WGdB9z
zvlLw$lhnuE@6W5Z6w%;$R(F=L;j2hV(?dH=BdFvI&P<+*>rqHgtr6POb+kW^-x8pA
zrT?B-r*Sm>YdU25#`3G>@KjS@46%UsVWab=GuT5Ok)E2%SYCRyq0-?;-<65St5fJv
z*a`Ry-EzG86rKXFpsFXpccYC_{Nv}}*QH~Rygp>@EEy@S+|8O;04*j66*^8io-poR
zWO8Ko*6j}Cn0xv`PBY*pjaNkn<U@}VH!Z8TBlX8-z%z#;rJc(+m$J;jjjECL$7!yH
zayp9*3p+!)nltzh9YczX;(1oh7qtpOxi%?(x;}=_iHr?=M;h}be@dDn;UlafMHG~>
zTI?c@@%9o&aYEyRLCSL7^1j&-%I_3xGR)X)u4|6>mi98tC^@RlYes4^KXLyw|JYM%
z^RwjVh4~A2zx(JppWRN;hz%15Q^tpDd%d0(vh65G_q*sjp9>zw4gy*HO#R(D`;o4S
zcU=)blSY$1B;^pG;AcGzZhza)LB!u-6mIWv8oV#;DV!{vO?kt-Sf}IWzIPtVVDyo*
zY^$_X>&|ti=Y#q8r61g-MdcsMj=#s0+kP^xHQP%c<Jw5Ks_m?8o=q>+ZMc5oUvC;d
z2>i`s%et)6xIQI4*q4z3;O3f{pZ;J&W6Qkq*dScnwrPHnLsCa*SF&_&`or03wywwK
z=&jz{w~LB(Ec5=yDo2ny4yT=7-LK7`iL;1#j?7NVm*B69uLWN~2Pp@h`PX$v7b~+3
zs~#^4@W0^SDaxvY)$M*ZH2wg!ZclcyAuWD>`i%L=e?D6l%7`&T{#&GF3;9ZRKF&YC
zQ05_KFs4;7+w;+Iv8PUewlBM3A$#2C*<^Zf>RXp`*6x}ssnC({{W#Go2hx~Fj*ak+
zdwI!J{zZo!c{>^JiF?~#z-(}Gq%eUtOLUv_mgCy?rlxpBX46o!$MNUGTKQS^^3|3&
z_xyvR(?3(%Z|e0{ncJ3q&4255Ek}6r-+VvLSgLqPd1`lcb9W^>#yC3mf?lqTN_2J;
z#Nx#Y-y{kZiIjU7Jr}H(985`!b>--K2_L(Uq0L7=r);+$JhxpZE&q7(MR=N+7pSY>
zseQca$cbDbY@NUV{bZx9@3s2m7JPEQs_DggUwM>&(;uU3nUj5~{H$=V^VIt+e=u8I
z;f92YglOW$r~mU^hk=xnBh0N6gP>gjd`Am%ec~qK7-xC_dUiJ_!gDy%m{9r#N(W5?
zg;L<dWU)KUv@^WHBC<;cOxQPg=pnocPyLBYF`eU*4pOa!{fT0O2<s_gwuCGL%x$%^
zL2kRP!P>AH?|d^1X#z%eA&g3ADDpj_pD*1D;`D}wNPbAo=<6Ecqp23yOi>Z${c9N+
z1~$|Z2H~{?`+5<-UNA85@gXosuXmi+OEMSkzqPRWx$yrj!{ol!!HB6#fWfbKbz?_U
zQ(GqsJLk<me{x<${kGK5a@JB*;5W9jVKy|eGcsj{*x3KW0wW0Fe=XXWIvY|#Y^-ga
z_#r}oe<}E1%m2J)0Z{%+;%p@Z&{9;Pl(2I&rQ~AfWM%~jqf$~*3ObsY@vBKn|7CxD
z5&~E_JKOWKu(-LoF}rav+c}!Eu<`Nnv9PkUu(LD0QZPBW+d3OUm~5S>|0CqTawJWi
zj2$iQoh|KbDgTjcXk_Q&ECc}jqv-#B{$r;p#PWYM**g7g)@uV<{;6SMV`gRfzp`Ih
z1^;==uVM)?wbqifw0VW+RfjMq8=v66^#8A#|Izp#&JRwejuLh@uZ+&Z|AX&e=Ko#!
z|784E<){Bq$;Qq4zg7OPn!lWaEdR9pe<AT7nE!qIinB1PAj|*lGhx(u&DJ3p7*QCo
zq?iT-_Q)G4(^M+y*`3e%=3q&Pj7Em011d&{fTtSA^_9**507JiwdF@?bCcEFJ6Bz|
zktRfYU6*Kv06%0|X){Ecol(B_$Ca0d?<IdmGiHUBg_fVvv(=xPy-%9I+Adcd3+ZR6
ze^Y8Ss?x#-tCb|0uoHp5O?9oh#+l>za=17<%K~w*Q-)2G%`q}Aj<{pl=B*lpI5~lu
z?bmWB!EhTFjUcQ`Fn89woPLnMpG*sRy~!kzL!%Jjm@&q)H_H`_`d~Cs0937G9O|=@
zc=iLTp_G&}#(j{t0v#yHdjV;VmIEh$bJ1<D`z7Kd*}oJZ1d5$Os@3pO<XsBT-J@mM
z)9~D+3+#B`hu%M!7yzmEv_492(9_eum38Q#wPndBh{Z;EV`{-me+I!Z#VaX89^6>?
zg3{=Km3kZKqazYzOum(tBuN7r)R1n8#|JkR(5WZ@{g_TiHiQQ_NzubsPuRv1q>3gW
z;zo36V<;gJpe#kOU;<QXW(Map7=#@=w6^AVd3_~|I7V!i&5SwP+xmcLLO7P_;ttxq
zkO!+uim&5Ln=5#AoXg6G2FV3ZF7nZpk$G1amm}X?gXR1EPW`(&Xw*J4`a@-OKGi$l
z^cIw|GcG?#&}qs|64hT~_J9ybF*z{@2MnZ%zjtk17Z#K^=`480v*RcZ?wgv%D*`aZ
z$jqiTTpvt;__!5|47$tSjtfJ*9Tcgsw^CeOkZf#+H}D&-?*_jX39-kA4{pR0hhJTx
zQ6~L)PCY!9l_z4gu=~>MxfZu!R9~u9EsH^FonRVWJ2_q{`(2(ILXbB(v&gcTy}}T9
zR+^Y1c`8V>cN{*%oOqWvG7Q|38#aE3k^NvPi=UJPXy;ss%+=8NI3W7shd>QWACb7`
zjWYQ4sjPbQRLt@SzPzN=eRMQi4@@2F3}C2&NWUMB1Zm*m5v=4xR~aU><oKIIR55K!
zelWzLpH?uUM2;QEkeQvX$P|>;D2T_Yg=2sU5k6?GHpuFrObh8Hfg%qODuQlrkKN&L
z$fD$VapKour}J50qC5-k>?3a<Z;u5bzCciTjkeryx8s5GapL_(rS<12I{De(gE3Ds
zCjI5D@k)(AJmj^9E>E)S2qc$k7rW4gGle*)^8F<J-k!XigL@g{k00V>p4+E!-qpyf
zAKVqoE^k~nvrq@8JTZ`ML6IcH1@+A&yr<gsXeLM|qAF@AUdoVRb;!$Ek-VL+G<T_9
z#J%zW){y=OqAs44r1CZ~9o#qM!r-C=$SM`VsSOgmtxhaYe^T$wi8!Bn2iz*|in3rC
zI>tpk2|LVcI~ohpsVr!Uot?D1KGq7N?-N5O;e~KMyqPei{D~Rt#S@yoSWxtRsD&EE
z>!w7K)a5V<Hc^OJG5<KC0PaN6%JbXfOeAv>NS<I=U7%i$do#|bg+PM3mF^;UnuR_I
z(u8-V4=j0B;#>Mn6K*ZNQEYw&Ict6Ja|qV>FuVS6y}5jlnBL^E)U0rQBm$&{DnrtG
z4k$$1ApH`Bw|gOngdI0HP*}l8k}>iQ4$mcMFa$qG6R4Bk=?b?dF5NFt`~q0RPZ?b)
zhB%PUL_XkyfuwjWth>8M-4Ff?qRaUPYO17(lJO@L$483!<fmlot%}n5lcDS`*SJm<
z8j=x(%>-kS{0t0YMa7x2yo^^@Gu1WUwUU`W1=|&9WG~eze*UaYdD8-&ARlOga@LY}
zy6vW*dbuGjcog#D#fM0}yHzrpocN8|M%U*V;YM_Gxeki$I~`pYViA9S#E=jkplZn}
zUteFh79{5}VPj_xK#hpOPDoHVbX8W4#e4UTOiKEiF#9>xB$n+2(`PLUi%zU%O;|_d
z{o#|S;4llZh!9rsARdgoiivseffJE`dT*nYp;y5znxQTN0PW#vgTYar81AQ=0bzh&
zkl#>`%*T)v1~hT|Ks<@tx1Ztnz6PkniNz8SCyhQhON9bM2r_$2kS7k{F;v01;<r_W
zD$H%H^cqEr32`77>_oD6=wO^6s6+m>x2;GJv2eKwsa1C5`K3$XqZ|;0eiKlIC@nIF
z9?V$|4)DUcB^08w1H^TPrUe+F$yy`BA+vm-R6ziQt)~V436#xSo47^J?q}#V6eh`r
zeU~jZFVSg)?2n*l5R3g8YCd<;7mC{*+J#BZ!gfwU7~y|7g=I+Twl!iUbi4K>W{;y6
z#T#Ue%Hl;#(a53|<n`u69FF1xoGGfTyu8K&|Av~rCS&xB;odG07HMB-Xe<_s8QdIV
zpdl1fSOtqGo$F72o;^JaQ@k3M1;SlOHx}tF1e1#_dBdR4TCZI#eKDPqbKz`}n&fv`
zLJ>EXoq1%`TDKUN9R2a?w6KLN?katdx<)eRbSfqyj;7o&V3LOuAd}t<j5z;k%RpK1
zsUr5+I$5mcktAh$E%1ByHS|zmnmGx=@?}Wua|cIASM#axx^qbhQ?l;EqN%Ud&8{cx
z2F(OIY&+x1H{PI6Fpyws$T5H-2r0~nmm#oNpe6yK0)F2=8k=VYn<B_UdT4l<(vKSJ
zG-+~Xp2^q8qM1?ubM#Yh^>d<2wFe)9IXhLSQBDmHPb9^vOao!p*B=y+JRK+l9%bMY
zS+(7XPdMI(H63K=caPWXEIQkn3NdZI<E=qtqUP*?{<ST~$<Y1w@F`iLiZqm9zoD>I
z*W+F$DwhGVTn|e_USIrvg149+GeA@#L?cu*KFJieq}U)ZU-SOnQ!H1C9VXtSn+t2L
z9<{3@2k9-a&D@gtRxbd;!&9Mc8f1h?><NM-xB1iAlPBtJaYa>|oasR(aw9fj1?QB+
zZpAPn`(y2h->O{HZbFDp==Eqb(Y{&}_wdroQ-$5&zC>BWoKi!Ho~R+xUQU{VFL*7@
zZ1c6>bakLqg%%c&@din4I9^&sp}tcah!++=)<Sr(3;-nMxNm7yP|+-3CsZr{NHxIQ
zg1HVDrwZ~Ry+eGwy%rT^QWV<g6d3cibc5qXQW@*L{iDkAm6cc>mcAlvt$BFBUjj)q
zIg!HR5yM%mk4<w4|LqZ08<`+~C9Z)42*yUCn%{)NR1W!VzJ(FY321=AF{s+u1dG;m
zqLLC8Fh;p$h{_&xhj3aRv!=^}`rt4I+>byFkwMJwR{MCIu)yw>1Ht!WVQ#TI>bBgI
zmPm;Hc+r}NohYeC1T`ZfuCYpCNpc!p1UA<nLHE<8CYM$KvBFhkL8$Kj9+5#U)ecwh
zOUlYRZrCVMyi$BPq20Gd@8#qtu!!Iqdnt1!EMT#dQ)0MBH!NDvH$BN<W)aSqK1fj#
zoE|mj?wNpDry;4y%(|%Dr96xG%GfFhc(78U*r{(3u8-%b7N5_dmo-NzTlNVJu7`7R
zHquts!^unrX6XrY!qWxFbZ`-VfL!EX%y72p{LtqM{TDr*n<XdZ>z0dAb)0nFUtDgl
z!d_+iJ77`L6Ma^*u^<g{u772D<?JY>7R7M<87rIcpJzXSiY$W8sbipL2+e=EV5M^H
zk)y83-yJ`DnE&^cLCu(~!(TI15KzPYzDNg4>YtST#~1@F74}I2vH!FqcMX}2=v@nH
z4a~o0(!t3|-(&o>8IKeelpmn!kN>ZIuWcTbUHzx!{}>xUook|T`hFblFD)I>p1{8*
zznW-|kQjxk_vZ6!ru<(eAZl-<e<6FdCB`paweyE4+F#mSlY*0f;CYoI+KH{g{vPtq
z0`@O$i|6&BD&F6RSB-$R{r&yP!7J3yZ#<m-isqX7|6Ofj)Fs(p?C5x3;doO4$Mn}k
zzxcQ|_`f*4kr5p%Ui*;y=D#?zPrCiZ>Hj;XYfKOnvs{=^4Dz@v0k`37GNi(?THSjO
z4^s#o&4h(`i*0OBWT4t7b(#;gN!5^EqsFxWG+=-?2qeW}?=~X-pFUla#D<J2mDgLj
z#V(y?Pz-frTBpDxEfzMHY3dMFH1ts0#wzz5#TyK;yk)QgseNJ`G*R<t@-(e97p+b!
z;4CeUi_XZVHP30(VP0~qlLW-!_NrBA{`GnqxG{S62x;T<4E<$hw`G@DLCDP}4#l}F
z_)}V`&QFbG=8BXN^Rk5f1!9z7@eRxnpayC3hOAb6c*CXhwVa(y%HfKOXq|ACHowOM
zkiI)UuJm>a%=eHfzdchi4><T;kw%l~k@g>-=y1k{C_z=()8ccM?m6!6lzkZjs~XU2
zK&IQ@3mpd|N0Ua(Z9A@U=))7kX5oKO|8i{0U0sV)C;+~V4kI(Rof7yHufWZ4rlrB(
z>`_?TDucmUKa|z}lpuH+`T)eUAC^jK*LuDWu`;>(p1x=Fx$>YIQfKG;uqch@)i1C@
z#hh{wG*s>V;Ci=7@j{ouZ4)2K+$8Jse32tBFCW>m|DhuO_}JFz@E6Be;>D=INzgHe
zCV{}PzNV(zFPnPX<@dh#Q#o6gQ_3kjLMQJ1q&XJ-B9Gl71352`=6A<#?PwQv;a&&Y
ztMT@{jCStB+B8k2YyDd7Id{Lzw<IX;p)Hq%EJEL7E(|qJ;jCcs8R0Hg{MWxCQ6$yt
z-}p4%MXshS^bT*gI59(&y^p=m3oE>I^j<<VheF<3^`4*&4alnHg-4lC`h_AHvyXGo
zoplx$Y|w)Z!le^<X_+V1Qw!9XOFn7P?&P?IwEWp-iO&#r%J*7JI7#W1=NX{zb&B;m
z6*@`rZN4LUjc~Ix-@U8_ViI@yp0wT!k-04y*3paF<W)ZP@wEAyM`yEQvyJICyAIy8
zzj(Xfu7{2=L6o0ut*jCX<x_@OeDCBN_lh!13=BH(J4^Mit5XJp3G|R#WO^Ep1j9{1
z;jOO_5iLFiQapAXK1`;xan_w&<h-=Z-<-TWpBO(BHLo-Jwh3nY+*@9F#R}i=vW0><
z8BZ2hpRbK$9QvQ19^Q)GTwlvE;&a?RZqbSidLC=Ia&vJJ85z%i%gBCt+{vi^`8aC2
z+UDK$7#bS7J^odK=0PV)b`<!#)$>N_=Gr3*z)Fwsrwksx_G`t;xy{{OtS?JRs&YA`
zSAP4Pp<dR-y#$ZoUH+<!i3R0*p9;-ty;!_XqRxYh0BamTNev_y&!mLN#2=m$v7G%@
z=7{RxT$U8!9ZA4=-?O8|hl;j)RKBa4E61B7%z?VH=B=-x*~v1;FJWH02|NRq89WN8
zzvhL*fju=IS6}WHX4}l_z^Dp)&I?%BwO?o3u4~O!t)Gn#a+vnC?OH$BHXqfoQ7Ia|
zPKog&89XFvTi5gEIW{#2=I*2X2aFd92+%>3+{UKus(x~g2XgnVxGME}n?<v_G#M(~
zVP4hyea-gwK)@GVZ*OnhEdD}cAR0Goafz<$ys3H<_l?PyDxa6)8NdGGMqSUN+M@MJ
zlfn3<sS&#`O6|{A6{Zt;Qq^B(zPIe`DoGj8V5O#{t9ojG^IFUDWe|Cp&{ZQXj?>h=
z!D+l^sz{vNP)nVwX6M99(O^e|WsDzaT4T}#GN<l@+{*xQm5IB+60QZE!e+22s>vp&
z0vVmun@bvu!7Xa+2u$C9)b?Abec(!RoF8V6vs%4>&-dWI1NKzc5WYVi>y*4bNb9%{
zx-ei!0*ZE?j!R&IO-&0ElatfE=m+T0!5VMhzBOBw5kALmyx;#3jd*cC+pbsMuz}im
z_a`H|uM4+0{PecM=Ze8e_@(vOrGn$3&sCw)VXrVHJ^yuXo1OcFgh|f1h?m{$cEY`A
zowifd8%ZGV?cGX`roHUU>b?<9`^(b0u)e-N!+4q(&fkxUhrGa`?YQY+D_)*C&aLet
z>pWEC(U9@Lt^HxS=#Z0&T{U6r!uxJmpIo57Q4G*>)<?44%i>ej^73@TL!5JQt5H`%
z#m@4>khfx6I62Kl)F$X{-pk|IOQKbIqqN>>0KtIg>cdKvxtrci2Rvp}($gSqPGWuA
zRoUdi!WX4=wl7I7*>^tM4Ek(uadxg67kzKse9h0P$#rBi+i!bWf=*CK-Zh4w40+!y
zo4cwD+)sZKHm#$5FH&n}^n4cUt5dw*wgqBgJJGjYx!1-XkTO__n`je4+LkzJ0lNy#
z1LTP{hZyu;#N8*}VVM!dqGS45Oxg|>EyaW5qL%Dc{E`u>_d-80quIPi`#l&CUTukm
zIa(zj(%wkHbc+6)9$Dm1=M%8*Ya8}fpfP2=)Y~h^y+VS4MuKdRm~x@lX7Wo&@^!1u
z;h#&MHv-yA-!dH|4(ER&1qnK9$j^MiI$W&^4~Psn)qlCtFRZKkts}t{Ql?Aur++gr
zFz_1ZLLf(!OrW!>%66Im?9NLZuDXa{Z`gY$$G45`$lmicE{pk*y)5_|e~n;XD>{62
zw|ct2GNVuoT#|_n^5(UkQ0G;nJD*S6i6Il%vU|C<>qjtia{5W{`#y=?eOzboTt#45
z@#*R5d>zww4(sEG4@qnvo^Ja^Mulu9+v$VcS%d>Q&Q^f@@mLSBAIo*<>z5oOy$HPJ
zrKF@Bx05u7)Rl!m6pw32BUhtVcfWdjd(8+?(zb!wu_Dh6UYGe4@6s*6_drK(M&X;r
zF+LU%vy6tS^2YI?p&k$8#tTcQOV-+Syx}h-!njEyak8n8$BjGWcSm-<4ATveG8(Bh
z2=Xrmj^&kQq%B;E#};(gLX*4iNsbd}V~O{@(e@KDqE191cW*I}r^A+rz#X3qRZUR@
zw<mY0iSgU}nJgKBG@o~L%4^s<v0)C`AKZU!I?2O%%j8Q23DZDTiREe1;^O@2YNFN7
zkXj~J7C<{T^NdpKxq_~%7<bz?H*%;L*e4ICi!q^lrKI{l&7${o>eJNa9cg~NRk0dU
z#M9wCQ!%J|GxCv3yOcJaj&OKwWNv=m@?M^<g-)lDRaM@zn`DLc*k+V(hjhwN>FXDi
zz=bzl<mvm#OxkAUwFOe^eUgT<7hC^~hSc9TFHfs4MCu8Ayo0_iv~1c{M!{5wEWcVQ
zZaa{oaJzs%d5<m6AWK`|yu9nPJc8B%o$j4eh~RnKP3xG2H{P1a!~EFR^TP?xm?=jQ
z{l)!31rISn_zRl;Z2;fph@FqqFK{q|%%R@%c}j*)PptQ$aY&^#`6ySdUdHW`$o)j@
z;aH2+7b9n_uW2!}YCp}=iysdeO!DTFo+3ZW^9Wq!09aw+E<&PWNUh_QeYf<1+-u2&
z46N5XZ_H&)X8>o2ay@|r0;qY&_Y)$C4k!?bAqGG^e#K=s=Z>3yP$lL^0Sn<<ES-5a
zK=oKmH|w^4p*=8x81xm76KHGhK!pNcgHipY7sMuGXlb+0y_w9N*@U<P(Q|+7By;Sq
zAWv3drJHTP`J8do@@Wyj(Poezt<LMt@ge~(ES$Jo0aQ1aMhE$pK8Gp!Rlz9tqXa<c
zYFa(|hJ0|~i#9MnCI;goqs)3yS(+&>{Bys?)OvU52#AEo77qs-_e4=9I8DwOJr{rY
z(Vc?kfpm#xf)`gYJ^}nYtwUIZi-wug=De}kds|*p*JVa)l}xc^3f#}o4x&ysND3<o
zJRS5LX`#%gg0y-+Pwftiw%h4?2WEOsq~Xy22&UEf7!hF4?MF+>MaWMH6r(f+8S*j)
z736c!=%xSeU;`Hmk?)E!r_LL+!c!U2HX;pLNH=5$up}vTw|546lN-ayO)lO160bk8
z=cVj5%whaq2L01Y*7CKqkGF`E(Eb6J{O(HmBthzG#&P?HjCNzb8{MNXgU)%HcAwLk
z*+EjcWQXM2&?i`R@ZmS3@5RNbL#BUp(sM16^TXp7x*7D&P=DrNv%h*pJ0VNk{{ENz
z)^VMF3^!EB7fvrddAhobtgGRkov)wbyWCq$mXos(Sjp5#SbUGoyZxR_FI661LlgSf
z3H(N(G0<Wh%hQ88-3`Y~DxNRLuEj(#R&ey0JDoL_l+UPTGYtHi;~KOAz(FoDR;^{N
zT09kMa*9N0HiT90%0jGG%fip6jU)VU{oTc+>%I2AO-^tEW@g?xF3e|u)YPbmLeBl^
znKkg@d6()qro%*u*DLkETgesV7i!|L6>|!!Kr<va5wQzL>PUhTgN2P7kYDKZ!JOn4
zD)f*A)kqvWLSj{P3=GSyjCj1!^0G+69b`RC9F%aRvS&O}fEqZ3QForwAr<-N#BtDO
z^-ko|Pus%MWoY}GeFR8(9SI4^NZD?T(7Z`&zR#=ugf^D%XV1wG6Y?mxC^z?@*cZ9K
zCD;M;b5%k>>Ly1g3PpDXJX>p*m*<;yo+pNuQGPvpbUfUgP|3^rF`thX8|edN>7TJ`
z8Btx*cXkOKce32ly=d<HpV_kQaBKO}#V$bcM~XblCSl2Ax5_V<%4Q0fISEP>&UCpy
zxJC>PUp7vLS=t|qOBpRE{r$bo>^!D2&^sqM@2)C*mn}X6ZR6iO?8)MBq%k&DRmA;~
z^!TEr;q#+x#Ds{mA_3liqR0U@=W29ynMrx&1uMvxI_QC3O%*?m@pCxyqx+KHR8y3U
zdPvk-B~$I&ZT4}3gy&JJ!8}abcgndev^Jb6cmqSc%zj?7GG;YD+_^12U|Ht^FWJ_K
zEd;<&1^$CxAB&HaO;XXE+K{ciBb#b(s|2D94L#lW!ZjZcl4k}Zt{7M;uNC-qa8fa?
z4z{g$RwI<w(m33*EZ(W8s2iwTs9J2vf0U@U@+fdvzdJ<AO*Rtv<=!eZR_AzRmr+mV
zE4gl>sCzwUGFvAS_BqJqrigFi+FMm?@sh{)f~ROT_%*11n)M}8^domB9qzd-cWWJn
z?8ZTTZkkt#Sol1dW=GGbN_#uA@#;87CNu^*TN-!L$YOjs$<Do+wJ=4^S7N3ViC*LM
zmzAIlKwLazH%WTQGU9QApq&obP~UoFW9%(AdSDsv^%|I1a{m5@lDlXqlBI3#QcN|$
zs2yF=A7~PPDrwomex81|pZer`SdoV>rx;_IcfRO3SKBE1LJyZ9nwyJFxWMnZMIqwM
z(Xs_M+2EB{s`UX$1_2YX3USTCPZrglT&vl=gp=Z!YeDsB1GU61Y`{M&Ya{r+OBRis
zm*aLkWvjnS_$vfGQ2#3!w2}WL{zxY%oPuC*ym^HJRUtiI0;et)TY_|jOG>UJByjjz
z+DZDS;{7!BHYeFFb#xGCPp}d6$l|&^7exak=8hAVmAfB`zbP^|Sm(EFXK5<J{b}S2
z&YHb6$~(;%O2zZ|<d7MEm7H#E$p@1to~eYLEKB2g6rR~1@@6FPH)mP~fufX>a^=!y
zV>_5NI80G?ie$u!i;JsKYUm+@W?F|zIRSKF(-iIB!ZY-fW3~0$=V!tBeP$^GbpL?#
zJ)hf15lSB&q5)b!<o?h)tDmDGI#w25^=W3lSx;LIAt!}0%oDE*XwsRGZCjN4n6idA
zb(4_T#h#MtNT#XqNLEC_66NeoC54{Tz>qVcs<9lfy4u4Dz7GHz-`Ps3KBvs2Zh6fV
z1JP^7YuarzhQ(LaTx`M__4VFRsWKvA78G1{U=vwWgh(eP`pqKIhN|&?j-nJ^`RLxc
zy)zvDE`QUbPlah5aXD~a?S*+MME|ynfSkIak0Du|g!m+L>4~&k;wO3k?k^B_6{&S^
ztc;|fQknVt5-iD{^Ego&c}YQ$l&}Un04c<)NUhCNx%QFc1OAA)AwY$deWCUym$c2U
zqEy5)0eC+#kM_sjw5mhHEXtY^m=apGwKfrLNPQKJZ6Rm@uESW@$%OOAi!?P^yr$W+
zAcr>fN;%#q6Mt$eBF=UN?OL6u#b%XRguolsgup5=R2_wXM3A#d3fWF_Tp)UD_C4IS
zr%C=B(a~a{1GXupY?JGa#Nv4v(gc|ip~bLREi*we=95~|hw;?4-q}T@lqHH~W}fE}
z?Va95u};^Aqxv!MCkx@9n@NARLOgI^b5~m9$aqmvJ}!$#<9=|25_r;HjneZ^TDVQl
zx!4Y{uxTp7<59BGhP=2M8hC>%-}aW1v01{3YC$2L0p8WlV7YSl9n0!3HbMiNbEDd~
zTw!A*tXVU)#X~bc4z@Oi5lvp&nD3q{asqHArMa`3WC1ftYTBDgqrYMKTE3}I?rQJb
zlE7Jh$W@=C?WU9@Q1G~fzcGx6V7HJN)DpiIo&khjbCDp0zIiIz?WX@Hfyo+)tkR!)
zG5ve;&D1Q+#!zs<H+QXw2#IR)3sg3<rCkG!D3X93?exG9gQ6dy?zXui%+!Hk^xeRO
z&T^&srZTB=$cI23-%b2a?Uun*fG=YG+JvTG^IAxY3X>d{wRz+$8?{}J_X1E@VP?%z
zx30V7G2_TBP_36&8Eh2c)jku2Jn-~W7aDQ{eLV{akGI#2BvIYo4eGXg+mEtMlf3`O
z#!4s_9Ws&7Z9gp#kGYQ!fWQ+>Q**T5J?<0WcrV3Ji15S-{E8kV44?B+^WESEqU(6m
zy7(bHwu`K%U3<&XGRf9mN;xb_a6hsI`@8O#In^$l)UEw(n-hLzW^cp%$9?m~H9FV;
zbkXKK{=PFg!kuXk3oMiHXHfeXWWSM>jiR63y~HL-8c6y+X<2*X+jJ~4cKYA+Wl?ZP
zW&(C=U7b)9(i8tXwZ>v}AxU!ZW$*Uj1BR^rO<3vT5*^9tCq@^B_a;Y8Up6IGKD<i~
zxep^16H$_Rf$I2nr&arOv*U94lMD4vh4cxGT2T|~J1*=+PtJuEPhg&4WA^=O_?k3f
zGSGgDb<uxIgM~xQl`8t<cBHK=uNoCaY6u966m}FFjrb<(BNO9kBq3SAX2|OT^+e$g
zOjMg*HO2Yb(;Z#X2BU+;SF!|s$WkD(Zc()+M~R28MRC1ac~8EU3GGY1bCOdlHH}KY
zGu3Q30Upz;3=xT;+vz;kl9EBvyj)S~Tg7{s16?KW13D{PHoi}><-}<|SGVfIfqKJk
zJ0e0|gZ#_kh1gK=?>Z&@&`h~}RkFS8A;=+-Ds?!L=5rhecBnEJPJ-dlAtNM?QCL|h
zgstxEmai+kv|rwtJJ2Xza<lgr53IJt)a<N5Z}UZ`tYV!gM@%-fK!|##`6fk^)?0k)
zrc+*c{&!KYm`{`+Jt*p{I;O_`{8_z~$d6kd3P&EZ6d!QlvIyH?*PXS97RyI&a*5Cf
z6?h4FKi^OS+ZEWU_*OeL7wXK$g$C#5vF;&s#_qu!=*5nQR!bA3w`1|BsoRQeyCF2m
zk=iu}YDgv7zz(91$Y4`sPK@<s{K2+u$nPW)#=eHuSw?F7b#0t=F?_4LGlzS>x|IUO
zoqcdLwj2BLf-BCM&@$85g7AZ%<ghGerbTS0s`-0W_02>)4zTpkxE%$dia+_tzswQ-
zEM*)I#B>w-5%)mIAmwDcan(No)kf-BoI=5T7L=RIgcOOSV0p~GE5?uvuI|Ti_gp&z
zEMnwvpaF7_u_EtjT>dQhJt>ly(V&@(vBft0@|z11p$+@*R2(?ax8!n)KdP!eGB*{-
z9k+ke9GwqqOvnpE@NdDjFGNe~^a`!Ee@s|x$TiQMFcr(Smk)I#gY%bnbE==NC>?e?
zAX@I9IOVQUXp176$XM6r)yM2cVEfFOZ_e?Vhgy$g{?38-OOC@7-64@)2s|Cpj32xV
z-=t4>$lE`9r0tjC%3k710!N(G9eck=WRXa-l#hD9m_;cm{v^&PV#VR2CY^J)xBldw
zd1De7Fy$fu?-{Sb7nU6EK99VXSsykFje>~K2xD@+p3?rREzph3w!yQCghR}>hTxZZ
z5I)6eFNjC2%A((<W81JEQngmz60*JBN|+OC=tgK1dY9?YM`R{v8-kW@n_X1-@7@lL
zq=C|4n90OE7o%`J=J9X)1nJe`PFii#kx%lb+j}mPEk9-vWLzXJ_6`aC{S*LZsrnwC
zdE*En*aGDqrSIg~jV>)iLe`f!qxe$f&<7@)d?eLj7Po*n<Kvau9wGY%$rq{PPw2dj
z*7Ma>9Lt2W&c7SwxBMTnlRHz9s?H3G0$md&(OV4sjAKL-!C$P1&N@tFVnt#Juqj#b
z!SUpYg~mz)VP`{xpF=p@{wTfaY_ydn#>+;h?uH5-R($<4Ku>lEqq+0Qi!Lp<vC(yF
z>)Q80Po5pn$R-C{@h!IqYTiITO5ZbY&i4)L!dMm{5Q;OV-RxS1GRA?($}Q`dxf&{_
zKomIwmK2PQM#IU^is{mmuXe(~s&%@r#1_8*p@gfORQh+FpJq|+#ToEX;7II1MZtcV
zH~oC9$x{ZbZR8{2nUyiKY&}@3EFtdzduoB{O4)UfO&?#kjl!{0)!8F3`a!Sj%Q4)(
z)DP(F+c27R><{EN$@eoe)z1N-N!XLxm}Kmrb+DX13yqAx9E+*~W}5}u$d?ti3sQ<m
zxR9<`SdKjy&5hV$hS3XvQFj&Qkr?aDpW~WGA8k=Naa#n_GVXv-^Unzs#?v1RIu4tz
zU?ok$1{XX;WLb?jRwfFUVoxRL8@v`xIGKu_yznUilFn{Mm&c^QFSyntFT?GRkyOY#
zOkg!mfd#+h%;yYZL@u;Z<a9e9QUSlDPC<J6G`do-98e&AxKuRfFjIWGoVS@iAsQ&W
z@+kbL!2EfhZh>3$+eNC=hUi1)38Y`(SAh$VZzogunjeRzR<?~cIkV)<-j=d2lzRPf
zQ{*`xg>^{F;WZm8;kxg7J%&x7lw~lbab7dK`}uW8herC<BP|FEx(3e(_d0lCMQ@w2
zl`#aVjyyep!kNiQ-)6vjd0{=Q4K9RFGMG!AgqvQ1)wWYOP{hqQ(KKH^0kN;MDqVgd
zuj<*M-n}(c9NFDHX2qmg-1MoapDU%Wq$ib8^vr)^;>3>A`d!W-l^8<qz|zh7Nzx{l
zfXwL<@SL@`#{ML|#Ix_kwy+x9m~@|=#deiuG&&SPj8uz;IB)V2$1&e%%Ui}pka6hq
zu-I7FDO*A`p&&K2(o3LkO^RVnsgiBHQ=RrJQ=A*-`-Si{#Bt}wfqbWKMgvUV81As7
zC4=s7oYOBIPUG%a<#a!1Wf^ar#|=J;b{V}12};b+;->kcYv;8|63c&>sb}=wojfW0
z`JZh_2W;NYMzNj?zeo*`d=YWyCLZ4~WP}Tt8|h6fy;)~nB2Oa2tR)Uus4O8~aT43x
zj}d>SWy=o3u9HCt>k2~iz3@ms^g10f_M1_NkjGlFhlLL88eJDkP{w18o~2#5zkQ?K
zCP-lT9wo<3(g+!QYdy$o>-{NZH#`weudf=m#G8pM{~)=a#&|tkntL-9KDB$_))g{G
zO}@n&=#MYEt=iyAM?CK-`|b<c{8}2!!kdo5P-M^J?g5|7wTpKuCXnI|26tsI(1C*&
zaMX`8#m#7+u~(OR2A0s*<U(PuU$*!SPrXn*(ti~z@=1_X=^VZo=3wF~mMU;gu~#W1
zq)qi_W?sa;#ihxheVAi(b-twZQIBpnzxdUd^sMm@K3KdTjiQ`36kZdmZ_#b#%7VqS
zY$w;?fBxYP_COp(i}F#?)eV9;gHp$e#F8nGNy*R|QRc6TX*LnTw`@WXLimr^m(C5y
zMJbse{E#)YZm$o(-qhYCCX+?>Q4sYCtsl&HSc;ZIEbIU$V#5tBS6rfzFzP6+kN&vu
zEhIf}Y@#_P5F?)KA*p->>w{~G{<d$5g;qyv27LhOugmdmmW*dik36>R(O6^Je(L#3
z{je?RPWhjt4yLTrj*_Lh`EV$Gf5vi4^`G`Nqi0DjYMoFWJX=h5ZoW1~1H~^sz5WPW
z1egH6I+jzWgWN@E1V-Q=!c*sHd(5|;w}CLDzMS)X-lg<V)zK1I#~5mU`|$!Wfz1J<
z*zCDik0mPff`w-+v-@8Cb(r;u{WI~K5*Fr7)Xw*b<m;{>&+1w5vjshe_p0Fp!*^4P
zU*J*M(|>zYzkr1j6ghbE+Ej$iw?T#GK)R>1N_2xgWx=04kp%=nc!91Oq!^tFJ3<jr
z);`IpEvb%On`m+o7xYvbaVRShi+5`stP4|I-=nK~h<KF}4L_qP8OQZq>j3i=H>9W4
z=qka)t`zw$Q$aEW_Sf_d8-k-eJwDV$UKgA8?OZc#6!F++1@>muxJwQX5GT~L%y1kM
z*v5;8t?aSq^qbZbZ)x28DOfJt<ek@YMVd~`j=tAfkJG)D;35AF`J*CJ<N|pX>#mRt
zAg`XP_U8%UoDUo$`AZl?{?mQ_%H;f)Tg<WgtM?dVr%v5PVI0}S+4(-ts;R1h#2PFf
zC{J5CGu$6(E-`o59rI86^>Lss+QcC4#6)eoMJi2QO<EG3-)VfIhtw*?s%ws2Y^aO}
z*rtNZ_E8I{T0OuoD*2L#KS^syT_@EWp04y?YSUC=?zCXLUHEZRDweC!lyDge;EuPt
zk<v}?K79y#%!2+VBO|0pGHUra=!fwA`@{=OXxI_valD!{o9;{1>;eGa%e%$hJ1o-s
zxCB4BM`$8bTz$l@<${llZ^YyGW9mr@Zq`)jNytp1&GS^&=Ad2<i?XM}?CX-jo)OMz
zzhh0pi^mbc#)(vAh^v1e%3*<;Z?NTx|GOOFTcib1NTg`juhDe>tV1GGi$i*J2T|xa
zC<QKZ#RkZc{s76JSb~tmpmeb<0i*9?AZ?8V$L0^wr7C^Qsh;B$Nl_65k;8#)H0q+e
zV)lNrfxD^tpFqFDtlqC(3(+mUc)?(U)HX2RMJL$^TUXAAs8){&PVjA#<@4Dv|Cy}f
zXp7OrI2M_3+`_@Ws9`=`%2pam*>OIfu)_0Cc;n9p%2y#I#-gDf3i!|=gtZTZCvLW8
znWXc!7sTX6g%hTh;`PNcYgWZ2uHfgN*y_WuD}o4`Sw9G-bWNgaKmX}!Lpa_^FJiLQ
zE*s1q_IALM2V`UM@SozQrY{Amh)NZTDR5wO{_MMlw>RtXn=en+n}4~*4mT!t_TXi`
zZ}@uz#lM7_^_vM^NF|0r$Zu=B0`WRAc4D00QOf<jBX5F41BMLLT5zI{_ACNr$ZD{^
zS@D2_%9LF*^?mNP%?xNB@MRT%#N@`p3Y=+`P8mf6=@)ZEqfQpzH`$nzqf+hAV~`7b
zlho=n6E1^+YWQ)c4D#4H7(JoqCo2ogM*_y|&IMBOgaT4i2E-FB3|7Oxo-T9#9v+y+
zdJQ&E{j|Eo>Z2qlCdNidzOb@piHX1w2^znZxGSNUU{8)RFZeD9l)<>}kYF}M?!&=B
z>5+a%=?~SBl}y$_4g?W>k>cEBBPT-%3zDp0KQ?Yhs-TcheGp8rA5NA}Huh47c~WDh
z?{A{p2n>V+NN{4xX<i_k1v14ONFb9t+wPqlr|4lF<`IMP*+^X^{yCrFPfz&@SC8Wi
zi#||5U=esg0-`dm==PD2y*-g$#dwJQMGirc6o&<KHy4(f$`Yp}l1q`2Y8&a=?y>ca
zbD_WKege{F$a0g`JC1P8rmEfo=`muqe12f32?$GsVG57?`}_dV-%#VJ{HBc_j>Jyu
zv?~(YX_1SzVp!LSgTi8|z}fDG6Vg68NhAay1^%}a>8V+FOlqu`apqlDsRj|IDsBDI
zb87_;dSLL4coCrp-dIsGq{t;jrCP3nE7Z~Q)I}#dbc%?v3QnW~RgF1Q7+M#ZxNpCR
zktRqG=;9C(&|;tIi1ZOm0OxA#w0@VpPbMsiISri%4H7MRLRJjQldBO4fl9I7)w;=9
z=j!9whlTa!scF1stl!IL)=%5~J!S+3{A1OZZk#A2oCX<M(2*I!v8q~t?{aZg3<C~c
zJ~1Wlp1qs+{*Or0)o1cO3$o;)^iwu<u5ol30)zDRIbX^6K@j6cr#E*WAxh-zyh(V;
zH!h~ggW>hJasIB`ar{uV<@2yK`S2Kms7~m{+DBfV@tOfgS~Z7XRnyQE1e@o7!q$Hd
zJrPp)PmsUvkdEEPZA?~burLKO%2-gM<BS-v{usWbP^BgYg)-(*s)(I`^$oY;5l3eF
zPM2JE<LWQE+hA{91*WN64O?+M6d9_A200E!0N?d&d57Mh%O0#0moA4@@)Y`fs;<H@
z4U&LIT&c$VQSUB_*j$+<K0if&$=B)NZya;#xykp#jFe$S<zFxQXZX)XAs-SE*h2Mf
z+LgO}5SW5RY3WVb-UUL$6exjx71Uw~UC2HWysm?BrHOfCML!vs1St07qY0)BO0iJZ
zEk;7Tr7lx5=(efzDensrJ#niySIFtZJJ_hA+^w0vrvxrG7d~`U0$Fdl;q4lKACZO8
zV2oHGaLiOM?RpwL)>RYdFn(HQov^t|{X60ikV$_SDcGMYkS*B%evgtL3yRw^nBn}T
zGY+jBSH~a)e!9d3ZCav8VG&>uW1`Ui&WKOnuXH|A81kp}TnCH}yv^SX(qfJ$7z52K
z)XX`#3#(IZr4V*u2)WA;+-J$LB}oNq7>HV#+6*+frf495P=4y{e1+Y!i8h8ZC`6^Y
zQU+HSO}tL0n1g@Nlm>s4rIGB4{B@;GfC?6SUgQlCK}BHmH5M{mFbGXeyqLVyG9<sz
zwm=}nzlf5wFA%=7vVvv-ji~@m-OEmKpi|~STDMkAuA$@d1!_R^v$7&=O6&Cu7W+~H
z^r&8f8Z|}sXejKGTdL5>x4q`*C?PvA5Jys{rHKn0`qp;yT%MmF?kDN+>;FT;>U)^X
zb(_u_L=RB@o*~<$el^L+A=~Y4Z-XATvxjnN{g<d+JtxgdevxD~Vc#^i9xoPzZ6L9H
zMemCseLcEMjGtu7<WC-I&*Qy>ThZU>3S8+pndCG8>Xno!Vf$02Z}Aq({&z0NgwXg6
zBYJ(D_&+wwI44SS{pG^*Pv1W7EpSnmbT)7@GQ@4~%AkIHV^~eXX{y+R-SckIT(=tI
z29w=N@vm`HlDP&ZlCVDONf{;<CNN*!uv}^V&-k?_Q_TQxk1PnidBITi;$N82C`#y@
zovK2xR9CezvWN-Wpa&htwPPy2^Ia&AwGiSLgSJkISa<)Gi)!sX!193&-U_Rz0jq}c
zi+C>2o)BS*x7%A;T24lm828~;$~^Kx^ll*X#xNzbUMc33uBiGCJvHl^e3&6^osiB3
z!%M?XNrFfjkV;$}n!alv=hvM1VREn2&MG#|(WA81;a`8a3ARl{Hgw&VxePn`Xr~gC
zh56R`oZO*RxD=2z|CahpJJS*EflqUTmfIJK4ZKO(*qYK7=E6#(=75uu#6XwfY72g1
z|A08`NQdW0rIhq{z3c%F{8b1=KxL4aC?yb548k(|)=vE%`*JyTg)9i=T>Rq9_};Dp
zEv{y9lYLwOu!cs&pO};^@~v>s;nxa3%r_(+qj9jxq=Ui%>sGRb%*Xp1VBwvZg0atR
zn6ohKMqrKv-b9l(b}Tw&p7?i)@+C@Ep0wD`Fjh1hRBz3R^`I!q&u&vO<d*XjG}M8r
zQ?p63ecN}MS%w407P96y1pP9)UT3?ErK1Ag$4)sMKWiLwoc>QU=lu;=*EV2Dh#rFI
zy^9`okRf^<LL$1TqxarBBkD*nW0VlYqj#c&Xu+r>dWas;NifmAlRWRc*0<L84}3q*
zS@+p{%{hCYec#u0F9eSIG|@e{QjYBkILjUMk~vrr5Q92&{NY}VzXYau=R92wzg%O<
zF-Q4bhToip=f-c@E*RUZvTZR!u<-f{Y|7UDnm9WuK~&1KP7%Uj4Q(EI3|<ba51S1D
zrT6lwhaJ7L%nocrNz0t%z51PBd3LQ_gCLus?#)RdgLu>TVB5bZZw;khuRxASq6rip
z+4r+*o5bUgPWskZ8s^rkw;#G`k(Km~1jebV^%UX{601cu{7fN9B*Vy2y*<znY0cwd
z$~@L5F;c0)C|v~E9*)=0iQ)DUO;CwI1=?2&ISA>jZwzc|2}P-#S>QPAk}ca)IQWn2
z6+b>FGMOj8+ve8x(HxooBf?b5tSw&6_N9jcb?$yveKX2FFM3RA3)ZUcvVrl<6-(>f
zl&D7hGW7z#lW?9+(ixK4kwQf>NDreyh%kWEfn@J6EFH$xuDOUV2X5usAO4&j1<iV7
z1{N-WhGixKPia5aZ*JOieBMJnmpcWRwZ%Ly{fg~h9{_H!bt^AeTfL^yd1f<oU-3)$
z(kGOyEO8;-(H*No%C3JJ`PZY$r9OMO5McbsY!sYHOenN{2;eePV3Mqz?AMYpI+heR
zJ$4w8nJ0(A->kOOZc=GV+MbDXgeK5QP05lpyO7wcbl!?NHm-ZCU02M$*AYE=kA2%^
zFRO|hHA9ynBKK?PM`E%2GPyY42epWpm(=Uhv*OpqqRF_j<<e}w(wV+Knw`Lpe?_ZE
zN~-xZSIgoij~`25GYH1arWntke?17}IS86*dskMbF`Jm98T56>g2xg&^dbi1WEp<-
ztIl_4x_0;mNMZD#35F5RKs|hvJd+D;{?!QAH)8o-b*=dTi?>M&RSNx6!*0UvqH|7o
zo_ep5G@#Z~SF(6#5vK>s!heX%jXNyo5oST##rFAE1K4-q%N4R=0BaI#b9NcI_z19p
z=~_aq%Df4#T1$Z}@Z&%DVb!3Zm}t<#!jgSTt=+DRdA-~exjODtp7h>tDENfVrmpRH
zh+oH&yV?_pmL}dSN(IXpg4>>429VOYEdWLS`9Xe5tfrWjpy_5SUo%>6Gz=pgvO;X{
z6bQ*wXB)H~9@;C-3(~A=+m{Ih9(EUx4LNhHzOV1Er}NBfqQ?l@q6zM448!uds(}>C
z@A3Gg(=HqQdyHxR?Q2Y`3_K|nsf)eP4*>M2ZEVym4@_vpeYAhrzxST_m_OMx{?1H^
z{MEMZrtz*jAlQ%QdhIpNAj@_>0?cPJQ{n0GhxHB+;EiiR*)yl^Ve>3}zdYY$@>q2k
z8+maPG6p_^>1GG9f>HOgVPoi^;Hw==dBdfUW%4n*$M^A9pHwDz>0)XLsA7_gNIF?V
zK;K&qqq59d`Gt5@ZYBzn6iyQQL@@klU(f8%CVr>tPoFC+K5<ZEC5R(m4N)Ul#<^`p
zM&7{N5)f?FsWpyjDqnVZ%;7P!@5a(iTfh#RdeF_q&>Quh$PFF1t|YJj<)24%4vNbd
zk%5P|?#e*)M1%V6a-zLLi<xns#8Q7*a#r_pur-?O%r-kZJrOCO7V9qD4M}O$ynH|R
zp{Ss=ETvcc%@hCwiAy8jN>`qrb)G%;#sZIpDHeF21eO6RU_^Xl89VA9<L5&(`Mlha
zuvB0x{_`~Fm`&k$LBW=ym4bkDI7KXOqjFfq&B4u;yqMNQJigS7ON-x=SxAJb4)?j*
z0toiLu+Tb5d{?yUpzQ!0IH+a8-n<;vCdwbW#;`0Be}m1xnQNDKSvdh;e&)0F9!8Tb
z6Y-3`91h7=PeJ{@Y`{R2I5?bQ4u1dI*)Yie{d#VIZ-H*2Cy+G%&CC%!)Vd*{sl`}Q
zXmJzF4cUO)=4wi!)>Y)89(`?U&uk;mm&_nVUzx&I5q4UikI-^4#zuciU8#Q0Rgc1|
z!?(;m`yL#B=15Ii>8cZ*@8IGHi$7Zq|LEv*NPEyNhfvoxZF0Ha$<ZEXo0}5=*2wi8
z3p#HOzmNiLyfz^5^pdnDx<1+m653D#jX2-#Ue!JT2+a*9KFR6rEBm407h+ic_2|lq
zBf?ipFi-46hB7{AoMh+>{!5c|0#@``%JQn7t-G}{0iS2>^1GV6(~r~{`Rntw&Cr!I
z(Iu(gcKOrVRJz+6XC|hm&PxWty5{n){?xQAHMNu%OKJ*;LVuCIQ2%llZ7wd&+oQyx
zN({3KA7gV6Q@i`l%PyU6q31om;bji+iAGNI+rQ;qyuQ~uObA4x=(L0p*6rcgCy-nJ
zRD8?W3(`2{{tuOW6NiUp!rEf`X|^X*{6kw5r?hJTk%bqG_ipQ|Ff6M%l*M}dt*>}Y
z%3*-Lo>1HMv!aow3G-VuF}+)ek>1o~7LZ2lP8t0E@ac>2UoY%Gco79q+@r*MfJdp3
zXx{~g!;2cYy(z9ee|y5&c9MF%etmht;I*pesG~ro>C!=M)yV@ik#gH%?1CK&we3Fg
z4$t8+ouZ;<xj7%$t16mC^Hab+S2iy>MJ?!GSX(2?_-ZSFwZ3W*;41AC4~v9GvE9&;
z@!~UX30bEE@dvuEcO|Bl5=a?tbMiq~#VB8ZS!jq<_v>LuV!U|(gm%b#V_(0<wW_wd
ziOjC`&CTJJ3kQI}L4Q#dnWOM-VvDrkM66Cy02;|}JT@A}N#sbu)mX6L);2<5+G!)e
zqme#Oqp_jm9+aV{G@7N(8se83ovvqO4;DKUOFi1}_BNKB#uqK=?@zP9Qh3^h3?h;A
z(Nd*}?v9Rh!NOsO(JZv^+5;fjS@I$EfNoirf|bGi_48gBY;5QtZA@fIN}2d>uEROA
z7(0pRIu@Ct0wl|LUl^HMuWEhXKr&RnhWqk0a9`Nbnh@ZHk(AUbg?B$&W{rmjwHOwC
z<WcdaM-fYN!&dXTC2j1Z35A#N<L~^$C-q^A;6pLSiMqYV*1Byk$`Xu$sw?E$R5No;
zVBJ;B0X<e=j&+6V$Er(^m&inE@j6=>zPv}m$FzzT;|;WPY+rdyml_Nqvd%?_Ce&@j
zM)Pp(_~<2b)2KtD)y``{qp<Z$)>8QS6A{mcq^2w()I=dj?-sptm!)=WwoBmXWU-dc
zj@MkBUBAyMzz)-4`mkI1?xRo($gMHga>8{YPYZ>SSH1Ql?yXWC0I8d7s1T`X1*K%b
zp`tL*pt9Zp<hOX1uvr3mqKh>y3#G^&Ll7Q!W76X53v>ts_;W);Btf3d7sr)>c{-!6
zZK=*kXGg_V*&_h`57svD$g^p74CA6Z0;vlCZb2Qefv6hrj69oitL*QEvcj~vK|7f<
zvma__43yCRWSctLFhN+t2EF^{Qpmvr25M9ry0fi<A1MKSc>j*mo@97=pIG>o*hxFE
z3!Iq>1duiha$i<%8{?LoO2`L)C3H7tgS`Dj#Br3CW^u7UTzvdf0GwvwpfR3C9t3T1
zS3i}Xez>IHBJ~p1jS;#>${icVMS+=(FczVVMwD2eClr8N;R!<#Vcb#){BaJ8S88$J
z^7a4&fvav4W#TB^Xy!Dd^3K{fol3&GuH!>Q48tA$=2mTbsZ7{Hsv~>QUC#ZTj8{wT
zs*<Qq!=Rv`B#%au^atO0NIrW$n(YW~cDz;h0NwdO2v7xv2he;2ts$R!sBlm~`RKN3
zvACMCYiiW^w$8vb>p^HY9t~|h)7aN0*Bn&fCSsG>hqeG4({f1L$i2@XJn^%8gM$T|
zaQ~mt6QjFM*6yJ@raIxoct{=2;r#2Lr6s6#vWp6b5}P5x`i?kfB5-E@Z2?OjNm%rz
zUT22n5&bGezgQBUa~|TtJMPmHyU<$FzUb@~uKNsV>9*&Nyi{l8bUBTcZWIkpG0%wM
zd*=Ab%SlBJa(V7TwK{cqE+isoT-V#+D1o%c!J!QK(+gm;axfi<^})LeIQtfwz~Wgn
z{U&uc@E)b$tp=2yA-PRwvjE57o8&iH9lLh@6LIsCJ_c@AC(OH2)=N`e*s6uQxhKqP
zp-NNh>IxqLQha3Fg<P*~(nsJn9vg?2vYF}I(bVoRv~cI?ZDT(Tqu-Rd0ob?#M3TC$
zK|W(Zq0S`%$7@o%iTFE;QPdd<!wLJ}_*$Z&Xn3TlbaYMB`<G!_E6f@M5;79!R_R9^
z6w)IeUv=(GHdHDh{r$9bWl{7Z63UFWM$@!WZGpJ^i%NCwJ60N*zdm!hTL=%&2uUId
zh8>4>BJJ|~h}^I9l6%RHR$mE&HT!r1Yg7iOSA5{EZ=Xs_NJ=8fQn<O`WD?ZeMELXD
zd`Sp(Rq+*%YhG^n`0>VYay(0T{l;gA8&M;JTT8c3ShZOzJicFN7q{fFWDOvzIZF6a
zm=*=H>Z9|{tSqTUo^bLLy*l<%HdXV=M2tD)XAC5;;T0M1d*vy?*Fs^HeQ#zM<pK`h
zJ7;I<OvxnB==hqo=)}h!!RzHt8KH<);boBD$H)CL9Fo(K9QmcWCv!$);&k`5poNl8
ztTZz?b*c@;RzVfPr-GB9h*4qe{t9~7ZQ;@UGUeCkts1aV{%#h%aJnA0ss=R$*XU{|
zBRtJCbrT&^sXwr#zYQ@%oefuppQ=qN52?~K$n~PuvvT?`;?9L8;N4;3*6LYaPR77W
z+J(n(xvM^AbKv{hIN?*yC)B5}$n7NKdzH-lHp9MK)1h^Hr#-7b1pA2f*ul*&G(~ci
z1C^91I#^kySv=}w>9^%9kd)-*_voJzwjVqk7xr175TfkpmSa_CH`~rqDSfR~!D6B>
zD^pqP;U#zafJ?!)Gr^SFT}Vo~*?Ga@=(XC$VwRhTFpK5GCW}4AHsLQm$a?{3p^)80
zvh<5QV%V>)I@u920jV9>1vV)|r$VbV(5Y@_LpJrD0(=bW480R~HrN*;W9PS&bJifO
zXHZDK9zcbx?bpg|-}PO~m0G&qevN2JdpRrbT?nJcS#}Q#ZiSt_y!iqvIodx0<cA5{
z5!L=93JKy&F{zPfbcpKuYi!O&iR$Z%yrXQf<TKJE#?AE9&#0Mv^ukF>k`aQ+*6>ZS
z{m*stwqmH7YSi{4Wn*5&^V|rk7b|PgifKAYch&7$SZU-ovZJ!E-v;TFHMk!1b-h3*
z<K|gkw&@j<Wo%&Ik?ns?s#1Uw^dr`M$UO=2eeUl3ENCf@vz?oJUgzQ(J(wEPLo-2f
ze}*_c3ElJKV-b0Q)N-l(l_MtgG_$#V<Gsyq8+-DCHaVSW%ZvG$XU^Gl>iHS10M<2I
zSdUEqk}^BQMK~AxuGdD}b%e?5Tdf}*IEH}uC?O`=iqN`(9QFxM%Kcij;2~3|c{YBT
ziz8v7xH1=EH7H2RRza?lz1mjP&w*B~#lAo>J!H2d-sWocALjIVgQ&V64ShD1t`uaZ
zOPnk`Y)8#s5@+EJ$etq;$k<@>I;YT2Ws^A#lHnw<Olc^BaKufOxEL`4x=ne}II8an
z)Rt7uyx)p!DW1gbDb?A_Rh0?8dGSUQyHPy(Wy0on;9at}@?}NpArx^yHawN=ow8;j
z?A8g33Z<w`p%%O59XC6(Msp6K_0(Da@l3dJe@`?f#$WH!SHrmBk-)1LseZF{E@mkD
zw2Y97)}hRNk-5-%T!g(TD{hIi7r&loen#_i_8^GiLK4jfR@>gv0@hNTQa`JU1l~gp
zu;fw8gL6*KCjH@u?E0te3Cg;upN?KC1l{x3XrGDYUH0IE#PwzT>WRMhZc53TKKCFY
zg(NA0s2N|QW%WC;re*<JFkJ;)W^BftJ_#?{U59uxHuI&Sh=*Mo*-gQw_U8Qm+PK<G
zkst|7ZNQYY3;WS*Y>X`p1sM%;M_s{eA@tIfCWmGuR1QjzLdfB90U5{KTZ^mXWYZ&W
zEWxq&CbecRE}Uew_hw4gP-C~MGeK}M!V9_B%9%VzPAcMhU9~a|`RlL<ZQZDFAFitM
z@{HfVe}e)|Qj}H{<`G^=*%^vEIzUGGr9J@~L|6MPQ@KUw(W-luD+|R8Cks4-i$hCc
z@j!0WRj7SwbD;5rc@yW_xQ;c@gAJSZ?EQvEjx+q;3@4LNW<kpsJd=xU)4z`5zNj4v
z^dSJ#n4M0Vz|=E|HY~i5RQl$z`_~dSG9sYr)rM+B>dC}{n)wbj1gNe#=_n|e@C8JT
z^;bcDEX{lFRT|2ED~|)@wHQyC&Ae+lfq5uER#zlbJzY;~oO7gRcx-+H%)8v_Y|?}N
z$oP5<RU0V`=^v8O<Ifor#j9T<mL8+d3IXP#B@Q7?xKP(LGp+pGI&!(&xM<J*R{EfC
z*$jv;JqkoVl?krAdW_szyoOG#{W<+}E8?v6iaLo52#Snz!w@lDPhO2i!bpsU)O#2c
zhSIl_+R@{(NgIC@21+_4o4fSg)%yIa3XyiQaBo&V{HjMHyaN#)3Vf;QF0_J?Y^Ktz
z@Y(@d;gqK|38YFxA}_hC*F2Y;fBpEvZM2^FfL|NudH<0$O8A}`=i8&!PV9&~l7J{_
zbmS62gU@ihl!Vv+B);NrCbUN6e)c7AKPVuKC`5=8Pm9FR)Jpyq{@00<I6)60wK%C2
z#qQ7D2}udVv7f}3Kc$Z?j(N8p%53)B-%3hC&+1d{PxV&FO2HCe31)B=gCf@6n|k=j
zs3E<Tr3vFc&BskZvl&%&Sf6^nZV{U>&kL2MRC%_El^cZ))41l?_CGyHV$_+eyJZq+
zxv6{Gw)a+lL%p4K1C)Ze2WX(StSz@px0gME3?v;m7715XdszeFPWE$oIUb(ar4gyn
zEm3r&=SLJu(LI<)3(J11IU70F%iBdYEh$<k3X`;~yZ@#PmbU24@$iJ6f?9%(qEl>M
za;-VN7nF>H0niOO$<kMI>02xkB60gxQ@6RRK#ft!boNC|C$x7u>LR;w^2}z*zk%ao
zR}zB2Jd{OD3w*-pdsn4^&P_}d8K|X7Ote84K#N>Ky#v-j$0qCLnSjB-Bu?GR#6gX7
z^sB)6Ue~3J!R-#!M@57_h02uwbi_YS{n(m6Xw1A6ja>*Z&$0+An=mqFhB7buWzKAt
zJO6p&X#ZMHpCWwx@}km{9hVB}UR~Mj79q41J`ZNbVRgCY{oFb^UpF;L*5_cf(>z?>
zSyy3mF1#rZhP%qA`o9aReJaEr1WcrWta8K>{oOhN(M=CG&lE7>AFKU%m0k_H663JK
zpjG2>Pg!($HZUS36s`*vV~t-+u=`8F2ND>%8g100iyh0G4+!aG(E(`&`_A62!g^dL
zep<d9wo?tgshIv(e&{g%(Jl=r;h&6pjR-mKXX&EYTjncy*4!M{Ti`y}y6a=w+)ZT}
zff|<Y0kE0l#gM1TCn~a=*i3@dtY&7wxQ@i8M!+X7t2qSU{;jYOGvAWH2%bNj#s}aI
zU=6tjEPU~s9d)huf4c=l0ZzI@_lsI^!QZP-SO9+?YpG_U__qW?EeF`_#GQ%1Zaw(h
zzu*R#@5qhJB*nk<>^DHaH#vM>LH2K~%RjNMXVNqOEjQu)8Aw#Mb*RGMSex=dtdox^
z4KaVK1p)zp@=qP|VCT-?SRyw-EaZ*vJFb6+*$oV{;aj;8%fGSy@1(ej@GSd&NBoV2
z4hLdwhBG-5{vD>#AwdAmCFKtwGDbO~ey{}NsKK3KuTiXzK|8KkZvG1D+d4tSid{kc
zsV(|K!ankgJs-p7=@0U<Jp7=0ALlkFJ0up;ZDL{~Q?`xKHT;%<`Sz_Ktp+qA7d!0(
zw+1s!ZSErx|7?YD8H$;MpZVmo<KVu(FZyL_iuXPpXa9}bZFYz@b@R~}^G!mBp(qPW
zks>pqENJwML{k;3HxZhMLk=|B(%087G}69xYgJ{jB!}u`n_a4TCfDKd7JnuD>3@Pc
zcoD_-B=%8}vs#EZ>PYczVpQDRs%0mFMqik46@|S24pzY-s1XYlnj9ZbBOxJS^e!(c
z;dXR&mAD8D8AxFoK#8&VqX^u1yj;Noaq;oRrKM08Sf4c(BKtOUS8aP|C&!C<?MqvI
zRqld8XSaZ*2*y{U!=m3fOnt=Sel{5a`saY;lGx*`pBPnQ*@O0z-o3D<P<1OirdzXF
zkC-B*mL5aBZ(!g2*k?9_OMtgW>HE*0!?uq~<oU@7J|iWZ-?g{PEpr(x`LBPzpW$w7
zjA%VAE6s!dQDQkM5F*t_KfW5zjP4PN@ppA2s>-3um$&7Tmh|sS&)xria3B>b@N;%&
ze;+)zlKp0jM*|hS-|BUZ-5NHA=Gv)8DJvX&M5w!nKYRW>*-pi^U&cCV4?Q;?G<FMD
z{<)Y8HRV?Tg{8ag()z;C5P1aJ+uPGOH-B6fjQQD14Z^eX^sE&J&KDu~Simle6Ejuj
z&c}20(A0?!5YPtINibl2t6rFNhG5_A*N;Q2EeAgM?yUbYXMx0h{RotiOqY3~(K!p~
zU}mGq6`8)6DPU~vQQD*;#<Y`${KSzeXMM=MFDNKj=ZN99_tZwZbzr)qebogK^UMc8
zqBdATY@ZH_Vq@Iu+nNKi->9(P+naKEV>_dACup0YN0xr??Zqvf6o)-0*%Y2kfB9l(
zR=7R1xUeA0rz=jR+_Vci-JUYgmH3n%l_2O91TrRl^{KYL9&_0Q!ILw5_RMF}YA@ua
z(_5-lLop<Qu7z4D(dqJ+>1japXGoe>nuN0Va|R&|5C{Fq45W19+RcDM?hV=hxIHa<
z(CE4#X~3Kr&8e&}8*o@qX5eHKf}eeEQ5&9gKt(wSbDKK>@zITJ%}>+`I^gn(@OI7m
zcVFY3+WGkSFrFbacsX<JhBFbrfMm(YuSMOc!tuh0jn%UY9pXGe8=}$xIj~JA*MQ)6
zIdCL0#n(QYK=*<`yr;HXA%uaRKFNb;bV~8z!-u<${TFcGq082FElj1qjE#p?IL$H*
z#lxLE(t8)ob73lQ^1%$wUgi34+P~5_f=dvyrS=~X3Qte;a7!X_M!cxlW&QWXUl_D_
zvgo)`av@{AOj|EUu6!a2y51dHy~>M%SNaigU30@G+P&*a)6>&MNj=%+1R*ZGv%RiP
zQWzZ`{eucEsIh~eE!LQMTB1YPv2HC`WzPl3;gl@3j%gq<f)_3prN{}F!ty}=+iR=}
zq_LH=A3n%ntnJDhJ3E&eLinV)HC;SUf}pGJ3lvZbPL8IOxu6pARmlUXWz&ICD6-NO
z{-}}gv{96aYz!eV0GpN_-uFo<@Kf`$=7{mta?M84?4XoYMv}Qz-DEXfxbq!Lj`c?z
zO46nPT%C_q!JARXVfdw!H#d<+6RNVnhq-=%O5BfxVld8xY_Q+ynOqq86@d#A2Gt|c
zC`43tBs1l@MC>_o{m4miikY`!ZcI^5;B=tJ`=9I@3u7K1A67bP3~WkvnUI2qiE`Fb
zS>Jm3!SXHcrL3z+A9T$<{t(G)`yyy353oyED4BHP!GI?9;4#ptR+<A~F9)K%GoEET
z#Mx{~;{oadZ-HT@iCqj!D#jLik+>`2B2n+Y9$;e`aHXg<MZpsK^QqDh)pTzJw}5r8
zkDOd-BL2ne@2#rPD6@mc!RfY2sig%sZykKt*EWBK>c<O~8zC=%)AqugsBUIbOWwg?
z?DXU!iCF%Dx&xLfk`ecPaZPjpm<Q>)+ck^Thrr)?FOEDLdhURR66rcwXlJUIM0MMa
z7B{J37F{;v5sy&nkGF;`CH}jPQXMPhyWpXv*sWW2ahoYy{pzxHe3rCVKnr8(&eu8L
z5%xQ?+VVv*B4|S$$Ih`p-1F}G>L-}>`>YnDX{s3?y?$!<h5VE7VDpl)ax0|R@X=6w
zBEZB&;9O9Br!8<iCLkAHpb^8C=RGzM4X1vEZTBtwg*upfopk)R@Pg_VtHKMT`OR&;
z0{Y3`YTP3>NbioaS;B)8n5WRsi9ego*xP#~|JglW@`!(hg7)K?HFp=Am@q`+^#nBs
z5ut)VSBox0@xMTt<(~kzn87wlWc=@2;NPZ7V=O9EUdQ2rW<)u0ceGKRFh*<*jv=a`
zTQ+4<xs;?|4RMcIyU0Ai0m2)6^HE=mvxR5>VLIz>7;`Xl`1zlvHeF_Hz(>Rj^_|fF
zxGMcXqo4m@zkhRcbVQT~Z~u3MRFUljEoXZRS!WUZf4?yPG~U@Hx+SHw=B)oOuJfnu
cQP&NA;_b1%)iJ!<KfP5oR3OS#iZ7%72RWZ?2mk;8

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
index 86a435cc65..d79e1a2a3a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
@@ -1,5 +1,5 @@
 ---
-title: Microsoft Defender ATP for Mac - System Extensions (Public Preview)
+title: Microsoft Defender ATP for Mac: system extensions (Preview)
 description: This article contains instructions for trying out the system extensions functionality of Microsoft Defender ATP for Mac. This functionality is currently in public preview.
 keywords: microsoft, defender, atp, mac, kernel, system, extensions, catalina
 search.product: eADQiWindows 10XVcnh
@@ -20,74 +20,73 @@ ms.topic: conceptual
 ROBOTS: noindex,nofollow
 ---
 
-# Microsoft Defender ATP for Mac - System Extensions (Public Preview)
+# Microsoft Defender ATP for Mac: system extensions (Preview)
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
+In alignment with macOS evolution, Microsoft is preparing a Microsoft Defender Advanced Threat Protection (ATP) for Mac update that uses system extensions instead of kernel extensions. This update will only be applicable to macOS Catalina (10.15.4) and newer versions of macOS.
 
-In alignment with macOS evolution, we are preparing a Microsoft Defender ATP for Mac update that leverages system extensions instead of kernel extensions. This update will only be applicable to macOS Catalina (10.15.4) and newer versions of macOS.
+This functionality is currently in public preview. This article provides instructions for enabling this functionality on your device. You can choose to try out this feature locally on your own device or configure it remotely through a management tool.
 
-This functionality is currently in public preview. This article contains instructions for enabling this functionality on your device. You can choose to try out this feature locally on your own device or configure it remotely through a management tool.
-
-These steps assume you already have Microsoft Defender ATP running on your device. For more information, see [this page](microsoft-defender-atp-mac.md).
+The following steps assume that you already have Microsoft Defender ATP running on your device. For more information, see [Microsoft Defender Advanced Threat Protection for Mac](microsoft-defender-atp-mac.md).
 
 ## Known issues
 
-- We’ve received reports of the network extension interfering with Apple SSO Kerberos extension.
+- We’ve received reports of the network extension interfering with the Apple SSO Kerberos extension.
 - The current version of the product still installs a kernel extension. The kernel extension is only used as a fallback mechanism and will be removed before this feature reaches public preview.
-- We are still working on a product version that deploys and functions properly on macOS 11 Big Sur.
+- We're still working on a product version that deploys and functions properly on macOS 11 Big Sur.
 
 ## Deployment prerequisites
 
-- Minimum operating system version: **10.15.4**
+- Minimum macOS operating system version: **10.15.4**
 - Minimum product version: **101.03.73**
-- Your device must be in the **Insider Fast update channel**. You can check the update channel using the following command:
+- Your device must be in the **Insider Fast update channel**. You can check the update channel by using the following command:
 
-```bash
-mdatp --health releaseRing
-```
+  ```bash
+  mdatp --health releaseRing
+  ```
 
-If your device is not already in the Insider Fast update channel, execute the following command from the Terminal. The channel update takes effect next time the product starts (when the next product update is installed or when the device is rebooted).
+  If your device isn't already in the Insider Fast update channel, execute the following command from the Terminal. The channel update takes effect the next time the product starts (when the next product update is installed, or when the device is rebooted).
 
-```bash
-defaults write com.microsoft.autoupdate2 ChannelName -string InsiderFast
-```
+  ```bash
+  defaults write com.microsoft.autoupdate2 ChannelName -string InsiderFast
+  ```
 
-Alternatively, if you are in a managed environment (JAMF or Intune), you can configure the update channel remotely. For more information, see [this page](mac-updates.md#set-the-channel-name).
+  Alternatively, if you're in a managed environment (JAMF or Intune), you can configure the update channel remotely. For more information, see [Deploy updates for Microsoft Defender ATP for Mac: Set the channel name](mac-updates.md#set-the-channel-name).
 
 ## Deployment steps
 
-Select the deployment steps corresponding to your environment and your preferred method of trying out this feature.
+Follow the deployment steps that correspond to your environment and your preferred method of trying out this feature.
 
 ### Manual deployment
 
-#### Approve the system extensions & enable the network extension
+#### Approve the system extensions and enable the network extension
 
-Once all deployment prerequisites are met, restart your device to start the system extension approval and activation process.
+1. After all deployment prerequisites are met, restart your device to launch the system extension approval and activation process.
 
-You will be presented series of system prompts to approve the Microsoft Defender ATP system extensions. You must approve ALL prompts from the series, because macOS requires an explicit approval for each extension that Microsoft Defender ATP for Mac installs on the device.
+   You'll see a series of system prompts to approve the Microsoft Defender ATP system extensions. You must approve **all** prompts from the series because macOS requires explicit approval for each extension that Microsoft Defender ATP for Mac installs on the device.
 
-For each approval, click **Open Security Preferences** and then click **Allow** to allow the system extension to run.
+   For each approval, select **Open Security Preferences** and then select **Allow** to allow the system extension to run.
 
-> [!IMPORTANT]
-> Between subsequent approvals, you must close and re-open the **System Preferences** > **Security & Privacy** window, otherwise macOS will not display the next approval. 
+   > [!IMPORTANT]
+   > You must close and reopen the **System Preferences** > **Security & Privacy** window between subsequent approvals. Otherwise, macOS will not display the next approval.
 
-> [!IMPORTANT]
-> There is a one minute timeout before the product falls back to the kernel extension (to ensure that the device is protected). 
->
-> If more than one minute has elapsed, restart the daemon (by rebooting the device or using `sudo killall -9 wdavdaemon`) in order to trigger the approval flow again.
+   > [!IMPORTANT]
+   > There is a one-minute timeout before the product falls back to the kernel extension. This ensures that the device is protected.
+   >
+   > If more than one minute elapses, restart the daemon by rebooting the device or by using `sudo killall -9 wdavdaemon` to trigger the approval flow again.
 
-![System extension approval pop-up](images/mac-system-extension-approval.png)
+   ![System extension approval pop-up](images/mac-system-extension-approval.png)
 
-![System extension approval window](images/mac-system-extension-pref.png)
+   ![System extension approval window](images/mac-system-extension-pref.png)
 
-Following the approval of the system extensions, macOS will prompt for an approval to allow network traffic to be filtered. Click **Allow**.
+1. After the system extensions are approved, macOS prompts for an approval to allow network traffic to be filtered. Click **Allow**.
 
-![Network extension approval pop-up](images/mac-system-extension-filter.png)
+   ![Network extension approval pop-up](images/mac-system-extension-filter.png)
 
 #### Grant Full Disk Access to the Endpoint Security system extension
 
-Open **System Preferences** > **Security & Privacy** > **Privacy** tab and grant **Full Disk Access** to the **Microsoft Defender Endpoint Security Extension**.
+Open the **System Preferences** > **Security & Privacy** > **Privacy** tab and grant **Full Disk Access** to the **Microsoft Defender Endpoint Security Extension**.
 
 ![Full disk access for Endpoint Security system extension](images/mac-system-extension-fda.png)
 
@@ -107,46 +106,46 @@ Terminal output `endpoint_security_extension` indicates the product is using the
 
 ### Managed deployment
 
-Refer to [this page](mac-sysext-policies.md#jamf) for the new configuration profiles that must be deployed for this new feature.
+Refer to [New configuration profiles for macOS Catalina and newer versions of macOS: JAMF](mac-sysext-policies.md#jamf) for the new configuration profiles you must deploy for this new feature.
 
-In addition to those profiles, make sure the target devices are also configured to be in the Insider Fast update channel, as described in [this section](#deployment-prerequisites).
+In addition to those profiles, make sure to configure the target devices to be in the Insider Fast update channel, as described in [Deployment prerequisites](#deployment-prerequisites).
 
-On a device where all prerequisites are met and the new configuration profiles have been deployed, run:
+On a device where all prerequisites are met and the new configuration profiles have been deployed, run the following command:
 
 ```bash
 $ mdatp health --field real_time_protection_subsystem
 ```
 
-If this command prints `endpoint_security_extension`, then the product is using the system extensions functionality.
+If this command prints `endpoint_security_extension`, the product is using the system extensions functionality.
 
 ## Validate basic scenarios
 
-1. Test EICAR detection. From a Terminal window, run:
+1. Test European Institute for Computer Antivirus Research (EICAR) detection. From a Terminal window, run the following command:
 
-```bash
-curl -o eicar.txt https://secure.eicar.org/eicar.com.txt
-```
+   ```bash
+   curl -o eicar.txt https://secure.eicar.org/eicar.com.txt
+   ```
 
-  Verify that the EICAR file is quarantined. This verification can be done from the user interface (from the Protection History page) or command line using the following command:
+   Verify that the EICAR file is quarantined. You can verify the file's status on the Protection History page in the user interface, or from a command line by using the following command:
 
-```bash
-mdatp threat list
-```
+    ```bash
+    mdatp threat list
+    ```
 
-2. Test EDR DIY scenario. From a terminal window, run:
+2. Test the Endpoint Detection and Response (EDR) DIY scenario. From a terminal window, run the following command:
 
-```bash
-curl -o "MDATP MacOS DIY.zip" https://aka.ms/mdatpmacosdiy
-```
+   ```bash
+   curl -o "MDATP MacOS DIY.zip" https://aka.ms/mdatpmacosdiy
+   ```
 
-  Validate that two alerts have popped up in the portal in the machine page for EICAR and EDR DIY scenarios.
+   Validate that two alerts popped up in the portal on the machine page for EICAR and EDR DIY scenarios.
 
 ## Frequently asked questions
 
 - Q: Why am I still seeing `kernel_extension` when I run `mdatp health --field real_time_protection_subsystem`?
-    
-    A: Refer back to the [Deployment prerequisites](#deployment-prerequisites) section and double-check all of them are met. If all prerequisites are met, restart your device and check again.
 
-- Q: When is macOS 11 Big Sur going to be supported?
+    A: Refer back to the [Deployment prerequisites](#deployment-prerequisites) section and double-check that all prerequisites are met. If all prerequisites are met, restart your device and check again.
 
-    A: We are actively working on adding support for macOS 11. We will post more information to the [What's new](mac-whatsnew.md).
+- Q: When will macOS 11 Big Sur be supported?
+
+    A: We are actively working on adding support for macOS 11. We will post more information to the [What's new](mac-whatsnew.md) page.

From 059f8a3903ed77043d2b97a99c890bc18443a81a Mon Sep 17 00:00:00 2001
From: Dennis Rea <v-denrea@microsoft.com>
Date: Wed, 11 Nov 2020 11:30:25 -0800
Subject: [PATCH 023/825] Update mac-sysext-preview.md

---
 .../microsoft-defender-atp/mac-sysext-preview.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
index edac918fc2..79da63c6c7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
@@ -1,5 +1,5 @@
 ---
-title: Microsoft Defender ATP for Mac: system extensions (Preview)
+title: Microsoft Defender ATP for Mac - system extensions (Preview)
 description: This article contains instructions for trying out the system extensions functionality of Microsoft Defender ATP for Mac. This functionality is currently in public preview.
 keywords: microsoft, defender, atp, mac, kernel, system, extensions, catalina
 search.product: eADQiWindows 10XVcnh

From 9ee17c956a4d55a88f76bebb5863138b47e53bef Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Fri, 13 Nov 2020 20:42:08 +0100
Subject: [PATCH 024/825] Microsoft Defender SmartScreen: Column corrections

There are 2 cells divided from column 2, which makes them create a third column without a correct description, whereas column 3 has been moved to column 4 for row 1 and 2.

This commit aims to rectify this by moving the content of column 3 back to column 2 and column 4 back to column 3.
---
 .../microsoft-defender-smartscreen-available-settings.md     | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
index e0ab6e4909..a25aed7eab 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
@@ -34,14 +34,13 @@ SmartScreen uses registry-based Administrative Template policy settings. For mor
 </tr>
 <tr>
 <td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure Windows Defender SmartScreen<p>
-<td><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure Windows Defender SmartScreen<p><b>Windows 10, Version 1607 and earlier:</b><br>Administrative Templates\Windows Components\File Explorer\Configure Windows SmartScreen</td>
-<td>At least Windows Server 2012, Windows 8 or Windows RT</td>
+<td><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure Windows Defender SmartScreen<p><b>Windows 10, Version 1607 and earlier:</b><br>Administrative Templates\Windows Components\File Explorer\Configure Windows SmartScreen<br><br>
+<b>At least Windows Server 2012, Windows 8 or Windows RT</b></td>
 <td>This policy setting turns on Microsoft Defender SmartScreen.<p>If you enable this setting, it turns on Microsoft Defender SmartScreen and your employees are unable to turn it off. Additionally, when enabling this feature, you must also pick whether Microsoft Defender SmartScreen should Warn your employees or Warn and prevent bypassing the message (effectively blocking the employee from the site).<p>If you disable this setting, it turns off Microsoft Defender SmartScreen and your employees are unable to turn it on.<p>If you don't configure this setting, your employees can decide whether to use Microsoft Defender SmartScreen.</td>
 </tr>
 <tr>
 <td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
 <td><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
-<td><b>Windows 10, version 1703</td>
 <td>This policy setting is intended to prevent malicious content from affecting your user's devices when downloading executable content from the internet.</br></br>This setting does not protect against malicious content from USB devices, network shares or other non-internet sources.</p><p><b>Important:</b> Using a trustworthy browser helps ensure that these protections work as expected.</p></td>
 </tr>
 <tr>

From 6b778b47406acb2ea456b663a467ea87853275fe Mon Sep 17 00:00:00 2001
From: Graham Williams <gray@live.co.uk>
Date: Mon, 16 Nov 2020 10:05:45 +0000
Subject: [PATCH 025/825] Updates Jamf Signing Step 4 for Clarity

Changes for #8631 as suggested.
---
 .../microsoft-defender-atp/mac-sysext-policies.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
index 9b20ff2260..73bb94faf9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
@@ -150,13 +150,13 @@ As part of the Endpoint Detection and Response capabilities, Microsoft Defender
 4. After the certificate is created and installed to your device, run the following command from the Terminal to sign the file:
 
     ```bash
-    $ security cms -S -N "<CertificateName>" -i <PathToFile>/com.apple.webcontent-filter.mobileconfig -o <PathToSignedFile>/com.microsoft.network-extension.signed.mobileconfig
+    $ security cms -S -N "<CertificateName>" -i <PathToFile>/com.microsoft.network-extension.mobileconfig -o <PathToSignedFile>/com.microsoft.network-extension.signed.mobileconfig
     ```
     
     For example, if the certificate name is **SigningCertificate** and the signed file is going to be stored in Documents:
     
     ```bash
-    $ security cms -S -N "SigningCertificate" -i ~/Documents/com.apple.webcontent-filter.mobileconfig -o ~/Documents/com.microsoft.network-extension.signed.mobileconfig
+    $ security cms -S -N "SigningCertificate" -i ~/Documents/com.microsoft.network-extension.mobileconfig -o ~/Documents/com.microsoft.network-extension.signed.mobileconfig
     ```
     
 5. From the JAMF portal, navigate to **Configuration Profiles** and click the **Upload** button. Select `com.microsoft.network-extension.signed.mobileconfig` when prompted for the file.

From 6368d5c46113b1277856224fa84ae57d235b6d59 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Wed, 18 Nov 2020 14:43:47 +0100
Subject: [PATCH 026/825] Update: merge public branch into patch-107

See commit https://github.com/MicrosoftDocs/windows-itpro-docs/commit/f248872c9b4861a1d92ea8a945899fe6280fcab2 (`microsoft-defender-smartscreen-available-settings.md` file link https://github.com/MicrosoftDocs/windows-itpro-docs/commit/f248872c9b4861a1d92ea8a945899fe6280fcab2#diff-12e67b38e445922ed975beb4b144adf92ff9d4bd71fa12a0626dfe435bb0cb59) for the details.
---
 .../microsoft-defender-smartscreen-available-settings.md      | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
index a25aed7eab..39288a73aa 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
@@ -41,7 +41,7 @@ SmartScreen uses registry-based Administrative Template policy settings. For mor
 <tr>
 <td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
 <td><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
-<td>This policy setting is intended to prevent malicious content from affecting your user's devices when downloading executable content from the internet.</br></br>This setting does not protect against malicious content from USB devices, network shares or other non-internet sources.</p><p><b>Important:</b> Using a trustworthy browser helps ensure that these protections work as expected.</p></td>
+<td>This policy setting is intended to prevent malicious content from affecting your user's devices when downloading executable content from the internet.</br></br> This setting does not protect against malicious content from USB devices, network shares, or other non-internet sources.</p><p><b>Important:</b> Using a trustworthy browser helps ensure that these protections work as expected.</p></td>
 </tr>
 <tr>
 <td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Configure Microsoft Defender SmartScreen (Microsoft Edge version 77 or later)<p><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Microsoft Edge\Configure Windows Defender SmartScreen (Microsoft Edge version 45 and earlier)<p>Administrative Templates\Microsoft Edge\SmartScreen settings\Configure Microsoft Defender SmartScreen (Microsoft Edge version 77 or later)<p><b>Windows 10, Version 1607 and earlier:</b><br>Administrative Templates\Windows Components\Microsoft Edge\Configure Windows SmartScreen</td>
@@ -159,7 +159,7 @@ For Microsoft Defender SmartScreen Edge MDM policies, see [Policy CSP - Browser]
 </table>
 
 ## Recommended Group Policy and MDM settings for your organization
-By default, Microsoft Defender SmartScreen lets employees bypass warnings. Unfortunately, this can let employees continue to an unsafe site or to continue to download an unsafe file, even after being warned. Because of this possibility, we strongly recommend that you set up Microsoft Defender SmartScreen to block high-risk interactions instead of providing just a warning.
+By default, Microsoft Defender SmartScreen lets employees bypass warnings. Unfortunately, this feature can let employees continue to an unsafe site or to continue to download an unsafe file, even after being warned. Because of this possibility, we strongly recommend that you set up Microsoft Defender SmartScreen to block high-risk interactions instead of providing just a warning.
 
 To better help you protect your organization, we recommend turning on and using these specific Microsoft Defender SmartScreen Group Policy and MDM settings.
 <table>

From 915542fb1350de920c3e95e94817b8c4fff80f76 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 23 Nov 2020 09:57:16 +0530
Subject: [PATCH 027/825] updated-per-4650392

Rebranding update
---
 .../deploy-windows-10-in-a-school-district.md |  2 +-
 .../hello-feature-conditional-access.md       |  2 +-
 .../hello-hybrid-cert-new-install.md          | 22 +++++++++----------
 .../hello-hybrid-key-new-install.md           | 22 +++++++++----------
 .../hello-identity-verification.md            |  2 +-
 .../hello-key-trust-validate-deploy-mfa.md    |  2 +-
 .../hello-planning-guide.md                   |  6 ++---
 7 files changed, 29 insertions(+), 29 deletions(-)

diff --git a/education/windows/deploy-windows-10-in-a-school-district.md b/education/windows/deploy-windows-10-in-a-school-district.md
index 280778ccb4..3a2d13b9b9 100644
--- a/education/windows/deploy-windows-10-in-a-school-district.md
+++ b/education/windows/deploy-windows-10-in-a-school-district.md
@@ -678,7 +678,7 @@ The following Azure AD Premium features are not in Azure AD Basic:
 
 * Allow designated users to manage group membership
 * Dynamic group membership based on user metadata
-* Azure multifactor authentication (MFA; see [What is Azure Multi-Factor Authentication](https://azure.microsoft.com/documentation/articles/multi-factor-authentication/))
+* Azure AD Multi-Factor Authentication (MFA; see [What is Azure AD Multi-Factor Authentication](https://azure.microsoft.com/documentation/articles/multi-factor-authentication/))
 * Identify cloud apps that your users run
 * Self-service recovery of BitLocker
 * Add local administrator accounts to Windows 10 devices
diff --git a/windows/security/identity-protection/hello-for-business/hello-feature-conditional-access.md b/windows/security/identity-protection/hello-for-business/hello-feature-conditional-access.md
index 73e734e99b..470d856d45 100644
--- a/windows/security/identity-protection/hello-for-business/hello-feature-conditional-access.md
+++ b/windows/security/identity-protection/hello-for-business/hello-feature-conditional-access.md
@@ -32,7 +32,7 @@ In a mobile-first, cloud-first world, Azure Active Directory enables single sign
 To improve productivity, Azure Active Directory provides your users with a broad range of options to access your corporate assets. With application access management, Azure Active Directory enables you to ensure that only the right people can access your applications. What if you want to have more control over how the right people are accessing your resources under certain conditions? What if you even have conditions under which you want to block access to certain applications even for the right people? For example, it might be OK for you if the right people are accessing certain applications from a trusted network; however, you might not want them to access these applications from a network you don't trust. You can address these questions using conditional access.
 
 > [!NOTE]
-> For more details about the way Windows Hello for Business interacts with Azure Multi Factor Authentication and Conditional Access, see [this article](https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/why-are-my-users-not-prompted-for-mfa-as-expected/ba-p/1449032).
+> For more details about the way Windows Hello for Business interacts with Azure AD Multi-Factor Authentication and Conditional Access, see [this article](https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/why-are-my-users-not-prompted-for-mfa-as-expected/ba-p/1449032).
 
 Read [Conditional access in Azure Active Directory](https://docs.microsoft.com/azure/active-directory/active-directory-conditional-access-azure-portal) to learn more about Conditional Access.  Afterwards, read [Getting started with conditional access in Azure Active Directory](https://docs.microsoft.com/azure/active-directory/active-directory-conditional-access-azure-portal-get-started) to start deploying Conditional access.
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-new-install.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-new-install.md
index e5664fdeb0..ffbe59648f 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-new-install.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-new-install.md
@@ -100,12 +100,12 @@ The next step of the deployment is to follow the [Creating an Azure AD tenant](h
 ## Multifactor Authentication Services
 Windows Hello for Business uses multi-factor authentication during provisioning and during user initiated PIN reset scenarios, such as when a user forgets their PIN.  There are two preferred multi-factor authentication configurations with hybrid deployments—Azure MFA and AD FS using Azure MFA
 
-Review the [What is Azure Multi-Factor Authentication](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication) topic to familiarize yourself its purpose and how it works.
+Review the [What is Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication) topic to familiarize yourself its purpose and how it works.
 
-### Azure Multi-Factor Authentication (MFA) Cloud ###
+### Azure AD Multi-Factor Authentication (MFA) Cloud ###
 > [!IMPORTANT]
-> As long as your users have licenses that include Azure Multi-Factor Authentication, there's nothing that you need to do to turn on Azure MFA. You can start requiring two-step verification on an individual user basis. The licenses that enable Azure MFA are:
-> * Azure Multi-Factor Authentication
+> As long as your users have licenses that include Azure AD Multi-Factor Authentication, there's nothing that you need to do to turn on Azure MFA. You can start requiring two-step verification on an individual user basis. The licenses that enable Azure MFA are:
+> * Azure AD Multi-Factor Authentication
 > * Azure Active Directory Premium
 > * Enterprise Mobility + Security
 > 
@@ -115,7 +115,7 @@ Review the [What is Azure Multi-Factor Authentication](https://docs.microsoft.co
 If your organization uses Azure MFA on a per-consumption model (no licenses), then review the [Create a Multifactor Authentication Provider](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-get-started-auth-provider) section to create an Azure MFA Authentication provider and associate it with your Azure tenant. 
 
 #### Configure Azure MFA Settings ####
-Once you have created your Azure MFA authentication provider and associated it with an Azure tenant, you need to configure the multi-factor authentication settings.  Review the [Configure Azure Multi-Factor Authentication settings](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-whats-next) section to configure your settings.
+Once you have created your Azure MFA authentication provider and associated it with an Azure tenant, you need to configure the multi-factor authentication settings.  Review the [Configure Azure AD Multi-Factor Authentication settings](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-whats-next) section to configure your settings.
 
 #### Azure MFA User States ####
 After you have completed configuring your Azure MFA settings, you want to review configure [User States](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-get-started-user-states) to understand user states.  User states determine how you enable Azure MFA for your users.
@@ -126,12 +126,12 @@ Alternatively, you can configure Windows Server 2016 Active Directory Federation
 ### Section Review
 
 > [!div class="checklist"]
-> * Review the overview and uses of Azure Multifactor Authentication.
-> * Review your Azure Active Directory subscription for Azure Multifactor Authentication.
-> * Create an Azure Multifactor Authentication Provider, if necessary.
-> * Configure Azure Multifactor Authentication features and settings.
-> * Understand the different User States and their effect on Azure Multifactor Authentication.
-> * Consider using Azure Multifactor Authentication or a third-party multifactor authentication provider with Windows Server 2016 Active Directory Federation Services, if necessary.
+> * Review the overview and uses of Azure AD Multi-Factor Authentication Authentication.
+> * Review your Azure Active Directory subscription for Azure AD Multi-Factor Authentication.
+> * Create an Azure AD Multi-Factor Authentication Provider, if necessary.
+> * Configure Azure AD Multi-Factor Authentication features and settings.
+> * Understand the different User States and their effect on Azure AD Multi-Factor Authentication.
+> * Consider using Azure AD Multi-Factor Authentication or a third-party multifactor authentication provider with Windows Server 2016 Active Directory Federation Services, if necessary.
 
 > [!div class="nextstepaction"]
 > [Configure Azure Device Registration](hello-hybrid-cert-trust-devreg.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-new-install.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-new-install.md
index 51e6922080..958991988c 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-new-install.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-new-install.md
@@ -110,13 +110,13 @@ The next step of the deployment is to follow the [Creating an Azure AD tenant](h
 ## Multifactor Authentication Services
 Windows Hello for Business uses multifactor authentication during provisioning and during user initiated PIN reset scenarios, such as when a user forgets their PIN.  There are two preferred multifactor authentication configurations with hybrid deployments—Azure MFA and AD FS using Azure MFA or a third-party MFA adapter
 
-Review the [What is Azure Multi-Factor Authentication](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication) topic to familiarize yourself its purpose and how it works.
+Review the [What is Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication) topic to familiarize yourself its purpose and how it works.
 
-### Azure Multi-Factor Authentication (MFA) Cloud
+### Azure AD Multi-Factor Authentication (MFA) Cloud
 
 > [!IMPORTANT]
-> As long as your users have licenses that include Azure Multi-Factor Authentication, there's nothing that you need to do to turn on Azure MFA. You can start requiring two-step verification on an individual user basis. The licenses that enable Azure MFA are:
-> * Azure Multi-Factor Authentication
+> As long as your users have licenses that include Azure AD Multi-Factor Authentication, there's nothing that you need to do to turn on Azure MFA. You can start requiring two-step verification on an individual user basis. The licenses that enable Azure MFA are:
+> * Azure AD Multi-Factor Authentication
 > * Azure Active Directory Premium
 > * Enterprise Mobility + Security
 > 
@@ -124,7 +124,7 @@ Review the [What is Azure Multi-Factor Authentication](https://docs.microsoft.co
 
 
 #### Configure Azure MFA Settings
-Review the [Configure Azure Multi-Factor Authentication settings](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-whats-next) section to configure your settings.
+Review the [Configure Azure AD Multi-Factor Authentication settings](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-whats-next) section to configure your settings.
 
 #### Azure MFA User States
 After you have completed configuring your Azure MFA settings, you want to review [How to require two-step verification for a user](https://docs.microsoft.com/azure/multi-factor-authentication/multi-factor-authentication-get-started-user-states) to understand user states. User states determine how you enable Azure MFA for your users.
@@ -135,12 +135,12 @@ Alternatively, you can configure Windows Server 2016 Active Directory Federation
 ### Section Review
 
 > [!div class="checklist"]
-> * Review the overview and uses of Azure Multifactor Authentication.
-> * Review your Azure Active Directory subscription for Azure Multifactor Authentication.
-> * Create an Azure Multifactor Authentication Provider, if necessary.
-> * Configure Azure Multifactor Authentication features and settings.
-> * Understand the different User States and their effect on Azure Multifactor Authentication.
-> * Consider using Azure Multifactor Authentication or a third-party multifactor authentication provider with Windows Server Active Directory Federation Services, if necessary.
+> * Review the overview and uses of Azure AD Multi-Factor Authentication.
+> * Review your Azure Active Directory subscription for Azure AD Multi-Factor Authentication.
+> * Create an Azure AD Multi-Factor Authentication Provider, if necessary.
+> * Configure Azure AD Multi-Factor Authentication features and settings.
+> * Understand the different User States and their effect on Azure AD Multi-Factor Authentication.
+> * Consider using Azure AD Multi-Factor Authentication or a third-party multifactor authentication provider with Windows Server Active Directory Federation Services, if necessary.
 
 > [!div class="nextstepaction"]
 > [Configure Azure Device Registration](hello-hybrid-key-trust-devreg.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-identity-verification.md b/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
index a5a6d5a9a2..97593c468b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
+++ b/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
@@ -41,7 +41,7 @@ Windows Hello addresses the following problems with passwords:
 * Windows 10, version 1511 or later
 * Microsoft Azure Account
 * Azure Active Directory
-* Azure Multi-factor authentication
+* Azure AD Multi-Factor Authentication
 * Modern Management (Intune or supported third-party MDM), *optional*
 * Azure AD Premium subscription - *optional*, needed for automatic MDM enrollment when the device joins Azure Active Directory
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-deploy-mfa.md b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-deploy-mfa.md
index 6377afa5a8..ce54bf0ffb 100644
--- a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-deploy-mfa.md
+++ b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-deploy-mfa.md
@@ -19,7 +19,7 @@ ms.reviewer:
 # Validate and Deploy Multi-factor Authentication (MFA)
 
 > [!IMPORTANT]
-> As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments. New customers who would like to require multi-factor authentication from their users should use cloud-based Azure Multi-Factor Authentication. Existing customers who have activated MFA Server prior to July 1 will be able to download the latest version, future updates and generate activation credentials as usual.
+> As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments. New customers who would like to require multi-factor authentication from their users should use cloud-based Azure AD Multi-Factor Authentication. Existing customers who have activated MFA Server prior to July 1 will be able to download the latest version, future updates and generate activation credentials as usual.
 
 **Applies to**
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 3fff407e34..9f8e5333ee 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -104,13 +104,13 @@ The built-in Windows Hello for Business provisioning experience creates a hardwa
 #### Multifactor authentication
 
 > [!IMPORTANT]
-> As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments. New customers who require multi-factor authentication for their users should use cloud-based Azure Multi-Factor Authentication. Existing customers who have activated MFA Server prior to July 1, 2019 will be able to download the latest version, future updates and generate activation credentials as usual. See [Getting started with the Azure Multi-Factor Authentication Server](https://docs.microsoft.com/azure/active-directory/authentication/howto-mfaserver-deploy) for more details.
+> As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments. New customers who require multi-factor authentication for their users should use cloud-based Azure AD Multi-Factor Authentication. Existing customers who have activated MFA Server prior to July 1, 2019 will be able to download the latest version, future updates and generate activation credentials as usual. See [Getting started with the Azure AD Multi-Factor Authentication Server](https://docs.microsoft.com/azure/active-directory/authentication/howto-mfaserver-deploy) for more details.
 
 The goal of Windows Hello for Business is to move organizations away from passwords by providing them a strong credential that provides easy two-factor authentication.  The built-in provisioning experience accepts the user's weak credentials (username and password) as the first factor authentication; however, the user must provide a second factor of authentication before Windows provisions a strong credential.  
 
-Cloud only and hybrid deployments provide many choices for multi-factor authentication.  On-premises deployments must use a multi-factor authentication that provides an AD FS multi-factor adapter to be used in conjunction with the on-premises Windows Server 2016 AD FS server role. Organizations can use the on-premises Azure Multi-factor Authentication server, or choose from several third parties (Read [Microsoft and third-party additional authentication methods](https://docs.microsoft.com/windows-server/identity/ad-fs/operations/configure-additional-authentication-methods-for-ad-fs#microsoft-and-third-party-additional-authentication-methods) for more information).
+Cloud only and hybrid deployments provide many choices for multi-factor authentication.  On-premises deployments must use a multi-factor authentication that provides an AD FS multi-factor adapter to be used in conjunction with the on-premises Windows Server 2016 AD FS server role. Organizations can use the on-premises Azure AD Multi-Factor Authentication server, or choose from several third parties (Read [Microsoft and third-party additional authentication methods](https://docs.microsoft.com/windows-server/identity/ad-fs/operations/configure-additional-authentication-methods-for-ad-fs#microsoft-and-third-party-additional-authentication-methods) for more information).
 > [!NOTE]
-> Azure Multi-Factor Authentication is available through:
+> Azure AD Multi-Factor Authentication is available through:
 > * Microsoft Enterprise Agreement
 > * Open Volume License Program
 > * Cloud Solution Providers program

From 3b423db0a6c6b3b3c88080d68d5bbc4ab03a1b90 Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Mon, 23 Nov 2020 11:14:35 +0200
Subject: [PATCH 028/825] Update
 windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-smartscreen-available-settings.md     | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
index b7b275e78a..ef53ba233b 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
@@ -41,10 +41,6 @@ SmartScreen uses registry-based Administrative Template policy settings. For mor
 <tr>
 <td><b>Windows 10, version 2004:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
 <td><b>Windows 10, version 1703:</b><br>Administrative Templates\Windows Components\Windows Defender SmartScreen\Explorer\Configure App Install Control</td>
-patch-107
-=======
-<td><b>Windows 10, version 1703</td>
-public
 <td>This policy setting is intended to prevent malicious content from affecting your user's devices when downloading executable content from the internet.</br></br> This setting does not protect against malicious content from USB devices, network shares, or other non-internet sources.</p><p><b>Important:</b> Using a trustworthy browser helps ensure that these protections work as expected.</p></td>
 </tr>
 <tr>
@@ -222,4 +218,3 @@ To better help you protect your organization, we recommend turning on and using
 - [Microsoft Defender SmartScreen overview](microsoft-defender-smartscreen-overview.md)
 
 - [Available Group Policy and Mobile Device Management (MDM) settings for Microsoft Edge](/microsoft-edge/deploy/available-policies)
-

From 0b4d83779cabda4f371efca225c1fb9a465bb00a Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Thu, 3 Dec 2020 07:05:08 +0530
Subject: [PATCH 029/825] Update policy-csp-defender.md

as per the user report #8740 , so i added admx  missing information after clearly cross with on my laptop runs with windows 10  20h2 64bit build no 19042.662 .

From this editing , i struggled few minutes for  formatting the line in correct and where to add those missing lines.

This editing of this article is  too complicated , editing needs too much concentration with dedicated experienced skills,
I knew all the contributors and all Authors , how are spent time to edit this article to make perfect.
---
 windows/client-management/mdm/policy-csp-defender.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/windows/client-management/mdm/policy-csp-defender.md b/windows/client-management/mdm/policy-csp-defender.md
index dcea40a888..6387efccc5 100644
--- a/windows/client-management/mdm/policy-csp-defender.md
+++ b/windows/client-management/mdm/policy-csp-defender.md
@@ -2317,6 +2317,15 @@ Added in Windows 10, version 1607. Specifies the level of detection for potenti
 > Potentially unwanted applications (PUA) are a category of software that can cause your machine to run slowly, display unexpected ads, or at worst, install other software which might be unexpected or unwanted. By default in Windows 10 (version 2004 and later), Microsoft Defender Antivirus blocks apps that are considered PUA, for Enterprise (E5) devices. For more information about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
 
 <!--/Description-->
+<!--ADMXMapped-->
+ADMX Info:  
+-   GP English name: *Configure detection for potentially unwanted applications*
+-   GP name: *Root_PUAProtection*
+-   GP element: *Root_PUAProtection*
+-   GP path: *Windows Components/Microsoft Defender Antivirus*
+-   GP ADMX file name: *WindowsDefender.admx*
+
+<!--/ADMXMapped-->
 <!--SupportedValues-->
 The following list shows the supported values:
 
@@ -3112,6 +3121,7 @@ Footnotes:
 - 6 - Available in Windows 10, version 1903.
 - 7 - Available in Windows 10, version 1909.
 - 8 - Available in Windows 10, version 2004.
+- 9 - Available in Windows 10, version 20H2.
 
 <!--/Policies-->
 

From c0b156672b92c55252aa453bb4ea52acf135b384 Mon Sep 17 00:00:00 2001
From: chblac <chblac@microsoft.com>
Date: Mon, 7 Dec 2020 11:37:15 -0800
Subject: [PATCH 030/825] Update bitlocker-csp.md

---
 windows/client-management/mdm/bitlocker-csp.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/bitlocker-csp.md b/windows/client-management/mdm/bitlocker-csp.md
index 07f3aa7f0f..652a24f8e4 100644
--- a/windows/client-management/mdm/bitlocker-csp.md
+++ b/windows/client-management/mdm/bitlocker-csp.md
@@ -1126,12 +1126,12 @@ Supported values:
 |-----|------------|
 | 0 |The BitLocker policy requires user consent to launch the BitLocker Drive Encryption Wizard to start encryption of the OS volume but the user didn't consent.|
 | 1 |The encryption method of the OS volume doesn't match the BitLocker policy.|
-| 2 |The BitLocker policy requires a TPM protector to protect the OS volume, but a TPM isn't used.|
+| 2 |The OS volume is unprotected.|
 | 3 |The BitLocker policy requires a TPM-only protector for the OS volume, but TPM protection isn't used.|
 | 4 |The BitLocker policy requires TPM+PIN protection for the OS volume, but a TPM+PIN protector isn't used.|
 | 5 |The BitLocker policy requires TPM+startup key protection for the OS volume, but a TPM+startup key protector isn't used.|
 | 6 |The BitLocker policy requires TPM+PIN+startup key protection for the OS volume, but a TPM+PIN+startup key protector isn't used.|
-| 7 |The OS volume is unprotected.|
+| 7 |The BitLocker policy requires a TPM protector to protect the OS volume, but a TPM isn't used.|
 | 8 |Recovery key backup failed.|
 | 9 |A fixed drive is unprotected.|
 | 10 |The encryption method of the fixed drive doesn't match the BitLocker policy.|

From c65538b1cc6fdddb94903fe04e7a95d05f00e095 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 8 Dec 2020 11:29:25 -0800
Subject: [PATCH 031/825] Added SkyDrive and Explorer policies

---
 windows/client-management/mdm/TOC.md          |   2 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   6 +
 .../policy-configuration-service-provider.md  |  28 ++
 .../mdm/policy-csp-admx-explorer.md           | 400 ++++++++++++++++++
 .../mdm/policy-csp-admx-skydrive.md           | 116 +++++
 5 files changed, 552 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-explorer.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-skydrive.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 19328d6086..86bd94db0c 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -193,6 +193,7 @@
 #### [ADMX_DWM](policy-csp-admx-dwm.md)
 #### [ADMX_EncryptFilesonMove](policy-csp-admx-encryptfilesonmove.md)
 #### [ADMX_EventForwarding](policy-csp-admx-eventforwarding.md)
+#### [ADMX_Explorer](policy-csp-admx-explorer.md)
 #### [ADMX_FileServerVSSProvider](policy-csp-admx-fileservervssprovider.md)
 #### [ADMX_FileSys](policy-csp-admx-filesys.md)
 #### [ADMX_FolderRedirection](policy-csp-admx-folderredirection.md)
@@ -221,6 +222,7 @@
 #### [ADMX_SharedFolders](policy-csp-admx-sharedfolders.md)
 #### [ADMX_Sharing](policy-csp-admx-sharing.md)
 #### [ADMX_ShellCommandPromptRegEditTools](policy-csp-admx-shellcommandpromptregedittools.md)
+#### [ADMX_SkyDrive](policy-csp-admx-skydrive.md)
 #### [ADMX_Smartcard](policy-csp-admx-smartcard.md)
 #### [ADMX_Snmp](policy-csp-admx-snmp.md)
 #### [ADMX_StartMenu](policy-csp-admx-startmenu.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 1f50c812bc..862afe663b 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -142,6 +142,11 @@ ms.date: 10/08/2020
 - [ADMX_EncryptFilesonMove/NoEncryptOnMove](./policy-csp-admx-encryptfilesonmove.md#admx-encryptfilesonmove-noencryptonmove)
 - [ADMX_EventForwarding/ForwarderResourceUsage](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-forwarderresourceusage)
 - [ADMX_EventForwarding/SubscriptionManager](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-subscriptionmanager)
+- [ADMX_Explorer/AdminInfoUrl](./policy-csp-admx-explorer.md#admx-explorer-admininfourl)
+- [ADMX_Explorer/AlwaysShowClassicMenu](./policy-csp-admx-explorer.md#admx-explorer-alwaysshowclassicmenu)
+- [ADMX_Explorer/DisableRoamedProfileInit](./policy-csp-admx-explorer.md#admx-explorer-disableroamedprofileinit)
+- [ADMX_Explorer/PreventItemCreationInUsersFilesFolder](./policy-csp-admx-explorer.md#admx-explorer-preventitemcreationinusersfilesfolder)
+- [ADMX_Explorer/TurnOffSPIAnimations](./policy-csp-admx-explorer.md#admx-explorer-turnoffspianimations)
 - [ADMX_FileServerVSSProvider/Pol_EncryptProtocol](./policy-csp-admx-fileservervssprovider.md#admx-fileservervssprovider-pol-encryptprotocol)
 - [ADMX_FileSys/DisableCompression](./policy-csp-admx-filesys.md#admx-filesys-disablecompression)
 - [ADMX_FileSys/DisableDeleteNotification](./policy-csp-admx-filesys.md#admx-filesys-disabledeletenotification)
@@ -461,6 +466,7 @@ ms.date: 10/08/2020
 - [ADMX_ShellCommandPromptRegEditTools/DisableRegedit](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disableregedit)
 - [ADMX_ShellCommandPromptRegEditTools/DisallowApps](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disallowapps)
 - [ADMX_ShellCommandPromptRegEditTools/RestrictApps](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disablecmd)
+- [ADMX_SkyDrive/PreventNetworkTrafficPreUserSignIn](./policy-csp-admx-skydrive.md#admx-skydrive-preventnetworktrafficpreusersignin)
 - [ADMX_Smartcard/AllowCertificatesWithNoEKU](./policy-csp-admx-smartcard.md#admx-smartcard-allowcertificateswithnoeku)
 - [ADMX_Smartcard/AllowIntegratedUnblock](./policy-csp-admx-smartcard.md#admx-smartcard-allowintegratedunblock)
 - [ADMX_Smartcard/AllowSignatureOnlyKeys](./policy-csp-admx-smartcard.md#admx-smartcard-allowsignatureonlykeys)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 99fad505b6..9c50187fd7 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -633,6 +633,26 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Explorer policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-explorer.md#admx-explorer-admininfourl" id="admx-explorer-admininfourl">ADMX_Explorer/AdminInfoUrl</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-explorer.md#admx-explorer-alwaysshowclassicmenu" id="admx-explorer-alwaysshowclassicmenu">ADMX_Explorer/AlwaysShowClassicMenu</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-explorer.md#admx-explorer-disableroamedprofileinit" id="admx-explorer-disableroamedprofileinit">ADMX_Explorer/DisableRoamedProfileInit</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-explorer.md#admx-explorer-preventitemcreationinusersfilesfolder" id="admx-explorer-preventitemcreationinusersfilesfolder">ADMX_Explorer/PreventItemCreationInUsersFilesFolder</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-explorer.md#admx-explorer-turnoffspianimations" id="admx-explorer-turnoffspianimations">ADMX_Explorer/TurnOffSPIAnimations</a>
+  </dd>
+</dl>
+
 ### ADMX_FileServerVSSProvider policies
 <dl>
   <dd>
@@ -1717,6 +1737,14 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_SkyDrive policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-skydrive.md#admx-skydrive-preventnetworktrafficpreusersignin" id="admx-skydrive-preventnetworktrafficpreusersignin">ADMX_SkyDrive/PreventNetworkTrafficPreUserSignIn</a>
+  </dd>
+</dl>
+
 ### ADMX_Smartcard policies
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-explorer.md b/windows/client-management/mdm/policy-csp-admx-explorer.md
new file mode 100644
index 0000000000..31c5d764fb
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-explorer.md
@@ -0,0 +1,400 @@
+---
+title: Policy CSP - ADMX_Explorer
+description: Policy CSP - ADMX_Explorer
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/08/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Explorer
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Explorer policies  
+
+<dl>
+  <dd>
+    <a href="#admx-explorer-admininfourl">ADMX_Explorer/AdminInfoUrl</a>
+  </dd>
+  <dd>
+    <a href="#admx-explorer-alwaysshowclassicmenu">ADMX_Explorer/AlwaysShowClassicMenu</a>
+  </dd>
+  <dd>
+    <a href="#admx-explorer-disableroamedprofileinit">ADMX_Explorer/DisableRoamedProfileInit</a>
+  </dd>
+  <dd>
+    <a href="#admx-explorer-preventitemcreationinusersfilesfolder">ADMX_Explorer/PreventItemCreationInUsersFilesFolder</a>
+  </dd>
+  <dd>
+    <a href="#admx-explorer-turnoffspianimations">ADMX_Explorer/TurnOffSPIAnimations</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-explorer-admininfourl"></a>**ADMX_Explorer/AdminInfoUrl**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Sets the target of the More Information link that will be displayed when the user attempts to run a program that is blocked by policy.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set a support web page link*
+-   GP name: *AdminInfoUrl*
+-   GP path: *Windows Components\File Explorer*
+-   GP ADMX file name: *Explorer.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-explorer-alwaysshowclassicmenu"></a>**ADMX_Explorer/AlwaysShowClassicMenu**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures File Explorer to always display the menu bar.
+
+> [!NOTE]
+> By default, the menu bar is not displayed in File Explorer.
+
+If you enable this policy setting, the menu bar will be displayed in File Explorer.
+
+If you disable or do not configure this policy setting, the menu bar will not be displayed in File Explorer.  
+
+> [!NOTE]
+> When the menu bar is not displayed, users can access the menu bar by pressing the 'ALT' key.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Display the menu bar in File Explorer*
+-   GP name: *AlwaysShowClassicMenu*
+-   GP path: *Windows Components\File Explorer*
+-   GP ADMX file name: *Explorer.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-explorer-disableroamedprofileinit"></a>**ADMX_Explorer/DisableRoamedProfileInit**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows administrators who have configured roaming profile in conjunction with Delete Cached Roaming Profile Group Policy setting to ensure that Explorer will not reinitialize default program associations and other settings to default values.
+
+If you enable this policy setting on a machine that does not contain all programs installed in the same manner as it was on the machine on which the user had last logged on, unexpected behavior could occur.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not reinitialize a pre-existing roamed user profile when it is loaded on a machine for the first time*
+-   GP name: *DisableRoamedProfileInit*
+-   GP path: *Windows Components\File Explorer*
+-   GP ADMX file name: *Explorer.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-explorer-preventitemcreationinusersfilesfolder"></a>**ADMX_Explorer/PreventItemCreationInUsersFilesFolder**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows administrators to prevent users from adding new items such as files or folders to the root of their Users Files folder in File Explorer.
+
+If you enable this policy setting, users will no longer be able to add new items such as files or folders to the root of their Users Files folder in File Explorer.
+
+If you disable or do not configure this policy setting, users will be able to add new items such as files or folders to the root of their Users Files folder in File Explorer.
+
+> [!NOTE]
+> Enabling this policy setting does not prevent the user from being able to add new items such as files and folders to their actual file system profile folder at %userprofile%.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent users from adding files to the root of their Users Files folder.*
+-   GP name: *PreventItemCreationInUsersFilesFolder*
+-   GP path: *Windows Components\File Explorer*
+-   GP ADMX file name: *Explorer.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-explorer-turnoffspianimations"></a>**ADMX_Explorer/TurnOffSPIAnimations**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy is similar to settings directly available to computer users.  Disabling animations can improve usability for users with some visual disabilities as well as improving performance and battery life in some scenarios.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off common control and window animations*
+-   GP name: *TurnOffSPIAnimations*
+-   GP path: *Windows Components\File Explorer*
+-   GP ADMX file name: *Explorer.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file
diff --git a/windows/client-management/mdm/policy-csp-admx-skydrive.md b/windows/client-management/mdm/policy-csp-admx-skydrive.md
new file mode 100644
index 0000000000..5580f6e4e4
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-skydrive.md
@@ -0,0 +1,116 @@
+---
+title: Policy CSP - ADMX_SkyDrive
+description: Policy CSP - ADMX_SkyDrive
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/08/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_SkyDrive
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_SkyDrive policies  
+
+<dl>
+  <dd>
+    <a href="#admx-skydrive-preventnetworktrafficpreusersignin">ADMX_SkyDrive/PreventNetworkTrafficPreUserSignIn</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-skydrive-preventnetworktrafficpreusersignin"></a>**ADMX_SkyDrive/PreventNetworkTrafficPreUserSignIn**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Enable this setting to prevent the OneDrive sync client (OneDrive.exe) from generating network traffic (checking for updates, etc.) until the user signs in to OneDrive or starts syncing files to the local computer.
+
+If you enable this setting, users must sign in to the OneDrive sync client on the local computer, or select to sync OneDrive or SharePoint files on the computer, for the sync client to start automatically.
+
+If this setting is not enabled, the OneDrive sync client will start automatically when users sign in to Windows.
+
+If you enable or disable this setting, do not return the setting to Not Configured. Doing so will not change the configuration and the last configured setting will remain in effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent OneDrive from generating network traffic until the user signs in to OneDrive*
+-   GP name: *PreventNetworkTrafficPreUserSignIn*
+-   GP path: *Windows Components\OneDrive*
+-   GP ADMX file name: *SkyDrive.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From 2c7249b47e5711800c79f1a88b12498c33af251a Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 8 Dec 2020 14:02:31 -0800
Subject: [PATCH 032/825] Added LanmanWorkstation policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   3 +
 .../policy-configuration-service-provider.md  |  14 +
 .../mdm/policy-csp-admx-lanmanworkstation.md  | 279 ++++++++++++++++++
 4 files changed, 297 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 86bd94db0c..631c73eec2 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -201,6 +201,7 @@
 #### [ADMX_HelpAndSupport](policy-csp-admx-helpandsupport.md)
 #### [ADMX_kdc](policy-csp-admx-kdc.md)
 #### [ADMX_LanmanServer](policy-csp-admx-lanmanserver.md)
+#### [ADMX_LanmanWorkstation](policy-csp-admx-lanmanworkstation.md)
 #### [ADMX_LinkLayerTopologyDiscovery](policy-csp-admx-linklayertopologydiscovery.md)
 #### [ADMX_MMC](policy-csp-admx-mmc.md)
 #### [ADMX_MMCSnapins](policy-csp-admx-mmcsnapins.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 862afe663b..b834641841 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -181,6 +181,9 @@ ms.date: 10/08/2020
 - [ADMX_LanmanServer/Pol_HashPublication](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-hashpublication)
 - [ADMX_LanmanServer/Pol_HashSupportVersion](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-hashsupportversion)
 - [ADMX_LanmanServer/Pol_HonorCipherSuiteOrder](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-honorciphersuiteorder)
+- [ADMX_LanmanWorkstation/Pol_CipherSuiteOrder](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-ciphersuiteorder)
+- [ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enablehandlecachingforcafiles)
+- [ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enableofflinefilesforcashares)
 - [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableLLTDIO](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablelltdio)
 - [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableRspndr](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablerspndr)
 - [ADMX_MMC/MMC_ActiveXControl](./policy-csp-admx-mmc.md#admx-mmc-mmc-activexcontrol)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 9c50187fd7..1bec41f8c4 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -783,6 +783,20 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_LanmanWorkstation policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-ciphersuiteorder" id="admx-lanmanworkstation-pol-ciphersuiteorder">ADMX_LanmanWorkstation/Pol_CipherSuiteOrder</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enablehandlecachingforcafiles" id="admx-lanmanworkstation-pol-enablehandlecachingforcafiles">ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enableofflinefilesforcashares" id="admx-lanmanworkstation-pol-enableofflinefilesforcashares">ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares</a>
+  </dd>
+</dl>
+
 ### ADMX_LinkLayerTopologyDiscovery policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
new file mode 100644
index 0000000000..5a9ce576f9
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
@@ -0,0 +1,279 @@
+---
+title: Policy CSP - ADMX_LanmanWorkstation
+description: Policy CSP - ADMX_LanmanWorkstation
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/08/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_LanmanWorkstation
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_LanmanWorkstation policies  
+
+<dl>
+  <dd>
+    <a href="#admx-lanmanworkstation-pol-ciphersuiteorder">ADMX_LanmanWorkstation/Pol_CipherSuiteOrder</a>
+  </dd>
+  <dd>
+    <a href="#admx-lanmanworkstation-pol-enablehandlecachingforcafiles">ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles</a>
+  </dd>
+  <dd>
+    <a href="#admx-lanmanworkstation-pol-enableofflinefilesforcashares">ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-lanmanworkstation-pol-ciphersuiteorder"></a>**ADMX_LanmanWorkstation/Pol_CipherSuiteOrder**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the cipher suites used by the SMB client.
+
+If you enable this policy setting, cipher suites are prioritized in the order specified.
+
+If you enable this policy setting and do not specify at least one supported cipher suite, or if you disable or do not configure this policy setting, the default cipher suite order is used.
+
+SMB 3.11 cipher suites:
+
+- AES_128_GCM
+- AES_128_CCM
+
+SMB 3.0 and 3.02 cipher suites:
+
+- AES_128_CCM
+
+How to modify this setting:
+
+Arrange the desired cipher suites in the edit box, one cipher suite per line, in order from most to least preferred, with the most preferred cipher suite at the top. Remove any cipher suites you don't want to use.
+
+> [!NOTE]
+> When configuring this security setting, changes will not take effect until you restart Windows.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Cipher suite order*
+-   GP name: *Pol_CipherSuiteOrder*
+-   GP path: *Network\Lanman Workstation*
+-   GP ADMX file name: *LanmanWorkstation.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-lanmanworkstation-pol-enablehandlecachingforcafiles"></a>**ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the behavior of SMB handle caching for clients connecting to an SMB share where the Continuous Availability (CA) flag is enabled.
+
+If you enable this policy setting, the SMB client will allow cached handles to files on CA shares. This may lead to better performance when repeatedly accessing a large number of unstructured data files on CA shares running in Microsoft Azure Files.
+
+If you disable or do not configure this policy setting, Windows will prevent use of cached handles to files opened through CA shares.
+
+> [!NOTE]
+> This policy has no effect when connecting Scale-out File Server shares provided by a Windows Server. Microsoft does not recommend enabling this policy for clients that routinely connect to files hosted on a Windows Failover Cluster with the File Server for General Use role, as it can lead to adverse failover times and increased memory and CPU usage.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Handle Caching on Continuous Availability Shares*
+-   GP name: *Pol_EnableHandleCachingForCAFiles*
+-   GP path: *Network\Lanman Workstation*
+-   GP ADMX file name: *LanmanWorkstation.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-lanmanworkstation-pol-enableofflinefilesforcashares"></a>**ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the behavior of Offline Files on clients connecting to an SMB share where the Continuous Availability (CA) flag is enabled.
+
+If you enable this policy setting, the "Always Available offline" option will appear in the File Explorer menu on a Windows computer when connecting to a CA-enabled share. Pinning of files on CA-enabled shares using client-side caching will also be possible.
+
+If you disable or do not configure this policy setting, Windows will prevent use of Offline Files with CA-enabled shares.
+
+> [!NOTE]
+> Microsoft does not recommend enabling this group policy. Use of CA with Offline Files will lead to very long transition times between the online and offline states.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Offline Files Availability on Continuous Availability Shares*
+-   GP name: *Pol_EnableOfflineFilesforCAShares*
+-   GP path: *Network\Lanman Workstation*
+-   GP ADMX file name: *LanmanWorkstation.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 7b364be416e98bdbd2a7aa13f46c92289cfb9511 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 8 Dec 2020 15:52:16 -0800
Subject: [PATCH 033/825] Added msched policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   2 +
 .../policy-configuration-service-provider.md  |  11 +
 .../mdm/policy-csp-admx-lanmanworkstation.md  |   5 +
 .../mdm/policy-csp-admx-msched.md             | 191 ++++++++++++++++++
 5 files changed, 210 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-msched.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 631c73eec2..a12ec58d25 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -206,6 +206,7 @@
 #### [ADMX_MMC](policy-csp-admx-mmc.md)
 #### [ADMX_MMCSnapins](policy-csp-admx-mmcsnapins.md)
 #### [ADMX_MSAPolicy](policy-csp-admx-msapolicy.md)
+#### [ADMX_msched](policy-csp-admx-msched.md)
 #### [ADMX_nca](policy-csp-admx-nca.md)
 #### [ADMX_NCSI](policy-csp-admx-ncsi.md)
 #### [ADMX_Netlogon](policy-csp-admx-netlogon.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index b834641841..5fb786235b 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -296,6 +296,8 @@ ms.date: 10/08/2020
 - [ADMX_MMCSnapins/MMC_WirelessMon](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wirelessmon)
 - [ADMX_MMCSnapins/MMC_WirelessNetworkPolicy](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wirelessnetworkpolicy)
 - [ADMX_MSAPolicy/IncludeMicrosoftAccount_DisableUserAuthCmdLine](./policy-csp-admx-msapolicy.md#admx-msapolicy-microsoftaccount-disableuserauth)
+- [ADMX_msched/ActivationBoundaryPolicy](./policy-csp-admx-msched.md#admx-msched-activationboundarypolicy)
+- [ADMX_msched/RandomDelayPolicy](./policy-csp-admx-msched.md#admx-msched-randomdelaypolicy)
 - [ADMX_nca/CorporateResources](./policy-csp-admx-nca.md#admx-nca-corporateresources)
 - [ADMX_nca/CustomCommands](./policy-csp-admx-nca.md#admx-nca-customcommands)
 - [ADMX_nca/DTEs](./policy-csp-admx-nca.md#admx-nca-dtes)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 1bec41f8c4..7c2741bcb5 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1150,6 +1150,17 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
   <dd>
 
+### ADMX_msched policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-msched.md#admx-msched-activationboundarypolicy" id="admx-msched-activationboundarypolicy">ADMX_msched/ActivationBoundaryPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msched.md#admx-msched-randomdelaypolicy" id="admx-msched-randomdelaypolicy">ADMX_msched/RandomDelayPolicy</a>
+  </dd>
+</dl>
+
 ### ADMX_nca policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
index 5a9ce576f9..a17e77a476 100644
--- a/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
+++ b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
@@ -90,6 +90,11 @@ SMB 3.11 cipher suites:
 
 - AES_128_GCM
 - AES_128_CCM
+- AES_256_GCM
+- AES_256_CCM
+
+> [!NOTE]
+> AES_256 is not supported on Windows 10 version 20H2 and lower. Additionally, if you enter only AES_256 crypto lines, the older clients will no longer be able to connect.
 
 SMB 3.0 and 3.02 cipher suites:
 
diff --git a/windows/client-management/mdm/policy-csp-admx-msched.md b/windows/client-management/mdm/policy-csp-admx-msched.md
new file mode 100644
index 0000000000..fc45989368
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-msched.md
@@ -0,0 +1,191 @@
+---
+title: Policy CSP - ADMX_msched
+description: Policy CSP - ADMX_msched
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/08/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_msched
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_msched policies  
+
+<dl>
+  <dd>
+    <a href="#admx-msched-activationboundarypolicy">ADMX_msched/ActivationBoundaryPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-msched-randomdelaypolicy">ADMX_msched/RandomDelayPolicy</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msched-activationboundarypolicy"></a>**ADMX_msched/ActivationBoundaryPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Automatic Maintenance activation boundary. The maintenance activation boundary is the daily scheduled time at which Automatic Maintenance starts.
+
+If you enable this policy setting, this will override the default daily scheduled time as specified in Security and Maintenance/Automatic Maintenance Control Panel.
+
+If you disable or do not configure this policy setting, the daily scheduled time as specified in Security and Maintenance/Automatic Maintenance Control Panel will apply.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Automatic Maintenance Activation Boundary*
+-   GP name: *ActivationBoundaryPolicy*
+-   GP path: *Windows Components\Maintenance Scheduler*
+-   GP ADMX file name: *msched.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msched-randomdelaypolicy"></a>**ADMX_msched/RandomDelayPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Automatic Maintenance activation random delay.
+
+The maintenance random delay is the amount of time up to which Automatic Maintenance will delay starting from its Activation Boundary.
+
+If you enable this policy setting, Automatic Maintenance will delay starting from its Activation Boundary, by up to this time.
+
+If you do not configure this policy setting, 4 hour random delay will be applied to Automatic Maintenance.
+
+If you disable this policy setting, no random delay will be applied to Automatic Maintenance.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Automatic Maintenance Random Delay*
+-   GP name: *RandomDelayPolicy*
+-   GP path: *Windows Components\Maintenance Scheduler*
+-   GP ADMX file name: *msched.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From a3c8fe9118ab0835248a404d15cc86cfee3b1e95 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 8 Dec 2020 16:07:36 -0800
Subject: [PATCH 034/825] Minor text update

---
 .../client-management/mdm/policy-csp-admx-lanmanworkstation.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
index a17e77a476..d3c1dfcd54 100644
--- a/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
+++ b/windows/client-management/mdm/policy-csp-admx-lanmanworkstation.md
@@ -94,7 +94,7 @@ SMB 3.11 cipher suites:
 - AES_256_CCM
 
 > [!NOTE]
-> AES_256 is not supported on Windows 10 version 20H2 and lower. Additionally, if you enter only AES_256 crypto lines, the older clients will no longer be able to connect.
+> AES_256 is not supported on Windows 10 version 20H2 and lower. If you enter only AES_256 crypto lines, the older clients will not be able to connect anymore.
 
 SMB 3.0 and 3.02 cipher suites:
 

From eab2698824cdcb936d383e05679727d741fd9e21 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 8 Dec 2020 16:40:40 -0800
Subject: [PATCH 035/825] Added RPC policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   4 +
 .../policy-configuration-service-provider.md  |  17 +
 .../mdm/policy-csp-admx-rpc.md                | 394 ++++++++++++++++++
 4 files changed, 416 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-rpc.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index a12ec58d25..2e828a600c 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -216,6 +216,7 @@
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
 #### [ADMX_Reliability](policy-csp-admx-reliability.md)
+#### [ADMX_RPC](policy-csp-admx-rpc.md)
 #### [ADMX_Scripts](policy-csp-admx-scripts.md)
 #### [ADMX_sdiageng](policy-csp-admx-sdiageng.md)
 #### [ADMX_Securitycenter](policy-csp-admx-securitycenter.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 5fb786235b..80ac1e00c1 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -442,6 +442,10 @@ ms.date: 10/08/2020
 - [ADMX_Reliability/PCH_ReportShutdownEvents](./policy-csp-admx-reliability.md#admx-reliability-pch-reportshutdownevents)
 - [ADMX_Reliability/ShutdownEventTrackerStateFile](./policy-csp-admx-reliability.md#admx-reliability-shutdowneventtrackerstatefile)
 - [ADMX_Reliability/ShutdownReason](./policy-csp-admx-reliability.md#admx-reliability-shutdownreason)
+- [ADMX_RPC/RpcExtendedErrorInformation](./policy-csp-admx-rpc.md#admx-rpc-rpcextendederrorinformation)
+- [ADMX_RPC/RpcIgnoreDelegationFailure](./policy-csp-admx-rpc.md#admx-rpc-rpcignoredelegationfailure)
+- [ADMX_RPC/RpcMinimumHttpConnectionTimeout](./policy-csp-admx-rpc.md#admx-rpc-rpcminimumhttpconnectiontimeout)
+- [ADMX_RPC/RpcStateInformation](./policy-csp-admx-rpc.md#admx-rpc-rpcstateinformation)
 - [ADMX_Scripts/Allow_Logon_Script_NetbiosDisabled](./policy-csp-admx-scripts.md#admx-scripts-allow-logon-script-netbiosdisabled)
 - [ADMX_Scripts/MaxGPOScriptWaitPolicy](./policy-csp-admx-scripts.md#admx-scripts-maxgposcriptwaitpolicy)
 - [ADMX_Scripts/Run_Computer_PS_Scripts_First](./policy-csp-admx-scripts.md#admx-scripts-run-computer-ps-scripts-first)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 7c2741bcb5..b43c6f5515 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1635,6 +1635,23 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>  
 
+### ADMX_RPC policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-rpc.md#admx-rpc-rpcextendederrorinformation" id="admx-rpc-rpcextendederrorinformation">ADMX_RPC/RpcExtendedErrorInformation</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-rpc.md#admx-rpc-rpcignoredelegationfailure" id="admx-rpc-rpcignoredelegationfailure">ADMX_RPC/RpcIgnoreDelegationFailure</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-rpc.md#admx-rpc-rpcminimumhttpconnectiontimeout" id="admx-rpc-rpcminimumhttpconnectiontimeout">ADMX_RPC/RpcMinimumHttpConnectionTimeout</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-rpc.md#admx-rpc-rpcstateinformation" id="admx-rpc-rpcstateinformation">ADMX_RPC/RpcStateInformation</a>
+  </dd>
+</dl>
+
 ### ADMX_Scripts policies
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-rpc.md b/windows/client-management/mdm/policy-csp-admx-rpc.md
new file mode 100644
index 0000000000..2845ab5077
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-rpc.md
@@ -0,0 +1,394 @@
+---
+title: Policy CSP - ADMX_RPC
+description: Policy CSP - ADMX_RPC
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/08/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_RPC
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_RPC policies  
+
+<dl>
+  <dd>
+    <a href="#admx-rpc-rpcextendederrorinformation">ADMX_RPC/RpcExtendedErrorInformation</a>
+  </dd>
+  <dd>
+    <a href="#admx-rpc-rpcignoredelegationfailure">ADMX_RPC/RpcIgnoreDelegationFailure</a>
+  </dd>
+  <dd>
+    <a href="#admx-rpc-rpcminimumhttpconnectiontimeout">ADMX_RPC/RpcMinimumHttpConnectionTimeout</a>
+  </dd>
+  <dd>
+    <a href="#admx-rpc-rpcstateinformation">ADMX_RPC/RpcStateInformation</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-rpc-rpcextendederrorinformation"></a>**ADMX_RPC/RpcExtendedErrorInformation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the RPC runtime generates extended error information when an error occurs.
+
+Extended error information includes the local time that the error occurred, the RPC version, and the name of the computer on which the error occurred, or from which it was propagated. Programs can retrieve the extended error information by using standard Windows application programming interfaces (APIs).
+
+If you disable this policy setting, the RPC Runtime only generates a status code to indicate an error condition.
+
+If you do not configure this policy setting, it remains disabled.  It will only generate a status code to indicate an error condition.
+
+If you enable this policy setting, the RPC runtime will generate extended error information.
+
+You must select an error response type in the drop-down box.
+
+- "Off" disables all extended error information for all processes. RPC only generates an error code.
+- "On with Exceptions" enables extended error information, but lets you disable it for selected processes. To disable extended error information for a process while this policy setting is in effect, the command that starts the process must begin with one of the strings in the Extended Error Information Exception field.
+- "Off with Exceptions" disables extended error information, but lets you enable it for selected processes. To enable extended error information for a process while this policy setting is in effect, the command that starts the process must begin with one of the strings in the Extended Error Information Exception field.
+- "On" enables extended error information for all processes.
+
+> [!NOTE]
+> For information about the Extended Error Information Exception field, see the Windows Software Development Kit (SDK).
+>
+> Extended error information is formatted to be compatible with other operating systems and older Microsoft operating systems, but only newer Microsoft operating systems can read and respond to the information.
+>
+> The default policy setting, "Off," is designed for systems where extended error information is considered to be sensitive, and it should not be made available remotely.
+>
+> This policy setting will not be applied until the system is rebooted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Propagate extended error information*
+-   GP name: *RpcExtendedErrorInformation*
+-   GP path: *System\Remote Procedure Call*
+-   GP ADMX file name: *RPC.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-rpc-rpcignoredelegationfailure"></a>**ADMX_RPC/RpcIgnoreDelegationFailure**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the RPC Runtime ignores delegation failures when delegation is requested.
+
+The constrained delegation model, introduced in Windows Server 2003, does not report that delegation was enabled on a security context when a client connects to a server. Callers of RPC and COM are encouraged to use the RPC_C_QOS_CAPABILITIES_IGNORE_DELEGATE_FAILURE flag, but some applications written for the traditional delegation model prior to Windows Server 2003 may not use this flag and will encounter RPC_S_SEC_PKG_ERROR when connecting to a server that uses constrained delegation.
+
+If you disable this policy setting, the RPC Runtime will generate RPC_S_SEC_PKG_ERROR errors to applications that ask for delegation and connect to servers using constrained delegation. 
+
+If you do not configure this policy setting, it remains disabled and will generate RPC_S_SEC_PKG_ERROR errors to applications that ask for delegation and connect to servers using constrained delegation.
+
+If you enable this policy setting, then:
+
+- "Off" directs the RPC Runtime to generate RPC_S_SEC_PKG_ERROR if the client asks for delegation, but the created security context does not support delegation.
+
+- "On" directs the RPC Runtime to accept security contexts that do not support delegation even if delegation was asked for.
+
+> [!NOTE]
+> This policy setting will not be applied until the system is rebooted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Ignore Delegation Failure*
+-   GP name: *RpcIgnoreDelegationFailure*
+-   GP path: *System\Remote Procedure Call*
+-   GP ADMX file name: *RPC.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-rpc-rpcminimumhttpconnectiontimeout"></a>**ADMX_RPC/RpcMinimumHttpConnectionTimeout**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the idle connection timeout for RPC/HTTP connections.  
+
+This policy setting is useful in cases where a network agent like an HTTP proxy or a router uses a lower idle connection timeout than the IIS server running the RPC/HTTP proxy. In such cases, RPC/HTTP clients may encounter errors because connections will be timed out faster than expected. Using this policy setting you can force the RPC Runtime and the RPC/HTTP Proxy to use a lower connection timeout.
+
+This policy setting is only applicable when the RPC Client, the RPC Server and the RPC HTTP Proxy are all running Windows Server 2003 family/Windows XP SP1 or higher versions. If either the RPC Client or the RPC Server or the RPC HTTP Proxy run on an older version of Windows, this policy setting will be ignored.
+
+The minimum allowed value for this policy setting is 90 seconds. The maximum is 7200 seconds (2 hours).
+
+If you disable this policy setting, the idle connection timeout on the IIS server running the RPC HTTP proxy will be used.
+
+If you do not configure this policy setting, it will remain disabled.  The idle connection timeout on the IIS server running the RPC HTTP proxy will be used.
+
+If you enable this policy setting, and the IIS server running the RPC HTTP proxy is configured with a lower idle connection timeout, the timeout on the IIS server is used. Otherwise, the provided timeout value is used. The timeout is given in seconds.
+
+> [!NOTE]
+> This policy setting will not be applied until the system is rebooted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set Minimum Idle Connection Timeout for RPC/HTTP connections*
+-   GP name: *RpcMinimumHttpConnectionTimeout*
+-   GP path: *System\Remote Procedure Call*
+-   GP ADMX file name: *RPC.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-rpc-rpcstateinformation"></a>**ADMX_RPC/RpcStateInformation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the RPC Runtime maintains RPC state information for the system, and how much information it maintains. Basic state information, which consists only of the most commonly needed state data, is required for troubleshooting RPC problems.
+
+If you disable this policy setting, the RPC runtime defaults to "Auto2" level.
+
+If you do not configure this policy setting, the RPC  defaults to "Auto2" level. 
+
+If you enable this policy setting, you can use the drop-down box to determine which systems maintain RPC state information.
+
+- "None" indicates that the system does not maintain any RPC state information. Note: Because the basic state information required for troubleshooting has a negligible effect on performance and uses only about 4K of memory, this setting is not recommended for most installations.
+
+- "Auto1" directs RPC to maintain basic state information only if the computer has at least 64 MB of memory.
+
+- "Auto2" directs RPC to maintain basic state information only if the computer has at least 128 MB of memory and is running Windows 2000 Server, Windows 2000 Advanced Server, or Windows 2000 Datacenter Server. 
+
+- "Server" directs RPC to maintain basic state information on the computer, regardless of its capacity.
+
+- "Full" directs RPC to maintain complete RPC state information on the system, regardless of its capacity. Because this level can degrade performance, it is recommended for use only while you are investigating an RPC problem.
+
+> [!NOTE]
+> To retrieve the RPC state information from a system that maintains it, you must use a debugging tool.
+>
+> This policy setting will not be applied until the system is rebooted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Maintain RPC Troubleshooting State Information*
+-   GP name: *RpcStateInformation*
+-   GP path: *System\Remote Procedure Call*
+-   GP ADMX file name: *RPC.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From 3ea6c40928d08f57ed58463ac810a14a4603503d Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 9 Dec 2020 09:25:36 -0800
Subject: [PATCH 036/825] Added MSDT policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   3 +
 .../policy-configuration-service-provider.md  |  14 +
 .../mdm/policy-csp-admx-msdt.md               | 288 ++++++++++++++++++
 4 files changed, 306 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-msdt.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 2e828a600c..2a7a434c65 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -207,6 +207,7 @@
 #### [ADMX_MMCSnapins](policy-csp-admx-mmcsnapins.md)
 #### [ADMX_MSAPolicy](policy-csp-admx-msapolicy.md)
 #### [ADMX_msched](policy-csp-admx-msched.md)
+#### [ADMX_MSDT](policy-csp-admx-msdt.md)
 #### [ADMX_nca](policy-csp-admx-nca.md)
 #### [ADMX_NCSI](policy-csp-admx-ncsi.md)
 #### [ADMX_Netlogon](policy-csp-admx-netlogon.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 80ac1e00c1..40e0c3cfd3 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -298,6 +298,9 @@ ms.date: 10/08/2020
 - [ADMX_MSAPolicy/IncludeMicrosoftAccount_DisableUserAuthCmdLine](./policy-csp-admx-msapolicy.md#admx-msapolicy-microsoftaccount-disableuserauth)
 - [ADMX_msched/ActivationBoundaryPolicy](./policy-csp-admx-msched.md#admx-msched-activationboundarypolicy)
 - [ADMX_msched/RandomDelayPolicy](./policy-csp-admx-msched.md#admx-msched-randomdelaypolicy)
+- [ADMX_MSDT/MsdtSupportProvider](./policy-csp-admx-msdt.md#admx-msdt-msdtsupportprovider)
+- [ADMX_MSDT/MsdtToolDownloadPolicy](./policy-csp-admx-msdt.md#admx-msdt-msdttooldownloadpolicy)
+- [ADMX_MSDT/WdiScenarioExecutionPolicy](./policy-csp-admx-msdt.md#admx-msdt-wdiscenarioexecutionpolicy)
 - [ADMX_nca/CorporateResources](./policy-csp-admx-nca.md#admx-nca-corporateresources)
 - [ADMX_nca/CustomCommands](./policy-csp-admx-nca.md#admx-nca-customcommands)
 - [ADMX_nca/DTEs](./policy-csp-admx-nca.md#admx-nca-dtes)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index b43c6f5515..5ea40c5c67 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1161,6 +1161,20 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_MSDT policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-msdt.md#admx-msdt-msdtsupportprovider" id="admx-msdt-msdtsupportprovider">ADMX_MSDT/MsdtSupportProvider</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msdt.md#admx-msdt-msdttooldownloadpolicy" id="admx-msdt-msdttooldownloadpolicy">ADMX_MSDT/MsdtToolDownloadPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msdt.md#admx-msdt-wdiscenarioexecutionpolicy" id="admx-msdt-wdiscenarioexecutionpolicy">ADMX_MSDT/WdiScenarioExecutionPolicy</a>
+  </dd>
+</dl>
+
 ### ADMX_nca policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-msdt.md b/windows/client-management/mdm/policy-csp-admx-msdt.md
new file mode 100644
index 0000000000..c22b9c6437
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-msdt.md
@@ -0,0 +1,288 @@
+---
+title: Policy CSP - ADMX_MSDT
+description: Policy CSP - ADMX_MSDT
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/09/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_MSDT
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_MSDT policies  
+
+<dl>
+  <dd>
+    <a href="#admx-msdt-msdtsupportprovider">ADMX_MSDT/MsdtSupportProvider</a>
+  </dd>
+  <dd>
+    <a href="#admx-msdt-msdttooldownloadpolicy">ADMX_MSDT/MsdtToolDownloadPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-msdt-wdiscenarioexecutionpolicy">ADMX_MSDT/WdiScenarioExecutionPolicy</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msdt-msdtsupportprovider"></a>**ADMX_MSDT/MsdtSupportProvider**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures Microsoft Support Diagnostic Tool (MSDT) interactive communication with the support provider. MSDT gathers diagnostic data for analysis by support professionals.
+
+If you enable this policy setting, users can use MSDT to collect and send diagnostic data to a support professional to resolve a problem.
+
+By default, the support provider is set to Microsoft Corporation.
+
+If you disable this policy setting, MSDT cannot run in support mode, and no data can be collected or sent to the support provider.
+
+If you do not configure this policy setting, MSDT support mode is enabled by default.
+
+No reboots or service restarts are required for this policy setting to take effect. Changes take effect immediately.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Microsoft Support Diagnostic Tool: Turn on MSDT interactive communication with support provider*
+-   GP name: *MsdtSupportProvider*
+-   GP path: *System\Troubleshooting and Diagnostics\Microsoft Support Diagnostic Tool*
+-   GP ADMX file name: *MSDT.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msdt-msdttooldownloadpolicy"></a>**ADMX_MSDT/MsdtToolDownloadPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts the tool download policy for Microsoft Support Diagnostic Tool.
+
+Microsoft Support Diagnostic Tool (MSDT) gathers diagnostic data for analysis by support professionals.
+
+For some problems, MSDT may prompt the user to download additional tools for troubleshooting.  These tools are required to completely troubleshoot the problem.
+
+If tool download is restricted, it may not be possible to find the root cause of the problem.
+
+If you enable this policy setting for remote troubleshooting, MSDT prompts the user to download additional tools to diagnose problems on remote computers only.
+
+If you enable this policy setting for local and remote troubleshooting, MSDT always prompts for additional tool downloading.
+
+If you disable this policy setting, MSDT never downloads tools, and is unable to diagnose problems on remote computers.
+
+If you do not configure this policy setting, MSDT prompts the user before downloading any additional tools.  No reboots or service restarts are required for this policy setting to take effect. Changes take effect immediately.
+
+This policy setting will take effect only when MSDT is enabled.
+
+This policy setting will only take effect when the Diagnostic Policy Service (DPS) is in the running state.
+
+When the service is stopped or disabled, diagnostic scenarios are not executed.
+
+The DPS can be configured with the Services snap-in to the Microsoft Management Console.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Microsoft Support Diagnostic Tool: Restrict tool download*
+-   GP name: *MsdtToolDownloadPolicy*
+-   GP path: *System\Troubleshooting and Diagnostics\Microsoft Support Diagnostic Tool*
+-   GP ADMX file name: *MSDT.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msdt-wdiscenarioexecutionpolicy"></a>**ADMX_MSDT/WdiScenarioExecutionPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the execution level for Microsoft Support Diagnostic Tool.
+
+Microsoft Support Diagnostic Tool (MSDT) gathers diagnostic data for analysis by support professionals.  If you enable this policy setting, administrators can use MSDT to collect and send diagnostic data to a support professional to resolve a problem.
+
+If you disable this policy setting, MSDT cannot gather diagnostic data.  If you do not configure this policy setting, MSDT is turned on by default.
+
+This policy setting takes effect only if the diagnostics-wide scenario execution policy is not configured.
+
+No reboots or service restarts are required for this policy setting to take effect. Changes take effect immediately.
+
+This policy setting will only take effect when the Diagnostic Policy Service (DPS) is in the running state. When the service is stopped or disabled, diagnostic scenarios will not be executed. The DPS can be configured with the Services snap-in to the Microsoft Management Console.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Microsoft Support Diagnostic Tool: Configure execution level*
+-   GP name: *WdiScenarioExecutionPolicy*
+-   GP path: *System\Troubleshooting and Diagnostics\Microsoft Support Diagnostic Tool*
+-   GP ADMX file name: *MSDT.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From a25ade57d6338eada08b865841c9e7fac3928edb Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Thu, 10 Dec 2020 01:21:18 +0100
Subject: [PATCH 037/825] Update respond-file-alerts.md

Changes proposed:
- Whitespace standardization and normalization
- MarkDown table extended to simplify future editing
- Use MD H4 instead of **bold** style paragraph headings

Whitespace changes:
- remove redundant end-of-line whitespace
- whitespace indents: use 3 instead of 4 blank spaces
- add MD indent marker (`> `) compatibility spacing

Ref. my own comment in PR #8726
---
 .../respond-file-alerts.md                    | 92 +++++++++----------
 1 file changed, 46 insertions(+), 46 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index 354a099a61..bccc623abc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -13,7 +13,7 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
@@ -25,10 +25,10 @@ ms.topic: article
 **Applies to:**
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
- 
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
->Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-responddile-abovefoldlink)
+> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-responddile-abovefoldlink)
 
 Quickly respond to detected attacks by stopping and quarantining files or blocking a file. After taking action on files, you can check activity details in the Action center.
 
@@ -46,12 +46,12 @@ You can also submit files for deep analysis, to run the file in a secure cloud s
 
 Some actions require certain permissions. The following table describes what action certain permissions can take on portable executable (PE) and non-PE files:
 
-Permission | PE files | Non-PE files
-:---|:---|:---
-View data | X | X
-Alerts investigation | &#x2611; | X
-Live response basic | X | X
-Live response advanced | &#x2611; |&#x2611;
+| Permission             | PE files | Non-PE files |
+| :--------------------- | :------: | :----------: |
+| View data              |     X    |       X      |
+| Alerts investigation   | &#x2611; |       X      |
+| Live response basic    |     X    |       X      |
+| Live response advanced | &#x2611; |   &#x2611;   |
 
 For more information on roles, see [Create and manage roles for role-based access control](user-roles.md).
 
@@ -60,8 +60,8 @@ For more information on roles, see [Create and manage roles for role-based acces
 
 You can contain an attack in your organization by stopping the malicious process and quarantining the file where it was observed.
 
->[!IMPORTANT]
->You can only take this action if:
+> [!IMPORTANT]
+> You can only take this action if:
 >
 > - The device you're taking the action on is running Windows 10, version 1703 or later
 > - The file does not belong to trusted third-party publishers or not signed by Microsoft
@@ -71,35 +71,35 @@ The **Stop and Quarantine File** action includes stopping running processes, qua
 
 This action takes effect on devices with Windows 10, version 1703 or later, where the file was observed in the last 30 days.
 
->[!NOTE]
->You’ll be able to restore the file from quarantine at any time.
+> [!NOTE]
+> You’ll be able to restore the file from quarantine at any time.
 
 ### Stop and quarantine files
 
 1. Select the file you want to stop and quarantine. You can select a file from any of the following views or use the Search box:
 
-    - **Alerts** - click the corresponding links from the Description or Details in the Artifact timeline
-    - **Search box** - select **File** from the drop–down menu and enter the file name
+   - **Alerts** - click the corresponding links from the Description or Details in the Artifact timeline
+   - **Search box** - select **File** from the drop–down menu and enter the file name
 
 
-    >[!NOTE]
-    >The stop and quarantine file action is limited to a maximum of 1000 devices. To stop a file on a larger number of devices, see [Add indicator to block or allow file](#add-indicator-to-block-or-allow-a-file).
+   > [!NOTE]
+   > The stop and quarantine file action is limited to a maximum of 1000 devices. To stop a file on a larger number of devices, see [Add indicator to block or allow file](#add-indicator-to-block-or-allow-a-file).
 
 2. Go to the top bar and select **Stop and Quarantine File**.
 
-    ![Image of stop and quarantine file action](images/atp-stop-quarantine-file.png)
+   ![Image of stop and quarantine file action](images/atp-stop-quarantine-file.png)
 
 3. Specify a reason, then click **Confirm**.
 
-    ![Image of stop and quarantine file modal window](images/atp-stop-quarantine.png)
+   ![Image of stop and quarantine file modal window](images/atp-stop-quarantine.png)
 
-    The Action center shows the submission information:
-    ![Image of stop and quarantine file action center](images/atp-stopnquarantine-file.png)
+   The Action center shows the submission information:
+   ![Image of stop and quarantine file action center](images/atp-stopnquarantine-file.png)
 
-    - **Submission time** - Shows when the action was submitted.
-    - **Success** - Shows the number of devices where the file has been stopped and quarantined.
-    - **Failed** - Shows the number of devices where the action failed and details about the failure.
-    - **Pending** - Shows the number of devices where the file is yet to be stopped and quarantined from. This can take time for cases when the device is offline or not connected to the network.
+   - **Submission time** - Shows when the action was submitted.
+   - **Success** - Shows the number of devices where the file has been stopped and quarantined.
+   - **Failed** - Shows the number of devices where the action failed and details about the failure.
+   - **Pending** - Shows the number of devices where the file is yet to be stopped and quarantined from. This can take time for cases when the device is offline or not connected to the network.
 
 4. Select any of the status indicators to view more information about the action. For example, select **Failed** to see where the action failed.
 
@@ -118,9 +118,9 @@ You can roll back and remove a file from quarantine if you’ve determined that
 
 1. Open an elevated command–line prompt on the device:
 
-    a. Go to **Start** and type _cmd_.
+   a. Go to **Start** and type _cmd_.
 
-    b. Right–click **Command prompt** and select **Run as administrator**.
+   b. Right–click **Command prompt** and select **Run as administrator**.
 
 2. Enter the following command, and press **Enter**:
 
@@ -130,26 +130,26 @@ You can roll back and remove a file from quarantine if you’ve determined that
 
 > [!NOTE]
 > In some scenarios, the **ThreatName** may appear as: EUS:Win32/CustomEnterpriseBlock!cl.
-> 
+>
 > Defender for Endpoint will restore all custom blocked files that were quarantined on this device in the last 30 days.
 
 > [!Important]
-> A file that was quarantined as a potential network threat might not be recoverable. If a user attempts to restore the file after quarantine, that file might not be accessible. This can be due to the system no longer having network credentials to access the file. Typically, this is a result of a temporary log on to a system or shared folder and the access tokens expired. 
+> A file that was quarantined as a potential network threat might not be recoverable. If a user attempts to restore the file after quarantine, that file might not be accessible. This can be due to the system no longer having network credentials to access the file. Typically, this is a result of a temporary log on to a system or shared folder and the access tokens expired.
 
 ## Add indicator to block or allow a file
 
 You can prevent further propagation of an attack in your organization by banning potentially malicious files or suspected malware. If you know a potentially malicious portable executable (PE) file, you can block it. This operation will prevent it from being read, written, or executed on devices in your organization.
 
->[!IMPORTANT]
+> [!IMPORTANT]
 >
->- This feature is available if your organization uses Microsoft Defender Antivirus and Cloud–delivered protection is enabled. For more information, see [Manage cloud–delivered protection](../microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md).
+> - This feature is available if your organization uses Microsoft Defender Antivirus and Cloud–delivered protection is enabled. For more information, see [Manage cloud–delivered protection](../microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md).
 >
->- The Antimalware client version must be 4.18.1901.x or later.
->- This feature is designed to prevent suspected malware (or potentially malicious files) from being downloaded from the web. It currently supports portable executable (PE) files, including _.exe_ and _.dll_ files. The coverage will be extended over time.
->- This response action is available for devices on Windows 10, version 1703 or later.
->- The allow or block function cannot be done on files if the file's classification exists on the device's cache prior to the allow or block action.
+> - The Antimalware client version must be 4.18.1901.x or later.
+> - This feature is designed to prevent suspected malware (or potentially malicious files) from being downloaded from the web. It currently supports portable executable (PE) files, including _.exe_ and _.dll_ files. The coverage will be extended over time.
+> - This response action is available for devices on Windows 10, version 1703 or later.
+> - The allow or block function cannot be done on files if the file's classification exists on the device's cache prior to the allow or block action.
 
->[!NOTE]
+> [!NOTE]
 > The PE file needs to be in the device timeline for you to be able to take this action.
 >
 > There may be a couple of minutes of latency between the time the action is taken and the actual file being blocked.
@@ -157,14 +157,14 @@ You can prevent further propagation of an attack in your organization by banning
 ### Enable the block file feature
 
 To start blocking files, you first need to [turn the **Block or allow** feature on](advanced-features.md) in Settings.
-  
+
 ### Allow or block file
 
 When you add an indicator hash for a file, you can choose to raise an alert and block the file whenever a device in your organization attempts to run it.
 
 Files automatically blocked by an indicator won't show up in the files's Action center, but the alerts will still be visible in the Alerts queue.
 
- See [manage indicators](manage-indicators.md) for more details on blocking and raising alerts on files.
+See [manage indicators](manage-indicators.md) for more details on blocking and raising alerts on files.
 
 To stop blocking a file, remove the indicator. You can do so via the **Edit Indicator** action on the file's profile page. This action will be visible in the same position that the **Add Indicator** action was, before you added the indicator.
 
@@ -215,10 +215,10 @@ The Deep analysis summary includes a list of observed *behaviors*, some of which
 
 Results of deep analysis are matched against threat intelligence and any matches will generate appropriate alerts.
 
-Use the deep analysis feature to investigate the details of any file, usually during an investigation of an alert or for any other reason where you suspect malicious behavior. This feature is available within the **Deep analysis** tab, on the file's profile page.
+Use the deep analysis feature to investigate the details of any file, usually during an investigation of an alert or for any other reason where you suspect malicious behavior. This feature is available within the **Deep analysis** tab, on the file's profile page.<br/>
 <br/>
 
->[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4aAYy?rel=0] 
+> [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4aAYy?rel=0]
 
 **Submit for deep analysis** is enabled when the file is available in the Defender for Endpoint backend sample collection, or if it was observed on a Windows 10 device that supports submitting to deep analysis.
 
@@ -232,7 +232,7 @@ You can also manually submit a sample through the [Microsoft Security Center Por
 
 When the sample is collected, Defender for Endpoint runs the file in is a secure environment and creates a detailed report of observed behaviors and associated artifacts, such as files dropped on devices, communication to IPs, and registry modifications.
 
-**Submit files for deep analysis:**
+#### Submit files for deep analysis:
 
 1. Select the file that you want to submit for deep analysis. You can select or search a file from any of the following views:
 
@@ -242,17 +242,17 @@ When the sample is collected, Defender for Endpoint runs the file in is a secure
 
 2. In the **Deep analysis** tab of the file view, click **Submit**.
 
-    ![You can only submit PE files in the file details section](images/submit-file.png)
+   ![You can only submit PE files in the file details section](images/submit-file.png)
 
-    > [!NOTE]
-    > Only PE files are supported, including _.exe_ and _.dll_ files.
+   > [!NOTE]
+   > Only PE files are supported, including _.exe_ and _.dll_ files.
 
 A progress bar is displayed and provides information on the different stages of the analysis. You can then view the report when the analysis is done.
 
 > [!NOTE]
 > Depending on device availability, sample collection time can vary. There is a 3–hour timeout for sample collection. The collection will fail and the operation will abort if there is no online Windows 10 device reporting at that time. You can re–submit files for deep analysis to get fresh data on the file.
 
-**View deep analysis reports**
+#### View deep analysis reports
 
 View the deep analysis report that Defender for Endpoint provides to see the details of the deep analysis that was conducted on the file you submitted. This feature is available in the file view context.
 
@@ -268,7 +268,7 @@ The details provided can help you investigate if there are indications of a pote
 
     ![The deep analysis report shows detailed information across a number of categories](images/analysis-results-nothing.png)
 
-**Troubleshoot deep analysis**
+#### Troubleshoot deep analysis
 
 If you encounter a problem when trying to submit a file, try each of the following troubleshooting steps.
 

From 09d352cf07be43b378d26bba38139a0c84c40d12 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 9 Dec 2020 16:36:13 -0800
Subject: [PATCH 038/825] Removed extra <hr> tags

---
 windows/client-management/mdm/policy-csp-admx-rpc.md | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-rpc.md b/windows/client-management/mdm/policy-csp-admx-rpc.md
index 2845ab5077..2421a28191 100644
--- a/windows/client-management/mdm/policy-csp-admx-rpc.md
+++ b/windows/client-management/mdm/policy-csp-admx-rpc.md
@@ -128,8 +128,6 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 
-<hr/>
-
 <!--Policy-->
 <a href="" id="admx-rpc-rpcignoredelegationfailure"></a>**ADMX_RPC/RpcIgnoreDelegationFailure**  
 
@@ -291,8 +289,6 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 
-<hr/>
-
 <!--Policy-->
 <a href="" id="admx-rpc-rpcstateinformation"></a>**ADMX_RPC/RpcStateInformation**  
 

From 429f29a6d0e7fbff0c19d41c046781583c39ca92 Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Wed, 9 Dec 2020 18:36:42 -0800
Subject: [PATCH 039/825] Update windowsdefenderapplicationguard-csp.md

---
 .../mdm/windowsdefenderapplicationguard-csp.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
index 377215d1a7..6699a32617 100644
--- a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
+++ b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
@@ -125,7 +125,7 @@ The following list shows the supported values:
 - 1 - Non-enterprise content embedded on enterprise sites are stopped from opening in Internet Explorer or Microsoft Edge outside of Microsoft Defender Application Guard.
 
 > [!NOTE]
-> This policy setting is no longer supported in the new Microsoft Edge browser. The policy will be deprecated and removed in a future release. 
+> This policy setting is no longer supported in the new Microsoft Edge browser. The policy will be deprecated and removed in a future release. Webpages that contain mixed content, both enterprise and non-enterprise, may load incorrectly or fail completely if this feature is enabled.
 
 <!--ADMXMapped-->
 ADMX Info:  

From 80871aac40a1f430974a6c33eae3ed5a8b310281 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 10 Dec 2020 09:58:06 -0800
Subject: [PATCH 040/825] Update respond-file-alerts.md

---
 .../microsoft-defender-atp/respond-file-alerts.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index bccc623abc..766691ac1e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -232,7 +232,7 @@ You can also manually submit a sample through the [Microsoft Security Center Por
 
 When the sample is collected, Defender for Endpoint runs the file in is a secure environment and creates a detailed report of observed behaviors and associated artifacts, such as files dropped on devices, communication to IPs, and registry modifications.
 
-#### Submit files for deep analysis:
+#### Submit files for deep analysis
 
 1. Select the file that you want to submit for deep analysis. You can select or search a file from any of the following views:
 

From 1ddf6337cb3bb2cc5385ecbd625d35c72b02229d Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 10 Dec 2020 16:40:03 -0800
Subject: [PATCH 041/825] Added RemovableStrorage policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   32 +
 .../policy-configuration-service-provider.md  |  101 +
 .../mdm/policy-csp-admx-removablestorage.md   | 2328 +++++++++++++++++
 4 files changed, 2462 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-removablestorage.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 2a7a434c65..22dc4936a7 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -217,6 +217,7 @@
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
 #### [ADMX_Reliability](policy-csp-admx-reliability.md)
+#### [ADMX_RemovableStorage](policy-csp-admx-removablestorage.md)
 #### [ADMX_RPC](policy-csp-admx-rpc.md)
 #### [ADMX_Scripts](policy-csp-admx-scripts.md)
 #### [ADMX_sdiageng](policy-csp-admx-sdiageng.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 40e0c3cfd3..850cba7f7b 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -445,6 +445,38 @@ ms.date: 10/08/2020
 - [ADMX_Reliability/PCH_ReportShutdownEvents](./policy-csp-admx-reliability.md#admx-reliability-pch-reportshutdownevents)
 - [ADMX_Reliability/ShutdownEventTrackerStateFile](./policy-csp-admx-reliability.md#admx-reliability-shutdowneventtrackerstatefile)
 - [ADMX_Reliability/ShutdownReason](./policy-csp-admx-reliability.md#admx-reliability-shutdownreason)
+- [ADMX_RemovableStorage/AccessRights_RebootTime_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-1)
+- [ADMX_RemovableStorage/AccessRights_RebootTime_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-2)
+- [ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyexecute-access-2)
+- [ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-1)
+- [ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-2)
+- [ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-1)
+- [ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-2)
+- [ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-1)
+- [ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-2)
+- [ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-1)
+- [ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-2)
+- [ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyexecute-access-2)
+- [ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-1)
+- [ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-2)
+- [ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-1)
+- [ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-2)
+- [ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyexecute-access-2)
+- [ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-1)
+- [ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-2)
+- [ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denywrite-access-1)
+- [ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-1)
+- [ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-2)
+- [ADMX_RemovableStorage/Removable_Remote_Allow_Access](./policy-csp-admx-removablestorage.md#admx-removablestorage-removable-remote-allow-access)
+- [ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyexecute-access-2)
+- [ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-1)
+- [ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-2)
+- [ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-1)
+- [ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-2)
+- [ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-1)
+- [ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-2)
+- [ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-1)
+- [ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-2)
 - [ADMX_RPC/RpcExtendedErrorInformation](./policy-csp-admx-rpc.md#admx-rpc-rpcextendederrorinformation)
 - [ADMX_RPC/RpcIgnoreDelegationFailure](./policy-csp-admx-rpc.md#admx-rpc-rpcignoredelegationfailure)
 - [ADMX_RPC/RpcMinimumHttpConnectionTimeout](./policy-csp-admx-rpc.md#admx-rpc-rpcminimumhttpconnectiontimeout)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 5ea40c5c67..e446aa1591 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1649,6 +1649,107 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>  
 
+### ADMX_RemovableStorage policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-1" id="admx-removablestorage-accessrights-reboottime-1">ADMX_RemovableStorage/AccessRights_RebootTime_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-2" id="admx-removablestorage-accessrights-reboottime-2">ADMX_RemovableStorage/AccessRights_RebootTime_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyexecute-access-2" id="admx-removablestorage-cdanddvd-denyexecute-access-2">ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-1" id="admx-removablestorage-cdanddvd-denyread-access-1">ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-2" id="admx-removablestorage-cdanddvd-denyread-access-2">ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-1" id="admx-removablestorage-cdanddvd-denywrite-access-1">ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-2" id="admx-removablestorage-cdanddvd-denywrite-access-2">ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-1" id="admx-removablestorage-customclasses-denyread-access-1">ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-2" id="admx-removablestorage-customclasses-denyread-access-2">ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-1" id="admx-removablestorage-customclasses-denywrite-access-1">ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-2" id="admx-removablestorage-customclasses-denywrite-access-2">ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyexecute-access-2" id="admx-removablestorage-floppydrives-denyexecute-access-2">ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-1" id="admx-removablestorage-floppydrives-denyread-access-1">ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-2" id="admx-removablestorage-floppydrives-denyread-access-2">ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-1" id="admx-removablestorage-floppydrives-denywrite-access-1">ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-2" id="admx-removablestorage-floppydrives-denywrite-access-2">ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyexecute-access-2" id="admx-removablestorage-removabledisks-denyexecute-access-2">ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-1" id="admx-removablestorage-removabledisks-denyread-access-1">ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-2" id="admx-removablestorage-removabledisks-denyread-access-2">ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denywrite-access-1" id="admx-removablestorage-removabledisks-denywrite-access-1">ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-1" id="admx-removablestorage-removablestorageclasses-denyall-access-1">ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-2" id="admx-removablestorage-removablestorageclasses-denyall-access-2">ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-removable-remote-allow-access" id="admx-removablestorage-removable-remote-allow-access">ADMX_RemovableStorage/Removable_Remote_Allow_Access</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyexecute-access-2" id="admx-removablestorage-tapedrives-denyexecute-access-2">ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-1" id="admx-removablestorage-tapedrives-denyread-access-1">ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-2" id="admx-removablestorage-tapedrives-denyread-access-2">ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-1" id="admx-removablestorage-tapedrives-denywrite-access-1">ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-2" id="admx-removablestorage-tapedrives-denywrite-access-2">ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-1" id="admx-removablestorage-wpddevices-denyread-access-1">ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-2" id="admx-removablestorage-wpddevices-denyread-access-2">ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-1" id="admx-removablestorage-wpddevices-denywrite-access-1">ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-2" id="admx-removablestorage-wpddevices-denywrite-access-2">ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2</a>
+  </dd>
+</dl>
+
 ### ADMX_RPC policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-removablestorage.md b/windows/client-management/mdm/policy-csp-admx-removablestorage.md
new file mode 100644
index 0000000000..eaa2b417ff
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-removablestorage.md
@@ -0,0 +1,2328 @@
+---
+title: Policy CSP - ADMX_RemovableStorage
+description: Policy CSP - ADMX_RemovableStorage
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/10/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_RemovableStorage
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_RemovableStorage policies  
+
+<dl>
+  <dd>
+    <a href="#admx-removablestorage-accessrights-reboottime-1">ADMX_RemovableStorage/AccessRights_RebootTime_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-accessrights-reboottime-2">ADMX_RemovableStorage/AccessRights_RebootTime_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-cdanddvd-denyexecute-access-2">ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-cdanddvd-denyread-access-1">ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-cdanddvd-denyread-access-2">ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-cdanddvd-denywrite-access-1">ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-cdanddvd-denywrite-access-2">ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-customclasses-denyread-access-1">ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-customclasses-denyread-access-2">ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-customclasses-denywrite-access-1">ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-customclasses-denywrite-access-2">ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-floppydrives-denyexecute-access-2">ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-floppydrives-denyread-access-1">ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-floppydrives-denyread-access-2">ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-floppydrives-denywrite-access-1">ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-floppydrives-denywrite-access-2">ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removabledisks-denyexecute-access-2">ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removabledisks-denyread-access-1">ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removabledisks-denyread-access-2">ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removabledisks-denywrite-access-1">ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removablestorageclasses-denyall-access-1">ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removablestorageclasses-denyall-access-2">ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-removable-remote-allow-access">ADMX_RemovableStorage/Removable_Remote_Allow_Access</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-tapedrives-denyexecute-access-2">ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-tapedrives-denyread-access-1">ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-tapedrives-denyread-access-2">ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-tapedrives-denywrite-access-1">ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-tapedrives-denywrite-access-2">ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-wpddevices-denyread-access-1">ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-wpddevices-denyread-access-2">ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-wpddevices-denywrite-access-1">ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-removablestorage-wpddevices-denywrite-access-2">ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-accessrights-reboottime-1"></a>**ADMX_RemovableStorage/AccessRights_RebootTime_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the amount of time (in seconds) that the operating system waits to reboot in order to enforce a change in access rights to removable storage devices.
+
+If you enable this policy setting, you can set the number of seconds you want the system to wait until a reboot.
+
+If you disable or do not configure this setting, the operating system does not force a reboot.
+
+> [!NOTE]
+> If no reboot is forced, the access right does not take effect until the operating system is restarted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set time (in seconds) to force reboot*
+-   GP name: *AccessRights_RebootTime_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-accessrights-reboottime-2"></a>**ADMX_RemovableStorage/AccessRights_RebootTime_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the amount of time (in seconds) that the operating system waits to reboot in order to enforce a change in access rights to removable storage devices.
+
+If you enable this policy setting, you can set the number of seconds you want the system to wait until a reboot.
+
+If you disable or do not configure this setting, the operating system does not force a reboot
+
+> [!NOTE]
+> If no reboot is forced, the access right does not take effect until the operating system is restarted.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set time (in seconds) to force reboot*
+-   GP name: *AccessRights_RebootTime_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-cdanddvd-denyexecute-access-2"></a>**ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies execute access to the CD and DVD removable storage class.
+
+If you enable this policy setting, execute access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, execute access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *CD and DVD: Deny execute access*
+-   GP name: *CDandDVD_DenyExecute_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-cdanddvd-denyread-access-1"></a>**ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the CD and DVD removable storage class.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *CD and DVD: Deny read access*
+-   GP name: *CDandDVD_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-cdanddvd-denyread-access-2"></a>**ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the CD and DVD removable storage class.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *CD and DVD: Deny read access*
+-   GP name: *CDandDVD_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-cdanddvd-denywrite-access-1"></a>**ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the CD and DVD removable storage class.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *CD and DVD: Deny write access*
+-   GP name: *CDandDVD_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-cdanddvd-denywrite-access-2"></a>**ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the CD and DVD removable storage class.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *CD and DVD: Deny write access*
+-   GP name: *CDandDVD_DenyWrite_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-customclasses-denyread-access-1"></a>**ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to custom removable storage classes.
+
+If you enable this policy setting, read access is denied to these removable storage classes.
+
+If you disable or do not configure this policy setting, read access is allowed to these removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Custom Classes: Deny read access*
+-   GP name: *CustomClasses_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-customclasses-denyread-access-2"></a>**ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to custom removable storage classes.
+
+If you enable this policy setting, read access is denied to these removable storage classes.
+
+If you disable or do not configure this policy setting, read access is allowed to these removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Custom Classes: Deny read access*
+-   GP name: *CustomClasses_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-customclasses-denywrite-access-1"></a>**ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to custom removable storage classes.
+
+If you enable this policy setting, write access is denied to these removable storage classes.
+
+If you disable or do not configure this policy setting, write access is allowed to these removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Custom Classes: Deny write access*
+-   GP name: *CustomClasses_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-customclasses-denywrite-access-2"></a>**ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to custom removable storage classes.
+
+If you enable this policy setting, write access is denied to these removable storage classes.
+
+If you disable or do not configure this policy setting, write access is allowed to these removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Custom Classes: Deny write access*
+-   GP name: *CustomClasses_DenyWrite_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-floppydrives-denyexecute-access-2"></a>**ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies execute access to the Floppy Drives removable storage class, including USB Floppy Drives.
+
+If you enable this policy setting, execute access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, execute access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Floppy Drives: Deny execute access*
+-   GP name: *FloppyDrives_DenyExecute_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-floppydrives-denyread-access-1"></a>**ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the Floppy Drives removable storage class, including USB Floppy Drives.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Floppy Drives: Deny read access*
+-   GP name: *FloppyDrives_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-floppydrives-denyread-access-2"></a>**ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the Floppy Drives removable storage class, including USB Floppy Drives.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Floppy Drives: Deny read access*
+-   GP name: *FloppyDrives_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-floppydrives-denywrite-access-1"></a>**ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the Floppy Drives removable storage class, including USB Floppy Drives.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Floppy Drives: Deny write access*
+-   GP name: *FloppyDrives_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-floppydrives-denywrite-access-2"></a>**ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the Floppy Drives removable storage class, including USB Floppy Drives.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Floppy Drives: Deny write access*
+-   GP name: *FloppyDrives_DenyWrite_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removabledisks-denyexecute-access-2"></a>**ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies execute access to removable disks.
+
+If you enable this policy setting, execute access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, execute access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Removable Disks: Deny execute access*
+-   GP name: *RemovableDisks_DenyExecute_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removabledisks-denyread-access-1"></a>**ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to removable disks.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Removable Disks: Deny read access*
+-   GP name: *RemovableDisks_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removabledisks-denyread-access-2"></a>**ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to removable disks.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Removable Disks: Deny read access*
+-   GP name: *RemovableDisks_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removabledisks-denywrite-access-1"></a>**ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to removable disks.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+> [!NOTE]
+> To require that users write data to BitLocker-protected storage, enable the policy setting "Deny write access to drives not protected by BitLocker," which is located in "Computer Configuration\Administrative Templates\Windows Components\BitLocker Drive Encryption\Removable Data Drives."
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Removable Disks: Deny write access*
+-   GP name: *RemovableDisks_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removablestorageclasses-denyall-access-1"></a>**ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Configure access to all removable storage classes.
+
+This policy setting takes precedence over any individual removable storage policy settings. To manage individual classes, use the policy settings available for each class.
+
+If you enable this policy setting, no access is allowed to any removable storage class.
+
+If you disable or do not configure this policy setting, write and read accesses are allowed to all removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *All Removable Storage classes: Deny all access*
+-   GP name: *RemovableStorageClasses_DenyAll_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removablestorageclasses-denyall-access-2"></a>**ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Configure access to all removable storage classes. 
+
+This policy setting takes precedence over any individual removable storage policy settings. To manage individual classes, use the policy settings available for each class.
+
+If you enable this policy setting, no access is allowed to any removable storage class.
+
+If you disable or do not configure this policy setting, write and read accesses are allowed to all removable storage classes.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *All Removable Storage classes: Deny all access*
+-   GP name: *RemovableStorageClasses_DenyAll_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-removable-remote-allow-access"></a>**ADMX_RemovableStorage/Removable_Remote_Allow_Access**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting grants normal users direct access to removable storage devices in remote sessions.
+
+If you enable this policy setting, remote users can open direct handles to removable storage devices in remote sessions.
+
+If you disable or do not configure this policy setting, remote users cannot open direct handles to removable storage devices in remote sessions.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *All Removable Storage: Allow direct access in remote sessions*
+-   GP name: *Removable_Remote_Allow_Access*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-tapedrives-denyexecute-access-2"></a>**ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies execute access to the Tape Drive removable storage class.
+
+If you enable this policy setting, execute access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, execute access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Tape Drives: Deny execute access*
+-   GP name: *TapeDrives_DenyExecute_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-tapedrives-denyread-access-1"></a>**ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the Tape Drive removable storage class.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Tape Drives: Deny read access*
+-   GP name: *TapeDrives_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-tapedrives-denyread-access-2"></a>**ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to the Tape Drive removable storage class.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Tape Drives: Deny read access*
+-   GP name: *TapeDrives_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-tapedrives-denywrite-access-1"></a>**ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the Tape Drive removable storage class.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Tape Drives: Deny write access*
+-   GP name: *TapeDrives_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-tapedrives-denywrite-access-2"></a>**ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to the Tape Drive removable storage class.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Tape Drives: Deny write access*
+-   GP name: *TapeDrives_DenyWrite_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-wpddevices-denyread-access-1"></a>**ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *WPD Devices: Deny read access*
+-   GP name: *WPDDevices_DenyRead_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-wpddevices-denyread-access-2"></a>**ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies read access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
+
+If you enable this policy setting, read access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, read access is allowed to this removable storage class.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *WPD Devices: Deny read access*
+-   GP name: *WPDDevices_DenyRead_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-wpddevices-denywrite-access-1"></a>**ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *WPD Devices: Deny write access*
+-   GP name: *WPDDevices_DenyWrite_Access_1*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-removablestorage-wpddevices-denywrite-access-2"></a>**ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting denies write access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
+
+If you enable this policy setting, write access is denied to this removable storage class.
+
+If you disable or do not configure this policy setting, write access is allowed to this removable storage class.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *WPD Devices: Deny write access*
+-   GP name: *WPDDevices_DenyWrite_Access_2*
+-   GP path: *System\Removable Storage Access*
+-   GP ADMX file name: *RemovableStorage.admx*
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 7b738c749ef6904d5120a5e674826fbb1a7a3dd2 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 11 Dec 2020 17:44:34 +0500
Subject: [PATCH 042/825] Command Update

There was an issue with the command arguments. Made adjustments in the command.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8721
---
 .../threat-protection/microsoft-defender-atp/linux-resources.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index 3b12f36855..7a265a8e8c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -97,7 +97,7 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Configuration         |Turn on/off cloud protection                            |`mdatp config cloud --value [enabled|disabled]`                        |
 |Configuration         |Turn on/off product diagnostics                         |`mdatp config cloud-diagnostic --value [enabled|disabled]`             |
 |Configuration         |Turn on/off automatic sample submission                 |`mdatp config cloud-automatic-sample-submission [enabled|disabled]`    |
-|Configuration         |Turn on/off AV passive mode                             |`mdatp config passive-mode [enabled|disabled]`                         |
+|Configuration         |Turn on/off AV passive mode                             |`mdatp config passive-mode --value [enabled|disabled]`                 |
 |Configuration         |Add/remove an antivirus exclusion for a file extension  |`mdatp exclusion extension [add|remove] --name [extension]`            |
 |Configuration         |Add/remove an antivirus exclusion for a file            |`mdatp exclusion file [add|remove] --path [path-to-file]`              |
 |Configuration         |Add/remove an antivirus exclusion for a directory       |`mdatp exclusion folder [add|remove] --path [path-to-directory]`       |

From 0afc459ed3c77cf47406db586ee904dd5746d1eb Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Fri, 11 Dec 2020 16:08:04 +0100
Subject: [PATCH 043/825] Use escape character before meta characters (pipe)

Had to suggest this additional change, seeing that the vertical pipe divider characters (logic 'or' in parameter examples) becomes interpreted as cell dividers by GitHub Flavored MarkDown.

- Add the backslash escape character in front of all pipe characters used as logic 'or' between parameter choices.
- Remove redundant (and unneeded) excessive backtick characters from inline encapsulations, only 1 (not 3) is needed.
---
 .../microsoft-defender-atp/linux-resources.md | 30 +++++++++----------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index 7a265a8e8c..969ca9675a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -75,9 +75,9 @@ There are several ways to uninstall Defender for Endpoint for Linux. If you are
 
 ### Manual uninstallation
 
-- ```sudo yum remove mdatp``` for RHEL and variants(CentOS and Oracle Linux).
-- ```sudo zypper remove mdatp``` for SLES and variants.
-- ```sudo apt-get purge mdatp``` for Ubuntu and Debian systems.
+- `sudo yum remove mdatp` for RHEL and variants(CentOS and Oracle Linux).
+- `sudo zypper remove mdatp` for SLES and variants.
+- `sudo apt-get purge mdatp` for Ubuntu and Debian systems.
 
 ## Configure from the command line
 
@@ -93,15 +93,15 @@ The following table lists commands for some of the most common scenarios. Run `m
 
 |Group                 |Scenario                                                |Command                                                                |
 |----------------------|--------------------------------------------------------|-----------------------------------------------------------------------|
-|Configuration         |Turn on/off real-time protection                        |`mdatp config real-time-protection --value [enabled|disabled]`         |
-|Configuration         |Turn on/off cloud protection                            |`mdatp config cloud --value [enabled|disabled]`                        |
-|Configuration         |Turn on/off product diagnostics                         |`mdatp config cloud-diagnostic --value [enabled|disabled]`             |
-|Configuration         |Turn on/off automatic sample submission                 |`mdatp config cloud-automatic-sample-submission [enabled|disabled]`    |
-|Configuration         |Turn on/off AV passive mode                             |`mdatp config passive-mode --value [enabled|disabled]`                 |
-|Configuration         |Add/remove an antivirus exclusion for a file extension  |`mdatp exclusion extension [add|remove] --name [extension]`            |
-|Configuration         |Add/remove an antivirus exclusion for a file            |`mdatp exclusion file [add|remove] --path [path-to-file]`              |
-|Configuration         |Add/remove an antivirus exclusion for a directory       |`mdatp exclusion folder [add|remove] --path [path-to-directory]`       |
-|Configuration         |Add/remove an antivirus exclusion for a process         |`mdatp exclusion process [add|remove] --path [path-to-process]`<br/>`mdatp exclusion process [add|remove] --name [process-name]`   |
+|Configuration         |Turn on/off real-time protection                        |`mdatp config real-time-protection --value [enabled\|disabled]`        |
+|Configuration         |Turn on/off cloud protection                            |`mdatp config cloud --value [enabled\|disabled]`                       |
+|Configuration         |Turn on/off product diagnostics                         |`mdatp config cloud-diagnostic --value [enabled\|disabled]`            |
+|Configuration         |Turn on/off automatic sample submission                 |`mdatp config cloud-automatic-sample-submission [enabled\|disabled]`   |
+|Configuration         |Turn on/off AV passive mode                             |`mdatp config passive-mode --value [enabled\|disabled]`                |
+|Configuration         |Add/remove an antivirus exclusion for a file extension  |`mdatp exclusion extension [add\|remove] --name [extension]`           |
+|Configuration         |Add/remove an antivirus exclusion for a file            |`mdatp exclusion file [add\|remove] --path [path-to-file]`             |
+|Configuration         |Add/remove an antivirus exclusion for a directory       |`mdatp exclusion folder [add\|remove] --path [path-to-directory]`      |
+|Configuration         |Add/remove an antivirus exclusion for a process         |`mdatp exclusion process [add\|remove] --path [path-to-process]`<br/>`mdatp exclusion process [add\|remove] --name [process-name]` |
 |Configuration         |List all antivirus exclusions                           |`mdatp exclusion list`                                                 |
 |Configuration         |Add a threat name to the allowed list                   |`mdatp threat allowed add --name [threat-name]`                        |
 |Configuration         |Remove a threat name from the allowed list              |`mdatp threat allowed remove --name [threat-name]`                     |
@@ -109,7 +109,7 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Configuration         |Turn on PUA protection                                  |`mdatp threat policy set --type potentially_unwanted_application --action block` |
 |Configuration         |Turn off PUA protection                                 |`mdatp threat policy set --type potentially_unwanted_application --action off` |
 |Configuration         |Turn on audit mode for PUA protection                   |`mdatp threat policy set --type potentially_unwanted_application --action audit` |
-|Diagnostics           |Change the log level                                    |`mdatp log level set --level verbose [error|warning|info|verbose]`     |
+|Diagnostics           |Change the log level                                    |`mdatp log level set --level verbose [error\|warning\|info\|verbose]`  |
 |Diagnostics           |Generate diagnostic logs                                |`mdatp diagnostic create`                                              |
 |Health                |Check the product's health                              |`mdatp health`                                                         |
 |Protection            |Scan a path                                             |`mdatp scan custom --path [path]`                                      |
@@ -152,6 +152,6 @@ In the Defender for Endpoint portal, you'll see two categories of information:
 - Logged on users do not appear in the Microsoft Defender Security Center portal.
 - In SUSE distributions, if the installation of *libatomic1* fails, you should validate that your OS is registered:
 
-    ```bash
+   ```bash
    sudo SUSEConnect --status-text
-    ```
+   ```

From 95f1084e6f521b245cb378ed09cadfbc05aadc24 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 14 Dec 2020 18:20:45 +0500
Subject: [PATCH 044/825] Link update

As suggested I have updated the correct link.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/7896
---
 .../microsoft-defender-atp/basic-permissions.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index fed2ad3911..af97cb1355 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -47,7 +47,7 @@ You can assign users with one of the following levels of permissions:
     > [!NOTE]
     > You need to run the PowerShell cmdlets in an elevated command-line.
 
-- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://msdn.microsoft.com/library/dn194123.aspx).
+- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://docs.microsoft.com/powershell/module/msonline/connect-msolservice?view=azureadps-1.0).
 
 **Full access** <br>
 Users with full access can log in, view all system information and resolve alerts, submit files for deep analysis, and download the onboarding package.

From d8ee7f5e43c8023078e163c1a0df8b4fd7444973 Mon Sep 17 00:00:00 2001
From: Crimsonfox89 <40465227+Crimsonfox89@users.noreply.github.com>
Date: Mon, 14 Dec 2020 14:36:40 +0000
Subject: [PATCH 045/825] Update related topic links to docs.microsoft.com
 links

Updated related topic "TPM WMI providers" and "Prepare your organization for BitLocker: Planning and Policies - TPM configurations" links from MSDN/Technet links to Microsoft Docs.
---
 .../security/information-protection/tpm/tpm-fundamentals.md   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/information-protection/tpm/tpm-fundamentals.md b/windows/security/information-protection/tpm/tpm-fundamentals.md
index e2ae8c85e5..93210372ea 100644
--- a/windows/security/information-protection/tpm/tpm-fundamentals.md
+++ b/windows/security/information-protection/tpm/tpm-fundamentals.md
@@ -151,5 +151,5 @@ The Windows TPM-based smart card, which is a virtual smart card, can be configur
 
 - [Trusted Platform Module](trusted-platform-module-top-node.md) (list of topics)
 - [TPM Cmdlets in Windows PowerShell](https://docs.microsoft.com/powershell/module/trustedplatformmodule/)
-- [TPM WMI providers](https://msdn.microsoft.com/library/aa376476.aspx)
-- [Prepare your organization for BitLocker: Planning and Policies - TPM configurations](https://technet.microsoft.com/itpro/windows/keep-secure/prepare-your-organization-for-bitlocker-planning-and-policies#bkmk-tpmconfigurations)
+- [TPM WMI providers](https://docs.microsoft.com/en-gb/windows/win32/secprov/security-wmi-providers-reference)
+- [Prepare your organization for BitLocker: Planning and Policies - TPM configurations](https://docs.microsoft.com/en-gb/windows/security/information-protection/bitlocker/prepare-your-organization-for-bitlocker-planning-and-policies#tpm-hardware-configurations)

From bb7869b07535f9201647ead2e0c07eccfefb26c9 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 15:04:37 -0500
Subject: [PATCH 046/825] Updated create-base-policy sub-topic with
 spelling/grammar suggestions from acrolinx

---
 .../wdac-wizard-create-base-policy.md         | 40 +++++++++----------
 1 file changed, 20 insertions(+), 20 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index 0d1d32ff12..f532ee4e59 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -1,7 +1,7 @@
 ---
 title: Windows Defender Application Control Wizard Base Policy Creation
-description: Creating new base appliation control policies with the Microsoft WDAC Wizard.
-keywords: allowlisting, blocklisting, security, malware
+description: Creating new base application control policies with the Microsoft Windows Defender Application (WDAC) Wizard.
+keywords: allow listing, block listing, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 ms.prod: w10
 ms.mktglfcycl: deploy
@@ -24,19 +24,19 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-When creating policies for use with Windows Defender Application Control (WDAC), it is recommended to start from an existing base policy and then add or remove rules to build your own custom policy XML files. For this reason, the WDAC Wizard offers three template policies to start from and customize during the base policy creation workflow. Prerequisite information about application control can be accessed through the [WDAC design guide](windows-defender-application-control-design-guide.md). This page outlines the steps to create a new application control policy from a template, configure the policy options, and the signer and file rules. 
+When creating policies for use with Windows Defender Application Control (WDAC), it is recommended to start with a template policy and then add or remove rules to suit your application control scenario. For this reason, the WDAC Wizard offers three template policies to start from and customize during the base policy creation workflow. Prerequisite information about application control can be accessed through the [WDAC design guide](windows-defender-application-control-design-guide.md). This page outlines the steps to create a new application control policy from a template, configure the policy options, and the signer and file rules. 
 
 
 ## Template Base Policies
 
-Each of the template policies has a unique set of policy allowlist rules which will affect the circle-of-trust and security model of the policy. The following table lists the policies in increasing order of trust and freedom. For instance, the Default Windows mode policy has fewer allowed signer rules, compared to the Signed and Reputable mode, and will offer a more selective circle-of-trust, less flexibility and subquently higher security.  
+Each of the template policies has a unique set of policy allow list rules that will affect the circle-of-trust and security model of the policy. The following table lists the policies in increasing order of trust and freedom. For instance, the Default Windows mode policy trusts fewer application publishers and signers than the Signed and Reputable mode policy. The Default Windows policy will have a smaller circle-of-trust with better security than the Signed and Reputable policy, but at the expense of compatibility.  
 
 
 | **Template Base Policy** | **Description** | 
 |---------------------------------|-------------------------------------------------------------------|
-| **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
-| **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
-| **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive and Microsoft Teams</li><li>Third party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph techology](use-windows-defender-application-control-with-intelligent-security-graph)*</li></ul>|
+| **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
+| **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
+| **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph technology](use-windows-defender-application-control-with-intelligent-security-graph)*</li></ul>|
 
 *Italized content denotes the changes in the current policy with respect to the policy prior.*
 
@@ -47,18 +47,18 @@ Once the base template is selected, give the policy a name and choose where to s
 
 ## Configuring Policy Rules
 
-Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. Hovering the mouse over the policy rule title will display a short description of the rule at the bottom of the page. 
+Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. A short description of each rule will appear at the bottom of the page when the mouse hovers over the rule title. 
 
 ### Policy Rules Description
 
-A description of the policy rules, beginning with the left-most column are provided below. 
+A description of each policy rule, beginning with the left-most column, is provided below. 
 
 | Rule option | Description |
 |------------ | ----------- |
 | **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
 | **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
 | **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
-|**[Hypervisor-protected code integrity](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. This provides stronger protections against kernel malware.|
+|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
 | **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
 | **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
 | **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
@@ -68,15 +68,15 @@ A description of the policy rules, beginning with the left-most column are provi
 
 ### Advanced Policy Rules Description
 
-Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of the policy rules are provided below. 
+Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of each policy rule is provided below. 
 
 | Rule option | Description |
 |------------ | ----------- |
 | **Boot Audit on Failure** | Used when the WDAC policy is in enforcement mode. When a driver fails during startup, the WDAC policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
-| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
+| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flight/preview-signed builds. |
 | **Disable Runtime FilePath Rule Protection** | Disable default FilePath rule protection (apps and executables allowed based on file path rules must come from a file path that’s only writable by an administrator) for any FileRule that allows a file based on FilePath. |
-| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically-loaded libraries. |
-| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically re-validate the reputation for files that were authorized by the ISG.| 
+| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically loaded libraries (DLLs). |
+| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically revalidate the reputation for files that were authorized by the ISG.| 
 | **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
 
 
@@ -88,29 +88,29 @@ Selecting the **+ Advanced Options** label will show another column of policy ru
 
 ## Creating custom file rules
 
-File rules in an application control policy will specify the level at which appiations will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports 4 types of file rules: 
+File rules in an application control policy will specify the level at which applications will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create custom file rules for your policy. The Wizard supports four types of file rules: 
 
 ### Publisher Rules
 
-The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specifity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
+The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specificity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
 
 | Rule Condition | WDAC Rule Level | Description |
 |------------ | ----------- | ----------- |
 | **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
 | **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver corp, is affected. |
-| **File version** | SignedVersion | This rule is a combination of PCACertificate, Publisher and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
-| **File name** | FilePublisher | Most specific. Combination of the file name, publisher and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
+| **File version** | SignedVersion | This rule is a combination of PCACertificate, publisher, and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
+| **File name** | FilePublisher | Most specific. Combination of the file name, publisher, and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
 
 
 ![Custom filepublisher file rule creation](images/wdac-wizard-custom-publisher-rule.png)
 
 ### Filepath Rules
 
-Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, simply select the file using the *Browse* button. 
+Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, select the file using the *Browse* button. 
 
 ### File Attribute Rules
 
-The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (eg. DLLs) may all share the same product name, for instance. This allows users to easily create targeted policies based on the Product Name filename rule level. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name parameter. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
 
 | Rule level | Description |
 |------------ | ----------- |

From f039be808ff15bafce5f18b910d642bc1c21fae8 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 15:17:46 -0500
Subject: [PATCH 047/825] Updated wdac-wizard.md to fix spelling and grammar
 per Acrolinx scorecard

---
 .../wdac-wizard.md                             | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index c21368ab72..89403445f6 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -1,6 +1,6 @@
 ---
 title: Windows Defender Application Control Wizard
-description: Microsoft WDAC Wizard allows users to create, edit and merge application control policies in a simple to use Windows application.
+description: Microsoft Defender Application Control Wizard (WDAC) Wizard allows users to create, edit, and merge application control policies in a simple to use Windows application.
 keywords: allowlisting, blocklisting, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 ms.prod: w10
@@ -25,11 +25,11 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-This topic describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security administrators, and system administrators with a more user-friendly means to create, edit and merge application control policies using a GUI desktop application. The Wizard uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/en-us/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets are identical. 
+This article describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/en-us/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets is identical. 
 
 ## Downloading the application
 
-The latest version of the application is available for download from the official [Microsoft WDAC Wizard installer website](https://bit.ly/3koHwYs) as an MSIX packaged application. Additionally, the source code for the Wizard is also available as part of Microsoft's Open Source Software offerings on Github at the [WDAC Wizard Repo](https://github.com/MicrosoftDocs/WDAC-Toolkit). 
+The WDAC Wizard can be downloaded from the official [Wizard installer website](https://bit.ly/3koHwYs) as an MSIX packaged application. The Wizard's source code is available as part of Microsoft's Open Source Software offerings on GitHub at the [WDAC Wizard Repo](https://github.com/MicrosoftDocs/WDAC-Toolkit). 
 
 **Supported Clients**
 
@@ -38,16 +38,16 @@ As the WDAC Wizard uses the cmdlets in the background, the Wizard is functional
 -   Windows builds 1909+
 -   For pre-1909 builds, the Enterprise SKU of Windows is installed
 
-If neither requirement is satisfied, the Wizard will not allow for creating, editing or merging policies.
+If neither requirement is satisfied, the Wizard will throw an error as the cmdlets are not available.
 
 ## In this section
 
 | Topic | Description |
 | - | - |
-| [Creating a new base policy](wdac-wizard-create-base-policy.md) | This topic describes the how to create a new base policy using one of the supplied policy templates. |
-| [Creating a new supplemental policy](wdac-wizard-create-supplemental-policy.md) | This topic describes the steps necessary to create a supplemental policy, from one of the supplied templates, for an existing base policy. |
-| [Editing a base or supplemental policy](wdac-wizard-edit-policy.md) | This topic demonstrates how to modify an existing policy and the Wizard's editing capabilities. |
-| [Merging policies](wdac-wizard-merging-policies.md) | This topic describes how to merge policies into a single application control policy. |
-| [Deploying policies from the Wizard](wdac-wizard-deploying-policies.md) | This topic describes how to deploy application control policies onto target devices. |
+| [Creating a new base policy](wdac-wizard-create-base-policy.md) | This article describes how to create a new base policy using one of the supplied policy templates. |
+| [Creating a new supplemental policy](wdac-wizard-create-supplemental-policy.md) | This article describes the steps necessary to create a supplemental policy, from one of the supplied templates, for an existing base policy. |
+| [Editing a base or supplemental policy](wdac-wizard-edit-policy.md) | This article demonstrates how to modify an existing policy and the Wizard's editing capabilities. |
+| [Merging policies](wdac-wizard-merging-policies.md) | This article describes how to merge policies into a single application control policy. |
+| [Deploying policies from the Wizard](wdac-wizard-deploying-policies.md) | This article describes how to deploy application control policies onto target devices. |
 
  

From c96a8ddee724d98fb665ca7ca9c8e62994dca78b Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 15:35:18 -0500
Subject: [PATCH 048/825] updated wdac-wizard-create-supplemental-policy.md for
 grammar/spelling

---
 .../wdac-wizard-create-supplemental-policy.md | 35 +++++++++----------
 1 file changed, 17 insertions(+), 18 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
index 77ebccf335..6dc20f1ffe 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -30,27 +30,26 @@ Prerequisite information about application control can be accessed through the [
 
 ## Expanding a Base Policy
 
-Once the Policy Creator > Supplemental Policy type is chosen, a policy name and file location dialog will appear to name and save the supplemental policy. The next step requires selecting a base policy to expand. To expand a base policy, the base must allow supplemental policies. The WDAC Wizard will verify whether the base poliy allows supplementals and will show either of the following confirmations. 
+Once the Supplemental Policy type is chosen on the New Policy page, policy name and file dialog fields can be used to name and save the supplemental policy. The next step requires selecting a base policy to expand. To expand a base policy, the base must allow supplemental policies. The WDAC Wizard will verify if the base policy allows supplementals and will show the following confirmation. 
 
 ![Base policy allows supplemental policies](images/wdac-wizard-supplemental-expandable.png)
-![Base policy does not allow supplemental policies](images/wdac-wizard-supplemental-not-expandable.png)
 
 If the base policy is not configured for supplemental policies, first edit the base policy to allow supplementals using the [WDAC Wizard edit workflow](edac-wizard-editing-policy.md).
 
 ## Configuring Policy Rules
 
-Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. Hovering the mouse over the policy rule title will display a short description of the rule at the bottom of the page. 
+Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. A short description of the rule will be shown at the bottom of the page when the cursor is placed on the rule title. 
 
 ### Policy Rules Description
 
-A description of the policy rules, beginning with the left-most column are provided below. 
+A description of each policy rule, beginning with the left-most column, is provided below. 
 
 | Rule option | Description |
 |------------ | ----------- |
 | **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
 | **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
 | **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
-|**[Hypervisor-protected code integrity](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. This provides stronger protections against kernel malware.|
+|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
 | **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
 | **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
 | **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
@@ -60,15 +59,15 @@ A description of the policy rules, beginning with the left-most column are provi
 
 ### Advanced Policy Rules Description
 
-Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of the policy rules are provided below. 
+Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of each policy rule is provided below. 
 
 | Rule option | Description |
 |------------ | ----------- |
 | **Boot Audit on Failure** | Used when the WDAC policy is in enforcement mode. When a driver fails during startup, the WDAC policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
-| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
+| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This setting should be used in scenarios where organizations only want to run production binaries, not flight/preivew-signed builds. |
 | **Disable Runtime FilePath Rule Protection** | Disable default FilePath rule protection (apps and executables allowed based on file path rules must come from a file path that’s only writable by an administrator) for any FileRule that allows a file based on FilePath. |
-| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically-loaded libraries. |
-| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically re-validate the reputation for files that were authorized by the ISG.| 
+| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically loaded libraries. |
+| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically revalidate the reputation for files that were authorized by the ISG.| 
 | **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
 
 
@@ -80,17 +79,17 @@ Selecting the **+ Advanced Options** label will show another column of policy ru
 
 ## Creating custom file rules
 
-File rules in an application control policy will specify the level at which appiations will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports 4 types of file rules: 
+File rules in an application control policy will specify the level at which applications will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create and customize targeted file rules for your policy. The Wizard supports four types of file rules: 
 
 ### Publisher Rules
 
-The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specifity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
+The Publisher file rule type uses properties in the code signing certificate chain to base file rules. Once the file to base the rule off of, called the *reference file*, is selected, use the slider to indicate the specificity of the rule.  The table below shows the relationship between the slider placement, the corresponding WDAC rule level, and its description. The lower the placement on the table and the UI slider, the greater the specificity of the rule. 
 
 | Rule Condition | WDAC Rule Level | Description |
 |------------ | ----------- | ----------- |
-| **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
-| **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver corp, is affected. |
-| **File version** | SignedVersion | This rule is a combination of PCACertificate, Publisher and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
+| **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This certificate is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
+| **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver publisher, is affected. |
+| **File version** | SignedVersion | This rule is a combination of the PCACertificate and Publisher rule, and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
 | **File name** | FilePublisher | Most specific. Combination of the file name, publisher and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
 
 
@@ -98,11 +97,11 @@ The Publisher file rule type uses properties in the code signing certificate cha
 
 ### Filepath Rules
 
-Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, simply select the file using the *Browse* button. 
+Filepath rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. To create a filepath rule, select the file using the *Browse* button. 
 
 ### File Attribute Rules
 
-The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (eg. DLLs) may all share the same product name, for instance. This allows users to easily create targeted policies based on the Product Name filename rule level. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
 
 | Rule level | Description |
 |------------ | ----------- |
@@ -121,8 +120,8 @@ Lastly, the Wizard supports creating file rules using the hash of the file. Alth
 
 #### Deleting Signing Rules 
   
-The policy signing rules list table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Template signing rules and custom rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
+The table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
 
 ## Up next
 
-- [Editing a WDAC policy using the Wizard](wdac-wizard-editing-policy.md)
\ No newline at end of file
+- [Editing a WDAC policy using the Wizard](wdac-wizard-editing-policy.md)

From c70c8ee8812de16b0c4c8b9f52202ebfad5083d2 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 15:49:59 -0500
Subject: [PATCH 049/825] fixed grammar/spelling in
 wdac-wizard-editing-policy.md

---
 .../wdac-wizard-editing-policy.md                | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
index d3ef342f31..ec71f80aba 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -18,13 +18,13 @@ ms.topic: conceptual
 ms.date: 10/14/2020
 ---
 
-# Editing exisiting base and supplemental WDAC policies with the Wizard
+# Editing existing base and supplemental WDAC policies with the Wizard
 
 **Applies to**
 -   Windows 10
 -   Windows Server 2016 and above
 
-The WDAC Wizard makes editing and viewing base and supplemental WDAC policies much easier than by hand or using the PowerShell Cmdlets. The Wizard currently supports the following editing capbilities: 
+The WDAC Wizard makes editing and viewing WDAC policies easier than the PowerShell cmdlets or manually. The Wizard currently supports the following editing capabilities: 
 <ul>
 <li>[Configuring policy rules](#Configuring-Policy-Rules)</li>
 <li>[Adding new allow or block file rules to existing policies](#Adding-File-Rules)</li>
@@ -34,21 +34,21 @@ The WDAC Wizard makes editing and viewing base and supplemental WDAC policies mu
 
 # Configuring Policy Rules
 
-The `Policy Rules` page will load with the in-edit policy rules configured per the set rules. Selecting the `+ Advanced Options` button will reveal the advanced policy rule options panel. This grouping of rules contains additional policy rule options which are less common to the majority of users. To edit any of the rules, flip the corresponding policy rule state.  For instance, to disable Audit Mode and enable Enforcement Mode in the figure below, the button beside the `Audit Mode` label needs only to be pressed. Once the policy rules are configured, select the Next button to continue the next stage of editing: [Adding File Rules](#Adding-File-Rules).
+The `Policy Rules` page will load with the in-edit policy rules configured per the set rules. Selecting the `+ Advanced Options` button will reveal the advanced policy rule options panel. This grouping of rules contains additional policy rule options that are less common to the majority of users. To edit any of the rules, flip the corresponding policy rule state.  For instance, to disable Audit Mode and enable Enforcement Mode in the figure below, the button beside the `Audit Mode` label needs only to be pressed. Once the policy rules are configured, select the Next button to continue the next stage of editing: [Adding File Rules](#Adding-File-Rules).
 
 ![Configuring the policy rules](images/wdac-wizard-edit-policy-rules.png)
 
-Hovering the mouse over the policy rule names will display a short description of the ruleat the bottom of the page.For a complete list of the policy rules and their capabilities see the [Windows Defender Application Control policy rules table](select-types-of-rules-to-create.md#windows-defender-application-control-policy-rules).
+A description of the policy rule is shown at the bottom of the page when the cursor is placed over the rule title. For a complete list of the policy rules and their capabilities, see the [Windows Defender Application Control policy rules table](select-types-of-rules-to-create.md#windows-defender-application-control-policy-rules).
 
 ## Adding File Rules
 
-Previously, to add rules to an existing policy, users would be required to create a new policy and merge it with their existing policy, or edit the policy by hand. The WDAC Wizard allows users to add rules to their exising policy seamlessly. 
+The WDAC Wizard allows users to add rules to their existing policy seamlessly. Previously, this would have involved creating a new policy with the new rules and merging it with the existing policy. 
 
 Selecting the `+ Custom Rules` button will open the Custom Rules panel. For more information on creating new policy file rules, see the guidelines provided in the [creating policy file rules section](wdac-wizard-create-base-policy.md#Creating-custom-file-rules).
 
 ## Removing File Rules
 
-The WDAC Wizard makes deleting file rules from an existing policy quick and easy. To remove any type of file rule: publisher rule, path rule, filename rule or a hash rule, simply click on the rule in the `Policy Signing Rules List` table on the lefthand side of the page. Selecting the rule will highlight the entire row. Once the row is highlighted, select the remove icon underneath the table. The Wizard will prompt for user confirmation before removing the file rule. Once removed, the rule will no longer appear in the policy or the table. 
+The WDAC Wizard makes deleting file rules from an existing policy quick and easy. To remove any type of file rule: publisher rule, path rule, filename rule, or a hash rule, select the rule in the `Policy Signing Rules List` table on the left-hand side of the page. Selecting the rule will highlight the entire row. Once the row is highlighted, select the remove icon underneath the table. The Wizard will prompt for user confirmation before removing the file rule. Once removed, the rule will no longer appear in the policy or the table. 
 
 ![Removing file rule from policy during edit](image/wdac-wizard-edit-remove-file-rule.png)
 
@@ -66,8 +66,8 @@ The WDAC Wizard makes deleting file rules from an existing policy quick and easy
 
 ### Policy Creation
 
-Once the WDAC Wizard finalizes creation of your edited policy, the new policy will be written to the same file path and name as the in-edit policy with the new version appended to the end of the file name. For instance, if the in-edit policy is saved at MyDocuments\BasePolicy.xml, after edit, the new policy will be saved at MyDocuments\BasePolicy_v10.0.0.1.xml. 
+Once the policy is created, the new policy will be written to the same path as the in-edit policy. The new policy file name will have the policy version appended to the end of the file name. For instance, if the in-edit policy is saved at MyDocuments\BasePolicy.xml, after edit, the new policy will be saved at MyDocuments\BasePolicy_v10.0.0.1.xml. 
 
 ## Up next
 
-- [Merging WDAC policies using the Wizard](wdac-wizard-merging-policies.md)
\ No newline at end of file
+- [Merging WDAC policies using the Wizard](wdac-wizard-merging-policies.md)

From 15ef5a5dcb2e6dafff3de6cb9a0624fe81d356e1 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 15:56:08 -0500
Subject: [PATCH 050/825] fixed grammar/spelling in merging policies article

---
 .../wdac-wizard-merging-policies.md                       | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
index 53f2c6162d..eca772e093 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
@@ -20,13 +20,13 @@ ms.date: 10/14/2020
 
 # Merging existing policies with the WDAC Wizard
 
-Beginning in Windows 10 version 1903, WDAC supports multiple policies. Before version 1903, however, Windows 10 could only have one WDAC policy. Consquently, users were required to merge multiple WDAC policies into one. The WDAC Wizard has a simple to use user interface to allow users to merge multiple WDAC policies. The Wizard can support up to 15 policy files as input during the merge workflow.  
+Beginning in Windows 10 version 1903, WDAC supports multiple policies. Before version 1903, however, Windows 10 could only have one WDAC policy. Consequently, users were required to merge multiple WDAC policies into one. The WDAC Wizard has a simple to use user interface to allow users to merge multiple WDAC policies. The Wizard can support up to 15 policy files as input during the merge workflow.  
 
-Simply select the policies you wish to merge into one policy using the `+ Add Policy` button under the table. Once added, policies will be enumerated within the table. To remove a policy from the table, in the case of accidental addition, highlight the policy row and click the `- Remove Policy` button. Confirmation will be required before the policy is withdrawn from the table. 
+Select the policies you wish to merge into one policy using the `+ Add Policy` button under the table. Once added, policies will be enumerated within the table. To remove a policy from the table, if accidentally added, highlight the policy row and select the `- Remove Policy` button. Confirmation will be required before the policy is withdrawn from the table. 
 
 > [!NOTE]
 > The policy type and ID of the final output policy will be determined based on the type and ID of the **first policy** in the policy list table. For instance, if a legacy policy format policy and a multi-policy format policy are merged together, the output format of the policy will be whichever policy is specified first in the table. For more information on policy formats, visit the [Multiple WDAC Policies page](deploy-multiple-windows-defender-application-control-policies).
 
-Lastly, select a filepath save location for the final merged policy on disk using the Browse button. Once at least two policies to merge are specified, and the output file location is set, click Next to build the policy. 
+Lastly, select a filepath save location for the final merged policy using the `Browse` button. If a minimum of two policies are selected, and the save location is specified, select the `Next` button to build the policy. 
 
-![Merging WDAC policies into a final WDAC policy](images/wdac-wizard-merge.png)
\ No newline at end of file
+![Merging WDAC policies into a final WDAC policy](images/wdac-wizard-merge.png)

From cb480eefb414fd2b68e0478d268aa73e21770c97 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 17:40:26 -0500
Subject: [PATCH 051/825] Fixed broken links for edit policy article and
 deploying policy articles.

---
 .../windows-defender-application-control/wdac-wizard.md    | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index 89403445f6..4e765e5339 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -25,7 +25,7 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-This article describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/en-us/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets is identical. 
+This article describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets is identical. 
 
 ## Downloading the application
 
@@ -46,8 +46,5 @@ If neither requirement is satisfied, the Wizard will throw an error as the cmdle
 | - | - |
 | [Creating a new base policy](wdac-wizard-create-base-policy.md) | This article describes how to create a new base policy using one of the supplied policy templates. |
 | [Creating a new supplemental policy](wdac-wizard-create-supplemental-policy.md) | This article describes the steps necessary to create a supplemental policy, from one of the supplied templates, for an existing base policy. |
-| [Editing a base or supplemental policy](wdac-wizard-edit-policy.md) | This article demonstrates how to modify an existing policy and the Wizard's editing capabilities. |
+| [Editing a base or supplemental policy](wdac-wizard-editing-policy.md) | This article demonstrates how to modify an existing policy and the Wizard's editing capabilities. |
 | [Merging policies](wdac-wizard-merging-policies.md) | This article describes how to merge policies into a single application control policy. |
-| [Deploying policies from the Wizard](wdac-wizard-deploying-policies.md) | This article describes how to deploy application control policies onto target devices. |
-
- 

From bbb3142a8b02f6e0e02df4dc8573202e581bb2d9 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 17:43:08 -0500
Subject: [PATCH 052/825] Fixed broken Multiple WDAC Policies page link in WDAC
 Wizard merge policy article

---
 .../wdac-wizard-merging-policies.md                             | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
index eca772e093..1b7d604a49 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
@@ -25,7 +25,7 @@ Beginning in Windows 10 version 1903, WDAC supports multiple policies. Before ve
 Select the policies you wish to merge into one policy using the `+ Add Policy` button under the table. Once added, policies will be enumerated within the table. To remove a policy from the table, if accidentally added, highlight the policy row and select the `- Remove Policy` button. Confirmation will be required before the policy is withdrawn from the table. 
 
 > [!NOTE]
-> The policy type and ID of the final output policy will be determined based on the type and ID of the **first policy** in the policy list table. For instance, if a legacy policy format policy and a multi-policy format policy are merged together, the output format of the policy will be whichever policy is specified first in the table. For more information on policy formats, visit the [Multiple WDAC Policies page](deploy-multiple-windows-defender-application-control-policies).
+> The policy type and ID of the final output policy will be determined based on the type and ID of the **first policy** in the policy list table. For instance, if a legacy policy format policy and a multi-policy format policy are merged together, the output format of the policy will be whichever policy is specified first in the table. For more information on policy formats, visit the [Multiple WDAC Policies page](deploy-multiple-windows-defender-application-control-policies.md).
 
 Lastly, select a filepath save location for the final merged policy using the `Browse` button. If a minimum of two policies are selected, and the save location is specified, select the `Next` button to build the policy. 
 

From 4dad3db2b6a37a505eb22ddb2d77aac2bceb63ac Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 17:51:25 -0500
Subject: [PATCH 053/825] Fixed broken image link and page header references

---
 .../wdac-wizard-editing-policy.md                      | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
index ec71f80aba..a239d415ec 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -1,5 +1,5 @@
 ---
-title: Windows Defender Application Control Wizard Base Policy Creation
+title: Editing Windows Defender Application Control Policies with the Wizard
 description: Editing existing base and supplemental policies with the Microsoft WDAC Wizard.
 keywords: allowlisting, blocklisting, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
@@ -32,9 +32,9 @@ The WDAC Wizard makes editing and viewing WDAC policies easier than the PowerShe
 <li></li>
 </ul>
 
-# Configuring Policy Rules
+## Configuring Policy Rules
 
-The `Policy Rules` page will load with the in-edit policy rules configured per the set rules. Selecting the `+ Advanced Options` button will reveal the advanced policy rule options panel. This grouping of rules contains additional policy rule options that are less common to the majority of users. To edit any of the rules, flip the corresponding policy rule state.  For instance, to disable Audit Mode and enable Enforcement Mode in the figure below, the button beside the `Audit Mode` label needs only to be pressed. Once the policy rules are configured, select the Next button to continue the next stage of editing: [Adding File Rules](#Adding-File-Rules).
+The `Policy Rules` page will load with the in-edit policy rules configured per the set rules. Selecting the `+ Advanced Options` button will reveal the advanced policy rule options panel. This grouping of rules contains additional policy rule options that are less common to the majority of users. To edit any of the rules, flip the corresponding policy rule state.  For instance, to disable Audit Mode and enable Enforcement Mode in the figure below, the button beside the `Audit Mode` label needs only to be pressed. Once the policy rules are configured, select the Next button to continue the next stage of editing: [Adding File Rules](#adding-file-rules).
 
 ![Configuring the policy rules](images/wdac-wizard-edit-policy-rules.png)
 
@@ -44,13 +44,13 @@ A description of the policy rule is shown at the bottom of the page when the cur
 
 The WDAC Wizard allows users to add rules to their existing policy seamlessly. Previously, this would have involved creating a new policy with the new rules and merging it with the existing policy. 
 
-Selecting the `+ Custom Rules` button will open the Custom Rules panel. For more information on creating new policy file rules, see the guidelines provided in the [creating policy file rules section](wdac-wizard-create-base-policy.md#Creating-custom-file-rules).
+Selecting the `+ Custom Rules` button will open the Custom Rules panel. For more information on creating new policy file rules, see the guidelines provided in the [creating policy file rules section](wdac-wizard-create-base-policy.md#creating-custom-file-rules).
 
 ## Removing File Rules
 
 The WDAC Wizard makes deleting file rules from an existing policy quick and easy. To remove any type of file rule: publisher rule, path rule, filename rule, or a hash rule, select the rule in the `Policy Signing Rules List` table on the left-hand side of the page. Selecting the rule will highlight the entire row. Once the row is highlighted, select the remove icon underneath the table. The Wizard will prompt for user confirmation before removing the file rule. Once removed, the rule will no longer appear in the policy or the table. 
 
-![Removing file rule from policy during edit](image/wdac-wizard-edit-remove-file-rule.png)
+![Removing file rule from policy during edit](images/wdac-wizard-edit-remove-file-rule.png)
 
 **Note:** removing a publisher rule will also remove the associated File Attribute rules. For instance, in the xml block below, removing ID_SIGNER_CONTOSO_PUBLISHER would also remove the rules ID_FILEATTRIB_LOB_APP_1 and ID_FILEATTRIB_LOB_APP_2. 
 

From 70d27f25c9e3799da866eb66563bb3ce73a6ebf9 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 17:55:11 -0500
Subject: [PATCH 054/825] Fixed broken link to
 select-types-of-rules-to-create.md#windows-defender-application-control-filename-rules
 and hardcoded locale (en-us) link in HVCI article

---
 .../wdac-wizard-create-supplemental-policy.md               | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
index 6dc20f1ffe..4383ca390b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -34,7 +34,7 @@ Once the Supplemental Policy type is chosen on the New Policy page, policy name
 
 ![Base policy allows supplemental policies](images/wdac-wizard-supplemental-expandable.png)
 
-If the base policy is not configured for supplemental policies, first edit the base policy to allow supplementals using the [WDAC Wizard edit workflow](edac-wizard-editing-policy.md).
+If the base policy is not configured for supplemental policies, first edit the base policy to allow supplementals using the [WDAC Wizard edit workflow](wdac-wizard-editing-policy.md).
 
 ## Configuring Policy Rules
 
@@ -49,7 +49,7 @@ A description of each policy rule, beginning with the left-most column, is provi
 | **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
 | **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
 | **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
-|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
+|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
 | **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
 | **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
 | **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
@@ -101,7 +101,7 @@ Filepath rules do not provide the same security guarantees that explicit signer
 
 ### File Attribute Rules
 
-The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create.md#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
 
 | Rule level | Description |
 |------------ | ----------- |

From 1a31685da0367b6b2f3866ecebfb5b17f321ea47 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 14 Dec 2020 18:00:10 -0500
Subject: [PATCH 055/825] Fixed more hardcoded locales by removing "en-us" from
 article links. Also fixed references to the wdac official docs
 (use-windows-defender-application-control-with-intelligent-security-graph
 missing .md file ext)

---
 .../wdac-wizard-create-base-policy.md                  | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index f532ee4e59..d9afb2c2a1 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -34,9 +34,9 @@ Each of the template policies has a unique set of policy allow list rules that w
 
 | **Template Base Policy** | **Description** | 
 |---------------------------------|-------------------------------------------------------------------|
-| **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
-| **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
-| **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/en-us/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph technology](use-windows-defender-application-control-with-intelligent-security-graph)*</li></ul>|
+| **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
+| **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
+| **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph technology](use-windows-defender-application-control-with-intelligent-security-graph.md)*</li></ul>|
 
 *Italized content denotes the changes in the current policy with respect to the policy prior.*
 
@@ -58,7 +58,7 @@ A description of each policy rule, beginning with the left-most column, is provi
 | **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
 | **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
 | **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
-|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
+|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
 | **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
 | **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
 | **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
@@ -110,7 +110,7 @@ Filepath rules do not provide the same security guarantees that explicit signer
 
 ### File Attribute Rules
 
-The Wizard supports the creation of [file name rules](select-types-of-rules-to-create#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name parameter. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
+The Wizard supports the creation of [file name rules](select-types-of-rules-to-create.md#windows-defender-application-control-filename-rules) based on authenticated file attributes. File name rules are useful when an application and its dependencies (for example, DLLs) may all share the same product name, for instance. This rule level allows users to easily create targeted policies based on the Product Name file name parameter. To select the file attribute to create the rule, move the slider on the Wizard to the desired attribute. The table below describes each of the supported file attributes off which to create a rule. 
 
 | Rule level | Description |
 |------------ | ----------- |

From 669d17a35bfaa6589494600b796412c82770d98b Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 14 Dec 2020 15:44:37 -0800
Subject: [PATCH 056/825] Added Globalization policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   26 +
 .../policy-configuration-service-provider.md  |   83 +
 .../mdm/policy-csp-admx-globalization.md      | 2040 +++++++++++++++++
 4 files changed, 2150 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-globalization.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 22dc4936a7..ace9da625a 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -197,6 +197,7 @@
 #### [ADMX_FileServerVSSProvider](policy-csp-admx-fileservervssprovider.md)
 #### [ADMX_FileSys](policy-csp-admx-filesys.md)
 #### [ADMX_FolderRedirection](policy-csp-admx-folderredirection.md)
+#### [ADMX_Globalization](policy-csp-admx-globalization.md)
 #### [ADMX_Help](policy-csp-admx-help.md)
 #### [ADMX_HelpAndSupport](policy-csp-admx-helpandsupport.md)
 #### [ADMX_kdc](policy-csp-admx-kdc.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 850cba7f7b..eb920b0fb5 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -163,6 +163,32 @@ ms.date: 10/08/2020
 - [ADMX_FolderRedirection/LocalizeXPRelativePaths_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-localizexprelativepaths-2)
 - [ADMX_FolderRedirection/PrimaryComputer_FR_1](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-1)
 - [ADMX_FolderRedirection/PrimaryComputer_FR_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-2)
+- [ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks](./policy-csp-admx-globalization.md#admx-globalization-blockcleanupofunusedpreinstalledlangpacks)
+- [ADMX_Globalization/BlockUserInputMethodsForSignIn](./policy-csp-admx-globalization.md#admx-globalization-blockuserinputmethodsforsignin)
+- [ADMX_Globalization/CustomLocalesNoSelect_1](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-1)
+- [ADMX_Globalization/CustomLocalesNoSelect_2](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-2)
+- [ADMX_Globalization/HideAdminOptions](./policy-csp-admx-globalization.md#admx-globalization-hideadminoptions)
+- [ADMX_Globalization/HideCurrentLocation](./policy-csp-admx-globalization.md#admx-globalization-hidecurrentlocation)
+- [ADMX_Globalization/HideLanguageSelection](./policy-csp-admx-globalization.md#admx-globalization-hidelanguageselection)
+- [ADMX_Globalization/HideLocaleSelectAndCustomize](./policy-csp-admx-globalization.md#admx-globalization-hidelocaleselectandcustomize)
+- [ADMX_Globalization/ImplicitDataCollectionOff_1](./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-1)
+- [ADMX_Globalization/ImplicitDataCollectionOff_2](./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-2)
+- [ADMX_Globalization/LocaleSystemRestrict](./policy-csp-admx-globalization.md#admx-globalization-localesystemrestrict)
+- [ADMX_Globalization/LocaleUserRestrict_1](./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-1)
+- [ADMX_Globalization/LocaleUserRestrict_2](./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-2)
+- [ADMX_Globalization/LockMachineUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockmachineuilanguage)
+- [ADMX_Globalization/LockUserUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockuseruilanguage)
+- [ADMX_Globalization/MachineUILanguageOverwrite](./policy-csp-admx-globalization.md#admx-globalization-machineuilanguageoverwrite)
+- [ADMX_Globalization/PreventGeoIdChange_1](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-1)
+- [ADMX_Globalization/PreventGeoIdChange_2](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-2)
+- [ADMX_Globalization/PreventUserOverrides_1](./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-1)
+- [ADMX_Globalization/PreventUserOverrides_2](./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-2)
+- [ADMX_Globalization/RestrictUILangSelect](./policy-csp-admx-globalization.md#admx-globalization-restrictuilangselect)
+- [ADMX_Globalization/TurnOffAutocorrectMisspelledWords](./policy-csp-admx-globalization.md#admx-globalization-turnoffautocorrectmisspelledwords)
+- [ADMX_Globalization/TurnOffHighlightMisspelledWords](./policy-csp-admx-globalization.md#admx-globalization-turnoffhighlightmisspelledwords)
+- [ADMX_Globalization/TurnOffInsertSpace](./policy-csp-admx-globalization.md#admx-globalization-turnoffinsertspace)
+- [ADMX_Globalization/TurnOffOfferTextPredictions](./policy-csp-admx-globalization.md#admx-globalization-turnoffoffertextpredictions)
+- [ADMX_Globalization/Y2K](./policy-csp-admx-globalization.md#admx-globalization-y2k)
 - [ADMX_Help/DisableHHDEP](./policy-csp-admx-help.md#admx-help-disablehhdep)
 - [ADMX_Help/HelpQualifiedRootDir_Comp](./policy-csp-admx-help.md#admx-help-helpqualifiedrootdir-comp)
 - [ADMX_Help/RestrictRunFromHelp](./policy-csp-admx-help.md#admx-help-restrictrunfromhelp)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index e446aa1591..58bfd3a1a2 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -713,6 +713,89 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Globalization policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-blockcleanupofunusedpreinstalledlangpacks" id="admx-globalization-blockcleanupofunusedpreinstalledlangpacks">ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-blockuserinputmethodsforsignin" id="admx-globalization-blockuserinputmethodsforsignin">ADMX_Globalization/BlockUserInputMethodsForSignIn</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-1" id="admx-globalization-customlocalesnoselect-1">ADMX_Globalization/CustomLocalesNoSelect_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-2" id="admx-globalization-customlocalesnoselect-2">ADMX_Globalization/CustomLocalesNoSelect_2</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-hideadminoptions" id="admx-globalization-hideadminoptions">ADMX_Globalization/HideAdminOptions</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-hidecurrentlocation" id="admx-globalization-hidecurrentlocation">ADMX_Globalization/HideCurrentLocation</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-hidelanguageselection" id="admx-globalization-hidelanguageselection">ADMX_Globalization/HideLanguageSelection</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-hidelocaleselectandcustomize" id="admx-globalization-hidelocaleselectandcustomize">ADMX_Globalization/HideLocaleSelectAndCustomize</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-1" id="admx-globalization-implicitdatacollectionoff-1">ADMX_Globalization/ImplicitDataCollectionOff_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-2" id="admx-globalization-implicitdatacollectionoff-2">ADMX_Globalization/ImplicitDataCollectionOff_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-localesystemrestrict" id="admx-globalization-localesystemrestrict">ADMX_Globalization/LocaleSystemRestrict</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-1" id="admx-globalization-localeuserrestrict-1">ADMX_Globalization/LocaleUserRestrict_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-2" id="admx-globalization-localeuserrestrict-2">ADMX_Globalization/LocaleUserRestrict_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-lockmachineuilanguage" id="admx-globalization-lockmachineuilanguage">ADMX_Globalization/LockMachineUILanguage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-lockuseruilanguage" id="admx-globalization-lockuseruilanguage">ADMX_Globalization/LockUserUILanguage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-machineuilanguageoverwrite" id="admx-globalization-machineuilanguageoverwrite">ADMX_Globalization/MachineUILanguageOverwrite</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-1" id="admx-globalization-preventgeoidchange-1">ADMX_Globalization/PreventGeoIdChange_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-2" id="admx-globalization-preventgeoidchange-2">ADMX_Globalization/PreventGeoIdChange_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-1" id="admx-globalization-preventuseroverrides-1">ADMX_Globalization/PreventUserOverrides_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-2" id="admx-globalization-preventuseroverrides-2">ADMX_Globalization/PreventUserOverrides_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-restrictuilangselect" id="admx-globalization-restrictuilangselect">ADMX_Globalization/RestrictUILangSelect</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-turnoffautocorrectmisspelledwords" id="admx-globalization-turnoffautocorrectmisspelledwords">ADMX_Globalization/TurnOffAutocorrectMisspelledWords</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-turnoffhighlightmisspelledwords" id="admx-globalization-turnoffhighlightmisspelledwords">ADMX_Globalization/TurnOffHighlightMisspelledWords</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-turnoffinsertspace" id="admx-globalization-turnoffinsertspace">ADMX_Globalization/TurnOffInsertSpace</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-turnoffoffertextpredictions" id="admx-globalization-turnoffoffertextpredictions">ADMX_Globalization/TurnOffOfferTextPredictions</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-globalization.md#admx-globalization-y2k" id="admx-globalization-y2k">ADMX_Globalization/Y2K</a>
+  </dd>
+</dl>
+
 ### ADMX_Help policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-globalization.md b/windows/client-management/mdm/policy-csp-admx-globalization.md
new file mode 100644
index 0000000000..e471cdf6e7
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-globalization.md
@@ -0,0 +1,2040 @@
+---
+title: Policy CSP - ADMX_Globalization
+description: Policy CSP - ADMX_Globalization
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/14/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Globalization
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Globalization policies  
+
+<dl>
+  <dd>
+    <a href="#admx-globalization-blockcleanupofunusedpreinstalledlangpacks">ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-blockuserinputmethodsforsignin">ADMX_Globalization/BlockUserInputMethodsForSignIn</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-customlocalesnoselect-1">ADMX_Globalization/CustomLocalesNoSelect_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-customlocalesnoselect-2">ADMX_Globalization/CustomLocalesNoSelect_2</a>
+  </dd>
+    <dd>
+    <a href="#admx-globalization-hideadminoptions">ADMX_Globalization/HideAdminOptions</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-hidecurrentlocation">ADMX_Globalization/HideCurrentLocation</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-hidelanguageselection">ADMX_Globalization/HideLanguageSelection</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-hidelocaleselectandcustomize">ADMX_Globalization/HideLocaleSelectAndCustomize</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-implicitdatacollectionoff-1">ADMX_Globalization/ImplicitDataCollectionOff_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-implicitdatacollectionoff-2">ADMX_Globalization/ImplicitDataCollectionOff_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-localesystemrestrict">ADMX_Globalization/LocaleSystemRestrict</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-localeuserrestrict-1">ADMX_Globalization/LocaleUserRestrict_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-localeuserrestrict-2">ADMX_Globalization/LocaleUserRestrict_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-lockmachineuilanguage">ADMX_Globalization/LockMachineUILanguage</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-lockuseruilanguage">ADMX_Globalization/LockUserUILanguage</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-machineuilanguageoverwrite">ADMX_Globalization/MachineUILanguageOverwrite</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-preventgeoidchange-1">ADMX_Globalization/PreventGeoIdChange_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-preventgeoidchange-2">ADMX_Globalization/PreventGeoIdChange_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-preventuseroverrides-1">ADMX_Globalization/PreventUserOverrides_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-preventuseroverrides-2">ADMX_Globalization/PreventUserOverrides_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-restrictuilangselect">ADMX_Globalization/RestrictUILangSelect</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-turnoffautocorrectmisspelledwords">ADMX_Globalization/TurnOffAutocorrectMisspelledWords</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-turnoffhighlightmisspelledwords">ADMX_Globalization/TurnOffHighlightMisspelledWords</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-turnoffinsertspace">ADMX_Globalization/TurnOffInsertSpace</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-turnoffoffertextpredictions">ADMX_Globalization/TurnOffOfferTextPredictions</a>
+  </dd>
+  <dd>
+    <a href="#admx-globalization-y2k">ADMX_Globalization/Y2K</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-blockcleanupofunusedpreinstalledlangpacks"></a>**ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the LPRemove task will run to clean up language packs installed on a machine but are not used by any users on that machine.
+
+If you enable this policy setting, language packs that are installed as part of the system image will remain installed even if they are not used by any user on that system.
+
+If you disable or do not configure this policy setting, language packs that are installed as part of the system image but are not used by any user on that system will be removed as part of a scheduled clean up task.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Block clean-up of unused language packs*
+-   GP name: *BlockCleanupOfUnusedPreinstalledLangPacks*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-blockuserinputmethodsforsignin"></a>**ADMX_Globalization/BlockUserInputMethodsForSignIn**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy prevents automatic copying of user input methods to the system account for use on the sign-in screen. The user is restricted to the set of input methods that are enabled in the system account.
+
+Note this does not affect the availability of user input methods on the lock screen or with the UAC prompt.
+
+If the policy is Enabled, then the user will get input methods enabled for the system account on the sign-in page.
+
+If the policy is Disabled or Not Configured, then the user will be able to use input methods enabled for their user account on the sign-in page.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow copying of user input methods to the system account for sign-in*
+-   GP name: *BlockUserInputMethodsForSignIn*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-customlocalesnoselect-1"></a>**ADMX_Globalization/CustomLocalesNoSelect_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents a user from selecting a supplemental custom locale as their user locale. The user is restricted to the set of locales that are installed with the operating system.
+
+This does not affect the selection of replacement locales. To prevent the selection of replacement locales, adjust the permissions of the %windir%\Globalization directory to prevent the installation of locales by unauthorized users.
+
+The policy setting "Restrict user locales" can also be enabled to disallow selection of a custom locale, even if this policy setting is not configured.
+
+If you enable this policy setting, the user cannot select a custom locale as their user locale, but they can still select a replacement locale if one is installed.
+
+If you disable or do not configure this policy setting, the user can select a custom locale as their user locale.
+
+If this policy setting is enabled at the machine level, it cannot be disabled by a per-user policy setting. If this policy setting is disabled at the machine level, the per-user policy setting will be ignored. If this policy setting is not configured at the machine level, restrictions will be based on per-user policy settings.
+
+To set this policy setting on a per-user basis, make sure that you do not configure the per-machine policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow selection of Custom Locales*
+-   GP name: *CustomLocalesNoSelect_1*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-customlocalesnoselect-2"></a>**ADMX_Globalization/CustomLocalesNoSelect_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents a user from selecting a supplemental custom locale as their user locale. The user is restricted to the set of locales that are installed with the operating system.
+
+This does not affect the selection of replacement locales. To prevent the selection of replacement locales, adjust the permissions of the %windir%\Globalization directory to prevent the installation of locales by unauthorized users.
+
+The policy setting "Restrict user locales" can also be enabled to disallow selection of a custom locale, even if this policy setting is not configured.
+
+If you enable this policy setting, the user cannot select a custom locale as their user locale, but they can still select a replacement locale if one is installed.
+
+If you disable or do not configure this policy setting, the user can select a custom locale as their user locale.
+
+If this policy setting is enabled at the machine level, it cannot be disabled by a per-user policy setting. If this policy setting is disabled at the machine level, the per-user policy setting will be ignored. If this policy setting is not configured at the machine level, restrictions will be based on per-user policy settings.
+
+To set this policy setting on a per-user basis, make sure that you do not configure the per-machine policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow selection of Custom Locales*
+-   GP name: *CustomLocalesNoSelect_2*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-hideadminoptions"></a>**ADMX_Globalization/HideAdminOptions**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the Administrative options from the Region settings control panel.
+
+Administrative options include interfaces for setting system locale and copying settings to the default user. This policy setting does not, however, prevent an administrator or another application from changing these values programmatically.
+
+This policy setting is used only to simplify the Regional Options control panel.
+
+If you enable this policy setting, the user cannot see the Administrative options.
+
+If you disable or do not configure this policy setting, the user can see the Administrative options.
+
+> [!NOTE]
+> Even if a user can see the Administrative options, other policies may prevent them from modifying the values.
+
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide Regional and Language Options administrative options*
+-   GP name: *HideAdminOptions*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-hidecurrentlocation"></a>**ADMX_Globalization/HideCurrentLocation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the option to change the user's geographical location (GeoID) from the Region settings control panel.
+
+This policy setting is used only to simplify the Regional Options control panel.
+
+If you enable this policy setting, the user does not see the option to change the GeoID. This does not prevent the user or an application from changing the GeoID programmatically.
+
+If you disable or do not configure this policy setting, the user sees the option for changing the user location (GeoID).
+
+> [!NOTE]
+> Even if a user can see the GeoID option, the "Disallow changing of geographical location" option can prevent them from actually changing their current geographical location.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the geographic location option*
+-   GP name: *HideCurrentLocation*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-hidelanguageselection"></a>**ADMX_Globalization/HideLanguageSelection**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the option to change the user's menus and dialogs (UI) language from the Language and Regional Options control panel.
+
+This policy setting is used only to simplify the Regional Options control panel.
+
+If you enable this policy setting, the user does not see the option for changing the UI language. This does not prevent the user or an application from changing the UI language programmatically.  If you disable or do not configure this policy setting, the user sees the option for changing the UI language.
+
+> [!NOTE]
+> Even if a user can see the option to change the UI language, other policy settings can prevent them from changing their UI language.
+
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the select language group options*
+-   GP name: *HideLanguageSelection*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-hidelocaleselectandcustomize"></a>**ADMX_Globalization/HideLocaleSelectAndCustomize**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the regional formats interface from the Region settings control panel.
+
+This policy setting is used only to simplify the Regional and Language Options control panel.
+
+If you enable this policy setting, the user does not see the regional formats options. This does not prevent the user or an application from changing their user locale or user overrides programmatically.
+
+If you disable or do not configure this policy setting, the user sees the regional formats options for changing and customizing the user locale.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide user locale selection and customization options*
+-   GP name: *HideLocaleSelectAndCustomize*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-implicitdatacollectionoff-1"></a>**ADMX_Globalization/ImplicitDataCollectionOff_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting turns off the automatic learning component of handwriting recognition personalization.
+
+Automatic learning enables the collection and storage of text and ink written by the user in order to help adapt handwriting recognition to the vocabulary and handwriting style of the user.  Text that is collected includes all outgoing messages in Windows Mail, and MAPI enabled email clients, as well as URLs from the Internet Explorer browser history. The information that is stored includes word frequency and new words not already known to the handwriting recognition engines (for example, proper names and acronyms). Deleting email content or the browser history does not delete the stored personalization data. Ink entered through Input Panel is collected and stored.
+
+> [!NOTE]
+> Automatic learning of both text and ink might not be available for all languages, even when handwriting personalization is available. See Tablet PC Help for more information.
+
+If you enable this policy setting, automatic learning stops and any stored data is deleted. Users cannot configure this setting in Control Panel.
+
+If you disable this policy setting, automatic learning is turned on. Users cannot configure this policy setting in Control Panel. Collected data is only used for handwriting recognition, if handwriting personalization is turned on.
+
+If you do not configure this policy, users can choose to enable or disable automatic learning either from the Handwriting tab in the Tablet Settings in Control Panel or from the opt-in dialog.
+
+This policy setting is related to the "Turn off handwriting personalization" policy setting.
+
+> [!NOTE]
+> The amount of stored ink is limited to 50 MB and the amount of text information to approximately 5 MB. When these limits are reached and new data is collected, old data is deleted to make room for more recent data.
+>
+> Handwriting personalization works only for Microsoft handwriting recognizers, and not with third-party recognizers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off automatic learning*
+-   GP name: *ImplicitDataCollectionOff_1*
+-   GP path: *Control Panel\Regional and Language Options\Handwriting personalization*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-implicitdatacollectionoff-2"></a>**ADMX_Globalization/ImplicitDataCollectionOff_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting turns off the automatic learning component of handwriting recognition personalization.
+
+Automatic learning enables the collection and storage of text and ink written by the user in order to help adapt handwriting recognition to the vocabulary and handwriting style of the user.  Text that is collected includes all outgoing messages in Windows Mail, and MAPI enabled email clients, as well as URLs from the Internet Explorer browser history. The information that is stored includes word frequency and new words not already known to the handwriting recognition engines (for example, proper names and acronyms). Deleting email content or the browser history does not delete the stored personalization data. Ink entered through Input Panel is collected and stored.
+
+> [!NOTE]
+> Automatic learning of both text and ink might not be available for all languages, even when handwriting personalization is available. See Tablet PC Help for more information.
+
+If you enable this policy setting, automatic learning stops and any stored data is deleted. Users cannot configure this setting in Control Panel.
+
+If you disable this policy setting, automatic learning is turned on. Users cannot configure this policy setting in Control Panel. Collected data is only used for handwriting recognition, if handwriting personalization is turned on.
+
+If you do not configure this policy, users can choose to enable or disable automatic learning either from the Handwriting tab in the Tablet Settings in Control Panel or from the opt-in dialog.
+
+This policy setting is related to the "Turn off handwriting personalization" policy setting.
+
+> [!NOTE]
+> The amount of stored ink is limited to 50 MB and the amount of text information to approximately 5 MB. When these limits are reached and new data is collected, old data is deleted to make room for more recent data.
+> 
+> Handwriting personalization works only for Microsoft handwriting recognizers, and not with third-party recognizers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off automatic learning*
+-   GP name: *ImplicitDataCollectionOff_2*
+-   GP path: *Control Panel\Regional and Language Options\Handwriting personalization*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-localesystemrestrict"></a>**ADMX_Globalization/LocaleSystemRestrict**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts the permitted system locales to the specified list. If the list is empty, it locks the system locale to its current value. This policy setting does not change the existing system locale; however, the next time that an administrator attempts to change the computer's system locale, they will be restricted to the specified list.
+
+The locale list is specified using language names, separated by a semicolon (;). For example, en-US is English (United States). Specifying "en-US;en-CA" would restrict the system locale to English (United States) and English (Canada).
+
+If you enable this policy setting, administrators can select a system locale only from the specified system locale list.
+
+If you disable or do not configure this policy setting, administrators can select any system locale shipped with the operating system.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict system locales*
+-   GP name: *LocaleSystemRestrict*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-localeuserrestrict-1"></a>**ADMX_Globalization/LocaleUserRestrict_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts users on a computer to the specified list of user locales. If the list is empty, it locks all user locales to their current values. This policy setting does not change existing user locale settings; however, the next time a user attempts to change their user locale, their choices will be restricted to locales in this list.
+
+To set this policy setting on a per-user basis, make sure that you do not configure the per-computer policy setting.
+
+The locale list is specified using language tags, separated by a semicolon (;). For example, en-US is English (United States). Specifying "en-CA;fr-CA" would restrict the user locale to English (Canada) and French (Canada).
+
+If you enable this policy setting, only locales in the specified locale list can be selected by users.
+
+If you disable or do not configure this policy setting, users can select any locale installed on the computer, unless restricted by the "Disallow selection of Custom Locales" policy setting.  If this policy setting is enabled at the computer level, it cannot be disabled by a per-user policy. If this policy setting is disabled at the computer level, the per-user policy is ignored. If this policy setting is not configured at the computer level, restrictions are based on per-user policies.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict user locales*
+-   GP name: *LocaleUserRestrict_1*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-localeuserrestrict-2"></a>**ADMX_Globalization/LocaleUserRestrict_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts users on a computer to the specified list of user locales. If the list is empty, it locks all user locales to their current values. This policy setting does not change existing user locale settings; however, the next time a user attempts to change their user locale, their choices will be restricted to locales in this list.
+
+To set this policy setting on a per-user basis, make sure that you do not configure the per-computer policy setting.
+
+The locale list is specified using language tags, separated by a semicolon (;). For example, en-US is English (United States). Specifying "en-CA;fr-CA" would restrict the user locale to English (Canada) and French (Canada).
+
+If you enable this policy setting, only locales in the specified locale list can be selected by users.
+
+If you disable or do not configure this policy setting, users can select any locale installed on the computer, unless restricted by the "Disallow selection of Custom Locales" policy setting.
+
+If this policy setting is enabled at the computer level, it cannot be disabled by a per-user policy. If this policy setting is disabled at the computer level, the per-user policy is ignored. If this policy setting is not configured at the computer level, restrictions are based on per-user policies.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict user locales*
+-   GP name: *LocaleUserRestrict_2*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-lockmachineuilanguage"></a>**ADMX_Globalization/LockMachineUILanguage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts the Windows UI language for all users.
+
+This is a policy setting for computers with more than one UI language installed.
+
+If you enable this policy setting, the UI language of Windows menus and dialogs for systems with more than one language will follow the language specified by the administrator as the system UI languages. The UI language selected by the user will be ignored if it is different than any of the system UI languages.
+
+If you disable or do not configure this policy setting, the user can specify which UI language is used.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restricts the UI language Windows uses for all logged users*
+-   GP name: *LockMachineUILanguage*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-lockuseruilanguage"></a>**ADMX_Globalization/LockUserUILanguage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts the Windows UI language for specific users.
+
+This policy setting applies to computers with more than one UI language installed.
+
+If you enable this policy setting, the UI language of Windows menus and dialogs for systems with more than one language is restricted to a specified language for the selected user. If the specified language is not installed on the target computer or you disable this policy setting, the language selection defaults to the language selected by the user.
+
+If you disable or do not configure this policy setting, there is no restriction on which language users should use.
+
+To enable this policy setting in Windows Server 2003, Windows XP, or Windows 2000, to use the "Restrict selection of Windows menus and dialogs language" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restricts the UI languages Windows should use for the selected user*
+-   GP name: *LockUserUILanguage*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-machineuilanguageoverwrite"></a>**ADMX_Globalization/MachineUILanguageOverwrite**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls which UI language is used for computers with more than one UI language installed.
+
+If you enable this policy setting, the UI language of Windows menus and dialogs for systems with more than one language is restricted to a specified language. If the specified language is not installed on the target computer or you disable this policy setting, the language selection defaults to the language selected by the local administrator.
+
+If you disable or do not configure this policy setting, there is no restriction of a specific language used for the Windows menus and dialogs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Force selected system UI language to overwrite the user UI language*
+-   GP name: *MachineUILanguageOverwrite*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-preventgeoidchange-1"></a>**ADMX_Globalization/PreventGeoIdChange_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from changing their user geographical location (GeoID).
+
+If you enable this policy setting, users cannot change their GeoID.
+
+If you disable or do not configure this policy setting, users may select any GeoID.
+
+If you enable this policy setting at the computer level, it cannot be disabled by a per-user policy setting. If you disable this policy setting at the computer level, the per-user policy is ignored. If you do not configure this policy setting at the computer level, restrictions are based on per-user policy settings.
+
+To set this policy setting on a per-user basis, make sure that the per-computer policy setting is not configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow changing of geographic location*
+-   GP name: *PreventGeoIdChange_1*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-preventgeoidchange-2"></a>**ADMX_Globalization/PreventGeoIdChange_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from changing their user geographical location (GeoID).
+
+If you enable this policy setting, users cannot change their GeoID.
+
+If you disable or do not configure this policy setting, users may select any GeoID.
+
+If you enable this policy setting at the computer level, it cannot be disabled by a per-user policy setting. If you disable this policy setting at the computer level, the per-user policy is ignored. If you do not configure this policy setting at the computer level, restrictions are based on per-user policy settings.
+
+To set this policy setting on a per-user basis, make sure that the per-computer policy setting is not configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow changing of geographic location*
+-   GP name: *PreventGeoIdChange_2*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-preventuseroverrides-1"></a>**ADMX_Globalization/PreventUserOverrides_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents the user from customizing their locale by changing their user overrides.
+
+Any existing overrides in place when this policy is enabled will be frozen. To remove existing user overrides, first reset the user(s) values to the defaults and then apply this policy.
+
+When this policy setting is enabled, users can still choose alternate locales installed on the system unless prevented by other policies, however, they will be unable to customize those choices.
+
+The user cannot customize their user locale with user overrides.
+
+If this policy setting is disabled or not configured, then the user can customize their user locale overrides.
+
+If this policy is set to Enabled at the computer level, then it cannot be disabled by a per-User policy. If this policy is set to Disabled at the computer level, then the per-User policy will be ignored. If this policy is set to Not Configured at the computer level, then restrictions will be based on per-User policies.
+
+To set this policy on a per-user basis, make sure that the per-computer policy is set to Not Configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow user override of locale settings*
+-   GP name: *PreventUserOverrides_1*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-preventuseroverrides-2"></a>**ADMX_Globalization/PreventUserOverrides_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents the user from customizing their locale by changing their user overrides.
+
+Any existing overrides in place when this policy is enabled will be frozen. To remove existing user overrides, first reset the user(s) values to the defaults and then apply this policy.
+
+When this policy setting is enabled, users can still choose alternate locales installed on the system unless prevented by other policies, however, they will be unable to customize those choices.
+
+The user cannot customize their user locale with user overrides.
+
+If this policy setting is disabled or not configured, then the user can customize their user locale overrides.
+
+If this policy is set to Enabled at the computer level, then it cannot be disabled by a per-User policy. If this policy is set to Disabled at the computer level, then the per-User policy will be ignored. If this policy is set to Not Configured at the computer level, then restrictions will be based on per-User policies.
+
+To set this policy on a per-user basis, make sure that the per-computer policy is set to Not Configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow user override of locale settings*
+-   GP name: *PreventUserOverrides_2*
+-   GP path: *System\Locale Services*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-restrictuilangselect"></a>**ADMX_Globalization/RestrictUILangSelect**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts users to the specified language by disabling the menus and dialog box controls in the Region settings control panel. If the specified language is not installed on the target computer, the language selection defaults to English.
+
+If you enable this policy setting, the dialog box controls in the Regional and Language Options control panel are not accessible to the logged on user. This prevents users from specifying a language different than the one used.
+
+To enable this policy setting in Windows Vista, use the "Restricts the UI languages Windows should use for the selected user" policy setting.
+
+If you disable or do not configure this policy setting, the logged-on user can access the dialog box controls in the Regional and Language Options control panel to select any available UI language.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict selection of Windows menus and dialogs language*
+-   GP name: *RestrictUILangSelect*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-turnoffautocorrectmisspelledwords"></a>**ADMX_Globalization/TurnOffAutocorrectMisspelledWords**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy turns off the autocorrect misspelled words option. This does not, however, prevent the user or an application from changing the setting programmatically.
+
+The autocorrect misspelled words option controls whether or not errors in typed text will be automatically corrected.
+
+If the policy is Enabled, then the option will be locked to not autocorrect misspelled words.
+
+If the policy is Disabled or Not Configured, then the user will be free to change the setting according to their preference.
+
+Note that the availability and function of this setting is dependent on supported languages being enabled.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off autocorrect misspelled words*
+-   GP name: *TurnOffAutocorrectMisspelledWords*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-turnoffhighlightmisspelledwords"></a>**ADMX_Globalization/TurnOffHighlightMisspelledWords**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy turns off the highlight misspelled words option. This does not, however, prevent the user or an application from changing the setting programmatically.
+
+The highlight misspelled words option controls whether or next spelling errors in typed text will be highlighted.
+
+If the policy is Enabled, then the option will be locked to not highlight misspelled words.
+
+If the policy is Disabled or Not Configured, then the user will be free to change the setting according to their preference.
+
+Note that the availability and function of this setting is dependent on supported languages being enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off highlight misspelled words*
+-   GP name: *TurnOffHighlightMisspelledWords*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-turnoffinsertspace"></a>**ADMX_Globalization/TurnOffInsertSpace**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy turns off the insert a space after selecting a text prediction option. This does not, however, prevent the user or an application from changing the setting programmatically.
+
+The insert a space after selecting a text prediction option controls whether or not a space will be inserted after the user selects a text prediction candidate when using the on-screen keyboard.
+
+If the policy is Enabled, then the option will be locked to not insert a space after selecting a text prediction.
+
+If the policy is Disabled or Not Configured, then the user will be free to change the setting according to their preference.
+
+Note that the availability and function of this setting is dependent on supported languages being enabled.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off insert a space after selecting a text prediction*
+-   GP name: *TurnOffInsertSpace*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-turnoffoffertextpredictions"></a>**ADMX_Globalization/TurnOffOfferTextPredictions**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy turns off the offer text predictions as I type option. This does not, however, prevent the user or an application from changing the setting programmatically.
+
+The offer text predictions as I type option controls whether or not text prediction suggestions will be presented to the user on the on-screen keyboard.
+
+If the policy is Enabled, then the option will be locked to not offer text predictions.
+
+If the policy is Disabled or Not Configured, then the user will be free to change the setting according to their preference.
+
+Note that the availability and function of this setting is dependent on supported languages being enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off offer text predictions as I type*
+-   GP name: *TurnOffOfferTextPredictions*
+-   GP path: *Control Panel\Regional and Language Options*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-globalization-y2k"></a>**ADMX_Globalization/Y2K**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how programs interpret two-digit years.
+
+This policy setting affects only the programs that use this Windows feature to interpret two-digit years. If a program does not interpret two-digit years correctly, consult the documentation or manufacturer of the program.
+
+If you enable this policy setting, the system specifies the largest two-digit year interpreted as being preceded by 20. All numbers less than or equal to the specified value are interpreted as being preceded by 20. All numbers greater than the specified value are interpreted as being preceded by 19.
+
+For example, the default value, 2029, specifies that all two-digit years less than or equal to 29 (00 to 29) are interpreted as being preceded by 20, that is 2000 to 2029. Conversely, all two-digit years greater than 29 (30 to 99) are interpreted as being preceded by 19, that is, 1930 to 1999.
+
+If you disable or do not configure this policy setting, Windows does not interpret two-digit year formats using this scheme for the program.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Century interpretation for Year 2000*
+-   GP name: *Y2K*
+-   GP path: *System*
+-   GP ADMX file name: *Globalization.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 6c088caa45a70bb004c68ec7af18508b1391d04d Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 14 Dec 2020 16:12:44 -0800
Subject: [PATCH 057/825] Added RemoteAssistance policeis

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   2 +
 .../policy-configuration-service-provider.md  |  11 +
 .../mdm/policy-csp-admx-remoteassistance.md   | 205 ++++++++++++++++++
 4 files changed, 219 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-remoteassistance.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index ace9da625a..7068f51134 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -218,6 +218,7 @@
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
 #### [ADMX_Reliability](policy-csp-admx-reliability.md)
+#### [ADMX_RemoteAssistance](policy-csp-admx-remoteassistance.md)
 #### [ADMX_RemovableStorage](policy-csp-admx-removablestorage.md)
 #### [ADMX_RPC](policy-csp-admx-rpc.md)
 #### [ADMX_Scripts](policy-csp-admx-scripts.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index eb920b0fb5..2480c5ab09 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -471,6 +471,8 @@ ms.date: 10/08/2020
 - [ADMX_Reliability/PCH_ReportShutdownEvents](./policy-csp-admx-reliability.md#admx-reliability-pch-reportshutdownevents)
 - [ADMX_Reliability/ShutdownEventTrackerStateFile](./policy-csp-admx-reliability.md#admx-reliability-shutdowneventtrackerstatefile)
 - [ADMX_Reliability/ShutdownReason](./policy-csp-admx-reliability.md#admx-reliability-shutdownreason)
+- [ADMX_RemoteAssistance/RA_EncryptedTicketOnly](./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-encryptedticketonly)
+- [ADMX_RemoteAssistance/RA_Optimize_Bandwidth](./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-optimize-bandwidth)
 - [ADMX_RemovableStorage/AccessRights_RebootTime_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-1)
 - [ADMX_RemovableStorage/AccessRights_RebootTime_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-2)
 - [ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyexecute-access-2)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 58bfd3a1a2..de3ab67cea 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1732,6 +1732,17 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>  
 
+### ADMX_RemoteAssistance policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-encryptedticketonly" id="admx-remoteassistance-ra-encryptedticketonly">ADMX_RemoteAssistance/RA_EncryptedTicketOnly</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-optimize-bandwidth" id="admx-remoteassistance-ra-optimize-bandwidth">ADMX_RemoteAssistance/RA_Optimize_Bandwidth</a>
+  </dd>
+</dl>
+
 ### ADMX_RemovableStorage policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-remoteassistance.md b/windows/client-management/mdm/policy-csp-admx-remoteassistance.md
new file mode 100644
index 0000000000..6d1135eab4
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-remoteassistance.md
@@ -0,0 +1,205 @@
+---
+title: Policy CSP - ADMX_RemoteAssistance
+description: Policy CSP - ADMX_RemoteAssistance
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/14/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_RemoteAssistance
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_RemoteAssistance policies  
+
+<dl>
+  <dd>
+    <a href="#admx-remoteassistance-ra-encryptedticketonly">ADMX_RemoteAssistance/RA_EncryptedTicketOnly</a>
+  </dd>
+  <dd>
+    <a href="#admx-remoteassistance-ra-optimize-bandwidth">ADMX_RemoteAssistance/RA_Optimize_Bandwidth</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-remoteassistance-ra-encryptedticketonly"></a>**ADMX_RemoteAssistance/RA_EncryptedTicketOnly**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables Remote Assistance invitations to be generated with improved encryption so that only computers running this version (or later versions) of the operating system can connect. This policy setting does not affect Remote Assistance connections that are initiated by instant messaging contacts or the unsolicited Offer Remote Assistance.
+
+If you enable this policy setting, only computers running this version (or later versions) of the operating system can connect to this computer.
+
+If you disable this policy setting, computers running this version and a previous version of the operating system can connect to this computer.
+
+If you do not configure this policy setting, users can configure the setting in System Properties in the Control Panel.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow only Windows Vista or later connections*
+-   GP name: *RA_EncryptedTicketOnly*
+-   GP path: *System\Remote Assistance*
+-   GP ADMX file name: *RemoteAssistance.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-remoteassistance-ra-optimize-bandwidth"></a>**ADMX_RemoteAssistance/RA_Optimize_Bandwidth**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to improve performance in low bandwidth scenarios.
+
+This setting is incrementally scaled from "No optimization" to "Full optimization".  Each incremental setting includes the previous optimization setting.
+
+For example:
+
+"Turn off background" will include the following optimizations:
+
+- No full window drag
+- Turn off background
+
+"Full optimization" will include the following optimizations:
+
+- Use 16-bit color (8-bit color in Windows Vista)
+- Turn off font smoothing (not supported in Windows Vista)
+- No full window drag
+- Turn off background
+
+If you enable this policy setting, bandwidth optimization occurs at the level specified.
+
+If you disable this policy setting, application-based settings are used.
+
+If you do not configure this policy setting, application-based settings are used.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn on bandwidth optimization*
+-   GP name: *RA_Optimize_Bandwidth*
+-   GP path: *System\Remote Assistance*
+-   GP ADMX file name: *RemoteAssistance.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 8c6f6eb20929200bcc2c06bae033bd8374e5044a Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 15 Dec 2020 14:00:38 +0100
Subject: [PATCH 058/825] Important -> IMPORTANT (consistency)

- Add uppercase for the Important blob.

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/respond-file-alerts.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index 766691ac1e..ef8a82a89f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -133,7 +133,7 @@ You can roll back and remove a file from quarantine if you’ve determined that
 >
 > Defender for Endpoint will restore all custom blocked files that were quarantined on this device in the last 30 days.
 
-> [!Important]
+> [!IMPORTANT]
 > A file that was quarantined as a potential network threat might not be recoverable. If a user attempts to restore the file after quarantine, that file might not be accessible. This can be due to the system no longer having network credentials to access the file. Typically, this is a result of a temporary log on to a system or shared folder and the access tokens expired.
 
 ## Add indicator to block or allow a file

From 32274198ec5a3a29ac03277f0a01d9bc3d9285f1 Mon Sep 17 00:00:00 2001
From: Crimsonfox89 <40465227+Crimsonfox89@users.noreply.github.com>
Date: Tue, 15 Dec 2020 14:21:33 +0000
Subject: [PATCH 059/825] Update
 windows/security/information-protection/tpm/tpm-fundamentals.md

Language agnostic

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../security/information-protection/tpm/tpm-fundamentals.md   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/information-protection/tpm/tpm-fundamentals.md b/windows/security/information-protection/tpm/tpm-fundamentals.md
index 93210372ea..462656a2ad 100644
--- a/windows/security/information-protection/tpm/tpm-fundamentals.md
+++ b/windows/security/information-protection/tpm/tpm-fundamentals.md
@@ -151,5 +151,5 @@ The Windows TPM-based smart card, which is a virtual smart card, can be configur
 
 - [Trusted Platform Module](trusted-platform-module-top-node.md) (list of topics)
 - [TPM Cmdlets in Windows PowerShell](https://docs.microsoft.com/powershell/module/trustedplatformmodule/)
-- [TPM WMI providers](https://docs.microsoft.com/en-gb/windows/win32/secprov/security-wmi-providers-reference)
-- [Prepare your organization for BitLocker: Planning and Policies - TPM configurations](https://docs.microsoft.com/en-gb/windows/security/information-protection/bitlocker/prepare-your-organization-for-bitlocker-planning-and-policies#tpm-hardware-configurations)
+- [TPM WMI providers](https://docs.microsoft.com/windows/win32/secprov/security-wmi-providers-reference)
+- [Prepare your organization for BitLocker: Planning and Policies - TPM configurations](https://docs.microsoft.com/windows/security/information-protection/bitlocker/prepare-your-organization-for-bitlocker-planning-and-policies#tpm-hardware-configurations)

From ac09e26c58d592e3d9b93acfe91f5246b3813d31 Mon Sep 17 00:00:00 2001
From: pianofab <pianofab+github@gmail.com>
Date: Tue, 15 Dec 2020 14:00:55 -0800
Subject: [PATCH 060/825] Update whats-new-windows-10-version-20H2.md

---
 windows/whats-new/whats-new-windows-10-version-20H2.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/whats-new/whats-new-windows-10-version-20H2.md b/windows/whats-new/whats-new-windows-10-version-20H2.md
index f1046db593..ec7ffb671e 100644
--- a/windows/whats-new/whats-new-windows-10-version-20H2.md
+++ b/windows/whats-new/whats-new-windows-10-version-20H2.md
@@ -104,7 +104,7 @@ With specialized hardware and software components available on devices shipping
 
 ### Windows Sandbox
 
-New polices for [Windows Sandbox](https://docs.microsoft.com/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview) are available in this release. For more information, see [Policy CSP - WindowsSandbox](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-windowssandbox).
+New policies for [Windows Sandbox](https://docs.microsoft.com/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview) are available in this release. For more information, see [Policy CSP - WindowsSandbox](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-windowssandbox).
 
 ### Windows Virtual Desktop (WVD)
 

From fa7ff33a3ae22711e9040bfc9958ce7299d727f3 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 14:54:58 -0800
Subject: [PATCH 061/825] Create defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
new file mode 100644
index 0000000000..6ea027c1ee
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -0,0 +1,33 @@
+---
+title: Address false positives/negatives in Microsoft Defender for Endpoint
+description: Learn how to handle false positives or false negatives in Microsoft Defender for Endpoint.
+keywords: alert, exclusion, defender atp, false positive, false negative
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.technology: windows
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: deniseb
+author: denisebmsft
+ms.date: 12/15/2020
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: 
+- m365-security-compliance 
+- m365initiative-defender-endpoint 
+ms.topic: conceptual
+ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs, yonghree
+ms.custom: AIR
+---
+
+# Address false positives/negatives in Microsoft Defender for Endpoint
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+**Applies to**
+
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
+

From 6ce84f2c4dbacc71486731a580b322af7bd12486 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 14:57:19 -0800
Subject: [PATCH 062/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 6ea027c1ee..b3098ec0dd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -20,7 +20,7 @@ ms.collection:
 - m365initiative-defender-endpoint 
 ms.topic: conceptual
 ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs, yonghree
-ms.custom: AIR
+ms.custom: FPFN
 ---
 
 # Address false positives/negatives in Microsoft Defender for Endpoint
@@ -31,3 +31,5 @@ ms.custom: AIR
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
+Did Microsoft Defender for Endpoint identify an artifact as malicious, even though it wasn't? Are files or processes that are not a threat being stopped in their tracks by Defender for Endpoint? Or, did Defender for Endpoint miss something? Use this article as a guide for addressing false positives or false negatives in Defender for Endpoint.
+

From fda53f2bd94c7d4e2691922fad5982a7c5b08a0e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 15:10:19 -0800
Subject: [PATCH 063/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index b3098ec0dd..72ede58c51 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,3 +33,6 @@ ms.custom: FPFN
 
 Did Microsoft Defender for Endpoint identify an artifact as malicious, even though it wasn't? Are files or processes that are not a threat being stopped in their tracks by Defender for Endpoint? Or, did Defender for Endpoint miss something? Use this article as a guide for addressing false positives or false negatives in Defender for Endpoint.
 
+| Step | Description |
+|:---|:---|
+| 1. Identify a false positive/negative |   |
\ No newline at end of file

From db4a4458509396d7319faee1d787ed2ec8b7f626 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 15 Dec 2020 15:12:33 -0800
Subject: [PATCH 064/825] Added Printer ADMX-backed policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   27 +
 .../policy-configuration-service-provider.md  |   84 +
 .../mdm/policy-csp-admx-printing.md           | 2027 +++++++++++++++++
 4 files changed, 2139 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-printing.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 555d34e037..5082f05ed7 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -228,6 +228,7 @@
 #### [ADMX_PeerToPeerCaching](policy-csp-admx-peertopeercaching.md)
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
+#### [ADMX_Printing](policy-csp-admx-printing.md)
 #### [ADMX_Programs](policy-csp-admx-programs.md)
 #### [ADMX_Reliability](policy-csp-admx-reliability.md)
 #### [ADMX_RemoteAssistance](policy-csp-admx-remoteassistance.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 8acefc3442..ec137198dc 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -687,6 +687,33 @@ ms.date: 10/08/2020
 - [ADMX_PowerShellExecutionPolicy/EnableScripts](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enablescripts)
 - [ADMX_PowerShellExecutionPolicy/EnableTranscripting](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enabletranscripting)
 - [ADMX_PowerShellExecutionPolicy/EnableUpdateHelpDefaultSourcePath](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enableupdatehelpdefaultsourcepath)
+- [ADMX_Printing/AllowWebPrinting](./policy-csp-admx-printing.md#admx-printing-allowwebprinting)
+- [ADMX_Printing/ApplicationDriverIsolation](./policy-csp-admx-printing.md#admx-printing-applicationdriverisolation)
+- [ADMX_Printing/CustomizedSupportUrl](./policy-csp-admx-printing.md#admx-printing-customizedsupporturl)
+- [ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate](./policy-csp-admx-printing.md#admx-printing-donotinstallcompatibledriverfromwindowsupdate)
+- [ADMX_Printing/DomainPrinters](./policy-csp-admx-printing.md#admx-printing-domainprinters)
+- [ADMX_Printing/DownlevelBrowse](./policy-csp-admx-printing.md#admx-printing-downlevelbrowse)
+- [ADMX_Printing/EMFDespooling](./policy-csp-admx-printing.md#admx-printing-emfdespooling)
+- [ADMX_Printing/ForceSoftwareRasterization](./policy-csp-admx-printing.md#admx-printing-forcesoftwarerasterization)
+- [ADMX_Printing/IntranetPrintersUrl](./policy-csp-admx-printing.md#admx-printing-intranetprintersurl)
+- [ADMX_Printing/KMPrintersAreBlocked](./policy-csp-admx-printing.md#admx-printing-kmprintersareblocked)
+- [ADMX_Printing/LegacyDefaultPrinterMode](./policy-csp-admx-printing.md#admx-printing-legacydefaultprintermode)
+- [ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS](./policy-csp-admx-printing.md#admx-printing-mxdwuselegacyoutputformatmsxps)
+- [ADMX_Printing/NoDeletePrinter](./policy-csp-admx-printing.md#admx-printing-nodeleteprinter)
+- [ADMX_Printing/NonDomainPrinters](./policy-csp-admx-printing.md#admx-printing-nondomainprinters)
+- [ADMX_Printing/PackagePointAndPrintOnly](./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly)
+- [ADMX_Printing/PackagePointAndPrintOnly_Win7](./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly-win7)
+- [ADMX_Printing/PackagePointAndPrintServerList](./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist)
+- [ADMX_Printing/PackagePointAndPrintServerList_Win7](./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist-win7)
+- [ADMX_Printing/PhysicalLocation](./policy-csp-admx-printing.md#admx-printing-physicallocation)
+- [ADMX_Printing/PhysicalLocationSupport](./policy-csp-admx-printing.md#admx-printing-physicallocationsupport)
+- [ADMX_Printing/PrintDriverIsolationExecutionPolicy](./policy-csp-admx-printing.md#admx-printing-printdriverisolationexecutionpolicy
+)
+- [ADMX_Printing/PrintDriverIsolationOverrideCompat](./policy-csp-admx-printing.md#admx-printing-printdriverisolationoverridecompat)
+- [ADMX_Printing/PrinterDirectorySearchScope](./policy-csp-admx-printing.md#admx-printing-printerdirectorysearchscope)
+- [ADMX_Printing/PrinterServerThread](./policy-csp-admx-printing.md#admx-printing-printerserverthread)
+- [ADMX_Printing/ShowJobTitleInEventLogs](./policy-csp-admx-printing.md#admx-printing-showjobtitleineventlogs)
+- [ADMX_Printing/V4DriverDisallowPrinterExtension](./policy-csp-admx-printing.md#admx-printing-v4driverdisallowprinterextension)
 - [ADMX_Programs/NoDefaultPrograms](./policy-csp-admx-programs.md#admx-programs-nodefaultprograms)
 - [ADMX_Programs/NoGetPrograms](./policy-csp-admx-programs.md#admx-programs-nogetprograms)
 - [ADMX_Programs/NoInstalledUpdates](./policy-csp-admx-programs.md#admx-programs-noinstalledupdates)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 9b53413efa..a1a5453c94 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -2428,6 +2428,90 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Printing policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-allowwebprinting" id="admx-printing-allowwebprinting">ADMX_Printing/AllowWebPrinting</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-applicationdriverisolation" id="admx-printing-applicationdriverisolation">ADMX_Printing/ApplicationDriverIsolation</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-customizedsupporturl" id="admx-printing-customizedsupporturl">ADMX_Printing/CustomizedSupportUrl</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-donotinstallcompatibledriverfromwindowsupdate" id="admx-printing-donotinstallcompatibledriverfromwindowsupdate">ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-domainprinters" id="admx-printing-domainprinters">ADMX_Printing/DomainPrinters</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-downlevelbrowse" id="admx-printing-downlevelbrowse">ADMX_Printing/DownlevelBrowse</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-emfdespooling" id="admx-printing-emfdespooling">ADMX_Printing/EMFDespooling</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-forcesoftwarerasterization" id="admx-printing-forcesoftwarerasterization">ADMX_Printing/ForceSoftwareRasterization</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-intranetprintersurl" id="admx-printing-intranetprintersurl">ADMX_Printing/IntranetPrintersUrl</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-kmprintersareblocked" id="admx-printing-kmprintersareblocked">ADMX_Printing/KMPrintersAreBlocked</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-legacydefaultprintermode" id="admx-printing-legacydefaultprintermode">ADMX_Printing/LegacyDefaultPrinterMode</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-mxdwuselegacyoutputformatmsxps" id="admx-printing-mxdwuselegacyoutputformatmsxps">ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-nodeleteprinter" id="admx-printing-nodeleteprinter">ADMX_Printing/NoDeletePrinter</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-nondomainprinters" id="admx-printing-nondomainprinters">ADMX_Printing/NonDomainPrinters</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly" id="admx-printing-packagepointandprintonly">ADMX_Printing/PackagePointAndPrintOnly</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly-win7" id="admx-printing-packagepointandprintonly-win7">ADMX_Printing/PackagePointAndPrintOnly_Win7</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist" id="admx-printing-packagepointandprintserverlist">ADMX_Printing/PackagePointAndPrintServerList</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist-win7" id="admx-printing-packagepointandprintserverlist-win7">ADMX_Printing/PackagePointAndPrintServerList_Win7</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-physicallocation" id="admx-printing-physicallocation">ADMX_Printing/PhysicalLocation</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-physicallocationsupport" id="admx-printing-physicallocationsupport">ADMX_Printing/PhysicalLocationSupport</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-printdriverisolationexecutionpolicy
+" id="admx-printing-printdriverisolationexecutionpolicy">ADMX_Printing/PrintDriverIsolationExecutionPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-printdriverisolationoverridecompat" id="admx-printing-printdriverisolationoverridecompat">ADMX_Printing/PrintDriverIsolationOverrideCompat</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-printerdirectorysearchscope" id="admx-printing-printerdirectorysearchscope">ADMX_Printing/PrinterDirectorySearchScope</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-printerserverthread" id="admx-printing-printerserverthread">ADMX_Printing/PrinterServerThread</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-showjobtitleineventlogs" id="admx-printing-showjobtitleineventlogs">ADMX_Printing/ShowJobTitleInEventLogs</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing.md#admx-printing-v4driverdisallowprinterextension" id="admx-printing-v4driverdisallowprinterextension">ADMX_Printing/V4DriverDisallowPrinterExtension</a>
+  </dd>
+</dl>
+
 ### ADMX_Programs policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-printing.md b/windows/client-management/mdm/policy-csp-admx-printing.md
new file mode 100644
index 0000000000..628d572650
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-printing.md
@@ -0,0 +1,2027 @@
+---
+title: Policy CSP - ADMX_Printing
+description: Policy CSP - ADMX_Printing
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/15/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Printing
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Printing policies  
+
+<dl>
+  <dd>
+    <a href="#admx-printing-allowwebprinting">ADMX_Printing/AllowWebPrinting</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-applicationdriverisolation">ADMX_Printing/ApplicationDriverIsolation</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-customizedsupporturl">ADMX_Printing/CustomizedSupportUrl</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-donotinstallcompatibledriverfromwindowsupdate">ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-domainprinters">ADMX_Printing/DomainPrinters</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-downlevelbrowse">ADMX_Printing/DownlevelBrowse</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-emfdespooling">ADMX_Printing/EMFDespooling</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-forcesoftwarerasterization">ADMX_Printing/ForceSoftwareRasterization</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-intranetprintersurl">ADMX_Printing/IntranetPrintersUrl</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-kmprintersareblocked">ADMX_Printing/KMPrintersAreBlocked</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-legacydefaultprintermode">ADMX_Printing/LegacyDefaultPrinterMode</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-mxdwuselegacyoutputformatmsxps">ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-nodeleteprinter">ADMX_Printing/NoDeletePrinter</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-nondomainprinters">ADMX_Printing/NonDomainPrinters</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-packagepointandprintonly">ADMX_Printing/PackagePointAndPrintOnly</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-packagepointandprintonly-win7">ADMX_Printing/PackagePointAndPrintOnly_Win7</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-packagepointandprintserverlist">ADMX_Printing/PackagePointAndPrintServerList</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-packagepointandprintserverlist-win7">ADMX_Printing/PackagePointAndPrintServerList_Win7</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-physicallocation">ADMX_Printing/PhysicalLocation</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-physicallocationsupport">ADMX_Printing/PhysicalLocationSupport</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-printdriverisolationexecutionpolicy
+">ADMX_Printing/PrintDriverIsolationExecutionPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-printdriverisolationoverridecompat">ADMX_Printing/PrintDriverIsolationOverrideCompat</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-printerdirectorysearchscope">ADMX_Printing/PrinterDirectorySearchScope</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-printerserverthread">ADMX_Printing/PrinterServerThread</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-showjobtitleineventlogs">ADMX_Printing/ShowJobTitleInEventLogs</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing-v4driverdisallowprinterextension">ADMX_Printing/V4DriverDisallowPrinterExtension</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-allowwebprinting"></a>**ADMX_Printing/AllowWebPrinting**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Internet printing lets you display printers on Web pages so that printers can be viewed, managed, and used across the Internet or an intranet.
+
+If you enable this policy setting, Internet printing is activated on this server.
+
+If you disable this policy setting or do not configure it, Internet printing is not activated.
+
+Internet printing is an extension of Internet Information Services (IIS). To use Internet printing, IIS must be installed, and printing support and this setting must be enabled.
+
+> [!NOTE]
+> This setting affects the server side of Internet printing only. It does not prevent the print client on the computer from printing across the Internet.
+
+Also, see the "Custom support URL in the Printers folder's left pane" setting in this folder and the "Browse a common Web site to find printers" setting in User Configuration\Administrative Templates\Control Panel\Printers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Activate Internet printing*
+-   GP name: *AllowWebPrinting*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-applicationdriverisolation"></a>**ADMX_Printing/ApplicationDriverIsolation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines if print driver components are isolated from applications instead of normally loading them into applications. Isolating print drivers greatly reduces the risk of a print driver failure causing an application crash.
+
+Not all applications support driver isolation. By default, Microsoft Excel 2007, Excel 2010, Word 2007, Word 2010 and certain other applications are configured to support it. Other applications may also be capable of isolating print drivers, depending on whether they are configured for it.
+
+If you enable or do not configure this policy setting, then applications that are configured to support driver isolation will be isolated.
+
+If you disable this policy setting, then print drivers will be loaded within all associated application processes.
+
+> [!NOTE]
+> - This policy setting applies only to applications opted into isolation.
+> - This policy setting applies only to print drivers loaded by applications. Print drivers loaded by the print spooler are not affected.
+> - This policy setting is only checked once during the lifetime of a process. After changing the policy, a running application must be relaunched before settings take effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Isolate print drivers from applications*
+-   GP name: *ApplicationDriverIsolation*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-customizedsupporturl"></a>**ADMX_Printing/CustomizedSupportUrl**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. By default, the Printers folder includes a link to the Microsoft Support Web page called "Get help with printing". It can also include a link to a Web page supplied by the vendor of the currently selected printer.
+
+If you enable this policy setting, you replace the "Get help with printing" default link with a link to a Web page customized for your enterprise.
+
+If you disable this setting or do not configure it, or if you do not enter an alternate Internet address, the default link will appear in the Printers folder.
+
+> [!NOTE]
+> Web pages links only appear in the Printers folder when Web view is enabled. If Web view is disabled, the setting has no effect. (To enable Web view, open the Printers folder, and, on the Tools menu, click Folder Options, click the General tab, and then click "Enable Web content in folders.")
+
+Also, see the "Activate Internet printing" setting in this setting folder and the "Browse a common web site to find printers" setting in User Configuration\Administrative Templates\Control Panel\Printers.
+
+Web view is affected by the "Turn on Classic Shell" and "Do not allow Folder Options to be opened from the Options button on the View tab of the ribbon" settings in User Configuration\Administrative Templates\Windows Components\Windows Explorer, and by the "Enable Active Desktop" setting in User Configuration\Administrative Templates\Desktop\Active Desktop.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Custom support URL in the Printers folder's left pane*
+-   GP name: *CustomizedSupportUrl*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-donotinstallcompatibledriverfromwindowsupdate"></a>**ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage where client computers search for Point and Printer drivers.
+
+If you enable this policy setting, the client computer will continue to search for compatible Point and Print drivers from Windows Update after it fails to find the compatible driver from the local driver store and the server driver cache.
+
+If you disable this policy setting, the client computer will only search the local driver store and server driver cache for compatible Point and Print drivers. If it is unable to find a compatible driver, then the Point and Print connection will fail.
+
+This policy setting is not configured by default, and the behavior depends on the version of Windows that you are using.
+
+By default, Windows Ultimate, Professional and Home SKUs will continue to search for compatible Point and Print drivers from Windows Update, if needed. However, you must explicitly enable this policy setting for other versions of Windows (for example Windows Enterprise, and all versions of Windows Server 2008 R2 and later) to have the same behavior.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Extend Point and Print connection to search Windows Update*
+-   GP name: *DoNotInstallCompatibleDriverFromWindowsUpdate*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-domainprinters"></a>**ADMX_Printing/DomainPrinters**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. If you enable this policy setting, it sets the maximum number of printers (of each type) that the Add Printer wizard will display on a computer on a managed network (when the computer is able to reach a domain controller, e.g. a domain-joined laptop on a corporate network.)
+
+If this policy setting is disabled, the network scan page will not be displayed.
+
+If this policy setting is not configured, the Add Printer wizard will display the default number of printers of each type:
+
+- Directory printers: 20
+- TCP/IP printers: 0
+- Web Services printers: 0
+- Bluetooth printers: 10
+- Shared printers: 0
+
+In order to view available Web Services printers on your network, ensure that network discovery is turned on. To turn on network discovery, click "Start", click "Control Panel", and then click "Network and Internet". On the "Network and Internet" page, click "Network and Sharing Center". On the Network and Sharing Center page, click "Change advanced sharing settings". On the Advanced sharing settings page, click the arrow next to "Domain" arrow, click "turn on network discovery", and then click "Save changes".
+
+If you would like to not display printers of a certain type, enable this policy and set the number of printers to display to 0.
+
+In Windows 10 and later, only TCP/IP printers can be shown in the wizard. If you enable this policy setting, only TCP/IP printer limits are applicable. On Windows 10 only, if you disable or do not configure this policy setting, the default limit is applied.
+
+In Windows 8 and later, Bluetooth printers are not shown so its limit does not apply to those versions of Windows.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Add Printer wizard - Network scan page (Managed network)*
+-   GP name: *DomainPrinters*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-downlevelbrowse"></a>**ADMX_Printing/DownlevelBrowse**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Allows users to use the Add Printer Wizard to search the network for shared printers.
+
+If you enable this setting or do not configure it, when users choose to add a network printer by selecting the "A network printer, or a printer attached to another computer" radio button on Add Printer Wizard's page 2, and also check the "Connect to this printer (or to browse for a printer, select this option and click Next)" radio button on Add Printer Wizard's page 3, and do not specify a printer name in the adjacent "Name" edit box, then Add Printer Wizard displays the list of shared printers on the network and invites to choose a printer from the shown list.
+
+If you disable this setting, the network printer browse page is removed from within the Add Printer Wizard, and users cannot search the network but must type a printer name.
+
+> [!NOTE]
+> This setting affects the Add Printer Wizard only. It does not prevent users from using other programs to search for shared printers or to connect to network printers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Browse the network to find printers*
+-   GP name: *DownlevelBrowse*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-emfdespooling"></a>**ADMX_Printing/EMFDespooling**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. When printing through a print server, determines whether the print spooler on the client will process print jobs itself, or pass them on to the server to do the work.
+
+This policy setting only effects printing to a Windows print server.
+
+If you enable this policy setting on a client machine, the client spooler will not process print jobs before sending them to the print server. This decreases the workload on the client at the expense of increasing the load on the server.
+
+If you disable this policy setting on a client machine, the client itself will process print jobs into printer device commands. These commands will then be sent to the print server, and the server will simply pass the commands to the printer. This increases the workload of the client while decreasing the load on the server.
+
+If you do not enable this policy setting, the behavior is the same as disabling it.
+
+> [!NOTE]
+> This policy does not determine whether offline printing will be available to the client. The client print spooler can always queue print jobs when not connected to the print server. Upon reconnecting to the server, the client will submit any pending print jobs.
+>
+> Some printer drivers require a custom print processor. In some cases the custom print processor may not be installed on the client machine, such as when the print server does not support transferring print processors during point-and-print. In the case of a print processor mismatch, the client spooler will always send jobs to the print server for rendering. Disabling the above policy setting does not override this behavior.
+>
+> In cases where the client print driver does not match the server print driver (mismatched connection), the client will always process the print job, regardless of the setting of this policy.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Always render print jobs on the server*
+-   GP name: *EMFDespooling*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-forcesoftwarerasterization"></a>**ADMX_Printing/ForceSoftwareRasterization**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines whether the XPS Rasterization Service or the XPS-to-GDI conversion (XGC) is forced to use a software rasterizer instead of a Graphics Processing Unit (GPU) to rasterize pages.
+
+This setting may improve the performance of the XPS Rasterization Service or the XPS-to-GDI conversion (XGC) on machines that have a relatively powerful CPU as compared to the machine’s GPU.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Always rasterize content to be printed using a software rasterizer*
+-   GP name: *ForceSoftwareRasterization*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-intranetprintersurl"></a>**ADMX_Printing/IntranetPrintersUrl**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Adds a link to an Internet or intranet Web page to the Add Printer Wizard.
+
+You can use this setting to direct users to a Web page from which they can install printers.
+
+If you enable this setting and type an Internet or intranet address in the text box, the system adds a Browse button to the "Specify a Printer" page in the Add Printer Wizard. The Browse button appears beside the "Connect to a printer on the Internet or on a home or office network" option. When users click Browse, the system opens an Internet browser and navigates to the specified URL address to display the available printers.
+
+This setting makes it easy for users to find the printers you want them to add.
+
+Also, see the "Custom support URL in the Printers folder's left pane" and "Activate Internet printing" settings in "Computer Configuration\Administrative Templates\Printers."
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Browse a common web site to find printers*
+-   GP name: *IntranetPrintersUrl*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-kmprintersareblocked"></a>**ADMX_Printing/KMPrintersAreBlocked**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines whether printers using kernel-mode drivers may be installed on the local computer.  Kernel-mode drivers have access to system-wide memory, and therefore poorly-written kernel-mode drivers can cause stop errors.
+
+If you disable this setting, or do not configure it, then printers using a kernel-mode drivers may be installed on the local computer running Windows XP Home Edition and Windows XP Professional.
+
+If you do not configure this setting on Windows Server 2003 family products, the installation of kernel-mode printer drivers will be blocked.
+
+If you enable this setting, installation of a printer using a kernel-mode driver will not be allowed.
+
+> [!NOTE]
+> By applying this policy, existing kernel-mode drivers will be disabled upon installation of service packs or reinstallation of the Windows XP operating system. This policy does not apply to 64-bit kernel-mode printer drivers as they cannot be installed and associated with a print queue.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow installation of printers using kernel-mode drivers*
+-   GP name: *KMPrintersAreBlocked*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-legacydefaultprintermode"></a>**ADMX_Printing/LegacyDefaultPrinterMode**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This preference allows you to change default printer management.
+
+If you enable this setting, Windows will not manage the default printer.
+
+If you disable this setting, Windows will manage the default printer.
+
+If you do not configure this setting, default printer management will not change. 
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Windows default printer management*
+-   GP name: *LegacyDefaultPrinterMode*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-mxdwuselegacyoutputformatmsxps"></a>**ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Microsoft XPS Document Writer (MXDW) generates OpenXPS (*.oxps) files by default in Windows 10, Windows 10 and Windows Server 2019.
+
+If you enable this group policy setting, the default MXDW output format is the legacy Microsoft XPS (*.xps).
+
+If you disable or do not configure this policy setting, the default MXDW output format is OpenXPS (*.oxps).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Change Microsoft XPS Document Writer (MXDW) default output format to the legacy Microsoft XPS format (*.xps)*
+-   GP name: *MXDWUseLegacyOutputFormatMSXPS*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-nodeleteprinter"></a>**ADMX_Printing/NoDeletePrinter**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. If this policy setting is enabled, it prevents users from deleting local and network printers.
+
+If a user tries to delete a printer, such as by using the Delete option in Printers in Control Panel, a message appears explaining that a setting prevents the action.
+
+This setting does not prevent users from running other programs to delete a printer.
+
+If this policy is disabled, or not configured, users can delete printers using the methods described above.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent deletion of printers*
+-   GP name: *NoDeletePrinter*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-nondomainprinters"></a>**ADMX_Printing/NonDomainPrinters**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy sets the maximum number of printers (of each type) that the Add Printer wizard will display on a computer on an unmanaged network (when the computer is not able to reach a domain controller, e.g. a domain-joined laptop on a home network.)
+
+If this setting is disabled, the network scan page will not be displayed.
+
+If this setting is not configured, the Add Printer wizard will display the default number of printers of each type:
+
+- TCP/IP printers: 50
+- Web Services printers: 50
+- Bluetooth printers: 10
+- Shared printers: 50
+
+If you would like to not display printers of a certain type, enable this policy and set the number of printers to display to 0.
+
+In Windows 10 and later, only TCP/IP printers can be shown in the wizard. If you enable this policy setting, only TCP/IP printer limits are applicable. On Windows 10 only, if you disable or do not configure this policy setting, the default limit is applied.
+
+In Windows 8 and later, Bluetooth printers are not shown so its limit does not apply to those versions of Windows.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Add Printer wizard - Network scan page (Unmanaged network)*
+-   GP name: *NonDomainPrinters*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-packagepointandprintonly"></a>**ADMX_Printing/PackagePointAndPrintOnly**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy restricts clients computers to use package point and print only.
+
+If this setting is enabled, users will only be able to point and print to printers that use package-aware drivers. When using package point and print, client computers will check the driver signature of all drivers that are downloaded from print servers.
+
+If this setting is disabled, or not configured, users will not be restricted to package-aware point and print only.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Only use Package Point and print*
+-   GP name: *PackagePointAndPrintOnly*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-packagepointandprintonly-win7"></a>**ADMX_Printing/PackagePointAndPrintOnly_Win7**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy restricts clients computers to use package point and print only.
+
+If this setting is enabled, users will only be able to point and print to printers that use package-aware drivers. When using package point and print, client computers will check the driver signature of all drivers that are downloaded from print servers.
+
+If this setting is disabled, or not configured, users will not be restricted to package-aware point and print only.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Only use Package Point and print*
+-   GP name: *PackagePointAndPrintOnly_Win7*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-packagepointandprintserverlist"></a>**ADMX_Printing/PackagePointAndPrintServerList**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Restricts package point and print to approved servers.
+
+This policy setting restricts package point and print connections to approved servers. This setting only applies to Package Point and Print connections, and is completely independent from the "Point and Print Restrictions" policy that governs the behavior of non-package point and print connections.
+
+Windows Vista and later clients will attempt to make a non-package point and print connection anytime a package point and print connection fails, including attempts that are blocked by this policy. Administrators may need to set both policies to block all print connections to a specific print server.
+
+If this setting is enabled, users will only be able to package point and print to print servers approved by the network administrator. When using package point and print, client computers will check the driver signature of all drivers that are downloaded from print servers.
+
+If this setting is disabled, or not configured, package point and print will not be restricted to specific print servers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Package Point and print - Approved servers*
+-   GP name: *PackagePointAndPrintServerList*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-packagepointandprintserverlist-win7"></a>**ADMX_Printing/PackagePointAndPrintServerList_Win7**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Restricts package point and print to approved servers.
+
+This policy setting restricts package point and print connections to approved servers. This setting only applies to Package Point and Print connections, and is completely independent from the "Point and Print Restrictions" policy that governs the behavior of non-package point and print connections.
+
+Windows Vista and later clients will attempt to make a non-package point and print connection anytime a package point and print connection fails, including attempts that are blocked by this policy. Administrators may need to set both policies to block all print connections to a specific print server.
+
+If this setting is enabled, users will only be able to package point and print to print servers approved by the network administrator. When using package point and print, client computers will check the driver signature of all drivers that are downloaded from print servers.
+
+If this setting is disabled, or not configured, package point and print will not be restricted to specific print servers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Package Point and print - Approved servers*
+-   GP name: *PackagePointAndPrintServerList_Win7*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-physicallocation"></a>**ADMX_Printing/PhysicalLocation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. If this policy setting is enabled, it specifies the default location criteria used when searching for printers.
+
+This setting is a component of the Location Tracking feature of Windows printers. To use this setting, enable Location Tracking by enabling the "Pre-populate printer search location text" setting.
+
+When Location Tracking is enabled, the system uses the specified location as a criterion when users search for printers. The value you type here overrides the actual location of the computer conducting the search.
+
+Type the location of the user's computer. When users search for printers, the system uses the specified location (and other search criteria) to find a printer nearby. You can also use this setting to direct users to a particular printer or group of printers that you want them to use.
+
+If you disable this setting or do not configure it, and the user does not type a location as a search criterion, the system searches for a nearby printer based on the IP address and subnet mask of the user's computer.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Computer location*
+-   GP name: *PhysicalLocation*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-physicallocationsupport"></a>**ADMX_Printing/PhysicalLocationSupport**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Enables the physical Location Tracking setting for Windows printers.
+
+Use Location Tracking to design a location scheme for your enterprise and assign computers and printers to locations in the scheme. Location Tracking overrides the standard method used to locate and associate computers and printers. The standard method uses a printer's IP address and subnet mask to estimate its physical location and proximity to computers.
+
+If you enable this setting, users can browse for printers by location without knowing the printer's location or location naming scheme. Enabling Location Tracking adds a Browse button in the Add Printer wizard's Printer Name and Sharing Location screen and to the General tab in the Printer Properties dialog box. If you enable the Group Policy Computer location setting, the default location you entered appears in the Location field by default.
+
+If you disable this setting or do not configure it, Location Tracking is disabled. Printer proximity is estimated using the standard method (that is, based on IP address and subnet mask).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Pre-populate printer search location text*
+-   GP name: *PhysicalLocationSupport*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-printdriverisolationexecutionpolicy"></a>**ADMX_Printing/PrintDriverIsolationExecutionPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the print spooler will execute print drivers in an isolated or separate process. When print drivers are loaded in an isolated process (or isolated processes), a print driver failure will not cause the print spooler service to fail.
+
+If you enable or do not configure this policy setting, the print spooler will execute print drivers in an isolated process by default.
+
+If you disable this policy setting, the print spooler will execute print drivers in the print spooler process.
+
+> [!NOTE]
+> - Other system or driver policy settings may alter the process in which a print driver is executed.
+> - This policy setting applies only to print drivers loaded by the print spooler. Print drivers loaded by applications are not affected.
+> - This policy setting takes effect without restarting the print spooler service.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Execute print drivers in isolated processes*
+-   GP name: *PrintDriverIsolationExecutionPolicy*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-printdriverisolationoverridecompat"></a>**ADMX_Printing/PrintDriverIsolationOverrideCompat**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the print spooler will override the Driver Isolation compatibility reported by the print driver. This enables executing print drivers in an isolated process, even if the driver does not report compatibility.
+
+If you enable this policy setting, the print spooler isolates all print drivers that do not explicitly opt out of Driver Isolation.
+
+If you disable or do not configure this policy setting, the print spooler uses the Driver Isolation compatibility flag value reported by the print driver.
+
+> [!NOTE]
+> - Other system or driver policy settings may alter the process in which a print driver is executed.
+> - This policy setting applies only to print drivers loaded by the print spooler. Print drivers loaded by applications are not affected.
+> - This policy setting takes effect without restarting the print spooler service.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Override print driver execution compatibility setting reported by print driver*
+-   GP name: *PrintDriverIsolationOverrideCompat*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-printerdirectorysearchscope"></a>**ADMX_Printing/PrinterDirectorySearchScope**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Specifies the Active Directory location where searches for printers begin.
+
+The Add Printer Wizard gives users the option of searching Active Directory for a shared printer.
+
+If you enable this policy setting, these searches begin at the location you specify in the "Default Active Directory path" box. Otherwise, searches begin at the root of Active Directory.
+
+This setting only provides a starting point for Active Directory searches for printers. It does not restrict user searches through Active Directory.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Default Active Directory path when searching for printers*
+-   GP name: *PrinterDirectorySearchScope*
+-   GP path: *Control Panel\Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-printerserverthread"></a>**ADMX_Printing/PrinterServerThread**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Announces the presence of shared printers to print browse master servers for the domain.
+
+On domains with Active Directory, shared printer resources are available in Active Directory and are not announced.
+
+If you enable this setting, the print spooler announces shared printers to the print browse master servers.
+
+If you disable this setting, shared printers are not announced to print browse master servers, even if Active Directory is not available.
+
+If you do not configure this setting, shared printers are announced to browse master servers only when Active Directory is not available.
+
+> [!NOTE]
+> A client license is used each time a client computer announces a printer to a print browse master on the domain.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Printer browsing*
+-   GP name: *PrinterServerThread*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-showjobtitleineventlogs"></a>**ADMX_Printing/ShowJobTitleInEventLogs**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy controls whether the print job name will be included in print event logs.
+
+If you disable or do not configure this policy setting, the print job name will not be included.
+
+If you enable this policy setting, the print job name will be included in new log entries.
+
+> [!NOTE]
+> This setting does not apply to Branch Office Direct Printing jobs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow job name in event logs*
+-   GP name: *ShowJobTitleInEventLogs*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing-v4driverdisallowprinterextension"></a>**ADMX_Printing/V4DriverDisallowPrinterExtension**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy determines if v4 printer drivers are allowed to run printer extensions.
+
+V4 printer drivers may include an optional, customized user interface known as a printer extension. These extensions may provide access to more device features, but this may not be appropriate for all enterprises.
+
+If you enable this policy setting, then all printer extensions will not be allowed to run.
+
+If you disable this policy setting or do not configure it, then all printer extensions that have been installed will be allowed to run.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not allow v4 printer drivers to show printer extensions*
+-   GP name: *V4DriverDisallowPrinterExtension*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 131da8346ac47dac17b151b7ed07ff7c81cfd056 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 15:56:57 -0800
Subject: [PATCH 065/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 23 ++++++++++++++++++-
 1 file changed, 22 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 72ede58c51..7a8b28a303 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -35,4 +35,25 @@ Did Microsoft Defender for Endpoint identify an artifact as malicious, even thou
 
 | Step | Description |
 |:---|:---|
-| 1. Identify a false positive/negative |   |
\ No newline at end of file
+| 1. Identify a false positive/negative |   |
+| 2. Review/define exclusions for Defender for Endpoint  |  |
+| 3. Review/define indicators for Defender for Endpoint |  |
+| 4. Classify a false positive/negative in Defender for Endpoint |  |
+| 5. Submit a file for analysis |  |
+| 6. Confirm your software uses EV code signing  |  |
+
+## Identify a false positive/negative
+
+*How do we know something is a false positive or negative? What do we want customers to look for?*
+
+## Review or define exclusions
+
+*Exclusions are defined for AutoIR and for MDAV, yes?*
+
+## Review or define indicators
+
+## Classify a false positive or false negative
+
+## Submit a file for analysis
+
+## Confirm your software uses EV code signing
\ No newline at end of file

From f23271508637a8da03b89b90f47391a2b144ac0f Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 15 Dec 2020 16:01:44 -0800
Subject: [PATCH 066/825] Added Printing2 policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   9 +
 .../policy-configuration-service-provider.md  |  32 +
 .../mdm/policy-csp-admx-printing2.md          | 740 ++++++++++++++++++
 4 files changed, 782 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-printing2.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 5082f05ed7..a37aa5159e 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -229,6 +229,7 @@
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
 #### [ADMX_Printing](policy-csp-admx-printing.md)
+#### [ADMX_Printing2](policy-csp-admx-printing2.md)
 #### [ADMX_Programs](policy-csp-admx-programs.md)
 #### [ADMX_Reliability](policy-csp-admx-reliability.md)
 #### [ADMX_RemoteAssistance](policy-csp-admx-remoteassistance.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index ec137198dc..1e240e7969 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -714,6 +714,15 @@ ms.date: 10/08/2020
 - [ADMX_Printing/PrinterServerThread](./policy-csp-admx-printing.md#admx-printing-printerserverthread)
 - [ADMX_Printing/ShowJobTitleInEventLogs](./policy-csp-admx-printing.md#admx-printing-showjobtitleineventlogs)
 - [ADMX_Printing/V4DriverDisallowPrinterExtension](./policy-csp-admx-printing.md#admx-printing-v4driverdisallowprinterextension)
+- [ADMX_Printing2/AutoPublishing](./policy-csp-admx-printing2.md#admx-printing2-autopublishing)
+- [ADMX_Printing2/ImmortalPrintQueue](./policy-csp-admx-printing2.md#admx-printing2-immortalprintqueue)
+- [ADMX_Printing2/PruneDownlevel](./policy-csp-admx-printing2.md#admx-printing2-prunedownlevel)
+- [ADMX_Printing2/PruningInterval](./policy-csp-admx-printing2.md#admx-printing2-pruninginterval)
+- [ADMX_Printing2/PruningPriority](./policy-csp-admx-printing2.md#admx-printing2-pruningpriority)
+- [ADMX_Printing2/PruningRetries](./policy-csp-admx-printing2.md#admx-printing2-pruningretries)
+- [ADMX_Printing2/PruningRetryLog](./policy-csp-admx-printing2.md#admx-printing2-pruningretrylog)
+- [ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint](./policy-csp-admx-printing2.md#admx-printing2-registerspoolerremoterpcendpoint)
+- [ADMX_Printing2/VerifyPublishedState](./policy-csp-admx-printing2.md#admx-printing2-verifypublishedstate)
 - [ADMX_Programs/NoDefaultPrograms](./policy-csp-admx-programs.md#admx-programs-nodefaultprograms)
 - [ADMX_Programs/NoGetPrograms](./policy-csp-admx-programs.md#admx-programs-nogetprograms)
 - [ADMX_Programs/NoInstalledUpdates](./policy-csp-admx-programs.md#admx-programs-noinstalledupdates)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index a1a5453c94..c27861fc1e 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -2512,6 +2512,38 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Printing2 policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-autopublishing" id="admx-printing2-autopublishing">ADMX_Printing2/AutoPublishing</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-immortalprintqueue" id="admx-printing2-immortalprintqueue">ADMX_Printing2/ImmortalPrintQueue</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-prunedownlevel" id="admx-printing2-prunedownlevel">ADMX_Printing2/PruneDownlevel</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-pruninginterval" id="admx-printing2-pruninginterval">ADMX_Printing2/PruningInterval</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-pruningpriority" id="admx-printing2-pruningpriority">ADMX_Printing2/PruningPriority</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-pruningretries" id="admx-printing2-pruningretries">ADMX_Printing2/PruningRetries</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-pruningretrylog" id="admx-printing2-pruningretrylog">ADMX_Printing2/PruningRetryLog</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-registerspoolerremoterpcendpoint" id="admx-printing2-registerspoolerremoterpcendpoint">ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-printing2.md#admx-printing2-verifypublishedstate" id="admx-printing2-verifypublishedstate">ADMX_Printing2/VerifyPublishedState</a>
+  </dd>
+</dl>
+
 ### ADMX_Programs policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-printing2.md b/windows/client-management/mdm/policy-csp-admx-printing2.md
new file mode 100644
index 0000000000..6da824049f
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-printing2.md
@@ -0,0 +1,740 @@
+---
+title: Policy CSP - ADMX_Printing2
+description: Policy CSP - ADMX_Printing2
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/15/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Printing2
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Printing2 policies  
+
+<dl>
+  <dd>
+    <a href="#admx-printing2-autopublishing">ADMX_Printing2/AutoPublishing</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-immortalprintqueue">ADMX_Printing2/ImmortalPrintQueue</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-prunedownlevel">ADMX_Printing2/PruneDownlevel</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-pruninginterval">ADMX_Printing2/PruningInterval</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-pruningpriority">ADMX_Printing2/PruningPriority</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-pruningretries">ADMX_Printing2/PruningRetries</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-pruningretrylog">ADMX_Printing2/PruningRetryLog</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-registerspoolerremoterpcendpoint">ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint</a>
+  </dd>
+  <dd>
+    <a href="#admx-printing2-verifypublishedstate">ADMX_Printing2/VerifyPublishedState</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-autopublishing"></a>**ADMX_Printing2/AutoPublishing**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines whether the Add Printer Wizard automatically publishes the computer's shared printers in Active Directory.
+
+If you enable this setting or do not configure it, the Add Printer Wizard automatically publishes all shared printers.
+
+If you disable this setting, the Add Printer Wizard does not automatically publish printers. However, you can publish shared printers manually.
+
+The default behavior is to automatically publish shared printers in Active Directory.
+
+> [!NOTE]
+> This setting is ignored if the "Allow printers to be published" setting is disabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Automatically publish new printers in Active Directory*
+-   GP name: *AutoPublishing*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-immortalprintqueue"></a>**ADMX_Printing2/ImmortalPrintQueue**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines whether the domain controller can prune (delete from Active Directory) the printers published by this computer.
+
+By default, the pruning service on the domain controller prunes printer objects from Active Directory if the computer that published them does not respond to contact requests. When the computer that published the printers restarts, it republishes any deleted printer objects.
+
+If you enable this setting or do not configure it, the domain controller prunes this computer's printers when the computer does not respond.
+
+If you disable this setting, the domain controller does not prune this computer's printers. This setting is designed to prevent printers from being pruned when the computer is temporarily disconnected from the network.
+
+> [!NOTE] You can use the "Directory Pruning Interval" and "Directory Pruning Retry" settings to adjust the contact interval and number of contact attempts.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow pruning of published printers*
+-   GP name: *ImmortalPrintQueue*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-prunedownlevel"></a>**ADMX_Printing2/PruneDownlevel**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Determines whether the pruning service on a domain controller prunes printer objects that are not automatically republished whenever the host computer does not respond,just as it does with Windows 2000 printers. This setting applies to printers running operating systems other than Windows 2000 and to Windows 2000 printers published outside their forest.
+
+The Windows pruning service prunes printer objects from Active Directory when the computer that published them does not respond to contact requests. Computers running Windows 2000 Professional detect and republish deleted printer objects when they rejoin the network. However, because non-Windows 2000 computers and computers in other domains cannot republish printers in Active Directory automatically, by default, the system never prunes their printer objects.
+
+You can enable this setting to change the default behavior. To use this setting, select one of the following options from the "Prune non-republishing printers" box:
+
+- "Never" specifies that printer objects that are not automatically republished are never pruned. "Never" is the default.
+
+- "Only if Print Server is found" prunes printer objects that are not automatically republished only when the print server responds, but the printer is unavailable.
+
+- "Whenever printer is not found" prunes printer objects that are not automatically republished whenever the host computer does not respond, just as it does with Windows 2000 printers.
+
+> [!NOTE]
+> This setting applies to printers published by using Active Directory Users and Computers or Pubprn.vbs. It does not apply to printers published by using Printers in Control Panel.
+
+> [!TIP]
+> If you disable automatic pruning, remember to delete printer objects manually whenever you remove a printer or print server.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prune printers that are not automatically republished*
+-   GP name: *PruneDownlevel*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-pruninginterval"></a>**ADMX_Printing2/PruningInterval**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Specifies how often the pruning service on a domain controller contacts computers to verify that their printers are operational.
+
+The pruning service periodically contacts computers that have published printers. If a computer does not respond to the contact message (optionally, after repeated attempts), the pruning service "prunes" (deletes from Active Directory) printer objects the computer has published.
+
+By default, the pruning service contacts computers every eight hours and allows two repeated contact attempts before deleting printers from Active Directory.
+
+If you enable this setting, you can change the interval between contact attempts.
+
+If you do not configure or disable this setting the default values will be used.
+
+> [!NOTE]
+> This setting is used only on domain controllers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Directory pruning interval*
+-   GP name: *PruningInterval*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-pruningpriority"></a>**ADMX_Printing2/PruningPriority**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Sets the priority of the pruning thread.
+
+The pruning thread, which runs only on domain controllers, deletes printer objects from Active Directory if the printer that published the object does not respond to contact attempts. This process keeps printer information in Active Directory current.
+
+The thread priority influences the order in which the thread receives processor time and determines how likely it is to be preempted by higher priority threads.
+
+By default, the pruning thread runs at normal priority. However, you can adjust the priority to improve the performance of this service.
+
+> [!NOTE]
+> This setting is used only on domain controllers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Directory pruning priority*
+-   GP name: *PruningPriority*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-pruningretries"></a>**ADMX_Printing2/PruningRetries**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Specifies how many times the pruning service on a domain controller repeats its attempt to contact a computer before pruning the computer's printers.
+
+The pruning service periodically contacts computers that have published printers to verify that the printers are still available for use. If a computer does not respond to the contact message, the message is repeated for the specified number of times. If the computer still fails to respond, then the pruning service "prunes" (deletes from Active Directory) printer objects the computer has published.
+
+By default, the pruning service contacts computers every eight hours and allows two retries before deleting printers from Active Directory. You can use this setting to change the number of retries.
+
+If you enable this setting, you can change the interval between attempts.
+
+If you do not configure or disable this setting, the default values are used.
+
+> [!NOTE]
+> This setting is used only on domain controllers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Directory pruning retry*
+-   GP name: *PruningRetries*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-pruningretrylog"></a>**ADMX_Printing2/PruningRetryLog**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Specifies whether or not to log events when the pruning service on a domain controller attempts to contact a computer before pruning the computer's printers.
+
+The pruning service periodically contacts computers that have published printers to verify that the printers are still available for use. If a computer does not respond to the contact attempt, the attempt is retried a specified number of times, at a specified interval. The "Directory pruning retry" setting determines the number of times the attempt is retried; the default value is two retries. The "Directory Pruning Interval" setting determines the time interval between retries; the default value is every eight hours. If the computer has not responded by the last contact attempt, its printers are pruned from the directory.
+
+If you enable this policy setting, the contact events are recorded in the event log.
+
+If you disable or do not configure this policy setting, the contact events are not recorded in the event log.
+
+Note: This setting does not affect the logging of pruning events; the actual pruning of a printer is always logged.
+
+> [!NOTE]
+> This setting is used only on domain controllers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Log directory pruning retry events*
+-   GP name: *PruningRetryLog*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-registerspoolerremoterpcendpoint"></a>**ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy controls whether the print spooler will accept client connections.
+
+When the policy is not configured or enabled, the spooler will always accept client connections.
+
+When the policy is disabled, the spooler will not accept client connections nor allow users to share printers. All printers currently shared will continue to be shared.
+
+The spooler must be restarted for changes to this policy to take effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow Print Spooler to accept client connections*
+-   GP name: *RegisterSpoolerRemoteRpcEndPoint*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-printing2-verifypublishedstate"></a>**ADMX_Printing2/VerifyPublishedState**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Directs the system to periodically verify that the printers published by this computer still appear in Active Directory. This setting also specifies how often the system repeats the verification.
+
+By default, the system only verifies published printers at startup. This setting allows for periodic verification while the computer is operating.
+
+To enable this additional verification, enable this setting, and then select a verification interval.
+
+To disable verification, disable this setting, or enable this setting and select "Never" for the verification interval.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Check published state*
+-   GP name: *VerifyPublishedState*
+-   GP path: *Printers*
+-   GP ADMX file name: *Printing2.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From ae764c12b4d5421861690c50422d036e3e37cc7b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 16:02:50 -0800
Subject: [PATCH 067/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 22 +++++++++++++------
 1 file changed, 15 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 7a8b28a303..40bb2b65ea 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -35,12 +35,12 @@ Did Microsoft Defender for Endpoint identify an artifact as malicious, even thou
 
 | Step | Description |
 |:---|:---|
-| 1. Identify a false positive/negative |   |
-| 2. Review/define exclusions for Defender for Endpoint  |  |
-| 3. Review/define indicators for Defender for Endpoint |  |
-| 4. Classify a false positive/negative in Defender for Endpoint |  |
-| 5. Submit a file for analysis |  |
-| 6. Confirm your software uses EV code signing  |  |
+| 1. [Identify a false positive/negative](#identify-a-false-positivenegative) |   |
+| 2. [Review/define exclusions for Defender for Endpoint](#review-or-define-exclusions)  |  |
+| 3. [Review/define indicators for Defender for Endpoint](#review-or-define-indicators) |  |
+| 4. [Classify a false positive/negative in Defender for Endpoint](#classify-a-false-positive-or-false-negative) |  |
+| 5. [Submit a file for analysis](#submit-a-file-for-analysis) |  |
+| 6. [Confirm your software uses EV code signing](#confirm-your-software-uses-ev-code-signing)  |  |
 
 ## Identify a false positive/negative
 
@@ -52,8 +52,16 @@ Did Microsoft Defender for Endpoint identify an artifact as malicious, even thou
 
 ## Review or define indicators
 
+*Allow indicators for false positives; block indicators for false negatives.  https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators*
+
 ## Classify a false positive or false negative
 
+*Need to figure out where/how this is done*
+
 ## Submit a file for analysis
 
-## Confirm your software uses EV code signing
\ No newline at end of file
+*https://www.microsoft.com/wdsi/filesubmission/*
+
+## Confirm your software uses EV code signing
+
+*Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
\ No newline at end of file

From 6f0d2743d8f9af3db4ecf0c3660c6dc8de24ea32 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 15 Dec 2020 16:06:40 -0800
Subject: [PATCH 068/825] Fixed warning

---
 windows/client-management/mdm/policy-csp-admx-printing2.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-printing2.md b/windows/client-management/mdm/policy-csp-admx-printing2.md
index 6da824049f..817a528bac 100644
--- a/windows/client-management/mdm/policy-csp-admx-printing2.md
+++ b/windows/client-management/mdm/policy-csp-admx-printing2.md
@@ -180,7 +180,8 @@ If you enable this setting or do not configure it, the domain controller prunes
 
 If you disable this setting, the domain controller does not prune this computer's printers. This setting is designed to prevent printers from being pruned when the computer is temporarily disconnected from the network.
 
-> [!NOTE] You can use the "Directory Pruning Interval" and "Directory Pruning Retry" settings to adjust the contact interval and number of contact attempts.
+> [!NOTE]
+> You can use the "Directory Pruning Interval" and "Directory Pruning Retry" settings to adjust the contact interval and number of contact attempts.
 
 <!--/Description-->
 > [!TIP]

From fe4c83039bc4c7431f25a5f3f975109743b011ce Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 15 Dec 2020 16:08:27 -0800
Subject: [PATCH 069/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 40bb2b65ea..2d4e5efdb5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -35,7 +35,7 @@ Did Microsoft Defender for Endpoint identify an artifact as malicious, even thou
 
 | Step | Description |
 |:---|:---|
-| 1. [Identify a false positive/negative](#identify-a-false-positivenegative) |   |
+| 1. [Identify a false positive/negative](#identify-a-false-positivenegative) | A false positive is something that was detected and identified as malicious, when in fact it does not pose a threat. <br/>A false negative is something that was not detected as a threat even though it is, in fact, malicious. <br/>Both false positives and false negatives can be problematic for your organization.    |
 | 2. [Review/define exclusions for Defender for Endpoint](#review-or-define-exclusions)  |  |
 | 3. [Review/define indicators for Defender for Endpoint](#review-or-define-indicators) |  |
 | 4. [Classify a false positive/negative in Defender for Endpoint](#classify-a-false-positive-or-false-negative) |  |

From b440abef57809fa00c9823bcd14a4de7ef330e5d Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 15 Dec 2020 16:22:26 -0800
Subject: [PATCH 070/825] Removed two Globalization policies per owner

---
 .../mdm/policies-in-policy-csp-admx-backed.md |   2 -
 .../policy-configuration-service-provider.md  |   6 -
 .../mdm/policy-csp-admx-globalization.md      | 144 ------------------
 3 files changed, 152 deletions(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 1e240e7969..26da44ce91 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -282,7 +282,6 @@ ms.date: 10/08/2020
 - [ADMX_FolderRedirection/LocalizeXPRelativePaths_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-localizexprelativepaths-2)
 - [ADMX_FolderRedirection/PrimaryComputer_FR_1](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-1)
 - [ADMX_FolderRedirection/PrimaryComputer_FR_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-2)
-- [ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks](./policy-csp-admx-globalization.md#admx-globalization-blockcleanupofunusedpreinstalledlangpacks)
 - [ADMX_Globalization/BlockUserInputMethodsForSignIn](./policy-csp-admx-globalization.md#admx-globalization-blockuserinputmethodsforsignin)
 - [ADMX_Globalization/CustomLocalesNoSelect_1](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-1)
 - [ADMX_Globalization/CustomLocalesNoSelect_2](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-2)
@@ -297,7 +296,6 @@ ms.date: 10/08/2020
 - [ADMX_Globalization/LocaleUserRestrict_2](./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-2)
 - [ADMX_Globalization/LockMachineUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockmachineuilanguage)
 - [ADMX_Globalization/LockUserUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockuseruilanguage)
-- [ADMX_Globalization/MachineUILanguageOverwrite](./policy-csp-admx-globalization.md#admx-globalization-machineuilanguageoverwrite)
 - [ADMX_Globalization/PreventGeoIdChange_1](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-1)
 - [ADMX_Globalization/PreventGeoIdChange_2](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-2)
 - [ADMX_Globalization/PreventUserOverrides_1](./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-1)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index c27861fc1e..205815ffba 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1148,9 +1148,6 @@ The following diagram shows the Policy configuration service provider in tree fo
 ### ADMX_Globalization policies  
 
 <dl>
-  <dd>
-    <a href="./policy-csp-admx-globalization.md#admx-globalization-blockcleanupofunusedpreinstalledlangpacks" id="admx-globalization-blockcleanupofunusedpreinstalledlangpacks">ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks</a>
-  </dd>
   <dd>
     <a href="./policy-csp-admx-globalization.md#admx-globalization-blockuserinputmethodsforsignin" id="admx-globalization-blockuserinputmethodsforsignin">ADMX_Globalization/BlockUserInputMethodsForSignIn</a>
   </dd>
@@ -1193,9 +1190,6 @@ The following diagram shows the Policy configuration service provider in tree fo
   <dd>
     <a href="./policy-csp-admx-globalization.md#admx-globalization-lockuseruilanguage" id="admx-globalization-lockuseruilanguage">ADMX_Globalization/LockUserUILanguage</a>
   </dd>
-  <dd>
-    <a href="./policy-csp-admx-globalization.md#admx-globalization-machineuilanguageoverwrite" id="admx-globalization-machineuilanguageoverwrite">ADMX_Globalization/MachineUILanguageOverwrite</a>
-  </dd>
   <dd>
     <a href="./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-1" id="admx-globalization-preventgeoidchange-1">ADMX_Globalization/PreventGeoIdChange_1</a>
   </dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-globalization.md b/windows/client-management/mdm/policy-csp-admx-globalization.md
index e471cdf6e7..ad421c4633 100644
--- a/windows/client-management/mdm/policy-csp-admx-globalization.md
+++ b/windows/client-management/mdm/policy-csp-admx-globalization.md
@@ -22,9 +22,6 @@ manager: dansimp
 ## ADMX_Globalization policies  
 
 <dl>
-  <dd>
-    <a href="#admx-globalization-blockcleanupofunusedpreinstalledlangpacks">ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks</a>
-  </dd>
   <dd>
     <a href="#admx-globalization-blockuserinputmethodsforsignin">ADMX_Globalization/BlockUserInputMethodsForSignIn</a>
   </dd>
@@ -67,9 +64,6 @@ manager: dansimp
   <dd>
     <a href="#admx-globalization-lockuseruilanguage">ADMX_Globalization/LockUserUILanguage</a>
   </dd>
-  <dd>
-    <a href="#admx-globalization-machineuilanguageoverwrite">ADMX_Globalization/MachineUILanguageOverwrite</a>
-  </dd>
   <dd>
     <a href="#admx-globalization-preventgeoidchange-1">ADMX_Globalization/PreventGeoIdChange_1</a>
   </dd>
@@ -105,75 +99,6 @@ manager: dansimp
 
 <hr/>
 
-<!--Policy-->
-<a href="" id="admx-globalization-blockcleanupofunusedpreinstalledlangpacks"></a>**ADMX_Globalization/BlockCleanupOfUnusedPreinstalledLangPacks**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the LPRemove task will run to clean up language packs installed on a machine but are not used by any users on that machine.
-
-If you enable this policy setting, language packs that are installed as part of the system image will remain installed even if they are not used by any user on that system.
-
-If you disable or do not configure this policy setting, language packs that are installed as part of the system image but are not used by any user on that system will be removed as part of a scheduled clean up task.
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Block clean-up of unused language packs*
--   GP name: *BlockCleanupOfUnusedPreinstalledLangPacks*
--   GP path: *Control Panel\Regional and Language Options*
--   GP ADMX file name: *Globalization.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
 <!--Policy-->
 <a href="" id="admx-globalization-blockuserinputmethodsforsignin"></a>**ADMX_Globalization/BlockUserInputMethodsForSignIn**  
 
@@ -1223,75 +1148,6 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 
-<!--Policy-->
-<a href="" id="admx-globalization-machineuilanguageoverwrite"></a>**ADMX_Globalization/MachineUILanguageOverwrite**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting controls which UI language is used for computers with more than one UI language installed.
-
-If you enable this policy setting, the UI language of Windows menus and dialogs for systems with more than one language is restricted to a specified language. If the specified language is not installed on the target computer or you disable this policy setting, the language selection defaults to the language selected by the local administrator.
-
-If you disable or do not configure this policy setting, there is no restriction of a specific language used for the Windows menus and dialogs.
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Force selected system UI language to overwrite the user UI language*
--   GP name: *MachineUILanguageOverwrite*
--   GP path: *Control Panel\Regional and Language Options*
--   GP ADMX file name: *Globalization.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
 <!--Policy-->
 <a href="" id="admx-globalization-preventgeoidchange-1"></a>**ADMX_Globalization/PreventGeoIdChange_1**  
 

From 443c53cbfd1a94240e6568ae4dfe09e5be9299b6 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 16 Dec 2020 23:21:11 +0530
Subject: [PATCH 071/825] updated-4620497

updated
---
 windows/security/threat-protection/index.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md
index 88ac6667fb..f9594c5218 100644
--- a/windows/security/threat-protection/index.md
+++ b/windows/security/threat-protection/index.md
@@ -19,6 +19,9 @@ ms.topic: conceptual
 # Threat Protection
 [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) is a unified platform for preventative protection, post-breach detection, automated investigation, and response. Defender for Endpoint protects endpoints from cyber threats, detects advanced attacks and data breaches, automates security incidents, and improves security posture.
 
+**Applies to:**
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
 > [!TIP]
 > Enable your users to access cloud services and on-premises applications with ease and enable modern management capabilities for all devices. For more information, see [Secure your remote workforce](https://docs.microsoft.com/enterprise-mobility-security/remote-work/). 
 

From e453d38f46297766d53bdbc6418d7dde2dd24bfd Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 16 Dec 2020 13:53:19 -0800
Subject: [PATCH 072/825] Added MSI policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   24 +
 .../policy-configuration-service-provider.md  |   77 +
 .../mdm/policy-csp-admx-msi.md                | 1835 +++++++++++++++++
 4 files changed, 1937 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-msi.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index a37aa5159e..423a233fbb 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -220,6 +220,7 @@
 #### [ADMX_MSAPolicy](policy-csp-admx-msapolicy.md)
 #### [ADMX_msched](policy-csp-admx-msched.md)
 #### [ADMX_MSDT](policy-csp-admx-msdt.md)
+#### [ADMX_MSI](policy-csp-admx-msi.md)
 #### [ADMX_nca](policy-csp-admx-nca.md)
 #### [ADMX_NCSI](policy-csp-admx-ncsi.md)
 #### [ADMX_Netlogon](policy-csp-admx-netlogon.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 26da44ce91..5cbf915a49 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -545,6 +545,30 @@ ms.date: 10/08/2020
 - [ADMX_MSDT/MsdtSupportProvider](./policy-csp-admx-msdt.md#admx-msdt-msdtsupportprovider)
 - [ADMX_MSDT/MsdtToolDownloadPolicy](./policy-csp-admx-msdt.md#admx-msdt-msdttooldownloadpolicy)
 - [ADMX_MSDT/WdiScenarioExecutionPolicy](./policy-csp-admx-msdt.md#admx-msdt-wdiscenarioexecutionpolicy)
+- [ADMX_MSI/AllowLockdownBrowse](./policy-csp-admx-msi.md#admx-msi-allowlockdownbrowse)
+- [ADMX_MSI/AllowLockdownMedia](./policy-csp-admx-msi.md#admx-msi-allowlockdownmedia)
+- [ADMX_MSI/AllowLockdownPatch](./policy-csp-admx-msi.md#admx-msi-allowlockdownpatch)
+- [ADMX_MSI/DisableAutomaticApplicationShutdown](./policy-csp-admx-msi.md#admx-msi-disableautomaticapplicationshutdown)
+- [ADMX_MSI/DisableBrowse](./policy-csp-admx-msi.md#admx-msi-disablebrowse)
+- [ADMX_MSI/DisableFlyweightPatching](./policy-csp-admx-msi.md#admx-msi-disableflyweightpatching)
+- [ADMX_MSI/DisableLoggingFromPackage](./policy-csp-admx-msi.md#admx-msi-disableloggingfrompackage)
+- [ADMX_MSI/DisableMSI](./policy-csp-admx-msi.md#admx-msi-disablemsi)
+- [ADMX_MSI/DisableMedia](./policy-csp-admx-msi.md#admx-msi-disablemedia)
+- [ADMX_MSI/DisablePatch](./policy-csp-admx-msi.md#admx-msi-disablepatch)
+- [ADMX_MSI/DisableRollback_1](./policy-csp-admx-msi.md#admx-msi-disablerollback-1)
+- [ADMX_MSI/DisableRollback_2](./policy-csp-admx-msi.md#admx-msi-disablerollback-2)
+- [ADMX_MSI/DisableSharedComponent](./policy-csp-admx-msi.md#admx-msi-disablesharedcomponent)
+- [ADMX_MSI/MSILogging](./policy-csp-admx-msi.md#admx-msi-msilogging)
+- [ADMX_MSI/MSI_DisableLUAPatching](./policy-csp-admx-msi.md#admx-msi-msi-disableluapatching)
+- [ADMX_MSI/MSI_DisablePatchUninstall](./policy-csp-admx-msi.md#admx-msi-msi-disablepatchuninstall)
+- [ADMX_MSI/MSI_DisableSRCheckPoints](./policy-csp-admx-msi.md#admx-msi-msi-disablesrcheckpoints)
+- [ADMX_MSI/MSI_DisableUserInstalls](./policy-csp-admx-msi.md#admx-msi-msi-disableuserinstalls)
+- [ADMX_MSI/MSI_EnforceUpgradeComponentRules](./policy-csp-admx-msi.md#admx-msi-msi-enforceupgradecomponentrules)
+- [ADMX_MSI/MSI_MaxPatchCacheSize](./policy-csp-admx-msi.md#admx-msi-msi-maxpatchcachesize)
+- [ADMX_MSI/MsiDisableEmbeddedUI](./policy-csp-admx-msi.md#admx-msi-msidisableembeddedui)
+- [ADMX_MSI/SafeForScripting](./policy-csp-admx-msi.md#admx-msi-safeforscripting)
+- [ADMX_MSI/SearchOrder](./policy-csp-admx-msi.md#admx-msi-searchorder)
+- [ADMX_MSI/TransformsSecure](./policy-csp-admx-msi.md#admx-msi-transformssecure)
 - [ADMX_nca/CorporateResources](./policy-csp-admx-nca.md#admx-nca-corporateresources)
 - [ADMX_nca/CustomCommands](./policy-csp-admx-nca.md#admx-nca-customcommands)
 - [ADMX_nca/DTEs](./policy-csp-admx-nca.md#admx-nca-dtes)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 205815ffba..50e56bd34b 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1965,6 +1965,83 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_MSI policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-allowlockdownbrowse" id="admx-msi-allowlockdownbrowse">ADMX_MSI/AllowLockdownBrowse</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-allowlockdownmedia" id="admx-msi-allowlockdownmedia">ADMX_MSI/AllowLockdownMedia</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-allowlockdownpatch" id="admx-msi-allowlockdownpatch">ADMX_MSI/AllowLockdownPatch</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disableautomaticapplicationshutdown" id="admx-msi-disableautomaticapplicationshutdown">ADMX_MSI/DisableAutomaticApplicationShutdown</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablebrowse" id="admx-msi-disablebrowse">ADMX_MSI/DisableBrowse</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disableflyweightpatching" id="admx-msi-disableflyweightpatching">ADMX_MSI/DisableFlyweightPatching</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disableloggingfrompackage" id="admx-msi-disableloggingfrompackage">ADMX_MSI/DisableLoggingFromPackage</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablemsi" id="admx-msi-disablemsi">ADMX_MSI/DisableMSI</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablemedia" id="admx-msi-disablemedia">ADMX_MSI/DisableMedia</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablepatch" id="admx-msi-disablepatch">ADMX_MSI/DisablePatch</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablerollback-1" id="admx-msi-disablerollback-1">ADMX_MSI/DisableRollback_1</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablerollback-2" id="admx-msi-disablerollback-2">ADMX_MSI/DisableRollback_2</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-disablesharedcomponent" id="admx-msi-disablesharedcomponent">ADMX_MSI/DisableSharedComponent</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msilogging" id="admx-msi-msilogging">ADMX_MSI/MSILogging</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-disableluapatching" id="admx-msi-msi-disableluapatching">ADMX_MSI/MSI_DisableLUAPatching</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-disablepatchuninstall" id="admx-msi-msi-disablepatchuninstall">ADMX_MSI/MSI_DisablePatchUninstall</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-disablesrcheckpoints" id="admx-msi-msi-disablesrcheckpoints">ADMX_MSI/MSI_DisableSRCheckPoints</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-disableuserinstalls" id="admx-msi-msi-disableuserinstalls">ADMX_MSI/MSI_DisableUserInstalls</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-enforceupgradecomponentrules" id="admx-msi-msi-enforceupgradecomponentrules">ADMX_MSI/MSI_EnforceUpgradeComponentRules</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msi-maxpatchcachesize" id="admx-msi-msi-maxpatchcachesize">ADMX_MSI/MSI_MaxPatchCacheSize</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-msidisableembeddedui" id="admx-msi-msidisableembeddedui">ADMX_MSI/MsiDisableEmbeddedUI</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-safeforscripting" id="admx-msi-safeforscripting">ADMX_MSI/SafeForScripting</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-searchorder" id="admx-msi-searchorder">ADMX_MSI/SearchOrder</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-msi.md#admx-msi-transformssecure" id="admx-msi-transformssecure">ADMX_MSI/TransformsSecure</a>
+  </dd>
+</dl>
+
 ### ADMX_nca policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-msi.md b/windows/client-management/mdm/policy-csp-admx-msi.md
new file mode 100644
index 0000000000..0336f0e890
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-msi.md
@@ -0,0 +1,1835 @@
+---
+title: Policy CSP - ADMX_MSI
+description: Policy CSP - ADMX_MSI
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/16/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_MSI
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_MSI policies  
+
+<dl>
+  <dd>
+    <a href="#admx-msi-allowlockdownbrowse">ADMX_MSI/AllowLockdownBrowse</a>
+  </dd>
+  <dd>
+    <a href="#admx-msi-allowlockdownmedia">ADMX_MSI/AllowLockdownMedia</a>
+  </dd>
+  <dd>
+    <a href="#admx-msi-allowlockdownpatch">ADMX_MSI/AllowLockdownPatch</a>
+  </dd>
+  <dd>
+    <a href="#admx-msi-disableautomaticapplicationshutdown">ADMX_MSI/DisableAutomaticApplicationShutdown</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablebrowse">ADMX_MSI/DisableBrowse</a>
+  </dd>
+  <dd>
+    <a href="#admx-msi-disableflyweightpatching">ADMX_MSI/DisableFlyweightPatching</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disableloggingfrompackage">ADMX_MSI/DisableLoggingFromPackage</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablemsi">ADMX_MSI/DisableMSI</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablemedia">ADMX_MSI/DisableMedia</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablepatch">ADMX_MSI/DisablePatch</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablerollback-1">ADMX_MSI/DisableRollback_1</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablerollback-2">ADMX_MSI/DisableRollback_2</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-disablesharedcomponent">ADMX_MSI/DisableSharedComponent</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msilogging">ADMX_MSI/MSILogging</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-disableluapatching">ADMX_MSI/MSI_DisableLUAPatching</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-disablepatchuninstall">ADMX_MSI/MSI_DisablePatchUninstall</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-disablesrcheckpoints">ADMX_MSI/MSI_DisableSRCheckPoints</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-disableuserinstalls">ADMX_MSI/MSI_DisableUserInstalls</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-enforceupgradecomponentrules">ADMX_MSI/MSI_EnforceUpgradeComponentRules</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msi-maxpatchcachesize">ADMX_MSI/MSI_MaxPatchCacheSize</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-msidisableembeddedui">ADMX_MSI/MsiDisableEmbeddedUI</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-safeforscripting">ADMX_MSI/SafeForScripting</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-searchorder">ADMX_MSI/SearchOrder</a>
+  </dd>
+    <dd>
+    <a href="#admx-msi-transformssecure">ADMX_MSI/TransformsSecure</a>
+  </dd>
+</dl>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-allowlockdownbrowse"></a>**ADMX_MSI/AllowLockdownBrowse**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows users to search for installation files during privileged installations.
+
+If you enable this policy setting, the Browse button in the "Use feature from" dialog box is enabled. As a result, users can search for installation files even when the installation program is running with elevated system privileges.
+
+Because the installation is running with elevated system privileges, users can browse through directories that their own permissions would not allow.
+
+This policy setting does not affect installations that run in the user's security context. Also, see the "Remove browse dialog box for new source" policy setting.
+
+If you disable or do not configure this policy setting, by default, only system administrators can browse during installations with elevated privileges, such as installations offered on the desktop or displayed in Add or Remove Programs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow users to browse for source while elevated*
+-   GP name: *AllowLockdownBrowse*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-allowlockdownmedia"></a>**ADMX_MSI/AllowLockdownMedia**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows users to install programs from removable media during privileged installations.
+
+If you enable this policy setting, all users are permitted to install programs from removable media, such as floppy disks and CD-ROMs, even when the installation program is running with elevated system privileges.
+
+This policy setting does not affect installations that run in the user's security context. By default, users can install from removable media when the installation runs in their own security context.
+
+If you disable or do not configure this policy setting, by default, users can install programs from removable media only when the installation runs in the user's security context. During privileged installations, such as those offered on the desktop or displayed in Add or Remove Programs, only system administrators can install from removable media.
+
+Also, see the "Prevent removable media source for any install" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow users to use media source while elevated*
+-   GP name: *AllowLockdownMedia*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-allowlockdownpatch"></a>**ADMX_MSI/AllowLockdownPatch**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows users to patch elevated products.
+
+If you enable this policy setting, all users are permitted to install patches, even when the installation program is running with elevated system privileges. Patches are updates or upgrades that replace only those program files that have changed. Because patches can easily be vehicles for malicious programs, some installations prohibit their use.
+
+If you disable or do not configure this policy setting, by default, only system administrators can apply patches during installations with elevated privileges, such as installations offered on the desktop or displayed in Add or Remove Programs.
+
+This policy setting does not affect installations that run in the user's security context. By default, users can install patches to programs that run in their own security context. Also, see the "Prohibit patching" policy setting.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow users to patch elevated products*
+-   GP name: *AllowLockdownPatch*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disableautomaticapplicationshutdown"></a>**ADMX_MSI/DisableAutomaticApplicationShutdown**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls Windows Installer's interaction with the Restart Manager. The Restart Manager API can eliminate or reduce the number of system restarts that are required to complete an installation or update.
+
+If you enable this policy setting, you can use the options in the Prohibit Use of Restart Manager box to control file in use detection behavior.
+
+- The "Restart Manager On" option instructs Windows Installer to use Restart Manager to detect files in use and mitigate a system restart, when possible.
+
+- The "Restart Manager Off" option turns off Restart Manager for file in use detection and the legacy file in use behavior is used.
+
+- The "Restart Manager Off for Legacy App Setup" option applies to packages that were created for Windows Installer versions lesser than 4.0. This option lets those packages display the legacy files in use UI while still using Restart Manager for detection.
+
+If you disable or do not configure this policy setting, Windows Installer will use Restart Manager to detect files in use and mitigate a system restart, when possible.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit use of Restart Manager*
+-   GP name: *DisableAutomaticApplicationShutdown*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablebrowse"></a>**ADMX_MSI/DisableBrowse**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from searching for installation files when they add features or components to an installed program.
+
+If you enable this policy setting, the Browse button beside the "Use feature from" list in the Windows Installer dialog box is disabled. As a result, users must select an installation file source from the "Use features from" list that the system administrator configures.
+
+This policy setting applies even when the installation is running in the user's security context.
+
+If you disable or do not configure this policy setting, the Browse button is enabled when an installation is running in the user's security context. But only system administrators can browse when an installation is running with elevated system privileges, such as installations offered on the desktop or in Add or Remove Programs.
+
+This policy setting affects Windows Installer only. It does not prevent users from selecting other browsers, such as File Explorer or Network Locations, to search for installation files.
+
+Also, see the "Enable user to browse for source while elevated" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Remove browse dialog box for new source*
+-   GP name: *DisableBrowse*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disableflyweightpatching"></a>**ADMX_MSI/DisableFlyweightPatching**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability to turn off all patch optimizations.
+
+If you enable this policy setting, all Patch Optimization options are turned off during the installation.
+
+If you disable or do not configure this policy setting, it enables faster application of patches by removing execution of unnecessary actions. The flyweight patching mode is primarily designed for patches that just update a few files or registry values. The Installer will analyze the patch for specific changes to determine if optimization is possible. If so, the patch will be applied using a minimal set of processing.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit flyweight patching*
+-   GP name: *DisableFlyweightPatching*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disableloggingfrompackage"></a>**ADMX_MSI/DisableLoggingFromPackage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls Windows Installer's processing of the MsiLogging property. The MsiLogging property in an installation package can be used to enable automatic logging of all install operations for the package.
+
+If you enable this policy setting, you can use the options in the Disable logging via package settings box to control automatic logging via package settings behavior.
+
+- The "Logging via package settings on" option instructs Windows Installer to automatically generate log files for packages that include the MsiLogging property.
+
+- The "Logging via package settings off" option turns off the automatic logging behavior when specified via the MsiLogging policy. Log files can still be generated using the logging command line switch or the Logging policy.
+
+If you disable or do not configure this policy setting, Windows Installer will automatically generate log files for those packages that include the MsiLogging property.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off logging via package settings*
+-   GP name: *DisableLoggingFromPackage*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablemsi"></a>**ADMX_MSI/DisableMSI**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting restricts the use of Windows Installer.
+
+If you enable this policy setting, you can prevent users from installing software on their systems or permit users to install only those programs offered by a system administrator. You can use the options in the Disable Windows Installer box to establish an installation setting.
+
+- The "Never" option indicates Windows Installer is fully enabled. Users can install and upgrade software. This is the default behavior for Windows Installer on Windows 2000 Professional, Windows XP Professional and Windows Vista when the policy is not configured.
+
+- The "For non-managed applications only" option permits users to install only those programs that a system administrator assigns (offers on the desktop) or publishes (adds them to Add or Remove Programs). This is the default behavior of Windows Installer on Windows Server 2003 family when the policy is not configured.
+
+- The "Always" option indicates that Windows Installer is disabled.
+
+This policy setting affects Windows Installer only. It does not prevent users from using other methods to install and upgrade programs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Windows Installer*
+-   GP name: *DisableMSI*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablemedia"></a>**ADMX_MSI/DisableMedia**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from installing any programs from removable media.
+
+If you enable this policy setting, if a user tries to install a program from removable media, such as CD-ROMs, floppy disks, and DVDs, a message appears stating that the feature cannot be found.
+
+This policy setting applies even when the installation is running in the user's security context.
+
+If you disable or do not configure this policy setting, users can install from removable media when the installation is running in their own security context, but only system administrators can use removable media when an installation is running with elevated system privileges, such as installations offered on the desktop or in Add or Remove Programs.
+
+Also, see the "Enable user to use media source while elevated" and "Hide the 'Add a program from CD-ROM or floppy disk' option" policy settings.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent removable media source for any installation*
+-   GP name: *DisableMedia*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablepatch"></a>**ADMX_MSI/DisablePatch**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from using Windows Installer to install patches.
+
+If you enable this policy setting, users are prevented from using Windows Installer to install patches. Patches are updates or upgrades that replace only those program files that have changed. Because patches can be easy vehicles for malicious programs, some installations prohibit their use.
+
+> [!NOTE]
+> This policy setting applies only to installations that run in the user's security context.
+
+If you disable or do not configure this policy setting, by default, users who are not system administrators cannot apply patches to installations that run with elevated system privileges, such as those offered on the desktop or in Add or Remove Programs.
+
+Also, see the "Enable user to patch elevated products" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent users from using Windows Installer to install updates and upgrades*
+-   GP name: *DisablePatch*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablerollback-1"></a>**ADMX_MSI/DisableRollback_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prohibits Windows Installer from generating and saving the files it needs to reverse an interrupted or unsuccessful installation.
+
+If you enable this policy setting, Windows Installer is prevented from recording the original state of the system and sequence of changes it makes during installation. It also prevents Windows Installer from retaining files it intends to delete later. As a result, Windows Installer cannot restore the computer to its original state if the installation does not complete.
+
+This policy setting is designed to reduce the amount of temporary disk space required to install programs. Also, it prevents malicious users from interrupting an installation to gather data about the internal state of the computer or to search secure system files. However, because an incomplete installation can render the system or a program inoperable, do not use this policy setting unless it is essential.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If the policy setting is enabled in either folder, it is considered be enabled, even if it is explicitly disabled in the other folder.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit rollback*
+-   GP name: *DisableRollback_1*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablerollback-2"></a>**ADMX_MSI/DisableRollback_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prohibits Windows Installer from generating and saving the files it needs to reverse an interrupted or unsuccessful installation.
+
+If you enable this policy setting, Windows Installer is prevented from recording the original state of the system and sequence of changes it makes during installation. It also prevents Windows Installer from retaining files it intends to delete later. As a result, Windows Installer cannot restore the computer to its original state if the installation does not complete.
+
+This policy setting is designed to reduce the amount of temporary disk space required to install programs. Also, it prevents malicious users from interrupting an installation to gather data about the internal state of the computer or to search secure system files. However, because an incomplete installation can render the system or a program inoperable, do not use this policy setting unless it is essential.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If the policy setting is enabled in either folder, it is considered be enabled, even if it is explicitly disabled in the other folder.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit rollback*
+-   GP name: *DisableRollback_2*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-msi-disablesharedcomponent"></a>**ADMX_MSI/DisableSharedComponent**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability to turn off shared components.
+
+If you enable this policy setting, no packages on the system get the shared component functionality enabled by the msidbComponentAttributesShared attribute in the Component Table.
+
+If you disable or do not configure this policy setting, by default, the shared component functionality is allowed.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off shared components*
+-   GP name: *DisableSharedComponent*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-msilogging"></a>**ADMX_MSI/MSILogging**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Specifies the types of events that Windows Installer records in its transaction log for each installation. The log, Msi.log, appears in the Temp directory of the system volume.
+
+When you enable this policy setting, you can specify the types of events you want Windows Installer to record. To indicate that an event type is recorded, type the letter representing the event type. You can type the letters in any order and list as many or as few event types as you want.
+
+To disable logging, delete all of the letters from the box.
+
+If you disable or do not configure this policy setting, Windows Installer logs the default event types, represented by the letters "iweap."
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Specify the types of events Windows Installer records in its transaction log*
+-   GP name: *MSILogging*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-disableluapatching"></a>**ADMX_MSI/MSI_DisableLUAPatching**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability of non-administrators to install updates that have been digitally signed by the application vendor.
+
+Non-administrator updates provide a mechanism for the author of an application to create digitally signed updates that can be applied by non-privileged users.
+
+If you enable this policy setting, only administrators or users with administrative privileges can apply updates to Windows Installer based applications.
+
+If you disable or do not configure this policy setting, users without administrative privileges can install non-administrator updates.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit non-administrators from applying vendor signed updates*
+-   GP name: *MSI_DisableLUAPatching*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-disablepatchuninstall"></a>**ADMX_MSI/MSI_DisablePatchUninstall**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability for users or administrators to remove Windows Installer based updates.
+
+This policy setting should be used if you need to maintain a tight control over updates. One example is a lockdown environment where you want to ensure that updates once installed cannot be removed by users or administrators.
+
+If you enable this policy setting, updates cannot be removed from the computer by a user or an administrator. The Windows Installer can still remove an update that is no longer applicable to the product.
+
+If you disable or do not configure this policy setting, a user can remove an update from the computer only if the user has been granted privileges to remove the update. This can depend on whether the user is an administrator, whether "Disable Windows Installer" and "Always install with elevated privileges" policy settings are set, and whether the update was installed in a per-user managed, per-user unmanaged, or per-machine context."
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit removal of updates*
+-   GP name: *MSI_DisablePatchUninstall*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-disablesrcheckpoints"></a>**ADMX_MSI/MSI_DisableSRCheckPoints**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents Windows Installer from creating a System Restore checkpoint each time an application is installed. System Restore enables users, in the event of a problem, to restore their computers to a previous state without losing personal data files.
+
+If you enable this policy setting, the Windows Installer does not generate System Restore checkpoints when installing applications.
+
+If you disable or do not configure this policy setting, by default, the Windows Installer automatically creates a System Restore checkpoint each time an application is installed, so that users can restore their computer to the state it was in before installing the application.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off creation of System Restore checkpoints*
+-   GP name: *MSI_DisableSRCheckPoints*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-disableuserinstalls"></a>**ADMX_MSI/MSI_DisableUserInstalls**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure user installs. To configure this policy setting, set it to enabled and use the drop-down list to select the behavior you want.
+
+If you do not configure this policy setting, or if the policy setting is enabled and "Allow User Installs" is selected, the installer allows and makes use of products that are installed per user, and products that are installed per computer. If the installer finds a per-user install of an application, this hides a per-computer installation of that same product.
+
+If you enable this policy setting and "Hide User Installs" is selected, the installer ignores per-user applications. This causes a per-computer installed application to be visible to users, even if those users have a per-user install of the product registered in their user profile.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prohibit User Installs*
+-   GP name: *MSI_DisableUserInstalls*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-enforceupgradecomponentrules"></a>**ADMX_MSI/MSI_EnforceUpgradeComponentRules**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting causes the Windows Installer to enforce strict rules for component upgrades.
+
+If you enable this policy setting, strict upgrade rules will be enforced by the Windows Installer which may cause some upgrades to fail. Upgrades can fail if they attempt to do one of the following:
+
+(1) Remove a component from a feature.
+This can also occur if you change the GUID of a component. The component identified by the original GUID appears to be removed and the component as identified by the new GUID appears as a new component.
+
+(2) Add a new feature to the top or middle of an existing feature tree.
+The new feature must be added as a new leaf feature to an existing feature tree.
+
+If you disable or do not configure this policy setting, the Windows Installer will use less restrictive rules for component upgrades.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Enforce upgrade component rules*
+-   GP name: *MSI_EnforceUpgradeComponentRules*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-maxpatchcachesize"></a>**ADMX_MSI/MSI_MaxPatchCacheSize**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy controls the percentage of disk space available to the Windows Installer baseline file cache.
+
+The Windows Installer uses the baseline file cache to save baseline files modified by binary delta difference updates. The cache is used to retrieve the baseline file for future updates. The cache eliminates user prompts for source media when new updates are applied.
+
+If you enable this policy setting you can modify the maximum size of the Windows Installer baseline file cache.
+
+If you set the baseline cache size to 0, the Windows Installer will stop populating the baseline cache for new updates. The existing cached files will remain on disk and will be deleted when the product is removed.
+
+If you set the baseline cache to 100, the Windows Installer will use available free space for the baseline file cache.
+
+If you disable or do not configure this policy setting, the Windows Installer will uses a default value of 10 percent for the baseline file cache maximum size.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Control maximum size of baseline file cache*
+-   GP name: *MSI_MaxPatchCacheSize*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-msidisableembeddedui"></a>**ADMX_MSI/MsiDisableEmbeddedUI**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability to prevent embedded UI.
+
+If you enable this policy setting, no packages on the system can run embedded UI.
+
+If you disable or do not configure this policy setting, embedded UI is allowed to run.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent embedded UI*
+-   GP name: *MsiDisableEmbeddedUI*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-safeforscripting"></a>**ADMX_MSI/SafeForScripting**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows Web-based programs to install software on the computer without notifying the user.
+
+If you disable or do not configure this policy setting, by default, when a script hosted by an Internet browser tries to install a program on the system, the system warns users and allows them to select or refuse the installation.
+
+If you enable this policy setting, the warning is suppressed and allows the installation to proceed.
+
+This policy setting is designed for enterprises that use Web-based tools to distribute programs to their employees. However, because this policy setting can pose a security risk, it should be applied cautiously.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Internet Explorer security prompt for Windows Installer scripts*
+-   GP name: *SafeForScripting*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-searchorder"></a>**ADMX_MSI/SearchOrder**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the order in which Windows Installer searches for installation files.
+
+If you disable or do not configure this policy setting, by default, the Windows Installer searches the network first, then removable media (floppy drive, CD-ROM, or DVD), and finally, the Internet (URL).
+
+If you enable this policy setting, you can change the search order by specifying the letters representing each file source in the order that you want Windows Installer to search:
+
+- "n" represents the network
+- "m" represents media
+- "u" represents URL, or the Internet
+
+To exclude a file source, omit or delete the letter representing that source type.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Specify the order in which Windows Installer searches for installation files*
+-   GP name: *SearchOrder*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+<!--Policy-->
+<a href="" id="admx-msi-transformssecure"></a>**ADMX_MSI/TransformsSecure**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting saves copies of transform files in a secure location on the local computer.
+
+Transform files consist of instructions to modify or customize a program during installation.
+
+If you enable this policy setting, the transform file is saved in a secure location on the user's computer.
+
+If you do not configure this policy setting on Windows Server 2003, Windows Installer requires the transform file in order to repeat an installation in which the transform file was used, therefore, the user must be using the same computer or be connected to the original or identical media to reinstall, remove, or repair the installation.
+
+This policy setting is designed for enterprises to prevent unauthorized or malicious editing of transform files.
+
+If you disable this policy setting, Windows Installer stores transform files in the Application Data directory in the user's profile.
+
+If you do not configure this policy setting on Windows 2000 Professional, Windows XP Professional and Windows Vista, when a user reinstalls, removes, or repairs an installation, the transform file is available, even if the user is on a different computer or is not connected to the network.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Save copies of transform files in a secure location on workstation*
+-   GP name: *TransformsSecure*
+-   GP path: *Windows Components\Windows Installer*
+-   GP ADMX file name: *MSI.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 120a72cfe44e802e9dffc5f3320f978046c4b893 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 16 Dec 2020 14:20:33 -0800
Subject: [PATCH 073/825] Fixed build warning

---
 windows/client-management/mdm/policy-csp-admx-msi.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-msi.md b/windows/client-management/mdm/policy-csp-admx-msi.md
index 0336f0e890..92fe153f4b 100644
--- a/windows/client-management/mdm/policy-csp-admx-msi.md
+++ b/windows/client-management/mdm/policy-csp-admx-msi.md
@@ -1178,7 +1178,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-disablepatchuninstall"></a>**ADMX_MSI/MSI_DisablePatchUninstall**  
+<a href="" id="admx-msi-msi-disablepatchuninstall"></a>**ADMX_MSI/MSI_DisablePatchUninstall**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1248,7 +1248,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-disablesrcheckpoints"></a>**ADMX_MSI/MSI_DisableSRCheckPoints**  
+<a href="" id="admx-msi-msi-disablesrcheckpoints"></a>**ADMX_MSI/MSI_DisableSRCheckPoints**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1316,7 +1316,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-disableuserinstalls"></a>**ADMX_MSI/MSI_DisableUserInstalls**  
+<a href="" id="admx-msi-msi-disableuserinstalls"></a>**ADMX_MSI/MSI_DisableUserInstalls**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1384,7 +1384,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-enforceupgradecomponentrules"></a>**ADMX_MSI/MSI_EnforceUpgradeComponentRules**  
+<a href="" id="admx-msi-msi-enforceupgradecomponentrules"></a>**ADMX_MSI/MSI_EnforceUpgradeComponentRules**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1458,7 +1458,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-maxpatchcachesize"></a>**ADMX_MSI/MSI_MaxPatchCacheSize**  
+<a href="" id="admx-msi-msi-maxpatchcachesize"></a>**ADMX_MSI/MSI_MaxPatchCacheSize**  
 
 <!--SupportedSKUs-->
 <table>

From 47104dd15056ee0239198349225a48a6f3c3f311 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 16 Dec 2020 14:27:19 -0800
Subject: [PATCH 074/825] Fixed build warning

---
 windows/client-management/mdm/policy-csp-admx-msi.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-msi.md b/windows/client-management/mdm/policy-csp-admx-msi.md
index 92fe153f4b..cd3f93abd4 100644
--- a/windows/client-management/mdm/policy-csp-admx-msi.md
+++ b/windows/client-management/mdm/policy-csp-admx-msi.md
@@ -1108,7 +1108,7 @@ ADMX Info:
 <!--/Policy-->
 <hr/>
 <!--Policy-->
-<a href="" id="admx-msi-disableluapatching"></a>**ADMX_MSI/MSI_DisableLUAPatching**  
+<a href="" id="admx-msi-msi-disableluapatching"></a>**ADMX_MSI/MSI_DisableLUAPatching**  
 
 <!--SupportedSKUs-->
 <table>

From 25f3caf7efddc153c635b5494b174d0f1d4e2f0a Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 16 Dec 2020 14:50:47 -0800
Subject: [PATCH 075/825] Fixed formatting issue

---
 .../mdm/policy-csp-admx-msi.md                | 39 +++++++++++++++++++
 1 file changed, 39 insertions(+)

diff --git a/windows/client-management/mdm/policy-csp-admx-msi.md b/windows/client-management/mdm/policy-csp-admx-msi.md
index cd3f93abd4..948a93babd 100644
--- a/windows/client-management/mdm/policy-csp-admx-msi.md
+++ b/windows/client-management/mdm/policy-csp-admx-msi.md
@@ -169,6 +169,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -242,6 +243,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -312,6 +314,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -387,6 +390,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -462,6 +466,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -531,6 +536,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -604,6 +610,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -679,6 +686,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -752,6 +760,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -826,6 +835,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -896,6 +906,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -967,6 +978,7 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
 
 <!--Policy-->
@@ -1036,7 +1048,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-msilogging"></a>**ADMX_MSI/MSILogging**  
 
@@ -1106,8 +1120,11 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
+
 <a href="" id="admx-msi-msi-disableluapatching"></a>**ADMX_MSI/MSI_DisableLUAPatching**  
 
 <!--SupportedSKUs-->
@@ -1176,8 +1193,11 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
+
 <a href="" id="admx-msi-msi-disablepatchuninstall"></a>**ADMX_MSI/MSI_DisablePatchUninstall**  
 
 <!--SupportedSKUs-->
@@ -1246,8 +1266,11 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
+
 <a href="" id="admx-msi-msi-disablesrcheckpoints"></a>**ADMX_MSI/MSI_DisableSRCheckPoints**  
 
 <!--SupportedSKUs-->
@@ -1314,8 +1337,11 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
+
 <a href="" id="admx-msi-msi-disableuserinstalls"></a>**ADMX_MSI/MSI_DisableUserInstalls**  
 
 <!--SupportedSKUs-->
@@ -1382,8 +1408,11 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
+
 <a href="" id="admx-msi-msi-enforceupgradecomponentrules"></a>**ADMX_MSI/MSI_EnforceUpgradeComponentRules**  
 
 <!--SupportedSKUs-->
@@ -1456,7 +1485,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-msi-maxpatchcachesize"></a>**ADMX_MSI/MSI_MaxPatchCacheSize**  
 
@@ -1530,7 +1561,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-msidisableembeddedui"></a>**ADMX_MSI/MsiDisableEmbeddedUI**  
 
@@ -1598,7 +1631,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-safeforscripting"></a>**ADMX_MSI/SafeForScripting**  
 
@@ -1668,7 +1703,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-searchorder"></a>**ADMX_MSI/SearchOrder**  
 
@@ -1742,7 +1779,9 @@ ADMX Info:
 
 <!--/ADMXBacked-->
 <!--/Policy-->
+
 <hr/>
+
 <!--Policy-->
 <a href="" id="admx-msi-transformssecure"></a>**ADMX_MSI/TransformsSecure**  
 

From 1b998847b42004a68d934432d6e1772f9e7cfa23 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 16 Dec 2020 16:26:33 -0800
Subject: [PATCH 076/825] Added WindowsRemoteManagement policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   2 +
 .../policy-configuration-service-provider.md  |  11 ++
 ...policy-csp-admx-windowsremotemanagement.md | 184 ++++++++++++++++++
 4 files changed, 198 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-windowsremotemanagement.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 423a233fbb..6e91df97ec 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -264,6 +264,7 @@
 #### [ADMX_WindowsExplorer](policy-csp-admx-windowsexplorer.md)
 #### [ADMX_WindowsMediaDRM](policy-csp-admx-windowsmediadrm.md)
 #### [ADMX_WindowsMediaPlayer](policy-csp-admx-windowsmediaplayer.md)
+#### [ADMX_WindowsRemoteManagement](policy-csp-admx-windowsremotemanagement.md)
 #### [ADMX_WindowsStore](policy-csp-admx-windowsstore.md)
 #### [ADMX_WinInit](policy-csp-admx-wininit.md)
 #### [ADMX_WinLogon](policy-csp-admx-winlogon.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 5cbf915a49..8c03c186f3 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -1208,6 +1208,8 @@ ms.date: 10/08/2020
 - [ADMX_WindowsMediaPlayer/PreventWMPDeskTopShortcut](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventwmpdesktopshortcut)
 - [ADMX_WindowsMediaPlayer/SkinLockDown](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-skinlockdown)
 - [ADMX_WindowsMediaPlayer/WindowsStreamingMediaProtocols](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-windowsstreamingmediaprotocols)
+- [ADMX_WindowsRemoteManagement/DisallowKerberos_1](./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-1)
+- [ADMX_WindowsRemoteManagement/DisallowKerberos_2](./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-2)
 - [ADMX_WindowsStore/DisableAutoDownloadWin8](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableautodownloadwin8)
 - [ADMX_WindowsStore/DisableOSUpgrade_1](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableosupgrade-1)
 - [ADMX_WindowsStore/DisableOSUpgrade_2](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableosupgrade-2)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 50e56bd34b..810eacc415 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -4170,6 +4170,17 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_WindowsRemoteManagement policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-1" id="admx-windowsremotemanagement-disallowkerberos-1">ADMX_WindowsRemoteManagement/DisallowKerberos_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-2" id="admx-windowsremotemanagement-disallowkerberos-2">ADMX_WindowsRemoteManagement/DisallowKerberos_2</a>
+  </dd>
+</dl>
+
 ### ADMX_WindowsStore policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-windowsremotemanagement.md b/windows/client-management/mdm/policy-csp-admx-windowsremotemanagement.md
new file mode 100644
index 0000000000..317228c066
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-windowsremotemanagement.md
@@ -0,0 +1,184 @@
+---
+title: Policy CSP - ADMX_WindowsRemoteManagement
+description: Policy CSP - ADMX_WindowsRemoteManagement
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/16/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_WindowsRemoteManagement
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_WindowsRemoteManagement policies  
+
+<dl>
+  <dd>
+    <a href="#admx-windowsremotemanagement-disallowkerberos-1">ADMX_WindowsRemoteManagement/DisallowKerberos_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-windowsremotemanagement-disallowkerberos-2">ADMX_WindowsRemoteManagement/DisallowKerberos_2</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-windowsremotemanagement-disallowkerberos-1"></a>**ADMX_WindowsRemoteManagement/DisallowKerberos_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage whether the Windows Remote Management (WinRM) service accepts Kerberos credentials over the network.
+
+If you enable this policy setting, the WinRM service does not accept Kerberos credentials over the network.  If you disable or do not configure this policy setting, the WinRM service accepts Kerberos authentication from a remote client.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow Kerberos authentication*
+-   GP name: *DisallowKerberos_1*
+-   GP path: *Windows Components\Windows Remote Management (WinRM)\WinRM Service*
+-   GP ADMX file name: *WindowsRemoteManagement.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-windowsremotemanagement-disallowkerberos-2"></a>**ADMX_WindowsRemoteManagement/DisallowKerberos_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage whether the Windows Remote Management (WinRM) client uses Kerberos authentication directly.
+
+If you enable this policy setting, the Windows Remote Management (WinRM) client does not use Kerberos authentication directly. Kerberos can still be used if the WinRM client is using the Negotiate authentication and Kerberos is selected.
+
+If you disable or do not configure this policy setting, the WinRM client uses the Kerberos authentication directly.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disallow Kerberos authentication*
+-   GP name: *DisallowKerberos_2*
+-   GP path: *Windows Components\Windows Remote Management (WinRM)\WinRM Client*
+-   GP ADMX file name: *WindowsRemoteManagement.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 8c90da743de4cb4e34dbc49b9f0f5294f0b8ed7b Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 17 Dec 2020 11:46:07 +0500
Subject: [PATCH 077/825] minor calrification

Added a minor clarification.

Prbolem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8803
---
 .../windows-sandbox/windows-sandbox-overview.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
index e7b8a53f7a..f9ff3618d5 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
@@ -55,7 +55,7 @@ The following video provides an overview of Windows Sandbox.
 1.   Locate and select **Windows Sandbox** on the Start menu to run it for the first time.
 
 ## Usage 
-1. Copy an executable file (and any other files needed to run the application) from the host into the Windows Sandbox window.
+1. Copy an executable file (and any other files needed to run the application) from the host and paste into the **Windows Sandbox** window.
 2. Run the executable file or installer inside the sandbox.
 3. When you're finished experimenting, close the sandbox. A dialog box will state that all sandbox content will be discarded and permanently deleted. Select **ok**.
 4. Confirm that your host machine doesn't exhibit any of the modifications that you made in Windows Sandbox.

From 9405730c99068e667dfedb15035f90f7247e1d4d Mon Sep 17 00:00:00 2001
From: Harun Kimani <52551080+Gental-Giant@users.noreply.github.com>
Date: Thu, 17 Dec 2020 08:53:20 -0800
Subject: [PATCH 078/825] Windows 10 20H2 Connection endpoints

---
 .../privacy/manage-windows-20H2-endpoints.md  | 158 +++++++++++
 windows/privacy/toc.yml                       |   4 +
 ...-endpoints-20H2-non-enterprise-editions.md | 264 ++++++++++++++++++
 3 files changed, 426 insertions(+)
 create mode 100644 windows/privacy/manage-windows-20H2-endpoints.md
 create mode 100644 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

diff --git a/windows/privacy/manage-windows-20H2-endpoints.md b/windows/privacy/manage-windows-20H2-endpoints.md
new file mode 100644
index 0000000000..a2c7dbbed9
--- /dev/null
+++ b/windows/privacy/manage-windows-20H2-endpoints.md
@@ -0,0 +1,158 @@
+---
+title: Connection endpoints for Windows 10 Enterprise, version 20H2
+description: Explains what Windows 10 endpoints are used for, how to turn off traffic to them, and the impact. Specific to Windows 10 Enterprise, version 20H2.
+keywords: privacy, manage connections to Microsoft, Windows 10
+ms.prod: w10
+ms.mktglfcycl: manage
+ms.sitesec: library
+ms.localizationpriority: high
+audience: ITPro
+author: gental-giant
+ms.author: v-hakima
+manager: robsize
+ms.collection: M365-security-compliance
+ms.topic: article
+ms.date: 12/17/2020
+---
+# Manage connection endpoints for Windows 10 Enterprise, version 20H2
+
+**Applies to**
+
+- Windows 10 Enterprise, version 20H2
+
+Some Windows components, app, and related services transfer data to Microsoft network endpoints. Some examples include:
+
+- Connecting to Microsoft Office and Windows sites to download the latest app and security updates.
+- Connecting to email servers to send and receive email.
+- Connecting to the web for every day web browsing.
+- Connecting to the cloud to store and access backups.
+- Using your location to show a weather forecast.
+
+Details about the different ways to control traffic to these endpoints are covered in [Manage connections from Windows operating system components to Microsoft services](manage-connections-from-windows-operating-system-components-to-microsoft-services.md).
+Where applicable, each endpoint covered in this topic includes a link to the specific details on how to control that traffic.
+
+The following methodology was used to derive these network endpoints:
+
+1. Set up the latest version of Windows 10 on a test virtual machine using the default settings.
+2. Leave the device(s) running idle for a week ("idle" means a user is not interacting with the system/device).
+3. Use globally accepted network protocol analyzer/capturing tools and log all background egress traffic.  
+4. Compile reports on traffic going to public IP addresses.
+5. The test virtual machine(s) was logged into using a local account, and was not joined to a domain or Azure Active Directory.
+6. All traffic was captured in our lab using a IPV4 network. Therefore, no IPV6 traffic is reported here.
+7. These tests were conducted in an approved Microsoft lab. It's possible your results may be different.
+8. These tests were conducted for one week, but if you capture traffic for longer you may have different results.
+
+> [!NOTE]
+> Microsoft uses global load balancers that can appear in network trace-routes. For example, an endpoint for *.akadns.net might be used to load balance requests to an Azure datacenter, which can change over time.
+
+## Windows 10 20H2 Enterprise connection endpoints
+
+|Area|Description|Protocol|Destination|
+|----------------|----------|----------|------------|
+|Apps|||[Learn how to turn off traffic to the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-windowsstore)|
+||The following endpoint is used for the Weather app. To turn off traffic for this endpoint, either uninstall the Weather app or disable the Microsoft Store. If you disable the Microsoft store, other Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious Store apps and users will still be able to open them.|HTTP|tile-service.weather.microsoft.com|
+||The following endpoint is used for OneNote Live Tile. To turn off traffic for this endpoint, either uninstall OneNote or disable the Microsoft Store. If you disable the Microsoft store, other Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious Store apps and users will still be able to open them.|TLSv1.2/HTTPS/HTTP|cdn.onenote.net|
+||The following endpoint is used by the Photos app to download configuration files, and to connect to the Office 365 portal's shared infrastructure, including Office in a browser. To turn off traffic for this endpoint, either uninstall the Photos app or disable the Microsoft Store. If you disable the Microsoft store, other Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious Store apps and users will still be able to open them.|TLSv1.2/HTTPS|evoke-windowsservices-tas.msedge.net
+|Certificates|The following endpoint is used by the Automatic Root Certificates Update component to automatically check the list of trusted authorities on Windows Update to see if an update is available. It is possible to turn off traffic to this endpoint, but it is not recommended because as root certificates are updated over time, applications and websites may stop working because they did not receive an updated root certificate the application uses. Additionally, it is used to download certificates that are publicly known to be fraudulent. These settings are critical for both Windows security and the overall security of the Internet. We do not recommend blocking this endpoint. If traffic to this endpoint is turned off, Windows no longer automatically downloads certificates known to be fraudulent, which increases the attack vector on the device.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#automatic-root-certificates-update)|
+|||TLSv1.2/HTTPS/HTTP|ctldl.windowsupdate.com|
+|Cortana and Live Tiles|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-cortana)|
+||The following endpoints are related to Cortana and Live Tiles. If you turn off traffic for this endpoint, you will block updates to Cortana greetings, tips, and Live Tiles.|TLSv1.2/HTTPS/HTTP|www.bing.com*|
+|||TLSv1.2/HTTPS/HTTP|fp.msedge.net|
+|||TLSv1.2|I-ring.msedge.net|
+|||HTTPS|s-ring.msedge.net|
+|Device authentication|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-priv-feedback)|
+||The following endpoint is used to authenticate a device. If you  turn off traffic for this endpoint, the device will not be authenticated.|HTTPS|login.live.com*|
+|Device metadata|The following endpoint is used to retrieve device metadata. If you turn off traffic for this endpoint, metadata will not be updated for the device.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#4-device-metadata-retrieval)|
+|||HTTP|dmd.metaservices.microsoft.com|
+|Diagnostic Data|The following endpoints are used by the Connected User Experiences and Telemetry component and connects to the Microsoft Data Management service. If you turn off traffic for this endpoint, diagnostic and usage information, which helps Microsoft find and fix problems and improve our products and services, will not be sent back to Microsoft. ||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-priv-feedback)|
+|||TLSv1.2/HTTPS/HTTP|v10.events.data.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|v20.events.data.microsoft.com|
+|||HTTP|www.microsoft.com|
+||The following endpoints are used by Windows Error Reporting. To turn off traffic for these endpoints, enable the following Group Policy: Administrative Templates > Windows Components > Windows Error Reporting > Disable Windows Error Reporting. This means error reporting information will not be sent back to Microsoft.|TLSv1.2|telecommand.telemetry.microsoft.com|
+|||TLS v1.2/HTTPS/HTTP|watson.*.microsoft.com|
+|Font Streaming|The following endpoints are used to download fonts on demand. If you turn off traffic for these endpoints, you will not be able to download fonts on demand.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#6-font-streaming)|
+|||HTTPS|fs.microsoft.com|
+|Licensing|The following endpoint is used for online activation and some app licensing. To turn off traffic for this endpoint, disable the Windows License Manager Service. This will also block online activation and app licensing may not work.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#9-license-manager)|
+|||TLSv1.2/HTTPS/HTTP|licensing.mp.microsoft.com|
+|Maps|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-offlinemaps)|
+||The following endpoints are used to check for updates to maps that have been downloaded for offline use. If you turn off traffic for this endpoint, offline maps will not be updated.|TLSv1.2/HTTPS/HTTP|maps.windows.com|
+|Microsoft Account|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-microsoft-account)|
+||The following endpoints are used for Microsoft accounts to sign in. If you turn off traffic for these endpoints, users cannot sign in with Microsoft accounts. |TLSv1.2/HTTPS|login.live.com|
+|Microsoft Edge|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#13-microsoft-edge)|
+||This traffic is related to the Microsoft Edge browser.|HTTPS|iecvlist.microsoft.com|
+||The following endpoint is used by Microsoft Edge Update service to check for new updates. If you disable this endpoint, Microsoft Edge won’t be able to check for and apply new edge updates.|TLSv1.2/HTTPS/HTTP|msedge.api.cdp.microsoft.com|
+|Microsoft forward link redirection service (FWLink)|The following endpoint is used by the Microsoft forward link redirection service (FWLink) to redirect permanent web links to their actual, sometimes transitory, URL. FWlinks are similar to URL shorteners, just longer. If you disable this endpoint, Windows Defender won't be able to update its malware definitions; links from Windows and other Microsoft products to the Web won't work; and PowerShell updateable Help won't update. To disable the traffic, instead disable the traffic that's getting forwarded.|HTTP|go.microsoft.com|
+|Microsoft Store|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
+||The following endpoint is used to download image files that are called when applications run (Microsoft Store or Inbox MSN Apps). If you turn off traffic for these endpoints, the image files won't be downloaded, and apps cannot be installed or updated from the Microsoft Store. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them.|HTTPS|img-prod-cms-rt-microsoft-com.akamaized.net|
+||The following endpoint is used for the Windows Push Notification Services (WNS). WNS enables third-party developers to send toast, tile, badge, and raw updates from their own cloud service. This provides a mechanism to deliver new updates to your users in a power-efficient and dependable way. If you turn off traffic for this endpoint, push notifications will no longer work, including MDM device management, mail synchronization, settings synchronization.|TLSv1.2/HTTPS|*.wns.windows.com|
+||The following endpoints are used to revoke licenses for malicious apps in the Microsoft Store. To turn off traffic for this endpoint, either uninstall the app or disable the Microsoft Store. If you disable the Microsoft Store, other Microsoft Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them|TLSv1.2|1storecatalogrevocation.storequality.microsoft.com|
+|||HTTPS/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
+||The following endpoint is used to get Microsoft Store analytics.|HTTPS|manage.devcenter.microsoft.com|
+||The following endpoints are used to communicate with Microsoft Store. If you turn off traffic for these endpoints, apps cannot be installed or updated from the Microsoft Store.|TLSv1.2/HTTPS/HTTP|displaycatalog.mp.microsoft.com|
+|||HTTPS|pti.store.microsoft.com|
+|||HTTP|share.microsoft.com|
+||The following endpoint is used to get Microsoft Store analytics.|TLSv1.2/HTTPS/HTTP|manage.devcenter.microsoft.com|
+|Network Connection Status Indicator (NCSI)|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-ncsi)|
+||Network Connection Status Indicator (NCSI) detects Internet connectivity and corporate network connectivity status. NCSI sends a DNS request and HTTP query to this endpoint to determine if the device can communicate with the Internet. If you turn off traffic for this endpoint, NCSI won't be able to determine if the device is connected to the Internet and the network status tray icon will show a warning.|HTTPS|www.msftconnecttest.com*|
+|Office|The following endpoints are used to connect to the Office 365 portal's shared infrastructure, including Office in a browser. For more info, see Office 365 URLs and IP address ranges. You can turn this off by removing all Microsoft Office apps and the Mail and Calendar apps. If you turn off traffic for these endpoints, users won't be able to save documents to the cloud or see their recently used documents.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
+|||HTTPS|www.office.com|
+|||HTTPS|blobs.officehome.msocdn.com|
+|||HTTPS|officehomeblobs.blob.core.windows.net|
+|||HTTPS|self.events.data.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|outlookmobile-office365-tas.msedge.net|
+|OneDrive|The following endpoints are related to OneDrive. If you turn off traffic for these endpoints, anything that relies on g.live.com to get updated URL information will no longer work.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-onedrive)|
+|||TLSv1.2/HTTPS/HTTP|g.live.com|
+|||TLSv1.2/HTTPS/HTTP|oneclient.sfx.ms|
+|||HTTPS| logincdn.msauth.net|
+|Settings|The following endpoint is used as a way for apps to dynamically update their configuration. Apps such as System Initiated User Feedback and the Xbox app use it. If you turn off traffic for this endpoint, an app that uses this endpoint may stop working.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-priv-feedback)|
+|||TLSv1.2/HTTPS/HTTP|settings-win.data.microsoft.com|
+|||HTTPS|settings.data.microsoft.com|
+|Skype|The following endpoint is used to retrieve Skype configuration values. To turn off traffic for this endpoint, either uninstall the app or disable the Microsoft Store. If you disable the Microsoft store, other Microsoft Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-windowsstore)|
+|||HTTPS/HTTP|*.pipe.aria.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
+|Teams|The following endpoint is used for Microsoft Teams application.||[Learn how to turn off traffic to all of the following endpoint(s).]( manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
+|||TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
+|Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled. If you turn off traffic for this endpoint, the device will not use Cloud-based Protection.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-defender)|
+|||HTTPS/TLSv1.2|wdcp.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications. If you turn off traffic for these endpoints, SmartScreen notifications will not appear.|HTTPS|*smartscreen-prod.microsoft.com|
+|||HTTPS/HTTP|checkappexec.microsoft.com|
+|Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips. If you turn off traffic for these endpoints, Windows Spotlight will still try to deliver new lock screen images and updated content but it will fail; suggested apps, Microsoft account notifications, and Windows tips will not be downloaded. For more information, see Windows Spotlight.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-spotlight)|
+|||TLSv1.2/HTTPS/HTTP|arc.msn.com|
+|||HTTPS|ris.api.iris.microsoft.com|
+|Windows Update|The following endpoint is used for Windows Update downloads of apps and OS updates, including HTTP downloads or HTTP downloads blended with peers. If you turn off traffic for this endpoint, Windows Update downloads will not be managed, as critical metadata that is used to make downloads more resilient is blocked. Downloads may be impacted by corruption (resulting in re-downloads of full files). Additionally, downloads of the same update by multiple devices on the same local network will not use peer devices for bandwidth reduction.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-updates)|
+|||TLSv1.2/HTTPS/HTTP|*.prod.do.dsp.mp.microsoft.com|
+|||HTTP|emdl.ws.microsoft.com|
+||The following endpoints are used to download operating system patches, updates, and apps from Microsoft Store. If you turn off traffic for these endpoints, the device will not be able to download updates for the operating system.|TLSv1.2/HTTPS/HTTP|*.dl.delivery.mp.microsoft.com|
+|||HTTP|*.windowsupdate.com|
+||The following endpoints enable connections to Windows Update, Microsoft Update, and the online services of the Store. If you turn off traffic for these endpoints, the device will not be able to connect to Windows Update and Microsoft Update to help keep the device secure. Also, the device will not be able to acquire and update apps from the Store. These are dependent on also enabling "Device authentication" and "Microsoft Account" endpoints.|TLSv1.2/HTTPS/HTTP|*.delivery.mp.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|*.update.microsoft.com|
+||The following endpoint is used for compatibility database updates for Windows.|HTTPS|adl.windows.com|
+||The following endpoint is used for content regulation. If you turn off traffic for this endpoint, the Windows Update Agent will be unable to contact the endpoint and fallback behavior will be used. This may result in content being either incorrectly downloaded or not downloaded at all.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
+|Xbox Live|The following endpoint is used for Xbox Live.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#26-microsoft-store)|
+|||HTTPS|dlassets-ssl.xboxlive.com|
+|
+
+## Other Windows 10 editions
+
+To view endpoints for other versions of Windows 10 Enterprise, see:
+
+- [Manage connection endpoints for Windows 10, version 2004](manage-windows-2004-endpoints.md)
+- [Manage connection endpoints for Windows 10, version 1909](manage-windows-1909-endpoints.md)
+- [Manage connection endpoints for Windows 10, version 1903](manage-windows-1903-endpoints.md)
+- [Manage connection endpoints for Windows 10, version 1809](manage-windows-1809-endpoints.md)
+- [Manage connection endpoints for Windows 10, version 1803](manage-windows-1803-endpoints.md)
+- [Manage connection endpoints for Windows 10, version 1709](manage-windows-1709-endpoints.md)
+
+To view endpoints for non-Enterprise Windows 10 editions, see:
+
+- [Windows 10, version 2004, connection endpoints for non-Enterprise editions](windows-endpoints-2004-non-enterprise-editions.md)
+- [Windows 10, version 1909, connection endpoints for non-Enterprise editions](windows-endpoints-1909-non-enterprise-editions.md)
+- [Windows 10, version 1903, connection endpoints for non-Enterprise editions](windows-endpoints-1903-non-enterprise-editions.md)
+- [Windows 10, version 1809, connection endpoints for non-Enterprise editions](windows-endpoints-1809-non-enterprise-editions.md)
+- [Windows 10, version 1803, connection endpoints for non-Enterprise editions](windows-endpoints-1803-non-enterprise-editions.md)
+- [Windows 10, version 1709, connection endpoints for non-Enterprise editions](windows-endpoints-1709-non-enterprise-editions.md)
+
+## Related links
+
+- [Office 365 URLs and IP address ranges](https://support.office.com/en-us/article/Office-365-URLs-and-IP-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2?ui=en-US&rs=en-US&ad=US)
+- [Network infrastructure requirements for Microsoft Intune](https://docs.microsoft.com/mem/intune/fundamentals/intune-endpoints)
diff --git a/windows/privacy/toc.yml b/windows/privacy/toc.yml
index 60bf83c118..52a6ddd6da 100644
--- a/windows/privacy/toc.yml
+++ b/windows/privacy/toc.yml
@@ -41,6 +41,8 @@
           href: manage-connections-from-windows-operating-system-components-to-microsoft-services.md
         - name: Manage connections from Windows operating system components to Microsoft services using MDM
           href: manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md
+        - name: Connection endpoints for Windows 10, version 20H2
+          href: manage-windows-20H2-endpoints.md
         - name: Connection endpoints for Windows 10, version 2004
           href: manage-windows-2004-endpoints.md
         - name: Connection endpoints for Windows 10, version 1909
@@ -53,6 +55,8 @@
           href: manage-windows-1803-endpoints.md
         - name: Connection endpoints for Windows 10, version 1709
           href: manage-windows-1709-endpoints.md
+        - name: Connection endpoints for non-Enterprise editions of Windows 10, version 20H2
+          href: windows-endpoints-20H2-non-enterprise-editions.md
         - name: Connection endpoints for non-Enterprise editions of Windows 10, version 2004
           href: windows-endpoints-2004-non-enterprise-editions.md
         - name: Connection endpoints for non-Enterprise editions of Windows 10, version 1909
diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
new file mode 100644
index 0000000000..6f82f0ddf4
--- /dev/null
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -0,0 +1,264 @@
+---
+title: Windows 10, version 20H2, connection endpoints for non-Enterprise editions
+description: Explains what Windows 10 endpoints are used in non-Enterprise editions. Specific to Windows 10, version 20H2.
+keywords: privacy, manage connections to Microsoft, Windows 10, Windows Server 2016
+ms.prod: w10
+ms.mktglfcycl: manage
+ms.sitesec: library
+ms.localizationpriority: high
+audience: ITPro
+author: gental-giant
+ms.author: v-hakima
+manager: robsize
+ms.collection: M365-security-compliance
+ms.topic: article
+ms.date: 12/17/2020
+---
+# Windows 10, version 20H2, connection endpoints for non-Enterprise editions
+
+ **Applies to**
+
+- Windows 10 Home, version 20H2
+- Windows 10 Professional, version 20H2
+- Windows 10 Education, version 20H2
+
+In addition to the endpoints listed for [Windows 10 Enterprise](manage-windows-2004-endpoints.md), the following endpoints are available on other non-Enterprise editions of Windows 10, version 20H2.
+
+The following methodology was used to derive the network endpoints:
+
+1. Set up the latest version of Windows 10 on a test virtual machine using the default settings.
+2. Leave the device(s) running idle for a week ("idle" means a user is not interacting with the system/device).
+3. Use globally accepted network protocol analyzer/capturing tools and log all background egress traffic.  
+4. Compile reports on traffic going to public IP addresses.
+5. The test virtual machine(s) was logged into using a local account, and was not joined to a domain or Azure Active Directory.
+6. All traffic was captured in our lab using a IPV4 network.  Therefore, no IPV6 traffic is reported here.
+7. These tests were conducted in an approved Microsoft lab.  It's possible your results may be different.
+8. These tests were conducted for one week. If you capture traffic for longer you may have different results.
+
+> [!NOTE]
+> Microsoft uses global load balancers that can appear in network trace-routes. For example, an endpoint for *.akadns.net might be used to load balance requests to an Azure datacenter, which can change over time.
+
+## Windows 10 Family
+
+| **Area** | **Description** | **Protocol** | **Destination** |
+|-----------|--------------- |------------- |-----------------|
+| Activity Feed Service |The following endpoints are used by Activity Feed Service which enables multiple cross-device data roaming scenarios on Windows|TLSv1.2/HTTPS/HTTP|activity.windows.com|
+|Apps|The following endpoints are used for the Weather app.|TLSv1.2/HTTPS/HTTP|tile-service.weather.microsoft.com|
+||The following endpoint is used by the Photos app to download configuration files, and to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS/HTTP|evoke-windowsservices-tas.msedge.net|
+||The following endpoint is used for OneNote Live Tile.|HTTPS/HTTP|cdn.onenote.net|
+||Used for Spotify Live Tile|HTTPS/HTTP|spclient.wg.spotify.com|
+|Certificates|The following endpoint is used by the Automatic Root Certificates Update component to automatically check the list of trusted authorities on Windows Update to see if an update is available.|TLSv1.2/HTTPS/HTTP|ctldl.windowsupdate.com/*|
+|Cortana and Live Tiles|The following endpoints are related to Cortana and Live Tiles|TLSv1.2/HTTPS/HTTP|www.bing.com*|
+|||HTTPS/HTTP|fp.msedge.net|
+|||HTTPS/HTTP|k-ring.msedge.net|
+|||TLSv1.2|b-ring.msedge.net|
+|Device authentication|The following endpoint is used to authenticate a device.|HTTPS|login.live.com*|
+|Device Directory Service|Used by Device Directory Service to keep track of user-device associations and storing metadata about the devices.|HTTPS/HTTP|cs.dds.microsoft.com|
+|Device metadata|The following endpoint is used to retrieve device metadata.|TLSv1.2/HTTP|dmd.metaservices.microsoft.com|
+|Diagnostic data|The following endpoints are used by the Connected User Experiences and Telemetry component and connects to the Microsoft Data Management service.|TLSv1.2/HTTP|v10.events.data.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|v20.events.data.microsoft.com|
+|||TLSv1.2/HTTP|www.microsoft.com|
+||The following endpoints are used by Windows Error Reporting.|TLSv1.2/HTTPS/HTTP|watson.telemetry.microsoft.com|
+|Font Streaming|The following endpoints are used to download fonts on demand.|TLSv1.2/HTTPS|fs.microsoft.com*|
+|Licensing|The following endpoint is used for online activation and some app licensing.|HTTPS/HTTP|*licensing.mp.microsoft.com|
+|||HTTPS|licensing.mp.microsoft.com/v7.0/licenses/content|
+|Location|The following endpoints are used for location data.|TLSV1.2|inference.location.live.net|
+|Maps|The following endpoints are used to check for updates to maps that have been downloaded for offline use.|HTTPS/HTTP|maps.windows.com| 
+|||HTTPS/HTTP|*.ssl.ak.dynamic.tiles.virtualearth.net|
+|||HTTPS/HTTP|*.ssl.ak.tiles.virtualearth.net|
+|||HTTPS/HTTP|dev.virtualearth.net|
+|||HTTPS/HTTP|ecn.dev.virtualearth.net|
+|||HTTPS/HTTP|ssl.bing.com|
+|Microsoft Account|The following endpoints are used for Microsoft accounts to sign in|TLSv1.2/HTTPS/HTTP|*login.live.com|
+|Microsoft Edge|The following endpoints are used for Microsoft Edge Browser Services.|HTTPS/HTTP|edge.activity.windows.com|
+|||HTTPS/HTTP|edge.microsoft.com|
+||The following endpoint is used by Microsoft Edge Update service to check for new updates.|HTTPS/HTTP|msedge.api.cdp.microsoft.com|
+|Microsoft forward link redirection|The following endpoint is used by the Microsoft forward link redirection service (FWLink) to redirect permanent web links to their actual, sometimes transitory, URL. FWlinks are similar to URL shorteners, just longer|HTTP|go.microsoft.com/fwlink/|
+|||TLSv1.2/HTTPS/HTTP|go.microsoft.com|
+|Microsoft Store|The following endpoint is used to download image files that are called when applications run (Microsoft Store or Inbox MSN Apps)|TLSv1.2/HTTPS/HTTP|img-prod-cms-rt-microsoft-com.akamaized.net|
+||The following endpoint is used for the Windows Push Notification Services (WNS). WNS enables third-party developers to send toast, tile, badge, and raw updates from their own cloud service. This provides a mechanism to deliver new updates to your users in a power-efficient and dependable way.|TLSv1.2/HTTPS|*.wns.windows.com|
+||The following endpoint is used to revoke licenses for malicious apps in the Microsoft Store.|TLSv1.2/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
+||The following endpoints are used to communicate with Microsoft Store.|TLSv1.2/HTTPS/HTTP|*displaycatalog.mp.microsoft.com|
+|||HTTPS|pti.store.microsoft.com|
+|||HTTPS|storesdk.dsx.mp.microsoft.com|
+||The following endpoint is used to get Microsoft Store analytics.|TLSv1.2/HTTPS/HTTP|manage.devcenter.microsoft.com|
+||The following endpoints are used get images that are used for Microsoft Store suggestions|TLSv1.2|store-images.s-microsoft.com|
+|Network Connection Status Indicator (NCSI)|Network Connection Status Indicator (NCSI) detects Internet connectivity and corporate network connectivity status. NCSI sends a DNS request and HTTP query to this endpoint to determine if the device can communicate with the Internet.|TLSv1.2/HTTP|www.msftconnecttest.com*|
+|Office|The following endpoints are used to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS/HTTP|outlook.office365.com|
+|||TLSv1.2/HTTPS|office.com|
+|||TLSv1.2/HTTPS|blobs.officehome.msocdn.com|
+|||HTTPS/HTTP|officehomeblobs.blob.core.windows.net|
+|||HTTP/HTTPS|*.blob.core.windows.net|
+|||TLSv1.2|self.events.data.microsoft.com|
+|||HTTPS/HTTP|outlookmobile-office365-tas.msedge.net|
+|||HTTP|roaming.officeapps.live.com|
+|||HTTPS/HTTP|substrate.office.com|
+|OneDrive|The following endpoints are related to OneDrive.|HTTPS|g.live.com|
+|||TLSv1.2/HTTPS|oneclient.sfx.ms|
+|||HTTPS/TLSv1.2|logincdn.msauth.net|
+|||HTTPS/HTTP|windows.policies.live.net|
+|||HTTPS/HTTP|api.onedrive.com|
+|||HTTPS/HTTP|skydrivesync.policies.live.net|
+|||HTTPS/HTTP|*storage.live.com|
+|||HTTPS/HTTP|*settings.live.net|
+|Settings|The following endpoint is used as a way for apps to dynamically update their configuration. Apps such as System Initiated User Feedback and the Xbox app use it.|TLSv1.2/HTTPS/HTTP|settings.data.microsoft.com*|
+|||TLSv1.2/HTTPS/HTTP|settings-win.data.microsoft.com*|
+|Skype|The following endpoint is used to retrieve Skype configuration values.|TLSv1.2/HTTPS/HTTP|*.pipe.aria.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
+|Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
+|Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
+|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+|||TLSv1.2|definitionupdates.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+|||TLSv1.2/HTTP|checkappexec.microsoft.com|
+|Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
+|||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|
+|||HTTPS|mucp.api.account.microsoft.com|
+|Windows Update|The following endpoint is used for Windows Update downloads of apps and OS updates, including HTTP downloads or HTTP downloads blended with peers.|TLSv1.2/HTTPS/HTTP|*.prod.do.dsp.mp.microsoft.com|
+|||TLSv1.2/HTTP|emdl.ws.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|*.dl.delivery.mp.microsoft.com|
+||The following endpoints are used to download operating system patches, updates, and apps from Microsoft Store.|TLSv1.2/HTTP|*.windowsupdate.com|
+|||TLSv1.2/HTTPS/HTTP|*.delivery.mp.microsoft.com|
+||The following endpoints enable connections to Windows Update, Microsoft Update, and the online services of the Store to help keep the device secure.|TLSv1.2/HTTPS/HTTP|*.update.microsoft.com|
+||The following endpoint is used for compatibility database updates for Windows.|HTTP/HTTPS|adl.windows.com|
+||The following endpoint is used for content regulation.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
+|Xbox Live|The following endpoints are used for Xbox Live.|
+|||TLSv1.2/HTTPS/HTTP|dlassets-ssl.xboxlive.com| 
+|||TLSv1.2/HTTPS|da.xboxservices.com|
+|||HTTPS|www.xboxab.com|
+|
+
+## Windows 10 Pro
+
+| **Area** | **Description** | **Protocol** | **Destination** |
+| --- | --- | --- | ---|
+| Activity Feed Service |The following endpoints are used by Activity Feed Service which enables multiple cross-device data roaming scenarios on Windows|TLSv1.2/HTTPS/HTTP|activity.windows.com|
+|Apps|The following endpoints are used for the Weather app.|TLSv1.2/HTTPS/HTTP|tile-service.weather.microsoft.com|
+||The following endpoint is used by the Photos app to download configuration files, and to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS/HTTP|evoke-windowsservices-tas.msedge.net|
+||The following endpoint is used for OneNote Live Tile.|HTTPS/HTTP|cdn.onenote.net|
+||Used for Spotify Live Tile|HTTPS/HTTP|spclient.wg.spotify.com|
+|Certificates|The following endpoint is used by the Automatic Root Certificates Update component to automatically check the list of trusted authorities on Windows Update to see if an update is available.|TLSv1.2/HTTPS/HTTP|ctldl.windowsupdate.com/*|
+|Cortana and Live Tiles|The following endpoints are related to Cortana and Live Tiles|TLSv1.2/HTTPS/HTTP|www.bing.com*|
+|Device authentication|The following endpoint is used to authenticate a device.|HTTPS|login.live.com*|
+|Device metadata|The following endpoint is used to retrieve device metadata.|TLSv1.2/HTTP|dmd.metaservices.microsoft.com|
+|Diagnostic data|The following endpoints are used by the Connected User Experiences and Telemetry component and connects to the Microsoft Data Management service.|TLSv1.2/HTTP|v10.events.data.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|v20.events.data.microsoft.com|
+|||TLSv1.2/HTTP|www.microsoft.com|
+||The following endpoints are used by Windows Error Reporting.|TLSv1.2/HTTPS/HTTP|watson.telemetry.microsoft.com|
+|Font Streaming|The following endpoints are used to download fonts on demand.|TLSv1.2/HTTPS|fs.microsoft.com*|
+|Licensing|The following endpoint is used for online activation and some app licensing.|HTTPS/HTTP|*licensing.mp.microsoft.com|
+|Maps|The following endpoints are used to check for updates to maps that have been downloaded for offline use.|HTTPS/HTTP|maps.windows.com|
+|Microsoft Account|The following endpoints are used for Microsoft accounts to sign in|TLSv1.2/HTTPS/HTTP|*login.live.com|
+|Microsoft Edge|The following endpoint is used by Microsoft Edge Update service to check for new updates.|HTTPS/HTTP|msedge.api.cdp.microsoft.com|
+|Microsoft forward link redirection|The following endpoint is used by the Microsoft forward link redirection service (FWLink) to redirect permanent web links to their actual, sometimes transitory, URL. FWlinks are similar to URL shorteners, just longer|TLSv1.2/HTTPS/HTTP|go.microsoft.com|
+|Microsoft Store|The following endpoint is used to download image files that are called when applications run (Microsoft Store or Inbox MSN Apps)|TLSv1.2/HTTPS/HTTP|img-prod-cms-rt-microsoft-com.akamaized.net|
+||The following endpoint is used for the Windows Push Notification Services (WNS). WNS enables third-party developers to send toast, tile, badge, and raw updates from their own cloud service. This provides a mechanism to deliver new updates to your users in a power-efficient and dependable way.|TLSv1.2/HTTPS|*.wns.windows.com|
+||The following endpoint is used to revoke licenses for malicious apps in the Microsoft Store.|TLSv1.2/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
+||The following endpoints are used to communicate with Microsoft Store.|TLSv1.2/HTTPS/HTTP|*displaycatalog.mp.microsoft.com|
+|||HTTPS|pti.store.microsoft.com|
+|||HTTPS|storesdk.dsx.mp.microsoft.com|
+||The following endpoint is used to get Microsoft Store analytics.|TLSv1.2/HTTPS/HTTP|manage.devcenter.microsoft.com|
+|Network Connection Status Indicator (NCSI)|Network Connection Status Indicator (NCSI) detects Internet connectivity and corporate network connectivity status. NCSI sends a DNS request and HTTP query to this endpoint to determine if the device can communicate with the Internet.|TLSv1.2/HTTP|www.msftconnecttest.com*|
+|Office|The following endpoints are used to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS/HTTP|outlook.office365.com|
+|||TLSv1.2/HTTPS|office.com|
+|||TLSv1.2/HTTPS|blobs.officehome.msocdn.com|
+|||HTTPS/HTTP|officehomeblobs.blob.core.windows.net|
+|||HTTP/HTTPS|*.blob.core.windows.net|
+|||TLSv1.2|self.events.data.microsoft.com|
+|||HTTPS/HTTP|outlookmobile-office365-tas.msedge.net|
+|||TLSv1.2/HTTPS/HTTP|officeclient.microsoft.com|
+|||HTTPS/HTTP|substrate.office.com|
+|OneDrive|The following endpoints are related to OneDrive.|HTTPS|g.live.com|
+|||TLSv1.2/HTTPS|oneclient.sfx.ms|
+|||HTTPS/TLSv1.2|logincdn.msauth.net|
+|||HTTPS/HTTP|windows.policies.live.net|
+|||HTTPS/HTTP|*storage.live.com|
+|||HTTPS/HTTP|*settings.live.net|
+|Settings|The following endpoint is used as a way for apps to dynamically update their configuration. Apps such as System Initiated User Feedback and the Xbox app use it.|TLSv1.2/HTTPS/HTTP|settings.data.microsoft.com*|
+|||TLSv1.2/HTTPS/HTTP|settings-win.data.microsoft.com*|
+|Skype|The following endpoint is used to retrieve Skype configuration values.|TLSv1.2/HTTPS/HTTP|*.pipe.aria.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
+|Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
+|Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
+|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+|||TLSv1.2/HTTP|checkappexec.microsoft.com|
+|Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
+|||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|
+|Windows Update|The following endpoint is used for Windows Update downloads of apps and OS updates, including HTTP downloads or HTTP downloads blended with peers.|TLSv1.2/HTTPS/HTTP|*.prod.do.dsp.mp.microsoft.com|
+|||TLSv1.2/HTTP|emdl.ws.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|*.dl.delivery.mp.microsoft.com|
+||The following endpoints are used to download operating system patches, updates, and apps from Microsoft Store.|TLSv1.2/HTTP|*.windowsupdate.com|
+|||TLSv1.2/HTTPS/HTTP|*.delivery.mp.microsoft.com|
+||The following endpoints enable connections to Windows Update, Microsoft Update, and the online services of the Store to help keep the device secure.|TLSv1.2/HTTPS/HTTP|*.update.microsoft.com|
+||The following endpoint is used for compatibility database updates for Windows.|HTTP/HTTPS|adl.windows.com|
+||The following endpoint is used for content regulation.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
+|Xbox Live|The following endpoints are used for Xbox Live.|
+|||TLSv1.2/HTTPS/HTTP|dlassets-ssl.xboxlive.com| 
+|||TLSv1.2/HTTPS|da.xboxservices.com|
+|
+
+## Windows 10 Education
+
+| **Area** | **Description** | **Protocol** | **Destination** |
+| --- | --- | --- | ---|
+| Activity Feed Service |The following endpoints are used by Activity Feed Service which enables multiple cross-device data roaming scenarios on Windows|TLSv1.2/HTTPS/HTTP|activity.windows.com|
+|Apps|The following endpoints are used for the Weather app.|TLSv1.2/HTTPS/HTTP|tile-service.weather.microsoft.com|
+||The following endpoint is used by the Photos app to download configuration files, and to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS/HTTP|evoke-windowsservices-tas.msedge.net|
+||The following endpoint is used for OneNote Live Tile.|HTTPS/HTTP|cdn.onenote.net|
+|Bing Search|The following endpoint is used by Microsoft Search in Bing enabling users to search across files, SharePoint sites, OneDrive content, Teams and Yammer conversations, and other shared data sources in an organization, as well as the web.|HTTPS|business.bing.com|
+|Certificates|The following endpoint is used by the Automatic Root Certificates Update component to automatically check the list of trusted authorities on Windows Update to see if an update is available.|TLSv1.2/HTTPS/HTTP|ctldl.windowsupdate.com/*|
+|Cortana and Live Tiles|The following endpoints are related to Cortana and Live Tiles|TLSv1.2/HTTPS/HTTP|www.bing.com*|
+|||HTTPS/HTTP|fp.msedge.net|
+|||TLSv1.2|odinvzc.azureedge.net|
+|||TLSv1.2|b-ring.msedge.net|
+|Device metadata|The following endpoint is used to retrieve device metadata.|TLSv1.2/HTTP|dmd.metaservices.microsoft.com|
+|Diagnostic data|The following endpoints are used by the Connected User Experiences and Telemetry component and connects to the Microsoft Data Management service.|TLSv1.2/HTTP|v10.events.data.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|v20.events.data.microsoft.com|
+|||TLSv1.2/HTTP|www.microsoft.com|
+||The following endpoints are used by Windows Error Reporting.|TLSv1.2/HTTPS/HTTP|watson.telemetry.microsoft.com|
+|Font Streaming|The following endpoints are used to download fonts on demand.|TLSv1.2/HTTPS|fs.microsoft.com*|
+|Licensing|The following endpoint is used for online activation and some app licensing.|HTTPS/HTTP|*licensing.mp.microsoft.com|
+|Location|The following endpoints are used for location data.|TLSV1.2|inference.location.live.net|
+|Maps|The following endpoints are used to check for updates to maps that have been downloaded for offline use.|HTTPS/HTTP|maps.windows.com|
+|Microsoft Account|The following endpoints are used for Microsoft accounts to sign in|TLSv1.2/HTTPS/HTTP|*login.live.com|
+|Microsoft Edge|The following endpoint is used by Microsoft Edge Update service to check for new updates.|HTTPS/HTTP|msedge.api.cdp.microsoft.com|
+|Microsoft forward link redirection|The following endpoint is used by the Microsoft forward link redirection service (FWLink) to redirect permanent web links to their actual, sometimes transitory, URL. FWlinks are similar to URL shorteners, just longer|TLSv1.2/HTTPS/HTTP|go.microsoft.com|
+|Microsoft Store|The following endpoint is used to download image files that are called when applications run (Microsoft Store or Inbox MSN Apps)|TLSv1.2/HTTPS/HTTP|img-prod-cms-rt-microsoft-com.akamaized.net|
+||The following endpoint is used for the Windows Push Notification Services (WNS). WNS enables third-party developers to send toast, tile, badge, and raw updates from their own cloud service. This provides a mechanism to deliver new updates to your users in a power-efficient and dependable way.|TLSv1.2/HTTPS|*.wns.windows.com|
+||The following endpoint is used to revoke licenses for malicious apps in the Microsoft Store.|TLSv1.2/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|1storecatalogrevocation.storequality.microsoft.com|
+||The following endpoints are used to communicate with Microsoft Store.|TLSv1.2/HTTPS/HTTP|*displaycatalog.mp.microsoft.com|
+|||HTTPS|pti.store.microsoft.com|
+|||HTTPS|storesdk.dsx.mp.microsoft.com|
+||The following endpoint is used to get Microsoft Store analytics.|TLSv1.2/HTTPS/HTTP|manage.devcenter.microsoft.com|
+|Network Connection Status Indicator (NCSI)|Network Connection Status Indicator (NCSI) detects Internet connectivity and corporate network connectivity status. NCSI sends a DNS request and HTTP query to this endpoint to determine if the device can communicate with the Internet.|TLSv1.2/HTTP|www.msftconnecttest.com*|
+|Office|The following endpoints are used to connect to the Office 365 portal's shared infrastructure, including Office in a browser.|TLSv1.2/HTTPS|office.com|
+|||HTTPS/HTTP|officehomeblobs.blob.core.windows.net|
+|||TLSv1.2|self.events.data.microsoft.com|
+|OneDrive|The following endpoints are related to OneDrive.|HTTPS|g.live.com|
+|||TLSv1.2/HTTPS|oneclient.sfx.ms|
+|||HTTPS/TLSv1.2|logincdn.msauth.net|
+|Settings|The following endpoint is used as a way for apps to dynamically update their configuration. Apps such as System Initiated User Feedback and the Xbox app use it.|TLSv1.2/HTTPS/HTTP|settings.data.microsoft.com*|
+|||TLSv1.2/HTTPS/HTTP|settings-win.data.microsoft.com*|
+|Skype|The following endpoint is used to retrieve Skype configuration values.|TLSv1.2/HTTPS/HTTP|*.pipe.aria.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
+|Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
+|Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
+|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+|||TLSv1.2/HTTP|checkappexec.microsoft.com|
+|Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
+|||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|
+|Windows Update|The following endpoint is used for Windows Update downloads of apps and OS updates, including HTTP downloads or HTTP downloads blended with peers.|TLSv1.2/HTTPS/HTTP|*.prod.do.dsp.mp.microsoft.com|
+|||TLSv1.2/HTTP|emdl.ws.microsoft.com|
+|||TLSv1.2/HTTPS/HTTP|*.dl.delivery.mp.microsoft.com|
+||The following endpoints are used to download operating system patches, updates, and apps from Microsoft Store.|TLSv1.2/HTTP|*.windowsupdate.com|
+|||TLSv1.2/HTTPS/HTTP|*.delivery.mp.microsoft.com|
+||The following endpoints enable connections to Windows Update, Microsoft Update, and the online services of the Store to help keep the device secure.|TLSv1.2/HTTPS/HTTP|*.update.microsoft.com|
+||The following endpoint is used for compatibility database updates for Windows.|HTTP/HTTPS|adl.windows.com|
+||The following endpoint is used for content regulation.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
+|Xbox Live|The following endpoints are used for Xbox Live.|
+|||TLSv1.2/HTTPS/HTTP|dlassets-ssl.xboxlive.com|
+|||TLSv1.2/HTTPS|da.xboxservices.com|
+|
\ No newline at end of file

From 193579e579888db25219475966dc8ccda084eaa4 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 17 Dec 2020 14:50:01 -0800
Subject: [PATCH 079/825] Added icm policies

---
 .../mdm/policy-csp-admx-icm.md                | 1557 +++++++++++++++++
 1 file changed, 1557 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-icm.md

diff --git a/windows/client-management/mdm/policy-csp-admx-icm.md b/windows/client-management/mdm/policy-csp-admx-icm.md
new file mode 100644
index 0000000000..82dfc6c182
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-icm.md
@@ -0,0 +1,1557 @@
+---
+title: Policy CSP - ADMX_ICM
+description: Policy CSP - ADMX_ICM
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/17/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_ICM
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_ICM policies  
+
+<dl>
+  <dd>
+    <a href="#admx-icm-ceipenable">ADMX_ICM/CEIPEnable</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-certmgr-disableautorootupdates">ADMX_ICM/CertMgr_DisableAutoRootUpdates</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-disablehttpprinting-1">ADMX_ICM/DisableHTTPPrinting_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-disablewebpnpdownload-1">ADMX_ICM/DisableWebPnPDownload_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-driversearchplaces-dontsearchwindowsupdate">ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-eventviewer-disablelinks">ADMX_ICM/EventViewer_DisableLinks</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-hss-headlinespolicy">ADMX_ICM/HSS_HeadlinesPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-hss-kbsearchpolicy">ADMX_ICM/HSS_KBSearchPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-internetmanagement_restrictcommunication_1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-internetmanagement-restrictcommunication-2">ADMX_ICM/InternetManagement_RestrictCommunication_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-nc-exitonisp">ADMX_ICM/NC_ExitOnISP</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-nc-noregistration">ADMX_ICM/NC_NoRegistration</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-pch-donotreport">ADMX_ICM/PCH_DoNotReport</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-removewindowsupdate-icm">ADMX_ICM/RemoveWindowsUpdate_ICM</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-searchcompanion-disablefileupdates">ADMX_ICM/SearchCompanion_DisableFileUpdates</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellnouseinternetopenwith-1">ADMX_ICM/ShellNoUseInternetOpenWith_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellnouseinternetopenwith-2">ADMX_ICM/ShellNoUseInternetOpenWith_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellnousestoreopenwith-1">ADMX_ICM/ShellNoUseStoreOpenWith_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellnousestoreopenwith-2">ADMX_ICM/ShellNoUseStoreOpenWith_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellpreventwpwdownload-1">ADMX_ICM/ShellPreventWPWDownload_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellremoveorderprints-1">ADMX_ICM/ShellRemoveOrderPrints_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellremoveorderprints-2">ADMX_ICM/ShellRemoveOrderPrints_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellremovepublishtoweb-1">ADMX_ICM/ShellRemovePublishToWeb_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-shellremovepublishtoweb-2">ADMX_ICM/ShellRemovePublishToWeb_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-winmsg_noinstrumentation-1">ADMX_ICM/WinMSG_NoInstrumentation_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-icm-winmsg_noinstrumentation-2">ADMX_ICM/WinMSG_NoInstrumentation_2</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-ceipenable"></a>**ADMX_ICM/CEIPEnable**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting turns off the Windows Customer Experience Improvement Program. The Windows Customer Experience Improvement Program collects information about your hardware configuration and how you use our software and services to identify trends and usage patterns. Microsoft will not collect your name, address, or any other personally identifiable information. There are no surveys to complete, no salesperson will call, and you can continue working without interruption. It is simple and user-friendly.
+
+If you enable this policy setting, all users are opted out of the Windows Customer Experience Improvement Program.
+
+If you disable this policy setting, all users are opted into the Windows Customer Experience Improvement Program.
+
+If you do not configure this policy setting, the administrator can use the Problem Reports and Solutions component in Control Panel to enable Windows Customer Experience Improvement Program for all users.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Windows Customer Experience Improvement Program*
+-   GP name: *CEIPEnable*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-certmgr-disableautorootupdates"></a>**ADMX_ICM/CertMgr_DisableAutoRootUpdates**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to automatically update root certificates using the Windows Update website. 
+
+Typically, a certificate is used when you use a secure website or when you send and receive secure email. Anyone can issue certificates, but to have transactions that are as secure as possible, certificates must be issued by a trusted certificate authority (CA). Microsoft has included a list in Windows XP and other products of companies and organizations that it considers trusted authorities.
+
+If you enable this policy setting, when you are presented with a certificate issued by an untrusted root authority, your computer will not contact the Windows Update website to see if Microsoft has added the CA to its list of trusted authorities.
+
+If you disable or do not configure this policy setting, your computer will contact the Windows Update website.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Automatic Root Certificates Update*
+-   GP name: *CertMgr_DisableAutoRootUpdates*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-disablehttpprinting-1"></a>**ADMX_ICM/DisableHTTPPrinting_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to allow printing over HTTP from this client.
+
+Printing over HTTP allows a client to print to printers on the intranet as well as the Internet.
+
+> [!NOTE]
+> This policy setting affects the client side of Internet printing only. It does not prevent this computer from acting as an Internet Printing server and making its shared printers available via HTTP.
+
+If you enable this policy setting, it prevents this client from printing to Internet printers over HTTP.
+
+If you disable or do not configure this policy setting, users can choose to print to Internet printers over HTTP.  Also, see the "Web-based printing" policy setting in Computer Configuration/Administrative Templates/Printers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off printing over HTTP*
+-   GP name: *DisableHTTPPrinting_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-disablewebpnpdownload-1"></a>**ADMX_ICM/DisableWebPnPDownload_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to allow this client to download print driver packages over HTTP.
+
+To set up HTTP printing, non-inbox drivers need to be downloaded over HTTP.
+
+> [!NOTE]
+> This policy setting does not prevent the client from printing to printers on the Intranet or the Internet over HTTP.
+
+It only prohibits downloading drivers that are not already installed locally.
+
+If you enable this policy setting, print drivers cannot be downloaded over HTTP.
+
+If you disable or do not configure this policy setting, users can download print drivers over HTTP.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off downloading of print drivers over HTTP*
+-   GP name: *DisableWebPnPDownload_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-driversearchplaces-dontsearchwindowsupdate"></a>**ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows searches Windows Update for device drivers when no local drivers for a device are present.
+
+If you enable this policy setting, Windows Update is not searched when a new device is installed.
+
+If you disable this policy setting, Windows Update is always searched for drivers when no local drivers are present.
+
+If you do not configure this policy setting, searching Windows Update is optional when installing a device.
+
+Also see "Turn off Windows Update device driver search prompt" in "Administrative Templates/System," which governs whether an administrator is prompted before searching Windows Update for device drivers if a driver is not found locally.
+
+> [!NOTE]
+> This policy setting is replaced by "Specify Driver Source Search Order" in "Administrative Templates/System/Device Installation" on newer versions of Windows.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Windows Update device driver searching*
+-   GP name: *DriverSearchPlaces_DontSearchWindowsUpdate*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-eventviewer-disablelinks"></a>**ADMX_ICM/EventViewer_DisableLinks**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether "Events.asp" hyperlinks are available for events within the Event Viewer application.
+
+The Event Viewer normally makes all HTTP(S) URLs into hyperlinks that activate the Internet browser when clicked. In addition, "More Information" is placed at the end of the description text if the event is created by a Microsoft component. This text contains a link (URL) that, if clicked, sends information about the event to Microsoft, and allows users to learn more about why that event occurred.
+
+If you enable this policy setting, event description hyperlinks are not activated and the text "More Information" is not displayed at the end of the description.
+
+If you disable or do not configure this policy setting, the user can click the hyperlink, which prompts the user and then sends information about the event over the Internet to Microsoft.
+
+Also, see "Events.asp URL", "Events.asp program", and "Events.asp Program Command Line Parameters" settings in "Administrative Templates/Windows Components/Event Viewer".
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Event Viewer "Events.asp" links*
+-   GP name: *EventViewer_DisableLinks*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-hss-headlinespolicy"></a>**ADMX_ICM/HSS_HeadlinesPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to show the "Did you know?" section of Help and Support Center.
+
+This content is dynamically updated when users who are connected to the Internet open Help and Support Center, and provides up-to-date information about Windows and the computer.
+
+If you enable this policy setting, the Help and Support Center no longer retrieves nor displays "Did you know?" content.
+
+If you disable or do not configure this policy setting, the Help and Support Center retrieves and displays "Did you know?" content.
+
+You might want to enable this policy setting for users who do not have Internet access, because the content in the "Did you know?" section will remain static indefinitely without an Internet connection.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Help and Support Center "Did you know?" content*
+-   GP name: *HSS_HeadlinesPolicy*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-hss-kbsearchpolicy"></a>**ADMX_ICM/HSS_KBSearchPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether users can perform a Microsoft Knowledge Base search from the Help and Support Center.
+
+The Knowledge Base is an online source of technical support information and self-help tools for Microsoft products, and is searched as part of all Help and Support Center searches with the default search options.
+
+If you enable this policy setting, it removes the Knowledge Base section from the Help and Support Center "Set search options" page, and only Help content on the local computer is searched.
+
+If you disable or do not configure this policy setting, the Knowledge Base is searched if the user has a connection to the Internet and has not disabled the Knowledge Base search from the Search Options page.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Help and Support Center Microsoft Knowledge Base search*
+-   GP name: *HSS_KBSearchPolicy*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication-1"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_1*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-nc-exitonisp"></a>**ADMX_ICM/NC_ExitOnISP**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the Internet Connection Wizard can connect to Microsoft to download a list of Internet Service Providers (ISPs).
+
+If you enable this policy setting, the "Choose a list of Internet Service Providers" path in the Internet Connection Wizard causes the wizard to exit. This prevents users from retrieving the list of ISPs, which resides on Microsoft servers.
+
+If you disable or do not configure this policy setting, users can connect to Microsoft to download a list of ISPs for their area.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Internet Connection Wizard if URL connection is referring to Microsoft.com*
+-   GP name: *NC_ExitOnISP*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-nc-noregistration"></a>**ADMX_ICM/NC_NoRegistration**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the Windows Registration Wizard connects to Microsoft.com for online registration.
+
+If you enable this policy setting, it blocks users from connecting to Microsoft.com for online registration and users cannot register their copy of Windows online.
+
+If you disable or do not configure this policy setting, users can connect to Microsoft.com to complete the online Windows Registration.
+
+Note that registration is optional and involves submitting some personal information to Microsoft. However, Windows Product Activation is required but does not involve submitting any personal information (except the country/region you live in).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Registration if URL connection is referring to Microsoft.com*
+-   GP name: *NC_NoRegistration*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-pch-donotreport"></a>**ADMX_ICM/PCH_DoNotReport**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether or not errors are reported to Microsoft.
+
+Error Reporting is used to report information about a system or application that has failed or has stopped responding and is used to improve the quality of the product.
+
+If you enable this policy setting, users are not given the option to report errors.
+
+If you disable or do not configure this policy setting, the errors may be reported to Microsoft via the Internet or to a corporate file share.
+
+This policy setting overrides any user setting made from the Control Panel for error reporting.  
+
+Also see the "Configure Error Reporting", "Display Error Notification" and "Disable Windows Error Reporting" policy settings under Computer Configuration/Administrative Templates/Windows Components/Windows Error Reporting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Windows Error Reporting*
+-   GP name: *PCH_DoNotReport*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-removewindowsupdate-icm"></a>**ADMX_ICM/RemoveWindowsUpdate_ICM**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to remove access to Windows Update.
+
+If you enable this policy setting, all Windows Update features are removed. This includes blocking access to the Windows Update website at http://windowsupdate.microsoft.com, from the Windows Update hyperlink on the Start menu, and also on the Tools menu in Internet Explorer. Windows automatic updating is also disabled; you will neither be notified about nor will you receive critical updates from Windows Update. This policy setting also prevents Device Manager from automatically installing driver updates from the Windows Update website.
+
+If you disable or do not configure this policy setting, users can access the Windows Update website and enable automatic updating to receive notifications and critical updates from Windows Update.
+
+> [!NOTE]
+> This policy applies only when this PC is configured to connect to an intranet update service using the "Specify intranet Microsoft update service location" policy.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off access to all Windows Update features*
+-   GP name: *RemoveWindowsUpdate_ICM*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-searchcompanion-disablefileupdates"></a>**ADMX_ICM/SearchCompanion_DisableFileUpdates**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Search Companion should automatically download content updates during local and Internet searches.
+
+When users search the local computer or the Internet, Search Companion occasionally connects to Microsoft to download an updated privacy policy and additional content files used to format and display results.
+
+If you enable this policy setting, Search Companion does not download content updates during searches.
+
+If you disable or do not configure this policy setting, Search Companion downloads content updates unless the user is using Classic Search.
+
+> [!NOTE]
+> Internet searches still send the search text and information about the search to Microsoft and the chosen search provider. Choosing Classic Search turns off the Search Companion feature completely.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Search Companion content file updates*
+-   GP name: *SearchCompanion_DisableFileUpdates*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+
+If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+
+If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+
+If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Restrict Internet communication*
+-   GP name: *InternetManagement_RestrictCommunication_2*
+-   GP path: *System\Internet Communication Management*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From d6680ea186ced63062cada328413d599fc6c9565 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 17 Dec 2020 15:49:32 -0800
Subject: [PATCH 080/825] Added ICM policies

---
 windows/client-management/mdm/TOC.md          |   1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |  26 +
 .../policy-configuration-service-provider.md  | 115 +++-
 .../mdm/policy-csp-admx-icm.md                | 517 ++++++++++++++++--
 4 files changed, 601 insertions(+), 58 deletions(-)

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 6e91df97ec..a4329d7e1b 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -209,6 +209,7 @@
 #### [ADMX_Globalization](policy-csp-admx-globalization.md)
 #### [ADMX_Help](policy-csp-admx-help.md)
 #### [ADMX_HelpAndSupport](policy-csp-admx-helpandsupport.md)
+#### [ADMX_ICM](policy-csp-admx-icm.md)
 #### [ADMX_kdc](policy-csp-admx-kdc.md)
 #### [ADMX_Kerberos](policy-csp-admx-kerberos.md)
 #### [ADMX_LanmanServer](policy-csp-admx-lanmanserver.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 8c03c186f3..fc369bf835 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -314,6 +314,32 @@ ms.date: 10/08/2020
 - [ADMX_HelpAndSupport/HPExplicitFeedback](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpexplicitfeedback)
 - [ADMX_HelpAndSupport/HPImplicitFeedback](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpimplicitfeedback)
 - [ADMX_HelpAndSupport/HPOnlineAssistance](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hponlineassistance)
+- [ADMX_ICM/CEIPEnable](./policy-csp-admx-icm.md#admx-icm-ceipenable)
+- [ADMX_ICM/CertMgr_DisableAutoRootUpdates](./policy-csp-admx-icm.md#admx-icm-certmgr-disableautorootupdates)
+- [ADMX_ICM/DisableHTTPPrinting_1](./policy-csp-admx-icm.md#admx-icm-disablehttpprinting-1)
+- [ADMX_ICM/DisableWebPnPDownload_1](./policy-csp-admx-icm.md#admx-icm-disablewebpnpdownload-1)
+- [ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate](./policy-csp-admx-icm.md#admx-icm-driversearchplaces-dontsearchwindowsupdate)
+- [ADMX_ICM/EventViewer_DisableLinks](./policy-csp-admx-icm.md#admx-icm-eventviewer-disablelinks)
+- [ADMX_ICM/HSS_HeadlinesPolicy](./policy-csp-admx-icm.md#admx-icm-hss-headlinespolicy)
+- [ADMX_ICM/HSS_KBSearchPolicy](./policy-csp-admx-icm.md#admx-icm-hss-kbsearchpolicy)
+- [ADMX_ICM/InternetManagement_RestrictCommunication_1](./policy-csp-admx-icm.md#admx-icm-internetmanagement_restrictcommunication_1)
+- [ADMX_ICM/InternetManagement_RestrictCommunication_2](./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-2)
+- [ADMX_ICM/NC_ExitOnISP](./policy-csp-admx-icm.md#admx-icm-nc-exitonisp)
+- [ADMX_ICM/NC_NoRegistration](./policy-csp-admx-icm.md#admx-icm-nc-noregistration)
+- [ADMX_ICM/PCH_DoNotReport](./policy-csp-admx-icm.md#admx-icm-pch-donotreport)
+- [ADMX_ICM/RemoveWindowsUpdate_ICM](./policy-csp-admx-icm.md#admx-icm-removewindowsupdate-icm)
+- [ADMX_ICM/SearchCompanion_DisableFileUpdates](./policy-csp-admx-icm.md#admx-icm-searchcompanion-disablefileupdates)
+- [ADMX_ICM/ShellNoUseInternetOpenWith_1](./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-1)
+- [ADMX_ICM/ShellNoUseInternetOpenWith_2](./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-2)
+- [ADMX_ICM/ShellNoUseStoreOpenWith_1](./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-1)
+- [ADMX_ICM/ShellNoUseStoreOpenWith_2](./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-2)
+- [ADMX_ICM/ShellPreventWPWDownload_1](./policy-csp-admx-icm.md#admx-icm-shellpreventwpwdownload-1)
+- [ADMX_ICM/ShellRemoveOrderPrints_1](./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-1)
+- [ADMX_ICM/ShellRemoveOrderPrints_2](./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-2)
+- [ADMX_ICM/ShellRemovePublishToWeb_1](./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-1)
+- [ADMX_ICM/ShellRemovePublishToWeb_2](./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-2)
+- [ADMX_ICM/WinMSG_NoInstrumentation_1](./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-1)
+- [ADMX_ICM/WinMSG_NoInstrumentation_2](./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-2)
 - [ADMX_kdc/CbacAndArmor](./policy-csp-admx-kdc.md#admx-kdc-cbacandarmor)
 - [ADMX_kdc/ForestSearch](./policy-csp-admx-kdc.md#admx-kdc-forestsearch)
 - [ADMX_kdc/PKINITFreshness](./policy-csp-admx-kdc.md#admx-kdc-pkinitfreshness)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 810eacc415..13cc28a89d 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1129,22 +1129,6 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
-### ADMX_HelpAndSupport policies
-<dl>
-  <dd>
-    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-activehelp" id="admx-helpandsupport-activehelp">ADMX_HelpAndSupport/ActiveHelp</a>
-  </dd>
-  <dd>
-    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpexplicitfeedback" id="admx-helpandsupport-hpexplicitfeedback">ADMX_HelpAndSupport/HPExplicitFeedback</a>
-  </dd>
-  <dd>
-    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpimplicitfeedback" id="admx-helpandsupport-hpimplicitfeedback">ADMX_HelpAndSupport/HPImplicitFeedback</a>
-  </dd>
-  <dd>
-    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hponlineassistance" id="admx-helpandsupport-hponlineassistance">ADMX_HelpAndSupport/HPOnlineAssistance</a>
-  </dd>
-</dl>
-
 ### ADMX_Globalization policies  
 
 <dl>
@@ -1222,6 +1206,105 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_HelpAndSupport policies
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-activehelp" id="admx-helpandsupport-activehelp">ADMX_HelpAndSupport/ActiveHelp</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpexplicitfeedback" id="admx-helpandsupport-hpexplicitfeedback">ADMX_HelpAndSupport/HPExplicitFeedback</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpimplicitfeedback" id="admx-helpandsupport-hpimplicitfeedback">ADMX_HelpAndSupport/HPImplicitFeedback</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hponlineassistance" id="admx-helpandsupport-hponlineassistance">ADMX_HelpAndSupport/HPOnlineAssistance</a>
+  </dd>
+</dl>
+
+## ADMX_ICM policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-ceipenable" id="admx-icm-ceipenable">ADMX_ICM/CEIPEnable</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-certmgr-disableautorootupdates" id="admx-icm-certmgr-disableautorootupdates">ADMX_ICM/CertMgr_DisableAutoRootUpdates</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-disablehttpprinting-1" id="admx-icm-disablehttpprinting-1">ADMX_ICM/DisableHTTPPrinting_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-disablewebpnpdownload-1" id="admx-icm-disablewebpnpdownload-1">ADMX_ICM/DisableWebPnPDownload_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-driversearchplaces-dontsearchwindowsupdate" id="admx-icm-driversearchplaces-dontsearchwindowsupdate">ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-eventviewer-disablelinks" id="admx-icm-eventviewer-disablelinks">ADMX_ICM/EventViewer_DisableLinks</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-hss-headlinespolicy" id="admx-icm-hss-headlinespolicy">ADMX_ICM/HSS_HeadlinesPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-hss-kbsearchpolicy" id="admx-icm-hss-kbsearchpolicy">ADMX_ICM/HSS_KBSearchPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-internetmanagement_restrictcommunication_1" id="admx-icm-internetmanagement_restrictcommunication_1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-2" id="admx-icm-internetmanagement-restrictcommunication-2">ADMX_ICM/InternetManagement_RestrictCommunication_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-nc-exitonisp" id="admx-icm-nc-exitonisp">ADMX_ICM/NC_ExitOnISP</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-nc-noregistration" id="admx-icm-nc-noregistration">ADMX_ICM/NC_NoRegistration</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-pch-donotreport" id="admx-icm-pch-donotreport">ADMX_ICM/PCH_DoNotReport</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-removewindowsupdate-icm" id="admx-icm-removewindowsupdate-icm">ADMX_ICM/RemoveWindowsUpdate_ICM</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-searchcompanion-disablefileupdates" id="admx-icm-searchcompanion-disablefileupdates">ADMX_ICM/SearchCompanion_DisableFileUpdates</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-1" id="admx-icm-shellnouseinternetopenwith-1">ADMX_ICM/ShellNoUseInternetOpenWith_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-2" id="admx-icm-shellnouseinternetopenwith-2">ADMX_ICM/ShellNoUseInternetOpenWith_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-1" id="admx-icm-shellnousestoreopenwith-1">ADMX_ICM/ShellNoUseStoreOpenWith_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-2" id="admx-icm-shellnousestoreopenwith-2">ADMX_ICM/ShellNoUseStoreOpenWith_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellpreventwpwdownload-1" id="admx-icm-shellpreventwpwdownload-1">ADMX_ICM/ShellPreventWPWDownload_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-1" id="admx-icm-shellremoveorderprints-1">ADMX_ICM/ShellRemoveOrderPrints_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-2" id="admx-icm-shellremoveorderprints-2">ADMX_ICM/ShellRemoveOrderPrints_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-1" id="admx-icm-shellremovepublishtoweb-1">ADMX_ICM/ShellRemovePublishToWeb_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-2" id="admx-icm-shellremovepublishtoweb-2">ADMX_ICM/ShellRemovePublishToWeb_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-1" id="admx-icm-winmsg_noinstrumentation-1">ADMX_ICM/WinMSG_NoInstrumentation_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-2" id="admx-icm-winmsg_noinstrumentation-2">ADMX_ICM/WinMSG_NoInstrumentation_2</a>
+  </dd>
+</dl>
+
 ### ADMX_kdc policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-icm.md b/windows/client-management/mdm/policy-csp-admx-icm.md
index 82dfc6c182..fa79b7acc9 100644
--- a/windows/client-management/mdm/policy-csp-admx-icm.md
+++ b/windows/client-management/mdm/policy-csp-admx-icm.md
@@ -1193,7 +1193,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-shellnouseinternetopenwith-1"></a>**ADMX_ICM/ShellNoUseInternetOpenWith_1**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1230,19 +1230,20 @@ ADMX Info:
 [Scope](./policy-configuration-service-provider.md#policy-scope):
 
 > [!div class = "checklist"]
-> * Device
+> * User
 
 <hr/>
 
 <!--/Scope-->
 <!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to use the Microsoft Web service for finding an application to open a file with an unhandled file association.
 
-If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+When a user opens a file that has an extension that is not associated with any applications on the computer, the user is given the choice to select a local application or use the Web service to find an application.
 
-If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+If you enable this policy setting, the link and the dialog for using the Web service to open an unhandled file association are removed.
+
+If you disable or do not configure this policy setting, the user is allowed to use the Web service.
 
-If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
 <!--/Description-->
 > [!TIP]
 > This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
@@ -1253,9 +1254,9 @@ If you do not configure this policy setting, all of the the policy settings in t
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Restrict Internet communication*
--   GP name: *InternetManagement_RestrictCommunication_2*
--   GP path: *System\Internet Communication Management*
+-   GP English name: *Turn off Internet File Association service*
+-   GP name: *ShellNoUseInternetOpenWith_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
 -   GP ADMX file name: *ICM.admx*
 
 <!--/ADMXBacked-->
@@ -1263,7 +1264,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-shellnouseinternetopenwith-2"></a>**ADMX_ICM/ShellNoUseInternetOpenWith_2**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1306,13 +1307,14 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to use the Microsoft Web service for finding an application to open a file with an unhandled file association.
 
-If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+When a user opens a file that has an extension that is not associated with any applications on the computer, the user is given the choice to select a local application or use the Web service to find an application.
 
-If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+If you enable this policy setting, the link and the dialog for using the Web service to open an unhandled file association are removed.
+
+If you disable or do not configure this policy setting, the user is allowed to use the Web service.
 
-If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
 <!--/Description-->
 > [!TIP]
 > This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
@@ -1323,9 +1325,9 @@ If you do not configure this policy setting, all of the the policy settings in t
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Restrict Internet communication*
--   GP name: *InternetManagement_RestrictCommunication_2*
--   GP path: *System\Internet Communication Management*
+-   GP English name: *Turn off Internet File Association service*
+-   GP name: *ShellNoUseInternetOpenWith_2*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
 -   GP ADMX file name: *ICM.admx*
 
 <!--/ADMXBacked-->
@@ -1333,7 +1335,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-shellnousestoreopenwith-1"></a>**ADMX_ICM/ShellNoUseStoreOpenWith_1**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1370,19 +1372,20 @@ ADMX Info:
 [Scope](./policy-configuration-service-provider.md#policy-scope):
 
 > [!div class = "checklist"]
-> * Device
+> * User
 
 <hr/>
 
 <!--/Scope-->
 <!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to use the Store service for finding an application to open a file with an unhandled file type or protocol association.
 
-If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+When a user opens a file type or protocol that is not associated with any applications on the computer, the user is given the choice to select a local application or use the Store service to find an application.
 
-If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+If you enable this policy setting, the "Look for an app in the Store" item in the Open With dialog is removed.
+
+If you disable or do not configure this policy setting, the user is allowed to use the Store service and the Store item is available in the Open With dialog.
 
-If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
 <!--/Description-->
 > [!TIP]
 > This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
@@ -1393,9 +1396,9 @@ If you do not configure this policy setting, all of the the policy settings in t
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Restrict Internet communication*
--   GP name: *InternetManagement_RestrictCommunication_2*
--   GP path: *System\Internet Communication Management*
+-   GP English name: *Turn off access to the Store*
+-   GP name: *ShellNoUseStoreOpenWith_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
 -   GP ADMX file name: *ICM.admx*
 
 <!--/ADMXBacked-->
@@ -1403,7 +1406,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-shellnousestoreopenwith-2"></a>**ADMX_ICM/ShellNoUseStoreOpenWith_2**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1446,13 +1449,14 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to use the Store service for finding an application to open a file with an unhandled file type or protocol association.
 
-If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+When a user opens a file type or protocol that is not associated with any applications on the computer, the user is given the choice to select a local application or use the Store service to find an application.
 
-If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+If you enable this policy setting, the "Look for an app in the Store" item in the Open With dialog is removed.
+
+If you disable or do not configure this policy setting, the user is allowed to use the Store service and the Store item is available in the Open With dialog.
 
-If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
 <!--/Description-->
 > [!TIP]
 > This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
@@ -1463,9 +1467,9 @@ If you do not configure this policy setting, all of the the policy settings in t
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Restrict Internet communication*
--   GP name: *InternetManagement_RestrictCommunication_2*
--   GP path: *System\Internet Communication Management*
+-   GP English name: *Turn off access to the Store*
+-   GP name: *ShellNoUseStoreOpenWith_2*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
 -   GP ADMX file name: *ICM.admx*
 
 <!--/ADMXBacked-->
@@ -1473,7 +1477,147 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-shellpreventwpwdownload-1"></a>**ADMX_ICM/ShellPreventWPWDownload_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows should download a list of providers for the web publishing and online ordering wizards.  These wizards allow users to select from a list of companies that provide services such as online storage and photographic printing. By default, Windows displays providers downloaded from a Windows website in addition to providers specified in the registry.
+
+If you enable this policy setting, Windows does not download providers, and only the service providers that are cached in the local registry are displayed.
+
+If you disable or do not configure this policy setting, a list of providers are downloaded when the user uses the web publishing or online ordering wizards.
+
+See the documentation for the web publishing and online ordering wizards for more information, including details on specifying service providers in the registry.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Internet download for Web publishing and online ordering wizards*
+-   GP name: *ShellPreventWPWDownload_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-shellremoveorderprints-1"></a>**ADMX_ICM/ShellRemoveOrderPrints_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the "Order Prints Online" task is available from Picture Tasks in Windows folders.
+
+The Order Prints Online Wizard is used to download a list of providers and allow users to order prints online.  If you enable this policy setting, the task "Order Prints Online" is removed from Picture Tasks in File Explorer folders.
+
+If you disable or do not configure this policy setting, the task is displayed.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off the "Order Prints" picture task*
+-   GP name: *ShellRemoveOrderPrints_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-shellremoveorderprints-2"></a>**ADMX_ICM/ShellRemoveOrderPrints_2**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1516,13 +1660,14 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows can access the Internet to accomplish tasks that require Internet resources.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the "Order Prints Online" task is available from Picture Tasks in Windows folders.
 
-If you enable this setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features cannot access the Internet.
+The Order Prints Online Wizard is used to download a list of providers and allow users to order prints online.
 
-If you disable this policy setting, all of the the policy settings listed in the "Internet Communication settings" section are set such that their respective features can access the Internet.
+If you enable this policy setting, the task "Order Prints Online" is removed from Picture Tasks in File Explorer folders.
+
+If you disable or do not configure this policy setting, the task is displayed.
 
-If you do not configure this policy setting, all of the the policy settings in the "Internet Communication settings" section are set to not configured.
 <!--/Description-->
 > [!TIP]
 > This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
@@ -1533,9 +1678,297 @@ If you do not configure this policy setting, all of the the policy settings in t
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Restrict Internet communication*
--   GP name: *InternetManagement_RestrictCommunication_2*
--   GP path: *System\Internet Communication Management*
+-   GP English name: *Turn off the "Order Prints" picture task*
+-   GP name: *ShellRemoveOrderPrints_2*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-shellremovepublishtoweb-1"></a>**ADMX_ICM/ShellRemovePublishToWeb_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the tasks "Publish this file to the Web," "Publish this folder to the Web," and "Publish the selected items to the Web" are available from File and Folder Tasks in Windows folders.
+
+The Web Publishing Wizard is used to download a list of providers and allow users to publish content to the web.
+
+If you enable this policy setting, these tasks are removed from the File and Folder tasks in Windows folders. If you disable or do not configure this policy setting, the tasks are shown.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off the "Publish to Web" task for files and folders*
+-   GP name: *ShellRemovePublishToWeb_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-shellremovepublishtoweb-2"></a>**ADMX_ICM/ShellRemovePublishToWeb_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the tasks "Publish this file to the Web," "Publish this folder to the Web," and "Publish the selected items to the Web" are available from File and Folder Tasks in Windows folders.
+
+The Web Publishing Wizard is used to download a list of providers and allow users to publish content to the web.
+
+If you enable this policy setting, these tasks are removed from the File and Folder tasks in Windows folders.
+
+If you disable or do not configure this policy setting, the tasks are shown.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off the "Publish to Web" task for files and folders*
+-   GP name: *ShellRemovePublishToWeb_2*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-winmsg_noinstrumentation-1"></a>**ADMX_ICM/WinMSG_NoInstrumentation_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows Messenger collects anonymous information about how Windows Messenger software and service is used.
+
+With the Customer Experience Improvement program, users can allow Microsoft to collect anonymous information about how the product is used.
+
+This information is used to improve the product in future releases.
+
+If you enable this policy setting, Windows Messenger does not collect usage information, and the user settings to enable the collection of usage information are not shown.
+
+If you disable this policy setting, Windows Messenger collects anonymous usage information, and the setting is not shown.  If you do not configure this policy setting, users have the choice to opt in and allow information to be collected.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off the Windows Messenger Customer Experience Improvement Program*
+-   GP name: *WinMSG_NoInstrumentation_1*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
+-   GP ADMX file name: *ICM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-icm-winmsg_noinstrumentation-2"></a>**ADMX_ICM/WinMSG_NoInstrumentation_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Windows Messenger collects anonymous information about how Windows Messenger software and service is used.
+
+With the Customer Experience Improvement program, users can allow Microsoft to collect anonymous information about how the product is used.
+
+This information is used to improve the product in future releases.
+
+If you enable this policy setting, Windows Messenger does not collect usage information, and the user settings to enable the collection of usage information are not shown.
+
+If you disable this policy setting, Windows Messenger collects anonymous usage information, and the setting is not shown.
+
+If you do not configure this policy setting, users have the choice to opt in and allow information to be collected.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off the Windows Messenger Customer Experience Improvement Program*
+-   GP name: *WinMSG_NoInstrumentation_2*
+-   GP path: *System\Internet Communication Management\Internet Communication settings*
 -   GP ADMX file name: *ICM.admx*
 
 <!--/ADMXBacked-->

From fcbe8c29cad3bb7dcb615c3313ba6ca0c0b8a194 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 17 Dec 2020 16:03:13 -0800
Subject: [PATCH 081/825] Fixed build warnings

---
 .../mdm/policies-in-policy-csp-admx-backed.md               | 2 +-
 .../mdm/policy-configuration-service-provider.md            | 2 +-
 windows/client-management/mdm/policy-csp-admx-icm.md        | 6 +++---
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index fc369bf835..0d38a8664a 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -322,7 +322,7 @@ ms.date: 10/08/2020
 - [ADMX_ICM/EventViewer_DisableLinks](./policy-csp-admx-icm.md#admx-icm-eventviewer-disablelinks)
 - [ADMX_ICM/HSS_HeadlinesPolicy](./policy-csp-admx-icm.md#admx-icm-hss-headlinespolicy)
 - [ADMX_ICM/HSS_KBSearchPolicy](./policy-csp-admx-icm.md#admx-icm-hss-kbsearchpolicy)
-- [ADMX_ICM/InternetManagement_RestrictCommunication_1](./policy-csp-admx-icm.md#admx-icm-internetmanagement_restrictcommunication_1)
+- [ADMX_ICM/InternetManagement_RestrictCommunication_1](./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-1)
 - [ADMX_ICM/InternetManagement_RestrictCommunication_2](./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-2)
 - [ADMX_ICM/NC_ExitOnISP](./policy-csp-admx-icm.md#admx-icm-nc-exitonisp)
 - [ADMX_ICM/NC_NoRegistration](./policy-csp-admx-icm.md#admx-icm-nc-noregistration)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 13cc28a89d..addca8a9df 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1250,7 +1250,7 @@ The following diagram shows the Policy configuration service provider in tree fo
     <a href="./policy-csp-admx-icm.md#admx-icm-hss-kbsearchpolicy" id="admx-icm-hss-kbsearchpolicy">ADMX_ICM/HSS_KBSearchPolicy</a>
   </dd>
   <dd>
-    <a href="./policy-csp-admx-icm.md#admx-icm-internetmanagement_restrictcommunication_1" id="admx-icm-internetmanagement_restrictcommunication_1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
+    <a href="./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-1" id="admx-icm-internetmanagement-restrictcommunication-1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
   </dd>
   <dd>
     <a href="./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-2" id="admx-icm-internetmanagement-restrictcommunication-2">ADMX_ICM/InternetManagement_RestrictCommunication_2</a>
diff --git a/windows/client-management/mdm/policy-csp-admx-icm.md b/windows/client-management/mdm/policy-csp-admx-icm.md
index fa79b7acc9..9c053a6a02 100644
--- a/windows/client-management/mdm/policy-csp-admx-icm.md
+++ b/windows/client-management/mdm/policy-csp-admx-icm.md
@@ -47,7 +47,7 @@ manager: dansimp
     <a href="#admx-icm-hss-kbsearchpolicy">ADMX_ICM/HSS_KBSearchPolicy</a>
   </dd>
   <dd>
-    <a href="#admx-icm-internetmanagement_restrictcommunication_1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
+    <a href="#admx-icm-internetmanagement-restrictcommunication-1">ADMX_ICM/InternetManagement_RestrictCommunication_1</a>
   </dd>
   <dd>
     <a href="#admx-icm-internetmanagement-restrictcommunication-2">ADMX_ICM/InternetManagement_RestrictCommunication_2</a>
@@ -762,7 +762,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-icm-internetmanagement-restrictcommunication_2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
+<a href="" id="admx-icm-internetmanagement-restrictcommunication-2"></a>**ADMX_ICM/InternetManagement_RestrictCommunication_2**  
 
 <!--SupportedSKUs-->
 <table>
@@ -1092,7 +1092,7 @@ ADMX Info:
 <!--Description-->
 Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to remove access to Windows Update.
 
-If you enable this policy setting, all Windows Update features are removed. This includes blocking access to the Windows Update website at http://windowsupdate.microsoft.com, from the Windows Update hyperlink on the Start menu, and also on the Tools menu in Internet Explorer. Windows automatic updating is also disabled; you will neither be notified about nor will you receive critical updates from Windows Update. This policy setting also prevents Device Manager from automatically installing driver updates from the Windows Update website.
+If you enable this policy setting, all Windows Update features are removed. This includes blocking access to the Windows Update website at https://windowsupdate.microsoft.com, from the Windows Update hyperlink on the Start menu, and also on the Tools menu in Internet Explorer. Windows automatic updating is also disabled; you will neither be notified about nor will you receive critical updates from Windows Update. This policy setting also prevents Device Manager from automatically installing driver updates from the Windows Update website.
 
 If you disable or do not configure this policy setting, users can access the Windows Update website and enable automatic updating to receive notifications and critical updates from Windows Update.
 

From f50c27aad401fbce2471f2a965f73867bab99253 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 17 Dec 2020 17:28:47 -0800
Subject: [PATCH 082/825] added pic

---
 .../images/tvm-exception-cancel-global-400.png  | Bin 12719 -> 0 bytes
 .../images/tvm-exception-cancel.png             | Bin 0 -> 8640 bytes
 .../images/tvm-exception-cancellation.png       | Bin 24105 -> 0 bytes
 3 files changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel.png
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancellation.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png
deleted file mode 100644
index 31e2ed052f1f255195283b75a1611f115981af4a..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 12719
zcmd73Ra9F~*f)w6x8hE5m*Nnt#oda#Q`}vP6$?<TXp1|=3c;ngLyHFsZh_$b<^Qhl
z+?}g)an^g0>^*C;_e|!QHP8HHzG|u~;9yc<A|N2(C@IQnBOoBA!0&U=-@w0Pb!ced
z7ep^@g%1dIQ&flW0*bwinhXL$0}$)U5*1#?a91?+LO{U%^WO(Cg9Dcm0fA3eNmfSJ
z-|RFWEt^<wAqEfIa)ex#iCswsn+$=Nh)5}37UQhFy^c&M`^J1R&chUW43o9p$w-MA
zpNZ8FQLCsz5%=Si$H@6&(8EH0!FWD-n@V=y<pWiRTkO%%S=Hsg$|@Sq$sECBO>n!<
zATRa+Z*t69YN;hzj3pH@GhK`&nf!<BaCnIf!xG5~er1fph=bRr;{UI!1ldjI_*A%p
z+fxhW)h%9Mp3`!2*kf_2)4rhLmGS?!1g&|1JonSqK;QCqGfPSsN58QEx$miePn;jh
z+);#*Gwauxd{$Bdf!|_<T8D<o+x(v9O+5K3M<<F8?QK9t!>xG7zSJG^Xw%bVG5R~C
zeS`Lxx~Fw%!x9TBP9`e6@N_*thx@zf$`Pf9zbDg@OcakWg$f;)G&afNjwy1>#ckxK
zG7cqkZ)aZo?A*;Q(B#j3IU!!_8R|eexlq_z1ajYd*LJ>D-T_`u8fJK-RCT1N#ED%&
ze|@3rTphlrb7x$cORf_x8y$Z2G{^a&0JO8kF7y)xq9-2%`6-~hi1Y37LoU<mnjrmt
zG*`ilKR-6ZzNIytN4B_M-P7&!ZN9ZQ-M{L^6mHWF<(H>>h9C_|^no%p%9adT5syFb
z-1pXHz9a{UjPJwLU%Gb3v-DwmlN_PJC}dyIu@q0<FSNx-nJMtB-79f()r~Hxq^XE!
zJ*u^DIYmvnec9QuF{L1HvY)0Q=d+5M$d)wa?%uHi-K^LxSD8@sNH(gWy!Su1a9k<*
z+El$et3W$T;zgEcU2j%@6nbLb6)1N@6|_)q&Qh!p#$+CPU#eQjCvlY0geBs_LlY5x
zvWSj?24P690J%8Z_W&twptoAmZR2c9nVEL@hVHIQHxH#jQrWKd5{+C2Ku(5KtvmlY
z?D|Ilx#8udhLqBVWS8yTIZufObRG8XQO$6~)fwFWsUYaa5LCC^0z2z~9*8FoxBDDl
zNxF76BrP01LOV1<pDq-*fC>Xs`Qq1Nr>iaBoN|OxrPjTGs<}d^700K0levOYE-THc
zc8g{Vc#`MRAMOo1d}}-J`myHPKXEvQn(_ziY{lC4MWQalOrPs*C=r(-dEiX0+-s(@
zwFZW>0d+NS=_8-fmM9|T#!wQaEj%bkia^weaFnS++s*X+tqBGalGNVRa?xXH&Pb1V
zi)Z%>O}_I(kU(duS-VeIqBu>%oYRre&87I#9uTWO=w09YFOP#toTlx%`SbM|NT^uK
z4OW8!pE-=0E96}yBgL0BUG-{>N|Wk3pzSJ>FLw;J<sE*f$yBLtO!EuFBvr*W{wlpZ
zLtAa`8*Kwm?k*rZb>bc4kI<g-T}BSpSAP46lvUS`Pk~(zRh)*6OLBX;Hn1Hf?tJl5
zAffS?nx5uO&$Dm*THrBMK#FZVYcvLj(&l7|&og)RW=h<RRx8y1jd_@a)+N7%bl5FG
zuSzkQjL)Rq=al`+8=Q&8ntcIh>>ZIv_p5`8sHa_?uuKKo0D~}Ethsyas0DK5b+kNG
zdi*#!Ix<dV%U-fv^n@5v+^|kRSRa{kRdTt7xQ?IvqK=QbQ3+)6i&y_X$jbzE;S&7T
zS|Tvd_?AFN-hIv3t()x@{78C#Y)+dl>J=Kd+IA<XS!*O1u(!Owvs+Mq&?uiokt)GL
zIySv2^JQl`?4daG666&&bwxc{*dzVWbrIvl>zbOzq%szAD@8Xgd7EdVTVIfwD*Sk@
zQ=a>2JPf{?!j7uzM?NgJ^O$wEJzW69(#i`1^rl2_P4w$-$9oZxcgD4fy|)$Y++S39
zx+^~Tt~l=Q_MyG910`PCbnCR`ph;)WD9qJQ69s}Q1+T+WHZ6p6${FnA3_t*V*yHL)
z?#X!*vBw>--@1nu1X!+nFNi3byvbP}`dI5L;k^2r%l&3J$|Oy^gq~=m7k5m?-i+*^
z2&Uo|m$(58u)NShBauaaN8m9e)=xkTjGM7A^G3qDA>?|qH^|64hsCKD9%uJHGI+8;
z!njPMklRVG-Z$Xo8n=zVJ1Wk^W02VMX4(E2dV-Mb)8O<B|BnXax_TQVNtD8R#l#L?
zkfgZ=YX$1*`vKY)x>DtgxyFlS`$AiCm+fDq+$I&rIFv%^$@yYRO?HzdD*N2p6`Jq3
zj0suP-IEG+C75Y;{9x&$jaGx0&+1hH345N_tH0+OZ8<<M563=<U)#lP$I?}c(QcAF
z2(Sngx`Xep3XEF2&0HPk<#PmFsvHUbsXo3ObSyOTmq&$b&Y%l7IBta1^LX9EcHcYB
zG2$fbKb?OOtM~tvAF7_5%WL_e`K=Agl;?6|X<)twWC(OQG>%Ow@3!8_w$j*pIGHD^
z)9n+T42fVu%>ZbR^gC~Ko8~hTCtQVk-j8x#Eyx^<gtxqs&EOf7f2SdDKxi!2@d7^&
z#-kx$M7Yzvi4}iwzmgvOYpaMd7sYVu-%js$;{DsYqYiDAeyBY`Gr0Z2pn+blyFf&X
z1sfsYrLSwe!Fu@fYuKGcDpYRjyQ(iV@0k!BaJfG@53ograw!V4epJci{MxPZBUnpl
z>9*Dh-@S)sA?$uPYviTDh{VA#_FW--WdB}@;wnUHNyb(9qe(a4jIV)GgUE_^voNS%
z0s$;W{U^n_G3Y$l$-ymz%TTslZl3f*S`!dG3}*xHe9ao_2pPhGf&W$po?SW4+lVI>
zFff|02d^Bt!pF%Z<oX|ZJSFsN(A9mVKGZ6IM&^612`E0DLtnjh-hi%u1pUlsDDm(i
zl<oEUSU3d<74sm_hxB^}tJVjgF~~E+dAZYY5hC*u<28Kxhsv*Yxocek_q!ISMXh)A
z^$Db03-9v?#7(I8OfTvV?Ev*>0cpcvQY+6sRMMj~0AYUgxQ055hRyflpKf`GJQbg+
zGo9p`Q{EMZR@Gv%vuwGXuC(m-^}H13g+3exQqhrw1oo6oeUUW4<a^YRf?$U%H)tAQ
z_>^lDmW9;newbo2Y5VmX8``~3BMR+o4>aisb#t)2x{HwWe<|cq)LCTzX+clr*14{a
zw(Jfl(Jzu!sx)e;TDu&U8Ut}t*&CCE>d1&n3Da+L;(rs6xfqVd!EN`7WVP+-7?!qZ
z)5nyge@m@mIg{_xniPU&ZS-RFY-+?AvXWXGn<@_b)IM!|R$@^Z;QLrnbCG>D$#}mn
zRS0~-%)1tMdsSG>6?S_U7ItUpLjmXr>$%Q+db*rGLh;ZpF>LpCtlTcJz7=mD2c12a
z?_Roh-#<8=zQ!!n?cUFP4AWQW=O5~mT!vtDy<{X&9E$fX(`i0GTzf4(E1^d0|5=jF
zVE?qUuo_xlYgMNd`p`A2QKtT^he^U&VakP$ko>Zpz>~^S7&s?L?|Z;VKqYA#?d2|J
zpXX6_<quQp+Ka(C-YuM#f>Q8~?=-`9OZ}khN8S-I5r<7_;w1PkqoU2-C6C;c^>n2*
z3!ZYSo8IJIGT^<M%3%zL-Gcqb(P*Fa3z>Ga-iN^BN~LGN-Pd%s25MT{sZss@9(EJ<
z@@=cBO!CbAdI%DY!iskfLv0#ElEI4NF*A~_1)y1km5yZ;4|_~Uo4i;aFK|6LPt|C?
za}^V?>(sn(_SY+Dv>lhX2h|$)sBfsS>6dLc{QG)p=STfRHIvg&d2wrke>ySqf|x_U
zYUw;!163WwT@z5J&HpX(JHD>885Qb5u3LBN?Rt=K)r+n_J3}q+jTa|R=ogM=S<(xX
zsQw;{zF@<i(5{y<pGbz~EhFY;z(&BM3ztp0&RoCY-G}kC4I(O-?BEaMy`MeLg<^02
zR9N(V2&9P)U1^4v?vL}>inxBT#gb(RVT_Es3kiUs%=;T^R0H~&O{Bu7Bv2uYeYzH>
z{hnp~mH2O+{cOk^L#QCCS+l2Sc_TkSD|NliSe$QvR+PT&l5HPZ^L<sf8qMXYm$ZiA
ztszh6+8>~$1o-iE><idUIP8n)AM#sBLBA;i^<J!j66^^iTyp~3GGe6W!3{zJ7IlR5
zr=H&U`IDZrj4JDt!xuFAVhZP1{2J8*d(`*A9y|hy1;LH6oY_+5^XLPug0eXiZ?_HF
zslPk)hC{RYxW#;I$2X91ao%l;+P|5;m=u0=yx)@yC<F+Py`AOaf-IT^P5z6hhh!dS
zaOjUTO-mMoWdK-p(*fq<TF+PCG`0%}V;~&5HLS$>0TE;9RE@y*o5P}B%~VLxIfdMG
zl`{@bUdw|I;5I(@rJZH*!1HUwY>$zS@i@~n>N~&5!i~}6v832rH5)vEvO5xX27#h=
za@o1RGCX9P44gmAJlx7L%k#n!YJc*?08<(uLryAbdhaqeAEDjzGX{%2uj<A%L^BkE
zPRc#P8|fYpmXY3wF9K9IJOFIepVsBMHsMZ(N#x?{%&JdDZ^G_Uf72_)*8M6~$y7|G
zm&?~VW_w1%{;S73^PW<`;a9<Yn};=VKH~FZb;_(&;7P-<X^yq+-z@XdN#Tte)RcwI
ziSPWl)xF(m*4>Tgx8=ODUtHD|6&8y(g3r4YW>BSfF;N)TGKk64RVIn=4%(Z}`DU#J
zJ(YMw*zpNw&p#CP5ReS%8w7gwKxTith~GaYY<Z3{WgSRB+6qI?Xy1qS%LeSsD*SVt
z*H7NOeBx<4{}6E7b?ft5{xRlrkJzm$<HP+g%beE4AE-ew2>{Ec1e8NeBr0T6T@lb+
z>9~U*N&vZ_XNf#rN!U17&$lfG`Og8?=NT~hR*VhjbCZ6$-|2+iU7u$gOY@*c_aeOX
zc<rPhmN%oI*m`+jDydm8n`yNOjjVKW&x3OPr*%1I*|v0zG40zku%H@@e<nkL{?x$V
zce2ij+q}(wG6cWY9q3%RHAXwVX&@8O2^*7VcjdL%M7Reg7{p+c7a?!6v9Yy3kHqnC
zD<I!0hG^o}!xTnScUa<9G>AQG!g-fS@Qh@H!GD)UFX)d%C<UC!e6WpMUFXq}?WH+V
z7pR9#ye3<;i{;gP-bCf*i}}o*HfRzUH#_{a6tX6E1L@I%amO>!ehQdsMzt&S%d=1=
zkn(6NBoo@kZ-D*4mHdVWJuE<P9!}H7D|f^`{8aBfh7@Vtii&{C9W_FH`x6KNojn;S
zKNlstn9mv&ZTpJI>9Q%|?2Lz{rK?F_R1~HiUD_n=J}0YKPNKj`;O?xNyCd1jAaz{R
zbVWmOrdMn1s8SI8atEPu`DBk0vKNOuodAgw5Oo8$w|v$tmiOVJMJE7fuOXX8ns;PM
zH2pa{35~sa-9!#4%p33ZtZ}%Y$r0?BlH-|fW8G!DpL7eYP6hf^pidmv-)2~<pDV`J
zamc>ox0}o(CVtbt#NBnJ-Gw*j{O=(!gt-^{2U7y+abR{MH~o(ZQjh-O%c7tZ^fzQ^
zqpJRdTd;AS#R%I1)c%{m4M|vf!csQQr|#exQ+ewoz#Z(fjYeZq_$C5if~cP@s&Dob
z6NiF?l}xwIph{0dg(EUnSr#ifGFyn_@JEeVi&4GIyE@IEk$NH;N-XLZnA}<e91=mw
zkG?LY!-T-`a71K*s*5k)>*TZ;#=l*Y#001YsYu7>OQUCTWQ=y)#uvC^C9twUbYTS6
z)C^;qUblaqcSb4sTI;Nt2qG?0T+fH`=DUShUd43AzsJivFzdSq2VzY@$o{a<i=@_X
zKQCTHAfP@9ga{5<MEXTAA#vUMI3e#(d28kck<lX-pw8^dEUL?I{^G9kOZAQ3{BwBo
z4ho+MvoVO%r*HSOJwBt0L$Ia)@=nXKzJLk-1;&nhpxcqPFB~n_LuHF)&!<dY9I*K=
zV;jf#nJ5DG4$F5Q7HU7G#BIO-q9?wO2q8Ba`1n^|7Q1ACv)zCU0nZQdzHS483XMLj
z#gl?nsLPdw&hZ9qMUxgoQ+f)*D~79M@zd|GY?q6VQ#VFO@2^32nd)b2sUc^1?qWvV
z3_V!H?5wCJ$nO~<pYEL8)m6m^9F~}43w+dBR?*SF<iDWus(dljwIrMW;fa*--0XQV
z5cno+AUb@kbG_wenZ);prNUS%f#vpfR~qi~1h&B5bRnnTdO&&bOivH?;}aGs%x~mZ
zxE)IJz<vbgzbZJG-S|0R>HBiOUp`(PTV1K;&Tt#e#CNtuk5`~&aZm5-FYsXy<K?7X
zgAe;lmdrz74GpQGAIVeY-AJHKkh|WF)a}!g`ObBwygS%E=WB0>zrsF49`9B}*ihs_
z?o^^t%hYTg=MT4n2JWFEe1DYqI<>IrfP7x$0Ed;UoHl5kNAZx6UcY;fh*Kub!fJ~X
zk3=A#vMD<|rBBGN{`%}W2b=o6?4U41e`KFR@s|Ch*f-|htgj~s>d!Hht~0J??YV`4
z59Dk{HQDNs;hwhRhjhO3bcx;eh-i}vK{OO3-K#jUYVG8Gq3z5O_NrNp3M@8lo~Q!s
z&%MEbcv2qb!FW__hjh}R4-$!!_qX~}Uzup53fLL-ynx6PVldRmth<$-z{)sHM6wc_
z@RbDR!T5~kw81YgM>wf6t_B^xNxr0rTLE9U2mc|avr~IVTv+Y%WYhXcKG|uC|Nf*J
zVG+o5U#YpJdTPF3%wROn#wH`l&rmVqI84N4#JHj+ZF}H*IVomF=;U3$Rf3C*wu7zk
z#Y1EL=l0s%9|lflby*Q+tB4fYJP;<*ah#J;`&P5h4Usihst1WwF6QMhjrxj&lhK*c
zgK!i5K5Bpn%!({@3Z3UmtF(Xu(f;k_OJ+wV2>8Zb9<V<__qJ_8!p*{t7OaboVFE5u
zY7X9hBAZ8otzYGotrR7P_?dS2By>Y+q)`qQ0`9gHc1p9%GL7B3)anUk%cX2ql5|Ty
zXB;%yD}NTTvZU{WjW{zE$lP-d>8O)*3Nw@5iA}X~hiVVpoUZQt(>F^EI_p*`Q!S{0
zW;Uu`^@n(!)fhH4<2Fs5a7q<7G&<qmv2_8k>^`jfLAzF>CmYhg!h!H%1K`*^6r*h0
z6XzumMW;GoSg>kQ^A&OD;$oO)9)nkvnkBzT?)xc;D((-?_XFPq&RL|M@4gASSLFJ9
zUYxBv*NJv!pqrR*m@9Go3kO-KrPi@Gb3a~e=Njd_$c0Y$L&!y_$`oSkJ)@R){_I@~
zo9UzVssuM}<Wh8LN@vqfT`9~}=#(du&|r?AZw>fJ0+3IFS1&FUXyMEq(c7LRq_My1
zk}*X-BebmvXk2P}2z2pJAzWqH+t~2lbA75p(SkD&_ptFC+~aD!I$eUtgJR(OlkQD`
z>adjipE~#V&^!-3c2Zmn20YGB0Q%vIhJu~w7}vVa2a~0Oo!@95{&dHo?_$j*5;MKV
zlJgaoL6xz}h#$FIEW+HA$BjcdVQ4hp_;C+KTP^-z%vag`^52aoUKuN)7jj!SnTI@|
zqw>#t1jI~u2EKOrT~n=leTm6Z*pQPyr>bv*DHFfVBiQ(O-rW`o8Pa!ri8wa(){=Oh
z^ay#p%DAXoL)qZ2S-@Lc4}Fvpt3FV)=zVDkdsgYF^X44r(y2r2ggl)|hIGZDZD{kV
z5wm7}jK%%e2y)*-dd~F_QJ-=<C_vnOwHe^I&5@YO>f~F$+QxeIo^Ajxc)Wx=Rxi|E
zgON7|uxS8_QhPzW83lp3)4T8YDanqD%#z6^jC!!PC=2kUsA_h<H2Mr?Bo$rf)vroD
zI#-06+}ZUAH)~~2XAD2!P&hC~etU(ZC7+tOn1f%_lJgG=A9oucuCMdmu^|}@3dt$;
zCWgV#=iBS-ABlp0-^+i0yn_I*yYZ{E%#-IlKbYOGtZyt<O8+Ln$CQmtrrxcpj*O50
zxcT$34g>RR{ie%mi_ShFo*83py042{I_~M}XcPwI+JrvS73{j8hjRG0r>5J)bF{R*
zdx7|%N9ro2*?GCYg_GuAziep#3`P4<)h03<<~jr@#awIL;;sHNFz~Q0(HzX}wYWuf
z7CV+m_Ff__^N_1`tq8f5*XKwV^nA0SlCZa^bi7bo@<<()0xb)z-XHw1&I_kVA?lvn
zThszYsmxRjDx7MHodJF5iPlOVse?xjbjpmGCnHZ~RvZrrOC3W0D#Bqc(9e;Ph15NR
z%P`F}I^lE=<72e*%n!@ve=&q@TQSEzm_o!^<Py|k-hUx+LibI4fRAsQzYod>{OA<$
zAo!E2Yf^+w^`7@S*P|W_EWZ6nk2g)V1uN>0EyV-4_hc4kav2?L=u&J^Ff}BlByNhF
z9sBik$QiZ4WIzvD3B4exF%m7-X)Xo_Tb<vIx~b-Qe2(6p*BJIn4+8CX)pN@~uT_L8
zb&|z>Pkw|spO>lU+idnm9PJ#7qCMUb0?Ts)emgC?UL#6FunH0O^StUz!ah=l2u(CY
zpypcpm9KxjPUW4~3^qu4L#QH()cGU_#lSr{dEvYa$$q0mXB(iv0I$|MF=Jfw-jX~l
z9&EdfLy)+RV13Q}<j7^IGoR@8irvJM%3Q-NoZ1{e?degox1;}H+V1VMZSc&yk@ijL
zXua!^&`^yKptY%6+39nXR~{WD>42&J^FwqClD8k~PFb$2=TCo-H%|n~{>;yh-uW_D
zLC_BUj;<xMHBk?{?6r_vi9<7*<md$iYc@6xZSUV0V24)lO%OQw@`nX)uR7|G%s+4S
zsK{U5hi`HGj!lCbo(?s_7CK?qA~XNCIu==VYxpZB{E+jIONJ-N?0RM%Dh+-X?Jb5~
z_Nk`JCm|2VA%Ep^-%-H|+iB$(UHSa40pCyUv?!hcCG;C@A|~;Rz5TmjoUF96eIV8x
zCJH^32OTbjM@pHmeQK<tWL^VM=7}!wYg~$#MVuy`tYfAYIitBZ-{z8jNr}TE3USuH
zvUTKpo&C<sBI3OFU%tt7)`Nb34{aVs;IchX+%&s6-6&U&vrjzm@w82LY+WZneBSB|
zi;5;;3F{*-@81;R3d!?n`TXz8l?nMC5F6HoI-LYm<Y*6qrEr^z@`q#tC))7Fwv&W^
zXLOu(8{1o@;^JhbGAJB1{_=88%yO5wxd7m=q%kRf#>#gkf=v+}tiHO(?hR`&Bhu%;
z`zZOZb5`W@GJAHz8`<%J9ylWBu$DS0?xw;>S7RoeD3DMIo0ql<6b!i1G!b@LFM*~7
zZ9UIZU&q4v6t}RT1YfP#aR&9^^``(Mg%0o&<sxf`>U^;Y%-R2SHJ^c{am(;M)+x{J
zdNr;31GnrPhe=xsoSQMp8b%hguJ_Fs3j{3gKQGi6s$90LOGp(^^RJwB+)C;v*Ck={
zEHcr{nVe(XVXYG%o<H_u@uXGNxnANPi0y+sUP5j+phw=;YPY)d#xFs1BIua(DtM^j
zSw!3hG~IjM|60~J*Swrm3cEwDZ67X0@e<I6H81+ik^5KYNM8nkxA)Qhi&ljjcqOFW
zcwybsJSlI6qkxy2OAh(+uZ$RbzoX|jgUv@f{Yx}>?!KMpeIdk{kP8Y9IYS{}I6Y4k
znUZ5%%XwJ{R)B@iGvTRD+KzH^+%RaHP!22YT7H)b`&CjsvCmg6g<Y{2KZ>;<V=1-w
z^_DvsrEY73&n8pdxtq>k{cxQ9@ZS2V1D!C}@8;1P&~Ps{=WTU~^u3h019<Bt5OtX{
z+ax|09QbsZkVUhql)z-;JN?q;Kh13>)?kah1TCCSEg|HYh6DFMQmn)rbRlrfU<D>Z
z{PTQH?CN!gv&ZAAAv&`^>D~u3u<e%@AZ9@SqwLySK1<W`%NQyQQ@cD`lRkYSKbP*C
ze*%$i;&Uib%8E?mkUw84n8>m$!G5{-0N8UfT%t?R(IE*#t$++7iqH35Dq=}FJ7X!(
zT_lFgdNF{NqK;Js8K30ix-N`c<uX5`V#))#HW#qkM|e7=M1)WMEM$yizZ&=+WC>$K
z4)_p9Bk)o0ek~=03;*fGQZQhBx{$=|d-4rarDOEwL!~eJpiMVPc7C(^uX9N@w3<#f
z>Sqe!*MVpTHD2C2$RuxK-Z0y2^k6vg>jcZW7XB+U!qmC$;BDW-8GB}^gsK5&=l$sm
zm7C11{!A$`+3I}zA0!isvsY(~!g5oGsbGDwV`seNiQPZgsVWIEWWg++m<bd})@1Ti
z+v)fz=9KFmk3JfK_Jz!Jp%R@aVV&^!pDsSXTshLCH|z)WozwTv(IQLsUudOrclpbr
zL~#qig-DYBgvdOvC7IYoYYZ%Te=ubF+A$`~UiL)v#m(qmih$M`3nkgf%1oA*HsJ1H
z04j{lU~h?(_HlHg&mI+5{O0K#S~GX^Xc+jBxAWeGhKDE)W!&K6d>F1EH~lhlVqO1E
z`!xU&U4b|>cp#T{;<l-eH_W*v+#<$u2cRnL$!fVD)O^!Z0Ob;*=3z8r?cb9d$dy`z
zk5vLjTq>_60Y<_{yX~#Pp+E4>N;1<8Sw`gt%kO<{<tea;T9kP4^UsAx8I2I1;oW=B
z2TPgrV{&RI_>c^t{87yQCH=?9+3ynou9MnZ|1TG}|9?^2Q=Ntq$zwnNt>6aHQ^KtP
z*bv1L!FdctxS~Zbh4Wu|WJECN=H%mkzMt7n`Tv*%$c5hgzu5w)viMTq8^2OxilGZS
z{W^=YALbM>9#*1dNRbx)-?Gf!Dk*(E;Y)->aoB@kJ6Z&M@Awi4$N7j;;9`B%=|+z^
z?CE|w&1tKDgl0fQ@`O@MHx0I*1y}6}2?j*^sQ3}z9Z3V=5P~J>_AFxujV7f;F2P2>
zR5{J4H2#w_B#dQ_DJN)}hE38ozRrzSKoLgD&KPjHmlO{-FR;W|v(usBQl)@9{Knzx
zZt2p-D|bK^cgDXYiqUwddbLHdW@T3@uI>n=``^x~?L3`7j-A#+jWJ0%m{Bo_QUC!k
z#j`abo<F?mM8h?|?;G%BqtJION?H{CNQ(M}7CexstnGZ8<?ojvMR;T1?19F&yYVo4
zvZ1e#Y&p8_$M^&51gCeIK}T##X5A*4!VYxfIRdG{_b|B*a%_mh&)|1N0<xZNOLW&k
zw+p9Of!AqoOI1|hbYpWOK{OeB6h-!s8bcm^iBn)2Qe2~KY>lvZ4jZ)ul9j=fyu2DD
zD=_xZ>}E%OoTRpn&Tj9~KW%7+zV}9OE2majBBml-Wmc2MhM;(=qDC!jB~y#fVT|Mq
zCE4oa3Td~wTM`o#;Zq{>C6l!OI%qG7X!IMzth{`>Y!5M;E?}pVOCS+MgokRvgEZw@
zEobBgm%2IHfc3pGb2Yln^vlOaXzx2E&se7Y(Nh$b#(}#}+rtaKrz=dWzg@olEmbKk
z<1mNQD0G7=8QO^N`v2!u!|+$(ESfNgi~FWq4aVED(NSvSjYtjGXYuTvrgRY?ioQ16
z9D1l3R+@?RV2sui@z8mjyTJ8()Dj~gP5U$oJPtI&A-qV1K#M!a&Wn>2@y|Co5_1h<
z@ii(Etgnt?WvZa+Dr^uaP1mP?*5#c2{%ZepTR=`{t?}_k&9VpG=Z@QsT93KOvltzd
z2CHaHx6bEfu=`21e!ZmSeL2<g-FHhH+D18-ye7L=fJkuCTBwK8p&#VX({K<;yG)a&
z@{>>xV6i4|RnP3r#5%h*$yvIDy4-_0n6WjqS=;sNQtP-51Dh>eO!O+TpU&DXB{kQ4
z)UP*dgwM#4bwaGg=bj!(Ru$6(F_vGS|0$CTelD4cK`NTGHz@(xjJ|z#Asebs_{L4=
z{RyX_Nv*C{&%jlrJg)Ns%={h1p1t4W05JpIUJ7bg%1VN|^#~3H1B#QA);yGy0-8<_
zVS0bKeImaRdpBG|H_RpP?-(3cf7h=41tl0A&Xu;9gGX|ru}H>Bl)edgA~DPVr|yXU
z$4|CelJ#(_w}+ps1!?NJtd=9C<*{TDX{e`l#MY&0gsm{+B^hzZ!S*wYrs~A1Q)-q&
zrAfrJ*bI4<lt~olP7MmyzT+j+(ZG>bI<4Jw+9R#MCi|x<PPl>;W3<n0x&~DaTuY{2
zwS}ubpRx9)7wgD-E$a-M<k37FU7DnrnB?ZKXY!joAoAaD$9dWd7uq+b11?PiFQ&#Z
z=bo6-n2$|j4{H)gxc|Dj0^o>f9`Mji&XFzbX68P*J6^0FHeCR2oXH=*u^rEpE5@)B
zDJ|h#Z2lUz)Z;K)<URWa>>_DeH{2ou1O$j|Y;X(((A=cHiIjjpu8}L`qU_fV&l|BN
z;?T~^ub#VOa-qz)>If{+^MjQ{-$k@wA_@)TE$X-b>S}d3?`Jq}pu{fV5KU%or3^j6
z1Vt?tn*H=iXc2a*6rM4Iz8)JR(8N?8a|dTgQ!=ONQ%B1bcZP=9_hv1#r@-RiD~M2~
zE}&l5S4&xbMq}gnpZ+e~o}o1xhc@MMzA1B5A}n4m6gc6q+#M2|7jm=Aj?fj@Rh8@k
zT@RVUC>voZ3@*AgX*n{?X%&@vqJtYL(z}9g#^Cy#EnEp@*99cty*!#5wghH4gB#_B
zfRy`G&z~!`ip$O@MXjO)T!S;@KQwIij_Pc#>DV01ywip&oG$mbr>hEjbw*68;TE5d
z`8A}N1`|lL#xgjnr8^(b!~@rv{iLeF*HeI|$UVQA-U#+ck&9989D_62V!KJBM*j=?
zfW7bbHsgDfIqPCsuLKM+)ruF`2d=pShm^#{Z<&-8`#zvDiGsqPAfWw{<Z<M0jM;!b
zpDa<tm5iJtlx_RlJW1bu{dq6^8kV3d_j?gmN-)1!n?*!0?2tvf*65cM|A@HNP|(UT
zO#5>`3b^~C{g@GC(RV;(M#%tQo`#j`T_&1~o<UAwGoEJMwuM)PU2@#@CYpA2D@>OQ
z(AiS~Z9FlK(;^^13AA&gC`{t36g|=L%l&Q?HLVoB3Z-(zerbbC(q>{lM~rZ+|E<on
zV^l-xh0JBQ-lz6ayHr`_a&NNKdRTp~M2V0bc8Kp{Y5nR$-`9;xEw21{L%kM=l}{{S
zJ4WQ=oG<Q|dP6NXlH{^F_G>yuG<EsMp&bgY*Bz<3B0OBCfv2Sj3F%YyL2x(2E-P`0
zvD;&pY96my^lsC1jI!2#FQr*1D1IpS`Js~4gXeS&u4<as&sY4XU~|2|^OsZ338lDi
zO+0mtZ=~*7v*#R~unl?Rw>E1E=hcd|KEkaJyW4@JDsrT?;F+?dzjdbjy!H}PUm23(
zHr7283c_;7t-AuR|Fe^55yZfgqEgF|;LZ@`s&ZDHDY%Ph769L^U5XqcX|tNUjzUo^
zhpND7?a&`rkD*Pz_BdzSGNJnQQ2;^Tu9}Si=}@y)<8tp$)?)SI^#-1<qP6Zcg5AWU
ziGofGpRs6DN6?GVsrYBd@VIj<zVeq1V!{0!8F1&7JOe8|5I*1sf9DFrUJQRjmuQmY
z!w<*eda?JLFF^}@rp6^5A&)}D>8MzH#~$QAP4zEBXEOoFuTo-s9NNtl|9NGKBj8I+
zh2k~zHDV%1RL8aJT8Nmls04>nSh3cqr3iOj!$oc)j*6r$Qz~GKA^_ZNzBl#n+18XX
z5Kg|!y{=(TV{h#m+Mt3BWr_670!sIg+gt}?vW_Jfs5Hk)4S#+>4N>m|vVUUlxY9o~
z=i`NM96jbxOTxWgxIU9)E;75N59Z#CK4)d6^#~TNvS)c$8mk7jvO$x@7~NFCoTkSl
zS&izvWQtIJ+i%{~%^$d`4GrKKHFbA9v-}tcj6TaUtM8`&7=t~_o&AYJe{4OZj|}}B
zN2M>)F%{QJ2QYW~K5QM3<k|_j+9YaqU1b&r`{<Yu{UJlPMmrU6&Y}?fESnsU2Ue`)
zelYB@>?(+zy`F!b62HzxbNJiVp!$4cob)Dmacx^Jp``yiu|SWd0FQC&*qLdEAU%Tw
z%CAqy3!bj0Uf0?5+!S#Vc$Ommykt_N*mD}-jH3drpA~UP(`-P(d5NG%`@@d+h!Grm
zHU8}ooPiP1Ja5E4KLOF|U-H!8JhBpJFw4D(EK&ft(S4l}^qSD3T_f#!7%0PM*_kJE
zDYQ?Np-|6VJk+LSr(3ND7H#WlbT%BCw`Eb!{xQ`JSMcT@9*#?u=F7Be92!Q}Cw{Kl
zKmI<QMT7&KG(CVd3YSrHdM1~#T&?r+#Be^D4&BjDIa*0z9UG4>LkwP)3Qw0RS}}n%
zt7%zcJdjr47M~!4`;*b<zcn5PW@A}WroiQPm+FFJ8KOA)#xV}}`sh4=x;a@hnjxc`
zQ?Orl8wGs6iyk5&-Cypc#ZqLY2AN)6lv_IO483w^Z3MSzuY{z~tF0T+59a#=e0>b_
zJy7G+2j2#iPC1T#9>lVFAq{oR=MR6Gjiq(Ok~rBsDELVkpBdVRgnAA2*$VE-75kLQ
zV@@N=?lmR#inK4%I-W?*uPduat1toUygVAqo-HoMEqHcX6SN*=CV7(qx2<@87jSG8
z^R%Gqn>NY;1T-c-c&4vC<!&4ZtaOJwIAj^a*Lu^J+i~HI;M&{11`(e+ztPgHBmaSi
z>tjKQ-+V7ym;Jr>*?h&tP1D&fa_O6BZQsC6h9E0jZvX?f)*sN>N*=Ua?pq<8VsR*l
zlf@noX%RVW`UP;VI{x#+r<PuOUXDmmc|R*A15^1{MMb&%GXBtD^cCs(44V;;MnF?4
zhVnG;;b7K$w7f8wKFiGayKbfSCu-P1z5KW?3r%$1!0MUN4%`nkv+#Jk5yIkg^mq2V
zdbspvVs5))^nNVi>kb6yvp1*DZTe<(y3!{(&tva<TBB7o_Q8hvkOmo#c``+*so1}2
zeSL+zSx(LZ0{(LM-hm!6ZtJ1s)XEL@jImEu4*I%qtLN_Tjg7j1?UjictA!;wQqvMs
zqaDblWufQ=1%ry|&Zoz<74?*<8O6gdc#<>A7UrPG-3^yY!=|$2SU53c%&uQm1NH|L
zM`MvHE!LTuN>2TKO6N4xF2}=z)678|^yP)2?W*2TQ0Vgm1)s;-ilEbO*X?@71!VY8
zuq})k4?lv}m)~XOcCJFJ*g>|R$hQ5OyXOgZu%rTDH5bAf=WQe%es;5T>D;4G>N;dT
zZIzmnD)aB`#UOCGBazr7BOrnON#wX`Nb2;I5)ljKN6(WA^Av!t@mLd~f<2rQ)F@;3
zrfn%7MczDl(c#n?&WQFV=CRO2&|n~3u7D})pgX`E8a-<rxg^lZgLBoR-(-G2`V?JU
z$2F*D!MGs!h)wO=^VTIm0GIa+4<cqVFO}u~kf#tDLgQ%R?kb{Iz_<U4i$O8L3q-OF
zvc9l-G&YDy#ku<=xae*q;#P$2)|}UMdHJ{$!_Z&Z0KCK`LSK+LnqcThZg31zz!kBY
zyL!CC$xHCJU4SuDhta5~d5svK1ndZ&WDo48^7Q0;4Fp^uuh77MHn1PyK6i3i)W`Qi
zE-ez0xdmvX$z@)gRs~=WjC4O$!MFDCiRcSApetX)Q&Kdkd7?Uj5WFs)ke=?!@=?<7
zyl1izIE%B3_8W34^?mQ_e|zQ8-8L+A;sP0SH|&_0u-xyqwp;J5>8;3?V<D1Q$C}z{
zRAagNuTP36;Wd_2IP8?@aU4z{Q$yt3Xj?KCAcUJP#slzuv8g<rRYxB6PZ*XJ9Jy^}
zW1??})6oU<{&t$8T5fg8b+uoq%BfxhnaWzF#(4<bxpH)q{!DG;c^h)B!2a!MA>%ER
zN=`W0kkTgnQDQ2@Eo+``=RJrJJ0N3)@=FVxtC-y!hEE6qZQgFStw(}x;Vq5Yb5raj
zB0~HD5f3=Tz2K7VCfS<~o=F-c9er_fkR3>f#eg^EkN7h+@`AEqvsjiM51VhR_|LgQ
z65OwEo?IEO3HmA$2f)XBaYjYz_dV~2oA#-2%%q>*;$yv;Bp~?n<&2}~?f=sNVpRXD
zjNEgvpR1DYws8_O)lfsYXOsaQJvy4oF^ym%;WQsHzAVy5*-m%=3*JO)46BGZ|BoV^
z54`__)$z~i-wO4Bd0+H{qx#-2z$4YLlLJrlKfR_USYVe+ga<KSV?AnQ1n8?{Ec1vw
z)e0p~XAD18%ZF0H&l3!#{v=R@A39+8zs$lfEd@Bk!0=908qPc<M)4x@!LM)o|7Qv)
kqQkrV|E&@s^%bq?*WY)wH^S@iLly{1a_X{mA1osO53ps@N&o-=

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel.png
new file mode 100644
index 0000000000000000000000000000000000000000..586519d4c908600be4d55b87450c65f3e1dcda2a
GIT binary patch
literal 8640
zcmd^F^;cBi+a0=FdgxL*RBEKlkEBSav{FNtbT^37APCaoh`_+mHS|bG_W(n~2n<Mm
z@jrNff7d$qxp&>Y@43&pYn^qUz1I`3tF2B(%tQ<T0LWfysJsRMuw);ueF^a&VzcYh
z?uQc*Si{5%03h%CcVK-MAZLEKN#OlbOO;@glo|_2nznIe4FIqMUaBa*@y|aj2=ab3
zTY&0pu3`fT<|Tc!R+F`qM3Q1IRp>bF9E^VOVc9T$RQ?I0$)D@-)XbJfvWxb?b&TV2
zAO$r-mQ4+^15)DLA$E>}+1-85)8e%pc^wp#MC0fE(>2KPsRJ{MB1wgOmT!@Adn;9Y
znSIJaJFDvD+D1mpt>@Kd2CH|=tH*}%9^=x45$wWV`8Lc7l(=HRv^gqVJ?j5U>`QR%
z+8TFnr3m*TPxS(ir;lu<jRXvCc?Pzi0syuE1_oQ}(QqU~#{O^ser&vsp0+072GMob
z%QX<q68NXD92IZ^B{&)iKx8yk{s<wn>AaJx4Sa#9M~n>VbZR$_14qXD)31HRuP>Dj
zsov9jQM>jj`3weou)5*&@_K0B1VEBy4E3^{LR&=O@!t{A`&XxmvI8lMUY4_uJlxXe
zEbRU)>y`mbCFKZ!a4W>8Fu+MyX>N4%_#@V5^yf~bDBv0p*zxP{#-_<>ArGO$*!x0f
zDlGbe#2<zE5vwn(KwDz(U<^1&MTl1^AaEV$E$InorWd|c9Hk6e`ukkK`e{#eaMiN3
zBN#~Dm5v$_Crt{Ne2U){i4@i4tGYC2wef2sBXJZ~X99@QiyT=*40Gm{>RLw7pA?O5
zv7%n*NHN%6u{tOz0ywn5QaFylLikTV0tQQqU$r<&32-hq?<v@+>l;g^sNhLX9^f6W
zE37=amvS`!a`dH6YEXzYxEDnC=rR5P^bx3&XZk3r2|u+L#}DYg)Ub~wv7koO+)~TY
zvvjBUCl7J+)}u>066JB*Yj^(`HxvjI<yA>Nt;kRzB|r)K<_IN28w0W~Ur$9f&-^Y1
z>6Uqo*?nj?2zlq!U#QBZ8WBTbwF44z2{A%I(e{ohUSZO#Yw>jjJ?p@H>DK@T5aOuN
zWO)v|j>X8bfWtHMR}RKRQnb_vXa2KSQt;qWAu0&$;3riMYnTi=`@k_FKI|ekp~Tbv
zRGonWOs*bKZu)e~Z(z*>U1FWc64m^e3<E3IV{H}_xp+rhSTPlek`9O(7j*t$ySYr8
zH`3bx)7|_b<q0O3TwLjI8XfcBL+5Z{v3Y*xe~u!eny}Q?9_Xuat2yBJz(3N^(N0LE
zKM9;3v-7b+^fyT0At+^hPIL3r`-vDM=|CJi9bH?V(*ELdy8+U>%K-~8i7^RVn_&{0
zQLIytD4fc5O$rPmhoe<$GzSJj1AQP{>+tLX41)m<UMmF9!%2U3uvzX}V%vArx7jKT
zLPR4UAJ0VZCwz}WN_mEE&eM`m%VyjntTFA({U630MKnGaa`>`dtZiWvg{936<z+~$
z58*{=*BX&N_6_@HjFV9C=ObW$`)LN==vzSSP9|QTa2Cz7L3$jTPlTSsH)ggkilqF4
z3;X_uEPu2nVV;n<(vk|}z-AkUxMU%T8Kb5%BLfgcq#n7+E@*!)1urw0&qnSqtbE;<
zSzE$GJtRa!4NFWqIVcjj%Rd@N6GCu)`tjKs0ysg??^V$%B8Ws7u{}o%k7wBn(LOwI
zjY_=L<Uv(np(BZ9XeZ^1<ys1$U(xlRR7W;px8Isnp?fS{Pmuy~w}fq2Rj_eaL*o0?
zqPa?OU*y8IH!z)+4$jh$qNCZ<%Y~?eK2krBF%?w}&=oJ%y+iUrytSBRQopFqH%^IN
zbgPRVBYF!4M~{-7{#pw7`r4(jWcB=vfuj!>PY)j_a^3&If9}2<V{wmp1w1&yN>lk;
zYC7t2$=eYSL`(!w;4?Ikw9aUG7bxvkYe^2MSpAjKZ{Qh#xV}WkoEvur5VUGzGi3El
z=iWyIkZjxRU4F;=>Rc{oU^JtF4JJoW^GZ|p5_ZG~jJ#0RNQt3tNX$MUErnPObghL+
zD-p5)NXenL`0KYEOv7f6So47)A0=#kw;|VR;<TyWZ?L<LuZXCSYvwlqe@k|(VqA*w
zx~817Uj%mkzMd-ywz+5p=l1!vkd0neH|ofJ&psQfWjlZ{Dqa3f--#$E2&QbtjGi6w
z<q+t+@ILPHx;X6V*zW9In5S)BN*7AL9C7FbYWu!L<p!N79Or|cb*9c9nYkr0jB|Q{
z37)@b#o4Vhyg6~_|F%XJL9zH9JnmT<lx)uj`yS*>;(Ko=OV@b<+T)vV4B#($=kI0i
zX!|z6w+V-%cQ>$j*fQ5dQ^32<L6E^kQiL1KD(U76Da31|ACLkb4K6T%cw_s(4Q>)$
z$GexMY`v$X^@cyA14c*Je_RV=-z#>Xx}u}C=bZ+&INPO#0)4smeJO|w&X?(xe{Ya#
z@_{}X@%4=>3p%7u;LzmQ(Tdn5wf^Y0!HrvXz8t4<491$uSG|HUL#{EgV$ZPFB<pP|
zpLjd8pd@25`Q<#WscUYlO|q}lw=|#t?T%Q3i@RsfeQ+!golyl=LB!3e)qNZ7hsG{}
z`Om^hy_#qcLTO5pWpotnCsNy*{K`!*GKy&t_10#ZYSvJeFYfI)v;%j+kW*Ol9VJB_
zp3Yl8j&N(2q1L|<s$&OMc79JfjrcIGF178vIX<|XWWw-VF)M)JVr{F|L<U3_aUjEt
z@!Tr*03UUEL@+K`-;8BTicjuUaM3(*$jEkOov2NA5y+OuPb(}C@$FD2uv)_wQ>M*j
zkNHA%BH=|x+c3LcyL>p;(9Ggq+kx|>vFgI$V1dtpqNAOv;QilhQ_$HT*?(w|Z%0zB
z+so}r81;E7LUpY1^-f^WFE0!YwAl3J9Qn;3qsWFIsPg)?Xg4vdi4(2SoHzIY4Rcu%
zzYltJ3!OADc~ZA`so@ebc~oHMmC=o=A>cr|z6m0X-d<}dAIc_idV>bf=+lI|)I5_@
zVI`cB6q^b)wCURW@5;p1VXQZM6b<%m88qA=jL+DSQzuP&F0sZ>QYf(~>ge6l{;O?H
zjn{Z{S_GMT+XB4uy8Sct#mHpm<nP)-3D3h)*XGCil~=1&TLd~juZpvsKdZNiX5dJw
zD`5n5i7ck>2)$=@nX!rVn6(|hO`O1tXGk&V1v!K=TVCD0n!CvmK2xcoKc@h7mG09o
zp53G$2b1Y{&>QT%@V=$%Vxy~i$;%35JjA{UuZY74a>6^%)?-b6aAW_ScrcH$hs=6o
z#Ub<qe;C2f@r$%iqLmin_)?k<Y4%1_kJQWtZ=glTnoQVCCrf`43*U<x!)r6IS3b4N
z=_W1=GB{AX1<7~pIXW-`5FYC?0HbB_cAWav63`s+8@s$Ph7oH;b;wh%|H!3NUjE$&
z6Yt{O`0Slrl3_g$A$GRdIBp*;g?u$Wv<Ex4Z%%FU<;N7fOpfz%+DrfU{I6fgq8DV<
zMS+(PNgsKyu*AGC5@F$7l>bd`9SRq7Xcw~Co?et}1o*~0)qqwr3i&Qo@D1BG@OhAq
zQYkxRm;d;BSB~-rgPu5vd+j<mm>5ZM?I&7brAmD@a<7S=nY9*=!&~T&OWt#7q?1KZ
z%MJ!g(?@pXAeEA+&erf>*r!Iy0;wpVRK0!Di57pKJpue7N;nffkTZ#0gfrrK9+#Z*
z-OaxF3oj9PFCWDv?SvrTQ8I#cwz_y@6RPaVfo5>JC=sJX-m&~4Y_6*rN|M{;HOm;$
z_nW)~k_Uax$E4selQqpk1KQA2@utzvkT7E0l>K3;RH#W*MBJ;wCpsJqskT+s+i`q+
zo3^^5Zn=*k5)IHY-5hXg<cRDi)p(Z3M^EnG21%}#_Q&mShRw;Y1w}8N{K;1^GFgcF
z9+s;_FB79-fD8{12-^*{T^C<a`%O1$q#Y|JHm>(+xY_F(BpNz!1||up?CVD@weQK_
z3f=&B$OYX)XbE(N>*u*N<ZmArPNAz!HETza^XDBg=kkGUFQfr2tiTW7@Tx<K4J}ji
z<P7kONWX}-#>n1dOiJZHVf+7iQDb@~s1#yaMsj_2r&Fx%pc_Qqk>Dsv+EcyQj<dUZ
zX(jNwG4M`fpT_^lDuq2yAD-6T&DOluc)R}I93H+81)JwUByd$y+p;oP2dq0(m3fJb
z!7XAfbu@#-RXRqg2N!(mo$0-+^(3=I2|07Zbdb@)=Ka(bF)_A84!VD1L`SUO)}s&U
z(Kqb~O7RErmO~3iUCn2If3dODoZvh#c4dCABTZ>Snvxm$G1>R|NG!-$rJpKNQHyp+
z#R;}^7{9);1cStzP77(QH#)Wg0P}u@eFam6NrI*mqHGPE14TsRoVUyM>t3tL#s*#l
zWmY5rBF)<y7LA)7gY`<E&V*>Iz~3U0yz#i$jLRNd8j6^hpyqW*&f*CJfIVKNL-HW0
zx{JHw=tTGfY9s^AGU(ykJiU$)gPkBP0qq6;>m4HN(Oui;%$ZSD(}e|m;@MwC_WyQb
zs;W!dTCGRp#1sOQG=1K#!?U@I*XaURnqp;B;^w78n&-s!Ho}A`>je52=zu)@{EYk`
zA4zZC;Fj9w{dqKoifYuNDlA~5I7@|(zR4rcd<IevR^zEQ5nVi_c%k<>_mF~+EnhKT
zUSe_I?=P2&-`7<5hp&+gA>#s;GL>&xGPlN}h^Y-$`|h)?oCM8Swm<NEO%ZD}#>B~=
zaf$i371lTtpR$@HRd)Bg(Uu`}qW|M_d)K3EHDo*7*jRDxUFd@>Lw1zOL^%s4VYD~7
zak+RwW!aaH?9HKK5Y3vb!enNNHsCH%zs)2Uu_jTdTzZ@_+vBV>eNegrXQ2W}Sg!wr
zzwFfFBx_a^;$%C?l^QKY9UoQraR`?>p8MkvH}z0yz7G4lPeeK%((%W8m(yZZ;%Jbs
z078uJR6cU0tZ~!;)sJzxy+A#wpFbJ5*ln-Am}5Lu)X9BJj>;+m3+P^)Ekd6x$DG%<
zg)bKzb4`(0YfAGPgwQo~$go+}y(}ITdh?ReLGIEIN|d@W#OCwWQB#^<el_g+=u2Xy
z18YyM!t#`v9%T0&=wetKUD{vnxY0qt+MTa+)YYTgPW0yP_vz&q2;WITmS54n9V36|
z58V6U3C%Omy%Vb$zbGola1Ew|Y^g2SQG5U=qaNgfK*z5rHcNSy`rAXbpWjw#baabI
zE9L9^f6n{ax<%=>x@r3Bq?`<Uj^fzbJdWaOm*IUOtL}JBiWpDF3H*jaZ6z{Rasb2E
znK?8m#3>sx{*uW<tlQY9E_Q6L27JsXZgK2Zx@p{T&~3moh8F{Cfvlc&%uKdU%oMAO
zpI67~z7$j%78>}kXp2{Pc=*nL=W|MGoO0!iE&C2k(?|Z@WKd>w-vs(X6`}=`)CXO<
zy@nbDIFn-4A(kIFS?OWsR(IZ;lCigF&(}*4$PJ}lg)_2Ukp`9FB`jqHpk{F*Wt)->
zL1Xe4?l@`?6;dLDP^r3)hEe*~yoM>yfz=Dl-Y`hB<C3t9XEgF@H&b^j2Ngm;t+R2t
zQPy#tmunwfOk+#oWdpPv4^4bEu2Baj@9p)X(s_&!f9qfDnR6DxXj_pDK3@}N-G~s!
z9+<aSf$}@>y^!VMmfrfSL1mq;MBtoF2zZtKGt0WKsYi!p4x^G#zB`X)2wwSc-Xh|?
zEie=e@si4NcY4@6f#)Al0e_^vrBxtFpJ(!b?-=B~MhCkh9LZU*C@Db=EL(<Zuq)&q
z6xn^sV4T7cYi<qv@`q^)X(L`&36h;f<B4Vqav<vb|LN_Yb3?*UPB*2VZp}ZLAPF!#
z$)LnK9tpG?x*6pP<PCVC78Q9Ef|+~-Qz)CGl(o-7ir&wi2^5SrW5vdf8#nPoA`1=}
zemXi5Ss0T>p6_5p`?T9!*kd10zao_)0M71Ajz9~w*BIt~sbL$+Hh$?7BCea;$@I{X
zlGe{lmgP;vax6vLy{yZ>`n3amXN;TUiiJ5I=G^`19aTwB5Qp~fb}4`IeH(4f4v~PZ
z1g@OzeSIN4;{1F(dbK_Co>_U|uM(<%oik4;c1c?Bms-`~nP*P4&%vn@sXVuDZ#b3T
zWF+|fB;iECAXpj9$^>7hNFhrsU@K3glWi0b67{U8F=>&f6GWU4y;_Tqbf0F{kFo$g
zl7C9Tek~Ca>>xR_l0blJbQ}UasmY(Ww74^kaL&dEmc;fBBG)`SN1a4)M;J$nar67?
zj34nSDn9rzqrZySBG~`Krk4GG5+jVKmB#;q7ZoY{>~U>t=6IvxusWby*W82=41!5w
zLcZMyn;sAX`QJ1Mfde~i;>=T_?Aro_o@$8>tVwa28oG2RdW^3Ju!0cE!dc2+E4C?d
zJz9Rv&JxV}V9l*qLcjp0;{E-7fhsXvMRU2c^K*`@k?vCvcs!AnE-^>RZ+nz6>6zi3
z=NJ=sTu4>8NrnbjOkC9V`agO%<DVM!@?P6XmT-ott;BB}V&g45zP#ny1wWGTG!6(O
zzDEmxf%`s8Ae9p74<bjLdLPso?_^tqhRXk#uW1y|8`}ev<UZJKj~qtj9|z96(8a4@
zx0sXH?Z*Vh_a>KsV2>dWsVP73K?s450l11uDxaLlHU)D$U^X=RZcd-X;WlCqbpSUt
z(L;pRk-$AF1YS|{BuT%~ithR`@1k*__MeSXF#)YWw?sS~$?ziZ>BC>-Vc0+z;#m|a
zO+~J*t{y%HJ>!OWv>P{}<>*t+$2JdH4B1hasHYB8=#@|=_OG=HKaf9(mN}M#WVW{O
zMv|ov!fa@N;6IjHa?j30iI0(Cq6LD;B?P&O?hN_dD{mi;CbHfxAN~%W!8NzqCXc<v
zReXd+yKmIqes>pgc5z{5ua>L-M)$ycR#lL03L>k2Fn;sJZS-%qI`q!#OJC~t4b}jU
zIeQQ>3oJAiJ_8&;9ba(?-eriPT-WY=zI3-`CE@vX#$7PU2d|tL(p(!N8<=0uHEoYP
z7D>TF_5Y)Q%=<919gG*D@9;umm_V3R=aVfoy`y9V>2r}*vgM0A0lMWVjxTwm@`631
zNACHKW(V-xN-KhySIqz6ZdFRB;EYReprJ?S$##Me5`GAi+eT~MGl;(W$;rqqv>J`S
zB)uZlHNn>V$xJS$HiNw6Zr;}a)a*-7O?ArpVyeS;O?sy2Gh}Ge{nMg%1;)>|SZ~&j
z3=ihbc10|vB0{~Ybxo{C5@UM1-UL0ey;uH9Q(ac0zL(rsk?~dECsY<={`1!U7iRN6
z&81%{J_huzeE7n^*l=lKb9!Yt$vR}17z*V6i(hblF@$x|s`YWV{>zaM%2R3|{fvG!
z=tssM4k^Pitobd6OiMmKA}g179{FuT(XxDfVI{HXt~?JA7}4mDX^PBly7jx<u+r|D
z<m0v8O&c99sztMUOS;1g=P}1;S{I?tJL&<&)}&!Bu^T308d1p``DE}rITgQFI+`r<
z**k2wWS>__6XQ!s<To{4W;Gd<=zo{om=H>MX!|ZPz{qCCmB=Od=zb&iFxF$%%Msj*
z8d!f1K)Nv{-rp#Sw2t>zA&+ew1BE-pVBlEphHq5*RebyJ3}Q{E;thT$JMBC5Dz$gu
z6<}tZoX?sICg)-_?b^E!i6`O>VqTCm+ud9xT}@0xJb9qX)}_q;oLUvOLo%&?9L-eI
zG?{w0ST)1u-rKW>@6sb&lfBE9x4`?Q9RndRBh$L>y(XD=XKiRI*UE&<zLPPn@j7T8
zqlE0e>xLC$PoT(IgfJ})neoWedf4}N%rogZ<o88agIEy#kKnJ1wO}*9I-(<qs&UXP
z4P~oZt!>Afox{T|KJEOqSPHgn0&?Km?Nr(BZdW+Y&B=Q2O<z1sTXS>P#re4h;ySJV
z!zIq0#L=l9y#A7mf^F?|k}vt2da|eb-{DvaFz7=V*LPR$L!Hw-y!ulbJd%R7`g+Vr
z{#;wvoCBMCj=B8@`EDyK-TrE$<I`pf-F{}t>!7)2lTVHN>8rne@eZl4UEWD{imcVM
zWvm)j-^K^;d%`VI$!gN$7wFk!&yHk_FW+;Kwci=N`?trKJ7qZM;j=|+Csziao9#Q!
z;b!@<YCid~bCbEYFe3sN(%-EMBJS>NPH-g@?{}+-ZG+;bI61!wIM1-!9OWEh{}AUl
z8~4V7xrKeBK6Dx1&H4T+v8njv{E?J)N2=e!xxbYan|$!qQ-qy(8w{3ryxO@snL0kM
zy|TPKCXqw>4>~?RM*aEhsk#mX!KCUshI{Y#)2&ij2ioondMBlg)=FIACrW<x#w$~)
zB}Oe!CII*uYtV+;37;EosEsJPwOco(Rn<p^!Q#$wN-sk$iYqW!C{xH_e?(8xUHGJ%
z15L6#kwELDl(8;tI9{hLE$)ADXi@RSaauM=ZqKZl;$Ydw1zwiRyHtxb_zZ<H&i(a5
zJDdLf&0Ew$>uQz@*=RKs%-oW(G9iB|xesO1jc=XbqFSkyiqVpPCivitFLYg<EgswG
zcBKBCb&32lf2#LoCETx3UAKsgKxyHAgOjV(^mmy3GiFHd88Oo~Gn}=|bAno4&g>b^
z`A$#qV~X#90{P{*+->~MLbQ+5`?_<IM<Bn?*(={)eNp!@pHlW1B3-bYi@PFwRdYLS
zK=vjyEY4DE>#N~3!AQ>G^SLJ0IIOzzI;-lI|K5<lGRO417ImN>lX_!yVOFzr8#J0r
z*DHU|ohY($0f%}ik@{H%Gf=bzP{WTHBlWJek&d&$q=@`P0~+4<>-=-+hfdv}f+U$p
zwl|m~E96f1h1XgcseITJjhN;>6((uT{4p&}DY1Ud{eZByQ#BikG#fn~EMc&UE!$RG
zTFCE7lv)4ST}%-+ZKVR-no!oT<(mA>e7N<DCVj|pC@Q|<iM8$EiZ1gTc7p~I3w5k~
zci!_Ij#6jduS2HBDe<#dvY`c7Rromwxs{k`i7c*K`e~-2x^CT~WP^CDaf>aZys*#5
zoDwkd%fIABEz%pLKt-cgy2`k<v#{Bimv%6+uITss>{o&O>dUQ%3P@7Tclf`4C4^cS
zmr_xox~1a^5{Imy)HH=MF>EXTEJtmp`W@xZ*X1`Vg8)GJB-o1g_dnq}!?f^|Lv?ZS
zmtw^7%!4rIP>HhNg7B0Sp1+}r55DzQbiBW_I}B=`()@OPR5?;6;*ay|uEp3iMf<)n
z%S8KEv#LSN>I4-HZ{;w8!+h}t{*}_vS24-Po!=DiBIuy(e3~j+S~R&czg3AtO8tD!
zC?~VCR|kvQ(_M8Fr=t`N^s=$#jVqmFIK5*}k{^6c5{15;Lbk6Q6Rsaho$15=e(h60
zxjnd!F%E4(Hx6sA)(ex5uTSrFNk6#a5;iTOm3OeyhK=r&e)>F`Ie(MV>T_5T8FwG-
zFm{1H#gi-yT2@_Kvb6R59onUTPIR-D6X|b_ItGgisB1gw6bGZ~MQ?LbbuFyIO^hnZ
zViuA=TQmjrhA)jj<J1raWyD`?I)rreUY@gsRWVlRh`>Edj>d&t2aAA`p;*R{AFg1F
zM(cuFvH<L6#-Gog1DG?d(O(TqbMt(xp?^fSIbA;x$V@cxaJh>v4p7!2%pPo2zmng0
zY`<0%nC+UL+TxWVw@Jk0{;kijfyzoUa*0LgGSK-Ay(q<`ZRM{;cMAWd$P!M2L~pNZ
zwgjn_nDbh-@CX!nSevkK$7Di5z+(ABCdG7lN3Iae)Qnj66;6{i*G%5*w!jF9)ncU6
ze!`pD-#mxrQ<QEaZL|7(hKxQ&rSBunEUEJ&9r+lZJ&CTRxFZj}r?^kK#~iNOIMP97
zx=;FF+WT*J%lDC?u5nd=Qy<LB;#60C+ZU{Sw;~*}<%m!Z_Q5F|Ol&H9dsGAiEAY@A
zyEg8-Inmnwa;Wc3w8%IVR#)C<5BV$r@i(KP8_!RA5@;fn>1q}mUq9MK{B*sR-^5Ls
zSl{6}_To%&-FqU8%fm*@$$%)i8FVTpEmxV%Ce(GIXWgA<(Q;2U2@JIdKK-0{9uECg
zE5T>0sztM6Y9t9}9`vMl==wQvUTHY8z0u$P3SVCBM-|qHXs<jynO85Qy4zShh-F2I
z%dNIhkZ$_vdjGa*>A7zB4N5!Uax3&Xi<4!_bPT5LkY<76J;cRqxoGb~&;IuGb!Rc{
zd2KXkA$+m*gRewp`(d-aT|q#7IdQ3+=w98so;+uP@Gj(AE|!_a#gU+(AdjoFcV}m3
zYgf@E=ffAXb*d&Ni~}hwiDI?`QEc>F32F|nxZDnzlxE|g-V@7zIc{`G(~B*2%;khL
z#~eH!O6P}%i^|L4f%<3>!}@{GMwanEeuyVAJtH2n`%xi6UEJ(J-519j+4OlN-7Q-$
zzdS~mYrKW|6=h#Pdt}o9qw!n(U3^+K4tyI88@T#lwJ9MLTdO~!g}T2N5lFso84G@a
zraD_FE7sLLkfONPPkx1FCyIccfRVvISrNj<HuO)8+tYNk&e#SBBXl<$_9Cy!W%caU
ziSb^*nCV4Wg=GmNpenj`DJ1OV)`Ix{lkcJw=8gYpvsVXdA4gtN_I(@En4-Z<sI%=V
z_CH92p5xH_pxgQh8%Xw@WJ0`(QfKlf8(&;KgTY{$hb993f4u+;70`mKRT@V`q3ZLz
z-`IZrv_{qkbC8)Ln{OQbld0K(BNgIG?M9Zjc~8%C#vFVY|Ea+@uQ{_uiaR^4_{6k?
z7+(fb>8m{v5zf&x#Z&t_@lboyk4tN+zr4*7I}d&T&q<1px>E;n6{|DYChgvHW@>PY
z2A(+uQ|`$J<|!GuL=r_jmP--?k2j`O9#vntN9~!+rJsS?>0th#6ulC)_~_S{pXRW*
zJ#iJI#4;$$kah_LjQb*GDSe+vs&s{&LPI-wd~p>i6(h#e_6Dl%C0=ZRWc5#ga77TS
zx^NcEjunT4@T-4?F1_`A{X1GXGZ9(_VEw1_);Kk6GiW6_DwRF%@o09)G$BQUCgcG~
z!urm3BPmZ5!H%yinr?C+Rq&FOP~b>IEQLMpRbF~2&rBjf?c>{rSJG1lQUMexd9eNo
e9G>obf^<t*=z1l&!bA53;H9dzN}ZB*#Qy+70jIM7

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancellation.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancellation.png
deleted file mode 100644
index 27b00fdd8741a42a82de27231ccc0e06005f06cd..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 24105
zcmd43WmFvBw=LQb5-dP)hu{PP1h?Ss?oQ+G-awGxkOX(P#)7+Bf`*{MC1~UByyEx2
zXS{pv8|U0}#(f{|2L_{e?W(TYd)L}?%{f;`C@V^#p%9^fKp-?3X>nB$2yPk#f=5Am
z1+=*HPJaRZAv;OyxPn0Feb0YziHzvPKqI1?jDiH>1`6q`x1^FkjEnwhlF)V&ad)$F
zbODuCjz|MduibzqadTI&i?x%RwW9+F8<~O%Xh(T&7jty-cCog!as!oPjPL=i=>N33
zn43Ized}gzZw}(T!axR&AU_{bbF^^tG;uKp88|&XcSrr_;?}NUI}@O*3#hTHE)Hl$
zdT!P-adEJAump7xZ-oJEi2pj@-34q8x_AnP{aZINM|*p72RG2=NKz-z_UgHty0x2~
zIjH3DHysG{79=AsqVAQkzZBp_V&2aE=$YU%rh+*E^)nH3sq7j1b4F6#8pUPbAgxnF
zhIH`iy+SRr-F%OVGI3W!7v{GmVT?IEYiKx<y+^Ks^o@z>JHaBtcU;y~DdLz*BckK+
zU%KGl`B%^jsybx}S$J4lcyj%r_MESSbXGFXCXOt-jtgAfUylf||51Vi;fjlkbC?%{
z0-<b`SeTd!5+WjSf==bcBI4q1dB(~#l$2N@B8lPQ(r;dAP*PHg5U59lha;H$uLt;K
zA7dL6j8<>{>Rq>n@1Y;|^tKw}sl<PH4FxWQb5H6>gZSYTU-;n+$)ASdyJG(j_Uj3y
zc%E+;-I&w?w+NT9@@=xu-;ieEBmD4-m*+_BDKOxA$~)yOm+*}?D&*Q|M<j~oJDJF7
z@q#lbTf%y+ugna%i#%&Hl#>49U6Jh<JQZHF2s1iP{-v+ZCO>iFD$8Nse#5S%RiO%I
z0G=#ei1glFQdof%9)^ne<QA=qnDWB*zS~|6r3Ca(hy1uvXRw2&u)+;UkufW(*;Oz}
z%OK#<oVej(N9$TFcKqoWMpu1MZL~ffZ&!x&&y(q2@7yGoT#q;&7bqA%^j2l}#j|96
ziewxgl%i8Fa~|gQJCL2MSpE4tV0jw@ba?uqjBN0>3^|4>?V#)wW&6}|W%lf9MSVC>
z;tepgJ0%1+xc)KC*NfE4<(zlDk5b2fSNX3yk4Afh{Qnx!Vk*P6oxaYJ&IqN^8CQ;b
zdozjNwxt`1IzHCf5)=ggJc4|Y2ro52*S(KnC&%5cP8S;SNF|ej|IFbRpo^f|^PGnM
z7v}Uoob3P81ApmXO;fK=Q}p4AO#f8z%CE^8l188*6IJ+F`b3jIf!%M`_=Uv17v|in
zM;csWuw|vXPEql&D=1BASW$(2rI&}D^gYKWLp(ZrfY9Yoc|Dheu125Ee*<1PB8=A0
zR0$Cwj@U46G&BTDET*}NR<)C)zG|}4FukSXljCPqQ!B-p+`<45gx`jO6n0rKci|ZO
z0IiVe`TPiXe!<;^0diq%;Ni}#0=l3*${c8kbDSZQmbUE8*TqXdfo^qSU-TKB%=lia
z%77~WN?#(&A4($5PsDp0s$YVYM1#cO3!H`#l=j&qqedUzbY(HP3jMGuCmM*H+J1Op
zh3rO|u)QO3=nyvia({Oelfb~|1KTX5EwfE3?5h*rScWmm!#Wg-ZC)X{a(RJa{9-0W
zGQYHkO1dR-^@9?T#wr7|{FA`RLu7a?;-u%D7PSAs9h`9=M_c-4Oq|Y#oiYk9M}KFh
z;T1<=BX&fN60wPV3i;ai$+~^rawOUhA8q^$vx(XZB15z&<|Z-+D^v*uNO84Q$U$kk
zXD#&%p;X#2`|jC46D9~}w0R?y<3rFMn2;>RMFM(3x_da~>_#{-=u}@-`gfGKa47jO
z6=3Ys6S)W(=$41@I*pV24*f$`B#p1n7xJ1Nc<)q*<joMgsD#a9O{K!HkZ$iK+l#P^
zNT!oan)~^;=-DGC3Q#3tStI|-L^w)F{X*=l1DP|YV>U3+ktn(<k6Vf~J1C`Rp(<YE
z1q^u99k5qCDyzZoXoC~fOiM~*MJ5`Z9}gxRjs}_HXyqF(1{aD|>)jfunyM+bC6aJr
zjon=s*CRWO%Iy)c6p*|Zk2P05JNhhY&%#lsF|1uQ)h`@z9U+(rin6X0H43T{w6@PP
zJ*FrG=rxLLfk7~~8liFT_j|B!4go&xY{TQx{959Z3b-a8Gz&EcaloQl;uj%l)7|F?
z5;39BDQ%k`<67MVu7}LD!Au>CN}_`r9b=%2c#HfdCDfog<3MISdxE)ME+!4e#v-LL
zUHL<Q8f>kWOf)(zsR6@3yN_qeub<S8J@^<rYExf0u6Dpa!(z*CKD79X@M5r~JRtpU
zNw=|?yuw~fLxYrLWa)FcJF%T+nV5!6y*Z?wuL725k7`T2rQ2|4TrPVtr!c(7?V7o<
zuLo@~Dwt)lU6~ae=M!YRDkHJ~p2=<L8{<B*C^fk3*gB=HX{5NS{aT|`CEXr#bl%8?
zoKbv`9|ZmN)n-q25qJw*HM{q27ssRjN~NzZra1GDt_0#uGJ$U<XmcvjF2GA+8o+b_
z3;c1B3c138JSf7X;FX<=XR9EQdmgoMivp8pKGlY|Hf?gDg1`EVjw4076iIHb#*QsP
zzPSrd?ifgSfZ@f?xHqFR6hB@T-pSpL^lHc`wo*jONn^%d&R3?dv7RcW*+8{GH-zb`
z;*69v&X~u9v_kGTf#-*P>cE=KqEHyiqaF8(O&Iw_g}d;!|70d&vbj(~PuZKgbc=cJ
zSU#H1Td^p1-+c$5eZQikFV4A*gIzQ9Zo3t9?n;*G{#vm;c=F`4jCy(w2;gC3$ts*N
zo>WL%BqiHaL%<R<8+duxKhN7srpV!lTvxV+-R0C>q@~>s!}5~fF%oY4U8sJw><7;P
zI-vfF0+NZQRe)n?mwyQT))mBR^!8_4Aro(TVWCsh1V+bUMq~Tm65?eCBSV&QE4q3H
zu)u|7z0P>KS|jO2_SSksb#O~R(r1NF{8DoAjpq#2G*wce{!@+#-wTHhlT5Sp;Sy5#
z-ktSl*OhN?&!burhT0X8iskn<XRpNpFJ=p_!>!IN>m?JUwWIog1r>I1?oK*z?i|-2
zeYx#-zCj<vSapRM9;-BYEk7M`9IN2n5g5;Fo8{>Lit$aIuP-;ERJC9p5Xdm(^C!;f
zxgwSoqamj$^Z_q!xn$=~OPasx8t<K;{Utm$J9jf%M3xpPu8ki0a&cMZPR-3ZkJLt7
zxYcMB>^-*cC~Wiua*+B<f8Uz;BgeXfU|2#@DJ*4st05@;y(3An|3F(XyNU~rp%Ov~
zcRR1)HdYfT-uVy#lXN_Gf}3H}-+O@I)8Dh87>tXD^uYR?%mTG1U8*Y&_@s#v|Mlpj
zK{9PA@pT%^s^!SM8RQI{O$RqK1i1rC>>w^jP9;N%NPU!jqmF529?izIBNS>@zV1)O
zI1Uq!OEwErkE2q+^u3NT3ot%Adat&5rI7=UzO-TavgsSO^f~{>qfy7eo&4Ja^Y<|O
zfQ^{Vh|c{jdae~+uGCLY%o5bU>t1Q_w!D%#W0J#ua!G#zPd~YvgbKFQFvT0FJ$};A
z4P@gmF;Kg-nmQ^Iu3=}NQ_R4M(_JX*Q?3Qxq^UFEW?a1tY+g9nIIq_H66Ixn4LV`|
zYN-=tn`%!IRNpaKSE<~EV`ZU}ZGCH@gX_tK&E%1xT(R<JQ|9~pYACYeLPy$A4N=|G
zRlPS%Gq$BZpz-G&UMpHD9%F{W<x^StQEh7WPv?^-Upw?5*^g!|59vqMR$qF`R_&m5
zWbvtk@Ds>8IA0TKfG}v!_UJKPzuECXKW*yEsI0a*kaXUMV)sFayq<9bDke9>E`9Ja
zF^z${ty=-Ss0zH$t37zF6D9db(sjMfE;fyFh2JO_O?2q+H5)D3t|x&PA$H$8nAl#j
z>K0X&(WU&GI#ys=DX~j%z_%x@^zN0wj+pt*N&>XWTMqrItLoBr;#JA<rbImW%q>Vh
zJn?NY(RBvWk<|-m#a)IyIm+8my<b{+4`ma4lWqqBL8U9ESKP0S#ir1z22+YEqO1kj
zh0;$|M~7EJ$l@lFD_gkgrX-xCpu)?8rY(|FSB}54I*W_{kf4gwrNCP~sk)XgJR@6u
zMtXYVBq9LNs{99l_Wu;){0lUHQ3I`JdM@+M9J~d9*`afRthhKe(lgrp`t}(=iU)lt
z0Z=z`PtJdO;K#f8^aDs6<QVOKJ+X7Giaaf}_UVTGdNH-OuOT`-e20hq<m=v7q4nMC
zDop>ws_QwO+LJ$%%Y#)dhJCpFM*ZZp6M>dT4E>@;dzLi1hH2t7H(u6=hs!6Y92!~K
zmPc$eM}?$})yI|XgLMMHEzTfFL60^<4aDYH9#B2TGGE?ryw3>2*obx=>+`#5Y<i@7
z3XyuccpB8wdkkNJ@1hfmJ$Pb8lxT2ok51Asx!=#@xpdEF-^Arz&d_T|yNh+F0#b;Q
zh#2*_w$GW48Idqq#qKj9AIz^00it=Z#-__%F{gy=P>G-1$9@we_p6#LmrHy79T{-A
zUCV<`PrR@bWp@u@&N#!W38`e31MP@b&;2e=!pZv84Bp>MQLSqED;oSCE?2p0%QaV)
ze7_nx*ywC|SZAjvL-4bvExI^84>%L2=g;>I3Y+X3gYL9;>{ooXd<eaMYO{bz4JC)6
zt-or(o9A)s5#iF|z<o+RvKU_P2(7>OL$YMb44w$XYVw=0JU+916!IeoJdc<?3G)nG
z%feSa8>Rxss%Hxv;|y)D*tDjwEYAl+8sT+~y<d-Ou0*oK?LQKJuV_WwHf1@yw4QWM
z7Mx#7Lm6YqH=l+ZIXdiS0)4+?*00?#|9JkgmF7=kW>}a*GuiB7`wJEWFTAYlRB~=d
z0mSD=UieOS*TTXvvsU>8@37n5;rbQ5$VeZ>_^Q!qRS`mZxf~kmdDPWVA<%@)c(V7~
z9w`&m*b$o4-sBq^9hK&L{Hs~=X529oarNE(>sx96BLnU0Yr_x+&LkyqarWW9puK$^
z`ul}DFXE$(fGpCUI3e#>T=xeUb2R~6l&I<?KHI@O8@<9Rf4t|kxI#7C>t4*3Ukl=Z
z0z+Vi@M8$d{u-QPFG2d@H=Br{{r*o&$!iQ}2OG)$pR(U6iJS<S%QI$U%)Ok}H!mx5
zK9gXq{*9<V+lIEiZeDl)y6G?pRe}8oI19z&h`IlvROa`^d`Xj^z;6kbjJVSU^woNO
zSj!d2BiX3pr3I+zSXTe)2iObk45a_LOqJ>ebvyrFc#MpSGLO*MROA9|Y5WuM)ybTk
z<yuVuv-o6x@dmb(Ao6S(Imn+sXi({ir{RUyMl-el@u_c@l+foYX6IFQE{#m@hLB_<
z2%+%S!3r>H{fte}Rz#zaOPBF7Yy-w!AG?J#l&+R!kH1D-j>&6dhk7Udeo12D;&g4u
z9S?VL*Q)(=Cqst_{w__R+E`H6dt)~wT%iYkho)=!4EWXf%G%?^D3p`Lo9rGs*C{uL
zi)o(i$L}Zlm|b%GhoVvU42DT#1F4|8iB;``<~L`<**#QSjXvW7sN3`_gV?^VV;uf}
zl08-zgwDWvwd6vrzKDiByw~><T@P{TsC-Th3Dx@vONe#bWgx@(lMf!r<BhKjhZ#ns
zZVtm@whMj9dmp4LgfKBlm1rLWpxN}|f6K`GYfoX<<5|JixPl>j0e7z(ARCj{b&plh
z;*49&4Cg&BT!V1EmRVaC<XyD_*t*w`0Q51RN*qSW3ZfI?(C}d8W>jP4Ae<2a>JcIc
zd6v_$muYl%BMn!webe)DHL2F6j-t$t#8T)KlHsa>F(!cDw3ngk=R5fEqxwU3lY<5U
zDx`=HxB}y@IqcvGKG0<~unMOU?pFF*w4&l{yuSyx@cNIt^GCO&QZ!Gpt{&Xdg&)r&
zZ<7&~d~)w)APuZsSvb%IOTf)=wZmY<Mj>g_)=BO08zXuk-j@3Pr6OOO#Q`F0M9<gf
zpbH`?eGa#M|9QCmcL5p)q^zMK@UH+~iHn2d^iK>&`ESSYe|ORUQq=#y=ZtV<sO)P_
zGVZpbY)KvIQTFI)$v9%plfQF?c@AFrE_)bWXDOCNK$h-R237`v`K2Tr7yWKIBfQ-G
z&D*l*&2|<<o-)ICtlsdcqB)QV8wC(+wg$%9-$q;)#P^llv>p8e78}Ac2g@bYSosn@
zJbtmMZvQ9$2LJko`I>HkaYNi|5OjM>?DSq&TATyY7?2tI1w@b^7L8eM?p78@%O=@Y
zS|j@rp^7df%_iRu%mH4Wa)F9Tl1|VQO?DD*;PTqMr{X-FC`wKGN|dQH-}#EPNP}ZG
zo`FS*v6==h2OPttU{pNiQs@4&_`qX>@sBpS5|Xq1rvV?cXlkZmBG0t?0CUJ~3pyx*
zHsqtqkJ3%c=pLp6!djM5m#ebE<vju%YRsycAt1H9*i65pbmg~*Q#_bS54YkgQRA8`
z*KFN}l06jj6%`2WMUH3)9EQ&qLid17?WtWZrezzNC7oP~1>>l&OC%zee-PA)@z4p-
zYNZ@Fg60i~mYSyqG};DhR&jM+wrUQvwe7E{!K@91&TjSQzv^<Iee^g$<17mX*UcI;
zS0zsbC|%f2ag4T<pAUQ}N}adcRfF&s%uKYA408?bpt`2JUKAD%yIhnN8oKJ09}HD8
zwjM>VxQ@$-Q=@<`aK29PHaUY5^C?2oD8rNM-o7t%2yFmo77G|S)YT#ZoX5H-*uuPz
zO~FMv(A;lB^y`Z+=O>O|Uw|T4hwMVikkEPHiZ7dik1?vH3#oe0#ko8sVzN+8bSx6A
zw=qP+GecTk6mY^68K62=6|55*h<aM3-~M*dP{}t#j4tFbmDJLMnM)$oMxpdKryPa4
zu_~a)V+MrunVkII(CLc$FEvT#hJwGUXY8Y2Puf=sm+od+n_40G(9IK*O2P~O%1v}O
ztLJTHVXEEU(`q;5(CA6m9nJl^zsbltrOw&?`$5)*-{Lf%1Ica29UygL7Zy&$IckwR
z9~eWmD8dmMI0kYG;1L<V=K|~R;l&QjQG_QaQyhCMzR)bQ=p{%-Xg4xH^WH#vDa~da
zv^VGlDo)h;0DVh(UH|HEFe~Jdq`97%zllz&Ml`}B_e<9?{TKhsv<?NqEK!_hP}AP8
zZ-;URe{x9-g3+5+T?%gnTy?fKi?bjYW*=eomHC@Nbh$4bZ3nIJIb;Or<IriMqk=yE
z-3J~-%RsLsX3Mf^_aVO#8yV7RQ(D`KRDH^A<!+AzA2Ieow|nMKndUHgEI%E08-pvH
zhwRxGf6Q$s`sP5}(mQKY3SvvDPiiYaeq25&s(_5Z9T~7Djw1DaKCvqaTAg*3It;@{
z)^PA5=2swpFPthzeBsSRMN20O&wRjZX0i16s&1;e&iiBH+_#dh&uvDx&XoE_h+28b
z6qBxfQ?5!{1_%pUHV<TxLxjV>@0L~q(L@L)-;a}BxR=|A_GpAHTo}WyG=y6xzno;K
zLi;acaOc?-<A`B=`q~CY>Dw=Rv>$Y%7GV0jJ~5W{^H$iTwyQBiUjQ~>_fDh4x{W&}
zdb<k77q~ifzaS&df%)=RRw)_G;}>f|pBNG+T$!HU8;d#$%CrQ4;`G0H0mORxf5rN)
ze*(Yoe*<m*m*Z}xcr1xOsUwM?=@s0v*Tx4s!JjKeD?Me75AF<{Z%D8D5T>cbcG~W2
z-ZMA@Y$kYZ=`KWFPW&AkkpM+sV(Iknv!%D1f~Ulwz|+6F`iHK)#EG8{k8({nsk}^3
z+{yj!Y2UZkVmr!LM2HV^QpgNp2wf=XPch`)<UVzIKbgs|G~Sqg^t-(}F`i5H-GW?E
zz7Zl_ft29=PS6!`ql}-}`2(cJcp-EyIe$NPpqu(0sM6<dJ4qSOP%qSBqz{|&JoxI-
z&CupyCw!;gB!9dvKB?w@B7PFETNLDLI(xNva;@jZ>hU7UZW(cv_kMLqPNn18^!>TU
zs>98j<5R`Oxoe(fAJ)(5cq>s5Lahy#sTfH@5PEL$t_{KvbN{#g#Op^_N?irF3{}&T
z6LE?cpl{(?u)&dB2Mz-WEBt0uwb>2iT4LrTQM^r;zv$Bb@l^vlyf3%mCt^>s5G)L9
zDov2o=Pc2`L#V7P8w2;Yy3TL9&V;lhPfz=iu4SEXme|nO-g+z(^kX}=htDZQReNW9
zw9WLz>ykzcem^`_^%8IxF*?_{KfVzI)v;+bt^~Vl8HV4`B%8MT?P#CBov6daQn$Qu
z5Iswq{C<`OVsMCFOAZU<9p>8DVl!4eu(-ee910SQI_^~hUsW>STPa|Y`JNKCd5p0w
z`pSV))S`~|TQE^wnb&5&Y!sVLH=y5pX%SaG1%+#3XBzu6ZLFzP_0L=yT%Y6{^|rCb
zR)uogNgj~o>?avCdHx}pr0WzpQ}A3JEo8lK3jiUKL3>C*Pk8<at)54smUp^12Y&G5
zZCr@MhwZrLDZ%qc`#oq$!B^Z?k28?#Fc{yjS)o9K#xY4)W5b5`!(^@}b-Aw{i^q}+
zbC%y<Iv$?UB~dpHWFHl4yvP@gd7G)|Q`u*)9qhbbSDE4QvW1MbYMJbw%KBY&7{LeJ
zqb`rNKB9i-IF<PbaVKOpDt>8CIpoyMHZ{H+Q}zN^8$W<7o?qTSZZ-^Wt%j!mg98eA
z_tPI&{K^{_8feF<!1-F7m*q(C)s+{d1OXLq>=kIlP&@J_41GiCw%B#d)s!pnPq9Bd
z&#B;Yx;lS^1#PwC(-_~2?T2*i;<nSfbGU~`-=h~GL)#~2q7{QkDKh(Bj1G?u_l~P4
z^ol9OlWvUmnBD+BcoJ{2&Ij`r(|g!A$-e9x<j0L*g}FBVcXfZn*_U$1ERRR54S8rl
z<o9na)-b&8-UNzu_6m!#a14hUpPPI<JJ)iOoot`W^eKG@@!Q-`&){mszq{&iXhXi&
z<v)ySi(+wf6ob7m3Y%4ZgtR?fjqnM^ut)k<2V{HT@zhlzB1VpP71P!Yh!4_Hh+M3W
zRTZz?qb=U7lr%MCk%6|2zP}Fe`4DpBdDx%2&D7Vn%<sIrPSodbpLTQ4vOd&E-lahU
ztHv*Ey0^_902|%F<9!bJM74XBe!0<VWEf4e8RdL5Jp4V+FB(5PT#+6K6b^o+CvO=J
zk-&nW3|C~EN-yLU^bxU}TMECPLj0vCgZBn)1e<b)-NVD0x%#35Cy8+^IX)1k$ID)p
z{JxEW9+=1aYHD_{qan*9?00|DywCA^kh$YV_nx=*Q*?9exM}}w)tciKBEW|`-#i5L
zUcj{0Kf<+(a7-e5-z5Xof*IZZfe}EItaAeZ8WXwqzX6^9XOtVBlf#g&qU7`u_Zg%~
zDalv%DQ`FzW7A=0F4iGz7{)!i>XYNM5lza>yi_(V`B^4p#-TZw6K!-{Kp}O3a78`x
zny8d^V&R>M*b`{)A@KJC^7a7SIp_6R73EQI)Q%Tr{)Ae@S|YGv&j!%C=#L;IfhXf`
zA76#*z9{r0FdwGVPA8F2@Vix&W;pr6#lvF*1S8Zo<y;wTa`jDmn{`%>J*}w*eoY%3
zo0j#Yd|;ci8st+#I+4ml;-mr4M#aH3*Crg;tc*!Y60CuZ1?*3_-njB^(eD7Fc&0vg
znb{#F4lRy#PkEh!Lo$DWl?v9G9*YLZTHwW$6&}sa^Angt+<u*k;m0&@lC+_{$&tZA
zye76d1vStQ?~V^KBl*>=@Smd_#wZh{!RK;YJL(a+7WVvD3W>Yp<=fvz1Yc8BTG_`I
z4;8{VRz!Z?8F7sn4csvK5^vg7DG2E%CoiFI+?Up`%zLCXbf#|)<_l-GFmn>^{tk#K
zA@dYJPz7XzXT4x_FQ>2^0F}4fP$>EUrH$P$2cJZu1EPFCK&~iAN@WAUs-+?o-x%Sb
zH0`st5j`$HxL{n)0P%B^*eVL(j%93@zrEg9&A)YCz-68OgF7+oS*miSKgp_-D2QGL
zmW@sFES*q)04Bgqew)YW^#C;5XVkm~4^yT}iFx2QWghI{X|X{02U1e+?ckGD`D1Z^
zGi{IKs<u8(ep}X6$h^{Mpm}m9PXFMCU;vT*c*%;}VV#|A8XIWu-6UqAfxE_h1!?IU
z#b`4>zMwU6{syo4NwuKZS8vZ`T{BLHN`i8#M4W~rEGS?0=6~mvl>874Vo;kbd`U0H
zC<(^{LV(Qwno-#o{gwN`%u7uz6%Wb)0k}f9T~|mpSdSG-{mBgeAK0n|gO<rY1j!14
zc-EZY^FgbQU6Cb#vWWVOHj;8;B4>(XXHgR7IhXnl{aE=B5}0P^kpgfvTXpTX<S9GQ
z=$A~i%AzI5iQIMqUP8berfvigv9w-lp(=1v!S!z}nbZHx3xJ_EsTESs#T#j`TMBHW
z?ny6snWh=@Be@tHWUD?fjE<^EetCVXoIOE{0R3%V@C|glgA~}4aquI-!Pnx!pFC(m
z^4iWjjU?C-8cOe?VJy~p;`igSVTNauCM+b@VYx2{J6jz~*rj60zE>0{7rVW5cgTNV
z1d{~2L=W{l=xu(nSdf@Y&zhTwdzo{aJqG_^dGE@Hz>Y_xUj(7A31gN7A<GI#iaAUc
zv8KjKRm)uFLYLHbDDUoANlI!UT#Qn!D$vG&UauG@oNnAjvyW9-Kh6w!BgwJ_R|ZfP
zD8GpXl~s<G1V~kIcF2V~dAR90{^W}c9DCU9Dn9ps?+?9cV919fyck~Eal(uB&J~O2
zW}=#|=EbaJ5sev)aR&vW*b%tWjj1dHuyV=4OF*}DbpUSa4nOC;4sw-c8(%~$l`2z1
zBRpr(1XWP_uh~_pCPCx0%7ZJcFHiIZ?C_59c-29~h;`s1lf=ttY>+Y0r+L;GSp#?b
zIdo$Vol^2-<|chCSvY%~OhK-)0i(@h1|EUioiUA1IirE{{&m<A!?yO@o;ZwvjHuhH
z&&&fMe0eWe@i@j;w_nnK&`;qdU|TnS-Z2`LkMxtFy-J_C>HMV(4V=A?6ZS2UYQDEU
z9su75LL<p9h+EgD7s{AA@fs0Dk-XF7Co@1U?fRSIGQxV>z(c9)YR%|&mZ3B8dwFCq
z{|}V=W<sT?Pt3}-F50!&>eZM0V+TgjDDRNsKIJnjiUx8=N0CY7ikzHP?P$P4Fks@%
z4C~pO`5diRR6jSS#bEVnUHaL<5f~H{lzP620npBa-2bVY<NqJ>`#*P#{BOS_)mh}?
z$J*@4z#5eY`DzR|dhb^J{lf)Q+wF`|u_}P@RTSZaq0y2+nr?1Wf9}T}o)~xk3Y7D)
z887*6@mSJ4=gzl8`v%D{MRW;~yc1dOXupqG&6aXPB|*Gx9?%bNC+W#y9++P<;XzO+
z6dwBR-vDzV@<_vxA;Nm`Mk~g258r}_U6la}%{j>-(ny+F`lX4h&g<d;M_Avy8%J9k
z_Da(wjrzwkrfWJLSjQ;-#@b|O9AfX7wKdVGxJ+LeBWs%r=mLAm1n_py)6=IEEp!50
zN)~-x)GpwGxJ9~D=1!~ZAoz6JuU&I5c)z}x*;IYv+;(C5nwzNu|L(l(RFZJ6@rHPg
z4{3kN>!rh@_Z!)d1u@!iB!oUFUm02Y{Njkus;v7(K;uuw?}mo)sa6^LH$8`WLW1YK
z!8l577nG*lOaohxKoa+S+N`NP>5re?laqUZeB?2&YCUY696l$pwB>=Uy!BLcgryk=
zwkh@p=DFj2e+<J1=MJJ(9Wn0{=L^!11vMTnSn0a6;`zurA5bBabPL*5-U<49Ut9b6
zo}kU$xIi75CA@D!wQ=U7v&6b`#}>ZtMBe=hK=9hEhE*S@E3GB-J9d%Ab%x@Dxs88r
zK_+W%thRjDJ`GpzEG*4$eCbs(QTWN^b^G1pezD^MQ@_)Stc@mly=V|iH<b$cV}k?m
zcq{{Xr^F}Prm`5S;q+nock&mrY-EBLx_0&}q2xlhoFn{}goo`kppnvkPmiVW(4st4
z$GPZvUg1AXtxiWZyhTd>!CUEvUFmY*Ywsrz`bYIpUeF`cJ(9=Ka_HD)J^lO*LYB8Z
zdeV|F<Io4h`jtPS#3P9t|5ea!r4!NX<+Cw+(m5WxF7-?wbl{>6mSRwm_xF&ytyyBI
zugBbFiDTfce?FQrMTc+lp0#+-zx^R=*^6B=Ng#Tu^~x9=5$&6Gjb?%9(8c}K{8CSk
zOk%$~pl7tv@bg)+{lKVsSH}G4b+vop4z<g2P{82sQ!C;)DV!n9j|h@%^tooTZruMa
zIiOo${2spjDjB?!m3e)Gxf*K!6fu+cBz||u4DdxOCz*3(B!UfP!fv8`Eg}~|<|Wzf
z#99FF!Tk8qZXnS6TELK8H)J>or?=^yAHtL6xIxp_aAL{r(ABRnq4mth!Lt1S4bHC}
zxqG!tB7pkjFZ0e~TZdfmisg6&-U6}@zMgA6T6-wJZ2QD5wIa6i!1&$l1lMZuMcdV^
z5PV9^uuZR5{_cX8i8T{*dL}1TX1Sm*a#H3U_W9!}=lT8v>0`T_;jLH7U8i7N0Q`sH
z2bPq(%AkoSK!b-MIW};w4oBgGH)oy(ikBbGsN;kviK4#e_>`OxesoR4S48eY6bje5
zez7cwu=?xh!<S#Eqb?K#5Q6cK54ah>-B>(|4Q+g$j<`P2CaXEm?;Gx~+_jw09@`!?
zv79n@w6&vEVEB<5%H3R@Jg%_At~ti&5Bnb>^VXZcI><=q1z%(j+1`-%m)08fk7L}w
z8u0CluQ)<l7RsBxS&Qq88n5tsqqILCN`5q77$=IcR;o?XZ*=!c@XU*tPr<VLYGt@{
za7WyYi@B6u#L^f0@=*zw`GhbzrIToX5EB#tY2b#)`(INPubs;|i0RopwRjS4{jJOh
zr<IXbwm)w=DI5qcX`+h00XdD)lr*o?`0;<h*o1{0BPSa=J$Y8UotP%DG$XRG=!Lo<
zcikBEB{~WPmdVb59S!B~;Gwg#>yASAY_cC6-nTi>p=aIjUT<BjcQPA9mw`LE5(UWd
z-}@3{XpZ;ZT8_B;;W5qxparxFAyo~=3?DraR~mI<ZEx1!vsYgaNZ#vRaXWn-jJb*8
zGFdU(i^t1Z1hUUe{DI5laq<4yCv5WhM{|Ak1_C)e+wnjn?{YGjQ77JPWeZAKP-nk^
zf>1xj|CCQ{&4S%b`6|j^7mj<ZJ2`zdH{!qhrKDn@85z}aVS1aAVdP79-`PU=Ng~<w
z=X!sW^LDrXG}Z(Tk{^)7#6rcCOh(N~c>=bBwf(uexI-dhD|UT>BSnc=7~Og&Zv>A=
z(~mc6<J@h-=|icWjgD|Us?R>T@c*_?PFz|!Myqx0A|;@%;IE6ilA>VnyAx$T=bM5b
z6K<#HKjkP5GiCRfXZ|*dsIF9k>*OMGC5=3RG+_fr(|BlMEhM>)%rbs?+l<2pa4Ze}
z^2WLIyKSh79@rzWxVHYRNLd_SLfr-inE-UNLnv74h3d+t0I7&5$GgR#1MCc`*v}tY
z+FqI<2X?|i*msAA6A5g{nEEb1zvGhq6DKgHu(ROors=@8u=bZCf1>u)9M6Xfh{B;{
zO(hz{gf37QL7anSHcx&KxsfIFebLjUqoaCf3s;QSU#r{5g~vUO&a|0;-&AjTBh##K
zI7_X8t*n&I89ZfHDFl(I>Qly!DXhAj98S!iKPqa89v{trVc%EWC#F67wJV9Cku}?!
zkTBm}n7qGVEqjxUH+Dd5zO9JSkvDA#Ll&y9X~0HQmi7fOcpV%eJHAj8@X;GNAaG1D
zs~gwGKa&QW4ho$x*q3?q+Y$kXNqoun`E4~qLUN^qYfWm{{671*yjeEj4AWVN6;~^4
zK%0c1Pd>g8{phfS$0qMSB(3BaUDObF<25~GNlMo+Tyq%jqORvL(~)KiQMfa4<Z#vX
zNT;oLjPb3c94d;;EvZ%(KVVbXeP-)1?S}xWz9RM=6zWkrp<K(C!VJ!&<22$Bs0P^k
z3pNAH>G&)y6>u&CCs#`Q`vopEuCnPvb#L2D-B$VGVd$W4C8Ozkt>^rU%0TBp1u=cv
zroAG#njwG5;48^NhAniZ?a^cS=V9%>%by3fulB~JboryZm#IU~$&+<a%jB^9l~FQL
zjQF{r=9G5d4*tOz3B;td5%_ld+Z_Z>f+&K!#D3~a-m^!CW!ln>?%z){5T^E+3pS4j
z$Aq6eigwB7_UR8DHc70GKJ)r&t<aiVhT5f@BRy{tI&oUilr>pt%Xgn<4{s)3YWr_&
zL1qB4`>^L|5Ei5|Y{eKcVfIpXQft#c;Z+P<Wf!~^XN)lcT*A)uZSpKdBI;68T18({
zNa^D$!$A@gib?{r9Sx8Y*tEE(k>ys{OPN}kMZ4EGApV9=Fd@h<m8dG8o<E=uddOq^
zPPvZ&;)#sG+GX5<(o%n;QeG8r>OdOx7Sc)|;rgyBiHiV{%)W-;O2=+B*^raI`n`Yz
zkiuQRkXEm{|1^_FE}~sSl@s<qm+uccRjYW6bbOzJNtqkOqIrp`0&Yic2=q=LdW%UN
zEcj3zgT0oB>s|NLFPg~HO;jOb@lJB426PQUqLn(w%pdLGn`wJj$)|o>-@u=-QEv@@
zH-iv|O}VPw_P~hSvkRDE0QcuD;;-2%p>%oIo;5qEIOl9E0aC1*xaxl;RSO2~nSeq4
zTeuL);<6BsK5><2bv0{6g#FrJ&q5Z9%^NIkblvcxBeM0)*&igs>Hhk(Zcl_GMoc+>
zs;7XD2IMeT7&+s!0?m4=8xFzI>*&a&OOl}E)`c~WF+<H*${g2DXT6F>Y<gydRjJZi
zZ2Kh%`U`#)ERYWwsicZbtj|C>cf|6Txc^xu2*?t@*&dJ)Bh7CYi1P5a#4LPYIw-=3
z5oY5vTiKRv!!4P;EKE9K_FzkT*-T72CYp{~_Hm1}H)KA+b|r1qSrh>Y;0{giON>ed
zib2oHMNR&Ui}DRISMK1(XD!CS=?bPlTE)+<rJ%;47$%T@H;TXx&zdleXcjF9$ftyL
z1V_K+1MCT?X#x(^t+1nK7-E*VjGm0jT&!f9t)zFD)xu@R!dhP}7)aDEApDZ+oLd;4
z_Q@ho9Z6lIXQ6<F9L`E>6<}hdnW(7fWl)uq%0p)JnO2ss7rJ!Y;D}q6j(t@7fyc@Q
z_ZR3ck|FIrU{sJ3*KyrKux9LEFu+OENJw*`<#T9Z+wU2yxfM6se(=JIQ7_cBa}2d!
z30ki57rDzIPjuJA{CyQ>{J|YA)j7IZ{}%?F?HP&i4|Up$%lJ(m87Uv3J#G)neczi7
zNFu8vkkPs93pLN18S%_^aCUEmAkis*bK%{Sbaf_f2s<OW`Q<DxnQzG$smtr~Myb_`
z*pS!w$#e=i?ha4EP(-A=nxHh2N@_`aHuq@_SW_=v>_y1kHDZBX8*{Vh1VlzWg>qs*
zO3=U|NK_xMiR80OXiyb!<#!f+0g^bJ|2T1*e!a!wo9##1+{qCDefL}Oqep4$Gsz`Q
zY^CVoRF~Q*yv*hu{Q%Q$NDdD%Rv!J)x8|6#C)7T?(+zEVboTQ(8&x!loyiD!`I4@O
zUvVU$Bm4GILYzGnFk35LnHPi&$rrwQ=p&w<WRsvsSLG<IT4nzYT$V@Bm$z9>l5ltE
z+<L1{WjDd%U*uVP$H=)Rwt`4eUnBf&^7ulbJ$qFc4QEneXL%{~_q&F_&#c?sBavnM
z`_k_&)b3-x#PbbQ><9W5KHnn><K&E-{>uKbWU{l4Gax)`NfqLrPiW~P?95iZh)Eqn
z2YnZ^)qA&5giB25YY<^IknYn#obF~ZGo?_JApdNk<xNaqNJwMS2%}L*hd^0f=fC^?
zPB-V~)p(lQt)NW`8c7%$`Ax|6?zg(F&HFPq_wPC}X}@y{i!CpcM{hTEt428Vb*x)y
zYtUTlsa)^O8kU$L`mqNI4vv)xkW~A|0%rEn^hAqs?JNVIYUjJ3bt5OLfBsykRN{Es
zKo`AWvf}J`;)VXh@@TI>`C`I4d@mxB5~(vg7!o^vsvv0Xc>;!QHx&95U<6fTV$fk!
z6ap1`QVgSs21E2hds^sJX3gu|k`ypLEZ*PNsR|!nrY=Sb6scSMv0iW?CY8+rSMVEj
zP-R+-WtgHmO=}Q7n7{YRxR5pFD2<6!v)*T$bX9O8o^PazpSVOWj2ljn8tQQKWxJ|R
zI4^NR<HMTw2O9{z&Gu)j=xQq6AK1^2#_`71(V|Ri4nde6nKA~g(!aVqFH)420SFoi
z?4L5`D5AUS;8@D0p!9PN`Db19`%gpg`v0(bBE-~WF=}LciaEjCvl3GQHyh*jW-PUV
zNvpn}8G##}05<dGDY)@ub{IKq5>Rm^A5tR_i_D2*Ri09IH)y+mxZBPu{=+jZaZ^l7
z%v`)U-K7iuq3!`xp}aYhp9XjzZLl{PT__bjtXw{hAxum0ygy!X@hcI;B>vJROg(BL
zs&VT^e~h3#l<!5!`HNW7m#}l|(Vyxmu6fisDOm!sV$gmRO9p3Wgx)cA(G7w$6WN^i
zxbO<Mx7;4{nwwWLyOvN@o}fJY=IriRn(T{H?(!Zdjjb~=S1^K|m^Iwcw^B<ecy>j9
zk@h^4RLjM-CDRxFYqSSm9(}6rrDj3Pj~0L3?77Q$lKLew|Ll-h>eaxkp~@Fr-T|&(
zY@B^_*fT-t<4O^Vui4K~Fa8HALyn$_MWa$k*qC@DnVg;CSU%?Eg2S1wF`0C!6f61Z
zv-4r(n+chtCZz`tyT8)d)4yEa6H83~Soz{e>rTn{XLRIQ+?;U!T)GktROOiduT?q!
z#<8SUi)ciI?LSdGS``m|%ir+7Y3)v^**8<%pmAEFOZ!Q8G5tlpN=kgNC;CB1;~7W}
zwqOQcYJ_<|&2}c$yavTy9c8PnQ`GV5#@2F}14}}7?$=5Wi_P0Su;_?1rzMn&FlJhX
zL$kQ(Pa#(Pgw?HX>p9YN#@{~)^W|F;CNLNF&YEBPTvFe5syk4AaT#P7Hj<#_vJ%P8
zR?HQI))MRdDI$%}FNu&;0nehV$$qe9Xq`H(?R@oN>2Qx=T}6$EUG8b2kdxgJd&Bld
zRN)r?zIayPjuCy(M(NN#;cMWc8(o(J;pM*CZ^GTfB6cMv%!#?8tRq@2C>P+kZ>iWF
z-B*p!nXDkRUV}~obh^8js&&KrcMFt+?wb=^tiOZ)B*G#`IO~6A;ElB%-V~CmwNgR{
zxi}3Zhgj5xIKVflwJE=$=7kuw*6D(A2Dgm>yY0`RFsqswGnsYXvfxPN3fbk_)c;&M
zy6fXoP%x}bhB+~Tpi;U5nk%+>0n!4|+@9-~_C4>(OKi`3e=*C(%o5UPlPQWsg!5<?
zDuS7KCtm@FkhJ;wmfuG5jzT^}{G{myEj;YW%l=I1GBySz{amF3BX+-Itqs8Ow{nCc
zY*u?OIx)K4_zeh4ht73Itfvcf%Rg8`Wv&7a>nwIL*XKRd8t`o&BGg?#00$jCNf!LT
zC0ncz9Gz7#)3G@GgUdo!gfb5-t*=}!H=RUb$-w%&%$LHi(DUuQw<f>;18RIWWgY3T
zN_Q(!>~^?+yIGGv0rp%1VWUnAfue<)`4R5|@US#KxBI2_pvyOuwf!9~W~9FkZak>9
z!ByUPa=M&Afr&?<O95wm{?5tnB$wvj@)eC)i-N)h6@Clf*Ub%Ilej9lm(j|n_R@Z^
zi5C@6QDVugM#*M2^-dPNY+I#WNcJsoLNK3BJm#_vK;%ZZGLpog>tTdDYM`tOVc&N7
zcld*V?|<fucN_z$$V5xteXU$^F-=1G!~nTr#@9zOdp~?`ep3l>w}FB9u>f2JV8x4P
z#DXO|`2I-hVE|y59S)SVNOe7;&*oz~QOX(%lT<z#$No5Q)GicIn`Ri;19Wv#32DvU
zNr39j5Cq*W1^;7_-m$d;Gy=UUBRR@1Mv??~_J0vqjmU%*rax$&7ZWF6vAG;c0sDDU
z3d@v`gKB*yLP82zc?vWdFh`m0HDZTii76!dCxhmH#K0wn@9cp0xSw;;l-n3!>wo+I
z-TMC`pg?Di-UuFQ*R1WVOr+mz;<88Fw5G<XVUGriiF0J7Vye@nGmN;HUgi7qJ#o9X
z1cw88Vd>LZV(Zs(+w?AOe1#Y+3|0*yz#GR-C8zL@uvMOF!d5%}mMTid@-?UJLj6%x
zMXZPj*2&(K^t5191Reo+SDvX<m{Q6WGF#Pw4*0^B1Sh%gQ)=2%*yj2+RMOuwdZd~d
z{}fllRwBa3i?nWcXhGvF^4<^5_BOD;9iPH`R>eME=)^{I00|`E&|=aF85r9K@0I~?
z`^1R7Wjr$CjrqgRdX}!kvnfBqyL|73wAwcp(e(`C;_)08Ra@DnNkq1i$%}t1YuNI%
z+0qHlHuV*s^((fn*Ffskpkq2RJ<d6_tzTJM&Z`z}*l2G-&}yE3*Toza1udzT_VA7A
zP^`ANU}drWplNP4z-r!5ZB{@C<Yx*nyNZ<rk-;L2y7BEaHgt2#l<LX_FP#7vv*w@O
z-za{3D;>0Q^&vLjPZt+g3r+o2I4~qw8{xiO9aB%DWsv9*rOnXiRewYL>Q^J?pBvr>
zG;LP(R8~rN6L$u}K%l^hV8E(!<U@XMpuuONR<3L6gW-)$&HZ;{8Fc?-Sxi@L6*`dU
z2CJZ3{JCBgvutG$=(mmw8|*5dqr}*)eESQKqU=SWjqu{`v#&)bU(iV<5u<{s+bgL|
z{IZtGQB?}6N@&tC?&(RnTj4M#`bMJPbK+g5DwLnaDp=uR1C<=NRKoceTzQ=)!r56Z
zn|6G;jCa+D5>9`IUT@ID^IdIUVSVdFF&DeTJkqpdX2@{jS(pGfGun*qf$PlK*kH*M
zlN8;o6Nv5JW<Ax(jKeX_dkzVE+4cl<(p$-+Vc}M%7Sc&+FX`npdtehaDRUNF)gxt=
z+9!9b=juHRI$=qqr~^idu^H)r(zUf-%~oZ#`?qJ{^>L*=VveO6+}qyJzg*mHwlSA7
zAnMkU52{QK7$JZYjL<#d@17Q&Y$O#DT7_t~!iO`!+oaU;sQ&a)Ip6X^Mj`$S|5_{!
z)#z#U-t4^4T5`9GSr4Jn;d|~~XcTV9d9)yNGAdXz(~^svGVdp_enkFSA>|M2{ch~)
zpE;0>WAROp1ni`Uop+u^lPh)xVG6HHfL9gHqLcz4f&%|xg+Bd<)dI1G%A<*!{Rz2}
zvGV~YzLmT2j*$vOEOLAGB&tTsf~nDbYAzYY^;DF6G9x8lp`8>LFA=w**|&BlTb!sa
zbkTtzn?Z~?z(g1Fy$;|cs44Syspw16CWBKISBuUqVwQ^5i`)!2<IsuYFQzP9>ag_A
zSyUYpD&CF%-tB(>uBWaGb6l3xBHLvo$-K`_aigdz?w!PZ%DV{wW#_3(c`aHc)O&DB
z#<00)>T<a9v9*&)=<D(yFycYxwa~~eFu5=%eo81SU*sD;sh%bANj$-O5XRVkePlaV
zt%I4zhjV-6$v=I&S%|_txC<Js=d3fSf0Wou!h~Y=l4ioy6(r&A^pWmP=<{E`&4X08
z)FRuneYqVoJcwE>Z0r0&E^R#gg{56^^n`lVQCKb$wL4}$d3|_-vuj`qzuggjh6o=!
z!VJ?vsj;2(xNxZHf+fkZch9WRoO&5Bxpd6%QMZ~4|6>|+`a{j2wT`)uT(>)HFQ#Kj
z4XOTOMKsf)-%*eL)4nL9p!8q^HbzAU;39>joE)3zEWqo=)Se138hoKCN$84T1qIqf
z1efBs!wFy66c~^}yBwyt+L(%k=<GIiO1xZTR59sh>EF!v6Reo!bQ{%qnKopt`IypF
z1O;v@0Vi9+!C(XGXWG;m#n_%Qqrb<D7!lz`VPA5feR`j6r=&G7tW+s7NC&Ls4;5q7
zD@uPRERU6cwNWH|H<_@knA7yZ^G2qagg7oI!3vbq_p2!G`<*UqpuH=_OPBv4sCXf)
zLq;eWs1^1@l6j!z4g8X2GqULd2M0RNuW_*DW77JNf?}f>q9uD=G=#`#2Ooh=1IJXT
z<+K4}m_)59k{5f{8v#XeaVFDksQLt1CgK%Hl|s3&xYV_I^*0~Jn}iu=Mtf3VaESeL
z1)m+!_o5JBi}{Zi_J6qI|F1b9uCFX`{&5|aWU3MYsPn|ARSOZpJq+XVB%zIbuV`#*
zo~_Cg4rpI_*srfCDSO|E+VHx7u0kBTqPmZAZi<bBPpoT0)LR|T`n|5tk2bo$t4Tw|
z2WiNR#0SwRsHSJ<$wlN&V#56^I5q;6C=Cw=()f==y=9P`U-C?~6Rw>CzPKIHkhB(O
zBv4i-`S1`+|F;^|_igvgKf(fo|Gnh(FMC`<vQeZ&6!g~=1PSD{bA#w4aqpc30+B2}
z|1Q8op7(K*eq_4;#{tgswTGs=XCqtTtqaD+Zu<6`5E(?`&Tm!lee*h8+uJ;`aD=pz
z!P$Q-brf5^i^sPNZ@g`gq(Js&t@m7uwGQv_5&^qVX3Y#)9(D$w20%Hw--vbA-iQNa
zW%FKWqd>*ucq<h8=-lYzx~s5P$*rLQx#F$gtwFi?gs-jv*(SXp)zHwmP`HpP+lI~_
z`2im^4ggNH3>*olrniGj++`i<9;Nf;3VZ9r0XdJl5E01gDGRjm;aovOV?`t2PC0Q8
z8E_{PR_r`esks$<jw`?gM-BG4w>3(uMJmR=+3HQ3XlPtH-skz)!;TZ~f~4zGA$|`k
zOYMiKHWy-@YR@Mut=ManZ9~K$>%biV@Z2(MIg2}>V5YfBlib@{w<X+45|o3|{NOu;
zXhCt)8qD(=U$ORPvGLe6gB7(42FNPDkfwls(|hHo{X8Lfsn2}QS4BME0^pX3UJ4%E
zxN4GCb>5&X!=3~+nf>2#(xGqszh1U`+v<ecn94wmCqC3JJ32vrx=(8=t93QQ%GK2`
zJH0B9s`dr(@%zWKWVzocL;?5S4k%mWJuf+#N8mxT+s@rO23~je4;#GM{mr#-tLlF6
zQpb;X@kfYx8=t=9@NIu%tlsHhDv8UE<s6n(xmKDPw}dEnn!E2wInB3bi}eSme?O0&
zvM--Ko|~oQsc{q1Ww}9}hYcM!SubC$Ovd)83Eexl`7YyLuN4(ak4L`nI;;bPD^H|k
z1jXK?&p0572K$fKJx9m4m~?_SF5H*YTU0xMauz0+v=WS%Hh*%8&pfC&pq}>0;_~Ez
z&~NC3K{rdzxZl!1c-{N{e!3Qu??qS155u>7g5lnGo|ooL8{M#D=Nmn3&ArdF>=;oU
z4rd<gskqnk734j!h4_@;y;zgp1M;;K?bz99@287o<DVL=!|bDHEZU!i1PFTW`LEVT
zA{|$g0_I{F@eQJBqVQqkpSGy{7Lt!m!GvucW!2liie0#>uX{Tsz{X^<njd48R&LSM
zGfEYNj(XmrAN`5?Eu4BlAGni}J~23J-2_wzUf<WwuEEC<<Lh_gXRp+~N<KBti&uxM
zvxE+|kPeP~{dA}7J(+znI+m`&uvI7vREQu01sxfSMvrf$mYP<Jj8>yO%T0xW==+X;
zSL&H~qs%z}XW#$&-wAdmA{wzRYZq2RK-ejGwu5=)pAx(@Eg^)trgL$|s_93B{XS?&
zNX);SG%=Vhzevna>SUjli3qD32WSB(n1Jd<xw$v?ks8x%QFEqYT#~D6PXYlEds4Px
zoPMo*o{=>P;T_)FeAaq<`%4;LsQr=tLeE@W{*QSa!eQBI^T&*ZuRoTj;(xeH{Prd+
zR*oP-lbEui&-2)1c=mQlx%l(_G~c_ScordASD5PV6H{S)1ZAoMr5@%Z3%I4KWmGer
z;6J$A&t(fzl#={(`f+&!1ACJs?=LX8$|jKQS0XN99B*orw#q-+`pUD|cb+v>+${qN
zNz5K`10x&vgKtaBS7!TV?POM_X$RLQH;L#6ZVk4)Blc%v&bM;UIsJ<J?Dp9;)_28{
zhm8r+7?GY<L2x@9Cv$(tI#p0vz%FU4qt)!f{p}Nj`YRlc^r`^`_o<J3cBT2OM4Wqy
zM!dvYOMnkzHe0-nFVf4VxwOounfPZHyfo<Tv}tH9b~{SWIePEzzBs+B8(pKRQV!Ze
zFVz52H+H{O(@Wy-8jN&I!i1kM%C*>hzN0YaOr!qTk$I&|Y2C@ackt}s8vqI{NHOW#
zGo5aUl=tjJ)9uP<TVfF!)OV?X-$h9CdcRb}Dpl{X(6=~vV&?JSF+!C(!bdk>WxX}w
z4%8RK4#=C!=d**Sa7EkLKd03nNONfHnb&p1N(~ZD_t#$K?mx;>8n(Y81*%DC`A@Sy
z0E{b;FjV(&Faagk$c6p~EKjEZ>KPrJ)9l)w-9o#owNaPE<snssSda((#LQPpAV^ya
zCI=Ph+8vR1ea`XT!lcd&oxcnvFBEy1FI7k$ZXw7jq5)tgpH+0ZV|mJDo@m@>KLWY1
zoO7cGJV4ApqiDf)L!sqOhnMCwiqbT2YJrNB%X1Mmnicy8{U}&P{T^Lm9glE!T|{23
z^(%UNIOlWAu{MKb;&rD*AahH%64IZh6?Q9<$a-XnO!n&QOY}CR|5W!NMy-NYrRkhJ
z0Pd|(1W*^7-T;)CK>N?=_^%pLbWXklrz8JQHP_kI)Yf%_h++X7C@P>_;38e6BTZBw
zL3;0(CM9&~RqmxIoj^cC2@q-s)r2ZUP(V5a5+HQxgwP2!;mLh|!TaqQ@7KNd7-#J=
z&YEYQHK%|!w(0`c3DDqb{a>$!=$s(qI5$B%;Zw0~ItA=5L`qncotX5zL$|RQNF<`k
zwk7V=#%^cS^YsnzFQv%jv8pv#0hGhKY;0r}piJkvJ@Kc(|26dxJgw<!>^^!(d_$+?
zvy^PEwMUw}&6+a&E1<Z3TZ@CTM&hD_RkM57uDIQQPT?W94^(35q{etu9=-31Zg(;1
z-e)iNX(k^aBq1HmIUQGULfofia^g=_Hq~OwvT-jGYL^=85z_C4n0r^(IGUdfcfX#B
z2c59H!>cTApm;g7(e^pv&_}MWUE8Jp(VY8^oYkP~{U^VES>U5y{~=ZTu<fZn?+X>7
zE8iXI1a&fE97?nD(dg`MFSsDQ514=AKN0HT#n$X&*`evB@qP8?T*^LWE&c)5^McRx
zF1}g|?aQ`DVP33>s|fAWG$XH~@Y?rm_eoFc?KF`$#_AZkrY8nleJh)U+#ML``i<|^
z?teR<y8l7vPKg-{6U4xD`tPul(s!JVr|bX-hn8`ny7d|bR;LW0Lu_(~g=m1BT5R6I
zo~fnZ+GAem#Si(ZeHTnyrp9A&z4dEV_jNova(^=w$IG~*XBQ;I=yoR;9dn>W=FqGQ
zCMR|}Y8FnZm_Z33ra>{KX`z}On0c`);akIF`IDbmYL=4O-GX06kt}7m5|o6Xoch5(
zp?2JYMQYDNg3|zWDyG#B3DtBE_udt$uSm4`njzgYy*i{Ln`GyHasBY6@~}VS09}9O
zA$d<dK`-8r*{SxS;@St@j|GdyQ?^Z3nKv3O+SZK`Ha^Mik+0=7_=YF1u*q$JCOp&j
z$sOU3f_FoMgtUaB=$d?;Y8xqS*=+KC(&0I=`E<3khcS5pE2m|8>zU(~YowQR8!EW;
z3jf<?f81&6)KGxLJg)n8(e;l4uny*m;Z1X%OH+11THB7`9sZZhOy2ii%1X(-+Tgjf
zHq7VFzVH*6`P1+v1d-Yl$m~x^4iWeQRJ}ddw!KTuUXa@vcn@D`JY4=V8<zXRp}i_1
zB+ZN;iL6X*ZZ{9-l2fB>Y2I-CM{}33mD*`J8~e|Tk>e(gD0tP-Lus98qUYm^rS+?g
z&HIXh{a`}~GAT<@Ct6auc@m$l+XmLfC>q7BO=_`w@qc`(A1^Qq0|Ftx_eaS5aZt8q
zJM?l#Gx{||(h7{+ONT&8q}avye_9kt5H^Qaai)#+(W9A=!p}$KU56z>a5(DraswKu
zZ`tX4pwOkDSu<gt3oGk8YOf9#MkSA6iix>x4vNLY@2$+`X3cZai!N`hSK<s7lY&e&
z(b~d%OisyJN!k5b$?R%hRcEH{?id)=*J`w;yA|=7trUqk#nvUI|6b2EQ9b(sDQw8*
zA`;2Xb_umjjeqjSOF+$>rz;&$6*ZMs&eTu(R`VkKY{-_rxD<P<nmW}hJ7T9De#o8|
zS$pflJx422!6Bb&cM07OxAavtW^0WLU30^z?3oA%I}RxqP3Sl3lsD=C#f7~!SiW@X
zgvo^dyGk?AlYYJKI#Q7=-1<6qfMpV>uETUtb47ABcU|mWb=MxWfUVKqvL`_tLtHO0
zGY736_n4L-MKH=YrXPqbmK&OpJ@B2e$%7*7F4n6-eUL(Vc5L2u&3J`8`(RFy76#&{
zUCZ+5zSr9CQ^P^?)rWEXVovIhauuyrazp#Uun}xnLunA&XEPRtsW`kpUNn#fFDsr{
z;n+XpW?1Q%_u_z+S?i%3zoKZHmxdD4zd`mU8tr4Q&1F9|U;=yx#Qtc53tj|#XH#Vd
z0A4X0(T&k~3>g4Vqjc%foBxBs#*eB8h2}J3K^k?MW$r405Nz0GJ{c_XzILg~^_i0H
z{qqKe&sU6WQt7ua{pOkY?0bseQNY@KGq=fF&E8g$z-&=ahu@0LEw5+H4{bb(l#Wm{
z9<5Kcg5Z5aXPGl=`LA27k0-8EohAg{J(QNEMbZ{i*qAR~STTvO(%4)6_uLeUIMxWq
zJB!Wxzdv&kVeBJe4CmU4zO$EM*0lKe0<221YM05R9y$1kmE7!-X?>RZ6&vDj&3bpL
zSoBry@Uldr!QAZyFIlmvT~7=0HCX16L<>O#)6!^NKNx6^cc+N>7^LPlj8sGg)<3@{
zJSqar4dw3>h3NQyIm0)JcNal(jmZ%X1)JyY2qW+Q5t#IX8C4F2dDlYSU<7IVt}UaZ
ziFcj@!$@Pwy5{Ch`e{>5dsmWSe!5I@gR5i$^~5N+(*J~C%A|CAvkau!{HFU0)2?-%
z8NiFCgkR}rlnix77fQDr?%MUg%|ebYmYMJSR1o=&<0POdd&2DRnxHANM)B6+Ru&PV
z@g7O=QnbK~ZaH7rJ~BM@9d$rQJ6y#AJjsVI3#`->R;+dEk~=Y)Zvkofxa|I&xo@4t
z7leMUWY9rSF>2pX$Aov^NY9qlb4d<C)l9i4EccO{d<?M?CguK^)#(CDEn!&>Y1-*%
zgjBCZU_B03EF>3{bXAxG-5|?x9Y1YuC$85oTxsAim5g3hj~GsSBTgzR5t4L2rp6_s
zK?IplgNYX{NFl3YQk^m)thEw@C$QjOIZBzQ-sV5V3XpObp|0us#Vd}9pMzpOm_^S9
zgin?{5tt3kgO<kA@M(@+9QIvHVc01J>3e9GICC7=qYOh$u}t^~86|Is4)xVk5V4e7
zVY2VzDP-Xh;_GAr7B{kcZ|Kp+j?^=C+7}C`j1(w%g-Nj~EFoiarV5w2H8wkTuN;LJ
zqh&_=+zUB4!Fiuh*R62BpSLtpyB^f;9R^!KVv5#>r%y4SHeaM?j!hJ?TVxNS+o;s+
zDF)OVfq29n0y;Ms)=K3SU~hKF?6I*Z_C9ZUgWW6d+TmEtHp^2l))?5hK<>_&!l;N-
zJ*TnSnh%|jfwSSz%0{zXmMY(-;Y%m#QH{uAuvW>^?9uU|a2xf#V%Vv;(R`fS?B=)m
z$p^Ot1?AOdy$Q(tGO+uzdTjy=V+9;h9BMN%ma%%{QKIoet9KJ7&@gabCke?jT+uxY
zVJjIXmjm5TW^3_8-HnlZu6k)SVC9`03;E&&trDXHn?q;fS4wgE-~gEoaIep|qRhI$
zc2GGFo=(&2lIV096;Q`-cfVAWUI;KwwbiDQ8?4TXcbWwC^|Lj-y>U?ypVEC>><p2A
z!VB|_h>*j=8Rt|bWy&Wd?9w?O3wd-o;6T)*u<*$ns}K;J+LGlVhedb~LnKYlOQpjO
zps1bCl4jjjoeO5GMd!T9GV8tv5->P7C%PVqiCzCt72l>yMrq;2&(yY@R-Bi?;w~X%
zci1B*CNLFF8bxuup)TFnCCs1%y&<kY4ryvXW#nlB&w&Ab)>Tf|0(#Fq16-X--s16N
ztHf8<TyCwe%JeX<rD>9CIQ8a(eftvM%z)U<BfEMZgMgTWt#WB#>e%YKXD%*LLK;lA
z;$;(@vy;-5naV*-oQ9*cs`$avLttNWO4&)rz#EusH6nd*GDOSst|GGbA$+v*6kAj;
z(?1ju>RO#;VuJt+vm(D8Q?_@;6RWf%{Is>Mx1MCl`~A31eK&mr_0V_j5AT;55qFmF
zu5D*!q20y;4$@F=)2Aa5gypV(1|15YnVbWKaUR1JUnc$fYhxv;O*3HZe8zQ5Mhj2C
zI@=q+@SSB5#o*IsbLcv55jEzgK%5DmP6WXMHL%&R%I0|5sGgEP1oyia<7SspcTzR7
ze>tL(!D0(nVStkoRkUKd%#zJIr}{Br>>K>85&q-?G^rQ2P*2s<ESV}m@B3<5G#DI&
zp_V7F%#N8@aO)DS;tx)C%KIrhZx?FPvRY*f;GP4c{mEEwf|jKWl}D5sTXAB$>kiAv
z^-#=Y61(tDi5hY@nCh^3AB|V2FpH-Z!=Xxl$OIIBFPdMpAW8<*Xp0Gr@B*(}TF!8?
zc12s#q`K0!a0t&(^{*!Gk98yCXI@rlS|h`5rJn3MM0K8Tdn>-o`+ao>Ge|Fb4V+d(
z5hYgv-=Q)8=j!*<tu%PIIrM%FW`d@_z+E4L#?c^lKuRWGz*!_stU187T=QXWD0nvT
zR5LSD(`sdhU0&^X^CSEG(2g$&Omi0`*pPlgxg`De-_!G1<d@h*{3d1RS9u7O9n3<B
zI*MgC7Lm5FC<hxFSs@^!`sCI9cXMSao8578uO4z&gxaD(NP4VA+dNx*M$>Ce{>Kr7
zE$!<oBfJz6DW+%artHh2!tpBq0RrVNg*1Pm82Xhf0sOpab6z;y8dTegQ;;ryZG<O{
zYCQw$kKA(E|232ozh3}BiND^eWSNac#y46MLf*zr-B%*Te~Hw@-S0Fp_@}AzTJ%>B
z(~2(}NxWQ>ipQ1PP)>S9jz%#vIbrfo52f#18uA=8B>AptAm0`3TMEf;w*cn@=38H}
zz@9f}=8%-ovyT;a{a+Yd5(~pbe;qjc_|v4&sHlt**Khy8%4CwJ56Z<{HN+^Y`>}Hi
zN?RQMOkYpYS?7TJ$s0Z>m+Fg(R3gE358O;9J_Fa?6E0nDZEk1Z73oHB71339BLn}!
zOmk#kVCL=La1$#_l-h30hh8mEZp;28mG`!kltx*b_g%!#(FRH;(JAl!RU`21hhn}C
z<c6-*ucHJ#Lfmlhvzel(Q0_cH*syp$k*0u7)`zHOv?#FS&Ni$WC(QLL_3#u!!A@(T
zOJW9E>aNWmoO0$u6=<hwdWx=@JM1p8++cWFow|Dur<R<4+3&0HVm{)6#L+}dVVs9@
z6!YV$v2*?<%HB{#3v_QWAoMA(m^%NY9lfd^F?F|8)aQ^46#_D(@gN-iB|4ylRbsry
zW8+=?{2Dp0kB%S*0+MPbnglwF`i@kA-aWsn7bGabE(3Ig3yO<3$kr!w*`>=aKXc@6
zG%>2tAM+kPd}uodI>1B#8wHdNw7w4R9483a?7^0uNoIXM4Es3(v;3a=iN@7v#%!tB
zA3F!JLLcH&{)I$rNNM{V<gSL{oaId<0KoCvOZG@28UXmLT6zKS7jynqzz3cvApjue
zztR8MAjcK_uBeit$)lzsqe1sllScD{shEK(E0u#p5YcD!ujsaghBN%ufs3u9jpieK
zyQ4{G5W|PBwtR+ZU23JPE%YXug9@QI?m~w*E^P&-qFylP4!}Zw2vZr#1UEA$#hss6
zo&(w(V`cc>A<(WNns&*hJ;oR>4AKTJ&D?=K_5a2PzH6~n_ctcA*LK<*EY%$J5_Pv!
z4>-esYzT=mG!u`FNVz~61d0wLHImnz5w+I9a3IFURrMs$opYwNa7Fu<Fwpx|1yyyF
zo~7H83lI{5(=aN8kE%9*v!A#pUrj7q><N~mgx}Zy6GYfR0}r_}B{zhYK<hp_LtU*=
z6dswdZ_?UV%U+=SQ%=79xYP^haa0UYotX=w%W51|Pb<q&_J-xTlS3kjFDg!jbTsKx
zu+Hh(w$ylCkL<$y+A6bc`3WjFJ((7pp7KBCl$@avdg(nflD&;jOwaEpmGSG}5z;Bm
zqaK~ogqZ-D$PZU8$IY@V1~W#g%q^&Fp2U2>hMk^9_R~}z&mCNz3Q_u6AI|wplqQSX
zh_s7%TtEIu_9pYivyd}_QvNsE2O^0oQXSM{Bz@C-X7;Any@)B7t`u5S%M87Ls%~~`
zwFJvEXH6U)FgxfV-6%D%X<ugzy*vJ`bz$lvX>ThCi`X1`Pl$a^Q{0*y`@SBsnLD`Q
zKjSVw5}tF$!Vob2?Av6GXC5Mnvd8XEl}~EyvcH<!TwMp4+vOAd>s_&s;Dn-SZ;LvA
zSblxyn}9FV`1<UO`dVO8&!6BQ)osDL2uV?5$?ge49`!QVOQSp&>4rbj;e}51Lux`S
z)2+6ETuQW}O$+}9DrPDl5);eD`Xw4<;sTTJmnG?}RV)Zd*0m%tyH{rJm!*^IoPG^F
zal8TEqy&bLG{bsbmXcWDiZU^TiYNTZFOVfken?N}s3}T<%@1Dwb0APJOlah2&4t~N
z+qliT`BMV}u{07=i4zJTD7$_P>rTc1$z$E?n%m5(PU8=xO%HMgt!$EA^wF5t8=QGp
z<o#kE(AQ}zVz`u`Pbu#=FCF3WtmP5Ek(d&K`?$?-1stfkWxh#Oov_dGVO8c2%JK`;
zK;PXTA6H3y<PT*PS>Ly;qB82KV}_J9BJtX!6-OK2ky!@VQ@83ka?ub)XeKQKJBDN$
zctV=k_IANH?iW2*WuhU7vSqxc>MU2vEGmS~RUVwX1G|FV@&?sdKIwV{yOlT+2%Fb#
zB&V}7Wo}p)(b`<V$MvmxIxbNc$`L51p(+YtIa={gKtnpmnShiYh&#ZXsh_bq$I%sH
zP_E<-v7fM&%i!8P8tN^43DXTB!W`uhlC8&@F3w}Rn^T0p6EsBYNj|>EeCsNSo*p$e
zV7$eTjeh#R%hZoAsXN=-Wp!R6jSo5Z|H2_8^KqLi<?gVjD9wd1QZHW#YiSWR@SZVf
zVE<MR?QtM0%vW}JBeo%XjaQO3G+!+}Xc?Gp{03f~d|t|`K6z*|z@UG+1K)U}?2_VV
zy|KqeT#i=wH+5MDMFa9yH~`=Ud@sv+wsRQ(c>BNosQ!QbbZ?ET`vG*v^9If{WkCfA
Wc<%MgL%Jh60Qg4xb*1WGfBy#nM?aSU


From 8c71abf5f459a3083cb42d4e91f32514de32a7ac Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 17 Dec 2020 17:37:51 -0800
Subject: [PATCH 083/825] new info

---
 .../microsoft-defender-atp/tvm-exception.md   | 15 +++++--------
 .../tvm-security-recommendation.md            | 22 ++-----------------
 2 files changed, 7 insertions(+), 30 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index 3af172dba7..9bb2ff23bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -103,13 +103,15 @@ Navigate to the **Exceptions** tab in the **Remediation** page. You can filter b
 
  Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can export. You can also view the related recommendation or cancel the exception.
 
-
 ![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-view.png)
 
-
 ## How to cancel an exception
 
-To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception. To cancel the exception for all device groups, select the **Cancel exception** button. You can also cancel the exception for a specific device group.
+To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
+
+To cancel the exception for all device groups or for a global exception, select the **Cancel exception for all device groups** button. You will only be able to cancel exceptions for device groups you have permissions for.
+
+![The cancel button.](images/tvm-exception-cancel.png)
 
 ### Cancel the exception for a specific device group
 
@@ -117,13 +119,6 @@ Select the specific device group to cancel the exception for it. A flyout will a
 
 ![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
 
-
-### Cancel a global exception
-
-If it is a global exception, select an exception from the list and then select **Cancel exception** from the flyout.
-
-![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
-
 ## View impact after exceptions are applied
 
 In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 032da734d3..552d3f6e0d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -205,32 +205,14 @@ The following list details the justifications behind the exception options:
 - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
 - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
 
-### View all exceptions
+### View and cancel exceptions
 
-Navigate to the **Exceptions** tab in the **Remediation** page.
+Navigate to the **[Exceptions](tvm-exception)** tab in the **Remediation** page.
 
 ![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
 
 Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
 
-### How to cancel an exception
-
-To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
-
-#### Cancel the exception for a specific device group
-
-If the exception is per device group, then you will need to select the specific device group to cancel the exception for it. 
-
-![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
-
-A flyout will appear for the device group, and you can select **Cancel exception**.
-
-#### Cancel a global exception
-
-If it is a global exception, select an exception from the list and then select **Cancel exception** from the flyout.
-
-![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
-
 ### View impact after exceptions are applied
 
 In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.

From f9a21f66db306575815db5abd9caaee84b123533 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 17 Dec 2020 17:41:18 -0800
Subject: [PATCH 084/825] added md

---
 .../microsoft-defender-atp/tvm-security-recommendation.md       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 552d3f6e0d..d28ecadea4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -207,7 +207,7 @@ The following list details the justifications behind the exception options:
 
 ### View and cancel exceptions
 
-Navigate to the **[Exceptions](tvm-exception)** tab in the **Remediation** page.
+Navigate to the **[Exceptions](tvm-exception.md)** tab in the **Remediation** page.
 
 ![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
 

From c1c986e8bd02f979f83d8191d563aa51d44e7911 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 17 Dec 2020 17:46:19 -0800
Subject: [PATCH 085/825] remove duplicate content

---
 .../tvm-security-recommendation.md            | 81 +------------------
 1 file changed, 1 insertion(+), 80 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index d28ecadea4..3db95062b4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -149,86 +149,7 @@ Select a security recommendation you would like create an exception for, and the
 
 Choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
 
-### Exception scope
-
-Exceptions can either be created for selected device groups, or for all device groups past and present.  
-
-#### Exception by device group
-
-Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
-
-![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
-
-##### Filtered
-
-If you have filtered by device group on any of the threat and vulnerability management pages, only your filtered device groups will appear as options.
-
-Button to filter by device group on any of the threat and vulnerability management pages: 
-
-![Showing selected device groups filter.](images/tvm-selected-device-groups.png)
-
-Exception view with filtered device groups:
-
-![Showing filtered device group dropdown.](images/tvm-exception-device-filter500.png)
-
-##### Large number of device groups
-
-If your organization has more than 20 device groups, select **Edit** next to the filtered device group option.
-
-![Showing how to edit large numbers of groups.](images/tvm-exception-edit-groups.png)
-
-A flyout will appear where you can search and choose device groups you want included. Select the check mark icon below Search to check/uncheck all.
-
-![Showing large device group flyout.](images/tvm-exception-device-group-flyout-400.png)
-
-#### Global exceptions
-
-If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects **all** current and future device groups in your organization, and only a user with similar permission would be able to change it. The recommendation state will change from “active” to “full exception.”
-
-![Showing global exception option.](images/tvm-exception-global.png)
-
-Some things to keep in mind:
-
-- If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired or been cancelled. After that point, the new device group exceptions will go into effect until they expire.
-- If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
-
-### Justification
-
-Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
-
-The following list details the justifications behind the exception options:
-
-- **Third party control** - A third party product or software already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
-- **Alternate mitigation** - An internal tool already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
-- **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
-- **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
-
-### View and cancel exceptions
-
-Navigate to the **[Exceptions](tvm-exception.md)** tab in the **Remediation** page.
-
-![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
-
-Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
-
-### View impact after exceptions are applied
-
-In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.
-
-![Showing customize columns options.](images/tvm-after-exceptions.png)
-
-The exposed devices (after exceptions) column shows the remaining devices that are still exposed to vulnerabilities after exceptions are applied. Exception justifications that affect the exposure include ‘third party control’ and ‘alternate mitigation’. Other justifications do not reduce the exposure of a device, and they are still considered exposed.
-
-The impact (after exceptions) shows remaining impact to exposure score or secure score after exceptions are applied. Exception justifications that affect the scores include ‘third party control’ and ‘alternate mitigation.’ Other justifications do not reduce the exposure of a device, and so the exposure score and secure score do not change.
-
-![Showing the columns in the table.](images/tvm-after-exceptions-table.png)
-If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and Microsoft Secure Score for Devices, then that security recommendation is worth investigating.
-
-1. Select the recommendation and **Open software page**
-2. Select the **Event timeline** tab to view all the impactful events related to that software, such as new vulnerabilities or new public exploits. [Learn more about event timeline](threat-and-vuln-mgt-event-timeline.md)
-3. Decide how to address the increase or your organization's exposure, such as submitting a remediation request.
+[Learn more about exceptions](tvm-exception.md)
 
 ## Report inaccuracy
 

From 3795ef248c633ef86caac72b27adc2245d848c2f Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 18 Dec 2020 10:37:47 +0500
Subject: [PATCH 086/825] Update
 windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../windows-sandbox/windows-sandbox-overview.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
index f9ff3618d5..ce384ca8d4 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
@@ -55,7 +55,7 @@ The following video provides an overview of Windows Sandbox.
 1.   Locate and select **Windows Sandbox** on the Start menu to run it for the first time.
 
 ## Usage 
-1. Copy an executable file (and any other files needed to run the application) from the host and paste into the **Windows Sandbox** window.
+1. Copy an executable file (and any other files needed to run the application) from the host and paste them into the **Windows Sandbox** window.
 2. Run the executable file or installer inside the sandbox.
 3. When you're finished experimenting, close the sandbox. A dialog box will state that all sandbox content will be discarded and permanently deleted. Select **ok**.
 4. Confirm that your host machine doesn't exhibit any of the modifications that you made in Windows Sandbox.

From 83d9bd9b7adc67699c85fb3d590e9d85f421cdc7 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 18 Dec 2020 20:53:34 +0200
Subject: [PATCH 087/825] API pages update

1. Adding US Gov reference to all pages with URIs.
2. Adding geo reference to all pages with URIs.
3. Replace MDE URLs ending with "windows.com" with "microsoft.com".
4. Replace the login endpoint from "login.windows.net" to "login.microsoftonline.com".
---
 .../includes/improve-request-performance.md   |  2 +-
 .../includes/microsoft-defender-api-usgov.md  | 20 ++++++++++++++
 .../microsoft-defender-atp/api-hello-world.md | 10 ++++---
 .../microsoft-defender-atp/api-power-bi.md    |  8 ++++--
 .../exposed-apis-create-app-nativeapp.md      | 10 ++++---
 .../exposed-apis-create-app-partners.md       | 14 ++++++----
 .../exposed-apis-create-app-webapp.md         | 14 ++++++----
 .../exposed-apis-list.md                      | 13 +++++++---
 .../exposed-apis-odata-samples.md             | 26 +++++++++++--------
 .../run-advanced-query-api.md                 |  6 +++--
 .../run-advanced-query-sample-powershell.md   | 10 ++++---
 .../run-advanced-query-sample-python.md       | 10 ++++---
 12 files changed, 101 insertions(+), 42 deletions(-)
 create mode 100644 windows/security/includes/microsoft-defender-api-usgov.md

diff --git a/windows/security/includes/improve-request-performance.md b/windows/security/includes/improve-request-performance.md
index c2499cf092..efaf6664a9 100644
--- a/windows/security/includes/improve-request-performance.md
+++ b/windows/security/includes/improve-request-performance.md
@@ -16,7 +16,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
->[!NOTE]
+>[!TIP]
 >For better performance, you can use server closer to your geo location:
 > - api-us.securitycenter.microsoft.com
 > - api-eu.securitycenter.microsoft.com
diff --git a/windows/security/includes/microsoft-defender-api-usgov.md b/windows/security/includes/microsoft-defender-api-usgov.md
new file mode 100644
index 0000000000..6f525901c4
--- /dev/null
+++ b/windows/security/includes/microsoft-defender-api-usgov.md
@@ -0,0 +1,20 @@
+---
+title: Microsoft Defender for Endpoint API URIs for US Government
+description: Microsoft Defender for Endpoint API URIs for US Government
+keywords: defender, endpoint, api, government, gov
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: article
+---
+
+>[!NOTE]
+>If you are a US Government customer, please use the URIs listed in [here](gov.md#api).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
index 0dfd7bfce2..f9c9891569 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
@@ -26,6 +26,8 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 
 ## Get Alerts using a simple PowerShell script
 
@@ -95,6 +97,8 @@ Done! You have successfully registered an application!
 -   Copy the script below to PowerShell ISE or to a text editor, and save it as "**Get-Token.ps1**"
 -   Running this script will generate a token and will save it in the working folder under the name "**Latest-token.txt**".
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 ```
 # That code gets the App Context Token and save it to a file named "Latest-token.txt" under the current directory
 # Paste below your Tenant ID, App ID and App Secret (App key).
@@ -103,8 +107,8 @@ $tenantId = '' ### Paste your tenant ID here
 $appId = '' ### Paste your Application ID here
 $appSecret = '' ### Paste your Application secret here
 
-$resourceAppIdUri = 'https://api.securitycenter.windows.com'
-$oAuthUri = "https://login.windows.net/$TenantId/oauth2/token"
+$resourceAppIdUri = 'https://api.securitycenter.microsoft.com'
+$oAuthUri = "https://login.microsoftonline.com/$TenantId/oauth2/token"
 $authBody = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -142,7 +146,7 @@ $dateTime = (Get-Date).ToUniversalTime().AddHours(-48).ToString("o")
 
 # The URL contains the type of query and the time filter we create above
 # Read more about other query options and filters at   Https://TBD- add the documentation link
-$url = "https://api.securitycenter.windows.com/api/alerts?`$filter=alertCreationTime ge $dateTime"
+$url = "https://api.securitycenter.microsoft.com/api/alerts?`$filter=alertCreationTime ge $dateTime"
 
 # Set the WebRequest headers
 $headers = @{ 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
index 605b0f511a..39d611f4ca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
@@ -26,6 +26,8 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 In this section you will learn create a Power BI report on top of Defender for Endpoint APIs.
 
 The first example demonstrates how to connect Power BI to Advanced Hunting API and the second example demonstrates a connection to our OData APIs, such as Machine Actions or Alerts.
@@ -44,11 +46,13 @@ The first example demonstrates how to connect Power BI to Advanced Hunting API a
 
 - Copy the below and paste it in the editor:
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 ```
 	let 
 		AdvancedHuntingQuery = "DeviceEvents | where ActionType contains 'Anti'",
 
-		HuntingUrl = "https://api.securitycenter.windows.com/api/advancedqueries",
+		HuntingUrl = "https://api.securitycenter.microsoft.com/api/advancedqueries",
 
 		Response = Json.Document(Web.Contents(HuntingUrl, [Query=[key=AdvancedHuntingQuery]])),
 
@@ -114,7 +118,7 @@ The first example demonstrates how to connect Power BI to Advanced Hunting API a
 
 		Query = "MachineActions",
 
-		Source = OData.Feed("https://api.securitycenter.windows.com/api/" & Query, null, [Implementation="2.0", MoreColumns=true])
+		Source = OData.Feed("https://api.securitycenter.microsoft.com/api/" & Query, null, [Implementation="2.0", MoreColumns=true])
 	in
 		Source
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index fb00021426..6f75ba2ca8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -112,6 +112,10 @@ This page explains how to create an AAD application, get an access token to Micr
 
 For more information on AAD tokens, see [Azure AD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 ### Using C#
 
 - Copy/Paste the below class in your application.
@@ -127,9 +131,9 @@ For more information on AAD tokens, see [Azure AD tutorial](https://docs.microso
 
         public static class WindowsDefenderATPUtils
         {
-            private const string Authority = "https://login.windows.net";
+            private const string Authority = "https://login.microsoftonline.com";
 
-            private const string WdatpResourceId = "https://api.securitycenter.windows.com";
+            private const string WdatpResourceId = "https://api.securitycenter.microsoft.com";
 
             public static async Task<string> AcquireUserTokenAsync(string username, string password, string appId, string tenantId)
             {
@@ -175,7 +179,7 @@ Verify to make sure you got a correct token:
     ```csharp
     var httpClient = new HttpClient();
 
-    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.windows.com/api/alerts");
+    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.microsoft.com/api/alerts");
 
     request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", token);
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
index e2de608fbd..06af8266e6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
@@ -129,6 +129,10 @@ The following steps will guide you how to create an Azure AD application, get an
 
 <br>For more information on AAD token, see [AAD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 ### Using PowerShell
 
 ```
@@ -139,8 +143,8 @@ $tenantId = '' ### Paste your tenant ID here
 $appId = '' ### Paste your Application ID here
 $appSecret = '' ### Paste your Application key here
 
-$resourceAppIdUri = 'https://api.securitycenter.windows.com'
-$oAuthUri = "https://login.windows.net/$TenantId/oauth2/token"
+$resourceAppIdUri = 'https://api.securitycenter.microsoft.com'
+$oAuthUri = "https://login.microsoftonline.com/$TenantId/oauth2/token"
 $authBody = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -172,8 +176,8 @@ return $token
     string appId = "11111111-1111-1111-1111-111111111111"; // Paste your own app ID here
     string appSecret = "22222222-2222-2222-2222-222222222222"; // Paste your own app secret here for a test, and then store it in a safe place! 
 
-    const string authority = "https://login.windows.net";
-    const string wdatpResourceId = "https://api.securitycenter.windows.com";
+    const string authority = "https://login.microsoftonline.com";
+    const string wdatpResourceId = "https://api.securitycenter.microsoft.com";
 
     AuthenticationContext auth = new AuthenticationContext($"{authority}/{tenantId}/");
     ClientCredential clientCredential = new ClientCredential(appId, appSecret);
@@ -227,7 +231,7 @@ Sanity check to make sure you got a correct token:
     ```
     var httpClient = new HttpClient();
 
-    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.windows.com/api/alerts");
+    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.microsoft.com/api/alerts");
 
     request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", token);
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
index a7584847f9..3e602760b0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
@@ -107,6 +107,10 @@ This article explains how to create an Azure AD application, get an access token
 
 For more information on Azure AD tokens, see the [Azure AD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds).
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 ### Use PowerShell
 
 ```
@@ -117,8 +121,8 @@ $tenantId = '' ### Paste your tenant ID here
 $appId = '' ### Paste your Application ID here
 $appSecret = '' ### Paste your Application key here
 
-$resourceAppIdUri = 'https://api.securitycenter.windows.com'
-$oAuthUri = "https://login.windows.net/$TenantId/oauth2/token"
+$resourceAppIdUri = 'https://api.securitycenter.microsoft.com'
+$oAuthUri = "https://login.microsoftonline.com/$TenantId/oauth2/token"
 $authBody = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -150,8 +154,8 @@ The following code was tested with NuGet Microsoft.IdentityModel.Clients.ActiveD
     string appId = "11111111-1111-1111-1111-111111111111"; // Paste your own app ID here
     string appSecret = "22222222-2222-2222-2222-222222222222"; // Paste your own app secret here for a test, and then store it in a safe place! 
 
-    const string authority = "https://login.windows.net";
-    const string wdatpResourceId = "https://api.securitycenter.windows.com";
+    const string authority = "https://login.microsoftonline.com";
+    const string wdatpResourceId = "https://api.securitycenter.microsoft.com";
 
     AuthenticationContext auth = new AuthenticationContext($"{authority}/{tenantId}/");
     ClientCredential clientCredential = new ClientCredential(appId, appSecret);
@@ -204,7 +208,7 @@ The following is an example of sending a request to get a list of alerts **using
 ```
     var httpClient = new HttpClient();
 
-    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.windows.com/api/alerts");
+    var request = new HttpRequestMessage(HttpMethod.Get, "https://api.securitycenter.microsoft.com/api/alerts");
 
     request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", token);
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
index 785ac39e0d..4a8aac1dc4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
@@ -30,9 +30,9 @@ ms.topic: article
 
 ### Endpoint URI:
 
-> The service base URI is: https://api.securitycenter.windows.com
+> The service base URI is: https://api.securitycenter.microsoft.com
 > 
-> The queries based OData have the '/api' prefix. For example, to get Alerts you can send GET request to https://api.securitycenter.windows.com/api/alerts
+> The queries based OData have the '/api' prefix. For example, to get Alerts you can send GET request to https://api.securitycenter.microsoft.com/api/alerts
 
 ### Versioning:
 
@@ -40,9 +40,14 @@ ms.topic: article
 > 
 > The current version is **V1.0**.
 > 
-> To use a specific version, use this format: `https://api.securitycenter.windows.com/api/{Version}`. For example: `https://api.securitycenter.windows.com/api/v1.0/alerts`
+> To use a specific version, use this format: `https://api.securitycenter.microsoft.com/api/{Version}`. For example: `https://api.securitycenter.microsoft.com/api/v1.0/alerts`
 > 
-> If you don't specify any version (e.g. https://api.securitycenter.windows.com/api/alerts ) you will get to the latest version.
+> If you don't specify any version (e.g. https://api.securitycenter.microsoft.com/api/alerts ) you will get to the latest version.
+
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
 
 Learn more about the individual supported entities where you can run API calls to and details such as HTTP request values, request headers and expected responses.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index b4a487ffbe..ef758bf348 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -26,6 +26,10 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 If you are not familiar with OData queries, see: [OData V4 queries](https://www.odata.org/documentation/)
 
 Not all properties are filterable.
@@ -150,14 +154,14 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=ev
 Get all the alerts last updated after 2019-11-22 00:00:00
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/alerts?$filter=lastUpdateTime+ge+2019-11-22T00:00:00Z
+HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$filter=lastUpdateTime+ge+2019-11-22T00:00:00Z
 ```
 
 **Response:**
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Alerts",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Alerts",
     "value": [
         {
             "id": "da637308392288907382_-880718168",
@@ -206,14 +210,14 @@ HTTP GET  https://api.securitycenter.windows.com/api/alerts?$filter=lastUpdateTi
 Get all the devices with 'High' 'RiskScore'
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=riskScore+eq+'High'
+HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=riskScore+eq+'High'
 ```
 
 **Response:**
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machines",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
             "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
@@ -245,14 +249,14 @@ HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=riskScore+
 Get top 100 devices with 'HealthStatus' not equals to 'Active'
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=healthStatus+ne+'Active'&$top=100 
+HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=healthStatus+ne+'Active'&$top=100 
 ```
 
 **Response:**
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machines",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
             "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
@@ -284,14 +288,14 @@ HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=healthStat
 Get all the devices that last seen after 2018-10-20
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=lastSeen gt 2018-08-01Z
+HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=lastSeen gt 2018-08-01Z
 ```
 
 **Response:**
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machines",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
             "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
@@ -323,14 +327,14 @@ HTTP GET  https://api.securitycenter.windows.com/api/machines?$filter=lastSeen g
 Get all the Anti-Virus scans that the user Analyst@examples.onmicrosoft.com created using Microsoft Defender for Endpoint
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/machineactions?$filter=requestor eq 'Analyst@contoso.com' and type eq 'RunAntiVirusScan'
+HTTP GET  https://api.securitycenter.microsoft.com/api/machineactions?$filter=requestor eq 'Analyst@contoso.com' and type eq 'RunAntiVirusScan'
 ```
 
 **Response:**
 
 ```json
 json{
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineActions",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions",
     "value": [
         {
             "id": "2e9da30d-27f6-4208-81f2-9cd3d67893ba",
@@ -355,7 +359,7 @@ json{
 Get the count of open alerts for a specific device:
 
 ```http
-HTTP GET  https://api.securitycenter.windows.com/api/machines/123321d0c675eaa415b8e5f383c6388bff446c62/alerts/$count?$filter=status ne 'Resolved'
+HTTP GET  https://api.securitycenter.microsoft.com/api/machines/123321d0c675eaa415b8e5f383c6388bff446c62/alerts/$count?$filter=status ne 'Resolved'
 ```
 
 **Response:**
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index ce6887fc58..ddf250a58f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -26,6 +26,8 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 ## Limitations
 1. You can only run a query on data from the last 30 days.
 2. The results will include a maximum of 100,000 rows.
@@ -50,7 +52,7 @@ Delegated (work or school account) | AdvancedQuery.Read | 'Run advanced queries'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/advancedqueries/run
+POST https://api.securitycenter.microsoft.com/api/advancedqueries/run
 ```
 
 ## Request headers
@@ -81,7 +83,7 @@ Here is an example of the request.
 
 
 ```
-POST https://api.securitycenter.windows.com/api/advancedqueries/run
+POST https://api.securitycenter.microsoft.com/api/advancedqueries/run
 Content-type: application/json
 {
 	"Query":"DeviceProcessEvents  
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index cc1e69bc35..ea7771fd0a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -24,6 +24,8 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 
 Run advanced queries using PowerShell, see [Advanced Hunting API](run-advanced-query-api.md).
 
@@ -51,8 +53,8 @@ $tenantId = '00000000-0000-0000-0000-000000000000' # Paste your own tenant ID he
 $appId = '11111111-1111-1111-1111-111111111111' # Paste your own app ID here
 $appSecret = '22222222-2222-2222-2222-222222222222' # Paste your own app secret here
 
-$resourceAppIdUri = 'https://api.securitycenter.windows.com'
-$oAuthUri = "https://login.windows.net/$TenantId/oauth2/token"
+$resourceAppIdUri = 'https://api.securitycenter.microsoft.com'
+$oAuthUri = "https://login.microsoftonline.com/$TenantId/oauth2/token"
 $body = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -72,10 +74,12 @@ where
 
 Run the following query:
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 ```
 $query = 'RegistryEvents | limit 10' # Paste your own query here
 
-$url = "https://api.securitycenter.windows.com/api/advancedqueries/run"
+$url = "https://api.securitycenter.microsoft.com/api/advancedqueries/run"
 $headers = @{ 
     'Content-Type' = 'application/json'
     Accept = 'application/json'
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index c7d5c9e145..ed35434cfc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -26,6 +26,8 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 Run advanced queries using Python, see [Advanced Hunting API](run-advanced-query-api.md).
 
 In this section, we share Python samples to retrieve a token and use it to run a query.
@@ -36,6 +38,8 @@ In this section, we share Python samples to retrieve a token and use it to run a
 
 - Run the following commands:
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 ```
 
 import json
@@ -46,9 +50,9 @@ tenantId = '00000000-0000-0000-0000-000000000000' # Paste your own tenant ID her
 appId = '11111111-1111-1111-1111-111111111111' # Paste your own app ID here
 appSecret = '22222222-2222-2222-2222-222222222222' # Paste your own app secret here
 
-url = "https://login.windows.net/%s/oauth2/token" % (tenantId)
+url = "https://login.microsoftonline.com/%s/oauth2/token" % (tenantId)
 
-resourceAppIdUri = 'https://api.securitycenter.windows.com'
+resourceAppIdUri = 'https://api.securitycenter.microsoft.com'
 
 body = {
     'resource' : resourceAppIdUri,
@@ -78,7 +82,7 @@ where
 ```
 query = 'RegistryEvents | limit 10' # Paste your own query here
 
-url = "https://api.securitycenter.windows.com/api/advancedqueries/run"
+url = "https://api.securitycenter.microsoft.com/api/advancedqueries/run"
 headers = { 
 	'Content-Type' : 'application/json',
 	'Accept' : 'application/json',

From 8dcc5e7537ad168e43797de95dc95dc8fc2f9378 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 18 Dec 2020 15:18:24 -0800
Subject: [PATCH 088/825] fix link

---
 windows/security/includes/microsoft-defender-api-usgov.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/includes/microsoft-defender-api-usgov.md b/windows/security/includes/microsoft-defender-api-usgov.md
index 6f525901c4..ff93c71ecd 100644
--- a/windows/security/includes/microsoft-defender-api-usgov.md
+++ b/windows/security/includes/microsoft-defender-api-usgov.md
@@ -17,4 +17,4 @@ ms.topic: article
 ---
 
 >[!NOTE]
->If you are a US Government customer, please use the URIs listed in [here](gov.md#api).
+>If you are a US Government customer, please use the URIs listed in [here](../threat-protection/microsoft-defender-atp/gov.md#api).

From e2f3abd0d5bd9277f9c2d9afaa27da70b2f7ee6a Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 18 Dec 2020 15:36:45 -0800
Subject: [PATCH 089/825] fix formatting

---
 .../security/threat-protection/microsoft-defender-atp/gov.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index ddff7ba6a2..1c89d002cb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -109,7 +109,8 @@ Defender for Endpoint GCC High specific | ```us4-v20.events.data.microsoft.com``
 
 
 ## API
-Login endpoint: ```https://login.microsoftonline.us```
-Microsoft Defender for Endpoint API endpoint: ```https://api-gov.securitycenter.microsoft.us```
+- Login endpoint: ```https://login.microsoftonline.us```
+
+- Microsoft Defender for Endpoint API endpoint: ```https://api-gov.securitycenter.microsoft.us```
 
 

From c43cdca4ea258efbfc26a9bc7807b0b43c8c5766 Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Fri, 18 Dec 2020 16:22:38 -0800
Subject: [PATCH 090/825] Move "lockdown" security info to the bottom

Per discussion with the VPN field team, lockdown is actually often a poor choice for customer -- it's more restrictive than many customer expect, leading to wasted time. It's still supported, but it should be at the bottom of the security list so that customer aren't instantly drawn to it.
---
 .../vpn/vpn-security-features.md              | 35 ++++++++++---------
 1 file changed, 18 insertions(+), 17 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-security-features.md b/windows/security/identity-protection/vpn/vpn-security-features.md
index d8f4768540..19a298bef8 100644
--- a/windows/security/identity-protection/vpn/vpn-security-features.md
+++ b/windows/security/identity-protection/vpn/vpn-security-features.md
@@ -20,23 +20,6 @@ ms.author: dansimp
 - Windows 10 Mobile
 
 
-## LockDown VPN
-
-A VPN profile configured with LockDown secures the device to only allow network traffic over the VPN interface. It has the following features:
-
-- The system attempts to keep the VPN connected at all times.
-- The user cannot disconnect the VPN connection.
-- The user cannot delete or modify the VPN profile.
-- The VPN LockDown profile uses forced tunnel connection.
-- If the VPN connection is not available, outbound network traffic is blocked.
-- Only one VPN LockDown profile is allowed on a device.
-
-> [!NOTE]
-> For built-in VPN, LockDown VPN is only available for the Internet Key Exchange version 2 (IKEv2) connection type.
-
-Deploy this feature with caution, as the resultant connection will not be able to send or receive any network traffic without the VPN being connected.
-
-
 ## Windows Information Protection (WIP) integration with VPN
 
 Windows Information Protection provides capabilities allowing the separation and protection of enterprise data against disclosure across both company and personally owned devices, without requiring additional changes to the environments or the apps themselves. Additionally, when used with Rights Management Services (RMS), WIP can help to protect enterprise data locally.
@@ -78,6 +61,24 @@ The following image shows the interface to configure traffic rules in a VPN Prof
 
 ![Add a traffic rule](images/vpn-traffic-rules.png)
 
+
+## LockDown VPN
+
+A VPN profile configured with LockDown secures the device to only allow network traffic over the VPN interface. It has the following features:
+
+- The system attempts to keep the VPN connected at all times.
+- The user cannot disconnect the VPN connection.
+- The user cannot delete or modify the VPN profile.
+- The VPN LockDown profile uses forced tunnel connection.
+- If the VPN connection is not available, outbound network traffic is blocked.
+- Only one VPN LockDown profile is allowed on a device.
+
+> [!NOTE]
+> For built-in VPN, LockDown VPN is only available for the Internet Key Exchange version 2 (IKEv2) connection type.
+
+Deploy this feature with caution, as the resultant connection will not be able to send or receive any network traffic without the VPN being connected.
+
+
 ## Related topics
 
 - [VPN technical guide](vpn-guide.md)

From d8aee78ad6a711b7f5e55740d446a4bfe070a308 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 21 Dec 2020 15:25:26 +0530
Subject: [PATCH 091/825] updated-4715491

updated product name Microsoft Endpoint Manager
---
 ...ie11-delivery-through-automatic-updates.md |  2 +-
 .../windows/chromebook-migration-guide.md     |  2 +-
 .../deploy-windows-10-in-a-school-district.md | 42 +++++++++----------
 ...d-unsigned-app-to-code-integrity-policy.md |  4 +-
 ...plications-inside-a-virtual-environment.md |  2 +-
 .../mdm/appv-deploy-and-config.md             |  4 +-
 ...ollment-using-windows-provisioning-tool.md |  2 +-
 ...dded-8-1-handheld-devices-to-windows-10.md |  6 +--
 .../cortana-at-work/cortana-at-work-o365.md   |  2 +-
 .../cortana-at-work-voice-commands.md         |  2 +-
 .../provisioning-packages.md                  |  2 +-
 ...ith-system-center-configuration-manager.md |  4 +-
 .../ue-v/uev-deploy-required-features.md      |  2 +-
 .../ue-v/uev-prepare-for-deployment.md        |  2 +-
 windows/deployment/deploy-whats-new.md        |  2 +-
 ...-windows-10-using-configuration-manager.md |  4 +-
 ...-10-using-pxe-and-configuration-manager.md |  4 +-
 ...f-windows-10-with-configuration-manager.md |  2 +-
 ...to-windows-10-with-configuraton-manager.md |  4 +-
 windows/deployment/deploy.md                  |  2 +-
 windows/deployment/mbr-to-gpt.md              |  2 +-
 ...are-your-organization-for-windows-to-go.md |  2 +-
 .../windows-10-deployment-posters.md          |  2 +-
 .../windows-10-deployment-scenarios.md        |  2 +-
 .../windows-10-poc-sc-config-mgr.md           | 10 ++---
 windows/deployment/windows-10-poc.md          |  2 +-
 26 files changed, 58 insertions(+), 58 deletions(-)

diff --git a/browsers/internet-explorer/ie11-deploy-guide/ie11-delivery-through-automatic-updates.md b/browsers/internet-explorer/ie11-deploy-guide/ie11-delivery-through-automatic-updates.md
index edcb50cb9e..bd0befaee9 100644
--- a/browsers/internet-explorer/ie11-deploy-guide/ie11-delivery-through-automatic-updates.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/ie11-delivery-through-automatic-updates.md
@@ -68,7 +68,7 @@ Additional information on Internet Explorer 11, including a Readiness Toolkit, t
 
 ## Availability of Internet Explorer 11
 
-Automatic Updates will start to distribute Internet Explorer 11 shortly after the final release of the product and will distribute it through the Microsoft Endpoint Configuration Manager and WSUS.
+Automatic Updates will start to distribute Internet Explorer 11 shortly after the final release of the product and will distribute it through the Microsoft Endpoint Manager and WSUS.
 
 ## Prevent automatic installation of Internet Explorer 11 with WSUS
 
diff --git a/education/windows/chromebook-migration-guide.md b/education/windows/chromebook-migration-guide.md
index cbbdb3502b..3cd18bebdd 100644
--- a/education/windows/chromebook-migration-guide.md
+++ b/education/windows/chromebook-migration-guide.md
@@ -457,7 +457,7 @@ Table 5. Select on-premises AD DS, Azure AD, or hybrid
 <td align="left">X</td>
 </tr>
 <tr class="odd">
-<td align="left">Use Microsoft Endpoint Configuration Manager for management</td>
+<td align="left">Use Microsoft Endpoint Manager for management</td>
 <td align="left">X</td>
 <td align="left"></td>
 <td align="left">X</td>
diff --git a/education/windows/deploy-windows-10-in-a-school-district.md b/education/windows/deploy-windows-10-in-a-school-district.md
index 2d08a4c82d..7dd7bebd5a 100644
--- a/education/windows/deploy-windows-10-in-a-school-district.md
+++ b/education/windows/deploy-windows-10-in-a-school-district.md
@@ -202,7 +202,7 @@ Before you select the deployment and management methods, you need to review the
 |Scenario feature |Cloud-centric|On-premises and cloud|
 |---|---|---|
 |Identity management | Azure AD (stand-alone or integrated with on-premises AD DS)  |  AD DS integrated with Azure AD |
-|Windows 10 deployment   | MDT only  |  Microsoft Endpoint Configuration Manager with MDT |
+|Windows 10 deployment   | MDT only  |  Microsoft Endpoint Manager with MDT |
 |Configuration setting management  | Intune  |  Group Policy<br/><br/>Intune|
 |App and update management |  Intune |Microsoft Endpoint Configuration Manager<br/><br/>Intune|
 
@@ -216,14 +216,14 @@ These scenarios assume the need to support:
 Some constraints exist in these scenarios. As you select the deployment and management methods for your device, keep the following constraints in mind:
 
 * You can use Group Policy or Intune to manage configuration settings on a device but not both.
-* You can use Microsoft Endpoint Configuration Manager or Intune to manage apps and updates on a device but not both.
+* You can use Microsoft Endpoint Manager or Intune to manage apps and updates on a device but not both.
 * You cannot manage multiple users on a device with Intune if the device is AD DS domain joined.
 
 Use the cloud-centric scenario and on-premises and cloud scenario as a guide for your district. You may need to customize these scenarios, however, based on your district. As you go through the [Select the deployment methods](#select-the-deployment-methods), [Select the configuration setting management methods](#select-the-configuration-setting-management-methods), and the [Select the app and update management products](#select-the-app-and-update-management-products) sections, remember these scenarios and use them as the basis for your district.
 
 ### Select the deployment methods
 
-To deploy Windows 10 and your apps, you can use MDT by itself or Microsoft Endpoint Configuration Manager and MDT together. For a district, there are a few ways to deploy Windows 10 to devices. Table 2 lists the methods that this guide describes and recommends. Use this information to determine which combination of deployment methods is right for your institution.
+To deploy Windows 10 and your apps, you can use MDT by itself or Microsoft Endpoint Manager and MDT together. For a district, there are a few ways to deploy Windows 10 to devices. Table 2 lists the methods that this guide describes and recommends. Use this information to determine which combination of deployment methods is right for your institution.
 
 <table>
 <colgroup>
@@ -291,7 +291,7 @@ Select this method when you:</p>
 </ul>
 <p>The disadvantages of this method are that it:</p>
 <ul>
-<li>Carries an additional cost for Microsoft Endpoint Configuration Manager server licenses (if the institution does not have Configuration Manager already).</li>
+<li>Carries an additional cost for Microsoft Endpoint Manager server licenses (if the institution does not have Configuration Manager already).</li>
 <li>Can deploy Windows 10 only to domain-joined (institution-owned devices).</li>
 <li>Requires an AD DS infrastructure (if the institution does not have AD DS already).</li>
 </ul>
@@ -307,7 +307,7 @@ Record the deployment methods you selected in Table 3.
 |Selection | Deployment method|
 |--------- | -----------------|
 |   |MDT by itself |
-|   |Microsoft Endpoint Configuration Manager and MDT|
+|   |Microsoft Endpoint Manager and MDT|
 
 *Table 3. Deployment methods selected*
 
@@ -483,12 +483,12 @@ Select this method when you:</p>
 </tr>
 
 <tr>
-<td valign="top">Microsoft Endpoint Configuration Manager and Intune (hybrid)</td>
+<td valign="top">Microsoft Endpoint Manager and Intune (hybrid)</td>
 <td><p>Configuration Manager and Intune together extend Configuration Manager from an on-premises management system for domain-joined devices to a solution that can manage devices regardless of their location and connectivity options. This hybrid option provides the benefits of both Configuration Manager and Intune.<br/><br/>
 Configuration Manager and Intune in the hybrid configuration allow you to support application management throughout the entire application life cycle. You can deploy, upgrade, manage multiple versions, and retire applications by using Configuration Manager, and you can manage Windows desktop and Microsoft Store applications for both institution-owned and personal devices.<br/><br/>
 Select this method when you:</p>
 <ul>
-<li>Selected Microsoft Endpoint Configuration Manager to deploy Windows 10.</li>
+<li>Selected Microsoft Endpoint Manager to deploy Windows 10.</li>
 <li>Want to manage institution-owned and personal devices (does not require that the device be domain joined).</li>
 <li>Want to manage domain-joined devices.</li>
 <li>Want to manage Azure AD domain-joined devices.</li>
@@ -525,9 +525,9 @@ Record the app and update management methods that you selected in Table 7.
 
 |Selection | Management method|
 |----------|------------------|
-|   |Microsoft Endpoint Configuration Manager by itself|
+|   |Microsoft Endpoint Manager by itself|
 |   |Intune by itself|
-|   |Microsoft Endpoint Configuration Manager and Intune (hybrid mode)|
+|   |Microsoft Endpoint Manager and Intune (hybrid mode)|
 
 *Table 7. App and update management methods selected*
 
@@ -570,11 +570,11 @@ For more information about how to create a deployment share, see [Step 3-1: Crea
 ### Install the Configuration Manager console
 
 > [!NOTE]
-> If you selected Microsoft Endpoint Configuration Manager to deploy Windows 10 or manage your devices (in the [Select the deployment methods](#select-the-deployment-methods) and [Select the configuration setting management methods](#select-the-configuration-setting-management-methods) sections, respectively), perform the steps in this section. Otherwise, skip this section and continue to the next.
+> If you selected Microsoft Endpoint Manager to deploy Windows 10 or manage your devices (in the [Select the deployment methods](#select-the-deployment-methods) and [Select the configuration setting management methods](#select-the-configuration-setting-management-methods) sections, respectively), perform the steps in this section. Otherwise, skip this section and continue to the next.
 
 You can use Configuration Manager to manage Windows 10 deployments, Windows desktop apps, Microsoft Store apps, and software updates. To manage Configuration Manager, you use the Configuration Manager console. You must install the Configuration Manager console on every device you use to manage Configuration Manager (specifically, the admin device). The Configuration Manager console is automatically installed when you install Configuration Manager primary site servers.
 
-For more information about how to install the Configuration Manager console, see [Install Microsoft Endpoint Configuration Manager consoles](https://technet.microsoft.com/library/mt590197.aspx#bkmk_InstallConsole).
+For more information about how to install the Configuration Manager console, see [Install Microsoft Endpoint Manager consoles](https://technet.microsoft.com/library/mt590197.aspx#bkmk_InstallConsole).
 
 ### Configure MDT integration with the Configuration Manager console
 
@@ -1148,7 +1148,7 @@ At the end of this section, you should know the Windows 10 editions and processo
 
 ## Prepare for deployment
 
-Before you can deploy Windows 10 and your apps to devices, you need to prepare your MDT environment, Windows Deployment Services, and Microsoft Endpoint Configuration Manager (if you selected it to do operating system deployment in the [Select the deployment methods](#select-the-deployment-methods) section). In this section, you ensure that the deployment methods you selected in the [Select the deployment methods](#select-the-deployment-methods) section have the necessary Windows 10 editions and versions, Windows desktop apps, Microsoft Store apps, and device drivers.
+Before you can deploy Windows 10 and your apps to devices, you need to prepare your MDT environment, Windows Deployment Services, and Microsoft Endpoint Manager (if you selected it to do operating system deployment in the [Select the deployment methods](#select-the-deployment-methods) section). In this section, you ensure that the deployment methods you selected in the [Select the deployment methods](#select-the-deployment-methods) section have the necessary Windows 10 editions and versions, Windows desktop apps, Microsoft Store apps, and device drivers.
 
 ### Configure the MDT deployment share
 
@@ -1245,7 +1245,7 @@ For more information about how to update a deployment share, see <a href="https:
 ### Configure Microsoft Endpoint Configuration Manager
 
 > [!NOTE]
-> If you have already configured your Microsoft Endpoint Configuration Manager infrastructure to support the operating system deployment feature or if you selected to deploy Windows 10 by using MDT only, then skip this section and continue to the next section.
+> If you have already configured your Microsoft Endpoint Manager infrastructure to support the operating system deployment feature or if you selected to deploy Windows 10 by using MDT only, then skip this section and continue to the next section.
 
 Before you can use Configuration Manager to deploy Windows 10 and manage your apps and devices, you must configure Configuration Manager to support the operating system deployment feature. If you don’t have an existing Configuration Manager infrastructure, you will need to deploy a new infrastructure.
 
@@ -1255,7 +1255,7 @@ Deploying a new Configuration Manager infrastructure is beyond the scope of this
 * [Start using Configuration Manager](https://technet.microsoft.com/library/mt608544.aspx)
 
 
-#### To configure an existing Microsoft Endpoint Configuration Manager infrastructure for operating system deployment
+#### To configure an existing Microsoft Endpoint Manager infrastructure for operating system deployment
 
 1. Perform any necessary infrastructure remediation.
 
@@ -1264,12 +1264,12 @@ Deploying a new Configuration Manager infrastructure is beyond the scope of this
 
     You need to add the Windows PE boot images, Windows 10 operating system images, and other deployment content that you will use to deploy Windows 10 with ZTI. To add this content, use the Create MDT Task Sequence Wizard.
 
-    You can add this content by using Microsoft Endpoint Configuration Manager only (without MDT), but the Create MDT Task Sequence Wizard is the preferred method because the wizard prompts you for all the deployment content you need for a task sequence and provides a much more intuitive user experience. For more information, see [Create ZTI Task Sequences Using the Create MDT Task Sequence Wizard in Configuration Manager](https://technet.microsoft.com/library/dn759415.aspx#CreateZTITaskSequencesUsingtheCreateMDTTaskSequenceWizardinConfigurationManager).
+    You can add this content by using Microsoft Endpoint Manager only (without MDT), but the Create MDT Task Sequence Wizard is the preferred method because the wizard prompts you for all the deployment content you need for a task sequence and provides a much more intuitive user experience. For more information, see [Create ZTI Task Sequences Using the Create MDT Task Sequence Wizard in Configuration Manager](https://technet.microsoft.com/library/dn759415.aspx#CreateZTITaskSequencesUsingtheCreateMDTTaskSequenceWizardinConfigurationManager).
 3. Add device drivers.
 
     You must add device drivers for the different device types in your district. For example, if you have a mixture of Surface, HP Stream, Dell Inspiron, and Lenovo Yoga devices, then you must have the device drivers for each device.
 
-    Create a Microsoft Endpoint Configuration Manager driver package for each device type in your district. For more information, see [Manage drivers in Configuration Manager](https://technet.microsoft.com/library/mt627934.aspx).
+    Create a Microsoft Endpoint Manager driver package for each device type in your district. For more information, see [Manage drivers in Configuration Manager](https://technet.microsoft.com/library/mt627934.aspx).
 4. Add Windows apps.
 
     Install the Windows apps (Windows desktop and Microsoft Store apps) that you want to deploy after the task sequence deploys your customized image (a thick, reference image that include Windows 10 and your core Windows desktop apps). These apps are in addition to the apps included in your reference image. You can only deploy Microsoft Store apps after you deploy Windows 10 because you cannot capture Microsoft Store apps in a reference image. Microsoft Store apps target users, not devices.
@@ -1301,7 +1301,7 @@ You can use Windows Deployment Services in conjunction with MDT to automatically
 ### Configure Window Deployment Services for Microsoft Endpoint Configuration Manager
 
 > [!NOTE]
-> If you have already configured your Microsoft Endpoint Configuration Manager infrastructure to support PXE boot or selected to deploy Windows 10 by using MDT only, then skip this section and continue to the next.
+> If you have already configured your Microsoft Endpoint Manager infrastructure to support PXE boot or selected to deploy Windows 10 by using MDT only, then skip this section and continue to the next.
 
 You can use Windows Deployment Services in conjunction with Configuration Manager to automatically initiate boot images on target devices. These boot images are Windows PE images that you use to boot the target devices, and then initiate Windows 10, app, and device driver deployment.
 
@@ -1328,7 +1328,7 @@ You can use Windows Deployment Services in conjunction with Configuration Manage
 
 #### Summary
 
-Your MDT deployment share and Microsoft Endpoint Configuration Manager are now ready for deployment. Windows Deployment Services is ready to initiate the LTI or ZTI deployment process. You have set up and configured Windows Deployment Services for MDT and for Configuration Manager. You have also ensured that your boot images are available to Windows Deployment Services (for LTI) or the distribution points (for ZTI and Configuration Manager). Now, you’re ready to capture the reference images for the different devices you have in your district.
+Your MDT deployment share and Microsoft Endpoint Manager are now ready for deployment. Windows Deployment Services is ready to initiate the LTI or ZTI deployment process. You have set up and configured Windows Deployment Services for MDT and for Configuration Manager. You have also ensured that your boot images are available to Windows Deployment Services (for LTI) or the distribution points (for ZTI and Configuration Manager). Now, you’re ready to capture the reference images for the different devices you have in your district.
 
 ## Capture the reference image
 
@@ -1575,7 +1575,7 @@ For more information about Intune, see [Microsoft Intune Documentation](https://
 
 ### Deploy and manage apps by using Intune
 
-If you selected to deploy and manage apps by using Microsoft Endpoint Configuration Manager and Intune in a hybrid configuration, then skip this section and continue to the [Deploy and manage apps by using Microsoft Endpoint Configuration Manager](#deploy-and-manage-apps-by-using-microsoft-endpoint-configuration-manager) section.
+If you selected to deploy and manage apps by using Microsoft Endpoint Manager and Intune in a hybrid configuration, then skip this section and continue to the [Deploy and manage apps by using Microsoft Endpoint Configuration Manager](#deploy-and-manage-apps-by-using-microsoft-endpoint-configuration-manager) section.
 
 You can use Intune to deploy Microsoft Store and Windows desktop apps. Intune provides improved control over which users receive specific apps. In addition, Intune allows you to deploy apps to companion devices (such as Windows 10 Mobile, iOS, or Android devices). Finally, Intune helps you manage app security and features, such as mobile application management policies that let you manage apps on devices that are not enrolled in Intune or that another solution manages.
 
@@ -1589,7 +1589,7 @@ For more information about how to configure Intune to manage your apps, see the
 
 ### Deploy and manage apps by using Microsoft Endpoint Configuration Manager
 
-You can use  Microsoft Endpoint Configuration Manager to deploy Microsoft Store and Windows desktop apps. Configuration Manager allows you to create a Configuration Manager application that you can use to deploy apps to different devices (such as Windows 10 desktop, Windows 10 Mobile, iOS, or Android devices) by using *deployment types*. You can think of a Configuration Manager application as a box. You can think of deployment types as one or more sets of installation files and installation instructions within that box.
+You can use  Microsoft Endpoint Manager to deploy Microsoft Store and Windows desktop apps. Configuration Manager allows you to create a Configuration Manager application that you can use to deploy apps to different devices (such as Windows 10 desktop, Windows 10 Mobile, iOS, or Android devices) by using *deployment types*. You can think of a Configuration Manager application as a box. You can think of deployment types as one or more sets of installation files and installation instructions within that box.
 
 For example, you could create a Skype application that contains a deployment type for Windows 10 desktop, Windows 10 Mobile, iOS, and Android. You can deploy the one application to multiple device types.
 
@@ -1627,7 +1627,7 @@ For more information about how to configure Configuration Manager to manage Wind
 
 #### Summary
 
-In this section, you prepared your institution for device management. You identified the configuration settings that you want to use to manage your users and devices. You configured Group Policy or Intune to manage these configuration settings. You configured Intune or Microsoft Endpoint Configuration Manager to manage your apps. Finally, you configured Intune or Microsoft Endpoint Configuration Manager to manage software updates for Windows 10 and your apps.
+In this section, you prepared your institution for device management. You identified the configuration settings that you want to use to manage your users and devices. You configured Group Policy or Intune to manage these configuration settings. You configured Intune or Microsoft Endpoint Manager to manage your apps. Finally, you configured Intune or Microsoft Endpoint Manager to manage software updates for Windows 10 and your apps.
 
 ## Deploy Windows 10 to devices
 
diff --git a/store-for-business/add-unsigned-app-to-code-integrity-policy.md b/store-for-business/add-unsigned-app-to-code-integrity-policy.md
index a7fff81d4b..c57643bd16 100644
--- a/store-for-business/add-unsigned-app-to-code-integrity-policy.md
+++ b/store-for-business/add-unsigned-app-to-code-integrity-policy.md
@@ -62,7 +62,7 @@ Before you get started, be sure to review these best practices and requirements:
 
 **Best practices**
 
-- **Naming convention** -- Using a naming convention makes it easier to find deployed catalog files. We'll use \*-Contoso.cat as the naming convention in this topic. For more information, see the section Inventorying catalog files by using Microsoft Endpoint Configuration Manager in the [Device Guard deployment guide](https://docs.microsoft.com/windows/device-security/device-guard/device-guard-deployment-guide).
+- **Naming convention** -- Using a naming convention makes it easier to find deployed catalog files. We'll use \*-Contoso.cat as the naming convention in this topic. For more information, see the section Inventorying catalog files by using Microsoft Endpoint Manager in the [Device Guard deployment guide](https://docs.microsoft.com/windows/device-security/device-guard/device-guard-deployment-guide).
 - **Where to deploy code integrity policy** -- The [code integrity policy that you created](#create-ci-policy) should be deployed to the system on which you are running Package Inspector. This will ensure that the code integrity policy binaries are trusted.
 
 Copy the commands for each step into an elevated Windows PowerShell session. You'll use Package Inspector to find and trust all binaries in the app.
@@ -117,4 +117,4 @@ Catalog signing is a vital step to adding your unsigned apps to your code integr
      When you use the Device Guard signing portal to sign a catalog file, the signing certificate is added to the default policy. When you download the signed catalog file, you should also download the default policy and merge this code integrity policy with your existing code integrity policies to protect machines running the catalog file. You need to do this step to trust and run your catalog files. For more information, see the Merging code integrity policies in the [Device Guard deployment guide](https://docs.microsoft.com/windows/device-security/device-guard/device-guard-deployment-guide).
 
 6. Open the root certificate that you downloaded, and follow the steps in **Certificate Import wizard** to install the certificate in your machine's certificate store.
-7. Deploy signed catalogs to your managed devices. For more information, see Deploy catalog files with Group Policy, or Deploy catalog files with Microsoft Endpoint Configuration Manager in the [Device Guard deployment guide](https://docs.microsoft.com/windows/device-security/device-guard/device-guard-deployment-guide).
+7. Deploy signed catalogs to your managed devices. For more information, see Deploy catalog files with Group Policy, or Deploy catalog files with Microsoft Endpoint Manager in the [Device Guard deployment guide](https://docs.microsoft.com/windows/device-security/device-guard/device-guard-deployment-guide).
diff --git a/windows/application-management/app-v/appv-running-locally-installed-applications-inside-a-virtual-environment.md b/windows/application-management/app-v/appv-running-locally-installed-applications-inside-a-virtual-environment.md
index b1a6caca2c..3138fa3ab3 100644
--- a/windows/application-management/app-v/appv-running-locally-installed-applications-inside-a-virtual-environment.md
+++ b/windows/application-management/app-v/appv-running-locally-installed-applications-inside-a-virtual-environment.md
@@ -44,7 +44,7 @@ Each method accomplishes essentially the same task, but some methods may be bett
 
 To add a locally installed application to a package or to a connection group’s virtual environment, you add a subkey to the `RunVirtual` registry key in the Registry Editor, as described in the following sections.
 
-There is no Group Policy setting available to manage this registry key, so you have to use Microsoft Endpoint Configuration Manager or another electronic software distribution (ESD) system, or manually edit the registry.
+There is no Group Policy setting available to manage this registry key, so you have to use Microsoft Endpoint Manager or another electronic software distribution (ESD) system, or manually edit the registry.
 
 Starting with App-V 5.0 SP3, when using RunVirtual, you can publish packages globally or to the user.
 
diff --git a/windows/client-management/mdm/appv-deploy-and-config.md b/windows/client-management/mdm/appv-deploy-and-config.md
index 0e1870a49d..15937b2e7c 100644
--- a/windows/client-management/mdm/appv-deploy-and-config.md
+++ b/windows/client-management/mdm/appv-deploy-and-config.md
@@ -1,6 +1,6 @@
 ---
 title: Deploy and configure App-V apps using MDM
-description: Configure, deploy, and manage Microsoft Application Virtualization (App-V) apps using Microsoft Endpoint Configuration Manager or App-V server.
+description: Configure, deploy, and manage Microsoft Application Virtualization (App-V) apps using Microsoft Endpoint Manager or App-V server.
 ms.author: dansimp
 ms.topic: article
 ms.prod: w10
@@ -15,7 +15,7 @@ manager: dansimp
 
 ## Executive summary
 
-<p>Microsoft Application Virtualization (App-V) apps have typically been configured, deployed, and managed through on-premises group policies using Microsoft Endpoint Configuration Manager or App-V server. In Windows 10, version 1703, App-V apps can be configured, deployed, and managed using mobile device management (MDM), matching their on-premises counterparts.</p>
+<p>Microsoft Application Virtualization (App-V) apps have typically been configured, deployed, and managed through on-premises group policies using Microsoft Endpoint Manager or App-V server. In Windows 10, version 1703, App-V apps can be configured, deployed, and managed using mobile device management (MDM), matching their on-premises counterparts.</p>
 
 <p>MDM services can be used to publish App-V packages to clients running Windows 10, version 1703 (or later). All capabilities such as App-V enablement, configuration, and publishing can be completed using the EnterpriseAppVManagement CSP.</p>
 
diff --git a/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md b/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md
index 2818c2e55f..c0c9fdf44c 100644
--- a/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md
+++ b/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md
@@ -35,7 +35,7 @@ On the desktop and mobile devices, you can use an enrollment certificate or enro
 > [!NOTE]
 > -   Bulk-join is not supported in Azure Active Directory Join.
 > -   Bulk enrollment does not work in Intune standalone environment.
-> -   Bulk enrollment works in Microsoft Endpoint Configuration Manager where the ppkg is generated from the Configuration Manager console.
+> -   Bulk enrollment works in Microsoft Endpoint Manager where the ppkg is generated from the Configuration Manager console.
 > -   To change bulk enrollment settings, login to **AAD**, then **Devices**, and then click **Device Settings**. Change the number under **Maximum number of devices per user**.
 
 ## What you need
diff --git a/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md b/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
index 7ef806784f..fcb261d1c2 100644
--- a/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
+++ b/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
@@ -138,10 +138,10 @@ There are two ways to retrieve this file from the device; one pre-GDR1 and one p
 2.  Set a baseline for this configuration item with a “dummy” value (such as zzz), and ensure that you do not remediate it.
 
     The dummy value is not set; it is only used for comparison.
-3.  After the report XML is sent to the device, Microsoft Endpoint Configuration Manager displays a compliance log that contains the report information. The log can contain significant amount of data.
+3.  After the report XML is sent to the device, Microsoft Endpoint Manager displays a compliance log that contains the report information. The log can contain significant amount of data.
 4.  Parse this log for the report XML content.
 
-For a step-by-step walkthrough, see [Retrieve a device update report using Microsoft Endpoint Configuration Manager logs](#retrieve-a-device-update-report-using-microsoft-endpoint-configuration-manager-logs).
+For a step-by-step walkthrough, see [Retrieve a device update report using Microsoft Endpoint Manager logs](#retrieve-a-device-update-report-using-microsoft-endpoint-configuration-manager-logs).
 
 **Post-GDR1: Retrieve the report xml file using an SD card**
 
@@ -460,7 +460,7 @@ DownloadFiles $inputFile $downloadCache $localCacheURL
 ```
 
 <a href="" id="how-to-retrieve"></a>
-## Retrieve a device update report using Microsoft Endpoint Configuration Manager logs
+## Retrieve a device update report using Microsoft Endpoint Manager logs
 
 **For pre-GDR1 devices**
 Use this procedure for pre-GDR1 devices:
diff --git a/windows/configuration/cortana-at-work/cortana-at-work-o365.md b/windows/configuration/cortana-at-work/cortana-at-work-o365.md
index d915ec9aee..e78c383c6d 100644
--- a/windows/configuration/cortana-at-work/cortana-at-work-o365.md
+++ b/windows/configuration/cortana-at-work/cortana-at-work-o365.md
@@ -29,7 +29,7 @@ There are a few things to be aware of before you start using Cortana in Windows
 
 - **Office 365 Trust Center.** Cortana in Windows 10, version 1909 and earlier, isn&#39;t a service governed by the [Online Services Terms](https://www.microsoft.com/en-us/licensing/product-licensing/products). [Learn more about how Cortana in Windows 10, versions 1909 and earlier, treats your data](https://support.microsoft.com/en-us/help/4468233/cortana-and-privacy-microsoft-privacy).
 
-- Windows Information Protection (WIP). If you want to secure the calendar, email, and contact info provided to Cortana on a device, you can use WIP. For more info about WIP, see [Protect your enterprise data using Windows Information Protection (WIP)](https://docs.microsoft.com/windows/threat-protection/windows-information-protection/protect-enterprise-data-using-wip). If you decide to use WIP, you must also have a management solution. This can be Microsoft Intune, Microsoft Endpoint Configuration Manager (version 1606 or later), or your current company-wide 3rd party mobile device management (MDM) solution.
+- Windows Information Protection (WIP). If you want to secure the calendar, email, and contact info provided to Cortana on a device, you can use WIP. For more info about WIP, see [Protect your enterprise data using Windows Information Protection (WIP)](https://docs.microsoft.com/windows/threat-protection/windows-information-protection/protect-enterprise-data-using-wip). If you decide to use WIP, you must also have a management solution. This can be Microsoft Intune, Microsoft Endpoint Manager (version 1606 or later), or your current company-wide 3rd party mobile device management (MDM) solution.
 
 - **Troubleshooting tips.** If you run into issues, check out these [troubleshooting tips](https://go.microsoft.com/fwlink/p/?LinkId=620763).
 
diff --git a/windows/configuration/cortana-at-work/cortana-at-work-voice-commands.md b/windows/configuration/cortana-at-work/cortana-at-work-voice-commands.md
index 1425bcd323..a0e470eed5 100644
--- a/windows/configuration/cortana-at-work/cortana-at-work-voice-commands.md
+++ b/windows/configuration/cortana-at-work/cortana-at-work-voice-commands.md
@@ -32,7 +32,7 @@ To enable voice commands in Cortana
 
     - **Start Cortana removing focus from your app, using specific voice-enabled statements.** [Activate a background app in Cortana using voice commands](https://docs.microsoft.com/cortana/voice-commands/launch-a-background-app-with-voice-commands-in-cortana).
 
-2.	**Install the VCD file on employees' devices**. You can use Microsoft Endpoint Configuration Manager or Microsoft Intune to deploy and install the VCD file on your employees' devices, the same way you deploy and install any other package in your organization.
+2.	**Install the VCD file on employees' devices**. You can use Microsoft Endpoint Manager or Microsoft Intune to deploy and install the VCD file on your employees' devices, the same way you deploy and install any other package in your organization.
 
 ## Test scenario: Use voice commands in a Microsoft Store app
 While these aren't line-of-business apps, we've worked to make sure to implement a VCD file, allowing you to test how the functionality works with Cortana in your organization.
diff --git a/windows/configuration/provisioning-packages/provisioning-packages.md b/windows/configuration/provisioning-packages/provisioning-packages.md
index 8ef07ace21..b5816befcb 100644
--- a/windows/configuration/provisioning-packages/provisioning-packages.md
+++ b/windows/configuration/provisioning-packages/provisioning-packages.md
@@ -112,7 +112,7 @@ The following table provides some examples of settings that you can configure us
 |          Start menu customization          |                                           Start menu layout, application pinning                                            |
 |                   Other                    |                     Home and lock screen wallpaper, computer name, domain join, DNS settings, and so on                     |
 
-\* Using a provisioning package for auto-enrollment to Microsoft Endpoint Configuration Manager is not supported. Use the Configuration Manager console to enroll devices.
+\* Using a provisioning package for auto-enrollment to Microsoft Endpoint Manager is not supported. Use the Configuration Manager console to enroll devices.
 
 
 For details about the settings you can customize in provisioning packages, see [Windows Provisioning settings reference]( https://go.microsoft.com/fwlink/p/?LinkId=619012).
diff --git a/windows/configuration/ue-v/uev-configuring-uev-with-system-center-configuration-manager.md b/windows/configuration/ue-v/uev-configuring-uev-with-system-center-configuration-manager.md
index f4ea6d2a5f..2ced4afd25 100644
--- a/windows/configuration/ue-v/uev-configuring-uev-with-system-center-configuration-manager.md
+++ b/windows/configuration/ue-v/uev-configuring-uev-with-system-center-configuration-manager.md
@@ -14,12 +14,12 @@ ms.topic: article
 ---
 
 
-# Configuring UE-V with Microsoft Endpoint Configuration Manager 
+# Configuring UE-V with Microsoft Endpoint Manager 
 
 **Applies to**
 -   Windows 10, version 1607
 
-After you deploy User Experience Virtualization (UE-V) and its required features, you can start to configure it to meet your organization's need. The UE-V Configuration Pack provides a way for administrators to use the Compliance Settings feature of Microsoft Endpoint Configuration Manager to apply consistent configurations across sites where UE-V and Configuration Manager are installed.
+After you deploy User Experience Virtualization (UE-V) and its required features, you can start to configure it to meet your organization's need. The UE-V Configuration Pack provides a way for administrators to use the Compliance Settings feature of Microsoft Endpoint Manager to apply consistent configurations across sites where UE-V and Configuration Manager are installed.
 
 ## UE-V Configuration Pack supported features
 
diff --git a/windows/configuration/ue-v/uev-deploy-required-features.md b/windows/configuration/ue-v/uev-deploy-required-features.md
index 04cf9543e9..dd861cea0f 100644
--- a/windows/configuration/ue-v/uev-deploy-required-features.md
+++ b/windows/configuration/ue-v/uev-deploy-required-features.md
@@ -117,7 +117,7 @@ You can configure UE-V before, during, or after you enable the UE-V service on u
 
     Windows Server 2012 and Windows Server 2012 R2
 
--   [**Configuration Manager**](uev-configuring-uev-with-system-center-configuration-manager.md) The UE-V Configuration Pack lets you use the Compliance Settings feature of Microsoft Endpoint Configuration Manager to apply consistent configurations across sites where UE-V and Configuration Manager are installed.
+-   [**Configuration Manager**](uev-configuring-uev-with-system-center-configuration-manager.md) The UE-V Configuration Pack lets you use the Compliance Settings feature of Microsoft Endpoint Manager to apply consistent configurations across sites where UE-V and Configuration Manager are installed.
 
 -   [**Windows PowerShell and WMI**](uev-administering-uev-with-windows-powershell-and-wmi.md) You can use scripted commands for Windows PowerShell and Windows Management Instrumentation (WMI) to modify the configuration of the UE-V service.
 
diff --git a/windows/configuration/ue-v/uev-prepare-for-deployment.md b/windows/configuration/ue-v/uev-prepare-for-deployment.md
index e10d20444a..d1971558f4 100644
--- a/windows/configuration/ue-v/uev-prepare-for-deployment.md
+++ b/windows/configuration/ue-v/uev-prepare-for-deployment.md
@@ -362,7 +362,7 @@ The UE-V service synchronizes user settings for devices that are not always conn
 
 Enable this configuration using one of these methods:
 
-- After you enable the UE-V service, use the Settings Management feature in Microsoft Endpoint Configuration Manager or the UE-V ADMX templates (installed with Windows 10, version 1607) to push the SyncMethod = None configuration.
+- After you enable the UE-V service, use the Settings Management feature in Microsoft Endpoint Manager or the UE-V ADMX templates (installed with Windows 10, version 1607) to push the SyncMethod = None configuration.
 
 - Use Windows PowerShell or Windows Management Instrumentation (WMI) to set the SyncMethod = None configuration.
 
diff --git a/windows/deployment/deploy-whats-new.md b/windows/deployment/deploy-whats-new.md
index f73558bd91..ebdcfa1363 100644
--- a/windows/deployment/deploy-whats-new.md
+++ b/windows/deployment/deploy-whats-new.md
@@ -63,7 +63,7 @@ Windows PowerShell cmdlets for Delivery Optimization have been improved:
 Additional improvements in [Delivery Optimization](https://docs.microsoft.com/windows/deployment/update/waas-delivery-optimization) include:
 - Enterprise network [throttling is enhanced](https://docs.microsoft.com/windows-insider/at-work-pro/wip-4-biz-whats-new#new-download-throttling-options-for-delivery-optimization-build-18917) to optimize foreground vs. background throttling.
 - Automatic cloud-based congestion detection is available for PCs with cloud service support.
-- Improved Peer Efficiency for enterprises and educational institutions with complex networks is enabled with of [new policies](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization). This now supports Microsoft 365 Apps for enterprise updates, and Intune content, with Microsoft Endpoint Configuration Manager content coming soon! 
+- Improved Peer Efficiency for enterprises and educational institutions with complex networks is enabled with of [new policies](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization). This now supports Microsoft 365 Apps for enterprise updates, and Intune content, with Microsoft Endpoint Manager content coming soon! 
 
 The following Delivery Optimization policies are removed in the Windows 10, version 2004 release:
 
diff --git a/windows/deployment/deploy-windows-cm/create-an-application-to-deploy-with-windows-10-using-configuration-manager.md b/windows/deployment/deploy-windows-cm/create-an-application-to-deploy-with-windows-10-using-configuration-manager.md
index 7e1c6b9819..4b0eb20dcf 100644
--- a/windows/deployment/deploy-windows-cm/create-an-application-to-deploy-with-windows-10-using-configuration-manager.md
+++ b/windows/deployment/deploy-windows-cm/create-an-application-to-deploy-with-windows-10-using-configuration-manager.md
@@ -1,6 +1,6 @@
 ---
 title: Create an app to deploy with Windows 10 using Configuration Manager
-description: Microsoft Microsoft Endpoint Configuration Manager supports deploying applications as part of the Windows 10 deployment process.
+description: Microsoft Microsoft Endpoint Manager supports deploying applications as part of the Windows 10 deployment process.
 ms.assetid: 2dfb2f39-1597-4999-b4ec-b063e8a8c90c
 ms.reviewer: 
 manager: laurawi
@@ -22,7 +22,7 @@ ms.topic: article
 
 -   Windows 10
 
-Microsoft Endpoint Configuration Manager supports deploying applications as part of the Windows 10 deployment process. In this section, you create an application in Microsoft Endpoint Configuration Manager that you later configure the task sequence to use.
+Microsoft Endpoint Manager supports deploying applications as part of the Windows 10 deployment process. In this section, you create an application in Microsoft Endpoint Manager that you later configure the task sequence to use.
 
 For the purposes of this guide, we will use one server computer: CM01.
 - CM01 is a domain member server and Configuration Manager software distribution point. In this guide CM01 is a standalone primary site server. CM01 is running Windows Server 2019. However, an earlier, supported version of Windows Server can also be used. 
diff --git a/windows/deployment/deploy-windows-cm/deploy-windows-10-using-pxe-and-configuration-manager.md b/windows/deployment/deploy-windows-cm/deploy-windows-10-using-pxe-and-configuration-manager.md
index bbc562e930..ccb8ed6bb5 100644
--- a/windows/deployment/deploy-windows-cm/deploy-windows-10-using-pxe-and-configuration-manager.md
+++ b/windows/deployment/deploy-windows-cm/deploy-windows-10-using-pxe-and-configuration-manager.md
@@ -1,6 +1,6 @@
 ---
 title: Deploy Windows 10 using PXE and Configuration Manager (Windows 10)
-description: In this topic, you will learn how to deploy Windows 10 using Microsoft Endpoint Configuration Manager deployment packages and task sequences.
+description: In this topic, you will learn how to deploy Windows 10 using Microsoft Endpoint Manager deployment packages and task sequences.
 ms.assetid: fb93f514-5b30-4f4b-99dc-58e6860009fa
 ms.reviewer: 
 manager: laurawi
@@ -21,7 +21,7 @@ ms.topic: article
 
 -   Windows 10
 
-In this topic, you will learn how to deploy Windows 10 using Microsoft Endpoint Configuration Manager deployment packages and task sequences. This topic will walk you through the process of deploying the Windows 10 Enterprise image to a Unified Extensible Firmware Interface (UEFI) computer named PC0001. An existing Configuration Manager infrastructure that is integrated with MDT is used for the procedures in this topic.
+In this topic, you will learn how to deploy Windows 10 using Microsoft Endpoint Manager deployment packages and task sequences. This topic will walk you through the process of deploying the Windows 10 Enterprise image to a Unified Extensible Firmware Interface (UEFI) computer named PC0001. An existing Configuration Manager infrastructure that is integrated with MDT is used for the procedures in this topic.
 
 This topic assumes that you have completed the following prerequisite procedures:
 - [Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md)
diff --git a/windows/deployment/deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md b/windows/deployment/deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md
index 116cb87a9e..348d4fd07c 100644
--- a/windows/deployment/deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md
+++ b/windows/deployment/deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md
@@ -22,7 +22,7 @@ ms.custom: seo-marvel-apr2020
 
 -   Windows 10
 
-This topic will walk you through the Zero Touch Installation process of Windows 10 operating system deployment (OSD) using Microsoft Endpoint Configuration Manager (ConfigMgr) [integrated](#why-integrate-mdt-with-configuration-manager) with Microsoft Deployment Toolkit (MDT). 
+This topic will walk you through the Zero Touch Installation process of Windows 10 operating system deployment (OSD) using Microsoft Endpoint Manager (ConfigMgr) [integrated](#why-integrate-mdt-with-configuration-manager) with Microsoft Deployment Toolkit (MDT). 
 
 ## Prerequisites
 
diff --git a/windows/deployment/deploy-windows-cm/upgrade-to-windows-10-with-configuraton-manager.md b/windows/deployment/deploy-windows-cm/upgrade-to-windows-10-with-configuraton-manager.md
index 46a0b5ee09..1c8551218d 100644
--- a/windows/deployment/deploy-windows-cm/upgrade-to-windows-10-with-configuraton-manager.md
+++ b/windows/deployment/deploy-windows-cm/upgrade-to-windows-10-with-configuraton-manager.md
@@ -1,6 +1,6 @@
 ---
 title: Perform in-place upgrade to Windows 10 via Configuration Manager
-description: Learn how to perform an in-place upgrade to Windows 10 by automating the process with a Microsoft Endpoint Configuration Manager task sequence.
+description: Learn how to perform an in-place upgrade to Windows 10 by automating the process with a Microsoft Endpoint Manager task sequence.
 ms.assetid: F8DF6191-0DB0-4EF5-A9B1-6A11D5DE4878
 ms.reviewer: 
 manager: laurawi
@@ -22,7 +22,7 @@ ms.custom: seo-marvel-apr2020
 
 -   Windows 10
 
-The simplest path to upgrade PCs currently running Windows 7, Windows 8, or Windows 8.1 to Windows 10 is through an in-place upgrade. You can use a Microsoft Endpoint Configuration Manager task sequence to completely automate the process.
+The simplest path to upgrade PCs currently running Windows 7, Windows 8, or Windows 8.1 to Windows 10 is through an in-place upgrade. You can use a Microsoft Endpoint Manager task sequence to completely automate the process.
 
 >[!IMPORTANT]
 >Beginning with Windows 10 and Windows Server 2016, Windows Defender is already installed. A management client for Windows Defender is also installed automatically if the Configuration Manager client is installed. However, previous Windows operating systems installed the System Center Endpoint Protection (SCEP) client with the Configuration Manager client. The SCEP client can block in-place upgrade to Windows 10 due to incompatibility, and must be removed from a device before performing an in-place upgrade to Windows 10.
diff --git a/windows/deployment/deploy.md b/windows/deployment/deploy.md
index ecf21c9ffc..bb85dc9972 100644
--- a/windows/deployment/deploy.md
+++ b/windows/deployment/deploy.md
@@ -31,7 +31,7 @@ Windows 10 upgrade options are discussed and information is provided about plann
 |[Windows 10 deployment test lab](windows-10-poc.md) |This guide contains instructions to configure a proof of concept (PoC) environment requiring a minimum amount of resources. The guide makes extensive use of Windows PowerShell and Hyper-V. Subsequent companion guides contain steps to deploy Windows 10 using the PoC environment. After completing this guide, additional guides are provided to  deploy Windows 10 in the test lab using [Microsoft Deployment Toolkit](windows-10-poc-mdt.md) or [Microsoft Endpoint Configuration Manager](windows-10-poc-sc-config-mgr.md). |
 |[Plan for Windows 10 deployment](planning/index.md) | This section describes Windows 10 deployment considerations and provides information to assist in Windows 10 deployment planning. |
 |[Deploy Windows 10 with the Microsoft Deployment Toolkit](deploy-windows-mdt/deploy-windows-10-with-the-microsoft-deployment-toolkit.md) |This guide will walk you through the process of deploying Windows 10 in an enterprise environment using the Microsoft Deployment Toolkit (MDT). |
-|[Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md) |If you have Microsoft Endpoint Configuration Manager in your environment, you will most likely want to use it to deploy Windows 10. This topic will show you how to set up Configuration Manager for operating system deployment and how to integrate Configuration Manager with the Microsoft Deployment Toolkit (MDT) or. |
+|[Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md) |If you have Microsoft Endpoint Manager in your environment, you will most likely want to use it to deploy Windows 10. This topic will show you how to set up Configuration Manager for operating system deployment and how to integrate Configuration Manager with the Microsoft Deployment Toolkit (MDT) or. |
 |[Windows 10 deployment tools](windows-10-deployment-tools-reference.md) |Learn about available tools to deploy Windows 10, such as the Windows ADK, DISM, USMT, WDS, MDT, Windows PE and more. |
 |[How to install fonts that are missing after upgrading to Windows 10](windows-10-missing-fonts.md)|Windows 10 introduced changes to the fonts that are included in the image by default. Learn how to install additional fonts from **Optional features** after you install Windows 10 or upgrade from a previous version.|
 
diff --git a/windows/deployment/mbr-to-gpt.md b/windows/deployment/mbr-to-gpt.md
index c5312c0bd7..7324318c18 100644
--- a/windows/deployment/mbr-to-gpt.md
+++ b/windows/deployment/mbr-to-gpt.md
@@ -410,7 +410,7 @@ When you start a Windows 10, version 1903-based computer in the Windows Preinsta
 
 **Issue 2** When you manually run the MBR2GPT.exe command in a Command Prompt window, there is no output from the tool.
 
-**Issue 3** When MBR2GPT.exe runs inside an imaging process such as a Microsoft Endpoint Configuration Manager task sequence, an MDT task sequence, or by using a script, you receive the following exit code: 0xC0000135/3221225781.
+**Issue 3** When MBR2GPT.exe runs inside an imaging process such as a Microsoft Endpoint Manager task sequence, an MDT task sequence, or by using a script, you receive the following exit code: 0xC0000135/3221225781.
 
 #### Cause
 
diff --git a/windows/deployment/planning/prepare-your-organization-for-windows-to-go.md b/windows/deployment/planning/prepare-your-organization-for-windows-to-go.md
index 8ab327afb4..99acb38299 100644
--- a/windows/deployment/planning/prepare-your-organization-for-windows-to-go.md
+++ b/windows/deployment/planning/prepare-your-organization-for-windows-to-go.md
@@ -56,7 +56,7 @@ The following scenarios are examples of situations in which Windows To Go worksp
 
 -   **Managed free seating.** The employee is issued a Windows To Go drive that is then used with the host computer assigned to that employee for a given session (this could be a vehicle, workspace, or standalone laptop). When the employee leaves the session, the next time they return they use the same USB flash drive but use a different host computer.
 
--   **Work from home.** In this situation, the Windows To Go drive can be provisioned for employees using various methods including Microsoft Endpoint Configuration Manager or other deployment tools and then distributed to employees. The employee is instructed to boot the Windows To Go drive initially at work, which caches the employee's credentials on the Windows To Go workspace and allows the initial data synchronization between the enterprise network and the Windows To Go workspace. The user can then bring the Windows To Go drive home where it can be used with their home computer, with or without enterprise network connectivity.
+-   **Work from home.** In this situation, the Windows To Go drive can be provisioned for employees using various methods including Microsoft Endpoint Manager or other deployment tools and then distributed to employees. The employee is instructed to boot the Windows To Go drive initially at work, which caches the employee's credentials on the Windows To Go workspace and allows the initial data synchronization between the enterprise network and the Windows To Go workspace. The user can then bring the Windows To Go drive home where it can be used with their home computer, with or without enterprise network connectivity.
 
 -   **Travel lightly.** In this situation you have employees who are moving from site to site, but who always will have access to a compatible host computer on site. Using Windows To Go workspaces allows them to travel without the need to pack their PC.
 
diff --git a/windows/deployment/windows-10-deployment-posters.md b/windows/deployment/windows-10-deployment-posters.md
index 99b5479318..1a47bd0cf9 100644
--- a/windows/deployment/windows-10-deployment-posters.md
+++ b/windows/deployment/windows-10-deployment-posters.md
@@ -1,6 +1,6 @@
 ---
 title: Windows 10 deployment process posters
-description: View and download Windows 10 deployment process flows for Microsoft Endpoint Configuration Manager and Windows Autopilot.
+description: View and download Windows 10 deployment process flows for Microsoft Endpoint Manager and Windows Autopilot.
 ms.reviewer: 
 manager: laurawi
 ms.audience: itpro
diff --git a/windows/deployment/windows-10-deployment-scenarios.md b/windows/deployment/windows-10-deployment-scenarios.md
index 61d5af710d..2146d2fb9f 100644
--- a/windows/deployment/windows-10-deployment-scenarios.md
+++ b/windows/deployment/windows-10-deployment-scenarios.md
@@ -159,7 +159,7 @@ For more information about Windows Autopilot, see [Overview of Windows Autopilot
 
 For existing computers running Windows 7, Windows 8, or Windows 8.1, the recommended path for organizations deploying Windows 10 leverages the Windows installation program (Setup.exe) to perform an in-place upgrade, which automatically preserves all data, settings, applications, and drivers from the existing operating system version. This requires the least IT effort, because there is no need for any complex deployment infrastructure.
 
-Although consumer PCs will be upgraded using Windows Update, organizations want more control over the process. This is accomplished by leveraging tools like Microsoft Endpoint Configuration Manager or the Microsoft Deployment Toolkit to completely automate the upgrade process through simple task sequences.
+Although consumer PCs will be upgraded using Windows Update, organizations want more control over the process. This is accomplished by leveraging tools like Microsoft Endpoint Manager or the Microsoft Deployment Toolkit to completely automate the upgrade process through simple task sequences.
 
 The in-place upgrade process is designed to be extremely reliable, with the ability to automatically roll back to the previous operating system if any issues are encountered during the deployment process, without any IT staff involvement. Rolling back manually can also be done by leveraging the automatically-created recovery information (stored in the Windows.old folder), in case any issues are encountered after the upgrade is finished. The upgrade process is also typically faster than traditional deployments, because applications do not need to be reinstalled as part of the process.
 
diff --git a/windows/deployment/windows-10-poc-sc-config-mgr.md b/windows/deployment/windows-10-poc-sc-config-mgr.md
index 040e519e97..180f2dd30b 100644
--- a/windows/deployment/windows-10-poc-sc-config-mgr.md
+++ b/windows/deployment/windows-10-poc-sc-config-mgr.md
@@ -128,7 +128,7 @@ Topics and procedures in this guide are summarized in the following table. An es
     Stop-Process -Name Explorer
     ```
 
-2. Download [Microsoft Endpoint Configuration Manager and Endpoint Protection](https://www.microsoft.com/evalcenter/evaluate-system-center-configuration-manager-and-endpoint-protection) on SRV1 (download the executable file anywhere on SRV1), double-click the file, enter **C:\configmgr** for **Unzip to folder**, and click **Unzip**. The C:\configmgr directory will be automatically created. Click **OK** and then close the **WinZip Self-Extractor** dialog box when finished.
+2. Download [Microsoft Endpoint Manager and Endpoint Protection](https://www.microsoft.com/evalcenter/evaluate-system-center-configuration-manager-and-endpoint-protection) on SRV1 (download the executable file anywhere on SRV1), double-click the file, enter **C:\configmgr** for **Unzip to folder**, and click **Unzip**. The C:\configmgr directory will be automatically created. Click **OK** and then close the **WinZip Self-Extractor** dialog box when finished.
 
 3. Before starting the installation, verify that WMI is working on SRV1. See the following examples. Verify that **Running** is displayed under **Status** and **True** is displayed next to **TcpTestSucceeded**:
 
@@ -188,7 +188,7 @@ Topics and procedures in this guide are summarized in the following table. An es
     cmd /c C:\configmgr\SMSSETUP\BIN\X64\Setup.exe
     ```
 
-18. Provide the following in the Microsoft Endpoint Configuration Manager Setup Wizard:
+18. Provide the following in the Microsoft Endpoint Manager Setup Wizard:
     - **Before You Begin**: Read the text and click *Next*.
     - **Getting Started**: Choose **Install a Configuration Manager primary site** and select the **Use typical installation options for a stand-alone primary site** checkbox.
         - Click **Yes** in response to the popup window.
@@ -320,7 +320,7 @@ WDSUTIL /Set-Server /AnswerClients:None
 
     > If the internal network adapter, assigned an IP address of 192.168.0.2, is not named "Ethernet" then replace the name "Ethernet" in the previous command with the name of this network adapter. You can review the names of network adapters and the IP addresses assigned to them by typing **ipconfig**.
 
-2. In the Microsoft Endpoint Configuration Manager console, in the **Administration** workspace, click **Distribution Points**.
+2. In the Microsoft Endpoint Manager console, in the **Administration** workspace, click **Distribution Points**.
 3. In the display pane, right-click **SRV1.CONTOSO.COM** and then click **Properties**.
 4. On the PXE tab, select the following settings:
    - **Enable PXE support for clients**. Click **Yes** in the popup that appears.
@@ -770,8 +770,8 @@ In this first deployment scenario, we will deploy Windows 10 using PXE. This sce
 6. The smsts.log file is critical for troubleshooting any installation problems that might be encountered. Depending on the deployment phase, the smsts.log file is created in different locations:
    - X:\Windows\temp\SMSTSLog\smsts.log before disks are formatted.
    - X:\smstslog\smsts.log after disks are formatted.
-   - C:\\_SMSTaskSequence\Logs\Smstslog\smsts.log before the Microsoft Endpoint Configuration Manager client is installed.
-   - C:\Windows\ccm\logs\Smstslog\smsts.log after the Microsoft Endpoint Configuration Manager client is installed.
+   - C:\\_SMSTaskSequence\Logs\Smstslog\smsts.log before the Microsoft Endpoint Manager client is installed.
+   - C:\Windows\ccm\logs\Smstslog\smsts.log after the Microsoft Endpoint Manager client is installed.
    - C:\Windows\ccm\logs\smsts.log when the task sequence is complete.
 
      Note: If a reboot is pending on the client, the reboot will be blocked as long as the command window is open.
diff --git a/windows/deployment/windows-10-poc.md b/windows/deployment/windows-10-poc.md
index 9d18365b39..86d6e33e83 100644
--- a/windows/deployment/windows-10-poc.md
+++ b/windows/deployment/windows-10-poc.md
@@ -785,7 +785,7 @@ The second Windows Server 2012 R2 VHD needs to be expanded in size from 40GB to
 
     **Configure service and user accounts**
 
-    Windows 10 deployment with MDT and Microsoft Endpoint Configuration Manager requires specific accounts to perform some actions. Service accounts will be created to use for these tasks. A user account is also added in the contoso.com domain that can be used for testing purposes. In the test lab environment, passwords are set to never expire.
+    Windows 10 deployment with MDT and Microsoft Endpoint Manager requires specific accounts to perform some actions. Service accounts will be created to use for these tasks. A user account is also added in the contoso.com domain that can be used for testing purposes. In the test lab environment, passwords are set to never expire.
 
     >To keep this test lab relatively simple, we will not create a custom OU structure and set permissions. Required permissions are enabled by adding accounts to the Domain Admins group. To configure these settings in a production environment, see [Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md)
 

From 5e6dddd78d284afa32c138ca83401af320fc5d46 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 21 Dec 2020 15:59:27 +0530
Subject: [PATCH 092/825] updated-4715491

updated Microsoft Endpoint Manager correct product name
---
 .../deployment/planning/windows-10-deprecated-features.md | 2 +-
 .../planning/windows-10-enterprise-faq-itpro.md           | 2 +-
 .../planning/windows-10-infrastructure-requirements.md    | 2 +-
 windows/deployment/update/deploy-updates-configmgr.md     | 2 +-
 .../deployment/update/feature-update-mission-critical.md  | 4 ++--
 windows/deployment/update/index.md                        | 2 +-
 windows/deployment/update/plan-define-strategy.md         | 2 +-
 windows/deployment/update/waas-branchcache.md             | 2 +-
 windows/deployment/update/waas-delivery-optimization.md   | 2 +-
 windows/deployment/update/waas-manage-updates-wsus.md     | 2 +-
 .../deployment/update/waas-optimize-windows-10-updates.md | 6 +++---
 windows/deployment/update/waas-overview.md                | 2 +-
 windows/deployment/update/waas-servicing-differences.md   | 2 +-
 .../update/waas-servicing-strategy-windows-10-updates.md  | 2 +-
 windows/deployment/update/wufb-autoupdate.md              | 2 +-
 windows/deployment/update/wufb-managedrivers.md           | 2 +-
 .../hello-for-business/hello-how-it-works-technology.md   | 2 +-
 .../user-account-control-security-policy-settings.md      | 2 +-
 .../create-wip-policy-using-configmgr.md                  | 2 +-
 .../overview-create-wip-policy-configmgr.md               | 8 ++++----
 .../overview-create-wip-policy.md                         | 2 +-
 .../protect-enterprise-data-using-wip.md                  | 2 +-
 windows/security/threat-protection/TOC.md                 | 2 +-
 .../get-support-for-security-baselines.md                 | 2 +-
 ...re-advanced-scan-types-microsoft-defender-antivirus.md | 4 ++--
 ...ension-file-exclusions-microsoft-defender-antivirus.md | 2 +-
 ...onfigure-notifications-microsoft-defender-antivirus.md | 2 +-
 27 files changed, 34 insertions(+), 34 deletions(-)

diff --git a/windows/deployment/planning/windows-10-deprecated-features.md b/windows/deployment/planning/windows-10-deprecated-features.md
index fa4f088b49..2012a23148 100644
--- a/windows/deployment/planning/windows-10-deprecated-features.md
+++ b/windows/deployment/planning/windows-10-deprecated-features.md
@@ -59,7 +59,7 @@ The features described below are no longer being actively developed, and might b
 |Trusted Platform Module (TPM) Owner Password Management |This functionality within TPM.msc will be migrated to a new user interface.| 1709 |
 |Trusted Platform Module (TPM): TPM.msc and TPM Remote Management  | To be replaced by a new user interface in a future release. | 1709 |
 |Trusted Platform Module (TPM) Remote Management |This functionality within TPM.msc will be migrated to a new user interface. | 1709 |
-|Windows Hello for Business deployment that uses Microsoft Endpoint Configuration Manager   |Windows Server 2016 Active Directory Federation Services – Registration Authority (ADFS RA) deployment is simpler and provides a better user experience and a more deterministic certificate enrollment experience. | 1709 |
+|Windows Hello for Business deployment that uses Microsoft Endpoint Manager   |Windows Server 2016 Active Directory Federation Services – Registration Authority (ADFS RA) deployment is simpler and provides a better user experience and a more deterministic certificate enrollment experience. | 1709 |
 |Windows PowerShell 2.0  | Applications and components should be migrated to PowerShell 5.0+. | 1709 |
 |Apndatabase.xml | Apndatabase.xml is being replaced by the COSA database. Therefore, some constructs will no longer function. This includes Hardware ID, incoming SMS messaging rules in mobile apps, a list of privileged apps in mobile apps, autoconnect order, APN parser, and CDMAProvider ID. | 1703 |
 |Tile Data Layer | The [Tile Data Layer](https://docs.microsoft.com/windows/configuration/start-layout-troubleshoot#symptom-start-menu-issues-with-tile-data-layer-corruption) database stopped development in Windows 10, version 1703. | 1703 |
diff --git a/windows/deployment/planning/windows-10-enterprise-faq-itpro.md b/windows/deployment/planning/windows-10-enterprise-faq-itpro.md
index 546b8de3af..b48649cf32 100644
--- a/windows/deployment/planning/windows-10-enterprise-faq-itpro.md
+++ b/windows/deployment/planning/windows-10-enterprise-faq-itpro.md
@@ -64,7 +64,7 @@ Many existing Win32 and Win64 applications already run reliably on Windows 10 wi
 
 Updated versions of Microsoft deployment tools, including MDT, Configuration Manager, and the Windows Assessment and Deployment Kit (Windows ADK) have been released to support Windows 10.
 - [MDT](https://www.microsoft.com/mdt) is Microsoft’s recommended collection of tools, processes, and guidance for automating desktop and server deployment.
-- Configuration Manager simplifies the deployment and management of Windows 10. If you are not currently using Configuration Manager, you can download a free 180-day trial of [Microsoft Endpoint Configuration Manager and Endpoint Protection (current branch)](https://www.microsoft.com/evalcenter/evaluate-system-center-configuration-manager-and-endpoint-protection) from the TechNet Evaluation Center.
+- Configuration Manager simplifies the deployment and management of Windows 10. If you are not currently using Configuration Manager, you can download a free 180-day trial of [Microsoft Endpoint Manager and Endpoint Protection (current branch)](https://www.microsoft.com/evalcenter/evaluate-system-center-configuration-manager-and-endpoint-protection) from the TechNet Evaluation Center.
 - The [Windows ADK](https://developer.microsoft.com/windows/hardware/windows-assessment-deployment-kit#winADK) has tools that allow you to customize Windows images for large-scale deployment, and test system quality and performance. You can download the latest version of the Windows ADK for Windows 10 from the Hardware Dev Center.
 
 ### Can I upgrade computers from Windows 7 or Windows 8.1 without deploying a new image?
diff --git a/windows/deployment/planning/windows-10-infrastructure-requirements.md b/windows/deployment/planning/windows-10-infrastructure-requirements.md
index 7ca82acf70..ccc6b27193 100644
--- a/windows/deployment/planning/windows-10-infrastructure-requirements.md
+++ b/windows/deployment/planning/windows-10-infrastructure-requirements.md
@@ -40,7 +40,7 @@ The latest version of the Microsoft Deployment Toolkit (MDT) is available for do
 
 For Configuration Manager, Windows 10 version specific support is offered with [various releases](https://docs.microsoft.com/mem/configmgr/core/plan-design/configs/support-for-windows-10).
 
-For more details about Microsoft Endpoint Configuration Manager support for Windows 10, see [Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](../deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md).
+For more details about Microsoft Endpoint Manager support for Windows 10, see [Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](../deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md).
 
 ## Management tools
 
diff --git a/windows/deployment/update/deploy-updates-configmgr.md b/windows/deployment/update/deploy-updates-configmgr.md
index 202b4531b9..1706180e52 100644
--- a/windows/deployment/update/deploy-updates-configmgr.md
+++ b/windows/deployment/update/deploy-updates-configmgr.md
@@ -17,4 +17,4 @@ ms.topic: article
 
 - Windows 10
 
-See the Microsoft Endpoint Configuration Manager [documentation](https://docs.microsoft.com/mem/configmgr/osd/deploy-use/manage-windows-as-a-service) for details about using Configuration Manager to deploy and manage Windows 10 updates.
\ No newline at end of file
+See the Microsoft Endpoint Manager [documentation](https://docs.microsoft.com/mem/configmgr/osd/deploy-use/manage-windows-as-a-service) for details about using Configuration Manager to deploy and manage Windows 10 updates.
\ No newline at end of file
diff --git a/windows/deployment/update/feature-update-mission-critical.md b/windows/deployment/update/feature-update-mission-critical.md
index c44569853e..5c4c8987f1 100644
--- a/windows/deployment/update/feature-update-mission-critical.md
+++ b/windows/deployment/update/feature-update-mission-critical.md
@@ -1,6 +1,6 @@
 ---
 title: Best practices and recommendations for deploying Windows 10 Feature updates to mission-critical devices
-description: Learn how to use the Microsoft Endpoint Configuration Manager (current branch) software updates feature to deploy Windows 10 semi-annual feature updates.
+description: Learn how to use the Microsoft Endpoint Manager (current branch) software updates feature to deploy Windows 10 semi-annual feature updates.
 ms.prod: w10
 ms.mktglfcycl: manage
 audience: itpro
@@ -19,7 +19,7 @@ ms.custom: seo-marvel-apr2020
 
 **Applies to**: Windows 10
 
-Managing an environment with devices that provide mission critical services 24 hours a day, 7 days a week, can present challenges in keeping these devices current with Windows 10 feature updates. The processes that you use to keep regular devices current with Windows 10 feature updates, often aren't the most effective to service mission critical devices. This whitepaper will focus on the recommended approach of using the Microsoft Endpoint Configuration Manager (current branch) software updates feature to deploy Windows 10 semi-annual feature updates. 
+Managing an environment with devices that provide mission critical services 24 hours a day, 7 days a week, can present challenges in keeping these devices current with Windows 10 feature updates. The processes that you use to keep regular devices current with Windows 10 feature updates, often aren't the most effective to service mission critical devices. This whitepaper will focus on the recommended approach of using the Microsoft Endpoint Manager (current branch) software updates feature to deploy Windows 10 semi-annual feature updates. 
 
 For simplicity, we will outline the steps to deploy a feature update manually. If you prefer an automated approach, see [Manage Windows as a service using Configuration Manager](https://docs.microsoft.com/configmgr/osd/deploy-use/manage-windows-as-a-service). 
 
diff --git a/windows/deployment/update/index.md b/windows/deployment/update/index.md
index 6c8417f572..236fb16910 100644
--- a/windows/deployment/update/index.md
+++ b/windows/deployment/update/index.md
@@ -47,6 +47,6 @@ Windows as a service provides a new way to think about building, deploying, and
 | [Windows Insider Program for Business](waas-windows-insider-for-business.md) | Explains how the Windows Insider Program for Business works and how to become an insider. |
 
 >[!TIP]
->Windows servicing is changing, but for disaster recovery scenarios and bare-metal deployments of Windows 10, you still can use traditional imaging software such as Microsoft Endpoint Configuration Manager or the Microsoft Deployment Toolkit. Using these tools to deploy Windows 10 images is similar to deploying previous versions of Windows.
+>Windows servicing is changing, but for disaster recovery scenarios and bare-metal deployments of Windows 10, you still can use traditional imaging software such as Microsoft Endpoint Manager or the Microsoft Deployment Toolkit. Using these tools to deploy Windows 10 images is similar to deploying previous versions of Windows.
 >With each release of a new feature update for CB, Microsoft makes available new .iso files for use in updating your custom images. Each Windows 10 build has a finite servicing lifetime, so it’s important that images stay up to date with the latest build. For detailed information about how to deploy Windows 10 to bare-metal machines or to upgrade to Windows 10 from previous builds of Windows, see [Prepare for Zero Touch Installation of Windows 10 with Configuration Manager](../deploy-windows-cm/prepare-for-zero-touch-installation-of-windows-10-with-configuration-manager.md). Additionally, Windows 10 clients can move from any supported version of Windows 10 (i.e. Version 1511) to the latest version directly (i.e 1709).
 
diff --git a/windows/deployment/update/plan-define-strategy.md b/windows/deployment/update/plan-define-strategy.md
index fc033d13bd..bb67966504 100644
--- a/windows/deployment/update/plan-define-strategy.md
+++ b/windows/deployment/update/plan-define-strategy.md
@@ -24,7 +24,7 @@ Though we encourage you to deploy every available release and maintain a fast ca
 You can use a calendar approach for either a faster twice-per-year cadence or an annual cadence. Depending on company size, installing Windows 10 feature updates less often than once annually risks devices going out of service and becoming vulnerable to security threats, because they will stop receiving the monthly security updates.
 
 ### Annual
-Here's a calendar showing an example schedule that applies one Windows 10 feature update per calendar year, aligned with Microsoft Endpoint Configuration Manager and Microsoft 365 Apps release cycles:
+Here's a calendar showing an example schedule that applies one Windows 10 feature update per calendar year, aligned with Microsoft Endpoint Manager and Microsoft 365 Apps release cycles:
 
 [ ![Calendar showing an annual update cadence](images/annual-calendar.png) ](images/annual-calendar.png#lightbox)
 
diff --git a/windows/deployment/update/waas-branchcache.md b/windows/deployment/update/waas-branchcache.md
index f85076eabc..597bfadf2a 100644
--- a/windows/deployment/update/waas-branchcache.md
+++ b/windows/deployment/update/waas-branchcache.md
@@ -21,7 +21,7 @@ ms.custom: seo-marvel-apr2020
 
 > **Looking for consumer information?** See [Windows Update: FAQ](https://support.microsoft.com/help/12373/windows-update-faq) 
 
-BranchCache is a bandwidth-optimization feature that has been available since the Windows Server 2008 R2 and Windows 7 operating systems. Each client has a cache and acts as an alternate source for content that devices on its own network request. Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager can use BranchCache to optimize network bandwidth during update deployment, and it's easy to configure for either of them. BranchCache has two operating modes: Distributed Cache mode and Hosted Cache mode. 
+BranchCache is a bandwidth-optimization feature that has been available since the Windows Server 2008 R2 and Windows 7 operating systems. Each client has a cache and acts as an alternate source for content that devices on its own network request. Windows Server Update Services (WSUS) and Microsoft Endpoint Manager can use BranchCache to optimize network bandwidth during update deployment, and it's easy to configure for either of them. BranchCache has two operating modes: Distributed Cache mode and Hosted Cache mode. 
 
 - Distributed Cache mode operates like the [Delivery Optimization](waas-delivery-optimization.md) feature in Windows 10: each client contains a cached version of the BranchCache-enabled files it requests and acts as a distributed cache for other clients requesting that same file. 
 
diff --git a/windows/deployment/update/waas-delivery-optimization.md b/windows/deployment/update/waas-delivery-optimization.md
index 02dd9f8971..de5f866595 100644
--- a/windows/deployment/update/waas-delivery-optimization.md
+++ b/windows/deployment/update/waas-delivery-optimization.md
@@ -25,7 +25,7 @@ ms.custom: seo-marvel-apr2020
 
 > **Looking for consumer information?** See [Windows Update: FAQ](https://support.microsoft.com/help/12373/windows-update-faq) 
 
-Windows updates, upgrades, and applications can contain packages with very large files. Downloading and distributing updates can consume quite a bit of network resources on the devices receiving them. You can use Delivery Optimization to reduce bandwidth consumption by sharing the work of downloading these packages among multiple devices in your deployment. Delivery Optimization can accomplish this because it is a self-organizing distributed cache that allows clients to download those packages from alternate sources (such as other peers on the network) in addition to the traditional Internet-based servers. You can use Delivery Optimization in conjunction with Windows Update, Windows Server Update Services (WSUS), Windows Update for Business, or Microsoft Endpoint Configuration Manager (when installation of Express Updates is enabled).  
+Windows updates, upgrades, and applications can contain packages with very large files. Downloading and distributing updates can consume quite a bit of network resources on the devices receiving them. You can use Delivery Optimization to reduce bandwidth consumption by sharing the work of downloading these packages among multiple devices in your deployment. Delivery Optimization can accomplish this because it is a self-organizing distributed cache that allows clients to download those packages from alternate sources (such as other peers on the network) in addition to the traditional Internet-based servers. You can use Delivery Optimization in conjunction with Windows Update, Windows Server Update Services (WSUS), Windows Update for Business, or Microsoft Endpoint Manager (when installation of Express Updates is enabled).  
 
 Delivery Optimization is a cloud-managed solution. Access to the Delivery Optimization cloud services is a requirement. This means that in order to use the peer-to-peer functionality of Delivery Optimization, devices must have access to the internet.
 
diff --git a/windows/deployment/update/waas-manage-updates-wsus.md b/windows/deployment/update/waas-manage-updates-wsus.md
index 9f7d882387..01bfeb4954 100644
--- a/windows/deployment/update/waas-manage-updates-wsus.md
+++ b/windows/deployment/update/waas-manage-updates-wsus.md
@@ -24,7 +24,7 @@ ms.topic: article
 >Due to [naming changes](waas-overview.md#naming-changes), older terms like CB and CBB might still be displayed in some of our products, such as in Group Policy or the registry. If you encounter these terms, "CB" refers to the Semi-Annual Channel (Targeted)--which is no longer used--while "CBB" refers to the Semi-Annual Channel.
 
 
-WSUS is a Windows Server role available in the Windows Server operating systems. It provides a single hub for Windows updates within an organization. WSUS allows companies not only to defer updates but also to selectively approve them, choose when they’re delivered, and determine which individual devices or groups of devices receive them. WSUS provides additional control over Windows Update for Business but does not provide all the scheduling options and deployment flexibility that Microsoft Endpoint Configuration Manager provides.
+WSUS is a Windows Server role available in the Windows Server operating systems. It provides a single hub for Windows updates within an organization. WSUS allows companies not only to defer updates but also to selectively approve them, choose when they’re delivered, and determine which individual devices or groups of devices receive them. WSUS provides additional control over Windows Update for Business but does not provide all the scheduling options and deployment flexibility that Microsoft Endpoint Manager provides.
 
 When you choose WSUS as your source for Windows updates, you use Group Policy to point Windows 10 client devices to the WSUS server for their updates. From there, updates are periodically downloaded to the WSUS server and managed, approved, and deployed through the WSUS administration console or Group Policy, streamlining enterprise update management. If you’re currently using WSUS to manage Windows updates in your environment, you can continue to do so in Windows 10. 
 
diff --git a/windows/deployment/update/waas-optimize-windows-10-updates.md b/windows/deployment/update/waas-optimize-windows-10-updates.md
index 1e0f4be7b7..c0b17802fb 100644
--- a/windows/deployment/update/waas-optimize-windows-10-updates.md
+++ b/windows/deployment/update/waas-optimize-windows-10-updates.md
@@ -33,7 +33,7 @@ Two methods of peer-to-peer content distribution are available in Windows 10.
     >[!NOTE]
     >Full BranchCache functionality is supported in Windows 10 Enterprise and Education; Windows 10 Pro supports some BranchCache functionality, including BITS transfers used for servicing operations.
 
-    Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager can use BranchCache to allow peers to source content from each other versus always having to contact a server. Using BranchCache, files are cached on each individual client, and other clients can retrieve them as needed. This approach distributes the cache rather than having a single point of retrieval, saving a significant amount of bandwidth while drastically reducing the time that it takes for clients to receive the requested content.
+    Windows Server Update Services (WSUS) and Microsoft Endpoint Manager can use BranchCache to allow peers to source content from each other versus always having to contact a server. Using BranchCache, files are cached on each individual client, and other clients can retrieve them as needed. This approach distributes the cache rather than having a single point of retrieval, saving a significant amount of bandwidth while drastically reducing the time that it takes for clients to receive the requested content.
 
 </br></br>
 
@@ -43,9 +43,9 @@ Two methods of peer-to-peer content distribution are available in Windows 10.
 | BranchCache | ![no](images/crossmark.png) | ![no](images/crossmark.png) |![yes](images/checkmark.png) | ![yes](images/checkmark.png) |
 
 > [!NOTE]
-> Microsoft Endpoint Configuration Manager has an additional feature called Client Peer Cache that allows peer-to-peer content sharing between clients you use Microsoft Endpoint Configuration Manager to manage, in the same Configuration Manager boundary Group. For more information, see [Client Peer Cache](https://docs.microsoft.com/configmgr/core/plan-design/hierarchy/client-peer-cache).
+> Microsoft Endpoint Manager has an additional feature called Client Peer Cache that allows peer-to-peer content sharing between clients you use Microsoft Endpoint Manager to manage, in the same Configuration Manager boundary Group. For more information, see [Client Peer Cache](https://docs.microsoft.com/configmgr/core/plan-design/hierarchy/client-peer-cache).
 >
-> In addition to Client Peer Cache, similar functionality is available in the Windows Preinstallation Environment (Windows PE) for imaging-related content. Using this technology, clients imaging with Microsoft Endpoint Configuration Manager task sequences can source operating system images, driver packages, boot images, packages, and programs from peers instead of distribution points. For detailed information about how Windows PE Peer Cache works and how to configure it, see [Prepare Windows PE peer cache to reduce WAN traffic in Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr/osd/get-started/prepare-windows-pe-peer-cache-to-reduce-wan-traffic).
+> In addition to Client Peer Cache, similar functionality is available in the Windows Preinstallation Environment (Windows PE) for imaging-related content. Using this technology, clients imaging with Microsoft Endpoint Manager task sequences can source operating system images, driver packages, boot images, packages, and programs from peers instead of distribution points. For detailed information about how Windows PE Peer Cache works and how to configure it, see [Prepare Windows PE peer cache to reduce WAN traffic in Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr/osd/get-started/prepare-windows-pe-peer-cache-to-reduce-wan-traffic).
 
 ## Express update delivery
 
diff --git a/windows/deployment/update/waas-overview.md b/windows/deployment/update/waas-overview.md
index a656c096f6..76e17626d7 100644
--- a/windows/deployment/update/waas-overview.md
+++ b/windows/deployment/update/waas-overview.md
@@ -165,7 +165,7 @@ There are many tools with which IT pros can service Windows as a service. Each o
 - **Windows Server Update Services (WSUS)** provides extensive control over Windows 10 updates and is natively available in the Windows Server operating system. In addition to the ability to defer updates, organizations can add an approval layer for updates and choose to deploy them to specific computers or groups of computers whenever ready. 
 - **Microsoft Endpoint Configuration Manager** provides the greatest control over servicing Windows as a service. IT pros can defer updates, approve them, and have multiple options for targeting deployments and managing bandwidth usage and deployment times. 
 
-With all these options, which an organization chooses depends on the resources, staff, and expertise its IT organization already has. For example, if IT already uses Microsoft Endpoint Configuration Manager to manage Windows updates, it can continue to use it. Similarly, if IT is using WSUS, it can continue to use that. For a consolidated look at the benefits of each tool, see Table 1.
+With all these options, which an organization chooses depends on the resources, staff, and expertise its IT organization already has. For example, if IT already uses Microsoft Endpoint Manager to manage Windows updates, it can continue to use it. Similarly, if IT is using WSUS, it can continue to use that. For a consolidated look at the benefits of each tool, see Table 1.
 
 **Table 1**
 
diff --git a/windows/deployment/update/waas-servicing-differences.md b/windows/deployment/update/waas-servicing-differences.md
index e185b2eb5a..d06e1da91b 100644
--- a/windows/deployment/update/waas-servicing-differences.md
+++ b/windows/deployment/update/waas-servicing-differences.md
@@ -87,7 +87,7 @@ Moving to the cumulative model for legacy OS versions continues to improve predi
 Lastly, the cumulative update model directly impacts the public Preview releases offered in the 3rd and/or 4th weeks of the month. Update Tuesday, also referred to as the "B" week release occurs on the second Tuesday of the month. It is always a required security update across all operating systems. In addition to this monthly release, Windows also releases non-security update "previews" targeting the 3rd (C) and the 4th (D) weeks of the month. These preview releases include that month's B-release plus a set of non-security updates for testing and validation as a cumulative package. We recommend IT Administrators uses the C/D previews to test the update in their environments. Any issues identified with the updates in the C/D releases are identified and then fixed or removed, prior to being rolled up in to the next month's B release package together with new security updates. Security-only Packages are not part of the C/D preview program.
 
 > [!NOTE]
-> Only preview updates for the most recent release of Windows 10 are published to Windows Server Update Services (WSUS). For customers using the WSUS channel, and products such as Microsoft Endpoint Configuration Manager that rely on it, will not see preview updates for older versions of Windows 10.
+> Only preview updates for the most recent release of Windows 10 are published to Windows Server Update Services (WSUS). For customers using the WSUS channel, and products such as Microsoft Endpoint Manager that rely on it, will not see preview updates for older versions of Windows 10.
 
 > [!NOTE]
 > Preview updates for Windows 10 are not named differently than their LCU counterparts and do not contain the word 'Preview'. They can be identified by their release date (C or D week) and their classification as non-security updates.
diff --git a/windows/deployment/update/waas-servicing-strategy-windows-10-updates.md b/windows/deployment/update/waas-servicing-strategy-windows-10-updates.md
index e4dd1ed582..39038a810e 100644
--- a/windows/deployment/update/waas-servicing-strategy-windows-10-updates.md
+++ b/windows/deployment/update/waas-servicing-strategy-windows-10-updates.md
@@ -33,7 +33,7 @@ Windows 10 spreads the traditional deployment effort of a Windows upgrade, which
 - **Identify excluded devices.** For some organizations, special-purpose devices such as those used to control factory or medical equipment or run ATMs require a stricter, less frequent feature update cycle than the Semi-Annual Channel can offer. For those machines, you must install Windows 10 Enterprise LTSB to avoid feature updates for up to 10 years. Identify these devices, and separate them from the phased deployment and servicing cycles to help remove confusion for your administrators and ensure that devices are handled correctly. 
 - **Recruit volunteers.** The purpose of testing a deployment is to receive feedback. One effective way to recruit pilot users is to request volunteers. When doing so, clearly state that you’re looking for feedback rather than people to just “try it out” and that there could be occasional issues involved with accepting feature updates right away. With Windows as a service, the expectation is that there should be few issues, but if an issue does arise, you want testers to let you know as soon as possible. When considering whom to recruit for pilot groups, be sure to include members who provide the broadest set of applications and devices to validate the largest number of apps and devices possible.
 - **Update Group Policy.** Each feature update includes new group policies to manage new features. If you use Group Policy to manage devices, the Group Policy Admin for the Active Directory domain will need to download a .admx package and copy it to their [Central Store](https://support.microsoft.com/help/929841/how-to-create-the-central-store-for-group-policy-administrative-templa) (or to the [PolicyDefinitions](https://msdn.microsoft.com/library/bb530196.aspx) directory in the SYSVOL folder of a domain controller if not using a Central Store). Always manage new group polices from the version of Windows 10 they shipped with by using the Remote Server Administration Tools. The ADMX download package is created at the end of each development cycle and then posted for download. To find the ADMX download package for a given Windows build, search for “ADMX download for Windows build xxxx”. For details about Group Policy management, see [How to create and manage the Central Store for Group Policy Administrative Templates in Windows](https://support.microsoft.com/help/3087759/how-to-create-and-manage-the-central-store-for-group-policy-administra)
-- **Choose a servicing tool.** Decide which product you’ll use to manage the Windows updates in your environment. If you’re currently using Windows Server Update Services (WSUS) or Microsoft Endpoint Configuration Manager to manage your Windows updates, you can continue using those products to manage Windows 10 updates. Alternatively, you can use Windows Update for Business. In addition to which product you’ll use, consider how you’ll deliver the updates. With Windows 10, multiple peer-to-peer options are available to make update distribution faster. For a comparison of tools, see [Servicing tools](waas-overview.md#servicing-tools).
+- **Choose a servicing tool.** Decide which product you’ll use to manage the Windows updates in your environment. If you’re currently using Windows Server Update Services (WSUS) or Microsoft Endpoint Manager to manage your Windows updates, you can continue using those products to manage Windows 10 updates. Alternatively, you can use Windows Update for Business. In addition to which product you’ll use, consider how you’ll deliver the updates. With Windows 10, multiple peer-to-peer options are available to make update distribution faster. For a comparison of tools, see [Servicing tools](waas-overview.md#servicing-tools).
 - **Prioritize applications.** First, create an application portfolio. This list should include everything installed in your organization and any webpages your organization hosts. Next, prioritize this list to identify those that are the most business critical. Because the expectation is that application compatibility with Windows 10 will be high, only the most business critical applications should be tested before the pilot phase; everything else can be tested afterwards. For more information about identifying compatibility issues withe applications, see [Manage Windows upgrades with Upgrade Analytics](../upgrade/manage-windows-upgrades-with-upgrade-readiness.md). 
 
 > [!NOTE]
diff --git a/windows/deployment/update/wufb-autoupdate.md b/windows/deployment/update/wufb-autoupdate.md
index 0fc1330492..055d3b723c 100644
--- a/windows/deployment/update/wufb-autoupdate.md
+++ b/windows/deployment/update/wufb-autoupdate.md
@@ -25,7 +25,7 @@ Automatic Update governs the "behind the scenes" download and installation proce
 |-|-|
 |Configure Automatic Updates|Governs the installation activity that happens in the background. This allows you to configure the installation to happen during the [maintenance window](https://docs.microsoft.com/configmgr/core/clients/manage/collections/use-maintenance-windows). Also, you can specify an installation time where the device will also try to install the latest packages. You can also pick a certain day and or week.|
 |Automatic Update Detection Frequency|Lets you set the scan frequency the device will use to connect to Windows Update to see if there is any available content. Default is 22 hours, but you can increase or decrease the frequency. Keep in mind a desktop computer may need to scan less frequently than laptops, which can have intermittent internet connection.|
-|Specify Intranet Microsoft Update Service Location|Used for Windows Server Update Services or Microsoft Endpoint Configuration Manager users who want to install custom packages that are not offered through Windows Update.|
+|Specify Intranet Microsoft Update Service Location|Used for Windows Server Update Services or Microsoft Endpoint Manager users who want to install custom packages that are not offered through Windows Update.|
 |Do not connect to any Windows Update Internet locations <br>Required for Dual Scan|Prevents access to Windows Update.|
 
 ## Suggested configuration
diff --git a/windows/deployment/update/wufb-managedrivers.md b/windows/deployment/update/wufb-managedrivers.md
index 56f956aae8..e0a6e9e21f 100644
--- a/windows/deployment/update/wufb-managedrivers.md
+++ b/windows/deployment/update/wufb-managedrivers.md
@@ -39,7 +39,7 @@ You can use an on-premises catalog, like WSUS, to deploy 3rd Party patches and u
 
 |Policy| Description |
 |-|-|
-|Specify Intranet Microsoft Update Service Location| Used for WSUS/Microsoft Endpoint Configuration Manager customers who want to install custom packages that are not offered through Windows Update.|
+|Specify Intranet Microsoft Update Service Location| Used for WSUS/Microsoft Endpoint Manager customers who want to install custom packages that are not offered through Windows Update.|
 
 ### Suggested configuration 
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-how-it-works-technology.md b/windows/security/identity-protection/hello-for-business/hello-how-it-works-technology.md
index 72cba7a12e..cf3fb265d2 100644
--- a/windows/security/identity-protection/hello-for-business/hello-how-it-works-technology.md
+++ b/windows/security/identity-protection/hello-for-business/hello-how-it-works-technology.md
@@ -162,7 +162,7 @@ Primarily for large enterprise organizations with more complex authentication re
 For more than a decade, many organizations have used the domain join to their on-premises Active Directory to enable:
 - IT departments to manage work-owned devices from a central location.
 - Users to sign in to their devices with their Active Directory work or school accounts. 
-Typically, organizations with an on-premises footprint rely on imaging methods to provision devices, and they often use Microsoft Endpoint Configuration Manager or group policy (GP) to manage them.
+Typically, organizations with an on-premises footprint rely on imaging methods to provision devices, and they often use or group policy (GP) to manage them.
 
 If your environment has an on-premises AD footprint and you also want benefit from the capabilities provided by Azure Active Directory, you can implement hybrid Azure AD joined devices. These are devices that are both, joined to your on-premises Active Directory and your Azure Active Directory.
 
diff --git a/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md b/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
index 9cb4e34436..e366385a91 100644
--- a/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
+++ b/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
@@ -65,7 +65,7 @@ This policy setting controls the behavior of the elevation prompt for standard u
 This policy setting controls the behavior of application installation detection for the computer.
 
 -   **Enabled** (Default) When an app installation package is detected that requires elevation of privilege, the user is prompted to enter an administrative user name and password. If the user enters valid credentials, the operation continues with the applicable privilege.
--   **Disabled** App installation packages are not detected and prompted for elevation. Enterprises that are running standard user desktops and use delegated installation technologies, such as Group Policy or Microsoft Endpoint Configuration Manager should disable this policy setting. In this case, installer detection is unnecessary.
+-   **Disabled** App installation packages are not detected and prompted for elevation. Enterprises that are running standard user desktops and use delegated installation technologies, such as Group Policy or Microsoft Endpoint Manager should disable this policy setting. In this case, installer detection is unnecessary.
 
 ## User Account Control: Only elevate executable files that are signed and validated
 
diff --git a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
index 49a57283b7..1f7a0cbc20 100644
--- a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
+++ b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
@@ -1,5 +1,5 @@
 ---
-title: Create and deploy a Windows Information Protection (WIP) policy using Microsoft Endpoint Configuration Manager (Windows 10)
+title: Create and deploy a Windows Information Protection (WIP) policy using Microsoft Endpoint Manager (Windows 10)
 description: Use Configuration Manager to make & deploy a Windows Information Protection (WIP) policy. Choose protected apps, WIP-protection level, and find enterprise data.
 ms.assetid: 85b99c20-1319-4aa3-8635-c1a87b244529
 ms.reviewer: 
diff --git a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
index a1e662c65e..503c15a18d 100644
--- a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
+++ b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
@@ -1,6 +1,6 @@
 ---
-title: Create a Windows Information Protection (WIP) policy using Microsoft Endpoint Configuration Manager (Windows 10)
-description: Microsoft Endpoint Configuration Manager helps you create and deploy your enterprise data protection (WIP) policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network.
+title: Create a Windows Information Protection (WIP) policy using Microsoft Endpoint Manager (Windows 10)
+description: Microsoft Endpoint Manager helps you create and deploy your enterprise data protection (WIP) policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network.
 ms.assetid: d2059e74-94bd-4e54-ab59-1a7b9b52bdc6
 ms.reviewer: 
 ms.prod: w10
@@ -23,11 +23,11 @@ ms.date: 02/26/2019
 - Windows 10, version 1607 and later
 - Windows 10 Mobile, version 1607 and later
 
-Microsoft Endpoint Configuration Manager helps you create and deploy your enterprise data protection (WIP) policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network.
+Microsoft Endpoint Manager helps you create and deploy your enterprise data protection (WIP) policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network.
 
 ## In this section
 |Topic |Description |
 |------|------------|
-|[Create and deploy a Windows Information Protection (WIP) policy using Microsoft Endpoint Configuration Manager](create-wip-policy-using-configmgr.md) |Microsoft Endpoint Configuration Manager helps you create and deploy your WIP policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network. |
+|[Create and deploy a Windows Information Protection (WIP) policy using Microsoft Endpoint Configuration Manager](create-wip-policy-using-configmgr.md) |Microsoft Endpoint Manager helps you create and deploy your WIP policy, including letting you choose your protected apps, your WIP-protection level, and how to find enterprise data on the network. |
 |[Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate](create-and-verify-an-efs-dra-certificate.md) |Steps to create, verify, and perform a quick recovery using a Encrypting File System (EFS) Data Recovery Agent (DRA) certificate. |
 |[Determine the Enterprise Context of an app running in Windows Information Protection (WIP)](wip-app-enterprise-context.md) |Use the Task Manager to determine whether an app is considered work, personal or exempt by Windows Information Protection (WIP). |
diff --git a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
index e40c2405a1..76c595ade1 100644
--- a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
+++ b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
@@ -1,6 +1,6 @@
 ---
 title: Create a Windows Information Protection (WIP) policy using Microsoft Intune (Windows 10)
-description: Microsoft Intune and Microsoft Endpoint Configuration Manager helps you create and deploy your enterprise data protection (WIP) policy.
+description: Microsoft Intune and Microsoft Endpoint Manager helps you create and deploy your enterprise data protection (WIP) policy.
 ms.assetid: d2059e74-94bd-4e54-ab59-1a7b9b52bdc6
 ms.reviewer: 
 ms.prod: w10
diff --git a/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md b/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
index 9af557f950..3d11ab50ae 100644
--- a/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
+++ b/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
@@ -110,7 +110,7 @@ WIP is the mobile application management (MAM) mechanism on Windows 10. WIP give
 -   **Remove access to enterprise data from enterprise-protected devices.** WIP gives admins the ability to revoke enterprise data from one or many MDM-enrolled devices, while leaving personal data alone. This is a benefit when an employee leaves your company, or in the case of a stolen device. After determining that the data access needs to be removed, you can use Microsoft Intune to unenroll the device so when it connects to the network, the user's encryption key for the device is revoked and the enterprise data becomes unreadable.
 
     >[!NOTE]
-    >For management of Surface devices it is recommended that you use the Current Branch of Microsoft Endpoint Configuration Manager.<br>Microsoft Endpoint Configuration Manager also allows you to revoke enterprise data. However, it does it by performing a factory reset of the device.
+    >For management of Surface devices it is recommended that you use the Current Branch of Microsoft Endpoint Configuration Manager.<br>Microsoft Endpoint Manager also allows you to revoke enterprise data. However, it does it by performing a factory reset of the device.
 
 ## How WIP works
 WIP helps address your everyday challenges in the enterprise. Including:
diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 79487e7cc2..94f5cf96b9 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -170,7 +170,7 @@
 
 ##### [Manage next-generation protection in your business]()
 ###### [Management overview](microsoft-defender-antivirus/configuration-management-reference-microsoft-defender-antivirus.md)
-###### [Use Microsoft Intune and Microsoft Endpoint Configuration Manager to manage next-generation protection](microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md)
+###### [Use Microsoft Intune and Microsoft Endpoint Manager to manage next-generation protection](microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md)
 ###### [Use Group Policy settings to manage next-generation protection](microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus.md)
 ###### [Use PowerShell cmdlets to manage next-generation protection](microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md)
 ###### [Use Windows Management Instrumentation (WMI) to manage next-generation protection](microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md)
diff --git a/windows/security/threat-protection/get-support-for-security-baselines.md b/windows/security/threat-protection/get-support-for-security-baselines.md
index 81f5a796f3..c8b8c76461 100644
--- a/windows/security/threat-protection/get-support-for-security-baselines.md
+++ b/windows/security/threat-protection/get-support-for-security-baselines.md
@@ -40,7 +40,7 @@ The toolkit supports formats created by the Windows GPO backup feature (.pol, .i
 
 Not yet. PowerShell-based DSC is rapidly gaining popularity, and more DSC tools are coming online to convert GPOs and DSC and to validate system configuration. We are currently developing a tool to provide customers with these features.
 
-**Does SCT support the creation of Microsoft Endpoint Configuration Manager DCM packs?**
+**Does SCT support the creation of Microsoft Endpoint Manager DCM packs?**
 
 No. A potential alternative is Desired State Configuration (DSC), a feature of the [Windows Management Framework](https://www.microsoft.com/download/details.aspx?id=40855). A tool that supports conversion of GPO backups to DSC format can be found [here](https://github.com/Microsoft/BaselineManagement).
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
index 5d559f0d89..6d63b6ef5a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
@@ -29,9 +29,9 @@ manager: dansimp
 
 See [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure) and [Microsoft Defender Antivirus device restriction settings for Windows 10 in Intune](https://docs.microsoft.com/intune/device-restrictions-windows-10#microsoft-defender-antivirus) for more details.
 
-## Use Microsoft Endpoint Configuration Manager to configure scanning options
+## Use Microsoft Endpoint Manager to configure scanning options
 
-See [How to create and deploy antimalware policies: Scan settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#scan-settings) for details on configuring Microsoft Endpoint Configuration Manager (current branch).
+See [How to create and deploy antimalware policies: Scan settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#scan-settings) for details on configuring Microsoft Endpoint Manager (current branch).
 
 ## Use Group Policy to configure scanning options
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 88a2e71534..5efb9411b6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -78,7 +78,7 @@ See the following articles:
 
 ### Use Configuration Manager to configure file name, folder, or file extension exclusions
 
-See [How to create and deploy antimalware policies: Exclusion settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#exclusion-settings) for details on configuring Microsoft Endpoint Configuration Manager (current branch).
+See [How to create and deploy antimalware policies: Exclusion settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#exclusion-settings) for details on configuring Microsoft Endpoint Manager (current branch).
 
 ### Use Group Policy to configure folder or file extension exclusions
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
index 609661e280..ac51c3d326 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
@@ -76,7 +76,7 @@ You can use Group Policy to:
 Hiding notifications can be useful in situations where you can't hide the entire Microsoft Defender Antivirus interface. See [Prevent users from seeing or interacting with the Microsoft Defender Antivirus user interface](prevent-end-user-interaction-microsoft-defender-antivirus.md) for more information. 
 
 > [!NOTE]
-> Hiding notifications will only occur on endpoints to which the policy has been deployed. Notifications related to actions that must be taken (such as a reboot) will still appear on the [Microsoft Endpoint Configuration Manager Endpoint Protection monitoring dashboard and reports](https://docs.microsoft.com/configmgr/protect/deploy-use/monitor-endpoint-protection). 
+> Hiding notifications will only occur on endpoints to which the policy has been deployed. Notifications related to actions that must be taken (such as a reboot) will still appear on the [Microsoft Endpoint Manager Endpoint Protection monitoring dashboard and reports](https://docs.microsoft.com/configmgr/protect/deploy-use/monitor-endpoint-protection). 
 
 See [Customize the Windows Security app for your organization](../windows-defender-security-center/windows-defender-security-center.md) for instructions to add custom contact information to the notifications that users see on their machines.
 

From e30c32a323701be2f092458b0c603803676df2f2 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 21 Dec 2020 16:26:29 +0530
Subject: [PATCH 093/825] updated-4715491

updated correct product name
---
 ...exclusions-microsoft-defender-antivirus.md |  4 +-
 ...age-report-microsoft-defender-antivirus.md |  4 +-
 ...anted-apps-microsoft-defender-antivirus.md |  6 +-
 ...ed-updates-microsoft-defender-antivirus.md |  2 +-
 ...-endpoints-microsoft-defender-antivirus.md |  4 +-
 ...e-schedule-microsoft-defender-antivirus.md |  2 +-
 ...on-updates-microsoft-defender-antivirus.md |  4 +-
 .../microsoft-defender-offline.md             |  4 +-
 ...rt-monitor-microsoft-defender-antivirus.md |  2 +-
 .../run-scan-microsoft-defender-antivirus.md  |  2 +-
 ...tion-level-microsoft-defender-antivirus.md |  2 +-
 ...ig-manager-microsoft-defender-antivirus.md |  6 +-
 ...protection-microsoft-defender-antivirus.md |  6 +-
 .../md-app-guard-overview.md                  |  4 +-
 ...Onboard-Windows-10-multi-session-device.md |  2 +-
 .../attack-surface-reduction.md               |  6 +-
 .../configure-endpoints-sccm.md               |  8 +--
 .../configure-endpoints.md                    |  2 +-
 .../configure-server-endpoints.md             | 10 +--
 .../deployment-phases.md                      |  2 +-
 .../enable-attack-surface-reduction.md        |  2 +-
 .../evaluate-controlled-folder-access.md      |  2 +-
 .../manage-atp-post-migration.md              |  2 +-
 .../microsoft-defender-atp/management-apis.md |  2 +-
 .../minimum-requirements.md                   |  2 +-
 ...boarding-endpoint-configuration-manager.md | 70 +++++++++----------
 .../troubleshoot-onboarding.md                | 60 ++++++++--------
 27 files changed, 111 insertions(+), 111 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 725634e323..f7f551baf1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -57,9 +57,9 @@ You can [configure how locally and globally defined exclusions lists are merged]
 
 See [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure) and [Microsoft Defender Antivirus device restriction settings for Windows 10 in Intune](https://docs.microsoft.com/intune/device-restrictions-windows-10#microsoft-defender-antivirus) for more details.
 
-### Use Microsoft Endpoint Configuration Manager to exclude files that have been opened by specified processes from scans
+### Use Microsoft Endpoint Manager to exclude files that have been opened by specified processes from scans
 
-See [How to create and deploy antimalware policies: Exclusion settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#exclusion-settings) for details on configuring Microsoft Endpoint Configuration Manager (current branch).
+See [How to create and deploy antimalware policies: Exclusion settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#exclusion-settings) for details on configuring Microsoft Endpoint Manager (current branch).
 
 ### Use Group Policy to exclude files that have been opened by specified processes from scans
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
index d2339875a5..a8268af781 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
@@ -42,13 +42,13 @@ You'll also see additional links for:
 Tool|Deployment options (<a href="#fn2" id="ref2">2</a>)|Management options (network-wide configuration and policy or baseline deployment) ([3](#fn3))|Reporting options  
 ---|---|---|---  
 Microsoft Intune|[Add endpoint protection settings in Intune](https://docs.microsoft.com/intune/endpoint-protection-configure)|[Configure device restriction settings in Intune](https://docs.microsoft.com/intune/device-restrictions-configure)| [Use the Intune console to manage devices](https://docs.microsoft.com/intune/device-management)  
-Microsoft Endpoint Configuration Manager ([1](#fn1))|Use the [Endpoint Protection point site system role][] and [enable Endpoint Protection with custom client settings][]|With [default and customized antimalware policies][] and [client management][]|With the default [Configuration Manager Monitoring workspace][] and [email alerts][]  
+Microsoft Endpoint Manager ([1](#fn1))|Use the [Endpoint Protection point site system role][] and [enable Endpoint Protection with custom client settings][]|With [default and customized antimalware policies][] and [client management][]|With the default [Configuration Manager Monitoring workspace][] and [email alerts][]  
 Group Policy and Active Directory (domain-joined)|Use a Group Policy Object to deploy configuration changes and ensure Microsoft Defender Antivirus is enabled.|Use Group Policy Objects (GPOs) to [Configure update options for Microsoft Defender Antivirus][] and [Configure Windows Defender features][]|Endpoint reporting is not available with Group Policy. You can generate a list of [Group Policies to determine if any settings or policies are not applied][]
 PowerShell|Deploy with Group Policy, Microsoft Endpoint Configuration Manager, or manually on individual endpoints.|Use the [Set-MpPreference] and [Update-MpSignature] cmdlets available in the Defender module.|Use the appropriate [Get- cmdlets available in the Defender module][]
 Windows Management Instrumentation|Deploy with Group Policy, Microsoft Endpoint Configuration Manager, or manually on individual endpoints.|Use the [Set method of the MSFT_MpPreference class][] and the [Update method of the MSFT_MpSignature class][]|Use the [MSFT_MpComputerStatus][] class and the get method of associated classes in the [Windows Defender WMIv2 Provider][]
 Microsoft Azure|Deploy Microsoft Antimalware for Azure in the [Azure portal, by using Visual Studio virtual machine configuration, or using Azure PowerShell cmdlets](https://docs.microsoft.com/azure/security/azure-security-antimalware#antimalware-deployment-scenarios). You can also [Install Endpoint protection in Azure Defender*](https://docs.microsoft.com/azure/security-center/security-center-install-endpoint-protection)|Configure [Microsoft Antimalware for Virtual Machines and Cloud Services with Azure PowerShell cmdlets](https://docs.microsoft.com/azure/security/azure-security-antimalware#enable-and-configure-antimalware-using-powershell-cmdlets) or [use code samples](https://gallery.technet.microsoft.com/Antimalware-For-Azure-5ce70efe)|Use [Microsoft Antimalware for Virtual Machines and Cloud Services with Azure PowerShell cmdlets](https://docs.microsoft.com/azure/security/azure-security-antimalware#enable-and-configure-antimalware-using-powershell-cmdlets) to enable monitoring. You can also review usage reports in Azure Active Directory to determine suspicious activity, including the [Possibly infected devices][] report and configure an SIEM tool to report on [Microsoft Defender Antivirus events][] and add that tool as an app in AAD.
 
-1. <span id="fn1" />The availability of some functions and features, especially related to cloud-delivered protection, differ between Microsoft Endpoint Configuration Manager (Current Branch) and System Center 2012 Configuration Manager. In this library, we've focused on Windows 10, Windows Server 2016, and Microsoft Endpoint Configuration Manager (Current Branch). See [Use Microsoft cloud-provided protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md) for a table that describes the major differences. [(Return to table)](#ref2)
+1. <span id="fn1" />The availability of some functions and features, especially related to cloud-delivered protection, differ between Microsoft Endpoint Manager (Current Branch) and System Center 2012 Configuration Manager. In this library, we've focused on Windows 10, Windows Server 2016, and Microsoft Endpoint Manager (Current Branch). See [Use Microsoft cloud-provided protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md) for a table that describes the major differences. [(Return to table)](#ref2)
   
 2.	<span id="fn2" />In Windows 10, Microsoft Defender Antivirus is a component available without installation or deployment of an additional client or service. It will automatically be enabled when third-party antivirus products are either uninstalled or out of date ([except on Windows Server 2016](microsoft-defender-antivirus-on-windows-server-2016.md)). Traditional deployment therefore is not required. Deployment here refers to ensuring the Microsoft Defender Antivirus component is available and enabled on endpoints or servers. [(Return to table)](#ref2)
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index cb05c08abe..00899429c1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -99,9 +99,9 @@ See [Configure device restriction settings in Microsoft Intune](https://docs.mic
 
 #### Use Configuration Manager to configure PUA protection
 
-PUA protection is enabled by default in the Microsoft Endpoint Configuration Manager (Current Branch).
+PUA protection is enabled by default in the Microsoft Endpoint Manager (Current Branch).
 
-See [How to create and deploy antimalware policies: Scheduled scans settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#real-time-protection-settings) for details on configuring Microsoft Endpoint Configuration Manager (Current Branch).
+See [How to create and deploy antimalware policies: Scheduled scans settings](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#real-time-protection-settings) for details on configuring Microsoft Endpoint Manager (Current Branch).
 
 For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unwanted Application Protection Policy for Endpoint Protection in Configuration Manager](https://technet.microsoft.com/library/hh508770.aspx#BKMK_PUA).
 
@@ -153,7 +153,7 @@ See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](u
 
 ### View PUA events
 
-PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Configuration Manager or in Intune.
+PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune.
 
 You can turn on email notifications to receive mail about PUA detections.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
index efb0cb995d..6cd83a72ce 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
@@ -33,7 +33,7 @@ You can use Microsoft Endpoint Configuration Manager, Group Policy, PowerShell c
 
 ### Use Configuration Manager to check for protection updates before running a scan
 
-1. On your Microsoft Endpoint Configuration Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
+1. On your Microsoft Endpoint Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
 
 2. Go to the **Scheduled scans** section and set **Check for the latest security intelligence updates before running a scan** to **Yes**.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
index b6b1f9f8bb..204266480c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
@@ -37,7 +37,7 @@ If Microsoft Defender Antivirus did not download protection updates for a specif
 
 ### Use Configuration Manager to configure catch-up protection updates
 
-1.  On your Microsoft Endpoint Configuration Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
+1.  On your Microsoft Endpoint Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
 
 2.  Go to the **Security intelligence updates** section and configure the following settings:
 
@@ -166,7 +166,7 @@ See the following for more information and allowed parameters:
 
 ### Use Configuration Manager to configure catch-up scans
 
-1.  On your Microsoft Endpoint Configuration Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
+1.  On your Microsoft Endpoint Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
 
 2.  Go to the **Scheduled scans** section and **Force a scan of the selected scan type if client computer is offline...** to **Yes**. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
index add2af0433..97d57d8f1c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
@@ -37,7 +37,7 @@ You can also randomize the times when each endpoint checks and downloads protect
 
 ## Use Configuration Manager to schedule protection updates
 
-1.  On your Microsoft Endpoint Configuration Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
+1.  On your Microsoft Endpoint Manager console, open the antimalware policy you want to change (click **Assets and Compliance** in the navigation pane on the left, then expand the tree to **Overview** > **Endpoint Protection** > **Antimalware Policies**)
 
 2.  Go to the **Security intelligence updates** section.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index 613d0bb3b1..93e2532fdd 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -71,7 +71,7 @@ Each source has typical scenarios that depend on how your network is configured,
 |Windows Server Update Service | You are using Windows Server Update Service to manage updates for your network.|
 |Microsoft Update | You want your endpoints to connect directly to Microsoft Update. This can be useful for endpoints that irregularly connect to your enterprise network, or if you do not use Windows Server Update Service to manage your updates.|
 |File share | You have non-Internet-connected devices (such as VMs). You can use your Internet-connected VM host to download the updates to a network share, from which the VMs can obtain the updates. See the [VDI deployment guide](deployment-vdi-microsoft-defender-antivirus.md) for how file shares can be used in virtual desktop infrastructure (VDI) environments.|
-|Microsoft Endpoint Configuration Manager | You are using Microsoft Endpoint Configuration Manager to update your endpoints.|
+|Microsoft Endpoint Manager | You are using Microsoft Endpoint Manager to update your endpoints.|
 |Security intelligence updates for Microsoft Defender Antivirus and other Microsoft antimalware (formerly referred to as MMPC) |[Make sure your devices are updated to support SHA-2](https://support.microsoft.com/help/4472027/2019-sha-2-code-signing-support-requirement-for-windows-and-wsus). Microsoft Defender Antivirus Security intelligence updates are delivered through Windows Update, and starting Monday October 21, 2019 security intelligence updates will be SHA-2 signed exclusively. <br/>Download the latest protection updates because of a recent infection or to help provision a strong, base image for [VDI deployment](deployment-vdi-microsoft-defender-antivirus.md). This option should generally be used only as a final fallback source, and not the primary source. It will only be used if updates cannot be downloaded from Windows Server Update Service or Microsoft Update for [a specified number of days](https://docs.microsoft.com/windows/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus#set-the-number-of-days-before-protection-is-reported-as-out-of-date).|
 
 You can manage the order in which update sources are used with Group Policy, Microsoft Endpoint Configuration Manager, PowerShell cmdlets, and WMI.
@@ -111,7 +111,7 @@ The procedures in this article first describe how to set the order, and then how
 
 ## Use Configuration Manager to manage the update location
 
-See [Configure Security intelligence Updates for Endpoint Protection](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-definition-updates) for details on configuring Microsoft Endpoint Configuration Manager (current branch).
+See [Configure Security intelligence Updates for Endpoint Protection](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-definition-updates) for details on configuring Microsoft Endpoint Manager (current branch).
 
 
 ## Use PowerShell cmdlets to manage the update location
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
index 355705569c..fa33dd9526 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
@@ -58,7 +58,7 @@ See the [Manage Microsoft Defender Antivirus Security intelligence  updates](man
 
 In Windows 10, version 1607, you can manually force an offline scan. Alternatively, if Windows Defender determines that Microsoft Defender Offline needs to run, it will prompt the user on the endpoint. 
 
-The need to perform an offline scan will also be revealed in Microsoft Endpoint Configuration Manager if you're using it to manage your endpoints.
+The need to perform an offline scan will also be revealed in Microsoft Endpoint Manager if you're using it to manage your endpoints.
 
 The prompt can occur via a notification, similar to the following:
 
@@ -70,7 +70,7 @@ In Configuration Manager, you can identify the status of endpoints by navigating
 
 Microsoft Defender Offline scans are indicated under **Malware remediation status** as **Offline scan required**.
 
-![Microsoft Endpoint Configuration Manager indicating a Microsoft Defender Offline scan is required](images/defender/sccm-wdo.png)
+![Microsoft Endpoint Manager indicating a Microsoft Defender Offline scan is required](images/defender/sccm-wdo.png)
 
 ## Configure notifications
 <a name="manage-notifications"></a>
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
index 4280ec563b..5219b4f3eb 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
@@ -27,7 +27,7 @@ manager: dansimp
 
 Microsoft Defender Antivirus is built into Windows 10, Windows Server 2019, and Windows Server 2016. Microsoft Defender Antivirus is of your next-generation protection in Microsoft Defender for Endpoint. Next-generation protection helps protect your devices from software threats like viruses, malware, and spyware across email, apps, the cloud, and the web.
 
-With Microsoft Defender Antivirus, you have several options for reviewing protection status and alerts. You can use Microsoft Endpoint Configuration Manager to [monitor Microsoft Defender Antivirus](https://docs.microsoft.com/configmgr/protect/deploy-use/monitor-endpoint-protection) or [create email alerts](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-configure-alerts). Or, you can monitor protection using [Microsoft Intune](https://docs.microsoft.com/intune/introduction-intune).  
+With Microsoft Defender Antivirus, you have several options for reviewing protection status and alerts. You can use Microsoft Endpoint Manager to [monitor Microsoft Defender Antivirus](https://docs.microsoft.com/configmgr/protect/deploy-use/monitor-endpoint-protection) or [create email alerts](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-configure-alerts). Or, you can monitor protection using [Microsoft Intune](https://docs.microsoft.com/intune/introduction-intune).  
 
 Microsoft Operations Management Suite has an [Update Compliance add-in](/windows/deployment/update/update-compliance-get-started) that reports on key Microsoft Defender Antivirus issues, including protection updates and real-time protection settings.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 6b709df330..3f93858b01 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -42,7 +42,7 @@ A full scan can be useful on endpoints that have reported a malware threat. The
 > [!NOTE]
 > By default, quick scans run on mounted removable devices, such as USB drives.
 
-## Use Microsoft Endpoint Configuration Manager to run a scan
+## Use Microsoft Endpoint Manager to run a scan
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
 2. Choose **Endpoint security** > **Antivirus**.
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
index 433c59bb6f..1368ce190d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
@@ -29,7 +29,7 @@ You can specify your level of cloud-delivered protection offered by Microsoft De
 
 > [!TIP]
 > Cloud protection is not simply protection for files that are stored in the cloud. The Microsoft Defender Antivirus cloud service is a mechanism for delivering updated protection to your network and devices (also called endpoints). Cloud protection with Microsoft Defender Antivirus uses distributed resources and machine learning to deliver protection to your endpoints at a rate that is far faster than traditional security intelligence updates. 
-> Microsoft Intune and Microsoft Endpoint Configuration Manager are now part of [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview). 
+> Microsoft Intune and Microsoft Endpoint Manager are now part of [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview). 
 
 
 ## Use Microsoft Endpoint Manager to specify the level of cloud-delivered protection
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
index 9b5897d363..40f6f950ca 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
@@ -1,6 +1,6 @@
 ---
 title: Configure Microsoft Defender Antivirus with Configuration Manager and Intune
-description: Use Microsoft Endpoint Configuration Manager and Microsoft Intune to configure Microsoft Defender AV and Endpoint Protection
+description: Use Microsoft Endpoint Manager and Microsoft Intune to configure Microsoft Defender AV and Endpoint Protection
 keywords: scep, intune, endpoint protection, configuration
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -16,7 +16,7 @@ ms.reviewer:
 manager: dansimp
 ---
 
-# Use Microsoft Endpoint Configuration Manager and Microsoft Intune to configure and manage Microsoft Defender Antivirus
+# Use Microsoft Endpoint Manager and Microsoft Intune to configure and manage Microsoft Defender Antivirus
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -25,7 +25,7 @@ manager: dansimp
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-If you were using Microsoft Endpoint Configuration Manager or Microsoft Intune to manage the endpoints on your network, you can now use Microsoft Endpoint Manager to manage Microsoft Defender Antivirus scans.
+If you were using Microsoft Endpoint Manager or Microsoft Intune to manage the endpoints on your network, you can now use Microsoft Endpoint Manager to manage Microsoft Defender Antivirus scans.
 
 1. In the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)), navigate to **Endpoint Security**.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
index da103c7192..5f9f3e73bc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
@@ -68,7 +68,7 @@ The following table describes the differences in cloud-delivered protection betw
 |Windows 10, version 1607 (Group Policy)  |Microsoft Advanced Protection Service      |Advanced         |No         |
 |Windows 10, version 1703 or greater (Group Policy)	     |Cloud-based Protection      |Advanced         |Configurable         |
 |System Center 2012 Configuration Manager  |      N/A         |Dependent on Windows version         |Not configurable |
-|Microsoft Endpoint Configuration Manager (Current Branch)	     |Cloud protection service         |Dependent on Windows version          |Configurable         |
+|Microsoft Endpoint Manager (Current Branch)	     |Cloud protection service         |Dependent on Windows version          |Configurable         |
 |Microsoft Intune     |Microsoft Advanced Protection Service         |Dependent on Windows version         |Configurable         |
 
 You can also [configure Microsoft Defender Antivirus to automatically receive new protection updates based on reports from our cloud service](manage-event-based-updates-microsoft-defender-antivirus.md#cloud-report-updates).
@@ -82,6 +82,6 @@ You can also [configure Microsoft Defender Antivirus to automatically receive ne
 
 - [Configure and validate network connections for Microsoft Defender Antivirus](configure-network-connections-microsoft-defender-antivirus.md). There are certain Microsoft URLs that your network and endpoints must be able to connect to for cloud-delivered protection to work effectively. This article lists the URLs that should be allowed via firewall or network filtering rules, and instructions for confirming your network is properly enrolled in cloud-delivered protection.
 
-- [Configure the block at first sight feature](configure-block-at-first-sight-microsoft-defender-antivirus.md). The "block at first sight" feature can block new malware within seconds, without having to wait hours for traditional Security intelligence. You can enable and configure it with Microsoft Endpoint Configuration Manager and Group Policy.
+- [Configure the block at first sight feature](configure-block-at-first-sight-microsoft-defender-antivirus.md). The "block at first sight" feature can block new malware within seconds, without having to wait hours for traditional Security intelligence. You can enable and configure it with Microsoft Endpoint Manager and Group Policy.
 
-- [Configure the cloud block timeout period](configure-cloud-block-timeout-period-microsoft-defender-antivirus.md). Microsoft Defender Antivirus can block suspicious files from running while it queries our cloud-delivered protection service. You can configure the amount of time the file will be prevented from running with Microsoft Endpoint Configuration Manager and Group Policy.
+- [Configure the cloud block timeout period](configure-cloud-block-timeout-period-microsoft-defender-antivirus.md). Microsoft Defender Antivirus can block suspicious files from running while it queries our cloud-delivered protection service. You can configure the amount of time the file will be prevented from running with Microsoft Endpoint Manager and Group Policy.
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 2a63557e33..98150e0f15 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -33,9 +33,9 @@ For Microsoft Office, Application Guard helps prevents untrusted Word, PowerPoin
 
 Application Guard has been created to target several types of devices:
 
-- **Enterprise desktops**. These desktops are domain-joined and managed by your organization. Configuration management is primarily done through Microsoft Endpoint Configuration Manager or Microsoft Intune. Employees typically have Standard User privileges and use a high-bandwidth, wired, corporate network.
+- **Enterprise desktops**. These desktops are domain-joined and managed by your organization. Configuration management is primarily done through Microsoft Endpoint Manager or Microsoft Intune. Employees typically have Standard User privileges and use a high-bandwidth, wired, corporate network.
 
-- **Enterprise mobile laptops**. These laptops are domain-joined and managed by your organization. Configuration management is primarily done through Microsoft Endpoint Configuration Manager or Microsoft Intune. Employees typically have Standard User privileges and use a high-bandwidth, wireless, corporate network.
+- **Enterprise mobile laptops**. These laptops are domain-joined and managed by your organization. Configuration management is primarily done through Microsoft Endpoint Manager or Microsoft Intune. Employees typically have Standard User privileges and use a high-bandwidth, wireless, corporate network.
 
 - **Bring your own device (BYOD) mobile laptops**. These personally-owned laptops are not domain-joined, but are managed by your organization through tools, such as Microsoft Intune. The employee is typically an admin on the device and uses a high-bandwidth wireless corporate network while at work and a comparable personal network while at home.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index 928df9d3fd..72cf708d67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -92,7 +92,7 @@ If you plan to manage your machines using a management tool, you can onboard dev
 For more information, see: [Onboard Windows 10 devices using Configuration Manager](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm) 
 
 > [!WARNING]
-> If you plan to use [Attack Surface reduction Rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), please note that rule “[Block process creations originating from PSExec and WMI commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction#block-process-creations-originating-from-psexec-and-wmi-commands)" should not be used as it is incompatible with management through Microsoft Endpoint Configuration Manager because this rule blocks WMI commands the Configuration Manager client uses to function correctly. 
+> If you plan to use [Attack Surface reduction Rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), please note that rule “[Block process creations originating from PSExec and WMI commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction#block-process-creations-originating-from-psexec-and-wmi-commands)" should not be used as it is incompatible with management through Microsoft Endpoint Manager because this rule blocks WMI commands the Configuration Manager client uses to function correctly. 
 
 > [!TIP]
 > After onboarding the device, you can choose to run a detection test to verify that the device is properly onboarded to the service. For more information, see [Run a detection test on a newly onboarded Microsoft Defender for Endpoint device](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/run-detection-test). 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index a0586d3024..2abcb3d926 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -147,7 +147,7 @@ The "engine version" listed for attack surface reduction events in the event log
 
 The following table and subsections describe each of the 15 attack surface reduction rules. The attack surface reduction rules are listed in alphabetical order, by rule name. 
 
-If you are configuring attack surface reduction rules by using Group Policy or PowerShell, you'll need the GUIDs. On the other hand, if you use Microsoft Endpoint Configuration Manager or Microsoft Intune, you do not need the GUIDs.
+If you are configuring attack surface reduction rules by using Group Policy or PowerShell, you'll need the GUIDs. On the other hand, if you use Microsoft Endpoint Manager or Microsoft Intune, you do not need the GUIDs.
 
 
 | Rule name | GUID | File & folder exclusions | Minimum OS supported |
@@ -235,11 +235,11 @@ This rule was introduced in:
 - [Windows 10, version 1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709)
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809)
 - [Windows Server 2019](https://docs.microsoft.com/windows-server/get-started-19/whats-new-19)
-- [Microsoft Endpoint Configuration Manager CB 1710](https://docs.microsoft.com/configmgr/core/servers/manage/updates)
+- [Microsoft Endpoint Manager CB 1710](https://docs.microsoft.com/configmgr/core/servers/manage/updates)
 
 Intune name: `Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)`
 
-Microsoft Endpoint Configuration Manager name: `Block executable content from email client and webmail`
+Microsoft Endpoint Manager name: `Block executable content from email client and webmail`
 
 GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
index aa7a4c498f..70d15daa13 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
@@ -26,7 +26,7 @@ ms.date: 02/07/2020
 **Applies to:**
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-- Microsoft Endpoint Configuration Manager current branch
+- Microsoft Endpoint Manager current branch
 - System Center 2012 R2 Configuration Manager
 
 >Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configureendpointssccm-abovefoldlink)
@@ -167,9 +167,9 @@ For security reasons, the package used to Offboard devices will expire 30 days a
 > [!NOTE]
 > Onboarding and offboarding policies must not be deployed on the same device at the same time, otherwise this will cause unpredictable collisions.
 
-### Offboard devices using Microsoft Endpoint Configuration Manager current branch
+### Offboard devices using Microsoft Endpoint Manager current branch
 
-If you use Microsoft Endpoint Configuration Manager current branch, see [Create an offboarding configuration file](https://docs.microsoft.com/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection#create-an-offboarding-configuration-file).
+If you use Microsoft Endpoint Manager current branch, see [Create an offboarding configuration file](https://docs.microsoft.com/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection#create-an-offboarding-configuration-file).
 
 ### Offboard devices using System Center 2012 R2 Configuration Manager
 
@@ -195,7 +195,7 @@ If you use Microsoft Endpoint Configuration Manager current branch, see [Create
 
 ## Monitor device configuration
 
-If you're using Microsoft Endpoint Configuration Manager current branch, use the built-in Defender for Endpoint dashboard in the Configuration Manager console. For more information, see [Defender for Endpoint - Monitor](https://docs.microsoft.com/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection#monitor).
+If you're using Microsoft Endpoint Manager current branch, use the built-in Defender for Endpoint dashboard in the Configuration Manager console. For more information, see [Defender for Endpoint - Monitor](https://docs.microsoft.com/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection#monitor).
 
 If you're using System Center 2012 R2 Configuration Manager, monitoring consists of two parts:
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
index 00ee7a17a2..d4fd6a0a02 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
@@ -41,7 +41,7 @@ The following deployment tools and methods are supported:
 Topic | Description
 :---|:---
 [Onboard Windows 10 devices using Group Policy](configure-endpoints-gp.md) | Use Group Policy to deploy the configuration package on devices.
-[Onboard Windows devices using Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) | You can use either use Microsoft Endpoint Configuration Manager (current branch) version 1606 or Microsoft Endpoint Configuration Manager (current branch) version 1602 or earlier to deploy the configuration package on devices.
+[Onboard Windows devices using Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) | You can use either use Microsoft Endpoint Manager (current branch) version 1606 or Microsoft Endpoint Manager (current branch) version 1602 or earlier to deploy the configuration package on devices.
 [Onboard Windows 10 devices using Mobile Device Management tools](configure-endpoints-mdm.md) | Use Mobile Device Management tools or Microsoft Intune to deploy the configuration package on device.
 [Onboard Windows 10 devices using a local script](configure-endpoints-script.md) | Learn how to use the local script to deploy the configuration package on endpoints.
 [Onboard non-persistent virtual desktop infrastructure (VDI) devices](configure-endpoints-vdi.md) | Learn how to use the configuration package to configure VDI devices.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 6c6a1ea7cc..f00858169a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -48,7 +48,7 @@ You can onboard Windows Server 2008 R2 SP1, Windows Server 2012 R2, and Windows
 
 - **Option 1**: [Onboard by installing and configuring Microsoft Monitoring Agent (MMA)](#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)
 - **Option 2**: [Onboard through Azure Security Center](#option-2-onboard-windows-servers-through-azure-security-center)
-- **Option 3**: [Onboard through Microsoft Endpoint Configuration Manager version 2002 and later](#option-3-onboard-windows-servers-through-microsoft-endpoint-configuration-manager-version-2002-and-later)
+- **Option 3**: [Onboard through Microsoft Endpoint Manager version 2002 and later](#option-3-onboard-windows-servers-through-microsoft-endpoint-configuration-manager-version-2002-and-later)
 
 
 After completing the onboarding steps using any of the provided options, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).
@@ -133,9 +133,9 @@ After completing the onboarding steps, you'll need to [Configure and update Syst
 > - Once configured, the appropriate cloud management pack is deployed on the machine and the sensor process (MsSenseS.exe) will be deployed and started. 
 > - This is also required if the server is configured to use an OMS Gateway server as proxy.
 
-### Option 3: Onboard Windows servers through Microsoft Endpoint Configuration Manager version 2002 and later
-You can onboard Windows Server 2012 R2 and Windows Server 2016 by using Microsoft Endpoint Configuration Manager version 2002 and later. For more information, see [Microsoft Defender for Endpoint
- in Microsoft Endpoint Configuration Manager current branch](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/defender-advanced-threat-protection).
+### Option 3: Onboard Windows servers through Microsoft Endpoint Manager version 2002 and later
+You can onboard Windows Server 2012 R2 and Windows Server 2016 by using Microsoft Endpoint Manager version 2002 and later. For more information, see [Microsoft Defender for Endpoint
+ in Microsoft Endpoint Manager current branch](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/defender-advanced-threat-protection).
 
 After completing the onboarding steps, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).
 
@@ -149,7 +149,7 @@ You can onboard Windows Server (SAC) version 1803, Windows Server 2019, or Windo
 - [VDI onboarding scripts for non-persistent devices](configure-endpoints-vdi.md)
 
 > [!NOTE]
-> - The Onboarding package for Windows Server 2019 through Microsoft Endpoint Configuration Manager currently ships a script. For more information on how to deploy scripts in Configuration Manager, see [Packages and programs in Configuration Manager](https://docs.microsoft.com/configmgr/apps/deploy-use/packages-and-programs).
+> - The Onboarding package for Windows Server 2019 through Microsoft Endpoint Manager currently ships a script. For more information on how to deploy scripts in Configuration Manager, see [Packages and programs in Configuration Manager](https://docs.microsoft.com/configmgr/apps/deploy-use/packages-and-programs).
 > - A local script is suitable for a proof of concept but should not be used for production deployment. For a production deployment, we recommend using Group Policy, Microsoft Endpoint Configuration Manager, or Intune.
 
 Support for Windows Server provides deeper insight into server activities, coverage for kernel and memory attack detection, and enables response actions.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
index 71da90cdfd..8332173b94 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@@ -77,7 +77,7 @@ All these capabilities are available for Microsoft Defender for Endpoint license
 
 ### In scope
 
--   Use of Microsoft Endpoint Configuration Manager and Microsoft Endpoint Manager to onboard endpoints into the service and configure capabilities
+-   Use of Microsoft Endpoint Manager and Microsoft Endpoint Manager to onboard endpoints into the service and configure capabilities
 
 -   Enabling Defender for Endpoint endpoint detection and response (EDR)  capabilities
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
index 603f751bdd..1356b96d9c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
@@ -45,7 +45,7 @@ You can enable attack surface reduction rules by using any of these methods:
 - [Group Policy](#group-policy)
 - [PowerShell](#powershell)
 
-Enterprise-level management such as Intune or Microsoft Endpoint Configuration Manager is recommended. Enterprise-level management will overwrite any conflicting Group Policy or PowerShell settings on startup.
+Enterprise-level management such as Intune or Microsoft Endpoint Manager is recommended. Enterprise-level management will overwrite any conflicting Group Policy or PowerShell settings on startup.
 
 ## Exclude files and folders from ASR rules
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
index fb1a325c8e..cf36b1169f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
@@ -44,7 +44,7 @@ Set-MpPreference -EnableControlledFolderAccess AuditMode
 
 > [!TIP]
 > If you want to fully audit how controlled folder access will work in your organization, you'll need to use a management tool to deploy this setting to devices in your network(s).
-You can also use Group Policy, Intune, mobile device management (MDM), or Microsoft Endpoint Configuration Manager to configure and deploy the setting, as described in the main [controlled folder access topic](controlled-folders.md).
+You can also use Group Policy, Intune, mobile device management (MDM), or Microsoft Endpoint Manager to configure and deploy the setting, as described in the main [controlled folder access topic](controlled-folders.md).
 
 ## Review controlled folder access events in Windows Event Viewer
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
index 7d186a373a..6cabea4054 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
@@ -39,7 +39,7 @@ The following table lists various tools/methods you can use, with links to learn
 |---------|---------|
 |**[Threat and vulnerability management dashboard insights](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights)** in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) |The threat & vulnerability management dashboard provides actionable information that your security operations team can use to reduce exposure and improve your organization's security posture. <br/><br/>See [Threat & vulnerability management](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt) and [Overview of the Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use).  |
 |**[Microsoft Intune](https://docs.microsoft.com/mem/intune/fundamentals/what-is-intune)**  (recommended)    |Microsoft Intune (Intune), a component of [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview), focuses on mobile device management (MDM) and mobile application management (MAM). With Intune, you control how your organization’s devices are used, including mobile phones, tablets, and laptops. You can also configure specific policies to control applications. <br/><br/>See [Manage Microsoft Defender for Endpoint using Intune](manage-atp-post-migration-intune.md).         |
-|**[Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/understand/introduction)**     |Microsoft Endpoint Configuration Manager (Configuration Manager), formerly known as System Center Configuration Manager, is a component of [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview). Configuration Manager is a powerful tool to manage your users, devices, and software.<br/><br/>See [Manage Microsoft Defender for Endpoint with Configuration Manager](manage-atp-post-migration-configuration-manager.md).        |
+|**[Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/understand/introduction)**     |Microsoft Endpoint Manager (Configuration Manager), formerly known as System Center Configuration Manager, is a component of [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview). Configuration Manager is a powerful tool to manage your users, devices, and software.<br/><br/>See [Manage Microsoft Defender for Endpoint with Configuration Manager](manage-atp-post-migration-configuration-manager.md).        |
 |**[Group Policy Objects in Azure Active Directory Domain Services](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy)** |[Azure Active Directory Domain Services](https://docs.microsoft.com/azure/active-directory-domain-services/overview) includes built-in Group Policy Objects for users and devices. You can customize the built-in Group Policy Objects as needed for your environment, as well as create custom Group Policy Objects and organizational units (OUs). <br/><br/>See [Manage Microsoft Defender for Endpoint with Group Policy Objects](manage-atp-post-migration-group-policy-objects.md). |
 |**[PowerShell, WMI, and MPCmdRun.exe](manage-atp-post-migration-other-tools.md)** |*We recommend using Microsoft Endpoint Manager (which includes Intune and Configuration Manager) to manage threat protection features on your organization's devices. However, you can configure some settings, such as Microsoft Defender Antivirus settings on individual devices (endpoints) with PowerShell, WMI, or the MPCmdRun.exe tool.*<br/><br/>You can use PowerShell to manage Microsoft Defender Antivirus, exploit protection, and your attack surface reduction rules. See [Configure Microsoft Defender for Endpoint with PowerShell](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-powershell).<br/><br/>You can use Windows Management Instrumentation (WMI) to manage Microsoft Defender Antivirus and exclusions. See [Configure Microsoft Defender for Endpoint with WMI](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-windows-management-instrumentation-wmi).<br/><br/>You can use the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) to manage Microsoft Defender Antivirus and exclusions, as well as validate connections between your network and the cloud. See [Configure Microsoft Defender for Endpoint with MPCmdRun.exe](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-microsoft-malware-protection-command-line-utility-mpcmdrunexe). |
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index 4be39cf3be..ac473fb95e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -34,7 +34,7 @@ Acknowledging that customer environments and structures can vary, Defender for E
 
 ## Endpoint onboarding and portal access 
 
-Device onboarding is fully integrated into Microsoft Endpoint Configuration Manager and Microsoft Intune for client devices and Azure Security Center for server devices, providing complete end-to-end experience of configuration, deployment, and monitoring. In addition, Microsoft Defender for Endpoint supports Group Policy and other third-party tools used for devices management.
+Device onboarding is fully integrated into Microsoft Endpoint Manager and Microsoft Intune for client devices and Azure Security Center for server devices, providing complete end-to-end experience of configuration, deployment, and monitoring. In addition, Microsoft Defender for Endpoint supports Group Policy and other third-party tools used for devices management.
 
 Defender for Endpoint provides fine-grained control over what users with access to the portal can see and do through the flexibility of role-based access control (RBAC). The RBAC model supports all flavors of security teams structure:
 - Globally distributed organizations and security teams
diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 98cb4690dd..f9a267ba99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -201,7 +201,7 @@ For more information, see [Microsoft Defender Antivirus compatibility](../micros
 ## Microsoft Defender Antivirus Early Launch Antimalware (ELAM) driver is enabled
 If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Defender for Endpoint agent will successfully onboard.
 
-If you're running a third-party antimalware client and use Mobile Device Management solutions or Microsoft Endpoint Configuration Manager (current branch), you'll need to ensure that the Microsoft Defender Antivirus ELAM driver is enabled. For more information, see [Ensure that Microsoft Defender Antivirus is not disabled by policy](troubleshoot-onboarding.md#ensure-that-microsoft-defender-antivirus-is-not-disabled-by-a-policy).
+If you're running a third-party antimalware client and use Mobile Device Management solutions or Microsoft Endpoint Manager (current branch), you'll need to ensure that the Microsoft Defender Antivirus ELAM driver is enabled. For more information, see [Ensure that Microsoft Defender Antivirus is not disabled by policy](troubleshoot-onboarding.md#ensure-that-microsoft-defender-antivirus-is-not-disabled-by-a-policy).
 
 
 ## Related topics
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
index 87b9afcb05..d283900782 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
@@ -1,5 +1,5 @@
 ---
-title: Onboarding using Microsoft Endpoint Configuration Manager 
+title: Onboarding using Microsoft Endpoint Manager 
 description: Learn how to onboard to Microsoft Defender ATP using Microsoft Endpoint Configuration Manager
 keywords: onboarding, configuration, deploy, deployment, endpoint configuration manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction
 search.product: eADQiWindows 10XVcnh
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: article
 ---
 
-# Onboarding using Microsoft Endpoint Configuration Manager 
+# Onboarding using Microsoft Endpoint Manager 
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -51,7 +51,7 @@ created for testing.
 
 Onboarding using tools such as Group policy or manual method does not install any agent on the system. 
 
-Within the Microsoft Endpoint Configuration Manager console
+Within the Microsoft Endpoint Manager console
 the onboarding process will be configured as part of the compliance settings
 within the console.
 
@@ -61,47 +61,47 @@ continues to receive this policy from the management point.
 
 Follow the steps below to onboard endpoints using Microsoft Endpoint Configuration Manager.
 
-1. In Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Device Collections**.            
+1. In Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Device Collections**.            
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-device-collections.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-device-collections.png)
 
 2. Right Click **Device Collection** and select **Create Device Collection**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-create-device-collection.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-create-device-collection.png)
 
 3. Provide a **Name** and **Limiting Collection**, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-limiting-collection.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-limiting-collection.png)
 
 4. Select **Add Rule** and choose **Query Rule**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-query-rule.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-query-rule.png)
 
 5.  Click **Next** on the **Direct Membership Wizard** and click on **Edit Query Statement**.
 
-     ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-direct-membership.png)
+     ![Image of Microsoft Endpoint Manager wizard](images/configmgr-direct-membership.png)
 
 6. Select **Criteria** and then choose the star icon.
 
-     ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-criteria.png)
+     ![Image of Microsoft Endpoint Manager wizard](images/configmgr-criteria.png)
 
 7. Keep criterion type as **simple value**, choose where as **Operating System - build number**, operator as **is greater than or equal to** and value **14393** and click on **OK**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-simple-value.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-simple-value.png)
 
 8. Select **Next** and **Close**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-membership-rules.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-membership-rules.png)
 
 9. Select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-confirm.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-confirm.png)
 
 After completing this task, you now have a device collection with all the Windows 10 endpoints in the environment. 
 
 
 ## Step 2: Configure Microsoft Defender for Endpoint capabilities 
-This section guides you in configuring the following capabilities using Microsoft Endpoint Configuration Manager on Windows devices:
+This section guides you in configuring the following capabilities using Microsoft Endpoint Manager on Windows devices:
 
 - [**Endpoint detection and response**](#endpoint-detection-and-response)
 - [**Next-generation protection**](#next-generation-protection)
@@ -131,11 +131,11 @@ Manager and deploy that policy to Windows 10 devices.
 
 6. Right-click **Microsoft Defender ATP Policies** and select **Create Microsoft Defender ATP Policy**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-create-policy.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-create-policy.png)
 
 7. Enter the name and description, verify **Onboarding** is selected, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-policy-name.png)
+    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-policy-name.png)
 
 8. Click **Browse**.
 
@@ -156,7 +156,7 @@ Manager and deploy that policy to Windows 10 devices.
 
 15. Click **Close** when the Wizard completes.
 
-16.  In the Microsoft Endpoint Configuration Manager console, right-click the Defender for Endpoint policy you just created and select **Deploy**.
+16.  In the Microsoft Endpoint Manager console, right-click the Defender for Endpoint policy you just created and select **Deploy**.
 
      ![Image of configuration settings](images/configmgr-deploy.png)
 
@@ -219,7 +219,7 @@ Once completed, you should see onboarded endpoints in the portal within an hour.
 ### Next generation protection 
 Microsoft Defender Antivirus is a built-in antimalware solution that provides next generation protection for desktops, portable computers, and servers.
 
-1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Antimalware Polices** and choose **Create Antimalware Policy**.
+1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Antimalware Polices** and choose **Create Antimalware Policy**.
 
     ![Image of antimalware policy](images/9736e0358e86bc778ce1bd4c516adb8b.png)
 
@@ -271,9 +271,9 @@ All these features provide an audit mode and a block mode. In audit mode there i
 
 To set ASR rules in Audit mode:
 
-1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
-   ![Image of Microsoft Endpoint Configuration Manager console](images/728c10ef26042bbdbcd270b6343f1a8a.png)
+   ![Image of Microsoft Endpoint Manager console](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
 
 2.  Select **Attack Surface Reduction**.
@@ -281,26 +281,26 @@ To set ASR rules in Audit mode:
 
 3. Set rules to **Audit** and click **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager console](images/d18e40c9e60aecf1f9a93065cb7567bd.png)
+    ![Image of Microsoft Endpoint Manager console](images/d18e40c9e60aecf1f9a93065cb7567bd.png)
 
 4. Confirm the new Exploit Guard policy by clicking on **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager console](images/0a6536f2c4024c08709cac8fcf800060.png)
+    ![Image of Microsoft Endpoint Manager console](images/0a6536f2c4024c08709cac8fcf800060.png)
 
     
 5. Once the policy is created click **Close**.
 
-    ![Image of Microsoft Endpoint Configuration Manager console](images/95d23a07c2c8bc79176788f28cef7557.png)
+    ![Image of Microsoft Endpoint Manager console](images/95d23a07c2c8bc79176788f28cef7557.png)
 
     
 
 6.  Right-click on the newly created policy and choose **Deploy**.
     
-    ![Image of Microsoft Endpoint Configuration Manager console](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![Image of Microsoft Endpoint Manager console](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7. Target the policy to the newly created Windows 10 collection and click **OK**.
 
-    ![Image of Microsoft Endpoint Configuration Manager console](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![Image of Microsoft Endpoint Manager console](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 After completing this task, you now have successfully configured ASR rules in audit mode.  
   
@@ -329,7 +329,7 @@ detections](https://docs.microsoft.com/windows/security/threat-protection/micros
 
 
 #### Set Network Protection rules in Audit mode:
-1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and  Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Manager console, navigate to **Assets and  Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
     ![A screenshot System Center Configuration Manager](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
@@ -349,42 +349,42 @@ detections](https://docs.microsoft.com/windows/security/threat-protection/micros
 
 6. Right-click on the newly created policy and choose **Deploy**.
 
-    ![A screenshot Microsoft Endpoint Configuration Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![A screenshot Microsoft Endpoint Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7. Select the policy to the newly created Windows 10 collection and choose **OK**.
 
-    ![A screenshot Microsoft Endpoint Configuration Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![A screenshot Microsoft Endpoint Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 After completing this task, you now have successfully configured Network
 Protection in audit mode.
 
 #### To set Controlled Folder Access rules in Audit mode:
 
-1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/728c10ef26042bbdbcd270b6343f1a8a.png)
+    ![A screenshot of Microsoft Endpoint Manager ](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
 2. Select **Controlled folder access**.
     
 3. Set the configuration to **Audit** and click **Next**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/a8b934dab2dbba289cf64fe30e0e8aa4.png)    
+    ![A screenshot of Microsoft Endpoint Manager ](images/a8b934dab2dbba289cf64fe30e0e8aa4.png)    
     
 4. Confirm the new Exploit Guard Policy by clicking on **Next**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/0a6536f2c4024c08709cac8fcf800060.png)
+    ![A screenshot of Microsoft Endpoint Manager ](images/0a6536f2c4024c08709cac8fcf800060.png)
 
 5. Once the policy is created click on **Close**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/95d23a07c2c8bc79176788f28cef7557.png)
+    ![A screenshot of Microsoft Endpoint Manager ](images/95d23a07c2c8bc79176788f28cef7557.png)
 
 6. Right-click on the newly created policy and choose **Deploy**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![A screenshot of Microsoft Endpoint Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7.  Target the policy to the newly created Windows 10 collection and click **OK**.
 
-    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![A screenshot of Microsoft Endpoint Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 You have now successfully configured Controlled folder access in audit mode.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
index f6e7c7fc29..ff4ab30d14 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
@@ -329,121 +329,121 @@ The steps below provide guidance for the following scenario:
 
 1. Create an application in Microsoft Endpoint Configuration Manager.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-1.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-1.png)
 
 2. Select **Manually specify the application information**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-2.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-2.png)
 
 3. Specify information about the application, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-3.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-3.png)
 
 4. Specify information about the software center, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-4.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-4.png)
 
 5. In **Deployment types** select **Add**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-5.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-5.png)
 
 6. Select **Manually specify the deployment type information**, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-6.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-6.png)
 
 7. Specify information about the deployment type, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-7.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-7.png)
 
 8. In **Content** > **Installation program** specify the command: `net start sense`.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-8.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-8.png)
 
 9. In **Detection method**, select **Configure rules to detect the presence of this deployment type**, then select **Add Clause**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-9.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-9.png)
 
 10. Specify the following detection rule details, then select **OK**:
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-10.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-10.png)
 
 11. In **Detection method** select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-11.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-11.png)
 
 12. In **User Experience**, specify the following information, then select **Next**:
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-12.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-12.png)
 
 13. In **Requirements**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-13.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-13.png)
 
 14. In **Dependencies**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-14.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-14.png)
 
 15. In **Summary**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-15.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-15.png)
 
 16. In **Completion**, select **Close**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-16.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-16.png)
 
 17. In **Deployment types**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-17.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-17.png)
 
 18. In **Summary**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-18.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-18.png)
 
     The status is then displayed:
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-19.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-19.png)
 
 19. In **Completion**, select **Close**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-20.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-20.png)
 
 20. You can now deploy the application by right-clicking the app and selecting **Deploy**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-21.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-21.png)
 
 21. In **General** select **Automatically distribute content for dependencies** and **Browse**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-22.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-22.png)
 
 22. In **Content** select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-23.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-23.png)
 
 23. In **Deployment settings**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-24.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-24.png)
 
 24. In **Scheduling** select **As soon as possible after the available time**, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-25.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-25.png)
 
 25. In **User experience**, select **Commit changes at deadline or during a maintenance window (requires restarts)**, then select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-26.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-26.png)
 
 26. In **Alerts** select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-27.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-27.png)
 
 27. In **Summary**, select **Next**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-28.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-28.png)
 
     The status is then displayed
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-29.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-29.png)
 
 28. In **Completion**, select **Close**.
 
-    ![Image of Microsoft Endpoint Configuration Manager configuration](images/mecm-30.png)
+    ![Image of Microsoft Endpoint Manager configuration](images/mecm-30.png)
 
 ## Related topics
 

From 24649cd68dc23036e7138055bbf55cfe7a14ac08 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 21 Dec 2020 16:36:50 +0530
Subject: [PATCH 094/825] updated-4715491

updated the correct name "Microsoft Endpoint Manager"
---
 ...rd-how-hardware-based-root-of-trust-helps-protect-windows.md | 2 +-
 .../get-support-for-security-baselines.md                       | 2 +-
 windows/whats-new/ltsc/whats-new-windows-10-2015.md             | 2 +-
 windows/whats-new/ltsc/whats-new-windows-10-2019.md             | 2 +-
 windows/whats-new/whats-new-windows-10-version-1507-and-1511.md | 2 +-
 windows/whats-new/whats-new-windows-10-version-1903.md          | 2 +-
 windows/whats-new/whats-new-windows-10-version-1909.md          | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
index 33b2c4f62e..00caa4505d 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
@@ -83,5 +83,5 @@ As Windows 10 boots, a series of integrity measurements are taken by Windows Def
 
 ![Boot time integrity](images/windows-defender-system-guard-boot-time-integrity.png)
 
-After the system boots, Windows Defender System Guard signs and seals these measurements using the TPM. Upon request, a management system like Intune or Microsoft Endpoint Configuration Manager can acquire them for remote analysis. If Windows Defender System Guard indicates that the device lacks integrity, the management system can take a series of actions, such as denying the device access to resources.
+After the system boots, Windows Defender System Guard signs and seals these measurements using the TPM. Upon request, a management system like Intune or Microsoft Endpoint Manager can acquire them for remote analysis. If Windows Defender System Guard indicates that the device lacks integrity, the management system can take a series of actions, such as denying the device access to resources.
 
diff --git a/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md b/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
index d4412fe665..6bb4c84d76 100644
--- a/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
+++ b/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
@@ -40,7 +40,7 @@ The toolkit supports formats created by the Windows GPO backup feature (.pol, .i
 
 Not yet. PowerShell-based DSC is rapidly gaining popularity, and more DSC tools are coming online to convert GPOs and DSC and to validate system configuration. We are currently developing a tool to provide customers with these features.
 
-**Does SCT support the creation of Microsoft Endpoint Configuration Manager DCM packs?**
+**Does SCT support the creation of Microsoft Endpoint Manager DCM packs?**
 
 No. A potential alternative is Desired State Configuration (DSC), a feature of the [Windows Management Framework](https://www.microsoft.com/download/details.aspx?id=40855). A tool that supports conversion of GPO Backups to DSC format can be found [here](https://github.com/Microsoft/BaselineManagement).
 
diff --git a/windows/whats-new/ltsc/whats-new-windows-10-2015.md b/windows/whats-new/ltsc/whats-new-windows-10-2015.md
index 0fb947167f..d0408f77d6 100644
--- a/windows/whats-new/ltsc/whats-new-windows-10-2015.md
+++ b/windows/whats-new/ltsc/whats-new-windows-10-2015.md
@@ -280,7 +280,7 @@ By using [Group Policy Objects](https://go.microsoft.com/fwlink/p/?LinkId=699279
 
 -   **Peer-to-peer delivery**, which administrators can enable to make delivery of updates to branch offices and remote sites with limited bandwidth very efficient.
 
--   **Use with existing tools** such as Microsoft Endpoint Configuration Manager and the [Enterprise Mobility Suite](https://docs.microsoft.com/enterprise-mobility-security).
+-   **Use with existing tools** such as Microsoft Endpoint Manager and the [Enterprise Mobility Suite](https://docs.microsoft.com/enterprise-mobility-security).
 
 Together, these Windows Update for Business features help reduce device management costs, provide controls over update deployment, offer quicker access to security updates, as well as provide access to the latest innovations from Microsoft on an ongoing basis. Windows Update for Business is a free service for all Windows 10 Pro, Enterprise, and Education editions, and can be used independent of, or in conjunction with, existing device management solutions such as [Windows Server Update Services (WSUS)](https://technet.microsoft.com/library/hh852345.aspx) and [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr).
 
diff --git a/windows/whats-new/ltsc/whats-new-windows-10-2019.md b/windows/whats-new/ltsc/whats-new-windows-10-2019.md
index abfe43e940..e74672c002 100644
--- a/windows/whats-new/ltsc/whats-new-windows-10-2019.md
+++ b/windows/whats-new/ltsc/whats-new-windows-10-2019.md
@@ -402,7 +402,7 @@ If you wish to take advantage of [Kiosk capabilities in Edge](https://docs.micro
 
 ### Co-management
 
-Intune and Microsoft Endpoint Configuration Manager policies have been added to enable hybrid Azure AD-joined authentication. Mobile Device Management (MDM) has added over 150 new policies and settings in this release, including the [MDMWinsOverGP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-controlpolicyconflict) policy, to enable easier transition to cloud-based management.
+Intune and Microsoft Endpoint Manager policies have been added to enable hybrid Azure AD-joined authentication. Mobile Device Management (MDM) has added over 150 new policies and settings in this release, including the [MDMWinsOverGP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-controlpolicyconflict) policy, to enable easier transition to cloud-based management.
 
 For more information, see [What's New in MDM enrollment and management](https://docs.microsoft.com/windows/client-management/mdm/new-in-windows-mdm-enrollment-management#whatsnew1803)
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1507-and-1511.md b/windows/whats-new/whats-new-windows-10-version-1507-and-1511.md
index 6898dce476..d12e6a7145 100644
--- a/windows/whats-new/whats-new-windows-10-version-1507-and-1511.md
+++ b/windows/whats-new/whats-new-windows-10-version-1507-and-1511.md
@@ -326,7 +326,7 @@ By using [Group Policy Objects](https://go.microsoft.com/fwlink/p/?LinkId=699279
 
 -   **Peer-to-peer delivery**, which administrators can enable to make delivery of updates to branch offices and remote sites with limited bandwidth very efficient.
 
--   **Use with existing tools** such as Microsoft Endpoint Configuration Manager and the [Enterprise Mobility Suite](https://docs.microsoft.com/enterprise-mobility-security).
+-   **Use with existing tools** such as Microsoft Endpoint Manager and the [Enterprise Mobility Suite](https://docs.microsoft.com/enterprise-mobility-security).
 
 Together, these Windows Update for Business features help reduce device management costs, provide controls over update deployment, offer quicker access to security updates, as well as provide access to the latest innovations from Microsoft on an ongoing basis. Windows Update for Business is a free service for all Windows 10 Pro, Enterprise, and Education editions, and can be used independent of, or in conjunction with, existing device management solutions such as [Windows Server Update Services (WSUS)](https://technet.microsoft.com/library/hh852345.aspx) and [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr).
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1903.md b/windows/whats-new/whats-new-windows-10-version-1903.md
index fe276072a2..fbe745b3a6 100644
--- a/windows/whats-new/whats-new-windows-10-version-1903.md
+++ b/windows/whats-new/whats-new-windows-10-version-1903.md
@@ -53,7 +53,7 @@ SetupDiag is a command-line tool that can help diagnose why a Windows 10 update
 
 ## Servicing
 
-- [**Delivery Optimization**](https://docs.microsoft.com/windows/deployment/update/waas-delivery-optimization): Improved Peer Efficiency for enterprises and educational institutions with complex networks is enabled with of [new policies](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization). This now supports Microsoft 365 Apps for enterprise updates, and Intune content, with Microsoft Endpoint Configuration Manager content coming soon! 
+- [**Delivery Optimization**](https://docs.microsoft.com/windows/deployment/update/waas-delivery-optimization): Improved Peer Efficiency for enterprises and educational institutions with complex networks is enabled with of [new policies](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization). This now supports Microsoft 365 Apps for enterprise updates, and Intune content, with Microsoft Endpoint Manager content coming soon! 
 - [**Automatic Restart Sign-on (ARSO)**](https://docs.microsoft.com/windows-insider/at-work-pro/wip-4-biz-whats-new#automatic-restart-and-sign-on-arso-for-enterprises-build-18305): Windows will automatically logon as the user and lock their device in order to complete the update, ensuring that when the user returns and unlocks the device, the update will be completed.  
 - [**Windows Update for Business**](https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Windows-Update-for-Business-and-the-retirement-of-SAC-T/ba-p/339523): There will now be a single, common start date for phased deployments (no more SAC-T designation). In addition, there will a new notification and reboot scheduling experience for end users, the ability to enforce update installation and reboot deadlines, and the ability to provide end user control over reboots for a specific time period. 
 - **Update rollback improvements**: You can now automatically recover from startup failures by removing updates if the startup failure was introduced after the installation of recent driver or quality updates. When a device is unable to start up properly after the recent installation of Quality of driver updates, Windows will now automatically uninstall the updates to get the device back up and running normally.
diff --git a/windows/whats-new/whats-new-windows-10-version-1909.md b/windows/whats-new/whats-new-windows-10-version-1909.md
index 314e4d3826..7b71eef3d5 100644
--- a/windows/whats-new/whats-new-windows-10-version-1909.md
+++ b/windows/whats-new/whats-new-windows-10-version-1909.md
@@ -32,7 +32,7 @@ If you are updating from an older version of Windows 10 (version 1809 or earlier
 
 ### Windows Server Update Services (WSUS)
 
-Pre-release Windows 10 feature updates are now available to IT administrators using WSUS. Microsoft Endpoint Configuration Manager version 1906 or later is required. For more information, see [Publishing pre-release Windows 10 feature updates to WSUS](https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Publishing-pre-release-Windows-10-feature-updates-to-WSUS/ba-p/845054).
+Pre-release Windows 10 feature updates are now available to IT administrators using WSUS. Microsoft Endpoint Manager version 1906 or later is required. For more information, see [Publishing pre-release Windows 10 feature updates to WSUS](https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Publishing-pre-release-Windows-10-feature-updates-to-WSUS/ba-p/845054).
 
 The Windows 10, version 1909 enablement package will be available on WSUS as [KB4517245](https://support.microsoft.com/kb/4517245), which can be deployed on existing deployments of Windows 10, version 1903. 
 

From 8c1306484fe2c2c71b5eeb4f53957cd3c6c3f6bc Mon Sep 17 00:00:00 2001
From: yanivkravitz <yanivk@microsoft.com>
Date: Mon, 21 Dec 2020 19:43:08 +0200
Subject: [PATCH 095/825] Update api-power-bi.md

update Power Bi APi example so it will work in any case even for tenant with large number of devices
---
 .../threat-protection/microsoft-defender-atp/api-power-bi.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
index 605b0f511a..86bfb94779 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
@@ -46,7 +46,7 @@ The first example demonstrates how to connect Power BI to Advanced Hunting API a
 
 ```
 	let 
-		AdvancedHuntingQuery = "DeviceEvents | where ActionType contains 'Anti'",
+		AdvancedHuntingQuery = "DeviceEvents | where ActionType contains 'Anti' | limit 20",
 
 		HuntingUrl = "https://api.securitycenter.windows.com/api/advancedqueries",
 

From 752f97d911bb875437be0b8a0ed45270044472d0 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 21 Dec 2020 16:32:56 -0800
Subject: [PATCH 096/825] doc updates

---
 .../microsoft-defender-atp/tvm-remediation.md |  3 +-
 .../tvm-security-recommendation.md            | 31 +++++--------------
 2 files changed, 9 insertions(+), 25 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 37f460afea..2c7a81ec77 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -46,7 +46,8 @@ See [Use Intune to remediate vulnerabilities identified by Microsoft Defender fo
 
 2. Select a security recommendation you would like to request remediation for, and then select **Remediation options**.
 
-3. Fill out the form, including what you are requesting remediation for, priority, due date, and optional notes. If you choose the "attention required" remediation option, selecting a due date will not be available since there is no specific action.
+3. Fill out the form, including what you are requesting remediation for, applicable device groups, priority, due date, and optional notes.
+    1. If you choose the "attention required" remediation option, selecting a due date will not be available since there is no specific action.
 
 4. Select **Submit request**. Submitting a remediation request creates a remediation activity item within threat and vulnerability management, which can be used for monitoring the remediation progress for this recommendation. This will not trigger a remediation or apply any changes to devices.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 3db95062b4..1a7f20a55c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -112,32 +112,17 @@ If there is a large jump in the number of exposed devices, or a sharp increase i
 
 ## Request remediation
 
-The threat and vulnerability management capability in Microsoft Defender ATP bridges the gap between Security and IT administrators through the remediation request workflow. Security admins like you can request for the IT Administrator to remediate a vulnerability from the **Security recommendation** pages to Intune.
+The threat and vulnerability management remediation capability bridges the gap between Security and IT administrators through the remediation request workflow. Security admins like you can request for the IT Administrator to remediate a vulnerability from the **Security recommendation** page to Intune. [Learn more about remediation options](tvm-remediation.md)
 
-### Enable Microsoft Intune connection
+### How to request remediation
 
-To use this capability, enable your Microsoft Intune connections. In the Microsoft Defender Security Center, navigate to **Settings** > **General** > **Advanced features**. Scroll down and look for **Microsoft Intune connection**. By default, the toggle is turned off. Turn your **Microsoft Intune connection** toggle **On**.
-
-See [Use Intune to remediate vulnerabilities identified by Microsoft Defender ATP](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
-
-### Remediation request steps
-
-1. Select a security recommendation you would like to request remediation for, and then select **Remediation options**.
-
-2. Fill out the form, including what you are requesting remediation for, priority, due date, and optional notes. Select **Submit request**. Submitting a remediation request creates a remediation activity item within threat and vulnerability management, which can be used for monitoring the remediation progress for this recommendation. This will not trigger a remediation or apply any changes to devices.
-
-3. Notify your IT Administrator about the new request and have them log into Intune to approve or reject the request and start a package deployment.
-
-4. Go to the [**Remediation**](tvm-remediation.md) page to view the status of your remediation request.
-
-If you want to check how the ticket shows up in Intune, see [Use Intune to remediate vulnerabilities identified by Microsoft Defender ATP](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
-
->[!NOTE]
->If your request involves remediating more than 10,000 devices, we can only send 10,000 devices for remediation to Intune.
+Select a security recommendation you would like to request remediation for, and then select **Remediation options**. Fill out the form and select **Submit request**. Go to the [**Remediation**](tvm-remediation.md) page to view the status of your remediation request. [Learn more about how to request remediation](tvm-remediation.md#request-remediation)
 
 ## File for exception
 
-As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md). If your organization has device groups, you will now be able to scope the exception to specific device groups.
+As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. [Learn more about exceptions](tvm-exception.md)
+
+Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md).
 
 When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
 
@@ -147,9 +132,7 @@ Select a security recommendation you would like create an exception for, and the
 
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
 
-Choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
-
-[Learn more about exceptions](tvm-exception.md)
+Fill out the form and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab. [Learn more about how to create an exception](tvm-exception.md#create-an-exception)
 
 ## Report inaccuracy
 

From d7cd0431b7c3b51f2c005888866206bbe0597c25 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 21 Dec 2020 16:36:36 -0800
Subject: [PATCH 097/825] updated software inventroty

---
 .../microsoft-defender-atp/tvm-software-inventory.md   | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
index d18b376b49..e927418779 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
@@ -96,9 +96,13 @@ You can view software pages a few different ways:
 
  A full page will appear with all the details of a specific software and the following information:
 
-- Side panel with vendor information, prevalence of the software in the organization (including number of devices it's installed on, and exposed devices that aren't patched), whether and exploit is available, and impact to your exposure score
-- Data visualizations showing the number of, and severity of, vulnerabilities and misconfigurations. Also, graphs with the number of exposed devices
-- Tabs with lists of the corresponding security recommendations for the weaknesses and vulnerabilities identified, the named CVEs of discovered vulnerabilities, the names of the devices that the software is installed on, and the specific versions of the software with the number of devices that have each version installed and number of vulnerabilities.
+- Side panel with vendor information, prevalence of the software in the organization (including number of devices it's installed on, and exposed devices that aren't patched), whether and exploit is available, and impact to your exposure score.
+- Data visualizations showing the number of, and severity of, vulnerabilities and misconfigurations. Also, graphs with the number of exposed devices.
+- Tabs showing information such as:
+    - Corresponding security recommendations for the weaknesses and vulnerabilities identified.
+    - Named CVEs of discovered vulnerabilities.
+    - Devices that have the software installed (along with device name, domain, OS, and more).
+    - Software version list (including number of devices the version is installed on, the number of discovered vulnerabilities, and the names of the installed devices).
 
     ![Software example page for Visual Studio 2017 with the software details, weaknesses, exposed devices, and more.](images/tvm-software-page-example.png)
 

From e1e783fbcf92b1c158e421d31d7a89a3db82ea95 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 21 Dec 2020 16:52:09 -0800
Subject: [PATCH 098/825] Added Logon policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   15 +
 .../policy-configuration-service-provider.md  |   50 +
 .../mdm/policy-csp-admx-grouppolicy.md        |  245 ++++
 .../mdm/policy-csp-admx-logon.md              | 1207 +++++++++++++++++
 5 files changed, 1518 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-grouppolicy.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-logon.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index a4329d7e1b..0dc397819a 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -215,6 +215,7 @@
 #### [ADMX_LanmanServer](policy-csp-admx-lanmanserver.md)
 #### [ADMX_LanmanWorkstation](policy-csp-admx-lanmanworkstation.md)
 #### [ADMX_LinkLayerTopologyDiscovery](policy-csp-admx-linklayertopologydiscovery.md)
+#### [ADMX_Logon](policy-csp-admx-logon.md)
 #### [ADMX_MicrosoftDefenderAntivirus](policy-csp-admx-microsoftdefenderantivirus.md)
 #### [ADMX_MMC](policy-csp-admx-mmc.md)
 #### [ADMX_MMCSnapins](policy-csp-admx-mmcsnapins.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 0d38a8664a..a66d12c325 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -363,6 +363,21 @@ ms.date: 10/08/2020
 - [ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enableofflinefilesforcashares)
 - [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableLLTDIO](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablelltdio)
 - [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableRspndr](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablerspndr)
+- [ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin](./policy-csp-admx-logon.md#admx-logon-blockuserfromshowingaccountdetailsonsignin)
+- [ADMX_Logon/DisableAcrylicBackgroundOnLogon](./policy-csp-admx-logon.md#admx-logon-disableacrylicbackgroundonlogon)
+- [ADMX_Logon/DisableExplorerRunLegacy_1](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-1)
+- [ADMX_Logon/DisableExplorerRunLegacy_2](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-2)
+- [ADMX_Logon/DisableExplorerRunOnceLegacy_1](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-1)
+- [ADMX_Logon/DisableExplorerRunOnceLegacy_2](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-2)
+- [ADMX_Logon/DisableStatusMessages](./policy-csp-admx-logon.md#admx-logon-disablestatusmessages)
+- [ADMX_Logon/DontEnumerateConnectedUsers](./policy-csp-admx-logon.md#admx-logon-dontenumerateconnectedusers)
+- [ADMX_Logon/NoWelcomeTips_1](./policy-csp-admx-logon.md#admx-logon-nowelcometips-1)
+- [ADMX_Logon/NoWelcomeTips_2](./policy-csp-admx-logon.md#admx-logon-nowelcometips-2)
+- [ADMX_Logon/Run_1](./policy-csp-admx-logon.md#admx-logon-run-1)
+- [ADMX_Logon/Run_2](./policy-csp-admx-logon.md#admx-logon-run-2)
+- [ADMX_Logon/SyncForegroundPolicy](./policy-csp-admx-logon.md#admx-logon-syncforegroundpolicy)
+- [ADMX_Logon/UseOEMBackground](./policy-csp-admx-logon.md#admx-logon-useoembackground)
+- [ADMX_Logon/VerboseStatus](./policy-csp-admx-logon.md#admx-logon-verbosestatus)
 - [ADMX_MicrosoftDefenderAntivirus/AllowFastServiceStartup](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-allowfastservicestartup)
 - [ADMX_MicrosoftDefenderAntivirus/DisableAntiSpywareDefender](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableantispywaredefender)
 - [ADMX_MicrosoftDefenderAntivirus/DisableAutoExclusions](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableautoexclusions)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index addca8a9df..d5ff3b63a2 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1396,6 +1396,56 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Logon policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-blockuserfromshowingaccountdetailsonsignin" id="admx-logon-blockuserfromshowingaccountdetailsonsignin">ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disableacrylicbackgroundonlogon" id="admx-logon-disableacrylicbackgroundonlogon">ADMX_Logon/DisableAcrylicBackgroundOnLogon</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-1" id="admx-logon-disableexplorerrunlegacy-1">ADMX_Logon/DisableExplorerRunLegacy_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-2" id="admx-logon-disableexplorerrunlegacy-2">ADMX_Logon/DisableExplorerRunLegacy_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-1" id="admx-logon-disableexplorerrunoncelegacy-1">ADMX_Logon/DisableExplorerRunOnceLegacy_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-2" id="admx-logon-disableexplorerrunoncelegacy-2">ADMX_Logon/DisableExplorerRunOnceLegacy_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-disablestatusmessages" id="admx-logon-disablestatusmessages">ADMX_Logon/DisableStatusMessages</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-dontenumerateconnectedusers" id="admx-logon-dontenumerateconnectedusers">ADMX_Logon/DontEnumerateConnectedUsers</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-nowelcometips-1" id="admx-logon-nowelcometips-1">ADMX_Logon/NoWelcomeTips_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-nowelcometips-2" id="admx-logon-nowelcometips-2">ADMX_Logon/NoWelcomeTips_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-run-1" id="admx-logon-run-1">ADMX_Logon/Run_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-run-2" id="admx-logon-run-2">ADMX_Logon/Run_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-syncforegroundpolicy" id="admx-logon-syncforegroundpolicy">ADMX_Logon/SyncForegroundPolicy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-useoembackground" id="admx-logon-useoembackground">ADMX_Logon/UseOEMBackground</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-logon.md#admx-logon-verbosestatus" id="admx-logon-verbosestatus">ADMX_Logon/VerboseStatus</a>
+  </dd>
+</dl>
+
 ### ADMX_MicrosoftDefenderAntivirus policies  
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-grouppolicy.md b/windows/client-management/mdm/policy-csp-admx-grouppolicy.md
new file mode 100644
index 0000000000..d53e96d965
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-grouppolicy.md
@@ -0,0 +1,245 @@
+---
+title: Policy CSP - ADMX_GroupPolicy
+description: Policy CSP - ADMX_GroupPolicy
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/21/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_GroupPolicy
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_GroupPolicy policies  
+
+<dl>
+  <dd>
+    <a href="#admx-grouppolicy-allowx-forestpolicy-and-rup">ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-appmgmt">ADMX_GroupPolicy/CSE_AppMgmt</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-diskquota">ADMX_GroupPolicy/CSE_DiskQuota</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-efsrecovery">ADMX_GroupPolicy/CSE_EFSRecovery</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-folderredirection">ADMX_GroupPolicy/CSE_FolderRedirection</a>
+  </dd>
+    <dd>
+    <a href="#admx-grouppolicy-cse-iem">ADMX_GroupPolicy/CSE_IEM</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-ipsecurity">ADMX_GroupPolicy/CSE_IPSecurity</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-registry">ADMX_GroupPolicy/CSE_Registry</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-scripts">ADMX_GroupPolicy/CSE_Scripts</a>
+  </dd>
+  <dd>
+    <a href="#admx-grouppolicy-cse-security">ADMX_GroupPolicy/CSE_Security</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-cse-wired">ADMX_GroupPolicy/CSE_Wired</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-cse-wireless">ADMX_GroupPolicy/CSE_Wireless</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-corpconnsyncwaittime">ADMX_GroupPolicy/CorpConnSyncWaitTime</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-denyrsoptointeractiveuser-1">ADMX_GroupPolicy/DenyRsopToInteractiveUser_1</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-denyrsoptointeractiveuser-2">ADMX_GroupPolicy/DenyRsopToInteractiveUser_2</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-disableaoacprocessing">ADMX_GroupPolicy/DisableAOACProcessing</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-disableautoadmupdate">ADMX_GroupPolicy/DisableAutoADMUpdate</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-disablebackgroundpolicy">ADMX_GroupPolicy/DisableBackgroundPolicy</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-disablelgpoprocessing">ADMX_GroupPolicy/DisableLGPOProcessing</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-disableusersfrommachgp">ADMX_GroupPolicy/DisableUsersFromMachGP</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-enablecdp">ADMX_GroupPolicy/EnableCDP</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-enablelogonoptimization">ADMX_GroupPolicy/EnableLogonOptimization</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-enablelogonoptimizationonserversku">ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-enablemmx">ADMX_GroupPolicy/EnableMMX</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-enforcepoliciesonly">ADMX_GroupPolicy/EnforcePoliciesOnly</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-fontmitigation">ADMX_GroupPolicy/FontMitigation</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-gpdcoptions">ADMX_GroupPolicy/GPDCOptions</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-gptransferrate-1">ADMX_GroupPolicy/GPTransferRate_1</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-gptransferrate-2">ADMX_GroupPolicy/GPTransferRate_2</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-grouppolicyrefreshrate">ADMX_GroupPolicy/GroupPolicyRefreshRate</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-grouppolicyrefreshratedc">ADMX_GroupPolicy/GroupPolicyRefreshRateDC</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-grouppolicyrefreshrateuser">ADMX_GroupPolicy/GroupPolicyRefreshRateUser</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-logonscriptdelay">ADMX_GroupPolicy/LogonScriptDelay</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-newgpodisplayname">ADMX_GroupPolicy/NewGPODisplayName</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-newgpolinksdisabled">ADMX_GroupPolicy/NewGPOLinksDisabled</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-onlyuselocaladminfiles">ADMX_GroupPolicy/OnlyUseLocalAdminFiles</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-processmitigationoptions">ADMX_GroupPolicy/ProcessMitigationOptions</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-rsoplogging">ADMX_GroupPolicy/RSoPLogging</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy">ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-slowlinkdefaultfordirectaccess">ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-slowlinkdefaulttoasync">ADMX_GroupPolicy/SlowlinkDefaultToAsync</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-syncwaittime">ADMX_GroupPolicy/SyncWaitTime</a>
+  </dd>
+   <dd>
+    <a href="#admx-grouppolicy-userpolicymode">ADMX_GroupPolicy/UserPolicyMode</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-auditsettings-includecmdline"></a>**ADMX_AuditSettings/IncludeCmdLine**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting determines what information is logged in security audit events when a new process has been created. This setting only applies when the Audit Process Creation policy is enabled.
+
+If you enable this policy setting, the command line information for every process will be logged in plain text in the security event log as part of the Audit Process Creation event 4688, "a new process has been created," on the workstations and servers on which this policy setting is applied.
+
+If you disable or do not configure this policy setting, the process's command line information will not be included in Audit Process Creation events.  
+
+Default is Not configured.
+
+> [!NOTE]
+> When this policy setting is enabled, any user with access to read the security events will be able to read the command line arguments for any successfully created process. Command line arguments can contain sensitive or private information, such as passwords or user data.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Include command line in process creation events*
+-   GP name: *IncludeCmdLine*
+-   GP path: *System/Audit Process Creation*
+-   GP ADMX file name: *AuditSettings.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-logon.md b/windows/client-management/mdm/policy-csp-admx-logon.md
new file mode 100644
index 0000000000..54fe3f12cb
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-logon.md
@@ -0,0 +1,1207 @@
+---
+title: Policy CSP - ADMX_Logon
+description: Policy CSP - ADMX_Logon
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/21/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Logon
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Logon policies  
+
+<dl>
+  <dd>
+    <a href="#admx-logon-blockuserfromshowingaccountdetailsonsignin">ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disableacrylicbackgroundonlogon">ADMX_Logon/DisableAcrylicBackgroundOnLogon</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disableexplorerrunlegacy-1">ADMX_Logon/DisableExplorerRunLegacy_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disableexplorerrunlegacy-2">ADMX_Logon/DisableExplorerRunLegacy_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disableexplorerrunoncelegacy-1">ADMX_Logon/DisableExplorerRunOnceLegacy_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disableexplorerrunoncelegacy-2">ADMX_Logon/DisableExplorerRunOnceLegacy_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-disablestatusmessages">ADMX_Logon/DisableStatusMessages</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-dontenumerateconnectedusers">ADMX_Logon/DontEnumerateConnectedUsers</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-nowelcometips-1">ADMX_Logon/NoWelcomeTips_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-nowelcometips-2">ADMX_Logon/NoWelcomeTips_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-run-1">ADMX_Logon/Run_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-run-2">ADMX_Logon/Run_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-syncforegroundpolicy">ADMX_Logon/SyncForegroundPolicy</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-useoembackground">ADMX_Logon/UseOEMBackground</a>
+  </dd>
+  <dd>
+    <a href="#admx-logon-verbosestatus">ADMX_Logon/VerboseStatus</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-blockuserfromshowingaccountdetailsonsignin"></a>**ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy prevents the user from showing account details (email address or user name) on the sign-in screen. 
+
+If you enable this policy setting, the user cannot choose to show account details on the sign-in screen.
+
+If you disable or do not configure this policy setting, the user may choose to show account details on the sign-in screen.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Block user from showing account details on sign-in*
+-   GP name: *BlockUserFromShowingAccountDetailsOnSignin*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disableacrylicbackgroundonlogon"></a>**ADMX_Logon/DisableAcrylicBackgroundOnLogon**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting disables the acrylic blur effect on logon background image.
+
+If you enable this policy, the logon background image shows without blur.
+
+If you disable or do not configure this policy, the logon background image adopts the acrylic blur effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Show clear logon background*
+-   GP name: *DisableAcrylicBackgroundOnLogon*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disableexplorerrunlegacy-1"></a>**ADMX_Logon/DisableExplorerRunLegacy_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting ignores the customized run list.
+
+You can create a customized list of additional programs and documents that the system starts automatically when it runs on Windows Vista, Windows XP Professional, and Windows 2000 Professional. These programs are added to the standard run list of programs and services that the system starts.
+
+If you enable this policy setting, the system ignores the run list for Windows Vista, Windows XP Professional, and Windows 2000 Professional.
+
+If you disable or do not configure this policy setting, Windows Vista adds any customized run list configured to its run list.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If both policy settings are configured, the policy setting in Computer Configuration takes precedence over the policy setting in User Configuration.
+
+> [!NOTE]
+> To create a customized run list by using a policy setting, use the "Run these applications at startup" policy setting.  Also, see the "Do not process the run once list" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not process the legacy run list*
+-   GP name: *DisableExplorerRunLegacy_1*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disableexplorerrunlegacy-2"></a>**ADMX_Logon/DisableExplorerRunLegacy_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting ignores the customized run list.
+
+You can create a customized list of additional programs and documents that the system starts automatically when it runs on Windows Vista, Windows XP Professional, and Windows 2000 Professional. These programs are added to the standard run list of programs and services that the system starts.
+
+If you enable this policy setting, the system ignores the run list for Windows Vista, Windows XP Professional, and Windows 2000 Professional.
+
+If you disable or do not configure this policy setting, Windows Vista adds any customized run list configured to its run list.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If both policy settings are configured, the policy setting in Computer Configuration takes precedence over the policy setting in User Configuration.
+
+> [!NOTE]
+> To create a customized run list by using a policy setting, use the "Run these applications at startup" policy setting.  Also, see the "Do not process the run once list" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not process the legacy run list*
+-   GP name: *DisableExplorerRunLegacy_2*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disableexplorerrunoncelegacy-1"></a>**ADMX_Logon/DisableExplorerRunOnceLegacy_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting ignores customized run-once lists.
+
+You can create a customized list of additional programs and documents that are started automatically the next time the system starts (but not thereafter). These programs are added to the standard list of programs and services that the system starts.
+
+If you enable this policy setting, the system ignores the run-once list.
+
+If you disable or do not configure this policy setting, the system runs the programs in the run-once list.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If both policy settings are configured, the policy setting in Computer Configuration takes precedence over the policy setting in User Configuration.
+
+> [!NOTE]
+> Customized run-once lists are stored in the registry in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce. Also, see the "Do not process the legacy run list" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not process the run once list*
+-   GP name: *DisableExplorerRunOnceLegacy_1*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disableexplorerrunoncelegacy-2"></a>**ADMX_Logon/DisableExplorerRunOnceLegacy_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting ignores customized run-once lists.
+
+You can create a customized list of additional programs and documents that are started automatically the next time the system starts (but not thereafter). These programs are added to the standard list of programs and services that the system starts.
+
+If you enable this policy setting, the system ignores the run-once list.
+
+If you disable or do not configure this policy setting, the system runs the programs in the run-once list.
+
+This policy setting appears in the Computer Configuration and User Configuration folders. If both policy settings are configured, the policy setting in Computer Configuration takes precedence over the policy setting in User Configuration.
+
+> [!NOTE]
+> Customized run-once lists are stored in the registry in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce. Also, see the "Do not process the legacy run list" policy setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not process the run once list*
+-   GP name: *DisableExplorerRunOnceLegacy_2*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-disablestatusmessages"></a>**ADMX_Logon/DisableStatusMessages**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting suppresses system status messages.
+
+If you enable this setting, the system does not display a message reminding users to wait while their system starts or shuts down, or while users log on or off.
+
+If you disable or do not configure this policy setting, the system displays the message reminding users to wait while their system starts or shuts down, or while users log on or off.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Remove Boot / Shutdown / Logon / Logoff status messages*
+-   GP name: *DisableStatusMessages*
+-   GP path: *System*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-dontenumerateconnectedusers"></a>**ADMX_Logon/DontEnumerateConnectedUsers**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents connected users from being enumerated on domain-joined computers.
+
+If you enable this policy setting, the Logon UI will not enumerate any connected users on domain-joined computers.
+
+If you disable or do not configure this policy setting, connected users will be enumerated on domain-joined computers.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not enumerate connected users on domain-joined computers*
+-   GP name: *DontEnumerateConnectedUsers*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-nowelcometips-1"></a>**ADMX_Logon/NoWelcomeTips_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting hides the welcome screen that is displayed on Windows 2000 Professional each time the user logs on.
+
+If you enable this policy setting, the welcome screen is hidden from the user logging on to a computer where this policy is applied.
+
+Users can still display the welcome screen by selecting it on the Start menu or by typing "Welcome" in the Run dialog box.
+
+If you disable or do not configure this policy, the welcome screen is displayed each time a user logs on to the computer.
+
+This setting applies only to Windows 2000 Professional. It does not affect the "Configure Your Server on a Windows 2000 Server" screen on Windows 2000 Server.
+
+> [!NOTE]
+> This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
+
+> [!TIP]
+> To display the welcome screen, click Start, point to Programs, point to Accessories, point to System Tools, and then click "Getting Started." To suppress the welcome screen without specifying a setting, clear the "Show this screen at startup" check box on the welcome screen.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not display the Getting Started welcome screen at logon*
+-   GP name: *NoWelcomeTips_1*
+-   GP path: *System*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-nowelcometips-2"></a>**ADMX_Logon/NoWelcomeTips_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting hides the welcome screen that is displayed on Windows 2000 Professional each time the user logs on.
+
+If you enable this policy setting, the welcome screen is hidden from the user logging on to a computer where this policy is applied.
+
+Users can still display the welcome screen by selecting it on the Start menu or by typing "Welcome" in the Run dialog box.
+
+If you disable or do not configure this policy, the welcome screen is displayed each time a user logs on to the computer.  This setting applies only to Windows 2000 Professional. It does not affect the "Configure Your Server on a Windows 2000 Server" screen on Windows 2000 Server.
+
+> [!NOTE]
+> This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
+
+> [!TIP]
+> To display the welcome screen, click Start, point to Programs, point to Accessories, point to System Tools, and then click "Getting Started." To suppress the welcome screen without specifying a setting, clear the "Show this screen at startup" check box on the welcome screen.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not display the Getting Started welcome screen at logon*
+-   GP name: *NoWelcomeTips_2*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-run-1"></a>**ADMX_Logon/Run_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies additional programs or documents that Windows starts automatically when a user logs on to the system.
+
+If you enable this policy setting, you can specify which programs can run at the time the user logs on to this computer that has this policy applied.
+
+To specify values for this policy setting, click Show. In the Show Contents dialog box in the Value column, type the name of the executable program (.exe) file or document file. To specify another name, press ENTER, and type the name. Unless the file is located in the %Systemroot% directory, you must specify the fully qualified path to the file.
+
+If you disable or do not configure this policy setting, the user will have to start the appropriate programs after logon.
+
+> [!NOTE]
+> This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the system starts the programs specified in the Computer Configuration setting just before it starts the programs specified in the User Configuration setting.
+
+Also, see the "Do not process the legacy run list" and the "Do not process the run once list" settings.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Run these programs at user logon*
+-   GP name: *Run_1*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-run-2"></a>**ADMX_Logon/Run_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies additional programs or documents that Windows starts automatically when a user logs on to the system.
+
+If you enable this policy setting, you can specify which programs can run at the time the user logs on to this computer that has this policy applied.
+
+To specify values for this policy setting, click Show. In the Show Contents dialog box in the Value column, type the name of the executable program (.exe) file or document file. To specify another name, press ENTER, and type the name. Unless the file is located in the %Systemroot% directory, you must specify the fully qualified path to the file.
+
+If you disable or do not configure this policy setting, the user will have to start the appropriate programs after logon.
+
+> [!NOTE]
+> This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the system starts the programs specified in the Computer Configuration setting just before it starts the programs specified in the User Configuration setting.
+
+Also, see the "Do not process the legacy run list" and the "Do not process the run once list" settings.
+
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Run these programs at user logon*
+-   GP name: *Run_2*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-syncforegroundpolicy"></a>**ADMX_Logon/SyncForegroundPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether Group Policy processing is synchronous (that is, whether computers wait for the network to be fully initialized during computer startup and user logon). By default, on client computers, Group Policy processing is not synchronous; client computers typically do not wait for the network to be fully initialized at startup and logon. Existing users are logged on using cached credentials, which results in shorter logon times. Group Policy is applied in the background after the network becomes available. 
+
+Note that because this is a background refresh, extensions such as Software Installation and Folder Redirection take two logons to apply changes. To be able to operate safely, these extensions require that no users be logged on. Therefore, they must be processed in the foreground before users are actively using the computer. In addition, changes that are made to the user object, such as adding a roaming profile path, home directory, or user object logon script, may take up to two logons to be detected.
+
+If a user with a roaming profile, home directory, or user object logon script logs on to a computer, computers always wait for the network to be initialized before logging the user on. If a user has never logged on to this computer before, computers always wait for the network to be initialized.
+
+If you enable this policy setting, computers wait for the network to be fully initialized before users are logged on. Group Policy is applied in the foreground, synchronously.
+
+On servers running Windows Server 2008 or later, this policy setting is ignored during Group Policy processing at computer startup and Group Policy processing will be synchronous (these servers wait for the network to be initialized during computer startup).
+
+If the server is configured as follows, this policy setting takes effect during Group Policy processing at user logon:
+
+- The server is configured as a terminal server (that is, the Terminal Server role service is installed and configured on the server); and
+- The “Allow asynchronous user Group Policy processing when logging on through Terminal Services” policy setting is enabled. This policy setting is located under Computer Configuration\Policies\Administrative templates\System\Group Policy\\.
+
+If this configuration is not implemented on the server, this policy setting is ignored. In this case, Group Policy processing at user logon is synchronous (these servers wait for the network to be initialized during user logon).
+
+If you disable or do not configure this policy setting and users log on to a client computer or a server running Windows Server 2008 or later and that is configured as described earlier, the computer typically does not wait for the network to be fully initialized. In this case, users are logged on with cached credentials. Group Policy is applied asynchronously in the background.
+
+> [!NOTE]
+
+> - If you want to guarantee the application of Folder Redirection, Software Installation, or roaming user profile settings in just one logon, enable this policy setting to ensure that Windows waits for the network to be available before applying policy. 
+> - If Folder Redirection policy will apply during the next logon, security policies will be applied asynchronously during the next update cycle, if network connectivity is available.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Always wait for the network at computer startup and logon*
+-   GP name: *SyncForegroundPolicy*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-useoembackground"></a>**ADMX_Logon/UseOEMBackground**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting ignores Windows Logon Background.
+
+This policy setting may be used to make Windows give preference to a custom logon background.  If you enable this policy setting, the logon screen always attempts to load a custom background instead of the Windows-branded logon background.
+
+If you disable or do not configure this policy setting, Windows uses the default Windows logon background or custom background.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Always use custom logon background*
+-   GP name: *UseOEMBackground*
+-   GP path: *System\Logon*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-logon-verbosestatus"></a>**ADMX_Logon/VerboseStatus**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to display highly detailed status messages.
+
+This policy setting is designed for advanced users who require this information.
+
+If you enable this policy setting, the system displays status messages that reflect each step in the process of starting, shutting down, logging on, or logging off the system.
+
+If you disable or do not configure this policy setting, only the default status messages are displayed to the user during these processes.
+
+> [!NOTE]
+> This policy setting is ignored if the "Remove Boot/Shutdown/Logon/Logoff status messages" policy setting is enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Display highly detailed status messages*
+-   GP name: *VerboseStatus*
+-   GP path: *System*
+-   GP ADMX file name: *Logon.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From 47ecf68cb0b00324b1c127a1b26e2dac416402c4 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Mon, 21 Dec 2020 17:16:38 -0800
Subject: [PATCH 099/825] removing solorigate link

---
 windows/security/includes/microsoft-defender.md | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/windows/security/includes/microsoft-defender.md b/windows/security/includes/microsoft-defender.md
index 27394df0ea..ff59512a8b 100644
--- a/windows/security/includes/microsoft-defender.md
+++ b/windows/security/includes/microsoft-defender.md
@@ -9,6 +9,3 @@ author: dansimp
 ms.prod: w10
 ms.topic: include
 ---
-
-> [!IMPORTANT]
-> [Learn how Microsoft is helping to protect customers from Solorigate, a recent sophisticated attack](https://aka.ms/solorigate).

From 8be9a1655b0e52cf785c848385aebbee65612faf Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Tue, 22 Dec 2020 20:38:34 +0500
Subject: [PATCH 100/825] Update in PreReq

We need to install both with ADK and Windows PE-Addon for copype.cmd to work. Updated the prereq portion.

Problem:https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8752
---
 windows/deployment/configure-a-pxe-server-to-load-windows-pe.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md b/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
index fcbd35b410..a435fc417c 100644
--- a/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
+++ b/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
@@ -26,7 +26,7 @@ This walkthrough describes how to configure a PXE server to load Windows PE by
 
 ## Prerequisites
 
-- A deployment computer: A computer with the [Windows Assessment and Deployment Kit](https://go.microsoft.com/fwlink/p/?LinkId=526803) (Windows ADK) installed.
+- A deployment computer: A computer with the [Windows Assessment and Deployment Kit](https://go.microsoft.com/fwlink/p/?LinkId=526803) (Windows ADK) and Windows PE add-on with ADK installed.
 - A DHCP server: A DHCP server or DHCP proxy configured to respond to PXE client requests is required.
 - A PXE server: A server running the TFTP service that can host Windows PE boot files that the client will download.
 - A file server: A server hosting a network file share.

From ea4b0bb33b60911dfec584c2bb7c20bff2b99468 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 12:48:03 -0800
Subject: [PATCH 101/825] Update
 windows/deployment/configure-a-pxe-server-to-load-windows-pe.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/deployment/configure-a-pxe-server-to-load-windows-pe.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md b/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
index a435fc417c..29ef793b14 100644
--- a/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
+++ b/windows/deployment/configure-a-pxe-server-to-load-windows-pe.md
@@ -26,7 +26,7 @@ This walkthrough describes how to configure a PXE server to load Windows PE by
 
 ## Prerequisites
 
-- A deployment computer: A computer with the [Windows Assessment and Deployment Kit](https://go.microsoft.com/fwlink/p/?LinkId=526803) (Windows ADK) and Windows PE add-on with ADK installed.
+- A deployment computer: A computer with the [Windows Assessment and Deployment Kit](https://go.microsoft.com/fwlink/p/?LinkId=526803) (Windows ADK) and the Windows PE add-on with ADK installed.
 - A DHCP server: A DHCP server or DHCP proxy configured to respond to PXE client requests is required.
 - A PXE server: A server running the TFTP service that can host Windows PE boot files that the client will download.
 - A file server: A server hosting a network file share.

From ca50f0fd354dccb14a443651258518eb24c93d5e Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 13:37:45 -0800
Subject: [PATCH 102/825] Update
 required-windows-diagnostic-data-events-and-fields-2004.md

removing version
---
 ...-diagnostic-data-events-and-fields-2004.md | 34 -------------------
 1 file changed, 34 deletions(-)

diff --git a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
index b1c3b25c91..407d8166d6 100644
--- a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
+++ b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
@@ -61,8 +61,6 @@ The following fields are available:
 - **DatasourceApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -74,8 +72,6 @@ The following fields are available:
 - **DatasourceDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDevicePnp_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS1**  The total DataSourceDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -89,8 +85,6 @@ The following fields are available:
 - **DatasourceDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDriverPackage_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_RS1**  The total DataSourceDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDriverPackage_RS2**  The total DataSourceDriverPackage objects targeting Windows 10, version 1703 on this device.
 - **DatasourceDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -104,8 +98,6 @@ The following fields are available:
 - **DataSourceMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoBlock_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS1**  The total DataSourceMatchingInfoBlock objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoBlock_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS3**  The count of the number of this particular object type present on this device.
@@ -117,8 +109,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPassive_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS1**  The total DataSourceMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPassive_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS3**  The count of the number of this particular object type present on this device.
@@ -130,8 +120,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPostUpgrade_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS1**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS2**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS3**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -143,8 +131,6 @@ The following fields are available:
 - **DatasourceSystemBios_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceSystemBios_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_RS1**  The total DatasourceSystemBios objects targeting Windows 10 version 1607 present on this device.
 - **DatasourceSystemBios_RS2**  The total DatasourceSystemBios objects targeting Windows 10 version 1703 present on this device.
 - **DatasourceSystemBios_RS3**  The total DatasourceSystemBios objects targeting Windows 10 version 1709 present on this device.
@@ -158,8 +144,6 @@ The following fields are available:
 - **DecisionApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionApplicationFile_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -171,8 +155,6 @@ The following fields are available:
 - **DecisionDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDevicePnp_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS1**  The total DecisionDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DecisionDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -186,8 +168,6 @@ The following fields are available:
 - **DecisionDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDriverPackage_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS1**  The total DecisionDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DecisionDriverPackage_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -201,8 +181,6 @@ The following fields are available:
 - **DecisionMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoBlock_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_RS1**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMatchingInfoBlock_RS2**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMatchingInfoBlock_RS3**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1709 present on this device.
@@ -214,8 +192,6 @@ The following fields are available:
 - **DecisionMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPassive_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_RS1**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPassive_RS2**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPassive_RS3**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1803 on this device.
@@ -227,8 +203,6 @@ The following fields are available:
 - **DecisionMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPostUpgrade_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_RS1**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS2**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS3**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -240,8 +214,6 @@ The following fields are available:
 - **DecisionMediaCenter_19H1Setup**  The total DecisionMediaCenter objects targeting the next release of Windows on this device.
 - **DecisionMediaCenter_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMediaCenter_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMediaCenter_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_RS1**  The total DecisionMediaCenter objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMediaCenter_RS2**  The total DecisionMediaCenter objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMediaCenter_RS3**  The total DecisionMediaCenter objects targeting Windows 10 version 1709 present on this device.
@@ -253,8 +225,6 @@ The following fields are available:
 - **DecisionSystemBios_19H1Setup**  The total DecisionSystemBios objects targeting the next release of Windows on this device.
 - **DecisionSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionSystemBios_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_RS1**  The total DecisionSystemBios objects targeting Windows 10 version 1607 on this device.
 - **DecisionSystemBios_RS2**  The total DecisionSystemBios objects targeting Windows 10 version 1703 on this device.
 - **DecisionSystemBios_RS3**  The total DecisionSystemBios objects targeting Windows 10 version 1709 on this device.
@@ -265,8 +235,6 @@ The following fields are available:
 - **DecisionSystemBios_TH1**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_TH2**  The count of the number of this particular object type present on this device.
 - **DecisionTest_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionTest_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionTest_21H1Setup**  The count of the number of this particular object type present on this device.
 - **InventoryApplicationFile**  The count of the number of this particular object type present on this device.
 - **InventoryLanguagePack**  The count of the number of this particular object type present on this device.
 - **InventoryMediaCenter**  The count of the number of this particular object type present on this device.
@@ -288,8 +256,6 @@ The following fields are available:
 - **Wmdrm_19H1Setup**  The total Wmdrm objects targeting the next release of Windows on this device.
 - **Wmdrm_20H1**  The count of the number of this particular object type present on this device.
 - **Wmdrm_20H1Setup**  The total Wmdrm objects targeting the next release of Windows on this device.
-- **Wmdrm_21H1**  The count of the number of this particular object type present on this device.
-- **Wmdrm_21H1Setup**  The count of the number of this particular object type present on this device.
 - **Wmdrm_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS3**  An ID for the system, calculated by hashing hardware identifiers.

From 6a03d26332b6700fba54475a2dc29fc819d31c7d Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 13:46:33 -0800
Subject: [PATCH 103/825] remove  version

---
 ...ndows-diagnostic-events-and-fields-1809.md | 17 ----------
 ...ndows-diagnostic-events-and-fields-1903.md | 34 -------------------
 ...-diagnostic-data-events-and-fields-2004.md |  2 --
 3 files changed, 53 deletions(-)

diff --git a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
index 12bf3f543c..40840c2ae8 100644
--- a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
+++ b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
@@ -312,7 +312,6 @@ The following fields are available:
 - **DatasourceApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -328,7 +327,6 @@ The following fields are available:
 - **DatasourceDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS1**  The total DataSourceDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -344,7 +342,6 @@ The following fields are available:
 - **DatasourceDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_RS1**  The total DataSourceDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDriverPackage_RS2**  The total DataSourceDriverPackage objects targeting Windows 10, version 1703 on this device.
 - **DatasourceDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -360,7 +357,6 @@ The following fields are available:
 - **DataSourceMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS1**  The total DataSourceMatchingInfoBlock objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoBlock_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS3**  The count of the number of this particular object type present on this device.
@@ -376,7 +372,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS1**  The total DataSourceMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPassive_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS3**  The count of the number of this particular object type present on this device.
@@ -392,7 +387,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS1**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS2**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS3**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -408,7 +402,6 @@ The following fields are available:
 - **DatasourceSystemBios_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_RS1**  The total DatasourceSystemBios objects targeting Windows 10 version 1607 present on this device.
 - **DatasourceSystemBios_RS2**  The total DatasourceSystemBios objects targeting Windows 10 version 1703 present on this device.
 - **DatasourceSystemBios_RS3**  The total DatasourceSystemBios objects targeting Windows 10 version 1709 present on this device.
@@ -424,7 +417,6 @@ The following fields are available:
 - **DecisionApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -440,7 +432,6 @@ The following fields are available:
 - **DecisionDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS1**  The total DecisionDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DecisionDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -456,7 +447,6 @@ The following fields are available:
 - **DecisionDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS1**  The total DecisionDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DecisionDriverPackage_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -472,7 +462,6 @@ The following fields are available:
 - **DecisionMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_RS1**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMatchingInfoBlock_RS2**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMatchingInfoBlock_RS3**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1709 present on this device.
@@ -488,7 +477,6 @@ The following fields are available:
 - **DecisionMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_RS1**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPassive_RS2**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPassive_RS3**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1803 on this device.
@@ -504,7 +492,6 @@ The following fields are available:
 - **DecisionMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_RS1**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS2**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS3**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -520,7 +507,6 @@ The following fields are available:
 - **DecisionMediaCenter_19H1Setup**  The total DecisionMediaCenter objects targeting the next release of Windows on this device.
 - **DecisionMediaCenter_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMediaCenter_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_RS1**  The total DecisionMediaCenter objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMediaCenter_RS2**  The total DecisionMediaCenter objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMediaCenter_RS3**  The total DecisionMediaCenter objects targeting Windows 10 version 1709 present on this device.
@@ -536,7 +522,6 @@ The following fields are available:
 - **DecisionSystemBios_19H1Setup**  The total DecisionSystemBios objects targeting the next release of Windows on this device.
 - **DecisionSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_RS1**  The total DecisionSystemBios objects targeting Windows 10 version 1607 on this device.
 - **DecisionSystemBios_RS2**  The total DecisionSystemBios objects targeting Windows 10 version 1703 on this device.
 - **DecisionSystemBios_RS3**  The total DecisionSystemBios objects targeting Windows 10 version 1709 on this device.
@@ -549,7 +534,6 @@ The following fields are available:
 - **DecisionSystemBios_TH2**  The count of the number of this particular object type present on this device.
 - **DecisionSystemProcessor_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionTest_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionTest_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionTest_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **InventoryApplicationFile**  The count of the number of this particular object type present on this device.
 - **InventoryDeviceContainer**  A count of device container objects in cache.
@@ -579,7 +563,6 @@ The following fields are available:
 - **Wmdrm_19H1Setup**  The total Wmdrm objects targeting the next release of Windows on this device.
 - **Wmdrm_20H1**  The count of the number of this particular object type present on this device.
 - **Wmdrm_20H1Setup**  The count of the number of this particular object type present on this device.
-- **Wmdrm_21H1Setup**  The count of the number of this particular object type present on this device.
 - **Wmdrm_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS3**  An ID for the system, calculated by hashing hardware identifiers.
diff --git a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
index 1623bf2d24..2add73f830 100644
--- a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
+++ b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
@@ -274,8 +274,6 @@ The following fields are available:
 - **DatasourceApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -287,8 +285,6 @@ The following fields are available:
 - **DatasourceDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDevicePnp_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS1**  The total DataSourceDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DatasourceDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -303,8 +299,6 @@ The following fields are available:
 - **DatasourceDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceDriverPackage_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceDriverPackage_RS1**  The total DataSourceDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DatasourceDriverPackage_RS2**  The total DataSourceDriverPackage objects targeting Windows 10, version 1703 on this device.
 - **DatasourceDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -319,8 +313,6 @@ The following fields are available:
 - **DataSourceMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoBlock_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS1**  The total DataSourceMatchingInfoBlock objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoBlock_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoBlock_RS3**  The count of the number of this particular object type present on this device.
@@ -332,8 +324,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPassive_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS1**  The total DataSourceMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPassive_RS2**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPassive_RS3**  The count of the number of this particular object type present on this device.
@@ -345,8 +335,6 @@ The following fields are available:
 - **DataSourceMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPostUpgrade_21H1**  The count of the number of this particular object type present on this device.
-- **DataSourceMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS1**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS2**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DataSourceMatchingInfoPostUpgrade_RS3**  The total DataSourceMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -359,8 +347,6 @@ The following fields are available:
 - **DatasourceSystemBios_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceSystemBios_21H1**  The count of the number of this particular object type present on this device.
-- **DatasourceSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceSystemBios_RS1**  The total DatasourceSystemBios objects targeting Windows 10 version 1607 present on this device.
 - **DatasourceSystemBios_RS2**  The total DatasourceSystemBios objects targeting Windows 10 version 1703 present on this device.
 - **DatasourceSystemBios_RS3**  The total DatasourceSystemBios objects targeting Windows 10 version 1709 present on this device.
@@ -375,8 +361,6 @@ The following fields are available:
 - **DecisionApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionApplicationFile_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionApplicationFile_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS1**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionApplicationFile_RS3**  The count of the number of this particular object type present on this device.
@@ -388,8 +372,6 @@ The following fields are available:
 - **DecisionDevicePnp_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDevicePnp_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionDevicePnp_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS1**  The total DecisionDevicePnp objects targeting Windows 10 version 1607 on this device.
 - **DecisionDevicePnp_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDevicePnp_RS3**  The count of the number of this particular object type present on this device.
@@ -404,8 +386,6 @@ The following fields are available:
 - **DecisionDriverPackage_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionDriverPackage_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionDriverPackage_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS1**  The total DecisionDriverPackage objects targeting Windows 10 version 1607 on this device.
 - **DecisionDriverPackage_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionDriverPackage_RS3**  The count of the number of this particular object type present on this device.
@@ -420,8 +400,6 @@ The following fields are available:
 - **DecisionMatchingInfoBlock_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoBlock_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoBlock_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoBlock_RS1**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMatchingInfoBlock_RS2**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMatchingInfoBlock_RS3**  The total DecisionMatchingInfoBlock objects targeting Windows 10 version 1709 present on this device.
@@ -433,8 +411,6 @@ The following fields are available:
 - **DecisionMatchingInfoPassive_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPassive_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPassive_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPassive_RS1**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPassive_RS2**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPassive_RS3**  The total DecisionMatchingInfoPassive objects targeting Windows 10 version 1803 on this device.
@@ -446,8 +422,6 @@ The following fields are available:
 - **DecisionMatchingInfoPostUpgrade_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPostUpgrade_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMatchingInfoPostUpgrade_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMatchingInfoPostUpgrade_RS1**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1607 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS2**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1703 on this device.
 - **DecisionMatchingInfoPostUpgrade_RS3**  The total DecisionMatchingInfoPostUpgrade objects targeting Windows 10 version 1709 on this device.
@@ -459,8 +433,6 @@ The following fields are available:
 - **DecisionMediaCenter_19H1Setup**  The total DecisionMediaCenter objects targeting the next release of Windows on this device.
 - **DecisionMediaCenter_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionMediaCenter_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionMediaCenter_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionMediaCenter_RS1**  The total DecisionMediaCenter objects targeting Windows 10 version 1607 present on this device.
 - **DecisionMediaCenter_RS2**  The total DecisionMediaCenter objects targeting Windows 10 version 1703 present on this device.
 - **DecisionMediaCenter_RS3**  The total DecisionMediaCenter objects targeting Windows 10 version 1709 present on this device.
@@ -473,8 +445,6 @@ The following fields are available:
 - **DecisionSystemBios_19H1Setup**  The total DecisionSystemBios objects targeting the next release of Windows on this device.
 - **DecisionSystemBios_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionSystemBios_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionSystemBios_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionSystemBios_RS1**  The total DecisionSystemBios objects targeting Windows 10 version 1607 on this device.
 - **DecisionSystemBios_RS2**  The total DecisionSystemBios objects targeting Windows 10 version 1703 on this device.
 - **DecisionSystemBios_RS3**  The total DecisionSystemBios objects targeting Windows 10 version 1709 on this device.
@@ -488,8 +458,6 @@ The following fields are available:
 - **DecisionSystemProcessor_RS2**  The count of the number of this particular object type present on this device.
 - **DecisionTest_20H1**  The count of the number of this particular object type present on this device.
 - **DecisionTest_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DecisionTest_21H1**  The count of the number of this particular object type present on this device.
-- **DecisionTest_21H1Setup**  The count of the number of this particular object type present on this device.
 - **DecisionTest_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **InventoryApplicationFile**  The count of the number of this particular object type present on this device.
 - **InventoryDeviceContainer**  A count of device container objects in cache.
@@ -518,8 +486,6 @@ The following fields are available:
 - **Wmdrm_19H1Setup**  The total Wmdrm objects targeting the next release of Windows on this device.
 - **Wmdrm_20H1**  The count of the number of this particular object type present on this device.
 - **Wmdrm_20H1Setup**  The total Wmdrm objects targeting the next release of Windows on this device.
-- **Wmdrm_21H1**  The count of the number of this particular object type present on this device.
-- **Wmdrm_21H1Setup**  The count of the number of this particular object type present on this device.
 - **Wmdrm_RS1**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **Wmdrm_RS3**  An ID for the system, calculated by hashing hardware identifiers.
diff --git a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
index 407d8166d6..a8786a76b9 100644
--- a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
+++ b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
@@ -61,8 +61,6 @@ The following fields are available:
 - **DatasourceApplicationFile_19H1Setup**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_20H1Setup**  The count of the number of this particular object type present on this device.
-- **DatasourceApplicationFile_RS1**  An ID for the system, calculated by hashing hardware identifiers.
-- **DatasourceApplicationFile_RS2**  An ID for the system, calculated by hashing hardware identifiers.
 - **DatasourceApplicationFile_RS3**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_RS4**  The count of the number of this particular object type present on this device.
 - **DatasourceApplicationFile_RS5**  The count of the number of this particular object type present on this device.

From c06f9b5e5a728900b6baa55d424230b43b05488c Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 14:03:06 -0800
Subject: [PATCH 104/825] Update
 basic-level-windows-diagnostic-events-and-fields-1809.md

---
 .../basic-level-windows-diagnostic-events-and-fields-1809.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
index 40840c2ae8..792337ed12 100644
--- a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
+++ b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1809.md
@@ -1,5 +1,5 @@
 ---
-description: Use this article to learn more about what Windows diagnostic data is gathered at the basic level.
+description: Use this article to learn more about what Windows 10 version 1809 diagnostic data is gathered at the basic level.
 title: Windows 10, version 1809 basic diagnostic events and fields (Windows 10)
 keywords: privacy, telemetry
 ms.prod: w10

From 586f74e8743de5a69b631bd4f9eb7bb1441df6e4 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 14:03:57 -0800
Subject: [PATCH 105/825] Update
 required-windows-diagnostic-data-events-and-fields-2004.md

---
 .../required-windows-diagnostic-data-events-and-fields-2004.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
index a8786a76b9..2605b80713 100644
--- a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
+++ b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
@@ -1,5 +1,5 @@
 ---
-description: Use this article to learn more about what required Windows diagnostic data is gathered.
+description: Use this article to learn more about what required Windows 10 version 2004 and version 20H2 diagnostic data is gathered.
 title: Windows 10, version 20H2 and Windows 10, version 2004 required diagnostic events and fields (Windows 10)
 keywords: privacy, telemetry
 ms.prod: w10

From ae30ef94a0d3fe6ce72a4544f525efa5ece71e26 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 22 Dec 2020 14:04:33 -0800
Subject: [PATCH 106/825] Update
 basic-level-windows-diagnostic-events-and-fields-1903.md

---
 .../basic-level-windows-diagnostic-events-and-fields-1903.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
index 2add73f830..51c8baac0e 100644
--- a/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
+++ b/windows/privacy/basic-level-windows-diagnostic-events-and-fields-1903.md
@@ -1,5 +1,5 @@
 ---
-description: Use this article to learn more about what required Windows diagnostic data is gathered.
+description: Use this article to learn more about what required Windows 10 version 1903 diagnostic data is gathered.
 title: Windows 10, version 1909 and Windows 10, version 1903 required diagnostic events and fields (Windows 10)
 keywords: privacy, telemetry
 ms.prod: w10

From d31df04aab4c7733e2731d11759f4407b3200135 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 22 Dec 2020 15:09:50 -0800
Subject: [PATCH 107/825] Added GroupPolicy policies

---
 windows/client-management/mdm/TOC.md          |    1 +
 .../mdm/policies-in-policy-csp-admx-backed.md |   43 +
 .../policy-configuration-service-provider.md  |  134 +
 .../mdm/policy-csp-admx-grouppolicy.md        | 3192 ++++++++++++++++-
 4 files changed, 3357 insertions(+), 13 deletions(-)

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 0dc397819a..3b37a6caf1 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -207,6 +207,7 @@
 #### [ADMX_FileSys](policy-csp-admx-filesys.md)
 #### [ADMX_FolderRedirection](policy-csp-admx-folderredirection.md)
 #### [ADMX_Globalization](policy-csp-admx-globalization.md)
+#### [ADMX_GroupPolicy](policy-csp-admx-grouppolicy.md)
 #### [ADMX_Help](policy-csp-admx-help.md)
 #### [ADMX_HelpAndSupport](policy-csp-admx-helpandsupport.md)
 #### [ADMX_ICM](policy-csp-admx-icm.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index a66d12c325..552222926f 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -306,6 +306,49 @@ ms.date: 10/08/2020
 - [ADMX_Globalization/TurnOffInsertSpace](./policy-csp-admx-globalization.md#admx-globalization-turnoffinsertspace)
 - [ADMX_Globalization/TurnOffOfferTextPredictions](./policy-csp-admx-globalization.md#admx-globalization-turnoffoffertextpredictions)
 - [ADMX_Globalization/Y2K](./policy-csp-admx-globalization.md#admx-globalization-y2k)
+- [ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-allowx-forestpolicy-and-rup)
+- [ADMX_GroupPolicy/CSE_AppMgmt](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-appmgmt)
+- [ADMX_GroupPolicy/CSE_DiskQuota](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-diskquota)
+- [ADMX_GroupPolicy/CSE_EFSRecovery](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-efsrecovery)
+- [ADMX_GroupPolicy/CSE_FolderRedirection](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-folderredirection)
+- [ADMX_GroupPolicy/CSE_IEM](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-iem)
+- [ADMX_GroupPolicy/CSE_IPSecurity](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-ipsecurity)
+- [ADMX_GroupPolicy/CSE_Registry](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-registry)
+- [ADMX_GroupPolicy/CSE_Scripts](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-scripts)
+- [ADMX_GroupPolicy/CSE_Security](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-security)
+- [ADMX_GroupPolicy/CSE_Wired](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wired)
+- [ADMX_GroupPolicy/CSE_Wireless](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wireless)
+- [ADMX_GroupPolicy/CorpConnSyncWaitTime](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-corpconnsyncwaittime)
+- [ADMX_GroupPolicy/DenyRsopToInteractiveUser_1](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-1)
+- [ADMX_GroupPolicy/DenyRsopToInteractiveUser_2](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-2)
+- [ADMX_GroupPolicy/DisableAOACProcessing](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableaoacprocessing)
+- [ADMX_GroupPolicy/DisableAutoADMUpdate](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableautoadmupdate)
+- [ADMX_GroupPolicy/DisableBackgroundPolicy](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablebackgroundpolicy)
+- [ADMX_GroupPolicy/DisableLGPOProcessing](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablelgpoprocessing)
+- [ADMX_GroupPolicy/DisableUsersFromMachGP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableusersfrommachgp)
+- [ADMX_GroupPolicy/EnableCDP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablecdp)
+- [ADMX_GroupPolicy/EnableLogonOptimization](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimization)
+- [ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimizationonserversku)
+- [ADMX_GroupPolicy/EnableMMX](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablemmx)
+- [ADMX_GroupPolicy/EnforcePoliciesOnly](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enforcepoliciesonly)
+- [ADMX_GroupPolicy/FontMitigation](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-fontmitigation)
+- [ADMX_GroupPolicy/GPDCOptions](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gpdcoptions)
+- [ADMX_GroupPolicy/GPTransferRate_1](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-1)
+- [ADMX_GroupPolicy/GPTransferRate_2](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-2)
+- [ADMX_GroupPolicy/GroupPolicyRefreshRate](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrate)
+- [ADMX_GroupPolicy/GroupPolicyRefreshRateDC](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshratedc)
+- [ADMX_GroupPolicy/GroupPolicyRefreshRateUser](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrateuser)
+- [ADMX_GroupPolicy/LogonScriptDelay](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-logonscriptdelay)
+- [ADMX_GroupPolicy/NewGPODisplayName](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpodisplayname)
+- [ADMX_GroupPolicy/NewGPOLinksDisabled](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpolinksdisabled)
+- [ADMX_GroupPolicy/OnlyUseLocalAdminFiles](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-onlyuselocaladminfiles)
+- [ADMX_GroupPolicy/ProcessMitigationOptions](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-processmitigationoptions)
+- [ADMX_GroupPolicy/RSoPLogging](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-rsoplogging)
+- [ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy)
+- [ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaultfordirectaccess)
+- [ADMX_GroupPolicy/SlowlinkDefaultToAsync](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaulttoasync)
+- [ADMX_GroupPolicy/SyncWaitTime](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-syncwaittime)
+- [ADMX_GroupPolicy/UserPolicyMode](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-userpolicymode)
 - [ADMX_Help/DisableHHDEP](./policy-csp-admx-help.md#admx-help-disablehhdep)
 - [ADMX_Help/HelpQualifiedRootDir_Comp](./policy-csp-admx-help.md#admx-help-helpqualifiedrootdir-comp)
 - [ADMX_Help/RestrictRunFromHelp](./policy-csp-admx-help.md#admx-help-restrictrunfromhelp)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index d5ff3b63a2..fff1b3e3ca 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1206,6 +1206,140 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_GroupPolicy policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-allowx-forestpolicy-and-rup" id="admx-grouppolicy-allowx-forestpolicy-and-rup">ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-appmgmt" id="admx-grouppolicy-cse-appmgmt">ADMX_GroupPolicy/CSE_AppMgmt</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-diskquota" id="admx-grouppolicy-cse-diskquota">ADMX_GroupPolicy/CSE_DiskQuota</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-efsrecovery" id="admx-grouppolicy-cse-efsrecovery">ADMX_GroupPolicy/CSE_EFSRecovery</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-folderredirection" id="admx-grouppolicy-cse-folderredirection">ADMX_GroupPolicy/CSE_FolderRedirection</a>
+  </dd>
+    <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-iem" id="admx-grouppolicy-cse-iem">ADMX_GroupPolicy/CSE_IEM</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-ipsecurity" id="admx-grouppolicy-cse-ipsecurity">ADMX_GroupPolicy/CSE_IPSecurity</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-registry" id="admx-grouppolicy-cse-registry">ADMX_GroupPolicy/CSE_Registry</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-scripts" id="admx-grouppolicy-cse-scripts">ADMX_GroupPolicy/CSE_Scripts</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-security" id="admx-grouppolicy-cse-security">ADMX_GroupPolicy/CSE_Security</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wired" id="admx-grouppolicy-cse-wired">ADMX_GroupPolicy/CSE_Wired</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wireless" id="admx-grouppolicy-cse-wireless">ADMX_GroupPolicy/CSE_Wireless</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-corpconnsyncwaittime" id="admx-grouppolicy-corpconnsyncwaittime">ADMX_GroupPolicy/CorpConnSyncWaitTime</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-1" id="admx-grouppolicy-denyrsoptointeractiveuser-1">ADMX_GroupPolicy/DenyRsopToInteractiveUser_1</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-2" id="admx-grouppolicy-denyrsoptointeractiveuser-2">ADMX_GroupPolicy/DenyRsopToInteractiveUser_2</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableaoacprocessing" id="admx-grouppolicy-disableaoacprocessing">ADMX_GroupPolicy/DisableAOACProcessing</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableautoadmupdate" id="admx-grouppolicy-disableautoadmupdate">ADMX_GroupPolicy/DisableAutoADMUpdate</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablebackgroundpolicy" id="admx-grouppolicy-disablebackgroundpolicy">ADMX_GroupPolicy/DisableBackgroundPolicy</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablelgpoprocessing" id="admx-grouppolicy-disablelgpoprocessing">ADMX_GroupPolicy/DisableLGPOProcessing</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableusersfrommachgp" id="admx-grouppolicy-disableusersfrommachgp">ADMX_GroupPolicy/DisableUsersFromMachGP</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablecdp" id="admx-grouppolicy-enablecdp">ADMX_GroupPolicy/EnableCDP</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimization" id="admx-grouppolicy-enablelogonoptimization">ADMX_GroupPolicy/EnableLogonOptimization</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimizationonserversku" id="admx-grouppolicy-enablelogonoptimizationonserversku">ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablemmx" id="admx-grouppolicy-enablemmx">ADMX_GroupPolicy/EnableMMX</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enforcepoliciesonly" id="admx-grouppolicy-enforcepoliciesonly">ADMX_GroupPolicy/EnforcePoliciesOnly</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-fontmitigation" id="admx-grouppolicy-fontmitigation">ADMX_GroupPolicy/FontMitigation</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gpdcoptions" id="admx-grouppolicy-gpdcoptions">ADMX_GroupPolicy/GPDCOptions</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-1" id="admx-grouppolicy-gptransferrate-1">ADMX_GroupPolicy/GPTransferRate_1</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-2" id="admx-grouppolicy-gptransferrate-2">ADMX_GroupPolicy/GPTransferRate_2</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrate" id="admx-grouppolicy-grouppolicyrefreshrate">ADMX_GroupPolicy/GroupPolicyRefreshRate</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshratedc" id="admx-grouppolicy-grouppolicyrefreshratedc">ADMX_GroupPolicy/GroupPolicyRefreshRateDC</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrateuser" id="admx-grouppolicy-grouppolicyrefreshrateuser">ADMX_GroupPolicy/GroupPolicyRefreshRateUser</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-logonscriptdelay" id="admx-grouppolicy-logonscriptdelay">ADMX_GroupPolicy/LogonScriptDelay</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpodisplayname" id="admx-grouppolicy-newgpodisplayname">ADMX_GroupPolicy/NewGPODisplayName</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpolinksdisabled" id="admx-grouppolicy-newgpolinksdisabled">ADMX_GroupPolicy/NewGPOLinksDisabled</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-onlyuselocaladminfiles" id="admx-grouppolicy-onlyuselocaladminfiles">ADMX_GroupPolicy/OnlyUseLocalAdminFiles</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-processmitigationoptions" id="admx-grouppolicy-processmitigationoptions">ADMX_GroupPolicy/ProcessMitigationOptions</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-rsoplogging" id="admx-grouppolicy-rsoplogging">ADMX_GroupPolicy/RSoPLogging</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy" id="admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy">ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaultfordirectaccess" id="admx-grouppolicy-slowlinkdefaultfordirectaccess">ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaulttoasync" id="admx-grouppolicy-slowlinkdefaulttoasync">ADMX_GroupPolicy/SlowlinkDefaultToAsync</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-syncwaittime" id="admx-grouppolicy-syncwaittime">ADMX_GroupPolicy/SyncWaitTime</a>
+  </dd>
+   <dd>
+    <a href="./policy-csp-admx-grouppolicy.md#admx-grouppolicy-userpolicymode" id="admx-grouppolicy-userpolicymode">ADMX_GroupPolicy/UserPolicyMode</a>
+  </dd>
+</dl>
+
 ### ADMX_HelpAndSupport policies
 <dl>
   <dd>
diff --git a/windows/client-management/mdm/policy-csp-admx-grouppolicy.md b/windows/client-management/mdm/policy-csp-admx-grouppolicy.md
index d53e96d965..5ee096c63f 100644
--- a/windows/client-management/mdm/policy-csp-admx-grouppolicy.md
+++ b/windows/client-management/mdm/policy-csp-admx-grouppolicy.md
@@ -157,7 +157,7 @@ manager: dansimp
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-auditsettings-includecmdline"></a>**ADMX_AuditSettings/IncludeCmdLine**  
+<a href="" id="admx-grouppolicy-allowx-forestpolicy-and-rup"></a>**ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP**  
 
 <!--SupportedSKUs-->
 <table>
@@ -200,16 +200,20 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines what information is logged in security audit events when a new process has been created. This setting only applies when the Audit Process Creation policy is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows user-based policy processing, roaming user profiles, and user object logon scripts for interactive logons across forests.
 
-If you enable this policy setting, the command line information for every process will be logged in plain text in the security event log as part of the Audit Process Creation event 4688, "a new process has been created," on the workstations and servers on which this policy setting is applied.
+This policy setting affects all user accounts that interactively log on to a computer in a different forest when a trust across forests or a two-way forest trust exists.
 
-If you disable or do not configure this policy setting, the process's command line information will not be included in Audit Process Creation events.  
+If you do not configure this policy setting:
 
-Default is Not configured.
+- No user-based policy settings are applied from the user's forest.
+- Users do not receive their roaming profiles; they receive a local profile on the computer from the local forest. A warning message appears to the user, and an event log message (1529) is posted.
+- Loopback Group Policy processing is applied, using the Group Policy Objects (GPOs) that are scoped to the computer.
+- An event log message (1109) is posted, stating that loopback was invoked in Replace mode.
 
-> [!NOTE]
-> When this policy setting is enabled, any user with access to read the security events will be able to read the command line arguments for any successfully created process. Command line arguments can contain sensitive or private information, such as passwords or user data.
+If you enable this policy setting, the behavior is exactly the same as in Windows 2000: user policy is applied, and a roaming user profile is allowed from the trusted forest.
+
+If you disable this policy setting, the behavior is the same as if it is not configured.
 
 <!--/Description-->
 > [!TIP]
@@ -221,10 +225,3173 @@ Default is Not configured.
 
 <!--ADMXBacked-->
 ADMX Info:  
--   GP English name: *Include command line in process creation events*
--   GP name: *IncludeCmdLine*
--   GP path: *System/Audit Process Creation*
--   GP ADMX file name: *AuditSettings.admx*
+-   GP English name: *Allow cross-forest user policy and roaming user profiles*
+-   GP name: *AllowX-ForestPolicy-and-RUP*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-appmgmt"></a>**ADMX_GroupPolicy/CSE_AppMgmt**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when software installation policies are updated.
+
+This policy setting affects all policy settings that use the software installation component of Group Policy, such as policy settings in Software Settings\Software Installation. You can set software installation policy only for Group Policy Objects stored in Active Directory, not for Group Policy Objects on the local computer.
+
+This policy setting overrides customized settings that the program implementing the software installation policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy setting implementations specify that they are updated only when changed. However, you might want to update unchanged policy settings, such as reapplying a desired policies in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure software Installation policy processing*
+-   GP name: *CSE_AppMgmt*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-diskquota"></a>**ADMX_GroupPolicy/CSE_DiskQuota**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when disk quota policies are updated.
+
+This policy setting affects all policies that use the disk quota component of Group Policy, such as those in Computer Configuration\Administrative Templates\System\Disk Quotas.
+
+This policy setting overrides customized settings that the program implementing the disk quota policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure disk quota policy processing*
+-   GP name: *CSE_DiskQuota*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-efsrecovery"></a>**ADMX_GroupPolicy/CSE_EFSRecovery**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when encryption policies are updated.
+
+This policy setting affects all policies that use the encryption component of Group Policy, such as policies related to encryption in Windows Settings\Security Settings.
+
+It overrides customized settings that the program implementing the encryption policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure EFS recovery policy processing*
+-   GP name: *CSE_EFSRecovery*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-folderredirection"></a>**ADMX_GroupPolicy/CSE_FolderRedirection**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when folder redirection policies are updated.
+
+This policy setting affects all policies that use the folder redirection component of Group Policy, such as those in WindowsSettings\Folder Redirection. You can only set folder redirection policy for Group Policy objects, stored in Active Directory, not for Group Policy objects on the local computer.
+
+This policy setting overrides customized settings that the program implementing the folder redirection policy setting set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure folder redirection policy processing*
+-   GP name: *CSE_FolderRedirection*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-iem"></a>**ADMX_GroupPolicy/CSE_IEM**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when Internet Explorer Maintenance policies are updated.
+
+This policy setting affects all policies that use the Internet Explorer Maintenance component of Group Policy, such as those in Windows Settings\Internet Explorer Maintenance.
+
+This policy setting overrides customized settings that the program implementing the Internet Explorer Maintenance policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired policy setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Internet Explorer Maintenance policy processing*
+-   GP name: *CSE_IEM*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-ipsecurity"></a>**ADMX_GroupPolicy/CSE_IPSecurity**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when IP security policies are updated.
+
+This policy setting affects all policies that use the IP security component of Group Policy, such as policies in Computer Configuration\Windows Settings\Security Settings\IP Security Policies on Local Machine.
+
+This policy setting overrides customized settings that the program implementing the IP security policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired policy setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure IP security policy processing*
+-   GP name: *CSE_IPSecurity*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-registry"></a>**ADMX_GroupPolicy/CSE_Registry**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when registry policies are updated.
+
+This policy setting affects all policies in the Administrative Templates folder and any other policies that store values in the registry. It overrides customized settings that the program implementing a registry policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired policy setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure registry policy processing*
+-   GP name: *CSE_Registry*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-scripts"></a>**ADMX_GroupPolicy/CSE_Scripts**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when policies that assign shared scripts are updated.
+
+This policy setting affects all policies that use the scripts component of Group Policy, such as those in WindowsSettings\Scripts. It overrides customized settings that the program implementing the scripts policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this setting, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired policy setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure scripts policy processing*
+-   GP name: *CSE_Scripts*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-security"></a>**ADMX_GroupPolicy/CSE_Security**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when security policies are updated.
+
+This policy setting affects all policies that use the security component of Group Policy, such as those in Windows Settings\Security Settings.
+
+This policy setting overrides customized settings that the program implementing the security policy set when it was installed.
+
+If you enable this policy setting, you can use the check boxes provided to change the options. If you disable or do not configure this policy setting, it has no effect on the system.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they be updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired policy setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure security policy processing*
+-   GP name: *CSE_Security*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-wired"></a>**ADMX_GroupPolicy/CSE_Wired**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when policies that assign wired network settings are updated.
+
+This policy setting affects all policies that use the wired network component of Group Policy, such as those in Windows Settings\Wired Network Policies.
+
+It overrides customized settings that the program implementing the wired network set when it was installed.
+
+If you enable this policy, you can use the check boxes provided to change the options.
+
+If you disable this setting or do not configure it, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure wired policy processing*
+-   GP name: *CSE_Wired*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-cse-wireless"></a>**ADMX_GroupPolicy/CSE_Wireless**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when policies that assign wireless network settings are updated.
+
+This policy setting affects all policies that use the wireless network component of Group Policy, such as those in WindowsSettings\Wireless Network Policies.
+
+It overrides customized settings that the program implementing the wireless network set when it was installed.
+
+If you enable this policy, you can use the check boxes provided to change the options.
+
+If you disable this setting or do not configure it, it has no effect on the system.
+
+The "Allow processing across a slow network connection" option updates the policies even when the update is being transmitted across a slow network connection, such as a telephone line. Updates across slow connections can cause significant delays.
+
+The "Do not apply during periodic background processing" option prevents the system from updating affected policies in the background while the computer is in use. When background updates are disabled, policy changes will not take effect until the next user logon or system restart.
+
+The "Process even if the Group Policy objects have not changed" option updates and reapplies the policies even if the policies have not changed. Many policy implementations specify that they are updated only when changed. However, you might want to update unchanged policies, such as reapplying a desired setting in case a user has changed it.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure wireless policy processing*
+-   GP name: *CSE_Wireless*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-corpconnsyncwaittime"></a>**ADMX_GroupPolicy/CorpConnSyncWaitTime**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies how long Group Policy should wait for workplace connectivity notifications during startup policy processing. If the startup policy processing is synchronous, the computer is blocked until workplace connectivity is available or the wait time is reached. If the startup policy processing is asynchronous, the computer is not blocked and policy processing will occur in the background. In either case, configuring this policy setting overrides any system-computed wait times.
+
+If you enable this policy setting, Group Policy uses this administratively configured maximum wait time for workplace connectivity, and overrides any default or system-computed wait time.
+
+If you disable or do not configure this policy setting, Group Policy will use the default wait time of 60 seconds on computers running Windows operating systems greater than Windows 7 configured for workplace connectivity.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Specify workplace connectivity wait time for policy processing*
+-   GP name: *CorpConnSyncWaitTime*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-denyrsoptointeractiveuser-1"></a>**ADMX_GroupPolicy/DenyRsopToInteractiveUser_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability of users to view their Resultant Set of Policy (RSoP) data.
+
+By default, interactively logged on users can view their own Resultant Set of Policy (RSoP) data.
+
+If you enable this policy setting, interactive users cannot generate RSoP data.
+
+If you disable or do not configure this policy setting, interactive users can generate RSoP.
+
+> [!NOTE]
+> This policy setting does not affect administrators. If you enable or disable this policy setting, by default administrators can view RSoP data.
+>
+> To view RSoP data on a client computer, use the RSoP snap-in for the Microsoft Management Console. You can launch the RSoP snap-in from the command line by typing RSOP.msc.
+>
+> This policy setting exists as both a User Configuration and Computer Configuration setting.  Also, see the "Turn off Resultant set of Policy logging" policy setting in Computer Configuration\Administrative Templates\System\GroupPolicy.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Determine if interactive users can generate Resultant Set of Policy data*
+-   GP name: *DenyRsopToInteractiveUser_1*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-denyrsoptointeractiveuser-2"></a>**ADMX_GroupPolicy/DenyRsopToInteractiveUser_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability of users to view their Resultant Set of Policy (RSoP) data.
+
+By default, interactively logged on users can view their own Resultant Set of Policy (RSoP) data.
+
+If you enable this policy setting, interactive users cannot generate RSoP data.
+
+If you disable or do not configure this policy setting, interactive users can generate RSoP
+
+> [!NOTE]
+> This policy setting does not affect administrators. If you enable or disable this policy setting, by default administrators can view RSoP data.
+>
+> To view RSoP data on a client computer, use the RSoP snap-in for the Microsoft Management Console. You can launch the RSoP snap-in from the command line by typing RSOP.msc.
+>
+> This policy setting exists as both a User Configuration and Computer Configuration setting. Also, see the "Turn off Resultant set of Policy logging" policy setting in Computer Configuration\Administrative Templates\System\GroupPolicy.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Determine if interactive users can generate Resultant Set of Policy data*
+-   GP name: *DenyRsopToInteractiveUser_2*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-disableaoacprocessing"></a>**ADMX_GroupPolicy/DisableAOACProcessing**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents the Group Policy Client Service from stopping when idle.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Group Policy Client Service AOAC optimization*
+-   GP name: *DisableAOACProcessing*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-disableautoadmupdate"></a>**ADMX_GroupPolicy/DisableAutoADMUpdate**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Prevents the system from updating the Administrative Templates source files automatically when you open the Group Policy Object Editor.
+
+Administrators might want to use this if they are concerned about the amount of space used on the system volume of a DC.
+
+By default, when you start the Group Policy Object Editor, a timestamp comparison is performed on the source files in the local %SYSTEMROOT%\inf directory and the source files stored in the GPO.
+
+If the local files are newer, they are copied into the GPO.
+
+Changing the status of this setting to Enabled will keep any source files from copying to the GPO.
+
+Changing the status of this setting to Disabled will enforce the default behavior.
+
+Files will always be copied to the GPO if they have a later timestamp.
+
+> [!NOTE]
+> If the Computer Configuration policy setting, "Always use local ADM files for the Group Policy Object Editor" is enabled, the state of this setting is ignored and always treated as Enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off automatic update of ADM files*
+-   GP name: *DisableAutoADMUpdate*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-disablebackgroundpolicy"></a>**ADMX_GroupPolicy/DisableBackgroundPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents Group Policy from being updated while the computer is in use. This policy setting applies to Group Policy for computers, users, and domain controllers.
+
+If you enable this policy setting, the system waits until the current user logs off the system before updating the computer and user settings.
+
+If you disable or do not configure this policy setting, updates can be applied while users are working. The frequency of updates is determined by the "Set Group Policy refresh interval for computers" and "Set Group Policy refresh interval for users" policy settings.
+
+> [!NOTE]
+> If you make changes to this policy setting, you must restart your computer for it to take effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off background refresh of Group Policy*
+-   GP name: *DisableBackgroundPolicy*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-disablelgpoprocessing"></a>**ADMX_GroupPolicy/DisableLGPOProcessing**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents Local Group Policy Objects (Local GPOs) from being applied.
+
+By default, the policy settings in Local GPOs are applied before any domain-based GPO policy settings. These policy settings can apply to both users and the local computer. You can disable the processing and application of all Local GPOs to ensure that only domain-based GPOs are applied.
+
+If you enable this policy setting, the system does not process and apply any Local GPOs.
+
+If you disable or do not configure this policy setting, Local GPOs continue to be applied.
+
+> [!NOTE]
+> For computers joined to a domain, it is strongly recommended that you only configure this policy setting  in domain-based GPOs. This policy setting will be ignored on computers that are joined to a workgroup.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Local Group Policy Objects processing*
+-   GP name: *DisableLGPOProcessing*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-disableusersfrommachgp"></a>**ADMX_GroupPolicy/DisableUsersFromMachGP**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control a user's ability to invoke a computer policy refresh.
+
+If you enable this policy setting, users are not able to invoke a refresh of computer policy. Computer policy will still be applied at startup or when an official policy refresh occurs.
+
+If you disable or do not configure this policy setting, the default behavior applies. By default, computer policy is applied when the computer starts up. It also applies at a specified refresh interval or when manually invoked by the user.
+
+Note: This policy setting applies only to non-administrators. Administrators can still invoke a refresh of computer policy at any time, no matter how this policy setting is configured.
+
+Also, see the "Set Group Policy refresh interval for computers" policy setting to change the policy refresh interval.
+
+> [!NOTE]
+> If you make changes to this policy setting, you must restart your computer for it to take effect.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Remove users' ability to invoke machine policy refresh*
+-   GP name: *DisableUsersFromMachGP*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-enablecdp"></a>**ADMX_GroupPolicy/EnableCDP**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the Windows device is allowed to participate in cross-device experiences (continue experiences).
+
+If you enable this policy setting, the Windows device is discoverable by other Windows devices that belong to the same user, and can participate in cross-device experiences.
+
+If you disable this policy setting, the Windows device is not discoverable by other devices, and cannot participate in cross-device experiences.
+
+If you do not configure this policy setting, the default behavior depends on the Windows edition. Changes to this policy take effect on reboot.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Continue experiences on this device*
+-   GP name: *EnableCDP*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-enablelogonoptimization"></a>**ADMX_GroupPolicy/EnableLogonOptimization**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Group Policy caching behavior.
+
+If you enable or do not configure this policy setting, Group Policy caches policy information after every background processing session. This cache saves applicable GPOs and the settings contained within them. When Group Policy runs in synchronous foreground mode, it refers to this cache, which enables it to run faster. When the cache is read, Group Policy attempts to contact a logon domain controller to determine the link speed. When Group Policy runs in background mode or asynchronous foreground mode, it continues to download the latest version of the policy information, and it uses a bandwidth estimate to determine slow link thresholds. (See the “Configure Group Policy Slow Link Detection” policy setting to configure asynchronous foreground behavior.)
+
+The slow link value that is defined in this policy setting determines how long Group Policy will wait for a response from the domain controller before reporting the link speed as slow. The default is 500 milliseconds.
+
+The timeout value that is defined in this policy setting determines how long Group Policy will wait for a response from the domain controller before determining that there is no network connectivity. This stops the current Group Policy processing. Group Policy will run in the background the next time a connection to a domain controller is established. Setting this value too high might result in longer waits for the user at boot or logon. The default is 5000 milliseconds.
+
+If you disable this policy setting, the Group Policy client will not cache applicable GPOs or settings that are contained within the GPOs. When Group Policy runs synchronously, it downloads the latest version of the policy from the network and uses bandwidth estimates to determine slow link thresholds. (See the “Configure Group Policy Slow Link Detection” policy setting to configure asynchronous foreground behavior.)
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Group Policy Caching*
+-   GP name: *EnableLogonOptimization*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-enablelogonoptimizationonserversku"></a>**ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Group Policy caching behavior on Windows Server machines.
+
+If you enable this policy setting, Group Policy caches policy information after every background processing session. This cache saves applicable GPOs and the settings contained within them. When Group Policy runs in synchronous foreground mode, it refers to this cache, which enables it to run faster. When the cache is read, Group Policy attempts to contact a logon domain controller to determine the link speed. When Group Policy runs in background mode or asynchronous foreground mode, it continues to download the latest version of the policy information, and it uses a bandwidth estimate to determine slow link thresholds. (See the “Configure Group Policy Slow Link Detection” policy setting to configure asynchronous foreground behavior.)
+
+The slow link value that is defined in this policy setting determines how long Group Policy will wait for a response from the domain controller before reporting the link speed as slow. The default is 500 milliseconds.
+
+The timeout value that is defined in this policy setting determines how long Group Policy will wait for a response from the domain controller before determining that there is no network connectivity. This stops the current Group Policy processing. Group Policy will run in the background the next time a connection to a domain controller is established. Setting this value too high might result in longer waits for the user at boot or logon. The default is 5000 milliseconds.
+
+If you disable or do not configure this policy setting, the Group Policy client will not cache applicable GPOs or settings that are contained within the GPOs. When Group Policy runs synchronously, it downloads the latest version of the policy from the network and uses bandwidth estimates to determine slow link thresholds. (See the “Configure Group Policy Slow Link Detection” policy setting to configure asynchronous foreground behavior.)
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Enable Group Policy Caching for Servers*
+-   GP name: *EnableLogonOptimizationOnServerSKU*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-enablemmx"></a>**ADMX_GroupPolicy/EnableMMX**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy allows IT admins to turn off the ability to Link a Phone with a PC to continue reading, emailing and other tasks that requires linking between Phone and PC.
+
+If you enable this policy setting, the Windows device will be able to enroll in Phone-PC linking functionality and participate in Continue on PC experiences.
+
+If you disable this policy setting, the Windows device is not allowed to be linked to Phones, will remove itself from the device list of any linked Phones, and cannot participate in Continue on PC experiences.
+
+If you do not configure this policy setting, the default behavior depends on the Windows edition. Changes to this policy take effect on reboot.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Phone-PC linking on this device*
+-   GP name: *EnableMMX*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-enforcepoliciesonly"></a>**ADMX_GroupPolicy/EnforcePoliciesOnly**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents administrators from viewing or using Group Policy preferences.
+
+A Group Policy administration (.adm) file can contain both true settings and preferences. True settings, which are fully supported by Group Policy, must use registry entries in the Software\Policies or Software\Microsoft\Windows\CurrentVersion\Policies registry subkeys. Preferences, which are not fully supported, use registry entries in other subkeys.
+
+If you enable this policy setting, the "Show Policies Only" command is turned on, and administrators cannot turn it off. As a result, Group Policy Object Editor displays only true settings; preferences do not appear.
+
+If you disable or do not configure this policy setting, the "Show Policies Only" command is turned on by default, but administrators can view preferences by turning off the "Show Policies Only" command.
+
+> [!NOTE]
+> To find the "Show Policies Only" command, in Group Policy Object Editor, click the Administrative Templates folder (either one), right-click the same folder, and then point to "View."
+
+In Group Policy Object Editor, preferences have a red icon to distinguish them from true settings, which have a blue icon.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Enforce Show Policies Only*
+-   GP name: *EnforcePoliciesOnly*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-fontmitigation"></a>**ADMX_GroupPolicy/FontMitigation**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This security feature provides a global setting to prevent programs from loading untrusted fonts. Untrusted fonts are any font installed outside of the %windir%\Fonts directory. 
+
+This feature can be configured to be in 3 modes: On, Off, and Audit. By default, it is Off and no fonts are blocked. If you aren't quite ready to deploy this feature into your organization, you can run it in Audit mode to see if blocking untrusted fonts causes any usability or compatibility issues.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Untrusted Font Blocking*
+-   GP name: *DisableUsersFromMachGP*
+-   GP path: *System\Mitigation Options*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-gpdcoptions"></a>**ADMX_GroupPolicy/GPDCOptions**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines which domain controller the Group Policy Object Editor snap-in uses.
+
+If you enable this setting, you can which domain controller is used according to these options:
+
+"Use the Primary Domain Controller" indicates that the Group Policy Object Editor snap-in reads and writes changes to the domain controller designated as the PDC Operations Master for the domain.
+
+"Inherit from Active Directory Snap-ins" indicates that the Group Policy Object Editor snap-in reads and writes changes to the domain controller that Active Directory Users and Computers or Active Directory Sites and Services snap-ins use.
+
+"Use any available domain controller" indicates that the Group Policy Object Editor snap-in can read and write changes to any available domain controller.
+
+If you disable this setting or do not configure it, the Group Policy Object Editor snap-in uses the domain controller designated as the PDC Operations Master for the domain.
+
+> [!NOTE]
+> To change the PDC Operations Master for a domain, in Active Directory Users and Computers, right-click a domain, and then click "Operations Masters."
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Group Policy domain controller selection*
+-   GP name: *GPDCOptions*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-gptransferrate-1"></a>**ADMX_GroupPolicy/GPTransferRate_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines a slow connection for purposes of applying and updating Group Policy.
+
+If the rate at which data is transferred from the domain controller providing a policy update to the computers in this group is slower than the rate specified by this setting, the system considers the connection to be slow.
+
+The system's response to a slow policy connection varies among policies. The program implementing the policy can specify the response to a slow link. Also, the policy processing settings in this folder lets you override the programs' specified responses to slow links.
+
+If you enable this setting, you can, in the "Connection speed" box, type a decimal number between 0 and 4,294,967,200, indicating a transfer rate in kilobits per second. Any connection slower than this rate is considered to be slow. If you type 0, all connections are considered to be fast.
+
+If you disable this setting or do not configure it, the system uses the default value of 500 kilobits per second.
+
+This setting appears in the Computer Configuration and User Configuration folders. The setting in Computer Configuration defines a slow link for policies in the Computer Configuration folder. The setting in User Configuration defines a slow link for settings in the User Configuration folder.
+
+Also, see the "Do not detect slow network connections" and related policies in Computer Configuration\Administrative Templates\System\User Profile. Note: If the profile server has IP connectivity, the connection speed setting is used. If the profile server does not have IP connectivity, the SMB timing is used.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Group Policy slow link detection*
+-   GP name: *GPTransferRate_1*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-gptransferrate-2"></a>**ADMX_GroupPolicy/GPTransferRate_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines a slow connection for purposes of applying and updating Group Policy.
+
+If the rate at which data is transferred from the domain controller providing a policy update to the computers in this group is slower than the rate specified by this setting, the system considers the connection to be slow.
+
+The system's response to a slow policy connection varies among policies. The program implementing the policy can specify the response to a slow link. Also, the policy processing settings in this folder lets you override the programs' specified responses to slow links.
+
+If you enable this setting, you can, in the "Connection speed" box, type a decimal number between 0 and 4,294,967,200, indicating a transfer rate in kilobits per second. Any connection slower than this rate is considered to be slow. If you type 0, all connections are considered to be fast.
+
+If you disable this setting or do not configure it, the system uses the default value of 500 kilobits per second.
+
+This setting appears in the Computer Configuration and User Configuration folders. The setting in Computer Configuration defines a slow link for policies in the Computer Configuration folder. The setting in User Configuration defines a slow link for settings in the User Configuration folder.
+
+Also, see the "Do not detect slow network connections" and related policies in Computer Configuration\Administrative Templates\System\User Profile. Note: If the profile server has IP connectivity, the connection speed setting is used. If the profile server does not have IP connectivity, the SMB timing is used.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Group Policy slow link detection*
+-   GP name: *GPTransferRate_2*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-grouppolicyrefreshrate"></a>**ADMX_GroupPolicy/GroupPolicyRefreshRate**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies how often Group Policy for computers is updated while the computer is in use (in the background). This setting specifies a background update rate only for Group Policies in the Computer Configuration folder.
+
+In addition to background updates, Group Policy for the computer is always updated when the system starts.
+
+By default, computer Group Policy is updated in the background every 90 minutes, with a random offset of 0 to 30 minutes.
+
+If you enable this setting, you can specify an update rate from 0 to 64,800 minutes (45 days). If you select 0 minutes, the computer tries to update Group Policy every 7 seconds. However, because updates might interfere with users' work and increase network traffic, very short update intervals are not appropriate for most installations.
+
+If you disable this setting, Group Policy is updated every 90 minutes (the default). To specify that Group Policy should never be updated while the computer is in use, select the "Turn off background refresh of Group Policy" policy.
+
+The Set Group Policy refresh interval for computers policy also lets you specify how much the actual update interval varies. To prevent clients with the same update interval from requesting updates simultaneously, the system varies the update interval for each client by a random number of minutes. The number you type in the random time box sets the upper limit for the range of variance. For example, if you type 30 minutes, the system selects a variance of 0 to 30 minutes. Typing a large number establishes a broad range and makes it less likely that client requests overlap. However, updates might be delayed significantly.
+
+This setting establishes the update rate for computer Group Policy. To set an update rate for user policies, use the "Set Group Policy refresh interval for users" setting (located in User Configuration\Administrative Templates\System\Group Policy).
+
+This setting is only used when the "Turn off background refresh of Group Policy" setting is not enabled.
+
+> [!NOTE]
+> Consider notifying users that their policy is updated periodically so that they recognize the signs of a policy update. When Group Policy is updated, the Windows desktop is refreshed; it flickers briefly and closes open menus. Also, restrictions imposed by Group Policies, such as those that limit the programs users can run, might interfere with tasks in progress.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set Group Policy refresh interval for computers*
+-   GP name: *GroupPolicyRefreshRate*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-grouppolicyrefreshratedc"></a>**ADMX_GroupPolicy/GroupPolicyRefreshRateDC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies how often Group Policy is updated on domain controllers while they are running (in the background). The updates specified by this setting occur in addition to updates performed when the system starts.
+
+By default, Group Policy on the domain controllers is updated every five minutes.
+
+If you enable this setting, you can specify an update rate from 0 to 64,800 minutes (45 days). If you select 0 minutes, the domain controller tries to update Group Policy every 7 seconds. However, because updates might interfere with users' work and increase network traffic, very short update intervals are not appropriate for most installations.
+
+If you disable or do not configure this setting, the domain controller updates Group Policy every 5 minutes (the default). To specify that Group Policies for users should never be updated while the computer is in use, select the "Turn off background refresh of Group Policy" setting.
+
+This setting also lets you specify how much the actual update interval varies. To prevent domain controllers with the same update interval from requesting updates simultaneously, the system varies the update interval for each controller by a random number of minutes. The number you type in the random time box sets the upper limit for the range of variance. For example, if you type 30 minutes, the system selects a variance of 0 to 30 minutes. Typing a large number establishes a broad range and makes it less likely that update requests overlap. However, updates might be delayed significantly.
+
+> [!NOTE]
+> This setting is used only when you are establishing policy for a domain, site, organizational unit (OU), or customized group. If you are establishing policy for a local computer only, the system ignores this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set Group Policy refresh interval for domain controllers*
+-   GP name: *GroupPolicyRefreshRateDC*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-grouppolicyrefreshrateuser"></a>**ADMX_GroupPolicy/GroupPolicyRefreshRateUser**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies how often Group Policy for users is updated while the computer is in use (in the background). This setting specifies a background update rate only for the Group Policies in the User Configuration folder.
+
+In addition to background updates, Group Policy for users is always updated when users log on.
+
+By default, user Group Policy is updated in the background every 90 minutes, with a random offset of 0 to 30 minutes.
+
+If you enable this setting, you can specify an update rate from 0 to 64,800 minutes (45 days). If you select 0 minutes, the computer tries to update user Group Policy every 7 seconds. However, because updates might interfere with users' work and increase network traffic, very short update intervals are not appropriate for most installations.
+
+If you disable this setting, user Group Policy is updated every 90 minutes (the default). To specify that Group Policy for users should never be updated while the computer is in use, select the "Turn off background refresh of Group Policy" setting.
+
+This setting also lets you specify how much the actual update interval varies. To prevent clients with the same update interval from requesting updates simultaneously, the system varies the update interval for each client by a random number of minutes. The number you type in the random time box sets the upper limit for the range of variance. For example, if you type 30 minutes, the system selects a variance of 0 to 30 minutes. Typing a large number establishes a broad range and makes it less likely that client requests overlap. However, updates might be delayed significantly.
+
+> [!IMPORTANT]
+> If the "Turn off background refresh of Group Policy" setting is enabled, this setting is ignored.
+
+> [!NOTE]
+> This setting establishes the update rate for user Group Policies. To set an update rate for computer Group Policies, use the "Group Policy refresh interval for computers" setting (located in Computer Configuration\Administrative Templates\System\Group Policy).
+
+> [!TIP]
+> Consider notifying users that their policy is updated periodically so that they recognize the signs of a policy update. When Group Policy is updated, the Windows desktop is refreshed; it flickers briefly and closes open menus. Also, restrictions imposed by Group Policies, such as those that limit the programs a user can run, might interfere with tasks in progress.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set Group Policy refresh interval for users*
+-   GP name: *GroupPolicyRefreshRateUser*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-logonscriptdelay"></a>**ADMX_GroupPolicy/LogonScriptDelay**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Enter “0” to disable Logon Script Delay.
+
+This policy setting allows you to configure how long the Group Policy client waits after logon before running scripts.
+
+By default, the Group Policy client waits five minutes before running logon scripts. This helps create a responsive desktop environment by preventing disk contention.
+
+If you enable this policy setting, Group Policy will wait for the specified amount of time before running logon scripts.
+
+If you disable this policy setting, Group Policy will run scripts immediately after logon.
+
+If you do not configure this policy setting, Group Policy will wait five minutes before running logon scripts.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Logon Script Delay*
+-   GP name: *LogonScriptDelay*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-newgpodisplayname"></a>**ADMX_GroupPolicy/NewGPODisplayName**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to set the default display name for new Group Policy objects.
+
+This setting allows you to specify the default name for new Group Policy objects created from policy compliant Group Policy Management tools including the Group Policy tab in Active Directory tools and the GPO browser.
+
+The display name can contain environment variables and can be a maximum of 255 characters long.
+
+If this setting is Disabled or Not Configured, the default display name of New Group Policy object is used.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set default name for new Group Policy objects*
+-   GP name: *NewGPODisplayName*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-newgpolinksdisabled"></a>**ADMX_GroupPolicy/NewGPOLinksDisabled**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to create new Group Policy object links in the disabled state.
+
+If you enable this setting, you can create all new Group Policy object links in the disabled state by default. After you configure and test the new object links by using a policy compliant Group Policy management tool such as  Active Directory Users and Computers or Active Directory Sites and Services, you can enable the object links for use on the system.
+
+If you disable this setting or do not configure it, new Group Policy object links are created in the enabled state. If you do not want them to be effective until they are configured and tested, you must disable the object link.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Create new Group Policy Object links disabled by default*
+-   GP name: *NewGPOLinksDisabled*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-onlyuselocaladminfiles"></a>**ADMX_GroupPolicy/OnlyUseLocalAdminFiles**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you always use local ADM files for the Group Policy snap-in.
+
+By default, when you edit a Group Policy Object (GPO) using the Group Policy Object Editor snap-in, the ADM files are loaded from that GPO into the Group Policy Object Editor snap-in. This allows you to use the same version of the ADM files that were used to create the GPO while editing this GPO.
+
+This leads to the following behavior:
+
+- If you originally created the GPO with, for example, an English system, the GPO contains English ADM files.
+
+- If you later edit the GPO from a different-language system, you get the English ADM files as they were in the GPO.
+
+You can change this behavior by using this setting.
+
+If you enable this setting, the Group Policy Object Editor snap-in always uses local ADM files in your %windir%\inf directory when editing GPOs.
+
+This leads to the following behavior:
+
+- If you had originally created the GPO with an English system, and then you edit the GPO with a Japanese system, the Group Policy Object Editor snap-in uses the local Japanese ADM files, and you see the text in Japanese under Administrative Templates.
+
+If you disable or do not configure this setting, the Group Policy Object Editor snap-in always loads all ADM files from the actual GPO.
+
+> [!NOTE]
+> If the ADMs that you require are not all available locally in your %windir%\inf directory, you might not be able to see all the settings that have been configured in the GPO that you are editing.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Always use local ADM files for Group Policy Object Editor*
+-   GP name: *OnlyUseLocalAdminFiles*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-processmitigationoptions"></a>**ADMX_GroupPolicy/ProcessMitigationOptions**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This security feature provides a means to override individual process MitigationOptions settings. This can be used to enforce a number of security policies specific to applications. The application name is specified as the Value name, including extension. The Value is specified as a bit field with a series of flags in particular positions. Bits can be set to either 0 (setting is forced off), 1 (setting is forced on), or ? (setting retains its existing value prior to GPO evaluation). The recognized bit locations are:
+
+PROCESS_CREATION_MITIGATION_POLICY_DEP_ENABLE (0x00000001)
+Enables data execution prevention (DEP) for the child process
+
+PROCESS_CREATION_MITIGATION_POLICY_DEP_ATL_THUNK_ENABLE (0x00000002)
+Enables DEP-ATL thunk emulation for the child process. DEP-ATL thunk emulation causes the system to intercept NX faults that originate from the Active Template Library (ATL) thunk layer.
+
+PROCESS_CREATION_MITIGATION_POLICY_SEHOP_ENABLE (0x00000004)
+Enables structured exception handler overwrite protection (SEHOP) for the child process. SEHOP blocks exploits that use the structured exception handler (SEH) overwrite technique.
+
+PROCESS_CREATION_MITIGATION_POLICY_FORCE_RELOCATE_IMAGES_ALWAYS_ON (0x00000100)
+The force Address Space Layout Randomization (ASLR) policy forcibly rebases images that are not dynamic base compatible by acting as though an image base collision happened at load time. If relocations are required, images that do not have a base relocation section will not be loaded.
+
+PROCESS_CREATION_MITIGATION_POLICY_BOTTOM_UP_ASLR_ALWAYS_ON (0x00010000)
+PROCESS_CREATION_MITIGATION_POLICY_BOTTOM_UP_ASLR_ALWAYS_OFF (0x00020000)
+The bottom-up randomization policy, which includes stack randomization options, causes a random location to be used as the lowest user address.
+
+For instance, to enable PROCESS_CREATION_MITIGATION_POLICY_DEP_ENABLE and PROCESS_CREATION_MITIGATION_POLICY_FORCE_RELOCATE_IMAGES_ALWAYS_ON, disable PROCESS_CREATION_MITIGATION_POLICY_BOTTOM_UP_ASLR_ALWAYS_OFF, and to leave all other options at their default values, specify a value of:
+???????????????0???????1???????1
+
+Setting flags not specified here to any value other than ? results in undefined behavior.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Process Mitigation Options*
+-   GP name: *ProcessMitigationOptions*
+-   GP path: *System\Mitigation Options*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-rsoplogging"></a>**ADMX_GroupPolicy/RSoPLogging**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This setting allows you to enable or disable Resultant Set of Policy (RSoP) logging on a client computer.
+
+RSoP logs information on Group Policy settings that have been applied to the client. This information includes details such as which Group Policy Objects (GPO) were applied, where they came from, and the client-side extension settings that were included.
+
+If you enable this setting, RSoP logging is turned off.
+
+If you disable or do not configure this setting, RSoP logging is turned on. By default, RSoP logging is always on.
+
+> [!NOTE]
+> To view the RSoP information logged on a client computer, you can use the RSoP snap-in in the Microsoft Management Console (MMC).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Resultant Set of Policy logging*
+-   GP name: *RSoPLogging*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy"></a>**ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. Enabling this setting will cause the Group Policy Client to connect to the same domain controller for DFS shares as is being used for Active Directory.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Enable AD/DFS domain controller synchronization during policy refresh*
+-   GP name: *ResetDfsClientInfoDuringRefreshPolicy*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-slowlinkdefaultfordirectaccess"></a>**ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows an administrator to define the Direct Access connection to be considered a fast network connection for the purposes of applying and updating Group Policy.
+
+When Group Policy detects the bandwidth speed of a Direct Access connection, the detection can sometimes fail to provide any bandwidth speed information. If Group Policy detects a bandwidth speed, Group Policy will follow the normal rules for evaluating if the Direct Access connection is a fast or slow network connection. If no bandwidth speed is detected, Group Policy will default to a slow network connection. This policy setting allows the administrator the option to override the default to slow network connection and instead default to using a fast network connection in the case that no network bandwidth speed is determined.
+
+> [!NOTE]
+> When Group Policy detects a slow network connection, Group Policy will only process those client side extensions configured for processing across a slow link (slow network connection).
+
+If you enable this policy, when Group Policy cannot determine the bandwidth speed across Direct Access, Group Policy will evaluate the network connection as a fast link and process all client side extensions.
+
+If you disable this setting or do not configure it, Group Policy will evaluate the network connection as a slow link and process only those client side extensions configured to process over a slow link.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure Direct Access connections as a fast network connection*
+-   GP name: *SlowLinkDefaultForDirectAccess*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-slowlinkdefaulttoasync"></a>**ADMX_GroupPolicy/SlowlinkDefaultToAsync**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy directs Group Policy processing to skip processing any client side extension that requires synchronous processing (that is, whether computers wait for the network to be fully initialized during computer startup and user logon) when a slow network connection is detected.
+
+If you enable this policy setting, when a slow network connection is detected, Group Policy processing will always run in an asynchronous manner.
+Client computers will not wait for the network to be fully initialized at startup and logon. Existing users will be logged on using cached credentials,
+which will result in shorter logon times. Group Policy will be applied in the background after the network becomes available.
+Note that because this is a background refresh, extensions requiring synchronous processing such as Software Installation, Folder Redirection
+and Drive Maps preference extension will not be applied.
+
+> [!NOTE]
+> There are two conditions that will cause Group Policy to be processed synchronously even if this policy setting is enabled:
+>
+> - 1 - At the first computer startup after the client computer has joined the domain.
+> - 2 - If the policy setting "Always wait for the network at computer startup and logon" is enabled.
+
+If you disable or do not configure this policy setting, detecting a slow network connection will not affect whether Group Policy processing will be synchronous or asynchronous.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Change Group Policy processing to run asynchronously when a slow network connection is detected.*
+-   GP name: *SlowlinkDefaultToAsync*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-syncwaittime"></a>**ADMX_GroupPolicy/SyncWaitTime**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies how long Group Policy should wait for network availability notifications during startup policy processing. If the startup policy processing is synchronous, the computer is blocked until the network is available or the default wait time is reached. If the startup policy processing is asynchronous, the computer is not blocked and policy processing will occur in the background. In either case, configuring this policy setting overrides any system-computed wait times.
+
+If you enable this policy setting, Group Policy will use this administratively configured maximum wait time and override any default or system-computed wait time.
+
+If you disable or do not configure this policy setting, Group Policy will use the default wait time of 30 seconds on computers running Windows Vista operating system.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Specify startup policy processing wait time*
+-   GP name: *SyncWaitTime*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-grouppolicy-userpolicymode"></a>**ADMX_GroupPolicy/UserPolicyMode**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to apply the set of Group Policy objects for the computer to any user who logs on to a computer affected by this setting. It is intended for special-use computers, such as those in public places, laboratories, and classrooms, where you must modify the user setting based on the computer that is being used.
+
+By default, the user's Group Policy Objects determine which user settings apply. If this setting is enabled, then, when a user logs on to this computer, the computer's Group Policy Objects determine which set of Group Policy Objects applies.
+
+If you enable this setting, you can select one of the following modes from the Mode box:
+
+"Replace" indicates that the user settings defined in the computer's Group Policy Objects replace the user settings normally applied to the user.
+
+"Merge" indicates that the user settings defined in the computer's Group Policy Objects and the user settings normally applied to the user are combined. If the settings conflict, the user settings in the computer's Group Policy Objects take precedence over the user's normal settings.
+
+If you disable this setting or do not configure it, the user's Group Policy Objects determines which user settings apply.
+
+> [!NOTE]
+> This setting is effective only when both the computer account and the user account are in at least Windows 2000 domains.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure user Group Policy loopback processing mode*
+-   GP name: *UserPolicyMode*
+-   GP path: *System\Group Policy*
+-   GP ADMX file name: *GroupPolicy.admx*
 
 <!--/ADMXBacked-->
 <!--/Policy-->
@@ -241,5 +3408,4 @@ Footnotes:
 - 7 - Available in Windows 10, version 1909.
 - 8 - Available in Windows 10, version 2004.
 
-<!--/Policies-->
-
+<!--/Policies-->
\ No newline at end of file

From c3eb6d09bb3ffa2a0ababd79ec91750fb9bb833a Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 22 Dec 2020 15:23:09 -0800
Subject: [PATCH 108/825] Minor formatting

---
 windows/client-management/mdm/policy-csp-admx-logon.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-logon.md b/windows/client-management/mdm/policy-csp-admx-logon.md
index 54fe3f12cb..1c04d119eb 100644
--- a/windows/client-management/mdm/policy-csp-admx-logon.md
+++ b/windows/client-management/mdm/policy-csp-admx-logon.md
@@ -1026,7 +1026,7 @@ If this configuration is not implemented on the server, this policy setting is i
 If you disable or do not configure this policy setting and users log on to a client computer or a server running Windows Server 2008 or later and that is configured as described earlier, the computer typically does not wait for the network to be fully initialized. In this case, users are logged on with cached credentials. Group Policy is applied asynchronously in the background.
 
 > [!NOTE]
-
+>
 > - If you want to guarantee the application of Folder Redirection, Software Installation, or roaming user profile settings in just one logon, enable this policy setting to ensure that Windows waits for the network to be available before applying policy. 
 > - If Folder Redirection policy will apply during the next logon, security policies will be applied asynchronously during the next update cycle, if network connectivity is available.
 

From 8b119a506ef92e3a0de0640f96b5a12a35cc50d1 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 23 Dec 2020 02:07:53 +0200
Subject: [PATCH 109/825] API pages update

1. Adding US Gov reference to all pages with URIs.
2. Adding geo reference to all pages with URIs.
3. Replace MDE URLs ending with "windows.com" with "microsoft.com".
4. Replace the login endpoint from "login.windows.net" to "login.microsoftonline.com".
---
 .../add-or-remove-machine-tags.md              | 11 +++++++----
 .../microsoft-defender-atp/alerts.md           |  7 ++++++-
 .../microsoft-defender-atp/api-hello-world.md  |  4 ++--
 .../microsoft-defender-atp/api-power-bi.md     |  4 ++--
 .../collect-investigation-package.md           | 11 +++++++----
 .../create-alert-by-reference.md               | 10 ++++++----
 .../delete-ti-indicator-by-id.md               | 11 ++++++-----
 .../exposed-apis-create-app-nativeapp.md       |  8 ++++----
 .../exposed-apis-create-app-partners.md        |  9 +++++----
 .../exposed-apis-create-app-webapp.md          |  8 ++++----
 .../exposed-apis-full-sample-powershell.md     | 10 +++++++---
 .../exposed-apis-list.md                       |  4 ++--
 .../exposed-apis-odata-samples.md              |  4 ++--
 .../microsoft-defender-atp/files.md            |  5 +++++
 .../find-machines-by-ip.md                     |  8 +++++---
 .../get-alert-info-by-id.md                    |  4 ++++
 .../get-alert-related-domain-info.md           | 10 ++++++----
 .../get-alert-related-files-info.md            | 10 ++++++----
 .../get-alert-related-ip-info.md               | 10 ++++++----
 .../get-alert-related-machine-info.md          | 11 ++++++-----
 .../get-alert-related-user-info.md             | 11 ++++++-----
 .../microsoft-defender-atp/get-alerts.md       |  7 ++++---
 .../get-all-recommendations.md                 |  9 +++++++--
 .../get-all-vulnerabilities-by-machines.md     |  9 +++++++--
 .../get-all-vulnerabilities.md                 |  9 +++++++--
 .../get-device-secure-score.md                 |  9 +++++++--
 .../get-discovered-vulnerabilities.md          |  8 ++++++--
 .../get-domain-related-alerts.md               |  8 +++++---
 .../get-domain-related-machines.md             |  9 +++++----
 .../get-domain-statistics.md                   | 10 ++++++----
 .../get-exposure-score.md                      |  9 +++++++--
 .../get-file-information.md                    | 10 ++++++----
 .../get-file-related-alerts.md                 |  8 +++++---
 .../get-file-related-machines.md               |  8 +++++---
 .../get-file-statistics.md                     | 10 ++++++----
 .../get-installed-software.md                  |  8 ++++++--
 .../get-investigation-collection.md            | 15 +++++++--------
 .../get-investigation-object.md                |  7 ++++++-
 .../get-ip-related-alerts.md                   |  9 +++++----
 .../get-ip-statistics.md                       | 10 ++++++----
 .../get-machine-by-id.md                       | 10 ++++++----
 .../get-machine-group-exposure-score.md        |  9 +++++++--
 .../get-machine-log-on-users.md                | 10 ++++++----
 .../get-machine-related-alerts.md              |  4 ++++
 .../get-machineaction-object.md                | 12 +++++++-----
 .../get-machineactions-collection.md           | 18 +++++++++---------
 .../get-machinegroups-collection.md            |  6 +++++-
 .../get-machines-by-software.md                |  9 +++++++--
 .../get-machines-by-vulnerability.md           |  9 +++++++--
 .../microsoft-defender-atp/get-machines.md     | 13 +++++++------
 .../get-missing-kbs-machine.md                 |  6 +++++-
 .../get-missing-kbs-software.md                |  7 ++++++-
 .../get-package-sas-uri.md                     | 13 +++++++------
 .../get-recommendation-by-id.md                | 12 +++++++++---
 .../get-recommendation-machines.md             | 10 +++++++---
 .../get-recommendation-software.md             | 10 +++++++---
 .../get-recommendation-vulnerabilities.md      | 10 +++++++---
 .../get-security-recommendations.md            |  8 ++++++--
 .../get-software-by-id.md                      |  9 +++++++--
 .../get-software-ver-distribution.md           |  9 +++++++--
 .../microsoft-defender-atp/get-software.md     |  9 +++++++--
 .../get-ti-indicators-collection.md            | 16 +++++++++-------
 .../get-user-information.md                    | 10 ++++++----
 .../get-user-related-alerts.md                 |  8 +++++---
 .../get-user-related-machines.md               |  8 +++++---
 .../get-vuln-by-software.md                    |  9 +++++++--
 .../get-vulnerability-by-id.md                 |  9 +++++++--
 .../initiate-autoir-investigation.md           |  6 ++++--
 .../microsoft-defender-atp/investigation.md    |  5 +++++
 .../microsoft-defender-atp/isolate-machine.md  | 10 ++++++----
 .../microsoft-defender-atp/machine.md          |  4 ++++
 .../microsoft-defender-atp/machineaction.md    |  5 +++++
 .../offboard-machine-api.md                    | 10 ++++++----
 .../onboarding-notification.md                 |  7 ++++++-
 .../post-ti-indicator.md                       | 11 ++++++-----
 .../pull-alerts-using-rest-api.md              |  6 +++---
 .../microsoft-defender-atp/recommendation.md   |  5 +++++
 .../restrict-code-execution.md                 |  8 ++++++--
 .../run-advanced-query-api.md                  |  5 ++---
 .../run-advanced-query-sample-powershell.md    |  3 +--
 .../run-advanced-query-sample-python.md        |  4 ++--
 .../microsoft-defender-atp/run-av-scan.md      |  8 ++++++--
 .../microsoft-defender-atp/score.md            |  5 +++++
 .../microsoft-defender-atp/set-device-value.md |  5 +++++
 .../microsoft-defender-atp/software.md         |  5 +++++
 .../stop-and-quarantine-file.md                |  8 ++++++--
 .../microsoft-defender-atp/ti-indicator.md     |  5 +++++
 .../troubleshoot-onboarding-error-messages.md  |  4 ++--
 .../unisolate-machine.md                       | 10 ++++++----
 .../unrestrict-code-execution.md               | 10 ++++++----
 .../microsoft-defender-atp/update-alert.md     |  8 +++++---
 .../microsoft-defender-atp/user.md             |  5 +++++
 .../microsoft-defender-atp/vulnerability.md    |  5 +++++
 93 files changed, 518 insertions(+), 254 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
index 94849b6b18..bfed28074d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 ## API description
 
 Adds or remove tag to a specific [Machine](machine.md).
@@ -54,7 +59,7 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 ## HTTP request
 
 ```http
-POST https://api.securitycenter.windows.com/api/machines/{id}/tags
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/tags
 ```
 
 ## Request headers
@@ -84,10 +89,8 @@ If successful, this method returns 200 - Ok response code and the updated Machin
 
 Here is an example of a request that adds machine tag.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```http
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/tags
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/tags
 Content-type: application/json
 {
   "Value" : "test Tag 2",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index eaa7c56c2f..d7949c4065 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 ## Methods
 
 Method |Return Type |Description
@@ -71,7 +76,7 @@ comments | List of Alert comments | Alert Comment is an object that contains: co
 ### Response example for getting single alert:
 
 ```
-GET https://api.securitycenter.windows.com/api/alerts/da637084217856368682_-292920499
+GET https://api.securitycenter.microsoft.com/api/alerts/da637084217856368682_-292920499
 ```
 
 ```json
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
index f9c9891569..81f125ba22 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
@@ -28,6 +28,8 @@ ms.topic: article
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## Get Alerts using a simple PowerShell script
 
@@ -97,8 +99,6 @@ Done! You have successfully registered an application!
 -   Copy the script below to PowerShell ISE or to a text editor, and save it as "**Get-Token.ps1**"
 -   Running this script will generate a token and will save it in the working folder under the name "**Latest-token.txt**".
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 # That code gets the App Context Token and save it to a file named "Latest-token.txt" under the current directory
 # Paste below your Tenant ID, App ID and App Secret (App key).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
index 39d611f4ca..32dda775a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
@@ -28,6 +28,8 @@ ms.topic: article
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 In this section you will learn create a Power BI report on top of Defender for Endpoint APIs.
 
 The first example demonstrates how to connect Power BI to Advanced Hunting API and the second example demonstrates a connection to our OData APIs, such as Machine Actions or Alerts.
@@ -46,8 +48,6 @@ The first example demonstrates how to connect Power BI to Advanced Hunting API a
 
 - Copy the below and paste it in the editor:
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 	let 
 		AdvancedHuntingQuery = "DeviceEvents | where ActionType contains 'Anti'",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
index 0d6949ea0b..20536ad64b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
@@ -26,6 +26,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 ## API description
 Collect investigation package from a device.
 
@@ -49,7 +54,7 @@ Delegated (work or school account) |	Machine.CollectForensics |	'Collect forensi
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/collectInvestigationPackage
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/collectInvestigationPackage
 ```
 
 ## Request headers
@@ -76,10 +81,8 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-POST https://api.securitycenter.windows.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/collectInvestigationPackage
+POST https://api.securitycenter.microsoft.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/collectInvestigationPackage
 Content-type: application/json
 {
   "Comment": "Collect forensics due to alert 1234"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
index a5c286ef37..05729852d3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Creates new [Alert](alerts.md) on top of **Event**.
@@ -56,7 +60,7 @@ Delegated (work or school account) | Alert.ReadWrite | 'Read and write alerts'
 ## HTTP request
 
 ```
-POST https://api.securitycenter.windows.com/api/alerts/CreateAlertByReference
+POST https://api.securitycenter.microsoft.com/api/alerts/CreateAlertByReference
 ```
 
 ## Request headers
@@ -91,10 +95,8 @@ If successful, this method returns 200 OK, and a new [alert](alerts.md) object i
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-POST https://api.securitycenter.windows.com/api/alerts/CreateAlertByReference
+POST https://api.securitycenter.microsoft.com/api/alerts/CreateAlertByReference
 ```
 ```json
 {
diff --git a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
index 123ce4959e..b3c2960440 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Deletes an [Indicator](ti-indicator.md) entity by ID.
@@ -45,12 +49,9 @@ Application |	Ti.ReadWrite.All |	'Read and write Indicators'
 
 ## HTTP request
 ```
-Delete https://api.securitycenter.windows.com/api/indicators/{id}
+Delete https://api.securitycenter.microsoft.com/api/indicators/{id}
 ```
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ## Request headers
 
 Name | Type | Description
@@ -72,5 +73,5 @@ If Indicator with the specified id was not found - 404 Not Found.
 Here is an example of the request.
 
 ```
-DELETE https://api.securitycenter.windows.com/api/indicators/995
+DELETE https://api.securitycenter.microsoft.com/api/indicators/995
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index 6f75ba2ca8..9f93b7365e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -26,6 +26,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 This page describes how to create an application to get programmatic access to Defender for Endpoint on behalf of a user.
 
 If you need programmatic access Microsoft Defender for Endpoint without a user, refer to [Access Microsoft Defender for Endpoint with application context](exposed-apis-create-app-webapp.md).
@@ -112,10 +116,6 @@ This page explains how to create an AAD application, get an access token to Micr
 
 For more information on AAD tokens, see [Azure AD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
 ### Using C#
 
 - Copy/Paste the below class in your application.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
index 06af8266e6..cfb61033a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
@@ -25,6 +25,11 @@ ms.topic: article
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 This page describes how to create an Azure Active Directory (Azure AD) application to get programmatic access to Microsoft Defender for Endpoint on behalf of your customers.
 
 
@@ -129,10 +134,6 @@ The following steps will guide you how to create an Azure AD application, get an
 
 <br>For more information on AAD token, see [AAD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
 ### Using PowerShell
 
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
index 3e602760b0..f4dc27179e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
@@ -26,6 +26,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 This page describes how to create an application to get programmatic access to Defender for Endpoint without a user. If you need programmatic access to Defender for Endpoint on behalf of a user, see [Get access with user context](exposed-apis-create-app-nativeapp.md). If you are not sure which access you need, see [Get started](apis-intro.md).
 
 Microsoft Defender for Endpoint exposes much of its data and actions through a set of programmatic APIs. Those APIs will help you automate work flows and innovate based on Defender for Endpoint capabilities. The API access requires OAuth2.0 authentication. For more information, see [OAuth 2.0 Authorization Code Flow](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-code).
@@ -107,10 +111,6 @@ This article explains how to create an Azure AD application, get an access token
 
 For more information on Azure AD tokens, see the [Azure AD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds).
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
 ### Use PowerShell
 
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
index 31142c2936..676e6a5185 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
@@ -25,6 +25,10 @@ ms.date: 09/24/2018
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 Full scenario using multiple APIs from Microsoft Defender for Endpoint.
 
@@ -63,7 +67,7 @@ $appSecret = '22222222-2222-2222-2222-222222222222' # Paste your own app secret
 $suspiciousUrl = 'www.suspiciousUrl.com' # Paste your own URL here
 
 $resourceAppIdUri = 'https://securitycenter.onmicrosoft.com/windowsatpservice'
-$oAuthUri = "https://login.windows.net/$TenantId/oauth2/token"
+$oAuthUri = "https://login.microsoftonline.com/$TenantId/oauth2/token"
 $authBody = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -75,7 +79,7 @@ $aadToken = $authResponse.access_token
 
 
 #Get latest alert
-$alertUrl = "https://api.securitycenter.windows.com/api/alerts?`$top=10"
+$alertUrl = "https://api.securitycenter.microsoft.com/api/alerts?`$top=10"
 $headers = @{ 
     'Content-Type' = 'application/json'
     Accept = 'application/json'
@@ -108,7 +112,7 @@ $query = "NetworkCommunicationEvents
 | where RemoteUrl  == `"$suspiciousUrl`"
 | summarize ConnectionsCount = count() by MachineId"
 
-$queryUrl = "https://api.securitycenter.windows.com/api/advancedqueries/run"
+$queryUrl = "https://api.securitycenter.microsoft.com/api/advancedqueries/run"
 
 $queryBody = ConvertTo-Json -InputObject @{ 'Query' = $query }
 $queryResponse = Invoke-WebRequest -Method Post -Uri $queryUrl -Headers $headers -Body $queryBody -ErrorAction Stop
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
index 4a8aac1dc4..e5f0ac91e0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
@@ -45,10 +45,10 @@ ms.topic: article
 > If you don't specify any version (e.g. https://api.securitycenter.microsoft.com/api/alerts ) you will get to the latest version.
 
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 Learn more about the individual supported entities where you can run API calls to and details such as HTTP request values, request headers and expected responses.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index ef758bf348..9c0ee43caf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -26,10 +26,10 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 If you are not familiar with OData queries, see: [OData V4 queries](https://www.odata.org/documentation/)
 
 Not all properties are filterable.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/files.md b/windows/security/threat-protection/microsoft-defender-atp/files.md
index 6289c8645b..677387cad1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/files.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Represent a file entity in Defender for Endpoint.
 
 ## Methods
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
index 3db35c6164..616dfffb2e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Find [Machines](machine.md) seen with the requested internal IP in the time range of 15 minutes prior and after a given timestamp.
@@ -75,8 +79,6 @@ If the timestamp is not in the past 30 days - 400 Bad Request.
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/machines/findbyip(ip='10.248.240.38',timestamp=2019-09-22T08:44:05Z)
+GET https://api.securitycenter.microsoft.com/api/machines/findbyip(ip='10.248.240.38',timestamp=2019-09-22T08:44:05Z)
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
index 07ac59b945..210a00624f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves specific [Alert](alerts.md) by its ID.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
index e9d18d97e7..607206740c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves all domains related to a specific alert.
@@ -72,10 +76,8 @@ If successful and alert and domain exist - 200 OK. If alert not found - 404 Not
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/alerts/636688558380765161_2136280442/domains
+GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_2136280442/domains
 ```
 
 **Response**
@@ -86,7 +88,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/$metadata#Domains",
+    "@odata.context": "https://api.securitycenter.microsoft.com/$metadata#Domains",
     "value": [
         {
             "host": "www.example.com"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
index 6e61e17504..95743e8fdc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves all files related to a specific alert.
@@ -72,10 +76,8 @@ If successful and alert and files exist - 200 OK. If alert not found - 404 Not F
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/alerts/636688558380765161_2136280442/files
+GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/files
 ```
 
 **Response**
@@ -87,7 +89,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Files",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Files",
     "value": [
         {
             "sha1": "f2a00fd2f2de1be0214b8529f1e9f67096c1aa70",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
index 62db50d08a..dd5859b46d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves all IPs related to a specific alert.
@@ -73,10 +77,8 @@ If successful and alert and an IP exist - 200 OK. If alert not found - 404 Not F
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/alerts/636688558380765161_2136280442/ips
+GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_2136280442/ips
 ```
 
 **Response**
@@ -88,7 +90,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/$metadata#Ips",    
+    "@odata.context": "https://api.securitycenter.microsoft.com/$metadata#Ips",    
 	"value": [
 				{
 					"id": "104.80.104.128"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index 98f64ac8d1..ab1cfd8107 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves [Device](machine.md) related to a specific alert.
@@ -74,11 +78,8 @@ If successful and alert and device exist - 200 OK. If alert not found or device
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```
-GET https://api.securitycenter.windows.com/api/alerts/636688558380765161_2136280442/machine
+GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/machine
 ```
 
 **Response**
@@ -90,7 +91,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machines/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines/$entity",
     "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
     "computerDnsName": "mymachine1.contoso.com",
     "firstSeen": "2018-08-02T14:55:03.7791856Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
index 3e96ce7383..c5461ce794 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves the User related to a specific alert.
@@ -73,11 +77,8 @@ If successful and alert and a user exists - 200 OK with user in the body. If ale
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```
-GET https://api.securitycenter.windows.com/api/alerts/636688558380765161_2136280442/user
+GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/user
 ```
 
 **Response**
@@ -89,7 +90,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Users/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users/$entity",
     "id": "contoso\\user1",
     "accountName": "user1",
     "accountDomain": "contoso",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
index a7c825d739..687c2dffa2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of Alerts.
@@ -87,9 +91,6 @@ Here is an example of the request.
 GET https://api.securitycenter.microsoft.com/api/alerts
 ```
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 **Response**
 
 Here is an example of the response.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
index a5cde6e4a0..b0b573c0e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
@@ -23,6 +23,11 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of all security recommendations affecting the organization.
@@ -61,7 +66,7 @@ If successful, this method returns 200 OK with the list of security recommendati
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/recommendations
+GET https://api.securitycenter.microsoft.com/api/recommendations
 ```
 
 **Response**
@@ -71,7 +76,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Recommendations",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Recommendations",
     "value": [
         {
             "id": "va-_-microsoft-_-windows_10",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
index f2de05191d..843f4cca7c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
@@ -23,6 +23,11 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Retrieves a list of all the vulnerabilities affecting the organization per [machine](machine.md) and [software](software.md).
 - If the vulnerability has a fixing KB, it will appear in the response.
 - Supports [OData V4 queries](https://www.odata.org/documentation/).
@@ -65,7 +70,7 @@ If successful, this method returns 200 OK with the list of vulnerabilities in th
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/vulnerabilities/machinesVulnerabilities
+GET https://api.securitycenter.microsoft.com/api/vulnerabilities/machinesVulnerabilities
 ```
 
 **Response**
@@ -75,7 +80,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Collection(microsoft.windowsDefenderATP.api.PublicAssetVulnerabilityDto)",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(microsoft.windowsDefenderATP.api.PublicAssetVulnerabilityDto)",
     "value": [
         {
             "id": "5afa3afc92a7c63d4b70129e0a6f33f63a427e21-_-CVE-2020-6494-_-microsoft-_-edge_chromium-based-_-81.0.416.77-_-",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
index 9847c928d4..138a8399ab 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
@@ -23,6 +23,11 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of all the vulnerabilities affecting the organization.
@@ -61,7 +66,7 @@ If successful, this method returns 200 OK with the list of vulnerabilities in th
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Vulnerabilities
+GET https://api.securitycenter.microsoft.com/api/Vulnerabilities
 ```
 
 **Response**
@@ -71,7 +76,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Vulnerabilities",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Vulnerabilities",
     "value": [
         {
             "id": "CVE-2019-0608",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
index e14a6859a7..15eece5384 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Retrieves your [Microsoft Secure Score for Devices](tvm-microsoft-secure-score-devices.md). A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. 
 
 ## Permissions
@@ -63,7 +68,7 @@ If successful, this method returns 200 OK, with the device secure score data in
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/configurationScore
+GET https://api.securitycenter.microsoft.com/api/configurationScore
 ```
 
 ### Response
@@ -75,7 +80,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#ConfigurationScore/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#ConfigurationScore/$entity",
     "time": "2019-12-03T09:15:58.1665846Z",
     "score": 340
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
index 5b16a71cfc..9bf4ba7a3d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
@@ -24,6 +24,10 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 Retrieves a collection of discovered vulnerabilities related to a given device ID.
 
 ## Permissions
@@ -62,7 +66,7 @@ If successful, this method returns 200 OK with the discovered vulnerability info
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/vulnerabilities
+GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/vulnerabilities
 ```
 
 ### Response
@@ -71,7 +75,7 @@ Here is an example of the response.
 
 ```
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
     "value": [
         {
             "id": "CVE-2019-1348",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
index 26fdbad6f4..2ef6ab2307 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Alerts](alerts.md) related to a given domain address.
@@ -74,8 +78,6 @@ If successful and domain exists - 200 OK with list of [alert](alerts.md) entitie
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```http
-GET https://api.securitycenter.windows.com/api/domains/client.wns.windows.com/alerts
+GET https://api.securitycenter.microsoft.com/api/domains/client.wns.windows.com/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
index 5bf5182ede..588bbbb442 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Machines](machine.md) that have communicated to or from a given domain address.
@@ -75,9 +79,6 @@ If successful and domain exists - 200 OK with list of [machine](machine.md) enti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```http
-GET https://api.securitycenter.windows.com/api/domains/api.securitycenter.windows.com/machines
+GET https://api.securitycenter.microsoft.com/api/domains/api.securitycenter.microsoft.com/machines
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
index cb49efb465..a1174ffd17 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves the statistics on the given domain.
@@ -71,10 +75,8 @@ If successful and domain exists - 200 OK, with statistics object in the response
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/domains/example.com/stats
+GET https://api.securitycenter.microsoft.com/api/domains/example.com/stats
 ```
 
 **Response**
@@ -86,7 +88,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-	"@odata.context": "https://api.securitycenter.windows.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgDomainStats",
+	"@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgDomainStats",
 	"host": "example.com",
     "orgPrevalence": "4070",
     "orgFirstSeen": "2017-07-30T13:23:48Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
index 43d7ac20e9..2dc25a2049 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves the organizational exposure score.
@@ -65,7 +70,7 @@ If successful, this method returns 200 OK, with the exposure data in the respons
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/exposureScore
+GET https://api.securitycenter.microsoft.com/api/exposureScore
 ```
 
 ### Response
@@ -77,7 +82,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#ExposureScore/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#ExposureScore/$entity",
     "time": "2019-12-03T07:23:53.280499Z",
     "score": 33.491554051195706
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
index 61ab343580..c69bbf38e5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a [File](files.md) by identifier Sha1, or Sha256
@@ -71,10 +75,8 @@ If successful and file exists - 200 OK with the [file](files.md) entity in the b
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/files/4388963aaa83afe2042a46a3c017ad50bdcdafb3
+GET https://api.securitycenter.microsoft.com/api/files/4388963aaa83afe2042a46a3c017ad50bdcdafb3
 ```
 
 **Response**
@@ -86,7 +88,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-	"@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Files/$entity",
+	"@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Files/$entity",
 	"sha1": "4388963aaa83afe2042a46a3c017ad50bdcdafb3",
 	"sha256": "413c58c8267d2c8648d8f6384bacc2ae9c929b2b96578b6860b5087cd1bd6462",
 	"globalPrevalence": 180022,
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
index d1c53228ac..e9088291e8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of alerts related to a given file hash.
@@ -74,8 +78,6 @@ If successful and file exists - 200 OK with list of [alert](alerts.md) entities
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1/alerts
+GET https://api.securitycenter.microsoft.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
index c60f272c69..99313ac5c8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Machines](machine.md) related to a given file hash.
@@ -74,8 +78,6 @@ If successful and file exists - 200 OK with list of [machine](machine.md) entiti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/files/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/machines
+GET https://api.securitycenter.microsoft.com/api/files/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/machines
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
index 59f525f594..d81d9b8af3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves the statistics for the given file.
@@ -71,10 +75,8 @@ If successful and file exists - 200 OK with statistical data in the body. If fil
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/files/0991a395da64e1c5fbe8732ed11e6be064081d9f/stats
+GET https://api.securitycenter.microsoft.com/api/files/0991a395da64e1c5fbe8732ed11e6be064081d9f/stats
 ```
 
 **Response**
@@ -86,7 +88,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgFileStats",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgFileStats",
     "sha1": "0991a395da64e1c5fbe8732ed11e6be064081d9f",
     "orgPrevalence": "14850",
     "orgFirstSeen": "2019-12-07T13:44:16Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
index 293d458f27..f686ea7ed2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
@@ -23,6 +23,10 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a collection of installed software related to a given device ID.
@@ -61,7 +65,7 @@ If successful, this method returns 200 OK with the installed software informatio
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/software
+GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/software
 ```
 
 **Response**
@@ -71,7 +75,7 @@ Here is an example of the response.
 
 ```
 {
-"@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Software",
+"@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Software",
 "value": [
         {
 "id": "microsoft-_-internet_explorer",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
index 296f7c81ce..b58d1ddd9e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Investigations](investigation.md).
@@ -54,7 +58,7 @@ Delegated (work or school account) | Alert.ReadWrite | 'Read and write alerts'
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/investigations
+GET https://api.securitycenter.microsoft.com/api/investigations
 ```
 
 ## Request headers
@@ -71,30 +75,25 @@ Empty
 If successful, this method returns 200, Ok response code with a collection of [Investigations](investigation.md) entities.
 
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ## Example
 
 **Request**
 
 Here is an example of a request to get all investigations: 
 
-
 ```
-GET https://api.securitycenter.windows.com/api/investigations
+GET https://api.securitycenter.microsoft.com/api/investigations
 ```
 
 **Response**
 
 Here is an example of the response:
 
-
 ```
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Investigations",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Investigations",
     "value": [
         {
             "id": "63017",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
index 6953ccabba..866f046908 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 ## API description
 Retrieves specific [Investigation](investigation.md) by its ID.
 <br> ID can be the investigation ID or the investigation triggering alert ID.
@@ -50,7 +55,7 @@ Delegated (work or school account) | Alert.ReadWrite | 'Read and write alerts'
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/investigations/{id}
+GET https://api.securitycenter.microsoft.com/api/investigations/{id}
 ```
 
 ## Request headers
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
index 6d078cbf15..184d6eb709 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of alerts related to a given IP address.
@@ -74,9 +78,6 @@ If successful and IP exists - 200 OK with list of [alert](alerts.md) entities in
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```
-GET https://api.securitycenter.windows.com/api/ips/10.209.67.177/alerts
+GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index b58fd359e9..839b32dbf4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves the statistics for the given IP.
@@ -71,10 +75,8 @@ If successful and ip exists - 200 OK with statistical data in the body. IP do no
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/ips/10.209.67.177/stats
+GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats
 ```
 
 **Response**
@@ -86,7 +88,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgIPStats",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgIPStats",
     "ipAddress": "10.209.67.177",
     "orgPrevalence": "63515",
     "orgFirstSeen": "2017-07-30T13:36:06Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index 30fd9d4263..331dca7bc1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves specific [Machine](machine.md) by its device ID or computer name.
@@ -77,10 +81,8 @@ If machine with the specified ID was not found - 404 Not Found.
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```http
-GET https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07
+GET https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07
 ```
 
 **Response**
@@ -92,7 +94,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machine",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machine",
     "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 	"computerDnsName": "mymachine1.contoso.com",
 	"firstSeen": "2018-08-02T14:55:03.7791856Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
index 112ed575be..437599c09a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a collection of alerts related to a given domain address.
@@ -65,7 +70,7 @@ If successful, this method returns 200 OK, with a list of exposure score per dev
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/exposureScore/ByMachineGroups
+GET https://api.securitycenter.microsoft.com/api/exposureScore/ByMachineGroups
 ```
 
 ### Response
@@ -75,7 +80,7 @@ Here is an example of the response.
 ```json
 
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#ExposureScore",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#ExposureScore",
     "value": [
         {
             "time": "2019-12-03T09:51:28.214338Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
index 55bdffa21c..42ceb10f0e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of logged on users on a specific device.
@@ -73,10 +77,8 @@ If successful and device exists - 200 OK with list of [user](user.md) entities i
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```http
-GET https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/logonusers
+GET https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/logonusers
 ```
 
 **Response**
@@ -88,7 +90,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Users",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users",
     "value": [
         {
             "id": "contoso\\user1",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
index 49e6162ab5..73d13b3564 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves all [Alerts](alerts.md) related to a specific device.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
index dc294c9002..cca2d17971 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves specific [Machine Action](machineaction.md) by its ID.
@@ -50,7 +54,7 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/machineactions/{id}
+GET https://api.securitycenter.microsoft.com/api/machineactions/{id}
 ```
 
 ## Request headers
@@ -72,10 +76,8 @@ If successful, this method returns 200, Ok response code with a [Machine Action]
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/machineactions/2e9da30d-27f6-4208-81f2-9cd3d67893ba
+GET https://api.securitycenter.microsoft.com/api/machineactions/2e9da30d-27f6-4208-81f2-9cd3d67893ba
 ```
 
 **Response**
@@ -87,7 +89,7 @@ Here is an example of the response.
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineActions/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions/$entity",
     "id": "5382f7ea-7557-4ab7-9782-d50480024a4e",
     "type": "Isolate",
 	"scope": "Selective",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
index 026a5fe161..4828b5ec67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Machine Actions](machineaction.md).
@@ -54,7 +58,7 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/machineactions
+GET https://api.securitycenter.microsoft.com/api/machineactions
 ```
 
 ## Request headers
@@ -77,10 +81,8 @@ If successful, this method returns 200, Ok response code with a collection of [m
 
 Here is an example of the request on an organization that has three MachineActions.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/machineactions
+GET https://api.securitycenter.microsoft.com/api/machineactions
 ```
 
 **Response**
@@ -92,7 +94,7 @@ Here is an example of the response.
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineActions",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions",
     "value": [
         {
             "id": "69dc3630-1ccc-4342-acf3-35286eec741d",
@@ -147,20 +149,18 @@ Content-type: application/json
 Here is an example of a request that filters the MachineActions by machine ID and shows the latest two MachineActions.
 
 ```
-GET https://api.securitycenter.windows.com/api/machineactions?$filter=machineId eq 'f46b9bb259ed4a7fb9981b73510e3cc7aa81ec1f'&$top=2
+GET https://api.securitycenter.microsoft.com/api/machineactions?$filter=machineId eq 'f46b9bb259ed4a7fb9981b73510e3cc7aa81ec1f'&$top=2
 ```
 
 **Response**
 
 Here is an example of the response.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineActions",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions",
     "value": [
         {
             "id": "69dc3630-1ccc-4342-acf3-35286eec741d",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
index 93f27a6093..f4c7216ceb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
@@ -24,9 +24,13 @@ ms.date: 10/07/2018
 
 
 **Applies to:**
-
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Retrieves a collection of RBAC device groups.
 
 ## Permissions
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
index 7490907216..042f48719b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieve a list of device references that has this software installed.
@@ -62,7 +67,7 @@ If successful, this method returns 200 OK and a list of devices with the softwar
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software/microsoft-_-edge/machineReferences
+GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/machineReferences
 ```
 
 **Response**
@@ -72,7 +77,7 @@ Here is an example of the response.
 ```json
 
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#MachineReferences",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineReferences",
     "value": [
         {
             "id": "7c7e1896fa39efb0a32a2cf421d837af1b9bf762",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
index bbd94f8b8d..eb8b9da158 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
@@ -24,6 +24,11 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of devices affected by a vulnerability.
@@ -62,7 +67,7 @@ If successful, this method returns 200 OK with the vulnerability information in
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/vulnerabilities/CVE-2019-0608/machineReferences
+GET https://api.securitycenter.microsoft.com/api/vulnerabilities/CVE-2019-0608/machineReferences
 ```
 
 **Response**
@@ -72,7 +77,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineReferences",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineReferences",
     "value": [
         {
             "id": "235a2e6278c63fcf85bab9c370396972c58843de",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index aef7e2789a..725fa8e4b2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of [Machines](machine.md) that have communicated with  Microsoft Defender for Endpoint cloud.
@@ -56,7 +60,7 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 ## HTTP request
 
 ```http
-GET https://api.securitycenter.windows.com/api/machines
+GET https://api.securitycenter.microsoft.com/api/machines
 ```
 
 ## Request headers
@@ -79,11 +83,8 @@ If successful and machines exists - 200 OK with list of [machine](machine.md) en
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```http
-GET https://api.securitycenter.windows.com/api/machines
+GET https://api.securitycenter.microsoft.com/api/machines
 ```
 
 **Response**
@@ -94,7 +95,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Machines",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
             "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
index 52846f5bdf..089381bade 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 Retrieves missing KBs (security updates) by device ID
 
 ## HTTP request
@@ -54,7 +58,7 @@ If successful, this method returns 200 OK, with the specified device missing kb
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/machines/2339ad14a01bd0299afb93dfa2550136057bff96/getmissingkbs 
+GET https://api.securitycenter.microsoft.com/api/machines/2339ad14a01bd0299afb93dfa2550136057bff96/getmissingkbs 
 ```
 
 ### Response
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
index 21506f3767..b9b44afb2d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Retrieves missing KBs (security updates) by software ID
 
 ## Permissions
@@ -63,7 +68,7 @@ If successful, this method returns 200 OK, with the specified software missing k
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software/microsoft-_-edge/getmissingkbs
+GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/getmissingkbs
 ```
 
 ### Response
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
index ffd04c4f62..17ac22ae88 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Get a URI that allows downloading of an [Investigation package](collect-investigation-package.md).
@@ -45,7 +49,7 @@ Delegated (work or school account) | Machine.CollectForensics |	'Collect forensi
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/machineactions/{machine action id}/getPackageUri
+GET https://api.securitycenter.microsoft.com/api/machineactions/{machine action id}/getPackageUri
 ```
 
 ## Request headers
@@ -69,7 +73,7 @@ If successful, this method returns 200, Ok response code with object that holds
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/machineactions/7327b54fd718525cbca07dacde913b5ac3c85673/GetPackageUri
+GET https://api.securitycenter.microsoft.com/api/machineactions/7327b54fd718525cbca07dacde913b5ac3c85673/GetPackageUri
 
 ```
 
@@ -77,15 +81,12 @@ GET https://api.securitycenter.windows.com/api/machineactions/7327b54fd718525cbc
 
 Here is an example of the response.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```
 HTTP/1.1 200 Ok
 Content-type: application/json
 
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Edm.String",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Edm.String",
     "value": "\"https://userrequests-us.securitycenter.windows.com:443/safedownload/WDATP_Investigation_Package.zip?token=gbDyj7y%2fbWGAZjn2sFiZXlliBTXOCVG7yiJ6mXNaQ9pLByC2Wxeno9mENsPFP3xMk5l%2bZiJXjLvqAyNEzUNROxoM2I1er9dxzfVeBsxSmclJjPsAx%2btiNyxSz1Ax%2b5jaT5cL5bZg%2b8wgbwY9urXbTpGjAKh6FB1e%2b0ypcWkPm8UkfOwsmtC%2biZJ2%2bPqnkkeQk7SKMNoAvmh9%2fcqDIPKXGIBjMa0D9auzypOqd8bQXp7p2BnLSH136BxST8n9IHR4PILvRjAYW9kvtHkBpBitfydAsUW4g2oDZSPN3kCLBOoo1C4w4Lkc9Bc3GNU2IW6dfB7SHcp7G9p4BDkeJl3VuDs6esCaeBorpn9FKJ%2fXo7o9pdcI0hUPZ6Ds9hiPpwPUtz5J29CBE3QAopCK%2fsWlf6OW2WyXsrNRSnF1tVE5H3wXpREzuhD7S4AIA3OIEZKzC4jIPLeMu%2bazZU9xGwuc3gICOaokbwMJiZTqcUuK%2fV9YdBdjdg8wJ16NDU96Pl6%2fgew2KYuk6Wo7ZuHotgHI1abcsvdlpe4AvixDbqcRJthsg2PpLRaFLm5av44UGkeK6TJpFvxUn%2f9fg6Zk5yM1KUTHb8XGmutoCM8U9er6AzXZlY0gGc3D3bQOg41EJZkEZLyUEbk1hXJB36ku2%2bW01cG71t7MxMBYz7%2bdXobxpdo%3d%3bRWS%2bCeoDfTyDcfH5pkCg6hYDmCOPr%2fHYQuaUWUBNVnXURYkdyOzVHqp%2fe%2f1BNyPdVoVkpQHpz1pPS3b5g9h7IMmNKCk5gFq5m2nPx6kk9EYtzx8Ndoa2m9Yj%2bSaf8zIFke86YnfQL4AYewsnQNJJh4wc%2bXxGlBq7axDcoiOdX91rKzVicH3GSBkFoLFAKoegWWsF%2fEDZcVpF%2fXUA1K8HvB6dwyfy4y0sAqnNPxYTQ97mG7yHhxPt4Pe9YF2UPPAJVuEf8LNlQ%2bWHC9%2f7msF6UUI4%2fca%2ftpjFs%2fSNeRE8%2fyQj21TI8YTF1SowvaJuDc1ivEoeopNNGG%2bGI%2fX0SckaVxU9Hdkh0zbydSlT5SZwbSwescs0IpzECitBbaLUz4aT8KTs8T0lvx8D7Te3wVsKAJ1r3iFMQZrlk%2bS1WW8rvac7oHRx2HKURn1v7fDIQWgJr9aNsNlFz4fLJ50T2qSHuuepkLVbe93Va072aMGhvr09WVKoTpAf1j2bcFZZU6Za5PxI32mr0k90FgiYFJ1F%2f1vRDrGwvWVWUkR3Z33m4g0gHa52W1FMxQY0TJIwbovD6FaSNDx7xhKZSd5IJ7r6P91Gez49PaZRcAZPjd%2bfbul3JNm1VqQPTLohT7wa0ymRiXpSST74xtFzuEBzNSNATdbngj3%2fwV4JesTjZjIj5Dc%3d%3blumqauVlFuuO8MQffZgs0tLJ4Fq6fpeozPTdDf8Ll6XLegi079%2b4mSPFjTK0y6eohstxdoOdom2wAHiZwk0u4KLKmRkfYOdT1wHY79qKoBQ3ZDHFTys9V%2fcwKGl%2bl8IenWDutHygn5IcA1y7GTZj4g%3d%3d\""
 }
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
index 79fcaae0ff..857d3458e0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
@@ -20,7 +20,13 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:**
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
@@ -60,7 +66,7 @@ If successful, this method returns 200 OK with the security recommendations in t
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/recommendations/va-_-google-_-chrome
+GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome
 ```
 
 **Response**
@@ -69,7 +75,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Recommendations/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Recommendations/$entity",
     "id": "va-_-google-_-chrome",
     "productName": "chrome",
     "recommendationName": "Update Chrome",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
index 079ab2c449..9322ad8635 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
@@ -21,9 +21,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of devices associated with the security recommendation.
@@ -62,7 +66,7 @@ If successful, this method returns 200 OK with the list of devices associated wi
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/recommendations/va-_-google-_-chrome/machineReferences
+GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/machineReferences
 ```
 
 **Response**
@@ -71,7 +75,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#MachineReferences",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineReferences",
     "value": [
         {
             "id": "e058770379bc199a9c179ce52a23e16fd44fd2ee",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
index 0656c420e8..d0c62de5ce 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
@@ -21,9 +21,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a security recommendation related to a specific software.
@@ -62,7 +66,7 @@ If successful, this method returns 200 OK with the software associated with the
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/recommendations/va-_-google-_-chrome/software 
+GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/software 
 ```
 
 **Response**
@@ -71,7 +75,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Analytics.Contracts.PublicAPI.PublicProductDto",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Analytics.Contracts.PublicAPI.PublicProductDto",
     "id": "google-_-chrome",
     "name": "chrome",
     "vendor": "google",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
index 95b525bf6b..07d26afe6f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
@@ -21,9 +21,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of vulnerabilities associated with the security recommendation.
@@ -62,7 +66,7 @@ If successful, this method returns 200 OK, with the list of vulnerabilities asso
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/recommendations/va-_-google-_-chrome/vulnerabilities
+GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/vulnerabilities
 ```
 
 **Response**
@@ -71,7 +75,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
     "value": [
         {
             "id": "CVE-2019-13748",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
index 91a19e9c18..a6e9564b8b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
@@ -24,6 +24,10 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a collection of security recommendations related to a given device ID.
@@ -62,7 +66,7 @@ If successful, this method returns 200 OK with the security recommendations in t
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/recommendations
+GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/recommendations
 ```
 
 **Response**
@@ -72,7 +76,7 @@ Here is an example of the response.
 
 ```
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Recommendations",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Recommendations",
     "value": [
         {
             "id": "va-_-git-scm-_-git",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
index 07550126c1..e5246656fb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves software details by ID.
@@ -62,7 +67,7 @@ If successful, this method returns 200 OK with the specified software data in th
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software/microsoft-_-edge
+GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge
 ```
 
 **Response**
@@ -72,7 +77,7 @@ Here is an example of the response.
 ```json
 
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Software/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Software/$entity",
     "id": "microsoft-_-edge",
     "name": "edge",
     "vendor": "microsoft",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
index 7ae8324de9..68faccd755 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves a list of your organization's software version distribution. 
@@ -62,7 +67,7 @@ If successful, this method returns 200 OK with a list of software distributions
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software/microsoft-_-edge/distributions
+GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/distributions
 ```
 
 **Response**
@@ -72,7 +77,7 @@ Here is an example of the response.
 ```json
 
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Distributions",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Distributions",
     "value": [
         {
             "version": "11.0.17134.1039",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
index 6a02de62a0..e6eba350a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Retrieves the organization software inventory.
 
 ## Permissions
@@ -61,7 +66,7 @@ If successful, this method returns 200 OK with the software inventory in the bod
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software
+GET https://api.securitycenter.microsoft.com/api/Software
 ```
 
 **Response**
@@ -71,7 +76,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Software",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Software",
     "value": [
 			{
 				"id": "microsoft-_-edge",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
index ea42bf22ac..5cd725bebe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of all active [Indicators](ti-indicator.md).
@@ -48,11 +52,9 @@ Delegated (work or school account) |	Ti.ReadWrite |	'Read and write Indicators'
 
 ## HTTP request
 ```
-GET https://api.securitycenter.windows.com/api/indicators
+GET https://api.securitycenter.microsoft.com/api/indicators
 ```
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ## Request headers
 
 Name | Type | Description
@@ -76,7 +78,7 @@ If successful, this method returns 200, Ok response code with a collection of [I
 Here is an example of a request that gets all Indicators
 
 ```
-GET https://api.securitycenter.windows.com/api/indicators
+GET https://api.securitycenter.microsoft.com/api/indicators
 ```
 
 **Response**
@@ -87,7 +89,7 @@ Here is an example of the response.
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Indicators",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Indicators",
     "value": [
         {
 			"id": "995",
@@ -139,7 +141,7 @@ Content-type: application/json
 Here is an example of a request that gets all Indicators with 'AlertAndBlock' action 
 
 ```
-GET https://api.securitycenter.windows.com/api/indicators?$filter=action+eq+'AlertAndBlock'
+GET https://api.securitycenter.microsoft.com/api/indicators?$filter=action+eq+'AlertAndBlock'
 ```
 
 **Response**
@@ -150,7 +152,7 @@ Here is an example of the response.
 HTTP/1.1 200 Ok
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Indicators",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Indicators",
     "value": [
         {
 			"id": "997",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
index bc5b69d9cd..184e70576e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
@@ -23,6 +23,10 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 Retrieve a User entity by key (user name).
 
@@ -58,10 +62,8 @@ If successful and user exists - 200 OK with [user](user.md) entity in the body.
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/users/user1
+GET https://api.securitycenter.microsoft.com/api/users/user1
 Content-type: application/json
 ```
 
@@ -74,7 +76,7 @@ Here is an example of the response.
 HTTP/1.1 200 OK
 Content-type: application/json
 {
-    "@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Users/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users/$entity",
     "id": "user1",
     "firstSeen": "2018-08-02T00:00:00Z",
     "lastSeen": "2018-08-04T00:00:00Z",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
index b6282b18f3..3126731b11 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of alerts related to a given user ID.
@@ -76,8 +80,6 @@ If successful and user exists - 200 OK. If the user does not exist - 404 Not Fou
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/users/user1/alerts
+GET https://api.securitycenter.microsoft.com/api/users/user1/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
index 33fbf7f79a..8956cf7608 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Retrieves a collection of devices related to a given user ID.
@@ -77,8 +81,6 @@ If successful and user exists - 200 OK with list of [machine](machine.md) entiti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-GET https://api.securitycenter.windows.com/api/users/user1/machines
+GET https://api.securitycenter.microsoft.com/api/users/user1/machines
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
index ac266cf40f..281e8cdb0b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieve a list of vulnerabilities in the installed software. 
@@ -62,7 +67,7 @@ If successful, this method returns 200 OK with a a list of vulnerabilities expos
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Software/microsoft-_-edge/vulnerabilities 
+GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/vulnerabilities 
 ```
 
 **Response**
@@ -72,7 +77,7 @@ Here is an example of the response.
 ```json
 
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
     "value": [
 			{
 				"id": "CVE-2017-0140",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
index 3e66207db5..5fb7863435 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
@@ -23,6 +23,11 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 Retrieves vulnerability information by its ID.
@@ -61,7 +66,7 @@ If successful, this method returns 200 OK with the vulnerability information in
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.windows.com/api/Vulnerabilities/CVE-2019-0608
+GET https://api.securitycenter.microsoft.com/api/Vulnerabilities/CVE-2019-0608
 ```
 
 **Response**
@@ -70,7 +75,7 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api-us.securitycenter.windows.com/api/$metadata#Vulnerabilities/$entity",
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Vulnerabilities/$entity",
     "id": "CVE-2019-0608",
     "name": "CVE-2019-0608",
     "description": "A spoofing vulnerability exists when Microsoft Browsers does not properly parse HTTP content. An attacker who successfully exploited this vulnerability could impersonate a user request by crafting HTTP queries. The specially crafted website could either spoof content or serve as a pivot to chain an attack with other vulnerabilities in web services.To exploit the vulnerability, the user must click a specially crafted URL. In an email attack scenario, an attacker could send an email message containing the specially crafted URL to the user in an attempt to convince the user to click it.In a web-based attack scenario, an attacker could host a specially crafted website designed to appear as a legitimate website to the user. However, the attacker would have no way to force the user to visit the specially crafted website. The attacker would have to convince the user to visit the specially crafted website, typically by way of enticement in an email or instant message, and then convince the user to interact with content on the website.The update addresses the vulnerability by correcting how Microsoft Browsers parses HTTP responses.",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
index 683be6e6bf..84ab44bf10 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Start automated investigation on a device.
@@ -79,8 +83,6 @@ If successful, this method returns 201 - Created response code and [Investigatio
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/startInvestigation
 Content-type: application/json
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigation.md b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
index 9a079ca9cb..98d5f63bef 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
@@ -27,6 +27,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Represent an Automated Investigation entity in Defender for Endpoint.
 <br> See [Overview of automated investigations](automated-investigations.md) for more information.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
index 98cfaa0d40..e52dcfca9e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Isolates a device from accessing external network.
@@ -52,7 +56,7 @@ Delegated (work or school account) | Machine.Isolate |	'Isolate machine'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/isolate
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/isolate
 ```
 
 ## Request headers
@@ -85,10 +89,8 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```console
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/isolate
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/isolate
 Content-type: application/json
 {
   "Comment": "Isolate machine due to alert 1234",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index 817ecce65b..ab02cb5c21 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 ## Methods
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
index 94f6a0a86b..4f6e60ca31 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 - For more information, see [Response Actions](respond-machine-alerts.md). 
 
 | Method                                                            | Return Type                        | Description                                                 |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
index 8cc6f7bed9..9dddb35e92 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Offboard device from Defender for Endpoint.
@@ -55,7 +59,7 @@ Delegated (work or school account) |	Machine.Offboard |	'Offboard machine'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/offboard
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/offboard
 ```
 
 ## Request headers
@@ -82,10 +86,8 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/offboard
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/offboard
 Content-type: application/json
 {
   "Comment": "Offboard machine by automation"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
index ff6119eee4..f405b1996b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
@@ -25,6 +25,11 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Create a notification rule so that when a local onboarding or offboardiing script is used, you'll be notified. 
 
 ## Before you begin
@@ -56,7 +61,7 @@ You'll need to have access to:
 5. Enter the following HTTP fields:
 
    - Method: "GET" as a value to get the list of devices.
-   - URI: Enter `https://api.securitycenter.windows.com/api/machines`.
+   - URI: Enter `https://api.securitycenter.microsoft.com/api/machines`.
    - Authentication: Select "Active Directory OAuth".
    - Tenant: Sign-in to https://portal.azure.com and navigate to **Azure Active Directory > App Registrations** and get the Tenant ID value.
    - Audience: `https://securitycenter.onmicrosoft.com/windowsatpservice\`
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index ab2b412ae2..e5fe251155 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Submits or Updates new [Indicator](ti-indicator.md) entity.
@@ -47,12 +51,9 @@ Delegated (work or school account) |	Ti.ReadWrite |	'Read and write Indicators'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/indicators
+POST https://api.securitycenter.microsoft.com/api/indicators
 ```
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ## Request headers
 
 Name | Type | Description
@@ -88,7 +89,7 @@ rbacGroupNames | String | Comma-separated list of RBAC group names the indicator
 Here is an example of the request.
 
 ```
-POST https://api.securitycenter.windows.com/api/indicators
+POST https://api.securitycenter.microsoft.com/api/indicators
 Content-type: application/json
 {
     "indicatorValue": "220e7d15b011d7fac48f2bd61114db1022197f7f",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index d656f995c8..bd9ab75684 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -203,7 +203,7 @@ Here is an example return value:
 The following code examples demonstrate how to obtain an access token for calling the Microsoft Defender for Endpoint SIEM API.
 
 ```csharp
-AuthenticationContext context = new AuthenticationContext(string.Format("https://login.windows.net/{0}", tenantId));
+AuthenticationContext context = new AuthenticationContext(string.Format("https://login.microsoftonline.com/{0}", tenantId));
 ClientCredential clientCredentials = new ClientCredential(clientId, clientSecret);
 AuthenticationResult authenticationResult = context.AcquireTokenAsync(detectionsResource, clientCredentials).GetAwaiter().GetResult();
 ```
@@ -218,7 +218,7 @@ $appId = '' ### Paste your Application ID here
 $appSecret = '' ### Paste your Application secret here
 
 $resourceAppIdUri = 'https://graph.windows.net'
-$oAuthUri = "https://login.windows.net/$tenantId/oauth2/token"
+$oAuthUri = "https://login.microsoftonline.com/$tenantId/oauth2/token"
 $authBody = [Ordered] @{
     resource = "$resourceAppIdUri"
     client_id = "$appId"
@@ -237,7 +237,7 @@ tenantId='' ### Paste your tenant ID here
 appId='' ### Paste your Application ID here
 appSecret='' ### Paste your Application secret here
 resourceAppIdUri='https://graph.windows.net'
-oAuthUri="https://login.windows.net/$tenantId/oauth2/token"
+oAuthUri="https://login.microsoftonline.com/$tenantId/oauth2/token"
 scriptDir=$(pwd)
 
 apiResponse=$(curl -s X POST "$oAuthUri" -d "resource=$resourceAppIdUri&client_id=$appId&client_secret=$appSecret&\
diff --git a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
index 4d71206462..d53ac74ba4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 ## Methods
diff --git a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
index 414c106934..9a05137743 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Restrict execution of all applications on the device except a predefined set.
@@ -51,7 +55,7 @@ Delegated (work or school account) | Machine.RestrictExecution | 'Restrict code
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/restrictCodeExecution
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/restrictCodeExecution
 ```
 
 ## Request headers
@@ -79,7 +83,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 Here is an example of the request.
 
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/restrictCodeExecution 
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/restrictCodeExecution 
 Content-type: application/json
 {
   "Comment": "Restrict code execution due to alert 1234"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index ddf250a58f..6eca5df06d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -28,6 +28,8 @@ ms.topic: article
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 ## Limitations
 1. You can only run a query on data from the last 30 days.
 2. The results will include a maximum of 100,000 rows.
@@ -79,9 +81,6 @@ Request
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
 ```
 POST https://api.securitycenter.microsoft.com/api/advancedqueries/run
 Content-type: application/json
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index ea7771fd0a..c22b6113f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -26,6 +26,7 @@ ms.topic: article
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
 
 Run advanced queries using PowerShell, see [Advanced Hunting API](run-advanced-query-api.md).
 
@@ -74,8 +75,6 @@ where
 
 Run the following query:
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 $query = 'RegistryEvents | limit 10' # Paste your own query here
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index ed35434cfc..b09ec393cd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -28,6 +28,8 @@ ms.topic: article
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 Run advanced queries using Python, see [Advanced Hunting API](run-advanced-query-api.md).
 
 In this section, we share Python samples to retrieve a token and use it to run a query.
@@ -38,8 +40,6 @@ In this section, we share Python samples to retrieve a token and use it to run a
 
 - Run the following commands:
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
 
 import json
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index 9525f7a282..e1e4afef67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Initiate Microsoft Defender Antivirus scan on a device.
@@ -51,7 +55,7 @@ Delegated (work or school account) |	Machine.Scan |	'Scan machine'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/runAntiVirusScan
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/runAntiVirusScan
 ```
 
 ## Request headers
@@ -87,7 +91,7 @@ If successful, this method returns 201, Created response code and _MachineAction
 Here is an example of the request.
 
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/runAntiVirusScan 
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/runAntiVirusScan 
 Content-type: application/json
 {
   "Comment": "Check machine for viruses due to alert 3212",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/score.md b/windows/security/threat-protection/microsoft-defender-atp/score.md
index d911b24cb2..aab54c586f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/score.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 ## Methods
diff --git a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
index b2a76a6693..98266678c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 ## API description
 
 Set the device value of a specific [Machine](machine.md).<br>
diff --git a/windows/security/threat-protection/microsoft-defender-atp/software.md b/windows/security/threat-protection/microsoft-defender-atp/software.md
index 617a6c15ec..a471bd94f2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/software.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 ## Methods
diff --git a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
index a91edcf37d..83727872ac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Stop execution of a file on a device and delete it.
@@ -51,7 +55,7 @@ Delegated (work or school account) | Machine.StopAndQuarantine | 'Stop And Quara
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/StopAndQuarantineFile
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/StopAndQuarantineFile
 ```
 
 ## Request headers
@@ -80,7 +84,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 Here is an example of the request.
 
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/StopAndQuarantineFile 
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/StopAndQuarantineFile 
 Content-type: application/json
 {
   "Comment": "Stop and quarantine file on machine due to alert 441688558380765161_2136280442",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
index 2b37172304..39a5774d5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 - See the corresponding [Indicators page](https://securitycenter.windows.com/preferences2/custom_ti_indicators/files) in the portal. 
 
 Method|Return Type |Description
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
index ce25cadea3..a6af2f344d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
@@ -78,8 +78,8 @@ You'll need to allow the `securitycenter.windows.com` and all subdomains under i
 ## Portal communication issues
 If you encounter issues with accessing the portal, missing data, or restricted access to portions of the portal, you'll need to verify that the following URLs are allowed and open for communication.
 
-- `*.blob.core.windows.net 
-crl.microsoft.com`
+- `*.blob.core.windows.net`
+- `crl.microsoft.com`
 - `https://*.microsoftonline-p.com`
 - `https://*.securitycenter.windows.com` 
 - `https://automatediracs-eus-prd.securitycenter.windows.com`
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
index 211e184891..2f5e42faa5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
@@ -26,6 +26,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Undo isolation of a device.
@@ -52,7 +56,7 @@ Delegated (work or school account) |	Machine.Isolate |	'Isolate machine'
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/unisolate
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/unisolate
 ```
 
 ## Request headers
@@ -80,10 +84,8 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unisolate 
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unisolate 
 Content-type: application/json
 {
   "Comment": "Unisolate machine since it was clean and validated"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
index 49037547d6..ef5ea2434a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Enable execution of any application on the device.
@@ -51,7 +55,7 @@ Delegated (work or school account) | Machine.RestrictExecution | 'Restrict code
 
 ## HTTP request
 ```
-POST https://api.securitycenter.windows.com/api/machines/{id}/unrestrictCodeExecution
+POST https://api.securitycenter.microsoft.com/api/machines/{id}/unrestrictCodeExecution
 ```
 
 ## Request headers
@@ -77,10 +81,8 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ```
-POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unrestrictCodeExecution 
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unrestrictCodeExecution 
 Content-type: application/json
 {
   "Comment": "Unrestrict code execution since machine was cleaned and validated"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
index a62ac7611a..9e142b87bc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
@@ -25,6 +25,10 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
 
 ## API description
 Updates properties of existing [Alert](alerts.md).
@@ -76,8 +80,6 @@ classification | String | Specifies the specification of the alert. The property
 determination | String | Specifies the determination of the alert. The property values are: 'NotAvailable', 'Apt', 'Malware', 'SecurityPersonnel', 'SecurityTesting', 'UnwantedSoftware', 'Other'
 comment | String | Comment to be added to the alert.
 
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
 ## Response
 If successful, this method returns 200 OK, and the [alert](alerts.md) entity in the response body with the updated properties. If alert with the specified id was not found - 404 Not Found.
 
@@ -89,7 +91,7 @@ If successful, this method returns 200 OK, and the [alert](alerts.md) entity in
 Here is an example of the request.
 
 ```
-PATCH https://api.securitycenter.windows.com/api/alerts/121688558380765161_2136280442
+PATCH https://api.securitycenter.microsoft.com/api/alerts/121688558380765161_2136280442
 Content-Type: application/json
 
 {
diff --git a/windows/security/threat-protection/microsoft-defender-atp/user.md b/windows/security/threat-protection/microsoft-defender-atp/user.md
index 948460d6a9..8d75aea649 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/user.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/user.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 Method|Return Type |Description
 :---|:---|:---
 [List User related alerts](get-user-related-alerts.md) | [alert](alerts.md) collection |  List all the alerts that are associated with a [user](user.md).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
index eaaa313b18..924169d5d8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
@@ -25,6 +25,11 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
 [!include[Prerelease information](../../includes/prerelease.md)]
 
 ## Methods

From d6769ab4ecb09499d691460a33440bfa07f32ea6 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 22 Dec 2020 16:54:51 -0800
Subject: [PATCH 110/825] Added ADMX-backed Power settings

---
 .../mdm/policy-csp-admx-power.md              | 1882 +++++++++++++++++
 1 file changed, 1882 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-power.md

diff --git a/windows/client-management/mdm/policy-csp-admx-power.md b/windows/client-management/mdm/policy-csp-admx-power.md
new file mode 100644
index 0000000000..c8d950a87f
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-power.md
@@ -0,0 +1,1882 @@
+---
+title: Policy CSP - ADMX_Power
+description: Policy CSP - ADMX_Power
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 12/22/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Power
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_Power policies  
+
+<dl>
+  <dd>
+    <a href="#admx-power-acconnectivityinstandby-2">ADMX_Power/ACConnectivityInStandby_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-accriticalsleeptransitionsdisable-2">ADMX_Power/ACCriticalSleepTransitionsDisable_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-acstartmenubuttonaction-2">ADMX_Power/ACStartMenuButtonAction_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-allowsystempowerrequestac">ADMX_Power/AllowSystemPowerRequestAC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-allowsystempowerrequestdc">ADMX_Power/AllowSystemPowerRequestDC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-allowsystemsleepwithremotefilesopenac">ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-allowsystemsleepwithremotefilesopendc">ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-customactiveschemeoverride-2">ADMX_Power/CustomActiveSchemeOverride_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcbatterydischargeaction0-2">ADMX_Power/DCBatteryDischargeAction0_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcbatterydischargeaction1-2">ADMX_Power/DCBatteryDischargeAction1_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcbatterydischargelevel0-2">ADMX_Power/DCBatteryDischargeLevel0_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcbatterydischargelevel1uinotification-2">ADMX_Power/DCBatteryDischargeLevel1UINotification_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcbatterydischargelevel1-2">ADMX_Power/DCBatteryDischargeLevel1_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcconnectivityinstandby-2">ADMX_Power/DCConnectivityInStandby_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dccriticalsleeptransitionsdisable-2">ADMX_Power/DCCriticalSleepTransitionsDisable_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dcstartmenubuttonaction-2">ADMX_Power/DCStartMenuButtonAction_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-diskacpowerdowntimeout-2">ADMX_Power/DiskACPowerDownTimeOut_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-diskdcpowerdowntimeout-2">ADMX_Power/DiskDCPowerDownTimeOut_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-dont-poweroff-aftershutdown">ADMX_Power/Dont_PowerOff_AfterShutdown</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-enabledesktopslideshowac">ADMX_Power/EnableDesktopSlideShowAC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-enabledesktopslideshowdc">ADMX_Power/EnableDesktopSlideShowDC</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-inboxactiveschemeoverride-2">ADMX_Power/InboxActiveSchemeOverride_2</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-pw-promptpasswordonresume">ADMX_Power/PW_PromptPasswordOnResume</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-powerthrottlingturnoff">ADMX_Power/PowerThrottlingTurnOff</a>
+  </dd>
+  <dd>
+    <a href="#admx-power-reservebatterynotificationlevel">ADMX_Power/ReserveBatteryNotificationLevel</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-acconnectivityinstandby-2"></a>**ADMX_Power/ACConnectivityInStandby_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control the network connectivity state in standby on modern standby-capable systems.
+
+If you enable this policy setting, network connectivity will be maintained in standby.
+
+If you disable this policy setting, network connectivity in standby is not guaranteed. This connectivity restriction currently applies to WLAN networks only, and is subject to change.
+
+If you do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow network connectivity during connected-standby (plugged in)*
+-   GP name: *ACConnectivityInStandby_2*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-accriticalsleeptransitionsdisable-2"></a>**ADMX_Power/ACCriticalSleepTransitionsDisable_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to turn on the ability for applications and services to prevent the system from sleeping.
+
+If you enable this policy setting, an application or service may prevent the system from sleeping (Hybrid Sleep, Stand By, or Hibernate).
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn on the ability for applications to prevent sleep transitions (plugged in)*
+-   GP name: *ACCriticalSleepTransitionsDisable_2*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-acstartmenubuttonaction-2"></a>**ADMX_Power/ACStartMenuButtonAction_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the action that Windows takes when a user presses the Start menu Power button.
+
+If you enable this policy setting, select one of the following actions:
+
+- Sleep
+- Hibernate
+- Shut down
+
+If you disable this policy or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Select the Start menu Power button action (plugged in)*
+-   GP name: *ACStartMenuButtonAction_2*
+-   GP path: *System\Power Management\Button Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-allowsystempowerrequestac"></a>**ADMX_Power/AllowSystemPowerRequestAC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows applications and services to prevent automatic sleep.
+
+If you enable this policy setting, any application, service, or device driver prevents Windows from automatically transitioning to sleep after a period of user inactivity.
+
+If you disable or do not configure this policy setting, applications, services, or drivers do not prevent Windows from automatically transitioning to sleep. Only user input is used to determine if Windows should automatically sleep.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow applications to prevent automatic sleep (plugged in)*
+-   GP name: *AllowSystemPowerRequestAC*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-allowsystempowerrequestdc"></a>**ADMX_Power/AllowSystemPowerRequestDC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows applications and services to prevent automatic sleep.
+
+If you enable this policy setting, any application, service, or device driver prevents Windows from automatically transitioning to sleep after a period of user inactivity.
+
+If you disable or do not configure this policy setting, applications, services, or drivers do not prevent Windows from automatically transitioning to sleep. Only user input is used to determine if Windows should automatically sleep.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow applications to prevent automatic sleep (on battery)*
+-   GP name: *AllowSystemPowerRequestDC*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-allowsystemsleepwithremotefilesopenac"></a>**ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage automatic sleep with open network files.
+
+If you enable this policy setting, the computer automatically sleeps when network files are open.
+
+If you disable or do not configure this policy setting, the computer does not automatically sleep when network files are open.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow automatic sleep with Open Network Files (plugged in)*
+-   GP name: *AllowSystemSleepWithRemoteFilesOpenAC*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-allowsystemsleepwithremotefilesopendc"></a>**ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage automatic sleep with open network files.
+
+If you enable this policy setting, the computer automatically sleeps when network files are open.
+
+If you disable or do not configure this policy setting, the computer does not automatically sleep when network files are open.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow automatic sleep with Open Network Files (on battery)*
+-   GP name: *AllowSystemSleepWithRemoteFilesOpenDC*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-customactiveschemeoverride-2"></a>**ADMX_Power/CustomActiveSchemeOverride_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the active power plan from a specified power plan’s GUID. The GUID for a custom power plan GUID can be retrieved by using powercfg, the power configuration command line tool.
+
+If you enable this policy setting, you must specify a power plan, specified as a GUID using the following format: XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX (For example, 103eea6e-9fcd-4544-a713-c282d8e50083), indicating the power plan to be active.
+
+If you disable or do not configure this policy setting, users can see and change this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Specify a custom active power plan*
+-   GP name: *CustomActiveSchemeOverride_2*
+-   GP path: *System\Power Management*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcbatterydischargeaction0-2"></a>**ADMX_Power/DCBatteryDischargeAction0_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the action that Windows takes when battery capacity reaches the critical battery notification level.  
+
+If you enable this policy setting, select one of the following actions:
+
+- Take no action
+- Sleep
+- Hibernate
+- Shut down
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Critical battery notification action*
+-   GP name: *DCBatteryDischargeAction0_2*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcbatterydischargeaction1-2"></a>**ADMX_Power/DCBatteryDischargeAction1_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the action that Windows takes when battery capacity reaches the low battery notification level.
+
+If you enable this policy setting, select one of the following actions:
+
+- Take no action
+- Sleep
+- Hibernate
+- Shut down
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Low battery notification action*
+-   GP name: *DCBatteryDischargeAction1_2*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcbatterydischargelevel0-2"></a>**ADMX_Power/DCBatteryDischargeLevel0_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the percentage of battery capacity remaining that triggers the critical battery notification action.
+
+If you enable this policy setting, you must enter a numeric value (percentage) to set the battery level that triggers the critical notification.
+
+To set the action that is triggered, see the "Critical Battery Notification Action" policy setting.
+
+If you disable this policy setting or do not configure it, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Critical battery notification level*
+-   GP name: *DCBatteryDischargeLevel0_2*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcbatterydischargelevel1uinotification-2"></a>**ADMX_Power/DCBatteryDischargeLevel1UINotification_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting turns off the user notification when the battery capacity remaining equals the low battery notification level.
+
+If you enable this policy setting, Windows shows a notification when the battery capacity remaining equals the low battery notification level.
+
+To configure the low battery notification level, see the "Low Battery Notification Level" policy setting.
+
+The notification will only be shown if the "Low Battery Notification Action" policy setting is configured to "No Action".
+
+If you disable or do not configure this policy setting, users can control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off low battery user notification*
+-   GP name: *DCBatteryDischargeLevel1UINotification_2*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcbatterydischargelevel1-2"></a>**ADMX_Power/DCBatteryDischargeLevel1_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the percentage of battery capacity remaining that triggers the low battery notification action.
+
+If you enable this policy setting, you must enter a numeric value (percentage) to set the battery level that triggers the low notification.
+
+To set the action that is triggered, see the "Low Battery Notification Action" policy setting.
+
+If you disable this policy setting or do not configure it, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Low battery notification level*
+-   GP name: *DCBatteryDischargeLevel1_2*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcconnectivityinstandby-2"></a>**ADMX_Power/DCConnectivityInStandby_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control the network connectivity state in standby on modern standby-capable systems.
+
+If you enable this policy setting, network connectivity will be maintained in standby.
+
+If you disable this policy setting, network connectivity in standby is not guaranteed. This connectivity restriction currently applies to WLAN networks only, and is subject to change.
+
+If you do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow network connectivity during connected-standby (on battery)*
+-   GP name: *DCConnectivityInStandby_2*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dccriticalsleeptransitionsdisable-2"></a>**ADMX_Power/DCCriticalSleepTransitionsDisable_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to turn on the ability for applications and services to prevent the system from sleeping.
+
+If you enable this policy setting, an application or service may prevent the system from sleeping (Hybrid Sleep, Stand By, or Hibernate).
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn on the ability for applications to prevent sleep transitions (on battery)*
+-   GP name: *DCCriticalSleepTransitionsDisable_2*
+-   GP path: *System\Power Management\Sleep Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dcstartmenubuttonaction-2"></a>**ADMX_Power/DCStartMenuButtonAction_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the action that Windows takes when a user presses the Start menu Power button.
+
+If you enable this policy setting, select one of the following actions:
+
+- Sleep
+- Hibernate
+- Shut down
+
+If you disable this policy or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Select the Start menu Power button action (on battery)*
+-   GP name: *DCStartMenuButtonAction_2*
+-   GP path: *System\Power Management\Button Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-diskacpowerdowntimeout-2"></a>**ADMX_Power/DiskACPowerDownTimeOut_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the period of inactivity before Windows turns off the hard disk.
+
+If you enable this policy setting, you must provide a value, in seconds, indicating how much idle time should elapse before Windows turns off the hard disk.
+
+If you disable or do not configure this policy setting, users can see and change this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn Off the hard disk (plugged in)*
+-   GP name: *DiskACPowerDownTimeOut_2*
+-   GP path: *System\Power Management\Hard Disk Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-diskdcpowerdowntimeout-2"></a>**ADMX_Power/DiskDCPowerDownTimeOut_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the period of inactivity before Windows turns off the hard disk.
+
+If you enable this policy setting, you must provide a value, in seconds, indicating how much idle time should elapse before Windows turns off the hard disk.
+
+If you disable or do not configure this policy setting, users can see and change this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn Off the hard disk (on battery)*
+-   GP name: *DiskDCPowerDownTimeOut_2*
+-   GP path: *System\Power Management\Hard Disk Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-dont-poweroff-aftershutdown"></a>**ADMX_Power/Dont_PowerOff_AfterShutdown**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure whether power is automatically turned off when Windows shutdown completes.
+
+This setting does not affect Windows shutdown behavior when shutdown is manually selected using the Start menu or Task Manager user interfaces.
+
+Applications such as UPS software may rely on Windows shutdown behavior.
+
+This setting is only applicable when Windows shutdown is initiated by software programs invoking the Windows programming interfaces ExitWindowsEx() or InitiateSystemShutdown().
+
+If you enable this policy setting, the computer system safely shuts down and remains in a powered state, ready for power to be safely removed.
+
+If you disable or do not configure this policy setting, the computer system safely shuts down to a fully powered-off state.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Do not turn off system power after a Windows system shutdown has occurred.*
+-   GP name: *Dont_PowerOff_AfterShutdown*
+-   GP path: *System*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-enabledesktopslideshowac"></a>**ADMX_Power/EnableDesktopSlideShowAC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify if Windows should enable the desktop background slideshow.
+
+If you enable this policy setting, desktop background slideshow is enabled.
+
+If you disable this policy setting, the desktop background slideshow is disabled.
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn on desktop background slideshow (plugged in)*
+-   GP name: *EnableDesktopSlideShowAC*
+-   GP path: *System\Power Management\Video and Display Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-enabledesktopslideshowdc"></a>**ADMX_Power/EnableDesktopSlideShowDC**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify if Windows should enable the desktop background slideshow.
+
+If you enable this policy setting, desktop background slideshow is enabled.
+
+If you disable this policy setting, the desktop background slideshow is disabled.
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn on desktop background slideshow (on battery)*
+-   GP name: *EnableDesktopSlideShowDC*
+-   GP path: *System\Power Management\Video and Display Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-inboxactiveschemeoverride-2"></a>**ADMX_Power/InboxActiveSchemeOverride_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the active power plan from a list of default Windows power plans. To specify a custom power plan, use the Custom Active Power Plan setting.
+
+If you enable this policy setting, specify a power plan from the Active Power Plan list.
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Select an active power plan*
+-   GP name: *InboxActiveSchemeOverride_2*
+-   GP path: *System\Power Management*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-pw-promptpasswordonresume"></a>**ADMX_Power/PW_PromptPasswordOnResume**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure client computers to lock and prompt for a password when resuming from a hibernate or suspend state.
+
+If you enable this policy setting, the client computer is locked and prompted for a password when it is resumed from a suspend or hibernate state.
+
+If you disable or do not configure this policy setting, users control if their computer is automatically locked or not after performing a resume operation.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prompt for password on resume from hibernate/suspend*
+-   GP name: *PW_PromptPasswordOnResume*
+-   GP path: *System\Power Management*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-powerthrottlingturnoff"></a>**ADMX_Power/PowerThrottlingTurnOff**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to turn off Power Throttling.
+
+If you enable this policy setting, Power Throttling will be turned off.
+
+If you disable or do not configure this policy setting, users control this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Power Throttling*
+-   GP name: *PowerThrottlingTurnOff*
+-   GP path: *System\Power Management\Power Throttling Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-power-reservebatterynotificationlevel"></a>**ADMX_Power/ReserveBatteryNotificationLevel**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the percentage of battery capacity remaining that triggers the reserve power mode.
+
+If you enable this policy setting, you must enter a numeric value (percentage) to set the battery level that triggers the reserve power notification.
+
+If you disable or do not configure this policy setting, users can see and change this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Reserve battery notification level*
+-   GP name: *ReserveBatteryNotificationLevel*
+-   GP path: *System\Power Management\Notification Settings*
+-   GP ADMX file name: *Power.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From 7c0b00e858893f237d46eea97b0c6907e33d9922 Mon Sep 17 00:00:00 2001
From: Max Stein <mastein@microsoft.com>
Date: Tue, 22 Dec 2020 19:58:35 -0800
Subject: [PATCH 111/825] Doc update and screenshot refresh

Updating text and screenshots.
---
 .../hello-feature-pin-reset.md                | 19 ++++++++-----------
 1 file changed, 8 insertions(+), 11 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md b/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
index e4e7af1253..93b01bb01b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
+++ b/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
@@ -13,7 +13,7 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 09/09/2019
+ms.date: 12/22/2020
 ms.reviewer: 
 ---
 
@@ -45,37 +45,34 @@ Before you can remotely reset PINs, you must on-board the Microsoft PIN reset se
 
 1. Go to the [Microsoft PIN Reset Service Production website](https://login.windows.net/common/oauth2/authorize?response_type=code&client_id=b8456c59-1230-44c7-a4a2-99b085333e84&resource=https%3A%2F%2Fgraph.windows.net&redirect_uri=https%3A%2F%2Fcred.microsoft.com&state=e9191523-6c2f-4f1d-a4f9-c36f26f89df0&prompt=admin_consent), and sign in using the Global administrator account you use to manage your Azure Active Directory tenant.
 2. After you have logged in, choose **Accept** to give consent for the PIN reset service to access your account.
-![PIN reset service application in Azure](images/pinreset/pin-reset-service-prompt.png)
+ ![PIN reset service application in Azure](images/pinreset/pin-reset-service-prompt.png)
 3. Go to the [Microsoft PIN Reset Client Production website](https://login.windows.net/common/oauth2/authorize?response_type=code&client_id=9115dd05-fad5-4f9c-acc7-305d08b1b04e&resource=https%3A%2F%2Fcred.microsoft.com%2F&redirect_uri=ms-appx-web%3A%2F%2FMicrosoft.AAD.BrokerPlugin%2F9115dd05-fad5-4f9c-acc7-305d08b1b04e&state=6765f8c5-f4a7-4029-b667-46a6776ad611&prompt=admin_consent), and sign in using the Global administrator account you use to manage your Azure Active Directory tenant.
 4. After you have logged in, choose **Accept** to give consent for the PIN reset client to access your account.
-
+ ![PIN reset client application in Azure](images/pinreset/pin-reset-client-prompt.png)
 > [!NOTE]
 > After you have accepted the PIN reset service and client requests, you will land on a page that states "You do not have permission to view this directory or page." This behavior is expected. Be sure to confirm that the two PIN reset applications are listed for your tenant.
-
-![PIN reset client application in Azure](images/pinreset/pin-reset-client-prompt.png)
-
 5. In the [Azure portal](https://portal.azure.com), verify that the Microsoft PIN Reset Service and Microsoft PIN Reset Client are integrated from the **Enterprise applications** blade. Filter to application status "Enabled" and both Microsoft Pin Reset Service Production and Microsoft Pin Reset Client Production will show up in your tenant.
-![PIN reset service permissions page](images/pinreset/pin-reset-applications.png)
+ ![PIN reset service permissions page](images/pinreset/pin-reset-applications.png)
 
 ### Configure Windows devices to use PIN reset using Group Policy
 
 You configure Windows 10 to use the Microsoft PIN Reset service using the computer configuration portion of a Group Policy object.
 
 1. Using the Group Policy Management Console (GPMC), scope a domain-based Group Policy to computer accounts in Active Directory.
-2. Edit the Group Policy object from step 1.
-3. Enable the **Use PIN Recovery** policy setting located under **Computer Configuration->Administrative Templates->Windows Components->Windows Hello for Business**.
+2. Edit the Group Policy object from Step 1.
+3. Enable the **Use PIN Recovery** policy setting located under **Computer Configuration > Administrative Templates > Windows Components > Windows Hello for Business**.
 4. Close the Group Policy Management Editor to save the Group Policy object.  Close the GPMC.
 
 #### Create a PIN Reset Device configuration profile using Microsoft Intune
 
 1. Sign-in to [Enpoint Manager admin center](https://endpoint.microsoft.com/) using a Global administrator account.
-2. Click **Endpoint Security**-> **Account Protection**-> **Properties**.
+2. Click **Endpoint Security** > **Account Protection** > **Properties**.
 3. Set **Enable PIN recovery** to **Yes**.
 
 > [!NOTE]
 > You can also setup PIN recovery using configuration profiles.
 > 1. Sign in to Endpoint Manager.
-> 2. Click **Devices** -> **Configuration Profiles** -> Create a new profile or edit an existing profile using the Identity Protection profile type.
+> 2. Click **Devices** > **Configuration Profiles** > Create a new profile or edit an existing profile using the Identity Protection profile type.
 > 3. Set **Enable PIN recovery** to **Yes**.
 
 #### Assign the PIN Reset Device configuration profile using Microsoft Intune

From 272fc4ceda6b43d82bf09ff5701fec8f67645a4a Mon Sep 17 00:00:00 2001
From: Max Stein <mastein@microsoft.com>
Date: Tue, 22 Dec 2020 20:22:06 -0800
Subject: [PATCH 112/825] Doc update and screenshot refresh

Updating text and screenshots.
---
 .../pinreset/pin-reset-client-home-screen.png  | Bin 0 -> 90751 bytes
 .../pinreset/pin-reset-service-application.png | Bin 0 -> 113741 bytes
 .../pinreset/pin-reset-service-home-screen.png | Bin 0 -> 71281 bytes
 3 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-client-home-screen.png
 create mode 100644 windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-application.png
 create mode 100644 windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-home-screen.png

diff --git a/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-client-home-screen.png b/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-client-home-screen.png
new file mode 100644
index 0000000000000000000000000000000000000000..fce622e7f7a0fbee64e868b71ff042806524ed4f
GIT binary patch
literal 90751
zcmd?RbyO687%onS(kLO_A}q)v4NI4V2ug>_QUcN~jRKNOEYeDf^n!E>61#wOcQ?|o
z)SdnQ&hP$n|GwwkdoJeyJHyN{^NII;p67i&6RD%EN_y|nJuECNQgt;YT`Vl@QY<W-
zY$5_+&m2h#3GfTsO;=R`t89RA3)sN3k=K&P!m5nBfBhC8*d}&XGjhYiB6G)lW7~69
zjbmZm<*O^nzw$QUox`u=>V|PU9PIAz_U-nyX3ZT&%hYuDv7-3tIq&mNC2)munmAN~
ztbwo3^hSNamnN{mdv{#$p}JUOW4<M(VT{Q_c4N!$Cj!jD!Lbt6gVZ}^yFgjo9&KH(
z^2lEHz6em+-uM<uhIZ!S54_$8yxq9L>^w@$zK$OK8+bDj_;B@g6+hu~-aF8LhXa3s
zU2MU|Pi4x`<F>=T8<}47TAWmoO7A#x1no{I`C)3n7G*eRsS-O(&7DBqI1>1<Ns>?v
z9K$|D&uPa6e8>@28-9*C%O*ZA8FRt_t2!U%%uM+Nec(J!$<Y4?E<ksfce*d-lv0}=
zP~GJ7H)gGr@B_oO+Z|{vQ+1!usTr-{b9+jNToE)k$nxIml9!EZ_IC8yAM-=b95g`&
zbukU4BB=tgYev8GxvY~x>Y+3ZvW(nnj`|+m$i66-w)C+IPevVkWf=?v*sdTBtYjY(
znq5}O%lere-MFqZ*{9H21bTnV$8=S+d$c#uoqueQ$5Q2{D*h{qYeT8G1=8rM+icZ>
zD;=M=y)4OvWim~SzE>ZuVyGdn#$|uq*@Vv9B(Fe5Im#uF!sW9P|MR8-3QmXJ*8Vgb
z2*zEnDy|(`1m;OY&Rb7zq(!e}lV}anN~JwID%T>UXdg42M%baM(1A7E{^PQ1ife)s
zw?Cz?kaM^ouCC8s3;wlDx9FX<(%Sh);t9YINu-@)Ep7JAJ6&P6WBXBmYq9XxQuglZ
zX!*+lY}~>(@7LS7>Y7cMUMu;sak;8-IJvwr<1t@(ldie%R{r)6iQVttq7j0v*GIO6
z`;)?drS;7H_I{z8i@mS*YEdh3vgT!V%U@jAQ*GesPAxtqXw2|b59TbDSKDbPWGNv-
zU#!Fl(we!y^f~I~A@mrHlQ}c2|M&Yos+T9*bU<>a<Y-jy#n{S(shgI>Zbb)@E5%f|
zw<KzFO0oX#_6iknwP!GH<~4`dDo7s>XgTa+IF-(PoQQcaTy^8n`0-=|b0g7t?-c~{
zNpTXX=;SwR`cP0*rr&=3uif{>rTUp@;Oy6N=O;#R<M%~~jVwR?;T?8!@1;-AXHf!;
z4pY86rF^`oYG^#rc3$;2XEXMxKnH(iR2zO2RxQwcGK?5EwohJzo0L)gg{d+dnSVU|
z6I>PeiDVlH1W)+N>fT)*XWyBQ8`)&Kb~Aa6x*3>xyp~uD!hKIOKBj3u`s1Y)u$#ZQ
ztl_=H)o#^}(5nAVX)Qd{bGnG}<G=Q`NS>@8-PAxt(B)9Krx<RyK0=|U?aR%^Edp<z
zE6q68n)N@K)_6N%5$Hb!P1HiFFgU(Kp^zcfS%J5g+b7w;llofxAm%(f8F?{ryiZ$y
zhYz2F3dqNox1itqoD8X=fQ~V04fTV9nI@2n1RR}pwE2whBDtD_TH^bU);q{$O|$&Z
zri9=()&8er1_n%<6PFv=7Q`r#TeuOsKq^;i8kn0ZvNKOkOwInU3tQ<5lG01Su=bbJ
zJbSSV7ij9wyx)P@!G<BX^j`JId~MP4W^SB-eMzNCe+_@O%fEijok`2MQjI9Bck=Ap
zlK<Lpi$@mx&*xOBe*-@aw8fXgT-)(!M_XS=A9gl0UG#9ojoP#LZhm(~ZxyB}l1b!Q
z%R!~qlJvIy3$cE`+|O_u;04B@0jL%jASnz^O)lR${nC{vJ~++VUr8M_xi#N;9{!;<
z80JL%nlLw68<7nw$+%?>xLC59F!L(y21Wh6iWVODaf1n|>XDQ$j8DCcrAl>G{Esn{
z_|DJAy#O<b?|?~MxrL%OU@|6aaGXb=i4Sg=ix*UBYPJtqo)B7GqK^9b4k$GlBCJ0>
z)PD?gvZ=>yae0d`7naeB#b83_$1@)q9jB~P%-*Lmc}~718CJl7lfn{9?(NraWDRlF
zO<AYE)}6FYcYIPgS^8t{bljxe+H+e^C3Bx;icx_8;m~rqemV`Rokdtn6LC!^6SJ9|
zD$PN9C@5%r<^uInJZlyLu8ik5fC*H3#ID<!7yb7$!w18f>G#FcHGLY5a2?7N$e-pW
z%y51MM9<gef%!>MvHS-gYIS_P%GZ3et*!z+&6_6D`%xO?=0*ZON3tlP+R|6r4Q~DN
zvI7>k|K!)!#1=RbMdQ1VP=Xdr&C!IslQK4;Dh@pryx6?GX%5=9iSXT>7lCNKDVuEn
z?csE;R-jXB6WDYU`se%(n%8P(KJWoq&%E>;ff6V-BGpa25&v+WV+HACy>bIx_E=q#
z3Gv4Lph!6TC2tP3+4?K<7#wm8m!^biMv)MyT2NBDBI=bqy+&WEzJ8~hf<TBkUitNl
zOq5LJo59iF;(#<M#4EI{4$P?qkeBqWuEY(z8|mXEEwQ<=Ym)sqW&X<4=jaa)lHqTL
zvAM5p+!0vU_o5Aw9qPN`C0H)wui|rFdhS#f#0t`8pk(D<0L2-xuYQA3hR0G+5Dh03
z;n^Aeu7crC88TPnn}5zB;bA!s;@|j#;23sgo+>h!=^-hyy|3ON8llG|Hs`J<!<;Uc
zQR|~*GSIu&CbF-`#^cKNt`&5@r;Pu`j$!FZAPQ9b>UV+`jI`&$`8B^8yE5G_4>sm0
zDxU&Rk)LI;u(R%kjEnQB>hnjYTb0Q}WM!B7j|!un*B=h~J+Jp4IvViF=07k!$#0k4
z_?Xk=c08Qlbk-)PVacwx6TuPtW55LduH)019DM{y_i*Z!gs5p<;R6ka8?~t1THKcf
ztBv+(Y#~-+ys;*7Yr>qqo&<9WeXOP4cqjxpl_yWL8tO1>pa^NMEQQ)j==pS~JDa!C
zSbRKuZi_^Y_E_c;X9kfn?@zFSrZQs~F*h!Ox$#e8^B@zmL*vW1=4`<QncYuEnTl6|
zExwD#R`YuEyc5!s9MKHcf=(GH-;cWN6hCTT==kjXlt49>pR|&XaDwuJ+<no!K;m(o
zBU*COa23_;c?vaFgu%^x!kK+-&1&2nTlbDB=t*3Y9^yNQsU`qe?#~tY5ogFCg;|dx
z!5*8jqj8sBt!Hmh2@A2<lH@8)o|R1wNjZz15jW}Z`}qxx|9`p*o~hZ-6r1y9FC2UV
z-z*8jw{DB?Y^D{>AK%Zq{ZRkmRb1Eyw3W|F60=aIP-mg)dndD-VrIM31(`|CQdaU8
zHH&SI0smV2N%slcoz-@}TE-U9li|?wkK7wZj84uL{ctpTwETWSN<pCK)f}7v8+!`h
z)`y~!Re&B|dJrI0GyI(I^<`ScsBLIhf`))m%1uv+pyP1D)}@ph>Zazu<nuL0%|2LN
z$=KyZ4}z5^MtWA*)#>p*aZF4#R6N$COpz`N{5DD)XYm9iYn*j|Sl2*!L_t*4r;g@w
zYIxsRiVh^zP-vy7a(#Q>hfRh>X*H5&--Qh<o59_huYw9jZ>%_l@rPE&Fpmn;*|F*1
zIk*u_&9vfTS|~Dxvy?3>qP=pahB*%(J{nIS?my=-5pz3K;U~-3vI5&<<ui(M+>Qvd
zJon?Khe=+K6Z0B>sp6neS60a{<F*Sn3nL<RnKFtff%<JLd=Bv9>S$Q{%<!bwkogrs
zs*iEF7MC2&>W(C5v8mJUj!5ijbk2u#Lg;hzbm>jJY8N0@jF%p02sXPXw~PAVrC~BX
z6(-ZetwdVYUGIL@Yx0;VfJKEmLtW&@Ijg1}Yv<mN<MU*?>oybSJH!WRc9VO<2nx$d
zHG;wAlf)5yqhk)VQ1Cw2l&BzemB`#L&ucavdJ2Uh2)le(M1-cN?B}KkcoWg&DS|7n
z&;t3V>z>D@8NClbt!Q8df39K<(U4Q`uIMXK06ubaB~%lzfzC51lJXmS3b0_4ytega
zKBl7U-K~sXQ0t6VNe5yl$a2pD{1IhRTtAsh-2I{=MKf@fC`F>Ll_dQ5`e3?%zb7Ud
z44K)5eU0JNV&!yg;ITQzA0DxmYE;x-eOcziGH^N|QAU32wC|~j8MFVPsVF^_N4HLv
z6_$s@7k(9zZS`lDm1fk=%r8mx1-9vbl8_XdCT)2^21r%cF(XI^fTxHx|3+pz|L>~C
zvfHrn6Pb|h^GnaT>e~iC=U8Iy{}@NKGzP}ro_e7OQkwK{&j<d(|L)y=yxa}Ak!6|L
zsRz#-9whPYx7H`w+dOe%oZ~2<{(QkW#!-q2Fq-$jY|ab-0sxHe5`)dVX7Ww%I%n1f
zXXYQPE{I%gL`cm)wt-xH@Hxugc<zH<JsQAmOz~o#_51hNzY*@0CH*U@_6YwoaD}0V
zz-{1AHJ=Vl$~v7x4$f|qy%x63PPz;s<>wIQ@Mp^n=@?)sKS=!l5h0xa^9j<MFI=Vn
z!Epdm=1*h?bF9SH&ifVzjEa;E?qeVs09s>)SQY^2$1ZgH^_}`o%hf*L)qbOs#7;?7
zR}_Di?{*Oam^pAz&16pWBa!!uoBv$qeKwK-r1|UPx^Omc_SNhLQWbIpLky`fB&#y}
zK%3N@6@r>z))+F$r1#8juXZ6|ZMW)gRtY^BBHe930+nW8X2k4&GW1;MPy&E!NQL{L
zR|55`32E(GWdAV-02)08Ztt=U2K4NvfTW@^e8${oE%|8H?Qil%c3?{rfKV;@Z`eLf
znERDx1p<%}1+ZEp;Zor8g$Zzn4xbIv@{HXMms1FUch^4An*UfxKfSy#VIpc15o|uu
z^#RzzJWr@E2I0ESx^$0uCQaz~+>g-g@&HIhoJ*;%qJZl&brAYtc0A>E>4!D5jgQs%
zEiAxYTZNK}{%}nsKH)`|YE~UAHbJCsPDXNf-1!GYtb75~*IidbdgI=VK>wKAY~1M)
znUpws&xicceQCQO;!cYI*fcLgCR-^X%g2h6#{Gu1s_Yww%j*qU3w>j|eAk2KbFvK3
zT4gsgpNUhm$K_E<t7*%5^T8NGYQN4BLtFTkGF*|o9`$j@x3}l57A<GL%9C%-7g|kS
z{yel=OEwT-x!F`j2?iWSp_#;$Ck}v1jlDItp8e3chXf#@A&n6fc2s_cF1Nb9+z=E4
z#(*u4AHa+zjw2#F=IjbHk+m(SrAL6~fZ%W3MXUjhUb+@5z8v8?tj-f7F96)Q^W}h7
zi(U#<ARsOzVen?P+dL2ikp`{kv7<kN0hMR62-OWM$JWb!r}uNRcb9)rDJ>`Yh?8NB
zIPT~Ew-?>A=8)5(7s&vnDyz8<m(CnH5d64w|JMPAxyTTrgM#iZv+wG&cw}XQ>_O?n
zB0lRt2mjm%kmJT6oaWn+>|6I{>qIS4UI4Ny$piuzHyP;WI%Hv7SGQqDzu1Cl_Zy%q
z%l*+vgBD%5k#(vo0NIiNCid&>lwsjQg-NwDRgJUYqkBlT(lEHt<U@VFq&%4u(Eeqp
zzznh9(*SDz$>FA*Y99DgSa$uZ<$ESX41kwQcLC^pDorTUK_Z+4AkOAlfWC?7O#zsb
zPpIfcbB}^lhKQ=fO0+Qip@C_o^zFsUFETRybcDbp08f#BXe~_d;A@vX(0J4%`;wR1
zvNtE_a}0&70WLmGR!7#0^c;<P!0&`~2UuU}6IBNy3~${zvW&+YMgtm<(T-bIS$s?j
z*3m2d){Jlfn*0#3U^nbe8fwjl8~;qmZ(+d@jg=U&vJES#^M$~`F_411q||POqKv8l
zxC96RYkk6hOHRdtM>BV(^g(fIr&?ynasafi<wObm+}IrYnsB-l&Qj(`{21?X*>@IS
zrG2$|k?lbXUnlEAfF>f93is`LC1-^d-e7={hiQg5&a^{S|IcF*XKz9#cO8kl>*Hc-
zPgy&FJA%A``L%i6v)oDjf-zIRM?ZcPmt0yWQ?{EWFP|CZn_>}gX}e)dAHSjsf&Yph
z#So^*_vOuJKT~lMaEvBACd>@(T6W4BpHLe4CJvPVEIavu_!4)Lh5L}QeRg{M=~mPc
zI2q`a#%=7Lu3)#-AZPKj(wga?0TY6&^+2SUXvGC5Q)`QVKckQAePkA@mP39LxLs7(
z;^g+FMEgu_L2KFh8sLYZa3)W~F?H&b@=}gCY1imzJ$>#*Wly*cK0X)~pB#<zfRo_F
zs|}lQ6s!h;scBAalGwTU%DhDZt!a9@B72*wDct`|WZLUG<i5aT3=Qn>#Hpn05P;<U
znR5MIJLhR4<77v<#QM|Ovqz4*>w80iy77LDQNeowLUvF$hLRbFpHakUs>oyrIG4Z$
zave32!E#|CBvwYA4{L&Lt$4xF+)!ov@@7vi%Di8b@1kP3&GY2Pficx|)?TP?-189D
zvzX?b5esz)lBO|y6MR%`ar09kHQ_Zqr=^~1qHT4IX1uDN{#1esrD=RFaeHVDzX5x1
z&`Jn#aKxdKj+*`zYtJBACXQM6=X5~NdxuozQA4?AaB+}jxNWqFTWbWhSOB7o2nrUA
zA5ZmL{&^^jW}`3*VB`!R>fTl-DjP@WnSrqf^tij~Q53O~+dq7@>$%{DIk$1nP<giE
zU7dCIo%f;Az-(K)$`HyyJS)-)M0HK){aQ`XIO76&uxX_lQ$yiqB5^xBa|0q1rnv`-
zY`Xr6U$KqST83<Tu)DP01aYQ!;+?QFaM=rYJcGoV6jVFR#8q!fs6hZp@@oS?1)>yJ
z7DI!ALTjbz&ZD9D89z(sum?;<+vQQw++21>`=Nkp)B>+H?Rm>VX2f>ny3hrl{~K^t
zl~%7*Q&6Hs(1X3SDM(oA51u~x9*C6M5N8)(jaS@0?cgfa0^-k!k0U^dU2{_=M>WXM
z6huLq$X{|SXytH>LQ-1XY!|ADR@b(CXOmrm5}JZLJg9yVIPDfw@-x+n-Nm<1Z{>rL
z2u3}{lT5U8`JmR}&#tt3uI<^{OEG)wVlGO9dJeCE62VK`L=bRMJCRJLjs1XoJfJAp
zOFTPXp8HGHq18}|>FAP3%dyXz!FtLB5bOz&R>E2GVOl&TPwna990Vi6&koK6(n{#)
z3Y&Be38FAbtWJVW;oBLpE5GX@hp|35AB~T5P?>|9Q_3P-1;3CWo}d$g*~s^#Uhs&z
z4t|n!oc<<uj)VW8tG7%R!K!l30Bb~mU!v-f^cwWJi;97BQMqoNN-5KxOo-^d0q-X)
zsL=h=OMyj<PW)d~4bn@5X-e%?kF|5KO=&pjQp~w^dcvp7x?#vBs0yRl#{T?sD6QHj
zVHH=(KQm+D5m4+h7*|h$xZ)Z>!vNfJzR4eXJQiy!+tbs9&-t5v=9i5nfv%idW$-r^
z7dsU7vmPf}3vsK8{Ht!+TbIiv@<79#4+325IIE#e*e?x@t5)e!sZuGjuYzGQ?1EM;
zx2NS3zK-f%AXXxDrd>fQvbObRuc2QWp)U8nXIkHTW^)3-HNJQEqC>AdPUzBk9Kf)t
z%OV_lhd!cAhHQLV(~1upwN@4dw5uEy|1$S;1SFMBh4y=9yew%w0C|d+Hj@psxVs`u
z*X0@DDtDDpv(~m%nB8){sVe((H3%!*wS>)2_A*>jj4}E}vtnjwWv0`+9|*-v4C&#P
zR5mtK9HB2%)CRVQRsU~L)nh26G4KkIBzb{&J>3RV4;5SZSS5WnX^GJkA2(Mri>Ik+
zieq5r5g@{*U~*Lx0AcJbBGp3%;^D+?l?#D)H*0`;2Rfhgvbedp{ntUB0w|<qO@J1K
zo8O3kGwnI!h#J-qG#daS>T~`?obBc#Bp(VR24O^3@cYpp!NQT9VI57gm=wg6?Y$fc
zpdfR4@kBLEY4^|77!}zS&~B2IX^ir&*Tq_S-TumWr2<fK=PpXH#T!Vwjz2pB0Ypep
zwn_G(`E>kf?jWG{I_~aJ7P+481nK2&^gRdk&?B$FbFVdfi!0;$&73HL0nUO~M6WOs
zXs-e*Mm$ahP$jAxa#ktHf}arC*{NcqrXkAy<*N1W{0<(7E)0B<ec5M&+yL;<QPB(k
zpV!@i*Qz%V42}T6O}!g^m{q&TxM6O>KcQ|$J@deu(_mq0+HD!2jZp^y=Z#0enf0@P
z9F1#3rT1ta02~b@9|35P0_4+*S)h$^ZMd1rT5r)uGYhvh1WJv2H6~{4nw;FC0D{h`
z0f2bR$HOQKez!g$)vaD*;ZK;HxLdapE3$&_QHAJYCP)e(!xlDOEJxuQ#C~*s8UeSY
ze0T*ZVqI3z_nP;y@c|$eVJvsSGa?;r$*sJ!%j<1})+YcYzimrZ4`(ec4>&Cb3P|do
zwPElph?;%n9~wT4s4X+l4(Ru&<hK8k(okGL^({t)8a<Be93@I;$Dqpw9HAM9s<He=
zb%6eNuF4gv*#i&2XL0eH_CJPjfGfgQHEkIugWQ0e*MsNWN0NbBfZJl9Uqy`*{XWo9
z0vKrM1IV7}{n4tct%jYl;;D$^vZ|?-SgHLViSfe!GO4})wG-Ocu>U-*ZJ3MJFNoyH
z{)k9;oI18Ja@dx7zUaGw8OSXg@=S<aAftUp<_H2B_IBIUc~INjNF#tk-q!<?YU%!}
zt1QLn6`*$;Ol2yb-N*$@z|_xp<l?c<Li@D*pn-tsy(4t<J-5!Y!n3Vz4j6I2O3tED
z&YoFQ?v}W*p1<B^M5nZF6=vEM>q(uwbJ%kGp_w?~aKe^?RtN{b^AIo8Vl6(14cB@m
zukR}HVm%<WS~5deU{_BjbT0ghoK|3x<F?k!`aPVfx8Y34l-BDtFn~D6lZibNs~peY
z(hhWgCH<vK>8T<pl)`9vciboZB0>LM!n-eQAhPR<4zl9JQL3fGZWdYRbs2Wa{kjz-
zppBXYphvRd82TV$A`FxG?##}80N_CLlvnzOZ$G(SuBA-uU~u>&dE<ALuRlhCY97m8
zw38#XrS@K}iJuHAqJG~OG%eRFztZLAw^?Hz##BF;x&;F-Q3#+SWS~nDPMC26fFr|z
z>lK!X&95Wmbtzsz*&-PLd9?yj0e4pmf>nPZeskD8LiplifCN+hVfCwhSv~R`;6O(J
zQz|*T#PAWTQ9mSa;j5`TfJx{Vj^O!7oZym)f8(#}1D`SjiQuARI#8p^0H8#4cuGzY
z?#Zw9i*DQw!XP)Y3m=b@vw>QwN699Aujtz*3Nogj*_!CqPAZL2t5Vj;_O_zwS2-~l
zDclq&MtCr8suVb;<Q=YdO6Z+SN{kLJ02L#>s^fspAm{TLr&a_I3*i5S`DNPH#{jUg
z@>t)7)jL!VspN{?4DvPq1&;R+`DVs5<MDUc0}!OWlKJGqU&x%kGF$h|9{Nh$;2<!Z
zeRgAn{mEqkXo%w27;>h`Z%Ti=Hh}R}j`+&Ae~#%GfdwFV*;`DqFW(zH29lA^-VP8D
ze8$LSidg7tyjIzz8}i9Dj<z#^h*aF44a7GO{^KnDce<EPPkd3ZCT(NS9unP-w?fo%
zv*%<m4DQu>Cv_&y@Dk+AopB5VshhxGyFZJ|jMaNYxK}VlB{RbEZm;#Gwjm1Ep=1a&
zuEynXO3SO;y@lIS$;B)PAGXWKjN}@~?O|NXi;v6HV?rqH5Ps#KIeH$h%P@JDfX0Is
zKM#_!2|)xa5gGG$997p<nCiG^0Z@AK)s|q1jmV90C0bKtLF-(O*S5S?=Lk}g;5b6+
zXHJy0{5a;bxO~o~HNXp2KPpyiygLrO{ri*foK`{zygkx-yVI(VgPB-6bT|^?`l~q~
zEOVVgh_%yKXl+UGJxYOjymoMRd$8k?A=Jn!tiVnCy8%c&_EKGXQtmm?l?p0qO{tZS
zXjim7ty+#V4@O%q#0CCc05Q3Hx;uX8^u#)p0^uZOp9f9szq^#ZD@?GWz`mK{uN>1i
z8S~uaJ$ci_H1j5u^gaDIuN!%NoT@<vKhOT{;&SsD1Tv_)C$1WDHT8G=Fd8gxjFZ#h
z8_djb*(KKUa_2kC9{RRW_QsBcL4II+90ExG1a|C_d8ji})Q7}sszjX3rb4cJzn)P&
zy;RQ5(aKx&Vvmp;tp`elqr?LDB>^P*WU80jVVvT%E13*ev^iL4N>i<o3YHLY1@zv}
zm!cb;!Cy1>GgC9b%to2J>hRA^w`&%+`Pu>Waiy*7zG19s4^MA_wB*P2%a+<M?b=ht
zb>C&ym1=l#m!ce!Fh@o9JAoMI-TE_%bypNf%-3gRIA-%4Q{!11<$JW@F7fCT_r_(M
zv8<n;k<Hc3JbilkqBo{4-pjNwx<<l5`z3dg40tdq^Gn42Eh&OkGeEj2jvYf$A}66r
z2;|bWd$5cHqL=#@*|{S{0c&tm2KZe(?~es<WX2d@W3}}56~^fBUf3N!1kdA9E`Zbu
zVwsqBI1uKpy<B{$L&v%rAQ1w)UfVIA9S13U4JTl_v-~UxV4=<X0|EH%-S#yl@73Gv
zlSL;q^Z+AQfCNz%Zv7&tyQ{#va%+hpmbDmRoB~>-#|R;dX;dgeZFPeqS7dzG8z|wF
zHRxq87*_f_IyGz+c<?@)r1r1G4ReAF#gLe`UF=xgH4s?4ulfPeRQFqAD*Q+C$c7F^
zz1n_7ncUks_4Qwl!+<)J-&GpDncHo+9iQs*d|Od^p9gFBi{nXz!s;~MFjcTCBcm)K
z6UqniFg0zBazlBYDAJ9Ptams`GgdKDy_Ccijd6AescF>ou(_c#tVeMXzYTw`*ecaQ
z3v#(lsn2;rs&CKlZWn%ijHj`Qsr&Uw8uVHuMeqjnyY_xeti;)7l_Y;AJE#*XjkCHk
zDXyFv>no4N%D22a0cZ+C=fB(PU{%fhV+4M3SgT8%__Y03Pfsi(HQ>Pxv-S=+>TXS7
zwX<C5LeL0Dii;AJR;GpLl$FS1dE;$|1h||^TUhiJZ2Tbb?n)8@?BfdM50CC&bC7!i
zw>u?g+Yy{eR7PY2>W2%-JA-T?;^z9S{wn302i_uV&N_q&wX<`ku_6Rr&*gZcRDw=8
z_^7cEFd(seR%eFn!~|Eum$>Y>xE}(5_yhlyBRn$NL7Z`j)n@VQ8WqakB{7quhNMRx
z#Rw(Z*SKWGJLfV*(MKWMp?WF&yMS`&oqZgw8MU%e2X)tq(4~xzMA5r4V^cHKBRip-
zOYQ_5pqD}+o~EmO%j@D2?c5Z6%Q5`D&CIKmN{n>T)#5f9juH9`n+>FnUm7GFhCKO;
zekz9D04b$Tz)B>OMOAeIOyCRI{1&?H;$Z||E5Uydf@>5i*{!0F4Q77<zK=IM@*anB
zScDz+8VGWB$=<&#cdfj>o1hB2)C;<LN8XBWbAL=x|3h_fkw7yu`U2dmIa$f7siF;G
zNlm;`*v*ti$nO~jjM=!dGx#g?I2y%>B*<@`tOVG|8F{YOp|@Hk#76D7aO~LFT#cVU
zvq+klsF}mfG%_2so*#Lx`NTc8IzBm)gB`9Mi3cOISq@KH8dRQRcO(nWU1Rl!QXkfG
zLC(Fz|3xUl;79E5sT=o5LaJvqmcFGK;dH7HQfIB$Nxn_(e$H3=Dw~cK8Do{wt`_B{
z7y_?@#)IWv3T(6!E7#;^a6O8BK)jjjr@VhWNd&IZ)VSL3W!)han{|%n=WE06RRCqO
z>1ZTT<SBa&luubSC{h4dflCCHw0R)-Z(?I`)KtRal)68&f}nOjVE6?N!dSy~TA9Y3
zD!T%A;!&WIf+{>=3f?#5Y9)-iXSn>@BE1^Au%ckBrpx*%h%x0b%=D1$O7^-#_EpFi
z&<^7LdH!UIeMXh3fSzS~@OL%T1v~r7J9Wuv`vLN)^#vefjo+1;_VmTKUT#1>oHP@Q
zzU2o5{6wluQ|8rIvsa4_b2F~wp}F>wCfX5+BEeA0{Xd2+;G$WZ!==&dzc0J{?Iu`3
zVhE5dnX)m_4=v*eVYT~jPdGrUi_B``8|`ZMDX7C8wv<1w%oEyts;~-S%l15x_v{UB
zC@fgmw=v9dGdBaOpNh*D@w|nzNfK??E=n16nf0<bihzQ`Z@<WB)~!xRDb7Q^>Hx|e
zcs8Q>+T1Eeo&x>GHUS=ktyVxRS!IO7Hb|f27~9;sH_6$UFVFzXA1OWVj{##ZIOYLG
z@IzNYO1mu$w^S-9FPlbUb#&BKvRV!(n>?o~`pawwB&Ig=>%Qs~jE*6wgoJ3D-In1?
zbu>(K<Ve)ym8#zd+jMiQe>m)-IdSXR(G3=Ff~!r_^OC<NZF1W6-ka9`Ns4FPtBfbe
zx3Z}9j5@38<ghj_ascK`#BBmKRx94C19a3jpjaABSSgz6omed%v=p!3=FfweZW(AV
z>NtXm7h!E^s2JtMJj`gg;_k`hXEaK$<`*<BTb0|Yp|2#2kKj^jkgszoFIP8)7k}0;
z#$JJ@jvi%^D0l|jg7ki&M29#*WCjGocyo_<d=)x(@q0Tbujr&CW4N@AdiywzKM?X~
zJk3$u@AorCJA~rtBII-HmF{_F+zSb*PAX*R{NB1xZIqBZQt%Pd^_#A?$^yabq^^BO
zkuCQrQ!%j`Ph1oSe{;;MyProR_$0s7HpP6iyUu<_Vzr2g-X-3ax+{%D?bRX-Xp;v(
zo1D%Z&66{JzoIFtEUjzKd%GMJvJzg!5mTKpaUd!k3ad(#d7quQYMVwBvOG#zt3`mG
zh^wyNC}_@S)1IN?ZN{T00G-0QCGzUT@PTpdl8F|dUB7|Ed-T?b8>7O?SV$~6Kr7b#
z5=N;6Hq59ZY?QA9dn|`<n7aN{txM#g4afe&;e5Yvtzn$=KTu=zm!M@yOKMMh`e$k=
z9|m2Agr{)P^=e!St7ye)%Z%tM7m`8BkQ6(kC)G)WTEhu{x|~ia;sc6#_W!bdKRbF-
zVX%@%YH3}VD>_+I>5!1H1B&?>7gMnUaIrkO4Yeq}s`U5bd25eiqd01IEw$#Y3CJc_
zRiHVq&dq+qA}Ho|9=-R`DQG`D=K!5oi+iC$Z`4qo>v{Z*&kpSB3!2w5JG}0KLjQ&N
zxtee*{fHRrA{yw_g$Ib+2nQqfS&Wt|o9BjEHoD)QcGVrgy}&*0Cz-Kh-CMkIj6L0K
zyp~0e%k;wg;&yM~gc7gtcu^6hGooa4v{ENM_BMHtdn(m&VGiZY_vDSIe?^aRgDUDj
zmkvJcj-iWgB$*}mnmewll-I}3sLvO?ad$%bxL)>v`5TebR>u8n@)g&g2YVC`P7Wkj
zY`U|*De1_q55mr(Q&)&$90w&b2OIqm(+`QTO>%{A-rUC_b*xbJn8c&Bd|zU=ac+cO
zVg3o3VT4kDs(f1v=8&v?C9v{N>I6`3zn?r@wY+>$V8<~8z<7($2dE+BaI#;y=!YIg
z;r}A_=W21Yp>i&MdKCveItFpWmla&#POIPbmwQgs#^Vpf>M0+vE2?EgN7QQ>v%fm$
znQfzW496vR=G?Ba3(>QcbUBw4uK+N>ou5Ym5e5IR9-`66uM)x)xPu2Mr84L`h4L;V
zDG#Ma9=m5OgTxGTd0d7-4y7`Oh1_RMjnA?Bz$<O$+o_(vsL$l5UgDo9RU_@}4o3kL
zJIEt`$o@4yi)c!vxQZ-$O{5YxcPMTn`&?Y47I<~7+A*q-#pvbco2M0ol7nSd0<Ev#
zD_*%jE<WurqkkX)Z2%LX+4O`vC`q=$9TZfQMPny#lu$kyt-jNFT&$Ha#murQQ08$g
zPu}3r9opiqH~~^0bUTT)tn@kLQ-MD+3y-l<n5y3R^RpTpmb12jlbDbDZl7+)K;jWr
z8lo{7{Pb0{-xOCj%;7?w=9$Qys+H~N=*h2i434m10ZMTk>Iy^iha{EstykN%&*RlJ
z9|QUaH%TESy|PpX{XK3ToG%eNpE)%s^BZ_rO|YrWJab7@-wjKRhi$%m#;-?3S)1J(
zuIad;-`amqYdFer?8A7J&dTRzKglu}F;esQp<&w6zw4~%D)%g53VAnAwsfw?jqOTH
z@Q;8mBr1(kspp$H9yi#)Cfzx?ic|e>4|Sz8;>6mg=qA)+uQ+rih3lf<SRAU8O%l-u
z{(M17>yOeLEe^O*fV(T$>{)dL=n%@-PUOPav1~(0x`wRpqkg(~z($fwI&KOI`p~Oi
zkDy@vo`_6CmEBrOjy83Z@n`Vq%E}IpE+d*;Gq9K=j;Rf*em88d9$vDmr$d2CSr5{p
z40(!%hT;Ixq_4X9n)eMAl<3vy&Z8p{M>sQx2}RNmazv4VJ|X^`eYIB%dQ+qmNYQk*
z6%DG>u0fi2(Rg!Gt%ME$Sd(4v>5|f~y+~Qn$4*rBS&56A5{II^sYz<FxptCOK}XyT
zy}Ng3r`t*n5P67Jy!=gB4CKNBu<*pH&N0>@pl63(!hZK{i>G8Iw<lWApSM}!Ri(C%
zULL%$Vk*?|cp~-{lIE|c!tz;|IaI!WFyEdqQSjS`wQ7+X2)4}7%Ore9*K45Y@N6b>
z=UY*3K*VhrB$|bO8qMlfmEjxC?lX}tHsoYEST^D<^&ul^#A%@eG7}*=Hc@?Cf#03!
zR11iLB!DPL6-oXm<6=?`P~kO=F&5_zB|vdKZ07)Uc{=WRxSzPFY;|oD4^?C@#@PJs
ztDLcCx-V%Ik8Cu``WsL#cft6eNvK6>Ce60RtOEw#jK~9?hbD~r-G%KbGhMoIH_Mcw
zrWx?R`lm%G7bEX8Tdwe8o7GD!Fl?av6kb&QtHyf~LAP53xEwFq6y0T-JA}zq6C8aU
z(rX`i%N^^;_Gw3J0yi%Gz1=cITEE*eLi$73O5jIn<L(Z_<^W6A1)ISv)f4ZunvH>9
zED2InOLm0JW2@N3Sw6O685_4Tdu+cVJDrz`m_$pwKj+w3#U}Z*pUGtPRf#l9>$jzD
z(g2f$S#ZTCh&woZ{dR8Q#?1d8fA~&gc)71cp3M&*>xI>@4P16m;)w8S*O}UPaw_QY
ziQ9|Qvqb~R<0kRH0(mP+@7@Jvo?ff_KdlUZjVaHGG-jLr<5wcb{Q&W!zTV@#WZt$X
zTm4JZ5Dw^r;dShw18Idf%<s4N%60u;aG!_0pVBVZ3x%vW>bAKN$zY9-)XCI3a&`zW
zNk`6)jL9%bXDR*dUHwqk*%@YV0JI9GHkkcVyq?wh<le)BC&xico)lYlmjMl|-ccLe
z+zp`vF#RUHgm&!k9r?WRLS=XJ<Tsbju7x*dE*CwsBOQP|aM#k3qM-z+)an#TMn09R
zps%~NM=)$-uOXx1qkB=@O}ZUdStYOi7WA7Gp9pcsH%;hy*Cw9pSmmXD9bU||n73N@
zhnmME;)z&&ugV(>aI17c`3MdlbDL>UIT|jUSuZNnnpKa#?KVBmG=P&b9<Q6Oq30N?
zjM`&N1<$26GTgSq{<RYRnEu3r8;!<kF^T;bz`e668s}ZE@5VdiwreVTKI=BY)hL?E
z`e@=O$GkVmb`9S0Cx11+iYr|(|G`8WM#;WU2qO2b=QQ&v%I@dv&wMp~PBRNQKEI#6
zo`Jt@=ION;PIJz@^=bbW19pEPD3)~UO9_?jUW%lGf@$X0Mi2Hny2h?XqEqKm`){`r
z4OVCBi^y0Ggs3a(mgc*FDz{m8Wb{1o7&8xLgJcsqa>ifLdPQEft6N;6Pz&s1q2H?3
zLh3P8*iZcZ1w+K>oH<f|{CTift`Bd47KyvV)Qn{w6j@m$&yp15a-^wr^Y5Jo3R-qP
zUu>94G}tWW>35z&n}A@ke8cGI`~LS;P4!NHXIHkP;XNC2_|oQY>G!df|9Nwboi-Wz
zgb==sRc_|y)7N#~&#hfM8Q(aqfA#7ds!yr#CE&bF7v1r9oEO;plyCmzeIl$)GZW2S
z!Id%>eIh&g@#SYTAMy+rgYm2WCW{hMD@Uwjb1}4-zMSm5#=0-sZbuelgi%Ay7}Ce|
z<8%ADO`$kf8B1MEAk~qI1xs3`RsEtS{>^pZ{c~@Z>_TtUcvDch1ZBI-vrb#ygtv+>
zoK8OrgP*#jY4@2#%Fxg1e)9Vu8tYvQ`n@RUcz^u!S@USzM{dJoN_obL$b(;7^EI=x
zYlWcL!5MFuovaNhQG(+6_&WxJlb3f}!KN9y;(W1x!nmtk;Z(_P$I}e{y}d?+o20~2
z8v(hF1L(8bz^mF*ttR(rZlc8`hj)i?Q?%Pklh$|!8zGOYN{Rf}3@n>n(h;G8)jUF1
zXF7)*i2(EYA|~+J%+rok<S0Iwkia)H&u(n?FpQ(8#q6s9KDFh{!){NBW)?tO9ZS9K
zkiAwMD->gVfvM!FTL4lHZvKK>m^t@0s105}*}Stg9DXZd&$4H-&UG#eRKfLS>JIFs
zn?IS{tj5qfhb*@3n~>kWW-*F>=+pFR(%a=9_5iwZ;pW3HzxIr5^})uoNvcLAxsVV#
z*%imoxWyg<E(W1C4PIEHXtRfLBV;|y<yGO~;qdt5xQHgB)RLFxQ%(WL>0{#|-hD2|
z7EJTICDCG{cl`_3T9-gw;Z^V4*O7eJES4z}EP1(Qu1a(vnW%E%F7n3Jsa-`E`$lQI
z>x*OM!*+Z#pDN*-3MNraS)kg+qpnf?u-sqFMOg$v`?*Iv-6?!cM?x_X)<J9ZrIV7Z
zyQ@wU{q!-l`)7LVA7tqqp8i3>>AQ^Nh0FwT)#9%y&D}`NUd75ugj?L9Cp>g7V<Jkg
zT8hJ0Vxk8atR)!9zNt6du6t`5ll{&kVilwAb<y^D>RdvU^x<R%nnQh#Bk`|C+)8c!
zbJXDGqu?*D%JH6NMy^7s>4{?Q4wm7Np+Zs9j!UxBXYOR9-oE~g{D>|7UXE{z85HUi
z`3os7{OCU3sJ58wv+81Lo?HkXqiw97>~I48mw^~93=f?9UbYq#)BM;%r$ZpUbCMuo
zjdLr3iHQGtHmGTS)`3LaK)e4r7M@+Dq9{m?3Xe{zyP56l90yK=s6Nqa0(pVduMT0k
zwC+7+Q(T*FP0eY0m0rbEU6WpCHqpNx>U1@|3xtBt9JE;ac#fY-fxE+50_w~ycbi_O
zIh1{O`bJJ)c=i$ciYVDp3-CuIe*{=E>GYu2)R)$NmNk4AXud37p@qZ5*TLFvI{p!f
zW`;5GLkUrRt0I5X^45I)IYR9_%1R#CW|Pt>wsb`a$os2lu#E8%ahFT{4E#vb_&q#7
z#T@PL6rvq11!zX>ZwEl06vzxs<HYE<5r$e7+(QvPmN**c>Dn(>t&SwS2kF_vD@JuS
zUT<&-+dcY4ECkfoCVq?*Pg~mk#)E_Uq>uY7<7s%7#U-?+ACr@$xg|eTdJz3lc^u7t
zB+Ay7r$~UQ8hSVbw*SM;2z?fDer+!J8v<OL$LY(XN>>?g6Lp|=aQ7Z%f|nw??wN5+
zZ+aqIB=EI)%MycGePjDqS5Lxm>Az{d^v_VMB6nxu>>P52c8%{GOa(FJs(~Upc(zyG
zh(9yAR5W0WJOnf;DBbp+s__Y%Yb-xxAcl0>#$tDT=L9rEZ@_|hWb(3kF|vxlgM&v@
zK=17eY>aSHXs##WX1?dLf>u&NbJyH?`P^IH80nmW6YJcBT?73ULMA@b^S+<gXgOT=
zddZk)PT4au507v+A;U$`h-ET-r4onoNP<=p%T3#wF7I|Rlze=Jb(7V8@-0?-h2M=Z
z1R8Vf@N(QTYrFO^uIBnLyn0PkuFq)#T_5eD@Y|D{Av->CU^4D9a<GIV$W0ApxK)f5
zOtviPiuA@e#QAHjl1V4)o=~khYItwyqw*Mg-q|_{b(9Mm0d;M*o+>{(ADJ*hOgoeM
z*GJYTBp2AixyrFxg|plsYPnac+=*X=9TsYz!e#^CZ05+vepXz0061$G@Otb2a)(fV
z=a4(6iH}hazNX;Mu@&GYBiP$ijn_}?wED<Mu}ld{b9QuoI(`6p_(i<8L=d57L~bJ=
z2xSn^grX{8a|FGH1j?*xy75?Wr&+1Q`fA~-AeS1vKbOXkdmGYhd7toN{1frI3D(5b
zfVF&k0f>bD8+uU(5`2Pb(%~--O;ZKOAwuWxqnk;Dprp=qYN1(p#`4BmL~o!*IFzY)
zjl-&r4dt{)>>v$GsFHQRL%TS}sr8!dSW|zQ&WC`bl>5Xh-La;~Eq;DV!Os+n7nbbL
zihbP4xJC$7x>jt<ARks(???9x##Q$*q2du-=-B)tZi?#H*jAgWEdJ~x%juhy#4BCa
z6iiHLDWSKU5A0H(l7zZM>43cIyP>X8*7SkG!eAHWT5fiZhd$|Y$g7JPB}M+6*Ik6{
zT%2q;G%jqi1F4DQv1;aX!J>A-`OHdoMsfvhKXT_TerTK^x0GH*ee2nVe2wfZiVSeX
z`KPF+6u~I&P94vmBTnWePWPp{CpsQh!1deOnl6G=kXxWTcvAvDmVC=_rZx{Oz#5v4
zcK>14K;ZkD2PY<94W)SUlOMdLI$GIx{NnE9g$KP*fSe>-o>j@@{pMQYcTef0(0P0s
zHa91B(z6^?5xsDHe2Tn3p7>9-;%5@*czOat2h()~Z`fu;?S^W7-j?+7<b8QInH<2*
zYGev1I%G&9wb8k-AZ3{@<gnN!pebQY+NDxBiJo&r!*yRx)V??(&U>_DDj&iOwZjhC
zKsAD_&-B+{$ySIQ>t;{p9Xck^n6Y>-1_MbCccI;Yo(C+JVn)3ZJ^+LFyc~UG^w36d
z*z#NSv=XuE`Xd6C)u4>oucwsXFQ58~jcW0u+}`A{5-0vn$oUcV*7b-x&f~(6IXEEi
zPpZk2MGA4wy=OBqaW%@ZY*h}=S>`&H+MuN9KQ4BOp~98bTaN}(EgAL^9XfedK5Esa
z0jT^N@Vx=-Ue`C=%`Qa4U?DAYG(GJmZTCi&A+(7Rhp-)HOcu@B-b}1*$l4~4Hzn3i
zS%3bRnpURUA5P2#TCv9+bXJclqmc3^qro#Ye%+d{s%^napf#-UKx;6CB)vt#FSa$N
zT@95{L1I_0cZ2v?({JbY4~Nq-3VH>jnMpOw%a_3>nj7{{^lobszUw2@i1UOY+@@-L
z+5`HFBIS)m_iQ^1jc5)CkNaiJ{Skam!2_%y$9p;HYQt$4oBVbnUgXA4R-jr>cDgF{
zdRLcswRBRGNZKCN`%w|GLAZlAo3>twznz#Gwy(k>e6wtfB<7*pR5gZA^9xS<LoY+9
z9crc=q~Kv~UPf7Kc;|y9Rl=SFk4ED(CFBQWYEDFj`@TPYV7HaxFnsilVQ!C0YfzAZ
za@OAEAZ}l)kC+WKNNZAVMV=8Gjik!H{i6-8;J3aHwi&oQ^BWHFW8c4Xk;^a_e|E~=
z-mazr=R<up%=@#2Jn0Emni*hbjOxBu`O7&B&}-|b>iVJwN(rii`=-cDVDirMZS4q+
zW1_br-E=PXwa+BfP||q}8~Elp1)}_fj{-aGV?{QIWr*+b(AaGiA9NwTPeSF8GFrhu
z{G5jVa+dZ+@rG2(!8?6~RXV8}yXZ(%Bk=fTtC_~$EHY|+7)ptlzxfPQm~Z{1?tRxX
z=Kjq8Cn05x<h(4caq_c*sm)Q(Q-=pb3w5o~qA0z!K?w@&@jRvvt)JOJlAh#5b`rFB
zj8EkysIajJ*O_xYVK-q3@W=WyUC4`G$lUe0ms=H)3^D{(z~ptauZMOivZqW+KROh~
zGAfx1%+NR%ALNsnIoqqXrw*-7sv7MS8qvaI#@?VTIdo@HUwqgd&JNm`D%=_E4^}B)
zuE=;|k4QEZrOxAWuHv_au%-t|Qbs}8bwtIB)b3vrai18mZ02X*JW_QV5Jxj$<BfKY
zm*|tI7=yi1jS~3@IY6TPRbm!X5F96k!1%;|*^fH>xIYEe?T;`;Y?SJu-y`bgiIn#`
z2tw@vNpYURoejG4T>kqPrT1-S`>K_GdTt5nzHGcxz931$78~L&{TdWK=0T+PivIjN
zmPEbRx-q3GHMCmuk53v2d#iIrS)!E-JDg(7QGuKm=-4T!I9LYtn%&5wQAJ5$1x8xO
z_M&DoZ}~bbfo3oq{mZF@g2b#kWsE=ErHS4AJi6y0*!7;;!=m0tmi43*u(mE&kg9;m
z%i6y5l?_H191Jv>90Bju28orlrwsyhbgz069zYZu5;P|Jz%KYIAR@C#A8+!>@*3yO
zvo^$I-8U>Jl-LoXAlgS3Q|={?D(o9xv4lf-)%Z?S2<27Y-mQw#K;G^^t#hFYk6oOG
zrN3YSws3?~0u4jONB#>$#)p>lg^xs2Xc!Hv=Y)h!s`T!2xi=DU=9pwRHjRYw)$Rw1
z#*61tV0N<K&3M!-{8f=iCNUU&O62~^*EROfW3gwuVPHGWrpW}&SW%!-cGtMXwCDVB
zNPu2EQ0nmAihP?tyY}zZrN=!qP(pU~#BLw5mW5&Do2SG;&n-SxT49X23PLl1IdsAH
zRrS!q0U#zYVk?ZtlJYb9wz`aGeZzBsg=>XrTV-`c;jU|@`Qo1QLFt8<;aQV-g|@_k
zA)g|ZjghXC5mBbw<X3LxR7HdIg>=sSlWH2R;!eR2Hu`8zlzpJz1lOZl9tnbj*33|2
z$dTY92vlx1gaDoK6%~r6%(D|P=6chLqb_MXpnArwQG+6*tPfYR8IoP2%qq#~yAgfY
zV~%f%Ruz~q6sbIcJg_4sD(y1VcXynGT#hPQ2eUU5CRB6FV!)(EmvxRYvz=m6mk;=Z
z_6s~3>KD)URLY1<m@+c?dwd%r#}DQsxNv5QwMYnTd?Mf0w(Dp`2b6OIWwv{Xe_cP3
z1nE`$nOR+8Okb0S+N!@~5r3{BqovCG{+WEnMh1G$?-2>oc>3Qn9O#^>@BMgHtT&f0
zu1@|`Mt!iVa-YKE;pR}7Wqdw@9d}>T`P@d_EEYLzEOnnW9#-|VD}#L_qC#8=VW{m$
zO|#j`Wj@d?!fwx?k(4r|Vm-{sGmz3D+Ok_FLDPXPG22=_)mCS(I5S;|*Vij*by~|m
zF2m>R?DUf*$qhs}0H3NB5^3oI*q7(K*|g(78Bb%;mJa>IQ{*<gSu|kzH*Xn2C@h!j
z8fNm8v(eCN2`fuQRRrS;GI<5Hs3!Lkt*J7rp0jRiUe5QI<EGSuL#<f&upTO_yY+%r
znYUdpSkm(F^-22Jz#I%W!z|!B9*w(@M9;x4f|%yM*NfaJMZ*yDc3hvdm2${2Y%YCb
z4@=R1HJ>3*`)?$%qK#VA_owf~YPHhZ8N-Qlqm!5;MNkqO#wcM3<5w`SzRt9`sUeA}
zgt23E{f!kPN8|By45Y5iLY6V{uoJA?7>yoX`gq*Z=lp$cQ?K<57x}4=O+!3SRDlqJ
zj3z%p<*l<yNK)SFu&SD<py^Dmw4|I%CEMtfWz$zSKPE9fx3CQL&6xvyh_<q55yRA=
z<Cmh)2N%v~2z)8<3_TxHr^t{+c6=OjZaMOE^J(HAp^a(F7uj!ZT%_HlM+=R}>CwIS
zVv8&?9UoJ>^%QR1Pg|LFl4i2seufmi8t<I!LV8e3ictkB+o<sgttnRXr^A^HMI8@@
zHAz^&AgMX%GyVI^%$n>&9)OmpLNa^cEcn~f-M2>E+-P+ak6s?iq}6k8HocN@&phMm
zC;bvn!2{qxh>oGQi|mj#M0V2MqODBy{5@4@=zM(B0(=UzX&x1~@SvglQ^hQYt6*1i
ztJ1sYz<V5)aTOghDyz2duCve0Q<iI$D|dv2#N**+S)xQ!vzCb=aWRAtQK<{kq!{_g
z&ZID)Hbh7u)_J2cP;g%(B*1z4+U)f^XTwJ)iuNx)RyHrd-5YrvC(cZz+vWUJ&De#w
zfOke528ZJA*GBOPNr&C0Wdr|L`G3396{DKsjYjSI9+5Ko$Y$sjT(;?Se{Qhm3~DkL
z5h`<iav+)Q+1h?iyw~WP8xvnSH=rhWBH~VY6T8B8+&S2LA=jv7cE(U18R^-|gFkvF
zzX=xd$feG+dgo0FtTf6r5U5)W!MsC&G~<%5Y3-~a{lm`#x(1-evIF(s%1=Q8Z$dEM
zZ$6(#?-#&`$oitL2E<pQU4d0g6SV_m-AkM4v^-hBlAg8I#1~~ZEx<Z|mGhBP%)*U&
z!0FoEcwj!@4S4TTFsAhk_hI!lj4kX`23S~v%f$^kX}59sCS3mPaQ|_GIA%E&X6;K{
zD|)+lEzQ2HNHqBIBrJv9_w910>t+YNpr}U81;!zkYn3+nblz*u!(i_mSn>*XcK<!d
z9EDk2HO<iM_eYams2*792Ih^GIh#DX{2SQP^0<O$r!BQL1Q&4I-0DEkLvirEnwc_5
z+^}Dm7auTr%~lEy#o&Ft2)sScMv(~j>5Lm%#yr_bd;u{cj<%#D!7PBdJgaRr`_E`f
zZ<A4p;o4S9pJ)XNvwYu=(b_Zv21|JTdRnpMrVBpd#|~1lB#Y~1+BHj-E5lU42ejQC
zg}>#c+iG+HxYPK7g=Kz@HjfK007u|!-F(F(jJ#kqZC3~a9D~+Ao8QBcn3X1b?}|%n
zev-}l6*SrE{^NM_m5y%4dni9>$LV(6X`A6w%mm;Y)`y#UPPzVhXh4#b=KV$yW8?F;
zKkW3DrEg|y2i|W`NDv-GVF0)w5rF-3&99Lv@gZRLehKNm&KLAA!nm0*j%PaYD|0BX
z-qN>boqqsrE=$yS)vu0u5yaYBiUsrIn=I;=g*(4pBH1bb2Xk*371bC1eM?9Pl1fN3
zg#IW2=?)1g6_JpV8APPJ8wF(O5*bQR6v-i!20?1*?rsnS29QDE-pBjp^Wu4)weEGV
z|4Y|$I5Tt3-gE8i`hGv(%*)KfsLmQQ`B;g?@8T(TYWdymQsWZa;ZW1IJD`g@?FsR=
ziS8fBQ5A1Y!yEb#GE;2btN%r>1XJiU&#=kzc`*s3wd(5AgH0QH6>$!du@50H&4b4p
z@dPtK9Q?H&Xbn#kyH0W((bd~nucixPQ+i*!Ea2(FbVK@%W1wkP(ll(UC)|gGgxs9)
z7+FN-PRJpv*sCYp#C<oZIip%BWQvHSdR=a5Q*;C{yXmsMA8&!w$!h?CfSWpNX~+D5
zw239>BIX)yxv%L8l@zghGF!(%bu11iNkR+n>^4jS+DQ}CovA&DlbzTI=121c)<al|
zD*B{TNH%FFLKpUdXtb!B+PU{3oW+6S6Gqj_euL0f*fIa7@M#fH@rk)!XXj0F|MD^Q
zKP|x;1h)W}wTQ8Ah4zcYU~ZW1EZU^>&?72F)DM!}K7RKR<{{Hp^X^H>xO_n*i6nj>
zp0+kEqwxDS)W_9|cV*>8Uj(%5rzqB2LwqnhP$v=Mag1rCh8Y1%%B$+K)3uCoZlTp_
zMH5Jf+FOLbqH3~2==vJ=F%FWWnt~PMQG*3urXtLfFl+4<Ud&s*5+iG}8L$zE!B(2_
zMXvY#v%sGl@-}=SaM>W3eHm9lX7dM_gpl$!nnD^GGxz}3v%-5+TtDYH6Zd_?K)f6*
zB#QT%Nv{t<CCssk)tVMo;~;JrEU<e|F)b<8&XZiTRrpm+=GFQowm@NYKe3mipsb1~
zv=Y&olkLv)Os%p+SRVf-T$RH2D&8&5PrTy!u`if*!ZO)_`O3g>$GafYvk)OLjV%A>
z&-#!z-ITs;rRQSQ4SZ#WQWMEF+%hPj?*7VB;p9;}_U<)*`)%xJijXIwMk9LblY&EP
z$2%3qJU}-htz^Q(UC<ulO3q|orZfpOTZN)TgB5Uj2rcrDzM#7F5c1k>{nfc08=9vd
zr>z#=2yAQy=!F}BXVdekpjB5ZDDWjaPh@Zm_#364XF~K43<QnXOTU7@aF6;^r%%Ft
zx-Wf^D)$z<>J~!DQl-}3<*AKoywzX4Ep-7o2K|?r=08)IjB$xBu{ZvHEtH&nfi0*a
zw;584r#pE4a?h*j%*=xywF?{rrkcpGx7H$BkyA!s9<^NqCPv>%TPcT@{)hv$d7(mh
zp5r9_Iw_^XU*}1urt`u%tl2{)wiW%-az)urZZwDP+hrLD7t&h5R(n_*K#{JJ$A@W2
zRY<XwHl?~3J{L0x1UhswOMf;O!HW2DtSGTE&MQ4gd~Qw4j!C}%3#h6`DPClHjQ#Ud
z&LwfSDiO0h>FDxi{N_+S`Drg8pIt!uD$bg?o$byLF-uog3=<RW!a%9?db&;4D?fbZ
zV@!K6IZkMxoJJU!>e6Dwr#=%o#ge|C_-_^xC?4H9=TT^Qrc87qB+yc!SKS@EVd$J!
z(jTzv_RpzM#ikWT()(^W&NBEf+G+VVtwd9g+)DJqk;GH{iOL=aaI+ZYEO68ToP(5L
zL+hJ#eWcgEwZqWB&6-ZD-nqyE8dRgC&mN1As)lOZNqwVjPTLzn>$6kd@!#gVGET+V
zmNuHq(8zhOq^HR-vhlnHuaS}#x@5WOC{)OqA~UzmkNwZXZE005M$B=6x8Wk-J3bzL
zo@fw&YmIt8@BvPt)ZhT{77tdqM)f2j-;v{-Hnq=4A`XWs(OX*aL}>CQJ5G&g7;p4W
z>I_6?;1)!`8h@N2qGYuNx>T278!04g(HtZWWtZ?lPA)|YnX_;^o0iayGEt5fj(af@
z`}pJUS{DOTgjn<4H(|M&Chl6geJIC}5-F$jdvb2=yAoYvn*%=5t22`XoJtfsJrkdk
zDn7xCX=>iP5`|Wd=sCH!EDkr7|7LmqU8q1|>!I%Kl!V%rr`%~m#P)_-8BdOKApTWG
zA^aE-G~5$OuB4E1KM+TXf3@v}IVtnVw)D|vnp7Beg1W4H)X<_~ilJsAyj&izdA7uM
z(u+y{OMVS`tN&Sq@Pcb>`Z&~;LN9n}T9pbkFkC7WJTs7n{!;BO=OBckVO?(n5(>L(
z1%1@wX><g!UH>6u%CW63Z|MZ=?ms1Fru(pH+R1Kmk3&b9g1+;0j`r4PN=dt<X%TYg
zH@KfQgcNevfvwL7`g3M>=Zo%mm7q<<d`IIL*hf(ZHz1zDsp~!zDrkG;de1@92^QUW
zzGI{CRbrMNI0<k4bdzk38ZO;YRI?`Uq+Z=fhA$%ovfEwhjXR_G?GuFsnZH*P5}?>0
zb7aV4G53x%nb6s};!KsAT33`P(add_M{c`)Fc&UvHyT3QG)L>V=!q-5(ao)cu7BG@
z8;O{N@{gkQ{67$hY>forT^;g@S+$jR6s$`$lbIr85BiEPBB<Khz8Q5vU~eXe{c669
zR3xMcuG}#6Ye)8?Rp#MWb4l~z<S_ybVILLXd@og25F?+C@$qFtNHR0xIt_T}xL(L2
zuTH+l>2SSKF3^Y$^VEwP7Cn`+OsFMoz0*mqn(Q#-s`n;u6(tqIj^vRvNO~H;L;Ghs
ze~D{^KAwd`r>{Bu+sq3Q&g*??{ybHCW54p`2Piw>np)VeW`tA}afd5}U0p3$mH1Q=
zi-0LZL;fS%3LTTFgc`+oy3E9;>+34nEBip+3Bwelc&*lw`I%f^b%rz|6iF=V+O;Zm
zVq+xczK?|<5RM4LY&!wGb`OLEYiB5crf9J@Yj$7ZH@yA^H0KgUTyGe4I$~if>#DOE
z!|FJiC(eb!^5XrHbSpaj?V+t~_Vp9%z!A4!i+xc~b^Qm)^uo^M3##a9q;NWwZ8N%b
zq0<{fQFW)x$_DS;>JZyq(i7%6t0AMIb@%z5_zQSSE-6k-KC+(8wnm7XjF!3Gr;M<x
zamI!g`z1STxiPEpa~ewJDr=M~Ef5&D_om<Vlz6LiMVCx7-J8>lqCm$a!L}xwV>prJ
zXUy@R?4)}w@41#4A}l9`nF}^d#p&~J>UK8}#13Bf(QR+5yfMy2<E*PjP3@pCv_!(M
z6r~~67Z|y!L=jT&J`xUh7#dR063r2y7U7+Be~Y&cS~OTP&O_&>P?g7}+7T+Ma~wfT
z?m~W*;oK7ogi?W%M2|O#LzLrFKh6d!D()`E$6dsH+`oIAOR4MqSv&f0-C4@_<q4kc
zAXCAubxH4l*qwJ-F=@gq_Vw{&Hu8t*w~FFnJA%QLRJp;o6+Mr8CL=OA>{@P2qtTY+
zy?ElRie;&%6Y0La1Of4P@Xp^6;1d~_l)E(?!`=;z#}9g^6NiSEt+ET?#o(^Sw^!FZ
zu@fXUivL=RFquLaDpKVCYzLatR&dV4G>{O*)+@T(Fm_J`%;-`7%s?^g#HU8RW{|vn
zLZHn#Nl<|4G74QrN@?~L)yQ@Zx^?rUXzs4bMo?!kN=nmG)v)WRu6}Abwy#_um!crV
z)HsVUmvfgHnJm>;O(UJ9#@H@?M~vov*R_~Zd?#{KEA6~lIPnn=b^cGEXR!pjQT3=t
zerM8>dJ2f)Y)Lf>ca44&ETD^7QZBY5Kn*v*=5UKQC<313ut^*7;&1$I{A1z3ga-DT
zN~GsZ67U<bGR+~JR2X}A9eOlXNX$o3M8u7*uaxdftn9p{sEanaE|PoL7RjHFKUs_V
z+9jqURW8FScalZTLpjfPB+RFhY)Ol7cr^o67lfU9f(SiFkBVn?5|dSy%^s;=1*Gi4
z%t)wu$i~Y>@e&SFm95`lZJ8$u{T|_dURVd=lfu<>m-UE#aoQdRJ0f(p?#A(Jp@mKc
zsS@|FFaHvHiM$#QYs$c5l4FG9ShgAwoP(;s#LPuqoG!^s^A4=+b&f3p-Tsx8A{~<0
zhsoW!oD7f3e6?xXmV^3`@a2^q*%fBVZ^2!>&ysRo{^M!1lf+ki*XLFOu3@bGGFFjM
zD~+eZE<rFNY~u$W=8AS8g}h|}n=1sYDBN+$E+SpAOnVyd&4g>_z^F>zOpo*g76bSH
zOdMN%Vxx86KbuR4=m}L(rCC{PqmGatx~d-c9Z4pVAmD6S{?~?igW1Qe8f!H}^=gMk
zl_a$S@z(wAM(Dlw597FvPrU7O*wduDRK?jC!{rA^(*wNp)B{lR>H^Ek3(Q~luw*2e
zf7`jHczJzbzZGAi$~~<=B&0~ROa^UgS@_Nic3wfhP@rZHKF0RD@}F*`?TDn7`M41z
zNC|nf%QOrTr*Aw;@9di>^$Dw-;2y$1Y<-+-=Z}>6fsnwps+pF~Q}1wSSrdj&<-)lT
zvYU^q)%)9@Ss<)piCr@C)`aTv=T)sFLFsO6vcSMUe#)k;syjY(U(!RjjZi$-3`TP^
zfHQ%eleW_*DaOrUPEddlzI^3_ozT8BGf(A5Ca#-Wn$35nOrLN5loO?fi^AfsN47~x
zV~{BQ;nTOTs;15HVXz-)vAPB<F^=aMBfs)!P~ZJA9=8?m%CHH7t(@UV{|t5*Ixl-o
zEY=OXwHnzXD2)h~?L=;DCTGnc3z#}$R7A;K%&9o0-RF$Nj@Xlu9J-%WNij@>&g+ss
zl?)gk$gaj_P*gdXT4QkbGgc^N-2<41Ydjk^a}FzPNh+|zlY^4Kt(7G%8FV0)_BLbT
zkJ<Fz1<J)rWhbs!tip9b?_A}U2&?$>j_fPi4T`0>nDEV3*`a=R1xwyk;Z3SjbZ?m)
z&c?~zPQL8A%zZO9>y1u1?ePquUN+|nre9KfCeFHV3g*x8D^x$Qfm#~^+h{2M|Lu<q
zNDcXZ<((TAYJ8OCeQ|WKHl1WXA~EM%Fmu_)XFW1pI@S~sU108=H}iLaY_+ApoUvdV
zLVXHLN~@db$zQ5Xo*~aL;vI7atlkHudV1MUyg#YO6K9`UO5ujoyG4br?`0|oHR7I1
z{i%=W?k1iwy*Lbw05-3^TIl_f$LJ=|wK&#ao}x!s$J1)6>pz%!W6tJZ$dvDIG3_O9
z`#H?v2FMzkI{Z5~EhYE6JG$4@XN@VE{w!wI3yn$tdn=1zblHHNdbSEMd_vDy+-xSX
zoig1V4fbkJX%+vAQ#kPzg8Amj{vP?ddLWa1XMFa|-)DFAM1&<S(WlyLw~K!6Y{vbP
zY&CH@OYlVQ!qw;S*G1b>l$Hp$$DgxF^XgUDcI|2|J?7&#1v6IfrIdrQ=EtkF4cg8r
z1Wtn6Y=O_D_SSgqKCMZAUoTI?q<G0q*R7?ycC-qmd{g&)41s`P6q%gG5x%OGmr|6;
z%Ys4qD7V%m>%68JK%+dI45|1y=Qnj;dDbmhF!StKYWo7c#_=uLfU@@E-}Tp&hKWPv
zq9s8e?EPkD8xARxi(?xq_`mJNSRdx?-8P&*H1#<wKJhwF8J{n)rfk|+JTMW0C(izI
zJ!n{Mc4On8&UQ95eo@NQ?R)9tSF;&%l9lP{saG=Z;AfC-7tPn5ebQK-xRl}4pzp|Z
z^mr2Yy{>zUcz)(==CO6%Qpx&3pdq+VNCF`EL!F(<{g}9D^ZQS!(_~C)XUuiuG$_FP
z^Nw}-Y>80Q>{_>Lk9Ax!-(Fy~x=~*Dt%w<u*jnu1fvb?d%t}2mriaPQMEnB7vijp$
zwjlknhIKTntphe~y1Tfc=SvK|Z~BZ$#GFaB{PFJGky9FNsc%uwP+j0`E8?+UN`<38
zn!k42!+O4g?X&Sbyua}&ru5R{TMEEbu?1ZmxvsYgopc_qq4&}$limC#$5-V(%+{#;
ze`R%c`=ySsf>sB^EpTYTxR7kc&qYM0ZX;x5vfTB2R?<(h76R8{LZiKuOl&^tW<23G
zeyhi_%Z=twJq&9u_YJ$L=@n*R>2?_72IOt$z&QW04Qu%Vi<3WRB5YcTOeZ4JT(E8F
z8g*5&J%0zOMevMnJ2e`5uIumKnPv_0^4ZutS(!K=IqQB-k1QPj(Z@SK3@gs)4%55z
zSniCL!#DN+w%u(!t^f#2qQ(#>_YDxwj+w>Pn~v>T-`!^R)vEcP#*yiM1h;NwP5*1V
z$D}4iJtw{O6TKTW_mmX2D?CY8x<kP`XXXeN+g76btMqB#AmW*fspCJu`D&<e(b!Ap
zFeJTpFn4t6;a9WUxQ>w_xRW^hI)m9oom*$3Mm^u}1YKBQ?!R~QCT7nMF7?^)lh5UK
zaQV0DW;l&v3Gk+9;1J$}C+g7Ax9|l|G#1UA4<~i}BIk5FXyRh)AkF-kaF@wARc0$O
zLS3k)hR*hve|JO56MHi+A$}5~o!`?X>Lxbkmu(w6cYq{eOvU5`VC@tQh*5`@dlL?;
z#}V@|<@_qWxXQm-<cOe4kHJ<CpK?-6s`@cP=O09CF_$*~2utRK)mXSdua<kIZ0`l-
z&JEYDw$N{_Ma}BgmD+obu&mB?m<yiBUpz4W)trGj=AALi@>^{vS{t;n;PXQTT1b_t
z^9TMuON&+??WLtZLRU32j>{W=`)uLXf4EoI^h9$zvMDiDhh5`v$}gKq$7E|RM;)>I
zMJawPslVx)YR#T8<&!1fvi&-dliJjYbDZm9uU=f=wSQEsdup<_lXQVyzxtC?D87GT
z_Sm$r&}93LjkUoXoXtInty>xdEVET}DaOelGs!~cd70|-C@;guU%7_2)0Yn&y$mLI
zHe|NN!1noYa^d$hCdmA5;a*&Xz-F<_Zvkrze77)tXpuhVKfYf<`ZWiAO^IWya!aPG
z&Cj+(V7KieIIKb+=`}swOP?&>z`=!rDpMyf!u__A<o<1w5IPMlymU~PC2)3vX2b+J
zOoY31`s8gL<jw{$F$X@IEIXO3Q0MAw_hJ$lIrJ3DQ!>#|UkjJ~+puSRGTw3TD9q0^
z!tD1$sl~S^;^wBV)1s?6tb?=X8+<8*E#kgRs`g#P2=A$?xU_YPQ$EtU{Z1|GX!tI_
z9jmL|>~7<-=1J<AFIR>PF+`930}yOKzcl^DJzK3|#l!lI<$SDKxA6H&^Hy7Z%>DN%
zW$L5;`YBjy8ec-axN~;*-beco!?nV??60aG>v=+>Y-E&btd;wJF-~JhEk>>I{)WF}
z40YrJ9RJZOJbXG<?$ur|_mtJ=xaz;8Gh4mJ-?)u`@W%uOR%sVKyYJ4WcCXJJ|2xY(
zQjF^{K@JiOxdz$(G*AB{><qR$uG+9WZ!1}MtqnbCrVxXB)S9to?$g6nJ*{E<!~ou*
zYPDkZmQ$cqpq!r`6LP+Q5~+a;K`)B{FZ=gpTSMA#uxS1#60c!dm2&_?1wm|+=P!=G
z{p<al?#Bh0{<HK0s8{tx13<N=07G^iGwA88LipL$X>UNi=mv~5{c7;?f9x@4oq901
zSk3a=y#wH6b~RucK@=Msm1gey1?4ejyb8d&tdb%;YB9GAD5O^6T|v8jbPuAd8ap){
zZM|y%=m-x}2&j9|&g2C64xp~!fS!wT*FcEyQ3IOJ7(khORt@MyTQ{f&fPvePWe*@)
zpZNyd1|{@bb4t)vPKZZ_0qw=7|0o!FQFBIyXcIu(#TXcxi8;G#%Yt6mDxmc8`+-hW
zbAm8+tpdOgY<t09cS4}J!aWG6vD0*ULHoM01OOad+o;u(iCMiZ7c_uMe`?^%s#5H4
zFh&uAXjKrQm^e1|!AppAEVcDHuN&C<<(%&cixb)wLw#y0+#=}Tml%%$@U)mSLYrNn
zc5kw;IiYC@pijQ!djRBwZnEVffRq%&F9%d8uQO|M(daXQ`7!fn>)X2VD&*_}TBfmk
z;B&76G>0by3fX>q^ZPC|@QD@c>^p&mA^zArHUTpJGQ}EznBLwOS3QEds;2<3Ve%>c
z#e4M0oL?Hfxp!`sN)812Jr9BgC;x~dA{c&AH6BZ!9Wa9ufD}&Y@K~u=j2Ih{cYzBl
zrGSn-h(ST49%Epj-o9jqPr7ulV1QZkVH1os{2-;&|0C2=y$$i=)wb6Ffs3z$)o+I(
z{1DjLpEfW%H{%_hfgzSOFkL_CIy>JBYWn*-LV-WSvDWrF5#swfRsN`GJ}%QV)xH$M
zkASxk!z19@?db)c4u~H(wykIZ+U&arPM60{1`27Wu9|Xl;r7qybUp=Lo&=R@wQl(w
zPugtz;2>-P#zx_6QUs_n)4;>w<^KDJAl70m4J^etAd`V0%IMwN?Nsm`7D&&W?KL&c
zwN61)YA}F$l=;p2quj|%MdBEsw>{l+$^?II6|{kisAYMl_5vrsZ8XmWlNouV(rI9A
z-}Z0@47~BPSJ1$STTa)w4xHkAxF0Y4P9R+`7U&yxojRU&vd9X=ZJK-{Jqe-`a>aA-
z2hh7B5!b)F!o_7ju2or(*h88<kHL_@?Mwf|Uc)GTPd7jrF-#}ex<6480&acjmco7;
z?LUZ(Bk0){^5GzYH=pr|N=9XT{Ka6(#pbt<DuiL)8)~!8fL)Uc(aWm$0WoL%ieeCz
zIaBA8_HO`FGy3tl?_Kj$R_d=VAA(NABql7wT*22iz8#-h-nYY_@J{6J{dhX!U-D_>
zs_v8;ZNh}DEgY1w;~uE2CK!w+<t%bzT9F*(qxi<PN4Nvor|}dl7T3Z1^f5fLE9HRM
zJlacUnG`Al26fXLxP&w$64_h32*@fWTuS1rUSN5k+i%$=gGt%P>cv}Jn{$JZ0fWxW
zeNY%plF!Ab{1lfT&_-3(_O=qhrXz4HwjBQXuO&B-CHUAcvE>4kM7A89^9dwFu0lva
z<|&K6#XyYk1Y1ySBV`oVC>$B%!33W0=P59>?qqH?BDQx`{b);Ja<lc%I@*O(*xK?f
zyMVEdAMA~vm<YM9um+!q0Am-87Qe9X9b5YaXPb2E)PqgEpj!XKjQJv6=E=^t2!4&*
zBvDB#D7fuoo?!3yZJgVRs^=PHU)ZHqUSFZ6Sl<a+*OgjLt`+{_Awp~X*e!{`YPcGy
z`bNrh2u-bW{9^L}nxd{Zi}1|GP}<f!l{xHJ2;x?0V~9T;Xn~-H|AwQ2PJvtc*@d_i
z+jbgz+R*D<4EfewqYT3aq6-5GzD|O}5FUy^AMoOmQ?GQWnUrhiGq3mM*4m6Z@zra$
z(B!QafITMw>zY<;8dr(%(ix)Jhefdq0H^kIW9?v33%lYfTq2!w4@s2%81Ju=%Ap4-
zmNS%ZKPsPm<qr}IsYGzCsO5;n^4Lnf`GZSHwWpdC^N<k+Fkc?V+@5=iHtp*G`oagX
z61iQ^u?j5Wnzsjd1ghELbm8}MGykF9+McMJ?COZMEKVlyNPk-yBV1Z6g4^~Jlh%A2
z;u2`0CF8~5!J>?a^t19jnz(}{0qpEtxWrDGjhZEbKl%z{Q$FU`=G2vw7&^d3elK^m
zlbd$fa3IK+WFwDTmx(c_M)u`b=}=FdW*R0bYz13;wd`#S7g^{m02iq{RSu*sqv6Y<
z%<KZ=gtlg2d58^<zToc<y{Jf-@dqX?pLd0zR3+82)X-StdZuKuOYc(XFofo4ZV&E!
zFKNmcw(~m4y{V^9BKBU%s%jPO$=D9-Uof{ek5#z%Gl=d&cMk70UN`ztnf{|av6FnZ
z3HO7(@!@LJnP`bu5ZM<(d)G3ott~Z2;^}zP#nDDltLx{FeG}IsE3IH}__ZzUu{lf!
z-NyiLWO3c^#1gFAV(tgVX(C^X&<_L%cF&5zk4#?L%armPZ<F71-B6rLW!%K)59(e)
zMC9_;(L2<~JK#T~zA~T=fTr@&S|-eXS8O@Rs6D9&Z1|TK8352trzGjB&yRM9A5~kN
zA<Du(rS1!vP5u!;E2t=F@LUQ-1k%Ifeoe8RcB*%Sv7=-=I$2w*PJ~J3dWuVbv<lm`
zDW%#-LP_hBg{fyh&cDB3zMNT?H*Ea#Qz#WEy(!^{B;0FB`#YBqy_3}BDPuaVYntuP
z0DjlOX-EqGU#aWv=5;lbRD(@cV1B5SjcPmis7*JBE7^gdJrz9puS|isq4q%N@<8aQ
z;2Qez$|&Wo8;8KNxpSvGj~b>9lL%`+!dg@(Lar!h1C$AP=0T4*9*-TlhJN3~Vz)~b
z4et(flaG~IYmBlM%O9vOxo&+Q+g(^X8GELSs_p6ZVaworkN$bUUht*(vyFXZHU1Wt
z8@7PdLCvCb%ARe6cKw`1nlR{_mxh{;$Nke5_Zz;khmXEpE~6;hyv`#JE-266_&b~e
zV7OHNjnyTi&Y4}z#1>!}&nm5J*m2?68fU$7Y<rnEuZD!06-YK9^tuulX?JQ@cKxQM
zZ4ZrseHN(kfC&#oA>appZm-_Cfk8k=&3DfKPbc61u_P3`Yp)FhS41h#@@$r2Y7&V3
z(;Ou>`xnaAkNP!+_B2$sY<?u<i_zUJNqA+6RG6b*rTuMw$BC15*KQ}{<+#)roV<90
z`0Bd}!kymEIip_<=CouSd2vm|VTU-P?$`WmT%A}@Yor2%Oi?5Gy`2}gGbzR8=O%s`
z$eHU(3z9VG6bd_WVig!Fr<37UN_9{|Mu1YW*93PvrKX8Wu>N7Fx|14^D#YHnivv|j
zAqs$jK^%haor3H@+{Sn|@ZJJ91cTE<R*HJX!EIbaf^p{Dls~9b$WfWz1F_%uk}9$Z
zav@$)!*SR4h13weg}=+fPWUp!qS{kFTw9L9J1_^lrK8^NxmxYrK&MY@<m#ZvJZohf
zA~3FBS_=zj?_kRRHx`wcQ~P!9G<PuDZ|fKKJty*)PxJ{Gzf0hBmT+smOU#Gg<0;T}
zpc4H$Ti!$_RA08`Y(-0-Iq%$hJ&cHdC!sf~l{lg9g;g_ZRDExpY3J8WR5`faBzMhA
z`%k33D5|g1zUSbq{B(FTw<=B@yXHMjeGk*Y<&g=O@2w@^T%JGQ^|J1hTIUBlMJWcT
zPs}X%`g1E6ak*2J-gO6nuwr20cL_n*dH}QTsOl0p`1%#2nvRXlbi(T$%<f^-=Mi)~
zCF6hmmYr$4-Ts3LsbAv|vKQS##5A(NLFFK}jctl^i~U+~hxiZc>NLr0Wk<7D$FzqS
zp!^yp8$31sNF;$D1qJ`C0%TrLb}ZHd&~U%h-oJ64<M2yt8r!6YC40X*_3K{$eV>Qw
zO?F6`5C6hHP5`7ie+Q_MKCaW^x_tnJEg4D{>47L!{#f<X<7nNk#XK|LkxzT)&Y*rv
zxk_i0GbYi&?3O%#d2zA|K&dP+BbR_Wy@k5v-tw^9^E+QHZK08U0L8g@OCQyVsavnX
zSrvqsr=bj|n0Aob%@fG3M&?F{GgC6zbx+zC%zNmIf`j$X92}DG$GZ-jfhs;L==_2K
z1-5}BI0OhIAIvh3Kv^dhcu7h!-KJo8fAk0BwaC8T;ZK7OBBSXpu8ZWIUjLLbyY(;4
zrX!Wbb6A6bi~F`a5Dpb}sHig+kQg8|s=WmoJ{z)t6O63~A@rlAC=m2oT9S`i0)3o`
z#8pH34-sY(<0B=Ra>9HTRY(;vF0YzReOqe82b70tKx*@8OC8bp;~HP`KP(tHVZc?<
zXq8`4)n<AWzqU&4j?~3J3nctjp_F@q>3m<0)XxusXlZfQg##7)Oa3FR!nVBj4@UgJ
zLz4`PmHdDLqKCXQZoZ*67p^1ih1W$K04~fUopQqy%9RL6k|XTgm;sn00|E}$gszDJ
znRxX#QT*8KzaseO)<HY}*@yf^GaoB`E6*>`t-kH2ua4+m;eus|uwqr3a0uC_W*(zx
zh*K3<7$*Rcu&PXD%Gjelud*R>^@LPD$}rM1c7?T7e$n;4m%ULr?~kyV`bh7AE&yV$
zye)ze?n4PWbbY*L(*#4EJmAU|#)JfRz3SmZ6q$R5qpqr$_x#uSGSoDb8<?}=JgJx&
z*c>Wo58D5rEu@80+as@UxlLqk_mKLQ-}+EgJ>s;pc|XIwSP=el=O}7Ueq(hx;SGp9
zLH4tYZnzlt3I8F_PP(qbN`Lo8QilGjD#IORJfihK5FEK86UcE&bs5yU)7?5#P3TOW
zTOQmXpFhIzS7^)ialCuUg9?OBXb{P|^fCiW4(&MnV8uK4dTQ4mtFHTlxRu#K5n*?(
zt^}8rAV8hl4!`?Iip>LN`3nO3?PZh+hxm#=w0@dxA3KBFt8WwloI;PGZGsx?uYUl+
z_={K3b6r{|jnO$N^g3>zA#y_c^EZs$kZA1EQQGT#>E%XN#egF%^9m?@9vvwwK*Xt0
zJVr_8@bY0@nG`5J#U7G9BwQ)rWqRm%*eg+radn6HNdAGy*dF}n{ezt7fB3rcHX5-d
zx&SvW>`)t+1{+ljm+2hY%`<)7<XtJ?Js2pkCwu;qX%YN9%8bVzBeRbuL-#*)KthtK
zbQh6SZ1*uzbAsgY!j4%JKy4dlIHOwK8xG{{$NvmOv$uFd@XIf{vtGs{0F?Lm($VH2
z^8rT$v&eg@UZL3W$L}x7&7^NMm&xGF0qx1|9GtC!=6!mkD$LHgg_t;_6~lH3@3gD2
zv`g9}i?7Y~u=zgD>g)YlCZ~iyO*>MSzURL#W6;rQ!h#nB1Im|}7x7jzN6&&boB###
zt96%}g0Nb<H8@**6@S&mFd=a|iE`l-y38+~y2g~p8`$yJS_R?J$Lzwt&kANA$mm?x
ztn<{SDMcb=I&2ow=D?T@?+U7Q`9!hbe}QDx)=;}6VztqIS2^JxZ(I3$NgmNWx}VRi
zRvtEcY58b`lt=fxPg3_|F0-4~l>w$9yxY8?(?G-fRU38Q%~xv5o7B}o{q}E2-aS&)
zb_aHC*MB0B_xHLaInLLxrZC^Dg9@3>6sVZ4@o<v#Lw8nFA^7UVhE|&s5*MQKL5Ozz
zNH~zEWPfF0g9#5O=yspAJtK*3vO5)}Qt7@Cg!nAzdiqRixgIF!o^U>l-9<>CM2MM;
z(;9~~{oJCDlcW8(H0(g*q(ljin0_243)i8<GUdPSl=PaH@^eiHyY6PWvb4fEEjC7y
z8K&O{h~l3dTBv5l9I{wgK{AoYOfPS>S_d|4<cO59md=z<3(`t$ors54#upu*3wc|1
zv}-x%T$YU6FebY8CG^VLPRZPc>l%x%Eo?G<sg30a%#4ou5jM}Z5^D+UO-o*pj(1LL
zBugUm$RzgGiIXrpYUx>at6C0%%udyqo1c^F-PfGps-AaCb~0j{C&(24T=#t0GkKNM
zns4w;xfrWlfvG}{V@SR>xPM@8#|uNe<4iB7riYXNSkh><MUtuRB9XZOk0vqS`n(QL
zK-$s98TGzv+|wS#mA6*Oh>o&bimaqUlP)nw@O&Wact!JWgV~*_JF+Z=BjbSQ%IrJu
zv8Av|ZJJmXZIiz6F#9lBksBvBIlIY*gpKcGP`nX~zOhMvdGeNVEiShRmbnKWW(%v3
zw-ee%$y#$V2TGoaOInS04sd!u{Ko(KaDl6;i-!<z%Y!^!O}x#8fl^$N=-e~5guh{c
zZ+&B`npTB>cYTw#fJ0I7!^+Fh7-uwfiu$LYc$+dEUv&b2)*x5hmV+EG>{$8u%FtuA
zhW$)!ltpkuVFvRGtn}sl#LJGyoB?O7ksI@WYTx*Wa$6GbJh?m6e@w_Fa&0-se3`3x
zP@?vppoUg}y=Z6H;R_k&fM@gFwR+V6CpmUjxrHQ06{jmiMvI<&t4^Rgzjh1x#gdwk
zGYE(+3z=8)gwhj^uS%03S&75s$*}Qh+r4h*<%yPA(rR?oyulw7;Ng`@^M8xU&ojud
zU1~jfB$ijh+lxsX-^7qfpVFQWQJhzMh*y1}&A+N-`oWO4NQd0=A*1kmXIXnhS+Gk6
z12T1yqX`6|p<moW#^=75{bf!2hWjx^2ahklZrkISIBp8sZq?|QMqIX=4?o?&T>0>T
z;@Mhzd1Yq0-RL@Nl(f`?0Uq8_E`g&rts*W|?*hdZrD=_CI8Cbil`LvhafgZS3&_|~
zK6gb<;fLVc1b3>=b@Ra|i6&3k4U!V|@5yua9;@C6k;rrQNMIB0`lS6*WFW24O^`E4
zOIU>Tgqd^e1zF^y_!eWePt5tR?{&6yUEOSZ=hEFiW3*XH$-DQS2Pw5a#3K;EE|amS
zy?Hf(F$r?rT|>P0ET%xTcX1Hp$gD6E66}~#ebfv7ZM_8~!X_*#(l({;4Dsnn84esw
z`K;nJ4xdGFql9Piiww`;mVw~{WII3+M&H7)k$3tWIknsu!WVbfYP9+Lm7&2{VF`*0
zUJJq)?7Acij3Ceoh+%KZ&HIlO1RP=x0(L4L^3uy0*;bS&*Yd72KjQThm#{8cxvREw
zeIj1iG7g`+_Wnq_KGnyf!`O^7odKr#u<yORzeq1OK1d0DdI2Qt?2%d{(chN>DF~l4
z{wC$%C+aARhb^ypGnVwUCWhTkQV}O*$S3X3k>W~HC+rO26r^o)Q4@M~Q%a<s2QNK8
z!NKUkqXIY&5{<fPJk^(&v>@5Z6ifFvMx(RulwE*A5{0VXxRWY^Ujn9reh6!3ejD|1
z9$sP=uA2eQEVFKo?k&{a=8{en*9KK<;*%OBrKLG6Xxm4^*Pcjv1}M_uU-hU}yYZC`
zOY0%sZY-{;#U(hcOoOtje62C^g#z#ON3mFj=NoM2Zj#Kt$W}{BKGZ8@?y)r~!kNWS
z)!+UKHsYMfwj4GnK7F_E!ZQ}Of=Ed9dsLqMpyPw5mVSwi4O)v)$G(j8?70>qm+4$}
zZ0&WNuy_`(SYR0#zvA&(#MX@z{o2#RuAdVlf<qZqzsNhNmF3iLcMiu@#sf)}JKIV}
z4ViQ2EVJ8yA=}+PRNd*i$uS1-LOa@fuh%+YEPDuVxfjm6_wG(a!`njwUN#vQc%q_H
z7#^~6km8W^jJ?#$U-?;vui}fQRTZ#ayzV{V&MB^rE%0=ITN(U3oq?w@>O~nNTUh$T
zANZ;;GLc284|i`7txKvP5ImK)vj<&dng4^WBU$K`&YZ8Icw4`ja$U2jMAbCD>>#Wl
zTtXf26l!bGEil8>0(IhBxExMWig@z*d$}T4TOvOkk!~JiDkU|fWBizSc+_vdisODX
zd8G!+%LxzQ;FWWJT(V9g#j%?3X}R0&6ACRK^+f9GJVD8Fv*a^ej>WiZa(l2S?W5t`
zW2(IEg#SJWQz)6_WKOtKb&Re{qqi#>+40~xPRwt)^&DPiGlL+ISJHerY~w^6xRThH
z(TC+<I5_=0D)fDS4}Ri?;nah%tM77@Q#+%ELBo-k`DAY+#a<p&<-<O#sMgNx1N5sK
zug_1}ZI`*PxL-e0C3h#o+LBu(X~>ktPhNAhvaz6D%iVc<oyiGLJ3iG?m1kaP_}bZ9
z<n@WqjkimM1}!>zX=|xQZ2Mh&t$6KcOjlvdd3y4#??|+jDM{YW5tP8`+flLprqPHL
z(bUwf&LvvRG`1kKvohFzjWIM|3pfv$nBaRCDe@fRzux)%jSK#Pg3lu?Ti0Bd<NzTt
zcwbnV){xNl$1U&h*OEMhC<fS3(6rK|@XN%zl4{8B@nNKJ(l+7P6z0@*?N3HB>)H&}
zPv)l@e3S2oitwz$UE2=wS6TW*(C>L9O?6vTUlJs!x0PI{h@-`;g=y{Bzxoj_zG<zD
z=P@W|v*MJm9oT0urb559&W_co<0vhsDu1S%aQ~e@=R?IJEc^pVh()YDF^!;lFR_~-
zL9A{g!l0Xwr*aMT%x^|g+gF5QF(<x|yDoCTtd-Q|F3PJ@gPvqavaHlOS!bYhKaQR7
zj*GO84~zg`nuoHWSXL%JC3r7V>qY6j21k4UyQ|n%F?-cxCyHS4Ns0nY)_aU+-)5W?
zEKmK#Aid|05Ln6;CMv>Cn)j;s?!`^NmMu*uQ!PP83teO|oFuMs+V=+6fRNv{Kf1ch
z&jZsH+LhVj%cQAD<&3CpiFo=ri1DJOUS$n(4-ojpaM$s4uHC9G(stV!i5VH`$eOI)
zKN42MvEEhdB-i|Ta6A2Pu{}0Bp#8C9Jd;$flv|Gr;SBTT7nV#efxDZGUr0NBj@$y1
z2o_1E8MeI7W}M?<ZXmzbt7I}=Q!x{5^q_d%vc>dFh9pzvz7Z`!>#y;L(hOUFoVVGc
zHh3=|2He`2v0UXSVJzx-xZX~GzLjy~mo_PI9f$C%TocrxALXK9BUD{TRZe&+ovvy%
z^kMjaC)s`>`~Mz!yG;<xwmDUzP+qNmmQZ9d^etN?9<+<}ZzWdZnuUhW@n=g<&N=6X
zxt2CbX$b;X_r6drYl)N`J_-F}&`==f?b;sx_q$2<=wzVj6R7>f1vr8s>MP#&;yQ3`
z!zejlYb)xs+U3bN%LH*%`+uuCM-YyzEF=Deecyk?Rmi0lo(}XwvIkp@p)G>Ah=Z~R
z{Z!b>>-`@Ouju!a9-_qi<C13ou=amh#>&O@(n`yI6F{^7{<i+v$1^t~&37%!Rb#+I
z=O9tQ78d*t;g_Wqsl8kiI*0x$-|vy+bE=?GB=N>Ty#MJTyYYCNOVF9O?t7b~pKe5Q
zH%5~x<+Q8MgGZpt-+?Y~Y#`gqLKPhm$B9QtcQl~gwyZhHij9i&t^G<lg}q?XyB=rA
za7E;h_4Xd#fiynlUsYu4lB_#zh^q0g_N4BFO!97mCvsOtX>&(cSCPXy5@x;lDWj>p
z(O>oCNFICM*2gaBVG>d=5ms6GF~M>lWz0DlOT&J1*<z5rCxReGsZB#U@hKbojsC>w
zb;j<(c)B0IpX_=|aVanUZje_JU%S(rCCOGw8=t_zHA#j}<lrF8U)G%0XdmvLoqyZY
zQ?>Pb)&&vKDJw8#$3peQsi+$Q+TtqR`s-BkA*V@id?&N<hia<SWBBO+ZSy)91UzWY
z8Y;2xCwVo!lHyPU<*})8f?FRPrv9MwhfGBM#Sgn%2u@UkA*+!m0oM}gd`Z+er?*@<
zKlyW?5YERcBsoa>`?X%-mGz;me7E^$L#k)?5`{S)oTM+A+RrFzn;S2DcQvozV5-=$
z=^F5>w(6ojwIyRT@l4kA(Yx`PQpr~gKmPh1SPgU+qM*B=<v3>zgB|QU!i?#Rq_Kfa
zpy)61qNtg_q2<48z#*{0O%Pr5U+|UL;lxvKizHW<;@WyG;#}{DB;T+~{9Qw1T=c3|
zzV+$AxtLRQl`Nxk@ob!k_?{@5KavD5x5kiXI+R_25KP}_VAPr>0aWR!AH@iNY^u|}
zu0&O^u*Sdj(}`6FjpU(&={qMyRF4oQBJ7yxIhyF18Navm8ln7MXx5>`*Tys;d(=O+
zE^h5Uvc&d<iAFT@meUK9DP;tLJ-SDzkHajTGk*Rk9gx_f65etZ%a_Tnvp%WkY#?2?
z_x*jWA0DD=-@Wi>wgWvKKkOBx#k1O&tWET2f^f07a##H)Q=kAbDE=&z86Ze`!<ba~
z=FyyZAp1j1N@Q28LdNZ6x29qrJ<J}a-e5G~&Plx~OtjKogEia_it}k?ztdsuXL&jx
zmdXtY8Mrt#zfw{q+IPqmiBl1B{{C;jGdMoOT0-V1K4PcPN8m$}(xjX>Aelc+teA<!
zB3w!iU!Be|j37G`S(KF`J9~$+R~0dDBY*DC8KnRW@_s-aaRLh?6t(4h9lzqn7x{ea
zysJxu)&g#?=x6vavtiIhVc??t(_JQ3HKnBM2$|}5iAAr+saMaByBa<j?Gk8tq+X#W
zw<>%7;dGjR{VyHaAP2VtAxHt#;2QTAEs>5-I(yRnSprzy^Iug&epFd+@fjBjinveV
zVI-Yw-9>Zg1@weg`J9@3k3z5qQ4G*OfTH0Mhg&j-cm<Tu3hgTY_cOlRspq(Mj!w?a
ze=0Qo9{LHO$zK}F2B*V$CF&Utz>wp!P#%i;H;z`Q2b=gnC>xdN40Hr(P~=e~-c+<C
zG^;!SqJ%Mee`qv(x|ODCg%5h=Bqg<5g=pZKN(I^JY1T1fW1pQ!-vCL&*GA0=rZ>EF
z^>Tke^yL>JEBnTMZ&y6L6Y|`~)F9U@kN)}fK(|~FAo@p|2X|W~p-d2K5Ds<Q(A>uw
z8dPII)R<9NC}{3h6oKjb>C=sW7ab*@o2vu<z!b=;!3?Zdt014bkRsqgOk#s0n=P1|
zS`(=A2tW#je@cxcU1?jOIhg<xFg~9uFq8L!MhvugK+S<*l}jgTjFB-_5S+vSqm+S#
z%wB7Hn8qZrVC}{SSJ3Z@yXZR=1S*QvxS+pqD6em;!<DMTV=0O^74+iEU%UclNPVe;
zP8bFRw3(FJg~EU{AzpQzWCa+n{^<;$2o%2O$J=3WFzvS&I0RI#62WKquA|l5O^~zm
zFK)c4<cQeR=8h{k%={P4kJi|X3E+;0k}*Nvu{UUBef<jsfI&vEZisxpdN>KD>KLFc
z`4<6v0D8rv2iVsO>mZ<11PWdN{jg$I;uQpGGOC1o8{*1UV0c&oU!_oAn(&g0^Pfw0
z_Fx*c-kzP+gK-7Y{1f*&WL8`QyYHay7(m3(hUZew^)dghesSIiQYHQ+RlmscSwkQ8
z$)rIB)~o{9_)w;}${Q#Z57_QxtwFRJUxSo>n){Ix=&$n6gZR2vm;F-fDCsO>W@p9T
z?gYBi(8|t&K8y1$Lu>H4*m#+AxIVoA@+y&<eqd5X_sgFpL+OSK8xxDQ`g(Fz(u0rk
z)UGqLuu2X?2A(-L+pr|*KMP^oG~*z(N<Wi^H>zi*X<<U@HU*n;an+bfiqTBJ5xDbw
z3GD4WlJ!sre@=fX{1ON$Myz=#49-jZfMb>D!R1ZV_Ac=Jp80^xn$hY~@W?(efd&NJ
zL*N6JW-YUKkx<J2vE*hl=CT@W2ilLr#tTk!5q|Joq-bQSKTJL153!ZN#gTWG3WQgJ
zghT@yZFLbohhHFHEQK(6eSuQ;ck|#1o1#3{PU<>;$IvXuw0aW9VT6Wq1&<iaY8BSr
zvs<*~&D;M=(1Qni^KXk+u*1WPkhC?kr86M(ps<Lfm!`bAr7Ci`s(nb3FHcr(h|h|q
zhlH@RV{HQtdf%m7^WgMfX44WJ$PB~)1{Sn5C~g{kGN?7w@mf_fdeJ_3p)w8(XSa%|
z2EIEwIyd-HYw?$>8iTl=4(Byy@};FeK=QJ;)eINKBNnJwRF%@Eh=;{&n6N?eqOG<J
zV7z+_x(u3*M}(7AnYTJ{;9ie3Wy&l?!U|<$VGU3UG^=5R8x))<7x5(C%(NqylS8+b
zwC|>{!}rBEVld9QBFaZyoWb?z#{pjQxKDbWq<1(ub#cHLTfC0sXkdREuaLu^2r`(B
z?=Ue*P_bE2#6OaoigIyo>hb!u1D;ZYxfgG4-tA*@sC>ko&aQXzA-<Ts#q|!8RS^63
zGmzk8clKQ0&?3NtThrl8l5G;MFhuimBhOwmhtmET_z@Sr2U?xws47U@(dl!0X(^H_
zOydHg*jqdmHFd@^^G19!<HG-N;rv15YOHx1#R}T4#{>0kTXm6xz-ET4<_fXXuzEaQ
zqVn5vM7TZwY?UT}KTCorv+U82#gHvhjPJfSHoPpvzq9=SRh{67BG9F4sob-5`Q-jt
zFyQy2rrtYHhRdru1z_lYC9X_y(5VRKP!`Ehq={e#Csi!VBeixuzH)nB%)ki`fP#eI
zJTH@R0)dOg@GDqRD2L}?oJ!X&6lBRwf=g~GiwI=0K?;W^a{OfAqzLH%H^Q)EW?pF^
zvg3qju+Y%i>SnOxIM~$&kH4JXd}_29kk3u_7n;XIPDyD;(Vn|1r%<*f2JlyN2T6zU
zDH4)yz5O0q#(!c|%V_cAl`;!jyw9lpM*eCRZA7PWM5|kWD-i`nnhN>Q+ryHS8uEzB
znQ79Y$Gpn6NpuBUs7opH$wYDjTbGj5CB?Hy72^QK>Rq3!lBNL(y<*h)9|b)MBU)2#
zcB&qkUG5Y;Ay#&4B5vW#H=^LGBOj%6UihBy?PIkkQ8-{TaPZ|2<GkiIJ>keqeKp1B
zU3#<V2hs!Lj48P`C*`IJ47SE|ZaNd!loK<%3bA_gF{I(=VwzeO;**G^2Y=n8D??YH
zFVUgqX|qa@{KeR}e@}sm30`dL`K`WuO;cum^_@nFA8%JPfCoM--insU`EBa3Bu^Vm
zfAM>~>R}_&`u0kz(h*ER*V8H?wW%sDUn!`nU=L7nZFZb|m3Nwr-3}m?N`v}{YDQ&c
zlq|wtBnvQYSBK&w{)#`?DCPHo6idIZJYJunwthxWGVs{yZ(H+Fp0!E%2qF4$pDQc=
zuxI>z#d&}bs?G6AH$mn$a+ohi^t{jK_T!0`C+g~YNX_$OupMAoWJnCEH@rddAOX(R
z?2*yKYrm!9+4*&=H)lGCcl(V3adRh)hJk<?F!q@t0WWch-<kxK<fopxx&{PczD{9o
zv8zfFrvh<TZEI2qV*E_;R<`9+xBtn!KqlbW>KAr_SlZL7v-_W*d{4ocN&c4SLj-8*
zbBw3rnMRy_u)nny1PRy{lnsJ0fYlv4(N5&?g%(RDytM~uIS!WDF276r>av#q3;%-T
zkzZwZUw3sX(!DU8^=dks-Ksy*{4{FLI`Szecn*Yg9{cKPigOVpeKCGpq0&F}-c>{K
zIJA=g8E}iw7uA92#agPwp6@!b3-z@r<<pOXc0`bVM!3Aa-s_5y8V{e}fkctTzGRPw
z-?;71dYf?GTwve}S2wRswjGMFek!ANRTdOqJAfgNx8y21y+#DQM7`;6^0KL%U!>w@
z)T3D35^ADirE>rDZFWCQ{?@h}Nd80VZpm_|GS9fHiNk?X?e2;53zGJEk&G*eQP(MS
zKC3@Ntgt6!<ErR`h)vnjzZ`1NOSyfDb^H6vURBCNa(?7%ZKVzTst9R8>~~534r^Ks
zxh;3y>gTj!{78xfF9g3%{QXZiF|k-RHte!_wsa@RO5hev9kiX6n$HxK@2>KoKv=2Z
zv!rL(Rnf!kcCZZsdCkgAT}p8rVcV!^_SZct9&(coyOFg4Hm&Wk=Y)fxj?V=MUHn*T
z<EX83!B3k;3M8G9{03rsK3r;o@lX9=YT%)n+_+~OWqH3n)gCun@ovP~sg<T5WFP3u
z??>s4oT>I&H?(!WK@Pg+WhO(1bcq4mAzaRLAIt&eP$mD1JB9NiPplBi&d(VKU7d+;
zf&TzenSp$x50FOwr)qWo-?|M0j6=Sl#NFl{NUDHR@QyCq&Xf$pHrw|FHw180a5fRj
z(Qj?Psiaw=UQY8$fwHRi0H_ql`@eU~C7wy&QS{PBJM931!UV+O3}nd0s{w@r2JGkN
zj$jNK@>pMxVcwa?Ecp;BWzV+Oz@+gu_@#BK0RmN`Sfr`!(TM&k6qy#_^LM`k^Z8L;
z_jYNM`DGxePqyZ1uhni1t*~17WQ>=GfKg|eET}P$&NNy<5%?4cGfNJD3wvyD?Oc;L
z^9jftu6704?FKao<IcH%0ghwfiwmp8J6b3y6UxZlV$h2MmNB5&bXx^Q;vIDsk0+V_
zs7WYN3=$T)0wM4?Twesh8Bzynz3;LgfKup7J)oO-xSE4VA8R0bV3a&Fgc6}gbNa#G
z34y`rHOBwU0qv;4T2{={2u~38I@UDV5+2$}s0hNJhnf=-$YOC&Kp_+|*_^N#A}4#g
zlC*kpwpSVi;&_Kw<5ei`fNFe3F)HC|8)7D=swMz@_EexT`GyOI()LU}Mh#YhPL}Dm
zoF~fp2k9!%l(H7s)n3EfBx16E2!3}JQlK(<VI%pqZu}USNI!&BhB#{OIdHom#YSm@
zAuUh7UT{l?YiOLE)SW>Ms?19>+WBb@LR8v*P1e2yOm1~_llg$;-gLCI*}88>UhK>H
zs=gY*oF3eEsRgO#S=b_A1l$406vy5i(;$%dn+h>lvh;2AOL#`uM8wZ-yzHK~&+h4a
zt^46(pulbLGVtg>+Vfbuzm)rO3wuyC$sF`|fAlm990ZP>0vyAbr$(xqGLFIn1C}J!
z8^OuSAmC{Dk?C+L+ar3G@SXE1XTeyp=?%lDOjE8!v#eHCwPoPA1E@NbTP`ue_G4_$
zyCCUX5QGF;jHdV8#6y7uoFo4_frIu5v9mEkAF~3ac*?%ZjM(`W`Ljn}6@8!n=0*gQ
z+x|=YHB^xLATVCN?LKpfp9KPV(Sc6N&*Y!;<xrs8szN^Z^CF%+t&9BvTkx*i+n2lG
z`9}GN_1r0yEZ}tB%UOQqWjAq26VUwFIXfBPo6^H4M@pA3D5O4I2<Euua}V8c5NQ0f
z^zT4s%)p?yd6zS~s7-{%#_2<CAJ;4(rC>l#_A@A!+@yUdY$KdHSXxqqU?yCt2@K?3
zO_S)mv#KrM(sc)q7(WO$x-Ularn$xW#tIKXYuU`t&&RV~^Cl5+@}7L?*|d9NdnY{1
zbr;N;|EUost)c~99gp;Xue7nc09it}0fR-Ww}<KsKq&Mx_wk6CAF?#K%1@yYKVGIx
zgI}ORZ6LOirAZzgsFFs!;-Ro{{Z%#oRK%sBOW9^CjWjZK)9>>9q|{Z0^<nA$Kvp1N
zp$&(*iQEnv{#q`40p&3oX=19dAA4!_WXsjwm&BFllfgSejLq)_UZj@8ycx|TV}fy}
zdAb<E_M2G%2jq)#6ao~ZR|+Kt=5(#P6Yuti3_B=fcFGFLTob!IN(|$0ohoYLD(eW!
z&l$g<a64-V$YPV}@wB*AeXZqqL}kx`>G?9GVr|eJ%gx5Bvm(@pezkk7Sck=00NuI4
zrNg~nq2@g*zo5YEe+kqc8DwkMH|C+k^jW(g61I`%@?kzNPQLbqp)m2}8~fkT(RLE7
zy01DjK)dB(o+MTxW`k8HBE@PsPNqnC16BWsUeA88_(W4p9;NV8+z2z@_)nuR>K4hP
z7Sil8*?^x^I<mY*Cl@SiZ3o<ZZ+g<qJdLYvE~}sH+`oiRX7v@n`Axf%S-dTDIp#Js
znpH^+Cz_%T765G|4^$UzU_bNC&uxi!&+W$RIko-_3g(FBTWdxhN+dwd91$qG6Usco
zvb*u{`~;GD;VDb2frRS?^*~H*KwJfhFl>HGiA<O`Z7<+2!{0eXXb`pcu*Z|Y9=0#k
z1wyfe`7OV-#nnpWtiJ&T)GK}zMVP)PBxlLz+~RJ9L@=IUlR`r=*5VBB<r8c`Tw?Jm
z;|I+VqK;<9zhI*&j*UuyZU2*!D5qojiprF^@8>Tw6xbX%RE<7e1qF^7<jt7-hO+#@
z!Gqq6xVR1fu-O4&YpQ2lG5<|Nd4{|-7m-MCP&wMNglG?FfLVF^_}V*vKos)H{M<eq
zJ_qzJg}d6U%lCQPQOin>v746<^MCGdM7TVh2WNi6j;JI!?S;AR$CRz1C|@ac_}yV`
z(UhNb&x&;Ccxv#^>s~-~AV#5r!pofw$(q>R7`z`;rk{g=eyhmUE&~pC>xSGPqZBAu
zHX8dC)o45ga_aAQgJZvO*X?Gy_$yK`fV{g_R(HJndm!++6v2_GPU?jb?5xoyZ^4@E
z>1H?cdmz=?a^d0&Ry2aV6PbLe@2Z&aZj~|VX6kIvS}oj7h^X1T)p71H)63!sXB`-a
zLN7~|h%_{$4w5?j>6`}`9}nue)~T6cc@>x9yQ(1ZhRnEvu5qTj)o2StnO;yvp2N@w
zg4$uP#`~95+tSN4@SpNkd;g2I^9*O}|Kq+rYSXGz5G(XoGg^CZwc2VGwFOl(R!ePa
z)Jjk_Vn&NnwQG-3V%DtHTCrylMJn9K|GJ;wPwr<Pab3<i-*dj7@B96FWgzUxu{vQ`
z>2x#uIQjIge3kHyisn6wxkb8-)Wk4H<5kKZL9ELX)RRMP*x|NQCW0;9TDtsZkDr?@
z5cm&SU{xU^eSjo<#f<FlEleYpx>7BifyY*HI!k&J8gVL?Z<3i#x?T&S$0TnEsvgk9
zNcxaesKLQ^g&ao=?HRiOsUwKond3xfVgO6f;!c>f&DN!wQ@Xh;>AT9mg?i%^4fd8|
zg@qdc;*$t?5IENDO&5#afBS*QIxDfU$IikKvgrPRPvqfP?a5ViY`>;=ZVQxB$$QUG
zXe#;;${w8A%@@en6?Mcl<MVurF5;k_*8P_OGw$P$p?}`K7{*a3Y&FP0n9;N-NrZ)y
z_@9FG7@yD#l3s@t`U=UW^CCrF94WcUqL8`4&o?5CfASj4Cp5%@WMGM@=)BaOm6N{J
zJ2QUOo>-l%57Qdy&<5rfyZ2N23D__IAM|-N+>8?sPNJE{Y}m9`JbjO_%>&zzETQxv
z-Rwv%p-<=weuE@^l|*VGp&C03K{L6Z0vV@F^WO&bbh|@OnB|IOazbn1<^V@?G@JHy
zaILC(rE1Se=E2Pl4x8icFOn4DT(3u|>>o3wIC#eX1lzygqA%1+CrnMyBAFyLo8eNX
zTjOn2tY+WMP%IPi5`)fDgp9J;d&)aM8&s#6=BWOv-gKMzB|(j4Kd$8Rk9$5-F3GPF
z`YjI?)6PK;le|b$!Pq#khG4J7o-N9T+WLjJSZM%KrA`hGZAhJGL^$Mz_75+5*_eUb
z3KiV8wh1wkrKu<?HQBw_*|nOMkGxaO1fcvdNsc!kVx6M6Q!82@s%i@IvE`g)c=0_p
ze?xmc^=-JMMHHqzK{}n4I&x!5U^(dBxF?)?E1w(yZrsYuj)MNDgZTl~XWJ6sEW9z4
zlGByEgRG%A=A=u?8J99;q1;N<`$6h0OiD1NjuG&BF#nPulp2CG*Omc~sdsEGk9=#)
zXxZ{@MQAMJ#r~UeR%3MD@MLTHYy&Gv?RslqAz{0mDm6>GB091dn`KK4=8gHpn8^@a
z$*^1PAYCM0agVX;@%1}Yqyl|*eW&5OBYNem5CL38o70LLJzQuOcHuTRJ*v=P{TlyW
zEJ4bO*I#oVxN(q?yFP<3v7}_~P0a;9%)|Ho3B@5byo8(isAsJ#X?OjAArn#6t%}Xm
z)``A0rWP)Yzi&$P0f*mnkBro2+%*_L^K%xGIQ$0Rk;bUF4O>2HS5A#ny2eZv6fZro
zo`o&nFjSe5)bygp+T^Smgo*4Zo4R1XT?_(-NRT-NiUmSBjX@MB$UD;Y{8prrUt;U?
zXai+`%<-iJipMM8uo1N!YT30N5RSVPU9adlbk-D#2V*(j^f`^lky3@F8Cb7!0OmSb
z*LCoE5J=F$!FN_e0xfq|>%9Ct#wQ8O;{q`rrtN#viBg-uSRba0!`S%g#_Yq;l)V$a
z>7?@BiO;R%^c{hZEO({imW{UtX!hTkSk)x2t>GAhi*;e<JL?*Z-fx@w-rUt}oxO3K
zMUVd&jN&J5$q3ndd-W7hL)eIB_aEP+c2ke<36?SH(NS9AkBl1#&uF;tkcS3Jvx9{K
zER(NWiu){K4NaS-{PC&7a-@V8I?J;XVv<!_Sh#vWj0ILh?T*qa8iG!T<9vJMO7glU
zJQ8vc0(8apwC{eYQXN`Ek7={bN>ZU45UIosDdMMi4_V#%nH_y3`#(pVuVXo$+@5y4
zjs|<mYaq|(nLQYM!XjMh0^;Ojsm-8Ea_xFagjHbs4sV#_xhSsf#3f<BORMFpDa(I&
zEzMe_CFEw#>Gnqaflx3qZg=2*0y!w?E4-g^7AP0>an>_Cd}#Y?R%Ipqy!@08_Ix4e
z-p>^XXRDm^-X_yOnT3dwTDx;qo>OjIak+G@sHz{BlvIHabAgHzXQrqea<bh4Uq%GY
zK(l{V9J=+s4E)pHxafK4#{gVlmIOT~5(o2&fINZx@;-Y$t)hNej<(o0IFx_(b$Y>{
zLpcr<2v5PnR1ybV8gryx0pp7OG9qahaSkns`}P2o?tQU_<%oB6)ZF5Ytgb)}mGn}W
zKx4@`Dg|%!%FcukO_R6l`oe`VHXRu(rL=vGqgJwB!}nk7HfAbiKxPYNM(b&0`bQJv
zoIr8oqdIJ+%xaf~4+q3%<3r4)-N;AFm<n8O@{Ta{(xY4u%PUWk9Q>_GG>Q$q9@EUr
zBEy3&o(><wdCQodEemWUq6yj;BXT1cLc+Tp?Z@KG-dwP$Bp>+FUB@u|7crhBa$e!}
zE>x9d(c52E@uzYi#<zRSbe#E5r57k>@GJ$qcUDoT=ayFRLf1gIh^~0m*sc}ZO;{{U
zH$I7(GD3z&z0IG>W1a>~AxF?KQp*c5GxV~&toxAH&rjpi9rL+T2OcJzNY~2yY~_Q;
zUoG|~@0LuLQPN<#|H^fd<1P18ray-bHdF}`YFGM`fGZnBp$pjDUL?Ic(~u$d+-Dzt
zKa$$^!p3U$CcLky?;|6R596R8fl}J@99!H%&uN$WJ_z~Geb!G2#+QdEbbxmY)#=3t
zABF;jQ2&V^`@E*|lD*B*xxe`HYWX;A73r-g9GC0fFLZ>(PiV$t|LZu2yC%x-l}2@)
zBU8`zfuS^;w!*AiM5KfsM;Of;7Rl$TNzl|Z>mC-A1>hIBIoh;sAlz#x%!oWVn-h=;
zkV}iz4!3(Fwf>w>|Ao5BMwE$d15~k>1p48xoRl|$1pEmGeXBf5>);VV4`vULyR|#c
zFgEtX%Ro1=i-f|?KI1vw1;)P}l5cXXQ|oN0^(K~f<GqJg^@>&ypY|#xox4y`o*GzJ
z`=6RoM`Kn4Ho=5u3?sxChu%fJWGL>>o#67vS*(1UDWN+Huc8wYfsh@__keEk`1i>n
zUhIg$xEVP&Awici?hsWSG=p=|<;v>maU3RbqlKXfnhlBC8>IHRwvo0wB3UVedrO~)
z$fihCY28p58#5+&C1_~pR`CiD78R8mqYb@&uF*F8<tW!k!caqI+j(aq|HeHZ2z{d|
zTx!|8f#S@or1g0>+}G7J9rP^E&0GOaLsJydz#Ltl@b2tIIrdrwZ*ikT`R1K`8^Suc
zne`mFCnY(Vga_9DaGjf!bC2GPfKlNchif>GCe4o2?BYp@{9j1Ey^5?_%05+sMe{r|
zvgKTDiUPLPULCOpwyDXHETgqt%y$`lgCr)7iNg%0Z2{<UmQK`5x5Le6vd3|6s_JH_
zSQkl9Y<Iuh)Xi`s+->Y6MJBRAsbiuIxIFDG|0!IjDl1z!_*;c&^mpUPbM1+)nw(J-
z??4*T_Rn@|va!|tAe}P89=qeqJSzz?FJ4#Th!SFc3Hq(!2aQfeS8Q_Bdm8Q9nZcqa
z5)eHZ^Ako&R9eZ`UEmaxInqFX<yUm<^kFx(nnmHJ8Q(i1ud%-b0BJy73r|aU7|r`!
zR{(nBV~N4QBi40sr9IXnV)}nsCnnl35lIVeULVdvw_b-*7jO0EbhyJ%d;IpX)f<E}
zTY6rTeQ%rx5MvQM@)8ecd*^Z%Dxfu4Rg>TrcVasTPgCA~O^>_ghb2I3bET(IudnR}
z$~moT%VVEg8{BU;ks;Q2?)F`54j@9m9<Nw#c)l18I?fx0{o@Js&8n4UZ%47(@zXTt
z5wtFOuAk3$8!m>N{QPL@<(n?+9`fhJ%Pz$y8f+u$Ak*Nk_}mkc`JkcGBeN>_Xr6dW
zrd~)|&&U9oc)qu3)DMVqz94G#)T14xQU^^xuF9k&-P0RCEMQQFXS2d21D#$DDJL;h
zRPlE8l>KFG_aRGU3fyd`14e^0?;Kwu{e1P^{5KiuUvEW*{eBMh6nlSu1Nx!k+X~kd
z?OV-_yL*`>T|L>;jWSgo(Ta=%`(E}_x2Ban%e)lgIrMB@v7OQvdI2_1Ax_0Sh1DXS
z=Ir5Tb4F%rdgFWVo<zHus58e@?g)Tya(-lr@_28nV0-j?82k4J9qT>-$I!p)kS!{-
z8uDZ(SL1Oj<AktrlryJr@fd}M9kb*^S?~ha(=Sc38Y_Hnsn-o*b9T5Bi-c64TG1J!
z+s6&*iiJ8;wI(5}S`TIs^DiBP2_OaP8O1%%nWDg8{KDV4H72rmF4_}A`{?FXslc}(
zch!Un#v3l#K#Bgl9pg6nobm@%Pn6RG)BG;q*6=;u7(oPo<QMqhx%H85mw+@0#(znu
zpXlQ~O+w0APi@36G-dojwf?sqdOTKBy_Ld1iIOvB_XBt<^3vCl>=D%kT?@0}^Wf4V
z&_Wlq?)EqjJ;CKy(8djHx$%m?*T5_gM!7~xo<ro%!<d67;=x)gKh9<jjZgYBID2Ba
zMks|j|4yXmh$UJj2nM?dttH@;3v?Vf+Or?$wQuSvkviCO$``wXEys7hG)0gcH`|2v
zG5^&Tmy}rsTgmq-7sx3mX_@2f=r;xHTR7>e#~-HglY`zprEbK@a@KPFUi-2UbGfOy
zfF<AZRtn&n3Uy!$zd4fXQ~f&p<@h?s>#3A`J0359OA@aZKXTsl-IM3MGKKB#3{a-+
zH~UYrH2fhzRVJEtGQ3Xye9+8iG*wi)v+@!eQf3$TgTnEbfA?9if!kj|kw?~eu;1*O
z{Rd;h7A`r*w|Bx3;<Ka^nef#;%K!I0{>P5zBxCRuiu3d?%~5Lu>D^D9wVq?KBst^8
z)w71B6;N5h^-U9=bMBZ5%VNg%%}R!aWJN<&M<UIbr_IJM)|kWCXrpt+?tM1{dm^jf
z9GU3WU(TB#Nuf_xIIUjz;XkQl+(G`2Q^f5U+wx->>Bq>veUlJ?m^@V_Y3l3P(&rpx
z7??~`?KAR7vRQH%4)APK@)C$>d)2kQm_i`<xKuvPrS2u#Yu|FNjK#zS`V`9-OEZ%x
z-I6&hi&QG<@(<eevL7x3z<2zwrTyKsLc2o9`!~O?BHDQlv-yszp40;$R4+rm^z<Z#
zOF9?>o6z~`(_I@R2${*afffl-=uV&fu+TFs+2p+7hAQu8(zfV{=N<%sM4r7}7`d&}
zyCSs~5<el39CqkGOW?}j3EXyof7=<~m)h)apl#SNRd7>JzeyS?xBAl9?U&r&lJ=f3
zZhm3B%0CRx>covs(r0;y9?<q_4Q-%Mr2Kis!(hS(Lx(-y#<kCFXLt1m(6)Kpmb;RV
zRxme@B3lFD=miVj;d-Nw+P=_n`w4pGkfJ_S168W<5#SV!?JYveKw?JrQFL?^M@pYP
zYkZI9&k$ze!epB!pTb$&k#s8q-DhpV>y^Y3$--Hv<rnMdfzq;6{$!r{rjN7~o3AuI
zLK@;WnAv*a%Lq4U`)4AWu6WgRk;c$$Y81pO5oeI^)e`ntHpq`p(1@xkGk<I1<ErH0
z#vQB8_?^h3LY}Ft4rrP8@PGmKxg~S4o`(SvOs!{n>}sM!_)d%91~<7HnlkE};%+$%
znY+YS$ldefykpcS=kV!jYh;rhqB#&wI9>Xr_XAX7JQLgVFT8E~hWQMm`NmI4!k@1W
zv$*o(7=9<?A=M})S?88S&KXO7oN5U^u2Sy7F4E+I7IjZV?&JU!@kb*iGgFFvB%%M|
zt(X48jg&K~x5<<ohBJMlcM_Ct^`5E)s)DM$f4WUAkdX$<Fzy)7EuEv@T`*`_tO+SW
zz>KqCfk;>QQ{9D^j*2JANgD;U!Gd>wr-mE2U7Jn<>K)Z(l`$MVO`|+V-xl0bfB(mC
zJC++#Ems|;{EDniu1rad<!t&*lVX)M(N~>O#q#C6<%sdg`Nm{2c1Ga!q>j60`n8L-
zuL<q)6i+HvU8iY&M|1VJeDwDPHc;)IFcwG3gg2uKP7(B47GoZfLnPrCI2syHJ0zjG
zN~4MIifx5<YMvY*joGfBL1d;P<2=WFnqc)GS*T?18%0Iloyi)#*#!+v-Iyq_gok5k
z!V!$n7}}eQZg43=1ye_6N-CSl&+dDfbBpH&W^9s>E(BNaM<e&tClnRsKKa(EZ*yf!
zu+y@JqvDMl>BDJ~Vk~-mfxD1fO**e^$6Te-z3@Dx2z9>4$0Lz63x2R$tH}3Z;pCE4
zqIW1|xg9rSkCOAhU;5fNe&T{t$U>S@pTw?gs{g?l`F9)PpF)`ZHl&;<d~175<fJ(y
z)^_fPPJ3)TG5`C90?%J<9Q8f!pF;IDTa6y8wNfiTz7PkXH-YOwT~m~OCjT?Zc>_TJ
zf9i;4B!?FW$piM9w)zAVQ|k*2uda`xHs8^=5^9lEkp4QFn`tK0&K}k}A914Jd&*~Q
z0EmUY<&RvXB<FGa8ISavyY~0U2A`4s_e@i{zuFNd*0_>_>5aW)hLFItJn&RoP7D2?
zVvIK4Dq&l$=-#v1@Rx4Zp))XH*9wkgq*TYpcYgDVA8!Vp$k0%nDgITibLdWG$KY%^
zGS%3Qy-w+K54>8SW57_5l+r~~bJaj1+CD{Z3Y6noR}ezgt2!~nf`CJ-`lx|vb{Ux8
zR}|w$R+@Rv_moW#O64p(>nh($qA>|AwC{$dOCud>M09RZu%#N9!v=KE4Q0@_oCFMd
zHH~D9eQ2{-Se#oQBjUYyU9}a=&h?*j3h#}>xN9u;8sX*GI3wBTjM||IsW|9|IQ^KU
z7;Ap!B`kQo1Q<qDi2HWNjZijDVD_-r$jELm{%Y{@oejtKPp2Uu&&C@8a43TO7($AR
zquA^|<y{OTP=JR7)rmEhlfG?erifAMzt?eH2Z-|?O&d97fzr^Pw?ye0*%gNt5o6R-
zIowi1^{^I1+e!Z3#|TmXaC(eKCkZI~ucJ%Cyw&=x75LtnQ4CyQ8?Z2iP*^9$@c*^q
zs`wx@1@iF*efb+?Pq$`b`D1Ompm8I#Nz)b&SEf5JG$uqcCo-uQ-KpPcUKH+0Y?Wmq
ze7{M-{B9qS+y^eQ>80c`4Ihjdxm|cSk1|Eo<1jm~!ZkwlcG-Tvxuo3`={i4i_N?Tx
zUi?zFZ$cLT;a9bFO;K_VUF}X)6qC?=RNt!nI!965w?78lY?GQ&aay|c>W|^yq?DsS
zGemoOXLYM7qH}bUG#v2Y=X1<`g8@Dvd@Amx`ptz7Y&Dz0VMlA{hVpFWBE}Z-NEUAh
zI?a(HdQdO+!Da`7jT4c9gu)`8M@l`o*=VJs&DhtC0lq7`J4j33D_+QKZYb+YT>yrY
zhtwdgQ~V2c9~xb(z=Y81`EKALpArm$nBt?r6&VGqa;%IgAIkJ>2}o5xN<Q#Qyy#BB
zY|q3aaL+q3ZrQAK_8}y&WwZ`ohRoWulzTLzjj4>@FaY@H!wvG{ap1WNvs7az=xXoY
ziQ(8JV=f@bB0}SrCySZXSPd)hIc{3B3;z3{!iesgfLihE)K^$Z_j2Q({d7=nU@WNR
z50zK@w4?fOYs@(lbBH(gZ}Of8^Sesr(|VKoe>Nr<-GoCh2X-cSxLD(`nU?KXRDi2x
zf@IEi^8xu39e$c~Bah^+o2kDZHGE9So0DfZLxm;3WUhtsX!1TCF~$5De1s|(qUJA#
zxySB{QNa&+j<B@b?xl8~X7i+vW}h&J8$)=wICUI{9B?1LoU^t@a~Tf-L?ude46QqD
zIL6TzoEq10CV8FlmjEn0%QgdAOzj6V8m)|r4B{x!y*K|o^0d~G%q;1k-q@Tz#?ISS
zA0#1XcxzSGcV!e^)PXgCvynGSONqkp%`@~gk3$_mQIQ%XP-J#>x}O2rl(%)l+%vsn
ze)QLn)SIMrOY+3KsMgpq!$3AY_y)MQvw+IrdGP4dzzLgO;baLBeN>{!^?L(OxZDEe
zj1@Emb)nVezv0{Bz-n{M0Q{MZ5&Vv9=CAf;)r2xgC%j%Ua)McT`MAK?h!XXzur{C*
zz8<@Y#(9Zy$S`(fc%}GG434N?%Beb%RbXBdKRm1N1y$(<vgE|zTq870hU@yh@9*eI
zM0?38<qK7NnW{4NWLh5!VMT4xSjfNluk1DCgc}BZVs%|hjn;E+{Q*(#=ihR%n#0g(
z?`cx%!9MT7oe@io@}37E`H%Xm%vm8LPo>8B;vrqX-f5-u$#Oh(=cTB3G=B_zF<igS
zCYRVMXh<5R%I90*QP1q79Xj}%gQxQ$bGvetF|H&S_TB7A(2Wbp-dyAm2os-?-caEh
zYlegy)%NDTbNsp`-OG}5l3Ha98xWo|7a)$2X1}y<rwE*tF`{{>;GScUcqKll$OuD6
z_w_%guU%yh9iY*?!{TzU6A6N(z%n_aT($JU!o3B<8SvR<#iFeQGve0juW!@mLw`V7
zeY2KLv=Z>5ZzJbiqvig!qtd^^9I1x$<u<MKO@XD<u%ub<nzE`))y^nYaWPXmFJ1*Z
zk03sAX4@LI@kZP)oF1X3z7wlzpR`#cf9}2$#2hcb(FgZ8BC+Lrp#t~HL1?NgW3|nj
zygnbW(P#!=JXIme3Pm{cCq?2an0}`wT2B<yJ5NqXA=NTJMvhRyAkFRJk?hx>*EC+A
zq?&_y^b<HI)G9dg{=S5b3bj^$hx~@t_9ji|6E?L}f;UE{AtjaB(>K=TaR48c(?=t3
zF8_|t_j3fp3|3cs<><Fxfy3&#;Y&4c(&`aEI7?3n=z50D%9M>aN*oVHX7UbW1F`J#
zQwx=E!ag|pfp`Si9fy+tuo0Fmr^9fwrlzJq*oFL`o0HruEmu!aeANT#bhUSwm%T#(
zhxN0&k19_E8%gBF2wP6&ZYAK!&VhU`rG(b%-L{va)ww47A~i1Z2=%U>|5DTbkw(wk
zKUtmKMP$`1n&z2$2_gb6i4d%<h+2k7s)IcvHJ=fx&=I6?CbDhD_d>fbu6u=~Id$^n
z*<{AFsztieXJP!nTUH)$O071t$kV2$4&M?4%<jLVZ2A%QK<5#AMn)jBKC)_1rnGZ!
zhOqKNTvE~CMv<d??zo?c?;|ajpQWhbwE8`feqS4b`UECwXtVIWy@D%hN%yzMY8HHV
zWenVH7as^wP2fHT{`&J$YR)5XjbY(7sqTDALXJn5RkbhE;K#`6r3@e|!$xO9>C(r(
z<DG&qEdL-gaD7iri^~3K&H~cFWrlKW^y!MCC0U_o_oSze1yETrpaBw#g~89>y2sVM
z#<KfVQqFk(x8qbpoL(atcvR({F`mXS<Md)vOqyxBaO<U_M|IE7$8*l_4rF5DgR)iu
zN#$aT`;C)-OwI9baenQ+o?6)TulMU4qQR<Sy~LlIzqkGzyoR)&Jg{-=(u!&gFKyq1
zgl3Dl@zfL34G8&{)qNymmAj^`AxBXqTqf_E>Taln;By#%t<=+RWbnKrxTm()ea@Nw
zB$|p>sLX9mm?tyvtTt#@GI=lfsMnIZZ9Ms+L3(S<2KORfT#i^TTp>wS@3NgII?#B)
z55RVT{bko-q=JgbyP?yZ=zk_5BhR05E~~23Xf&RZ=3mO0=tri1l{ISTJ(z>2lpkYM
zhHn;}iblyZ=L}JWwC>ACZJt=@s(z%>4FmfOO6m|%n1$pshG?GKgz$167Q!fR0Fu(&
zYQHxxMB<ZSlqzHJA;y-`Y7YC<d~ROpMU0eZ3eQMPu}@iVG7B**MG>x5j{WV2Uw#Qq
z-(;rnKDra)KFZrjM6xxWg;y?gPWKx@kH<3QQ8BJ8v|Iu5F|Z_skLW-wd_Z~mVRA^r
z{H4FvR`L4A@lN?)(trSO($+>(X2@&7GRZ&uPTss?QCYwZkOL7_c%=x90mRWka5L~N
zXRKXd^&2;}+9WsTgn$2`OJ2jU1IZ#R$iv+7&eDI!P1~~imjeQ6xC}=%8l4=Pk^q&#
z9>(^x^-9savx7X>TK?CuHf=sz=n9`)4i+YgI`qcvYjD-9ep0ffj^lw|4Ox_EAw9%;
z?nmACgMnAf=*t`ooyr4kGs36jYC}y!D)UTl-32xQ%NSo4mPSWCLegCky8c0AJUz-F
zS4_1XzeJ7h(XyF{yGz_)?JLa-A`~gZu-zNvDBAxNpL7Qh(th*WWR@i)D8^bTU{!z^
z7y!DZ2{R!#LgDZme8V#iRzW%xH2Ttuo~v@&0^d6MB|)*hg;)W_Cag|R2jbbh#tYr}
zqXZ!a2z2;sqe1V%0LSv?^;pyqkWQ@TOv=Xm#pr^fMf6|OBsl!luoAG76RVb=$xG0b
z3r?+?Ss4`&b>FTLH1sm!Qp@0uUuoH%#03P$T02E|ce3&?$Hqi{qRZS6-$*VWMGW|)
zUodANApE~a+~GD`yyTDg@;*FpH;<-2B!d?(RG@Z8dF{!F_!3@H5+cZC;hn2<Hjo|M
z(sb61XInWBBWFMBO?mekik5hUs`DBKSMJ>2bM8w=viA;yd_Go_O*I+a^^6;-h6oMu
z`ZQHD?Dh~pl7N`Ay~A2$eKV<FonJc>d51Wh)geLGOY{5uQ4tb5;&0y3O}9HUFgLeU
z7*M^IPC;bS)vwp^@aB~-+OY70Xc*;L*HXgsnTlxfD~gSzn*)Oz)~z(4T0vZ)jRT}P
z0xRa2moB9Abhw84_ZRQbVQ(I!#?RHr#SMc1Rf{b_1>`6PM6=s*^YNN%Ia^%!M4S<l
z-C2A&ot9K5!4?_5D#pmE)<+@xf<h>pmO4?_QoIJK*6=k-KxDEH!l$rYIobQrJAuZi
z$KFLk+KvLd$c;4U8Oz#97*8_fYx5!KQph16_GmeQ^nQ(}P@2!C-awgrjBHT!8jmsY
z-2bLwTCG(Cl2>J?p=#Vp1vb0i@lSq6{NgGWQl+UD^d_|z@`PLHlG*WF6(tV#xzS_w
zwFgRLO|`d`bER1xGrvlp<vT<^)-OmupKxSjP{(v(Ympg_whk*AGWg}tLk=eR`)n9%
zT<J~Vxk}1#V2h)c6&q$f^KyfMj5sy7z)o-_bj$W{88ziS7DN-bUU#Vu{0D+R10p%_
zICj_@t^y&4FNMP2;MJ+j!xI_N^*a<SFW55q9>5UYdz-JC?y)A(4|)qwfANHY{q8PV
zoP0t?xAC*=hL@vSz)I>`&tqw5w_oC){MB+IQbrZ=_)_?;gMagLbc>dyB)TZ<X`m9p
zdzii!W|S-Z#b~;B^)vly-~0s#$HCVfTDU75pCh6xVSSnZ0|tXbZGrW{L<m^%!IIT3
z;;D#kw3EmOUg|&XJ`d-QFOv4RQUbibU95L>`VDI-_5a%=gm@XTU+1LE0&-k@O!kmF
z#d{6g0ELU>;-@%|<J_*#Vl1QFZA_B1WwG^o9r+3^S6Dms_Uj;~-{0kqU#Jk6dpE`|
z`|EoLUgFpY{$fcduH%<*My?SnbTZ-p-YTZ{2H3S78qNDxXwiGTdS#Jb3&X+COCT!V
zJpm}`lK9f+uW+s}fN~)4z7mj+1n73a5583Yui)kXGdl`gQDd5uET%8L8+}jn2)n=U
z&yUP)t12HiQ!|Yo%d_nlz37VcYrQj2rlhF!TcK)MbR?CtXROTp;<Q)g=hvG|R1OBi
zS0O?Gl(KO9s_YQ_oAy;s+=<`!Ib;lZ;DPrb;7<DRbDhg3_2`Ds{1@q~3=Pl?aL32X
z2vNAr$1Aidh|PyfxBc1T_>z6r$rSRy35Y9Sp+QfAeL5OCT%B8Hd$yyNZxeBJ(%VX|
z)=$|yX)@9l9Tewk*4fH(Ti+Yc5tgi8Sx3l&UzLTw{26eE5Y>^**wQ3yJtALsCAA|9
zILrIG1hYsTq+<Xf`y>TZ)1B!9$*WJEF-#iolL2P5)vXneZ)G|y{R{g1t?#d;9eelp
zF${NP=dzTX<OGBZ#4HMCx%WDKdmUMGQyU0*H@+*fT(@!_4mkPQpeT{C`|4%Z%Xeq5
zK!S(aW=12f_7o4Se~d++R0r&5hH#KGO3w32^ZvQGcbq|vqjOmPJa*OJ5cH<d{Xur^
z3kqa|95{!+UI9O?q*MDZxcarv{2c^z%2Fm5qn-HasQ2G8MF3&x`=^8Y!>Ue2Ai&o3
zqC<&SqKzi)w}8B+1r)`ES?xe&yk|3F_(Nr96et|qbQOCd<bHM%5YA?vd96|Td^a+x
z3fGayUkoMJgjk<X`)ki<xFyJmqok?71$adqgj6EbT8?GGRc^`rS<Jn^C}R2#PF^Fc
z5*}(_Up(*WMHyeygmm7HmRf_eROZ_Ub#foS4$|B12BcvWmulO35`wQ-;i&J~Z86z$
zyq|N8Kby}+k+{&#4g)0KaDEdR;C%(AcXqZH1;VPUCV7O%<}XS=Y^B_cZPIcAr_z%5
zd;6jrzTz#o3A0mertH?QmPS3*>Q@BFl3to*!V8D$r5t3fZ(p|V2Y(SekXXhta(wvE
zFCKa}@Xoe{BSp&0@!gaDuWiSl|0|XuMD(4O*$_YVciQ><1l|EG|0{1@<yR+HmDjJL
zXBNF*+ljkPZkYKHq@4NkQjo#*Mb%a%Gt(v6F}@mqhf)Sm|Hwz6wwIMy+Pi&Nw<_9&
zR`4QRv1I$1LQlI0^^OlzdJnH?Xj|XsQu>5mOIoLAiO9tnX$``wew|$T^F)9=<Z<Fa
z`XJsD$d2;h7)J5#B7JUd!S6-;l0@o2QvSU9M_;!^|9uA9P{B32htEF6?F>Fk-$a-D
zRxiK3V=A}7m(B&~d9TcZQ;7HjcBN-dkLRbWWE{$WowQ#P1Iy)%e2G^Dw|#GD0L3kM
zv5r4h?iPPHFLS}u8DnIfWa@X0;<dxn1edFrnnRyyVlv@;Ncy-cM-VwKIn%P;iH3Qq
z|G-Y0ndkCle|=yK<b<D4uh29OR=s;_-N@}6A0g<MlH8Rj6Q=-mja40-E15Ze+IINv
z#T~2%P)@sTbNcP()@vNr;e3$yus>wlcu?!;hh<g58p9eq7r^y?8b1CEVs5n7236Ap
z%`{a#8P4Do@^=nMWdu$*lIZTY5hlN+19{&@H=yxYC+2S_HpZC=5R`zh9_0%Os@e4)
zZD&KCKhJb-y8ofX8|>pHfo9H=;IPG{-I``|=bXA>7F>SNgroInd;RIX<B{J$*h;1|
zilCP7lga)eyTrO{_)iy#guKoTiv`hkNs+c}&AT3e*sJZM&|#g9id55!<T&3%Y$NS)
z9Gaunb>ch6uR9OlOLGWm+>4XDrOErkQ3Q<%lq1vUN^dkEVS9hHG6(`|NX<-^dIE~p
zQW;Q8e?4~X$;IqpR^VYOc>pr81u7-f2ihWU<-1SFzd0qZ?QwzxkJ~V2<8VQ!=%>4P
z*z{GE!Plx)r)M?iXC-bkDxWS|P=j(bqVcvZ$m+KF&`Y8N{C1DVOvd9WOCLi&G1xua
zr(mP|3$phYeyCiYZ{er4kR}~Pt2C5!WC;)rhgSeC`ezl!b&8KZSf=s#X}hRign!y9
z9w`xHXDKVI_V#i!pB7h=d(|$LFQJLu$ZGwhb4h8iqupNn*`}JyC?#n*L@)rK%Eims
zB*|V;;2e0*!|h>cgv2zcxZEvl_?=9&+ao6<o}D2@*8J!3?y};syma<X#)vO{r~k6u
zN4Un=RE1+KH;1Of<<va>7J61l{_G$7K%!$a%^ZQN4Himn7p<$dBc;nZGg7A5wJzP>
zh()KrpTiZX^e|)V24Mq_i5$tV_#4jDpXz$J6@5skPsI4pyqTZWF(LwEb$P3^IgUHV
z=`<XtGEEZPhBVWsU+(=h!_0mr9LMK|w~+bx{AbF)adhQPt1nh|=MZm8Rdo9u^zdoB
z?F#{nNzwOM*-*Cb#qNAc12QV7KlD+gk`iq`9;ool+TlJ{Sz-7$i7-UgDJtMzCv7}j
zD-4{k*Dc&PiRM^QS47{J>c^32mK5@#l43L5=+QOTdSkt$f#~kmiXqL^rcX_UblSZo
zgBJn?p5XQ&(D3L}Bs;m&Ih2XaMgA3IWGBBAgzfjX!ib9fq-S+@H{clT+_*^1QJ!Fe
zOS{NY6JVu%-}LTq;zsC|!@%gp<PbdOF!M*y$NzE7*ch>e%2U}HzFbkmOP^AQ?%El!
zMA0^nYI7#Gsl2@om#v1f06MdOGq(=B`LKyNT)C<ZoVmxC%7xxB7Y%!j(f0<JS9Ra#
zk=cl4*;=KcyW<mq69a7%jtN-$9-RfpSMZPGMAI0AYAjfp^98F)vGD0BuufX7PA2WU
z7rR<s(diDa6lSx<AsI|yx!<>(Au7(?Q*<j>`wNJ+JOefMuOldyy^-Sx>SDeJbLzQf
zcWVHefN6}?4Cb>%d_DyGh2>Pb6KX#(hw%0Ykd1|1G(;x?wob7po-6QFY<N;#=U$A4
zg=+3QQ;SlkIa8(t9-ie;2ZsvtO}ogB`Qz_rmE!XGHu5gt%tk(_l5H6NVa7!iono%Q
zl73(=omt=K;K8S)@t2hK)q(XrKd+G7qZIQud{b&UzI3jcWzod+cgRXdi;&?S(*r8>
zR4Y)DYAf^^lAY|J)zCsWxid4YP!N?zdk1D81oi3=*wYEZ>NF?hYAjK3h*Ni)ImmGK
zb~R`k6KaQ~=O$bY@;jM}-YDYDo#2fVE2#*?p_;|TPvf3jE7!f00%SELmV(!(!|1ox
zff44tkwp4$)if!%4n7SsHl2W7%5b@l<#BHo?U$+0QhI$$@{G6pg?WlTh#CpfEJVGu
z%B}@Ft8773V6Zbo55|OG8v1E=t6MjdbVrWH^Db&<Y1LULYeZN1G#;f#rY+Uaxp$dW
z^2<-QZDgiSN;d+JGojc$-v{uB_O^*iRXtV92*^h>+0!&c4++N$&tyqcxDAo0$?ft}
z`p1{3zbEv_jj@zOa;MR9a8|#VYowtkdNNkBWab~uQX8SI#%%C4N*8Lkc2M(?wHvwQ
z9#qu69aMdSK6ZC(&yl97iybX@pAI?(uj$}ZbK(8IFv~I41di9c*SHf>8wbTl`2Qs~
z=A$q8#E+6aPP4+=2o<f+1izzPcFu>%0k&=wr7KQdJF}7wjvl2yE>{Xw95?@S%Sm?G
z4k>Z~3gk$4xn8UxBe}h*+=TECGgQ((G(2u-1eB=uGC0+XqXGuaC2(XDki3|*Pcr+M
z3`O)qw^62U#?MYp<Zy{NzFBxsx(Z9g_E#VdzO@pgj$~h!DnR9y<fL9JeBo??E)oP2
z=o{vvSZ7F;GDe_xyqch2b6$-yIq*G7>~koDkP$T3pxGg*Zz2WaFKD<8go*A>G+`o%
zUppXJMF2C6D-`2MsFfA+{@!rQSo%9D=+5w0Ia5Op9pY53Zm!7-s@t}MD0Zvb&f77#
z3FA@4nBh`$f@85EQVIPi?AL4^SWmpeDe*&ooP+PeZ5WrTe0o10$tHDhl4_w+9>BX}
z^omMv_?9^?=iG0d(A<a-Qx$<(G+{V3-O;4H8FVXCHwn*Kc{xmuvpjbOgPauLg*A{z
z-j%O$F~XZd(tKz0$+fD%RozZ)914egG=7ZlYtc7#%K;DZBy{?}Z_73b=Bc%+ToH~(
zkx3NQRXeUmvco)gS&9TlNIQ+N*9CNRB1nib&R9NjjI;DN|CwmzX6Ty7%~8-8tS?xW
zlC2AFFXAqtniP+CBb8*J(S5#ud9lCxzWv<s9?3)2-cH-!6c<;d>h~TTZgZQG<yWEk
zpgo_wGMPuBahZb&U94|8D|s$Yd+%f-e#VX_F8%-v%YL{RY_ytBV0uK+;m<Mtte0FV
z2#ueHPE-cUBRsu^9-1y^6%5fWKzMqxUQYWVk3DIxh$!Mu!n-|LO}1gl0gwmtHjlkz
zDUu!;j;Z7g+Y^yQ+=7x8S_93d?dlZA3giGnUa)4Bm2H;DygLdq7kM8>3s*$CjW<F*
zoB6+etxDQEVYj212z3PL^G7aJT#Fe5J_(8N<G4tPMp2cJE1|$uG1&Dty5wKNj(tVr
z+NW;SFBMal`ynUI$KY>127m4Ko^ttq`9doH;n}*#kk@&COxM5TFQHcZb>>;P(`?)g
z+mjtlZBC<^%bvI{Cmg<`-i;>Tm@(z|Fz|M-vyncktbtZ-u~m;*zgFhG&DgN%OX((E
zHf`V#r)RT~n?vK|X30y=xhAn`s4^sj8~iyf2m9bKm6;7dp;UaI?^WHDURBP&F#jf1
zJfYP-TM#Obt37@P-Vviga`7EHse(p?9M<PqLCE+U458z+V=JELhF?%0#(4@|$x0!L
z*<EhY541^ixP2H9M_SU#4Rwoc+51}#m(mq~*oL!T!=Hb%WY!!L?>>Zht3P&&P&(8<
z*QZd6{oNlH0CF($Ke<1oufGfz41Eunw(U#MpVgvcpU;kpW&EMajeH@mHZ`CvYpV^`
z7od+aS?RWS(N=KplH8!0ihA%R?uH*yaBEGZ>(4u!nPw1gS-q@euZHqr*4+vr9ocY_
z7=iyLKUNRvimU3({#8NBz|uzY0w=Z`+SPcl+}=&YjScLDdq{C`yYg5Zt|IZ^p|wgM
zcvVAew^RX&a!sHndt{>;u&%xaRabUA|Lpm&y*+q#s{25AJt(2hzt7kdHxP~05eqyB
z#nM&8w{3=E-Gjh%N))x<4`kQJEob?d6ui(@BiV=WM9FI-TuNFz_6c3}wVd@Iz}+01
z@1?&fXLGnIH~u`R^zkzIJv+i~r4_vL;ZBoX*YNkc;ZeyLeeQL2PdoA*VK+hiGR{Jt
z?#!~d0?CWty+w!*oLk6#@YLic-teR9wEn;S%0wt|BW_MxKGF`@jkyT=mOHJEy)N%#
zX_MW=SfUeb$5fFRNHm=C-3uf#D4i{wd{p|+xYsV;cf?qQ9|TPK5#bvTwmff_E6M5n
z$BcTO%F9TZs#Whe_P>cj?Ct1US>F>_(RBLu?C6Lt)mSyfXhO$7Qd<7{3M2v;EEu>M
zJj_hT%cTc3QMd#ZU0lJ!Ilv~r4s8pYEB!r#m6T!qr}Q`bn@p`7B4Mz@rL>&1*bv~C
zUooc@J4X}BGz{q(WquO9rjqpM{C6#Cy81mdPX7HW;b#0b_?7%e(&rGFI`ZK&(K+B)
z-h4mQXm}MajZwOMcB9fn)ZY~fG;IOkNp2-^TKYxv8&)=|0Ze_)Khd|J|5PVIz|T_M
z_Y>U*9U^VN)j9C<ws#(wkTq98h3rsFpgBhFk;?)afMaxi0~l_wl<K+PadBHpppRjz
z<eETmg6uQDU-r+vy|v0;?KjvcT;?&Qz&^~M^xbssxj3^i_RqhvlHTCkey6)SDni$X
zGX}$_Z_$l9;aO_S=7q=4xkFQpn}-6`f_by6hw6!3fnG|o#qCMGM%uk;f=uR^HdTC|
z9MNOz76|#H@wvv#2F52}v>k_Xr;wvWQMdq&<f&dWmtxw(o>!$^I&!OZY{V0cQ@f$M
z#lx5*_c@Z|H%UZek9CaE$i7pa>Kt$g$&d+84l%}v9!H_`6Xel!bCDbG+hpez-|HF}
z0%vQ8z+9@u+qjUlZJqF?Uz(poup7NqL+hV--+`Pm3NC2IzAU?s{NZF#x%QX5{i;-s
z38i=&bpB_&W<~QK`pf6l3gVShhyM`5GSb5rFY+kVZTt3kHHA^nmpNkP;ljo4!WNt8
zIX8w@g<#U-soxQxLi3kgEvcVLjCeZ1#Lx#aN<0sFU}(Ck$g82fd;$t-aE-sbQgupJ
zD>FX1%R_kZlc~b0H!cubz=I~J)vZb{8URqLg(>Hh(GRX0gP2@Jzp(jiW6uZ43teYw
z#p}n!-q3R$;={7-^9%CZ8+pltJ(7XP7;P1g3Gw!`gCYut)!q-eBTG6tRRSB-9}K;#
zq$Z9-rnjik!0Ke8ywhE4uyLDVr-$GFoMw_Kb|zk)=#D<$cxnzboazfa6doqZ<#0;L
z{|%Bcmi$9*Mm$hdQ3?Ct5PU#x_ao22HJ{6W6=zZHk~j2<JKvd$P$dMy#b82eaJ>V$
zUv-`Ib5x6Uf7cu;vW?d5_7Z_vBDs8xA~qoY1@Tdv(E5gRBElZpqWff}uj;$_hTKwY
z1`E0O;T`WJvD{CKH#gB}8v?Z?FRwdArkADr^vB^DudRN_ZKEhQC^^~k$ehtT@&uic
zR|bjyK!ooHsgVvh4V#NKlv(_aW+G=FrE?>>sXt!smXo{imcA-yY{YiE5MDhBYns&Y
zBz)mwv}{FJ7junBrW6?;%lH*|uHflj8$TJLsvZ>zL@0e*^dkO2U9coBWH!cV*}%9L
zPzC#FX>-2j<<m($C)g;;byFjF&uUYHL{fM^j<08-44jY(qX~11$T#CI@~jT5jzJ`g
zKyzPx3qi*ADsSfPTOZibQ^=&pwNhzZ0_W(*BW%Gg`j?6Kh>>ltSV>zIjG^m^AS*gF
z8YAVu(WO0|R6kQHWCgho&;7r5FA4NEHE}dKq*l4QTdG#}?#a7lH8ez_YN8wEqf2Tu
z?2xM2RSiS6m4`(xnaNQMQ^<PAY&uegl>hPs^*bPCIT@|jRwTtM=!%nM<v7=~ro0Ei
zP@(I=i{(i5Bb_evOSmgG%5966&iPHPtVX6@HV5yOVukT(n$c5u^`=^O#j32MAh*wr
zCX`(hH|>UVJHQaUXTNqH?nVP**#w^4?|tx%lCvO%P@j?58!jMyd1Nq!OR4d{e&hls
z7Ty8lOQu}j$sT~KS@eA4&zb;bey*lT*i)L-mR|MjjtRmGg@I>~4n4g1FQUmkaRxR#
zSgn}FQS&Vg4?;vY-&{(;C`!`K(~XjJGY>NOD$vP_!eV%wGD360*U^uJSrn9==?M&l
zZM##`;|A<92hm93X^Qo8M}4rdEc2qUtUgofN&|V}%Yi$F>zF;r^%En-;2GEhk$nhM
zGbX5Zj>6f1s_0vRS2Rq@kBoKkvFtX~1rY&;6&rE8qu$hvCkw}?Y2vU{E-0JdXs|jL
zBY;skkT42-$W+XT77DhgU%o4+BLMt+8ohI2>A9#0XYTp}ahm>P$oQXfIn4qq2ezU&
zQHlCTYQ-08u`HVaKjUX49xKwt`z*nZZOB01)IEWZ(@w^H3|6sKFW@3VUM<_n^cxr#
z*=|H%P)gZaZirUnA)@Zs5oD_?_DxVkZGz}sy?D_E>r2R9==Y<g=~M_E5Mr{^v2Drr
zPuDdl1(G6;%idwtWQ-E&rXo^6S>fwWS6s$4I^y|bU$@O4E7Aox+Wz!kmO_N|I7Dr_
z9g<Gyduii-WNgqxXX9Bj?Qqwa8T@{F2o@WMsITTdek0|o&UtWm&1}~D^Xgs3#MCEw
z^>TcSX*;oRQx7{v8;S)Twsb7Ew1j61$lV)_wT!`S(&wUGBhugM<W&6&f)x3Udm?Hh
z&$Co5dO9ER&)}7Eb3H_uQyd?wwxKHy)JX`XHmD&lJPQTZdV;g)LoiOLEVY2c#v4>K
zVnZVLTqht{gN8shd&pIQWYMc86{s4P-=6q;92r#2x6*g<>k{w{$6x@{kYHwDLXB!T
z!0_e9mKpgA)i~$*8afm5_wfRBk7KrH!rMx-m08NG@?%~-lK*#{BbMf4s8D%d;G?Fm
zeE{=qFE5Xu&EZM4a2WU+bw}J>%i;y4I+;-i+k2&VXxtiFRxO)WBs8Eg-ykNkHp;<#
z(4;kZ{q$Gy!(z_kq&ke5yN@sIMpC4dIwbvz;_l2EB`{ua>+YdCyt{oPuDR2Lmd)i2
zzoyX@Xz=s1Y;=*U)>`3tND(DCTj>6rS^fexM@okSugfHz)_q(Uc;c)m_$#0&J_s&b
zFa^aMM=$rChS+FL4ZYWCVgym*BX_JrK*ludwWyMMN6rdNs5$6RlO22iqxL$w;e&p*
zZp-rgsSNKkEnR}x>r_NDyIY~ECH}1eUcCB6xAx8SgXzrb6_|3hry8*PYmB7n>z8&Y
zN18CVNaLl_Yx?#ASM1{+s^E>=>!=C)7Zxo|T&Ny|S^|WYFF%DemGpoYr)hs5NN3;a
zaH;JhUk2cv4|=nDV_ugh9yC(%^{-dXaqJM5e*W&Uol4w32!W`mAAt7mNr*ZA<E_X;
z$`kA!O(;AL*5KmVY66aKw2O7iwwV)q$5I`YGd13a*NWs=>;V#&xV~_K&wVud<{>;z
z=EcF{ALA<r9cjzYqJIP5Tp4M)V_Ab(!Mv;Quh9Q*vKGKZ8;}(x<oPcMInuUH_170L
zz%AQ9`bkt%&r@6tvg{GB$Yed16dSn|Qz?V3Ra_nmUgV~YXsa}jR(ypS>`G5Q0r<d*
zUw*jWYst0qZjUaIBW;QA-xg|l;b3o|cr4A8($q?@zn}e>yRyu4p8uZZtM9P~f8VB+
zGPp$qpS`-#*U<JMgJ{6$&B54GGyLmVp7YDw1F+E-x~z=qx=5vc(9yNLzl!Q+^G9ob
z;yiZ~e&~WQ75OGbtCZpMwmZb9(2f;#q#*URd7Bm9s`-<<k_kf!If}<h+=bgYCiBM=
ztJo$Uq+)A;`HI()lIi>dE>E6Zi^XH&yyTi=3cBKDWdQY**U~NV6g=O+tEnk!+QZj*
z*|vlFu-3>y#jK3s+1L9m#-h6YboW|S81(Mh<pSq8XaCg5%&S}-CZIpN7dHUy)uQ#l
z-sf6tBo=iqN1pu81S0j9Kw@8qE!R<Dm+*e*!**kiyO@X6k*3yGcDh*DJY+iyYKcJy
z)^^U^6)H@45S+wRKe(zDGJgv!&aOFV?G1u8RnQVm0IEfLASMXOqiJ4!?8D6adLyo7
z$a~hbcw2*U>hzhysCeLm7~NTfW8uF0nHneDM8>LlzG@`YrzI;E!TzC41z%e3GrI7R
z;kixlET6+Oriv%YfqnZymgC$%WaoF@AHivfspRU$%1L+Fyu|utdg&&5&jKA_F>5U{
zvUE-pTsQ!-p=mu5N*Zy~)H|U-h^BGb4F8_{{C9082YIiCF|myrEaZt#Y*VXu+v^#S
zYpord%X{}!2MCUt^k&0e+<}L$HHNhX20Vv9SSy$D|LW+1x$T)?#b%c}JZ>09-(Lf2
zI^<H9Q6@|(PDNF*q65`Rnyl6_41Yh*JLQoN5waIFcnGC!PR%RyTr%t0{~J4mfg5Y*
z=e%0G`noSJ=bD*H3_txBjIY_Vdg=7Jc};#(1ve-gJt`^0%+D7KdAlN_mLdvKV?ia9
z2uJY!2ldrt@%ct_zX!UG_Id8@;XUTF{W9w}IR0xk6=8e-^Bz&;?Zx~xp`DtOkiW`)
zpZ;6)MEwHT2M^mV+&V0AY((YY{q35AIA3!%%A0YL5b}5lj&#=(fT>n}dGT+ml=6?`
z41@G^z8j#0IKK0};=SktCr57)<<Wu`qa-Pnp&uj)q)*pz8gbVrCd^zpW=n>yy8MDT
zEHr1^=S*4r$5~Xwr&Ri&s_C;rmun?lghl|)H+X(cOmH&P@wCuO<ryMpds2`<yc*6j
z0<1gvcjQ~JoUZ`g=I0M$wg;(+AD^@Lfun78C9ME<NSP==7wjV@!2w%qz(2dbb7ulx
z#5G&y*|u1&e0Y<A-*1X+CVs4L((mAj{ln&?Alvcco#6HOrAQjf%ivA|;5z(Fd|_vk
zrf<9vG59{{m=~Rokovg*%%sbbuu&UHRR@hA+!sdgWmQY(9keq&)-)TOs&-2p$B{R}
z<mH5a4fuS@gVoIXi*zK7XdpCC7B=b4$3RWSVk;Z2ztArSSxd4Fj^$tsyZC=sILy$0
zw~p79Pa0?QPOnLwxoT`6%QIUNpV2XzaQ2D$qJq-Kg+y&e8Gj3M5|8d7cE_k4nCn+=
z9U~f~1Fy@I_MZa0K}%(T`1VuML?~2MhXr&tZjAeo=$qSiX1Jb^{ds}s@X`ANDAVdp
zF#|yxiiZZ#3QyfTPpju}2*JDw87E!%`3$hpeG;p=6AX(6_&(1j&Aoj*=tACb-x7!1
z`K#kOnOJgs6LbyV*`W0dOIpfsBa&CNe>g)}Eb<H(b15I0?16)){vHB5sTLzHZ_Bjb
zh_?+_teFqX8N$~D=YRw9fh!;A31`rKgNL%LZ}F()pdxujBkkxq;8p)P^1(-c39(*T
z!70QJ{coYgT^vVnjv1G--~SFggBHnoO7ilH|ByOn{57|GbK_H_^Ifns`I;NRqA9Kh
zR7a*7PO%9+h=0LrxiycXLuCMf(k#`nlmUfX`vssG`8ydq*Cc1hXwp2f3eG!Pe_;6o
zf@&5S2|4z@i!M@j{d(awjlSc2f4(1)GZ@Cd)KZ(b^qd@XO~^nR%pO^jOn;?Py-)ua
z_0<&#A+NPjn#FK;h5_R#+{ciqREFYSmW??8tny$ETTl-pf#K3*1J+%pt`IOMfI_S1
zp4qbO2KRd5e$NvH3Vm>1)jVLbe9^kKr2FfuIbc97t9U-A1F-r&Wp4@bRF5vG5I2pJ
zzrv|xxsO}+gZIk_gG-2ro+%E^%LFM)K%@7ra)<w>QQU>=!WBhx`z?vFN-don-E)%L
z-pB}=U7wsb4$dUwKei4saMG>2V(?$`PXaM2zS_v%fTr{v*`f5>4Gm`Y%>P5vxyLj8
zhX3E0kYm^w<`i<CVw3Y}<eYLoWfPLah#Yc0Gi=U2<}8vTatKAjjN~j?3OUWGa?Tw3
zt>5?i{d<SU9*_6l_xrxD>v}z(bvb7l(t?O$tL_V+aGN<hx^An=Z>I?2am)T6<?!av
zm!6k`-dSw{U$%>1PRJmP3tC}Du=i^%wp|a2&*W9$pNDI6E<W3yR|OI4opeB_2$mHg
z?I%$(*6*Lc9On6r?K&s+MRDF?(UFMue4$-}G!n+u`*q?arKeD2Ala;OE^>h_DNcvd
ziU1=s`wOChU|PlZXnpZ9CB+y^_h>QZLH9DIfki(G>hlIywGoI4VZaatNA?k>lS$J{
zpiEk*bG7s}_x>xkUE0@&NK)eKhN)6g0osHn;f)|gkoNYmD(xa`YvNv70_=mC%3O8+
z$FS7@D5%tTMB7pJqD}^2hXr0yTDngM|BtwIcQIx^_oES@u@i8^Q^yY-NkOgDGd$HW
zio@ahIEUq9Uw}NXqtEzy{utyn9tE=g6jpqKzdw(D8syw}FRm>hWYfllFcOR$PF1>%
zmlQ}*Vn#>?ElX0NOf~T6crmRNerv_ZH<=?I@`SsX80}abw)qI`I;y=;Lh%z(P%u;M
zvlFU=-zh>a+rU}g<)@c7pE`mVI>v#%X}g>8ej5UeB!^{jDQiDE0pevPmL=77<0Ng#
z_-RM5!7`~Z98Eu$-P*(~P_9=Q6=HaC5yD0i_@TrQSv0&Sinyw96!+u{1<c<wWXikZ
zFJ2C+j@9<4eRvlmlCD^ayo#9+LVO+LC6$Ehmaf2m&E+)@xrC8Ncsa|PTdf@3AG9WJ
zO;?$Vg9FB0x)VNm^S#M`LMJc^S0Pi6O1O4T$GyY|pVNfvHWJ|P@Ofr3Ii+-@1h8Bj
z+n$Z8U^$=bDRK6GCigp@M=Uk;3``;aP=$v~7s)A<YcB@BCE)kw-d&Z6%x7sRh<iL-
z8pl_T&h5_dld5Mj(7*QI73ZMqIL&p$qBLE=NNx`GSH4kRfJpq^(r5Ymm*~sESDeC>
zW;iYR1~zYU_7jGZId6v=n$*QsDyfV*JR1E2ePT~v<@uX9)FI|@D5i@Q3LEGke;+nF
zNrB=(Z_HujUJ_@?a>M!+C=Z({FTV~A<5&t*oXzT-0Hgz~c&X>Uyv&-`XPMLuYmlwR
z&nbm4$jhv~7~((4>GA37@Jfdq#M0XM6UOcM`H~t<JHbARPy13^UbzCv?(^7Sbn(%!
z9ZWM&n;9fh#LRzS@watWQ*A&8d^=MRE5&yfBA0FLiZ0kY1+%DCJeh4@M$XgmFmW}F
zM^4;$hp`$LRx?a?H!M%wYR%FUw^oxaPB&1PcpS)8h>=+*X6FaBYB9;Xf##S8hwxwc
zPeBF_WW%v(LF(eRiJQIXt?5tR#Xs&gXf}!U^l8#GD1WxfM^$Sr{XV}Ry`9fqk#&&w
zb5r2<iiHElpCp#;ZoMfYAfBYJ<9HA+k5w(nh%r6iE--cQl62J_B<Uj^Ht7(AEU9`y
zy$hoV$4U2Me719kp{wtKVNqOAWKC7`!&5zTy}mCwyzv-%MSW{oCEL+IzLolEMop#?
z!0VaJ_Ez$o!1bg%&`4UN6Bq|u<|K_rZ36m3M+4$F>&GzG+@JtWkKN+EpwZlGYad`1
zqcKWB*K+eJZp&gJj5CsQoV>MtoFs*T+R%Hs<QJfGNJg*Qj4#W;l)RylIfxJO<IWJB
z)f~W(g;RQ6GG0_{=T26LGMLREzs4n4gk=_N&)E?z!j#iTQRTF!?x6*1mq8G)wJ#0c
zSO}NcNq`wK%w3D0Lhm*&95Rgquo{rt$w5Frz*{9HUUUf>*XMR<=IRJH>3$?d6hP8F
zN*M*P&{YW~=nCmX;iQuFj|oQNCQ*3nM*_>f!h?gUSnd*~&txJ4cR5@5Xa}@_w)$7O
z9R5-&mgSoWOS7KZfn7<%(!&gsh2DCL9uf;MD1j_bQ;>LKHi|DoJQbj!)5#7Iiw<Pr
zVgbNU5A$$CrYE3I)Ezd_-S%arq?EEV+~8dEB}lpLa8Lt;9)_>gN-75-%*SGaYLqLE
z@h)8%B|xTiEKA8f>t?A={&M!s>jvBW5D{9)jZwT_esu}aM0IGigRC7g9Kvc`Ea6q*
ze2|$T?Wkx}a1a}HYL?ZPPxFYV+02P-k|WnPlJ(dRavH(hD!l#v^Mb;8-`MF977h&g
z+387A@R;9yR*8uD2lX$X_wn9SrW(cST{pY>gQ9*@M6BDHvIOv>EptCqe1W2l-*Uh)
zGzQIMVY%AXeM4&SuN({kbepr9{k0mKmHp^A>x~><iIsUkY?~tUVM5itCrE7+OlHTj
zAsTqO77rF>Nom{Y>4whcy1Sl8H!#_C0j}TX5$wv;TWoQX?6T&oLM9-Mexf;XwNcCO
zv0LqC&gkKeQKcvf3(M3Q)mEvMGyqfV{*p|YZINr>JP!&51<p?`ZPUwbF3E~+(LokD
zoF%h)euL#siO+Zld|~hiSfDv4lmU_C#Zh#GRqimnv*X~q#^h|W00jkRS0u5`C8v;*
zG-0myYrdUtkHJ8N&4ie~4NnJ}8>6FPkI+9i#ePh<9DeNnqKyfNaTXCf48pxHnh5f!
zvlYf>qQnH&CuoZU4?n$W;~-$L5E9$FnvVzQ%yIu%k#&FdxePUu7wNeYbJ#1N&iADo
z)za|hs)b0f_s)GE<WIFo)=76;<c33dgK2L`)4o6$#)oAm$TVqHeHmVc;RRCI4@P_&
zN{&}RQ?#dq*`5QVNVzY<%{9gN&!Lx6HrmJpiz4hNdMC+35y#_?1pS+T7*y&qR-S1+
zOf!G&d?EitB=SLIFGlgGdO#Z{6z87^I=y`TX*CB<Y+a@q5p!i$J55(#L+KA89Rg5K
z5`WIQq!h(j4uR@00~Y(Cd`Z19ANE1*x^qGO74<`}GPz3o(L8r0m(x>@rnKj|@ZB?k
z^Sm2v%oa^~Lvw-RtOQLfFMVI_4&ciRW#ojdK*<Bf)yHGWRRKcHm!PB10I}qQL?_sl
zDXAqW2e1gb#t%s`Dr6N5$_ybpx}uAf#_x--bt=m5sruowXaoGviA_OlgHoZEk^z+I
zeW+A)5T?>)9mNdtSU^#IXwf2WJ%*YEPrU{xBl>`%vYk~=W+w_#wuf>ba<JD5S-lK0
z3!3E7f5z&ufe^-*qB${20lxF9cgv0@S)z050->Q~o;EJ>*u88EmUEHE<jNlELqa|W
zSFu%yb{QeNgrpF+nZtPELmPQ73#lXQi%(#CrMjBUKF-seYgP2AT!y*`d9z_NSERKY
ztUbDUCuz4z=A|I;Cf$f1ENFQVx;N{hGR}Cy-v_8?dU9C&*OD(%B7)3-PxAZ9fkQ<8
zxP*y)Z~J#chs034%ub%lqdrHB9q29IY9xI6Qg0DZJO5de6svM-D{MFvzyyex{LeN;
zx<{orqHU21KrgWt0FaPCGA&bOrpI%ZNb-Wf%JyYcW=A`Ze{4|iiiV8#u&ZSKKDBpr
z{|PqULKS}CNFAeCtb+${ds?$JmtIUSB5Ax+e|XrX($mshol7?=oyuDkFV#fefcP|T
z>)A*LZ7%#W84(os)}X+iuY~&<mNd&8+l<Va%nYW!ilGg%z~{o<dt;OeE)_O}xQgwL
za2&HD$S)J?OnbF&ekv-AFq#Z!E{xBLxWPj6<Dxt&z9RzfUDgBt7G1<Mj|j+;`pHhe
zts0!BxEwV$mAI=YPZJ9(@e6K{vRlA=q#YH-IT@Uw{svYqb|;_8gB0N!MI4rzj*i!V
z#!aDEz}!KZ;xB7s)~#i?F{z)J(J8b-<ag8zJ6GH3`TR(MKmD#dYOLbB?z$qCY8SWN
zR{`sMi=nbKitAd}ZVS@;2KnK#^v&8G^c8DIb6-zp**#Od3BHRwy|Zq{fKD$ytSN=d
z2^AKXPd$8Z_P3V%l_?#%HEL{>w~RRsa$GFiV9d&G>|jBC{8X(&-TUw^i<QFqy~Ocx
zvCwL8T*2LqERPRHBQ#tIpIy~7ZUzLd9cj>v-@jv&H1%rW`K#Kv_wR?zihbPkawSHB
z92mIrZirUb@=Hdx*)0{_kK;}am5p;M8x2+GCiR@YUHLXvxPAlOnwS1?w}@B-7B98E
z#mY@tyV3Y*{SkI+8@w1X`$v#n{>5!C6NkQ6XCGlGOoNUrNNIhYpDnMqIO3<LQH>Ll
zaX82Ojl!yCj1Nr1K2GBGFl}@MuUP(z`j3-NMRc^Ob#0nZ%E5Z|h|HaoBD>u_9g<t6
zElc!FXOu<|(`BI{MMg0do&HZXnjZ2`OX}U}p$86w{m+|+ZpkKRX?{7lO!(03Ve%Yy
zOhSwtc3qOwJuamB;a}3zlc)D{ctRMFC|e~MS&PKU-fWA}?tjT9vmkpi+kLU;vwG9w
z)X9Va@9eyp)eWFcm^bIcrpn^EJolyz$2HGy7wp9dp<<4_+s%3iU!l)T7SMT-6AH6a
z3a4My9Q5<6%-8!hkKwHf`M&Mo=x|?CXKu2dij@rs?bBNJgka4<k%WCCKixUP7N~s9
zx{i1v$hbZ(cW#xr??7rl&x8x))@n6)EZ`>!4Ft4LNpvTj?4F5@WXE&xO+-!BsIPM9
zUVv%jieO|7%dXe0_ff$zaDmo5zjm<2s^f5$dh5*t^J38KSbzV$ZR7N&0Mp&~@)A{w
zgoM{i^BP9$JQg6?y~@H;N5wo!-$;8Dv5iLG3;jI!`X)%&<FaMIm~AMmVNYF~q<Z@v
zQ?oq#McDi4+*FmY&t4l(3mO!*R>WbK$BaYm3W6qF@KcNs{SX_z@NV&x&##q_!roZg
zFM)MjF{#T!HTg@h24}LnLE*XR?ZAL2^}*#>i}O?xt`|k)Qdlnt5}cfoXB+DH6*_qH
zJ{Mne=7vtDd6AG!3mNnFa3ZX<|M;4i$;QwZXiFp*fzXj(c|KzPcT-th2=w{tdduRg
zw^L&#NI_fnB5YprgF~~B>M;=42UYp+VkCQB1p2yqa+2LyhGhn~^Z2hAC5mtO#+C`%
zxn8aTRf?K5pN(hy=qt1+p><wfPuB1l&Lvumsf5K8qp`FATJ}<Y8DA3o0#vbe;6srP
zy_}tVeEu8#A8LX(6RM3L)!E)WN}(SdN&1qwPM0TndRH^~;q#GeP=xVV$>7Q6Yt%&4
zDfGc?07cC7WTOq`nM2TxB<eFnx=*MqFH^gREP=?i>TTPqk&n@58*(&C_(ySU*<HIS
z>lHLe&xeE(h2NUyWAY;Ud)axLwMrH32fFW8gqABJhrt%bYIz3v_Y}6R9aV{56b-L>
zikap%8%Yp`MY#W<JX3kZ2P~nt(?;g(O69rs#$U{YrF@FQOVT|31L`nx0OGnNH>8yq
zjYNP7iPiJeZ27w={o!>xsR%$CsfgO{!_QzyZmII|&9z}^g?Km!J>8e?yT-kEy~P>!
zUHhdRh_27T6r>{%9JjDrL&H$%Odj-pKpU7pr>Nq~B)Pt1Opy<zxs*X6kRQJ_s(2?F
zRW^F0N=BwvzjGoytCxNQ-b6TqVmc2epxCAh@FVuR=j@l-IE(@e@j4|S&f03tx#w-i
z3oY6zcxukTTwLY?xuy)ny>23eH;eYTPew0h$jm)x_sJXU71ajPgwdgS7&pU%y&K)M
z?Kid8h&uipZEahPTTmN+BSjTtqB_)a^i#*?`pAy*D3-HTC!;5WaZi$hiIK6-DOkW=
z4Kv7PCnAKu8IIz)P5_>Wh8?2sJgByP6HJ@wP>g1Ys~N<{&6Bu4RBT<W=5k(hEO&jB
zISQs0m_w~ZiW(k}D=ssQ1rI;coa_8+Oi`}&OxKSQ2Wn2+0ON3l-Zd6N`gf7AqNX5v
zk0<evmV)_13k^Key-U1vSxxs5#5yw~{&S25zt2vk3DFO?tz0u4BJXZu3SvN6q(cG<
zS+ko@imlzQU%Bo#avRE)eb34zZCJ<Zmia*N=+l5)lPg5smBBB7tQ0{&ZG<E)(bS{^
z_uQ0q!V<}>a2x&17Di0uK)QlV^?j(#A<e-4#eF(-A?@M)0N+JLPB)g>x-u)&+fA-K
z;$We6G|Z1J_uh$17CJ@wFb!aslz@?C1h|EQoT1UaA(<CSNUSWQXwZ~o5xZW20g174
z=2v0d%2~^lrZ4js|A&Oz8X$>|oQ@DwC3!(DFi<;?DWBD8aD()EA1XB~LY0}qJ>}Ui
z4zbZ(-vJ?vkH~Yv1u=_^mnflh&%+tp#`8O+BgwBNxsfj)BB($m-5qSHq4fEhCmG^s
zZm`4hLt^@fAbSew&}8w78!fIGWspgPXUY+%FY!Nap8QFu@yNuZ`!Z#9>}hTu#>;*R
zo%3hi&^%Y-#pi#MGRYTEY<M`Do;L)aySQs^@(hpeW|pVpyl?pB^~Dz7I(tguI}zw|
z{pc%d$m=Y2uhqmBI`d(64P~}bN!rE|=1MWg1ibAyLgl${oJ;JhE$6DT?kG1jPEU0Q
zK`Zx%yZ^yal9rW1gfZp9={Q_TqFn+3*gZYflDWN%KWeg>Tp0pV7+6WB`u!w;o@egP
zDGe=3qmNzh(q!cdNM*poj(D$=0>coszl+I#Vd)6uWHj6W8u@sk6R7K1U`ib4ml$81
zV_~gqu0Rl{7-t?NbZ=Lci*a2ncr;xMLO<}QH92S80y+AA8fY1U$zQ(sY`8A=kfGj{
z{NW_+4K@L?tO@F4hhbX1B5kTAFqZ5cf#^+Dmtk;0eoJN4a_<n-0!V)Ga0Rj5Vo=h|
zzba7n#=?CbEj(FiQ6aqZh7M^z9AX-6#y4>jveMFbX_(ZKml+#gWrnLm>*AN%_X!|U
zK_Di1q*lV>T+hKbDXj%fzixgX<e^2P(XW$*+%P1h&+FRGq^5jfy$RNXP@STAPU^m*
z0@u&z;~sGh8CcTbjhrDagM!Kz#IKpK^YjgPWO*YEhp&5jg)*Lf38;Mj)LO)GRqQ1u
zQrnr#cTNQ?+tt->Myk*rP<c;yBgzFgG1B~=gY<6rwC-`vUq@n$Y89X42##fRkMSjJ
zSFiHMgXI>zkjgcTqLWpNxys)K@N**UN%2flqBKhYDfz03MNz+7_&<({Yzc!+mNuEw
z2fXW9g-&`yK$WTxbR~qz*HSY%wi<J(a)nBN6=bjlf^p${7Z2h0-&+E#=lgOvMFtfe
z7R3SF%S+(AUg=HYs=#g^LF>#5wHiviSQGzA>3K2rmhvD{t5Q^z4Z93>HP;nnoxGYo
zZHwrY?&O`wu03x^HI1FR8qZ5Zm1!(IZTuN2;kbk(0GC>-2Vj^kH5d?SER24-rN7po
z{1cxc1bDnE8eq<7HDrmF7~J?3rO3GmLJV8qN8B=5I5a6DURrvBKtug~*Ix|@%_Y*d
zFQCT#)lAs%mSr^LmytCmrZ<4XNRvUN!lO$fhp+X6$Aw3UCpA-~xMmXV4<(lr8l5=>
zF!vWK*s!)UyntYQU$>UTJjXAib9ru)eNKuobu(S_QbO*+aNd0GR(LqcpPK1}U$vL&
z*@A2eY9hpXFeT5IP(x_+Z$FrjjoY=V*+n%(O(3kFtk4{QYZ!GL>67sef9d(-)OW;X
z{x)L?2Oh)&OF<D;gs~Rkb{98ydM}0-VQ`C8^@?SZ4i+h0vxP}{mb|N0##vN~+Arc%
zE7&)9fPSX+js|p14^;*91}oyt=U|WUHS!aD?rC*AhQ9o9+#Vyi!`#81lSC-ij|HCz
zGJOh7o|G~9dN4>sgT4A;yo^fngAUa18iRKrDP<;V6_v{rFXoYAgl)nmw(G)Mo;8v^
z$>@85ti%n69mH=CLv8xX!AFK+@n8S?Q|8A|1*SZZX$9&9t9}3XqgceET}i!AHQ!vS
z3Q%CR9eEii$2cYuRL(iqmC60X2*by?>~FpRVB#ly#@7Wt6OCXqkA`FO$r~9>Rmw)$
zuf_B_E1qz$lHioPtkb603GRBnMcER@U*uqS!T#hK(SvW5G>BVeA4CF)n-cZB#2D>d
z?@fMbmS?$7*-l%8V?{ItoV|i`e6b28wxuZ5sO?)?PI~^44YWWe(1vi}Q^uOUIkTI0
z8SzEV1EJ$L6C}PUeb=EH&O%N2B^b^+_X%M<7W_7HOw$D^i7K6LqW=qeFxGn)XfzuI
ze!TP4agiTcS3<6eQZt3)>Sd1_*>>ovjV*GE3qx6xTBJ%S7pT=dsaNs-Ey=y=T<T$Q
z$Hf4^<>ax{t|XeIs*U)ZHCEu2)%$NYAIYshlV@`-cIU^&DnWy<xjNzo{{Uv5b%K_k
z<UJKKUpSy7=14G1x84kcM^|RwA|Uq@HbAziCpc~tb-A`~ThY$Lr#K{#bYauoEoB{X
z=35ptG{$fwatGU_CWZ;fkkvmmC@1O|`f54Vm*KBnTt!&=gSL)KoL~<RA0+Q@$G?%s
z_n|T^Z*mlcKxbj2!7gVS%t!E}XBlo!4(}F;=<RK6IkgN0Kay^s+&ixpLdVAfo>ADc
zozrvo?-F?t({XQeEf(?w5j5mR`Bk8>M{;-T>YrkvFYJ#7J61OQ1)A@$m0Z#Y>RvdA
zeaq=2Oi6~|>31=XXgzdsbRN)GRFeF{bmu`9Jx=d0Jv*wQn|dzUCH^Sq@!3`75Wsr;
z#kIjTr^rjr)1LwD<J70__r;WUDJSkqCnMuch5srPQ+pWnR3(PIxKrsb6Z9D5{}dN2
z7Gv63$7KhlD$PeC(Hh<;0)%Pm($Bjoxm?kgv9%kbMLMEQ<<#~}4?Gsnx1WfLSYMZW
zpw{*&fpW7oNy>>ENSjIax0w7GQZ$$_M~QQ>Fmv#nXG!;j(RU9`BO)vmDZgMu<0U<H
z&G8Fd;Qs7nplZL|(JRYXlpWnt)WF-Ml*xC@s_o0AHZfI-atNOM2s_p<aePx(t14Y$
zlQrLT{Br4^k2^JM!ic}#1uB{>eNP9b9bNDeM$Nh$?N1(2Mtf8Z{5ca(AIQ!By20?X
z2sT#9p~ih2b)TMGE=V&KRwR9>Q?Sv|cJQnC6Em^?8!vrFK|bZ5m*0Zq@yiY>eEm^T
zO0+7sd+^i65EWx@-B`m*n`-+gAA|2cl$HTmyFM=_AFa&9p3=E=v#|t{?0J|^M$`pR
zRoG8>Bo^GY&G%HGqzr>^tVl8T$J!5hOMIVy%jkKxV32`h4X1`nWq9{m&A<6)a6paC
z%**ECYr%JYSc;52_k#^YiatrBd-7h}q&S35e3%SHXbXQS&P%h=5{;Ydo$leurYZBR
z{L1@y{Aq~J2u}AEf;!QM^Cb_K2%-446~}*3(qvE8ik0s(o-1e6HJ;CurNa8$jMFDl
z!HCq;7w=JNWZ>F7db>=1B+`0%4x6v(Emrk+?C;qanU&)<?}VtvFV&WoNEdh&dW37?
zxcm5>1>|~c44maHXD^p;=13e6q0DT93V#?AR9sxWYWU|L&tL3&nAzrQnlLcgP6^uB
zd&%*~uc8~&)+`jxlzpXN*eUMAANvD0*c;h~#JO0C$fRrZ$~bqH&Ui*`;OIf`7m+Ma
z$bjUl{Xg`lVV%G27%1ibhf~>MkRofZ#youf*RfR1oGzYm8tYk!QccR%2*=^+mB$7j
zJt;2ztu3;i%wbw)pR$Mx4Zw1xSF11U8ms?#aH;;;Ejn3d9$&mBwh5h7A;NZQh6pRS
z3iGWo)G<gY?MwAE)h}SZa|+^)P3?!W7A39+s>N!pK1zM|M?xXY*w-JRwC6yHA3rFA
z(a$k|V58Y@+|Xm^im+@JroSnF>qxz*I{-PVoJdRHYJ%T+AsnSFn>nm(QE5DO0iaD<
z2c0jUz0DugT*vp}wXcefV?<7dc{3Q3b)sr?mSe5XFVCrEo$UmHL{Mmm#qz@U<pWmC
zv+sqXih+g)VC(BOObbbt2-#Nnsng)l(ItGd=S~e`SVB3F)&0@@K5V!ZaJ5;z*^y%S
z`?%$D+(|C?dAm!ErWeE%4L5kC4rh8UQY?Beulh(>v%kJpAYY$6KP@4!=(Ulq<VHKJ
zqT$JE+T|_WF#z$;QYFy}RAd?9gKmSNmBLKg#k!5H@Msdw^FNNJ+1SI{J_6xQ_B*nA
zgy&hVN#mFJrsc&})f$Pz!C;|RpBdAyaYz?eYaM+1LkbcI74;zh*|hEHe7j%r>%|Vs
z*S%0yjn+#Jr?IT>o|-g7eEs^}X7zaw?_E-vidSuSLW5NNyFvrSH8SJ&S3r{$MNfI>
zbOW~~Mtg_N*@5C;7?yF_O?%FVXCz5QcuKDHKb}KZwP6Ixsuc(&4gBzsZBXYAn>e2#
zA%d*{9dH+Xeimb1vuxo|1Cx3oeaWQjGS{k7>(aY$hFnMxt5JGfko($qpfv5W_V%*r
zPAye#b}txc-n12cm%ljKx5R&+?Pf5=W=>bDeIj*faCjW3vd)qD<<Wmkmd=}3J}EH_
zLQlcPR^vUCHtWD$5g?yp%4&gYx8?z<=nC7QBO&h-5Y?ZXvl|8l7KveELV^;0h0k_v
zDw&(;Z-`ipnoVzO_z>Aw>gAJqnGP0mpKh4=v;J<-$A27BjAEAxdbO!2Cl0WbhlK*H
zze2r{x9&IC)(}Geb$aoijE26vDU8!S5P7_p|A~GM_&R{$y;R<^MkYumPBrs@W+>pp
z_vs3Y8VFWNQlcDdu*tXgutXFP9a!_2CQ0?}(&aq2>78(3a#OHr+xy;ZzH<jk#`~K0
zMA?zm<<Tsc?sbh{b$hesJC(v95$A)5f0_*6wNO&qtVYr1emN8d&|}Matt^rL1g$J!
zhse0`oVH32?-&h}+YyKFti2ja<<_U#HVV+a+Mq-8D9`28S2^GR$+Cb?8P<!X+Mt$$
zp;_q&FG|P<E%$o9W&mmF>d8K0?`>iaM6phYScbbjA+*hS`|?)5+xAe9@sHectp6t9
zvs2EpIeCBigC@}%5n`ay5J3^5Ic>SoHdtv1AbPe9-0qE#a7yLJ2a|6^{r0NHQsOl*
zFSlAsF1#fF6bMIrbo_qXg<@l!ZK42m(tn}4_lEN2`GeY8`ngP|5f9T!Bi3urksl;6
z9o-S6$ftQW&&A<v2k%3hl+?a5nCs!eM(OT=D^uoZE-0UQc5FhG4hSdU;YL@nV)TBY
zrUPomtSutV<SFxGsTz1ofAUIM70-<h^KUf{`t6`g2)EoTamz~yp!TsF#1AkTc=3$I
zJ!vW0Lc#k64w@fhO%H8XPT#I;G+t|m9O}`nzagE##=^{BDwJPt{`fBfKSP4Dm}iJB
z;h;DC`wV%(>4<Ie@TH*Kbh$RWcg7hMH^-p1U*)aC`YhI5Jr|HF<De3LE5D_rYU$CT
z^*bXB_u`dlfBx*Ht>i6iVN~bfIu!o$MgAWcBQ<LY#|k)j9e!PwX8kO0$SM_Wa0<%b
z!uS?<&=Zp4gK<J60m)c9j3h9if&8>&*syu!BQ-yF0#7&#-nHwAi++#CV{-Su9DIqG
zt9@0I4*&4li<bD2gTx^A<jqpH6CVrH)ye3Pz7tXDJx>{;-&+#*J9zFv+~}mj&Wv9$
zDh5}#4-ICs>7saBK98-%w-9)&ypx-8$!~K%HHk4I`uxt!{4PE}M%HVp?Ks(U0L4~9
zYQ(f{Ms@bc39_7TnvwiO9rJ_PLOK$ghKQ&5qC?xucbnGoCznDvVOnw3|4d%bPY-4v
zGM%TmDc<)azy%J9&0E87`P11PBxE%CFYB)74Jo{%r1u+r-Ar`!A&_cMbu_mtPf<nC
z3GK2`1KHey^!)v$xn1}^%fF*|Y`n)a95>t;$Z^M1EM?L_y;(Ru$rNXDVh~Va$(n_z
z?FWGo+0rOkoS$ijQeb8_H`N5oz@k3X+5E0X%Ge!V+6i7}0zf-#lV_<zbMm70!?sa6
zVp7vu`d_$CrY_*DQfbt9dX(h5^eT30I?Aeggb4uMlVCYt|Kr4t+*Yj;S4|Qyzhhq+
z$S`IlLS+t*hVfY^D!ohS=X3C?AciD}Dz8-Q=iqf?-iu_{E~9OxH<O?z!&mi(nBWme
zWEHLe<yqZKv!`^ixng;cfoq{JLIt8-&&j7059X_33CI!eBl8FjT7o-_6T&y}z#po&
z7fA^PI{v-k$CSD+y3T9F(uDdE2jr+I=H$@%n9`D?mxfqr{B|&SNFLC^CX?xdAx4?<
z-%AFECis?P=aJWOT}p~cILcJCaLFPR%T~m+&G9r4orki_+O2hDGQRq)QbG<f2Ah%_
zbq&MGIId{J5Y%)U_q7N)Y&n<KSyJ>)v9#+ZHs^K0Js$GJlt-Aq=`IJA&rN6q${opb
z_r0|>i6;JZYzJv0Lm!paS-j||$hZCusXs*jb*m?uME~Jzi<|#4^9-EgzZl(8<bnrW
zawFWCd&2CzGS=c~PaMp`ygcGp=)6^n6?Fb=7&tDE^nHSrj=RIC@$k~4X8<~HdR8c0
zewbrGQJ;;bx*H_x=@S6t80?=*7d11pdSIo*h!1s0`7W*Ylzp-iY?QSpCdg(b0O;BK
zx*`2)%qa+yzlX`+0)pUu_Llb#0}QKjQ$!S}HNA)Iq=aiFmX{uS1mQTIu3OTwTAsv$
z<?#M$ms)xwukDqup!1aCA`Dq`r`RTcSVFl1^`&Z_w^T{UF^r^Ocu6wwYd*_`P#xbj
zJ0O2Y&>5&r=|>CJdgRbY6_(?H;nn*^>s_bHq*p{Rh~Oyn;@<`6?fBLD>K_~p$<xU#
zZBy`ujz!ns{jk$t04deVDl<*~5O>-CZ+1GUwKz!E;r#SpT!JQ+R?=S<DxyDXU!+8}
zr}DEIxfiHWE3uzZC(~?O&=%M{98}^B3l!s9mVKr32Kiu^@CG2vHhVZa8xn4;iJvVb
zu|z^HR$$krDj6v&smZA$r3$od4I@7Di_HrWVHf}V^Knm?`9NE5ymkr>=B6^8$vz43
z!zYeTEmI6#e;V&oD0yuMgF1gP&~G!Y>jKt2L+0;qd1fSPj!TB?e_wR%eSRcz2A1ng
zRwrLjw-jWEz%)&YH)1r$^(-6Ouo*|#o;Dxhxoo8#(HO-%pC=nQ)a6O$z;^Zxxn_ds
zjDIHcpQI$pkk60u1W^Ddl<_L_j~M7p&I+AnR%w9VJtT<xX_|omI=AZ4yWaaxD*3Ao
zrD1}GI<dfxz^D5-o=Kfs49;{b;XoRCgUll_S@XLQy-}Rpt9O$-&I;2I{hO3|7YL!}
z?`cmXrxzxl<oF0*XZ67MPgl=r7e94+_u(fEj!0ca9Q!(7`R|p(8r64oYH+$iutAro
zBHpmA64K0#3gl|O#ioDdZ+rA<`^<!*s6DG^-<zR~soBSw>DIFr&4$0ppG5d&cGhx{
z-ss!k(B=nH7!DBOAylc^BZgpD^VDhOdRmKVd};zvvq*aCP9{qK)z5`-76Dq7%P-`J
zo}I~4<M4?GP>J#Az!{rxupS3E;0w`2=uxJ+*)QzPA}V(g|JBK{m_2%nVG;jk!>h<^
zWZrUsKp=xT|IpAjojk<{W&YQln4B5(=aFvo`!^H*qrCQZq+a{ygLd_O3-_r=VRToS
z5^<!rF)6RBlyM#B$ft7WGx7LLRyu=6#k7};L}>$aZ}{-hER(SA$a_S}DqO5IMLEnz
zA7t!5W!d@jO8B(|aorVZe0-2|0T4L6)+KS%lC8(xiq4)ncUor*lYknx)u)h+DP@>c
zEfKwby>(N>lvO16SyR1L__dT}Nm5lOI=yMX9VIGx&S5mJ5O`bb6xm1A9-9L#@b(r3
zZCugNy*S9z;8$n^9?z2@0MY+nd(}y?#87$AB;9ut?OGCtg{S$&NI@w^Jc2mEJV6w)
z`kS+aI)qK^j*8yz#w{3lc*mb%1T~jCrsK`MuCD`pFrq;l=>7`#EK=#4sKc6~^be^?
z_fS!vVGzS`iqs2Mj)M}tJh|8qQRCx!KzBGX>>=}5Z2D)|BZ&L_CROAQMOgHpX-3*6
zfL4!tA}FRt;UPX2q^E+c?-6y5ma$!c(X$cWC|+CUENa~HkWMkr9bV*A^nA*WltG9o
zcmQ7$+{ucc^x*{a;#^~w6oDm25h<TZKi^4PGKFV_75Xx(P;4!dPO3*qdiv6jVn%Xf
zEx$@jt$Xz}O<%+W65^J1!^yYSl-ltBnWLPj)vD$2lzM4-BlTRmPc9Fg@#kT2)gzs@
zi?u7?s%I72xK{x;S4BA^D;0*pf9)3aUC0Wr(!4a^$I6sxj{EKuB>wrjO$|5kr$=o*
zt!f6&$(4v8GVKKMT)kM~o64F<UL7YE>V)!7BXlP@!j-`#Dn5hH>eMWI_6c`*>s-l;
zPgD$C33-vPBzIO+oe*y`luo>Bl|HwRd(Iy8em}%+&k5Vl4Z4tGnui=Pl?p4>Q9G9$
zr!>2VL;o}W?N~JGX-mOxuI&GzU1i3XXlc1|RC`!TQziQH^hROz^x30=)KqBaKfoG-
z*`N(?kLIBaI}77~clc)wi$Pg(<A1-kReW1WMhyQdoBAmboY_<L_dI1-)7(fr16`iy
z@je*!ZjVT=JkLxX0gw8OwYEYYd{y2&iwd){Xc0RaW6o?HJZ;`}EV{_(1hqFd+REXk
z{2fmPh;2tp^WAUHK2Zy>h;#0E-79-(fK#pSG;F<03_RN*d*v+bpiV!?6V<lcEzVKS
z!spGzg$v)WpS5_S<M*e1t=G5ll8f_4xHq4V?xX}&3BG>d2_E*{^6{8dKwJT_+cQ)O
z9<_TMZuuW~bjyil8l0T(tueC3wQ!9I<*L>w>4&8b(I$)fq^<5#@MWXe>eiT;s_U!X
z*D9iEHI#ncyEbyAaHEt0JzF=Ly!8+E>81#ngf#jp#XN2E8*Wp5%N>1L72VbJLNy!#
zJDN{u3RwPP77`sVFu<!~_hw@BFiUy<dVA$<hHKn{s&<xcoV{l?TgaELNUhp*T2g_x
zuiDyo3-{gu$}XE?_F(!LA7@i$KXZNb)!EEu$&r0s7`?Scez(J>8mCOsys(~wjgP$&
zlTAw48=`ww1yx5^ZMDMkB2z}*Y38nW7tcK#T8CCOt=>v1nahVVaiz6!+JrQ<=Av0@
zh7Z@}n;yWFIw((cRCYclylpUh3dQJ2>R|eqBPlu+b}isNPPc0$+>h26$UW8&I}>0d
zakOxuII3vgv>obl^Me)UBrHm{bYIUQzjRDNK~3=5A7K+xP79uvGN&M_G-e)J{*zuI
zR43B%m5*oS&!HfYP~gGhbH;ObNV3~yDk^t`vA)ioSZc9j*2G95ngg`CX;aFyta2t}
zmO*6cz;AWN<SqNlV|Ae^Q?!jW;@B8Z74=``PHY0euo~UD-4V7>d4gWc-}8mP&aP?F
z%6H^zNhg50EJigAJ@L4$zFcE<mQ@`y;MLHY0op<#l}EI$5iN7dg2?J8V?m*9#=^M@
z+>;@Z2iuv9@-x4d^mb-d*~NTb*GY{jh1H}fACF{TP*i7bgi=m1cv0Gh&{#^0kGgD~
z=Gg0i51{7m(5s`Z#9!e%oA9sAUgwA7)t<vITJ~RH)=Sheo7ApzDxpFK=c4z5!+)!k
zMsD;?XD1uIla~?#9aG7jL(GM|Yzllbnj#P0>$R4qH@U8DpM|PcZEJnMP5sFD{SOB+
zu=*!)6u-%0{*M1y50zg2>OJ4aw-9{uqcNK~PktK>q1+7BM1s1y*qR6eGI=#cwJlU}
zUatfD6#Fh}T-tX#J`z(`KHj$|q;3-x)5n|8;c`+sA<DAno<%fPI6pGYPj=bJCT~<S
zBIim_k}SbM_H#GAl^4+sj3J7YUi~!|gpc|G*0<}sVOF0xVnnYoBkNpfJX8BtafXts
zD1bDkJ8m_`jo<n&7vVHl$T+#NEHx*wCWkL=krEv^&S&uFa7zI(Jv~Zd^-ocp{R9jn
ze^tsHuQ!LX52_ysOr<hi&HYCE*l48n`>n+ab@t_xPrYEOq@VX}Go`;rE%F<VQj189
zD#WA!G$m}cYIzdC*2wqhS?)8|1kU!~7}4gb#?Zyv4Dm6ov#4L?%Yc>{pLjxY6T~vJ
zIDRSg>=Or;_QUHy%aHznnU_xN0y62!2M%C1=P;oM2S}~kg*+{05$KGzZ~{cgaxKM_
zPt=^vt_a5#hT&Wv9zwAa0l(XiFa=G@qefZrSXg)pprS6zX=gu#i#<8e?|a*XbZ~H>
zoGIc#I_hqt=@r<N<g6E8_Eo;~Nkd8k6VrqW(mbzltl@DM3($#)qdgQ*?WL`pkgqmN
z&g;cqv-sQc^l}K)fAC#~ZWtbuiG7&?YPpPpTk14i1e=x&^Iie-sBQUjuWW;SZ@gQ(
zcPCRdt|BJJ;;Sz{qbfg<Xdy(7PjIf4XP0{|LkS*d?Jx<^-Cps2Lg#Wo3A+m0W2EQ!
zX?G0KG>lUlQG<P*4Hb>Z;UkXfi>>sYJP+0u1A7X=eU=6J?fA2&itgv_vW7`%74WOg
zg@_wT+hDv=B>sH|KGBqfat~BW+0e1i^D;lsD+0bGWQwBP7vC7ASi7qe5~os5Y2^S<
zrO-i(rn&J(0Odqm-bCI@ftIWZQ_I_&dYF8&{?X1>w)S<BFQdy&Ul`<S4-D$N-mj0{
z%;Px`belIy4Qg_Il(LP<VZDrsxN8BW@|S)roO<uwUS1>agn_2<zg>Po2KgW7wbA5S
zvSR)5w{uE4)?$YRE_Tav1XObYR)b8lMfzTP$`0g)8;&A}fg&Oad^$9f%Tn8L2b7TK
zruzBAEin6X`Fs>ZjX(a=x+WdBsFx0N+*H)!A9PuugH#T;{v+z}fu_LU<Tw!QNdm*B
z-aNr6gl}0sBCFjzVAJKsQ>XsA3xGvu;`_s~8#FvcX%DRodF-vVfhpX;n4@u^2Tii~
zJm(F@%^VPZ<W2Y?2Sl}|8TTsvm0(f9{<K*ZI*i4mm`036k)=XCIA{@~MxE(HuR<Ic
zCCt3Z7H-yYkNRkdhV3cx9(?Z@=8gg1=!fHJwAQcD{wS5b9Vp236Z5QF%$z(&6pZ7X
zz65@k$s8uYcn;BwQ(LACJdH`caxTiB6KMQW$#O6boowx2K`2%m7-REO(90b5MUd1}
z6}0wRpBLbTY5cuI*Bi7~tlJDa%)&w!`1Cj`g3?6on8%o~Wt{-2JxlrZr%u+sDRmYO
zAYh-$VbXP|Wc5_{tK0hNVAx@P3zU1*KzJJ-3Zh3WFLGW<mM80*r({*#Fq4dEv1l<?
zA*O+#riM}vR<HlKp)joIF{G4k2vn_2`F-}uc!Z5O*gO0j3PxVx42xOj@k&XV5oXIg
z+ny@RZ=qur{S`0|j<M{1A7?%D`OR$niw%9#%VG+nN;O#Ru9k_W&-YLXOcub=!{VG(
z636qv!(>eY0IlpPAHHtat2sySDJ@o6Ol?oi^`kmNb@F<W3eYe*JgtFbOKRzKvS5$h
zSG~$)9dd8m^tH5w%~QY8xrK%tYJ+?a^_dN)S*b4iNbTFrO673;N10TDb{F9;&<O34
zozs+8M44u13!~xUr1Ity$lSiwGi2LwVEy+?(xPNdRz_{J+3WwpLrR-;MeotRJo_U5
zje`KLePw)pUGw0Rrmx2_Q<E@8`fKa3Rc%b}i;_Y7UQy@n`*Nd?SNN(H6QGK8+*VTX
zq&sJ8e~_1Q^O}!E0@K1C_)9E4Gw1+SjWF*fRvkFb;V6;r_}Vk{XN_X3B3>~A2SS`!
z%fP$p6wtR~z5K}A1`aN4Y5E5BM4sd3Tw0s};(EyvUPCvxM8tc19V|BruaRI$mliSC
znI-@Z?>e?-G-WsbI!Sqf=rq0w>(+#ZuPpLsW{=<oMf8(Cdh^S8Byvw(O^{YIWRk-M
zxPe~F4nS$S^5vu)%didJ5c6zntNTcJl@SX^g_3{m3Ys1+1s3sP6ZS?GuG~Az6Cr6E
z5zz@)8)zglkprC?4Lf*d%R4xSO|QFe9uWfO>jX5jOzN_|7s<K2ZtNFVXRo7mIQNid
zPh?BexNV#=!Sal1PfXz)JF&&+>{X$W^6g9ft|G6_6TD--ASJZ#FnQayW$4XhWWOJX
zhB$hZ5!+PRj{nbhpfG-S!n|4RF@iqo_?#-j0K-Y5Ye{vXE?Lq0!xa)YLY|9o4^(8D
zto#DG1Z1M2t`^B&d4bK6P4BggvS+5@7Hr4*v#<?4$`}I#Tm`WV@~}{uc7?5SuCjUL
zeG<7cWz96@&eA{reTq4NswT#?N9n$A;7e)7({I1rIf!3rQbUWoyzC;N+L`vn+i=D2
zU_pkDmfvWV&-s9Cad`uE#mjKIX2}Io;JXcWb9Vh)vUJs>l8u|LQu)28N*oigICDqu
zEA-CjRX<`-3#i`PDDrM&Hx-=py`t{+lokQA{GgUPPx^L2Z@6A3JvB(u6Ta4L9GlRz
zetqZ$j=w)rYlnG{Dk00%Y)m99dP<~voPmicRauO0{Q)hbH*>n!wANf0M>>SWG?_Mn
zLoavpd9puxuVFXURkMk7IX80UHSfs?8j;eE&_2P{M#Ef=m!CXvi6p|ikpsN{%7#S0
z&Qz}rv5v0_KEFIKH)KdZw$6y-B{!I<gy<YS(xbYsW^og9n^eMTWhl^#HD&gGUUvCo
zl9Qy}xR$-}%`0x$*PZk*;={9zEP4>WRF-f%rq_nv?x9iii0C-=s+tAE1E&}q!9f6{
zC~*B-I+Yj`D?se{C4KIS@ng<c<UhP2mC>m~|MtXsoYJUiY|$6Ej&z=p1s$(FE3MME
z-X_a8Rw=Cg@0c?c79BjKr=l{QoWTwhH#gK688=Qe6?sps_R|GWWt$Y}0m4C(1y<X}
zE!GX__{W9mR>RpOL8Z~HiB(yV<QHcIm51btZw->l=gB1hmSho`ta!s`xTfXTqS4h-
z&)Mf>`TzrOz*%k1D+Ud?95tueY!*!Ikym{bR$?wFtupd&pzi2v*GQ}6y%x#l7T!_i
zt00NmHBg`xgO~8_=7mD<swPpm@7=ObFr_u70t9+7ep%TZPq-Wnq;TWNE6|RE!7@<G
zH`KY$SK7_yg`Ux;3*;Y95c&-GJcMM#VJxL?*zr~CRu2cJZTSAii|%&w5~m$K%V9~A
z9j`%`n>*}bofMk{SUCD)<=M-UhW+C1A<R&wQ(pSBp;A!Z`hOuWrk`r8)M-q7#uP!`
z_bf4DM06!+eK+E9(<Y_c^Ct&XEmId4FK)SiM{rc%;B;fHjGFi@MQ<)%DrYMAu_l>H
z2m7${@*-C%s-K3UB2YiRY+6_NIn_Hs|Hs^iX`Hm@RK(A`P6a;T+#9{5due8C*+yt(
zUg#v`lUrIMcKDU)C2_7G+L|s?=l^~-543#eh;cHD9k}izs?=cTR?Eo!k0-58IgZIP
z1jIx0+sAzD)ZL!L54Mx!L-B;o+Ba4=d){A;QZ1G%Xq)tbfVq!kGx88S%C7%D$21Aa
zSf3O4*mU}eI7*AzHKdbCenCu={ISl!QR8X)0!<^+qh>#o=cVJm&wVg-$LhuOe+93I
zANRucc*N}nJk(!aN#_Zt9Q%3)+>Aa3i3(lc?t^>@ofML_HVD{#IQ}|O*5Y0M3?AYD
zO!2gY9`(;BMqGo~v4>~ByX#v@-~8M+ij{+MB%JC48+}aE>R<5={)LMeka4lHRSWyv
z-<SS<aWU4lo?64sYt`nh%Fw>9Q1zi(WuCLp&)lL|&sg=v%?d|$9<^B+cl9@<Ik2`3
z<ZY;Cy!DM6URt44)>mtsh4>9hA(R>J;&xM=&+8d<ySbXp`|qpPZ>y{Rh#j<jw|V#Q
z$=Ju3WB|;+v1wPkcB4784ezMPQR_K!@U0kt6oHt?e0iHQ+V|g%Pa(*<tX-;*EGAqp
zC1<oNq|5GvryV5U`VKM141|v#QINpizR3^s(F9^K6G5-+Ew-;%m9WrPyg7Y8GBvrC
z{)(Ha#+R)nzx6?x20B`y`$z9v7}ezjW^LBPes^BJ^5X1(>gBF-p4VB7>GG04`w$-D
z*UT9cI&Ks8J!+{ix%K6rslQGs7$dYQLyk9!Tw1ToE3~(K1twX<D~XnZ8f5~p12=z~
z%7mSE)t+lSOl5*b&W3MMuRk2%%l>hl^NQs5W6AVQ0<<$UbV7sIVt?><n8jRBgOJ^w
z8da-+$)6ts(!NXe>O|z|KrK8%ed43MtClx|8oZ4T!)ciysf^yR(79v;t|1&#KEidP
zFYvCJVGd(*N>#U|uAG3IS<)<-{T5o+u*aE`{PH{_SIzm^PTt0|uPF9sqL)2<Xlax^
zp36cE)T4?&D>IPwE=sazY!x;<)wef3v9BalYm8iDnqc%0)9<0@X?Wb=ru|K6wLSx1
zVrn{@Ey1KlCshN;lhB?}(cji_@_!L<xkE(1(N=f9f%{5bke`_hg-q6wMXAHWrF07>
zs0R5nF=ERJKW^yaxNAXU#R;?-v!4Ur4)1mfuf#LKJ|0~n{}G@TZ93YakE)m9b)&rW
z`mKGJ`U?<yZXl7ER5(2lo3_F!$oO0c$TcWES)depBWoYq{6egzACru}_0C9~S1RBY
zu6y?U4P#=<+nT|!m-{nO{<;`JY1f-A0x&91!8tbqpH<QQneV*Flx;b4>e)>Jds=%i
z>Kv{@;1DVNNt>VmNKu+FPw;0hd@*C}mts_|6Vm+bs5F1iOaSjFOhdyNYs{fi#Khs`
zzfH1w8#iPJD?qmzV`BAlTDVeo2iz!-BQrWSIqxA$sHL?QIBsplVNzFi$r9#d5A@u0
z@CaJ@&NIl_wz!fjX!W*E(>&|-WyWEVz+5JygRx$?Gp_B08AC#7>zq%jD7T(?&2>(U
z8WMx+YR2%oXM{to6RuSAoG-i0cs>~IAf$*Lf7h84{NhisQuN=zbzGp%%AZW7>Np(b
zVC8BKXn1?TJV^FU>-;?tBa`1TtY=pl?MtOKi+~?kVcuCUC^^C_guWJ;BCi6n#}_h3
zLfkkdb?ZoY)e7UqVkksi_q+0fR7Dk3`W@tqmYMa(bkdY{<t=3g^5Zur=O7b7#E3-%
z%s7bT$V3H-dS${tFKe<%4pnp|1*z<ae`sT$kdC+BS4bvso))}DC+p{Vr$2s4O`}_*
z<4{v68m}FS3q}H>#6aS;E~oDRck(OP{Pp11hJVbPQ6{NCipke*E?MT?%kc=@uIY=@
zrnJo;QicZFuElF}FzML9<#ims70zx!w^XK@g?C9>w~re`yj3TEoFUYa^3A;ZCMpnx
zNE92eYZQ>J0R(#{h|$_m92W=RA~4r-x&JWaGsN1Xt01|MVA_MJg|x7^|7Vf^%x~Gl
zv_+{V-b^4)1@2b9FdQV?{G*V|T%2n;UI&vOAp%n2qRvd*Un-1wy}#z|zpzF!bqvda
ztxLSdp1&!$HxW0M+8+#|o(lY)yW_MP7%m#jmLG(!6KCVz9b$qmX-l?m0(OEl;2>af
zNWiuc9TNVNcIb;JLi+)4${)q54XxuejKbuPJ8~|s-sqfuP-679FJH>o{TYpV3+mo5
zXSpl;0@GA@)jBf*Q3Lq)H_eoV8Y2ewUM+Mn$VKXf49~EyO52{6=&9@kIn^9K8D8ob
zi}Z7*t2Ecn=T&>VNU!jW1@7LIz&awz7C8k^xQ9Cw^seIuQtR#~p^hbX_{6~vJ-Q^1
zEBW3%`^@Pv#ppi}y~N^b$LFrk;EN;NgvcR0uH6>qlq?dnO{k0Z4ahbU$J0_KXU%P<
zM><-1JXqbdBxM~_5xCanW+8J6{OX(iA8Ksb2rerz!C4|wMl@h_bis`tT+5evecZnQ
z@-<{YDc~I|Z4(1%_On;~md<Ccsj|$0C~doDp3_#X%sSzwfs1E1i7TNdZ!&$fpx;Yp
zhgDbVoc3PzEVN?;Al_eBoFI>VWg^xEvb=nHoK@Cinx}u^yj~-$JaYwic7Hun`|8uX
zfXay6+-;0(qDWlOe3UN07=w|CzTmON+7+A)^ycsO$fe(<Y*4s;p(zKjjV;_pF>&tu
z)Ps9!imneSW*Z78=D6D9+UT8vQ&<kY?{C?BdTK}#EOwhiN#w1jEVXKI0Yz`Y!oL<V
znGGDuE;UZN-d^r!eb2&k*gM4joAReW|2z_;!e7QR6psYgK6^H0v7kKc0sq4ma##Gn
zI_&?7BYMIA^Tv3c|1nQ6{I7X}^?%J10M`He0?Ifgeks^A=W?U}p1iJr{fKmueEY?h
z)8ma{H^TVB5TM6?M&Q&J?`E^CSidDH@VYrU%Ju(o_TJHOz2Vz$bO}*HFfr;xi_SNU
z-i<CIiRg7A%IG9|P4pH$Mi(N4kU?}p#uz~uCAw&%i_U0g=l8Dntn=4d=e&PfYwX!(
z_Vc)(`@XKvb)i3muBD}t06vGgxE<l`_Q<i2aeE2n@Kjjk%n+&3Ao5<6VbW<#5iR3X
z(1goqzt1`4<PYgKG{`|#hh0%;^0=$<ThK06H?j@qX=U>a5m=UO>3<v@vR**zL(u7L
zC2o7nA=4{8V|KclZIA9Y`50V|81+}ATKcw|HGJgR1xx{<BkV!+-(j#WN9R_cd}&yM
zRLAah0@ZQqY4PrRmugd`Dd`;L_ZS?E79aKB3$oySBVCRhYKn(~r!UeCheHobID|Jp
zH(JdGS<S;(mRg>EC60v1Sv#{ko|a|O8YSJ*f#%EuP=lw>=HAV(J574^3vV)i3YK)S
z>SQh)Q<6s3?5%PJAJ);XRKkK6&Jl`(AP(g`W-%su&L6NxB$OFf*8tz7DtO^{u&N{D
zP0kzkD<%0QS_lc{<9{sL&66X7A71eHA8S-zn|_YOhdVxYLH~9}OwjN|mOGp!ObqIp
z6E)y&enIo*u;yUO+q}1%(vq(jQS)`)->57!T)d`rAA2O&2rfGSJEk}A%V87i5Ju#u
zcMi<w3FCwe%iiKVqfn}Xka+-OQYmRvohW&Rfhj&_qxd)x0$2ABLtzFd(zm@0I(MHj
z(ZSdH`As#f^B8{B{ANCC79q@Hd-hUd4@wk}heQAoM5z@7Pl%{tfC#Fn#jok6<E=YN
zs{Fuq)<|5(3&x=NpC%vesgaIUc}_K(SxdVOZg9%`hdfhvQu0{bkHQzw(Q5ROUem{s
z!6oR@H{KQuOZO1*msg4NoMOuVweN$~+2C^cL!4oa^%j!@>d~`9hBE!!XC1_el!r}Y
zw0~cr6kH)wjJ^$CQ7Q0_j^mbb#oqG?jh6JwH=;pBFLn^-W-sGuzYyqLIIxHsW5;Q~
zOC!T+sq>QH1%l~V-fL&-BoqK_sdBzi7G1gnW+Ap+Q%u{Hd(v*sBU{cw-Oo2gE4x;>
z!5AEH{Vy5=9_B>Xv$yRY+7eP8r}9`nwPa|_`w4dWKL<e|#zXBA+3M=JF<SAEJB_Rd
zzn8~sJ(+0O{Ytf(ypUZTk2@hO8lM5Q4&UuGC&q0iq6YHb8vqL=mrsUr;ko)B;1~uo
zpEA6H2y-N=AGiB$^?&bN>(eqfONm$Xcn?nV4il<3I{YlU@giyvwyc=tPL07eZ7?UM
zIYDExSC{C(5ZZ0~h2<^p%Yw6?jvFXzmqT#*Zc(3J!V+(;>*My*AEM*ISTcm#0{z~(
ziOk0G6F@WYFQ8!4|Co!?{vIf~R_0{JyCA(S7Ns%EasIn^BU{$M(4t=;tz{m43-jCE
zmqnMLsf1Atys&c2^Tqxn)e|(f!o2$eD?c}Us^curb!)CjisXd7(1!&T+{P5Nvf-qy
z(KHnI#0JZD6FT<9{SG_p9ZH38uQ)3is6R3cv$)uohFrfz9_p`({`&UkEi3kD!rFRz
zr|~$oc2Ao3a4$uTrouE~e~b3=S+c$LHDO}&l!bPCf_(dFc|+rIA<fE{hnKhIk_c-e
zxtwyr6iZ!iPo~{FoN)!$7kJn^CRPbWLieEbKfb@QYT4CO!{4N!5&ay;-_ci<z1ixQ
z%l*~ssDndu&}FU8PY}6=8S-wqo%uf%ArJ;~yrDIBHux&Dv2{gw?00Gx>-;JDeU6wa
z8qfm7r~gyA!U16w|3ASV79iLBmu5jX2_U2_$E`zwxtnw4*!m4k{R*YO;k2U%^o$?y
zNNFJNV!wH!t-5uIZTBPkr?@k#ohiVWat2NHb}|E<ggStv|17%vYNF%nXlzfc;a@I7
zE70*360G{7IvYKce}Ke~@{1|%(Gvbv7zR57Jkav>Aky_pOyE{6EKllUfkNqdO>IFJ
zxA5iVNLKrkP2#srK=Mu&kls;tMe|bn-R#Sf#82`vGCjp?4s<kQGGOw3)z(3L5EOi3
zLx=yzG+OEF`du>*gqXNY2A|CK^C|AdK9D?5sBw)Dg5L6?iKIZ7<X?GdIXDX?8nY<E
z;$B`-Nk}1>={)4+wo%52cqa{sMQRz4M6B!67PbR-^&f=^_2XuhRo@ol>S@%Au7Ha+
z-k}9D)sy4~eKr93%^LG}2!$7f?}%GgR`-RLSfMB-qG=_w(sx+DH0&=b6i5#eV0CZx
zWHTfcpfYAEmR<!!()~ZLD4@3cj(k9NkE7|USznjj)Vstn%D3s>$gcl))<=%`M<d^S
z5%;)lnd|k!a_XHtZe4p+7dh*bVCffx!PrU@RyK%|*CHnMUBepgc-q~%U&DgXH0{<h
zwz=h!*CPHZK~yZ$_4c8fse_sl8=p%<so^13QMT)CqJIJEH*Fm+Ya{n>A>yPPaSB|f
z5=4lM#5$EOK}&AOm2(rDM326#&$SxCwvrL8oHPH<yxO|ysufVhxWE6RY=qiR7bVNL
z_*1<#q`6;{_R>MQ(NWL&8!>5+5)87GKhBox20h5$?nb(jvbN>W^X_c^f|v1sxE^o+
z5rT3I-u}bc_3t?Q5bJHpw@G+tPeaTC{jn-!23g^(r|>-NYTAfyXc?dHto3-0EN@6<
zgRC5am_D8WZ|!{9LZ(I&y(pWMk}59$R&#ForLm$Tmktfz5EqDo=3Z@|tBi%0+9Po4
z*7q|cdwHk7Cc5&cBJ@s94&~T$7Gr}tTACU0OXez0L9YozUoXxLjUZ(5US^T{svR|*
zC<Wu?P0X6iBlvG9&kAh0%354gLbOBX;Y12q8#Uj0fP_Twcy#TnL_(OnOn~g|4b@B)
zA)hCqq>qU2f?iU2jlt|IT-D?F`_kBQK2x$eh)VD`+v%-;66dBusOq4x{tnx+MC8Rs
zjkRthG`?wV;^U!5T;lLw6qD5cf>cCY%<5G&bpi+ky?rr4i-E{Rw26>ay?=KQ5*pxg
zLB?3r=t|#}%q@&aoTde|C+EKuRkGSE;&(Y|yEs^%L??<kMNZzhWP+|G*Gju>y$u1p
z|3F>DxO2H18roKbW#Mm0h~bj(O3EoI6rz6eVg+1ilf)&Sq=pj2I{vDo9i-G2Q#?sf
zcQ2m3VQ&_4wj#J5v&d5Ko!%ES2e8&A{Jv?HqQzt+aUNxNHDY6;Af{e@Je746+Hbx$
z(ye$B2s7*@7u-RE14opCU`6|d-ziU0m?#nxxHsv^HteZ16BzZ}J;EqWGL_$A@{z<-
zJR5);)`^qa)M3*soXqjX3@NdM4nC|ID!zR`FqmsdF#<(Oy!??3ol0%yk&iVYA6W#a
z-t|fqAWwmm_tCpl9^9ZGj6*>|rGirpePC75lw|%q5n|vFmPo=^ajiwRz8Sf>ULd|5
z*)1&s%*izH+^ma2ms0G+Jh%i0A%+oh*<tLDY^pCPw)CN#w1@aul<KO(Cs+HsIB)T1
z$Qp4EkqFg$S07+nQ9+5K#J5%dYxjvpt~0?z3MJ>N9VP1|K+?gIAsZ#eglPkMlJXkG
zN!gZno;VJ8rEy1u7(ETBkLIZ0Cy6V3^w1_H^K#0rm0)w=6YYAKe8uugw(Oc{pVJ;u
z_;o8uk%cwhgwFrnxMa5tQ0Vo?MW7taxcQ@$Rp4e<cW=gesJjg^_;>shER(b01j+*V
z<-RXur-FO?V?G=+{+!QsZ}(4}V=-6u<HbolEpx-A>Wa4cJhahqNhK#)jDkN#-sFb&
zP>HsB@R(ua4l@BEbWW<1o~Xw!6+5D&D5G2@JSl>jqlqv9BpTpLf;x^koX%LCJc+^7
z(U?N@0%4X?YSP+>5Es52&lKu(WV#d1@tmbh_9(K}OOM*T#g(#CeE&t&u!sQ~>aoAE
zScPfx6;tM2{_IB6>0hGNf4Wf+cEf)?*^>_WvSg`F46)#YL0SnEEdBYbPwPCyKjL+J
zQZRC985I^XqS3*|C)nE;MKby-z@<6I6{FrpSwC-rAGwK;vRba_n4)#C(L+7W0e=o@
zsB;Tn#tg1P{aFliT_Y}J{I)eI9n?&YR9G(%RilPAN5kJXVSpe}EerDmZA(pOScNf`
zZW@6vC2Kjre9V;CC@z7GaWpHj;g|j;c~{1M-*cq|LkCCk)kE#ovU$Rqb(d%hfWMKz
zt#S(2ZFh^qS(KI>z*`U!d|F0;o$JrHlyMi^*6m@5O;*+nh8zHeZ<1K`PZfX7`6Doi
zy=@9*XU8D?zf>oqDh*~!lu&KYoeX7%mvsWSdibGXK!8h?EZcRQnTBlw!=Cs%zkAVt
znv`k@8<i%JDqyU7dW?pg197oOYN3GIa+zLErZ<1Xe6fT2&yTarr})q-{FI-;$2SK8
zO|mI9iCo<5HiygIu{XMp<iJTC_FZp6kM5ow7lAcJ)FjA?*`xU47;F1g)xUw|D2l8x
z+9;ueU+j}{;u8AsxW~D(>8nVVZ|6i)ZaBU{m9~VOB`!mUaakdRgaKFzR>^KqZfK^Q
zBw@Ys7BZ^Yta`k`myD@S$k2Ose$?MlQpPT01PVV$E%4LSe8I5xOVl_1*ZS=dRrK=5
z8l)l&+t=5+_A<qY6VOwE<(g!&wv@}tZWsGD56ZAI_+r-VK1qfh(hd7fBTPuBmo}sw
zbqwja17prjBzWqI(k^RN9nc!9QHRhM`{NWz7GW=E5L-#?U+4jY^75OH32eD{9PR=6
z6jG8mrqpQ@tP4;H9kmRn>ycr`Wm@@%B;oI5pdu{}x@gV6POj+)ox7gRfFUOqgE|~T
zZSiyRG=wdqCQj3GLcXva{enml6H}1tDxnJG*JBp=_6~uz^PSWf9RVJEpHsG<4Te15
zo2lz;qN$jNUb=*73=@??{h?SM{7StP2~VN5H>UltlA>Xl5WVDHWQFE^?|6ZvgpZQb
zXg*uIH_RV7u8CMhr8CoK{*3%uOACq<qc?<3E3$yg?Y$Aof%Unrokt;+X$*&rA;i&o
zG*b$<B5vI8#>m`VzGnbV^|q?!Gm-F7ghf#v(V9-XQ|qOsrd4nn#2qX$g5*tEhhh@K
z8J1rsTDtrKH~K+MloATsf3P&fxT;()LcP>1(Af|-Hl}FR9hGGaXW5xq3WV>i*!o*>
z7s;m%+zXT=4}CZ8mBL%05=rc+cw|CbSRrk&I`5&jC4n`Z0hB_P18C$J1iUZkk)$b^
z0W!b8HU2PAmczvAd(^qc9l)iRzkA|{!YS_DQdMRjEOC#~Vg*9xw;!?J@oqm*<-_Qn
zV{Wa<2N${^q2D#05b*DfRBl@GI{LD>sF%A+mA8Ij>(O#&gGBx^mrBe&tfhs+rZKNZ
zpFHGLZFZyj#TQ%xbBI+Z@ziU9Tc9nh*I|q6zzpNawX>+1;>S%Pj7=+&>-$P){;k1+
zyP9mdvuB;*T#!i;K8eOIQ!Z8_QoKyu>le}G&ez}UpKZewwW!vAQpq#O3<^#TB?d&q
zz;(qHX6)7i{v!n%8a(l4Kz^U|;cS81^At`yX3+bcc&8r!o9HC5)Mx5ny%~y~?ZK1i
zkNm+ZQPeTFF*<jKXe1z#d}VF}n(7Vt*^NLyqd%P}as|WWz?0^mZJ!(nIRHRk4)A7I
zZa3vz#d!FZ_H)Cqs>!hR=AN%4*S5EYgL_76`+zble*YU@JT-^mgTvpi%^in6Me>tq
z9FM_?*lLe*x`K0(Meq(!Lbtv(LM49(CX6xNb>KYoH#i((%<`Vi$}=Y@`9$p`y`%82
z#ZjVX4(guU*A)tvy-A$EfLh9EjYzP#`LuW{@oApw*_i#f^+5U){_UR!hGpHhLjwFr
zGScGZ_I*!6Is<Bmn^^kCxs5VY!nY=c$ru57Dq=g&UTDP6)zL0mq6iS^<K2`Z$*&}{
zb<fqF8Mya_>!IItt{$JJ^cj;GQ34T1end|?i)l^<&#1mo_5_dhg)NLFL~1<R;o8g%
z^9{jLQ)rukJ2IZ`B<qdZJkMBWPr2*v4G|R6SXxC0rR5tx-}^5PDRcSFuuH)7F0<i5
z<1fDn!{b9bSa(cSCvNBY05s`~M9NZ*^|M!=W_t-UAD?;$e-R+qy<v4k=uCXV#y(d*
z&<g{v9nO5wElf7NtKMfJzhQUx<)-(=z)q`7?|z`z)9u=@zOazzrcSqT!t`Bn0t0<N
zFIJ_<)y&en73dwlXU|X`CB$5Un`3^3EYsmUt`eQZZ?WUpv>;{7m;FT&TBc7~UdS8U
zb;^jYR9LeyLa<Mt2@y5C*K%MeEwxzr&7b_C53H;#gEe;3)fqe?CywV6O3UD>@72iR
zmeG9!iU|;czrbYPa*1w_+ytMvchFv9COr)j>(Vsn;t$ecAyd0k`~|M*L;R?~XD3xC
z+`HgpB7T#cYKE|sCNDtNzcDfRvcS`;x}l=mr`&#d=fY?*QhecM0#%;pz(*UErl~4}
z{c-aC8sQ@;@?mm#s^Fx?b$V|_w1q0)VPAd2cvn3j8kd175fcDD=p#o?bZth<!PZ35
zFZ(anO%5wTaBe$6!R@aVUo+fO80G4$TP`bwOyw_CEj(|V*88G3IlOL;OlV5P9XE|<
ze^W&NkV(C(Y{3909d)lw{IEZ@8H8_o#xbhPthRIY6n5eF6Z*-#rTz_DEnhIl2Z%C^
zEG2&h5*@ZL%V%b?tm${RnHp=Xbj~M;xZO137*LHs7amazTj2@%O2XaAUiFs#gd)W9
z2diXrPT}~^sDUNky{Q_OmLgymfGe|n!)wUj*vg@zrH*62ogU866*w~69bER1r46sQ
z$o1r!Th<`&drTC6jib0cV;`lwgHxvf5!oFXndIU}yl*Q*bgEs?$A&=WM$24=L*Zfu
zw-(*c<sDp{yS{2u>xM$_lNTBc@&5QPA>dGDc{~voyz{}(Y-;<DvpYfA8BCXxt>YkX
zrS!p2xk;e<>SMPz_uSzh5SQ0WVAy;>*GK{VEV~qj=^icH8fSTJV>Yf{jeJ;+<_gg4
z^UWW2PMr5o=ws!oT4tmcQ}tb!<5qje{SqG7ALA!Wk<jMd*4OPVw(*$4%d>rf2W%I1
zF}4(LKs(-?uLkHKbNm9g8H4R+=JfI6HwA_J5^#mqXskHxXY_AYlS@A4I!@yyo0-HC
zr-pXOedGPY8up)3FTjrzIubs9?aiT0j=b{BT&5Y6WKbTGkq;2+d@SV;+~Bc(+3}eP
z2WmpxRO!q)H#$tgTpf?m%fXry<d9$f{ne`Il}^y&I2`tVeK|=Pr9QWH2lGfut$~;+
z_yB-=MIH?++Lz33jPah2a#13Dt#g)-fo?<16ho8gh`Wwn0V*edgM`1=eZ>WmTgE{6
zB(iM>+v*dym%ZiMdEn=hu}ie=0A$zG^t?_j7w~`7aXIJYEPu+N*r~YWD8H8IcOZB{
zHOr@F(|AFXYa@8UoO?`3GCM)ruA7qtj8XvnPylAU&A=chX^0k3z#6ec3O>Y#32>1~
z@Y8q2w_h9=@|QTyXvOVwQpODwNw^uLL<C?)WfBa}xOvqhQuuF^t@vCF*gmGgLl}-^
z&|Kb>8z010-_`e}6LEX8ku8ZqVWjqIN!*+(FSD9i3ME+H97~wF7wjsviK>=h66Wq$
z40DqJa=DKiqkQKwEVruWG03hsN*VpZDzeBiK7{I9>~acAR9*diWa_dDL8ZktrsquS
zy=~uP7H_K5vUZR(sK|?6qRHdMRAN-R3;0rZ5Iy(W12qNTl6hXY@(~bwKyiu*M5ZhZ
zG?9|AluYWy)qL)RP8Du`#HjWC7gd<|NnCrs6fRfgp$zu!35oFs7+5aU$le7^jHYk$
zcm&RpSkDu(Xt0rQd!aYG%=n1evP>F?Z78dpnZC`<8CqA|?K76Wmg|+$>N)Z(;BIi)
zbc{{`N+S#~8tYMz1rpTVp)U-c$R)fP@LldMBR>57yMn@~2l_Hn7Fjcd2H95jpMty_
z)HSh%w1*9Bk_gFsABw&{3sN3e?Un>8?lFUfkBLMI#c6{)f>Jgdi*_)ebenEAgJ!V}
zbKxK8+BhInXfKaMUz*Ud$}Kfwe#^M_z2*elt1~AwwL3GP0n8j^WzeNj!|^|Xto1q4
zaQ?zY=!_43K9C9d0?9Q}nWhszF4YLvh(c<xh~K$`Fb+7UGgbEmNAV9WfIP5HDfS+h
z17Gsgin@p6{K6z{T+<7NCG4=P?)3Iy_I~UzjZ_(d;idH6`Q#W<0e3o*H%l)wRE%VJ
zjim5v8ZAjV-~Y67JHr|G>Si)gVR|T5mV5Zh<b{B@5&SF<AvnzyNwYfDs$dMeg?&*}
z`|otnecfkalzm7X{BRI2uW}8o`Zmwxk+^B!*QO|tRyC^o4BT;`+=TqFgpLoYPXx0_
zmzTRQ>x^HzKFQhmB{eu3pDNQU_3lLv*oIWhb`)(U*Y}hhn8|@3b#O*jds0^4^{q56
z6#|;$Y4y}1K2!-6F7^*@jtX*$m4W5+*3`^LyFp&rSY>5b<+G{ffPjTca%`dXRHx^N
z3}6=|*8ak^R4R<U4dOJM_|0L;+@ieZ6Mir*+AOg7=a7s`*ut=SP`UxlPUPGue%tGj
z(zK=l+DI-DqOjO{9!|dYwf4TdGIGN^-;<k!h64qPovs<GgDc+Xdn@t<QkTn?lIazJ
zqJLY+hgRc=M5UzEs(d-#;~+wehL)DxK2)*Ba29T(-~Rk9WOq_i%f)=MKdG}OSGSn_
zJ3>*GT?HJxSZ+4|&<7wg7zsuGO!eUGOo8gZbtvRFg4&X}DBn)EA7og0<P0FBjp#I2
zEe88Iqm8}T)a-<+?|y#7e$MX{CNagaVx+ec6UV|y!L?GJ9>!m~mMRm2vfPw4<+4|<
zLwasLhf@YeQ&ZD+5vdjaMpDIKL1cVAwQ}e`xpu`pn75KHc@_I(OR}21wr9Cp>TL-z
zI3oB)WrKttK1y;_iRQ_pUlEZeWwnd07BDwz1Ahl?5%B@X4%xnUU7sRJd_Kp_pI!M`
z1OuRB%<GnXNze8zy^bj-p+f00SBJ7ezQEE=S^M7FHOCZzUjQg5J>~Y<4aa1D?oX=;
zn5w+yC%lexvi=hqjE0VIv64<A?=9k+0nU2#a>2B0Oq9P=2r30@VV4fN2E)l73Crr%
zq-+vwAo@v{f<10;^*aFzvfE2llTjh}BFCkaK@KmClja??{jQP(j3pj7h{yaS87&bl
z(b8=>Qqt;AxFPqHcb>B(`8*uEmuvMPdahPlUAIQL^CNp92R7!Ij2m}n?E!<)KCNwy
zii7eHDQ1v|4?#uh#04Uh(EgDlo?=(jn4BtO-yeSAmD~^sA`ak8`@pc=J^vASvL%<r
zl?u~-oEp-`-J_O>lvtn+XDHsHRxVYy<(FTv4N6GidUF7Oo-ik_1J<b)qT%PJHv;qZ
z`u`qUe{|26(?GokBxXUQ;?J0tT4~)f`U9$A{s(%I_z_T&t7#^^DOuDz#2qo}pChc$
zo39H{#Ukq6>+!_h3o<Gl8Qa-T4-lNmF|AOkU|Nqd>aI&Fnkb@|l1=C*x6jfjN^I{F
ze$w|X1BlXL_oRoEBAuRI4M~zu_D%ASN$^fc7I#wCB*<Nw->2v1tIpu`CHG4sYX@5*
z%^J%cQxGl9KVVh75mgk*{065gAEb-4TrC9IP+K?jo0XyCQgAKR>BkdB(EE2KO4aqL
zmYX-~jSBDU8j;K3NI)ERCKP<~w=lFSp4kq`t{AOn8gt7!ZV`|U1eavelVg3ijg&o3
z@n(!RtGE3?xL~dbi|Ald&{~V%rr;UG4?iq8*mN5ehGdf_$8rg7`?BQ@v#(&ICix#1
zx)bbMkJOaKbWYYODcmeF0DHf@ePIEx%N%7Hd=1{mS)KPi3a+;8aLv0Mrr0(%pt@2~
zK&Q#C#~ZTCSkI5C!NT*oEc{|z6ZjM!vJ)x{H%iSniq4k@clz|^`?NVRqTdD;yZEN>
zegV-o+Xy8_*Zw!Y6^GEgQR#}{!et+UWPw>~dIWuriS#9!h>Lz0qV`aXN%dQf^Mjbw
zM=X@(y!(ZPV39Y4L50+DoEv{E_>=ajWr>%cfH)y)vTi+<{o>~tx;e9fi?8|lDdL3q
zlUa-Q^eY}cQD$M%dw#gUD-3_y(eO=E3B*eQLb!KPE(vcCzT0pY+ap6DjGEi-^kuTB
zG<xHGDZ*pv4-+A{4CI57af4Kz5ifUTYjAwkn;;fsAocS1VUM26H5QQAi#lJn$mJkz
zH8p4InbG%+9-ED|B!h_zBaRaiW=E`nM}pA@FX7A5lWR45Dl=1KvL;@O3$s}x(r{T3
zk|T1zx<}=HzXXkK+wBtR*0UNsu;OK5q?peCiu4PR6A?mdkpfcopM&Yuxnu(*ZxQhF
z%WhSe=ehM<hn94FHsY6hnP9Qm)ziZ<Xljl3ngC2QM1q#U|5DA4nA2<ZzeFWfKDCv!
z&r&I@mt$5FhbnVg7B3hiJQSMhAQO<!oWXe9`g4>re$B)B<S0*6tbM91LF%P#cM<G`
z{2CvK(*zfp^ka)8%92IUPt_p!PLfdO01MwT?5%Qg0?B0fKB=d22mSpvdW&B?=WBGt
zB-hv^%)6v@IR&xyi!@Vu1g~Rr*=<Z-h>W#0iuFQ}vM{<cc~95pei?Oi5+G-KL`}{b
zr5d{hkU+9yG9II(+hq_s^hV?oMV&?I+{$>E!w;=(<A%#>iV0&ctia>PG-8aUc1mwl
zIEO`sb3P7g4qqe%jPc2)-xPE1Wg&t6e63Lr^#7+PqP+!_R-P4XmRKS7&2xd3_ZJ8S
zxZAxOnd(72sKU6hY6A-62mgu3$SAMK%+E*Mi0T<m9sYPMo8^j_sz!(_+~IUzf@M0~
z>xDWj>HAfW@!Bu%vXqD9B{@k47qNmfy|!psA^~d+?HN&%mtK+dvTYThwyqH}DBWF1
zi1$WZ(Kt>;fD^>a8EGi&kT1v(>ZQvSA;Hd(w7%<=;!is2`ZSeLPYW<6E$J%cTHQ^>
z#~!5wt-+*Cj%e7ksoRI@(??y;-yqE>|0C0j`9wDBt(Ql*v#;XnYJQ%QVPAqJyZn-x
zb=7EJ4i0dxI@Iqt>TV)@9EiyKMYdmCpf}3gGa6Ba;zLjEjZ>sh1(Tmg_Dt{n;yte)
z>X>5WbO}+NKAaVwaE`xpxGPoZw#0b8?vIKGo3-rMgbb5NNh;Zhm1bmv#lQyI>Ajwf
zHqT?2oy1Y<#B>4?X}2+o&}DTyH!f{Kar2lB_18PN9(jM|!`Lc4Cp4oWHy4$put2{v
z^Z7qzr?y#aIjNV#%5Xshi7{Il8^PEimW;XVV@igASWW=9xHQl%TVxrSj$1wV9ylN_
zll$4<G9f0N_{jQD_iTuXQiGLVkE+hQprUP8T<&GsaSXuQ(^l$!PwC-N#<i5+Hxni9
zT{GNPb9I`Ub<XM?=*ke=(*sx+d9bg%$Mt(-xrKed+1`^rHTQU#ndRlSJ%DqhqQU9#
z3=$@fsRT@CS6+Bib$q7zYGY^6=?PJy5~VY#8q8hO!~R!tH>ZRtMxNoDQKCm8vufk}
z{sF)HbKl){-yVH6JUzIBo^LBSgTFE17B~9mnJY!Q&vOmwdyK}!mh40>sX0Gm8qgnE
zzAs##c~fE9OU6mpzWyuO<PT?zO!z^4ua`Y(abihKkQ+(u&jBY*qNI%Hgv9I_``Q}o
z_K?1vQKjKvB-<!Lpvi_SRqN+HKoyjPJ~R;OefWWicC^0#4bVFUad8-6CC!Up53&eR
z)c-f9Z+HKP5jPL*uK(L^wMeY1<O2tg?qq$}lS~Oqdx6TOvU~?UEQtZ;F)n+jZssY9
zL%N)8f_KP)^JedKg}8B%_=j?f;B7R%CjaIL)42kRQ)~lXnP8kqP_dfQN&=U730I}4
ztm{%CMnZ?$UzV>a)p7J5Y6m}iqw!36j=lO&9yu08c*~C(8!e{R2^J4QYlYU&N(5|k
zN#kAk7J1w&?<N*dKp-~a<e6J8kvtPqCA5f42me+_6Z!s<JVKF(ZegO#ERapaQAg7>
ze7oll=z~$^oX}UPq-Vy2T)k1YWZTzQXh~^tKY;SuhdK3UCAV}cqBbqUpSHTiRUMi%
zWiD0<5{AF~I`Ha}UKXhli(PM|g*^X(pZxGKD`*mS!5e5lvtbQLi-9kU>z?MODd*cC
zf0x>v6H;r*k((+{aw4Kx6c{&%)C|H?AM}!BvSSYbQi_am>bFKnVCT@2`@Q!T)?{Q2
zro7eXG8bZfYOZ3lGP%iV6TDDU-P&CI%d7WjO}RB_<-H8Veczx`NcsA2!g#~vGd{S{
zo(3q>3#_v`mWs0f9krtU{wY3<2G7nZN~^)GXz)8SGbB(jhC)Z?nh9*1lG#kJu6|80
z%w$(R8Yco$ITPNtD){{D@`@=lQ$TJJ>Cq0MbMf#>2aOQ4SQ#v}y4^EBKhikAVIz0X
zYbKjg9n%&0vrKL2&)Bg)`wH&1`|h}5sclewUTe8t&f^u0x65$(RGK?pGitdG@lf+w
z;`<A>`n2x_Me~_QdF%c|qoXdiUd@<Gf)7Msw6X6TSs7CS*<y5K1*?mLdJSeUgw_|L
z5ODX=TSo%sv2{9x<?o|r9()9u*WVjokB1@6kr!){GLd^p0wd~nGr$5@eUM;9`XFw(
ziscKXk@~zWlL0sK!#Q-v-h=b%NEw3vK`+Q)E0fi|5SB_qF;iftCZAX6JX^hT!$ANX
zUzf_S`lvz6Dyj->N*uj_AO^pU$%h>J1VHHqt(%ZV4Zq7n2A`c#CPn%rdIe2Il4J$H
zJ|MRHvnDKupMheTkf7c{Plyj`7~PTeYEcMaQ*-LGqx;s8N_^&>LQo!D-u>1Xo!027
zVh}?`fAb!yAniW$d7oLE6-46-T$31?Sp;Pkcj7D8m2yb_>)`1SHG>N8K7K~Jy>VjB
zl#qR>GEL73x~JRBskKm=DiSg3xUFV(%t}$W)*Z6a9Fq8O{Npxn^y~9CwPL(z&A>j>
z!eWJ(87L?Bb%Sz#o%~T6V(lh~KT;m<iAYh|CA%YG(X5}e%vb|e{WKN5c2OC6sL4uS
z9^7egv7;27rIi2ys-pxJ@ob$%o67-zFDs-z75PS+^PtAdgo5tB=IVpr?C<q3(%7jy
zk5NWdw1)T$*m^J_=_MACcFqZst9o>a_JhWJ6kQ;X5iA1YkYoiy(vK`?9mRLQ3+MW;
z#_o@+#w><X9J8f9fL(^x%N2@Z5{(hzD5%oJY3@O$(T&GGdL6{VPLs*XP?cZ_;ni2l
z=P8XpH8S~1Qs{p(<6@R?V<-etzg~Tkw)*j58!05CDJ94s>)3(O%_-x|V>s`d`OSS1
z^47@$2wds6>Z8&gxe3a>>eC@*jmZc~$?1#?0rj^FjoEgbr&vj&0NulQKzg`Cs!EvK
zh?;Sh#3NbiW#Az1#Pv(%9`P;ZIUo6jZ^yT&%{X0DZkVP)EFs>e=~AQ^t|@h3mLxAW
z7s8tR?;&IvSrmga5E+PptplxjV`3uh){4!O2HbmAvc1EMnQXnX6XdCzlL1>BCH_t1
zA_~eydVkSxx2H*qil}0q@wvGO{<D(G6P4Df??m2u8>;z9-cn#*N0+5j=pT=uK{fTV
zpM=2{fT`6MQL4A(`K}B{{FPf6|H*inV?pfl884sioK{x{p)$FSi&O0~NkBmTdy_LO
z2y4^#)I5PA=N%iT@Fe3M=f0nw2=8DeoL6-f$==6!S2(DS9?#8plycKcnPuvBjJDK3
zg`CpD)jR5Jp)HtI9VE)e><f?ZBx`U<Zru>(#Tb_dopSvz&79;-<rHPwQL?05_N+hk
zVpizbszkEOGLi_QrMq9rr??(*Gs88<$(A`IHOwLe?I(}rQd#%_p9Nin0NqK6dVR4r
zPPMF!#U=L#hMkTg!hQ{W6V|&Yu0#5rE2sJ04}Oy~Bq_yC$Q!NsdLo0F0oSCgB@caQ
zz_3y@3(dHvDFsD@4OD>UyHB<(qAVKq!xQwxK@mxY$LAYEZSV84s!>aku4cPxto|VK
zazHlbo|b6EmprBD1)aPOJCOd&cZ1R+Vo-yZ&@bR!iiy#K8&?nWo#>+?_3DQ^Qg2RT
zgd`-5-H`lu;_V%_?}djAK%L?fdiOX3N*$2(RJH4X4xJU};V{ehIa@K&Q|&u3^HLn<
zkXAe8CWzbEzBmyblk|H+*8QmeJ{vP-&atudh^ijA!)u-Adl3WX`zTkQQL_DD>`y^u
zLx<I!gCCB<7&T42Y_1||(l<>17nN5mXE?Y|OG!@<NADN@1!bZHxS1eg5@>9hdrXaz
zM!r_UKOPd2I&$$oT)R$?y!V^FT7AlPOp45lq%ajp2hE>Eo=?D4WQ<6Pa;mz!I4@+P
zR&E;2$25pW(x8bIlnpT=b#$Y=b4{az@&+A6d03&45FH$bjyk0KOh6!o@GM3hQV<v8
zQ1J7a6R&DL)g0~+xK}BnC0uesv~<heKtMvDhPAJuw8moFDE|_y=pS|<)1Jb{w;Qy-
zASUB;V&vcphM2;h@ooCB+et|+C-@xcH$_n4z4x_*DalB0*MXy|<b5fL=^nyFIDv6?
z4lX&HkmkQe)$}ga1@*(1@M&nO+>&XHC98c&iiw!lp6g4Bj5BMVB)J3#7Zqd4(Wl9A
z;aBaX+6#jpELbcFavn&ZRrcE5+E1()S3IPsrFv_pV{8sjCZ?W%yuOU))ap$LzoA~H
zyAwf`!+fcCA59OGJm{fcP=8ifw?K3GogTWELu^NK)i8<bSMr^|*ccKU&r7JUo7+F*
z<~^w|Dv`(FN6h%L*==!rgRiIZwz~%n#Rj2aV55FW9Dk~C3vqppK!j4*b+}y2He|UT
zhI>EZgR<K%&ijR$n_T$K98Iy`XZ1z<BU%U@B;ucWAYQGsNhX2duL2ZP&8|~R*1>8C
z1o~iLSKm(xX&!utp}dKPlBFcukbtH+N+kqSV5B^SwAIGF9~C1G$b=k*RYUD92o1#-
zzxpT(w+`F`t+>VAfVzX{PG{5m>hxIkRe{RH1lPK-M|zt-7(J<sha`-9#2dqV9DK^2
z&z889`!mFz-37|$t{YBGqIZqs%j)$u^`#tM?wr(vp4}+QL1*m!L~sh@(sr^|ypDPz
zBJO|gDeN@LRaLY3`d%cL`lp)?g1dYg7~Bc~#8M*QO8+8Q|8KSP|FK;9pVB#O;YdNz
z{^}o_s0uZrbCh;#&O%Z2PvXwp>z(cCOKG~-wiVK4N@G+;e0OGlk4eV_a?DExt3_me
z44_9`2O1vSvC>}-G`nIW6D>Gm@^e=x$gP3xFIpCKTLS{2P4h`u#wBj4JmdDU!q=*+
zH#n?LAku8Gd4I=XJedP|f97BTvXUa{_F!Hq0R0O6;!PlX5DFYThgkVd<sKMh_`fV;
zt+)X`uAtC9*j6ikfKMRE{w4Q((`p(MM#3s;Bi9fKvRg}wFnrO|OT<T|)z8P*`sg_4
zyE!%(f|dTxOQk5dm?jC_V2?9((2j#!8&+G!3LQ_qo^6<T3Qjz^)$n_zmpLo=+5;|g
zxMkjdlH647dO3T5)qkaUdO9529ZakEEU9fFsd^4nkm0n4DG3#sm?J1RZM_W?6u(@*
zn0_F0<aw@;oWASZ<F_!%r}!*Ki~2V3(7R(+^@7@@I&EXo!O2eCbA`9t`&X6%_8vbo
z&8)eT+^uT{BXT-p%1UNbH0Bhxp4s;Kv!_5sPRex{L*3O_5foX;5f!vwo|T>^+EyZ0
zBbm0-ksNYz;f22Y%D00<$u{Ee0wh$VLkU4sS3$upK#}LAcDC**+5UQF@i>rOL}@MN
z*b$P%b4RVKP^%xm(jDs|qWC;oU2i&^+BW0qGlBo1HTGWXLBgdGuh>2t#{;>O<3E${
z5%}|I4~6STA0Kt6Y~x4Z`ifI0|CFBwFfSWL@JF_}Pi?F3UB*Qjd!vsWLKUA-PBj6#
zl`J6pv3e&9g!(HJ3kYF5{s~@uWwEcam80C_uvrdSRsrj>WcMZr#9#c*oA)L9g^WA2
zSm%px9cuTxPkx`CJ8t+VAsrWe2z#NLG<E!s5LNZ%`z=YO1A}K;x|%l!_dqExA^d7h
z!xS7Whql_=xDdK0*&-RAAK)lh=g;R(GHHX?)Q(DW%AUh(^X4*+#?5Q~DL0QuGC2Ds
zGSN5ELB`!!F7JJ@9gJq?CIEL7X?{8Bkfy)UE3hQ%dn!+P`lZy#aJz_AF-c2mj%EJX
zkn{fY^-xO|#j`YB?4-#+_MO(oe&>b_t<4Q{#~@+Cr`#RE${l}a)8nsvS+k-3rhMfh
zF0H$%`x*0=MrBs7%}tLb`6ib5tmK!BA7H<=w!FwtFcjFGzFe;R)9#pQUOsesy2y5-
zXmNG&*99BS*7y7Rth!Z0QL$dA0q42$wWAd!|MxEgsLT%>*tNal*gO9y#A^$+{}yre
zglYEAx4IK|k(yrOS99lDXGU4@;H!zO%-Ik>Pt#Q#Uq(TJ$K_8`lAQNHJ!A6>Kl)mP
z_C~HWtkY&$=liIg&D4kpwp<-9>ioj(hN6O276kiS{1j?~)>s|0zRLOoc8pt*Ji-gD
zL36X^V=@qH+=?qy*ZRh>Hf6yNyq^B0hZhjrzTBSJ5!^mok9FR){n+cTIJv`~nyiU!
zT@?JXQ_jhZ%d9?7DDjvA*NXNzGvj9pzDvwj2xF+$H&`R~Zu%JH9USwRt_VgO-{kg5
z=sp(kooINet$UvFNAfSB8Zih90JQuG!9^44<yR290)j`vMT$H=`R7puk5vwDQxiE+
zs`z(lCN1JE2*uHc;2m{!Z2ABfZ=FWz6yBmIc3JPtIbL*~@E9ffwEq(sO$@bm#r*5v
zdUrQjn_i|Rb2*oU2uMfJlWu*zr0frwcv-W+hqf|DM*5r^cmAyyoD^-F)?S%y$$Q?Q
zun^&Oobf8FS2nF_nGo17ef9dO%<lV^{vWs<fpfMH-?Jr<bXM+ez&D}k)NaR+Irz)0
zS)-7^4Sjf;d;aWp=tm2WSp|4WQcB1){818D$~KLB#|zyg_p9v#Y?4yz7i8${p-y_i
z*^dwKiKPE(+E=d392csS5<)`0-(E3~wlc16K5O4!uNFD7e3eUUqv**#LfGG};paHj
zF~L_zXBHH^R+}t=lo&Vv^qfMRWEJ=wafA$h&WH*bzYJc>Y4qvc5t6%FE0z@wcrjsu
zxH{^S&g>p)|6nn7bS7Os^Sm5f6O8=E5F3jw)Q-1bj)6+jq>`+D>uO_5ie2(b#<T6d
zhP8EF5hgm?Ul<@6DB6E8nU8wIR91V!D=0?0!@0?o<G}S=bLF!#FO&Sno|=5VFV&(!
zEb%tO#Hy+FxW48yD9;eVUt)QqbF#m|ft;`-c`!(FbZRC-Oo=M}Kpn4^V%6CuGheI<
zj(Hx~<;$eN862ftCc$)+Ncc})^-(mT{<csY7u7!b#Mw5(aa~=a^xU^Qwl|!(a-kee
zRL~1v$Eafc5Q<pRloXq;Q%=t=4F_W%4TTMjpVhZViXoUmnTUHtF@7j9k&+!ancw+3
z&q|nmwQ#Rb&VX}Zo|#CiAA0m~S9Z~VslnJqs@@{Ysja9#&hKLQ$4X`rN@(WW7l?$%
zwbSmrr4`Kv__~&P=GksCS;|m;M^hCzcn6VTL-*q*^H8?%x07&KO9CEUcWq>t&z?ST
zSqv%MWec|SUrX(MaCZ5z{~O`kQocx_-2VF{3&*tseKzqBe2mM3J@BhP+rGAa<_&TU
zt#}+?X5;Q_i^--+YxDNW)V);voLNoNM~Lv`*t8$CL1+RV?LOz`Z0fR$!>(r;?nFZw
zsA$M_&5#n&KbkzhUnMzl(G@|2C!Rmye4KUH<Ansc@*-$2bIA{v$Dm0njEq;eyY;IH
zX`{zek;bs>K~KXyDssQK!t0{0iSvDD$oaMj+kfT#f4J`qat!w|eYbt@mA1at5dxJi
z4n5a%sgJ)4&>Hd;Vbfhrbs$h--PF}an!r=jX#2ALnTeZ^odK~WvsYT5QwOzHfqqd$
zT^}|bsb_4%sW$7`%jR;K1j%}?RidP&nORQlrNJJ9-t~L>A|<mfPxSfCeO{6yP0kV|
z@PeQTkZ6wNWHupvo2*u#{B{B%CeZ9}w4}R;^~LPnhnr`6o;a)(g{9TtxBcq(6-e)+
zL$7W&+D!8@Ab=SFO>Yq2w6Rjk4zPrYO{7=g=dD6;a4VvC;bW!!W|6d}iaS8J!B4ws
z`7P*DRZnTNu431x6xXXaBD>MN->H_IS>S_^`D<v%D|~{YImP)(?!M|<ZJ($AlHlSD
zGduS&{mn7d`~ev_aOh>wC=+s3f0FLb9`JMm4=VN98GDtbK-*kp0Fw0s7MwBiMCrd*
zOg;DS7{2LB$<$y$(s?|fgt%pTD;EdgT*^YA$JvXjPs$RYm8QZl=Hd8O{j+*f`+(a5
z<l0=q9o>`O5ix*QHFs*W-n0pkY2*A0g%rA#lKM0iV{i_a^Q_T1-&V8Jn)Wf%d-%zm
zyic3LY(ydt&knMSw=YvqB?ozKQPQW2mWZ=e1lLIlO2X|oSTrmaWP3#9hF|5d$wUhL
z5Dh)+&nP6`q33ehR@Ewl+Ut>lBt-GK`wT+A`Eq&Eq#(COR9`QL#iR<abrg1X?7hO=
zb0W+pQOpj*0!R<FtY3T()Y?3aciTn(8L}Kd%&I$U91<?K@-xYqg6q2k?V)t!g;U0F
z705LqgO3sxh(S#-UqAc>+-P_H{LsrVOQY*y<BW;o>CxBzr?VZ6eiK}u<JpIPJ#b<R
z4IU^Xywu*j>eb%t{rWt{vr~K`gF`9*4Hr+&v`YER6N62O50;@`!#@)qg#Fhs4v*xs
zl!!!$Y)O2c4GnQR)6Wu6oYGU^{r4Y@Q<$dI#oQFgZSHpg5TF6wc}sYf?pVmXw&SVF
zx#x}Flu5U*C{HICXL5mr@n+ABvKj{)EXwnRL@v`t#v9W|T=8*lNW?Aq;}@4LdjDW4
zp;P~ayh5#izr$yJCqAqHwiYX*j=v?e571Q^OOM8CLh23dMF7u@FX1*9F)X=M*zEPD
z`Mg=pW{sV?UY-8^HFx6|S5jn6zwP2PJ~vD`mmR=*D7S#$^R?6~k~a>*(4?l^u2Vhz
zXT9RN4m-fCz(oU1Eq`-M;$Xq`bZEvZA%+|bucgZ$tSXi86YbI0ob0${rs9wDiy%{@
zluFKpf1&0oVbuSj$Dr$wkvmUbLKdw7ptZA-{^czu48vNYhH#ndzeFsvYU=54reXVW
zCauL-{upXgIo?P2$WC4*wX8MlYr)KH2(CwM2EryjlW1w0wmK2J=Rx?Te!E#e9sHU;
zZT0n-WIxlqOwEqD*960c<kOvpeeLbRJ!9}c$sERWwYa^N-~xq;cLffFw{jd+IBzXt
zx@C@*pF5wYIm~yx>vIMyfkLQ&<NTOjvhIuZE7M<cEdh#?sgGLdN<{p3wKk$H8_3Ei
zPUN;WWED=eCfG|~V%>|9*^IA!ueZN%mSxqvD)s&TMzT&9A@^rd&bdG@`V&6Bqpfwu
z>%@A9_x>G*H-J_7XDowwp8b36Cj+*PRA8uFYHNj3>O($8oc!R@g(Y(@)D%C>hg-y?
z4^yZ<uAz>KJapHa=X%(YA!>)`moY8n#h$o_I@6^y1RI4^c`YO9i!Q5Svf^wQ@&0{_
za@ydC+aE=--k<#h;w|hRvO~*)d}Wvnrb8}om2bO~;^)Jza=p~pwZzI+M}=7)6}afZ
zrtoIl4N5VYt`0>KcFR$iVw#DUuTt6?SRj{DNik3JYN1i`v+?oAq_*LEMvXSA*BNkR
zVq<XK!~MA0#`%XOK15YzE+#t)7i$HZ8!D!~!IqicPFXn?L6-^o<2<;jWpl@gH}{S$
z1D4v3-iNt}H1EuL8NJ$y%iXPUAW!x?s@yDs<wKc`EJK!p;ZxhR>Ek;3h6cNJ^(}x_
zhi>ey^t_45b^YpAYYR{&=2Ip6b-<lc*9ERWneT|=t>xMpaN>v~_l_al&g;TEpZp*l
zKb!w&p?xMJ)6$iic;|V;sZS)L=PivoPkh?bfgxox4xoJAIfsdE0iIt&T5U6XQsV@P
z<SQTU><I5`*Jq&4Utxd&V#oU5YmM9e{epKMq-x0r-gio*pAx81)C-?nWzKFMn>Qj=
zQ0hvbL7d26nBaV3)faOh|6l#V|Hmih|7|e-f4zVnKQz6==ei%E*9hwV@1L8QJiNna
z{OFe&ZN@sTJga55U9M4lCMb4_xx!qY@VlV@Y2%Ew!MD>Sub=*n8A^Et(@+Gg;FXKa
zCbp$N??mzOO;<|53r$T-x%sKG`ayY~pP9^hX&SbVuK+pCf<Q0-lpGQQ{CURyTeZFH
z9QBVyTK4Al|6C3VTpx9HW0k4`wa)NIS1HrkuGgp?4y^aMVyO^npa4r-Ze_y$`ZU&)
z)$!k55~W@Mu38iA%>>Co41&7R*g)okh2JFnVJGFqF)A0!+NjVV@4nRCe;ss+nL&G;
zM<=x^?swob%y&ZUX3!v@F`=?h-LmrlpC9P<Zk)wkqFT}Eay6Z`pPQp#3T~!tw)Cyd
z=Kxe%4~Lma^8pPMZ{Yi1>PWo*+1MS}u9Hw@z_+}VS(>4xNB0he4%HpGH~0VdCv@Wf
zm|{Do<V*hBX!UP$>UL<bpV8j@k;`Ue)w)i<!jqe**v{z&+-wi2t%Vkq0H;7`K?q@8
zvhn`sJzin;hml{<@hGdA`jrm8RIPsii<{q}DNL%+^R2J_MliOgQq!(q>#hi!6No(D
zae<DD6;VO|#Adf*>Ftp+_mG3!m1w04+YH>t1Kt2u$B}@pXd2O$i__x$Bej|bm7#wQ
z_v?f;3#3IGvlOp(slUrQukQLc@c<tNLzE}bGgyW$gppu@OZ=%DH*?9L4O$?9N8Xm=
z?-%U|n)Du0*kt8G@-fKak=`3`m!~A`9@Hv0KJi;_hO+164K!_sbRaqiV>J)L-8wFh
zSBm3B2$glKV^Y<nM~nK&Lb^L%c1>s1pl!l%Ee<Q#AitrF?|W^9>SM@V?<o(g8hDRf
zYNX!P7?3&cD3xpfD;4@6H}rgF|IFI@StemQc11}_*7ZfsfwS(2&V63WG<`FzMd^++
zeN*?gBkVu7r4HkSg|~jw@sx{T&gIofN5Q1jwbz2wq)Cc_9uHv~yt}F9qoO#tC;DCX
zXw=w|J=tps$v+)}p9=k@LXn{_J&Ow3Pb<(H*+9$%p1!fRwyJJl3HLfnJjpz$&atvO
zA1=Ax0530EI~;%doFpPTU)&!gRiNU!U28HZKMvPQ^1Xjpx6|li)wD9a^1+ha5j%7?
zSYdv0BFG_n0=LY$o=shgZ`qvtceGo;xrsFDhkkQypO;ygmzMW=k@x@jyD+xhx21(R
zF4tg=S8m#ro|DP0iq~gDSq~>HzE-spHsI5UM&VwL&>)4kQGWBmCw13X=UJjbf2aWS
zz%zl(>K3=N$)S*E{qfB-il+-Y%9Yj4&I9@FN1xrt+6!JU#;yojpXvAmT?>=`tKYqf
z&-(qg0OPFhyK$k0>x+e=6^ysLu<=mGXE4;)tZ8!&h8;gIFu95L%%R1%!Ls%)mQOeP
zlaq7D5ffR-+o2);UA)n+NMGrl?RS}^7vzgA{iZFmGEqEC{MvsYrC8M(9KF;}6xv*U
zfs&hlcz$seSJyMhH|o-GwR5)80<$t!ygbnDr$yo{ueTx90xrAWni+lV6xOEI?Pu*?
zuO{+Knvb_HO5(9{ezNWI*J?mV=6|gp32iC?{XE%vAlPA7fP($C4NsX7ev(G%;%^<$
zelbz4{R}h};Wcf?pL)}4M<45E{7*DTtDa;v(AmjoHGuw!dN0oAh2esiBuafUPBur>
zKb^FT7sfg&9^{yn2R@T%6K<TTbGw>DG|oQoygF{|&>y*1+h&v2jh(WVEt&B+k6h{R
zXe)LdhyRB>xXC<gBv}w(h5x1$`U}1?c+M^mT@dVYHnLmI?`Y}!>dY4Au@fA;^raFz
zd!k?#5=t0Ysf@OGI@s<UaE9in`7}9IW7t${5zrkB$8%U)94l>1dEwY-ebs#trpGwG
zETE~PmeF-rde$Ul^78U?ceMz!eoHyh@5~bZ)jiL=;kxV1%7x2rMb5aWEFjD<cg$*Z
z3$@_EhA8p=?=_=sRz@Cr(lS4`h3?R@8})Ah%*55;;KSjS2r3bNW~<kKepczWBr6>M
z*0IwSX>!OrZUMS${Tx?+qw7u=<0tgAd5?idtDy?0S&uH9aAg_sqV3<no;~!w1jF(A
zUiQFrV6SM!+5sCtWfb0Q1&Dn1KTj6vCuqP}r033T{D;a7g+%A~KS~@$Ok+{g9Q>6*
zSEB)g?*j|0+zPI=WVWiz`&kvG>O<=6*A4R@J)2n?mH5#AvF!h9?n=X&y3(+1r$em@
zw(gaPO3@-qKq^9lPywMLf)-iAmT`%w5cVW&A@iUVtTqu5A}#?6grZp_A~6JrT?9=q
zR1gA$kQNL}0*M5Y5JHk3be4ZJ^K<TVf1SIXbMC$8``-6E-+QFyb53I$VyweWvJZ;N
zb$Rky)=+$XU)QwB!p4D{xuwU4mXVq*z;>3`2s!lOEWkIdvxtpq#}Dk2H45+Ye~$N%
z6|0BWSUSNWS;sjOrcS;Uu_9vQ;P^m}un>|)XH7K7%m^b6(~=hN{A^kN<Lwx;5%#R<
zEIY_W>A7R`6}O}#j*b3ya7)Pf3bot5ER%jhluldpyFgt*@=`y8#VtHy;_0z~eAZ+Q
zk1YaXJ7yzTF+x3}YiBRBf&2VQA33$n_h<%A7D38u`^1h<T=2M&zFtL<rL@`DC_}|;
zLs)t&4yBv@2+p~<3K6h&#VqqDqKKV?<AzPI!oRiF&v|D>wUO=oTE-}WFg2`xsk1}r
ziSd8@@}y?#iQRE|3E96_cfwfQx+VGRt^A+rrLRyYabyQ>*9Da{K3)r-m*>pvwtQT*
zL`bxW-E@wof7;6jWRerXYpk3#M5!-RK`?Qg`9%Xiz(5H%p)dLf=QdpW*DrVe8TM^*
zzbbD69ttByopOD;yhINSo$y^M@DA>U;S*_%9l<@(=tq5WPa%#z<v$2A>gVf%y!JK<
zHzp!$l3v^0&*{BAa-#l2kbf?UZYF@NeWs{O=zHyRI&Wlcx4V>EWlJnlte5Plm&RJc
zWF5=2b6Js%F~d_?AXdD88CjWmnlqye<Od+(x#N7FOBz0%xF?W;&*hl3MJ-+OdG*ho
z^)s{;d2`q>!E^F3g6i|;oL*|naE4oF9URnjZYrbee0Vf-nVTRQ;)yp;D)@AqPpr-;
zSR~}#X$pZ(#JjaEnSke^t~^jjx!B}B`LzOB5)rr)ZL=%qA13H<^uZt-paCMsfARVU
zCzjpTZ^j-t-G~C~Sjq8J2WBfP7Bo=9Y4ASJ0ospHpg;E@wOg>h%HH?a)8D;(-zw}f
zKaIZODqDh$;Q$SX3wo+mS=lOAN~<xFyv4ZiSiygRI}n9k{NoUc`vKHZj1xxykYk-;
zLd&#MR=6#~L6p>w!Kmn0@>*#j-A2)kU*sSERLJ(ETBmk3rHk;S8#DQ-$K$eQ3m7&~
z>C%sCErjI2^VCy=g0|*sXlep|k*hW{FsaKvS`<YZXQqY*(~l@n(QqurbUJV~RL=5P
z<pC%_6H9tBQk0ROKHQW(wMJL2Y0o>WFT$8yO23@wd*>(ZDs4)V2e?qWeJ!agOUQVW
z=_jlFW1GTm%H52($?Bs1@V~1FW`l$Mhv%Qy4wLuFevB2}mWvZA@$wW=I}p8Opl&&5
zS{)r^HK3aZsh?IEA{l-sC|kprg`2~u!S+DC;K=m|cH0Bn;&7eUqgb5ygMGHXe>G38
zo0DkoV62>D@Vcd2XybV8ZT>ghyT{(*jl<+wny&02{}db&i8c4xp(dO&qOrPC#W(tg
zj9c*$5=9g1we#**6ZgDlFU|?TIMiR#@3$NQQn9F|f={{D$Y!IdP<9^}q;eGlUM2Wp
z8-5xZ_pJyOUJ0+GE$PGfHp0i8`w9x{U}SfqcY3g$`<dD2m9ep8kWr|jLuwYk{3Hgb
z2Du)*nbgB-kQ(=dWfngjZ@*r+&PV?|^n%zif&ICp@u>S?t#_|o?&xn$JuaBys-3-i
zXC}Y@3`l3}zo2K)A=rWH5uXg+$Im^H9kTXYxu;UV3Sa!?NXE*p?|c#4(;r%!Gb#<S
zaVvUK46Oqlmz&NUs?-nK$%e$+9FYqzWSEsOi@17e3%Z(QY`BAw#X+hiFHv6w-spoB
za2EizY)_UTEa7wI=`Wjd1>QVvYlv&|JOI{Z`z6SbY2krU5TMeFLZDpZ{3z_`g2s<Q
zb67{>PHNMCMX>wT+8M1=%P(oNC#M+>R$fa{o|+!GAZ^p|aU$;xaq;R+Y<9U~1LPpS
z$+r7SOHOzDqLP&m_-(ODA9wfPU9{PvhgCr=)l37Rf>O2V7!@UjYa3UOoEX*d%*LE9
z9&5XQy@aY?LeCb?-RXXLTMY+-Mtk(z-R^(n)Zy~|Byu9~?D$C8hRez;oNl|^jNk+1
z0>P7lwG$fmkXo73dexBTlG@Z3%3S3#T0tA2_{fS`zGMh}1QiMe$#6V$);UBrDU82M
z>cs`#83%O{T8XG%fn-gU$b9yDx6)=o9PzC5R$7t-FZ?29F!_QVrO+E2j9?nt2J_vB
z_$otg2`Q8=CQ(D~_ZH=1&YbAh_j_Xcs_WFxjs<91=%j{AoT>fY_KEnZ`Ni_pX9k)v
zJAwP}f2zR6xfXT&5;j#B8Jl)UvKDb|?P#MKs<mCOqmJefxZe4sp^47~LuJ(z52_{N
zh5<!v*!@vZ+i@W+Vt>dyXdh~B*HuEC`8Q%!fXFyZ1k)pVo+&)1n+s%(`IsqG$IOjM
zQ}Wz9O>~FeJ$?q{Z>aO;gp0e0#zb%^S~W2BSbb%T3DtSOiHcjTCNQ;JMwibklnOe{
zxEx;akzDGYIb$Q>rDR6oC1I~Tq0RrS_J*ye&an}YM4iuFG#1sR95|Ca77*PGgLs_c
zy=c^CEh$xmU7aI6DBQNMv~M01+L+s4R`07(AY+*97o!9IDe~ZDgS!G;#5n+B^*y&}
zFO2t|V!arSY=b?jgkhdF{hTIVhQKR*ulFyc9F7i6if}NAEUcJe#MwNN$2&~5<8a~<
z=*!(HrLHnv=DX@$tKDZ3)4mqW4-^DNkF~!;I{<D;ul3iF;};{rS24LNrMINtBB8Yx
z%AOr^w9FR5if%ZyXDGW!XNYj{)QeBrbR#j+`QNjD9PYr)jV}gn%YHq3+yN#3kWH?`
z!5f@+u(Nsb$zu<<tP_}gG!L&VV`taov8y1QzWvQ)4XHdPnNt^_rV#k(R`>S`Cpwkw
z2Bn(J^ZLU#`L^j8FilK*1zy(0Qd8>tBX`K$cZq>1F4KBEN;0<1Da78}vZuRAq@gT8
zG`McgY(dm46xrl^04#s?=#i-Rn0s65Y?-%}eDriP+~%GQZ=U#T_5Z9{_8%#Q&p-X|
zqG$iVH~9T<t!BXl<}3hJJj<HB^z#xd9@yvQ*YUmBy|k&_Y*d*~>&6&Jqdd~$ZMm#m
z?2(*x@A}3}Lefoe-g4ns3#RswTDtTC>}IQ1U;bsyngGM(3a}kM6yneD{aeAG>{FW|

literal 0
HcmV?d00001

diff --git a/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-application.png b/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-application.png
new file mode 100644
index 0000000000000000000000000000000000000000..970e9f8109d547f92db305a726fbd123fa9b975b
GIT binary patch
literal 113741
zcmdqJWmKF?(>9vmG6Z)B!QDMrAh=s#a0VM(LLkThK?c|04nY!vLkO;edvJFN!3H1v
zV}I|n_xtQ0=g;|f&RR3;UVX1M)z#fq-B(pzJrSDf3OHC4SkIn4!%<R{)qeI2#rD~=
z=S>)BPj7T(U2C5n&)u~ZWS&)wQtdr8P{7h^($Ah%$6?=rP@meEu8Ick&z`-2{q=p`
z=km?!*|WzYC0S`*FVll;R4=Of1*q?Od$bex<xd>`uOP>?^mGcF_ros|VQ&4ri?m|u
z!ytLFi1hS%hXoVv9J7q&x>+LiY@yZLE%E&X0Scvpd0^k?9sbdDez4(ZMFxThS-OP(
zJp3Wanf#-pqt>dRf4x^Mq<Lo@q*Nei+a<Y3g!bP*QDm5iV?G*)mwx+?l)r@OhS3Fw
z{;%MtS0%A>XgL4Xmm-5UbrgW&U$P2claLGiyJrs$KHL9Qa!>Fan+wKs_xVY*<fr~T
z+P^hdEY!Dq%d$Wn30qh2hDUOQ3O{w#3QqWMwJIkT@Elu{IRRf<=$=IG-T$k5pX8a4
zwT^pngk18JNY&F|3O^G6w=(B!|5un~)xUd<_-hE~f&Us?tFqO2yka5lzg2(dgC5*V
zU-nIAT~4t0N%6ufoAIgh7ss<&YTkZ;n`AAKhcRG**|heknZxGem?CBG1SaTU$xK)2
zmUoXdbRAJw;eT+JDp=^9Jh-?^U&;RWWS*Ozlc3=QY$hHS09315Vqa!1jgNE?BXf$o
z9jL#L*^^Qy?&L4S%Mt8NkSvQ_!#Bi;gJ*0=zK6C;H^QP^)1y_Sk9+dgk<ZJ8-K(zU
zFDVD^e1s(Vzln}DO+BWEz>4sYl&#4R%HOi5PV!K-OL52mH1hQ5*_o(wodB@oY^;RA
zAmz!^aX$$$1@5spxpskwH+`jyiiz0JFp+wU+S%$Fdz@6W_CW#5L-^N`6A|`_EVDGj
zPosBt8593lpcH9qzVs%kNu;0t2G565;mhluYUyuG!+UllXh1KEulhfD3W|%}9SDV$
zxoV#`%ge#<){w8Xjg>I^zF)rp?kB&Pg%fzqrp2B=yu(_Z)8xo?f_hgpy5g3yjwpQp
zrk&;Sq5IXMm)?>7`ANSv;<{n;OyYS%|ILROyOmOb;?%Zv;C17Kq>;~w3!O%18k^6)
z_)4a<r6(tP@$9N<??G1Fbe<dA8XC%#*;F_{l?Xs)a>pGF`^6-y_cHfo^5`G@*i|zQ
znHuewtU}`ti*Wo5lCtQ4m8`(9mfvisrXj=~>jqpT6bk10Ed&;gfK;x~wOSm(tkOgf
zilmfj2ul9tCu6q25jW3R)7$vJEnZ6OX;R!J)PvfJQ{CV`NG<g2qbJtEvx!&QJYG@4
zjxUR0yLG4Rpx_I@!TixDdH&dqGdn%RBoIutG}6uJ`4Gmh)*ww7I4vb&K}{~;@oHwJ
ztR0>X6zmHq+(3&-Bn+KvEtcN&#WXweyQC)*D3hRB?pQ0i<bmV~+I2-$1+2Q=x!>?Y
zMAZt$m>aulLf^N)XCiObK)(cn5-#K*qSG<kT5mJ-f47ne1U39R75dIv`I<!7HVZXa
zJ^~5z6*o)gK@4%|kjt?4S|@mph&{f9-?o7k_U9~$BE|V+Teh9IBHl(R$)*=eYG>#R
zTi5*c!aT>#?r-ke4V9$tJr0{6hRV)2z1q6?7+@HXYEJYq-8Tl(_#}2QY3+_NT|E|h
zG*H0NQA>``^<LEUaq3ROZxY(wL@=CAdQkEmhHpaj*tyLwT}~r!QQ$mcg5{z1L6zDh
zts=I`vJImAk&9bH?ZQ8E+u-j_XM%Dc2SDN61zc9{jfT~)!x?HbFx}}*BWaCV-TwGf
zsN8<PQ(hy@g=Uj{<(*?giIwhYATSDbn58ivYURkn-7Jo<(d%F=KTl18OBZq75m0_e
z!R3L~^(}bCQB0V<00)C5f_KCz-<*-7C7+fs93G(L)VsC`Wl>}Az7x~W%+;%drtZSJ
zhxG0CqJO@;+1;x!%Tf2`_$KZ&-DE%6#^6`}o%3F$VhC)2aTN{q)h#Ei42y5Oag4(?
zA-#uupN3NJ_vs%Y`&@Cfpn$Wf%q+%#U(E7cwji4Hd2Q|6AA{`6bhh2?|Ku*QEVs{M
zMM367#mC^XWR>+@sVUrRJsSx3eM-(=(XT2z-oT=`S_HE1AxKxySYri$3=aFDBGR2R
zU#tFt%qmm!!ML^J$wgr3(=G)Wr{5itDFy!UErq|6DgV4V;Z4#9j;P{${G|hE>tg1T
zj+Xfi$l$qKQLXJ(%1Q_uLl7{-T<`W2g<9V0#@D#UDwlMWXMzxQ5lrPZZ=xOK?$C*I
z#I1J8`Yi1}q0D2^Hhxmnjr1Gk?Yam6Q3YP6V&gMuIamfx1QC?|;?lV(brOPLvv25P
zF(M(?jtBMJZx^E|JBcWi>(X=QlU;>utG}MYBPCi7t0N9oX+!|BI7=GX(5!ka4){jj
ziii~ml;Rc4Krv1N7BhlLGosmOx!HqL!6?I%*MWeF3Xc05o;#2Vktf)$Yt+mfw6kED
zOaMCJt5V62-<Ar{K|x#Ll1r&5TOv~#>>JK5%c3dyrSPBg@P>R32Pea_KCx=88(BnR
zBs6XXKvA*p=3+l?Wzo08Kev_~<Q_x|>oUm6nCB>hM@4<=#4?)7d`}cW@sU8vSiJ{T
zNbxczx$7p0KVwuPa_lQrCk=^N?~#HiJeCu-ja~7rehil#r~G7u0qoe6i!;`sdaz<2
zhsIw9pN&BOb>WIKst{^<_=TTGB!GC6B)3;T5qI+{O5FTfM4#oYoM_!pK8Xkn9zxlc
zZ3%T&=yGE!Byz5(u;q&zQ#H4)YQWtGqrxKyHV12O(^}v}5B$l=zIWtl)iowI$W|{U
zl`y12+cjQ?94Wxo2!Q>6bkIs+W&Rc9A~ap#R7Ka#@5~RiSNI2}MC(3l644oc_?czd
z@abV#nhzH?DXgc#^+B9sR3elcczfrTE*vX46s8f4(pLt|9I5GAofGr{%B?wSCTLci
z?T+R@P^I{v;@{crTZ*7Z+GqE4fg7@<d|zCA*sGTaRf!MZ)`@fnk9}EjG?9#3>pne+
zNZ9z@nMh{wkvPgGyF+T$+j8#@ecEP9a1^9hj=@3U(TJ>R{q;eYsrdlF*Rds?Iql^N
z$I(GLKf;D&D6wunS0AxK)SUA11M3T#pEe#ghdoCcxrDzO@U$7o2*4)BaH*V}>3eRm
zoEmtSAz1nZ5=-?O`Zy{Q%5Crv0J_cv5OhY>4WKeJL#mmd`CercZ9EFC3(PDH&XTFL
za7(s9@oQr@b9D@SD_TP(gf7X93#4KD_~AumM~@jc&~^>C;B9Mt2&hER7AWQ`)fBPL
zAG=92>D3sQx4H*x*dM8I^Zd}=4&|$HC~w2^^^Z{y=27(>-PJL!uFp`?LCWo$<#qid
zN40jlYzuA%c&b_)YHgEq1pH(RqyF*XlUq5O8fMnv0dF^}lE|h1d&0NC<;!=1siyf?
z7US@F@<rzz^P!jn;m<t^E$BGHwo`+AKr<G!D{NV}vNB4U6Nf~_GIdQPj-x^s*2q#a
zfe4Orkr+w=5Te|h&A9QpYr?9K6vp@_<jjr0xUrJg*30nQ6b7cE9ITEOQKW^^3$@Q8
zH%LIKc%T!JOUAUpGgJQI1Sa#htl*W?wLVa}@FYoDVwG_XBum+!yZE`ahWgPwNjXF|
z%KWMfBMzZTlZ?fizlWIKQ@#9@{3^vnhBl$=(Czu97ufthkxqP59Yckb$ncY;@Z@-7
zF{5EGKH?O@iUssLC3p|7Q{ossy%{KUbz4^{=sNK|vm%pZ4M8p~T|T2TR^3L`rjMyJ
zGxL0y0SJC{aE;C6UCNuMf@UvN@$U+v#kdZy^-eD6Bp`-)2+Wo_3A^6&M^?urd+R3w
zv~ye>h1$vnRR2N4D_>VS@_v!A^mOqR6MocY8_8R@8JPz+k~Pc|&Rk7?AE_u&TKT2z
z<z+0Nm_7=G`RjkQMphkp;AezK4Rw(4J8+0(MxNpGExqs!iZ~nXjE*60*??6K{t+FO
zAYAu(&vof68Y8Xnc8!cKaF_9;Ko%$lDw*Cu#M(KHP;~@f10-LfrJD0r^g%6$=248X
zaDzLw9q!yCNMBT)3|wrHIRZZbYN;om2FbA93$+oQ>Xl<YDe8GUhf1=c98Dx#;k!<W
zEJX$A?@N{yRi~-#Tq9f;Ateue=T2R<!cCd_rCX-i=S+N~s|vE>HcUE9j9I~GW!b!k
zIV_s`Vz!@;N~~)T!i!A$0c}K(`)=&CdM3|1{KUN+eqYUEj4@57OFEX*88Ca>`KK{_
zn-e;nF6Ig#UJr`Ge%dxLvx1}CIC-%bqvI@dj9#`>c&)eZ18+#_5WV5+Lr414w_03!
zNBgtlaF>(^uU8so-<8I?Doq-r16&#gd(EKmsMPhT^+dA%UZIM0i>#`e-uB`wn5QQW
zjcKnt7+$%o;mQ<Ft)SvMI)Di~*j#@}9AsTfW$wz4n`&TUVv+@~^w0-U51(4?QhT)F
zFwc;B-2@n-bqJP)EGx{=2pND@81Y-~xi)DWDmOkT;zJ7RtV>H?1_6EL&_O4GZ)WP1
zU7_2x({M60S9gXMBGS=@H8UMt%Ta6RIk=}sXR1R*RSi)!ANod^-3y*3GnS>q(y=3p
zt>}V-r3SWIPi0_$M(8gec8+s4tFdr0eT1YKf86?+$@3uTZ9?L3)XB1{{wPY-GPCZ&
z&ZRY$9aFYX==(HaYHIlQ4W+A<^?4M@X80s$gKS$z7wZ$I>mS{{AiDYNznq3}-(CB}
zeJMez%6QD;IjY;I%x^6YlWpj}LCX!);Vp<58wP<u(7F2A=b1;u9VUteX51CBWMv;i
z_UN6wtoT%g=U~4B{WJ9UTge5AXKO&Gp?pm@36uiwS=F7DL!vM=m6SnMynuG0F}W(N
zc!u5loJz9K3xEu@bwsID?oqzH^9QE3Eq+x5AFK2_qQIN>Gq6lmH~KoL6E9XO4ZQA8
zo|hC}ZOtw$E_1@Z=^7oiRvd%XIYw~epflqAnFIf(+To##1<<}k9OI%&H@=R#YAhcE
zCuK!Aa*E~F9p>WN53+N!^%e^*2@D3ddqzwmUFHIElg|`tF^t#bqk_g9F?+%L_O_%c
zvy~(Cyn?aGaz)+QVoxqDLO?C!P5ll7Te%##)4gxoarJ#bfhdZTovSnDZ6~70o5-^z
zMH;5A&E~r4iBhUS_Ru8w+!<Qt#X%G0#NqM;YAh9yDwKe?#3>!|vjz6vO8>!@g;yoQ
zJhlxLHJ$f{U%_dfzex^gz*wPJW;0#rA2%<Jp_sRRa}tG@>EzQyCZS?iE?@2^2od+T
z%w_HAFRs$~mYVj$LeV7W{JC|~%Gbz8a41O~;p?@w%Iky%h2$SX&(dj0c?OvPFFGx}
znwmBiTX9_{q;hd=85=I|Bzwus0;e~rgr4nsZ0$sO;%1=6a<l^)PNgAbfUmKO7Qah0
zMbK(Gy@`WurXe{(gw7CeU1O%78Ce~7wIyAEG!>BJTEH}=*|8s>c}@3V$uZ^{ti66G
z!~beWKIyix77^Lk&N99=GU$1RCbf%y5Uk>QSA;g=7oFqrd@*-xjgP(A#gT$TNVM~}
z%?qxY=Mvmsd49+3W*)zHXTjcm3v2`$j5TF-;w_RHLwsm9cN;8*U>prIHM+&dOXgl~
zG?w6Ii~UVUC!ZDhy@RGcp4H@Sn(qCP)Dy2YGvAywM_bld>emspLcFfTHjP!DzMi=B
z!p4Du!j2Z&=EH-I5M~<F>U^M3BBj7JJX#4lkETGjIs)FFHqM>x5f%dS5ADcv4aHGn
zGP=6G?|ro>V(jljS^#dcXb#|70!o+}l1eYlu@K!9HOJ$wDln;Aj*EzG()eD>w?Spn
z{g98$yLI&stUW|_x55K{+jPJoUw~%r6(C#+&z#&!v9>u^>Prq9wKOvQN@If2kKn7{
zSq1cMOIK9eE*=|)u#NVmGe9ccXY-oT=fyt7Sh<W_)X7-xGb`9!+b~XGA-LjqM3K9j
zYd794O1U&)xSS5Rg;apek87&edGk>_X9HopW5HpyEi|j$JS4r~9XPpIlb?MXFn~I?
ziLd5^sc8kmA|TIZFG=X&QxP$V&;InI;JGP)LV9}#M)|$C<qvQhEk-8D5)Jg5X86ij
zYxAT4cz2XT#8&s&<BR6qf(FO%#<yR2ynryd?^v1x>u%|@?;a_L(bSZ_dx|CraTIBj
zsW?ytwi_qD>8(g48m+KQ!sw$K0T3oDN5In{9OA=QJrNx<0wfhl>t8Z^z1E8dX*lRy
z+ro>IBdc9FRq7kN@~#6Z**HdMIOzoW{fPJ)PTUPl*ap8RON%_z2oh=lb-oQEdOHq`
zCl&8@A*`o!C7<ssI1DQVm4P_{^C{1mbC`t<oqIQG>+*xh&t9XAa2-}-OPSIHa{t_Y
z6|bL`U($$1+{`TZg}{;VpS;w0{sj}i?VS18ksDf*bHk^-FqeYNK+0mOhKPBE<1d>F
zXTZaLv|7hk1C!Gq{L3x&{49oCuO4uIq&dWh=A^?L{g9nfv$}V61dtUf+SOl&D2<jh
z;4$^|L><{yf5Lfv{hk&yug#Km4WJO#hcxd>s=Ed=8AfIbLo{7h=||kW8-Jk1tT1&#
zB4QV>&&ccuU-Xeer*WQK6L_4h<vjj`;=^v9P(1XfBP9NImRM3`%j^@ok`@opCipR0
z>J#Ruod}H<TD?1%w~GmhD{!f0&BF#6v3td1KS`Vg(LyOLs1&mODY1hVL#Dq0t8)BF
z>517#>~R`}+qVFnL1ZM$=~o1(ibl3O2Oxc2BUoxW4C_6M+Z@{*?NAlb*YBg~#wj#v
zvlWT^DusQ<+z5|UBekKw*JxjXh>o#IWnr<Bq}btzmYaljqn%3f?#(&={uEO$2R~^H
z2{^{aOEJ3c*#l%CdG&@q!E50I?;PB?(^FS|79#fDobG`6`|0J!fGVGRzf`Hwu#}qW
zG~u>v*iCnc``jtVagpyAcuj*yE`Eyg2}CmYJ=tpR48QFq0wx$j$=)*D3FKSGNhx~)
zM&S=FnoQ@_DiYZQW=gwbK8~-t$W!)S<*lRPtTx+J`L&qa+l^X!K;B~q&#r#bLCL+?
z2=$vDW-`se<H+@(GE)}~YCJ;SW=c_C(tZ8om~6-hJdOf7`QYo=R0+PUdVgl1qi}gf
zF4^RoBAlBHgI$SsoL650AALV9$KCsuRds&_RvLRaj>BVISLFq_-_1@4+r~O#z$!0y
z>63hE$Wg0C(R3MmfSp|d?iWvP<`&tTchWX|>ZcYgk3pEC_>N2<pgEt{_A~vQ$4u=h
zd5`7#rgjKv2~@%war#xqbA2wU3!4?jc!ehs%%sd?)*xMbWdfi`#JHQ(N5WL;HTkS8
zkC~{=6&5Ev6qg!j;@-rwuMjhpM)kwApiw>MX%>Q+bO`mP^F-+j*U{7}sw!i2bph^u
zR?%)sonGbgwdiF73ijuJ=TZITeV!Bpk3#A%sfL%{LfgNc;h5pBDt4@AI=c4z@7yL%
zeQ-Y9pd8QxoVQpGy6y$B%P-1rwA6EF9Ql5-d_e6gqkdp>k*?+#xjsYqTp?#|sALgr
z9b{pXIT3zOm)4oiYxF>k5%L1f22*unOc>X0W#eR&7mv<)2_he9Ss4FHj;YJH!Nj6D
zP<E9NB`DpUw_HvZ&yqNfd_45|H2IvE-?qZ!q+9qlw?ndlh&k5KvdyT;6PJRw;@Z2d
zI}fu@IpvrlR~3YY(_YL>iMZ{7f_kWg4<H%X-1kD0%SO%=RhP|vL)ecd`@!^Mr%>sJ
ziu=-tui(S?x5cCnwKJrB!HFQy7D}*DBi#JTP%5D9Duy^$TE}_Z)$&acHrRw`Sn@^l
z6;&TWoVYQ-a&HJH1M+0yplgm9`Puh_Bj_44%uj3dp_tP1j9j5<U$-2aeQ|{HC1RIC
zY9xoR>HU60{kAu=0;D>Ok`Y30&&u^XI@J)6(PJ3AlZ73%cuz$7qt>Ejz7E&$WuLi`
z#AIkx>h_@Zox>q<){B{uJl0NfUj;~`@EiW%P?O!E<p<YEepg5f_Xf?aX_YTU2;<~o
z^}3MRQQ<(Mi(%P7?iFL36&s35@j~aCDKTM~S>G>w<iia?G@PNU{?1J@E7(<iN!HPt
zq+hT+cT0+dZ3`^dvhyj;)1O0r4?o3;xacx1dI|?Ie8;Os>!HVQ&(LZbPEOivj4a0$
z-K_jr{5xZ>&SGryLXC^$9bMT}NMog1hVwutBgld(v3y_n1+FO^R%E(Y)z8By02FQA
zd(X|Jb(wktCCWHBmXA5<c-ccyzrXXk6nUBJ6fHN2ye^aZxWIsvX!(vqJ>u&F$o9_I
zz4dpzK)#9h9ckYgRKlU~3mu0cW$5bkQ)(+kq|t0Dsc6C|3z)HLDBBrNsoo+vK$qpi
z7F6DjA@m$7lK5pF%p^#cn9NP}*rpjx<v-Fz;J83SHx-=e7O+A9<%A@fL#a$9?-uY8
zyQ3eLEPM2Z?D=g4RI-e(jfw{gU0r9AuJuDR)QUY^+WraZB)^%$@_wc9?``iyD~OoA
z(8j-77)oa=Ny2#ztNPQgGbhzga@hvA+Kh9`bmBb#k{Q#@AMXvRTcoJbQJLDN@Hd`W
zv+!Drcuc&c*FfnEy<a&Z&W=4KnaL2AewQr`8;S0=CF2l-KEDk%AM)?Jio^&haTli)
z2m_56kqbaNIC`wFqQ2FS68gTh!Q9>$0t>ioue+RrtgVs#<N5_0dBvbK#s>E}5}iq?
z3cSk++)*1IYEb9^E64kh5C>Uuu4dDYN6(e8i%E!HA5Yo+I!fEz9o}VN&pQBx=?ovR
zRtRxyuW_(DlmisK5?u<h1oEn9SM{{luY#QtzuNKZae?dr0dMilHel$74<C6$DMiI`
zuq!WxXt_wZI50Q%a#uQSB`tToX^jm;+YR?)U=NKP>WNZPt71(}(l9lQHr`XRx5C55
z+h{|tBvp!u{I^xIPS@}mdj>3p5LXl~R5<<C+pJxtx0J3Hhr?GtuKQvYTzzsXS({Bw
z1gtF&5nDp?qb=bQfv9CvO}?76$F{t&FJA}dml^LOc|!<PaboQN(W&GD(q*_P@FHDL
zpl>2~k;PTA3z_laO99?|Any>C`|{};#qgp){PeHy5L^ngnVo|9Mt5KfWmG#+3dUwk
zUv+mWUQSuAA+;zppzI=8uoV4R!}p+~R>=I?cHfVc1Ct4@uR6Slbm7fMrx_YVY5TQ&
zU&gi$V^^L0ut;d&S4(J-R>n`ZknOfj;DO0<p6HKNgE`CM@6wxA4so=j1Ib-2bcE&&
zGx$t#=Ut|6k4N&Z4UVJ>;x|}?H5#<un{W*4X|Y<145=Z(^vMJc5Fc-AU87vuO3~g=
zsDz-83l{-CzH~n;{4PxxYL+f*et=EhF!F_i9hPi<iJJKeJo`-9J&FfR*&O;5UKx->
zUT&Lra^l}%Ul*qHWx3<@RL)-<ow9P-3x56_wMJqXgy-+qh*W>vUArH$IVMOZ&@LDk
zl0E|&P+{-tS%VBurYOZf!LcSzQfUs<)vUQ0A)t;8Xh&H@^5YB{-{&ChgDOR+QAsgi
z{>cF`Ew0`4FTA-@=H%9n<Gc=^rKe4E7m{6J>BiSyYE?lT_-*|=2WJP&+;f7aFF=aV
z)zOJI(Hw@txF^_JH!}aO9NxV0fl9-KZ|nRDdBMZndP3lpcPqcF;pcGKOlTjpNI6$S
zJjD5KM83-?tgr!pBW|8ueKSC(EQIl8fZ-q1AqDS-3<B)Ucb?zIR@eCFU-H*4TBfO?
zWX-+mJo_R>VIbK(@ND@r6K@4$UxzJY0A&*K1K&CxQ|>^BuPV_Dw_B%t8+y#lheoeX
zV$1pCOZC8afD8minMwD=&8dW~0KXo@!n#WAFr?SL435fvyUO&kJBi<*frt<@xJU>Q
zYO;Tv_@ZDpLNRMI6xHk}(H+VpNiIRk;a$wM#{$$*$ZPjHxr>{YATy=<3}F<_)C3x1
z{0MO$r@7>gbd7N#5Fb-(MvvK%yzU(^cOQI?V^jMx9fA_D@_-TxLEa4EIGDE&a{<Hs
z<jUanm_k60f@l7-*QdpV8Nw)PKZsX!x5#0=&|8f)^p9=aF~z1b*#+GV{>$h%yLOWr
zH9ZT9*9{zG_|_tRLEBO)wJw;Io2s)^#*s-Ia|x4V&ZIh^ag06ws>vye$A!Z<_s+88
zs;1L<UiO{WFgS^DIMBpm$lPxj&FqX(@h;~G%iQi-o5iz2wE1zNRr_Idu=+@y7E<Z6
zzBu0py}9?Rp%z-%l+Pv$<BS7!Zi_dha??*Fb#il2mF{MD2LNxzzKX1&t0(}rGl|1e
zyDo;w?`BWabEFBMGBV56+=?i1iYqTx5E&*aK-0QQrWYcjpax4B;^5GzOsy-PjG}E9
zw;M>L*o#wZliOTud4jlh!<Uubw^K-!k>UtI;bxe|`f5wXfnn}3j@4C0rg+Broh0D>
zc#Bd=4KO`-r8oRSA5@u{4cn(m#EMeOaQ9w35pS;oOo&y=KrnT$Te<b=gepFUq&vHt
zm$%S7?f!eIu2qrvmu#)1!SeABZG0|Yo@yYLZo$1m3OLoWLC9T;(OoA-o2pAhrJ6}h
zGR)a_oBEMRP=XWC>)_&N32eltpWOw~LO~+_yYc9&9E?`Vf`ddHV_keAKCZ#?AuM%R
zjY<nYnj9#5EUfd0?6d`~I9h+GMidqzar^|}M}L+|+g+;w;-C&`jCP-$wIqaa*IC~b
z=tx%ButP=sTeV4!J2#|Ahtpi|?A%F?hICnmS-Xw1t3gD8?OCjE6j|Ggu~5rmbuQF!
zCov#y`bf#z(6VmGkLdshf}yi9l7R-`GeuzALkU4rm4nI_o8sJsH~HY4TL}>Bt9w48
zNC~S<JDDZ9)|K3$*$V$fA1kf($>lDPdgM!$pd6HMnb*v@M~z`pgag7PO%l-a1Wwt7
z%>d0q)yWHS|MG5k{x*OF&a$~D?^bID|8}GmvS%wJM_ckKICzXr#cmM&!DkmPu)TXi
zPO-iB;rnM(#Zt`Dq}bG=-ka(8ln7i$4{yB@eNw$T$s3Pyo<IS&o86NlHsUK;_Z5}O
z%8!rVQ&dFacJ*1Kx5*Qc64g>c*W&d{2v+^Nb7D8aStCMIom<R3_KV6thu0MzClTtQ
zzj{^XXpE~>zsV#o{w#jb7IgBSKd<bWz@)^S)l`UKTU{Nzs`7zs-<s)A>T-Q_n%&N1
zqY<@*UZ<X3TsD-fcqR{>@>PGB7DBhdBJCXQeg4)&`+TA;XC+tq%$-o!=6joclRcSm
zS_qE`#d5VN1#&A-cF4W$d8~(>2iusw#x{S9efZ?+YVpkeo)T#VjoyX$y$IJm-@BO2
z38{Lay+JJ<D*b81_w9-jlka~K3H~R)BpG6A89_*+dm}qdrEn7w$^E!7<orSscHJTD
zwLjCx;v51uU_j3a=H@Kr9T_uZgkQ7=uTN5&pRakW*k54DrL3(z5CZk=+}A9;ZW}gf
z__;RYP3QI_|C^%WlWgjqXg)Ef<!Js`+juPXwW%dWpw|5y%-9-*ILQ3Y5BX3Vv9d$)
z7yaR%ifXCsU%Zc-j(-tCOd0>8bxffDi|_IOK(VlM!ceUQPm6r}i<EIi`!7Doy9Khy
zlv~T{TW2n=5TefHC(~M~{TD-HHsSeXsOA&R<mT1CG<Z_*|1Bk@?9WqJg^2vyjQ<A}
zo)?s4NT2CPVf^pV|1Y=2U;G`v?HfE4>3=?V-=5eq|FrN>wEF(P)`su|%bOOz@r*z+
zxFIP0QGFalVNHPAjdchT)Wu6>)4G)8x_HqKypP(lKh!$xx8nPzd#nenQ^rg%6$97a
z4E=DELZ7m~5UWd6F0sp1Z50|!U@_3RQCz>UzGqg@?#o7afVSWDC-*1X50>h(yxQ=C
z`w8(h%ctuG8XpQ`1ikv7kH0g7EI1Tr_-G+)tyT?$2)2`L^si-p2|5;W)hWR;uV+Ug
z5lqn?K?~dCF`#_DEAFI8ou~cHb(ssLz?s<Yt-XAS?nZA6rJ|xDo@#i#G-o0`EgwlR
zfDUdn)7vf_(LrkT#Z6K_bB$W7mXD;ySFe=jl3r6!kLibww)SVCEga2SX+Kq}rV5N6
z?h%1|c)d-6tyO9)pVQ~md_6mycACkNgnrjqeuC9G>o*lRH{U>4yL;s<5D&IsYL)~%
zg0MZ`L|3El5&o1@Y=VW_sLCIhz|};l%k;lCR7v{3(Eewj8@v7J{I)NfLO`b`62U=G
zRI}*rV__(a?eH)R$d-(ue%n<=FGHz`DVQ_}aGWQCx?eBkz5YZgP@mn!v*%nbROm^B
zg=%bKvN~9(l|0}&#tCR&rijZVaLO}8wex3tu@Z1mXNEac%ES8-Cfq}>NvW&<<Q)x-
zjkKbo29&26--!DoBKitPl)@*`S|yc<wu(FEcqmd;>ZD~o1_$9=&VaU>5p&K<|M;!&
zbz92Vp665WzwI4D@nkGJfhuIZt87zfwxD&ns{%N7^Z99eP^lG`6$yKMXLo8|_=UWe
zy|<jPe6@C(S{}cxr~G$X(4NPxosEbtnZWMZG+t_M={G(H1)P!wx>&P<_bphA3nCR9
ztum|z-nE6wiYkI`O~j-vWliUMa_^TQYQdprdQ36e&@6>th-5heQ^CrR`sxbDmhwm<
z;#tkA21h;2^rU1XO0%+<-CFlAU7Ng10xyLJ=Pm}>hZb_CbHC1Rm$Vl~ayJfgfA81$
z@=?P~FGc_4N#smkdV?tD`ob%}r1y+9^Y_~-ry)00eB1W3eI@Vsx|ta*vkf??YIIr5
zuS_t&7o_`t#wK=umw%nyW=?_Muy#tm0(<N@eYKiZd@9KY;5?|px22OuL8<H4aBE<O
zK!&wnljqR1(M@-%AMsvY-O<W4%2R5wy)9lZf?(Ot##<5iK;UUSc)I3oom?YX(F|yp
zWEV3tEgUa>n{$+3@>IAr&@W2187!flZ5A>MV%{1#+rC$)%z-VuxuV)-Al>}tghC?D
zB4474DyqVr%F52^wz19iYd`Gn?lj%h$2z5^>4fj>buwEW)Zzp}PTnpgC8b~XC0+FI
z1)XA*s*r|hZZlfm^a7VQ(d~&hAawA6VtfR>nSTu{5v8eZsFHmV5-4XKkt}pn$>iq6
zkwq7jXiWyVo2-U%?}6Of`NKPSL3**Hc@ZJ+EM9Y{0<&DXqBNf91Ztyrq`RQ8SUg(w
z#E&SkUw@<7+Osg&%{6GbAJGiUoHR>BC~j`P7J3zZh7AMHU{*=s1xmR@K*PebX_MCz
z6h!<7POl5RQ6BtXJy*!?;@uX+p@=o+3ZPF6rIhpc1f|^~w)p`>Mb-_QB#~oY^Ij&x
zVV1pu3B?tT<5YhLLm$Pm(WLZN%&G+fcyVBJ`v+~+zKK`jB)R0F>-w2p@Wqh?#7tsk
zrgi}jH#&*YTX;arQ_TjkyTdYPZ97zEfxI3LJYVieC4g?yEY7!v|B@Y0DQq|z9JCl7
zB8Y8w!t7hhoWAWJ^0G{ncNmYZSL|>S8XvO>c5}8OI!$Pi2@DC-Lcl6SjL##wx&OkC
zXRZ);+Dy5cn?6SKPts)moqrw!b`orN(w>u-21wfo4cCWa`JD-8(vPpvX^fd)@!Uug
z`PWOlKtF_?hz`xtDhD#JtRp74h~p&a;pEL|QeP8RMDec-$UVE)pNZ{8EuV-`ewC#f
z+Qlx_?MzDAiE{gGTjh!yFf{mUg4V<#d>}p}KE&I>V3pr`x8|p*!QyZUAGzsLxYbqS
zGJm4$ou3MWzgPcc&24%z^li#I4<tUyq}kw6=tbY7XWyD^(q&G~?T$Mum6=%K#-+6$
z`crw#M+IfUYs+@S`gJf<BK5cU^duDeS`ow_8;|60w;p}>!_~}?{2XhlENz1ZV9*d4
z7{FsOmZ3%V(9BQ5Oz<v#d)wm7Q}4yh(VZb@T+v#iVl1<;0gZThW>LW#LkL<*de|E2
zf#h9EokQY1CVYG(i=AjQ$QR|$d|^i?lX3t4nNtGrqEI$mZzr{5K<lZys`nnR(?exx
zL;rKEV0>{#{KBEAV<Qw3lIxNq+b3NQGRm;w#;c=Xbj-UMT8>zQiCf!<hdPHV#N+in
z^z6R+^!SaS)8B>6ADn}dU&SVfWHSHCN1v_+k<W*0L)isK$958bRPp&B?%&Kya^)>q
z1EB&1@3(u|3fqBBw4Lsd53A|K@xus0kXg1w=Uk}J_;b<?p$K-zPxchZG`w+OX=TPP
ziMeMh%3|!{*=7_k;~p)Md&#d%SM%0g6MF{+_5_E~1-GoPtE!_rB+IY02qAhJdA?-+
zwVbFKRM*4#ss~ocu9tDbBwdiXwP_Bl85tzvQ<+V;!X`@tv2ASB1R-ya0RFGL_-r%1
zF0>OPnG+YOL&dc11Zt`<DYCvza<Qb;osI4aj055Y4b(<D($1D>ETImYtGz2R?fBjT
zU{-?&@}e4@ISDIDi;zWi+DGHUBD?oKtoDqj8ymkqayBa%zTG=J`~^IVUVXzzKqI%w
zpU6^%yG2>dl8~7dUQ(PeM>(XS_l1WWM{LB>P0dwSmt|n6_lSBO`0~rVxtuoele<De
zRl0DzaxB?O7^lVBXD(S}ZStd9UwFE=fDr15`&4}RsoTvP6sDD3n?R(5t1s}<k!lfG
zz3Y0FKi=glG&3L={xaN^<S}k@0bq?q#JrRLDVbAD5OXNTa*YAOpu7bxw!HcYY?xW|
zj*#OMKUEKOH6r3ek%;YS_hi7ndiOaK**yyH?$(^(CH7Gmm68@_S`Fiimo4F+`HUO!
zBFBDqchDtCl^+<448W>`@zVxyWRd|Ib!ageby|ALd>lWS*VrnZ(}_MpzQA+elH>h^
zTG*Yr^SjY2#n8>XSn;1fppq{ksu!n&m#a0ID-WD?yMB!5UU*YJ1Uqf~D28@Hg{Tjv
zKph|lwh1C-A3LzKa}#c~uVf;vC$OZfZKP}7*=f+B&?xn699O-s+6-fSFMHExo?%U)
z?PVANkSjsWIL7`PJB7dA=*yLc;SdEY8sh<;#bS{|(x2-XTF}WmMUvVKetWOY^U;Ap
zotX`~jm_A_5({-m6*(kC8>bQq8Bywz^;{wJ>^@s<V#P`o3}7MEWQ|()=b>5z9wymg
zlG$c`VsWBUC}Ig(40KHkv*qs6v`>{QBw=x#=LHZt*EW5d4sRz3G{ffS5LxONfR&i6
zi*Q6k1mP04IaN39M+D5&P$;yjwiZ?kUi#xjzLbaGnUL(QP`(pN!B^7DQ9W_xOQhVr
z@&toMt*RN=LQEn$j=Al@GH`bWRM&Z$K#49Eedw2NlxShKDGF=l@Qn@LZgI?$JK(2m
zdXjYx$}*QYt3!RgXTGJ1!)*qiTC^GYpn~iWQNtIp$Fbd*lI}8L#(`Co35ZDp=kiv`
z#>Pe&F;rB{A|Fv7-*Md}gD9Cm1T!yUDB^>j49=-G`CS%__ZI*74O{rBHV8z5%?<iO
zu>W=4jjZd`r{l<tWS?gKT3g%)FPNJfE~HEMM+@-aUt@upTeV*Kk>O#lq~4(}h!Uk5
z(H9}$8A_0V>tPd3A`u)qb{pwU6z1~;5-U}qO9Ug@Qj+vczdZ#c!QO>KbNsqxvOXzf
z`g3)~65kqEPqsBtp;%T)DYOhi<h@3lZgPV-8ID;ZRLDlzCEf86g$)oUB<%a114C>0
zNu;cVS!+!8mNgvgala7Sto$A^Yd&tA`n)GSUF5?nlF_;)i$?8;A2N(J*gXwne?*u0
z-thpp8Z8<`<SnM%%Lxsg$Klby+p5dV53kgC+y$$AlT&aUN`X|n4iCzVBFFd<B(t&^
zwj{Z^8PG(%6IVq&I#Gs~XD^sGv`Mg2S@NqF|3UG8VriE15*V4yle~j$CJh=1N;E7_
zC?_%Q2BO)i+65!S+T%ate8kq_iRrnY7pKZZPU?CPm=?y=dz+9RULBfo)*wxP@Km6A
zR!yWVcq9e|`HD1K*>d=|N|E3AVw3{KxsR<nHMI(U@Zk1chGMH^g}hG>v7}gq1Ht22
zlQBZm@k4x7(=5tkt`^s<Nez2&8#Fa7E&Q_ba<j1y=HGye%VLzV_`>#ST(limD~f$2
zo3;&m%%I@&mNzpy3ffv-6Cv)wy>(r#Y>8ViPcsw_ROGTqX&Bn%{Fnti3|2C31}uta
zbItb1PRA9@=To9RxC+~RA}S+}uT_(3&boW-<{T-4Rc_R}(04i7SB;8f>M3^KZEbI_
zpYKg#VEc|#e6L4W`zG{_s$BYPchhbg`GY|OASZTxp~&(nU0;NR3F#dPb-n8`o(0px
z`#697h6rI}b*e^muB!h@dBuwo%!KsVQg&s?nM}p{3p4F~P`i?{<v7G&`Izdd)X;^(
zFHfs*UMm9m$xC%{*}MM!MJdVH6@eKVQEdC4<Zaw$i(hBOrr;^sCsN%jl2+i&YR!js
zOTVUv6_h2;Niu;x+@7_<oP@7j2^$G60wj9?iZR8hvl(A|UB2#+9?KLprc&t<v=JQg
zeTR~Pxfc58`VLK<j1~yf2!a&JlbW+4dCs_E%-U9aL0hWpT4tEvrTg1kRnIyshJ!5r
z(F9;0m@R@)BtVpav*P!HOvF->DwQY&x)Eq28BmRn`MXh)X!Rg2>@DE<{%?qi=h25Q
zXd7a{ybW(P+j6bLfh{p-X!*=Xk=<FC)!5(-YVI(A3PIvIr^rwO#)V(0%IQ#QN*U0o
z!d#`@IMw7~M3<)WX;pv=${ZQd_bjVnf#~4Wm5L6?rs2nC9;&U%YptElt)Dyx)6R<d
z+TY<Fk^sWvDXa0Sty38h8Vp$Rt7T0soJIyxUr#7#(1FWsV`q527K~3_ZlHK>_)QnD
z`uXWoVUAW?+dEjNE~73x+6BTMG?ed3hWZCbV%}Wp8U$!-N$Ml82amUO<&lFk!trP`
zsJ}9RitWTJ{+MX$8HS#D;#UzYs6q)Mc6``Mkm{-4!gtTgTCJe2;zZ9U&0A~wuRrGj
z@0uZ-@u`WqxpD5hqqJN{I4gbUHEKa-lX<+tQPBD|LYDaC_;6^SwpIaW?;jX=T$kUr
zg$|A@yv)HUZ$O^29Nrl~UE_7^S0W9A=^mKcZ)_<>#K61~MU07A@z2Cx#4MR@`u$-e
zw=nCrK>Q@KW#VCtPtQRrC_j+2$H^!_FR0c}6D-OX`AXF1L|4Tti=;TTwuv9;a<0Y{
zf%37UH?Nc2v~mGFu2|#ldTI-}Owus0WCcoTCo8%=`VjqDw993z10)2xrCFr2wKzpl
z3XHyZLT_J+$px^w(RwXcR)|19vtxtKE#}1fx}eOg__Oxob0;2Z2juwJCR(vmb5>-A
z-Cc$Oo}_>0U%KOlpQ33*baH3gwIaI}@~dJZt(WT6fsd=|g?2V(-=-DYDWOuLh4i)I
zMfd}F2ZRx3&J$z;-^a<w#1n$s@mY&r;eN$c*x;dg^Ig{U2LN`-hBjim>^%rbdnyTx
z7SfldZ5zFU6{z4N_$d!g^K+C9P-Y475!rqeQTiCOF}`>)QjQvEW7@1^UCxs%R2n-&
z6;_H?$R7&S)``(ZrZMgeU6fu3yB;;mZ*bod;u(H<LovjC<Hq6dFbrO9S;%AM;_AIV
z+l5+-xuBKSmtpMURy$<&c4-U`4lNq$hBo|0IoP<(giE+P%WWR-WFVsHNK(@Q^tEJj
zXVTxbBY4^|?o3?<o-S!1R)jJnfVwO;!H47|Ck=F3bSmFJ$*=`2|H8PN7Dc|kd!n#t
zqtrOud1$Z^%w1b3z5cmS`xER|(x|-zkCk~#6GKkqCP8857z-0j(Pv^;`Cv!@Fqo$@
zvotr>)ck}^%7u~Z5;BuV?vV3o|LKVRai74Axk0JLEFRmL8~0AgR-EeT7C?-&PFikk
zwvmPFYm*3Zy#O~iNk@ZwurVoZ+-$;jPwMW;yva7&2&P1>92-pHis#PRh^nPlx1TG4
zPCycWpTmL{0Z|t1YLqT;`IAH`K+dAWg6AReQg1+c3uBkba&d)WiB+dSKp3aFUfvRn
z5m)*xbw^Fnr+>cof`#N!EIpKA25r94!nl<nqTOkBIFEH`C~*F#=9J}_Y^W}@EK3_v
z13oFGC&%-Vw<Evf3Rxd(CU9jmf@W!Bn#wYnFaPwyDBUDlPz!Pr$V7QM2q2kHYy>-U
zXXDuJ`jm(UZc8_BMvN%+o+5MdidsH_k7Lr9>^eSZt3QOP%&5(+w+x<Qu60KSk`;D&
z{7Sr`-Ia1OJ^7I@#S>-5K&t3BQA6`x*Yop?4ZrcBy<hnRt+|Lc?}`+Ez)PPZ)}N7K
zmeGJc>4-V<?o{DqS^+lXuyR5->3Vd$zs+5i8r}(@c#P6QyjNj(a2!o#kz3;?Nf0r%
zCd8{_Lst-1z;cniiIPLHF;(rF$R6<O+|X@gO&dsc#&FY0dz7v6$kQh7JhUQ;O?s>|
z!;$mEBB?q<)UZk}?yOw`y(AR7X@&)6A1oC32J6c}a0xrET4|vG<RrXy2?IoF>nG)y
z;alD=$~dp3-AqEaZgvWlm+r8)F$_X@_l8%O6rA=&SYyWYCt_{7QPaD*j^pHe<S}x0
zS*dxtY;I>eBlSGsbMx8J7Q&d-4BNq>)W|!qevM6m?u)1~^OJVaNeky=qXgQ|*KcL>
zWv33w1mF`UxyMHIUGs^&BKgZYVPh)|zLH3feMe>z>zwM2E!><T*pyUfY9Al1NFrP~
zbn5u|5if=4=Il2g`bX_p9RGZmtB{=-vAtUW>W>0N{v7&hQ(9YFH+bx)Jf*Q>wAi)c
z(?Y6uGW>fNf5(*#<KPz3y<{tt(0D`Gr#d1(4QK?$I#m1umKqt-C(<Jfi6r@BWZhHL
zNB;l~<DXm7>nYGyy56~HP*GhsQ6(d}J;$`&NiqQaRJ3Z?9je$*Lg@>>b9&l2W{-er
zp>~|Kja0uLFm2b%KE4q40RmM>C1LUrz(<jF9Gw6j9EDcD6P8?fH@K^+2}f|tC3nK{
z(-K0H;K(k@G!W}^5EAe(4sT`ZBFsd~7Q%$Dt~byCW8)ef2^3^sOmSc(8?88VNYPL!
zB|@<?O=W2585m<mGJDOmejez$?xg*=Oc{2Vu<*Ly%IierIrZoXPQbf<B@I~HTMn1(
zeMT;rWv=3Sj8Z$;yZ&`bBp6FjnQyW>Hu;{kj2qI*jCE%G+1x&{WWGPG?t`{2-3_^H
z-oOcwIJfRvPXWpYo8(#5743WhG29g2xoeKG)pXe}nQA11hs_q4;+5TBj-6U1Y$x2!
z9dbjW_LK{u%y~4;mygv#_p1+H2Qf1j&;AKxn$}@t0w~h9-|TQR;;@LZY6X4Av&L6d
z4RZ<XE+lOKL7CxKSmXjIC$ztgq|bOM1-=|O0;!`rPo5|OFB87)K3(7Z+hMxHf&dgj
zh<L?qulMvMhZSw>E22^qY((4Joxhl#t9LEN*uOCj&78IPby4ix_>Z5VoV3vf|C2#@
zQtwOb{}0<<$Wxl^$_ben(NjMhlUROqcB^Q<EyAPcX2l#RvFm4vufgMFV`TX9f#GW*
zt&Xl9{sVrVUP``*82Nx5c|T$4k9?_jQ<^Esub3H;4T_YV=E7uA8ylXHmyq|*wC5<t
zP6T}@w6Q8U2cI5%+qNLG`TB~!8H3M>?C-^K>H7*E|5n7Js4lOptX!_FHqxWvuX;nP
zIiN}AMMaq57i@FbYXN>GDo`o^T<bIG%-v=#!fZ$#v2q}^wLoSdO~l1<9O6Rh(eVbE
zX3HM7|B^T|(b@6}UU{OnFNs*UiWa*2s!Yz8vtZ#|Yf84Cl8@u7qpPWiosgUseO?Ap
zG`+cxkNd6Ci)fpErrMfRf@8U*&^cL%YlxeLbyd&Vs}RbtLW*8IrLb!E74O?D6Pp3%
zDZfs94rkCg{WaG+RtCK7!Y7I=E@M+z{D0C-l5~>1!SXmo2be+ux11D0_TjxT6nUWF
zn|D)qYMI=<MdF97$C28h6I~FiU6nb!W9HZvB1|yp7pGDZ+sPu_P%$QZ`tSv<Jf0q0
zc^t}o@6==7_qTrK(gkm{1_jgV?IU+M#XucttzLKZ8q%7jMDZ!%@wr22zmkiOljzO{
z+=d-Thi1?%!6qR&BXC05(Ba)t;EWwhv2TmD+SGOUIUnp(`y+aGXk|x_fRk4Y(W@C>
zcKHvKG1n{e3p}ALXl;w3`HN}S@Ebc}ThWPb2N9u4oKWs6h42+pW78^jAsoj~6_X#=
zM&owGzvpW!Yia9-cUc(Jk=qry%~pX8Req5Fq~Ow8c=I2hMua0!a5A19I8S38F4Vv6
zt7zr59e)L=D5NEm>_VEAThLi~UZ)-1y}0W(=ZMeb2$xHETC^yFi64t|?T#Ew91F3O
zB@5;oj8it_&)Ae+<cOB{HdMP;pQwryF2HF}p(x(@IaTvNpR)(dLD4Oo8d7S4fL_ko
zan+N0us@xB{PnwsULS+y6R3ltdi{QV^YDcT+j8uPwhw191Q+vMqLrn@b&BhVi3i}W
z7FC83iQ?x}2`oovUrJ8{-0T(zMbcG!r>1Y+7!4>D|5N3o!OyLbp3J9jx-$>{)Zo=E
z->0W-tV(yf;$4c>hTHQN2r;5jTl}Fgd*RRWs~0bqppH_&BSM^;f^_zd&}@1?{Gs4#
zZGFrKIpL$AEm1$#>o^>kuSNfR_q35ev7lP@r|ORpHJ|ODP*s$<3h7)u`syx5V@mn|
z^e#m$nI;YUnwrWw#gaVD5vyzJPDL8GIYrdhb5`*hdO!V}T!6a$?W{)|%XDu`fNs1B
zQdO-S_K&?eatR?*s4V4Mh%zJ#E#}KB5=r@sUk!HpfS2{88vZkjn5_lU^h$3(T_Anf
z6GL9Smx2FYGym{g7!y5bYDY0%T1VJw6I%Nm&66xj5NuyR_IE+cayyt@K$MZK0bL1n
zrf978Gfr@ywdL)gee~`r_GHWS&UtXgro`Jq7O%~0$kWX-hgP%J1I6+;ZhA-rgo*K4
z3==ISvb6Hj>J-`pgb7J$k<l$1%E8WchLLw6PqXXOQDv?2<8TghIpsAioglfAl9D3+
zyYz}Yy@E0pQUf~<(^Rm!q;hHOmceUpEfNAk0-(WXt^QiAq*vVZ<PjXJKP*V{QVLiS
zlZ69Km>V@&NVzpYo)n)6y;cSkhrZLg%m}e5nR>4@TFl(swUiNgsuO6RF>pYc)Q~h1
z%hYr*1&Kb>ZCU-P=t;^5EW49QdY75d{XQ|3PD+fLRY{za-NlgPG-_zYtMa8_v%=>M
zajUPj`&fsmEG^`$?CluV@Az~|2Q|~k$Nr>8PfgLO-F{=hvo5k99R8D&WAe=H9ZaS?
z=!*a;=1I#@Nk8e55V2KHqoRiT)Op+w)h*(^)*_`m&*0E@R;48Tv4zBT;?lIDvge*A
zjSZT%lSzdrPRkPsCYpfs2dLLIaB;W#Hmi4#{)gXZo5UG{)}!JbU%G8ZS|<3513mbC
zN|Sj9hK_OMfGkC+uVGU$6(n&s%S%rvC+s2f>$zs>7T*3%`M76UZXviJ4`|rRWzXnP
zN;TtuqNuKhKBSF7NNR<-y?xjx?83=ax~F_+Shj>Z-)}yq`Q_5kE?pF_TJrJF!>Kb`
zjL0@^?3jJf@z>)n_Xw;KVNTxfmS(Dwh`b%&%N!hvmC=bVW2@7qGhezN?<6CO-qEmK
z-bKjuTddNgL#;C`?PzNzKZp2drX>yLM0}>mkxS9$3T5F>sAKiDK~x7x+=}iUcu$zd
z`GJ#kn@ta&{x0F?&{^qT%J(D|_5lT^eKBH>!M6#rrX`gp4{Z3`ujm;Kev4()5as>Q
zW+aLy*?zirPqTuanr{|{5A@o4O~9`Me6${m947%35y^?NDh~7qHiQbT-D{b$S*+3@
zh{gE@^qu+lwzZ!|GQ`i059rodY=IeSz-6*t#mN&ETgA2SYmWQ6w*;)Blxa(g+}XT+
z&yKgcQM&tT_p89K>#Hu$|0kQ#{k0RF*A~G&_p(!4wQ97_DicZdwaK-6q*`12=x}pG
zFJj=pJ=2W$ik@fv!-dy_DAaEya^_*<exc>*-a!!uu{wX7{5_i5ubOH9knh-dNA5(W
z%pVno{ttC;)fQLNbqj|eLAr5mEV#RSa1ty8cbY~Thu|LEEog8F7TgIIv>~{=1b27M
z*Z01k_j$iRun+bLN4@H*#hNv1&QW8GayZOW+r%Wk=rOuO+O-)b1zSxaroG&<_$=k(
z=($3}Fprn=e1~ArkEi<64wHZiEG?y9yN}am{SvUBBRpKS-aI~!$4$`j5;hbS<A4IA
z^#QgC()WzC3NC4pRliEZQtTGj&oIz%eQr%AZez}sH+S}&gmL2;y4?=^&+XcG%45TD
z&~R`aL`<gc*rDgZp;oZs6>&TM8z1U~;=kx7{2n+fyuI3gA3-BaE}g<TN?T%${jiCV
ziCjr%7ydRhekIAS80EWDZC2%_SRMZcQx$9hahZs*KbDXH5}KA;8{ZhO>%#)I{ukob
z;nz)9Z@ya-nB7O5-3o>iY<lM@<7GD@=v{+iwnauao$_HiUgXn}re@-oUHiupCZ;*;
zP<DeR3Q*Hw?D>#;=ZHk>B<WAud#Y;CUsa!LWm1<zUvwv1PIBjK{MpzCOyyrMC_vIC
zxts_a$0I#fnTM(aHGHZ*8@8A0)4%!V#YUVzHIb|)r8AfKNqzPFqZ|$eWa{i`&U;eo
z&QvD^^sNP;y$fTG&|!(QwW_7O+jsi3Rz0pINw{Y65~2N05GC^2g0`&m`on-yQcSAc
zkEtI+yJ=HK2LTu`7wI{|zdcPyMgrE8D8398J$`W}Th;>23A?ggc71E-RaKyTtD&2{
z`8>A82D?~#U<XX#uT4~kG<nzUF9O*X)4tSl+lm&*UgKklXtt&#)2Q6h=8&M3_!~$|
zjrhfgK*?GO+M>S%f{nZ2rizQv_FVN)EsmE3Q^!;Pukpq))FVHgz^{xFIu)Q03O3!x
zn%%OYfslE3AynOD3LE=qbDEt1me@+lA(XY4vynOD0?AFeJy8#o;aE{~u_w*8C`t9`
z;H5X5KaXDx3zIR|2MO+r$0}KctZoiFR=}cuNd(EU5m9abBvnZp?oSi<9WOMrskd1}
z5R+%^y{S`8(E9y7g?fKSO{r`RPrdv}O%FfFrg0}tqESG&!8U}SycOI#dE9))NKmLL
zYHGEiNtUfe>03l5|4xl6ziOe=v`gpec=@&6VxxSVnqu|kGT!&kcsg;50MPq3tQ*zJ
zxYJ^Nnv%%<+#~`jwmab?H}?LL7sGSIL;j=I$Qi3UsUzXX{3kn$AGM;i;$l%WD9)Te
z+#OsjTpgA=XuRSKW7~<0->T=sSNqvhG@2a0btwG76#q4J>m^*aN0lBFqGNxXZ>mmS
zo|Z1@&FFJKY|FlDB~b}HFfC(N_SI9BD;+Q8`aa(5Jv}=P3y6fUNRnV{-+y9`5sYGk
zfFSd@mcd)*Z~qLlvu4dx8ZPof)*e^5?2oAo&_+t(H8d563an01zS;_Aa&@qXX{X;H
z+dtaQ<xq^6{WRU=P5tkNyc&UJF>c_&-lfs{TB&X(@x}w?am)6Gsglc2cq*0!6ckFz
zrMdajgMuh%)n(#ivKW+biH4UBEh54vG+HG>VKQSqKdE?gxjV%+zI)Pr6(BICOuSl(
z6$+pXn4k&GH*VsGPW?dEb5D=LV0r?)XdjwnlJVoy$OENL-Ru@j0)WA-Se*kC1)LU7
zGD>1)D<&F!D1We2{)ACnk2kw&Ur`F9Z}!Lb%}+>k<tno9S|aW_wVvjE6u?xgMwtJ0
z4_)}d*W$7tJrZ^UQEJU5=C%gFl+z<gDs96#R6{RC`QJgONW@xBzqHPQt{j#SgTi8Z
z_a<mKeN0qcZ2LC!U3+DQ!Wh>`wU}hrS4N<#ZFIu!hmn16Zo%gLqr{wn+hSm53v!R%
z(4U{fPjqs1FA4XS3$T>z_ZN)=He^)OFw5gYNA&Xaf8`PLxRJrmTcU}B6M9g(g!M9#
z8sb<50F@}d6XC$YUx#8y1;O<NT%S#_>K$gujvuSK`huAYT0m;Kw1?=?q`dEzvJp9L
zw;0#cH(}A;X9z13*~xW=yYH)gjJRsQ5(f8pS<vu0%#c4noCY8E5!`hEZF1IWxGb(5
z0f%dd<a+$FWo|26htMya8Smb8p(OjsL6^S^wOk*^H589Q#=i60z7jwxkdNtxYW0g7
zE><^M#f(Y=|7gCX<fIbw3Izy?S5T!l>_y~3GO1iB$p>-2i&w+GRxVH5#GbZX;~fa3
zT<0Z7Kh*j0QmCM%f4>OSX?A!*2QJ-ozcs?j6YDpb9{1Z@ZRFB(GYk3!0e36mnS*id
zb#MA}yUOFPO%ONTjweca4y9R7)o6;q=gh|7FRYOr(ZF)U3|G=%G;c~xklByO#It!X
zCNI7xLS<cv13pJ$xj2#-u7XgoBRnlnHB&9RP)3Y&{O)!S_`>=I$KGZl7p#6o%#C{(
zw`AJCg}KKSFD6eD27&&ngs$bI>A8}Bp~Lj5nos!Nvt}>k#aj}Va@-2}6FxyK5If^A
ztN_>-!Q|O(K@XiA@_Z8%+EB4JyAI`Y<c|%pwxLn!O2n%hZ|R2;KW;<2na^JU>C32;
zwv<b_Vqs&wKSmgwRv)PiRF1nAxsG)A7b$tJa=^3t>L+>-@KRSA)DO3~X{@(XEy~2{
zf=txl*vagYI{IYj#Pb$B??K<PvC8@Vca!61us$HeEFf`qiPL5r%Gw|pf<dth_8$O5
z^<T*>HLh@aZIbjJxQ4>BlKmZ7))EShpX0ld7kDxIu0&+$mp4uQ2@mLU)*-CokS<fK
z0nrAg+#LvvMV$qClZ=h_*lMs`frN+-8}&B>$7BV`mtvD?bSV${0a0<tP=Q%?S&Jie
zj~uZG-^1d3%g2|r=5=g#kDu$^g*G1e*=40Rvpj<Kdts-$w%rvU9QIixH;xN*gz6E~
z-N}RZ%aj}k?r}v&^&vU?qS1Q`C~Ma_k#^ZmUNDwJlnMKJkvbaKSVL!kuUwkA6GF7=
z&-L0NDqBOY*DDLRwpC1Wj&U>Doe8i%gD*mREA`}ZFDAh>?5XP~K4eQ;%H2o6)<5^^
z{sm(H_W$Q9J|BZDYL&%{<}Vi5pVWDrLn&1u8)@D|GsF_fzV>q<-b4?bWRI8MBcNM%
zc-3UAqt7Q<@Nhl;&NwDLw=dwM-2-}1k)8gCv3V<&5qfKwZg=N9&98u8hBOoHuB0w^
zl{BH`GY;b7i90xM^?wvIg$o{A%CN0RNacyE8L3n*dqXLJ<F$rZ0OP}O%SFkc57}Y6
z3_H2<`Y8@!dGolr4QPWv5aH<Hh2be!XE*($Rbzy~S4Lvq3V3tZAN$Pdb0K4UsVu`p
zsmn+=;BoMUuV>z*87T5=N{4L1ZU#<#)2qk5IGMJ4MXx6&Tf?vSCCm6@kYoWnOK()q
z^F*$$zRNKmC`FZdhpu$KQ}iW;tr9wdl+26ql0q|4;$-7O!cFd7X$eIUvljY5vkd0U
z71OIfjiz8>uLYl!eaz=QMJu0wJFp|kJ;=~j@_hhPFs83PBj3FL<jyZf^&Vve6ja2e
z*Ld>fwBs-=fyct+^jbsV{%52q?W#z~c91ZJ|IEpvjc~bZ5KETiR6Vk=>t1*OA_F-3
z9Jy^^vrxN$l?I8(O-VlPW@MsBT@}Fft6;@>&kg_*l2J=FnLqT0PPT}70W)GNFkck#
zS^_{9Pe{SbZZPHJ4Cq$A*|LZ*$qpuh0?RF-?$Y<wu$e%1=wdm|1CS5q+MdBQ7T33}
z?1PogPAuw1l)Xnm2c~6_H?o6QUMBq>q!5K36zEC~7L0ZE&Dgk<a%xHhw)3%|765WQ
zSI*~!X{2FK4VR<JDW?}mw>I8Yo<g5YTq%Xx?zgCA9*=tKjo2pgJuLwwt$1<4UM2CA
zn;20if29lf+qt}I*r;8uA<u=J{D7wAlRq;Yc;4PY^b&(_c4*Qe1IrLp76&A>$(%(K
za2Y#s!(>J1;V+J$&>0Cn6s)#W8b#84>Fjl^;%&PL=Vg?;6ytmV)2(eyQiIbYm<R0m
z$J%@<u1Pu<WA@r1B70MyQ@ZNU<kpg4`*$?GM)FW0l(4e)yb9J$<jgt0xY>64?g1V{
z(uX3HnAcWVw$=F#zAoRaVxw?0E#5_PC*YAs3+8b!Cy*1x%Fkuz{y?TzYzf)K&?{Jr
zW^2~{4gK8}#S=<A4JMn-u2>gaY#`?CThE>sFXUUqGzRv|YwGJoly}x~Qp^GjVda4Z
zMs$4>sg91TP0;x^28%SIjgXg&aoY1{FAwqbCQyXA{PWN+d1vE!$W%27aXYMNIeao#
z?tLjfaz3-2)W7J1&!>O*pHI$c^z&Pg$$e3!tsMSERX0&xoAESHBCsj&d^u_1K%17B
zceA3b|8k6}(eso)s7TCz#ElX_!j05()o1xuP~+)$ohgd4h|9q;))K|R-`69SLw69%
z;uPpo9$t%*P*`MB(}i+iP6{cn82_E7o=Ra#>f5aW6JDzYgcTG}-ls-D2rZ5ZB)vdW
zKBem3a3t5r0Yy3Nw8ivG*R!=^Ju?8LwR(aG_Nf{i%D6Y82$1J&bj7GYUIzNcK^;7Q
zN>1S(i?~RhzE{yiagWvmfRewz!fI-gnIa^gC>TR&E@tB0e6k);`|5%dmBBBybmGhP
zY!J$CfU%~!JLpw!vj`IN8VNmQkze)ECM$&*tlu`4<ICpzY*|=R^RW|K&hlAY???I}
z#{LP3@9568>H?;96x384oHYOVv?abAg~OJf?|OU6Wgu`ZZ!^wowMcd>eAPRCUs>|W
zYXCjp5o|@uYqyHChP51S(_M1J21uWD5fu{zt?}B2R6a964r4y>>+(&PznDwWl;nL?
zRQr?`*S5@RMkl{sGxCAgei^AfG`icWy*PuE*C<eOiXf=}WCBDj3~x+mzm0(fcJ+Co
z6UaeD4m~5*8G;cBC;p%*{TeS<l3=dZXTIG7Ksro$qH*e#5`U|fr`0DXTnaLZh|rky
z{L_K=j@Z%C$e+8HYx3TU@$L(wCc3S7#B3|^ou{D0P?P2n&E{D?uIn6-RRO1S2QWhq
zAGGf52UzFjtPzJi|7IYS-5be#;);~@92og6WpRaPFfWXJ96H+l-f(vZZZJX0`tU;t
zWo#*^RnsVo{jFjTUTYzA!5olcRN|r8%zKZi!tsEmhxsk;8S96SCF(%J!#t*<zB?>9
znP@O|vpqpl9XoPJUoPM8*ZsVwYLocsOo`@)0ot~cp95gmvB<VJ`aLy!f)-4f%+GPj
zA-l1pA<BW;b614LAYeMHXoG&-i*mn-nD@J@AGz}EuSZD={13r8pReBEN7KO-{2BL@
zF4-1v2c*S!VzrdnFc^g$muD76e!X$HuIh2M{X1<XJ#UHx%?_{sfyUs#*lu<N*Q_wn
zrs^)(AbAX}m=EJPrX8KDGW72JXsTNqG9F!1NiinDu(;L5R$YWMFjP|8Yn8{A-N*1&
zoL)usTw$P`I9Ee&W7>}Bb^W?<QmvAK&Lq6W@d>jxjLkJIhXK<Wk^$+FbGFV92Fy|Q
zjC|L}(Y=l>K%hEah%)CUGTmE#=GT>>BNHvI3|D*J9}=swC8tXDvC@{yI)dP=U8}yq
zsRH-wiwm2f4}ngmsA~*)EDz;pft(tX`Ww@EHmcE%v&z2X1%yGNr!k59Hi6mXdbzHx
zH+y345~4XWZ-w|UsGnEd2u#h4`6Q=`*v2d7ZUtQ!-jqfVxT=IlNewgvrA?QUbR5nQ
z!Q8Duj9QX~Uj#*P^5QBxXDlfBtBhm66?he>Ry9H=YS|W>j)TR6hMg3bG~gOiy$d??
zH#p^Jv(m^;qY$#Au}PPsm^{)dYo+Q7I+b!;Uld4)F;FW&DOhkWnN?Z+icAo{7};T0
z83^M0z?1W5uf$=ZUfBVV<DR#86k&bV<?TejAx+VFdt{}PUfw<Vt!KPd)!oJ9w$68H
zc8}i?;3oE?nP@rpd|Cj?OcLBc!fQSNl!$AH(ebDPr<tmce8Y}6L+<fY6Pv|s=dupO
z3$_>s@d8Qt<%+vD!5+nt`?O<{^L^LQ@m#JJtc>XAm-M_^S`k#0GLd{f<DD62Vy*1v
zSfUB5fdRHzkaJbf5()3c5w?NO9D&^%mEM=bqxAPjk5sWt;y6s}aqCt>7%{@Y9)qPH
z7M<R_(4@~vJH1p_zcmf2#bd=_EH$QG9sqJ-R6~7!>8f*y&XzVj_=z=0V)`&@pZ?Z*
z;gw<Jv<O3Wvy=bu{B?<s#hV;S=g(aN#GF0ESk~u=biW0_4Y^b(Bg-KSiyU<VT+k1u
z&(;2Vcqup7Ms2VHpe)IUS_t;jIM%KTMW21awvMpBXefZ<3;Re$?${NdW9e0GQ4=Q=
zUCL?H2cQ>gj1X3`D57x^#luOlOqi%8V)MWwP3DW^T_n&|vdw_4BklVkf4SOOPYj^{
z8C$hpKsw=u_y*of<&B}1i*JPG2D5I>)}nF!r#jp}ho5v?`g4Wm40MHmHc$O4dhp$1
z@&Ps!;$_9WA<s?X9f1^Nu~&0&Zcw0NvH5iA&IvVgPc#t=DzXt^(Z~|4N-A7G!t$XR
zIUTQP^?MoufC$VAv1%H)qHNX(kM;Q{ZQmNaxBaqIPOw;S9ml>BYmI^o7xS6hxa_ZD
z%<>&+e*}-a$W@6Kf4o0^0c~y2HnTz_wJLPeUuLm)Fsy*-7Vzrjq#f+n8d`b-4;A>H
zM9}1})LR|kJ5eC5&TBm$4?JP$I=WI0Hn$ddP9~rkbVEt6yJ&KlLm46UQ!gA{Lr1(y
zsnE-Z2xR|dDS9j;U^GMQ3aazUReRpqTP~v{ZN}{1tHI;4y7~0P*_LeLcuj5=u(VkD
z2|ls@PH^muB^sAU`cxfhp6(C@G4J4e9{qP?x%&^#ACEkAI#vr`r_f(Va)AWwBP*Xn
z!Nu`%_n{~;Wce}<wojpjr?Zp=x1zY&#i>+7QK3XOk0;6p1)9Z1#DZqTa<QPW(nNSm
zml*(EsVy`aKk_tC+iBv4PWLIay1&9B<&}y$l?Na6r5mDn8X>WhPD>Zi8*;gH8;u;1
zh1g@I!}hpba50fJN|RYh!9=srjWA_c*Q=Fq&B&wpC^)l}^4Z&6u9dz#j@K^A@6vtq
zsYeGtX_jAKF{g<O`d#7Hy)&{gX8ebtcfH*Nl5z&WBu`d4pY+gdIc3vPV1oMXdc;W)
zdK*WO9GV*b;Tpzcu4{%pF{cMDy-GSTs6qq`v5XQclgpn9|CtO-Z!NCQJvJGxtFRZd
zW|Y1#w0Szqp-5|)EcUsN=e?&_VTDG4FUhb!DF%H=v|rx}^v}Dk*KE$On9U&OU69<Z
zF7;PcGV}!!M18lG4rq%Xninc2TC6`DJrGAvEE?@9BKHP6xT9wf0VPw>SXNhZf1`hS
ze(1RKBgF9jEtUXlfvgSh5Z4{?N;Qn3uLW6*)nler!x|R<Vvspa%M$)o1sF7wxbr2-
zA%E^^cQWb2zS^HeIBo%U(k7~(0TqHv4n{}*gB~;V!^uuQ-QRUi(&Gs1k#*Fzos%<m
znr0B2B5k6Le~ZU0&m2kC4L5j+{x$Hdd8JLg3XYhv>9A<6m2}o{2#pSH;)8CP`XB9&
zli4jb5%CXZaXN|8tCUD?GC*ME&U%Tt@E_)fss(gNPSuSu#oT{F<J&5nsLoo}NRyoM
zZlDaViF~2&TJi3=vjEyX;s(jRD|}})&6l~#je#c*?EjN(xA3kJc`=5&dmG7(hk!2J
zUH3~7o8EfssW9B%;eDD0B&#2MP<~&1;eY={)+qCfB8y0YQQgfRpEV7;=oq8FZ)Ghn
z9#*4()YJ}#0Q5(PP()K4EeCc#tcI8T!K8YfZ3IvNXJ|FPNtW9JZBf&DU6_lGjNANy
z3U<r@Kq=zCvFJxY`JTIe#0`bizA;JL)JMZoKDVywE(anAJ10~F6W`cA;A~Wa3cx+|
zr~SE-OxzT@U^!o{)D9Z1Yaits!nZ@f{yx{`-2GT^V(cH1zf$qq{7_7&<v@~pnPh<^
z)u`;BLd1Dq2tW?-Lb0;Q`|k3lopbGip4*xWpV<Q=NbYOsmnn>iQakr(eOmw?1ksjz
zIx&GNdX}T7dm;<2cGo!aFY!-Zjgu@GMGIUi5{FJWGqYB~wD=Q;J~^IVy{;z_Eo+gS
z^1|N9MxPATlnw0F@8>KwGFIYg@A>c}zya6CRFVadWfSv<xk)Zea2+Lf^abVFGVM>c
z+v^2*$O?7sf_Y0=ipnqi3MC5$Jy2UU#U@(T49MEEN>;|+N6})gzOl@G-ZMY7A2+k<
z_8Q^socUoxc+D8$(o^~Sm=ipsyGOqW1*G2)|9TLmw%H2;1??CU*F!N*_DOhOAAB-H
z_S!fL^(3AtL)3EzeOXBHQ}7C5Q2w_=cxt<UivpA{(kRd<GW~I%NRxb-V-vgUl)1QZ
z&+rSDp*E9yUfPCc4{Q?%ve-=ifXHgDi@Tg!FI9GvHR0T#y^Ww?*OnkTg(l{88sOhR
z|FwX3ACMwoAKRGKYC0f!{O-h;nAhuUBmj{-1=8tWek|-FcMEKqKT{hWT?@Eb-r5s+
zrNwu&boMZymU$HGy2dXzbg~91@ik}ppp_XIWdq9djDlO&RqhE~asI%96b@iD^>sfe
zkGFUmM~mc<@4??O%Nwg(uIj+yRIS?P!R{o8eq^!WG=8R;IofZ{Cn8bs5luzKHk#hf
z%XEM&?BbclI-ivT-7>{LL~g_ja_3QzP%NDurLepG=dokjc6@pY#Or;2*Km^yzU6qp
zRnni8Ppm}b^qW&|7eL+rSoipu=neg>{O0U4mwg}K$j<yCor;6axJKt9&khRa@M(mb
zaz_48Zq5ATmF60vgZ(%@!z!#RVl96+*mdzy2l3#w%!8fuT1q?T#8o700MCOGB?jaP
zKH)r_LVys>R^vGN(Y7@LWLxtzEykDYU|2Dari-Jk+dGPMN#9Uibc6h|<REZZz&tvg
zP9<jC|3PKB%E_CUfIC|V;<|Rq>9;Mk=T_y37gQv;_$DP$Klg9>O7m?bd1u`dd3ByV
zk&^LgjJ0y|^J`1so7~O$bc=D@&M&c$ng^vqR3IM-Z^(Lcy{qUVz~D;|mi5xQLP*jh
zL-luU)nWc$dPdpq+|Vm*3wpNW5V<S{NMe~i0>OU@0H%vBIF5}@2s!y?Ff5T6=E?pu
ztzV*{A7h@ua<`!yw7FXc8OjLh2BZtI&ureG2iAF>p?mk!sg!Zh$me}2SJE;>A8}Yd
zwH`m($~bpB3O*TPm*UY-mo#7w(qocM+LZB`YXb_qribFacn0okAgrA=z)$~J4FoFv
z5QB<bGaC1n8(4-#xj$+YkqVW*9Z~Ea$=aMqJB3WyAl*nzohV*l!j;3F8lTdFHfjgA
zQwc)4-9F*fL#L2^Ll-be85PyrO|A@`>+dSxbgUi4Wa2V0-`iRvf2X@2@Y-Hd8l0aW
zq;O8>l|6)WBJRf3?F6OOqVfIta}Ro#^5}y?9dMUX483oA+<qA(r8vCmI!GV^azv>?
z$MXqVfN8;yuElOEAgJTL<5H~Hco<M2NQcDL@&^I3f{zCv>X%Kh*0Hzg(I?7v*BN-s
zRDVjc*r=INsJEL0WO-rrK47df;tvfjy|4Hx`6(&P)a{Vgw%W_o%a_+`0x_sR^Ia}I
znlzf)vM*WsoZ9@|&vbZag`wIb2c53xL5W=j+%$7(91$w&L=X&AnJ1d)8VN4XHb~dW
z*^Orat?jZ?bCoKi%*Rq05md=$3mn>updu#Rvqm!@d<WZcD05kSlv<j$-m1mx11Z|&
z>fZ1NI1cw$@aa#fW#IHc28frs*JvSjeeI@KCa8>$lw2>;w94e~+0LHWD600LSnDl#
zd?5a&mqM}QIM_+?2Z;B>7Shiy+vUIGRvI&6P}`clvZ6hS1+or4B}e9n)(}Jq7g_HY
zIqG)0uj$Hxf1?PWi%e`{7+@Q)m;1d{d%&!ScIKU21`?56kNcPm9Dk(<JwfaKi<kUy
zFpm+k_NM#<Z7$CAWNw8E0?~wfp}Wkolgj&rR3`p7kxUGFM??d#5<_P>4l3I<-lXr6
z4ZoU?_|5jKpI6<1R(n6?^#-HCf*6*s*I3_;KEagj>T)i4EcFwbX9JTHu1xDm_mw|Z
z=hx%gt7!3mNi!SjoAAc5m@+kYZXIw{DG5g{{C;mM=30N43bTsw?l2j@64VjPj@n({
zGp>Q|U61oXg<akiM-){%y9O<J&JBKc?LYR2kvzMBi<N-<-C%)AKD|c!I2CfDKYy-w
zJ#ZW`_*3soq=34!u4#U2B*%IUGG&$O)sIhNqFB-IY;9S)v)}wlc~m<xFhikSG1*WC
zq&FT<)b!lm`3>ll3%QbWybe0s*jLV66DJZQt?hCS%O?H_lePhIt#;+ADMX%iTC=<5
zw8s&xpNB)X<04Rdvz+xgI|x`5Qzg@Ei>-uQb#Y#+sz^5R!;wX0`Di}DSev*WY+RhE
z`GJo}%Qu0?2#CXF=7@`MgPARHSVsrjM7gH-)tw(x`Drk`oyA31z0r}VVDY+v2D!mu
zuP45xHs6Q1Gyr1j5-K`+_hrBKA2WW$l>-6EjME43*9n4=BP<m-?(>>lr1tQd^a~Eg
zO;>8_v+k>tW=hzFA8?}Cob-xV=*{eQpT9F)s-wZAbQaQ=s{&ohCxMrGfx1gsj+gHl
zrHtA-6K!_Et?r1U=OhXn_{)n61Z*Gy`QlZ?YS;-*Hw1!xeuk@3k=6NN>pqJz0|aS0
zG2827O4Z4Yj2Di*vaR+F@03?{dK?CV31dqLgHV3pewPrA*k2LJRgRj4<CwNbLf#k%
zR8*)wK6tw~tdf5%uE%RPUk&pM!i`*aV}KwEMp?HbO){g;uTpbD-_oaCS2PpLh~IRc
zyGl<qzsI=BsKuoq;Gp>tBESQk_DneABMpA=EjF3T()Q`c?_Zw{P=ijm;?Fi8tghdP
z13<aF`-HJ0)*<%NDI3#0tXom&ALDbPzJFm6wBtlEY;ltttHJm|!mGG&xze)cF}$`B
zE+3&g@S7+v_buhO1ouB?!W74(SUneFam)|=(jFr>lcCVn2X7?<GlX6Fh=IY8FomSJ
zwrI!Y&z#+NjX+M*Z6ncHk@FY;=!VtoO>4K0qx=<FJyO_ncfz;inB~_v7nilzw`cVB
z9`|oQ!baoH1Gl$Q_V_Hw$+9g{=fu`0%*hNz(6fZyWpYZ(;AEoDw1y(FvN0myrw{UN
zjEtt&gpwNHSGt<yf<m*B?*Z(v=X1lcJRR37W@?_g5Pm#@Eoufn{J9DN(+^FtY4%PO
zI9?eDzkW*gWM}OWHJ_4yX`WU(=F@q!K<;+F<&NIt#>)`1na|Anm)>`0c4vYTGm?mV
zC7Kz#D$mVJAAMFTbW*?rUA`DE3-z$?EdQBQ%mu~NjN9$^jr$z5qluC9qZ<hFKeC+#
zROmICA`a6-m#Yy#nrev_BQ?|Nbs}&t?$Kcf<~E$YR+TU{*9}ntsKE{&`22})`N6@-
zR9k%z`>+Ky$je=_zfpOj`K763t(@E|Ym&WR?RUcE9itZfe9})$INx>3t3>;hbo%jz
zl-GI@P$6=KosuIu9fL!FODi;nW8vg-GzsjtIpbtb5p<P|qtJ4^Gz<Y7F6C>|WV`$F
zT2Bxfde=$bVl6pp{=I(pfl0=FIAoiXT==%L=n%ffnnrZe>G#G982}DYITq$p)VNze
zhI-2>6l09--8t*UA7U+7#4#j8DsP*gs$frSpC$yG{CGpJ4kOs@GV*ZBoPFI?o>71k
z`Ld)g6ucC59PM7DY7OPY2`6Pbk8ZMaZmg8E9Y9cR?KOGS&o`AlHuBPNB$Gny@!PuA
z44q1aSHAIIh~Q}rAV{P^4#Vz|*W$KDKZh!<Wf`~W8pVk~F*Cj3@%9<K;X)!0bCrEe
ziJAE5y~4kC-T9@au4Y}yHYBeLm~LiF?4yqrBXZL{Ug54Aj^Z?mp`#3^dt|uu<tD^>
zRY5IF`UWs+`+smDa#g!q);mm~UVDnnSeo0;qCdmNLc-37-zSi|5Dq<FziU#l8*h^o
zONj;6ivT*K3*Y?l_2XeNMszt4z-_$};MYo~zC3?Fd^AInwb=M>Ds=5n2Am*sW~SX$
zk0)!~-BP71aWstuahG7tVWNG@AvIVbt;1VO`QYLZm!eEs{n-ED7K8$wI1#x5@nT{C
zDsXZox|CCb&M?Xr_zns%T7NxeYY9N5#;Upn)~fHi@T!f|unT33zB5EGRr}3+r#kTO
zc_g$slvAFlRCm{!rQ`gG&Em7xmI+6Cwg%8eqh{9l-u<;&TK_xv-m6fd#T$PL)YKKf
zz>uelt^I|V0|Ri(``WqfilR0UdS^=!twOWgdC3QN{j2$$bc?BUw2VM5d<{$Mv#GI~
zAyXn2M2Qk03oV%WP){yM&M-8$Z*`NaI}a8tI{w_f(2h4@(}_B4)Q(1~H45A7I3Dk~
z{K&ev6WGbzT7Z#(^miPg!15?`>RT2ZmE@2cF+}T$8RE3GRdqSKBbQ@c40V=FHrDQq
zNu#OLHyJQk`rtjMfLr<JjFnJ)ta31$pH9KUBy2{yHD8h8#uhUpnvOK4+HIW{@N(ik
z%<nR1ua_N=i?KueXei>cw}^$8QW?~BK|;*qNIm<FqU&4?W5REXT2OPrS}y%FRxHZO
zc%_~86)6{nBEWq!O~0h*uLW`^*v{c9y#_(xI>%1VX&9(eMHXCHULkTz8oN*yZBp-s
zP=t9LJ4*g&TC~r!T=99VSB<FJ`Lj*5t|ulAybA8_;L9mkdyR2S-}R~2gRJ+7kZr<g
zoR(F`9CZ^I#pQf-yEp5KnsVG89S`boL;F94K)7lcoXVji!7kS%y}vi=`th+;lY@Q~
zcg{dLo%vjB{v7?*peuL(bFP=D#LiCK^U`o`LRgpEvY=8XFHWM(M3U8%$^AQ?KsBb?
z^(J#xdZn~L5}wh#gEaxo3)VY3ih_t7-5P-)OgR6xB+9$S`ou#iofmB?g?N1n^4yN8
z@i9ea{lQAn)<BdXk-nB&DLWdORJmqumUN7p*(e5JPBQ7ckZXP<sFcG;TFEy|HoivN
zteuls-e$ceTHl{dz{3TmZhbM8K5}mht7qPXl$bI4`MoaakM672b#}V50-nZbCg<%f
zI7L&4g%*Abqfu=bir4szA9~;Ab*q<`ji*aqq?8r1P58L($WaP=cAbvorj>An`9%?=
z@ntuRm}xb74w-aZ<Fh~1IU9)`5Plq@Q~2c#5=l|+zl%uZf`lNGom$j|GQR7qStsVR
zVBTR9M)0?DWxj!T_W?cR@#u8i_Bq`*g^QP|=^Fz-`v=Oso<C$DVfDDZ3?6)a+k9*o
zCNu?uTugiF)b&tk7nIqHRLH#FK_ml-lR=8c`q2+};U=*4Z*htEfe`b|n8GrjAEymn
zCs_uWfyG2_U5@*J*?w4EhY-2q!mI0}ti8zR#A$OzmF8GH!YD4^BP6A)23(ObQOSU>
z4I}M{#Ns}*7VLV+t#A-Cw181^R^3~NH9gX4lcCzXh0uE}q!ujxG06qvF$}Y3?^{&$
zD3!vP<78eiEd&1QtbX;^h7}~Ym+Ae>YOj8$W|Z#*i#MZ3e!a#`z13hEPMdu%K~1Hy
z@wa30%MI=6cjlyj$cla<TzqvAb(RQZV@WlEdE6}5S_aLTH(kpj6>00Ue8O-r881Ok
z@K{2>3?1o#(To}0rwGIfieXy<P)uMSoDJS@QuQfxc;gOPmIwZP*`bmB-Ry5oVo}N8
zpT&$KSur4^(Bgn`NubW@HVswMtw&?1l9MVQm5y&krf21c^<CI0)@L9!kp$oKAC(y-
zhkdDAs`j`*1yG8h)oC3EPt8<=Qf;mH(d=Wum&Z7jpQz{7(3S{e`Uk)ePV*b|Be#xF
z)Mq9Ey}?P!&CCU)n{w~Ba;GUNg%aJm6den7pPEtldVl6MgCT<*9P}nzXA^0nHbQP9
z_f(?#Rl9I(XlM34F-KM~SNX|QN_y9cis+!mH;+H2;qO_RdWsiq4yLi`#6q+Bu!zSV
zCWB@5*UxlBqL?IJ8$A-4bo`dQo2!mhF#H;m%QDNU%SDQ}a4BrP;lj!#42bJL=VKT7
zN^cmpQuJP@b(i^$Vox)He%0jMw+1@&UUbTjEor;|PuIfpeEk<gNbn9wF($VA^8E&j
zKsm#|XGeZ7|D3e;7Et@Rza_}R`kpuCcU*ka%<{PP<R~5%q8WEO9Ghx1P0UMv`%kT5
zh*i|Jv!5}Vdw*ZxFn)CeNAa2jeHS&jp`i<NXN1LiC1&G*zQ)HY8%%81u?z>?r>XDV
zx!-IIm-I8O<t)bm72J6Lqjw3XjQc0;h%rj(58>CBNs`}Mxh<u6^S8oykG~Nb4iEy;
zXT5*)JG+{Ap6Lq9m=EN73Ym@jM8->AGQ-Wf{+)k#%Pzc!>8B*fe}2JtS<Z>Xe7gK{
zlSu9^oXZ8>$r-Z%&uog+j?vk}NeWr!aH{LVz6rB!_T=}oAMkNL59HqCQ^BjJ|Mk*x
z9fM<^C%uZ*&t3@X9XIO5K1XeN3&>sPx=u0YPgC2T3GrjIHhlf3CZ3`S-^mHeq)<kN
z;6tbf1Jbo6|Ema^7NhLVT@R;arX?6iC}DVps94nG&)%^T_Ls6{m&F?fl>h{wWEKK4
zQ#;2K4Ub&C&>l44WFTi|<^vmuZ@p@*v7)imxxz6BHuviKKtQHH8?kzuf`nIs+-v~g
z*qiT$$a#M;wvd}ZeLspeY_*ETql#kPV}xZj2_(yy0w7vu%YD2i&-*vQqXypL+;PI|
z^v;`%`@4+ytS=Uz{$BBgG5_71qdN@ek+xW>S*tr6;Q5nty`iuMYmNlTW%c0s)15Q@
zP%B@1+}4zwS_;D22!zXNQfXNK56Xxsw^UfUAVsQ@JoqVCNT;?NFP*647s}u#GYL`V
zwr%U1?rlNxl3O>n4I25_HdN!I^cpf))$_ym9BQAUc#%dWJ@hEW?J74fHnVRpj!WEV
zEI-;}BK{+8`8P6-+SR}OwT<b~*5CX#zuV~Xr0xAQawAB!LLBBos3rE|f8<=N7-};9
z<jsRsMm84rYn38S`u6w#M8-eyu~Gcb*K}JO?UxYf-^kH7J?Ef*9{X!QHJnRgl@sbe
zjs4f52u&rOgx6T7S0idS=kF>g3i0;8(e?iuV|lP2{{Ck_Wm#YByChsA`%?9JMG627
z@6Days1W?hDc-K!`zT$d1`ofd?HyvB)ghvb|MBAbXP3QWy6gg^R|s63F(g8t7I-5|
zFLu|4`5tKi!dZb5`yq$oe@zKv5^hQZB`>`<2QD0+$9|>Dg2&(rjejHk|NOn%zeKPc
z-`dd5fV(Hjfu7|ae_x9vDo`1&;l00e1)l%nitRMXFoRE}ujtJB+~5~v(f#z8|4D;I
zRv|V*)|OS>fULG~F+2y&T9c_34>y5j3S}DEnjnd8K|yJ-Cxb{Dn4FJI;#A7$)8Fo)
z`GM&|eFMAyw88P$W<rwgj~Me3eC%C%8mcg(1(p8@MUW(?$thvE;EQlZxuBJryVF>x
zPa%Wf(+K+rAiYMV^iCCc{uh$&BUjhEZ@iTMqwjJImQr&T#g22~={x-qpPuHS1CO87
zHZU)bDmq#jeA$fc@Ye#)J1AUGc!Hwbp(|Ya)VQ9QlC|j<0m~4#3I{G0qdgU|HoI)_
zgGiZ>_emIW?So%`mGT!%r|2&*rFvjflVnB@*{rqFY3m}EJMts7<qp|b(MGZ)tSPH*
zWnhy^I+e6-C#w?L&iW`x#q`cgZbIaW;a^PTpP*6S3L@quEBzFcabD<%&Kf+0fs+VN
zDI#wogL$<J6ybW4905~Bq=J4mqDp`9$F{_e=p^ortFIbriMtqp)q~6Azgswy(QDjK
z-@-!{R<gzD?e%J^BCsC8HCie%khHb>{s{SqPsrG4jFR-5AeQ#6PUmksN>+CG!H<nJ
z&<f1E3{Y}xP$0cB`Y1^q*}Kiw>Zodo`};%uj%7s5Vfop|N}#uKiDClY2|DDG)T3(V
zKkEh_B7Qgj<nv8wWZ4Ozt?@x1zMTT!w6#L5DK<G?P+FQ!Zy_NXJq}iC#HR!;Mmb4S
z-l#ZfA3d(21X%)lnqi25-~4G<aIgmcndC1$1hrcJoOzwzUF#KulsJQ=z%;0`he3*4
zX^bAS6TRYC&w{Jxs)L1?W^O#;A6URjGs9qiRu+BpTMaE>axJQrTHDdnV)+vqngYS^
zycB}Bd=($ll&Qb7Op&pK<j5*06G-+B5|X9@xfJuh?$W3Yge6PlHEt_%C+!&a2dv!2
zr+SmNDz7j%{M2KT_ro0uni1d^r_iOtH49$(GD44+iKZm^8MF2452S_nLX2tzG(6(u
zeQh=OKbes~IO8U;;mZYVTrtX=`)uGQsC{af;YArK91(G>`$*c$#3HkJEmrNQ40*$>
zfH4_AT6|KH9AEpGsrT`Vi(6cXx$2QoiZPARDTuYAjTUjDoXym9BO#4GP$@IAlLdZ#
zsvo9gY3abG;;zPLH@|vEKc({33uZ012*(N^w+fx!qTT8Ti+pNtlE^wd-JF7-g8wy{
z$a$R;D_QU<|0<h~P{d~SttJre54E4*xYSA}2ZM3)^9OWU5Fz0Y1WUT*9}1TX?gvG+
z0>IFE1Qvc_>J}xSY`hqMrBNjE&|J^(2Jy)*%g1;}qT-lY^n2oOX{IY`#%9Ss=5>C(
z8jE%4Wmd-{&Paz0$&P%g%CC29KGB6;nD56Z*H|6uiW0StTww}*sP(CFxP>H1g+^zz
zntYBO%Ttr4_e5C&qHyx^2Tp|2r3twM%PF>{QvQU-Wccv%gimuP!J17A@;EMX0|j?p
z&$5eP?yA#Q&%5DpG2`G;7<Srg$?>RT*zyTQkn-8$7NihRul&<`Mj}`-+aGZUWsK&j
z4XMR@ATj{8>K;H{K1(VFsLK5_S!LBe>!#)W3$bFWYVkxXJpuRf=Q0m~;#AU2)0Um9
z+I-$Sdt;O^!FQRsfSgUaayDJhMq8NQEu)5!vSyTIK}!Bx7@mHkfqdl;)b(8e*e{tb
zJ__3_Wo5S@R?wmm*xJ59^&TVimTQHt@z0-a;;y7mM8$9KhWS~!IL&T7NN*O!-+6r%
zXspr+m5tKwak)kCV5s%Z_=B}eu2>zhqAyM3oOaq8?P$*);f(D9cWDl%iFH_g%_HJI
z@38zjjx{ehehapK(MTY85q$&uZ|c9pzY7L{kh$B~Ot!w20!yMlP{FcRFiidw8pifa
zMo}Df<r}&$<Qhkqxzn&3xg)9mM9jrrKN$^~|C_|1k;}S8OSmX^j>u>>;b_!~E1zQn
zAZ*A7Ojv4l|FI=A`|MBl%_c%$mViersn&FP`56(=-hdhWDYVVIwZ`mLOrsV$ZCw)i
z35S57@EiOJq{&gQ(sz9q=yd|Hj#u_nj8r4-QSC)U%pA_2et#s}ij{T?h_B(@xEtbJ
z^8t3d4O#2nJBbSjm~wPN7wDTYWLc!&H{)qlxJp7*2)Vy*V(&NL)nVOTDu~UyVg#<6
ze10`{zl9~s#BHzN-L1I^w-sa%UrJqftakel{RLz$%XGF<i|8H#%-CjR^Y{W8I>sKY
z%<zL?4TmhSf5x{o=<<{1pdGk$^u1-(Ssj#C(PG}9IYCF6F0}RQh=miG(a=prt6fih
z@yjA{_B)V890+S_;ja7(*k!|QoxZr9V3a4fv96b;`vLR0a9}%-6cOTK!JM$`fGADF
zu?77+O)Y8EhUIqR_cl$iHc-RkSTD9hpaElV@B+u*6>FBl7bW>au!+2M`N9!m-oRJU
zUc;5Bid2uktkU*v0ynlT<q<Uh-HhRxRu~0n{1w+UM%MPDQBNio<M!_}&e{MA6%2V`
z2rF^%4u#|^(!FA@H1H*GWR%(`LZu~6NU8mv(<p%3pM|v^lW;U)D0`!1flZ^0K><y7
zRx^#nlR5~vdrH0ri1MX?ODE!jMY)p9BhEM*W&7GF2+Y2|%S^Wn*<Hj&NG6*kx|whO
zjSZvUng6^&btU#@y=~*;eANPKY9~@JOomGIisFbLl<R{*-0(UCt!cgXkvsTpSNu<;
zI<`5gw(3ku29HiDoAL0?g)#lpck_|DOtR-<io*u>uQ2e$d%}O45@8A=X{<WP(#cBZ
zlFx!NWlc=UObfcPUHUOI036gY4RM0ID6HC<Rkg!PA+`BXgWCDf!|ody;UE|x&QS^P
zy|7z`q0Eokq=rX?BaHZWhM<5t8~;ua9*?qav~rE_Uz|I-^Gnxh({aWR@#n)7`eXE{
zMM}Y=xd~D8WBN6Z6geCDq2J%)v)eEmL;CYJ&(JvJ281AFsN(|Ph?%)Ax>ssk=j`&7
zdxa9tmUjYWlv$-?yRZ7IjjX~<TydyZntCn*>_emRJ)N4IpmA@wxB3(=L|$E%@nuB(
zHy`(o#i{n^f)VY_M-h+oYso3B2ps%B!6`BW13?-IK;uipv)@xA`f8FXn_*dHnK(m!
zD(9RbKdUS{kOZJ#hvEp}dpo{F<}7cP)XnQ+069*+GZYRjATM-!-1=4|<OR0fiDP~%
z@0na_Qu{F+7}sZiN3ds0gG~FaWB%tNvcr`Tl{gRmG~uDvH`BUOG$ke8+Id@4j8vVj
zB<7*mfLkVvJ80^}*|yvUK8G#;=QlYyuQf>`r82?I+rsENLM#?jobao99dU<ZQKv$!
zW$6g02E5p`zS)PCene4EBhG--oog9{r{=OQU@eV|QT>=K8~G`T7oxbc<fz`vmkb1%
zzehhIp9ee=Neb3&GfJ7U%BqQqHm0qAtz_rRhu6*<Zuie0^WWYu8Qc)VFHZr)JE_aT
z{R1UzmdW1x0oWZ@qK7n#Y8WG(&w4G$W0xzc*O4>|2Y{O>BZghMiCeI4=YFbX=2Lsq
zEje$Ks&hKpGISh2C(@hcAC9s3Aq%KNzc5s&_M3f=u#Gg_asQ`Zc^jU?loKzB2o73E
z8_EDfcfN#iO@zlrN}2WIHH)lCvnSa)+D9k1a?qso$;t(9#*S#|+|k$I5h%2np+X!+
z6tW!t=sA@KvkqepxqDNwv!ng|%DODlfgo2*fp#ww9JbNjrCjYhD!(tQ5D_hdzlJK<
zg~brPjDw8ay&PR*9rtF#6oUPGa;<hDludi}=vk3jmnzT}0KV7o*Qol!drRNQF(06x
zue2=D0<g)HP5_M^jHJFdCy=JX487Eoo)?dhSMuOIng3=I5i*+_;Tl%6KyZA)kfMFS
zMz&^#lEL5<9utdukia_mD;xJ~+io@Aa@>bRMR;}F+(?dbyBZ|(EnrDrpnH0UX#=t#
z79Jy=l0?V!zBiei-VvZ6^~s)!Hvdtub{-@Zrt$tGz8Cr-n;T?o8$hL4SdWUZt5oCn
zO8|Gn6q|q`X1<vfOtXm&4--u79%V<rlrMsA5>klI>ur|gH!U*gMag=ZagG8!wykP#
z(E+&f$Z~|2f{_l{!wZH_iuv%CD%+6et04^)>8Fmcm|qytbEiQLuWg!2h>t@j%^AaQ
z`q+6GL=}}~<%|%rGr25wAE~*hFma9+JBr<VF4zwR%so-v8agqbOT{9ow@`9mMFp7E
z66CPY|C>t13B;NH;rPf*1Ql@da}!#)r|FWtSsT*A(+uvHR|cEezQ*f_I4#}nHlp^C
zNH6!Et@iv*((GJNyphHc7uhR|!IP#()+5cosx<^zw}uIzTHL4E!7wR1A~1}(2~fk7
zebjaF((G0d9Af5PB^v~X$t#&K8qB?3vU`1Qp^sG8HZ<wD+su}&{h3i`VUYWL+>3Nn
zye&q0N5955ilnTGD|)2Kq<>p5MQ-%qGk%erT=^5B;K2!yA?($eyGC;1N>EINe;+P=
zGGL>`nUjk*FrtP_Nx&iOI`Kls$SGXieluw$YETXhBlY`A7*HT@KCg|I%rXY3>l*{^
zuoDoy1HCOIE)~G)nYU%R@#ud?hZgcE?m&x5!bru29(ahUXfR<v)02>Du|A3*4MsGA
zKxXZ|#jaEEoTlTG={FXsoYQKAFS$t_RwEDvn2UN#h9VQ-Sz2Z6LszOen#3E8;p(ph
z#hbH!(!^&r#JVO7EQ!^TAGD&cNZ(XPIN;j00KLhxG3qR~WFwkKCo_)cvDP$F{NID@
zkJe~29n2aL-;Bytf2wheKs|3dUcWH#CyXV_ug?%{bHroEsQj<d2GV)y8JyRGbUr~X
zr!sA>1M)`Az{mS<uFb(T8^@N(DhQM^`r`3d{!F<2&Ev^evH!Z7pO^lFpG*sV#@`k1
zd>_O%@6Y~8=e6vA`%E9b|AlG(8T9`>3-tdR^UuNl{F97?gybW0a(9gqy|kWQ`WX-W
zhQ<;df6eL+MV}`|0(8bS)D7RBUx;_^2>-BNo-+S&nGwfnX2Qe8eJvs)Qlh~e-e-Du
zf4}~4eYl8EDe)m0bdO8-!Hn4s^_=OWfkt@wFyI*HoJ&1EC#-Fm>=;L~O`^6APFc|@
z5&K6E8lJ-d|F*phuLLZmq@|s%_SBG&kWhK7*p1r45#L}!)t`6=@L0fq4T2AA=oYaz
z)ZcP2yg9F#Sfts2(9^IHF#V2LENGHu)uyU>7dt>klK<J*SX4|RE=Tq0Ng+H+(%voQ
zW^YA-Eol?w(Z83i9+d*8ulzJgvPc8N2|XFaF-hx)#e(Z1p%yL0bj|cn6W<^3k0H;u
zo{?|W)ts4vPOo2HUb-(3v9PenL_I!cY!pjJD#Q{{kO;oe8k0)-pl|K&RCno?--O?#
z{Z>+yw*F9ivv+(J!QAy>OzEg2F)FJGKBH&mDkTqDLK|mlKNVV7KNSaqzW3FQsA{T7
zmMVRRL~{73*7=?zE#_wCr#~cW!Da~n%OG^FNh*@HnlsF>O|E%*wARxd>VmYC6C8L1
zQ&PaeoefJBKR@xC<0XbP?#$h>9LUSlefO9I-<`48oTp{?;;(oAOs@?qsHjAVZn!%9
zcSSiPVM-yn2f=&euSLNqmQ_8EoKQd;H`j;|@<Jhc@6K-{ebMJ~o>HAd$)R<>Soov#
ziDHK|M~O9CpHRNaru$ZWR!rt>PYDudz~daJk6^-y<v^!WD+$r%i%X>2a}q^>U*epb
zlro3=&m4*Wouic%6T5K-fQX2wt9(7<_31+08xEtk@uIu^cPPrhfyjh!xG}k`B)N=I
zdbZfvy&Y9I2~tVJ7k;>5uSbsl3a`WIbO@!mte;i;^=AFA8je1Po)J06`hPgK8b$X1
z)6PNbsh|`qZN}ajCjnj!ldPNIz?d2<q*Be7kqUTf=u3S!>ZXi$qPtS?&c4?<7`e`J
zH^{@=d?3;*pmo(9n>ZCCg8yoF82+D#t~3KDYloiszt>a|XX_*`#uqhTBhd65>>!m}
zWZ2XjmalEo`WpF%L15ikf{aA=bYDdJYb??Gg`=OF#y8ZoqEXTo9mJ=W`W8&w+459$
zWk?do4ubFy$HMw2wV`z?rz@tiqmd#J5fD&`h>#Kz5_;SmedF&_4Z1ZSALtVbNAn4{
zJTF|tW~;@;H<O`h{KIgiJy}j9=x$36w~{u6G}10Ri6LELBrFaH$mm99UU{@BU|S)g
z!<A=bu{s7a8sz-H;V*)Fv0d#;AE;<zE+op)xoK7tPcLqa(yIO4laCw!d&p*96-TAP
zb<kSYtKeeIeM`OsM}m|v*6P9A;`Xi+`149t<^>Vv0REb;E6`2b<u)UVpRUennNX#&
zsPE--4X0U7l~g8PRPGyX$Lj-4gVqg<UtgfK9dpTQg{YtBqo(?oaqe3Tca;a)5kwM&
zi0Ax;Vhu21`qv;`%zQYc68|_=?GFD^Jj3E7VU!&!xC<S{xC`z9C#~n2B?+V#WLP?D
zEnYF#ToROb$aGZl7a-&B);PFEy)<IQ^;*ufmm5Z`Ib4|1a|`R>4R7u^JTlIQT!u;p
z$IAn%My$n1XMv4#zZM5{vaqUdt|rbcYw5uR^Noeg*5=QBZ#w+)25^(D{wX2EmEmx0
zxGGZC`^~K_TC&SIJBOu4Al$vB`&<>le%#h1h%e)dI}a4y)ZSz$Etc5g;EQ1UFZ(j*
zp7Ty8nqm9D!AAR;cmQ{O^<gJ}tRdmvi8J9kjLn+|8$@wTKW^`FM)U-d1B}B86dhhG
zl%3)101}Kj)6^x1S%<YjiVudo>QU(WwRKNw4*qEmT#u0+17B87LT$vBf#@N-zLz7m
zN568yF1utM(OApXQoAE3)`W3LeT?nKWsDbNW;VScSJ9q2oZjf6>;`e|{~vR2*%jB)
zwT<o_2rj`jxH~j%9fG?CcPF?zB)CK4?h=A);|`5$aCdk2xA%VDbME^Y=MS9urADt_
zt46IFtESI+>HmBvEjJzM?7)ENmOJe0wa8|Zs@n@i!Dy`6s_v6ULQ~SBoa6>-AodoM
z7e$H+too2#5E<n#@*Jav;pI+RD!`q4Z-O}XTqCQe;$WU{ozz?MyvOtWK-*lxZ1W{?
z)!`ml6vVyL9_NELqxi6?fa#BrZM^=_?$DX>kZo>Jw7G&Uy5J!}p$IKN{JaTQhZ@P2
z<!hjD*h#$X^A#k|D1#XA5cIG3AdiTQbi6;)8#GOq9)Px9{-@pD#Wm!Ee<0j?RLv2Q
z?gI&yJ7!<%ae9a?*eQ-GUL#^(R&?uXmyX4IR!TGaWdX0+fEzi3Da9nz72Cxvik}rJ
zc0$K+A4V_iL(#_?kCW4nq@4mDS5fFM*mUEv;%eo0c(zHfkMvU>*m0$4Efw(;tULsY
zs%7KpN}}mG5r(AMDWrBlFSM~j6zV=tEh#VD=%{i{LF4(W_FDwjco%<gVjdkOj^hL-
zC<z1Bp4I+g^<L7j(rpYhp4;4);+jZ7$%pxqKt-NdG(IDQY%{&1>7El|vF-abF%`UL
zF9d?;2hJhmO)Am|2fg;-2*@QH_5G%7A{zCRHn-J^&kj1sMX`J<F8!kHhC=e_(K|l@
z56*_A(9)1EMX<8EM39k@)Xt@C^Rep%^4_+;IKAuN<$@S6vh~zUCmh79{RZxfHn2OG
z#uz2f7{anWjot&y*s7Z&uZ#+L;gl~GFO-f65{s!fnyZRmeMmo2s_>})A>ibBxF|wt
zKD3gOqc?7s2;`-Ou|h1RGa~OVwUR=P5HsBYc+|XIP%+^am6H|^2nLtX0%Lxj*&jJ6
zbEv3Ne#*)GQT=?<@gOYXA=huP5}9Cv(e)Gxo?wOzDyn-~kA{A57ik<LH+LY!A*S9P
zKq>DNA<Xftep-Nj3=&3VOq0VJ*5y)Mk3gtVjWc{^@1ls~hj>8GCmiCiP@Y$ev?5Pj
zWRu>@AaK&X5G?Hu(uB98HZLaTwzB4$kPIk0F(himXJ>$#jGd;;2QGk)1|_y(Ka^?@
zaa};1UizeYXs%e9jFkal3L~5jyI6rPjuaFS74#xA^0jaAvdPf{H)?c#JIo$C{)$sE
zjgA33)|cxslxE*5M@xM<KnfOU{5lqTD8j2Eej*U>3*V;)4AP36H=eZ<cz{^ss<B9T
z8543iyHcyyT~U)U2ksYrv7>rMi-;Mx{?Xd>N`dD2@?qLV40a`?3QX&h-A`H31``g#
z-HR3Y>YGEsUlF!@VFwkj<`b*BOdW~jC(O4ry5TI{9{boUvVR)nPqBgb-Fc*Y+trGH
z)!rnB3;<EgCX8bmKU19uJRsWDotqil`987n6N$fMk2rt2T)-_0VF`R>v0jN9GJP*W
zq_tGSqvTq_5|F5bRIZjd0+Rc$W2h8*A|X7R`@LtPN`yDG;-z&4UGLefJ`3;6vBu7~
za#CEiIlz7)AgjltcrI@r#*BhNe->5trs_$C1A-sVg1g2BjPB+;Yp^L<XB$($)P?^K
zo$?o9VLyZsI=XZF%&nlm?oKXR9yc82NS+N?Q1OcK5#gdQu=gLfH=`}2SmG(^sZcOM
zcLMa5j5MEb`V!P$SN>tc%>P8qwh97>n8sO=YBEtLZ&FyxZ-@HO@n$YpK^{hwl5ZML
zuO4rAxYx&v9@*+f3V)&qJ*N~Mjh@{eLg0EGv*{JYEd8{qzE9F!Z9Bf_65z_G$1JM)
zcSU@2Yf4Xwd4N<dm^(=WzGb``zjS?vfm5stVZ)Qgjv(4cWt%TJV#@gdtvK)YyUdQ^
ztD`mE%Y0loitqB%(jYr*1Vput^_edxu;mD&s+zNQZ3*3Z(4e?Eee$sb;@)a~9H~oA
z6|zO5VbP2-E2$)peb3J-<FXXgv_cAWOlEcGPZ?JXlEV&shK$vi@5qg&v*V6%6a3_&
zl)<v!S~$u}<@3g+QOF6TZe5K_On~!$p2ZjZMcQ&p8hqOtOJ1FeAc7`Y?ReyQL0-kr
z_({W!rGIp)j?I1CWz?Vs4$_um4R@>c=CA~Y4dgiqh}=byBM?HpPCgATyBK+Ey%fIB
zojM2T%CcG@)N%5*2w8rYalZTJJt@_*>1PNW1q;*jeEXfx5Z#B$2*X4y_|X{(x?#`)
zr^6~Vd2*hR&t+-nw9Sg)$I{5_aK*>zRzO(Ov2SSYNoZvA3(MH~6HPC!@#&jhD!`7+
zyh<|?CZ($9>DNc|sKZzSS@{k8Tu-!!oX-%ygc{9;TLd(l^cY8&5~Jp3$`6mW^k%-Z
z!?0x#h2DBA#+v0j;py*;FV<HbD1>h>&JP*OP2|sGm6oHf@(>fZSfoN6D7to`EJmS)
zR7a!8wmCXpsBG9Ys(K`;(edN;!npxl|4i0`IX6LBN=A=i67@Lzo+veH(0TT)Cbu2G
zxk6ej>Ru(npkbh_fwN8H3UZa2t*|({q5BF(Wh{)N^D)T@pdBS|A6F=NzS8yNg`nq=
zh?!-}vl!cvgw}A|0fV)E;%RK`y4w5|QSj5tx+ZUWR!Fp-5_JLK^e0T?_*smI=o6Ho
zn_QqV2C1B&$J$!gxCl=8|BcevL`fz+!%{PkW^^52lPcuRA0n?E)SeQk6!(Ilpkt9I
zxh`@5bir=S@&A#T@33%I*YDZMYfGxWxft$SE#&-prKPoI?Nc!j->`J^dpY<@L@pba
z9ek=uG}aqMFvITEfM|0rfdq5AHJMSp+60GOqS&1%z3jNDuTu2)%kqUVN_ss-v*Fz(
zwKHE)l?8$0OtL-G=sM=z5%8~|&A~S2>RU7x9%<|RoixB5v;L1oRdbWGa%oM=T6CVr
z6T&F~@p1>ktH3?vB9GE&<L0mMrx{Z<$BWfYl7v>2t_vfkwMRq_q)3b%-^AN_&r~jF
zeu>Iul=;8r*4lnu+333JhbBeRnA}B4Ynr+tfGM0mCP-!benhiQF@ffOr3#N=?z>g>
zvdN;a$Zk$({Dr2--q#WMTr+Npx;K^@_9pAuQA$|HcFYh%#ALDQ%<k^OBgf+osgslU
zmVqYJ^sMb_a{JSmE0RWhgeN7F&xQkANmO5ki<AoDX~c{Tj1Db3P^*}zA<@;n<+OLA
zj57{h1E-=}9qm^%c)0EQR`G~h1uovv@8u?LZj|nC<N%_scnLMS=5Xw?xBvh^EB+&N
z&}7o8?ZTDCo!K|f-Ul&>x@x#De$;y`eF|}<Q_L3h+_?AUxK>Kv75yT@lR#Ra@#|}z
z(o0P~3Sscq%VuL+>(C<*P6d54O6ENkywz=K_O8VyWx8_0bj?GbQ$?icJjMN<|2%8K
zbZ#m2TF=k)B-E$xUmv@Aa`Yb+_)DM_X7z|m*I(HM398btI6S_WBkUf``q0p(OV@RX
zh1i^2Y>*Vi%vWEyQ&<pkhkPG&1&VLZ*iLBBc<?GoHQ&LU5C(puU+C~oAY{L-=8unj
zf1;5fc<OS~hSfPczp88{mNf@u-(<91z5*7wjz3g3{6xxUf&yn|dqnCTL3IRh-+2Fe
zskSxYqONFLy@j{aWh(WUwqR@5$uwCz`dq3Ho19exOU3LO#nx%erY<dwTj=1(&1RTl
zMx$KNGG{-W5i~Ag1&R$R%+M8fP2l$Rc{#8XR#qsvOkB*gr<~gR=I1k%rtXQP&Oe08
zwwwBGkrr)KKS%^12$mL`NpO{6kof~3xRDJp=Mi?w(thP99dckd+Ema~_g6Em5i@B)
z9+*?WJ|+q{K`RFB_<!zXz{nS*6Ed8PQc5L`G!Q%P5CN#g$&@Q{u5O)YTYAU5E`2hv
z{gwA@+LXOx4Q!9;<Q9^P4}{sTTKPH`&=7-g66+s}EKKoNN+kSN^PvYxZ;w^6Eb*m7
zhs+%^vGcPy0jJ9Cy~ZOtaMdD?l5n3LTjciLYCY2blz6!{pSYOkq4Auo6M<mOe)HxM
zHC+nR_;xScuz>}aXu>f6$*`;+wfBClm(NcL2sg;|NN(N)892~ckpu1He~B}|xpp?=
zeG1ty_-##b`->w!tjYAZI&Nu$I|TBEW>T(%Z4)5*HGo$jp5E!?1p)21i5&%UPMDPO
zviO_E5nXh{PN6)1^Q!TLahj?O;neEH+6=C&y!1F)p>&zujOjDsMp`_>_m~~>v}EBR
zSPcMc<#X|zqZgcu(S=P67c{oDBhBO4082T+_BG=6Y}%X=L%6085ABqQvtqNOuQ)M6
zpqnAd+`@BP?XSgq*9NCDu2iDR&BFSlW1j+4ZV~bwU}n*u3%E6Mt*32Y_BMn-2^H@8
z{AgOr<C#CTZ{~LxCusnP>OeE?8F^>IlxYk<ByPH6e#ts(Xir<F&MqNgezaZ7G231H
zg4dHcHj!|Ziyl7`7_00-6RrK8!|j9q=pbN!5uU6Xn@0WWKxOvWva8cDp6MWy=kvv0
zO<i|KMv3sYZc7W#er#w%=IBOmQ-U&PD^;^+um}4xS@MFud^gXncHXj{f5^Q`Oj(#_
z!XDsf-#IYBY(K+YCa|91Si<WEh|yM_<q?o=7P$YiGE2p!`&7!TTtu0_#^kiT#m0k0
zG`Y%w*R)(ib;b8}OJJ|hVlE!buzxcHYzZ_hAHIy^FU#jk`6C0q8wrFm0v}IhxahBW
z4?Sf5uZb`}hkxq6JKVrUKgu)gET0<Fav4FY5eN-UJbyfi$rAtWe<{+(xXIjERu5Oh
z+jT5q3$*0n88tvGajuCBh%3NP90jb;e`!jCPc!?Q7e^7W{7pR3b^!2tLM<=?SScI&
z#Ja{u1^2vdd?FH<3e?XIc_t#MKTyYFnodZF>OH=c3)9$Wr8m;-@Rx<v@#2R3YWmy-
zKi+Usc@y_mFGBgQe_BM=8(9}TVHMw5*VmiJz)^QS7=7P6zlv$_s9ZJn_gP=-MfUs}
zw7xNLZ^xD<Wmy^>yrnYKopNM!buQ*aZZ6dp3jRcDH!`%+z8-C1DI3<k>%q`+C+N@1
z+LP<Kc(TSwLqG8Oyf_wNYmX2i@?y_;tD8NCL<N-iHP-^hx-RL#mnqOZGA2yPr?PLV
zjM-bv+7kAsqFm^fFFWDm7Xw=~ioW$9LB6#438~dz%D0|1a~Q}eSMb5rE)413sSlq?
z{y;XNXS6n0_wl0k&U4!xb3p1;x39%A!u|mjLy1RH<ekzFgRjRuAoMW}A$L8zbE0cB
zWR7FYorrVNoADDmqjNxA1U*X(ZPyNx-y0aD-mg+5wAPJgdY<+B5Yuic-FbyOzGq7S
z8+#wa#tBiflj@0QpDrehhP**MGfn);m;zC;%uMS=!)QMwRuw~aW_DpY^?Gyc*XwCu
z6zc}Qi!AK$>cbjJ-~Alf3@SbL9<1?xy0l&QU+9GS%}EL3$Iee#@;K?3Y1mTjoB<YB
z><!f$Q6@KjPe0)-9Fe3YuiYAH55BW(y4jI8i-e@YQ>h5j>`mYpo@_+AgWkUQmx<Jg
zf%1rNnq1z!>=1#0!Oee*fMw_hS#v46W7bpQF&DX6WBNl46)k#<ova9x^{$2aSch{#
zCuy8;Tb@_S%vLQVm9Kt#QKp<}+Z|S>E6|Qgc)#u)yDkQ+9;!M8B`v35N0_rS(Z-9F
ztV{DP@_r!eAMUsf#eeU4w#CCdzwz(;tKEc(^o~}*|BJP+%JCgP4bSKBVI~TL%+O&?
z=MHO3$;-gjLelntXkOYOccdm&rLUFq^lSI@g;o3k_r&o-$HEt~JuZajXYP)_`)|J~
zI*mw>fE~2jdg%+4YL{L24U21HYEOuf7>sKk@?f;M&<&|cVIWL|-Z^i<#$R_H3GZmv
zH{e5i=-Z#wp7Y&!{7zNnZeL@y#*v^RSu%>l5*w)>F9h!zrvw5g-;5h~#<8v?zW_h?
zpzbyqZxtxofS{NRPj~B=bKd5bsY*(`y>MAT4D`cbJQtLh!?R?L+%G@1h4TVjGyz5}
zy@g2{wOqLRjW9ekmS;p7)k!Bo=h3~p_k2Dlbm#4UVXFHtoT?IpoRwA0R_4($k~bPV
zTfY2(o*4M9MM1`IeoNbq@@_O%bdkLaouWIcZ9zb@N#dl{ti9zXER$&0S=DaH91_-N
zPY*uby~)i2V()t%Vqx##4Y!&TFg_<1<L8y|_HezipSi}~QNsdTyMj`J{K-pU=rud0
zd-@J-a*FEQ-K2idLMpxvx&1({mXf)gxR+qv7|$EW`A4bZV=;&0AfrCX9p}pMus*Vi
zH(~Rbr&P7C6^yAlRbD;0^ituyz~6eLbiM68D3~w#&1D3f-5$D8#iBY*QmVgFJFu@k
z_^G5ak{cWvs8h+R82g55zEKGT?$8ckVNxnK@$SWZ2&nAr$&;lKOS!wSv=8+sV>Lk`
zoR1)QTQAnjlp(cHc*h}rU($NBf7Tz5yft;FdjxYj%3YKCL0JLWGEA?#|Dbg!aO0x&
z+>q2i!$@y>^c(NSp|$MX54-e5h84T)eSuEC(L<~)eFwRN10&*XBz%nBTQ;7kgFapD
z3{{87STZ&5g!F<xbEu>ciehsj2e1Id-N4t$yCewnbm`y%X+vEXDV!eXPonEgHi4{&
zGNH8cP$8|1^Nv<Fo8_KNO#?sV-oTr~HziT#Y(gl%m4Xnt06;A4m03{bmm|szQX3S@
z;kM+~Mz{~(pIfWXrJT-r_@gpL$HMK@HBqLyE(6bRV%y|*pwZ_20!te9yj@cu$!muz
z5$;E}(yIJ-YR9X|cv^_cTtm5Q*&|h(RG<U}B;hfJ(<*yr)oMLc`t$sN!1ID2L;p^#
zz?4~FY&2>#A4hCxyoN(gFt`1v3DPeTphHcCy76|Vlt_k8<EtN>e8RffIH_mWeXM^j
z5MA=Ii$85#vVDc$H*KcVFQb4q)>&83U6|J^sz4-3j#I*6@SZyu244FGRs5=Q{S+n;
zwiTr87V9hPSAn7mQTzQ&%C>AEx{_p_>1~jCt!jU{T}2r8hmEopccd(PF;NJhK0$S8
z{BG}ipP}n8p6~qK<b921u`NTwyf^n~sZfay`-9me9d-mO3M<s@ShsihJ92As2+-tB
zuuaqYT#h=G`aRZm^p{;0?Sg53N5BTD0d*czX1P|XeJRb+?1&g{2*%y0MkSb_Otxn`
z@P26O>G_0hN>^r(3-6MUNnej~oBh3%e9DW~#JwXWej!6satJ|rhj})EvC3Pi%71&E
zu#|FYHA=P?aq=q!pqCjl+{ptshz8iv+ZTMTnzt@LXS%K~i`T3I_-N(=wB63;RX%->
zDtXy@k^nY4j<+3CXUs_5z>S4!$+7pH8j7N|?$+I-wF{_As-)uZ6e4oY%dKF+MI)fp
z)gnA)LaY8z($W1P_?)f<r0wJ9#DO8={FonVg!ZJmH-4UT*^hIyvh|;|F?D8SHYixQ
zuyUkTkOPKMJ8dvr6q1hN5tF-5sfubq4<3of<EwX~-zkM09HI)&69_q%VRoqdFtKMU
z?XwC@ek<+tzI`ao8P)NmhZ|chb!9OX7FP7Gm#@6E*AIN5GEG%>w2$*SVNp;-#q^1@
zKuJ$Be+l?-G5!{&QCLHqud3ou!%0g?8NhN%m@`Yji54uVdDsJF`|G{UB3fstfS(pK
zf5M5rJe<(+e8K9Tf_#%OMNgK#%ImG>gov|NO8wa38kMZ6S`vKm7t!pv?hOLfRb}P0
z?cC!g5rOPa8wSpd(4XzV4sq}MCcCW@QK`{`KOc89dQDgA`vAq6p%d(uAu8h9?CuYG
zq}&WV*!ODpE?(I#On&zIP<@2Ya$4|D24@z$&iIS)Ueo{~b0fEAhJ-S=-vwY%wUFeF
zmhqg#+C(~&yP78dyT^L{Qn}NnizRN+(pW9pJ<p2N7?Fofj9|A(poDruhl97^^wFVz
zaoRLRu!b$-u$BKENt@be1E4r4<^D7l3MJ+mn4{IFQtWDE-L-u?;!)(rQP63?Y`);o
z*O?kqgcjg$ET?M({)H1S+_rW_Q6QsRcU+{)XZ7{VRPI}IUH45QQ?D}SS|b&8XDYrZ
zAc}a}DqYLh2Yo3$ufRX*aChJRNaddsfHj<}OowfNub(IaSk;q{0^t<Fx4JOhDs5em
zzC6$S2YV-E)(iwbxn!al^s{i~2rQ<V;v}n<kp_8q7N$))pF0gQ=;G~+-GMCJgWOpj
z!r1n$xYMjyX?9?cGwoNQb+1_n6B+o#ZnN5Bg1=(6hItIO)m+H?AGO3n`HhT?6guwI
zg+^9g;A8yX5yruc^rMQn%jrh0Ye{I2ECQ=vRpS0WFH{KUIdHoKlb=(K<k|&Z9yw$x
z5D&2AhrLAMPjl1`+Mg9Nolwo$rBRRu7lyVNnYeslJxwK5@?K6c(fCYf`Q5_YHe}Bd
z7=>OGabcVi9`T77C^$S8_7&+0ARXgEF4z}~rWJ#J6o$mMdGNO1k#f+I6mt%O_RRC)
zfLec)P#$42G*}ab#!$R_`M@FSOhnqOu=*O9wEJkI_$}VtIdR5fHH@W2wDRS<f;kGk
zSy4Sx<o2&{$ae4bf`>&|ZD((VrNvhhm|y9*MC+`5tB_=C&sygdwENnv3tp=zZwY9R
zXAE9_{$8sB4>&QYdEBko>qCd7hAyk0A!O{nG{*id!qC1_bs#B4^M)x>AoyDBRA?3a
zJQNe&18j+wj1943k=b`s5Jtp^@sRkadX1<!7YPlfI+0kyG!L^xPiKNEQV9ptxm*>i
ztgm+-05E_I-NDSA?{_c~Vq`)cP5rHi_stY%7@b+4TQEh#kmU28heEIj>&&>DJhUCk
z6oH~ai@ihRP5K;t0{Sb+P8@@Dze_CM_ut^L`*|I9<gtt+pKe9&QN(c-nsip@;Lu6s
zUAlH_*@d5%c_z!=`LPqk#SDOb%Ez3)cPFU@+?&n3GkeY16a9inFE3*L&U5Ve^IbH{
zhW(RC<jgm~3#QBAI>UEU2mO^2uO0-~x-Jda_eb$vszv`Uvy#6e3PtMHVmeDG2Ne9&
z?qVXp_(rlAxSybAA`UYYa?t*;KKJ?IX!vnv%ZsJydti#r=C-35iTdWLO-QiDCoOlU
zp<$_#r^=J@`d&3jp(28`os}V~o^AfkMYAV%={E=c5E05nfYs;~sfu9JXjQ(%!^ZvL
z+zqE{|3f;Vp${Oja8%dH*=djwq5s;6stEPUI46JQmUDonGN@#Q9B3ejo>>*AIoDIK
z?kOSFY8R4Fhu*x3#Uu;}oA=#XzoP+wH7t^2@eFOPqEsCU=X|*tDWh9{hNfTEP8|+^
zBmxLhsx~EfXN>9;xkL@wciT>Gy8UepV5LyKYEo7Eaup1Ij2%(-3M|IB*D%<v_x!7d
zPaGRJ*ywf*UTo*4y3sWjMHEjErVl`Uj@I9Q*7nG(YRn+fpHwT|dXI|25@sQ)+qh7I
z{?p2L)GiwH{fO%W;JN?qbnDF}LUqm$J6z`X=QRg}b>ObJ*Z$fs!GE;WU8oI%6ugBT
z_>!dSS3zHWmH@4A-}Y4-D9L^INXXXPdp?%taHVoqdQaFq6MSvxCiXk`RUj4^1(hW?
zsU6?93rbjv@S+ijwj5Rvw8*MdyOmD8|9-%3b-q#i==6}~&PVe>$mAV6qCfIE7s32Y
z!*t^s`7$8mGedIc7`rH~kM=zUgr0vopY1i8hu+=B^ZeAk+4NMrTR*ebBX%jDx9zxJ
zUqiB#J_6F}R^_AKyq+8~=52rdwu!9Syl-t{!{m~<{r<Mx=Dx#WUi?;=7?ErD<zDA}
z*phN+&)#8ZE~WU9d4K^~>ZVNmp7Ifia%>BK-8)4zbPcjF8=Ks|VdVECqDSll;hmp?
zfk}DZPoH;f;i1KNs8eB2)kN!0g{JD7_c<FBng;T`*CFP5_N`uTfYEOI@~ySa|3I&@
zMNGNIouq_cj4eY!E~Dd4@TiD)AnJb2E7CgK$P}A%Qd^B?d>xIF`lD%Z^7mEi9X=B5
z?%7i%jK8dB7*TK|4y!rF@R#u!a>)b&oL+gWYrS=4#Xt6Q-Fr?ZM6XAK`KTsJ<avi)
zpS<1?Juu+pU9JOgsSHN^RwASue}g1OyOZTrIDXBwa1FWkJynTCe}@rzcXMktP?htP
z{=5zEb#i+7OCWl=nVwT{^Llh9@ho!l`P}j3;JM9xHL~7(wW}-sa7lBer(lR=4f%+4
zDlJo5;d=tNX5Gowbm~@g_w)HN_@1V~^?XNB1t;x`msh0U$#2xN0r)t~1jr<yyE&%+
z&O_$+6?%PoY7t9!AkkKfpxcemTKgvC6ix5@t90H1u~&vWdfMjhuA-VJa+Yd~vk>Lg
zsngrHa+8Q=+Ok6*=9=tz&-V%*_VDpMGRmBR0T$3R*OJNf;K<o0_d>|Y%>bsUYgn&j
zjPp)A*g>uwTe41Cqn@^StHV=j#apg`;lTGy{_=j?jDR!#Di6nx&@UF~el*iE`r5rW
zDvX8wwCwaaX%yq{pt~}^-d)o4(YFSfM2RWcfX^rFzF%m)wK_Ny{%GrIl`ONW^QXvz
zs)6HlYSGd$ntTP;GfcHT_<8d?RkpHZzo*B&yr9#P=daFFxjk<a=R-Ehe!$73z!smX
zPyox2^i_L#lZ%*NKl6{L78~6WfrIpTf<wxYiqzkk2sSn>4hI$Bnz5FVx26vCD+h2}
z*OdGEu7emI2F>BhY1Z7nMWnf+H%bi2o^Q=cXQ6>Es;pXTzmgiT*jrd(Z_~yDCAQ7Z
zeCN!Z!6BL@-}5ES{L4QFxJdMW4sh?zG%k;9v6Rib-l}|uR5^!ka>R&r<q}?2wpm0>
z;-}FyMck?x0|oQq5`5wX`|;cdVgNa6ItXHt`a;fRf1<?K_SI%YFx(cIRLAKRsU~Yh
z{}KY3Gz8AD4&{PY4!wgkZcj)jE2Q(FDs}{3=>HhEaF2*~d>#cS;}?)#2GM@$h4<0F
zPmk9oF5()4{z6#`d+*Z=?)Wu2F~;$P80gnu()*_uUQWShS~(Ou!UDuxw`ZPn?<*J#
zbzsrGc_{tk!BX-mwqcw7CR;3v+dlES=??-eecfue7IxHt_Wva!Ixa8&HR0`pp{b)|
z;(CjP#+|Pu2=9p=cmLskCQ1F*4F+8zbZ`DyDN?`1zjpZl{q^r4Y?3Ha@L#t;cafmr
zA2<5H5B$#%F@bM3`JY+-x#%-M7bx*xw?Nq@K;oax|L^B=*bP1enx~9CvWJi`9hczz
zuYZLN+H?cWtrF*k1vzGBq!cHL>zi}Zm|trZBeR$XYNH-E%;_Vaw4f8$nRt6=G&l3@
z?e8Zg{ukYNS;37B1WI6Lj$f{MS6$y7S6%NN+h4717NmYm;b_Y@IGi!G$Qa^Kw0ZfR
zHZ=j&19LtT5fP!FqdD7K26+cU(Z&8lDo_(?F)OcU3-YoJMI}g@9bV{zA&I(I!te<<
zct7rRV!0$a9-T_a5nsI6u9R$LEKoDUnG~p!ui?;@b@Sq&Cush2UIA|H9bH{E<+<fp
z(UsDcp%zUL!d_w7UDH=-ZDop8i~lw`5+G$^R2}vEjK1-9q>;o;DLqY0=E&CeEhe?S
zZc;H^O4NenG~)1Y_AJr&06Q=5#*CFwwBnsYs6VrJ5$D~$tFdYBzcwK;(Zvf9Zj7ZB
zeTMI8_I*pDa<5*{+&xPjoOA6CbSg0M4SE2-#rw1W7TXbJS~e;jPkw(nGMYZ?E%-^i
zVxPIOa0tj0@=gWJ3(>W(=C@=qADzAh0pAZj+XQW!z1V;J9@kuZE2}b5Zzx_KyQARZ
zUf&>%T`~SzZea0T^3os9SvX(IwI&zz_;K9FBfhRg!Qn2Qz9#G1CYHu|$Nmj<A2+QB
z*O_|$vE=;{*sNU3Qp}S!*4k(AmV&<OR0DmhK#UZAB3Xg2%Qk{4|4s2;Q0q#jhTY(i
z7VCEr*fDNZ54sl*B~{rp&PXJCS-TnQ^~EBU;JU9_z3vaJ+uw21iY~7FFHVUbr6Mid
zpP?z;?*XKqt7Zwz>AG(}t9*|!OB1wzpV-7YKacuf81N7+e41I7o#pj?2eSY6qr$bD
z-njbK;djZ6Tt5Bzg2DgY4FRThar6!;$?bhiLt&qzRY2lus_H`hC3RtwFghE!qha6C
z?cS~})~I21@hA+u`gRxf^-_9qb@AI?RQ!KvTGi_kZtRQ&8C-RRZctYsolXW1f|IXf
ze7~8EG#!f=YR0tlx%O`2tmu}ZQ~*BEn9q(>s|77;y#EB-Zc8glQ_<5C+$Z=C8Tfic
zYBgFpy)wM}aOk{LSh#1D=3Dz*OS06LpV#W{cg1#?$wb?v*R|&XELqIh!83{ntZ&Kw
z?ZjWyzjH{3hX)b8Ms&V<Yb=Si=ye0P&L?)+IstN90-@m(XxpLoG!FI_VSV7vaFg~q
zX&LA#{{UqUh5w<Oa(x-(^sH<pzo%J)jX9>}I$}fjNbf1g!!Y{l;R5!Iz)T{cU&6U}
z<HfJBEK)y6Cja7r*&cVw+a2k{(B_D4s}D#PkJV{x0d6_SJlXvgTH;p@V_>#q=KVY9
zc>RS$7+U%7;gfT&HCM-wA_(ngy7e~JxvgWLz4?Tr*P>yUYGR=?$Sc64(RvkFwW!3N
zIUc^=$I+-8yvoB84^WGmny*qW?)X!o<YWB*S$Tj6<%jC%Rw|NrnsweoQL}q0<Vaa2
zW?{oz!NfA)GhC>Ncl}S#T|?|^Gl>^yWGd|X2?yw6CE^$C?e3kLYVZa)|9GEA^i6`J
zx4^Y|C>ffAlv)%`Uk5q6V=9tZ-_Rgo_vpA1)m?U}&?6z@1gBYmoHE|`I>)ZkW|C#p
zwc-?F2B+q1*yq+?2+%4+UMQUYYNQ=%ejwFtXxu9)ajrj8hcdf_JQPCe|4@;|tqKYu
zMnH`Z4@s|R=T?O?oTipGw2^5~gS-Ej@-~&%9i({C%%T#zx5_`k{`KDd;%H@dV$HmK
zGQ@pNFb3q!hCz-I1lJlrOPM^xZbtkT(8-tdR%k@gn8w^Z4)ov7@HvNHTbXsQiieZW
zdNsHJm)KhwxM<rUZSNf0J9JOQhE1|jQ22yZ>QB$DE@o2QudH81zx$yZXkiKv-AKNM
zbv`UtT}b?X@=N%7NdXmG|M~9Yr|Z0=;i6+!!zEN;D%e~6qK}KYAE@Toi|!5Y7FP8N
z>HF{jbuM0J*91bXt=2cY4<@!Q;fxw~hNn65RVT*vtz!<^eCm$OEmgo%%CT&?ukvy=
zgC|(3Pt5{4Pq#V^EQ+<W<1V(um3t}TEgEd@(Is};;6`2d{GQK%Yq6HXaH_f0gR$<F
zo``s5TO6opLxf7i|GmD_f90%TG>7GXGu7-Qj(_~sB@zF>xja0=VaW{*f-hnp+DB%c
z9Mrdd)H$whZo6Kw{qKbfv#R_X`cm_pf*ac#M$@rw9gSrIXmX3_43kAq32{Ph9eKQi
z!W*^J_rVKm8_mm%^#37WlEQx@=%rT_sOc56pXX8<55_-}A4_m`1IPLf8QB+Jq<MMX
zEvWR@rD)zP$-lj2$=$Mq`4+Tj{AUt+Ul!;$n?5uoO-)@iAvH5I^Tc?0Jrv1dS;$w%
z50(}+MfY2mpO+&D?Ti_?WMt=k^)06f?Tqfeo1koZ#8WQJVl-*9RX_f4+jjH6UQM<g
zJJ8(HQc7C-5HPv1L1toN@;@`PS(<{28=B>{x1Jqe_hC=oIliwaE+%k(Cw}K9obXqq
zc(6$G@RyxWH!t=NKXnC#?iaSwrgac^n%gsF_}ZS<zGmJ6y-%wf7>3nJ=J%U}C$D1W
zW^FnJ!Tmt%oY2dkVviM(SIaAA*W!seZ@lhve%?aQ#xlgqOBOyhvJ~iBJ~cHXbJxl5
zB=M`1yEQ&){7Vb!-uEAr4Zs@WzDdt1`|huo>o#HhH<_mmoMKO{UzbNF4BkBBS*o^D
zvlHgm8&9^S6N`B5wF!jXA1%sp9DTNQ?ZThmol`nZZ6jMkh<Q%0wT1uHRdOQqBmPy`
zNc)kkpd2k|^Edp1p8(Etr&kQ$wL3enKUeZEuv018K`z)Zu`r>Z_eGv_QDRn`FoP7s
z)TXj)dVv?`vg6@76a$x7TuzGa?+y@EAtzfc-G?Ye>d7U5UiN!!2Yo>JXN+7s*2vrB
z<kW-H;zsjKE(|eSVT;!Z-H~cOA#wLZ=784#ge&Ae;2!r!_x=x{{e3%1s<GNESI2VJ
ziqWD&?g=GVN;B|t>N@t{)6VnHshFX4LR>Pku3X|{*Gqg}XI=(k%#pR)=|!Cl8I6tf
zbHIca8dMNY$na6=(7E{)h}XbhY4y|m*b*+fK+C~*f{o2-)kCImFEI1bi6&*y(A$G2
z{07mtFTUWWzfYhlzGF(|5~8}>JU-L!qT*jEp%X(R#Z4i2&)*L%t<7Ba!0Q4o=2MbH
zLaaI*RmiJJ^<a0X+h(WcAo-i1`=X@G%076ffiYJ4PgYhxeEqE3%sg=7>1hABCGP%p
zEKh=Cc=?b}&tzYf+p1Cg5zPf1l#(>jdr9xOuE8wyk6PMM{(n#2V<B8L%0dc_I(^&X
zFIQ`?Y(C2OXn{mUc_}>CJohvL-N{kH)_08X_4{f3->ENy>YN;((ntx(Ru3uWSu=MJ
zmVw(j{?2eS$GE(ndsCF#b+K5PKA1yaJp5udTWxn5nY&awf7w;q)Uk2MSa>Fw<Ja&?
zoK~>ORmg~U(S3-9Irh`18gX^bO%_{re|T%v5ckyI9Ul8)eAIvG`v;0;JahFb>_rrL
z=z9?##ZJI0oSuK}CR|D`FBh5nk^noXLqrj0OV|C{)0%l1YoP}F#@gQDqpgkWYTFT+
z_~TPsV7k`&BhyhjuYr!NOYyFgKua=6(%-Uu!N}b^VejIvuRfTT8F=@_uP$y2YfHxY
zjUg!R$R|uJj@!eomFWVX{7OQbE40q=KVq3{3~(O1(3mG=O%5J7Us1SqYZjCLO+KC&
z6?UcL>(s2kUuRj{kTpI>UYyMxDNJo^-)(v1>C^jK+VXCyzgr7Rta}iHRbfsE_nz#w
z%}F{-9U#&<IKelQn9FL`ZnOC+-Lg8-LYFcz<15n&Tpfe3wr4K+Ic`5D>eQT6invRX
zLSlV>lob%wB{-jic~0nPK(o-L4`X%ybrt6@<owA6b#ed?(rI^6zzw+U>Gao0_$O}^
zm>EFidF?+`#EhopW)V{%@P!5}C8O<T>urwj^I{QM=?yH%6S4*}>0b!T3e?sS_o5%*
zTMqTeD+B`Lbj95w`6eqYWx18tlbJcPWmMffL90|dcgC%+wtaqu%2Y7DuFctgUXrlL
zqbN#oo4r*gG<`u*Zou}>r_Nhgs5oL7YlSL(nC0@*4gzpG5Qa4B&+x4#LoT~-)D->`
zZ~RPw^dR)bU{TnQgvQU1fdJjg9M%|-W2C|y+E&5xND~mVmm81Ea`}ka7CxGrLHys7
zUItvA>~;@a!V0p-43t-tt-?|T5~7JyF$i&ueU2>kRPkrtsn`T75rRX>sI>y|1N!<m
zW~D{sjZ-nonaHP_rjHTZ@h4S`6QQ~^^El5-xSny(@rU-|yNaY`oHq3)@%wrd*R<En
zGt;Cw3dVsAe1umF2wdEK0^PXhUhMW&j8WyRTY{FW&Q!Hg;<>GFI>}at!!N@x(swP3
zf;9#;FMOUe+N6iEdd1+1Q&|ng`(abo_CU`CoagBnonl7^J*`k&uR(-J8n)kh8Ht0}
zZ{?-b(^$JrlvmWpWg$|kbJAMLPHBy#pu6#q4xhUi5wceFp^5F0Q&Q3@VR_}0de>d{
z)1v!7jY}<C9xjmLR{OygGSo!Z#qTl#5S{w|APj;`35ZCbguZH>Z6P0l(f1tD{c>H6
zYT@CFNmwl88EhR%jBS<fLMin!NgZQ<ZGEvN`0*q`(rv!vAW1J(c7|ect)cGWhVA7l
zpm9hpGgI8JFu5nw&vEm!-Sx1wT&ve(y|nW)uI-rn3dD78tbB1fw#u}3!=ihlqM1^Q
z6_Uk{z-_p0_DxQO!<570(8iNFt^kwXQX(u*4A;YO&g`=->hY4oDM;Y2zONx>B)CL~
zE)g_B{+f)0;ey3N1$*HwG{@_2ulqIicIsEcts0Lvkb3vF>4Qnk`9?fX{!~dVKMI4|
zktM9>+37@AsTanCx%HXsMfLRNC;o;`pmK?+@b2xkK&ySYt*P~wQy)Rafb`$mYyS6a
z;WhLWWAdQvCMdRC@;{o@G-<`Z4h7+F!lfdVs8P?Tsx8SJ22-f8Cs(nKR5>hpgEiqC
zvAAbELVxZW8k<CHE%E*aHU+;L9FGy#=v@tA+CE-Sucy59yMGV6Lb2D6#h=rE(x8Df
zYotiX%VRC(Z5Af-#B05NL52mZ^P~~s=d#y?<bAAZ5pJ6FOUoiE5rE*4PW<&E8b4H-
zgYl7kIs-qilO?oLT5qycetv%n&^RDw#-uS$x(Qz*G&E?r)zM*{G#6l5o?-(o%k<jz
zjp}itw>vH=AR`c1)@>1cYg?t18aXo6hE3=Aw3<qi$2Eg&kM2)_b#3_>57PL4+=L*g
zKJT$0^i{(gd9~uvqxmsDRew|nqy9{4+srkoGzJNCrTy|&VZ&{WPKOBj#<dZ&{3rz|
z#|>$<VjU^bASN7<jY376THvlCp!VJ+Lrq`7*LWc`Jw$F4U!w4jm3StwVa+YwWofp{
zei+zQ7G|O-DD_VKn6>vZmE+V+neml?E2775Qd^>JFfvwyqWL3bx<RAh5=6;_JBb>{
zH0(5^WuR$&`KzrnJWfrvhbN75$w7y?p{-mD`yW+VEi1mX%{1)QEYsT7(19muZg;oT
zLmL{1Y%!^{wwnM}EsJ1!5tu_Zv4Y2MQ!8<h29M&`QWdKTM|F-R6_7T(Z>tr%uixZs
zt+-!bz`87|0c9#<{j01Vw|?bXpQ+j;C5(|WugRF`O}N=ugZBu-VbX}$qs>IjjCNvB
z71R5IK;r$d!Ncv(jM3#S6g`~92hXrwqcm)=Tn%%Cy>DB>5w<<Z!T_X?(|%R^>F14{
zJB%kt_`&mOGezy|YIW44M)Nwan70CTa5F*So(nrO(%qDyz(-}_{IiF+#F?(0K=Rsx
z1VqHaf=1rIS?@KkhC@>E_T7PBQhuIHqxhZ%y8NkE$-t|cExpO7p%HU6vPyr8F(QnJ
zY)bf~Xm=PCR-%Dl*(Msr3uiy!!qCT6%MOq-v&G^P-6{{iaVHs@TK*%dF^|ye+U}wr
zL&4(cm>Y?rzJpO=>n&>|Fm_ge_+6)^^m7~@nVh>?q?5g=i$eLkWr!UV4e#|M|8_3|
zx?Iug4-v|-F!)EKATb(ciqIQve;?gi#t2QBjv`LW->JCav5D?e-vo+BMhc{lkf-aN
zcd<Z{y&K$Ek8@D=qD)`uEMZL-rjTFl6(G4)?IN+yGNV@nYaldyh|X$6eMW9uuoY6r
zFKz3`(2?Eo;6<gh;E*G3_2DF`E}1s1)6*-$4r`Y_W}Py!MIFTG=&yB9nQu`YJP^R4
zveI@jX0veyh0!tIG<8M<_xN1mSv{{}UPJnPlr7HIImnLGKY=-ZOW$M9%iHjM?yWT@
zg(~C7gxxOQ1O#~<+ONaE4~@Qeegtts+|n@T>(?JeGliW|GybTbp{ir;B}tfHeMYLy
z7hjdm&-aX{2DNd@t3S*3zlyBTuKG&R9nH0<NK;y#Ywik}cGM-FZ7L8tBS~L<dW<Z~
z_jdUPz}*)oxO16P$xM{-a)W|mjyK|hXs!+@uToWkeLVvVLSS({OMD9vrWA=QV?|+R
zcX)#H!%z3+<PxL@y7{5<9}7bs4jXNWjU4?V_Kxh}LUFn3+)5d9zAHlpcA8!?Ms8+N
z9Q+-Aa#`Vj7L@cF!e!Spe!bd~VUR7$Q5KiR`8=lA#M^Y0p`lOBM;=|Yh%@%fN8jsT
zJ>5U^|1rcc;KroJM9bf)bOAamZ`3~nGEkW&26Gfh>zZ4{b&me(Scl>!{}c&2eP>8d
zy}xR3%}#miFx_yT%$@p>?X)G|F>Vwo)k9qFh=8~q;7EMW6>6Biw~Ub~NYeXbLA{X*
z<NTytQGPmZvn!g2)X>y$G}>BX#UY&HI9t;V{DZT^;L{v+Bc8~n?(^qqU48Nv+YFF^
ze%tFF>thuU$^{Z#zQKBf3>q09a6zp6QlRZ_+rXiZCTJmD7{lek`O;U^=c{1z-KN#J
zel>Njs;QTGK=xMyiVx*A9N@0$VNhHjF3IqQ7;>?jxI>+oh8MQP`qQVnFtVtLh%c90
z;&!;q;a|0PjqI_~y7L~iHH~Zyql<izzybnvGI!giU#gg-&(<z+o?m}dd$IG)h>Lvx
z1kLBRgiw#D!f6l%-mYBnLY_nXf}WnRNOB}cn!>DfR1w)<SW2Re5!eJrHqombSDV92
z!%1qh^moS$d^5oIu$UTudJ7SF0WhK$AkSvI;35-_GzvpqTLp^2o7PM=RI*8d?CDx3
z6}|E6H&@mVS*T4;CzvVGqC;`0@o>Z8u7bVZC7&-HV#pdgvLgBrPF9H)HHq>#meR^3
z?F?O3;c^BE2lhzV|EL6L7?REHsi$TvZs4ZLh9WeP!pBk2tuC1h0wZ<KK!3uIcr$Tj
zqtfu0YgyP8eRD}AfUQ5Q;;N*cIrk^hw~6LPkVZIR!#shV4}Bb+7bJx_?8<TSUCpw(
zY#bZEov{xqw%Wpuznp0_(rDYz)2!SvK&l9xdKrG~{H9kYMVkceOUHo)&&@S8JwN5l
zj0EtKqU%J2IdcyzO=n)ip?T0W)H2+uZEprIGFq@-B2ck)B!R;1Wb)<NTYQ3#H7Ykq
zTtoBVO?I9Ij9k_*c?>ivNrVTauRl#ciz~Ix8_STK8>1gqa_b72g=EAs!r`GgZnjY(
zx)<inE4D;_PEpM4o)dxH2B$YKuXZt$`U~!Qw%ddU`y=9friNX+8K5s$oHyL^BLMl4
zi(zxCo_rDy^Ta^cGAV3M=d=e3GPy3N!zWHt1-RyPIb_;Phnl5b#U1N5*(utAQ;Av0
zIXOT<M;|5XREDGmixo{}=b?!pfYwMguOO^l-%#(ZCBL3eAX>4LhA#li-~C!yloMpB
z)fu~Tk;jIdl!&2aJiN}Q3>v2tL+83!`x7C9O<&TVO6VfMJ1cwwD%a;VRO9{0<vc{K
zQS-%HH{GnBue0EXF2>NMR!SEtNn?-MAI>2X_<C&&XQY?dvtu<KrKHc2$Jsox2EHHZ
zvxS?6wma!!fQ5+zT8;#J_=aXKn5vHL%|uxnN$wRFif1XJ!tB~0nO}hf+{wj09%I43
zUWC=%Hbg4vdB#}7Pum>XIXC)-5_oB`*&9D3q)q3B=PK*YUAr&Shu?RP3`zVc7||qz
zD5(P`(s^;M_=jpzBpA1=g<g=?Jht@|9&l!+bQH^zP`S<Tcw6`!Zcp!dH<P6sn&53v
zW>r&m1Hiukb9)1+S|35GfPwsl^XyAnoxj%<g`#Vw%*s)O9Jx7n0?~neLPY`6j{a#<
zLcultAEWG6sMu-(mWI`bvDz*j5<T1Ku2RKBC#Ys)l6fC-CMzEwTK_ETQ}9+Mwtf^|
z2sKv`uI|^hKo+mj_uxGMb4iy}R1n9G<gE-7CW5)N1AsdxT&xkx;?!DpT~Fp5i)P#D
zp4Uwsg2|j+AAAG(Jhu{?I#>lY_Qx|J1H&=E=NaJs^84#&ew`NO?I}8_L&>-K|8+;9
zq)$E3SBOVl0|zj!*FG<)JQ0+7lLdTRWzC5X6}tBD1w0};OUN`fNee2MS6sK<+*1dR
zmY}5fugMrQ`}ZYLJ*x7S-*7uFPbL2HV`ra}@%v-Of;*Vg@A~ui2?JnNTOw?TK2t~R
zL;Nhp_pMbv+r_?<c9~kCbqWc%=&fk~j=C_W32-<l8?wbl?U~n>QhsdhP~8f8X?Qe}
z6&iB0`xCxeBP{M5k7a?js6w_qH7gvkt;dVCFrspA`@;GnP?80ZmJNf<Pyb*f)!k}r
z%$8Gx^~{Jp7(?1WimlpSrp`ye_@Q1L<hZFV%&3Ev7_4)>lwmGLQv@R1=}RI?@ubZS
zd8?K4IRy~pG)tN!e};^iAVd-yTQ_CDTx5ui&_)Pbra)o5f&gQOyg;B6%nZ?djazJ?
zjg)BtAfZbZ2;t2&K<=ZBP(|pll<Ce~C}xaaiJLK%F)_1^Yx^R*<})AgtI$OS=2ZNL
zOK>j+Wx2b>hQ%9hBVR3IEU#YgY@c?{ew1@FFJZR~4_LH~-RaoWq*eho0#5h(@XrV4
z<a6ar{Alkl0y<c(R84w2KAJ@c9k)?)m^(h<q`DV-$#j9d8kFM(ts%2n)Szw{W-T#(
zKF|<vYvXZat9!;DSOK4-oj%O5O?_RDu@HPKbA+?~qED75l5c+)+$jZ{FIt#uyhof8
z5ZNvZ48LcM|N1f-+Y;w*P)EOz{QReqTp6$LZ<O7TO`kWy%Wo7wuK^@MhqebmWwS+G
zGIs27QGzayL%y7PNwl~Zk!*MjCdB7f(0uQWv(jejWIt#Zk#yKqeDF&^&M#Jy#DkKC
zO3GNcK{vqORf7YenRQ|_L%^$VQyP^*;b8VS@2Be&xF+V|!{KNt!iLinD}=iq2zl~b
zKcZ76Dmyr$NHP1zE;q$#6rbC0wxy%~jIX@sc0M((dk8@oD)l&Dgk8<~V?JkmetfB3
zX2}wLveYvJ?tE)lHP>Ds0Bxxe>=W&InvdF;cB?kfhl%qIvf?46C5=W5kfPx64`~>n
z+S<;i!<_HxUGe#SjRX=e0~i;I03@5Oso1l{qs}JQ69kh3;l>2TaY21voNTni6n}bR
zFA~WKBCYRHO2Y+pzOGhn;$w%(%dz878kaVqLsPz|-QkZSqN(V~Q^=e3{0U=<vtjp!
z_w3?5Wio9pZ=1!>v(u=E8s%m;j7+;08Cm+MBDU{41{B8^x0Rp59#t5lfNftiL6zc0
zp(R{?B;oag*NwuWCR)NZ>{Gm%yirN+gidW|X#zC(*-c_%L!zhnZUQfk&bQ=cRw+Zo
zFki(;bnx6tT{(9KtVCCOW~5{hH-_(7HV%|4(`L09318V8f??xb%CHy7!gk$yDsvzU
zk7!P*cr+Yru1K^sZlKM=8GK!#=&T$mRz9@jd;R`Cfj|Xi_d7WytH~$}J=}X%n60vs
zhL_WNuZ;~%v5ux45_5yC_+U!D)#-ABf<ISC^Wzzt<kzW3kl=U0P#sHJ=X<-&y&M^l
zI!*h6@K2GPS2B2-b{7z60`Sw2_%Jhz<7vRh?9I}p#{Eu5lJ%YM(-k(-a;0W&9eTPz
za$V1fjQDhEx0W9EnDLToN$f637w32hSv@nD!yy9G;x#`B0(vd%Rr*=&NuSf4j)8vX
z6np~w8Ep+=R-u1_KSe+VXon?e0Pc5N7`r8nz#hVjBOJ>+w&EZoINVDhHn~t(@5zhQ
zwA>RZ@}2Sq%KBoyZQtF(BApU8bRBvgo*(nUMZZKySI!^z$%;y}E!&SpO(tSRIgcU$
ze3Pga(^Poc@stM5--x2-xIlIp5mAv1m*|Ze1S|{`5A!vgt5r1f+o+f>(Mp<4I$vYX
zm-}wQ4%7UQrhPnlp0aTtgvT@F+#{bGsKvB+RcRm)O~Mj#+U$%<)Rvmh$u!~}m<~?#
z7EJ}8?t7~oh9@yqMNOhmqa4u{3SB#ILpd#R58IODH>O-TkFBi3&vf`;No34?Y=Z>y
zLSB|zHEIA;w)Vz&QcknHfGnIs&lZfVbrJ6nT2OF>DYWup=Fh0@IsTLB{KxhhD%5m~
zfm{q%5q>H_wABidpmYeag@oKh!{8yh6hTl@GPa7ZB8Z<XS>83C(6WnXtuvw`8IMxV
z4lY3-&?{%n0RAu@Pp^=~G;*8GQM=uSV2e9*+`4tcJVTHn{t%AxM0-3KeoNIP669g5
zhZ{n#fbH5_m6mnOS3#Yal|?O*S7VBe0$4Q=jqinT^BabhrF48T?vx<8G;L%K_ku!w
z?_8duU~iec3$J%>NT?YiY}%O<3t9CM06hapl}TM92Z_X`I*oM_$Ic8fz?eP=R$fxx
z9&pMb{jn*i*m21l@=9a4Wv@6?uzVXkxW&=?%3MqoLcX8q?prz3WZiOw#`n6##LQGz
zfe=GKPB+NfPI+GNTN}|Pk-^|(ALSDxpt{ql_gl^X;q9%W;(E5W-+zJ!cXtcHf<urF
z5?lg=0KtO0yLE@)?(QA}G_H*Vm&V-*?u}d1z+u1p`^MStdB2-;F3!4HWAsJW>Z<Cw
zs%AaEXCA}RI=3?_sfnjE`Qa>t=3guL>gPf}8K^PM6zkq_O~tM<KBb+~Gcp8BEI1e#
z=p8e%i>1VceVyx#@(;9l;yQ>Amti>sD~a@v`!!&m$A2aAjE$#G|LElx3pO9I637{w
zzn`qJT_8IeFW1CEv1hOFl-Z;_P|&#azcAIrP=OKcxddoDkTFpI_U51e5xV6LbUB6x
z*l)e<5FPh2=1`BfHj8Z4*Gy41vwQVPmpRE|H!f4>Pnz&;q(RThDY=ED{&*{of*Yz8
z=r`q4K>imfrb(4(o?Q(?bnqjWYAkk!@ab37LqvEOZmCX;K;gQqM`{L#3(MaTz@<>=
z;~6*(7WT_SZ3XETl>>)~cT-T@g!V{a!;Hw{p#LZS{6xy&wDKf&w@KUEM0foXZnY67
z`rWyC@10)virbiVf$-lQD*Z0XVajhNzqJh}3dEa!wDLn&3B;@?W->9iA99yw2h+d>
zh1wXc@oy8*bcMoHF-x^z+B8RsxEo;Sq8*j@36?VQcKr5AN<<Vot|vmJ&BhMD4RHHq
z4VhB0csaQ+44`7p_9u3q_f8eQ_~AcJiDo&{ecV3rnEW+|5*th+)!Q=6c3R5SO_MlH
z>ohchrHMr7OcfHeSMOr9ZCwTV#cu^;&Shla3s*gnV88TC{gGL-!j)|ye94esHdJpb
z9TJ`BJQii^nA7zg5W7~S6;;zJDEl*;);hR7Y6YY3`71LgLwoi++AM}kYcFBhF%eC0
zyE_RIUrXg%ZBts_LsD-Yn_zE!F0H05g$f&{S-u~l4F+EZP!e@#2IJh^g+7Vv`ik|B
zcJzwO_vghYKY0^ex#K$B%!pKs*r!o}@}j4&WGMc<GrszdgA%Ghb7Q+;vB(b<&-_%7
zXL5x>?mC?uUGsyDH;>G%uLwTWh1A?nhp}Q&EFSjXidtV0ugs$o`y0X^;OK!Y%Uc2k
zun2R8k86gclAnF~4jRW+%31=;pYs~m3@N6ReHQc;f)=s6i@WG_X-nxvez2n^E5`~r
zL64B<8d^V1b2g!iJmZ|ZtR5J`ir{A+39$LofzHjNm(}K>Ndbp`J(%C6;*EXW_fW+X
zc2$lD{}qyfqpv+WmOS(%^XM=2>*a6?%5i;eUg`$w>E6*O%Jc*6IH%INN@9z6YD8q?
z(cg><&kjp3%TeyTRV3DOsBsCCswaOL7||gWP@jK~uFT5hBd=#!#qshDtS{XrnK5B!
zN@3kWo4{b|jsI(eza-)yu_$~*%tn=A_7qvSmcGk{JKfk&|H8_Pfjc1`&ZL1Di(?t(
z!=JIc(ZV~m4b(~jBXp?$s>=UEax=;iJsU^N_WJCdE=F&ycwm32A>5(0-txoS+q*dS
zk^nR9c^BwB`Eq+#!L?QH#N1&m|C&cjYG%-QzEHD?HQP^RQ)OkDfBcR)zNWn5uL4ig
z?8YvWgO)x$G2tr8i0IxYh~LO_T=tyU(NV)co=7@Vbj__5L3t;$;<RKB30r^*M3lKC
zm6;K9*V4xz$L||u{RH~423>+haUlq=wrm51M9yNIsodE1NJi~xw?MV^@f+sBrJo7p
z))P#47JhO;jX!tLk|Hi)`#Cb>hCNj2v7a94y7295os-@|XdJ>1@&*M(zCcX_EoxG+
zJRMh7p#0McA2RIKVRtP-&YnI=%O;s|`#1;L;enN`e@00kgcs*ed8Ssr1AhcH+lf)@
zpQ(nkwyKa!@H0>4)l`{Sx1fMXjj{;L`RWI(0vT~h2r?-`(hUShcaTOrR_KMsqM$I5
zm5xGN6e0Jfm|gf+*-t+@01ipNklC}(@6!FlT<sY7;I7@>cu0YTD@N)03x{lh{pG=v
zW1qz;j>9;NCMv6{)(Jh2(VfMj0}TF2=^&q3*PGl0(0uWf(`TpTkARaCCicXwfJMpG
z2IvZ)?jbR5N;du#=eY6(wvKI7)}NJ=oTuk#pO4!qM@;*9qtT-=3S`#^K4skUVPmL-
z6;~oi_Kp$f<#8~st6+nHW%e)gobQ(ZadmXO2&w-xK^a{d2_Sc;%;+K{p!{^y&0?O?
zc!#oc^zGsJy!T_5N$6&pO`CX_3Y+nl9B3cQ>+C`W((p(<vJnBizeGJJ7Y}azIuSmZ
zpH|m46a{zwwD}$!ym-dfW0Kv6d}dI2-vwL6%gX*aWV>j>u_YFO5ngYl<r}kdM1m}n
z$^)07@oWeP8<;{0myhh5`jB<}6T%TzKhIty=^6?j(tT5vNr<OC^cc82Y?@YyzjsDr
zI2SPE7R3h=3O?&~a?n>OYITsA*)xF6&rCaeW{EhjikVLN1#K_L-l7eNxL#oOqn0Q~
zsl0WS{nsg;(r>lVJl!=ST+VX_k+$m5tedZ;pWk*w`Dp}NNOx36o;*bMpCfLW%t%>I
z9gE{^)s?{BoFcmd${u3`Pc}DC+Bx-ee4x??#7$-7PQ|F>BP@W_Jnr5pF5!zdkZTqD
zynqWWf5Zt+p8sv0+L|OBB#ZXT4FE-nd^`GCc%jWePhwFG*vpJ#(8#jDjZRCdU9p0|
zuqIW%?j|!o$7y@YVWyW<_e#q!g>O*y4(IuK|7=xuT=N?bD7un8ab5C#Rm2apSS}A2
z5bN^pTqdf&narRLPj^qhDQvn~Jc&Z*IR33`NX8^|%sT*H!rR`9ZSv)3Yw}4a<$iAc
zZj+i_iSj{X$_d0sGCF`ieKKV2)kZ!pj-L#8tI+p&Ma=a94gc>B=g<0O{y|d%qk=k)
zG~0P>g|~$2<Ne4glZ{z%-YFQ=9GLh&?679yHvN7Ifg||+{LkMgGn86O+CC<11H+IP
zUF4A!`L4s6T4`C-`?HYxidx&C_z%hv6lmm}3SHMD0$h-=HZLDSirjK+pSB4+xt{|(
z31+6m&UTrPv%L_5&1!Wz4B#s-5fKv@p@K%PaJ)ZrQOJkCx;6Qjtuo}qy&+rsi-Yh&
zw0g71yczZ&I!9W+LX9$*zr3Ewdu>$;<2~A-TnK5+LEjbBXw{sZNmn}sK7=0eXDMGd
z5_(HMOxL@^n<Db)){ka<pGhd(7ecVV6&4tdlpk<1QY)*J#!XW7f{I1~(`y)wB~O$c
zPtWpdeiD%yy_RY_Ys8=vDM%GjU%5aGagU8$@yAi`1{;0E>u~7kE#~JFn~~2NHy@)|
zjJ$+}rs}<JVJ55?Ya~21A02WvS?@Y;&H}{L#EUTVQO<<7;(KwTk&i=RWOW9MLAnOL
ze_MrshK9YC^L%XJ@Tk8|eo}5M_?Vsw7&B^-Nb5pYGTtjUPP=e6rPmCB7*5W;H$LbJ
zx{1dQS8>O*F-BgQH)RfAclTAWx^{o^gn%XQe7z$6w)}+g)O<cRZGD@WS*mKBs6U+K
zHsK|ouO&=R(x)6wvCcg_dsu)W>j1Z(W<QAMnucTbDa`5f+~ya3Qm(p=Gj~naoHu2g
zrPLnH->a^zE&3a-_B}Ei%r%ux{Ns|C@%TihRRVa2d`F-=Gqiumfx<!`v|jOD6_M)5
z^yKl&%-J$RGzX^NVHQwWv2H9fgYCeVW2)#>kBjXY+S{<-E1(H*NXF%Pl+Thr$(U<c
zB5$XTDL*I1GO;;0Ib|I0Nrt9!I$z+jO!Uz}+2dEZGLjZoxc63*tv__P@j&bX()IE@
z5bC<vOaH7Bl53yg-WF?QkQcm_o8}_KBUUufL+WTu(Qk(-%RBML$bkZCT+vlBBwewk
zw>0&gV~FRi=;pp^JF5+oo;onJ*I(X!Le_l#I1{~#z7mC1&3{S%XPGkg%#Y%Mq}Ls6
ztKR6T+*1ZD$XWj*+>!2!q=md77ndcTm+n0>yJ1hMYV(8)MIskoGUyu|4t{YDqv2}$
zWs`2AJJTbcD1Efa6f-m-wLK}2@jV{E4uyJ^r0~9j#oiLeZc!5|6^h-utS-@IIglBf
zmO%@BW#}uBA~RmGjuyz*6;koGe473-81*)HRzt{6y6zVlfjgKUZ-BCY0cKCBE3=$;
zyxyqbABQ0n_4-$me|IBooY{i}D+i&>hl`&Jd4t1b&q2JXpVGwzyFrlcf4Wab4P-)O
z`FO>CkC6XsTghEx*eZGX5m}P_@d&xG!bH0v%KM&oEt-8B*M35XJ$K?ofe7to6|@R6
zW6wxF!2XT&p~2azNWt{d62BS9nNx9;+)K^&=c}^lV~?q;Y=*$3<GOL1xh!SVmiK`K
z{e53bi#0q0ie8x&f4a)CPMcRqr~D8x1pF=`B;}n&326ILAkgmxC)E@QI~u;DLs^?|
z;rfXpZOhFN!BYRn)z&|8F-JDRQGcs7fYO1hENNz7l8JG9RK)@|7w0sqkNjc_jxo2R
zVkgR{;9G*LUHKUHyJfrw%yMyos!N!@pqpXY+#s2`hWDV`vaXa<y3iSb{^QeU61=&e
zZI6do6!*mGTK$=#Z)2@26p;llBBi%fOg?BRLzk}#MSO<0-Z$I)s0n!0NQ0krHEgAi
zY$J~SWj&%qSMUpd{J57UCNsVHpzLekkOUT<_WLu5XlvlN)K`Sk(pVM#VO;5dCv{jW
z`!M*Se-x45DFs&66R}QlfG~_Q^0!p^wMWIm-jVPLlI*{WSsahd*5)7%WFYCBmr_zl
z5ZtfkC!O<UABue6vmk&9Qtz0z3zRQQcogideR!<bBGz1E$N6}y26X;a+7Ylh<t$hd
zS{CNMu{3)`wt$kTQMrsNGNzhAI$uR@?DmN2kZ<i4W;)jzKIC)el=i#zUBa>qUQ>xs
zNj;oL)!rI~t-+qZe|zH^O#RBaf2G-s?&lB(YW*Br-Aw3O|D|{h$5$>$fakIOYHcNP
z2-Jbl=~GsxtqD-S(V;`4dfjk+L(-Oq2d4nXpgq7;o@8{&4{y&uzchp>^=Re&dxD)E
z1v{TA!TmEcEr|^wu*-=o-7BCvkpSrg0MggK$ztQ+&c_;It{FpL3+eGPe?@Q7IS)4I
z;e+EK;gYoIt$sA0B|9nrpKwX!RcZj*NtK~nIj8jOED@O`TtPl$PS>@3>blgeb8jOP
z>%YusYKepG3oD<kvWBC+V}Z#dF4|+Hok&z}WoUXYvTFogYF!3@XHQ8$+Ur_m937Av
z7X3$tu4tmwb7-!-mM84K$!?>t#5CLpnxmjx4OxhZvR|2}Y68on71U{WN>c`UFE$Y-
z@Lub+=ZY4VnvS=<@!iUZDuaQues?h3OuYm<<1!4Q>pruG8{YYKfAWduyP;WXX!c6D
z+eW{Z`rdKjkfWZ-lY>NqmiZMF#*M2tbcM^r)Sj(S6Z>c@vu$bF7I^$OQ{P3c)b2Br
z;Ix8jGoKKc(rGJ#GQ96`1iH08Ug#j20&`~VQqy0)xU1SA(vrC?N?T3&<gP*-xVgaJ
zQ^~BE<c(cuk~w*7hQN}cZl+N&lc7VYyj~&&lPtMfbuxm<9YI)C`nx`#d7=v$xOqiY
zntuH*Gna=jHIk3Wck6AB4t|`$9Y9tTwP;XNJ6%W8?z6bfRJg3$NKm60ZGW606`Wd<
z7!4W3#bo@lVm(n}KB+QaLg+I6kF>L6Gf*T=UmZXbz9nuo5mjWw!Zq=Reea_(I06y;
zb%G^Y%sDs1LB6B_oR04dZYmmLvAAI#*mRaoiX17_e52*L#~*0n>6sj}|JlV=k37|A
zmGE-TXPE8RVS!NzYvYMZly_UD>pKDQ%WpI!6sAL5<(3}>y9uUm-!QV39emese8Rsy
zc|yFl$qaR0ZNC}bG?fR^7?A`~p+9*;{|grBpz<k0Rax%gq$*FnH@^@AsATO8V7MaQ
z0%LNS$6n;8<9XZoeHVlnFOg5F=LIG$GGkBJIdFe@qcn8=D3;v1h&{ja7g9O8DI(_s
zQ5L2PU98_R24kfhwYvKqKXNNwN^N_arn=We^M`l{dN$<w8K4eq?)bS@1iLxnza<)$
zzr5$3%dB0G_uESi1DN}?iiKT$!mEpoV(aB4e+!QM#~YM>oN(pV%Ij$I?2<`cW4kD2
ze*5Qd&9{#0=?iUpPJ3~P9>h*u9kum(2k3U0o00PH!K<8P&&g72S3L_Yy;0urMX7j_
zL#3m|9UsF{=U?9z`9n43=*bz1fLWOrsX*KIZ!6u|KD@7_zhszO#<M=QXGH3`UUT6s
z6hr?tPumPM`gR}YZcZxXjfEC#B+89;d3Pm<cF8q9B#ETxz&eWD^0e00e*X=)SB9&|
zvi%L`fx5V!U&enay;$&l_yi?d$`CK{fvx$wz(w(11ZxyGy*KA^u95By+{MqN<KrBf
zb(>gxPDSbwLoD32LQgKYQOC3DA*nybq5W}dX3p2=n>+;<=4w%BKOV*WwJ;`wy)JjX
z?OwWlZ(HfGHqC(HB6N=I;RxzyFEMrmm$NHR4p@*~uKJp?X>?FE2<GFZRpVS|ANL=+
z&i!S}V685+BQklz4Za=iLju`)6YtrdHnGNE-DFhgZBj)(T0O);&C>ys)bdsB_B+5{
z9@~NT)Rb-SWqAd@`@iSVBfVp#4CbkzDQXB<V$j;!&}yeTbR{&avng7?(X*4_S+VEu
z-y2_ZwrH6Dc8$ci4&E)=iI@3@sUU(KHmHo}n!EL}3iQ=q+&OJ~DpGs#>}{TyqAW%_
zHvIc!U+nl>PTjA(AQRt{J2Mfey%`N|3bacM#<_eX%Y4gt@$U4M-nZ5JF#GF=_*?5$
zpBGtH%%E#wawJ$nKJn(3$MWBb=$oslmuh=MDr4JR7ln7az<A*S?!?{ZxXv)^14bUs
z-SC54rjd)WO7Az@KSGUUdNZd@=Ivj*K5WPOz07mdvlpW@w#9Z+d*j5CG(&<IVw>G4
zJ2umYz4#SG<lB{Jf$%VG*Je|#ah=Qh#%I!6M{+#Q5!Wg~BwtFtl{V@9r6bry+jX*p
z){xQQJVZ$zvtgi6Uq+3=%V*6eH%I1U6Q6Xn5f#vqH?G~9hEm655r#D@VY1j#n(8lE
zOwMn>gch_x>63Sqm@vf}_pi*A-w#hWB5c#mTJ>AKf9JoY{w4Od_D>~j+PgO#;RnRz
zZVWi{A()IqE+(-{Qatb6FOHuOwEZfV--fXgp=cl$c=Mo<1?tfCW#9NXE(id6{gR#|
zT~Q0p=G>(ytch`)MoszhmZ&q6)OtdGXpZ!Pbo8L()6#UvuQQv%GYdxMvC)}OPd<H-
zp~IDu8{2)%<tju56oJ)_f}bXWeAMx~_9^Q+NrJL6%vD_Cqpv&0j{jya;57A7O-t0S
ziknY=Qp(+hwT?k47GyvQeR*}e)Nm9>E{+C5JMzAf%(u*4mpOM*CcXd#5@lxWLLxuB
zijVvGM=$ln|1F*O@4D{B&M?SF<O@9UUC^&br({e$J?7law^+nCkC_8s9KZoaPY)-*
zLYu#G9}?Ux4E|G=^U>E<xk}F_5MkZw5Rz>xoZac@@-o1h8=oloGkPQ8jdnn8e?xD=
zB~!V!-pC)?8N%bMFhXm&`B_=Pn7a||e~K-c#_khW(<Dp}AeiFI?aH0X+t)47j_N7u
zQ^M7>q$G)O8F8Ny%EbSoCZ=f94cjCce<ojw)FCYIwh7@WamE{BFn1+{+(IuO6h!v8
zy{7~sg)C3=ryJ}VZ1HbvYq<|f^knzu!r4xHqiZ?QE})o&{#8}A`W+wSH?nCe`=GF!
z*9{$OcW^j9Ui18gY(?FSoUs`ulE3a<xVcugdr<P~@@Yalq^?id7u}t(dPQ5_tq#Um
z;Ie!&DpA{Rp7De{RI+LUyXiK#h}>@ay!~$3PIU&KW-{W2er%Omu=E?c?F8t}*Ze!i
zy<#%{|C{(zR5WsWnPt1zMQ8}yGvQ|n-my-Mq0VOm#Ik4|+kor#kz}hkTI#c2*i&XI
zZ6tMLzoz%;a*W%-o|r60rs`G$Eo7>(?PJTmkoRq)MX=TGpkgAST!oFUdEkbaDTk`A
zu|20-&uhz5!QDl3*S9H*&s*-tgwiz)4J=K95k`nVkr4Q+t;TuQA-|)&-sltF6tAdG
zmy?OzQ#;k^{qNC3*zq~Z6C$DxUvX+a7=-NbaQoB;TnOqkn+}1Vn%J&g3M;i_HDAD^
z^B2LgpUD3}Z(i`Z^C-3_w(m(*C@Xum0aBamARMY<a}xtTtEb85Cq8H=OA5%&j6Lat
z@6%c%YW#}kac!M<?0#-8!~LrYLE&@%x_9>Nt0w{<vSPLtTKmSlUXiM0=YQ=Sos$&;
z1Kt;F+&t4NY#z_AvB<3RTl)G(&CG+8qju@->z?SMn~b0)0i69B<LBHGo(=bx+4ODC
z9#|jB%`+S1(%Y`5(P5_&1rz(McWx2-c9j#`R)K*7BCA)s49q2tah!nhU!VOj{!hPY
zqdpYTei}B>{s`(k6q2f2%exoN9k{%Gdi=WJ@BfAt$$DZ&^bA+%=!y^L1!Ga)1ez)j
zQ5<s!Z2C<Ff;ks}pZgb&B(a7i&IK9~*J@Q8)PDnGn}pU3W3rwXW6{a+j-pGPo{oTF
z0C&48zMLnDP?#7226%$dC6I9E(nOnb<z<I1NFFWPZ$#b1+^be{5L_C{7WzD#Ry)fn
zn`pSThe2396E)r7)%s0em=e$rGa+;+EhL*iQOLh5lq3IdGjRN{kCI=?umKa%GJpr#
z5*RV^T_vR0b!-o{&e5O7%ILgGx(vNdeNMicr!%_6Scx6L(PPADyJz(Dxpt*tOc^b?
zyz!KdOBsjVyorusb+TVKJDkgG%ixm3U9)K4WdV5(5(%ME+SwP|IiH^u*=RK8#iK?K
zY{4`kCXY4zhQ8dHiwzc8v7%F)xNZ*$fxEy>3?T4{WlZRH%I(kUso*LUQnCJ`5q61e
zdB7)I%`mpiN8XY?7>NpU9WJ&9`B4UM#!|n~!T-Vkh?kQ(OvtmyoLy&Et3R!{$2}iN
z^gcULZgY#HvXOr?_HfSxOz&cb-#<$u9%4Is_+M}`+TUxdz>gc}(pgUL{+{m(K<vh~
zx4chySvBAbGZyxBQ{TtY#&)*TI%MZ6vRZm}<;5In+$}z<N^~{q+$2ddE*R3XJ~qq`
z{fgSISAvXv_U_JGGy!+V@S!q`B|vk&r;g47r8@ny2X$N-<odE29+)0?-{GI9G&d<V
z$>ra<<ozG0J8K~`H^63<IO-jM>fxR+75Fq_{)3T?P#@|$_{>@I{6+cMNc9n6H1^o6
zJ!-RzFg%7;ujR({EY?xgU3M=|6LRCKiB;*jOo}A>KB#DTEE@hE*ljnuXx*^Ck=U=V
z6Oc?^gk*KnH(nDg`*?5pLNeX0*RTf8yNpB&DB;?%$Gb@gK11(Wym=h|O_MdNZs#Xi
zfc)8w6dK#!xY$^16Zcbt=2C6;D9Ss>j`5~g$OIc2CCPFOlm6e%PFv+{8;Qa@g8vgv
z7|yTHkU@F}TtI)$w8wo0JV>0ZKgX(YKSTVvpN$}fPhFOHkSXgFp{LKGCaEWjZ>Ub}
zTD+%K_gP}NX2<KlFRtqDID}x*xTDE!Cg*O$n6FE)JzVsBeX}$^)Q_8-j(El$Xcp5R
zYmdWl^ay90Tg-WX35?<&+tp2^hZ{wY1x<e2RZcZ=v@L|j1~PIH!^cBU?aqI(B2_IT
zway7aHj$&W{vK#W&i#5BnuPx`G*eg<;r!OaA==d(8M`M%JRRi1BSL{8_uez;+Ag$l
zD=mXDR9ZSOhv(M+BYc#hj!MEU1qV+-O!dlJ3-8J^e;dV0otw-2KmV1Qd@uZ8u++;s
z>0ir{|8*5x7XKTM`+xUwt>eVo#D68F|Mz8W^uGubh-h_7?d3v|`hRlI|2`eNT3lT-
zw{%TCiKhPF&HvY({{JJ1|6eWs2Y`PU^@2kFC#?Vfzc~Q+YM!;hVwbf`V5{6RTtuyw
zeMYe5qtjNNL&$%Bu+*qjhY7dJ6DK>XXd(F5{cnqt<FoXm=@-7!et@>9>JsBs<^N_p
z5W!8(J(_o*H=WKi6*QE+zR6yxq_bl5QoEU_v$0DrT!2c=_Pebd_@3bfoqeFWpA#gC
zKC<+;UNp9~PjWeZM{~I6$J?k2T2Kse6qtsK<g$9qk&?f=WG;R7u51+4C3mFf%S$1D
zr25ZRC2U{FJjP0rX<zmv4!fy_*68a;t*0{gctRv-D>1TbIb|BDJHfP1ELv<1zk>u0
zL^Re)&AoSR>5Xl>-SKhRx2dW;a(>e<@H>smkANd3s9^c!?80+4ANMYDRow!4UpUCA
zP!Di)**mvM)+h8Fpww~%7eQMvFmC0^N;JAHPy;Caha*G8ct)zlgjaOc#p;~*8U*qO
z#6Nx>i(Q8(^3U05uqV-;uX%gSRB(@bI#*vOu7H?4b?qO*1sNG3{QS?Zd3rDE#kry}
z;SEF|8g=!44V<jE8Aj#TLb|3_k-7YOZe6Wi>^N0E@4~UMFq^JiajGH1%B~!#Poi<J
z9y$JJx1=wwY$!exJR1T=n<z@|p}*1miY+1tJ@<Gx4*E)eYj^I__K)32PmLKcIBEf;
zt08qCE2~~rJ+njwsPMFl%a$#3w$_J;LXJ7y<Gvfm6elwa-f+#FHZ|fO*pF(MnTG@?
z3wU_+iRu69tCJFJUo@@}r;c6nrXfl*cA!rYwRArH7+aA&N*+-;+Siz(v$(YJrLMr}
z^)lr&(YK5U^REl5$|cgB`{#b~Ia{1L0GSJ}<)d4+>i2#6xqHXztBA^Lbw%;oecuVG
z`gHk$F^usPq~MwcmJ8dMvX)@^^_*^B|GUSB%YRX`Xxo{Y-yN)@+fCmYz)@9PfB}Pr
zEyXA)Le$RX^W4JUCsxd3cFjB~cHJWR`K-W^QS~@x56PoD7#AbaJazS5lP7|=ZtUXW
zgGXQVSR@*7$)N)My(6!EwYf9udlro!C*PaXq`Nhmn;IX<%U1Cl&gs}h_K(b9DJkh?
ziMf!)mtz)5YQmndu`W-i3D~Cin)((+aVtxgU9mE*gVk$QqTe^*9eM8*5c6bm#5Tlj
zXh|w*3bU{XHp5AIhEOkOyT~G}g*q8n>fKTFpd$i7rgjWt!GY{+4Rvso2(?_|63Ed|
zjGeJUR@Ffa!DgQ~wbzsIPA9A02=<qR9UA$-ivZ#`U0AEZ$w{O*k&s=nY?1V$Qo#!o
z3NV;QCrw^fp9Tqy#_>&GYD%{Hy8<Qaqg+zLLLxL4jR_|su_HrdCH`Qa1g$ytwT<gK
z!*`MV$gS~OB7-ZgK()kUoSh9qBjr8mds*+;%?W~5S<>FbJ6#eAgcHP|r(Mp(q$sVr
z7P4YQz<mS>-1h2MpAunS!+DA1o0sECd{#`jf*x<vbW6>Efs~Jte#M8cK<a{HMr*A~
z4+vJ@<tcLhy&*3fyrk?(@7lFzE}ZD2V~07@+f>?wcW9K0s}>zI*zCT5*JieqJ@fa`
z>cpBZg(q6AiDM?#+iE{L<J72(EkS+jEuLY)dMmMjZlgAroCPxw!q3l1%s(n|$bSjR
z#M3tz9K@IPIH7BIRNAo3)6m&{l209<u1m31weg+iN2k2d+kG7WsjUUW683W}5*HA#
z<8E=icdaqSQVPDRGWQ_G!-wa6bJ@QPBVtu8o$7p*sYI-Uh;?-BWe+d|(YA?UdmmwA
zQf%|-*)@3y<+#rEBS$=<!hH#;-2yy24hE(h7jF8c4^68MFUda2TfIVJ@E0VtiWK3D
zfd>Ei2ju71_TIHsGH17XA1fnr>ctbKpm#U4EwK_LzVOZB_a+N%t9xw&`&3x+06E>o
zX<%$NlB#O-Ch-&79BDJ<6AkF`ka<({_4)1jALuR?DobC6ZtX=L-gM_3ja;AxI(BrP
zn^kslfS*H~E6wGfe_s2WFA8t&&xH7KIRY|@7H-NBh$8NAjHf$a@4vt;RLhkQI>g?&
z)0F&EM9T*L@~$)FBhg40N#=G(LFIap@|J<=A^+e!pV%&xlx&{DB2LN}vs~O5dFk;1
zLZo(M**i94{_zp=b?lggzH(v+8EW)!Ca}S$Q`*Q;U6>Z@2I0*0YojcSgV8sCFVq;~
zEG=uQVzL(A$mUWNB1~($zoafmw34rquUa_Q2T%QC`e1JE8^EFFp^-|cl==HZL~5TR
zH?j2r(@xac=4O=yFQ<MVUy+VJV>woG>gS~OYqS_OK^1Kv3UOZ`1M?8-t?k9zA+Xt%
zi1=3kCr#syhPv)pd+hnrMYTX?#BW8}r2L|^at1EC)M2p5`L>tj@s}-xlBmfgYM%hd
z+IoUZ8O-a?)+=Nnu7~W~NRE8}?_WUxom~eTtYYk*5m1ovg^6wnA6vxK?gIx<=GDns
z6%$u!%#%n>x2nk8dINof&leELD?u(BLnftxhwYR&ImK^YBD&St+w8V1Y^bCIq$)bL
z(fwVqwO0a=Z2FQeiCE7~wV60}cJv9aYZASi?)7*o_)7!Q6YCD2L&E|iHmbsC%_pks
z`mDMgg_8v_^+uchPF|-^-7l<~w={(-tSZ`pQ!h5wKTL3yG={w7*X~e$Ut!C5G}3%_
z@CgH*x3j16rnqE)Bpl=-ujo9QbR0c4N&#<XM*>Il^{4<I@mcM;m`(HPqW~zHLuG~I
zc%1*ibAORar*bW1bm=drYL>ucELt73Uy)X#lRtm+AT(IV)3-JUhqIdKh!gkk^RTtU
zs1jkpOBp(ZK*%C5a&pI@u=VM)K#A5SeWT#VrEo(1%1PGd_Tfh<!kEX<Q@$75gbROO
zu1E4+v~dKCCDunn7`XZF-ggIbA2zh&nst@L?r<(|E4jsLINFp}=DbA={bt{AvO|98
zkkeagnK`>gB++Ij8QW+Un!L#62Q-zup5BtI;+~>*{RtA?>NhwkgFp}M_+Fhpl2w5@
z1xuA`?%{fA0tagoO{sEhp8m<ET>d61LpacBY-DO+s=jwj3hUd(2MWgwC<%80wgsAl
zGc0vrkg)62#FitqgSt0v!2v8Dps8(tWzgWElV#Pnhpl(`X&7_VIO~2K^F@%eU|?48
zCn6X4h;@*$(e%fwhOnw5=MR=`RC4oqol%K(*;@&&%?v6V=FQa8OW3T^Ok4Fob}>&Y
z@3D-cXR$KW`Z-oT8F=8{D@wF@z9r(JPFvdYQ~IXCo1f}>0ufYppeuGRIP%m38hOgN
z>5r_;wdUm%u?NPU(^0yn3jg!Qck?4R<Cy;8EO&Pz>X$scvy_fuo<G>#b4!sv`=Q!R
z?NRrp(>|g<v?-S408j6w7r_IUoTLeFP!0dYQeX=|PbH81q_6C|+{>v{qylcpSgiV=
z&s{GsR<;gt>(^OPfjmZS%1<{Ew8xtfJQ^=+Ac@d6x4;rxmw;T<l=Du?(sR}r&pY*l
z_aGo76#!WsP<KwG_PYvQr3Vb>y}0$5@xxftQXC>Oy{BJXOX>9HlfI>WcQB4=xi?>X
z)>eZlZWYeubT-+~RWdEEnw)@fjc%vX@lCDw?oxlyukxNJKtzmUt^qBRY)^*eHG8zj
z->#rcqIMj!-yeHEhR7`8QnWQ&`w%NpicU4KP*QSe>s-#Siv|QoqmVFgTa?U;T=bmc
zBeH<1qM1i-vXsU)T=RU}GmhYR2%XFIFPv0Ri|huls!;A~prgO|7{!BT_V3wjrr1re
zj09=xnfDkOKV<nRYS!nwr3*2;s2uNh^+!?mk*^Dv0%+DoCpCQ+Zp?y!<o+b|3fw5k
zIzeVbvax1Y?Y1)j#qdV6H-n}g<p_!H+5Gx5o|4|Ga|VUM?*2GXvDeV3NPLcTU$t$p
zshcKr8dA=8)!Q*@?p&?Mmn{4oieLOqD}Gl6m&bCQe(PiA+G;YJ&(>OZt%h=i>Sx#u
zw(_t$lqnOFF=^o$Q(`ko!e*MBzh^VqjCVY$^S&!oXYrefwROySbR?DU&U|lp1xI7A
z%e|;EoJ*}-xrxce9^?~zu<Hdrgecmp)W;dy4P(@0dfoBo=RD8`u8OqUY6|;^1$DQv
zXC=-b(`+Jco3`;a#6KFru^q@VHVN=#OB;ttFmEAc=tITrRX_hw&hs?hGE~@&FD~#|
zZIY2*n}Z=a%lIk}oK16<G6v{vF#$CgH-_{{LqHonJ}e@%?^bWY0(?SJrVo81=CZck
z!uPNv1VYczbdy$f@loX~%=0tB*O4>B9}u_L7=A{qzI!1acV?zmrDxj%Ufd6vZzC#-
zAbjCR^H@$-vH82{<DvFEfG?j0!<)RfEY~;vFY%-_Fs-U0@@$?l-AuCAaNbENHH!);
zdaCfFRAv+18*H`4BfWAKQ1eT+>*!2J?y=n@J2{Un2TB?_YWn3blGBOok_d)0B3t-w
zEd%LHvQA3sYvPX&U4|JPolaWuCCO2uY|1NmH4N0GRYhit54`j{BLeiOP_li6zPC%7
zYL5}b?sHZY9e+G)UeJ@Q9l*xI!g7urEmms8(}NZA4^c}qB1Nf44Y8%p!;oj2vb^?K
zJ9it5sJgf$a$&^+{pIh<2Cb(XJcy4~lU!Lx&>2llYy97f6#I@xvweWgOn?2XU<`ae
zUu8JJUL4gSUTAjC#f;%V7V!`)`TavN<2dH|%V~JT!06crA*|O!;M4q4L8O5u;9z;x
zW5kvaAsdW%pnXaOn8hy3@GQ%MPc%2UV((HVjPfAV*IL!dFsD*r_dPv1UW!8RU2~H*
zT`atLdO|9>BYad|5;Z{91;o`$dfoO<qSATG_i`N9@?|FP>@6D~nw^Koe3ZhSUV)Xu
z%6B1T+>8$TLQFOJsop0(dPSTyVPiKeuwLX%I@p#F0`p)tBN+Wfo!M=C{v|Ds_jk}-
zNBW~@Oelj22+i3)>}Zs`DjUtE>kIKD@Fp#75T2oURQ>Cr+<*z0?Ciw?cw=I6+H2c`
zr>;(3&JU--KJkImrP0?E<Mw^m%nUkG57Sb}m5P`rOr1b?Ku23-!x+5T%1c*d7k6N3
z2=q7@$1P}cjSFt4rT3I$8@Aqj>h{ktart%X^9y1m_Li}GkEP@S9$95BV+bky6qMre
z;^OkO2JU`JmH3iuL5O!4QP$<I?BMQf1d1LP3U!6#hmyDC+O$jZ(X)oIVUgVaOjkcF
z^lQ0^1Z@e00=C=KFm8Pn(MRkpoNmq^|EkOVW8EOG+}Ui={*pL2_dVCZ&KL_v0Uqmh
zKl{+<Jnsb~0}qU3cY5Ryzp8TqDkm?tn4-cO-mx{a>z&M_FPkBQMj^=g{SL$|(#p>B
z@`q%dxN3MI>67X!WK{Up3*}h`IxkYPW5mt?Rol-n(=RS=s|Sl1-NFb6^`eS%wv6gK
znMLiujenoUX-xF8B`>ugERVcHIFylEX^&F#-Lht3PgF(-M3%FgQ{GJ%PWfyjVwKHv
zvs=dSb<t~#*y!S&vOg*mij`$7cVRm&;vgeWthElsn6*6TC%Ad-j<iy3OScZ(9K1dD
zBKZZi4Vgl%BWFX4bzbuQ9RkoqdBR_;%V@N;tXWwGR$gyk|5fyTTFlq#3^9w`3Ej~_
ze9%B{7gc+SzU+K6klelo>+tv@Z4nQ-oN?k3CHuQ!YtKzws?uYcnGS$qbdGo+3!=ug
z4)Q?-G*VSlNxUO&5O4`v`5Ob|$e(R-Fd1)G&3F=*tgX9<gP8bdQt;#pSt+yAqR~-a
zCMM~$t02<CN^h|<1XwUD??d@$n1WCU^2SZSXuR{>YfQ6^*|_lh>9&PrZ3Oah@%b&O
z4AKU08pe{azB_Zj?1c^!A0_O?G!_aE`U$x!u)eRzux#UrpDxv)jn%7pFO$EwjJSl%
z%gbXk4-SxPM?!T(=EC3GrG~0t=sygP3m@gm+kB?W0pF16tkM;!bwrK6blCi6I?=Tg
z9p4WqAbJ8kaIz>7Azfu`ajGDnCrT5rCX)=V5m=QDi6jO~(t9oII-iWZh#X6FTQg(s
z?{U2zA)6?IoSAcrTKMlvzTYBI4i{tA3G}Q=IgaVK{?L|3?}EXEzxi&Jpx9lym5Q8=
zb<%df=ShBVgyukD(6s=*VCyl<l-sf|O3T^^obMbEIkj`StQ~wKG8&GYO+5&cwz=#U
zG1nMecznlDg&?dl#G>Qj38NE|tEgHuAs7EeE=`H6_x7UmN3uCO{S!^I?u$-w^<jl&
zBZ3<rNkN9S1#eYc(bx^y!$FIIXvUSB*0RUbYbOH5Iouf8H{IBKHQ`6^E9X@G;>Gn8
zO~Bnhb$^5j0t20EJNgA2K^F~}9`cS8UliFxmr20F8Km@%m+X(hOmH&eqhlrcAJjOK
zWl1-7eDhzGE0$Hnq`RG3Tv8$h4T)AMOFMakT&rkz2bbs3-&vX2`R05h719SYGc4ED
zE~$Mj63|wOI>*Ll-Y!A^V6drhn%LkQr(CDh_ArNCu|<G!E4T~S#q>)=U0BJ=yYdhw
zVc-M+XxlWEtTOyQBoMW54>GNckmJ$<{Mx5}9k&h0TapKq0!KFrPfhXkWtO)YOs_q|
zJUsuf^JDE{(z<j>#9iEL?dnCI1Fj=<ZsQyb)Fm{FErLEl)LU-B7k_d3^Lf04#_E<*
zWwRm$9L8SVc@H?1KCNxJ7TihIX<9~jE9U&-u52bpAxH&WHP6b`ai6{zCTm%;G8A;9
zpEvh5xEh+xK~ra~d1GjH&d|Pkp~&J<Q~j*$at1RKO_Y=4`=Uns3C?W6F-13B9vbRP
zZKcog$9aU*K+f&yCd3-hvlX1c#YtqJ$X4#d^3_QpVOoz+-$ehUh`s5Dbzm;0c4b%@
zIldZ{hv0=hG?L1Mkqa1wmOg56P*I=ZVzA7tBw)S@t{;bmS!z%_Y#KcL3Ks?APX_tw
z|LtLfnF*?jPg7Vj9SX}Kxmu;qbtYnm8gFJumwKUv`R}}YMefhR?S_vJ3v5qq@|wTy
zXRngB<kHf;M0)u0d!TpPzKP~mJN7I;x_Lb)n2_YS>mF)}@$Pu?+sbO}6HltN%YG{1
z=BhrQ70V|>&*5ssjY{p3j}=s{A9mt+@x*NEz*7GnkPJ<pcTD)g2L=Erld?sE$4|b}
zJU!)yzvM{U@C-8~r}=rIxZ;ubMydlBojEaEM?#msDCb1*v~X$81CJqy+?wc&F)f^$
z`m%@7`>lc(W5~qL=ibEJSqEnL6s3M$dpUMmWBW_6>2+u-trNawwHQ=4@13(7Ge5fl
z_*!xM>zNL<JsZiroq9H_u5-@a_Ustwgb&}ajPqG#IL%^FEKsRzwm*w0w@Jj9_(q>!
zHHpBM8Rz^)#`<}$`=3ckG3ORY9z?H7$|SgH`*0{@zd1ebswvFIIEP;Ekmv(}>BoC7
zF*K7ss>I-L#PL?0pfV!=)T!XhZQ9DJzQy}p72p*%$X`2Wudba}so^}=xxp(tI$vk)
z@f25n?)k6|QZwi@49UWpS&H0;2p@EA*0*;nw`0=km?xT_zxuRPg>%Gl)#tn|4qboT
zd22l(lfAtjD^u_Qo@c>CO3wnFATw{`&C$^CTW#0GYS=w8uDy4_7l{x1=hj%np(-a&
zp622L`IF%DNO`K+A39QQK7+dVroaFBr;SHJM)C{opZL1`6~d#jra>MnH-jt-NP&n)
z@6Do1e2DV&sp-V=dDugC7vfOP7!K2l*sB}*VvF;{3RY(=`TD>fet)L&^VY92*jNz}
zd+A^J9%jwz9eS`PCI;|J9gL?YS(<+Txa+)PbLFspLDzs!>h)~XBCk7h`$A<U=TqH#
zQW0*_@JuHCd~C@4Vm&`9Xj=|dj;gF_tnGD*U86TREO~eRrZb8rk?@M7*W_F_p(Apd
zqHwm!={}jTR&!m^lSk4L%eiv(q1`zi(x5<=-WRTIV2$H_)}=NY9<LCd6+JUx3fjhM
z$`xco;mc;&uk#D#x0jpd-|KaLbjtyk4+MUDL%?OiY%m|rYZBE7^?q)5c23zJ#Qi%Q
zy35byIFU{}h`mR*nzvw*+mjrOtpCP~CwD>HPf|CZb1wD!09|F@x>*T#2g%$vEFG2c
zla~(gPiVmXh!xL_py#wfjZjmmop&~5V@w~|lX4~Ts5Y$WiC!z%|3T*4Q{najb_Ovl
z(USEUjHkW9>wcco?9Dt?Dc&QPo@-zXbjVIes}pOk0(q$vZ4n#>xrb-bY&1&Ky~0U`
zbE#f_@xA+No&jF99N_y|!*{dybv>trS60>x4;HUw;%K_9OX+-J!nE_vwT0N`=SWQ_
zx$3DhYk&o~8BTNTh~T%K@k#r;dsyY}FCh>5P5g?1tYV(Gf%!tBXC{a%bS1WjVFIb?
zodIQghnee(p4@tZJBO==<wI9!MtcblE@n-PB2%+zc3G5?@SUh;MaC#1o(D>ucqC(~
zWh-l5+M__#<KXIf$}>qZIC*L5%zZf7^hLMyYS+0!>Y|tUz0%r?ZLffGk-y?89v0kr
zLz-3N$n2AKx9xhKb^n73X#(cyP${LtW(HP5|IeEdeNz{^<m(0jSvYNNeO{A_50!V1
zc+OABbPr4#N1p@(hGjyfeg)uoP}~gHx!q#H>QIm^%yU0u(HGDeS>7B&aMX)rUrL@U
zr0T*`9btU($u=eF^7L<(eyHFvRI)!o*gjLrJr|Zii_O=^T9qBTiII&+!8aDU?G^QA
z88Esmsoxmd=<_V6zDw3ab>H&Q+)pOde^YMx<r&tQVEISy>-mgI_zG)#gt3`KVC`qy
zD^4r^z><hefcvILBElR0@B|cKDM{!{V;?=KhfLbY$4m-Nb=j4A<KB)2eD$w9m0EhL
z$;5F4Y1^gqHG(^o;U1I~wqrZjl5~3_@R<Y}{F{a3&d`SMS<VRsL}3{0x;6c12ozni
zY>f2_^aQ6HJ6J@d$K4aFNp&+=&#%#YF0TC=xB&q_{`SK#Xj3}eQOe>WJ$jQKqI<q(
zBywoj+gNJl4CqTIbV(;CvDjc*%KmHnjkHt+#!9tSm34be^ddqqzD;dCw_V665b2GI
ztTLLN5+GfMgx+bg(XuSp%>+@Hn7q5OwCG0>5_$&<XPuuzqR3WrIt&_oaqJ9c7R0bu
zdpxX$j=|q1lL+<lM7VK|yubG7`D<x8NOT&Yr=+!j*iqoUdK4_e;7d4rRmxi|(9k6l
z$X+_;_jb4+ONm`ms<1-%;?|+nh#t4PUE-5@wVj1SMEKwXGp^cixxQ(C*PpHb5RP@y
z$0z|mDITvgiltGEy6afhFh<~ZZ2lH9YShjC-F;C>d;Z&g5vaL*lB{lX4ES5*k;Rhs
zZRsx^4PqSewx;8w+Oa|ha3tIdM5r7U^<Kg|nQ|kLp^}<LCF%R4=ibm<=UHuCm!F(q
z46B-p#`fY$FBSCY6;siTZOF*YlrYNfb6{>3E|cQ%{KB6w+fbEry98q6=z|a^2}A~I
zEg=*(g-7gxc4-v~<+KKer|z{nsR9j}XdqCr3T(pZwb)Yg+f>jwen1Znru~q<(EDEH
zq{4gbmntN!0*Rl`@hhUI{h;YRDR8}*Uq_F9jXJ>xr%0E9L~@iDM@UGu$0IAn9}bD;
zl9f2zw*SIi(MDG$Yr3tpaK-@Gq}<KrSOEKpwwymm=f77B2}VLC#~=Q{2^h24zG=ED
z6-H*Y`J_u*Uwl%Z8LjvnwH`&fk!v=d=R9{KZkQfCz}}^n<`#?kdkFtFk>mVED2+Je
zUX<-&H8utHje@6t;N9K|tmK0uzR3mG5S)f`S_OrPQom3UA+BxovHKI|xeXWial=GI
ze7*bV<M?oKhyIlKI(>s}OvW!;zZ1*S>RO(8@G?7X$M_H~cYOKJKiu4|?lO1qEuzY2
zX5;**EGAF^Y@a$KUrZlKyyhLqZ+;1;!o(tlY#Qk57J|BEn&$RrFeks8GvfQD2}xhF
z^PY8Jf5*2KNzt%~*a7xi@2}U$#GX>k&OKzAwgdOc0hlm%-rp1q&?QQ>0T<3{f4hkl
z6P+T%6Dq}K`zJ!q2^u0e0WG2Ya<{O^*AC?7nf+1fnp6hS?rwu$B;ljUMH|L$fw+#y
z@!BPjj9d%vwm5!mMl4l*);m=ZQ#dUGqN#j#ac(w_n-Um9Vu51v{d?5OEF+?KBJ(ec
z!Q!e4Z};?k=!eI;`+HQC*H6)#pUlhRSL9ul!G?c0iw~VWIr>O5Ys|oDOrJkjRlO&~
z_d+gGU#|4DqG<P87tLPj8gTTdOtx5%*_o)}?K;7&441cFJe^~WhAuRTDU2rq*afy8
z>m@Zg4lgyhwA*US_Pxh42OMx~j2+0xGfh12IiGsO!Y>}C+{y+{1S~a_LfilrFI75M
zHz_jcp4=^Y-#pw@u?~G-2t_94=dD`_dMJl&e~CKoyu1$SjIjJF(lhRcO~E?Z9k^m~
z?xg29(9QN!H2Y$oMZs@6ta{mhQ=(QLWJbrrA|woA3?K9Tz_+ImSn?*+s5#L{sH0Pj
zhS+71?&rI62k{I9g>2_+UOL_mTCxYAPoyp!qkX7O&p(>*eAX=zX_XBy8azXh1bDIa
zmryc{kz`Domgry4v^dueAy2xM5PkhqztqJp=CpVAtg~g$ndzbFvG$q+0%5-*{)9(D
zCF2zL<$b>KsG69(hbPSxk@j$22g>lA{Hv~40mz|2cuNyf+EV2bP6?HcFm*hlkDouI
z8yl;L+0|^%$Mb3|8Mkx>-OaT(vDd)nq%*ekZXO~|?KmgM2tMWw%E?=i^}+wKwe$@i
z;{d%z`t&5#9d<YYz?Pv{&XnG^eISJXln#GO<u%ug_pp{#&MN%=qaCfH4v>&~c5{O@
z=Rh<wk-smMr|mXrX>n5>#J1DZ`o*Jhj(h}@?jx0>jtp`%AG;fKBW%w*_GHw1iSM!g
z`ezSA_{kFJxTak~$v+P8Dj*;zL{7aCK+`WsS=XM#(r^-cR8v<Yucl7q`~bjL@L13}
zVdeg##-5oM=Tx9%)_G7G$7z+ob%y<H6XNoCj*CvreKQMBB~(Xc-{NQfO4nZL?=jcs
zJ=C?XmSp^0nCCp3!EKIvNynm%Ip?Cw@HYZ+h8sc0)gouqp;w`D{W)bS-_gH%bg7WW
z1@Vcd&lxpXmOxvA;ik1`sfT7*^L8$AwYRm;Z7*@!+JK>+)Ew|Rs0#hZ&(}R+3cuA&
zfe0KyS~on<4kcogQoFkD{Xq8>DydpWPx-0dBt83J!CIaI5MjGC<|Z1=BX<s4F$Z%}
z&gY6w<r%RI_>wz}_MIz-c#Z0LH=>LlVQglJ6-i8|=c0(u8rs;#KUC^2G~aI$Q!%{O
zWgW3s@#5AJq<vULjecP7`Y^3Jt^wj)<RTqRf3XUG%W}%J-xNISYrc)v@d@GT^GDo%
zqIyD7C5Q2enXx{#-?>Z5^MyNqsag7m)AihexJev~jmBTzJc4+=V^c-Ltom1M>w~F_
z1CR808$WvoM+N_YvB%~E;x_(h;hWBPbC2*_L*H!7M(5Um`p`=!?2A9YHP(NBs&*HO
zxI!j%p#e{F<<xbAD4-qQBSjP@px@f#c@95}H|9D2GInjJ8K0mVxx~Tgpx2=-Y<!O|
ziVN`TbLH&s36d6EYqnuLdvXY5nc0nL2GjC+v;GL$fBzw+NOCK<NvRm9msaV<z_phC
z=0uWv4b6rZqrPTfhA|%Ngs*S>qPi?(<R8jo6)}ZjvYBtfS108B7rUJzQr?EIJ#wBH
zo;QJ~4u3KQ1CRv|hhf%%yT<V-H428U+#HG|iZ!b8{Z(I6p>jy>+XIj-D@)lg4zo{H
z@Ca_My7UmlZnn1fUKah=U6O^g?A_9JU*h?C+0_T>M4{7%qJ(l^ky#yXNQAZzy}#bH
zS#~uGZ_Cb~KUYXWhOu-;lt~o_x`8D!Be}}k_NhcJzBEQX6tS>`1hVi#$A6v*I{HO&
z_aKdBNzp*6!2a;7?haO<-67@&IUQq6S9TSzwnOD_ed3RewfQ5NcRSQ%jtBp2os)Qx
z;7n!ur&B8I)Z5N)lVMEd4INIlN1kHEXXC4dwFsn2NA4#y1$`TMsd3lFij|=+;Wk{P
zuwucIVDv!EX_ezRQN7rwlF77G!unR&Ghilz=FvCjW#8&2*hchHZ4o;y0ftueoRY$m
zp}_Yc&{&-{ns6MX3%`ozbcBa{oszA2f;t_vBLH~zSQ(gp>}Nw`QV{?R4;mgF+JVW$
zd5l;LR-KIhi?y$cifie*JqZCqaCZnEg1bwAKyY^pH16&eG`IyChu}_dx8UwH?$E($
zn#Se!Ip_QC{l~Zu_vOB92D^4wt-Y(ps#UdS%~?sUf(mizAKc>ymJbM4+<btD!Y9O{
zD3H_$XUIaLfw0AQG8UUA9^w#3^4@%1%XWJu_hhj5yIor1HWmt^5R01V<VWA^=htj;
zkArEiPd(}fE=M^f-K+4VNiRdh{f~oNG34@<E~WFiBMw?JDMEW|)UOT>k`1#`&kwep
z_uQG?P@-0cn5&8svv}n3*+B7sI$?0>E=~jKoEP{eD6+lv8<MWxDt|)vu-<FINAynF
zk?WocnJ&F3vX~z@-lq>)&L>zh@0W-QsMbT|dDE$z<E<uO`*kLHtQT4zniz%^ueNvG
zQGXY}K>9kgKd%W}o#qnXAGRqFY&*E+a6K>F_v}%52A{Gw$8Y7lwHB0ga5*9uG7WcE
zl+zMagLpPkRjNs=^gY1WqNLn><~Oslbq2Bgjzpg`33{ubPCg;a<r;P!YaAnU%}k^*
zL(7{45pomns3yiy9ouaZQ{fSf?3`ZNy0UBkMKFr<>3xEeWzf=BF|z#Q&pjUT%+U<!
z8R_pB;3}A9USx;w1TUIh2L|h<yW_!gXSUH5jhGWV2@g2v7nhy|s?uSSBL=RJ-k(z4
zz%F)Xzidd^Tv+XCEeP`NLW(ybv2wxNm5Vvy%_*d5?8!_U!_bYsbbmzL=lWXHK-g|%
zVKW@hScSLE*|VW{v^Q+}LS-FBKp~lSnAx$LT-11w&lN-?6MMm!OtUR}4{7xys2N9c
zMmBzbv**0Q*ZsNRS(jbgDkKqrrrCFy-LSpPs`UBt93v|}AjsT}1`d)}6<$5FuQxgx
zpR!LLKAq7XmUi86jxV~+vC!PQkmsw5Iy*#<4>8Qj8+gW|)ES%+EPHXctEb?i@x(bE
zQ1@=8Xx<ct6Asb)HGJyR5%&0`duuGLDD8?|zf!fw7-Eqtq11UMr8h=K8avqmM+L%n
zwMJKU`kT&4)7LSE1h93aH`}gC1E50aBrLofFR#w-Vo%6Z_X2*PwtoI*z{gtbf4hYl
z`}bb_AryZ8V>9Be5y5jrnS7brB7s>FK|vvggNNhy-fX5px9-3am!b$BTUeuaTfW#<
zh0zr0Zym_c;G_cKooJ0S|A8}tL+k{yo5j-Q3dBpAfW8b(a3C<-g?4c0?QR9AC15Z(
z)B2LIpM|2K5O5dU+)6?g-a6yXy52HwUBceh_{Sx6Lm`m$SqH<a^S5~TqmTh9t(W}C
zL);wtWT!j6`rKHW&`R>+uYMIxcJNd#9;llU!-9~#xpll|*R5$(L!Ot_@g*&q;^z;g
zN>0`6n2DQ8_mDS^3Nwk8Q?XD-XH7d>8;fsYfjG?#$_wMuiF;!y#?q&mbYmf(&AcCj
zzpQ_iSN_GbEFRvM`FNGjfPMd|m`_?r7Vl1A7ufXjx?NCBI%^=%^|qXn$|8J?-!p}Y
zaQ*x79O8Fdngz3roUM6T+;Igo_6Ep%I91%SMEUKmNreywCh(XapVH3wqmDKG;&Kub
z>%w@f=8kP(q-V`4_MSrwq!pUgeIg&TXa*NB!}5$V7MpT+G-i&ezUVC)(~;iis)kMf
zq3K&g^sQH`J$TzZk>$+JGOv)dzX3;*Ry!RoxhupfN7~Y)w^egQsgt$39cFnQWNh1d
zXL&Mb*UlluE$=wgF<3+x_3FIQ^FM~p3$|~&(R~7mc$Q^84%-@Zy2X&v)2HbyePy{+
z6{0U_q)2k)-!|25+f>u=V0#zul4oHSKFaM_ZP@*7gh!Hj!t{efMnL(((ML%{+1u~F
zu|Fa1F;&dpnXDJ$0QEFTmIaa>4msl1{w(Pz7zV9=Mq}OG``7`1?MTb2$rU~O=-)Fc
zm9`|3k&iobaAY32g23|`vBJ1N3SavuX|d65Gi%*!%IDH2%^0*;0ZWHqWhMONkGzi(
z^?Dv5$rwNJ<c7B1yEeBv&*HrJK{RYo;e0yk<0s6{jeNZt9w1)X0ySG45yi#B=(QG$
zh@S;C1cN~Dhew{^sI$8FxdK89{7-ACOTu?Cr9*dM-u{DYnj2nC{MfMwU~9kz7H%KS
zQh%dM;I9;{Q+ZWwb^;jB+P(erI`y}Fs@4IT(GxbOyLl?II;s0vc5m3nE=ZLg>cM)%
zzLa2KPs%ZvgOlKVa4~L8!Tzg`sEx<R+J~R$kq=dlTSoI!PGcWuh-u-%U2d6uk5_5P
z`@Y7(ILiCOxrV>bwJ67+_Ms0;04v(dfPuF{?PP8JVI79{12>MvD(=RX4NFgd5EL8*
zO%JV@avT}>?|$NYPhci|<|4V1WJLo1X?v%Y0VQwe&aSOjkGc!gO*Y~yCRRnggOfy_
zp)nY^9A?gd12~DN3c&1RBtE}e;HsrjQ^8YVpP<Xs?R<(VEbR;<)yfjv*fVZtBF=bh
zxu@s{_hYh$j~xy9Y8?tqsU<`<3PpE}fzqL$nAgwqIXiP6xC(v@Y;0Ll;a`E@Y*Au;
z9z7-S2e$DHX1X}NBns%B^1OL?z$FWeCOakkG$M$4bEcL}V{|Xo(_H$r&Sdo2y;78{
zn7JoDsOSC8TwP+{Uni`Jv#E#ia5jX<$ViO_OttA6E@2OC%4y>>Wh;Z?VJN{dW`tGO
zdd#DV62LsEmori3<$Z9z+VJuV*(ynWh~fMm?EKu<);i0V-1|@G4~At!ll+p<pkH2f
z1E?k8Ue+v;d^>)>cdLz<B<Ttt9!XX!waSCd2)m?Q-pMo=Be~mgdUi+Z=NkkEo9C#F
z*lT8=byZf1S(Vf`W<7VNS>>7!W*n7OkrBWe-cGR-Ru66b<XERP783{<Oy~+5c@6tU
z^~UguuCXrRt1;zkE+*@>?f}9T(6qFCUueq;1xNmqNU<aFU-jhZdv9)|kNa|C>ZB>6
zqS^!&rFD~9HXad%CnxD^>_by!*CjnIt3xuFDf1mbE{^6Qhu0n}Hb^)61MG9sh8};t
zGSz>%eVq|;Q(f(iWV>o*n=>7(IkF;!+xcWa&a5z}ms-3}HO-c|lZst+JezFCKBFVo
zmfQVhHNJmGOZr;xwcXUTnlozdAF_-=EnQOE;t#68myQnMI(?Z#zfv*NS_fBeK~auY
z?u|LaKU|9VYZzApLu{D`2fQ}Y=gyuM*)k!Td;L+ukxz(be6y{aK1z_!`>KJW=<A&d
zB4?e2mZ{ZioO<_^wX=VwW`ev-=hR1{F|k1Ug0VEdxuZGnPeaKeKdt-Ci?DYXs+)H<
zo|I+lAA%OwEbbeL)f+~-W%d)gRwSfRUBA40N82+M9~}3fClWZHGF6o(uKI%Tfr*Ks
z(K`!5myKG>WAsHU3sW{llKF(0OG8B-)N|5xSjUy2-1MlI*Ao6TOG1=8$7i^lUMSF>
z{>^!LL_dNIwaVWtt0?}~*|mu-d9RIvKJ|toC;rb^)j@TOk_RO$IhjCSC84G1$zevg
zHIGY$A+u$jvp>Y#d3Py0kFh<ochY56t>EnyjHdpHD*FCO<Y=t84Njfjx@|_IYuX;c
z)OJe3l}Q}XQb{ae7n1-ah&7gDDTwy<jHa)|5J;vOl@1L3d%8`BpQ3>Oxs$}eA#)Eg
z9y)W!5F8fVRcv;CPAA9rJ@*bQRNz}k^qPoHLYUb*QsH29fcue}TzI6bw)ejGxmxGc
zebqY{@#yncu(#x9)Mt1BCrPLGrby!2GZ==LL3`RF(2Fu5+_aC+mRWUV%P)mDCsw7)
z|4-xa(*}Px4yew3+=4#7e-sF5{5AO0=4SUi7Lz14TRfau@Bc%_ucxTuK&t-`iFXZP
zzJ=k;7Z?>nRw47#3meVM1Z)yv(u*6?_$P6<$7{!nH|lz5q5&>&L@Aez+Fct@T@Uv5
z|28P=cZ{@wjeZXS;jyK(3cg;e6fkoN$;yE|EqeZKiSB<b0VLLL*tq0AtS{TAmYmHb
zEe!WlTBBxE6>+Rw`h6c`{<>ENSkof|{DNVWgOYZ_YPsd)Em6^Tr>@4Z>@I%QCpVQp
z53R@iZNQ|4P?-Hw46|?z+w{AT0hk+1@wlDnqtQosku{~Lp6(NhIU6ekc;f<}{%?7~
z|JR|0F7~S_yRR;mQR;`da@`S=<_c<jZKIRwyQAy=Et4>~6!yCGVSzix@hg_8Q|jl4
ze}oSqWp$m61JhgYmvz(E<do@lwN}6ehjMakhUvu3RyL)U=KBM2!nIvpN|wGty3|kl
zhsLS*k5@dEg;zS4t;s3g(P!<R%S&Fhl$u5XSKr$*NSs9~d`hppXXb8(l(m~fT^uYq
zT+S(kgxEZ`dTwxsZUc!uF1sIJmLD*0KTL9OK3G`rX0LnR6oU7lS>P-YAub^<r8mjF
zgF&^i2un-+q;@Wo0^qFrx71%G65mtNQUznFehG4!Y+bN%XObrmI5%8iq55S9(B~ZN
z>UuUPX7X^CT{nb*3_TU&lkY`&XyVS=>q{NHZowRTIuzZRG!IZ;P^H&Bxk~q@y%!B4
zid86<SlQ*JONX+L3(w9w&wK}5_lMLU^EGV^H@&gPp!r_Azh-9aeP6B`=J6h%{NT(W
zY8#GfYUS|a#^H+F`z%_%=0+jJXQ!11=8F?zhmDqvBUgFZrxiKh?#~9T<Fag+B0Y9+
zpp@cA@&@rwsMdvD#)|QM1~*RPQ03_4KkUsZ-bG#Q77Sm+X+phx@CopK1#VJ+60q_|
zVr@ZJ-6zd-r&6l6BJjerW*~!e?Tw+Ny`;Y7NvCf$6_r$S_G+^!XG(kc%HWG0!>b9*
z>h!8N-15nKx!OnVw$*RACBB#FeEKB%aC7E?jzX2O*5<D6h_jK}(ESG)F~|MyTVA<W
z)Yk#4;fzKU3}3#-yZ(LeWT^>Jz4Z;ZSY}dCvAz6j5~}_=1yn1HFQ_C`T?f}JmYewY
zvh8k11_|&Mghz+;QLR>*5MzNQ1k?TP;h|WHg@}qwJR+$W>bp7P=AUt<8|-EOe!mR(
zRqB{F4|}JC=2a|~Sau0tUSvsMgN~qrDo;V<q1Z2rA?UL=jYG2>aUE@9w}XAobtMDN
zbicq2U@W8DM#~oZyyWt<R$K<QbN3+y{_}q6@N0t-+{OSwoawiaId2<;jIu*N0<Fp3
zb_*?UhD*$7y>xKId<?$_!SZ~C)z`jJv*!ur^{4~cH{7n5x_)E*y+m9LfC;blik?#+
zV&hZ!15c=a`peM#8k#5uN8OF-t8V@2(W@rbzsHMmy|I?Ky6mTU0gNgk#qw*B2Um-c
zU8Oy1jLj+ygcLKGoc-ZcS2N+qr$+?M1n+&cv(>5OW%}a>_oN`{@40bsYaiWmMuRMr
zgvmWfTeXh`p_6QTxj<Uc7Fz4@3j8l~-9FI?1VH9PAbZ*DvweoBVwHNPC|6vpz){bP
z(NH-Z%Hz73y(q|q1+;EdbIyQiHGiC=spL}NlfNRU#Gv<fvi>JJNgdjie%i2Oqc_Eh
zwvF+m2aA}b$l|s6Ttj*_q@I#kOtMN+e`?R~v9Zt46)~`2{arhYzF4Cc{0ma$Sj3Y~
z&!?2&)VY$(l_;4HHZUq=w+FL)v-SgljRBu|ZzP+YSv%3i7`s);iz^?b-VCU$h4+T8
z{}_h_@tm}&{2`e`k~6(n;RD7$MJ<RUn3s9BlDOo~QZ{6c@2$mb#XJ}?-#ej){~)54
z+zr^e4?VENp4Onl@>mNgD5;xwjKu0T5Q`2fKA}eDMRH=C9G(){CEOYE`iPK0d~@ht
z5m%m}7k9Aoi)XRcMj7Wt+V+$~C}*Q&bjfq52d|s+dQj)0&GDdT;C0SiYBv7R1J!=Z
zIybxM((q4Ti;gp`UpyZoUikS`G0CoiifdB`EJykMhQ`Cy86P_rB`iJ2L|&tjwb+^+
z4bnb0Rp|q*U~rvi8V;?}NtXS<YS{y^s)?_FE=6(>pOcd_b$4cl6lEa717Q4iFkQf{
zG1RlUADY=(`*>b3P}yyMV3viL>r0>NRelE^fPgYx(+RByxi*4t)?KvVBpo+gu4$g_
zsW_eA)I#*M=~k!8?^Xd~yea<-?B!h~?&9&|6VfM&=(yYM<Na?D=fo0cKtE4$b+71O
z_BC}!O}72&C2@}r0poXW{9K@HS`g2*3{z*s`A<4O@A6@uouLo=aW^KZfgbOYZO3aA
z-Q2j1jEt7-HvRR?n^)nhG91gvEazD3^<+$|O1wAOfc?DY^wz+5D4U_gBiil5gDdPv
z^QrU7uu`kS!)fg4{H<}0pSZfr??D8GfC91O-_@!gt1t(q`p?$eM}~)cwr|h4CfnKs
zo9tJm?>yIj9v-4vHKY;=w2+d`<ELIQD5E-~W6V03T~Y!|54m=TD!OQG=UK}ut+wQX
z!{qTX$UK<9AzXKv0?u|!4M!|eQA{={N~JqFysnZWz8y)o>nHrYR<B|k!|xmjE{_*t
zii#f3%_H5?l17wHYXTN+!Yh?`YV_8-D0P+D^U6k9_V4TuuY~o6t&^LS%kSJwgbg1R
z`Za_~nXC7{8j#ahWS`tp2Xs^C_7(9q3fVxSd7THpGO&pzZn8|6Yw95^plh*i@?zUH
z?Ut4UI(>Pg3o1tDpGP&+WyDSCgeL#?*;t!@Ag@V~i({<dOz8)32Dd7nBHDGqiR-Zu
zTCW(3@muf8b$q4B3=PLG{ejEKXubucHGv%o6GDz^KUn}H2hWktG30!SceWl_M>c7*
zR-@Esm(m?Ip{{N#rcGJxGO9LspM=<wh<txI7YuQl-)UVBlsV$rKVPDm*4X`ixI|nl
zVKK42@Q+Gz*y_G%;wmj=q7w1K1q{UjW@lqhS^<l|g6gz}t=JfHuGEpS=322ceWfF&
zxfa}xSZ`8g=j|nuHCKb(6eLMb&zh5cg?W)+z8KS!TSPmLc8N041&NJp(yYzEL|;z~
zE{Ay{`kIxAL@AIf4>I>kPC5O}HNFygl*bw6K$=rX->x)Qz^s(knHxiwbZq69t<mk;
z7*essk?5wK07KuDecDh5liN(kOTFBm<7*z@D_RMn3aI%{DMF6%0Ws}^+bDo^e(TrC
zizmA}Nyo^#i6ax4g#3PYynLAc1Esam%g&ET=96VMb1p4}zmzt$akbBObSf96VPFP2
zx-b-6`d<N0KA<$mgX7~dhFm`hGqXZlh2tDAae(3gw4ZU2S%2s`uk+-)J>-C^AIC-V
zsoEHW&J6THI#zdbyGN&dzHqkPveoMukGOGCcR@LKiHq<p%6BmMZVp#DlS#Y!0y0GD
zdVggNZ=%U&;Um3rj)IR*+rLey2WERSg$Q&y3aUT#wdgJF{1Ih}K>%?^cD3X_RSdFQ
ztkF*n;2$#h9`?4kI5AKFT!S)XmafGe2Jj2AcTpgKY+>&tD#`GKgp1RXu-Mqx7!sbS
z{V^b*mVb3FAi0D!FP&UIBAKAhPD`RQ>29^`&~Cg@-H{V=lte3%M@+1(TqS6v*p?vE
z>^|}sD1>HErA2DNeW@IcqXV=bIQZo<D3sY<DZ6j1tdUf-(Y$bY_t+QgwRjBVU#Rm6
z5Nw}sYaGkAV3sTFv!H1v$)lyp3~bi1m!G3kx7Stvn5SCPU0a>_V^&aYoHq(O&MZ)l
zsHc0vsG9qYN3)|_ARPl$O(*AgO-z2h{A!VXvF@GpncOxdpE-2Yp>c9fQ={}Vj-%Oy
z@xdSz6Fvo$0?ibLcg3n$=`~(-H7;JtHj`f(PG(N6ci~gyTL`!BV-P*kd68|)KFQp8
zmh5fnw%eW4JBAPh{==r|Mpp|?Hf~H`0I{c1wb}C@AW`cP9%0R%$~k+Yn>il<WJljK
zh3eTHd$QCO`*0MpYUGC+pFRb>)^>P<lmm7#cxO$Od3!MspB8XQR^lhJ)NRQEO|7A>
z)3DcspvO&lee;yIhDJEiu_pG{Bd3YXhnT{6vc1=n(~muzf3M<BaZwpe&R_sp3fC@8
zR%R#2ZlL?az4mr%^%)g+lR#+cQG?JMNBzFT6E&PC&tG2FXztb4?gBu5;ZwwLg*C|@
zZ(~2qbBo;${PA^Q`LzyW<VMA99tb>s?cwl{lg*_2%ZG*!-Nt0s-%{LFFWPnVyFgdw
z9p%HH-c&jcym)I|o#tJ<0EQ;lz5amTm-D@!?(wfH_Wco*>U^O%2drwV+1e3|`^*)^
zN?Xw8gRKA<@ACfVHIcT=Fyq^!W83lWxR-F}aYK)ozXFXh&Nh1n5%gQCi`dOM$c#l}
zfZZ7($`_0s9`-884DvdZWy*VJ1Ay`67G%suOt{*;v*b(t?9^P9e)H{4G}}^(bAjzR
z=<e>0!*1!<xt&OX_w1`!5!jod4n8>LQbP2Zj86OEQ3!#WfQelij6$-QZGi8V+b9#r
z;W|Q(!Jwh)d;Zpzx5_M@X}FO2_4&HcvhT+iA^i>%NXzTjuf5JYZ@OTe4Hgq5(s5)X
z*+QNMfUf0a3@ehFDHC1s4=96gnx<A_Ev=CBSgYIHGvmela}P6{wq39B7*Z82_S%xy
z*jGLXiG--OKecM@3AT=kj*gn=gbwiyoJu_M>y4>Y;ZNv0c78TB&9^=2YjCo-`ZJ@D
zE1LcI=*XXEy<LWCRZI`{Rzp}32vE&He0d;HJ8p2~CS{1Dy=<-r5MzVHMYJA4w2*i`
z;}7bW5N36#hSsGcENBp)omqD0yrIWZniw>nxu#_>_~K}yF0MWlRfO_LRVYm^BiOQ+
zB3{D8bJVU~<r#?cGHp~Pn)6kBPQ}6Galz)@!W`d^G%w5A6~1~jDeDMdbo8wFW~{u?
z<tWhLA#AyF@>iJ*?`$2DfK%&t2h<(ntohRGq>wsOp1^#>O`QrZT1JkGc7cH`P=MDy
z{$p$t<|@sejqZPfJKxA;0kEL2bXPy}ZV8wDrPKlQruf(J43+GO0e=8d!+56YY2UP-
zf<zCJy9!0n^@1Z)o8;1Dvo2*()j&Ao;X7o8s=d5LSQKwDe;la;?lMIM5}N8Q>*-X(
z)AD5G5fjJLn$lob?Q1cXc@?s7sbEjVooGPo(&+hCz1w@PwTz5LB3V(_?}(IlrYi9O
zC5P=XY_Q>6mW>Pb#j<cDx+2gZeYe%w0vqsJUm&fi%-w*0@`q;0RVs^jVvZe!P^@ir
zOg=C89Yyp4lu~IHlcXV)eFV6c#uxCa+2%+Vb!oKa=dl1_o?+)h)S%-7_n=Q%NXh7%
z#|#7#nwt)cUsn}#Hn}OTG)@cvt^2at3_%-`QN{|J!nzd+i*KShz7Dih4z5d;3>HYH
ze(Sm-_c2{lsuB1zLpSw)c6loy7Wqn!mY1V6w0!QSYR<qh2JPD3?zhafUJevv5v#%3
zW4wi~kRHL}iFPT3yU^3s@dj%kY#;||C35RKHjPe`-7@GoxHODw1;za9*F4+tX5YG3
zv0-U6?MvNfA6D9b@>?OdYq5emQd_KDSbur%OVPK=2tJUPw?~7I+?h8i3NYk$1Ojfc
zR+R)cWx|;@yxJ(~^2-ELu<WI5KNTS6$i!1DuvJ-E!;Thw_+4+#4B_+DjTu6Q+H1?n
zeJPb68%ONcbJ~?6I8tir$@T5NcYgPF*U}aO2tKY@s9j4z+J*PjT*zFOReZpmY>4&Z
zjOGbyBsFw<ovJ^+$#RNfBjCZFnwt7b9yyb{F>B^`dVc;;yWM@+JFA1iITHXQ;RHqu
z9f2PXv)53jb9^<`W;KR24)m@WK1{LoYmm8L9pl~&={mcmseE^Ag;TZJU{5dE=yrTa
z?9Oz~#bAmt&^}j}aVCCQqR!K86i&n#lW!^AcnSaU+JkVlj7MwQ*BPhVzUJ$;?DeN)
z!|_d4*%F{&OV!}yldbn-p8^7?VT#?A$Mx|Y@u~4Jp^<mTaiZjT`pw<3yKcw6?(Z4q
z3ccTx*<;Hc2}|Myf|K#x>ciSL&oj?=eooBsR5G&*Q@_4rbt1+_c3Yo2Ni+Ss<Qqb_
z`dH`SY&FZkEavep(EU9*7M^rg>U$kd6fxdhPyZ~!Yb&bH8!&O+PJfN_ngKnph@OcM
zU0=h@MRAh`KG)|*&RnJJk*hNGG~NR)(fb{MG-8?K?>eEZ^?MA`%$FrSCAn#A0{^WL
zrd(CyYNQ?3b}qn#JM;dG&GS#YI1feJcUGcT(n3<!!yU2bNxFV;-0tel21p<C2Lo~~
zWY>~N(1Mq19y*oA9(*H4+S}gV9bo#EtyA&)!yAIoRvcmg8SqJ)16=OfLVt|&yc%BL
zIdCVVsrS~hDe$|a2ZHr0WZmllM(yeRrKlG2oym@g=34lX;TJ1$t|R86*fImi=I>cs
zOpLCKg#&C)50-*KC9}~|Wg;$r3<tempHXHQFn-xxF=n*_nevDU3zc~5_`%)Li44#y
zMkRussciG9O7_tT07S4M3eu}+&-L*;6lMZWQ};Q}T<L!s$C@>X4A9>45LWevJwIAM
z&2+pxKPY7JV;9V{-gG<i7kKBtiiHRwd!CyYG#}r0mmj}*Xmb|shl!4%S@b=hR>s%~
zhA`8)9CKi>bXNwnp|8PUTT8tvFpN4Z@7WNVGwccA6v|BMWR8gZ%k$H6n>!N^&m=Fy
zCSTT!@JtXrD0)QRuf+?LVw&n*=Rd{hz+g*={?W4uIx?vqYQfX^etfULL`VQPqwHz<
zTYW{dGd-tbcGjM=--2kcqs6RW*iS5btIaNdxAP6d7uGq63`(3ytDN#6i$(uuBBO#h
zgwwSPWw0@*=)xFOcySIica=D1F7L|NhT;(Wb{jduw46%5YkOL7-YU=u9I2FZv?l}_
zVAUA!6b_*9NkF}v^?4~bD<#Jq-#J=BZlDJK(^ju0qG$v7M8eqANXmHlRQ8+_{AiK`
zD-1X0SFRgBi}VH+(>MPJEVx#VNb$~^zt5WyH1?1;S1&`5ktEOTth)oEmpz&XQsMg7
z|8Xh|#Rt3GLF>4Ea;oyhg<4pdx0_3tI7<CfGIjcegw*fEj_bV`O21=TRJc#E(!zIw
zY|8J<v`Jpd4y%<<HUFJf#M&@3qR@WFPwpE|75|l|<S$@kb~6otZ%4uQWDx7hK?ZR~
z{2?{Xe4?V|!EDZ*)8U=`QT6&8rcbfO%9;ff)69=OQwufGrc4Kuu>~=L2~mAS1L-X1
zzqX5Q^<2eWaV#a1_0YVV`42sU3^P6IpY>Sxi4$8CpQ9!MKE1ikaua=7c5)~rg8fxO
z2T=H{!uVdK#;<(6Rc@g_(U1KE0clF8CV~}x8F;ZNnnmvOWyegZt=j0^@3&%O;Vrr8
zGNC2K71(rwW@nUxzP04o6YSl9I8itA4R3)K>rYn}u{K4krLyL$<~|Irz+B{4&(F6l
z_GWY8<|hkNfn79tkmbqmyXp6M47fKEO7#HUH=3HYUK9qCw>`zh#G16Z7<*eS>ih-Y
zK3;NFJF7j#*{%2mk@KxyC~2L3`1mpEr)0#DVpn7Fc3%W0!-o&UJTQpxNKo<RB*#JE
zOaujG3}Dd>*3P#tAKt~0hQbtA&`dZcIu$OGsq0;I_*Z+detV}t?N0u4yR|%j{7bqx
z>sqID-VN0n4Q&qgDR{n2{pxg8`y9b$qr=+|wxGSq1RwbD`nkUnNQR?Z{P~V@Z}~LN
zn0qOA4$=jC4iVc)pKm2sZG>8I8(wLAfBEkJCZhQ8lfvn~$jLipD(D%<A|?M&l|rPY
z)Wb~IoS^$r;f*5n4xG#7dN6*D4<GzFLDJc4%2V54(mgJ8r-ETC`?5A!9%HA65HxwK
zd42XxR0V*An#h6&X<4{*-6#p{S*5hnB3z$y#V~8pa@ESNA<52$wspMxhH62@&h$@{
zl*s$#(~b$OOfC9jp!ic2FkM3=+5YPo253EBZ+(!r6uwWGHazViA<Gz818d}B`nHL@
z_;r@IpykI@XRMTlHC1d1HvmCE)1wae@@@hyc}#k0hQENVe%9k)zxBfysoOBI_cj!%
zfobaF1bQJ!6%mQ;aw~h{=D4hhPqByU55aQg8nBxRbs$~#8&oQ(;{Z2G?kXg1!X=(7
zqLsA4NByh~{_l+(lVu0<6=Z3G8I5I=+o?zI97J%YH4*|GZ~?}dQ8i42><mVGJxhs|
zQR)bEd;(8ZuN0Hj^82nY_ALYObZ}6X*mDPdZf<<bS=8It>p>FD@d!$&54gR(-2w-`
zi(fxp`t_B0Lk~xd=-b0pK#Z=l_Dg<=C~!4^H2v2R8A17%OZ~nj&jXi1_=<y(KEV)o
zs9v=_bPaDcA2XwvfLkw3{r7@o{jJ-jMG|aX<<n=wSG9@TUJj(auR%q+3yi=EJ+W_w
z_W~-|&FeR{ZlTv58O8Ehlcs8`&LB(j0x{iQIuK>VX&4a2C376<bc(o`NJ$uPS|iEr
zo*8*Cdsd%HBw+}#CR-tc=ytxLe_C(WiYoRR^t8406|^*T)Bl>pmZC(&lhYnT|9TQ>
z>-aRpv4{B4bHegI9Q|ZrL+Fkw{tY+1!<py^1fS6G+gEzv?~o-<fKbVN-A(561)G%6
z46Em?1PKe;Q?(Fp<3S`Mw|i}+VSRX`5aw3kD5ddf{j&zvv#l7oVEx<L^oHpT1-jL{
z3phI0^{4gy2vwXF2DwQ5L*>5L=J$eMDM$$t4Roh2C2{0JoaUoH&dLAw+63J7Ttr^^
zLD&?_kIJWJ-PVs;UeDIr7=4|n-j>SLySSwD*j6-_@r0a4<lF)K`aSH;ZqJ|E3oXLy
z!(!I;hD3Q@bh;(Ft|q{zhK!G~wuaf5`_SbP10$Uu!{-)*vnJ7r`bX{cKj(Yu<>#SI
z;35GrZ}9>f2c(eBcej7O42B4OWSQD>=W!_1#&`j!zMG;P2h%jN$yfuK%bs|2PT_}q
z>WNNtd$eEKWaa8TTM-26;7vKsi$1n1E_a-&_5f`H?9-K%%^;SIXPe`(;Fsl;v5VwM
z>%MiITevrtcstWJ)YZ=j{irYYXEcFhE=|z;HSXX90G6tsc2tid#2)$WOp!0In(lnj
zn-|?_?qPB|IF6_W1uYPOWZPVESDWBxjesj1FkC2`Jnv&sXV<6O@ZhTht=VpFqa3T|
z^)Ju(g1IqPs7+tLy@W&`_Y?)e9jddrq2u}NZ+#%W)!rt?l;JoCc;D-ZIkzeJiG#<?
zXl)EwFvw}WW@e$d`Kc$xv~oV#7y2fezN5D^Qaz2|fjN5de9y!6yh7>Vhbx)RBX)&;
zL)?t!8iU)aRXAIlr0$)fpH|m6(ABfvc9wt8kK@}&vZssm`4`Za;1{Lh4&D@ZnZ+`D
z$`SrkR!N7%$)EySk|~k;+a4KIX*4Oy^^ucp1{eXmyTFlq71@+FrLx&h8Va)kxVLdf
z?d*ZoY$c&4jotedv}D`@k|AIhJ$s!JvZLQs`Ov~v03xU6EJ=7c6H0%GjPDYypo)W%
z9&niqe`uUyU<YixUJIrfnX6`FZR`DM2)#8pj+fS!?Wmy?61&mX*ZgERjp0wJL?)Ep
zT7TnuW>Ll!<0EI~**Wci{3t107F0~N{Xw61(&BhQ=J}nmFXdFDe0u9MiMj62%H^gE
z#BD{w=@i`7J0fIo1a~tpQ(Hi2t9o%APhpud1Jw%9!?UEYkQOw311)@=adc4@qaPSL
zcAuN1U;5T!WBBt43QOM6H9>f_h>}V<#n1<DFSOOc!#upFN$U)=DFHuDb6i3-iaSp1
zd~&Pi7Ldfu?Cinyz~<Q8f~->q#aFkqvS)v{j788mnx=YVJHLPs%C&y#u$Yo(Z0^3E
zG|Q$N%3Ks(<l}n5oFUXL?Wc$~^^3bdLGF6Fx=bZT^=%0x9@P-qpe+&^1m`$j5w&VH
zZcLR`+->Lzyz-yT&(LFQBrBOZ)-%d{{?kzG&i7Q=kg-n!GNOa0j&`iCTV5#w+!-Ua
zA1|P=-l-{M%G~-;!^z@sJvq*EoW%7j;Ac{vK~uFFGr^a-(k|u-dG(e(_o#$1T_0B`
z-;~53@<v%#kX{fN56ni-|8iukFa2rO94E5|<s$<uO9&c4v8VN{*&))&PfGA9>iGMT
z7T~?up<MLcaqXU^(~DlUkA{ry3XgDS$9z)`{fUhnl%=GMCjm};#^z`Ydt^XqBl<K+
z1ODw^Y%qInRCF<uihNBXH@n;FR)q!V)l@q71M+~?TfoPWKxKAqN2{l2Te(P>$nT{1
zI43S}RM+V@!kXj_H$P)bYCf9OOz#!kdBCVF!?i_DJ%Stw2O%BS*?zC=IajE$JV<|V
z9^cX#S{UJzQy&_>PAkfkedPisY%6H`ex;xDCe%QE*QT}<Hn47^mn(?EIIc0~Qw}Th
z_d29MR5S$6lZ?p4)0F2~D={5BzUIt-H?O6ko<Q{TT+;Ep-k>WRQqiUeO@3!}G^X}N
zK9c^%R;WFECzSt82CSy4Dd(bx1EEs{{^n6h&5+cJ)_+)BTkhX@;u3g1_2eVivD}9H
zXaUgovGLxkKbD<~!B87K*<}kDNBUsw9$D1KOrPy?x*KVdu+J$+xN~JY<Ln2NH*{@x
z4`06L)|4>idB<cB58Y~<Dm!6FXwgBH<C{Fvv4^Tn!E_3l+VoJzt}>n&0#Pz<ERCho
z7mjk;sx(n1+*^BFXp^}}V$cDh!T-)^2@~%ZB9UA4BIi^;s{|O?)U$0j?;|uFd6xQU
zFxHAXFyH-Fb{wG25mjzT-lCl7k9Cc379&_%%ZF#}>KRsKFXFX=Zm!X@I#d61&)7hm
ziy`Nwoedc8cloCtzJPTw_ZbTD_S;G6gRami#49;|tXdd8AQQb{{MtVvY_y!zZ`{ah
ztPjsy+Ux%(YCaDtjwuWhQSk3GJfAuM7t_<=P4U#U3yKG5aCpX_n=Z0X$=vs0D@T{`
z<Z<-pm`q)<rPck87`8h^lN2V;Sq!4*auXUGiZMOwIyO7%w0#GG-bBNbE;enU2bp?9
ze}KmgEo9)#@_lo`dj0eb3c6Q{tBdN`)BGPJ1%-i#s0XeW0qPI;^cW}0U>$x-jOe(*
zKg|rd5|2KQ9S9jnA5pnl16jb9cgtoKtW<3KB#c!QyYs4vnV;4sgrDkIAy?jd2pQ%1
zUer@Lbez@VU2_BKyVmGdF^t$*m~UySryn(7Q*;6A0g10B=HPwNU@wCHDz;BG>PEX8
zZ2WTfGHpNmnZid%kR)>T?%jI(^$y$aBP@<D46B<$PrN?x+~J>Gc$Ge%fNPsQLdG$O
z8s*(1Bdasc&f$(foK@tkHGCx;7(p;?)%=Jn(a-=`B~aM6C!4N>cRn)cO6zsTfb8b_
zicC2y<4NNUH_{`6sPa&40rAuCh&SAx2U|T3ZIk(3l0*W<goedg&Pd!COo*WM<(98F
zxbzC9lO&j?R~tNycaE-J8^Ww>iv7M%ZuE-TV>!^}>TaxxL;T3BjqaHA-JuHWXlK+3
z>$AdHlNze0agPIqtez{np%z!BG(^-m7m#~z^}5!mdvmJ-G2b_0rZ|_eEi$%HE3vRJ
z#FNc-nNHs@ESAqkvF|@z#MqYFuXQ+gPDoNx1)wPT_+Sy<{IQ1ykmV*D_4iBtonI$8
z#ZZ|f;I@CTyc;kndVK1T5>$vxfdd{`;^Kv&W%hozU;N-A2!U0GrVA^aYMTagyLY2C
zSVMEz(;ea^_LgtSV1yem7uff$Uw{tbSR>>6t<Gm}L1lpoWNwUzNd26M1;R|RE~EBz
zm;+llTUVtgx7E~*={)7jaAvd;j^9cIg1qSd0-y9&?$4^}IFVDbc44I*@P6z=6q~pG
z#g{lbn^;kMJVT?wp_+jHj_e@_<Z^$y^3~&AdSuqj8IBDTt?2||Oh#jRL6<0*zEE}|
zz|&RPM;|xeP?wqDDRgFTmw$snq^Ph^!x|`U<#{V7tK`wCz9Ma8#QGc{YV&j%kep=m
z@$`YAXEQ!2sp(Wrgq2sT+wG_jC{r=TL<h5FK7Atax<+ekwD*10^m9e-s~R0V!>_hk
z;J3@Xr@`&VqVl1-&P7o58hpdj?S*=m+SIw#V2F@0xq5EW#hwh$t5d5U^GzE`T(oGX
z;~VvM+S{}-<;^(W**L*8cYh@Yo=E1Lwq;B4Sg~E0@1T;WALxr`-z(OoW?Np@Pq7R2
zdn4$}XcE)ii#mU`?HK%RnPZ~&3(-zD>v8Kd5_5OZCtnABI^v<hxw0|t;20bBxo8tZ
zv3|vF@=|i!Q}ctTRz4;NzQ%5Bi3a3THpam^&L=_t(;6V0J+-!fXdn@oDK9BGXJ5G*
zzF<>S`b)()(Dt9#uDreFmy44BwVdGqSm!-DJ{}pF)H-io%+;1V0_jAep!ggU%jolR
zVC@iAW+P;Hl}1^>dVo4`#4t@?vdI&HOTl386APx^wAFT00sp%fgbJNb8{XZ`z%bVA
z=6w4YifOl#eh2?CvZbn<<wpq_Bnr7X=~8exEi70_A5?96IIiqf;YwJXUD2Z&kVDMo
zX6in7YDLaVlFv6+3*`<TCHsM_w7(2CGPzAdQ6LgZb>0o<y104yoi;bQCG(al6iedo
z%TCGc^DA^%;W@E%E+Un|8dm}cv{pbM<f;FLJGQJOO~3`aT^SJ@ha&2{9P@C^dsXt)
zgh%HT4@+L8NgtH_utQznlNi(#XK}ewkcHYhTr}OOaJZCy2>zJI`6Ddwus_MRnqEdv
z9JjGnAg`>A9Vphxo^<-{=Nsf4I`#`PLTZ{XA5!&0-~AtZV7PC%G3=Jl{Fe3=Hx6$^
zAGoS~bS~fLIe!%v2@ky6#e3a23D;PVswTV5el-!@KCiJV($sOw)={gT`6rJR#%^5Z
zU4ops&|oJl`b^Wwko~@1OR<sG+4T2cg5CV<-jV96?+e<l0iV9|`XFexBe-hdOgs^z
z{?`DBN2wLYJjMar{+Dgz#Z6BP{pbtIvhZ%SX`$zZ*BL^#&wMYJDY+ZL#k_sF%Z}Z@
zg>wA{_S{9iYW$-E?||-B{>Q6OVIs)X3lMgnjYYmhTA%~zen}Uzo0TA@Nwn?Sn&>^h
z+z&NBL0#*c4_stbFISl(VT=?Qj`{gSbU6c5FzP^^VoCn9X8!S;9z*XnTpt(6eqCVV
zcfb6$i;OQZ%r?Z?-IDn~{U`Ajl57nOl5Vdo+cM(cJ|qDBLU0|VW3|-a#ndh=JG_aW
zW)rUisStUlPrHKOMvoR3zE8b~KD3e-I(pYa7?9|u4PwWTK`bNu-I}&-;OXxz=*f!Y
z%F3N|n`Fwl&`~>}2;^Dj=r^X~=1+@m=3+O{Q!25v#5rnHPcEp9nb+UW!hA>l;flIh
zeJlYr>;G7#Zd(#`Fygv&YGwr4&sj{9w)F<Y?A(Ut2y>mGnctKBGy49yh+%eb1r5s0
zMnYnqFI}bmo&|FKo{5t!9Kaf>#~vI1<3Zf+r68n;kd+;N2V+rXCnt6)phH4}df3`G
z<NrON#rV3{;Hl03cIOTw6+DLhZyo)(^#5P}TV#EuXk%0U<HtO1>5m_Hb@laz=TiS|
zQaQQ?kvk>zU4Y&GftkFltjN!g!&3$2vuj7b&<G88_oCz7|Jozvd#5K3;Qny|7&GJk
z0)MpE=G6aAa?FmiO_cS&-?9M+uW#SH2wpDBlhT^M26O&zQ~8~6U<4f<tZHHLRqTQd
z9U~*Qa{MlttJrTy!P)=hf9}4A=X>Skj`S<45J&*J#5oLc&MzB=vvadw<P}r?(P8-a
za=!o%nc%<N)Uzj_#v{OU`uYz>?mq^{{*N-eJ^8;u8UK{TC;VIc-}tqEZ&?MN5=?6l
zEktHlGz=9J^yyjm#ZS(y_!Jfv=Ggs>Q2Y0Xr!|JJNm%Sgn3(BArgWDPk={k2PyGGx
z%5AZUeE^DeVPQZ3%<T<#%HHOM`J9HQseQGoatyipCB6r`cd{x}3){pk_L=G<XN!vq
z7gQM6@V_;8Yn<Xt7w!@1IF0tN1-Tp`rY+$*?AgU63RG`<9~s+wfj$?AR!%hkX^6ZM
zmaKrwh9vp8z~GCwj3i&Ls@zf2TryBv>WN07@oxXs=i5T-J}nzG0ot|6p1o;HFPHMV
zRyP-cbG9p5UaE8#c>!5ahwd2^ol0Kwm1+(u@pCV`=>3KNMqnW47~lF&)yzc|S!a*e
zGrIWqmH&Rr@5a?0C{_*(q(mOm{m2m-Wr2j*oG#pTF*k;NeVW#Ns7k=&zI%Qi7Qw2@
z1=!OxXL`jiEt2l*+Y&~EgHgew@yQ_q*pl9|R?U=n*yqlij7zOzS=mN=k@TR!ZvsM5
z_LSG)`p@bu4j!=%vno>KGuRzVhv>XAB8O53*!z)d0-fOl%?5qwtp+G7qwS>mhBOo=
z-@&uJ)-jv@iKY6WNdD82ICIqWK-M{)kpIjTpghCZ8OM=G;cdj;H$fj^=fOdo7&7I~
z)!R23<f?tH$^sFMcj4sRE=&VKWhpR!?Za*P5MtLcNH{g;WEEf@Ld4T`+q-+2TbvSC
zOPl-QCeaRKtSFy5-qtq)vb|08QBiE~F8ftH*NLiTl1$Pjj;H~?l*#91%oR&DwRn9v
zI)cM|eaLs`ix#Ec$S_p18bU%^+;0_!mece53A*fN*j`+g@w*gjEj0`<4OSg1S^o-N
zb>wtgVjr9`oQQQ13Qvn}nGhH`3|fv!>qr<|k*`qLzdxhufS$2$Q1a%4G1biF)ku~x
z(vDbCICjG@`UWRVK8M;G&zC`-q2A!^pB*n7Uo5Kl!xkrpR8zlPtUROn6=AY<b0iKx
z<8XI`qQ5=e&o-XFA7nFlYLw3*3-_wNtF(aHgWkr_zM%vREY%Z{eO?m|OoM^OZS-AQ
zC<2leEFGQfS4q(VeDR=sZ`8N+<o@+t5I0+3(1DT-<8J4u260;6^SakY(D|v_U~4!-
zX<*~FyG;jg<pdwZjF{uFs^(mO>}%fEj*aNkc!-pIbWn*#wmA7y5_r*IKut?3zx^1Z
zj5qxQe;=!Bhj`G(+?0bL86Wq{aOVl-^i<rpx*Y=t%DbcqLYM4S#}CEqkdIV+N$ihO
zH8MvaeP!mnk(gf383|#>P1B)K1ny>rvI+3wVXPnjP<%UByH;?vTv{u^V=^|~k$esz
zdUT$BO~!B3BA3WPCTrVonrgCWKAEsBZpzoMX9dc!7OR+7`MamHzT(#HjF)vYa>rtc
zIPQF9oco2jkpMRmh{@s6heGXOw0m^g-cQ^B=1g=t`^(s`1*tpjgTv=HyX~%gq^WCz
z3J3#y@pYaHUd3nKvMzoU;SDMtHR+?rbJwmyjKq?idY@6@QO99tQY>GCyDiBGdi>S}
zve6!QvGa;OE9D(=9(~GOMfmh?f$Z%@%TR1R!%~|aFV~dS>c@Xwlh;b4ym)e!{%99d
zIjhhMEdC=EC#3fx09M0$QZmRl(JYq#<44CL=w?DwBAqIn2B8?T5DMhS(}ukNi;;!;
z?v|*nGJYN*<6x)?kz}9#h~(&3TlwI;O9yfN$eM6f?SQ!&e)U*!gM50{oNbv0O9dh~
zp|+=Kz9#`e^0!eE((7{0m}+xH{8Z%QO6^s9mEG9=`L;pp<MOKM!7`Zk4`=)JdIeFy
zn+o`m;>)sfLHGO>x5#9V5p|xX1DK|%HAZlT-X_rkukfYciiZ`PpmN1UO>NT0^p&DC
zHv_PG+th)A&{NrRJVnl5&fP=UQk!M#s{ujev%C&|Sz}(=dy&1j&<$w*8&nAJ=3+Yo
zs&Oo@W8I*wuBrZM@UBxK&=PgV!`_d^+}Y&h*^Xmq7KSZHE^sqdZ&FKIcGO95-W<X~
znd5woysMVtPdrtW`)gaG$`*|%SrTFZ$2Ae~e3hde4dfxsWOXhdqq`i}+Snx9CxNg>
zP{rAH9WRmWl9;sg9opw|xF{pd7dqWvP>YJ0t0-rUABrRsH!;0_O0T+;^0u=WZQ*)M
z3-})PuZI%DgggB;1=fAZ8&grie7UFgJ-BVvz>A-@w*Yw0b$p2hg*V=b3g{_l*c=}}
z407TDVm2f<A<wi~<U?b~xTP}^==LiBWNx}2McL+e)1Gi-%ulqJTUS5ziZW)VV(vp`
zQfUer4hufX4etmOO21)326b4MSxiw_VYdDdFvodq^97#h5d?~)Yn4QBvmlVvQ{}G8
zNdEx}Sp#*_M`JbC*ZZbDH!PNX&!HpV0kk@!?0D;DFA2>=<&HyyCoLv<<=hnK0*>r|
ziU|Ka9r?n;J}Ohi&xJ_U=2wyJ8X2SP#OQc$*tCw-Yqr--{2uS<smB&<*=<%6C#q<S
z>v)92>rs)Qlhc?)94qm5EQK?_i6rrSH;Kow8rK+dt7w=(g`3xp+y1mL+iC{lX)hMN
z&t~>C%i79y7s;;ks<OW)0DiR(ym3cl`ThiAWYcIuvRws1?XQ^91B>n?=zuP>!SU?I
z6Y7PSpd??e&{Ii_<SI;|g}pU;w+99<!t!sk{F7C=zvUg{Ot(i#t?UhAWU<MNJHCGx
z^!LbK#~OnryDt05pr<9boOK4HgA8kx>@gCbNr{^di(PM3_ZdU&@6sF);DTHa=a5N4
zK)TZjb?eG~EClm)#;BAMxo$oMP!Op8K+ST+y(*?zv&{3KSPyb#1NWCMekkkB1V;-1
zeJX%R^pbOJnnSfol}GuuD#d3v?fAw!AA7bv8`F`S6XgN%ljkl4wDA&Zp&$qw8(1x8
zrZo<ZKA86-79CsK!dCdxTK~qLbYP5<f^I`Y?r<H!4+0kL=oAS;1y5m<d1ZwG!hb!v
zP+3U6f<%b!vaxlJ#Hmw-B2}2LgSkBZ@K)pfP&Zn`n>GWmIvbw3aYoAlu#5OGp);hY
z{8%122|eO|spnL69cf9n$GX3u!Y1G;951t1G@E)uVJ8wvtPgdzE)1fEzESdoXUWDH
zL!Eubv(8WGHi~pV)`a_iz2b6e$C60%LH`!P$Nq%tsAe<DL12c}aS?yz<xe#vA;}-O
z5?=*)fTTOVPTkRYt%U}t(ogf5{Q6tMG0BM9f8~pafiiENuB=oD$w#@p(YSrPcATMo
zmN9`sI-FFrGcPfm>5jl8KU-EHJkbnwWqGKYfv3Vv4ltokh$M}B8*k0#GTW`Z1L@@N
z$zN+v(du+Nt052o1o<Q;T};nC4&D^2<q%IMBGRCE@cx<MAy}vV{ltYqTk$Qb|D168
zM;YiqG?Njz8q4*V1eCuk%j)UwXJ<t`P3tV@ds0IulR?7CmSeeTx$*bz-QO-5f;!Fm
zY9ee2=ea{P*K!dI0it{Rc~l0)nuI+L@H|$QE85&97a%_BiYy-ZdH_VVce<6u)q^>n
z$i|FFrdlOv_KVW9C_w40REU!V@8P(6BDoK;u_eEHt0!NRS~H^p7NJZns;Y8_oqaKf
z+$l7XVe=YVD&`+Gj)~>tTR-8EpvnphMzL~XBpPVQHWs~hH4&!3ZQ~H*kB>@Pi+D})
zR2%POkRdZa2~68d4Xs^KNLemax>Xwn87W`;&wgyc<zkA(cRqRXLNhwF5J79JtL9Qi
zcvo7p_&e9&tUdncYB8w}9B#x@L#d8gfjdM}zk-2V+(D$Ia1yUCL06oQCZX-NSFfl&
z!c}(4%tkxlNj5dbuV~`T`HCxGYCKx6goyX4S_NnFi-_Le{o0FPMHjg)F1^IL5pd`_
zSSb+gL5E#@1xE#)d#e^U)<KMiBhHn<;TxOLVNs)Aru8glVNGaOc^`M*`3|C+WtCJ^
z80s@}Z2R7N&FE5eIcpHtZX*-%twjX4NxdfU>zAo_JY=z%*BkzR^>u%URCXFE7M@UC
z&^3S<4J9agX7|P4`Y`me_}Pl9D-I5Py_Wk=%-_!@(f)?}hEqPxw>Ze#2fq&NLiLSf
zpxQZXT+A>J^IUDWaogL*>v{S0PMw^dp>c)z2YLo4R)4Uxifu)oo^i<G89n_tX3@Nz
z*JIG2j<n{f2u4SNVKH~;&-1Q<Jcr|!B4lnEB9OO;XSqRdn9t<wL&UA$ylP#{XIcu<
zzUWLxRrPIy5|3r|;D?eJ*q0%LdsvV~k}^T@j#LMIV7N?pQENA$daFme8nK0|=r`2O
zty9l=4>aQ6nFz&OK;3U;AEGZ7vKKCwC)>q&5V<pJ0IY3Oi8Hyo>C5whF|P_TD17(0
zitoWDtdm>6k60B%Qj{B4l#+i2J?bOh`UMkuAE?!xlUbgYYI}R$me_S_ee$2n&Mz!9
z_<Qkj*`QCB&5?US0w$8z`+!^mGiziTb|O-5@%AG?WwU-28#!O^n|^s@a@k;AELDAy
z-OEse_P=O*%dj|>wrg}JBw;65LV{cH;O-g-?(PsA24~R0k`N$xaJS$#=-?JKxJ%HW
z12Z@bFoS)Q>}S8<bL7W4*L6<+o4Km1yQ{0K>RxNztJd48sW@$5&d&OPLCrJefP=rA
zQKYYo*dB8+>PzHd28VSFRIABy*~@WWMn?nE;|g*iZ6`ZM*kmZ`{C;Oz!3IsIG#p^J
z%*E)<mj_3<)(awLoNnJ3HH35k>6)Z+y){VISUXsAQFhyIg0de}rX#gI{tNfK9g*B%
z06UdY*HF1i)}uys5FQmmcoo5<Bk~&8<)B7yIv}G=0ZXW-A#Z@Hjq;zkuve=b9YU1U
zTlD)txpk{V`9JS$zSP+zO&JjUJw2=bnV$QRTlfhY%P^E7i=_b}w5YR7;?iFwOB83_
zq;eG$Le$#+QO^G{L-5?<cI(4*{2@hW;8q=S{|t9sYF9|=(@N^JHI6{W!*uqHCOE*r
zVoG=}dQ}z8^#hu|K4Q!L=@ll-_I&Eo3+bnqUI+^feG&qdN*gqJ9dYRHx}~(QR8d&Q
zlsjoS`HKEU(_sL=PbfYm=?L<*%Upo?i=!wPEIa4->=Em~QaI`)O2?YT^9d)m-27~*
z2*XH9-weHW^dw@q-cc`1p2bKf_GVByrx~~CwPK|?uz3z0Bex#j=MW^ZO%}H+pe$p2
zIq?Akj-T2$X0E@HapTq2Fo^$<SL#6Gz?Ky1=sr58YYW-#v!YMlXj6!fZW(&GQ6=Mk
z+wXMPN2DH-CG3=4P~>Y&%EC0>B)bKH8^^ZDS#;DnnC~O>BjRVT9G06X`)+$5>J|4y
zR1zwglh4o8!{_tE)mXJ0yzMK#JO0o(;+VHqjHqn*)Yc^b&Eh4MV^BgrfG>z0$+qKC
zRFp(uoA3=&mTzppT7{)rqdbs5gef%4EcQRaVCf7R1hF%IabL@y5M+?@{b=5r`^F9z
zE_HU*30_~T8h_tT8n`AVH@ca56bt8RPE<elNm<y<!f55P>wWf#Jp`W+v}!>8{i@18
zMGv=6OY2UM%`SpT#npD^D8*Gyq_tK+ovJS3E^EHYaDv>*V<3<fheL-^5i(<BA$SGC
zW5@xbWr?m^EW$YYBYjh{p6q%GIwOHkF0&=&YxW!hCIm4^5Acgw!A?GrtJ0!Bym(81
zU}kKhF?U*y%%rT)O|6PseOT$RaNmB%%j3a{+_pCf6NTfPLK7toJyJ50!AhBB*lETl
zmxKYU2pS@&mv#}7r*;0Fl+tW%2%6oWluPBDRLXjuUIMNhFmJRhXW!WPw8pclmh}Tb
ztv-CqhA0O!68vZKqVBCyKo5H#FP|YBBd4#tm8PyP%S=VS_HE=YV{RrF*1W^%Y~hFu
zDi6J1nc}?*F8jLBJ@Cw~UMbw!dAD0c<jAtLB6rHsT{q-K&**5|iWA|-J$gE-yC{i@
zrf-<M;bF$HRL#AEsYGhKwQ<<wr~J}u6y2?4gxq^(DQ=_tu;8Lix(15u9ub$$!lKUp
zrdeD0`Rg{O*Xz4)gjH6$^MqVV_l}NN9r6tV7}7Ko-gZW6EyS;#70M-3PJC{m)JslL
zkN2lI3dxzecS2+?S`$pi#v3NTJ&&<J_cig$_V#rd<KDp|3z0K?yl9d;B~5f{KHhkB
zycxXAF%Iomvc0iK@ZExS=oQfU%=e%5>JjZ{>{Qq$1A7ikiK#<xSmdEM8xq_@XKy7F
zh#)y}W|Xw$ybr1js?L%ZFQ|`jEO$d+(pe?Fk0<2SWK;ZakZI;q(O2BM_+3tsaI}2r
z+x3`-P4<{uj8@NLlL4R!e&G?IpK;_3TT=>;C7Q6KxZdeEnYeE8^$4`oV7_EurD-oo
zjIVz~gYP~gYADwQ9*7Oalf?)fG5Q=9>bfrVX5G!Lz&Jd=OJ6yB6?4>(y?l>o=KL57
zCIlSH3}{b$wVNX7`O_yZbBX$MNQnE%28DYx9;$pWvhzp#xrOp*Y-HxR3u{lRn^xsn
z8)%G^U8dMvdsD^t@+sbAf9XL}K+cxmq!l6A`GEjo(Q^vIZ`riEPDW4rU<hNKs$wap
z&W4WKbFwi6x~K<JcDy3gi&!agrlVzR8TS^FqOSXOq&-zz5vQ5XZ2oYyz|`;RF-`ol
zQf~V*c?GdIzxA|#u%>TlEJ89tPrJKexVZv%&^)?~cK+;qqR3vK#p&uRX_eSq|4~!C
z(%X|wZ+u7YwCco0?os{FK4aAoLfOO=k!#1v{zm^BJNxN$!}Zjt)KOXGP#QhSx=^E}
zu~s(w>5QCdf{C`K^_IXeM(8OR>RH*i%^&FGXC!VblLpM3T(HPo#PzgTZWF)tw4XL^
zd=Yexs5ds776qdgfevtYF<Tj#Y3{NP`+ND@vi}2uh(BS+#;2&LblxRX{w*G#&v;R^
zB8k5uI*9Xzr?p-d%gzG#7)h1leh}9sT@~-Yffv}{32tK!Xpq1CRxb81{npR>H;4BR
z;AXc-pF63DWmG>$WoRD@`H*j~Pc=UzT3HDl)Op(f>D8f3uU4*!?D?*T^wU0j?=Q+D
zw<ON3iP}p#Mwq;RxWh)wj8RWNhW{X(&ku+uZfF!cD@u~)cvKKhDJlvIw^C)5XpXjw
z`BU&iH<9YtV9X0N0Q|p?(*HtX!+PH8SkohYeYduE6#sV-1%>}E^zXII7#~EV(dNeF
z->RZNe@@=f<;KOwqvn1m^88b5ac%w~X?`B@?`<<}3C#JEn*UEAvaSQ|Z%|mpy3W9a
zis(NTQ7;aoPn-Ao_fqJU_RF~csT0i*Jx%!k{g*@IhaG2g9JwRn^Oj=DR=FftY%Cv6
zE9DwTnH$@G-54A_=S25BaNr<3zGv;|2{HwRAyQ^GWxTJ{ln#%Nh*m6Bn$qs8IYaNi
z6*;wN?*0p=p{v-KFI{<<-uza`Bb9j2g+Y${-WUw>SD9tYUi10z(mV824eJwfv>=03
zI0tG7gZ9Qib|1pUPhV@{7+`(U7xf`ow}H-34X9c=Vf(H5yu8Goe?$GQye#sYTMmEX
zWF2mT6)<{6o5=P0$Fu%X+`<vQe{ej}r@9sw{(S@2RhrtfrynZ6@K{RN7P>qmK!7zm
z@ez%UC&*)rWv=<sx=seq<wX=z51x$W<fR<tgM7Ku6Omxw&FFcbTgWAG>rl$)2-$gV
z->blr7v-N$OCd1Y-YUuKN4#ZYjC!009{fDoAqCo;T(4t&Ki*}=P$+aTeUKKAFb7ET
z=9TJ<g#^9{iym@dAwhvTn!y?p+0p&vE(~qej|0MHGJYrx_1pxn67!QjlQOuDV>AGB
z;rj9QDJUe)HKTi%q4i++`^}~M;Gn%L!u-qP67Pga`h;VM+2p+m2V$1v&nK2m&Z0+%
z$eXTx?M^9dKD6%I365F>#?~6nmzagO92<B9cnPIM^WnvqmC`!u5@j0&q@5ZbL<t4A
ziwSf2hcLdFKYZ?q{5x_DKAbyCO$@8w+uPr}5Y3OZQC}&klDv6VZ-kYOlkyB%rIe36
z8qS~H)O<oEDC^q&m$Pkvtd0q(-t=l03o5`%_Aa&9<9%Zhu;PfuhIO~E#&Ld^YE;$|
zOqI~;NIS{56IQ3;A~>8#<W(N~hPwCCd@$zyS;?5kHGt+!g7SOZOwm&V<7Lj!w^Tk_
z6;CLVA39T}^`sni43!6mahXE|+(4JQI$LNCIh`xv7#G)O`-^~&-<E}HZ=y!p&UpOz
zlarl+>7Or6(O$atJW!zL8r>?$>93<`lh4qsXY;TAbmtS#Xk(L8ZWFys+RMBT3@Nl2
ze%xMb!5{jQiAGlKsZL^q$3RdlPi3!p`7HSBisKQxj)h<2g<9~mV`N6#?H(z6vObsT
z>fn|d<{1hTcpToSzBWVGmp)VqF*`Yg-}?G>>wc;O%p||@)YvCJc`;D6ym{VI<>PV;
z$2Qwn0$B&Ie*FN`e&{v!Yr4^F6Y^F%t(hnO(+&f(F1K2x<w$GQ3F<iM^AoDg=~!KN
z=KKiRfOU895#_j?3+@&I54uib^tLCMfqN9jK3Zs7tYgen<@91=#@$@iTevd1YwMZa
z1p?OHw2AjH_1gz7kNxJ4@SP{n^X#nIbLFRYfijD1xdyo=bG%65&NTOoQ9V`QxvtBn
z&HJS4-a~yrf?&?E=v%j-@0Y87y!tp``cB5Mto|A4^YkDB%PnIN)v&jU`aVB4(LCp}
zNbE>32C<;)^WZhoh{ijp7iL30T}(&kM+Xvf)_sW&Z>#WZc2OdzZ)_OpbWSC2q98qL
zzrncuXui*E`{RE>#spT$hfwgvwD+{u=2#>PLAjuOyq%Tx2Z`pz>>$irQ<%(UjF>N?
zlDZ<i<P+-Aa#$7Px2b0FFi7%w4+aV6`{%(=+6TX0wr8a{30BNNLuwDD)oL{_P8B=v
zuqjU;EFJAdiYbp8rH~DQ0#?P^PThk{{op3z;!ZP+OYrh9A{XLt4zu@1UGpThhs=f;
z*)6r4gy%;CU3zBQDv(1qF4Xc&noAw@08g+m>$VK9Ed3_3!q=M#x-r{v^&@8|JD9Y5
z5YKG*no`A2?n{H^V8=+P8;0-N0r#bs+Ild@vcf!rw)o$6iZkykxf0|%C7oBIH&M-E
zBmUlh(ay`2R(&^gmzqC5tP4PTDE;kCJ6`RuC?dLc|B|6fxI2lANT}spYZd8ANWD0q
zuJa_XRqkZ<^TFqp_F;lp0_A&m8qAl5$Q^<|lSu^OMBBT0&y+z(y{HXykL7!gessv1
zEKuObb$4)?+IGgP=hEjo>%?5uc|j0nIfQsm4_){R<n0&jJHYW0ct$rIiv0^g?ZWM#
z_j-PoYYAM_?qhx9hJXJ24Ml8?3y(7dQ}1w<w%h4R@amFG!NogBivEoz5va2<F(Kt!
zllMwaUk~bJZcKitUMbR@1Gv$x<GGyr!=y8*ZRv<0`N?*kH3NYj(dp`kSc5>C%#xC&
zN34NKszIp4;BXxn_GE98j5N|?E^tg{;KgR$r&!GKEp0<BpR=yZr*{36O5Y6I>B_mD
zU23clH_=7K7wzFs+`#J9(2C-tXw4SK=<S|Oxu;5`W0e(n3QVirv-RFz2D22E$6i^S
zL4mYq($2QAMGbi}O{b~k7qZ;3=T>(JS@PKzBL|RphgopA7mJK|zHftVke6IhTzaN_
z_cog{as5*^wHkqUH5cP1y8>&m1@*7u@i&f5=fb=(>c!pm@gDQ)&Tp$4I*`ic#~l+?
zagB;a)X&i2<EyzXjF%8{xq8)+32134M0Ac13W@n%S~Y;Y3Ed?88O^*5x{(#w5zJ)v
z70sieP)49Ge7b-2!^x2Q6V>IutaDyX{LLmmcY-RXrf?lBMedlhZJu_Yl>>&f(x=OK
zOCt+!Gn!BAc;3p<LiPrTk;*Qsf+agDN(_glf*B0BHUkuhnh85<_wAfr@%Kamvt9*6
z26iP8o4fD;1Cmsk77&};C3|(yPHQH!I^2Pk7SZbgs%i`CF{l21K;KUxKj0W)y;fZ1
zx;*QtZmC249mrVAaTcdWPrdko{u&=XfV(AqZ$S<l_PE{s=<g;fce}Ce)+~cXdT?uM
z1{HqISq!v4AZkO!bqceVFfv-PnIZh}1a7BC-<_8BwJn{gB!@Y$S;Bs_*9PwetXb=Q
zi%zGLm}|dgFQ?54k|`bU48Lwmxw13Unx^<?ysnl7gZ;AtZ&9Z(hbkVQV=_=Xa<2T`
z_afH+kTC4$`fJ~T_bti`(%R<Hb@Y*9*#XjiCwF5G#It*f*@P3=W=i_tI;^OIfZM%E
zd+h9RYgpUgiWrPjb?|5Gq%%nEeH+swu^ixILcQ`dPMdR3h*RA50t>DFaw8AV$|jTB
z3a8+j3;D`*1?`l2J}w!&L}zJJ)Njy2EoUrBEK@OBxJ>lg&E-jzpj=F!FRNX9b9RS`
zEbxs&mOsJc<G^u_1+>kVshMC_mY5&sC}VJ$+{45<jPw??u)z5iG~H@zhPpf&@6r>u
zXoli&M?*ltm`=Co-i@j^lH3d|j{10wzd*?qvb+DniugiH<E4`EcbZR|IfW$~<T5+&
zr*Qn5GP%D<oe4p^V@E%Z`h;7z?*O%~D;srQa5d7NRka9vO+HNj5bj}07&VBz)67@?
z%)Z<GNeQO1M%>dMW9IgH5CQgFD2ZA6Zd*k@a~)A5{%Yb%+{f5GJ7n|n>jsE4EI+PH
z(Fvm>mBsjo+z*4#J9*N+m2hvNbR1zj6e;4Cz46n&B*sDuYX2y0R^5pe(=@B=?iHJ^
zmr7%Ao#hRFeLp`=+N!d@8;QBj;$U%bXu1_{;A&Wa{aABG=|PEt#9%LYxLN(+rs=z(
zlEwr%h&?8^-?VQu8io@%GkeizDD8aw5XFY2LnX^@=#UCL+YK5?>)=hTJ2pb%V^+!5
zTEWD*At?rCZ{x4!cVz7_U=V1I?RPr0y%L>zEVOL^&j&nzB?z^q)EuYRF>%c5@D6IO
z1{<_SFu|*>>E9EKbJl6KMdWhop7OCxU?Y(wS7R8PG$uzpKMi}nIwkw5fI6{f)MJkJ
zfeT`u!WS9H<Jh1)x%;<mCyTG2Am9qNh(hFH(Gr;BA8E)5y1TMd$yaeeYcD6B`nR_o
zU!3=^1z~D|+PYG%H%sYqUIzP}?twFi&t1Elje9?ddzg?YYlv-89jJ}hV1D5dR;zc9
z?T{Mh@B*&w-VA$4Z_${-+M<rRMGP3%ih{<$ZKCgASCv{e%$psI0`HH4tjByYbd?@O
zqC6}RAr|Q<R_CUcui_LbZg~ZU6w^BKui8=w>Wa7zH{YHI9Ga21@dl&H$XNGQ;^?6f
z2tu}&ir}^xC)O}6SZRd*7)v{7s`y^=36ADCQdXkn=IDM56EnVsH*2VQ#xzr9JjNlM
zwMxg<TcxZCy-T5Vz{LL1EsdEYE+adV(3!UNc<R&p2nQ1~wg;nCn&<^G?9xd_Upz?S
zh_KTPt#0l%dRK4(1@(s+D<8^z+{4z>G^6DXNJU**TeuflKmx|cK2h*9v$N*Trx%%8
z?CWDKr*&{@X2shF8%pwov$w`0N`?Js`|k47Jo-y8c{7An=u4XYo?_0m*zt?E#tHJB
zqXFes(0=aSsu#-9$y&fZg}87(Kd4iW_#F1v6P$gyssJXyrz{jJ<R)_QG#&H7s1VP>
z%w}{}RwXdqE`?Uc3HF_xua;{#Y|zAeGI3x5HoCk#@mTEIUIEK)sx58GsqqZ|c{HhB
z*52q9)5lbDo#n;l5CiiuJW)AmzUIJ$G*@t6pf|62()wuAPwKIWevMdqFOCFER)&(j
zbOt|)ozK$B#vT+bkXIoimbI67ZSPdR98J8MXgew|W)V~_HC_;m``D9G3q)YA-b@e$
zqvBOA*1E!|Dj8n$2S;6%`>+!al2IYW&>tx*MIe1puqxE-dV*kq_c8BLtr+;pCWSze
zH`PcwmhUT@!ua%LRaw;+^aP!?*$00j1xh1Yy_Ac5c<r<mF`$}{e@eY71bdI1d?L8!
z+G6&FK2A#UWx>(V`)AA<Q+QZVImEBg(G)ITscg!LeFt1S_hmDUp6hT9Z(IRmlU^m0
zWZ?JredNL+rY;p-_o@#|_v{ObiV~6%w)f#hC~ho2Z;O=>i!u`fImGthImqoX5sPAT
zi?bkYN(&IF${a!;=LlN~;gXvw0ru9`*%C2;iX{Fvo?7uKh3n%omOFh}lN~1-sJ;e}
z52AoYacK!EHO&vM^MeM_Ftl@)1XN$KP<YWXzVG7$j^mT>@0byBV@jF*IX~tar*(e~
zoCk97h`mlA4IpY}cN31IM|Vm2*2lbOpWOF2_ejx;-)IOCyW1{^N(w)lQSfj)QBMxY
ze#h~dL3})1gx0=V=vo0OPR@_D&Xc`;@3l7!ufnzZs(b4<wb%F2PLI(3qrzmVg2&H!
za=j93(jTtyq4YP1Ca%!YESu+ZnQ9C6ye98=z9hgts|AeIlTIv@cGe`@5*Y_vRqYuH
zCb)h!$7=gBCeO%5ANRQ{$z!FE?bhVMsLGsJ<A-vUx1|=9EQ}s=^8PbVtt^WOC-!rh
zY-;EA@Y^e~L?~|+_8vszX|)^_H&<Eti6s{VoUi(*iD}Ra2zZ;@d?{~NmgXa2WIR6Q
zs>H-2@}nTAx!$ci0gLaJ2$YW(n2uz%$9&Jo+T@K+w&<SY`1Nh_-NN!yAK~$=5IZ26
z>n-x*6DpDK><v}B?*f{vzF+t<ov8j}8$mUVh;~}mF|$FW5iOujhTD*PJ#2Pp^ggo(
z{GsSby`jJCd-rc6r)Mr~SoCt&G>)wKygcy>M?sH^egi?hRqwPIzkiSQz|Vxj=&r<N
z4~P#o{88tq4}9iAD5_xip`*2YtoKh+gObbWv?YLK-I2os75y4g{w!<F%RA)-Dw)#2
zfqc?KllIuRtrsOb+`}l(!uc!9UeXx_T^;NtiQSRmvoS50Jai$Kh`9b-v=0J%#WWp!
zB9;Rkrey-)c)nxZRc*|Rd^)H-u8|TlzxBWaISeJA1GiN7)uIrT{tbuZKXn%2^_t}F
zku#`%!W6D%eV3XFZ(C46TO7|Mla=*=n=?WkbhmAZ%b0FIp~isL!8Td$f&c1%Tf2nm
zLBX4HELA!9Hc}i=|G3`ze7l#!;5SU5+LuA>%N<;$ou$fIBPd9|)_Ob0cG+uFMNflp
zidiNdL?%+X!s){(93n)jqE>p^M?9u9wX%}pyGO-xrY@Vj_^tC7Ttw017LAmPre!|$
zE$40P*k%L8K90Bky}!4qo5`4Eqb|@_gQMREVCxin@pgIxzc|9xMr<iX2V~oV>)7DW
z9+ss3iZe#SX>>yNn<pxxwo|~wyVY>Q%7=Rg*$!U%AmJbW5=U0bR!pgLb`quCKC84r
z35q=_(5~!c--JIH&8n=#<V7zzNtX7kb(g2)Ce+iu7~LPTPU^1M1q$ZY2)yrTO;{IO
z?OpQ>h=(k8H5;txlNaL5YQ_0{eXDhmV1Pf|z;$~v1?HaQoqONXl*l9}s^74kj*=(*
z7Ldw=Hng_)e&WaLtyH->#Gn~W$i3Tn6Y}xsTD>B0Udg$c=K!I4?tlA|0lY9C)0}gB
zDq>1JbL6J`OH&+v%aDy?W|kLgMT7Yv#dGuV>DfVNuct-Y%P<=kA>SWg`Wx^|wZ@?6
zpJ1b(2rk+Lg-sa!!R|!M;*@|b$Hk9}2f=6#+^Vi~pw7R6_DS$uZJ+Z_HWbhwaP<V^
z8lf}b_R@gjtE7GO8BJ~l#){A3^uaQ4<&+67smIs0`JG-h#byc_YuL$?1dCG4f}5-i
zRH&_5bg^(uA4OjhH?n=gcbZ!qW(Ae9V0q`f-~Mvx+pfm3N(#w3CU+A0AqM#rS9Q6*
z{UE1~=2%cE=N2R9K<!<tTYUQsgCAr2*oPF<F)GDD2wsy(nI#8&^Zi@n=hEm)i|yS;
z-`k|XHf}r4oN*xq00e%hj#r}*aD+X~*fCHJL;79%qzQyYn@g*cGS~{|7u0MbB~Fpw
zwae1ef6lC0Y<EF-n`y`+g|C-qw}pf~_xf0FO*N|OI0F2f8Omx+gD5sqO3^}56{q~H
zQ_^zN#m!m(OA(CD*(R_EhIP0z)@5uYJBlaR>b+3e>+JV2Hb!E~LmJC@3XiMp%&|KP
zR&X%$NSIxyd(Z$zWY{WxvK_u33D$NY!fXh&<8SBu)NX1-GI3Av1ea7khY#xZq=BEb
zR*VEOfYV!^*H0MhHlvxoJMd{NfP}MJqN<bY1I6TfzP@TiIpsMO=LZ2(za%y?!s8Lb
zfTxapg^$L4LRYIg`^x@Cd{_5N&<P^$vA;cK#^ft>yJFpyU%SKb@tlCSLAp`|#h7%j
z*$*D&-_@5Q@!uG=hh)I-l2jHw_1Wy%?55h&7SLu9?Y1XF!?!*M(I1s1GCy3T*;bYR
zT1*eJmdZu15y^36YuPI{Bb{&0=ee&c1%3upejzPasT|G`;!xZ9I(HHU8l{gTBbg2&
zcmZM@(FH_|*Hx?yJI)0&Q!j?K*N|Fj;64V&EN0dZzZiXGZ53x$(w<{-Mqu?dJ5D7~
z;qlHX{^?9g;{|$ZWzK&iKxOM-D1x)-YC2sFGzrZVo%b^vHLvV3&Xkq~G28FKgs=(E
zqxAmt=z6KFabou$?B(B1@*DyxQh{|$+_UBmq$Vy!yc`MV_1aTFB`$%5*(ud%8%PYz
zO9VKLio$D#_{Sh~{vyn<-!!;}Gb5^=S98|Q{H<>#NVc%wH+(w%%wWr^d~c6ri=-^0
zQKeNemsdcV0&1;gtP{>868S9xGlhvS{n?K}W!k!?C+OYOP~s9VV$X||l3-jZTk%QR
zMakoIjWee|9Gu@~<)jTi`!Oc3S0xa<+|A8QmLbeI$Ez8apM9ODRN$D3#XZP68DmLS
zqJGVx)G8(2-p>me*VIxhwO>u!NGU;s$u64HU**E-GePjn&WgPUn4bOEiW$N^PT$Qd
z3wZO1mGYxEv=VmP;FNqai)3%2qoVL_*O&pmM(uTY>0J*KK+{E~FI%y>jp#aJWU=TC
z7;d8%PHXzt?Q)HSv;gpt0^^)PS)H@90!v<<uTJi4>(yF%;8lHCPo6$}e_lh*SJxg`
zth0Cy%0G)v$<79^epR840AUD}K*s`)m&ZJ<EkWl|lLQmWhb;+Bq4<cmNs6*I429qX
zRi|b{h_SuraNF$16<vkAIh6d;;Rvf<*bu-!;Bg2bNazf}x2&(=Ci?<p)(4|&obyR>
z8fPoo>)-khXK>Qn{4hPqyl+>JCIFA*JLcbN0<e_VKZlQgadnUdrTvm=nQKGm@^z_E
zPS}yh93fSa)ak-cS5NF*TGER?*gUgUL94h$*m4!lY}^}*T4f;l{mjZlgq#TZ$YIt0
z5H=eM<sDrkM1kYozz{IubZpgDH+PZ0=$DVTrbS2PE~ned0^LAXUd4QZlb60U4@T9x
zoeL+fS?-!nCLKQV;#MFU4Q{U|AKj#eib^mVN+y6lX#@qj3TbBmAya9mQ-7_d9!Ve0
zgL?4)d8RLnKTLzE1u|+$;qyn}bBcY)cH)+GTw2^)kS=@QHUy7-9DjrHco@g7{&`VZ
zVrG>I*4CEmjQNnWTiT?SS}S>3{8T2o|4BoH4yG7iKHf{Sf{O(_{g=G>#&+`w<6m+7
zbF^1%@c%G5=pt&V|DXN(l9M<JC|tJd(l%wF|F2`4`8OXZ!4%f>an#14u6D@@P$>~0
zL|*9<oA|$v89b)n#nd3JNnUrB@A&R7L8EHA_dK<sYWOe{qu2j=Hxk+C`~6b9h*KAh
z`#s5{NgXk*V@JRtH{a4A`5!VWQ1nkld}6smW`i!><$<-Z=ejbT#J~Uj)8bBYzs+v7
zRQ_didpSP-sWkoHrubs^@SiIF=akMz2b2@Myu7X#`vy<&C`U#!1Q2d<ad9YDSJ&!5
z7AES?S9xg5+kajtI_P(h+;kNr=CQ$k$*8*39fIYtHx+`mAQtvMRQB-^+#EpfCZZ<c
zIm(8%mRyT{YA4)O2C-lJW6b*J9v2N;(cztdOaI!MnF|wecY-<;mttr#Uk+hTMMag&
zZURe3Pv0G#RA{7xzb(E~7vaLLbJAE=zrNN4b9<PP!<}2o2DZ4JeD%bXueD!P!Lzr|
zYSL1b#w3;yf9V(LZToBje#U4#1u~Nj7>z1q;;UnN6Y1vdFe8a$o@cKtsw<T_D}>ye
zmIrxIQ$lfi1zKcp^&1p#)QY)!8lw`6y*mFHYqQXq1ONcwT$ji2c^%rB@nZjHeyoe5
zW3L@A>>jW_3N~rgZ}nn3JUmp+7EME;Kmi?Q1P)@zVw(w<K;l`jhSZmV%K(gY+;zgc
zJI%)~YmjQb#!!t?otrRuEDCo0tIG7b!v`t>6e%1<XT@U3&q=NQ5N!i#NlE7R*c8nQ
zoF($qa#AL69XuhY049ZnDXNtgm>&;tz-Zp1CqMteIPoieof-gA6sIMmKk-&dxC-l2
zxEani#@!aw%Ibf@!VnpqeuSuXBu2}^nyJG(b>KI}h2b}&WxTRwIkp*f^RC;Pgi5#3
zV>vwnOpUG+EaA9Vvku0IKhQ}I8ya>P(vKtCwS4bw3dN0_qEUC{^^?CQFoV8EV83it
z+jgZZhggj$np<#L&Np9-ZoIn#81ZA_Lq3$S@y2_IrQANCU%t(I5M3ER{nnrYk1r4E
zjw>=d8=a`PWOwu8TIP2fZ=`%1#UN$#nM7qG(RO^tXJ?l1xyn}r1bfrU3@<N_)&?BC
z?&zCxb3d>dHT;6Z%g2KbmxTguyn*i<`|Iu@eV@~e^F6#A>7fQ~g4mG`BMCMRZ|LkM
z$;eebahJ#(nuC6MCYt~vEXfxDL+F{ZOit>{5!?;^N{Gs?;MIzt<&rM3s)*$l*)k_w
z#TgP{?&Q$Kf?*&~1Ivuk(nNwGx3rR;PBaadMN>a;u0$MS2q<_XmJ`d^e+CVfdDYZ^
zXRN)QE=2J)B!x%l+nd6#?ao41jf>BUvU^j>=k}Rje_K^m@FZBD=T3#(l6@*2u%Kt`
z_>d*%e!@08XTKR(5eH%9UPwU(XPo&5GfVYMr3F;XkTCd1<5((kS<W$>Ev9L@1DsxI
z|7;?2qT6cu*yfHk96*WAzRu$=jB+w1*&nhyfbhqIL}CvpA7^qcaLvrQa?ym9I{(ZZ
zafxK$h^AZlvE7CK2xkQ9^dw1#)yRBz%l}y%?=Fhw)+`;g-JA~h_V-&r3`@b_Iq8h9
zE=g1W6Pflt<$17)P!L)b+R1N{!NI@~ibiSoHajvf{5DPa#Ux&MX3l@2aQH}-z>r-;
zahHt>UVuesrcK3(k&K!9S@OAw2y^q?4Bqn@e=++s@YJqem*@VvEUnT2LZ`P>qkjO?
z>Lm#W+|L`j70d|>I#y4L6s6;u6GAd|E2}Q$9`o`+9+|0aN*s*++Nv==tlwu`(NyV8
zvRV~S9o)H<u`1QTp`Z0Z+184ejtQwrQ>?$(^GHqkvBs`w{=u6h6eaA>Q7{d)!Y!X;
zm^^4AWL|iq!14b42Hi>BXoBjfv+(lEGU4isOUP1WRA!1~SO_{@N%Kd*ZRVQLU3rl;
zzs<2ieM3}MZ3VtfMU>unMweNYYTi;ZZ-@4<S8CN<4QrA)lnTYE3sd+qXb%5qQEOsJ
z8o_)lT4}0eNFOqYbQIByLKVGcq0YgO;}*hCQ>hXHWM$M52UOV`8P&#9n0?5Q6BkJ5
zju=wBF#GWf^7lOb`y#~{Uq<*fw2I%B`!G<8*mU?HBh4eL+zH4njWJ~WU5TwRy`MvV
zy$3z(HuL#pspR$SKME8P$PQXf=!qMVGxSMLGYDdi7U&tSfm{hTmakRHW}sr2!S8Db
zCzhv7<=EEO4M3b4-^O*Mt*oAy?34u*XP=z`w*gTWRSf$UxUFsO3k8AM6gG^fwvGO(
zWPlQR_Ko3fz`et@pYyYvOrBHMv03?{1JUK1h%fff)Q6N=@rJaoH7ms$A2v>46Z+Vm
z>}+Vun#|utX$&W^ka$c5uEK1Q#lgrcf(CgrYywB|?01+59^VVJpv@n6{FIgc<C8;~
z9XHm6ndO!e)<WzmEP7-6#S&7iCDp>R1C=fB$f-16;jlv6>GaFJPD<9-bOZ7WNXNM_
zou)uSPdek_brr~n8HeJQz*3z-77UcLO_mlUu2#tyE7J-I_}UB2+ZMdP`IEeMGCaY~
zX6LoP@V3!;rOE3cU0l_HDc=)26TQZZDP&PlRh<*TW@loWgm(HPYsEXm!otMwy@5}7
zGelH(M$lT0AO<z@O>Db;-7+bg$vQbT)OkSooih{4c=2lJYZ|~G57l<gjS;&8&!=d3
zva$T6miI<f#P6bL?UOp?-BPjeF*}}x&871>Y$fFm1NWCBv1R^u;$Cb7DF_i5{vbF;
zv!vh9;i!7Ak7#dk`*926Q0`vH)JOHG2(NRYodd&6Og{ZWZx<NpGi{>eO8Q2yG4=al
zDcym8ob#fnOU1hEneWHoP?%4HH(V;#l!Iq?_Lk0uYSZb`BLE<+L%!4km`0U3=@0ca
zT=!HymoSQbiJo3Zy6>AT%r(3yLS+veQSgIV=GixR2;bAN5|Hrcr1I^0&jvY3E$Lig
zp`)FY@uVNDAQ^thr2`!YeJq=Z)=$EuaqvorRauQ^ND{eVa`#P>Fye*wIC8=x`)9&9
z4nnwgn$@_|R9VWCO>SiqNwoxQwyV~focKcBn8@a*nda7xuay=3neJtVYC#=aYiL=U
z#RcWqj%!(#g%WL_4nIP{Y9P_1n*lOXK{jT+@pAZQ30p#5z~4eYRJd!WX%i?)aaj=v
zx_8hTA2q_(seNsJQIMRttz_M{WDO<n-Vkf1P|o*=f@kiVwFVt^AKp}K_1kdSfoL$s
z5-sZIo_q0Sl`fq=y*K2+LR-}?u;hq<-h306c!~9MtH?BRZn>l;Js)u2wqb;}3J-2-
z;-2%h*~r#YP&H<UFP}bTuhY<<l(&z*5K&hHc;IGSI0USh%xk~5I4Jd4oy}e_9Guj$
zj}kS0SHC##IhWkYqkC#`W)LKZhj-A^!6#Eh_#hgUhFQopnvWff5-MI9(p@r^{Hh^l
zYbvC4JB{R&x)v*;zVUx{4^&{zS>x7n;Q}s5gt$=_f~eShFBQ|u#g9@}DvM;>JHjjj
zZL!iZ0s(#*JuEyd-P|NEOmKu4I*cg>{#w(FhwsmnK^2>l2fwW#$;az0E6O$2`T(t}
zg!zFt>JH|&X&#}ENq#uEs>j>BABqt~`6R_jQ#5whE^O+}Ef1B`fnPP&g?zSqpps=c
z$CETa16<KsN(*d^`mw;R2_M-Pj~jY-q-g;Ww}p-RpbEI|m4&upv#$oWxGp6bj1KiI
z%Nl`D*%y)i?#C=TRrNo96j0QNZt9MN&>;N7`}~VKrWx0gIfQ>N>2KWY(N0p6hP}&8
zZoz0X>D``1Cx~8!exAgfU8Q6F*hh$O{eVm7Z9|}5@xZ0vgXrM?>sDWDFdj)Lz8E%h
zrKa3xTr!++Okdxjr&B|UOzb1{9+p(P#=4l*uq{TwEl=BmgNXMK4ly&#FtcB%dTzy1
zt+V;6sLZ~wFELrSw8z8Ap9a$`Jwnc%#JUf;^{8rln;>Ooy^28V&;&R7aHOT2A<D+n
zLOWgI$B=5&<;b^X{peX;HSp29mVHIt@kvQAG(~j&*7`y=;|<FQHL6SB)X+_a0=HZ%
zuEj!%@Z5ab8Un7RIpyJ~ZZYx(QOawHh{aByJ*noYeVG4tso`1R6BFIPCl4tZbCFtB
z1d$14#98`-3k9UABxI!%E+<F1y6uB5WsUc3tSnRm2C1o5dH1)Zf!-Q$&ZdBe>2)ti
zJX%Y{6Q<l#A@s4t2kncw{bu92ey(wWY12g}cn?V%H<?%!OTucI{R4Ow@>WlUTQS0z
zjeL`YxzvgrN?0aKbl}gF@-yU4f``RsQM6!d&dvI`Q+%w}*n(=_!oEUoK-z~1UJxir
zw0>k;9-{oAE<oBEOhVPk+IDV(rTa|t*+SrJOe)*DuX2JI=@gg|h%Q413b!*uVOp;p
zx6wt({&rT~edb>=hH9u4Rzl}t+Fnnv(-5m|xt}mRfvP=mK+#Q++A;-g#Oj70R1V0M
zdr^aO=YN*)Y+)xGz9`;jVSeAI94bS?MZZ;dD9LVX#9zhAQ@5_o+>;^l9!v|9<<E#E
zdoyp?o~dTLc%nIf(KsXDzv6%4N8k?6Xi@c}%YFJx(K56#E}j|7;b!_u%H{jF(rwT?
z{-w5|nM++9D8@8#akkdA>_o@Qco%3jO8x=S%)aNIwd3)~ds~o$8qD!6@G5bU3S}E4
zR-?z0*36QlwGH@L&#g<YWUHj5RI%Z{Q+hz=R*5Xe33VsLwC3TORF*LocZeZ+KC%3+
zFxw82W%N){LGya=B82q<mBM$FF?FSho6SaNd@!^)qj`}vHc-XXUh^}nGHRc&&3{_I
zAP^Jb9O-By>OZAVZ1oL1+0Bf&s>9kwU1otBK1qKhacs@IFt3TLp|p=`-vk)Us(;L|
zWd@EXo!Kq@(fNHT)<MgpU%YsMvQ`FUp<E3ONhw6UW{igI>eY8f1=i?TSd^%WJsEDo
zByK)NlL^44JC`;e^UhUl`rmc4pBiiNc{x0NTjy7M(&6yANAY$Aa=wsJMk(;Ty^wZu
z=IPLUX+mx&c}&p7LqB(ueBOp95o4oy<H<hre~UyzxGLZ^SO?@ore+`3w%GTTJye`3
zcE;vZM+A>xO_PRl;5E9IL$AlY9WVD<)?0*eG{~c87$~f@tHcV*5p(a3wziol69Ln_
zbIcKARRv4guMi8$y+aZ_XAutR&pYwg(9Ss&cXzrvYbDHwiSw>~+5-{ifPOmNI?;06
zBX^Od$o(kQ3iB3WCIm~#R#9P$+n(;7B0RRJuZ7akh3pY;Ru4;;abMc>9;<43A@y39
z+a>wKGO|InG3(8-<OeFuk+b}I+sW?wqrg%m_FQ3G#O(v7^QK)zs<QHv_RP1JSZvc@
zK=GS1pi6?dN^!Mk@ux_D0{OkKAHQEM>FgG1+YEO*<N%<nwsA|&f5<^2hob{c7uw4R
zDGt;<#I|do{PDeY*3<(&_+@yf-Tvgp%K$&9_4P-vv#;@_UKK*^>~*d}YewIY33A!p
z#Ke+CWBg^}_o2^nW+ii&D%7njKp~UE*F4~;s*A$oz^DsfK>nNNuNq1ld)4xANqzVm
zz1Gif!Y{|{&0cvfcg78Nm7cWyGVSF%7-Gy%s|=gH0pcSY7jK5~k)suYAaZt^%DiMH
z>OEyK(?vxyNi@PUoZN%_9H<o}j8^CK1Vp_uVs#WP$p#(<L-#p(VmbyCe>j#<zZ(^R
z7vv$Q@}}r8!qm23I(}L_N6(j5)jXAm4-A*4;yJt_dRUvYckI8~;8@k7%~5>WB>R&_
z(xpe=L}~qkYZq4CO?0tL^U@r@yrExre&Br9$A-$Vr`wjL#8gX)zlwgK@*;)#z-mqN
zEQ@K~G_t(VgC8rq!=6>$Y#DW_50un;8&H{sgx01$-+cDoW7ZgZ%p%D3abe+hlt|iG
z;*Qc>+2430R!2WiU5<JU{sf;)Q#%i$2|Mfp2JI>>>y7Lk>Vq0x*1%!>OASt&x0h?S
zXs6xLkI{1*JFwYuY$|bMsyk<N@^eo=wCKgv#P=EshjpeR718be4-<ybCpXW8y^mx%
z^>Fh{er#0}u8ZxM?JZXlwfiBoXM;^wM9%gTU$esg;<ZtdD|#HHm0-`JQwTMftYHa2
z;dGgZ976=Y9*IRrcxrB*BM=38<A)vr&dlEl+0F)gyfulunl38Z^U_P$vQjDch5rtC
zlUq7Z1^*a1rrN$uNY=Xl+91ncdu_EhQY7AZ`W2cu+^zJOHd-qQzO1#w_5T@Xdi$j2
zG*n#ii&+~w7&DD1qnXt#UX{U(fID5K@N%*@hw2^8AAi49^s>?YYE{|?0Pdy$m48&9
z%pZ_Xcs!eqkC2Vu1TJ*&B}iY^?RlzROV-7smpGDIGS;eSBWIg{cCFR9hv{FnTdo?L
z+T-(+jl8+je7`*sqik3#Ei2s~yY+7%AB0+XQ4~vQ?d<^A^0kJIV~4C7Y)erd?hUy}
z@dqj!E97&BOur0+qiJqyX)+9lgxK<AB=aG;1~p2pj!HRS+IyqMo6!QBu<P8?ZCR@)
zSm-aVNSxzrwq9(Yp0np|X<?jy9dl&TDaaNmWt2~$q(Z;0$72w*+|}NuDE7CZYh(Hl
zX*n>kjzBsK<y@=t()}*uAt@vpxy>q^*6(_7nm6Y!Etz2EykqyCLFq`Z+{sPcHXAg?
zeJfNhNLI2VVsCe7RLI(leL0Ozdnl0Eu9+_XkjqU*4@0EPEo2;#&XP~?LOKR{$_^B4
z6F~=~%q;qZ@qMYpv@%@Hj;C)n6wg*x9KxTCTP3Wv44{E`)6Uu**WN_+p&CiH+?qIF
zo{Z>h8DpnOLAgtc2cr*<csl^TBEDgd@eqF12epqK6of3Pp4pW(ze?=8tDD06<G>Oq
zgbw5<rBYT}y?JcM$lF~=4r;uv_tAUU94<FY+u4-_GBP?fH8donw;yodo1(WF%M5R9
zY;<5-8+B&sf|s-JI{;u+ZVPtGt1>A#T;LagL`eG72F)|6`Ln57SJn%B|NiJc#^I=%
z`b5okY+^RVf+GTim0k*^6f1N5o)^N~_i87kX1$QWxT0EPUm*MB4yhld0%s{4vCA_R
zSq0xeco2Q3Z&};{!_6>TMvr*ls{GBiVem`xzTcuCY`#vG361NHF=MH>s=RWxZT%X0
z1HDo=@nWV}>411PJoc2yu@H{ZZSf`-bIbH_VTXKBqYy#K&%pE#{k}q)I_C5a{L9cz
z=kc8{bIKv1Xv4HugaGr9!U!?vr=q}xU;9+$ZOI$&f<aDv<N%V1lJWS0>oosb)+`mU
z5%)ZSp`bfW$j?deoF6-%uMKWXaV_tlva>%S7038{r3PTy;zO*k8EzngkokQeUGAXL
zknL~>xvCf`@m|NO!ZC&fd#;cxO%7azBxG=e{hoKVEmw74g;2MZ@uYz=FyJMN(B;|B
ztz<QIbG8&It*fDSVp}y+wuLf5Z}z0pH6Nm4(nDhvXdk_ORJ7l7cjD=h<p^e4xd6;v
zZ#T5Byz(V;&pW=4wpzq~ZSU@p;#(qU8_XH*IrL(@+`Gcvbfe(%?U~&$!8V#r&wq?}
z|87-Bf-2x8B!DbwAU*%_l><)9=`cERc0|72g}ksJGsJIW@6i0U(r5-qEHaug;>(OF
zs4|4l)G(~SZ+Rw=>kKDqExxz<*E2+d?#z)&5o(OB=TosabEGOs)@?63FVj{Tpvb28
zY36P*J<_G-%m~a~lekTpwm)y^LqJNx_Kyuv;QH?_`HG0>Y>1_*8iW9dl}s9riYj8c
z^Si8$EH?uY$a-=6`efeN(N)Q@@bO*l>j+`(8M{h==Fj;$T9(6ITEpsTyW`DrD1SmO
zMJ5%QOl(LTAUsT{BKE~Z(*kVxm;y;|v^neM+#-_i$GTz2lHpQ0-siA?w(m(1?(kr=
z5@(!SY<V_s2kkiktFOGF!OA&`ZVhy|D$e5$^~`FS7_PKdEG(Ky3pc&DEy}$A$oN%C
zREF{rzc_Iy%!s0Qb`i;)mwqdR*SUs8O0GOo4LL%Sz*D;gS#Ay$5aVd&?P+Nlu<9V0
zeDt{aXtKW;ZwX6vHPjWK=SU={3jAZ_qQ?zYC=vvrOM6?4qdzOW;vc_zqRy$I<gd(d
zq#Owqh{Q+cWN_=3uaOLfa<zU=E62YY?S2<nC!8d}!N(_4L4Tpj;KIjNClrjhG%>H$
zj5GQEv`RUKkB_OeqIa4@qqBU%4@woy1^d#PFp63U@fTy!o&LscP++>rMyjAQ-fX8t
z83$f|+lmnn{mDz%C)N^MY1Ow=w<H$(Wrxa^HtiDV3siYVC8sx)>SS@+uYb#3+-dMt
zG9_5%9iY;FMm)f!VNn;6em_5_?A6;kXJYytoS=X*`FN+%zJp7~O-!_TqmWoklGd~%
zejg~u;_Wt7I`1ZuVjj79wPFE1Yv0wCY?^Z|o#~|+w_5E4A9Mm#b5zZ{x%7hgtr__J
z>V3wdNt9=U!<Zkc7IN0elv7B5dmzv$s%j6fH~1S{d8boFapM+fIMBjo-}rq@qpI-h
zQstIF|09gyn4-E$Yj{TbGyj>h+dwb;PJ`!avC<*Nb}cpvgRv~zkqDT#lPOJ*Q0gG-
zCAJslE0JquW)52f7v!K0AGva&EbgV&bKv+wrSpl-UZL_TMb&+_mwsmVmOS*RmAc_`
ztlkQ=^N`~;@6v}VHRigTj6-Lg!9w8PdG`9v%1uu;c}!t*pekThV?Zly%Kxc00g<Y0
zHA~lmBGubJ9En;nnmDLG?z7_F^LCsvoOty3@!n>Yaq~B`)fo@(;yT;$S~Qz*tGi?v
zV0J<Jl1Nunu8~q~ceW0*-Ot;0DqQ(|Zr{)$eHZ;&^FWAwg|*e`V})sUH}!!gKI_ly
zLCN5itYJjJ9{q)b9_~-r7sE@r{v3NYv_n2djLlgj$CL@%bg_$>4a!y|XV_3?uUSTP
zUd9hhdA@(mje*-N_0o@G+Z>1lrmSM?d%UG6S}Ijt?tzYb6|emzFg5d3?r?BYv{h&6
z1E>};0LFEwN4vQ5JKWd4xW%-r>LZ3^ycqA4kIfDsIUdpl%YcjF?2rn+oP?LclR9wT
zt3tiqPLYUyIhQh;UXBUx$GnT3V)<oFwt-E2vW}Hm8c&nRM?kI$`6jn1d8*C>1wXG$
z{2ued&T2Zoht}*ZzC`?-vV&-pHWb@0l!cZ%?4zJbb5C8JvT!P6fmsdym0tEyNe?3l
z@-L_h`e*0L2S(vDg4Lx6?GoR5WW5NVPV1bx-sWi1*vVsnzwc(S6SByf7dIog1w@9&
zuS4eLtc08g(d$)72mH;~9up>1tkcZy3ji&*k$AP<iH=q^KhBs{b#jXIB{-Oyv*D||
z6P~#%(<I9}0^t<S!hqV*4W&@dmJ0&~2oAzS6&#?KTSNdD)-Ic0t9Q@HQiOnM0wn5v
zx(Uyr&WkAkiqN9rh#7~HvbvVJ!ay4s!cM|6fTI*zp)sAFqgA=K>@E)B$hatKxHIG%
z^G!+)4t;`1pK<ReJmZ}-wX7svb6?|~oYSfdj7>LdRP_^wqUxQPw3g;i^?u};cFHWJ
z01U$os}<SIs`%gC*ObhwAAoRB7Y@^;Gab&Wt_S$S^GBtN5;lA)#dD>%6%jMzxvEZD
z?H8?;gzl<3okWX%(gz7eQ0;`QdM6Ex<ei-0MIu1w3@-=EZ=&wx9Bq|U6h22aib>_)
zmB^&^V`OAT<k=j%3v8w|VfF2CZ}>}e9+iMG@Sf9fLDPow{X}^bp&r*SyArQxJssVj
z8(mryk8~UL!4=q^<a^|1mIbxQzt3L8JSkJ8V%7S2+FSu^PA@7wcmo8hL+!Muhp-b3
zV6!|W=9Ndpd}an|UO9{iQWzUCBHzZ-edcCiaNVvzwslEsy4rBg@r|drTzJ~XSCS}^
z%G+6Eie9}$P1qv8<rzuh^G-)}P{=zQ)L}SWfKA3m_Ewa1!tQAFA!5$R<?}s(wbt+~
zI=|pwOS4M5`46%Q2?_b$f8R_gajdVe=Y{bvnq<_kONZgcWh|X0%Ws?*l(Idw(7g;d
zJL1&-VixzC(3s=AcP&h}&4>Nej0%igD=-wXd|4)#X*qd4c+4w(^ho6Xxklwqm9wXq
z%5THxKSRT}N{AmC;1YhsPa4h3E0~dKcMs@U^f_tT=ha@ZkRDL=fKO&+ue45H7OpzB
zBXfaT)Pd1xFvy;{(k$)Xt1^8aAC_vg>$=*fAVwK?@T=3LYTX5_Jxy(FG~ZaI_AlxC
z&gfd<A?YN4{cu)U{cuW@Z2QpgFxB~Ev`%jZoph0@Gq`3}y3x5-vb`p!eL_W3hP;e}
zcr@iAgtYda*%=xgzWpCBIXj0xKEHr9iCnj2FK@=mbV>=~+ok`>7Jg^+JCE^1`#SHz
zXzU-B`yU$mHv#?smWKZ4O8+{OpuJ;%v(BQk&e{vR&#m&L?Y7nQpe(*f)o2H-|FGQ~
z1OHsTPPoe|I3lO1Y#)sCPfJUE;eU;8^$kWHEv=q|rAGAb=k|3i-j|1JrrtV`2DaZB
zoBtjX1-~zJQ$UW3sap;i9kQt_OIi#(bzg9*bpF4k@!v#dtr=HrNW9a&w?g2hl>3S_
zj6oj%Ly-S{viWDL*fPGAzS3YX@4}q2?lK>P!wtHB?%7WIpT~61aQa8Z@c)RR|GzX1
zI_*}04dTw8m)&(Gtb=$|8U!&vSWE7K&UC&7ufIpQw0wsdq8;W$DgTS-ccPpS)JFEs
z9Ivmt6FxT7F9FzmFrb>da}v5aiF23D=7b}{Tc6(h@r@;+HJz3yt_Ld9CTWHl7f%1(
zgOwzKqGjm<mt=O;LM4sDO$kd~zXF~d67lllb=J&x4IFN>;+5JO$Oqpo@U$#8$9vfh
zqz9${47mJS5o##zjCIj(=<I^t3CmB*#Paj=gKe~raVJjI))BkzX>3aQ)wPn&jVjK4
zzfSDSg`30&Doz>%<+${dP{k03k(XN~+pCq>*;$0+XJOBp=YNsjquG8Bjs#z$Q$cIj
zX#Cg``W?e3KyM;^%|lWIP*>yoX|*H6TDg1l)yc@yC*p#s{ZUOhu!TQ*ij6@4+T7^J
z0rQhXcCQ%qjR;cW>hjbAeCT8w|8kHm*AW$et#HN1q_R~B?fw&ywac!tkL_G>PFccJ
z+kNaF0W~aQeuwm<e29#n_9JJO?!``YWz-Ib!2=SXEAzf;)uC!R2Kl6%QY!P(VNWs~
z^#7hT?QoHtre5xrFaf{6x>dy8n&%d3Prr9p!Lnfmv=rW=lSd4@rT$lQU)dE`)2w}f
z8wu_*!3pl}65QQ2xH}9E!QDb|7zj>~!QI{6-JRfW@8o`-bAH3SKlEO^XYE=o)4i+u
zx~fX`(NWJ8!G<xbN_}@fx$h=CigqT92=(OinYv!R(js*k-DXb*Rw+Zov@XByupGU~
zL!$nxT-Gd!rjn)!D#@5^Zf}sdKRb8eM+ajjgmCw)-a7u(AUJpcLIx=RS%AatT&Q~p
z!9u+|o;_p`dztIRf{eijqS{ohiU1n7SZ{TEMcC-Z!C7MmatIbUGg%w5$Mw3@xP103
zWRpbVR~RbzPV1JIG-OnoBNeU_iHypUFt6FENri<J#7;o;)(eS+nHN~!!Am&lOia&n
zhH5i^;h*iB{5Klyj#eIoaoCude7md?5zeQ~kD=Bd=2R=xcKm|?ZPCe*Q^3iQ)d<9K
zQ<$2r^?>KP2P|}@jPErb1a!t$G6RiA&%JGIe?y?^z8~AYDI!U>MUFd&R(y>JR{HS)
z2zp|)#Z(?9jT~thJJb(Nkkg&ER|QYXH;0TX#`3(nZrOGsy1C_xLPUC!{>AIX)Hz?g
z|AYDWOxTDti>erMW5RtlYzjyjQy-}NZc@em3-cdjTs=(o$W3nAV;5o9j55M^s`_11
z{0sl?c8HqHC(Ij;W|tsaI8IPhjqwgXSpG%&+Xt^d)moi~wEcA9%8|CT{muSp%^pW5
zDmt6))%J7Yy7+_vD+#UWa)Z-yv`AMD)<aD$^0E1CDnnhpikv424O~i8%$lZs2I{f3
z9D$^O)v-sPO52gs@negoSdOh^h3q&W)MY|HS0-vx<T-(-PHI6Yi2r5UXlab>NkHG}
zB+pdlpG@-75;b@pCEa;*+|IRNrpdT&`mzrDckM64a*$JDAF$q04P_3v4aFM;NWTyc
zf5v!F4^#NunLY1xsPNR*q)`TKxRx^6tyc*%c(K>z5NoQ{D3di-Hn?z&H(*@&^#jG_
zn{AAx?O~kTpP6*LR`=q`K>0&~O~4dS)xuy+^X`q?$u+s4&*ZMC>mrYht^q?P1lCkI
zm5<->Tk^XQ$^-?(#bq1jx@z4Kx{6knU?sKk`>=D*dF7s1mG5t)93C%Kvm5Yv<WG(|
zoS4d+7XRYQIQO$~W#an&X|nY0{%G`jKJT;oxmiJFSL)Tu<HY*$%eDWEfm#T<A_U}g
zYx=gGLot3fUP>wDcdW5`#zQ!PhI;<7^6<?8CX1o*W@a70S5g~L!5Mo~Q>?l0U<wIV
zsv86@zB0Nu+wu`ewPj?+`dxA`({C0=IBs_ME?TEl{+vg*);^<+Yjl`Z+>w%iRO*(N
zE)vcwb1S4GD`UV&++8XVz>wKbkLmR;{Rz$vyYS$87@2cZK%;CH-zEQ;y&-Vzr@l}I
z26!P+gt`&h<n~;7H>v&#ErkH6hBR@G&la6lCvVG`HvpDCctWA|EgH{9VU|4@ca1M%
zn)q(<mvEqOT25)v2E(qCYC$GUmg@cz6`_*jN>JT=wv;)sF`DiMssx$Z^X05tGgdW1
z2nSt(SWo(nBc^op%Os#~TMUcCs%ljQCAU8$^`OLQh11e)Ni)7l8?e15Cin#~C*%^>
zxgj8w-l&vp3Ly&ZxYg)}ucRzry*`{T6S~#ETC1km^a+xpec*2YT(9i#$mob48M6~U
zS&4Hekase8R!ej+xky(p^0c_V-@$INmod*V!q`@b{cfl6kHLh+=)S1K=CJYXH0GaU
zT2OLNlc=PXFigF|2gIbIz9r2E^<^%%RlYG;QnC$Aig?d*)fK>Ukfr->yoM*h?Ktk$
z@aO*Adj?G8OqyJExOF%wZKVfOuBm3)PSROEYc5XuTCnAWrg>hfl~QuCMF&3L6tNwf
z!C_Ij%$=$mrBUuTh3>iV%-)UK*KZMJ4Byk^oHVMEd^L0v>P@v7rMevKUA99V+OFNV
z@dW)omhtuK7xfNHyz`C*Xnj*tpCIS1sQ=L*7}@sO>WdWQpCcY-v3rm`9HvI_s`5g#
zlGXnk`*=|ify^JEL+EP`pw5#mbvWmzxj_g%^u*FyxNTk=+Bb(;22zs9@ta+z{{dI+
zO0p(1E}Ro;iE6a2B^70CrO#d}XjukUw7(DTS(OwObr+Fj3R#!F_^=LBgu2MJuYhbs
z5AH2|)KOxEgU^mqD-EDCvJ-Ix8fjA{wMaM;A(;njSyPAoaZ|FvmU+(){rQErordE#
z{78?Z&xC&Oe%$)-OPdn5g03F)27@m*3Mi}R3vAHE9>zZ$G44+G3R`M|Y%^O}sO4Kz
z-ZEhTQl_+l?1pA?>iK+Vzx%Sz`hObwOaUNHR3=N)1`5#)szz!u=0$k^9`oDPyeRQk
z*~{ev+#D-a+zU>YkP~nCG75bu7>U5yW3K+xnE`K`vaz2K-=T+Q<C9BGKLL$Rvpe?e
zBVK9*Q&UEZUP?{iaj;&?3dHTE;XZ48*~DJYX3onXc*TWGT<$M%feAufC{uhqFke(D
z=y*J<@V!f)OV9U74;B`mzsW?}x8b$VK8JYDJ8`ik5ktZ1w}XbGQ!|7f07Hrs=Dl$o
z_u_a}rj6{mrS#=}=bng2b>9axrM8+m-m8kgV{?vY8A+U-n_!mN@}3Y+ek>&py1T=j
zD^qtB>hzZ{Cyun?TYeCQ>R13l(xwL9oXNZrXKteho|VtYH7ljlVD=hF?i`c(33c2x
zcVZD7Gxe%BaXMSItZilMut<sx9l{0nJxR7*B<)7#%zPU`g}_A^$eM<PmxT)sRqG}w
zmoFvdX3E5AMQqB?E*~t#dOME1MVr&bp2u>h4^G#+Mqq16u{}VxLiIjy9mUbzqu#3>
zW`tL&&`|QjfuAhAaryo=yQb`XQFqbPtcH6~bfMjD;f$G7^gONwj=%o-+UB#PW!a)~
zm$`kQ3%j0T@r`%H0%C23TA+1|ux_3aSDAss4SICwIkAj@PeI6>lyF)Z-Lf-R_Tog!
zan6lbq~wB+g$wCo6vblSBd7E29TTOILhS*5`bGB0ph{&5b?81JZ|eAjJeCZ1jkbG9
zn)cmiJ;Kb%w)S*8nK^%4jWtE)14$c73Fjv}!4#$MKqAd{0<hZg7!u2My`+K>k`+Lv
zHF@yYcU8>!2RUhFHa{+lYT@xa9|JR!iA1xoQ2cq2vg}CuMbbdAR^6u7XB`z@J0X=J
zowsK&orAvgVW_#ayn^Z|UUIEed)OO+0#qyk+MVmBn~H6jDa8wriT&QPTFLQFeYk$l
z#G#l|8K5=d8_xhN<_p+Fw((5Y!j+oy&tDkpp`dN^Dnh<HE!vQxT5FrpA-2<8)sl<x
zem}IJV!hAM5l%oB${Z;dE99{J0r?WIsNllCDDC!Ts~&m`<h!6wJ3h-`qM!xcj3RkM
zHWK0kE;RWX=hNDhGFaR@g+=k$(~1F{2ExS@o0TuQPrNdlv!N9pWh&wFvM^+`{M8yn
zYO*4;?+`tI*}Fby6KpH=g_;f=_tDA~O$(Lmox`5=O7At%9ziB?saP5OCvgAOSd6O`
zENmfW3yJEGrr@?gd;z#Z2v<<plzkZPsO(Ijvq=xLQ=*zg)(j6mxh<UkKJZnnPS@ci
z{h$+b1%UjIe1@WO^YeULYiwnviM|^4odDOJoQ*9_mxrn)1b+gt=N|Xnesed|Ch1-H
zqo(_stRd*3fJ&TXfsq&IYR{=+cP2pKF7&IGTf3>cgMwXbZctB*3zW}a%iqhZfN<sh
zcj4~q;*_cV#?MqAjtH?)1ORAk=iWuPb7lRk3{)H+j|nt|V(M8amU~VgY@gO8DvUCK
zh*somN8Y6&*D?CI4imdAKqpnB-t-~)76Y1r1khwrHX1xfH0IoJ`7cDHP2{x<z;ZJx
zG~vDm;iXd13+&>4_DKjoDM##tAtguSOVt9p7ez1ul=;ukbjuzb$&`_dx}hcK*C;ai
zWgex^0HDgKxW3ltWAgEK6)-ZX(GeH)EYqAE^b`6oO#AXR)szuJYp{op8lHtCs@IQ}
z-o43w5?}r-)0qmvehN0nO^)MyE1LkHG|bYMfDEzqGH8vu)1X?O!h~tLog)@z700*P
z7i|pZXBW+D%(;8QiT=jpi~`v^K4uHHTOjX20W??BzH^cJk(!M~YyjYb)8Jl=h?To$
z*<at*KuzxP$*qW(`E5YRssy~}D^2%d`(p*Q9;|j7j7z`#aI<s<nmjI=^ovd($76ev
zK1C27?0d#Kwvz?6FAd1PGMiO>(SBK89*&$i%=N&Sj`KE|zv%tlOZlaAGd4kvpd6X)
zBrskwfUY(j1<JZ@b1mA5qO|ea>4u*CU>e3yFn4(8riiqpDa$K7$?GEMzFkkDtCYjy
zDW#dItZaXwP+qeI4{QFF!iw}>m&s=We~1ZeR$&AnDcx*5*j3Jt<o%i+(+)=M=!66U
z>>Z+Oo3yM_VLV-d@gAj6(9x$IZLi_U+Si{z*XmIP+bLpeCI#?^a}rC0G+31+lc<fo
z=VCf6%sbP6$xbFN94FGk+oZQhw7d^q;QsIGgCE;>+q1^)e4=a5d10UQ-B+yP>#%97
z4r_ez*bT+wyME32==*)jz0CiJVz^K#?fK69`sB*}V{XxOp_*IU_npfUw|$}uG<iLi
z)3K*rQ~JbHG<2$9c)FU12YS+yB$QFzq(ad*T*<N5iY~Fc%GL@n7h)IqL2K(=p)t#2
zTH%`YHXyrkw3t1?EYQmi3AZNZM`lh)(6_@90K7dPj;26OQngmwG+NZ=J)-mms;=Io
zCa-ZU@O1{%yX)&s<fgXFUM+XBEHGz$FIBr5_2kHvIqd3!4ar)W7-hcO3AM~IezU(b
zVUN4C=>!RY!?@SVr}SJ-T}gb?m!Z<tx&7St2`zGg=_-eZb8WUwI_J53zGUF0?A^KY
zKW+j3l#6#%(q4qeADHcY9y=0u8K6~sg+g{66&Kz)Fq$BLXD%p!19Z~Q$E-E7eM!IK
zX`gQCWthFIc^XhvM&$+qeC*t~EmYE^w<U3|&$(Jd24VYf&@<8K!|KopCB$~r?Y#W{
z*j4_PzH1rBmdnA<XIiW^qj1-?t!iJ$z0$Vux9Gvtg9wYIrCYIOD&E{pR?*rokdLAg
zXQyk^Up+&s1fs>nYK=SvXqi_@z4cggQV->#b$aK97)!+>D}THnJCTXaeQhV6!RGPg
zAD!UiyfB4?K;ZxEY3!Zg?b^^|oKL2U<fPj{Sh2g&YWJrN$Nr2Pj-zqm`mA<xR^mls
z=C`ZVog*HwuQa%yUG4qjJlo4jeK32ll(1eed1cOG*Y5nidDsEfE{5qJXlHzW8GE`?
zo=mfLXA^LHH+<@sK4X}MtH5zeGP7U|=opM|P(Au7=sUPWq#-N_>+FDEFG2?$mL02a
z2kp~i2rQnwxHoT0!g^pMkIp~bQV%bRAO5iguiIt5ZIuhBh#dZd5(R^>mHFGQIw~Ey
zbF|l^8f@0pv{S$De9o*OX_^kOr6Y%sUb<x31YNKP6tjZH#WL{7#P=nkV`KPlP>hrM
z#f}U8Kg-4{GH`2Oi6-Mj1I~ty?@Y`y@g}vFSvprDUQv;l(g@QkAGTHpVfMi~7xw5@
zCh?IM{IxhwImcDnWAbN=>r2-v>{0r}b#q*%8fhYG@rz}QRU971vnf<rQy@FeXU3(f
zM$}Iuh_He4QEh4{_|#yGzQ`5&acR9xvM@OkZ})T0t9nFV>hbTK-dF0Ub!3oa-I(=!
z*jXjbYazD`I+E(Ec6}3i=vDwa@Xqj_ETwdnn_T4jQk3d`F(>tJ<}f4<N3earj=Sj2
zDVvGMSD1~`s52{4IE94<O+viJ01@Hu1fOlLR&QLsT>i>$APVpkB;6PiY1;h3q>W^I
z`66065@DM{aQQe!|9CaPmGv`2z7vCh1a{5t=W9)NX|nWV6P9-|5p|zfC$^OXwx(p%
ztxzk$%Z=^TTnlPe_2ZP*Y?vj*YIO<RB#1Di+8o`Q|5h6dk`qhPKnIEI3}X=+yql2^
zC!j&z`H|hEY}YlzXfSoBlR!4}QQnjp`i*Nlc%3tEoa{VDFYqXqh$c?o(1y)qoGH<x
za;Q~#&!+-)lIQ~M^~VvX>7*f%;qq*Bmz=fO@U)~aO`O=vhQV^|_)|7d8N0D{BGjxX
z%*!Y~M<`s|7lW)y>Zzej2X?w@8w-6xA#b@r$;vbWs;P)c^W9|&Gm<k&iHMCI`?KyB
z*zuur{I1YEIEK;lugQFtw}6(!#LbZS`4$M#Wlbid`dljs<Ds~|Y03hd!i8u-I3)rn
z^aL^e1np|6oRP-<I9Se0i2K*K?td8Q=YFZhWd0~R@9ZjAD!ww-;fE_2QK?5&!<u!<
zTSd{k`s`_P$BOSg7G)VChJl&IBfyP&LF9<!oaD0IS4R6-(1O;mRogD@L#b16M=y-*
zsn{7v%P!o5mks0OEznfuLDJH<G+pJ6I3UF=nrM|Tfx%sAGHN<JM0?Sbi>&K;3?mOp
zh0ng-ws}Q}r`*rY^Fas3qYaoMvC=vK8s^gG->vbhtW5+=Hu%DT`S|g4LS4H_yR0YK
zyGI<uyU6nRIblD#yL^lN{RDmhx&K+K>f<cx>x`zz%hqiCeD0OAQ)5;9v_vl*;RmJn
z`}tc9ZRh27UypMdNG;eu$>7THY3I#3t+i9)R=<TxLB!h`Ek+am3|NfWsg%O|exj{X
zgbHJ!GH~9Dmu{NqovVPM>}%rUYOTPanROgG{U>m7Hn_dkw5qL1i5K;h{EX*%M0@O2
z96rAvD)mMHcyWPy0mUE36ft;v?w!a~xqY4IJC0vK3?VK@u#hPBr=_J<i#Z0Z&xb0h
zVX}}p@CjM7&<}dmN^HPn+xU<$ICP3oI6SseKVLpL9$m&eBKgRLhlltn5e9rH7|TI_
zd>8}i{fj?wnACiLGgqpv=c?|`7Q4~FwaBA+hav*0C{l<V=Biz^$T}8>!NoVEKZ-6w
zU$d`Upkrz9vb|va8-1}>HC(&Sfxp}*k^8_T9a;MW&<X^alH(H7%3@p2ZrdW)$Y*%#
z$@Eq|umJd#dnz&s3@fuBG>2B$0nn^=auvG7;t4Yu8VfhYlssK+?!*^(Vd3X~(x02V
z17m!ji~NoI0}Q!L#db-NO)e9RzA>82rA=?O??Nk#VbF#&sTi#Xp=ok{JMS;UFK$}!
z%msIVL}nw$$|cXDZjB<bt@=3c2^Ywyn9VY2a)=H`kfq<m4Kyg8Pwtv?!Pa5}MHbiq
z!leN5aMqn)0ueN7E*syy_*;|Vy_$m#H2=vEN!UUis*iJ_rfVg<4L<D15Wyl29tey+
zMD}#`<L_(aTIp*>+0n07*uw_bYUrzFsG%TJbSQ4$tSUcyQEaTPh1TG*14(SUR+9r4
z4M!bQ(Vh%hOI5U{*3{QFp(tje09S|C{<j(p6!eWmlzBuB^+YZ;)Ws?=EkfnUSXSbC
zdM}A;b0L&Z=R@>X{lz11b@>e9xjOAi;ndM{II4hP$u>Q!t^hw`Z76KJ&bG<z+Tt!m
zK;navjo~t=3#<nXwoVhdc~TKf*?0RzrycJJ2HAEO!K_btq+d=D6M=*<$Peo8BV`Iv
znYAK(N)b7hb&&yJj2uD-krr&LGf9S(!rt1bGIgFsEGwX!w$q&*mgXK%6p8c8ap_Ut
zz^h^wZjM275S4tc_1QoMG$Ka`x{F5wlcLO$O9Ko<l;46G>tRy}G4C3unW@bPP#>{{
zr`g%fm|T;{F;Io*1tqhH)cO?G4K{dbNtwkFb7u0kN9&1<>dS?=fzjjI=xGf-8E24~
zMz4jujvt`nSD?N4ido`<#gF_dF?|oz2Ce&^N}<P>w!lEK96_ks27|Ai6v~-5kD~JW
z8bQQm4Aj%R!F`-fRwsko61&xB;&?&DeY5+4Kh4gF4|WQA!*?yet>WZo7)C!}S&$a1
z@>hPf5XA(}>-^*ueS5Bs5~0BRII6{}+EJgJ;uPmM$5`D~?*sD$`<vI0m*~Yu*19NL
z0#Vk(K}v}~TJVT=xYW%hjTbtA^YwZXKV`C-QTU?y3&x1QOk$W52F7sO?j{%(HS_2s
z<X{HZsh;zMbc>~NpJH(=b8HV3zj}sdxZ?}E@&m+RvnvI@6rPDSHieXu5>(U68Eg0z
z!J$p4#@Vl21*YRCIjdk~5py`Sicrux*6-F+2ztK3rCdLe`Y-PF=D0IS6v)uB@2dLj
znZ3e2u35e9!HN$~_9o_9k!_$0!Y4lI2)|aUG7#ZJdtF;<25z4AB#&8*t>I})`nThA
z7{2H*#70SJ7NG7v^jI&2Sx@gK6pEkR^{i@rpQP)f^*{nD#P{$KV2iSRnbH>LqL)pH
z>sf-O&XvcKXsy7T#o)Fj+2dG-gslpc>^F7nuS_*bAXpp8L?>_N4IGHleUb}}BJ`FW
z6Y4Ld6%!_f`|(SqOu?*`A6j9{cy+<L+vhm-a_XdPsgMS$(iVZkU7MjFu@-hYv+Qy<
z)<Ajh%<yvtU5koojj?Nq2n@BG7T{_PQ*dJzwnMAJo~jTOn%c8!Z_i4`Urg*c512Oe
z!<lR^9dv2eEt(HOSv{$Kbjgij70tD-uooK$`+Tv3jT=lgbdG8D4;9wJ#p3p1Xx@b+
zdy1cauo1RCGhcci#UCA{8Lq}1<#3pOsgujs0aSHKMV>ZXLcRjEe=@dPd74#>Hbe6*
zpRu=PO}KAOfj~yk4<>QHV9&RFz$=%kGKRifZlZ(YQ}O4^;zsu&-j)1vO+-YF%vNQ}
zKa2Y&f*`}`h}iM#DBv8&!<MR;@W|v*VoN1ax3c7-sWx&3de|opavudWkRo`XHiO)R
zxbL$U->V7+E)fmw3>jw`7F2eBoE$X(y<I%KfR6R40oCLewz1+!l3|^`RX6iydH0Rw
zUWujDurU!x*0Cp!>#4amuV*TDRBIi-{7*L~?No__3{+qdhMt~8$Gu@&Qwtyf9b8*;
zKj7HI<s91&5641t%8)A}hCud!$_b|+o$zgS8a6FQE1H=1C%0YOr$7rfRTuiH&uj|Q
zmZLnJ73gYQ+HuU?ok~#yN*^z#NAO|;Q|JKUjELm^U-UL+y5ySJjb+x}<vDeL!<MlT
zeHQGuuusw(8Zh~~^*4K`X?)JeCWS}|J33c1lJA!Ud-#0S0e=YhjyVz~OvJWdZToW*
zp~vmckSohE20!gIY4TSN^6m5J=Q>AJS35aiUL!*^72e+>N&cvk;e1;fo$=KK=3;}0
z^_~HCd`uC|V3M~XBNmKLtZ2LYZE@fEH8iMp*qOQ*wBTS%yI-!Xo4$QQ5aec@if9?I
z_z54HOqy(q9oSEtVi-Ht#9?lVn2&9xnF?<J!tRzNv<-@(6{bCV{JIl|z;T_*AOAQR
zEAL=Wzv<++(|#+(O7R+<g|o5qmikBJfL)H&#tnO?FPxgm0ePU17(t*ZLgv@3eo$e2
zjAYE~xBhsElWqt1a1@d?g;v(L>D%wEYD1fst;XQV?mCtHWHht2G*9_7=G}!M6DIA`
z29pd`OF~RcRhX{~Z%o>X%-usJtkOSQd7iRq^zINW4&kYKh<$_=+i%!o;-bEur8%eZ
ze6ZjCK6lcYG=0jibyD`LRMpSAA44~n2+GI45WGgnGs$NK`jX>fubm-Mh!PVz0AUp>
zczszqO&+$v8k%O@u$tIbby3Vzv{SyPiijM=ZV@V)qX=!lEPDH{XkLRIR<)g=%HN+x
z7wc$S8)O2hY;75FOUNS|Cu0=!=vhttIVBk?`*-2JxA5F8E=nbOs+GTXee&Dacx95=
z^Q%WhtFY-pY*rQb<-X?vlFO_n9%p;MwrFDk2}{6DQPlHn!szCj8Yp+JRo3YIKyH&(
z+@Jk6UpG1c<`4Nshf;rb_C(B|G|F{11Gi66`<s#A7%==GU>V1{#Fd8yy^vN;VWCLv
z4ZC2<KS84*Tix^Y_Cq7q-RWDS$6syD>EBJg7~e@f{B1t>z1AU4b2|s%s+-J(0kNZX
zbZU<l9aY5xj7s~2E4aQHROmJihs1i#+!X^he^yFg9A63JL0^2zH~ydDQRZ#_GO&qh
zACuxtJB?5LS*xaE_~8UvdujoCQk|^*;H#{-<4Kpb^UB6lxcTa>G#II3GPWps{Bgd9
zPe85c6Ads+xO7l&nTSTqB9Tj9z_d&Kn2qZL(S*xm>*w4rUn)YnlEL_c2rdTfdtIWU
zYycB7E%f*=H~~Fx`#_6DkoVa7dNeAh%#7Z8ur<9n3GP4od1me1pDIQp-r!FznOz>r
zp4>gHTZx&8+oO)7R+HdcW-MMUu5g?KY%X8)1#!<IU)U?Ct3OHF&VQ_6Fx8;_2pa2=
zEcf-MEc=RIY_8B|%dW;~DNas(s?5TnGSw6NUF+e8PsItAL302B*CwM_cFX?ANjL45
z_Rq;SFon@-E8SFf3z}CDl0|bcGM?4hpkcdtAeFlZWf<;o6OKpW+V737g>|9En(JBZ
zN4g@5lw1mq%NS9L8tTdj1XP9@Osy?>7M?0>`2$k0xANGJ9*9;~9<G-7qgX6{8mf2}
zDqJk1ygyFNb<p@uXSy<%iX5C2l0Dxjmdi>5t<at2X_iGIp7w_vpJ~dBT*!-A*G{ZG
ztQnz{9r#P9V0hHiK(VRaZz+e5*mk5J$%PWjR6M<5%AB*PH;rPXuEZL$7pPm1QhAZ^
zk?+n#+%E0C9U(I<;vnOan?F0$Max+QA;V^DuVDlpXeKni);*HqTIVe4^<St6v;2<a
z?w%Sw3a8%FKY9_XjBw@`P~I^86+l0<dpb|xJ;7O5_*=<7JY(_DnMUpp$KFWV)N|Nn
zBv(ss1LA|vx{Z#PLy5jNt7t?|>L-rtkKGXl8ax=gA$S5DAW4x%dVlZc6ik`Ys~R)t
z@csAA&SwwVTnzimsL94z?m2vdFPvvDqQucqGBSyk(uO2!GXd%nDXDUz`(T`mmpJM?
z#mF_CVan^FwwZGY=Vi@VoW;)-aS1NhD~og#iTh@HqJy&FA?6#Ka|DU|(fm6K=)%dJ
ztk(^cH@&ae33uM2&*fyR)Gs7_!phIbiEqlNKeJ2gI)(#{xD-;7gcfu=`#Qhwwa;F!
zitD5fmE|r_&hDcjC5EKbhNUFw7Zb6q=dbl%KEDc0zen(qU&vXJ1l@fq05^%X$JJE<
zts=fGZ`gvchI{}G^7`Z}G#6!UAdV|X{Ofj7F#Tk+nb)!*XZ%_Gy^zbudz9<1hbiip
zGEl1DwBj(|xyd~>_4jM{<OkW)VmtjK!DQ1sppEv6xsHl;6$4pF0{;+XICavpenkI9
z50r!pR-h+d=`Xc@nPg?PVU24@$6?(xx`w0bY$HhZw%;~QB14L-1?Dc;^j&cmk?*>N
z*VN2-xnQWep7sR6@GCN@&(v*oVfty34~#D%w#R&;n8Lxy)r#T0TaGk_Mv;e2OHBw_
zzbpEVCyubtgB_FEjs)lK-cam`K_v;X+i_Vf_#sx(7qcv)5UI+gCq#Oy@;t$X-eLUD
zt<Z(RsD&R3y-y=HMg*;t^0{9b*>+7?Y(4a*VoS;BiP?cC{hqvYj*<TM*cN-7(XB?Y
zoTer$K1$*E!Sk-CgWsMNgW05hh$C{qTS}3&>#z0?NA*1IRv!e}>2YcfN}AqpFx~0Y
zqdtuwhRIS2S{r#>5@<dcGZbCeXg)g>iMSg4X%?YK1lL~cVu=nhx=;j4)`lyt;!GDx
z%462SH%JFc`hRdoeLXoR-pY{^#CIM8TK)t0OKM60<G|UaaeU@2G?@AaFqrt1R$GR<
zE=#BgAIJDai7EAg5RJ6@Eye3L^RkTA`SHrACfOhhnM5!U)~Au&?_@U(^M=L$-VsdR
zsS`!`{Z#(jVqsdE)a9iTZeDKxKf?Mn8F=C5)GNk#&5CV5g4Ryn6Sle(35^nB)-wD<
zj@S|FGeKQ*pHw1<I5CBFT#)@7Xl;f>8ab7B@8C){zEc-{i8z&{_%oe||1?2+TUu>o
z!zC0(yPJ=GHzeJb<^#8Cm=S5fN6W<PL_>)<s)W{sLbMQ<9!E59;cl)VD3lQB)bA{k
zTZ%-uSOPu1qAj6aT@p3*ts7b%#3H$Df3khp*t7MIUFdLxp%+(AVJYG%m7++HmE~<d
zn(0b|ciK;FJ}yEX9t^A<i5ID8z75_;C`KR(T{W=BGX~3i&q0^jZZWi3K*KU_VB`i@
zBNszoC-~}$75{EWvF-)V*=d17+j*i0kqgID`0JlrY>G-@%nSd@q8IuEUI&JOsN1yZ
z{7cnJD6V?Z8%y@9qu)qQo;~rw(Bs_%#)D{>AIyK}=;`-bj0nYg*84#StT3JXH*5YW
zx{gzNBB3^I^X>tvr0dbq1Ao%zD7;M}+G~<dpkRhd?!WA_>C5h27y2?IPH1ANj;#~C
z&cVVaM3f5r`<{K5o?}FYZHW2j>caeM^e9NLh=09%KG{D9o~c+KN$H^_JE{umO;TRR
zAVzcCNS1sCx;s#8M%~PA=9}Lik<Wg_$8a2ThOo_7F*CUH0%C?Zzubp}p4Kv?LWHN7
z3KMraBJQJXG#q@(>&YVAPG>65QT6pUw3>Ig%CmQd^7qwN@~O(~r)PTm<4%)5k*?<1
zP(!_fL<|dwbV=r2G29K91#bbm!W<nCjV%Zog>0|mz~Udkc!$?o&_zzeH<M7JVS9i1
zcDvpr4b<1^t=<RO^2dAH<ApD$EzW+}R)0OfL>)*L5ixyhk7@=?CB&V!L^5y*(-L0b
zA%<_lONJhX6|}{`Ca7);o|4P=;V0}SW5dpc;wsCIl}Oen1dc^IZnOWBgR;DvShriV
zmV2F&SmxT6SiN4EC^_`@Kd=DNA;0koB#sY{{J&Z^#G-ylU=kxXDmX<YLnHqC{sZTK
zr67<Q!P88ki~h0wTmIX?4pe2xJgqJME&r|ZCHkwpH-mruM;K)0`9uQ4&|QqgAmzXB
zT)Th&cQhn1tWeWoR?RjU>1)2p@<JN&uf(DA;Q##WFnEOV(Y$(q^S^m68j=3?yESUu
zLd@El7D5=c<^aS>=1*HeZbg8<9WfZZc$oeB_@7$FzW-|{MD&{J|G!V<uz+Iu+<$xW
z-wsLUuWPu{LC1=}fBjDn|F^#Nh0CNb0^<XT#ha?VL8dz3e;}8Pgraz*=(nK%2NJdl
AO8@`>

literal 0
HcmV?d00001

diff --git a/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-home-screen.png b/windows/security/identity-protection/hello-for-business/images/pinreset/pin-reset-service-home-screen.png
new file mode 100644
index 0000000000000000000000000000000000000000..9903a59bf515023bffa4a5b2a0932755efde96b1
GIT binary patch
literal 71281
zcmd?RWmHt}9|tI+gfu7}!_ZO!N;d-xQUXd0CCx~;w1kA@&`85jQUXJl0+LcggMbp!
zAOnc>-ueCa?3;bRXZI}Uc)Y{RTyA`y=liMWM!(QfC3!&q;Le>pBx+EI?wvb0Rd?>(
zl_J0ceq$cedjkB2<Dsjnc&B=laT|DX&rU&8;m)1f1fna8`@m~LSE!N4ojatS*nc<<
z?DaEu?%WouK@?uTHQQUdKWEeL#uczRtms{z<>*a?&-kQQ=o`qxu|G{A!cchdZVX2P
zdrT(q!=uyt{l6c_Q=j1da<|>B&ck=hh~M9*Zha5F`;&PZ7#PfURkV)D9EROqjon_o
z4#FhoU9EG;P43urUH`q5OZ|Lxba;Dn=(EWscRr{cgb}F<x>=LEDFW5d+eo~4e%^!q
zH1?g6Z)5LJ)y%Hbo1BR=F8FVcN5qc*x3BZe-?BZ>-4UED4$5c<SZIV*jTZrBr|eKj
z(gy<@eqroY5Mbj3PYnjVkJutfLSa8R!N3m3expzfihj-xY`7#MQ-SYAFN6Mnw1blf
z)N;Ue1E$aFEOqvvwYoj%aD*-RptH99d=7V`!61)UyDLD|ckkR`cx}vFZgq2Fv*z(w
z2j;c!@yJSi4G;E8Pd@fjf^`M%ATU=q3~5|xSF@P)H*$})t0k|Fd)-$a*X-4+`JUW(
z47oM&>-=q5XV`eB-X*eXcSh7@D9~b8idk?mr#IKb-mH>W*aLdIet?<!*u_T{^fz$h
zm&>h!@7v$M@*+D=Ix*<S9_jurGR=FQ-)M&4^mo)$2Cn`YlMEZHQ|+i>^yzWmm=?=r
z`oDG-iDK@kk?xp~-Y9SZHZb*F+zD4FW0673xf@;S>9gj|KZ5%wY-%dH^hL$b18pWJ
zBZ5U40%oLd0yoyP^l1}kJk}hZYY@A%AF24BP8$q=(eGnX1B%24|C+7Jg%nDpaJ_y@
zaxHz;ajS1;=2C$9!larigO6;ud503EOPu^nwhFTXBTt8TYf@;;-WEvTUL8;Cbe;bm
z*l|19NH?#Z?K(lLQ&oHIm6zsz8toh#k8e9@t;qI2XxZ4S9}`HBz1aFE0+j2~0Z7dO
zjP#n+6iZFkk}PNR`Qf&K85XQre@1!Gd3oUeJJT+WN?W>C(!2NmX0`{Zayo-^b3yyf
z#qO!$%DZ;K&VQ?Qr!&Us&t?pZZfaz3?#a*>a8XA08vbv;S4aKn&t^^PE88(cHp!Zz
zJiz|@|B1NtTSPMH&zSk|*DbuMcvULUdN&xmtBr9bvZ{&aEAL{-F`|o(dTFNK^L3lK
z{%Q52k`+IERsuI_`<Z#0ez>b&x7CDaL)kBYVHlk_qod07D$UrrWv7zH*s+%WS;yZ6
zhqbXAW^LJX>v{KK{$aGbps5_eK{Qux*`}7nMoL{jvwsS2O?zE>yeaJD>Ud1BqNdYt
z-m!jUNapN^UV?hq2gN4f&^`)iV280DgBpyAwaO}9qJ*#O3S(0gC;GUevhMl3Q`6E=
z51E|w&E6p^KX><nYY)lrr;2Kr=t{uxbL*eCmxo<l?f+I|T+|DI{d%PSU=H~6^&*(O
zFluk!E-xq1@}#NEc3kdMiu>@WpQYyP!%hT(hkLCclKE4fU9RtMCkF1yhL)9cRc2pg
ziToP<ZL;}8o(13<G7Wc}EgMH`bhI6I`WwNEQ$OXJaK&Z7yMei?;mI{(h7T7F3;u-z
zXOiJWdhONrr*Wj4)DfTPH7+{0J%0@@nGy2X18Ty7qaln;wz(46v;m4Bha4WQSQ+g#
zi$c;%Tn3&kHSK-wA+-UfRo+<>4^0llZcSHbZrfhn@DOn7`g$=l-ymW;X-Ubgo`PVv
zgZAUmtQTCML}QnZhDM9c9G_}0M&ES=71Tf?O68%~xB~vPL*n>^DvRkXW*~$QxIOF7
z7kI0iEscV&Pj?%@FPxU%uEp`HsWUOV53s&63r_<k0zKSo)+*Hl9_^~@Va%7!6$9p*
z1D3SNE|II_p9aeYW+pb(?qmG7I^OM9$2O;H%LX$t@PBq4U+vC|WJ((xeNRt+jltdi
z#R#<8w`>*04E>5^F-wEJDR=LsP<?5~+<efwy92}4;;UId(Ye=Q&tVjBwLG_fPy)mq
z_Xm^@Q(O9Oq0nAykw_A<MVGEXj&PvhYi<%;6Z3WvNWZK7_FZL2VGT%>N4@SmIEKHm
z>|Uw!=SwoW=a;Oo4Rr@RLRPJbS=q}yy&|5xD9-7afgikg>kl@~E<S8M0cNK@`VQ7A
z%pTQ7Q~$on@|<NgrY}B*RCX;Q0I$F4;uVjoqdBwxKeYSKwQ+in3+xkP;IKPe(9Lng
zx1s3-MkBM^{lftyk=ENE&2C<spt_%BfsPskQSOPE+&x|dNDltsn3=>}?tA6E7qbFw
zd%D%FJD=Py_nT&KmDLM{PGPD_lrue*#ioAS#m^*_xS=mzdhR#O&OpDn(yh8)1M>%L
zmx2{x`dsh%;i%MMrB30?;^PB_kLxnmCzHG0-ojDMm22lLN9DNl<&z)NFg4AqALtd5
z?hmp$);aV;;X^=kd|SFj0`It5a2X~clhzw;-$u9}R3*gybG!L;nae-c;Tr6_eN;4j
zOtxp78@#om`tM5B_uximh<D6HI7%bJ1x$c${nJh4(5k^6o*xj2&-^xD65};vR9cPi
z_6NaCjHXoJum3LmtT-Z3OKKlQ-_VQ~0u>CsRko}~Xh9gGpiJ>bn@K}T?+Te5p5r)J
z9n`8*P)KqGHV=SfUb-L4?C7K&Mn##3>Ot<6#fdGywTk;lPG1OdMSrl?Z}blJdcvbg
z!5kV(z&i`{_}(c+7wGOp`Z8aZ*^SEis7_6~dG<e*^K*i{LzYVwqhkzCrnI{bkHKwO
zyYFb^P}XL!<@y+1u-?#q7HRt_(VBxFZzu{v0lMb;NMSVh83g<FuL_qHx4bDDF#{a_
z%OYxcpT(}60*trvvtpbzIU$IDTaF?l#gqsV;+UBB^yi4!ipgXe+Gi*2gY;Ug$YY}x
z>Xr|m2X<Pi7m5Q1CS(Spm<Js91!hKagD$q~Zf`DUCCS}X45J~IZ;Hf_r{hFj{Jhzx
zmgj$R$5I5D|2dv_6XYcv9%~p~Rq7rD{@l|QxY)$(93Ar3<USqR+&W7Yb2be6@{rA?
z*Iq5AN99f->9#!2)AdmHpF0&b%&91Ha$UECE$fUTRoKp}ejEVWg`oDR8BcWL-Z@6t
zheSEH{u^-#(%U_5+ERmX7b>El`18>RmP}f`wv)<4Su%+el<IssdLf-nNRAFdC**rn
z1cfWmw_`Z~1VBaxbx8FvqfbQFZ#di@nVhFn$mY%8&exr^6#qCIe`hUl4Gi&K9HAWH
zq0KoQ_)>E>2>tOX`fj-}DWk8^SncnJ_nrx%6`_oBXhl#Dv#7Hgk=lKD^jnA>7{u@t
z)~y7CPL)uQiKsppbITHgM9r*{=X!z)!EEPMJq_~T3l)$X=`x83Xp*!kI!QnoHq$$h
zgPoPA)L?q@Fh*Ihq6uT0JtyPeUMSIoiR;(<sdvQvH{5Ryn!IiF-ggz_o3a%?Kx4Y%
z9uC#b*my)plIKl<6l+_0^gSVLkL+<H8u-TEvSygyUd(#+=Sw0=@Jr5?{SPm`eD<T5
zA>_(_F{p9z1l%|Q9X<+SePx6q)8WJxp?uN|1gie>8PI5^bKG&X=0B1}j@4cg7TwXU
z?OXFLF}y^CdQ_cq-ve1n{`rFI&}-c$-Y*!M)ThKgK=_pvv>A%}5<#>vhYT^yK4Ve?
zi`ew`bTy8!X*kJSJ5)93SB?FCApd#&<rvT~jBE7dgjLFpc3IG2QKNVdDVXox+kWm9
z&ZnD6AT8<z0GD1vHY|>?VGGR(87O<d+30B8l-A>m53$g7(2Wp%{0@p&j@p&Y4X$e&
zQz07jnh&AP;z)d$g!;>Yrs8QJpMV~*lDA!vmv&L)K}pCXxwTrV6|x&U7XxWAAI2RA
zJ`246VZ!!)tLeTejT~vL^`I8>It>MT6sdC9!L*9b!siq_Y{A@5LUAg>W+J4mc^}P$
zDy2)VeOdI($Wv2f%q{)!jB8AeRRl6kNiO_nFU2kwB9rT;TkSCA;DN78o966MWA`mF
zen5>$K{%fnsirb!X4F)NQ`B~_E{RBPRU~zIz3)dy$<gKj{y-$Y$!a56=TW!Rod=YH
zRU8(CP<PY9<80@Snmc90_6&)%I{lq3&+cXC(W+?-J$tg?#TqmAB-UF1JK;a*V5`z5
zhVJg-x+|LW$mTI5&InUMcRda>{^Jlr`}x2y{c_yJACr4wc|MtwD{$L9CbGfiPj-7X
z?W~>dtIfM{aEX7LeLI2KLEu_S+NO-L;-Xu<Gj+{^Z38s1gd{_Mf&uOKt3hmd{;bpN
zZ~MWt`_DMG;J+<5)9wp_#nNY2Kl3903cCEL_3~XC-B-E!(P-p*d{nP~?j%c_g~i{J
z!07waCto)kEcNeSa7x1N^P{oduv@dN0eqwDAa&pWkhST_hyNY372E&&`AvyG+7F<3
zTmdByadX;>E>{4sfw|bN(f-FRh@~9K3ER1->XzRh|HGUBJaqpsuzJvTD4;Ib;R)ci
zz#)$@8L^u!<Qf2qc+Jm;42Jq;|JGunwF3$RPKsFg0k{XWvf}hU^P_`bIY}<SC2F6|
zI8fUKCQ1P;+G@GN43|csejKmH2&Sc*2l>`9-sJc!8+HC|s7Yn=`B5u<^`~be(=L}s
zTkhJEqZ0smZLthu)jxngyjGLj3OXxFkcACm=ByH!f}aA%d=a^fNPC&Zy#X8^|Crou
zfG^Oz`|{42#J3F0e2bI99BP1mUk8A`Y3Q&7`#LlGI=#)eBP?l1+r0sC-*#Q>R5b7<
zE+03Iect^AfKb6<zIqLb-OBnMiL>NarfzaAGv>k9&u#flD!%JC-pO3_z?tQq?YJ>W
zPv}~c4*lV~nd9}=se<gExzYNIYGGKjLC0v5O{hPG-@sHyQ_Nq#R-zomf&FX;MOjy^
zyz}O<e&0G}Uu(xhfbdLm`KiLNa9(pZaGi~XC-3~b-B3xEGfWNqMWUv*kNz3SSrN;1
znImdK#RkAEg0tqqfnI(90C+tga6B>$bEtYHds?oY3S6<4Z1*9a4J?!=;`=P`dwaQJ
zo@U}cNT`#zWuN0U!=uXN_3}FC&sY5P9PfqlG?7Ke`qZwAimt~F)h)Jh)^~AbW{$I;
zl(qt>KUF*UVsgWv>*AG>|9-<TiP(=9OnX2bnC+5)UH5IXob)H7u!_Sla0~{_Z-0jP
zX`L^eYTuq{pB{&?T;>1pUUWKT<O=$NgP-!qz@(PZZ>!)L)A={Spjwp-SD*sZeSc?`
z4qf~r3vT8^jVr!NaQ*hkAf;t9x9w_a<=V6=IUqqA1C>!#vAzZ52;|kN`K{M^H%;e@
z$s7e_p@A^^)K2blzV259gI04Bk(2cA467l&`tQ23|Gtu?9R?oyZ>%S4S8tM!0u;`;
z^C-^c<++Imz{Rvd1wj3@I@W%pesy@^S(0h{X@6SaG&#q)2B=QIKw#Pkn&3sRP9eqs
z9AwCpbKA7+x4T2E@H~F9>85uuD}=2~Vl%tmB;e@V>Bs%XMSzU6#fuk8>RN}tpf>fK
za9;^LOU06&B-~P33Ov=Ib%g57rG%b!%ZTXWOT{%LP<X#!S`f({c81N-`47&y0hmDy
z!1_|ZQ5#p5@clw2Ydx0Q`>Yh_`J-(k%~+o@Xs5jN&3dR|B6SNnIzQnt1-M*fRJ=$M
zOI|9HYTXl=BvO0^Inq;J=^GVi1AwPNz-uzbJH~a&2jH$Vjk!L{zNc-CQGElqz@T|$
z>iGF9Uc(4jWo6q?E()xiOk?7zz@HF%FwMdrf{Rh`UU>I;FviuT<8)?$d0(`}HLp&f
z;{^S97TbvrOSyV^s&>pEw^c5I6;~&va{RMq{!aYnT`mpN`mYWE?sZ-0gP;aSc~X~l
z0&l%ijmw8<WI5KUam3yUC7+l}{3>+Vv=TJ^RTc76+^(NcwKvSV@|JtDl!L#Q6(c-M
z1~4muX&#T?+R{f5jz0gxjwZ_cTnEAOqS+$&WQB}p;CrJ1#i{zAPVb{qlVy*3sdyC<
z<?^qiP7{?#%j20@`5UHmQ|)n%qW_|B$wM8$mc$Zgz<CoQl5brA7Dqn;k~wp1+iy%o
z4N#0T_fIdC@HB)7P^b}IBQ>n4CiJF!4_Y?UfScd^SBc1PrfI=SS22NrUNOOwIWS@i
zg<lSUk8PR`HvZAHqU+ycT}G1{<~Nx1VFi4qmqpB^M$a`M<WX_7{BSiIJh)mg>oW(9
zUoTQ4$s-Um@~U1Q%E<jM*E{kL!H-FqgrYei*4B98UliK##7)C{j~<)9q(V~3Kd}CV
zQj&Ge(R@TOw_@F>LJcCygb0D|Qj|lawxAEA7-9D5!piRJx=m#fjs*r%kEc00W`{ic
znS5R@nRrepyGX=mfcY2h`@+CvQFSLGrmXz?F9f%!E~2<8A?S-|K%dI!1ggAlwAa_Y
z5vt1m<tXOf-uT*<_&kVRUZs$3{TV&H!FW}bjbDehbeYmh9R>!GrXHV|zU2I{mQuB7
zsEuVK70IuvPsMfc?^5zawZcH`z1<;A5YVUknIf~Zs82Hh1wOJ1)`o#uwvuK5ift%X
z1{%QvbOi$IB0HWQ^Q%>w(`N3Z%7L=`x+TUsFo<q`)w=u})3UC(09@c?Oq}Wm2cDpH
zm*J&3`dvzZ>?mXf-~x{OoH@2j_rBig-=(XBj<DiW$XC+gl-d`CYvO_<%hg~MI_C$H
z;cTyLNk%yFw}l*@i!y!($ft|j=bZ$nKfnGARuJ#QETcJ=>wbk_d4`m2N3>J1@w2=B
z`xQBRIPeHQ@!pf6EP=7Gc-#WXzD=VBosZ5Se?kd)j3cQsH}ffl<2g9%5IVNr?c>V)
zgY5!UO&t}4=7g)QXJduVd;<h^B>PgI(Z}gUp8j)>WrBX8(KwIB-_~ODfUaa-Q~UcD
z{jMb12P`5Vp51mEhJx^C3vUjzu*q2C67ZvgaS++hvOtf*3(ZEUx4Ff#pDDWYb>cJX
zRdb{16TKuDIHr2ejVqMW3LkA&a<TGkD}{Ftvd!K>7p6nWF0@oOK>pUC2e0r#8_YcC
zZPKSNtg4`XR1?iwIh+JL1yrr37VjUuX?@uRVnK%dXh3x47;uiikE2D$L-zn-thyIU
zdffta#90*BlG2E^c#Z^m1{EYw>q?xYxBb#_k`A1s#>&<sxLZW_<XG^{ack9LypR@}
zZ^>DTyu8=@@A+n4m*i_wssgt}M(`?OsDg80LY8wY{4U&Ws+uZfZmDlxwN=BqXHY%!
z{?xBY6{evEFXJg28BNbsHn6<=egh69#JcmOSTMCF=(NIS$!oUC8c!iN@AAjyj?yqX
zp5i{MfH1Gvms+;dxu^oCsBeG0+n6ZuLAyX3ZaR>DS-Q)HR_a98HjYh->FPS)$(;Xs
zc9am@9<V93Qtn5XiF(yby=ypx`u*>;Cb+}w@F-MVRn$)xKn}-p2IqT}Bp^xaXh(&v
ze*z=)@~#9ZQwI&8O|$qZ!@iumxy#<fYsZMMm{HMsUw=MiTbh)??}-nwvb_}*cD;ax
zSjCsQ(EgYlTDG*@Tpq0DDW_U(zl~g41Xt($@C#t^u8gth2e`t?`(=dw$`?e0NWAuc
zAd>k13mW<}5{vvx3{WI#rFlWE?MHnKYYFi(%K!wx0EL}in(Oze9S~jD5;!Rj869`u
z)0lB5$lbif&Zi}xn7C{;PU2C-cf)=G>K8w@yI-$tV#Q3XMCsLyr^VuSdwrG;bjiv}
zpyzG?tSjry{?C{3GJoglh8|a>uq8;>Q5u4UsGr=B%3b}b`z}13vgEy36+Z&8<eQK}
zQ!){+^Th~uzBK|U=&s$(`KBO|V7seVHx`q&07$`)P9fV9t+wHE^V?<Ua^?0$cq^e?
zSY0_B&?U8}XK&ALuY+ItoGtmR{Hu@NrU1XCO7^jG$9xwVn{xXXd^2{-<MCZcwdMNn
zVt<|*dmkRaVX#6B9{}Grv~Sk6hi<R(ZtJhUnO`ZN9|PrdalYGivx})s2&}xqq<2+P
zghy3sH)EAUEV{z<u-tsk1~i=Mc@2`N=VAbj#Wd6eR$-Cev()4a*(0pBja3`5;Ay&~
zL=@QsfWK=DA|U{Iburr|-~)^eK*R2x%lAQ^{^=o0pVl|7BK-j1;0{L5afOXuD(y;&
zv^6YBe_RlFxwuk|7<Q=X5WN|NvsgdkF!P#zwegL{oH5vQFNBx{_#^IE42JEvP1{qw
zy>5VdnYMEETWn+3{MK(C7+$4*=4|}i`((lYdVqQ@4>e0lJL!=FjHQ{|DhIkK#@c86
z=O<VoS~9P1>NSn|8AcZ0C4$H}!Xm!eqj!+Mz_A^vmNElQksd<_CqKOVz%Q1-vZ`U`
z6Ov<^^9`K!BZ9fUdd&<nYbvD}s%r~~<*KGo@0)1@^D3Lme~b96t$p(M9q`tvI?9Up
z4KlGHp=vgQ2=P*C_q54NJnRYpsm%0nR$H4yV~L%nh(7?iN$6Vjd6Cv2H_J2Z<;|W%
zXHsKoeK<t-0*?-5V7dU|>H!<fKL7S<*h^RU4}hL$8zohkF=SzD3lx~v{?lYijtcc5
zLt`*grQDR7!BXQy7^Yz`y#Lxs&Qqbf+03`PxZgfq6wlGsO+zZ;l;yl|MNySMr7Cv3
z#XBx-)m!G$=`yqZgw8u?RAMvbKWMtfa{G230MR=Q)-0SXnT5`?JPsL7_e``SSt|}t
zYQN%PEwmE)5-IfRULycMpTll1YHncy?SHzD?1Gxous}8)3#+ddyRMC~Hl8k4y>$l$
zTIV+j+5lZ1ytW1wsq=Wi<PaW{KAtkwp-z`5O*JrUDPhfFi+s7!?6&r1!5tt4<=ai5
z_DOBI4wWFeo1=tXPJ((fCpgn@z_QQ_`dgou3UI*+EZC*WZg(J$5FWTZ&bw{D`iU=B
zmi59L=r23=tCIU&KSPOjV2>nhGi}m@58IE^_5q03T_~>F1eE0TUx`sflYHll0^mv1
zwEo&qmAlZ%bZVR*0yv@BX}?6{J!Bv-dAu=IpSsztZmZsL1e$-P(?p4;=sZ#j1hdmL
z^PAOg<6P2S#u9|T1;U(oPL}u!ma6MjP0O&wlHewQ-F+hai4<&EPx_RO1r{5?_zp4x
z6y0I0&vH83h%X*^tq^a1y<_kSfA0Xe%{BY3hl)h}FE7~-rsI{VjgUJUru?YWa4M}b
zn_4-F7euG<LuUUyo#E*&pnA>cy=F}vvKFGF>&VNVeF9!I?aZEHd6rW>AtBf(=zPNg
z_Tuq1)^#1G>HPB^lXDnQ>fAXIe}}=Q3)k)iHDJrY(mLm`UJT$*$y(G+b{k6WlobsD
zc-Pno);4#dDYo>|%Q1ixxc7L#y%)|9{o&e!@d-Zjd4_HUuHCMih))0QhWSl#z$#T<
znTU3lXiCp7y3YzGj6agp1&o%@I?rC&@h@4Bw=r87`Us16osYQ8IOxOR#eQ*LFEhsi
zO0Ix!+nfVcv*@?4Ok?_z=IbD)STL|$lB^9^4xo{*RGD<>vjhLmZzSCQOW6HQNh+RQ
zAnMe*U9vH3e&c=)0DjXAu9#bjL!g+9YSsoEMO2Vj586Z)C_}Agt!qX;5L5UWe()ds
zRO|0)xV22nrw1fVZUHRUTdEanN@n~8QREVQSr#|jc{k;h1@`HToeqM5uAf+WLE2jM
zA@&9*(f)~A15)(WofkU`r57PG8MIq8b>O#NpkE<Qvq7XC;x*M+-0@5}KUrQwI5Dd+
z_)i#1<!mret^6LN5_YCi)4?nk<B>yH9hQ~8Kx~$mrG+j1UDs*ch~mn>KCxxRH#;J3
zin@EM^94k~S?d{hlzpLuLcFT}Cc8>53j@CqEld7;BZhy@BZL1%UgQL60WJ+JO?X}e
zGa-Ab+*QvIzO^8_D*RhRaZ4++@UfHr!2{mP7i#Hzj=XBTLNi<Za5pfRX~ozCsK3<L
z#9E`u;ozj7CnS*i0bDZa&!dI=GsYex&vx_I*x4Sht*4B9rHw6okM)`)=|>kT&j2Hj
z2k`qGIB4sQ!d~@q4C$m_W>f8h1hw#Z0ExuyS(58${$^}w_V*wOAE)~0UboS1VkWpN
zc_B@F-qp}rtOU=jdqAQ3er=fgWwzb{Yb2vC8%};bN19<FC30R|_g?+A$e48f4gn5g
zDbVwifQY?TYP~3qe3HC*p+>yOfFIVwnMglLacCF}B;eQ816qL@ho}>kP@;B<O5}p_
z&CC&5*sjtt7NRw<Y{ds5E6KZs`Wf}awm>QqVL=dYK&vp%AxK<YS)j0a(>55HlN}Z9
zSeotrJTAZMw8~}Ld#CGbbLP+S=}W9Aa4@vK)rR~QK^{`3+12lM8oi1r3Yx%==LxF<
zF-~L#S^5v?7?UFho<CjpJByB==VZz<M37~IDC!*WFQYq?h2;PC5lN{w4xv}n`5RtV
z86&GT5^t!M7}R&f)WiXcU}s(9l3Z}Hl!d}BN#C+^Vi!8B5x*vqPdq-UB~`_ISpf(k
zJ4o_-&>~lM+ma=tA_d;!9yj+gFiAWq+zp0TYM<ZM2<l*~yQr7DtiO;`rQP^Q=pma;
zZX~+=c8!onTx-Z#71#K|WFG>04N4~q_=(%#qyR(10mIpDiGoLW?FB6H6|#tU@oK4J
zpP=ZzB3d+GNoq)1_=^Rg#W!!InJ^kkwc(dH0<L1?3~Q?blpOg!L%afOD_3Xrc6fj0
zZ`~?<MRSu-rn0z=<7V$dq%~Vw6->K@3s;tN%@rcN;|`5vy<+m7`^E3@qMGV@i)%E^
zY->Vj{|QdMYAbGCb6>c;+{n{O4Hq_k1ou)b1V%tffd`++dB{#TXR*6JXa_Eq+a}0N
zwgDhe%_*C9_@fv2{)CwO4uPE318CAk>Y=3jAS&?w0yRTI)Fsf|tNWb+6e!6vk<J<5
z6#hxtN^{+D58Jx%08wj(MO-<|1Y*(X@FMFMeFmP$rU3YtHOXu1@D!x?_XiZ&IFI>P
zgYR)*gzDFuNo4z_LGUj=Vjl8|)ct}TQzhrGOLM$Gh2`)qMJaqje^DW2q+1QKKyHM^
z7CU|SEB<W~Nw9FrI_ow!!)KZ1@O!^C%JHr#`okvb`xl9q6cd1dU^?trK$6WrZyKht
z{eclWEJPun{*G@e#`R|9_A>aD-HiRac7lFBmdt4Dh(Rg(6BggZ)`w1&7Wc_{!HA2x
zpyIKr*_H%c>WTXkF{4PT;-N&wyDn-1uM5}xY&!MOt0&6BP#U@<-u2_IR%F?HTNGJ&
z9lqDD9YuyiqLR8kj!l_%2d8<J#>JAMqCEOnp|&L9Qbv?f`b8IjH1!z_Iz{W?PEXTX
zpO7Zf`HIM7WYBLtgP#W+c;r>|+K_v&QzsQ`cl)xkIxsLkR$Z4AS^w9(;^qL>eQNug
z5jXM_yO(MQxt`n|GV}$@?OO25&=1_4UkcdxN!hYJ<(X#G6BC(C6@Uy65z^g};1@SU
zWJU<0sOvLBvnn}}-M~Q+>Y2Fv{R7jQG`NsK1;$uYruZRF3mF{|BCr)LTdcq)tPHzQ
zGDl^Z%cng4`15LuO_bHum9fQ(7W2{5uxQO>I*gnv0#tQ-+I3@~Y3#)$#>5)nm%8A1
zxvZLlMlOUwoL+yXhKv;sS#(ueQd%-d7*mFzkj2-@N-%U&6hnd3Y^pX3_z@MicL~{i
zqo;^JS7~%8A>Cc)eVkAfDp|8p7+$e88Xi~Wy*nf8cj<Dw-!)AF<z&&_9a2R0aC$(^
zB<I+L#4Oo?ddp-^Q5EAR|B(4q_lbBhA=@E~y&A9Wl<xcNdNO>r5%9I8=yuSkFmxE)
z{7{_+p!+<G@$Z!4PT$=@D{|Tn%>;E%#6w{35+Pa(T0vU5dbNZ|j#u|Wo<f)k1+?NO
zReskJhH6D1(x8#DDGcS)0#i1nw4rqf$jhgIv!<2Jhfa!kbE@DnV<avqg})tp{QJ+s
z)GU+$jW+OHR>=cVuKv>`2P;N(p4BqLNBZg0xMPz~#X6$LBN1r?;Uk`EL^{!^lLSKf
zbQE$^{7L{07h3|o!ZZj!RyU2>k7A3@kYD$Fv!wQNE#Rd7S%-J>_g-jBu9ek`3Yt7x
z1_Jt!dj8&u1PuX*t!Z<g_;d7g4gM29&6u9}{be>*+jHIMLMqZ%bhgNu`hdi!!|W!7
zI0zD7LQ$%KQw64r&{KplmZRo-!Bx})>N|KkAEKr#s!IH;ygkec`9}L4mu&H!CP#sT
zY9a`22WxMCb?w8M1<4{P=p-y=A%5iW%mQP7xDY)&#C>GEShM&`rOe0cWHC|V*zhz|
zrLvbA(L{1|wc|viMA5!~uoS1JUEP{XGOJUqn}wktc?<7YsU{h0Od)h&qSZ#7yn4c}
zcAE>TeqDGVcReXr<&YN@9vB`V%gQ3tXmepKH(6SzY%&ld0~w-&vr0QeIu^VS5=*O;
zi$-ePOiflTMlMYx{QZPKp|0+2A!Fc|>ZE=SKq??(z{yWKo1aIEBpP`)!aSniR&Pi8
z-s3}*9SqDLuO?Zx8!Lf7`iPFzg(5-JGp8~oo+&i=L^b&3A~*@<EaJ$97rAlHCUr#K
z9#zPpM0F3r+FxNxK{zqHo~VyhXF42G7oAWX7<P+~h(=JC(zSB>qZ;0K5=kV!+y7Dc
zdY$hhe9+h&ZM1jesHWaZ%*q<L{iD%oz%2ZElXngtyxiEjQ1%+Gh<=Yj;2Hn%shn;k
zmr*~hWw~bZ!iU!?Z|l8?xKwuX)=V;ZYO6S#1a4N5yHD7vVhzn(*LRW6LD$yNog^~|
z0a=j_O|p*wh)Y(4+14;h^@Enc`&M|)CEOkMB;WR)GDhG4;^aX>8uNO9_{{`5jIr+t
zTDYwdr$8NMJ=F-}-$d?6?>Ta^2*<cXUZBHkGkYYQ>gAbdNiI+UXKgE0JfQd~FDK-*
zv#*a<2l_*H{L{=!r{eSr%w8&8+smZC@2#?5qU)T)P~gD#<SA_KtTmU3@&k*3@lLd%
zsFUd@=v7ZAT&||UcX50Rloz#Y=!NVN5+}K+zXR|73_#9A-QUJ4cBuz@sm0)`+Rx-^
zBo>bCB|Rl9GzeTyN|WV`5q;a+EueBbE^)r4lJ_BCJG5E`R-l>7;Zfr-AI6;^1I1PO
zki8EpnxsY!rXdB`8tn9v;y|Np0_-KyEZ&gP1=a_6h#C?$QHomJ;K`f>A?rfc>3D)-
zWHJiyF##{h{)>Q|i2gQy_*0<_8F$J;0v;yB-A#*}VZX?P6qUpnC?B(c=+DJxq3=$~
zcqnH<x!(FDj3lb>3|s5%ggtac$qa|1jYPQOp(styfdW=a9uXe8UCMP8((EU9RoFcX
z<3zPx8wYe3QIlTY`ftn~-??@e$;|Kn*%?hMo~SeeX?tb9;vI%1pOPSop@Q<}*`JtP
zcYZq>NBu=jR=n7XExLyRd&TR^=tRmURa0_k5byVV%Qbpn+89NE=p?6!e4cOuH+_I`
zAFnlo;6uNPSTBq!Oy1YccS*jtzf}$276dHs*O-uh4TF8O`>Fsrcas*uKZz`Z94u(d
zo+eF8rtfOTnv@1cafn(p>oYAVlC3)w=|Lhr$%*|_9!y0>F`(#b!B4&F8CrEXvyyjE
zoIe(#qR?zi)w9gA{kG)c@V(C#V;Lk_e>f-)?*Ssozeo2)bi-=Ba*IOrXj0Y8=Q#P$
z6lx%05y*B{2K>_e-fNZE#E7aao){`&sg3ovQFQE#pnTMWwu$_KK9%S>9NJOcsh=5*
z%5O&Tw-LB%9*)epzq7@!4UgTJ@LBJ(f4~HgbUzaMxZUKGuY}y8mrU_{6T<C8?mFsd
zgtEZX#M>?qP-t7OT#3!;LB~_;rY~&IK3b&{ctW(fE-qhZpWf+K<(1<6=?!g4LEK5`
zmQuPYNK5!R+-)2>uY$7+Eu`Btwl7k<7pa*5&8=L=d_MiW6edsO&AMZL=Bx4@mJ}U&
zk;(>(c?ka!NI)y0c8o}1`ds@Jl=E6?NAW@wFucYY>OQk7T`EtQ4rnDRv|PvoL^4HK
z^Sg$0q2OG>-aU-yJp3}WYNBm-Fn{HwVk_2Zg3y@Uv_c9&tBw`Tn6(m%Qj<j9apI#n
z4?N^lHx4c0N8ND8Z>#hkh}%-{(u@484pX)qYEnUW<b97%F6c;ij6X*Sw=g66WQM%V
zoAx_Bf*7kE0=C{5URNu;T@a&`;8xF>h_}!oZq5r}HAa@)9ZjBv#kwmx_qSn^O8sx`
zU+ACoKr#0fNoQ5F29~C+Vm?1R3pe3>*aLKl13gv$yhiWgo$hC&{a$RREG^so)sxj0
z?)MhlQza@#tUm}39<)wegvLb#qP!Uct12fvv!EJ;04$8|^(QHp;pv)y0%>9mCTvzX
zIT}b3uXg+=@Mp@y&|#vn*k2zCU<1X2;ZDE3vlm!t$qa#1r4K$JJoQ?4Ye}_{?*H7A
zeFp?lO8(E!nYw#VpZCVM{4dk_f6FQhg*T9Pef((`EB$&Ne-84KhOeD#utw<LD_pW_
zPD(2rGTO@=?JoCKgQq2_o}bL4YL6#foczQkCs_WIExS^GpB-MM#O1MJvOHvi-1}Oh
zJ4P+ve5t|x_v=;H{mo7Phz@agSeQAK_Qd~s5Y$C|m_B{|v%*{ih&$X3!VGEWoCm7O
zb?(wUExA8;y6wYs-HFUwqW=e&B-o^ZD$EudwE5lJs;20t{q1n@x!~#kry%mFgpU^^
zPrDezYV%I%)It0;s6T6;ps(i=_O#Uh)XUmt1}TjtAi=Q18uv;;9ZSmvd^F|*joc@P
z!gJ@OG{WkooFIa>OFgF`&pE-<%U>2QGy^2ht`!cU!(^@(Uv;`392gK@fvN~1drsMM
zg3cHGv#thq+ni$YBIy{rPuiR&g&{>jvC}nfY<yjzE{&OCVnS);BbNoQDLPmPgPOqf
zazlIR*P5VWoHi;Uxd3U`pwq~zYiFB6xh)QOgJ8(XN3wYRbyt8t&NMyr*SxEHEL-BU
z2)bN7x!!3umpFU;&}A!UMoo0WrG0U&+qk)-E0*QY<4lWrT;UD&s$c*S`-WJw{|3M2
zALNy8Pl(bx=vhGf<CIe!avcBO07N9)s|kqZ#k<PLCg?HMvi^;;^4sY0gk@FOlFzGX
z5R$lR62w1YK(j3M%-$hz6X8_`L|A|GA8t@~?6>Y#pVE-2z!;7X*j(=ZjW2&Ykt5dq
zc=EgRoGtl8K4$%I$K*gaiq7IvM1E+&z9?=-9haoto728=OS5eq?2%Q<RdlB4Ta)Bf
zZXw5y<U7P*bkz<!>TbAX><dgjk^6pQaKasG5RljBF}%QZcU!n18;D}U@^M{ePd`!!
z4x=pk+R|10nv%SpZ#E1M6Gm<u=Z$BjBnTV7jZ8@wTu3P*o@n%mBk^zOj6!RP3j2}4
z#JXRmk;p8!6>9`i_ZJ5((Fn$#FoZkGe}wDKzR{rG8$YQQ7R{IO{N~)2kH5K<Ga6_|
z<?ZVyr+;aw(r7`IM51P$LRn<sUT-5ht(ktgNW?a+VCVQwdawD?Ou$|JD3g1~>U2Vo
zsqR(aUXJHd1KUPDulKg8<ETIPqPT0`DcsLquKLk+y_@L6CpfRf=uYe18(KR0*wgrZ
z$+B6VHVO@0_Wipz+YhUE>rdOR2!z`bbt(m>u?*M{zpXg^T)W{Vuzaj~=B<8rrPmfU
z*>W)ano2KXTL4`bxTwAjP`}Bf$dJwVQ8TVclAGP&>ze=RP>X>b#8{7^W|nR*b~)=U
z(;;Qi*Z9i4=6dfw#GU@vY!Mf2*6`0y0$kD?e*eX)Hm5-`Q;dd=ZLjp(g=Q_?q~wVO
zaL2FBtmhiz%m#L31w$F}-2Dsk(vAHlYs7Y8pfkUJa{t2Q%3LZMPMIuurAt>wS{9Ve
z(b3CEyH%)cxg0!kGvV>7TM|Q;`;9s(ZEfMSt}K)dwYI<B)8zhnb4HzA6jaDS%JuW;
zE=7?+yMInsE2_WZPe=Z^!%t(%6ajA&e|<xX_f5qKn)H=nuHM;J$kY?ArAeB|PcBpC
zEF)Wy2rZ&k)f+SSZIU5T62vLiP<SJ`NTk%!Tbr8dJoqn!EFhl`NQhH;`=RwJw7q{d
zoXxyFEf1>Gi5Ad&(RsOaIHQTb2ZpM*#ooWRvda^m@67{5wi$1@l|v7wml?RcV>xt0
zXxGY5IAQ=wW}5Y+q+P;z#r0xgGwg{*#*`YFtmrE`56?mqNEsipS0HsvWqOl;?%>SU
z21#j^;`G@-GT+LbM_b18U1EqCDvR0J|E|}^w|*3yS;rA>7`hr!0TTb{(u+7=KQYA7
zWy<pFsvr!;z-)&uJT1fhBn{=*{8{~p?V+u!tzV&F{5Sb$Z1Jdf3Xfasj0cFne;+2E
zuUs&WrDNzP7ZK7L-0kfk&8>%jRdZd)t`DIVkqPS;3P-Deqox<bDIO%PNl(SCU+Ffp
zm_Oqlkxy;F4Drq?#5`He<QeVL@WQ4#!p6T$EsJkDHR6%rPXsOne(|ymFQn75N;9%8
zAH6sDF)k~IA-4MXlfPDimHZvsM$c~u*X3+k(+_vR^a_73!aaTxn?#n41SkiyITah^
zbr!h9H%Wcw|Gg_1$i5Th4&lodr>iozr=qK}2?CNfH8p8I*|>xl)su_Rpm`kw&iIcq
zuEMsz6<`;W#!*X=;!YPrVZW~iq-vij#3M{WkB~Ns%7UD73qKo9<0tjn-y)8uoJ9d)
zEU@BlGIy^vXt^=glOj!xzJtxxWobrxS#)GDXwQnJVszFquNsGNf&)!yGjWRz9Sn=f
zPL;=Q8P85K;A>GE5&s=b+g9k>#&^Lzlf1dZFfFiuOw1OzL&OjaiP;-<3-<UsG~?pA
zu|NNsGOT?QuxpwI-eiBKL%Lki@`3@+NV;}m7pq`@qM>>*Q7%NIlPZi&7)_h+a;e`b
zpr7n3KKft}`RB<+`Aomzy}$yL242h1*`Jk15dg8fY3eXraWL>Vx5P}Sqb;Rl5tG)8
z*gRE^jK@nn#>j4=COEEE5AQtPr`cT(GrZ4arN5WoPD4x%Grk@eO5uw7i}i?nK}Ow$
z#+dNKSv6J02*G?|bNR0X&$C4s))K`7XBiUlstt;y@bHi!MFH_DD37gz$Qh3V)?~W6
z5T>)(dtPmQ3wcH$4CLb1xOg|{b=X3z$;GfQ>FGy@>hc;Ju`-Er=qwKv1?Xw=1H=Qa
z)lP1Ic4*FcNaj=3xt*+Iv~4(}hz%7^d~z;il;FF}&QX`0i#SE=#vkxC1G3nOz=9SI
zpL~K=yvryer67LcV!3};>v_1czG##yd6NGrFV~m^ngO3dC(Pmd4h2WYKZMynLEw&v
z4I;9gV7yv<b1ow~wy`38i7hhGAlQAT8m{NZNpKOjoai|~iTq}!VY$_3_>x%$#1v2G
zR=1MDUWN;YXI&V(CwPaq_hqVOs^R#Pwwz=hm65g9p)0mt%y10I`|dpZg`}a1`5Xu6
z8S<uROVxNfJKaFtBq6iG5Jshyn|L+1L~2D5QcXXr@6aN!ad-q&vxG`7ei=dCZ!c;O
ziV>I2<FKLNp+Hb`Ezp<E7vfm;4IUY?z`t^j=#%h;55PTWkECfgsUi6$qal-2uTb}d
zVo}82);4Jza?JHxcZ`TB*{%DW$!Q_63^>CD{qGbAqP}ZfR+wME$@%p-!RlFZ$^poj
z7&#&D3>hQj;mQtaMc$uQ>L=*r2!6q32X_T~?K*ym&b&smB}GGBb@NGV|DJr%SoFeM
zcT^dvRoxjEeIxl(zB17B^Z{e}C1gqHa<)nDIgCi4`8CI#WUxC*RFq!B5g9ViqDn(5
zBk%1rwZho0_Hf)kF%8Ozp2g9k_$oeT(YNr1=&zFYUIj<h9pecXXl|f;^}^WshdY`t
zKu~o*!-d#5)RXPcqK}`oVXdnp+#-a2OosT5;KU%*AsqdA0b;&zz${v+jgniSLB5B?
zrF&D}>wyk;Sc^q$d(73RMG2$-6fPvz$D!tGVpZf@at$WQb|5>^JgS0h{J5DyVBC6c
z2ONS3T&vzrRT%Df&-E?3qIt<pt2@u}`&8+bcY0Q8wK%(<_&=2*?eP|HUm9%^=>l|5
zSud6KsTnmq2fCrvw|r3^_JvdtHF1oB{g(XCAHGi!CoY$FcWosgG2&HS<hqX+tPU#>
z+@~0!eVx694Q?g)um*CID5^|=`zu_&2W)?N=S&!=`?~1eRw`Tc!_vRe)Z}$9b&=}I
zl8m*T+mhq&z6I&vEU8E>69R+qEHgx#k7+J6=d)({bDm{^6T#AwrEIClp$S%g;Usev
zg@@C35mDc_vaa!UP)|aXIDrDRgO2ycc!;SLTFt688Fg7$S)A=y)<e~8i`pW%z_k%p
zn$P`2XY7~cgwVonG2R&`5KkIV1wj-OL<Mpi#XQK1PO46r5-n@usM_lP0t`2(FhQXP
zRj)-aJbSLaKs$CbG1dHM0!rahDgK>f2mzY*(R+>(#twFVyl?hwXbVuhx`$ekD=DMP
zcYBh*Z$X(M{WbQzT%y*7m8q1`(C->C7WBQg1+SZua1P%3&@2KXNZ9%nNx0#-lN?w%
z{>$$N^{T>bq!d~Z-|X}yS6!}!_egPap69snMH^3ux73za<tX9j=Ie!VU>=I;Cm<aM
z{p`D7WlppRV~o`eOQXNb(=8<iVI(z0O3<@Onqt~NwT)YEktUI+N?&4sgoij+b+F>I
z139bhrU__F;P$4sE}%CUx>aX$yYGaWfEApq*|OWL6kyiH=?5@^MJ}qW$;ci8K&8R)
zW@A#H<#gl3;gm+Z&$On%*OVZ`3NU8G6NQ~2bW&PFxf%z5G67s0lNr8!IP>drF(XDa
z@oQ_bTGaP@Nwv||e9)MVq24HAAd9bgH&&COG%*ch)qWpdOE&Rl5pP_8YK^_hC*CYs
z-)Fe(s(l2PAXF*dGdjfLSC#@@nYXymTU^w&;g@G@4{+`Bsn6)jPFRc5x-IvJ>oswJ
zJ4J~AF)%PAnG@xk%vgM#ovij4(++ojrI4t^ztc-jTYW;pC^DjeKVwvOLP2?0qM*_Z
zMRHgcGQ{`YQF`42YDL^#e+UU%=j;L`dk131rS(ve2?0b&XB;ZieG!A4-@?~vBD&?@
zN<CN_JHoMhbCwlksR~q_NcNaL@*5|3HS1w7`@66y1Jf-Rij0wGQ1-%&G?e(JfX;ZN
zmy9s$M+>B~7`lib9u3lXN*;}ZNyB~>-EQk&0$MC#np<g&u?8U^b>2LZFv?SbEDgS^
zjgdd0S=CRt41K8a5<%VVUy4)~ZDc*|Uxt{OCMK9dalu0w8MV_O{x#`!0(N*DQwc9x
z_@_7l?z^@6m=CPN?(wNgi5PkI<OlI%j!YDEFAIry_{zC98fjHvvGh96$-o~Ee$o*x
z*o5IkI+Vn}h6vW?$4(K8x60?EGqOjJmh5QVM(*c9W*?$N*2Q6o7Ow@p#uquDG_QZ(
zYN-t`L^V9T$6sZ8E#GT5?7vHpnAj>o7P!daKvD6G?3&g61D%k6;_{kF;tR12YDg)G
zl`;$rk$NWKoSa)-xi=#jf07*qZmi4NPEdhGeI0$OCCVwrKh>kqnpaPZMxPOIgFmD}
zPa1N33MUchFrXwaC_~t&!{0a(vk`6#1#KmGR}l}q8-SE9LDhFA!}~Jiw(`T4RU&|C
z@$HP<#T>iqoOKj)tP7Qu_rncNc!z&RHIzu4^*j(aspzxTUE5g3S{!HZ$C^Dx_lQX;
zA~3KpkuMSzQP#)@B+Cc3q`*Z2O>c-}L|lu{?q-9H9Qo{L`@35{V7^C4kgq?g`}SHT
zAIuzYf!xfGuwX~u9aZu}-$6YQP-WTQc<R`mZ;YE>ZPh42jr=x2f07;jk|ZaSySLsI
z$Lo`lT+9pc(6^u&2_AN9)wCHSca7?4Q3f{0*Azl*5?K`Da*%;}x7WZK56z~ZD08;4
z^=z{dlBNW1J5VLME(0z?pe@tXy^#(A=Iwe4<X5wlm?z>}Abvl~VciW*0)DlHf;V@=
z0}{ul!2EyNHP!Rh<Kx6GxMY7e`)TIK;?6%LXRT0eOH31*O-d6rIz$QGBdjOvWOekS
zg)1ZywV_uyRUMP0hc^8OzW-iOwMarO%bX;k_-2Gj3j!QJ+FRh+rP*i>ILn9SOc>4n
z;U&+GwEqsWvd61__+FEuhf%J-&lmh0$-yDUXZhhJxPLZ@I`pR}u{689sE8Fyu!nW_
zt6hS@7)J3I;dZVFemq<|yEG>Qa0~ICbF2H)L_%NVqD0C4Q3#3RM#YNix{^5<M+=>w
z)=k897pndgY8KDW*t_1%Nqjn9yoKuvP4!~6oWZ+xY>bBv(n_6@Q`e2pP!o*b>+309
zC=_7Xe!~7M2ss^x64$&}nAdjkkyhM`fp$wbxIAoWJGhRQ27zkhL=bRo=UO1|_u(@5
z#1Ycjy$NOG;O<VBC9>l=zC!?exSLV?Zf?L5V+HO>i>-0?8@G+V1?)V3CLdFy%3ClY
z#6F3tcQ+`@Z%!6%xwiN6p(EdCwsJk;WQE)E**S8Bte<WeYa6n?@rE5?_=E~_T9d4m
z41l5?Cl)4sDzwOr=Ef$Z%__I?n)nj!**a^wmFJ$}WdN8~(0V38w+5)_dwS+v@D33`
z6Y3Une~ITVHGnI`-Tk^4pO{*NGrW&tuJ^V6Rtv*6h*a&t8^aIXX*Q%25hSDhc<waW
zT?+P~dB%y*HPjscM*mk@`)sLA8_t1qwoiA8nxdTZ4aulpH6W2PvF7xVVH9+lqytts
z%WHSN^}TaGUr0c9gKe`JV~u#h<9MX+4;H_cYs7a~E*yO2iAKFsg7{rTCf5~M(oQ+`
zjnZWWxYC{s2^lUzE~4sp<;9)Gt`jME-lUI6p(_|OOcB}1nE{DuH&f0|lVizL@cZ9S
zuF;|HTRJH*U$(@8yvy&SEqC{5Gd;&}vxMBJjOsKY-&<mIl?ioCva7e$%<<-u9tz$a
z=fsr7R85v1eG|3H>gYs;O$e4k2ff(%!$aO_hB{V8L3x8Hl*}I+cq@flqV4%VI7w|D
zJz5D&`PEDq9yJtM#Sq2`zla@y1*a`P70^^fHWbxdyCg-v-d1WkNQiqf)1sj<@Rb_&
zhbo>foik=nse|+04i&<Os|relKy#p-`-Kygd&|4dLwZw+e2_Mr)*_)_zaWS`n2FQs
z-AULs_{1Oo={g}ua?MS~h(&%ej0_2(Cy$-}$+#^UF+4Z29ywUd7@v#NHkv<)7go1x
zs6c1!QI#2#KJ}fmA;jvVNvOQ8?X7LD^$uy>9lEWtJ|ZuKkyKk4b&A^PR+i|Jgv1lK
zMDM2s<T=DKPhhSG1H+E`!O4$8;;BjCg8daT>kT+cT}ejf^+fwXYNhnhwBoww!a<i@
zl)UbfxlGUA`>Kel-HM45p8XP%bzAej%soy+FhBCq*yMebnp{i7=&FKiBT}nerS-lS
zZ(axSuJOLR3|gsBXc;oFP*!zP6%ekXH7hyVxtL(JQ(6lB#mlvzIzuaR(cS#?cdIB}
zpkn~H!L72NE<;0>V^87RC!K|3(-rZe4J(CA6+LxwJD?^>F59u_2_QWAT;uj9W2IGe
z24wKp9javfUa&uiGTn%Fd$WTwS{8WpgU|?$jv9^;+Y>2G4LS&XrT|GJlOf=)#(ojc
zUe)^)2M&U>Aws<P7}zVbNYt}9g2><kZTG4!)ehB^)N*{wmLeWF=*@Ul6+zQEC<9fK
z^jBr@?Hm?6@=WT)1%~P}<cizK?AQ&->ch~-0Vj4=AxmYA9*ftuG{qzwOLqH|(Vbv5
z-lJSxiTRe_IF4=q_C61P+ffUPqin2U6R@^9`?yrzXmGhL+-9SCaWoGpOaPuf(Z2b4
zLh<8py(~D=LW+v2#{xfx$t`My^tmKza{MCIX+M)vL&N3&xyMv=fU80rPg5UZmp!!r
z@!7~5`hUZMT_)zUK|u0S<1I__tk@4AT6TJgy4dj+Q~(x}OAX(rF?n&&ycVx^;pN=*
z=NcgBDZpYZ)PEtZ%KFhy``&y%IX*1E-Zkhlm1_Y-n!h&ar?bn}*==4=Qh(!XovZ%`
zi0sZZG5Qy`&$|6<I5sd3^tzg_jik}Pc;<Cj{*kgH{@%r3^)nh%Po3#gKo2mg2A&?U
z&{>XS6;%zyDLao;`<Tt1s~PB3kVMlFb%6P6UjGqYObA$K`!5;l^~cl%SiEjCV`RsV
zUB0yAAMwT5G~LiLTG-y4-wK9X8c9HH_&Nl$bQsk1-^vTec1DB}-S&P*O~+rD1h91H
zjd8~vS75P<fZWAI!jRu?mBAsdbqBCgEFH+l+I@gV=oK{y2K*vwU_OL{i<(xk%X+<%
zo;1h{dghZ9bx;lQN?>!67;H8%;5cigvaxpc1FzQf>~J2iy2b_@1?I|qyPBaDesYRk
z0e*QLV}50MJ{x>J`(_MyYJyD*utvDw{F(P_E_Hzx>v_u<{yr98J9!OG^CPrcs|03%
zt-`539kQBJ=!5(}s5{H3sJ`&uOGrpd%K*dBAT2FDlr$<SAPv$j4Wcqgw+KiLrG&JA
zG}6-D3P^(>A$|Ax{nxs$@0)wqx^H~rTEm$$=j{FL@AG{=-|wM=z(jNWqXbMw=?6Bw
z48anX71QG*e|Y_GW&0rArMW&~0eGLqp4u)wzBA~1bv(rf83<WTG-;T8qt9J}{-%>H
zNo;?xjFqZ|CTL1ElRRXOh7~^lReFL@A6dJ;*f;BS(#@^o-M9oM8(spQYHc0`iq<n|
z46ga*pSN_*G{I}*ZLPfhz#;rBugH9O9q$Z`LmAG10hbqMk$1Gje!jlPq{;IPIDD<A
zOngdphLbkDSm33QU0U-FGAefuuo$XlkBB9A_<twzk_|&1M4+Xo3q;WL4xGHo-cTC<
z3IGw~&8jSmoWS~?!OwmIj`E*?7y6-f7?B8v=z{0izpDJfKLcNXY*86n#XmC2C8%nF
zum{ipA32OLe5hB=w_dY>EXS=6R#AzbhsFx=M_#9uc}CA1L-xTn`vWldG;uTzU=I3Y
zo~2=O3<&8MMqeB<riI5^QZ=>U?8&r-0?z#sVu_9H4~IJv$?#I}yyQI#Jf1kFF^s2Y
zAFROaE-alLjQ6OXZI39LYhqSZmou_inI$Zf0_Mt3F+-C3-~7~Pj=1v`WjtxDCD=>V
zL}#_i^n5&5q_38xud+)=Th9+6x9H4^&!sOIz4E@}G6sCP{MRj07O%1~*JSgrwD}up
z{9>MqMP(kZA1YS5kefx7N&?4PwaUFUS9(*fmYtIBm_towgp(d+A#ZvLe|(iscuImb
zD*twIwM6=P3nC{!#pqMPL4Y#x>Nnv3{#5!k7Iw6g;Vn_Pz?0i#<!Ng6o&wu`Q{f86
zY12L4tAswoJRcHB#KO*J>|ySsriWfg@}nJTueU$AA7j&B{S02RbR4Bz;2Of#%%YLp
zVJTA`__{%F@0M-j4(KH2^o|*_w{l8qCXK8CT%}y|WFs%OtXq5%SU#&I{?g0?Yn71~
z=FN%Ajb2_Q7^eS53|kulBQn-Mgr`c5;e=ROd4}NGaiD-^1ScGjE&`<Szu3|pb(!z7
zR8Ct&PFRNABC<IR*!N%JZn<3J>j$kA<A^W?QjI{!g_(7IRQMU|_cs6%Sn=Bd<BN7@
zZ6rb3d8oY*Csl5|K4DldSlWzvfttP5S#23DJXtgq+4K9O{~i|!LYwhb-e+_BGC0p}
zj`A9_+<EG&ND=oxv$1wHvDf0x=fA&*fL@HB<|nllCQVsnx>K!Ta;oz&`I)%JVc^!|
zEH1{If87oZj-cffG>4R1Qn}(vulk+T7{@jrbg|2R6pg3TS?087W}W=>#lq?oA50=}
zBvF;nwHX>xaY{d&o_*%=<7p;urX9PyUO2^nZufh%Of({hS;fPxDZP=gFDhSHdHirV
zjSO#l-`)P0^{<ot)AbB~Q;|Z_;7Ra7q}h{Ped>h|*cc0TboDbycxvfA3Nr9~XH3P^
zR<`jb;FX?K#V&GyTy|?ig8la=%1Fdl<0NvP?BUA%YdcIX56C|ezpxo%OWVS+8Vu^$
z^t-v>-NF)46k(KjQa4^#`(?c|3OE(0?*2R?Bt=?Yg@*}wtW5_hv%zYfFu^mdQw$4;
z@AG#&2ovSV5c({%EG}>gry6X1uI!qD8(sxQH1rX&BCt2xNEnWYp;!sZXh8ahQL-vk
z*rY%h&4_{j3>dij^jHWbUYx9FR6J>I(<k7b0pX&!m}=6wG3AUhNYC1utbTU(78CX8
zosX1c5spT{K5`^5%TvI72X>5I-+TVR=L2^2nha<rp|8trELH;9H0s&M|G1V{!OXJ>
ztVB<{f4f{+;b@8wqpE({{V3XWf^6T3_*H>I4vDy$<1AriZ^=HZgawIf$7m!`ki`fp
zlASYFAZV~PZ1)})oCK`UEfqEVoHpqoR<{##aY9m^$CE#;?a>a-0&}p(-}W=gE01pH
zDh;TNSm9S7=mHDWkz^;+nD(k9m2S0|M{23L)UW0Ch649ICW17o$763T2m!#)Wbf@O
zXreWlf;7sZI%`2qYRlidT&5JGQgI4yTFbEg{YWF|6!{=FL_>Nbxrs~Pf2L7Dh2&zd
z(WS=l9BI@?VV`K0l}P^6fllhZSZ~4?`r1|;3*FX&qtCs$s`|*52wHNWQVlM&t{YfP
zI(ysj!^wmKuo~2iY~uU)r;)@Ng`u<ZPt2R%g4v<gY{3muy=N}2v@dPeVHI*Nway_P
zB0nD}-d(yrsoP$T<dCHuHSBq1>7Ah<*dLqp;U>8>Cf+6$hcBFzMRH@{5ra*u&7o`x
zoM+18x+nZ&PiT@DQ`JlKsA61-L|o=Zn0khBwa(VtyivaMaN>CW?ziv~Ta@+*uupPn
zZD<>z$Q83;_oY0}k6w<dvOm2VBX>vjII_5YnB{$;mwM6LjgdfPzd<LF@Zw^2s#$Lh
z9qd=gOf1~`alYf{7~Ly2?ldNqNa<tBt8)e<)@+12GSlkU@PvK)--+^|npy6I7e5;%
z;=idRn#Qr3R64*rQo(A1e?rt1hNsntg{Q%iPw%KQN9Kl94|%R(pnf0N!tK)tIl7nF
zc;fw{u8(BW)CH&gVU~GYvPO=C=G=)+p%GyM5$}(w6D-Kt%mfUD-p&-^iSMZmya(-Q
z+D<%W>~?W?9A%gr(hJij4hL6xgq0^|HhX26S!(J{s8dR}K<9I$iVA-&t?Yw-p1Nlm
zp)>}E`=jbG$@P5Rut*P&0Y9ZUxJo^Wxa2mf3oT5hPpA^3J(H2?@HSK^`O(TPvb>^!
z7?E?l@OFGpRke$fH4JuDpCbh=6QmzMg3^j-RyM%qvNdhigk$vQpX#izDF%s1Pek|j
zw;za6Cj?zLnqz^PXqDNkS1uuS#a+Eclki;a!E-^<5%#neFcUXHAFC67Q`61z+ESk}
z9WN8ZSm^ImH%cYg?NeDeoX5$PaE7aJTU*htjQj`kVk3rpeZUey{)gVao&h70cjIo_
z2DcN1>gHdSx(e<@tVW{f$Pf_~;ZKqDa5V=sPelTWT#q(~KaD+;=4-jEO3dqmSl;=e
zlnv?8lbGA~BeZGxyc6WZyfb8LM&vAs8^)cq4#DS32J8gs>R|t2wRdB|DSYz&0R{U&
zc0S9%Y+MQ$5UD2Qi0R!KliFpA0lkTrIHef4eQS7gv|NS#7;fG_dk9^HR7V&KEl&C?
z`n%Pb6|FFBYBN&P{_z81NKYshP3;LrhQvBtu)?6!$&<qUA{ew^7;Oo94gi55eYvv{
zZ!}k{lOUI&%39MXGnaIPP#Hb=ubQP)YHvzw^{LFS2M(g#F8dJ|Vy=PTH?{7MzK~lV
z)mR<r)=jqoRc^9|r!{8S6XQ`#tCCEFXR($yX}pe_5$f5hTsfkSicM+O4pSa?;k;2>
zI#(|4=zG_3x_|49O8<xWCx$TQ@CY?^C0T#ur}M$i@JlwT(go&Ykx{`Ji&Qe5Ev(g?
z(lW)DWvRFEOt8USM6R$sb_3FDbV6n+jjh~tS3*RNfc@dR<y~14IU}|rw$EL`36o%9
zPtX(7-Xygr)4@r&MQlxDpZ3!O_%hGG?<71H&0aB|F-KbmDq@FaqoYal1P5Lb>4x=$
z5WBlIMPp@TK5Rify0VF^U}JjIt>cRBP>EDnb{(iq4yRH0C>xhjY0;GPX1fr_-c4{c
z7KK4;EbAkqOy}TNksh^j)KWtb_bAG)zvM$6f<#w0HJYSsDkv~N7R`Jtgj+zwGmRZi
z)i^fKJ<-XaZYmbII~9EXgdSmOZ|o%owD9lVu9^lE**C8oUsWS!<1MViQK9s&HRAEj
zBWmN}z7u)79h014)o~YJgp~qkS$W{x?&Bo01;l~OPi-y2;c+<PXnJc{65j`;_vBrS
z%@I-Bo^HJwA%y<nNOA<O#i%s0YcQIzdz{J0Q^r`<==@pmhS_VRo;7noA_H29%2ExT
zj83M(2gehfK~DaEDrTJ>@fl`2wSopes4R2R^C&n4UWTRS3Bn1HBMJWbl7xbrxL8q^
zcnQlzCEGOL%GPPbu<R@0p9~&S2a54Ekx6b37!f@>b>EpBct)p*kN=Oii3ZL3Lg>As
z{ip&SKg=csOL;)ov12l?r<^z@m3-JcM)RWmryJL-O*Eg)6pt95M9z>%APT)1vUh}`
zD>oS9_Ekh1E=jC$Hra?|_Eb=|xmZ<b*gJ?XkmtveED6MhmAZ?ou2qCm^^kJLkyH!|
zCH#DlN9aB#WvfojhI<~<u{OWig=Q)v*&rakh6arsZd{8nR?8WXXfrV<2WwOYA*^I0
zW^6*wDRFD!#<N3?d6qX06H`DH@4{ZrHlqc%iTMLY?Q;Z}XP>=V9WGPBeNi5fVAoHB
z;1ka$B$I+up2urW#Ih0Xm@>Y97}^|5pX#~i;`iLlvCV*d;YIi%KoD5uQml*!oN_O{
zjKCw!Nq@hU_g<x^#4ho`<r|C5Gr&S2v=ibD6Q0Zy6CitKXgtt5AR*pi5O&u|MJ|m~
z`CW|A&zB`>C_6%yu)!!9@B6pyF$zOy#J~VCJlYWcbqJoQRQa>@eq+;82r|j0IKzcb
zyg2nfj#s+;18&jf-tL3iH4NL{g9u{ggiVCae4o<moOJlh<9HLPT_a`LMnx@Mr-~~&
zG0%9OR}mb^k5`H|T3KY%YoZf9GO*S>bDdpH&jur3B3;Yaxi=nHj)iiB5LL@Iu<_^O
zpL+DIZb^vvA;`n;Q?gEccItav)}v}@@`cGk?p)dm(}~o{<I4!2r$(Kw?W(r&5j*_|
zWxI_6n_@>s`L<&94nePH4sUI5N&{Lc)iHy2!cv~RcsoQ;<2Tx5BGjrRyy7NArTaIn
z)3Ec^3-xM;&yL?&wC@;aapG>MG&<#^zIdRNk;h$&JKHJ(_Bngqjv$3tE0N;d@C_F)
zy3?+fAT_YUQrh2c81$!Um?CWKuJ~6?<L&eu?f<;mgMap{S8CBhcd!opPtc?74Te)G
zX&xmB2AbVVyLC)UuOIwTo>yO1@+Jgk>v`F{f7q?F>uH@{e%YS=%Reiemq`%i{X=EF
zfyVp3z)B7@;thyKw1DsQe+Kr<u0tQsi7wqQZ@!*8_Z6*e_bWU7uD|%tByc5G<BqBC
zaot*dswrQ2vxx60ga-Y!3r3`*{*CurX9?|b;%1$K{`H&Un=e0`Vw;|cNFLU@k5a}a
zrJ80|Pkny8w#UBoG-Z1CgZn@}Nvb|h=YJQ+sqCV<onV~BRpsJqpXPGG-T#B++wu31
z$5>iYH!sAmK6Lj*pUN1U(jko#Uxf|UmzQ`CN3Vrc?Qu^nTsZn(MMu>@7m}HsiazfA
zTb`VU6W=d^yYx&?@=urh`Gjf5m4Ag9U0g?h`3-OK=_R*I68lI0numXXIkd1xw*`-S
z54Jo+efW4UY5ha08J*NC_ba-UZC_tf;bP^ZqoeE{_AGy=KXv-wrpAsN)=rw5FS~tD
zrz(w0r7wPMuk~W!ON$qsz6lLD%MJ$f-|F}LRE>Nd9?8#aANlvYrAp}%KfGwJJQk=+
zZDhQ<;*(i=x$j|pBec(_Y<8$UbNx@U4^#4)q2A*DTlY2%Elv1`Jl>!$m+NOFPjn4~
zvbOumYnyTl=(1k!m9{uh%Q{Mabk!H%FIc(~JQYZleiHL_BL~A*T31hexvT9eH8pVP
zYx%>!uclOzD(6&vQq!iSTLv0NSgk8e%6X?2{yMT&hJOqwE;-m2O;Pl&Z@6Fi_o?-^
zrAs*)ViQJ00O^&rUEGP(aM!gxb8QmC*W~5jMC<&kaz0zL(~DCYlYsujwZe20-QNp)
zeeN5#Nm8oHgTFZn!)u?OwB$VV>wa7l6;0Au6JVQ3(4V5bpf~vS_lWyZ$m^7ui-yYW
zULTU&g1W>W1+6CC$MLwCe;XOM7S_;`{Zmt7<&N&1rEBA#0e2|V*CowKdwp|C+Gs3%
zYT@b`Yd;ZjeSXHv?;SM*a|{7F_nR*!tYaVVa~3{3w!13%vQPB%Ew$P870DU^dLS*t
zfCE$H`Hpwr!kWxrU^d`;rmw|>o6(RC^H|@2$7U$j=Q4Hi<cXnO_vbzltlWf#usK}p
zy20SZXD1JLKOX)QDo^2wX=qC5TdTX-o4~!-w3Ho{j6*gv;d6CONfE02F{u82^R{p@
zw)yGfeO{TRUzP47KeQ(N1NCN48$w~HDb%LdCLeUp4?DRTIm@HWu;x}##xEqQlq|#c
zrKd=8+s&LjeCyZb_*_bWf(ot}8}uN`8rRb*+j2xx!2?kAP|EdMRO(Lv^nmm$h4pO4
zC<mn?9^Mql9n~xy3nxTO!V{V_TMBoi;ooo>f{Pvfcj$#5`5mP#6=DtDLs}ue^gH{X
zJ7K@7rgBhm=$1p*U58-r(<M<(dulJ%b}#6NI<?-zU4WjSwgU&-79J0$Ktu79!*GXp
zf`9rxyCkvtv=n6ctgMhv_Ja#V2*AK*Jb2UD&&Vk=vzj2-e@;EAV*k;poI|MG!#vHB
zTW4s0QRa2E-r~($_pX{)-z+()-?ZGE-@rvS&fj#ZSzln(JGzZKtyR3OMw2-?v{;Y^
zYD86|*+pT<mwk6o|3svIog8*nxv-Z~<D%<Zz4ep+I=}qIvwAejU7nhM`mJ^{^S`w$
zFHawRy!^O4DO0QAvt!^9{aU;6M=t&O19gqHOt;+?>!zD;`8$4xCSaX1<D*_We`4sI
zwcUS!^@;%T_2wY8-#ZLNxH<g~j;LHbT25>UK3Fmj^B8?wC;jh)2iT+?!W3LMPrXze
z{xS!*R3KFPyGUM`ShvviITy|g!#^$U>sIU4F30GnIN*|@aSO<yn<EI|V(3bbA)7n)
zEmXCYjMDIMN?f$-Leo&P!=7J38F^{-{xO!Wzl|&*Un<rRAo2$H{8&5p&nn#%*O?p=
zX+-bAtN;EvoXg_ch6SjJ|C_%EcYgPBbyI)Kx#i~JzK_ekqTjanXjtFUzdy$8NF(n3
zU`z3%cHFHl5>kw7i^%>L_YMb@O*wp|FXd<UzAnXQmF`39Jq>*m6A#(AIkmKbh}31R
zdw*Pb1YgU_<|D-V;vZza9qAiYlCr=*8eUEglN!8buRSKcVyEo7_>AE6=-S2L#V5a)
zuHOl6cTrE(R49M+y%>~x=_rd-IoMEREL%E#c>J+)O~)q*_k)U4y5&B{9El2tH>2~*
zjncL0eulI^YBZR|iRA&+0~Kr5$3p9qsmZ{<#~=?F91)$J0O*$R+yDIgRR80lCOx1o
z?Y5|xhkvZjDBAu;msQkw6w`S5(|rp5uHk3%dS6o*ibF&e_2S`N%~^b1GTpv^?fm)h
z-?f5^tj~0kO6_!E{!X(modb|Z0|e#z?k|GZ+HnX;Xq6u&JnX6caUMUf*+qwYydW0W
zFPugRU4W`W`D8U4<vL+*sr6~|o|AoNNapKw1~=mwJ5qe>q(rbBUbT6u8l^5?KbhJ1
zV%%3BhH@~V_&dtoQaa?f>)CFyc5tw*1>NNLCjur3DLlW2nvZ5*hx;|kS}`C``r<aT
z>!D|(<9WmXz_r!0{@-;c{!e%N|Bdkm5YU<_Q*M0|uctH4jk|r22q*${;q!x2J!7Y*
zLsI{i!`5CA@N)bIs%Tt%$DS2X`5%D;^ewmmaOLt}9)3d;AanEq48_A-Qy|etxQ{4O
zKc)8(_>$%h@r;_J0c3RzLW$UBxG9OBttR#Z#D~FN%gyzFWM+T`wz{N;?wK_>f0hFD
zsx_b>@Pg@TeM8^1WNv#Cpwh1a_;D#qm!Uh_1YSz6DV8HK%u>39RRK{ltgC*A&^>zO
z3h|#I=+j+e>hhLrzlqPyvZj13m+s==@Am_0vVkf1IClWBn35g~w#2v!0J{E^A9+M)
z)Em=$TmbL*aSo7Xwx1Fof@aO9j_4Jr&Ei#Ja~Yx94f-`th^3B(D*-wrHJriE?sBB=
z7eLA02kNQ@1jOrRJd=v+<}A$61?`T^M@A+Pr`j6AVvt8xv_eQ!h<E}X2@4z~-&8eH
zJ!2A@>Hg@qReYeVmf7n9aAs>j<K=~JN9LJF=jda21B7Vm2b2gM=3As*ZbeXIgSNUQ
zMT!u>HC?<?xJ#>b4FTngORgETqK-3?(EG3kJL|KxR6Yn4#~K#Wqj2XxP{IgkTGRc0
znLia*>3L6(N*KI%(NCpWh#<HN>m7SZ*P(2oerN)|e=+#xioIw39x@1^NhbFDlDhID
z0h*z7D_6~EOZ*p#xer1^=gqCe$~0eV`IuCrS%tS7w>RGGY}u<4U?gabD^ZCZk3V)W
z>E~^9OjfL(yq$Ieh{J~vQx0M{S%XdrAE3iHNEK=ZHh0}~7?-{){(^bqaYN3{uquGi
zvjgkRuW9l7n*M;pR;n{q9(=WZF52z~_|Km#7a@RQ)sVC?=mAw$jwsP31F+qf5+JTy
z$4Z?Ptv(=xgz@MHXaxB2j<@*5&0LoN5L-{x35dyMQzZaHll-;)?9&Qh=c^{a`Kw&^
zxwO{E<YMzKwc&)<fI#;Xc5dMYKs`%Nv-x0;iNOqaN*)~JUHgP(Z?sMDOIJobGmlS}
zVpf&9N9Rh;2r$U)Si>PAKnZA#SOdN3KDaJ5r$oVW01G!#icG172;_$VefZS31|!Xg
zK*0!LVmw&qz>s&&U75RMBCj7wON`haS?rF~Qvp913k0YE%@{?tBkI6ifKIGg038{x
z<m8=MJ}%{J&`xxzNrN8D0DA!FkA1(VqL$R*tC-Y&<`y?tpOPoEtz?7?bCvb-hNU}*
z8^j3M++ZxlE0%=0_0c(gkrM}Kk1d}yIEzkFPx~?K0D{&!1E!iEk@7icsO2h&3|^qD
zfWtbiPSFSTZoWr{g2iHaU_C4N`jPt{C6jYyFWXa7hnJAD=DQq<3;2qW=W%!zq*BFZ
zESO~@9|3x&NlB~+!=5QIoH6LDk}87AUTVtyXp42I6LiKEwNyxE;<eC<W<3P;h)eK}
z6sDA#)dDTKt|ZxB64OhAdQS(ZGT%YFj^l?!>R;)}<+!W}{Ig!!+OO;&sepWp(q45W
zA_Kk9F3xnf>LuB$i@3?`%;fBh3kc7f$q_CifE|CocG^N%iqgTh52B1O$xG|H>zcqg
zQ6XY;D*K^NKAeY_GOJquhnWj-sb5QZ)T!$UP5HB8?ovl^lAO6-@@(98`$|lvamU_1
ztmnHFp87Z?ur|6`I2Zu~Nf&-1{(8I)`bZYLu@#eG97PkV=JF05z(_R_Z&JS+U8H(5
z;-t<cdovax9r*-MfH!0S4CHP+N?uHql!%E3U~5Z!P$>aoPV3?mpoe(E6T=73|K8?t
z37~eyUV9l^fKT{%NV0I=zzowp?JAPxmVLw@v4aqm_A&|d=$nl@I>lH_Fz;z|;ik7q
ziez}5H@V1Tk6%3Vu^Ba#Og^gp73SzS85>WJP}5k5PSqI{&`8nm0=lB<^z(EM$NX=R
z@c|M+^2-fxsI|!0oiEk6k&sf9@DXh>=b5`QS|hSuEujUr!Y)r*dsS;iwD4Vfw-bz!
zsAG~&3nArsx-VYFe*F@<aXB>%n?l-b;d4qxpci6hq93u~*{A2SEvsmbDs@tj^^|2>
zLokluyFZQ@r%{fEkrKR;<G>Jnx7hRDo|zv>ip~!lP1z&ctVSz3zi#_EM!=ypw|M|a
zD8=1I>R=-KoID4iT09HTb1&tOn7Nb;dUT}@Xz>RPMaOUCbZ4oy^)c4C_0M?HKsg<h
zmx^Z1{b_|O*z)}+Gi-IV0GF&Eu!GEom?&c&cQTKDkz>k*0nEd^kYa`_L5!IZH=arw
z#Ft`K{*w2@FLA+rZ_OZo3RdThqcZp#V^u-KD(rcw1JN7|uB$zi;W22~E8E#l#ywU*
zf=x43tdHg(!WA)tlR21*ynqwOEcmP^<!8L1GAc@tD0Iez`zbt`Y;$ChiwPmDR!&zo
z8mla`sk(hAXN01tFNzEhX+Tksy|0{Dmp*2)I8?+|veB`k+pLK@siLA?R}7wI+zy0$
zeQrV^ca>jQ?VmV-r-<5*&R#WDLlsSlW?f^?{o?!pY+A|rsiqBg&5_hRq$Icly~c&Q
zZ!Zv1J)yH-m+#Rb9{w8$jg-Lj?qXt`f<{lQ0gt~JIaxr_NP1lK_yvi$TTgB?)X#SD
z{T=bQ*4uKfd7F8`8#EEe|H5jb@pM0kgiX8iy~^Wep^w*#qjE<Yl+|s=T=(oY$9t1J
z5<;+{6+eoMR$?fO(-!L{-r8)3Gg!Y}EOD8kv~SW$4-Xx{8<*+>bM!*1UNI%P^46#a
zn_c&ozu?P*??VF4%rKJhy)g-<!Cu15m1tT~clQDDsdr_LBFh`|vDirZjE@e=ua4Or
zOfwqC@7dB$F$-8v7u%@Sa&!pGWxzAnO{e}by1nC&A2gR`+hQu*4seXoRyq}DTZ%7g
zAoFv)g>Tn*frQ~Hp*NXFpOi(@<|c6Hzh*IVYf`;sNH+TANr5+4_ir+m*PR<`R_`8=
z3i%=e*>mr@MG#ID24SnQuclVQ^t4)~tQ6!cA{3=!nEFHMr+UDHf5g$WIa{j*&PX@I
zYNPkmuxbCP6Ed5y=l=O=r`*tmLq=@4DljT+85)r+Rqv&>cf60SGliZM-D&8pmjUY-
ziO@s)=-ZA8`+E#K@_yRbA^!s)wpJOvhovHV9#w0Kc*;gEIx3+7#03^MV9)^-=l|WH
zmJjkT`BHt<qu0`1n<D!pix(r!UY$yixWG=-jt>|<6%*}$KhzXF*3|lw*R!bcn>7h6
zTn1MH*8ALlP5Jie>2^)b!I9RJ#a;tDBf5^!U+4??M;rkIVG+mH?@%@+%ikjw8DM-i
z0ita=er~_wl^G0!qpufk*#?0SgK@t?_IY3%u?9Ap5|{duTs1xtYZ*3dQ<|;PVeq+q
zacJQ?-*|%|q)2&r7U13fSBN+_pZ)e5obw@@G)Ran+U;e}f{krB>4sL9fjaV0*J9G8
zb4U;_j=^^3$LE4o`^^`Vz2QZMEWLW)>V4;&>PlVeGyw+vElVjGT=DIfZw;o%<);Ai
z`)$z#`|a~zR|cl#`x95DXS{1`-%cF>-yX@yG&oQ)$Ne`vK9fUJd{6G(o<G3D_Cett
zgAe}>;Om%DTT$MAXOtVX%%P|;`rh<=@cCxpl;_isoyEV_zk}OuQzroqa^0lj3Ds;4
zZ0emvezU9;MAZ=o<`ah`n&k|rtmcY!U!lB)&;B{T2GvfZ5);@=U)F;esqU;RsSQ*~
z4tqlZK?BBdCNRg;1RZvHS&cEA=PGEoY;TTzzO2cgkkNHBU3w8&)U#A35DJg{i;&-(
zYojR+l%qyGZkVu<?WA+6*2!Fc2B=pxj;o6Lt22PI^@%9tFuC8kC)vIOY4Ho>9k|^E
z8-z(cNJ?QBD^m@15Wja?JLqAtJbVf;a3I|xT-`M&=1o;%mn0~eUz}wu$4KrO1YK>L
zrGjHcW3yi{sIEQ{f2cA7f2JSw?)9O{LhxdzYHH?$ANRk+7O1=YvGMl@hdzLlHZ>cO
zfne}MAUwo~-i8{s2GNnrX+@o%l@g511M=2?))lBCG6YAGeoTV<+RV2a#)+|22O$6$
zgdMa7euColu=iL!mVjVXZe0Q>RLLB1s3J!&==Yx$2Lj=J_F!YQ9kd?;#3O6)o0M3U
zO2=eMLzbt?(MR0LJazMxlj8TKP=AmtWL^jfa=haN7vOdJbRPez5d?5-3FFDOY=lFm
zkh_Rc*%wEjnkn@RauQTOcLP3OZNXnaPp-T7G|`X|l)P2R|Bl=4Ih5#FKm83rZ6*=Q
zlFvT#*2<Rm0H)xj_1R=y^HcmsOT(P*%mkA7qX_Dzczwg%L6$P`I)Tt1F%nHji1SwU
zPxU)EMj7n?e8A=t7KRtH^3y=<m&oYPTjE?X(F&rH%BHKU?;+6j)^jrI%0Ci8_M$p-
z5LPU&mKOsGC7CF8e+Cm@XMX`WYhW{|1UGa-!U&GlEoL!DF;mQ_%FL=62$cluNGafg
z@}0=4g^PCPNxMhfkAL5j`v%XpgGjW*YFh$%|Aj~S{??Qzf^i*bwf7TErdKi+!A6Ru
z?2KsjEeEx*!dMvIJ-6HT^*+z@j-@+o<>j(w-(+tF4oRJsIE}O8>9#PjSb;Jva^eD+
zxge@ORwJ!jSc{shP7dhHkwLG)nkqQ`C>CB6-b@677UWZL<Y$POJ;Ciu25%=Cz563g
zw*D<cuY*Mh>evG)9<)u5NZe7l^q$($HexX&t!W<55u`%ar<%M;=0pxF(V}Hm?E=d8
zRF2wJBW<9+dmh{>{}2<*EmZ?D<+rtm;p~)CCXILPOF`j2G2>Rd7s){quOeBqhK=+`
zXz#8TDe5<e|9wgo*Dc&bRpFWd<K@8eb)8>0g15^pqOf{iq117X!ecoGgpWGhn3Y)a
zN<HPAm*V}=PvY?rv?&Y}Bk%2A$B6k%aWM)o;~zS(!-t@q+Yx}-YKW}v-Y(WM8fJMF
z6dp>9{4nBt#apSMH(Pe!i&@etOr4(Ka16AFOiw?NtDemv@pT&6Rk+y@xjGV_yU%wf
zP-?U$jX=3*QQn`d7BdwZA3;S{x$@$vbqeK^61la*tdX2COju}EiM#d@3}7w~%SBaf
zoSf8)X*?o6B`Kw$O<+()<Q4X-FL6blX-_gY`n*&k9Y^!vTyofQwGewVnKFslXeC1#
zU{+w&Y8UyG`8A+sSQ@9`&;^8#&!i<N-M-P9BebIxJ=t#)pM|G+HRkB=@!WiPypyrW
zvgeZGg|XQ+<oJn}z{po_ZxEcQv863lw!Ouh?V_PxO)yPjg8E&JD;Lj>kZ^}HNf4ko
zX7c^XXkIZyS0kNt6Tph;v&&bxCA0b64*c3LC4tmCe3$y}PZ*}0!C(`4``w?eaXc08
zeIsw7QDPPZ8yT@)4C!|;tyZunH1v=ZtG5y#8D$76<M!QCG8#33F%|aaaD`>;tq&+7
z$)d6C>!}3n6-eVnMyL<B3vdC?S5lS_Ca%jw-My11HEOIIg<xELjqYKdbtB1*@@7Vm
z4XSL)A<3`{2?d8WB00zfB45T6363zFySCuJ@grU5S0Q=Sgj3(>vfp%CwkmJC1t%Gm
z=fG3BQKC?1YY?J+9*md)j2U_(<~&9^`=0HGGsga4BXUvXQzanuTZMmkhjJ*vBM@UD
zrf*ZJcl!XNOj!LYGGmqa=oXAPoQ;R|)6bGidIuvs+0K!K=xrqPt~z~*LIi2G#?jAa
zI8V3OnrjJ$m%#@042rNMtH`)dEz^oj_0~F9<<BQ%;WgAc@O4!)-GD7wT^@8LGA)D0
zPUZ~eA*DP}!R$(wVJW?;8;lgNsuWSu3k;u+^HlqXv8}M`CUsaT*B+>X9N!9ZBC0=1
z-5!54pIK#&jRD})gok^tp7r^}2I<ARZ?yR(K47`(RG6AAGIjEZJsJCqkNticu6u%t
zQitJKe(tm5p$KJq>|nDc-{q+OdXjYw5FhlwfH54^e}A@wKF8G))+NbQ5>ll2z(Pvx
z!5dObdWCVO4{{IjLOLjDnOFu#70_0)5<Nd&1%{O5W;@@*6aSi$r+7>5UF#W>#8mY%
zO@2!pHmxF_%|48yJ<0iw?I%L3F(p$GOBIa>oDGsT@x@nFPc`X^QE<m{QMoVvF@GsF
z+`Dpn49aO~44lfhLmiJc{TyUQ0~S14hO2sS{StB0Zb7MtTRpIk!$Gp?evx%yBif3g
zPgjxkCzVf)!eS$^QWV*XE>brxF^|{5rY1vVswpE(1mQeaYktqE%W!vxZ7R9d7$r!~
zJ38euJuNcJY7)V>_CESh-Aec|@0VEMr4-fc+bXQ1A}|Xz!Jbc7gYk;1oxLA48gWUr
z#2zeP&hBG$zoM9Hkvn5vpce9TSNbsM)v?Fq(X;z-CQf&L{aIa1{Fb*m-NMpV_rY-5
zVW7U!X~qfBXTIe{=k)ASYBJ;u>1k)+;91e<rm{CGYMw9TWn=qd8s_tw?TlM}r{3<(
zR+`M2E-fzcL_V{Mc2^ozM8yB2_tP?h=klvj?RrjGE)u<0jqE{3Iez>iW%R<Cg+1+k
zEu1SsItm4H9Ml`%^Qv&$jOP6)C}czTg6y-Z4<C?5x^gz-5ka>M4O=L7fdXq!H+I{;
zX)2B?so<Sf!OQd8SILP{$Xv$%7b@u~O;B=>Zg5)Auqb&@)YMJTYR!JRjQv~^SUkxU
z5+*s8)tmM@BX3{%HQsd3w)yp!pSpROH7&jQtN+YRF>sDAw*lm!ZGWC?A`ZHrZDOkV
z&zT%mhvPryaq84-@;V@peG~koga4JP9~QS4Tfj(v3Z!2h*Bpt?yLSAm+K0jZK+$1K
z?olvhtoGIUCe5WlQ|4e$sl@hj3n#5->aPCby6_=4JplUXh1StprfJ=N@|mULD3E)A
zlzi_tgjEMSqRFQY3Nm;U&?CzsyYBHrTRzOlslGa$TX)^(xn~+j)ci@51AwAM$XZ$(
zP;PaaD^I-WW{qPWAv?c6)@-rZw71>&8_d@S>%cIf01OA?6{9Imt*h(UsZPm#ms8F;
z<pn3nl>lRxRyXSgCA9dLMkuml!ebU`YvthO4y8~)z)MqVYl-p<4u}PF1C@-AV6?cx
z;>*kJ_?l&wk|)!a4idau-+;NUA1KUv&S1Ygzbb3o<ASox&VEt17(keLC_Z6gWig}?
zl$uj`yC9e35i4EHJ%-@RgG$Im4k3w~KV}IrL{!J+sq9NGooUWMIdzb%ODwh=GRszu
z0&?NPc3?c$69!)-GX#W&BIWv^Irwv~GYIpX5@7(PyH!G{0S`!?gk0hMz`prd`Y4Cw
zKUjHGuBi|3+ol4`{+EDFH8ZZr`;{v7!0`KmwoeAgn*E@hdkh7v&FZbjOowTs1$*yV
zQDoCeKzQh9%u_&!{Jgacjv*!MivBWJn_B(rGB;<HAQ<AwLY8YgJ}`FLa6<Ohe(15d
zw~Oe50#g|DQv_jZfKe_AI!dGFHmk4+@Lfc&H#*(G29g40eLzBYVx|!oScNl_wL<Z4
z#1H?p9)ekd@gd*=*JjR#R9YqTaG1Las|vAkXM4T-R|urZdPftgvrCaLf!wWM32vnC
zi+Z^i7`qF=EZqmL^qJ}*xGCI#7i!=&h{7QAYibdU1z6idfQzkUP|#e>=U(;LF0D&Z
zAd#xROW2+*c`nP*$I34FpE?aD@(uSrGJ7IRX8nOEm;`}{w-%*PR*)R~n!PD}U_n`A
zHyG&ZTx4UJ`xrX(f$*=N%Njlvm`y=KdCwlx1r!c&tjw@GCbEtUh0Y~S%4YMRTs;P`
z;ilT_*w>I+bs!8ho=r+n<{`o%mERGhTaY8dM_eJ~IH1TBEUql}-VT@UhIx#uZ22!;
zm`2~R*nN}u`=8>246${PHpL07F)NpfFJV<hga@d%uO2E2skAld(b<a+Vnl-O@t@#0
zwowTX8uO{j2ZsOdDCwsuo#eP>W*-hNSz<Nfu42-4Of*TZ7UM2yy?D7gc1a)}7E)eC
zwJC-Pxn4tt4AL#^fkhNEBSu4x1tkz#w|>F{$T()0=_8^x4OVaWsLd%jJ4NHo+5(mD
zb8#1Fcm#r`=4~iVl7&p4G-al~$ovuf-LC)_aH!q-GQqudYos3{b$`&TQniGL7{w3B
zD53ESVJQx;V@R$|pmLYPfqAr6IQx-C0EJ3iIGSo(Z;%->NTpPwx6q>@E7X*#oS)Ji
zReZpwa;KX5*-I(ErRrm@vwORuUvR=iv4(*l>y1d-Sn#!1e2u}Q6EROph<L%&P{})S
zLYIKlbSstk4L<rq!sSU_iwStvzWBk+8%0M^R(jneL4U$#o59pUX$tUk6u5wXHXKF3
zNyN<C9fwmW%}S=%`hn`#uP@@N_QE=32-=O$LFgq?^aC`9!t3XOy_z!Jq`#pPo+?2-
z3J)P6hX>^gMI&a9;G=hw?JeVIY0+YV4d{H{cuEfPpG*QHiJsXcGo(>H`K$`oXLR=V
zS=AYWWcU{ERJ2~Nn2xZ&8u3QnMJr09nOHZZSI0~&6K26^+<^j`AYUP0KA--WHZviy
z8N)YX6)`IRd}~DMB)ch%L7k-_7))h`<lR;DiioUIFwk{)e9!!L92KY%F>&oPBS3Kg
zzjMQkZLfg6G7BA88BRrYjR8`7`=+PkJjJ7IJwuT)!^KB~Ai|(SH`O8k#8EyjMd3kD
z2M!)~$Bc2X`@C|sf(VPM2xIYs)z=0P>bs%1Ly3e_vVnq=iN~7hX{T+pT6I4C<T7cD
zU9T_tt;(xvS=w_fd{qtagC6GCaSE%Q)^VB1(&`Q$Yo!O)CYp3GEFF6JJcUiwt860O
z(p59y_UDcVfUQlsCRQH2Uw4~a6Y%<%EaePZIp0-Vc#|NaAQ<;u)?fe5hJsDUT%qtE
z?i@H{CqH=PCzF_L-*t+4%F08yc!%?T2@3XTSR<I~zAFv|4Rb=&Wv)<E&v@+nxI2Zs
zcM}d1dA+_h`GAoSuK$7^{N{oAU)=oa(H&C5p!2b;vPPWEM_0Ppx*y9FUAMGvY^DFE
z;bY%XQGXZz5MV*>aVl{Rcw;FM_<c#&S@=(deRPaqJRM8*7)^t6On0%q5RjcYkYgUF
zf%Kd08a7PSG)~NaFU=JCHjEc=VfL7Ry=3QXqk`3M;NxS%R^sUY%Gtp_*{O_U^@Lga
zs6YAj()g`PyOi#Wo*Xp;j8haBdga%wN_{=Mu8&nz3sw(4S&?!ePef;Z+>noU%t;YJ
zZeW>5U|jA^??|#Sg;nMzI6S9m+feVZ64WOZYi4m6FKj*LYpU^zn>gT*oLvsyb@2iL
zt_500AFE}#el*0}A&-(@`h+4$^Sr)>5;ZwtDFM|kin4%URIo#2?xc6-q>)4?F`862
znt>nG`w_)&HeXfW-RD7{pbyYzKuxrG0cPZ&7_a}IGn%0=gWu^clUl7y(0G_HIDLa?
z;A)y9+bd5w7f+F$`Dz?@r5obyo6aP2qrD6BlQW>xPYoqaJ54zk_}Fo`sF;n>fte*B
z7CeKJO!@(g-n0eCVt>~F+?@l6O_uc#O}%217H6vy=i^_2Y|!nSa0lu{5>N&Uf=Isp
z23sUA==qt}gI;MjW2Uzol&=Iv^}e0lfZ|CHw3t8smw5rjO$@9SR`q(l-lxosWw#+P
z@!W4*iIMCBH2}Xx?FHB(?}NlA^JIY?FYtA^uo$0$7=R4F7%6qG>0YQi3pDk#1LXoU
z8alAK+CYu;t?9JIVeV0juTdvQV_M})@l#Mc9g-c~!CpLJImS&m4C#7czJg#S_8UFU
zDcD?}@Pchlf-dj?<TwAf!At*JKG44;E`t=tEiV$V-~Y=S;}xSzOz36|{<Z^}^-xq;
z`CzxzZMUY!!`-0wW&#C0Nh}vy$0ajtECYezUa;rrAE-)@R>pJfqP2a}Ey6R{l?A5n
zwp@=RQ5ZU)MQ!AD$$URhc-CO!Rpt(8IVOMGaP@mDa*qz`7-p_&xd7Lq)cHo<8lcz~
zkzua?x{<@`yE<Kxxqi1qw57s?eYv~xOzbac&DN%n;q1JWT#52;aE-o*N8L1@(x~)_
z3}d>LltR4uV(Wj^g8z(PuYSG3vdIAJj%GdRXexUO#?TF`WRxN9N<nja8O<b(`k7YD
zc_LnOy8%6)qr~>Vx(E7vlUn~8d;WIw&iwwl*q#exH&Y*8925xknYe!msBBuS)#iXk
zuI6lwOj~|-g!}IX1c>qePueYS4~59eP3`@4(jw^?Y5gn-*#1eq<=}UL)5fWTuS@ks
zLsC4?hRFWI<b&e$gLaI>W{Z<PHJi7i!s@PHXB`-&`=+SRGi_FF*wjJlofkD+6<cek
zKNsXWf4t?;e^h5Fz2&s;3xdA3I=4Xp*r#L9wyuT~+*PJ9ZzfsmhrmeT!YOIx9j%oS
zDKNM7dS}bd+DGb2?DxkI_r}W3(|^X2c~UW)#<b?R%OAd^eO<cgSjC!h*aifAZD-J;
z^t(U1?suvv9`kuh>YOu1Ya944H{+h_o74<|k_F;@XDvH=@+udsw4=ZmXn>L=CTR;W
zTA*NSNN5_I?LaN8NZ?qKzK@3jUtG3T$lirEgQU0#j(t#qXFlIpg$Q|lKxEb5_Ib8i
z1v~|*P~gPiUD^T(O{wGYN-&_A3<<kXHr&L^GN6>*)1U`3ur-+f;(+8iVYbs9kovL)
zm0yP7jqC>(_;h<)e%#9Y_-a46MS^`-X9ybK#4YhxES^R33QB_mf|s5H)gx!*aCGy=
z0XSilRzhFkX=>lHI+|%b#}v&Kh}*}XC<B7R9GWs5Mem7BoAABChhp@2)ar2(ngz$$
z3O#UK0R5Ih$>{va1vspIpWOqma9IJxF|Onc$lP`?-q1I3v<LCR<c_My(RMVdbmK4J
zw0q0<y<;Ah_L~EDgdJ_3yxss7hgvAErG{jN)es6^FjDTx<Jk!-IqD;x#yT_cKN?YP
z`L46gw;lx25}#hAI=RL+%nX1iZQb3(%-ZJ)=O^JZm*zE!#~+qa)kmcV%hG<g1M{5S
zcR`gsG1!>h4~1yITKK|w#mXh9BS_^vYhMUO&P{9|bLLucOP?<qWaDm{#V3(SePO&}
z@O}V7tCP=ur<c#ByUAa>PIqlVV|+3(RT|a_mY}9D4{XyDJLI(=sS&6HM@D_g9QIwo
z+Reu|6~UE~TGHJb49S+imW=|<A8zYsheNFVYYm1gq_=CdK-ss@rBbgKSm|gX2~6b6
zaUJCeY5waOdYT(YrA*M1=rayT;)sOpC^T9ZZfIYCq35&z^7{TTo=3{?AEd@_#$4D_
zf^s7hSa9Z^*mlsmehYD>iEQhf;m14OprG$G$IJAYHV>C@rFnx<Mi`bFCP3pUhzqh<
zin>D{Op6O3DF#LR*rq^1Z$OVwZhblM>&Nfj4g(^1H!a!SH4fS#s41}abP&obwAOC6
zgoHrW?DukBaxzhK%X%po_QP-fiWK#BVK7-?F9#QsW7$9^46r_4&gBwGRGi4!qI%)^
z#$hB(ZqpeJwXV82??T%)N68Cq;f9IJo>;Tif3~o$e!F1B?-9Zq)}q9dpn&wP#ihLX
zlu%9Ft-OvfVu_+zJX|H2BYC}s^-FP^b1MSqRG7@<$eHc3krgDyW2Nk^`II&$G1Br^
zc6{#jWVxeGx+4A-I+$3wrAR**;VF?T)Sz^0)h%j%*YSe}XE3CKUgeN%M3!=7T?bC<
ztIvjf3#a!sfO3x<vNn8HzqH@s9zQ=~qFZjAuq}yuN;e&Sc;s+P2SI)!i`$d_F{yX4
zIx=HV*mNVra?*ComV0&mX!FN$nef}AdXf6c&hOI*cK^e=!=AjXY2L<MZi(UbKBVK;
zi0F<=;Q8x3XI1Xir_?6QI9H!{NAzcl%O}Ca<R@dnN-f5<D$(xEEZFQLO^MsJr3~w#
z3{*yTIWHWJN}~I8%9@9Rg4(A=Cj*kcduuFCKQOFLC)$b(kw$bt=h;up){6e}$^p!h
z)-G&0=LROb(-|oMO&~8#81hqqB`lv_z4gz)bDCxcF-4^TrpAw!9xYyXahy`9(Kf9J
zF3pc*bvY7WV{`b&p(Mq@1~FGG(zFIqoZBl_1Bi#+0RtaWLH|giYOO?U>Nb@@cAq1^
zAYAaP9(KF$*`TV>miOes8-KA|UAr!o!(nYNM7o&HV;(9fqckKZ=*YCF_q^yaMbymP
zds(>+-;2>`@98s!XR8Y-hE2*ou#@MFS#Vpz+Ec{K<xj+McSW9e`e5G^)VgCIKi0aM
zG_fM#r&l0%4jqb>n9D{;V7&g%xmW-AP#+a&>>0i&&fnTGk#Y=ISV_v&=!sZ~kUsi}
zR5XD^4li`y^3F{7N#zjAb^Lp6b(N$q9*Rng#S6}y2!Bm+%p}-gd%**<of0tJ_$XxC
zvbXY;G<rWHx0giO;jOb^n>o(2^3v79##>VMd6pyInz~QIwKr~&z5jD&oT)p_MuImZ
z1y2}J@|J7q8UJb<xi?~ZJ~9YOlERaUiXM?@1rdd2)GCr?RrY}nE>c3uvsB9_EARwA
z@hfO1eT{MQj+(dPJ0cUG&Jp1pQf5TpR3Z?;SZ6a?2Lz6DUwxV?kFu^~+-1=PQnLjl
zakcp5jEa2cy=b(PTI=-h^`kue7wXSV`l%0uY%{&|k|RpL)9ey}#(q=+(?)=h-eA?6
zP{%*-*S4$}m0CB%f1p0XR*F0snAbyS#BE!d1e$s6nWWcgUST*43t0)###G+MZG#)<
z3WNz-Mx}9BCX4VtCwdm9HV2mv+!dG}|Je}V`X^4vU4SM)44ZK|Zo-^j$l_4I)v7g=
zmJoHT4ZGUx0%_f+7?L3(<*rh8Dif#Sze!fn$gb;z7o9i4=OhtkDU8Zk;U{D}+@!v;
zrc#}X0VbdL{sG-U*&rd^?iqsIUv^1(&#?4vz5qY4YUJJwS$M~$n^gv$VLbVnWvc^q
zeV`G0D=#`Qjv;fns^@7#qQ{ub4$7%Q>Ku(rmLu(M5+a?{9n{nJalUW~YnEZK=uNXX
z%r~_8c^Jk@=lw;mS^IV*`zouJD5fw&vRrDPTUIj}rLy1X&3W(D5&MTx#<D5r+WhFF
zHd8D)quG0#_T<!-9W>^Avk^369$p(HQ#7KpIYS+j8_K~xV`1ke!6Owbs}G7tmaIHu
zdwFR8VY$PfHLQtF`-jlSs|Aa>l-#02#(0ug$-R~hpJgoWxMhNP93LnBhv~B&>PLK<
z%<|2&dPrbVx{QKBnRUwuV;9lYrh|k}aMV)s^I`TYCZ2cHx<U+H{Q`oYXkPQsG_|cV
zzj`kAGhpDWm-LDSAzmmjLeo2?aKJ?K98}dZGe~}opAn8M|6X0_{}&fZOKkBV#AHZ?
zh$`%(d80C&m~Ytk=hlv7_Vs4}G}*9Bn)ZCMX37L%4$+i^5;%1B)N9;f=C96)xT^Tw
zU-%ES#zkVNnWD-04aAwq@<Lbr1l?yn2gt?}+o-El1rg-LeF6<49GMRIWJ%?WgxbW<
z#9?vn%!kZ{4%OY_)}t+lVg*#Q^g4Y0KPi6b2C_H$#id>ZiU~J}hKS2HxTq%Y^yPKH
zeXLyz9MxK?WZbu@C6MoC+l#l%tlbSVs`vXwe6|!H9&t&?z0HNMx2Hw)WRPrdOGK&a
ziaoCV*?7S`i?2+{uR5l*qC`LY>N2;94QF;m+R2hzMZmF|z*?-(MNw-N^`KIsI+TZr
z(ehm&o#avOGwV^>?xE%l^@Xk&5d_hxeV+ej>_TFqGvdxVR+M?=d#hVB8obBib2i+b
zldL=v&&?|G5`I)jk$pT2I7;-JVZ@B25ReotwzBN=idmASxI}GV4zZaqvUFWflMZ8H
zj+&V(&wggyjBfdxS^75Xj|shFpTPrStn-B6$l5CUL`JJJ#}!3Jx~$6t)uiq7*QW7Q
z%+|{pDTC&#2wcq^g10Z0-OdT`T)M;=iB<+N-Oj$xuOeo+c}qw=Y<StWgl9l^p!2`>
zU()N)=cM-@WW*?Lx~+6gv^i+gJ<$zSyI+B%e;qXx@_Z*I{j9NTIhjpY^p`fVA?-K0
z-_lB3e#Gy?1PzS7#_;yAHYv!!R0nX9+s-@$!AvR5x3(^EuJmSDWT?i_78AMeW>2eU
zENy8U`=dDd1k4o!(x$fkuiN<@Xi9OE_g&Iq2B(!LZL*XTZg*Qp+=5_uCbW(jO*0R~
zjcCTLvSo@9gW4ayW50^2F<UxQIdv_YExMV(YPZj9l13i(RRwkDxLszzx|z1dm(CNL
zXE?$iQIB?8ty)cEHJamYO|ow>Wm&2yTNVFsG<u-f4DY9MOs{hPNbjm-rCTOFs=w3V
zH7IMFk>oI4TT90*XXN;1$MK`3wL;e&DG5z#4C}@$%SpXNd=YEG4z>+Nx(&5p&O|I>
zrKIjjF|A!z8RJymaW;2XG^+asg{M=2vG$(ki%GZTuT@jVRkXULZkl7P^mNIA@_MQ1
z2EP64m>E1ek1P@sCidFm8}*Ql4+|sgO$J%-DjYGDm1^IiOQar^CcG(YYeKQCW{Wz-
z#RwBelY6U+=+IwS1Ut$#Zu}7N6G@q%bj_+zmg$?YWdkQH_OmnE-PQ1@8XBKKxpEaX
zTsT9RUikKXs~oHbep19I{&f5exMth3aH|DQag`#cjT2!TA>U-KQPG(1V2|UQs>pL%
zj4=Ms?(<DBD&^j<VLfo&^r)_-)#uO3Ry=zLIhC$fg=CYpG&P6Lcn5Sd^>IwxatY}P
z*@C+rWA-+bo)kJeDQho?B&J0H#fC`P!UpxM=U0Y=<sa_uR^(yEt#Bd7T4Jklz8pID
zMAh`Rr3|9>zjYFqrPtoAI6VciJuLTra~x}AFc+p3{l%&E+lWqF=8yL$(2N^H`v;aS
z!p*$fsWw{ONHZ%Wy|dN*lnHk<nxxNBV~?{g#3cjesD!Mqv|L7fc#;ZDy<yvrucsJJ
z?L0Qh2zDo?&f@~d{EtK%QBN8rs*@cZ?{3zS6Q3dtciukS0-gsZy6#@**@Ir2cw`i=
zHy)cYShWN5Nnm;84P(-W#i=}E)K>kfbZSRGq&F#%;#;Fj*EahmbgODf6SX{D_e~PU
z0?Qt!SmMdZHV-$JDBYJDzU}YYvU2ppJM;(Q&v4^Sv{O7~U;<?l_{=Hk1~j#wLWpj_
zE;d2Z+6S7s=ik0k*;lFgVNb>PzTY4RT1g^iW|y5;!i*XEz0p@T!h*>77$1Szs|Ama
z7&-s>TUM7DSr`v?{9H2<*JV3;Njg+cV_)l~#1BiwzW*U%d8>AvNMwZEkX>)jK;9%n
z;Md9@MK_zJ(!V5z?8;>$WsKg==xz4nS@Z6O_X+;bb<6P8O9oCJ(iOOLDl9QCi0Y;>
z(`Qjcd8N6T`R}V(6E%wPj~<x6&k$5<@Mh^ePV^Y6ezzG@Ef#QQT+C4QF5c#J>>lAu
zcV^?N`H|-~R!WzqbkFa<OlS2r|IL$&GF)i9edVHbKNBIv{*>!e+Ivm%eON9*B4xaW
zC?<gM-x;H~rxioo+Ke(F-^3z~s~&BnPy0r$a-pI?sK%$FAx6EK;6rfEX#QwD!l;xn
ziYlJ1i>eaF##Q{cbG+SC&Iku}c^`MvMSRo#`$3|@V1QAAz0s}qm3a#d%STMF65hS@
zin?XeLLSI0<AA|Nc1>KQWisZssw91=<#ae4%w{Zj?>YuQN;Pu7bnhtKQo4dcnE6$f
zV9v*QuRognCUGg>R}Jv$#CG-#w1djqd<m1D<+XU<8rm3^5wWkHt7pIMY1bO=v3iTg
zv|A~%0+apz54%*;^sP!gn=zy#&IdhndD$RuQQ@4MjgD8%8tjwRaSimYB81iH{G>%1
zh%$lR9m%*D)gP-i<o`J69yCa3GyE^s&ikFM_y6ORhSsiDsUTv%ZCVn0i&|A(_FlF3
zo-v|kY!#cLtvzbgs;y>Ft4595l*USp@A3H?zP}$=a=Gqva^J7>d_Eov00l4eJ@Ecj
zU80{T#*4FOshVh`71U=v9L1{jU2A^<RD+h;RYA}a_1Tn*;HQf^EIGXR;~yy9ZJ?V!
zahOntaZ>h4EZQ<se7KF;cP#mmbMx`k@PA^ye}v1bXvfxcWJ#zq+G6bSl(dYrSTo5t
zs>tYYRq)De6#-){r|pKlxg}5?hH)du$w#6lh$x5Xp3Og%{$d_u>m6xl?Ubj~9Ikt0
zlnF}CY~GOl$ujMt(ZDm`%UH_-dYcDDjNekMRU99}iXE8kNLsIpk)D-Ks5Vu+4klX~
z)>j0fBP1*o6(wWhD5zaEVNO<OSwn~7Ms^12>_5M6&Ghcj>O|<Vz_TY_IlA!A4y8%A
ztk9PfQ5qyMy$1D-<l7T5Opf~c8FS%mJCZZoaH+Fj#F|u^)iUwA2E)t4w(_#RV*T-Q
zHREM&3MPZ%e-<{bAdG$WOr1R1k}B$>jm&zp4F`pMF711L`CP|Y+_TM2m!ISK^ldAz
zyt1zYN%puN8q`vLPpfCzeAY61_j2r1i2J*!xd#iHcfkkD>NT1)?d9S*CRl198@b>u
zPvQ^)wtOBulMs{ul<l{c#14IS3C;9g?<S?isZ`_>)g-1<h6auc!jJRaT3j@O8T~!f
z_BU5yB^tRXLn#H|C{N!!C2&-lu+WswEFG|eui~;|d&qLKw@ROFi?kV`uDc>yuaXY@
zp|a^wX4FvrZ$?i&GNgfVlzH^eP;R>g`Ih3*zu=7E%yD2ui8TwF`lgt`Y<S<C5kh`n
zCr(9Q;^*IcXt6c$YUXXqsjk2vqOq=e@NJ9qwxg=b+~<cFw0wtehS6;52Px1#p}y?1
zt+EpzCr(p2zpBJ!k9eKAd%K|;ET>;aCLmly=kzsV>VIeS`u_|cNwag`LY4fY5UUkE
z3JcwFM)sL9;_S;`uTg7Jq-fh5nr;J5(`}1epyW=~cIL##9sSX<E5DxYse-p5qR=rx
zX3CeKKHIUkpRWE?@nmk1Q?vHbwUDQ7dH;|yEla33xb!0QgU#$3w)^mz0wk<YEF;?2
zWyo4Cl7d5mViL^()EarvNThLn4>FHgZ13bHS@X$f8tEF^)1>H22>&rwvcQxDzob}%
zQHS*sY@q0+FuToX3-XsE0@AXD0jCqJ3k378n7Mxca%d*Ql7{R4<-I>x;=fnm4+zol
zx=bDl=?=WxAE><gy(}Dvab*&4J1xE0Il{G#@Kg?I6#Ld)*El78-1?&${HB3L-<v7b
zZ8?Iuw?E5dNqO>&-B8f2=UKCyXG^vE%*{+^wQqOu@y4@a(lz1`(H2ow*Z4T-i)p_Z
zgZ4)(!q&%d=|h@|i4x91fac}Sl;BEEc%;es%0cJfR+oGJ?tIrb52xKnC4_rL^Ea@q
zD+PZkpK>Wjb~ee?;IK8D7r>oLFSaqNCj1s@a=-gf<i|MT`)(w<$5myZYN0Fd;$D~q
z^d2Q6+{F*nCf||S_|Ug>{u)#2N5hO%ga|8=ooQ*EzPoohD0WXI`9+j`*9;LjhcE(h
z;RxYfGF8;L5_74KLdu~?!;n+VLTqCFm<_}FE;->(4%s<7{iFE|e@OdHb=o`MnzHgs
z)H`kJm%SFXq*QN0MO;`em;O|IJz_7o;EF1s)>81rS*Lvz&`LD~a|gm$x(9vxhzYlN
zkQT}?%W<*Xvxr-?WP6hjF=Z#o=|mfRa3)7~*(Tg6f|9^)tHhQ>a#?PMWI=^-h9c=D
zCrO#iIGF*(Ca;LwN`-st(M&k$oq-xVG5Oc1Fs;kVa{P>|<##j*?4{o-B=w-{$Bb+X
zE7@hUN-lST)~vX{0zIbv2(H^Oqm{S96+Cn6-}2bNK%@rq=8O56Y#B@OLNuLGRzTuw
zlP$JOR4J~h{gR+|AkmB72CYfT4GdHi($^-8MHn9L%hT<4XSf)%yp16_kMlfg0yR~U
z$aIH4y|grU$0=wFTMv{5Yd~k9l6mSi^yzK2T*+dAF)3Rqxp|V|ipEy-qT5b=P=6he
zZyf7Ut(}{#y$0o(kVGze96%N)Qs@)SjtZR*aHw>axuJj|mX>%U%*3=5lhoPEP5(Z#
z<skO`;SEvE^GBav#vbZ1j8o;|xh+xHsz}I`Y;4^{Y;0#A_hlW;%I$SKGLqRawzR)0
z|B<J#Mirv;IJifbsd?O}K|G1M?s<$>45c7-GRn~o7pCmc*__ZG9(NCr>(J-nB6xCX
z?$CCTsOYzh`Yh?4hgP<^&C2i&9VkNLx5lw9jANbgV%!-VsmH-({d;F49L9m4oW@9x
zp}Bj!wbUe$LYuKfasrql!UMnM7xhNcU3r1HVYTrXx2Y~Cn3SJY48}+46{g02Mps?m
z0a>vLHe}HuYr%<U!zzd8LT$H_1>g!SV%j7+Vqw2L08@AFD+NjePuakv^pROcb10)~
z=`iV=7oXZ;i)VVpKY}!sW}3MbS`nHC-xhK31uUU~o6}?LJ-cc(H%OqV|6JulZ=`La
z)Kx;X`6u=GEQ+2pMK4at-g>dERm4<T)KB?t{Qc^f!MMP+`$r514lJ=2$;9YHVQZ{X
zuAFQy#{Qfwc!yWa{OcxJn?mq7j{z#hR_-$BDlSKVjLJX8b*Qb5byuYwJzveh02FtL
zq(P0HBQ#Jlkl7!N*gBYj3ZR-uY#h;ecj&5siV@CC%{*kRveq5+WTKBH7d{$~om%QA
zhog&`EMtEj(7TNcCcY)LSTBXG3)nTON@HNakgJSGiJJWu2K|qQz=j5$c2qw_Af8vp
zhJ_M}H0L5$`{fK0t9G`=uR+o-PjR&CrCrOcTv733)StPLy27GQU<3D0m6nL@&^k?^
z!p^7hV@y#SQVYDfi$j+1dm~T8=pn3bO|OmcPY~VkqT--tc3$XeH|)*Ql%^^^Z|@6)
z|CF`Rg?_N`A!W8xKmG9*TYMsaomJWQR+_1;B}93R-EozyTeba?vN)6j50#a!%1<Mn
z{H_yYm`IZ4O)(4C^D~pg<akXm0LS=+KAoM)Mk<<cBysQ#Nx14MC&=Ny0=;9H7_fR1
z@|ug*9~H3_6)xdQj%eOh_h`+;A7YcZ6Qi_nB;l>qR#u71OCfC#o4RN%bZo;mRSo?=
z9JALg2i<VmA}d4H{}QA)-(N(Z#LUcQR$Bx}lmuKVb8Sy9LZD;TI!;;4#Ou{e79<*p
zGp{#0j(hD5e#D{{6VnKtf9KZ@FM5J4M1<%GMJ#qfWu4mxbRdFN>pF5|H7hrJWCmC?
zS?Lu>yz5Y0(b9v)3^w9o-a8^RyfVOkd$~DdmJnGRPpvYf)1Buww3}4ju>6Nye>}}C
zHD7~LZ&3bn&1Gar#M(A!Y$DHU)59Vp%hT;HYcSdIqnV1AoGT?PNLhqoQ%J^Em_<I-
zF`EUFrR*##=vW=*g)~_hAtLG0i|K$$mma`u(6^f4l3Fj$u|nHx{hw76BLr|y?iI3W
zb*?GrveIbj!Pg)OC$5R$ly>+Fts&pNu>=p>-{7KK;P9P=K32k}ttHhWIW0U?d$L3m
z^NMWGS{=&b>DK(qRx=UDwo#e@*E`~6DQnWs#gcLTNFtD=u|qKMDz2ek{EVsVR}q{G
zE82WMnOC_LZ$Veg%?MY0Jg#uvNYXh$WRO00w?&AP4XYC$WWl>zz&NlixhD=XH>@TR
z*-<^M611u^V!zi+1#=pLcum(5T{9BR<p~xtahgIo@h{SA>KE$qKLT;l7po)*p^lII
zaUb|(L7JR_yFn+zPSni)7VWr!5exp9w#`9Hc@}l=x1!m$qW%Z*{>jWiD8BtWN004X
za=ogU`fM!8@fEUL@*|4`!T{xl2~|X%LGRJ8hI_yh7DDJW_Rp6KWGSbLj|~;pFq2la
z=*KW}u`P%={cPO6PcGNnO(>-DjFYVv9pWBM%GW{TwhZF1F|UfKmiR5XdY}LwbhLT5
zFKX-XzKSyJMHm5GnsP+@AuDw}vyNSq2<)f8rqZN^sk$@+0wl7bK=Q-bJftx#XG?Q|
zbjj3>f`R<M(~10`Uqd)m197fBKZ#TEl5advrmZ}LtE)M<{fKEJ1LxlledNl-rB;GR
zJ9zA6;F5ye+fN9MAQtiR1~|3?Yyvo<hRyuebSArtrK{mNR*F*`|IK^6c;MaDhQ`!H
z8WB#-+KX$-PAtAZF(sPp7K%GcdV<VAH|h%Yg0@86o4-HgbMbk~u$|ipSb)U2z*1wg
za^~x5MzfMHt0eTWHKre0<t~?m5ozkY#&v^!YL_^uUQY;zk&eaKYs72F9Ot(yH_K^>
z4O7n07uc#j+8hk0EkiKWGMy4;L-F*;ZO#@o&;mV+S&V~xmSG`FtfCmP!^D}eKpbx~
zjnR=Lz@ty6u%l{MJl*|yykDq&X?1}mGZ1l_6=57Jsj$Dplu~v*6*Z&(P4|OXZQmaf
z(f@$+vBdXfF&BEe)yK4d%?M)qxvuuZLLXI;Ps>H`z+^-@L^mL8E<f|`*R#s^mXoW{
zM|M?nk3Ly5^WhIr1+y~R6o63&3;rPi;JfDb@-oQC&*emH34|+P01#=j)z}XIV&-BD
zUwh4|x7yg8LgS+0Z!|i<=1I)lcT853PeSx2+i~I0sO3^KL1yj|&jXQ+9xU3gE@~C>
zdZ;;7a|5rcCl8UcwrbLD%D2D#EmPyw9#t_H<brXiuupI=*p73X{Qg1VV4)wf-1v8#
z*{#pjs==+t`#92gmTN=mb3k9g@D<g+BC;bp173@|66q1M3B`wlu9yl4UI<t2bZn>n
zN%#6+UGv{B_PAod`cIl_5~Go`p$S(BS7aH9P>GF!@`Tl(JyswysyF-8ka5Fsde8<O
z=~N%Ln5u4q$}tAE)3VRvy@+-26_x!Zi`=@t`8J-O>*S5bvbE^5#W_t$=Kt*~t%-%6
zDw+23D3EQO7$d=;`1?_ar%#pi`K+6wyITnLXn1D4+~D;g7^Q7!E~L2IKY_j6j@&vJ
z@I^|QFF5FjFyuZ?Ns016r4-nH%J$^Er^|>P;PiwxcoX$P3IfCtBEohE?E78_2dmYJ
zXgN(7_p|qtySm%f`q8&&MJZ=Y#rI%O%%q+Q<7I^%O(UWF_B3>Z>!^}68hvEab<U#O
zD5yf&tU2q&49ZNNnGlFeb-%f}jI7$rRS(A0Kq|qJC{|_9gC+5Lu6G(uK`}wb$3CBF
z73%vubb0rqh#nBliLUM-SJp4!wHL+eTcjFS$=P>>doau-Nj`hK!1`D^v`xV~`7SLH
z&Bo-rw>NZwC}VV5c}Iga8))?Qto~rMUqugykZNW2`CG|y65`^z4vAR%@}4tU>`SjM
zU#~7vlS8R^1oXLSLx!J|LJDE^uoS7blTmh1b5HGkY*^0xAM(hJR;h&5rhKpQjL$hb
z)of~OH#viiPf~^Vb@IICPWBnH8XF==dx_$59vlUvknpZH(TOzoHF%8fClV=zh&@Av
z^xGL!oIK5%dw_B=vY3d7dL{ij;&a_gr82Exe^9^TfS232pc~ffa#>HnYOYNqxZyM`
z=<q9<9!;xTM?GHIh`Ia3LDQj((;kQ3c<aW*kItwD_MbH>D}?HlOGNSDf&>%(Wfy6U
zZFyZ5s={7mF;*WjQo%-b;(L}vq<ohdU#qL_3vN8Xa6za?l4^gOPIWe^u7$+*|GgnV
z%XpN^c=}|Fr@2rO`Pt51BD!1qza{VO*Q!&q`eB*TP0X{bcP!U3@7M5<ZG|UO`8=CI
zW;En{V(GMFf$(|u(4O^2fKgMr7uypu_}bRRR#Ig+4n<&u3^zo6mNL~8pe3<HrJylE
z!h|leD=%{_IB#uxR{CXoCrDh(Mc}sprGZH+Gr1VyGcJ)5#?gV9auf!T%SJOW0z4d1
zH#CL$uMRY^>cKQv%IIJ^<I*pL|6|UFFVa8KUg{9q>~J|!M{vgyoxBe{;~=c0kPF&h
z-Gm3OXPo;FnxqsP@0jr`SwqRf34RQ%d|6hKCgo@tf*NS|^igHK8>8k{9TjF1(lQK3
z@qIlCp*>x@23Q;VOu=MYKLtr_(;pX$K^4b8AfjcYGPSvaE?#%vLz5NA#f!zCy(DBW
zBA1{x<M}T7W-Y;lQ9f^5No+9AL`{yp|5b~_S5k8w(6^VAw^V)%=09vlgpBoXzviT7
zFMuN3XdJgpYIqgd#b5C(C_%?fZbmt>@d*~hXmqZ};e-aJezq~?;l_xXTZfnmssLs~
za|^qo0XNn9p-tSBV6i3#*P3p8NLZHOPPc_JgubMgD}s_<BXPNtucc!9GkLW?Y7j?K
zClVLXHmQmK7o2zf$gY%V94e#3oTMUxC|-!@3yrbtXGZ7NINXvaUHda3xc@rWHfAxg
zsJUo0#IS&4nwOS`)rLn_>5~*tpP%G$d@8sWms{%ATH3D-hR5U3W&YG{K~?{REMG?E
zj_Bm7MYuuZKDGx;CVcJJ>f6^|dCG3>0K`*^F3lqax8+}v4oXl*(QDDjtGQ+lt5dx%
zbDtqqdLJ*!ROkIIGWw0`3h;)ypP)%Ooa0eae9RG%<?@TwjWn3gbl<+b&N~U3_<FDs
zA}vuIQ`J6TmyN*v4i2|*R9#!aS9JaErfERk3F{uvpe!mewrW|5GNx8i*GFjR>z)rP
zan8{eMYtr=8DW{Yb@gxw%N7)a;hjn$lxTMIAI=Dqr5;a@=;gYpOAi&nkg6j1s=m&X
z%qc;NXjoMF;Y|dZ1z3Vx&>ar2h>JD2rPT5!(-IV?hmY=hkd3Hi<wZTAE0d&2O-cEZ
z`?QO-><v-vhlrwY@@yQ_@4B0xB>=u6m1ESSNg5sWWV%QC4lH;}g(i`TOTbN$9P1cF
z`daCiG4XE_38NARVn!{gj>CU6FO-Uz<`M`Jllw_{xOMT#7i+7y;tObYG$x=#wJ72R
zx)p(Puq>fMvxg}tLAm$x-0feqO{7|2b3LN|6mu*4k%BUT^>MiR)uUJwTWyJYB8fIp
z^2hyB4JnqVVQorf2n4`8)_lOCGe0#|dIEXAvW#Y^p^k|7D;kp?^e%;2gxU<T;5r8W
z<X<$ZbgO`p`X!_Rap;Qs5mxY1K#2=QvgNwJ9aq{JN#*%2O^FK|41Vl8P_CiGDjf|`
zQm=6TSzkf>0Q%N)^41+Ts}UA?wYXj_X{$sMLWmKXY<5$@zrYcyzJ$J?4WU26){~Ab
zjht(dc!YmNb7!J6L{j*zYzrXLTNxDe2u_@JoX$L&GEnvLM=24de@gEVT1)z}6Jp&T
zmda1Jvh23FDu5rA7T}>zS2D=(Pj=ZkyhGS+#(Lj%u^wy|aIkoQ`3JLPUj=(q{`JN%
zf{xv>gFD9ams&DzAH^*_gTXNp`TmX%3n=D)p<{N!xQPa#>F%s1UmV8<XQWwz|0(@b
zaF(%*f_<n+e6oM1`$_&mLwqUAN=w2{fun1y+sXkDk+sNwU6ks>yZg4z^Q-6C4O&N<
z4QQq&uGDI!>Zk(fBAvvdDGSJ_*c#xg#)kjDm&<|I|BGXiiC@|(zJ2;{k=F;%+u6_>
z+li$8vEMY#+e~Gen0F@g<52&%GNcyjo#30v**aAEM}n>rd)S;M^G$O7Yf`WOavjGN
z^9cx99p*iAQ*)*@K6wNPFF)e|7eda*W3FCifWdrVa`co^@BwcBqc_>&lXZ$_os!oM
z^r*cZ@elVwXhN{_>9GW5<=Saj&sJPrT^wyDxYd^`<IW)NL(KTHr^q6@_Yj+Un(SCV
z_3GGhHu>&BBqR9|KECGk5&q}d;Z<XX4_<Qdt2Eso8EHY|VqO@KLEFh{jA{)YrqXJk
zPKKQ9s#a<SEq%Y^lRGAf#a0_HZc_9Z$8SD4T*$nqXq%nYPO|s@Pqe%1*H$_epj}=(
z;zR2e(-7NOsci7t-?0O}cZBWpkxfh2_4~ydH8n_s5}9wFv)DU!{c51nad<}FQo&y<
z{cves+mLZ{@!>VeN{*Z%<0*wA#`%D(?$lejT4c4Y@xwo9p<N#^qnDHn+rk7hSrwtP
zOZ>wSx38S`#`o{)yoR)W=~J>Y{yNK1o@nz}NsqS0iCt-4fti*{X+7=-8~T;Mbe*TS
z6$58_f3!1dH_8EZ;2}PDc@^Irl}gq%(zoOqd}<hgVZ5_gu-Mkb7&-N%3Dr!*+V>{q
z()dQFK;Qa&kuiGs<50m3)#=biJ#b>L{o;FjigwUZ^3)a^oXC4U^|e6ozc0ZCfGZ*%
ze_}BM<m?7zFDGPE0fR$ud9CQ5x4xC0CaygXc8&qql1HGsAjwMoaqy{k@N1dVrqL+|
zOy{znpn}KfjoxC3{bEZyxcLT;PrFF@`Rb+~1jsB{cy1D_ad}0T^jaM))iQ_C+LQLb
z0d~!QZ0D1rK<qAEFmOx#3Dcv<55vaQ*QdePr&d6g_p_(3PQmoV^_0ow%k!(#c9VnK
z&fpv%b<S0%+C8JtZL5-y*m~C_^QLw#O}TwEc%2ZqYjONFv#nW!zUX}O?M=^|a^;55
z?|Cubera$+oZ4YbUO1h|z4A~9AJp-k5Vcu%o(=-w_8)b^H*fh~19hR#dwHtPun+e5
z+oz5I{i&X%f7@{Y-?3%|G+HV}ZepG5iY)js;_PbVlWD`+ABuF&I!^g<b5QK%w})-d
zZa7nOBR6ry?Hs3XO)`LgqJG#RRC-I@lx*qW;_3F`O_YDiX;badkU=((VE*-AZ3EJ_
zL-?{lu$4n1kKg08M=+@RqD%Hd@kSM}V>w`uOEder9X};9p&>dYOt3aBzPqtwat)xg
z_z3*j6U4?eXQ&t<$%nVrio|*Bn#rXD{vcWSfRc{a-ovqy-n&MS=YjigyjM`RHknpw
z|FtxXbChVD2-ua4Hoh8_y;_z1ai~srQZkxaDPtjnE!=h=G3Y9E!k+^u@t0Tl%IoI;
zIUDruwuL#?Zj1(B{k1A9PWw2{l>vEw9~*sw<?(k5{QC2L?1bnDtZ+Mv|E9!F+soJj
zSppbkZ-9cq=!;yUiwHN|@lC1g>OA+l$pOgD9vhN5pHLduq|X)p1agX>FM3Qal+Sy`
z+jQ=fldUJK{p&BOES7J5f+_bW!vhwM*}142epYK#cFmWB;EPqO;?!5$j_;dZ17kQL
zrO1PqM=4H;!cwM_z!=q?so&bO!aKY3ZJw(b`8W8IXCvkB$@27!I7*<39xIQqflx;F
zAuvlfsc_!k3=+U`{n2BDedukv(lW696L8TE`N(>@Nt*;ot+dG1u8r&`XC_LLTcBcl
za)Bd;sw_ZhkQ#xMe>=Fg3FBV7Upcw~2@ogv`rbH;&C!ldRn=7^i$+?Scr!$ly+kC%
z`40o})dy#-oQYqSn}e<+KB+HXl?5so6VX@OvnjAi+T`UHMZnaWp_M5QS|{@DX=s_G
z03zG5KJhYr>qN4DVS8d$^JY)f$mU4B@w=uQJXf1J38=kasXhGXpl$X&pVsSw7y<n|
zV^4Nb?h5R4wLmg;x~|S0r{;xUX75*dW%XayLTSvZXPp05ng+N*jf}+p`L9Qgd9s&N
z--Id2%y>l|qW?~u&S^XphCly8<vaDuS;U|vKc-<6E}@mX3L^fbjf=bDtUWBy+M7~2
zt-TZYp|URBLEfA{fJ@eY%2{UH)Zc*{5%by7(s{5zwRxP%QirAFlQT`x02fmYkDD<N
zJ9geupFRMB%Cww_LAm$6JbJM_(-1R@%suFfRYMaJhI$Lyy1q9PRBP-p77hv7V-M!X
zSbjKUi{25@n|$5N()4rwn@=7UO`S-8>FCyyk5$V>dP75=f#0-1pqf~)eU{ibKT9FM
z%&*ltou&)M=TlUHij{~Md4^4Lm6A+h204iZc>D-F@_~@M@aCLeL@4Wu@G7-kX7trE
ziEQb}M4kwOo{;`ND)tvETVx+W2qDN$nDkVbbomARHi-T1oxX1w%6Ixht8bIvi@$x|
z*b7<r=|2G5RDf$aj+3W9>oY2)TCbpb$Ok=5g&3D*FMd(&#7@^2P!XA&6OP1nDSYkd
z-+JLc1O;xO-04|fqw~hxWLY3=&pCwJ`hJOum4Q*j_d!_O?J3x;*r+9xS9U5|oU$(&
zCYOzg-bl{%6P<6FT$XAblk~rRCfRp>Mmg7GHj#e(?S>QdQU<>l<}L?vxa({CW%j>~
z-dQ&}L==+t4$xC$sXznIoZ+R(S!tWXgv7?#W?O@6xYifUohs?|cbxF}n~+cn9g`;$
z$2Z00iivbw50A=+5W_ZiuemjSbdjx9egxgelWj~8%3pts4Evn&k{<A3z4Ce}bT|&W
zlo#y91Ql_KiNw~$cHVTE=6<UJwjl}M<;ggPOWLBI-veepS)HF%R2MoFtzy&+sP8?`
zlWmiOmoIK&*+ntJHS8@x1jp__@Pu{@OSq>dz06JXt_(uPmW&0`h%`zKr&wW#coSxo
zWQIMMcu)z7|0KD8PI_Vm9@nv78hm`NY&Z^bDL?ruTX6?#&KvN3`%|Uy`j}Q;x^wWq
z`E??eGr4*yuNx>Ghn=P)eK-a~o!#|2Bw|6L&vf<i{1buR&JF`M5b;_DVJCutfQXnV
zTt^aA08<%djU+-nDNn0Q>63#$T_&J^M>y=W3fr)#B4^|8<#~P=i>*MIxS-k?mu0MD
z$)7jL?7L=rB_b`XE-*BGMVA;;U?(9=IZ8lc<-+OFsm4kkuP$k{6O6=anEcy($9&1O
z^_()tUF@t*6cgQyPICu6f^RB>_g1rd_YJiTKSzf&>=0Q=RsgRCLq3D^EO0g_l$L-7
zgG6E~_%GlKnui({S^ePCR1VUjtp?dOX=mYDCF;~$wvZFc4u*<R`_m+r=A!sqQ9{3!
zkZ<EnEP783wx;O-%OnIrmLH|4TXJ%)#r51~PD3kP&58Z<b&D19D2_@=z<kpB2%XJF
z0g-Y$Gm+#3!u!0>=hx()dqm?5mpJ&>C76pIoR|kRsltJf;Lbo_+9n4!jqr5bJ7rye
zJ@L*YFtK-wvYg!L@<#O4{QJY2M^OXry_Z$YyQeFTHCLBo5mxi0Vklgieecfs84vh8
zSCldw<a3XBu1KujiUwl=2aL1YcORSJIfbCTDi70J!(ZqXIg^FskIf`O_%L9wA0J;D
zwTg<TG1_#AAJd2>a^WLKPN?3Km<aJOjAHD!7Dpu>-nMh)1{2;Rj_+7r`9n^8+7lw?
zLqXss^b8pzOu%MQg~|6w?JS`@x&X?~rI8gBguPv`;w}2GZiy)ku!lt)*p<fhYYOxD
zsEfIE37}dA@9uy@iO`gNEBY#n3W1<}!ct?2ajlV9BBjJ%89%k1PJw07mm<qk^x*Or
z^8PXZ<(XE=+?E7;5mkz#%iNP~{hB1z;Ib@@Iic7({e?}@+)dt$`&ca9h|+dsEec<s
z{u32up-VN7HNpH9!eV7{EBbCv+nZEcZt|u;cAB-kO0%ZQQ7pe*W6rQ-w7dz;XqOa0
z*?dVEpLMCa{o)dXvG6DlTzmLyj4UdyZa|K?Ij^L_;Zh|X(Q!G#Sh&BHl-A~ED2dCL
z2;_1vnw=rDIgpVMj~4NL64~tNMwM+R35Zrb9%Jv$|M_JR+u0urvq@6V<y2mq2%5Id
zl9?7eg+8!)Z+KpjyCu&sw<9^L4=d5Ks-cjW^1>6yL|vUF)8W1u<67=KnP2;dvp7@n
z>Y<C34F90vwP$=pQ5z+bCtlRkPoGECM@zbD^M^c6=M8o0T?;voaNiAHDD|}c`qFcp
zHgxmZ4$E_?;1iqRS2lPMKM8BOnGSCB`eM|6j^Em`Bd_gm_Q8v&ibX_}FkOx7GW8Z;
zq}iArX?lU^O!&HWTkNOXHB|!Es}ZwYij+~G9Kj;9q3$Us$?t0Zj0k0m)+W^)wd<w&
zPhA84q*8&id1~|J28d{@TCi;v>8k~^NepuM9$h5={-Xd;C1FVEv1;NgC4F$h4mqcY
zQn!7TOMr(>)hxH10NIER9g~{H8+vgAc9L^w&xg^ifj}9+tRYN~7F-CC@roBf|9;(e
zl-gV^w;k?o+c^$}0jmjNoIUuU{EZEY;vrt^5<jsb(?>Hht3s9~TqHglE_2*|6p}L&
znJJhw?&LTFl<B!(g9NRtih<UFW0rBXMY_uwaA<dTucOSEY=KzO>Q@nJXj5J1Dc%0M
z&j9oCvSY~kcVLr0r!rn~1zH_r?>)m0Xa_y7oY>%>t+98s{`=exJK&+_G?L6V6}8)`
z6sJ+G79!m;dfY33c-hb}szt3VDL{l6=A>stCx#CE=TEip-hsXr&&nCm+j?l0+2Q9d
z{-0H_$HOxD<|i_^rmH-vOqQUiVfzGOjvAVLwePdtX19J$$yU)wB(?o`)jS^6%a~;~
z;ZQ>sXmd0erS|KuK`$Nj#OQk5?u>dhmG6QnH*_d2vn^k|==Oct&lB^jSJRy`Anj8h
z_4`-Wi88K6MI`XACqaKstF-+Egmznw$mw?MK!ZYcrxd(}|5{UJWfmH`sv1D#9$L4y
zB*b^$!xqawwK~n5(jB(8j$9ixT`V-@UlOal)jn-L+oxS`*dTJ%%=^^7FWt3$+I}!n
zf9ib@cc9aY5V<{fv_jO?7A56M{!{Wf6DK9&F-nHoN?EoJ<=(Y@H`YVb-|@6<Otr3F
z8Gsa@)9q7b7JhDAyxyyZ?Z26nCa)-rX^=)duw#vGC=aPithsNU!n6_D37;lj`B$`9
z69398m}=*5V$XG9sw96Q0M2$Iu*-~7?tV;X`qTPje<$DQXIH-O!6l^FcL+}5OJvtQ
z9+Z9&SQC3MnM99pTtEE}D}opMExKAU=@khnFZP86p&c#HeMXgCSTbX}d1jhvh}wgU
z2b|XA2*RgEz9XNr{?pWWq@gnZWS_1#g#v=bMpr8Xe`=j)!6e434U^%ITGK6D0N5Y1
z8wcRREkRF7PXLk;jf%Kp=%lXK@mJ2eQfc_HqJ)aiQf?qSphembKb^-&!z$tjcs`Mx
zCY2eS*p4O4<rxJ=J|SZy#|=+9#WZj3wi-81Yi0TN|J8zUEcR)VMzfczMPAe`7+1%<
zr8hS{U0{IH?-&rRmfEqmwC(mEiOPEg&t5sco-g`F$#3vsZ_M5-tEFc5==}>wN!sSF
zQY{+N0MjPN_r{AzHkmWx5YN)DFkpp%FL_K2G3p1ida!!k0I$=nPd=FC)?18^&dUDl
zOVRSu=-$1bN~yiF&5~5dN%JG%vnP<EYVc(wKb*G?jOr|JMGc1492{nXXWVvtKb?dw
zcdVsZO&5EHLp0k{OlhO{+LMuLWe@cXY)>&GYlHB5)^7@57ov(vI6vHG+9Vr|o4xp>
z1;yEw%hD#t13yZ$6--*y@?qoAq~`X`DTGKBaE?EUA;lhwKRo;*a=~BDzP|2DH8NWr
zax`q5YNH|mxRtg=-wf@-pIoaN<+N63FYpOr?GKk(N+kG-^R<rs8>je^0`gktel-G(
z&7_3gwFxKBCY6t<SWJudCRsn=?D32UY3|SCyKaeJ4452-`z_yRuy2`s3L~F>%Ld=#
z@hCOk8+RIAX>3>5$H#u&ejV>NP$|9rNQ{iG-uI0}PN?olhu4m%)SSxVk4&Bf@Y)13
z#9$`e0>4-*?D#$|2(B_Zxi!6+zNrgj_ID;Xj3ul@=YFkzwPyle|Nkr*US3Qb^>j43
ztuN_fR42dWmoX`dSU~A8rhLjxRi`6mz|{u1GG)0k-$}~;jFT4|Qyo#g4tE-Ow5ll?
z`gsuY=_u-$<s6ulM1p}3!innd2EqOg=6<Id^CVysaJ0=P@?Tfi9&W`4GoiB4pBLcS
z!s&5$ZofrhV4P`n`Jjpi|Gebit&uOQyuu9t<Ai}6D~I(k!{n44Ewis4eTn*eQISTn
zEmdR#@mZb{^HN!t36}gFWCx}46lhvYI*$J9!fBd#R_{hd@!zOoFBWN5#Vm0A&xo1*
zc=<CS_si8^FRA{xevk=b8#@>~e?Y!f<pLrkS`>`-KO58Tho~aav^hYpd0R36x%=GG
zH*c!nNu$ViX2@^y3x!Y{RWKV#Aj1U+iaj2y%k4bkWdhOpDk%h=MDH@cU89$>)O<}E
zYJB-SucmlaN^YyuN^7vzXbJ!0%Qi9<EY(*az+Sw-99yqG+?BCrANsSHVr#BeprZQn
zz1F~iO@sc}gL5h3?O%vX)HA8GEkbS2EuuX_%4mVMllsb+dP8HgA$^p)yXLf4oZ^h8
z>hj>ZU!mF(hjawfu0IR3s4D#a%vLg0u~A*(v*KoWB<NL-L!VLQH^07q_oDdqaS6$!
zh551!)kM%~%Tl=nl_~|P^7bTE+g#vw=dY?@+B+wz2XjkWZ#UJt56s>KS~!FlIXS4A
zU}^g*vhf{6(>L_yz~!8g6*I%YJi)y%i!5yT?!*#qkJW+-FVP$APd!UC?JzC)#$(SY
z*q1wp!f)B6eTSsQOPaf!1;=kd#<1B_dE!q!PX$U&FrE{eD7m6#NB}IIbEqrD=QyCP
zHJm`|LohAqP-PW38lQMy?>H;UMLMw}cUCi2a3e0b%zbq#YJq_ZM`8I~Ch$K|;S*qe
z2-A;r^2I2s-pgrDXEvXV?R7;mn=v4sbCC=ED1fmO%^b&S58kz7ZS`^y78^-MF25m1
z5WO!XHFu9|hYNeM64ZK5pUEx<ZIE*#mk74QhCu1u-{e-iDTqf#A)Ax|%OSwVe-?8p
z%<CcR8vuOF9mO0F6W5>)T%f1-&_y5QAw|3;Bl4&pO$js<JVwYFI(egX3%D$IVS!i@
z62ZIF6x_7(F4k-Iorm1&Cin+oH}JxHF@8$a7`verB9CaqY}gJ?SY#P7SuEAO`UfUt
zXM|sKXmtu-)Oa;R{EgM%VmtasKT$nvvja}dKPdY5N07bL;JBAn6ggrkTy++e?YRB$
z7#(4Vno>1!Jy~cDED`kL`uMD(!TmR`B4P6>!-7BD(5=DIjfq6lgi{KCM-3Hp{BkC?
zVZ8EA#6iCj<JPF_o=OMm`T3d~Q<gc|ZY0J*MRH;Kc2+S-AT7`(PC#<^!H>oYt7B(Y
zOXg#3Xpug7;>*r^Lh>S4hTkg&1U?>-arBx{XPbOC3m()F&papbjL2?ItC%5cW&G}7
zl>3Ke-0O6(>dd5_TbqUB10{go>F9JrfVoMW<<6I42TUK+cgU>?DanB=Lnk@-DZ8)9
zMXaX@iTb25Ivs%(o-C@{CC)?fm*MYbKZSDL5+%clyUc+yGTRu0`+lgn%L%ABHS8^j
zTbF|37|Kp*GJn0*uH(;hD2hm#w697`XNxNxf~?xoNJE8p#K~SI<Szeu47)8sk(tlI
zKeE&c7Ag2$M_q-8(Hd$PR#B!7x=Ui`{&r2gijb9c*~t&kSH@@3{wD1__(5UtY2^ic
z2=#%wrY&Bq_I5G@Ee*Ofw{zT>g{D@bUO8(sCuoMy$TOb>CZm<2t7Ka6&??hvf|ctj
z-MCHvTd0)+wVfosSo>L;+t0$F%KATlB{3}rgvU*h0j`*<t+Yir!V@dHF&id8P5S(~
zKvuDdj@axhfx&X)F-2fct;#lpH+x$!_@7BT8~<wD0zDc3<myJBlIwP!H#+X5Ay0RW
z;WCUovEfML^Q5-(+@_>t9+F;skj+4HQNE}r$dIL5>9u9tod>gM^1z-0N^E(x!?*8g
zlRYdD8Di_*8prUre4FYg1sH<)@rS5)6k~x((b3haz`Vtk-mrgAV?0kRMnQ|5$9f(7
zUzClU`!nmk*a=mfWr)iVdCFgrQUf8kkrzg07;C$2PyU)`pjB07Fr&@eKdk)m)62<&
zLIy8D8>YY27DHAsO?t)hB~qf6MDuW#_4Ai*j@#dkL5~Vnefn4Mjbb2%Cbm}Ebv)z&
z(Qt^$WT+ZIy+cd5#qa8TkO4kR9M$nzy1!mIy)K2(Eh9sTeWpNNe<6;3ADCls!RN&$
zG8+;Tq;1)JTWBBJs;SS<l0|JDa8u!gYba+2x}$Fs*1}KjuGy%|-|HVZer|<blE<yx
z7p_ilxxkgl&gKM-J9i<-`c+i1GdShx=O*R5G7gbB@IP|6h~|26%V^Re;bz-T0i4y0
ze}KNNBvh!{Wu$&v&S#J|+m21)gW&4ioRuV@oPdXBFNDh!=}{r87&Z83T#(a!f1C~w
zzSD}yd0j+l5ND?Fnk$A>D4Q0*L`spZbvilr)Ge+KQYt1~z%8Pz-$77*$7KXeD|BDU
z{8?tGup1Go8g7%P^kQ9ta(0<CYKnvZS)?CKzL#mo7<Avp_8H?QC~=aY?_TX^RQ%9m
zhN>O%d%n1gCnPDfy;?GY&^5k+3S*+U2}OZ&S~)&UQVoR<Wx}dZOq?D^O&X|(OAGt?
zhp<G_?=dG?>KKhJgx(-<4D0V(0(>d@AOQvnmvQnW$R~-EtzgO!Lrn2eF$vm_%#E8&
z*i-F0UzXxdQX02H*5=f1)`XMV_drbI&QOgqBOY1%Qg%Z{K=eEs{YvB33}sX?mC^_<
z%yu(Z>mq?(1<HRE&St^opmN>#T6RpQzq{?0gIus%<1P}+`2;UFpNb@CF6wDOKe=p<
zl7@inp1O@kNF4J+^KJTWImBqq3Z8dd_lDo0u^CC*(rO=<mMq}aiTUfGHe2rQ&1CS5
zrKvcWrc9)zsQ3U^UYF;(De13xhIL<a{I2r2mqXGkx6K@R^<#7pqMJz9GNvv6w7}@p
zzJ+w;&A9P&;=}0ihb><ORE#&E{&})>!(8z<&n{Jc41HJJZ97w+Amw?%$LjM!RglMM
z3NEgp(;6AdkV7|Pv!9@+5BF;qIU-oipL6v&<hhXcD;t3X3$4#Oe4}H@twojF8~Bb(
zj77Y&3p<@IyTY3Aum>Ya$+a`ix?x8x@zLbg8)DA%N^=%f^mRcT3kA{)a9)V`tq*KR
zFjbX2-u6Eg(r(w*Q<z(Q=0aGS5<Ad$8rN6C|5Wb{rd;93@H(6Y$r2cV)b+M5ERikZ
z;c@_)m22IZQVfSW8>%tjViubC;u;PHXFh&r7)4&Ri(_ed_Qj;)^sYCa0~s{QdC~={
zOTKDeCe;itnu78CX^*?L`z?lOKr<M{XIUb<_ii&p3P-%n<-IEtGt7XH_LvJRoPKr5
zX9Qj|cgq7?V(Tfq0EKI<KT-<*^QK=OaQ@w-qD)g{g0Y6Wv(6=UxQ|}<gM|Yv^=FC)
z*nkSMjnVj-oHpkJsw#O;_42IcEqBLBD*SCU8-q?j(O<B**A&;vxYNx9DG)VW^x}O|
z1r#dMHt;EKkchS%^^I^gQ8QOEk}uB4f;y7{*&F8G|L#JJyNPO`%p|j#l}-2<cw@K%
z847`o3(&t9D$=j(YuQlgvOSIS0M3-rQ_{QdfwtAAu>~Yc$Bo(bYs^Uw9UBu%q*~MT
z(!!_^aP@Somv+F)KLl!rv)<9D`_k1p<;mw({^lhEkAtiX2R0+o;?wR!*mNss?r-Rc
zKZfN)l+(FUchh*qmbv+9h6jW$nT8$PTH!z1-G;Pat1p%&A=O+%1<>j~1Y*ddkXqeZ
z2D>8i&ZWCZ61!+V=%5C>^?e9`vYw8k_XKv5cqJ(?@m5;%-iK>ii-g5QItx>Jtn0!H
zl@&lIHVh4%((K~6Hz7%#>hZPCElUhDCzP31k@6@3=VHEH@On!=9{%lci^1AiX8gxl
zi{mxIkACayjd@)&@Lx!_nK?eVuUj~@b(?l4W}p)>9d)&O@h0`3llfE29P9}vCy;_D
zM~^)kw#}H_`M}A^iDW1=G7)2(i8X6!W(uZD<^N;wLcB0G`|Saz!y_GWcyp~DqXr-5
z-wd&t_xl%d{*j%Ww|A1n-o;K0&6qdF-NlJJxDWeBoMQJUd2f9|KF2qbU79j+itTFL
zO&PfQIlZu8heX9`L74-oM@`lC5<U>=ygQO|g8KPZ%Bh?%WhHXn-p^Of>U3Dn0LOkv
z?sfr?P~_x9++r-T#6<G@vjjncB)9uI(FyFI7G8O=&o-^Gj>+N+Wj|7d&GFbuk5)Wx
z`R3pn{Kf3qT#t2(Y?!SX)37$5?_&b9SyweD$@0ifSI4?}016vPF=J(Iv*s_q-PI9o
z&#QW74CD5)-oO|Id3Ac4+2kw)H2l#17*J7Lv1{g*{D}@RSZn6c=~J8a!%5*pLjN2!
zyf4=vTV^?~(8?*_Z{c=4<mEUaK3gEzqOm74X_I{GbgYo67zg92ve(V-@`~kDQ9VG!
zghH|*%mywL5EYgY!3vsspvV3`gMWj0#1hldnC+eIzw+kdzz}>I>~93we{J$pa!$IT
zXnt_P6VIQriY&UgMRf03q(#BQ_K4pY3&+;bQtu+t-t)7@B~Kld$%P=Qnamy?z_c-V
z>6(K)Dh<t560x6VA<BAR)kY_x+-{e=H2L={d4bdSyWP^|0j}BC^Q#>+5KY<4@H&kB
zsH#Z>cn==jcWCD4F0&2R+*ojj$`*CdP|m+%*^73YZ)QsH%l<2?Bnc)9cQ9%)v@rNe
zApw1c!e1QFMBI=bPZWVMjKPY`#!PPX3#q%*as)y4<IV<d{RILBOS9qs0t=)a&!L?F
zB=buWxFD)Qx?Ceaimo3TREZ5-Ha<O5f*Uoyns+o4Z$cd~&wTOP_fL8Fj1Hc{xHOw(
zBW!UBVPNvEv^VHJ@k!R!OQ9PdY0z4SG1n-~UO6ArPoK3%929O<+)$Rb97fm4!z+l_
znrO8`3k?DB(T)R&tFYL{@IH8zPm16z#MPGEKrg7Z)ATU$19#Zp$KOTm-CJ=Odu5fY
z)6c2+Fc*5%5!_~!BLexV-2;_*pMhQkiN*^NaeUhF`nDO>2|qrUe?H0@p#$ZYUEA_~
zFgoi)`Zy=<R=mOE-@bw(p5A(XKkk}k1p2G={-$eww_z-`Sw=}yc7SE_P$HQ#6XSb_
zC7Dxk_Sp9;Qf|jbP#!;Ui`j6J!jubaz@E{dH<G1Hx~h42b1XzHRQ7@EwR1fX*Wluw
z11G#N!XC&fP4R3#obDAY&Vbts!uu=BJw9rAO74H%@CFPk?N`s~vTGko#M>nHFJr{W
zd!J2J{wsF7%=@@`U%0f8Lm*JTWbkM_o%1E9xyLA|euB6|m3^SMj(@wrVj4<Tqv|)<
z9lL;-PC_o?XsYfU+X{+2p*egel$fRI51F+bt5pY#%`uCZzm$TbmFQ1^L7OB*)3S)_
zxV}xN{joUHHsc9$vVT-YYN^zL>hP%|WAOgC(=iOdQ`lw;GAOI$c#8_uB@7L^BwQ85
zR3YiMPggs0`tBVw7Ur-d-yVDAhSinI{a}1~??l_lvzi8-v!f6-_tAt#S1DocDGOpe
zL6~j+>^5WI_xS!@WBjUp(SLD_8?kzUpN;(<d-ZQHNc8pFtFf+4oer+38`|$4GZ8JE
zM%9s%)&?-`_q~Mc#`^;Hs!F2%yp3J@Px4Q0ROj+`AIfU?{`~qg{CnuaqpsvCb;C?!
zB-i3Edn?z<<zmJvm}~V&eS$Q}OjIU5L<&>6#Ip97{<Hkb9shNgJm#w>WBvbDS*{xg
zw|zgljCGkpeD;a#Tu0>f!MP^R8<>F&LRF+z3;e&4A@UhvDn7RD24<q^u0CeaNsBkL
z*zwM6&{k;d_N10p7;>FhN{Vk#WM*@esB3?fTdFa}5XNQsS!Ra;llCIJ9gaBVdEM?R
z;<4AMU(>u{Z}Lx{fBM*ZZtmAFqd-L&ys9B$g#6{DbvLO<hw%IRRV2qd!SUqsQTwnL
zRJneMbCtf0eR)6VE(_Y>jb}WN<rhE^Ix#gF=v!N97x3)81o_LUkSfb=DLPW`x%3kT
z?+{V_^W#pJxd3wNre1@1M|Bz=|9f{3hrTYa87Fxp^3`eC{l*h4#X<dB)30Ef$87MC
zR7YN9kTQLcBvw$j%E)n=Yw>Bv$VI|ujkhzxOt4A;tHw5EMmuG{u`EiM^Qz{@#GiBj
zWq%0XO4szEo;&WX^XpgbvlP`+U>~%Kvb?<-J|QOjrzPrnGUltW#n)P%zzx<w%drp4
zaXglCBqEP?G0bsxB3a?%mjE&97v7$w7b!FKn)Ju<peI!l6nP~aT}ae!IZ9PMn=!V{
zxVCC`N)@=NIAyJ&fl=ifv}*5tu+%eMbxakoOf=OHr)rTB5D<MdW&in8l+l}4LU)8Y
zFRQ}baW)#UDHR8_!0{GCX<>E0d}Y`TKJ4SiJQOmlG874Wt`*and53|xVzq<ZB{FR6
zVz`vz86`G$#M4^0O|?1t@S{m9d9sCBc&uUyD~CDfXDLyoQ<r-fQpl^Co;=1oZ0NLh
znh=K612Ed2x**h<AW1Qcf?(&V2d$h#e~SAQ<uSyHsAp&xLiZqXnvbgKQ6uTx=SfJh
z?h(Z2^jttf{+988scBX{mMZ&SDg}EdYmdW2xa)IJeoY<OI5a4nfhJpzO|@Izwy<p(
zF|g7`M~bp|l6Xv{+M(y}p;IaI>;6=^%t)_qyPJGl+KXE#8X5-NE=mBVIFf>VLFp!h
z{#Clw&8~9Io%?s~P0P_XSu!Mko;;&%mX_-iCA(_S<+icamUiHNi$9D#nR?G6Yi(^4
zAPXp8_J>_5ecsItDB!lLBHW1Ot(mAl7M!l3ZQ$Hf7T@Ku9A^efO>_&mJm50C7JG-x
zKp8nL?OLV4N$<YK+y0OtWj!dUulQ;PR~4O819J!rGXzL9HAL)tQc=#>N&KBZUu@s7
zl#P1tdGbp?V%bgCnEUNatK8OeR>UhdAdW^;>BxR_U#Ozs?v-gbuQ3gPB{Wh$U=$rd
znH-bK7PCNmwlf;^um5I)+p^?ri5P{>3!E)bOjYOA`jSDF<DU>QwAg%*XrVA9qCM6a
zuR_v0lsPf!8#K!p4U0D<7a8e>j8|I=gUJiUt6+-Z4@7;eSf7kMEn)mhp6g0a3QD<#
ztJ9=qf}>1NdVD$wHd3Zyh%sc?mCZ=A$5;^<%)KvVqxGq!*AQO}?K+GaC2v`EJFITA
z2Ld6<c3Z*q51eInlGtTFm>^UA=%htL-DEr3OU@2VQY7T9p@cLg4QET<R$DBh3L+4V
z_^_a@828n$!*7o%7XJG#xV}?qCiyF@jyhB=f<a2;-D~4g<iz-f^+)Rq48@A;E-?QI
zPK~xGxh61pR#Ey>WA+$K7?$tuhHbxMMUsY6!ZqTRS`rn!3&LzQgzC`J@XBm39izOI
zhqGIr!zJ7EI|Ziypg>d2WR}NVIA4de<hM++1hIvJg4R(ZT~YI-ybQw~(O{)gL*j3*
zG@v+PgK3gHu;ZG8frnZQpXFWbO2DzO^dqiqk+e9~wO$?f#ocdjM1IE_cyX=hRH&Iq
zI>l;QJj;Dcbre?$gYt^S_{?Ox(&n)g<;gDWU~<i|Bo5?i+x~$LKY5Wu0VGVd?#+*7
ziu7oNeR0wD7B!RKir!20^0$^wbdPsyNuxkp<1x`sEh(T6Mo8$}_s0*Q?i-rii2;1+
zRR$+ENnwyUB1iDR2JSYH49-^nWgP{QBoaozC~MW?BNc_m$OW{fcZc|hekliKvO?iH
z+TPy<NIKt`J9aGN&^6``){_OoqFzLwB;AR$rsZNX<K!O|an!K!G7N1SxY_6P7l;e`
zTKa6ew6{|rc*Of)VwN4OS)r~7>y>4{<2sc`MOM}-lzZus%WsP6Hs7rla3Pga`ZMWw
zWx#ju{StydA|8N4QP=IQ|3c<IHSVkAw*0u<*Y{rVr|r9X_ct(?_6sat9h}}R4s(re
zsr<|E@ScUAr{QKV2uX<K0cnW#;@)ZqDj*QIqB#M|>#gHO{{yCz>?JganYsNN_22D4
zmYLvky~-T--$T2zqP5qxr<v~Y1J2*Z?y&VK7HU6Bu=tk5$*MT`=Dka7eUE%L4j+qt
z!V@Y$e=E>b<n=d45?^$JT4noyB}Z&2HQI$?RfPnv!-OEiaW#cU(-*$7&{cdqS5k>%
zV0)U-%a~-o2^0%AKcy~**ROE|@4V3=F*>T-OsigJ8jCsXs}jzkBh2Gt=ANY~u-CtX
z-dNXP6e6k!?r2OOT^Sa(bo`}S(px5!EaTC7n~+U2*p%EpU7}u557jXv9%;CA_b)oW
zp3E*&o&4kBs2rp0U;$%bx%QCaMx1=0GRYi&dw?7XqN7h}U~b#hPLi$M$iwp2vw1Vj
zrnAW5BF^exK>gWR+9O|T=Cxsi`=3;o{&uG*%Ur&^6CT7)ChYfRGw-!U&(BgnhlmT(
ztaQ7@q@@71_K4dVwS#3b1Qzvk|G7t1@V%{%`-)dt8Z>$6cl>|6y=7bz>>D<GE8d_o
z1VLalqm>*;k8UXi2}xmeN{<$48Ka~GhO~5dDKWZZG{R^kMo7am|M&a-eLg)O$L|{a
zxZ;fCJkR53qgbRfqKHz?)SIPd+LL#GW}7<6cJFM_6cvnp8P~7{XnMjwTlx`5+CwE1
z68wFEW^`Nk4ZK;e99R<(%IW-#Da6i!$_0Pw6u&|yvWDc7t2zam(CwYdCzbDrR|fF%
zM_bfA-pm$tRSH0S6LB^AggKVdVletj3h%81H;c`w@grqlbv}z=5|~Emx_~F5IV=cj
z#EIqW)iq~pmKg>byy@=&+6xmaM||#Kj&W<@Qe564E!@IO2*$b~22YAL*SzFriekav
zkrWu~T2;LkCd+pqJ7TKS#9JjlII*l90km60M^lx7aBNhV^p}DyO@=Kc)Q(kElJJ38
ztkPXAwF1hhamPwNPMrBo<mbVMbNW>&@ijEPB>{>kSfMyZx}EVAr$ZP@UzV{Yp-Fmm
zaf@u!Yfb+1$pD#a8&Aa-N7}Y+b!R)clVA!eeHjIaK?F=<kc`e<=Jz6P1#$`*YLX=f
z1#fr?^=5{yWgokL`>ner9)+)HXdDr*g!=Y1aL3$X`%MHOGS&I=$IR<?$uZ#;3AfK?
z!jy14Xup2Bg|3-o+(?5wPnm#Z?FcP%an(~9@wF+d%Uso)qINj==6wl=;k;cgUR<vd
zTZm<rVgW_T&W8m-l!f>pl<<kq*g=`KuaWj<S(}W-?>O)$j#;q^k=oa!3ShRAxX^r2
z1;rcHyWgsG^BW1?(0fZ$OpOVnZ*nd5VuxS82UdzP0@=w_!u1s*$aY_nHIsfxB*e?k
zQ7649kq>DH=vts=zHZ?=anC=9RU?(}fTh77%4s2G%nwtIj-D5wI)4fRGJo2|#zmRQ
z@&n#qJ$T?vWYx7YXOQ`G=)0~KdD8n2lLTv4zkwPF-+XMzck20}gH#`U_)~Xx20jWs
z2ioAjHkOsPP*4NZxKf$#eMf%YH7=060CJeIa!TFcricw4z6T?@@oP*CsUC`rS$#m>
z<1;f>!p9H6x@APO@4a_lw?DO@5{G_7Jbe`WW5y==LmIeS<a;<AQA<j381bceUkt&8
z4|BFad+uesu?%e0?HHwz)Imz=jaa!k-J#SghAeU9aWp;dN}1$k*109;R8VN?Cx-wU
z0l3a-MKsaT^e8<P)gWMjqlah#@L8Q^flDPG=2NTQsF<v&1uD-h*o9(Q888U>r#v^*
z_3r8fxY}iy$<3MzlJ-)0e%s(#(9#eXiI@6RO;0hICpvQ)Y%9scZ3eEIR<ID?GNg02
zlib$B{5a1dCVbI;T78?(*_6ZV7Nk@dQ$y6KchO9(N{&d-WEdA76%bc^f>EY&x4CAz
zYx-qI%q2akK-r>7DB~7=8y)EOrhS)vkDYzdLt!o>EPHbp#Qh!BJjEe>RVnpyc|c+J
zl(!zP_qCpGuczs9@vDKEtALp9midzLdeHQ);mE;nn1b)pWxb$I%`L;<1uy1~YqN`6
zjBlJImZmB_YZwl8&JLQ}ZfJ9CDskN)=JUtyIwnKtDbbl(!BQJ;sP)DCNG-j+6#DZY
zOliC6cH^HDEt`=EALCtY*(kE$=57y-hVES$jNLZViE~1&dknBz?afVf5`pYF7-ddu
z_|I4H0?;#PXxf&jzVzXPkckiv+-SprQvCETKo%s+=n3&4ch>wZwncab3OTZa3B@V5
zycFYyaL{wz4%mNpx#~KQg&@JdUzFY2g%EC;%$_dMiLedxlr2AJEY=Tn24uxPYE&uD
zBO$g)z+SvUea3DqZP=?*MkdD~n7NmN(xQ-$ii9_PIn}rl#)*CzOY}`z<3(nCavDzx
zSajK#3ijo9YM5`(q9k@wKBnIpy3+VaB<d7)7FLPl!?#&<_)#$rl<vu>A%TfjxO`k{
zo}*YI-$JoHN%Lx&gO6pruJ>MOl2$zdh<&b6Gce;eRM}&ziYgF32m|--om3G<U}qDh
zwb<%QoA=E;2o@4#A}F4=n7n@r2{sS6EciI+`SwrPhe9xqpM3#?TwnEJ!$<DLa=~$a
z#le+nx<ua4CX#A7SG^JTDE?#M7@H3Toq~aGSDm?Ueh0;LQ&T<pWYRlB2o-Wihw&v@
z$Ih~lrD7ejTB{m5P|Fs)R-bE>(4nhq=rd)grw<5E1QGWOA~@S6ELIwP$?30aOBXzs
zeUMxhwH~#c<B2gwbLPd~{`WXUbS;^nrR`z=^c7^ZFrvTOu!(U{HqMx6nAYyiscGJ7
z@*-Wv>6_w}yu}4l`YVlRj#>IETW2YZ#NH-*_G`BSkLtpn)&4vv>-SQl*-6v<Qb-#n
zN7MVRN80$`gr8-~dxidsPh9)t?sn?9=c~EgU+G?!pm(etV>9=+zwfAI)V95vlYRm%
z=m(h!R+VYT2yN$h_Bzj3mu?7I$BtzG(C2r8|I4p48rRf2vr{>$O$XHxavft{^r-zl
z%HtZZ_wLBnl(V<M$niTAZR)y1d~stcdXiV3j&{1!bKdjy*Sj)CiiO)Ri?RngrY)aR
zSAD8f8PVD`(rp*pR&1PmYo?YeH>~r{AS=K}yZlI|*}?6sL2dV3`L~Zdz?SM`3m5St
zAN!z1=MFYDv$$4l3uL6Tx^N^%KkiYC_r_0`ktaC5Jx1|OQTpI7phEx<YIX!BMLHhB
zgEzfGegZz=(LbVUVGHZq^`^+`*S*g#Bk|=tslFx8Tl`+9lNMOF-#xmWzM_OIM^>U=
zkC?Ylz+%oe{+);KLmk-U@hi3@YwcIdg6OYn$ayWEs&UB?>wji%@;OK5zYIH{{PG5(
zV@Kp-ERJa(w!$Ps0&dzlMR<6<r{tcvj%V%e1S62Ra^vL@;1M2R?JNys6CN<hPS2sk
zgNb@in}a7d#a3Z{1|h_ARzimVpc?Yz2rijBXk@rCqh!^LLT|l$P7JZfJL~{*LS<$X
z8z9UWQChKFUdK|!2{&1K&JP*(5Z}BEK*r`SL`g~Uw03988#+xR1<~IV73|7)P+3mU
z%w)v(pt45zF7;IF_vdV0s*yK(J4v6dO)*$}Zz|?PZpRrRGmk!kC3LBVo{Ie$q@s&U
z97NV1!4vIaAr!BU;+92NqZ;k#eMs6Rp%K8fJZ%i3t=Fn7^&p~Gz<Prrl_dO@k@?+e
z-XB<*3O!~NeB6`56h)A`Edv}EMCI|%J|;~3!zYx{RQD%SGGCLI|4{d_^ExBp1*t?Z
z0>oX+nJ|J^X~NVW>q{~we@cNz*70~M?GZo-HDiG-6TmB#G_w8m>Cx{(SC(FzQ~*RI
zc<P_Cih{`ZO#EK~k(cTs<xKpIB;V{??fQZn;JTrGKO6q`Dmqwb<tJA6t(M*gL_hj1
zVMV|1XpBuI+3_sp2fkC(46qoI_U;TK2vJwlZ1Ppb$7n5!y*FoiS|0W$EK&IW$xEqD
zc84wMEXbM)8~%d)pS}m)HA9{bVz!QkoNBHYy{JPpdW&xoKof6q4(Zy<G7Qt8JLP@?
zh;^GoKh6z;)pnl3Y5c{@G`FM~#yCfx@>_M0{9E-_=;B4mxWs6o<Yh8(AB_?+QH#Ml
znj6_7X(kdUM$GW0NHcW@I(g%<BsYK};TL+s9YGSUKw?ZSu6s7OpQr(ls)8<11-#~w
z=#7~KI{O!?qh3N)JfWJVATEz>Q~!`}u>`5>?06%|Ub>W!OZi1WV_P}$#VD`$c4Fn9
z4U#>k95;8p<(h0B{~R7@tlCL<1vlG{^HEWh$xXhYkIcuT_{iIBh15Aa#JgUQb?&AC
zv<K{}a_c;1HP|?vozJ6|=m;vv=w~d?b>>3$hSd}Y%>UG26c_4VD6q#Q?!95V@03v<
zX&i++S3aQnePWc4;m4`QKF1^G2V|o^EK|HK@mZk`ul0zF$>B*?P_`xrTuQDSP_9tu
z{N5ArlrKp)QL^v-kwFmF%1@)?K^dsxG5(x=3eY&L@BP`ugM`cyi=$zIuF+SIl?T=i
z5i)yB!H*ERu{x~0&RV02oN8-b%J$*pAgwwdg&9Cx<fh2GJ|})3|AZ+%=8o56czEzp
zpoB&Lx%jOXA9g!zrN*`P{dbUDm8x?17!xy|_HynIC^pT^@n5;;Qb%4A=k~Qj6@>%E
z0YF_sY8Dkw)H}%|zSpHU2(_p9@ujXZ{(9Mo?a<4NH&CEA^IQx|t8T<S%L>>u#l6b~
z!Co0DAZOV+NVLp2U{~r0R!efk9A2q1Jgw8Lkcc(2Bwi~ZfGSJ!Z$s0Jfi@T!?-MiH
zRE7>8xF}tGW&lZ%0=4YR04}7_gqYP--bkY6lcQp}v}iYI$IR<G@1FCC4Dig(>3A~O
znhQun;m$<aFSj)Jo3?zG_N69V?&kA@A<ilw<&G?HL$Y-uy8FA(w7q=;iT8`nbTCD1
zi+#--78(CbqA?mTl$<f&+mz%D1mpy2R^X3d_O@jCpVtEf>ExY#pi<WTs*7feC9e*O
zf&f31^Tz?bf`{a7!XtZO$1ht5MqZ45w1l@%!p8_`s6*_5#0en<J%<8Jx|VI+7P0jS
z6y<m-U<3Tt$lbg|4-a*=uz^=Krv~c=&+V)QAHY{|qd?QW{nBaQ0MZ%Px<MVrfaG>*
zr@i+xRFnsTP<NnS0%fFKxnB#uW!eIO1ryels6Y(Ie`i4C5DHEFQWK0VH&F|1I>D2D
zUqeEzFH=lBR@-6s)oZ~ZQ{l5K)te(dO?`UDBKmuWAA!PVHIFg>zB`|P%wpATs<#OE
zx-8hz|C;|}nPvJZO$^~1a0&q8-TO@=toqaN7n$&3kdov3nMA|RF!H(VMN~azO^=>b
zAnXJWico_;iXyu34(l&hG;QqX<JnfYq3}{xS$z0KX<`TbT~$;oG$03xLDqk2G3JcH
zveOorn8fUEcZyzO1O4-FHXdy`?|H@aHwd!9q$y}N2&!`QqC|QUp?*L^ihoW@B<1tz
zdj@?;rnQCWa6WfyH05nsfWjpO$;l7hQSDaxYa!F^N#F@Wfq%61x>stfdW&Pcs=w~l
zS_ZHI@GO`M(rd`4(p?|-F^E&sIJ%y?{Bgp(T|fK%mIp~@{2vp8e}_C&Q+r^UXm{T*
z<K5!p3otc2=YxT<NBt+PqD@3%5Fd!-X}rQSc)F%_3S%iM*hsgwMLhRDfTR3T-&c3G
z(p=+{Pex0)i8^71eF5(vGr6|_O1zI>V6kvK?-0uxg2sn2aSA466R&7j#)X-kPt~2!
zwK<73Kpp%@a6Isd<7wbh`JZzsIpqLOhp2y>?EZDl2~_<2v(_hxA$6CX-|$C+$qfR`
zzeC{hR?gr}>$5QR3pg-GmAJ#|<l)qW7VlBMW>**l&Wah%mZ8J_UV~H4iP|~4toK1b
z?We6z3|e!==;wO!s)`CaMrpL&ExC%LT877jb7GWF1s3%m_G&U*4rWKTO%`(bbCx%G
zH=T?<#vq(d8mnqe7uO2udG5bSKH^I0l^;?5=m2kS<Ez_#WLvCv^^;cix)&b6^@K|w
zPUWU9wdHkV9H~wpQV6Kxn8)>Bh4N=iXkfZiJQuE6h#N@|e{2YN)dMTZQ27vYrh61}
zh+T%e^4z?=-cfx=V;dGv?!OT%KOR!}O(#2k63Kl{6>|%K2ww`38mcSg_hbBA-tUi}
ze|`B{j!a1FP?{t~<sDIW<Q`D-LDsAdDA0IaFJ+X?ur*vEKv7Pa^ny{+<@%5MLjYwb
zJ8|bfYu1n{`_u4`YVwv}U&EO-)l%7B9tp;Uo{=;`PO{Wan@wi$8wFh1ShQ+<bn*`$
zcR<tC-Mg||;a=jss$OtPx<Z<#d;yRkpYp;w?d3SaG5(^Rx^bt_KL%sFnkFo=^056k
zjBnA6o8L4}ca@@|U)_gO8rPqRAEBLG!O8#_ks#RV$7}u;08ftkvaFeV$NM5;(BYSp
z%74R~>~9c;5Zg>iQYS_Ihk3XR@Eg%y)IX?L#QM{n9AC#0RBck0vp4fFRZct~D5f_B
z#3`{Y>>aHxuar5rZ}KLCo&3nA9)hX`XWyLsvzF}^CGYmyH1=o1>QG!XoQak~5k-C<
zd|PB~9BI@{QgBBTyrYwO@zDX+8u8W3<{r*oqWh=N?iyYc85@Q6(acc-{u)Z|CKBAo
zddtkLOWD^D=?g;%?iHJ^LVpSc2o%lHV+vaR^HACxot=X#|GsZ1Ioa_v3+@Bs&HnI2
zyt(HMc$=WnR`!0C55<P#{C=;MItd_QHYB3v8`O0K<RsSq9NhBM30JWv<)>x)`p7(<
z8IP=$RE_fsG;dIOvhHol$(*gMKpFf&%36fnRWYrFP$efwq^xyK7e5vF?i5Y*h^^F5
zXQW>zd@8RB_|daBW-B&c^1katYtso4=Cw?q`-TW}@qQWnBfqyqM9q#S1BgJ(^5M4L
z&012CWN-FeF^|Dd)zRCcK*#Ky7vdL_+NVssP!)nB&IFT5P>lSO)8Hdm3gpF&Lsls8
zrw59xY7Bq9R!%%x0;+b`D@VCACRsIw{mygAr?E|D1|s#*4sWt+Ud!|HHttNb4Q(<C
z#t~0Q?RjrK85@nn7G(D6dT1)%mEUA@yX#YuxvM%O#5e8`RJ%KhC3E@dV!C}r06yMC
z)2k_9@o`WIqJHPQj`fbf6Yg91bBk?1@yP-0d^vABQPg+)UH=;Sk#9N5yJuO&_ZkHB
zb@*9yt0DKuI_2$pR1+^=?bwIg-{qk1K<EwzpBv7fs#C|VmRnEWnMOV_QMm!o@UKUz
z=pMI3cvc10&QI$2dg}HJBLsFV$WuQiHw9R4-jcZMYz!1`N->Qb4BWjMQ2i~|lCQj*
z_`@z*=4t*@u?hn<mfP2d`wP}&Riv*-?d;BUeK<p=U|%RcM9MpN?<Up23_55!G-QP$
zyNZJx4eOWf&8|b6=DZaCI6)|Pr^^sioUW2AKD@Y>9%9n<+qa*yinO#6`}ho5Qf6wu
z^56^~mLt?u6JF;@eo}oUxnJu+-n94JVd>fdo?gYY?`>`d$gF`(JDsGz?pjSuGw&-h
zKGSHiR?Xv_c0@D|2z|Mob2%jbk-km?UA^|GEUmHZD^dpsDxlMnNh6W+N^wbPm31vg
zh`Au;bmvx?==TN;b2oA;^r30pryGr8A)gk~14`qPXomJL8nFvgRzdst<7<U8p_`TW
zY2+4aoR?FoiYvVbs<DUXmM*K&WUB;dL{#RY&~rs~Lvq79Ng97e9(c17*9(g(W;bEE
zj81l*m|}vFNFqa%nYu;9X<A+PVD~O`C@gsia(G@t?sC@qZ)I8Rp}!{2=Vi&38<!~g
zY~d{2tJ1?rK0C4rUo-`jKz?P(wLe7{-^;a_uZ6XbGR>@57Q0`0?xFA3pk;sXR3I52
zi`BI*Oj{B@ZC-LPD{ne@uJ#<++vuek6`;w37!%Oz9(^=m{`>b-D6kGSMLdYurB9!S
zNjKkDwm%e5#cX<MM0<p$c!o8q3U?6^4>>}rk~?-z4b8Dd(L~_8{I&MOrET$HobVU{
zF8Qx3_EGHkqdW46&qjAy7dOe`Q`Zq3xvwL-DN61PtI(O%eMcW$S{s4-^WM-g=#2%5
zqk0|PqKk>4{mjU;o~5qVgZ0Bp7%QS#*ea@QuL>Zc*<H<rq^#W2P2G2y+^g!ykTnHV
zV)BT;zRg@qCccO__TBq^L=*C2>bX&o27Vjq%hbL1)gH5dtV~}0E4npUTX!<o#s%0+
z;dh8r)a@UoUnd-D)cF3|m*uFxK-1x>Ucyj(>q+IY^mbO5*3A@8&#4X(cD$A38)i;l
z!V*VONwzID|5ajltzJ?(x0D2xi)T4%%{qH|tx2^u^vC~ll81kykb8S>1e(uGpYf;t
znMzD*qZp#q$q%zKSy<(AT&LgeVz_X!)zaY8n+}xpR#*^o4^T5X{FK~ocQf5^x1Hw#
z#hUB~`lysVZx21m=Qg6`oc4Z}4L=~KG4}+ea2sYuIp+O-rz+Gnr{%<1=j6+S8hS@p
zPn5~vPj5<c25IBtY4B2X;NbsAvd*2iKOZ&}qjEg`a(%%V^22{5kUwBHP*E+Vnk@+z
z?BXf$B9<ljh4H_%%LXylME<HHZ*=0Zy!QF==gMXHjG^{>+)ZR5C)5ozAfH`;!)v>9
zDiszxvv8zK;!$H}T|iprq6(VWd&llA%S$I8Ujl8M1*Glj8dL$yn2}#T(zCV7c#Y=+
zDbv2sJ3bwuuf*Y=W9Z`$X&z_g!(Z9q0)06E;tHQFvRS@;_y<<iuGM>rYag#64|jr$
zENwaE%IT2%?DYiP8PJ*9+2G<~?~k*cO>lvW*lGgq+Ke)Yp4LxBX8xW;6-m^RkhRz;
z3AaDv^AZ2CyrvrMRQmptQ7+f-7UtpU6{VYoU(^Y9%ACo*K|ya%8<&F1`*R7pHlm**
ziknF(7kz%scXU>3xbLWQtd(^UMQAM!8`i|4!Gz>ZpkNYa3GuLoSf18+!&ZpRjSd5B
zT61ohT(@MA6is0+h9h(TJeG-$1$4~nw<HuZq>w8a3kvbPpzm+LyWBqSUetze@2FSW
zbtcK$9AnOD*t)Ro&$lnJW6qNu`W5C-BgqfCa1NGmBPR}%InnMY!x~p8mua&o59g*8
zm(R*=Ap~kwiXaOV2M4_E7ulPRbQxDC!z@TnJa&<!;na0@Qr^05o4}+u=XakH4@FWD
z4gjfNino2(ITX3>2ZJpJ<HJ(QS^{;kzyj1eFSSTtLQv`{UZ%k~EXt73mZ?ou_2yxt
zsi@{Y!?Fly-_POa@q<+5lLt7P3)Db`uWW+BuOlLqIyrod0eC%fq_P$)rI%E857xN<
znQGu4hbLy30D$ANP7g!Ipbk{L^u*==+yhSr;FX8;=&1~L_U&x0$KAVkv{dq^RpEyd
zKm9!_9I0}#1hfyM#qJICbN=)GI*x+r_%jEZQ7A0M0mAJ3SlS$3`DZ*dmem-RbH6;K
z;B712>tr92!lT|i+C4Wq<I!kOtXN<8H|{5}#)q-DBu}*DDCUak`59RP*RvR$?`M(G
z$J7xXkKr*Y@gF;F^=1D9o))V~Lr#U-Y@s`+=3ZyD;#$o~6=sGFr5h9%5qieQ6*Xh?
z9A9)K#MYkk-d9Q~6|?UdU-e!P^E07!+nYJJ#Jc8Fn$H?6B&gyKMlhGr(&QABe^x^A
z{<Y?f7vd$c<EdV1(I99tYVzOR)t^UaCE^9Biq%qV{H0{ucWl7$a~9XF^33P-<8!E-
z=I_fVl%XdM=M8?pe&-LnRO|Ij2<Y}~=RJ|%lzisA^({&%xvHS+dA-`_n*dQUCm)Ld
zh$vJi{dI)XuPxSSy&gjvAzSZs@2fB8`*|Z>E@(}TwI<g67a<`w-ag8^RWjA)F4#5=
zPLFiI<F1rO8{-ll^qDzX9E|Q8MtMMjTX-udi|oGK`xa)DF7P1?41de|FzoHp4%MR=
za4v)ol?bxl0_q@x$i0a$;NNgh!8*82X?=(IFQDlPyQ_Dr8W9>?6oJ1|m=Lt4uD_iS
zEUfed^`#zDtI!*{BHz+m6ZX6>99Wb5RH^BQz-xk>fe-dkLg4<=vs0kEk9mrW=o<98
zHrZjA+0Fwbxt7nR*!Bt18#-7^)c@=G7z3j&Iw9!xX?*Mp|9Cmr6Hz_f>oe+okNxOQ
zLc`JdsS~TaMX+fg!5qRlX?R5svpxy^wXK+GILK&-H1SXBm+b^z`P0A_<fsLFb;w+s
z_kW63+AU5uv|YDm!vyzj9bYW<u6L)&JdlNXAz&-(KMe<-iMNlOY+ZGAtafuD?D0ns
z1U=l2vH{i<Bb(UgoEXFkq4|#q)z1WHvdtvD+o3jW!;3s=e2c-*B%w1T%qp2OUi4RX
z!76;7os!qV^*R@3CWqpQ@*WUIU7V>o_mbq3A2lA`&blaqn3pIIMirxdGxaB7k%o^8
z1#@*E+<PspH7mI1i{g$Mjw-O;IEF_e6?)>5NPy7Cy+LssAii|SJ&S*Jhgt}F?v1^h
zLZcsnXv3m~yMG<I1Jzd8QK@lqTEou?KvS=??vDR?5efbUkwyX!Nl8=}J$fGUm%ytl
z7({_C_~}9H3CUyeQ{IlU_{ys1L{xA2j{2bv8O2#r_$hG(c%$?_*e7y5eH~C)#fL!f
zJ*YaOh#+KzTv)j_o+9RPWL<yOkh`)jKQqyi1JRpLe<rU&<}}#Wk0FVLnz3d?$>Rk_
zvDDrf#U4I7#2K7&#+N1$aYl2iu+TfgjG~<T*rU-}N;6J9QPi`TvL%`+{L^u=ak+Sp
zpZ^S?9c)`NH~Xc4MlEbBVrQ8P6HVK3-bA)ozcQcqo(lr5X4S=qXgq5nB<W1Imm(<h
zo+dZKdq7Ai*X>qf!rUDj0W(V``Z^n{!J7K`EImMLhgt_BD$UXEZDW$I_t4f7`>~7$
z!mhz1U;BO?rEdVK-!qx22Is-NAkCtx!Y|LpNv6y9nMdlj?k2NE_QM{j11mwLtBcqg
zCptDr!wr%mK0|M=L_*oa^*L|c)^l9>8bpd(umh4j%Yk#*%_xaP-z(#^XX&D;EZV%`
zvx3mBKv0M*dB*;gb&*XURKgj?KoR+~T-qF9eo6uqG?TdaDOie35(^#OAqwEUd4(uT
z9HDs@!m++y8;55r$_6fpKUR*5(+R(NhqxMmjyvHq+-sJ~S6^eNxi7=gBEkR9NbpiR
zJA?VCB<kyMY%By9PK>ArIOekZ6gPn=-%V}v5{J=0Evf4_92m8Z=mGCZ|G1sLo*SJ*
zpX>!B2r)q|)>B-k*8eR(c`suI`jJ3--(6#N=PiY-PC-TGZ4NK=9+rtax1YHtmc&OV
zpqNs)K6X&2dn<F<%K(&S>$1b0usR2-hK?1f6Hz@}261<F+1m<P44R_X-0rqlZzrO{
z1@azYr_?DalkOONhZ<7eK)zXqIv_ZfMk0mPZ6XTD_jwnE++}Ee_s;WgP04u=dRJK=
z{VOJHx6?0jv{UIKQ>gd-sGfMl7E%$)Dcn8sSmpL)Lj`Pevf7YKG95%2gINA@%$^Kg
zZoN)rbMW@X?#Gg*mND?xV~3~7&1tT2ZcktH`O$nKhcnZdHV)!3SAGhB5&+V4Ab6d>
z_+9~?K?i;b)C3q>HY0v2S?q7}DeKObC5+rqgpE8-PX@L7f@HNIpPJ$~jTu9BDs}ig
z0gQ~#EOm)LK>&`dqM(<#I&#JcW<mZ#*=tk7njnI3ha$hVB6+>Y&*0?p_-~%r4F?D5
z`$zHWsl9Y&lNB`13aP^a!;rU^=I7h*B=<gKlFSwoHufqJoRq7LK3Srwa@8cl9_jX4
zY%=o88O)VCN>li+Ev3A+Av$<GQv0WN`Q)`1*$$aSk;A3JD-Y&yzMLcOSCiXFx|lcO
zC&K2{zp#OOvL7Ivmd|N|c4?Me{2$qesy_@ynvhDhTDoHG*t!#gtpsUa2vNqM5FIOI
zdm_;@HF@x!%7N9sZO(zyk?zAs1DM~<`ANHM-J$;0T@CLPlH$i2pC;%k-o1%}>R{mx
z(9H}YoW^vFCznZU;cSb`PHDpGr?!bG%KC34WAPi3<g=HQ2YWB8$oWZ|(%a3oG0!DL
zJXPFchWu+Q1<+lyp?(1Y=r6MG1*kPYZ0`(VPX?!kh83F$GE=Jf>8b0vbSaNoizi*Q
zu!lSxOTVBAb<Wf(EIyBMc?6sw_-&^<ykyyfb#Ro4A0Khgyy1F7hOaEoKl+U;LwHsx
zD&l9=xM#~!%$sl>Q9Q(hF9Z-k;YRUmJyzBu#zr6Y;=zxQ(2JtYe~*eywUX>>f<f$f
zpMC{Rx~`FZlFuHtwJtSn3=lVYl(+LLEu-86jVVRHvhXS~!3cX7A$tu+^lpOf`&6u3
zW{RMWMd;~6kWGxAU|?d-ACDWN2zmORdCR)jqb7t11NL~WOrNRQIfl~H*wVT&>|B8V
zf<a*SrR<X>3UJ^B%1YQQgD>LMeVy4cz4~zGMAlH?f~kS-?WHj&hCePPr<cHckK{}t
zmY|Vazpb#bXFY56G;es*k^{}nB`?@6YKmG!TnZ=pMSbq6wZcs2JF(P$TQf9S)5B*f
za^+AJ-7gU38RUTUrq!tO$8D+LY}E~j<jJZ(-+Nw49MU-L^re~Kf|tNk^hh@3&LHxG
zwRC<9^^&r$3Hq4lODc|*ww$uXNm-SnPlALKi~RIDITkr;!1;6^0J)#VD?hJcFt?I^
zXo8cYZZSD*0&%nal)Lm_QumVOC=ukkxEf6?(0en|x_~1DlwYm=h$gbdQBBHcAIIh5
zblpiK5i;?*xUaH^;j0+n=mg`ofGqzlfX4p+Ex@H8>)rX1)s=sBnAxQ+`p*0H+QwVf
zTiVq9^?s%e=1o(!f2w~AYtItSsc&QS((ByKY_UMk58mY*nj1Kao?R9rKk;hsI^Qgj
zw=~Su|JV_pFd-Vv7^(C7Q=J)&_eA8I_fOX=!?#vE1`O<rFF|dd8@=bNg`F6<IGb?h
z;g$+4uI#|&BBX63t>u{?`78mu|8H>I)=S(DgL5TEHw9=Vmq8cTq4gQ)kx%Xfexks8
zlbVs|Mv<Dv=Oqf_Kv8FXUY`XQ3v_VY*;v=5Ot0Q!Me3*LFDjg^PM`TvgwTrn%DCLT
z&Z!@1H#pRV-KYjihOTm7Eio>CX3sB+U@#GubfOdEy+jxQ3l@dIWq~#t^?_A#7i1eH
z(c%n-=hp<RoQFGAf`;aUzo&-g*Kb-|NwocU{W$SsW^YsD%Z6D=Tj~D3rEtxytE$p7
zEVvA=Yb%c-uL<N?oBDL=$58B}3;$YEEYXr2r59X7f<L}m*^2z-kLV@wa~tT9;FdMO
zp06chkDK#_GTFg~mr{)!!)<N`$3MIGLjtJudbi^537E!zQ2SM2Rf34RYCl{V*9Fj5
z*TBNHsSmjRZWXQV1xXh1Khv?%eCe+<H2bfRq&dM||07s?ggt+s6H5$ZZmKT{#8L1?
z$~_UyeZ(77-_8L06{OxfhITDh`d9K*!*ak?x9`$1a)USiS(U80r1JMCnZ$)?#?O~4
zvJ79{17alp*g%pz4+yCOHUu&w11}2#?Ie$sHTJNl@A>Hh&R4LFBmQN!!S?>0{o%C!
zR^3Wu#=Fchd*5@{#lDeM;drO6)ql5L?Gvr&!VFu8Sp$CIF+||BcB{SJAm=BMRjqMI
zrERwt0rg=!M!OStnde>XUtRqnaRn;Er;eABYTNam7gd$KFL8u#49=3D3Kx8qgi(?>
za;+Yh9=fv@YdI;%LXohE=ahBnfO#mv6Ui<WL<~*?IGVtu&wBKm4ADjWPxJ8bGGkQi
zpK)w~)XjGO!A^%#Ad};1O}LMehRK-U$FXpRmEkzT)$2BaubT7DoZIoY0;>!GC(6Iw
zekOoj`}@P>@!=-4UeWraem7?f2;YVa`L+Y|pGmGmR9+eg%?y#3l5XRp4F`RDdrE3I
z{deB(%Z<OcMNX6Yuz3?<Jp>3^Qs3KEEKqzml$Ro<4zpQiD|vBuIFpB6pHS+$LI6px
zOwKLTkaw%yQ=OQkq$)PlRIqhV55l+RBBY&{yA!28zdC+pg;EOC$3a4cKr!2^vl)^M
zUe>#<ORUQj-h2)<E(@i-+l4>HZZjR1cKSsKs_>27Z0TzjC;kIu!T)+so}*1;utHUG
zU>`5GH!MgFUp5kudR(?WU+?U87ZOB@uoKjRr}M?}K4w;Jr<y(R+Y}$N-lm$u#7MPW
zM7jH6`t?5h-<$PTjPnE7u+BYZ=|8+=qqwlA0*H0UqAX5kVat=|ub;Ah@<7B{r8D4e
z1|6%D5-WF;YxI@m+8OKn^@{~RR*E~NwYhzq;6|zYnjB*7tlJEI^}v5u_(#a^-mVHx
z`@s}&bXM}RMAl{BvnpGf))x$B@vTdoIbQNsSu&EQ;Ig$9u?J5sA7XdpE}xOUP2LST
zsY&KJDXs(J^(&qnP4ZGF(2R}OYPO9Qxb4f~wC+b$>8y>t5B{c@62smtz-y(i?Pv)R
z_N4Nq1;6#Pr8k5a<eR9kF?>sRgX0Y=S&d--u}jpi1Mej=mmVmg`An`Q7DK}(pDAn3
ziFS^xcFH8RUKVV;FaW!X+=gM*=}mdsEPj-Tti_LYrx`BzA@08ZbX$$!?CEC4B%>~6
z`N(C%JK0Mk1XSNuCp*|2`QLr6B>Gvm5qy<tLfxEs0W%V^(S;liuHw)L6&F<yiYN`~
z*ygveiT!tofG7OfyMW`vg%pUhW5U@FQ-o7Qe<MMEqj=Qy1Vvf2^<!@nli?T+4_4B}
zX!HYH&?Ee~%AJV<P3UBiOCs7DO;w1KO=i2@Ke*+=X@l3pb`6*3U>blL3{E%Q;rQKU
z**6Dz6C$#UoeCmGS(_htW{gkCVnQI0mz)8LH5nxaD-(Bj=P`FPFtHX$SRz)39xqDz
zDbY9yV$G3}442(At>@KDkG(Pgi19uv{Am9rTz`u&^6;bdMZg3op1tRd65SMu;;Df_
zki`>;lhF;xR)XjFDissM5()njPX3$bsQA|@BcjOnjJWpA&6-}FeQkTZn<Hm-7GV@g
zmz|3&uk_tXB-gr3$(%+e1;|2g^Y6>vXw$L(juy0-n<bEA$gE=0XmK$Ia4k(V`sbti
zx_yrX-=nT8ID5L5pJ{GYvlB-VGaSG6!&=9Xe|l%4Y~gubwLGZbY<5NYIrJGXjYu_2
zVqo?2m36m(K>cpAmxmiD*8b_r9JfpNx7qIM)Cm$Mb86j)y#-0xINm?ENcK|k0wMZ^
z9M)w~FHQS>=UPmVbyAm0DA4~V<;8)YLx7R{!HKNrE+(QFB}7ksA?5m8F1kmkA@)E$
zW-u!1F?Oy6bdx=DGTs)BA(IMtd0UuEoLFZfZt+JIaVoz$CEb%i0qt)#w+a0PV@Oo{
z_|)<xl~fq<y}t005Nt^om45LaGeRW0Z^G%Dan2HTUDajsjv`>aKAz$rI>;Tz`i+I#
zi4@(hO!wVyRBr_cnwxR-1&8=4ng;aMLP+R8`U!>*>}Y8SPQO-BHECirB+3HGipc<a
z3Ad+SBb#t-D<tKy>&flc>l>G4KL}-bS_CXY9&ROCYfBx+D3g2^Bf%rZr2Zvg9dfq#
z^mdEz<dLT875B56V5I{1pA2|n4J}&g#MmrIh9^Xgey?PiZQ{?)6cY~=|DtFF42|OP
zwEBp%x$hu3g_Z6@`6=2h)F#i&zt+P1!5g6t;XDy8Zs@M9R8Hv5r`k~YI+V`Y2*Pl{
z<@IljwjL@E&st%bodUJUOevJPLa^2owbFPFxlLSel8oVX=p7Wz4Tbw{w3D~X8IUCj
zo-O({wbKnrl+LpYXQIOcy2V>64o*_|yd2ZLMrs-?XRcHD%KO`SaM0}nEP?c#<&IZ1
z?df7yV=-p?U9tJ^be$pgYp?7o`Bfb`9Drc#3n%B}YT;NBP)yP@8)$^+P6A@@2DIfA
z;cLV2H$+}K9p9y4T8nvM6~I5qOr_JiRByu?P6I{<Qw3<^OG1LUsNTtc{020z<ogD}
zKea6%O<MjI4R3^&+OTr-AF%-K-ZvQMWIPOSQKpKGsN%j4qdNKm#%4o|e|nUSDXx8!
zM59SEB@6c+$al<VIo~kn8c;qs;joCbz!eDn)d)(z=jQRaCe;3k`$I_7JbgFC?q{pk
zz+gjL6BcwzB^t~9ZtK~j>Fzh2FKoGuYBOvu;YK9ZlvODrUdHLJ$GHveKcc*<s2^J|
zOVl=68G`8BdAEg`c^aLq)Y9995KUGN3&&lavKXoi&)v0#i?PPa!r1=x?g?4D#2Q@3
zKNnAf_2mKVb!l#G70H|&G`ahtn`Y<nUM_2{w~XJm$d`Zqq0mv0mwCHv3wEAGiJanW
zol85VDf_ZucT`bsZSD2#l)u1N{v`73S1g{afAP|1XQq-TS;XDq%NN7vSM7IKBI{qY
zsWFCTZlNFk66v;Cb#~*pcBdRh|4|&qho7~bwGN4fseIo#nb34b_~STz?EwB)$9nq*
zFrnYYrZ;xlZ4kK2DO*VA4h1ZY8m72&iR0@Xb@)~B*=xBdu@?rhxWW;E&agC3!Wbe{
z^fg517`u8S#5H(4Zg4-h>A#)nk(^GqPo}g5>3Yl9yyiIBa}M;ae$>H?XTgd$qSU;E
zMR>iWA>FYe^f5c}4uVjHnZU|@9OgQrs=%v@2LWERo-=0AaY_qo?9D{fm$Io5|2!Ax
zq5YgY6}+Y)vJ#@$z9zo)Ef{&0(yKWV5lm2bcY7s#bDPKOUsyOV`=FAE+uw}q;oXiZ
z;isL{ZK<;%cv|b9x#BpTRtixi27h<viN7r@FryvUj0*1Z%BkSeUwhXl8-3An;s0_9
zqaL+WnJU}9g1muzzv1zFar@^xK^otRrc?STj1f&4?5rK~VcwURW?^CCYrVUioO!3J
zcXOsF|59LA?D^;zakpsbg6^{eRO@%bgVd+>6eHH1h{aFU6wVRlNJ0KK*xVt^4n;^4
z_N8<Fs!u(^{08L+u8m#M8wQT$VyjJCo?_a@qA*=dlv*L;id+$y<k>alYkjuG<_E`_
z4nn?uhg$@g5E^!h7-u&O)>v#SbTL9Uiv8Nk+^?cW8|dC1g@hM)g@}+v?&E5S6u})c
z{4W4Ba%?qdJN@fSGX>IKIM|I&{~aNLsC8{QS5HVhE#}7kbdVTti0^UjyTXCa=I`rA
zOtjkdmoNckR4c_g|5rh0P9V&+H;1l&CFAg6T%_BaerMv&+R&jLiOX)IZY*WoR2?Hb
zKTfyXevz*5X3k3Pp|@fAo6Ne{48N1PB74WTCXPAw-|7ZLn{+g$qFWH+_#JUAjQ;EC
zw}m*O;`>zT69@aEAc#LmvsCY*KaN0U+SO=RI5oD?bF_MQ2lh>M?_N)0-gQ}p%Rrre
zrKcO_;v-eH-%!4lK-dr&p`O#{=Y-R!FS4|%x{gi|^0QK&_CPDQWt;wv+R73mQ#9Yu
zO@-{o1Y_;tQls`(iA$IDChp4o*w-0fAVn9PLfs{-Gy&`<^_ABY{n}+2@cqgmgDS94
zt+(Z_ki`62acJ3M&FRI5oL!2<BX(XRy}1e=iln;)XOB4BsV9vuaE5W*p=)#+2Ms=R
zKI}eXAzchYFqNY5fZ8j9X)1G(W${UL?&ahU#gkmnv7`3nkdy)ZVLKrKTxKc-P%&r)
zD62kvYg3d_10&y8pN%^=2+Bwie0y#X>eSM(3~zAiC8P<#wSx!#Z>?Yrx=H2R{m4gV
zdt44vk<#N2Rhvx*K4jX;%^z#wvfo5z6;52LOG+2~A1}T;AReduffL05E04dz{YCj6
z#{WkPev|TXwVkFGp5<xC#_MM1{37gWTlj6?lj>u7WVu&rSiiqjN?GC4Ii1q<!5E%V
z&8E$(3biVav?WCMd>vQHkbaNL))5^$Q^io+;5Bvz8e_R*X?uRSf<4E?^x)hD^mt=P
z+=t8jILR9GS*CjRMhOrpbvxaP4QsvX&a~Pg-zM@sjk>cQ@x?gD(2}A7NOF5&oN!W3
zJxGOf>`jV<uO}3!6iuC2NSV)$gfS_`(9?11l`V`xpW?vbNQvP9rrX`yvu@LX&0Dor
zzE<1J+sZoy&A->h^Tgl)M-iBvgHs}CCL8zJDJ+;%ws-T}D~TIPm=+f}EjmeFZk4*N
ziJfkvgir}kmM@Rlw^IK7hj4pwpkW+8jhhu(N{^kUIooHrGCsG!*8DvuJ#yTA5NEaZ
zFnNVLt){2{_n%rLYmhjZ0hBa)%}ejX(~?O}vwv(}WtZ+QAh6|TnLseGS?tb7?Joc#
zoLwKQ%Suo+IXMvmn!1crx@t6z^AWHWl-G%GSKndM)XWW2ZjV+b@bGSH*2Y06W6@hg
zx!oKB!)RkKV_LUCFt(H7mJcC$xg~PYa%{denl*G$R<=7FQlf~UrK(@@vHv^!4>s?L
zpa+dEso`J{*n7X@1@_h4WevDQAo#_SSJy8S86#zA^Ja4HsVfeJ+2S~PX$$U+k-W4q
z`tb8#Y^k$9r{pa*re_mJpMQ??C=`F`;4ujCeVe6+L44PVMiZ|XZ%wuBk<&hQZ5bKm
zJ$YY=&6qS@AxFK;#!0h_h4t~%^Pky|k)7dPe~Tsu=;Jet6g{=G#7Vb2$eqJk9r7&$
zX^(}k*-O-Cgw!Rx8M<0Mo<DBctoVtI&Q8NP0Vy*@ZS}8Xg7G1y8)dKl+c|cXDDcM5
z!|!d_Xy+~kO5@31fxz4A6fjf~a`*#ptlYFcOd9Cy>ch@J+<V&FZMwO0xBkXz*IUK-
zNVEWOVNkA}k2y8Ch@1Y)%r3GPD@SdvKJEj$nZ0+`UC&EJr#YfePN?euFC?7qZchhi
z$4>v)Jbt;R)so@me-?DUdmup)sH5dp20Yy`y13FiHM$s>!D(#Wwl&jw?HjM(9dN8O
zvfeG<UWM8x-qpE28M|qh@?$A$4b*U0xOPbQ!*s#i#>SfMTAMjoaTwTQ1d^rH8tKgz
za5cXygd8jnI4w?jX{+Uyo>jKV+BIIFnTd0_WUHfc#E!BN!pnYcZbn)t9N{}X+BDE#
zj-P<R?}L#awj1m)Q-S)W`f$60kQaUscz1=(IPha1#^DzzU)hL$$(`>xU#ntpXVY-C
z-<*aiD_>`|Z56pmzParA*FV1pqpgeLmfP%Uv82HaisuV~I_jBYS1+!+L3o&7s>si7
zS87qFU)<j;Z@Zk6Ls!e&+cPYlH1DK}v>()nl&3dWTuZFQ7o^#Hs}?Nqg9BVNMZL~y
z&Sy)>Fca)Vj>>i;Zpa7$=S<RYV^Ox@Cg`h1PoH%E&B>YFmN!ElJto3DiW=|eInj=h
z0XY=iZ}eiKG}8}luD#>(iap(x{(FfM3I<c1qF2AGX~umHe-bpa{CfeDY2jPx{3{C)
z#p}01NQ7O$<!VHQbY2TC*cIZy1`wsm7&}hI;rygPicZhO+fq)lrNC`il>HCRmd*H|
zEn@z%2++EZ%8a!K-U0dEOUvn-Ui9m&{uM3o!$z6HJD-Sig#oDIb88b$HVKH~i-<s$
zFoY?Emt-Ado7b$sUo0DJwlsHsUD%mMvXV&|W4|1QbbwU!9Zz?chR(2!n9`g{wTei7
zm<-0=a3UlB#y2VNiZRnG$L5#W9xhiE7g%H`0VV%eTEZk}IIii2uAVq^xrOmun0P2U
z@V0OC+~Y1)UBvZI)hXC-{HP%(J+lsHty3F|Vwbi=F7j2tF8g0`-6i%AA#VlH_;YNd
zb{M;D>jRuIqYFhcafhXxxm|7-2(tvGcq$r5js<;-9Z45;qt>)p_CIrs7_`>WkT{)$
z;R034f(%cC!LNdxs2BzYocYj`vnp%ctD9dny*o9<pxbXf+ya(byopqp@?X7r*e?p|
z`+Hf{XFGyhnpsLI3+|c%?_{5lL03MjyDZdVFvi{DO@HgKu&IszRjf^umYeC$lp)#?
z4y!GK*jfQ4)ZNXHFX1*I$~i;o#VvZ9+1v`e5u<5Ho(aK@ZD`Y*iaEl5d)$&?GhA;j
z)kpr9WJ%2yo07d~aqIe|UmIXg>(zOF?hVQ+okvFXJT~(`PYGX*8K}K8fz;H})OWXb
zS6}WP5F@mmk<SDu9V3DRMa6FG%a^8NxtO+#xEJI8ntUgD&3Fo}ztSw2`Q=+rIUaG`
zL>B2MOd^OGNfo2q;EaQMT*g({1+yf&HtOw3l8hsimFa}uJ|vLD>2wf1Wfbq~K3=t?
z`|#tQ%da2;l;qWKvdn8-&92Jld?g%%!>m=}bya<?>JOYde1)aNc&&JsNS4K%-?m(Q
zyoa5Tea1QM6q!b!N_ik<{(;u(<{Tw=Y1vMN-9I355_)xg7Q7!Nyg$!7+-h$C%HnqE
z#}(m9L%%F!`W)Z8Nn4EYlBnaGcATT|qRhTL{Yd3<@vSNrW~IXQu2nQZr-cjjQ;?>v
zn|B{c;XJdu#0H2wUofN*wN$8ngjv8<pBM6IFe$}7-GSo2+IZ&2GM?jNlP$#)7F%qY
zhUoeiHiw>F8IDr#*qFmiz9noA!*U2g+~e{`wvEm@DumeC8jzISL0j^bUfFsdh=C>Y
zpTxa`Z!*DOUH^({bOl`PQC=Oi2Oggtb`r<%d(mXS(%kLd9(mGIK6wL!2tYjsP3y8A
zjTpNw526NS*r3+sh#0!N4{~bCzYByl5oh#aHTyC3<e$6;KzOT{AU9Q-x~`|mG0%^r
zMq{Vv+a&mwPFt@q$hau;;|*)f?U?GTMuFAwdjgo2<^mK}SS`Z;@uPIZ+jd+lfXL0C
zKCE>pm$!LGSd6;C)4yGJcLy~+Um<RfZRw(GJ|mj!l)UnBF<UmxSi)HiN%#<%??J1V
zoHSg3G(I-Q4}q<K$#wV*ByrmV8i~j}>H2+-`q+h$)2(MqS4`uwk`a#z>0G*=f?<ch
z*xa|M*Dp(*)<-+zSyjzfIzrV`KCE^{jvUad;hYU9h+&yea)W!3q#lr=2SFBMi)DGN
zDM+dKd|Zx8%X7-<$qE);f+<QDXp@Q4$q%Glm9IyF3A*OJz68D1Et#dZUX;w6z3Azb
zH98PCS2jBRk*@#l;a+bs3Ke*HDS-|2Yt_6qy_*)k9ca5rYoS~akeDu6o^x0_cfKOF
zDZ9}Ey*R7f_cwpzw?;tR9eOqxfoqFI#pxj&+t`fi2M&t9;Hon2%s!uMa+_2-{JEFN
zR!N639z?Vv72XwS(=?9Qc<Z{5^Xprj3e5s!KJ+6@PDuA;Z~n}CT-I*+X5Wj(ylP_9
z{{{N_e5IjNW8THxUojRdC<>=TGZ8{K<<&_f{L+<?+e|S_?k=!3VcL{dj8D?%w;cF;
z>_kcTE+(o#lHzWY-apM(>u%fL-#o?*X(RL+KvxfGbNPe8j?P$u-Nr7ha!||U{1;9a
zSHbo@IA<-&gc>xW!)%sBwvPDn-`<83_q++sMR2H4xjhCUQd*cirJxp~XRm*I{nU0r
z(IsHq3IO&UpVI0f^C5t{^^>PqEE#>Y>StjgUn~km<9n4AOl^+odqg&ef46_&e74bK
zr|p&d|J{&W)<=(;yxw+(Aknh#aTu1h8{p?dtp9=Ua@1duplEbwFzJgLb$Z*`h@fw4
z#kr?{N!(}2BT|6=OJDgD%juCba>NpovEN2lH>K__tj@kIMz(OGXaDI?t=6t|$~-6{
zT1@pJv%NXP+mFHvxOl7fwOt5@g#a@z`$kbwX1Q@4&BUDkf_87Jp@+B<zz4r=>zMBE
zww%zeTyhsor(4>U#(wB?`-5X8@&g-3h*88I%5{*ZW8kyiAIeboVeYP%f!+DA_b2fU
z*tkY)FT(iq!~W?D^|VY!W#{*xk!D3MIIe>bB^bQfwM>8dK5jio<XkTYDhuiw%WIo(
zN~6sb_14G4)z%j@YyB6Z+K$INeE#KO?6aL09nJ!JvP7cgwm&R>;IMCxEuwA5sf2v>
z)dw_fmcX=IKxRr|NIkan2-p|Utb~nRnEUCJp77aZEd4>h6_Ew(cV&-|Wudm{&U3d$
z?8C&x#B1DcBo=r?s1tXtUL{9ImLo-vE_`)PTds^vMWOPv0o^lfYG+}sm)+<9N&Wy=
zOo#~PPv77E+qB~Y9>p8=tCJ{y9^h2S)5T1&{U$6nR6AUF?_!>rfoo|t#VRMv4VS|E
z$w2~f7KMh_ZoR40W&OvjS#{6I<L7iP-6`kc82U)z<jcO}TjsE?+fcsWA0QiFE3q+B
z0X5!MCAHj(ssA|>XGZQYDv%ly(%6{E;?0cDU+jGyxG|VI<Z_mGtte7PC+_K>mco|>
z`f7lL9!)_3?cvGx7yIvYK4~Ld>GZ;PjW8`f*ZYq;;&G>6xXVpIY_m_++6Xh=<IVNg
z15YE`E7Q+PlA_7?gKqlj_oJnFwl&+P%4Z>OTC0Wk=I<`toImXU*ef?WQk$ZAMKzK+
zzq=GhBK2V{w&8q<s?v7A4SOt}kGi|9l^nW|;$AzKBBmalJn#`GO>`8$PJ8Ul;henl
zKQ|zGf<Imq8RVocF1{Slg1qwY**O(#jdv?;_p;RTat4)t1+HgI?KT|mwP$LIBZM~%
zV(yS`OKc;-M?!!R*v)TTRY~e`kYr}T`rLA3+n$jZy9e9fm^Wle-XJwV_*8Lxr*LgC
zG*i;s=6B%OmQ~u-{G7?~yy1WMNqKx{@wv)ws6};neO<dt=IxN_+Ne$&QsaM#0Fz3w
zR{=}uvbx06BVX44+!l-N>He48DewP2&48_Uz4Y(}v`5%;EjL#`lXH5W=yz2Kra{jH
z{?FV^=CiMib6<9E@|&bBzYBpQJ3TYIK{s@Ui{7g^XP~ssXRmQ(Le<w-SAqT8S>^9#
zftOf*oZr3t=<QEIH+=T0znl!LlI{6+C;6O--&g3q{%ag?LfeY#^|iI#FE1}QKd+qn
zsy6db3+Kj!gH1O!rJnAS>%Ot;?adw4PY&I9-4yuoW^miF=l-(OR!(1Xe(IN(!EHzF
z#QVDT`RjD?&ffO+#nyY>z+%Sz;m+sty3fuwKmP0MYvZqnwj>^IyRobEb>F=z#@FWg
z-7kUt^cgo-C&w&{o4n^~-I+I`hRKC5_wy;}(0im|FpPFk*9~>;TgqhoLBlnRt}oQ~
z&;D0@-gdfX@G_s7MqhV*vB``rK5Lq<VIOu6*v2VOIW+|&wb$_B%C;>F{-pm0s!BaI
mW##r|PEou6UzGm~ME{pfTekBCm-0gfAn<hcb6Mw<&;$VO+-^4j

literal 0
HcmV?d00001


From bdfb545627927a535fde968491eb220e72855b38 Mon Sep 17 00:00:00 2001
From: Caroline Gitonga <v-cagito@microsoft.com>
Date: Wed, 23 Dec 2020 15:45:49 +0300
Subject: [PATCH 113/825] Remove fs.microsoft.com under Maps

---
 windows/privacy/manage-windows-1909-endpoints.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/privacy/manage-windows-1909-endpoints.md b/windows/privacy/manage-windows-1909-endpoints.md
index 9721578892..9fe2ca8cc1 100644
--- a/windows/privacy/manage-windows-1909-endpoints.md
+++ b/windows/privacy/manage-windows-1909-endpoints.md
@@ -73,7 +73,6 @@ The following methodology was used to derive these network endpoints:
 ||The following endpoints are used for location data. If you turn off traffic for this endpoint, apps cannot use location data.|TLS v1.2|inference.location.live.net|
 |Maps|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-offlinemaps)|
 ||The following endpoints are used to check for updates to maps that have been downloaded for offline use. If you turn off traffic for this endpoint, offline maps will not be updated.|HTTP|*maps.windows.com|
-|| The following endpoints are used to check for updates to maps that have been downloaded for offline use.|HTTP|fs.microsoft.com*|
 |Microsoft Account|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-microsoft-account)|
 ||The following endpoints are used for Microsoft accounts to sign in. If you turn off traffic for these endpoints, users cannot sign in with Microsoft accounts. |TLS v1.2|*login.live.com|
 |Microsoft Edge|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#13-microsoft-edge)|

From 5ae61cdbd9ab3c9f0d7726d6568d0dfbe73c2c8c Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Wed, 23 Dec 2020 17:39:42 +0100
Subject: [PATCH 114/825] Defender for Endpoint: clarify Note blob contents

From in issue ticket #8810 (**Confusing text**):
> The Note about server licensing is confusing. some words are repeated and acronyms are not defined. Please review and edit this so that people that are not familiar with server licensing terminology can understand what is needed. The whole topic of Defender for Endpoint in regards to servers is very confusing and needs to be simplified.

Changes proposed:
- expand and clarify acronyms and initialisms in the details of the Note blob
- convert the list within the sentence to a bullet point list for better overview
- remove a duplicated word (Microsoft Defender Defender for Endpoint)

Whitespace changes:
- remove any blanks at end-of-line (redundant blanks)

Closes #8810
---
 .../microsoft-defender-atp/minimum-requirements.md  | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 98cb4690dd..b1b97569c8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -44,7 +44,7 @@ Microsoft Defender for Endpoint requires one of the following Microsoft Volume L
 
 > [!NOTE]
 > Eligible Licensed Users may use Microsoft Defender for Endpoint on up to five concurrent devices.
-> Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP). 
+> Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP).
 
 Microsoft Defender for Endpoint, on Windows Server, requires one of the following licensing options:
 
@@ -52,7 +52,12 @@ Microsoft Defender for Endpoint, on Windows Server, requires one of the followin
 - Defender for Endpoint for Servers (one per covered server)
 
 > [!NOTE]
-> Customers with a combined minimum of 50 licenses for one or more of the following may acquire Server SLs for Microsoft Defender Defender for Endpoint for Servers (one per covered Server OSE): Microsoft Defender for Endpoint, Windows E5/A5, Microsoft 365 E5/A5 and Microsoft 365 E5 Security User SLs. This license applies to Defender for Endpoint for Linux.
+> Customers may acquire Server Licenses (SLs) (one per covered server Operating System Environment (OSE)) for Microsoft Defender for Endpoint for Servers if they have a combined minimum of 50 licenses for one or more of the following User Licenses:
+>
+> * Microsoft Defender for Endpoint
+> * Windows E5/A5
+> * Microsoft 365 E5/A5
+> * Microsoft 365 E5 Security
 
 For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn the detailed terms and conditions for the product.
 
@@ -104,7 +109,7 @@ The hardware requirements for Defender for Endpoint on devices are the same for
 
 ### Other supported operating systems
 - Android
-- Linux 
+- Linux
 - macOS
 
 > [!NOTE]
@@ -186,7 +191,7 @@ The Defender for Endpoint agent depends on the ability of Microsoft Defender Ant
 
 Configure Security intelligence updates on the Defender for Endpoint devices whether Microsoft Defender Antivirus is the active antimalware or not. For more information, see [Manage Microsoft Defender Antivirus updates and apply baselines](../microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md).
 
-When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Defender for Endpoint service, Microsoft Defender Antivirus goes on passive mode. 
+When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Defender for Endpoint service, Microsoft Defender Antivirus goes on passive mode.
 
 If your organization has turned off Microsoft Defender Antivirus through group policy or other methods, devices that are onboarded must be excluded from this group policy.
 

From f4184b2962ddf6a3b26d7502b6f3c2cb32e2fd62 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 23 Dec 2020 10:07:07 -0800
Subject: [PATCH 115/825] Update minimum-requirements.md

---
 .../microsoft-defender-atp/minimum-requirements.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index b1b97569c8..8605eac87e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -34,7 +34,7 @@ There are some minimum requirements for onboarding devices to the service. Learn
 > - Defender for Endpoint demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
 
 ## Licensing requirements
-Microsoft Defender for Endpoint requires one of the following Microsoft Volume Licensing offers:
+Microsoft Defender for Endpoint requires one of the following Microsoft volume licensing offers:
 
 - Windows 10 Enterprise E5
 - Windows 10 Education A5
@@ -43,7 +43,7 @@ Microsoft Defender for Endpoint requires one of the following Microsoft Volume L
 - Microsoft 365 A5 (M365 A5)
 
 > [!NOTE]
-> Eligible Licensed Users may use Microsoft Defender for Endpoint on up to five concurrent devices.
+> Eligible licensed users may use Microsoft Defender for Endpoint on up to five concurrent devices.
 > Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP).
 
 Microsoft Defender for Endpoint, on Windows Server, requires one of the following licensing options:
@@ -52,14 +52,14 @@ Microsoft Defender for Endpoint, on Windows Server, requires one of the followin
 - Defender for Endpoint for Servers (one per covered server)
 
 > [!NOTE]
-> Customers may acquire Server Licenses (SLs) (one per covered server Operating System Environment (OSE)) for Microsoft Defender for Endpoint for Servers if they have a combined minimum of 50 licenses for one or more of the following User Licenses:
+> Customers may acquire server licenses (one per covered server Operating System Environment (OSE)) for Microsoft Defender for Endpoint for Servers if they have a combined minimum of 50 licenses for one or more of the following user licenses:
 >
 > * Microsoft Defender for Endpoint
 > * Windows E5/A5
 > * Microsoft 365 E5/A5
 > * Microsoft 365 E5 Security
 
-For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn the detailed terms and conditions for the product.
+For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn more about the terms and conditions.
 
 For more information on the array of features in Windows 10 editions, see [Compare Windows 10 editions](https://www.microsoft.com/windowsforbusiness/compare).
 

From 5306624a905ca573aa1c69d42830d02957addb2b Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Wed, 23 Dec 2020 14:02:49 -0800
Subject: [PATCH 116/825] Update md-app-guard-browser-extension.md

---
 .../md-app-guard-browser-extension.md                           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
index d01a2ef115..a84686a871 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
@@ -48,7 +48,7 @@ Enterprise administrators running Application Guard under managed mode should fi
 From there, the steps for installing the extension are similar whether Application Guard is running in managed or standalone mode.
 
 1. On the local device, download and install the Application Guard extension for Google [Chrome](https://chrome.google.com/webstore/detail/application-guard-extensi/mfjnknhkkiafjajicegabkbimfhplplj/) and/or Mozilla [Firefox](https://addons.mozilla.org/en-US/firefox/addon/application-guard-extension/).
-1. Install the [Windows Defender Application Guard companion app](https://www.microsoft.com/p/windows-defender-application-guard-companion/9n8gnlc8z9c8#activetab=pivot:overviewtab) from the Microsoft Store. This companion app enables Application Guard to work with web browsers other than Microsoft Edge or Internet Explorer.
+1. Install the [Microsoft Defender Application Guard companion app](https://www.microsoft.com/p/windows-defender-application-guard-companion/9n8gnlc8z9c8#activetab=pivot:overviewtab) from the Microsoft Store. This companion app enables Application Guard to work with web browsers other than Microsoft Edge or Internet Explorer.
 1. Restart the device.
 
 ### Recommended browser group policies

From 4f4c2ee8517bf15ac90ddf2e36b763ba164dfff8 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 23 Dec 2020 14:20:41 -0800
Subject: [PATCH 117/825] appguard-hardware-isolation.png

---
 .../images/appguard-hardware-isolation.png    | Bin 47770 -> 32983 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/images/appguard-hardware-isolation.png b/windows/security/threat-protection/microsoft-defender-application-guard/images/appguard-hardware-isolation.png
index 56acb4be53ed4492fd8f15a8021871e7d900298b..99e590e6ca861867e51255a83d1543af5bafe6bc 100644
GIT binary patch
literal 32983
zcmcG0WmsF?wl0NIinqmz7k4l2R@@1}f;$9vEl?;<ad&rjNsGI?wm@(x?r_7m?~i@&
ze$IK$k9+eYD;Zf?YtAu;%=wOYu25w~DRdM96gW6IbQx(0RX8{VQaCvH-nZ~D2^01p
zChUOkEUD?NW@qN?X6R@NCu(A6Wco=4Y-nz(YHDcW;V@__00;NgLq<YW-F@k>12r9F
z>Tv>L;fQOYN}>FwD<dZMPBeBv0TEl<Kd)FyEWE-|<Zd3`Qjp+TLC8W$2TO^`X!jQ3
zdt$iuq`J-N`fCP_7IjhNBEZkrTjV@slv{5oQz&5<JL(v>tNPyFS>AA+*>QcCvdD3N
z|A=OI(lGBiuRVTWzVp~Ij{|vrx;KV38BUpO|6*Md5A==f<y)|#mzNhj!^=nYcQZII
z$NiTs!?_^B-oCcJbQbPE<Z#9R{NsNjR|dXZ;or~Cu6&XFPvjz?SFkhx^Zfsm|Er-N
zwf3!Uw}l<AqfUf;c85>W99BL0f1`-+gl0&MHM<<_Ii-?3&xn<)BomT&fc%i6@-J?q
zpmkM3)+k)~_{R^ouO0`1M`hjs5*?~}*U>&uE0>QZPeYE+r4c)7Usjym>Uxp2+C^Pe
zQU>2%W;8Lk1~Z8ZqVlZn%_SJ~v2fUjGm_J2*BQ_E(G;=DLbr@_7->#=^T#G;dOKf+
zE?(g<DpZ{fkENrawLiWv-|;*EOWO(v^10p<CvEYPVzU*z3?CnEzJK1Q)QSvYCDOcK
z;jtiA$yRSx&+skhj-cbm7TWqdge^$nYK?dWq&jgDUOMQ+)zbbJpnkvK%bp=OF;>hl
zxwB;1JUbc;?<T2Pe=G^;M?GZCT%yLQtoZW_CrsaW9ql&%yz(r>?+O3enr##($59(M
zG2^klZ}2;^hu6CvzDF#XQ(b$pGRGVd73M4z5B0v@0}&a9q=47rN2LtKnaaiepWd<|
z^?Q2HNA9{}vt8aqCbY_Bs^+LY)32n}f1qmc8pa5-4MOFp`|v~>xq2l!*S2Hq)NkR|
zT|93u7KtAF#C{l<m8>u7CHr%=rromI=PHhZ;&5xo)3nJ&PpY@_>B3riJGge1HyS?M
z*&_x|xU1qmAwcD56CXfP{uXjLGiXf9rx|W$(Pk^rl(z$xmn+K-*{1`jNFvT<2dVk%
z<2)T6vRfX_>=mFr3}j9}aeZW-iGq)^<~mM94~#u&9=R;qRU*CMv`}#`*Z`D>rYYH<
z#W*`IK1Ap=;YKmxde`fW9Xdr`oTU`k)7zhhJv2ft(V`L#vyZIOIkx+VZZa^0JQw<8
z1MMBUxK-}RWa=U|fd25^oSLnV;t_#sv$dtGmg7kTPKhYKm^SzkC%0_$59QA7#<w=W
z?i#-FApP~iTp$Faqo5~!&bwK}sVz=}=XQXnCDPbQ@Hcy#?y84ZF=SzhC-2IQH{pB<
zMZevzwFVvxgfm8vBqE&7{s_$89G|^+3TCaYeMJ!ua{NvZy*eL;mf>0gGpE2HLTQxv
zX=Mi*h}kAHO+~!aQ5oL7c7IQzu(l%nu*-RZ19)>2SrYUr0$+Dg&0r#w!JU~W2Pga&
z>p(eo1CGZLJ~D(g%I_(qOFa2pootOZ6W}+%z1$s4(if1(QEU8KS+BWI>;P}9#Mh=e
z{+>>sMdC=gLokqQuX}u^Y&`V?n6RGLVaQI<($*DV(eUvoJN1X0ET;X~m^;6~PPRZ=
zR&MRlFD1qS5A|ZT>;SwfXPd|9F1#$vXY8EhT^7FFIIHg#`tFC39z>7~lHBi7*SU~b
zGh}qDcZ7roor;ee=f}=-WSZ`5Ol`z|Gx?*2p#(!pQvA!b-_C4wVnfB$o}JNi2pNN6
zP4RS26>IdTC)m`zj<gll=Z+L!9Lkc@{2gT^I^2F}c{XMy)rReiZ(D9{;hXM)ziagv
zt7@xZ@Q}{rvWa=39Kh#NPs_x9x|=QpcAz^5$m4HTp+gMb#XuzF+IkShv%%ol_5bxq
z;(VJc&&KV9m+s`7JL>p%b(|UyKNCX}r_HTfY`i2uwq>`iZi-!*=;j*8t}@2pJgV(U
zWb3}wpyK9uE+Xs=MHTWrW}w?~!Nqh^Y-V6THFR-=5UY6MT4+v1?skn#>t0vd$?WtU
zze)l>3iYSsk)BhF?zAm+wP+cP*LFW8s{^?_nYG1LGY4r^d^U$eERKelCh+L}b8#qA
zcz7g%mF5i`uFe9EV}<Z|cMM*qWTStWJ4IA`4dl$eRVvf43!jg>jP|XPiStUTZqde_
zp{agQVd#w-GenMuuB6uht}kQS^iQ*_>M9zs^|Lj4BqW>g^Ks~$SzJeXrSy4$FHQ*s
z5Sg+GvQHYj@Q0O7Dw|TII&pD)dtH#FU!yB0*UTA)B5VYu(gQHP%AxXuXW>(I*Fs7Q
zCkazz4~S56|Ei)Wp5m9-s{ZY2o>SB6Ot36-uNH@!-W0rAs5@_~wkLJqWh>A|^4i1L
zBQJy=y49MTzRYw(+pxPKuTt`7BM04xP<EsHn?3`{MZ^<E*k1}(V8_kMh@~p(z3kR6
zrI9L|XcNv-hS22S_-Q5w<~M9z?eyBkw0Ne(+=J7-pI~kh<;%W|cp3b7$893p5`_br
z<bB@OYb~8nT3RgZZ#!!Xz_WYLIx}K?I%Ac~o0b|Ds(<Bv?_^Zr!E*6)`S9RJeN$Nc
zY<opaA$dy)LrplH3-V{-@Kp&ibJ{p%-hQA}+mj3YK!P40y}6u>;vdcS(3N6&ONArl
zKKLG7q4?AUS``;)wE6rc8eapeIe?7d4oQ%*sD6mfBk#jHOTuNt-zj}@nRcsy<(MD!
zXQ+YjN56)WyyafuBv&OV1-5=(t=}-J-Ud@y_*K@h5=@T(hc#czA*Fs_UU2mQ(suDw
zH6EF&lfg8{dk`73)W!8I1H{1f*k}Jh+S!NUhTq#9R@tw>xzGynYbGt;aGLIN>Ex5|
zjJW}nR$hFJ=We>a;EkMY)D`?WNBN2AgHN(JOFi4GtvfuDhaPzS4}+2yc;M;Uta8lZ
z_4Or=@(#X>IO{T^sBmCNO$tlrSal~{8h+WhsRj5zoxKIWR)+S>s>#B<cvg+cO6oud
zXK*w&^%Wyl9w^I<)*3aGUS+zcwxW%7HRyO|Da!@W+Y=+3QcRiN8m57;;(pa-eTNew
z<ePprTbkf>yCQSHQsbRS3RU3d@4h?tc>uyKc9o9($?*JpAU3I%l-hh*chB@C=c@t#
zjUk`YBOSCM=SzY7fS?#^_deGs0+=1xIdOvNU9-4{>r_5Ukri>}h2VleXHHOhFs$2K
z#_-Ip8~M4YXfZOrqo??Itd^%$Im;>dj6jlpcgxo+6i|5x1hzQx9uxgUPpYRvPKSaW
z#w={;giilBIqH+)-~*i9sK0=CYDXM9ymG!9O@voT+uk9ZKgu>VrU_OcmIVafmO7}n
ztz%<*ZW(#B?v#HXUCeps+}XHg1C7e;eFOiUXqBj|%cnk$?P|LroZjoSGUBvmztFn)
zV<ACf1x;qvmE9&6N>3gcLH=&o@Y6yXa2pL@_7z*AxqorGc)yKdwNc_md3LC5mmLcl
zC%5Nn0QB`+2&c5t_osB@?-KGMySYKOpXIZ)cJ7guR&tdw`ql(C<y(HQ2zkN`q$)F*
z!EYd*2^ZSVrXC%3*Ropc>V#n+9&x^h<`(ZL)tfL(0a^aM^D)$WNhK(&L+4A0R#QBV
z-4cnFsY8&(;{H&<CWE4%fR_hnqAYKV%Xmv!0_RGVM$4JqFRcYF%Re)o&t$Xa5CM9Y
z)A!lZX-PFJ@*db(X-|1H2(3pszys{e5^c$SSrTK0F`OHQJ!HCSr?HKmp&58U`mT*0
zVT)ykmM`C#mucEnQ{~SIrQX*u?6B~b*HP9VAH!lhV)n|xEJ~B-TgnHf`^8FWC&l_B
zRx8?rBXm%apx14Ln!H>0+hkfuw>$=?#;rr+PxmWPLe58egBYp72(lO};$7yF-Cj-e
zCcD0g?&K=G^2468ZxcV3cN2EPDShW8%3j~H4+9-}9|e|pR7AA3WD0W!WGRYjww^`H
zy6xuextr>fwOkRG8UA8OUT(~qD=@J@VQSDv80Qu1ZfX(!x&)@1$O7nXP>94lR#RMQ
zcW*dxd=3^g&yE7LGSrm<u`bP1TD0Xli`bUTER@_!DyG>x=rHH6Du-F^G)OcnHumcX
z7`tsGCRst=jAwThXWoLIe1rn0F>P+IRU92>SdOevk)#+f!rl5e&{ZiV%}!MmR!FrU
z+(J_Ac;waFg}4THm3})mRG!U2ukmD=E$O}&BR-^$nr9i@zdAQOC}_Z7ncuVYc|Ga2
zkdSmU&{HN#!^V>VHdb@g^Qa%=*k#&T*~LtvYiIAuHtZ>E*E|=YT|sP7vwJ+TT?n(x
zCc`jyHC|qwkZ&5%iNRTlaX9nV+WT^P$3INXe6iTxlK#HAz2`eJ)UJdoiW{%iR}(6F
z+Oo$iBZWf?U}*a$kx*LJ704F;p4P08oj{uLGm?XSm|B0L2Up3&qjP;pwo5Xz?@jfZ
zDk0D|kV8yi!&Ik=yhTe@va~&%=&k}VCsDBRMSsydWWxQb*4F$7ATu1fb29&Ik)~*)
z#^IZ9#@ZM5Tc_$_#dZSwaTgg7jVYRUNqJ!t$&R<0W`J$~Ef-KcrJ!ogSV#gEputU(
ztU0HLc}H7;<^@qGGNc}bHc;--R^+cwC^t|lA)EcuUy-UTjsxGCsJ*7`g%qf^wg(oh
z(25zjuSNkn6%G0x+liv3HgaagT-#N{e<$qtK!8CjG|vI1xt+uIvVmS5G;}6!fR+ty
z@T@FYqT={-y}YiZgdU=k(`ze2W9T8*;k=$TSR5soJyTGd6|+g?G%&;O*Ibv~rYlG;
zn#ow>;q_1NP@pihMQtqaA;2SqV>l{`8O-=jzI=5uGLX)$OF<n>S|LVMfBQvT9Y}G!
z^{7IF_IeK9dce)iB(j0ZRBa4495{ZqD{jtWK5zB?BNxJ_kVX~E3u1K33iiJ=EX$L6
zm86#&U|kNor-x~cF)OLdYU{^Z{-trf`nFBDG=RBG)@m<az$~<WUq`RU5~DgZyA&bq
z=h3}jfDjzj8QJXc+L1$FJ}E(r;?Gdq*x8ugd#r@-EC+$JpD}o!8LwRl#0&P`F><)8
zKA{fh_6DLW0%yBOy^U48c0;4dpIVs^o#p+5<I?%J<VRU-z8F|U3D-$Pf00b|I2T-D
z!WM|fZ^m(PydFx*O!r^%EI3F0G@X}npmdrvhZ?kAi&e$*WDwZZ@vah!*VQ>_|4&<K
ztmAYR8>`W{*K7#`huWA_F=gAXy_bhqr;Edb%<K0hwj4-pHtvNdI=1O&lQL`--43VQ
zd^lOQ8b3913K~~Nj^I(oD=X}e@&n$`{r!ql9UJLLYkUKW`Qx%nP2f4;G%8>kZ7!@`
zV&VA8nbtHqE53pYAN^Oayj?xA1KFs0NzeB@^b&WM1P*3i#FV;9DEDTN>wwnp+u*Y#
zL{c%yT=NNUHwEGZ_9VF>>*iGL_v1vlac$0LIBZXS@V>iMrn{+m^a<_-=_~qkke>ly
z+ecxV=I?C_^g`T7oR$j3W#0Ju!7AmEl=>!g*}q2h1AEW-#lt(6^2NYz(8X%d!;Cjn
zsyIL|({~gPe-%7L4E7&Q4_zoVczP%w+BS<(>a0^8yNy0(?5@$XH&sx-LcGaTUUR>i
zI5$dnIM8_JG}NGCTKf)CmHicahEoKQ&qe*k6;4kX|5!C9IV|0-zEUPYuhVhLWFtPb
zQn1gA5+Ue@r2T3;dZ`BR;f)}@2`#^|e@n{bQXw;^{z!e%&&8oPgz5uEYLE87EBC7~
z{ubfIuCp<ySoNnH3<&A;5nbSSu~z-TYp<#yX>ZMp6+i!MX7|ZfJRk9ty@#ZuUED7Q
z30JU540p-s?wR1a#(M^r$VJhTRtKPl!2-cm4&snph4Q|A*&G8&P$GZRk?oRX{TO!n
z_qn(_GyA*rFOT`2!3wJch2faE+~ZesgO*|peyNJW_LQKtuG(MP0d3;e;ceI7Z=&NA
z!FWHM$j&rbzZY+`(4A|GS`Uxn=&g-r8Wt25QSE3SHKHA|&gRk^<>qkeD>xc99iATg
z7T3<dx#@*K#7|G&D685s=`$oa;f~lcDJaQ7^*k0?G=}Bc2V9lisE!fgxPl4>Ht2T}
znqS2~wGS*zHYh!=I-~O*AYU!vdzs`$BKfA~=-P)z>~N^Fg{{o#S38J#X6L)>>McyQ
zx#BfC|L|$(WjzZ0=$x-;h<V*Fjn?tAGCS_z)J=iY_r#m_;PG{ZA!n8}deFKm7O4hJ
z)9KA|tPTFMH+SwKNlJ|Z6|_*O4MkotPUE3L3{X^=UiwyRh-B3p92-RXHN7(1NC`i#
z3UOd`FwC`KLETX2*gKi!i6?G>*IHd%1&s@v&*YuXDDMT&qE1RKKN70T7|9IrFl$H(
z(2vW`Re93jte0G}{zKw<?{Y#eIW>Wiy~AunScEyS5bZ8Dg}kPz16R8ACTRr`^v&t9
zt;}G<S0TH79w|W^dVbHm{va_jIv-|mP<Xe>+=<ydxvm2Lyux;&=N>MpK@I&JqvNKB
zaiT|%ao%uYsyVU>l1vqcO@O(y*e@!ll>gE_jBQSU@5nl8LxDYmN|<Zj!WLfUruvoI
zzgFr`4}*X-_&fXbA#YK|;(}2abNDTE=K{ej;r6!sdW@vnae_;`u}*q53@lEGcR20t
zUfgoKL2Iru1)b|cTaR-sds8FVU)(ap=1^CoI(j;9_|!_?)a-rhw4g2g)MVAF&toYU
zQ-w-o^o_VRbf_=id@PA5DUyi|s^mcXn@o}#+O(kK9c?9Ar@6~?y}iRbuA{oqD`oWz
z;`7(AsBo`DOl`Xy%R0FR-U}@CI%QWE-7=9b867nszCqSRLtc|#+Dj@iE1u9c3MA;)
zD8D4`=Iazkcsh)6Gb7q4$4KiTCR}pAGIVsjzPS&-)e7F$Z8&Q^FFe4`@hq%}#){l2
zpcaBxw8bJBMHdsdMG+|NRyb`bSv66$4!UHZZ`8KwZDZfOUiW*3VTsrXa9`O%I%=2b
z(hR}Oh+mB??Cg{b5aGVogs;C5CK~pG6TyFh@%k$3_Z^8hZuQdP;V6`dsbRpNS%Ak)
z)dJCbKPZ`B$H~Iqasl`kwD9X`=%^f1b@xCy>uWekvGGrEKNr5VTJ@}DzJco%S;m1A
z0c`3$5~jY%auR(F_W}t1{Qdgix;|paQw&b|%>~*EaQR;$hY=*3hGV~_j@M3Ci!fKu
zYc_{`!8~YKZch(ipH}EYqW!G?e9YkMbn(lw?WqW7QYwpu230OL59@uawYL(7L2b>t
zLL_$z^Dr34EX$NO1vO3Nf=wR=w%vR8pDmV;p)^!hmZl&`slFhAgW>yh(NbtQX7p2Q
zHjx*aEXkn8jb(wHZXivJMdnoe%q0wLL-lz5wY3y&4wsW2@ErzDKK={Z!?zb_@2bLQ
z5VdZp;SQJ`bL4DY{83-}wp8n`jPC9=DtyDxSpv9AeUITgr7CuGW;VUe7Q^piz~#50
zb;^qL&7<eCxYG8G_n=L6?^_>^3zjmcSNo-{rLibZqSgF7`{;G8A0#8YGTx#vcau@{
z`M1_$)~*SXrt!lQ2Mi$&zXjaktS~?Y=y`SJ5@b;sxU#EzA84fK)S?U$9fC7C2Y0=z
zgzEYB#UXp%f3Z-jab~Ci+@&D@g(VVZeiujSo)=)$w|goCxqM?dmX>}~L36jzs))L1
z<P1kf(UR)60CKaFg<rS?X)hpubgO*$AupkgbKd@KMDOMmzRMRVa)R36Ei||C!v>Ow
z6UPC5xndq2#=!<E1VE78SJIdHE1j)ZoBE55e7#s2&IfuzlpfvrsqHJw9P-;!C8l!D
zs<VDzhENe(5hZc1vIa8t5Z=LtgO%pm8Ej&V*0FzB%efONA^{?<$HYsYFj5E|im|E$
zMhs!y!N881%6e2qi^wN>CqP~AiUdm1WGm`(0GM1Zq0H**pI{t($GqH`Ru1gfsLl^9
zseF=luQK@9X;i(Fn3K{S&DHxPm*12=f9b0&RpfQ?TJ@Md3PjN+;O#^A%=TV1QPP!0
z)$^H)=T98B)$iaba(yiVn&q=?9Lo@1&$1)Mvk0M>jkCt|HR{y=Xb|_l+l#2SipZ5|
zG|;uGTT^BH3E}dl2p2b56lRYIc}qEoCHCXlqb+r<a=SEXb0pZlsE#DiJI{y9vI_wv
z7+Us}d3+jmg|6lOd_0W=vW`=ou!UBDoi4T1qNA$D1=;5TLyrNJJD}wq@3O<!(+7Ny
zxa_M*Td9NmX_-f=6Q%<i8WBN-fPM17W#KJuoZTxI@a?vX)bihiY(--9R7q-*jOm@Z
zXtt`5<KMx0Q0FxE2`W0eHacsC&^5(@Z9dA+hke{_%NuAoL$Ya$zpq{B>8L)Qg(+*$
zBl-!lLT&t+$?z4pHxv!8HAe;>MNdA*J0zmIGN(<cJg{pkN@|&k)70ur3vLtD;&O(l
zDx3C!z%gcw+r{2!kI0ukKeGgj@=Zp%6saiM1YFGBoPIb7y{8h~7I$b#zlHJ*9Ys(H
zCI`)%F+7yj{+vrcr<gS@Qp8wwJe_1$R~>j;Zi@)0sKlPx8s%-9!p;o%I1^Vj#D5Wb
zk@M;m?y(CSY!rM;{D1$9sn66A+`(mVit2RSnG)AqgR=r<R`Pn5i-m58eb#srSFb;~
zIQ~Ift_yR$Mi*;ym0h@ZOR^*sD2l34HcYHDG>}B6LYS(o;W_}2J$f}_NmTX*TMt0F
zRXG&%dvTC$l)m+MV&zq8q|_OcB3loCWY|}uzg}=hl}rTK6U~9zQzNv2*qT=*?RoU~
z-@Z^pFRq8VrnIVtCt;k*Fs?yS%FI{qLo8zqgr<il8Cg@3>!JiL>LZwY%>^?X8Y#)p
z7;uj9)!(s6e!$VZG8x(w7q&DnBi}(2@r>Y@&&m~U`WogltG}D03I#-e-&ozu(zf6)
zwoyy{g;u*-uofaX!W<wWUL>5ky0joG7&P@Tu*xsXH=%zmppVX@uZhOAlwTzo6--BQ
zO0NuL>I}Tia<Y;YjsoV_I|XTVDzZVS7%B6`mcflSPp&1E-czOR{0$$P1jsfb>{=C+
zvgUc+?I*g=Gk{H5N>Yh#>b+SL@ZuaU=%&)Mf80NWyR~>n{aG0_Jq;-?%Y@hZQN^zR
zNqb0w7t?_u@|C*ra>8tu&6P&+qOM9`;rk$8NAPcPfvPEFCMoQZ23vv6xeARkX5-Er
z)oOb)&q;_4cP8jQ{=J15+q|d8AxZ^QSpQ;1$c-@zx*jg<%0Dw>m*C!}Xx&$*^LKuC
z%ER<?ThMNaoWe@##baZlGFHIR@1`heB;X3NONlLR5oxN6DsZD!yGjy(g)~=5LF)Qw
zTbW9DGy}tsF3S!WP6-7}a?`<FOUI-e-1NJF&ph7}n_L7}xlY)#zS2G^=8ea=GE7h^
zXa99Y|Ney7*1(6#;!PDefX!FsqyqU}AN*66n3G7!qL_5z`V~h>!?osEtM9_bk#3){
zUgI!SjraI`05U#wf^@OUQ!Q^kc0Y>8^oYyT#G1+ZnO)>vY17eAuf_oqnhY&NZyw-0
zOrVlCiNewNz2lWMu9|dPHdd*(7Yq(^wzvxv2f*!)Yi0j62-zJ<=N33i<^Kx<POmX%
z%>5c$2s2NrlCzVcL+!gIuo=DV0I%X$Lff_XA&(nN4loLBY3M_TDKz9;(l8z*ka|6$
zWrC~|;U-`ZVwQ%zm+B5psr6IrV2|eqOal7C;GWolPgsBam{&w{?_&d7tU2zR(?)@Z
z2`@vh3=Jwpf5M&q#akfLGS4wXQzM<kaPmiWyHEI8{=#l|TGnO|4OB5~>SUZWjJWhW
zZ*mG>DwI|WZ!J(VI@<W7ka|n&5EsGsR41J6^0ePD*m4f%<DKO$1?AanhptQAN@4Th
z<XN}&ZzIJ1I!tYXTbB*;=&5efec?+lZO|&8cEJ^=?cwNwR55OHm1Rde4DGS-e^0QO
zQK#{aXhGlGsbn~5SM4`Q#&4`Vg6od2?mkoF_YZH(G3Dc#eDS>}?}>~_w@Gd{3=;ao
z<w^EskEC@b&Wk+yr*GT!$yuD@x(kiuN=7lvz^%)Og}`){KECs9FE7i_+QGG)ch;u*
zxrm%&)#cRmqzzh3m6HIru}rX}s}9};4COJBS{`B8nC||J@iP+KbPU&q3QYWl8_)8=
zkM2A+(J|x;zP|X@w8yV2Zt97}cih$=+%huf!i$)O-U@HTC%HGslvyBxu2`zSc*jtE
zZ~5lKEO5wZ9x#bG<&ET;VWCL0%k1dc+$aSYhIOUlLPJ&Sppxv4v2E;E7x4uzFv6=&
zL<YEDZ0IR=)T>o9FoY<cM1kY+A>6s;;T0Df{r*tKWP?xew%m4Ga&gW>o@1)RmY2XQ
z7XZOkI#Q)TF92_a@+i-)D0O3{gFIXkeVta0`))`h10&L$g+UdqHr_)BSFwWShq@5z
zmb!q(-nCTXLb8_M2lvI$Xg=S|j>F^VUnuQQ@0;HP9dAr^@Q+*zZZrq+_uX!BNIV2%
zt8_l5F3Nd{p(@!HA6`bx#aY~~MN)>pk%0tN1=uyCL>3SpTOcbRfq_rw|G+MI!K3K$
zd^O~{q(gJG6v4T{=mZTzO$|-GL&W1GO!?pW8ShLh{C?rSbFuaXO(fRS`I<R)_DJFR
zJyZ$ncHizy6zSbN?!cxRL`;)E>NfNi`I!nw3*Ct|RGacx48!M>pu~VHtWr($r)@q!
z1B9_ks+;MG3qIm!T(Q)kLg)auYv%?xG||}JI$7)YXbVc8y?_E7l#S84VfYg4oxoWw
zTvONYhXH<s7ff&Lek+hG4k0dj#@0n~4!{PX+FV$hiI*v3WX7Ymam6uTl%a>B>*@S?
z!%xa?Dsa&wC8ym|cGeGVX0Ig|?|Jy(cGH*cA@1gNHhYLl#0ekxN7i#v!T(wo%DC_l
z?<AXk7FGHi%j(3K>$%DQs4>yfG<=`l<HMu>J8{dh;W%qS-h{HF2k7-^waU(MD06qa
zueF9E2ZqnttDk>M%NFd+F<ci7?4N7uvsUU0*-kO={cP^v_1BRCvJ{xT(IgFSWo}Em
zqFY`N4?2z<X;4XzRBh+(wfwEPkFg$}p|j@5JEoJW2|@XN`W;SwVj{W-29Kg%ZrzrG
zZ85*6spZ>3lP^`%*OlI=jIbbqn57IPk>XTfQ}C4Jdma!7mHhTgrV_(!xH{qD@7);D
znGUy7@mG)V_`M*Op9Py${QB<)-?EDB4`u%Sefd5k$F!em%d#zwE)Vb_i5z!*LY28P
zfje{cPtu+FO6x2W(75QY{*9XV3!LF7Oc!7gF1P41M9V6<Jo{M1{3apB9p95y!#<&k
zoKVsk96r~vdyTwyUen^MeARz=ke?%oSn)nLANo4O!TIWkLpe4hD`_2?Fx#J9w91R~
z$ik|d4BVekZB~kAI{lLErig9tFff%o<ol9-4*&Y5#+pj^>9?f-nPbBkk8qD~t6@pD
z65fcU=YM{~*b0wL`O8>4`X0Lp%Dl6H!%?*a@a$aIP6H=4sBlNOqhrQgBa{cx#wcb!
zQXH{_u+SN1NV5XDE+x}DpZAL@?(e~0^w^MFT?met+__lHD3RKlOO$HJBFwKz9rxs}
zZKV3)cf472I`dcB;K4aZ>61(soxKLnD=Y%1!(C?|Sjf2v9~o*c0)GMzH?V`Gl#mo0
zobrxy4xAlUPPQ&hon=yXW&6GR@N-eF&E5Le9x_K42oH!qZ`)9m9A@BJG!M0m04n><
zYZD5&=qOwJ{3G`UJy;r>tvjuh@TCBMkuOI-4iR714yQkznBmEOT<q&QaUv?Dsfqac
z^qXeeZ|fMia*5d*;4OWz>~C9IORD1JxtAe);)IhddQFNgqcm?t<rNGgOh7wMUOXKa
z!v;UWg3O#{8&$)OrBP=>J30U;bp)e7q?G7;`+mdIJnOFpnh1Cy;#H{y)!M5D9>1HS
zdRhgrI_NWC>OTjee8f@bO>pa#^0=4N!oa#+V<7~m6VCCE=2c?cnKSCvw#tnz@+O~D
z{A9QDznmN9FAY#C&P?(S2jTEEwj=rRWcINC`1R<*gKF-%yZ57io5Mv>X{;qv%l|RF
zq;kuv+e}6d6F#D_wYE6v+$ZZehM^>6Hg1n)NT93x&*N38EFD4udYD>{8NHW|WQocY
z6%+}>OJ?8+!bca6=o<Fp71(7jy){3-C!D4A;dS7fy1AUKDAj5G3&i-zkSZ^<)$m>i
z97V~_v8&Nvp8gnUE#L6_vlv(<E)T0}Ncj2ia_pDErYE1nAS1KckrPjw#vIzY{NFMW
z)uda;;Gq^CQh+Pu*_{d5<0aLF_C}l56Anp@h2TvY#uJBWrZhK6!Id@X!h@LUVBOE9
zBPOrGgV)ImVn;cWe^C$hO@5gGkL_xpH}797i*EdHumDCpGWd3?&s_pvHNaeP76lLY
zk!@*t8B6mYvQNN&F53S^Gy0eO3#Nw23w@~gWBI_#QQ7c6iA4V*F#V_ezrXUopZ{MG
zjQ%I`e=(<6+h+i*6`(d(pA)b3?m}2gS#fXweis(-x;orf1-546FlhYXe(AvQ1jk$0
z@m~z4f4{-MQ?ULe|4(Yxe<lBaOxgPHHTos76{Rpiv4|rDjjKW-c98N30Xl#FA=F(!
z5j$WqQVedkxYE<pQ?&#e_A|9&I!_Pw-TnRj-CeZ_cxq)uHzqfRRstKoIE;V-h6us^
zgXa97;LU%poR1VUkw1C&5vnh5vWtpnG8Cg9JkrwA*q$_t+S<IZ#}z*ja9<!9AQii~
zBuG=bKTbF2kh26bAn3k*D`D`rmf|DAD<rI!8~>+){QG$P%Rv6KDgTw+;N3o}=%Vw<
z`t^;lkGb2u-I7^j$HCb%m*o}m!t0@I?u<p>d^bD0=O_xnQ%yeH;hq3Lnt3Yf`T0?6
ztIXw@fP@#8+-6o*`D2%{-?JMMCh?(6k(W`;ciY<y7w+^G*A2wbO=g)99@2Xewg-3p
z>+5SGPxtjd&KioQ&+IAnuQkZ$svw$XpAsKgS!<Ym*6NLgKOZztFBKYphLQSadA4rt
zo;Qv4?+zaM8)>Few%r9%<SD09DuKps&sFBa9+w<7G<H$k@`@uu!Y#jJx602qvG5Go
zLe9bieYor0+9zg{LJKxegC#W73#Jywr!-5{sbiw3upDF<JhV0@M4mCPj&CP3lN8fd
zJZA&c#?txl5a3~2?n7=P^|=UT(TAK*W)-lf1iO>RNYk(nnowuRo9wgitp(Q1#K^ls
zD3FYiAb4KKUU$jKJdoq9GJ>^EcA*?}gn(0Sowm6Xz7Ns8o2RYr)XSL3VR9g<C@V&A
zQh4tL8E!bu#xLd?XAt@6O3wWA*&Y&eYR&Js@HNhoPGq?`3^&2anj?`c2=pO{>8_g{
zuDFa%em;s=$F})T(8)^1m`N=CiBXEX?v!k=A$3eB&GeoLBNthsj7yO?Qemt9@p@Y$
z<nhnkFlk?ey~QUd==AEiTY*u{oxJ=r^#?6bLM)z)bOBXaJzZH@EegXsO|1_OEn0r$
zxK(mJu_+_tdOlCwNcx>m^}@-z>k%^6QXs)IRiFh0%*|XlHTHzvcZ2v(yq}_$y)a42
z!)a8f0RHu=9!YP7XpHtG8u1y{)PYGtQz;xVo%+JDo{zU%Y&3>S`LpLBtt01)Jvnoo
zQX}fZjZgy-FY4r>w6WHd8860VmydFkn>8kkaS^=-n<=fDg?T4G^#yJ#o^P)hmI!F|
ztwV0Xm#BrGZPr$us%fBHt{3@SC;RxawZ)%dwh~ginRViE+y@bCH*T9ZNsuwEouVg^
zF4J^{b0mL1UzO6h=cFbG8B0>X`%N+fh&(SEzZ6(cK+Xqj7yle$4mAp+#~n8bz%7^0
zt`Eqn-Jr)h#QLl+11f-8-Ze2N9v?45wv+Tb_J|qSY>w<__rTW7JXa6=O}9syu^N!`
zS+KYa7mT;DfD6-*n80;VgAU~C(wX{ko4PDJzpiSonAKxrBii?nDM^2=+1PjobACHg
z-;z;#dZo4F1n;}9S0FOu^<oLrJtIr_^PH2>sm;BGe3%fHJdHd}Af(m374rOZUFb2|
z&voCgyPdPETc>Sa;KIrRPD4lStbNnc8(styiRh{40Zs60W=J7MIuA~i?e$wWp{ki>
zEpa*SJrO?M2;TucyyD;bD@Qneo3^6@Y#15Kyr@|Aif#m&y3GDOs4BSXNZsE@`%-C6
zU^Zfryo75l{RV~Mz!+8=poelGAB2uI8Wijsm9)BBUFVoLlB~7ZZxBW3q6)yw!}(&i
zRx1)yzXNXb#f84LE?G{|<6OMy3tSVi{*`*(8Eyu7_NiNcehMCpdla84(JbZm3o9-o
z*mhzeVFM-X9US>sIju(#*Qg5!<<MnFo8Wjc&Nb~A6jl`-Cx=#`?r;(Fb6)kG0V_j4
z9|^tQr#B@iV_ptOxGTbYhK?)UfBr(U&X~6PajDio7QyTlOdo9O8;c@k$uebmOqwUY
zyHasVgMwekINr(a0D%y2_*VjBbEP{xq&g69hfd?gbE}}ndU|ozN4xT2%7fU!d>3AG
zsGGQ2DSyNB-Vu5vOB0h|XJrFhoD5=^)h7};Q$nS>I@IYD?syGWYtDC?9fHd+jnvq0
zI3#-#Il)YXn5GC8dtts?RTcY7Ry<atByY;<*feQ7PDAT4o<6_QqODYG?qpxS@2-`^
zgYnS{SZk=-o<jzje^*u}M|ofrDnb7~8bY=^y*DDl&N(5>`uC2dQ31qNms7#3S?}}d
zK*u4Wykvp!WDxl&|DmoMu5Po&xAuH8h{gw7E!tSa*H5Wf=`ZR@M(1{baSa;WzLmUX
z87zoqpx%5b15D5)+oo_={Up<JnN4~I&HyUT0zt%r&$ne4WvijVg__;p+#kQS-UZ9o
z3aKRlfG)puLk|UhIm6hBaU>z=7c!<tes>KiCjwk5Sr}{IIo>fwC4fc*6En1mpKB4;
zr?o~CevB-6+?XEf*2UM5i|eR4E|!0hNBY`IV99=JQeH{NJ7FxYXT+5+NW$VAfzsaz
zPiHivozIf7w+exrKoJI!6;AK^Bz%n94aLeU$udS-)m$eMoV_P@l1i+TXOnq$nz!rB
z8uF)0PHfhmE~@l|UA3G95`C7lpA^gk@ZR@LQ&(&$m)K+(xds@LuSS<xzp}0(xC=wu
zAztqiafd|>iyzWv`#QDZJQx?0(~qZzUhC|knq)2owJd@^UNoZMnC)h8vYljn8Ci2z
zC=r+sP!o7xu1{4#=_iXctZUlTLvy%vx0(R)dbkL6{f#4M?sMAD@*uZkN1!vkC-0|C
zz>qoAqpB5&Qx7VrWh&PKQ;iesp8T9?_}Pf?h-r7Uzw0p#SI(|s5)u`I^b*G2Ddiue
zZK?uKO$25MKO32%G=WUZF=<Z57wT~rmuIIT5bnv(Y||6TC3Yi~P6>n3>b+PsCVc$Y
zEd0Mqo0?8i^dHXVloT^=3fWJpe6M@FAgd(SydNU0NC!-6;Thh?^~o01Qow`17&g{b
z3k|~Ur2bA*a@}QNOwf#Zm3=2|5RmTN*-W9fPV~^Q011^K?h8;Yfn_mtg&Gra>d7Bt
zCWkD`4M}6n-I*h<7X_HlXV1ES=WfX?P1AWFlT8Y_Q}#m5?_z5@CColqbPhe4awfh8
zQZp^is`nek!odMvgMlr3C&zKcVZCv8!<wiX<oI$1%(Rhx669+0$;DZpBoi?7Sd*nq
zXr8D7#(v3@PhM_t_+<F>kMmOR{7GuRT-ecHNgqL@tj$}x=cuv4Go)q~O^`LE`GC=5
zwC671GNi6o`*|$K<t0@yOV60^r*dei0PrwBYiMXw9k8LrUwt*5o&Dxao$Q&4Y!+2m
zmo+V#Wzb%AJ#f5Qb2pc9?=*hvdG|LQJ%ys?Fc#RzEUquW@gwT8sJ1Ky<F%8v+Nu10
zddf-H%x2nz^wmcO_LpEso?-$j?4(P4>kJTxNze#2q5idtOZ(l~RaN|<37%m>vqs`@
zV3<X=r~iN;bJ2sxQ+-F|<QYa|K1v8dr>tcNmo-4o-&pLGg!Skgz^D28pxk&od3h+!
z{$+|atCTAQn#cAN*QTnQqR$+da7CnIFR5WJ%S$gFx>M`(d^5eLsnnn2uF*U%+*EhI
zcSKw?W_=$0xOVltdm^k%is}rgw(x3vFUQWn@nftqit|TkK@m5p*C^e*!4AQn&7ua7
zi|6vt{gut)<8t5F_a;}II&uUs2#$iDoK;kj{j^mcWc+tNAL0yh{njQc%7{QUshKp;
z*-m|+n&RxbW<mXNj3felaw2zW9$+@vs#$w{hd%x-3S1#aZIltJ2_&Bb;T@C?J5zCh
zYUF`@(-jc)!V|%|wetiwUqp&|4AjDzEJ$@h1zRW`Tq)5~<=Nnv3FBgN&3mBT0~LEQ
z18oelOK8)m&FySvrREB*V7U1@+>gOV19YO}0SpHv6B>CFqf=6Wmh)v{ue~!j(vzsi
zzwJ&mb5wq{*3)%Jnc=27)vCY3jus26IHGtr5zg1I8|jJ+{-hcmK_G>Yi7$H<BbV;*
zumH*UL&jve(r7Q+eB$XtXydeEAG<RBiQhqe(Uo%_`=SHTQpvy+PuFb?=WmOjx8q=Y
zquP#=L;ut9q1&Dksh;53lC_{6c3F}9FU(i4p)-zgXOFYt(Y`V52N65Xm4JtFjX%;R
z2z%d;R6X24om~N!+{onyK8prEOL=88B>Tt0*DS}+_rgL4XV;8qRE{>&&X0y8sn9~q
z(L<iILaHS^dBa$ASVPO%PH*;Lal)M(>utH#4wKI?&3d?2Hrlp=<wIc8_|1;~F*<Vj
zRz6+L!qp+kFE0dQKgS(E@B5;oCjIkDk7*rLO0ViNx8*f)IXv<ftAMu5-M1a3x24l{
z6f6Iv3Py)R{PUu$mSU%6Ypk7yQOL~<U6F}-yE%qiAN!STn*8Bz8+dAwlic{!U0_xC
z>*^;OzjJ>q-@k_k8673nKdo$Kt_yOjWIQigfa_N&UgLs$3&Z0&&ifB^a=7xB5`cB3
zti{V|{Uhz?lX2qxL*KnhrIF;Rh@gJKSdE;^$}xTEP6U{5eX@J5Tj$a+WlyOb_u+L}
z7xyXg?^O5m^ZY5~Ty)o_`j~<6n6dX1YM0T%^NcNzWvHAcZ(APs^KJ$rkTvl7AcO=*
z(?zZD;>d$DP7$hGd^NdqC3JU~X^?7YrmD93uvei3x$yi;ka1Wq4)%S<NByC}+3V5Y
zB(1)BDbYVn{0PC(Yx9ET(sAWjQ?i$=v1@-LoGJbAyZ_b~eW+FQdF`l1%R}v>!D;x?
zwsFy@x3hJ>@S~&B6(Y~6jWvLpM5$gO64J;LH`bZS%kRf3{Jr%)bFFcG{jBj;t@CLS
zmCZ(h%(4NNqDj}5j>^iSC`y#;a9_g88_@I;_4XXV&Ut@#{X#_FA3N4bsV9PSZ2j5y
z3j9^eKLMmWlZX>JKg!eSHxHv!B_=C-tHz}g9^XFnf-5358w#5bLNR2@M%&gu!&xsL
z_GLYs!bc#$GO$-YG51ab<jH2a;=s7-@T>qJZ2--CN_AnHHaGfW4?kStgOkS7VykWU
z+!^IAptoh+r37L<dTJoGvCjA^XdRivfA^?S#+|EXd<I*jd_;nU+batzt5lCu#Hy?Y
zMyGL~Q#&7S*S`jbqha(#^`-hZjU&q}(vWk=n69S=x#;+(cCzX*(8AS@@XcsW<|{1C
zP~)hI=-#_)(g>RAnypXMhb+R+Jyj2r{4p90eSo5-px~Ok;+GYte{gWHR-M_Uu2XLr
zUMK$*%XRP5AAa9u0Ci%D5S>nue7(G4riY5>DSk~8q{;HGJQRzDi<_IG;^z)*cm%F*
z8VP;dkNB029pJ6SoaEMz1#A2>x%G%h{;b5AKi!%Rubnq8eyrx2#rXnT>qjbWoVu&2
zO}ED>@p-SL&#&Dd_g!8)KOaC+ex`a&#q$E6Y9s*N8>Xu26%`eimzSsRM0ui$FMimz
z&cD~X4zj;Du6p>};=_-5Ws<5xprjek=gqUam~woebbVnS1oT<$8H~j1G`#~roVvUe
zGXhutSy*crE2Mrdfo7Pyrq}bFFIpG6y7lYmD5%JIQN^_z;K)vBzWCck)4g)l6NWRU
z^99=B{;p-YoV=}kBj@aR=FHzl-Z)ll*oL`M>K|dLT;Qd6IyHH_NqIzZ!?}FqyKan^
zeQzOb*)RL)y3XMKKR^us4iSCKn~BV^?$`)p;N#~{Vg|LEjS~2^b=of0noj0Qa<92>
z8b=E@+OF~)dF&M=MJ)s!t+rh^F55cIE4%L?k+_TCm1JCc^hMy~ft+LfN(i}ZG$Fnn
zLgjiLcZYT3a~&4uKC^u=)QVB7R$}>d3B?H477XUBlj7)lBF5RgZ>eG!X<9A?l)<39
zRbWfp!}_|YQe@*mhJB{P*E4P2O3bEp-!}NSZ(bEE_GvCB41L`D0AY-&olJx`9e?}D
zvOrF?n!~anV6jUd`!PR*s*CH5w06nw8QgmScW%{Eah5u+l{ro&{rn}460t^6?9-11
zadLO(jG=KKP^gg35&1fkjexAQ_Aegs%ugx>MC<jISaWd2+WUQT(8l`u;;$;+F(QLn
zD6;Vp?YK4U<FgbM9c1PO(>-wv&*ihSgfNYjGMw!1pH0_PxfV_K;S?KO4Q>x{&W99_
zs~#;`@bc65T|2F((`3~Lq>AP4r#p?s2;Y#P!qy)-TpT0mylSVt$k;xKdNF;D(A;&7
z;v<*_m1Xcz`EV5$rH6U~f^!M&+EogY4iIX64n@?&=KOYA)gNZ+9eTrXTtkT4yl)+!
zWiL2qq&8L0Po({)6!ST>&j;_|aE@Ga0c9F{<n!fPn{LP7j^$_^JK~-Y#bapkOq5Lh
zOYnIUgqj)OUY1Mxh<oG<UTWPMExvcbu_jX^Nx9M3fT`V!meZpUW4;7ro(1hZGV=h*
zpVWcsT!;4@`7%6G6`Rb*Nd|e&{d9}(*j6DXgCAx&60FCJnUtU;jsj&Lbzy7XA&H&V
z$~oZANH!J`M0~HjC7id|LX4`K<;XZB7>EQ3xb$LNwkyT4Bb*L&*_tP5@NxOcLbSCD
zkU|@yUqA401g-#{%&zrn;~45zVG61Oa};^bhk=)yj3^;jlbWygv?<W6x8^|>=BV~}
z21TqHZpJ^euM1E$C}(G_hSih=CB=ayiqJ696qPq4JL*GpgjY1E!%y3UuJN~D9hr*C
z7RdO5gsj_YmA*H#eV!}9Lw)l;mG#VN-3NfeTabXE<%`{hdQdSp_9U4~sKaJMJYD#V
zrfVVpS(nZTwg-(gL^5?S!Fq_Fuz&{1J~CrT;a*2#YR8)l1I|htR3feHUBiYn*Y|FU
z!B;d_up(%%FM8SaAh<48wPyPej=|_M&f2@yqJYPgTxK~T1jjKkRhFgfHj;JneyU;5
z=t2}&##Fj==k_X)Jdf^rv}DA2OeeRm=?V_3K~aQX7=H#JZ=z$Jm@!<-j$7|Wf69I~
zM(PGFCA~9<4vxJnXldhea&IEWD|M8=)=8v`j&I4y0VYlkiCQ;Ijpc+Cc{k;h@ro0{
z&D6JsAwKe;pm3di(kB#W{MZufWZ)<#7ap#G8}X3EhoDiVS8-Ij2J$*;&=4I-NkxyM
z`v3{=w?nOQ5biC)>iE$1epUl?5VVT;1d3Hlp^Yj1(Kx`JFZj8y(!GEB%Rz!3EFhc>
z+-);*?)-37mr(@#CU;sB+g%bHhi6tF)hrwkW{Sp^(Pij75$;;by*gaP8ZvbPSyx8{
z^S~8<axp&51q)?t1muc$a=oERK$*V*wQM8__C<296|?5o6%S0}I~8t!uMn+?1^AC}
ze(VX@Zh~i`l3Yt#4Pn~&s+4r3PVe4%Sz$*vUDbXz)Fl+B)Qo2@0G=V6lPvawBG2U<
z7U6!-F~xE`{GoeZHEQVt8)6viUU&TL#mRIUZ5*_=9p{`AtY@x?MUKJCV7M&OjcQhy
zMaO}GbA%QYl_=PbT;)A;{1e|Tl)hgg3E~?3lFJ#=p2u+zQ@~D4<>b}0l0$IJTp}IY
z&~J=%bEVL>5$WLCK3HKq>y*dWECMj@LUVMA(8_Oz+H=3Yt>Yr$a2fk0bF14M>EyNu
zE?r_8tZ~@<0zu`ME&jtnItQloYkZ`_chXC1BcWk-$SLhj%sfSi63c?tE*oi?F&Aa6
zj2*q&t{l=o|6>t?@KxKctyauv;w}-LStZm|lx8RYBUqge*TUw(pSWNtbC3~{ju3ZK
zwGJMD_d9r4V!Z5ip3@uSU#!GI9BImCp-DA=EiXEqp<I;fiaV9~vM%&cxj(KF37YH;
z=xA;pF)V?(m5xUZ^L$EmUE``8=F^D{*7Mutth6x-X<QXrb<{iQqJ*=@678<6{f%Vj
zT#1Vw*@VM32zBxXf5ZS$oQ~g14doIUW40XmG*fno2FHbZiMRzP3Ke(I9N_*{0rHbs
zRYlxAK2|JHojk&#mbb95_&K*3=-ndVu+c+SxU#&wJU^dwGM`g~sUm;WGFJF!`|qFb
zTVE?%TSe-)?wzbn{&$OEXpKGc(yr0Nrgu2B*vugxlpE@sn$9ytzY=t5nAl66t#x=Y
z09s%iP$?M6w3s*%mJVT=@1QoF&A9I^BnAsE`%AX@JNmfc3$(6mSOEsdKU1{WaTotJ
zEL9h?{`+qAf7=cJf9zuauSz2Sk_UfzA-BTW=fhA6>Of+vI0^Fi(f$3wt^4So#tmqR
zguFje!1=%Z^7ZNIsk2k)P&w^0H#be(AWHFPd1Tlhl|}!(9QE(}?Eh2#4L@{Nf}!Dz
zP8}hyA<RKC(JgS2DnT~V3=k{wSx@<`>Zh*o?9}1f7-b-A_Jod(z6HI>h80HChX%H{
z%_4;7@K+J9ktH^RJ3BikwOt`KH8H6qrdlduL|6#0ru@Gxiu~{DSip?o3qkjt*Y&ZW
z`(FbkB_$vb$ev;Ydx60ju&LD6U>qC9Kf08i2CzUL9PR9?mf2ZZv#UPn@Vgzyx26jF
z2@#;Wa9TP4gH!MA%Gj;Bm@NDIK7wHY_6bgZ2BaEsQ^ezS)C`T(K2NNtyLFRyc?H|;
z-&xdZw0B7cyNAn7O0A`3Wo18wrZklVFJ~g~IkrdB<`))1CY6ERB-QP)ERO?npk&10
zE*0ci9PDprm7TC@d0tzFn?Mjb>=M$_tTMokr@I4RFM#3IoBH~CX|slghCKu`2@s(C
z^y^nd9MKO$Pn=}4bMZH8b>G=g<MEP6)|NVKTsKG4t_*Ppq?DAR(aYE^0j_)?5J;!V
zwqg8(ri+UfSq&@=Ge)!$v_F2**(N>;TC8nDO8faEU`b?KipBXZgB{6BHOFU+zY|~l
zl>>5c^xE3m(Q*@B-44t3tle5x0+L_-%|Ny+YIkmBm?`x7dg3!8j>-5Rf9OGzG14dI
zUkg9Z?hiUojnvroQO<sO{@)L2P#30=mo<F-kKw6D%(bF@`OiuinT@E*KhkV}dW5Q;
zK|`?oJE$9817otP{;$_XT*f=8g(X5yr_)O)CmbbgH3qWcG04p6OJ4z@aw=7{boTF)
ztRnwRi?q+<y8y6-ZBI%MQwM+<m9Z}H!4+Cj7v`O}CQ^T1`gj|Y)EX}Tw|!IRX}@Ed
zjnRQ_3x^7kc|#SQ9lTWUb5H-wJ~S9dW4!$CAKv#&SSx|}VD8IfCbDs7XJNzoaW?AZ
zNfyN_l!27N^p%yYHW+HgFu_*>!?kvg`>P|uj~{8Pm8^X{7iav9RMUvQ0#sg9(jaGS
zym`1-*JQV@XOPt!r`pthKJgnqxAM3LOQ|QHH^=-P>>k0%!hXJgX7R6xWV|<f3n7oQ
zpBQ*X(zv4=KK|paKcHK2O3bX-K5lNR`}<P-s1;@0uy*r0Z5zn^qhS+E8ynqP6PZp}
z36GkZlB1)<y^~m5TYDFa5pA>5vHEPqa)-rct-Y;iQ@XWwI7|%8?qsxzx5nR*N7LZ}
z9B)MMVR5@K#-dFqQ?#RC7DZ$Wy68e>k?`|8In;Z^;ZYun0Kl3;<uo{mb-B|CtLy}b
z)#yXXbI^xMsONg;b?wU`RQCBZu%d^&<6wXF2ei`4hpNfuZ=u=hHf%xZ@TitStpu)1
z1aUhoBW%ql7L)FjZ|xsZ?2+gwa(EI)hcFP)Zxev3vhFTrH!Cnp)p@Z=fI&lJqtNAy
zTF|_Oh;~lp7YtOeFT?-p>^-32{<gkxi6jz&G!X<TdM`mnO-P97WsK+v(V3{DkBAbY
z*C2Wbql_*FqeVoWC}S8IB6{z}X!HO2-Fu(=ThD!;XZ_#TS}g0#_|882?0wGOpZ(cK
z3Ojz`LXhqYk$f{ah?7y{%OjJZmu(M*knrQ>va+%^>BtI$!r~=rCkmxRlhHHp)kJ=s
zbyyxL1$K(Q`u4UEn$)}RPuDU~clc5HgN16lAv3S3^UW#RZOejCZ?&o2ihpb|^>HZa
z?Ot(U<<M^Pnv130+j9d}A%Fd4PFD~L6+*+<pDEWMMDZ?>syJM67BoC|oD)Ny6*QlG
z&uhUWw1bm^v*<k<lO_Jy+lH@W*p3#jf6Tqi%)%09P{?0c=DNA1&=fGAi4*d}EE-aV
z{!wg(Z8lU~NE9p;A`efhJ30k)+Ce**15rU0>;oq|KK}cArSOxHj%|^PiQWAKWKRek
z%yU{%<cXbx&D;)@Oql1ck+i&W%iEUt?zwVx%t=>Dfkx^MV^;l<wha+}vPJq6lOePH
z(Xv3y^fseUdkA`iY^D=R)0gUTSu&Uke(((;JV6@i=rrA)l;?@zTQqFEs14B$c{<%=
zN|4itx{lt<U{Cg0SvU1tqnhx&Dfuk~5IUtlm;36gYqJCupFNoSpQnJhn=SdRJgLj*
zof=}}^f1fGpBOc{#=1I2mOqM0E_W$5PbJ!zTBB9)+rjh8zu{FPS|mO*bLn9Ca8nTR
z%;@;|I8~i1EC?vEa3zfT_{9pRaI1gJhEJlrPJX@UJX(i;h0U+w)L5~Z)IW&D`Sg})
zz`^6EfW_gsuU(o~gc01xBPp;HQPF!@@N4hCUnji^`EYIPws)M>K~Db~vC&O6e~`$^
z@ZI5sL7ag6o8JH{g0HBo#9iOk7<MR!TvagCHBmCnDf>jz<u;@E`l7%v!&0|*+_{mc
zIyi*9B)&wgY-l<lelcmj^uxUW;fR9G8=l{aA`vD&n+@~5X(!QjS;4#(GmlMM-y}uf
zI`ii4Ez?*75u=}Nrw8-ta$-W^hfM3BGbR_6Q;gAQo#<dzz~-jIpcC6I9`IxE3dPqe
zkvC;v%>jfIbZARZMEj@5h3Y~n(qDv8o|JAEI^~}BGYO1`yy|5tp^ZotH{_TDnWJW%
zkC!K&{rJ>sB-8`c3clB(DhD?K2??7qM5lm)W4Uz`-4ylgGHpmcD)#v|<CB-uTI6jz
zhJ@?POFEFkV%<0z)dDpO2EC!v$w%lzdYOVFTu5Ka$lkodp>DD}RoqfXzirr?X8auA
z(<IF+N<SBJ$Fd(WI$nJ3I}pk)@3TlX(f2^9@FHN|w<giM+nixl@WU|=^8<YTx&mbO
z9<=T4UDTBe!CQ?BsOA&IXDlswI^h|A;SDgZt^Q?u=xk4l!bS_Fb59M<tXL2Tw=0kb
z*+~3qMJHPoeFrx>;Mj+CaAHD!i&$fiMevt>&Hb$8{?2n9wc@hqSLf%S*WE$hT#TU|
zVwsH~=J)q&&i11`mcIuJC%G(bE~&wew~t+O$R}hIv0uWR-%`F;2!rgva>AVY(LX|f
z-hTkg=t;dwdj5z(syi>fpQjmY&q)%D6!m!huI1MdTB>F86+54VL5a^#r=_@`l+(2f
z;r32Wgs(1^MU{@~8-Twb!pZGT5w`8P8SN@G#|V&bGX_i#rpzdwu1@{WFA5c(z5>#8
zMqmg>zcHEnoyH30a)ZzF1G|HOt!o_GZ0b4EEap|zp~B#!S*qh9_f9QED2cnCd8$Ao
zeFs@93v7ldW<Evo%kR+kQvS*FQR$y-={Fp%z3PhRoW^bktp9;!HF`~yD_6(+*~vaV
z;~l+*PuiKrrYN_BY~;JFt1+VI9~5mbd5Z@2@*nf5#6PGI6u0jE!E1$)KXing4ULEa
zK!ysuER_eCfkz>c|Jw8xUx&c4jN6=gbF?iJR|XmggX=SL)7!>EX<2rr-cqq?7uZwP
z7cBZa4IuHhi@~2pzo7#LD^5Y6{$ff&4JTY!a`H_ut9t1ASd~ha$2~^5*>7l~;g`Tq
z6G9laKx{E2%=xF*WA4Gbp2r9Fv{lmI<PFD>Xg*dl4=e<L@{oI=`A=@{+0NhCB!Mex
z82ES20k}>y;=+x7<vY0yi)upC0O!MxH}Q-0{J<8cuh0s&PNVSH+r1lw69SkbS94}2
z#<rC2b;4k+grt{c_qLVc-At>m<z9>m%U7p2Dn{FruJJ9-@O7U(w)&ou#Uo5@dk1bq
z{+#@}U!0RFuYr_lS(d9VmDRk}&0o_YJG8{%St6v&vfAw*4!T+NJvIO4`QDLkBe?_w
zU+R?++*t|kZOYf5{mTVi1y+&j0E4TvEq2@+ivVvaIQS&-e<Z)41?LQz22P&OCJ1nK
z-*rzsY6*y_UAEV90O96spN<@v$t;Y_ym_wYYg9hej2EIA)iID6Xx`HIFE<yoKkQn<
zJ2v=B#MDu#lkuy|q=CC2VXxcbV(3J1m~v0br){32q$xF&J|SZ~NO($ZfAHC>0v-X_
zku7v<SXf?>@LsHjF79{jr=+~48_DnZPIl@y3;|mpSAPOaJfeEeQh(<Ch*hywUPFj%
zr-?p7$9xvE1vd?MyUg<aOJWVd`6nO4$upH<@N4F&zA!73;tgJ&{irOGEM^BSrb}}2
zHJW(FmF`&Q?%2@yTs|jiE<^g8r@<f3lC!ay@MXGkewTqE&!1B_-{j$-<Fo7m&>*EL
z3>(FGALzx~c@0K4&p_6Ey?tj!#KJ;bNkXnf3m=o`N@3(D)=9Mf9oY9=;rg(%=4~k(
z`8tc*{EbTe)}?0!Um9E&nXfKM>8t7R(;9C;p)P22>L+?=cbjH>1#r9sZ%g+&+n&PR
ztEt=zk{QJUv_Ic^#(6r;VJ(e3A(oimkrZ-A2RPc-Z%Q}YYM+GD9gAx@+1Yi~%T+f!
zCC)p6B1|4<+A!$BIJ=?gj}ogq<lLoAorV?MzYe<Jze44)wt!u_AxUv>GOC^DAigJ~
zVnHns(0tze8=;ktm~<LtXwy`3%4}XYB}N6uZNEMHg3BDWT01^cYCMnHF0s=KTh>hq
z0$<B*2pNo%3GtE5co)KUuA$XMyAZsXR^=*Ce5-ybyVkH&Gz-J<=1IzjyP#{XyyLcu
z%fl!N|Ky+%Rfb0y4TjqdHD&XkXqQzuIj<oG@FM5a-SuWh+fQXPAm6_Q&JnKv)ta)w
z>36By_Fk!ejA4KL8jbmW&?gn<9|tQJz`k2l>2<a=N`_DWR8aWW-pFlu+R?N(wje4r
z-xhPmV|GrVK^f{)K{p*gcjx1mfMw&!%3+h5-n5cZxX8`Rl<t*yW;MY;yv^!#XvxwQ
zH4c524Hvod$&P3PpAWV<t0xyPH|G{T=}i}GGg6U=D`fU7dbAc<COo_1^p{jc-To_s
zYQi4dmtLuKt}?heR_~X;)E(io0~MD@Wt3)B4_w%0Xc1~(pQ<@Kd^F;-xwSgy8_oKv
zEZ?CpB%}u6Uh2tm-R2$3QRf6%+e%vUz80ntyl-;H7;r$2TEY5)DgcSb=R4ZeiM%{+
zMP0*P{cSD!!_-yNV?f?{FSvj02*b)5mJA)UctqB9!audOvMux;LEHyR93s1!&Y1JX
z%H;h~lPv5w2zPhN85r5Wh7J}6i;LxfPcrmbt5dnnH*?f0;++9UpOchi(KqfTI&wL_
zP2}uY5p(p+5ypRBC&accIN!y%B>W=S5?!)lHV@aE6?Q%*X~1AGw3LJ7g9pQHdQ)28
z*^tDKK+tnabWHU1^`&W?g)J;jtL61iwTEpV51%p~Ap-N;m^A7q(-SE-cwEsBi*<E!
z9|<55^P)Y<n)dLi;x^HX4A-|hA|k9@e0^os4=w<q$E&gOm+b(uv3OqSGSuaCq}2`z
zHLtM;J2)%@8|(8WTIAyerr_=wF}ZglJUf>ap8_C9sIb957^d1$|4QYtVSR~n{&a!D
zXVB;V0cr$3Z!7c!Via)%>xB@VRqd;{uypN={CpCKCQpc!*YCGfjsww#<=4stS$)Ty
z>c(g?Pa&089T808)}t(!I3CqGjtye5`B4W;d$@k-C+52ex(%D(S)8ug_}Zmp{E)==
zG?#==D9HNIp1KyG{BuuV^=CU)Ld*{8YwfXov(sZXS*5ZyQE2-8REPEPigrR<l}_jK
z%F3{^Z%rV2BH(a!K+scl9~`xJneW}~6>*#X9rG9VLO^Zcme19AKj&3^jjOybWuUK9
zNF(>opNncLzTJ#T(SE~bN(E8U+Q!wU&G>P{JRHSeD?g>C&6h6eRM}f2#Ram_Rvz!E
z&$phDO+MU1`U*#h5e!UmkYg)oaqps6a;4{pvZ|0%jB_gzfP+a>y%T9g^tvNkYQ-~S
zEJDXp+9;x4rdvM<?|jxovkFMu$r&3$tTax02i(4}xg?00ovIyN?$Ut6okzccssC2f
zz5v93J)aUr57`BkW^dV0J!CI0;N3pAYAv5fAHs@}e+B}vZ`b{XC<Bx2rqR$d2O!&#
zIbP`d^BO60PW|+`o!yujIakK6H>?bZJ4VtuQrK~2U(0GWkPqzuV<aVD+NVlRoOyZx
z!(__ktR@rCbIx{li?R_iKPN#;UR;eO13f;(T;q-6Gy_OMQAqWX)0sUZ=r#jf3Wr{b
zT}w7T4OZqvbL!4~Tu<{2k?gMU!$h04e+;;99ff1w<ZMaFW-hnpaB$;Wp#-3dQWY2T
z<BYs$?q2pCq^ycf+?SAAK>l3oW363Tf5S?v@S(#Ib^EeK&mW9uYTh++ND~J0E#u7(
z9mgs=j9$%Z)yDklH+rG;@8!ABt*58SBITS|avDG6%4gq(3$%~|o5IJugYxfa{h0T1
zHbm(`2L$)Q8g-^!9y3ys*%%{U%hnxgQ1D5Vw?7sXH;u2*p_jY_AJ=iu1&~amyh6Vo
zlNUDC^aBnQewR*<Ax@rlZ^zK=*AD#wbwDV?PjvD_k>aD^y2{Jk-a+0e>Clfun<YJ%
z+J#451wWGwMJQ;RUp4Uqu2MC@aG849^zl=Rref{lq-Hj%%c2GwH*HRn1p9M;U7x9~
zx+DUS+FNeT0u{80uP*mJ3ngtEPJyrgL{t8gSN!+l-rwK<pX2|@3lB6baX!~CDk2h?
z(@C4EZmr)BpsHb;Zy%k@OHTqav?Bcofoy?dYL6u9JHjt{cJ}sOox5|Tb>W^z$kpsy
z|G+{2{+a(k9shS3Z}CTdGx{5(ySBEb^J2s2&$sYf@DjKEjVT>jnYXsTe&TRaM#50r
zzwlhEGq1<80lv*&nbm(+%>SQ>{zJ%rDL^7%)H9p?J_Xx(ud9)i(muKX1+0y(uvo`>
zOmMXmJ{#hjB^Sw?eec)qlQ7vOfL{8Nny10t(fF`YacGVpXGr<{Y3n=;jdJQ!LcXE~
z_-i+V5qC0Sem&jm>))BRuNq9$%>!&6fUV1jRpE(AXCtJP?)TZ7kd9CPR&cm>WsTGe
z8gj;0n~Sl&%Pv!XuWhOw?FGOt>nO*5fa`Fg<@!8rHs{t1cfiF4;#fO?;z{}2&V|iF
zwA}Z7@73Pn-paByG4k#oPMX(DP$p8w$zM;oGb2kafQI}!T)BHbOM+1yatB3BZ4Vez
zxyY9!t**^M<LvdA&)(H?@E*k2Qn%G%wtoAjdQsM-0eoFNO#ek9xzu|>!U=aWxql3T
zWK4t-?m$`E3;eU1gvU`=f~ze1-~h(<w9MnA?ItKbq#2mi7oX2T8J-Qq2=7taiQ6e=
ziBO(%T_HE#=<D*So4R&$)F*_yIwjhhZ~rVdK6`bqM@zUei$aJrLdRb!A7GSzr1E+U
zz>=T`ztuzTJY{iXJ8sxQ%gxD}d#$^#h7uxzYm5K94lqJ<+U4gukM*tcG1qJ!h4i&H
z3pRVr{@`4$Blkn<7MH*C&#4C2NN|cW-`Fa=Kc=WNG3df^yl0GOXk&xVzTf6yNIku>
zp<9!bj)<rB#M9<IzDNrH6F-x9q$1G*l}mNndT`8<e=_7mn4he7A|0&aw-OZ0EX=|N
zS~gSN3jC*u^UoAn$w`beimqQ?SF!YkWR8-QbGWdaI%O75b3#$fY^m(-BhTug4bBxu
z>s7?n)Q5NPMj^A9m;Vr(f7W|LV*cRTA;Q{6@i9iCmtt{wnyEXkDsW><Mfp4m?sfc*
zD{-bJ??(U5x&#aCwekHj<J-e`8a8>}U#k|i8fTG&`wRr}(wciMfRlpuhI+%hcC|bK
zJo`q<8cM)8NRuw@sVMVp+Q(yx8f52&wI_Bv>F>BGY2>fz0!Nuc2)+r@I~3-azR;B*
z!n}modIsrg0!&XU;`u~Dw&!Pss+HuuW^&9i?C9tb-}UjM)Ta?95w9KCe0BjFPTe^B
zBg{T*jQ8r}`Rtt`Eo7IZ;L+?m<OFG(63~|5)tKYOh5{r0rYJo#@3jY!7w#HliucVu
zvTE=sGux<5y?&#h>|m`Qb8Ne=py2V0LBUDi1n>E%!hziFR`5#n&FCltOK|qtwX~{&
zVa`8*iEe%%pQO<m?c-uFL>h_fX25+HBCaKvPvRQUww4s&xr~Nv5((l<-tldigug0w
z64hE=P@UY#Nj1EDVYaMi&T))jnUF<<*)%u?z;t>5g{~^ZOS?I5i}t;U!8bP8093Qu
zxuC@bkN3H4S`u<yyy<MBrA3<gzhSkv8>ixMoQ=|lgL9JjoKn%&Y^IGkz@`a}c3Dw|
zS)htF)=mj5_w?yX@Rr`;q5Y~zJI~9YT*LT*x}K@D%bjZ*FuRm~`|8%f@AT#i!_8IX
zIh<bla^~3hHkBIJ3kAB4yEj^_eUDSF8*^r^`J%T;IG>u$L(J>>#g&Bx+$4N$Az(qu
zG~V2e3ztqM#>S*rXrdp!-);^QG9%_5J(<}0p$0v&vQ%RHwV`M#Hi1TJA=G4q(+ST^
z&Q4F*&;!MdCpBMb(6xd|-a}fziUyt>XCR#&%Cy{xUofeYe(P0X9J7}m7ZyLi`PO-G
z<f!)GdQ9p@ag*HG?m=2StBNiz1J+wllLncnQ)yk^0cp^m6u1pkht8WX8>0h!1#Vr-
zS-MZjdWU&<MxW~^Mg~3mwQJWEF$o|4428<`kn0!UiL(<%{M+v%g+Jjpd|(KLj8vH-
zGi>KOIp3MLz`ml)dF@6Jz~hP$oVtsA=;l0BkkX))HC~-}e{3w}q=6n|@AT|wta)|J
z!}fPuN2&Q?$J;t}XsmRdos@GlpY=EI<bM0au%mILOpKi>+oD#_OZ~#8^=~7>3R?%q
z!tN)n@v7tllP`M%Na`0^P0*P1j0h$jh|+94bX8m5$gOopO*7M~sUPU=*i<2tHEDF=
zU)?Lw@+U<hdL#1WJVt4)w26(K?(0X_^rs?ue_n|<xHieIQ0fG1mqH-#-17~vBf`kK
zBd8EVKItN5kxtk;kbriM%{J%)PkCL}7q;4cvp^g<&8v^drYU``@io1b>Eo7T6=Ka%
zYR+$C$h&V-J;L|l0Fkhc5p%Sl(6klRDI<?^-y*;t;$&ARZ0Pu{GT`&I7B^(uZSCWV
z(G5e^iYBhzPaJ;eJ9^_Lp{q<k40DpPW)QY7imRDl=mj%JHh_ASW1ZuS_n$xp_{EaP
zFMokuUMXN6%&pkR)(5;wGQJg5mA?&<evx=4B0}c?KV~x#4|?|SY|ME*X1WW@@1I+~
z(5V47s?Xq+g=JnRolrv&)&R`ZnGeqny6D2si&KkEXMbA<ZU_G$getse=K+I#(FL(h
zU%Jlq;K74P>_>*3%ZOSVweU=l(kb8??Fko?A*A^_&F*D1F*sSJ&I6NSGKr5ZufctP
zjj=$RWIlBHb471$b#--lxrey?a|p?H1hzRfC%_?Qtr?qN|M_l1N0NJokdTz($b{Fx
z##XpiE&U%^qHH!crW&C$j{hq3TFPB{IvqbLJ}P~e)H|_q3r+sz@>ynqX;_|oYz`~_
zag;YSj^2FIX<Q)nV5I44N|5J}oh9nA>08CASNpk7-Wuxjs<4{s=MsQ((}7iC^J6H`
z{Hm2II`szXvwVWiuVS8ry(;z`9S3F8$E>d`E^2XKckxbp-lC>o809k0^uR!$;{#BR
z)`4_Xdc!dEaR2>-FmtW%(>Xe;p?=l!spUGW@UPWQjnVchrr`3x-dc>p!NGlDk1Y8w
zi%IW}scoP>Z<hYp05{Nvj}FG}Zyj0}DuPDdF)!JF{4<CTGjniwp83FE@qrMpp~qgn
zlYYZz(thDeP8lCV5YTx;YF}@R@BXF<@@%V(M&qRQ2*-=4Cnn8wpT%9-{7<kGnXub9
z_w6w2sH(d{?WJW4OaeDSBNP4l_t@Zzs1Be}<WbIZm*=xt0S8EEpZs9+NmWO)QT>AW
zy!zn)jj8&r;Ky-c0zKV3Yr>7N1K_%keJ%FB=tz?GZ?#U1vXqH~U*4UvKC7Dw4SQZi
zWlmHFx0<Lx(}VD}ho{A-ZMbL9pFx1e$@4&hqsnD5!N!^!3q9G%oh&hO6qa<6lc%^D
zG{YcA2@vKN6+syAmzt*C(Mx^1;p$xXLHVrCr?CMScs1ZaSE~3Zg?b5LSj)Q5>^&rJ
zOc>B7=Z&K#y-l_!{k=w-FH|j*Qpy;n@U)IE=G+1f9Zf7<=@+PdISLyy-f*%>Kex0k
z3}YR0DW8nc>Jm14K@ZYd+;6g>pY#~J{Xy+8`m*14*NVvAa=*-+L-WI*_*juTU^lC(
zT;4d}GkEr^V&BMM6^Yh(Z%4Lb`$wu<dVuThSzie+u`3t(F{xZw=MT|mfz!3*l9{Lr
z&~*}FkWw;P_I^Y^%an?wH38ZMPPoF#ufIbX*Zud(UwxwPfnE^KZn4!4>>JAuM}5Xw
zwgw}KzbZ7?Pv%29&CrgOM|>IK$L-Us{OjWhtS_&Z3~CNs)R_VCksKxVw%32{70We!
zD3EyO=nq`kB=0r&E%WW^KI6m*^Ht%yNjVAJnXM|@1^gr&s@JAIYMm$07_Aw~8)q>j
zI+j}Uik#<9FgZP3bv4J%bkH~PF#zt5Aro6u!+eLha&EK<J$!to%o~V?sNXngbajp0
z#5qS^2$5Y%RoY63&aC#E1LB-GScZ7>SOILTm-YNtfV%tx{ev{%za=C~om-g3JsC@_
zaKbOlbNd)c-|IL@{2qAsd?9}&RM>7GIFlNd8e|CSqLCM%`Wv3R&r*84lL>=mm`U<}
zqv20x1l-)O34$=~_;iC5#9|g(7Eh=5qs_LkxO-^iqv7E?vZz{*;mx+qP1SX(=uxLN
zueo0ZzQ~U@(43U-uc#kfUenP~C51QUm-21`VJ8YWl>j3DjO_Ea<)x|uM<7m<02N-r
zI^UvI{GoLtMStZq$a4hja`ubWWR-){<(S6d-OTfSr|#jR>O)B8eI+FK5D1saa|x_t
z;2rsgZsQ)@0UMvg<F)5xiSoW)V=KxGZmxX1<r4Hwd#)<v$}x>wrCx>_)rK>EIgq$#
z_#WZe?6H(Es>d2;`y1FXn3?Bo)hb=~8_IFZ@d@0j;`NuVY-OcOtyXceJLTvs+m5g!
zTi?pM*j2DQ?X===m5_$4FB+K)-kcnxSVK8#+M2$q?>5zP=Mj2631^O^N>Zut6kW0(
zy~F?o4%u2DkdAmkZF8a(VIC~PQ@OSPPs&aE_3<<X0j379oX?;4qrYQbtz&|+8wvnL
zBH-wEI+O1n$88%bR8mV6|9(976DPu<qTkX@r+)HNpyUk0Q~`be5ios8O(us&OeL}~
zBV)@~+iRKW@(->%JW}OZ@jI%Pq^^m0G>(lOJz9Kv>kJ?NnD<-8%OSPjXKI%<ztL&4
z4Xi2h(Bn@_?f`@M^yl9>H2=b#{yqN4bapC&;;<36Zsw2P!#nK0eAvG`Y8fMFj`nL0
zrTyq{QVA3)W}&{m4gRJz_DN{Ip;O3#V*arywpwp#5=hlCA4Mr0TC~3cNbC&)$H-{`
zq~r{MuE-V^8xh-{elQGU4gE%W1}J0<<foWLNKlxc{q)82x5mTzChf0L06B9MsQlR2
z%meg*vc|3Fc5wgXBO{c1Q2?Rxbq_#E`wE~^M2VX_;?fGqCVFWH*{lX7hL3#>qsn3H
z6T8bewLJbIwJlCiWONdhk$A)2izXk5zi=0A&i?Ciw`EjvR+lt>&<Kv~`>3&`2%8Jp
z3~ISPtWP}VU`(91YdFv4UqhJbl>YYJ(T?27=Bu7*kGA!X)~4ZEHa0Q>YEOFc!Y@7)
z)h-+QCn=|p4SC=H1?fbhwr@PVtqt*x)3k>|iBwf;pB?ffo^-9wD9^n#nBSH-9Hbc9
zKfnzR^dHz~BIsAojMm@OF6cRPB>K7IP}jksc-5MPc;OU>LZ8c9mJOk&V)wZ)`E3c%
zXz4-o3c)GTY&L`ax9D_7`c>;1yTQQl?7`$))nGnmNHtcPdhq)I9io`C*l_8JgzjZg
zqv~%?Ch-<gSKhuh6?V<#s<~v)a5a_S1Fkf#%J|VkrLtUWWW>!w(%#U8^Jv`mq%2Lo
ztMrJus96?HTI&)Q&Sb)fKyjQ7JH6ih^_Wc%@z*?TZF?{EcGqlSS?JMzr-J6HswQ;W
z>Y4wu!gbAYqQiOe+YdG@<1MdI^l{j^X?C&~-=p17gY~(i<w5tQc+_X1ia$v<Yh7_=
z)=AwdD6gG`fpaC&ouBZ@Zv`Da(!Z!Z-@st3j`m8zD%FYKD(%}3-qFi{?9LX-5vnNQ
z$2cB7NwSf)xp0W(TrJ}F;5C=eQh=l7g?G+|=(pY$nxUxhAsB-k3(GTC%>?66!KiO(
zWwI#>r0+TF_7{l1+_da530m^reG<6gu~}~4r9kN8r?c;;76$T2FTx`IsXjOcmuI5%
zac@UPASv1@h7C#cV#IKk&H}wJnn2+22E@h9{iUFwfPNCN!c*wb6iHv@G+Sz1XJ*|6
zMU&=?p-mFwbt&fZ{LZgly{bh5T>T4FR4K>+`}ZRW4{q2AB_oqQ<_Q`hBDxWT6u~Yo
z&14VjD-;&Is(@P#GEfA%pQpG3T$gzI{p=q@e;+;_`seWJJOB0W)1k|k9RpbAHmzek
z`er|V{8)bN=aq^|K-|)Eb4ru{e(?YDgh4F6+6I%EAp^^l_eTX}eEfKejjcb{Pu_2T
z<K*}-<&7Dy-}*!ouOC1IJE&v&x}6*839v|+Xh7auR#D<)QbA!Pe5&m{*c0?Q(`uJZ
z#<PT0wWce!WDjrHBig{^VC}RJA0cNc@xg7rAIzCm8r{b;J>P8U_Ad095{GFYWZa1K
zb3zsNyXEbDm1uz}lm6XL4_#haSy_EwsC62z6_+E$LT!4LE(JBf*83kCC14Fg5OY@7
z>%PAN)#_X8OSskUWKk!lT94S-*f@q(dI5y3zK1fNE9Fy<l-xnI1C9e4z~|69PNL<~
z>vPpB)y4<MJYG{7BxR$%@<~7@b@Q{9KG>^VE+rRnl_-T#?-woC2&?OG`||z9e0@eQ
zx1)_P-7Tz96jO~TrHotqrDs76r7=)gMi$@nJs40=O1_5Yu-~42#$47t1PRe)ue@}C
z(4MqkH;8}m!5>_BoVMxkZbZj26k{3^{~Ow{T5I&#IW?7UHz)aJ^g*m;_YvO5xL8>O
zsR+(;_;j8%@GKOrG)%DZfH4iR<Q{<_ow^ziRh0Avv5tZ*TM|$FHD;w9-j8UZp6B<@
zAtSLVc~zz=Dk|dTK1oJVMg8ym`dfl?92eCyvq*eO*Os>HeGs{H_YvFz&1-8#V)KRw
z0d?vw%;x5%|KVP~P{F8rlAXgE7MCPyjB^k)>=U{_9QT+HRvb+jwEz9<L#r&9CLSL@
zl2f_?LTDf3A*y0db=0r#TZ`v=V)aR%1}^wCA((73!G+YIiG(e25#wh2e#hOrN(hg#
zt71dFF427Y@bh$!UP?$kNebH%hc~a%d)9{XAd-H>*0bc=-=4EQlbm;ViC?g%v7b4&
zZ@EC(S|v#^u{3_^<CDQ-M39^ELUC)&TRj#$lBtSM#a?NZS<ix1U4OS5<1M5$_i-t{
zOL&K)xh`Z;$dKkFRSjGupvuC{IsB)Fw3jr(SHWeciqMY!r29b^eqgW|2`>DeYNm<;
z^B9ZdgIBvTA!bgoZN<HQ&YgaxOlf)Yj;lp+%cGXHs)&unsE6fv=G=o1nm~uzw6(+g
zrLCkDb9?SeYL?u^{L(L>3lY2e_p55GFCP-nBa3m3yR9Q1dAVI=+N<6<a^Jo`jy4uI
z3QiL=ii(adFvzby>J9cN)WKQS3?NXr4e9ugXfN=*k(Qmgol!1lbrbh^lkij1O6py3
zyfZ^Lvgk74D9zN^&DYPJ1?{3Y?DJrZ>+!oe_;0nBhqzPG&jd=>`h*DmZ9R}qYZ|$z
zc;!mXTlGCJ`y`%VZ}wH)?T&rG>`@Nu3bl={wIwm<jy+E(Gf0UL8w(z44?s)5`TZy(
zcZ~*zRZE?^q*N4=TFab)+K}DlJ-@ct6?TMY?9~fD6iO@F6LRZPkGTzs&jRxngL+I3
z=FB*IJ+HsISya|zr*g?H@q4`0&YoK)*w%-0(IDsZ{N=7>gwLQ)$9$n8B_s4*srUe|
zc*yY7N~Bv>gS<W(bJ0lwLEV(GgimxNt|%;RO^rD>r!{+uKgmdZp^fwKgr+w3o0z+%
z)PCLh4p=+E-@twQ=T2y$P%t9Vvn#X^AB=WtDxn>?onK0yu9+bXR1nHIc^zC`UG43=
z*}s1uhDmx}o$%Z4tDErY0b;O!Y{fWp{=^IwPc<hSgD;U)$nF6ChH8B3EbibFL3b~O
zNkIwGey7>G8C>^#*i7W`Gis}VtCwx(TljU4KHJ%x$gI4|&wGgmjN-$y4@(>F`Bq*o
z8F$_SCyQhikD_dAq(>{~9qOp_Ths?l8;^v=0vOEZX_sbnSar(?2G5MY#aBO_$7B&7
z=mgHjKOB^!Nx-Zkx~<|+FFEZB$~d2iFtf8Gdr}?n)15Ik7N)hIe(PSc{+@nU%vJf>
zWyI}du|wzgc49_yH_C+qZ0`!c<-HGE?<!39+7fsBg!W28A+)4Is(oD?-ESFcL24*V
zB*PyPhNK8GmP?UlrU#$_w-TG*f6h0r^8J32yk}B9CKO#1XFRWAdMNv|{%(PcwW6^{
z5;i|8)lN`7Bf_3&Rc-Rne-km9+^hR6O19G@xIAZ};jEz$mPJ29Za2GOBvqeLkE@fT
zNS_a12Q@dP!!`*Nuw74(9rhR5;#5+v)SRRh9TGR-Y&Obl52LSh@W;zBIhnZ$umQ(g
zW9brK;a+!KT;>5^Jwixb)39iq>zeJ7{p?!P8kV;P2;)3KM~+fT?i$T^3x-3MR{PUY
zBM%jfdzU5>bch*%FO4WQ*_g;$C@*g#_Ix58O%Win>fqYv^J7&uTBcUgm`maT1k<nC
zoVS;YD1V}?Ub>Kns&RH_AniFb(hUgztKdSmZ&~*bLkz+ZzBHwjyVWgg_xEoS6-qOc
znAk6Fc^V-hH5i_B-<;Ln+2NTd`HqvI6UF5NBCtBh-Q%(E^@t{+;o|77m9xpa>rzqb
z1WTP}A=JdkrL{HMo5e%ArdTu`vH`(uKWuD!^T4(e)$V<AIPiADZJZGmyxU)J+oY_S
z+pkb@yW|?-c==wN3!x&3qK<Cwy};zu<MYudxi`^1A3cSq4ecDB`AQ!6ot^y?J!wR%
z%7I7wAIi=@t)d$O%asWDmZ0Dd8FI~5Aq@G_5e4+AY-Qr!3`w_!o9;_<*42q&SqGTn
zKPA$Gt-q`4VVf-Lh3-4~uH679xHHP+V_Wu8Vy}!?<CE*xewNJ_j99*rqjd#?bJhx0
z3~~@UNxzHnmv>NX%a=7h9$CBLI)psv;d90@WkpozFVr<o8KQatazXWWtf_*>7@d$M
z1qqQMFh-!xo2|n%no_R#rK%yFN1sVX3+uv;yn#uXa<+8svRjSXZg<+=w<u|d9{pUQ
ziueeGK+s#YJ&1p?yy2`8j!hZC*ZD*ln~tYgBjj#dDLLhNcoD$95tg+M4Q^kZA!RbJ
z?Zc$}pP8?AZ2&7j$vWVX@vQ}ern5Vc$+Y((=D&4Py&xoi*dX+(u+B~smtl9DG0cij
zt<^Lt-5>kp@u@7iks7<Y>7nE+w`rS=>zvTMqY1xiSbSmC)RZt$gHT-UD<Vh<0J|{w
zJ(6WT-_6i%Nid(pUj`AIcMB-ES~y>h^BrC4S|mXJ^zYj@+ovH)dpMY?4$qNChN~fT
zz59M-^j>MhVfsm}$)ddmA`B0fTX3F3iB;#i6P@SRV#|D<TJ+#O{B3uodcEp2eLMA%
z#;6^o_+Sn%`8gQMkcT<QUUce+SRG^g;#VUjaG}|A1zB0yae|pYl*947=Oh*jn=v9e
zM$?hU5ZX0})o=<)=@O6!jZIpRv>OEaqv(Engr1$#0bBY6U>Z>3axLX<?zm6Y%ep9g
z4Gq@FzFHCSS|~Pcw)h}>-M)_~t*>6DwC5&A$vD|&j7chbBIf@L5?Vcf1LLLQZr+QU
zVY$?hRKq4R1e?@Y&C#>ob?uWJ8d(Rc@HtPsxDGBn$XzlcI%_T&<d7OKmW(^r93C}*
z3w^Jj+y)n>)$cu_U|}68ycs&!ILw=fqOV3_`Jpuh)>n~xYI+G`<I87IP7sfzz5#U2
zi1k|7yAsIqDyrDW{tYp^+3AF1S^vHCv|hURK`a-jscpZd<Ae3Jy~F34n$W}2wSAIg
zbN{B#a2T6Up^y7`^=?&}CsY`;o^Dr%vavuf$;-wvAQk<M8<EuD&(2S4d<n+$uYIqM
zwsb6)%^Chci1U^kH5v7z_M!9r8KrvmwS4-FO2h4U59z>fu}DIVcAwfYX&zJGZ|9Eu
zU7|qtQL*Pl;CHR6Q8O0Kt4->==VE=@-7}O+>OeJf#pCGR-3sg>?PREo6(osvGqZIO
zrf$+Ncca(Vzu88c!N{3qDg1H?-oSRZ?rGH`K<m;l+^n_rmybI`AsM~YjnH&=uuK}g
z;twea&r@E{hcy;5yn1bX*XgPn7B;K#kb*)@6(CB-0@?g$;Qu@>0{yGN_oIIfEz~7q
z?9JoD&Q!W2oG?HN6<J0Ac4M`o?FU0Crvcr9Q|9NWhyWh5Ye;V!^7CfJoHz<x&SB>3
zzeT0s*WqI^FwCyct<Sa?kri&hemKl1PfG3FYQ<Yz&4h2}PsJ#dlUwr)&Zh`7@M3wB
zx)ByRXwiT<rRGiHtsz8gnZd+;^V^4$3j4*)0jr(&n@NR%9rvPdsH`2Y78MmKc+X+h
z;ro~PgL^hNQoifP>1OB_ofEjpT)GCI@sgkU63A&<TE0S;1=?Pfah~)(L{1#MOM!D(
zRNMjX29iI_UoP_|PS!6%3I6k|llyb<{)qwmmjk|?$m6N3f_wSW`MR7Ipq_SF&JW!B
zgiVL$cnm2OGg$9l6F<P$(5^)PYj+KH(uRf5M){MrFBua3_S8l$Z$}!0PhUrBMf=aX
zy?ghL{fKH^VW(wcg_TvJav?g5Dq#7)p3T`HGhrz|!1qEnXX$5a!<Iw9T-BP^qJ76v
z45NAX+D1G3(W7IZ?I;}ifyMC#L+6Lys;6qz(g!j`&NN)COem~C`MBXa+<vxP8*?-U
zt5iAqmKigQRFIoE?4AcApmka3tVrFL?--5`kZL}X-*%Lg?CdjWg{1NMl<7sJe-8B7
z*^#<TpWd{W^3F}O1&cMDXMhIT+c)_{n@(Tak)$q=@tXXx^VZV*<dZ~|?ZLmT<kUj`
zWhJME^H1aX*U&%hDR9@W3b2RM#Xj=gt7j~szBwPlXzsKB!4d*xt>m*72ays4jRTzD
zy!nav2;7a3z-SimdS*hUlsdL-r1l*#%8xt?DWNiySIr{ND8b2dM1lpFVh|hphETKK
zt+0G18G|(ryH*N_&sBWZaMlF&kBs-9Y3<*$-M=Nlf6I1zd#W%^Kc!}BaNJq&O-_dk
zfaEt<Sf*{(8i@l(E6T-jlYTqq@<+i*lqE*#rDrX$C`+&Ts!8vu6P4&mziC>MhwB!1
zxPgKfNd?eSV-h9s(H~qEew&g&uItdrHw0fc@<En<HH!3oxs(aekD*`7!ATSHsBYfu
zmQN>!e3(c7-k^nV9>s4#`w&=L!cHBMyfk&3%TRu>*l>0vuo%hgbKqcJ&K4-~_<zp5
zA1PoOg1|5B?d@G%2YoD5F9XeAbaY1a<+?ln&i?;4@xL<vf2!$Ung8EZM3GWC#z!&1
zrlqjGGK4uIQ46&k1}rvZk%m>AE&{U{31>gSlIu@U#9uCl{S2vx+wje1P5<TQacbac
zCHy$k!!l!Ny<PsCkm(sHJ?{TWhW|5!@xM%>T-2$SI<T&Dk$gaKn{Or~$*b(h;j>47
zgdJ-bfQ`+NyFXyPgGRXdU{y~AiMF@RPo7d@Kb}9GrNYTZsU%f-$tR|B6LjXRhjZL}
zepcu6z_+Eni0f>J^w*KiFWmrxDz81Ro?a3**FYJKb$s1TPInHNq=j#=H^2Vy*Q;{-
zqqz0M86?uN6HJ28|MFPrA}1Ew<ek1~Aa~qbl`cv9OSI8VLZH_JhhEO|cf?u7z}r2~
zeCD^%Nb@?5>TH$|SolpSwuuW^PG}C;Yk<4#`3mEuTf|&2cgiCJ$T3>YL_BQLr$>YE
z_C8Twny8O#lCSsPh{yqI#eUYJ5)!+45b{A<GpWB`<<x=uq|CDDA?6Z^fxDyATF0#r
zc?ZfffH=wOjVIsN$peddVe$ki*(vMjBCg5(t}iO&zLN%cUfWMj>^^&w|2)+M84Xfy
zSi{3=Fj=G9ag&GbdYS!z1+_45V=Fd|$rFA4tPsj3Um}n=XJP^t*;n^xwfr1$M>abR
zd08lO9QWGM0<xdnMpB|$N6()K2Q09o;mhFl^8CR3S-|pNnCt@y=gGoO>!I?^2Ux%-
zH&)y*?9yJipn`)9Dup-8f>M*@jqBT4--eh@7t#_fz1JrbunIxVPYW#q-kT76?Z?f{
zmC$pQ-zsfRR>uG9o#Oo&<da467J*8>sXV%PQpSbP&d~+q{Opd*PKzl~Ve82~ye#*o
z`vr^CuWQtXJ~479!z~3_W{)MvssK2LK5k+puL+X}IoEkU6+dOU-FV!OF(*$Dd)<z3
zTwLb+S;85|6CY$I;CZDN0F5kp5Hs38d|bkk5Al=x9mT>n=mcmZXeU~bCc}Q*cfu~=
zRP%^M>a&t!|5sk2W(y!?Hk|+`RNTtt>1({4@1B5<s%Dma#(Be?UkzMbT)M*x3x%sR
zfDqlIKrd8k=D2f%Ac+gqC4DBgERa(~Ow1KP!vMI9RmRgXXNXN9;0Q=XNA3b{e-sJ4
z7eK|FzG!8YnQy-YkU5Wua?SBs+|<;R<Vj{GdaBFjkO)+4@JuN6%&TG?({)>iCSTv=
zSf_|Od<qW_Pt<<;`Zv&+=g^x*0JyIXtzt&$mKSQzife}A=9%wS-TLbF{6UtUMe-M}
z-iy54lUycqxPuox3RxjkpZNn*od~EJMddb?_~&gS03(*}_QTlfIE%RbBq;w&lZCEW
zbg=$gYd=5P>(*O-n(w=2?%%)9RB726eZ#nF!41F-PouSi76e%!-)R!vq-j!6sBXAf
z7zDW~(XQth%00-c5YX6HVTHd8O%<NDxhaw7mn5q9Y|fC}dU?eY|N7`Mrf%EB3)tAc
z1}|Md%|GP<703*5<RIkrm5Ts4tPHQu<dhB5fzYZasy-^p6;oUeS?Y$2`&{#n&lNM0
zAJ%tL7BtO2;*(Y4+j~9pc7oJrV9};c-8E?K$)vyu8STdK3Es!)?~?69U_GhxZImoS
z*2NTGKQ9R}FL=<=?(`pfG(SJ5YGt>`m*p^1P_X2A2it;5LPD#@^u_o)qgmB%Awc~P
zU(zmW4ss}BXI^Xx*eCO~@;n7Q7n2pyPDDOW8t8c;_o*|B)W6BanO_JEusSbMdHD%O
zlWTg{o?p|8R|C{4Vkv?c@+7=fmF$dRH(%I_jE?5I92FUP8|2E-BRM_0=M+7Zr?nfL
zAN;xaMmz>PkVH>1w<75U$OG`{JtY(_VK=GyYY3I(S(^)Q)t(fiS_=Equo%xcFORdd
zCbHqlaobg{hLCiG>0PsgYN1?|wtwaa{g7eO*D)b(q<A=%20J%unt2&BLyElvo|oFr
zVK8H~0GE8KIC?593z#B{KH)Z_hmN;t?}MMqc?hZp!*!&e{Y1_p_2$ebjU>f*#U-u=
z=8xZ!UpXi<O~5AJ(0Lpi5DsuK>PmjM-a3!wmy@<0i{J|ej1c+ip&$}pSJ4{#%Ch6K
z(GH;V)>H5upbz&%1SUxUUm%d3Tsg--(40~#!>a(Gf&*fR^2GmRKx07|uXnTYWttov
zH6(gStNj6b6n6uKikS^xOaxPwTn8KoXupZvr6_sm4{3?8i+RGn(8Pq2uHIXpG^Y<j
z5_?ZwCbKRR*$)8YTQgmL{jrhBcXuPwBSEsVet;eOC2bau7E0|^pWVK@y_9Tm{jW2H
zb4~xJ9g?{OcEl-JQ@6lDkpXfmm=I6Eq<)spuLT-by&bZN_tF5M+v>;%W8n%W&W17x
z-nWXUq@tT~qgEKun<_C55<ClR4fy1*ZUtY=Og`Es1t&Tt#wOD5)}p%&cQt39o025o
zmNdoJN9jQ&Wygp7n_p6EMc@JW!#^pvc9$dT^^x<XQ*kEr$$D+tA7mJE5PAr+>Q6|%
zgp7wSxiYJJr@#y@Owy0IMwp(SW^!E_tvFI|LH!)^pMTJ@<pP!|kM~>|)iHf8Xo@X`
zQ#M7HJt;oA&B|JO7wF6FiABFjz6h3ksS#zuX%!rdKq-iBGcz&SaZ{a1?)r~)t3N}Y
zzJC2W&?~BO0TG;ds~Y&t>JIpi>wiT)_xiIG)_d=iztYT<1=QQ<v25T%ZK$<l+KMQD
zd01vhcTi?=9tg203}5{%()b^08YK)s^k+y5w5z+%CP9qo1;8Ga*B+sQqShk#%SJ0-
zf7qocXG?Q02Kc^z%cuTkMSmauZ)w*5kbV8PxcYy1fZ>;uEDB1B0@>Yrms;zMPwTF#
MPc@&EDOv>me=r)lU;qFB

literal 47770
zcmeFZby$>dw>AujC?FvSNQsm*NK5O`AT@MLN`rKR(vm|r4l*D^I&>>JG!nuPgLHR;
z;Ctim+0WklegFFY{PwYrLyvn#XXd_Eo$Fj{UDq9@t}0J}M}>!hfkB|CAOpt0xC^|*
z8o7@JTwc;CVFDNIx35%QVPJfX$Nz11`@gs@3i@ss7=-P&e=*5em4bnPq;!|nbJujX
zcK0%KwZd>QvvqRkcCvDRD!~1mn^&0MDbE4}qme>U=9QMW$<8%?HEoa2)Wwt0M9!W#
zF2h`zI9mCGPF}7aT$YT6g+7&TrA0yM_@iF~gDnteC)b*6LE(?IGvoc(bR@D$k7Q8-
zj-ohh><rAKj~u`>-FUL2`K-hYPxsjpu-}K=`9+NJibfoF9|N1{eMrys&<!3;bi#OI
z!q01OckcSnhT%B6#qaEMBfPP7Ztk8Yuy_oN<1YQbSJ7DP$G0y=@R`2dUV}}ZV&dGs
zIL5+#etZ2yp%8ql6pWUaSPyQm>vu`s++JVuBw*aRec}85fACN2emZGFCp>o^MgA^%
z8=oa?MWg?M*)&_yrM;O)S~rtGzc7PQ#YV&m|J9B}BkTO!^SU=^3djYimuWxyyIx0b
zJz-B8N!!&Ysim-SNMeSw&*J_>JWccY>D=MG_V8f8b^5SUqJ>uve?>1yN8JBcOWjW6
z@%!t>Z(&{h)^V0rXABzVf+MKD@QXuN={<#-FcF!-v<jqZO4)K0d`|3)b-6ooP)U^1
z`8_H@g3pa74V(tbqA=Jaz9-wdLVkX=my<L}!pA!r7Kd1pPGCP98Q`6Jj#3Dq*OU|Y
zM}#4Az)hC6h$V!jA=a6*sOYRB6t1GeX2vrhJWOehi+Wt1k!I}ih2^!;&^k*Gr+y*l
zMPW@v-$Ig!0wL^FmL$sKGaSTPFrlaO_OIAmwWk_T=6;-rS`nCA|Lvk7HKEAgP#E+f
z(>L1VUFurpbYWY|n_{xDRTav~3P~o@=3m|VN39QxZJnC0;arJmCQow6ibC^JW?9<o
z$;a&HBx)I>cl+x`@zw9KuBs$EgmCJ2yR8OjUE%9U4>eiun)MoxC>si0wP$&GQ@{B<
zZX=D829Z^4cAm&R=C4zjj|P*Jyibm4I*2lBZJs3-1IwE!RdI>=C#SM*!Tm!udeA<~
z$Xg})G671wUj}L__6}{OHgLXt1=&5jbGGL<=`qvHY{^*XTd-Xp8?CdOjP{P?v@$!0
zSzb8waDMNkAj~1y<4>QljFC93z_Y_Oh|fmXYdq+c&ptm6W-c{r^%)`tZs9W6ybYI@
zFe_d`f(oMRSE4#Pn0J)yiUkI|<t?S*2^R*ra6G8GrZk(rg$-;lm(}WKWOU>{$uB~x
zxBbb`hSP^uK@Ug~V9M1#y*~V2-5v84j|IWh*_CyVJ7=NvpYcR^3$jD21xW7Ii0UZo
zm*#qt49}Kv>G8-73tMuLtg58bsG}U_o_N8)l6<uZ2o)M+pMwEMfh3ah>_$a?@ZO!n
zV$Q)hiX}!|-9?k+6g>jVs<{wz>5^;{vA_NY^DJm>Prg`*hLu<7<YG+Ld3gwPNbDXY
z_zcYUD-Qn}%pgF4_|IISCxzQ_?$E?2AJdr7<hF}KMysAG`Yn||xYDPxgn4zL>I&D2
z&0m<cjp6EMoA%P921kRHqCy^#BtrAzZ|g0VyIcqgZdJA5()6@v5ikKq7LIb)h?}V|
zay5fztr$)Wwo#K@g(jB@R1c2Y*3Xp^7{3W%QG&tD(4X!q1dG`?aB1SKOxq)aU~h#r
zle+3O!?Q#$(^j$+F~hD(q)PhpnJkCelfiFW15fCWBws7P%-^SQ7m4ltC8zp+HDJ8p
zkpnaMC&LUUHD|9J>PLwDP^TzEvPR%8#<Z`^YI-WTkLPZF9D?dA)qN44elKML@-eT1
zpY6#R%%HY|wb2h$PL|n%`r2JdeBCL#tX}pW6-y7P9)<rj^j0r`7a5&+d~V0q1H~!)
zX60~Hhk^RWt~Qv`1YGu_4_IFZ+fR?vD^2+yWkcg3)Jf?W_64Rb6r<eL&TM1|pVccL
zID6=$*axui^*8ns8U}oArCrUh@Dnh+My3o3bE}GovJ)hYFFz-L&ns~eV}3WGq47Hu
zQs0Ki@eO<BtG3}dI4(X))aP(e6`6?Hcw=pv{<@F5V4(0>$s2jCdU8|%8+KIkL%UFa
zV<H`!^IeFgVZ|Pdrbe{SuG8-6rdY+KaXO-3H0ZKhHyuOGNc(^(?p>7?v)Jxn5;fEu
zw@f%t{dlbm0hysrrk!niw=gKSs8Z?>w<#z7wHfeu^zX2TYQbAG|B_H64idYN>4Vaa
znBG`#N=UrZFX=n4^Z+GZ6)CPw2Ev;QJ3sw`7Xg-buRO_NHU2NMdK(lLGE+RrRUIF5
zM9JrZYc*5Zlv|g}bqB7*VW+xzPaq35Oz*A1;k%jcJz<m7R%gs$p_f5;Dh<w#Abd}o
zF#E3*pusDsLb2UPhI{R=m7dOzn&ROR8Le0e`U(;Y=1lfzrYBw~Q^yEv>uTffcWS4U
zcJew2#izuct@g&^k-q7*faUrf70ImNR?0A)QFANT(O;!EeFwqo2(Oi83o<9_ip~G=
z=uV3QUL$^<rcHG*+5n1z1XvJ%bU(j)Q$oTZzjCjpHhsZJ)l_-}m<|6R0ppAm*X3Sp
zk(C_|Ot{YGqwB#=)5&KUwi&jNJNk%1OnR#`-Mp>nc&GU~yZ8apKU_wt8hr5&nwVpg
zDGu%#yTihYFnJs9ie<OgtUHs}iNBj_ru%rkAg$VK4W^Qy2{SEiE|sgm$uB&*oWj%8
zeMC2`ug(08R9728(o>K6Fu}(e11EXI#=7%3A`*;SNu!Cvp%hTAqwD1WvE1F@iWrh}
z2!+36GEMPCEH2#P3kglWxVJmcqIvvT9ZP+y@S{4ed^_N}^r;E|VOU${CgO_|krrd5
z1FC~o#6KSnQV_U-COf#G9G_wCvfSdETL1V=)DEjm+S9kD0a*<1#A<?soe!C~dlGlG
z$<I$qYGrD5Dnb?F9nfo#Wtmk-uCe?8<eqVLP<&o$X)o8*!lQCoHB~TjHNb~2H=$aF
zoPq6QhE{m)yCrIMAN^Pp0vX!16JCl!!YB}BT1g_dH%W<-&hBGf`(*0Tdwn;Vdk>J|
z4gBlB1gW7N52*|z2tWQDR#50;xrX~2FQu{&D#yX^A%zHZ`*0Ng&^0bnZRVel$IK?k
zD#l&jCe-E;9Gm(qvkkH`2ZcY`Vtr{Iil6T@f2(nVv-(AnZr}=2LmBz9;X<u0BH$j&
z_+z<5g-|{TT8&T;dpJ$&wwKk%aTvZ+b}WT~iu`lS-_phOqEn)($@<exnZh=hw+fQ(
zPkvuNNnlGvveAGbsnb-Q8C}W}_6eUdrFD~$o8UW4pj?bjnVWoQX;xIa7L431RpgnX
ze^k!A@_>q^<F5XP2l4|~iObEbrt!{}HCEb+g2b0)cEej1+^=n;4n?ha*cF3W%Hhk2
znT%NrvQGIc<Y}iCPNA+<>bj{-CQ&1=erO2^FB8k$fIHx8t8Pghodn1m@=v$%JwQXa
zv2aq??tpZ6?&Yic*)f~2JwC8@-!bM<+}V)~v{6_)S)wyaG!?@TLXvtvXS}+nKlZF_
zTJxOW#y>nW?hW$%Z-9GbvsPIK>PP#8kUz!T{lr`S`npS1l=0|h_7_{Aav6)2Skb*d
z$wvO-qMbLJ^BR%IRiI%~=)6shVVxImFOCgSxwC{XJ##hdWC6uCG2SFYksF&~)VZ|g
zLpCq7u8m4?T$oRuhNHeV_^&q{P!u|}4e(sNbQ-eIPP~P(-W0L!!9m_xXaTx?C;Wyc
zAy$dx%}%JB^rjDLR*l&y7_E~)AaZF<C||4RuxzrK#zn+@3Km9Okxf62QtlTI<K9GT
zX>1Y~^_OLnAVm4)$>7uH;QpxPZw=Qk3yh8Qj=iSA<L=mu?y(lsN(4W?C;ltgp;mnu
z%rlBzO%0{VJL87tpd~IrKt{4!1t|^zTwG(fG16KUjbpH)%`9g~R3}&V@dsK^pFy?v
z$}td^43-x#yysi_-v=F><Ti_IOWBKY^5c$t8N-Uj%<m~S0G6djHTA8;y@Poj7AhdK
zSH&{?-oYjl+ue(%?w?RMY^5M2SVdC@W1&RmeK^Qq!=M7B+-_hP$vBeCpsc(B(o)*O
za9Po;q)S|^oO^3d(asG^x|X|k^(Sub(Acyps6&ttC=J|C{((luS(O^4Ei)~<oEzy5
zKzJiB(QT%xAwv#jp5cb;MGx@U^E!`U0c=pqtAAXoH|hGT5f4Sd9~<NPoYUcNa-&+j
zoi}*;2nR<d=%{@Gl(dpiaGRNJLv+P)*U^G6oiJc|L+*QO3W6M^8qf%?y?`zU$!KiE
z(~=zI#E!iJbi~8XSptW@|MI&T{l;vwp6d*hN+p4rTMs8m6zfh&{2{j-ekB%tw$W9$
z_tS}s8rs5<@;DUn;oOn!T^RM#i27}=9@old5kb&d1)hZ0vfL@^5J@IQjc^1X;g?v=
zWwC>pX_WF7y&UxhpM8Vgzdlxn=i(1yxG`QC8rDMWrt%ZY5+}nRD!o`?bnZR4|8E^|
zNNKE&uG;>?P`>P@ve70CWDiOg;43SZl%9Jky)Bshj^_uXKh<5geRh)s=hP8;>W7y`
zo4nx^!L12uQ?Z-Rbk(#H#;YyutU<QU`1LN!UJj4?p3=UPKYm*7eI5+>x0$}SHi68_
z+6fN6W?cPtQ}W9%gK@dH?v2|^yQI|XJ?Sl2-C5x2GiD_ZYRK>};5ZEJ{@HL(mJlYK
zC0Cs1Ee<6}K$}P=-Z#EVK@OhD*oaAoJw=4sG759y8aJGP#@-y|h+9mJtK&v6e3kGN
z!%W>kXA2=rakVwF&TWY_A45$g0EPlC=t=5hOBrmIDvE=S6VsM*i+nAI)Bj{R>Ngmm
zt_EuAd$#=43<GDMtNjxBzxuRgn_Md>o`yOUamtI*3R@zXb09YgJb8t)(Jy4wnA|n3
zVpjv6(DGP&$@hfSasG+$aet3e?i+1TrZ7#fuC97xwW?6RRt8NG^+!<nE-3V|A9QkF
zaUb=^Wt~a?IM81PDHXRweyOC2>>J)1BrhyCmh2-e=v>F$pE_0T@rOQUzN3X8M&a;S
z?iH+hlQI`1B6SgTy}uiIP$LzVE9JTje(DT9X_FPHB-6p($c6hgY<`+Ag%+>ltIeGQ
zV`oFe0)ENZ+&C!IW*h$LsVcToe(_Zz+%B_pXh0(jK~2YAckEk!oK`ctuk+BB;<S!v
zX9E8-z$;!vfT3gZoh~d&7k$KLt?{?m_tZASRVnFN&J$lef%*7Rsj7!m`5UZCLnA=d
zQ*aN$tWcNbmpM$8-$u%YTX{N!B8?)fX(2RFTR`(1Bk)J9iXIft=vR8gkISMuSk|Pj
z#<L$eEWqA~bT%%nUaR9dOK~?*(39!hp;s|n<?%C#-&R-(W1Giwd<m@Q@u{kHWN0-f
z|5l|XE}D<oa?dqlvQd;vk6LtOT#}0#T;VR8JA0yJNu<QY{P-;vCrc~QY+J?ttMu7O
z791Et>8qL3g7HFI)K1r3;UVj*mIDVn6p5-sJT$W~rHb83SW?Sr<HTq~ldFN=;sO6y
zu$HVd4z;I6wJuML4)eDq8l^5Zvxaanji15;-QKsXmUzc>Rm~w|6tg!Qx)s4^omf?W
ztQlq-g*<)AcbvSZl)UK{F=YxZdXF5DNA4oKEh)IK(gW00f`ZRPZ3gwg;qEzXQ;2ZG
z=m%`uuwNrB(Mm&hd^2G_f4(V-sx-iu2Crh^eeia>r<NgBwpPPi5L(;j=P+zgkQE$`
z?G1)2$pAz_S&r`7MH-%z3_m0D;o#p=5CCukKenvuo~&R0Y~*iGb=GRk26`1X^q=V2
zyaxgd5iby45WjRQi-OOmt3<LwX^)2sQ`ya;I!_<NZ4HP@z@AIeMg4$Jfc#i^TYl#W
zMKXOmecFe=_j%Sv8%uoXZ_JR}nj33Nm&&fD)ujJJ1mG1`c0G^io^GauB5l!qbE^7b
zgg-_r?mYO~2ATwWb7{#l?dmH94Gz+R6?Dr#D<0h#**+qyYSgN<ibarL^~f@?*tR@p
z=;;DjA)1F+UzyoT+fk4>C2w*@J$*D2{ccbPh2y;a!WT>Yl{PcCS4;`>=aU}%jWJ86
zP1PSaDyQu^HjH&=q%e{@Y;T=~2%LWzDxto&ID{P2JH_X~CLIwEm7a&1?DfT-S9q9r
z%!16Rvad579%LERhLX-$d@1bR9H7x=Z90JJ7y+p1*AEs#FcJeEF#2`<!E_0QTnWh=
z-dt$%<NT1a-!d7>|6TG{dTHhjX=&)>%3_E&*|e$%Gm?GTi2EWq<I!!xj9+1+E@rV7
zo*zld5I)zLj%^ec><w3ZpDt_$xBz`jJvo~r?P){T?x+P9q<*sD7;drNUizh=6kdjt
ze|Y4pjHg+Fqo7gGSnz}N7cQLr9azm>es(1BNB$A$QrP+9kdZxBsh|io-+pYeiIL5n
zMf!QZ`C&%K!7NkhX<Jseq0}M*%Hynze9KQfESc({5_<mhhGEK%!c?w>&eJIeEY7f}
zGa0e!Qp5&v{#^qL35jWkXRG508`jU{*FVjKuzGaNA=N#Ng)q4d?_0&bWn~63r(*C`
z6n1^crhNvKUfJmpp*h1$aRBVPm)|M!I#$YdBN1)7>aNxSz7L(~<!*{jAx&u>B-BKR
zYF0`=4&Z9kgk-C$T|`L_8}YFo1SXtnfpsQy?r8M*v@nMiZ<LE6sU<MUlfc@Gu08bz
zd<Zjy4_e-LsfD2FdK!VyP{b-t>vLPmH~Yg}fW%P<J(P|bd4hXgvfZ!{x5~xVs4hLE
z;?1!9fCROw%turbZ>FhCyXX$hd{)BmrUiw^^3>3<`8W$vH!vn3PyWn?JZ5i1;O<At
zSB`jxgUureQ?cvwfO7pyVJce)D1&9?MxZ4@JKdzaPE+kS+vndvDjeoz!>8Dtdl5$a
z)gj7#>+&-7dtL|Iwsw<NrSum|E(A8Jc*J?a*O!B{j#%Ww;mNtW!*R=(W~xZhp)D@9
z*J7S&2YIT+OqjWma4@S^jJ@)+Gfm;`)5%PXHIwLCdSmzH(J^WMp15U+7Ls`k{Wn4v
zlL;Hp3EPeVf?kp;+G2ptBDsXwEDa;7j_ampD<gX0ewwny(%IZvV~DF4AK^lh0U`)f
zC_4+pk35cP0KqEKY2E4ulAWx@)*F{dzAas+chcD3|F_gPG0t}~xzaA59(ptWc5ezd
z%DKqX2dX-&?HROE%BVba<NqW-=ktTf<(kzesH6lKj47w7IaT|%DRuxN2Ap|83qjrz
zN+$Z=wxPFJH(pu)GU>feaKewX{6nBhe^F6a^!&CFFqklsweBt;wfNkL0j>m{<t^u;
zEF*(d_Nv)9IKJIarZQCCA(-1KrqAm;*Td7iG*tAmqCdPGy?3fSn5O1Nq`rV7b1K0{
zPGtNnB>~RRpS;pfu4M3J8Y6br@ux~6JH*hDVMBd4R{XZq@rWGr;KWQFO(Kai>Q6~%
z1-(60pkR{k%R+_wFB{*>{e-Po()ja8G#qRfNvI=Ss)hUDD|v?LPxF5<qPW!Jkd$Ld
z1=2(foDT>F%5?=Vp0zvtY@fz&`Wj5b?<1y?l|LzwT5rUy)MSfWmbm+JqpULY|BNI*
z(p?zr2DAdzMv&9m$;1^8J^drNm$b2W_aKB@ZZ=vJV1paY=-l@4@AI-8UP=uB;g3$$
zO?lK{VPwd6*nWk?7kgWVTbbbSGmBp$TsgSr>_~DVlBQl=B>AH{C_h$9y7pCO?Q6)f
zBFID`?~T+62z<ZlzI<60yPZ-VD2waX-RY|jAjq;!Y0e&ekw0>-ZONYW9gk5DqDIu7
zSdsox2%YxRuOWn$(u?XjhQK!WiR~d5R$QwD2En({ZIj{4n0ji&cI;11CqwR3baQU(
zEoOdsqjXx55poLOa3?!FX$K`>re@Dr_Q3d4GGH_V_b}&Jr!)XZxYp=s?)|KbZ&fiC
zbWZHr=}~XwZAbHtXY<Q#o$p(Mr+I`XBce+f<!GvEFfh>uFUP&x3Ad$N39yrvM6|Vs
zjwX%-zYwS;Oo=LGb?xGN(!u-<w58~zFl1}pH)1E`j&zy^pV%;RQM;yt+TQ%EE6(4h
zSA7Jx{afUKsOh3+;gX%M&HLqxzRO4@iiH4}L-lh^^69Gy-ekmWpGs82_rH{Oq6USl
zu^Y6Zo+gl_YSvlR3#SE;%;Jqw9F%dqy^}||=XIvA9FC$=-zIHHP`IvjY8?7C!TQVZ
zaW=;_>wA4+(#*6Ly->y14$D&;v}J5$)}1Y1K2t?r4sGqQz1Bwza4K^fhCg&HXJ-RI
z&8b%g=ev^_9*h}^`OfAmB*Z+(iIrNK<=a*VQJ-8npJFt%sBRkVc+;_)Eg&HzQ)j;L
zBR%1}kLoIJ_Dk#kmTp#|A)QVB)g|3tG%P;{*Cjxj%^q-LT@5%P(SLK}LjcPhE~>Zr
zPQ2EUJUKw;rs(1vB(vbUY-BEWjhGBfIUYB_8l~;uZ+}ft=>;Oc;Ti*qbtRyM(Jj{y
zV$5vCYMS=WP^mnB%~&KdY~p2HJt2d1$NgbeD{W0d;+ova8K5&YI>lty`M!Q)2%ZSQ
z+E!|ePRy*!y(SBV;4pvomF)o7^KjMRu;e!3knr(*<O{>;V)qTSE}ryHvId|$i<4z#
z;*HD;x0}}Dou%g<&%=Ik)_r2+Du=H<o_ya!UYo4l#g0m;!Eym;8&mzi{>tv0ak+-q
z=lNkY3t0yW+IUsqP?U|dQfH8OQ&5o{hJ1h!6}GfzUZ(lf^o;&GZ~-MD^Rt|BJ9*y8
z%CgX&lk=-0=aj>v-0nrZIvuqsS5_-y1j>5zjsH{I<|k?1Pu3G5sd2T;wh(8Z4jcW}
zZ1){v`jrp4N^B(~u#`;r`vj{#alRs-yifZs^_v_6$Bycm6{&Nm`qOP=eb16v7iBpP
zHK+QjSQbojaJnz1l!TmOurBt^hE`Pjycom$VEDGyLJEgt!N$8@;|eCvh7@P`<4fY6
z6MD>4r-JSKGI5dF=glija;#(JaN=;yG4(z{nR_LUm0Gk<%(?!v38}uqrCH&;O!#8a
z{VP=2Eoz2s%}-x}spCgYC`fW*ws$~+b1o)XYLw$R5ZP{@NNQXu6h0NGyYRD*T#lPq
zQ6o*Fo^Lu%{N5M(Fir1sBQ`6tOU2egyQkeQCKbicl^sJyFU5V8y=va>DFL-xBeO*W
z)C4Ib+(2cBRa)ScV)kw~+~?hoz8qJZfk~Pu>gNH!LWM(OlkHVp>tQ-FqRhA`NW{n8
zeJz9|pPRoemGrU4gcJPn0da);3(P=ZsKFiZCg^wf;R_K#WCJ72SV7@#>bS705YS!^
zFQoOTk!G7Drsc$Sk%9m${L<Jt`5LORN+cLaNz^OfVJw!SYTBA527U;LZJHJ)<NI>%
zeD*P~uv>4w<@+e9maVufVN5_|C#F<Ig~gwJ;;yL%2m6>JLCVPBmuT`E%H{hghl@r|
z8Hz9T{b{6bmrHUwO8P5t?>9?uKpc+6bBf|LxqbL<k&X#uDRU?p$EhZ8frhe%_kttb
zAw)PNw9af=){=3&Vzpd1UyH4GAdyhfR(bl3^3~$^dAZaCEw0gp0_R}i5Nhi<1_Whe
zPNLbSTp!W|jjleOP)LeNXrBy7UYVkuv{F)`cFKUatCTGhzYVi9SUwgA9qE>5sDra`
z7fr`ffTfocdf!(~NQ2Ny>r{*?9dJNDIv47FjIiYsi?D9D{N#)NU3@#)|KE*A<#4yW
zTE6<8dJ9=LW>_?UkJRX1EDRRDvs_5dSjr}F!$*r#p+vN80*~H(i|b%%xnKtQv4iXn
zK;-tV>JQoKBCO+#uaU2!&d{~WrpV-DvYO>e-_s|?$tWEOVV<U=8^1NnNv7qn=9Zu_
z4gJy#XKW8TMCZ!PeKK#<ibA?Gx9-_#di<T~pP#yY+za@!8tk7@Z<I~P-i|(7u|2jY
zU!>_zb$G)K;u4(a4hHN;HOqh|$4(8CWqxVbKyqQ?olNj{81H4&3(I58bUerSix;09
z+5{Mk=Tz)XQv#ZSIVz&<&~$F4^C+_^$0<EN4L>JHImNNxj|`&M5h1DnDM=w%<AeK8
zO^(8<1E9;CE<)o<er)Z==oi-vj1roC1P}o_Hv9!4{BE2SnWm~B>o{>&(BW#D_Zh*=
zU=Jm<W;vX5EuiFd_ONq-UQSnONR%(T(Pl-}x!1|a|H?`6=^#bBfvX;u$e-Tymp^v{
zx}v>|>r`+QSH+}@uM$!WT4la?rWnVCUaY!$I1gJ2evyld6VOxqXh#*%Yu+;9qXBOz
z*h>@8&d{HBSU`GY_dm!X1j(7kF;Uai2jv|rqe&1DJxsXhr;V;BQ4S(8dgf%g?OHZ|
z@SU`9#t5*`((O=`qmQ8Ybk*LcIl~c9f#07NH?#v4ViE`ol@oT7jTWooF2Z++mn;yB
z&!MxLVRE%ejexzJp9mw?kh5;myFOpGeS`(tV!kp+9sd+HsXK_XukA}Oc97@vV>dk}
zC&Oc#I^XN#5-A0R%diz!5Ku~GI1|ElrFA?npyrh3VuQkIC4PR-N?r+iyE9o@wn3M>
zzJY+z?{ZleJ|#hxKIwz6reMrPwyhUw8R_BrpE>0>vuM=!q9F>DW6^NJbr<dNXh1fw
zIiFfs(Q~rtT)Qh6V!7a%es<k&Z)99L&)R`?t(l~W(=m4afr)H>WgU&v*N)iM5lW_S
ztP9W#3lk!9M!%t?+^(!1f(`9K|Fz{piG~1s)R9wxTk?_7I!^9E%%q@_@j%RS2{a+j
zghcn~IwqAy=b@>$5S3!EAec}ewW6DDp5e?b9KMtB31{Nhj~@wlpFIObao4~5X&6Q^
zN)#HW`g7!pIqRW8KOjb8ctf~J9Fs1aZor&^_^vkX2sC;w)<NWfv3W{fyOyOe$99?$
zq*240xQbrPyfv=};K&!=4M5qMddz-+c1@--u{#dqrpJ^6#wm4e=)+Dk{xOkJGoPdS
z+mw}lfdhouvGoXY(4{ZeYbnQqm6CeR+n5nX!JWm>_>k&l^>SrjV>1fx^LK1L#z15r
zx0F^>_>}6=;7WIuMAGOdDsfRE?q(nP%PC%`%Wt^O3k?v-acZkJkjI<sei}6_nl{E~
zkJxZs!tS{zo7ZV*V;S|Zz3%d=f(NqYB!|>ZbtcgAMkAL79XkA*v$t!2)}cApEZl^7
z)G*GZW6TRP=M`3rtLvUkiXMRZ{5`?hzgj4py?X==2TSjaUU~D|EE7HgR*o;$Gb?WQ
zd&z?>={(k?gP_&{c_@9SqMN9sps!)_<I)drEE*|Gt29%yk5;V>vs1Ni8K|^E<a=V<
zw+y0OqlKvx1JijP6<f4*Hw<`Fr3!Ys7SJV$t`6prKm(_=7cgnRP6;Abp36i{c;S(T
zHR&t1CEKhw(gQkAP5hV6ACmrxTG#Ge7ZeZtCkC>W>8AEPXsFOIDUmU6e#;Jtq!p8E
z4zWcVQOwkFj+wI*37$CgU1jgC^~6W-)=A+6D21x}6)LGx$a}~Dk5B!;Q~G<dLp6M|
zQg-5)sgX1YL_d$=0;Ac#1(<`q8=KaJ$tSY2$8wCiu4q<$`Y|PE#(0MA0^niLAF5!}
zW~smx0nW5s*X56$y{1~@W3<&PNA&CKiIdJxD-<w&BYQG3Ql9eBK_r>$tAUzXzKbx&
zMjE(ak|2Z2@EIiF5qdyq0GP9+W5k!~Qhu%D6hCHrDDn^Bsj_N70%r$!i8npxT>dnE
zKDI{}ksyeV4qTx_-0o<V4H}r?*=~8UU9(f2UB~Q)<GlkZU$%#r7DN!Sp5<n4iyi>@
zdmEY7V)mS!*aQRh+}4s4+{||8za-?OjA^Ujx@bp~I>-`aB(K!}xWN$|0;f3MpZoRH
zRG2^Z&2_nObC;4rR$rVcGl|!8t2Tx<Lt_9c`I9~uTNSc4WzSx2haXS<-5D~OkgFdT
zDamD&jxqV}rNpRb^NLM@E)v14v&Hthvkk`U+m;L(6#;f&AQe?kd1rWfABl7#!VaW=
zaSh&vlLpDJLf;g6-~RTlK0f*Xkbd1qW216_=1zlg0mW!iX2Wpq;5BI`^!OQ!$Rlj^
ztX+A4ovy<0K!8tJD%s6*{jEmEZW#dlr3`0Iux=vz-E0y*ljCj<GWbbC6oO395}dje
zrpsAor*1v~qk=D>onLoAmcJX8hCV>>^j^s$UHyVfAD(fX<*SGEb82~tWcICw$5b)<
zJU_B3^>vawlb6t?y*JLkie0~}nSS3fo`UgInT>&^4;YbE)vcSJejNVAHF7JCI&UG<
zH?D1MP>YqXHqEZ(dsPNZIopP_ZwgZ;exgSaq|5#Z5*NL!uhu9U`X5}sHrZ_EAQ_G(
zITKS$9~U;EfSA1SBIC0@w620&#nbd*FbGH{-GO9*h5Yo~hKs43<c!M<h%#6WHKd<e
ziJ)v8Lr5&RC)5ejFu!J4U^m1Dbj-H1hFo=C_Zf$UXLS7d#fP6_pt@c`t)NgOeCh1z
zL8CsLPWp>CyB#!>6svIw13?<;FJ{&~It&X5Zk;Pm<8*r9;m<b};MzJ)ZL)|L|G1;U
zm#fM)pSOE|AiIi<fzFFF71QQwIB0niNbVP{w=AQ>(XQ4t8~P}d)@_|I64j_}qHoZn
z_u2U%mhsu0No0%Yk8QKT>#wNrWbJj&V2yEKq>Rl4I1%yDAvExurzwZt!&yzpVCGZj
zi})c(m?kRkqX1Yg{~dzCIfDezI0D>fD@n)vBEq2DT?Lr!-5SYGgpc^lx=O>dMIV6;
zeC#vb|0^1Ar&-@&sx5$jvm>}JDk;xlLl1r!rounwZ}(#5$Y8~cf>>0u@-5Xo(j+UT
z&T`3jc&pOLnG2SF!mLtuwq4hVBrIJ4^6o3i?PtQ-qzwr&mArcTv2-#^o)N6n0D~_`
z7TOE?=`prt&Llt+nOLAdMv3htEE%eQt54;hhNhA#O@M^;el|)ZO?;A>lkagViuuBD
zb{uDtCzWt!1FP1#P$19sGh*r(-;-lX4LW6cPH?75T=LzDoV_M{1VhvdzaPF4><gl8
zO%BQUtWZos-NDA`<;T94h8Jd6!KKIM<75076{KbA6J2wgUDvVei%qQR(Fm8Xxd;|~
zcM{y^N;417>s%bp(ymWbef<?vo1;khKBQf^{n=Essb}l+^lUh41GZs}L@Dhxl=(Gt
zkF|(6TDFmhM$4;OKzn?dU586!>3%wV$f3@}$=Zu4{3-nm)K4V)#ifs%rTV(Y31CF5
z8fQNsqY3d$AYFbY*Pa6_#pr!<4zoHTuOo2x8T1+v#wI<XkTtlINu_U{5AMhHKpITQ
zYmH%^AhBA)Y><b8G_ve$U-5vU!i=U*n-=RhdPft{U_T(YUW5sBCRdkMfI_)vwj^fC
zFr1uv6Wg*;xF{BJjq{8G_jx$IM9!qW0y0BRa{77QFO{?eGZiP%0#k^8cNVwVo_Zhq
z3~FVFhXn^UKB9jCFb%8WXsbH*!=qZ^@zl{H>&k_}4cr`M(C2DvqLN1n%gbwFF^STX
zB4ZO?NG+QS=zZEjL_gaEF@uJk-?J~TiVNf7!XG7HJzX3D)v0#w?I*J~o4%{R9!+RT
z8v4$O<Q=jK-&9n%bY+M_ajDS=@e`D^-r0m)Zgaho?)yHV!PL^(?S|Jsm)my*t5=w-
zY?}#>`$R$T?3?43HlAPqG5kwkF6W3M)3?WRP8Gfjzle^l#-8Nl`k9Z6y*{<hI^QUA
zc$+5H_BuHpbba1bK2yuECsK{qv*ilkU#+GuqT?U?Hj?9k!mdYkuv-=+UUj%R8M!Pu
z>;}Iu4v2UimP+>#4lV@~(38Mw<)8J*lm7UmRR(*AYnw7Ez|e-Bk~m{M2ToZ$1UhT+
z!Lq1pS4MaK<ris`a2EQF{wR0kXO?d#wCeHWZ=G?ez=QxjO-a@ZE2^B``7u{qY5FnA
zbBC)hd~R%{+nZkS)!LbN73w)1Pnuy4(_#%wqD9HvIm3iZ8<lidGz$B1N5WV$U^xX{
zW;!cB2EX#e<lZX<kZbz3F37m;AFGiv<|!>(o0G*&N-q)NQgWwf;4nzB%MS@d=;n6R
ze&hlsOVl)8Y#AY8!;ks0mry)%DE*KMKh;>ZIGi{NJi~bV1Jy;ZiVc(*AA#>{!&=Sh
z_tpBRvbbc|-?sqUIRxFXley@qeeWogzvJfDQUi^qk!~1Bw{bm#p8#>UBl}-%_M}M+
zTE;cQ(<Mvtrl|;MNwNxq-U{Eg&WC$e3lSs`b7!@RM6_X{uB`UyU+C|C?&=(wlEAN1
zYgm0&j{Nlv5KuBDDOQ+Q;HQ?ASkvr<Rem75goBe;9yK7OTafq9goO_o8`&e|a(v%L
zj9-&L-`ZwMlyajII|cMs1?Jf*{uO`BY^gH;A>+wdl#P1+&(X+G0oax<T_0^(Ds$O@
zVSRXv6D-*w^u}D%|BJ3?o4_)wjHe?|pG+hrfctxCua$4>AO0S7JBd$EiigpYf(0}K
zG_p!5Q;$`FNVM=Of(I5S)Ui^Z%4Y)%Y&OQ2;cPvE<QK9GuWVDB1egnHYa~njO%S{V
zvu=u~a{9P4&}GlkhM+i}n<`V(5O<)-Bj^(;YVFubm^4vNH&DX%Li|#+LDqyh)UNSi
za?7uBaER<v2Y6WE=U-&4pSz{$ZqbuMSCoDF*b!grmZhpm@${2{%B#jH{<Q#|8YqOM
zCRNU?zDrPm66_bvMFuH(nZF%q>^jL2)+QJ0mf?yVps`irViCAZJGf+(>Yea?DPaL%
zhYJvLPrSU?Hvr&N)$>$aX)ZMWD91{P&-@MHh|Z>J=z1b52hBT@De)yEID5K^$0bzv
zI{csP2MCAnj>@B+%T)$H+tZBN&THloKTF=+mf8Jnl6LvNS?V$`7T&!D(e&F@afb{h
z$!28GjCMtY+Z=GWe(#`S=m;D6r3ez58qhT<i+G)E5ZEchDgP`p{+<E)Q|DtPZ3eK1
zGK@oiv|D<To>aPakds5rrfu2q5E34fV#Nd0>2!T&;!8%>VLd+v79yE&rT-`^c>Fuv
zxz_c}<ovjTfg0A-V`n7@Xd~6JXxL93<SB|Zpg%Rdm}AB%aWBe+=ek{dJa(P_RYqDU
zG~_6pdI?s{Bp!VfmOfn@Rc~`n`70CO4}WoDk-0{VUT<SnZ;0FL-MgX4d4~kP;Xvjr
z#B^kyLZ)ab_!(rrz)D~nU~yhF%EbWBI$r5f>2$TszwrLFLZB2=q~%6OHv-IQO8VFs
zVi_bDgsrr+CCi0)s>WRxCrOy^exyMG9CZb4t$&7jqEK?sT0+0_W|b8T@9h3-EoUz|
zAkE1ha@ZcC>?fgj9*SBhC9Vz@)2|urt*@aYV8F+%4a!j_R_kcK7Is3fzomhN!l<Tq
zfV`78t@?7QwX`oQzt_v+qjCiio{t-MSQsQece5^eh;SfBSPqXWWtJz$khX?GhTYh}
zEJL@K9b}mQkd9u^L(l5U>Is_(rGBPj95P`sV4*Ee^9xWd*Z-Cw{YsNzBPm(5LSW|r
zgL{Yx%Qd{0YF&z=m$s~`2d30L6RTFK264+o2lD*Onj-b1S&Hq9a|liu6Xnf(sb{O6
z?f;nWjm8-p=b0gDj`FK1`=j1Pre#KvoDBVYeb2r@=u9oEV8@ns3Yet5bd+U$ySn{S
z7H%nWocBLMdWXGznDPAz$~!*U^iZ@#KP)GQ<)E1rPuMx~z}Hvd-HPON0r+G2bI_WW
zE@Q-m#7^(ygT)!I{zoDfipXfB9)G~MH0?8bYV!+3)oOp-h%1Opvf$?qBx=<{K8qU2
z2=r$0aRRB^5|60(jMvzd4@28MGf5y<9{6YW_W@62Vz;$|;=f~q>^$gkc_{&{W&3No
z+RjbMuoWk@-QAc`9+*NgHO1@;j+ti<FO8p87eQ{Ac$**0+DTXN897rLIQVv|k*_n6
zym?SjIR>E|C|yHF&1dyQCzGm~(QWqTNHsaK-%y*CEuD<m_9``uP~nRF@Qt!BZ>Q}g
zpIeX64lh9Kf<dYVkePhEi2!7{USJQ&n;+9S+V-{z_3|u-%L~%d*HuZ-hs`k$tr)8w
zQbHmEGn7yj2%rpAP<WrtBi84Xbqs?jXC5F^FCG(qdHWl;^2^Di)Fuh&9A%@a68&3d
z{SS2mh=+<NFf4EWqKIq(X{)J36RSuxU-i^6D@_2@Pa&9Bd;_yZwKIBFk~z>k(*05g
z=vWjVEdnGK!d2?roa@T5$12S&veWe^0ILMjVNgFhn?PE5aihK|X(`QV+V|Zb_0T{S
zRSo^C{iPLv1lw^D;GV6Q5=mi*%u4)5N%0juw6%fGu!8<PRq6{&5gf9T%ZKZvy7D_Z
zS&oJ9(x|I3;<}XGCSly2p^<Aa18V$S<uL4_$T2wPfYgbJVd67$OCNEImCe^EUL%$m
zMR}~41;xCT6GoHe8(GYa*Da{ogepV^PwBQ#-MEj2%;kJ$_twVQ!LCH3H^6?;llam?
zV%Mj+a)evNxRu#ujJkKg<9}6t2B>`KugbmUSp?psn6<=o4ZgN5Al)Z7XB-^?r8R@@
zaldO*q6CU#4Kt1;wFsnJGq$(*z40*xEY3}_TW7KK3g1c_?Tz9a-_&GC^u$A*(+B!P
zL@iqLe!xv&4!5qN6m$59>=_k6_E<LL3-D9T-e)*BjQHp>uAG*2N{;vCNR7WLQI{ka
z;US#7YYNaEUpqV5n^svNCJj!(cBkdaa6Iuxu4r1`D>9(FNuO%EFd|;^kHW>d9Mo%4
z!$ZB?861TU5_6c3{FEyJeG7;ENz9H37<?VqdChK>-5(=UQ}$Yk$9;qI5!#Gu81qCR
z1*1gtHcyhy=g?omz?M}@QUvn(&v`kr-UR)+30TeYF_<Vx-r<stj_q;z%;S!O`&^D>
z!wb|VsPuMo(3bI_G-)crpy8-r=IGta-8wi`McY=R<82{wkh^T;dYE*i|9i3HN@s_1
z7q<i1I_|EwGS&OD&`7yqf0dT)PU#~+6mb9K7f+krVh=w6cV9d`Gb9lDVxTPDE+z_O
zwFg3@e_SAVWxVK-f}Z`=It{zmB1&7-x2BNiFg%%UK7PYSv9j#q*YMq&@JkU2TTd(S
zmYKHC^<L}riE!j((=ZdLHoxJRkOt2y3~eN08(OELhYcesDCS$6_CJNjSu?gMp>CsL
z_Hn>*nA20tZiNC;NG^vkgG9Y>5y8gmK^hIdtTWlzk@(JrBZ_k6)YSl4hC@Fyo04XQ
z*&Z4E=(m<Mj7uVvib#={AQCMfKcMHL$&D2%;HsCBT<Opjx*fR-nPa0gk3(qc|7}b+
zK@6LrD+NYm?<N{0!eHaIf4$E#KJM=jK>+RL_=r4AxGi?}>zm6!*k55yIg&DJq*EW(
z?zA#pk4UPxHq2h>Gz(6DISuwL;5li9Y1D&D5=lz-Z(~2KiP3N?KsLV+KLnwN;z5ZS
z3NuwZt@}o_mI1XBu$_9>oVh?@OfA!MzU50TN#P`=Gmh{8P27li3+pV!G2Z_k$TE43
zyFdQX_QTWr|N67;`WUVCU*78de|pP$#Pap_1RKUW>;K?0ZS`d26cq7vQmtkk;S(jg
zYHDhGb4|J?GA8}m@^Lf^CofDZOxps@%-&Bf`EwO`r0f2e9G1M=u63Ltd?L<TA+~qC
zF;>xf2~Qp!Q<LIql2XErKdMQH6|V3OP@SuQ{a#_+_Z_HMnT1xYJm4Fe<WnH#%TEx+
zz_?G3>69L0_4e&stEU`AuPMj-4398_Esu_l{7$zsGBO|#)4F>>h$1z~i{+zXsfr2@
z28{c?KwufwIni3+Vnja0beaNIVaeIQSM!qD@^_tC2hLGpw52=8l?@u>Wp{gf`|sc4
zw0AK=6EK9g&kvR?+g^q-VWO+v#`}!X7pdi;>)$O!k+KZ<VcbuEb}hwAsd`~zG$;gT
zRXfhq&NX>u31h&YGPYe`on;BrBE0rY6oUt;F(RkGT13R~4p3tRhhWz$-s<A3MGx?n
z3<AmXnV`RXyAQmHTwLY*E8^(pM9GCR*~^szs|;OQhJd?_1{fPZ%M9O|U}De!hbkKj
zlW<*FyzpKItP5Z~rNDJbdLe@8vA)bT;!c5~1RcW&He&jwvbc;r{?9qe+x2xul7G3w
zg^#h0iwS(=d2sp0a%KEi&S3C=`~+B46*#VU`Tpw6*!w6BI8BHBW4QiTH|lI&%&VU?
zLZyUt^vLiN(G&3({QO79V`}}n81CPa)FeeDBwF4MKN&-gAt?qq{t@sXX$+tg0PfE8
zW8cpozMUwG5#|YSF_qTg?k_Gb0=8)rFu@s-z12i}`v=>7j9@6BaYa?@RqZE9*CxAb
z7}!7hr%HK%X^1CqEY6k*^B{G?Ec06O=6tEib4S#5IWhz9P5a>R@E)q_?OdbB=(jxo
z!``tXwJf51-x*S@mo&I8%5!ZSU-*w%?wb>b%!dGHA-`281*;NX;dyQT`W^zDae*|v
z#C9KDT+9cWF=Ar&&txGOcV2Rn{CXy<s=8-b^Y;0oux`u!50${7gu7lZ&W^~}RkDP7
z#jWy4u%EwLU0Z`?C{sD0<^SuqTFsh-*IDkjhugAXUcU~WtT5#{q7m~PXudZh0{D+f
zl{L^$$B6j=xB<j1U3eDwD8ZO2)}@GOa?9>o+?|$0^ymihU#lwnbOd~OI{SQw=~Gfi
zYkQ6X)gylN-A3*f*cd&=e=HO2lK1q!@M|&L^);>$<q-4krk9hjI(JcQ45Td9Yyq;j
zmwJ~Jd*OCDx1RGcl@NoG0n-V*OtVUGhWo*#15im|9O1ps=HXp0d;asA;Q##L<;n_|
zqEwu&7_ax`%FY|^_c0QpZ<n8x^zY@@-=%t~`=4L_-`oDLlK<DG{vDbB8$kc_;X-@w
z{36ZyKnWf0Z)uJ7TyBG_<&Y2)qw)Q}ME}Y3575`&ZDcR}#xo=CF`=wExoe2$L+?x)
zhZQVZP<PxXhK;d~^H2J*o>e54F-i9%d5L9|0vk<rKeG@E{LNoA>A&==CjQCqsNn(C
z0EeR0Z`RK+EVSg6?**Fx<OqOu>wA|cT}1x=t8{aXTS@Ux3>t2bKr*)Ox??(jc}ZYT
zc)h8+db4>l)8hP4hPr)x{2%yVq$2snQTGSwAy!K#TC52?V&GzE%M&TH$7%#@$nkTx
z`v~mG=`Ve-{`EN3#3up+W9}u^EEtWfm_EM>s@6<I$6leuJ*G>!m%nWlwKiT%{qdPc
z(_MDP)DeHMdH(t?!TNthfd|t!-L^yYFjrIlO?2Ko8)?gD;5iU6^1jLy&C(dbKwSoi
zvAi7n8~%~*{CwbJ1QAW31?mL-XdYFyKipbBV@UN%fUM92#|7VAJ5}kbZ)dOBsVA;u
z6>q=4g6oD=H~9VP|D{Y|nTh9N!#kI&+wZDA9I9pmv(0(Q-#<A*g2+;zc9R!^aS||e
zt%|GDaxu{tNy5#?8xs-bLE9ruQdcCy7<UNZpJ8`iRsalz&6Tj~&NX~7FUYp;?9-l$
zQ_yNn9pnzFN<?uS<~0p1p<I_B(>IdDU6Yg1alzkYHlKX{izmPa>Z|h4=l6WAZU*z$
z0+QxVaxUo3U&LdRs)QFuW9HDDlI@O<eyZQ3mEzGn6dG#E#(r$`^8Z$hpnO!`%^WJA
zhkVfW&QP|<RXbXE$09JS{PGghnG2hD=s6j0u;C|6cWqzgB0!_JWbk8lcJso`$U!Yf
zoxjHsZ`H_3Ev@K*X|Cj9tF|9g;6-#(&^jr9&~^CEpUrsFi!)P{;rW;SucSqP)`oWu
zf65YD;A=j-13b6Gos5eXLr&(FT8Io#?-J3b&0c)eUld_c&ADhZ5x?YVt-i{cbULxF
zrMIoJ?7C+XFTv00b8?Y(Wy%zJ5Lz7eFD;SX#>+jr^R)PZ*BITbEihd)Kx%{&FzS+p
zf6{Qbp24}|TaM@K8(7qGF2>g4Z<2<yIO^vA9Ap49gUg7z-RdL11N4mNAT0q}EMW5(
z73~~^y25)E!}6Nz!M}Y?d#|3&<(g4%@=(4qcolXVVxhGnp4(I1vD9=yzYjJxHh|}t
z*!Au=woXzDIlORPzF*OE;d^~~f{%|6owWa1>T`3k=C!jpf1fiJh-7fcV95jiT^g>N
zleDw+t{jOb;A~Q&nCVx#7GNrg(p5vBE&gcR|2madbvanEE9TbCNx!v_G0EI>+B!Ou
zuqYAey1^6M@_V{B@AtrHTcUyDZFK3cDo3c@><fP9IF*Qbb@#y{`8u34rM94nZsuSq
zFQa9Z`d&rA@h>%h>(n3|TpRVj4q+32ap9vF090Xt`@g=EvZ$sPzZ~Y|=2n6?2mJ}W
zuE_X^{g2(ZUk0t8-^34>&Rm3Z@8nX%-FW2*Y$PpfBx>eJx}A<3XomSro3@!<q4#Bf
zS+J=7sbS}n7(D1)+~BA4ebaWfG2h}7@ho)_U#+c>R2SHW=S(+$Ag4SE@?x~&xw%O5
z^yBx2&g}K>HeutsIN3yn{S!(Rvp0;BJ5zzk-(k(P5o)bRjkJ6}#PGlxJ3oq<cD+{x
ztJbGWjhj4I`cjA_&p-JPz5XC-aA^s7^{3Hei|Isg?>!m-ymO$$;s$o!YlPn7C_tFW
zX&9KiQaH~ByZGBKQyS`w%*w}FCoZz|ge$}x-V%2Cq^bSsJrXI-Onkj(8srmymO|e?
zh*Oo3dsS@N%(vpG>tqY;bsaX~;mrNo#%5VGm9P_ZxDp1t){nz}AyM545)}~@2dWDn
zvgeP<CKE7BulxL@>bCENng0H*nz2qB7Ns0)^&ns^#|!N>A5b^vIYaH7K9BeQ6kx_F
zUiZ1a2K~8Fz3Ib^F+ba#%Mx<rb5;kI4r~7Ui}>KrRokf&)^CoIROT;q7nu#O7RNWL
z5+66wg)OGCn0M?Bi+duof+9y8Ja^X@50Z*n`ipKI{!T?+V$`LYfGyT+`(tiQRTM4B
zuh|5?D8S2|JHiQ8wZFa5GLpvfUpe(Msq46*w&iK7J^!3jk0mZF%u>A98gSLRAI9S_
z*EsR|t^v>ANUQDy>QB`?p*kbXZ^S@#_((*=$KpHv;@7me8R~Gso31p^nR~wRoY|N6
z>b8@!H|3=$W4uh7PUOqye9yvvk-a(CAK2Pu56AZtnQX13v%O5aW)&-1KJtv=HiT{D
z4|!g6+!I)+zI*8W$9=aez?pE>xG|1Pu~mg9=;qAS*J;TA_|TqZ&O!W`%Q%|3cQYu<
z<Wx<~M?V1A-lVqoJC5>Fs`2`KFK|oS$BgvN#WC<OkrT~+?zKI1bH`kJa`bOfs>XQw
zSuA59HJbS1c(19U_eYC#=^AgoO7GolE7N-8=*bP6UQJIv@!x-S)$aei(&uQ^Z@1yC
znc2dS*q)Kd{<x-E#_&hUiMyNb<y@Z$|DrUM`DdwqRsCcC7x?R3wp6QRAOAwWE8@;I
zbV+%*^^~IGW|yx15?xYT`tF9|c!OVg_)vxJ1+Uxl$A*O236ycI`uk!f#$6+3Rr-7I
zVwFcy$KP(eu}Xaq%FZmOV9gvUv8s{y;}2CC0&n<-k#%sD;1(F$+=DCGcy4*+;ic>Q
zqZ!YeD1e+#rupk%No4MVV+81MoVHgmRo9_?w*Y${Gtz4^1=NtPt*$PY4Z1Ss`EFGE
zci!p#VnoXofH?L)drzDxCwfaH?BJAMIuyI6q2;M{`Sk79RYHHpkG20Gl2<!Sy0=<u
z<`e5Onb8+Hlg-%YhY>{U6jl6N%sPV_bAo*Xe@@lbgm(Qjt)qjKS7~<1ZFF~Ar`pP3
zxRrCw02w%T)<^X(?egtt&jUe{-NZwSj~a_q&AmhAgLB^ex_9Qq-XX4PFmqH*+FL=&
z)A9o))h#qdi|5WXV28EkUYOr&hP+L;uHF3LzJHK8mDT?V_Igpd(1qx~@&Iojkd@}q
z+LJln=*IB-!dVlOnR`}6TlRZpg<)uI9fCbWlFYP5{wDo8l^1Jq+>K|lJ#AKRA4^~k
zl`B-uwqs8@HL%p_i4t3%VTt+>+ALH4QXSo@7J^QcPPCFa`IcIKY+0th7)SqkO&D_t
zu!eHa`(bT3f4c`s3@j|p^-|_W=l8^z?D?Y0GwaIf+f_6jan3nPP8Gs!kLnb#XcPsd
zaVy2#gi<{C6<fkytQevnK*|ufl}%<;DCY(M5LZj7Ut(=9lH15w@?4Y~H~nnE_g%-<
zo8N3JXKF?TEB$j*<2jx;G6J#gw~#%qb$i?2mw7v4#=19#@30(5m0?kN!trOGogCkU
zJjP#xmnbCbl>hup9@0NAvm<@uCF_J$8pfEn3110osSyL;&v}5l1|IVR&kkz1pcqHc
z(`95li(M|s{N(GPl%2IW&32&1rBc=VUZdd_bJ=FEmwMudhlYS|OqGGow*tS*jiR^K
z)+PZS8w*YMGsc=h5C3r{AT{&e?9W6Dy4wFLvya>#)l#`gzNS`%U{9?M9P02S-R#zx
zOvsy6;Z~{`?F@*<Tf-BBoMz7o(Qmd*mSTgHtqGaGHBbWWoLY`issF>+o5w@lw(sMl
zxGSZSB%vZgC`1ucNkXWEYAh|5WSO$>qeap}_9R=jBqrO8ZHy>8W7k+ll5Lo=4a1C?
z`CVgad7k_Ee1Cu3uh;#mX6AZd*SQ?$c^$|3MmY4}UH7rR!B4kBdVS0RyTyjvfn)(|
z_a?{36Sik1u<S4Cs^vSVTA#9s6(XN!NN{8PS?xQ0(!~|toX2M}>>M4NVtIF)t)#=C
zh1q@H6p~q<^~<Oo%}0BX4hno~Aq_Xoll}pnpqTqMn$zAPG{_$GeW$Vhn#BcCkW*dS
zr#g?F^|1ZWNbQ|yiLLe?A8yc5V5v~!M(@L1-EeP}W@KoZ%It1(R^GOs^!(Mlj-GJW
zB=Ox)u)RSVeMiqU!JXMQzr(A#V#55?>Vm^ae)iQNaO?Ruu)_tEgoTEQvrL8aRIS)N
z<`g2Oz^%9pS(HhMtVy5gwyr3OQ94q*jHsJ;gj#TbY@UsqOw)_CRI+_C%yA<OG`PUI
zY<<HZRE(FOKfSJ3ETekZ=!wv%$qwB5h0)mbgIKb)om8pfG0M6OU?Ijo>L8FCZPt_h
z?DIQrY*fvAwYL?2{-cQ=QLBwhf3)NK0!j>6=VOMDbsR}n>wt27$NH<t&kS8mh$DpY
zoH=B5?dfpNd^&pw+OvmV{i@Gt)O=L^$uFo4aq0^u23|miZJPgG9!y~Z&`kV^ya;NR
zS&0$_X^FmljoEQP`@WTMEzIhf7)l9a6p%nTdwTx)N}2OG>ghyRL&FOn6*aX`2$uam
zXy1ks=o5L^HxvOghZ$E^4Um%N#qnkPU|PWm2)`MnQ3G#(wqB#n8m)T$#|WI6%1=Q{
z8cqa^GQK2k;tE|x?+CvkbOO{k9<#6*$HE%nVQlHmJC(^3j!TA#jv&Hk!evh6(hMN<
zd>^lgZ@KViBBM`0%TRX?wB=rUCWL-dIK>M1mkrVEKc3#7Eq-g`4>XSpx(S5gq0iap
zNUnpu)h|><tVcLl!DK=JR7@CvYv!9CMq5CaTC~g7y?wZTw?h=ZwS+o3bZ%aEbD(NM
zi_!JU#@H7%T2sqG?G*4J03Of3vD`&0{DH-I^UAd_JbEIbq@^aidD%NB(!fcO`b_)6
zn|J&(_VYwyi;cfK<L4GRU$42OaS>HA30tPvf@MqJ$9^t$HEup#+Vk4{c)8fSCnf<b
zoTOvVMUDJ|W#A`Tl%4&yMP4D$DNUXV{8g%mJ}K>JvD<i;hr6M#_v|f~X*N2#L3WH}
zB&TQA7Jyl|<-#v(r0<E)Q>N_MHoZrG$UqAK{_}dr2AiJ!$TD#(8rd-G9(j_5`N;$g
z_@KKr8u7Erz|We7Vb<YChVi}m%tn!-sGjtos){T9Y^+EWE$JyZVy3^2TX7#cl`<vp
zom{~#eyQ|{;bL3p%AV&8k504dyTdA2>DlKN9@GM6SG2{Vh$DW$tec*Jbz}lCvgA%_
z$ntXZqu4!HVLqqfeX1qS`v+B>8NYd+<$otRxDy>(p<b{Ab|sj9Q&87EDL6=kQ8Q0y
z$$>vJc^XR{qlDeajcs7`9^7>{2jOsHzMP!HRPwbS2@RLfU&Qi2FwyH@-;uwd3Cf5Q
ziJ><B?D=|Lx|4SU%N5E;W$t<yvG7vH7yLa;Sm6|p+XTd|?&A$bvGTKdH>GZ|p-!0$
zE!95?q1J1$D)R_@tMufy>j!cz9_5Y=n{ym6ugq8)TmFU&{MEb<3kA$#>>nQoOy>&^
z#zj6CM?oHLPy}FYmitKa(Z7%2!yq_<#W)!HZs*a5V3uOgxymbF{8tjMM@Ig^KKi#{
z5oW{0vHs&8#AGh`4~4uqrp+sVB>+*u{<vIN-E>rh&}i581Rrv94zDO(VH(O4zmHvf
z4>u_ER&!-)Ync-*#1wU#mK3gHRXq?6D(%1v<lqW0a4=shJ<Vg%p`@YCUw9S!e*Sxd
zY7jH5qWd~(c1vDvSbSgJRHj9Yw={F>krva}#k*OycTI|zY2i6J5*0Zj=jWFWz8cJk
zJR-ab#tzVq9g1}%9ozTg*xR~<V3uXSA-r57JOve24189?yDWElG~RPIL{PKz{!Bxa
zFN`sO;$hCp5r@0wT0CBR39K|vz(c4adU6Io6|GyEv3m}w<GYb~VoWB^#{WU^nuV~S
zlJZREF~5mo2Tbl=EYSPV!4^|-$NXx@U>*g<1`eC&Lc~v(o!_Px0J`aMC%F`<+*3^n
zr30x32z3|w?La&o7wy5hn^mBV2;4}#y|(PsiBk#tp4x+EPIImEsoPjK-SfrXtoF~8
zN#cXmsx<1mzzy=QW2I6o1aRe+0!i$j19G6P{~gqVfBOz7l=IJ8VmPhZ8qu6*|8gMl
z)7u=ETSnZ8nXOP2(76!eMGRbF{DKt*+a3$1#jSUl+1p&BP|nsZ{vQVRXV?G#wEfjf
zhwr=Yu$e`IaM!*6?7ZDYC6`B|A3e6D&!mg41n{*B4FC1Jm+uGS**R6j|8#-hJ<=2Y
zz|)?RqnZ@TPgQ@hJ01xU0(tw7E07U3@acWPw@p;n$FrY<U8>AH!-`4==bzBlpDw)F
ztqq)yWAp<#3g5AHKg;2g1kc)hUHzu;1IIf4x(Si`k4FdLZEo$0Sg9O%%Bd8T%bzQT
z*8TbhaQai+N7zD_A07Ok*YiE*d@PJ4mGhsMA}mZ93WDjDzI`gv|Mu))JZiJiznSCO
z<q+^jU>$4+mREc(->*v$M6Z4zI?NO~acCMeaPZze*%gIAU*^I9-H|Ya?(45NE!Tp^
zUuU|y$zX>b*!bHW)Sd+GHPd{j^tX41Fk#K+)N(()JD|o#Y;-tD>UX&^5<PTB=kW7l
zz~NxY!+b1_A0=H}+jk@fxSq=W*L~mH`lKiT5LP2oDAbNXu`No5(g!wUz_dOvfU^$p
zfW@_QW1fYr`3K9b*Dj;jz_mHcqC7cwr=FjOdg5aXD5J{^etcreznNBI_?lq=dryw2
zDKgqI2*#k6xE~8V1M@4hC1!%ng1v?w>9@$95(|E{_8pR{%@Y3{SoH=F+S$&o1^Hvs
zO<CR{vO2=vU{YScUq=)e(CO3vK`ji|jj`j~q~|Z^dxIIEJm~=huMN3T(kFvNAOAXi
zp;6xTp{yId)hn^zr~my`uXCnYaafs-Fs->Ehb2k8D**OGXVk!)FaFE+9e;T0ueE`J
zxGakXPI2g~8fsU(%^)CHGQp8I#J<?hkGEMnWMI7=m()*hD+0&ym-U{LBo!4*ofJIk
z`~3@8^HWo0VXFZ({?*@-Nlo^7xX+1o2?+8Bh+Y2YVPj^*Z62J3;wzua1-lOh9FUIt
zw3dpzvRnW_B1T!PTr_bFYJ6P#1~$hB%XW;;6gtBSPa4X{#VEbkJ>nY=24!1fa1e$M
z;LB)P9RD+BrMmC?=fF-7lK$&Koq>jj1Spp=$|IvfEy;3w|4f~&s@v9Y-voB~FW1ny
zkIf1g!F^<1S%dMn;FGM;y0}T8G}SUae&tu%BX3=Q`f<hoeCF|M(^C(CAIZa-fI7+<
z7=Z~^IJztO@ZR6?c}(b^hySqBK<~OOtXK<z(&HMxEp<;E@10-Xxbb3Y=%XFOFDuca
zUZVk(e19D7ug|hBWLLt_%F3@vN6@|8&+?$|dHmrTQfQ9T+me=Vf&aAhoy&V`6of<U
zzBN$uYz^py;UDaKdT}Myuz>`yjRkv!)?wMYzAW31<{?^RoVnXTjpi1_Ccqpx5P8*$
z>*2mL|L(?N-i|USu}^aQ!LWy#IP<#$|NNOR*Y@#GpDi5eT<}zipqDZ6MHBrGjmI`?
z{p)#y6twDeAXP^Eh=+=f;Cd(AZ%$tzVL0p$%I>|tX4;qk<*?lgG`<Ubf3rN^x0)~x
zB2Aq7y)zai>i3vsy%Ur$FksLUQ=xXBANbXowFmvSmAvs`4eKWSUk+`u>?RG^$y|Y0
zKA=H-KxD1*9vWkv6=?-bJS-cim-+EaeX~vj+I#n}Ee`mdYc+NKX%E)^v1k=KER6Ny
zvTT_zs_{0$!uQVCN-lE2tHUPhjpl=TwSECUm%?m()qppGVO9jYh(8SjR`@$V|G7Ep
zy(Pd4OJLu!-OtvKgJ{%XU8J>3KNUP8I(|aD^3YmZ`QHiZo?fY4p0u#~Jvu=ntlu0k
zJiy~v6HbKD%P2@QN!%m>Hwfk*<SnTv)cvX=CVmCw|90(@l*`15A2F=i#Xhc+Et+w+
zh{t^{J9XO|zpZafKnFg!Wc(*I833{AZ)lSIF=D;Zur}5Y4Oghu`*ig2T3}`servel
zui$?BpXt3u>MSudt@_=drS-Kpo|QxWQvYwPkljIkz#EoENWeJNMzF?~JXWGzlGS!U
zXyj%yJl5ax{|8CzH6n@JjcTWWK{m0<nqn=!0Qv?Wek(tzKsj^!_#fu*3q<^34oTYU
zCg_<MY9QjWqn|n8GFsL<&X3dg-{F?|H$VXDj^AKtcQ@GP%`iL&;Ez2ai6=fOw>Zy<
za<PWBdXMD!jK7Oi&4cUg(RjKR0YIs<0*8L*0ag+^$#GJ+DB5QzOROq0K2~{B2v`tH
zCON5YLmzp_%d}M7^lKmdfUFk19dde`(kihe1i~n6$oo`&oMSXMbsE<F&++@nAYL5e
zG|t5tAs8CV0ov)FAVso3f_DrB=#~JNdYt}JI=8>>4+J&`9CP~I()!bPN&$HkM18UX
zJ782LH#kr2gIld1{TL9i!FG7OGfQDI86>0R`o;%efh@@nXyYgQU0fzxzOuX$1Y~sV
z+giWzZNGzRJAgu?Tc{f!HhX|&tU%n0$D<<iE!>uHHVMZj*<G5*<b1_hK;Vg?Tmmkt
zGwOf^!wPQV6GR0j54xjgvd590a9Q0^lNvwiU-_}%lgDtMvb_j51y!g4e>m#N3OTrh
zcWM9t?hLjvNKi-n(Y<h#kpy_WVA6x&Yo?~{6Yh;~js<Ng%}l--&n^r>zm27h!lF{@
z!sxr=GmfrbtsoI!04|voJ94^kKMq#6u`mI3YO?@8Aspm{vtj16TTDhf{JGJvGNSk(
zz_Mo!sJ#zRr$QHCi+C`%AWTZP!XBS|`Ip^QyeX!PzH?EYEOv~I=G=C+|IFonU6R*9
z214#CTF?J0;H)V*bmu$v6{m)a`DedscOR^JSsfyxtf$5fV3SiAo339h4Yo)7$r6~c
zAl3^B4!Ha4;NEAP5>mnC7OO;UxX25jw~#Sb7y}?7Uc?7~1htPhkB1}q`sz}+6YW4w
z9wl7ebxN;TWzVp{_bM>P-UFN&5%bsuL?8aF-WZSPyUv|n3Clks7rq4XwzahZ&R&YK
zd*VonjD2^$tzW#2|D#bw|E;={9Faa>O9@e|>>5PAalsMHyYE3<r)p$@a8~Ys9o+th
z6#)BTyx#IEbISU=pLn^;o>K;5>f1nB`n#e4b%1MIn%>OVlP!X+@bL}B#BVvb6%-U&
zWj8T1dH@L8RGkYxhf1Y9c=l&~7}W~L=C${Gucw}3p4c`k4kD9(Mb6<k&Sox2-$a6?
z!69I<=wC_owba(1I<|Z0r5jXIE!kL2m47Wtenh_Z;<ijx-0~asj=ugC2upVuhCKKf
zk=9a+G&~-qCn>-d4#;1Bbp$R?OKl|^>$Htp_DJrnPmAF8*N*=0n&ha_-Wnj8`!7iP
zXF-Da(tdlNbgJ!dAoj<mt*!H=K2m6<3j3?Ll;K1CI0Z{p{QcMeRivdo<0!iPhV%cb
z(AIwB|G62JD`@@i8vBRQ-qEb(y;}Y2|LWLWxxddur|thNS=V;_^tykmpiOQOj=lo>
zsDg7_h01@mQ?8Ug<3RuQ*UL!yzpdiG;K#PO-!Ne9M_705-~#`zht!_dIeAM>-4~Eu
zPjhpd$Di<>Z^%&iL2hLRC#cbeae2?>>EwzrLy4bEPKDzZb<Ttd+-)1|#0l5Cl>^~C
zFvx-yc4Da!hF*GZ5l`b!NWiOLZdk9o8{VpT&R&(+KA})fmN=#RpJlI<`B&YR?e8CR
z-?S?9yv~{ZT%sxd`qe%0@qV)tW4ty72@y9Z#@ZyJpCFp<7+FVcAN{Os0PCetyR5hR
zF>0f;eLSiWy#+)O#^+fGJtG}Imow?Z3@oD~EofCx=3rMkV~~JxokJl@tNi&2bZz$-
z6~r0a)-Eq5uN6w&t@8NXUp4mhsF5jGMwNg-YWJngC6lT&`MrEIZexw(@^j=LN#QmL
z-gAvwNFru@(L}w#i$u>vG6$JUz5UdNCm6T6JovPz!3BEvn+ywPXM3uFf$vmNMo8)L
zxt2!5Xool|Q4dx$5s<-ynaWG>@tU=RZH?O4ekj!zG{J{P4g8}(i8SZ>Pvf(Ru0;Fd
zqAvfn%q#v?diwp`LPOAJzSpVyGjzp?Cp_H-Ljz!CON2f_9zVi#7Xv~eF@_?sJ|pGR
z%zM~|5VN@n9-q<aSvWl>qu&%V2knocet&K#f|s9bAsR-b6<vpP4W+G{N_?nGe6dXy
zIg2MfeZNk$5A~$W!fgr3J+g%)RcN8r_BpU^V&xsl5ccl<{}CfnJPrz@g%eb~=R3mF
zQH_`!$Nr`0^brKJ^MOT)dp%}J4$JIk+-NiKy<5rSW7!Awb8c);#a^HfS4}P!6!d!y
z6<C-q_O>HnuZ!(x+n<eP@IljL69h_MN1Y~6Oy_?rMx#COL-ObQ)C+F)v>tc0&G#aG
z)w0IVW~3uujz@h3Ep|B3&Z1-_-djKZq^<ZtsHth`Y?Eq&7eR8iOz0d=^e6<v43P7=
z3CI8|SL&rV)7-A;wCzR{^DpLM*`8<5OO#t`|4084I9&R|9G4qY#N81-3CAxfbg9n;
zhxm=lMEiLYT5Zz(25}kvOHJ*8N*8=B2ivV;(=54*$^BXIfn=<YH?{@t)>D<CYw=2Q
zM8@n@=*{sPKfM;CW{vHs@%84%;a{IWnjUZPlt%hsp8=n-AMBCsnNo{(h>!&5L!M1A
z#n20GUPcrZov7_aI`-Yg^Vs7{PpGyuok-gF$q`fUSarxdrQdhzGgl)m8yt@)GS2Pp
zyuf$uF$4c5&@yEi(T_j7em`0=7usQEN9Led1K&G??ON&Sva#2^%1ARrLusU(nRU^v
zde3N#2jkhx5ybA3_bENGcxsQ_$zsYJb8Z%zre0`8aEdX!J#1<pSNtP2RWAE=)OG??
z*4uBJpjCrc*$a0oQ`!JOoDptdFL<~7gNa<<iz^B$wLIt)M`CwDvc-VC5_{QPCzL|$
zvFY#jy<p&v4tVNj-j;2k)Asr)G||Fm`fFt%PptCBO%#yVo+wGuH#V~fPGwt@q^wF#
z^RW<NzAxfI(l6}rBhurG*Amz@mC4-Cm9DxbH=;-<Ba%iu<*BAQn)o_@SHd%*p$SPH
z{<UFIq;CNkqE2Z<BP^B{$1-?i8<8&Ct;eD?H=^C|*Dvb!cOTe%Vp1OcS~U3^@zJG;
z&Qt;Q;zhLtFKe&&kn7=%bj9TGpUrVsJ6xOQ#mXzv$jM^mIE!t?GO4x~&aMN2&u`W_
zf!3RcRky?QOZJXOgb8$~fQUB&?os9;9HvOYE1`V`a(i#=_<Q{yQ9`mW^`bGy;rEyW
zp3&$+#UG_ks3po$NZAy>`V1L09L#8Sh)t92pzY9mjW9*J+#K;)e8z1QE&JVGq05<5
z<6G)|qLwmq!nI$3ia<KzOK~NNQZQxvZ{PJ@+D^)uMIh?O0eI1i4T#=CC@|i?xfe(d
zqS<=5?nI&|yL+S>-}Z5vT7NQ0aSeCbm{i}6>+Q%s5X+|P_)(XaWFD){k$aS6U*Twe
zC;hP_^5Yeo=74%9OJd+wq1^sf#J3@D&F;jAw4=9r1b74%ZE-B>ie%TRH@=)#OCAP+
znC1w~kqGB3v{!!5f-!5^h?UnRd+(<UJ_7R(Eej<@TT&(ENu~BwnmU#ICY62M8diRN
zxAlGz968=VO^uA{$=LWI*0bBPVc5)Z{<WU}(6|z@9pz?As&KeIDyu~6jKk4K>n#{F
zCK#%bvQ~#fGcl(&y&=Xs^?I83#!rX$Q#O6NfbA3W9hdpiqn~84QRZ~LM9D$<mZ+pg
z?>Q)b#~YAeL8=<OspWTIXwP{N8cMS8FL%vL0K|qOQ&k>+h#+$E0Yr;>KVZZnM5gQr
zG5^|kGgVM#@26sZ69@S*t4O7u{Mo{dpJJPeluvkX-tJiZnttUQpJzhd^)fmU*6&N{
zD?Z>Z6NEDIF3J>tM~eEU=HzJ-znS;@f_|-?J36Z2yLsXK<vTDz)@sCuc8#W<P7w9m
zl5!7WsAGM{G1L9g`rW(pz^$%D;Kj(?zQpBB(OuS6-u$brvz*A?0wW#soy+g?9%(Ef
z-%3uoOWJT*uG(2aMcLC?q1^s1LBG~ql`mH@_GYoJImQotA%d9CuSv8oK6k>|`}xcr
zW7{Ink0>o!clWb5*S*a(#P4_<%{G2!;-JOK(tvi+Kw538oFh%@_<^odD?U4n^in?W
z|KKP%aZ=>vw#obpILC{cZV>c6f9;*WptQ-4?c+JBA6=5;IE-VvYB$FQ*;XC0z3QkQ
z6~<<h_t}1(J%45|x1n|6V6f`X0w24M4@SA0u0_jUGxu2h@bi_|jGJ;*WTTl3EQFjT
zs~4%~FRI!Rxc*!0=bb-()}T3C0n+%rPb78an<~+@+lzKKfE%Q&HT;|5!DleARl4ua
zh<}ImeaBn2;T^p@l@GEDPjC7ZcWt;m9X`jZYb^Qj{E@N>%3S&v{L$#yFzlE0$8!xy
zc0i-xklS@?6{(Tz(`;f6CFy<!r62xRhvTFdpZm%oe2|QC3Rl){5aaWi$f@p~sMp;N
zbgD|u&a;)hrTSg(b&)U&kAV&JXDMHR^HAc|yeBHluO*#TKFU5Xe-$PQtfL~1ps{YE
zZ=D0DA@Aq|F5x4zZA95CI<?%54s(tGR^JBq!hN_43GxqmSvwBDsO0MU=+xl9*o0fT
zR8UMjvA4(FS)zFCUFl1)@-xwi7G0(K_->aLx+2Z^e1+s@_|H%+mv^#DWi*m=*P+>O
zFQ<`>k+0dtt!zr@VQ=chaVYa*>0HAfss~}<RU8kwX~7~8$NBvOU!pF{YdAyEg1+bd
zMPC+QoEMK!+HDo`n0UTVKUv}2;kQQt!U48HG!hT)+VY`>l+M5PNYLNQ6kbYxbK*YU
zO1`dP>(vBLd(!AvU5-vY{F3G+oWBv55&o%;gxAJc<x`<An&`$#&^GRiHTDP$qu7TK
ztaVVX!$4C>p?x}2)hv40>X94Y0YxXB3;sh{LKd5FS8Da0-L)hL4fuala}8(aCahf!
zv(H-}*>Lnk%2axKdShoo8(E>;yi&QPn;~{K_DNQcPEUj~NV_`c+Hb6za9dZ$%Dn9!
zuve|P;9C(D0wLrmb#P-o;`Zo60hX;=8vE2JlYWf%Hs~L0F=hm503!3WRQxT1sN8UM
zpt7E?<!n0)7DugVXxCEG_x-t;!K2QM;!&F(@eX0MK`q`=4Y0J?>cQk4u^{D6rz3ow
zcu|Mn`AO<k#-6UC%ZLr`R%nLGQl16gSrE8^80dMO&k&<M3f(H5`V*bfL^HZ`9K7a%
zWMKA&XIwokBn9MHYlN*groXl)4ViL!Or|eRZ_|f>I=4r68$f)6Xm7^Z&z?Rvxba>e
zgvUsBMpekE<5DGShBvtB2NulCG=VIdAp8#S8kErn4VDTryO;|S@rywr@R2?f1Wi!H
zV%E^amxjU2w4_sn=<XIvO(EG=-AT`9`t1)xBfc2O$P7RsZbRJ`OK}}?SS|yTQ%0BH
zR6S;>mWN6Uzgr1wF~f+Xo^)-uZ5aY_5g64=HiC2&8}A)AZW>a_4?NuV7opz12;60@
z>!@kVBB&xX-s`Xe3+q<Uh*aS2{S+DZg__`?o_xq2*}*t@g;*8nVHb+J+?_xD)ME<*
zIpZz}+R-a;Arg%ksiJ#ZU|^Hu@Zz1-laZ3N;4CjITk5!kKE!wQrIB-WZ_MVwvZAiZ
zKIe&SlVFI`_l1g#HtW7q4q)YC;^ou77H(dNIvPX|Qohi>{TnFydxIR`jJ#AG8lUmH
zdGmCe^}tJcS8fT*2Y`Yyz2nB@-7ul6-q1+Bc}q@j&FjkA(c6kI#0g=#jV!fV!vx1$
zAD47lxBA<^P>uZ*%ik@T6e}a$A>cBQyZ0I`Nh5FqMV5A3G!K=M2|vH?hOW8g^QJyd
z8q_~#u-Dyr(t}4vNl|TR^aZ%d<5yR1DO}DCeqIA9&CiIPBbRd>?(M|A8T+s_l5|&D
zU92R^zUMJ$?Mi=KievFF0F2KOX7(AVM+q_q3o@B_3Cto20iAVMFCtBvqK08`!gNB3
zTVH?KydZWmf!SCRzYvpIHqa;%vKdk^uhx}KA2aw!<5%__kMvYI+%B7H`{J8hRb}v!
zrN5EKR}DoP_ouEYhYPph?>wKcW^vM|20{0_r5RV%vu*#9$8#Cub}E|T=R7leZfh0G
z+mPOyqy?Uf!VA}ud-YmT_%o%%oz%$Y9r-@F&;z^<0t9GM|4h{P))N{uJIs)SrJG=G
z=0AMF%IOVJedpa>gS2dR0yH^Q6jT*S<m~ts&yFmpD7DZhMEXcY>L{7JotE;?I!T2c
zBxFlwaGH1Qxc)o>YGD6-8*+~ghV*RdWJKTQYltq)SaGj-qG1Fyp)sX_v;IRpBjsSP
z%%#g8+;otSU4?rJq)_{xH=lcwW}~}L-7LcFO2Cg}r4@Dkp5X5N!`z9eRIXX4K@H&C
zOBJnyZX)<n@{dZvbah2vJXeB;2Wb>i=GxW{_i9Oi2#Z85D(lmSpI{cJ3)-|kzzF^l
zE4!+p<ridf@@yNH&8EAoYW=(fDRqYsqQ;JPW~62M?bd^HqO?w-gpFp`9cM%jWQ68Q
z&!|Th_|SU#k<8vVCA%oDkCk&HHt6^|qr}`lPV5S<*=m69l`k`#={7?gR47c=5Yp@R
zEOnUrw!ff+j%#dA%F8}bvIW0{d-U4-;>Q}oj*zB9;9AO8=!_97kemc@Z#=2lYe;Du
zYNiH?ShR#hB5dH$P<|w%aMr^D+nN^IcLSz*X1F11Kt7$;ZAT+HmHM4Bae%%pD^Rde
zF0aehEE_NA?QN`)c{c&QcHK?zvR}@#=nEN|Mwu0R@XpJ7XVQ?tr|{sLlItQeLmDZA
zzIqf*jy8d)%+f{7FxHNYXvZFT*Nh9(!y(mC8TD2_sTEi=$`?iW`pvBR)e80?DyM51
zoxgbg_H`S=<7ow2Uos}iYERkApb3MC-MZC<DiJv+UIgEsU<1{_{q(p-`V}q}+|TN`
zA6o<>4>xX|>^%sy$L8Y2$;zs+*)2lrhFdSa8QOXPt>#ozBHBAA1(Un%RtJ4}ue$II
z|2uD~QU@^oZ(nb2f$la^)QICFX!p#VDydMz=H6xr_sO%Cu5LX)R;=<$;F0aCSnk6Z
z=Vo~QE2*DCcUE?@Fo7^$vA$NX0v#|CHnUgp`8TWv$xn0ssQX~w7B}dtu6IKvj<to}
z1Jj*9_-x-lMr+n~52o(HEnM9AIE^RgJ?OQ17)4@uSi~U27tzka*=UBZJ|s%qTuH%o
z(Ku*UwnwGlR$J@qxn!u{lxPUtn^a&?M*NzgtK5Ae?`Cw~PTl9-rDR0BX^t;Jv<*Vb
zuu%$UO9m+^`O3P(m2v|03|s;|#<Slzz&j3P|JhjPz9?~hYxpfKvzdzE9+zhEYkH3A
z)?5*!PguVXgGu&fKeq<uUJJih4VQnEc5^1nDATxB%F?XZ(sN*o5Al3g-|lGTTo+I8
z6qu`R-PXz6&C~Na_tGuv^I`|KM56;N178>A+q(`Fug{ws`GWdvmH{nw9Qa9!dy3HC
zDI9kRuwKbFz*klZuD53b7B3*pJ!R_c)Nvn-ULP)U_zd-U+LYFTmF@4l;+{FtfRmY4
zQt#Q-EAYgzC3jojm7(lQmb%ALy%Y9HmtWfZykCE&E%54<0^rCW>iW4@BpMcko&J9J
zg8o}~9GTUkU_9gRpXrIkT1;2859ylNgN?N7YDCZLq8#27lQm(ChlM^p?L%_4JN)L0
zZF=6a*;QZh7(PV<ea$aO=cR>dE@6)wV;@VLtY}((jp`f|%1h2iljuQ05=Ai~LX&l0
z?4Q}$)YGq2yWzIysUB2!3GZ^VjxkJNbnsJ8CQ&p~>l+$#OQ$pI`$S=ry?xtp0Uq9$
z3IS3DuaCPrI(n^aROWMd$(G_>I44>~T=s^r688gTD!MlHYAVS9kx63N42+fESIu&N
zLROzwYv`0-_2f)rN4{1Z`RSoPPT0Wx;%PUcqh3_!h>RG8vIjQkx=|$-Frp8#&(}3a
z$_(^6<!#;=dDmx9({ba|333v@Q6$K|A7&`*Ao~)0Ill>B>n^mXo?M(9lDF^6b*UWS
zQ%#fYSw!~x&Br>=^7kW)Cj940`C>66xq5~oUZhE%nVueV!7^Zq>1I#PPxR|bx(=U;
z1)COuOg1@rAujfDs72*+7z{F=mk7w$xajC5dYgajps@GEQTLC-bHc6HibMt7?W2W8
z#_njFgwn5!?s34Rtm5q#w<ZC=Rr8+z7Wg3VjA%_wO>3X1`(~n+n`qwVAS|Lcu1-(g
z>dC;9df}3Ll)xt+dmXmPn;~bLlQiZTHUqo#4{dmcXyOy;=aB$ew@K-KU*aAts6O<L
zgh$nPN>57TTihXY-JwG=r~B`2IovB8^3g0fLrI!uMxUK4GBQ!FRk{EhM4uxF6l+!s
zo<}}*u5WDGCDpM|1yzA6-FHn7DSY2zbhXl(#ZNm1;W)WF<jvJR*Ze5P8Zl0b4W7|k
zIO9z0V~g#Fi6Xw%jlC@vd+wG?9i1C^2_FwPXyW$%S~WiS)1j_>9X+B|@dxTuiOI>2
z^C3&C9hTE{?E_;r<mM8MnBE|Kq2ciTz+?Dt`mAc;=&RBKp*J+!`K(t1iHDa$wS-%O
zil=C#60BKr!{Eyh=jtz^p{X<(x$5u-AML|@GfTd^)!-zj<HAt5#@&vE9|Hz`rBOcv
zpgKi8`z$wxQPruV$&Tz^ngkhRq$x!$zxYeC!ZUJ|aE!y5)!xpP&MkE<5w~)*aN$`d
z`0de%5{0wfaYF@iD4B>Xef;nkRKRT*xnaoh6KZ-|#J4JnZA4b5Q&_H}1)h`Jre)Fo
z^mnFRcF-L4*C_IZI0mJ6oAcCY-;Hu94!xKIB4$c-UlCugQTFlH=OOl9*z|b3e7pa#
z_M7bB65*T}`+T;?RVQk1n~rq}ufDzHL4|zKR0F#CMxp$Taj#W><__u$gctSKZLP87
z%(^1qGmgN>CKM+h6yO_6KcITDmC+oRtvl;=zGTz(J=?UNSm1@n%*R_T4XqSoN>o)^
z1QRoB^lQ8FVvp9{!+o^gmn-0y^V9KBGhb~3$ch!)9c@dXeAnV)u4A|8jmfCFq`Ek<
zHVE|IwZ&YGbgCL3SUod-ZI7;VxQ2A|Ot`C-qucq_OZ0$QNm*m(h3NJw`&g&UOxbH8
zxn>W2>dRijN~e^*(MgA7RND1|>^E+PDg1!-J&FYHG}`er;sQ={%-$%dYwE5v9L1u_
zng?lptY)>SCyVR{TL(QsZ%tXrY)`s=*0<J*^~YQF&L<r3ed(lnaqLk_Wn}y%gP*O{
zo@Sq#Cv_l^#206tZ_(>IIO+nE*_|Gd7OJX2;tQEqfcAruD!es;Ee>2C<+;b`d96g6
zq2NuA8#h{Q+hO1zAg+7n32&%DfDr7?{Ci&48_6Pk!&j1s`HFGKm{=#&XJ}!`w8~er
z0M*&!yf+3M&mGb*Ch2H^7nMCYU%LvjX6pKHu7WJkX6?92t=6=>a`(1v1TLFB)2%M4
z>5_V@V>?alvg#hxq_d4N(r~_MFaE83Y}wYVrtvZ>WN+5j-6@JMC%BWOg^4z9iDMv%
zyoazC%b-)e^IQ`JuMB!}7J8Q|@`XQLp=5Q?xTl65B@v#*%w{)x^J8C{MxTq(9c(w=
za`hP3E)vWdXR+nrSV12ORAjKX_$4m~T;mPb0o>OQHH2Qxq-&t4E7?Ge?O#gk%+|J?
z->(qWr~?p*o-ur#%T@3y1)K46%I^=9Kn}$g7k>^K?lXP4ajko{nu1v810R#C8-+)6
zW{ku@cMZ7;BEH>WWZ0<c9YdGg`SR8o^};f}2vzot`&yYJ6PX^%=4}#|RYRCShH@wa
zl<u){Di&6DqUaGMk7uI<lGU~RGAFT2sHEuFDi^Pq-dJq!eqM3?U#yE|Gcm->Ewytg
z>$7Uw?+Fqh9&q2pLZ^RF4!^YMQN7V2B3TgI`J(+T8#YLy+;NAr!ng5S-1={NE=E4C
z73OKf;_o;?B<~dfs-3y7a(<UWzOO&JY%9Fo32c4gzinj+@RWsrT}NL}xLx$K31_iT
z*$8oNq>3=6lrfY?cIkfO85#ZEN9F{vdcIR%GkEF`Igj7?a-#5wGmd<SX<ys=T!-u9
z{OR6{X&;<;Z|J$OZU{gwG@svePd4u5-a<)9JyAuCpL=S|-1`n1y$fhaQ>JrI{RHj5
zYJezuapJ{-SN>@56fmAi*5Vl8)}zeLrw`x7Sopd)UgkOq=~br5VLmO2&>6E}ec=#t
z(lHqQWe3=;pJ2E2%!-F(Fw@@%YFdoxEcqLe`#-+0Le(7VT#5v<HAaLNq0h!r;fu4m
zde#k63Z^+`oF5^S3<;F6;*EkBho#z{X8K950m^Cy0&jGbxY;T~cAflE^%`vE0*2$Q
z_m;<SuH%kQG~UG90Hs?ZHxfCGSfn{a6XkytWq*-E5MPdU40h?ieWUK<GncIaFP$!z
zz~oGtFkC21y0ZfFCshlRM=7vaY^_2qQBh4a1G_XoXL>tKEzhNTFfct`z1WwK>o8(g
zW=nYX`J2mE<gAIkz>90jaxaY$KH$%y)BL>au@)tMG`mXE?U9zP=r<p_OdQ;#a39}B
z5{<6K;P4%Lb^NVXvxA%dfOz>#Cv>9wCNuST+?GLB%G&s;#++k6yRd!_l{aw~JkC;4
zkoE+49!lG0uGeRO8HLBe>|Ei56So=O!}&}7H^RbplJdC~cuGA9FTn}zy|&QZNw?^o
znvoEWp`qZVbNr6@srYf_r7zW(Sq%|JClpQ`$YADs5gy4u>r<TDFYr~LM|eZ8iYvIY
zF#*?iNh5Gl_gv2t^exe`)D!fr9$h#34EpjFBG~L6N-31o*IH-28JD8my=Uoaeb<3m
zDtH-0k}t?Xa}HZ(4FYH5A8qRnyc+7IE9c{Q<^sT4fA+%l_RKmTw&DC4z<u2S=za?o
z2ikFMFxjuTHi_Q*6Xij9Hk89}aYx+ApT~+I9(PAzaQcwN;!G3VWp*>aDeX&$*>t<b
zQcbuaW}2A6EF6}>6gU!;JDE!oU9gzwA+|X{7Z`J>{<WAq(3U?3jQR^s{QX}>J-EbY
z82I7Q{>&Gbv31Q(j0s#<Q@q)$+VuXD&V(;P3c4oFy}Bwf+b3G*;<~W$eeN@4_pNda
z+=Ly<XC#uxcYMgA*nQHVPtkoKJ)zs@XJHJ_dp(`DL!}$K^X$5^5peqWupX3;<f>D9
zC4jO1jt<z5j{O(Tf-uM8;~#Z>RKD=X^~ef=;U#zp+u1{`8x{5=W55IkoOyYra%p1$
z92efL^>Z(;-L3;ZL)$yR_ErRlEFJKYg8tg)A18Jtu8<zukgR_Mnk9hlcVpu5THAK%
z*~SRgHM?hDGOIPkS)KxV+2E?3wLHP%(=NY>XXZf})u&kOh@auG<-&(e9H_<q^Gf}K
z8fPv*6%svLSNM{D>jI|tZoareuozh3VE^l4z!R|I@o%>8zfmi|9rh|g@V5wqmCjce
zY1y;-3x6>@#NuzW*8$szvsYcAq_ckGMO-tqed+@cD+O5`eE?R^36}mpsqept6@a?&
z-%Rtb(nsfZ*Zlblf05o}zc?R01=3)0xI^FyL!U(+&*5ETyiZGuv-XEYQ2(DwfVG1M
zOq?~w>mQ;PkArE#9Dn`7UmAdLkKhf505QcSm-w4<f5h#~ssKRD@9TQj{(#N-n~3{w
zq>9yJ`uhPv#l1p(`TYxkef|dz$MP%<=+Jf5%uP)dC)v4yL^$o!^GP5Mx_4MNot=DI
zN94T<j&~DFlmO~@6BzY92a8!N+6`D?<{uV<g;c@3FdHnXA7jxSVCgmNdkT`kp4P^u
zBA3H+B_OWq@w16&pZ1PrHHZ6LS_n|T0ufr!oR|a|WzOamVA#;q^oAuK5jkyD-I&Ry
zvL&&nm3FG5qyF^ebwCXm72?U^@<-w~1k&>oK=nFp#P#Xy<&ucdga%u4*YkB(qx3mO
zkzdp=y3RRWw8W5=AA&2#S>e&B1>S9;A>YAu*$(A#4lqdUgg-QvEuyuf<(}n4{{6vo
zxN+8KGs>yJQYs<yG8zoEg5hmm8K(f1#}3i!iCg3BuPx<nPK?NQ+Y?G}l{gJl)S?*=
zW7fNXX=<e@WtY(?haPKjtCde&PT__4QprFHo1e{b5s>|2V`3ziG^*p4wqJ4UFWr>5
zx-n+xy<$T*%!gW@m!FFM1|d$fhK?2C+vm7rKCcN<2@?|&i61zoY8R^V!`Wi0O9`)5
zNLjoAfRsfTO01xFm$=J8HoUtn48}cFh+r(0W;bcF+AIPs1dH4OVc~LDP}zSDN=$q%
z_x9!vzTic`I&0FM;4u1O&l|`k^uTmgmHXmO8}{BQ1V|bB=9E7o9Uy*ZllYIk%f^#0
zaj_I2D$}X6f@UXQg@O>ZD0*kWJbjIo<#pm|@YWj5w(~1$Ix`i_rH}_N{*&M3KIgP8
zy2#)31$!$C?aRN@gH*Dk!<K1Bo2q>z4|3dSU5zw3ZD5#MLqh`?l8~Lc-lgizF*_E^
z@6)Fn1h4pC3p$s7y$=kb8(Chu$lpt^@zb7HJtUkM8}BotZP+z?&-pA%H?D1@gpkjF
z2d3FIX@k(Sv_1ciNQ>UP6X#1GxjZs5(&(Kit^fA;(L2-}qzH58^60d?gv2nz5O$0I
zBBg=HFBxez2<V7i6?1KOxGBR$m0WghK&Jd7l<!teO4yX?zUE4Mn0&K<Q#y%uh+gU{
z<+?5hJ~C6R#oF42g_c^j4#2vWnb;<^eU*{=pn}lX5vxuBBWhC4tI2*GN><IiM|db`
zV|Bv|yk9<z=j{>02X3I_xb|e$4WpLJD)emgt<NSvN1ly0{gc-(X(Cr-Dc*~vUI5Au
zOlcv|v9O4)`s=R)aNgeMw&xOyofmU7Ih<XJ#lG`8@jkR<q%dZ~OX-jJV@3?{Rt?9?
zdDtA&W!kkaGyWSG$TL}Jo%z4Mp{H~Ii_=~M5fzPx?>wp?G%A#{B!h}bi=#lB!vs@L
zSlS4hvQUR4-lIL(kbf7p7mz|B^pd<C<e583EQ=Z!UQT$&aNaJLiuuPZv;BT1l4Vqm
zw%2})S7W#{ZUmB#C};T^LDszjoI>S}{p~U=$yA0Pq9|sA!^NxU60bHbp=F_BbwELB
z1R&m`z&z0~ocX=MkK7tvlU^D>0QI=B+6G$&>k!rsvw8yFG^2MehuJ1V1d7>iDOh9m
zDZ3QKEr0{7P-~ld+w;!wYqD4v*&IWCb)mscUKvbx7&A`^UxZ>H()$sOHf&*Ff?Pa%
z_A@#?IQCj|Vg<oWYiLqxS$Pg@%EUP2Agx10?khbuxQ>l%fnR)P`Bg>JbiSFfnfd)-
z<4e~%@c#9vh^rPHMBsZ;fY8=5ye!~-Wo`v#2$tgSFQkx#!>9~Kw@IJ=IqF-HLa*T{
ziLK-It>_wi>UMt@mR2JA(Sec#^W*zjC!A6U^f}LbdzD=jo|9df3$rD7x1lJ^QU*&O
zL`Xm7yD5|MG!kR7d^k4#sdj$#d~ID2q|3E)=V1)PggAOF*1k&?8ivQrj5$EO+jLcq
z@U<584A>jIRrjUZfdLh2lwRkVpV|r=vjCJ{Uh|BNfB&qv96htd;wX&Mo!gIDZNnfY
zkV3m!2hNKxwP93g7~km<0R;B}BCmkj*}z9hARKV2K2A&F*RKJyOa=C^UTp>h4JE_H
zxY%nXpZR08;Vd0f0yT~(&kQlmd%2l&_n&rU;~yZF-)b1EY=boi!|B1J>r*L^>&y>6
zV$8^3ypPg?3y?81#8Mj@8~eP*vuN|al%h8Uc3obEgenggfTLNbjA4$2xcN*PL3=G4
z8DntIMLFNQ<LM%*hkWZ(c_!da6hUNo=;wDm11|)Gwu)c((uIK+?k-n73a#e4*>>>Q
z65v_#r>K!e-o3Hc7?pHyIJrAZUQ=%W`E-d{@=sV=^ZjF)pS)(d@3DfECgJ`~8980A
zyV~wVp(YR<x`2oQGu`1kVv#e{WMk0-&fDjM$XIg4VCmBMOD$y>zSL=`E(=;seZ8fR
znsS~68hZZ`*xs!r^Vmfm^%1g!%tVgnl_A5YsqdzfD?gtFz!Koo$6&riFU8lsUL*_h
z5tfRfN+;mwmEn|B(MOO;cMul(?>BbB7m6m$w?#<~dcJvNK>`k>^>GQkEKt-Fx-ug*
zp7TN-ve@_t;?vk!FWfCR*zRtsFnhbp!JB3T#e?%k6YFI7m+&7;qwW(R%vKU>_7&V5
zepTeY01pZp-6g-<mynT8PR>b!ChP=otQ*<3!@-a9sv5?9tR)CeOZR5ExQje|nh=9B
zFB(dRyO)ra<mtdk3&IzHL(Xqb=y7GHB@a$mnz|f+eP>y57|5Ea<$d=n8M{Q%9j1Se
zFJumeSg>X`Glva^e`5N-%@?B|Xv#5zM{Kvsu@6U=2upp$iyAYQr;YVt*+i}#cLn1?
z<;r|Blri6{QZYqRx0{*MkjblR-lkP)aN-kUGy_FvX~daBafqd<0%*FiJ!3Wt!6bjr
za-qnl`{**HZ(l=W)76pCgoFfU1%KJp_eVT$c$!*He{h0C@|HWG`ot|FV6|E*&mx0b
zRpkyJ?)4mrqw>LAVoMZ@=d^*hpM$B&v^UxKqxFX;@uh=839lF1m3jQeaEr5Y{WGCl
z6y_wL_#3D*XZmTCLj3)V+=kh4IC4@Aqb!ZCd#x(KzhaUi@WAFmaz)UqqhTopUbQAQ
z-?YzZ!I>d$e*M+RlPHQFCAbKvfw5@SVq@fBYgcQ+RJ~dMPGeX+yFM$cUr%5!1FyQH
z>pq#Oz+(@~rARY}<VYYaK>cPhL^>G5RKrGgFmYG}XheGEhe&U38;y(938E?Uz^yFi
zt#r3>FvOyfc(ow8E8&D|`CV0C`i6G8-j&g_0_kPbRjq1K)J}%Zp6h$o3>c_7;$Hl$
zWYTR=%%3($x_d$|RT`c<;tf%njgn4--<+C!r7I!Ip(WQPWFRs4ZpEr^leSffvjV<=
zE8^f+IuoxziH|jJjlISixB~H*Yjrpbac`UG$?lz*g-?ay8)kSQsBtYspBHxX>|jxh
zrmC!8(Rkjk+_W=;l_i>irfC=-H5>VIHf)+vUTx!NIrd>P|H+Gs;LM}c)hIkCYW$7V
z<zaVk(5|UI&Cf?Qx($)8wv889y;D77W@;M2=o4}omVN2yyBbqMdi95EDkKFY8FN7Y
zU*F}B7x#jEq;>X!nL53P$B(lArb%Dii|1RpctHn{6&EJ0qnL}%C4N7sL?*Vxow?ZA
zg`s?iu_$!tvf>e15X30ZFg^oApM{*;fD8s+En&@|o6H9jt#|49FAim6K}5e7i2<(=
z2O9s3M>^`4)y#n!5a@3P=(dcx68x*2F=Zs05haaWqDQI@VN_1irww2U*K^2SpK`lw
zgx{PHPhUUwqmj1f4ocR{VO~p*=;@Gt*u|PyjZR9>)wtk09(-C<H+k8KZ+}6y>C5<V
z9`C6=d^o=4(swRWKgCxBy64zk9?`{5<dZXJyk1XW_~oDIS7`=53IYToPtN0)NR5ZR
zGG`%Ii)Oj9<BOKCJl|A@{l<b*(@%iMc5pvA`=%*_P!^-<#iOkg&@*rd)pN-aBZe4)
zE;)6v2XuHpt?P%fy0A2X8v=LgK3$&d2;Dz6=`-HUn&2=JZ+bn0+y|l7X2EGZ=3#zI
zVCWMyJ~qm{#wCVW0rAi-Tfp>9&+z!(8m6fuhXAS?FFV$<byGpCTlI65hkMD3{l|WI
zv>zVYTa_Gs5Zs32-LAin!?JnDH88zs^~|YGGx>WFA(o{J6vn;k5=e=eSD3q>Q>JB6
zYwZP*<NISi`HY)j<R#=7O(GMorhn{K`48v3KZI{Mz-UZp@CCWXZ{f{^kh3mFdhc`e
zTwlXGA%0Bn+_jr?B!ZsE@)(gUEE^O|Zf8kW{N|DpnDl7NFN-9>C`RA>#hM#rp{|Cd
zM^HCL!^^yx`APbKJF^q++Z*3a%VXezza8^JIksdOJc~#JrR(i9@C0D0;UvZ@gYwi}
zzMqmK16c@4g;Yo&<O-)#sifW9Nh|K9=lYN9a~3~bXVR4<<jewE;_5}Tm$Qg(PSZki
zJ>a~i2&tA=tF8b!jIA7h=5?5Lj!-oDgfy_h=uMf*V7|w)gkG4xb0!xkvB~R3EGQkA
zy9)-)`g&FlVUj!OB#UDa)9*_i2??iLY4_|g6ZoibBP2BB@QVMu)Mxy2y|7F2pkadO
z=Jb^QSBl?CMO@^g)m**{C48eQC^zZw47$n7pDG1XRjSw0=)EH?pmk#+$F)ocJc(~S
z3_`ar#EICM?k2b8F=Hkj$rzPD5gwJn2L=_G1X3zwk5n5_qG2(`-XZv-%1>giEevf1
z7FJl-Z@{{PZErt)5Rofv;W4|FvNZwjGM)`E2o3~LgC|+7WA!}=3^N5KzSc(}M9-50
zZsSz9)L9d*)YvE#QZCBCVFZeV@+YOP9Ka=q9^0Ub9DAMG_UduPUAwTQv?n->7hS2=
z8wMmnKvX`TYBOTx@;(8)2;$JAuhSMZqhD#R9z-_v#nI1TAY~`UwM}=L73kgwXupOp
zK9^&Hvj@j;$vtq`%@nu@s8GBk>iU7oS?}44JDcr1CBvvX>+JDw)x3eK*p~&z`VvS-
zC$aJLE(^RUy%6msI>ILKDVTWRld>=$?ox88ks}tY-K1#M&yy>VZNfw!&a0kkRX~c^
zI#4>27VS3z9lliq-hzC-il&S`SpEaN_0^PmiUDSI39jO!4;o;W#K757prz$G&J_FU
z4eKc&6fFWUnF_I!tCXNv@1j?}8(fsZju+<N9*8b6m;8u7$?=wT6$vgvuGU<g1^Bjp
zv-W+tqH#WfSabTzR7l&0glDW7ig0GF@K|+fe;0hCcG(YlfJWk$<vvmfPD7zu_IeSS
zvd(f}A;A2t;pZp!`v&*af?0(R5~vd&(R`X^2P$>w|D0m!nyv(1M6twK)+y+y{mtNA
zdq0NrnU#&IehYiTsi0bzpp~7ZC^W%5<<r9Sv85T|(QMD{-$=nCW0SXrvOVuj1y$~U
zf;!D7Nv(Fe;Dm|5bzA{>XJl~BPT$}Z$Rd276Y4swHhw_k>Lkw@HiuWOiXNOE4diuT
zI-2}FAMh$#`3n(2ASH4iILH+he4a7xw`t!cR@3kMep4{sz}xv5cht{00D|X4dEQK1
zN?QuYPEwQXkc8BAIX4|oSLw=|^{<-)`?v;jQqs0cd0Nda)Kp}2<W=`!3`C1aJbt%^
zpE*OII#tpdSAAvZg~|%e!T^-9&RGV|2?mahDfZTjcR}1nxzy+T;9I{CEprt(&Vz9<
zo}3>4%wu_31sh9q4BnWrh_2@GbZ?-~@VnRB1CH5SFgTqC%3Z4D#e@oi+O45U)?|s7
zM1k+7{mzT67WZHAhfV94G)+do{s;Uf3EB2k3BvJqTnkb}4hb0TxS=ADC<RIxBcTcp
zR!P8`w-A$+QpO5330*ZHc&hc#Cga)^uUd<<SMB}{UUJmHw~Y8PQ{DSNk@r6DD&la6
zVr_5X7QeYNG{mj1Re^uzjXvjl&=Q6j1zt>AJ$9A|5FJI+IyKqjL1xXS$!i?$Z@CBV
z*1TP&gKf+QJ&(T7x;Y25fGdMY1}m<stI(adg0NiZ&BZI0YCFY!Pq(?2Epi!en{GtM
z49S?>tKPfE_$pc&u_SbkRmZbnboco5Tqch;$`2@DLGNJ>aQ$|7H!Tz_34GrMp8EPS
zrj?!^tKO<3F%N+|jv+do6*lj=^80J76WBS$FD>^bVhTY&vmK~qD4#UW%e}n}3U*fE
z3o<O2JQ5Db@w;E2mDGC#{t-)v1>|JgSnY-O+^*h+hgE#PAm4I>;S>aj`2J|G$^rvg
zo4W#HV7f3z*>aypAqg~U-y5$qp>;u^UmkN34*HURw>Z7O?N0%$+xx##0c#Ac)$iZ<
zJ!IjjBLL*9J|F5;YTdYJkqi`-!)pEyPBSfzl#Puju!N8z+{NW7dl4usTY|c8cPW?3
z*-VsYxCBFTc{*%+`%6LPt%MV7{a~WMZMU|6!)?$o99V7`234qEoCEWkY!ZBppZ_zO
za?Gytb#c6w^$`SXvZZ$Db|QFd0(g%@R)>&(fghb}V&U7tYQ{DGYR0h?l3_88nfO;X
zJ6Nr%4I5mrc(k{k8MbY;OC#pk$wg?!f~_v^=+J-Ew5>+-dMGQ3x%>dq(?!ukeH;8Q
z7lQ^8>u;9(XJU7yE(Yo&4?8-nyQsqh4wd>MZTS-~?mSRo4HwALW7D~*$W7j4tH~-B
zkG|VLU}@@`|Lg0)-m`)KM)_7oCSEcGpU<_rZ^!F@`Hw$leI88jVM8gg9|~wW(kz|A
z$Lh%}zg7Vp%_$SrEh-xO_*Z_cC5XcnG{ht1*JMp64AkZ#788YIm0^A?Jy2|(O;@&=
zH&%`E_M~TPshlksWoJ*Ri-e*aj~TXkKpzGV2z;M@rF2|}H@kPNEgdsofY1&+LNzXM
z=(?VHaKqQ*`&l-+D$Fe`$Pj;Xs=NJC_`r4N?_exO-}SzQuV23g3VXe8|L4W}!X6LK
zZwCwd^e*)xlP9>X;Nc(S7IQK_M$U*v+haj>HD3jWm{LS{dv)bo7&$E5Y@$WxO^EY-
zKx~aTvvLj&!Y#;@qfjB5rePDpSI|8;@0%)^O4FI9a;N%7YRP32*M&m~>Pu6VfJR#c
zq+O}AMJqa@^w~lVL)FfRon%tUWR$3tL~*jLfRktCH8TWp3%Lyp;GG~?hLff1=7n>Y
z0P(J}DXo|EwePfmF`>(<mQ@QmYLoP9&!V<jQUQx2JFf`(bk{A#iJ3jmk&=|Nhqu@i
zT9gq~ONxjlqe}damH|Bqz3+NO_`9bn-$upid0B-UXI(d{<ymj+>zcUJ@6hrjvlgxV
zrFSPDZ+F+zk-r}++PnQOPD8Y`t#X@gjguDP))%3MJtJdD;Y9~-<5Yf%zj{+$cb53k
z{*45&Y5t5OFS75W&!yb6sv)W~&NPBOtpkN8Ot_S&&2-bUDSSioQEpsAU!%*&2N9dM
zI0StX{FvFip&JjSak-~ApD`mUKIxImLMwSkbTj4<@IIwYs7Oyed5W^6cU44?Q&rBE
z&&cgJW0QKCdxtaBo;c`HW!z=(N}DO;Nv>l%2S@?>(`BmEY}=wD40UWr_iW``XpOL0
zF1<!5_1l?kDjIGE8XG$H;kZ}Y+=|rN+HtFtIUU1%vlp*~)2FH{OdYi@%Af{$iyH$3
zuMNz<$UQ`47x5)uLcI$79>4L)_jo<&B(2Z!oR-QGRLUiAsc~TJOrC9$&=Jo{Q3pnA
zzn2gq&Jpvz&5ZP{bbkCLlGx=CejgLt6KuIr<)1b^C*{g)-CYN6AA|Mu%4{S?po~Z+
zmbWK7cFKHFC>Mr$7kJrGQ(Swp8qCA<W$I(I2X{F*c1yVyJM7C<iIv2Oms-_Fc~7EE
zOzx(aC=~YcNupd!I5u93CJL0AA8<$JmJBzEPB^&;BSfZlW%uqtqV-6@J(Vd3dJvo2
zyWF@3cLh9kF{Ent6yco0<LVf0V?^7O#64eD9OfJ%!*TP@R=ug`)_RybQbZ9RA(fwQ
zxZGF0G%<~~fS#lh1kr7i_d}QTLczoNyZa9QB!%iX$OsGw%ZK<K_4azzh0|+{g1-MY
z-nkqLI!=GMGp`dsJb|XdpwFO-k;n{tLnoSSk8od;p+}rEvIqxWQ|EY_Qgh3pt<%V3
zbAGHtiG{oF8Py?~FZ5?UuE_x@UB?i`R-?lB&Z`+j3ox8L^}hC_*5U8Q6BXi;7Vgz-
zNn^;N?)cNY4n4}p;jY0_yQve;4)?LSm;RhTQ-rx%YX>Y(MX_gFNmR++5;c{+gJ18I
zZ1)^*66n8=u+YIV&SQR-MdI?E+a#0DG^6TvJw>G_J#0nk?O*9w=$y+(;_NWxa&N}g
zwid-vVCi=)7_}Mi_5ZbZ?cq?aUH?ImB&D50MZ1txMk!6$4kZbZc7>AD4iPgWg^)4r
zV(+$2${`~)l|#;Q8q8p}Lt>)InK2_mNk+~&)wdq8_jFy~AK&|3`+fg<{S!U+`Ce;1
z>$%sue?Q#H-~=Yzc^c16Z^pkfkkEnP!uE32aGrb*{u<4vvuV}by0B_ScE8+;oyFsy
zHK)PN`1G63G4UGpO`gs+SFOG}yT}CuYhej)c&1m0B%!3WcT-1hlH1dyr4#*yTCEKq
zeG1q1;f?8)c{V*nr8;klxQuv!M-R2p+NKpQ__UkYwI~*m*OPff+eno&2CbyZ^+BiF
z$Z;K96WmU!f!HHc&%_p6PugPV!$Up+-QKPsB~mAEHupIjAE7<@QN^0j*eW+M6(2ru
zYt)o$<Cu7L>0UdgV9iwRSRwa;OY<)!>>uYX1G*Y3O|XBek)3_h8q~<VnXDL}0Qy)+
zUL{8^U{8B<mZKeZz-yvZC#w|mC%eA%&NIS*KQ1xjXqWvlpLn|hzqNO#IphoKR!-Y&
zRwa%2T-p@JHK~l33vUYY9Zm4IPNc=&8zz(3S#e>7X)keN!LiwNPd3d|${B0mk{y#A
zdMD)m>|>hLoQ&WA`T$eU*_&fwrG4YbxG6d2nAc>6rJIgvwfls}@fJmcGgOvJOD)9h
zF(+u-EC-h}b<cK>ZD_T0TN_KoL~-Q(<jA;k+ibdct(R4tSeRfHrrH)fc}09soP9O^
zQS63eOL&qWg)cHiSBDqlmg<GieRe7-E3-G@rkj0UsF8zVDb4d}$9N7$irw!z5{kzA
zAN38l$uFPCrQM25ZSXi%sv6FH&?del;(A~|(X>S+Ow9!g!a#V&HF2*1;3~r{iAmMw
z4;6C0u+NBO-7qcLn1eq<TkaO4RYonD#c8*UX&qn_6>4fQM)?CTILmyQ!Fd+GZdx&!
zMZZy%3bcE05$wr}xOF(V*ni?@x00D2HFkqx$^_igiwZCi*D%KQwVlmbS#YBQW3na`
zmo~iGI0Q9lw&c{VXO;5jt&-^)A8fSk>bwim8j0Orw3{ps?jMrAs<itaiONou1NXC>
z*cyHN;t1CU^KJ0g*y{(Qx{sbnqGkIC2c&Xh$6Q#=+y@~`P4sX}-(E#s*yQ8{lj-mS
zo4+<jCe5bOeS%`MZnXDncw{Jx@0n=cMkvIbnpTfZR4#G-P%2VZI#^fqsmVQb^DbLE
zc3Ed}UJs={Si6FAlA0myBg&Nz&MQ|v6vnZqaaq#mu`g}RpSFzQ(okfpri7u94?#!U
zJ1MuvdE*Z^;1vw@hL(9oK1ggA?r}DH>`8}Hokhx;w=Nwy8GYYr?2C4EI&=N96*ED(
zN2J_i;<lN%ct)k#ujEzPVi}iiPlhq48`5jF*}b*9%hP)>%G$&gy!)z?j<uMht(XRR
zwaMy_A5&EqX<BO~&JL*4z)qZ9Av$-~eq7^mL{qIAxzy%JSGsf5-GSb#+f>=N+?7+9
z&mOjITxu58JnosF!5Ii|me3hxL2%bY50l;6%zHelF!9Dk!t$xpXxeSf_*K4VJeyO*
zE`-*`?6nW*k=o)jn_~%BDxU83pZ&xWRr17_a^gHPB6^5ov*oTbxVOvYEi~tKGx<Oc
z*)6{{IO^3BHKXd9;9aIwU&!&ysJ>FBqsOp9hVv2iD>SFsKRhcP3k7<wR81Q0)F$U-
z_wCD?Fb+u&^L697(_-_iyX)gsO=-bDcgv?9tg`lruD+Q$Am}`;+%xyGQ=*5||Bw-5
zQbjzky<^l2b?eHidX`%)j6zXs2*2dU9UFCj-UjgZ0h91R%BQkZ9M?6dJGkF$0Qfud
z`ka_uO`DK-$X8%({T4s|Wj|Y7k%6oK7hOmM+(?SmLgT0l8aXyI@(PZ??_m*({aWH9
z$u=_D0tMen<Ny}UfgJrFh`)pX{sKr2fUgTBHVeOwK?A%a2{tY+E)cMF<RW_@n*&8&
zb^H2dR*|8f8)pWQ<0^We)bmS-WEJuxMW=J<ZKZwS*zplz2Fa-;J3G5q9K}O74#_@d
zNjWJZA%6<;AqZOCK<0+x16`k)V@2cb6P5wE^4>ry&|U%Py!XtHORVd<QFbnr6>VZO
z#6&XTTfzsD6ne!;uV0V|K(}BkCo|BR{jM+ZA<xNQg0e;Z2X2mAJ&4iEY0RC=cQ1_9
z$yV2rjrHw~4FJ2w#pOBONKo=kh@2kr)PWo^As0!~aL&p!8)`b6`n)Rhu(>yQj`5Yq
zo3Prw2eEr}bU2eQEygbpiNvuFjlk*<HXC7g#4a?!j?j|X`65h#F8|Jb)>JEys2X8^
zF#40J#R)}58pSR1SXbv7B!gKj_4CKx)fumnrgOtf)&*<X=>ZMda0iesytsX^sRfr6
zvlfdFpN%j-{r;Rml%463gBovu1WzpK558I~_da3gA2tNO0qFg18-%pt|3eUXdENB*
z06W(`%1;O}dva8ewMT2?1tHPxZ?wHXG$bESDgIocRy^4o<06Ud`psNa|LyzVS+a@@
z(%?1a2iBUO;0ApCAwg0vOGUtSo!m+-xTtLH(or1PR<ad8CcxUJrG(sgqOdOtZmV|0
zQz!0m14%Z4$gbb#TiT(>VEDGO15UMn5TdADFhSNB8C|`(K|pxf;JCarbqbNun{QzP
zS}@I`PUPn|iZJfIp6?E5)UEFX1l$URMz61ml_WiXz4FmrxQ*O0po4({Y?q&JGkv4L
zfsP8o;JI@t5~LlJ`FYBSZl6m3^sT3-Yv-$%L3QW2Ranj><Kb-U!)OVFB0Ap+21XY7
zC{%>C<-h-d?$p0;J%$QD+u#c-=z=7vxy_PvIJ8UB!9f;89Csjb5#^jB<DM%Bk2*je
zwp~Z13Al(~qdNyMH#xHCR)!&`9|Msd69flA_TT<j|3X-2U0(Rzj9!W$)e2yjDUFA^
z0{;8wKffBlZ8{1d&F~LG0q|)7^p_$aa6*c*^Yio1yn4_mq%G_}=0C_Sn)3JeCpW+K
z3+#TeGO!4^LUrl7#F_kt9F(SUlL+F9B0asAHV(w%+AegJi;l?aHv+LJ7T=zaWA7f3
zM_2%9gRs;9uzeH~$^3*U^2+A-FAi5JLpqbbJ4lLtiAPK3pL9WsM4%y!u|h~q0H#YK
zYN7-#iz()4?R|4iEUUgeL`f6S7el!kOSW$ofk7L>pl3^WG8h*>onD3Htbj?4iosdV
zTR?w8RQJz4rL2>YXj`-J@QN3Lupo2>V}f+U>mqu)7g~fj{dW2PTX$n<bp7bo1m%rR
zM{5o|**(*;XrZ^AjIprtI{Min(YA&vba)G+pzA6!JYP2<lweqKioHyD^KXk}5K<&a
zI*ABJMN_wtvWi<~3$y)6=+t^ihkUdwe+3NROopL~5W@1BpUhnO&(B1WlfOg5Q^99Q
z{RV=|fGG5@siPIj3~hu+QXA1u9WCsj3j{fNlfOLwf_MVFKqp$3ze2vN`@$fXRij-X
z`pmg4ffHb~d{^Zr#C5}*SU@I_gy?oSp8URoG){bBkbC{0iU8uO$zT5a<=h|;5()#H
zpVeH2&c}RmkO5sFh^o=tX2bHM<=4k7tTP;aqYIA?a6xd;3a4^376vKY169D<^vvzc
zeEA`MaYA<r0|T6&)m(*;&^+Pq_7*{M*3FCGTzR4gSkk$5p5NU6tS~%;%%}sB%xk|7
z0^(3<muxoY>36d38Hl0#RfZHS9!cP&f5SL^xwZkEiN6=x3@Dy*A!+OkH;0P?SmN(<
zARWi=)*2SS6z?6bf>=W!;D?S7CEH8--UAThFI-SEi3Pd*4aK;2<Q`gXOi~ixO|a1T
zZfU9kTktb)ZQkLoj&QQBXIE*A@2BR>v-|i}#|ve0Z9G5HTNC#eu&;#*zbc%?-LuID
zrR=R)L@rN^5<p~tynW6VSfTKmkn2`Pk3KY`kxKr~P*`ma*Fw=#L6_OGSvZ%ia_Z;C
zKAsy9UJWAgx70@@<K^Xt)DBu@$*%2{g239{l91!7{QW1l1D3bx`W6CrS<0P~vP+Op
zqv!cmcf`dyOD)T&R~$j)7Hn0-(+>}IlRt1zS3SnQRK15a(EOIzIO%S^`g`3ehg<@b
zxVI+8aV{OK#J83%TZ4x70GifsXX;X_2yj*WwPBO*w@fD98ke^X4?cFW0tM<UfIJo$
z!V`Pr5Pr4SEes`e%(7nYfM<gxzC4KU>?9;xRISfSR-}p`l-zkuxVS%JCZzx{F5i7Q
zzh5D_TjIoVFJJ5;ehcyGcUX=3=_qfSG{A+rk4q__)_cKREWa+or|OzOsjWJ%=fcmg
z@aw3Ij0C@aF)s3pm=HqZ&MT6G!%yE?xXVNTM0bHZu~=U=j#@PId~L7J^I$&BZqJ5m
zQxP{GonJse3z)+KbF3P_C{|^z5)8|apw<aBw>ozIDg;8&SX1Eic=SXSn8HqeQ#jte
z={{r%zN)&bTr)kiQGmCMf65O${5AFTf-2>F-y1p<rT25>2Ap5)F1sMzL)_u}%Vw1u
z%8UY2YXDt?%b`>}X9}R!_Nv)4F)!Ssjkx%h%)Rg0>3-Q9kI8DFHJb!xEb+)Gj_tuy
z#Oj+Q{`uTB+oPcwe(7-iPt!?eKPuVgP>uV4A{)0E`q_u~g~j*Tn7TBT*Y#j5rJUb2
z^cDWOd!@HkH?e!uc$S#`*Qw@`$r?hn`=ih`zf5k-Q2?8_@X8JFAfJI-XEie3Qykw8
zTt?8@y8hbJ(mjDkf+G_MX&=X(5;p@Ng?LjR_YZmst*~{N1Azm$lHS@k-f!78Y@jX3
zZx$R5?=H#_eL!cey=F@mY3pVceQ}d^K3^MO5xeRHdFultK&;Blq9~U}aCUb-a%YG*
z+ixGGlI1iRxoyPMe(Fx`?W~z{IRU<xpVwi0Y0|ZaPX4W81txlsQcmFMloi-t-&PYr
z)A4zB$FHqX$?lOiP?a6@;yf|Br8~+p7&e?d7@2zF8Bwczc;!C67bkB>(%i3Kr=vgq
zN#x5(GzMU&-Ke6KJz*G)X+3?(Et0BJYJP6jF*B3%tBwV_53(XNS{7MTJK-!VTa5no
z%k<a&pxKNmPI-?qZwb7-zIiHexNfXgV@nqz4@bYMRSM|M?g<*Yh{u~J<oi)#XlLu5
zc4VzmFwNd5n%M%IO|<$-Kac-)%dUvV;|J9TUHS?a#h##6a;}&6Bz|1-Z_tzfuv-4J
z-9<qh1QK>f%Ov#Zgbv+6T7Ld#mVrd<PkujlSfbc@XnfC4=+K(K#Zb0K_RS7u24g?!
zqkXe!vd$LrCL{>_(Y*UDwaWlQ%4teWjh^Ynu&apumihR`JY1#Y^K)!51pGMXU+LV^
z8NWwcae~=f6EooJyn3pFji(LVz;bV^@ajfGd36VwulM|A38K9Fn_~BzE2XO#|9sR~
zP2=4$^4Z#&8lBH?uBcy$qoBbBX(=fleZ;)RR>>G{)zg$>BBWC+)9TtA6Y|x+%K5fG
zlFg;AIFV{b8Ze5qO`UGDU4tO{Qs~=|IXXHTreLJFSYwcxc`c<l*NTMmN>NFP>0er;
zyR9{;$RXvz<KDu;UA`OCD~fO5Qhb6U2@WI|g}0=aV#HmW;2KO^S~PavN9Ssu>nex)
z3YHmmfS^1D7g7AeE@rrF7Km)V^DDkJ%TP~TiP8G8A?7`1KerIDk&C{hQuTe+1ey#e
zmHR%OR4R@nr)I?KQai^WWIYLIV(Ybi4&{j>EMQPUNXNn!S*zEn1x+%^K_3>|z<gC^
z>!OMkRZ<S+U{!7Gsy{%p{-T+6r<!fawiWx883^LA4D}|HKtW<gtNX#a=nTJ57`J@)
z=SS1%<RY<?YTf=SDYO-xT(PtcNuc9%Vro@z*O-B?fpnoYS9_{eofY&TToy(US5ep%
z{l)FSc^ShKeQj_d(GMm6%c#u<|3(Z32|pw|cm<)q{O_Ms@ZkMoXb67v)#g5o`J34E
ftt#bhLc*7?n82_@$%S=+Xjx-J^Zn`j9De;D_t3{S


From 721b655ac4e0e827638ff464542c5d48992e01f4 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 24 Dec 2020 02:38:21 +0200
Subject: [PATCH 118/825] API pages update

1. Add a few missing Gov/performance references.
2. Align "applies to" + "trial" section at the top of the pages.
---
 .../microsoft-defender-atp/add-or-remove-machine-tags.md  | 2 +-
 .../threat-protection/microsoft-defender-atp/alerts.md    | 4 ++--
 .../microsoft-defender-atp/api-microsoft-flow.md          | 2 +-
 .../microsoft-defender-atp/api-power-bi.md                | 2 +-
 .../microsoft-defender-atp/apis-intro.md                  | 5 ++---
 .../collect-investigation-package.md                      | 2 +-
 .../microsoft-defender-atp/create-alert-by-reference.md   | 2 +-
 .../microsoft-defender-atp/delete-ti-indicator-by-id.md   | 2 +-
 .../exposed-apis-full-sample-powershell.md                | 5 +++--
 .../microsoft-defender-atp/exposed-apis-odata-samples.md  | 4 ++--
 .../microsoft-defender-atp/find-machine-info-by-ip.md     | 8 ++++++--
 .../get-alert-related-files-info.md                       | 2 +-
 .../microsoft-defender-atp/get-all-recommendations.md     | 5 +++--
 .../get-all-vulnerabilities-by-machines.md                | 2 ++
 .../microsoft-defender-atp/get-all-vulnerabilities.md     | 5 +++--
 .../microsoft-defender-atp/get-cvekbmap-collection.md     | 8 ++++++--
 .../microsoft-defender-atp/get-device-secure-score.md     | 3 ---
 .../get-discovered-vulnerabilities.md                     | 5 +++--
 .../microsoft-defender-atp/get-domain-related-machines.md | 2 +-
 .../microsoft-defender-atp/get-installed-software.md      | 5 +++--
 .../microsoft-defender-atp/get-ip-related-alerts.md       | 2 +-
 .../microsoft-defender-atp/get-ip-statistics.md           | 2 +-
 .../microsoft-defender-atp/get-kbinfo-collection.md       | 8 ++++++--
 .../microsoft-defender-atp/get-machine-by-id.md           | 2 +-
 .../get-machine-group-exposure-score.md                   | 2 +-
 .../microsoft-defender-atp/get-machine-related-alerts.md  | 2 +-
 .../microsoft-defender-atp/get-machineaction-object.md    | 2 +-
 .../get-machineactions-collection.md                      | 2 +-
 .../get-machinegroups-collection.md                       | 5 +++--
 .../microsoft-defender-atp/get-machines-by-software.md    | 4 ++--
 .../get-machines-by-vulnerability.md                      | 4 ++--
 .../microsoft-defender-atp/get-machines.md                | 2 +-
 .../get-machinesecuritystates-collection.md               | 8 ++++++--
 .../microsoft-defender-atp/get-missing-kbs-software.md    | 2 +-
 .../microsoft-defender-atp/get-package-sas-uri.md         | 2 +-
 .../microsoft-defender-atp/get-recommendation-by-id.md    | 5 +++--
 .../microsoft-defender-atp/get-recommendation-machines.md | 5 +++--
 .../microsoft-defender-atp/get-recommendation-software.md | 5 +++--
 .../get-recommendation-vulnerabilities.md                 | 5 +++--
 .../get-security-recommendations.md                       | 4 ++--
 .../microsoft-defender-atp/get-software-by-id.md          | 4 ++--
 .../get-software-ver-distribution.md                      | 4 ++--
 .../microsoft-defender-atp/get-software.md                | 2 +-
 .../microsoft-defender-atp/get-user-information.md        | 5 +++--
 .../microsoft-defender-atp/get-user-related-alerts.md     | 2 +-
 .../microsoft-defender-atp/get-user-related-machines.md   | 2 +-
 .../microsoft-defender-atp/get-vuln-by-software.md        | 4 ++--
 .../microsoft-defender-atp/get-vulnerability-by-id.md     | 5 +++--
 .../initiate-autoir-investigation.md                      | 2 +-
 .../microsoft-defender-atp/investigation.md               | 2 +-
 .../microsoft-defender-atp/isolate-machine.md             | 2 +-
 .../microsoft-defender-atp/offboard-machine-api.md        | 2 +-
 .../microsoft-defender-atp/onboarding-notification.md     | 5 +++--
 .../microsoft-defender-atp/post-ti-indicator.md           | 4 ++--
 .../microsoft-defender-atp/pull-alerts-using-rest-api.md  | 7 ++-----
 .../microsoft-defender-atp/recommendation.md              | 2 +-
 .../microsoft-defender-atp/restrict-code-execution.md     | 2 +-
 .../microsoft-defender-atp/run-advanced-query-api.md      | 2 +-
 .../run-advanced-query-sample-powershell.md               | 5 +++--
 .../run-advanced-query-sample-python.md                   | 4 ++--
 .../microsoft-defender-atp/run-av-scan.md                 | 2 +-
 .../troubleshoot-onboarding-error-messages.md             | 4 ++--
 62 files changed, 123 insertions(+), 98 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
index bfed28074d..2cb1370de1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index d7949c4065..0668c313a5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md b/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
index 95525bbf97..44003ec0b9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 Automating security procedures is a standard requirement for every modern Security Operations Center. The lack of professional cyber defenders forces SOC to work in the most efficient way and automation is a must. Microsoft Power Automate supports different connectors that were built exactly for that. You can build an end-to-end procedure automation within a few minutes.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
index 32dda775a4..57369b9d50 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md b/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
index c105db89bb..ba3e749a61 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
@@ -22,10 +22,9 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 Defender for Endpoint exposes much of its data and actions through a set of programmatic APIs. Those APIs will enable you to automate workflows and innovate based on Defender for Endpoint capabilities. The API access requires OAuth2.0 authentication. For more information, see [OAuth 2.0 Authorization Code Flow](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-code).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
index 20536ad64b..b3cb7a04fa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
index 05729852d3..eefccc5624 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
index b3c2960440..dfde8bf37e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
index 676e6a5185..8100c26890 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
@@ -22,8 +22,9 @@ ms.date: 09/24/2018
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index 9c0ee43caf..8cea855481 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -22,9 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
index 0d640fa36f..b94742b61d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
@@ -21,9 +21,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
 
 Find a device by internal IP.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
index 95743e8fdc..f95776b987 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
@@ -21,7 +21,7 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender for Endpoint ](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
index b0b573c0e7..a076a373b1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
index 843f4cca7c..8839180405 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
@@ -23,6 +23,8 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
 [!include[Improve request performance](../../includes/improve-request-performance.md)]
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
index 138a8399ab..d899f7c360 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
index 7a5a5aacb3..fb60d09e95 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
@@ -23,9 +23,13 @@ ROBOTS: NOINDEX
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
 
 Retrieves a map of CVE's to KB's and CVE details.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
index bf5679b787..920e2fab04 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
@@ -23,9 +23,6 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->[!NOTE]
->If you are a US Gov customer, please refer to API endpoints listed in [here](gov.md#api). 
-
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
index 9bf4ba7a3d..14425d3b01 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
@@ -21,8 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
index 588bbbb442..8c70e05df5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
@@ -21,7 +21,7 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender for Endpoint(https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
index f686ea7ed2..09233fa7ab 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
index 184d6eb709..b18a482d19 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 839b32dbf4..7492cfa46e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
index e7ac39a93c..b3e1d5574a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
@@ -23,9 +23,13 @@ ROBOTS: NOINDEX
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
 
 Retrieves a collection of KB's and KB details.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index 331dca7bc1..f46e912d8c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
index 437599c09a..e13a900af5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
index 73d13b3564..86de75298d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
index cca2d17971..da012c1b41 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
index 4828b5ec67..ec9d161528 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
index f4c7216ceb..925103b0d1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
@@ -23,8 +23,9 @@ ms.date: 10/07/2018
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
index 042f48719b..8cb9e3c2d3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
index eb8b9da158..bc0c969c79 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
@@ -20,9 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index 725fa8e4b2..6c89d74e65 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
index aba82de482..4f1d4fedec 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
@@ -22,9 +22,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
 
 Retrieves a collection of devices security states.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
index b9b44afb2d..a74bad1490 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
index 17ac22ae88..332e875e6e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
index 857d3458e0..3666ef7955 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
index 9322ad8635..dfec0fb89f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
index d0c62de5ce..c0adaddae0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
index 07d26afe6f..9c06a2df8f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
index a6e9564b8b..1cf2a7793b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
@@ -20,9 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
index e5246656fb..8c13f1d5da 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
index 68faccd755..2bb098203c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
index e6eba350a0..7629b66bff 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
index 184e70576e..d9af8b76ce 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
index 3126731b11..d16cd4cfee 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
index 8956cf7608..88a70fd056 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
index 281e8cdb0b..abb77af560 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
index 5fb7863435..df3bc5a56f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
@@ -20,8 +20,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
index 84ab44bf10..90bd7b9256 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigation.md b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
index 98d5f63bef..d5a2cf97cf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
@@ -25,7 +25,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
index e52dcfca9e..7d5d12f3e4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
index 9dddb35e92..b87d77da37 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
index f405b1996b..452f25222e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
@@ -22,8 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index e5fe251155..ac9c3929ea 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender for Endpoint]https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index bd9ab75684..9587df251a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -22,12 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-
-
->Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-pullalerts-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 >[!Note]
 >- [Microsoft Defender for Endpoint Alert](alerts.md) is composed from one or more detections.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
index d53ac74ba4..6a3c3ce05d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
index 9a05137743..3c91b9c04c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index 6eca5df06d..50b5f9255d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index c22b6113f1..247f300dac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -21,8 +21,9 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index b09ec393cd..7cda7c8cd9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -22,9 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index e1e4afef67..f2d979889c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 **Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
index a6af2f344d..1ecd70b09d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
@@ -22,9 +22,9 @@ ms.topic: troubleshooting
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 >Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troublshootonboarding-abovefoldlink)

From 564127205d603c4af019ebc946d790181464d6b7 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Thu, 24 Dec 2020 15:02:20 +0100
Subject: [PATCH 119/825] Update basic-permissions.md

From issue ticket #8864 (**typo**):
> For more information, see Assign administrator and non-administrator roles to uses with Azure Active Directory.
> (near the bottom of the page)
>
> uses should read users

Thanks to andrePKI for pointing out the typo.

This seemingly simple typo correction escalated somewhat into a format improvement and link update to replace outdated MSDN and TechNet links with current MS Docs links. You want to verify if the new links are the proper ones for this source page, or request the links either to be reverted back to the old ones, in case there is specific information in the old documents not present in the new documents, or suggest more correct links to replace the old ones.

Proposed changes:
- typo correction, "uses" -> users
- typo correction: remove 2 commas from "see, Add, or remove group memberships"
- Connect-MsolService: replace the old MSDN URL with a new one pointing to its current PowerShell docs page
    - old URL: https://msdn.microsoft.com/library/dn194123.aspx
    - new URL: https://docs.microsoft.com/powershell/module/msonline/connect-msolservice
- "Add, or remove group memberships" link text (document title: "Manage Azure AD group and role membership") replaced with "Add or remove group members using Azure Active Directory"
    - old URL: https://technet.microsoft.com/library/321d532e-407d-4e29-a00a-8afbe23008dd#BKMK_ManageGroups (anchor link jump broken by redirection)
    - new URL: https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal

Whitespace & formatting changes:
- remove redundant end-of-line blanks (2 occurrences)
- add editorial blank line after MarkDown H2 and H3 headings (4 occurrences)
- MD syntax highlighting phrase "text" corrected to "PowerShell" (MD code blocks containing PS cmdlets)
- reduce double blank spacing in bullet point list to single space (1 occurrence)
- add MD indent marker compatibility spacing (1 occurrence)

Closes #8864
---
 .../basic-permissions.md                      | 21 +++++++++++--------
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index fed2ad3911..730e666b20 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -13,7 +13,7 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
@@ -26,28 +26,30 @@ ms.topic: article
 - Azure Active Directory
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-basicaccess-abovefoldlink)
+> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-basicaccess-abovefoldlink)
 
-Refer to the instructions below to use basic permissions management. 
+Refer to the instructions below to use basic permissions management.
 
 You can use either of the following solutions:
 - Azure PowerShell
--  Azure portal
+- Azure portal
 
 For granular control over permissions, [switch to role-based access control](rbac.md).
 
 ## Assign user access using Azure PowerShell
+
 You can assign users with one of the following levels of permissions:
 - Full access (Read and Write)
 - Read-only access
 
 ### Before you begin
+
 - Install Azure PowerShell. For more information, see, [How to install and configure Azure PowerShell](https://azure.microsoft.com/documentation/articles/powershell-install-configure/).<br>
 
     > [!NOTE]
     > You need to run the PowerShell cmdlets in an elevated command-line.
 
-- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://msdn.microsoft.com/library/dn194123.aspx).
+- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://docs.microsoft.com/powershell/module/msonline/connect-msolservice).
 
 **Full access** <br>
 Users with full access can log in, view all system information and resolve alerts, submit files for deep analysis, and download the onboarding package.
@@ -61,19 +63,20 @@ Assigning read-only access rights requires adding the users to the "Security Rea
 Use the following steps to assign security roles:
 
 - For **read and write** access, assign users to the security administrator role by using the following command:
-  ```text
+  ```PowerShell
   Add-MsolRoleMember -RoleName "Security Administrator" -RoleMemberEmailAddress "secadmin@Contoso.onmicrosoft.com"
   ```
 - For **read-only** access, assign users to the security reader role by using the following command:
-  ```text
+  ```PowerShell
   Add-MsolRoleMember -RoleName "Security Reader" -RoleMemberEmailAddress "reader@Contoso.onmicrosoft.com"
   ```
 
-For more information, see, [Add, or remove group memberships](https://technet.microsoft.com/library/321d532e-407d-4e29-a00a-8afbe23008dd#BKMK_ManageGroups).
+For more information, see [Add or remove group members using Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-groups-members-azure-portal).
 
 ## Assign user access using the Azure portal
-For more information, see [Assign administrator and non-administrator roles to uses with Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal).
 
+For more information, see [Assign administrator and non-administrator roles to users with Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal).
 
 ## Related topic
+
 - [Manage portal access using RBAC](rbac.md)

From 323600c55844d1a9ab3ae8fa613506593d2e963e Mon Sep 17 00:00:00 2001
From: aviveldan <39082532+aviveldan@users.noreply.github.com>
Date: Thu, 24 Dec 2020 17:22:26 +0200
Subject: [PATCH 120/825] Added response fields descriptions table

---
 .../microsoft-defender-atp/get-ip-statistics.md          | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index b58fd359e9..b3531c3636 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -93,3 +93,12 @@ Content-type: application/json
     "orgLastSeen": "2017-08-29T13:32:59Z"
 }
 ```
+
+
+Name | Description
+:---|:---|:---
+Org prevalence  | the distinct count of devices that opened network connection to this IP.
+Org first seen  | the first connection for this IP in the organization.
+Org last seen  | the last connection for this IP in the organization.
+>[!Note]
+> This statistic information is based on data from the past 30 days. 

From 07fe23266baa7d1a1fc0eb4c8e663b0846e2201e Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sat, 26 Dec 2020 20:41:57 +0500
Subject: [PATCH 121/825] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md             | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index a7990f4bca..5185a99f15 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -84,11 +84,10 @@ See the [Download and unpackage](#download-and-unpackage-the-latest-updates) sec
 Now you can get started on downloading and installing new updates. We’ve created a sample PowerShell script for you below. This script is the easiest way to download new updates and get them ready for your VMs. You should then set the script to run at a certain time on the management machine by using a scheduled task (or, if you’re familiar with using PowerShell scripts in Azure, Intune, or SCCM, you could also use those scripts).
 
 ```PowerShell
-$vdmpathbase = 'c:\wdav-update\{00000000-0000-0000-0000-'
+$vdmpathbase = "$env:systemdrive\wdav-update\{00000000-0000-0000-0000-"
 $vdmpathtime = Get-Date -format "yMMddHHmmss"
 $vdmpath = $vdmpathbase + $vdmpathtime + '}'
 $vdmpackage = $vdmpath + '\mpam-fe.exe'
-$args = @("/x")
 
 New-Item -ItemType Directory -Force -Path $vdmpath | Out-Null
 

From b33b63572691a3e4ba36999d9bf2e09886415185 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sat, 26 Dec 2020 22:54:30 +0500
Subject: [PATCH 122/825] Update deploy-enterprise-licenses.md

---
 windows/deployment/deploy-enterprise-licenses.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index e43658fdb5..7c7c2b7d4e 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -34,7 +34,7 @@ This topic describes how to deploy Windows 10 Enterprise E3 or E5 licenses with
 To determine if the computer has a firmware-embedded activation key, type the following command at an elevated Windows PowerShell prompt
 
 ```
-(Get-WmiObject -query ‘select * from SoftwareLicensingService’).OA3xOriginalProductKey
+(Get-CimInstance -query ‘select * from SoftwareLicensingService’).OA3xOriginalProductKey
 ```
 
 If the device has a firmware-embedded activation key, it will be displayed in the output. If the output is blank, the device does not have a firmware embedded activation key. Most OEM-provided devices designed to run Windows 8 or later will have a firmware-embedded key.

From 25ba72713bdd83ba9ed30c7b4a8357049729ab52 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Sun, 27 Dec 2020 23:05:41 +0500
Subject: [PATCH 123/825] Only applies to Enterprise addition

As suggested by the user, the DG readiness is only applied to the enterprise edition of Windows 10. Added this info

Problem:  https://github.com/MicrosoftDocs/windows-itpro-docs/issues/7901
---
 .../identity-protection/credential-guard/dg-readiness-tool.md  | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
index e609c9469d..134a134372 100644
--- a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
+++ b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
@@ -17,6 +17,9 @@ ms.reviewer:
 
 # Windows Defender Device Guard and Windows Defender Credential Guard hardware readiness tool
 
+**Applies to**
+-   Windows 10 Enterprise Edition
+
 ```powershell
 # Script to find out if a machine is Device Guard compliant.
 # The script requires a driver verifier present on the system.

From 6d4fd807f25c240c109a7f5e7391b8aa773b0f65 Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Sun, 27 Dec 2020 20:32:52 +0200
Subject: [PATCH 124/825] add note about AMD processors

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8514
---
 .../system-guard-secure-launch-and-smm-protection.md           | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index c141b00025..4a2dd888c5 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -91,3 +91,6 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic
 |Modern/Connected Standby|Platforms must support Modern/Connected Standby.|
 |Platform firmware|Platform firmware must carry all code required to perform a launch.|
 |Platform firmware update|System firmware is recommended to be updated via UpdateCapsule in Windows Update. |
+
+> [!NOTE]
+> For more details around AMD processors please check this [link](https://www.microsoft.com/security/blog/2020/09/01/force-firmware-code-to-be-measured-and-attested-by-secure-launch-on-windows-10/)

From 80cc1c7b1961acbe3ca1739146ab665313efb64a Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Sun, 27 Dec 2020 20:39:02 +0200
Subject: [PATCH 125/825] update event ID

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8434
---
 ...onfigure-network-connections-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
index 1be93dc8a6..8ac5917a9e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
@@ -113,7 +113,7 @@ You will also see a detection under **Quarantined threats** in the **Scan histor
    > [!NOTE]
    > Versions of Windows 10 before version 1703 have a different user interface. See [Microsoft Defender Antivirus in the Windows Security app](microsoft-defender-security-center-antivirus.md).
 
-   The Windows event log will also show [Windows Defender client event ID 2050](troubleshoot-microsoft-defender-antivirus.md).
+   The Windows event log will also show [Windows Defender client event ID 1116](troubleshoot-microsoft-defender-antivirus.md).
 
 ## Related articles
 

From af853a81d073ea57376075e3390c6ce489d3bb11 Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Sun, 27 Dec 2020 21:09:59 +0200
Subject: [PATCH 126/825] Update
 windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../system-guard-secure-launch-and-smm-protection.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index 4a2dd888c5..93a31b46c4 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -93,4 +93,4 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic
 |Platform firmware update|System firmware is recommended to be updated via UpdateCapsule in Windows Update. |
 
 > [!NOTE]
-> For more details around AMD processors please check this [link](https://www.microsoft.com/security/blog/2020/09/01/force-firmware-code-to-be-measured-and-attested-by-secure-launch-on-windows-10/)
+> For more details around AMD processors, please read this Microsoft Security blog post: [Force firmware code to be measured and attested by Secure Launch on Windows 10](https://www.microsoft.com/security/blog/2020/09/01/force-firmware-code-to-be-measured-and-attested-by-secure-launch-on-windows-10/).

From a187d96a823d9e277d0211cdb4d49b58eaa7cd32 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Robin=20M=C3=BCller?= <robin.mueller@outlook.de>
Date: Sun, 27 Dec 2020 21:04:32 +0100
Subject: [PATCH 127/825] Link fix in how-to-enable-network-unlock

Fixed wrong HTML tag in heading 'Confirm the WDS Service is running'
---
 .../bitlocker/bitlocker-how-to-enable-network-unlock.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 5c7b1190b1..2061c1421c 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -95,7 +95,7 @@ The server side configuration to enable Network Unlock also requires provisionin
 
 The following steps allow an administrator to configure Network Unlock in a domain where the Domain Functional Level is at least Windows Server 2012.
 
-### <a href="" id="bkmk-installwdsrole"><a/>Install the WDS Server role
+### <a href="" id="bkmk-installwdsrole"></a>Install the WDS Server role
 
 The BitLocker Network Unlock feature will install the WDS role if it is not already installed. If you want to install it separately before you install BitLocker Network Unlock you can use Server Manager or Windows PowerShell. To install the role using Server Manager, select the **Windows Deployment Services** role in Server Manager.
 

From badb28bbd4d401364027aecd06f0c499bde05cfe Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Sun, 27 Dec 2020 23:54:35 +0100
Subject: [PATCH 128/825] Update manage-windows-20H2-endpoints.md

From issue ticket #8873 (**typo in FQDN**) :
> The FQDN "1storecatalogrevocation.storequality.microsoft.com" does not exist, it should probably be "storecatalogrevocation.storequality.microsoft.com"

See also the comment below, stating as follows:
> It would probably make sense to merge the lines and use "TLSv1.2/HTTPS/HTTP" as the protocol like on other lines.
> I did not see any use of 1storecatalogrevocation.storequality.microsoft.com in my tests, also there is no A or AAAA DNS record for this endpoint, which makes me assume this is a typo.

Thanks to ruffy91 for noticing and reporting this typo issue.

Changes proposed:
- Remove the leading digit 1 from the hostname in `1storecatalogrevocation.storequality.microsoft.com`
- Remove 1 redundant `HTTPS` from the row below, making it only `HTTPS/HTTP`
- Merge the 2 lines since they now point to the same host FQDN

Whitespace changes:
- add 1 editorial blank line between the metadata section and the page title
- remove 2 redundant end-of-line blanks

Closes #8873
---
 windows/privacy/manage-windows-20H2-endpoints.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/privacy/manage-windows-20H2-endpoints.md b/windows/privacy/manage-windows-20H2-endpoints.md
index a2c7dbbed9..57c2ce989d 100644
--- a/windows/privacy/manage-windows-20H2-endpoints.md
+++ b/windows/privacy/manage-windows-20H2-endpoints.md
@@ -14,6 +14,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 12/17/2020
 ---
+
 # Manage connection endpoints for Windows 10 Enterprise, version 20H2
 
 **Applies to**
@@ -35,7 +36,7 @@ The following methodology was used to derive these network endpoints:
 
 1. Set up the latest version of Windows 10 on a test virtual machine using the default settings.
 2. Leave the device(s) running idle for a week ("idle" means a user is not interacting with the system/device).
-3. Use globally accepted network protocol analyzer/capturing tools and log all background egress traffic.  
+3. Use globally accepted network protocol analyzer/capturing tools and log all background egress traffic.
 4. Compile reports on traffic going to public IP addresses.
 5. The test virtual machine(s) was logged into using a local account, and was not joined to a domain or Azure Active Directory.
 6. All traffic was captured in our lab using a IPV4 network. Therefore, no IPV6 traffic is reported here.
@@ -85,8 +86,7 @@ The following methodology was used to derive these network endpoints:
 |Microsoft Store|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
 ||The following endpoint is used to download image files that are called when applications run (Microsoft Store or Inbox MSN Apps). If you turn off traffic for these endpoints, the image files won't be downloaded, and apps cannot be installed or updated from the Microsoft Store. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them.|HTTPS|img-prod-cms-rt-microsoft-com.akamaized.net|
 ||The following endpoint is used for the Windows Push Notification Services (WNS). WNS enables third-party developers to send toast, tile, badge, and raw updates from their own cloud service. This provides a mechanism to deliver new updates to your users in a power-efficient and dependable way. If you turn off traffic for this endpoint, push notifications will no longer work, including MDM device management, mail synchronization, settings synchronization.|TLSv1.2/HTTPS|*.wns.windows.com|
-||The following endpoints are used to revoke licenses for malicious apps in the Microsoft Store. To turn off traffic for this endpoint, either uninstall the app or disable the Microsoft Store. If you disable the Microsoft Store, other Microsoft Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them|TLSv1.2|1storecatalogrevocation.storequality.microsoft.com|
-|||HTTPS/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
+||The following endpoints are used to revoke licenses for malicious apps in the Microsoft Store. To turn off traffic for this endpoint, either uninstall the app or disable the Microsoft Store. If you disable the Microsoft Store, other Microsoft Store apps cannot be installed or updated. Additionally, the Microsoft Store won't be able to revoke malicious apps and users will still be able to open them|TLSv1.2/HTTPS/HTTP|storecatalogrevocation.storequality.microsoft.com|
 ||The following endpoint is used to get Microsoft Store analytics.|HTTPS|manage.devcenter.microsoft.com|
 ||The following endpoints are used to communicate with Microsoft Store. If you turn off traffic for these endpoints, apps cannot be installed or updated from the Microsoft Store.|TLSv1.2/HTTPS/HTTP|displaycatalog.mp.microsoft.com|
 |||HTTPS|pti.store.microsoft.com|
@@ -130,7 +130,7 @@ The following methodology was used to derive these network endpoints:
 ||The following endpoint is used for content regulation. If you turn off traffic for this endpoint, the Windows Update Agent will be unable to contact the endpoint and fallback behavior will be used. This may result in content being either incorrectly downloaded or not downloaded at all.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
 |Xbox Live|The following endpoint is used for Xbox Live.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#26-microsoft-store)|
 |||HTTPS|dlassets-ssl.xboxlive.com|
-|
+
 
 ## Other Windows 10 editions
 

From 7c95151405f9ba5186c8ff57117da9c8366fffae Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 28 Dec 2020 17:05:06 +0500
Subject: [PATCH 129/825] Update
 windows/deployment/deploy-enterprise-licenses.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/deployment/deploy-enterprise-licenses.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index 7c7c2b7d4e..fbfeba0ca6 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -33,7 +33,7 @@ This topic describes how to deploy Windows 10 Enterprise E3 or E5 licenses with
 
 To determine if the computer has a firmware-embedded activation key, type the following command at an elevated Windows PowerShell prompt
 
-```
+```PowerShell
 (Get-CimInstance -query ‘select * from SoftwareLicensingService’).OA3xOriginalProductKey
 ```
 

From 097edab0b5839ebd613f0ab27ccce357578e534b Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 28 Dec 2020 17:05:22 +0500
Subject: [PATCH 130/825] Update
 windows/deployment/deploy-enterprise-licenses.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/deployment/deploy-enterprise-licenses.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index fbfeba0ca6..ef7a0b86fb 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -31,7 +31,7 @@ This topic describes how to deploy Windows 10 Enterprise E3 or E5 licenses with
 
 ## Firmware-embedded activation key
 
-To determine if the computer has a firmware-embedded activation key, type the following command at an elevated Windows PowerShell prompt
+To determine if the computer has a firmware-embedded activation key, type the following command at an elevated Windows PowerShell prompt:
 
 ```PowerShell
 (Get-CimInstance -query ‘select * from SoftwareLicensingService’).OA3xOriginalProductKey

From 63d9212da87971d2e66dce379a4151ddd8dc4e00 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:03:36 -0800
Subject: [PATCH 131/825] Update
 configure-network-connections-microsoft-defender-antivirus.md

---
 ...onfigure-network-connections-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
index 8ac5917a9e..1485e83d0a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 11/18/2020
+ms.date: 12/28/2020
 ms.reviewer: 
 manager: dansimp
 ---

From 9fa5711599c1e1a2b787d1083292b2a3c0a6c5d7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:05:24 -0800
Subject: [PATCH 132/825] Update
 system-guard-secure-launch-and-smm-protection.md

---
 .../system-guard-secure-launch-and-smm-protection.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index 93a31b46c4..f38f5ce14a 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -93,4 +93,4 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic
 |Platform firmware update|System firmware is recommended to be updated via UpdateCapsule in Windows Update. |
 
 > [!NOTE]
-> For more details around AMD processors, please read this Microsoft Security blog post: [Force firmware code to be measured and attested by Secure Launch on Windows 10](https://www.microsoft.com/security/blog/2020/09/01/force-firmware-code-to-be-measured-and-attested-by-secure-launch-on-windows-10/).
+> For more details around AMD processors, see [Microsoft Security Blog: Force firmware code to be measured and attested by Secure Launch on Windows 10](https://www.microsoft.com/security/blog/2020/09/01/force-firmware-code-to-be-measured-and-attested-by-secure-launch-on-windows-10/).

From 3182310f60802a00faace4c6f0eabd1843f64cca Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:05:52 -0800
Subject: [PATCH 133/825] Update
 system-guard-secure-launch-and-smm-protection.md

---
 .../system-guard-secure-launch-and-smm-protection.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index f38f5ce14a..5dd9dc063d 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -8,7 +8,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
-ms.date: 03/01/2019
+ms.date: 12/28/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp

From 6ea0e40647125fdddbdc267db510df68764ea6c6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:07:27 -0800
Subject: [PATCH 134/825] Update
 windows/security/identity-protection/credential-guard/dg-readiness-tool.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../identity-protection/credential-guard/dg-readiness-tool.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
index 134a134372..56ecf93ad2 100644
--- a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
+++ b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
@@ -17,8 +17,8 @@ ms.reviewer:
 
 # Windows Defender Device Guard and Windows Defender Credential Guard hardware readiness tool
 
-**Applies to**
--   Windows 10 Enterprise Edition
+**Applies to:**
+- Windows 10 Enterprise Edition
 
 ```powershell
 # Script to find out if a machine is Device Guard compliant.

From 8c3919fa63f11da3317d7f67fe0161423c106c5e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:10:36 -0800
Subject: [PATCH 135/825] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 5185a99f15..172fb7952f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -10,7 +10,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 11/18/2020
+ms.date: 12/28/2020
 ms.reviewer: jesquive
 manager: dansimp
 ---

From 682b74814d7c7ba5cd957febffe608deecd99bc6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:12:05 -0800
Subject: [PATCH 136/825] Update
 windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/get-ip-statistics.md       | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index b3531c3636..61b9b25be5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -95,10 +95,11 @@ Content-type: application/json
 ```
 
 
-Name | Description
-:---|:---|:---
-Org prevalence  | the distinct count of devices that opened network connection to this IP.
-Org first seen  | the first connection for this IP in the organization.
-Org last seen  | the last connection for this IP in the organization.
+
+| Name | Description |
+| :--- | :---------- |
+| Org prevalence | the distinct count of devices that opened network connection to this IP. |
+| Org first seen | the first connection for this IP in the organization. |
+| Org last seen  | the last connection for this IP in the organization. |
 >[!Note]
 > This statistic information is based on data from the past 30 days. 

From 6d922b5a3fb3fb7380b60f52d6d56804c2192347 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 07:12:12 -0800
Subject: [PATCH 137/825] Update
 windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/get-ip-statistics.md                | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 61b9b25be5..4f76236a07 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -101,5 +101,6 @@ Content-type: application/json
 | Org prevalence | the distinct count of devices that opened network connection to this IP. |
 | Org first seen | the first connection for this IP in the organization. |
 | Org last seen  | the last connection for this IP in the organization. |
->[!Note]
+
+> [!Note]
 > This statistic information is based on data from the past 30 days. 

From 41e8df746f3b9c42482e7ef178742adec589c89e Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 28 Dec 2020 22:59:10 +0500
Subject: [PATCH 138/825] Broken link update

A link to the OMA standard was broken and has been updated to the correct one.
---
 .../mdm/disconnecting-from-mdm-unenrollment.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md b/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
index 3cb1682333..36cae102c0 100644
--- a/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
+++ b/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
@@ -44,7 +44,7 @@ In Windows, after the user confirms the account deletion command and before the
 
 This action utilizes the OMA DM generic alert 1226 function to send a user an MDM unenrollment user alert to the MDM server after the device accepts the user unenrollment request, but before it deletes any enterprise data. The server should set the expectation that unenrollment may succeed or fail, and the server can check whether the device is unenrolled by either checking whether the device calls back at scheduled time or by sending a push notification to the device to see whether it responds back. If the server plans to send a push notification, it should allow for some delay to give the device the time to complete the unenrollment work.
 
-> **Note**  The user unenrollment is an OMA DM standard. For more information about the 1226 generic alert, refer to the OMA Device Management Protocol specification (OMA-TS-DM\_Protocol-V1\_2\_1-20080617-A), available from the [OMA website](https://go.microsoft.com/fwlink/p/?LinkId=267526).
+> **Note**  The user unenrollment is an OMA DM standard. For more information about the 1226 generic alert, refer to the OMA Device Management Protocol specification (OMA-TS-DM\_Protocol-V1\_2\_1-20080617-A), available from the [OMA website](https://www.openmobilealliance.org/release/DM/V1_1_2-20031209-A/).
 
  
 The vendor uses the Type attribute to specify what type of generic alert it is. For device initiated MDM unenrollment, the alert type is **com.microsoft:mdm.unenrollment.userrequest**.

From 5d37dd768df520be49b21cbda6e5b6fc96440c7b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 28 Dec 2020 15:11:38 -0800
Subject: [PATCH 139/825] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 23c85194d0..fb9db59528 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
-ms.localizationpriority: medium
+ms.localizationpriority: high
 author: denisebmsft
 ms.author: deniseb
 ms.date: 12/16/2020

From dd629682cb02b9c12f59233f7171ec2aa4f38ec5 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 28 Dec 2020 15:18:25 -0800
Subject: [PATCH 140/825] Replaced blind link with targeted title

---
 windows/security/includes/microsoft-defender-api-usgov.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/includes/microsoft-defender-api-usgov.md b/windows/security/includes/microsoft-defender-api-usgov.md
index ff93c71ecd..4fe2a734da 100644
--- a/windows/security/includes/microsoft-defender-api-usgov.md
+++ b/windows/security/includes/microsoft-defender-api-usgov.md
@@ -17,4 +17,4 @@ ms.topic: article
 ---
 
 >[!NOTE]
->If you are a US Government customer, please use the URIs listed in [here](../threat-protection/microsoft-defender-atp/gov.md#api).
+>If you are a US Government customer, please use the URIs listed in [Microsoft Defender for Endpoint for US Government GCC High customers](../threat-protection/microsoft-defender-atp/gov.md#api).

From 8368db79c2613c1caf186d34aab485675bc7f2d1 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Tue, 29 Dec 2020 11:12:43 +0500
Subject: [PATCH 141/825] Update
 windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../mdm/disconnecting-from-mdm-unenrollment.md                | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md b/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
index 36cae102c0..35fe6568b0 100644
--- a/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
+++ b/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
@@ -44,7 +44,8 @@ In Windows, after the user confirms the account deletion command and before the
 
 This action utilizes the OMA DM generic alert 1226 function to send a user an MDM unenrollment user alert to the MDM server after the device accepts the user unenrollment request, but before it deletes any enterprise data. The server should set the expectation that unenrollment may succeed or fail, and the server can check whether the device is unenrolled by either checking whether the device calls back at scheduled time or by sending a push notification to the device to see whether it responds back. If the server plans to send a push notification, it should allow for some delay to give the device the time to complete the unenrollment work.
 
-> **Note**  The user unenrollment is an OMA DM standard. For more information about the 1226 generic alert, refer to the OMA Device Management Protocol specification (OMA-TS-DM\_Protocol-V1\_2\_1-20080617-A), available from the [OMA website](https://www.openmobilealliance.org/release/DM/V1_1_2-20031209-A/).
+> [!NOTE]
+> The user unenrollment is an OMA DM standard. For more information about the 1226 generic alert, refer to the OMA Device Management Protocol specification (OMA-TS-DM\_Protocol-V1\_2\_1-20080617-A), available from the [OMA website](https://www.openmobilealliance.org/release/DM/V1_1_2-20031209-A/).
 
  
 The vendor uses the Type attribute to specify what type of generic alert it is. For device initiated MDM unenrollment, the alert type is **com.microsoft:mdm.unenrollment.userrequest**.
@@ -157,4 +158,3 @@ When the disconnection is completed, the user is notified that the device has be
 
 
 
-

From 46936a5bb14a9499dddfb866ba7ead8c268fbcfa Mon Sep 17 00:00:00 2001
From: Joe Skeen <joeskeen@users.noreply.github.com>
Date: Tue, 29 Dec 2020 09:14:30 -0700
Subject: [PATCH 142/825] Update bitlocker-how-to-enable-network-unlock.md

fix wording
---
 .../bitlocker/bitlocker-how-to-enable-network-unlock.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
index 2061c1421c..1284208f66 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock.md
@@ -26,7 +26,7 @@ ms.custom: bitlocker
 This topic for the IT professional describes how BitLocker Network Unlock works and how to configure it.
 
 Network Unlock was introduced in Windows 8 and Windows Server 2012 as a BitLocker protector option for operating system volumes. Network Unlock enables easier management for BitLocker enabled desktops and servers in a domain environment by providing automatic unlock of operating system volumes at system reboot when connected to a wired corporate network. This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware.
-Without Network Unlock, operating system volumes protected by TPM+PIN protectors require a PIN to be entered when a computer reboots or resumes from hibernation (for example, by Wake on LAN). This can make it difficult to enterprises to roll out software patches to unattended desktops and remotely administered servers.
+Without Network Unlock, operating system volumes protected by TPM+PIN protectors require a PIN to be entered when a computer reboots or resumes from hibernation (for example, by Wake on LAN). This can make it difficult for enterprises to roll out software patches to unattended desktops and remotely administered servers.
 
 Network Unlock allows BitLocker-enabled systems with TPM+PIN and that meet the hardware requirements to boot into Windows without user intervention. Network Unlock works in a similar fashion to the TPM+StartupKey at boot. Rather than needing to read the StartupKey from USB media, however, the key for Network Unlock is composed from a key stored in the TPM and an encrypted network key that is sent to the server, decrypted and returned to the client in a secure session.
 

From 3aad2708061405158296540b1deb349fac267b50 Mon Sep 17 00:00:00 2001
From: Jeff Borsecnik <36546697+jborsecnik@users.noreply.github.com>
Date: Tue, 29 Dec 2020 08:59:31 -0800
Subject: [PATCH 143/825] Update hello-feature-pin-reset.md

fix typo "Enpoint"
---
 .../hello-for-business/hello-feature-pin-reset.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md b/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
index 93b01bb01b..b1fda98d52 100644
--- a/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
+++ b/windows/security/identity-protection/hello-for-business/hello-feature-pin-reset.md
@@ -65,7 +65,7 @@ You configure Windows 10 to use the Microsoft PIN Reset service using the comput
 
 #### Create a PIN Reset Device configuration profile using Microsoft Intune
 
-1. Sign-in to [Enpoint Manager admin center](https://endpoint.microsoft.com/) using a Global administrator account.
+1. Sign-in to [Endpoint Manager admin center](https://endpoint.microsoft.com/) using a Global administrator account.
 2. Click **Endpoint Security** > **Account Protection** > **Properties**.
 3. Set **Enable PIN recovery** to **Yes**.
 

From 0bedf58ded5e6baf79572605cc8f4d564a10dc2d Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 29 Dec 2020 11:17:56 -0800
Subject: [PATCH 144/825] Added Power policies

---
 windows/client-management/mdm/TOC.md          |  1 +
 .../mdm/policies-in-policy-csp-admx-backed.md | 25 ++++++
 .../policy-configuration-service-provider.md  | 80 +++++++++++++++++++
 3 files changed, 106 insertions(+)

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 3b37a6caf1..3675333e76 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -231,6 +231,7 @@
 #### [ADMX_OfflineFiles](policy-csp-admx-offlinefiles.md)
 #### [ADMX_PeerToPeerCaching](policy-csp-admx-peertopeercaching.md)
 #### [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
+#### [ADMX_Power](policy-csp-admx-power.md)
 #### [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
 #### [ADMX_Printing](policy-csp-admx-printing.md)
 #### [ADMX_Printing2](policy-csp-admx-printing2.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index 552222926f..c6e37891f5 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -789,6 +789,31 @@ ms.date: 10/08/2020
 - [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_2](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-2)
 - [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_3](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-3)
 - [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_4](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-4)
+- [ADMX_Power/ACConnectivityInStandby_2](./policy-csp-admx-power.md#admx-power-acconnectivityinstandby-2)
+- [ADMX_Power/ACCriticalSleepTransitionsDisable_2](./policy-csp-admx-power.md#admx-power-accriticalsleeptransitionsdisable-2)
+- [ADMX_Power/ACStartMenuButtonAction_2](./policy-csp-admx-power.md#admx-power-acstartmenubuttonaction-2)
+- [ADMX_Power/AllowSystemPowerRequestAC](./policy-csp-admx-power.md#admx-power-allowsystempowerrequestac)
+- [ADMX_Power/AllowSystemPowerRequestDC](./policy-csp-admx-power.md#admx-power-allowsystempowerrequestdc)
+- [ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC](./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopenac)
+- [ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC](./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopendc)
+- [ADMX_Power/CustomActiveSchemeOverride_2](./policy-csp-admx-power.md#admx-power-customactiveschemeoverride-2)
+- [ADMX_Power/DCBatteryDischargeAction0_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction0-2)
+- [ADMX_Power/DCBatteryDischargeAction1_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction1-2)
+- [ADMX_Power/DCBatteryDischargeLevel0_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel0-2)
+- [ADMX_Power/DCBatteryDischargeLevel1UINotification_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1uinotification-2)
+- [ADMX_Power/DCBatteryDischargeLevel1_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1-2)
+- [ADMX_Power/DCConnectivityInStandby_2](./policy-csp-admx-power.md#admx-power-dcconnectivityinstandby-2)
+- [ADMX_Power/DCCriticalSleepTransitionsDisable_2](./policy-csp-admx-power.md#admx-power-dccriticalsleeptransitionsdisable-2)
+- [ADMX_Power/DCStartMenuButtonAction_2](./policy-csp-admx-power.md#admx-power-dcstartmenubuttonaction-2)
+- [ADMX_Power/DiskACPowerDownTimeOut_2](./policy-csp-admx-power.md#admx-power-diskacpowerdowntimeout-2)
+- [ADMX_Power/DiskDCPowerDownTimeOut_2](./policy-csp-admx-power.md#admx-power-diskdcpowerdowntimeout-2)
+- [ADMX_Power/Dont_PowerOff_AfterShutdown](./policy-csp-admx-power.md#admx-power-dont-poweroff-aftershutdown)
+- [ADMX_Power/EnableDesktopSlideShowAC](./policy-csp-admx-power.md#admx-power-enabledesktopslideshowac)
+- [ADMX_Power/EnableDesktopSlideShowDC](./policy-csp-admx-power.md#admx-power-enabledesktopslideshowdc)
+- [ADMX_Power/InboxActiveSchemeOverride_2](./policy-csp-admx-power.md#admx-power-inboxactiveschemeoverride-2)
+- [ADMX_Power/PW_PromptPasswordOnResume](./policy-csp-admx-power.md#admx-power-pw-promptpasswordonresume)
+- [ADMX_Power/PowerThrottlingTurnOff](./policy-csp-admx-power.md#admx-power-powerthrottlingturnoff)
+- [ADMX_Power/ReserveBatteryNotificationLevel](./policy-csp-admx-power.md#admx-power-reservebatterynotificationlevel)
 - [ADMX_PowerShellExecutionPolicy/EnableModuleLogging](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enablemodulelogging)
 - [ADMX_PowerShellExecutionPolicy/EnableScripts](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enablescripts)
 - [ADMX_PowerShellExecutionPolicy/EnableTranscripting](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enabletranscripting)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index fff1b3e3ca..8bfdfd90cc 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -2749,6 +2749,86 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_Power policies  
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-acconnectivityinstandby-2" id="admx-power-acconnectivityinstandby-2">ADMX_Power/ACConnectivityInStandby_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-accriticalsleeptransitionsdisable-2" id="admx-power-accriticalsleeptransitionsdisable-2">ADMX_Power/ACCriticalSleepTransitionsDisable_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-acstartmenubuttonaction-2" id="admx-power-acstartmenubuttonaction-2">ADMX_Power/ACStartMenuButtonAction_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-allowsystempowerrequestac" id="admx-power-allowsystempowerrequestac">ADMX_Power/AllowSystemPowerRequestAC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-allowsystempowerrequestdc" id="admx-power-allowsystempowerrequestdc">ADMX_Power/AllowSystemPowerRequestDC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopenac" id="admx-power-allowsystemsleepwithremotefilesopenac">ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopendc" id="admx-power-allowsystemsleepwithremotefilesopendc">ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-customactiveschemeoverride-2" id="admx-power-customactiveschemeoverride-2">ADMX_Power/CustomActiveSchemeOverride_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction0-2" id="admx-power-dcbatterydischargeaction0-2">ADMX_Power/DCBatteryDischargeAction0_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction1-2" id="admx-power-dcbatterydischargeaction1-2">ADMX_Power/DCBatteryDischargeAction1_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel0-2" id="admx-power-dcbatterydischargelevel0-2">ADMX_Power/DCBatteryDischargeLevel0_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1uinotification-2" id="admx-power-dcbatterydischargelevel1uinotification-2">ADMX_Power/DCBatteryDischargeLevel1UINotification_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1-2" id="admx-power-dcbatterydischargelevel1-2">ADMX_Power/DCBatteryDischargeLevel1_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcconnectivityinstandby-2" id="admx-power-dcconnectivityinstandby-2">ADMX_Power/DCConnectivityInStandby_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dccriticalsleeptransitionsdisable-2" id="admx-power-dccriticalsleeptransitionsdisable-2">ADMX_Power/DCCriticalSleepTransitionsDisable_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dcstartmenubuttonaction-2" id="admx-power-dcstartmenubuttonaction-2">ADMX_Power/DCStartMenuButtonAction_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-diskacpowerdowntimeout-2" id="admx-power-diskacpowerdowntimeout-2">ADMX_Power/DiskACPowerDownTimeOut_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-diskdcpowerdowntimeout-2" id="admx-power-diskdcpowerdowntimeout-2">ADMX_Power/DiskDCPowerDownTimeOut_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-dont-poweroff-aftershutdown" id="admx-power-dont-poweroff-aftershutdown">ADMX_Power/Dont_PowerOff_AfterShutdown</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-enabledesktopslideshowac" id="admx-power-enabledesktopslideshowac">ADMX_Power/EnableDesktopSlideShowAC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-enabledesktopslideshowdc" id="admx-power-enabledesktopslideshowdc">ADMX_Power/EnableDesktopSlideShowDC</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-inboxactiveschemeoverride-2" id="admx-power-inboxactiveschemeoverride-2">ADMX_Power/InboxActiveSchemeOverride_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-pw-promptpasswordonresume" id="admx-power-pw-promptpasswordonresume">ADMX_Power/PW_PromptPasswordOnResume</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-powerthrottlingturnoff" id="admx-power-powerthrottlingturnoff">ADMX_Power/PowerThrottlingTurnOff</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-power.md#admx-power-reservebatterynotificationlevel" id="admx-power-reservebatterynotificationlevel">ADMX_Power/ReserveBatteryNotificationLevel</a>
+  </dd>
+</dl>
+
 ### ADMX_PowerShellExecutionPolicy policies  
 
 <dl>

From de10c523a1e9faacda55dc9a381519dc60c00534 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 29 Dec 2020 12:09:25 -0800
Subject: [PATCH 145/825] Updated the availability verbiage

---
 .../mdm/policy-csp-admx-addremoveprograms.md  |  22 +-
 .../mdm/policy-csp-admx-appcompat.md          |  18 +-
 .../mdm/policy-csp-admx-auditsettings.md      |   2 +-
 .../mdm/policy-csp-admx-ciphersuiteorder.md   |   4 +-
 .../mdm/policy-csp-admx-com.md                |   4 +-
 .../mdm/policy-csp-admx-cpls.md               |   2 +-
 .../mdm/policy-csp-admx-ctrlaltdel.md         |   8 +-
 .../mdm/policy-csp-admx-digitallocker.md      |   4 +-
 .../mdm/policy-csp-admx-dnsclient.md          |  44 ++--
 .../mdm/policy-csp-admx-dwm.md                |  12 +-
 .../mdm/policy-csp-admx-encryptfilesonmove.md |   2 +-
 .../mdm/policy-csp-admx-eventforwarding.md    |   4 +-
 .../policy-csp-admx-fileservervssprovider.md  |   2 +-
 .../mdm/policy-csp-admx-filesys.md            |  16 +-
 .../mdm/policy-csp-admx-folderredirection.md  |  14 +-
 .../mdm/policy-csp-admx-help.md               |   8 +-
 .../mdm/policy-csp-admx-helpandsupport.md     |   8 +-
 .../mdm/policy-csp-admx-kdc.md                |  12 +-
 .../mdm/policy-csp-admx-lanmanserver.md       |   8 +-
 ...icy-csp-admx-linklayertopologydiscovery.md |   4 +-
 .../mdm/policy-csp-admx-mmc.md                |  10 +-
 .../mdm/policy-csp-admx-mmcsnapins.md         | 210 +++++++++---------
 .../mdm/policy-csp-admx-msapolicy.md          |   2 +-
 .../mdm/policy-csp-admx-nca.md                |  16 +-
 .../mdm/policy-csp-admx-ncsi.md               |  14 +-
 .../mdm/policy-csp-admx-netlogon.md           |  70 +++---
 .../mdm/policy-csp-admx-offlinefiles.md       |  94 ++++----
 27 files changed, 307 insertions(+), 307 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md b/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
index 36128621e3..650e2497ae 100644
--- a/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
+++ b/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
@@ -106,7 +106,7 @@ manager: dansimp
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. The policy setting specifies the category of programs that appears when users open the "Add New Programs" page. If you enable this setting, only the programs in the category you specify are displayed when the "Add New Programs" page opens. You can use the Category box on the "Add New Programs" page to display programs in other categories. 
+Available in the latest Windows 10 Insider Preview Build. The policy setting specifies the category of programs that appears when users open the "Add New Programs" page. If you enable this setting, only the programs in the category you specify are displayed when the "Add New Programs" page opens. You can use the Category box on the "Add New Programs" page to display programs in other categories. 
 
 To use this setting, type the name of a category in the Category box for this setting. You must enter a category that is already defined in Add or Remove Programs. To define a category, use Software Installation.
 
@@ -189,7 +189,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Add a program from CD-ROM or floppy disk" section from the Add New Programs page. This prevents users from using Add or Remove Programs to install programs from removable media.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the "Add a program from CD-ROM or floppy disk" section from the Add New Programs page. This prevents users from using Add or Remove Programs to install programs from removable media.
 
 If you disable this setting or do not configure it, the "Add a program from CD-ROM or floppy disk" option is available to all users. This setting does not prevent users from using other tools and methods to add or remove program components.
 
@@ -270,7 +270,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Add programs from Microsoft" section from the Add New Programs page. This setting prevents users from using Add or Remove Programs to connect to Windows Update.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the "Add programs from Microsoft" section from the Add New Programs page. This setting prevents users from using Add or Remove Programs to connect to Windows Update.
 
 If you disable this setting or do not configure it, "Add programs from Microsoft" is available to all users. This setting does not prevent users from using other tools and methods to connect to Windows Update.
 
@@ -351,7 +351,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from viewing or installing published programs. This setting removes the "Add programs from your network" section from the Add New Programs page. The "Add programs from your network" section lists published programs and provides an easy way to install them. Published programs are those programs that the system administrator has explicitly made available to the user with a tool such as Windows Installer. Typically, system administrators publish programs to notify users that the programs are available, to recommend their use, or to enable users to install them without having to search for installation files. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from viewing or installing published programs. This setting removes the "Add programs from your network" section from the Add New Programs page. The "Add programs from your network" section lists published programs and provides an easy way to install them. Published programs are those programs that the system administrator has explicitly made available to the user with a tool such as Windows Installer. Typically, system administrators publish programs to notify users that the programs are available, to recommend their use, or to enable users to install them without having to search for installation files. 
 
 If you enable this setting, users cannot tell which programs have been published by the system administrator, and they cannot use Add or Remove Programs to install published programs. However, they can still install programs by using other methods, and they can view and install assigned (partially installed) programs that are offered on the desktop or on the Start menu. 
 
@@ -433,7 +433,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Add New Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Add New Programs button lets users install programs published or assigned by a system administrator.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the Add New Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Add New Programs button lets users install programs published or assigned by a system administrator.
 
 If you disable this setting or do not configure it, the Add New Programs button is available to all users. This setting does not prevent users from using other tools and methods to install programs.
 
@@ -511,7 +511,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from using Add or Remove Programs. This setting removes Add or Remove Programs from Control Panel and removes the Add or Remove Programs item from menus. Add or Remove Programs lets users install, uninstall, repair, add, and remove features and components of Windows 2000 Professional and a wide variety of Windows programs. Programs published or assigned to the user appear in Add or Remove Programs. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from using Add or Remove Programs. This setting removes Add or Remove Programs from Control Panel and removes the Add or Remove Programs item from menus. Add or Remove Programs lets users install, uninstall, repair, add, and remove features and components of Windows 2000 Professional and a wide variety of Windows programs. Programs published or assigned to the user appear in Add or Remove Programs. 
 
 If you disable this setting or do not configure it, Add or Remove Programs is available to all users. When enabled, this setting takes precedence over the other settings in this folder. This setting does not prevent users from using other tools and methods to install or uninstall programs.
 
@@ -589,7 +589,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Set Program Access and Defaults button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Set Program Access and Defaults button lets administrators specify default programs for certain activities, such as Web browsing or sending e-mail, as well as which programs are accessible from the Start menu, desktop, and other locations. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the Set Program Access and Defaults button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Set Program Access and Defaults button lets administrators specify default programs for certain activities, such as Web browsing or sending e-mail, as well as which programs are accessible from the Start menu, desktop, and other locations. 
 
 If you disable this setting or do not configure it, the Set Program Access and Defaults button is available to all users. This setting does not prevent users from using other tools and methods to change program access or defaults. This setting does not prevent the Set Program Access and Defaults icon from appearing on the Start menu. See the "Remove Set Program Access and Defaults from Start menu" setting.
 
@@ -668,7 +668,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Change or Remove Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Change or Remove Programs button lets users uninstall, repair, add, or remove features of installed programs.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the Change or Remove Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Change or Remove Programs button lets users uninstall, repair, add, or remove features of installed programs.
 
 If you disable this setting or do not configure it, the Change or Remove Programs page is available to all users. This setting does not prevent users from using other tools and methods to delete or uninstall programs.
 
@@ -746,7 +746,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from using Add or Remove Programs to configure installed services. This setting removes the "Set up services" section of the Add/Remove Windows Components page. The "Set up services" section lists system services that have not been configured and offers users easy access to the configuration tools.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from using Add or Remove Programs to configure installed services. This setting removes the "Set up services" section of the Add/Remove Windows Components page. The "Set up services" section lists system services that have not been configured and offers users easy access to the configuration tools.
 
 If you disable this setting or do not configure it, "Set up services" appears only when there are unconfigured system services. If you enable this setting, "Set up services" never appears. This setting does not prevent users from using other methods to configure services.
 
@@ -827,7 +827,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes links to the Support Info dialog box from programs on the Change or Remove Programs page. Programs listed on the Change or Remove Programs page can include a "Click here for support information" hyperlink. When clicked, the hyperlink opens a dialog box that displays troubleshooting information, including a link to the installation files and data that users need to obtain product support, such as the Product ID and version number of the program. The dialog box also includes a hyperlink to support information on the Internet, such as the Microsoft Product Support Services Web page.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes links to the Support Info dialog box from programs on the Change or Remove Programs page. Programs listed on the Change or Remove Programs page can include a "Click here for support information" hyperlink. When clicked, the hyperlink opens a dialog box that displays troubleshooting information, including a link to the installation files and data that users need to obtain product support, such as the Product ID and version number of the program. The dialog box also includes a hyperlink to support information on the Internet, such as the Microsoft Product Support Services Web page.
 
 If you disable this setting or do not configure it, the Support Info hyperlink appears.
 
@@ -908,7 +908,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Add/Remove Windows Components button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Add/Remove Windows Components button lets users configure installed services and use the Windows Component Wizard to add, remove, and configure components of Windows from the installation files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the Add/Remove Windows Components button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Add/Remove Windows Components button lets users configure installed services and use the Windows Component Wizard to add, remove, and configure components of Windows from the installation files.
 
 If you disable this setting or do not configure it, the Add/Remove Windows Components button is available to all users. This setting does not prevent users from using other tools and methods to configure services or add or remove program components. However, this setting blocks user access to the Windows Component Wizard.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-appcompat.md b/windows/client-management/mdm/policy-csp-admx-appcompat.md
index ef0f985661..a2a770794d 100644
--- a/windows/client-management/mdm/policy-csp-admx-appcompat.md
+++ b/windows/client-management/mdm/policy-csp-admx-appcompat.md
@@ -108,7 +108,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether to prevent the MS-DOS subsystem (**ntvdm.exe**) from running on this computer. This setting affects the launching of 16-bit applications in the operating system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether to prevent the MS-DOS subsystem (**ntvdm.exe**) from running on this computer. This setting affects the launching of 16-bit applications in the operating system.
 
 You can use this setting to turn off the MS-DOS subsystem, which will reduce resource usage and prevent users from running 16-bit applications. To run any 16-bit application or any application with 16-bit components, **ntvdm.exe** must be allowed to run. The MS-DOS subsystem starts when the first 16-bit application is launched. While the MS-DOS subsystem is running, any subsequent 16-bit applications launch faster, but overall resource usage on the system is increased.
 
@@ -185,7 +185,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the visibility of the Program Compatibility property page shell extension. This shell extension is visible on the property context-menu of any program shortcut or executable file.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the visibility of the Program Compatibility property page shell extension. This shell extension is visible on the property context-menu of any program shortcut or executable file.
 
 The compatibility property page displays a list of options that can be selected and applied to the application to resolve the most common issues affecting legacy applications.
 
@@ -256,7 +256,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. The policy setting controls the state of the Application Telemetry engine in the system.
+Available in the latest Windows 10 Insider Preview Build. The policy setting controls the state of the Application Telemetry engine in the system.
 
 Application Telemetry is a mechanism that tracks anonymous usage of specific Windows system components by applications.
 
@@ -331,7 +331,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. The policy setting controls the state of the Switchback compatibility engine in the system.
+Available in the latest Windows 10 Insider Preview Build. The policy setting controls the state of the Switchback compatibility engine in the system.
 
 Switchback is a mechanism that provides generic compatibility mitigations to older applications by providing older behavior to old applications and new behavior to new applications.
 
@@ -407,7 +407,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the application compatibility engine in the system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the state of the application compatibility engine in the system.
 
 The engine is part of the loader and looks through a compatibility database every time an application is started on the system. If a match for the application is found it provides either run-time solutions or compatibility fixes, or displays an Application Help message if the application has a know problem.
 
@@ -485,7 +485,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting exists only for backward compatibility, and is not valid for this version of Windows. To configure the Program Compatibility Assistant, use the 'Turn off Program Compatibility Assistant' setting under Computer Configuration\Administrative Templates\Windows Components\Application Compatibility.
+Available in the latest Windows 10 Insider Preview Build. This policy setting exists only for backward compatibility, and is not valid for this version of Windows. To configure the Program Compatibility Assistant, use the 'Turn off Program Compatibility Assistant' setting under Computer Configuration\Administrative Templates\Windows Components\Application Compatibility.
 
 <!--/Description-->
 
@@ -552,7 +552,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the Program Compatibility Assistant (PCA). The PCA monitors applications run by the user. When a potential compatibility issue with an application is detected, the PCA will prompt the user with recommended solutions. To configure the diagnostic settings for the PCA, go to System->Troubleshooting and Diagnostics->Application Compatibility Diagnostics.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the state of the Program Compatibility Assistant (PCA). The PCA monitors applications run by the user. When a potential compatibility issue with an application is detected, the PCA will prompt the user with recommended solutions. To configure the diagnostic settings for the PCA, go to System->Troubleshooting and Diagnostics->Application Compatibility Diagnostics.
 
 If you enable this policy setting, the PCA will be turned off. The user will not be presented with solutions to known compatibility issues when running applications. Turning off the PCA can be useful for system administrators who require better performance and are already aware of application compatibility issues.
 
@@ -626,7 +626,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of Steps Recorder.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the state of Steps Recorder.
 
 Steps Recorder keeps a record of steps taken by the user. The data generated by Steps Recorder can be used in feedback systems such as Windows Error Reporting to help developers understand and fix problems. The data includes user actions such as keyboard input and mouse input, user interface data, and screenshots.  Steps Recorder includes an option to turn on and off data collection.
 
@@ -699,7 +699,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the Inventory Collector. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the state of the Inventory Collector. 
 
 The Inventory Collector inventories applications, files, devices, and drivers on the system and sends the information to Microsoft. This information is used to help diagnose compatibility problems.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-auditsettings.md b/windows/client-management/mdm/policy-csp-admx-auditsettings.md
index 1aa77b30da..62b80d6108 100644
--- a/windows/client-management/mdm/policy-csp-admx-auditsettings.md
+++ b/windows/client-management/mdm/policy-csp-admx-auditsettings.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines what information is logged in security audit events when a new process has been created. This setting only applies when the Audit Process Creation policy is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines what information is logged in security audit events when a new process has been created. This setting only applies when the Audit Process Creation policy is enabled.
 
 If you enable this policy setting, the command line information for every process will be logged in plain text in the security event log as part of the Audit Process Creation event 4688, "a new process has been created," on the workstations and servers on which this policy setting is applied.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
index 649079a937..232b4fdce7 100644
--- a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
+++ b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
@@ -78,7 +78,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the cipher suites used by the Secure Socket Layer (SSL).
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the cipher suites used by the Secure Socket Layer (SSL).
 
 If you enable this policy setting, SSL cipher suites are prioritized in the order specified.
 
@@ -151,7 +151,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the priority order of ECC curves used with ECDHE cipher suites.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the priority order of ECC curves used with ECDHE cipher suites.
 
 If you enable this policy setting, ECC curves are prioritized in the order specified. Enter one curve name per line.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-com.md b/windows/client-management/mdm/policy-csp-admx-com.md
index 1da39a32a3..152e8d9044 100644
--- a/windows/client-management/mdm/policy-csp-admx-com.md
+++ b/windows/client-management/mdm/policy-csp-admx-com.md
@@ -78,7 +78,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
 
 Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
 
@@ -153,7 +153,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
 
 Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-cpls.md b/windows/client-management/mdm/policy-csp-admx-cpls.md
index 21bf8792f1..9517dbfe30 100644
--- a/windows/client-management/mdm/policy-csp-admx-cpls.md
+++ b/windows/client-management/mdm/policy-csp-admx-cpls.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows an administrator to standardize the account pictures for all users on a system to the default account picture. One application for this policy setting is to standardize the account pictures to a company logo.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows an administrator to standardize the account pictures for all users on a system to the default account picture. One application for this policy setting is to standardize the account pictures to a company logo.
 
 > [!NOTE] 
 > The default account picture is stored at %PROGRAMDATA%\Microsoft\User Account Pictures\user.jpg. The default guest picture is stored at %PROGRAMDATA%\Microsoft\User Account Pictures\guest.jpg. If the default pictures do not exist, an empty frame is displayed.
diff --git a/windows/client-management/mdm/policy-csp-admx-ctrlaltdel.md b/windows/client-management/mdm/policy-csp-admx-ctrlaltdel.md
index 9ecc74d2e9..c4ed633cb6 100644
--- a/windows/client-management/mdm/policy-csp-admx-ctrlaltdel.md
+++ b/windows/client-management/mdm/policy-csp-admx-ctrlaltdel.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from changing their Windows password on demand.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from changing their Windows password on demand.
 
 If you enable this policy setting, the 'Change Password' button on the Windows Security dialog box will not appear when you press Ctrl+Alt+Del.
 
@@ -153,7 +153,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from locking the system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from locking the system.
 
 While locked, the desktop is hidden and the system cannot be used. Only the user who locked the system or the system administrator can unlock it.
 
@@ -226,7 +226,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from starting Task Manager.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from starting Task Manager.
 
 Task Manager (**taskmgr.exe**) lets users start and stop programs, monitor the performance of their computers, view and monitor all programs running on their computers, including system services, find the executable names of programs, and change the priority of the process in which programs run.
 
@@ -297,7 +297,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables or removes all menu items and buttons that log the user off the system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting disables or removes all menu items and buttons that log the user off the system.
 
 If you enable this policy setting, users will not see the Log off menu item when they press Ctrl+Alt+Del. This will prevent them from logging off unless they restart or shutdown the computer, or clicking Log off from the Start menu.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-digitallocker.md b/windows/client-management/mdm/policy-csp-admx-digitallocker.md
index 43d6152747..b2b311f5a1 100644
--- a/windows/client-management/mdm/policy-csp-admx-digitallocker.md
+++ b/windows/client-management/mdm/policy-csp-admx-digitallocker.md
@@ -77,7 +77,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether Digital Locker can run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Digital Locker can run.
 
 Digital Locker is a dedicated download manager associated with Windows Marketplace and a feature of Windows that can be used to manage and download products acquired and stored in the user's Windows Marketplace Digital Locker.
 
@@ -148,7 +148,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether Digital Locker can run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Digital Locker can run.
 
 Digital Locker is a dedicated download manager associated with Windows Marketplace and a feature of Windows that can be used to manage and download products acquired and stored in the user's Windows Marketplace Digital Locker.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-dnsclient.md b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
index 79b48babf1..5176ac1024 100644
--- a/windows/client-management/mdm/policy-csp-admx-dnsclient.md
+++ b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
@@ -137,7 +137,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that NetBIOS over TCP/IP (NetBT) queries are issued for fully qualified domain names.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that NetBIOS over TCP/IP (NetBT) queries are issued for fully qualified domain names.
 
 If you enable this policy setting, NetBT queries will be issued for multi-label and fully qualified domain names, such as "www.example.com" in addition to single-label names.
 
@@ -205,7 +205,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that computers may attach suffixes to an unqualified multi-label name before sending subsequent DNS queries if the original name query fails.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that computers may attach suffixes to an unqualified multi-label name before sending subsequent DNS queries if the original name query fails.
 
 A name containing dots, but not dot-terminated, is called an unqualified multi-label name, for example "server.corp" is an unqualified multi-label name. The name "server.corp.contoso.com." is an example of a fully qualified name because it contains a terminating dot.
 
@@ -282,7 +282,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies a connection-specific DNS suffix. This policy setting supersedes local connection-specific DNS suffixes, and those configured using DHCP. To use this policy setting, click Enabled, and then enter a string value representing the DNS suffix.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies a connection-specific DNS suffix. This policy setting supersedes local connection-specific DNS suffixes, and those configured using DHCP. To use this policy setting, click Enabled, and then enter a string value representing the DNS suffix.
 
 If you enable this policy setting, the DNS suffix that you enter will be applied to all network connections used by computers that receive this policy setting.  
 
@@ -351,7 +351,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if the devolution level that DNS clients will use if they perform primary DNS suffix devolution during the name resolution process.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if the devolution level that DNS clients will use if they perform primary DNS suffix devolution during the name resolution process.
 
 With devolution, a DNS client creates queries by appending a single-label, unqualified domain name with the parent suffix of the primary DNS suffix name, and the parent of that suffix, and so on, stopping if the name is successfully resolved or at a level determined by devolution settings. Devolution can be used when a user or application submits a query for a single-label domain name.
 
@@ -438,7 +438,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to Punycode when the computer is on non-domain networks with no WINS servers configured.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to Punycode when the computer is on non-domain networks with no WINS servers configured.
 
 If this policy setting is enabled, IDNs are not converted to Punycode.
 
@@ -507,7 +507,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to the Nameprep form, a canonical Unicode representation of the string.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to the Nameprep form, a canonical Unicode representation of the string.
 
 If this policy setting is enabled, IDNs are converted to the Nameprep form.
 
@@ -576,7 +576,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines the DNS servers to which a computer sends queries when it attempts to resolve names. This policy setting supersedes the list of DNS servers configured locally and those configured using DHCP.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines the DNS servers to which a computer sends queries when it attempts to resolve names. This policy setting supersedes the list of DNS servers configured locally and those configured using DHCP.
 
 To use this policy setting, click Enabled, and then enter a space-delimited list of IP addresses in the available field. To use this policy setting, you must enter at least one IP address.
 
@@ -647,7 +647,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that responses from link local name resolution protocols received over a network interface that is higher in the binding order are preferred over DNS responses from network interfaces lower in the binding order. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that responses from link local name resolution protocols received over a network interface that is higher in the binding order are preferred over DNS responses from network interfaces lower in the binding order. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
 
 If you enable this policy setting, responses from link local protocols will be preferred over DNS responses if the local responses are from a network with a higher binding order.
 
@@ -720,7 +720,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the primary DNS suffix used by computers in DNS name registration and DNS name resolution.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the primary DNS suffix used by computers in DNS name registration and DNS name resolution.
 
 To use this policy setting, click Enabled and enter the entire primary DNS suffix you want to assign. For example: microsoft.com.
 
@@ -795,7 +795,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if a computer performing dynamic DNS registration will register A and PTR resource records with a concatenation of its computer name and a connection-specific DNS suffix, in addition to registering these records with a concatenation of its computer name and the primary DNS suffix.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if a computer performing dynamic DNS registration will register A and PTR resource records with a concatenation of its computer name and a connection-specific DNS suffix, in addition to registering these records with a concatenation of its computer name and the primary DNS suffix.
 
 By default, a DNS client performing dynamic DNS registration registers A and PTR resource records with a concatenation of its computer name and the primary DNS suffix. For example, a computer name of mycomputer and a primary DNS suffix of microsoft.com will be registered as: mycomputer.microsoft.com.
 
@@ -869,7 +869,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if DNS client computers will register PTR resource records.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if DNS client computers will register PTR resource records.
 
 By default, DNS clients configured to perform dynamic DNS registration will attempt to register PTR resource record only if they successfully registered the corresponding A resource record.
 
@@ -945,7 +945,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if DNS dynamic update is enabled. Computers configured for DNS dynamic update automatically register and update their DNS resource records with a DNS server.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if DNS dynamic update is enabled. Computers configured for DNS dynamic update automatically register and update their DNS resource records with a DNS server.
 
 If you enable this policy setting, or you do not configure this policy setting, computers will attempt to use dynamic DNS registration on all network connections that have connection-specific dynamic DNS registration enabled. For a dynamic DNS registration to be enabled on a network connection, the connection-specific configuration must allow dynamic DNS registration, and this policy setting must not be disabled.
 
@@ -1014,7 +1014,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether dynamic updates should overwrite existing resource records that contain conflicting IP addresses.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether dynamic updates should overwrite existing resource records that contain conflicting IP addresses.
 
 This policy setting is designed for computers that register address (A) resource records in DNS zones that do not use Secure Dynamic Updates. Secure Dynamic Update preserves ownership of resource records and does not allow a DNS client to overwrite records that are registered by other computers.
 
@@ -1087,7 +1087,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the interval used by DNS clients to refresh registration of A and PTR resource. This policy setting only applies to computers performing dynamic DNS updates.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the interval used by DNS clients to refresh registration of A and PTR resource. This policy setting only applies to computers performing dynamic DNS updates.
 
 Computers configured to perform dynamic DNS registration of A and PTR resource records periodically reregister their records with DNS servers, even if the record has not changed. This reregistration is required to indicate to DNS servers that records are current and should not be automatically removed (scavenged) when a DNS server is configured to delete stale records.
 
@@ -1163,7 +1163,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the value of the time to live (TTL) field in A and PTR resource records that are registered by computers to which this policy setting is applied.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the value of the time to live (TTL) field in A and PTR resource records that are registered by computers to which this policy setting is applied.
 
 To specify the TTL, click Enabled and then enter a value in seconds (for example, 900 is 15 minutes).
 
@@ -1234,7 +1234,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the DNS suffixes to attach to an unqualified single-label name before submission of a DNS query for that name.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the DNS suffixes to attach to an unqualified single-label name before submission of a DNS query for that name.
 
 An unqualified single-label name contains no dots. The name "example" is a single-label name. This is different from a fully qualified domain name such as "example.microsoft.com."
 
@@ -1310,7 +1310,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that a multi-homed DNS client should optimize name resolution across networks. The setting improves performance by issuing parallel DNS, link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT) queries across all networks. In the event that multiple positive responses are received, the network binding order is used to determine which response to accept.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that a multi-homed DNS client should optimize name resolution across networks. The setting improves performance by issuing parallel DNS, link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT) queries across all networks. In the event that multiple positive responses are received, the network binding order is used to determine which response to accept.
 
 If you enable this policy setting, the DNS client will not perform any optimizations.  DNS queries will be issued across all networks first. LLMNR queries will be issued if the DNS queries fail, followed by NetBT queries if LLMNR queries fail.
 
@@ -1379,7 +1379,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that the DNS client should prefer responses from link local name resolution protocols on non-domain networks over DNS responses when issuing queries for flat names. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that the DNS client should prefer responses from link local name resolution protocols on non-domain networks over DNS responses when issuing queries for flat names. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
 
 If you enable this policy setting, the DNS client will prefer DNS responses, followed by LLMNR, followed by NetBT for all networks.  
 
@@ -1451,7 +1451,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the security level for dynamic DNS updates.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the security level for dynamic DNS updates.
 
 To use this policy setting, click Enabled and then select one of the following values:
 
@@ -1526,7 +1526,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if computers may send dynamic updates to zones with a single label name. These zones are also known as top-level domain zones, for example: "com."
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if computers may send dynamic updates to zones with a single label name. These zones are also known as top-level domain zones, for example: "com."
 
 By default, a DNS client that is configured to perform dynamic DNS update will update the DNS zone that is authoritative for its DNS resource records unless the authoritative zone is a top-level domain or root zone.
 
@@ -1597,7 +1597,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if the DNS client performs primary DNS suffix devolution during the name resolution process.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies if the DNS client performs primary DNS suffix devolution during the name resolution process.
 
 With devolution, a DNS client creates queries by appending a single-label, unqualified domain name with the parent suffix of the primary DNS suffix name, and the parent of that suffix, and so on, stopping if the name is successfully resolved or at a level determined by devolution settings. Devolution can be used when a user or application submits a query for a single-label domain name.
 
@@ -1684,7 +1684,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that link local multicast name resolution (LLMNR) is disabled on client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies that link local multicast name resolution (LLMNR) is disabled on client computers.
 
 LLMNR is a secondary name resolution protocol. With LLMNR, queries are sent using multicast over a local network link on a single subnet from a client computer to another client computer on the same subnet that also has LLMNR enabled. LLMNR does not require a DNS server or DNS client configuration, and provides name resolution in scenarios in which conventional DNS name resolution is not possible.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-dwm.md b/windows/client-management/mdm/policy-csp-admx-dwm.md
index ff5b9de5cc..e03d29b3c1 100644
--- a/windows/client-management/mdm/policy-csp-admx-dwm.md
+++ b/windows/client-management/mdm/policy-csp-admx-dwm.md
@@ -89,7 +89,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the default color for window frames when the user does not specify a color. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the default color for window frames when the user does not specify a color. 
 
 If you enable this policy setting and specify a default color, this color is used in glass window frames, if the user does not specify a color. 
 
@@ -162,7 +162,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the default color for window frames when the user does not specify a color. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the default color for window frames when the user does not specify a color. 
 
 If you enable this policy setting and specify a default color, this color is used in glass window frames, if the user does not specify a color. 
 
@@ -234,7 +234,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the appearance of window animations such as those found when restoring, minimizing, and maximizing windows. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the appearance of window animations such as those found when restoring, minimizing, and maximizing windows. 
 
 If you enable this policy setting, window animations are turned off. 
 
@@ -305,7 +305,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the appearance of window animations such as those found when restoring, minimizing, and maximizing windows. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the appearance of window animations such as those found when restoring, minimizing, and maximizing windows. 
 
 If you enable this policy setting, window animations are turned off. 
 
@@ -376,7 +376,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the ability to change the color of window frames. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability to change the color of window frames. 
 
 If you enable this policy setting, you prevent users from changing the default window frame color. 
 
@@ -448,7 +448,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the ability to change the color of window frames. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the ability to change the color of window frames. 
 
 If you enable this policy setting, you prevent users from changing the default window frame color. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-encryptfilesonmove.md b/windows/client-management/mdm/policy-csp-admx-encryptfilesonmove.md
index ec7948b584..82b82ab53f 100644
--- a/windows/client-management/mdm/policy-csp-admx-encryptfilesonmove.md
+++ b/windows/client-management/mdm/policy-csp-admx-encryptfilesonmove.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents File Explorer from encrypting files that are moved to an encrypted folder.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents File Explorer from encrypting files that are moved to an encrypted folder.
 
 If you enable this policy setting, File Explorer will not automatically encrypt files that are moved to an encrypted folder.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-eventforwarding.md b/windows/client-management/mdm/policy-csp-admx-eventforwarding.md
index e47d548237..985a4580ad 100644
--- a/windows/client-management/mdm/policy-csp-admx-eventforwarding.md
+++ b/windows/client-management/mdm/policy-csp-admx-eventforwarding.md
@@ -78,7 +78,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls resource usage for the forwarder (source computer) by controlling the events/per second sent to the Event Collector.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls resource usage for the forwarder (source computer) by controlling the events/per second sent to the Event Collector.
 
 If you enable this policy setting, you can control the volume of events sent to the Event Collector by the source computer. This may be required in high volume environments.
 
@@ -151,7 +151,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure the server address, refresh interval, and issuer certificate authority (CA) of a target Subscription Manager.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure the server address, refresh interval, and issuer certificate authority (CA) of a target Subscription Manager.
 
 If you enable this policy setting, you can configure the Source Computer to contact a specific FQDN (Fully Qualified Domain Name) or IP Address and request subscription specifics.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-fileservervssprovider.md b/windows/client-management/mdm/policy-csp-admx-fileservervssprovider.md
index 37b6b9a826..97a0885008 100644
--- a/windows/client-management/mdm/policy-csp-admx-fileservervssprovider.md
+++ b/windows/client-management/mdm/policy-csp-admx-fileservervssprovider.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether the RPC protocol messages used by VSS for SMB2 File Shares feature is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the RPC protocol messages used by VSS for SMB2 File Shares feature is enabled.
 
 VSS for SMB2 File Shares feature enables VSS aware backup applications to perform application consistent backup and restore of VSS aware applications storing data on SMB2 File Shares.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-filesys.md b/windows/client-management/mdm/policy-csp-admx-filesys.md
index fbdc148b37..aadede45cf 100644
--- a/windows/client-management/mdm/policy-csp-admx-filesys.md
+++ b/windows/client-management/mdm/policy-csp-admx-filesys.md
@@ -93,7 +93,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Compression can add to the processing overhead of filesystem operations. Enabling this setting will prevent access to and creation of compressed files. 
+Available in the latest Windows 10 Insider Preview Build. Compression can add to the processing overhead of filesystem operations. Enabling this setting will prevent access to and creation of compressed files. 
 
 <!--/Description-->
 > [!TIP]
@@ -157,7 +157,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Delete notification is a feature that notifies the underlying storage device of clusters that are freed due to a file delete operation.
+Available in the latest Windows 10 Insider Preview Build. Delete notification is a feature that notifies the underlying storage device of clusters that are freed due to a file delete operation.
 
 A value of 0, the default, will enable delete notifications for all volumes.
 
@@ -224,7 +224,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Encryption can add to the processing overhead of filesystem operations. Enabling this setting will prevent access to and creation of encrypted files.
+Available in the latest Windows 10 Insider Preview Build. Encryption can add to the processing overhead of filesystem operations. Enabling this setting will prevent access to and creation of encrypted files.
 
 <!--/Description-->
 > [!TIP]
@@ -287,7 +287,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Encrypting the page file prevents malicious users from reading data that has been paged to disk, but also adds processing overhead for filesystem operations. Enabling this setting will cause the page files to be encrypted.
+Available in the latest Windows 10 Insider Preview Build. Encrypting the page file prevents malicious users from reading data that has been paged to disk, but also adds processing overhead for filesystem operations. Enabling this setting will cause the page files to be encrypted.
 
 <!--/Description-->
 > [!TIP]
@@ -350,7 +350,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Enabling Win32 long paths will allow manifested win32 applications and Windows Store applications to access paths beyond the normal 260 character limit per node on file systems that support it. Enabling this setting will cause the long paths to be accessible within the process.
+Available in the latest Windows 10 Insider Preview Build. Enabling Win32 long paths will allow manifested win32 applications and Windows Store applications to access paths beyond the normal 260 character limit per node on file systems that support it. Enabling this setting will cause the long paths to be accessible within the process.
 
 <!--/Description-->
 > [!TIP]
@@ -413,7 +413,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting provides control over whether or not short names are generated during file creation. Some applications require short names for compatibility, but short names have a negative performance impact on the system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting provides control over whether or not short names are generated during file creation. Some applications require short names for compatibility, but short names have a negative performance impact on the system.
 
 If you enable short names on all volumes then short names will always be generated. If you disable them on all volumes then they will never be generated. If you set short name creation to be configurable on a per volume basis then an on-disk flag will determine whether or not short names are created on a given volume. If you disable short name creation on all data volumes then short names will only be generated for files created on the system volume.
 
@@ -479,7 +479,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Symbolic links can introduce vulnerabilities in certain applications. To mitigate this issue, you can selectively enable or disable the evaluation of these types of symbolic links:  
+Available in the latest Windows 10 Insider Preview Build. Symbolic links can introduce vulnerabilities in certain applications. To mitigate this issue, you can selectively enable or disable the evaluation of these types of symbolic links:  
 
 - Local Link to a Local Target
 - Local Link to a Remote Target
@@ -552,7 +552,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. TXF deprecated features included savepoints, secondary RM, miniversion and roll forward. Enable it if you want to use the APIs.
+Available in the latest Windows 10 Insider Preview Build. TXF deprecated features included savepoints, secondary RM, miniversion and roll forward. Enable it if you want to use the APIs.
 
 <!--/Description-->
 > [!TIP]
diff --git a/windows/client-management/mdm/policy-csp-admx-folderredirection.md b/windows/client-management/mdm/policy-csp-admx-folderredirection.md
index 845c514983..97576c4d96 100644
--- a/windows/client-management/mdm/policy-csp-admx-folderredirection.md
+++ b/windows/client-management/mdm/policy-csp-admx-folderredirection.md
@@ -91,7 +91,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control whether all redirected shell folders, such as Contacts, Documents, Desktop, Favorites, Music, Pictures, Videos, Start Menu, and AppData\Roaming, are available offline by default.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control whether all redirected shell folders, such as Contacts, Documents, Desktop, Favorites, Music, Pictures, Videos, Start Menu, and AppData\Roaming, are available offline by default.
 
 If you enable this policy setting, users must manually select the files they wish to make available offline.  
 
@@ -166,7 +166,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control whether individual redirected shell folders are available offline by default.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control whether individual redirected shell folders are available offline by default.
 
 For the folders affected by this setting, users must manually select the files they wish to make available offline.
 
@@ -240,7 +240,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether the contents of redirected folders is copied from the old location to the new location or simply renamed in the Offline Files cache when a folder is redirected to a new location.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the contents of redirected folders is copied from the old location to the new location or simply renamed in the Offline Files cache when a folder is redirected to a new location.
 
 If you enable this policy setting, when the path to a redirected folder is changed from one network location to another and Folder Redirection is configured to move the content to the new location, instead of copying the content to the new location, the cached content is renamed in the local cache and not copied to the new location. To use this policy setting, you must move or restore the server content to the new network location using a method that preserves the state of the files, including their timestamps, before updating the Folder Redirection location.
 
@@ -309,7 +309,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows the administrator to define whether Folder Redirection should use localized names for the All Programs, Startup, My Music, My Pictures, and My Videos subfolders when redirecting the parent Start Menu and legacy My Documents folder respectively.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows the administrator to define whether Folder Redirection should use localized names for the All Programs, Startup, My Music, My Pictures, and My Videos subfolders when redirecting the parent Start Menu and legacy My Documents folder respectively.
 
 If you enable this policy setting, Windows Vista, Windows 7, Windows 8, and Windows Server 2012 will use localized folder names for these subfolders when redirecting the Start Menu or legacy My Documents folder.
 
@@ -381,7 +381,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows the administrator to define whether Folder Redirection should use localized names for the All Programs, Startup, My Music, My Pictures, and My Videos subfolders when redirecting the parent Start Menu and legacy My Documents folder respectively.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows the administrator to define whether Folder Redirection should use localized names for the All Programs, Startup, My Music, My Pictures, and My Videos subfolders when redirecting the parent Start Menu and legacy My Documents folder respectively.
 
 If you enable this policy setting, Windows Vista, Windows 7, Windows 8, and Windows Server 2012 will use localized folder names for these subfolders when redirecting the Start Menu or legacy My Documents folder.
 
@@ -452,7 +452,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether folders are redirected on a user's primary computers only. This policy setting is useful to improve logon performance and to increase security for user data on computers where the user might not want to download private data, such as on a meeting room computer or on a computer in a remote office.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether folders are redirected on a user's primary computers only. This policy setting is useful to improve logon performance and to increase security for user data on computers where the user might not want to download private data, such as on a meeting room computer or on a computer in a remote office.
 
 To designate a user's primary computers, an administrator must use management software or a script to add primary computer attributes to the user's account in Active Directory Domain Services (AD DS). This policy setting also requires the Windows Server 2012 version of the Active Directory schema to function.
 
@@ -525,7 +525,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether folders are redirected on a user's primary computers only. This policy setting is useful to improve logon performance and to increase security for user data on computers where the user might not want to download private data, such as on a meeting room computer or on a computer in a remote office.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether folders are redirected on a user's primary computers only. This policy setting is useful to improve logon performance and to increase security for user data on computers where the user might not want to download private data, such as on a meeting room computer or on a computer in a remote office.
 
 To designate a user's primary computers, an administrator must use management software or a script to add primary computer attributes to the user's account in Active Directory Domain Services (AD DS). This policy setting also requires the Windows Server 2012 version of the Active Directory schema to function.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-help.md b/windows/client-management/mdm/policy-csp-admx-help.md
index d705d091a0..9f96bb2c16 100644
--- a/windows/client-management/mdm/policy-csp-admx-help.md
+++ b/windows/client-management/mdm/policy-csp-admx-help.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to exclude HTML Help Executable from being monitored by software-enforced Data Execution Prevention.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to exclude HTML Help Executable from being monitored by software-enforced Data Execution Prevention.
 
 Data Execution Prevention (DEP) is designed to block malicious code that takes advantage of exception-handling mechanisms in Windows by monitoring your programs to make sure that they use system memory safely.
 
@@ -154,7 +154,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to restrict certain HTML Help commands to function only in HTML Help (.chm) files within specified folders and their subfolders. Alternatively, you can disable these commands on the entire system. It is strongly recommended that only folders requiring administrative privileges be added to this policy setting.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to restrict certain HTML Help commands to function only in HTML Help (.chm) files within specified folders and their subfolders. Alternatively, you can disable these commands on the entire system. It is strongly recommended that only folders requiring administrative privileges be added to this policy setting.
 
 If you enable this policy setting, the commands function only for .chm files in the specified folders and their subfolders.
 
@@ -237,7 +237,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to restrict programs from being run from online Help.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to restrict programs from being run from online Help.
 
 If you enable this policy setting, you can prevent specified programs from being run from Help. When you enable this policy setting, enter the file names names of the programs you want to restrict, separated by commas.
 
@@ -311,7 +311,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to restrict programs from being run from online Help.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to restrict programs from being run from online Help.
 
 If you enable this policy setting, you can prevent specified programs from being run from Help. When you enable this policy setting, enter the file names names of the programs you want to restrict, separated by commas.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-helpandsupport.md b/windows/client-management/mdm/policy-csp-admx-helpandsupport.md
index 10d08651fc..50be68bfc6 100644
--- a/windows/client-management/mdm/policy-csp-admx-helpandsupport.md
+++ b/windows/client-management/mdm/policy-csp-admx-helpandsupport.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether active content links in trusted assistance content are rendered. By default, the Help viewer renders trusted assistance content with active elements such as ShellExecute links and Guided Help links.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether active content links in trusted assistance content are rendered. By default, the Help viewer renders trusted assistance content with active elements such as ShellExecute links and Guided Help links.
 
 If you enable this policy setting, active content links are not rendered. The text is displayed, but there are no clickable links for these elements.
 
@@ -152,7 +152,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether users can provide ratings for Help content.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether users can provide ratings for Help content.
 
 If you enable this policy setting, ratings controls are not added to Help content.
 
@@ -222,7 +222,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether users can participate in the Help Experience Improvement program. The Help Experience Improvement program collects information about how customers use Windows Help so that Microsoft can improve it.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether users can participate in the Help Experience Improvement program. The Help Experience Improvement program collects information about how customers use Windows Help so that Microsoft can improve it.
 
 If you enable this policy setting, users cannot participate in the Help Experience Improvement program.
 
@@ -291,7 +291,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether users can search and view content from Windows Online in Help and Support. Windows Online provides the most up-to-date Help content for Windows.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether users can search and view content from Windows Online in Help and Support. Windows Online provides the most up-to-date Help content for Windows.
 
 If you enable this policy setting, users are prevented from accessing online assistance content from Windows Online.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-kdc.md b/windows/client-management/mdm/policy-csp-admx-kdc.md
index 4a63715208..baaaa464b2 100644
--- a/windows/client-management/mdm/policy-csp-admx-kdc.md
+++ b/windows/client-management/mdm/policy-csp-admx-kdc.md
@@ -89,7 +89,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure a domain controller to support claims and compound authentication for Dynamic Access Control and Kerberos armoring using Kerberos authentication.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure a domain controller to support claims and compound authentication for Dynamic Access Control and Kerberos armoring using Kerberos authentication.
 
 If you enable this policy setting, client computers that support claims and compound authentication for Dynamic Access Control and are Kerberos armor-aware will use this feature for Kerberos authentication messages. This policy should be applied to all domain controllers to ensure consistent application of this policy in the domain. 
 
@@ -185,7 +185,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines the list of trusting forests that the Key Distribution Center (KDC) searches when attempting to resolve two-part service principal names (SPNs).
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines the list of trusting forests that the Key Distribution Center (KDC) searches when attempting to resolve two-part service principal names (SPNs).
 
 If you enable this policy setting, the KDC will search the forests in this list if it is unable to resolve a two-part SPN in the local forest. The forest search is performed by using a global catalog or name suffix hints. If a match is found, the KDC will return a referral ticket to the client for the appropriate domain.
 
@@ -256,7 +256,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Support for PKInit Freshness Extension requires Windows Server 2016 domain functional level (DFL). If the domain controller’s domain is not at Windows Server 2016 DFL or higher this policy will not be applied.
+Available in the latest Windows 10 Insider Preview Build. Support for PKInit Freshness Extension requires Windows Server 2016 domain functional level (DFL). If the domain controller’s domain is not at Windows Server 2016 DFL or higher this policy will not be applied.
 
 This policy setting allows you to configure a domain controller (DC) to support the PKInit Freshness Extension.
 
@@ -331,7 +331,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure a domain controller to request compound authentication.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure a domain controller to request compound authentication.
 
 > [!NOTE]
 > For a domain controller to request compound authentication, the policy "KDC support for claims, compound authentication, and Kerberos armoring" must be configured and enabled. 
@@ -403,7 +403,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure at what size Kerberos tickets will trigger the warning event issued during Kerberos authentication. The ticket size warnings are logged in the System log.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure at what size Kerberos tickets will trigger the warning event issued during Kerberos authentication. The ticket size warnings are logged in the System log.
 
 If you enable this policy setting, you can set the threshold limit for Kerberos ticket which trigger the warning events. If set too high, then authentication failures might be occurring even though warning events are not being logged. If set too low, then there will be too many ticket warnings in the log to be useful for analysis. This value should be set to the same value as the Kerberos policy "Set maximum Kerberos SSPI context token buffer size" or the smallest MaxTokenSize used in your environment if you are not configuring using Group Policy.
 
@@ -472,7 +472,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether the domain controller provides information about previous logons to client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the domain controller provides information about previous logons to client computers.
 
 If you enable this policy setting, the domain controller provides the information message about previous logons.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-lanmanserver.md b/windows/client-management/mdm/policy-csp-admx-lanmanserver.md
index ddaddd01f1..bf08d08f1b 100644
--- a/windows/client-management/mdm/policy-csp-admx-lanmanserver.md
+++ b/windows/client-management/mdm/policy-csp-admx-lanmanserver.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the cipher suites used by the SMB server.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the cipher suites used by the SMB server.
 
 If you enable this policy setting, cipher suites are prioritized in the order specified.
 
@@ -172,7 +172,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether a hash generation service generates hashes, also called content information, for data that is stored in shared folders. This policy setting must be applied to server computers that have the File Services role and both the File Server and the BranchCache for Network Files role services installed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether a hash generation service generates hashes, also called content information, for data that is stored in shared folders. This policy setting must be applied to server computers that have the File Services role and both the File Server and the BranchCache for Network Files role services installed.
 
 Policy configuration
 
@@ -255,7 +255,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the BranchCache hash generation service supports version 1 (V1) hashes, version 2 (V2) hashes, or both V1 and V2 hashes. Hashes, also called content information, are created based on the data in shared folders where BranchCache is enabled. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the BranchCache hash generation service supports version 1 (V1) hashes, version 2 (V2) hashes, or both V1 and V2 hashes. Hashes, also called content information, are created based on the data in shared folders where BranchCache is enabled. 
 
 If you specify only one version that is supported, content information for that version is the only type that is generated by BranchCache, and it is the only type of content information that can be retrieved by client computers. For example, if you enable support for V1 hashes, BranchCache generates only V1 hashes and client computers can retrieve only V1 hashes.
 
@@ -338,7 +338,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how the SMB server selects a cipher suite when negotiating a new connection with an SMB client.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how the SMB server selects a cipher suite when negotiating a new connection with an SMB client.
 
 If you enable this policy setting, the SMB server will select the cipher suite it most prefers from the list of client-supported cipher suites, ignoring the client's preferences.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-linklayertopologydiscovery.md b/windows/client-management/mdm/policy-csp-admx-linklayertopologydiscovery.md
index d4f25831ab..f36c218e89 100644
--- a/windows/client-management/mdm/policy-csp-admx-linklayertopologydiscovery.md
+++ b/windows/client-management/mdm/policy-csp-admx-linklayertopologydiscovery.md
@@ -77,7 +77,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting changes the operational behavior of the Mapper I/O network protocol driver.
+Available in the latest Windows 10 Insider Preview Build. This policy setting changes the operational behavior of the Mapper I/O network protocol driver.
 
 LLTDIO allows a computer to discover the topology of a network it's connected to. It also allows a computer to initiate Quality-of-Service requests such as bandwidth estimation and network health analysis.
 
@@ -148,7 +148,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting changes the operational behavior of the Responder network protocol driver.
+Available in the latest Windows 10 Insider Preview Build. This policy setting changes the operational behavior of the Responder network protocol driver.
 
 The Responder allows a computer to participate in Link Layer Topology Discovery requests so that it can be discovered and located on the network. It also allows a computer to participate in Quality-of-Service activities such as bandwidth estimation and network health analysis.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-mmc.md b/windows/client-management/mdm/policy-csp-admx-mmc.md
index a86907a534..e51d3bfcb5 100644
--- a/windows/client-management/mdm/policy-csp-admx-mmc.md
+++ b/windows/client-management/mdm/policy-csp-admx-mmc.md
@@ -86,7 +86,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits use of this snap-in.
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits use of this snap-in.
 
 If you enable this setting, the snap-in is permitted. If you disable the setting, the snap-in is prohibited.
 
@@ -165,7 +165,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits use of this snap-in.
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits use of this snap-in.
 
 If you enable this setting, the snap-in is permitted. If you disable the setting, the snap-in is prohibited.
 
@@ -244,7 +244,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits use of this snap-in.
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits use of this snap-in.
 
 If you enable this setting, the snap-in is permitted. If you disable the setting, the snap-in is prohibited.
 
@@ -323,7 +323,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from entering author mode.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from entering author mode.
 
 This setting prevents users from opening the Microsoft Management Console (MMC) in author mode, explicitly opening console files in author mode, and opening any console files that open in author mode by default.
 
@@ -396,7 +396,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you selectively permit or prohibit the use of Microsoft Management Console (MMC) snap-ins.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you selectively permit or prohibit the use of Microsoft Management Console (MMC) snap-ins.
 
 - If you enable this setting, all snap-ins are prohibited, except those that you explicitly permit. Use this setting if you plan to prohibit use of most snap-ins.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-mmcsnapins.md b/windows/client-management/mdm/policy-csp-admx-mmcsnapins.md
index cdd93c1d97..2190dbabeb 100644
--- a/windows/client-management/mdm/policy-csp-admx-mmcsnapins.md
+++ b/windows/client-management/mdm/policy-csp-admx-mmcsnapins.md
@@ -383,7 +383,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -460,7 +460,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -538,7 +538,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -616,7 +616,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -694,7 +694,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -772,7 +772,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -850,7 +850,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -928,7 +928,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1006,7 +1006,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1084,7 +1084,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1162,7 +1162,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1240,7 +1240,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1317,7 +1317,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1394,7 +1394,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1471,7 +1471,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1548,7 +1548,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1625,7 +1625,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1702,7 +1702,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1779,7 +1779,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1856,7 +1856,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -1933,7 +1933,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2010,7 +2010,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2087,7 +2087,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2164,7 +2164,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2241,7 +2241,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2318,7 +2318,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2395,7 +2395,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2472,7 +2472,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2549,7 +2549,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2627,7 +2627,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2704,7 +2704,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2781,7 +2781,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2858,7 +2858,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -2935,7 +2935,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3012,7 +3012,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3089,7 +3089,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3166,7 +3166,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3243,7 +3243,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits use of the Group Policy tab in property sheets for the Active Directory Users and Computers and Active Directory Sites and Services snap-ins.
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits use of the Group Policy tab in property sheets for the Active Directory Users and Computers and Active Directory Sites and Services snap-ins.
 
 If you enable this setting, the Group Policy tab is displayed in the property sheet for a site, domain, or organizational unit displayed by the Active Directory Users and Computers and Active Directory Sites and Services snap-ins. If you disable the setting, the Group Policy tab is not displayed in those snap-ins.
 
@@ -3322,7 +3322,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3399,7 +3399,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3476,7 +3476,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3553,7 +3553,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3630,7 +3630,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3707,7 +3707,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3784,7 +3784,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3861,7 +3861,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -3938,7 +3938,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4015,7 +4015,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4092,7 +4092,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4169,7 +4169,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4246,7 +4246,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4323,7 +4323,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4400,7 +4400,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4477,7 +4477,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4554,7 +4554,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4631,7 +4631,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4708,7 +4708,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4785,7 +4785,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4862,7 +4862,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -4939,7 +4939,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5016,7 +5016,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5093,7 +5093,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5170,7 +5170,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5247,7 +5247,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5324,7 +5324,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5401,7 +5401,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5478,7 +5478,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5555,7 +5555,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5632,7 +5632,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5709,7 +5709,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5786,7 +5786,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5863,7 +5863,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -5940,7 +5940,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6017,7 +6017,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6094,7 +6094,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6171,7 +6171,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6248,7 +6248,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6325,7 +6325,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6402,7 +6402,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6479,7 +6479,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6556,7 +6556,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6633,7 +6633,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6710,7 +6710,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6787,7 +6787,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6864,7 +6864,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -6941,7 +6941,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7018,7 +7018,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7095,7 +7095,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7172,7 +7172,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7249,7 +7249,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7326,7 +7326,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7403,7 +7403,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7480,7 +7480,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7557,7 +7557,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7634,7 +7634,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7711,7 +7711,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7788,7 +7788,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7865,7 +7865,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -7942,7 +7942,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8019,7 +8019,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8096,7 +8096,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8173,7 +8173,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8250,7 +8250,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8327,7 +8327,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
@@ -8404,7 +8404,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits or prohibits the use of this snap-in. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits or prohibits the use of this snap-in. 
 
 If you enable this policy setting, the snap-in is permitted and can be added into the Microsoft Management Console or run from the command line as a standalone console. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-msapolicy.md b/windows/client-management/mdm/policy-csp-admx-msapolicy.md
index e8c35ac22e..7a9e6a5a84 100644
--- a/windows/client-management/mdm/policy-csp-admx-msapolicy.md
+++ b/windows/client-management/mdm/policy-csp-admx-msapolicy.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether users can provide Microsoft accounts for authentication for applications or services. If this setting is enabled, all applications and services on the device are prevented from using Microsoft accounts for authentication.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether users can provide Microsoft accounts for authentication for applications or services. If this setting is enabled, all applications and services on the device are prevented from using Microsoft accounts for authentication.
 
 This applies both to existing users of a device and new users who may be added. However, any application or service that has already authenticated a user will not be affected by enabling this setting until the authentication cache expires.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-nca.md b/windows/client-management/mdm/policy-csp-admx-nca.md
index 840af17067..da9eca2118 100644
--- a/windows/client-management/mdm/policy-csp-admx-nca.md
+++ b/windows/client-management/mdm/policy-csp-admx-nca.md
@@ -95,7 +95,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies resources on your intranet that are normally accessible to DirectAccess clients. Each entry is a string that identifies the type of resource and the location of the resource. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies resources on your intranet that are normally accessible to DirectAccess clients. Each entry is a string that identifies the type of resource and the location of the resource. 
 
 Each string can be one of the following types:  
 
@@ -174,7 +174,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies commands configured by the administrator for custom logging. These commands will run in addition to default log commands.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies commands configured by the administrator for custom logging. These commands will run in addition to default log commands.
 
 <!--/Description-->
 > [!TIP]
@@ -239,7 +239,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the IPv6 addresses of the endpoints of the Internet Protocol security (IPsec) tunnels that enable DirectAccess. NCA attempts to access the resources that are specified in the Corporate Resources setting through these configured tunnel endpoints. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the IPv6 addresses of the endpoints of the Internet Protocol security (IPsec) tunnels that enable DirectAccess. NCA attempts to access the resources that are specified in the Corporate Resources setting through these configured tunnel endpoints. 
 
 By default, NCA uses the same DirectAccess server that the DirectAccess client computer connection is using. In default configurations of DirectAccess, there are typically two IPsec tunnel endpoints: one for the infrastructure tunnel and one for the intranet tunnel. You should configure one endpoint for each tunnel.
 
@@ -310,7 +310,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the string that appears for DirectAccess connectivity when the user clicks the Networking notification area icon. For example, you can specify “Contoso Intranet Access” for the DirectAccess clients of the Contoso Corporation.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the string that appears for DirectAccess connectivity when the user clicks the Networking notification area icon. For example, you can specify “Contoso Intranet Access” for the DirectAccess clients of the Contoso Corporation.
 
 If this setting is not configured, the string that appears for DirectAccess connectivity is “Corporate Connection”.
 
@@ -377,7 +377,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the user has Connect and Disconnect options for the DirectAccess entry when the user clicks the Networking notification area icon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the user has Connect and Disconnect options for the DirectAccess entry when the user clicks the Networking notification area icon.
 
 If the user clicks the Disconnect option, NCA removes the DirectAccess rules from the Name Resolution Policy Table (NRPT) and the DirectAccess client computer uses whatever normal name resolution is available to the client computer in its current network configuration, including sending all DNS queries to the local intranet or Internet DNS servers. Note that NCA does not remove the existing IPsec tunnels and users can still access intranet resources across the DirectAccess server by specifying IPv6 addresses rather than names.
 
@@ -453,7 +453,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether NCA service runs in Passive Mode or not.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether NCA service runs in Passive Mode or not.
 
 Set this to Disabled to keep NCA probing actively all the time. If this setting is not configured, NCA probing is in active mode by default.
 <!--/Description-->
@@ -519,7 +519,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether an entry for DirectAccess connectivity appears when the user clicks the Networking notification area icon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether an entry for DirectAccess connectivity appears when the user clicks the Networking notification area icon.
 
 Set this to Disabled to prevent user confusion when you are just using DirectAccess to remotely manage DirectAccess client computers from your intranet and not providing seamless intranet access. 
 
@@ -588,7 +588,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the e-mail address to be used when sending the log files that are generated by NCA to the network administrator. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the e-mail address to be used when sending the log files that are generated by NCA to the network administrator. 
 
 When the user sends the log files to the Administrator, NCA uses the default e-mail client to open a new message with the support email address in the To: field of the message, then attaches the generated log files as a .html file. The user can review the message and add additional information before sending the message.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-ncsi.md b/windows/client-management/mdm/policy-csp-admx-ncsi.md
index 3e575f3fdf..68f54caf09 100644
--- a/windows/client-management/mdm/policy-csp-admx-ncsi.md
+++ b/windows/client-management/mdm/policy-csp-admx-ncsi.md
@@ -92,7 +92,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting  enables you to specify the expected address of the host name used for the DNS probe. Successful resolution of the host name to this address indicates corporate connectivity.
+Available in the latest Windows 10 Insider Preview Build. This policy setting  enables you to specify the expected address of the host name used for the DNS probe. Successful resolution of the host name to this address indicates corporate connectivity.
 
 <!--/Description-->
 > [!TIP]
@@ -157,7 +157,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables you to specify the host name of a computer known to be on the corporate network. Successful resolution of this host name to the expected address indicates corporate connectivity.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables you to specify the host name of a computer known to be on the corporate network. Successful resolution of this host name to the expected address indicates corporate connectivity.
 
 <!--/Description-->
 > [!TIP]
@@ -222,7 +222,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables you to specify the list of IPv6 corporate site prefixes to monitor for corporate connectivity. Reachability of addresses with any of these prefixes indicates corporate connectivity.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables you to specify the list of IPv6 corporate site prefixes to monitor for corporate connectivity. Reachability of addresses with any of these prefixes indicates corporate connectivity.
 
 <!--/Description-->
 > [!TIP]
@@ -287,7 +287,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables you to specify the URL of the corporate website, against which an active probe is performed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables you to specify the URL of the corporate website, against which an active probe is performed.
 
 <!--/Description-->
 > [!TIP]
@@ -355,7 +355,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables you to specify the HTTPS URL of the corporate website that clients use to determine the current domain location (i.e. whether the computer is inside or outside the corporate network). Reachability of the URL destination indicates that the client location is inside corporate network; otherwise it is outside the network.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables you to specify the HTTPS URL of the corporate website that clients use to determine the current domain location (i.e. whether the computer is inside or outside the corporate network). Reachability of the URL destination indicates that the client location is inside corporate network; otherwise it is outside the network.
 
 <!--/Description-->
 > [!TIP]
@@ -420,7 +420,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables you to specify DNS binding behavior. NCSI by default will restrict DNS lookups to the interface it is currently probing on. If you enable this setting, NCSI will allow the DNS lookups to happen on any interface.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables you to specify DNS binding behavior. NCSI by default will restrict DNS lookups to the interface it is currently probing on. If you enable this setting, NCSI will allow the DNS lookups to happen on any interface.
 
 <!--/Description-->
 > [!TIP]
@@ -485,7 +485,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This Policy setting enables you to specify passive polling behavior. NCSI polls various measurements throughout the network stack on a frequent interval to determine if network connectivity has been lost.  Use the options to control the passive polling behavior.
+Available in the latest Windows 10 Insider Preview Build. This Policy setting enables you to specify passive polling behavior. NCSI polls various measurements throughout the network stack on a frequent interval to determine if network connectivity has been lost.  Use the options to control the passive polling behavior.
 
 <!--/Description-->
 > [!TIP]
diff --git a/windows/client-management/mdm/policy-csp-admx-netlogon.md b/windows/client-management/mdm/policy-csp-admx-netlogon.md
index 782b57ba8c..a01bbd5c4d 100644
--- a/windows/client-management/mdm/policy-csp-admx-netlogon.md
+++ b/windows/client-management/mdm/policy-csp-admx-netlogon.md
@@ -176,7 +176,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures how a domain controller (DC) behaves when responding to a client whose IP address does not map to any configured site.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures how a domain controller (DC) behaves when responding to a client whose IP address does not map to any configured site.
 
 Domain controllers use the client IP address during a DC locator ping request to compute which Active Directory site the client belongs to. If no site mapping can be computed, the DC may do an address lookup on the client network name to discover other IP addresses which may then be used to compute a matching site for the client. 
 
@@ -253,7 +253,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the type of IP address that is returned for a domain controller. The DC Locator APIs return the IP address of the DC with the other parts of information. Before the support of IPv6, the returned DC IP address was IPv4. But with the support of IPv6, the DC Locator APIs can return IPv6 DC address. The returned IPv6 DC address may not be correctly handled by some of the existing applications. So this policy is provided to support such scenarios.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the type of IP address that is returned for a domain controller. The DC Locator APIs return the IP address of the DC with the other parts of information. Before the support of IPv6, the returned DC IP address was IPv4. But with the support of IPv6, the DC Locator APIs can return IPv6 DC address. The returned IPv6 DC address may not be correctly handled by some of the existing applications. So this policy is provided to support such scenarios.
 
 By default, DC Locator APIs can return IPv4/IPv6 DC address. But if some applications are broken due to the returned IPv6 DC address, this policy can be used to disable the default behavior and enforce to return only IPv4 DC address. Once applications are fixed, this policy can be used to enable the default behavior.
 
@@ -328,7 +328,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the computers to which this setting is applied attempts DNS name resolution of single-label domain names, by appending different registered DNS suffixes, and uses NetBIOS name resolution only if DNS name resolution fails. This policy, including the specified default behavior, is not used if the AllowSingleLabelDnsDomain policy setting is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the computers to which this setting is applied attempts DNS name resolution of single-label domain names, by appending different registered DNS suffixes, and uses NetBIOS name resolution only if DNS name resolution fails. This policy, including the specified default behavior, is not used if the AllowSingleLabelDnsDomain policy setting is enabled.
 
 By default, when no setting is specified for this policy, the behavior is the same as explicitly enabling this policy, unless the AllowSingleLabelDnsDomain policy setting is enabled.
 
@@ -401,7 +401,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether the Net Logon service will allow the use of older cryptography algorithms that are used in Windows NT 4.0. The cryptography algorithms used in Windows NT 4.0 and earlier are not as secure as newer algorithms used in Windows 2000 or later, including this version of Windows.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether the Net Logon service will allow the use of older cryptography algorithms that are used in Windows NT 4.0. The cryptography algorithms used in Windows NT 4.0 and earlier are not as secure as newer algorithms used in Windows 2000 or later, including this version of Windows.
 
 By default, Net Logon will not allow the older cryptography algorithms to be used and will not include them in the negotiation of cryptography algorithms. Therefore, computers running Windows NT 4.0 will not be able to establish a connection to this domain controller.
  
@@ -476,7 +476,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the computers to which this setting is applied attempt DNS name resolution of a single-label domain names.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the computers to which this setting is applied attempt DNS name resolution of a single-label domain names.
 
 By default, the behavior specified in the AllowDnsSuffixSearch is used. If the AllowDnsSuffixSearch policy is disabled, then NetBIOS name resolution is used exclusively, to locate a domain controller hosting an Active Directory domain specified with a single-label name.
 
@@ -551,7 +551,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether domain controllers (DC) will dynamically register DC Locator site-specific SRV records for the closest sites where no DC for the same domain exists (or no Global Catalog for the same forest exists). These DNS records are dynamically registered by the Net Logon service, and they are used to locate the DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether domain controllers (DC) will dynamically register DC Locator site-specific SRV records for the closest sites where no DC for the same domain exists (or no Global Catalog for the same forest exists). These DNS records are dynamically registered by the Net Logon service, and they are used to locate the DC.
 
 If you enable this policy setting, the DCs to which this setting is applied dynamically register DC Locator site-specific DNS SRV records for the closest sites where no DC for the same domain, or no Global Catalog for the same forest, exists.
 
@@ -624,7 +624,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control the domain controller (DC) location algorithm. By default, the DC location algorithm prefers DNS-based discovery if the DNS domain name is known. If DNS-based discovery fails and the NetBIOS domain name is known, the algorithm then uses NetBIOS-based discovery as a fallback mechanism.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control the domain controller (DC) location algorithm. By default, the DC location algorithm prefers DNS-based discovery if the DNS domain name is known. If DNS-based discovery fails and the NetBIOS domain name is known, the algorithm then uses NetBIOS-based discovery as a fallback mechanism.
 
 NetBIOS-based discovery uses a WINS server and mailslot messages but does not use site information. Hence it does not ensure that clients will discover the closest DC. It also allows a hub-site client to discover a branch-site DC even if the branch-site DC only registers site-specific DNS records (as recommended). For these reasons, NetBIOS-based discovery is not recommended.
 
@@ -700,7 +700,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines whether a domain controller (DC) should attempt to verify the password provided by a client with the PDC emulator if the DC failed to validate the password.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines whether a domain controller (DC) should attempt to verify the password provided by a client with the PDC emulator if the DC failed to validate the password.
 
 Contacting the PDC emulator is useful in case the client’s password was recently changed and did not propagate to the DC yet. Users may want to disable this feature if the PDC emulator is located over a slow WAN connection.
 
@@ -775,7 +775,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the amount of time (in seconds) to wait before the first retry for applications that perform periodic searches for domain controllers (DC) that are unable to find a DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the amount of time (in seconds) to wait before the first retry for applications that perform periodic searches for domain controllers (DC) that are unable to find a DC.
 
 The default value for this setting is 10 minutes (10*60). 
 
@@ -853,7 +853,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines  the maximum retry interval allowed when applications performing periodic searches for Domain Controllers (DCs) are unable to find a DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines  the maximum retry interval allowed when applications performing periodic searches for Domain Controllers (DCs) are unable to find a DC.
 
 For example, the retry intervals may be set at 10 minutes, then 20 minutes and then 40 minutes, but when the interval reaches the value set in this setting, that value becomes the retry interval for all subsequent retries until the value set in Final DC Discovery Retry Setting is reached.
 
@@ -933,7 +933,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines when retries are no longer allowed for applications that perform periodic searches for domain controllers (DC) are unable to find a DC. For example, retires may be set to occur according to the Use maximum DC discovery retry interval policy setting, but when the value set in this policy setting is reached, no more retries occur. If a value for this policy setting is smaller than the value in the Use maximum DC discovery retry interval policy setting, the value for Use maximum DC discovery retry interval policy setting is used.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when retries are no longer allowed for applications that perform periodic searches for domain controllers (DC) are unable to find a DC. For example, retires may be set to occur according to the Use maximum DC discovery retry interval policy setting, but when the value set in this policy setting is reached, no more retries occur. If a value for this policy setting is smaller than the value in the Use maximum DC discovery retry interval policy setting, the value for Use maximum DC discovery retry interval policy setting is used.
 
 The default value for this setting is to not quit retrying (0). The maximum value for this setting is 49 days (0x49*24*60*60=4233600). The minimum value for this setting is 0.
 
@@ -1005,7 +1005,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines when a successful DC cache entry is refreshed. This policy setting is applied to caller programs that periodically attempt to locate DCs, and it is applied before  returning the DC information to the caller program. The default value for this setting is infinite (4294967200). The maximum value for this setting is (4294967200), while the maximum that is not treated as infinity is 49 days (49*24*60*60=4233600). Any larger value is treated as infinity. The minimum value for this setting is to always refresh (0).
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when a successful DC cache entry is refreshed. This policy setting is applied to caller programs that periodically attempt to locate DCs, and it is applied before  returning the DC information to the caller program. The default value for this setting is infinite (4294967200). The maximum value for this setting is (4294967200), while the maximum that is not treated as infinity is 49 days (49*24*60*60=4233600). Any larger value is treated as infinity. The minimum value for this setting is to always refresh (0).
 
 <!--/Description-->
 > [!TIP]
@@ -1072,7 +1072,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the level of debug output for the Net Logon service.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the level of debug output for the Net Logon service.
 
 The Net Logon service outputs debug information to the log file netlogon.log in the directory %windir%\debug. By default, no debug information is logged.
 
@@ -1147,7 +1147,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines which DC Locator DNS records are not registered by the Net Logon service.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines which DC Locator DNS records are not registered by the Net Logon service.
 
 If you enable this policy setting, select Enabled and specify a list of space-delimited mnemonics (instructions) for the DC Locator DNS records that will not be registered by the DCs to which this setting is applied.
 
@@ -1246,7 +1246,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the Refresh Interval of the DC Locator DNS resource records for DCs to which this setting is applied. These DNS records are dynamically registered by the Net Logon service and are used by the DC Locator algorithm to locate the DC. This setting may be applied only to DCs using dynamic update.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the Refresh Interval of the DC Locator DNS resource records for DCs to which this setting is applied. These DNS records are dynamically registered by the Net Logon service and are used by the DC Locator algorithm to locate the DC. This setting may be applied only to DCs using dynamic update.
 
 DCs configured to perform dynamic registration of the DC Locator DNS resource records periodically reregister their records with DNS servers, even if their records’ data has not changed. If authoritative DNS servers are configured to perform scavenging of the stale records, this reregistration is required to instruct the DNS servers configured to automatically remove (scavenge) stale records that these records are current and should be preserved in the database.
 
@@ -1322,7 +1322,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures whether the domain controllers to which this setting is applied will lowercase their DNS host name when registering SRV records.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures whether the domain controllers to which this setting is applied will lowercase their DNS host name when registering SRV records.
 
 If enabled, domain controllers will lowercase their DNS host name when registering domain controller SRV records. A best-effort attempt will be made to delete any previously registered SRV records that contain mixed-case DNS host names. For more information and potential manual cleanup procedures, see the link below.
 
@@ -1398,7 +1398,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the value for the Time-To-Live (TTL) field in SRV resource records that are registered by the Net Logon service. These DNS records are dynamically registered, and they are used to locate the domain controller (DC).
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the value for the Time-To-Live (TTL) field in SRV resource records that are registered by the Net Logon service. These DNS records are dynamically registered, and they are used to locate the domain controller (DC).
 
 To specify the TTL for DC Locator DNS records, click Enabled, and then enter a value in seconds (for example, the value "900" is 15 minutes).
 
@@ -1468,7 +1468,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the additional time for the computer to wait for the domain controller’s (DC) response when logging on to the network.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the additional time for the computer to wait for the domain controller’s (DC) response when logging on to the network.
 
 To specify the expected dial-up delay at logon, click Enabled, and then enter the desired value in seconds (for example, the value "60" is 1 minute).
 
@@ -1539,7 +1539,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the interval for when a Force Rediscovery is carried out by DC Locator.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the interval for when a Force Rediscovery is carried out by DC Locator.
 
 The Domain Controller Locator (DC Locator) service is used by clients to find domain controllers for their Active Directory domain. When DC Locator finds a domain controller, it caches domain controllers to improve the efficiency of the location algorithm. As long as the cached domain controller meets the requirements and is running, DC Locator will continue to return it. If a new domain controller is introduced, existing clients will only discover it when a Force Rediscovery is carried out by DC Locator. To adapt to changes in network conditions DC Locator will by default carry out a Force Rediscovery according to a specific time interval and maintain efficient load-balancing of clients across all available domain controllers in all domains or forests. The default time interval for Force Rediscovery by DC Locator is 12 hours. Force Rediscovery can also be triggered if a call to DC Locator uses the DS_FORCE_REDISCOVERY flag. Rediscovery resets the timer on the cached domain controller entries.
 
@@ -1614,7 +1614,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the sites for which the global catalogs (GC) should register site-specific GC locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the GC resides, and records registered by a GC configured to register GC Locator DNS SRV records for those sites without a GC that are closest to it. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the sites for which the global catalogs (GC) should register site-specific GC locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the GC resides, and records registered by a GC configured to register GC Locator DNS SRV records for those sites without a GC that are closest to it. 
 
 The GC Locator DNS records and the site-specific SRV records are dynamically registered by the Net Logon service, and they are used to locate the GC. An Active Directory site is one or more well-connected TCP/IP subnets that allow administrators to configure Active Directory access and replication. A GC is a domain controller that contains a partial replica of every domain in Active Directory.
 
@@ -1687,7 +1687,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control the processing of incoming mailslot messages by a local domain controller (DC).
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control the processing of incoming mailslot messages by a local domain controller (DC).
 
 > [!NOTE]
 > To locate a remote DC based on its NetBIOS (single-label) domain name, DC Locator first gets the list of DCs from a WINS server that is configured in its local client settings. DC Locator then sends a mailslot message to each remote DC to get more information. DC location succeeds only if a remote DC responds to the mailslot message.
@@ -1763,7 +1763,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the Priority field in the SRV resource records registered by domain controllers (DC) to which this setting is applied. These DNS records are dynamically registered by the Net Logon service and are used to locate the DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the Priority field in the SRV resource records registered by domain controllers (DC) to which this setting is applied. These DNS records are dynamically registered by the Net Logon service and are used to locate the DC.
 
 The Priority field in the SRV record sets the preference for target hosts (specified in the SRV record’s Target field). DNS clients that query for SRV resource records attempt to contact the first reachable host with the lowest priority number listed.
 
@@ -1836,7 +1836,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the Weight field in the SRV resource records registered by the domain controllers (DC) to which this setting is applied. These DNS records are dynamically registered by the Net Logon service, and they are used to locate the DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the Weight field in the SRV resource records registered by the domain controllers (DC) to which this setting is applied. These DNS records are dynamically registered by the Net Logon service, and they are used to locate the DC.
 
 The Weight field in the SRV record can be used in addition to the Priority value to provide a load-balancing mechanism where multiple servers are specified in the SRV records Target field and are all set to the same priority. The probability with which the DNS client randomly selects the target host to be contacted is proportional to the Weight field value in the SRV record.
 
@@ -1909,7 +1909,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the maximum size in bytes of the log file netlogon.log in the directory %windir%\debug when logging is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the maximum size in bytes of the log file netlogon.log in the directory %windir%\debug when logging is enabled.
 
 By default, the maximum size of the log file is 20MB. If you enable this policy setting, the maximum size of the log file is set to the specified size.  Once this size is reached the log file is saved to netlogon.bak and netlogon.log is truncated. A reasonable value based on available storage should be specified.
 
@@ -1980,7 +1980,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the sites for which the domain controllers (DC) that host the application directory partition should register the site-specific, application directory partition-specific DC Locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the DC resides, and records registered by a DC configured to register DC Locator DNS SRV records for those sites without a DC that are closest to it. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the sites for which the domain controllers (DC) that host the application directory partition should register the site-specific, application directory partition-specific DC Locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the DC resides, and records registered by a DC configured to register DC Locator DNS SRV records for those sites without a DC that are closest to it. 
 
 The application directory partition DC Locator DNS records and the site-specific SRV records are dynamically registered by the Net Logon service, and they are used to locate the application directory partition-specific DC. An Active Directory site is one or more well-connected TCP/IP subnets that allow administrators to configure Active Directory access and replication.
 
@@ -2053,7 +2053,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the amount of time (in seconds) the DC locator remembers that a domain controller (DC) could not be found in a domain. When a subsequent attempt to locate the DC occurs within the time set in this setting, DC Discovery immediately fails, without attempting to find the DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the amount of time (in seconds) the DC locator remembers that a domain controller (DC) could not be found in a domain. When a subsequent attempt to locate the DC occurs within the time set in this setting, DC Discovery immediately fails, without attempting to find the DC.
 
 The default value for this setting is 45 seconds. The maximum value for this setting is 7 days (7*24*60*60). The minimum value for this setting is 0.
 
@@ -2125,7 +2125,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether or not the Netlogon share created by the Net Logon service on a domain controller (DC) should support compatibility in file sharing semantics with earlier applications.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether or not the Netlogon share created by the Net Logon service on a domain controller (DC) should support compatibility in file sharing semantics with earlier applications.
 
 If you enable this policy setting, the Netlogon share will honor file sharing semantics that grant requests for exclusive read access to files on the share even when the caller has only read permission.
 
@@ -2203,7 +2203,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines when a successful DC cache entry is refreshed. This policy setting is applied to caller programs that do not periodically attempt to locate DCs, and it is applied before the returning the DC information to the caller program. This policy setting is relevant to only those callers of DsGetDcName that have not specified the DS_BACKGROUND_ONLY flag.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines when a successful DC cache entry is refreshed. This policy setting is applied to caller programs that do not periodically attempt to locate DCs, and it is applied before the returning the DC information to the caller program. This policy setting is relevant to only those callers of DsGetDcName that have not specified the DS_BACKGROUND_ONLY flag.
 
 The default value for this setting is 30 minutes (1800). The maximum value for this setting is (4294967200), while the maximum that is not treated as infinity is 49 days (49*24*60*60=4233600). Any larger value will be treated as infinity. The minimum value for this setting is to always refresh (0).
 
@@ -2272,7 +2272,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures whether the computers to which this setting is applied are more aggressive when trying to locate a domain controller (DC).
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures whether the computers to which this setting is applied are more aggressive when trying to locate a domain controller (DC).
 
 When an environment has a large number of DCs running both old and new operating systems, the default DC locator discovery behavior may be insufficient to find DCs running a newer operating system.  This policy setting can be enabled to configure DC locator to be more aggressive about trying to locate a DC in such an environment, by pinging DCs at a higher frequency.  Enabling this setting may result in additional network traffic and increased load on DCs.  You should disable this setting once all DCs are running the same OS version.
 
@@ -2350,7 +2350,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the interval at which Netlogon performs the following scavenging operations:
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the interval at which Netlogon performs the following scavenging operations:
 
 - Checks if a password on a secure channel needs to be modified, and modifies it if necessary.
 
@@ -2427,7 +2427,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the sites for which the domain controllers (DC) register the site-specific DC Locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the DC resides, and records registered by a DC configured to register DC Locator DNS SRV records for those sites without a DC that are closest to it. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the sites for which the domain controllers (DC) register the site-specific DC Locator DNS SRV resource records. These records are registered in addition to the site-specific SRV records registered for the site where the DC resides, and records registered by a DC configured to register DC Locator DNS SRV records for those sites without a DC that are closest to it. 
 
 The DC Locator DNS records are dynamically registered by the Net Logon service, and they are used to locate the DC. An Active Directory site is one or more well-connected TCP/IP subnets that allow administrators to configure Active Directory access and replication.
 
@@ -2500,7 +2500,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the Active Directory site to which computers belong.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the Active Directory site to which computers belong.
 
 An Active Directory site is one or more well-connected TCP/IP subnets that allow administrators to configure Active Directory access and replication.
 
@@ -2573,7 +2573,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether or not the SYSVOL share created by the Net Logon service on a domain controller (DC) should support compatibility in file sharing semantics with earlier applications.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether or not the SYSVOL share created by the Net Logon service on a domain controller (DC) should support compatibility in file sharing semantics with earlier applications.
 
 When this setting is enabled, the SYSVOL share will honor file sharing semantics that grant requests for exclusive read access to files on the share even when the caller has only read permission.
 
@@ -2651,7 +2651,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables DC Locator to attempt to locate a DC in the nearest site based on the site link cost if a DC in same the site is not found. In scenarios with multiple sites, failing over to the try next closest site during DC Location streamlines network traffic more effectively.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables DC Locator to attempt to locate a DC in the nearest site based on the site link cost if a DC in same the site is not found. In scenarios with multiple sites, failing over to the try next closest site during DC Location streamlines network traffic more effectively.
 
 The DC Locator service is used by clients to find domain controllers for their Active Directory domain. The default behavior for DC Locator is to find a DC in the same site. If none are found in the same site, a DC in another site, which might be several site-hops away, could be returned by DC Locator. Site proximity between two sites is determined by the total site-link cost between them. A site is closer if it has a lower site link cost than another site with a higher site link cost. 
 
@@ -2726,7 +2726,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines if dynamic registration of the domain controller (DC) locator DNS resource records is enabled. These DNS records are dynamically registered by the Net Logon service and are used by the Locator algorithm to locate the DC.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines if dynamic registration of the domain controller (DC) locator DNS resource records is enabled. These DNS records are dynamically registered by the Net Logon service and are used by the Locator algorithm to locate the DC.
 
 If you enable this policy setting, DCs to which this setting is applied dynamically register DC Locator DNS resource records through dynamic DNS update-enabled network connections.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-offlinefiles.md b/windows/client-management/mdm/policy-csp-admx-offlinefiles.md
index abd5e758fc..1a170d2024 100644
--- a/windows/client-management/mdm/policy-csp-admx-offlinefiles.md
+++ b/windows/client-management/mdm/policy-csp-admx-offlinefiles.md
@@ -209,7 +209,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting makes subfolders available offline whenever their parent folder is made available offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting makes subfolders available offline whenever their parent folder is made available offline.
 
 This setting automatically extends the "make available offline" setting to all new and existing subfolders of a folder. Users do not have the option of excluding subfolders.
 
@@ -280,7 +280,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lists network files and folders that are always available for offline use. This ensures that the specified files and folders are available offline to users of the computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lists network files and folders that are always available for offline use. This ensures that the specified files and folders are available offline to users of the computer.
 
 If you enable this policy setting, the files you enter are always available offline to users of the computer. To specify a file or folder, click Show. In the Show Contents dialog box in the Value Name column, type the fully qualified UNC path to the file or folder. Leave the Value column field blank.
 
@@ -354,7 +354,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lists network files and folders that are always available for offline use. This ensures that the specified files and folders are available offline to users of the computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lists network files and folders that are always available for offline use. This ensures that the specified files and folders are available offline to users of the computer.
 
 If you enable this policy setting, the files you enter are always available offline to users of the computer. To specify a file or folder, click Show. In the Show Contents dialog box in the Value Name column, type the fully qualified UNC path to the file or folder. Leave the Value column field blank.
 
@@ -428,7 +428,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls when background synchronization occurs while operating in slow-link mode, and applies to any user who logs onto the specified machine while this policy is in effect. To control slow-link mode, use the "Configure slow-link mode" policy setting.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls when background synchronization occurs while operating in slow-link mode, and applies to any user who logs onto the specified machine while this policy is in effect. To control slow-link mode, use the "Configure slow-link mode" policy setting.
 
 If you enable this policy setting, you can control when Windows synchronizes in the background while operating in slow-link mode. Use  the 'Sync Interval' and 'Sync Variance' values to override the default sync interval and variance settings. Use 'Blockout Start Time' and 'Blockout Duration' to set a period of time where background sync is disabled. Use the 'Maximum Allowed Time Without A Sync' value to ensure that all  network folders on the machine are synchronized with the server on a regular basis.
 
@@ -499,7 +499,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting limits the amount of disk space that can be used to store offline files. This includes the space used by automatically cached files and files that are specifically made available offline. Files can be automatically cached if the user accesses a file on an automatic caching network share.
+Available in the latest Windows 10 Insider Preview Build. This policy setting limits the amount of disk space that can be used to store offline files. This includes the space used by automatically cached files and files that are specifically made available offline. Files can be automatically cached if the user accesses a file on an automatic caching network share.
 
 This setting also disables the ability to adjust, through the Offline Files control panel applet, the disk space limits on the Offline Files cache. This prevents users from trying to change the option while a policy setting controls it.
 
@@ -580,7 +580,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
 
 This setting also disables the "When a network connection is lost" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -664,7 +664,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
 
 This setting also disables the "When a network connection is lost" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -748,7 +748,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Limits the percentage of the computer's disk space that can be used to store automatically cached offline files.
+Available in the latest Windows 10 Insider Preview Build. Limits the percentage of the computer's disk space that can be used to store automatically cached offline files.
 
 This setting also disables the "Amount of disk space to use for temporary offline files" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -828,7 +828,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185.This policy setting determines whether the Offline Files feature is enabled. Offline Files saves a copy of network files on the user's computer for use when the computer is not connected to the network.
+Available in the latest Windows 10 Insider Preview Build.This policy setting determines whether the Offline Files feature is enabled. Offline Files saves a copy of network files on the user's computer for use when the computer is not connected to the network.
 
 If you enable this policy setting, Offline Files is enabled and users cannot disable it.
 
@@ -902,7 +902,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are encrypted.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are encrypted.
 
 Offline files are locally cached copies of files from a network share. Encrypting this cache reduces the likelihood that a user could access files from the Offline Files cache without proper permissions.
 
@@ -979,7 +979,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines which events the Offline Files feature records in the event log.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines which events the Offline Files feature records in the event log.
 
 Offline Files records events in the Application log in Event Viewer when it detects errors. By default, Offline Files records an event only when the offline files storage cache is corrupted. However, you can use this setting to specify additional events you want Offline Files to record.
 
@@ -1059,7 +1059,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines which events the Offline Files feature records in the event log.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines which events the Offline Files feature records in the event log.
 
 Offline Files records events in the Application log in Event Viewer when it detects errors. By default, Offline Files records an event only when the offline files storage cache is corrupted. However, you can use this setting to specify additional events you want Offline Files to record.
 
@@ -1139,7 +1139,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables administrators to block certain file types from being created in the folders that have been made available offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables administrators to block certain file types from being created in the folders that have been made available offline.
 
 If you enable this policy setting, a user will be unable to create files with the specified file extensions in any of the folders that have been made available offline.
 
@@ -1208,7 +1208,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Lists types of files that cannot be used offline.
+Available in the latest Windows 10 Insider Preview Build. Lists types of files that cannot be used offline.
 
 This setting lets you exclude certain types of files from automatic and manual caching for offline use. The system does not cache files of the type specified in this setting even when they reside on a network share configured for automatic caching. Also, if users try to make a file of this type available offline, the operation will fail and the following message will be displayed in the Synchronization Manager progress dialog box: "Files of this type cannot be made available offline."
 
@@ -1282,7 +1282,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
 
 This setting also disables the "When a network connection is lost" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -1366,7 +1366,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether network files remain available if the computer is suddenly disconnected from the server hosting the files.
 
 This setting also disables the "When a network connection is lost" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -1450,7 +1450,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Offline Files folder.
+Available in the latest Windows 10 Insider Preview Build. This policy setting disables the Offline Files folder.
 
 This setting disables the "View Files" button on the Offline Files tab. As a result, users cannot use the Offline Files folder to view or open copies of network files stored on their computer. Also, they cannot use the folder to view characteristics of offline files, such as their server status, type, or location.
 
@@ -1524,7 +1524,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Offline Files folder.
+Available in the latest Windows 10 Insider Preview Build. This policy setting disables the Offline Files folder.
 
 This setting disables the "View Files" button on the Offline Files tab. As a result, users cannot use the Offline Files folder to view or open copies of network files stored on their computer. Also, they cannot use the folder to view characteristics of offline files, such as their server status, type, or location.
 
@@ -1598,7 +1598,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from enabling, disabling, or changing the configuration of Offline Files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from enabling, disabling, or changing the configuration of Offline Files.
 
 This setting removes the Offline Files tab from the Folder Options dialog box. It also removes the Settings item from the Offline Files context menu and disables the Settings button on the Offline Files Status dialog box. As a result, users cannot view or change the options on the Offline Files tab or Offline Files dialog box.
 
@@ -1672,7 +1672,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from enabling, disabling, or changing the configuration of Offline Files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from enabling, disabling, or changing the configuration of Offline Files.
 
 This setting removes the Offline Files tab from the Folder Options dialog box. It also removes the Settings item from the Offline Files context menu and disables the Settings button on the Offline Files Status dialog box. As a result, users cannot view or change the options on the Offline Files tab or Offline Files dialog box.
 
@@ -1746,7 +1746,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from making network files and folders available offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from making network files and folders available offline.
 
 If you enable this policy setting, users cannot designate files to be saved on their computer for offline use. However, Windows will still cache local copies of files that reside on network shares designated for automatic caching.
 
@@ -1819,7 +1819,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from making network files and folders available offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from making network files and folders available offline.
 
 If you enable this policy setting, users cannot designate files to be saved on their computer for offline use. However, Windows will still cache local copies of files that reside on network shares designated for automatic caching.
 
@@ -1892,7 +1892,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage a list of files and folders for which you want to block the "Make Available Offline" command.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage a list of files and folders for which you want to block the "Make Available Offline" command.
 
 If you enable this policy setting, the "Make Available Offline" command is not available for the files and folders that you list. To specify these files and folders, click Show. In the Show Contents dialog box, in the Value Name column box, type the fully qualified UNC path to the file or folder. Leave the Value column field blank.
 
@@ -1969,7 +1969,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage a list of files and folders for which you want to block the "Make Available Offline" command.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage a list of files and folders for which you want to block the "Make Available Offline" command.
 
 If you enable this policy setting, the "Make Available Offline" command is not available for the files and folders that you list. To specify these files and folders, click Show. In the Show Contents dialog box, in the Value Name column box, type the fully qualified UNC path to the file or folder. Leave the Value column field blank.
 
@@ -2046,7 +2046,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Hides or displays reminder balloons, and prevents users from changing the setting.
+Available in the latest Windows 10 Insider Preview Build. Hides or displays reminder balloons, and prevents users from changing the setting.
 
 Reminder balloons appear above the Offline Files icon in the notification area to notify users when they have lost the connection to a networked file and are working on a local copy of the file. Users can then decide how to proceed.
 
@@ -2126,7 +2126,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Hides or displays reminder balloons, and prevents users from changing the setting.
+Available in the latest Windows 10 Insider Preview Build. Hides or displays reminder balloons, and prevents users from changing the setting.
 
 Reminder balloons appear above the Offline Files icon in the notification area to notify users when they have lost the connection to a networked file and are working on a local copy of the file. Users can then decide how to proceed.
 
@@ -2206,7 +2206,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether files read from file shares over a slow network are transparently cached in the Offline Files cache for future reads. When a user tries to access a file that has been transparently cached, Windows reads from the cached copy after verifying its integrity. This improves end-user response times and decreases bandwidth consumption over WAN links.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether files read from file shares over a slow network are transparently cached in the Offline Files cache for future reads. When a user tries to access a file that has been transparently cached, Windows reads from the cached copy after verifying its integrity. This improves end-user response times and decreases bandwidth consumption over WAN links.
 
 The cached files are temporary and are not available to the user when offline. The cached files are not kept in sync with the version on the server, and the most current version from the server is always available for subsequent reads.
 
@@ -2279,7 +2279,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting makes subfolders available offline whenever their parent folder is made available offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting makes subfolders available offline whenever their parent folder is made available offline.
 
 This setting automatically extends the "make available offline" setting to all new and existing subfolders of a folder. Users do not have the option of excluding subfolders.
 
@@ -2350,7 +2350,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting deletes local copies of the user's offline files when the user logs off.
+Available in the latest Windows 10 Insider Preview Build. This policy setting deletes local copies of the user's offline files when the user logs off.
 
 This setting specifies that automatically and manually cached offline files are retained only while the user is logged on to the computer. When the user logs off, the system deletes all local copies of offline files.
 
@@ -2422,7 +2422,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to turn on economical application of administratively assigned Offline Files.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to turn on economical application of administratively assigned Offline Files.
 
 If you enable or do not configure this policy setting, only new files and folders in administratively assigned folders are synchronized at logon. Files and folders that are already available offline are skipped and are synchronized later.
 
@@ -2491,7 +2491,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how often reminder balloon updates appear.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how often reminder balloon updates appear.
 
 If you enable this setting, you can select how often reminder balloons updates appear and also prevent users from changing this setting.
 
@@ -2565,7 +2565,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how often reminder balloon updates appear.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how often reminder balloon updates appear.
 
 If you enable this setting, you can select how often reminder balloons updates appear and also prevent users from changing this setting.
 
@@ -2639,7 +2639,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how long the first reminder balloon for a network status change is displayed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how long the first reminder balloon for a network status change is displayed.
 
 Reminder balloons appear when the user's connection to a network file is lost or reconnected, and they are updated periodically. By default, the first reminder for an event is displayed for 30 seconds. Then, updates appear every 60 minutes and are displayed for 15 seconds. You can use this setting to change the duration of the first reminder.
 
@@ -2708,7 +2708,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how long the first reminder balloon for a network status change is displayed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how long the first reminder balloon for a network status change is displayed.
 
 Reminder balloons appear when the user's connection to a network file is lost or reconnected, and they are updated periodically. By default, the first reminder for an event is displayed for 30 seconds. Then, updates appear every 60 minutes and are displayed for 15 seconds. You can use this setting to change the duration of the first reminder.
 
@@ -2777,7 +2777,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how long updated reminder balloons are displayed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how long updated reminder balloons are displayed.
 
 Reminder balloons appear when the user's connection to a network file is lost or reconnected, and they are updated periodically. By default, the first reminder for an event is displayed for 30 seconds. Then, updates appear every 60 minutes and are displayed for 15 seconds. You can use this setting to change the duration of the update reminder.
 
@@ -2846,7 +2846,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how long updated reminder balloons are displayed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how long updated reminder balloons are displayed.
 
 Reminder balloons appear when the user's connection to a network file is lost or reconnected, and they are updated periodically. By default, the first reminder for an event is displayed for 30 seconds. Then, updates appear every 60 minutes and are displayed for 15 seconds. You can use this setting to change the duration of the update reminder.
 
@@ -2915,7 +2915,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the network latency and throughput thresholds that will cause a client computers to transition files and folders that are already available offline to the slow-link mode so that the user's access to this data is not degraded due to network slowness. When Offline Files is operating in the slow-link mode, all network file requests are satisfied from the Offline Files cache. This is similar to a user working offline.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the network latency and throughput thresholds that will cause a client computers to transition files and folders that are already available offline to the slow-link mode so that the user's access to this data is not degraded due to network slowness. When Offline Files is operating in the slow-link mode, all network file requests are satisfied from the Offline Files cache. This is similar to a user working offline.
 
 If you enable this policy setting, Offline Files uses the slow-link mode if the network throughput between the client and the server is below (slower than) the Throughput threshold parameter, or if the round-trip network latency is above (slower than) the Latency threshold parameter.
 
@@ -2994,7 +2994,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the threshold value at which Offline Files considers a network connection to be "slow". Any network speed below this value is considered to be slow.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the threshold value at which Offline Files considers a network connection to be "slow". Any network speed below this value is considered to be slow.
 
 When a connection is considered slow, Offline Files automatically adjust its behavior to avoid excessive synchronization traffic and will not automatically reconnect to a server when the presence of a server is detected.
 
@@ -3068,7 +3068,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are fully synchronized when users log off.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are fully synchronized when users log off.
 
 This setting also disables the "Synchronize all offline files before logging off" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -3146,7 +3146,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are fully synchronized when users log off.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are fully synchronized when users log off.
 
 This setting also disables the "Synchronize all offline files before logging off" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -3224,7 +3224,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are fully synchronized when users log on.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are fully synchronized when users log on.
 
 This setting also disables the "Synchronize all offline files before logging on" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -3304,7 +3304,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are fully synchronized when users log on.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are fully synchronized when users log on.
 
 This setting also disables the "Synchronize all offline files before logging on" option on the Offline Files tab. This prevents users from trying to change the option while a setting controls it.
 
@@ -3382,7 +3382,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are synchronized before a computer is suspended.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are synchronized before a computer is suspended.
 
 If you enable this setting, offline files are synchronized whenever the computer is suspended. Setting the synchronization action to "Quick" ensures only that all files in the cache are complete. Setting the synchronization action to "Full" ensures that all cached files and folders are up-to-date with the most current version.
 
@@ -3454,7 +3454,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are synchronized before a computer is suspended.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are synchronized before a computer is suspended.
 
 If you enable this setting, offline files are synchronized whenever the computer is suspended. Setting the synchronization action to "Quick" ensures only that all files in the cache are complete. Setting the synchronization action to "Full" ensures that all cached files and folders are up-to-date with the most current version.
 
@@ -3526,7 +3526,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether offline files are synchronized in the background when it could result in extra charges on cell phone or broadband plans.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether offline files are synchronized in the background when it could result in extra charges on cell phone or broadband plans.
 
 If you enable this setting, synchronization can occur in the background when the user's network is roaming, near, or over the plan's data limit.  This may result in extra charges on cell phone or broadband plans.
 
@@ -3595,7 +3595,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Work offline" command from Explorer, preventing users from manually changing whether Offline Files is in online mode or offline mode.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the "Work offline" command from Explorer, preventing users from manually changing whether Offline Files is in online mode or offline mode.
 
 If you enable this policy setting, the "Work offline" command is not displayed in File Explorer.
 
@@ -3664,7 +3664,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Work offline" command from Explorer, preventing users from manually changing whether Offline Files is in online mode or offline mode.
+Available in the latest Windows 10 Insider Preview Build. This policy setting removes the "Work offline" command from Explorer, preventing users from manually changing whether Offline Files is in online mode or offline mode.
 
 If you enable this policy setting, the "Work offline" command is not displayed in File Explorer.
 

From f7464d8ae463afe8a5c93e059a847371f6fedb5c Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 29 Dec 2020 12:32:01 -0800
Subject: [PATCH 146/825] Updated availability verbiage

---
 .../mdm/policy-csp-admx-peertopeercaching.md  |  18 +-
 .../policy-csp-admx-performancediagnostics.md |   8 +-
 .../mdm/policy-csp-admx-reliability.md        |   8 +-
 .../mdm/policy-csp-admx-scripts.md            |  24 +-
 .../mdm/policy-csp-admx-sdiageng.md           |   6 +-
 .../mdm/policy-csp-admx-securitycenter.md     |   2 +-
 .../mdm/policy-csp-admx-servicing.md          |   2 +-
 .../mdm/policy-csp-admx-sharedfolders.md      |   4 +-
 .../mdm/policy-csp-admx-sharing.md            |   2 +-
 ...csp-admx-shellcommandpromptregedittools.md |   8 +-
 .../mdm/policy-csp-admx-smartcard.md          |  32 +--
 .../mdm/policy-csp-admx-snmp.md               |   6 +-
 .../mdm/policy-csp-admx-systemrestore.md      |   2 +-
 .../mdm/policy-csp-admx-tcpip.md              |  26 +-
 .../mdm/policy-csp-admx-thumbnails.md         |   6 +-
 .../mdm/policy-csp-admx-tpm.md                |  20 +-
 ...y-csp-admx-userexperiencevirtualization.md | 252 +++++++++---------
 .../mdm/policy-csp-admx-w32time.md            |   8 +-
 .../mdm/policy-csp-admx-wincal.md             |   4 +-
 .../policy-csp-admx-windowsanytimeupgrade.md  |   2 +-
 .../mdm/policy-csp-admx-windowsconnectnow.md  |   6 +-
 .../mdm/policy-csp-admx-windowsmediadrm.md    |   2 +-
 .../mdm/policy-csp-admx-windowsmediaplayer.md |  42 +--
 .../mdm/policy-csp-admx-wininit.md            |   6 +-
 24 files changed, 248 insertions(+), 248 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-peertopeercaching.md b/windows/client-management/mdm/policy-csp-admx-peertopeercaching.md
index 426fcbe069..54b15aabfb 100644
--- a/windows/client-management/mdm/policy-csp-admx-peertopeercaching.md
+++ b/windows/client-management/mdm/policy-csp-admx-peertopeercaching.md
@@ -97,7 +97,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether BranchCache is enabled on client computers to which this policy is applied. In addition to this policy setting, you must specify whether the client computers are hosted cache mode or distributed cache mode clients. To do so, configure one of the following the policy settings: 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether BranchCache is enabled on client computers to which this policy is applied. In addition to this policy setting, you must specify whether the client computers are hosted cache mode or distributed cache mode clients. To do so, configure one of the following the policy settings: 
 
 - Set BranchCache Distributed Cache mode
 - Set BranchCache Hosted Cache mode
@@ -177,7 +177,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether BranchCache distributed cache mode is enabled on client computers to which this policy is applied. In addition to this policy, you must use the policy "Turn on BranchCache" to enable BranchCache on client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether BranchCache distributed cache mode is enabled on client computers to which this policy is applied. In addition to this policy, you must use the policy "Turn on BranchCache" to enable BranchCache on client computers.
 
 In distributed cache mode, client computers download content from BranchCache-enabled main office content servers, cache the content locally, and serve the content to other BranchCache distributed cache mode clients in the branch office.
 
@@ -255,7 +255,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether BranchCache hosted cache mode is enabled on client computers to which this policy is applied. In addition to this policy, you must use the policy "Turn on BranchCache" to enable BranchCache on client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether BranchCache hosted cache mode is enabled on client computers to which this policy is applied. In addition to this policy, you must use the policy "Turn on BranchCache" to enable BranchCache on client computers.
 
 When a client computer is configured as a hosted cache mode client, it is able to download cached content from a hosted cache server that is located at the branch office. In addition, when the hosted cache client obtains content from a content server, the client can upload the content to the hosted cache server for access by other hosted cache clients at the branch office.
 
@@ -339,7 +339,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether client computers should attempt the automatic configuration of hosted cache mode by searching for hosted cache servers publishing service connection points that are associated with the client's current Active Directory site. If you enable this policy setting, client computers to which the policy setting is applied search for hosted cache servers using Active Directory, and will prefer both these servers and hosted cache mode rather than manual BranchCache configuration or BranchCache configuration by other group policies.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether client computers should attempt the automatic configuration of hosted cache mode by searching for hosted cache servers publishing service connection points that are associated with the client's current Active Directory site. If you enable this policy setting, client computers to which the policy setting is applied search for hosted cache servers using Active Directory, and will prefer both these servers and hosted cache mode rather than manual BranchCache configuration or BranchCache configuration by other group policies.
 
 If you enable this policy setting in addition to the "Turn on BranchCache" policy setting, BranchCache clients attempt to discover hosted cache servers in the local branch office. If client computers detect hosted cache servers, hosted cache mode is turned on. If they do not detect hosted cache servers, hosted cache mode is not turned on, and the client uses any other configuration that is specified manually or by Group Policy.
 
@@ -426,7 +426,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether client computers are configured to use hosted cache mode and provides the computer name of the hosted cache servers that are available to the client computers. Hosted cache mode enables client computers in branch offices to retrieve content from one or more hosted cache servers that are installed in the same office location. You can use this setting to automatically configure client computers that are configured for hosted cache mode with the computer names of the hosted cache servers in the branch office.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether client computers are configured to use hosted cache mode and provides the computer name of the hosted cache servers that are available to the client computers. Hosted cache mode enables client computers in branch offices to retrieve content from one or more hosted cache servers that are installed in the same office location. You can use this setting to automatically configure client computers that are configured for hosted cache mode with the computer names of the hosted cache servers in the branch office.
 
 If you enable this policy setting and specify valid computer names of hosted cache servers, hosted cache mode is enabled for all client computers to which the policy setting is applied. For this policy setting to take effect, you must also enable the "Turn on BranchCache" policy setting.
 
@@ -509,7 +509,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting is used only when you have deployed one or more BranchCache-enabled file servers at your main office. This policy setting specifies when client computers in branch offices start caching content from file servers based on the network latency - or delay - that occurs when the clients download content from the main office over a Wide Area Network (WAN) link. When you configure a value for this setting, which is the maximum round trip network latency allowed before caching begins, clients do not cache content until the network latency reaches the specified value; when network latency is greater than the value, clients begin caching content after they receive it from the file servers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting is used only when you have deployed one or more BranchCache-enabled file servers at your main office. This policy setting specifies when client computers in branch offices start caching content from file servers based on the network latency - or delay - that occurs when the clients download content from the main office over a Wide Area Network (WAN) link. When you configure a value for this setting, which is the maximum round trip network latency allowed before caching begins, clients do not cache content until the network latency reaches the specified value; when network latency is greater than the value, clients begin caching content after they receive it from the file servers.
 
 Policy configuration
 
@@ -586,7 +586,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the default percentage of total disk space that is allocated for the BranchCache disk cache on client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the default percentage of total disk space that is allocated for the BranchCache disk cache on client computers.
 
 If you enable this policy setting, you can configure the percentage of total disk space to allocate for the cache.
 
@@ -670,7 +670,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the default age in days for which segments are valid in the BranchCache data cache on client computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the default age in days for which segments are valid in the BranchCache data cache on client computers.
 
 If you enable this policy setting, you can configure the age for segments in the data cache.
 
@@ -751,7 +751,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether BranchCache-capable client computers operate in a downgraded mode in order to maintain compatibility with previous versions of BranchCache. If client computers do not use the same BranchCache version, cache efficiency might be reduced because client computers that are using different versions of BranchCache might store cache data in incompatible formats.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether BranchCache-capable client computers operate in a downgraded mode in order to maintain compatibility with previous versions of BranchCache. If client computers do not use the same BranchCache version, cache efficiency might be reduced because client computers that are using different versions of BranchCache might store cache data in incompatible formats.
 
 If you enable this policy setting, all clients use the version of BranchCache that you specify in "Select from the following versions."
 
diff --git a/windows/client-management/mdm/policy-csp-admx-performancediagnostics.md b/windows/client-management/mdm/policy-csp-admx-performancediagnostics.md
index f02fb046cc..fe3507834c 100644
--- a/windows/client-management/mdm/policy-csp-admx-performancediagnostics.md
+++ b/windows/client-management/mdm/policy-csp-admx-performancediagnostics.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the execution level for Windows Boot Performance Diagnostics.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the execution level for Windows Boot Performance Diagnostics.
 
 If you enable this policy setting, you must select an execution level from the dropdown menu. If you select problem detection and troubleshooting only, the Diagnostic Policy Service (DPS) will detect Windows Boot Performance problems and attempt to determine their root causes. These root causes will be logged to the event log when detected, but no corrective action will be taken. If you select detection, troubleshooting and resolution, the DPS will detect Windows Boot Performance problems and indicate to the user that assisted resolution is available.
 
@@ -160,7 +160,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Determines the execution level for Windows Standby/Resume Performance Diagnostics.
+Available in the latest Windows 10 Insider Preview Build. Determines the execution level for Windows Standby/Resume Performance Diagnostics.
 
 If you enable this policy setting, you must select an execution level from the dropdown menu. If you select problem detection and troubleshooting only, the Diagnostic Policy Service (DPS) will detect Windows Standby/Resume Performance problems and attempt to determine their root causes. These root causes will be logged to the event log when detected, but no corrective action will be taken. If you select detection, troubleshooting and resolution, the DPS will detect Windows Standby/Resume Performance problems and indicate to the user that assisted resolution is available.
 
@@ -237,7 +237,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the execution level for Windows Shutdown Performance Diagnostics.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the execution level for Windows Shutdown Performance Diagnostics.
 
 If you enable this policy setting, you must select an execution level from the dropdown menu. If you select problem detection and troubleshooting only, the Diagnostic Policy Service (DPS) will detect Windows Shutdown Performance problems and attempt to determine their root causes. These root causes will be logged to the event log when detected, but no corrective action will be taken. If you select detection, troubleshooting and resolution, the DPS will detect Windows Shutdown Performance problems and indicate to the user that assisted resolution is available.
 
@@ -314,7 +314,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Determines the execution level for Windows Standby/Resume Performance Diagnostics.
+Available in the latest Windows 10 Insider Preview Build. Determines the execution level for Windows Standby/Resume Performance Diagnostics.
 
 If you enable this policy setting, you must select an execution level from the dropdown menu. If you select problem detection and troubleshooting only, the Diagnostic Policy Service (DPS) will detect Windows Standby/Resume Performance problems and attempt to determine their root causes. These root causes will be logged to the event log when detected, but no corrective action will be taken. If you select detection, troubleshooting and resolution, the DPS will detect Windows Standby/Resume Performance problems and indicate to the user that assisted resolution is available.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-reliability.md b/windows/client-management/mdm/policy-csp-admx-reliability.md
index e466f85f86..5db45b394d 100644
--- a/windows/client-management/mdm/policy-csp-admx-reliability.md
+++ b/windows/client-management/mdm/policy-csp-admx-reliability.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows the system to detect the time of unexpected shutdowns by writing the current time to disk on a schedule controlled by the Timestamp Interval.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows the system to detect the time of unexpected shutdowns by writing the current time to disk on a schedule controlled by the Timestamp Interval.
 
 If you enable this policy setting, you are able to specify how often the Persistent System Timestamp is refreshed and subsequently written to the disk. You can specify the Timestamp Interval in seconds.
 
@@ -159,7 +159,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls whether or not unplanned shutdown events can be reported when error reporting is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls whether or not unplanned shutdown events can be reported when error reporting is enabled.
 
 If you enable this policy setting, error reporting includes unplanned shutdown events.
 
@@ -234,7 +234,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines when the Shutdown Event Tracker System State Data feature is activated.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines when the Shutdown Event Tracker System State Data feature is activated.
 
 The system state data file contains information about the basic system state as well as the state of all running processes.
 
@@ -312,7 +312,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. The Shutdown Event Tracker can be displayed when you shut down a workstation or server.  This is an extra set of questions that is displayed when you invoke a shutdown to collect information related to why you are shutting down the computer.
+Available in the latest Windows 10 Insider Preview Build. The Shutdown Event Tracker can be displayed when you shut down a workstation or server.  This is an extra set of questions that is displayed when you invoke a shutdown to collect information related to why you are shutting down the computer.
 
 If you enable this setting and choose "Always" from the drop-down menu list, the Shutdown Event Tracker is displayed when the computer shuts down.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-scripts.md b/windows/client-management/mdm/policy-csp-admx-scripts.md
index 7f655514ef..1a7df80d7f 100644
--- a/windows/client-management/mdm/policy-csp-admx-scripts.md
+++ b/windows/client-management/mdm/policy-csp-admx-scripts.md
@@ -107,7 +107,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows user logon scripts to run when the logon cross-forest, DNS suffixes are not configured, and NetBIOS or WINS is disabled. This policy setting affects all user accounts interactively logging on to the computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows user logon scripts to run when the logon cross-forest, DNS suffixes are not configured, and NetBIOS or WINS is disabled. This policy setting affects all user accounts interactively logging on to the computer.
 
 If you enable this policy setting, user logon scripts run if NetBIOS or WINS is disabled during cross-forest logons without the DNS suffixes being configured.
 
@@ -176,7 +176,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines how long the system waits for scripts applied by Group Policy to run. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines how long the system waits for scripts applied by Group Policy to run. 
 
 This setting limits the total time allowed for all logon, logoff, startup, and shutdown scripts applied by Group Policy to finish running. If the scripts have not finished running when the specified time expires, the system stops script processing and records an error event.
 
@@ -251,7 +251,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether Windows PowerShell scripts are run before non-Windows PowerShell scripts during computer startup and shutdown. By default, Windows PowerShell scripts run after non-Windows PowerShell scripts. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether Windows PowerShell scripts are run before non-Windows PowerShell scripts during computer startup and shutdown. By default, Windows PowerShell scripts run after non-Windows PowerShell scripts. 
  
 If you enable this policy setting, within each applicable Group Policy Object (GPO), Windows PowerShell scripts are run before non-Windows PowerShell scripts during computer startup and shutdown. 
 
@@ -343,7 +343,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting hides the instructions in logon scripts written for Windows NT 4.0 and earlier. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting hides the instructions in logon scripts written for Windows NT 4.0 and earlier. 
 
 Logon scripts are batch files of instructions that run when the user logs on. By default, Windows 2000 displays the instructions in logon scripts written for Windows NT 4.0 and earlier in a command window as they run, although it does not display logon scripts written for Windows 2000.
 
@@ -416,7 +416,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting displays the instructions in logoff scripts as they run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting displays the instructions in logoff scripts as they run.
 
 Logoff scripts are batch files of instructions that run when the user logs off. By default, the system does not display the instructions in the logoff script.
 
@@ -487,7 +487,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to wait for logon scripts to finish running before it starts the File Explorer interface program and creates the desktop.
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to wait for logon scripts to finish running before it starts the File Explorer interface program and creates the desktop.
 
 If you enable this policy setting, File Explorer does not start until the logon scripts have finished running. This policy setting ensures that logon script processing is complete before the user starts working, but it can delay the appearance of the desktop.
 
@@ -558,7 +558,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to wait for logon scripts to finish running before it starts the File Explorer interface program and creates the desktop.
+Available in the latest Windows 10 Insider Preview Build. This policy setting directs the system to wait for logon scripts to finish running before it starts the File Explorer interface program and creates the desktop.
 
 If you enable this policy setting, File Explorer does not start until the logon scripts have finished running. This policy setting ensures that logon script processing is complete before the user starts working, but it can delay the appearance of the desktop.
 
@@ -629,7 +629,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting displays the instructions in logon scripts as they run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting displays the instructions in logon scripts as they run.
 
 Logon scripts are batch files of instructions that run when the user logs on. By default, the system does not display the instructions in logon scripts.
 
@@ -700,7 +700,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting displays the instructions in shutdown scripts as they run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting displays the instructions in shutdown scripts as they run.
 
 Shutdown scripts are batch files of instructions that run when the user restarts the system or shuts it down. By default, the system does not display the instructions in the shutdown script.
 
@@ -771,7 +771,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets the system run startup scripts simultaneously.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets the system run startup scripts simultaneously.
 
 Startup scripts are batch files that run before the user is invited to log on. By default, the system waits for each startup script to complete before it runs the next startup script.
 
@@ -845,7 +845,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting displays the instructions in startup scripts as they run.
+Available in the latest Windows 10 Insider Preview Build. This policy setting displays the instructions in startup scripts as they run.
 
 Startup scripts are batch files of instructions that run before the user is invited to log on. By default, the system does not display the instructions in the startup script.
 
@@ -920,7 +920,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether Windows PowerShell scripts are run before non-Windows PowerShell scripts during user logon and logoff. By default, Windows PowerShell scripts run after non-Windows PowerShell scripts. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether Windows PowerShell scripts are run before non-Windows PowerShell scripts during user logon and logoff. By default, Windows PowerShell scripts run after non-Windows PowerShell scripts. 
  
 If you enable this policy setting, within each applicable Group Policy Object (GPO), PowerShell scripts are run before non-PowerShell scripts during user logon and logoff. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-sdiageng.md b/windows/client-management/mdm/policy-csp-admx-sdiageng.md
index ce4096ecc5..bc7b4bc48a 100644
--- a/windows/client-management/mdm/policy-csp-admx-sdiageng.md
+++ b/windows/client-management/mdm/policy-csp-admx-sdiageng.md
@@ -80,7 +80,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows users who are connected to the Internet to access and search troubleshooting content that is hosted on Microsoft content servers. Users can access online troubleshooting content from within the Troubleshooting Control Panel UI by clicking "Yes" when they are prompted by a message that states, "Do you want the most up-to-date troubleshooting content?"
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows users who are connected to the Internet to access and search troubleshooting content that is hosted on Microsoft content servers. Users can access online troubleshooting content from within the Troubleshooting Control Panel UI by clicking "Yes" when they are prompted by a message that states, "Do you want the most up-to-date troubleshooting content?"
 
 If you enable or do not configure this policy setting, users who are connected to the Internet can access and search troubleshooting content that is hosted on Microsoft content servers from within the Troubleshooting Control Panel user interface.
 
@@ -149,7 +149,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows users to access and run the troubleshooting tools that are available in the Troubleshooting Control Panel and to run the troubleshooting wizard to troubleshoot problems on their computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows users to access and run the troubleshooting tools that are available in the Troubleshooting Control Panel and to run the troubleshooting wizard to troubleshoot problems on their computers.
 
 If you enable or do not configure this policy setting, users can access and run the troubleshooting tools from the Troubleshooting Control Panel.
 
@@ -220,7 +220,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether scripted diagnostics will execute diagnostic packages that are signed by untrusted publishers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether scripted diagnostics will execute diagnostic packages that are signed by untrusted publishers.
 
 If you enable this policy setting, the scripted diagnostics execution engine validates the signer of any diagnostic package and runs only those signed by trusted publishers.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-securitycenter.md b/windows/client-management/mdm/policy-csp-admx-securitycenter.md
index 3f963a77cb..5016dd12b2 100644
--- a/windows/client-management/mdm/policy-csp-admx-securitycenter.md
+++ b/windows/client-management/mdm/policy-csp-admx-securitycenter.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether Security Center is turned on or off for computers that are joined to an Active Directory domain. When Security Center is turned on, it monitors essential security settings and notifies the user when the computer might be at risk. The Security Center Control Panel category view also contains a status section, where the user can get recommendations to help increase the computer's security. When Security Center is not enabled on the domain, neither the notifications nor the Security Center status section are displayed. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether Security Center is turned on or off for computers that are joined to an Active Directory domain. When Security Center is turned on, it monitors essential security settings and notifies the user when the computer might be at risk. The Security Center Control Panel category view also contains a status section, where the user can get recommendations to help increase the computer's security. When Security Center is not enabled on the domain, neither the notifications nor the Security Center status section are displayed. 
 
 Note that Security Center can only be turned off for computers that are joined to a Windows domain. When a computer is not joined to a Windows domain, the policy setting will have no effect.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-servicing.md b/windows/client-management/mdm/policy-csp-admx-servicing.md
index c18852e5ea..c2738859de 100644
--- a/windows/client-management/mdm/policy-csp-admx-servicing.md
+++ b/windows/client-management/mdm/policy-csp-admx-servicing.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the network locations that will be used for the repair of operating system corruption and for enabling optional features that have had their payload files removed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the network locations that will be used for the repair of operating system corruption and for enabling optional features that have had their payload files removed.
 
 If you enable this policy setting and specify the new location, the files in that location will be used to repair operating system corruption and for enabling optional features that have had their payload files removed. You must enter the fully qualified path to the new location in the ""Alternate source file path"" text box. Multiple locations can be specified when each path is separated by a semicolon. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-sharedfolders.md b/windows/client-management/mdm/policy-csp-admx-sharedfolders.md
index 7b7f7b195c..365e67295a 100644
--- a/windows/client-management/mdm/policy-csp-admx-sharedfolders.md
+++ b/windows/client-management/mdm/policy-csp-admx-sharedfolders.md
@@ -76,7 +76,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether the user can publish DFS roots in Active Directory Domain Services (AD DS).
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the user can publish DFS roots in Active Directory Domain Services (AD DS).
 
 If you enable or do not configure this policy setting, users can use the "Publish in Active Directory" option to publish DFS roots as shared folders in AD DS .
 
@@ -149,7 +149,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines whether the user can publish shared folders in Active Directory Domain Services (AD DS).
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines whether the user can publish shared folders in Active Directory Domain Services (AD DS).
 
 If you enable or do not configure this policy setting, users can use the "Publish in Active Directory" option in the Shared Folders snap-in to publish shared folders in AD DS.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-sharing.md b/windows/client-management/mdm/policy-csp-admx-sharing.md
index a293d2b013..92d7458cc6 100644
--- a/windows/client-management/mdm/policy-csp-admx-sharing.md
+++ b/windows/client-management/mdm/policy-csp-admx-sharing.md
@@ -73,7 +73,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether users can share files within their profile. By default users are allowed to share files within their profile to other users on their network after an administrator opts in the computer.  An administrator can opt in the computer by using the sharing wizard to share a file within their profile.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether users can share files within their profile. By default users are allowed to share files within their profile to other users on their network after an administrator opts in the computer.  An administrator can opt in the computer by using the sharing wizard to share a file within their profile.
 
 If you enable this policy setting, users cannot share files within their profile using the sharing wizard.  Also, the sharing wizard cannot create a share at %root%\users and can only be used to create SMB shares on folders.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-shellcommandpromptregedittools.md b/windows/client-management/mdm/policy-csp-admx-shellcommandpromptregedittools.md
index e8df85ad6d..70b33efe0d 100644
--- a/windows/client-management/mdm/policy-csp-admx-shellcommandpromptregedittools.md
+++ b/windows/client-management/mdm/policy-csp-admx-shellcommandpromptregedittools.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from running the interactive command prompt, Cmd.exe. This policy setting also determines whether batch files (.cmd and .bat) can run on the computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents users from running the interactive command prompt, Cmd.exe. This policy setting also determines whether batch files (.cmd and .bat) can run on the computer.
 
 If you enable this policy setting and the user tries to open a command window, the system displays a message explaining that a setting prevents the action.
 
@@ -155,7 +155,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Disables the Windows registry editor Regedit.exe.
+Available in the latest Windows 10 Insider Preview Build. Disables the Windows registry editor Regedit.exe.
 
 If you enable this policy setting and the user tries to start Regedit.exe, a message appears explaining that a policy setting prevents the action.
 
@@ -227,7 +227,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents Windows from running the programs you specify in this policy setting.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents Windows from running the programs you specify in this policy setting.
 
 If you enable this policy setting, users cannot run programs that you add to the list of disallowed applications.
 
@@ -302,7 +302,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Limits the Windows programs that users have permission to run on the computer.
+Available in the latest Windows 10 Insider Preview Build. Limits the Windows programs that users have permission to run on the computer.
 
 If you enable this policy setting, users can only run programs that you add to the list of allowed applications.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-smartcard.md b/windows/client-management/mdm/policy-csp-admx-smartcard.md
index 76452c2119..67c2a2ea26 100644
--- a/windows/client-management/mdm/policy-csp-admx-smartcard.md
+++ b/windows/client-management/mdm/policy-csp-admx-smartcard.md
@@ -119,7 +119,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you allow certificates without an Extended Key Usage (EKU) set to be used for logon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you allow certificates without an Extended Key Usage (EKU) set to be used for logon.
 
 In versions of Windows prior to Windows Vista, smart card certificates that are used for logon require an enhanced key usage (EKU) extension with a smart card logon object identifier. This policy setting can be used to modify that restriction.
 
@@ -194,7 +194,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you determine whether the integrated unblock feature will be available in the logon User Interface (UI).
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you determine whether the integrated unblock feature will be available in the logon User Interface (UI).
 
 In order to use the integrated unblock feature your smart card must support this feature.  Please check with your hardware manufacturer to see if your smart card supports this feature.
 
@@ -265,7 +265,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you allow signature key-based certificates to be enumerated and available for logon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you allow signature key-based certificates to be enumerated and available for logon.
 
 If you enable this policy setting then any certificates available on the smart card with a signature only key will be listed on the logon screen.
 
@@ -334,7 +334,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting permits those certificates to be displayed for logon that are either expired or not yet valid.
+Available in the latest Windows 10 Insider Preview Build. This policy setting permits those certificates to be displayed for logon that are either expired or not yet valid.
 
 Under previous versions of Microsoft Windows, certificates were required to contain a valid time and not be expired. The certificate must still be accepted by the domain controller in order to be used. This setting only controls the displaying of the certificate on the client machine. 
 
@@ -405,7 +405,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the certificate propagation that occurs when a smart card is inserted.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the certificate propagation that occurs when a smart card is inserted.
 
 If you enable or do not configure this policy setting then certificate propagation will occur when you insert your smart card.
 
@@ -474,7 +474,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the cleanup behavior of root certificates.  If you enable this policy setting then root certificate cleanup will occur according to the option selected. If you disable or do not configure this setting then root certificate cleanup will occur on logoff.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the cleanup behavior of root certificates.  If you enable this policy setting then root certificate cleanup will occur according to the option selected. If you disable or do not configure this setting then root certificate cleanup will occur on logoff.
 
 <!--/Description-->
 > [!TIP]
@@ -539,7 +539,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the root certificate propagation that occurs when a smart card is inserted.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the root certificate propagation that occurs when a smart card is inserted.
 
 If you enable or do not configure this policy setting then root certificate propagation will occur when you insert your smart card.
 
@@ -611,7 +611,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents plaintext PINs from being returned by Credential Manager. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents plaintext PINs from being returned by Credential Manager. 
 
 If you enable this policy setting, Credential Manager does not return a plaintext PIN. 
 
@@ -683,7 +683,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control whether elliptic curve cryptography (ECC) certificates on a smart card can be used to log on to a domain.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control whether elliptic curve cryptography (ECC) certificates on a smart card can be used to log on to a domain.
 
 If you enable this policy setting, ECC certificates on a smart card can be used to log on to a domain.
 
@@ -755,7 +755,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you configure if all your valid logon certificates are displayed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you configure if all your valid logon certificates are displayed.
 
 During the certificate renewal period, a user can have multiple valid logon certificates issued from the same certificate template.  This can cause confusion as to which certificate to select for logon. The common case for this behavior is when a certificate is renewed and the old one has not yet expired. Two certificates are determined to be the same if they are issued from the same template with the same major version and they are for the same user (determined by their UPN).
 
@@ -831,7 +831,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the reading of all certificates from the smart card for logon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the reading of all certificates from the smart card for logon.
 
 During logon Windows will by default only read the default certificate from the smart card unless it supports retrieval of all certificates in a single call. This setting forces Windows to read all the certificates from the card. This can introduce a significant performance decrease in certain situations. Please contact your smart card vendor to determine if your smart card and associated CSP supports the required behavior.
 
@@ -902,7 +902,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the displayed message when a smart card is blocked.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the displayed message when a smart card is blocked.
 
 If you enable this policy setting, the specified message will be displayed to the user when the smart card is blocked. 
 
@@ -974,7 +974,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you reverse the subject name from how it is stored in the certificate when displaying it during logon.  
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you reverse the subject name from how it is stored in the certificate when displaying it during logon.  
 
 By default the user principal name (UPN) is displayed in addition to the common name to help users distinguish one certificate from another. For example, if the certificate subject was CN=User1, OU=Users, DN=example, DN=com and had an UPN of user1@example.com then "User1" will be displayed along with "user1@example.com." If the UPN is not present then the entire subject name will be displayed. This setting controls the appearance of that subject name and might need to be adjusted per organization.
 
@@ -1045,7 +1045,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control whether Smart Card Plug and Play is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control whether Smart Card Plug and Play is enabled.
 
 If you enable or do not configure this policy setting, Smart Card Plug and Play will be enabled and the system will attempt to install a Smart Card device driver when a card is inserted in a Smart Card Reader for the first time.
 
@@ -1117,7 +1117,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to control whether a confirmation message is displayed when a smart card device driver is installed.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to control whether a confirmation message is displayed when a smart card device driver is installed.
 
 If you enable or do not configure this policy setting, a confirmation message will be displayed when a smart card device driver is installed.
 
@@ -1189,7 +1189,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting lets you determine whether an optional field will be displayed during logon and elevation that allows a user to enter his or her user name or user name and domain, thereby associating a certificate with that user.
+Available in the latest Windows 10 Insider Preview Build. This policy setting lets you determine whether an optional field will be displayed during logon and elevation that allows a user to enter his or her user name or user name and domain, thereby associating a certificate with that user.
 
 If you enable this policy setting then an optional field that allows a user to enter their user name or user name and domain will be displayed.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-snmp.md b/windows/client-management/mdm/policy-csp-admx-snmp.md
index 2a83f8346c..4cdc53625c 100644
--- a/windows/client-management/mdm/policy-csp-admx-snmp.md
+++ b/windows/client-management/mdm/policy-csp-admx-snmp.md
@@ -80,7 +80,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures a list of the communities defined to the Simple Network Management Protocol (SNMP) service.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures a list of the communities defined to the Simple Network Management Protocol (SNMP) service.
 
 SNMP is a protocol designed to give a user the capability to remotely manage a computer network, by polling and setting terminal values and monitoring network events.
 
@@ -161,7 +161,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the permitted list of hosts that can submit a query to the Simple Network Management (SNMP) agent running on the client computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting determines the permitted list of hosts that can submit a query to the Simple Network Management (SNMP) agent running on the client computer.
 
 Simple Network Management Protocol is a protocol designed to give a user the capability to remotely manage a computer network by polling and setting terminal values and monitoring network events.
 
@@ -241,7 +241,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows trap configuration for the Simple Network Management Protocol (SNMP) agent.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows trap configuration for the Simple Network Management Protocol (SNMP) agent.
 
 Simple Network Management Protocol is a protocol designed to give a user the capability to remotely manage a computer network by polling and setting terminal values and monitoring network events.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-systemrestore.md b/windows/client-management/mdm/policy-csp-admx-systemrestore.md
index 8e49043225..41c38ffa9f 100644
--- a/windows/client-management/mdm/policy-csp-admx-systemrestore.md
+++ b/windows/client-management/mdm/policy-csp-admx-systemrestore.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Allows you to disable System Restore configuration through System Protection.
+Available in the latest Windows 10 Insider Preview Build. Allows you to disable System Restore configuration through System Protection.
 
 This policy setting allows you to turn off System Restore configuration through System Protection.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-tcpip.md b/windows/client-management/mdm/policy-csp-admx-tcpip.md
index b43d4d2011..403e0686e1 100644
--- a/windows/client-management/mdm/policy-csp-admx-tcpip.md
+++ b/windows/client-management/mdm/policy-csp-admx-tcpip.md
@@ -110,7 +110,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify a 6to4 relay name for a 6to4 host. A 6to4 relay is used as a default gateway for IPv6 network traffic sent by the 6to4 host. The 6to4 relay name setting has no effect if 6to4 connectivity is not available on the host.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify a 6to4 relay name for a 6to4 host. A 6to4 relay is used as a default gateway for IPv6 network traffic sent by the 6to4 host. The 6to4 relay name setting has no effect if 6to4 connectivity is not available on the host.
 
 If you enable this policy setting, you can specify a relay name for a 6to4 host.
 
@@ -179,7 +179,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify the interval at which the relay name is resolved. The 6to4 relay name resolution interval setting has no effect if 6to4 connectivity is not available on the host.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify the interval at which the relay name is resolved. The 6to4 relay name resolution interval setting has no effect if 6to4 connectivity is not available on the host.
 
 If you enable this policy setting, you can specify the value for the duration at which the relay name is resolved periodically.
 
@@ -248,7 +248,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure 6to4, an address assignment and router-to-router automatic tunneling technology that is used to provide unicast IPv6 connectivity between IPv6 sites and hosts across the IPv4 Internet. 6to4 uses the global address prefix: 2002:WWXX:YYZZ::/48 in which the letters are a hexadecimal representation of the global IPv4 address (w.x.y.z) assigned to a site.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure 6to4, an address assignment and router-to-router automatic tunneling technology that is used to provide unicast IPv6 connectivity between IPv6 sites and hosts across the IPv4 Internet. 6to4 uses the global address prefix: 2002:WWXX:YYZZ::/48 in which the letters are a hexadecimal representation of the global IPv4 address (w.x.y.z) assigned to a site.
 
 If you disable or do not configure this policy setting, the local host setting is used.
 
@@ -323,7 +323,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure IP-HTTPS, a tunneling technology that uses the HTTPS protocol to provide IP connectivity to a remote network.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure IP-HTTPS, a tunneling technology that uses the HTTPS protocol to provide IP connectivity to a remote network.
 
 If you disable or do not configure this policy setting, the local host settings are used.
 
@@ -398,7 +398,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure IP Stateless Autoconfiguration Limits.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure IP Stateless Autoconfiguration Limits.
 
 If you enable or do not configure this policy setting, IP Stateless Autoconfiguration Limits will be enabled and system will limit the number of autoconfigured addresses and routes.
 
@@ -467,7 +467,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify a router name or Internet Protocol version 4 (IPv4) address for an ISATAP router.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify a router name or Internet Protocol version 4 (IPv4) address for an ISATAP router.
 
 If you enable this policy setting, you can specify a router name or IPv4 address for an ISATAP router. If you enter an IPv4 address of the ISATAP router in the text box, DNS services are not required.
 
@@ -536,7 +536,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure Intra-Site Automatic Tunnel Addressing Protocol (ISATAP), an address-to-router and host-to-host, host-to-router and router-to-host automatic tunneling technology that is used to provide unicast IPv6 connectivity between IPv6 hosts across an IPv4 intranet.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Intra-Site Automatic Tunnel Addressing Protocol (ISATAP), an address-to-router and host-to-host, host-to-router and router-to-host automatic tunneling technology that is used to provide unicast IPv6 connectivity between IPv6 hosts across an IPv4 intranet.
 
 If you disable or do not configure this policy setting, the local host setting is used.
 
@@ -611,7 +611,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to select the UDP port the Teredo client will use to send packets. If you leave the default of 0, the operating system will select a port (recommended). If you select a UDP port that is already in use by a system, the Teredo client will fail to initialize.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to select the UDP port the Teredo client will use to send packets. If you leave the default of 0, the operating system will select a port (recommended). If you select a UDP port that is already in use by a system, the Teredo client will fail to initialize.
 
 If you enable this policy setting, you can customize a UDP port for the Teredo client.
 
@@ -680,7 +680,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to set Teredo to be ready to communicate, a process referred to as qualification. By default, Teredo enters a dormant state when not in use. The qualification process brings it out of a dormant state.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to set Teredo to be ready to communicate, a process referred to as qualification. By default, Teredo enters a dormant state when not in use. The qualification process brings it out of a dormant state.
 
 If you disable or do not configure this policy setting, the local host setting is used.
 
@@ -751,7 +751,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure the Teredo refresh rate.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure the Teredo refresh rate.
 
 > [!NOTE]
 > On a periodic basis (by default, every 30 seconds), Teredo clients send a single Router Solicitation packet to the Teredo server. The Teredo server sends a Router Advertisement Packet in response. This periodic packet refreshes the IP address and UDP port mapping in the translation table of the Teredo client's NAT device.
@@ -823,7 +823,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify the name of the Teredo server. This server name will be used on the Teredo client computer where this policy setting is applied.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify the name of the Teredo server. This server name will be used on the Teredo client computer where this policy setting is applied.
 
 If you enable this policy setting, you can specify a Teredo server name that applies to a Teredo client.
 
@@ -892,7 +892,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure Teredo, an address assignment and automatic tunneling technology that provides unicast IPv6 connectivity across the IPv4 Internet.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Teredo, an address assignment and automatic tunneling technology that provides unicast IPv6 connectivity across the IPv4 Internet.
 
 If you disable or do not configure this policy setting, the local host settings are used.
 
@@ -969,7 +969,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure Window Scaling Heuristics. Window Scaling Heuristics is an algorithm to identify connectivity and throughput problems caused by many Firewalls and other middle boxes that don't interpret Window Scaling option correctly.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure Window Scaling Heuristics. Window Scaling Heuristics is an algorithm to identify connectivity and throughput problems caused by many Firewalls and other middle boxes that don't interpret Window Scaling option correctly.
 
 If you do not configure this policy setting, the local host settings are used.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-thumbnails.md b/windows/client-management/mdm/policy-csp-admx-thumbnails.md
index 69fd52c66e..9aabebdc8b 100644
--- a/windows/client-management/mdm/policy-csp-admx-thumbnails.md
+++ b/windows/client-management/mdm/policy-csp-admx-thumbnails.md
@@ -79,7 +79,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure how File Explorer displays thumbnail images or icons on the local computer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure how File Explorer displays thumbnail images or icons on the local computer.
 
 File Explorer displays thumbnail images by default. 
 
@@ -150,7 +150,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure how File Explorer displays thumbnail images or icons on network folders.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure how File Explorer displays thumbnail images or icons on network folders.
 
 File Explorer displays thumbnail images on network folders by default.
 
@@ -221,7 +221,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Turns off the caching of thumbnails in hidden thumbs.db files.
+Available in the latest Windows 10 Insider Preview Build. Turns off the caching of thumbnails in hidden thumbs.db files.
 
 This policy setting allows you to configure File Explorer to cache thumbnails of items residing in network folders in hidden thumbs.db files.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-tpm.md b/windows/client-management/mdm/policy-csp-admx-tpm.md
index aeec40aa7f..da8e499dae 100644
--- a/windows/client-management/mdm/policy-csp-admx-tpm.md
+++ b/windows/client-management/mdm/policy-csp-admx-tpm.md
@@ -101,7 +101,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the Group Policy list of Trusted Platform Module (TPM) commands blocked by Windows.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the Group Policy list of Trusted Platform Module (TPM) commands blocked by Windows.
 
 If you enable this policy setting, Windows will block the specified commands from being sent to the TPM on the computer. TPM commands are referenced by a command number. For example, command number 129 is TPM_OwnerReadInternalPub, and command number 170 is TPM_FieldUpgrade. To find the command number associated with each TPM command with TPM 1.2, run "tpm.msc" and navigate to the "Command Management" section.
 
@@ -170,7 +170,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the system to prompt the user to clear the TPM if the TPM is detected to be in any state other than Ready. This policy will take effect only if the system’s TPM is in a state other than Ready, including if the TPM is “Ready, with reduced functionality”. The prompt to clear the TPM will start occurring after the next reboot, upon user login only if the logged in user is part of the Administrators group for the system. The prompt can be dismissed, but will reappear after every reboot and login until the policy is disabled or until the TPM is in a Ready state.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the system to prompt the user to clear the TPM if the TPM is detected to be in any state other than Ready. This policy will take effect only if the system’s TPM is in a state other than Ready, including if the TPM is “Ready, with reduced functionality”. The prompt to clear the TPM will start occurring after the next reboot, upon user login only if the logged in user is part of the Administrators group for the system. The prompt can be dismissed, but will reappear after every reboot and login until the policy is disabled or until the TPM is in a Ready state.
 
 <!--/Description-->
 > [!TIP]
@@ -235,7 +235,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to enforce or ignore the computer's default list of blocked Trusted Platform Module (TPM) commands.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to enforce or ignore the computer's default list of blocked Trusted Platform Module (TPM) commands.
 
 If you enable this policy setting, Windows will ignore the computer's default list of blocked TPM commands and will only block those TPM commands specified by Group Policy or the local list.
 
@@ -306,7 +306,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to enforce or ignore the computer's local list of blocked Trusted Platform Module (TPM) commands.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to enforce or ignore the computer's local list of blocked Trusted Platform Module (TPM) commands.
 
 If you enable this policy setting, Windows will ignore the computer's local list of blocked TPM commands and will only block those TPM commands specified by Group Policy or the default list.
 
@@ -377,7 +377,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures how much of the TPM owner authorization information is stored in the registry of the local computer. Depending on the amount of TPM owner authorization information stored locally, the operating system and TPM-based applications can perform certain TPM actions which require TPM owner authorization without requiring the user to enter the TPM owner password.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures how much of the TPM owner authorization information is stored in the registry of the local computer. Depending on the amount of TPM owner authorization information stored locally, the operating system and TPM-based applications can perform certain TPM actions which require TPM owner authorization without requiring the user to enter the TPM owner password.
 
 You can choose to have the operating system store either the full TPM owner authorization value, the TPM administrative delegation blob plus the TPM user delegation blob, or none.
 
@@ -455,7 +455,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This group policy enables Device Health Attestation reporting (DHA-report) on supported devices. It enables supported devices to send Device Health Attestation related information (device boot logs, PCR values, TPM certificate, etc.) to Device Health Attestation Service (DHA-Service) every time a device starts. Device Health Attestation Service validates the security state and health of the devices, and makes the findings accessible to enterprise administrators via a cloud based reporting portal. This policy is independent of DHA reports that are initiated by device manageability solutions (like MDM or SCCM), and will not interfere with their workflows.
+Available in the latest Windows 10 Insider Preview Build. This group policy enables Device Health Attestation reporting (DHA-report) on supported devices. It enables supported devices to send Device Health Attestation related information (device boot logs, PCR values, TPM certificate, etc.) to Device Health Attestation Service (DHA-Service) every time a device starts. Device Health Attestation Service validates the security state and health of the devices, and makes the findings accessible to enterprise administrators via a cloud based reporting portal. This policy is independent of DHA reports that are initiated by device manageability solutions (like MDM or SCCM), and will not interfere with their workflows.
 
 <!--/Description-->
 > [!TIP]
@@ -520,7 +520,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the duration in minutes for counting standard user authorization failures for Trusted Platform Module (TPM) commands requiring authorization. If the number of TPM commands with an authorization failure within the duration equals a threshold, a standard user is prevented from sending commands requiring authorization to the TPM.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the duration in minutes for counting standard user authorization failures for Trusted Platform Module (TPM) commands requiring authorization. If the number of TPM commands with an authorization failure within the duration equals a threshold, a standard user is prevented from sending commands requiring authorization to the TPM.
 
 This setting helps administrators prevent the TPM hardware from entering a lockout mode because it slows the speed standard users can send commands requiring authorization to the TPM.
 
@@ -601,7 +601,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the maximum number of authorization failures for each standard user for the Trusted Platform Module (TPM). If the number of authorization failures for the user within the duration for Standard User Lockout Duration equals this value, the standard user is prevented from sending commands to the Trusted Platform Module (TPM) that require authorization.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the maximum number of authorization failures for each standard user for the Trusted Platform Module (TPM). If the number of authorization failures for the user within the duration for Standard User Lockout Duration equals this value, the standard user is prevented from sending commands to the Trusted Platform Module (TPM) that require authorization.
 
 This setting helps administrators prevent the TPM hardware from entering a lockout mode because it slows the speed standard users can send commands requiring authorization to the TPM.
 
@@ -684,7 +684,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to manage the maximum number of authorization failures for all standard users for the Trusted Platform Module (TPM). If the total number of authorization failures for all standard users within the duration for Standard User Lockout Duration equals this value, all standard users are prevented from sending commands to the Trusted Platform Module (TPM) that require authorization.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to manage the maximum number of authorization failures for all standard users for the Trusted Platform Module (TPM). If the total number of authorization failures for all standard users within the duration for Standard User Lockout Duration equals this value, all standard users are prevented from sending commands to the Trusted Platform Module (TPM) that require authorization.
 
 This setting helps administrators prevent the TPM hardware from entering a lockout mode because it slows the speed standard users can send commands requiring authorization to the TPM.
 
@@ -767,7 +767,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the TPM to use the Dictionary Attack Prevention Parameters (lockout threshold and recovery time) to the values that were used for Windows 10 Version 1607 and below. Setting this policy will take effect only if a) the TPM was originally prepared using a version of Windows after Windows 10 Version 1607 and b) the System has a TPM 2.0. Note that enabling this policy will only take effect after the TPM maintenance task runs (which typically happens after a system restart). Once this policy has been enabled on a system and has taken effect (after a system restart), disabling it will have no impact and the system's TPM will remain configured using the legacy Dictionary Attack Prevention parameters, regardless of the value of this group policy. The only way for the disabled setting of this policy to take effect on a system where it was once enabled is to a) disable it from group policy and b)clear the TPM on the system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the TPM to use the Dictionary Attack Prevention Parameters (lockout threshold and recovery time) to the values that were used for Windows 10 Version 1607 and below. Setting this policy will take effect only if a) the TPM was originally prepared using a version of Windows after Windows 10 Version 1607 and b) the System has a TPM 2.0. Note that enabling this policy will only take effect after the TPM maintenance task runs (which typically happens after a system restart). Once this policy has been enabled on a system and has taken effect (after a system restart), disabling it will have no impact and the system's TPM will remain configured using the legacy Dictionary Attack Prevention parameters, regardless of the value of this group policy. The only way for the disabled setting of this policy to take effect on a system where it was once enabled is to a) disable it from group policy and b)clear the TPM on the system.
 
 <!--/Description-->
 > [!TIP]
diff --git a/windows/client-management/mdm/policy-csp-admx-userexperiencevirtualization.md b/windows/client-management/mdm/policy-csp-admx-userexperiencevirtualization.md
index d967a2db8e..b82218ed41 100644
--- a/windows/client-management/mdm/policy-csp-admx-userexperiencevirtualization.md
+++ b/windows/client-management/mdm/policy-csp-admx-userexperiencevirtualization.md
@@ -450,7 +450,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings of Calculator.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings of Calculator.
 
 By default, the user settings of Calculator synchronize between computers. Use the policy setting to prevent the user settings of Calculator from synchronization between computers.
 
@@ -524,7 +524,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the sync provider used by User Experience Virtualization (UE-V) to sync settings between users’ computers. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the sync provider used by User Experience Virtualization (UE-V) to sync settings between users’ computers. 
 
 With Sync Method set to ”SyncProvider,” the UE-V Agent uses a built-in sync provider to keep user settings synchronized between the computer and the settings storage location. This is the default value. You can disable the sync provider on computers that never go offline and are always connected to the settings storage location.
 
@@ -603,7 +603,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of User Experience Virtualization (UE-V) rollback information for computers running in a non-persistent, pooled VDI environment. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of User Experience Virtualization (UE-V) rollback information for computers running in a non-persistent, pooled VDI environment. 
 
 UE-V settings rollback data and checkpoints are normally stored only on the local computer. With this policy setting enabled, the rollback information is copied to the settings storage location when the user logs off or shuts down their VDI session. 
 
@@ -677,7 +677,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the text of the Contact IT URL hyperlink in the Company Settings Center.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the text of the Contact IT URL hyperlink in the Company Settings Center.
 
 If you enable this policy setting, the Company Settings Center displays the specified text in the link to the Contact IT URL.
 
@@ -748,7 +748,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the URL for the Contact IT link in the Company Settings Center.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies the URL for the Contact IT link in the Company Settings Center.
 
 If you enable this policy setting, the Company Settings Center Contact IT text links to the specified URL. The link can be of any standard protocol such as http or mailto. 
 
@@ -819,7 +819,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings for Windows apps.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings for Windows apps.
 
 By default, the UE-V Agent synchronizes settings for Windows apps between the computer and the settings storage location.  
 
@@ -896,7 +896,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of Windows settings between computers. Certain Windows settings will synchronize between computers by default. These settings include Windows themes, Windows desktop settings, Ease of Access settings, and network printers. Use this policy setting to specify which Windows settings synchronize between computers. You can also use these settings to enable synchronization of users' sign-in information for certain apps, networks, and certificates.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of Windows settings between computers. Certain Windows settings will synchronize between computers by default. These settings include Windows themes, Windows desktop settings, Ease of Access settings, and network printers. Use this policy setting to specify which Windows settings synchronize between computers. You can also use these settings to enable synchronization of users' sign-in information for certain apps, networks, and certificates.
 
 If you enable this policy setting, only the selected Windows settings synchronize. Unselected Windows settings are excluded from settings synchronization.
 
@@ -967,7 +967,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to enable or disable User Experience Virtualization (UE-V) feature. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to enable or disable User Experience Virtualization (UE-V) feature. 
 
 Reboot is needed for enable to take effect. With Auto-register inbox templates enabled, the UE-V inbox templates such as Office 2016 will be automatically registered when the UE-V Service is enabled. If this option is changed, it will only take effect when UE-V service is re-enabled.
 
@@ -1035,7 +1035,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Finance app. By default, the user settings of Finance sync between computers. Use the policy setting to prevent the user settings of Finance from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Finance app. By default, the user settings of Finance sync between computers. Use the policy setting to prevent the user settings of Finance from synchronizing between computers.
 
 If you enable this policy setting, Finance user settings continue to sync.
 
@@ -1106,7 +1106,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables a notification in the system tray that appears when the User Experience Virtualization (UE-V) Agent runs for the first time. By default, a notification informs users that Company Settings Center, the user-facing name for the UE-V Agent, now helps to synchronize settings between their work computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables a notification in the system tray that appears when the User Experience Virtualization (UE-V) Agent runs for the first time. By default, a notification informs users that Company Settings Center, the user-facing name for the UE-V Agent, now helps to synchronize settings between their work computers.
 
 With this setting enabled, the notification appears the first time that the UE-V Agent runs.
 
@@ -1178,7 +1178,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Games app. By default, the user settings of Games sync between computers. Use the policy setting to prevent the user settings of Games from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Games app. By default, the user settings of Games sync between computers. Use the policy setting to prevent the user settings of Games from synchronizing between computers.
 
 If you enable this policy setting, Games user settings continue to sync.
 
@@ -1250,7 +1250,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Internet Explorer 8.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Internet Explorer 8.
 
 By default, the user settings of Internet Explorer 8 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 8 from synchronization between computers. 
 
@@ -1324,7 +1324,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Internet Explorer 9. By default, the user settings of Internet Explorer 9 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 9 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Internet Explorer 9. By default, the user settings of Internet Explorer 9 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 9 from synchronization between computers.
  
 If you enable this policy setting, the Internet Explorer 9 user settings continue to synchronize. 
 
@@ -1396,7 +1396,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings of Internet Explorer 10. By default, the user settings of Internet Explorer 10 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 10 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings of Internet Explorer 10. By default, the user settings of Internet Explorer 10 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 10 from synchronization between computers.
 
 If you enable this policy setting, the Internet Explorer 10 user settings continue to synchronize. 
 
@@ -1468,7 +1468,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings of Internet Explorer 11. By default, the user settings of Internet Explorer 11 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 11 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings of Internet Explorer 11. By default, the user settings of Internet Explorer 11 synchronize between computers. Use the policy setting to prevent the user settings for Internet Explorer 11 from synchronization between computers.
 
 If you enable this policy setting, the Internet Explorer 11 user settings continue to synchronize.
 
@@ -1540,7 +1540,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the versions of Internet Explorer.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the versions of Internet Explorer.
 By default, the user settings which are common between the versions of Internet Explorer synchronize between computers. Use the policy setting to prevent the user settings of Internet Explorer from synchronization between computers.
 
 If you enable this policy setting, the user settings which are common between the versions of Internet Explorer continue to synchronize.
@@ -1612,7 +1612,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Maps app. By default, the user settings of Maps sync between computers. Use the policy setting to prevent the user settings of Maps from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Maps app. By default, the user settings of Maps sync between computers. Use the policy setting to prevent the user settings of Maps from synchronizing between computers.
 
 If you enable this policy setting, Maps user settings continue to sync.
 
@@ -1684,7 +1684,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure the UE-V Agent to write a warning event to the event log when a settings package file size reaches a defined threshold. By default the UE-V Agent does not report information about package file size. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure the UE-V Agent to write a warning event to the event log when a settings package file size reaches a defined threshold. By default the UE-V Agent does not report information about package file size. 
 
 If you enable this policy setting, specify the threshold file size in bytes. When the settings package file exceeds this threshold the UE-V Agent will write a warning event to the event log.
 
@@ -1754,7 +1754,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Access 2010. By default, the user settings of Microsoft Access 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2010 from synchronization between computers. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Access 2010. By default, the user settings of Microsoft Access 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2010 from synchronization between computers. 
 
 If you enable this policy setting, Microsoft Access 2010 user settings continue to synchronize.
 
@@ -1826,7 +1826,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2010 applications. By default, the user settings which are common between the Microsoft Office Suite 2010 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2010 applications from synchronization between computers. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2010 applications. By default, the user settings which are common between the Microsoft Office Suite 2010 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2010 applications from synchronization between computers. 
 
 If you enable this policy setting, the user settings which are common between the Microsoft Office Suite 2010 applications continue to synchronize.
 
@@ -1898,7 +1898,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Excel 2010. By default, the user settings of Microsoft Excel 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Excel 2010 from synchronization between computers. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Excel 2010. By default, the user settings of Microsoft Excel 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Excel 2010 from synchronization between computers. 
 
 If you enable this policy setting, Microsoft Excel 2010 user settings continue to synchronize.
 
@@ -1969,7 +1969,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft InfoPath 2010. By default, the user settings of Microsoft InfoPath 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft InfoPath 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft InfoPath 2010. By default, the user settings of Microsoft InfoPath 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft InfoPath 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft InfoPath 2010 user settings continue to synchronize.
 
@@ -2041,7 +2041,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Lync 2010. By default, the user settings of Microsoft Lync 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2010 from synchronization between computers. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Lync 2010. By default, the user settings of Microsoft Lync 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2010 from synchronization between computers. 
 
 If you enable this policy setting, Microsoft Lync 2010 user settings continue to synchronize.
 
@@ -2113,7 +2113,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft OneNote 2010. By default, the user settings of Microsoft OneNote 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft OneNote 2010. By default, the user settings of Microsoft OneNote 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft OneNote 2010 user settings continue to synchronize.
 
@@ -2184,7 +2184,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Outlook 2010. By default, the user settings of Microsoft Outlook 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Outlook 2010. By default, the user settings of Microsoft Outlook 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Outlook 2010 user settings continue to synchronize.
 
@@ -2256,7 +2256,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2010. By default, the user settings of Microsoft PowerPoint 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2010. By default, the user settings of Microsoft PowerPoint 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft PowerPoint 2010 user settings continue to synchronize.
 
@@ -2328,7 +2328,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Project 2010. By default, the user settings of Microsoft Project 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Project 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Project 2010. By default, the user settings of Microsoft Project 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Project 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Project 2010 user settings continue to synchronize.
 
@@ -2399,7 +2399,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Publisher 2010. By default, the user settings of Microsoft Publisher 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Publisher 2010. By default, the user settings of Microsoft Publisher 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Publisher 2010 user settings continue to synchronize.
 
@@ -2471,7 +2471,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft SharePoint Designer 2010. By default, the user settings of Microsoft SharePoint Designer 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Designer 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft SharePoint Designer 2010. By default, the user settings of Microsoft SharePoint Designer 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Designer 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft SharePoint Designer 2010 user settings continue to synchronize.
 
@@ -2543,7 +2543,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft SharePoint Workspace 2010. By default, the user settings of Microsoft SharePoint Workspace 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Workspace 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft SharePoint Workspace 2010. By default, the user settings of Microsoft SharePoint Workspace 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Workspace 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft SharePoint Workspace 2010 user settings continue to synchronize.
 
@@ -2615,7 +2615,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Visio 2010. By default, the user settings of Microsoft Visio 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Visio 2010. By default, the user settings of Microsoft Visio 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Visio 2010 user settings continue to synchronize.
 
@@ -2687,7 +2687,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Word 2010. By default, the user settings of Microsoft Word 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2010 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Word 2010. By default, the user settings of Microsoft Word 2010 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2010 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Word 2010 user settings continue to synchronize.
 
@@ -2759,7 +2759,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Access 2013. By default, the user settings of Microsoft Access 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Access 2013. By default, the user settings of Microsoft Access 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Access 2013 user settings continue to synchronize.
 
@@ -2830,7 +2830,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Access 2013. Microsoft Access 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Access 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Access 2013. Microsoft Access 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Access 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Access 2013 will continue to be backed up.
 
@@ -2902,7 +2902,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2013 applications. By default, the user settings which are common between the Microsoft Office Suite 2013 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2013 applications from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2013 applications. By default, the user settings which are common between the Microsoft Office Suite 2013 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2013 applications from synchronization between computers.
 
 If you enable this policy setting, the user settings which are common between the Microsoft Office Suite 2013 applications continue to synchronize.
 
@@ -2974,7 +2974,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings which are common between the Microsoft Office Suite 2013 applications.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings which are common between the Microsoft Office Suite 2013 applications.
 Microsoft Office Suite 2013 has user settings which are common between applications and are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific common Microsoft Office Suite 2013 applications.
 
 If you enable this policy setting, certain user settings which are common between the Microsoft Office Suite 2013 applications will continue to be backed up.
@@ -3047,7 +3047,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Excel 2013.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Excel 2013.
 
 By default, the user settings of Microsoft Excel 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Excel 2013 from synchronization between computers.
 
@@ -3120,7 +3120,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Excel 2013. Microsoft Excel 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Excel 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Excel 2013. Microsoft Excel 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Excel 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Excel 2013 will continue to be backed up.
 
@@ -3191,7 +3191,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft InfoPath 2013. By default, the user settings of Microsoft InfoPath 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft InfoPath 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft InfoPath 2013. By default, the user settings of Microsoft InfoPath 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft InfoPath 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft InfoPath 2013 user settings continue to synchronize.
 
@@ -3263,7 +3263,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft InfoPath 2013. Microsoft InfoPath 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft InfoPath 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft InfoPath 2013. Microsoft InfoPath 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft InfoPath 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft InfoPath 2013 will continue to be backed up.
 
@@ -3335,7 +3335,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Lync 2013. By default, the user settings of Microsoft Lync 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Lync 2013. By default, the user settings of Microsoft Lync 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Lync 2013 user settings continue to synchronize.
 
@@ -3406,7 +3406,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Lync 2013. Microsoft Lync 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Lync 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Lync 2013. Microsoft Lync 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Lync 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Lync 2013 will continue to be backed up.
 
@@ -3478,7 +3478,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for OneDrive for Business 2013. By default, the user settings of OneDrive for Business 2013 synchronize between computers. Use the policy setting to prevent the user settings of OneDrive for Business 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for OneDrive for Business 2013. By default, the user settings of OneDrive for Business 2013 synchronize between computers. Use the policy setting to prevent the user settings of OneDrive for Business 2013 from synchronization between computers.
 
 If you enable this policy setting, OneDrive for Business 2013 user settings continue to synchronize.
 
@@ -3550,7 +3550,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft OneNote 2013. By default, the user settings of Microsoft OneNote 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft OneNote 2013. By default, the user settings of Microsoft OneNote 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft OneNote 2013 user settings continue to synchronize.
 
@@ -3622,7 +3622,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft OneNote 2013. Microsoft OneNote 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft OneNote 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft OneNote 2013. Microsoft OneNote 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft OneNote 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft OneNote 2013 will continue to be backed up.
 
@@ -3694,7 +3694,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Outlook 2013. By default, the user settings of Microsoft Outlook 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Outlook 2013. By default, the user settings of Microsoft Outlook 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Outlook 2013 user settings continue to synchronize.
 
@@ -3765,7 +3765,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Outlook 2013. Microsoft Outlook 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Outlook 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Outlook 2013. Microsoft Outlook 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Outlook 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Outlook 2013 will continue to be backed up.
 
@@ -3837,7 +3837,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2013. By default, the user settings of Microsoft PowerPoint 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2013. By default, the user settings of Microsoft PowerPoint 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft PowerPoint 2013 user settings continue to synchronize.
 
@@ -3909,7 +3909,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft PowerPoint 2013. Microsoft PowerPoint 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft PowerPoint 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft PowerPoint 2013. Microsoft PowerPoint 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft PowerPoint 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft PowerPoint 2013 will continue to be backed up.
 
@@ -3981,7 +3981,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Project 2013. By default, the user settings of Microsoft Project 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Project 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Project 2013. By default, the user settings of Microsoft Project 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Project 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Project 2013 user settings continue to synchronize.
 
@@ -4052,7 +4052,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Project 2013. Microsoft Project 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Project 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Project 2013. Microsoft Project 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Project 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Project 2013 will continue to be backed up.
 
@@ -4124,7 +4124,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Publisher 2013. By default, the user settings of Microsoft Publisher 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Publisher 2013. By default, the user settings of Microsoft Publisher 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Publisher 2013 user settings continue to synchronize.
 
@@ -4196,7 +4196,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Publisher 2013. Microsoft Publisher 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Publisher 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Publisher 2013. Microsoft Publisher 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Publisher 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Publisher 2013 will continue to be backed up.
 
@@ -4268,7 +4268,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft SharePoint Designer 2013. By default, the user settings of Microsoft SharePoint Designer 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Designer 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft SharePoint Designer 2013. By default, the user settings of Microsoft SharePoint Designer 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft SharePoint Designer 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft SharePoint Designer 2013 user settings continue to synchronize.
 
@@ -4339,7 +4339,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft SharePoint Designer 2013. Microsoft SharePoint Designer 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft SharePoint Designer 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft SharePoint Designer 2013. Microsoft SharePoint Designer 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft SharePoint Designer 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft SharePoint Designer 2013 will continue to be backed up.
 
@@ -4410,7 +4410,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 2013 Upload Center. By default, the user settings of Microsoft Office 2013 Upload Center synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Office 2013 Upload Center from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 2013 Upload Center. By default, the user settings of Microsoft Office 2013 Upload Center synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Office 2013 Upload Center from synchronization between computers.
 
 If you enable this policy setting, Microsoft Office 2013 Upload Center user settings continue to synchronize.
 
@@ -4482,7 +4482,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Visio 2013. By default, the user settings of Microsoft Visio 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Visio 2013. By default, the user settings of Microsoft Visio 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Visio 2013 user settings continue to synchronize.
 
@@ -4554,7 +4554,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Visio 2013. Microsoft Visio 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Visio 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Visio 2013. Microsoft Visio 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Visio 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Visio 2013 will continue to be backed up.
 
@@ -4626,7 +4626,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Word 2013. By default, the user settings of Microsoft Word 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2013 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Word 2013. By default, the user settings of Microsoft Word 2013 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2013 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Word 2013 user settings continue to synchronize.
 
@@ -4698,7 +4698,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Word 2013. Microsoft Word 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Word 2013 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Word 2013. Microsoft Word 2013 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Word 2013 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Word 2013 will continue to be backed up.
 
@@ -4770,7 +4770,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Access 2016. By default, the user settings of Microsoft Access 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Access 2016. By default, the user settings of Microsoft Access 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Access 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Access 2016 user settings continue to synchronize.
 
@@ -4842,7 +4842,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Access 2016. Microsoft Access 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Access 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Access 2016. Microsoft Access 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Access 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Access 2016 will continue to be backed up.
 
@@ -4914,7 +4914,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2016 applications. By default, the user settings which are common between the Microsoft Office Suite 2016 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2016 applications from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2016 applications. By default, the user settings which are common between the Microsoft Office Suite 2016 applications synchronize between computers. Use the policy setting to prevent the user settings which are common between the Microsoft Office Suite 2016 applications from synchronization between computers.
 
 If you enable this policy setting, the user settings which are common between the Microsoft Office Suite 2016 applications continue to synchronize.
 
@@ -4986,7 +4986,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings which are common between the Microsoft Office Suite 2016 applications.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings which are common between the Microsoft Office Suite 2016 applications.
 Microsoft Office Suite 2016 has user settings which are common between applications and are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific common Microsoft Office Suite 2016 applications.
 
 If you enable this policy setting, certain user settings which are common between the Microsoft Office Suite 2016 applications will continue to be backed up.
@@ -5059,7 +5059,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Excel 2016. By default, the user settings of Microsoft Excel 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Excel 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Excel 2016. By default, the user settings of Microsoft Excel 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Excel 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Excel 2016 user settings continue to synchronize.
 
@@ -5131,7 +5131,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Excel 2016. Microsoft Excel 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Excel 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Excel 2016. Microsoft Excel 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Excel 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Excel 2016 will continue to be backed up.
 
@@ -5203,7 +5203,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Lync 2016. By default, the user settings of Microsoft Lync 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Lync 2016. By default, the user settings of Microsoft Lync 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Lync 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Lync 2016 user settings continue to synchronize.
 
@@ -5275,7 +5275,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Lync 2016. Microsoft Lync 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Lync 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Lync 2016. Microsoft Lync 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Lync 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Lync 2016 will continue to be backed up.
 
@@ -5347,7 +5347,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for OneDrive for Business 2016. By default, the user settings of OneDrive for Business 2016 synchronize between computers. Use the policy setting to prevent the user settings of OneDrive for Business 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for OneDrive for Business 2016. By default, the user settings of OneDrive for Business 2016 synchronize between computers. Use the policy setting to prevent the user settings of OneDrive for Business 2016 from synchronization between computers.
 
 If you enable this policy setting, OneDrive for Business 2016 user settings continue to synchronize.
 
@@ -5419,7 +5419,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft OneNote 2016. By default, the user settings of Microsoft OneNote 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft OneNote 2016. By default, the user settings of Microsoft OneNote 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft OneNote 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft OneNote 2016 user settings continue to synchronize.
 
@@ -5491,7 +5491,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft OneNote 2016. Microsoft OneNote 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft OneNote 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft OneNote 2016. Microsoft OneNote 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft OneNote 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft OneNote 2016 will continue to be backed up.
 
@@ -5563,7 +5563,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Outlook 2016. By default, the user settings of Microsoft Outlook 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Outlook 2016. By default, the user settings of Microsoft Outlook 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Outlook 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Outlook 2016 user settings continue to synchronize.
 
@@ -5635,7 +5635,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Outlook 2016. Microsoft Outlook 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Outlook 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Outlook 2016. Microsoft Outlook 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Outlook 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Outlook 2016 will continue to be backed up.
 
@@ -5707,7 +5707,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2016. By default, the user settings of Microsoft PowerPoint 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft PowerPoint 2016. By default, the user settings of Microsoft PowerPoint 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft PowerPoint 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft PowerPoint 2016 user settings continue to synchronize.
 
@@ -5779,7 +5779,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft PowerPoint 2016. Microsoft PowerPoint 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft PowerPoint 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft PowerPoint 2016. Microsoft PowerPoint 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft PowerPoint 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft PowerPoint 2016 will continue to be backed up.
 
@@ -5851,7 +5851,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Project 2016.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Project 2016.
 By default, the user settings of Microsoft Project 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Project 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Project 2016 user settings continue to synchronize.
@@ -5924,7 +5924,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Project 2016. Microsoft Project 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Project 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Project 2016. Microsoft Project 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Project 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Project 2016 will continue to be backed up.
 
@@ -5995,7 +5995,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Publisher 2016. By default, the user settings of Microsoft Publisher 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Publisher 2016. By default, the user settings of Microsoft Publisher 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Publisher 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Publisher 2016 user settings continue to synchronize.
 
@@ -6067,7 +6067,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Publisher 2016. Microsoft Publisher 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Publisher 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Publisher 2016. Microsoft Publisher 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Publisher 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Publisher 2016 will continue to be backed up.
 
@@ -6138,7 +6138,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 2016 Upload Center. By default, the user settings of Microsoft Office 2016 Upload Center synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Office 2016 Upload Center from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 2016 Upload Center. By default, the user settings of Microsoft Office 2016 Upload Center synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Office 2016 Upload Center from synchronization between computers.
 
 If you enable this policy setting, Microsoft Office 2016 Upload Center user settings continue to synchronize.
 
@@ -6210,7 +6210,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Visio 2016. By default, the user settings of Microsoft Visio 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Visio 2016. By default, the user settings of Microsoft Visio 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Visio 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Visio 2016 user settings continue to synchronize.
 
@@ -6282,7 +6282,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Visio 2016. Microsoft Visio 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Visio 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Visio 2016. Microsoft Visio 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Visio 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Visio 2016 will continue to be backed up.
 
@@ -6354,7 +6354,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Word 2016. By default, the user settings of Microsoft Word 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2016 from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Word 2016. By default, the user settings of Microsoft Word 2016 synchronize between computers. Use the policy setting to prevent the user settings of Microsoft Word 2016 from synchronization between computers.
 
 If you enable this policy setting, Microsoft Word 2016 user settings continue to synchronize.
 
@@ -6426,7 +6426,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the backup of certain user settings for Microsoft Word 2016. Microsoft Word 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Word 2016 settings.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the backup of certain user settings for Microsoft Word 2016. Microsoft Word 2016 has user settings that are backed up instead of synchronizing between computers. Use the policy setting to suppress the backup of specific Microsoft Word 2016 settings.
 
 If you enable this policy setting, certain user settings of Microsoft Word 2016 will continue to be backed up.
 
@@ -6498,7 +6498,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Access 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Access 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Access 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Access 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Access 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Access 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Access 2013 user settings continue to sync with UE-V.
 
@@ -6570,7 +6570,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Access 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Access 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Access 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Access 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Access 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Access 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Access 2016 user settings continue to sync with UE-V.
 
@@ -6642,7 +6642,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2013 applications. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings which are common between the Microsoft Office Suite 2013 applications will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings which are common between the Microsoft Office Suite 2013 applications from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2013 applications. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings which are common between the Microsoft Office Suite 2013 applications will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings which are common between the Microsoft Office Suite 2013 applications from synchronization between computers with UE-V.
 
 If you enable this policy setting, user settings which are common between the Microsoft Office Suite 2013 applications continue to synchronize with UE-V.
 
@@ -6713,7 +6713,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2016 applications. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings which are common between the Microsoft Office Suite 2016 applications will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings which are common between the Microsoft Office Suite 2016 applications from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings which are common between the Microsoft Office Suite 2016 applications. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings which are common between the Microsoft Office Suite 2016 applications will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings which are common between the Microsoft Office Suite 2016 applications from synchronization between computers with UE-V.
 
 If you enable this policy setting, user settings which are common between the Microsoft Office Suite 2016 applications continue to synchronize with UE-V.
 
@@ -6785,7 +6785,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Excel 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Excel 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Excel 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Excel 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Excel 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Excel 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Excel 2013 user settings continue to sync with UE-V.
 
@@ -6857,7 +6857,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Excel 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Excel 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Excel 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Excel 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Excel 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Excel 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Excel 2016 user settings continue to sync with UE-V.
 
@@ -6929,7 +6929,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 InfoPath 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 InfoPath 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 InfoPath 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 InfoPath 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 InfoPath 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 InfoPath 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 InfoPath 2013 user settings continue to sync with UE-V.
 
@@ -7000,7 +7000,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Lync 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Lync 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Lync 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Lync 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Lync 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Lync 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Lync 2013 user settings continue to sync with UE-V.
 
@@ -7072,7 +7072,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Lync 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Lync 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Lync 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Lync 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Lync 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Lync 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Lync 2016 user settings continue to sync with UE-V.
 
@@ -7144,7 +7144,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 OneNote 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 OneNote 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 OneNote 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 OneNote 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 OneNote 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 OneNote 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 OneNote 2013 user settings continue to sync with UE-V.
 
@@ -7216,7 +7216,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 OneNote 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 OneNote 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 OneNote 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 OneNote 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 OneNote 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 OneNote 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 OneNote 2016 user settings continue to sync with UE-V.
 
@@ -7288,7 +7288,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Outlook 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Outlook 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Outlook 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Outlook 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Outlook 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Outlook 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Outlook 2013 user settings continue to sync with UE-V.
 
@@ -7360,7 +7360,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Outlook 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Outlook 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Outlook 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Outlook 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Outlook 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Outlook 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Outlook 2016 user settings continue to sync with UE-V.
 
@@ -7432,7 +7432,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 PowerPoint 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 PowerPoint 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 PowerPoint 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 PowerPoint 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 PowerPoint 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 PowerPoint 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 PowerPoint 2013 user settings continue to sync with UE-V.
 
@@ -7504,7 +7504,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 PowerPoint 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 PowerPoint 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 PowerPoint 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 PowerPoint 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 PowerPoint 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 PowerPoint 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 PowerPoint 2016 user settings continue to sync with UE-V.
 
@@ -7576,7 +7576,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Project 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Project 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Project 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Project 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Project 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Project 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Project 2013 user settings continue to sync with UE-V.
 
@@ -7647,7 +7647,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Project 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Project 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Project 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Project 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Project 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Project 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Project 2016 user settings continue to sync with UE-V.
 
@@ -7719,7 +7719,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Publisher 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Publisher 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Publisher 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Publisher 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Publisher 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Publisher 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Publisher 2013 user settings continue to sync with UE-V.
 
@@ -7791,7 +7791,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Publisher 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Publisher 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Publisher 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Publisher 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Publisher 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Publisher 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Publisher 2016 user settings continue to sync with UE-V.
 
@@ -7863,7 +7863,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 SharePoint Designer 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 SharePoint Designer 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 SharePoint Designer 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 SharePoint Designer 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 SharePoint Designer 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 SharePoint Designer 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 SharePoint Designer 2013 user settings continue to sync with UE-V.
 
@@ -7935,7 +7935,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Visio 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Visio 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Visio 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Visio 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Visio 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Visio 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Visio 2013 user settings continue to sync with UE-V.
 
@@ -8007,7 +8007,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Visio 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Visio 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Visio 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Visio 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Visio 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Visio 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Visio 2016 user settings continue to sync with UE-V.
 
@@ -8079,7 +8079,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Word 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Word 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Word 2013 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Word 2013. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Word 2013 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Word 2013 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Word 2013 user settings continue to sync with UE-V.
 
@@ -8151,7 +8151,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for Microsoft Office 365 Word 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Word 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Word 2016 from synchronization between computers with UE-V.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for Microsoft Office 365 Word 2016. Microsoft Office 365 synchronizes certain settings by default without UE-V. If the synchronization capabilities of Microsoft Office 365 are disabled, then the user settings of Microsoft Office 365 Word 2016 will synchronize between a user’s work computers with UE-V by default. Use this policy setting to prevent the user settings of Microsoft Office 365 Word 2016 from synchronization between computers with UE-V.
 
 If you enable this policy setting, Microsoft Office 365 Word 2016 user settings continue to sync with UE-V.
 
@@ -8223,7 +8223,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Music app. By default, the user settings of Music sync between computers. Use the policy setting to prevent the user settings of Music from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Music app. By default, the user settings of Music sync between computers. Use the policy setting to prevent the user settings of Music from synchronizing between computers.
 
 If you enable this policy setting, Music user settings continue to sync.
 
@@ -8294,7 +8294,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the News app. By default, the user settings of News sync between computers. Use the policy setting to prevent the user settings of News from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the News app. By default, the user settings of News sync between computers. Use the policy setting to prevent the user settings of News from synchronizing between computers.
 
 If you enable this policy setting, News user settings continue to sync.
 
@@ -8366,7 +8366,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings of Notepad. By default, the user settings of Notepad synchronize between computers. Use the policy setting to prevent the user settings of Notepad from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings of Notepad. By default, the user settings of Notepad synchronize between computers. Use the policy setting to prevent the user settings of Notepad from synchronization between computers.
 
 If you enable this policy setting, the Notepad user settings continue to synchronize. 
 
@@ -8438,7 +8438,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Reader app. By default, the user settings of Reader sync between computers. Use the policy setting to prevent the user settings of Reader from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Reader app. By default, the user settings of Reader sync between computers. Use the policy setting to prevent the user settings of Reader from synchronizing between computers.
 
 If you enable this policy setting, Reader user settings continue to sync.
 
@@ -8511,7 +8511,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the number of milliseconds that the computer waits when retrieving user settings from the settings storage location. You can use this setting to override the default value of 2000 milliseconds. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the number of milliseconds that the computer waits when retrieving user settings from the settings storage location. You can use this setting to override the default value of 2000 milliseconds. 
 
 If you enable this policy setting, set the number of milliseconds that the system waits to retrieve settings. 
 
@@ -8581,7 +8581,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures where the settings package files that contain user settings are stored.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures where the settings package files that contain user settings are stored.
 
 If you enable this policy setting, the user settings are stored in the specified location. 
 
@@ -8651,7 +8651,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures where custom settings location templates are stored and if the catalog will be used to replace the default Microsoft templates installed with the UE-V Agent.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures where custom settings location templates are stored and if the catalog will be used to replace the default Microsoft templates installed with the UE-V Agent.
 
 If you enable this policy setting, the UE-V Agent checks the specified location once each day and updates its synchronization behavior based on the templates in this location. Settings location templates added or updated since the last check are registered by the UE-V Agent. The UE-V Agent deregisters templates that were removed from this location.
 
@@ -8727,7 +8727,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Sports app. By default, the user settings of Sports sync between computers. Use the policy setting to prevent the user settings of Sports from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Sports app. By default, the user settings of Sports sync between computers. Use the policy setting to prevent the user settings of Sports from synchronizing between computers.
 
 If you enable this policy setting, Sports user settings continue to sync.
 
@@ -8799,7 +8799,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to enable or disable User Experience Virtualization (UE-V). Only applies to Windows 10 or earlier.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to enable or disable User Experience Virtualization (UE-V). Only applies to Windows 10 or earlier.
 
 <!--/Description-->
 > [!TIP]
@@ -8864,7 +8864,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings over metered connections. By default, the UE-V Agent does not synchronize settings over a metered connection.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings over metered connections. By default, the UE-V Agent does not synchronize settings over a metered connection.
 
 With this setting enabled, the UE-V Agent synchronizes settings over a metered connection.
 
@@ -8936,7 +8936,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings over metered connections outside of the home provider network, for example when connected via a roaming connection. By default, the UE-V Agent does not synchronize settings over a metered connection that is roaming.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines whether the User Experience Virtualization (UE-V) Agent synchronizes settings over metered connections outside of the home provider network, for example when connected via a roaming connection. By default, the UE-V Agent does not synchronize settings over a metered connection that is roaming.
 
 With this setting enabled, the UE-V Agent synchronizes settings over a metered connection that is roaming.
 
@@ -9008,7 +9008,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure the User Experience Virtualization (UE-V) sync provider to ping the settings storage path before attempting to sync settings. If the ping is successful then the sync provider attempts to synchronize the settings packages. If the ping is unsuccessful then the sync provider doesn’t attempt the synchronization.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to configure the User Experience Virtualization (UE-V) sync provider to ping the settings storage path before attempting to sync settings. If the ping is successful then the sync provider attempts to synchronize the settings packages. If the ping is unsuccessful then the sync provider doesn’t attempt the synchronization.
 
 If you enable this policy setting, the sync provider pings the settings storage location before synchronizing settings packages.
 
@@ -9079,7 +9079,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting defines the default settings sync behavior of the User Experience Virtualization (UE-V) Agent for Windows apps that are not explicitly listed in Windows App List. By default, the UE-V Agent only synchronizes settings of those Windows apps included in the Windows App List.
+Available in the latest Windows 10 Insider Preview Build. This policy setting defines the default settings sync behavior of the User Experience Virtualization (UE-V) Agent for Windows apps that are not explicitly listed in Windows App List. By default, the UE-V Agent only synchronizes settings of those Windows apps included in the Windows App List.
 
 With this setting enabled, the settings of all Windows apps not expressly disable in the Windows App List are synchronized.
 
@@ -9151,7 +9151,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Travel app. By default, the user settings of Travel sync between computers. Use the policy setting to prevent the user settings of Travel from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Travel app. By default, the user settings of Travel sync between computers. Use the policy setting to prevent the user settings of Travel from synchronizing between computers.
 
 If you enable this policy setting, Travel user settings continue to sync.
 
@@ -9222,7 +9222,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting enables the User Experience Virtualization (UE-V) tray icon. By default, an icon appears in the system tray that displays notifications for UE-V. This icon also provides a link to the UE-V Agent application, Company Settings Center. Users can open the Company Settings Center by right-clicking the icon and selecting Open or by double-clicking the icon. When this group policy setting is enabled, the UE-V tray icon is visible, the UE-V notifications display, and the Company Settings Center is accessible from the tray icon.
+Available in the latest Windows 10 Insider Preview Build. This policy setting enables the User Experience Virtualization (UE-V) tray icon. By default, an icon appears in the system tray that displays notifications for UE-V. This icon also provides a link to the UE-V Agent application, Company Settings Center. Users can open the Company Settings Center by right-clicking the icon and selecting Open or by double-clicking the icon. When this group policy setting is enabled, the UE-V tray icon is visible, the UE-V notifications display, and the Company Settings Center is accessible from the tray icon.
 
 With this setting disabled, the tray icon does not appear in the system tray, UE-V never displays notifications, and the user cannot access Company Settings Center from the system tray. The Company Settings Center remains accessible through the Control Panel and the Start menu or Start screen.
 
@@ -9292,7 +9292,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Video app. By default, the user settings of Video sync between computers. Use the policy setting to prevent the user settings of Video from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Video app. By default, the user settings of Video sync between computers. Use the policy setting to prevent the user settings of Video from synchronizing between computers.
 
 If you enable this policy setting, Video user settings continue to sync.
 
@@ -9364,7 +9364,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings for the Weather app. By default, the user settings of Weather sync between computers. Use the policy setting to prevent the user settings of Weather from synchronizing between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings for the Weather app. By default, the user settings of Weather sync between computers. Use the policy setting to prevent the user settings of Weather from synchronizing between computers.
 
 If you enable this policy setting, Weather user settings continue to sync.
 
@@ -9435,7 +9435,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the synchronization of user settings of WordPad. By default, the user settings of WordPad synchronize between computers. Use the policy setting to prevent the user settings of WordPad from synchronization between computers.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the synchronization of user settings of WordPad. By default, the user settings of WordPad synchronize between computers. Use the policy setting to prevent the user settings of WordPad from synchronization between computers.
 
 If you enable this policy setting, the WordPad user settings continue to synchronize. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-w32time.md b/windows/client-management/mdm/policy-csp-admx-w32time.md
index a9b6715a43..0afeb2cfc3 100644
--- a/windows/client-management/mdm/policy-csp-admx-w32time.md
+++ b/windows/client-management/mdm/policy-csp-admx-w32time.md
@@ -83,7 +83,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify Clock discipline and General values for the Windows Time service (W32time) for domain controllers including RODCs.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify Clock discipline and General values for the Windows Time service (W32time) for domain controllers including RODCs.
 
 If this policy setting is enabled, W32time Service on target machines use the settings provided here. Otherwise, the service on target machines use locally configured settings values.
 
@@ -228,7 +228,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies a set of parameters for controlling the Windows NTP Client.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies a set of parameters for controlling the Windows NTP Client.
 
 If you enable this policy setting, you can specify the following parameters for the Windows NTP Client.
 
@@ -318,7 +318,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the Windows NTP Client is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting specifies whether the Windows NTP Client is enabled.
 
 Enabling the Windows NTP Client allows your computer to synchronize its computer clock with other NTP servers. You might want to disable this service if you decide to use a third-party time provider.
 
@@ -389,7 +389,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify whether the Windows NTP Server is enabled.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify whether the Windows NTP Server is enabled.
 
 If you enable this policy setting for the Windows NTP Server, your computer can service NTP requests from other computers.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-wincal.md b/windows/client-management/mdm/policy-csp-admx-wincal.md
index bceaf394ed..d5aba0a18f 100644
--- a/windows/client-management/mdm/policy-csp-admx-wincal.md
+++ b/windows/client-management/mdm/policy-csp-admx-wincal.md
@@ -77,7 +77,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Windows Calendar is a feature that allows users to manage appointments and tasks by creating personal calendars, publishing them, and subscribing to other users calendars.
+Available in the latest Windows 10 Insider Preview Build. Windows Calendar is a feature that allows users to manage appointments and tasks by creating personal calendars, publishing them, and subscribing to other users calendars.
 
 If you enable this setting, Windows Calendar will be turned off.
 
@@ -150,7 +150,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. Windows Calendar is a feature that allows users to manage appointments and tasks by creating personal calendars, publishing them, and subscribing to other users calendars.
+Available in the latest Windows 10 Insider Preview Build. Windows Calendar is a feature that allows users to manage appointments and tasks by creating personal calendars, publishing them, and subscribing to other users calendars.
 
 If you enable this setting, Windows Calendar will be turned off.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-windowsanytimeupgrade.md b/windows/client-management/mdm/policy-csp-admx-windowsanytimeupgrade.md
index 8b06f92864..c0b49d9fae 100644
--- a/windows/client-management/mdm/policy-csp-admx-windowsanytimeupgrade.md
+++ b/windows/client-management/mdm/policy-csp-admx-windowsanytimeupgrade.md
@@ -75,7 +75,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. By default, Add features to Windows 10 is available for all administrators. 
+Available in the latest Windows 10 Insider Preview Build. By default, Add features to Windows 10 is available for all administrators. 
 
 If you enable this policy setting, the wizard will not run.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-windowsconnectnow.md b/windows/client-management/mdm/policy-csp-admx-windowsconnectnow.md
index 80b7d947fa..bec9255c05 100644
--- a/windows/client-management/mdm/policy-csp-admx-windowsconnectnow.md
+++ b/windows/client-management/mdm/policy-csp-admx-windowsconnectnow.md
@@ -80,7 +80,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prohibits access to Windows Connect Now (WCN) wizards. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting prohibits access to Windows Connect Now (WCN) wizards. 
 
 If you enable this policy setting, the wizards are turned off and users have no access to any of the wizard tasks. All the configuration related tasks, including "Set up a wireless router or access point" and "Add a wireless device" are disabled. 
 
@@ -149,7 +149,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prohibits access to Windows Connect Now (WCN) wizards. 
+Available in the latest Windows 10 Insider Preview Build. This policy setting prohibits access to Windows Connect Now (WCN) wizards. 
 
 If you enable this policy setting, the wizards are turned off and users have no access to any of the wizard tasks. All the configuration related tasks, including "Set up a wireless router or access point" and "Add a wireless device" are disabled. 
 
@@ -218,7 +218,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows the configuration of wireless settings using Windows Connect Now (WCN). The WCN Registrar enables the discovery and configuration of devices over Ethernet (UPnP), over In-band 802.11 WLAN, through the Windows Portable Device API (WPD), and via USB Flash drives.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows the configuration of wireless settings using Windows Connect Now (WCN). The WCN Registrar enables the discovery and configuration of devices over Ethernet (UPnP), over In-band 802.11 WLAN, through the Windows Portable Device API (WPD), and via USB Flash drives.
 
 Additional options are available to allow discovery and configuration over a specific medium. 
 
diff --git a/windows/client-management/mdm/policy-csp-admx-windowsmediadrm.md b/windows/client-management/mdm/policy-csp-admx-windowsmediadrm.md
index d9845c8533..0fa4658ba7 100644
--- a/windows/client-management/mdm/policy-csp-admx-windowsmediadrm.md
+++ b/windows/client-management/mdm/policy-csp-admx-windowsmediadrm.md
@@ -74,7 +74,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents Windows Media Digital Rights Management (DRM) from accessing the Internet (or intranet).
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents Windows Media Digital Rights Management (DRM) from accessing the Internet (or intranet).
 
 When enabled, Windows Media DRM is prevented from accessing the Internet (or intranet) for license acquisition and security upgrades.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-windowsmediaplayer.md b/windows/client-management/mdm/policy-csp-admx-windowsmediaplayer.md
index 69a27c1fef..22acf9fa38 100644
--- a/windows/client-management/mdm/policy-csp-admx-windowsmediaplayer.md
+++ b/windows/client-management/mdm/policy-csp-admx-windowsmediaplayer.md
@@ -134,7 +134,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify the HTTP proxy settings for Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify the HTTP proxy settings for Windows Media Player.
 
 If you enable this policy setting, select one of the following proxy types:
 
@@ -215,7 +215,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify the MMS proxy settings for Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify the MMS proxy settings for Windows Media Player.
 
 If you enable this policy setting, select one of the following proxy types:
 
@@ -295,7 +295,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify the RTSP proxy settings for Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify the RTSP proxy settings for Windows Media Player.
 
 If you enable this policy setting, select one of the following proxy types:
 
@@ -373,7 +373,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to turn off do not show first use dialog boxes.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to turn off do not show first use dialog boxes.
 
 If you enable this policy setting, the Privacy Options and Installation Options dialog boxes are prevented from being displayed the first time a user starts Windows Media Player.
 
@@ -444,7 +444,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to hide the Network tab.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to hide the Network tab.
 
 If you enable this policy setting, the Network tab in Windows Media Player is hidden. The default network settings are used unless the user has previously defined network settings for the Player.
 
@@ -513,7 +513,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent the anchor window from being displayed when Windows Media Player is in skin mode.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent the anchor window from being displayed when Windows Media Player is in skin mode.
 
 If you enable this policy setting, the anchor window is hidden when the Player is in skin mode. In addition, the option on the Player tab in the Player that enables users to choose whether the anchor window displays is not available.
 
@@ -584,7 +584,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents the anchor window from being displayed when Windows Media Player is in skin mode.
+Available in the latest Windows 10 Insider Preview Build. This policy setting prevents the anchor window from being displayed when Windows Media Player is in skin mode.
 
 This policy hides the anchor window when the Player is in skin mode. In addition, the option on the Player tab in the Player that enables users to choose whether the anchor window displays is not available.
 
@@ -655,7 +655,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent video smoothing from occurring.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent video smoothing from occurring.
 
 If you enable this policy setting, video smoothing is prevented, which can improve video playback on computers with limited resources. In addition, the Use Video Smoothing check box in the Video Acceleration Settings dialog box in the Player is cleared and is not available.
 
@@ -728,7 +728,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows a screen saver to interrupt playback.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows a screen saver to interrupt playback.
 
 If you enable this policy setting, a screen saver is displayed during playback of digital media according to the options selected on the Screen Saver tab in the Display Properties dialog box in Control Panel. The Allow screen saver during playback check box on the Player tab in the Player is selected and is not available.
 
@@ -799,7 +799,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to hide the Privacy tab in Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to hide the Privacy tab in Windows Media Player.
 
 If you enable this policy setting, the "Update my music files (WMA and MP3 files) by retrieving missing media information from the Internet" check box on the Media Library tab is available, even though the Privacy tab is hidden, unless the "Prevent music file media information retrieval" policy setting is enabled.
 
@@ -870,7 +870,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to hide the Security tab in Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to hide the Security tab in Windows Media Player.
 
 If you enable this policy setting, the default security settings for the options on the Security tab are used unless the user changed the settings previously. Users can still change security and zone settings by using Internet Explorer unless these settings have been hidden or disabled by Internet Explorer policies.
 
@@ -939,7 +939,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify whether network buffering uses the default or a specified number of seconds.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify whether network buffering uses the default or a specified number of seconds.
 
 If you enable this policy setting, select one of the following options to specify the number of seconds streaming media is buffered before it is played.
 
@@ -1013,7 +1013,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent Windows Media Player from downloading codecs.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent Windows Media Player from downloading codecs.
 
 If you enable this policy setting, the Player is prevented from automatically downloading codecs to your computer. In addition, the Download codecs automatically check box on the Player tab in the Player is not available.
 
@@ -1084,7 +1084,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent media information for CDs and DVDs from being retrieved from the Internet.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent media information for CDs and DVDs from being retrieved from the Internet.
 
 If you enable this policy setting, the Player is prevented from automatically obtaining media information from the Internet for CDs and DVDs played by users. In addition, the Retrieve media information for CDs and DVDs from the Internet check box on the Privacy Options tab in the first use dialog box and on the Privacy tab in the Player are not selected and are not available.
 
@@ -1153,7 +1153,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent media sharing from Windows Media Player.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent media sharing from Windows Media Player.
 
 If you enable this policy setting, any user on this computer is prevented from sharing digital media content from Windows Media Player with other computers and devices that are on the same network. Media sharing is disabled from Windows Media Player or from programs that depend on the Player's media sharing feature.
 
@@ -1222,7 +1222,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent media information for music files from being retrieved from the Internet.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent media information for music files from being retrieved from the Internet.
 
 If you enable this policy setting, the Player is prevented from automatically obtaining media information for music files such as Windows Media Audio (WMA) and MP3 files from the Internet. In addition, the Update my music files (WMA and MP3 files) by retrieving missing media information from the Internet check box in the first use dialog box and on the Privacy and Media Library tabs in the Player are not selected and are not available.
 
@@ -1291,7 +1291,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent a shortcut for the Player from being added to the Quick Launch bar.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent a shortcut for the Player from being added to the Quick Launch bar.
 
 If you enable this policy setting, the user cannot add the shortcut for the Player to the Quick Launch bar.
 
@@ -1359,7 +1359,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent radio station presets from being retrieved from the Internet.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent radio station presets from being retrieved from the Internet.
 
 If you enable this policy setting, the Player is prevented from automatically retrieving radio station presets from the Internet and displaying them in Media Library. In addition, presets that exist before the policy is configured are not be updated, and presets a user adds are not be displayed.
 
@@ -1428,7 +1428,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to prevent a shortcut icon for the Player from being added to the user's desktop.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to prevent a shortcut icon for the Player from being added to the user's desktop.
 
 If you enable this policy setting, users cannot add the Player shortcut icon to their desktops.
 
@@ -1497,7 +1497,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to set and lock Windows Media Player in skin mode, using a specified skin.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to set and lock Windows Media Player in skin mode, using a specified skin.
 
 If you enable this policy setting, the Player displays only in skin mode using the skin specified in the Skin box on the Setting tab.
 
@@ -1570,7 +1570,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to specify that Windows Media Player can attempt to use selected protocols when receiving streaming media from a server running Windows Media Services.
+Available in the latest Windows 10 Insider Preview Build. This policy setting allows you to specify that Windows Media Player can attempt to use selected protocols when receiving streaming media from a server running Windows Media Services.
 
 If you enable this policy setting, the protocols that are selected on the Network tab of the Player are used to receive a stream initiated through an MMS or RTSP URL from a Windows Media server. If the RSTP/UDP check box is selected, a user can specify UDP ports in the Use ports check box. If the user does not specify UDP ports, the Player uses default ports when using the UDP protocol. This policy setting also specifies that multicast streams can be received if the "Allow the Player to receive multicast streams" check box on the Network tab is selected.
 
diff --git a/windows/client-management/mdm/policy-csp-admx-wininit.md b/windows/client-management/mdm/policy-csp-admx-wininit.md
index dbbecca9d5..9e17ae7971 100644
--- a/windows/client-management/mdm/policy-csp-admx-wininit.md
+++ b/windows/client-management/mdm/policy-csp-admx-wininit.md
@@ -80,7 +80,7 @@ manager: dansimp
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the legacy remote shutdown interface (named pipe). The named pipe remote shutdown interface is needed in order to shutdown this system from a remote Windows XP or Windows Server 2003 system.
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the legacy remote shutdown interface (named pipe). The named pipe remote shutdown interface is needed in order to shutdown this system from a remote Windows XP or Windows Server 2003 system.
 
 If you enable this policy setting, the system does not create the named pipe remote shutdown interface.
 
@@ -149,7 +149,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting controls the use of fast startup.  
+Available in the latest Windows 10 Insider Preview Build. This policy setting controls the use of fast startup.  
 
 If you enable this policy setting, the system requires hibernate to be enabled.
 
@@ -218,7 +218,7 @@ ADMX Info:
 
 <!--/Scope-->
 <!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures the number of minutes the system waits for the hung logon sessions before proceeding with the system shutdown.
+Available in the latest Windows 10 Insider Preview Build. This policy setting configures the number of minutes the system waits for the hung logon sessions before proceeding with the system shutdown.
 
 If you enable this policy setting, the system waits for the hung logon sessions for the number of minutes specified.
 

From 4172c1f5d6b0ae822486c230b648ea4fd36ceb49 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 14:51:40 -0800
Subject: [PATCH 147/825] Create
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 32 +++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
new file mode 100644
index 0000000000..e0b732c7ad
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -0,0 +1,32 @@
+---
+title: Best practices with attack surface reduction rules
+description: Prevent issues from arising with your attack surface reduction rules by following these best practices
+keywords: Microsoft Defender ATP, attack surface reduction, best practices
+search.product: eADQiWindows 10XVcnh
+ms.pagetype: security
+author: denisebmsft
+ms.author: deniseb
+manager: dansimp
+ms.reviewer: jcedola
+audience: ITPro 
+ms.topic: article 
+ms.prod: w10 
+ms.localizationpriority: medium
+ms.custom: 
+- asr
+ms.collection: 
+- m365-security-compliance 
+- m365initiative-defender-endpoint 
+---
+
+# Best practices with attack surface reduction rules
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+
+**Applies to:**
+
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+*ASR guidance for deploying rules (links to Antonio’s blog, recommendations for deploying rules to small set of devices first, code signing, link to ASR Power BI template, and link to M365 security center reports)*
+

From 3525787146823116248e423e6fd9ba753f6ad8f1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 14:53:34 -0800
Subject: [PATCH 148/825] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 79487e7cc2..862dcdb459 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -82,6 +82,7 @@
 
 #### [Attack surface reduction controls]()
 ##### [Attack surface reduction rules](microsoft-defender-atp/attack-surface-reduction.md)
+##### [Best practices with attack surface reduction rules](microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md)
 ##### [Enable attack surface reduction rules](microsoft-defender-atp/enable-attack-surface-reduction.md)
 ##### [Customize attack surface reduction rules](microsoft-defender-atp/customize-attack-surface-reduction.md)
 ##### [View attack surface reduction events](microsoft-defender-atp/event-views.md)

From e90667baf92ce836c62737bae1f493757e4df046 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 16:00:23 -0800
Subject: [PATCH 149/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 27 ++++++++++++++++---
 1 file changed, 23 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index e0b732c7ad..cc67b6f89e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -1,5 +1,5 @@
 ---
-title: Best practices with attack surface reduction rules
+title: Tips and best practices for attack surface reduction rules
 description: Prevent issues from arising with your attack surface reduction rules by following these best practices
 keywords: Microsoft Defender ATP, attack surface reduction, best practices
 search.product: eADQiWindows 10XVcnh
@@ -19,14 +19,33 @@ ms.collection:
 - m365initiative-defender-endpoint 
 ---
 
-# Best practices with attack surface reduction rules
+# Tips and best practices for attack surface reduction rules
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-*ASR guidance for deploying rules (links to Antonio’s blog, recommendations for deploying rules to small set of devices first, code signing, link to ASR Power BI template, and link to M365 security center reports)*
+<!--ASR guidance for deploying rules (links to Antonio’s blog, recommendations for deploying rules to small set of devices first, code signing, link to ASR Power BI template, and link to M365 security center reports) and 8.	Policy conflict (details about what happens with conflicting policies, what happens when settings from different policies are merged)
+-->
+
+Whether you're about to enable or have already deployed attack surface reduction rules for your organization, see the information in this article. By using the tips and best practices in this article, you can employ attack surface reduction rules successfully and avoid potential issues.
+
+## Use a phased approach
+
+Before you roll out attack surface reduction rules in your organization, select a small set of managed devices to start. This approach enables you to see how attack surface reduction rules work in your environment and gives you flexibility in applying exclusions. You can do this with dynamic membership rules.
+
+<!--Siddarth, we need to find the info about how to set up dynamic membership rules and add a procedure here.-->
+
+## Use code signing for applications
+
+## Get the Power BI report template
+
+
+https://github.com/microsoft/MDATP-PowerBI-Templates
+
+## Avoid policy conflicts
+
+## See the demystifying blogs
 

From 9337b5f030d22f55a15554d42a658d2e890cfe65 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 16:14:27 -0800
Subject: [PATCH 150/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md       | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index cc67b6f89e..79644b2380 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -40,12 +40,15 @@ Before you roll out attack surface reduction rules in your organization, select
 
 ## Use code signing for applications
 
+As a best practice, use code signing for all the applications and scripts that your organization is using. This includes internally developed applications. Using code signing helps avoid false positives with attack surface reduction rules. It can also help avoid issues with attack surface reduction rules for developers and other users within your organization. 
+
 ## Get the Power BI report template
 
-
-https://github.com/microsoft/MDATP-PowerBI-Templates
+<!--The Power BI report templates are here: https://github.com/microsoft/MDATP-PowerBI-Templates-->
 
 ## Avoid policy conflicts
 
+
+
 ## See the demystifying blogs
 

From bf788b9b594dc9cf544f85ecd184fbdab696e2a9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 16:39:52 -0800
Subject: [PATCH 151/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md       | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 79644b2380..de07f909f2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -52,3 +52,10 @@ As a best practice, use code signing for all the applications and scripts that y
 
 ## See the demystifying blogs
 
+
+|Blog  |Description  |
+|---------|---------|
+|[Demystifying attack surface reduction rules - Part 1: Why and What](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-1/ba-p/1306420)     | Get a quick overview of the Why and the What through eight questions and answers.          |
+|[Demystifying attack surface reduction rules - Part 2: How](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-2/ba-p/1326565)     | See how to configure attack surface reduction rules, how exclusions work, and how to define exclusions.         |
+|[Demystifying attack surface reduction rules - Part 3: Reports and Troubleshooting](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-3/ba-p/1360968)     |         |
+|Row4     |         |

From a3a05f747e7eddaac23fde5a5c91141bffc75827 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 17:03:48 -0800
Subject: [PATCH 152/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md        | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index de07f909f2..7f28d0e038 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -52,10 +52,12 @@ As a best practice, use code signing for all the applications and scripts that y
 
 ## See the demystifying blogs
 
+The following table lists several blog posts that you might find helpful. All of these blogs are hosted on the [Microsoft Tech Community site](https://techcommunity.microsoft.com), under [Microsoft Defender for Endpoint](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/bg-p/MicrosoftDefenderATPBlog).
 
 |Blog  |Description  |
 |---------|---------|
 |[Demystifying attack surface reduction rules - Part 1: Why and What](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-1/ba-p/1306420)     | Get a quick overview of the Why and the What through eight questions and answers.          |
 |[Demystifying attack surface reduction rules - Part 2: How](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-2/ba-p/1326565)     | See how to configure attack surface reduction rules, how exclusions work, and how to define exclusions.         |
-|[Demystifying attack surface reduction rules - Part 3: Reports and Troubleshooting](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-3/ba-p/1360968)     |         |
-|Row4     |         |
+|[Demystifying attack surface reduction rules - Part 3: Reports and Troubleshooting](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-3/ba-p/1360968)     | Learn how to view reports and information about attack surface reduction rules and their status, and how to troubleshoot issues with rule impact and operations.         |
+|[Demystifying attack surface reduction rules - Part 4: Migrating](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-4/ba-p/1384425)     | If you're currently using a non-Microsoft host intrusion prevention system (HIPS) and are evaluating or migrating to attack surface reduction capabilities in Microsoft Defender for Endpoint, see this blog. You'll see how custom rules you were using with your HIPS solution can map to attack surface reduction rules in Microsoft Defender for Endpoint.         |
+

From dc962d76e76215e9ada5ee762adb98e44d446061 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 17:13:05 -0800
Subject: [PATCH 153/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md          | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 7f28d0e038..487e9cd874 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -42,6 +42,10 @@ Before you roll out attack surface reduction rules in your organization, select
 
 As a best practice, use code signing for all the applications and scripts that your organization is using. This includes internally developed applications. Using code signing helps avoid false positives with attack surface reduction rules. It can also help avoid issues with attack surface reduction rules for developers and other users within your organization. 
 
+## View reports in the Microsoft 365 security center
+
+In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**.
+
 ## Get the Power BI report template
 
 <!--The Power BI report templates are here: https://github.com/microsoft/MDATP-PowerBI-Templates-->

From f7ebe8a8e67172c8aab6e29c8128f9827c37a4be Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 17:30:59 -0800
Subject: [PATCH 154/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...best-practices-attack-surface-reduction-rules.md | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 487e9cd874..caf7149e05 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -44,7 +44,7 @@ As a best practice, use code signing for all the applications and scripts that y
 
 ## View reports in the Microsoft 365 security center
 
-In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**.
+In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**. (MORE TO COME!)
 
 ## Get the Power BI report template
 
@@ -52,6 +52,17 @@ In the Microsoft 365 security center ([https://security.microsoft.com](https://s
 
 ## Avoid policy conflicts
 
+If a conflicting policy is applied via Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM will take precedence. See [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
+
+Attack surface reduction rules for MEM managed devices now support new behavior for merger of settings from different policies, to create a superset of policy for each device. Only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either profile would be deployed. Attack surface reduction rule merge behavior is as follows:   
+- Attack surface reduction rules from the following profiles are evaluated for each device the rules apply to:  
+    - Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > [Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction).
+    - Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
+    - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Attack Surface Reduction Rules.
+- Settings that do not have conflicts are added to a superset of policy for the device.
+- When two or more policies have conflicting settings, the conflicting settings are not added to the combined policy, while settings that don’t conflict are added to the superset policy that applies to a device.
+- Only the configurations for conflicting settings are held back.
+
 
 
 ## See the demystifying blogs

From 0d4c2d4fe938e21f6e1baead860009915e010d70 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 29 Dec 2020 17:36:15 -0800
Subject: [PATCH 155/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md          | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index caf7149e05..96874697de 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -55,12 +55,16 @@ In the Microsoft 365 security center ([https://security.microsoft.com](https://s
 If a conflicting policy is applied via Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM will take precedence. See [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
 
 Attack surface reduction rules for MEM managed devices now support new behavior for merger of settings from different policies, to create a superset of policy for each device. Only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either profile would be deployed. Attack surface reduction rule merge behavior is as follows:   
+
 - Attack surface reduction rules from the following profiles are evaluated for each device the rules apply to:  
     - Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > [Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction).
     - Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
     - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Attack Surface Reduction Rules.
+
 - Settings that do not have conflicts are added to a superset of policy for the device.
+
 - When two or more policies have conflicting settings, the conflicting settings are not added to the combined policy, while settings that don’t conflict are added to the superset policy that applies to a device.
+
 - Only the configurations for conflicting settings are held back.
 
 

From 564a005dc434b3bc89e0efe60e9ce7570d45afe1 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 12:29:07 +0500
Subject: [PATCH 156/825] Update microsoft-cloud-app-security-config.md

---
 .../microsoft-cloud-app-security-config.md                      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
index a05d99d1d6..869c67e8b9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
@@ -44,7 +44,7 @@ Once activated, Microsoft Defender for Endpoint will immediately start forwardin
 
 ## View the data collected
 
-To view and access Microsoft Defender for Endpoint data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/cloud-app-security/wdatp-integration#investigate-machines-in-cloud-app-security).
+To view and access Microsoft Defender for Endpoint data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/en-us/cloud-app-security/mde-integration#investigate-devices-in-cloud-app-security).
 
 
 For more information about cloud discovery, see [Working with discovered apps](https://docs.microsoft.com/cloud-app-security/discovered-apps).

From bd894640228c1881af47bea09afb255d39ae2d63 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 14:57:24 +0500
Subject: [PATCH 157/825] Update custom-detection-rules.md

---
 .../microsoft-defender-atp/custom-detection-rules.md         | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 17e23e40fc..28be4b6c48 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -113,6 +113,7 @@ These actions are applied to devices in the `DeviceId` column of the query resul
 - **Collect investigation package**—collects device information in a ZIP file. [Learn more about the investigation package](respond-machine-alerts.md#collect-investigation-package-from-devices)
 - **Run antivirus scan**—performs a full Microsoft Defender Antivirus scan on the device
 - **Initiate investigation**—starts an [automated investigation](automated-investigations.md) on the device
+- **Restrict app execution**—sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run. [Learn more about restricting app execution](respond-machine-alerts.md#restrict-app-execution)
 
 ### Actions on files
 
@@ -121,6 +122,10 @@ These actions are applied to files in the `SHA1` or the `InitiatingProcessSHA1`
 - **Allow/Block**—automatically adds the file to your [custom indicator list](manage-indicators.md) so that it is always allowed to run or blocked from running. You can set the scope of this action so that it is taken only on selected device groups. This scope is independent of the scope of the rule.
 - **Quarantine file**—deletes the file from its current location and places a copy in quarantine
 
+### Actions on users
+
+- **Mark user as compromised**-sets the users risk level to "high" in Azure Active Directory, triggering corresponding [identity protection policies](https://docs.microsoft.com/azure/active-directory/identity-protection/overview-identity-protection#risk-levels).
+
 ## 5. Set the rule scope.
 
 Set the scope to specify which devices are covered by the rule:

From 081961b496ff51e25eff440724928b094748f69a Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 15:42:28 +0500
Subject: [PATCH 158/825] Update
 windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/custom-detection-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 28be4b6c48..44bf12dcfa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -124,7 +124,7 @@ These actions are applied to files in the `SHA1` or the `InitiatingProcessSHA1`
 
 ### Actions on users
 
-- **Mark user as compromised**-sets the users risk level to "high" in Azure Active Directory, triggering corresponding [identity protection policies](https://docs.microsoft.com/azure/active-directory/identity-protection/overview-identity-protection#risk-levels).
+- **Mark user as compromised**-sets the user's risk level to "high" in Azure Active Directory, triggering the corresponding [identity protection policies](https://docs.microsoft.com/azure/active-directory/identity-protection/overview-identity-protection#risk-levels).
 
 ## 5. Set the rule scope.
 

From 49e4bf55a51c12da969a07b21540aa81d6e14beb Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Wed, 30 Dec 2020 18:24:38 +0500
Subject: [PATCH 159/825] Addition of information in security properties

As suggested by the user, there were security properties missing in the document and has been added.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8819
---
 ...nable-virtualization-based-protection-of-code-integrity.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
index 8dc3221ed3..fdec65680d 100644
--- a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -196,7 +196,7 @@ Value | Description
 **5.** | If present, NX protections are available.
 **6.** | If present, SMM mitigations are available.
 **7.** | If present, Mode Based Execution Control is available.
-
+**8.** | If present, APIC virtualization is available.
 
 #### InstanceIdentifier
 
@@ -227,6 +227,7 @@ Value | Description
 **1.** | If present, Windows Defender Credential Guard is configured.
 **2.** | If present, HVCI is configured.
 **3.** | If present, System Guard Secure Launch is configured.
+**4.** | If present, SMM Firmware Measurement is configured.
 
 #### SecurityServicesRunning
 
@@ -238,6 +239,7 @@ Value | Description
 **1.** | If present, Windows Defender Credential Guard is running.
 **2.** | If present, HVCI is running.
 **3.** | If present, System Guard Secure Launch is running.
+**4.** | If present, SMM Firmware Measurement is running.
 
 #### Version
 

From 0726ac2d7abc646cf1b35d670b58c31bf8067502 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 21:01:02 +0500
Subject: [PATCH 160/825] Update
 windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/custom-detection-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 44bf12dcfa..3c1cbc5713 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -113,7 +113,7 @@ These actions are applied to devices in the `DeviceId` column of the query resul
 - **Collect investigation package**—collects device information in a ZIP file. [Learn more about the investigation package](respond-machine-alerts.md#collect-investigation-package-from-devices)
 - **Run antivirus scan**—performs a full Microsoft Defender Antivirus scan on the device
 - **Initiate investigation**—starts an [automated investigation](automated-investigations.md) on the device
-- **Restrict app execution**—sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run. [Learn more about restricting app execution](respond-machine-alerts.md#restrict-app-execution)
+- **Restrict app execution**—sets restrictions on the device to allow only files that are signed with a Microsoft-issued certificate to run. [Learn more about restricting app execution](respond-machine-alerts.md#restrict-app-execution)
 
 ### Actions on files
 

From 092e658109778d11de46a3450a469a27bba24811 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 21:01:08 +0500
Subject: [PATCH 161/825] Update
 windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/custom-detection-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 3c1cbc5713..89b5a47aa8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -124,7 +124,7 @@ These actions are applied to files in the `SHA1` or the `InitiatingProcessSHA1`
 
 ### Actions on users
 
-- **Mark user as compromised**-sets the user's risk level to "high" in Azure Active Directory, triggering the corresponding [identity protection policies](https://docs.microsoft.com/azure/active-directory/identity-protection/overview-identity-protection#risk-levels).
+- **Mark user as compromised**—sets the user's risk level to "high" in Azure Active Directory, triggering the corresponding [identity protection policies](https://docs.microsoft.com/azure/active-directory/identity-protection/overview-identity-protection#risk-levels).
 
 ## 5. Set the rule scope.
 

From c18f5cf4561192d2a33c43cd7d80b777fb05ed64 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 30 Dec 2020 21:19:53 +0500
Subject: [PATCH 162/825] Update indicator-ip-domain.md

---
 .../microsoft-defender-atp/indicator-ip-domain.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 800f2e0f16..8578ea6865 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -53,8 +53,8 @@ It's important to understand the following prerequisites prior to creating indic
 > NOTE:
 >- IP is supported for all three protocols
 >- Only single IP addresses are supported (no CIDR blocks or IP ranges)
->- Encrypted URLs (full path) can only be blocked on first party browsers
->- Encrypted URLS (FQDN only) can be blocked outside of first party browsers
+>- Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge)
+>- Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)
 >- Full URL path blocks can be applied on the domain level and all unencrypted URLs
  
 >[!NOTE]

From f9ff878940fae57246d447f84a483b302e7633dd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 30 Dec 2020 09:29:20 -0800
Subject: [PATCH 163/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 8578ea6865..b32d4960f4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -51,8 +51,8 @@ It's important to understand the following prerequisites prior to creating indic
 > Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs.
 > For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](network-protection.md) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement: <br>
 > NOTE:
->- IP is supported for all three protocols
->- Only single IP addresses are supported (no CIDR blocks or IP ranges)
+> - IP is supported for all three protocols
+> - Only single IP addresses are supported (no CIDR blocks or IP ranges)
 >- Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge)
 >- Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)
 >- Full URL path blocks can be applied on the domain level and all unencrypted URLs

From ed4e39ec8c49bdd5bc239c8ca110891deea03fd1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 30 Dec 2020 09:29:39 -0800
Subject: [PATCH 164/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md           | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index b32d4960f4..f859c87358 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -53,9 +53,9 @@ It's important to understand the following prerequisites prior to creating indic
 > NOTE:
 > - IP is supported for all three protocols
 > - Only single IP addresses are supported (no CIDR blocks or IP ranges)
->- Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge)
->- Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)
->- Full URL path blocks can be applied on the domain level and all unencrypted URLs
+> - Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge)
+> - Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)
+> - Full URL path blocks can be applied on the domain level and all unencrypted URLs
  
 >[!NOTE]
 >There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. 

From 450a5f715b91452bac1d738c28e54fe866a36778 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 30 Dec 2020 09:29:45 -0800
Subject: [PATCH 165/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index f859c87358..bda2d79c6e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -57,7 +57,7 @@ It's important to understand the following prerequisites prior to creating indic
 > - Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)
 > - Full URL path blocks can be applied on the domain level and all unencrypted URLs
  
->[!NOTE]
+> [!NOTE]
 >There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. 
 
 ### Create an indicator for IPs, URLs, or domains from the settings page

From 9631e4445d6d9b450ac5ad6287b17c5d61b673c5 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 30 Dec 2020 09:33:27 -0800
Subject: [PATCH 166/825] Update
 windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-cloud-app-security-config.md                      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
index 869c67e8b9..1ec715c5e8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
@@ -44,7 +44,7 @@ Once activated, Microsoft Defender for Endpoint will immediately start forwardin
 
 ## View the data collected
 
-To view and access Microsoft Defender for Endpoint data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/en-us/cloud-app-security/mde-integration#investigate-devices-in-cloud-app-security).
+To view and access Microsoft Defender for Endpoint data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/cloud-app-security/mde-integration#investigate-devices-in-cloud-app-security).
 
 
 For more information about cloud discovery, see [Working with discovered apps](https://docs.microsoft.com/cloud-app-security/discovered-apps).

From 7acaaa73b7b7f31de5a738aba63e0e868619dc51 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 01:24:20 +0200
Subject: [PATCH 167/825] US Gov page

Refreshing the US Gov GCC-H page to be a US Gov all-up (GCC & GCC-H) page.
---
 .../includes/microsoft-defender-api-usgov.md  |   2 +-
 .../microsoft-defender-atp/gov.md             | 145 +++++++++---------
 .../microsoft-defender-atp/management-apis.md |   5 +-
 3 files changed, 76 insertions(+), 76 deletions(-)

diff --git a/windows/security/includes/microsoft-defender-api-usgov.md b/windows/security/includes/microsoft-defender-api-usgov.md
index 4fe2a734da..4f58a3d8d5 100644
--- a/windows/security/includes/microsoft-defender-api-usgov.md
+++ b/windows/security/includes/microsoft-defender-api-usgov.md
@@ -17,4 +17,4 @@ ms.topic: article
 ---
 
 >[!NOTE]
->If you are a US Government customer, please use the URIs listed in [Microsoft Defender for Endpoint for US Government GCC High customers](../threat-protection/microsoft-defender-atp/gov.md#api).
+>If you are a US Government customer, please use the URIs listed in [Microsoft Defender for Endpoint for US Government customers](../threat-protection/microsoft-defender-atp/gov.md#api).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 1c89d002cb..eaa72a3c35 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -1,7 +1,7 @@
 ---
-title: Microsoft Defender ATP for US Government GCC High customers 
-description: Learn about the requirements and the available Microsoft Defender ATP capabilities for US Government CCC High customers
-keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp
+title: Microsoft Defender ATP for US Government customers 
+description: Learn about the requirements and the available Microsoft Defender for Endpoint capabilities for US Government customers
+keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp, endpoint, dod
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10
@@ -17,87 +17,61 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Microsoft Defender for Endpoint for US Government GCC High customers
+# Microsoft Defender for Endpoint for US Government customers
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Microsoft Defender for Endpoint for US Government Community Cloud High (GCC High) customers, built in the US Azure Government environment, uses the same underlying technologies as Defender for Endpoint in Azure Commercial.
+Microsoft Defender for Endpoint for US Government customers, built in the US Azure Government environment, uses the same underlying technologies as Defender for Endpoint in Azure Commercial.
 
-This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for this offering.
+This offering is currently available to US Microsoft 365 GCC and GCC-High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some differences in the availability of capabilities for this offering.
+
+> [!NOTE]
+> If you are a "GCC on Commercial" customer, please refer to the public documentation pages.
 
 
 ## Endpoint versions
+
+### Standalone OS versions
 The following OS versions are supported:
 
-- Windows 10, version 1903 
-- Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/help/4490481))
-- Windows 10, version 1803 (OS Build 17134.799 with [KB4499183](https://support.microsoft.com/help/4499183))
-- Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) 
-- Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/help/4490481))
+OS version | GCC | GCC-H
+:---|:---|:---
+Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 2004 - 20H1 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1909 - 19H2 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1903 - 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1809 - RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1803 - RS4 | ![No](../images/svg/check-no.svg)<br>Coming soon | ![Yes](../images/svg/check-yes.svg)<br>With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1709 - RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg)<br>With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
+Windows 10, version 1703 - RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
+Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows 8.1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows 8 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)<br>Coming soon
+Windows 7 SP1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows 7 SP1 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Mac OS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Linux | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 
->[!NOTE]
->A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
+> [!NOTE]
+> A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
 
-The following OS versions are supported via Azure Security Center:
-- Windows Server 2008 R2 SP1
-- Windows Server 2012 R2
-- Windows Server 2016
+### OS versions when using Azure Security Center
+The following OS versions are supported when using [Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
 
-The following OS versions are not supported:
-- Windows Server 2008 R2 SP1 (standalone, not via ASC)
-- Windows Server 2012 R2 (standalone, not via ASC)
-- Windows Server 2016 (standalone, not via ASC)
-- Windows Server, version 1803
-- Windows 7 SP1 Enterprise
-- Windows 7 SP1 Pro
-- Windows 8 Pro
-- Windows 8.1 Enterprise
-- macOS
-- Linux
+OS version | GCC | GCC-H
+:---|:---|:---
+Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 
-The initial release of Defender for Endpoint will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government (GCC High) customers, there are some capabilities not yet available that we'd like to highlight. These are the known gaps as of August 2020:
-
-## Threat Analytics
-Not currently available.
-
-## Threat & Vulnerability Management
-Not currently available.
-
-
-## Automated investigation and remediation
-The following capabilities are not currently available:
-- Response to Office 365 alerts 
-- Live response 
-
-
-
-## Management and APIs
-The following capabilities are not currently available:
-
-- Threat protection report
-- Device health and compliance report
-- Integration with third-party products
-
-
-## Email notifications
-Not currently available.
-
-
-## Integrations
-Integrations with the following Microsoft products are not currently available:
-- Azure Advanced Threat Protection
-- Azure Information Protection
-- Defender for Office 365
-- Microsoft Cloud App Security
-- Skype for Business
-- Microsoft Intune (sharing of device information and enhanced policy enforcement)
-
-## Microsoft Threat Experts
-Not currently available.
 
 ## Required connectivity settings
 You'll need to ensure that traffic from the following are allowed:
@@ -105,12 +79,39 @@ You'll need to ensure that traffic from the following are allowed:
 Service location | DNS record
 :---|:---
 Common URLs for all locations (Global location) | ```crl.microsoft.com```<br>```ctldl.windowsupdate.com```<br>```notify.windows.com```<br>```settings-win.data.microsoft.com``` <br><br> NOTE: ```settings-win.data.microsoft.com``` is only needed on Windows 10 devices running version 1803 or earlier.
-Defender for Endpoint GCC High specific | ```us4-v20.events.data.microsoft.com``` <br>```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```<br>```*.blob.core.usgovcloudapi.net``` 
+Common URLs for all US Gov customers | ```us4-v20.events.data.microsoft.com``` <br>```*.blob.core.usgovcloudapi.net``` 
+Defender for Endpoint GCC specific | ```winatp-gw-usmt.microsoft.com```<br>```winatp-gw-usmv.microsoft.com```
+Defender for Endpoint GCC-High specific | ```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```
 
 
 ## API
-- Login endpoint: ```https://login.microsoftonline.us```
+Instead of the public URIs listed in our [API documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro), you'll need to use the following URIs:
 
-- Microsoft Defender for Endpoint API endpoint: ```https://api-gov.securitycenter.microsoft.us```
+Environment | Login endpoint | Defender for Endpoint API endpoint
+:---|:---|:---
+GCC | ```https://login.microsoftonline.com``` | ```https://api-gcc.securitycenter.microsoft.us```
+GCC-H | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
 
 
+## Feature parity with commercial
+Defender for Endpoint do not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
+These are the known gaps as of January 2021:
+
+Feature | GCC | GCC-H
+:---|:---|:---
+Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation:<br>Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation:<br>Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs:<br>Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs:<br>Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs:<br>Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Email notifications | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations:<br>Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index 4be39cf3be..3fae073414 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -23,10 +23,9 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mgt-apis-abovefoldlink)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 Defender for Endpoint supports a wide variety of options to ensure that customers can easily adopt the platform. 
 

From e1409a078ba6fbe581b1da7921ae0bf49959e64c Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 01:31:05 +0200
Subject: [PATCH 168/825] Update gov.md

---
 .../threat-protection/microsoft-defender-atp/gov.md    | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index eaa72a3c35..d76b6b5d33 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -26,7 +26,7 @@ ms.topic: conceptual
 
 Microsoft Defender for Endpoint for US Government customers, built in the US Azure Government environment, uses the same underlying technologies as Defender for Endpoint in Azure Commercial.
 
-This offering is currently available to US Microsoft 365 GCC and GCC-High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some differences in the availability of capabilities for this offering.
+This offering is currently available to Microsoft 365 GCC and GCC-High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some differences in the availability of capabilities for this offering.
 
 > [!NOTE]
 > If you are a "GCC on Commercial" customer, please refer to the public documentation pages.
@@ -37,7 +37,7 @@ This offering is currently available to US Microsoft 365 GCC and GCC-High custom
 ### Standalone OS versions
 The following OS versions are supported:
 
-OS version | GCC | GCC-H
+OS version | GCC | GCC-High
 :---|:---|:---
 Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 2004 - 20H1 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
@@ -66,7 +66,7 @@ Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 ### OS versions when using Azure Security Center
 The following OS versions are supported when using [Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
 
-OS version | GCC | GCC-H
+OS version | GCC | GCC-High
 :---|:---|:---
 Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
@@ -90,14 +90,14 @@ Instead of the public URIs listed in our [API documentation](https://docs.micros
 Environment | Login endpoint | Defender for Endpoint API endpoint
 :---|:---|:---
 GCC | ```https://login.microsoftonline.com``` | ```https://api-gcc.securitycenter.microsoft.us```
-GCC-H | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
+GCC-High | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
 
 
 ## Feature parity with commercial
 Defender for Endpoint do not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
 These are the known gaps as of January 2021:
 
-Feature | GCC | GCC-H
+Feature | GCC | GCC-High
 :---|:---|:---
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)

From 0c9e99a9b137a0f266e57c281e3f0c2ac98e58f3 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 01:32:59 +0200
Subject: [PATCH 169/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index d76b6b5d33..c231415275 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -52,7 +52,7 @@ Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/
 Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Windows 8.1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows 8 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)<br>Coming soon
+Windows 8 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Windows 7 SP1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Windows 7 SP1 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Mac OS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From fe771ab73598467829e068f8973dd7509634e74b Mon Sep 17 00:00:00 2001
From: Thomas Raya <v-thraya@microsoft.com>
Date: Wed, 30 Dec 2020 15:42:54 -0800
Subject: [PATCH 170/825] Update docfx.json

Add "**/*.svg" to build.resource.files
---
 windows/security/docfx.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/docfx.json b/windows/security/docfx.json
index 1998bdf279..a27324310a 100644
--- a/windows/security/docfx.json
+++ b/windows/security/docfx.json
@@ -21,7 +21,8 @@
         "files": [
           "**/*.png",
           "**/*.jpg",
-          "**/*.gif"
+          "**/*.gif",
+          "**/*.svg"
         ],
         "exclude": [
           "**/obj/**",

From 0b158377434d87cd259962582a21804cad9ab7d2 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 30 Dec 2020 16:04:34 -0800
Subject: [PATCH 171/825] Corrected presentation of cross references

---
 .../microsoft-defender-atp/management-apis.md               | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index 3fae073414..da15adaadf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -59,7 +59,7 @@ Defender for Endpoint offers a layered API model exposing data and capabilities
 Watch this video for a quick overview of Defender for Endpoint's APIs. 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4d73M]
 
-The **Investigation API** exposes the richness of Defender for Endpoint - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information, see, [Supported APIs](exposed-apis-list.md).
+The **Investigation API** exposes the richness of Defender for Endpoint - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information, see [Supported APIs](exposed-apis-list.md).
 
 The **Response API** exposes the ability to take actions in the service and on devices, enabling customers to ingest indicators, manage settings, alert status, as well as take response actions on devices programmatically such as isolate devices from the network, quarantine files, and others. 
 
@@ -68,11 +68,11 @@ Defender for Endpoint raw data streaming API provides the ability for customers
 
 The Defender for Endpoint event information is pushed directly to Azure storage for long-term data retention, or to Azure Event Hubs for consumption by visualization services or additional data processing engines. 
 
-For more information, see, [Raw data streaming API](raw-data-export.md).
+For more information, see [Raw data streaming API](raw-data-export.md).
 
 
 ## SIEM API
-When you enable security information and event management (SIEM) integration, it allows you to pull detections from Microsoft Defender Security Center using your SIEM solution or by connecting directly to the detections REST API. This activates the SIEM connector access details section with pre-populated values and an application is created under your Azure Active Directory (Azure AD) tenant. For more information, see, [SIEM integration](enable-siem-integration.md)
+When you enable security information and event management (SIEM) integration, it allows you to pull detections from Microsoft Defender Security Center using your SIEM solution or by connecting directly to the detections REST API. This activates the SIEM connector access details section with pre-populated values and an application is created under your Azure Active Directory (Azure AD) tenant. For more information, see [SIEM integration](enable-siem-integration.md).
 
 ## Related topics
 - [Access the Microsoft Defender for Endpoint APIs ](apis-intro.md)

From 297d24ec242fb63d53166832735077bd90f0a4ee Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:21:33 +0200
Subject: [PATCH 172/825] Update gov.md

1. Changing "GCC-High" to "GCC High" (aligning with Office documentation).
2. Some styling changes after reviewing the page design.
---
 .../microsoft-defender-atp/gov.md             | 58 ++++++++++---------
 1 file changed, 31 insertions(+), 27 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index c231415275..a9913d65b3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -26,10 +26,11 @@ ms.topic: conceptual
 
 Microsoft Defender for Endpoint for US Government customers, built in the US Azure Government environment, uses the same underlying technologies as Defender for Endpoint in Azure Commercial.
 
-This offering is currently available to Microsoft 365 GCC and GCC-High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some differences in the availability of capabilities for this offering.
+This offering is currently available to Microsoft 365 GCC and GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some differences in the availability of capabilities for this offering.
 
 > [!NOTE]
 > If you are a "GCC on Commercial" customer, please refer to the public documentation pages.
+<br>
 
 
 ## Endpoint versions
@@ -37,16 +38,16 @@ This offering is currently available to Microsoft 365 GCC and GCC-High customers
 ### Standalone OS versions
 The following OS versions are supported:
 
-OS version | GCC | GCC-High
+OS version | GCC | GCC High
 :---|:---|:---
 Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 2004 - 20H1 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1909 - 19H2 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1903 - 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1809 - RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 - RS4 | ![No](../images/svg/check-no.svg)<br>Coming soon | ![Yes](../images/svg/check-yes.svg)<br>With [KB4499183](https://support.microsoft.com/help/4499183)
-Windows 10, version 1709 - RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg)<br>With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
-Windows 10, version 1703 - RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
+Windows 10, version 2004 / 20H1 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1909 / 19H2 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1903 / 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1809 / RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg)<br>Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>**Note:** Will be deprecated, please upgrade to a later version
+Windows 10, version 1703 / RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
@@ -66,22 +67,23 @@ Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 ### OS versions when using Azure Security Center
 The following OS versions are supported when using [Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
 
-OS version | GCC | GCC-High
+OS version | GCC | GCC High
 :---|:---|:---
 Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-
+<br>
 
 ## Required connectivity settings
 You'll need to ensure that traffic from the following are allowed:
 
 Service location | DNS record
 :---|:---
-Common URLs for all locations (Global location) | ```crl.microsoft.com```<br>```ctldl.windowsupdate.com```<br>```notify.windows.com```<br>```settings-win.data.microsoft.com``` <br><br> NOTE: ```settings-win.data.microsoft.com``` is only needed on Windows 10 devices running version 1803 or earlier.
+Common URLs for all locations (Global location) | ```crl.microsoft.com```<br>```ctldl.windowsupdate.com```<br>```notify.windows.com```<br>```settings-win.data.microsoft.com``` <br><br> Note: ```settings-win.data.microsoft.com``` is only needed on Windows 10 devices running version 1803 or earlier.
 Common URLs for all US Gov customers | ```us4-v20.events.data.microsoft.com``` <br>```*.blob.core.usgovcloudapi.net``` 
 Defender for Endpoint GCC specific | ```winatp-gw-usmt.microsoft.com```<br>```winatp-gw-usmv.microsoft.com```
-Defender for Endpoint GCC-High specific | ```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```
+Defender for Endpoint GCC High specific | ```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```
+<br>
 
 
 ## API
@@ -90,28 +92,30 @@ Instead of the public URIs listed in our [API documentation](https://docs.micros
 Environment | Login endpoint | Defender for Endpoint API endpoint
 :---|:---|:---
 GCC | ```https://login.microsoftonline.com``` | ```https://api-gcc.securitycenter.microsoft.us```
-GCC-High | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
+GCC High | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
+<br>
 
 
 ## Feature parity with commercial
 Defender for Endpoint do not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
+
 These are the known gaps as of January 2021:
 
-Feature | GCC | GCC-High
+Feature name | GCC | GCC High
 :---|:---|:---
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Automated investigation and remediation:<br>Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Automated investigation and remediation:<br>Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs:<br>Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs:<br>Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs:<br>Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Email notifications | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Integrations:<br>Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 2f4113f3db7996e6deb98e47c61568721cd52178 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:26:34 +0200
Subject: [PATCH 173/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md   | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index a9913d65b3..f05499abc5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -72,6 +72,7 @@ OS version | GCC | GCC High
 Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+
 <br>
 
 ## Required connectivity settings
@@ -83,6 +84,7 @@ Common URLs for all locations (Global location) | ```crl.microsoft.com```<br>```
 Common URLs for all US Gov customers | ```us4-v20.events.data.microsoft.com``` <br>```*.blob.core.usgovcloudapi.net``` 
 Defender for Endpoint GCC specific | ```winatp-gw-usmt.microsoft.com```<br>```winatp-gw-usmv.microsoft.com```
 Defender for Endpoint GCC High specific | ```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```
+
 <br>
 
 
@@ -93,6 +95,7 @@ Environment | Login endpoint | Defender for Endpoint API endpoint
 :---|:---|:---
 GCC | ```https://login.microsoftonline.com``` | ```https://api-gcc.securitycenter.microsoft.us```
 GCC High | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
+
 <br>
 
 

From 1ca00337aa342f22618c3568a4dea62360b56801 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:44:49 +0200
Subject: [PATCH 174/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index f05499abc5..a7e469fb1b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -46,7 +46,7 @@ Windows 10, version 1909 / 19H2 (with [KB4586819](https://support.microsoft.com/
 Windows 10, version 1903 / 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 / RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg)<br>Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
-Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>**Note:** Will be deprecated, please upgrade to a later version
+Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
 Windows 10, version 1703 / RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)

From 81ecb7c4a5be13b6c641002d88e98dfe57b6940d Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:50:50 +0200
Subject: [PATCH 175/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index a7e469fb1b..6c05fa0d30 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -1,5 +1,5 @@
 ---
-title: Microsoft Defender ATP for US Government customers 
+title: Microsoft Defender for Endpoint for US Government customers 
 description: Learn about the requirements and the available Microsoft Defender for Endpoint capabilities for US Government customers
 keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp, endpoint, dod
 search.product: eADQiWindows 10XVcnh

From 792bdbe6e49ee8f6736b0edae6d0209ec5067b17 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:52:46 +0200
Subject: [PATCH 176/825] Update TOC.md

Renaming the MDE US Gov page.
---
 windows/security/threat-protection/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 79487e7cc2..47925e97e7 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -8,7 +8,7 @@
 ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
 ### [Overview of Microsoft Defender Security Center](microsoft-defender-atp/use.md)
 ### [Portal overview](microsoft-defender-atp/portal-overview.md)
-### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/gov.md)
+### [Microsoft Defender for Endpoint for US Government customers](microsoft-defender-atp/gov.md)
 ### [Microsoft Defender ATP for non-Windows platforms](microsoft-defender-atp/non-windows.md)
 
 ## [Evaluate capabilities](microsoft-defender-atp/evaluation-lab.md)

From f5a28ebc99bc3478c571e23d3f659c61062fb169 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 02:55:18 +0200
Subject: [PATCH 177/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 6c05fa0d30..3315f0bd21 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -45,7 +45,7 @@ Windows 10, version 2004 / 20H1 (with [KB4586853](https://support.microsoft.com/
 Windows 10, version 1909 / 19H2 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1903 / 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 / RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg)<br>Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
 Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
 Windows 10, version 1703 / RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)

From 15c1cf1431350e75ccf9b3a294a3263abcdf8dc0 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 03:16:06 +0200
Subject: [PATCH 178/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 3315f0bd21..1d8a960e5e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -113,7 +113,7 @@ Automated investigation and remediation: Live response | ![Yes](../images/svg/ch
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Email notifications | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Email notifications | ![Yes](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 0899d50c7138683c81942fb9e0da1866d1206082 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 03:27:14 +0200
Subject: [PATCH 179/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 1d8a960e5e..2f6f4b6d4e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -112,10 +112,13 @@ Automated investigation and remediation: Response to Office 365 alerts | ![No](.
 Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs: Streaming API | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Email notifications | ![Yes](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 8b19472b8a296de6de33f097f1c75403e60981e3 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 30 Dec 2020 19:24:25 -0800
Subject: [PATCH 180/825] Replaced triple backticks with single backticks

Triple backticks are for creating code blocks with a Copy button and possibly a label for the type of content. Single backticks are for simply formatting text in a fixed-width font for code.
---
 .../threat-protection/microsoft-defender-atp/gov.md  | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 2f6f4b6d4e..3e44dc54bc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -80,10 +80,10 @@ You'll need to ensure that traffic from the following are allowed:
 
 Service location | DNS record
 :---|:---
-Common URLs for all locations (Global location) | ```crl.microsoft.com```<br>```ctldl.windowsupdate.com```<br>```notify.windows.com```<br>```settings-win.data.microsoft.com``` <br><br> Note: ```settings-win.data.microsoft.com``` is only needed on Windows 10 devices running version 1803 or earlier.
-Common URLs for all US Gov customers | ```us4-v20.events.data.microsoft.com``` <br>```*.blob.core.usgovcloudapi.net``` 
-Defender for Endpoint GCC specific | ```winatp-gw-usmt.microsoft.com```<br>```winatp-gw-usmv.microsoft.com```
-Defender for Endpoint GCC High specific | ```winatp-gw-usgt.microsoft.com```<br>```winatp-gw-usgv.microsoft.com```
+Common URLs for all locations (Global location) | `crl.microsoft.com`<br>`ctldl.windowsupdate.com`<br>`notify.windows.com`<br>`settings-win.data.microsoft.com` <br><br> Note: `settings-win.data.microsoft.com` is only needed on Windows 10 devices running version 1803 or earlier.
+Common URLs for all US Gov customers | `us4-v20.events.data.microsoft.com` <br>`*.blob.core.usgovcloudapi.net` 
+Defender for Endpoint GCC specific | `winatp-gw-usmt.microsoft.com`<br>`winatp-gw-usmv.microsoft.com`
+Defender for Endpoint GCC High specific | `winatp-gw-usgt.microsoft.com`<br>`winatp-gw-usgv.microsoft.com`
 
 <br>
 
@@ -93,8 +93,8 @@ Instead of the public URIs listed in our [API documentation](https://docs.micros
 
 Environment | Login endpoint | Defender for Endpoint API endpoint
 :---|:---|:---
-GCC | ```https://login.microsoftonline.com``` | ```https://api-gcc.securitycenter.microsoft.us```
-GCC High | ```https://login.microsoftonline.us``` | ```https://api-gov.securitycenter.microsoft.us```
+GCC | `https://login.microsoftonline.com` | `https://api-gcc.securitycenter.microsoft.us`
+GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.microsoft.us`
 
 <br>
 

From ddd6f911b4be00144a9377291a00bafd0e0a5d72 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 30 Dec 2020 21:31:26 -0800
Subject: [PATCH 181/825] Various fixes for layout and presentation

---
 .../deployment/deploy-enterprise-licenses.md  | 62 ++++++++++++-------
 1 file changed, 38 insertions(+), 24 deletions(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index e43658fdb5..5c8586af7c 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -26,14 +26,15 @@ This topic describes how to deploy Windows 10 Enterprise E3 or E5 licenses with
 >* Automatic, non-KMS activation requires Windows 10, version 1803 or later, on a device with a firmware-embedded activation key.
 
 >[!IMPORTANT]
->An issue has been identified where devices can lose activation status or be blocked from upgrading to Windows Enterprise if the device is not able to connect to Windows Update. A workaround is to ensure that devices do not have the REG_DWORD present HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\DoNotConnectToWindowsUpdateInternetLocations and set to 1.  If this REG_DWORD is present, it must be set to 0.<br> 
+>An issue has been identified where devices can lose activation status or be blocked from upgrading to Windows Enterprise if the device is not able to connect to Windows Update. A workaround is to ensure that devices do not have the REG_DWORD present HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\DoNotConnectToWindowsUpdateInternetLocations and set to 1.  If this REG_DWORD is present, it must be set to 0.
+> 
 >Also ensure that the Group Policy setting: Computer Configuration > Administrative Templates > Windows Components > Windows Update > "Do not connect to any Windows Update Internet locations" is set to "Disabled".
 
 ## Firmware-embedded activation key
 
 To determine if the computer has a firmware-embedded activation key, type the following command at an elevated Windows PowerShell prompt
 
-```
+```powershell
 (Get-WmiObject -query ‘select * from SoftwareLicensingService’).OA3xOriginalProductKey
 ```
 
@@ -44,19 +45,28 @@ If the device has a firmware-embedded activation key, it will be displayed in th
 If you are an EA customer with an existing Office 365 tenant, use the following steps to enable Windows 10 Subscription licenses on your existing tenant:
 
 1. Work with your reseller to place an order for one $0 SKU per user. There are two SKUs available, depending on their current Windows Enterprise SA license:
-2. **AAA-51069** - Win10UsrOLSActv Alng MonthlySub Addon E3
-3. **AAA-51068** - Win10UsrOLSActv Alng MonthlySub Addon E5
-4. After placing an order, the OLS admin on the agreement will receive a service activation email, indicating their subscription licenses have been provisioned on the tenant.
-5. The admin can now assign subscription licenses to users.
 
->Use the following process if you need to update contact information and retrigger activation in order to resend the activation email:
+   - **AAA-51069** - Win10UsrOLSActv Alng MonthlySub Addon E3
+   - **AAA-51068** - Win10UsrOLSActv Alng MonthlySub Addon E5
+   
+1. After placing an order, the OLS admin on the agreement will receive a service activation email, indicating their subscription licenses have been provisioned on the tenant.
+
+1. The admin can now assign subscription licenses to users.
+
+Use the following process if you need to update contact information and retrigger activation in order to resend the activation email:
 
 1. Sign in to the [Microsoft Volume Licensing Service Center](https://www.microsoft.com/Licensing/servicecenter/default.aspx).
-2. Click on **Subscriptions**.
-3. Click on **Online Services Agreement List**.
+
+2. Click **Subscriptions**.
+
+3. Click **Online Services Agreement List**.
+
 4. Enter your agreement number, and then click **Search**.
+
 5. Click the **Service Name**.
+
 6. In the **Subscription Contact** section, click the name listed under **Last Name**.
+
 7. Update the contact information, then click **Update Contact Details**. This will trigger a new email.
 
 Also in this article:
@@ -91,17 +101,21 @@ Devices must be running Windows 10 Pro, version 1703, and be Azure Active Direct
 
 Upon acquisition of Windows 10 subscription has been completed (Windows 10 Business, E3 or E5), customers will receive an email that will provide guidance on how to use Windows as an online service:
 
-![profile](images/al01.png)
+> [!div class="mx-imgBorder"]
+> ![profile](images/al01.png)
 
 The following methods are available to assign licenses:
 
 1. When you have the required Azure AD subscription, [group-based licensing](https://docs.microsoft.com/azure/active-directory/active-directory-licensing-whatis-azure-portal) is the preferred method to assign Enterprise E3 or E5 licenses to users.
+
 2. You can sign in to portal.office.com and manually assign licenses:
 
     ![portal](images/al02.png)
 
 3. You can assign licenses by uploading a spreadsheet.
+
 4. A per-user [PowerShell scripted method](https://social.technet.microsoft.com/wiki/contents/articles/15905.how-to-use-powershell-to-automatically-assign-licenses-to-your-office-365-users.aspx) of assigning licenses is available.
+
 5. Organizations can use synchronized [AD groups](https://ronnydejong.com/2015/03/04/assign-ems-licenses-based-on-local-active-directory-group-membership/) to automatically assign licenses.
 
 ## Explore the upgrade experience
@@ -114,50 +128,50 @@ Users can join a Windows 10 Pro device to Azure AD the first time they start the
 
 **To join a device to Azure AD the first time the device is started**
 
-1.  During the initial setup, on the **Who owns this PC?** page, select **My organization**, and then click **Next**, as illustrated in **Figure 2**.<br>
+1.  During the initial setup, on the **Who owns this PC?** page, select **My organization**, and then click **Next**, as illustrated in **Figure 2**.<br/><br/>
 
     <img src="images/enterprise-e3-who-owns.png" alt="Who owns this PC? page in Windows 10 setup" width="624" height="351" />
 
     **Figure 2. The “Who owns this PC?” page in initial Windows 10 setup**
 
-2.  On the **Choose how you’ll connect** page, select **Join Azure AD**, and then click **Next**, as illustrated in **Figure 3**.<br>
+2.  On the **Choose how you’ll connect** page, select **Join Azure AD**, and then click **Next**, as illustrated in **Figure 3**.<br/><br/>
 
     <img src="images/enterprise-e3-choose-how.png" alt="Choose how you'll connect - page in Windows 10 setup" width="624" height="351" />
 
     **Figure 3. The “Choose how you’ll connect” page in initial Windows 10 setup**
 
-3.  On the **Let’s get you signed in** page, enter the Azure AD credentials, and then click **Sign in**, as illustrated in **Figure 4**.<br>
+3.  On the **Let’s get you signed in** page, enter the Azure AD credentials, and then click **Sign in**, as illustrated in **Figure 4**.<br/><br/>
 
     <img src="images/enterprise-e3-lets-get.png" alt="Let's get you signed in - page in Windows 10 setup" width="624" height="351" />
 
     **Figure 4. The “Let’s get you signed in” page in initial Windows 10 setup**
 
-Now the device is Azure AD joined to the company’s subscription.
+Now the device is Azure AD–joined to the company’s subscription.
 
 **To join a device to Azure AD when the device already has Windows 10 Pro, version 1703 installed and set up**
 
 >[!IMPORTANT]
 >Make sure that the user you're signing in with is **not** a BUILTIN/Administrator. That user cannot use the `+ Connect` button to join a work or school account.
 
-1.  Go to **Settings &gt; Accounts &gt; Access work or school**, as illustrated in **Figure 5**.<br>
+1.  Go to **Settings &gt; Accounts &gt; Access work or school**, as illustrated in **Figure 5**.<br/><br/>
 
     <img src="images/enterprise-e3-connect-to-work-or-school.png" alt="Connect to work or school configuration" width="624" height="482" />
 
     **Figure 5. Connect to work or school configuration in Settings**
 
-2.  In **Set up a work or school account**, click **Join this device to Azure Active Directory**, as illustrated in **Figure 6**.<br>
+2.  In **Set up a work or school account**, click **Join this device to Azure Active Directory**, as illustrated in **Figure 6**.<br/><br/>
 
     <img src="images/enterprise-e3-set-up-work-or-school.png" alt="Set up a work or school account" width="624" height="603" />
 
     **Figure 6. Set up a work or school account**
 
-3.  On the **Let’s get you signed in** page, enter the Azure AD credentials, and then click **Sign in**, as illustrated in **Figure 7**.<br>
+3.  On the **Let’s get you signed in** page, enter the Azure AD credentials, and then click **Sign in**, as illustrated in **Figure 7**.<br/><br/>
 
     <img src="images/enterprise-e3-lets-get-2.png" alt="Let's get you signed in - dialog box" width="624" height="603" />
 
     **Figure 7. The “Let’s get you signed in” dialog box**
 
-Now the device is Azure AD joined to the company’s subscription.
+Now the device is Azure AD–joined to the company's subscription.
 
 ### Step 2: Pro edition activation
 
@@ -165,7 +179,7 @@ Now the device is Azure AD joined to the company’s subscription.
 >If your device is running Windows 10, version 1803 or later, this step is not needed. From Windows 10, version 1803, the device will automatically activate Windows 10 Enterprise using the firmware-embedded activation key.
 >If the device is running Windows 10, version 1703 or 1709, then Windows 10 Pro must be successfully activated in **Settings &gt; Update & Security &gt; Activation**, as illustrated in **Figure 7a**.
 
-<span id="win-10-pro-activated"/>
+<br/><br/><span id="win-10-pro-activated"/>
 <img src="images/sa-pro-activation.png" alt="Windows 10 Pro activated" width="710" height="440" />
 <br><strong>Figure 7a - Windows 10 Pro activation in Settings</strong> 
 
@@ -176,7 +190,7 @@ Windows 10 Pro activation is required before Enterprise E3 or E5 can be enabled
 
 Once the device is joined to your Azure AD subscription, the user will sign in by using his or her Azure AD account, as illustrated in **Figure 8**. The Windows 10 Enterprise E3 or E5 license associated with the user will enable Windows 10 Enterprise edition capabilities on the device.
 
-<img src="images/enterprise-e3-sign-in.png" alt="Sign in, Windows 10" width="624" height="351" />
+<br/><br/><img src="images/enterprise-e3-sign-in.png" alt="Sign in, Windows 10" width="624" height="351" />
 
 **Figure 8. Sign in by using Azure AD account**
 
@@ -184,7 +198,7 @@ Once the device is joined to your Azure AD subscription, the user will sign in b
 
 You can verify the Windows 10 Enterprise E3 or E5 subscription in **Settings &gt; Update & Security &gt; Activation**, as illustrated in **Figure 9**.
 
-<span id="win-10-activated-subscription-active"/>
+<br/><br/><span id="win-10-activated-subscription-active"/>
 <img src="images/enterprise-e3-win-10-activated-enterprise-subscription-active.png" alt="Windows 10 activated and subscription active" width="624" height="407" />
 
 **Figure 9 - Windows 10 Enterprise subscription in Settings** 
@@ -218,19 +232,19 @@ Use the following figures to help you troubleshoot when users experience these c
 
 - [Figure 10](#win-10-not-activated) (below) illustrates a device on which Windows 10 Pro is not activated, but the Windows 10 Enterprise subscription is active.
 
-    <span id="win-10-not-activated"/>
+    <br/><br/><span id="win-10-not-activated"/>
     <img src="images/enterprise-e3-win-10-not-activated-enterprise-subscription-active.png" alt="Windows 10 not activated and subscription active" width="624" height="407" />
     <br><strong>Figure 10 - Windows 10 Pro, version 1703 edition not activated in Settings</strong>
 
 - [Figure 11](#subscription-not-active) (below) illustrates a device on which Windows 10 Pro is activated, but the Windows 10 Enterprise subscription is lapsed or removed.
 
-    <span id="subscription-not-active"/>
+    <br/><br/><span id="subscription-not-active"/>
     <img src="images/enterprise-e3-win-10-activated-enterprise-subscription-not-active.png" alt="Windows 10 activated and subscription not active" width="624" height="407" />
     <br><strong>Figure 11 - Windows 10 Enterprise subscription lapsed or removed in Settings</strong>
 
 - [Figure 12](#win-10-not-activated-subscription-not-active) (below) illustrates a device on which Windows 10 Pro license is not activated and the Windows 10 Enterprise subscription is lapsed or removed.
 
-    <span id="win-10-not-activated-subscription-not-active"/>
+    <br/><br/><span id="win-10-not-activated-subscription-not-active"/>
     <img src="images/enterprise-e3-win-10-not-activated-enterprise-subscription-not-active.png" alt="Windows 10 not activated and subscription not active" width="624" height="407" />
     <br><strong>Figure 12 - Windows 10 Pro, version 1703 edition not activated and Windows 10 Enterprise subscription lapsed or removed in Settings</strong>
 

From 548b526d6f8bd9dd1113222ffa0fe0d1d168ed23 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 30 Dec 2020 21:47:22 -0800
Subject: [PATCH 182/825] Removed 1 of 2 added <br/>

---
 windows/deployment/deploy-enterprise-licenses.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index 5c8586af7c..1df6e28c22 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -198,7 +198,7 @@ Once the device is joined to your Azure AD subscription, the user will sign in b
 
 You can verify the Windows 10 Enterprise E3 or E5 subscription in **Settings &gt; Update & Security &gt; Activation**, as illustrated in **Figure 9**.
 
-<br/><br/><span id="win-10-activated-subscription-active"/>
+<br/><span id="win-10-activated-subscription-active"/>
 <img src="images/enterprise-e3-win-10-activated-enterprise-subscription-active.png" alt="Windows 10 activated and subscription active" width="624" height="407" />
 
 **Figure 9 - Windows 10 Enterprise subscription in Settings** 
@@ -232,19 +232,19 @@ Use the following figures to help you troubleshoot when users experience these c
 
 - [Figure 10](#win-10-not-activated) (below) illustrates a device on which Windows 10 Pro is not activated, but the Windows 10 Enterprise subscription is active.
 
-    <br/><br/><span id="win-10-not-activated"/>
+    <br/><span id="win-10-not-activated"/>
     <img src="images/enterprise-e3-win-10-not-activated-enterprise-subscription-active.png" alt="Windows 10 not activated and subscription active" width="624" height="407" />
     <br><strong>Figure 10 - Windows 10 Pro, version 1703 edition not activated in Settings</strong>
 
 - [Figure 11](#subscription-not-active) (below) illustrates a device on which Windows 10 Pro is activated, but the Windows 10 Enterprise subscription is lapsed or removed.
 
-    <br/><br/><span id="subscription-not-active"/>
+    <br/><span id="subscription-not-active"/>
     <img src="images/enterprise-e3-win-10-activated-enterprise-subscription-not-active.png" alt="Windows 10 activated and subscription not active" width="624" height="407" />
     <br><strong>Figure 11 - Windows 10 Enterprise subscription lapsed or removed in Settings</strong>
 
 - [Figure 12](#win-10-not-activated-subscription-not-active) (below) illustrates a device on which Windows 10 Pro license is not activated and the Windows 10 Enterprise subscription is lapsed or removed.
 
-    <br/><br/><span id="win-10-not-activated-subscription-not-active"/>
+    <br/><span id="win-10-not-activated-subscription-not-active"/>
     <img src="images/enterprise-e3-win-10-not-activated-enterprise-subscription-not-active.png" alt="Windows 10 not activated and subscription not active" width="624" height="407" />
     <br><strong>Figure 12 - Windows 10 Pro, version 1703 edition not activated and Windows 10 Enterprise subscription lapsed or removed in Settings</strong>
 

From aa46da2c18060429aa2a22336e81b9eacd3ec160 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 30 Dec 2020 22:06:15 -0800
Subject: [PATCH 183/825] Removed additional <br/> tags

---
 windows/deployment/deploy-enterprise-licenses.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/deployment/deploy-enterprise-licenses.md b/windows/deployment/deploy-enterprise-licenses.md
index 0132ec9fbd..d13e8feb57 100644
--- a/windows/deployment/deploy-enterprise-licenses.md
+++ b/windows/deployment/deploy-enterprise-licenses.md
@@ -179,7 +179,7 @@ Now the device is Azure AD–joined to the company's subscription.
 >If your device is running Windows 10, version 1803 or later, this step is not needed. From Windows 10, version 1803, the device will automatically activate Windows 10 Enterprise using the firmware-embedded activation key.
 >If the device is running Windows 10, version 1703 or 1709, then Windows 10 Pro must be successfully activated in **Settings &gt; Update & Security &gt; Activation**, as illustrated in **Figure 7a**.
 
-<br/><br/><span id="win-10-pro-activated"/>
+<br/><span id="win-10-pro-activated"/>
 <img src="images/sa-pro-activation.png" alt="Windows 10 Pro activated" width="710" height="440" />
 <br><strong>Figure 7a - Windows 10 Pro activation in Settings</strong> 
 
@@ -190,7 +190,7 @@ Windows 10 Pro activation is required before Enterprise E3 or E5 can be enabled
 
 Once the device is joined to your Azure AD subscription, the user will sign in by using his or her Azure AD account, as illustrated in **Figure 8**. The Windows 10 Enterprise E3 or E5 license associated with the user will enable Windows 10 Enterprise edition capabilities on the device.
 
-<br/><br/><img src="images/enterprise-e3-sign-in.png" alt="Sign in, Windows 10" width="624" height="351" />
+<br/><img src="images/enterprise-e3-sign-in.png" alt="Sign in, Windows 10" width="624" height="351" />
 
 **Figure 8. Sign in by using Azure AD account**
 

From ae50018fbe86bfa5f9bda65c3d2a7026e14ed0f7 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 12:22:54 +0200
Subject: [PATCH 184/825] Update gov.md

Deployment of some binaries wasn't completed due to EOY freeze, so changing the affected items as "no, coming soon".
---
 .../microsoft-defender-atp/gov.md             | 24 +++++++++----------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 3e44dc54bc..451e710c23 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -49,13 +49,13 @@ Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg) Coming soon |
 Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
 Windows 10, version 1703 / RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows 8.1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows 8 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows 7 SP1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Windows 7 SP1 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows 8 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Mac OS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Linux | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
@@ -69,9 +69,9 @@ The following OS versions are supported when using [Azure Security Center](https
 
 OS version | GCC | GCC High
 :---|:---|:---
-Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
 
 <br>
 
@@ -112,11 +112,11 @@ Automated investigation and remediation: Response to Office 365 alerts | ![No](.
 Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs: Streaming API | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Integrations: Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 58cf400cec82ffb9d8828124d9f1588fb24d98c3 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 12:34:41 +0200
Subject: [PATCH 185/825] Update gov.md

1. Removed internal releases names.
2. Replaced "Azure Security Center" with "Azure Defender".
---
 .../microsoft-defender-atp/gov.md              | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 451e710c23..5ad7cb822e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -41,13 +41,13 @@ The following OS versions are supported:
 OS version | GCC | GCC High
 :---|:---|:---
 Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 2004 / 20H1 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1909 / 19H2 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1903 / 19H1 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1809 / RS5 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 / RS4 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
-Windows 10, version 1709 / RS3 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
-Windows 10, version 1703 / RS2 and below | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
+Windows 10, version 2004 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1909 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1903 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1809 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1803 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
+Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
@@ -64,8 +64,8 @@ Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 > [!NOTE]
 > A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
 
-### OS versions when using Azure Security Center
-The following OS versions are supported when using [Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
+### OS versions when using Azure Defender
+The following OS versions are supported when using [Azure Defender](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
 
 OS version | GCC | GCC High
 :---|:---|:---

From 3403fc0d96b4e8e6dfc684c3f2f16c7149cc0614 Mon Sep 17 00:00:00 2001
From: AlastairBateman <10553180+AlastairBateman@users.noreply.github.com>
Date: Thu, 31 Dec 2020 21:48:19 +1100
Subject: [PATCH 186/825] Fixing a minor typo (Brose -> Browse)

---
 .../hello-for-business/hello-cert-trust-adfs.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 8e3e7d4f74..a3f57c0d37 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -41,7 +41,7 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > [!NOTE]
 >For AD FS 2019, if Windows Hello for Business with a Hybrid Certificate trust is performed, a known PRT issue exists. You may encounter this error in ADFS Admin event logs: Received invalid Oauth request. The client 'NAME' is forbidden to access the resource with scope 'ugs'. To remediate this error:
 >
-> 1. Launch AD FS management console. Brose to "Services > Scope Descriptions".
+> 1. Launch AD FS management console. Browse to "Services > Scope Descriptions".
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".
 > 3. Under name type "ugs" and Click Apply > OK.
 > 4. Launch PowerShell as an administrator.

From a85c7462d47057723c37b3f21df76c8fff596521 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 13:15:54 +0200
Subject: [PATCH 187/825] Update gov.md

Added "Evaluation lab" and "Power Automate".
---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 5ad7cb822e..de3dac5feb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -115,6 +115,7 @@ Management and APIs: Device health and compliance report | ![Yes](../images/svg/
 Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
@@ -123,5 +124,6 @@ Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Power Automate & Azure Logic Apps | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 5b6db45b9df68055c4f18f87f397f20f48c279fc Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 13:18:52 +0200
Subject: [PATCH 188/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index de3dac5feb..db290589a6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -124,6 +124,6 @@ Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Power Automate & Azure Logic Apps | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From a6a485341ba465c01e58149a526f6620019848c8 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 31 Dec 2020 13:30:15 +0200
Subject: [PATCH 189/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index db290589a6..71d6de5b4d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -64,8 +64,8 @@ Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 > [!NOTE]
 > A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
 
-### OS versions when using Azure Defender
-The following OS versions are supported when using [Azure Defender](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
+### OS versions when using Azure Defender for Servers
+The following OS versions are supported when using [Azure Defender for Servers](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
 
 OS version | GCC | GCC High
 :---|:---|:---

From b384eba9eb2b195a196a6cb8a9422e6fbc7a70e6 Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Thu, 31 Dec 2020 19:16:42 +0530
Subject: [PATCH 190/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 48 +++++++++++++++++--
 1 file changed, 44 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 96874697de..80da8794b6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -42,21 +42,61 @@ Before you roll out attack surface reduction rules in your organization, select
 
 As a best practice, use code signing for all the applications and scripts that your organization is using. This includes internally developed applications. Using code signing helps avoid false positives with attack surface reduction rules. It can also help avoid issues with attack surface reduction rules for developers and other users within your organization. 
 
-## View reports in the Microsoft 365 security center
+## View reports from various sources in Microsoft
+
+### From the Microsoft 365 security center**
 
 In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**. (MORE TO COME!)
 
+To retrieve and view the reports generated in ([https://security.microsoft.com](https://security.microsoft.com)), ensure that the device for which you seek a report is onboarded on to Microsoft Defender ATP.
+
+### By Microsoft Defender ATP advanced hunting** 
+
+Advanced hunting is a query-based threat-hunting tool of Microsoft Defender ATP. This tool generates reports based on the findings of the threat-hunting process.
+
+The **advanced hunting** tool enables the users to audit the **Of-the-last-30-days** data collected from various devices by Microsoft Defender ATP Endpoint Detection and Response (EDR). It facilitates proactive logging of any suspicious indicators and entities in the events that you explore. This tool provides flexibility in accessing data (without any restriction in category of data to be accessed). This flexibility enables the user to detect known threats and spot new threats.
+
+The reports for the ASR rules' events are generated by querying the **DeviceEvents** table.
+
+**Template of DeviceEvents table**
+
+DeviceEvents
+| where Timestamp > ago (30d)
+| where ActionType startswith "Asr" 
+| summarize EventCount=count () by ActionType
+
+### By Microsoft Defender ATP machine timeline
+
+Machine timeline is another report-generating source in Microsoft Defender ATP, but with a narrower scope.
+
+Reports relating to ASR rule events can be generated for the preceding-6-months period on a specific endpoint or device. 
+
+**Summarized procedure to generate report**
+
+1. Log in to **Microsoft Defender Security Center** and navigate to the **Machines** tab.
+2. Choose a machine for which you want to view the reports of its ASR rule-related events.
+3. Click **Timeline** and choose the time range for which the report is to display data.
+
+
 ## Get the Power BI report template
 
 <!--The Power BI report templates are here: https://github.com/microsoft/MDATP-PowerBI-Templates-->
 
 ## Avoid policy conflicts
 
-If a conflicting policy is applied via Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM will take precedence. See [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
+If a conflicting policy has emerged as a result of a policy being applied from Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM takes precedence. See [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
 
-Attack surface reduction rules for MEM managed devices now support new behavior for merger of settings from different policies, to create a superset of policy for each device. Only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either profile would be deployed. Attack surface reduction rule merge behavior is as follows:   
+Attack surface reduction (ASR) rules for MEM-managed devices now support a new behavior for merger of settings from different policies, to create a superset of policies for each device. Only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either of the profiles would be deployed. ASR rule merge behavior is as follows: 
 
-- Attack surface reduction rules from the following profiles are evaluated for each device the rules apply to:  
+Attack surface reduction (ASR) rules for MEM (Microsoft Endpoint Manager)-managed devices support a new behavior in terms of merger of the settings of policies. This behavior is described below:
+
+- If two or more policies have multiple settings configured in each of them, the settings without a conflict are merged into the superset of the policies they are mapped to.
+- If two or more policies encounter a conflict over a single setting from the various settings they are configured with,  only that single setting with a conflict is held back from being merged into the superset of the policies. 
+- The bundle of settings as a whole are not held back from being merged into the superset because of the single conflict-affected setting.
+- The policy as a whole is not flagged as **being in conflict** because of one of its settings being conflict affected.
+  
+
+- ASR rules from the following profiles are evaluated for each device the rules apply to:  
     - Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > [Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction).
     - Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
     - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Attack Surface Reduction Rules.

From 95c5435faeb9e2f77e12a5366bc848e0b3820588 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 31 Dec 2020 18:52:49 +0500
Subject: [PATCH 191/825] Addition of note

As suggested by the user, the rule Block executable content from email client and webmail, have some different names depending on where we are looking at. Keeping this in view, I have created a PR to add a note for the same.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8556
---
 .../microsoft-defender-atp/attack-surface-reduction.md      | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index a0586d3024..238b8d7a79 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -243,6 +243,12 @@ Microsoft Endpoint Configuration Manager name: `Block executable content from em
 
 GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
+> [!Note]
+> The rule **Block executable content from email client and webmail** is also reffered as following. 
+> Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)
+> Endpoint Manager: Block executable content download from email and webmail clients
+> Group Policy: Block executable content from email client and webmail
+
 ### Block executable files from running unless they meet a prevalence, age, or trusted list criterion
 
 This rule blocks the following file types from launching unless they meet prevalence or age criteria, or they're in a trusted list or an exclusion list:

From ed4b33cf41a447b10d6cd0136f31f6826aec43b8 Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Thu, 31 Dec 2020 19:33:23 +0530
Subject: [PATCH 192/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md  | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 80da8794b6..0a09d31840 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -44,13 +44,13 @@ As a best practice, use code signing for all the applications and scripts that y
 
 ## View reports from various sources in Microsoft
 
-### From the Microsoft 365 security center**
+### From the Microsoft 365 security center
 
 In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**. (MORE TO COME!)
 
 To retrieve and view the reports generated in ([https://security.microsoft.com](https://security.microsoft.com)), ensure that the device for which you seek a report is onboarded on to Microsoft Defender ATP.
 
-### By Microsoft Defender ATP advanced hunting** 
+### By Microsoft Defender ATP advanced hunting
 
 Advanced hunting is a query-based threat-hunting tool of Microsoft Defender ATP. This tool generates reports based on the findings of the threat-hunting process.
 
@@ -65,6 +65,13 @@ DeviceEvents
 | where ActionType startswith "Asr" 
 | summarize EventCount=count () by ActionType
 
+**Procedure**
+
+1. Navigate to **Advanced hunting** module in the **Microsoft Defender Security Center** portal.
+2. Click **Query**.
+3. Click **+ New** to create a new query.
+4. Click **Run query**. The report based on the query parameters (specified in the **Template of DeviceEvents table** section) is generated.
+
 ### By Microsoft Defender ATP machine timeline
 
 Machine timeline is another report-generating source in Microsoft Defender ATP, but with a narrower scope.

From f2bcf45ebd366d15b832e6318b4611fc63b8e8cd Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 31 Dec 2020 20:37:11 +0500
Subject: [PATCH 193/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 238b8d7a79..90dcfbad85 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -244,7 +244,7 @@ Microsoft Endpoint Configuration Manager name: `Block executable content from em
 GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
 > [!Note]
-> The rule **Block executable content from email client and webmail** is also reffered as following. 
+> The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
 > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)
 > Endpoint Manager: Block executable content download from email and webmail clients
 > Group Policy: Block executable content from email client and webmail

From cd39eabbee12375fcb736c8ee5a3f657811345b4 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 31 Dec 2020 21:50:24 +0500
Subject: [PATCH 194/825] Correction in Syntax and addition of domain

As mentioned by the user, the domain was not added for cloud-based protection and there was a syntax issue with the smart screen domain.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8876
---
 .../windows-endpoints-20H2-non-enterprise-editions.md    | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index 6f82f0ddf4..c19e120272 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -107,9 +107,10 @@ The following methodology was used to derive the network endpoints:
 |||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
 |Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
-|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+||||wdcpalt.microsoft.com|
+|||HTTPS/HTTP|*.smartscreen-prod.microsoft.com|
 |||TLSv1.2|definitionupdates.microsoft.com|
-||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*.smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
 |Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
 |||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|
@@ -180,6 +181,7 @@ The following methodology was used to derive the network endpoints:
 |||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
 |Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
+||||wdcpalt.microsoft.com|
 |||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
 ||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
@@ -245,6 +247,7 @@ The following methodology was used to derive the network endpoints:
 |||TLSv1.2/HTTPS/HTTP|config.edge.skype.com|
 |Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
+||||wdcpalt.microsoft.com|
 |||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
 ||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
@@ -261,4 +264,4 @@ The following methodology was used to derive the network endpoints:
 |Xbox Live|The following endpoints are used for Xbox Live.|
 |||TLSv1.2/HTTPS/HTTP|dlassets-ssl.xboxlive.com|
 |||TLSv1.2/HTTPS|da.xboxservices.com|
-|
\ No newline at end of file
+|

From ded8a8e23ca92c7d98cc0cdc6865006ea8031de6 Mon Sep 17 00:00:00 2001
From: AlastairBateman <10553180+AlastairBateman@users.noreply.github.com>
Date: Fri, 1 Jan 2021 08:54:05 +1100
Subject: [PATCH 195/825] Added Markdown indentation

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../hello-for-business/hello-cert-trust-adfs.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index a3f57c0d37..18abc2bc44 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -39,7 +39,7 @@ A new Active Directory Federation Services farm should have a minimum of two fed
 Prepare the Active Directory Federation Services deployment by installing and updating two Windows Server 2016 Servers.  Ensure the update listed below is applied to each server before continuing.
 
 > [!NOTE]
->For AD FS 2019, if Windows Hello for Business with a Hybrid Certificate trust is performed, a known PRT issue exists. You may encounter this error in ADFS Admin event logs: Received invalid Oauth request. The client 'NAME' is forbidden to access the resource with scope 'ugs'. To remediate this error:
+> For AD FS 2019, if Windows Hello for Business with a Hybrid Certificate trust is performed, a known PRT issue exists. You may encounter this error in ADFS Admin event logs: Received invalid Oauth request. The client 'NAME' is forbidden to access the resource with scope 'ugs'. To remediate this error:
 >
 > 1. Launch AD FS management console. Browse to "Services > Scope Descriptions".
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".

From 14708380b48e7428b4e49b4d11e79d692d4180fa Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Fri, 1 Jan 2021 13:21:58 +0500
Subject: [PATCH 196/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index bda2d79c6e..3ed8df33d8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -58,7 +58,7 @@ It's important to understand the following prerequisites prior to creating indic
 > - Full URL path blocks can be applied on the domain level and all unencrypted URLs
  
 > [!NOTE]
->There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. 
+> There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. 
 
 ### Create an indicator for IPs, URLs, or domains from the settings page
 

From 10a7156ee97e4595336ddfccdb17a3e9aed68854 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Fri, 1 Jan 2021 13:47:50 +0500
Subject: [PATCH 197/825] Update dg-readiness-tool.md

---
 .../identity-protection/credential-guard/dg-readiness-tool.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
index e609c9469d..76ff4796bb 100644
--- a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
+++ b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
@@ -732,11 +732,11 @@ function IsDomainController
 
 function CheckOSSKU
 {
-    $osname = $((gwmi win32_operatingsystem).Name).ToLower()
+    $osname = $((Get-ComputerInfo).WindowsProductName).ToLower()
     $_SKUSupported = 0
     Log "OSNAME:$osname"
     $SKUarray = @("Enterprise", "Education", "IoT", "Windows Server")
-    $HLKAllowed = @("microsoft windows 10 pro")
+    $HLKAllowed = @("windows 10 pro")
     foreach ($SKUent in $SKUarray)
     {
         if($osname.ToString().Contains($SKUent.ToLower()))

From d8a892afa921d0a08022a391754486355dea6b49 Mon Sep 17 00:00:00 2001
From: Peter Upfold <pgithub@upfold.org.uk>
Date: Fri, 1 Jan 2021 10:52:08 +0000
Subject: [PATCH 198/825] Fix typo MTD -> MDT

---
 .../prepare-for-windows-deployment-with-mdt.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md b/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md
index 52246fddfd..c4445493e4 100644
--- a/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md
+++ b/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md
@@ -81,7 +81,7 @@ The following OU structure is used in this guide. Instructions are provided [bel
 
 These steps assume that you have the MDT01 member server running and configured as a domain member server.
 
-On **MTD01**:
+On **MDT01**:
 
 Visit the [Download and install the Windows ADK](https://go.microsoft.com/fwlink/p/?LinkId=526803) page and download the following items to the **D:\\Downloads\\ADK** folder on MDT01 (you will need to create this folder):
 - [The Windows ADK for Windows 10](https://go.microsoft.com/fwlink/?linkid=2086042)

From ebd3cf2155fe6c6aee87510f5a1590f3ef0427f8 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:02:55 +0500
Subject: [PATCH 199/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 90dcfbad85..9733c8b74f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -243,7 +243,7 @@ Microsoft Endpoint Configuration Manager name: `Block executable content from em
 
 GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
-> [!Note]
+> [!NOTE]
 > The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
 > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)
 > Endpoint Manager: Block executable content download from email and webmail clients

From a722bb8029655ae4834e065fba5ec08ec18bbebe Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:03:12 +0500
Subject: [PATCH 200/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 9733c8b74f..43ded78026 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -245,7 +245,7 @@ GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
 > [!NOTE]
 > The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
-> Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)
+- > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
 > Endpoint Manager: Block executable content download from email and webmail clients
 > Group Policy: Block executable content from email client and webmail
 

From c2a94c61c7c35f76b7b9c49cf583347be2753a5f Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:03:24 +0500
Subject: [PATCH 201/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 43ded78026..56bb500c7a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -246,7 +246,7 @@ GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 > [!NOTE]
 > The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
 - > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
-> Endpoint Manager: Block executable content download from email and webmail clients
+- > Endpoint Manager: Block executable content download from email and webmail clients.
 > Group Policy: Block executable content from email client and webmail
 
 ### Block executable files from running unless they meet a prevalence, age, or trusted list criterion

From 161b98ac44b9c011314382518b11f8f3b286262d Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:03:33 +0500
Subject: [PATCH 202/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 56bb500c7a..a879459cd9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -247,7 +247,7 @@ GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 > The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
 - > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
 - > Endpoint Manager: Block executable content download from email and webmail clients.
-> Group Policy: Block executable content from email client and webmail
+- > Group Policy: Block executable content from email client and webmail.
 
 ### Block executable files from running unless they meet a prevalence, age, or trusted list criterion
 

From e23d0de48a6fa550f9055ee447a66d0ba1b8dae5 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:03:55 +0500
Subject: [PATCH 203/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index a879459cd9..212256ae38 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -244,7 +244,7 @@ Microsoft Endpoint Configuration Manager name: `Block executable content from em
 GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
 > [!NOTE]
-> The rule **Block executable content from email client and webmail** has the following separate descriptions, depending on which application you use:
+> The rule **Block executable content from email client and webmail** has the following alternative descriptions, depending on which application you use:
 - > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
 - > Endpoint Manager: Block executable content download from email and webmail clients.
 - > Group Policy: Block executable content from email client and webmail.

From c3b037390bd0960b5a81bcf4cb3af1958ce31645 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:09:46 +0500
Subject: [PATCH 204/825] Update
 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../privacy/windows-endpoints-20H2-non-enterprise-editions.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index c19e120272..946361ac1b 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -182,7 +182,7 @@ The following methodology was used to derive the network endpoints:
 |Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
 ||||wdcpalt.microsoft.com|
-|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+|||HTTPS/HTTP|*.smartscreen-prod.microsoft.com|
 ||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
 |Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|

From 324a5a11481e1014aebeb400a77e536ecf6cfd9d Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 1 Jan 2021 21:10:18 +0500
Subject: [PATCH 205/825] Update
 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../privacy/windows-endpoints-20H2-non-enterprise-editions.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index 946361ac1b..635f62072e 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -248,7 +248,7 @@ The following methodology was used to derive the network endpoints:
 |Teams|The following endpoint is used for Microsoft Teams application.|TLSv1.2/HTTPS/HTTP|config.teams.microsoft.com|
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
 ||||wdcpalt.microsoft.com|
-|||HTTPS/HTTP|*smartscreen-prod.microsoft.com|
+|||HTTPS/HTTP|*.smartscreen-prod.microsoft.com|
 ||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
 |Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|

From edd467581c1a0ddab89d37cdbfaac8955691d959 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Sat, 2 Jan 2021 07:31:44 +0100
Subject: [PATCH 206/825] MarkDown formatting, whitespace consistency, typos

This PR is meant to make it easier for the next editor of this page to start with a known ordered content, with regards to layout formatting, general typos and MarkDown usage.

Viewing this content in Rich Diff view, or without the "Hide whitespace changes" feature, might look confusing or disordered.

Changes proposed:
- MarkDown formatting improvements (incorrect usage/layout corrected and properly formatted)
- Whitespace corrections, both for consistency, codestyle, and for easier future editing
- Typo corrections and a couple of minor phrasing adjustments for readability & coherency

Ref. my comments in PR #8732 and at the end of issue ticket #8548
(regarding incorrect MarkDown code block usage)
---
 .../hello-hybrid-aadj-sso-cert.md             | 242 ++++++++++--------
 1 file changed, 135 insertions(+), 107 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 95638c7735..e8dc2df8f2 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -1,7 +1,7 @@
 ---
 title: Using Certificates for AADJ On-premises Single-sign On single sign-on
 description: If you want to use certificates for on-premises single-sign on for Azure Active Directory joined devices, then follow these additional steps.
-keywords: identity, PIN, biometric, Hello, passport, AADJ, SSO, 
+keywords: identity, PIN, biometric, Hello, passport, AADJ, SSO,
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -14,11 +14,12 @@ ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
 ms.date: 08/19/2018
-ms.reviewer: 
+ms.reviewer:
 ---
+
 # Using Certificates for AADJ On-premises Single-sign On
 
-**Applies to**
+**Applies to:**
 - Windows 10
 - Azure Active Directory joined
 - Hybrid Deployment
@@ -27,7 +28,7 @@ ms.reviewer:
 If you plan to use certificates for on-premises single-sign on, then follow these **additional** steps to configure the environment to enroll Windows Hello for Business certificates for Azure AD joined devices.
 
 > [!IMPORTANT]
-> Ensure you have performed the configurations in [Azure AD joined devices for On-premises Single-Sign On](hello-hybrid-aadj-sso-base.md) before you continue. 
+> Ensure you have performed the configurations in [Azure AD joined devices for On-premises Single-Sign On](hello-hybrid-aadj-sso-base.md) before you continue.
 
 Steps you will perform include:
 - [Prepare Azure AD Connect](#prepare-azure-ad-connect)
@@ -45,7 +46,7 @@ You need to install and configure additional infrastructure to provide Azure AD
 - A Windows Server 2012 R2 domain joined server that hosts the Network Device Enrollment Services role
 
 ### High Availaibilty
-The Network Device Enrollment Services (NDES) server role acts as a certificate registration authority.  Certificate registration servers enroll certificates on behalf of the user.  Users request certificates from the NDES service rather than directly from the issuing certificate authority. 
+The Network Device Enrollment Services (NDES) server role acts as a certificate registration authority.  Certificate registration servers enroll certificates on behalf of the user.  Users request certificates from the NDES service rather than directly from the issuing certificate authority.
 
 The architecture of the NDES server prevents it from being clustered or load balanced for high availability.  To provide high availability, you need to install more than one identically configured NDES servers and use Microsoft Intune to load balance then (in round-robin fashion).
 
@@ -58,14 +59,14 @@ The Network Device Enrollment Service (NDES) server role can issue up to three u
 If you need to deploy more than three types of certificates to the Azure AD joined device, you need additional NDES servers.  Alternatively, consider consolidating certificates templates to reduce the number of certificate templates.
 
 ### Network Requirements
-All communication occurs securely over port 443. 
+All communication occurs securely over port 443.
 
 ## Prepare Azure AD Connect
 Successful authentication to on-premises resources using a certificate requires the certificate to provide a hint about the on-premises domain.  The hint can be the user's Active Directory distinguished name as the subject of the certificate, or the hint can be the user's user principal name where the suffix matches the Active Directory domain name.
 
 Most environments change the user principal name suffix to match the organization's external domain name (or vanity domain), which prevents the user principal name as a hint to locate a domain controller.  Therefore, the certificate needs the user's on-premises distinguished name in the subject to properly locate a domain controller.
 
-To include the on-premises distinguished name in the certificate's subject, Azure AD Connect must replicate the Active Directory **distinguishedName** attribute to the Azure Active Directory **onPremisesDistinguishedName** attribute.  Azure AD Connect version 1.1.819 includes the proper synchronization rules need to for these attributes. 
+To include the on-premises distinguished name in the certificate's subject, Azure AD Connect must replicate the Active Directory **distinguishedName** attribute to the Azure Active Directory **onPremisesDistinguishedName** attribute.  Azure AD Connect version 1.1.819 includes the proper synchronization rules need to for these attributes.
 
 ### Verify AAD Connect version
 Sign-in to computer running Azure AD Connect with access equivalent to _local administrator_.
@@ -100,8 +101,8 @@ Sign-in to a domain controller or management workstation with access equivalent
 Sign-in to a domain controller or management workstation with access equivalent to _domain administrator_.
 
 1. Open **Active Directory Users and Computers**.
-2.  Expand the domain node from the navigation pane.
-3.  Click **Computers** from the navigation pane. Right-click the name of the NDES server that will host the NDES server role.  Click **Add to a group...**.
+2. Expand the domain node from the navigation pane.
+3. Click **Computers** from the navigation pane. Right-click the name of the NDES server that will host the NDES server role.  Click **Add to a group...**.
 4. Type **NDES Servers** in **Enter the object names to select**.  Click **OK**.  Click **OK** on the **Active Directory Domain Services** success dialog.
 
 > [!NOTE]
@@ -118,7 +119,7 @@ Sign-in to a domain controller or management workstation with access equivalent
 4. Click **Finish**.
 
 > [!IMPORTANT]
-> Configuring the service's account password to **Password never expires** may be more convenient, but it presents a security risk.  Normal service account passwords should expire in accordance with the organizations user password expiration policy.  Create a reminder to change the service account's password two weeks before it will expire.  Share the reminder with others that are allowed to change the password to ensure the password is changed before it expires. 
+> Configuring the service's account password to **Password never expires** may be more convenient, but it presents a security risk.  Normal service account passwords should expire in accordance with the organizations user password expiration policy.  Create a reminder to change the service account's password two weeks before it will expire.  Share the reminder with others that are allowed to change the password to ensure the password is changed before it expires.
 
 ### Create the NDES Service User Rights Group Policy object
 The Group Policy object ensures the NDES Service account has the proper user right assign all the NDES servers in the **NDES Servers** group.  As you add new NDES servers to your environment and this group, the service account automatically receives the proper user rights through Group Policy.
@@ -135,10 +136,10 @@ Sign-in a domain controller or management workstations with _Domain Admin_ equiv
 8. In the content pane, double-click **Allow log on locally**. Select **Define these policy settings** and click **OK**.  Click **Add User or Group...**.  In the **Add User or Group** dialog box, click **Browse**.  In the **Select Users, Computers, Service Accounts, or Groups** dialog box, type **Administrators;Backup Operators;DOMAINNAME\NDESSvc;Users** where **DOMAINNAME** is the NetBios name of the domain (Example CONTOSO\NDESSvc) in **User and group names**.  Click **OK** twice.
 9. In the content pane, double-click **Log on as a batch job**. Select **Define these policy settings** and click **OK**.  Click **Add User or Group...**.  In the **Add User or Group** dialog box, click **Browse**.  In the **Select Users, Computers, Service Accounts, or Groups** dialog box, type **Administrators;Backup Operators;DOMAINNAME\NDESSvc;Performance Log Users** where **DOMAINNAME** is the NetBios name of the domain (Example CONTOSO\NDESSvc) in **User and group names**.  Click **OK** twice.
 10. In the content pane, double-click **Log on as a service**. Select **Define these policy settings** and click **OK**.  Click **Add User or Group...**.  In the **Add User or Group** dialog box, click **Browse**.  In the **Select Users, Computers, Service Accounts, or Groups** dialog box, type **NT SERVICE\ALL SERVICES;DOMAINNAME\NDESSvc** where **DOMAINNAME** is the NetBios name of the domain (Example CONTOSO\NDESSvc) in **User and group names**.  Click **OK** three times.
-11. Close the **Group Policy Management Editor**. 
+11. Close the **Group Policy Management Editor**.
 
 ### Configure security for the NDES Service User Rights Group Policy object
-The best way to deploy the **NDES Service User Rights** Group Policy object is to use security group filtering. This enables you to easily manage the computers that  receive the Group Policy settings by adding them to a group. 
+The best way to deploy the **NDES Service User Rights** Group Policy object is to use security group filtering. This enables you to easily manage the computers that  receive the Group Policy settings by adding them to a group.
 
 Sign-in to a domain controller or management workstation with access equivalent to _domain administrator_.
 
@@ -159,7 +160,7 @@ Sign-in to a domain controller or management workstation with access equivalent
 3. In the **Select GPO** dialog box, select **NDES Service User Rights** or the name of the Group Policy object you previously created and click **OK**.
 
 > [!IMPORTANT]
-> Linking the **NDES Service User Rights** Group Policy object to the domain ensures the Group Policy object is in scope for all computers. However, not all computers will have the policy settings applied to them. Only computers that are members of the **NDES Servers** global security group receive the policy settings. All others computers ignore the Group Policy object. 
+> Linking the **NDES Service User Rights** Group Policy object to the domain ensures the Group Policy object is in scope for all computers. However, not all computers will have the policy settings applied to them. Only computers that are members of the **NDES Servers** global security group receive the policy settings. All others computers ignore the Group Policy object.
 
 ## Prepare Active Directory Certificate Authority
 You must prepare the public key infrastructure and the issuing certificate authority to support issuing certificates using Microsoft Intune and the Network Devices Enrollment Services (NDES) server role.  In this task, you will
@@ -177,46 +178,52 @@ When deploying certificates using Microsoft Intune, you have the option of provi
 
 Sign-in to the issuing certificate authority with access equivalent to _local administrator_.
 
-1. Open and elevated command prompt.  Type the command
+1. Open an elevated command prompt and type the following command:
    ```
    certutil -setreg Policy\EditFlags +EDITF_ATTRIBUTEENDDATE
    ```
-2. Restart the **Active Directory Certificate Services** service. 
+2. Restart the **Active Directory Certificate Services** service.
 
 ### Create an NDES-Intune authentication certificate template
-NDES uses a server authentication certificate to authenticate the server endpoint, which encrypts the communication between it and the connecting client.  The Intune Certificate Connector uses a client authentication certificate template to authenticate to the certificate registration point. 
+NDES uses a server authentication certificate to authenticate the server endpoint, which encrypts the communication between it and the connecting client.  The Intune Certificate Connector uses a client authentication certificate template to authenticate to the certificate registration point.
 
 Sign-in to the issuing certificate authority or management workstations with _Domain Admin_ equivalent credentials.
 
-1.  Open the **Certificate Authority** management console.
+1. Open the **Certificate Authority** management console.
 2. Right-click **Certificate Templates** and click **Manage**.
 3. In the **Certificate Template Console**, right-click the **Computer** template in the details pane and click **Duplicate Template**.
-4. On the **General** tab, type **NDES-Intune Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise's needs.  
-    **Note:** If you use different template names, you'll need to remember and substitute these names in different portions of the lab.
-5.  On the **Subject** tab, select **Supply in the request**.
-6.  On the **Cryptography** tab, validate the **Minimum key size** is **2048**.
-7.  On the **Security** tab, click **Add**. 
-8.  Type **NDES server** in the **Enter the object names to select** text box and click **OK**.
-9.  Select **NDES server** from the **Group or users names** list. In the **Permissions for** section, select the **Allow** check box for the **Enroll** permission. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**.
-10.	 Click on the **Apply** to save changes and close the console. 
+4. On the **General** tab, type **NDES-Intune Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise's needs.
+
+   > [!NOTE]
+   > If you use different template names, you'll need to remember and substitute these names in different portions of the lab.
+
+5. On the **Subject** tab, select **Supply in the request**.
+6. On the **Cryptography** tab, validate the **Minimum key size** is **2048**.
+7. On the **Security** tab, click **Add**.
+8. Type **NDES server** in the **Enter the object names to select** text box and click **OK**.
+9. Select **NDES server** from the **Group or users names** list. In the **Permissions for** section, select the **Allow** check box for the **Enroll** permission. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**.
+10. Click on the **Apply** to save changes and close the console.
 
 ### Create an Azure AD joined Windows Hello for Business authentication certificate template
 During Windows Hello for Business provisioning,  Windows 10 requests an authentication certificate from the Microsoft Intune, which requests the authentication certificate on behalf of the user.  This task configures the Windows Hello for Business authentication certificate template.  You use the name of the certificate template when configuring the NDES Server.
 
-Sign-in a certificate authority or management workstations with _Domain Admin equivalent_ credentials.
+Sign in a certificate authority or management workstations with _Domain Admin equivalent_ credentials.
 
 1. Open the **Certificate Authority** management console.
 2. Right-click **Certificate Templates** and click **Manage**.
 3. Right-click the **Smartcard Logon** template and choose **Duplicate Template**.
 4. On the **Compatibility** tab, clear the **Show resulting changes** check box.  Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Authority** list. Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Recipient** list.
-5. On the **General** tab, type **AADJ WHFB Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise's needs.   
-    **Note:** If you use different template names, you'll need to remember and substitute these names in different portions of the deployment.
-6. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  
+5. On the **General** tab, type **AADJ WHFB Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise's needs.
+
+   > [!NOTE]
+   > If you use different template names, you'll need to remember and substitute these names in different portions of the deployment.
+
+6. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 7. On the **Extensions** tab, verify the **Application Policies** extension includes **Smart Card Logon**.
 8. On the **Subject** tab, select **Supply in the request**.
 9. On the **Request Handling** tab, select **Signature and encryption** from the **Purpose** list.  Select the **Renew with same key** check box. Select **Enroll subject without requiring any user input**.
 10. On the **Security** tab, click **Add**. Type **NDESSvc** in the **Enter the object names to select** text box and click **OK**.
-12. Select  **NDESSvc** from the **Group or users names** list. In the **Permissions for NDES Servers** section, select the **Allow** check box for the **Read**, **Enroll**. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**. 
+12. Select  **NDESSvc** from the **Group or users names** list. In the **Permissions for NDES Servers** section, select the **Allow** check box for the **Read**, **Enroll**. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**.
 13. Close the console.
 
 ### Publish certificate templates
@@ -231,7 +238,7 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
 2. Expand the parent node from the navigation pane.
 3. Click **Certificate Templates** in the navigation pane.
 4. Right-click the **Certificate Templates** node.  Click **New**, and click **Certificate Template** to issue.
-5. In the **Enable Certificates Templates** window, select the **NDES-Intune Authentication** and **AADJ WHFB Authentication** templates you created in the previous steps.  Click **OK** to publish the selected certificate templates to the certificate authority.   
+5. In the **Enable Certificates Templates** window, select the **NDES-Intune Authentication** and **AADJ WHFB Authentication** templates you created in the previous steps.  Click **OK** to publish the selected certificate templates to the certificate authority.
 6. Close the console.
 
 ## Install and Configure the NDES Role
@@ -250,10 +257,10 @@ Install the Network Device Enrollment Service role on a computer other than the
 Sign-in to the certificate authority or management workstations with an _Enterprise Admin_ equivalent credentials.
 
 1. Open **Server Manager** on the NDES server.
-2. Click **Manage**.  Click **Add Roles and Features**. 
+2. Click **Manage**.  Click **Add Roles and Features**.
 3. In the **Add Roles and Features Wizard**, on the **Before you begin** page, click **Next**.  Select **Role-based or feature-based installation** on the **Select installation type** page.  Click **Next**.  Click **Select a server from the server pool**.  Select the local server from the **Server Pool** list.  Click **Next**.
    ![Server Manager destination server](images/aadjCert/servermanager-destination-server-ndes.png)
-4. On the **Select server roles** page, select **Active Directory Certificate Services** from the **Roles** list.  
+4. On the **Select server roles** page, select **Active Directory Certificate Services** from the **Roles** list.
    ![Server Manager AD CS Role](images/aadjCert/servermanager-adcs-role.png)
    Click **Add Features** on the **Add Roles and Feature Wizard** dialog box.  Click **Next**.
    ![Server Manager Add Features](images/aadjcert/serverManager-adcs-add-features.png)
@@ -271,7 +278,7 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
    ![Server Manager Web Server Role](images/aadjcert/servermanager-adcs-webserver-role.png)
 9. Click **Install**. When the installation completes, continue with the next procedure.  **Do not click Close**.
    > [!Important]
-   > The .NET Framework 3.5 is not included in the typical installation.  If the server is connected to the Internet, the installation attempts to get the files using Windows Update.  If the server is not connected to the Internet, you need to **Specify an alternate source path** such as \<driveLetter>:\\Sources\SxS\
+   > .NET Framework 3.5 is not included in the typical installation.  If the server is connected to the Internet, the installation attempts to get the files using Windows Update.  If the server is not connected to the Internet, you need to **Specify an alternate source path** such as \<driveLetter>:\\Sources\SxS\
    ![.NET Side by Side](images/aadjcert/dotNet35sidebyside.png)
 
 ### Configure the NDES service account
@@ -280,7 +287,7 @@ This task adds the NDES service account to the local IIS_USRS group.  The task a
 #### Add the NDES service account to the IIS_USRS group
 Sign-in the NDES server with access equivalent to _local administrator_.
 
-1. Start the **Local Users and Groups** management console (lusrmgr.msc).
+1. Start the **Local Users and Groups** management console (`lusrmgr.msc`).
 2. Select **Groups** from the navigation pane. Double-click the IIS_IUSRS group.
 3. In the **IIS_IUSRS Properties** dialog box, click **Add**.  Type **NDESSvc** or the name of your NDES service account.  Click **Check Names** to verify the name and then click **OK**. Click **OK** to close the properties dialog box.
 4. Close the management console.
@@ -289,10 +296,14 @@ Sign-in the NDES server with access equivalent to _local administrator_.
 Sign-in the NDES server with a access equivalent to _Domain Admins_.
 
 1. Open an elevated command prompt.
-2. Type the following command to register the service principal name<br>
-```setspn -s http/[FqdnOfNdesServer] [DomainName\\NdesServiceAccount]```<br>
-where **[FqdnOfNdesServer]** is the fully qualified domain name of the NDES server and **[DomainName\NdesServiceAccount]** is the domain name and NDES service account name separated by a backslash (\\).  An example of the command looks like the following.<br>
-```setspn -s http/ndes.corp.contoso.com contoso\ndessvc```
+2. Type the following command to register the service principal name
+   ```
+   setspn -s http/[FqdnOfNdesServer] [DomainName\\NdesServiceAccount]
+   ```
+   where **[FqdnOfNdesServer]** is the fully qualified domain name of the NDES server and **[DomainName\NdesServiceAccount]** is the domain name and NDES service account name separated by a backslash (\\).  An example of the command looks like the following:
+   ```
+   setspn -s http/ndes.corp.contoso.com contoso\ndessvc
+   ```
 
 > [!NOTE]
 > If you use the same service account for multiple NDES Servers, repeat the following task for each NDES server under which the NDES service runs.
@@ -306,16 +317,16 @@ Sign-in a domain controller with a minimum access equivalent to _Domain Admins_.
 
 1. Open **Active Directory Users and Computers**
 2. Locate the NDES Service account (NDESSvc). Right-click and select **Properties**. Click the **Delegation** tab.
-![NDES Delegation Tab](images/aadjcert/ndessvcdelegationtab.png)
+   ![NDES Delegation Tab](images/aadjcert/ndessvcdelegationtab.png)
 3. Select **Trust this user for delegation to specified services only**.
 4. Select **Use any authentication protocol**.
 5. Click **Add**.
 6. Click **Users or Computers...**  Type the name of the _NDES Server_ you use to issue Windows Hello for Business authentication certificates to Azure AD joined devices.  From the **Avaiable services** list, select **HOST**.  Click **OK**.
-![NDES Service delegation to NDES host](images/aadjcert/ndessvcdelegation-host-ndes-spn.png)
+   ![NDES Service delegation to NDES host](images/aadjcert/ndessvcdelegation-host-ndes-spn.png)
 7. Repeat steps 5 and 6 for each NDES server using this service account.8. Click **Add**.
 8. Click **Users or computers...**  Type the name of the issuing certificate authority this NDES service account uses to issue Windows Hello for Business authentication certificates to Azure AD joined devices.  From the **Available services** list, select **dcom**.  Hold the **CTRL** key and select **HOST**. Click **OK**.
 9. Repeat steps 8 and 9 for each issuing certificate authority from which one or more NDES servers request certificates.
-![NDES Service delegation complete](images/aadjcert/ndessvcdelegation-host-ca-spn.png)
+   ![NDES Service delegation complete](images/aadjcert/ndessvcdelegation-host-ca-spn.png)
 10. Click **OK**.  Close **Active Directory Users and Computers**.
 
 ### Configure the NDES Role and Certificate Templates
@@ -325,61 +336,65 @@ This task configures the NDES role and the certificate templates the NDES server
 Sign-in to the certificate authority or management workstations with an _Enterprise Admin_ equivalent credentials.
 
 > [!NOTE]
-> If you closed Server Manger from the last set of tasks, start Server Manager and click the action flag that shows a yellow exclamation point. 
+> If you closed Server Manger from the last set of tasks, start Server Manager and click the action flag that shows a yellow exclamation point.
 
 ![Server Manager Post-Install Yellow flag](images/aadjcert/servermanager-post-ndes-yellowactionflag.png)
 
 1. Click the **Configure Active Directory Certificate Services on the destination server** link.
 2. On the **Credentials** page, click **Next**.
-![NDES Installation Credentials](images/aadjcert/ndesconfig01.png)
+   ![NDES Installation Credentials](images/aadjcert/ndesconfig01.png)
 3. On the **Role Services** page, select **Network Device Enrollment Service** and then click **Next**
-![NDES Role Services](images/aadjcert/ndesconfig02.png)
+   ![NDES Role Services](images/aadjcert/ndesconfig02.png)
 4. On the **Service Account for NDES** page, select **Specify service account (recommended)**.  Click **Select...** Type the user name and password for the NDES service account in the **Windows Security** dialog box.  Click **Next**.
-![NDES Service Account for NDES](images/aadjcert/ndesconfig03b.png)
+   ![NDES Service Account for NDES](images/aadjcert/ndesconfig03b.png)
 5. On the **CA for NDES** page, select **CA name**. Click **Select...**.  Select the issuing certificate authority from which the NDES server requests certificates.  Click **Next**.
-![NDES CA selection](images/aadjcert/ndesconfig04.png)
+   ![NDES CA selection](images/aadjcert/ndesconfig04.png)
 6. On the **RA Information**, click **Next**.
 7. On the **Cryptography for NDES** page, click **Next**.
 8. Review the **Confirmation** page.  Click **Configure**.
-![NDES Confirmation](images/aadjcert/ndesconfig05.png)
+   ![NDES Confirmation](images/aadjcert/ndesconfig05.png)
 8. Click **Close** after the configuration completes.
 
 #### Configure Certificate Templates on NDES
-A single NDES server can request a maximum of three certificate template.  The NDES server determines which certificate to issue based on the incoming certificate request that is assigned in the Microsoft Intune SCEP certificate profile.  The Microsoft Intune SCEP certificate profile has three values.  
+A single NDES server can request a maximum of three certificate template.  The NDES server determines which certificate to issue based on the incoming certificate request that is assigned in the Microsoft Intune SCEP certificate profile.  The Microsoft Intune SCEP certificate profile has three values.
 * Digital Signature
 * Key Encipherment
 * Key Encipherment, Digital Signature
 
 Each value maps to a registry value name in the NDES server.  The NDES server translate an incoming SCEP provide value into the correspond certificate template.  The table belows shows the SCEP profile value to the NDES certificate template registry value name
 
-|SCEP Profile Key usage| NDES Registry Value Name|
-|:----------:|:-----------------------:|
-|Digital Signature|SignatureTemplate|
-|Key Encipherment|EncryptionTemplate|
-|Key Encipherment<br>Digital Signature|GeneralPurposeTemplate|
+| SCEP Profile Key usage| NDES Registry Value Name |
+| :-------------------: | :----------------------: |
+| Digital Signature | SignatureTemplate |
+| Key Encipherment | EncryptionTemplate |
+| Key Encipherment<br>Digital Signature | GeneralPurposeTemplate |
 
 Ideally, you should match the certificate request with registry value name to keep the configuration intuitive (encryption certificates use the encryptionTemplate, signature certificates use the signature template, etc.).  A result of this intuitive design is the potential exponential growth in NDES server. Imagine an organization that needs to issue nine unique signature certificates across their enterprise.
 
- If the need arises, you can configure a signature certificate in the encryption registry value name or an encryption certificate in the signature registry value to maximize the use of your NDES infrastructure.  This unintuitive design requires current and accurate documentation of the configuration to ensure the SCEP certificate profile is configured to enroll the correct certificate, regardless of the actual purpose. Each organization needs to balance ease of configuration and administration with additional NDES infrastructure and the management overhead that comes with it.
+If the need arises, you can configure a signature certificate in the encryption registry value name or an encryption certificate in the signature registry value to maximize the use of your NDES infrastructure.  This unintuitive design requires current and accurate documentation of the configuration to ensure the SCEP certificate profile is configured to enroll the correct certificate, regardless of the actual purpose. Each organization needs to balance ease of configuration and administration with additional NDES infrastructure and the management overhead that comes with it.
 
 Sign-in to the NDES Server with _local administrator_ equivalent credentials.
 
 1. Open an elevated command prompt.
 2. Using the table above, decide which registry value name you will use to request Windows Hello for Business authentication certificates for Azure AD joined devices.
-3. Type the following command<br>
-```reg add HKLM\Software\Microsoft\Cryptography\MSCEP /v [registryValueName] /t REG_SZ /d [certificateTemplateName]```<br>
-where **registryValueName** is one of the three value names from the above table and where **certificateTemplateName** is the name of the certificate template you created for Windows Hello for Business Azure AD joined devices.  Example:<br>
-```reg add HKLM\Software\Microsoft\Cryptography\MSCEP /v SignatureTemplate /t REG_SZ /d AADJWHFBAuthentication```<br>
+3. Type the following command:
+   ```
+   reg add HKLM\Software\Microsoft\Cryptography\MSCEP /v [registryValueName] /t REG_SZ /d [certificateTemplateName]
+   ```
+   where **registryValueName** is one of the three value names from the above table and where **certificateTemplateName** is the name of the certificate template you created for Windows Hello for Business Azure AD joined devices.  Example:
+   ```
+   reg add HKLM\Software\Microsoft\Cryptography\MSCEP /v SignatureTemplate /t REG_SZ /d AADJWHFBAuthentication
+   ```
 4. Type **Y** when the command asks for permission to overwrite the existing value.
 5. Close the command prompt.
 
 > [!IMPORTANT]
-> Use the **name** of the certificate template; not the **display name**.  The certificate template name does not include spaces.  You can view the certificate names by looking at the **General** tab of the certificate template's properties in the **Certificates Templates** management console (certtmpl.msc).
+> Use the **name** of the certificate template; not the **display name**.  The certificate template name does not include spaces.  You can view the certificate names by looking at the **General** tab of the certificate template's properties in the **Certificates Templates** management console (`certtmpl.msc`).
 
 ### Create a Web Application Proxy for the internal NDES URL.
 Certificate enrollment for Azure AD joined devices occurs over the Internet.  As a result, the internal NDES URLs must be accessible externally. You can do this easily and securely using Azure Active Directory Application Proxy.  Azure AD Application Proxy provides single sign-on and secure remote access for web applications hosted on-premises, such as Network Device Enrollment Services.
 
-Ideally, you configure your Microsoft Intune SCEP certificate profile to use multiple external NDES URLs.  This enables Microsoft Intune to round-robin load balance the certificate requests to identically configured NDES Servers (each NDES server can accommodate approximately 300 concurrent requests).  Microsoft Intune sends these requests to Azure AD Application Proxies.  
+Ideally, you configure your Microsoft Intune SCEP certificate profile to use multiple external NDES URLs.  This enables Microsoft Intune to round-robin load balance the certificate requests to identically configured NDES Servers (each NDES server can accommodate approximately 300 concurrent requests).  Microsoft Intune sends these requests to Azure AD Application Proxies.
 
 Azure AD Application proxies are serviced by lightweight Application Proxy Connector agents.  These agents are installed on your on-premises, domain joined devices and make authenticated secure outbound connection to Azure, waiting to process requests from Azure AD Application Proxies. You can create connector groups in Azure Active Directory to assign specific connectors to service specific applications.
 
@@ -395,7 +410,7 @@ Sign-in a workstation with access equivalent to a _domain user_.
    ![Azure Application Proxy Connectors](images/aadjcert/azureconsole-applicationproxy-connectors-empty.png)
 5. Sign-in the computer that will run the connector with access equivalent to a _domain user_.
    > [!IMPORTANT]
-   > Install a minimum of two Azure Active Directory Proxy connectors for each NDES Application Proxy.  Strategtically locate Azure AD application proxy connectors throughout your organization to ensure maximum availablity.  Remember, devices running the connector must be able to communicate with Azure and the on-premises NDES servers.
+   > Install a minimum of two Azure Active Directory Proxy connectors for each NDES Application Proxy.  Strategically locate Azure AD application proxy connectors throughout your organization to ensure maximum availability.  Remember, devices running the connector must be able to communicate with Azure and the on-premises NDES servers.
 
 6. Start **AADApplicationProxyConnectorInstaller.exe**.
 7. Read the license terms and then select **I agree to the license terms and conditions**.  Click **Install**.
@@ -412,9 +427,9 @@ Sign-in a workstation with access equivalent to a _domain user_.
 1. Sign-in to the [Azure Portal](https://portal.azure.com/) with access equivalent to **Global Administrator**.
 2. Select **All Services**.  Type **Azure Active Directory** to filter the list of services.  Under **SERVICES**, Click **Azure Active Directory**.
 3. Under **MANAGE**, click **Application proxy**.
-![Azure Application Proxy Connector groups](images/aadjcert/azureconsole-applicationproxy-connectors-default.png)
+   ![Azure Application Proxy Connector groups](images/aadjcert/azureconsole-applicationproxy-connectors-default.png)
 4. Click **New Connector Group**. Under **Name**, type **NDES WHFB Connectors**.
-![Azure Application New Connector Group](images/aadjcert/azureconsole-applicationproxy-connectors-newconnectorgroup.png)
+   ![Azure Application New Connector Group](images/aadjcert/azureconsole-applicationproxy-connectors-newconnectorgroup.png)
 5. Select each connector agent in the **Connectors** list that will service Windows Hello for Business certificate enrollment requests.
 6. Click **Save**.
 
@@ -426,18 +441,18 @@ Sign-in a workstation with access equivalent to a _domain user_.
 3. Under **MANAGE**, click **Application proxy**.
 4. Click **Configure an app**.
 5. Under **Basic Settings** next to **Name**, type **WHFB NDES 01**.  Choose a name that correlates this Azure AD Application Proxy setting with the on-premises NDES server.  Each NDES server must have its own Azure AD Application Proxy as two NDES servers cannot share the same internal URL.
-6. Next to **Internal Url**, type the internal, fully qualified DNS name of the NDES server associated with this Azure AD Application Proxy.  For example, https://ndes.corp.mstepdemo.net).  You need to match the primary host name (AD Computer Account name) of the NDES server, and prefix the URL with **https**.
-7. Under **Internal Url**, select **https://** from the first list.  In the text box next to **https://**, type the hostname you want to use as your external hostname for the Azure AD Application Proxy.  In the list next to the hostname you typed, select a DNS suffix you want to use externally for the Azure AD Application Proxy.  It is recommended to use the default, -[tenantName].msapproxy.net where **[tenantName]** is your current Azure Active Directory tenant name (-mstephendemo.msappproxy.net).
+6. Next to **Internal URL**, type the internal, fully qualified DNS name of the NDES server associated with this Azure AD Application Proxy.  For example, https://ndes.corp.mstepdemo.net).  You need to match the primary host name (AD Computer Account name) of the NDES server, and prefix the URL with **https**.
+7. Under **Internal URL**, select **https://** from the first list.  In the text box next to **https://**, type the hostname you want to use as your external hostname for the Azure AD Application Proxy.  In the list next to the hostname you typed, select a DNS suffix you want to use externally for the Azure AD Application Proxy.  It is recommended to use the default, -[tenantName].msapproxy.net where **[tenantName]** is your current Azure Active Directory tenant name (-mstephendemo.msappproxy.net).
    ![Azure NDES Application Proxy Configuration](images/aadjcert/azureconsole-appproxyconfig.png)
 8. Select **Passthrough** from the **Pre Authentication** list.
 9. Select **NDES WHFB Connectors** from the **Connector Group** list.
 10. Under **Additional Settings**, select **Default** from **Backend Application Timeout**.  Under the **Translate URLLs In** section, select **Yes** next to **Headers** and select **No** next to **Application Body**.
 11. Click **Add**.
 12. Sign-out of the Azure Portal.
+
     > [!IMPORTANT]
     > Write down the internal and external URLs.  You will need this information when you enroll the NDES-Intune Authentication certificate.
 
-
 ### Enroll the NDES-Intune Authentication certificate
 This task enrolls a client and server authentication certificate used by the Intune connector and the NDES server.
 
@@ -449,8 +464,8 @@ Sign-in the NDES server with access equivalent to _local administrators_.
 4. Click **Next** on the **Before You Begin** page.
 5. Click **Next** on the **Select Certificate Enrollment Policy** page.
 6. On the **Request Certificates** page, Select the **NDES-Intune Authentication** check box.
-7. Click the **More information is required to enroll for this certificate. Click here to configure settings** link   
-    ![Example of Certificate Properties Subject Tab - This is what shows when you click the above link](images/aadjcert/ndes-TLS-Cert-Enroll-subjectNameWithExternalName.png)
+7. Click the **More information is required to enroll for this certificate. Click here to configure settings** link
+   ![Example of Certificate Properties Subject Tab - This is what shows when you click the above link](images/aadjcert/ndes-TLS-Cert-Enroll-subjectNameWithExternalName.png)
 8. Under **Subject name**, select **Common Name** from the **Type** list.  Type the internal URL used in the previous task (without the https://, for example **ndes.corp.mstepdemo.net**) and then click **Add**.
 9. Under **Alternative name**, select **DNS** from the **Type** list.  Type the internal URL used in the previous task (without the https://, for example **ndes.corp.mstepdemo.net**).  Click **Add**. Type the external URL used in the previous task (without the https://, for example **ndes-mstephendemo.msappproxy.net**). Click **Add**. Click **OK** when finished.
 9. Click **Enroll**
@@ -462,44 +477,46 @@ This task configures the Web Server role on the NDES server to use the server au
 Sign-in the NDES server with access equivalent to _local administrator_.
 
 1. Start **Internet Information Services (IIS) Manager** from **Administrative Tools**.
-2. Expand the node that has the name of the NDES server.  Expand **Sites** and select **Default Web Site**. 
-![NDES IIS Console](images/aadjcert/ndes-iis-console.png)
+2. Expand the node that has the name of the NDES server.  Expand **Sites** and select **Default Web Site**.
+   ![NDES IIS Console](images/aadjcert/ndes-iis-console.png)
 3. Click **Bindings...*** under **Actions**.  Click **Add**.
-![NDES IIS Console](images/aadjcert/ndes-iis-bindings.png)
+   ![NDES IIS Console](images/aadjcert/ndes-iis-bindings.png)
 4. Select **https** from **Type**. Confirm the value for **Port** is **443**.
 5. Select the certificate you previously enrolled from the **SSL certificate** list.  Select **OK**.
-![NDES IIS Console](images/aadjcert/ndes-iis-bindings-add-443.png)
-6. Select **http** from the **Site Bindings** list.  Click **Remove**. 
+   ![NDES IIS Console](images/aadjcert/ndes-iis-bindings-add-443.png)
+6. Select **http** from the **Site Bindings** list.  Click **Remove**.
 7. Click **Close** on the **Site Bindings** dialog box.
-8. Close **Internet Information Services (IIS) Manager**. 
+8. Close **Internet Information Services (IIS) Manager**.
 
 ### Verify the configuration
 This task confirms the TLS configuration for the NDES server.
 
 Sign-in the NDES server with access equivalent to _local administrator_.
 
-#### Disable Internet Explorer Enhanced Security Configuration 
+#### Disable Internet Explorer Enhanced Security Configuration
 1. Open **Server Manager**. Click **Local Server** from the navigation pane.
 2. Click **On** next to **IE Enhanced Security Configuration** in the **Properties** section.
 3. In the **Internet Explorer Enhanced Security Configuration** dialog, under **Administrators**, select **Off**.  Click **OK**.
 4. Close **Server Manager**.
 
 #### Test the NDES web server
-1. Open **Internet Explorer**. 
-2. In the navigation bar, type 
-```https://[fqdnHostName]/certsrv/mscep/mscep.dll```
-where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.
+1. Open **Internet Explorer**.
+2. In the navigation bar, type
+   ```
+   https://[fqdnHostName]/certsrv/mscep/mscep.dll
+   ```
+   where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.
 
 A web page similar to the following should appear in your web browser.  If you do not see similar page, or you get a **503 Service unavailable**, ensure the NDES Service account as the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
 
 ![NDES IIS Console](images/aadjcert/ndes-https-website-test-01.png)
 
-Confirm the web site uses the server authentication certificate. 
+Confirm the web site uses the server authentication certificate.
 ![NDES IIS Console](images/aadjcert/ndes-https-website-test-01-show-cert.png)
 
 
 ## Configure Network Device Enrollment Services to work with Microsoft Intune
-You have successfully configured the Network Device Enrollment Services.  You must now modify the configuration to work with the Intune Certificate Connector.  In this task, you will enable the NDES server and http.sys to handle long URLs. 
+You have successfully configured the Network Device Enrollment Services.  You must now modify the configuration to work with the Intune Certificate Connector.  In this task, you will enable the NDES server and http.sys to handle long URLs.
 
 - Configure NDES to support long URLs
 
@@ -510,7 +527,7 @@ Sign-in the NDES server with access equivalent to _local administrator_.
 1. Start **Internet Information Services (IIS) Manager** from **Administrative Tools**.
 2. Expand the node that has the name of the NDES server.  Expand **Sites** and select **Default Web Site**.
 3. In the content pane, double-click **Request Filtering**.  Click **Edit Feature Settings...** in the action pane.
-![Intune NDES Request filtering](images/aadjcert/NDES-IIS-RequestFiltering.png)
+   ![Intune NDES Request filtering](images/aadjcert/NDES-IIS-RequestFiltering.png)
 4. Select **Allow unlisted file name extensions**.
 5. Select **Allow unlisted verbs**.
 6. Select **Allow high-bit characters**.
@@ -521,21 +538,23 @@ Sign-in the NDES server with access equivalent to _local administrator_.
 
 #### Configure Parameters for HTTP.SYS
 1. Open an elevated command prompt.
-2. Run the following commands <br>
-```reg add HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters /v MaxFieldLength /t REG_DWORD /d 65534``` <br>
-```reg add HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters /v MaxRequestBytes /t REG_DWORD /d 65534```<br>
+2. Run the following commands:
+   ```
+   reg add HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters /v MaxFieldLength /t REG_DWORD /d 65534
+   reg add HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters /v MaxRequestBytes /t REG_DWORD /d 65534
+   ```
 3. Restart the NDES server.
 
 ## Download, Install and Configure the Intune Certificate Connector
-The Intune Certificate Connector application enables Microsoft Intune to enroll certificates using your on-premises PKI for users on devices managed by Microsoft Intune.  
+The Intune Certificate Connector application enables Microsoft Intune to enroll certificates using your on-premises PKI for users on devices managed by Microsoft Intune.
 
-### Download Intune Certificate Connector 
+### Download Intune Certificate Connector
 Sign-in a workstation with access equivalent to a _domain user_.
 
 1. Sign-in to the [Microsoft Endpoint Manager admin center](https://endpoint.microsoft.com/).
 2. Select **Tenant administration** > **Connectors and tokens** > **Certificate connectors** > **Add**.
 3. Click **Download the certificate connector software** under the **Install Certificate Connectors** section.
-![Intune Certificate Authority](images/aadjcert/profile01.png)
+   ![Intune Certificate Authority](images/aadjcert/profile01.png)
 4. Save the downloaded file (NDESConnectorSetup.exe) to a location accessible from the NDES server.
 5. Sign-out of the Microsoft Endpoint Manager admin center.
 
@@ -544,30 +563,33 @@ Sign-in the NDES server with access equivalent to _domain administrator_.
 
 1. Copy the Intune Certificate Connector Setup (NDESConnectorSetup.exe) downloaded in the previous task locally to the NDES server.
 2. Run **NDESConnectorSetup.exe** as an administrator. If the setup shows a dialog that reads **Microsoft Intune NDES Connector requires HTTP Activation**, ensure you started the application as an administrator, then check HTTP Activation is enabled on the NDES server.
-3. On the **Microsoft Intune** page, click **Next**. 
+3. On the **Microsoft Intune** page, click **Next**.
    ![Intune Connector Install 01](images/aadjcert/intunecertconnectorinstall-01.png)
 4. Read the **End User License Agreement**.  Click **Next** to accept the agreement and to proceed with the installation.
 5. On the **Destination Folder** page, click **Next**.
 6. On the **Installation Options** page, select **SCEP and PFX Profile Distribution** and click **Next**.
    ![Intune Connector Install 03](images/aadjcert/intunecertconnectorinstall-03.png)
-7. On the **Client certificate for Microsoft Intune** page, Click **Select**.  Select the certificate previously enrolled for the NDES server. Click **Next**. 
+7. On the **Client certificate for Microsoft Intune** page, Click **Select**.  Select the certificate previously enrolled for the NDES server. Click **Next**.
    ![Intune Connector Install 05](images/aadjcert/intunecertconnectorinstall-05.png)
+
    > [!NOTE]
    > The **Client certificate for Microsoft Intune** page does not update after selecting the client authentication certificate.  However, the application rembers the selection and shows it in the next page.
 
 8. On the **Client certificate for the NDES Policy Module** page, verify the certificate information and then click **Next**.
 9. ON the **Ready to install Microsoft Intune Connector** page. Click **Install**.
    ![Intune Connector Install 06](images/aadjcert/intunecertconnectorinstall-06.png)
+
    > [!NOTE]
    > You can review the results of the install using the **SetupMsi.log** file located in the **C:\\NDESConnectorSetupMsi** folder
 
-10. When the installation completes, select **Launch Intune Connector** and click Finish. Proceed to the Configure the Intune Certificate Connector task. 
+10. When the installation completes, select **Launch Intune Connector** and click Finish. Proceed to the Configure the Intune Certificate Connector task.
     ![Intune Connector install 07](images/aadjcert/intunecertconnectorinstall-07.png)
 
 ### Configure the Intune Certificate Connector
 Sign-in the NDES server with access equivalent to _domain administrator_.
 
 1. The **NDES Connector** user interface should be open from the last task.
+
    > [!NOTE]
    > If the **NDES Connector** user interface is not open, you can start it from **\<install_Path>\NDESConnectorUI\NDESConnectorUI.exe**.
 
@@ -576,10 +598,11 @@ Sign-in the NDES server with access equivalent to _domain administrator_.
 
 3. Click **Sign-in**.  Type credentials for your Intune administrator, or tenant administrator that has the **Global Administrator** directory role.
    ![Intune Certificate Connector Configuration 02](images/aadjcert/intunecertconnectorconfig-02.png)
-   > [!IMPORTANT]
-   > The user account must have a valid Intune licenese assigned.  If the user account does not have a valid Intune license, the sign-in fails.
 
-4. Optionally, you can configure the NDES Connector for certificate revocation. If you want to do this, continue to the next task. Otherwise, Click **Close**, restart the **Intune Connector Service** and the **World Wide Web Publishing Service**, and skip the next task. 
+   > [!IMPORTANT]
+   > The user account must have a valid Intune license assigned.  If the user account does not have a valid Intune license, the sign-in fails.
+
+4. Optionally, you can configure the NDES Connector for certificate revocation. If you want to do this, continue to the next task. Otherwise, Click **Close**, restart the **Intune Connector Service** and the **World Wide Web Publishing Service**, and skip the next task.
 
 
 ### Configure the NDES Connector for certificate revocation (**Optional**)
@@ -591,7 +614,7 @@ Sign-in the certificate authority used by the NDES Connector with access equival
 1. Start the **Certification Authority** management console.
 2. In the navigation pane, right-click the name of the certificate authority and select **Properties**.
 3. Click the **Security** tab.  Click **Add**. In **Enter the object names to select** box, type **NDESSvc** (or the name you gave the NDES Service account).  Click *Check Names*. Click **OK**.  Select the NDES Service account from the **Group or user names** list. Select **Allow** for the **Issue and Manage Certificates** permission.  Click **OK**.
-![Configure Intune certificate revocation 02](images/aadjcert/intuneconfigcertrevocation-02.png)
+   ![Configure Intune certificate revocation 02](images/aadjcert/intuneconfigcertrevocation-02.png)
 4. Close the **Certification Authority**
 
 #### Enable the NDES Connector for certificate revocation
@@ -599,22 +622,26 @@ Sign-in the NDES server with access equivalent to _domain administrator_.
 
 1. Open the **NDES Connector** user interface (**\<install_Path>\NDESConnectorUI\NDESConnectorUI.exe**).
 2. Click the **Advanced** tab.  Select **Specify a different account username and password**.  TYpe the NDES service account username and password.  Click **Apply**.  Click **OK** to close the confirmation dialog box.  Click **Close**.
-![Intune Connector cert revocation configuration 04](images/aadjcert/intunecertconnectorconfig-04.png)
+   ![Intune Connector cert revocation configuration 04](images/aadjcert/intunecertconnectorconfig-04.png)
 3. Restart the **Intune Connector Service** and the **World Wide Web Publishing Service**.
 
 ### Test the NDES Connector
 Sign-in the NDES server with access equivalent to _domain admin_.
 
 1. Open a command prompt.
-2. Type the following command to confirm the NDES Connector's last connection time is current.</br>
-```reg query hklm\software\Microsoft\MicrosoftIntune\NDESConnector\ConnectionStatus```</br>
+2. Type the following command to confirm the NDES Connector's last connection time is current.
+   ```
+   reg query hklm\software\Microsoft\MicrosoftIntune\NDESConnector\ConnectionStatus
+   ```
 3. Close the command prompt.
 4. Open **Internet Explorer**.
-5. In the navigation bar, type</br>
-```https://[fqdnHostName]/certsrv/mscep/mscep.dll```</br>
-where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.</br>
-A web page showing a 403 error (similar to the following) should appear in your web browser.  If you do not see similar page, or you get a **503 Service unavailable**, ensure the NDES Service account as the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
-![NDES web site test after Intune Certificate Connector](images/aadjcert/ndes-https-website-test-after-intune-connector.png)
+5. In the navigation bar, type:
+   ```
+   https://[fqdnHostName]/certsrv/mscep/mscep.dll
+   ```
+   where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.
+   A web page showing a 403 error (similar to the following) should appear in your web browser.  If you do not see similar page, or you get a **503 Service unavailable**, ensure the NDES Service account as the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
+   ![NDES web site test after Intune Certificate Connector](images/aadjcert/ndes-https-website-test-after-intune-connector.png)
 6. Using **Server Manager**, enable **Internet Explorer Enhanced Security Configuration**.
 
 ## Create and Assign a Simple Certificate Enrollment Protocol (SCEP) Certificate Profile
@@ -629,7 +656,7 @@ Sign-in a workstation with access equivalent to a _domain user_.
 5. Under **Group Name**, type the name of the group.  For example, **AADJ WHFB Certificate Users**.
 6. Provide a **Group description**, if applicable.
 7. Select **Assigned** from the **Membership type** list.
-![Azure AD new group creation](images/aadjcert/azureadcreatewhfbcertgroup.png)
+   ![Azure AD new group creation](images/aadjcert/azureadcreatewhfbcertgroup.png)
 8. Click **Members**.  Use the  **Select members** pane to add members to this group. When finished click **Select**.
 9. Click **Create**.
 
@@ -646,6 +673,7 @@ Sign-in a workstation with access equivalent to a _domain user_.
 7. Next to **Description**, provide a description meaningful for your environment, then select **Next**.
 8. Select **User** as a certificate type.
 9. Configure **Certificate validity period** to match your organization.
+
    > [!IMPORTANT]
    > Remember that you need to configure your certificate authority to allow Microsoft Intune to configure certificate validity.
 
@@ -669,7 +697,7 @@ Sign-in a workstation with access equivalent to a _domain user_.
 3. Click **WHFB Certificate Enrollment**.
 4. Select **Properties**, and then click **Edit** next to the **Assignments** section.
 5. In the **Assignments** pane, select **Selected Groups** from the **Assign to** list.  Click **Select groups to include**.
-![WHFB SCEP Profile Assignment](images/aadjcert/profile04.png)
+   ![WHFB SCEP Profile Assignment](images/aadjcert/profile04.png)
 6. Select the **AADJ WHFB Certificate Users** group. Click **Select**.
 7. Click **Review + Save**, and then **Save**.
 
@@ -679,7 +707,7 @@ You have successfully completed the configuration.  Add users that need to enrol
 > [!div class="checklist"]
 > * Requirements
 > * Prepare Azure AD Connect
-> * Prepare the Network Device Enrollment Services (NDES) Service Acccount
+> * Prepare the Network Device Enrollment Services (NDES) Service Account
 > * Prepare Active Directory Certificate Authority
 > * Install and Configure the NDES Role
 > * Configure Network Device Enrollment Services to work with Microsoft Intune

From c4e05bee82eba5736e53e971e2433929df88ec2c Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 13:03:43 +0500
Subject: [PATCH 207/825] Procedural Changes

An unnecessary step was added in the procedure and has been removed.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8408
---
 .../mac-jamfpro-policies.md                   | 38 +++++++++----------
 1 file changed, 18 insertions(+), 20 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
index 5faeec9c8d..f1017e4215 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
@@ -750,18 +750,14 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
 
     ![Image of configuration settings](images/990742cd9a15ca9fdd37c9f695d1b9f4.png)
 
-4. Navigate to **Advanced Computer Searches**.
-    
-    ![A screenshot of a social media post Description automatically generated](images/95313facfdd5e1ea361981e0a2478fec.png)
-
-5. Select **Computer Management**. 
+4. Select your computer and click the gear icon on the top, select **Computer Management**
 
     ![Image of configuration settings](images/b6d671b2f18b89d96c1c8e2ea1991242.png)
 
-6. In **Packages**, select **+ New**. 
+5. In **Packages**, select **+ New**. 
     ![A picture containing bird Description automatically generated](images/57aa4d21e2ccc65466bf284701d4e961.png)
 
-7. In **New Package** Enter the following details:
+6. In **New Package** Enter the following details:
 
     **General tab**
     - Display Name: Leave it blank for now. Because it will be reset when you choose your pkg.
@@ -774,15 +770,17 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
     
     ![A screenshot of a computer screen Description automatically generated](images/1aa5aaa0a387f4e16ce55b66facc77d1.png)
 
-8. Select **Open**. Set the **Display Name** to **Microsoft Defender Advanced Threat Protection and Microsoft Defender Antivirus**.
+7. Select **Open**. Set the **Display Name** to **Microsoft Defender Advanced Threat Protection and Microsoft Defender Antivirus**.
 
+    **Manifest File** is not required. Microsoft Defender Advanced Threat Protection works without Manifest File.
+    
     **Options tab**<br> Keep default values.
 
     **Limitations tab**<br> Keep default values.
     
      ![Image of configuration settings](images/56dac54634d13b2d3948ab50e8d3ef21.png)
    
-9. Select **Save**. The package is uploaded to Jamf Pro. 
+8. Select **Save**. The package is uploaded to Jamf Pro. 
 
    ![Image of configuration settings](images/33f1ecdc7d4872555418bbc3efe4b7a3.png)
 
@@ -790,45 +788,45 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
    
    ![Image of configuration settings](images/1626d138e6309c6e87bfaab64f5ccf7b.png)
 
-10. Navigate to the **Policies** page.
+9. Navigate to the **Policies** page.
 
     ![Image of configuration settings](images/f878f8efa5ebc92d069f4b8f79f62c7f.png)
 
-11. Select **+ New** to create a new policy.
+10. Select **+ New** to create a new policy.
 
     ![Image of configuration settings](images/847b70e54ed04787e415f5180414b310.png)
 
 
-12. In **General** Enter the following details:
+11. In **General** Enter the following details:
 
     - Display name: MDATP Onboarding Contoso 200329 v100.86.92 or later
 
     ![Image of configuration settings](images/625ba6d19e8597f05e4907298a454d28.png)
 
-13. Select **Recurring Check-in**. 
+12. Select **Recurring Check-in**. 
     
     ![Image of configuration settings](images/68bdbc5754dfc80aa1a024dde0fce7b0.png)
 
   
-14. Select **Save**. 
+13. Select **Save**. 
  
-15. Select **Packages > Configure**.
+14. Select **Packages > Configure**.
  
     ![Image of configuration settings](images/8fb4cc03721e1efb4a15867d5241ebfb.png)
 
-16. Select the **Add** button next to **Microsoft Defender Advanced Threat Protection and Microsoft Defender Antivirus**.
+15. Select the **Add** button next to **Microsoft Defender Advanced Threat Protection and Microsoft Defender Antivirus**.
 
     ![Image of configuration settings](images/526b83fbdbb31265b3d0c1e5fbbdc33a.png)
 
-17. Select **Save**.
+16. Select **Save**.
 
     ![Image of configuration settings](images/9d6e5386e652e00715ff348af72671c6.png)
 
-18. Select the **Scope** tab.  
+17. Select the **Scope** tab.  
 
     ![Image of configuration settings](images/8d80fe378a31143db9be0bacf7ddc5a3.png)
 
-19. Select the target computers.
+18. Select the target computers.
 
     ![Image of configuration settings](images/6eda18a64a660fa149575454e54e7156.png)
 
@@ -844,7 +842,7 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
     
     ![Image of configuration settings](images/c9f85bba3e96d627fe00fc5a8363b83a.png)
 
-20. Select **Done**. 
+19. Select **Done**. 
 
     ![Image of configuration settings](images/99679a7835b0d27d0a222bc3fdaf7f3b.png)
 

From 8c4268ea229155638b6cb9a201fcaa9985a3a8ed Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 13:33:46 +0500
Subject: [PATCH 208/825] Addition of a right

A right was missing from the list. Added the basic info.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8551
---
 .../security-policy-settings/user-rights-assignment.md          | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
index 03d0a20cf4..6074db6073 100644
--- a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
+++ b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
@@ -69,6 +69,7 @@ The following table links to each security policy setting and provides the const
 | [Manage auditing and security log](manage-auditing-and-security-log.md)| SeSecurityPrivilege| 
 | [Modify an object label](modify-an-object-label.md) | SeRelabelPrivilege| 
 | [Modify firmware environment values](modify-firmware-environment-values.md)| SeSystemEnvironmentPrivilege| 
+| [Obtain an impersonation token for another user in the same session]) | SeDelegateSessionUserImpersonatePrivilege|
 | [Perform volume maintenance tasks](perform-volume-maintenance-tasks.md) | SeManageVolumePrivilege| 
 | [Profile single process](profile-single-process.md) | SeProfileSingleProcessPrivilege| 
 | [Profile system performance](profile-system-performance.md) | SeSystemProfilePrivilege| 
@@ -78,6 +79,7 @@ The following table links to each security policy setting and provides the const
 | [Shut down the system](shut-down-the-system.md) | SeShutdownPrivilege| 
 | [Synchronize directory service data](synchronize-directory-service-data.md)| SeSyncAgentPrivilege| 
 | [Take ownership of files or other objects](take-ownership-of-files-or-other-objects.md) | SeTakeOwnershipPrivilege| 
+
  
 ## Related topics
 

From 4b6d132328c9cf139c94f23508f34b880e329f34 Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Mon, 4 Jan 2021 18:37:55 +0530
Subject: [PATCH 209/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 34 ++++++++++++++++---
 1 file changed, 30 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 0a09d31840..19653b1a5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -30,13 +30,40 @@ ms.collection:
 <!--ASR guidance for deploying rules (links to Antonio’s blog, recommendations for deploying rules to small set of devices first, code signing, link to ASR Power BI template, and link to M365 security center reports) and 8.	Policy conflict (details about what happens with conflicting policies, what happens when settings from different policies are merged)
 -->
 
-Whether you're about to enable or have already deployed attack surface reduction rules for your organization, see the information in this article. By using the tips and best practices in this article, you can employ attack surface reduction rules successfully and avoid potential issues.
+The instructions to deploy attack surface reduction (ASR) rules in the most optimal way are available in [Demystifying attack surface reduction rules - Part 2](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-2/ba-p/1326565).
 
+It is highly recommended to test the ASR rules on a sample-like smaller set of devices. For information on the reasons for this recommendation and on how to deploy the ASR rules on a smaller set of devices, see **Use a phased approach** section, below, in this article.
+
+ > [!NOTE]
+> Whether you're about to enable or have already deployed ASR rules for your organization, see the information in this article. By using the tips and best practices in this article, you can employ attack surface reduction rules successfully and avoid potential issues.
+
+**Results of applying ASR rules**
+
+- The process of applying ASR rules on devices provides scope to query for reports. These queries can be implemented in the form of templates.
+
+<!--Denise, could you clarify as to whether the ASR PowerBI template is anything to do with the templates used to generate/retrieve reports as specified in Blog-3? In other words, does the link to PowerBI template have relevance in this section and context?
+-->
+
+- Once applying ASR rules to devices leads to querying for reports, there are a few sources from which reports can be queried. One of such sources is the [Microsoft 365 security center](https://security.microsoft.com)
+ 
+<!-- Denise, could we discuss as to why only the **Microsoft 365 security center** source is being cited here; Just for better understanding, I am putting forward this query
+-->
+- 
 ## Use a phased approach
 
-Before you roll out attack surface reduction rules in your organization, select a small set of managed devices to start. This approach enables you to see how attack surface reduction rules work in your environment and gives you flexibility in applying exclusions. You can do this with dynamic membership rules.
+Before you roll out attack surface reduction rules in your organization, select a small set of managed devices to start. 
 
-<!--Siddarth, we need to find the info about how to set up dynamic membership rules and add a procedure here.-->
+The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
+
+- **Better prospects for display of ASR rules impact** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
+- **Ease in determining ASR rule exclusion** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of **applicable-not applicable**  devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
+
+> [!IMPORTANT]
+> You can implement the process of applying ASR rules to a smaller device set by utilizing dynamic membership rules.
+
+**How to configure dynamic membership rules**
+
+<!--Denise, we might need Jody's help in acquiring inputs for this procedural section  of setting up dynamic membership rules.-->
 
 ## Use code signing for applications
 
@@ -115,7 +142,6 @@ Attack surface reduction (ASR) rules for MEM (Microsoft Endpoint Manager)-manage
 - Only the configurations for conflicting settings are held back.
 
 
-
 ## See the demystifying blogs
 
 The following table lists several blog posts that you might find helpful. All of these blogs are hosted on the [Microsoft Tech Community site](https://techcommunity.microsoft.com), under [Microsoft Defender for Endpoint](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/bg-p/MicrosoftDefenderATPBlog).

From 053da0a6581a34a3d11ed9fe2f0c921bc4725ab5 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 09:09:40 -0700
Subject: [PATCH 210/825] Update
 windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/mac-jamfpro-policies.md             | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
index f1017e4215..961a958e6f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
@@ -750,7 +750,7 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
 
     ![Image of configuration settings](images/990742cd9a15ca9fdd37c9f695d1b9f4.png)
 
-4. Select your computer and click the gear icon on the top, select **Computer Management**
+4. Select your computer and click the gear icon at the top, then select **Computer Management**.
 
     ![Image of configuration settings](images/b6d671b2f18b89d96c1c8e2ea1991242.png)
 
@@ -851,4 +851,3 @@ Follow the instructions on [Schedule scans with Microsoft Defender for Endpoint
 
 
 
-

From 7682c17362d6802ae7a7019d280feb3a5263afd1 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 09:22:32 -0700
Subject: [PATCH 211/825] Update
 windows/security/threat-protection/security-policy-settings/user-rights-assignment.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../security-policy-settings/user-rights-assignment.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
index 6074db6073..656b0c378b 100644
--- a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
+++ b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
@@ -69,7 +69,7 @@ The following table links to each security policy setting and provides the const
 | [Manage auditing and security log](manage-auditing-and-security-log.md)| SeSecurityPrivilege| 
 | [Modify an object label](modify-an-object-label.md) | SeRelabelPrivilege| 
 | [Modify firmware environment values](modify-firmware-environment-values.md)| SeSystemEnvironmentPrivilege| 
-| [Obtain an impersonation token for another user in the same session]) | SeDelegateSessionUserImpersonatePrivilege|
+| [Obtain an impersonation token for another user in the same session](impersonate-a-client-after-authentication.md) | SeDelegateSessionUserImpersonatePrivilege|
 | [Perform volume maintenance tasks](perform-volume-maintenance-tasks.md) | SeManageVolumePrivilege| 
 | [Profile single process](profile-single-process.md) | SeProfileSingleProcessPrivilege| 
 | [Profile system performance](profile-system-performance.md) | SeSystemProfilePrivilege| 

From 983c2b7934d0d13d22c8ed7cf2d3afced53968e8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 4 Jan 2021 08:56:40 -0800
Subject: [PATCH 212/825] Update
 microsoft-defender-antivirus-on-windows-server-2016.md

---
 .../microsoft-defender-antivirus-on-windows-server-2016.md    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index 8f3a10623e..c125ee496c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -10,8 +10,8 @@ ms.sitesec: library
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 12/17/2020
-ms.reviewer: pahuijbr
+ms.date: 01/04/2021
+ms.reviewer: pahuijbr, shwjha
 manager: dansimp
 ---
 

From dd45d68fa1220c50427affd1e9eb5e94aca69b19 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 09:56:54 -0700
Subject: [PATCH 213/825] Update
 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../privacy/windows-endpoints-20H2-non-enterprise-editions.md    | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index 635f62072e..b1df5bfda6 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -264,4 +264,3 @@ The following methodology was used to derive the network endpoints:
 |Xbox Live|The following endpoints are used for Xbox Live.|
 |||TLSv1.2/HTTPS/HTTP|dlassets-ssl.xboxlive.com|
 |||TLSv1.2/HTTPS|da.xboxservices.com|
-|

From 8bfcddfa8f7b7f97e5f23d5e3550eea548af08ea Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 4 Jan 2021 09:00:09 -0800
Subject: [PATCH 214/825] Update
 microsoft-defender-antivirus-on-windows-server-2016.md

---
 ...fender-antivirus-on-windows-server-2016.md | 19 ++++---------------
 1 file changed, 4 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index c125ee496c..9caf13e4a6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -46,7 +46,7 @@ The process of setting up and running Microsoft Defender Antivirus on a server p
 
 5. (As needed) [Configure automatic exclusions](#configure-automatic-exclusions)
 
-6. (Only if necessary) [Uninstall Microsoft Defender Antivirus](#need-to-uninstall-microsoft-defender-antivirus)
+6. (Only if necessary) [Set Microsoft Defender Antivirus to passive mode](#need-to-uninstall-microsoft-defender-antivirus)
 
 ## Enable the user interface on Windows Server 2016 or 2019
 
@@ -171,11 +171,11 @@ To help ensure security and performance, certain exclusions are automatically ad
 
 See [Configure exclusions in Microsoft Defender Antivirus on Windows Server](configure-server-exclusions-microsoft-defender-antivirus.md). 
 
-## Need to uninstall Microsoft Defender Antivirus?
+## Need to set Microsoft Defender Antivirus to passive mode?
 
-If you are using a non-Microsoft antivirus product as your primary antivirus solution, you can either disable Microsoft Defender Antivirus, or set it to passive mode, as described in the following procedures. 
+If you are using a non-Microsoft antivirus product as your primary antivirus solution, set Microsoft Defender Antivirus to passive mode.  
 
-### Set Microsoft Defender Antivirus to passive mode
+### Set Microsoft Defender Antivirus to passive mode using a registry key
 
 If you are using Windows Server, version 1803 or Windows Server 2019, you can set Microsoft Defender Antivirus to passive mode by setting the following registry key:
 - Path: `HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection`
@@ -193,17 +193,6 @@ If you are using Windows Server, version 1803 or Windows Server 2019, you can se
     
     Microsoft Defender Antivirus will still run normally without the user interface, but the user interface cannot be enabled if you disable the core **Windows Defender** feature.
 
-### Disable Microsoft Defender Antivirus using PowerShell
-
->[!NOTE]
->You can't uninstall the Windows Security app, but you can disable the interface with these instructions.
-
-The following PowerShell cmdlet uninstalls Microsoft Defender Antivirus on Windows Server 2016 or 2019:
-
-```PowerShell
-Uninstall-WindowsFeature -Name Windows-Defender
-```
-
 ### Turn off the Microsoft Defender Antivirus user interface using PowerShell
 
 To turn off the Microsoft Defender Antivirus GUI, use the following PowerShell cmdlet:

From 180cad0aa3ace97c1986a531f3557429f52cb456 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 19:00:20 +0200
Subject: [PATCH 215/825] clean linter warnings

---
 .../linux-support-install.md                  | 27 ++++++++++++++++---
 1 file changed, 24 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
index 9a2bf09a0d..0f1f9c1af8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
@@ -24,7 +24,6 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md)
@@ -36,9 +35,11 @@ An error in installation may or may not result in a meaningful error message by
  ```bash
  sudo journalctl | grep 'microsoft-mdatp'  > installation.log
 ```
+
 ```bash
  grep 'postinstall end' installation.log
 ```
+
 ```Output
  microsoft-mdatp-installer[102243]: postinstall end [2020-03-26 07:04:43OURCE +0000] 102216
  ```
@@ -54,6 +55,7 @@ Check if the mdatp service is running:
 ```bash
 systemctl status mdatp
 ```
+
 ```Output
  ● mdatp.service - Microsoft Defender for Endpoint
    Loaded: loaded (/lib/systemd/system/mdatp.service; enabled; vendor preset: enabled)
@@ -69,47 +71,59 @@ systemctl status mdatp
 ## Steps to troubleshoot if mdatp service isn't running
 
 1. Check if "mdatp" user exists:
+
     ```bash
     id "mdatp"
     ```
+
     If there’s no output, run
+
     ```bash
     sudo useradd --system --no-create-home --user-group --shell /usr/sbin/nologin mdatp
     ```
 
 2. Try enabling and restarting the service using:
+
     ```bash
     sudo systemctl enable mdatp
     ```
+
     ```bash
     sudo systemctl restart mdatp
     ```
 
 3. If mdatp.service isn't found upon running the previous command, run:
+
     ```bash
     sudo cp /opt/microsoft/mdatp/conf/mdatp.service <systemd_path>
     ```
+
     where ```<systemd_path>``` is
     ```/lib/systemd/system``` for Ubuntu and Debian distributions and
-    ```/usr/lib/systemd/system``` for Rhel, CentOS, Oracle and SLES. 
+    ```/usr/lib/systemd/system``` for Rhel, CentOS, Oracle and SLES.
 Then rerun step 2.
 
 4. If the above steps don’t work, check if SELinux is installed and in enforcing mode. If so, try setting it to permissive (preferably) or disabled mode. It can be done by setting the parameter `SELINUX` to "permissive" or "disabled" in `/etc/selinux/config` file, followed by reboot. Check the man-page of selinux for more details.
 Now try restarting the mdatp service using step 2. Revert the configuration change immediately though for security reasons after trying it and reboot.
 
-5. If `/opt` directory is a symbolic link, create a bind mount for `/opt/microsoft`. 
+5. If `/opt` directory is a symbolic link, create a bind mount for `/opt/microsoft`.
 
 6. Ensure that the daemon has executable permission.
+
     ```bash
     ls -l /opt/microsoft/mdatp/sbin/wdavdaemon
     ```
+
     ```Output
     -rwxr-xr-x 2 root root 15502160 Mar  3 04:47 /opt/microsoft/mdatp/sbin/wdavdaemon
     ```
+
     If the daemon doesn't have executable permissions, make it executable using:
+
     ```bash
     sudo chmod 0755 /opt/microsoft/mdatp/sbin/wdavdaemon
     ```
+
     and retry running step 2.
 
 7. Ensure that the file system containing wdavdaemon isn't mounted with "noexec".
@@ -117,24 +131,31 @@ Now try restarting the mdatp service using step 2. Revert the configuration chan
 ## If mdatp service is running, but EICAR text file detection doesn't work
 
 1. Check the file system type using:
+
     ```bash
     findmnt -T <path_of_EICAR_file>
     ```
+
     Currently supported file systems for on-access activity are listed [here](microsoft-defender-atp-linux.md#system-requirements). Any files outside these file systems won't be scanned.
 
 ## Command-line tool “mdatp” isn't working
 
 1. If running the command-line tool `mdatp` gives an error `command not found`, run the following command:
+
     ```bash
     sudo ln -sf /opt/microsoft/mdatp/sbin/wdavdaemonclient /usr/bin/mdatp
     ```
+
     and try again.
 
     If none of the above steps help, collect the diagnostic logs:
+
     ```bash
     sudo mdatp diagnostic create
     ```
+
     ```Output
     Diagnostic file created: <path to file>
     ```
+
     Path to a zip file that contains the logs will be displayed as an output. Reach out to our customer support with these logs.

From 5ca316ae4def3482b1b279e1ba4fe35ffae40d98 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 4 Jan 2021 09:02:47 -0800
Subject: [PATCH 216/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md           | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 083cbc45be..e2f17d8448 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -11,9 +11,9 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.reviewer: pahuijbr
+ms.reviewer: pahuijbr, shwjha
 manager: dansimp
-ms.date: 12/20/2020
+ms.date: 01/04/2021
 ---
 
 # Microsoft Defender Antivirus compatibility
@@ -47,7 +47,7 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       Yes                       |            Active mode            |
 | Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       No                        |            Active mode            |
 
-(<a id="fn1">1</a>)  On Windows Server 2016 or 2019, Microsoft Defender Antivirus does not enter passive or disabled mode automatically when you install non-Microsoft antivirus product. In those cases, [disable Microsoft Defender Antivirus, or set it to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-uninstall-microsoft-defender-antivirus) to prevent problems caused by having multiple antivirus products installed on a server.
+(<a id="fn1">1</a>)  On Windows Server 2016 or 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 
 If you are using Windows Server, version 1803 or Windows Server 2019, you set Microsoft Defender Antivirus to passive mode by setting this registry key:
 - Path: `HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection`

From 67cee76a3bb382c19cb9fbb68c1b3a901b8ef6d9 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 10:12:20 -0700
Subject: [PATCH 217/825] Update
 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../privacy/windows-endpoints-20H2-non-enterprise-editions.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index b1df5bfda6..ae59ae6afc 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -183,7 +183,7 @@ The following methodology was used to derive the network endpoints:
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
 ||||wdcpalt.microsoft.com|
 |||HTTPS/HTTP|*.smartscreen-prod.microsoft.com|
-||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*.smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
 |Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
 |||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|

From d40da597c5ff4b0c21e8bcaae2dea83d8e632345 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 4 Jan 2021 10:12:29 -0700
Subject: [PATCH 218/825] Update
 windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../privacy/windows-endpoints-20H2-non-enterprise-editions.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
index ae59ae6afc..66a3637398 100644
--- a/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
+++ b/windows/privacy/windows-endpoints-20H2-non-enterprise-editions.md
@@ -249,7 +249,7 @@ The following methodology was used to derive the network endpoints:
 |Windows Defender|The following endpoint is used for Windows Defender when Cloud-based Protection is enabled|TLSv1.2/HTTPS|wdcp.microsoft.com|
 ||||wdcpalt.microsoft.com|
 |||HTTPS/HTTP|*.smartscreen-prod.microsoft.com|
-||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*smartscreen.microsoft.com|
+||The following endpoints are used for Windows Defender SmartScreen reporting and notifications.|TLSv1.2|*.smartscreen.microsoft.com|
 |||TLSv1.2/HTTP|checkappexec.microsoft.com|
 |Windows Spotlight|The following endpoints are used to retrieve Windows Spotlight metadata that describes content, such as references to image locations, as well as suggested apps, Microsoft account notifications, and Windows tips.|TLSv1.2/HTTPS/HTTP|arc.msn.com*|
 |||TLSv1.2/HTTPS/HTTP|ris.api.iris.microsoft.com|

From b4aa169c7a4e67bb3cb39dec0bef6ed8c2f27e12 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 4 Jan 2021 09:17:12 -0800
Subject: [PATCH 219/825] Update
 microsoft-defender-antivirus-on-windows-server-2016.md

---
 ...fender-antivirus-on-windows-server-2016.md | 20 +++++++------------
 1 file changed, 7 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index 9caf13e4a6..c16f2a4930 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -34,19 +34,13 @@ While the functionality, configuration, and management are largely the same for
 
 The process of setting up and running Microsoft Defender Antivirus on a server platform includes several steps:
 
-1. [Enable the interface](#enable-the-user-interface-on-windows-server-2016-or-2019)
-
-2. [Install Microsoft Defender Antivirus](#install-microsoft-defender-antivirus-on-windows-server-2016-or-2019)
-
-2. [Verify Microsoft Defender Antivirus is running](#verify-microsoft-defender-antivirus-is-running)
-
-3. [Update your antimalware Security intelligence](#update-antimalware-security-intelligence)
-
-4. (As needed) [Submit samples](#submit-samples)
-
-5. (As needed) [Configure automatic exclusions](#configure-automatic-exclusions)
-
-6. (Only if necessary) [Set Microsoft Defender Antivirus to passive mode](#need-to-uninstall-microsoft-defender-antivirus)
+1. [Enable the interface](#enable-the-user-interface-on-windows-server-2016-or-2019).
+2. [Install Microsoft Defender Antivirus](#install-microsoft-defender-antivirus-on-windows-server-2016-or-2019).
+3. [Verify Microsoft Defender Antivirus is running](#verify-microsoft-defender-antivirus-is-running).
+4. [Update your antimalware Security intelligence](#update-antimalware-security-intelligence).
+5. (As needed) [Submit samples](#submit-samples).
+6. (As needed) [Configure automatic exclusions](#configure-automatic-exclusions).
+7. (Only if necessary) [Set Microsoft Defender Antivirus to passive mode](#need-to-set-microsoft-defender-antivirus-to-passive-mode).
 
 ## Enable the user interface on Windows Server 2016 or 2019
 

From 4727cb7d21be56f7bb961e55a60f4e57498f6751 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 19:19:22 +0200
Subject: [PATCH 220/825] add to installaton tsg

---
 .../linux-support-install.md                       | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
index 0f1f9c1af8..cf23de1bf6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
@@ -48,6 +48,20 @@ An output from the previous command with correct date and time of installation i
 
 Also check the [Client configuration](linux-install-manually.md#client-configuration) to verify the health of the product and detect the EICAR text file.
 
+## Make sure you have the correct package
+
+Please mind that the package you are installing is matching the host distribution and version.
+
+| package                       | distribution                             |
+|-------------------------------|------------------------------------------|
+| mdatp-rhel8.Linux.x86_64.rpm  | Oracle, RHEL and CentOS 8.x              |
+| mdatp-sles12.Linux.x86_64.rpm | SuSE Linux Enterprise Server 12.x        |
+| mdatp-sles15.Linux.x86_64.rpm | SuSE Linux Enterprise Server 15.x        |
+| mdatp.Linux.x86_64.rpm        | Oracle, RHEL and CentOS 7.x              |
+| mdatp.Linux.x86_64.deb        | Debian and Ubuntu 16.04, 18.04 and 20.04 |
+
+For [manual deployment](linux-install-manually.md), make sure the correct distro and version had been chosen.
+
 ## Installation failed
 
 Check if the mdatp service is running:

From 19aa1f6eb9adb899dfc58c19652515382de1e960 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 19:29:36 +0200
Subject: [PATCH 221/825] connectivity tsg

---
 .../linux-support-connectivity.md             | 22 ++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
index 74db615cdb..6c3ebda4cd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
@@ -24,7 +24,6 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md)
@@ -37,8 +36,29 @@ To test if Defender for Endpoint for Linux can communicate to the cloud with the
 mdatp connectivity test
 ```
 
+expected output:
+
+```output
+Testing connection with https://cdn.x.cp.wd.microsoft.com/ping ... [OK]
+Testing connection with https://eu-cdn.x.cp.wd.microsoft.com/ping ... [OK]
+Testing connection with https://wu-cdn.x.cp.wd.microsoft.com/ping ... [OK]
+Testing connection with https://x.cp.wd.microsoft.com/api/report ... [OK]
+Testing connection with https://winatp-gw-cus.microsoft.com/test ... [OK]
+Testing connection with https://winatp-gw-eus.microsoft.com/test ... [OK]
+Testing connection with https://winatp-gw-weu.microsoft.com/test ... [OK]
+Testing connection with https://winatp-gw-neu.microsoft.com/test ... [OK]
+Testing connection with https://winatp-gw-ukw.microsoft.com/test ... [OK]
+Testing connection with https://winatp-gw-uks.microsoft.com/test ... [OK]
+Testing connection with https://eu-v20.events.data.microsoft.com/ping ... [OK]
+Testing connection with https://us-v20.events.data.microsoft.com/ping ... [OK]
+Testing connection with https://uk-v20.events.data.microsoft.com/ping ... [OK]
+Testing connection with https://v20.events.data.microsoft.com/ping ... [OK]
+```
+
 If the connectivity test fails, check if the device has Internet access and if [any of the endpoints required by the product](microsoft-defender-atp-linux.md#network-connections) are blocked by a proxy or firewall.
 
+Failures with curl error 35 or 60, indicate certificate pinning rejection. Please check if the connection is under SSL or HTTPS inspection. If so, please whitelist MDE from such inspection.
+
 ## Troubleshooting steps for environments without proxy or with transparent proxy
 
 To test that a connection is not blocked in an environment without a proxy or with a transparent proxy, run the following command in the terminal:

From ca98df17c4314ec30de067a38f2ea3e6a80e7184 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 19:31:35 +0200
Subject: [PATCH 222/825] fix linter warnings

---
 .../linux-support-perf.md                     | 48 ++++++++++---------
 1 file changed, 26 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
index e6585fc97f..627b4a24e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
@@ -23,7 +23,6 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md)
@@ -43,19 +42,20 @@ The following steps can be used to troubleshoot and mitigate these issues:
     ```bash
     mdatp config real-time-protection --value disabled
     ```
+
     ```Output
     Configuration property updated
     ```
 
     If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Defender for Endpoint for Linux](linux-preferences.md).
 
-2. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint for Linux. 
+2. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint for Linux.
 
     > [!NOTE]
     > This feature is available in version 100.90.70 or newer.
 
     This feature is enabled by default on the `Dogfood` and `InsiderFast` channels. If you're using a different update channel, this feature can be enabled from the command line:
- 
+
     ```bash
     mdatp config real-time-protection-statistics --value enabled
     ```
@@ -71,6 +71,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
     ```bash
     mdatp config real-time-protection --value enabled
     ```
+
     ```Output
     Configuration property updated
     ```
@@ -80,16 +81,18 @@ The following steps can be used to troubleshoot and mitigate these issues:
     ```bash
     mdatp diagnostic real-time-protection-statistics --output json > real_time_protection.json
     ```
+
     > [!NOTE]
     > Using ```--output json``` (note the double dash) ensures that the output format is ready for parsing.
 
-    The output of this command will show all processes and their associated scan activity. 
+    The output of this command will show all processes and their associated scan activity.
 
-3. On your Linux system, download the sample Python parser **high_cpu_parser.py** using the command: 
+3. On your Linux system, download the sample Python parser **high_cpu_parser.py** using the command:
 
     ```bash
     wget -c https://raw.githubusercontent.com/microsoft/mdatp-xplat/master/linux/diagnostic/high_cpu_parser.py
     ```
+
     The output of this command should be similar to the following:
 
     ```Output
@@ -102,39 +105,40 @@ The following steps can be used to troubleshoot and mitigate these issues:
 
     100%[===========================================>] 1,020    --.-K/s   in 0s
     ```
+
 4. Next, type the following commands:
+
     ```bash
     chmod +x high_cpu_parser.py
     ```
+
     ```bash
     cat real_time_protection.json | python high_cpu_parser.py  > real_time_protection.log
     ```
 
       The output of the above is a list of the top contributors to performance issues. The first column is the process identifier (PID), the second column is te process name, and the last column is the number of scanned files, sorted by impact.
-    
+
     For example, the output of the command will be something like the below: 
 
     ```Output
     ... > python ~/repo/mdatp-xplat/linux/diagnostic/high_cpu_parser.py <~Downloads/output.json | head -n 10
-	27432 None 76703
-	73467 actool     1249
-	73914 xcodebuild 1081
-	73873 bash 1050
-	27475 None 836
-	1    launchd    407
-	73468 ibtool     344
-	549  telemetryd_v1   325
-	4764 None 228
-	125  CrashPlanService 164
+    27432 None 76703
+    73467 actool     1249
+    73914 xcodebuild 1081
+    73873 bash 1050
+    27475 None 836
+    1    launchd    407
+    73468 ibtool     344
+    549  telemetryd_v1   325
+    4764 None 228
+    125  CrashPlanService 164
     ```
-     
-    To improve the performance of Defender for Endpoint for Linux, locate the one with the highest number under the `Total files scanned` row and add an exclusion for it. For more information, see [Configure and validate exclusions for Defender for Endpoint for Linux](linux-exclusions.md).                
-    
+
+    To improve the performance of Defender for Endpoint for Linux, locate the one with the highest number under the `Total files scanned` row and add an exclusion for it. For more information, see [Configure and validate exclusions for Defender for Endpoint for Linux](linux-exclusions.md).
+
     >[!NOTE]
     > The application stores statistics in memory and only keeps track of file activity since it was started and real-time protection was enabled. Processes that were launched before or during periods when real time protection was off are not counted. Additionally, only events which triggered scans are counted.
 
 5. Configure Microsoft Defender ATP for Linux with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection.
 
-    For more information, see [Configure and validate exclusions for Microsoft Defender ATP for Linux](linux-exclusions.md).    
-
-
+    For more information, see [Configure and validate exclusions for Microsoft Defender ATP for Linux](linux-exclusions.md).

From 6229099d43ef75159b6d5166e680094ca362a122 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 19:43:03 +0200
Subject: [PATCH 223/825] update perf docs

---
 .../microsoft-defender-atp/linux-support-perf.md              | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
index 627b4a24e7..6e3ff940d3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
@@ -33,6 +33,8 @@ Real-time protection (RTP) is a feature of Defender for Endpoint for Linux that
 
 Depending on the applications that you are running and your device characteristics, you may experience suboptimal performance when running Defender for Endpoint for Linux. In particular, applications or system processes that access many resources over a short timespan can lead to performance issues in Defender for Endpoint for Linux.
 
+Before starting, **please make sure that other security products are not currenly running on the device**. Multilpe security products may conflict and impact the host performance.
+
 The following steps can be used to troubleshoot and mitigate these issues:
 
 1. Disable real-time protection using one of the following methods and observe whether the performance improves. This approach helps narrow down whether Defender for Endpoint for Linux is contributing to the performance issues.
@@ -49,6 +51,8 @@ The following steps can be used to troubleshoot and mitigate these issues:
 
     If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Defender for Endpoint for Linux](linux-preferences.md).
 
+    If the performance problem persists while real-time protection is off, the origin of the problem could the EDR component. In this case please contact customer support for further instructions and mitigation.
+
 2. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint for Linux.
 
     > [!NOTE]

From 89ac2af4ffd5d3ac81dfc1b5e4b4f0d06ff65095 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 20:07:30 +0200
Subject: [PATCH 224/825] add support for missing events

---
 windows/security/threat-protection/TOC.md     |  1 +
 .../linux-support-events.md                   | 94 +++++++++++++++++++
 2 files changed, 95 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 47925e97e7..59c4787025 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -302,6 +302,7 @@
 ##### [Troubleshoot installation issues](microsoft-defender-atp/linux-support-install.md)
 ##### [Troubleshoot cloud connectivity issues](microsoft-defender-atp/linux-support-connectivity.md)
 ##### [Troubleshoot performance issues](microsoft-defender-atp/linux-support-perf.md)
+##### [Troubleshoot performance issues](microsoft-defender-atp/linux-support-events.md)
 
 
 #### [Privacy](microsoft-defender-atp/linux-privacy.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
new file mode 100644
index 0000000000..f541d9d0d0
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
@@ -0,0 +1,94 @@
+---
+title: Troubleshoot missing events or alerts issues for Microsoft Defender ATP for Linux
+description: Troubleshoot missing events or alerts issues in Microsoft Defender ATP for Linux.
+keywords: microsoft, defender, atp, linux, events
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: dansimp
+author: dansimp
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+mms.collection: 
+- m365-security-compliance 
+- m365initiative-defender-endpoint 
+ms.topic: conceptual
+---
+
+# Troubleshoot missing events or alerts issues for Microsoft Defender for Endpoint for Linux
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+**Applies to:**
+
+- [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md)
+
+This article provides some general steps to mitigate missing events or alerts in the [security center](https://securitycenter.windows.com/) portal.
+
+Once MDE had been installed properly on a device, a device page will be generated in the portal and _File_, _Process_, _Network_ and other events should appear in the timeline and advanced hunting pages.
+In case events are not appearing or some types of events are missing, that could indicate some problem.
+
+## Missing network and login events
+
+MDE utilized `audit` framework from linux to track network and login activity.
+
+1. Make sure audit framework is working.
+
+    ```bash
+    service auditd status
+    ```
+
+    expected output:
+
+    ```output
+    ● auditd.service - Security Auditing Service
+    Loaded: loaded (/usr/lib/systemd/system/auditd.service; enabled; vendor preset: enabled)
+    Active: active (running) since Mon 2020-12-21 10:48:02 IST; 2 weeks 0 days ago
+        Docs: man:auditd(8)
+            https://github.com/linux-audit/audit-documentation
+    Process: 16689 ExecStartPost=/sbin/augenrules --load (code=exited, status=1/FAILURE)
+    Process: 16665 ExecStart=/sbin/auditd (code=exited, status=0/SUCCESS)
+    Main PID: 16666 (auditd)
+        Tasks: 25
+    CGroup: /system.slice/auditd.service
+            ├─16666 /sbin/auditd
+            ├─16668 /sbin/audispd
+            ├─16670 /usr/sbin/sedispatch
+            └─16671 /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin -d
+    ```
+
+2. If auditd is stopped, please start it.
+
+    ```bash
+    service auditd start
+    ```
+
+**On SLES15** systems, SYSCALL auditing in `auditd` is disabled by default and can explain missing events.
+
+1. To validate that SYSCALL auditing is not disabeld, list the current audit rules:
+
+    ```bash
+    sudo auditctl -l
+    ```
+
+    if the following line is present, please remove it or edit it to enable MDE to track specific SYSCALLs.
+
+    ```output
+    -a task, never
+    ```
+
+    audit rules are located at `/etc/audit/rules.d/audit.rules`.
+
+## Missing file events
+
+File events are collected with `fanotify` framework. In case some or all file events are missing please make sure fanotify is enabled on the device and that the file system is [supported](microsoft-defender-atp-linux#system-requirements).
+
+List the filesystems on the machine with:
+
+```bash
+df -Th
+```

From 34914b978bc750593e5e0a5ab1ccdf68a8672594 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 4 Jan 2021 20:12:04 +0200
Subject: [PATCH 225/825] fix title

---
 windows/security/threat-protection/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 59c4787025..25a5417d95 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -302,7 +302,7 @@
 ##### [Troubleshoot installation issues](microsoft-defender-atp/linux-support-install.md)
 ##### [Troubleshoot cloud connectivity issues](microsoft-defender-atp/linux-support-connectivity.md)
 ##### [Troubleshoot performance issues](microsoft-defender-atp/linux-support-perf.md)
-##### [Troubleshoot performance issues](microsoft-defender-atp/linux-support-events.md)
+##### [Troubleshoot missing events issues](microsoft-defender-atp/linux-support-events.md)
 
 
 #### [Privacy](microsoft-defender-atp/linux-privacy.md)

From 6a3ab419c597adbc1bd1df06f52d12cb055a1930 Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 10:41:37 -0800
Subject: [PATCH 226/825] Update linux-support-events.md

---
 .../microsoft-defender-atp/linux-support-events.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
index f541d9d0d0..0d035c7cf7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
@@ -29,12 +29,12 @@ ms.topic: conceptual
 
 This article provides some general steps to mitigate missing events or alerts in the [security center](https://securitycenter.windows.com/) portal.
 
-Once MDE had been installed properly on a device, a device page will be generated in the portal and _File_, _Process_, _Network_ and other events should appear in the timeline and advanced hunting pages.
+Once Microsoft Defender for Endpoint has been installed properly on a device, a device page will be generated in the portal and _File_, _Process_, _Network_ and other events should appear in the timeline and advanced hunting pages.
 In case events are not appearing or some types of events are missing, that could indicate some problem.
 
 ## Missing network and login events
 
-MDE utilized `audit` framework from linux to track network and login activity.
+Microsoft Defender for Endpoint utilized `audit` framework from linux to track network and login activity.
 
 1. Make sure audit framework is working.
 
@@ -75,7 +75,7 @@ MDE utilized `audit` framework from linux to track network and login activity.
     sudo auditctl -l
     ```
 
-    if the following line is present, please remove it or edit it to enable MDE to track specific SYSCALLs.
+    if the following line is present, please remove it or edit it to enable Microsoft Defender for Endpoint to track specific SYSCALLs.
 
     ```output
     -a task, never

From 7b08a9c1a6217a54e0bb988c474bd5f995653c2e Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 10:42:38 -0800
Subject: [PATCH 227/825] Update linux-support-perf.md

---
 .../microsoft-defender-atp/linux-support-perf.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
index 6e3ff940d3..ab5e272c34 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
@@ -51,7 +51,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
 
     If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Defender for Endpoint for Linux](linux-preferences.md).
 
-    If the performance problem persists while real-time protection is off, the origin of the problem could the EDR component. In this case please contact customer support for further instructions and mitigation.
+    If the performance problem persists while real-time protection is off, the origin of the problem could be the endpoint detection and response component. In this case please contact customer support for further instructions and mitigation.
 
 2. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint for Linux.
 

From afae7f15ddac1bb06551620e897c1cc19ce1d1bf Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 10:49:09 -0800
Subject: [PATCH 228/825] fix link

---
 .../microsoft-defender-atp/linux-support-events.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
index 0d035c7cf7..af7e797106 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
@@ -85,7 +85,7 @@ Microsoft Defender for Endpoint utilized `audit` framework from linux to track n
 
 ## Missing file events
 
-File events are collected with `fanotify` framework. In case some or all file events are missing please make sure fanotify is enabled on the device and that the file system is [supported](microsoft-defender-atp-linux#system-requirements).
+File events are collected with `fanotify` framework. In case some or all file events are missing please make sure fanotify is enabled on the device and that the file system is [supported](microsoft-defender-atp-linux.md#system-requirements).
 
 List the filesystems on the machine with:
 

From 4667c3bd23d80cd3ce5d077848ee3f69e9630d49 Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 10:55:44 -0800
Subject: [PATCH 229/825] Update linux-support-connectivity.md

---
 .../microsoft-defender-atp/linux-support-connectivity.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
index 6c3ebda4cd..9e0a8a30c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
@@ -57,7 +57,7 @@ Testing connection with https://v20.events.data.microsoft.com/ping ... [OK]
 
 If the connectivity test fails, check if the device has Internet access and if [any of the endpoints required by the product](microsoft-defender-atp-linux.md#network-connections) are blocked by a proxy or firewall.
 
-Failures with curl error 35 or 60, indicate certificate pinning rejection. Please check if the connection is under SSL or HTTPS inspection. If so, please whitelist MDE from such inspection.
+Failures with curl error 35 or 60, indicate certificate pinning rejection. Please check if the connection is under SSL or HTTPS inspection. If so, add Microsoft Defender for Endpoint to the allow list.
 
 ## Troubleshooting steps for environments without proxy or with transparent proxy
 

From 130009ae7bcd5672df9e108b244bf0873dd03aef Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Mon, 4 Jan 2021 11:52:09 -0800
Subject: [PATCH 230/825] pencil edit

---
 .../microsoft-defender-atp/basic-permissions.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index af97cb1355..a92747f148 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -47,7 +47,7 @@ You can assign users with one of the following levels of permissions:
     > [!NOTE]
     > You need to run the PowerShell cmdlets in an elevated command-line.
 
-- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://docs.microsoft.com/powershell/module/msonline/connect-msolservice?view=azureadps-1.0).
+- Connect to your Azure Active Directory. For more information, see [Connect-MsolService](https://docs.microsoft.com/powershell/module/msonline/connect-msolservice?view=azureadps-1.0).
 
 **Full access** <br>
 Users with full access can log in, view all system information and resolve alerts, submit files for deep analysis, and download the onboarding package.

From 5fa5d4f66a21aee83bc4c95be59251909fb92f6e Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 11:54:51 -0800
Subject: [PATCH 231/825] Update
 windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/get-ip-statistics.md                  | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 4f76236a07..29ce380e88 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -95,7 +95,6 @@ Content-type: application/json
 ```
 
 
-
 | Name | Description |
 | :--- | :---------- |
 | Org prevalence | the distinct count of devices that opened network connection to this IP. |

From 3e3f2ce52f529fd45b9418b829c4088adb7c7c3f Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 11:54:59 -0800
Subject: [PATCH 232/825] Update
 windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/get-ip-statistics.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 29ce380e88..04c6b1641c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -101,5 +101,5 @@ Content-type: application/json
 | Org first seen | the first connection for this IP in the organization. |
 | Org last seen  | the last connection for this IP in the organization. |
 
-> [!Note]
+> [!NOTE]
 > This statistic information is based on data from the past 30 days. 

From deb2b53038b3bdeedd956430e3c3c77b3308a5d6 Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 4 Jan 2021 11:55:42 -0800
Subject: [PATCH 233/825] Update get-ip-statistics.md

---
 .../microsoft-defender-atp/get-ip-statistics.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 04c6b1641c..ca568de79c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -42,7 +42,7 @@ Permission type |	Permission	|	Permission display name
 Application |	Ip.Read.All |	'Read IP address profiles'
 Delegated (work or school account) | Ip.Read.All |	'Read IP address profiles'
 
->[!Note]
+>[!NOTE]
 > When obtaining a token using user credentials:
 >- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
 

From 11d5cadf01f2d447f0f36f18552fe5cb5207b532 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 01:20:58 +0100
Subject: [PATCH 234/825] Update filesystem-csp.md

Based on the implied confusion in issue ticket #8387 (**FileSystem CSP examples**), I noticed that the 2 **Note** lines in this document do not adhere to the MS standard of using colored Note blobs. This PR aims to rectify that issue, hoping that this may clarify the following:

> FileSystem CSP is only supported in Windows 10 Mobile.

Thanks to @joinimran for mentioning this fact and making me aware of this issue.

Changes proposed:
- update/upgrade 2 **Note** lines to use standard Microsoft Note blob formatting
- encapsulate filename `winnt.h` in MD back ticks to display as monospaced font

Whitespace changes:
- Remove 10 empty lines at the end of the document
- reduce double blank lines to single (3 occurrences)
- remove all redundant end-of-line blank spaces
- bullet point lists: reduce triple consecutive blank space to single

Closes #8387
---
 .../client-management/mdm/filesystem-csp.md   | 64 ++++++++-----------
 1 file changed, 25 insertions(+), 39 deletions(-)

diff --git a/windows/client-management/mdm/filesystem-csp.md b/windows/client-management/mdm/filesystem-csp.md
index 9bad3fe712..39061b8c6d 100644
--- a/windows/client-management/mdm/filesystem-csp.md
+++ b/windows/client-management/mdm/filesystem-csp.md
@@ -14,41 +14,38 @@ ms.date: 06/26/2017
 
 # FileSystem CSP
 
-
 The FileSystem configuration service provider is used to query, add, modify, and delete files, file directories, and file attributes on the mobile device. It can retrieve information about or manage files in ROM, files in persistent store and files on any removable storage card that is present in the device. It works for files that are hidden from the user as well as those that are visible to the user.
 
-> **Note**  FileSystem CSP is only supported in Windows 10 Mobile.
-> 
-> 
-> 
-> **Note**   This configuration service provider requires the ID\_CAP\_CSP\_FOUNDATION and ID\_CAP\_CSP\_OEM capabilities to be accessed from a network configuration application.
+> [!NOTE]
+> FileSystem CSP is only supported in Windows 10 Mobile.
 
- 
+> [!NOTE]
+> This configuration service provider requires the ID\_CAP\_CSP\_FOUNDATION and ID\_CAP\_CSP\_OEM capabilities to be accessed from a network configuration application.
 
 The following diagram shows the FileSystem configuration service provider management object in tree format as used by OMA DM. The OMA Client Provisioning protocol is not supported by this configuration service provider.
 
 ![filesystem csp (dm)](images/provisioning-csp-filesystem-dm.png)
 
-<a href="" id="filesystem"></a>**FileSystem**  
+<a href="" id="filesystem"></a>**FileSystem**
 Required. Defines the root of the file system management object. It functions as the root directory for file system queries.
 
 Recursive queries or deletes are not supported for this element. Add commands will add a new file or directory under the root path.
 
 The following properties are supported for the root node:
 
--   `Name`: The root node name. The Get command is the only supported command.
+- `Name`: The root node name. The Get command is the only supported command.
 
--   `Type`: The MIME type of the file, which is com.microsoft/windowsmobile/1.1/FileSystemMO. The Get command is the only supported command.
+- `Type`: The MIME type of the file, which is com.microsoft/windowsmobile/1.1/FileSystemMO. The Get command is the only supported command.
 
--   `Format`: The format, which is `node`. The Get command is the only supported command.
+- `Format`: The format, which is `node`. The Get command is the only supported command.
 
--   `TStamp`: A standard OMA property that indicates the last time the file directory was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
+- `TStamp`: A standard OMA property that indicates the last time the file directory was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
 
--   `Size`: Not supported.
+- `Size`: Not supported.
 
--   `msft:SystemAttributes`: A custom property that contains file directory attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file winnt.h. This supports the Get command and the Replace command.
+- `msft:SystemAttributes`: A custom property that contains file directory attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file winnt.h. This supports the Get command and the Replace command.
 
-<a href="" id="file-directory"></a>***file directory***  
+<a href="" id="file-directory"></a>***file directory***
 Optional. Returns the name of a directory in the device file system. Any *file directory* element can contain directories and files as child elements.
 
 The Get command returns the name of the file directory. The Get command with `?List=Struct` will recursively return all child element names (including sub-directory names). The Get command with `?list=StructData` query is not supported and returns a 406 error code.
@@ -61,19 +58,19 @@ The Delete command is used to delete all files and subfolders under this *file d
 
 The following properties are supported for file directories:
 
--   `Name`: The file directory name. The Get command is the only supported command.
+- `Name`: The file directory name. The Get command is the only supported command.
 
--   `Type`: The MIME type of the file, which an empty string for directories that are not the root node. The Get command is the only supported command.
+- `Type`: The MIME type of the file, which an empty string for directories that are not the root node. The Get command is the only supported command.
 
--   `Format`: The format, which is `node`. The Get command is the only supported command.
+- `Format`: The format, which is `node`. The Get command is the only supported command.
 
--   `TStamp`: A standard OMA property that indicates the last time the file directory was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
+- `TStamp`: A standard OMA property that indicates the last time the file directory was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
 
--   `Size`: Not supported.
+- `Size`: Not supported.
 
--   `msft:SystemAttributes`: A custom property that contains file directory attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file winnt.h. This supports the Get command and the Replace command.
+- `msft:SystemAttributes`: A custom property that contains file directory attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file `winnt.h`. This supports the Get command and the Replace command.
 
-<a href="" id="file-name"></a>***file name***  
+<a href="" id="file-name"></a>***file name***
 Optional. Return a file in binary format. If the file is too large for the configuration service to return, it returns error code 413 (Request entity too large) instead.
 
 The Delete command deletes the file.
@@ -86,29 +83,18 @@ The Get command is not supported on a *file name* element, only on the propertie
 
 The following properties are supported for files:
 
--   `Name`: The file name. The Get command is the only supported command.
+- `Name`: The file name. The Get command is the only supported command.
 
--   `Type`: The MIME type of the file. This value is always set to the generic MIME type: `application/octet-stream`. The Get command is the only supported command.
+- `Type`: The MIME type of the file. This value is always set to the generic MIME type: `application/octet-stream`. The Get command is the only supported command.
 
--   `Format`: The format, which is b64 encoded for binary data is sent over XML, and bin format for binary data sent over wbxml. The Get command is the only supported command.
+- `Format`: The format, which is b64 encoded for binary data is sent over XML, and bin format for binary data sent over wbxml. The Get command is the only supported command.
 
--   `TStamp`: A standard OMA property that indicates the last time the file was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
+- `TStamp`: A standard OMA property that indicates the last time the file was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
 
--   `Size`: The unencoded file content size in bytes. The Get command is the only supported command.
+- `Size`: The unencoded file content size in bytes. The Get command is the only supported command.
 
--   `msft:SystemAttributes`: A custom property that contains file attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file winnt.h. This supports the Get command and the Replace command.
+- `msft:SystemAttributes`: A custom property that contains file attributes. This value is an integer bit mask that corresponds to the FILE\_ATTRIBUTE values and flags defined in the header file winnt.h. This supports the Get command and the Replace command.
 
 ## Related topics
 
-
 [Configuration service provider reference](configuration-service-provider-reference.md)
-
- 
-
- 
-
-
-
-
-
-

From 3c65f4b71a4ca4c3613ace1822a29593f4d940d3 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 4 Jan 2021 16:52:22 -0800
Subject: [PATCH 235/825] Updated the levels for the WDAC Wizard topic

The WDAC Wizard articles are now parented to "Create your initial WDAC policy"
---
 .../windows-defender-application-control/TOC.md        | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/TOC.md b/windows/security/threat-protection/windows-defender-application-control/TOC.md
index b29a8d0e37..a366bf6b41 100644
--- a/windows/security/threat-protection/windows-defender-application-control/TOC.md
+++ b/windows/security/threat-protection/windows-defender-application-control/TOC.md
@@ -21,11 +21,11 @@
 ##### [Create a WDAC policy for fully-managed devices](create-wdac-policy-for-fully-managed-devices.md)
 ##### [Create a WDAC policy for fixed-workload devices](create-initial-default-policy.md)
 ##### [Microsoft recommended block rules](microsoft-recommended-block-rules.md)
-### [Using the WDAC Wizard tool](wdac-wizard.md)
-#### [Create a base WDAC policy](wdac-wizard-create-base-policy.md)
-#### [Create a supplemental WDAC policy](wdac-wizard-create-supplemental-policy.md)
-#### [Editing a WDAC policy](wdac-wizard-editing-policy.md)
-#### [Merging multiple WDAC policies](wdac-wizard-merging-policies.md)
+#### [Using the WDAC Wizard tool](wdac-wizard.md)
+##### [Create a base WDAC policy with the Wizard](wdac-wizard-create-base-policy.md)
+##### [Create a supplemental WDAC policy with the Wizard](wdac-wizard-create-supplemental-policy.md)
+##### [Editing a WDAC policy with the Wizard](wdac-wizard-editing-policy.md)
+##### [Merging multiple WDAC policies with the Wizard](wdac-wizard-merging-policies.md)
 
 
 ## [Windows Defender Application Control deployment guide](windows-defender-application-control-deployment-guide.md)

From 1ad8565b2bbf7e3f6affdd37a51761c3ca0e25ca Mon Sep 17 00:00:00 2001
From: MatthewMWR <MatthewMWR@users.noreply.github.com>
Date: Mon, 4 Jan 2021 16:57:29 -0800
Subject: [PATCH 236/825] Added description of results folder and results.xml

Based on feedback from Intune customers, added description of results folder and results.xml, and powershell examples of working with the results.
---
 .../mdm/diagnosticlog-csp.md                  | 101 +++++++++++++++++-
 1 file changed, 100 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 2c49067d90..a3099a5a17 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -199,8 +199,107 @@ A Get to the above URI will return the results of the data gathering for the las
 
 Each data gathering node is annotated with the HRESULT of the action and the collection is also annotated with an overall HRESULT. In this example, note that the mdmdiagnosticstool.exe command failed.
 
-The zip file which is created also contains a results.xml file whose contents align to the Data section in the SyncML for ArchiveResults. Accordingly, an IT admin using the zip file for troubleshooting can determine the order and success of each directive without needing a permanent record of the SyncML value for DiagnosticArchive/ArchiveResults.
+### Making use of the uploaded data
+The zip archive which is created and uploaded by the CSP contains a folder structure like the following:
+```
+PS C:\> dir C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z
 
+    Directory: C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z
+
+Mode                 LastWriteTime         Length Name
+----                 -------------         ------ ----
+la---            1/4/2021  2:45 PM                1
+la---            1/4/2021  2:45 PM                2
+la---           12/2/2020  6:27 PM           2701 results.xml
+```
+Each data gathering directive from the original `Collection` XML corresponds to a folder in the output. For example, if the first directive was <RegistryKey HRESULT="0">HKLM\Software\Policies</RegistryKey> then folder `1` will contain the corresponding `export.reg` file.
+
+The `results.xml` file is the authoritative map to the output. It includes a status code for each directive. The order of the directives in the file corresponds to the order of the output folders. Using `results.xml` the administrator can see what data was gathered, what failures may have occurred, and which folders contain which output. For example, the following `results.xml` content indicates that registry export of HKLM\Software\Policies was successful and the data can be found in folder `1`. It also indicates that `netsh.exe wlan show profiles` command failed.
+```xml
+<Collection HRESULT="0">
+    <ID>268b3056-8c15-47c6-a1bd-4bc257aef7b2</ID>
+    <RegistryKey HRESULT="0">HKLM\Software\Policies</RegistryKey>
+    <Command HRESULT="-2147024895">%windir%\system32\netsh.exe wlan show profiles</Command>
+</Collection>
+```
+
+Administrators can apply automation to 'results.xml' to create their own preferred views of the data. For example, the following PowerShell one-liner extracts from the xml an ordered list of the directives with status code and details.
+```powershell
+Select-XML -Path results.xml -XPath '//RegistryKey | //Command | //Events | //FoldersFiles' | Foreach-Object -Begin {$i=1} -Process { [pscustomobject]@{DirectiveNumber=$i; DirectiveHRESULT=$_.Node.HRESULT; DirectiveInput=$_.Node.('#text')} ; $i++}
+```
+This example produces output similar to the following.
+```
+DirectiveNumber DirectiveHRESULT DirectiveInput
+--------------- ---------------- --------------
+              1 0                HKLM\Software\Policies
+              2 0                HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall
+              3 0                HKLM\Software\Microsoft\IntuneManagementExtension
+              4 0                HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall
+              5 0                %windir%\system32\ipconfig.exe /all
+              6 0                %windir%\system32\netsh.exe advfirewall show allprofiles
+              7 0                %windir%\system32\netsh.exe advfirewall show global
+              8 -2147024895      %windir%\system32\netsh.exe wlan show profiles
+```
+
+The next example extracts the zip archive into a customized flattened file structure. Each file name includes the directive number, HRESULT, and so on. This example could be customized to make different choices about what information to include in the file names and what formatting choices to make for special characters.
+```powershell
+param( $DiagnosticArchiveZipPath = "C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z.zip" )
+
+#region Formatting Choices
+$flatFileNameTemplate = '({0:D2}) ({3}) (0x{2:X8})'
+$maxLengthForInputTextPassedToOutput = 80
+#endregion
+
+#region Create Output Folders and Expand Zip
+$diagnosticArchiveTempUnzippedPath = $DiagnosticArchiveZipPath + "_expanded"
+if(-not (Test-Path $diagnosticArchiveTempUnzippedPath)){mkdir $diagnosticArchiveTempUnzippedPath}
+$reformattedArchivePath = $DiagnosticArchiveZipPath + "_formatted"
+if(-not (Test-Path $reformattedArchivePath)){mkdir $reformattedArchivePath}
+Expand-Archive -Path $DiagnosticArchiveZipPath -DestinationPath $diagnosticArchiveTempUnzippedPath
+#endregion
+
+#region Discover and Move/rename Files
+$resultElements = ([xml](Get-Content -Path (Join-Path -Path $diagnosticArchiveTempUnzippedPath -ChildPath "results.xml"))).Collection.ChildNodes | Foreach-Object{ $_ }
+$n = 0
+foreach( $element in $resultElements )
+{
+    $directiveNumber = $n
+    $n++
+    if($element.Name -eq 'ID'){ continue }
+    $directiveType = $element.Name
+    $directiveStatus = [int]$element.Attributes.ItemOf('HRESULT').psbase.Value
+    $directiveUserInputRaw = $element.InnerText
+    $directiveUserInputFileNameCompatible = $directiveUserInputRaw -replace '[\\|/\[\]<>\:"\?\*%\.\s]','_'
+    $directiveUserInputTrimmed = $directiveUserInputFileNameCompatible.substring(0, [System.Math]::Min($maxLengthForInputTextPassedToOutput, $directiveUserInputFileNameCompatible.Length))
+    $directiveSummaryString = $flatFileNameTemplate -f $directiveNumber,$directiveType,$directiveStatus,$directiveUserInputTrimmed
+    $directiveOutputFolder = Join-Path -Path $diagnosticArchiveTempUnzippedPath -ChildPath $directiveNumber
+    $directiveOutputFiles = Get-ChildItem -Path $directiveOutputFolder -File
+    foreach( $file in $directiveOutputFiles)
+    {
+        $leafSummaryString = $directiveSummaryString,$file.Name -join ' '
+        Copy-Item $file.FullName -Destination (Join-Path -Path $reformattedArchivePath -ChildPath $leafSummaryString)
+    }
+}
+#endregion 
+Remove-Item -Path $diagnosticArchiveTempUnzippedPath -Force -Recurse
+```
+That example script produces a set of files similar to the following, which can be a useful view for an administrator interactively browsing the results without needing to navigate any sub-folders or refer to `results.xml` repeatedly. 
+```
+PS C:\> dir C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z.zip_formatted | format-table Length,Name
+
+  Length Name
+  ------ ----
+   46640 (01) (HKLM_Software_Policies) (0x00000000) export.reg
+  203792 (02) (HKLM_Software_Microsoft_Windows_CurrentVersion_Uninstall) (0x00000000) export.reg
+  214902 (03) (HKLM_Software_Microsoft_IntuneManagementExtension) (0x00000000) export.reg
+  212278 (04) (HKLM_SOFTWARE_WOW6432Node_Microsoft_Windows_CurrentVersion_Uninstall) (0x00000000) export.reg
+    2400 (05) (_windir__system32_ipconfig_exe__all) (0x00000000) output.log
+    2147 (06) (_windir__system32_netsh_exe_advfirewall_show_allprofiles) (0x00000000) output.log
+    1043 (07) (_windir__system32_netsh_exe_advfirewall_show_global) (0x00000000) output.log
+      59 (08) (_windir__system32_netsh_exe_wlan_show_profiles) (0x80070001) output.log
+    1591 (09) (_windir__system32_ping_exe_-n_50_localhost) (0x00000000) output.log
+    5192 (10) (_windir__system32_Dsregcmd_exe__status) (0x00000000) output.log
+```
 
 ## Policy area
 

From 84f185edd619282636ecaee93761d566c3629ac2 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 4 Jan 2021 16:59:42 -0800
Subject: [PATCH 237/825] Added vertical space

---
 .../microsoft-defender-atp/basic-permissions.md                | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index 9cddee17c5..1c8fc2eacd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -63,10 +63,13 @@ Assigning read-only access rights requires adding the users to the "Security Rea
 Use the following steps to assign security roles:
 
 - For **read and write** access, assign users to the security administrator role by using the following command:
+
   ```PowerShell
   Add-MsolRoleMember -RoleName "Security Administrator" -RoleMemberEmailAddress "secadmin@Contoso.onmicrosoft.com"
   ```
+  
 - For **read-only** access, assign users to the security reader role by using the following command:
+
   ```PowerShell
   Add-MsolRoleMember -RoleName "Security Reader" -RoleMemberEmailAddress "reader@Contoso.onmicrosoft.com"
   ```

From b5a5fb637f136d31a5276e2db48a68958a5b6d8a Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 4 Jan 2021 17:00:10 -0800
Subject: [PATCH 238/825] Labeled code blocks with valid content types

---
 .../microsoft-defender-atp/get-ip-statistics.md            | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 8b78df80cd..c34fe0e526 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -51,7 +51,8 @@ Delegated (work or school account) | Ip.Read.All |	'Read IP address profiles'
 >- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
 
 ## HTTP request
-```
+
+```http
 GET /api/ips/{ip}/stats
 ```
 
@@ -75,7 +76,7 @@ If successful and ip exists - 200 OK with statistical data in the body. IP do no
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats
 ```
 
@@ -84,7 +85,7 @@ GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats
 Here is an example of the response.
 
 
-```
+```http
 HTTP/1.1 200 OK
 Content-type: application/json
 {

From b92c3c2028832ee81c77106bc049988a3d82a0b1 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 4 Jan 2021 17:03:05 -0800
Subject: [PATCH 239/825] Updated the definition of the 'Wizard' as the first
 reference to the wizard

---
 .../windows-defender-application-control/wdac-wizard.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index 4e765e5339..399ff347f0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -25,7 +25,7 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-This article describes the supported scenarios for the Windows Defender Application Control (WDAC) policy Wizard. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci/?view=win10-ps) in the background so the output policy of the Wizard and PowerShell cmdlets is identical. 
+The Windows Defender Application Control (WDAC) policy Wizard is an open source Windows desktop application written in C# and bundled as an MSIX pacakge. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci/?view=win10-ps) in the backend so the output policy of the Wizard and PowerShell cmdlets is identical. 
 
 ## Downloading the application
 

From 695fb9a00ff804726b428b58a636280353a0e394 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 4 Jan 2021 17:06:33 -0800
Subject: [PATCH 240/825] Corrected code block labels and second-level list
 formatting

Valid types for code blocks are listed here: https://review.docs.microsoft.com/en-us/help/contribute/metadata-taxonomies?branch=master
---
 .../microsoft-defender-atp/respond-file-alerts.md   | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index ef8a82a89f..05fd5e59e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -94,6 +94,7 @@ This action takes effect on devices with Windows 10, version 1703 or later, wher
    ![Image of stop and quarantine file modal window](images/atp-stop-quarantine.png)
 
    The Action center shows the submission information:
+   
    ![Image of stop and quarantine file action center](images/atp-stopnquarantine-file.png)
 
    - **Submission time** - Shows when the action was submitted.
@@ -118,13 +119,13 @@ You can roll back and remove a file from quarantine if you’ve determined that
 
 1. Open an elevated command–line prompt on the device:
 
-   a. Go to **Start** and type _cmd_.
+   1. Go to **Start** and type _cmd_.
 
-   b. Right–click **Command prompt** and select **Run as administrator**.
+   1. Right–click **Command prompt** and select **Run as administrator**.
 
 2. Enter the following command, and press **Enter**:
 
-   ```Powershell
+   ```powershell
    “%ProgramFiles%\Windows Defender\MpCmdRun.exe” –Restore –Name EUS:Win32/CustomEnterpriseBlock –All
    ```
 
@@ -273,11 +274,14 @@ The details provided can help you investigate if there are indications of a pote
 If you encounter a problem when trying to submit a file, try each of the following troubleshooting steps.
 
 1. Ensure that the file in question is a PE file. PE files typically have _.exe_ or _.dll_ extensions (executable programs or applications).
+
 1. Ensure the service has access to the file, that it still exists, and has not been corrupted or modified.
+
 1. You can wait a short while and try to submit the file again, in case the queue is full or there was a temporary connection or communication error.
+
 1. If the sample collection policy is not configured, then the default behavior is to allow sample collection. If it is configured, then verify the policy setting allows sample collection before submitting the file again. When sample collection is configured, then check the following registry value:
 
-    ```Powershell
+    ```powershell
     Path: HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection
     Name: AllowSampleCollection
     Type: DWORD
@@ -287,6 +291,7 @@ If you encounter a problem when trying to submit a file, try each of the followi
     ```
 
 1. Change the organizational unit through the Group Policy. For more information, see [Configure with Group Policy](configure-endpoints-gp.md).
+
 1. If these steps do not resolve the issue, contact [winatp@microsoft.com](mailto:winatp@microsoft.com).
 
 ## Related topics

From a66d47b32a6d637cdcea3a823c9da0577323836e Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:20:55 +0530
Subject: [PATCH 241/825] typo correction

as per the user report #8904, so I corrected the word cashed to cached
---
 windows/security/threat-protection/auditing/event-4624.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/auditing/event-4624.md b/windows/security/threat-protection/auditing/event-4624.md
index b310cd06ca..637a86a151 100644
--- a/windows/security/threat-protection/auditing/event-4624.md
+++ b/windows/security/threat-protection/auditing/event-4624.md
@@ -156,7 +156,7 @@ This event generates when a logon session is created (on destination machine). I
 |  `9`       | `NewCredentials`    | A caller cloned its current token and specified new credentials for outbound connections. The new logon session has the same local identity, but uses different credentials for other network connections.                                                                                                                 |
 | `10`       | `RemoteInteractive` | A user logged on to this computer remotely using Terminal Services or Remote Desktop.                                                                                                                                                                                                                                      |
 | `11`       | `CachedInteractive` | A user logged on to this computer with network credentials that were stored locally on the computer. The domain controller was not contacted to verify the credentials.                                                                                                                                                    |
-| `12`       | `CashedRemoteInteractive` | Same as RemoteInteractive. This is used for internal auditing.                                                                                                                                                                                                                                                        |
+| `12`       | `CachedRemoteInteractive` | Same as RemoteInteractive. This is used for internal auditing.                                                                                                                                                                                                                                                        |
 | `13`       | `CachedUnlock` | Workstation logon.                                                                                                                                                                                                                                                                                                             |
 
 -   **Restricted Admin Mode** \[Version 2\] \[Type = UnicodeString\]**:** Only populated for **RemoteInteractive** logon type sessions. This is a Yes/No flag indicating if the credentials provided were passed using Restricted Admin mode. Restricted Admin mode was added in Win8.1/2012R2 but this flag was added to the event in Win10.

From 16cd7c964c3ba94b8dba60d4cf82b17f931dcfb3 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:04:34 +0100
Subject: [PATCH 242/825] missing period dot ( . ) in line 348

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index e8dc2df8f2..23c62b474a 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -345,7 +345,7 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
    ![NDES Installation Credentials](images/aadjcert/ndesconfig01.png)
 3. On the **Role Services** page, select **Network Device Enrollment Service** and then click **Next**
    ![NDES Role Services](images/aadjcert/ndesconfig02.png)
-4. On the **Service Account for NDES** page, select **Specify service account (recommended)**.  Click **Select...** Type the user name and password for the NDES service account in the **Windows Security** dialog box.  Click **Next**.
+4. On the **Service Account for NDES** page, select **Specify service account (recommended)**.  Click **Select...**. Type the user name and password for the NDES service account in the **Windows Security** dialog box.  Click **Next**.
    ![NDES Service Account for NDES](images/aadjcert/ndesconfig03b.png)
 5. On the **CA for NDES** page, select **CA name**. Click **Select...**.  Select the issuing certificate authority from which the NDES server requests certificates.  Click **Next**.
    ![NDES CA selection](images/aadjcert/ndesconfig04.png)

From fef05431b3baec7f5f13282596ad649e7150e1a0 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:06:08 +0100
Subject: [PATCH 243/825] missing plural S in "three certificate template"
 (line 359)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 23c62b474a..82d0d79705 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -356,7 +356,7 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
 8. Click **Close** after the configuration completes.
 
 #### Configure Certificate Templates on NDES
-A single NDES server can request a maximum of three certificate template.  The NDES server determines which certificate to issue based on the incoming certificate request that is assigned in the Microsoft Intune SCEP certificate profile.  The Microsoft Intune SCEP certificate profile has three values.
+A single NDES server can request a maximum of three certificate templates.  The NDES server determines which certificate to issue based on the incoming certificate request that is assigned in the Microsoft Intune SCEP certificate profile.  The Microsoft Intune SCEP certificate profile has three values.
 * Digital Signature
 * Key Encipherment
 * Key Encipherment, Digital Signature

From 8fa226d4f0eabf152c01c7ff57736de5d6819f88 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:10:47 +0100
Subject: [PATCH 244/825] multiple grammar issues in one sentence (line 364)

- translate -> translates
- provide -> provided
- correspond -> corresponding
- belows -> below
- value to -> values of
- name -> names

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 82d0d79705..e41296761c 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -361,7 +361,7 @@ A single NDES server can request a maximum of three certificate templates.  The
 * Key Encipherment
 * Key Encipherment, Digital Signature
 
-Each value maps to a registry value name in the NDES server.  The NDES server translate an incoming SCEP provide value into the correspond certificate template.  The table belows shows the SCEP profile value to the NDES certificate template registry value name
+Each value maps to a registry value name in the NDES server.  The NDES server translates an incoming SCEP provided value into the corresponding certificate template.  The table below shows the SCEP profile values of the NDES certificate template registry value names.
 
 | SCEP Profile Key usage| NDES Registry Value Name |
 | :-------------------: | :----------------------: |

From d775c3fc4ddb8d1466a548d4de3e66feddde7760 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:15:06 +0100
Subject: [PATCH 245/825] grammar & template reference naming

- missing definite article, 2 occurrences (line 372)
- encryptionTemplate -> encryption template

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index e41296761c..5b3a471495 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -369,7 +369,7 @@ Each value maps to a registry value name in the NDES server.  The NDES server tr
 | Key Encipherment | EncryptionTemplate |
 | Key Encipherment<br>Digital Signature | GeneralPurposeTemplate |
 
-Ideally, you should match the certificate request with registry value name to keep the configuration intuitive (encryption certificates use the encryptionTemplate, signature certificates use the signature template, etc.).  A result of this intuitive design is the potential exponential growth in NDES server. Imagine an organization that needs to issue nine unique signature certificates across their enterprise.
+Ideally, you should match the certificate request with the registry value name to keep the configuration intuitive (encryption certificates use the encryption template, signature certificates use the signature template, etc.).  A result of this intuitive design is the potential exponential growth in the NDES server. Imagine an organization that needs to issue nine unique signature certificates across their enterprise.
 
 If the need arises, you can configure a signature certificate in the encryption registry value name or an encryption certificate in the signature registry value to maximize the use of your NDES infrastructure.  This unintuitive design requires current and accurate documentation of the configuration to ensure the SCEP certificate profile is configured to enroll the correct certificate, regardless of the actual purpose. Each organization needs to balance ease of configuration and administration with additional NDES infrastructure and the management overhead that comes with it.
 

From bbd85b903da1ce62f7a9d6ada6ed86b5ab1125a2 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:16:47 +0100
Subject: [PATCH 246/825] URLLs double L typo correction (line 449)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 5b3a471495..31b2fc5946 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -446,7 +446,7 @@ Sign-in a workstation with access equivalent to a _domain user_.
    ![Azure NDES Application Proxy Configuration](images/aadjcert/azureconsole-appproxyconfig.png)
 8. Select **Passthrough** from the **Pre Authentication** list.
 9. Select **NDES WHFB Connectors** from the **Connector Group** list.
-10. Under **Additional Settings**, select **Default** from **Backend Application Timeout**.  Under the **Translate URLLs In** section, select **Yes** next to **Headers** and select **No** next to **Application Body**.
+10. Under **Additional Settings**, select **Default** from **Backend Application Timeout**.  Under the **Translate URLs In** section, select **Yes** next to **Headers** and select **No** next to **Application Body**.
 11. Click **Add**.
 12. Sign-out of the Azure Portal.
 

From 49ec0a4a5cef7476eae87e8eb11c73bd2d04ad0e Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:18:13 +0100
Subject: [PATCH 247/825] missing indefinite article, missing noun (line 510)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 31b2fc5946..bd48c6427b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -507,7 +507,7 @@ Sign-in the NDES server with access equivalent to _local administrator_.
    ```
    where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.
 
-A web page similar to the following should appear in your web browser.  If you do not see similar page, or you get a **503 Service unavailable**, ensure the NDES Service account as the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
+A web page similar to the following should appear in your web browser.  If you do not see a similar page, or you get a **503 Service unavailable** message, ensure the NDES Service account has the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
 
 ![NDES IIS Console](images/aadjcert/ndes-https-website-test-01.png)
 

From e3cbee4767dfa592313d17f3e5079b1fb322191d Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:18:54 +0100
Subject: [PATCH 248/825] missing period dot ( . ) (line 583)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index bd48c6427b..b72a7ff097 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -580,7 +580,7 @@ Sign-in the NDES server with access equivalent to _domain administrator_.
    ![Intune Connector Install 06](images/aadjcert/intunecertconnectorinstall-06.png)
 
    > [!NOTE]
-   > You can review the results of the install using the **SetupMsi.log** file located in the **C:\\NDESConnectorSetupMsi** folder
+   > You can review the results of the install using the **SetupMsi.log** file located in the **C:\\NDESConnectorSetupMsi** folder.
 
 10. When the installation completes, select **Launch Intune Connector** and click Finish. Proceed to the Configure the Intune Certificate Connector task.
     ![Intune Connector install 07](images/aadjcert/intunecertconnectorinstall-07.png)

From 02d5692cc1c2c9b73284feded43fd68893f1cd6d Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:20:22 +0100
Subject: [PATCH 249/825] Double capitalized letter word typo (line 624)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index b72a7ff097..7a58e40fde 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -621,7 +621,7 @@ Sign-in the certificate authority used by the NDES Connector with access equival
 Sign-in the NDES server with access equivalent to _domain administrator_.
 
 1. Open the **NDES Connector** user interface (**\<install_Path>\NDESConnectorUI\NDESConnectorUI.exe**).
-2. Click the **Advanced** tab.  Select **Specify a different account username and password**.  TYpe the NDES service account username and password.  Click **Apply**.  Click **OK** to close the confirmation dialog box.  Click **Close**.
+2. Click the **Advanced** tab.  Select **Specify a different account username and password**.  Type the NDES service account username and password.  Click **Apply**.  Click **OK** to close the confirmation dialog box.  Click **Close**.
    ![Intune Connector cert revocation configuration 04](images/aadjcert/intunecertconnectorconfig-04.png)
 3. Restart the **Intune Connector Service** and the **World Wide Web Publishing Service**.
 

From c1947a84ad9f4b8d0ad99a46cf3a591d3e14f4a6 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:22:20 +0100
Subject: [PATCH 250/825] verb typo correction, add missing noun (line 643)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 7a58e40fde..88cac79cd9 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -640,7 +640,7 @@ Sign-in the NDES server with access equivalent to _domain admin_.
    https://[fqdnHostName]/certsrv/mscep/mscep.dll
    ```
    where **[fqdnHostName]** is the fully qualified internal DNS host name of the NDES server.
-   A web page showing a 403 error (similar to the following) should appear in your web browser.  If you do not see similar page, or you get a **503 Service unavailable**, ensure the NDES Service account as the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
+   A web page showing a 403 error (similar to the following) should appear in your web browser.  If you do not see a similar page, or you get a **503 Service unavailable** message, ensure the NDES Service account has the proper user rights.  You can also review the application event log for events with the **NetworkDeviceEnrollmentSerice** source.
    ![NDES web site test after Intune Certificate Connector](images/aadjcert/ndes-https-website-test-after-intune-connector.png)
 6. Using **Server Manager**, enable **Internet Explorer Enhanced Security Configuration**.
 

From 2ffc55bd3ec7dac166274a302a36b5e51e8c1dba Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:24:36 +0100
Subject: [PATCH 251/825] verb form correction (line 69)

- "need to" -> needed

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 88cac79cd9..ec87491d7d 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -66,7 +66,7 @@ Successful authentication to on-premises resources using a certificate requires
 
 Most environments change the user principal name suffix to match the organization's external domain name (or vanity domain), which prevents the user principal name as a hint to locate a domain controller.  Therefore, the certificate needs the user's on-premises distinguished name in the subject to properly locate a domain controller.
 
-To include the on-premises distinguished name in the certificate's subject, Azure AD Connect must replicate the Active Directory **distinguishedName** attribute to the Azure Active Directory **onPremisesDistinguishedName** attribute.  Azure AD Connect version 1.1.819 includes the proper synchronization rules need to for these attributes.
+To include the on-premises distinguished name in the certificate's subject, Azure AD Connect must replicate the Active Directory **distinguishedName** attribute to the Azure Active Directory **onPremisesDistinguishedName** attribute.  Azure AD Connect version 1.1.819 includes the proper synchronization rules needed for these attributes.
 
 ### Verify AAD Connect version
 Sign-in to computer running Azure AD Connect with access equivalent to _local administrator_.

From 5671cfff44e143723262222d1a8c267621db9d1e Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:25:51 +0100
Subject: [PATCH 252/825] missing definite article & infinitive marker (line
 125)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index ec87491d7d..4b4966566f 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -122,7 +122,7 @@ Sign-in to a domain controller or management workstation with access equivalent
 > Configuring the service's account password to **Password never expires** may be more convenient, but it presents a security risk.  Normal service account passwords should expire in accordance with the organizations user password expiration policy.  Create a reminder to change the service account's password two weeks before it will expire.  Share the reminder with others that are allowed to change the password to ensure the password is changed before it expires.
 
 ### Create the NDES Service User Rights Group Policy object
-The Group Policy object ensures the NDES Service account has the proper user right assign all the NDES servers in the **NDES Servers** group.  As you add new NDES servers to your environment and this group, the service account automatically receives the proper user rights through Group Policy.
+The Group Policy object ensures the NDES Service account has the proper user right to assign all the NDES servers in the **NDES Servers** group.  As you add new NDES servers to your environment and this group, the service account automatically receives the proper user rights through the Group Policy.
 
 Sign-in a domain controller or management workstations with _Domain Admin_ equivalent credentials.
 

From f3f6450556f26cc071628c2dc1922f3ab4371135 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:39:07 +0100
Subject: [PATCH 253/825] plural/singular noun correction (line 59)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 4b4966566f..94c374762b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -56,7 +56,7 @@ The Network Device Enrollment Service (NDES) server role can issue up to three u
 - Encryption
 - Signature and Encryption
 
-If you need to deploy more than three types of certificates to the Azure AD joined device, you need additional NDES servers.  Alternatively, consider consolidating certificates templates to reduce the number of certificate templates.
+If you need to deploy more than three types of certificates to the Azure AD joined device, you need additional NDES servers.  Alternatively, consider consolidating certificate templates to reduce the number of certificate templates.
 
 ### Network Requirements
 All communication occurs securely over port 443.

From 3cb16011e49b3fa777c0686188502faf821f7e70 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:40:01 +0100
Subject: [PATCH 254/825] redundant double spacing inside sentence (line 142)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 94c374762b..230e8fc1a3 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -139,7 +139,7 @@ Sign-in a domain controller or management workstations with _Domain Admin_ equiv
 11. Close the **Group Policy Management Editor**.
 
 ### Configure security for the NDES Service User Rights Group Policy object
-The best way to deploy the **NDES Service User Rights** Group Policy object is to use security group filtering. This enables you to easily manage the computers that  receive the Group Policy settings by adding them to a group.
+The best way to deploy the **NDES Service User Rights** Group Policy object is to use security group filtering. This enables you to easily manage the computers that receive the Group Policy settings by adding them to a group.
 
 Sign-in to a domain controller or management workstation with access equivalent to _domain administrator_.
 

From c89b7d07943895d7b6ba9d809b1ee99c4b1af4bd Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:41:07 +0100
Subject: [PATCH 255/825] incorrect definite particle in front of proper noun
 (line 208)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 230e8fc1a3..bd6bc2384e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -205,7 +205,7 @@ Sign-in to the issuing certificate authority or management workstations with _Do
 10. Click on the **Apply** to save changes and close the console.
 
 ### Create an Azure AD joined Windows Hello for Business authentication certificate template
-During Windows Hello for Business provisioning,  Windows 10 requests an authentication certificate from the Microsoft Intune, which requests the authentication certificate on behalf of the user.  This task configures the Windows Hello for Business authentication certificate template.  You use the name of the certificate template when configuring the NDES Server.
+During Windows Hello for Business provisioning,  Windows 10 requests an authentication certificate from Microsoft Intune, which requests the authentication certificate on behalf of the user.  This task configures the Windows Hello for Business authentication certificate template.  You use the name of the certificate template when configuring the NDES Server.
 
 Sign in a certificate authority or management workstations with _Domain Admin equivalent_ credentials.
 

From fa9ef702ed2ea255dae2a85454883ae416dddab2 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:42:53 +0100
Subject: [PATCH 256/825] incorrect definite particle & conjunction comma (line
 226)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index bd6bc2384e..df2d14cdb3 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -223,7 +223,7 @@ Sign in a certificate authority or management workstations with _Domain Admin eq
 8. On the **Subject** tab, select **Supply in the request**.
 9. On the **Request Handling** tab, select **Signature and encryption** from the **Purpose** list.  Select the **Renew with same key** check box. Select **Enroll subject without requiring any user input**.
 10. On the **Security** tab, click **Add**. Type **NDESSvc** in the **Enter the object names to select** text box and click **OK**.
-12. Select  **NDESSvc** from the **Group or users names** list. In the **Permissions for NDES Servers** section, select the **Allow** check box for the **Read**, **Enroll**. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**.
+12. Select  **NDESSvc** from the **Group or users names** list. In the **Permissions for NDES Servers** section, select the **Allow** check box for **Read** and **Enroll**. Clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**.
 13. Close the console.
 
 ### Publish certificate templates

From c24cb2021a1e760afeb0a1b53faa6c72eb68cfe7 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:44:30 +0100
Subject: [PATCH 257/825] codestyle: all uppercase in MD [!Important] note blob
 (line 280)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index df2d14cdb3..ed0cfab100 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -277,7 +277,7 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
    * **Management Tools > IIS 6 Management Compatibility > IIS 6 WMI Compatibility**
    ![Server Manager Web Server Role](images/aadjcert/servermanager-adcs-webserver-role.png)
 9. Click **Install**. When the installation completes, continue with the next procedure.  **Do not click Close**.
-   > [!Important]
+   > [!IMPORTANT]
    > .NET Framework 3.5 is not included in the typical installation.  If the server is connected to the Internet, the installation attempts to get the files using Windows Update.  If the server is not connected to the Internet, you need to **Specify an alternate source path** such as \<driveLetter>:\\Sources\SxS\
    ![.NET Side by Side](images/aadjcert/dotNet35sidebyside.png)
 

From e06dc94e2bfb7b906a134ec1c91497de9cb56762 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:45:11 +0100
Subject: [PATCH 258/825] removal of incorrectly placed indefinite article
 (line 296)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index ed0cfab100..2ef81da96e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -293,7 +293,7 @@ Sign-in the NDES server with access equivalent to _local administrator_.
 4. Close the management console.
 
 #### Register a Service Principal Name on the NDES Service account
-Sign-in the NDES server with a access equivalent to _Domain Admins_.
+Sign-in the NDES server with access equivalent to _Domain Admins_.
 
 1. Open an elevated command prompt.
 2. Type the following command to register the service principal name

From e9bcd27ac267a6376359f598916f8d035116249e Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 5 Jan 2021 10:48:15 +0100
Subject: [PATCH 259/825] remove unused numbered list item number (line 326)

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-hybrid-aadj-sso-cert.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
index 2ef81da96e..c5273dc500 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-cert.md
@@ -323,7 +323,7 @@ Sign-in a domain controller with a minimum access equivalent to _Domain Admins_.
 5. Click **Add**.
 6. Click **Users or Computers...**  Type the name of the _NDES Server_ you use to issue Windows Hello for Business authentication certificates to Azure AD joined devices.  From the **Avaiable services** list, select **HOST**.  Click **OK**.
    ![NDES Service delegation to NDES host](images/aadjcert/ndessvcdelegation-host-ndes-spn.png)
-7. Repeat steps 5 and 6 for each NDES server using this service account.8. Click **Add**.
+7. Repeat steps 5 and 6 for each NDES server using this service account. Click **Add**.
 8. Click **Users or computers...**  Type the name of the issuing certificate authority this NDES service account uses to issue Windows Hello for Business authentication certificates to Azure AD joined devices.  From the **Available services** list, select **dcom**.  Hold the **CTRL** key and select **HOST**. Click **OK**.
 9. Repeat steps 8 and 9 for each issuing certificate authority from which one or more NDES servers request certificates.
    ![NDES Service delegation complete](images/aadjcert/ndessvcdelegation-host-ca-spn.png)

From dc6a1422ef530c0659824db0176aeafda206d904 Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Tue, 5 Jan 2021 17:29:55 +0530
Subject: [PATCH 260/825] Update controlled-folders.md

---
 .../microsoft-defender-atp/controlled-folders.md                 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index d01c44566e..c8e81166ac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -65,6 +65,7 @@ Windows system folders are protected by default, along with several other folder
 - `c:\Users\<username>\Pictures`
 - `c:\Users\Public\Pictures`
 - `c:\Users\Public\Videos`
+- `c:\Users\<username>\Videos`
 - `c:\Users\<username>\Music`
 - `c:\Users\Public\Music`
 - `c:\Users\<username>\Favorites`

From 0020ddf4a5d69ded23c1b35c65f2dd03e289c25b Mon Sep 17 00:00:00 2001
From: Lindsay <45809756+lindspea@users.noreply.github.com>
Date: Tue, 5 Jan 2021 15:10:36 +0200
Subject: [PATCH 261/825] Update vpn-conditional-access.md

Added link.
---
 .../security/identity-protection/vpn/vpn-conditional-access.md   | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index 9aee353de2..aa6ca89ce6 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -31,6 +31,7 @@ Conditional Access Platform components used for Device Compliance include the fo
 - [Windows Health Attestation Service](https://technet.microsoft.com/itpro/windows/keep-secure/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices#device-health-attestation) (optional)
 
 - Azure AD Certificate Authority - It is a requirement that the client certificate used for the cloud-based device compliance solution be issued by an Azure Active Directory-based Certificate Authority (CA). An Azure AD CA is essentially a mini-CA cloud tenant in Azure. The Azure AD CA cannot be configured as part of an on-premises Enterprise CA. 
+See also [Always On VPN deployment for Windows Server and Windows 10](https://docs.microsoft.com/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy).
 
 - Azure AD-issued short-lived certificates - When a VPN connection attempt is made, the Azure AD Token Broker on the local device communicates with Azure Active Directory, which then checks for health based on compliance rules. If compliant, Azure AD sends back a short-lived certificate that is used to authenticate the VPN. Note that certificate authentication methods such as EAP-TLS can be used. When that certificate expires, the client will again check with Azure AD for health validation before a new certificate is issued.
 

From d8afba6ecda828c656854bf29d1f5a1e6baf91fc Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Tue, 5 Jan 2021 19:14:10 +0530
Subject: [PATCH 262/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 23 ++++++++++++++++++-
 1 file changed, 22 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 19653b1a5a..0a7fe26efc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -48,7 +48,28 @@ It is highly recommended to test the ASR rules on a sample-like smaller set of d
  
 <!-- Denise, could we discuss as to why only the **Microsoft 365 security center** source is being cited here; Just for better understanding, I am putting forward this query
 -->
-- 
+
+**Applicable to rules' states**
+
+This section describes the best practices with regard to the states which any ASR rule can be set to, irrespective of the method used to configure or deploy the ASR rule.
+
+Prior to describing the best pratices for the ASR rules' states, it is important to know the states which an ASR rule can be set to:
+
+- **Not configured**: This is the state in which the ASR rule has been disabled. The code for this state is 0.
+- **Block**: This is the state in which the ASR rule is enabled. YThe code for this state is 1.
+- **Audit**: This is the state in which the ASR rule is evaluated about its impactive behavior toward the organization or environment in which it is deployed.
+
+**Recommendation**
+
+The recommended practice for a deployed ASR rule is to start it in **audit** mode. The reasons for recommendation of this best pratice are:
+
+1. **Access to logs and reviews**: When an ASR rule is set to **audit** mode, you can get access to the logs and reviews pertaining to it. These logs and reviews are data that helps you to analyze the impact of the ASR rule.
+2. **Rule-related decision**: The analysis findings guided by the logs and reviews help you take a decision whether to deploy or exclude the ASR rule or not. For information on ASR rule exclusion see
+<!--To cite here the topic that describes guidance provided for the process of implementing ASR rules' exclusions-->
+<!--To cite here the topic that describes guidance provided for the process of deploying or configuring ASR rules-->
+
+<!--Denise, if we can seek information about the common built-in features across all the 5 configuration mechanisms, we can specify the best practice regarding which is the best configuration mechanism to use to deploy the ASR rules-->
+
 ## Use a phased approach
 
 Before you roll out attack surface reduction rules in your organization, select a small set of managed devices to start. 

From 0234660baf0f9855f3eacd73ee2d02232433747e Mon Sep 17 00:00:00 2001
From: Siddarth Mandalika <v-smandalika@microsoft.com>
Date: Tue, 5 Jan 2021 19:52:34 +0530
Subject: [PATCH 263/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 0a7fe26efc..ea1d8dbfb2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -154,7 +154,7 @@ Attack surface reduction (ASR) rules for MEM (Microsoft Endpoint Manager)-manage
 - ASR rules from the following profiles are evaluated for each device the rules apply to:  
     - Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > [Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction).
     - Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
-    - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Attack Surface Reduction Rules.
+    - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Profiles >  Profile Name > Properties > Configuration settings > Attack Surface Reduction Rules
 
 - Settings that do not have conflicts are added to a superset of policy for the device.
 

From d33137e0bf65103de2c2868e90baf82b0ca95ee0 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 5 Jan 2021 07:58:24 -0800
Subject: [PATCH 264/825] Update bitlocker-csp.md

---
 windows/client-management/mdm/bitlocker-csp.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/client-management/mdm/bitlocker-csp.md b/windows/client-management/mdm/bitlocker-csp.md
index 652a24f8e4..adf3b8c44c 100644
--- a/windows/client-management/mdm/bitlocker-csp.md
+++ b/windows/client-management/mdm/bitlocker-csp.md
@@ -19,6 +19,9 @@ The BitLocker configuration service provider (CSP) is used by the enterprise to
 > Settings are enforced only at the time encryption is started. Encryption is not restarted with settings changes.  
 > You must send all the settings together in a single SyncML to be effective.
 
+> [!NOTE] Devices that pass Hardware Security Testability Specification (HSTI) validation or Modern 
+> Standby devices will not be able to configure a Startup PIN using this CSP. Users are required to manually configure the PIN.
+
 A Get operation on any of the settings, except for RequireDeviceEncryption and RequireStorageCardEncryption, returns
 the setting configured by the admin.
 

From 9d17692d214d9b40210111a0f9322dd3e8627b73 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 5 Jan 2021 08:03:33 -0800
Subject: [PATCH 265/825] Update bitlocker-csp.md

---
 windows/client-management/mdm/bitlocker-csp.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/bitlocker-csp.md b/windows/client-management/mdm/bitlocker-csp.md
index adf3b8c44c..aafdb95416 100644
--- a/windows/client-management/mdm/bitlocker-csp.md
+++ b/windows/client-management/mdm/bitlocker-csp.md
@@ -19,7 +19,8 @@ The BitLocker configuration service provider (CSP) is used by the enterprise to
 > Settings are enforced only at the time encryption is started. Encryption is not restarted with settings changes.  
 > You must send all the settings together in a single SyncML to be effective.
 
-> [!NOTE] Devices that pass Hardware Security Testability Specification (HSTI) validation or Modern 
+> [!NOTE] 
+> Devices that pass Hardware Security Testability Specification (HSTI) validation or Modern 
 > Standby devices will not be able to configure a Startup PIN using this CSP. Users are required to manually configure the PIN.
 
 A Get operation on any of the settings, except for RequireDeviceEncryption and RequireStorageCardEncryption, returns

From 19b2f82a75e408b4187731ac19e2dfd23261f040 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 5 Jan 2021 08:25:49 -0800
Subject: [PATCH 266/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index a3099a5a17..546df2c608 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -201,7 +201,8 @@ Each data gathering node is annotated with the HRESULT of the action and the col
 
 ### Making use of the uploaded data
 The zip archive which is created and uploaded by the CSP contains a folder structure like the following:
-```
+
+```powershell
 PS C:\> dir C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z
 
     Directory: C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z

From 5543d88b7067c490e59ec8fe27e08818937bc7d1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 5 Jan 2021 08:26:07 -0800
Subject: [PATCH 267/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 546df2c608..243edc42d5 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -216,6 +216,7 @@ la---           12/2/2020  6:27 PM           2701 results.xml
 Each data gathering directive from the original `Collection` XML corresponds to a folder in the output. For example, if the first directive was <RegistryKey HRESULT="0">HKLM\Software\Policies</RegistryKey> then folder `1` will contain the corresponding `export.reg` file.
 
 The `results.xml` file is the authoritative map to the output. It includes a status code for each directive. The order of the directives in the file corresponds to the order of the output folders. Using `results.xml` the administrator can see what data was gathered, what failures may have occurred, and which folders contain which output. For example, the following `results.xml` content indicates that registry export of HKLM\Software\Policies was successful and the data can be found in folder `1`. It also indicates that `netsh.exe wlan show profiles` command failed.
+
 ```xml
 <Collection HRESULT="0">
     <ID>268b3056-8c15-47c6-a1bd-4bc257aef7b2</ID>

From 992b91e40a3d9bf16453ee784c750bcdc86bffd3 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 5 Jan 2021 08:26:42 -0800
Subject: [PATCH 268/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 243edc42d5..b43f7053b8 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -286,7 +286,8 @@ foreach( $element in $resultElements )
 Remove-Item -Path $diagnosticArchiveTempUnzippedPath -Force -Recurse
 ```
 That example script produces a set of files similar to the following, which can be a useful view for an administrator interactively browsing the results without needing to navigate any sub-folders or refer to `results.xml` repeatedly. 
-```
+
+```powershell
 PS C:\> dir C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z.zip_formatted | format-table Length,Name
 
   Length Name

From 7b72252cdd8942bc40a8a4641b1bef65cc65de70 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 5 Jan 2021 08:27:27 -0800
Subject: [PATCH 269/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index b43f7053b8..53237c0460 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -244,6 +244,7 @@ DirectiveNumber DirectiveHRESULT DirectiveInput
 ```
 
 The next example extracts the zip archive into a customized flattened file structure. Each file name includes the directive number, HRESULT, and so on. This example could be customized to make different choices about what information to include in the file names and what formatting choices to make for special characters.
+
 ```powershell
 param( $DiagnosticArchiveZipPath = "C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z.zip" )
 

From acb77a7ac36583c726117128e92990dac7235ef4 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Tue, 5 Jan 2021 09:08:29 -0800
Subject: [PATCH 270/825] Added links to the WDAC articles on policy and file
 rules

to address feedback on the PR
---
 .../wdac-wizard-create-base-policy.md                    | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index d9afb2c2a1..277a5b28a2 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -40,6 +40,7 @@ Each of the template policies has a unique set of policy allow list rules that w
 
 *Italized content denotes the changes in the current policy with respect to the policy prior.*
 
+More information about the Default Windows Mode and Allow Microsoft Mode policies can be accessed through the [Example WDAC base policies article](example-wdac-base-policies.md). 
 
 ![Selecting a base template for the policy](images/wdac-wizard-template-selection.png)
 
@@ -51,7 +52,7 @@ Upon page launch, policy rules will be automatically enabled/disabled depending
 
 ### Policy Rules Description
 
-A description of each policy rule, beginning with the left-most column, is provided below. 
+A description of each policy rule, beginning with the left-most column, is provided below. The [Policy rules article](select-types-of-rules-to-create.md#windows-defender-application-control-policy-rules) provides a full description of each policy rule. 
 
 | Rule option | Description |
 |------------ | ----------- |
@@ -66,6 +67,8 @@ A description of each policy rule, beginning with the left-most column, is provi
 | **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
 | **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
 
+![Rule options UI for Windows Allowed mode policy](images/wdac-wizard-rule-options-UI-advanced-collapsed.png)
+
 ### Advanced Policy Rules Description
 
 Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of each policy rule is provided below. 
@@ -79,16 +82,14 @@ Selecting the **+ Advanced Options** label will show another column of policy ru
 | **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically revalidate the reputation for files that were authorized by the ISG.| 
 | **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
 
-
 ![Rule options UI for Windows Allowed mode](images/wdac-wizard-rule-options-UI.png)
 
-
 > [!NOTE]
 > We recommend that you **enable Audit Mode** initially because it allows you to test new WDAC policies before you enforce them. With audit mode, no application is blocked—instead the policy logs an event whenever an application outside the policy is started. For this reason, all templates have Audit Mode enabled by default. 
 
 ## Creating custom file rules
 
-File rules in an application control policy will specify the level at which applications will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create custom file rules for your policy. The Wizard supports four types of file rules: 
+[File rules](select-types-of-rules-to-create.md#windows-defender-application-control-file-rule-levels) in an application control policy will specify the level at which applications will be identified and trusted. File rules are the main mechanism for defining trust in the application control policy. Selecting the **+ Custom Rules** will open the custom file rule conditions panel to create custom file rules for your policy. The Wizard supports four types of file rules: 
 
 ### Publisher Rules
 

From 0f1eeb07c89d40d99f0b5b1c74bbf5dd855ad315 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Tue, 5 Jan 2021 09:14:21 -0800
Subject: [PATCH 271/825] Added screenshot with policy rules advanced options
 collapsed to /images

---
 ...izard-rule-options-UI-advanced-collapsed.png | Bin 0 -> 42545 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI-advanced-collapsed.png

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI-advanced-collapsed.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-rule-options-UI-advanced-collapsed.png
new file mode 100644
index 0000000000000000000000000000000000000000..de3197aabb61d476a4470fb72eaca30fc11bf109
GIT binary patch
literal 42545
zcmbrl1yEew6X*#cK|+Aw?iSo(aCdiy;O_1T?(Pik9^56k>mY->yF1JG{r~Un)>gfG
zTW@dG)Tw)J&Fv#S-Tmu66Q&?1j_?)dD+B}tf~16q5(LC2a|j4XN7zpvJrh4_d_NjU
zCna$qh^h&^!;hQKW`eSU5D+yn@Gk~mKJMY{B{ZENAW)qD`9Q9j61qb`6b?v=2&%a2
zon*pjfFy7S_vOwfCOxw}v%(F}JMPy+4?FHj!Vw@v6$QKf7vV#54A1in)kOr+N=f{G
zuzPBbC}F1BQ4G_==lO4Cjy!u^S+A8!Qh;Bs<tX5KK14!5sNjB=`=>2|Bm(}^DnJPU
zAV1n1Xm2UN^Q31Vj!77F#Xmg|F2I<t`)}Kl<01VWl0ATTX5UBk4+-@DK0IP1M4wP2
z-I6F9>mi9Ws>-VAe;`l!b?G|ETT$b8?mEBdHB`y?RFQv=%B}%-K1<12zNE9%p(CoR
ztf<E))!iTJ<QkDXT3W2LK?=LJ!cQ1C{Dn_wV0)WV$XzD~2k5|*kdm_OMU@P{5IYun
zeZOwMtc>L+F0Csn__sY30iM|76ABam%g`WBLSa$chH&T4;*TM}P#zo{n5zf&*<0v`
z1O|RKV^aC*8yN$)A8ldD(K=4mSgRT0a1wouE_ZI~1I?d*4Sa(Al8C&$nmBCAx<xvs
z62Dhr$)YHj#kTi$HF)`L9_`XTctmmH<+HpF2od@89c_Lu0a|u$_fvMSrqRaUaabQL
z{I=(xauHdn<T^g0v)HB9wl5^h<dI_mZ`f)EU;3`S{nO9<kskdsKh)wP`yy9nKG`0H
zjGUYXJG;<w6R-5b7wGAIH!B&ii?Y8=z9zf9rMZ^PT6@*|@O#y}TvTfi#l8=kvpNv8
zO?@W_a6GQqypk?*wcNu|46cKM`F7SNAdiHQKw2nAo64=Z@N;7Wa`Ll#-+=*{=_=OF
z16s<8PV?S?RTMT0+kjki+9WN+wx*>NP<3xz-jr}avTg^BuAmt3jH&MuXZNK3?uGqO
zTb_1D65+6o5v$Xi&QYslIODm&V`w)+NS1HMWu{VG*x9%3J&xgg!{FQMGck4e<V7#S
zbc^!I7(=h4QG@;$oXm+ohL+ad`QoK1fgE@Kf<;+lX{QY4qpA$aK)-K5vE7EXKT)G!
zHnEszZNQDLggI>84SR2*y{*D1#W)&AR@54uaI(vVUT{nyZQC4@lfxEO0K!|4^_S}C
zBb(x$u-#o}yG4tzeFqPJ)DCpDRXXAp=o{QBD(;t@<5rL7JjuPVfRGtx!u2nRzaN4#
z8h(RO0;hJrwY!zh^aOE1sm{lf)OoSRXKyPg;IT_s|D!h`lKqKHWi_?Eb|D)Z!vrk)
zQ<{gO9?8_P?k{D6=snmN0h1mhV>2=M6|uIKE^klRR!!gOB_+B6VBNOJZ`Yy6`38PU
zUV4lJaFjPXz4i}{Eqa$^!ikZ026nPh>N01gj!qJlsA#-tQ#9yv!s;m#?!RhgU(#sQ
zpIZ)&cQ;q~#<{}WMv~zveGAE&Ms=+otc_@_qywV!*(4*29@%O`gKs?-tMqsap;{B8
zl6F`n=JB0&w;kGp^Dt|^+@E0RPA(UNvgsC$$|O&G*{ZMJOuhRZqwSCfL_3{mt7A7*
z(x_x^meXb%jrE%}d{Vf;Yt*y0HChC2=2PB;19=sA+?Q-d?o>bGsCW06q*KzLp|?e~
zKmp%Y02vlAe$#5Bqh6*@^xxskYA3gBQRj+c2weB>F2U(*GI%K=ux3Zt0lJFry`av>
zMkTbuar-xN4{o(xIMwq{Rd43%rwAu}(u{0u&&8uEhU1yS>W;;Uv`xy!=422M-S?A7
zL_j6aI8-)$ndxZwmQr>_7T?5`S)1Q0hkAiUOCp@8sD|dlWpXnGzIrc;)IftOrNJ=I
zjbEHv1dXVJUHKlDXdYCw7su7!p>Q2Q4mTwFW`kPy>3Q6KEA})7z4p+s!MY4~ZiaR$
zPHE*#wzW2^O3%Pb@yHRw-asKg@?NLrgCj=#=^&Zh)>^(aoA@k@>$5XPwld*<H+6>2
zxHiKbb49^-gt};DrtMU=oLz5aRMgo=I+*XegR=l)INaimBqy8PRo=2~Tr(MTJ(hNx
zg@9vTic|zFnI@F&SH~*`#(7nPWO}w}Kpix-O7^Fr+BHL<hg$udqa#dTkn)bhmUXt2
zhsNd#YE)$~lHVlRci_#<JWknX2V$wDwx7ZRR0Ev41Ap>!dbQZ{X^eizXG+T!g~>c4
z?YVx1rG$Xshh0|zSml<h&5=0zOZ}<!c=+5<%zlh0ui{5t`Mh%=T~YVLfAp{YbiEfx
z0(>9rI-oS^M9{F$eFzM*N%X8p;DD8~a>%iUy$yrUeW(A&n(2r+&Umq!(=fj3FDT3?
zANy1Q7Fqx7CEVaDS`jc={BABQTF80X_r*Assi39mciaRI`C&td1%TyGeqcfJ0Fcg1
zf1A0>!jXV%!o{|DxYZN2;6n>eEL3n$#BM$OYw`^-v3-<xhjniz3%2}!Hf~gvTl_{e
z;x#lk34G~p5WbnLz4HjTL(J9iqGe{(Sk%iyRqT^lFU%B^OgoY%DBPXcBfcPLZ8&F^
zkeBv(i<WLCG8R}j@Z_4oxf_(6q1~JzG&(6|_XM?W=i*Y-jH1}EStPkLcxW4#v0Bi_
z=~7KDK`g0S?W+er3gR!jsbuqBx<WfBBE8S}F=b>Ij_CfO!ecn__Z(+iP*QEZKY9h`
zLX9WWTY-SCk&^~$C}uk7>r@|BW1U}wqGdv#xPctlzz!(UP-uKN-YTV`+OINsT9M&(
zq%g1(flIl&CaGjis9TKVp2N?4Vo<a<DSdN@dx!hSU74xy0!mP<UV^eVCP#;7Pol)a
zADl?np<0kBi|JMe|A`WQy(e12eQfi`Mf?AD*}v@ni8TZe1UUKGG&Of8{r<V_UI<uw
z2eo_jc9#6}B?wEH#0TZ;yHjmj;eQ=HJH+PakM3VM5Iz5l0fG%85cQwd65=0i`mlu%
z|Emb$e~9}(ctMwcdvUO5>(X(1^M;><)Srn~DBvrvgXeN>dCjBFht!SYoGN&;rR{+6
z@8a3hQcNxVIz9UyBH;)0^^JF2Ahg_?iN89|r|}L!x*Wm$41Jgmmr1b8(Np%!lxdc&
z6vZx{wG9!o%KNM-FD^qb0b}$<PQSx-t{pF0G5%dfU%aDwdknrcQ4zz{N)BuLq$5_A
z>Z7a?Le4Ss>V|B1Z|>S^Vo)U8x+ivQgRC)BQs_#EFX1Fue}r=u5=v&$;kTAh1H6_a
zc>=tOF&MyV3&yAa81}`sLUE9jjt}eVAu;CnfOnAo`c(ITDLkee-2A!#&mUuHn@Uw}
zD03NCP~U`X#$9Twb?#x|f&Zvig$RB;JxwJ-q*_R@o@UK8EnN7$DuG5ZDloWaqp<1?
z8b!y9@7-MiMOGs8PtmA$ngA4fZqH+vHT^GfB4e-OUsy>C3O|5b5pC@zg>iAydo)N6
zS2m|ngJ6lC-Hy=-(LH-erj@xiH+8rDPqayDwESx80|D-b$?56Z6XFS>56fPx4Y&D^
zGL}cE0q9u;HOW@TRV$vcVTM5o;@|kQdy7m>izviWph|Ac#C1>S@fvVx+s1lse%aBE
zKZS{X%>5y&WVGio8DLL%M+$waM06>AGJhoLCQ!n6+8X6Z$u!P&SEF55MJ#l!Bjf-s
zm(<N*J7iCT-LGuYXn<nA&b=b~9or|utG)asK${389MBhfuZk#Y{;W*GzaVK-$t7`=
zimmTWG1O@&>JP70S<9G00i925sIX~027cfiwofT3$RJ^&uGnOe0~~JAn;7Uk@yF-q
zuTU?eCvdZ_*&pG-!Ra278HU)qexZglyLv1nGYdk`rwKS>i_<v%c}*jfKzU=!Ce%CN
zjuTd3h}Dse)#ZHD<T;)`(U;zw+^4wNo-B@&WF1tRHW#iMArbz!5%%S*N&?VvZnC4-
zKygWE^YKIabspAA3zQ$`d_p&i*oYg7Xwm8Rov9{Of7rYaLB<&#xbVRwh0`=#(Pk<v
zo*-tAAL<=}c(K3L0Lg|#{Y6sCr7tt4UsLCNbE`k+90=kF4OeK2%ViV728IdG%bXMq
zJX+#`IfkFc^y@}k{|XsOq@x(nlp7+f6MSrxc0vQHf;1;P)M%cd`Ac|4pL?S+T$Jvx
zm|9-Ey_z1=X#&<WDJVFqrPbJ58k;&QkO}sb;%#3VDe$R=2@57Zi7dLrbpff>Qg}XZ
zP0QGpJOA?A^0W1d8P12P*zo$qBS+sIw<+u`Jq-)|Qz>;zskOPYUGn!cd$5}eRe7j-
za^!hlYfKcGW5XF!W9HK!Q1#7PW-p1HWK+j8i7Wpz)8-2yrT3TnVXn~Y1sS<0fW~IM
zHq$!j?keD(b<fD^2b!F#Y{5w?y$SInhgy#Q0mY97VL5cAky0WcVO1(fEK<^#gZ=er
z25uG9Jcf!x<hDhow0SZy5F2G3{9QBJSDpme2Q}cO{sY+!ShyyEic)7i^G-q6CU))H
zi2R|Wos>s+yc6qFV<YzfsG%_JgNe;ijQk8~n;ywQ5n(%#a1BYo0#DEKu2zhucUlxx
zyVba<@=+iLP~L#Fn2j1!ZqsH|-Pi%BNsiuXi5-6KV~7A|15>Y-Wkc>GL>xp;MVTu#
zB4NJ$3MVjArAhYql1pDf)%m#NFYp7{v4|DvBzakkb$pjYaKXE*STcMw^&pgv(v)VC
z){p9&ZR!&-;Qc>_`C*;b_2lKih&_r88IeWHYeTB9FfI$m*<l6rhkJ~URqOAXoAsB2
zk}#m}N8JO9!$=~p^<f759f#S>+@WzO^&y}=Y;{RMjjI>P{*HPck>8@yM%O{ds{gMb
zty8*>Gs1AX#v0XM`KI^>i6V^$JtG<<&sqDfzXB+n%bWC3mElsl4N2<ObE-Pt`^r7o
z=Rpdn?0Y$CZXjz!CQxgR>hA}j?<9L&BNNq^Bi@Xh-=2L-bd=LVzDTH#E&nwKvpteS
z%?+|QcxLC=;bWno`roG+f0&-Q)Aq^zIU>AE6Inb<F25N9r;q2{2Ta)=#f%Evg6|%=
zsAdhAKEqQ{fz&gLF0)+?41*a~=IRI>5h$53B^8{dW6X#1YJAdY1Ml=8(Z!QYfs{3d
zX_`v>jlpB-3NZJVf61+(L4U>(Ob_S>49ITc*~)ud)ap#@bXp(^x59Zx`oPBHocHS9
z*IvXsIFf<ajKlYs8698&*UaIkgY10+;98oj`O0Nz-B(LNHuQbyM#HTEZGEy_dA1LS
z+I=sgi#cH@GJ)MIhN|xL`#c~qL0ZAjiT;AleJ@%;e**f$6na2zR`5!_AX}Poty?Aq
zv0rA$slS%_zem2oRyJSKt@~oOL|F5gL4ElA_Fwk%6ntwTV=}VeY^*!mss>gh$X(1P
z-oy&{rW;l!z#nSM&+xx;_5VBH`>T}(7<B1|!BD5wxY)C@!owO9fkx?A%_DTcHgH!a
zb#^kC%rEZwP*|8ennGWzVO}#unfTi2WU@p8QuAfN{16V|%X(C0e`PxrLrFus#Mp%C
zbAC)p-wM>QBSpy$ty#X>#q=+`CCD*@sh2?3)h=%7cq1Edc@nG~`6gr@8^`f~zr%E0
zQ@H+=lkGLM=7qr5#Q>S<2c6gjqp#0cYAP7(UbrOV&LHyI)VX4?C?owiZoQ67nd)^Y
zWy!V(CwG44e(6#U*~kdice_v~(mj$lDYTqQP$`&*b@7I5;E_}-7Hy;<#l(OA{%tTw
z;fFH%$H*^yloo=NZNLK#@39_Gk*LEm``=&tG$;d?%3F6I=t-GG0OBO94*iv<jv@zK
z%%ZclWTr@><_|NY46al}pp3ABK2POJHmz;uHgVEG=-AX0aX`~;BAf$TNGui!P{yY6
z`;qs{V$JU;<fDQXU-mRff=;Q=4<0&*%KyyzLiZo>2A!Gx{*NGWZ#UrQj`eA>1V~uf
zKND@X<R}wVjc#<ovl8iJ8|RFuugsQW@~n<v3wo&^z=*NXbdn%mVls-S9KM>zn~2$7
zkse7)ZC2=9cG5;0S65d@N1h{bHM5ROnfL_z8@B%`@Z149(NQpRv^C!Tm<d<SGPdP$
zxPB)Ax^JkvnL)@$cG5&QN55G`tJSsi4sh52iA5PlL>x&Y=i&M*dA#po-ZHPz{PGdc
zJA0(=MQHF6#aOPZbxyc~J->k-7jOP9t+I&m!EQ8axdZP21*y}J=0k@eI>kRU1Y=;G
ziJ3W?VaK1=N`@-re7ZWLAVi;)Sxa(eRUPNF153{EN{9g`BNgZ1xQ;Z)nTwcpKA4F!
zm4xPivXW`dq((yAi0_ik$8DTL$K}Fg!yy6vS>mM=9o>?J3Dk89ZN|@KW^Qe1XgEfT
z{UP(gx3sP2F=<CvU$9*mrYpP${-g8d<o`G*wIl*cN=gQO>)Xid^!hgm_G_uIwI?k(
zS<ErUlt|2%&!@vmObj}O7P{+CVs_fdQfb=Dj1ZsIJLP|5Hb^%FvT$&45EE}M==+I&
zlTByUtnu&U*dI${NvcmMDN@2LsAottr&JuD@{uZunDHygBt)H9DRHX(I#Pr&x`%r>
zG@5~l!GFj<5G`E}cT6#2d(D?Q98@OzHvU0Rz}MBE9A%T4>0K~~@KQctf4=@Ei^*#J
z$))v=WMd~39|MqV_Hed1OorWR{sf^n+i#|t6_sAUb8P#v+54La03mpe1AsRC)oh12
z;HmdpsD06;<4Edm654JdnW8*e%GdC;k`-$`2e^g@&BKD=L{<XS9usoW(qZdL{fT1U
ziHHHHMp5QuqMzX}^aEwsxTdA5w>3wTiYL_tZi#j8-1G8yXk%%KvP!6=A8dOPpMj?^
z2F@n^IVEDo>=c*&kQh~hL$8hSqXLx0R-H>N5#a5}%RjkST?P3OHN{TCQV!=<R?4!*
zzjV4^`p-!le&p`H3u|ho8E@1w|LJMD`TCsY1oSnbLY6ZW$#OLwWk0IS`t6WdOz~6*
z^@;;0v>g51Xd@661apSDgI*vCESc=fe|L$Q?AI^N%*L3Q9T0BfG31XyncrKG(}Ium
zx>F?kU6&zKk4c}JV?Iiz$UbqxHQsG`kWGge|5QtWfXnG_A9IEzbqR^@blbwE38*t0
zv<)6msug}3cg|(7k6ELxbPDuA=b_`)bA1a-;0}?kr4($d3FxiOk4jl--|bAL7Y%c7
zHBk=!rt{O1(a-4-a|DPv)~HeIKBa&kY2+)8AH_Ov2xL_kRP^crK{?cC1C{Rn@EzG&
zRIQlCQVmS{J!`N7xzkG5S8hoL&iAH3*qB#WI~nY$1r-hZ-e?&XF-x#iMy*jH>zgOB
zq*}r7^^}M%SCf8Ti}rtd@+6@O9U1v3=b5XRb<I*I&M(bEuFiW4K8I_WF02r|qD7(w
z-~74WT_S#4IpTjiF|lqOH+ieylw!3QM{or8u^cORHd?bIM7iW4aHfUbOT4p*{1r0-
ziZBHAOGi3;-YpoXi`JjUc}95OSH@G)v3o~4c>g+nr=BM&<2g({J8+2!6LgJzL_g`Y
zPi&9&mfyX_;y+{wcjXLy4t)lRBbv-Rt<n+jzx-Gx(hiWWU!F6f2gJADQiw}i7T!_<
z^_U$}{q<ttp!ML*5REJ~yjW28c}#Kl<@kJeOVwK>lZKc0-k};$@B<+ryqiAq)e#X9
z?{Cj`BnAsry2~|2Ff?YgWD+D{)2%L6@liD0u=_KbH&9w6WTx6R>!GgFd868kgb3O@
z30rkouOGpkQC2mA5M7?6(9)N{r&tg8Ks_b`GmzY?X@VNszL}G%AMzafgyF>Y3Nh~^
zr`+M2SGB6uDHrihZ+_V4Tn>yyb=P~v%D6XBC%@M71)S3;`CfU7MN|jH%hOGXAnEWq
z=#piTNKoVM(!Erc6=0|3thX}LUk=@f*F(RnC@H2*w&}_pyoaKQX4=}Fr$2jF9j-sF
zv?57@SQ43KWZBVUEtc>Gzewxcuxmb(P8E=SrLQtFZ&@JQ%>;w3*<X&luuLr3=<8-+
zxg2&JjXPZP#vWmg%PmVr>EJ!lZyq<ja_PBN>^vw3s>z{xNHg}SGWi6rTr8s_o7cxX
zVWZ>|MCSxjc0$~?7L5kVFkoV3$t2}R(cS<^i-*oR&DcAx#Ng_}*b7ek*kBq=QdOhU
z$#$ho%PEjNlJ5<ZKQ)~qgC`rteVC$6v`_HmQu8%(p=(BhxXpWX91)l-$EXdfvltKQ
zqSLriz}!mPq8X$&fEL-GxW=jBFun~wt)tgy@(3v!-a1|<FcGk)({{*KaJ+J@h2nuB
z<3B2mD4hpXrVA{p_kS?KY_`{2oc;rxkBRoC#>RL&?iU|+&uB2(L{$L~MKWFj`f?da
z=n3qK(hJRQ&28M_QB91G%WznRyq%ZoYCnllq-d`ACXO!{Khs?QdH+k^y4W_WewAym
zXRmYD)tmWkP=azpi?Y#0hNLo{c>&fA-UzVy9BBdIDB`r^W66I&T6enBvnv9iYZwd*
zyspW=+sn^rnCIW>IcaGQr0uagX~!pPmUh5Eo)EpJ+aIzuVEF?$l#K({2g4f!#p!N`
zR+N48WPHc!J)BoVX{Y6lB7}nyvMg-|<-cb>l@ARF9G#OlU8m0fP%L`|O#|zOiIxVK
zxCU*+-R|Vb@0N#U>WrbYiPeRt0X6L=%nbGEGPf?pD`-rcCzRG{nR;4vhiWPI2+~wH
zxD2v|6G1ky@xL_Fvqa>mt1B6o<!TT%mlQNIB5s^#XzQ?C$d=!51{o4mpBl<J;bt(l
z#bpyJbpl{*VK{?PunE|bExT6xe#e0)i-s7z#I2n~;FD(VYVns<7m4VN+0_Sh3|_Dd
zRT@I4^q^Ay%<p~G<_fpL8@{v}t_Y`~LnR0-P;v3<g3P%a8f9wlxkai0Sl@L$--Z}E
zJjISP05Ud*`XyvzB(g=W)=R!Zz6(sHtUx|<Jj$ql#5i{u9CiSF;S%51r>^%mZcKqt
zvbb+LYQfZJ4$-WGoD0ZD0vKXThtnASMapWZF$rtWv{e0@dL^sYIyyR97<bYgae#ZS
zCzr2nrr%6-I`l`1gRWz1ceMQWnt!yD9+i5@Y~6~<&(GnrsmX$#8^vvQSY>CU@wvJv
zevcimdLiO3)p-eEukpzXn`E6W&+K<_xz5jK{T#WOjZa1%`5_8=E?#U3scE!;2LagM
zOKYc-W-*ixl_(D46FlBKYa`I04_o<-q`p6pay2k%|H+Z=7-0CC2NPogO<xH8?TBAR
zTX@d%-Gu^)_$2%NmXRfmPwSk~LdzAkY)H+%jzPKW_X5p_zbLBW!sxr#Tx-5}<{&(}
zKxLmi;uBHqa2l-24FVX3cu!(ejNXVNC^++*ms<k-HoJ+HhtIA-CfZ^FI~+JuVqkB<
z1$|$yp|wtm0$tRG$m<7RH;GvcCxlUE!Mwt%n&TNw($~}i-|b9$$vzld(K@PfFeaKf
zqCxz8HawWs<d3_Js}YPiW><nW+0xx$nbxu?;*pT{NecgvpL45m5KbQrWkaZIY^I_7
z7u}$&@SCp!&2GN%hVih@gG})FJU+)X46==atrIy*dq(pu$1l>X%IMr*+D2S6On*-K
zv}fgmusqjtwT~jD3I9Z0=U|=J##XHq+%Uo(Qu4rtm5s6rKkL`tLJH7bvyvQ+!_>N5
z3mq_cHnq$`_VV3}@4lZgP<jnyxli=DgVS-_P)gfseXlbst7$6w1}c&I#C5$Vy~O~^
zN=kYip8X|cyQ^((^^xD>MVRe1u|w@G??lrHHY@Cdz0C7EwF*MDv;&vM>a}czq+0kU
z{0=Jvo-CC%zqyEyQz~!L`uHm##XEsn1K*D7?EeZifPGrW{xEE)V|lA6^U(q4%wBgk
zcXZU~+*2qlXOPt1anT-Q(nZ_ok4gL)R`2|rU?98Qh9C0{2&F(JE-?{XdepkbYikp$
zkdBl_A)2c(ax!O~Q6p=m0gxdq7oD>P^ZR;{F428}rosu`S(eF=rCC8lK1xDap6{zx
zyq9?4iFZL6t$dvEdQv)zg5`v?ym(w-WoLqkvre%C0$Aqf6W`NQbigFHtAF8olF;wq
zU7ON?$w{8*1^!Imhd$KG{5ave&K|%%gR3B7!Bwrtgy5*W7(>g*%H#8SNt%6dU?3Xi
zEWB$nQV>f(iceqv)zE8mBxq*`6xsYNPOBSjY-X~#1+28fC@U)gB1xj}>^ok9!JG^)
zQS&F`!y_XT(Yme9%C4@-5Gh&w=Eb?C4L|>uJs9grU8#3i=Qajj|BZvP<8KxykEayZ
z^|yL)A4yTVy6cXE0qQP1%-FoEyM2f7HY0170CD5-I#qVP<eHz7?nV>skt1A7bT{X8
zq9gae3|G~+1-Jv5uxJ)xzI#21nZk-Fp2g4B<kOvZP;ZU8w-Y0K-SK*=CG)Su;pT1b
zK1y8fNIxg!>gwoc@?IT4x@h$C$O($AU)e6VBS%k*w`Vinnnv6Ed0k1s8kx~?A=CAu
zX?C$4&`l(*P0}53(jQoQuU~r*jNfKod2B{TMeRDH<mTk$<mHjj|N1UjMh5(xmnp)g
znPG0m9@7Gqo(N3J?A^a+nK6I6de{L0D`YImD9p_2CQOvXOxcIi5)xjM$|OtZ{>j5X
zSTs8`=Xo>o1e}A#m3j0uvOK1HU(_spU1RY3=6bzW36TeH#sf-jQ??Rq_cpdb`V|Mw
zp~8CdhF={E@04toTkoggf&4RRs1v+igrR3o+Fa`fw%#fSWv3<wgPNDsgIUttC+IT$
zwX{Z8n<DqGF{z4}DgcxFnPtQ1Wdf1C%a$*va9@p|qI9Eq4m&cd*8GOd0uuxZYGfp|
zw6v6zlq@W$a9<SIx;Xx2Bx;8#(g(HvxaCZlvsy9GxWZuu&$8_Ot=u3YYun$IZCWv9
z`rR3kzkPG}DVbrX{O|J-J-})0lJkQ<;Ox-jw+=|=!PF`(!8P|mqS;=>J0xZYHAl)(
z@y0cI=o9LNma!(P{7iogd_TUCFzSk8_1Lk^RNr!fc2db)CYyzjY`?3e4VfqUY9gDe
za`p&(?VUfnf}i=lfJS}cuYyHyV@EG;-g*E(^M421sm*SSRC0C^cMkVmE{9!m4B4G$
z&m+Wiun^Nh@q-=-i7zgn-A<&<eSaL)+JALje~Ae(^?3-KO;Jv)YUbFp4txk;WZQdM
zb-OX>Pw%Grp~{`rJVe>wLn-?1%p8_>_*ex_Up$5ENfG~tMRh<Xn`7tgJH7kc@4BDU
z>Q)bb)yT(lT3WH41!9_+6Uc9#q${a)h^hpw%07YdkilOH<8k%m9Q}^Bkc8DCAs#qO
zM|(7<CdB}?6|vRbJYLSM9kkCbwZoShvz16qT~w>*cR!1sow6_7PQSe_QYMSYL)opm
zxSe!r<kQ`Uocq{1k$9FsRa&Mj7){rS`=viH0B+({D#t+H0MTv?vgWMsyzog2Hkvu7
zhsCS-2j;bzyZtTCo4AcI1l})VJzP^mG|_FiddZK)hp%PfJM@6>7T$clll#McP}BLk
zz0gaaYstkld5sZz5HHz`j}GgIDOlca*GHi+vpsF<D0%c^`E87*0BygBAlI7i|CabD
zE=@pY=q0y%Jy^fIX;6hsNo}>Csd?7?vO?eTd28KztV3Ipe5U=fh64l9JqZU(*{}R?
zGR+@7DS0t7zRy0`YvxJmPG}q~Wkhg{c?N#I&|^YCZ9IcB)Kf@dNx)|B@YU|Ft9>~f
z>y=-r6PJk#K)2fa?uQZXAu?>?)jd1&wSV7UxP!0@WoMYl0}v=@Sx8dtur?DgZRKM~
z$tb)EYY~%&5eR#6jael4#roUyc9=GGHE}6rQK)uc#(v#y2-q#iSmsua$D1(~Ja7U&
zvy=DYPv6Fu7Dh*g+sDn?z|7c}Pl(79VE)*>($d);upc>T1lBpa*PVIX>*_YxIIGzH
z;x#wm@9#pa6jM2~Ea5yP6u4J0%LsCt<!3+<t>1tewe;2`!6`<08Y!jbi{=l_J>sp~
zDv@CTdO`mqXWgp#OXurfCJ#=ft<@HxO=o+bA9`dw40d2*YG8uScB(hpBmN|9Bmd^7
z#0tqs`&z3Z%SI?oXUz#bQ-=zB<`_K_L?<udD%`#%rfXR#hVA2<-EzalRhhxaUQHFH
zJF?%@^_SrHrwOKyOlMPp9K4xy5^jV%?*iZV6#c&JAs(+Cw8YyL2E&7@eHtX_m^<$-
zH~9_Syu?qourUubF{QdpVX&aR4#=b|-X2Zxc53><L)h7uWPbSDR<i22wbk9?9_Z7e
z)&^fBWpAW8c9)P}{cDqCvbHGLiH*0UG*sU9ROO@b-6oX6#hw(g5bA;SOxjNBsfR(4
z`FeuPgLz&R`9|%p4174Ac|z-D8or(Gyme|%<NShcmiq9HVij=de<(H_;9MO#CT+Ky
zb*qu|VVeNx-1Co;g-r}?{9C%dSs8Ka@$obpyD4OQus8AnA4Ss(7Uh(n>p_uNCI`&h
z_p;t_e8}B1GjdC%$zo1|td3W~y@_9A_>ea#5g#Sk2T91ym+2ql{5Q?%@}6imEn?Y7
zrRg}Je-dGdQ2&36s0zxPG9P|ZYU_mXKZVyE*HR@wLWK0_)x%3qUS36{3VpPY3d^)@
zi>{$-bWQ;vE#l?#Fz1(`F9mt+{(0@z^k)eLrdRNfX*xOot?gQ-AO$6qm|p3_Qeopr
zv0Kz!Yq3sGj8)+AWoO5wYw5&KePd%72!hRZ6X8x!mgFIhNJ&ad7J@G}{R3SIW5#f{
zUi!`>OIPZPAjUw2j%HF&eEkR(abR%=7ocS%FiEn;l$iGU?$VEBVJWL(&?lx!YVr_J
z^_1sq&3*c}m|UV;hB6V~$Np|LSzH<ii$GK-eAmiiHo^B!i@CkS?pHtFL*AzAN^uQu
zua@|60fBkj&>_NZS*VZRuTx&vVFG!f*qmP|>4N2I+5}bp<op3}9a%J24<>1=Q_4?C
z|9yCw7yWo2m-D->q~h;{M_Ns6ut##+kiVMr`)wB@>24urk-^D09cwWe|M2wO>(1U|
z`Tc5HsjL6LCG&<+${?0^0!zTK-|LQpS|=8!6cJiP&CdH0oV|n7O$x+*Lum|2or9)Y
z{W|(Rf16bTiduearU#{jyxbTAedYsZ>kWY!;~Qm+zO&6KD=Rp7r=`{M=*Hzflqp|V
z_}v(oDArYse8A{(cQ+O2bRB|=Px*Hi1F9c$2|8C9S@RKmIEFL-Kli(~oV{VNTB5%@
z$A^2EyE>w{;X}b;_Ay~s*q*AIG3GifU?4H-?PhLmy7yeK8xzq@DJcrkQVi18GH2{9
zLkOH4n6g1afliJQUwb^jwykfu#l~@0ytorHtRT<~_7p59bfIm=YW^&mZd#np00ZEC
zul|y#5{hiH*|aN>0mM;jb&lLzk*cO5{NF_At}=m{gF$Xig-pISuiak4n6&r;_XTaS
zv=JN$5G9Jstc&|r+s+7Oa*}3fbkgt4X1>;^4Sj!omr*G#P1{|dcpt>Z0j^p~UBq0N
zAD^-J61pmPeY?e&MV8sn*9)eopb)$2|I!;N-^G*1xw!Ee&N7VQ#zL*w7Ahj*EBLk?
z`QQ47z^PK9edjyE>s=N$M+PuG4*7JsRM?De94=D~{1bT1{ge-j`TE;;wC^EDvG{JA
zHL2J|yE(f#zK~9FTSkW(&nAPmoAYFYXq?lBo2L1xG6P`erQj>)`cy~b<9V;XFom_$
zw!D2)L5%-44VosLtJ5Ql3TWOa?BgFdHmO`Ae{iGH|55F0^btNll+?jWNriv$N1_z8
zfJ=dbcoXGAllwG1aaAlE>WYDZarO8Z^o3JW2PNfqind0od^Y>=_^^+c(Jd@~OpnfG
zh~x;NIMt3>q1i`dcsNC%WFROAnGMoVh)s@H(ohjO@$W%-B9d~nL`E<zR?|AbETw=9
zyf)i1mTFX4JpPTe9sF693E^va1{z-1Gk%8&;tO7ZsqrcQcAH~JabfxM6`ifBOx0N<
zH*btiOVaq{_Q;1lFP7S@U@FCKxAI!hjgpd<e(YR}hUj^8id7*K=-fPT{LzYWIelme
z$gBz^&i>Aybzur|(d)>|D6-TeXK={XZ*pg>q}i#rIw09Qpy{pD<e*mPN>Vy9itnG@
z???{0fve2jBT2OM*ilNcS=V!TTC#bcRi_#Lx*$bOxb;b2ws7gLntdJwQd3lFeQQmO
zc!ITcb>#$772Kq?x98>g3(2T<DEGXW99PUIF)__i^6peLUNh0h9u#+2Q=0h^8h@1v
z#mGC3JJ_2oqs&WB>Gg!^o9{vw{pL)Hq6>SsJ=gu^ah{H`QE&DG2KQYxG8kAn^xjL2
zD#ANrE}=p$XB)-D?K0WdHX$)@ueUJqO6$k;=0+6PC;F#f52EuilUq+z>s&!vEsADy
zMM#uU=o2E`q(-9S-yqgwwNNL{6DHxztXTrNtXdq1lg+$>ak6($szc^o(?3ju6DYjl
zyAZhI78zP~B-RNr_cBs-h9GxYGm<L!$9rexbE*eIsIxNVu@g_)5{(HL2`DP;O)vH$
zCU-_dl2&wf?m|*t&(O0vLXYvY$)3U~8TB#l1V%ODdg~W7E@#Xx9xHO5Z+v3A9h2YN
zRmH&Db2LaMX_bF<K$8(~mY7?H>6Pnu6mejhZ^d>iq)VkX+6}Jp1%(+_-WO2am>;K7
zuKoKr$nQ~FbLOota`dwQh8Gn%L6_U|t;4bzlKP2v@%VU3Ne>!>4Z*)hycqWqSSo6Q
z)}}CQkUA+Sj|1iKmou=jUzjxFn#BU3zp=5a9B_G1QMref+idI<rhv;}Q4qM9u20_C
z3XAu8J$-^{GMo=Vw*;J(dqJ+JE4_X0o|C2Y8W+t3LXOa_ZIhx*k2R8Z&Llx>VJqjB
ztUkTk^1G&_=wng4<iYga<npO6Pi6#S4dwFkBYEio?u%}3Q=UGQbd0Lj{Hf9YYS@6G
zp)qUg<@L!TrUru-<KnV4vHiD%Os43x9CLo1Jj}56Ix*Kj{+m-(nLZv5S{?{RSl8)u
zxYEp^Dyui9uToN_ZIZwtDbHcK1=4r740grRoYXHVNqX|*dH9Vf!jlEwPg?~*YVDte
zdnKaMDM)w#vi9%#Ot>W0kizlxLa8@Dpte_Ht8`nn56X!^v9y!&i?;hMK1*{eh88p+
zz9h}>5h74<S6+YZH$t9GghGnUgh+6hz22uzjlFs=PyB_hE@pKdE9^(kB8gzKE`HXL
znP`&~SlPC2)4J8a90ZCDQqj37G&y+U-2y*@d9_Kte_#GPu06g~8gE>iFh7DIqAaOd
zgb48v46@k7`>jAR(6*b-(4iH`BKOYz6E4c9(QL)>9i~w@lQfKSYi0T6Qy4t|d96G6
zO24EpdCtffYVhpT&e?Z&XrQx&RYZfUy^zodIDd9@=CnC!pu$Jv32dIMmYB8vojW~t
zIqUk<`xVJG4De@7K)LObu9{J`GVNj1gD-13r}M$46<mosWA;;%xhju7J#38&zFNWH
zPqxy#wXMh7oowrN{BmBpqJDmeD@*c9&TH}&ij6z@Usy?I$=&bjV)yRpuYL3bI9xlR
z<pylz+bL+_inP9p##2?oP|Js6RceeIOOBYu!kETTyCsgET^F1ygz}1%ykU+Na=xJE
zjFXlmfzOE*IIU<>@$-Wb<#WX)E1#m4>n_D8_F5B`rQ7&!n{XJcfAeRDkyD*{cN&V2
zx(-sg9qI=Q<9uEINGv00Z}L^{IMnudOglde-i<DL-iml->&AkLLLZ>0E9@;jx^($l
z@V)+IDy0D8f3@A>_6GW*c)$3gC4*7v$QlLQB}It-mLn0+FiR53iLfQ5RCk@c$Cg4t
zbP~I003JEQ&doclhuhzxaL3jn^-s=n#%{pDr+B8WaN983i99@LgI^5VZCT@&&;*ny
z=Bm|$9eh}UrtoV^lLyUODMe%3MQDeJ5);NXozacC{o%0Lvbu9C7S@Y$4lc-^z=u>@
z%-P-1r-NDoZJ~(9+Vl>se#YM{Vz2nZmpkjel7{}YMLv8N03=JS>>@KGq}{u->WjXo
z(DC(L&B^%Y*Z8s<UX+5pV7fg%9q!Q^9TK=9i5Ee7=(Uwa19M}UM&5#7!#zX6D`)0o
z*J6HU@kFJNUAJPDVzjJmAkfs3Gt*7u?q>spsI`r)&iJeP#aW+sfBU7u;u!<Mq#GsH
z$KZ3X3<`SSXGe$Lulq~tY~STBG0fMSX$FuB!b*--n{e!Q{nkxMmOs_Tk7w=kp_7km
z;FqiwQqdHStU`DB`DlP_xvNE~r5q*036UqL??<^K2Z=<ue>`%Cz~i)?oLMojsR3@I
z$&c>dl6V(yWH1U1R%!+r<By9suXx1(HkzBX>T)PI9fUV<n<}|Il5e#T7d9WIV-Jz)
z(HX19iq&t#kxmK;fBWuguz9CK*S1wo-nCyZzxGWX`rFQ40%~?>#X7J-DW69OY_0R%
zH`0zl#L1YFjDQz#M}v_|J4$F&!mASVdQK6#rP24*ZCY|^GP9X3^PnAP8!`*mr_#}a
zQp6ZZ1(e)xk!Gw_@4>?(B<@aFxsYQeM4mC%f^g9*^hORzPc*P>6kW==4v!i6$vaJ9
zfA*sH%+BbsbG^c|n#}6U2vI$x4Y+;QH~9{WXwDq-BMEGQOh)+!T$vSQmAT4LPtxu;
z4`-qYxjG2riaeF=kTo1*V#2aMskG~{%`b+|R0Xwq;YG*DtAtZEi7RPIKyB&I4xAqK
z<#$r4>YrjNcj{Cue|Py>M8H?S^SN`vHCr@cTfJ^fY#CU?k6GV7&pu>C1v^S^S3=3B
zyVkZy3+-Gygp9R*U8Vy(WQ9Z*+~OM+5rcAG<T5V^_OVwxRnJn!r`>I@*AIVZIJS4%
z<BQQ<`yEnn+ucWCw(U!vN5MPb4B}gdHHF?anlEH5@xv=RREM3Hm~J~W0Q~<kd0Ik9
z>dU%%N9=^BW#nD*+dsX(UyOfj+~J`)rRNsI*30~JX)2+!cUJw134d2W=QP>XIKrgU
z=E>r~H&qV{m%;pfU5<oqE$#s(Sy*RI42iva#3d?f>WOucLF2W{dQ~;WWDX}{c7}~q
zcN^N15-rg$L6|2)3p0Q(n%F^XE15#sr+dsZj`!d>DWt?qng(I_m;|LK9l>006`MZ3
z+xgythPgzjk?YCZ_DAdUqEpr%YEC!gP14iO!qF{@3GFFO3<?Sgi@v2VY6?OdHAcV3
zG*kcfXI1f+D(dM8iYmUH%=#}ZAcb1y_?{nIDJd}%E6Vd$|3RE<+Qp=fC2Se=2tfR#
zb?xuaI4aSW7{C71lyCkPal@uMS1^L%?(W@D(LNI<Z5H#`;pa4~+>St)xe<@3n?K&X
zpy3s_zzaS@8LQe@Iu&6|vhn(2A^P0g#KR-fqzzVV*rP8-J;QrD@HM#W96Y_bxW--l
zg5PnSjOqELB4KJeMCGa)1hb4`*k=6<hVD-VSd*XSpB;^FGVQ_~WufvB;^K*rs8-_H
zG<w);LT+d)6`wo2O+8fOm-_@a7xD8$w)5oq6XFw!Y*h!oo?=#_KDs_7sMqV?dw#xx
zbMV$(^<ApoDJ<4OI_#Hb-P81(f~U$+bHAch8=m=Xo;&b$f4Axk(N-K`p|woYM}=+9
z2B=zrw~g9&Zub$xeh}pYBmkHgL?1kLkNaIc{>N@e!oe3<<109(FnTw_--L<3{+K^G
z7ZnD4^!BZ))VY?imTFZ}N{Ssf^2LPkb6+q(_Q1Vhp(Q0rhIBlRGNfBlUQ!*}6;kC*
zXPPNz^@(2u<!AjO1a56@DKESNd7`UVy_!cXR`t#ivM9Y@ev;8$RDb&a%K4oi@b00x
zrC;@S_Mfv_mMKTDW@R}Qfs^}~AC$nX)B^abIF9u^*XE(gSy&jPvm!1rzA=sSxlr_r
zN8iIj=L+1vvOx6N=yG}Kxqd_iRyhlLLNmulEP0t}nw*gjh3M$~Z*9ZIkw)JwCF@zJ
z$fNqM>*{LVc^VmGQbf_>OZHZwj!hCl(Cp%wgES+P87_wwYI0&<hhsk&DlJ)TMNP{L
zaa`u-(WIQ|N%iOdBKyaA648EnuBHS-W^p1=_821gcp{bQ`K^sv2WO_{Rwj~V)fIno
zWSqv=P2X~!mK?YEHp3Nd$MmxHnqyJ36V=j;YGCb2IP<lZiQda`Y1e!TSC8WSwl}}c
z$M$5&_bDe}f|c%>M5mj9;?_z&qk$C)zEh7|@Sne*eVn|Z=t<iT(VB>MSRiP7VIGk5
zn>#1(zRc8~9C+wom!&Y&S$u6uhQkV3z2(3LA1@vo0v%dLH-ds5!PcT_FG3tqkgh4~
zW@e_z?flPf>yHH^yQH40sATNIL;MJocpUikCo{A7)OA3@?G&%p$p(fUvl^2wtbdQX
ze`H+b)NPEpK?(~3)kZMGRt#VFV$8R%5i#MVDk&Pf5?_kMwMl>s+>MzL%Jl3wdHQO7
z@{=Rd9bLY_%Tk(T7W|ilx*0%MjSgToAxxWURhk*@+6yU#xOEiP$-?64RF5=rVOT0U
znQeX{<8hgv<%_6?HJAbVzw2(f;ede>E)6t&=^#x_PPABH|I~GMheQf|ANva^Xb7Yo
zSBq6wiRX9O8ai|;xc>YlPf=j2CoMe<*Ja3g=V5bHUYRhdvg@Q};V1dMk5ne&6cR0p
zRCByO<i7{{71~t90RcD*xOyr;`A?Em7LRrTT#~NysoXy!F9jn>Kb}N6d>a-xx?&_?
z5s=!=&SH7M(${CR1&-hPpEx&Sd_tZ$y(UY}^pXxtPzjWtJ<1K{*|JC$trs2-6Q==p
zZufrvO|+?4j2KTHezoL!#@YU@>LTS+&*L@m4=O4QSU%wA!WFlc-`Pluhuv=dW<d!8
z^$BGZ@Y8Zz9#_|2ube!3$mpRMIJ$^p^fkKo_c5suu)oLYr)yo7qUL3)ut}1arnQSN
zi(8&EjEz%K`@YCuQyHsDG+0nc>b!ctEtLNQ%EiQNq*m|P>q*=^bh@i4b`Ir+jxJ5B
zhaNj4mDaul>d+5=e`g|kXMe1Pl@v1rjpf`3@5@O{CoVBtfSb!?db#39or9_;M6hc(
z0!;wmhgby@ETO$fMXO8s#G2n4l@J_N_fTNFU154EqLh@v{h5Ee_4zj;=08&!ZTc?P
zv%mgBq+a;}C(!QUDR=T~aZ`Tqy4O7IE5fUwsb9{z6gc$A;qRP`qT=+~20pzG0s$bB
z@ciNzyf@XqNUSMWn125cD=Vn$GzY+^2(#b0F+2UyQXderPpmA*yI$Y^-{R}j?e;EW
zT+OA<qoo3t-{6pdy0)^e#WX#AnP>Ygw|)0H%iyA1#++!R!`v(%YbK6EC&7Z=r7NeM
zNuI-h{8dVmboTHl4K?+TK1Tf5-Ak7kKZD{AoV<<-y!P63>cL+AmOG(kYb}r`2y?ZZ
z`};F)1!CuD$QZxeWRQ5IneK$?HlO^38g^Rc7;Jg<&+kHn^nVP;O~w^zm`87FY}qZz
zamj`91ih|~J6#BI(Q3{EQs41j=ji*E8MV7kWeu4zgDwwo?}sc@mK%>|e@JSzwm{=v
zy(OLz&C>L_ALg!_myzOX;wuSFWFtv#ej+ruRM<fmk7_}P8=Khg(_ku_yA@iwOX*s)
zN({j@8*_~6Gg1GJGbxf-FMjY5c-d#N85!Zfid=X7nT6bl_{i6L{58CY_kz<^uwwr~
z4-C0|`lil)I8$onPLQ?wO_46#S?u<(W6?)x^}aur(`56fu}|qQ_>G66+ktq^n)ju%
zr<ASL-Sj9GMvi1VmhM22Mgj9fsbfJ|?X0ox={9s@H?i+AhEu<C2ZF!qQfkM4^CK;&
zuweWX*VisuMB!PBqKuI+q-|vkLxY8Qx&%%MsU9cPsy;9HQWTCaPTL*y_x5`{%M`CO
zH+aqdC9iN41`!V>J|z1r9yP@n?u;boBdWyeI$LT93A?<pMFmQzc$pe$=j`p=pDi)P
zD@We!-D$h*2JP6XSe?VBcrn54^MF^27rv1~W&U=Gl9=g|F?R;eIKsH#77r?_IEG_O
zeg0&~-Rx1W$*s!e^)Ghr+(?ZuyLe~yITaaUuIH#7S%6ei#zg7--gpN*a&@_!8Jig2
zzpx>1_;>Z)T}g9*J=*l!S7=@b?Kxd`Rk4Z@Ht!CVv~Y!iDN7G?kj-QIw$rAEEzV7@
zi6=6?%N!?t1=|NcQcL0}YTv{uMNshC%BOD-&N~`9-##6S@2rClAujs=pTyfDlF6Y4
zAkT0fByW1h`V%;e66%TF&Y#nG$JE);Ga@1QgfOt}<!TU*_1TVY2bw6b2-nkK?0n6Y
zAdJSR-ehcMxtb>tQ!jUJN&a!$n)+<s?wj%k@=<Pzy^8wi^Xb#@=}T&f@)3$SiUhPL
z*Pg!qj}E$ctXi8^^v&4d4^XAmv{^3a`;$?#1C0+!{63j&fhAw2A2V5i94RyALfMqE
zgof-VQ0Q;ZTx_~#kl%&St{(MvEkz%t!&0;MD6^7ZN>&4odaWen&8U-LJ(H5tK?oc@
zol<l<-C3udxJ=#f`xT=f+r#YTsP#db-C06ZWbU_rjYKI9d&7VN|DvY8t{dH|8@Sp=
zENzlwHlr)`Ze?HhS$FXhKDR{$-n}{ms=~ok8y4n0+VW_12PlzOufK&#OJ|rQF1c6x
z>%GM?U2dc(+!^DDn*Fk)&-Y|SB9rWTd?RVY=a+ES@x5bQtkEdzx(n|zv4uT(@JV1~
zc}axn6;nqm74UsR4(1m_5h6V0I|VY&v5EBFt=-FVq6?Wn`h?uLXL8?ZiVAPHvD8Du
zUt=9tx3Xa-8y4jk!<hC_$wQBb)Pk?pS#Ke|`Ju$CiRK%Jd}@Fw`Pqa&A+-gA5nE?I
z2dLaw{C10ioSUgxYc(RPYh5F0wDSwo^DLSofq#r*49Ff|Ew(+h36O=0X1njJk@D3@
zG174?EzNCOu{@U@{SRA2(#bBxc?OKW=lN*7;2P7E5Un+RKqEb8OhmTjVJUb>!C{=(
zP~PH==9n^@3FiPWe)?Jd=mwS}xr9$V#FY0^+iu!%!DH5|NetT4$#cP~^kuVS#%^NQ
zYm5_=%o~!NEh0H}?>j{~kxPAphtmhT^avf~oQRjuL$Q!q^1(SFvHYF6K(e#!_7jOz
zlp6S@gKWp*7kHFp)A+u@8HQ}77(SoboIaV!M~th)BDTCrI%40$9boP;Z9scsf<U~y
zAap&|mPFdUz4PGa$_3%g<f0CUIdIYRq|0u|AXf2rpaJ<W(kVz^Eq^Ay8og$>tlX4~
zbhwTC%U;Iq<R>`8ofrDou$-GS(qVh=CAf#lHvCQe1fgy^br&hrUQ4GCkwj>G$nH5S
zf9QPsc6NX>r2jN2c?}nHi&btg0{bb>J>tM1!nGspaWD0bmGWp!#)?8Q&|v}E*#tI*
zV7<efS>+y$mwVDYTJI-Mor6!S4b|W=lAhe2?UK!ZfRDyiJ+f_Z*m2qQK_z6cFIMD7
z$lbRTJ8R{@R3@5I<nwr~_a}}TF1Qq2Jm=Xpne>*lC&b)1nUyXnl@+Tku@W#~6+W6s
z@b0sgmJrP3;@Oo_)1!Gc{-Y0$`f4u8x%}bX9It3)U+;-&a+AOXFH$C=T2okBbn2aT
zAWp2lD?^=b!=#&(1tDo|s9hBv@k%krqJseKb0Tz}AWq*8I7gDDm(*|;F!wmv3us(C
zxq|YWMV^H9mk(`C{s+jmXYRsiuWtU=?&xmbIM<Kv$ly8nepCr&@a3Enw=ujhaa3`N
ziD>e>A1njQVdgvY7TOl?yVDmUiOCc{E>Xq5l+lR&bRI6UQc@ITM~Bm1!wxVmT1W}=
zYRZT|F=pG~n3-7>wA=z0^QPn7cx;kX6L-fOzb~8M;xEMF?>e#mD%+kOU&d;YN=Z>y
zP)y{1uHU%5g-Xdg6j(B%zmqgh#{R*rKC<oV`S6HPdnH9lpULaFPseam{{WD|bkz=g
zu;xgKOKzL2h>76U{n1ndP!<#vR1{?5B0RUxyUg3o`ZnG#$`l^{_3CO*=Ed(<Sg+ca
z<U!RM9)Ys&v*jdQc1#p1aa@^NH2eR>+*?J}nXYTvBoH*XI|TRO4#C|mcyM?31b2rS
z+}+(F=)?)`?(S|qQ>m(5z1RACuO6ch{v2m8$jk@d`&`d;-|r$%W9c*z#Y603p6SdD
zzq!e-MCuD({X1ERNo#WtGVJ4N9Z4@J1qR(l0OD#m1-v&kDKp7kt{fV>vQ(oSO)U?@
zQ>x#t(~MTLBZWcyDgL-DFmJ5R@j9eBknwzf9q|6TwyuuVFpn;2sD`WOueb6oM+eo5
z1<*VL`FaL@)?y`s`5Vr~mU?My9ylkRd8w@qh+3{WPuZ50Bu|UUWgf7NQmaOu!(1I?
zJ7cR=?02k<`X5i4vKpQ|!3Q<jrfog`dW#SfrT#$t^yxE;m;Bg-fWjRu&pFRjX&SXm
zvFf2j?09q8*rr~`>)8)ksCLay9N!52{=cR{`Ry_ABgeJJ-(%B%5S#VPv-R#~@C_lk
zfv-*mO`@Q+@f7_u@~E<aI!wkG11;^AQLeomT6Xdgd!d7*6kJnd)Tj8U86rwL>V6W@
z2<7PbHV@m)UJ96vJf{1A`TYT{waq^h2t%O5bfNJcA@n}ZUL7F%s`(+@)Wld7fyCQP
zq&Mo-nhARo%U=WKSXxqo<oxNVl$IchZg|rOxh!YU<x5+5?81+o!b?|?d$$^Tf6{`2
zg1FXj6x2858$-LhhI#o$uto_F)s6z3>O9`-*1gtjn5)~{#*+^NZ|`~^(YVW+M`=c7
zOfWSR#)sbgktsF@jKP^GoX3qG=YAhXhQ6lwW9@4^-2Phr9uVkg$&0!v-JlJuvA+ym
zT?QnxN)7axJ?G=UYf^7LdV+UOJoR5t53Oo=kvHkE)Jn}rPnTel%iuEFz2B?ORx2-u
z!i(4$)I4&>cXS<$$3|Si*xv4IZcOFa%Vd@rN~ayyHu(Bn7EU3?E-o<^muwPXSLNt1
z<+ZdVvm(I38eBvXI#we1|9IXkD8NW0zcrsLe{YcBEt8Q*&L+A?)+bx@lG=I!S+rJ>
zC>*ZK{^`#V)cn|E!SPOGwTIni4~kL}9G`S+iJk%f^avouqWM{_d-3$08R6CPpDSu9
zr)G1K#jL<)NOyd0aUBnZk3Pb<87_^V<;_{Ep7XZYc^6RDJ?E>AwNmY?#*v<@KX|*V
z>Kr^@Z-&chSEcT+Wu%fR*VwOboe%2EW<DH)ytN0mPbYF2x5q4i($Jt8qM$=;VGiyW
z-ms~GLZ@GIs<qJdm_|4W!S10Z6u0w1IlGN8KYoM5PR?<8{`zcz@HNNsz)qe@yA$l6
zPciEm2OLZ<nJn|mN~fo$TE6xo^i%U9f4J=nGt_4E3`#YNrhtxu#LH9&Nx@jmC@NZT
zZmAXrGgD}_b;EJ4phcEH=%Gj({yt?GF2t?Kkccj;b+cp<oxQk!PohnLLGAbu=B><s
zuO${>1-ypjT4v}nx)r%To22<Q^ZiP#gG2+8RDp;?cn0cGif_5`wNDKKX{6j1!}uTj
z?uh!3BMu|_I06lcoZPUYu!-_6<i@Z)!z(Iq*hhEV1)RAw;l4rd-ngL*jkb-*%I%!L
zBXwAvr&baj4y6x!so|p=%_Y}=`d)OY%{`Uc*c5xr9cZ-9TYYR*ZWMH^Xu~J2;o%6t
zU``!cA$+b80N`U9MAE1Jm|~vh56F1<=ICqt;`#T^nCcN3R1fsk=GTwxe>DGUNDTC3
z5bH7TZX?%ihQcXHR5ljgo%4?rL|>B(NlHoR$4yk<U701mjpgO$Oi)u+{xKwuUJ_K+
z_?9S@AHE1%{c-HBd}-Zm|DfG7OcOn>q~%z4j6}`a=<>3W=||MqK)hv9<t#X1A3RL4
zJ`NfhI~9lbE%!M4{+qScOs+0<rC2w0g%Z`1brYZS7Gz<$VDIBa^#5ow4%?P|%TFsI
z@^%Y1l0GQg0+}$aJaBSf66*ryeDl017VIqI9-~VlQ%=u*2lL{ZRi2OdS7tH%y<;8g
zH2RK>p25lkKF8WEOcq`Fta2<fqxafJ@78W``m;BfS|e!a=*I{v>s<*{nkIGS;WeE0
z*$hqEp*wHi1GQ!9SZZNHFPIQf8pR`@8l8Pu6}9&J-gRLAF=O9ntpDH4&}V#Wg>uSl
z7C!oMz!?jTq6x&?WRBl2Efq9$h7RiOZ2#y@lZieg@BSD$0(-&$yb>sI#di!|^Ld0S
z$EEJI8rRATT;m;|e$C*L?_cW-5)f5Numh%5?Y{V6C;6ge2kg0%Hs9ACgcR;<SFXIN
zy0#HP244;q#`Jx5{W%ZzgzHJN{-kr~Z`;nF$K8Jg%P6VOKzwC^(${(xwkxDKH&sk&
zwP=85qK^k!5gXGmOCErG0uYmYc+#+bjpI9`eF^goPJ|{f61R*-vtq)!{(Oo!KzB;I
zHsJhfya1tYkPrN?@w=DhpW}D1v-zTGSsJO?{>~uX6U^Jxd^5rvL~dm9nhujPM9^^2
zrZ^GgA(Q%R#9ovLu!0b5fSu<+uz#XFibUyo@V<zCq@*I=We~&M*4F$%|D3&lM#f&8
zhn?VDxTkwIA=EOiEXJnTlS6k&TW)CgP3}YSO*i=C(7&w4)lvo><&6=hWwWc>*DdY9
z?((O!*QI$(xR$Q)EOvD@UmBL$@19{57jr^0ny>d+yZb+xeDBJx1qQJ=N+;4K;ulI+
z06o|RjA>L6%ojEcAtP7Hh+3H6Zu$#=2jbvTJEpb9mxWf^eyna+{_*Z(dz*9k78*%g
z)3fS*`;mWiIVec^qu}`9RVY^DL#<=pb!I-@*zOvy#w*Jai;j?+2)*X}&Go|c&#Ou(
zg8g%XHl|_DyVaG)jeS;uBb)^BK7*D&Y>ndR)0!c3HwzZ?Ua;s3%3DLVDqQyGR)+i6
zqB=u+Fv_#YineY1<5}S$*<!yp^iK)Psp=2vqqtc_9DRA$ou$qFcyU&DFLZdFR{KM_
zYBTs<<H!HnsUMyZBH`c{)Gi4u_wCzFIiS!QQzAnLAFu6{86PW4FwIL?Y(r)j<<cqv
zcZp&3Jd-DT*7wvl2<kCTl1W0ac7Ltv|J+~`ZmJ~bV9;sv*{($w^tu*^T2#-nOwWEv
zW!v&25pZ;J^4aFdDapg!0i2c=F2fEIROlR~vpYyp_6?-%y)aoaYrAb_lqn`vYo|cB
zu=}z<Gj)C&rg#Zun|MZAEDAf9k|PUvu0X`9C6QuhaprB)IXTsv?ANj2pNrn&$ej(+
zmPbO&m^iAQ>G&=jX>)d4k{!HCb0UAifYovbS*IwMQ{HSy&xJ*wx84X2g8Rh`AAb>-
zVA7D{HnHT;dI?0-&3)d2<}aNFI~?QummiC@pX-H({ek9-LN<e@qx8#kS1L&6pS{;F
zCH}<*DEBG)%8M6jr@ntZMZ2Kq!FeS;=;NIS_4M@BmdSAWlL3GnZ+!g1yTcr<ngh7G
z!HDqZYF%DRzhReWRID&ar%OSb?zG{MqT$jYTehenkKz+XrzTv}o2@0r?juV2YtYD#
zPJt0KMm?Sh{*10Nrvk;V4ovIvm$nMrk{)sTbqZGdlKN=TR>i{RY~xa<Bms29SVmiG
zz3hPh+_eQS%nQGQKV$q1zDdw=2fOXEf0o$A8vn<BIw#?*f+2ndL*o5B+j6L_csKEk
zbmAWi^|_HRUYPejFVfwvie7f-FNkO7aEhOe<!Ynn-mZtle)3f#<WV(@<x34Vr)JRg
znSUkz^`LZ_*#{oN6GkH08FE3pjM#unAN4h~cGXgxbIeQs-m;IaAO#Z6ReFq6x26q6
zL3~IZv}On%N6z}*ND~oMnJnpo!RZ}r+kPQG!*{V_ZVEpB;=aK%{Uk|zqswUL<>n)L
zyMo$3qdCH^s9*<-njKlb_eE274C}rvo6ig5kqx-9T0OI7$06mRe!$_aOsn5UKBi2c
zt*0@o3%RB~`sui8)KQOZ#J4JK^P=y*9_@1MvflZ#IpV@%9eMj>PSNeOln=t@Ob5tb
zP)I5L%Us~oEED#V6&@D`n)~Ej*5{;Db0%=B-puj`4jr;=;i{@Lh{V}6N_oQCu{Q~2
zHGap#G|bvl1W`!BF&$U1AM6nRaj`B=>T1W#Hi*STN158ZzahaP&+AmZdWV!1ED>Ye
zK@G)ZjPy-mAbvb*<o-Us)YS2FN$P;U7rqs5Tz~?$bT*de4qJ+i(Y)C0M@;grc_&H>
z+pd9k8SJJ7pY2!O{pa72_bZHVN(%?`)e6b>rA;HYpDQw74|K_~)vEFS$R%gFa~N&O
zX)ax4$-A$(vK%2=egiXWi;UbA$r~8ce_If-Yvm^VK1mjQwSzBQBjU5Ed0|mj-M;>w
z)eubnRTdE~$!|m=nLYhvqSX$BE})}H-5!+iZNK#cy@{!nIsCqJ@yY!NOmY{~t+^@e
zz=>YH>C(P*VW2x+Da&AdlQ;TYW5>}%nk{I%YCg5G7|?)G<snlFdJz1@*+=r*3JwdY
zppX>coH16_VSv}_>r>o`nNu%5+0P<c9WSUDrSZwME8i>_EsvZswz&-|C$6XpW~gI%
z3G1X1p-o=u-W^RO86=&sHqp}&Ja{-N>|#t+_AYtUPda}TET5_pBkm*l{hPr=0xjdl
z<frV|7tHa_%JrkT-N*QmQ6+|Pp_+o{K&Ljx*6)HabPI##H|FTw5TjVvF7JEed>#YJ
z5>aK>tA6Pg#tl1`hg9A_$DbLGHkI}(GbP=rl0Ca`+hkBNW#2kEV6SUE!h#l%J3n}3
zZwPi7M7H#OF5fq`F>2E8FnaNx%1dFVjQcF-BSQ7XPQoTVkECi%AYz9*d!jU`X}H^H
z1y6F|GxWhov?5E|SSVULQ3Npp<{Z4mkfnWS<6?2nxw4Fc+NXLzgdC2^fOiylSP)U`
z<4?j~tHjllYp>i2O!|sMr+H&*U~&J<uxwZt6}O$prmq^lYc;iUWw@k+eIvS@ra}_*
zS%*~A_O8am0th>MhQV3$YsLQECelpKAsZ87GFc)T{&eB%!=%4h)Ts^&b}`5?ST$x5
z+p^>XF`Sc`RUhGB@P)hh7knYN8gQCUO#IoV-!de%ypy9{w{>f#RR@IXJrX!Jqo9!G
z4%RS><6LC_<UB$OD4+-@E8G8A!Q!8M`HuaC{ZEs?*bZ0BO8<5tErEoO2j#m*YPQbF
zhx4@SL2c`m6HEr@F%mI_yFQqsmy6q5ijEXx=RKp^v_vG7Iw{Dk`JUiqBY*F_(WT7@
zW@D?cuJzHQiLt$#?VAPN;G>ETf4GA$?$p*nQ!D^eEj-~!y$SP49M!q3E!|I&iZtgR
z1+SVb<IcXg-kmw$A<U1{oT9V{c`ev1Nq;WOo!>8@kIU!cAs3MF?|15Yziu~ySNB1U
zBilelaQ<-kiJq+%;ex_kWn{6*?!I?VQQW8vO=gy)nLjfpf8Oug*MB$^f^IIzV4ftP
zA_Q-aVm9KlxpSadBc-T<f`HCSYRHg$0zlP;$9=_#Bu3iBMhyy`Y@YQ>S%irYE|+4E
zJH398dho)SUfMfRSVTkwUF2N`hcm5FzOS!uwy(Y;!Ag4=F4UoZN5a#MnQ!=e`1l!o
zJrX$%YAFeISnlH<vFSmvt*tWMU0DOvw+(49L$JIf5pU@tl%f+9zNkugn(npvIUC~d
z*l>wjuH#IMIL?a#tqsNQ@!&Ie=W|jT7~f57Z=)-tZIAKMxq3bS$TQ{obn!im_nMdq
z+-O(w`0n(?4n-QT9_3cS<$CAr`-MlMhwPoFr7cp3a-Dtc{7$D)8G%t1=GH)@+UIUa
z549!M8`z1^n;;uESEO0;y*qbxw>(t9C_%Gm8ohG`^5zPZnC~9ZI?|##>HcryfX(mj
z#eJ`|IqZ5|7_CFc;Rk?Gr;OJ&VOWGUE^mms)XnpC4t-rGCz66*7fJ8-E%s#^z{VXf
zGf34v0H2zVdhWF_Ep3+s1xWC|faJm<U1y=SQ$j%XhR=hFsQv}wFO@@#(yY#b*M@Jg
z#f-vih}C)6E*)vlKHS;zh;>G1%So=jMfjSq;VA%iOYFpMCDZTgOzRh|B_?}Dc}efX
z)yV9720lGW@E;9%C$PINpX}OpmN`)GIONiMsnxlV=%zlew=PXDcY?%M4K>!1sN($Q
zh?>v@1JAD6E5_HLmi$WM*tOvdUqHG&Z!RXo_;-_i<bDwqKQJ8vh0dr*#1H3cT`xCb
zGa;Vb&jU0I6&}2A@BKO21HCoYRzbCFcW<Df!}8@!G`J{Xb-#XEl3}$dkc=yyc8@iz
zwLZLbojc{{35u)!*^Bhx4Zb0XlJ{hb(gyZTnva-#Tz`}o%v0+BM6!yxV=?YtsHkb;
z5Iimcx-8SO8%h(al1jok+++DXAyI1pelSR|Rh;;Y1fpb)y8DnneFjX@4o1JU{L+D^
z`&!gLr|{^`^7qak7Ji!xU>Uzx+yBMJzE+@(F5KU#nL{$r<rSaG`>_7ycjK>1qsJ$l
z-9L483F?SaV~QbrS#uTC)<%atQfiUC6A_t5r_L&NyIt!GlS63__}kwHP0`Rg{|dfh
ze$>X-W^Vv}*ptHT-V4%&IFsk)#<+Srt71d}F?P<Yu^6|g#~CM1XRjE5C1cgh6Y6RS
zh2-NC%c0Ab^zB2ka>nMPpt9V7qS|7-`a8hycn3(uz#Prqph#PkU`!%GI*>CCI&v}@
z{_gdvjZF`~Kj%)~mt@@%X|lb8-qFIqYLOTlG5H|F4QpTHI)9IQM7yeRj8;L4_00Bm
z6K$jT0uDB~!i}W-hm=R=^7gG!t?{v0P2z-&lp#+-I<rH4z16|28O5Kw`zc|L%P0Av
zdB&3k1AuNH$9}~_8w5wY!{Izu$6d>Sa5!Ac>kQMI&B~S+auN@G5AASfdKc{0%8&e-
zt+5>J%aP5GAH5%3;?7CMJx83p@5QbmIhRJ@?P5~4pRhWXn1wA)eY1R)>AITa2>kQ%
z6``)A{$hCtj?<#`Lhw%TS6t4~tvA_UUV_>9PHn3)r_A*qr3P%=YstFqs|^;LIJWh3
zh#!nZo~}w;rydW1*cr|GoRgjWoHP;8gqjklLemQ36T!3zd#1pd$&mGY#vk|IZ;(ev
zzV*`N*J06Flvc3U*kLC8<i*(=dvV7_09-WbtTKTAs~+KZ&(bE{QjdJ+)Zl}){$zsC
zM_fi`XjbprnjQO8geoSRL6Sy6`Q_9ul=^(ihTnDGEj**niZcwN?K-Hst7%<e{iewZ
z;b+AWvLx)Dm{XM_iQ}5OnJ8?{2VIE&2d>0bXu?lSMmZ7F^^i(3C2n!E6htduyi-gM
zO2^99@8NNTE(b(K*_1Z*_fzI0c9O-#ypR24Fc+C67)WCBii)&Io*Xce`?F;rA*P)b
zB>%jP;Vn+473L1v9RS5F#<pSN8sE1rJ^Au@>%Gay(9LBr{3PscW`6&JK!Hrct=Bho
zxOT}mo5$N)z>W%EdWeCvLu<s-8-am@hCK=^AV4=S83JiEBXBCb^x4Ey?c}W1(Mh+x
zw=8sEdfB;PH-@I6`rb_odkwhzZ!-tl*B#ODV0E9I{A=<_FRQav%a*#w$^%?TJjp=7
z32GKxD3|UCEwLQcD@y6#1qSTWUVcPLDaL&D&U&z?d_LI$lHVAls&z%n1rtV%B|v<&
z83uV2g2$~2dx!V_zuSd=PS4EDD627Q`2>fdZ{)F8&b}wh*wdodQj*jMy})23urPbH
z>|4-AdS`=gU0Cp=Y;S;WAXxO9$$)!jG)vmn)C^@^Ry(O4e&_DzfA8HHBRO;ga@nqr
zweXgsPB`54iiUJpEyT(aaGg}G9&EEST6Ip4uyMx{Dj-k6BOio~YU(Sqig(IZzsWT?
zB%nQ3Bq(EW_xT3_J?ORGagMX{S&kl8vgw*yKXrCK?b8)Q^YZi$KW~ambTeQdn3Ygc
z>v*dSiog`@WPQeGdPgP<w~xtg!&m11q1cVH)a8@qv!+5%=4xF#(h<;a6mo5K4Hstj
zwu{35@|kK`AYZNV2b3cYS8PqYKi<Hrlfh1w<V+BROQN^FK*kRt2MEDEPRs|&PE8{;
zXE7Lkud$$9TLl$HXku0D8>?mDun*RiS_=~9q~&uxd&qzmTHk*Q3sfe(k)5oKYSTMz
zhxQU21Bn$r&1oe&^XXZA1)Q2kXVEotoju9|%~AW9cx+|zG@~d&wTC6(9<J~2U1NUp
zAM`Z5v|s!u(wrc4TA+&`6xJlGLX%PJrr>o8+1IvmN5+az5~_<UEVbd#!~<)m5?^NZ
zOWP@}&|Ka81#_Iw;pxAgt9O69evsApQaopt`%bnoSl-LZYB#oemzV4IBV+oCl`rbR
zBnq*%!z8%(JR-Yve5!sfdqYESQ!5Y`?YBK~Z`t~_4Aw+f&=kqUpjExes9Sckj%7wg
zees1m>D#Def<>lb=7Z2m#st7FZ`W5W#h4Yh=!-S&s_|DCnE&Q&fOh6>bD-Q)qI`H9
zx09ufvEfhKM(Wd$hQP>y>fUN0mL<m5^$O?#?7a*(tm$$--Ufo1LuRe{T&aR`0iGjn
zAIg^FV<_A>(u8k*;lsmy_0P|iI55w^e`x+948*^Di`p!_rPgWC9!i3o+pKKq6H7w8
z(ZL;0RQ)hB-^jqWt#ZawtQ3X;Tw5010)bo9y`1yyZ_wpmd=1Cmt6r}68EL#u$_35~
z-9I_hgzqjnb#N5{=i}6zeAeMs9_fDcU(pX)9rvUe*+N%WN70TvCeaF2FE=}}M<zHN
zP}=OP1g8C*X>mm-hZVG17TLfJyWn6lBsi|bu%@ATHU$l%5u;MFQ1&;7`!*t;@7$4}
zzry()j%!yOx&bJ-CPw3|M&Qt`1q~E)S$T0r<RJO1UOR5`eET1usggA3iX)FK)`b-P
z@cRz%rLy6^Oeq-C;D7e{izgv|LCpQ?h^Nw<Wjbfve9_OZS+zJ<7edPX`u-hR-qbRw
ztRY#OVZmX{YYV<ebpq^McNW$^gB!}PAKrkqBROuVf=<RA$+1bQLH^8t`Vly|h14{z
zOA>AEuEVjowHabB85lelh^M@vbL4FY+In0Tv(lw5eE2Sh?17LIva^R2Jen}pFMK`8
zRn;$+Oc9Kfh_YNS0;Bnbo5!EETunGjeyYr>Dm%d^0TP`j_(IQd{r7^mftovXt%76F
zH%c!YDb%!KgjodcFk(&v^9Kn*)i*J>szSJTq1W_587}IrmiG*M4El0~YEf<PrrIT3
zwCo?F-bj6yCpxgW`e_Z>aQr(fp>lY1bGo*PnOixWZc1GBt_zjy8$<=4YiU2J7YFjR
zvQGO;^{Y^R<d~5E<d*bX3q-N&U`(ZsmCrcA%Zp=YPsw)u8+e?Ql)`M{+?t3M{U?&!
zk!@0TA)j|@Mwv;UO~Eq$x9G=qP|&Ir-Z9tEZ$e{p`Z%34h#9}%@}1X`HmJdnh9{5S
zj`Z7+do%6Jb-={phY;dN7mss#GgS_TWCTotVV~Hr42kO`Z3gFDr=wgw?)E%eRQK4S
zXawH9H*#Mruo!qWNMDa6yo1Dlss&a>W5_#u2!uyM_x5O;@%YbwvM0J`xtq(n>v5xQ
zi9nrYj;i)T0L+^8vzLM-cJftQz#ZC#wSADF9U~`waCo*<7O9yRPsupg8N7fntq5uX
z8$a^&Eyq|A0y{52{5^KaYYbCbGa}hd{7y&T$0Cz(NG^Wa!+95oDyfqSn~H;8VFSF4
z(7(~hiM*SYVAoHZxO4CnWMfS6%)x~-5&*SDW!jm=p&gDC-AMoaHD6!MVxBsnUr2po
zQ^f9;Pg#c1d!^FPzKfCf#xl=^R-owlb&o2d(-`7ct|MIHS^>F_1X*7@5aDkx#vcWz
z{`;ftG3|Q&tAK2ujrGw-7AEo`_$)cZXW)MXV)V3BqndPxsmEoVDUxup_eS=$E7Ce+
zT!L66xJxA2+(qN6^r1vK0+JrF(>~(d1^wnuLSg90d@0SvO_RBmX&YTsq~T4})Q9|f
zosvbMf<$BNmP{W<L>OxZBShSNgy1syF+*g9&VRzBa5t+K`*bEhaSjpg`2GVdf75M!
zv4v5Kn9x|6fRrE5CTi|KQ0H(0;i3{9;EeHFojjB0smO&x949RoJenhu?ZIMpzU<y~
zffsdVIG{uxs<~0>r&8BPWB~d25)j~ubAP3KJXaT4?AA%6^9=$Vj%ko&*HZjA0`4V>
zUU)~9n!TLl#+81C?*yk>Xw)6b94*#&7l5YtKvF?YtOmmm12C<~g8NhAVc}krWdp0y
zq&F?ZJj|l_*yc{*!%}|iY=kWY{4Q1n!a$3qvgUfh0Z2M*p;E{vj4ba`^cJb+(~ZL|
zLqkv~0|}ayq~q8_@pbL|!E7_Nd*eoOZ1H)c_rz_&W3!807E9kPhE#+niuK_7(dxm_
zfHvk6Q^rgsp9g9MXLgu{FVg+C8?F-zzk|yFwDqFqbW})dUga}E)vW}(w%u)q4-*sh
z3F|rjv}NkaJF#dYk3?F!EE?l~16tsVVw{ocCddfz1-&E+kJd$DL>llDFQji*xu;xj
z7X6CtPbwmDohqB8^u-tJiGhBU4!FJGG4x7~tysIP^9*E{@aA0Kzw@!>K;fk2#XwYb
z=gfb^)wfKZ&jO4)>(3pGtzld}D&sZy@mijg;&rNgcMS{HgWIWebCC8(Ms1@`o~ea*
zu}S>a26PiW`a*udTEp0KC?zbWVGELO@FmvCYsqUctmbm6N;%DCjg|bx;5Y~S&q=&<
z(wcx09+KFh{XXA@`@exO)fSCQ6C$FBkB`p<%|hP+s8=AIK0tW}6r149egx+-Pv*sf
zZWKlW#EG?-SNOY;+0t`^d2)leN@!Fus{?16?d}<fPeh-6A9A<9SZGee)!3+6))Lh?
z;k!(o+p)?%Cr^Tfg$;#;jY`6t7#gA}q#VqE&VPf!&%kYjZuHLKMB1)PL0vL*C9_%4
z$!b5roHC@NWm_7{!XWjy@wtn}ru$d2W59?{son+E(9krqHZrnF2AaniB(pGYO;vqz
zcW-m~DXXAh*A6$n=J|KjM1DX96cgc|z1*p3OZi?${Re&dEF?EFd?(|)cr0-Z%7YMT
zHasgj*&uma{FA1rEI4%S8u<B%=N2dAjIbfnTU=9ywGmZ_JMZI=#~YaJitfUE)07QZ
zi^U`r0nsGkTnKz_4Dqz8w!Ve1){_C}(@#rvPF=(Fz_$ZWkp*<~k06xPv-1uwg@Vpy
ze(W^U<{oKYG6*PSGOb;D3&17QKoW4ATiT>v612qJsT_#B;KccqcfJSu@I2f>L6}Qe
zs2X1FS?TJ-Jm<UCE)FTzTm>g&Yr)44_CMgFL@_;@7ly|_)NS${f57HditB?W2I6|;
z+6Ci_s}P2!?5POev#Cbu7Jl;HBG`rJf;Jt2>m#El0m$cVHM|^CCckc==Cgo#YJ&bt
zUq1hl8WANO?!8WC?q)iK{2x)u+r`;C8P|QPSt0jxlnA#(0%fX>$gaTPo5+_TWe3!9
zhLaMXgF|k9i`Iz$A%_D0T>GN~B*mYBBOzhPWQ^82%A>V|eQQiHpOH-<S1GwB9WY&<
z**&jZ^>Ia@Fv<!ezIul2Ng$QHUng~c^ESy-P&&K!=?mChB1pgChwSa`EhvBFbi>na
zxwTE0Y;Ie@<&nF)Q*i<1MV^(ERmt&hb{INLi_>}vayt_8gGF7^W!z8*J6{n*tKT?5
z{--VbXKAn|lIHG%YTn(+e@hQ!so3hA^PtuR2AVKH`smPlUV$x)%K7|zLB+d!x7>-N
zrKRvG*!vK3zIOMcmC0M(inKq83#h?pxSxvSIMb%uyc-gTE|n&yWj|HTOCXuc$ja;2
zuVZX1YOk*-D(Wsu&cI9(QMePLGDs?fFg@oO`wg`t7mb{Gpv#<8VWhwzaKv{0!2Cmn
zE5}E25>{3ck_htLd=sPHboGi|=UXdLb48pY03e36^c$@om5%mb)dCJ(NvVmL4tBny
zqOl3CsZCEywjEMY265H)a3^W=HO9xy+8zi%6Y^9Zr-4PI>m8C=xI0c#AyZG|yJKbm
zeR@ruHvR)S4H=nAG)|5C^+DO93*IffVJ&mOSd_Aot_VMI1}2}tV774d*0vix4R^|2
zGNP`r?t-QB+DeOWm;R~{u3Gs*95p4aq+7dl-SI&L!2s*H?4MDP`%+-i@L0IocTT6{
z6=o2def#a}oi736M6C6xvI9qe-9T58Qr9JlVW3O|Lr;2QF{Uos1IM8U?}qlGe)X4G
znbb>h4HMoz5%SO){pzzv&6X{I$5~Ctg<Y4#%-VKu1Q#y-+JvdwyispnUaq&|(*Z_}
zkN|cJ#Y`y&io(rBYSHC=8r+s|wcXBSv<ava`%M|aU$89ABXz*-U4VK8L0QeuSZ%kv
z(UV@W3_}lfs=Gdr%y*ZvYY|}7F+M}oZm{1glOKdVa)~gSJ%|}iP3fJVuOH?nFlb!<
z?w#Ac0v|OS6vz5-lxkXW<%rq%XSxSg$l@GoHerr28y2H5Lb!o>o3cjNW42j3n%#Xa
z(KLtTY}4lLz3Hb?N9(rYzmp|G9C3>F4i44!uphlytxhId9%-X^2KdYhoVj9q;+v9{
z)~6IpGTn|&zj=iCb`_Wxm)P3nw&wGye^yVmX|jdo9UV%k9d>@y!^<f&l=4-p|6bEO
zpLf^#qfuF2BNd?ZiNCW^!}+TBduy#ZBF@{tEHfBTr!M<#Ufwjj)rw(uo)aU_d6)Zf
zn|Da7S`^44spqg(j*kr)jsV1Hi2Gk|;lM}z7!EtEn_FFOK!pfcSFFK={m556Xgd%%
zGMd=8P=W{>z#L9`eh+G73Q(=-J88VOY{<)B-Z{><-$aDkjo$D$A;%yWHMKC~;^eaA
zbzfe#tID~A1SeU9@WybQo-u+TBkO(J85Ea!)$w}72D&@z+kty3=%<sLf`WvVEDaDB
zlb(!$d$mP(&T+ppXncDA#N*92ARea}*W-izZCF-9qUn|LJMGbQ-bj6rZ#9!YxJ8np
zKP?|WGhF~6Ev0vJ`|NTsjG|y`>!*lGeu2^19ylW>C#$^7Tj*UmA#>507v^>v7gvqu
zW`@-b)!wZG>z2vO{shf=&xd8}wcWLUOLXur-CV%#8VW~wM-jy(*L(TZ4NMx0uMgH5
zI5UnpWMsw~oh>N_I?mS;1o@)Ep4AG&x{?4b&y3IQKG#j|uOp94qc4CabigitvKI^O
zqpkQ&OX<c80s|KZ(2ZwwBQ`(_@qJ8vrPAkS*(+XICtM16T$6K&<v#V1g^*lo1{Y{=
zjG+Vw@6WNJ5La;10HJ*sc7C=h!p&BcKu^IZSI=@%Fi(SaaSoUxrG#uC3qREDPm0Uj
zosIzz94Vaj0-8Q>yzjez9WFpP$8?z5OmFs~^WZdTC2VZpI6}NvHkXxb!Phr)<MdKp
z)^&Yq8cz%=$$@R^52bZ(#r>?pz8kQJEPkASdnuWsN?COVW8xk7mh?2rZXb9-2s3iy
z9*du%ik6^=l`cLj^Ju7F!&=ossEXv>u_m5pbOW+uADrnUPsCjC+A61vDw6ARW(Fg;
zO4z(O#^rPvT!O<Rb_dn`Zr_M`Wml^&j*QX=)fEFrjTT-8QoV-NA1%eXFbl=2UNt1P
zg|ya$2KCX<&=SzmpHZ5EB|Wq6n($|K;6@^5)nv;C0^`eSG{lTgSeI^W#PT!!O^Kg3
zc18+R<b+ung04Xab|0EhtgDup|B{A^Y+r~x1v$pjpzVEt$-P3BBn~SDOOkn98u77i
z2SzvNK}qc{=_PoZp-LXFQu;l7Qty4z@*IfVd+Tm3Ct|p5HdgZZ3ou(m+@U_OM0Mm>
zy=~9;=&9y5>+zHgJ418kAIpP5BPW+yrhC$0Qr8ce^$QPU&p3vqc)jOQprT9BB&io8
z@DwFcxeds0RTq|my<2!Bp*v~UZrrg(FKQHDyxjlL0PJoZY;YgUwy@!d6R_-sM)cE3
zCh%CX>O6)<p<EAB=~d)0C6ft>kZr|_&D|lm&wo$R+iq>RW8z5}*`tfe2KP-lZxh|<
z^pYGAfS<34=Cy`>x-)rnb=MFvd_u?h($&WwGP3V>obZ+L$XfL$R(Fj=4bSRh@2(AE
z;m^zbj)j26@5YA>Z4zj({~e3n+NqZae4S)DHqhd}771Rgo6dm}j3B4WReh21k8ai^
zMSXrVcJrQ<Z)859zb#naW9I|C%buY&`2jee0^X)-A-YKjh{2s`Wa1nxN~Tzd%Y=F=
zkv<s|vZ$hfj=ij&6LEm=E7SSfWCBT?%G@D?4}mqkZ`M*2T>>r-?kR*C#MJR3bnJPu
zBc7Qzikz0ue0yw`Fp&I)NR=xl&s!C$l<3bVe6y#XF6_K7Tu*bM_&S9m6$^ftm8`nC
zM-CjcY;P}LMlGR$$~DU<QDS1ml=T|#we=x&z4dPj`%j-p>Vt#BD0~C)@~D~mLOBeL
ztdz^em?fE%OO=1*eNmkiqi+`T-sN5*&SrF9*S2@}dX4nC5j=YdEy``CnqgNICt|33
z)XAz*NuD<p3Ak)DMTUIy?yh$zJ!mgf-KJe`%H~PGyqIzZu>kF=28N^t4oE25@?Ajo
z&}ue1klJYaDnJ)vk(Q(l<-A1AQiXZAJO&PG!hIM6-B|}kk}Z1Vv~l}IhI&xlPpfbb
zWoB8D0mIg-N0=3OT&8al@V_->g#AKj&QR<&zcypB1F{-4>_{?XMoC<JV<5dOT+YFs
z6Yp6vRX5^q4rdPI{e^-1bEmE8>?mNucFMU3q<<6*YKGAJxi=8%@tW9v?9<Exb-fv6
z)$dYa2s{2RGiiW1ln4}Z_kyHJP9DYPFuI2ikAs58GPf-J>2#r3&(WF7&XqJckG8Uj
zgH9pN5>3>B`5tQKklXBAkv<R^&Q{Ns*MIB1Bk$?O+q8taYkoO4Muu7ozzN0!HK+$b
zM1us>1>((gX7>16$AB(8BPKqu)TQcVs0&9Ji*xi*^%Tpc>C#3~UQu#cW<ywYLdv<B
z;J#z=szR0e3u2JIma021Ynbz#4gzo7MVdJO88bKmMV2cV38MRraNpTpgs>UJbCLsZ
z-+Z^$=8fwL;KE(ci#$8c%kf775_?}>4})$LC*b8k_O4vmb8|Sy>(q9sEm*hAH<7=;
z$G4V%8+#wc@Mam?=XC<LzCW)8bah-z%ZIz!F+O91rQ65Vej5C$WOY?%$vnkHU1UP0
zwwG+MMF)mHx(;t*>at5!>SO;)3Sa8HbdO%#<^Ty9ISkCve41W=B}?RImtMlNMjt=U
zXNHxlHEmhvoL*^_q4MU025gGd+_IYqbowI`k@7vMxqc_^lj@O)&h@4O3bpBKncGdf
z{Yn+f!<dbpwTsOj7l*N2C|!g_iq=phnBAP)cik?N?`YeVPn4?f?%q++)=+4OTYfte
zmiTww9h;X(>nxmcKNh-u?(sK~{7L7D=v!|dku3TK&6h>*ul20LXwa=Y>un~|?s%RH
z_KWvz<j!U$Kys7&=WZHli_)~2v%Tvf9|Qy8llk-kniEbLn^Q6HyLk6Sx~*(qJ?Fzf
zInFr!sS=%tP*l*;*p$n20DeJ@>hA#AJ`^aU^%|MRVhIG{Hno$vI4v*7J;qRp4Rb8r
zC@SBotqk6QQ>2g=>Alsyf9XV7%97WTj)b!>&G`e3wcfEpgL$HYZoIONGFZl!C79^e
zH?j1tUFQs;-2&ZNU{vigfqe=_xT7V6L=#|AipacxDi{u@AJZ&V0f~WeqcM^SGl>G}
zN^$=P5vHgvoZL42;>|>lJ$wK=x^Jkdb1;)6c5)>>dfHB&EUIYVJU0Pn)fLkHO(nP7
zSn*z;fTFKEoFR-=pxhK0ye)3j9SYCnL9$GXpl7qI-9khqWUbjesf^q~6*{a%>AvT2
z`B`LSW9MW{)u<*3b~hUR2t%b`PJZs<vl;tj<@*vFTi(78(xWOEqeHh?>$OG!HCmj%
zLs<Sw0k9@WAY~0^?xWHvrH6pO*z+~Fm+}1qf)I&;zkFc^)Pu>EppuXbd>On+2G42%
z?S+i`=YjDjIJf-Gy=8lMAWHngD?^|JSHqX9F7!mNI>eu!=0^8Rz^@)>0nF;96**-l
z)gMFe&fe#HQM;xpCBJIqY(T`=Ca349kujn8M3a1ZFIWq;5d&w=>Z|<<ihiM!rSRpD
zRsO<oEeJ+}TJYV-`uM~Dz+zW6280=sLGM&1q{g>!+fS{M8*NcO(*I4plw1O820I0O
z_E+?F0@}i#XvcbPG_Q%;{Trq4!PQpTZzDC_7?yWUzgD8P+kg17#^`STLB+}^q5;p-
z(wWvhmjpdz=vQO#nP>Dec&z6`w5b4IEx>iRh78Krc;eD1%XA+zAa5o1sHrG63|zJc
z&N>~A;1Id2kuzSr?35~&xS3sDSi%?>S|lvGd<!|uiBV&JDm0+I-4$|aFXHEys++LP
zcl+5AnN#TKgn|1~Q1O;JX40a7uu7%M#Of_K$KDZcr`su1<hbx-Q((1S8^z{*>>ZQP
zcVl&D=69Ie5gNB&np_+U0$f%$ViDlx=%~jSj*-Q1n4UxnhwCoVYkTm%T~ytMc`DM<
zPYj${UKI5Y8YpFN=%B7DjP&j6d{oi8p;gxq1TxM44u`4Hfx=-FGYA>v#)#%N;t{oe
zg=NIDZ9FbC$Bio#m$Nsv-mAtwlceE<e67!hLt5j@@`2Smg-v_ad+UAJzqnp1P{zqs
z+BX(@dtGbF@ne;jrD&AK0cN{db|mKJ0{IFw`pP<;mkUG|!Z2|xw}!jf-cAuKwJd1S
zoIZYB;t?A95Wchbu8$da)<m^dxLQDp3&`=iB?bPtEJ~!1HL1>YGDRXwQ@~gWr&<I$
zYCr`181I!Kc!)t1AV__fXWC3K{`>}?b%fwOgw}`Pp#hL}rPkGoV$PNe+L-;i(?=yb
z`J-P;PTZ;!_93$us;oQI$;MJj#yf9WT89+pW+(Xo3;)pXmYHfOti3&YG<JkeYBmT_
zR2?QwyZ&Q9NT?Wb6&kS=D*~;V0|g8ZP$)w|Ko1_bwbAOEuW#3l)Dg<$Zy`udY|8{9
z11+M%$gZm3G~7@E#KCBzVN=GO9k9)s9*2nvhQAtI=5EtJ-s4~8@jc_qX@Ve|Tg`<c
znz1sSx+e=WZLMhU-<2cnXfhQ%pmLPSO%7&x=kh6p3^gp1szaX--$Ms=430%~ZVg)+
z7`j{!*{q?_8_@TqV=k{2%&w$ma4reY;n4e|mNr`jpx%_Zbv~&K^^+-6-Iw`rhwgNI
z9ywnDJ5%{;n}~{YLGJJ13ejTY-OY$RF1N}*T=>)Nv0JHsmJ_LH6B%3RQJ!Bk=CE#%
zw`zKQpyo4~6jXKq4oxbcrJ1`CpH=Iy*!WsuS{c-BS7jeAcNge!2HgHfR|$l@f{LA&
zo$j;Jt5Jpt7(-Oynivo&=8i_s=TYQPxIOJ<3;lSujo_Q7AfB!eKi!!P=w8JqFbIE<
z$pU6Ne6#?DPedpA$#qJ364U0q5=<Hm*KRyVw}k2466$;U&|V#H?8rhCy*Wa3zJ4Ol
zK#DWXN5ute=LMzJq6F;h&WjGcWeI?@C%jtQwbm84kYlKP-qZLJaGtOKhdL9uMkcVc
z<KG^~e{j#^YLhLwk>@g?|4%}br_q%ZADbK(C&b^8l$I9rFwbC{e|A4_nD_^1s#M4z
z4amq4J0K4emqQ<uQ)V6=y3`UCHP+EVz*PIYLGtp~7fB?*EX>MUZ?(&L7WA{4O~0&R
zo?v1s>L;5VQ)e~@2=gn;9AAOJz~v4-u}X$ko}~v53k8U1rOU=P%IPrc{umt|9u_xX
z1y!0%a&{YA+AU`nWjT?344e|BHn~83g8%^3b=~#;_%^7_oz#2I1iddk-*XlIe&!DA
zAG~XHhzXF6k{IGp69P;c8uNC#>KTzrm(>9Xg~fKMl~;0lFw}oMJ-$&XnJKMmxjP#P
z^Uz^7rsm@GfZ%P%#>l|-ejLsV+qJY(3u+&bl#oEr?JEU!%OBq01HHhpk4X=(it^iw
zYfIl_@~3=UjxUWn%^INr{pHpXhCvXLQl~=7P3Lw2HL52(vh`R`Qv;t@f}&Cf){Sya
zj0rF2ZcpO=G^aqK5$b5}RI7_iLCHM&_V|igpFnsl4%_wl;#2H|GOyV*PdNU2LqalA
z(t>e-$726zXlDo)PD!wrb6ff>$x0m^Ih^xy4`)=a(~N<ZVKxU1Ib26aos@SI)VbDB
zKpff{Z*pntLBLpG@8gr5gzpoc7hj~BT2(KHtj-L|rlmGjz-<7>fnDXH{<4M5U0%^G
z%ZSU)ge2b|H_d{9szl^CrhEP4#+!V*e4j99$;T#F+O0}LmU@)Nc`C@<;bv{dQ)yn~
zUsa_>@*8Wfo<x;S*Gfw?hY{Z8!iHuPA;WCFqe^MQK-=0DyDyx>Tk~h;*Ki6=4Lii3
zlPL?TsCNELx$33av%A}(Uc4;jno}n0f0>Znj4#{DJ+@Rw1OOz*B;Xyj&0Y6Bx3LBJ
zp)xDRen&6C`HS6os#(c;*S}mTtn<{DBr;HjD=Jm3qfQV~n{vlc2iJVYu+y5kfv9q!
zpMV+i&MTIlLeNEn-TiNDN`gA<k`7aLW|Nj~l=$otp+cDxJx1=LR7K5G74#2EK$fj9
z?c<WJHZnQCtf8gDpl#3@d0fgQ{;Nx7W-T+kF{rCkpfCNK3#f<|gq8Ny-2nBpAJw-l
z+kSEd0xXNmtBp!7kM!bv9nNlgscBLX2o_9ji9TL#xR?DO5mgnq9cr9X^-7?Hg_%t)
zvu0&4CV)3CxeaR*lT^qKn>>tJ^SCs>BUMcc#rB8&{L9y)aAjkBepu+;v7pS{+|NXJ
zwkYuv6`G*#VowWD;g5f4R8Fql2Qfm9fzi<oBO{|cQnKBxoeS3<%wZ`R$t|N@<8vk^
zS5E9AiTz;)lIVFVDymz;cX4^`&9(D4^75*IwqMFB1tslawN+J}*%-9H_ZWS_6yq5!
zJ<@_wYBN#4-$1NThWVc$)sDeWP?&Eu&>Y6ZDkeGI?s#sL)!7*rQHN^lvT+V4E<Of%
z^Tdw01m{!~Z2gI|kpSz1m0m%mW7?ia>H(W94%_HP9LT&(u0xej0oglGw23sJn63Qc
zQ^~J-QVG1-;R+8zq@1+r;&s$6H|wCfdqIcI>!8L;BzEo=yiwZSZ{2rhnmIWQvMIHU
z{)F~hUv=TH?z&+a8k0c<Vhi}K-2oP#=DA9o40m*<B|~GV87eZ1OZVK^L&EOf+aMnd
zC#@3xUzkNupx~m)i`DuQ;Jy|(4_miE%LqvvKa#W!VUwV6<9a<Pq^{=@Pc(DuDGm#e
zho@HAYw_%V+T8Eq(C0b42$Fihd#pbp=@2T`kceCggO>OS^!VtU$~6ZV`<y|HJdHa9
z`gR^lw1dOU>b)0JdJO4dHz(OokdLS8%QUzpCMHH|vp^rWc^Vg8DhfPl|LMEG<r}-6
zw^~?Qh{T-W+G8!PpG@*PVFQI)oZI6AGmcfi1jIeHgS41L3#?yr@x-#A?z^l&;qIrI
z{^}%9>*m5!7NKh6qZV4r&j7!e>%5DK=~WaA9<f=LEG6KLu_)vS`JOH-e&w%-Pej?R
z3143s@&qe8KlWYi^Xmct_QN4buA#MF30HMR0OA1ZA7k&XR`Rt7g_3$)&O17b11Fk+
ze-@#T)Q_66DRwS>ZXW?-4wp*Faqq)$7t*Y~4$Tot?jRJ**^E!*E?nf`jdYjw?R`)7
z_DvQ3zuGpxVx%&kIL<{T*QKm~u9IH8J|zX7=RRB)#;H19-V)ESppO0;0*@86V{Bt}
zk4a9;f>>K)rQ#A=t{A$B;RBKu>(#uzu;+xria@Vu^uvFGmSI2dyVC>L>jVvSs*#UF
zfTB3t1=qbqu_>F>*?Mk;5CmS)s`DeRs0!dT)xC+_1-EcEKWg@s*dBHo1=e8yA@&Fb
z6Xkpujnqdb#@Vzb9do6gp=U`@&t}E6_uwnN;SQVS$4GMENkaUhRKzJHVFyuw(Ty-%
z2pv*ovjp+KEvE#_WP7uo+hyiXAA<#&TzU+6Ac+?cAN$|c;Z*&cl2;P4=$@yjdQ|BR
zP&)nWTWm-ono()r(0Qs$h+(wyN9&`%B)Y0wf!)xOF$U<iaSQ%Hy2eY5+*IKlOsx-m
zS^TDAl&tYwH~GIJEvO@9m$rIoyBNb9u7`IlHA>RKOdUQ=Kr=4rWtu*1cP68I_FxSq
z?RFbh=XvdF^uB`Cxac5zlM1y{oL9cs9hj8`*@Xn0Rd~QDW0%<wtVxr7Z06~6rW|wu
zEcz%Bs0bC*83u7;x54~N4N!nd8plIkPM&Xk!A<`BVLp>A4YlHI{kYO<;?lXpwaSCw
zk!JVhpiu!TrG=CcBg?11wB+Mu4$y@m`F&ZjAcE%dfL^#J=dKG{q+OKglGjXTCifcz
z)L*HJo1DtRHF)OyCgIHuqHJf<e36tD>2lEcz?mdtMp=BxIPi&^F(AI3+gBdyhM+)z
z!LbDFbuyjm@xk`Fb7){mre&ni=mm6hRJmdU);O#b@`2P*br5dK*qk`C54&)08+m(9
za>QiY8Z?TbN=>alU$xmkYyiA)#J6CXH=q*4fyiQ3m%n!5qSqi--)Zx=tAFMeV3*k1
z>KmH<v>*I59IaF!$RyGMd~4SC*R~kYpL?BGll0s5|AdYXdupejS_t}+UATq{EXGwk
z6SjqfS>iSoQ{1)5uFzX(`_$*TyPZOiPP&?CwIq*;>4C{5WpcnnC^S6I%xV_SVZ;bp
zxEBw?2A!J3{4~~^|FL;!w4ETU#pSUfps^&7_GeY%-oozueA74{%s0@cy6Bu&Z=*7y
zF{-(QJqQ@TTC?=umf$p?tIW$3LH7<;fVP=`cLhEHBpv=Zexn25svv?gv~^?hMK3RI
z|6_Y#@evW|_w1d<F9rVVUk!oTXaBAu@EPIHo<T-RdU`&m<*|XyyM?x(lGK^w>y<UP
zE+C@l1nANLtN-{!{m0o8OdkA?12tGC<nOwMPw>AD`v2fa{{QPQVC#M-LXv~NueE1U
zw7g(0eAnA1N^@iXZGqS;AZEPx?A6c$^uf!5p4uckBV?3|U8DdO`iBmR*GN`%GX6K1
zq@GwxG~r|kk#*#v!*AgA`>Lzrl~ImN4!Q%(`<e6WY3(glT4FCny~KAa)F^Dy2%xXY
zA&aceVjnpi=@{F~mv!QBSP*zN1qF2oev+KOFH1jf5(fi2fChEt)SQ+Q7x3PM&#klj
zd#4S4ca5OhK5K(u6BqY%)mk-mdc%6}Ob%%c&_$8r!96tC{(`ry)VX=?_;cC*;tk_X
z1rv`OKl)~uN+9HIEZnX7;h63h#?_@%?Y<Rsav-=aftHn}wNE^Rwz7K+dfbez^Bzut
zQHls7`)c%BkcGJU$`?yVs_M1M?qop4$@ln*VZPY<iq;nrOKZWCOI$jnhn!9Mq3y?R
zdOCqUz#4$~QbziuPbsZwZO8Rt1x_E-+``Jr&d#!=I2ivSI)YWRlJDhS8(b*I<Frxy
zTqX3H?Sq9>X~|=g<exXIrqDsdHyh|v&&2YLPm!uY+PuZbcS-ni)LtE`LT0I1tW?z-
ze)Ax#mr7y}b&6l5+h};Nn4|{{Pb@&lUT~-o;^73PY%VcAh>Huln(Jw;F)n1^nT=|F
zMbDUIrcxk$H7O~{#=+$YpP0l(gJ-?IAS)(jKe@XHf!nM4`v7T({G?e4HY(WHW<k&u
z$=vf(k=$RTk3NP!#;E_gidHdW;OvJ3IZ5AJ9~2g@^hhB#Boc(pcK!KbxqPw=79vRX
z3FKpIXs1m{JxflMEOJFd1=6~eVU@cPZ~Z0owapYzhSgaK?<YhSJt=OPjDG8;pc~Wb
zS)*$Qfp!?R|KyK@zPP!Uo(Efa#tO!BFGxA2hPm6VQYs0Qa%sd^a-G+~5}x``BI{bB
zv9*B3TboFEzX8%Z?(;cXdcsMPOXr|gg#Ig0P{wgPSg1&Zsf1RWX1a}do(E+z&c9cK
z<oM~WezY^$(6NO({oz{$qug4{W&7TB#d?GujJhqaESwryYK3Y6!<)`x6drs)SOeBM
zO^X?-k(X38cB-^2zYL(T%D#IzJr`TF5<Bp7Du<=0W38Z6HBE)l@m%t-eB3o#vmtp0
zuZD6rR`Ms@h-J!xga<=wJ3hK+4zuYUU=;r0C6qa*392Tpw_A9Ay7-nas5u7y6Gzbq
z?C$2;r;Ec8R|WDOHEc^^I!Kxi-{Mp~EF`jDj2rhv11wQXFUvJ!zLSQ_B}Fs866HhW
z{jkC3T!eh!l$M_)o(|B`3dR{BI$wcgmhgs@Kp{1`)x!XUpo(_&6~x-b(=hrb;e3V=
z7$x0-shW^Q%_(LbwhoC7pES_#WkkrZH7a~$6)yFD_DhWui?)hb=(i$*)b!^lQp12Z
znax1MHgKc!WI+Gu|FYY938CcM#T7r$v!P4USLA@MCNYPTt1XctQ`OdD3L*F`W6C7t
zCUrBllkM+REmEvC-A!0K_hph9iz2r2I>OVTI_o(?;z`|M6m)OMeXne+Kr7k&yKPiV
z)haskGI9L{qTF_7<K8WIQ?Q!Y(^iSVnq9e=RX@iZ(+XDg9$y7R`rJ;4*h;Ta-JVt~
z#qtx-Cy1O`k|@|>?n6?phZi!=DcmB&O?-8$WkMc99G>nAb9fr}snWInrr3HvJWgyh
zvpuXoq(zH^QTCotVN~>W@fpv;iCo<~&DaY!Nb!Hwc9l_WJ=;DtC~ifI6iIM*XrV}p
z2X|{BC1|mth0qpSyurP=I|M6QEEFjgoB~CIyXy=6-*w-;pWdhU<*YSl<(xCKv-ixN
z*?a$f<c<E$v#%GnFVzHw1VDKP)O?cBA@}r1{Ev5WyBljvsK{i(3dbUF(J8{&dY2=n
z-<C*9@$;B6&nL|k;@HDA+Y>i}_Cg}b7DR*XwyZ-D*VphM-@&1PY?`zzBc)f>c|nSO
zj4r|-qC%s7mU-GOooe00>b3@RzIBLYyes&D-RK=RAG!3jiWbhs)kHryq|OOeS9n%y
z;~!LOz!2d5n2ej3WiL+OwYJaU3oH@5;7bvLhX!6InAGW5E4j-QP)YuB2sY}8pc;N#
zD4Du59wDDkhSU67ghOOY{LHOUg~?^&g?;J_6$VMa=t-CClP2ej;hVm5?FF}c01f>Q
ztul{>{-j4Nu9)bAlCZ0WJ^Z}F;?8Fm3T1}A4vP-nC;bwI;$8m%nIGI%TMP!#4QG7w
zyD*OwlXBAy(z-EY$T(;DeJ7(vIhCp_TJgmRRTye=%6mP<YW)ch^zLIpYt0|V<|@eI
zsxQ<m79E+KBU~z^#?%~Gq!vfLJK@=0RA6q_Yv3|ccS@5QUXiC|9KfPT%07%by_EVc
zJ&ErJ=i{~P)!53I74J>?b)p#NX-C}p)mfhfWJ8gewG~4|+>{JD!%J>n;c5EFF&o7d
z8D`f@QDCd<+F`UAFB`^dgc80%hz==ad;bBhNWU5$lIDhyI|v|FH<h`&d4fEn^hW$?
z<t%>MFAXO{NSKWVQ|=!uX0X5(X+f8grj?{K?1q^o)}`g)kO?Wc_1gy?6o3yBvNPoU
zH2YsufKW*-Kg3t&dWN%{=PDTY!t!35Avft=_+zSM<PU%BHpUL~%hiWfEEqa?iT}$V
z&`|g+D7v0f{Hd~_v-0ev#J<3n1>UkE(z&gR#4d0%Z3F)m!wSTc4rj4VICB@Ars<w?
zMgIFls!0c|{w9vbmn~Q1CtPx{`PXi^!oBZK1Qm}*(O^dC_=isou4tpQr{>otzgQ>c
z>m!A0xXrp6*NJwHrds=MEIAw+wmZz$4{}SyO|JU`%h0_<Q<$)m=B8BHlm1e9_kg4;
z#{TOMW#`O*A15;3j>ULsh$i$(P>$T?DsNo?-xLUv*pAIUuaoj?DxW6RmRYvcCsx!?
zqJQsxuq|E6O?=iSj(F*G)S#&5)AMp9NY)S7j+b&JPJtf*>E9k8mX$d)9D$lj#<f(e
zN(ayrEjxbj6!J_WgX-nhUu23DDB=123?~<OD4c(3=EG=yqJSZu{)E}}=7k5o_3CKk
z)m<H)45y<tJ<TLpubZ&npc!qw_m?Gk;*n0dF?deV_w)&<?$`>nBE2?Mfv8`I*hYw;
z7V!J=tc<w~pIYY=B41xkOuan9$%TfL3aX+{tcSQsTDEjrypq4ljp*9DP70io$o?v(
z<hCAaE{V;FJ^Vv|oV}mY)&7!@{&&_zI9C{g-Ys$yVk-uX$;C!0xjuSS&8qs0IDQ}&
zG-WBIYNpVfx9=U6<)=_mML~74DL2Q`r7>76?E6MtF5qX`Le*N4a33YFiFk{Nn14rT
zoq+Dq=#<G)?HOG9eQ*hjR8zP7`}t2eJsW(mYi#4}GTdN>s}^Zc(fWfx>~LzynBrZ3
ztwzhYCws$KW*&m2#R(#+GU^t@1>(Ae3$|Tp#%k-LBGW4Zep61sDNKkuJ9@RpSpVOY
z)gS0_9N6cE(a6Gc36<^NMw0InKEZCfaZRUP9qnia<C;YjQ_vUWTs-JEX9l!ST@;UY
zAJbOYoFj?D=6nXDAcnVm*ikQ2ds)1Y@e%f>67DDzz2jQsYO{4%{x{Aof%x=cUl;B#
zY!lXD(W^P-p23mefoA1wB!WSN2Gwu;CSh@YfRHJT^KdW|%a5?!*ippX?sbv0_kifc
zqjxT?8lPXF6p9|qOb?g0HK%WUpRn(ZGGty$jt|)hi<nx=k;-TANXPxX<c+swOIu}*
zYWsYhwEwas64EL6b=dKzyv$(zWb#j88^B5J`6a_00F33i81+0CA=N<LyW|zM&~A8Q
zPF?hbtRI_8(n9|to`Y&NBtgGW0USB!Y68VS0Qf;3D3r7Hz5Dp0C3nl5yd_BlUf{4j
zLUjq-zkhxdW{Qi*JTT`LHOtNS_|W}JgO*PhCYrbtm#7LxQ_by^)$QbuDf%JlbKExT
zj@hhaNL+=U4J4|i{hJ-ynidFIO3;PWc(-NOidp5h@mTC6h>odGU|Wm4GSJ$KRufTC
z&!b%9;E}Evv?{1`qQF*-goY@pe{FLFg)J5;x0OK!b#c5vhArcT)$ZSjaaG?xQwTQ3
zHGD1FS-{IL^<)}uIzKd}@JtvjuW?}mhlQ@vS`x($F%%z17r0cBYT`wMN-Q>hu6Ga7
zRaot(=be7DJ~CU3Uoi^RD=mM_-~XjM5CvX)oI23%QSuJXTEV}(G)wiQ#V#-d$R8d%
zK2x6bo}Gwci1wi34IOdmmNeN|1hOTi9VAWeh@QkHcb^30G?^J4B&3GsD`}NNYHWx9
z7^I9{oe<H4*C2L1^Zz)1QPuqo-?P&$d9d%jgp0EiOE0F`^+{=ADnza>l}BswUQlKH
z{k|~?r{^llp6S~ph$81fm>M3Xbf#U=j*{x09ARF{7Bd=bwd&}_^yBy3I>PTh;4}j;
z4|xV|sW@0IDKia01Ub1>>cif;K>KBe;fd)n$F0KJQ-ZZe9o`y({aJB`l`|NIXMAbf
z5Pa?A;gq_L3sUX1i&q{3=+GBNpy4U<fM`iXc`pYZ%Uv(|Q1V{vE67Rlx8ZBXYUae#
z$i76Qln71BweFv97k(&ShwhJ3q(=IiqStu#7Z#tsS4(_>ZBEZ`Xrd(6*>C3v5<m+Z
z=^i6&Di3`)SRjWi*!^6b=C7F|rqSU<tk5&Bs|oULW&}#b&K=-eVrE_TQN^0Jn|ZW$
z-<I+`JigTFI8AqXYzQSWia+hVIHzTb*5gfKXwgVc9aB&@>0Zj}OLee#Y6qgs4+{H|
zGU`$<Fa@$gj4lOfc5>h(TO=C{fBk+X-)870DcGPIqC9TzE;pfU@^hIICTP=x9S(Zd
zbm<w9ti_W8Sv#m9Gmle@tdd}jPHcs;4Dt>=s31T7?DTAl6%NUk(DGRe3kuo%$MkNw
z3prswO)F^mWo;tQ+Fq1s`a>>j>i_;3`535XMMIYo=@YpA=5)Kkbkzgf%St})U4v4;
zHA1EArq`txqiVX@$luUUSFCS4zEd`Mq}n@x1XH{m*zftt=ZRS1QM@}_hEs(JpChWT
z=tK7|WgKFDQNAk~7X$4i)|}l*Y^HnkNZ;j|P9~4VeC2t#2Qr7K{)ASd3VJfVRD8AV
z6l&GZ72f3*KlM?C3G0ZVuq4B_=|;jh=~do@wv2v8UL~2cT2B$F>2+SJoZ4D9IPYFP
z#}kRX(!961AR1bhnnPBqGJUH;t!!v54k>r9KB=Y0x1ne^HwCppAQQ*>XINOp;)E1z
zsf~G&rlIZ5n+Y!;Y4^3#%9&hhDn)#)wwwVhzw)VUn5pG>PTMsSL*HCDRbTFRJ>K32
zIk%=;2oH9&sT=0feWoJKJ97s@;&9Q=TySC^cp?OqO1g59wiQUGkrh$DatI>#&D-`T
zZy$PSOcP6^;boXPuius(i@h`7I9N(2xnZMj0DEGC0Jm^VB}zW6ag3*Foyuex77IL-
zvaf2+$XuL{pQ8_%y-|si8jG|q3yDEa7#{Y|Ss}iEIiMt@m7Oz@&S{!xCN70$mYEJP
z?w`8`66u}%W;dxnP14y(zsjVrVn3uTDLG{v-={pMfXT-6hOs9*(!e*(OQi1tE;TTK
z&zBY<bN3-phKI-scU4y4E;rjggK+4vk6vI7;ym8(_(6UM2cePmYrrYfbFr47n63~P
zfyx>)6XH{fn8s&L*-3L-JrjT4r3ik6@6F5LapMF2RpJd8`5?iW@_9o@cur6c+|db~
z9^kWj)8RPl^F{qB(RGf`@&<<U5d+jG^NqZ}s)b~@{JTtXY!8NxAioc(m$@K#&%8bU
zDe^j}j543_rql8W^JD1;ZhB&KL<~Z6I&WRJr=yF$nla3(eUx|RCDX{xqNshCrUmbu
z==$sxWg1Bx(OvFrHEx5YCwF7-91`d;u)%NUeqCWXExa-(_DWpl^x+xeJU=S~SJXPf
zcgb8Em66Woa{s`^-_Az$u3Sl@*&hgKmibEGjlO+HR7YCs$B`eoxih900G((|qQHz~
zp+)P10Ey`5L^xhy=B`BF;mM~IEonljQm7ggm=!IU<XQK2dlnEUIU6JZKf^wbo?gxY
zc1|$n=Efmb1}XD!%oUzov$32|U4RRkHyiGr50E$USG$|>4!SQS`A-RqdgGg0DXZ>n
zh=+_|VLofCjPYno9oA4b>ddmisIh7~a_~0eiIRV66VV^~vA8tDc_nv7c`@qXdTH5>
zpu82X^Pk_J1U*FCv#(T$RCFzg2f#0PVisn}pNPY_ziHcU9o_xSe3s^mpVo1Z#nHTQ
zJGOitjEEPL$1t%C+2r>ClSt*HR=_s98&kyZ=uOK}d0vs3ED@KaT$?V!Z`%B3(xtq<
zOO3m^jUUU3=F^qo-JuCjhO`WSWoQr&hI;A$IC{sEs=--CY2e2LLB+I=zQ=E2&|F@N
z;wIM_UkoFQHKV-!s813`Rm?ljyW4}aa53!>8H}z4U@H(da?jgi+Uekb;9LR17_g4p
z2W$a<VFUmp|4=&u^6&g#jyon<;P%1)e8H}zlK{||WAo@optIbk!UU`boocvW=dO67
zdkFx5-CvkP#AXjn&h$@FT2sOo<4jT#rUZGYSiU8)g|0<c;4ON<9XC_4COYBESy%Vi
zu##~u0!szXb1$$5CfFqs$M_#Cdz)G2b+pE1Hcz2<g_*TAWUGix;qszsde2Bk8)?TR
zF-R&UY!>N{BUfe18F=BGM7Ke;5$E|Zhc6mXZc!c`a$Gv^UB2UqdiaDKagUWHHPg%p
ziELMNL6cT4v+PX5DhCEG@G5#8-{%p|4HZXtY=@SRDM8xd5|D?xwJr=o*wdFWrKB?^
zn!=4a(%0C)SbpOxe$Vcv0G@ndvIQxq>1Im}0;yy|F<R}a?;4s@qM<-Kc^)tFx4IZp
zf4wb5*}2rE?q0a=@NQdrl6o-#C*-&t=pFg<KS=2!dm1%f1GilHkByoCmHG)?d|*%T
zBafYpJ!c!_%*43{lr)83&N<ZcDnIDtsw+P9wx!rAZ=&@Ey|`q;oFk`?VU{5AyBVrs
z9=*cmF2QhTm+_hdMaWtfx3=D_xp-kWd8XTl;ii&KsrEe_3wW8n`sKDEh6-V3(dL+}
zfy!<*;=toX`u(4%X+L~}HWsY0$JVx@%|Lynyz4h&+4ID9Aoh&`5Q^&FDLzjbD#Fp=
z7I~<7o@bA}V`d40s7rXrHu>=%G_tgw(YqL76^*=}Uz(GDXvk|UQ0BKdmn-%vWkyXl
z6)8O<>U-pS#G{tR|NT*CfUB6Sk}3-x3HbZWPy#yqS_jzrzcr~Wpek$5A{3gThIIL@
z|9>HdZ4VNFXio8u_X^$_XaN8A=3+KC7?1VNqJW;*c=K&F#-C&jOwMwUS$xj;zF`Bk
zERaf6mLRC<wMbI=!n_g+Jm#UuMv(CZGKMS6+M-P}<|k(*`<KXSQI6+BZ&FqqWb7Xt
z^Yz9*n>L94Hf5Sf!*ML3d#yW2n=yctnhA`*{*e|2nGJOmv`u88Bmx!;wvBtZ;IeP6
zzZJ_@cAwrDV?Y?9P>;_j)DZY^(7fZU<T{wDrHKa!BqKc<IZ(zAuF{XttCIHVU3|`t
zG~P0`Za#cI`CUsg;6#k<E}RZe^_9aXyyQF~u#Dcz*S{D+V4YxW*LH5xe@L4!v61M9
zKB@mz-j++59%gd(Z;B@Mgkg*gSF3+(?!xi8xxc#~gbRD;Lmb>fdR%K>1zwt7Q#Tue
z&1{hTWbN1!K15+Q`z3#^_&=)5F8$tnFidxN{cyh2><g$V9PXKl5~^Yj5S}qG&S2+~
z@BT2<+M|*?EUN|x27rf&qXXJxy>K4L-;ZWfJIO4Wd1WYAQTaI@D?7t&gGxU1ZZ@F<
zC2hJI-`=-@3Saa=FD3_Xa<PGICQf)y*G5~v1rA>Nj!x}zzCK^y>?qeFl-~9M+?6zv
z=xLDhrUn3B^)aSI+_l&{h0|g(I6Z(<-P`PBH`fEsN2Rql!Z$sE`f{3<M1UW8_ik%)
z`2I#l{vWTc@?uvoKgD(|<OrJncFMHmEO6?ne9Ff+I5AQ8vK?zPMvW$3y6ZLvgUUE7
zFq*p%6W=N;t2N+i5VHRPo@8l&aGk5uqN6`;B88}S4``vPUy;06O{ow{RwB$0K2!)R
zi;=&mnBGF=sq?b2v2k*uPA2SYE-x>Oi@Dr`x%uMO#bAm#d1h5*W(ef$uCdG^p(9j2
z2gb<%=OTv@*nw4?L{QzCSLS3n3%*?qkYkGTkM3t65Yfb$yaa*m(?a&?1LZ3AcZ{v<
zom}T-I+K(Xk!^(>7g3JTr!~iUk?CnCp4E~X-R-W*Dg8~MLK5uZM9Pj^z&SQ6I9d2h
zzv|k}V*i7)%gmNJR%QF@A9f_mo{=*xSpIi3_i>&|j+cI6Y2i&oGNk|j>|0yO^XnAq
zzo=jPzzZp6J!P2#Q5#3chld7SaWyp}f$gmV-*qukI~>kYv9YoF+o?Yn1$mz%ut|xE
zIW&RDLiSS#=G^nFc+_@o4M*D%+RGwKQ9P@o=Uv`xMe!Y-{8&W==3IFYu5UYSYO8LC
znqL`15V-Z0jP^e_*!BGKXl+^IVm%3M?)zqr!N`$tcw(*Httdo)OX8fhOw3!71Pu5P
zqvwi@Zbmm%TJ~3~ExOxF%&HaBA<1aOG5Bc#6ZRs$f8I%u6Fe^07U||$yJzX24A;DA
z59l+|8a=GFlZyduKWb2~5Y}~Tuu~3s*nRSzcUF`uMPb0VT<ja|Rwe^&*{jflV)9M|
zYm~xRrNXr{4`Vc?{iMmW&k^CQjyG;6CN3u@wzYa_)%qKG$Kte^PhTHmQ~`tAGl09?
zl_Ga-e5cf-k&veTMaVzB+VeEoS@`x*DsAHB!{kQ6K{WN(9esb%)Va!q2BLD#B~kRf
zz&JJE?0gG_t+8(nC$lPwg6jHU)-FeoSz+vrv$d?5_<Le2O_0rc?u;4`6?bEjyvnr1
zSeVMXB(oLMT(!9ooA>*I66S!cG?f+Wu<DR3BldfW(WWOk6;5$N;)YE~l3w@9c~uh;
zkFGU$ylVp%(kN#Cm>#ryWY@TZv5;4PPg2kRFu`N{WpZ-Swkm5}8}Im#%#Itcxq#nC
z&cH{S(zwu-%qv@#r}Aa6;H8H<mthc|oV|ocbYdEZ8cK`rx#FvP^;N;pIgx`T-c(PN
zt31Y~d9JKd;k3TvoSTzVU0X}!2S=2Y{IaOH9Dkqk$=v2yO7nzN`m@6ff=TUE@3V#L
z&o&6oYMd$O{SJc9QqN*Hzo&@l@;1r~qz;$j6G5Rgi7#yy^rNroRk#dJxK%nIkKefL
zpA^=>e(6+RA8p8_b)Ake+|DbCHlX%NO5Io~eTzpCIZ_U`3C8sBE-Fx$yqMaJ9yhPN
z3Ehji?$-x>`oqu}{7T(c?g1*n4grKh&JOK+8EIF|qeN^n|KIh3Dm%ckCiOYLt+n8@
z>1ro4Mo6aOTCo3%DWj<5t2gfv8^7+UujY9Slw+)Jihva}!9+~;1w`u}2;j-b%P*H#
zi7}%;aqZC#Fm<~6*3Qs34=k@A{1liQ+*KJu3yT0T(-ZZJ3(5ZC;^NCopDSVG+^VXo
z@^U^&$%~syI##>9%o#>4iF}SJm4ZfE5vwm)<V5IWEXbAWpQoC_doK$}4>$aNv!BY@
z$`8{kQe|>Xm&`Q^AV5*fJ1?2$^I;NHc;QBBSbrsw+s3ZIGtleFwGp^6fs7U0pTb@}
zS}}K=zHW;|5h@(0!^ZpZ=(<kmes?dNdv635XCa%167X2tDH1Q1(ksaDiw3U#6iv~A
zx@TMhULNHp-NvS~g|z2mmi#DI95x+HTK+uW$o=#HyjP-tSBt=&thHVdue}KFLJ#=8
z<56IC#Z3!)0kPC3RSk@$?iwh3vo(^I&lHM`q5i8Vf{*(fsW~TkjAgu!M}XtBWl<MU
zeJOn-J+mp~5M2>y#&YImfur86tT2s$2yi|+Ks)e;4zuHuvIMnzF|t}#Jc_f~rD5z)
zvP_PrFj8?4#1vE((2aS$=P~nf{#xDaFk6K~;3)BQdm1w?pM9rXroZNqh{M`GMXl)L
zcEoO5RW`m%2IMDxsC=h+j`!Hrq-FJ_9w?sTBTRieF>8J4c7k!-t`v&Y57AJ9zhdP|
z(e>NR%`h%DTXY+|LwUQz6lBzY#-x>xl{ic3nee9)-`;zL`~B+k*z~mBWjbcXxBPg&
uWl&yI2&RGAFjl<s`5=k88TNJ9?_P}G*semt<8DkFp!5PPUn=|R)BgaIPsyeL

literal 0
HcmV?d00001


From 67149abc4a71a56cb8ac5bb02a39291d9f31a654 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 5 Jan 2021 10:12:07 -0800
Subject: [PATCH 272/825] Update bitlocker-csp.md

---
 windows/client-management/mdm/bitlocker-csp.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/client-management/mdm/bitlocker-csp.md b/windows/client-management/mdm/bitlocker-csp.md
index aafdb95416..03a48da95f 100644
--- a/windows/client-management/mdm/bitlocker-csp.md
+++ b/windows/client-management/mdm/bitlocker-csp.md
@@ -19,10 +19,6 @@ The BitLocker configuration service provider (CSP) is used by the enterprise to
 > Settings are enforced only at the time encryption is started. Encryption is not restarted with settings changes.  
 > You must send all the settings together in a single SyncML to be effective.
 
-> [!NOTE] 
-> Devices that pass Hardware Security Testability Specification (HSTI) validation or Modern 
-> Standby devices will not be able to configure a Startup PIN using this CSP. Users are required to manually configure the PIN.
-
 A Get operation on any of the settings, except for RequireDeviceEncryption and RequireStorageCardEncryption, returns
 the setting configured by the admin.
 
@@ -304,6 +300,10 @@ If you disable or do not configure this setting, users can configure only basic
 > [!NOTE]
 > If you want to require the use of a startup PIN and a USB flash drive, you must configure BitLocker settings using the command-line tool manage-bde instead of the BitLocker Drive Encryption setup wizard.
 
+> [!NOTE] 
+> Devices that pass Hardware Security Testability Specification (HSTI) validation or Modern 
+> Standby devices will not be able to configure a Startup PIN using this CSP. Users are required to manually configure the PIN.
+
 Sample value for this node to enable this policy is:
 
 ```xml

From fdd1852fae0cd516064caa92f37cca1741cd6a0d Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Tue, 5 Jan 2021 10:31:54 -0800
Subject: [PATCH 273/825] Updated the supplemental-policy.md to be more
 specific to the supplemental policy creation workflow.

---
 ...izard-confirm-base-policy-modification.png | Bin 0 -> 39797 bytes
 .../wdac-wizard-supplemental-not-base.png     | Bin 0 -> 41454 bytes
 ...rd-supplemental-policy-rule-options-UI.png | Bin 0 -> 59172 bytes
 .../wdac-wizard-create-supplemental-policy.md |  50 ++++++------------
 4 files changed, 17 insertions(+), 33 deletions(-)
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-confirm-base-policy-modification.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-base.png
 create mode 100644 windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-policy-rule-options-UI.png

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-confirm-base-policy-modification.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-confirm-base-policy-modification.png
new file mode 100644
index 0000000000000000000000000000000000000000..17ab235dc3abce3a853eb0956ac8125748eb67ba
GIT binary patch
literal 39797
zcmcG#RZv{f)-@U+xO)P@-7N(7;M%xLkS4ghYk=VH?(QxP!QHiS*WlW4$vNNuaI3zj
zzwUkL>RP?`s<n5mx#k#i%+X;=3X-Tu1V|q~d_a|!`mX%p1GM>v4^R#W(C@!Y(AN6A
ze?d7aONxG|n)q_`KKKX}kr(;!p*9-%#R&F&jA$pN<@n(Pmeaov)Vdjo+lLS7NYdX$
zRNeH?z_7Zi%d7BzpAERy&+JAU7tVFt`9y@<_^7PE_t=QkwhP0G;7G%;0fcd&a7B(j
z8K!*x#5?i4_5msab4~5w(I<iDe$CNwe|;l^PaHD{LllAYGaQX50vRO~io*L)3i?w9
z0$EVZ$90?x2vDLXIE|5_$?yF(>DEQK1JLZU5W2j~ICTM~AOCY<NV6ZI|G#Us@7HYm
z;teZ0oO#F)L4u=*?gNpeyGFYFI&Lq2$#j1C;us7ocHJioqJ6u%IZ~;bGoiC@W-&nQ
zbh`ZEgR7ykaSd;Tp0(!)Qw`8dNzKq0LG6%`R!~+x*IAjnKLs^L;Ij-A<Jt9L(T~ec
zFjkn2Ciae%YcLyhxOGn7iKH{K(M`&GfhSC)J@7kDiOz9?FrE~3y>V@HuUp#N9jPSp
zL5uEscIPQ&_NA+*;Z%3!n_t>@bYV5dTlSAY1?tP^xC|Ueq_j6Yu8~!4sJ?H=x~0Pt
z1_*}8ub%f*Nj3ev%U#J?cKuvKVO>{JJ&6W8>Lt|&tqf~Dt82)D-a`2ZNUa@Tn)VZ`
z9v<xrlM#sZTGJ=aq-iA&u$1GycjW?cOE&gVDLaw%@6cS4L=hk~`ccD4ND6jWyTcN}
z%^uEnQA#79%2OG`)4APj7WfY;YWS<N)KW0;vh-ErKii)@-IgN;Q?fj5=l5<0jbbiS
zUikQFOv(F3i=jJ|OMjjmojox-Ow`jCVO8697V56C1oC%&RNJj6#-ID1x$4alty;ML
zTMASE>K<9(AYGgAGnBu-ZYl4MsvRTQwqMSsj>y5esYa0i0<YT~LwQia_t22_F7F90
z9Bp?ZZo89($o%4?mQLRzxuHfv|MkJ%_*^c!vUJurkxja8hD$nUz4<XeLOMDw7>-n^
zjUB$~jjlcCHG%v99GVa!KG(;AMhx_~_Ax2ZvKhtajf0UKnN9bVlc&ZQj^slbMYE&9
zj)2^9x6@6K?0xpNae$E);xZLo^UHGOeqwxH@nRl3!}4c@>>vTZP0HN>U(F|Q%#(GV
zd%@vl|6ivevE1Z?)N(RGdq6Cx*2~=M4ySXY$MPb8G47J~Wo7)Y0CT#EtkhWKrcQH}
z2kdmUS~g#;5G`$4UK~1dS-T2`XbCJ84UIvUSLzYQOb!a?T8o*VmVKc%%i`Bip+G|O
z0F93afgiU$zxxzz&4Oee_hl#aZnWBj(g^!Yhi}lrB04<~f1F<xmK1A1a*@>&FkFO^
zcLfo=D1-1GUvr~L3=oSVf*u}44yYFo$UU6_pWGe+BTPcS%G-?&Y{gCf1nD!<?9rgR
z&vlzWl5>Z#l5$fE-pFm<w!2>F@*ShH(IK>^ib}0_L5j&KC?E=_Uivc7FGoJBfuz2e
zn6L(U_^OGR_I!o>=i78Hz1Rm;_<!`OHeltu_Oemv)KgD=Bf1PGGl8Dr<OXktbqTAO
zM^3#0U8m^-X6~ST4lV=TiY~{Aba2B%1Qe_68}ir;%w$9kJ|PzLUWF&rn9oqfs>NHx
zW#KT_Nr1}B>78`<=<B-RBs=l5p8MFGy)`L!1a@`*Zu}uKjU`LR!o#xx4en$h#ZrRr
znO@JhkkCH)Sg^X&&cOH%&4kGCWVHTpN)Pf{rbAZMcZ6K@4M~g)cDP#X25g!WYH@>w
zl$=a{2b;CKzw9=;m9qXo80OhUxN5kMPjJ%^{zK7ekh>5o)J#70$xGrx`@y6z=7Zkf
zP~z26+2|B9e}gG8<yZndJQtxxdh%`UrN(qQflDDL+R{5%$wTV8;9kk(3$xh2^~DAq
zI9jQn-I&5ui`?|&cP*q$m6SfMts!4AVH9K=Ih3$N&d=tq_<#Z@)MLMqqzuIZ?YHJ)
z)48e)y6vxr=$`WS+?l!EF`P~5Fb<ufHtz3BBblc$U2PJ3oU7wci~55f#Oy+9WYKRz
zCQchk+h~$uN9idGC`)b1S%Ut|qffLE)6jXYm!J}6pg&Ts9pH=w;(G7>c$nX`viWs4
z(oRZ`{8Va6ESQ{1-5QFf7m#i_rnYQoMpf<ZU>OAp!+6r{SlqPomu)=$R=YEwr^;kJ
zVEJdcnwL$4LqXwfeHi$CGRYGg>14T4g{ChqCx*~_O9}y8O8*NvY>0Xp6SzYvT{bH)
zAs%=9<$gz>%ND%kzJ^c0-{v&Ha=PMfumMfY=Tg1)p|h}H6&P@_7kdRP_7V#Wg!!&p
zf$=sA-&>{EjieTfcw>h+33&)B&-K5@3NGO7<Dx`6CVpr)KtR5}E$-`EOg=vV^PHd&
zRhN8-j<Muoek4YhWu(S+KMg{Ui>N2}+OgPJP>IDo!X4SOnVH81@H;F6UCj?Gv1!)G
zG-TrYqTS)wTlNpeo%FQ|J09M{CrGc;;p~+|Ird`j$eD?edlzl2pvdM3!z!93>oQVi
zTl}$hv~1Plm(^B&#Fj36(z>4Wo`m&gnCSFQge!ZQw0qSv;yr_Z*H5Y`aqqU18|Nm0
zlSEfgr>+Coc=jkKU4zA71Pe$1?_G!c$$~%34eYw(m`q$;!_&W%?fpPXZ7>jNnT6-+
zs3dMWE>c~=;m^Mj6M&rTDB#6@FX%PzsUyUMe|$T8<a*w5gev^zAHJKOi+H0G{|=Fm
zW_`$hj)eLe?SV{o)f35N$y;kIx`?~Ja!)0`x4}E|zU5NG{sZD5&Hq7QR&LDqA)=uj
z`TJF@93-KiqDGyHHvdNB5~f}=$|@?YsN(Mvw4oDkrDbJhcfR3}1z}hq{;%_UHow2$
zO6m6=KktD3ArSlh*0>M<EA;=r7ykcjVtmY)4jMIe(f%mJ7HG%GlKM(yy4kk_w;o+y
ztjEN}blpOB_4VPe%LT2?COCm=b!mBdc}X)Ry&ZmSpWXnkF*who?~K~9Fy57Fb)Z-z
zG*WKd+R6%#$=Ob`4FPGtNFp>a%OM|A^iYNJ4CD?>rWXfzd>c((*7TJIs5D79QV=L#
zh>oK(Zo;kq_C+%rI)J0Baq_TCv74*AKF!JQj}h7fFJ19reFUM5XA+&ARj!KtOcBu7
zkUAAS9=)`Co&X`1@-&H+s}l`~y8L+G6+w4p;*7lwz#PZ}GWKifK(~|(F(7`exP+uN
zj}lKFBJOykjllh_9r_^pB(E!)u8RSHAnrYwDE)ctQI(!+>H|^6PRmvM73<;bU{4^S
zFhZ_kS_Aw6I?mp%&IIcGh``Ac?k>t%J436Jyq;YbKhp6&%1dk|LG2GoVAG!=qd~{I
z6}x$y+tE!cObs32)}QJ<E+K)kr)#ND23AcL?or0)mtloPMPC{eLg!rSDg>YemFQlg
za$CZAu6SdT5xwO!=+PPM(58~GQ%P`$8EyS0z{k~YtZ{_d2-0%p;l26;-2^2L!P!3h
z4zNBn`|WE;&DHAQ4ga;>b&<aZHK;nLM5u+GBg~R~+Dh`4lLHc&`tv|~bO}(sl8Qif
zlN<je+vv%(*#Pm3F1=o?+Hzp-3(V8rtKZvY!kLG$;cQnzW=W2Ro(#$N=&gKVQ7x}!
zSZ;G1WWl)FofnuGnZx$Sw7RTOZ@wsUh@bP{%;>lwAhXB0#YNHA?SU<JC$Z?A!6-rm
zoCs@q;F}T6=fV+!HuJqbYOd-vLPgzg#|(hgMzalgL>X&o4^;$`fXZCbd+d4nXI7PD
zxLF%_VW}CBZ`@nMpuBQ5N*}(tXZH5Wm+A5E_VSA6c+%)`G<;<3smjKv0r41acT?tA
zJFjz-@%XH21u){JL{b#w7s>Y={}RLBagm?|lS(Zv-<7EiGS(<TvRCy!Uy{69hsPg;
zgzai4);U;axr><&C^Y^ok@Tc=f4L&kG4qXts$=1OBwedlO$xdFj`PRW<^wh}T4K<o
zM)ebVK@FY^#m>`yL8F0>EG~LN**-8)`Cio*yk*4XyKv&pxip^_o)or;!U<saYTxn|
zzOATFtED7e_xY(FTF2=qG5#3D!ZPGI2BwZvKC9~4RsAAe-Ss&EIs{nvv~6?y6G+};
zx|TMPs1a^Oenpx{rkOrf_?#hSCK30ceVXX&oxUD>?es(thU7a+lfWGy1DW6f#`q-P
zPOlG0#h<B=t<7DK@m58Vj-86dOhYX~;qt#E%@>G;G*)e!^<cntvvXUr=LU*H=A7$_
zqW1V(yHtI>ZN68wZBn}H<II!Ii5G`Xu!-gw(XTctxSW!o?c3f5=+ix>=lwu@+zTaB
zA{GH0*-0v&9sN8hU)<UK%OWff4nBfkRTa#x3EIu5LY`2IHF->^Hp#H5MYRz5)*O(2
zL3_-ma~UTAdc2~<$Vh`HW)pW9H`<?cT=>F%2sRg@Nv_#>PY;3AV35`wKXW=m0LQ*}
zcS;Ad`=YKz0fz=`_z}k3sVGysG_iHsx}hp!#*wUGamh}quDFC39NE@X_fE*kGJpQ<
zci`O>71?64GWctYLnS^)dI$?a?6}^D`dlgGG?%4+VY_fjBY}(7C9R6PJ)Hp3v`QLE
z7jHKCWZwqE(Uqlf;|<Gd(7nQZa2%E$sp%3~Kva#a5W2cM5nijxCC~)*%U8Jju4Fcy
zfX(P-QRUd$Q;Y=`xFb!<9VyV7^|<X@a#>E1)i&~VWfHpT9Sumn(p}ikKw6{vaFZFe
zEGoG^jku<sFMX$NB<vVl2dx->z+pfHyvEnH2xl)5M$!jqv67gx)#$Jpw4*<Zf)#N%
zrKVTD`#M92RnrFf&CL#WO{%_K`6?Y3_D7bO@?;R$98IF)WQ0<C-yY&qTr)HJ*JU+E
zLfF%V-fMs=bk+Tg;%aMR_kpj>op7dsePLt50?@uCwh0ohu5==MUI&SA4n(xa*GMHE
zhY|p%Nj2i8X#**#+c&`6eIQO|=E0i;U<G&x#B)E;=uzb}fB=YAs#>jAC&2xvtOW8u
z_=EDgj*m8XO<19lo=rciESm$nHYSJ3gOrd#vW<Vh_N~hu?r3+TWUwb|Ej7Wf3LoL|
z@9OE-SMlM5_8e-aX|?y6;3=>vp7$DATm)TM*|i(Y6H^Fx`P(|jr6%o+HNRj=GOwMF
z&o3bHwC$TqVQ~rnijKHEzh+zW<DOjy{TZ8^6Yy(ak+zt*z2&ku6}@Acj}9KPEMSy2
z@I@sA+?w`-S=qli*x7A`xC1=O4}+?@Bk`NKQ$D4(to<^EM-0m=LDRidJAZ6xeO%jt
z<3^?SM=J?0pOj#5?AvP`HSPETBoCSjMGeI61Q&hY_^s!YN@$)Y5pV8N?1a|sru|-i
zldzyD+^ApTh}&lu{45)YAA5;SJMzf>hZ)iTd;R|Z6NvwZHu!x6rDkU84fsK8+=BZ4
z5sSIHG=dCwclRj|92g`jDyqN9lLwCZCz#1<5y%e94mSQRZE|BtZ`l8#Cfe%p0re#%
zv>Y7Q^^=16pEi8oAa$mrIh#8>v$T9<oN8@K^v~yFE}|Ce8^xl|fJgLt?0<YkY1G5h
zPL#sd*7nyhiSG+r;^nNO5F3;X?8lD?AEB#=U;<{%4-X^;jh8on3)tK|Dp4Rz@QWCs
z)_0U${m}mg#-^H2#FbNvl~MwTC;#d7N`YZf>_Lf5E4y0z;!<^i_CIUL+KD3T>FEtg
zJ*20k4DD0l+}zyc<dl^mp|%vEeB;LdxX-~s^XQLE%AJdG(ixR`x4NF@CAuALuJU#=
zl~}s$!+Ti$mXEv;YMX?Yyf1L`l2KaRb)KdBJuNje4(<RlHq)5<7!l|;c#haY|9*T+
zvbbP@;^O@m-EU}^cvx6<#_uZ0geEIOqSC`ov{24xE-35_WV0sY)tZ%YZRlmBV94^#
zRmHQ4m^I5^<|RP)Z$|R(7$%B<N|L@`9oIPX@HRRsbB;xWpSx%O4u*}=%Y0v}*pQwL
z<REMQokpTqy79culRG;=IYOSK++KW^IvgqSP7OcVA}I)F`<^b<wzRac84uLZX_Bb+
z(wZy1nNB2oW*Gdgqqcu8?KVNAJGhK^$h9n4=Y51i?k4ytVPPTF0Y49jQq_pvwmXgh
zP_q0==gXg0f|zv)uKd|Vk*6=hx%io7gAwmKD_i1TD^%?@g8J56cV5Mf(UbU2av`qk
z4yEdpScOGJ4m=WoY~R<%WCNdJR3)6>0dTr10}T2*UyP)YSd>-aH8pX`Fqub$<Xi%X
zX&@^=HO?>|nZ`_UdipX;;+N`q1ZAh#CoA@Lv)=?ZT^D6xAnBjqZ94{ny(wZcdG)K$
zT+3XxTwpalw(&Hc(SF=JIOftqI1gG!p2+n|UT?%NL~!<;0xREn_YH}gtlgDc$H8Q_
zBhV>aMp3c2xD+-&2Wl|^3RDVCo)N_9g9DC{S(jC#$>m+*i#Mj$n$&)l+au7r8q<qD
zE|-TtfWW*HhQrN@E=hnu&R%aR&aEtoC4*(8mUo++fgZih-+c;cPAYCrfqEa!%M}|c
z@P%soAZo|=LhQZ7(FFQV+GAkRjlvHXl}^-DWdLFL3f4HzNyPf&XMR|b_a`)nXXMV$
z&u5^gZ}HcFr7<AAT522GF~bt#qM=F7cA7PwR!5IjlA=dyuB=hlP~pSR)X`G@GavCi
zIE+h9{gep@Nj$F@8P5tYEGV(yX^joYWKG1tFu3~#iltb~plK>$v%qQxUA*(CQaGW%
z4||&2CMOpk^f+|Zt{<_b?zs83lzH7JZ2Z)?vTb+HG&DzYLt}K!><vQmo^Ah~Re|>r
z$i>vu;zqgW7LgF_=sk7uls?sX-@2LcfZMMR_(t#mv$}aB2w%oA8-mf^l@QF*Rf$Lz
zw4UD#e=u9DxQzX^#q-|A-JOR^7{FQvu!9~_kdkjgS*F8ct@blJKoAf9QJa!2+3X9*
zj@O}O%t6-TA;(;89oxtMm1Am@TasFen1+)<FpXX()9SBr)WG)B9wVC2e8>yu9?!6b
zszc;Q<tGJeH{lEkm1CN6!<q;8?`&jK=_bhu7e<ilF;ux&Oy6I5uMRE_3-N(n?vf>b
zpFKE?zr5y3aIcY0qSb;*m;BpQC93#-=d@|F?PT*)?VZulXE7Hm&sED&i6Z3Q?=gW8
zNeL`1_V)Hnfj|unjru^A;{DJfX;A6g=CLC}<KojgkI~t@MmO|R-k|jNZWUEKSa-W#
z#JuQ6-j0y9Rm9-f+2Yf?VKU0!mB2=VacYu4L<RU~*t@&IBT!JFs;8;hN3vSJk}e6#
zzI<kGTdcel|CPsIMDobm{8j@^4;5ncfd@N;zc54(A@8}<XD$sZgXkOO`+H<3x}(ZK
z)=%0BFft^w?M>%h5;T@LrM|nwk|n_~K}Z>YYVq8!D9?p4B$rm3E~gC~>y;HI>J^qK
zSh4NZOx(|M#Wn0WgWU5&KHV1GL<4J3%{jSBZ1=u;c)!LFzUPyhE<-!4>=sd(>pj;U
zyRV8sW#p8Toa(%pRDwK{c9SD4u>aInhJqC4$KuDh`EPh>N}ArGOQTLPT&xD21H^D7
z7<GWGJRicAF`v}f?H=NHRY<p|(|XR9T{qQeE-P<^u0pHx12z9mMoj4Hvg`bWg?#3Y
zSO&4bN8cmEjaeg`5PW`^mQXlB%dgb;vUtif2qb+{M;Df6a4`d{j9k2;>n{mfbFg`!
zdWF}}*3r??N?WzP+$sBG57)-4GdTd%<H32rp_bEcoBQ);>QLfLQrqUinvIRKxp`wP
z2R$8|%{LuiqssYDKWM7QFTLi@F(ZrFMKOFSO(!HIM3#%#5N^mO*Z>c%<B3S_Uy+Uh
zM^ijn^j+q<E7x^l9@zgLmgwS$zM8SZKfi}kcOLCcq7N8{KgBY<7x*68tlS3Ngbc?u
zWMMPDAKayv2P{2i4CbE!7=JRB?FFOWfuHO~(CEL?!2eB!{%x@_KdS7QAUqroR=1z<
zSCcKzFz%b<@Sskl)^H*r#zb~^B*Q{@cg=+h9ONX=_IAp1^|2UtG63yst+)4}8edfe
z<s?gsyAY0pTD8huh3E4(y!7=Bj@C}pdOi32fJzT8`HhzlnT$sK@KojLzUynSSIRc>
z>0MDsPgelh^k_Te)-vlwtej1^Hn_v=pnDrM^<})3CF)ZYNm0os{pa~aEWp`AUpe0D
zTxGedVrO69CaU(U&-XVplnFB)%URRjGE1k@?aQi7lcIA}HzIAW2kQH`INHN%9%kKE
z|7}#l)a-BNgNsf*cbZi%W|J(Qx(Bg2?ty7bU4pi=WH#v16Ok$)#9-ZdOI>|-i=9<p
zgpk!$pnT}5_t-*5evz$@*dv%$#>f^r0nf4tvTdu@)P!brkyX4K$Jt(8roVnR)kBq+
zMrcl&?-{yckZDO)z5IyFQmy7VmHx6~Am>)UEyO3c6CPLpd3i^T?+O?FR>Q(gu`%a&
zmGAgg_+fqkX!*;LftNrK!;G5&AR##NGFQo`rtc<K22NlwRk-jDArdy?EF_v$%G)g_
z&u3;@3%PhsAM7c2v^Fo0TtLEg#4&0o=ll5_e+Z$q#j(^sII_3L-=_Jb>zd{H&2Zwn
zLc94n^tJ1;Y?pX!_aJ<zMW}0-hSCN6FhT7Tr22ZdL+S!;=K`YC40Q?IL}55wFKiFH
zijhX15cU4^traak@?e~3Me-hj%>A?iO`zISG;8IqSSu)Dk=dSBwe;<&dtD^~Y>Qyg
zJo<s2qIno1FfZpkgiiETQP+UG>_m=8AW$CON`hFXiv6Kn&G)mIWTX*C)664YtHo~+
z-FfKh#HX7R-r1=&rLNE``cFZLU-GPGI%PGMyo4fh?L68HXIxb%e@maOw5HdV{_Yim
z0B!RXHEw}F<^qp70m~QC@-dJG{P^^nP-msg_7n)(OM+~=k!||e>Q<vf*K<&7kxKi7
zbG|Q3D46M#x+d$(*PwR8Uc1PYh-;dPPI%5(%K;YN>=JGVzpknYhkK3?qAr`3N4w@E
zA9+C1!gcrKQ!(sa#O>}YKnM5FL}eDr9?!cB;fyFfqu*iworTG*srQaG2fm&s>7!0G
zcbvpU`MSziFAC8%2pzoMPd5Z6&8`yP<ca1o>7EXws+;42E+>+`#^Ns1bTBOy*F8@S
zdP*l-;pg+B(>}zRix*iP`soR-smxQaZL7(qv3PVB^_|FEes3ibZ@o%)ouv(};#y-q
z^u-Pzi$Jn^YItI`5KXj4#{w^~4G?xL`>WD=%PZ1XZ87CxfhI-V7{dtPB_7%fZ<#Ej
z+!B&TymLy*<~tAyx|>lxMU;2Ly@{&^(pXiE?7>~qg1WEL#-hOVkBf6Q2(E>cQRqsj
zM_>CDI~h-PdojOlCP!)xvgC~r45#6Wt%0*4aqcAVPd$SQnra)HlYHp`#GMsfjQgVs
zHKH~<#^;jqdjv@m?)O7lg7#Jh!hUP>>50G7L){vX-Kow$vKy^$XtI%od?+sV&pd?l
z+<Ofe3+(gR{NPv|c7`_hng`6Z9Mo9)8Ff)olSx=~Pyx*aN_w-3pczzKsg1usvnJT*
zU*HSnX8abz*-X}tPm{I?`6F{`K*YH`L)<C^KAI;zCR#m+o7rgZ9S%6RcbOH~%HPP$
zR6A&LJdz>cM-Fk224m@MOD%1)c^)dPs@SxD<%2UxZae~w71I_(Ok5J)VJ~HUbh_Al
zk!=S0SQSCg^|mhl_&^S!B=oZT+}8|TM;!Q^m5bqLz<ftptxZn+a)ed_R<`7wk;IMN
zTu)bWFBKB(C-GB7VtvDeH)dC!Y_5{l(e(v8lN^Y{W$l(xbLTD*J{$93*tI&i-r3;x
zIaghh>5ULQ-Lrj5Clm|~lta;r?1*oD&9lY3+fhP_!RaB&K!t|xRt4*Gt4vMu<5hjk
z1^+Xn8i7wsGak?M)h^BT=((%b)RkRbR#@!}`d!h-X^^i=1U5_XazZ<^3<Gak?M$^S
zwxzp#*^7-#6)tBAv*%b}oI{^V0gI3Q6sR?pGqP`#{FE)=*BuiV9P<Wfu*Wz3K5%2G
zM7Cg&5t@p{0V@&Ox4U((OT+W2EJ^w&CzJcWc#mio8#FtoAV#A7-W$x5d+rl37?t?=
z_FTp-qhl)zdJQvEq3qekqu+nIx_bF@U)Jqny@rmB4SaTNznD)+GxU|+^%cbz?@d<j
zbP7nh?ID_0rPX<F#3B2wyX1*`(bN95<MoBIDocqDyOA&w-5EGaP~l6_D?6ZXL0EF|
zk(<AHoQp#}ujDOpT4hFE(L(3~<%=WNv7XEx^HB}_x<~59(y)fx8mT>BVzZmovd?2&
z=Vg}OK>GPy7hL?s8yJDG$(-+H@-KZ`jhR_8Un-*aAnR?%wZN@nTd9i)aL<W5rmDam
z82>~QB^*JvN-XS3+hEh~z;1g>Y%I$)d21XP-&yjI=ZzyUGw9%<RPaVwkKdgFhpJ0)
zl(?49zI(p&x2k?&s!?q#vv`^ZlvQ9zm>m5^UUDbCqcQOZHY+~@dPUxr)x8fny;N^y
z$}`>O3skd~-fABYbK2_1S$Fj76!jeH%ueJSw~43zIvcl&PfrY-#-3}q?Euto8*|j5
zCbu@|M1MRufEQ12%7f^sl2YvA@<GJ(^&0)B^wS^%Pu?o91}pqN<$6*U6PZ1QSp}-j
zx6)Uz-kad@x`;pBpUA96n`#G=JE&Q8C|(n2Go3Dfz#M*Lv+7l5HrTwFN-h4^EQ3+=
zZ-dVRO(kzqIx5domEKaqdVvBk3_W*3MzDF=gGz6UZm1_{k*GilmI)FazEFI0sq{AZ
z>znS2nDDN%)YL_t(7i^-C8zUsg<uzduQmsLh-~8;7(!*`j{ej-6cOst+26UJ)rRhD
z_x(PIaQ|1;;cQfT)2l#Z|3%hLfx_)VeTAZ@jZKx)27CQF(o}r+%fBQe9mt_Wi)H4x
z7v1yh6M0?o%7U$7P%Mip4LmnEe>p)ZO1pV$g7H?FV3<I9{jn)Zdsk3`Bihz*4z>3O
zeC%Lz<G47sOT$HRBx@W2|Ke46Cn>}P@8b(Ay7k-iL`$cYK5k_nzD>+grulv$lyWBq
zkI(%|#Z8p?TnwPI_3a+#%OrFWXZa+4cOMTs74P}0$QhmGx#)Ox_I+^oS?R*x<O8E=
ziM^Q321Ks%pf*{p8b-GPrYaqBeqeXEPh2XCH~n5yIVDk+rmNxpwMn<WVxLN`OW(pq
zmDQ49whdj^cfcHW+aDgwZ%+NzEtNLlGOo27$cx5<r|Y;0B>qtZ52i^duNtpzmD_Zj
zh<jKMS)K-0gK+#~Qr+t}q7R(}3KLagmB%hZv!1IFHYm-Xt$qBWWWm%0g4Nz-4!17c
zFTw4kIA&Th)ppQw8ADwrL<{yKMKm_-s9ZuSa&@bap|k9j)Y-tng-_s$Gul1{q6M)C
zh8fR9eUJ9+Bgd-!i@9}54_V9mL<EnFF&h@hmZyhcvxfYPX;TRZ4A~YOc?qz9=W<n-
zXTM_96l~*s_WMcEy)%v77TV}0eDX;&#Am}zmTK*B7cjOL)jhL_Ye6!(e2FfWN<n`*
zi79)e1NSU7>V7k4r+HF7me#PyJ-|<CNZAb31fo3uB+9vGXorR|Xk*EmBPQVKu(IuY
zZFF?I^z*9Iv1Y$FJV)>BYii`EzBgY~Gu)3!OvG$7O1qk%q`l9fePT79TL*Xd$JKQo
zP3*mgA7pU2{Gt^3hqB{iJ=A;JlA(V!tNPm0aC=cYHr7x8(QZ7ECUGLNIB2>i3u}{H
zT&(&~|9XoSAA(MH<L_Z=x38+Yh!fFoy0<6l!>l10I5*~?f0{u>Ur|vuv_-!`T3pjm
zfn%nstF6zteY{TFEUZh-ya}h>`;4Zb^jxJai_oQ~W4Uplb*uWbDj;B)ns%M1QyZ|n
zKUKRELkYV@JX<_V)F{j)3kwT-v9#S%U!}D4Ib}$0U_>L0q1*Cey0c5JI&z>>q~ZK5
z6F+5GQDRs0(eD~*zp?rXcVaDC+tH8+XE!nFB9Ocxn}X|}?iwcrXDy9G5(Jrh1Ot!a
zr6F2uhFZm2VZxnMGmR5S_00xuXuylMGjdKvr<>o^+3V|i&u;7Tt}gw@%^NOJJ_chY
zKb^NkuA9@j^&PuH>d2ef)f5j##%rD0KZvJ%W6!39JFi}qaBppenmmlO{2GsM>uAmG
zp3fz)559|u)p5BW80Nd7$91s%S>?J|L#}9D<%>VZ%rGemFsiCUeQx{FH@*SAyt82V
zX2)Ucwt!8%?3u-|upa2%tT-|<+3qt;lQwBXCorKUa@SM%7lzN<NU*Q#%*woA(L6%G
zEjm2f+O<|qt;sNLUce9yUdY|a=Q+aK{pY`MlQCNE@Lt^lDe*BNyHRWKR<GM^)kJ?S
z?u+q1P5Xl4k>K$t1rg|z={T*m-r-GA0srGwJvOJQpDwRs#QqawCWLc>DJSC@dZ8<l
zp5Su_10D@&)5hkD+KQD>i8C<jz1dMY@$njetLO2Ld{2wJb%s{9gKw;o4U(9pKhPgF
z)>Up7uKOXcIezc;oU$!!%Wbu1kg=T)jy{@#)OdygtxW$?%g%kJYY2bHDI*46c>fO{
z8yj)8{ph(#+yay=l0q?;{asN345T1fcYcp;T|u3k1F`Qe5Wd^&{7Q=1i#Lh!>MF*A
zgM)~Eaw**|;g2e{OsV9m$fTSk#Hwd`9v_KErixs0mB#RpKC*`8h=g+ucVlEIkILD%
zoCSy*hoE|1W+f&ERcDxN_V2)bdN25F3aZtmH}_IIgx>b+^r;?0S!f*k?>C8D1fTF<
z7NdD7Yc*hjYU=6Ls~p)v5rrjCc8*?+ufIRnPYBSHQx=bF_##TrpI7oZ{we(aiG_lK
z!?o(FEz&Z|z#IB9)nU*(0?18C-d!^{YBpqYAR7}<Xo?%Xv-2YW4OSm9>+AXlV$y@A
z<%txw>xc21va6ZfBo5qN+<nFsSY(H|=e-j&3Y@))>&;T~=BeJYxKrmU_>QJA#}!xc
znbSZ2RjAiLWl$}a+ETA;^8GxGBNZK40nDk0^7??A;#6PcAj;C=t6mEI;Zl)*FB^Mc
zgq#<H>5_h*?#Jt=X2+{30|d74M}z|ZroI*n>k`*F&~pwGuYBZFNNo!D(X;bdwYAxe
zIpu$v&;QG*V%7?tyvgJm3+np1Yt2#fD!QsPmm1oO1rV$c!TL|NK3AvjUiz(h5SWk_
z3wUlKsxDHMgPcVW1{V}GT=}VQn37$BeGiqS=~sO>IM42qnjCd4M!st;cZ3s=Z?vlr
z51&nmC8_>0V#dgb*XBZ)_;BzuWN^nYHe8@PwbZ(zGM{Tx#{vvqJFE9_N~>TI${Xh{
zcPw2m3UopfORp7rz33MW{Ly|#tYATZ_*oj^f0S>P==!{hin=0+avcWO{Yp4wiALU+
zlA2N1Gg9tV?^Ue?pZ$pSA|)1PW+rAj_idX?%jc%ii9&pKfR>V~i)Qsf0&eoMY$Ku~
zwwU_(+=^m%Pu}`tJ;Nz}ET{nrx%5&&Y3Q<^z~UG(CgxcaOM`MeXJDRDqtfh;yJvd(
zB>nM!9>dhm%uB>O7Sv(;jV5{0_sd+V7?9}fGE-s&Tls<NR*i@5E&M6ZFUFWUb0vCS
zJ#%IJiPVXz+_$icfpos{qG`O8GWaw-umN~~R<Y}0Js-ql<0^|J{umAYd~;r1TF6=8
z+C1d7B}DW(x4`jbxn7N=(zxJ8t6j)fRY@~0%RPTIA{a^Vt%~TMJ0ceyH2SXM@fmon
ze5|XlsE}i1rek0l+n2CM{U~l~N_A5#AC43;!_0%a$fv5V`qoFuA{eDijkg~m^9S}u
z$I~#Ru(0q)it*2%#L*h+`e=JIb@Wexv^=eQH#xM;)1n)6oKXK+C+T)%GeMKt0He-T
z&CW}o_@eL0<>P-mnM~!T0ocMWKIWx}|LN*9R^TB|pkx1cR`CCYp~GuS*9$O+8kX=1
zBSVo^7rA&hwk<*W-il}}!7?%f3o%;@lF6e_oa<x((x%~nb=86lJ~3(@tfGHA9iiuR
zJ@v;L-Gun{PP1_A_wJcb&ck7#bX$ME&d-azx1*p6Tf!z^(>wAuXGbTf;b=0`TrSsy
z1x~8=Rl)&bk9%u>W$UW59<sJu^xgi<%luHc94R*SY_gRal)^9T#?&w?aoJMOdaCkW
zFV7<DIexrCM0Cw75z)ncx2<rEnB!+d;Fsw#LGI@O%tFlZB(bdU)oR6;AIrw3(I`z4
zXR6eVo4BbXL&1M|(uQ%|qZKxO8Og)}PK6)$?Dmo_Pd{;5kZIUZdK>^L7+cxJ{z>h!
z_&;>_N;gbW+u*c)Zr`<1icpX=uZ<M@-y%Nmn6v~CjD-<@;~}Og(S4-~^s1k7bks1j
z@hGZ5@MgvSNW<@0Z3FqW9vlkVW5SltG5}+<XwxSrU$IH~O`rs1sUDT1qV1mkYl$p1
z{@J-4XXECB-lrFM>Mt~6=;)f~zC%HuIWlbSl}ANz3eCBrN<Se6!lYt-YW-U@9%Q?G
zg$@&GX}AV?_aIIK<x1&)KUwgvz0=yLOp`@5UVzc<3vAGL>zp<Vkm1C<-s#eUHvFDX
zUR1$MJQm=C_^qMLyH0r2w@I1s8dyGgIGS*_NHbm9dc$@<dAfDGi&gUWE<jtG6VEo)
zGPEZiefr5|HavmNn&Jwo3*1&PlS2`A4oDw1P>D*u&b3p$s750g9MS`p<@3*y5)}pN
zS4z;(7o_lm1=}Y(9OVSwyZ6cnsgFdaCmJ6DXS;LEtbYacj?^ZI+qsX}JPt5*7c+v7
zZt71Ie`f8*dS$<**JW5M0sHMN9_2-e&wk=$v_VP$W!IURR)(e(lYcL&KFLCMdVXJq
z5VQc!hCTvMCnhD9L8Pk0CU@p;q9)rm^BV`}epi5aW{1`7L+y7%6ZAOB#25dXR~8Ll
zyZ<Bp=l<=l8+0<LXXa)y7C4W{>6#rV=ojHHIxEK&>f$au0s2}JQ*oWWsjrOB*@JkV
zIKn;mIL!Fw#Y5MekMmsoDwWQKiR7u;z$GX1f28lwhYEOI5mKKxox}9GYYCtCp!St(
zL-mD1bxh9Insh1P8ZvIEZi9#wMfamMR+5FW(B}$`AB+aOTSDf-b>?@6*EL{^BOCj#
z2y25`OBNzmFh`@vM$Ss>VZRqM;Adn<8^|c5sSv5QPB(~#KVjMU<kOnTV~R@Af2HDf
zWUwsz^TS?CE7dQ1bbgwY6I-3{3=aXhynM8!ZE<K1`H)9dJvkXqY|G$zZ-N@O*m@0w
zfB>I&8Y`kTXkXg8i)o6Xq9t#zS-|*1@jG&A6Y8Fzp}|H$AxV)3fw0{xb93-#g>qzt
zJ7x1@KxQ`3mZ~|)d7i&lHAVpkmaK3&6{(z@VbHslBDQk>_iM%#(4#epLU47s1KM-_
z$3q+;=LwB3xMc6wB<&rpw$Lc%2t3yCj(~xJt{l3CL12eTv(O)h98M=I1EdN3WQ)(E
zG+yN}MiYMX5k~6Ks1xctNin^SIP-}_quN~8#lca?d?izmcUO8GmM!W#EqZ>JNxNc2
zo?VEd;e-PI(IWP(WDR}H$LITa1nHa-12VpPcXuTgJj7sVD85=@(x9NAITXGQb$xN;
z%}Lb*`;l-*v!_8s<VSw<nD|kaq0vAa27yV@Ha5e3mJy?o@wtS}xyzB4iBwOXYn@`6
zgk`ZqOXUzY$^63_6h)@ox$|0M!kx@u6ZV=Wt*$jRBnFm+m^xXdl#AUt-%Z!kQJ;FB
zTsX_+iWFOf+rb&By++fy1F%)527N<*$=wa1F0i@Ci;R>(G{?WHa2(6?`rF*%lr)hD
zpi7Qru|#MOOB#RT@SgLEiIlPdFq(_g|C>fo0s^!SWsLHJ!;8Sz?~t3E^%}MyM3$#z
zM64vWw~1U=W4I=4tb84y`Vy2RfxLJqvf0cTgyeDi5VYo+`$X86BkdV(QCu^#zU$jZ
zJ$t4ikOR@$KYMo#Qc|tIo7Zsfd7BfB2!sksUjIYaZjS10iWXyz54+z|M5I8kdd0!w
z{kTV5re+hWwFccT*HJU%xx%V-)9*$HYZrCwZ5wWrK2A(B&ijt$td4YgT8x4<p4R8y
zLOq-H!G%Nlc`ZE!nSNYWUvMc0{$FX+>-u^+5F+jPp>ysHL+qx9L+zk9z!Vp}_%Xq~
zqU$~)%G7vU&J!LR+jxht_D7TGC+sGdvk)xh{Tg#V6or?N75k&0ur3hOJ_k+ft4pRS
zp0yV6XLs<4>%w!6Nl|BKSZUbs<H@Aa=9CQh<Nh@n6ukPHX_5D7_r@EWw@4#k6o%n+
zX|kRlk$ZFaEAAlC^!$PVUa~wr7K)Q|Q&!|;n*%LtX~3@dx2J;e#imEh$n~%3&ZARP
zQ$E*5E(q!@xj0$m9S^@oG4bKWU;=B3Z~CqG!*5uN-Ypt4qH&vyT@nyphAqGIlzuz3
z@z=d;{Y1*vYm#~d=@-Z|Vo-wf+qQ;O3cL~5n8XclqO!;XlpdT;a^kP0&$z!v?<`U6
z(1tK@aa2t+Ae|TdDSO*nomCoU5GerHmDK*vYY}9~j!Vh-8isV%*%5Pln;fG_u{Tg2
zMFBxphEC=T=N=PB-OYl|6!ZC{ta$A&-;p8!y_KA4bns9kRq>#AU*SDnTKR&3&hHR6
zJC`8aSZiHsdlQNBdOpQQS?jd^_Z$9<w7BVQ9O4<oQQ7ka7W8;}@!s&Cyjb-`u^j1t
z?A=~Vw;W8%Le%|gJRbSQh<MS~3p3-9XR0#cWS%YkmnV9B=$dIjYa6dn!=l}+8WNEt
zT?zrg*u(bZ=fu7K(}s(RFc4zg)#y?4T$!ZrMaI-mV=U9ln0FV#q?cSF&v9E|MIH?l
zbJh(|N)V5;8r~S3q{(WFylsIIM}K2XB29(pkztyXX92m{aGfHFBE7PH^N><*gA9K>
z$gW2Wd(F>;23It+bd;Hl1YypajpAw~Ep#H6_}J~^;q;Smk+9h;{dl53gmHQ0RE$DX
z=c!RFoHeS7*65dCMv+HXP?u9bTAAwT7wORGCOlLb%t9+GFF!%D9gyow#EcVlmPFDq
zM5DMlvXrq~hg8kiT!mwO8rt7WEC8R))z&AS`b`%NBDg>3l>>q(g<(<_$!4cvOy*us
zdGzFl#0P7Q&sdVeua;XsASg8RoZ&qciP-i2mU7l-I3|R;`D#hrROk~zY(04AyD?l*
zG4}g#E;m1|F0bm^Ulb}k{XtKfAVazQoUsS5%tDPkNI#HIs;q1&zv%q$78?D{k%#5K
z201UMR!rv9H4c7q5)Pt;<Ufu|RoK5>r(D}opu3k1g)Up>Na%C?u`XUgK1JHbpS0IH
z=p0m+*LxK{B;;GPk%w46zGLcmjUSPoo%SK{x^gMM)5oNaCKySANA!?$$v8+rpP--S
zWe<(@hR#C9PKI8R^tY?i5(Qr8T|1`3W5A{WL%`1UyKiCzJ+Ld8MY(6wi{XwGn8h`_
ziPMvXvw0*d&Ge)qfsm`c<_}PY4n_3rs97HVQ6JCOGgW-({gKA)nF~q8Wx)rv*Yo9x
z3}u3=JUh*9w_a~-W=5Ht0tbKAKn<X(s;a3;D~d1=0}uO!z|OD72pS&w3%lKBO{e0W
zdGF~<Luc{ki;|&T*XJ**jNdr7jyU`rq0*B@pUN3OzDp=xK}rI4N<Fzy@CfNSc0<B0
zy|sO2G_FcUc0O&i@*0BAws+b`5CMhKenFNHnjtHTUPs^^V^0xv2I<vd`BBH0;l2I6
zy{=KG3wRbTA(mtY-;(t{;+?&N1AFngyv-axF_>*^kL<trQTR<K!)7#Jl<YJ?pnf8=
z!+0@w-L2X;G`MS|D^_kHg}etQ8e7Lb>OdI69uc(3*ky)>m^8zUF7I}i_r{mwK@<_+
z+S*!^?M9cps12VB?`rBwwR3Q3YuVeBOLJy=1}fv3>$%;Ig&_ZhQMC0&t7CkuKh;{K
zF02L5e_wDYOTcppjn<@ClhLetxeniIc_)HzX{tClpr+z^uyCAaw-dgYwoGggO@g{e
zJ0G60^I_q_YTO2bdyQMoq_BD4H+TEqPBjUC%4Ar$nmKEF6x1*SIquF}$<X%L>+4cp
zUGerUPz0@yt*#O(uunnZB7B^BHmR?#nni4JIh+->N4yU6*Z}doz(3)$S>lrLyA1;)
zVn>%Lr7C#X>(^`%NE4IjX-i7z-NiK!Y}=IQ6t&YProK*%>#F-RW5iXL(H5K6hSAMt
zWo%Ryl;suFg%g^o38*Q@XlQq#hvTm?9t@3pYxhSDX($7@VhLAt;)&F_bkv7a<24XU
z`Mv(QhBoHSpJS9L|AhQ&SfYQV#=g>ZxvSVQI!&H88yX(gT3%}X((SPILRSPwc7vy{
zuP-evotm2Z`1tsKlr9+Q=#2O>-5T$(LqN+Y^UXSqDqABB8P#;hnDIbJ_t^(uR5;&B
z$R`>yb|Ejohg+h=+!v?jr!|4nf`=O^N5$vZ?ip)#tol?lKLb^X4gQVG_A%z7fQ5sI
zjV%nhu&8!lCC?FpC)sBoNC)~0q!?BFEhL=#(Dt@3V3zvS>baz4dUi^A^@SC?_xX*s
zEG33%mNyGGmH}Df!bm+rPZ}b!A##UqEh_{w)L!#9Icy>qAAB^8klW1TxIdOJ8NJCL
zpPoK?aJ{Sm)YAG4cTkKPSpT`q)^}Y$l3|v;%{9j{_7}5CwrhsahRqaLf~TN;<`VFC
zm0G)cw^{75;MsnUTWD#w++2#Sb>Uxc^uUVQqB)i~&2#U|e5%LTgEp5F>q7RX<bkXe
z`nL;-r5f?oE#DB1<&OXMQ#vKsZ$Gd9pMJ`-sg8SFT+;Myb?elHiN@HX*U-cu<&sCr
zsDS85m2$Rgj>Z+=@h-UCTS9wkd?)ISr=RX74_;3Kp%e8Z(8|in!GS%)`s(T`XI4v9
z^-tGK80ZnPZ__GCAEzI3&cW1vV&KG#g|*tn05MK#xXBlyo#`fRGU@fhQC_=Md^+*E
zAAvYWLA-0UEjCmR9(3JpLJd+bg1avlzu*@^|9PDU#50}6KF<ndGMBiX_E7Nnx=t6t
zfA<GFDLx#!+J0Sa+kAiORi~kM7eI%I!Go-nXs8XG93jT?zOCBRx1+gil`m}Em=@%=
zwihWWDS!U_`TZN^(5dbMi~c=|gpvb5kEOkvR$0A=D_roX_F=8pi(EU)$Mwk6sA-n0
zmL2>BTYsah8Lh{405}EnGo{u=B^5!;CeiQzH*;=C`ho=h!7DyFRdXTCj4!f{*|*TA
zHcoS6F5t<a(LZKa5+~9wGG&kBbTI?|?mkoi3(WO-UL(dv8ONI-UeI2MjOnNvvpQ&X
zt5?B{dpBMn#*_;+5Wv9v^K!JpoOs<OS9`W>V8Jn^3o42D4y0&JA}*J%0e?s3P6YY#
zj%#CjTz=$Z6FnR!<-P#7C&$EmC?+6|9(<3iO-2R=;|<NxMzL%>6ov0nrv3B3Jnf!O
zYcAymdobRvtvG3fBot-Ew4{%I@@P!soS)nzCMJTJzrJ#+u-HDq&N)+4!=C=NJQb)*
zW_Y)?xjodpq91)Du7Cl3{`~oIcNm*{es_0Q*bXUJv{qABUq9+U+n%6rr`lI5PqM|i
zJ9a1j9u*$tQ3(hR6B$4M+9%A^sKEh`PKK=8(1Dg|q6((GFM1qj=y$yiL|U+iP~Cdb
zMglEZqHnQFOG^^L$(>&^$YV=dT0R9{&xU~LI*$Xeqps_ao{WLwc>(YHC;`%PG0qR}
z#^B9Txk&=$lsD!zHm(cbss*VIDW(*0n!Q+yzBH#Dt*rbe;)~AwSaLLFtK?B<dtUoD
z0TU)P<r6Imdx4NcejXe4t3swUuqOF7<5FAuDavzDp`e-)=x%=03KWJy$zsKMow+9A
zqibuEFvVgtcfc8rCu#k1oQ$50Xn)$=dMS!&p{4kFt*6}3PKE|W;Ydx0J6P061PY?|
z%mPmnwhkHXSuP3*zjk@x=u6$-$Mbc`l=#)Mh@N?PAy10A(QsV5HvH28{@9Iu_9Od6
zcJ*)h@qvjtXJvK6i@<!DaOog(iy2U99&GKCT~9;g*e8cot>x~Zlu`P+K*PU5Myzk=
zYcDF6$ioC2N7CPh2@+z0NDQ=TMVXM_&C6JD#Wxl|>_np-UvZ!I#`RQ+C}R_vgno)F
zYXYLY`yCfpeAm6OxEBt;aNIzz?tD~-fvdOW7v$F161THphzYOpC!k4X+pJ2vlz|Dv
zH}LuD_F~w?dJ;-9iCY_NP#x<8^CX~T@~E1acU%+e(RG6mw2t1P8lhjD3Q8S+$KL+?
zu;lc~eBTc`KR#vHPW{=eXsti0C!XE^JdFO$g{r{f%I_5q8PDhW#9Xu&E^0<yJvCEt
z2<=fJ{swhmw4=phME`f;-Uh*xYl(kW#)1Ve^|HrZb-7hB;tDVC9enQT*N%Ccp?U2y
zco&Mq#iza(P8?*FYBXYG<Ty;MJfYn5%Z^~Z5@u-4604nH@;T-8$8nKQ88bO_pkeG}
zocayw#O%?XWAm6aY02n^t4G-W{$O3OrSR3XBL+Tx*r7pL94)NT%Fw3D;tu<<Vj>Ie
z?m?Z<!6WsXw4GqsD8lfMDn=g+3zvt*=Zc>K@+cF&gS(gY??Ft0{vHT73!6c6ztaVr
z+9Jv$nvxU@-Jnf?#M!S*y!vR0j8OnpO;M@s9{(~Ym;I>?Cq}<PG@<NF?(E58U~D=G
zrrnSE71V3hVnRmUdXM0p#+Hh;HC^*jO16)7f&!z^g3*$`w{X}oP6kQ(N>C*1?+!Z9
zYt7eOKgCHBJW`D3s(Ar721UjpQ~VXyX#=-vkQQe4k_XN8m9_=FDFJ8>7ho3K{E}aB
z(fO25*fBIHrck$mI$HKB)E}{yJkiC%Nrcj?@B5%GMiZx+jLQxh4vq4DawNI%<>Thk
zk?Z=?$?z^LBEl6rS%}(&8*_doD&N9Xx-@_J>X<@(_<$F>r!f7KYLBXxzyd8Xv9+r!
z`4QR(pxscPzta|YPQ&ko1pD#=JzXmHJY!j3-_k)pG(RIi-mS_wGCm$UfHrzMsqd?;
zo!~Gsx&fYdAFryXV*}mYjb0SvBEe27c<7_?)-D^(Ub2f$*s=@ZO+>Ui&A9g?9pFAk
zNaw~MTjj$}6tfH@00&vGr7`xq$@w-Mqw8<bEuSon1HCWMwSA(`7X)NeJ^X!X{&qPV
zh78AQX5;V*qGx%UJ2C1D#k{g>H^XqPRCE9xC}Z81qxRhctMI9TC&Xd1d@lv(@ap09
zR}E-`pT9&!nm?Ed6Gs0b_!7B_t&)%w;~c6;k_2Qf7QG>E>qkbCRT6qZv2ciU*C08t
zByl^;)P)KZV6vG~iF3#dM0XZABI=bL7O-c~yO`?p8w>Y~Kv%mTNREj+4#yIDvrBD+
zdIrA*64Qv1P`pRf-0o&jQ@}6jvZyfpZ!2f*B4zBjK*Dh8x}p^a(KsAjJWTSLWWWe5
z#bqp@%H@fybo+SiWF?6&;=7X_^dWcFs)^5o2d_}FhGv{8X|cZC5J7&cVmQZch=MdT
z1@UMi9uW#nqP+t>>m*KUu1cO`83(gX{krdUUHa{GdTOa0Qh2_ic_pu__XhO+FKE##
zivtQ*F0nDsqm?sHG=;pnLkD8A0m<#zJd$cp8Ro||aI(0K{;y+Sa_j*#woZDpC#TKF
z`A=s$RP%~i<9~zcj^~_M+Z66q@L8*KaQ^0t%W+z1vMpj-TcV+IGc@V)rYYi+$9+5y
zxUg}TnbfiI(WD~-qXryuy$L9s?!?A>a5RmQJ?+HrRI(r;9ND^Kk91n4Jem|nIZrCI
zeqKFe1@}Me?CIK(4Yywl-+7reyp8kdhZWGCEkQl;L1T*A27~A_(;Q0gYM*vnb@cR{
z8l2Dh@y}}jsIm<B5wdqIGc8%EW#x!u_qt-UsV2eityCr^tlg_%9>BRvRkF=_qY!3d
zf3<u)J}5QYAnp_U&#0=^J8LsXnoQppRfEOSG}UM8CT^Dq4K3nokx;g=+1iGNf&^E|
z(HTysd#^+LqVN9?b8i_HN7rtPCcz;Df;%C2aA_PmK!UrwyF0;};K5xQcb8y|dw}5X
z?k<7G?RLKR-DmG}?zm&zaev)^HAYoeSFKv|tU2d1AH;)0qDG#jR69QM=AqN`k@Qp;
z2yjX0yD9fP<TH9hnywB@e3oFCaFzZ(uFOA{)xkv4EwC>W=<{}EZrZ64ni6CD(2aB^
z$?DQZeKyA8o4`3x_FS--nu+I9iVlEgfsR8XeOKi3F@-%>J8>J5(q$i2x$Erwr(5Ld
zridX$WI#IVE}{4QSrZ`z_cdwbRmZggah6KAOBeHX{C~pFrWhP<&nvcgRYmtgupLkF
zr74rX32JU%o*xxp<aFge#6V2qdH}cDL@y?V>VuB}kn_!|+5$n{3&ArVs)(%r-v(aZ
zDzBu2-`vE0XJt;7)S18lNF-Oyw<_bHC_0t+WQ1F<_TGX9D@-~t+@>6l#T9GXYic}v
zeRv3aZ%uKs0O<8fu<)=(10C=Xc4%d0qh_k9qwCNeP`O>wv7oiaz;7$RhF>ugA0A|<
zVOBhP$bqlRxSaPT|5k6s8@_4T|Ill#OY+-7fZ8&9tC+sr4F5Oti(nqQTaT}djpF@r
zNzN9(^6K>6+0I5h?!E7u9ye10>CK6uJYJ&#>)Wf6b)KT*{ucL}pHc+Q1oGKp>YIOg
z@9{H<4!ek!-A%W8aX;pAQB8`XURHHObsUnmpWEr#00MTFZw1Liu96Lxfsh8tuX@}K
z_#Grfjt73SR6ewF8boSh5{}F9U~{G9az64@mdZhSes{=enH{W8{-?>X(lJcTG+{)s
zCtV1wO!&mi#LBjf;SSapE3$#%8cM47L@LvmzW5AiMd(Dq;Rv{@4Hzt1-_9XFUOvKt
z!8SFElXtRPduDrR;W^ddt>6N+YkBF+!4XLCx=EjzT2e3TrHpb`Dg26#t?i1q$BenU
z<ylAK%l<K6q6Y)l{6R6JGmBhDF_pc;wb<lWZf!H6@VuHJmX6<ds{!%T-rQX)@lD>%
z-(1I$?e76nW5x{;-3J<}mZYyHxO)FIuYikc)pZDudIKVkYmZaAHu4wec&xRogG5Z1
z?hG&6unL=3hbjffGedxfHT1I=Dgp(VN^=-jSEy$#TcIbF5=*~7D$yJ_Z9`5D#Meso
z{dh=Cy-cgerrg3Sft6G!+*{4IQM%roxtDtP{<hX54CmaP97a&Tezns-TIN&6EGu&@
z)WL(GOXlt{Ji#AlEid!~LnLNrRW<Y$XR*!E>K_AF;RBTU+5kMSO=#m&%Sp(f0th0p
z5;6MxVb(D$n4y7h_8n2bezhJ(Cqt1Yq9!ykUon@M?-QZO*In5@)*ygq3zL#wuw!Nk
zA@1Em3r_)ue|@yk11ZMR!RA(bp{n!efJ->V6}Jh}N(qT?3U#`+V^`?&dCfJgt#z#t
z3HT^qyOj)AeJ?7t0)>=d@kj}M7k!D15OAY2=d#=V#V)W}{s-615^g>XkM%Nh$E|>P
zU+wYwaD#6QPLvf7WCJ;5>k;@u^6#nu74pX(&+6U|J1f3(&X$yQXh(yQl&L6xU-4hi
z<u9K(5(pcNtULwy|35pPdq5pMl*$^~V7R#}7u-kl&4C$y&;<%H{cRX<*8)56xp!z}
z?=M#v)U|-)5SR?xsw5=9AR@8==hxgKBHn%usXH`QfgA;!k_RD*h=vIux`J&<ba(&z
zkJTyGA>&1FU`+wb>hai&GxGbaprMiSpQz6j$gQiOqw{;F4UZdJQSp68m(2cj#9JX(
zLFO$VlOj%}Jy;6dXa+yhO24{4+-kVvJ=78dBYLYpnq1Hm+UW;ZSy`#DZblJ$a{7AO
z!OKbyr+%Hn6km4Xiy~KSf-9A&b99Z*XYfi+@VxyE^14<>KHaLiu;kF-poHb>>@?Dx
z(qPkl@_B%daidY~d5=h3E2L7w%5T)cL!#5Q^7fQ!wesjSMWoy05P*rg?<P0p2Mc64
z)0d);J7o+vt)zeq7prGIK@LX5Ah$Lyh!(XpHd|O9zz5TQcH8}f_Th~OuRt}An4%#H
zMJOCn>Er^qC&2TyfZOfe@vl2?A?KkHlOry5j;}k|8z_&<I*>Bd5_%lmyK=xhc~all
zh}rJ&Sn&IW;d0dZfi+z;#64N}v*@yZ_>zId)xtZNR|PX|F`-v+Z#2EO#Gu3=S87dE
zA>)~%n!=C#@>8Xx_X)a;0MosXbJ)wARWbFS$I$F5dD2!58T2T+k}RieQ1Gn88;zWC
z7qslw!_H3YkMhhc2NH=ES;rth7@YJfV>QBB76;x|>WsYyq}jyTP8oScIDZ-W=*J+n
zTi`S4e^Y1z>&wd6{>mg}IR_f((ci<ww~D|$oWlJLJdEyPat!n=p)(53#pT0SS8c=i
z$l;T@8Kk6hq%OdX4Q0CZJ^UYXq>IUN=H@3d2Ai8Hf7rQH6Bou+al^ih&$V94Y<Ki-
zo?k&HYr?X((nv^dw$+jnFEh(sv`*^|6yz>zE=m2TmVWv^pe$O6wh)sw4XLtmjZV*>
zZLw?z>z(*7d=4WT!O6O^t@?%Y%wazQyatSxE>gs<lj?7^dOrvO4AK75*Tlj_yN@9W
z#}jUg{4|Vw*J+DfQdcC{x$eat8wn$#R>y@y8yJoB#L{(B&LL^PGiW%bZD`&0_fei=
zw<)pvEg8nx7){b*hO2?msrH8R_CH_0ZDgKg&EU1v76@JB@l7iEb12#%S?JYsT>|&a
z9b;(^569&McLjy^Syj+bnKxBr6=k~8P@rui9ulNlMqB1JaT6~7j>sC8k)XLg#qdRY
zDldN%^v+7uiguVa4*2ToA~;xvL4j$iB|0P2aBjhj^=G1Hflufcw{ru6VZKUJT%|f;
z<4u7fUg8^PHb>V)*PeO+b-qDK3Cn=sz}v|(K7CL&r1ClUPI~Ei1+-IrL^YLXH@&F|
zhb|lO@HVypgRajXY%@YaH)pqnO2<zZ5wK&&pGaEo`kryZ<K}B2Z&Q<=ZLZV_8EALG
z_cweKeSF*0kB+Hna!=WBYJHGRh^hD+UVE!CN&&C<+CcXx+v6-@6V5%6G(Y`E6yN%{
zxM2E5*`;q6r}XII{j86--<#FtV(ylCgSq&Okt&*03D0wNcFo%Z#eZ-##I+J|XP_)X
zd=TGObFn5Ia6?r<D{b~~ol~dVDUY}9oVfDu4=_5OAe;NDSmgOeM(k>qgcPlJ!<2h#
zA%7zulJs#kOg70Gwm;osEk4{5s)d_2qHL10D%x@qak<?eMZVm#OA(q<39%2($N{NT
zbuzqkmz>OF_rE%H3uNBePA+}RQ~|2NpmjxEbf1yD_x=X>;al!^)tL-Q9s=bayVmU+
z%W`E+?qBmiFyFtA7I*)=Hq!!MbPyvLy)Uu{1O;{UCy#-RtKm?Wc8Sv4J<(A8?2@ED
zrSf0fb)@#CH(pTQ=t||I1>P>oY1RH-UMzbhml7YW8Q02+Ky6BGN=$IIzI@u#;{J)Q
z<WjN;d|aL(JWOT!hrQN3qw$?N#%7!Ca}RfaO<-%=SU2yAqBEd232;<ryYWSZ+)E|7
zFDo&vjIPQcm5wIJ-<yVq`p8i!@1!`WzQociE7h3}5G40O<IUrm^J12gkn|1D-bxN*
zH+>m_#aM(7A%41{bp_=?mzQ*d;7?ToyOZsFp6r=0*6UoWIHoC@9^GC*6wWe_nOTL6
z1%4b^qiY|DU@<pX=zQix{)psUu&n+Q$sh*T(kfL`+3v#~la6vHKZhN!PlNwK7*YOh
z>qJt>u|aUlX`lEnO{CGqoUkE#QFIQ9v95j21ay2R6Rp>O;t-e}YG=$SsN~G{6*Z`R
zTBLhl@1|{qR)mt#cRZQ`dCecF*KW+SRANJD)wy++s&vQ%9IHD_@&v-jNG?{Q;2w%9
z3e|B_m;www+$)2VUc6hL>WZ$3Jf|xQqL!&+80|g8J+a-G^rgc@8&zF(U4UHsEw7<Y
z+R-UpEsexU8pE7Ou3q1&t+$Olm<r#ix#H3{TkJ{$i8K#}At{Va1O`WMyPEo#4PtYd
z`K?Muf{EqS+_Utn8`uTYE?lZd5FqV#Q*uX4+2rs8MI%p_Zy3v!QmUKz!u&3iXOi|1
z85cj|A%I4X)AhwiJnQVgaz-?ExEkXuf0=8!>2PRb(Q30Hp6-?l?!X%sdM#&Gm<LLu
z`RLzEkiM_~m#d7Pp&eT}Jj~6jaNcWj2#K`P&}!1qsqu~NyBb!}l|>%iBT5~mVz7xS
zu(pi-kjye1>eS%e=HguS6k5zEMCv^(Q%Gm4Z_h7g&cK*BstE8x9(7I|Udao@OfSks
z!(dj0Xg96Q^cqGzH-B5ZiccKTl|xKMZYpa(+g<T@K2vUNyIfJYG;c9uc^hOt5pI6`
z188byp34E;Pxw=(3U&R}@2BTu&Jyfj+a0ry>M62r$+^u(k>?B3n$wH!7Y)>fts80;
zy(>eXe^nGvV{mwBsZey@Uv&^TOemUVG#q?0@?rb&8V_Uia$NsVT5%~;)Von}+I_D|
zw=s1P%8HhIt!onhz<x#B_U_TE$POsC+_dK{CbkIPdN@#&bzVQlmFf-mP>gSr@QPLv
zavVJS2(V=UI9BzQZjJBSKdmHu#mPv;Ybfz}pYT`$*RDQ4K)lJ^sO!ent|KBbuya>=
z(_kTQal5H1m8O3X6&2q%4<)F2Eq#jRq^@@6;;BcbB1crXYsFJ*_)yoeRMH(8fB0L*
z@&2smz%DnSS_@@^iS6c3wZnS+gAYwr;9&W2`n;_);t)7_QrS_B{wZ(EJ0OM@h+#;p
z!bEFYqr4~TF+N`+gRNj<dHj}pbT>R3X~CVMO^TyVPB;=QBQK3C?^JYl%p@Z{+Vkb!
zaKXVAJ2~afb|OuM|63kXt=b#Cq*U}LfgVMW$x1O0sq<20vO`z?)KT3rvh3iM?lyGx
zxHQ#DO%+H$*Ta;oyE$$LHO81eG1Q)WK&lrb4=87BF0H4D$@j8=1^c$Yw^rJ~wqX9V
zM~~Wq1u8Evcujc4(Z=|sUO1mBTNkOoN{Qp?;jHywMcx>n^OQWXZ0O3LK~i)5%@$g>
zG*|pe_Jbx!*Q{$|2+e#Z2_uu+J@5%w?6%jb6{HpureJQqTe#7t-+f|YeE+fHP=Mi<
zzwJTcw#8^0DiAlfnH-yj{5NK7>etj&ME=!FOENtw5NI4#KCJ>$i7l-dg)eHREcu~2
zt@Sk<EJ4Top1G!4t94qkv(0k<Ycz*JZB*~6wL_SSnjeZ}b~rV0I@!$^y-_0kbrU^Z
z*d28=q_WmBaK!GYarOXPvZ800>3(Q5H|e>Bm7DN8GuZvVCR`mk5|`z)S@aA}EV5bC
zPGtNLl#4poB$fB4=!T{&esZU)8F9($Lgc(=Yg#SVC@6zRr?LcnGWQfo3GXdAoA|%_
zfi_!Z4f|>*i%xvWObpFzZ0u51=I||eWgK?r32Y&(dJyNbp*P@(16)l~vB|l6wWtHP
z#FOa6qUVdDm%947$rfz_P6ue5H|P}XgVk!p{l%Bb^dUxC_NXOcq>Y7BPC@E4!S<~w
zv2^4bylo$gfC%{OWQir29Js54E+s6ZmEx3%Y+w#9&hY9}JX~c_cXnRxGD*|d`l?mj
z)f<7bY}UPf)n?<mezAe&nUm*{awKzIQ`4QQopB~2i2Oo!wUVsQ=|mZ{vGu6m)YNpW
zuNzL|8}<G`d^ST+;I=+LYGRSmV2=5M)<j}PgeiN@C3c|#KgCLac*jp&;V$pB#Ab%O
z<+OlGq;Y(a8}>4n8?2}8A^QdfV!BpqaTrIruz^M))#Bx(+*7ZsCHaZ@eli;1wv)3r
zSeZB%(A_#NikEg^{py$wc_{z;i4*E>dyb-OvK6+Kb#}VGz3RfwDTZ8RMT76>Ji%6@
z%4HIcdqO4>(2$wDmqyFk{0gxT<%#6D>h6dzlxWskCW<8I!Gr8-RkqKT$Y(Dhb!ece
znY0ls{b)Pe>`|E%56kp4XHuI>gbm7tCk%!r+I2#fO(Q8liChyXqp8IGjK!~_{nyDh
z=I>nS`qQi(zQiFl0zwenL-!{M$M6ovlF+~5u(JQ9-!P+fwZ<2Wo%29Twr0NOv~;F&
z9e;@tO0ed+3(x-}aFDfRK~peeDs2|E;J7n!`gL(sdwF;-ivPXpeuJ91yoQ?Qtf(&O
z$<@)U4Zp{qPQDgbVlE;u;}{Ow%Z_w?k&Bmo^v+;|T9l@DVvM!4SVfzw&RDmG`$ox%
zv&u@``lFK|WBj??Q*>^W=vZ}9iyDSIjXJ)3A>Ux7u23n1%Qf=Z{HuD=heX=dY<X4g
zV3}MF<CFZ2Xym)SBRiL)IvgIKblW@WddzgqV5^WG60_pWAJtjo_?i3sqeLIRubx8@
z#$QEQT_cPRky*FY-yfbwb`Ef;?_OTEV%V9LrUj<1f9WV5C@ge^H^mk1ApXr4Ruh)*
zQb}AcDAoXm1f}8+6cpYu4GM%2i37v$)djfHm+IOjoD4!T+cM|cTanzDNcdr-HTU<_
zjqk07D^nx)JMyn!@b_Pl#}7dofF`fNz6WaH$Jh@YZa8xv^gm#sAdGL}goVwf5DQ=>
zO+PFTgoBZLH~j@NKdVsTAZMcujg5@r<8<rWjlK~U29fE%qC^M^8j+Gcf7eCmYq)k2
zfsb)Rn&jk^1hr0&6?(?^e#~)jDyZ@ISNe?QlTj{zWayHo<+yj#SG}Q5aOS;@^(8m1
zwR<qbiy0mmCUhj%L8X=9HXi`uJxuC1<Z~#?`ZPGez_^6gdvi`i3vb@HOiwK7K?3D`
z`vA#dVKZ-hd0em;2e*mXo0#2}gg}=pu8$!4#8?2QIyY6<#Z^_Td?J7+0%^KyiKRyf
z2!jd7rBbG0<sG_<I$18%zEwhYY6&W?7W`t}75X=|9~S;%rN<5KUShu^;bXB0JrlDi
zbVnX7MAK&*IJe2;UiSW+!i|*pt!2#wiRE}{RET{43GHbR)8O5qQAm?>V#1!CfDbvM
zUAhJbD0hIjBYyanCP$1{*$smzzi>y_YPIdO8Tw#qf_IufEkYOG!lE>F%w<X@iC$C{
zNC~a}yE8tc<Pje7&QrK-n_GYE?4lS+JPdUQTd&6tB^^lDt1kQLYRdWk;OO}Ld&^W3
zTB&8#iv8qd_B0*nulS2>?E5eY8DJ`-T|yfOkhPoa;!Oet5$8mc{{86kU3WP!9Ss}}
zPuhcSJv1$#+=wWDx0OGkYotxD%baDckdsAe*B$nx2TX%>PCvRB)<~dI(R-HP;K`On
zI>14yBrT5ybn0UJz`qzYOn0Jbk3P!h5ZH0ajYN9hCPMEyd4{;D#F73^Zr}7BD@-@Y
zfp2Ed4QpinX_9ETb{5*K4~L^qrWZBZPy1sd$$~<#{0(QWO8=PcUNiHWGqF%ZLGmmZ
zQo`>|&CVAA@*QAbShyDN$zJbRvVt5N-B+w4KefQ73~a<b+VDH6#W{bt_Ja1ZBqCes
zg}yck*>H!!bGy#Oqw{F?#;Fg0NP9)In_@-CasqmOeZhX!;zA)SUnb5KxrlGGOVgwb
z*?>Fb^0Hb(?Q@(j=@)gp?T01pTXK#3SFd5plft>S7{?3fgPAo@^2c}w5^QBPbjaNW
zsh{keBTYBTLK!k_tR~l-Fu#sC6qq$C;KiaVO+AtUJbUWtc6+KLsTYVQ^@(CYT6^oU
zJyWw{pPQc5AJ1#sw%yqD55Cl>jbc<Ql9^g|%n$Y*DiXf`nwcW#dgy$5^a}I-=3i2F
z=3|v(4PH}bcHwb;M;M-e{L}V8>u<yoOQ*D&AB8l{OpDjeRboRVb8ZQtVBr@_sJYCQ
zxGUHA9I^2UqM#y!puD_b8l%WC62|oOq~_TUWPII5@^LlP7!WC=BdPlP2R+SJp$sMp
z<>EDHCHam5s`p=i?B9g~@q$-)VJwKSQ%;&l=q2Uj-yrwNz#CLdSVcd~>RpmYbgIy&
z=u&I=3c7~R@x_33u<rE)JtpGxYzf9pvwAR5b9x+5vLj3F>0`lrk&!>y!Ho9Z7@9BU
zz>**1{C|5o3@R(@4Tx7(K5*U{9efh9#>fchPzWZn!x8x_062gR$F@~<hmTZ%|9tWy
zX!rV;V(|a%nAYlakLP`y7VLH?0hjRzr2X9A|8@&rWQvmi>Zh`2JVw#jIqm_lek(M-
zzP+=1>D1`tTxa00>T(0R+{4s&TUu%P&hU)1n(BK?^e^rRQ+|6J=19<CA_s~HgW9td
zV#c<_S_id>r#C~T!wd^^b3cOY0<L3HW4nqf`%O84{A(0EZRigTS=kj_buAmQEjqZy
zTQZSPLeC<0`!fcM5aXGMt9q641~FaK+KiGv>BP$V7Z??N4!sRq9^a;bY@}|Tx|3PM
zuuPyNT0NmGg&XCME)LzYmhWNk=Rdd^h8)PS<c3I;qd$^(j!FAx*OYI@=*83x1(EaR
z9i|ro!XwGOdD-P1g8v&3S$<(r-X~7Fd=4&hB8QFS5o01zY%WR)z?K<CM!RcT894VM
z^c)^!$NaD~$Eu%G{QDn17G&o}Hmu$`R+$0E7yxc9S*7NI`B@mYOSfK<cXY394ebqA
z&%X|`bw-!dZ$k)z<r7llj*xma=*yNBF71e)wj@a4r&vZ8)PB9VJ*+TwMu!j7nKxpj
z+=KC@?9I=B5C$x#a<}Jo|FnYE<>fNo?U;bvnwpFDvW4#T#A$V1=+#`HUK1kvvNf^z
z!~O9}o01%ejMOtX<g%gdBjv(+tC!hoj2~*BSo2e#MfFu6)gV1j*GSkzMHJOUPZ%l8
zfdiL1zcHUtaHpwZOw;of1(XZcISy>QU}CQHb#6U-Y|bDu^VmkZ-BjQ0DH}t@1J^7;
z2DQq?`n@ks!i95$zBd(e+5*f;VQ4vBPuu<}3go`PwVk1i(;`%l*5$!vcv{*bTRVO^
zq#%xk0qpR<O!C1teH0;!v9c=I2l}H*fy%#qH^cnn3lm;QRZ()1Dm>}h_Ie|2Lrr=5
zjY+|jQ;}?l6V<?|JKAWQ{KoaDyXZ*PNopHwLQL8Jxg~TrfNp)RYOlo??b0-qa5*`1
zf@e-yb`C47t}NU|yrFDP!YjOf?mubhf3Ji+u78C&SFGo-s>Pd{@siK<hqu3uX2Q9$
z$qjr|xClK<7F9B*Kk>i7)9lIPH(PRMxP-<iRiP^e;@n>+tcd=uRY%%eK#Tbabm7<v
z?y3!#zNuYzgXDgEbd7x);z+FIB3YzN$^tg}`r3k@iQ&k-jy2@xV9W&KU)a9BA56(C
zp_a;Kx}!(_jZQ^PO+^2EyrT7ZJcG!36jRAm(AY`FvG8%6e!z75_ea-`Uo~jNZ==PK
zMRbPC-E?V!-aC0(qtJ6JXM#Ua5vse<GYe7S312vNp;(^}+sCi=UFP3c=XQ6)7_}6j
z4B4@f<0CV0*14BGIs`E0J;I&7WC^&b{DJf9D{%AA{yU4QR#6A`jiSOzk(&WEd6J&T
zH)_i=)D2U!;rJT-M0CT2zM|l2gF~EKe#=2`H_YiPwJv7aaD>^>S<m=ABJIPYLwiBh
zo2d~Nf9KxtyR*d{*2qz7E%0;ThSeqG{nIj2#pVL12Y&Hlfn`A+UHs?h0%G#nSij}K
z=j~ffsB@}1pBF{S@`^w=*AL>#y`=cfCZihZOf<Q?jW&Crz>R2{V%OM@+e59Eoiwl-
zOlj8%n-gU{A~}j0>tt>Pj1nWG{Ch&nT2ACvu}O7vaiDcIjT)_{nWJ!urImP4(y}M6
zv@8SmF+nK_+O?DA!7y<mtD(^K%F-ZfOG`(|M+Cq_4~*OsP|M1#^JzOF$f)>9<`Px9
zAnE|4)JNq&pPJ9tl}uX_mvnVWcK55oZ*+m03(Gqu4xy}B+Ep~)Le>Qemb|<e)!XZx
zhBwOsb+p;7PAaxM@%oz4<WDm54wJq}TwVQ?>E^!zhVkin+2VE99oajt4IT2$y;{s#
zrf%pA0SU9wKfl(Nm#|uzWw)Vkb$b?7UzT%8<4Vrt2))sGX?W`+IGa5+7fMy+F0V|-
zAt<+Cx;z+omPqaem!#}r{96SE$jF{JwmV1<?B<53;RAO8+VQX3_LH5h;}XT)6Xs^!
zwY2AWpKovw=B+Za&&m^xg_int?lM_zKlxmuMx*awIP{jXl0INoF01?#%D8OATXE=m
zRi07{&+S`pQC#z>>s@kWu~ePE^|*@><&R5qD0P|UVBQW}_D{`yR$&?2Krb6~x((6t
ziDo8=;U1y_o4G!mUrpNE5dt(oyYLINI=yK#E&5bSaRdp|1~VAHiG_B<OuX?2=ZC%5
zF?&B&`nwraYHF!Y4hFc&i>2j1+i0WyBSJB|3=2aI3Mz2$&-~Q#!Dj7awAV)#bM!Nf
z;u6RD`~YR~JmKAHUkv@RQpWHp1$Qdk>afK!LqmY1FpGaJq@VDoX1@_P$sNkzry)bu
z@!q(MblpJ&9%@x}HFX^PB(*LL+8{*`O0S13Xlk4v-uyAhr-4IHVA)+`a6ogC4ewyf
zx2vBVl~(-|105X#YlvsoY|p+}{h>Uu;?lE!Sx{?w>&p~7gp4mCO*W#=r5<NHsk5_k
z@ea=2Y&557`>-o0>{F@uJ3Y+Ljh>YW>MqFF9U2{fY@>UiXyr4OA@VEKJMyddL`AVV
z*BZP?-8UvIGya-dPWktib5W$SZ;M=%T_`c4p(!N*>+XHg_ctr<<;F{oEt7>KbwOze
z7rs`*A&lN1%-y0)bQ5A@d5Mu)<bFT9h1s8*T38mjV-3D@a#pw3++HV=lb8Jw!hI>7
zwIh!aY#ML=%pyx56J0>f%*7w?a|1#z(J?`jU%Z$;xe-43C#IaoqXJ$Go%w1wAF2&!
z;)b-Y>=@3m5!HEE2JMWrUVJo`xZ*%SFr^e-S;uiY$bPcXbk;!8n;waOm}}ORpl|h3
z(v+1Qa}a#m<TSwB{`S57)4COx_-q0QYk*!h1}r!<65UP}>wH4Mk1GIivL3qHJBO$S
z8J`uxj5-<GzACuPX%ADj_Ii>jRBG>+a6m)c1*6FPI@&3gt2%56fGHqN|Gp=;NPAX+
zchb41%lb4dEi){BF`J9*B*i7iPu+~EqZhv!g!<SoCRAtM)o?`XjRdBqmx-H?CJYp~
z|E_1)!x$XSnVa?clfu#x6)++EkkonVZ!1t?-`{5a9n)1*^){`}t1stm&6-w}t~N$n
zkb}V*N+C;Eqt@?|(yB%GJAswv$Afmv-R8F?QK(m3ar)kuhfMc7ULY9>tAd6<-8gjY
zM=`yeRziPOV-T2XOs0*Vwy4Qt$c%%Ov?Hbb(%SV#ZwN~unssu{QL{l(Q%nd#r>WOR
z<UeH{G@En&rlX$kcx@#IoM_6%UR$1Hy}e-};JcNC9xmgW5jBIj2S-4S7cNyclr&6I
zyET}%5?+_l&<GwQb^ln3NwbEXq?&Z4pf2w9)C^dX(-ZhPYPS*`DMmBI(c69FSpqre
zR+nKHU^wv7eG#;AXpd^y4gB8RFpKr^6Fn_prl7#|U|`^7CM_Uh_b>+Q1%Ye~x;wI!
zF)jF%4*b^mdYVN&b%3&o>k!JTJJO9f+Wd~|^<IT3+<M7SylyJ7J-c$e>lD&Th;!v>
z9l^&_;1>)lA~}n$x;LTkARr;L@LH6GR+rEX7hRqPTMqC$pIBPr#OrA{$>AiXfR2U+
z3nrmt`OGs;-rM8s3Y$DGbhUZWEeFIuli>bL$O-yB+HJQ8@<{(-xQMa4Ohel%dCuB?
zx!hVc=fT_NBE@6>W!EB-U}q1<d6Kjq8$n>CP=oy}J2Nc;_Iyd9Trj`YqxJ6juIg2-
zvOJAROD13bk0K$`^ii(YAg-EY5kN-k+(<xCg(-H&0~*$loH+$IVTsb?lX`)Vdd{U~
zj#|S@kZnnq!YU2${yqJHj&{2|y!G*$cZ^B~comz8>VnlTE(9~-R_MOyt}g4~8v?<5
zSEM^|aJ5&&E=(C$c7P`jk3a0~p`hP+%sf(n|5TAYgHZGc)F(^>N2b=@LX~#%h8IhD
zy&klAFD0(oIXXm}jia_Pl@yHxy^!G_EHgsY8)<QH1(&Wu(y*=Ypn`D@U)H#n)|@<E
zOQv>~_YAW^haN}%Lsl(r;UL53cEj8<So9TskByCZdEV#|r6d1JD#ar-a;(;XM?X+(
zTDW>)e@(yn=NmWWe)4wagS{r`u`)*gp-;=~(+8Yzw2N<V6k`=W(BZ&bcLYMzH6&P?
zKLDdyvVoY&8g#-|{x?MF<c-`&v|By*B<2a>u@^Qcw1MB4bXY~lLXk%!Tnkw!fb%w9
z@g__h*FiN0Mlez!@e=N;kbZnBL4Qg|-K(UQwbM?!xap5ooR=q*fu<Y{j*sWbhV(9w
z?%J{dl72c!EJJGX&t~wo&zmC4v7)7riu!hR!H2N4s1{>e++c32DTAQ;{n2GfL4KYF
zB)e*Z%21jkYwh{Pl2qmvqS~QnE)@Ym9xH?upc`jHxz}VjvxFhCyY8ZzFTHkSjeFaj
z_Y&KQ$xvYX)<Q`+UVJ)-u^vYVcU9?P@jEj!yjfJZgliy1olD@l4mVK2J&c6kZKL(7
zJ3HulRGXzQu)?9v{ldm!I#A<!@se|4;Fu%<{FG&G{S9^SfOh&uNYas&e<bNfKyI}L
znj3jRXEp&D8yY0RpI}KEbJuv~%RTH))!kWjKfna3)$`pogF>i}7qx5~McD--$9mdg
zyHA<XippL?-nn*_6jF}i;aI!Jwyp31k5r*F^9cLa2epaIZB_d2C%UaJ&v=cz<yL7(
z+`R3(&jP;I=GAoP)@Gz?B%mJqQt4NJG4LJ0XtK#A{J@PG4}X<|Q<xNk_fgQ)vNz~=
zNya#6s=AZC`g_@vx`eYsCck*rLF${RbBxWjfYNTdQjTS{z|o@MDf~ZBv41zysHPd!
z8L|--?Zk*4VB<ni^YLi&DBSL%Riv{1*cDIL<i>QfMe}(nO4D3oj=XWf-a(0ZJj$Mn
zb;E^qR7a#H^*3*WNex-bo-0?D`U<XeE8p$IiWwRTBOa6xg7Q|?dxx7}!L~$|tScw{
z`8K%P>ynD3GU%@Meal2V-&*r(g9lqXe?%5i3|q%Z3G$_-XuBWs<(%S684AOqHX2P@
zK9>|apy{MXbC#rYbqt$Eox^t3mI0ruU8$r()qN>%tA}cD1Ib>w!K#edZ^o}4_D=<1
zD(B2W$+)voCLGT-s<Utw#IBKbmiFur0;FUs%Y(y60y&^K8-aSmi*$cIsi~3KxbGs?
z{;Mco#Zh*3epRfFWKF18$}g3WC^k~#eQPW)()$9>GB)GkJ+No+rF}W4!JJw@MMR93
z?F#`7X3-TfE1p|&vut)lrmC$vSSEuvohgBq)L`z~2*pty@?G|4U~li~qxtva2uH1R
z#?_qbRdXC74r!JMjkTs19b)jaS=SpDSG4&S$S@yChsq62hglaaUOvM~|Nf+6y3)_N
z7W^<ydnq~M8~=|6<^%u1S%D8O&pNQ}tTaQQl9_bkA>N?us27(w;l=o6pe-7P1*`&i
zfLN0x>9RLDP@XjN+TLwxLLI_3`DNlDf~%pIf|tY9e%Qajc8_R(HB7+tIiC0T`~RXO
zFv|o54#R)+^H<gId-UYHaH;vn(AW3Q)l@f`FTJ1peUeiKg9l+e0{4L|dE_40r=R0f
za!E;*0M$C5dimZt79qF*YR>UJygK5Ty;4X0ti?FCv^mMIdZO$57ZD|#-C;!+zS-gt
zG~CcD;@0;sN}bAGa8(PnCRMZTA+TZ~|AHa+<NnGclW`0H6F$Q?Plu|*G>5)WcM?P`
z**`fz!*eNjnG6=^UT#m1%)OMVCi~*y$$2ottmn@zHx?Pfjsb7|L(R(tio`$xSLFrh
z2iG|)h@Lz44Xz@0lJz~R<VEi|s>J$w&^7mOj=8(Y#qa&XQ2gi50SH~LYY0$2l-X3;
znu~+zl;W{*v$AntwErMwQdJlXJeQQdw<isW{oNAH_AeCJ+l4Yh@5g)wv{GB13wf~W
zEYV%IPqA_f#C$)RX3l~`yr8tD^K!@I6Y=uDFX0022epr)tLJZim}Hvnt^Y?6(M^H~
z`a}B&sF{gg-Q^jY{x&l4!@t(-YOkayPwKV{E~TVZNfN4dvVj_Wn)Ci>&dY?Pnyjgt
zyU!FwW`EPseZc72ISIf(vOFtG?2QnHu&S)$#>ZO?{H|QvnLeVm!RcXL_}Qy*W?SZ+
zro|Ab!cjL3Kf8<Kx(s`=+vLQ3ZK-9NKOUH8u1@R>rV!nUP;q^k&_dU?ErM-DMBSKp
zzP*e99YUU||AR#-d-_-i%3TvX$j~y>2Ds`Yyz=2R&gdaBqsgZ;dCs{MYfk$hlBA{g
zW3`?$j?Bv*Mww$F=oXqDhY4cf4LJj|A=73(=(J@mV^#Co;7nPM=4By9YJ;H&Ue8|W
zZ^X-V`-UaG(C4I&KYw{{J?Zu(gT-om70p8SL&kgJ%M3;6<`>7w_d+tb*IW>m8I#kF
zTnu)+x0Hu6_Vp1A4iDgEd9B<d?%w#UH+`Af{jh?OX|Bp``;-Otn)r_E?46jW|CUpm
zJ?l9t?d}??j$m7@CxdLClSwNeu8`KAX8GgU>wmpvSBbzF>T~mN4BkG<{Qc5dRB{N}
z{#brQ^3+;N-V<8=G2$}K0%1m^L;b%j@e;XB=IR+1MWWxO`AHbC6p)$`aJ~3J32VGE
zKnYL+etvS_3!<VAdX{?5St$gh?k(~-DcJJxCvGGS#irR-{xFmo2*b6O2}bwSk;IBS
zK<R(07PV&71Vr<9X`6X}+B@ADH053tZ(*Kse<d}TdOXixRw4H}B*n2uuWX_&8x$}e
z(30KQw>aGAMEzEa4L>ZBDRQH#mhG20q=4w@{Sr1A6#ph0<MqF=Cb^bFA;MY1yo_(4
zORr87uh~`mX?o1>smj>lhBsNu&8ba0`lu4W!x~d$UcSgUb)rkuf4by#)`{|3i^%V|
zDSRe@QE4ppo~&z!n2t{I<>im{B+btS9_=Zgc050`KP49JPzbxPSLJLhBERT5)nhjk
z3=!DniwbV-!dw~_MAaMZ7fZ^JC@7#ekABGH+=8~YuBrv3?a<_nY5ShAa@(Ik9^URt
z4U@(OVE&;quqs5;5dVPXD=IR|_l`NZ^-w>aUpEv9?xzA0@}WYn{`<qx%ZA|%&|6qq
z4-!}Hd>ZfntG|RzX|OT@|7bD)-yHj_!}4bAS6N~W9oqkwW)p^;F0?LpcZ=Nbaew^?
zI@R{|i>Jj4U#HPmp!>a7t!n=Zmdn!9YWV)H>1s*TiiT8hb7&7A2Or<b6{{OYQvBBg
zv<dRS%oy$@H?*|0h`DUFY;EfVw?j34jcwtNQzVPNqyysJ7N8iaQ#+57HI2MAQ1x&R
z-cn|uPY3LO#>PSvm*w?1I=-XtS%ApWVq;PrYeVGR9bG48CsE$Ye{bp<247=#vW1~a
zBTJI-C?t-`nK{1sW^-`~wyeFl^M;)B!BT)=#g6_n(HAu!6%}h(&~x7jzoy3$j;@tp
z^aM>_*1W`CiNl>HoA>iD)&jkrEHxcd)AF{$a7RJzO4wE88A75SPr;(@lq^6A<{v0m
ze{L>y+m{bOr7`_O6~nR)PEL!vkS!Mlp7@NIsA{6rsF`!*vTvNARNivs@jp!OhB9)e
zqz0vp0MjI&7@U24SS}H|bL%Y3#rs{6R^-3k;-KE%A>=BDTo-h(@w4%)!HP2Fn8Cn!
zIeWCx<K<20PfMcFonGjSdSL(o3x|u8iI$|QYo%YhCmV%z1kOix4(E$fL$_;G4s3~}
zOuQ%6bn`h_VhCnnV~XZUvkWRFOay_YWLGG_AuPdOd90-4jqF*;;*U*(`9(&_Ri^dl
zgxwmtQep|ul7dVeU?vGWF2DHa56sy12qiJX(C7%K`Y8-aT=hM@Imoi+m$B`7*8lN{
zvS@N6o?QdmI+mK2l19Jtd7JH)8o(nN4!hOs``&Oz^~{SkVUC-er06gq{oy}Kn=WR&
ze)~N&HG#?R$T-WY^$xJ2Pt2h(n;72|w9&Z!!}vWrSJ#P&*``aK#vU;MV}%YQ^FoKj
zmZw>1B@O(ZGrFvK94=S?WPP1P%n<(Wm!_pAz2>I5=PxRFS;-^i^JV|DAFqN+AV0sD
z@YtF}d~Z`>sALSEQ>eucc;uIAJ~G4`*DUw=re)Yfo8Z29D2OSjt{zlJ399e%xb=id
z{?mj1(Oc-D=UK)1>%r45{clMHpVJak2cthJ)z5&}O^Rmz4^_rFgd6>TK1eEb_XB7$
z1D5d#CPTqcPN>BV|9aPL1k=-V^rK5xB-0=}4FhI$Ahsz07b6u4$694=$n*RkS+S5F
zw8z=Q<98$FjN!3hQ(eg)A$fluBel60*=Jn&)L_Nq3~(OAmdi;pS((Jt#ogm;gA%1N
zOFXDJhN5D=SSTop8aU#~5p%x9NBdN2N3K_QzHa*-n5@}9_kWC2;hyNcZAS`m-}Nt4
zSg7miLqntVjGwTOvspCK(=w<raZwPw+p}Y`(lW*#P2VW}+WKQB_N7ZH>%X^Si;IMl
zPT!z4|HVju*Cm1S1m)%eb`hfksjq;o7gGOoIMN`POAn0fg`_VwbuW1Q8`LLiaAjpV
ztdDybVz(2&4!A^zd0ko2{KY7$5NW?32S!;7U$$fX7#O7)`QOgkBkgs({U4YAWuNr$
z(;b-CwLS!{{_gLGF@UJB>99&2(OgMsvf8*`N=nKAlLCt9kdn^h`0>*x)Bxp0SZG)^
zhp_i&s~@JA&W0s|!_LA=hZ;LbQNSMIZ^Y;fyM*cg(=ojuGX4Gdv!k_|yrd+G01lAk
zr_ge08zN%S^k3?YAYJK=QrP6T&z3@u-=8f7ED|zelrl3j4Gj%*$PqQLHL|$PY5)6L
z|95gDA^GfW%^yxgZ;`A;s^ojt1Cc09RNdU%`a)jM!q0{Xa_Yfe+UoBbz*7qDX-0)*
zwe}&>QmGxn&Tl7np*#slFjh|ZqQfpm`X_PI<eiPS@&InyAt_A>+?1MQFAcpfnKuuV
zmwOzZI`s7e3yq5UBpWQ>8kWH9jRX_r!9I^Z1+U3ju_gAfY$ScDbI)-2JtU7=-Fu*r
z{-n*Rkv$v9dE<IjUXXE~XyB{Q+Dv-FgEEl83AgI%d`T|Yp%yf_*6xt$jZi6E5wiAN
zfx&G}`{F}`VQ0P0_^M0u11vdjfX}b%&eBrOq0oGH+oVvGf{8Lbd4|2@8kU1F%gjw1
z&)h}C!LTgz@8c*r$6M(GjepD`ihf;cQ)uikECpj!fzWwcbrioUuPsgO`Qj8bk4IL>
zwCu_%CX7nmG>Y<ZM5rGe9083k%Q?+<Wfs=+mCU{;5qVB7E$Ipi)2GX6Hv5&AAM=fA
zD@3fa&V0(&AUGw|{}SzoKwolnmnldZryzk*bbHo*8^Ihi*ej~#yWn$iMY1vPCpeo%
zz|2noU%zpBl&Gr0iBIl-fz{mgiz5~~SbNg3FLa;<F&OSVwMM_fI}s9x0l~l8cZh1=
z&ZYC81$5ofd+e<TzV%#hcsjqL(vy34=C_u*HK#?zuPwks0iYZ^Tl8d4&*~ovMd8K7
zntJ?eatK@R?&4hJ!|t!9E4<x)d#V)?Am<<ixKqXWJ|DjUK<WWY*rAqV_R%z$N+d7a
zhnc>|Z{{T}94p~$_Pco7g!uo&Y^N)L>pA=qvh0Dj3@XphcXWmCWefT1`+x`{ceSUU
zU%uUkYz$>9)t``q1ECKE*a=>s7r^7p!J{wK{}Wcj(kT0df2?X7h)`U9EM=-lmTg&J
zMea#b{JBaW65KH}%;u$6wYBj!SLmFD#+z5?A<%Z3+@<5PfyLLa!)%IAZ<L}a@_}W|
zqp<W1tkX_JkePet@L29U;C}l?hfbKTq^YYyhZ6=*ctF@K68l-D)8!A<>?W)l5iP2g
zVEnz6g%$$++a*5pqnU1hf00;Zv$Tgw$>^@oRhXB_jGR4JcJWy$yx#PS=OPQ_Dd2wB
zqidzziC^;iJ!F^Vu>UBBA4%h(`lMm_*eU5`lx<f2$SJ8Ep6E$>%)`NW<t&;`WO`Ad
z<}wLPk8#Fa8)S))t91j(w<m9maz#yDZ4d`2Gt4!#6`z~QgHQ4=l-!$Es62J$rR{`U
zYYW4xu<^qc9ZhWzzJtfr1LovUwlO^DcwUYy%q3>4<HfZX7_+s6f0#W_6g}@4RX#PB
zWQ>IyL<x07YYJoCD5!9kdGvKC>XY%2>-Y(d%1dzga{xFRK1|Nc8pO6w9n>B3Ym1|2
z@q3kuCDEBK{*3*UH(k}P?A9K=4s}d91@XGHp7LQiE7-b!xy}%5yN^!cavO#WMXxf!
zLXQbzm{-cXmm|4ajKiz;FZ$j22pZRJUSjWlH#BKz*SgE4VVBrcH(Nivw+Zb+*VE*(
zSxEepqIy)x9+>ZTJagMST71Qk95`7!ML5rwm=E1I7MT-T;p+TN>wTxNKcQE1goY-V
zKVRu4OtsZ|@(ZPhQGT*|xVhSCu;!<f#9+q@8Dc;?UfWIK`=M1JEe9o1F^SY-!O!Ev
z@bDhj6Mom+r7X6iHtMM37|X4m*3a5XpRRfQsvJQ|so3cyC6>KA-8p%*UB;rOGUPtQ
zX<(mr2cefvhe4D6Jp3V4r$)87Z{%GEZ7!QRJT=Nb#|!Iug|uWT^0D$o<f8(Vi5}h{
zvN<`de`XQl##4dghb}3zKEymR+0hSQ_G@Dfg*4SgU$l%sEme!30|ct>WFj-yo<43g
z^=4hAG6PMW*y*icme6gd)f^O56@ag#EqH5xjv%Ztb^4Z%ixzayrvoHWN*|_pTN&cT
zWxtmxz)vu%ZGOM(J+*>`fsvVjQyhK5%k3KZ@Y>o23uA)b__kwgO!wH$ll`Jtak=wg
zoq9B3RKvR?c`b349d$FTjOz*<n?3jJ;wQpiYt8a|j<d(o#o3ilzv`i=FV_q9=Qj(A
z(xpQ@Gfkx}W6Re9C$M>x-crw@5SDem7_7CE2;iDR3Ne|$$myQ%MC$!Dmw$A~5F{|r
zk`7Zb3GPL^w5ffOcn$;#Y40XBO4|LD=InT^F7jV#_iuHVbcdB9LnKIl$w=5bp|Rf`
zl;ygZtJW!@R#Bap3zpvaT$PO!9^QLUGH~mdATPraz`@V|upgSYu+TbrXmbRfDwNAg
z)=S9dwjDeU;+G0)(xH^B`{rO~^2g50zT-9~IX?b|)nTk_D7p+~%&xDlL~AI>H0TVn
z@Xz;o;TRLeKmt~^9WQa-EOWy{mJz!Y(fhebHjWow1N-kvtjzuzA?<Pr>c6^}nqt3&
zp0woCSo~RskI6VDw#?~lElAQ-1+DVib0E@s!nP~0#hsoyl{}s4$Oqm$99GQ?HjUD^
z!2lX~;`A@+G{5DZFrT|p4IFZ#iD3Q)umu~-#lh;=e7fZH&9{4s#{huel?N|Rl}^)}
z=uRjGTscZP2JFVv|K3=l<o7cF%rfl>-2Gk#s&#J#xhNxENJz-qT}<bFr<UW<%_rFU
z4})GjVXHNUL<z<Td4t*2XDJ_xMt~RkTe-hVm^MAa^w7{ySnV{xS6v4o&?653fD8M@
z-<U<L3#DJ+m<@Rpn^q21DHf_`;~*v`Hj7{m0tq1&al*`I;iDXQ5E5W1Y(*S`f~2De
zu-mk$>PBA<#M8P8$`#{>!zA`uTyIC^$1nHB<TLnOcOzTd+S&+;<g<i4E~udF(PV<2
z>z#hKOOTVL28?%J*VErIJxRI#mY%}K!dh49+4}Q=2MrBvgO@I%d;KvG=Az{P0j)`C
zs&hkEQBhG#>k}rjLD5EmR$!_>`sjc8qC~)ajr{%J!0K;)FD)<swf?B`_jlRcu!Jw<
zsKdiUt9>026Fl4r^3tK9A!&K}koCZ7hwZr=rxEe|8X^cJjQCc)bqK3$ok|)QV9Bc*
zw`zU0)YII0>9fkpT-vnwf^72@?QBl#r!5&78SE9L<m7^D(Mg2Pr?KBr^JK68^bbG_
zxKxHE`Dt9tOnLHY9hOSb+Fv%6($Fv280D819=lP5mKh`l4-7J2@!=1lKQpXirX!7}
zZ%ElVup@liWW)>K06W2&S-^U=-g@r(WJy;?2V%2O<8iqgNzC2c+!zIBGv4D$MknTK
zv{`~!QZBa#M0#Bx?}nk<EW59-!;<}OPFGr7r}`@FT5e7j5CZriEwf4PCo3()c!$l-
zXU{8ktbR+UPYUymmParjr)=uSAQZ!6KSBPK>K3lKQRlJMHvVNuRkc!5z0OWelilv}
zTW!qY1zYPA5^mcP?afo42QJ}}z7eEovPF^THTZD1mG+81-Q0F=x^{e0v(q!C9O{>z
zRq3=Gh3%1*l|%i}ajvcfXZ3t(kjCz|pI&2Rb4;+q#*>9wwCl{FBw2+H>p3|90MIy<
z13ubCuVvy=z~(-7GcAhmG{ff}T3G2g;S<xAuHACiALi0Ng{+L29?j~uEF0A8Hk^G&
zB4B)f+HT7Xt<ixr+2%BuPhFq<{3&b4N<`*YslA}6;I<+a4dVX!{1f*l)6cI=$nQ{j
zI1Ti>V&9a2Q&R`^if}`}IM8*yMp%KFU&s?6nj8OB0-GDz_03Jg6&6}5EkTm}(p;y2
z+SsGBtb=yN1X+87FG-8*j0Ce)S$?shyXAUv=8gIbLit<=c*`nlw>f#A1Rswr$`nUk
z{M0C!E6U41g%}IbGKj;hAvR14%+1X63wAE<tWCr{1cs$#W%(Odd7&G%&<H4OKtZ7i
zxATqLD$Q@v$@}|giwX+z^9uxg?-`i{DTKJL9gW1KjEtl_wXCd!g+*STDTBHn;R(Qq
zQ-#1_#A-)EO~;k?oH`d5FX+Ap8`oGrNMtFerZminFUpIVN8X;_B?=NO^U%>xji-L1
za&W!U`1Nbh*KpcL=#fd$=C(DQ*Nx(w!r4mMOa1ny;9*;dFQZiN9bN$K+9$b_JM@B*
zJpP~7Azwo(!<1NL(}Y;~xnH10DZJc0jp>iDp<OVwhLrhye6S@hk2N(lrKB_!pG93z
zBp3jY9+2=QdEjB7WuT@8a4=93LfAM2+gG`03QbJ%yJpSvi_9~1Se<gzjm!>fBO)Ra
z>TFhPKWOACsEl`9>A!E{y<6D8`Kmj*v1ihMeE>M_Oud>A0O4_*)CP(}b8DTxa=W`E
zuO(z8YPLwp8?^uQWv{I@0K!a?Y1z>5Q1#iyn0;>oD$17d%tDIxcJv6Rb%pqWKtW!%
zSTNq~<-mx~6JjKpVDVbckGdaI(nvR1GrkUM@$PY1I!mSvzX{m^6cn!^PYdxHv}5!3
zHb%7vf)rrdF(r8xFsHSvf~KYBBg#{Usc!C*yVt#EByrwdexvso`v`q}QS+Lte6y$b
z)w2PQ$W3`Fz7vpxn#rnUg-_8VcxL#Z)@($ht~b0NpH$mi$n+vX*N<&Lp4`zn8M7Q{
zgJ6SZqbMC}EZ}jmy-;h83I4#(pLSwbGiRC80^2oN!d$BUV;m*!Vkpufq#9^booUJe
zbKC+hDsWt7`Kj%SB~^j~^T*VbW=VlN4oWC12}u)e0qo1$9!K=#BSJR(T8i@3MTc4<
znJJ~jha(-HraR?1Qo&EO^sctR9~lOpL)gB!B;AAX_~-rS*L46TD@~q0yP9jtAyX)l
z^8hdVj}$j8?{a*v;`2RRCj<zNivj(^CUNb~&nu)CwIj4qgjtf4e9E?0^~qJ$D(MAf
zf+7nLI-9M0K=M>i^oxiOww6ZzLPJqav(wn>r@MR^dnp!G*(>1797F21wtRYi8E|C!
z&v6aglbpbN6j5$B#RYdA-{o`5MF>|P@bNr8cXD#b&)T%`AevO@*zMzsrqRdf8;f5l
z3qP6F)#X##1V4^jUfeSv0Cswf9RD2jZe=_wp#=pI=9KZvx(gXwbIPaz^H_)6)Yd>+
z{A%*V->BNZXQk<bL6xrd##IPYyE00A@p_xAiqCo;eZ}vUrKQ58ORdaaL=Y~2Pisy&
zhYtxHjr@Fq5Baq|<MSYwwc1eCvk*c*=YGA<EoG_YJB4eF6j{eqfjRbAHs*72?tVyX
zEEq(VA)ZQ9((vs3g=?VJ1Trz-b@Su&dpk#jIrN~FhS75M+`c6uZl!H+9~gjGGPd7#
zS>q6V{1&9y>sCK{RE1agz?7((X6(T(Ot8V#wI36j*<}`x^K@Xz&vfaV>f|FH{hT*b
zbVY8wn@P|Zr&$0Z7R_zBIuez*Yrshq|9$Hy3ehYX9-m0hZiD_%>=3&osjLT5e9!oK
zHrN>mN0j#rE{3dJu0#KDDTYA3N^Jy9D7baSox@hKhBhcg&`QhDMEav3WB?bF_s2Jb
zKPK`jD#W8(wG<%cA;bbm{>Q`LGJhW0bT?dL!xOSnfw!UQXk~kyr{fbUMW9>3oEUf>
zxm+5?@8)LzS9{m})<oBB6#)V1gn*zRML<9)0R#~uK~P#CBvhprUy!0A0jbhL6A(i0
zozP3@y(v|CqzedyB1Ngv@92B){Tsd?zWH^YdFDK4&N+L}+Iy|VFHHUcFu(90kIm%Z
zH9D&JLJbqNyvRlAJ!hVshCFhZ9(iq2+C<rfs>)kIv@An%h3PQN$x{c@>3L*>Om#<U
zq+dC!Nvg@JaY~Pj+vl>gd7o+!>nz;P#)R(ydh&ORaX4H-f$u!&9s(mT!<rmM_HVaj
zK>h;mHF59N(G@45B(J$D4W1)=9Qs6&DShkx6mF8J7H6P-(cHp3i-{fgIsV!{<uMPn
z^|uV?SftQ_FY@Ppd=dMgnzk=FFrsQ@Dn(2}UQfL}b~SCl`laCw_GGO0`tw%W`&wDN
z7UZwLCD07)LF6hUgkv^~>)Nki#+1+PD@}jRT%KD?ec)JBcG*@Uuv$mI>>5?Trye~2
z@F4Zqo<ZrdY30|lv&GGL<fqO7>r)SDX2w}AEax}qPw!d2sV|Vc2h^{S32RA)2rrj$
zdZdesMNI1r*Yy+#S~yuCxP6G$5UeZi*&IEKe%9J|Pf&&P^h9rcs(u|qYh$%E;&wEU
zwS-z3cs;|(R^f*6+s2=6Y=|??HEs5fR`actZd{+Tsns0Hzsy!rf#hF_4jx60UQ?^c
z9ry^9aXd|MO>M-4{dhhr9R+p!z0?k4(A0X{zRG#>er8??fB0FCOhz+5Y2iIB(5Aws
zLoW2VS6PF#Si-|xoQoS_qwzIh0eh1oUwd1YNcm3OEB#*O>iq%{KuOKr-1MgpP!^e<
za7eFNuI+g3PazT>U%}_m@I6r|fKcw<eCoV<Gy#LDdfHiU1%czf&B+dL_$OryV>9^$
z3kEWT2;tCt34+*LNp|Px1oZa}$q+?l`M^5p!-rqLFU1dElod*tpR%6ZaoWlwUG4pm
z?2%fj<(<;Av_-Y+(kgAXl&ZYD=V}OX)#60Ab6Ef-xph+FBbgF@C7SUW%G;8)oC!7r
zw}{$j)Pn+B;Wy1e?nCpXW~vWzsXFouk|Gig(hE-KzctCo><!AVyvQjz)I3AKwzZL;
z&Wn14Ztk9YSHFQNEUWEGRhtes@tRgrxcKR*Z6rqQ(ltAhY;TWhVrv2)t-#raM4(5}
z2W)9#OqPpu1<#JMyS5<NI1_>n>Ykj?`0C-A1dS(+#%A-JR;VX(7oU(ugZ=+-5&FK&
zzvY#APj~lw2z5kP-{7E#fPksUNJXgw%mwSIcK1LUssro<g@|3&y?zRr?1=~S4$}L1
zm!l(a8Z8>*k^AIW_b;>WR9{$1K=kRx7cC!0+*l;NKfpx(IS5<qyf%MB^76o^WCMJ^
z`il{Uoz%vPE`u%urKV_0T2@O1I?!=Vq_f}jPi)~itF-%;YyC=BkY3_<lz|ad&it8L
z%jrvsx6Lfwy{&kRB%c2y**K>b!l<mYjU1O4i<@)1(o5cv_vzcTWZOBToFrGMG7aFM
z{O<d&3}T*~hR$GK47PXAj3=)Hw<d=PNsuCZCy{PI#lHB!A)=|uQFELrIcD-U^*dYJ
z2fiiWMbN6DLWY2cg?CCys`dJ~TKAH{4)3Nqi%yLO<f?lPHnEqDyLqI(G$(?vYN4qz
zuT5z4s~ib(onb8z5}DrYd-)Ld=FECMt+Cvo+5ywChaOCni;*i2OBGdq_nX(18)>Yo
z=(-XJH@Fsa?8pC*f3WLd)c;LO<k@`bXuk@JA6nzheD&)z>lV+S(%p5U@PXy2&jvp_
zR?pe*XlUI$Z<yL*<)%(9s$em97!xqy5u#zu%E{t}DAFDyF^0;r!k=%L=BAV^WeN+a
zX&x<gPP{Y5TWeVB*$f3CG#`Gj7AS=m!>iKdmA{2~U26CIr8B+oF+7WXfazclCzdry
z8TjGmvQ37Id~p;?sSiGyGFE3qg2jp2|7ac+?$Qj(4CKDLCz<W2FcTiU3m3T|$z6fD
zA?td{4L%eg`2B?=ZO{2v`G#By3@=hkAKYk*nIR_a^@qapMLs{AD9+VzygR&poX`cS
zcU!<+Y<}PhtnB)dlKZAG$}T=j)T^_yTbwcOqiO{49l|6m37YBr&n8)lwku{IZhB@W
zWctiB)R6vRQ}>rIRy;@n5X^*08+!&)HF9A>?*36ljju7gsJ4*o4+EVe0N|PDK~;HK
z#rnv4Lub^4_p#7~AdUEg<7Chinsw-7JvGm@w$KffKkvnmEw!HiEA6fP?9wr$vmBS0
zAcQ~zHj*uXnifP3n|Q9YPW<Q#+^=kWRO62Rd1h2l>=`!t)PnfC<1lEXbWDMme4DBg
zU8_c$f0$@%e&EvO@XM;xz&km3tx-kyM=$4=&74`|)CWoyZH``A6Ou4{9p%+E_OLM{
zie-={_J}KU(}}P3&de)QP8$0#`Lnfe@xwztQy6fHq4OZGC42?GzFvSAejb`xjo#vi
zI3A}f5aqYnAfAvy$~y^@En$tBi+&B$4=ULUC7jhC38rNVNVgrXNrH$xAEs3higNdb
z&LmNAq*cknG15h9@Z2IOIkj4O`!bfx5ZwbeB`S8G&89`X;a%1wKU^!$$~w_&KvObX
zrokFg_IhMEiIlU&9BIf0$C#|E`-aX$FJ~Jw9m$0JV%Ei6{rifm;m~WwlIe3BlV{{b
z4N(Y?OQXxhuwY0>wNbZ3(ul_N(E8Q&2=%C`(z~8<RhyIG^LuPlD-ZVK8%CxDpx%R&
zVGgp}Oi?b)+p94Fh<i}<4ZKtN@*|m)$;BrrZckfq4-L#1PmS_ttV433AQHP=@B1BK
zD%CdyNmcIK*14Pa(K=g7E9X3fm7as`yzQQrssy7PLfi-i^!>3<YKLe@JvX1)*pt=u
z>*3~Gp>Zom5<%0kcNgjcL3zL1QxvxL*V9SlCUsH#H)kiwk1-Y>ZcvKg=30ldt{&{F
zlyrx^O5-UVDm?t~(6y*D<<;}@p1x5gl1n@3MWS=ds^>0!yDHbIRdUNJk9*hiQ4NvG
z$Mq=}TOPj*mYKT{I}O`<adE+EMr%7RdU7e0M#`guJbjKunev=!EDj~<&8&0*JVejw
zu+gsx(j%r9I#HfkCTTu~Q&WoWE=^GeJc9E?5e9wl391S3L?*Zs&^Yb(54WCWHk6W_
z)Vps`rnHLnZ#&}D7sX#7OMV-Vk+1y7)&zt^m`$>Bqt1D+BrCp5gXo1)g{my`NEYvZ
z9aV-}x``H5L^U=r>;-&YW6F)j>!jCfKUW>}LD25!DD7RxTrU#5yQmz)JSsQH%`iKg
zS^72x1<S}hu)AV3%(DAF<_?H3@Pt<oW3H1?yG3TL&3(@wu(j8xkQ+3&PAw|fVT{l8
z{dlF<Vj#Fy^%6w5#0V>>AH#S&N|s(x6o2=<IfD_VXR>9ez7mHXAjHfthNhbse{yiN
zlC0_I4Go>R?KXUwoE=GyRdfWaZp@@R&sKg~-jjkLW5-QyN5+2}wmT6o4?3@<Do!-Q
zD(@CS%{Id`^_sQRO{8!-Mvo)1+t|R&PA<F~RMn|xiRSSY^{C3t#MNi~40wrPLd#;W
zTD+&C<6YsLtqi2mQ%AYk@RHKIqVB#31Km=wJ7(K1J#EJwx~<i%;3`mcC?M}kdX?fa
z-&+Yl5!=od2!~DZ(7&p$r-#4pm&9#cqvGAKp0~S1>nPnlnRT-@k}mJkC4Mbwp0Wuh
z(qwYDy~Nb~bq!lV(~p;jb*cyKN*WtIx_3j?ceG26{YV**N82UyEiIkI_wI8Y9aqj_
z2`KP(E#h>RD##eU)J64wxoS?Co|VC?__8iFBTEwXFPa<xf$?c3Kxd;p>GolL4{d1g
zYk8)@B5(UIXt8afm>$}5AU-*kEixdksW{oPaZf3Y7eFiMlh11%v+Wa)Hz!5P07V?j
zYrs!9Mm&mKUS3`;?p{C_UFW6KNvE2f2Ey9~i;JtzE>DvLfV&Pv6wbOyH_U?M%>djk
zgT+?!jNsr>Fl|?I?zQ>kf)2>2bI^T;tp2x?;_Q5;gIAG(K(WJL?&d9<D~BE^>#*sR
zM9)ahGbpf>V-J7n6KNTFJ^z{raZv(rAz=CQuOF2^FVHJN4>;@qJqTQY;l?F^w+47b
zTn4&1=wVMufOm8Ge<c0yga3(>^OQar(6l!v2h|qPas2si8L@=yd0|0809Sp8-iVjF
zLM2KOGqXy^`tQyCgL!{tFc|#fYw=4$K@88|+oB;aQ6^|96BNbGQJ8`P94)1HBt_QV
z{?Hi7e*a%1tl0h7KT6N|ii-8Asvq%U7U~)rlQtj1!k&b&5%Q7ztYkE`xq$A+I@KG8
zfSB0oYQjNQU3+639-r+CS{eyR_CPo%uu^?YoR0e^xg~D)`(*H+HHWimx+Cr6<YZxP
zE)Zg#1ZH6ov3lfF?1LD(l=zy-(uzedCci2NCpBtsS7doyy;fS2m0fl#Fs^Iwky2yw
zMg^Pr!n1XK5-v%d%)UaL1Dj~t$jFFiq52gLOMp$;?(5O4MOy6S6i@$UfB|+<Ri<?d
z^vlV~H2%5}nE7W?RQaE^y@&7%3JwXWzc6WV+2*K$InoX^HZ}qnpKh_?EFi<*=697I
z8_KHnzOB2vdr<y_n(Yz9!8h5Xz2OnUdl*t8AaqwKaIAlsCAcC>ScfoH6uTRuV%#5K
zB4C>sTb1AQ*%{q|OLPAM8J^o@UtFu^<!<6$j%_F$EPlTU@3pO_^!@&vqqJVV@=K3u
zpF^8h4I$4_u8@0q#VADr;3!78u29aUru^?n$J7Bd9DC#~0D<g&2LyDfnq;KchCx<#
zcKu*RM#f%Xm<l+5gq=^)Eup+*(Azwmg1FRHhGqd}hI@$SpaMHP{|nhO8IWYbt!<*C
z2-!;H#})iVcKAcS!6xDKUlfwp!Xix&a{HzOp@G_CoTK1@8v7@RT@Of!v}SrUXN_f~
zeT0b@G|4cP&S>bqFAXLEuns$Zs^CaBu#|t14?u!_aUxDad&K#o{CqQ~@{-oCqgVt8
z^_6+T?PCho1QB0pn$i2S#gy84HPQ6POpE(K`78a3f9iG%Oz!mZ2jX0E8dHbkY(q;N
z&piCE_mlS9s?|YnYtHV=3T>MUav)JxwO@y2PC@)StsI{8IT^gntJ#8#i`D2;OSabw
zb(R80AU%w;Dnb~TmZ*Jce8rn<y=tnRO1E|VK>^a*SEyqLjx8GNQ*si5BO}Wb0+h7H
z5=O({MBIjD2=Ke^uPD;I?CreG3^27ei>jD!e<Ca`u%IGlPGs||E3$K+qYUfJ;8)Kq
zUem{^MeCgZW&%$iP_|&ahIhmM9FVJ72a#m_Cu}P((mcTo48L|>CcA9S*boYI{Klo7
zuJt<9oy$xYL?!I&X5HHaRnI<`J;O)Fs*?pD$R(kaK^M8Y%ENxl_n+gWsQTmM{2)X~
z0fcMs8MeK5jhwvcnSm>x@y<TZbn4}W#`V;v!b`igN-gAncDCmj5NP^GLMr;-*7FK5
zT8Zn3s4V_+eO_+EO92m_(@DZUi{g-5N#oF>Yd&(Cz{CF0snrTD%rK-;&A)Z1If++X
z%ZBC48L_S}iJS;I-%9P|)H<~t6X%oOMvUpfU;_@x9hEs4^wCr=|EyyN2>tU!UKgf)
zTusaW_w_Tplz>T-07Xz2w>C;RaW=Orj2i(*)B2;}XlrG#2tQDN!s?--@t!BfT+oOl
z93?O=t<N6ecw`<tOF7KEbdrRL2@5pnpw~v0nbQ{iH-s(Rg8WfB(PDAhP9Y(6iR%U8
z#%SHt^q`x)Ux+cfLn6_!%-}N4t^T|8deK4g*Ozs%RPl+MjlO0kh(L=!2;gK}!JA*t
zkW7Dq-Ov+_OyFD$PMpZ~&bv-7n&Fnlz!1YbyfQyxbr3iRb)Cnrxju$FRF1EQ^>IDd
zoKeNxSk854?*ZKRczT*;aLXXDUcBa6@S2&nA`1s!j$N+m-*_o+%Se`o6Y$swdY9it
zoo8QbC1-8u`}0jpd7mj?;R_n7p58=p)14(RrV5pw-{p`#wUFB2#7E!fNiP;$2rzVo
zkfAQ`QUR~e--Row;^*|3(>cD^wLi`1Joep=DRlqjshSfL5`vYT>{Qr|OC!WGwsT6E
zyD8<z1Jel5ybXT;5CB5-xfLV%N*IT|b!bTF(*>rGOva~29+Ty^e4qXJ@>89(l4^H|
zUzisOUuP30j&?V_=v)o1&%AZq-D*1$14#OS$aW&{AG1TUJ$pB610@@4+Xp5Bj8von
z+zN0nA5o~Rtcm`|xZ8q)4sNz2e{%y)8i2ds^w-mJZ@6{-w8rf3MAP^}AP}a^AJFKO
zl$&g9y~Xr@V-MYAll$R4<3@^`%@_39xq*RKYheH87LNr=c#eaC63em_2uMI|DNzgj
t8Umm<>>)r_QboFTZH56zNcPbFr%*aEHYj%mBK8t+sVKo8m%vPY{|7s%;5PsO

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-base.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-not-base.png
new file mode 100644
index 0000000000000000000000000000000000000000..0f28e5f409408bc9764515fa382df95cb708a074
GIT binary patch
literal 41454
zcmc$`Ra9I})GbOv2o@l?ySqCy!QI{6-5o-(;O_43?(Xi;xVtv4mwe~^<363IGse9S
zJ!;qP(Y06ET651et3%{uMB!ktV8Fn@;Kap*6u`i~nt_3Rae(^zd1sQM#^<y6;;0}h
z09HAPbNpHPX38(k4+d5f1^cQG@mYtq6H|8t14DB9_xZA6g6{?fmg6rj#INM0bCv<2
zhN_M|WZKqwuCjD-ae)@2)GE(_s98PmtLE1?;Q@hPUr6&4Y@#o0Y`!GfOu9~v|1NI+
zvs2mj@{X6ueR+&^z;`Gm5B2#Nu-|mxz0m(I*1-ah|COy@pveD~PX2tzllDZ2;WHZT
zk&OTDZ1GJ}2ZEkEVlRt~_8fnfIt#1w)jPP>e);$175+g&@6*^V4GvXH!<QTuSxD~y
zrWLRNDO+v*ACj<&gVoioDp@CHX1Eg^y4}xyyq3<GOJg3PR2DZ(Od}KJvZ6Q<OIb~_
zMz~eklzhvaIpNOje`bqcTp0Ju^I&;+x`ahcA_6VHpI(p|Lr?ZRNr!7^ofcK*Qc$-g
zI5+w22B77gxTUE&lL@*8Zy9gs$$i@NjyAurpqvHyQmt<*y4mTi9(Dk6Smu^sr=vl1
z$?K*3X2T0klY)-VR=dH1Eg~&OxLPVpK^2by5r$?%u&P?EC6eCII{vz#5Kj2KjsBn;
z-*shN>#7Elb@LF}zPCh?u^syZEy<!jbjne|bX_m{g)LJgm>H0fOF}lGK_6qUxm~P_
zYiPQm!r&3Q&zrwge@HdWIGHuQPUx1xj)C$y_+1dJtgMR`yT)1UCf&ck&|_2;IButt
zYBGp27P0tTlN=Le5D)lxEoS9(yR2`31qi^~E*IokXoe%nNUl@tZ7Oo$MIwc(PO8-z
zUUy$cApb1=k;UM?W&$T|fhEt+tsN3*k%~+vEoLsld?3{a7&`DVN)AZPI>Ni2RMxH$
zFu!jnZ*ckoRUsFxUxD^f6N?6AFQi&EgQ#hRvbN`=@|=c0_#G-bc*H~*H=_mQWM6*F
z=iBDlc7GX1QsXUSSsO6;tjr8~ZZ{O0HbugNx)yKNY5}}yFo`@@T#y@~wYg|jsK3e<
z?xR>=ZySWeIZ_P!hOh{)Q`o5^=v6$f&-Ig9tGk~xs64`a6ob#?h6`?FMB}i=l1kg-
z^7y8h>b0n<OWP4hxS)lV<UFUl)#%DPck<Ul$*SpINsl*<zp)`moQ5%<WFZqr`4Z#s
zOi{^8^*)*})ACRXhh16R;p80lI}%z6$4xJ#qIjw*LQe?8o^_3=<1Slht`@|wLD5+v
zZD|}z)HX?(h%a%+jheROYd*aH=N_H*=iua|q@uED^s_$e3+jNlRN`O^GglKuKN8~D
zor~#nE<sH_Ry5`~b>(&ko@z(v`>SdAABv@=nOBvGnC0ErbF<b!1%zIhr$_PI50=r?
z*@X*1vzE0{NsQlI2tXsIpYj}^)>A9$Y)7u%8>>~ySZTFh%56P0U@a6o+&&0$(TxI-
zW#VaxosV0AEHiK~@JChn42qa96t?%jD4u-rqd2Ves`K&pHT)LED7K2p%JLoLD|aj;
zt=J!Nr|(KzsJJu5IlQieZY^OFaSOBYJXKl@P|IAk8z2vZ&_ZalI~<efxpj{loU;&8
z?$;Bw|2W4-yL<MMp#zC<lG}dQBN0j-v#vmiht3vMp-c#hsRq&z1Z1M+ybv~bEX<bK
zCbrm`qfa8CuWyGbt4wD2Y_5t3U9+7J4fgboII4M4LSxe6`jZ#1R9N=2=W($g`}14l
zWgz$w#`&g(jE;zL>CC8PRCFN_aR(GbmE^BbiMz=4qs?f3Zi<HtSK4&g|2@_NEXe4k
z`LqfX;a5uP+3CEJT-yQ^p3SzR;`)B`&v(mmF-mIrBta24mJy&Diu?9rS``G8T7~`R
z_b1TsC>a`Pp-e7rQ;pNan^jV49%sSBX1QkfkLla?oMxjnv7$)$a1&o^y|$fJPWdp#
zz|z7)aBjz(2^0o<AwbS#U2uL2Al~psrQMNBqkhGLq#LWU#jZR9vnu@#+2pQzEbE)d
za5N9IinBQQH~htX*Tee!4%-)tJTya+ByoD9#!+>%{C1ub<(Jc%*;6dr@#r~ouJ+i>
zU=1?Je7AMpqI}@Q!Ra{HG4`hhc~QXmPc5`a`RDA81%=opZWz<Xh`}ccV5yxuAv|&V
z0j1ePd`X}a*g-(+V9lMw_+E0(93cm4c$qe<Q{#7B(u<}`F=Lj3;XQ?vi(EKE@*01l
znTR>+e_kfWl`0(^65gxFjg}s!DA#6(XN6*A;u?g4gpk?HsLLp?^>(~YlV8J|8Nt8X
z>~j=-hfsrP*t}&rlC~_?MrZspvKP)oXNWn~WRnr}qs9dei^)BBL&jp72WPu>XWkf?
zrb3gMrY7i+O#w5Nh<7BL0Kki~z?0UfR?(3mDLX&es2$<6uw5%}5V2qQ!sIQ~-pvml
zR5=&lzLgxN@s=bOW4?wt<43(%rAyQTw@M`WmklSC6XrC%=cK0=yK$5rEC1<taA|LH
zz=6)|^ln{MQOr1l^Y###d3Ec{FHlsRy_h>%gHPWi{~P4aNm9!t27{v4>EQlc0v)qG
z!|Sg)KjK33D&?h?z0lHL^6;z{e#?m2?KTcGVa;Q=L|1K}gZ8-lnIbd><Ax@#2Gsox
zjgAk-HjIe2(_gE-x3Kn+0oev+tifM3<b|)Y{R9_C6Q2`zN_Hy{25U_*eq_M=$>RXo
z!m%i8oHI%l>|A<ADdU=skG=2KQE;dvRFUkpx#2&NK=%tm;)wIqoMP`vm#^<)u6xfD
z6<3P=;zE;F4P~wU_Hs)C;C64LRo9I(r_NLJLtAXPQjfNluFNe+{n*Ra>}st-e`4I>
zGu-~}ikq~B_weiEhbzCk8~`Rt0Wl;DabF#E-DLJI^SR#NiPj~{!9PRbqvmm}-9O9$
z)(!T5i1Xm3C%V$Y!Vs(fLMGS|baAgQtGoN2^N)YkX+^n#4~rYn_KN6dEt~wy_P5XS
zx6S{tv7a*kes=VoApKuC4fl)VA3Vs${{5d7zu3Y4KWqT%I(O<~wdrGvvkL?76ojPE
zQ8F><wRmj<<>|D0wcWR04!i$-dDBT&57$;iFsJ8wcL?qWJTA}C9)6!kr_`BnXli5=
z8YFv5KQu-cUF@!HQPW4ZpI;AUUY%)#jQ;MH4=?uz4jaZNG};{Y)#li>sVbt7(9*9c
z{If%jLTZjS^_?eb?UzNGCgtg)<ER$pi9gfg4BS1<8{U%92&3)balQTy{SI09TTp!4
z?vEv_>BZ^zkBHn(R7RsWU4m_<yAiGS1x?;nqU^udr$plL=>7RBW#;ABAI!pUJU$sg
zKnuzmSa@+OhR^Bkiuq`^WBU-3KSWlC6zC<7!7P8`x$!SPx6xMWD?+)0vvdhwm-LO_
zXor-<Wj=OV1-M4Pq5{1Xsdy+)EEh!vI1V8*Mh$vVPZWvLZT%Y#ise%m|E-}d-3ebU
zj?;Hh`Jr`9byaME%QWwrNxe>d6fzRPdGC|M&wI@_E2v#^6E9C9!x^5gn=$M#*t{p>
z$D3J=#ioo5*v@FKGz+Smr(DCH<rRL8Gz5B_Arh^65WI^mo@_`~WUjwMwW%I>P3ZZO
zBDk^n6x&}rANd}xX}eIapYwm@7EVU|lh-1-MWTPRZO32q(TS3CXS@c6T+da5B_X4*
zh6?4W-y$0S>;>YslyW!~?<g-K`lRQIRI_FDvw)jN<Q`ni;ENw}X;1!zJ}GDZT#p;B
z@28RtctJOh&Acv^J0;XfD+Owu$oC;-WG41dnO|iFf_4Zj4tG72&Y!)eS*(iT`j4Ie
zq6?s*S62saW0F@GPtC<UPtFE1%7(nZmo1wQ+Cah{5_SCIdXil}Zt+Kz=~$Wn7J==A
zQh#P@k!31)Z>(-{B62p~S`l$d?3@a9ZhpOqhI>_D*uWnE(j2^HO~@^#ugT&1{VW}?
zQ&$nzZBDCzINCf2RrI-h4&y}PjYHn5gy!|LymW)rd{`IRm`xNi9sP5^PcMe?kf%ev
zJuAdI8<x<UTBt-TqA-o=T2Amg8<9Q*`g{iibNld1^Otj!8BeT$i3|3Ph}wmJ8a7-V
z*EK2cuyE;_zPfEl8>%)XR2d?if0w&;dkN#;FNXRsspXtea^H5>K|OVg2?slTS+c=h
zNEeS#FzEnx_qOO2k+ZQpD^NAQ7WYYhr&Kez>wCg)YIPr+zDf^i0q)_yjBWm^kfpHT
zh%DiIQJoT_KbZ?$)_LS~2DNx><#%$>jva#cKDxDH22R|2rsLTp--hKwQ#G0dAWxMd
z1QI)@==h^#X%hL=8;%}IMj7-eI1dYHlMjL*bbd}I#Zkb2LW`TDU$=Iky)P0=f9~mh
za+r6M_5R@p?4OgSTFRKuBe~#-mZHAwMmepeu{iwl;>w6qLdro3!Nk+TE$>qh=9QLI
zP=&?#X)8a>0`PFr#j@l>-%2iDWYJL*G?|O|SatmGZ1c1^<nNtBu~6+~+>38$0}Sk_
z0w+#Uj)+iE65w^o?LFjCGO6F6CpfI4ii(kVqHlTbIETYQzIWyRh4T<o{HvyYHRwiw
z%q~cKtJOe|840lKk$J}72<9dHJAUXhjID1@aZ&h`WII7RJ$X-Wi5qJQTg*o%>Sh>j
zS0(33pwFb6`4iUXHssywqD_YjRL9NivYSu2>Ukx`MDH&NEK;MFqDI6T;E(rV2<7g4
zY$2ErmE%NXYipEpTXEwGE~t-7^QS9+b}pr>2uqIkp4Wp|wAoFuBdWJ&xjR<<NUNQM
zS<O;Z;@Fi`>>*6jh^l;+mQc3&jnbm_s5eAo5Aj5QaGBf3{Y!V(%jaTjpyAF&adK{~
zGr4{a7Ip0t0=^Lr>)LX$nt&sJiA#_OjXRbNDNlTKdzKjl8S9`-CdKM)YgzVfq&b<f
zv4Vc-)y53NzP*;3bA9?O&jDYrLGeVoqA*)7-}hc|Z+R=vXy@@kd$&S1<@x@{oe=M_
z8gewOl+BWfr~oL|j-LUhiLyTu4GcF+s72b6<mTPd-z7seItQ+<I>&HLJ<U}YC{MWa
z#tuZA#N&jwW9aD?Y*P3qmUl+EZZ3By3>QWUCg!nImlyf;&8!SKwwW!$gTSGiRs(n^
zQcnNws}WEpjM4LcQ;?|~Zsfxl-O{gyDl3`Ur+#6Z?9Rz=fi6U0g|H>H$JVAsr0RR`
zQ?+4a=i^Pxoxeog&DKiOUIsbIA&=xTkE=W!*8#(wr`w~A&Ph(fbWPGy)6P{1_Gg=<
z7doa>+%`Ug>(x6bOSiP*5Tjx)K00wxZb{10=#All)}<0DNv*7g`j05uPg(@374q4K
zns$_cZ6Tof-%2FqrEsFA`RoG+-HC+UP#Dc>80Wo^KD<vGovqvDW14OVB^R3_AkiCj
z+`8#Z48~nU@R|&YQX?>9POuD+c6N%Yc=f&H1c9~2t>;`O*|jv~Z?neS4I^WT*52+<
zpppk~d3kxbh>Wi$AuSYkC6k=(=hK5CVYpajLaOKOm%`kPk3V)z7tg}8v4asdp$u?o
zrby*+g+uUK%iA;rgd9!PgA2}+xId|cEndh<`>$0)S_co%t6W{QN6PKdLiQ8|9?WUZ
zpOD}+?h{MsNU{mb1E$uEZ#8tJYHvI(_5;-xKOOXy?Dqg<H(FZS@)_q1f=_;;n-Bc|
zH)O&85KtEs<ot^Kzp#r(VkHcD)KFiIv01gew)Xnk8qH6r<t=!nMK+a02h220jTJS`
zk!4@l{~*w>saewP^5Wtx&=dIgAK7Li5m?R#<0-O$r@fgxQF=3Sl?mrLfTk-op5^D|
zqvk0ft?|NkUgp2vW}CWq*s-y)K0Q7%#A1qrW<>EBWzf-+YHOL;@T8r+!w&KhSZqm^
zlCIs17oeM1_>%Ki6m%!3QQ26Vc5bjN$~bPN>RW0$J4-Md*i_?_7TH+{=QY#^hdAxr
z3gDLUa|(krY@p*#)BYC+bW2l(D1&48$&{!Oqtj}{$Hv}}!m%aNY6kJL+pPU1u9i2i
zwyVszxo#BI;&SZwu0P+Uw5*AFdIYN0FGlLLG~wi+q)Fq$C)Yhf?ilXl0vsQQmKofB
zYAY&hCmwU&BJX^x3>ynC9MLw^we_ZG1Kr45cO2YOOg&If|8ZVmxR1=+<z;1QOvW&a
z42p`1mX?;eCf0g~1(HeCjLs)YI1$pnU=JIOJCZqmbR=F16yIuw0@0&a<#Zbh5gNw3
ztNPWGo}JXJe1vZs8c^>1B~8qgzfD@hR8Ie$qI`(Qvf{Wv!mK~A5^RW`c#b$~wM$fD
zy9dPZoA>)<C*4eJvsgHOZ2-Jyv$xd3{<G)&HN_4luy=PTs;#xPw79sMY5B`ph`-&p
z{|qTwte0h_$s2PQ7H+>WlZ==$u@ydUDy~8&oLA70SA7-B!fHyqY~8I(F=`Bry^wn&
z{VR_w;LQUL-LbM}4oJ=ie$JK2n~0M<hhf+$#lkXY66kS3x*T1=H8(Kc<<)2oXYuVp
zA=LpSk74-_%=_Y3sh3t17gJDC890X@_#*)HXhVDXIlf{i1gV!U)JjyAQ4BDpSQXq|
zhfj!I{ml*9?LA48TQgpmIy~E+k!+@&pryDVThRQ*%GOvv=yNsWL~@%ANRKc~G#I6#
zq8{ZSwQW#Y72eKY9JF@YtB!=9XKPf@xc1~-PB=_j;dpUuq%TIGb0?|kwEb0zng%C~
z+kx8a;X<<WgH;3ER@F;3BSf$L)6m~teoIi~Nn;a}lO|C|D5$u&>&wf-Tof>n+fY_Y
zSTyNWhLosdZU+b1Zjz`L<ydqk$A|M%phh(<P7q%x@Umy5aWQ|e^yhYXi^yAZGL-3<
zVklOKA(d>lPbR7N%<^7z<sMG~EUWU=y4SpRD^a>;I_LZb%HlPW%!qQl#E(-q=#($<
z_TO3(N*H^hbDtS9Z3WUX7gR$rSP^v<<|}>x>xgFx@nts0fuGiPZ;CzyFtf2WwzQ-;
zJCUUuqbe7+8B2G}jy>YQchRhmDY-P6OFKK$vK!Xb9@Up9P634%+2@Nqkv~dHOH-Am
zNHvBmsHn?I6&A}^)U_406~{Oof0-YYuTTr4{E35k)PhgD!=6Fi&UYcjhD@rBoXoD@
zIYXvW9|GxZw@+z(-(QyNio@Jyn<11sl#1aLf7Mhd^pR}yoGR^}1ST`y;@p*m)Jrw`
z2Ri;mGQ7wXKfe~FSbxIiS~tQJ+`;aHDSBlHZMi!MplNxPlILq)O@FrA{<0Iuo8;Rt
zrry2$uZwM4cfBbwG5q-1(A(SFaBy(t{<(J3u)QHYz!2rQni>}s<!DMn=wMZ4ZADd8
za-&R6bI_2Av@s`RD5tXWZK*A^sG59);o`hfSAm5=D@nS<jC`PTc^>m~`uH^H=#`G}
z+<XeHGNNyUR~jm&$cDiZQUQH#`YAz|o+I;b#`dIZHHYkTC`_L7#7Fg>9jl}PBZ*EP
z0N;IT@IHP6DfAiM^Ho5eJkFvfXDtb-E&4Z86=N^uO7KlN|22Alv2A}TB9aMbkg{E8
zVKGmvB&D$TAR5AF$J()Vh|`l}W07d0-5f%EYbM0Z+u|Z_J3pPSQUu(vK1-EjCts|~
z9(0!T=c^dOD94}9tYWqwvOfh8sct*!oR)3F<ME({af&*Y)tU^`OpU+={KEPAAm@%(
z^Dts<<>r$Vkf;mtZ^x?Zrc<9q0-(*|nDfbOL?Bec?Ia!wz9K5%3T2$w70h|86Fg}K
zqCT*`l&tG_{M!SreW!uQ{sXZ&iia;!ssSK!e<$rE)s1)m9>v*c9;PQx%#<(l6Euq|
zN1`i1LWaUlk>qoHl7Tr~bhkVWB`b4dH`Jjw@Sr?^u8@}w*<?6YX)iDt#x)eHFL~_+
zn@`*B+y16IS$c(-H%7xge=z9^lj#Zj{)A%Zt*sI7e+CF81%R?7KOb!&#94qj#HC{p
zOq~Q2Sk&N#fGv8w7-P3x=cs7@n=3-7^d}HBsy$SeB&)w`2gOy!`qBL)87b4qrx=ef
zplPbmkyxyux!z$X=Dza0YDJf9W_ZGGzgVb#$GKoR-~$<ax~VW9QjHdGBoVRH`<~0E
zNGG6#@9;xbeM-B-)#ET1Tqi#w6r9o`nJnXz_6Bnc{%wcU$r*n?R+DsTB;06^8t-)*
zH*T@`hQtnEMx)*8G_nH`n;NuVFKb`E9&WC<gzI`$Gu<R(_RAPxu;X|znQFYP{VO<+
zIw;lgkTyD6PIlKd8Sj7>ZQUiNL7mFADj}8CF({DzjljGz>1JEg&9c1hrX<>JkEeyp
za*>7+Rr^az8M=1NoAg*=wA!ad-EH3j;`YnHOWaJ%_vpp;<_{Cu0h8q^=82Le{mFr`
zmXVjd11NXmu>U#Y%b%Zb7#KVUzJB|T-aHL-k-$`rbsBcT>F%J8O(ournu~Pu)6Z7H
zHb_5F{p|Fb#_IAc5GLv$?g7jAzu->1G-JKXWiT?CI9y6VOWk~;6=8;8mha~%03529
zUdeY1i%MNrlL@vPVje}wwp%?*n`%cldsuQ{S=crAjhtzwI?j$L0A}*7E^1*qo;HI^
zYW0fl^aQ7|$-WVt_?UjVol@KO9mKMn-qq8tQUjphdCrpqdVQbUm{q$}x?x=gCbhjS
zu+ro3DJ8Oc{#AAIA?NN}y<#)mb`~&93=lFyJUv6>0u8#VSgC3*>F0agUteV6i*8kY
z2>?|<F`{KPZj`r6$sw7zPJ$YY?LB>){;+<yP_6lBy9YI7<!SL>6IeE0>#ZllUYEZe
z_OJ0+Wkm9@MVuPEMlM&R>Bat@wTje<daSz)HSCq4Sv{QsRt23~2RkE6={_aC)6Lu+
z@I`H*ht4`s^d#nZ_?Avt3^w7eZAh9ATQbk7Hqg6rN7|94`ygM3q5L=_?MdbBr{?N<
z-q+}WYmN`IosCOA0CXHyn>?&AS=*W7u8dS}P)<cDAt*3xEhUsgzvh8$dts0IJ~}X1
zB7HOL!tC&!YNggm55U$m6{n(8<%^Iz2Da3uIk62FXV8Uq3dnC#Qe$uB{a)_HlpLD8
zFA-Iim61kPR_9O+aTnzw+XCt*G@O!}(%Fwz8g%@$eRcJAwO+*H)C_V-44WP4L)2h)
zW{He<);2!YFDI#pBjb7D`@z1+A*$iNXJCES<?!yrdc1-?VGk33*z9`i5CIpfC{m&|
z#HwF=V?~dbFrL+jmowOiv|pXHCW{}gRez93Usa(^UTxaByTLfds+1I&-ZjVBD<|R*
z)|oqd{ZfRI(M)U6<;&qx5Y%}Rd*@nbKaK)hV10ik)#H6BF+vN;8b2WP5bL_QD>0d<
zk_OPt|3Wwfr#P-4*R9Vend^v31S%{u7c(o@=$v^TkYWi|AVweMk+KNys_Y}F5*_x;
zqNwz*UxqJSa_ErV-B<*=&D<A1;;h_ZjSXG83=h0F_urE-T=B^45USN03D!>OH=LR;
zlkb;~B0jWdI7lX-piJ@HEI#gn4%4E78*F-Ay&sOO&e*L|Q;wknm6`8shZtI%v&BqG
z&PI(j?Vv|nJx#;q22VJAFpg!1DnON{1WmMawtMWBx6fvKMD8y?vl2jd<KNq1ak*=~
zPvYHEpjxcb9q3?0tGvv^o5A@o+-{a-aNtzgUkBw)g6*mK7XU>m>m~3x#Yq~#ib+)!
zHJ6?R*M(O&DXG|mK}xHtB(>svf-2v0#zxF!Uh7wh42ob-sgpF%69@IklLPQ%Y}v-t
zZYHD4VQ#x&bmtt^Ehp&w#pM_54IfF*UiM+H=<yQeiDm&VI--TeYD(6Qhs$e}<>u<j
zMQL{nYn29%^;@BImz-{sBp&k`>|yElw%UAS86RIfG}N^&t3o6Hg=Qkv_J^5x3o+Ef
z?)uiguT+(Um1-zYSy47`(^yFHVDM9ts%Wvr-mk#IU*N_jRj1X#;Fp{P>9+imM@7En
z`qrPTw#t-ou)EVpK#%VI6#PbbGH6vrrH}79G;F&0o#fp+LjGV+lSUo+@B}}3X)N-+
z+GI$z-ZThM&(nN>0FAsD;rPC3)owqH5r*7aj^9Uu&u)1sm?2KLe{{r_B5dip4Sl8c
zMD64yWwW`N$eh@4Fg$mwT9x$1mi;}4@4FOnq{IXNXp^^#jA1PnPw88n(IX9pYG<Wk
zNN1Z#N|Bx_^eSD5&KG5~ZauE79Z&Fh8_1K1xxA=TH;>?{i8q(2!d>>eCugz^F<A`h
zND>x!U|e!CcHymzV1vIWEpaDe5xI@;S(9g^JD0;I%drBLN4<WyJP9;^arxzCzACrL
zPP_5<4Br|2E`a1kmnVFjBlaIeZ*g1h$}ErmD#XLN7j&(s(8ipnft+)U2A^Bi@t*`r
zAV|e+%DC(L#FK$f8u0=&fqsd*4CJ}xp5>DP8p1#C<dhwO`V^4vIB$f|E*$6MW;RQA
zwRL$K@iXlg8JK^VeBaGsMr}&ERc5;1ty!Nu6EKbhS514m%&^TAY27Jcq{6zw<$a@a
zeDxlYZ#Q;HmQQ_vpLlDipmnEjs(;DIV!d(|Z?CFW7k_}2`BCt$S31+#*LZGDYs45|
zG9t&C*4+Vuf0|u?2i3*3Kw=kOfQaxP^r;xyKf+k+&0m%<xGk%?-g_Hy?CMQSST4=O
z^;{2hAs2H8`K>?faqsVEq~P<4E+aXc6qXWDnw$r#|296mU|jS@ws{2S^rODV#q?Hx
z%m^1dU$JMr8b)TcJX}|rpWl`9-wFB}I@S#fwUK$RtN7*ibl5%QCVfc%e!%%T*+jTI
zXM0#nmg8n;>p<`eHL4`)#b&+TzM)wyl)!P=lsNVz`s7jHy;$D}|7K>wThd33psGzq
zkpKKIDiwkzU1#jGK9RVXqo8HYnmBp9U0&55#3C#z6DPNsY-ehSOz8VKi7I<@FcBOp
z4Sp8q$Fxh^J$M=I3x1Qd0z}k1yEnDriOdUad}p_#)j)Q2ZoPb+nQ!E-owFtKijR~E
z)k`Iktibk`j>4l+dxuaR%U+}T4Fpe4>4W|%DPd+RGMhspUC5*(UjCmz$9D)Oc7c0f
z+%;iPe-x3b|9Jd?(4O#wyoU=Tswl%?(bl6KB{Lfbp;h%T<Bk~&Zu30BFJD5LFa(9A
z+Ua-qtmY=~#KJkL$(X0XJiu6{<m7x##4CSS+{R$c6f!0S<{Bivd)^A!-wG%*zLqJ^
zS->~d<yxs4Z~LOPbVR-*9*XPPjB72>fJy<Iqv!*1FwYvF)4_nhuWlgwR2;i6Os0^C
z!aPrU^2LHhp@d9YAv3M@DfOA^xYNrt;Fc}`iJTq~kO1x~{9@;dlb7RdZzQ!7FARxy
zEXm9*<-0;%OqE{0kM2bfnFnyMDOkUJjqUN>YEkkm3h7_WE%V&BZz^x-pJPge_XJKf
zYP%*sYqv{QuW#g-+Ck9GGCOMdUER8!fY2?M->Y)0Z?CQ^-K{ydDhHY9gK#xhT@Q@k
z`s8-aG-kLL^?fzrv8TAw#6Px0*o}5?bIyBL*wz%UvwxhwtyONY#aH1`&U%`A^WkjV
z<F9j^M9I7}vS&GR)f>qLdn`sh`%griiQ#O*qY^}TxFbMrIJVNJ7Z?|m-^p%i>+bTj
z-_A`u99<d{`55Uhck2q7wVCuIAe-eupmO>GKn#rs3Rwq4EJsD+%kb=Koimx8ghIp8
zW2BqM^O(;is;d*iry|~xDoWr{Z|yfUyZ)@%Qx8TCdS!rT0isYo(q57(nm*9V4m7?z
z`8A(cBgEYd$$eT@Kx)nhwjVpHFi%$;wKC0!!%B5k(C%g@K73ynoKEob@cM9Ted>h7
zG#zm>jl9>E8T||gbRb@G$5<O4dr^h<a^;8rWYN6)B?Fx0CN8r~U~HHe?#|ppGRm^T
zJo!6rC*y9l&nWb>l-E3a-qqz*l^9t|;wTc?u?|-peIdcp-EJ~lsakBLv^Y{OQX4u`
zPeD3S6L22R9l)s=%x3ZY`paWAGD2(l5R!?@TDth4X+V0CD8oN^i}9Y42o=8jJ9(m4
zU_(#ERBv2O&{(D|pi)A76My+#pSh@QY-xjLe}%Mn?U-2ky0GTEX)tm0Yzoymj%12y
zY+~abYNqP-u}#&>v8RJJ+v#V@s#SOj?xBv6>NyB2f_;U3es6-wRrVurMc*fhfs&To
z5i=u4SBRKpy9iwqxITG^9(?x^IIQE@7j}a*;se~e2gPU9BLuC_oj@3u?)n&6%&K0q
zbx7(#t}_2{u^h5)+%@zs=}t}>B+5V6%`0i?@i~8N#K}C5Cj2g$u#$m^uCWw_7kK#K
zG9&E-9}#gUduw9TDjV-ec1JiPl-juc&h(x2$MbQEc1K0CYE--|wap7TbMnX0RE-_{
zbBOe+eLfb}Nw4hR`h~dHxjW0T2@<q@^jLodO^Bms*GG1DAM~#qid?9Zv8{uJsV66`
zt*r`xq`N#yTIx>cI~99%cW*&$=+g)C_;^+2rJZmK3rp%TwJyFuO$~L$mAKy5%0Og8
zk6()X>h2N63S_0gnr)WdmFOK3q6QHyb^KNKD2owl>y;XFQ)qy5m!sXWghM}Plc3GS
z$wDIkfDhWUrIFD+mgn@bnHwRjaJ~#KpuTTD?T-Hst;XJs!cjs8U5XKzYmki1fjC{n
zS>n$ebP7pf5|=n@>}GgsQdRmzGW6)lvuIsn%AI(DcUDe6G@>%&iOI}OpP0Q(Mrtgr
zMNBUYEBb4BvW>*DDRsRA`QNqL$1ca)67z%Waq>&8t~Qr;3*721-{~;-;yVpr!zPcH
zu~;u!SjR<I(Z{1_<aO$L88Iah*X3g^_gte_<9liEJ<xJ6Bs&_}Myq1bIxr=$9t6np
z@sD<N#3tPuk$qmWk52lcE^!@6Va<%C!hk^{Q7E#zF7~QJgnDBZVu|S5v>g(Z88~yF
zEA!n4r(L<tT8PWYN69=F*`DbN;k<J^)tVT?=cT&2e6oSr)0;EDz}mavG0}Dl4;PsR
zY!`6eCZnlX*&$31$1Xj9Cp<w*6<X`W(vR>NWxW&i`4b_5t2YjkZ7WYZ2uO+#R)jfL
zDy5Lu?g=|ov$W>p=e;Z(D3|7v>>2!U*HY5AG<~s`cqhxuKW0>hoSg3V@)P;Wx<Rb{
z3=th@YB;WzpZ={G{tRARRL{kPhoRR+wh-RhlY69REsX?_+n~n(bcNV)&Y7<s(6~Lw
z?He%(YV#O^=`zSi(|AT%&fF0D5WS=nlwMtIDmdp*&>_i-{BSyNd9sg=ddh@H)jQqn
z4Cd>C{c=f34@<5heX(~5(8()gvltdCI^rqMc%5~~ksCgAz)lN$7xh*QK6&w3Df($?
z3XT3^C?P5N!~-urzR&!f%~FGkzAQ{yo3x04%enMm;2CHEh$2Tx)F0S~9Tf|5k^=T`
zd@WB6Sxh^$?F>$}6vJthBbqKK_?j+s)gI~^*!7F!qYmRt-O||6x9m(Iie~Z9c(#&i
zOk2hnmqq0UJVK{4;y~7&GtPBLS6#()&*x*nV9^V*o&ONr_lxg?4y03BQefQNvexTZ
zQO7VB>QuzD$CnKc^^BD^RX&O$7+F=HkMg9Sthzkb<0Ym1y=QMP_qbeMx0MwMs!nW)
zQ@!78SBLD?5FvW8vg#D_RI>UMe-}Q(tiH&o$7CYP_PN^dO$bvA_gG!(@K!y>0!v5R
z$etk)@ObpL17Mlvu-<pwQg%h@t`TocU@OWiC~92nKpm!D>x{W=K<M75i()$Jk>Ozq
ziZa9X40*-HPN<<-HAVT4KTD@>|I?>>n6Xvcf(!SJY>;2q?=H_O@K))=-lvyC@8J$J
z+L(EA=D3UUtXzji0{Ww<srRky13tjzdH_~eQD>E4Mc8+5?>TZ_wyTW@$zb1%M%*F}
zQl^{Pxf>=MduhY5n@x%roB(SnW9_=b?Sc7p>0|SjoJ7q7>*n#p!YMo+jv6G07x#lb
zbnSH(*EnmFe$o=e*r4NM_o#^dA^>&$ooZ<75l(7)V&Arteqb~B|KuuC>>BMLy<fMX
znH@_wcc<Kq#qZz7!=h4CXCO-6hhFP~z2=&rS>LYjwsy?sve58_X<2!E%&9GO80_>=
zOR+f2<OLOJCkq;DjJIXuJsGJA&~3&_PqYze7uqud!s79tx}1mTQj(J^PegHHDId7X
zdF%^X=fgJ-tsN=ds`Yb$(m1BaQ}_Vtd3M9;;S#mMwz5==|D6jtb{bT_88YPy$S({S
zhzpya_2zRLCYDE_eIH~=Wq&;7`)l`ZD`!4<{vo~McPFJLudJ<!@4;{U9P55sC8U}J
zvZL!w{Z1URnLsy`JD56Jn))XfDT;V3fo6Dpt?Wf{saH|~X-C14Gks{NnDAyfZnxgJ
zw$ZyW;zS6}5~;{ACnnubaEP64p84(+?SBTW#173z#=D2V;wxP+_0K|29Slb8@p&WF
zkDfA3xrwCtB)H;j$&)aN02kUP9gDW>k@ec(@>s+j9}#)Av*oa8()N=RqnXVYb39((
zi{B@5_Wr*O!$|0YmX?%?+|#o<rJi~NVX;wF15FFyv02`CNF7Hgb;IRr1W4aIf@K+5
z+B1H-x$o5plmR{}@&8lqUIDIZ?a&-sNJqp+NVQbHK<q1Xj>v!c!Vgi9P~auwpa3J=
zE!l(U_6i)Wjn3}w?%v|D2_$%aR#NX9#3GD?QS3#WS90*Tchh5NYA>ZA=Vh+?tEeze
zUo|Qj2Hh(}k_b%=Q-}2RD>$=*!(81BgfXgmNY48^VtZ+;Y2b}StfE2-&VkAL#h3r|
zMz=H>P~<_Yg{ePq=#qwZ8C5Y-vKygDm+^@ys@$9;UNrOw(Kvx!xNKjqY295SV*3a&
zZ;qre(gX>5>cj3Y)sC=B$Ubv{pS;<TIv4sR`)^g1>sX8TxBsOl;+2eoK74`xuiw*k
z{}&pgte9c*=sLRB139b)cK7)fnz?8uwts9L7%;nZG!*!u*6@Tr<GiiZL|w?TJE%R(
zc|pv8KutV(E<RtmcQ*T-ZLp1Sb}SKOBYE_jVTh9;v!QKJSL2h1{q6fTep2}hsK`X&
z`EqWO4yLGG8nFQYD6NikZX$Fq0xK)2zDUS2ts48QcD)OUVseDiluWeP#7*;(SnC<*
zR8>ec#L3{-piA(XWs%5eFn0;LB}ynNE*WEItMQrgD?98KrFchTl?%H2)OkJH3YO^7
z7{8OqCM>{wg!N*otBFzynL-WsQ)O%tSSvHk(L6}~qD1DJAt_pdzR{kYEWQ+!2R7}N
z1{lxWt469pR&T8Hx6<#A>z`*5o@24PQ(JcZsy_~%W3OY27zZ2e_E%ILYAfc5Pu&ow
zQsBkgXjED1>HnOc-@ht4lty30v*_MzVGj4gI3+7%%*4|@EEK;Mq=})Kvy+XtNC678
zSC<7wgwdh6Gona$TCgl<?Ram=Ep>_}`VsijL)jhr_*NVprbJQhc9r(g0s=ZkMgN*f
zM7^Vuv)qjJBLV~G`kZi6p1rTu&-D~AQxNBEI*{F%xLw}X>$|Br_J&5v4?2E2PE^av
zBp+`l^U1FM$xwsEjGr1zU#<Sl#)q`x6__7>EW}}JGNV$*ch~cyy<xfjEBWJAaE~mL
zc%1zmUIJmfLtfV7mouwjFQ!xSH7tpn`pY27O}C`D{9?k_xU8gEv`@ac3;(B#koiDc
zzLLISyFFXXcn9U4tt?XkYEpj%IpTeOI)VXtHocvQIh0C_I*bQAzx?uuGjLk6Hvm2)
zr<m``WF~2TwC`Seq9UzGp84T1d)j|ql$eP5saMD{{pTUwQkFxNPyrpc=ftYW>;kH{
zq_<MUbnS<H*gYqK5^qqhiB+rCOz7TsxfemXf|txBL%QXlg;tNJhk3ls!h>!@eCgTZ
zG8)<{^OA}!<ps8#<}%*`I+7hl@H+GWMe}b3CXZVoO?}H*#i-=HFcmDt_(Ee?X^vhl
za!R^5{Dt^;P-TYg(5wl?4t$}r&6uj><DABx?0dsIF~EoFqKBB4ITz2^v(N4E4&Gj1
zmk9OEYtf7TQ));hG=vscmX>u?B-a+JzTNMehI}!or1$Zqh{?6h@whpo8#%vCckyGN
z*<wNd!{lTAO+`1iW0%4LY-9X6TB2y3;_Mr%6nG#mPPyKQTls5bEuBcIAVrsn5yebc
zF5v004*~FW21`>+2u1t!=ca^o#>qrsNioD;)3|@*my?b3Cb|LLYrH{X?7EYwxVDVo
zN+SM*5xTY{(R#vR#LGK5Q_uS0=3fQ+E`sz_<l?L#DJ(vdcY8(jvw1vG+@2XTG+zmK
zR)T&0dONaYA0AhPo%JGsW^cf3zMPV8JEn~MNI2x@?EC(%gd%UMEXnzV_mzzz-KUTI
z=H;oJE)Q!Ee`<q*uof>-uO!CA;o&0g8d#UN96xgDU0uXE*aubz5&g8>Sfk448mBmx
z1{0KG_9ZMdXZNor@uW+riuGv&m?lcLu_(l<n&KJHCvDItS%BIH`7bNIc@##Q1TAIt
zkf}oQIc}5e(NKq<ticH<I{Si3Vq&85;+8o{DhT@SuWYV$=5>xa3u8K)^iZ#P_2U@2
z!Q|`T+`bsl0j6c8iJtST(}oO?82WVIc&d8z<QX>ht;ut#lO~-ByqMdFKULTjtKf8;
zrYrUYVs61O07Oia{^tdSH4xf(nIpB;$nktA#Z!&_zfo9%`4lbmU+dnfD9B?m8>-8B
zeOZ+0%r0+lPaoT6Wf6IO9MGac(tWcfn~{M>e@RM$VURKy>@Gbvb=Q*8FnLdYpGz7O
z`&(%jLXUbA@;%AU&5I6QR#QCF*ounlV-_!Fu@dUgVXPhTa5xa4uMOM43@yu2QV|lb
z@`^_8aL(9N9uw=Su|6#^<ek~;>2~8fH@Pu4W<UQBU+Ye`qo1X#<>l?XBwbXj&oLTX
zRpP9Q^Oj!WlU?lZb2stsp`<G>ir*DxVMu8Kh$MKY-dBj!*rk`7H+9X>;^{b7Hl-g*
z$P|~C*{j6K=Z$IomFO4q2DCrLSI&)>r0-7`k$2+oDCV_KFh{cR5RmV{Y3G44T&uR@
zdI@OZ*mw@eb$MaQHd3_6Wy4Jp-f<lbkk`hFY{L_NvwM)=I`6Baw7|RXS#az<{9%t?
z9D-egykwCM6vlsO3uBx8ienFtu8#y7ZHxSr!@PU9t8mnCiQK(eLqr1OKYl;EFtWX#
zP5g+=5IbONWaB&kICTh+n9Ax<mRDCElLolIF1NJ7!^_wt7=PtA58QoQ4YUTX{F%nR
zyC#37lCxB_h|cqsi1|%VAq8&-8+LOA1*&N?)3eZ3R8`km-!iqeu-j2lH=J0tG*u0#
zYpxAZ2zQYoOX5t^(13gUrpEMEw=%M~1UYx0HEDd76yjKu%In(yce@Xc4q)KbE)_|m
zOSglG&f%Jg=0f+DsK8we@VeUCWs|K@-0B1si5uif4vlLSsQlu4b&ztlpx{lLfUiqs
z_3R%;Bz8j3)IY3L_6>jy=~}r@nB1cyLNO?{#1f!u==|vze5AyM6PRkvcOWnc<~2V5
z@-buE<?3O7)W8o8DR!jOX<F>f+6uqlR=H*)GGxq|19(Gpbd<xEwT?u<<Z?<Zw(z{`
zwIAB!sDnO*neR76_*DC5!{s%Vps+^&i}&x;PQn~n@JFNqJB=dpy5swN0ABeEGlyd7
zkDOU3WB5l@NaNRM)|3pfAJ}&61i<lS0fRLPK7Qs>7;Fx;($>n*k>c{!4FU5t!lhn`
zoNAV{-roh}cCpN5gX;TazM}H3uR9g@q136t=p1;N9Tx)G186ZFDy*mlQb6`X>fR7W
z7>WWV11U@hOMlIU*I<3J2Hp_oE<|L?(9T~Y3O90XN%O{w*Hc5vw$JhFc>n2hyLwIo
z>uN|Zq7Wd}HaZKc_0s(mPu>GNtdBh9*`!W(HB;Eb%`8+tbjsuwc5Ou|^A>|fTMO$w
z(-JQ|k-T+${H+~~DU(KuwK=H2rMDhDue?3060!L767l$BEo;W_4TG>)4C`WU!S;z&
z7TF)XL8~`|OWIuCwAv^#;|qTsZfHg?;uF|ml`hc{c;mz?!mynIZJ1N>n}4jSi=4cm
z>S^Ys?vj~L9}nxS_wz~A3L!p^l8K-P)NvMWvMUl134-U2Skpa&d}^dfC=-Go;H}58
zpSfw%yTWn{v+*Ivw$06zm6a8VUAKD^X2+5ov9N%bWG58qUiuMPF@HuqNbg`{pau}~
zP3tQ-UE)Y5b=B5=H#;7StEV4tY4DnMJH%`SmI9F#m*y>yv|4XHHk|6x8{h|G#tlgS
z0X(N{YRQJ}O>aOMDyu%`?$sE~YgJS_wdZbc<4l+fas2CBk>gK^j|;_{v)B6pL#HX7
zn3z=szv%tJ5N2m9tkThCE3@r(iW%D`Ljc;O0en{jkzX!g++4V#!oEum+-9w%!{Z)m
zOwNzs_Fy^iW~nk6m%WLS-q;r1!?2a~KbicMh7NW5fR>HEl+)KH>zg6^Dv2<7J4X-=
zO$E}Got%NWIdn+(u4)3BM{ApVpwJR4%Oz^Yv5H(6X>A4)JUcfh8*f#BqJq{qqLL|x
zbOPY>U36~x)~TCav5#2bD!j2YeQNLW;s7m4XP8ia6XyTbmKgw*<NW-EW2a1oBA^Y3
z<L#>XvWBY4B@z-AD=I5UGI6_sBl$ZC%FS7eoqK7zgNMq><iq0U<+jDvy2-{MU(1F5
z{{iAj0d+5SRAp3ZAXL3`nmqjd{+O~-UF4^T|8-=*Bhi&4{qlb_aRMb6Nld;5<R5ui
zsQ;8rzbgeZnx{<P@7K3gp+2dDlzGS3T-_&+ye<eC1v5JLFIO);FH3y%Ab5{*KzCIi
zEb14qBSH$A#B<+r;A@!MLocOVtXgqtC1I1>$a?&e&q+#`-Jr+fnR@fRE*-}ta7zBQ
z4`Gis1oxVY!ks#>;R9z0SMv7lL_oIu;xoCtri|smhWB(#zj~q2@6qw6a_Mlw-T32{
zfRx_JS+mWJ9)Z7T3y&Ld6v!*IF{Mk_bF(t=d7@)lm_kMWy`bH4TZ{V|#67+wD<>Hv
z_Y*e*`(y87R}CPLpgK+`e8@^Te_~|654<b8#wj<L)b-*SUtGi<l7Vfv^;yV}S+?6f
z*)My*n`84!`)POg++dkV@3md~3QQPV(iW^vz%sM-d7^qjM4oqh8>|R6ZGaq0HV{3j
zv%<8XsfxV}6c#S}wye$(5Z#1vo^k7+-zn@Sp{_}a*<ssmqJKTT!b&AbFdn*n4O6Ms
zoG-*PY9;_#^j818C4Cr-;BdV3(3n^hm_NH|-J>iWv3DIxmzGjcLr+c9<*~8`h;BEU
z*72+r=h+G55<-h}h27@T?QmfxU||SuM|y0L;#w@?b%z|aCpCo8L}Uk&`;lx9ybORw
z4GkRPUN5yf(Z#&DZj%Yl%`F_p_f>BZq>-747$MFe=NYEh^BIY#UY_i|w&RcXsh*1B
zVK3BTD<`AwS{<GwM6}2J%=siwbS1~fYFdwj-d2Ntzm00WD@Iu^**1Fy*8A!W`Sdw~
zy8mdZP8@U9JC&1U9PSrAkz7a$YDHPDZlET^w~2nHZjjsz-4oo^Q8xlB)!ZQ=0%MlQ
z3<chJHZMBVKF_Q|1c0pnzC4oOJio9tXDP-Dip5qJ2s@50|NbK}Q?g4XryXq?nw{R&
zd}&8FdIstnA74}O`F-6xfp)FZ#zK>8TPDi{xBsNJL95Tqf6SPZ@<b|IWuu-u)yaXE
z$77SMsI^EM$Nf4jIj0;E8mAQ$sXX|unRwT6l9YAmVo;q+8ro9(ds5|~9z70biqq#q
z<s0>v%4A)Sl+k&8d#IE!gvFX46~YzP2{``7`lmOYiGBl}A`0FpHV~I7yizL++(q*i
z>&=qKN2#~d6|M$P`h$5Ynp-%w!x3GJ_h>zkr-KNJY&$6Z5qPo(EL6Kett6<}B{FR&
zfjo^e?6RVC8hKOw*@NAnIb|7BljjZIPVe+rR-8IRGIXJp=VED$NfLIC*R#6qQe@Fx
ziON(!=XX}Pk52Y`%mrUH*wWY3+;l?_KAw8rwGJ8kIpv(8K~bM~lPrFj`8ae7ht}(l
z$o7&7-)Bi?e2k&J7x!pH^<~drgr{>ggkyHD-gi43k%fFpeY55XsnOY&QMqonLF3aD
zl;a?HUk`PU{77RVW{LOR-~`-Yf_%K3A8DP`PHyeDJ}9UoMxoQh>n*!1lhe*>p>ob(
ziX(hMtl8x;%=Vcrbe;07e(1VbJ4orwtEl%+v^j%w%j<%0rcC)sC<4k|zG2t{X96qi
zRhnZ`Sh87Zd+@kqqK%(%0QoZ^nN4~d$7iITCdW~KiB)S2_qO+f>BsM9L0rtOh4Pte
zTW+QG2E5`)?k0B{eYZ0hm`bB}fAL5^<#ni-(vK0hAn!oVTBvKFk+q(Xz-{3aG)l2G
zAXYkjc;mQt)C)fNI8YZ4&tU#evVaPoo-Ko;HKcFhT15%3SNqo4L~>2C#R&;;T4X|X
zT;W(D!F0DxvkAXL4y;SSd8#qAn2Z*80{jv6SNfOlW|t(OgFGKmdlmC~mRRZi;(v8H
zUozEc98r`YHSSpUel;S7#}oDrZ&q;l3px(01A?O>cv2}$%BcPfdx&lSlX(rsE}FfA
zKI4s$eqVj{@9$=TXnM#urdxzMtm1nChG>=VRclA&zDQ|BMModk*aIKz_UU7&65w8i
ze^?4$)>wVqB5{lUNX@Pr|LcX@=iy{FJgNhTh}iuO;QLGxw&E+(&{NZrcC<8*ZiDc-
zs%EzUv(0M=#ky9!JQg)SZBj%Yunz+X8Kn7_j67Cnb35Gs<&?#BgSlQ$lp-=yrxRWu
zgOQX#oEhYRE>7C#(=oxd4OGFyb5?EM@O9q8J4u0vyyxg#$cG-pomJNyhpCKM5opq;
z#dAA!2EgZZ!hTL??v!YjlUt7U$d=BdUPQ>_LDT+P>}x#_JeA9<*Eri*gXw#-me=iT
z2F~SV<?CIur;mw*gFfaH5^Hc8TX=3R5Dk7Q;(Z{ad;|i(z1S4=&LiN@2$%GFAT%|^
z7I~T#auXb`BZ*@i6;!IeE|1r5qA7vT4P9=>gxVKu!UU_uKFNaFX0Rf0fU<39<4cz1
zpen*KH4_Xny*_S2Cf8Y9%WbmH+plX{+=VI>0!{m^AlGUzeGez!JQFIA0bkUDn@-!L
zOD`<*sVCoLBW+I)X*j`X1;}>{){gjUI>cfGG-i&Enhz)zWjhiFMYjJ8R}NvnMOdQ?
zIPo^6)>=yA{(D^0IBMADW_P&&W&D6Uaz9l!xySqH#KKHO%pHoh8lAGsB>y%Hn2It~
zky)=}olsQ?!F?-as)B_fj<@Am%#eA&eh4INj`gb)zpKsT7CLm_ZWnq0`L)E=w)lNu
zkEz7|wS^sVj6bQ+l*ssD@2NT-U)N5>oxILFct0T&LHx-9XvZve!s@I19j1`{TL=I7
z4+GFphng{$?pC)7sKJo%uCiyXNZ5}<>|q!mZ$xpj%gyQ-SkUq#*@Si8ulTRO<WrzV
zWX@a%=<?adj8978qHxY_+k)2tMTchxH3n;I24tiHk=$sbI9;|a_S;cJrt0(ow@I=L
z&AZJyheC>(s{yDQ7mGuK^sB*dtV8#0TRT3IqI;&$%u0KJz{&es+?H^OxR*ZDuxpZw
z;HhEP&2p6Qm?AmAYQs1omx2T~T+}QPD)$`{e0)=KI3|}n7VR#pc`oeBiQOm&R$hEx
zQzH=w0k6<!Fi9cqNiIjB`*oKtN4GNt-m|qPt5-%#*9z2KeAH}63&ANeBGJ1Xa$-aY
z*W_xib?`Pt5q8CDhR$f{sSgUptiIg1<h=*vOl@x?j~ie~9VKavw`erPw*2P1Mu5bN
z56{~As-)pD$D!9=L07<W4IhflOu|sjjqhW)7r9nmg|E*~Lh2?K%(w4##Iv1Jz#Kxz
z>hX6mSM(s<A!KqUF0bMCIV#lL+|4d^zkp2caJ)6Xk^(QfT*~KL62uN3{dwCD&HLV;
z^P)N_v@J6)es{L>MdwW&z$#pB{)_P7yP2A?>wvV?tjfKp=GYXU=R>i~P*Xv<$}vg7
z@&AXmw+f0g?A8Sn5=ejqf(H-UIKdr)ySp{P-Q5%132u$M)3_5{8n?#X-Ca)S-+Q0A
zn3}1YIyE<a(N*15U%m3J^{hwkkNvY{)aUZ!Du~8Th&VBpzL;D|s()`8Z@zv6A6GdZ
zczHi~+JV)JCX7aiVddVtuKRiwtiqt6Ao$=O10I2fXDMSxGdl%4))e)bGiEz8#AtDw
z*y5eLDfy4_+kNox@Chopcyie67ek>6br?kG@o{=O1D2VpKP7_nsf}c-SUDKJQ`H_j
z0@(zA3kFiaQ8J@+HDMtwI$DlGD3sH9n+;}K;q>{=Wl@o(82cP+6K|v(!X}xkkuQ#J
z8M)Vj5AJ1ZcQ=xzbDPiRrN(Lr3@h2p7t{BW2de6aSc4JZ`?h1LQRTGf11#VJWl)@Y
zh3*=Gb^44(e(q|S^;?ABKBI<0Z0N>l$@PT$>u8IFxw<<t(-SkMiBk5#8`TRz)dtNX
zOLiu78HdC{H)!V2-Cg|24D3rQ0-iI61c$KF1EkBQxv0;GNGRcjx$7?QrjC#>qyg^h
z8j^4Mv;49WbnA|4QOWZw3k%G0Ks65qyN^>TRuuPJJGqVHrta;mJ%PgQ=`&zj?jxeH
zNPcB&6C7@emhbWAUf%9PJC-({2yfQlVOm_j`?oO13FoGfU`<z35uMpK!dEMXkaK~C
z^-ko}3vS@(R^%Ejq+a*KG2%)Vi7mXq&mAPL&#H)}Sy8TpZMdx`u7L`gQDt9X5*?HO
zC%AphIxwz(vwF5A?^!rw8UDY)dl*X}6jm~HadCl^eFlHOaee^@N9xAwW1Roz+5=uE
z<JXpgW*|$a*dm~`<-OX-^xmJIvYe>EOQ}G(lf$|zTQs@14Wzjj^Nzm0Jo@I=m6?a;
z&B>0&nyO0kjt!q(la40)k~f+)F4XljCTb7VI#XK$Pt3QdVdUOl9m)T}scPvR@CxNJ
z7iuqm3Yn11$}vPocP<_ra3X@!KW+~VosceQc9Fd0{lxQm`@-$2@>|#SsJ{QEr*o|f
z0jJN^_}kYW1EQqxO=hWx%_+@`DzS~vWPj%3ZhB+2&26(>dO12;<3+mopOmtbdfz@u
z$Tj`y#(XG2+~>g>O}*l^7k}V#d3$R~w!^pWJSAUv#~(5GRZt+{96f)q=^%rUxWO#F
zhNJaZGs;!u@U*1emU@#>H7&c8E4W!)TA+CNv;6#*Z$@pvE(nY0xm@*d3Kifa{247-
z*>a7{?T>~zj-EM|EdMuBL*1+6^(*P@(}Mt5U$rLhR&EE=iX<g0Lc<h9>vxrKpZj(a
z=YDYTJbuumP<3WQL~?jcO?9hhx5+o&?usq@fO5moE-2WEmhVLuluzO#kF;1@Q;<D>
zeH65~?$>;PR2Irv-M0K3vIVDaE@&nq^XKv1E+D3Np6T|K$0#8l`R+b@J#^x2^pWm6
z%Tzo<dD})@omhOFt+TbxcjBvfD&F=r!*5w0$LAs}fb8k=K7|<LuDqLNPaXhwDwZzV
zm$c)Ut&mabRJ&5DVR{eoA1RkpvC~MTv}mCew`5$mQv-`5%jr2mX?c8M*tH#OPZh-O
zmx9uw39?3mZ4y3@X>U_$O3TTlPDJDFGN3WPs0hl*K~oAOMRa+F0An<^FzTYgfgMfp
zSeyX$B=y~-*@XbCLX|(eH^H_>z}IC1e4rO&lt=}d8UR~mE-1+enmtUH;f(nhb<+jc
zxm*=X7i(>)At$SZ*B^v(kyUz(r>&-}ZaI~$X3d3Bl7Tf8Vm`&EqeElvJiW<j+%aV0
zlcN5XE0c<Wu2<G>=!;lE9DjF@NkYO5(=pwv7l%7(Jy|eOoGI>N6B-4`Cef8L>q_Xm
zw)MYF8(Z<w)X%T$C8$qKC8<%u>ceUAb6>YQdKXBwR-QG74!-I6qp_6qv4x;B!UBz4
z=LEa!=_z#9YpBwkE?QlQM**lgY7_v7(s-qNha}|=x}fO<e?C|N@3%lJcUiZ?Wi{6b
zQ(T<<ud*Rg=OpY0i^FI`T3p71xmk0;IJdZ-dG5eD2iiPxlCD>C9fQB=Qy<E_tWhiZ
zjE~cFb=(}{DAUK9S$(!4$bU~gid~9FH}L{oG$`*LD6}whByI}<%nC)8S9UcK8y7?8
zJl%GnGfbe3W?SI#6f*8esLy#^r7>VjwT@n={$}RWk0SfC_B{jr^vAfXH)>J}f|8;J
z_Of6F&W)ds_^L6_-2=KlT{^%z$sdEcp8ADTAtIqR*S%64BHhc>EjOM18j)*5GOu?p
z1-PQd330c7DvKjlM1c7<omA81jVm*>=J-)xzPv)_S);1FLS`|-^Q5#}%$@^+ny+*e
z4|(N8udB&o8V&TM+&N8DH?xlAE#sas?CRo>EgjrdC9TRsS|j(qffRvER@t7C+0`GO
z36KwLmZIm;l@f51vxrpEPjCR6%JZNEj%z6~G06nQ9}|h2FWGry2YtlZdXr%aKoKQ@
z8iGEX-8~FJLyX5AqOw%~F(Vci=WcDeynll90EUmIvawGkF!h;_={1M0C&<CD($7<j
zZ*~G1f17mZLItzR&V-hVKxA7V{ZNi$Ry9F=HqRXd?Ldp!_~|yvmk$~nnrB(Z{Ah9U
zEHb+Xd$EGXwYFmu^DBfh)_j~?rpmwYTSz8o=Zasb@Q%+-&uO5Ocg#%pTk&MrC+-yD
z5iNMWRGn}Oiwj&HHwfK_;EyLp!)R#^ozfgMZI<h`HIY?lthC9Lxp)}|n?wGTop)I$
z`o!7t0-Ke2ubjBqO9NID_~u$Te)&s~RAuI*xwu<M?F6@%@^|b}z3Dc3^dT<??$)r1
zc75paTpKEjkIJpJ9=S6(`l~_gNs>|+z$W^Ll)(g@D`pD0CopnhtW`knZaF*esVa{T
zY$WHoFZHWD%lV@I%e2bFOm<^cMD?F5KjLfji>}z4Ni^)^!URSR`JUpdJ@{7)MdO$K
zZSElc+1BROda;<S*47CQB<-o{ISYZ(1Y(!SlW!oj6|hY94%DCFekZb3Xhp#vkh8i6
zz!W1lTpvb~n)?cDxv%0#XB7PNCwoUZVIRLT=?6N32gN6D`4z24xZ|#rzs0A%G|2es
zWItoDVTUymc35-#whD?0(MZ7Nk&%(uJjO)%Gi+=enG>;*6|mit5EF|RH1e6v*m#>w
zRdlg|n77(fT~XEf@nN53ee2RP3{GwESWYS=G9ro*i;`;SkfXkKJiAx+I`oPTd$*}0
zyQzu&H1tL=4UptyokJVJQQ;G>8XV@O^699R(W;#g81%l=`o3pt3#X%1?Xe=ThK<&?
z$vq;KHikVC-(LFjU|N^%iTIJ5)XH;((>S2u*JH=KE6C(zbs{&C1;!)}kCT_?Cu})p
z!ZHi9VYKP;xqXuuh+KL6wT|rsR9@Zs+{QPO-okuv8yX~<=d1q*eUHF7BjjW3^09n?
zBe8oOmj%P~y@nLfY_j4jsi;_=&#0=|MZJPb@BQ-kd<g}NG`&GfA+Y>Ly=W}nC=|9_
zEaF{tR%3$z4#xv!B-*$p&Z3tVS*IY)CJoL*43=bzQl}!U4B9AnAZLouSSrF26605c
zp<!g&*9HObcbG8KM&KsdyO3Z6lpAxfa}>|bOSN2B(+d?|8B2sYZb-hG37Gj(5W&V&
zda~+?7KXjO^-w6(j*9?A{ty1m56?044)H|1MTYt;)^k-DviC*1t{j&QI9H&*e`M|S
z5S!ILcz%Si9Dbs@?Zu9-#d#c60=yYv+_oR0fke8Nwe24q+C7_?sFvi-vD1N^%oLTq
zTfYvnxJHHq+5YNSx1mpJRNBQjNYppZ=+ll~vTG1%k#*^C)-T!?dzQAJhfi{`oVeGC
zW}taKOtLsPI)@nFR!lKIPBYu3xu<EkxC+&F4=mZwu-{Gx1tE&(`Y}VCM;}INHnS1d
z2b96l22!D2U$lHxyOkRbsBtias{_(xgcmzR%x&?(qv5+)3G$L2lS-nECKx`PjdZM}
zmMhC$JFR{xNt3)}mjYUsjqur$EpYE@0v7tR)g84a-(jdP(S8brJU>%u!aeKG;Jlu+
ze6c{+zTu3q#rzw39i@pQWx**3{ZMEvIg)D8Z9Pnl*^#iHq~<ZtRQHulsl=$aj)L!y
zV@hXQqU4#pZgPP{D!e=aN3DvVhMY^dR^F>$h$H>e_fT2^2eJbZFYC#;ujZLUDw$s;
zPmy$nFyqKGjb6k)<dn6`DTWhj>b6>Am?!jSa5#~ZSKf>pzAPt)@l0UNGGReU15M$8
z?aDAw_!{FzU6<zYI(APVx&1=MxAg?1DFb0IucwQqZ7&-VlnvytbH*eH?e5Ow{llGj
zkE+^?2GR661nYuZLK87KE*(8HrhgcjOU7t5tMExF7SzAXlFb`yYGJJ#n=_p_Fz}ss
zq@0Q|-(QO6eeYYJcCbC-Iko0CmLHXGW>MY|lF!>X)WRBo)M}eu&eDd|4#Z#vt8U4|
zVX3mDY<m_hH$*+M(3lNt=I#DA1=i<4Ril#L^^e}lv<t+e12iPWJ?LjNa8r=#4BwEz
zvNCLF0+I#y@OY{)^AOxXu++z<`)$RgpfCremny>FgT1QR6k8{05~mu706D9QKkhpI
z)NmN_K<s!$HJ#{Gi^CMWo%6k{zCPY&v98IItcZ)hIvXi!LY4R&>?R3u#->WgtV%X+
z+T~U0%ZV&IfkNONgu*0voVey0=ybw#{hCntUV%!YD!fU&sH4QV`Q=$vJqHv?sx)(%
z^_myHt4{?ejF<Ur=>2aTi2`H<CA-WRt^JJII!|_1q%5KrLVTt|s%+)G{M(M)6~?@9
ziL1fGQ&zwn6S}}OxG2n}lcA7YZM&L(a3FQ!C`gWYqff-&nUK|%xqZp(``fOaxRyr8
zI3t*ZT-+o%zhQ7fuNNO{A<ryvC>2)5zJ7rzPL~VwTAxH`jwlJTtK!*K{az#fV=3f|
zb}GTSit`_zp<fyQ)ouJ=CWin2xdybB+cB>~yriY(7_Dx2|A!8SwZ5gIqMDeLr2Y}2
zH_pMpAwb6(1ld+siLU`x28@VkkZkc~BC3sC-3`PaZMbHqzZ$Qzva`F`*;T#!bz*nA
z(w3F=&4n25O%@AmB&2aR=~`r#&TZXjd<vch8I+|HFrao*udAu|hlL;ipi<Y=%rrAa
z41Rys_?6N=t<%K7%*moZXqlvmf)^z?rDUUZC_vQ(p(M%sQrg{W)F~F7l6Jwz(L;eV
zT$x2%^D?v3{{yN9@|))F=f_)3<Tt-Y|EFD84$e)?=hLEe%>oxwGd+bu$QlUbjICw;
z{Fd4aC^I7KEX_4Fxd8pg6J(WZXJ;XMN_3gLf<_WQNhajjG3a<_=7}JfC^Jx`t}cT+
zI6*NlBkaP-c{6|GAA-ilss?wP;x@mZr1U8|#=DPW4mW>}E}HM+e>6S2|LoX<X^hS2
z`$w(UV*;c>YG`t(G1|-x*lJZ1P@GiPFlF108t+>TYHQ=OeEY-o7vG0BFQEUbl-nPI
z5L7a2C7iU)L6;BjaLBw*ORbqLgi>HF4%$$B;=+vIfxNX^%Psj<-)CAr`Vme+S^w{f
zlA4ue)u0iP^EV8YyayF`?2ZAGJ-zj8^|fnFJCRim(T@1GK^I{{*3MD7*X`~HSKWmS
zVrdL5qFlg^I2{_dG^{0#FQcBRn+z12*4@yK=$^FNpC5wz?dLej3eYum{UiP60H{RG
zJ(NAzPy-yHNWaD<<^`eA=F8ntpabK(H29kSa^aBEv$J(!0Pzv_7CB{qFRz_ffHi81
z=Xu}^`P-7J7GK85sgUyFxgUb>j-kSHi#%(q-zy6vSQdDyE{`lPh<KfxoGyw@mwlyv
zKknd9lr0lZPSt3HXAAR(b^@cKqO#3-`v#S^>dyTPrL_BBxR_Q@P*#}A-pv$Z)tK@g
zzm%)?X4pi7(usm79kn4W#Qbh+n2Do3`(KHF!dx$Y2^1oCX~vN=RuH0Nn|PQ(C>jE^
zAHr<*uiaMMZQ68H+%v-9ut%-n1N|kwGJtPXl)dY!O4zq2Ql1-fCJE*7o5&L`xya)d
zFz-btcjbtcR(-_2m1P%}cxZ6KI>f3lbc6L;A1!;+jxw<D-PE{eb!y>KWWxz-J5EeI
z_15bQi=5~2V3P8A{X@fgcuAM65z1245`_<M?ZN0m`GF-ndEUHS+$1t`4a;Ji@lF8`
z=Zg0-eA4Ee=+dLs)D!K2IO>=F<`%O9glUDZm_!&}hLx$3OLc7TR3g0nDr{e@@(ipD
zu0U_&z(+*m8u%$G?H<Lfa-I?nzr+#aWXFEmo(3pv<6v$FP=IFxbBcbUzwL-Zv80JK
zWurE|DpCa_+9y6HymO<Xjhp@kV8Utu2nYc7*8Rtw_-_Uck3cjkPPQqEm?cBazN>FD
zMO1L|3w!vSUBYe3$7&qyEOHz_IW?XVYX4Bm&vz4WlA!7;)H&~X;vR=G@^jGQg{!&Q
zVA0g-I*|T~TH&o<{Z(imx<J~k6OKkBTjN?KPv6_MU!?<`<J0<uhfK`twug&`lhz}p
zE9T&ZY&c=WKUZi!G<p)>$KTHz;2;Wkru1OQ$$iy#6>OSnPT?sh_4nRz2zbjOOZZMW
zs+5ucB_LYMabfe_F$~`Mn>hv3(SOk+CLmbDPnn*cc5)B?L<TYi+aba12?Khxgy~?~
z8e=w9_(c~2_PMs2tdi6WMrM{#|2ryoubN?57*Yxvrh9G9SX^QNsXcBp@P9%@Ig6H&
zsVrX;7kz**0>1(ky1m1xVTZqPF-o*MiE4mBP2$IZhLINedAJsp?~DuN<X9WUCRP_y
zRJ?m&G&S58hhD)1l<a8<;7-VW&l0#?kzt9wXJ9-rqfsZS>=aXfEt{Zv1)?&EnR9RD
zYBG=$vwZnm*>^P8<b56xqn|)tW||!s*CA_iNy$gM3jr8o(}je(5|BtsHB6<NcZGNt
zzXF7Dcq4}>*^#~q+)}L!d<JPn9{A*XzytbehcmPSEIbt3Liv2vfJ26n(yq=bx28sJ
zlEt_lwwWZpD`P^Qol<<#dY8_n@*?oMD_#)VZVgL&1^NzDwk>m|ql<g=&qa23XNaAh
zgVckHOo*Wt$h(*Yo}u{glY#6E8l?Ulo&7t<E}!FcvcBRHQgfK9a`mfwKZ{u-%S$Sr
zpN+5a?J`uRGjS$<G&v7huXYkjbT%}_jI~~m0K0`nE3_6DDN2aH!U%dZZih09Cb(Of
z61--dx6?fl`)|#|QEUHsz4*%gS4r$T4TYXH{ws+I&02gi?dLG?>*!6>6q^I)<aj@P
z!C74K!;7dd()NT0vcg&~4z91}wrnotG&sBv5i4zHYgtvzpf1vhtf!o|R1101Zr6$w
z!|U3~?YxJXA2#-L&m+MMLGSN*+&^$@=zc~)hC(O9w$<B5;x9)MEo2u_s$3S7E4DX^
z<F@l;U1k@W(`v6qPqjTJGl$FES`(S04W&gB30%DE`^<9L7ZBt<zo2Jcte4Fc-i#3)
z$m_f~VpZzJ>7h?Yj1l;m(6RIY3lqm=MI%{)D=61L>Z3uTkZF$B^R?(ey;@-$r&buM
zZAZ<v>y0u2D!a0sg3<*T<pxwENK+d8o(t3Y`%ilm8@pA}H(L~JMJDsLk#jqI8XeuV
z3J&ck;Pi$gUh9&)f@#ylD~9xu&6%6~BjB1=U<pw<loH1mqbHsY8Xhse(k`rMbTblf
z2IkVXD?!e=RQjR?{yNsBs5?t0+9X@^=uPzXh|xO{O^)@sfsqwjuIsv{)#+buN$dbd
zg&I$}bcd(89ztj(hSI?P6X>o!k%~@HO*^4KO%l>XorigOm3!&aImEDR@q{D3l33kl
z3dmu|gP*;gt)fb3KxdRbRG!mW)Itju(f_^7qn3ejypHH-Xp1kclpSTH)RWMWWwIn%
z%rhiX(vA0ir0Bo<8FzR7(Mk}+RMns>TqTd>EfI86leMOP`5XW)W-6LGa@x+3V@V4O
zB@ftjv~O-92hIX*9i5yIB`L<^5=TW2Z0U3^4s)zZa1s-%*Gu)F_bcSkRsZ}Q;s7s%
zih`HHX%=7_bVy+`2&v$d$Ht!En0A%nMPPg<%J^Wm{ME;LLCi7U&htbn-}@12E3kd+
z^aBv}(R7J>d6Bcrdf8b+u9`4XWNRyt>Oep9dE<H6)2Fyz!e$#j-lMyez&dsMlv)Vu
zq(!}4k$X$(DpX;FI&bly&e5+u_ts#ddk*+=J*TD8VzppmB{1DPIe?KaOMbRqkze6s
zL$g>fH&sPxz8Ck2hiGHIxOll+6;-do&Uv-^-WrF+aVJ8xAHUnUMhPvI)g7(A|MMg6
z>xv@o&ha6IOR8pxHHb|;g554`vBsHrqkQwk*cEhYZZkWx&|;g~XMChgP3~$e$&f-{
z{=;Gt4Wn3-=q@0)(=ag}(Y`+=B;}9g<nfE6F~f|?+FKEgbwIdY*RG&}G)2bp)(keW
z*#{VG{sMv`19k!%2)?66#(xj5a{7Xw9pDob0HMV(Ia#(QCvSk~%jJthzo3#ryxc<!
z?(V(+nKoE{EQrH?b*vYDhR`+d%z5%iK9B5tN_KOj5%B)e$%c7!QwkliR?J7(TiElv
zQHYFgK}ks&IDDAR_E=p-WkwlT90_mAdOf9O?QG4*6JR06eDm_5h+SfpYvkpx2bcT&
zaluOVE^B6db~OM2VFfM#z0P&1yJLezWHw~5paF@4nz-A2Wu+NKy13V-iOr#Zi8uq8
zo7W5k(y_A}KnZtTGWwhk>n9O9#pJc+1fwvgF`HiJ1~)STe?wg%kiqgLC#2vYq6~VQ
z3#+EONK&?QV@S_TSe0fHL%Y>z9v4K11@BxEbyF`)9$D^Cf|`l}W&joZXFCzTCJ$Pn
ztU70W^D$e8@+DWrVG-v)uBX0o|Hw)4@yHO3OWW;qBmf6nb9@u=PFvnox1Q_(Zm8ka
z!@1=^2Cq&eTV~CxT%IX?)^)jAdO&<NjhLpC0U=-a2M=@@YwFH%CC09uu~m89Yi$4O
zOg$ETh7D{hAv<I|vU}7K(_BP#k%f9z0b@M<68I2ssfXOk_0f%GZA9?R+3qj97fU84
zrr)kJaLe#3s>p9D|Brf=zqDxJhuf#OKji=EEdJ7Fqhv2RT-DxXJ_o1$!iRgq2mf)m
zBM}4w$-LR4#Kpy(nHg($d#Iei|00+5;qCep)WFIrBHDlO%{bxY<Ro`{DK>1w0eASY
zM$u7%?}c`?C;htyA^R?BexN6W*(dy8Nv-c}#ri9A|CI$0CrQqxCnbHZY?;5Ch(qwL
zyX}_GaFvnc2!%P-=)2TqUoJ9Uf3m5Klx@w`E^RbGM`0Cmm2@*QIVO}2&3UZcw9PDv
z5$HHL3kEqmqe#+LWM!97<vOx2jd)&euxVOJh&NjHxYX<%7LU<?GxkVZUSlEB-BBeD
zwkW2e@v6s!eqP~R_Z0H*A+mf{ZPgEr>>>cldug<U-?Jh)LNXqw31E_tC$35yIU94)
zoZ#(I|Nba^g75V=sIA^hU9`B;WWn9r=WaR-IHmYWkaY*}NN35u^Y!;A1<JL}ube_@
zcM0EPn##lsW@MmKOGa)Bc2JY&0U?G_)ZiF50=eR<$&;c3<JBi6AmU(Be}3E_0z2&5
zW!04*oG|5lTYN;rjNS`Bf~`XiAD{44mAy%VgB1o>yWNyfTdTJ+vl9HUQ?+KYmWH4<
zdAadoc6D9xeh<yI0f7MZ_%dzkHO1ELvpKw_%K&k=B=Ysy*#=wAv;?EA?ddQxfz^~{
zk&uyyQn5k^*;c(M10&6lMELm?62)L@fV?t~Ii=%WDJ`;s4tah~4ppIN;<<RMxWVBd
zeGq#~uUBKwW_*y05;7A|7&q+;n+ahDmV~Es8eOnAs-s2=S&AIOr5ZI=CD5a{@I4Qd
zAp=IJYZ8;9DJHVkVV9H@b{v$-S0P<gof04zB%^+B$d4Pr)56d#XOZ9fBvt%atU+F4
z>cd+7<pX;kAs5b&yMsqYQETdjMLLGjvHfm!uP8amV5@KtUueY%|7_0uids%^aeHfZ
z*uZcTQ)KPq*kB{m;U7jz*I*o}!pn1gYrM%)3s`Ya^mF;sylY`GVfBTCaXKFWL{lS1
zWo}VCM7QV#rd^fuZGi1bzJbGlngDIxuV5VqZ)cX05;|E4iBMEKM416bdJGea0D<%K
z$dEAFjRbP?0{+il1O#b8fC6y4oS<ajJ#HwqB;rc6_XTG@1qDb-5Ih#w-<hp%Pn}Zh
z;!s+;X>5G0jaD*Xr(5BaS5eQ(&HcN7ceBZaq4IyXw8j=rYny=er?3kopO{mOQ^4;S
z4XOEN=ieM({?ob)GUc7$W?xzuR7f2&v#*dl+?X#P*Ku2vLIJy+a%eN|Pj`Kq>CQFv
z3ma}xJUF=G)qo=#9_-J0c~x?%g6DZNs_@qIk?DiDL}_CSyiK*Hmm@C6bOcM%5#X@4
zPZax4(eNrc<fVu?+(4V8;ZtMr#}!mW)THF<lB~Unaqz`U=lKWG8Mqt<NL7M)J1LXS
zPHp;Bab0zxu;TWnUXm+wV4bU-hy>@>?cgxDnX}=|xpz<{SA?~qx%rc2?MA<+)2&&=
zVYGIux^;1D&qkHSmLpJ4Q1M9LX?cpaAC;KPYl_W0b5_bdR21wiA?3mrW!r4sxl?mD
zkWtVmA!HC^z)PK_p)4d~?_ZtmjwwWq--EgB6h)#^<$kM6;G(2kh%j?HHCNu@(y_5|
z8a$%w4fxKuwjrn!X8n!c?;|`e1B*0CU%wt|cSj9Qte;t`$%v+CJv|64@X1U};-cjg
z#eIh3eMU}^4?#fCEBEiHpdD0PH9x!^@7F1WZoo&;A!{dT=A`dYWP&Fj63e+TLc5|Y
z1n7Ekod?cP>C)xI>j#D)He51l^_e=$x!)?kD<3xYgZa+gPPh1H+rOs#Y*H3KP2Ph`
z2#&4@8_9h7i0tbKXTF)3%b7$UE5%KNbSTGbHd6n%mdiNJ7LoH@DM?FXM${mdjj%A9
zP;`UF=7moUF3zhbHI~-SoX+l}x12pFrIEDdjqGM;x|u~Tnzp`9C|utO-d8jW0ne>m
zPqMMf2{>>T!W`ymAJI2j%6Mnap9<_}c_mvzIop1k{%mW=W-z~Ia#cB|?l`{NRuH^P
ze};%kj9vY)tADw$C+<5CRcu^!yx?rT3TXsME&b{TX2@?0KqqSAlB46Gl-p~aA~PTv
zAfZsg{Yo^kzzw3Qi!Q;v{Z~(i`@a7=P=PfC-<*CYo4Dy%sH!@98|HS~M_LMkQfvE%
zv{B)M-6~U<INIwa3=W=xSF$~8RSfUw<p6B9qVb*}-OA=yhpcY+W5Zj#w1Y~*$?tWj
zRXl|)9?{0mqSW*tM5M5-;Re#3j6G~+FHCH`x^i$n{1_X3_YmKxbt~==ZKzk({kW*9
zqyJ^}#?qKAo6i?BOBcQ-mGSF;aElzNk2Iz+PDQAh5RPb}*q4q0cqFJ*!_h+f_L@mk
zAljXq6d9i*%8PF8kKgtNRePy%^EB(R8)5{$(X-5w$AsL6d5IM;%UbS_yZgp*$xpkG
z)kX#mKqLL`mo%1xw1$ZLdS5}y6(n<vBS%Slh{t^|6ZseQzDXr_V>+;*2|b@+efs&|
zdBR>jyxi+Q&W3ny@}z^3zw;BFNM{8?fj34jL9=6DF>qXci>BQ-1{?|MWhx_*p1MQk
z`CAey3Jo(YpUEY@R4kWYmv&dVWH%;UsB@I1ijAo^vGlTo{%FA_MGl3yi*3<EBX&|d
ztCM&wV=L|{jc7M&_<RjWsw0Q_VaIpjN=8DfYfNtYK%F6+HnAAqvxz6a_=3SWkR3pg
zu$3iizr!1>rY$Wc)IyXEe<_l}iCPB$LWUP}t=q+=AJ68)Jq#{M{cOV0yOm@^xZ8$!
zxrBjNe|jmm9pX!}4^teRBNab79${TQ!%GV_HPR(gvAQy(WnU)Z20=%XPVD~Hx1Hp)
zM5p%;#U{?OvVIL6M(O%I+K`cR_-ypZdMTrFTn6s?dJ7!j4NQX(u433L2%W#txeO7D
zL|);@b+Z`9<SWf360or<{AfnZ*0Fb2%E{Sl9PGw!BHyH%U`fI?AYKBn6}epDgoBUU
zO()9zK$5ErWH;^G90W&oSGO_=+#=CkysLc3&8pm#9DIgT5i7s-`ISt$kxU^+_84)K
z%pBpewT{j0ZusVP%k{nNHYf|)4VH(*pd5#oP^dD?s9>h|aauh3sl)y)d|K5dP8f5w
z!{83IGX0_j>^Lsi3y+Y|n<nPH7240a_U-y!iJ<@I&A^|&Fed-q;GjUA6$<?Mkel$4
z#w~0Q^WB4V*Nn-gc9L(PAE=Xo`C2}j4)K}($0NB9JP{{>9w~cEk?0GAs?EgOGfUHM
zHZ>Mjq8TNVf}o_sl+PU9p*xzQi07y2-@Ou37#hS-XUL^239M~wETkOcrYtc=|AU>G
zMxt0Avu?zzL1)RS2KM#Wop{@ROWHiwc3E_QQlxbphK0FClt)cD4)yG##)fH6C*f5R
zVYS!eKXejYUk>wa($EUCmDjPgZ1Y((p>JdHOa$dZ#UX(qhh7pgVpgx+2HXs93)yl4
z;SEVk12;2Q+U63Ag&ZGe3jE%7#Q78M_-Mau&d%Q-rMiZV;!-R<I1K|^`Rae_csR~R
zxEn>8wR&`)>xP%l56$VuX%hrM%u!OC;E0pba;K2?;>Xt4_QHlhp7bP>*Q8ufHU?Ae
zp&RE;;ehdi!ESJ(sNUkT?eHg0>F#ryLO3GNfSp9Xr7TRT2FhUr*HwMPqci)Ky@Cjm
z#M8o9nnYv@?3nKX*kPkF*k}N3sC`UEW#1DbsxaJgn?D}p2|FZiDll>?Q8fptPSv!E
z(8(fD5>6--CwM5MC;zU;Brf32>90}U16RYnuL97xr|IW8-U9v<t1W*z7k>%E@v)wI
zz2Lgm5XF2su!|2FkiT;;qiURK)u6|*ZKMBtkB+eHQ0owCyG;Bm@RB#Tq+IY_fmNTj
zwK?KbOBQ{1+=lQl<I&2NkVzX{L-`Os6q4G<BG{iaOxnM%RH(`0?d3A+Kqu<=;jory
zEm;x0gkuIrmJ()-V=KZXU0|^pVk)w`d7@eUi=U!|4n2*@YahWuE|;FZuWV1<e#&JS
z_vh9+d37oXca6VTkPT8`-NSzSyS`noam!1`u~pf6w!=;osA%%A;CMx)!fl&6TRtgo
zA<qW(ENL(Z@y&|9nvd$5=k}bI;NXDnk*XXvD{hjQvz<=tSO-!510e>bX_8@pg*@W!
zntVsq?fIpLgXQ|0Q0#z*&zX{5Q}pe+1E6CHC2ym{rTYCwwdLt$AN`g9Vxh|d*)H!N
zio`tPg%nr~S*haFKLbG#wPo>-nO?GT%quW8f7XZnt`R|srJ*4yedEs-5+FeR)aeid
zow@5RgqvdX9)K-}1@nkS8Z#%lw8T|dQpqg(=KDrfAVJf$`E9?Pqc<hUs4w((yU+g+
zI`@7zw}4zz(;=|$dTGaHy|qUEW~uEL0GQFqH0UfO_cN>iATT^9%woWJrs5o-Yv0{$
zWQ0@g>C8&nWdG@2+W7t5l2>KtdK)01NK@9R*>CA$DoUiZJ*VAZgULz8(-o>n&_Tdv
z6Qf5BsM*O8UsS<Npnvji?BjN(F7_@jlF1m&oaM`A9@PZ)Y}j}5C-j!2rXoq_ffb09
zwCE}whBaP|xM-BkN{7=&N|;1A4OQ4zMQ8Xs=oUqHp9pSljHJM>*ISMaUSwVV@)@l`
zC4OQ<UvT@%5}{?Ed0V{N?6od(JIPePFdm8hOpPAo7Pft*Hq4)#ial`;URF-HvKFG6
z??(TCTWak{4z=ygkN+a2Nok2@RzI<(_G8WZUBVPF1F#jD9`__Wy?c6t$gZ^N(aSS>
z3*;52s{d*1VIyOE&|slL!j^^!^VjnZTxnY<>6swwv8Psx_G3Oho?BP=YF)dhLXNVF
zn(ZSmq^cZ@5*-!lesL#>Y?1QaOu|Yib}Hc=avj6B9<)r$U&bHBVb1$3861bhhu+(Y
z27Zu0{>z57%M?lfE&Fkb-pn1FOL-O?W!}S-FT|zat^Z;?V3HhH?~M2rq;v;^aV-pW
z88ZchnW)($&1W~5r+Izb&2)yRkQ<15waXT5a1ZPy91dKFZ$IZ+bA}j_G1{sI?0T_?
zFe0SuN-yj=3V?YXAHG*_**Tqv(DAT{MMp%Aw79-%0fC*<6h;UsCfU~O7>$SVvIY(Z
z?4eBjt(1d-R++3>1@qoXc}4})qZ&Hl$3C@urlQWFNlWu-EP#pvagrgRw-HoYUUoCI
z9F(BZqe%Fe-4NaH&<#65tooBevm*DG$!cS|os4H1<vH2z`!Rb`#edem5zNA(UUnfb
z5%!`Fp8i#n>$!z!;;s9r(kXFGDhHmt*YX<eeLoC0eN;9n+g_?dj;IN~t>ryFeu#XC
zt#<!;e$2T&{tLh`8coWQk)GZD_TP);;vs+GVmRwvVMS12@M0P<m)mmxbHr@jPhe_N
z?@b(Zv)g+sDU4EOyCU&hY1s{e1xFXmbftu)L)|Mp^<Wdmf@sL`;G>|3PHz0r=NXT>
zWPvfNVGp);E6}8nh|#3N)>NuimZc{rvAIp1SCgl;zbF-4^7~dwkATgjh-Skt7*)@a
zYq*JOX3oE@=JHJXZ)yicyCc97xCn4=^{pj-$(YkvTv!OmJ5!V{c75+nf|mVm0|KTg
zM3`HttEMJ#ML@JZSpnNqEWlEZ-1>)TSQ7xlk^on}y7;;e`Y3|~)46w=S1ObJeM3V*
z?az4?OOQptgiA*enx^MXLtVQgv<XeVt(vUtgkNrK$U>CfJoKn`Zu!B*O^j`$a81ds
z{6HEVBMdfYjzy*&RB{$p^!niiRLWZP=J8Bxah1kXY|Vtg#+~K50|wt2sO#u6Ba$U@
zGCwwHthQMiN@rG0_lp+BSv&h!$r($#j|x9N*0Z}#4W_HIs`{Yg(>dl4xek0`!|q#c
zas;&h0ZwC?XlO1wBT_n6io2fnP#EW7svtUUyq7JK{F5=-Z(p*3K1e9wgs*FtjmVVO
z)78W2V5>B$ytI;+_qRpOwK_$p^ofF9yQi6JgXH5F`8AdalXq<Rt|x|1^3K5trd|mC
zDDK!??}%G+Y|}_cl1wyQ2PvTaFn_gqb7oq>2|C2hz~59~(YGq_t8)wrpiYVd^+fRp
zS+g;qAWktev)qjoaUZ5`e<qk#?z(>`8k4{9rgX)7M}L>2<CF1|`sbHUcGAtsKCA<i
z&N;4E42#`&lbW>rIqc0U*%yBis}~&|92yvi&l^9Pj}chlWZ)4$Ux9j6xv%lzx)86v
z>1vc<+4=LOr|W{!dHqT)N+%7wW2>bD;B2xgO@G>L@t0p0s~TquDti6?M$b-1k(7qk
z|3Ybu17nE_3M%?dRv%59odSI1(}&s9JyjI@0P_x#Uz)}e)l+eaH!u=aKxmh1+1dsM
zRu)8YtwkytxHw1Wu;89T^FZ^7-*X>B$7u3x+mA_M;cVd>!i~P0j;WQoo9m~>2T~j1
zD|;D}eP6@ZyK(N;%xynx*bu~zYqV$p5BW||6XQjAWuK+pokK+}n8h_Nxmx<EqHY`N
z+k$TcJnLuMCv?5p3km~R82-+Tj>0(CL0lb(;Z_|26$^a_QRT#o^jznH3AHhV#63O3
zVRkK^w>Bc!n-=x$me!Wu9HHGh6+Xg0IDZr6Axqb3Y`J;CJ!?oH21C{_Xk(Y^T!`41
zmt04vwWz+0rBn%0j6KKJ>e!g4j9(nJD;LTg60!~LCf1<ljSEI}k~|D{N=o2fVbBuB
z##QhCAQ&<w(%k2UJ@2aH8vMt<X%nzj1;P+O*ixX6%B`Kz1aw_E=oe>69~Nlv47Q*Q
zWft$~b^B^^jtmdmp>DnT;YvkE7odLf_HX88LDxO%dIudSG&B_P&A6<Aq2W0fLksF}
zJGdXFum<qWnN-z^%5?7Vr0)%}4cte-xc`5BYoh!5zkx>>IphBp9Ql9Dx$wW$<>UgL
zc>lWmM_Gq)VKeeAyEK)QwAAFjBwhj;jX)O{O0DaNL+^D%A~%s~Y4=(ooD^f;6>;6v
zG7=K&c5XuYxQ8>c|MO$m?7EA3H%SA;XJq$ux8C;Xr6eWg?nX3_FIo`*F^({>8fRD6
zh;g|a-)`;;0&qlW^UG29ZiE^-Hd)6?#QsS>0+fR-ObC{$uJhJIkAugyaW3s_oSX<U
zwRH(;>n%KKhgKWUIm^>!v_QnA{gvs_e*dAS@Ihe0?6T^Ei_w{a40C6;8C440-%Nx1
zxJ||2Y^FgjEWezrzrUtIu}XsWMlkJzoq|?-R_(Z+ke9NT(8AP@q`y6WT}QPMSJQv9
z{s>iM<>loGDWIbhU|zFQQt$=O%9TZ(Gc!Ll(ttEtuxJpjKYvaMjrlFu8Q2=OaPS_!
z$y-*ImzFkZ5*8N$)R$0DaMKYoP@*A*0Fp8>iIuMkVNO>6qCa7=4;Z89HlH~hnzrhj
zgYXtcN^K>8T*mv>o`q-eOSB#f96A|R%T;Z8?A<r1ag~{{h?vA40s+bMI-(W*da;ED
zGFaDMp+4KPXKmcrIi8&jei;Qjo1VC7;@W7n^;b9N#AA=XhrjoBzP>J(Ee==TQz_t^
zSa4oCT*n$o-=U`x7PJu%N|{t@Nmb0<AFWF|US`l~t=2WP4y!6?XO@-p@ifo>Q=tLF
z(Eml5@j+lyEp_F!2AT7py3X*&1<rEkKa?Gn`8YIWY;0|S6~z@jZ9PE*zAa>8y9w%2
z<TKdC)CP6Ja)lfkqKGhjp%#fzm<nc@2ULk8FZXH8&u^k0k(H~I<+Mb{%Bv?YELdS$
za_M5YIC)EvG~K+jW0LD!J(1u}gTz_-kK#~7Bc-%y<S1-yEUWwEzZqP%>99OXToa9j
z)aca9{cmvd&#Va8q5>(#HmSsp*_>uOch_O)Xa)023d&VB7Zgygy7pS6_XAHDh~&fK
zc-4lEZG{F@)amO<#U*|8EI+K*exkA|kyrU6@T*r|4N{byoy{~;=Wj<j7;e$n%+2%2
z*PH5Lo)#f);_WS*drsMOHi^=uiA|I3+zhUeQqWS<PAP4<>>1QubfC3-c_Ib;w?R_t
z3m%}dmU;Z(>>*d((9nQ%+3HxB7$R|6R#Abeh8$&9?A}`t*w|!bB3?Ezmz4gj;?w7s
zTq34xoDeeI`Ut~z0+IxnryDo4r&Wj<N!s6KH>W!w`B0lP6nG4Mu&JY;>64T=va%}c
z?iyZCDsb0ZHT#)@eVpBTV@5Xg2Xi%0fl_WU>;R=))g@Y{)p0pY4{GEs<Op%^KX7=f
z4N?CuXLQ(p#F3NH6qOaK>Ti2=sjrt4-6jxNRUnGi*6G4ZG+L^u1AE^k>nSD>oEUqK
zadEPe2Ww|!VwzYV;}H`l#&^qxqeP6+VV_-kc?+EzF$wT3Y{!V_#oZ&2?G8EckAnKi
z1j&W*1l?zp1pt=#ixIJ5O0hI$Wo3Uv){rIa+1YQG-j$SC9)EIe%tyMb^j!Gg5*BjM
zSB50Ow=?OG={j9Cy7h4%UaLv8J6<AGajJC(csQb9-gF_WolXo;Nv({Ty~n9}E{i8h
z#=v?!>^^rI{u2}~s`SlFe&z*&-M@((sL7oc^|AEjsQw$m|5%)r*xg|M=i&|+Q@M<!
z>g1~0$%MUW|8q)x>+D{7|N96a|7S(tIQ<{rwf`@F;DY+LvM7PAWeA_#{6nE}Im4vR
z2-YmvMSaiasp70*Xa1PT6Ol4_lH+Tg>x3PQ#4hlIlPBNiH7J3GhGt5H9ZW=*AmGCm
z#HL3&Zq(vQWN8=@hY7r%f^Onwo+#gMLNU;2G_su{uH7j7oGs-yBhyaett*TppqEu>
z3vSj=9R0Gc7uezqhi(|aBART7yGvU?Fo(gVDV9WtUf?A<0-E{hs`PKdv^{oJ)b3uM
zC@fUS@$I@7?s`>b(Du|+WaEI{27`?3D8+{!i`!#IlzYS6){zg&shRP~u@lpNlrLAs
zw)$+Fq0t?izE7+Qzwo?nMi%U0Sy*$!4;;OHJ<uxl?7I5uk{niklBUpWv#{`R+G4A}
z*bFu+U^^8e>+QJEbQwV`tgaFS69yGk6)kCes>?(*y%fhe4en-N1CmTy@)y;mr+}WG
zT0aLX)0mH@huRWGGKJ?%gp0ijv;&dy5;Ucj))hOd9O%SAG~!n^H5DvV@;pZgPd&4)
z2>y<#sR~p2@)9bDw9GKQt%&neKzu|}i(jaMid=~x^w^8mVo;(d?>k$!d%dex^wrnO
zWMTG^8LVsaqN+d9Vcph3?&bWRJNSJ$-@Hw-%u|&%Hy1500G~7G8{{b}gx^g;7$ZhC
zl?0}jfT}QBXVWjcc9ER<{<wNDyHF?e%2ltifYUiyk5Eg%<tMgKOyc8L;xQyln|5)F
zDWXkXONMlwn{ACI{Mi$k5}Mm*;)r<XvoHbjd2yf9@-|vu<raTSB?dtK?C8l|5$<A&
zS+X~Bdvc-o&WmJ%j|1gLRf$T4>UuEVW4{qW9+$%p5+N<J_D_OT!&V#&15TAsT1^yq
zw-UKdrjc!#5TaC5A0fi_{Xc0}zjDM{npX1o@%{LO32j$=_vrYW)y-(NuHc>b9+v+&
zxj4+5Kh-CqI9sK0Tnbl6l=FBTE>VV8ndJXo?J=mdXsGNv6{8BvX>U5cvQt@QtU=?h
zPPP{ErEpX^{~57`6<{%!I65J|M=koiadhys{b4$W#T6CuS*<M++3XOBy{nQT4^P-0
zu|{(FB=CLkO0(gim+9*-_z#LR-4p0Zdw6IbIsJJ2kBuBFN2wyk0+=~n`2G|Or=XWh
z<$&7$ajpoWKN9`jwGPS^S}VP5`y8ilbZ6Ary<%f!A9}Ga)bbvI1nKy<%3&DWy(-Bi
zYTscc&=U)6W2bl|@o@Cw$m^0v!i@H7Vo2u>|F*8I1d6^ZH2W6+jCky5*GXK#q}U;+
zB@PgL`vLpw`w13iyvnxA&wghr1$DNS?sMiXE=&2JjOtC+?0s!mpyjs;Sd@5bbM0+A
zan{G1F_to8gAt~Q54C{L1H$><fFhEfd+RQ(0E2d-a9>1tSJisA>0N=jJlpi{yPs_M
z)4n7tyz?x(8t+#Uy?7)(+2-(7R;*SVJ~0a5kg+;^3mxwZKkvY&iBv$Ds(9z<(>|4W
z9wj+V$s;Dp;)`Dz!cnofgGZ6|<GHE7Ye2+$Y{_T;<L7&S>#nMq9n{+X6`UOD(huM1
z33-jhrzK+y^*I}}PshT~`Yd;skOv2Jf{u~c;k2z0TlEiu#Mh^7dg<|dlFYPu%%a;?
zR%SEy!5~}=r-N!+f*GYc2~m8Uu`a1qQ$KD=o~W&}!>{n{qy_nj#e-dSuB6fQk8we(
zJ2|A5GwP9}+1tYNC31U&E9}=F-mGPQ{J2ZI|7gzGk8Bwqz0&5mc|h1Qz^YwW=YqA4
z5RPR=d>A}&(^5!?Y5+wx{d}}){}zSk91I?EK7@P6doSqkllIHE|AqhQcUyU2ps0!(
z1tGF()3J^l-B)~<v;rOJ(XY%Rpc~kyaNOk&?dAH`9x3y3@BG_($^HeTA=kM)$A=-9
z<wOLA@{3vj21Z_d%Jbuz#6C9j;SsG+R7HF{LA1hU5e2?tK<CD09%fL|<|gUFqVsbB
z4#sC?^<)>*RT_&fxtC{WJT>?^)0?~EJ6D_6b|>q*cfnHGdl=TT$xeK^_By`ImxkIN
z*IGa}t?%(ypH9L85y%&ge7w(3?|@^XKTEPrl*7Dk8Q6Phw0QNej+6pg8{}P!MGYUL
zx+TAQ<n=3f?-@vz>jvwj`Q6&Cws@DylAKnc$0gpYHb(8neVVssOWDx~PDDMvJqU^;
zVL0+~>O!M=ZmXm^j+wA6!-R?6&g5Z+99*%-H<^x6j5IXt%imoa@Lvb(%@50`0-gfy
zuDC<_1=fnwrXCO@<V6hHN=H=!Au-fIj+)XMkLT*FL_P&Wbe|XVw<{q}5A@Xh2Um9Y
z+8^yZUR>0?h3kU-IS7NROjk}hav_^bjHBxOk<s8)AHMSD3Ng>w0jdCUPj9`TKXbOL
z8$#(Ea^&#tS|V!et&9q*@}^T$I<a>ne_Kk}ZkE1tNgwIFKpKPsb`(?yGWZ!@Ec_jx
zb$i>zb@rt_SQ-0I=NMksgeVu{7CF!xjbBXJoCv}yrCu$t=N-%!x90I~J_dTR2-URL
zD|zmGq_Ypkxz<muQrLtWs`)yRoeyLn87VI4Hj<>4_I=>Su?;(U;XWnD&PXC#vsk0i
zl6Y}Bl9a8>TzL};kxh}C2Go4n-H~Xr%oAeen>3_aP0T^q9N34>D!i+!3LaowWj0S)
zrK7|X5~@spPD%9&a141ok;fZVVXlaq;MxdEXgFK6ohy0Z$a!B%xJYN0@b=A}I9%5~
z0Tve;j%-BaSmw2?iOpqkn~}rKusOaJm*<1?8Mpvv(PAWGETd^BjGovMgQtUaL;SMm
zAxGLQEZFu-y}P6jA{;s&&*b(nZf-yL*fn_PQ)Y9|bwOZEIpby@np`G#Z~W1oq>Y@t
z6>V)>mg7aK_uM^=w65gSeU18*5^1dT;Kuj3fHVTT^`$^@1{+Qr433whVrdQZuiTNZ
zUM(L%a{$v(5cpcY*M$#o-qpks6SMAKKA>jVWg{&=<yaUuNYUySCF_=*-yYgEboKXr
zXN?jkB7dk89}w#;^!SL{(F?)A)W+emv-@mssbu&IrF<&vzDS(B>Yvz3iK~tn-y^M7
z8c(b@MEMkXJ1il)F$p>5kh`A>ilbPnNsmN1@zUvREizU8?AU?<d;3<Q!XgS`juRb`
z5iR(vwy|jfEpoBx8L8_Sv*#R4#?u6|9=VjQpM7nk+v?XtPdoQun;qx>QxMSJ`!Si?
zd93~B*UeWuT08AG|7bk#-(+FPbWfa`j$f6UT_pIP5myM<z}q0dx%&1`k>J#oKy}rz
zS@s-_&;Zu}|HcEBTjWb3D=Q24I}7tobEpE9(JcwA^mJqU26`1bIyw>(7WRLe#Ummj
z@)ZxS`tb{_%525^_nVuWn=<$}%j@gi!DaBUdbAQD;8Iiz&jR_<0oGkw4rsTu2*NkK
zFGO!YbARnqF|6sIVe{R`Z+jKtgp{TvL0!{0<nH*#we)6|C%mLr8hcWS4tAkCQ|19t
zo}-H&O@CM3JJ{pOIw#~a^8oLH?+#(l<^fBHzyVKvWwA`p-mZgSd>Hk35ytVAn}AL?
zG@PuY@VNYt!8#NzLXB7C#Ls*>Dh2w!Jq{L-zZ7;r8e&F=zzsJ1_-KhkN1_haVs^Tj
zT#djCu*h^E={x+1L3%atB;)f4m1-V5-`v$abidk4qAD$-I%eu~$*ycFs%<UFSqiE_
z!9wEzmzPy7j8me25M5nr==bx&<augtk3w`$Z+=cmXRc=Ei8!hvbUa)`LB2>=?2p4a
z{IbB<AtEa4oDX8a?dkF?bxJ?0{~K(ylA(_pyX*X7uMNNmvr0xsD_PEMl@bKn?85im
z<Eb%fhtjU<0_oC6gS~nJt*iZ7?<W7EFDwUD*A7z{)*#LHPAYfd`iO}fFyCt^G&jxd
zeIC6NfqTs_jET<SKniDJt{#*Wb=3V#UvkZ6MIVsg^JUA})YvpZjm@y7DJ&@_=00%}
z8HN;begiQYRPxQozIePYAo`M%8MSN6NJ>h+=6twmvThWWGl^_cN2r%YEt0O7UXKg;
z6e#>y(TV@t|AFRm_~DMHlw2+Swg*?Vw3wjjl?s2msWM)NtnPAdl&?SeJ>Z5|)ENw^
zPyRki6u|Y=3rf&*1KmHVIm>v|-QQs8s}?P&x~7@(388t5mB#(?TGZ>2RcwySix}RS
zx;^Vra-Ff5dEWWRrps;K>V5rErcyY=%*@?4I>PV4L&TAzlawzV5B3w&;h||0d!V9M
z8H^qs9Do!L5chp(+)FFWQ?Ep#5n0*&G<i0m_{CvOPN!tKt~5#Z>dLv}Zo^k94B?}y
zH6UMy6zd!7a57mChmR+~=E5vOprb42*faSzAW<iTqE9t{Li+^g{Yk>3%Z$s>Qp;NI
zdg?8+j8VP}SryBO#c`LvAjt<D-$i*8p3gXtcrsQ~?C15p>c*GV=)c<MGn025MZ!Uc
z73=Hti{D5|NUDGHSDMe|Q&E!9n-Jr<91z?S%_s07To>(M%`T^5sbw}Ga@I+D9LH$S
z355Nx?!GIki7xtAKLrFuK6(cM1pz@M(wj8ty+jB_YUsW94w2p=Gywsn_s~%~hTZ~%
zfRxaCui?h;u65Ua{lETS=IP9=Ju~~vnZ1AIIGBBSsMz6oJW!*x0!Mp4*~_>d|Jqz;
ze@77GsZf#j@1TslVp_^~5ezc&bc&mgtM6|2s8L)&zD~k@zdZBwceuv%>+y9eGd6*I
zmESf`rpNC><?^T1Veq2S<OcWi2@UO}bp6bQ7=Dh|D<*w^#M?4tVjMrJcGvdSQ`(;J
z54!{DqtXs^$+Qwc{+Cf0)TWI9r5s7>x_ubny5Mx>PL<HzT`sksDzd&f6XGwbG(0sc
znXtv<(RdoWgNGZB3{u>afVNP|8J&~6XZQuawH#<N6pB9uzNT*uKquYKutYJw_Ya@1
zpxx*jO(=5p|F2Jq<x0vfc)X$MkasRj8xn-D#1M&}=}_~w{abX-SOCd6Ye;44pE~y@
z%TIwz%f97tJ|r_cjDLEltPI9P1+}!WOH-It^@g&sq_k@|Pgb%Bl$_;+_?Le1PNSt*
z;_lI3=LJ`gONlB`V)=MaS+Y3;caY9;#4DzmO6$D%rW`<GMY{KTS(g;^@!0JRh5ZQt
zhU27p6uP0Jo~mNU?@i8OB(rjEn@)7vz|i=+K~u%z*?t*Q1^E`F8=7;rQ9W~+f>PA{
zD!{HPtGb#*R+R)G^WE}K6Aofc_MaO0HIUlGkyo32s)iF`T%A`983x57oXKs`MFF%_
zToU!1Z~GV)!<R1dRDGVWi0K49MQ$-7Dh~mq@)DTnHhXtRu;Wne*6@rAG+X+tZckg&
zR!pUpe+_-&YB_k#V1OpOHb?eG+1A<~4OxsE=nFbKmeX4&LMkf^ljC$Y%B_4O3gy1<
z8;U*kUGW}&4>6=fr#B@F>1%1!?v$g~7^qVdU2U8|9R?wLl1u&}fu3ra8CtY_dLi{S
zOBvzftsB%UEG~upSi?kb&y-=!BdaXJ$tJ8>(0gXBv+2ucoC7kJ+ssGwU`CTsEx2X<
z86<u5-1<iJC^O>o)I_X!>pJgwn1z1-8PVqJw~()Lzy4THd}mDatT|P}7bGBD!rJ`Z
z`SO>8!vMG0m$`V&T-4l;WIgv%vwzil7GK7Z`uNZwFE-&^XD=%p1_q;A>m19nN+|J5
zylIzX0O^d?e$nV@P8(ZY!xIkG<~GYRPVr31(nk`<g&Xl;nT{F`$w{`6zG+m=Mne55
zJK47?)8SSQgzcQ<MKNw|i9^nDcTP$~ny#DWmH>EB>gsRL{%<ZG#!QA_n9uf)jAf>#
zqE$gwrtV<$&qOaD5|f&nZlcc4{qCBCtd8kRZ1vD9#{_X>eg>16Mx0LI<V~@@(R7s^
z6rGUqlT_AejGO1b<3a*C49!-S?OxVb9N0jTn<rX>iB)@<0>AO>Z)g~XPIH=Vrl|BV
zIqh?qeBscHxILYwa1}sbnQ<@Fw|NaFO+t&=Wz%%ZT$!B{3Vx|1sYB%xkDxk@0x(Bs
zu3nF3#B*yt9daejk>WYiD?Qlt+a({=ZGpR0F{FpNmg=`>cEcpxx7CMA4`rV%;7Gn0
zrAGH5-Q|_+hqP6mx(LFyCZ*a7Xx;2{0102ezY3}8OCSF1@@*zE3BQQ_RWaH_GEA!)
zZb8J?aT-`7m)@JN-PNkGIp4MmVFQH}Ig<wMS^=E8Te5C?RHTr_85}QtoAQ7{!8zqx
zv2IA6=TNeN4AN@3G?N$JOHG?UCRFfkkG6!XyQ?`xygQ@mN#3LUlQJMK-XhIQsd+2%
z6m%(|yMxL%k}Itl>Z7tQ+J0?Y=Q>S!$A;(Z3}Gdpq~<H@^ia9q$+r<m0XCdL;zvjH
z;!Y`tH!7hQ=A$HiSduyX@Mn!hG%Iwh@TasMyx8$4#*jmdCY@BwetcU*x1X{~xCy+9
z`%y3t`uok4u!Gw+Z=>AktE<oJRoMYj_kSqv9@V9noBKWC3w}<NSApz|b^2(SkkIfV
z?}Oay$ZK=S#D<neF>#PgL1%!x+T}P`QE<uX*cSS!gW*iWI<tKunzB*RH!*cS&6XlP
z-bVRacHaDCt;!=~k+0RtZ)<zF3)Xb}{}$phew#>t4>SLxm2orMQqqVKRD@WOk3TUS
zUh|anYk}`wFZUsXorVzYlmU>OYJxk^yEC9QhL0F3;HUhmlt#pcRot&svD8s)x2?@{
z=`=zZS?1}yNgS>bT68Ke8ZgG26Wz0^LA6{?BnbGh?If#bt#ND?`Qq2KA!q1jD!R#)
zqtQZsC0^2cxWXY4=-8HZ_da6?uwMDevQBHiK2XxoMBB#t7#c2DQxZ>^$)S>~Pz*oX
zNZEHv$UIF_?#UAJG&56LUH7g_DkYWeJ*(+bz47`CAUUNijbgKZsFv(c_$~HUsqpP<
zRn-1oOF-<~%$fRUjN+B~IEIt@lIbM5Lsh_Z?cRr4#R+;Sl~|@PVCKRYSr|%*l5E4Z
zRAcr>QA^`i1K%{Q<?Wh5@UC{xKUo_1Fe>t;d(|m290tZRm*UFG5p7#&u3YNLe4=N~
zhnZHbDcGlkk~pY=4k&NeLR?XX5*(M9yp-+X?d}`FjsCRuvNAHoN$L&I0d_1_=`+iv
z@Dmafr}(K>{du0&X<<NxG~Z<8>p%6<tc1Thai5lyFzp8|e~Xo@+49&f++SO^#8Ec3
zhJq^!Twb*>uPa17KrbzQa|<1a2#G0f4|RX17In;Up_hMi+NKH0yS&`X0n-?b5;n79
zcjXz}zly1F88F$17`8-OjEof~a4Y9Y{@&KyDn%p-R{HkFgb;81`ZI@go6^p-&3=e`
zq6RY@ZLehMs|VVor(%j#j%nTPRm=H)R&e8=owLD7#XMpst*&BFMB6sDyXTeJo;@PN
zZmG3=%|EHZ`R{!vxkTSF9$FvphAG-jz5b&7Lur3olX1AWkG%qCaqjZX)GBfi^kq+=
zir>l6!A9N*5ZhO?M26+)^kW-N#12w_ngJzhbO8BcHJ3tE6%C!lQI7~sUMGkiAn0=Y
zQqQ$#@?(jT+;hgb*OnW~Po`T$Pr)i-`a)_%^n#};$}GQGq?ij=uD%QH%qAB0JGPp=
zy+FCf<V_sexKxSYP3o#m1YDM>o{D>{g#8+ij`cEK@e@n`A$*_sJ&sh@M>DT=joB&;
z$+eJHVtyU6&mbV^cdAJrcc8ZJZ!dZJCiY$)#j|n@#kmw*NH|^_Tb5Q!8uV8WPjo;y
zivJ60q4Cu4FFjahiQKyzY?V}rr}J51WXR~*kcm9nynzUgJKUTnW+mClvlln%UO3K~
zZY1~HAyDEr**STB%R}siT5Kx2k3fP);2QUZ7crF}hfn_|6O|4JZmOmHc)4)&Jvexp
zRCBt`=|Z$6xZ`4A4uarX#X`8$20rJ0z0dJ~xCInDM?QP!8AmVVvisaj#E@6erRPP-
z!y_|;=d=sY@#F1ehsF2T-0k<{2Y(h_N^tkvE3?@9Q6=?9`)A8dLGEYs$~6qcJ=P$B
z8Hvj^X6tKqkLt8Eg}M1|*9J*(affhF6vb*?t~8>Jqp6GbF58dU=e<wLJw%valill2
z76#o+A`0O}jAENPnwZOZh>~h$4b$K|jYMVOk=Cu&WsHKAqobXSx%}gCQgF-k)+wQ|
z*sE-vW)0Sj!Ldvs(s6E;v-kn98=Y)(2BVN&g5r#+bKs$U-k(ff{-#DX)2MNEx0R;g
z;9%++Vnsi{o5zd6BF|Q6v32d=DkD&AI=Nr5cD*%!b-79_<Sx(J4>sFmclggVX?bXo
zg2Q%LENu$E@k@cJwo&bGH|FiVUzTV;D4MJ48g-eR*dZFj*W=EYzWiLoJhbh|aq0kK
zu@AB5SXoN~*3RpJ+n3PLN48k7`ezwd&O+&emCm=c2s1r!i@d(R&Jq|j{QL}C0v~c<
z-GsxP1nG>8m$0ZDD>l|$@vsE%msc+kCdT#19md;8EUi5liB-%z`HQLKIGwT6m__tq
zPX7NY8;e0Z{Ew>j2M@l|{$Hr(g8)`Qjm2;NUf{|{9|W>BE7&G61%Yz?bN}KxmyXzO
z3wVmH4-Nlf`4*a1XZjq|{jp={_j;`+Kh@s>2M@ch6t_)ti{p2-_EvjatT_xAK964a
zc+K1i)6mf9?ZjGH+t?L%GTnI|rJV(4!tBOdHxpoXt2Z-PNTkj7gP^g({FpJQwDgl4
z9!)KvjuN{G(`fSP;R=nnEcq)O3mrb{Ek5eut4_an@r2T^cYo({nxJkzAJI2Ij8M~9
zQE5l8`h^Y^I?x~ew%7wE+@RQ8_39!weWK^T&yedCl@_;|PAcp+mGO+ds0N2`kIr8b
zZ82l<1Wha+RI&@D1|R75t<x=_60&q?Ne6|hlaJWv8j5yXgv>f);Me%9_%V9#{eqsQ
z&2wC<=Uw&mv9(gr7KuKuYJ+->*YgW38>`|+I-6cDBz?g(owZfthsZ5_^%d9S>p`ji
zLKE1~ZbMY8Dt>@<)>1QJ?^&jLmc>OL!@vQCmYV^vf^}B9;4uSWFWSYs=w&iLK_p>9
zx7Lf?gqL1SQvD%b*(CgwPzGxa+N;3ZHUdYQu8}*z8~HySvK!2soWq1tl|gG`6KH)C
z;ip_QShdBu7q@sG{D<^r+QQ*QRW$bPWIbHor7Mr_YTcFdKlzrvp};k4Bp6-?Oh00W
zwP*xPhSV72GG5MximY7Ze<$4-mLp_f>%rKt#FCCr0w&5D^AJgkV*vy82s#lN1H@W6
z=8#-?*1A+w8a)<np(Q6)Asf%H#`m9BZ*0M#iJ<vZN)dR(0oi7A)D?;mTwgVu^z_yq
z^L{})O`K!7U+rPgX|WRn<2G(vA{BYd@h&r7)lL%m(H~%JxFnR3qltse$mZprOg1Xt
zNEo{ObA3@PF7UpS8TL8Jo&Ssf=RO(1T^$lvqX_mV@Q~);Z-xu|lEF&V5TEa|_GHiZ
zxm0PVr%FyjiQabpD@_uYRcF(>xd2E+AH}U3mZ#o3L(-)XFSG$E6slS?awN#~6!7Z<
z36>un0q`lKr;BymU5aY=SY`?AVb`2c^Gb9$Ka9GSbymXn$n6%<!)fAIZR4RL_%!mo
z7ofV<=sj^Ivz8B-W+u%s!bEo1GSL4HS<QMyvN~I^_zR8mNbWl+UcW<7S58p-$>BRP
zwl=IwsUpS(q%6h55<n9ZxDl5(B=}A+8ED~<8wS(43p9YJj~qxN0iCoSPDig=7Cans
z=1a?XJcH`-cUaH*CqnRVtXC}COqgQ~!L}S?<rQC>^0ow7nU{=5zl#0$1PCz}?2AqN
z#?1pfKRpo!*@xHLMik#PY65R-XdGKUm4!a_X(zjmR<gL8#Rw*g&d8kt)7x$zvS@Ev
z4OqZWFDjzH?9PT`?GrKF*vTPh<^S~loyYtiW3Q5Uib|~^Dv5-nUy^~f+R^cly{^GG
zk4Vl6h{87x>Hg87%9D`SAd8O+{*~W%8tE|_t@4FEilN>~!g=b7(7>APD=bLCi;tAi
zq|?b7<a9Qb-n8tdVsJ1QtMqLQXdb}*k7G36eQ-P~v3)}fzTk<VBNg?vl@8Q(4E?De
z_Kz<l$E>}Y<21P-7Hgt3noCMMBD2W_u_%OaZ<;NLF=8A~UnRRnfZv+0TJx#I*MBE;
zkSI+b&rAmI<C)=&P_v10o=5K*O=|VW&&jRP8H-j&H*~Ryz701j{n*QLy_}r&c$;&6
zqYDiU>6cJ>MH1Cq@($C!T~HQ>Xx#VjX~A}#vmRh4QvP0!pR9*T#mX<STcjosgdSw5
zJGPK5yJG;H!#{BnNf1j_eqQz-s=5dDTpGwrjo8ZN`hW2gWBi<Vwt7u0ROsF0JU@eX
z^_}U*h2zWPq@{a#+m9Ep;kgaH3whu7$z!i^Q$_Znt$PeMs;+Lsy^+@CarDTD=*{=8
zExcZ!!=3xIKf?u$Ll@$uzZ+B1Mbx^e;@)ieiV+rN{J^|+NjsC0&C`@vmTuphnY(G<
zc^gG!%6yvCLPoq69EymiO@NG*K9qI}4?B|7vj?&*)yjU{p=<(AQZOCB4$|saQFN@!
zwRhaJnJKBZO|@kWF3yepouiQvKqiN(DuvNEd;OPTDJ=DEo}DSeYkO;?&V~vYv7G`i
z{i6pzmmXtbs6kSYHvJ#Cu&{c-#m8}65B4f8mk>Hquc4F2(-#$kWCS<gw7+(#mrN<9
zY?-y&BDk@D2e35T%`)0iBv3xkF$*}Jn<Fx^z}CNW9;O_@bTPU+-z@Tt3fZMs#y_5@
z=QN}WDB%o+@hPhaTgElF_-4f#-{d!GI$m(&$qDoaY0o^GZbr`KB9?4>`oJtr5gTaS
zg#&f<@kLat2km0MeHW;4U~hf!@|@ij#K=1~Y^~H}n+{YYchIM_O<nQ7C>m>h(lFm}
zrW|=G>+89<;5&y8Isj8Xd~hg$T?ZAR;b>~oNT>6IpB|iq`~(fDb(V3~6lvocKDak$
zT5sLYn$^>Iq#-B=F}=uK^b(?g0k7rB1I*H5d%v#t%tN}s5`cM6V3c%Y&_4tK=s;0Z
z3}NHH6u6u+{TAG@DMobF4hG+trI}S>ZgEO(AtWYGqUiNL(|j8K_c3lrb)wN%E}ogR
z#+1nmv5T9Abi|U-0o)>ULR>!#(3zKTEIN84S`ry}xh|H?P)oVI8+<fLu0q;x0KNTs
zYXjx^UFY16wMRM(gkWh(U;nQD|631Vfy-`|VcpAC5zorWZ;t8zIx$`AjxL{ii4qbL
zPQbIX>A0kEc~fPZ%^h2`h*ckaSlVXF)}^U1BDfjSLGUjOtP=H-4%W*s|8Yf@2^`{d
zakGex<?JUcW$D=xg_#+pJH+1ni~Vgnt;h<W<cXP?(Zyf;p;a=HC-Jsbgtw)&b!TVC
zLW6q{cg~VA!3MXWWXS+2k*sr+Y=3|wv8Zay)8;(gW=2TNUTJhUQebRHgyUC}!Y)t;
zzu0;>dKS4&iX~}{!F-;Sm}_1GK_E^L7EH26tK;%kl$9md*flYzqNd5kIHR*{NNbtY
zJxy(UeT`ruWU*{oKeTzN@voDMg;vGwJ#DXj`{Sz+F6;0Ybf?870o_~pJ*)W5#;JSD
zAFhpN_MZN3w_SJR{o^c*65p}mCEgh(<iKjf%XP7Gy3MhC7TEN7p`7R5yoE%5R-~3b
zpXCr0e*SJ206cQKHCX}RP5AL_Ey*sy{yf;j({uOR8-A!IEQO2W#CHK7(6BAiZLaZV
z)~m^X^rE7sn2<`ahe51%4MqK^L0}}4aett52i}cmL6L`ad6T+rHw(i`C^@+uH?8I_
zynQ_!Rd}Y&MDW=jm^VP7G?CrT=*9_m!(;2ekpTR!A_5U9RRYG89qRpgh|x6JJxn$j
zSoPFBD-a}hWsB1Z;}2ArRL!!)$X9e_=6d8TP92OFWpY~Xf3CP?sk6Rt)xVdk8fd$M
zLHWDh7v8<Mmv&dCF!DFOobWtF6Im}UIw=&VbKLv16m3v?{EdPSzvNbB(Fdd;g04ga
zNVVgaEU4>0y5g87M-;mZ(#+z8EfdI*O!O3!I;wepT^eXpDFe^LveF2;v&FQL&NI&*
zhx7&4j>d3qE6SL%i)1sVQWE;x7<w|#*ayt2(GuI<hVolQSQm%XOqBs}M+3_S1?xXD
znD3g!-|iy%TUN2ou^3-$R@CaJg#!}hl{0uGrKYE+Q}gm9tS4UX#5^;fpPOS(HxIR|
zBckF4?)|!`3e!CDDzWzH?EFY;sGTNqSX4+qBMG0nX@F&+FSs`_c}sUrkOnWV>`+&@
zW{p+4_j%p?fHph}%Kv-*uuQKz`WuYeed9UNOnoZ3Pj!i}Di&AMQ+bzd&kzr%q2>l>
z@m*K3hhfuSo8y&x{h}skO-fBdu=3y3zpW9#Yxc9;<JZd;tHSa^)p0pJcZxA=)S`T_
z&zO+5;CZpgg7xjeN8;(pSr;gs!Jj70DZuQ`GgRN!g*EbR24&+0VaBZ{Yc?PB9OuV@
zpbG7Ki}Qkzkk+;FbCGoMcWXyN-b#Vh>d*J>W4(Q^pW*%&+pBENVb@nmGpq#xKi1dN
zjmvHjdv+&RZRgdVQ(bd2GprC{mo<4EozydEMFKQe$n_%yIte?QM$SD@lyQ7BDVXY}
z@73Q|tjsvJU42+g+KcP!o0`6RZFEc~232wHzvj%jXzwlK_RL6+yR&pyT;O7}fg`xF
zSe2bnbJ=d}T|kupm5srbR3<Sb)3A>-nz9Pj;W!MCPTRHS3r&TmkyDbB=}rl<bmU63
zL}7W%x?1=pEc4DDLB-_u?Vq7XddBo8@lHJlO7}q#{Tt4L&pHuX$G9RSTuYbN(lzn}
z;!{rvmdPAo$elCA7hGF;D?_(IUu3c08Q&e97C1dYcsOFU7MOkhWz^Q*1J{CvVA~~r
z`=|tg;;xcdn?RTMJ06UOGIfqJE;Kt_)xC<=edG6Wa(_G-rMkKu+Uk229QZfIpqhfA
z%UWvU7*mD)Y9dj~Uz_;umVf%SEbSK?(OU}>zwbEv$PZ?lKi_uo+1@On91(+-sBt7P
zXu6C2WvmNmZf;H};MS`w9s7Z}RS?%3?m(YkKHo=ae)?okZKo&weG<8vWhL>K$gQhI
zxN+&Yo|Q9fOvkqu&X!kMcAdk&xxA70HuJp{(yMQQ_dYl=oK_hi=)6)d^Tv*G8wc$~
z(9Pp!sP=M#(e{P;i%DAJ{C4+mIa{<t>I2s);yVA`f~lZd4CeQcRr=g%KZ#1~h2r+*
zVNLk)3t!_UzblusYP=HFyP2_*;Ljto{VU@jx{+O3!G|x(euSOWPU_vm5sgAQEdogk
zm!@02PPJDD=*bc^X0xJ`F7OWhh_ZV*8qa9Xsm*UV#NAh%XWsXw5`;~_0UC~FvI$ib
zjS$K~XlBOY(oY<gFY*j5oMOMH+HKO*)?QVNt@(q>^QlHae<|3txXZW3EZGkdra3q{
zk@MHvEI}CQ=aH*_eubWsGGj-IWWv!{g|)D2s}2x|RFm&wXSyT9o)FYgq@XX}3(cBj
pWFva;!MNrgq=Mb<2QYcd_M`%$dceERi>=HbD9EbHR7!mg`9A<@Q2qb_

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-policy-rule-options-UI.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-wizard-supplemental-policy-rule-options-UI.png
new file mode 100644
index 0000000000000000000000000000000000000000..53b924fcd9c1b8d764cbaa12ee7fac6805c47ad7
GIT binary patch
literal 59172
zcmc$EV{~Ofvv!<`jfrjBwlPU2wryJzJDDUWwr$(CZQIGsy!Wo}&;57*d}pn5cJ0%>
zd+)C9UG>yc6{a934hM||4Fm)PCn+JK1Ox<P1_T6b{{!UvABpz9>F)!uqmsA~P~{}f
z$@dAEsi3SN5Kv7F%)37L_c@fEgt{XT5VF(1FYu-bz8etGVT+`Q;4e3w^9*n|Z1L40
zXWgqx*Ncq@kEO@aaoIJJ0v4?wj)49!&aggM7lS{BCMG6{R?`1|QxzL&l1T&4KTKSf
z<aV>?Sm4I5QinWDU0muHFUNg1Q&+U1Lj(vAe}L^~3igKmllplC{+H04VCU13lgLmA
z36BB+;{V-Ep0f!}F6&PZMwjK;`4EFS^5SP!Nsi+_1lYgkOamKgKoyNSq^2t%&fvGS
zR3aVQhL}w^1BNeq@AaJ%5p0#-)XX5}oF6g~SE!u_iTMU|$)?&PCDm120yRo3<x;}F
z&*1#m;uh=JFJE=11E8NRZ~?DD+wC??4hTlCC&MEb^-x5(H!nmMQzKTGWapBq3nhWj
zZ7#Sc#JkLYxNd9HT2L}l3oFBnW-ET=dC1BL6SJ)+aD&5f_4!s)uC0^eiCy~F&traK
zniGG|nRv2piqCU@7)b?3@BM(@myrFP4Umy>ad9#7BSc+Y-QCSCHg3(4d&fz=?C<SN
zA(X5&F|4ISSSmq+y&U~}C4^6SW}ZT=-ric*<xw8P4%@lHs-(u#IGeG1uY%hRf93^p
zZ)T3inT_piJ189A?WJ+PH+H#GlUE1eJ-2N)uV$xK7o0%@d(`Hc(`J8Ev0+W}Mj(E(
z;7_Z%CO_04lcgo;MifdgP)dlj9TlVfM~;gP^ab!}p~hIDn{voeN`=+z0GQ*B+`N)S
z`!YGG?=|2FFf%iYMW5X1L$CswSzTS7nL)y2V`B@lSF@o7NI%_ID4g#veZEgre(tG3
z)Gixw3Ht8aM~zFC4?jN_)Q$FJV9vRO${$H2ruon<Znu8CT@)?)JnKfxD$4xod|s=P
zJLi{p!LtArHe9ku0^RaztCsom@j4bmFkrIRRS&~JBd^IG?d~>a5}d?85VNi8r+*8H
zDgi_N;R16EA9<db!r$ST;e$-RCVa6)?-Ms2XzXcDmBsUNH)=>Qx9a-ocsO3e-lYL!
zRRzOut;*SKePDX3Ux7KeT0!6|Wz%7Eu3$ObL&`t41~JiEs&YF-<S-FKUaKea`NogW
z<NO&q#Sd?jg*P$#Wwx-m7wYO;e*&9{!cmPzy=0camVb40l~Rnm+@K(cA=2pcetVNJ
zw53@uIBrbmb#&mI!gJauNB<!?8Ml~tX6I4R-aBi&rHGxMs|C|h3}N7_nigj6K+iB)
zOi8}1qthX-zjAxkcQ%mgW%=<8uUNRVGHn67XRXy}6|*iSE<Fb~Xisn#M@zk$Z|AC$
zIZ>lWwutWXybDEogk$AbGr**+VdTzO9+J9U?s2^T^(izng(Kt4<9K}BW80Jo)&_Vz
zc#y?*Zd;a3_t9`W?(XsR?F!+Aj}Rh2`~x}sc(Df6g_xb2o14wB_V<fSE;Hz2nI_wA
z)&ueR?d|J!jGmB?(CFP}U5LXntwv%C7keSSbA{F6S3(@R_edUKoke)0^a8$;Jo?7}
zsl-Y^WlJSUKX7KqN~*@ANqbY4K=_Uht!r8sG6%}Z_zE4i>_asA+SfDj(W6LbC6zN;
zJ!{oVl6>Rf{zgCYZDR~SVAiBXj>9w2b@esl-8pJ>Wh_mc?-`Gy>f?0i1atB8)G<qI
zc0uzCiZmZod1y*@y5}QlPxiF!CT<^kXirglKB4Qq-0rmYaE4y>q5^^UN{I`KeP>?-
z=SSeEO8tin=Cgu=MksmAxsEA|l3sz}6;K=r+`%7{^^Wrh&D=u-I2_Y~4e(}cK)ySb
zE{}_hIevBC6b@aiK{VHqAbTF?eZDr{@JzFLI_r374Z`qBjr4hySVHdzz0<qJK*&T_
zxdYVAN`=6^{qm`UOP{eE#0_q|kmg)H-s%c2iyLZe9dsyz<iI8j3sW?!^+qX%fw=-L
z8W!GcIP1(Gi!^kMm9wC|qVV)=52R0JOtKb_lkp`OUyuQS@&?SVIRu8X$2P<SbDM|A
z^tToLBc3I$&C!HYtXZ-C8eyR+n${~%mBD{m-bCNO0XSQ(y1jcO7Wd2P6h9#!nCLz(
z6x=CyOoFiiu9>Znx_mub6hP@?yIKp8yu-M<?KRwRNXM<Y0pyuZt&%~}o=*YzJh9}5
z_P5+<^CM8%UWE5!m{2`#9bSu1LRd3Ia2V7}-3U<AN3{zvB?|SFLzDD;ra&DAoKL79
zoBQe=-cV+68`s#7cj1cfe?64M#vxs|Rrx%1_YjLmXSkW(U?HlguK1BRRc!4H)7MWM
zIr&R;=Xguf7=SsM-Sk#812e9*(jk0F?$QB<Q6%Z{g0}Fy4CJ9<nA_|?nkQrl$$7$u
zx_vvGs0jgm7Ti`<7;@`-{X<U1q+^X5yXJk6F3aQ4Md}_gQ=c2=JYFy%!RZ#dT=o2g
z&WVwRe|v&2G#7sP=~viWtV}itRJgl0a{byaGQei*bIN|)>V$$E;dP2(9WhdiE|mfG
z?9!s)yDPKTfQKRn@psd5%MZ19$|%unX_EOgy08d-9SafUr(CpN(?we6s&GNiS_BY&
z&IcgCEBGs#wtXH<Oea~v{hFQ{7^U@nEQYLU7p0E$^YVG_Q6rzsD)6d@CIQFQX^=YT
zUd>8T+o?R@r$j}+UXJwL%vBDGD)4SovX6N$986Vj;-%KzD)LaU4t;0S*0KRt(QSW=
zj=x2p(^K#mDYTv>n2>g#kpdscYU<6=c$rXGIB%qtPSUdx?^-K%6VU$%*w~b@D!nOt
z+EV$oX(4D`;j(q1AQ3GWy~N?$gt4RsJJwoz?$!R=@D1iIF~<9KWJr|wZ~pM(9BElJ
zp4Qg|og)!~z%1g+2&8UFDHSdwO#k4T@8=`8F)QcG7@c0iDBH60^)D^#jR;c9D{ZgY
z#&ydsYcfcZS^BHrgjLP@7o|MtgOW3x*dW1h(-^)lRzEmXewNi)4&Vhxov9wc>H%0f
zVCu=fEnrKv2JG4U&77;Ntv0qQcU072dxzcCL)~BFXips-XEaRS`@63fWEZ~QB@i0-
zY-%qUy00E@glNIjy{*ies?=E=Z!?}-4SKb6x0=}s(F-5X2N<D~fX}A@(htYOXrynz
zqIjUFi^Iamc_E9NO$IMoWVbgPDxCYeVOhm#Ax{PQWJ^K|dlt38AVr$e#YZHg)=ar_
z5R3E=pS;_zd)QCo+}~xr8<X7B5Y~MHs!55<Ql-W4fCsr8U9y-7iGO@|d=_pY-x2wT
zjz9$cf>8e9o<HvYTM$6voB08DT;uTX8n;-5*G#k4wxb(Z*MIjSxP&&|4l8WJ;8Q{P
z&j66%$a4Q_I0XLxBTR1jmEVou2wSw$8Qmj@Ondaqy8|M5giyuTJdIfr{%OdK$Za)P
zd0xQxj1#)&ErLDi;cghtwFv3FR^{a07-8y(GO-ChByI#DdB$OP`3Jy(d-$HyX+Zh&
zp6>ZQQ^;Mv2s_RtCXtIep+I+tIm;q8-4|Q6?XzjyfaPaPT*$Zpb(IWLz_&VM5ab)|
zMzMtaBmnSq<hg9*`%f$ANRQg)x7@d{ShP&HZ;U#UIqzjK?BFMZ+h%jGH^Vp{36x*&
zG9qG^D1}=&O+M`+Vt9zrqgP+qDB@x^B&t_MzO=1EV*eoR%}xpW<c6&hdR90Q@e<>T
zqVxN4oOH_gFh|o)y)j~lJ#0*wE}OhRWxQMq{-)36!_`zK=T8leSPUCHMK(Xvf%kHm
z1qAa0j3O*9NIx@^Z2R9(CC*MqjwKVwu!h<khVZ#~udS6(&UT<xYv=on&Ttc0m#C3C
z2&j`?7%_1*pjQg}TGZJKQ#{V^&jS&I`|!<na(cf7gH-hRa_W9dR!@Wphr$W(k-0yZ
zP5{D01i<?iX)n<Gic%Lnb=BPxBN6{VSWf{Iy6kEaNrPuba;OLC@-Vj^*Tc##%?Sjj
zW4+#|Kj&NVnpM^-439auChEHEUIRMeWC(+q@i52ZgP2XHaQR(W7)mik$V1N>>0hsO
zbw5AL2hCyHDP($Gcp$sVvY*&pfc`1#>A)OaZV?7G9I{etX%5i^nZqTN#R=i+1q5@0
zpd=kQva91Ir?7DodrG;J6E{k~ug%x%=&H&aCWyII!_6JdIFNY0PGw3d^UI*_F{zGv
z^Mil1tV|$$&|y?VlLF1J!&X^N6v6N}E5*fDReR^zc2D=Ze;BkHq6$Zu`{y{H9z(0m
zyc`8!YAGQu?uY`l2rDwf18x5oXPL8%JtKpKSWj0xL=eh8!|$(kradb?8t<PtH&1CA
ztLYdWRW|3hw$P*?pX5L{(x~C46@UL|P2ub${(AN6J&4wAw?mIUcx4CDwt;{+kf#UC
zw%%VdCr+XJzMh)$n`f@T%o1t(zhm@ORJHrO=04sweG0nU6I1kyJ_O=dlKAhv?H7EF
zlmX^vTduK!Zx7@kt=c_@43s#m-=zz=a=R-v5wg16<j^qbNQwIy|AkP*!*etM>+C2x
zAiQn3$WFl=4)$0i+l41SRjA(P64X%)k?`{V<l9k%?qWy&=T9tRqMO^PDJn46hSy?6
zozF0do-{AYD;mfwwMD+BjZ_?H)wjr8q@kW_Ea(IL1rg+F4QOy^+)0Lqee5mE1f&4_
z*wosidH0RFqfc<JsfHuL)fCilMc@*zdFF_%^;5qv7|O4JUh~eoqzO9K55*&juP4qp
z|L(o+wJWQ7FbL{}bNZ`ta^xchagHV)`7q?zMh@Al1^P)~{uCki5~!~M4PutBn;tSR
z;=&tT(UmsfghWM(sz)Tr<?cIFDIV-Q#V@x@g$uVH{>^91d-&OL_O6=sAc?i7QD$If
z;ptkUv6L-U;(s>v=GdP{j!B4UJV)V^vkjz(^nQH{ol1{bJ<*qjNJ%W>oYGcUt#(=G
z<U%EX7<lJb#PJjF>x)6K0FkKHxqy2*>LhOe_9<NN%M(>^P2$2A?vFj^_Y)X!uRhoy
zyG$O>*L>CAJSc?{(*Bq6ZJ?$cs$VVgi-rJ)QJ8$Y%WJDYv(Gzo)|Vm>0Vl6|qgk84
zArFtHuH33fVUEp$97St7FDUjR%wE+feGrts?sf1S&6tC*OKy8G&OFqGE#VH`T|Y4<
zzf`BpE<B(I%JrDGhl~0ZtOKeJm%d1)bK6^gh3MD3T7Er&G7hagTy721l6<|Ho7iD}
zTYfyw%uCM6CW@`ejJ<Nm3m0N@!{B7k&zBAJ$OJ)mAHp~yy85;PyV9TsMwVos*1j-_
z)KYu$Amz6dQ}z{9<S_BBPBK7}02hJqSKd2X7GXOaJM027Lk|-A#JY#lh5hr(R3d}m
zN%>IAL`JGj_2WT7w_rPPi?5>0&l>vAt+)Ny3)%H!dk6kp9yQ@r=Ex=GO!qwWtblTa
zw&zz2$m?G+h6m+#om%Y75bvON>t&2xeOcuU6Sz{-ISQNkXz;yoC`n&#Z^YRVupPR(
zABy->)W0QOOm|ppi2m*PDP>x~objbV&}2xgaLHwwr+iS8xtILQ6_){Q@*P&N16fFD
zjlmTaz!Q|KpHht?@#qJd6HiO<?IwNq51!8BR8dnu##Ph@1n2`P=qs_E{(E2V%vy=0
zYEOrAm3iCt)cwH$L9mo$#m~lfA{%Ia&*a?GrRbZwFitrFz}fj|bsWjHZ*a1`;HX}B
zYAc`CbmBoa2r>r6THlAw03b&LyJd+Ie+(&;wrpNlasj-L>xu+0>i~U_N~DDofr|jr
zgw$MUV}W1EGG+<G``M)Sxb4n}@^VG-rT*hHhe*8O%hQoQ?zr-n@L)r>-*=?sQ8}JH
ztKa&cvjlT54MriLyYW18C!mOZO17oJ4luVw?~u$NJ_+uVk@ZI%J)7=k@F@g7Q0Lf6
zwQfFHp_fDaUeMg~Mk?TtqZi};=u+%`3jFQ6j09fl>zU=J1E=H;Sx!0J-a=`?`s*}w
zIrY&GFh>C$hMf4lR+2nX0#?sUCA^VIG<;-ktM+Yh6s{B0QD6UI^Qv5$S=kUMb9j1W
zP6}Ta%7F#gGe}6Gj*PA_eJHgh1)T(PVh*`c>|rK~sS}8#-N{R4<L8V@w9V76r&$*s
z43}f(QI{hP8I6bYx<rgD!rL$QB5aGwk;5Z?4p8scjk3>xqOXzVW8{M@`nnw-Z_7=8
zNqR3&Xb~@Xn?7cs&(a<L%d2n56hkN9X7{O+sL^>{fNai>B_Y*LX<JE1+y&X^-aYmn
z=wtIwb8ZAXUVgv2?wgwC=jl%~l_7l+MDg5BkB9?SLlYYc-HrC2^cW(9+#7c{v)Y6H
z;RSLD4t$c-`(ouHIlRUBa*TM&80bCTqG;?r(EKj!T^m~7h#u@B!+-d21oR)+|GwxB
z=>H^apP)^KeJWLqrD05E@w(p{vE9hDVw*?s$mS?G3^JskKwk8Y4$pHFS&c1p=G*VA
zugsasg_^9t?p%~nB$}d6c!O~NyFVUArp^v3+6suamh1KC<<%Atg!iF$Y~4M{ssDW~
zB~7mgKTk)nOb0Qqy;?Wjn*8y(_A4I4I@M9<1q#6v)xksqgb~=kdBkALSJ_1;w*Xm>
z`CT0aR3R(FV&hD*K|t)&XVuFYo;!K#EgCK#9#PU)FhaciN^TdjN>Nq>_qE=pmfP;6
zrYGAKHTa+uBM9%>tpmdhE%|t7(bmiVQNxn4fI3<yAo0{G=x!NEIZW8~tgDC8&Dwy0
zUGnwkj{-%`1+%T3;6KNfH#A2F(2UX1e!6k&#!Pth>%x|~>nTK=Qqp;r4AnG)RPwXC
z^a;K#D7Eb#v871#mENh0zn{#({mO0c8Y_vYl+0=8db^GPM5XBPocuXV@BY2Io|t{h
zKMM&+<-^f_U*;-o0>}Rdx>I&<+J+gUOvK1&2U+wH$a%MHNg7Q-9p%614QH^bPGS{A
z5B=83AMuzXZ4UNga{#Y*Joql)7a}Wt2z>y{`Zer<w6V)3>yB14zku)1SR(k6j+@e%
z<6of{qmQM;m`C*lN#@>?QV5p#S}n*<xib0{#AOvs)r(>VYJe_<TN+iT_{&fznaSbd
zH<9`Yg~_&4*?_SRc3kv;R6zI-Fd^-mXYEC{+q^+<yYn@5D;xnyY#D3zj0Fid2;8xK
zX57A_bNf`n{i)=2Qxx{zs4B{1lzFE5qfEiLL`!oTHU~^ufT?;_0S3!?##BxTgjtrv
z!sh)#6nwkN5n}y@agfw-*iJ;TwkCh3o`&^RtzS1<1@nvU=UZwPc$h|5la9*27vhh&
ze~}so`K$C4fJ2F0NDS(nWeT6$Wt=$^%1Y4k@WfC<7*njFT@M3VcbIh{&hhoQM)(vG
z8;s#DX~DO^s}#24XOK0gX|%2dcCbrv=Oyq0iZ-Sya-r*Ut+b)}`N`O$GNxGFOg+?i
z2&V`1Bp$EJ`5zCFpQgFYSNBMWoLJfe!Ri0vqnqN}d*~xuquhQZw@}EB^bwAKTR#&%
z*6!OofPpX~{NIE_LO@_(pi+sGl@%<e(JV2-e}_ywzb{odR;<{DI}8TGNu`s4go*s=
z$9ElC_7BexC5`ji^?UJl!;K8{f<8k3CtgEH_C%J8lK}hte3|ks+~)auzxyUdyMG`c
zWaVWDuqN>rSvk`{tU~>&Ta-__y+kkBN0^&jgDT4B)z;t2BqpEA;_}c-S+5}!Jg6<e
z7_q+Vk(S-)CoML$N{iegt_`<NuaJ0)BRn6sInsJ=esf21x6cxOefJ=TwI)5wmt(rs
zGgJOu_SU^cnPBexZea%ZvxWW^cgo^L^<PYS^UVzIfTezucz!aUcUfQO-=E7%pOb<V
zJKzEaOjx`a@xwmgUU!3UdQ|5i$c`;2<NeHllmK9r={JqO5@ckC=#jgeXaypV4D*7L
zFpY&~Cjdpmh7r?KZiTLR`r&9A!z}I_D9D7sZrONV-5vF^<9jc{Yd#56SXxVM{%J2_
zN%5=}6Ni*-ss<m*TqSxHXEnyW>Au8!^eN|Lt?dlrWu%!2PcxMD=xN#7RKX>d_9QjM
z=<YZh1beRK{FlWS6ueS{uIoaUmDL}@#a{cL#p0n{7v&IyXJuv0j+2s-s;H<4()nhf
zOUueYh2`YnjR@*?5qsT<(yVNnPg<vZ@>qiP;b5r^woLg~Ss9{OgK=`+Pkj5!(q+92
z`Mi*@AaRvQ;u&2)GrYR)n6DUC=FSOg_uuv=ds9oBPAp*Uizjs7&+<Bk5PTm778PN~
zZWopKeBPIEk9N2R?cNvE=r)|a7PxIS51$MTX}ijG+KqP9<|{`;czF-3E#P`TvoL&f
z@;klfp0+-nIN|rN3Nkkg!F4a7e(>Flv6m%zdjou4)j>tPA8n&b==faIR51-poX(fi
zaE}CYUk8mXPQ~H1S_=#LAV$e20osp!c$A9|BX{@|S92!PkP8S@#Ww2}X>4zP>&XbZ
z&(F{H3$A?N<hfsUzU@`@YMv6kTp+d9t0wX50*AeY(bn2IUe|xpASiUb%)a;*Cb)6N
zupU(Df8U?6F+VvGDVGlTqiG^ke!LsvdSqB-KR?d|o~|td9Ow@*xIU^C&Clc=3Jl7_
zZ91N=ci=ST{xH(a=v~!jv?cr2ba#0j_T1-buPu4k?G9bxMEo9Lv$*o9Q}?;J{XpN>
z?0jiJvi-P|4Hgc$6btRr>D2bw2>&=7!DMr}tqwS4<J=f#B1+HBe0=2JTrbI<8PLz*
zuPkrXo@A&g7?-`7sB*#CY`pJS;HJyudHh(y_85FqYkwH&*@NVNw(CGNG%sya2BpL2
zcXqi5*KQ$=l>huVgb$9e?h{TUSNY|7*@-HY8Bx=kUFGt(+m_Nkr42^~HK)U7Ee)KX
z+HiR|x<Crq?zAHMEOf_~XsCKrpkfNWVyo@NRCHswWTx>>JPF}y#bud^Q^+$y&Io2W
z`*E%+aPRM<Iog8u?U6TgSO*X-;~`9P)r<QX9^^)yu5X+ERwL_eiV&krY2!nBmXAi|
zPep%L@z3Y8Xx{XF!!%BBaKW~xtF2baj9{q7&X38}k5DzA1|~<l$64WTw~XV8JQ)@i
z_Vsb)E6|IKjI5=#ZCPzn)6^s{Ee$&8`}L+<@=NN{52k4G5#bLHSXBjQpnjk)a9e#(
zO}#X~QYQ~8TVk&C%T#WTxy)a4k#D*Kr~dakD)fQ!bbr?qY=Op)nDT|M^)6o?QarSH
z(JhQ8D!|-A(9lnNFZoHkwb_);+4kJ0hb>AxR)KrMPw~fmL1#0K)&UX?OEr>vBCN%8
z=SWsoZdWbwz3ta-EQflRtyY!otGJD|XAztqN0h-}$MFre8^thuy_2PdtiQB5^V(kX
zNHLtNyzZ{PU@C2&Z?f?JDmvbr*WK%Ox>>w<X63V~l%2DI+&B?0WVzrha@L*kU)d0L
z!CJ<zxuAJXPhRCDrxaf@g1I!l_%E!@J5OHvJj`u?OZsrTp5Mxcsef+8zzH*Lt40Kt
zHR8>4wjD)*Lo+UNDatNknH}4+1q8e$S8+k-swk2b#f*M6>yR&;oHy}b^yoSd>fSA?
z6*W|qyX|qlmB$BSXY2kob)MLhVO4RS0LG2+zi5*|#%T~L9rPEvP<J#KjJi<X$bsX_
z9#RLEYmsmcRc+1M9CaS$IzrR&@J91l1^%$$rVEUb%8D5CRhe(eem)#ZKaL&*Ce>>*
z`Z8Ib8m{FyOpAB)LKsiB^zNnP+nXh1*Go6c&}y>NSI~L+3H~hlAh;^6b~V?M{eJu9
z^Vj<%vd158Typ#**I|!B+#AlT$D-!L_$u<<kbBCnkJhQpYQl`jK`4efBUnG7)Dj`U
z%rs=I#84`tb1f!{wTjz}c|n%{G?6{l=%%lBg9~Fp$K8EroPpi-s`esC7>;)m%nn=*
zf6a%Bws)NabNFJplNKvDj7`_4r4o87zgh2w5N?AOW{cx!aC#Z?tL>43SzEUj`yUb&
zyd(kOz>`x@6gM`y9E>LA!|Dvh@PGbRQ#(33a{XXAn!r2SO2+9u1*NR2>N7GF#zA6V
zO1oXT?8&E|@~+~c1MMV_y4{3WS>C@lJITuYLc;bl@QR|}7ZdlLdq3`gISPq--JZL;
z&V0`qw6@fb@ZweA*!fF$cf>pCbfK-d(QWf?U&q(CjPs+Y@HM1cLuo7xr1H2et<-z~
zQBmN!q@y04pt}K^9m~(Ge36g<uu9J2I;u^`g!rtr`LrmsEFdfflj-YB{yfggo1mmt
zS&d6Yw>KL-%;t5*>Sx#62hU%SyslK)3|A@&n7m}DJ?Qcm;9ZFE<@ssqPJ+|P42N7%
zB4wEvhor?pydBM}`SjZ@W5Ygr5!eT#pd!s~O=0C$O$WNXTw%=#T8t15My=Q{MysrD
z392Yf6Aw{taWx9Vz^bABHpKsmw(AB5kp$4Vfvs=8l3cXz;5T|-cG;44?6BEpH~DPW
z_AbV;rM2%g&x_$JjJ-VYTCS|YA8RxaRn#M&YUxW!LHzWWhevkh@aW?%f(CVAOQRYE
z5ZI_t*PU1{%)Nu5;s$W(mtT8;Jpj*SZm#`G<ep|&$jY%x<^VKC%W+4xeLDNUvMmMO
z)uQF0^>K*r(}$+vu35ruEbgtz2in%~x;|I0cJ||y^X<o@f#NJb*gaJ&OFE@nfIP?&
z`)y6}x1I?>EcB9q{Wy9)MDyH6AhKNhd}$M#`FYe-w(Ac3{c0hEb?XR1g!CjCVS(Jd
zp`@*7h{_cTlBt89dFx?6Vb3(u(X`kc8+o{i3=~~T+*_~h=b!VzoAaHn8yBk*Al~2K
z$1;iKynh3(&okXGDKUz~#YNSeYlxU@bVtAzZhw$E>ZoQm6qu||aM@{BvM#2~toLKO
zcYGLSIbY)KBG$=qvsLM1malGrJu`)`wjdtXq;31n!DR1G$HyVZoo6aE^%DeXIzRc8
zjk3Mv-|dT!D$vl>zDmcbEy-qBYic%X>enwtFWGU4iN0?Sx%e2~qGy@mJdQ3`=nb{N
zhokg-zmzodvNJ%Kx`c8Pb(@q1l#R6oGEgy(7HJh@)qKBRQsS{A5K6&GHSm9vcDX)O
zl@jmP>ZV+9bhsYi?U5K@z^2E3-4G85lXv-EBt5szK2Xc|u_)dR7HnOpsPdTL{5b-4
z`nW#Cctf!LFoCp_Z1Z`&;o#A+KQoDy6}>4|1d4-7SSVNT{HX7hZ-Ybe)3Vll%xDka
zwTD?1>G(Rsr)P8w&7>fB9IZr1E`Ql+tMU$aCoUm_NxtH6b^8c7Fg1LyI$v>pPC=ul
z60gxp?;CSH*QirPIu2WlW97G1)_U2bo_rA?u+NX;_wBMfnEiJ5>ZuTK)^iXH<%SpW
zpx0SLE%oj<RSp`3<d0nWfm=0}eYJfFfAy|TuUyI~aHk=p#B%E{)()`c*b(ZfzivU7
zo#shM22O*(0W{|;%_3;;^^_svJj%BRojT?DbWL_2oUquOHPTN(v$Gjg<UTL^&MEQ0
zngs{^mE1GaOEta|$ed`TDsberW&qZ&mo{Bo1qzy(lWlqIMY?BosCOGW@g}Ry?=%i}
z74|@YFFXhaWU#-^VC?#-@Px5`L~=Q&r_ozzmJR5aobT;IS7!^1NgB@P*BJu$uSB$|
z<!x@k+l?uoud}qQ#!EJic3u8vc%002CQ(MRm4@3gT_5#I*|JNChUI2;>ofW>1Mcd<
zA0PNjwyX7`EzK1|_5(WE%>{TE&cd2Zm2_`%fr80@1m1mQ!qGD%R%G#s@_-0639aN@
zuYIZ?XsU>Y&Z}oWH<z5Y17gEIb7Ce&RuGYArm?Dq&M!V(ktTC;awaF`l*lPj_4>R`
z%xrA%@W`%s2!VP_KH-dGEGY>A4}ziozECcl*TBKIvr|}D;ypTp>crahD2Y=pLObPf
z`R}eRU_Xk=PvsNk{ofp&A%kzH5acs?3Yrhjo>aBb!=H_2o(3|4?>29KZN#(W!Mp0$
z>-F(*L_9M5HL=ks6J3?Z^=?}NkW9D}T5dGF?Kf<)etT`@<N=m43~LrT$i`~dXYRdS
zL%xI4n{v>Q7CXiPFy98@F}t_!us_M5E(L_3OwvQ|DmvrdCZaal34i}|4Obs$`v%K~
z1;zFAh*@vq&cnOZ+EJ|wTfgd1cOm(J_OEsjn45@ZR~ibQAbwpq2B+mTNCVbdPuI4l
z=~_@XDs~i?XwWO`=(P0}w77#;xQ^(bjHuEuTAfDH9L{_ntye5`;A|tj!2V|0B_}7#
z$;iaUX+j<SP(!@5<0NQHWgf@E!8@UdoUVu8zI|S99v;~5?d<R*mVPB8*^L$|Eo{I~
zp+{`Qz+<=Dac~0>EK4p#OCQVln@k#%Mp0G_;3=6~=LQKUjOe7tOSDrR5M{YFd6jd`
zXIx=#1K-?#RnQ9sFN!-<hUBN>xZ$%A{8=0xGa^i_jU-Pwhf^7#c2RR|iMNS#Cp4|6
z-h420$B0qI)SRy{t{P<&#qJ8A#jltwz8fg2E2fk+{U}Q`_<aeiVu$G(S%ErpwWFpg
zFy1fY*wy*VB7XVt;N%`8+ANEn=F1~Sd5e=?TxPXXkaRu-sll%K`My+HvO^#n2ih9L
z_wdEf!3}bm!js&3daMhivM2rU68`e;iGBr%&$aLrVgIssWpPpLlq6V5L4kpfPfm;i
zl`Mf%oC8>Z+us72ZCVZ(Vbh3-fnylu$AAGNq%N7K_G@*lyi6SYE%<&0ElwrSJ}NZ0
zaF;AAFoG1vKl%*HNT^z(OoF-gpx$!ivR_|&Na)x&d?nnj*hOiiPI9FNn&g~)ST<A|
z$xS>LQu~8?M}pe+SYST8=qu7rE^_!KPFl0tf7A9uug|l?j!aa=tXm~JHp=6row1XM
zF1Z!{pu*rXbKA049foG)dJ4E>6BrFm&y~?L9Y1l$zp-a3x+sMgD^S!GNe*awvZSQM
z9ETv`n+&K^tPUH$FAn%mKGsHDL+0QHxfccC_V!!wN$)E~jcU>(sT|Iq>i9IXjTEYK
zNiw`dYiHAIvd+kJKfAzEl2oB8&L2*IvZehhayUn$%dhq#Cn_CxXII#{Ps`b2ZmFoQ
z($jDFp7PFM;kr=PWS}zxWf|-#L7KEkh<cysHzwOdncU?Ig+Xz0+jz4RDc>(kE4AMw
zeGEI(5LY%+#jADmhe?YncGkVb-5bGoH4y(HA9)<ELmFSF+=^oeB{+}}kY}EM34rtG
zODQaJw<V*0V>25OD)_3-zP&y?=S-6w!2Lw~km<mOjm(X2L#DRt<611#QyW{5%2bE7
zz0R+N>Qm9B%ky@O{De7j%<?&VVbk3Zcu~0U!9qGR*pBQi2MR1Xjemq)!q9gn%5Y2j
zvk$+UcKr-W&2|gvhU`s~cSa9hIXAE8=|U%>X=REp%hqT56l?*Mou_A8ys1*R!*ky3
z`$4}482KjlsUNlj7>Dznx?Cq1kECKI8BYk_oZRN1j+hcOBv~rFl9atg)UPm#93RD5
zXjw}E9jVMT<z_Xwcg>DB216d!7JEv2&`1hM9uu2>X|@>}3|9Abb?%`bYtJZ#Lmw6~
zEx$O~5)gWTpNAGLMVcyWiZi?O%O1k%6wbP)Llcf?Y8q}o7q+-rK}j_&L6c~Ra!1M9
z&R{BpSih3xZg-w`>FM_~@|e1sHQ;t5pIdo-zWah0Ct18L;pIN2V6ax$m1rMnbjY;D
zx@B(y-_0hchCVSMpFTaS`d$I8Yn`~JxtkWl!9-bby{czf9^yk?F~AuYK7`HVNH3`;
zKf6R970vsY>o|9poNLjgY|VVsQ9EXN%XV&ucnT1m1tod!7oX3wJa!s;QhZWy9!>*}
zfWH~SeiRU7xgWfx7McPPNEL^0pv}`<RoNE~ZWmZvmBq)au+6(N?PD;n!A=^+`-m-A
zTrBNexOCU?=k}ql7~o)P`O$wKg(ms}0?S~UK~!v;r7g5B(7R0XhF96`%>nx7R2{|{
zK7xnYc3lYLVsKTFhEQl3*`_~{bkZl#DLi{M|K^@Jr-JqhcP?#ov(T;{LE&4Y;Hsl7
z&?`8Hw291FDE|ie*oNr%n_MBczkKB;{`C2aj*X|9-#kbH*n!R#p=nTTi4^V{;icOE
z#lV7y`(@}uFIC<A0z;Tecw0MK$$jfF=)Q0m`1&jQ>d8WO<ooe{``+#G=9&a0kY{+T
zwe#jnO;2RS0z-*@^OWR?MH(DxXKE<utnEC;CaHA=j{e$3u*Ja|0_?P{Z1CaHW}(>g
zNz>P(n2)SGk^TrZh!_3r!OE5n9Qk%3L5bw|cS-i{dE%=56MVV=fl+T!Y#&=WC1ElC
zFF#wz>ONu1T5ti5ol60cpBp@)UQdb5ul0DHwM(=?3FwLmgJ{Lu8qzW4xh}VG-%S0X
zm-XyDK)%oTYxVG_D+)CEJ!=hzhx2djD~8G;0TGn9=C_V)Ih5X?(6+Y8HZGRYlGf1Y
zV4npdBXIcC=(kIjrfrQI+fuU@;Lgtq7c6Yr>!4S2Oru6H`FH6Q|7JV%=X<vN+_Cl~
z<%$zc&cB&j7iyms5bvbW+wyWxJjDxL6b2A%aQz9<>h-gs0#w)(Y}-Gide!soJl>K7
zJvFXTI!A`OXp&>V#eWUIEqFnOS`2jUo-7|9yNnq;=p7E^ubA?WCelDh2Q`(?k5B4B
zVE`sM@pS5@fi3ib8XTHz;rK4YPg;|4@Ac{0W0NQVv-R|=hnwr7@C(tEtx8Tr?Is1-
zPAY+Ur7kasZ4%LKs<^oi<RlBW_a&MJDx3s;T%*|hja_n1j5IW@8u0s}x161-U6@`E
z4j6xT;tg-;y4dQfL+*V(<sxPuRPBn{SPKWy;BUiSxmX!*H5cBonpTrBHk#il%Dm?b
z{*2)!!G)2zBR@ZJ1hTS5@q8D+-1OhFz#Q$3B$|c7ILTar^J}QQN6u~qNld=zjI}WT
zv^EF@sdOY<Dv3S&J$w*J<oaEH!!z=oFIxYLSCl+4slJ&ixh2CP>W)1~JSG-v_~)Ap
zzXSh2C3^mMdPuLcmvb278dCC&@qZfeXqr&v7W?P#i+}U5@l77VCYU2;r-6o~R6X8;
zCDcNpr@BEx1S^%GqOwroru-PL=Vt0hi;B7(9uE9}Be27eE66TNqmJ4<2w!zx#|tAT
z4E;R34K}Fx%gn<=c=knq@C{R6_@N85sf=qv1iAdC_8eD)?T&VkdVxwgqoG*3-tNa_
z-+ncDeKe64<r^9T;*jEg1EIPGQ3H9}i|ff%3V=l*UWc^ghGYxlTRC=DOIG{$5qF|O
zv&0PTU4!w!W7E6i5&Wm5sXy>QwU-jxZLg(id+bjQ7xaPUHIk8oUEgce%mab-@x_sj
zsbRup<0PmM)S&Hhqx0BgMq3nZ<i}hp4_{Xs%Q_WJOdsCv57HT|F*WUIfBG=IbTb<x
z)uQL2A~Kuj2LXf-(pK%&YM($?lXNSC@x%AVi#1oP4n2g<VXLb(Ur+CwNo#Wd^_g;c
zKYF+-oXli+b#9N@^C{g%`R#FK?zsOX4t9GS#CH-8l`}OnEML!VVeB#49`S;E0rB3~
zG3??sH)@~v_>5#8Z|YJ9KiFu^MkQ}wuEeGEVyOAOkrt`&^x-1qWGZ~4ge)_5cR$JH
zS(0r!lWK2ih7-(dA22FJ^v=KQa`vNZ1lb^$(HglI{~FgJ)B9HKg6H0FmHF@>h3KQe
zeBS#G<kn1O7Pz6^$Aob_BTa&m0RB_yRlV*|?D9NkN^uLhu;p{NasOE3T=hvC5h0nM
z&{?XhD^>il%YPMVfO7S9)EDiw#?G!eoFCxdlXF8U^Ld8gS<{2Sx5h+>7WkbsvvCU)
zvTP#*j1+3B@JjcnQPICn(R)6X6&KU`#O0=M?$9+IcVs2H(D-_u^kiSUMTvUi3S>sv
z@?}l419!4KFUOenL3h18ir0vE;77#&cedqQd*m^W23A%M9vTmGU9arDOY+(pFXg7R
zS92JfAiXb}Fjp~7qMsjifdtw-RJchJX?;_j?~B-JaTh{bR4qj2+i}5VbVJC(4YU>3
zB_?Z6Tu1)zkX>GU$>3es1d?5^<Fhc`n34;xauZd=r~O2v$M$%-?*W=En3xb}Uxry*
zZP#Z5#2}3Sowa%2Sy$qC`;>Z-e(L9d5eeZ04DLT|y$GngKX^*h>Hpp49IYdgc|{o2
z^?L-z|JtuO2*0)D<J(aU)>pPw`ebF`<*ZwEu>(OtjtER-_kQ?viLk1Bz^-5-CF+q-
zKHa77+APa{{z%C>e1xxff3E0|dP|{wek143s0pi#+5Eg(yueuXyv6Xk_RpQ2y7Kmg
z?|c68KCouP|27*piA>*#3Pw)%F@Zw?9(9>fBS$$FBmu6}J%j_39WbDac9$lo>B*WJ
z#+u(uWN7g5>Az7D7(nG&*vR}{)BgnJX2Rx?j$SIwJg_Hdwc#4ejN|XbguC0BPi<fS
zkU$SaCRKWzj&-uaS)Q$tbR!<!zFy||1052|IeXUW<mGk#X@e))`$7^ofvZw}rL8p!
z(aX*rEJ|uUHntkY6#||RBeEd$?jpeaGeyN{8_#KEQ?qYT`R-8fsN~}K3{%SX{G9Mf
zkY^GW){%!8r5^Xg#=BLp`mS|%7e5(5i5wIE_Kx(e{iBKNAM6`zBsn1icpmkc(SAX9
zBYIvQuM6v9QeJ4JEg|tro@YR8{;|J=!^-N<4H7(w@HAIFA)_%@uQ*Jrk8)=&BgAg8
z2BA|XP#eaRDq#ppi;c;u%xmx3{au}q0ZKwVjr~Wcw%iqvldMRO7HNJ7o*yS<lN`;k
zF4_!WzGZ2v!@T%h2x1(-&v1a4WDAf>Dgc}))P%615t#U*rWFQ2Sj>lc?!(wcFx3dG
z?-XYC*vZ3)q@qz=f@}lAM3K+*k|L2I8c8%yY0cf}-2*H9PMj=TF*$)6aCE(Z*+kA*
z_BT?3lhS-;SA4`2v|>k>`ETOBhLp!gg|G!JY0m4!df}H5J5XS}24wx6)EZ*T7cawP
z>B4jqfoHWLs7I?BSCF#Ex&L<Q`**o8q<+%@7(R#B`7n6L4t8Z5HbuS%s>`lxkTzt~
z=u=-3IVtb`Q}TCQlBor;vW`+HCqR?bKwFQ~o*`sd*$Pp7szG6%UUsTcs$G+Y^2>?F
zRhI?!k0j|+7Jncu8Y8TS(=Q_pMdnl|?B$CF*$*!!roieZwvOD4$o25efa2<2ITvYT
zY|qFo?X79{rXX(OW5a+x&}p-o37Y0l!{pDwT9-)?l}PS913wuLSV`J)AcK~x_>$Jn
ziW2!^VTO<PBy0uoB+U#PM87|mZC1TjS42;~%{&Y{UMwx?b`I8bmKs4u35+0e8K(1*
z;qNZZaG7y0`BC~dWQ!t>W>tAxfoJO%*&69iI$OS(=d4}3B)zh}*mb#;Ev?wbmaEZa
zxOMFYPMOwxRkZSV_bv5gZn_HA8r`WdgXQ)HW5oUj+VrF)9+kf*LlReAZ`0hAvW2dn
zPSK)1iOYbwvcnc+^O{l$v3FF!6(|ygfl0e3op`?!{hSp~I!_%K#TaPkca_@VM~ieu
zPU|Q4Ys20bzj>N`N%TVKS1OrDq+WdXIGIjH255<FrbG?FY3Cw$rI?`Zxiz^FuvdXE
z0COS8g6cy;qC>eYXMB*Uw<UNjxC*fj!nlUiZ(;qKvjD9AVk{D3=KSa1x=htsYb!1A
za?a3s?P}9=ECk<Wz`aCcm-lGwa{%15@%{KX?4Or<k70$U${-1rp(FW2Q6rM6X_*b}
zg(E*<Qur1dzKCcTm3QJ#XxpSp)ylgI#~wG07DLCrqbKW?p2$)gdS*>1JY%w#=8#!K
zAs*pbDXWL^A4#=yY*v?6f1<)9B@0_2K*KT^+KN%o(GCo4Q`Ugf*h*p|v{{H3duf5v
z<AdDV#D}JF*7JIzCrW@T2^AT0bnxPqjF#6%fz^0Y6DmL{x@d`qSxIIm7D`${=Q)6B
zsMzLvn9V&5`ZpDpVz5#*1zRa!c9P9$m3jw*Dw1`aTpTM)GE5B&5*rMc`@yD0B$nuj
zO502NmKJTm`nc-)v;xiWF6ELgc6&}SwGE4&pC!155VL82#tGI-c*I7?x?q=d0+QDm
zJjz`KctWB=MEk)#-4Nsr0i~!-1Zi1qmOj+3&2&0T!;E}{vy;Gy42Sv`5WWDU!a#Wt
z#ont?$5fePk;xfpqWlGaAQfdcPX9pJkyg<>2Huiaqqz>3?iJ%s>?C+w^*s2}>rdR!
z`NpaVtij@B$mmRtHs?F4v1NFd!k-6IwwW9`&m*B-eh~EQ@7-}IrcKuB)<PAaOMbVd
z@~$Q4U+f20c+N^bjc2=AP1dh3L(G@z+ZKx2A0v-}MJZixVWunNN)E8xZ9CjzNB4G>
ztiiXZHwoccon5VveL|Hu>(%yE>!<iE>%9l)JWmT#Yp_-*ee07roIWN;k6HHtXVr8N
zlz?>l0HONF&sud!^PXKeE4?aT%NrLoxQ=Xc!*V4qHlO)r{i?z+HInvjqXcGhj8{_Q
zZkQHl=~By*eB(nbq=*zo+wfd(m^MA>*q@gg>&%>+ng{!*NJu-l=(=#o%mL>gdB=~@
zeCstO9Jb1uQ{6%Nxt8AeiV?xmzq~!nRGIII6FzWDcie{lh8Cb42be&vy@`<rwQ?3R
zgj%A!Ghr>4e4;Pn`QJbV*O3~9uD*#fo#V8-&Hc8C%?Q>c2*ld|>0@18N*j~5$+4F&
zCr>8!T9i-H;_-Y}RFmeGl_=(;>|tjD(?qad1FQ4Egy852MaDYU(fcRN8WYo60{*^m
zpn18?iElb55mHo<RavJ`M06<^3*Vbmt_fBb(r6p~$K*4>Q5I}kUTLnb)RGW;B=jG-
zkW<K&jbtTZ7fyrSGpHGrk*7yhG|Aps*hE58APGI+2mZtdo`E((Sz_XWp11tB;%B=)
z#QoO>5zHOYd4vg9wCJxQruMS=B<#OBzisw_4^Z|tw(TL*e}>K)?(GV7cri1mHwDAM
z$(v}lD%KHe!FX(ATFL?pRWXu}P3EF(i6tHzOLoS!ZVbI&;r&6!&x-@(5Dm#%3Y*51
z)-PJGFMuEEw0u$;EIA_eaHvyaAHzvB;Kx&O_ZNAV_47^nhEjG|OoQ`T7K^|_gT$Fy
z3`*161X#AW1#z$s50IBN;*c}J>5l^tpFEJ*=XnvMEpF2~gywE&x`;Wo7@gSt5hvqh
zi1O!csvy2rQ5ENavcteD2C>~`6Z6wplb$s4mPzrt@LZ-`xEj5SGz9F&3MTjmUHf$B
zR%G6eH+3<r*p6xK-%s2aB%pX31~}j{9n@el^4=D`IwmMa1YiD`qDkaf6o;UpebrjQ
zR0F@MeOi^|c+J;=*tE{<kpv}Vm^R%5wI?5^JS`6y`8;G{)aFbf*sH$IbO7#k+N~>b
zl-HkcPVeG(5(}E`DwivCQS49rsA<%-j7o}SnYlX~w(XtSY=Gq{R^2!Cu1FJJ+3XyO
zMwDSD&+mVkZfz?Pdv0q@nhOhd2hVBs4F=K}XC@9jbG(L-_lviA1VIhu6Vkbe$dk_w
zb>=h7F~g4@{j%*8{`DfD=p;1JV1t;=%FEGigovW5YySs$ru+vz*>Q)#UJsri=*A1(
z%(V<~40EMNY${IT9N`IlxWO--J9Y4h6ZkmeX@jKYkfY>*XEpd<It9OuzVetA6^Xi=
zAJGx|)44ybmgRozp(F^cTgCq+o;d0GNh>78F=psxk!>Om&gmYdk8CR6j$S8aO|)$W
zO))r13D1s4TU^4~Mu&;V7{Gor<&;1`fR&=%EZ*lf*+K@wu_s`o3^R7aghwS`V;Ak3
z(Ndfe`xo`n+<So;>A1jK0zwAA@+LPh!fl$JrizWSUMDC?RKsI%DS$Sv@sRlM{Ng;Q
z&U_zhWt=;d&f-K+TeyB$CYg_-eGOyea(_LYNsZ%gEE(e^U3vgB9{FM_HYQGwT}*cu
z61KAobfM=m%k~-<Os^re_^wv@S|v6;tsmae_%`8=edE4z-HwrrrHg<;20_n4AsT-?
z5ad$NrbbaW31$xo9X#*^sr}AR22-(YZBEE^Je%-{h`BDOobnXFJZSF;zGj&Ihnmc~
z0L%P<cXidw>>wc<UnZXH6qW5|i4?4yHBh=kKt@>$Kp{r&_&uDfz0b#WM`rI2MVKqH
zTrk&kPcs<+XnMXg80JX+;0|%}0QwMf@ou(@AEaxy#97*bD;<MZKBvJitJ>)yjroFf
zk{Z4jedVbiVyyX`^y^cZ<5_fwYSD)0%Evuj5*c6y)scOQhVk^$c6HA0A|xxSGL>Xe
z*11W6WCP9Jb(P%vk^y2xDKur>j>GPELydsXb-$`h=|KsaNhN)LC-63;{f-cB`+&-}
zQE!n-<;vmwlMYb!^m9n#{6#N#y+#;v9v(;1=6s32ny%m@?dz_&4<-Cy5*uVEXtMtv
zu6Jc-$+!QyvA3ky*k@)j;d?W0<B{tSgEbUJ>l0>Pim1pIy$;R@6%SnV$U&t(cAjjw
z*Z&R2#!A+EqrU8kbQ5cCJVcwOp2+cF6&gr~e}XqJlZBrIPC;VRN|pIx>hfl$W+U?J
zq#^o7K+;J-mAamU)<wtupyqR6BRfR)h5PrEOK9a2N5Mxh*Q;DM8WvSlq1rvWY0x;d
z>Ce74cwJ14(_Ofrxe;F2Wk8x6sCZZZ^KY&U#eOf;6#Tha2Ul$dE(0+9b}sh}hX4xV
zvTeEE5_5nC*c&NA>UR|(wo*qP6arEo4*iLpF%h$)n%>iXC}$7`5b?^C($EY7=1HfC
z@wEmj7GQ4A0NK&o^f<Dbsv>Y!eW510UI-Bz5AT#FKg4*C_F)+@W~#A1sNex(?p)YG
zpJ?(Nr>Lk!5k~ja#s)T8uatR-jKs5;ZYBe`O|A!B%-ZmGc&G|!iDm4`3>&kyra?(@
zSCqQ>S93KbaV?OliJIeGjycW3SRr23@g_RkHZ>2e%&RfxqNW+j-x*CbjK3hp^b1pk
zwVnQ%nxN;GJYUmVwWrZ6`R=pfKd`qgt;bR`p<QZ02SAoVGcF2he8QZ&C-0jowj~0~
z^}TH-uj?Mk_Fr5@7%1QP31XX2Cg)pyjTwu`$g5LZAxbxnpPzM^PW|ml8Q+GLE(aC-
z=Xxu+zGIX5WbafR&DV?GhHjf5ybq^pMQhO3or-oKimne?k%2$QI<+Cs3;)zr`MB4z
zU7ViI2@<rP>>&_qaA5d+u;A(@_ghR(!q02CBkKrh@_7v9Y_9?qTN+?cAQ)Yu2QauR
z1m?f?v9wc$?*<pUO~|!1T*#Qj4DS|D6`<eJr&9bcmDM62Bd$v9LXpuc+c-AyyX-nb
zia8A);Az_#?1goULf&tK7RAkVUYi*C_}oXwC3WWdDTCmHltW_r0v}PW42;k>^@~++
zYE#)i_^L)$I42!K)FgZ~%@d_90)Nm2GB_ef!)vMw^4dt<!cd<WrZ5WK^xy?Z+H?e?
zWK>h1T;7-ZONFR;tR1`Qo}g)C)Z|Z$!nNjb=E&77l&`vN)teAD5s?u*wd!n`Wu>Mv
zKU+y7K+{^#=eMFc1$?HDkFCOXB@#@i=iI2|r&C+W)#V8yunr8-v>IeH4)7PmP02h;
zo9{1>yOFc}C=9i%XDuIO468tCXR5JJ&Y<O!3(?2L_3iFH)TS)6B|{HDTVN1OEFM!<
zX0m&1!0|?Fu;KpYxn1gPICRmGw-xoh!Ba(7)>9ku&ZEOsAMf`im|1ypD@z&*e>U0&
z@R{HO2EZgxFyrEW8jtT1L9wa-)r1EZ9j7V}$>`rHB%(^fN&v6g%NYd0ih>}@4wtXi
zG~Yp5fTLxdSc>-lts<SLWST4!zI#0X2UV%w!?Lcgj~MHBvnl6bSOn}CU6)TrCdFr~
zO2c}g6*jr8m=mfaV%8hZQNMWb(Ng_Va#GmNO%xfE8PZ5KBms_DxpgS9IPQXIxxH0v
zDkMBd-TSJP&4`4l${uS}2_+p;uddjCQTC4Uk-qJkZftbyq~oOHq+@i{v2EL|*tYGC
zZQHhOb!;cQ{_k4rT{C-rGqd-%`chR-;i-D=<GhaZPDYiDDUg@M4G~?fWVNnIm{nGs
zqf8$f3N|#`op{V%1L_t9*3Q47JEo1Iji!PR(l3;E7<;}DURfAvsjUMf?e@zZTG(m%
zI>7V24!0UCEeH1AH@OS2yZLOIGc(hEaTMZgbfIozuT+*sB2S!Uqq9@^OBZ=JT+2N#
z92zi;8&YJeDlfUJ3X1j%-;HeXwj+A(uAK`@R%TIF6$p!_JjAn%4V10zr$nyfj(h&u
z6$ZH$uj3kmf(rm#tvPSOAi)HbUyaogU`g)>dbN5S93XU*Hq;1*wM<gd8cHl2;bbB>
zgyNzCuD0q$AFS4?k|$xTGCI?9VBWDud!|8TOohi9@8UIeJou+ylP@V?#@3GBs?}T&
zCoCr4zpE^Y{GPkT9T8ZlLlALw;z9n>HYTk^+1)K=F~t5&t>mr+y1ReZerD-m609^F
z40qkwsLr&zs%$;EXjc%ftcy-au)Magz(q!AQ)zD6pO+V}WZ@+B*(eX@4Ndi{6n$xI
zs;y3k&rGnWJRIJ%T2IEs>&!XAJVRoR<iy^&v5}5;R!r1-cm%t>v&b3dvC+}6kLAaj
zMwumLZCE_>%63pB@^87)hLMw|ytG2p80-+lb093iXKOI+yKxJ(k~qR1YZ3ZozD<tC
zy9`2dCv;Srz3*9}uRH{4+((>CncY<jOO@HINdzJ2FbO0a?ZBB_WoLysesucMO*O9%
z{F|#0GrEU$jPWTVPP?5y1ZjcKlXgLW991r#KVVIUrSYYCgr+sxsI}OXXPe|YmGR&*
zleDoANaw4fF255pz*(jWtBQ-Szt?r9#EI6l`AuetU|nnST(#%i;{kg@ToI_y#708!
z3YPlx*E7JyC<%Q*1U(n)>O}2%;FuU*LsoE`vTxIea(N-)epKssT-8yVi5~}grAYY|
zgKfwaq{nct8na5QnGBp#0Por+;V8on(=!X9I>=-=ymaZ272&o6#MC@&_~s`e<=!x9
z5J)E*a&IY-uS8>Oq#>jBb^~bqGQS(O<r3pOYWzHACVOXifhxwtFSbS>Y#EX7gf3(X
z=E4ferLw7h9y|XmI)t9|B)dZcwG85}iJ<<2M}GhRWZ?GNqRU{$Op{NFqW+uvM%W?A
z%8U;f+^no%$FN8h3HVwxrD{3vUPCaiVy6M{f<;?u0!K?>PpKG12$wSc8)mESLX@e0
z;0OIF^WMp7-hPO#245RJg!g-{4O!VoJFM=m!R^<ePD~*)oa-fK6T^ak_9Tp1NgLk>
z4}vI5!!oONeCo2*$?JIA2eew_ohJ2@&@b!=JbzlU*=g#h38v!o?E2k8(r$c4{hRV%
z_HpvbzwF{=Tu(TokE!mEt|)nJzD99sC#*OvhE!MfGgdWQa>#OUZK*a`&kymYL`qlS
z4}uZOey?S1TVU!VZcq%?Ur?k$OxSV!UT&D>f4lCgrQ@Prz(P8^nTBiT?OIuvZ6-)U
zI80IzU7_w%q|3%8OxXVs@E^i7a`FpIF<H#**sI7@!1xpkW8_13w>L#E*Dp6~@ZiSo
zn?4Byytmt{>W1-}wGRITnl1!0RKt!$Sxh3V7`QP17LwAhU2=^$Ixs?)x?hizkRkkW
zuif4W6BnLYg5sxr!3Om7JUCPLd<~BhTuW%rFCuhtV*KYG+y8z8bb>9;wu^YGfp2+d
z^R~DZE^qt!<Vo~t*eLZT>(#u+8de8vVEtV_JG)^3EQ4o07ZV#-A67klrAire@rhM;
z`Vt*B@vv4kEM*8eZjQ?HQN9Z7)q3GNW5s@i3%eMlkz(dXkmO^=<=fty^cyna#{HA3
z3j9F+K-UxEe|*t+)Q)!Tqd_T*k~4IgY5W=bS3fS-57mZ`tM~g}UPTbfz0c@!{Z~?*
zoU|xb@6Tc^*=!EQ$?MB~tFWest7@3u-{X_EbKuQ;YhI_f)sbTgS>M~UqWPe^0YlqC
z(fae<UXUpN^-Pz)IV5#mk2FVHAcUbpR`PiZi8|i8_L74n7d!oqI-ifp`EPXI$D8M`
zy*hsRblOkj<y0R^>8FWUrs#ym!Eg#wgM81t^!UX|Fb5InsOK9b9o51AVtO^Ou<-M)
z|I0)CrN<9>+lxJ4nHI0&{k{JQaFwjsc0O?UvE-rsPwXHIqNu2dmXOelV1zV~FjyeP
zb}WnrT9Cl`DF<Y|Ah}s`tgyZSuxUk}A4#FEEEyvRT5-Z$KL`^-2jlGz3%3(*heB-c
zar^*#Wt@zR1Bc44?<FTBC=o-HKeoKwSUJ$;Xgj2X29y172Mu-uT7=MHj}wI1T$F0N
zT<pd1V752VF_RkT7%bWUVq;42$yYmhr-M!!X{p2ke<sL1Y!NkOCo=-FiktGQ4XHY7
z>q9o6Z#Y;OCvGC8W&ro?52sMQQ)l53K57m{VhG!7AENdQeVn>bZtp|oZB<~OtS*j7
z{iGXCMDx#OesOukgx!M^J!zAz)<@f5s8f^yH>annj(F5J%Gb^r)Q!zZ1LGVC7F700
z$=X&9vIB;a9#=gmLT?1e2#-6qrisgpDlJw;CB{`w+92}3=~&#P6S9sGJMt5XMzv95
z$Zt3Y*JaL781~7whQ&K7-KTJ%Q+li5gLiC|74ce+g^r)T{WBZW{v2@)C3DLJ<1+2J
zy`juum>E6H8V>We+1&y1%1HEep{p(YzBPi_QRne=DLEBq^iHS;Rl>k`ASrT*6<n{}
z9@t=N4)^P!v5W=B?<*_1tZpuwR7BCJk2SgL)nSqY)5vs@hFlTGvy#q(EJo!GJo=~_
zM@qthj=b}8iMTO2Uhc!hX5Oa`&lhxi5=Ygo(3-G1I4AkGPSNmmcD7;VKEr!~n`!8b
z?uRV}X>(p@oe@7m3M7n2nliz4W1Qi8_E>QCRNELakC))ck8&G7_1e-3VXi2N%JblA
z^sH~SV`ZWD#nA$6Pl2Uq-z1H#;pw1li)T{Ht3b=zFeTQG%G#1GR4a}kFbKvsu@J!x
z6h=Rek&D~el6ym=!==UyQK_|^$*qM9`nu9iX9?kt<(U2TAyMeVocoOqL|l2DnGm?X
zGjlanHZRUCp!FNMaTXpN;lz7cJFbs3!Eme_zdUQipOuV+=P8s9PVQ(Hw5ksp{iRDI
z?34@^jale}`=0zppH_CZp8guh1u;LZ*$V2c)Vg>I1sZzNHBK?{=+?M|9JwvdL4<Kh
zk;zLWM^$ajMnSUO`7+B9Oy_aj?@i*3jJ|rM(BxmOB;8epx!_qnPgmIhZ%H4V5cl@`
z;REaLNQrhvWccLWVJ#+7Z{_dP))fSi)YmfKhGfA+-OD&bdQnZ_j_)oWygtM;vY+m*
zykKorO1u)UDy^xI#09sTG|wq^RgGG;**%du;tZ&Cg$*ub*wetXTtL0)PsSoB8tKZ9
zOK0|(j<8@0+)D*#?pq-+X8q-s?*kLG-?6Yef6vB|6O?}1u+nmDkX=?gJxYTJp4u2~
z2IWLA=wXShf((^9-i8O=6eBl>w(w#_VKhjwgwu?YA(Y!*@K~8aH#o}RNkAAAz+(_Z
z996yH8<k04M^x&A8n)0&ZZCl=9pyc~>Ret_Lz;I-d^Of9V(zERju4Zw_f5cvTka*G
ztj6YRe}Ar^t)@gZ8HIZ)!B4%|lW9v=)7{QR7il|k=?z2`QJa2ta(1JO^TsQ{D0G>+
zHe=$XR-CU-UjE5xxH~u8w)6!fIib{I<UU>%{}+R%=CrPpJ?&xlRterTd9>(b_mD={
zEhj|OGzd*=A2!A3#Ux`aMb|TXhS|$=HsYsTUK<#-&nK!;e$MM66^;s{Z{r4@#A7{%
z@5ic7S4avVYx;Oy+Z~nlt8=GVkrI9TRf(|R<C*#Q;X*6MRhOmW0FKm*MmY{7?nGs|
zx6&HJ*XV7)_x`bE>R;BI&3l`&-pVSx6<u$gM2P|hmD8<*85k;bpL2y~1xrE~velk$
zx6fP1-D})jYmcMbROK!gjtJ#|uDZ8_H27bY8n_z7xDvD7IvnhtH*R!WhC1(S>{_!s
zLsxvtJT({nL^A$~*18NQLp4!E-Ky+SjUhRnE~iKjo8uS+2~V`|4HChPL8r89-@nG6
z;3v`6YjziiuqyZ*o_CsQmZl#=h$yCwne)&%MH#|kRiMF?q*o6hkl4u2Fr)hJ3;rfZ
zgBzi^82WFXpNjtU*Rtfsy3T;jaL@+t^Y`LSkQCS!!aOp;ON%`*GSe6|4&iLC=Xd<^
z*XhCNTJ-M**!(buGldD8llxq(SSIcz0WQJC0scsaIrwl0o_42!Zw`)7OhnOd&=@w>
zzIIivEYy?5iI6lSQmLHl^QpPe9jldTzmXRDsY@ZDi)_#^qp|rwC#(08+I}5rv}&=L
z9FSwc(Scxh0fH-WvyHejT~fn@7U^Yud9M^~c;#Qx^QDHKSpUZ|we3uRx2<(qjEkC*
znx3nOv#c~gN{fV)i;+1WN9zaRC>d7#Mg}w5YhFz`(?_KoX1}@3?Nvks0%`_6><@_a
zDvCOt9SkV*s6zvCAERGX5LW16Ajh-lASaG)ROw~4p6j|BG)sxVR@@7!N~K?wHw0-_
zRfgm_mO-&Dmj|aTqGozq!1M;ANB0N^mSX2g_*Og&rQ>o>>WJP`4XvHChEO*^?Cd@%
zm7}e^P^ca|!+@QWqkUi&j9#avvy$ioT3%@q_<tfl+gLIrsv9;>*S`#k(*o(w!gs8N
z26~^ca9{CPgX{VqKG|qz^TkjI1+#lvow$L=p9rLKM6}-=?sT<XL8j-f`~0=78ziv|
z-^wy8V=gz<xuQ!yUlC*R<IS74K9hi2QU*aXHii1fD%8ot&yY%<Z!;Mcm3zvd27aR5
zHDg3;&u7!mNCaP+HI<xOVpC+iCj&oZJ*7$pi~`gxo{m_%d&IKNpsas9FT5BV5Au%=
zZwpC7(ta5zCa+UNLUVLDI$!iPFrA<8xrCcw_MTYk@-#eT5FtY&9;a=7&xG#^l%xpH
z($RKVeVB2$qg}a(>U!>9JdhbA!u0zxSZ>~Kcu4ZRPr}b8sI#8^qa*X-Pm~yX(l(f3
z6-}#IeiQP-`~Sx71}wi9eu9`82uQw(=%A68nn)jZE>YnWPY!LwXUAe=p)F59kzZ?X
z<Y|JyJUvc_!An<$WR?GIsj;|(>1Xgoq)(jH`PwleF7BnI^@vm?Lf1uNcEXy$#;|i&
z-pIzy6pMcLQw!By8L?B9@-`Im79{fESYe0p6m`$dSB0Si8j)NR+ca&yX@tpZ9P7)N
z9BnPm0LD(Rgpt5v*lf9myN=#1Ns0&SodcPKV$96d)6%J~-h7eAo>pMQ=?~P(T7#pY
z)yH^RbvOzu(=NpuokxkuFZziAs^dHRQ)1~fb!dAhm~5cTk;lOvne!h(NDY627iRj{
z01YwlyUs<>Yb>Vk(@h<A+|{uy*dpkpev?E1dl;y`qjU5h=QMVaflpgEe-#YN-+<}V
z4`}^2l#`vG;re_k(aQ`D8JLg1-8IK(@WZF9AlkWCp~Ijf&PjJ%D{6=XbY>MLo~X}4
z+M!puVQQEtEoYDrGS>U3$?Od^>{Nszi<Oae3{vygiRQq&z!w%WfeX+WY)%l5q6`So
z*_QJ@Ufdx^;1od*4zxpt22A;u&=EDJj5*V{j(y7M^Y`6G(=JXh)UM$m$3aouhvg9O
zx=H-$pSMR}D*E~4nosT7b3A^Ha|idlN&uo^_D%kk8;0oMVyhPbW#s)p6&E&4pkodx
zev0JGtNO26<N4|G>j>wa`Dr%x0qhY?BRs1wy~Qn|5TufeU!HaHz;c>JhZ)3!<MoPp
z2m*!kxi!{R;{`0;uf37l{Ianh!JyQGRUt0v#=g>PmV9A2L(z1ubl{H$XP@GEiT=FY
zLaHO{$OoG5?pb!1FX!85he=NsYoKp)(?mf{0$)W7$``Sw(YFdzU+rCARZa0Xhg^s}
z+(vKB+e^xnowq}jAu$Bt+a9ab2xJ<kS?jImAEw>pi}(8RLn!j7z$Obg=bf*Ak@k^}
zf01^eAvm*t9|IknGO4_>74@*Hrp~m7hVA68!pRczS9gI1LX*Z&sJzuGSob@$=O_ma
zBbl)Z2e?5ve{h+a>@bLhrxgMzMf9p9f)W4iNuD@tZJ{=aysEf^yNa0=pP1D3-FF@t
zsSP~ztW|YE#L;Y=2d_3>nQS>)m#uFwlui^yw%?|ryFN*Sfi0oG>Fy$$dgj}RfUBA0
zg`JYy?DT;ie2&wRn20E6)^60eWqy}gS#w`i|Cp={^!@f%CSTssDm#Qx8!>nWGhBok
zmhebfuoP)Q4J2EW#3vQP;*mklNaY;VR7A=V(K5wcI}x`OC&}JH{2eoRdIDMac1@Y)
zVfXZ8076T9U>)B4`&<S;Tr)i)mdsV3Op9o404p?}OOs!pxd{O%%K`;tfl3JX`Zoo_
z*ArMuIy#qS$b3@Z*_GWP!zqv$r))>LyYN$n&i`{%=m^*d;aZ6S{jLG)0U89BzViFa
z3tX!yLdP9#<QQw37yc1ncJ^!A#4A>RIwP@CgR@7@C#p`08*v+U?@ujD7XdCMpH~py
z&)17zI-q>oGdEA&EBnhSe=7fKBeHqD?^%LlKaT%!9hX+Uz6qivfkLJKaNw+>doRi4
z>q-{TTIT$r{yIq_N9wj}LNndtEL80C+~jHDFfVG0rrg>}K{GF69N-OCGtJ-=!R2dS
z`Ah|X&@vvh^@KfUn4etsX&BA>wXS!%Ysq`Lc-1NU8Ir3F!}XZOti?|D^+_{&K1!G4
z1@n0rmE#GL{+HEOF+R_fOJ#AZ{^c%aol(lBm%By;47!!RfBD3fzQRt?_VWsUNvL~P
z=>N*iM*-JWk;tqZtpcJ%{lOJZ6Moa!`^MYR3@*p@ZENFbUVA&G2+j@FXkyqlkCmtu
z&17?ZX~YK$?T|&1tE^k{a_}z%L0c%RcI;AfykbaopuuPJ^g6YHRTY88C5~K`Q0|3H
z*)jw8#|L8NrgmUfQV(?Lzh}%x5FE*mII_HQM0W9sa(Il7$g0iv&;_CUsQZU^1w7!`
zn3&<O7?sLhS0^&ObNF5#95aIfcKD4{V=UEO40Mo>C5!@%Nu~&k^RP-m)GA5Y+2hzl
z%}kD<n(6UE@pz(ThF<mS5Qhj)9Wt(&hUb`5k#@{1{s|VQ$z@T<YMNl;Xe%0T(&B5h
zTDkWo!5kDzhzFuA82pC`Zkn3DCIiENUqKhc)Z96cm%6AK6eIlX{jv(#*_O=zLJ*8)
zG8VV|{UiZehu)*FYH3kYF{|l*ND$*a=&sExV#=8=5?<bcLa=6G!qy`0Gx=TxRR77q
zd+c%l(924X_N*>D+$%4%UC3Sdl`lmRxZtY1XSuouB^;T_&<=n!m^>T1T!Z6h^(LJf
z9`m;ZLu0s%Y6AwF4TItym7fujg5(RBz@JV)3p+gkkeK@cRzl=(+|9))N(%EDZwmL@
z&kl|0@q$t;75o`|9`-TuYdY3y->Zqq84HoHA7G<B4h~%i*dVs?PWHheG}pAT6E(ou
z3SVCu0yx+Jg4#HVSJ_LWRnf@PLG()Qxr%gV3BzmAR5tZ6Wta4@tK`k=<UGtgO<D_C
zM6qg+x8ESzIqLO@$&zN1xtp$FN`t|hh^y##Nc%R8zp31n!VfP3nR3<~k06jng!~#m
zc*(ce@whPTah~9HQInUslpCIyeu!1qo&~*PNh3|GCvG+Iz>xFFW$*C_&=)ty)AGmD
zP3rGlF2!Fx5mWySo=A&;N1!)k+S8kpnYbc`%UX=;?uYnN8h4{!y6aaMfNG_YijAYQ
zy0AGj!$g5oRdJS?h@i|Kr<(5MD_%HTa({qAeJQ;+LU!KKA^853pp1#>cr8t*YzzeA
z)UeHU(OSwGDam?yUR-Us0Og{>%!&dvF5YxZl=;!DWsB`$!e1iH*DSvCIB|kb!rxmD
z8=>zjY)@_cb1SU7zQUcCdw5h7b*CrGEj;jO+T9YE0W?VxQR0CFq*e_%B2i-W6~@V`
z(gtYc#xJEmEgU${xu4jToojaC9@5{*aHBADAU!l7&Zk}<cX3MN!@?u@A&D6110R%D
z)Uh(+mE#B@6K!is%VLl%_MMdNiK)c67O)8=Dznn|2L?WJ)ilWRk#!d4{(!ZZNGvE4
zWn`)+;Y^mC7_zE9T<;tzX=_pS8j;s{+UtO7`4Q_kCN}p$m3^nD$gkrZz$y789o7eL
z?@Xr%LA*$_^CTq6i02GuzMPR=a~Tz$X7wF;k98|M=I~Lq=u~c6nWq1i`gxx)9R|Q*
z(tRDG$hF(D@%jcc%IY(zcUg71rLrh44ldtP05E)LOgn-8Z69bVv)l-}vK?0H_k%|C
zDYZcAM(F8^h@eGqmXpTi{S%^opCXzfJI|DE6P-Sz%uKUns|*oxY77Wf;>_(F4r=uU
z4|a``;xn-Yqgsi`GvZyj)C<TcgM@{*U1e7*&Bt$DV#LG?AWfKTPu_l!pf53oRmI0Q
zy%>8ikjCgagJ*C@(eE_7Zn^wAWd|BcH`sC%v9ZYPVwFMtP3+LIGCUxlfzM^e#!p=B
zVXj7}L<W{C?qim?z%-7kq$BvIYrH6zJPYknn;9}2&Q6GkWl?xT7@!^%--Kh|76$#@
zw`wkP9uds$XRosT#7b@Bo6fNTAqUXYi9r;_ecdf15~T10=VD*@B+vg0se2sRO$)*f
z9nQ%Nw`k7=`o?<TPq`TZc^<K)E~!3N7GI2>br5^@q9jQoWX5T)fjBMDQ=H4fj84c+
z_Yq<vK`zr@esW~*pR4?3lV}kC1sJIulJQC2|4e(`HlY2-xIG~)x-%9MiZ6iVKgu%q
zrv8JyLKyt#tU2(;yU4B)Z!EjN_EUH*G{S#977$j3P!<~-)Vf+(MGoUo%zx)+)s(7g
zvvUPYvx<~zrxQYRC7!#n2ThSK+67shfNw0ua{eS-3;Qp&+zv-6H~AOX7O4CHe%0|&
z<>E;&BSWtXLl(<BK$t`2^AWU&y(E#>L57ongj6fgrq*+O=Q=Q@MM#7tl$*}_RV0^)
zM5y+hlTt0B3fF?)rwmy}9UuKxLdQik_k9P!-Zj?<6y6FOA2n>ifVlSUzoB+J{PDB!
zVTi3&AIq{lm9Afmp5lY^8T*lww86YGQCAaEf6G?YF3&D78l7#D#(UCYW~+5Thj-=i
z8(2C~7=|(ZhN<vyx{h}(SoU@QWNWli)9ME=OFN2OFKckyFGJgoKl?LEe>Yilsp1z4
zBX5v>#(|5~R*7e8O8*Dlf4~0!En7z%(SO5Zs2HfJW%&A(Xh$fYq~U1Y8~3GP8j^f5
zy0O10`R1Bg-?xfm_pbfh1Hsb$c+hws`>5R~4uDVdcOsm|9=y?}?ChSo=CbDsy@J)-
zojW;5{A|1&>NOACz5D+cTtBG!Kf`s<KK7qXlkdK_SKuBg@>@!v+gwcYAE$WTAiD@W
zZA!n)VPJ~we+(N9b8lO(`CRW5`E)i{Zk$ma>gJTCJxf4#o8SB!fB(;*z50Iz?UmMy
z8UHh92VOT+4CA=p)>q3w=&PMUS64yKj<A%&?EVzPeN=cK!0AFFV3h8N6MsPr7ea~Q
z_WTNH{6~!gIxKpvSi7`dyJ@!M`>5Y=@C{-f6TPo5-@-L9>6M>`YF@FvIv`4RB79x|
zxc%?4pYIPtytbZQ$t*#}xRu)O#3CdIJ3%13v_7ZR+c4y)vDWK%iT!**8k)a0bL|e^
zQmER(NQvLNIWXq@5mkL2dp+7+#tE1ZfAZazZ)AJr_|!IP(+UeUhMvWZ8Ucwrdx-d|
z;yWfiu=)&4>6jBE6DCHCwY%I7%oiZINCvV7%OiVJqC~PcX+^?f_Z#)J#8rv}Q*tON
z#anR<uX{=rVoe;AnTv^fFDjJGFyElo$v~n9XD_^9=L#f(4wAgTu|ccrn-zLYRMaQt
zA_P#yG597~fHJ!3Ugeh#&;cfX>FkiPB^L+BI5^uZq1{UOH^OqHiG=3oUquDhKsNu(
zP3b#8UU-39Sz&WZbf4}#0B)?8x{s5VdvW42&V>|^wTyxFRdXN}=X$ic;{)+Tl6hww
zJ8augcJ^Zj?Gota{X^Ktid4wy99!Xo2O?e%b|YRVfP?4)dshGO^LJx!tVnEi$b;<A
z;j}Bsb!z*hYl8BBVR$^X1PlJA07S0?o6zBe=gd9p;)hT!q&^@d+OuACEaNPB1CDn2
zcPmR<A7mqEZ43Ql&Jy*Y1pymNzD<dH>neC6@N$LYW(XC)yrvpU2LyW26jjolQ;6f?
zQAIeID#gcToRp2_DwtCbN-=w*4XU>qcoMoK!|K?odr{)_npaL3%@F^z5ccX$l_HOY
z<-M2`M7=YbH|o0*Ry5zeUWtN!oiRT@;mkEfw1_LKD$I`PRy2!j%8!X}YORY7D!bfJ
z?GFH%bFsuGKfp|Q+Xgp$@A_*}w|Y@Re~K23_J|MH$K%-MY6M|wk*KKB+p#Gg8&$`G
zX84DM^v>c~C*;o-v&S^Y>VTNMI%(QZqM;!0-^S9ZQd&AH@P9U@Xf1Po8q8;%8ml-t
zkQqTRGNtDbO2$M-8<E}F;DRS0Epk3n#>R2aZL6(L1rzdH8r!q0N|1eu@KKosho|cJ
zoW*L0ikEmZwS#v3Va<aJHxpcJO1E)1ewkNB|KrUst!}?<PQw+a@a;5xu7~(slTqP$
z?WtW1uOC0Li%ZfHNP6cqaX}?jfSsz7-xF*i7Usvy5j<sTCMGvS3p@tqPh#Wi%EITm
zgxtNIR|U*33{i@^)~{4$ZMwJ>vrX8pC!`M)K0DII+6aF|<o}Q;^T1GoS2G%OzW=;S
zYZkln{@={TV`z{6bDHoAKWVe+H@U>U{nGNL-1Ssy39y4pXVD_rU6(6%(;j+t_sU-x
z5QDBild0}^cD$jWL%=JOfsv{r1s=CHw!mZnMhjh*3b2F(rJ$`2?lfxhLd~UC5}SG#
zLO*#ZtJyprl8*DfE@ZYl+P=Zen{jgIBmat!tXdzTOv25JB`r|@C8_c4Ay-64H^l_J
zL<x9p6wJXMx<Rnxg89N24#T}TTvehgw&GY44Nv{IeV1-kaRY#bjEmC>Yj4|X$^V1#
zHb5KakX<W0AAB)epme37CfH5L_LML!IeLNZUT;o7_4wO2f(x44P%1LE%{0_951He}
zFB^%KvvX_^I`8_@(s~%#Ok>Z2SxV-N$c?ygv+8>lK1O#uOX#5b&GEP4x&*{SyJ+Ab
z|3X{03FCUufZk?<k=1*?KjuF%Q0<RsuQNv%RT72@J`@;krb+qNY42<B6D}r}(%)H*
z-tlKUNepZ5@eNE9Zv(RKH_d!WH(Zv;u6<1;xAzQ^)1u$Png!}kwy$;xl>MraF=Sgs
zAtEpth@}xMN26$QGNb3!ec1Lil3HmZz8;ykG?Y7@FZp<O-HW>3?;>1X9IlPWzBUVn
zDv)(_rP7}U4+^BDr!{ou4<dskiO$xPB-IRx`p6Y$46_w`1>`ynAlbB=x|b+^Nl}FZ
z@JXzg-P*Q>sVyb}F(m6_qnDoJzV~sjWM7Fz)B;)M`MRE3k(T^q#ocMWdIe;P+5z?a
zY`^g4PXdK)@iO{!U}MtoQ|Cb3Lj|@j@3GSZJnk!oFakA2&~@&#pd(7zwi;Gorc>wG
zd}so$#oXN-i;I&8O73+`+~aC*_y7RN&V0nvPZ1S*d3oy0wCG=xTeoeW^#iZBNqQOu
z-T8*zSjB;t`j;o#Ya=$}5q9uJt?iu3fKUj!)1juzS$XO`aq-Y%-XucH{oP-j6nRjt
z!ptND8+vbqdX;CVvJZ}c>#*FxK{@M9JysJ{idIPZj}2{j4L2d@+P0zSo0~X*jDEf$
zk7@!9-)=+ZoTf`55g2$szMMEeVxH+yz{$bE!2pC73CMYF%g-6&PUph8Mx`aT7>Vir
z@fPmB%ekIsg}x~mr&5f_L3a%(IYWP5ZNrE)-!rkhx`<He`<lASU74jr<~_7{Awf?#
zT#gS6`{1FapYFFc{{!mJv7Z%vE9dc7@Fm8f0u(31rPpP7fq}no&Plpcwn|;aMl#XQ
zud<^UiNOKja)(}^-rm;Mj`#bL53V*i{ISSzY8vk#=rpt|vaAuze2PhVKDgTPc)%21
zahVYi>HZkZpQW}QQ6Syi$Vap3SRw2))@OEp1c33z!?lS(-*uAY-f0uy#j0%oc4PuP
z!b?w<kwn{TEL`nkhG!T~0h-RuXZ&bf?qK1NZwpP?{X(-Ey#y610+P7RCZ46;WU{@9
z1+tmaYB*)C>ye|Q>s(+lqoWkHBk{e2>ftOENjl0yf?zLIqWOp$zHi4Kz{RpK_3&|o
z>sJ=14B+>5pIv&YtO$x%W|gN1i<N_a8e`}N0vGRtAV5bz5e>~}+DIYZQblz`Rutk}
ze&=or17~nzRkMA&v&r>oPGr5>VK3Ks%7xrUlS(gD3D4Yf&u+q-@-ht$xuM!{h;4`a
z``#+U=aV{Ta8TyQ;&*H8vvIAK1Ii%nvn3)I@^G*MY#Z)N=ruU0*gsFNgp^ja7k9sh
z`5XFPYWy|h=96W&)w*=7pW1RBxv$T_zNFktnqR3!MCOKxJ`ko3fL-Bp-iwf5uXe+y
zq+{GmwA_0jfP3zG`@yXb_+Oft9?}NF<H-T<WW=V)x{-Kdi`!1wTM;)BnBL6_#@j_n
z7LU0-UpzvbE~gv*UtKvA0~RMHWq&E73AY-Q6M*P8J5LT!np1Ghs8ihGdf%|t_vJNk
zl5z1Q`*nTQ96Iud`~_S)w%WY)6rwh{N$NbS1&;E$?c?c*n%n5q9q;^+#WcF9sZtsr
zj9?>>+vt=~hTp!DL04uuWR+5KqAR<ZRo!bCyLRS>vhmAJpDx`ImIM7T;Vo}VM(T(R
zfg>j~429Vm71DZC{E?a3Fh0Ny2uvf4TUSQcN6}&AFAA_R7X9rYk)D>_irvqn9kw-D
z6Q(%8$U;g|obSJ@60F-!puQ!}%A&nVZI8LBYG3_FQ<#r!*8IqGlJtf|vZtexfDHTS
zOh#CA0$->A+<8l$ePUv;1?OcB8)$|JyT+sAIXB$;m+oPv#L^0w3Mknl$6`pP*zsJ2
z2032q8R{s3TCs+gAgN#2bwJBu94D=VS9gEz)hxX3+WGjb7$7Y|koRc%IQVyRac)Lu
z$1&2dT^yn=D8%8%Ay#h!8$pk#l8+8&B$DrkXJ)qOTzdKC*FDVwxq0X1z<P?thA`FK
zY)CV6>sFyeP=Yp+@B&$ST7xOWknc?Uksecvi**GAU9BMTbNmU9LGB$S?&kK*1Y|&|
zS2)Jkv7*l(&}Xod`0E+%JuKu%tjIz6IXVSd{NiwSGF9Y{_je;auJ#FS2sgE*yYzAP
z-zjpgGouY~8)G}<D1$BE|G+V=`l>QIDZ|E-^z=$$Q8M?DpcX3FfUr6%Ec}J-@(SNS
z1a0T5Cp4855f+h7=x(Rvt7Eu(u(P%)g^3Ap?~#h8I>9TCx|_c0vRUy-Jk&D*YYVuE
zTuBFwrGK!0B9Y<fAMR`{-~0s^?GKZ#@Q%G>a5J!ZamsJo{HNkMwnF6_3LBYQF<Wy%
zut{@&l)C;_qm{fut}1i|qJq!#&QW@zZv(}*)2SG7lP!bPD-*T-1iM&Fm;?M#GC_;Y
zke6Iac4-|rj+OfbhC>2=4&CXXZD%4ahRjT-eR3@S{DvmZ;|6Q5D+WG0j!d$t@#h7U
zq?B##Us29p0Unu(i}dh`=Z5!9>&8t)S}%x9PG${{q(c+m4VoUJRlBr2Zdbzc*C=NE
z4ht&YA5fnw?&diN)lSPA#_)3H)Sph9cd)cRj=->cHGaKW@s^b6R&v9T6cWOv?Ca@z
z-ubg`X6?c!g#k#f?rdduq4YdQ+owzLIg2`Ex4zRd$ooXd+{%^pntTjQDVAe?O8`aE
z{FTREkNH&wLdvWErS47WX#$mz#p!krtgQiiEKAwy=e{Tyrj}sWaQ~aW+<yOi?9z}j
zhKSERNe=Q4p~SD}{pjPOm}Cj2Rnsf_;b-wHtEM1vwf^O8Lf(h|Z3LD}=Z5g~^!hXZ
zT@=z4x}LWovVVCM&_s4^oW2%F2W*Ys?llS7(7z|w`zd8mhI*h+g;jaJ)qvR;TIl`g
z7@AAi7uuww6}lTc0c68IV@Fg{o1y!i@7j<L&+!?BrU{InjltAhM}$X2=?@H$100WJ
zA{QxJgXIl3N@q05uN`j4G{_Y=Hbbelhlu57ly}8D^-BQJ!{)ZTNGy)2Q^cj2$vhg~
z&_k9r$bp}5D}RlymKAfPC;h7U>r#wav1Fl`zZo53^oI7w*x4!J?p=W6dYj9->G9kP
z)(LuMaGh0H;T!DlpU&P_gdb&>J;(lBxip35^c9TXu*M@A7+Lq4UztU;Nc@xh@;!qE
zIE9}saM&7Pw+4wq;NRYV_2V&uA_S=7ZQwx~+UIpWyI#1)+Ug0`xY%&xhg5{am!F^6
zvoDrIM$bR{rZ9L3&K>VUa*HI@5=MhAxV|gsJ;n<SD5zv5wGw0rFxc$t*XgUqeD9d1
zhkv*=H?MkxABX5Wm7J`UhLy4mK13S`{*7)lfYGdrXL>mjBRe`ROKojC86!C@ElGVb
z<SN~>4^ek<i3?XHt}mOXN!8(+YTg?LnbfuA_uR;Vak{UloFFP)0vdO8KjN<=ZrtD^
zvpzBC=aHFxS#yPPRH3^8pDvx9kYw)UNfIC<J4$z4r{QTX_Y6tkrXyhQ*9Gb-#6f^}
zK!mrKA_u)WJll)vVqq_&Am@&D&OQNCY>MUqm$CQe2CT%NHKfsFJs&CD&bND%q@)T{
zZpNBgs}8q8m9etWhD4uIbs+S$E7D#q`>RfvSKG^x5TNfBvbfmo9aJ|=ujAF5<81II
z5WGm_N!jP#wd#q!VmK)f0l*&od(|LQp?f#m{Y1dssjK|(Y}~(<_6d8<AsYhF-(>Rf
zIb*>l64&a~!SZYpJ=yJR?W=`2IXy_9{ssM;;bVLF*?CzE=GZ?cZ_0S(vI`rwtzJ>H
zdtE2f<T)nBhto}1`?qnoB0{EBUu*AvfkhQ$Uz$nFp@r3Wvg{|Z&;10b@}eOwRKR;S
zgX&l>KIv#q6_2yqi=!ym?sVg8Qgbh4{eiA+kEKo7!M5!=M9v4(+BN~ae;RSmz9*h%
zs+G6SB=Y56(^dO7Pi)uYV;WyO@0(r=K<OsS74U)XW5esx5ee?chmp&Pv_1$A>-Rqy
zw+ZqJ4=>yFoCaW?2M$V5K|`7A;D9xe=|iQz?UeS3g@`eZU=In8Iil{XeP5Zh24SRZ
zODA#>1>Df_G@*+iS5$h$W%GJlX?Er(XTBL_m`z@bmFzPmfGK2zl%3?MKlA$;<)(<j
zNr@|nf#YGK92@Bj6F9T9&w+QMpZ35E_m3uhlVMk+i4}3p+(=h56@eTwT!Y-G>DnLS
zlnE=0L$hjHac=q)KQF3?rFDI2OUFT$(x2yrWb-@CJgSIApn4BbwtsBN?>|IvNg9AE
z-r?;JLy2~pSYDLoi4t#<@Wh^JmwvFnz{W$iuOkok41VKYmo$7&(ED`KJ#%17-oKI?
z>;!y6&LKv++ELEvOpy{o+wl=r`hmlzbcU1WTAZf=tT8(G&><qbXs&bUU!I6uQRfN}
zA)^>bq3Ne^kGKe!3&xxC+|PT2SY1^DG_|(A`s*6CaLrCo<7VJG*dv2yh;YMqmJT@O
z7G(VXfyOrs8)5-#W|O?gZz(*<M!(y!OY!8J2)xE+{jSWVWf&Ec5`7CDw2xg*aZ^^h
z{Lq<Hi&7L<We@LSk-lvM81x;Dlde0<?ARAzA6tZEv)<eC3;}t5TcCKQV1Z8fxEOmi
zPHg~p8hOrSgLXMV^T_y%elMN@w3e$hubIiuo$H<kKM?ZvG4e0%X?a&lF@Jog!2OGj
zW7X*5?^rS@?@i9z*TDbw=Mwfhe`V$6Ms&?OYxkFqh;vN!F~B5vaH%JPig%>aLhKvx
z5*$BXUy;YfG^VRc!ql^fbZMTx@@8#iFUyUt8J7MFn6wCk_@}F|bNuKvGJ@xZ)L5Zj
zJ!_5P=jf)hri@6XTt4C;eaQK8rDoJZqGydMoon^Pv>`<B@p#cMB<j9|pc4^d460M}
zf9QC_#m|vyY1kK(Qaw3U7D*HO48hVo?v;rsV6F8sf%u_g8s$%Lp4`av^Xu&hC3oP<
z10}iJ2lUX$ENgShwgTR_oU`^k%f(Nzb#GGEuDR><qFL3?*2@-lp$7eKlCs}dYSjBx
zuMp%+{h7Mem9ko|Ns<2fwcN5k@}KQJmZq@`-twnCi&GF-J<Di1L)fp$s|NHbQ;6V7
z<Tan6Ix3(QsS=laj>lBD`chmIKVP=5^;vo2urTrO17KrIA*bKby6J1^e2QC`YLzB2
z-U8lgvZ>$>yAxIxG#R{M>HDX*e34n8l`xC{X3O`rhZQEOHtm_a{Hf?t*XdVNU;k4A
z<-UDjo)xb@Kd%wp6|T`tP{wPw*jBsW6!m^JJWrF!UR{QP$hO=N<7?x9kcEkY0zZg^
zC#feaVv@)d0WVOlp{W_)pDS7**h*mBsMOp?$X;ISE0Qm7Sa)3>sP~hYf-7F6@-Ic%
zl&hx{dX&V)j)dipAE8jSe?Xc}1(1#!sN9WkSFNoWB#{uKa<cY2Y?SF5gC-eh`ks;y
zQWlydMcU3rou&35py)_&R3u03JiI7dTf*j5L<$uQ=XRUz)+BaOn3;P}{J}wdC|^Dn
zCtJ|uwD}OqUyK~^3GnU2=dY>S8=DZDY_eDfz5bX>4atTgO;e=}qXs}nx5~D36oth{
zzdRT+-$#Ne6Towf+ABJPfi5)cQ^@e_Ivd8j82cxDL-ekPK;nDDy1K%~Cd5cel+KI_
z?pO#7tY~Um6QE{eT7bAcOkQ4G>g$4U0qGOO0XJNMDEEW&Hg&&+x!IwSE3m8SIC{mn
zQ(P67N3qArouFna|I;KyVVt7c4?1m+Nt=+J2uojo<HsfPnfb7ShJk_6f(9GuU<YNK
zFJ!E2x0kl5fsaDCzObmEjvPW6yk3@}e%(DK85SKXPU>#%<@^#CroKr>x5+c}kUk+3
zDkfI_{g`7o$heR-kayHPLfjv1lsxTb$6uVm9I{PAD?Ud!|7byo9bPV0A|_P4*8@AZ
zT8#*Wkgr}mIYUf(tisB&3OFujTS;#kBV#x}7p~ws7K}H(#|#I*C&-cxtjM4Ki7ba&
zek^fhC06=@%awH<G63Az&l(wjQ@X_AlDNFbv(-)6TD`-^d-}lDa_n-meL+^UpUkGQ
zV<Wmg8byA~4{fC+BWALYw|)A#hhFlxzmExgV#oLLJCDOBd=?UuXkzQtyhsHHYTc3#
z^6qmR8S`uU!~DX*-_*_lh4Nj4UOO8ykQ|(TkAe%|8V%37MlvOAWoH;r+MoO76QTtz
z;Lx00iUKk}c8$MRZ8usrclcYlkDsp<+S@V^%?;GNF7!mI*lVhYp>DwEbDE8ekC&f8
z2KekGq<p%a?D*}|KZ`A@o$0g^h+6mOYikSC8d}40H(kPxkJP*P>;AAByB>Ip;F!-g
zsi{VeYaGAg1*aEW-(PR^j8_Ef^R?qrZ||2@yl`-6f4o!{v%>8c8SA+!%5`{xmGSR~
z0(h`WBjK&FtdFQ$tR_w{CEABf-E>J(xK};THHAz8Pr4Y8d88#Ip91!$)EV9$E+ai?
zu7dEC$*I(KT#w*vMrYt~x4Yyb1Tdsr_k8-je_prB<?}1hovR+k%k^Yt<3httcFLKF
z{KV1GMMgXnQqa2-&&!mexacb$6w;x}XbP%^y3xi``8Ye>riB)!#Kd9J<Hg4a`HD%e
z?z9_zDejR}L?6*HCin(8AC~*6)AYoA3!}nb(;8rb+UyEI+&FWnhlWR$88GBGG`)gV
z6wS>V$eMiy|0X3+nEtPjF$3vD-88xH0X}p%z4u03!kyrrThTIXceRzc5oya`kO!Q&
z_V47IHfEr!Fi4g*x%E2^1q(8Ni!>{H-11L8lk=4|>DL=%BC^cT;oyRIg>sPeJkfuA
z96Eo|*fd#JR|ibppE)QR1Nl)Zc<@{Ku*Rrusq8^(Uy{{dWi698-lAqGG3cnJKS`*^
z7bqusc<pQ;hk*fQO`)!^;N^K)$uFq?aBlb~{<C!H|9B%nREa~q|6G5mu~~1M{off4
z<u3j%aEB<unBn6)4pJUsTcgkoJDL@jaYk@SS{%qAIAId{x8QevR+@S9G-d5>?f>?5
zTz2tMB=V&fVouUEQ!R8E5hI#;a?zBK3hZ42!Hr_Z4{M;HL^(+D>0`$A!PTRFD$T*s
zqQJS5l9GN0r}hq@<zX3Nj!c15s@ET$LriXJ0`713YO?IGavq1mw!t_7rGabe(MMey
zG;UHW+M@SM4MGR(Ioi#f`riR5MJDZ|nd8O}R>xQj*G!Vy5;pd{26JDA_#;t|6Fls;
z7RaWU`&p9x0PBZJ|9CPIeQO<q-+1k8At+emGwpv=m!@zC3A6Q@u}{v{IXQwU&};Gl
zb;2Y?>2*~~Y(e6Gmu+~-lM$exXGC4!!<{q)=Ecg!-I^0sPFI9QQnRKoj`>DUp6$xh
zW|eszr?>PUJ1r^yeQba2>jpNac=47_+Gl}fWC;lgPIp4toU|%U<$v@!f=8!pbrgwD
zlHTmCBe3D;RKg6x<E^6Ij}Z&GbNFmhLc@Ll%5bD*VzT5n6j&k=4_q(Wc7E(Qng%(7
z^|!?nC`pqP8CAlyPr(mU7+TA^njjjr>0XchwT!IoI8gk#ndLc0wxOs<olmsSzR2|U
z_Me4eF?%{k9O?$A*xmUPCz)eNmA<r35d!2JAOtUgL$$N=wI698hnZ90KU67-icrsG
z-;V0%GpC-hkcv5T9wtw7GR+j^XVUhPsk3S@#mVA>AqK|@1MR}eCxJUOSxZk>%Q1rw
z6JxS0qBFn`Q=(-~y&NHd?cR?Q!LcfF7Frsbx)^7ac}rJp;&M8l<+>7^2J%#S{JR0}
z>3e2?5J_At1F#i#__gwwg_i*m!;v&9k+f_8o9)6A6YkiXoUYXB$JAq@&o1lk{lrN&
zzO9`6Oji8Tl`<=KPG8ZwqG?dVHAgWc?c@zG<0V6|R9!2k1DAI}{H4X==Q*TNs#q>k
zOTD@fC`{#NtHP-I$yyQbC2JXD_wP<HcA$i|s$FB9;a}LeD37t2I<}>D2Tp(5`95{q
z|CVGeMfYU2sxx{PyY8;R%!y%Kx6Nxx)q9)kfke|QvB}ix=m6aG=15Ti2h+y&y(2B?
zrO<GUYm22%z1eY`y2_U!F6#8+eUPha?kv2ms`WzrMVH4>Z4@ASj<z<WhA8@2o|=li
z4mI$$ZibtdPQ+KSIl5mr641^q#*xEg#JoCia4@N_z;;KX2uxU0!OQM4;ba0u3(~jC
zhe!8sAOwj+cz^bxIfw?YRu&#^q9Wk&mb=zTQsH92^NX;p3=j@{)rEG;eINAS&CBbn
zyER8Rldxa7nLM-~32G!k*?{lC3Uedv*Yb;<-uLU<xzqyP$YLc!@2fs?Siz_7AO<$)
zZnRr~#oF;Pg_6&O9$4`%^GkCx{L32x6I%e>-bF@U;dCrFlams9Sp?3JMty82Hqg<V
zgZmsq#I_VPXy+#_(q(-IHsbsbZCvWZ`v2X=m2kEADb$j}IhBEpzvrxi3p_c`PLlw)
zt1j*94z7U-GS2heWwyI`G$=PC3nBmVivFE?E_cSvOUaMplTAT=Q(oxP1-cKRamxIc
zVXm1kT@6{Ns<67vX}}UM{*FkNQYa(tl^M~?U{{{7Y3eP2Moh{6z#B(cv+{K5QSRkc
zn;y)k3TtDW2cOfW<UfI@eel&JD4Ff+K@T@85yiiQPl9h4;<60nil$~_NOsqVr58sD
zH!sX|p;6HV3Z=kdD2W+Om2K&w>4@39f%EomfK3TSFKeAs{I<G=PqB`mq4?(rhuvFk
z-G)|gXLr~aN^Wibv2QkO$#0;!<4*r6lgG3c%?A{D#<(!c+8lKek-@~aEA<m&HKi_n
zkRxy2$}&bxn)BNVWI1G3*ja!gQJEP9=~Hyg@GALvo33_pk}!0NC}|6yO@Bk8s)`D<
z><VxHRhjX?;4nooybaI0j>&JzrzYK>A<5x?KyMcG6pe>RDn0HM4LdRqR!T-jCT;=D
z=D{~{P&9AX=2A*>N<tJLQ2$G`xm(#mAt8u?J{wqO&HAJ~YsazKSc@P6?C??`Optm-
zykAIZs<C;~S-Gu96~m<~Jpf?MrM9;Q#5UOaZ{wf{L`6%t#57MK{Y+-9FZk0H+-5_c
zc0UrUp$0nOuuZP$?4_xgBNw9g>PEw!8~vj#+3^Pl%KzBgwNY)yN3kKm0Xd07AJ?2j
z&LC?$*G5FKQHif#&N7-uc_{8au1$IyhIsdfj&g5rb==uy{xUAu=_~N>>1^*S8)ljl
z&7X^jwd+}0lixwlwdsfpF39oAj8Mvj9iJLP3A*a-y2us>56<Rnz7ozWGd7|9q>kH&
z-llQL`Jpw6UgzPjzXQEkm~Z5y``^$0lC4kYFuj$}cV@2Z)w9Rp;yJD#$*%10;YzGM
zNriW7PR?j8GW=;fcG_$r$QF_nqO*l74}Bc7!ip7VXJ(t*IUq!g{LyA>CIcTQ#yDze
z|6t%tyU5C3unnD@WknU@IN-omu=K$iuu4x>;HAOLhNKI~(vlRf2shk5^Wh3vgXmtt
zRSO6{tGl=69SU7|3tCj!o{R(bbivlnOkD<w>S(6QtpY4T;Q^0r4?#?8XD8TTe8o_B
ze;h5t8azx35>{z?UL(x%UY@r5pLtU=6H8Ck$1T${Ywb=AwKFVW|K$q7xlaH;2AKaW
z^y)6m>+<<$Gq*+)59YB^nBYbeXq{RoS+U&JHW5k4i=o%xg%N}s?B(&*XcRnyt2l()
z7VJ|I;rWPkk>D|Nwyn5Yl*_n5q0Df#<ry;~%HsH`G%m(1H}!S>rOpzm`=51ysAw6i
z=o?S%^OM@V$IGzqoBhHJw9I9(oIkbFb}&&7&-S!dhA05NIQ2{}XZj{k1F8Wq?QEkf
zQ!GqOV{3$LMSPg5=8>+t&~KT5t`a&L#!{V?<WtBm0`=Gs-Y7!LGn|?AS=8}R8SyYD
zc$wj$mS~Z-E|fT9L;`OBV5jeVEXoe?k9!NZY6Gk~Yi%3Fzd}MJ;#~XbaJWCSCjwPX
z>U2*(c)E%H9TWCV4gX(bLRW_cV$zvHnGxjLpEn5MFb{wjI*Wb^kIt;l{XGNTj`z3r
zvrRBX{w6Wox6l)_{qa{;9-ETJQc*czVK#JUF07RV+yh)xGys4EcFV1lwRb>(jfHc5
zg25e>5+i+QB~9yYvOq_<LS76mp`?)OA>^a#Th4BW+u8B)LxMRniq8DL0JsTj!e2C0
zpk0IxvN44IOA@a+*Y1~#OLt9bsu(o1Zmwf}0fhSkg0uv5cta!Y-d;Zbg=cW#9HXd^
z>DNr;JB7SYQoF32S}rngJE&3gLp^d-k>-ic<Q19`G<OTMLVbh<T7L&kTd;Z6&=e>N
zHPft0i>s^yE)RJ8wQbK3=cJ8}9EY*L26Q*Axl3t%v8`B*sgw#H+tTR~0XOT?{*E9d
zP8~_6SKq$Bpw|Zhfnw_Q+7yyY`FVHo=*TpjCRJ&p<3l`*xpPl<#a=`WHBJjQNUD{C
zg~8rc8c@cZ{2MM)7wXpckJUsXO0YH;0G{BudBM9|8~yMCA#5DTrRf1B8Up<+5^yG$
zECw$nE^haL0CuY~WXD?fl&9#Gr4@k96gS02&+k2sqhlWBDK%qqc7i#btMN97Mt+x}
zVAVHDk1GHu>C{E<pXyEEjh04OSm$mhADFA0>=cl$h`zha8*Eu?2ZW6{^2{cb8xo4I
zeA5ZZXm@ckszJtBiZ0_|Pswcw{XU)fSHYtgJC<2#2xjWaLguFa7EW4%npzrJqRQAb
zSWTl1l7f;<Q;loq13WuFisAizpQ_Ac%rdp)L_=vmzk0wtY4^+*VFOHnHAk^GEEnu`
z(p|-wj=&WMISJVEA<7LOS*gWuiH#vnXM=r7ix5Li1a=x$we$gu+m67`&p{&M1yWmi
z#+q_X7naewJBHSyvP`Ns`4rh_2BD-@G+rl=Drz+(tg143JbPQ3G|3E=U4QqM#bX&L
z&cHMLKg_*TkY&*q=9yJ#+pM&+(zb2ewr$&)H*MQCD{b4h(fN<=XiQ9Z%*@lg-1T(g
z#JP8$yZ2hZ^{p@X3?npCMn4zbz79^URb)40qHoPp#b(4q;xb^a?^v10RL+zAu`E7#
zX0}YyY0~O2_~mVnIo$9Rr{7}y=LylB4?+r=Qy8@x)@vS<Mc>a76cnmpC;b&j+gDw7
zioiMA?OwE-t9RYds+%nBJe4JcSUO+s1U53j)}pI5>~5@Mf5TpGI-tX#G);zzw9Yfa
zk^otiTUq%hAG7pBQf62a+zxDI{Rh_-$@D_IJ|6`*GBaNwBMeZ(xE3b>_so4s=xX>_
z`mlAu=wLdB?=IrV1eLI2e>5u+ZTUPL)wiZekR$EINNH$Q$ENZoiLH)4;+2&4%&u#Q
zK8_Au0Q@2G=6Ty85@BED9p9-6E&@ykbvBL<g@JPdi=420P$fL;`{&ZsA9j4~LPpem
z^dSlA*h#p$4mEr&Mc5>{`l0z7nYpREw3V>Y<z}FnT>D2hGiJ^)d~-ULMBHe(PA}7E
zLAyG&JP>HN)kJDlaltDjAx19)Y+OZ3$?Rgz6^SA`#OZ$ggF0lX|Bjnw(+4;8;n@tP
ziRFeGn)=3;*ls+y<&^05^Lgj{u1!Grw{9|$qn3uG(#fk|{kHT%f}8v8pZQam6svmw
zi|^Jre^BHXC@uS`u=OkG{!weiwGF-+UB=w9SkysV+d*&f?~*3p^d-`dPI!5rx1py1
z`T?|r9Wq?ppLQvoX5%brM&pD?+T9b(4_-!@u%Nz%mV~XxnXP}(V`q5w$zMT4?y1Qi
znO_kgXoT6QM&i<U3S;~3(`gXe4t^s-nN>ikZ`8htc5Q*oluT@%wNYb!G>Mm$>$y6>
z0==+dm)gJQ6&i*qo_*zX8`KfCKrEX4)MONl?mR#V{8i8>@~49^L<IzU_)Td0W6NAe
z*~<x3egYqinb~w1bbv?%u6OwVhNj*8jJ2BK!y^;dlo3;shyS~`Il*a^))Glpdnz+b
z^Rgjl33pQV`0l<p$0lcko%u`g*8nqE%GB-c?Sq+z$mygakrp?ytB+|J8EkWiy-hLf
z%U=aiA2ly!*|=1AtDz7}SQ`Hpa7i(`vd|2BN<*Az9AJfcB$(+eN)!G5;zkHBwMr7I
zzePTO7nVhTQ>FE8QMC5_iA9*2c_^MBcn4tiv@k5iV?@e0G=L>w9~&)lLBaEmjydPH
zY>~v3Mj)w{_#M@|)zXC-fwL#Y=*?dowYIVa{zH%OwBa;(oiV#O0b`bs|K}AqnNF1n
zJDGd;b7Hy-s6NlwM)Xmw(`8b^;&Vw8O%y{oI$~#o^2zp5rDJ1INzW01wVQW^*o9pJ
z7eZAceKT$5ckSfhfq^OsHN`iRCIR01B`+-AH}z}bWhE`GwXk@Y!xrDmLUFuZhs`w2
zrKt`NGbbW87wre0?e{Bdr^!Iy%{APj-h*>->m3*K%&u?I{YDuL3%A8ZE1dt}^izOr
z_ZG}UR?NXj+4QN(VWi5m`NK}I7KfCyF<N2ta^M8zw|=5$j)t2vnma!qX*s?ZfONJq
zY9#4_f--f|YeN2|=25G9Im)y`(%=jtB>GNi4yiu7OW&Z~4(XE-T}Hwk5<d@gpmlL{
zAs!{h@X?iKEv@5oE64VUta)!vuk2QXOcso#k(3Gu_ubb%O_lkn6WY*aHtC{n5@)U~
zv_p|+)*NsF?OKV$f++-wa|Gni83+>bNqB^Ll5FWi+Bu(}P}Bdt{~gZ#x)9`{A}wL&
z4*vox(#7?`zsG0p<#nm&En%l)=$o7Pndxunqj>g+N7fOA7&i|^V_uQP$lO1GS<_wr
zcRF`!m<jpVZ?N@8|4`g|TkIkwXRU{hw`(90DI1YDpI8r-0loLZU`njMbae(gA`CJC
zL!Ozg?`~a7yG#mR%mM`-K{RlG^Ll#AQxkVExRdLd1@yg{``?h(DBjB8|BAFwe>MqJ
zrV;VEgj4*O*mp*ps5LTrR!(%iXH;Rg;el`vUPHkdWG834zV&W%PvA?P6^$rZn7S@2
zD+u>fYg>X5MG-(JvORdPqV+Bsc&Bg&0eNGfvHTT`TMY1Ibo($p9hvF|Yvx^JGvV8X
zH*Peeb;Zi~V7OU%5Y6dRAA9H0#i)Rr+tkqvF3e2;9DNP#Y_L43+2mb#1!AM|+wig-
zb^@*dV;?DxFEMv7OAUAuS<^!M?;ys_^=3F%3a?75-eq_7^e2D16RKudvGWRX2(f_j
zoGV*Z`H{lo{=VI<kKUcicbrELzn|uH@S3%YE+Z@e&^KMa!q`oo#`NeQC+y-`+KBP?
z{TqRKPjWK$me&u@YWI6PGreAbZ?tP%9-?Z@W9ov7fH>Mcm|N01#7r5ok+=^J>`|!g
zvc}E9-n*EC#u}aFF@4_2yQ0*!V3~*(U%lw#LoeaSB)uGEb<K@W9XXLxvx53L1OUS=
zW$#F;FG8wHcl9o9B?LifS$bvSfQN!@ZUp$#TvFXbNe7noP9EGN33jfv&SUh<69IYH
zGTZZGw)P_yzH}_c`h6GA^x=PLIYV~aKN8VU@QX*+^2<E9R*nd(3|^g;O*=>WS;iJ<
zSx16{q$}kN|5=eCdGAnx8`Dq-+=GON&bVRiPLSjETaR01mk9vj&G>D{{LjPM$_u1l
zr&gS0Y5xR`nZl-}G4zaq0&g#j-p4a0ruwssb*AQ!rSFi}kvI{8Pj3DUOq3)o%1Xb4
z51Nz2le+~G;<%;AF_n6gXnEQmYt0>rEYidhLkH&bj@Y+^LG5_N3nvS3?#Q*bb5_Cz
zKmX#PVl2QXo(htI*1<9G+T2YDR#4u<vBlb<EGOa`MH_7F;?yt0J{6P`?*hj&qOO{x
zrK|}}%ca*+1R9LmXd2AHw=FwYR&&e{VxNVZiv-NUF$Q2;N<h~DiZv~zoMP;Taw=!g
z(0}$!SnoS@l!~6%p~&2WhjG!w-~eWv5~eHn%B6>OYm@7%*z-m@bK7eNsZmleK-QA>
zVyt;w{w5zk%Q$3?`WapwVWB4|l)XfO$--TAcv4a7yq>oPtXhT5X|q21?Zeg8@BUf7
zmUbawBP%FKhmvws@72ndkFw<kby6+?4<BoW<xk_R4w()CsAUsDNtUq2`~^$UNMycn
zw`56VQaLPuB^D9f<-=#GZeV7{RZ8XEq@LRd)*1X;mwrAHKQ=ZTY*jL2>{p`s3`J$S
zwmG+smddovc$58;zK|$0j6f5teSNOTERkZ~U$K?T#VW!5jq37ZAB4l^WPjkuF>27E
z!XZ)7VpMv`h@H}X5IP>ppSeF(&7Ckg^zp<)GlU6x^AtE{<<_C#+v<ui5vKI_{E+F!
zZlW)Uy&Gg&I`cx}BOh<{m>wej<uRa{2d!ls{y-LM_Q+(}H%rjeHj^M^f3QBbA#q;z
zrBqXs!h6*L2r0@-{%~F@22MgC-at$r1(kPLD@?Ac2V@6IMj`J@wV<%5sCIv-Mz!G9
z6;FW@B?{zE$8h4<cu>$0vsG7T<hBK%$jA$F#DQlNgI*qqPb-WM2E;|<I62edx=TfY
z?%`TcLWAet{rF&570Ysag|1$lI2$6MvF&_}X{_EuG|o&^Cy*+B9CjL3F23$K*lKw<
zROVrpUB>J8h>#d^=g>_D{cUCFLJH6Wok?!hhuR);`)zz|6(>i@KjxkQ5x@Sl{xx0=
zN4zz+EB(t#oBz!*lqfDTP8n7}LLpTk`ZpmDCCYJ}5>RX$Fz3Jp+yeZOJ9}FuFazYU
zZf<^$p};xM#V1~wP4%OyD|)g#aSHf{g~JFjKi<S`=fs*f-gd0PYM`^>@PnBYgs`s|
zn-`N1c_o#_Azye*<e`$|)pQj%r_dVKEZ$%B=7ogaQAa5*ENx7}Lo_ToR&G=)XvB);
z%hZ)wCkB#Dhx{7iv;!+BdWZ<QxXO}Bujf!K+ywNsC7o%ka0&x=zzc<E*H?p7;eYAE
zK1Kf{T&7`!PUKfa&WM3Oi-8aPh@Yj;6rYK#hz^T7y}Yu)LWpr%a2~KkG;C67*|YTi
zH*el(w$f!-EWEJo;XOBSRO`Q~Bb_)9@-)FxpGxrGlxpl-|52);!o~7>{geW{Ix)&4
zV8;Q;bLOTUmXWd9ZtdV|p)ePGp-Q*)tC)_ehSM|1#ZyqJ(za!QTn-BJjO%W*A9rA&
ztFTsFL*U11oo)(y`NpLF^zMaELFWeB<L@VfqY>hg`OQrl5`X^a>7c7?YYf~{r#q5V
z&`&g^PaF%i`&JXO|1%|8E{6BzOzd~TCS#L%A0#wPSMRN>5cTiJI>Lk9|LJky`|Ps1
zHa<YCw9#_}UnI7<y})`gG%@|Dq2mE#aeB(8as0j{zKR;g_tS%-T+FP!PM}zE;+y7Z
zKzaH^jAahoPfU8?IB_jrLK<jr6tuwY1Pyir6EIlJc<!KvxD5m1=#W@@VU#lYX~M~{
zupz85_xg`qEh970=jBH_#Kl5<n5qFf1H&BvyAf!E$Q3Z*)jyEf@RI);HA9GJ-MFT9
zgC|X%I5X5qvGAqq@u@mw9rMg75b0JJCsu?gu3pTe4|e76NX3Q+vl&S9Nr>cd{biK4
zjr#u%7HP48i;DQnXN>;$%D8MlI~x-<3e@g7E9md5&F$VXq;Sxkz)9pg(U7o0&VD3G
z5&qR3Dv_1tWAO4-JQO~B14j|jV52pzpP_jFabpMnw;Akc7sfrOlAm8`W}<KGbrh$K
zq)5F}&%P1AoA(RND~q|>CGbXgaRx6wih0zUn>AX0c9=5tw`9=ot<h146{ZQS!AQej
z8UGF)RtDT|`Ixa?s5kY@4GW6PMW)Mvi+(tf+t;7?QXT!+VdACcho4>vJX?fs4!qQX
z-Kd>+xLQ$>8v)xN>Id@s$1q3jiZ(Mq{_7OCM<q&+@YfBSKjSJUS~lLb?G?Hz&s2Fw
zegSIwB60Eqhi+GSjc>C2%B&7TqyDFjqGC<{+(WsGi!~e(ZAzZ2a7|;@k4X(zpAG%O
za*LxKjP$6f;H6QxkQ6hj_Shf_%WR|1zWf+U3gT66MTP1HEk-I!IfZ#R@qj(O`2bFL
zY0dBo-}E360XbU&@Io3@7}SG}DeNZy|3Gc5yEr&_my<drcE&J2GsAHPt+&55HYif0
z>)@~Db_~;o=-c|Ub(a2m?Hnd^Yo3w4!Iho-=3F{UbKR0_zdzk~2~R6ESoSFxJFR1s
z&@2zF?bE8!M%M!Mx`OSeDAnqb?V#`bsx+h|#a3FYp2|MsDy?LsU(9Pf&PPGcTxn_v
z=bhEkK6Q8{4`k;WqUCX$OM!-Nqxqj8qE<~QD^(_;eOLWnvV57+TuQS`MtN7)XWeE`
z&~jZM6I>QUv&v?3MZ~tV-09s(5cSkoqwlUA;9h;Z@@p)dR9P4ovqkDOsL4!;&|E^H
z^MW6uL~X9J-3OgVsRFRs`_x_uSRh1+B=J{;BW`KNlLzi!b?18=7t;NzPDJzi<(oEu
zT^_?>i>ioWwwE>Ua?Gy!-v<(Um#UB>;%KxqCJ4eTMv#qQB|TX{3K`srm30Cr$bWY)
zlw`LnVs~FJ3kr56&6n59Vy{3xnL_M7NS*%&Fe%R^i=RK2VMWR6&*Ppp^ox6B?(Y-k
z$&us1vTosP!E9ril~pSZ+wv9$K$p}{wHETrKbAWgXc6y3ioB{aPg`isVeZ_|;*kBU
zIRZS==SH@$c^!@hwv$p>{-tc|V-SHp2w$ezuM0%&`F|yJ^rB$0W#nqB>9()C#{zIi
zF5<8C;kI#;^3ymf0m<!#2FC|(n^QC;BF1V#yWx(-Xh(pNB<D_(AY>b?-P@hix{w!c
z=by<O>AKwRbD92QfWzi2%p8mLu1geOFOEgw`_h=Yas5di|3)sU?@GgRKiAX@<sYEq
zK5A4SJ~oyyP<R1nJ0kF7-Hn{f@t?+TH=**^&0u7^{Y!GIJsad+h_HKiFCJgBI1-d_
zH?D3qhH*Tc9Y`UspO*~TVU?QY3msjo?`B4>@4Lkn-%dW$9l!T@j@H$7oJ2Jt4Nox|
zE1Dz)L(>2qdoD5}AU7<+&yP?nb<6X*w)WxYvy0Wg=o#*wXZpe~Vz`#QVE4n9_g+7z
ztmEQp;@UksD{Hc^2Xqs~y4)&fV_7gqEz(3DR014&TlKq_PxpC)+QYwk%fIidyU+jY
z%m0s{dRb<3_tZ!W>mRo7P?*@5S0U1Jwf1rB)iKPqabBj}a0wHc=BSyYCm9di+6PqF
z7;&Wy?NsG=Zxx!i4n00(R^#QdMJJ}{UHnjRNo`HjSQ;X!v4zw4cQ(AJ3mXkKPvK#B
z*!>(CUllaeOj!w2SJ}**<TDy&?U9|?Kjq=Co{g@q%WUin9UVUJYY@|hb}~=KsC(Pb
zx}6=UpfteKN3Du0ELS=+*XnFLDcjpCtZhq;yU3esl6|-j7woUe%mNV{WJb2z&z_lU
z0TCQ#dmnxxpr~c|_le5zQep+mAd;)Y7aWAd_}?2QO1A~zPqFqQD0xGJ<C>?7y>lpl
zB=>^^C{KLTZ#=U1<#P0kBeU(}l&&9*qSDlN^Y{FdQXn$_s<=1meNQ_cLULB*TEAgH
z1J@i&VQnhq(`os-LhyDO!|)Q%oA}oQmqN}FUP2`Axp(0(%yjMrt%s3+nTp{EL3@-G
zJeww_8+g!PZEIi#?2~Z#aYK$mX5Rd_B`vHf@)DG+rkzc88$&%#{#1Nhf#ahrd55{#
zL7U9%JHN^!`RJD`K=l~IlAArJ&LDNwv-G0Ht)I)&Z!6TtNmHeVSsh}J{g{a0hIG@o
zgtEZ6gqYg;>XYbTUf5VLrq9Am4>bqUt}nu<=N2@T+0f0m{>r7kp-<nWwT;3|jkhMV
z3Mp9{uZKh_IF<}eH|bd-_zdwVJ%*2uIm)#YNNAXrv<y!khsUqsz23N)ozWH0*!Ci(
zmOR%ayjPk<cTDR6#!J*!*v;vBLf@W4b7eL}LrHvYp;QF@U|W(D-!ujBAk-ZMSSmJ!
z1)-XWy3@+R(VN=1pbrj@ep~U!y0Eg7)6$6w{mIX-^NX;i>Q@AAf%9rQ+MadUSgyjJ
zA|^KSxG^KJzaIt;CvP?;25!f`&x8l0!GD3%V7_}(Kx4tuPv;g~bN|IIZfmJ*yi|nd
zlF@Q-!v~Y}1T3j53(|ngBD)?bb5kY75VBrTuk@_~L&<-g1B{)cAKqk_=i#PGF6jHz
zvvyMCxJ6J$s-(NX*DNX5Z{hxKZYyXl%V}w;W+CsRCJE8-v7iomxQpfupm{L<xIKX~
z1`Z(4t$JS?yQg1TJ6nI6S#eQ^?IL5y{s`P^dt~Jleo;O)C9$%wfV~7gOzdEa(E;XW
zP%f^sw*UHVjRu1%E3?nuww?HKVqxtdCxtCXG_o=^x=2%5i6938cg{<$sxzRVjY3FB
zz_~Kf_dCw&8&DJXa#jU-H)e&wz(PIQGq^yOh}0oqZ{~w<eGKgScl+PAUBqv_ZTR&P
z{Nv<!rGA)>4yN~3h`g$4mhI5!DDbsPQ`XedLOM8BT;}9lRIRQkKRrdB6-~%WF4Ni4
z4_wFxh6U~RiAq~Zs=lp@*eeGF6b4<)wZEn0U6pfM0J?weB2uJZkmVMWH+Z7(y89ao
zzE)kN0yRurXj?ADt#XwkeDUd4ls945WP+_JJ4jwH$|&4N%2w<|b^7W8@MmO5eAdGj
z1M&9rA6SjpKul`?&BBRbx~_iD=L@ZDw^f^q<K}`*GND9o?3a$gr=K}Ez<nf7n}$p%
zEB`A6$41B8nENcX7?z4nRP3#(lo8?3Om?D$d55vBC@c<z&x~Et(pg{?JbGOxStxiu
zXmBmbgC5xpsLjOBm(&TTs=ziH`FC;h0`gUNK59VNNl+LWxP0|1@lr&@#>pMAJ}@)E
z^35}2Jj3&7d!XSeB?h{ja?u{|m%Hm}e5lfJE4>3=CZ}Ar!)v)El4+I*Jb+1YzQ`la
z!#Qa|ZK2T9#8b-3>*UU`srbFE<U@kyMmz%m;3>+VrmCSRu$*19w|#zwiv6iu3osvn
za<X9w*`DR8FGpXV3g=WGv$CBldP`q)3IqfS2zD|{&v2H_k5Yn2PaCr>NWo>0mo4OD
zSW7oRQel?GIEPn|nPOXc&jac|V7To8M__8j%mw>uC2ih9)&N(lA+_Qbc?u0<E4P45
zd*;6<q+{6ue6fYa9c?}#SC9+db7%9Nup2ihyj1si4htW}7VMArk2WH2C)!(@7#G<y
zy_AqK6vLr^Ws#AcZY1xUN-@(PnHeo|1SSi%BAi5=5UYnhG64C(3>aw2fkveT{3JXt
z&6=$tyOa9V-iF8TvCUh>B2|iJ+fjBg<Yey>(Hn#_gZXmH`Q71s*bjQ67kuaM{Z<oW
z{g}A1*GJ&#?L!3s|6oua*R_FRT;UxxLx3T~_zNxP^G*7eg(3RK#n1}o(c?p_ndL!q
z?qe~o6z)udj>}a;sWI9$vSu*ewqF5m;3gf87EjWu5WeZeoM#V9scGu<^3rOc3sPg~
z-+jf|lZAza17aRwpyW*f1G(UbS<c01&VC7wuR4ka7N2!J#b!%0mJXa_3;7jR0Q%(3
zgOS^srcknT^kT6lyJtJ+n$Qu8tP7gO83yP}C^P)bE!x!)4%P{#>g=*A7CH**<ymAl
z`P}x_O2(<B)owJJ0jfwkduzyFu8E6VMU+e9V?+c!o2!U`h$_myA)?!_h<lXzzR}22
zQ>)!zo$%^CHb&1>gpiVSnk%ue$2=8Q$J4fJ=V+%UiqlN2j*RNULTscnTa$wsc9t_^
zkM)gJM%pHa(x%?=*~x!H{^?pVXmBnJcQATql-m;4xMFs!buRbf6XbBu_5Um{?iyzP
zy55FELCv(>2}#O4CH(+rh3A__??fGGA#}P4$tMKGfVH0lQSe}b$%B#L;9+6n;9z_2
zU)X3qu6xhD8ZYOXg-OWvR{Yc3TeHotEn2+Y)w1rCx&@i!D@)9zO$6){JXBN@^Ya*&
zhYf_|#^JmVg3y<<ys>5jWa#tS9iRbDnG=#oqgEl|V9m8QSeb-8I1MnC>fKp(WWneq
z7PznO>Zu8*Gq}1lkn7$L@HbVY&dRxR?8#G+UB8N8XEU?Xs@tr$wk(Irs)fOg@tobA
zv)HF@6=BTeUb*6;Z1Kb14{U>Rk@c`m_Fa9a3amw1Fzg@G!E_jSaNS1aXlzT15aE!F
zbBv{^_y%od(&Cg~zhYu|)XiR*=#as`35X0Ursx@#lvS7K*vZ+#1FurIsS0YNRAm$o
zLTvslzK{E;mz3T6EmUgF+H~uIo5B;8ZdK;1Dtw0R597mXWRA8L#dEepy0VC>AMBh&
z>#$KNdhPIu(ol`WT_A8`$Ht99;L{LYufcq`I+ROHjkmy!U(!IwR$$qVJ%rQXV^YT|
zE&YX@BquA;l*%eQ0bJJF!PQKg45#eGSyD^f-QJ3i+M10%#8UKi4Ia|NrB8BCsbrI@
zj^2tel6mO~XEZy&RZT<2jEeFvRTmjzVBsB_mB%M3TkVeKq7h`&W9YkUn~CFU2gcoy
zlPN|AeK>%d`f}Me&VF?7F#UCDbM?curFVrYl=vZse?aT5%FLGkjAarm&kcJZ0}t%f
zlAAg{=4QTP;p1jjz4Gg?;+lmz)!C)<Ps&lDGu3e|txm)vV)nHf9%Q1QC#(6dp9|;V
zy>4prJmD$f#k6U($s{sfEz!DdnH5yn8mKyJsNrqqgaj}~LQSP~k42-gu}jT)zK>kN
zd(?MUp9WO|aueVxI$T|@_`-A5Ur`s`j$e~^gg7(us2+o;`vd#T)z{XH3iB3)@c)L;
zRB5l0$YQ^Tv?Ikrw0BLRU6{?U4Ba`nJeUZ%HjHO|CRomSe>B+R^LbYHs2a5w;QGLg
zozk*SkG2QMnb6t*M==eyg(UAhiq{jY(6<MabI6w?b9v2Y$mby|clOU`TH)SAGOh0)
z;cdy`^o<U}Cfyzh9q$NqG6lm;HA`XJddXEsJVsPtQ^L7OSPIKt7j`vqzw7FAa25)I
zdnitZwZHf^rgRGxYZ5)W#5lH4oc@s%&{Dv%Ct_Y2KvTw%B<gAaps$;F2XK%U+mX>g
zje^FH;pI#6$O^;OtG`w8{V_FlIbJH*(Mr)0w+$A&@58*bQIzPynmTIsHk4MuYb8C<
zGmdnfTg|S$fl!71d;xUl+o_^t3h&ySGE?JI37#3cZ|n`qK3dt5>r4<7Thuad^0p#O
zKh&}4_YB)ti(Fh1JyP(rr_h$ZP2D`wne&T=+e=DYJBjAOwU_?kSWocM2FC|n9qX6R
zOI#BAyR@TLc7PTCD&<l`yTs5ADKTJV0gQL+@9IzNEMR?@7^-2{53n!(YfWM{(m#$A
zeT%qa6AfO$-g)C~7aiebe@z$BSs44}9gH;v8A!6rbK28!p265XE51?RLb4z&mtKxN
zKVv3lzyZIw`*7pu;)v2RdkTLMD?8$dn>lNIF^vZ{QAP`>3sK_a%s4@EBEW1i0zWni
z?9vrc?=(Ep`Zm_C7geHvPn4fq?~B~s4LNgsEX$U6{LGVA!Ft7|rgEg?V$d?Y%9=~U
zMo_oAt_@o#dK*mH8&Gaf_5OVDD`>-3=Dwh3&T~na<#4Pie6td9qUSJy)l4fOFvb4M
zTJ)SB;&dHG*chxY34In*%Mb0?xt_>q{oKSR9ujVG+f}{xN0N~ecsPTad%uFw+d#su
zM@7HX)84craq^@1Xt!FU5xW4*)DFx8iZqKx%XExFlo6e&hJKT?IO>bMm}iqQA4qlL
zUq83JoyU3`?Cuc?CtFD-P3Eff1Y2=OVuL1K2SZfMzH#8I>oMgV%4N_MXrH?LcF+?!
zzi`%5b#`!{x=yf5_6SHxJht}qi}Yu7y38*pPJ-Eg?WL|MIA$=AkW2E)5~EYBtSm4v
zu+T;fhI5e~04OcN6B+GhJ<ke&em%q7FiDyJ1%>mSBn5<POvR9G)mFO^cq)*os_qAV
zth1Y&=<!fn2FH5{7&s_ca1zVBZQ+>^dTgO5%~ZZ#=n2#Z0G6qEl@pYW({uORCE#!u
zQ$6m)eD7pHr>pRE>zo5W^JnF97E+JXl;_j&_VSeJ`(>WdcNO3wV8!71YMIEpgjotf
z@}#MZyzTG6*i~Ki$I>os7Poq`<ebLI1#VXmRlWM`LjL0EgYU$U{kK^sPT0A#9N6II
zJS^BJK6NoU(D#~C_|3t#S$Th*|B_+H#3+o~t!H}t6azI~8Zp*UMycUq=6__geWRda
zAA}7z1<|q)(P4Acx(|Lypwo<ZS$UxeU@<EsnWSrNt)O4cNDqw>XlV8*_sK&%QHF>V
zzsNX`(w*7MG?Pj0u0}@2HTM)9f^j{LlOCdw3W*KK*I@mWkXk+8*2iy7@Up76pn{S5
zkZbGsyTOwm28hZ<E1_=>cU*$Vm)W;l=s3m3!VJ3N;IOxAoSsPGD1=cxTL*bl!;r^E
zjKh?AM<~v5^a908H=m=2J)?lQmGY4=-F_J&cKlZ^S-KxOd8KS1Sl|z79t$nw9(@wU
zWq~cbc#oYK%f&v*r<@THARoEj&ab~~LOQJE?KL{JG0N+QnV_YWe1a5};h|<&A6bok
z1ydR297c{e9_jLY58qtxB%J(FjG{{g9}?UqK98WDbAXff*$WOUtuAHw<8vMoh)RSU
zoL1M&%&Cf{h^cbrlX67rd=kgDXq9i7sj{^SKsDMu+CRM5Vv}h$0a0sv)mUkVe_&1D
zrk9~I{CQ(FTRj?%RYcrZUtfY>*(@~Z%P!@M!H;F(plJ2#?gVHye#XU1Q*p}A+xL!b
z#9^Z8mlr3@3)edcPHJ~{W^q?|oc=Y;!9hv&ZJ}7+rh{DMCaZj?oT1IZKeakXVfxE+
zVQhMKISmuW*R%i$Z@KT+i*V1`F5IOpGt2_~V#Z}qWgDCw-H)Ma>G@ra>Cj5M+JCO|
zd^$7u(B{`H*+-3O5eIYeSE>yi%&Ib*r%n^h3rZtfzjbeVtE{-JT0>LhWxw4b*;xPy
z-P>noMVp)ZLvHrZsMxfFS8fJoWW|;@NuSLu$u8}YbL*JYlk-Bu**$Jr>%5zeU$Qu4
zq|b1OhC`K>p$NyF6pp~GS!blWhjmA2vids{yH1YB2w`bY!%SbsrY-N%0?+gGlvDbK
z5={x59wa^Dp}Tl7T&p3$*d}37`Q-X=rE@~2)%XlOEXE0K-F;Nwzxe%V>*p!BNT+7X
zbK!3xKscjMO2h!pfP`l`p*9ia4JX&cYGYD+MPBuA@f<Ogu9omk3)6%ZcG#nHsnM>h
zZefEvk7YaMI89|z*Qz*KbcVh$w5+X<#g=6CV97UinADTsZ|34cZ=<Bl;@Dco69`Vm
zF6y@5pvP|)L)n`R2wzc&XYLM6|N8KmqSi4^3YH5?{$AWYVoMtu`Kkvg+tF(ftY}bm
zRyO=>w`Dd2yesrY&8*{-r3j0xAr>|j>)X~+^-%p;zw(+j{Drl-+xTrLTIuKm_0yGN
zbIxw70atBjdjZpI1=`XMSM{DZp-wg@&a8)_iZxoTfigDOHn)VBUnYGoz03w~n!a{`
zqP)O?Zbse}N)&J!<2fnij7|9+FHMS?3~IQh@Unha_C>{QR*phfP5k7H#7^Kl^&<VH
zUuKXF{c_5tZZ1;q&A$N7tgG`Z)h3;U<D?Pev%ESo=BPE9A+-rMB8WDu^K|DEOzfN$
zW@qH3FBRHNrZ%Ul3*Tq_U$OTeV8=ucsq60z@J)fFZ>{o=;AP?tvD7BZSl_Br4^4{9
zG34l}r0uA05bSx`MetbzcNtDNo$iOs!AZ_n*NOVWMd6g^d+_XdYgsdXPfQfj4c+{d
zS7_$-WYoRO%dAn}aH^`(ELh<(G(|`8;_`hkyxRx;N9pn^`iH=_<>Q^1Q;6+|-1IBi
znn6^jpRn#cTU+UiN)XY`K`(A42dSy4dyG88>;JqzKfKZrwHGiI9B<T{e7d_|AK7@p
z0Z=n%r^-q>uR>%R+~ziq;wnXS8abF#SjDQQIm*~b$uo=2tSuldTAY@V<(xC$Jjn=W
z$Y`PPdzf{9V0e30q&kC}6DntdCX9+TMHGD<jpd&qzCzC<9M-{Red)6>j*!tZVvC8v
z-<#!?!%YQ>%cCLav@p`|1(j}HTW7<we?9EX{-x5|i1KtDfSSm_KiO1gdaGPJNC-K)
z3uxwVJUsoVl*(jb>@s(>4V;T2-|oFh$nSrvj*kK4A9aVvob`v;Jfz@7KRm{al9$o;
zZ(bj!&vyIklL!khUbc#YM}r3Kc&Le61m)!DihXqPJb9WfzA^4OQb{^69LvH~P)(g-
z5k)2hcza_G!Dr)U<X{|3LYxg#Y@{Z{;IE5$I_pe&(U_8wv1e^flB&UcL!h*wV#fQx
z^bmZEPZ=E-4>5cM%%2vsw?o_Vl16s*%Q1TF2Tx3nN8jH=i|x3@ergXcM!g&`57}a;
zF3#mB$WBXTc!2Q~J51E%mKnT)<CWqA2i#}J05(Ewo)GN_ISsqF_s7nyDXa94C%&Uj
z^Ga*^l9-YozMjR9+c009`t9<|s`fJhh~;rmI?E}ubqlqRow>%ecG~ChW#KMle@L<t
zmzj_pzj{^eP621tEzQj_P_PfM(yhEL=osezSRMPxVz{Xk85`(EcK!bIO8^5<wfmK4
zdKDLfWT6GhFx4N-&yc@VFx)KWBFEhhm|jqRO7fnYD>9qIpOt_<Lxsdo)al`7aE|+I
zEC`ue5GAHYtr-U4)v+%VCg)!uG>wWh7%!-eGnI^#Z?~)Wn<{!`7CC8z29kCijO}Tg
z+#Pmdw0*k#`nte>I(GuMJv9(s68Vy~|B#$vkvgLDy(DjHC93KODhxChn_q1tmcRud
zQ)42Qt$NV<v{-K}R&L_aue6$Tx_OF{KET`02||BupjdL=xH8#G?U5b{3f@B36;&`=
zO8c6^)4Vuh;$q*2i_JLPC^Wcew+1Q>SX(}G%JArqz5HXGMgSoL0s`v&1tIej{D2WM
ze*zFV0o$*i0LN$d`zPS|?ST9QHlRMppI`?Rfcz77fd0=H29TI|cz8HiobBpcywUR}
zf&!^Y%v^Q;C!zFB*u?pHAlQKdL!S6>%9QFm5f_J$<~w*;v;2hgL>i*Twyd{LQ=ndj
z`K49Ee-Mfc&K?ImG2lcU8E8{F@wb8l(|2Uif7tqv;&j!C3QHXYo}RpWM#^YPO9M%#
z;LVie;(zX_{@4rh5%><|M?%a*aX(6e`ouH!#VzwxqfEClIomx=<B9!AQ(9TH>~)sC
zy%XiU6xZp-FR&Pam$P3~<L#P4JN+{bevJ@+>455M!1%jvO)R69&|{eJ1@oLmdd|3+
zNp>-jOm;luWoAFKc4_vKXiN|Kvz^{!ydX*!34Ql?f7bC|5!pvbH@wbk<*PlmR|@4>
z#&qdPL6_LWFfJ;zDdRK&i6ZzP5?p;_?OAMSUo1RWvo~?}$Dgr&9^OD`hAxy;e}XW3
zjX;9x+1AjD!4eW3Pwr{}Q!<0tBLV_*3iTTAWGjqdfbj@y&lO{0R-VzHf69vXNMg}M
z<eb|Y86N4`Q+IOeSJcL-ax4pWH$W?6&6#?h6H1%CX&>Aao?O_S?lN_SW#O`Kd-gfn
zvFrCoZ4T|0<IAP0#OWS4Djqt#C23>m7_MA+n)yGy!i5<|H2>qS<*V2lYDb?xmnceM
z%Dm@FQ}(vN1G9*q+>fv86p9y+@aa>&iEb5{fOD6xQtw*==EvKRWuMMNbr&zLl>bpJ
ztvC@UP6z0EX@Hs@e7?_p__<Ktu8UOSDUAT>*^|CcI#1Z^?^QolaX#l?uu8)pA12Qp
z>M}AK6q~bspK7Vv$JOEEM*L)G!MGQM=~t%dYeBA?69m^s;j8@{NKX&n?uv@@B}xxJ
zTa2+2jRxnH_re}39$jv3u*C$liyc$g)`DO|HTL>^B#-vAvt6}rGY+nLq7ClHzY%O&
zi94U>r-cc#RZoyQRlZTe+U}XJJr3IVs)`<aY8)HL)_%CDfiuV|e}?r#VDWnQ`|_Hp
zY&7Dq9@IFa@X6q7cxdbQE6w+SJT9Uw^etUa`H1U#W`RVaWc(hnj|nQf5&C5BlHre>
zo6|gIv)AUiZG5B;^GnLaK@$|c4pyHjI*+G$?M@#FErsS*ZL03K45x&T!@wRKB-9pt
z((5-DVRg$_R$np~=xk+_)o;)m9*yEH(YGKCwkGa5shb9DM0k+lYIxlZI%<=H6ifTa
z=e?qe4i_8ye^=KL?T@i^zOBSGcVp-yGYlQuKF48Uz0*{x<gYaK@o!0u&QG~nAeVn8
z+&(~Lq@|^0_7p+nR%wXAl*RD76gOLmDhv1VBdN%NsK*!lqVr%oPV@>_gRp|MlT%z`
ze70z>{;ZlAv<Bvhnx!?=*_er2=6AT$^K{0pov6bmdWXDC5wDiGD<)&2C`@8eKsdV?
zfoP<uwM0$)>@oQylcpz#MuP&=D6H(J9S=;_tBDA#M2i<L?NTyz56(CH;!jL21|S)h
zTTs+yV|Vn6bxyE%jxA3Sq76_2SvVg7)X_B8GVvt(E^jW``tj+oO=B)Bcv8G{BfZ2H
zf|7h9`j|DD#iOvB0_D%Bm;0kk&UkTvWU94E^oyMfevris<p+uK^D=8LWrR$l`nOre
zsa6W2uCIHq1eDhYT~s%dE#IZAk(Pr4*BnP>hUB)!lN~E~#hoQd`rXfAz*$Z5c2hw!
z-E(3z(nA0IdC!pq6DoQg#c)G&6(6`~xNQom!o69;X1S>=63Fc)y><fir_q4=(}MLj
zuJXRRZ344Qbb`4^fJ60RDM5=Rwuch9%e9`W>a*7;b9uIo*1bGf6FQz+6V{~<QqKi>
z*0~naN9IknU`rt7v5@eT*h0*d-Q_C#Hb6-=h11n(0Nx-bi=w?V#NJF|<}t@c_~7Ej
zWP}_GQ%t?-o}p<cN7!9^{ztjOPlBuBdVMj$<QXe4Q~42L(Ru$NVV9pZIkTA4g$U%c
z{!knIL?fc+W~OK7Vn_$rF}Dt}6=PT$;GiK{Vg|#<;J7Coki0f|;Y{9VIc?1-`bWNM
zYjfrwFh9qRAq_B-s)NaggH22xcA;<ei`F#Xe1L{E1bYDw*`d@6NELR$Ue!f8%2*xL
z`JIkwWxTSvi;7}Os+6z2vN7mgN;5Es-XaYyVHgMnXh?@^yJU;nl%nBK7dCNXZs}W~
zZ{`>ys{q9(=7LR9!1_ih$)?S=bwX;nu!eL-Rw_OlW@5rhNShLLX5;3{-NYHPc6wth
zJr}gw+d-)vl<hhQF{V%?z6Q6=%_XGT(D|6A6c>j?{1d-^b=wqWc~2vQlGzDXw(R1C
z*w>F8zuv`J(EHx>tg;^*EX>5U#~3B#7Iia5q1x<?#VwSr@m13(>TQHX&=Rky_0%=J
zl%2{ItJ1ljNdCE>+GqW+LF~;#Lbvh9%ki5QCzG@JN#VVpPS-aY4e|YGldU|Jef}dM
zB=Pc=@db9ogtqa+gm`nW5&3<XpzHmh`x3V_m__pmjlU2+x43@0Iq}W9%wweK#wWY*
zAI&v($Njl=Yey-G!w{Sc?9Oz4emCT${0|_$)aHf`Z0Ll#<cfuqAz}sdBm(+iS=eLh
zkM2Rxd`uhHM=50Su!x!o<0ECHWUpY##*AB!I%+-^3QBD*X2hwukzu(szx*j+pvC+$
zQ_ytrO9{4A6Z@NpnWXKGF5QRL%r=$>0J$EFV1v&X7RAN+ZQbN>cD<(IQAcT@wP&aI
zj3TVqXPz?~R^HlRgJyyne5+wHwYz|OxagWP;$FOz7a9!{3<AD>y4e`Bv!fJc`j3t@
zT~kF{U=t&GwM)XvjOp*6OZz^G8pN!4QS1FOk1gJPq05dSY|mKieU8mj+iyfxk%$^M
z*7S%{>FchMFOWtyy6Tn7y=ltXD*w3-+uR-oPh~?xCYOk|g#xIP_d#%2;<oqw=Z@0g
zf6&MV%(8e(Ls`TM=Ub4MM8-?rDBj!0Q7p^u0p&Niqh2i&E!FQks`zyc^__otrsW+-
zdPpgk7gP?}#jFz^_~oCl_;Z)eW1=lP%3^7JKW>PW_>(s~xx&5(a<5<m^d?-d2|mMX
zkiV%*zCfvVWg8RJLw(ll(5u#S?)oV4nCSVhZ|=OoF3ml>M8eIS=0ovSC!T7)rq5WE
z;;msm4?^eNCV631WOG(%fO$Y^rvGlR4*g#<^4$-DTC>DYlQmMM2<i3m@+8<eb(nvR
zq@6_44@@phXy@x8`40K1#!Bv{Hh$J#mnUwLOOx0~`$oKr%Ik(!`;lmAxK>O}b^{sw
zG=0NuO9z2D_Vw&(<=AW>vqYm8Mt|p9@adSWORAPxwrne}**JA-tYhxkX6Kn2Uu;5Z
zlr26XG!}GpTP(eLH-f%`YML%>^n)A~V4<c~Z}fOGXB3rLVN<1s=t~+SRAmI!#90d<
zd^ILyCezc+9b8mq7v$w`RXZ%EH|A<eeK+{O;O{=b$lfd0px34*F{Qq(wCG`)m`g>H
z+jbS?@n~^bl_JyGs0e#U9Q)}{uk4%~O&tah-ZFx|hFgbJ@(;a}X?5#i(AL`-@Ozd;
zhh!n|ZtXaUo9i9YyD?iGuujdiVh9}@6{2D#=Y78Jo4cV+gJ0cbIEw1_ZImQnq8&6v
zcC1x|G_ttd74}j<DZ$Nhcq?|(PR>Ku0<L7>3Y5GT7bhyQH=`CMAn@9(qxaR*RKs|9
zud}nE4FW#AxI(gD4t}$eh5oTft&(+Nw+~p~h}=cjS%|lI=!=*v2?p(gvYT98n{k2I
zgjrBy+b<Z%iHHegt?4X|tDpMxW|(MYk~h}=_%kBdfs8eiO<H8W#5!8-2V4umxX*sd
zu5^il`?FW}y#z+(FWB+&_S6!8j7e(Rx6?6l(e(2&^`J(Rf_RXjE-9lY%On`8r<?iL
zU3h)0Lb1%9ou8i{<FCv}``!iA+g(+z0f8}w346QDX=JKzNV&qzhG@)g=Amlda=KD8
z;=204vLu6v4j+$zf*iNFD4{k!<hiU^@rz)6SsCX8ZzBe-&TuX&>uxMW#)8aqKbjFT
zVyH5uBG@w%@wiLht`8eGm68NV|1UY-X}``3g=e*9=67^6!D{k*P<1v3g>@JwS5ES8
z%iRHs_y-8Ga&IFadFTSsuMNN&$5a_+9#q+mvo$8JB&_B%w8qiz<tDszfSD_j!W_H1
zG!eb&*n^@!Ng?y(HWh4+&`pw5^a@}zJObwV2KL~DlR;9(Lmo3W6D%iybj`O0d%bME
zHAk7zP0FIaXK!^y#9Qxaf!{8GBsV|rFd&6uT;_?jpbVP8EHBHVueT;Q*d$ASHg>w(
zb&CN=PyBzAnL)CC=0N^re?~%uCg*K0o6YvB4KAL8di%wfJD0fWGrS<&jX>1m1%`$^
zh>#j^Iu=XS(5`kCt=5-5BV%OLub8@6zyBYlQvaWGu>ZeY7&kDPzDzrw>>@kA|D6@T
zq~(5U8C*%$z#QX*BCMUTXoi_5niB+RYHf_%1LFY$1eATegCjOeder&wO4o$^@L+1w
zKKP59I8wj^C7r@qL~-Kobe2rm1egEA6P)s)2rKu}b7`W!q~PK`fIvs9NG#UAlyMTq
znx;0f33JoSIXU}HjU+pDrk)4(+j>vgV>I_tDbA2{c5;N_KnbtCYrIo(`it9ywMVG)
zUy)?&Bqq(Hu%-!PSm-z=&~)lgyMm|#^^81S3WtjA7ZB=ljKX~ML5+lj#9By-yrG(^
zcxzH2Av8J}%pqO6+fiP^sk3^gnjIu1{1WN77zLATVl>5;0+h&osBiHrDorSY62#wj
z6MU`kn0^rlhKYK(knGBXAxU&P9qNmr$X5*Vm0%<AG;*C*^FR^qgQo(~d*qhZWL45^
z=>!`G@S7y$W9qJ3ZOsbu+>U0wox4o)5^M)r`N#N}VRz#)s5vNRA|p+f`+&?XHgT}@
zty+U(aP@L6x#qO|R5G%4=;iNFf~^m=vwCxvO31ZtQH8ZhDg~XgNi!R)`C$@rTvRCF
zCK5U=1oWOwhL$5S$)`su);r016x!^2v4R{OQ)%OeI4Q1qxi;2yH0#M4{bHu^F$x0E
z=_`r^PC9p;GXX7$goG%sM+5-Vd1+axF<$s_K7ijhE7;$D9s~0{SAP!^eYcdP$Sf!o
zfNWIkr6YmGZ5R&Q8i1@{Qf-bI1@(j#f#%;<I+JipL*w|E@*w^|hZ>VmL~o-LufAK1
zeskU~+uKWuWgAR9qE5nEO=*I5xY16Xz9I#e9Gsclx;Sow-EzFAs-%zy_~aodiC#Fg
zIp11);kYgGqtBj+cU0HXQqV!~>i$$#S6;y0TRUP6Q&p9xBLdoSzwHDsQDvsxhE?D{
ztaZ8T)dabHPHst_&XuQqWV7IRilY-Mcz1RfBXv~@!%O4-pbKz&#AY_8XYx>DZJ-ke
zMokzVWn1h5xt)gdV4hRjQ4CNETqCQ=Tdi;#dopvfRAj;1FRik*aCUh%Jt5~6N!TFo
z{kmSyVCXliPO}sbTa#CE6S8y2d5)Z5zh&p|yh)F!2LaTdV+D2riN{zAByMYxxGxeA
z;j|P6svD*Jf#>gB5=`jFM;_GeQA%JBF2<h~*Q>eFv)g0Y+fr10@_Far_X?|5IWXMA
z=cOD<k3<^OWrCrZzWjVZYw+(f5QUOiwe~^}^7(>7g&G#WO{PN}WFRr7U}{$$w(XpQ
zMiuB7h2BQ0sg6G_!7{~`m7omAT_bRU<W5O8^&Z_dVv=XX3uT(iG7c8;1{51D_xR!Y
z^&d8vIfedC<VFv-XPjYX=<)j96d&%8(Ak+nz=JF@-$N8eC&M29`1L~DS|oF+8J+!2
znUJI{`|-H0_=m;8?CrB}RrMgE*oxy%)2pD9Bt&G6Fx@0)M^lNW!0gGhC<%xwt!VJa
zF9r8!PLSIrW@GgS;wmIZ0?qyzr&rGA0L?8@o%I+UW(k@%*KRIznb==I+3*ONtrKul
zxhrlDs$|G5RW{eY@h=yDvqk9-zR2p{8kZ08!{Ol*_gjJGh*0slnp(dkDtFGMhWZle
zg-OqGh{9q!R?c%-B<qm*JCRUqI`4b?mcyfG`O60-D`p=?GuYB7zO4ww^J2qf;V^Sg
z$;Eu-Wr;a&`8Qy3zm69fZjv+_hj5hQVtb$U`oCrOx-J<nKu5zbL2hw-h$tV6F$#?H
zJw~~pQ9Q5V;tE$%2kUbdXDgFI>JH1{o48yox1s5(c*3E8(~r!OSM=+*_6hkvpqY!N
zYKXVKg_}r^-~cgNa&;H!9VOK;l1wDExTqOA#1QJ<9jcIfowD3mt{go$+=VG#yp2Fm
zQ<l7)54+PXlSQluwpO_+LmvlA$k$g7izvi8uO{8*TN%e;E$*%=_U9GfD|VpLucyie
zhnO2*CXy@)y|KXWybps^w(swj71IT$nqMMT?c)#1YXTq6Bv{t4?fz#_C+Uh?Uu);v
z;t9ygbjU#-Fy&k`V3PKwo-A=qHplV;1;xb+WWJw9&shkG`-76Y`B=c>EZ@MNoLDU6
zEV1f4%@^4%;n!21K_@sy+uVoW<Dz2@s*Rv~3HB&DkU%$F{?!^<#qAcX@kY??t2N0#
z>%=qpWgQ;<hN~G1p9wnt&PJH1v=*EMNBruIcdyABs!|B&?+Ll4(XgwpUB1{GfMCn*
z^BU@pHKpfQh=#4DoAoGKCRK6iXG%@1MnLIgaKL>aH{b*@Pqa>!D!g*wQlrCDd+5Nd
zn;T#d2+%M>r?g5Q=}Hpa`lF-vM`%*i&d%qbwZDY*tcF?o3Vr<)W|PF}j+bc%gT|3$
zz>B<1cf5qoW&}V|R9-*HgED|~lu&bF;T_)NgN@CV(gYPHuTB1`RpmBI0HFy9H`Bg!
zP0lJ5%4b#hI=}6BbA}qx30xP_C3*h|pOY>1vK=+o5vOU-zB<83!GdNr=L?+)oB5<^
zugrYqv+wl{i-PGeH1+4(TWdH@fJHRB8Y(rf&k2VrLq1q^rt7Si0GV99#j3kyAX*H_
zA^6&qPT)ptxq_a$SL|xd&cpDz2Gs{I5ge21MlDySJ|`Mu#P5E%rQPK6{n$0zBKCj=
z$q(?+BeW2<?Fsrm{Io@`7}RdSl|>%>*V@dNuuoG4+;AY~nB85)%KQuH#>+o3u=X`E
zkaECIOpnf2+2uRbirC%!P#1EK@#$E1aku=zfX+vrA&L}+*7sLz)f-Avw~lQ=ioPQE
z3lt!mNqpGSAuqrSg+pc9N@x=E0JKvEmV>EBs<TxkhWK5VFpOC>jeJ)ncQV&y(u3K9
z%4oZV+y!#43KtDGn5~5z-?*SMH`*%@5W(44b~l5y!7SzVzItBT6)CWPf(=slyJ+@r
z`{!9DV-rk@K9!7hXzlIbcZ?}=y0M?e1V}m7%}1o$spl$CbeqZ2`@7~b&;G@D?`FA`
zF4TD*h4sQJU($EsW88pxE8TL3vBU-P1BQL4HfIPP?o)#W4AvrNE6yhss^eysm?@Ud
zP?e3=9&~_PEPPWXuW-8WMp(A=RHmBX=XX*rTs^HEX6jcv%;zi6bCOGy@HFoDG3yPo
zDwCj2uPk^qGEOgd4ahBv4~Cd59-QZX<}K5vVCjti8Gh;F2Sv=;`H0+wVa7Ce{w#>$
zpC|IWY2cS|WzMd6JYP$6i*mG%9kdbw0*_z6{_8o0eIZ!EG^-Gt`w8b<j9$PWQ78-R
zz5}MlCt0moHxLgP$gc=2z)_wfa)3@Od)hqbJ@=ZOWiEk+%)6@9F#+#*hEMQKnc_BW
z+{Xh42q@);ef*Gs{|z*7lL>Teq*d|D5#8HUKD{?>jSW}kdYMcNEo%2zi2hVH1zQcr
zxuGb%bNSXzh0dXQGoKHBr5gLPF{Ynwnbt;PBgR-{5|e$qo_Hem`5sz3e|x4a?~T_Z
zLF}@73lPdI<?K?O3yyD3TPEsXFV{!lb<|HO9@>0?0>6!?odll#BCcVIq=Ir;eSi>u
zJIPtCGhfEU^n#2eD`Kaj&HFE%op)3d>(}o^Komqkn$oL)2%JNaP6VVw0O>VK5fJG;
z37`}a6p*e|Dbkzt-Z2z`&^v@)lh6qvgg2h^-gWQ#t$WwH_x?Gv)~wkxv!7=_``MrG
zo`Z9%0>Uz3#9=>hl?`&W`3h8W1G^hW5zYL-@#$)Xle`kW!B$9qa1De+{$9uZ6U%z3
z1jF+Zm9tUq;K~kXuAtiO<XT9x9E6<Dypc*^wD%eq-xd@0#c*u#;?tSji$y##WqZ|D
zrSOgvJ=`8B?&*^9TvEeNSk{56lFuVY|HYRk|9vi!$A`{gk_qeZ;&!|WU(+2{RO2)&
z&P^DL&ojinaR&be^|gaAjMhyJ@OKE`PEdaV0GPGkZ{Z#1rM&STeLt*}whc8#=mCec
zi$0W4<*8?HN59~_@r0MKrL9`R(n3EGr8PbacpI-$&(H$7&qNNm*z?qgl$~2`Ho<Xq
z9Iu&gd<SO@dTx;fnb)elbC^FjS<vd=nPYFWCded^)kEh&SKXWW9V*`h(<F~{z9a!$
z;uH<`pPymt<B3ep_o?Zu>!J2wt==g=1%Gs|Q491)=j4>67=OB&79TG<2mn127J^l~
zw0;g`lOC^hn{E=?o0{45Nf<x1FoF7-<1imWiwiTLo8s-;M8aiXAt`IeqwDg0Uhch$
zPVsLo4yWy5ygXB73m{#|!q;^{=d4Y$S1ZgCJVk=skA=V&V*#Y!492`V&DvKd?O{E<
zQx$U&nc>u-24oHA6`S!pk0~(+(Xovec7hSxS+@pH#y3)^mxI?uHR>uL$SdwGo~PwY
z(?B3-0XvkMp%$7TilK7Bc^reQwT)9Vx9gX^9!lBMg9R&QhiY9fSAI1kMdOunEMac9
z;3hxNB8L|Tr&J`vMYDxkrL*8LH*}qWOySkvkAyh+!Ruk7wr#9aRrpqs9-fgWAiS1{
z#xHZwf*%xJ56I%|Ut+$w%H@D0@AjG6m#Vqk9;F18Mml$2A1AfWzu2sx)7}~MLKq!#
zq$yMCM2DmP>W@p8zmLJ*s(PW61JfO7)}Q_klL>;JS0~7MCb6<cr94;BJ?Lx94ZSSg
zM%7y0jA+bjt-3NgbHA$cEZ~S*Vo$jW1?}%*-BLWVnje8*7HlIc?=Neip^a#{^WoTf
zRQn^LTKm(OQqC%Y{>ZK0-@3_0eB!Ri060gq)1gaAy#rN3K+N=0e3c)1)5rX`=2_r*
z3Mmvfce#4>f(yb^S7FsH`27LBU9~OxZ@g{6g3|tUOYP@RXqz|kmlSe=mkJl3O)wv_
ztHN?z?wK1oPVdaTlSKzNC0%0_*hnkp_>t!dsvB2wM<{w4po4#`@bw!qCi%xM5ylL&
zEx4JTHFR6E3u@pYv058e34yz)04$g)#@lzw$WrZFUaiFuc`9jbw^V)s8pTcTM$6ti
zX1j9geUtXYvR9mDcEh@>&08gFAzKXcv~)p;t8K4&h|}l1++pSW?=7aRnmvwkNTjPw
z*pj&qQR<6Z56eb>IoG?&Hf^c-oRiFEO|@Tk7Fa^#M|s<?nLBUD2~wvUx(_p;0Po@>
zz2gx&E>G5_i$Vub_xWrOf9CAW+(F*(u@a!k<bm$LQ2=X46#Zs~e;g1}yI1@@O*-1M
zYAg+a75$mLzD^^zxEAjYb(S6x;dkqMN&53^RF}p5qY#Hpk&mH?tbiyHQtD!V8EVi$
z3-~f_{(W&*CT15baS3D!cgi^Gm|k*bT%G<T+R|{@&`@>vd_IdMbFZ#!3wuX$5h|P!
zQ#wp99Vw#DT;%!d@3c0VlE&M9-uhMFVm?@y4MiJ>;<5QAB9`qUQqKM{OV1@em>3^i
zNGr7?bVvuZ!i?xMH+n~YrJrR1ECV%mHe=D(Sx(Ofq!ktzG{%xV2iSEblPL>%kAL?F
zCFtiCBKhl$KSt)L5y^ZwW1Z=PSxXOUzMfa0*(kwXgM+s$WBp6Ef9`GHs+aN_jZ)5m
z(XFK$)gx(Mv^_pR+XIG9xg{w)tdu1qo9-vy*>O0J%=Qd9Gn%fsdn#s90c!58y%x7p
zE<BR)_@wBol3^IoFy63&z*D?0kLmZDr{uAVzZw$18gPDCoaT2RFc^i~0x)lJ<ss=9
zgT6h68a}=1$%X2yhwA!<H#_o6S22g@=Ez=*>XbKD`FJ1Mvq>A4pTPgRtL&D!vKEoY
zWkvWEj-ITq@#<e~+P0ZP5{qBN4^Np#`j@2|u=3K)FU^81g-XswpWah%7~l<gqf;An
zUN1$K7qbSLri){sF?tsMf#bBo1Q#E>>{iVfW7SYGSfds~0m`eNGqIQ?l{kwK_5{To
z*TZcQ6c04m6QW+5E*<vTf3w}9?fN>FQ}CJiaO0i`t9%v#WgaKL7GLBQ{@GZ$+w6{E
z0so~##N-(h7iB58P5Q=Wd-3eEgbbfxu!;)eHkB3C&WHlXd*7(t+!uZ`wCbJ*b>B|}
zMg<*DQ6!%R!N-hx`|?ev)J-%v51-lF0mzTH=ajs{z7;Dc?s~YMwC(G9=~a{0etAI$
z@Ve-SzP!<4K-Sss>amHEE(~`Kv=7sFX9I*(_-t_naaG<~Oiri!%Wf61ey@Ah_!qaM
z4Nui9V@eu|bW3kc5RIV7S1VC}WVl(m_SXTnF>j$kqS<3oR(<6OIdH>(QTO)F+J=*T
z1QmZSGg>f2fj)ts2y=lVDUS5d#sbXhuPTc#E*6Cw0wP1j^sFY>{mzyuGM#1HEYmCQ
z*6RY3;rcB_@Ae87j&|@{P2ZWhwoWa6S?KVLd}QwBGkai}4CRp0W$AcG4K)z0<N^6p
zEg8anh^8m(R&1s8w#2=zKRf8B>aumbVhFP6YW0^>+{&@&G%bGr)rg#Y@Jybp{BKHn
zq=Ae+F$(dB=!{(Bmd)8Wit=Q=!6o&v46Wol+YMloL^a;7-PFLj5aIsU+1!|wUZ=i>
zjm`8$KZYb)pW(D{KBtc>2syCcTRf~PNjD=YfkDeDr+ggGab;1!Bl0oZp$BH}(%un?
zQxqM+S81%b3bq@}J-?@(om7n!VGhrR#cs%2wxT{(OnnOVV#NC$J*n9K%SOZlq(mhS
z1De6uTb~BT%X!9?gTeU1ix~*^9SQjLF^f@ISG)+jv`X2hyIIm4G5K4~g%*%77TkqY
z>ItEK7s)CIPysG8Bs0*pXtw){QNm1u@^@(-dEr(UHtxk`dXe?qQm=w<B<G6+Nm_0+
zGi|vA%|GN_?Nf36)^I~hg3mH}GZ{#()+tboe2)*0)8exaLDJ>zyTh7Jh&u&ho-QFu
zN;Xs6GsuTu2UD7rytF-Z=9dbOIs7Ry^69HqR-=d3FQKF$&zVjEE^neqIVL5_4ef+k
z12RpywyW3UDun-RoPw;5Kbyz|G02<nKam)^iSfJs%oYGj<t7J;d6+3G6oD=t(7gjR
zZ^=l73cIzf>SU#J)!Js<ZpXkXS_q(XyDhUTyXn#XNmoRE%i^WsqFoY(3TZcyJsMIr
zPuKr*0^NS00gQK8!!!Hazs1db*x*`aY!AL<k0Z`oeJ>Q!;sAi04t*qgk>apM^j>Ul
z`NHpcKwVx~5e8oip#r(uupc>4)Vs#3*2g&9lVZ$X^X)%lAGMl(dliJ7I(6Qs!1iZj
zMDWLpKaMZk7Ch;B$2*0XF=3><5|%|tf2;KpU+S`$zi;l{^>g`kxXI}=A>&ofDiMEm
z1UMY|@HHK0$z236*U?BkZ@HZUU+7odkd@T<&dmNTVK`ij$eiz-P4)n(Ah)r*gswxk
zn@VVt8Pp8Vy1*KPm-yyp68v5YT5~*$8F}O&rDQfE{$6ExYJaZs^?WkrYqQcBi-Kqy
z_YAI+x{j%C%ROIrqX{F5ecVdk$1h)xT0ye<axJdsk$ZEDnCM)6<uZ?JV{Z%_V)-YL
zkgxe@l=VkD<b`Jve0I(GY&8hYLA<gUabAWat(BD(VWXy|@%vbnG7Cl^J|Hj2W%|nf
zqw7sp?0Ct%BBz&~+R@s@cfFPv0Wf4^jFd|VhTKm8SWAJP^H+Lqx}GXfdwUG(pTL1{
z@QLEBf~<LnYYpF&59FH?0R*Ie+Kcy#f+b~Ko|P`}hUI*Me7ZsY)zEf_8TDhk^8lp)
zt1)ccF#bHCCV80c@O1GcJ{1%g9y^yz9C45B{;+G`+VZ1!PcvV67-i_Q76rdqi?Jn}
z4l3P#Z~SUc>gPANbe0r(j+)@>hc$K{U$AYVIcmOclrEXRiMWeqWWgBoj8$!ELK+aU
zzpFmiwh8lUfhk;K{S&uXr3ddOnkh9uS6=Y0__kJcAiSaukj(CmNOF%waa<c`3Rj&U
z{9+f@$hcZ*<~~MKjYd1`W)c8#3K4ME5st2Yf1wr&%MD$hISma_;_@5Ijed&5jF(?Q
zzDjr75vXrB-1CZvQ>%FqZ^w3yVvOPCVluqTgi{rD+eKn1Z^>%$P8Kwfr*Cz&Jc~5g
zx)B#2sMuDpU+hEX?_1tr!&dqz&#p+I(&p1M?OEu3;z~QY>CTJhp&G^&;ZolUc9H90
zTFp)_arf)0La#*X;KgxZ!w-s}Mg9^tK6BU^Z3C0y4*jLsdi^kefqj5rNz;gA9Fc#y
zqB~x=b;BlP0k*z5FNlbRkGK;!6J8J4qBiSH>j=U`=X9}+3%tKyi-HUt{?zl^Tn+Jh
z1pn2v=4YMt;N7*vfAeLT^N4iuL^_cIpejM*mm=w%{YcoZvwFM)+a@N)W?S4p${8sP
z;51-e5d>UW_p)5Sl^`UVfXJ<<QkQMKA46BI3+=pD1{s%U2Q!=ARfvOLcGETvXz!FG
zG0wMG4x2r{yl+1_QY)OV55$KG6OvRGf7j52T8DAzhb!Hu8^6=e@Q~>hx7$(zY>4{^
z><0?ac!!zIJTT6{8Gz+-`l#)r&k&!8y_lK2i1oMZsdtm+Y`j{F)jq!bW^z`#EU@b6
z_5?gN4SR;TeZAt=V5d=ak!zwrznSEgXH(DJy9;uI{^Ik_Evw({K>4J#Uk?j2W?A(l
zZ+mJT;4b80>u_^WTg`q?z#-a%m5s~cxp81s&~ks_$w}_z)3;{zzkWc)m3I14h4^$@
zwW{_-$`>IvlT+NSfvl@GH*?4uK3B=ux+1OHj11pir*1$<?0)o2m&?Fa<E7ioZ{EKT
ziOmV#MeVk?25T!p$D3$pzh$ytt<kzF%ofL8h<FoThiM|Asv#NJtrNq0zvps%y{FDC
zCf@FH$;AYISC9zxdvw>f`9Si;1JN$0MIQhjlC+?cgvJ9+8R37garHBYk8D@W4g5fP
zU9lLIH$zc#aorfmRg441z?|ZuLE<o{<_*f$U;JSAl`gLJ_ionN5a`wSfWdYXt5y%M
zt9g;8JO_&77t_iO!mG>Ael6UOMRC#^1uSU7YvzbsREc&Oi4Uh8WPD3$drRW&N;h{{
z)kXvc-P_yE`%IAL)c7ihB$ZE~!g5IqKFOX;!CEjE>NPG~VGb+ESZR&UhZSm(Zfryy
zuAqwv6)?mEK_0*i0K9X3qj{v^={}yKrss~DkC{)M>VnuFubJRK4+f=#CCm%PAbUOh
z0d(o3Qcni`j#DolXWr@XFnS+y%%8&bSUQsRuE2-`NbciPEB^!Pwo+Y$k+2)oDkT+N
zKNLKga|U;Xf)aPR$qpExcHtqZ{a^NSeyfVU_%_c9k}C|l>`c2m`N_K1mfzXWMNUUZ
z_rv3ilcLv*8u?uU=Up^(E3kWr!IfJAkrBpp<ftrkyo*$4X3#Oz9oU5Ud07!a05D(v
zB#fGt%N=F_T&2q8BCX-A@2mM&_}pc^lmG*TN^E7{EP5F%@A>YofefCuy+gN|Bz1Fm
z&7qHd+4s5KWK@M0R%6-#vRDHDY)QmPMK;+T5ztsDWazf|xxEgc>ph-w8Ds5+9=Sfe
zMAw&I4lAISQtpMi9^iYr>(^2Y<hd_o>k)gLQd#orR%%#vHjl?Fe0))L(Dv7RA8O0#
zbMa#^q~}4nJ#^#VRnJiC5iHjaZOl4b7pH4_Q0!ERmI$(d4xL1?rX3i~%KeCGN{oy2
z1G=qk&bFG=xcn77Vhjx@aob7AObR3?BP7L7WZ^7oEf<p^6lVm7_5Vy5`qzSI1&v*s
z6)Lv~pEclS=LLlB1J?MY!-+6C9LR<Ie^9FbQ6Wu^-`UyeFDi<NC~|7}LVE)t@E$>;
z)p5}GRo5;j>PJaSTt<3!8BUovwa{+UZt%8?YrEem^u`Sg_cQkpKr?QDiBlzmwyIv&
z+CYt%P}%SBaZyxZ754~wmKzc^C+Eq;XFo|yJGM>OAVp9ew2(OjsG8C{r?UmnfdVrg
z#s7}c&E)EjuUW@8f*6!lW%rb5y>{Z_Vh*+w?||(%^W&^1F@eq@DkX((3b{EWd=&!!
zvlT+*|7e9k*=iukc<+B9NpJX%Wga8;B^rb)_TtoI<ux0kF9`72(6F*Sm5YR7=Cl=4
z;OXjQ;%l5&vRUU;%DVTh88No|E^bDW8Yx6-hGh%>8xne4o5{wb3F@K}6_^_G;l4|5
zub^j?djBAsxb7c>_unHw-D#G#&1MR>D{xW2iuY>IY!Yhv<}@UJrp?>0$SfB6z4CUq
z1-6yPsmuv3JK^N6HJh}OWj^zfkx#?eBhk$?tkz51e0q|vYjy%0#^Y?0UM7bV64L&}
z6wx<J1o7(bsJzWBA)nZgF{|j99NK86>OuvfKpf7=K=i1|`5pgW8x>Ugmsu2h|A$#r
zMKnEq^I?ho+dh#Fo$=UVtWI_v0c+NsA*kyz%?J2L2D*RaL}fKRd%F54bzMgM?uh^o
zpAO^%70WFAx;a!mEukc&3Lr*a2DhaeJ=jcGNF1y=K6*V7qa)319&=Y>+Z0>vuxon3
z3r;JjAO0TasAe&xUfm{<kSgJl=RmdfPFVFn7&}d!r{aR`IZXC>eHA2p1BS{bXB7Wh
z#F9=MEjn%3)y3W7a%xnn1aJ89lPq(|YL&_CzH5bv#An!Ms8<M2E6VZd^0@{tIk0|P
z)3exGahxW4j@k62hCUVCqc0Yrts@^&N;wd5p#C`_Fi<P5E;GQ<kzefH!!#pRA>trq
zl|Who9rv$zj<oZeiFLT>(chg;>%U&Q5oVaoQbJT1%taD=ZdV9@9T4<Q$cv16B*U|H
z>w!5bgE6m^=rLG7^$o~Gt-5pq{W;F=OQf+7>QP?p7MXMy!zee8Q+al5*Q7SF2*4`E
zaXZO8W1HbiG|EO(*DOJ0Sc+-88bIPwCIUn19axyk2inx%#n9Erb+3)`H<$RP?iSbD
zhsl?h7@P6&&<s=Eyn*8+fZ0z5)%P>@{z4Xyl)To7>lO-9Sn|;+3pc{BeE<CA#`4U5
zQwWY`qD^C{qhKk<?-n+Imr-0#Fs>Up87}d}_hG-z(6bfI_|Q(GHU<3?eOcKjaLGp$
zE_sZSMtn-4xQ9V)(nj7dLznZ`5WR%f1$m{k847+k#WY0MUZ^Dbs03}Sb115~2nZ4M
zD8(?sJd|0pg%txHY)wy0c>sq#5~!wwrn=8DKR%RgkqUXe-!qTZ)|r^1`)^2P%UYLk
zjhq>EI%1@}DqBT!kj{Q9kntJ(enWZdON0qrsTx?a4Rc_GJKwy~!A>CSpHTjvFn>iV
zp&N);(*G9*|379of+_!(@c#ei!gryFeI$}K|NBk(9bKwF+)776Z6Sh%g(W>T)ziz1
zHeX6sRu>4oM@czaeckhqfI!Zyoi*K&)5*z+k}^646lA8Mp`oI(5zc509~+Yi#>=Iu
zh<LZ3on^jPocN1%AB}W$E8xQ?XSQ{^PT4S8%l%Vc(4BH4*}`Bj8-po;tCMk;`ML~Q
zzZgQ>&EG?5lEL_kt@!wOTU*<coVQ5UaoTE5CX=wR@E_5va}YBshpoPzw;)F08oyKB
z*x2tkHFZkT3ZP=Cnf|^?f20lmRcwsu85tS9y}cxgm5i*ctVV{0hI)Drn3!yI6{|fx
zJ>fPd<St0=@inf&JFCmh!dCH{=2xBdIB>UeAZw{`F{#YE7v66_$YI#KMA^&a<-Zo{
zLWAg%^sq8cT4L3yU<mjU0s&)h!N)RK_o-dbd+aQ1Ec<Bo?Va6cYx03tj<&>st)Kc$
z|2(ScuAP!hd6=)l{E8>PV76=6l|R8eD=Vw$=xC94oadW2Z}jzPqBP9R%mM-e4Eu(M
zhX)5CE8&a;z-yFXC+lK0>k7%?lK9-gM9&PSXGRa?FhY>#<L!wQ6`Xz~cNU?>`s^#H
zWdnZj@YK}W2lFgpS6eU-4YF8*_tKnvx`)hyJ}e!^8K<^DQ=(+B%`#@=wxP!6RUx7#
zrG$O3)xm<k!`p&7uZW0vEn?4>P|Lr8|Jr@KGeoOxvS6VkbCP4l=(OB?CrOXt%6~g7
zfKD!rV>n$plw70@V`FAEEA=Bke^Vs*f+E!)j|-^jn3$kzRkDDQ%r>WT7^4$BBNaK-
zV(wC&O@F|JbL1tuS<}m^QZvuZizz_)rCgLB`z!EiSNCteB(3T6f%S$3gA*_(Bux~x
zSs;$31>cR`jSUf+F5nL*tXiarWS@0&)o$y#l_nS*RN~C|$7z#glxjY*xT2ihz{cI$
zZq*GAlarM|>>>QlF@JS+HUBTT(lP0ocMFrEHV{}vK}$=!zoQOOJMVef+H!MwlM2q#
z#Z}y`eULVC{z*`<PoQMMT9w+>XMJ`u%<GQ14_IpP2+gdbe`n<)s&asP?_o+Z`&9m;
zi57LJxab#cYWBN&Yjp+2S)RgTTi4KwB|(>~E5`vnNmOItKi+P-tLF|p7nhWm<(E}i
zWMEA9f9fDKTvs=|6gfJ&l0E7~_x5nNN0W%RJhsjgl$e|-1vyI(OEgpg^q=#-N|S#I
z2f%4cuFri!Y;(DDX{(PrFIGmT)l}iT8*a293A=e}G&(cm0sDgtaa!|!+f>!~(Bdv7
z_Lf-G*>d9$x78D@YcS;>Vb2pEEdi-5z}oM=KGTDT4nQE#*qA|coQzNh-DlO6gj|1F
z=dX3DrVvbFod8bCV!J+6Pmokei5Gf)q_bA+<BQH7?Z2zF+Dg1{MiJ^&x36P!(f33_
zLZH%%MabQL+(N0YvHz7q=){re-p93kv+ma8Ena!1fA7pf>fo>pe@R7=f~vX&De6)-
zpEq?8@(%c0>NdgUfxgyNj919&H?lHn78J492STYaxKog`Ab9kJvSx_jtikP73%YdP
zyGCc~($YLQdSNJ}_tTa^*I%Kf9)PRercZ|MIhTR8aXj7Hq=oj8r=XUgxt~10_N5>v
zNgFvXYuxRVh%mxh@*S_+Vdw1Zw449-8h!kkL2kFz=v)??<iq_v8=vg2yKkLbQM*0T
zbK`)o%x~$<CfYFj>l{*X9=nkAEa*}HRGCF@PtVMrx~8V<d>!(WNSlApxs<+djBX`k
zT4w5YPnJ?0RW#h-bw11t>0;HouS)2YD(md+$&mEu1GZ4audW&#@d$RSi1KItYrfGg
zjF;iSlHZ-~#F(En3x+EBe8I93H2)4i2KMyQwjhh2WrFQ9t9oK`$u`(4Cx~a2@_9(k
zs?KD2cAMY;hJ}gS<<tw%ib36pUReTyYnQvs+_@Y%&yqr|12&RWtfaU5A3n&`lRD#U
zj%?H%uzO?oF7v13pM<?~!h<gTSBrC~h1yh0Yfkm&p9a77Hc_=6+&ul7Gwy~0-6tog
z+U8-?4L(Qqv6we|Z!F%Pi@-V~<+`0GbN1~3@W@v&2DF5=G@-y8Q;k?RbIDTkWlSrB
zZdI>6&c>CbcxY*6$_wSc?M-*J{r=k2k?LVije%@a>m?N>@F~WJju5(Z+0{CWTG7M_
z6WMX28r<2j##yI@hvPHC9RBgw-$Uy5>fHh*o}UFBZKnD=M^4vU?rx*a?L6^#gk{v9
zX!Nqk0_x6H+NNkMDC~W9kMgVvRn<g>#bPh9kR~%?<<K&rvQTAWWJYWEC!h|=KN0Rl
zm%clm=AT&hgqJ#9m;PS|?J45&tg_Fqzc8a*cdxF|mH2b|-H-Q(er^)-tiz6!VClTj
zAUW?YT<kwd$$=eB+4Xp8YU+0IpC|FZfBVct?AnC#UX=)%?9T$>4$sB)twjp!T{e>j
Q!to6a72xx7rI#W91&NK*QUCw|

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
index 4383ca390b..f75e4aeaea 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -34,48 +34,32 @@ Once the Supplemental Policy type is chosen on the New Policy page, policy name
 
 ![Base policy allows supplemental policies](images/wdac-wizard-supplemental-expandable.png)
 
-If the base policy is not configured for supplemental policies, first edit the base policy to allow supplementals using the [WDAC Wizard edit workflow](wdac-wizard-editing-policy.md).
+If the base policy is not configured for supplemental policies, the Wizard will attempt to convert the policy to one that can be supplemented. Once successful, the Wizard will show a dialog demonstrating that the addition of the Allow Supplemental Policy rule was completed.  
+
+![Wizard confirms modification of base policy](images/wdac-wizard-confirm-base-policy-modification.png)
+
+Policies that cannot be supplemented, for instance, a supplemental policy, will be detected by the Wizard and will show the following error. Only a base policy can be supplemented. More information on supplemental policies can be found on our [Multiple Policies article](deploy-multiple-windows-defender-application-control-policies.md).
+
+![Wizard detects a bad base policy](images/wdac-wizard-supplemental-not-base.png)
 
 ## Configuring Policy Rules
 
-Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen template from the previous page. Choose to enable or disable the desired policy rule options by pressing the slider button next to the policy rule titles. A short description of the rule will be shown at the bottom of the page when the cursor is placed on the rule title. 
+Upon page launch, policy rules will be automatically enabled/disabled depending on the chosen base policy from the previous page. Most of the supplemental policy rules must be inherited from the base policy. The Wizard will automatically parse the base policy and set the required supplemental policy rules to match the base policy rules. Inherited policy rules will be grayed out and will not be modifiable in the user interface. 
 
-### Policy Rules Description
+A short description of the rule will be shown at the bottom of the page when the cursor is placed on the rule title. 
+
+### Configurable Supplemental Policy Rules Description
+
+There are only three policy rules that can be configured by the supplemental policy. A description of each policy rule, beginning with the left-most column, is provided below. Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. 
 
-A description of each policy rule, beginning with the left-most column, is provided below. 
 
 | Rule option | Description |
 |------------ | ----------- |
-| **Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all WDAC policies. Setting this rule option allows the F8 menu to appear to physically present users. |
-| **Allow Supplemental Policies** | Use this option on a base policy to allow supplemental policies to expand it. |
-| **Disable Script Enforcement** | This option disables script enforcement options. Unsigned PowerShell scripts and interactive PowerShell are no longer restricted to [Constrained Language Mode](https://docs.microsoft.com/powershell/module/microsoft.powershell.core/about/about_language_modes). NOTE: This option is only supported with the Windows 10 May 2019 Update (1903) and higher. Using it on earlier versions of Windows 10 is not supported and may have unintended results. |
-|**[Hypervisor-protected code integrity (HVCI)](https://docs.microsoft.com/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity)**| When enabled, policy enforcement uses virtualization-based security to run the code integrity service inside a secure environment. HVCI provides stronger protections against kernel malware.|
 | **Intelligent Security Graph Authorization** | Use this option to automatically allow applications with "known good" reputation as defined by Microsoft’s Intelligent Security Graph (ISG). |
 | **Managed Installer** | Use this option to automatically allow applications installed by a software distribution solution, such as Microsoft Endpoint Configuration Manager, that has been defined as a managed installer. |
-| **Require WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
-| **Update Policy without Rebooting** | Use this option to allow future WDAC policy updates to apply without requiring a system reboot. |
-| **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
-| **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
-
-### Advanced Policy Rules Description
-
-Selecting the **+ Advanced Options** label will show another column of policy rules; advanced policy rules. A description of each policy rule is provided below. 
-
-| Rule option | Description |
-|------------ | ----------- |
-| **Boot Audit on Failure** | Used when the WDAC policy is in enforcement mode. When a driver fails during startup, the WDAC policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
-| **Disable Flight Signing** | If enabled, WDAC policies will not trust flightroot-signed binaries. This setting should be used in scenarios where organizations only want to run production binaries, not flight/preivew-signed builds. |
 | **Disable Runtime FilePath Rule Protection** | Disable default FilePath rule protection (apps and executables allowed based on file path rules must come from a file path that’s only writable by an administrator) for any FileRule that allows a file based on FilePath. |
-| **Dynamic Code Security** | Enables policy enforcement for .NET applications and dynamically loaded libraries. |
-| **Invalidate EAs on Reboot** | When the Intelligent Security Graph option (14) is used, WDAC sets an extended file attribute that indicates that the file was authorized to run. This option will cause WDAC to periodically revalidate the reputation for files that were authorized by the ISG.| 
-| **Require EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All Windows 10 and later drivers will meet this requirement. |
 
-
-![Rule options UI for Windows Allowed mode](images/wdac-wizard-rule-options-UI.png)
-
-
-> [!NOTE]
-> We recommend that you **enable Audit Mode** initially because it allows you to test new WDAC policies before you enforce them. With audit mode, no application is blocked—instead the policy logs an event whenever an application outside the policy is started. For this reason, all templates have Audit Mode enabled by default. 
+![Rule options UI for Windows Allowed mode](images/wdac-wizard-supplemental-policy-rule-options-UI.png)
 
 ## Creating custom file rules
 
@@ -90,7 +74,7 @@ The Publisher file rule type uses properties in the code signing certificate cha
 | **Issuing CA** | PCACertificate | Highest available certificate is added to the signers. This certificate is typically the PCA certificate, one level below the root certificate. Any file signed by this certificate will be affected. |
 | **Publisher** | Publisher | This rule is a combination of the PCACertificate rule and the common name (CN) of the leaf certificate. Any file signed by a major CA but with a leaf from a specific company, for example a device driver publisher, is affected. |
 | **File version** | SignedVersion | This rule is a combination of the PCACertificate and Publisher rule, and a version number. Anything from the specified publisher with a version at or above the one specified is affected. |
-| **File name** | FilePublisher | Most specific. Combination of the file name, publisher and PCA certificate as well as a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
+| **File name** | FilePublisher | Most specific. Combination of the file name, publisher, and PCA certificate and a minimum version number. Files from the publisher with the specified name and greater or equal to the specified version are affected. |
 
 
 ![Custom filepublisher file rule creation](images/wdac-wizard-custom-publisher-rule.png)
@@ -115,12 +99,12 @@ The Wizard supports the creation of [file name rules](select-types-of-rules-to-c
 
 ### File Hash Rules
 
-Lastly, the Wizard supports creating file rules using the hash of the file. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. By default, the Wizard will use file hash as the fallback in case a file rule cannot be created using the specified file rule level. 
+Lastly, the Wizard supports creating file rules using the hash of the file. Although this level is specific, it can cause extra administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. By default, the Wizard will use file hash as the fallback in case a file rule cannot be created using the specified file rule level. 
 
 
 #### Deleting Signing Rules 
   
-The table on the left of the page will document the allow and deny rules in the template, as well as any custom rules you create. Rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
+The table on the left of the page will document the allow and deny rules in the template, and any custom rules you create. Rules can be deleted from the policy by selecting the rule from the rules list table. Once the rule is highlighted, press the delete button underneath the table. you will be prompted for additional confirmation. Select `Yes` to remove the rule from the policy and the rules table. 
 
 ## Up next
 

From 741b744ab13663438c2a1d2365815a81fda795d7 Mon Sep 17 00:00:00 2001
From: mestew <mstewart@microsoft.com>
Date: Tue, 5 Jan 2021 10:39:55 -0800
Subject: [PATCH 274/825] Fix link typo for language handling

---
 windows/whats-new/whats-new-windows-10-version-2004.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/whats-new/whats-new-windows-10-version-2004.md b/windows/whats-new/whats-new-windows-10-version-2004.md
index 8c86914b6b..f8c9549d00 100644
--- a/windows/whats-new/whats-new-windows-10-version-2004.md
+++ b/windows/whats-new/whats-new-windows-10-version-2004.md
@@ -52,7 +52,7 @@ Note: [Application Guard for Office](https://support.office.com/article/applicat
 
 ### Windows Setup
 
-Windows Setup [answer files](https://docs.microsoft.com/windows-hardware/manufacture/desktop/update-windows-settings-and-scripts-create-your-own-answer-file-sxs) (unattend.xml) have [improved language ](https://oofhours.com/2020/06/01/new-in-windows-10-2004-better-language-handling/).
+Windows Setup [answer files](https://docs.microsoft.com/windows-hardware/manufacture/desktop/update-windows-settings-and-scripts-create-your-own-answer-file-sxs) (unattend.xml) have [improved language handling](https://oofhours.com/2020/06/01/new-in-windows-10-2004-better-language-handling/).
 
 Improvements in Windows Setup with this release also include:
 - Reduced offline time during feature updates

From 61a2969d920b2c5372ecef15fdc70421049d279d Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Tue, 5 Jan 2021 10:47:48 -0800
Subject: [PATCH 275/825] Fixed a broken link in editing-policy.md and a
 recommended link change in wdac-wizard.md

---
 .../wdac-wizard-editing-policy.md                          | 7 +++----
 .../windows-defender-application-control/wdac-wizard.md    | 2 +-
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
index a239d415ec..e8e812e434 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -26,10 +26,9 @@ ms.date: 10/14/2020
 
 The WDAC Wizard makes editing and viewing WDAC policies easier than the PowerShell cmdlets or manually. The Wizard currently supports the following editing capabilities: 
 <ul>
-<li>[Configuring policy rules](#Configuring-Policy-Rules)</li>
-<li>[Adding new allow or block file rules to existing policies](#Adding-File-Rules)</li>
-<li>[Removing allow or block file rules on existing policies](#Removing-File-Rules)</li>
-<li></li>
+<li>[Configuring policy rules](#configuring-policy-rules)</li>
+<li>[Adding new allow or block file rules to existing policies](#adding-file-rules)</li>
+<li>[Removing allow or block file rules on existing policies](#removing-file-rules)</li>
 </ul>
 
 ## Configuring Policy Rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index 399ff347f0..3c662ab399 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -25,7 +25,7 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-The Windows Defender Application Control (WDAC) policy Wizard is an open source Windows desktop application written in C# and bundled as an MSIX pacakge. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci/?view=win10-ps) in the backend so the output policy of the Wizard and PowerShell cmdlets is identical. 
+The Windows Defender Application Control (WDAC) policy Wizard is an open source Windows desktop application written in C# and bundled as an MSIX pacakge. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci) in the backend so the output policy of the Wizard and PowerShell cmdlets is identical. 
 
 ## Downloading the application
 

From 6e2c901c5414c3baa394adf0fd5d01bcd1226dfc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 5 Jan 2021 11:23:05 -0800
Subject: [PATCH 276/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md      | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 212256ae38..6224bb44dc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -245,9 +245,9 @@ GUID: `BE9BA2D9-53EA-4CDC-84E5-9B1EEEE46550`
 
 > [!NOTE]
 > The rule **Block executable content from email client and webmail** has the following alternative descriptions, depending on which application you use:
-- > Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
-- > Endpoint Manager: Block executable content download from email and webmail clients.
-- > Group Policy: Block executable content from email client and webmail.
+> - Intune (Configuration Profiles): Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions).
+> - Endpoint Manager: Block executable content download from email and webmail clients.
+> - Group Policy: Block executable content from email client and webmail.
 
 ### Block executable files from running unless they meet a prevalence, age, or trusted list criterion
 

From 9376aa6a6af47570b607021d885e7fc0ec0f313f Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 5 Jan 2021 13:53:42 -0800
Subject: [PATCH 277/825] update live response page

---
 .../microsoft-defender-atp/live-response.md   | 31 +++++++++++--------
 1 file changed, 18 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/live-response.md b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
index 193c067a32..59e886e92d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/live-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
@@ -43,25 +43,30 @@ With live response, analysts can do all of the following tasks:
 
 Before you can initiate a session on a device, make sure you fulfill the following requirements:
 
-- **Verify that you're running a supported version of Windows 10**. <br/>
-Devices must be running one of the following versions of Windows 10:
-   - [1909](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1909) or later  
-   - [1903](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1903)
-   - [1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809)
-   - [1803](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1803)
-   - [1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709)
+- **Verify that you're running a supported version of Windows**. <br/>
+Devices must be running one of the following versions of Windows
 
-- **Make sure to install appropriate security updates**.<br/>
-   - 1903: [KB4515384](https://support.microsoft.com/help/4515384/windows-10-update-kb4515384)
-   - 1809 (RS5): [KB4537818](https://support.microsoft.com/help/4537818/windows-10-update-kb4537818)
-   - 1803 (RS4): [KB4537795](https://support.microsoft.com/help/4537795/windows-10-update-kb4537795)
-   - 1709 (RS3): [KB4537816](https://support.microsoft.com/help/4537816/windows-10-update-kb4537816)
+  - **Windows 10**
+    - [Version 1909](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1909) or later  
+    - [Version 1903](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1903) with [KB4515384](https://support.microsoft.com/en-us/help/4515384/windows-10-update-kb4515384)
+    - [Version 1809 (RS 5)](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) with [with KB4537818](https://support.microsoft.com/help/4537818/windows-10-update-kb4537818)
+    - [Version 1803 (RS 4)](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1803) with [KB4537795](https://support.microsoft.com/help/4537795/windows-10-update-kb4537795)
+    - [Version 1709 (RS 3)](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709) with [KB4537816](https://support.microsoft.com/help/4537816/windows-10-update-kb4537816)
+  
+  - **Windows Server 2019 - Only applicable for Public preview**
+    - Version 1903 or (with [KB4515384](https://support.microsoft.com/en-us/help/4515384/windows-10-update-kb4515384)) later 
+    - Version 1809 (with [KB4537818](https://support.microsoft.com/en-us/help/4537818/windows-10-update-kb4537818))
 
-- **Enable live response from the settings page**.<br>
+- **Enable live response from the advanced settings page**.<br>
 You'll need to enable the live response capability in the [Advanced features settings](advanced-features.md) page.
 
     >[!NOTE]
     >Only users with manage security or global admin roles can edit these settings.
+
+- **Enable live response for servers from the advanced settings page** (recommended).<br>
+
+    >[!NOTE]
+    >Only users with manage security or global admin roles can edit these settings.
     
 - **Ensure that the device has an Automation Remediation level assigned to it**.<br>
 You'll need to enable, at least, the minimum Remediation Level for a given Device Group. Otherwise you won't be able to establish a Live Response session to a member of that group.

From 2967b9c0394b3e88675aa292fa1047df241dd3f7 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 5 Jan 2021 13:55:10 -0800
Subject: [PATCH 278/825] add description in advanced settings page

---
 .../microsoft-defender-atp/advanced-features.md             | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
index 725daf0761..50b285cef4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
@@ -42,6 +42,12 @@ Turn on this feature so that users with the appropriate permissions can start a
 
 For more information about role assignments, see [Create and manage roles](user-roles.md).
 
+## Live response for servers
+Turn on this feature so that users with the appropriate permissions can start a live response session on servers.
+
+For more information about role assignments, see [Create and manage roles](user-roles.md).
+
+
 ## Live response unsigned script execution
 
 Enabling this feature allows you to run unsigned scripts in a live response session.

From d11f2ac409ca3a234724a010bab0bf4d9f795e17 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Tue, 5 Jan 2021 16:19:25 -0800
Subject: [PATCH 279/825] Added bullets and spacing for readbility

---
 .../whats-new-windows-10-version-2004.md      | 32 ++++++++++++-------
 1 file changed, 21 insertions(+), 11 deletions(-)

diff --git a/windows/whats-new/whats-new-windows-10-version-2004.md b/windows/whats-new/whats-new-windows-10-version-2004.md
index f8c9549d00..38d51da399 100644
--- a/windows/whats-new/whats-new-windows-10-version-2004.md
+++ b/windows/whats-new/whats-new-windows-10-version-2004.md
@@ -30,8 +30,11 @@ To download and install Windows 10, version 2004, use Windows Update (**Settings
 ### Windows Hello
 
 - Windows Hello is now supported as Fast Identity Online 2 (FIDO2) authenticator across all major browsers including Chrome and Firefox.
+
 - You can now enable passwordless sign-in for Microsoft accounts on your Windows 10 device by going to **Settings > Accounts > Sign-in options**, and selecting **On** under **Make your device passwordless**. Enabling passwordless sign in will switch all Microsoft accounts on your Windows 10 device to modern authentication with Windows Hello Face, Fingerprint, or PIN.
+
 - Windows Hello PIN sign-in support is [added to Safe mode](https://docs.microsoft.com/windows-insider/at-work-pro/wip-4-biz-whats-new#windows-hello-pin-in-safe-mode-build-18995).
+
 - Windows Hello for Business now has Hybrid Azure Active Directory support and phone number sign-in (MSA). FIDO2 security key support is expanded to Azure Active Directory hybrid environments, enabling enterprises with hybrid environments to take advantage of [passwordless authentication](https://docs.microsoft.com/azure/active-directory/authentication/howto-authentication-passwordless-security-key-on-premises). For more information, see [Expanding Azure Active Directory support for FIDO2 preview to hybrid environments](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/expanding-azure-active-directory-support-for-fido2-preview-to/ba-p/981894).
 
 ### Windows Defender System Guard
@@ -84,7 +87,7 @@ Also see [What's new in Microsoft Intune](https://docs.microsoft.com/mem/intune/
 
 ### Windows Assessment and Deployment Toolkit (ADK)
 
-Download the Windows ADK and Windows PE add-on for Windows 10, version 2004 [here](https://docs.microsoft.com/windows-hardware/get-started/adk-install).
+Download the Windows ADK and Windows PE add-on for Windows 10, version 2004 here: [Download and install the Windows ADK](https://docs.microsoft.com/windows-hardware/get-started/adk-install).
 
 For information about what's new in the ADK, see [What's new in the Windows ADK for Windows 10, version 2004](https://docs.microsoft.com/windows-hardware/get-started/what-s-new-in-kits-and-tools#whats-new-in-the-windows-adk-for-windows-10-version-2004).
 
@@ -120,8 +123,11 @@ The following [Delivery Optimization](https://docs.microsoft.com/windows/deploym
 ### Windows Update for Business
 
 [Windows Update for Business](https://docs.microsoft.com/windows/deployment/update/waas-manage-updates-wufb) enhancements in this release include:
+
 - Intune console updates: target version is now available allowing you to specify which version of Windows 10 you want devices to move to. Additionally, this capability enables you to keep devices on their current version until they reach end of service. Check it out in Intune, also available as a Group Policy and Configuration Service Provider (CSP) policy.
+
 - Validation improvements: To ensure devices and end users stay productive and protected, Microsoft uses safeguard holds to block devices from updating when there are known issues that would impact that device. Also, to better enable IT administrators to validate on the latest release, we have created a new policy that enables admins to opt devices out of the built-in safeguard holds.
+
 - Update less: Last year, we [changed update installation policies](https://blogs.windows.com/windowsexperience/2019/04/04/improving-the-windows-10-update-experience-with-control-quality-and-transparency/#l2jH7KMkOkfcWdBs.97) for Windows 10 to only target devices running a feature update version that is nearing end of service. As a result, many devices are only updating once a year. To enable all devices to make the most of this policy change, and to prevent confusion, we have removed deferrals from the Windows Update settings **Advanced Options** page starting on Windows 10, version 2004. If you wish to continue leveraging deferrals, you can use local Group Policy (**Computer Configuration > Administrative Templates > Windows Components > Windows Update > Windows Update for Business > Select when Preview builds and Feature Updates are received** or **Select when Quality Updates are received**). For more information about this change, see [Simplified Windows Update settings for end users](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/simplified-windows-update-settings-for-end-users/ba-p/1497215).
 
 ## Networking
@@ -185,9 +191,13 @@ Several enhancements to the Windows 10 user interface are implemented in this re
 ### Cortana
 
 [Cortana](https://www.microsoft.com/cortana) has been updated and enhanced in Windows 10, version 2004:
+
 - Productivity: chat-based UI gives you the ability to [interact with Cortana using typed or spoken natural language queries](https://support.microsoft.com/help/4557165) to easily get information across Microsoft 365 and stay on track. Productivity focused capabilities such as finding people profiles, checking schedules, joining meetings, and adding to lists in Microsoft To Do are currently available to English speakers in the US.
+
   - In the coming months, with regular app updates through the Microsoft Store, we’ll enhance this experience to support wake word invocation and enable listening when you say “Cortana,” offer more productivity capabilities such as surfacing relevant emails and documents to help you prepare for meetings, and expand supported capabilities for international users.  
+  
 - Security: tightened access to Cortana so that you must be securely logged in with your work or school account or your Microsoft account before using Cortana. Because of this tightened access, some consumer skills including music, connected home, and third-party skills will no longer be available. Additionally, users [get cloud-based assistance services that meet Office 365’s enterprise-level privacy, security, and compliance promises](https://docs.microsoft.com/microsoft-365/admin/misc/cortana-integration?view=o365-worldwide) as set out in the Online Services Terms.
+
 - Move the Cortana window: drag the Cortana window to a more convenient location on your desktop.
 
 For updated information, see the [Microsoft 365 blog](https://aka.ms/CortanaUpdatesMay2020).
@@ -246,13 +256,13 @@ For information about Desktop Analytics and this release of Windows 10, see [Wha
 
 ## See Also
 
-[What’s new for IT pros in Windows 10, version 2004](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/what-s-new-for-it-pros-in-windows-10-version-2004/ba-p/1419764): Windows IT Pro blog.<br>
-[What’s new in the Windows 10 May 2020 Update](https://blogs.windows.com/windowsexperience/2020/05/27/whats-new-in-the-windows-10-may-2020-update/): Windows Insider blog.<br>
-[What's New in Windows Server](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server): New and updated features in Windows Server.<br>
-[Windows 10 Features](https://www.microsoft.com/windows/features): General information about Windows 10 features.<br>
-[What's New in Windows 10](https://docs.microsoft.com/windows/whats-new/): See what’s new in other versions of Windows 10.<br>
-[Start developing on Windows 10, version 2004 today](https://blogs.windows.com/windowsdeveloper/2020/05/12/start-developing-on-windows-10-version-2004-today/): New and updated features in Windows 10 that are of interest to developers.<br>
-[What's new for business in Windows 10 Insider Preview Builds](https://docs.microsoft.com/windows-insider/at-work-pro/wip-4-biz-whats-new): A preview of new features for businesses.<br>
-[What's new in Windows 10, version 2004 - Windows Insiders](https://docs.microsoft.com/windows-insider/at-home/whats-new-wip-at-home-20h1): This list also includes consumer focused new features.<br>
-[Features and functionality removed in Windows 10](https://docs.microsoft.com/windows/deployment/planning/windows-10-removed-features): Removed features.<br>
-[Windows 10 features we’re no longer developing](https://docs.microsoft.com/windows/deployment/planning/windows-10-deprecated-features): Features that are not being developed.<br>
+ - [What’s new for IT pros in Windows 10, version 2004](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/what-s-new-for-it-pros-in-windows-10-version-2004/ba-p/1419764): Windows IT Pro blog.<br>
+ - [What’s new in the Windows 10 May 2020 Update](https://blogs.windows.com/windowsexperience/2020/05/27/whats-new-in-the-windows-10-may-2020-update/): Windows Insider blog.<br>
+ - [What's New in Windows Server](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server): New and updated features in Windows Server.<br>
+ - [Windows 10 Features](https://www.microsoft.com/windows/features): General information about Windows 10 features.<br>
+ - [What's New in Windows 10](https://docs.microsoft.com/windows/whats-new/): See what’s new in other versions of Windows 10.<br>
+ - [Start developing on Windows 10, version 2004 today](https://blogs.windows.com/windowsdeveloper/2020/05/12/start-developing-on-windows-10-version-2004-today/): New and updated features in Windows 10 that are of interest to developers.<br>
+ - [What's new for business in Windows 10 Insider Preview Builds](https://docs.microsoft.com/windows-insider/at-work-pro/wip-4-biz-whats-new): A preview of new features for businesses.<br>
+ - [What's new in Windows 10, version 2004 - Windows Insiders](https://docs.microsoft.com/windows-insider/at-home/whats-new-wip-at-home-20h1): This list also includes consumer focused new features.<br>
+ - [Features and functionality removed in Windows 10](https://docs.microsoft.com/windows/deployment/planning/windows-10-removed-features): Removed features.<br>
+ - [Windows 10 features we’re no longer developing](https://docs.microsoft.com/windows/deployment/planning/windows-10-deprecated-features): Features that are not being developed.<br>

From d0dfadfc0882faa806f82ca511b7d0747633a36b Mon Sep 17 00:00:00 2001
From: katoma2017 <48699113+katoma2017@users.noreply.github.com>
Date: Tue, 5 Jan 2021 16:46:04 -0800
Subject: [PATCH 280/825] Update security-compliance-toolkit-10.md

Add the update baseline to the security baseline toolkit
---
 .../threat-protection/security-compliance-toolkit-10.md        | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/security-compliance-toolkit-10.md b/windows/security/threat-protection/security-compliance-toolkit-10.md
index e8dd6ab29f..e8972cbc75 100644
--- a/windows/security/threat-protection/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/security-compliance-toolkit-10.md
@@ -47,6 +47,9 @@ The Security Compliance Toolkit consists of:
 
 - Microsoft Edge security baseline
     - Version 85
+    
+ - Windows Update security baseline
+    - Windows 10 20H2 and below (October 2020 Update)
 
 - Tools
     - Policy Analyzer tool

From 92fc72fae38caa31ea5ca967cea2914d03a35b4e Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Tue, 5 Jan 2021 16:49:16 -0800
Subject: [PATCH 281/825] Minor fixes and Acrolinx "Italized"

---
 .../wdac-wizard-create-base-policy.md                 | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index 277a5b28a2..f911c0979d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -32,13 +32,13 @@ When creating policies for use with Windows Defender Application Control (WDAC),
 Each of the template policies has a unique set of policy allow list rules that will affect the circle-of-trust and security model of the policy. The following table lists the policies in increasing order of trust and freedom. For instance, the Default Windows mode policy trusts fewer application publishers and signers than the Signed and Reputable mode policy. The Default Windows policy will have a smaller circle-of-trust with better security than the Signed and Reputable policy, but at the expense of compatibility.  
 
 
-| **Template Base Policy** | **Description** | 
+| Template Base Policy | Description | 
 |---------------------------------|-------------------------------------------------------------------|
 | **Default Windows Mode**      | Default Windows mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li></ul>|
 | **Allow Microsoft Mode**      | Allow mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li><li>*All Microsoft-signed software*</li></ul>|
 | **Signed and Reputable Mode** | Signed and Reputable mode will authorize the following components: </br><ul><li>Windows operating components - any binary installed by a fresh install of Windows</li><li>Apps installed from the Microsoft Store</li><li>Microsoft Office365 apps, OneDrive, and Microsoft Teams</li><li>Third-party [Windows Hardware Compatible drivers](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature)</li><li>All Microsoft-signed software</li><li>*Files with good reputation per [Microsoft Defender's Intelligent Security Graph technology](use-windows-defender-application-control-with-intelligent-security-graph.md)*</li></ul>|
 
-*Italized content denotes the changes in the current policy with respect to the policy prior.*
+*Italicized content denotes the changes in the current policy with respect to the policy prior.*
 
 More information about the Default Windows Mode and Allow Microsoft Mode policies can be accessed through the [Example WDAC base policies article](example-wdac-base-policies.md). 
 
@@ -67,7 +67,8 @@ A description of each policy rule, beginning with the left-most column, is provi
 | **Unsigned System Integrity Policy** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
 | **User Mode Code Integrity** | WDAC policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
 
-![Rule options UI for Windows Allowed mode policy](images/wdac-wizard-rule-options-UI-advanced-collapsed.png)
+> [!div class="mx-imgBorder"]
+> ![Rule options UI for Windows Allowed mode policy](images/wdac-wizard-rule-options-UI-advanced-collapsed.png)
 
 ### Advanced Policy Rules Description
 
@@ -120,8 +121,8 @@ The Wizard supports the creation of [file name rules](select-types-of-rules-to-c
 | **Product name** | Specifies the name of the product with which the binary ships. |
 | **Internal name** | Specifies the internal name of the binary. |
 
-
-![Custom file attributes rule](images/wdac-wizard-custom-file-attribute-rule.png)
+> [!div class="mx-imgBorder"]
+> ![Custom file attributes rule](images/wdac-wizard-custom-file-attribute-rule.png)
 
 ### File Hash Rules
 

From 0a4079fdf4fd86f28f0adf4511f6191210b68937 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Tue, 5 Jan 2021 16:51:02 -0800
Subject: [PATCH 282/825] Acrolinx: "pacakge"

---
 .../windows-defender-application-control/wdac-wizard.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index 3c662ab399..0232249e8a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -25,7 +25,7 @@ ms.date: 10/14/2020
 -   Windows 10
 -   Windows Server 2016 and above
 
-The Windows Defender Application Control (WDAC) policy Wizard is an open source Windows desktop application written in C# and bundled as an MSIX pacakge. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci) in the backend so the output policy of the Wizard and PowerShell cmdlets is identical. 
+The Windows Defender Application Control (WDAC) policy Wizard is an open source Windows desktop application written in C# and bundled as an MSIX package. The Wizard was built to provide security architects, security and system administrators with a more user-friendly means to create, edit, and merge WDAC policies. The Wizard desktop application uses the [ConfigCI PowerShell Cmdlets](https://docs.microsoft.com/powershell/module/configci) in the backend so the output policy of the Wizard and PowerShell cmdlets is identical. 
 
 ## Downloading the application
 

From 85f66153f659cfc3feb4fb2d0d9895d30242a34c Mon Sep 17 00:00:00 2001
From: ShowMeMore <misterx_82@hotmail.com>
Date: Wed, 6 Jan 2021 16:45:56 +0100
Subject: [PATCH 283/825] Update minimum-requirements.md

Updated licensing requirements match academic licensing:
- Added Microsoft 365 A5 Security to the list of licensing requirements for Microsoft Defender for Endpoint
- Added Microsoft 365 A5 Security to the note for Microsoft Defender for Endpoint for Servers
---
 .../microsoft-defender-atp/minimum-requirements.md           | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 8605eac87e..96515f8a95 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -39,8 +39,9 @@ Microsoft Defender for Endpoint requires one of the following Microsoft volume l
 - Windows 10 Enterprise E5
 - Windows 10 Education A5
 - Microsoft 365 E5 (M365 E5) which includes Windows 10 Enterprise E5
-- Microsoft 365 E5 Security
 - Microsoft 365 A5 (M365 A5)
+- Microsoft 365 E5 Security
+- Microsoft 365 A5 Security
 
 > [!NOTE]
 > Eligible licensed users may use Microsoft Defender for Endpoint on up to five concurrent devices.
@@ -57,7 +58,7 @@ Microsoft Defender for Endpoint, on Windows Server, requires one of the followin
 > * Microsoft Defender for Endpoint
 > * Windows E5/A5
 > * Microsoft 365 E5/A5
-> * Microsoft 365 E5 Security
+> * Microsoft 365 E5/A5 Security
 
 For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn more about the terms and conditions.
 

From 5547d1d461653e0fe57b7bd77ed99251c8e52e3e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 09:54:04 -0800
Subject: [PATCH 284/825] antivirus platform updates

started section for older versions
---
 ...on-updates-microsoft-defender-antivirus.md |   2 +-
 ...-baselines-microsoft-defender-antivirus.md | 265 ++++++++++++++++++
 2 files changed, 266 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index 613d0bb3b1..7dcee83d5a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -1,5 +1,5 @@
 ---
-title: Manage how and where Microsoft Defender AV receives updates
+title: Manage how and where Microsoft Defender Antivirus receives updates
 description: Manage the fallback order for how Microsoft Defender Antivirus receives protection updates.
 keywords: updates, security baselines, protection, fallback order, ADL, MMPC, UNC, file path, share, wsus
 search.product: eADQiWindows 10XVcnh
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 9700678379..e5bb66a2ff 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -336,6 +336,271 @@ When this update is installed, the device needs the jump package 4.10.2001.10 to
 <br/>
 </details>
 
+### Previous version updates: Technical upgrade support only
+
+<br/>
+
+
+<details>
+<summary> November-2020 (Platform: 4.18.2011.6 | Engine: 1.1.17700.4)</summary>
+
+&ensp;Security intelligence update version: **1.327.1854.0**  
+&ensp;Released: **December 03, 2020**  
+&ensp;Platform: **4.18.2011.6**  
+&ensp;Engine: **1.1.17700.4**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+- Improved SmartScreen status support logging
+- Apply CPU throttling policy to manually initiated scans
+
+### Known Issues
+No known issues  
+<br/>
+</details><details>
+<summary> October-2020 (Platform: 4.18.2010.7 | Engine: 1.1.17600.5)</summary>
+
+&ensp;Security intelligence update version: **1.327.7.0**  
+&ensp;Released: **October 29, 2020**  
+&ensp;Platform: **4.18.2010.7**  
+&ensp;Engine: **1.1.17600.5**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+- New descriptions for special threat categories
+- Improved emulation capabilities
+- Improved host address allow/block capabilities
+- New option in Defender CSP to Ignore merging of local user exclusions
+
+### Known Issues
+No known issues  
+<br/>
+</details><details>
+<summary> September-2020 (Platform: 4.18.2009.7 | Engine: 1.1.17500.4)</summary>
+
+&ensp;Security intelligence update version: **1.325.10.0**  
+&ensp;Released: **October 01, 2020**  
+&ensp;Platform: **4.18.2009.7**  
+&ensp;Engine: **1.1.17500.4**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+- Admin permissions are required to restore files in quarantine
+- XML formatted events are now supported
+- CSP support for ignoring exclusion merges
+- New management interfaces for:
+   - UDP Inspection
+   - Network Protection on Server 2019
+   - IP Address exclusions for Network Protection
+- Improved visibility into TPM measurements
+- Improved Office VBA module scanning
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+<details>
+<summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>
+
+&ensp;Security intelligence update version: **1.323.9.0**  
+&ensp;Released: **August 27, 2020**  
+&ensp;Platform: **4.18.2008.9**  
+&ensp;Engine: **1.1.17400.5**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+
+- Add more telemetry events
+- Improved scan event telemetry
+- Improved behavior monitoring for memory scans
+- Improved macro streams scanning
+- Added `AMRunningMode` to Get-MpComputerStatus PowerShell cmdlet
+- [DisableAntiSpyware](https://docs.microsoft.com/windows-hardware/customize/desktop/unattend/security-malware-windows-defender-disableantispyware) is ignored. Microsoft Defender Antivirus automatically turns itself off when it detects another antivirus program.
+
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+
+<details>
+<summary> July-2020 (Platform: 4.18.2007.8 | Engine: 1.1.17300.4)</summary>
+
+&ensp;Security intelligence update version: **1.321.30.0**  
+&ensp;Released: **July 28, 2020**  
+&ensp;Platform: **4.18.2007.8**  
+&ensp;Engine: **1.1.17300.4**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+* Improved telemetry for BITS
+* Improved Authenticode code signing certificate validation
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+
+<details>
+<summary> June-2020 (Platform: 4.18.2006.10 | Engine: 1.1.17200.2)</summary>
+
+&ensp;Security intelligence update version: **1.319.20.0**  
+&ensp;Released: **June 22, 2020**  
+&ensp;Platform: **4.18.2006.10**  
+&ensp;Engine: **1.1.17200.2**  
+&ensp;Support phase: **Technical upgrade Support (Only)**
+    
+### What's new
+* Possibility to specify the [location of the support logs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data)
+* Skipping aggressive catchup scan in Passive mode.
+* Allow Defender to update on metered connections
+* Fixed performance tuning when caching is disabled 
+* Fixed registry query 
+* Fixed scantime randomization in ADMX
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+
+<details>
+<summary> May-2020 (Platform: 4.18.2005.4 | Engine: 1.1.17100.2)</summary>
+
+&ensp;Security intelligence update version: **1.317.20.0**  
+&ensp;Released: **May 26, 2020**  
+&ensp;Platform: **4.18.2005.4**  
+&ensp;Engine: **1.1.17100.2**  
+&ensp;Support phase: **Technical upgrade Support (Only)**
+    
+### What's new
+* Improved logging for scan events
+* Improved user mode crash handling.
+* Added event tracing for Tamper protection
+* Fixed AMSI Sample submission
+* Fixed AMSI Cloud blocking
+* Fixed Security update install log
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+
+<details>
+<summary> April-2020 (Platform: 4.18.2004.6 | Engine: 1.1.17000.2)</summary>
+
+&ensp;Security intelligence update version: **1.315.12.0**  
+&ensp;Released: **April 30, 2020**  
+&ensp;Platform: **4.18.2004.6**  
+&ensp;Engine: **1.1.17000.2**  
+&ensp;Support phase: **Technical upgrade Support (Only)**
+    
+### What's new
+* WDfilter improvements
+* Add more actionable event data to attack surface reduction detection events
+* Fixed version information in diagnostic data and WMI
+* Fixed incorrect platform version in UI after platform update
+* Dynamic URL intel for Fileless threat protection
+* UEFI scan capability
+* Extend logging for updates
+
+### Known Issues
+No known issues  
+<br/>
+</details>
+
+<details>
+<summary> March-2020 (Platform: 4.18.2003.8 | Engine: 1.1.16900.2)</summary>
+
+&ensp;Security intelligence update version: **1.313.8.0**  
+&ensp;Released: **March 24, 2020**  
+&ensp;Platform: **4.18.2003.8**  
+&ensp;Engine: **1.1.16900.4**  
+&ensp;Support phase: **Technical upgrade Support (Only)**
+    
+### What's new
+
+* CPU Throttling option added to [MpCmdRun](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus)
+* Improve diagnostic capability
+* reduce Security intelligence timeout (5 min)
+* Extend AMSI engine internal log capability
+* Improve notification for process blocking
+   
+### Known Issues
+[**Fixed**] Microsoft Defender Antivirus is skipping files when running a scan.
+
+<br/>
+</details>
+
+<details>
+
+<summary> February-2020 (Platform: - | Engine: 1.1.16800.2)</summary>
+  
+
+  Security intelligence update version: **1.311.4.0**   
+  Released: **February 25, 2020**  
+  Platform/Client: **-**  
+  Engine: **1.1.16800.2**  
+  Support phase: **N/A**
+     
+### What's new
+
+  
+### Known Issues
+No known issues
+<br/>
+</details>
+
+<details>
+<summary> January-2020 (Platform: 4.18.2001.10 | Engine: 1.1.16700.2)</summary>
+  
+
+Security intelligence update version: **1.309.32.0**  
+Released: **January 30, 2020**  
+Platform/Client: **4.18.2001.10**  
+Engine: **1.1.16700.2**  
+Support phase: **Technical upgrade Support (Only)**
+     
+### What's new
+
+* Fixed BSOD on WS2016 with Exchange
+* Support platform updates when TMP is redirected to network path
+* Platform and engine versions are added to [WDSI](https://www.microsoft.com/wdsi/defenderupdates)
+* extend Emergency signature update to [passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility)
+* Fix 4.18.1911.3 hang
+   
+### Known Issues
+[**Fixed**] devices utilizing [modern standby mode](https://docs.microsoft.com/windows-hardware/design/device-experiences/modern-standby) may experience a hang with the Windows Defender filter driver that results in a gap of protection.  Affected machines appear to the customer as having not updated to the latest antimalware platform.  
+<br/>
+> [!IMPORTANT]
+> This updates is needed by RS1 devices running lower version of the platform to support SHA2. <br/>This update has reboot flag for systems that are experiencing the hang issue.<br/> the This update is re-released in April 2020 and will not be superseded by newer updates to keep future availability.
+<br/>
+> [!IMPORTANT]
+> This update is categorized as an "update" due to its reboot requirement and will only be offered with a [Windows Update](https://support.microsoft.com/help/4027667/windows-10-update)
+<br/>
+</details>
+
+<details>
+<summary> November-2019 (Platform: 4.18.1911.3 | Engine: 1.1.16600.7)</summary>
+
+Security intelligence update version: **1.307.13.0**  
+Released: **December 7, 2019**  
+Platform: **4.18.1911.3**  
+Engine: **1.1.17000.7**  
+Support phase: **No support**  
+     
+### What's new
+
+* Fixed MpCmdRun tracing level
+* Fixed WDFilter version info
+* Improve notifications (PUA)
+* add MRT logs to support files
+   
+### Known Issues
+When this update is installed, the device needs the jump package 4.10.2001.10 to be able to update to the latest platform version.
+<br/>
+</details>
+
+
 ## Microsoft Defender Antivirus platform support
 Platform and engine updates are provided on a monthly cadence. To be fully supported, keep current with the latest platform updates. Our support structure is dynamic, evolving into two phases depending on the availability of the latest platform version:
 

From 2e112248e6888198bc74baf1fe9e35a8fcb7cff4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 09:56:26 -0800
Subject: [PATCH 285/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

pared down current version section
---
 ...-baselines-microsoft-defender-antivirus.md | 200 ------------------
 1 file changed, 200 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index e5bb66a2ff..369b94de5a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -135,206 +135,6 @@ No known issues
 No known issues  
 <br/>
 </details>
-<details>
-<summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>
-
-&ensp;Security intelligence update version: **1.323.9.0**  
-&ensp;Released: **August 27, 2020**  
-&ensp;Platform: **4.18.2008.9**  
-&ensp;Engine: **1.1.17400.5**  
-&ensp;Support phase: **Security and Critical Updates**
-    
-### What's new
-
-- Add more telemetry events
-- Improved scan event telemetry
-- Improved behavior monitoring for memory scans
-- Improved macro streams scanning
-- Added `AMRunningMode` to Get-MpComputerStatus PowerShell cmdlet
-- [DisableAntiSpyware](https://docs.microsoft.com/windows-hardware/customize/desktop/unattend/security-malware-windows-defender-disableantispyware) is ignored. Microsoft Defender Antivirus automatically turns itself off when it detects another antivirus program.
-
-
-### Known Issues
-No known issues  
-<br/>
-</details>
-
-<details>
-<summary> July-2020 (Platform: 4.18.2007.8 | Engine: 1.1.17300.4)</summary>
-
-&ensp;Security intelligence update version: **1.321.30.0**  
-&ensp;Released: **July 28, 2020**  
-&ensp;Platform: **4.18.2007.8**  
-&ensp;Engine: **1.1.17300.4**  
-&ensp;Support phase: **Security and Critical Updates**
-    
-### What's new
-* Improved telemetry for BITS
-* Improved Authenticode code signing certificate validation
-
-### Known Issues
-No known issues  
-<br/>
-</details>
-
-<details>
-<summary> June-2020 (Platform: 4.18.2006.10 | Engine: 1.1.17200.2)</summary>
-
-&ensp;Security intelligence update version: **1.319.20.0**  
-&ensp;Released: **June 22, 2020**  
-&ensp;Platform: **4.18.2006.10**  
-&ensp;Engine: **1.1.17200.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
-    
-### What's new
-* Possibility to specify the [location of the support logs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data)
-* Skipping aggressive catchup scan in Passive mode.
-* Allow Defender to update on metered connections
-* Fixed performance tuning when caching is disabled 
-* Fixed registry query 
-* Fixed scantime randomization in ADMX
-
-### Known Issues
-No known issues  
-<br/>
-</details>
-
-<details>
-<summary> May-2020 (Platform: 4.18.2005.4 | Engine: 1.1.17100.2)</summary>
-
-&ensp;Security intelligence update version: **1.317.20.0**  
-&ensp;Released: **May 26, 2020**  
-&ensp;Platform: **4.18.2005.4**  
-&ensp;Engine: **1.1.17100.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
-    
-### What's new
-* Improved logging for scan events
-* Improved user mode crash handling.
-* Added event tracing for Tamper protection
-* Fixed AMSI Sample submission
-* Fixed AMSI Cloud blocking
-* Fixed Security update install log
-
-### Known Issues
-No known issues  
-<br/>
-</details>
-
-<details>
-<summary> April-2020 (Platform: 4.18.2004.6 | Engine: 1.1.17000.2)</summary>
-
-&ensp;Security intelligence update version: **1.315.12.0**  
-&ensp;Released: **April 30, 2020**  
-&ensp;Platform: **4.18.2004.6**  
-&ensp;Engine: **1.1.17000.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
-    
-### What's new
-* WDfilter improvements
-* Add more actionable event data to attack surface reduction detection events
-* Fixed version information in diagnostic data and WMI
-* Fixed incorrect platform version in UI after platform update
-* Dynamic URL intel for Fileless threat protection
-* UEFI scan capability
-* Extend logging for updates
-
-### Known Issues
-No known issues  
-<br/>
-</details>
-
-<details>
-<summary> March-2020 (Platform: 4.18.2003.8 | Engine: 1.1.16900.2)</summary>
-
-&ensp;Security intelligence update version: **1.313.8.0**  
-&ensp;Released: **March 24, 2020**  
-&ensp;Platform: **4.18.2003.8**  
-&ensp;Engine: **1.1.16900.4**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
-    
-### What's new
-
-* CPU Throttling option added to [MpCmdRun](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus)
-* Improve diagnostic capability
-* reduce Security intelligence timeout (5 min)
-* Extend AMSI engine internal log capability
-* Improve notification for process blocking
-   
-### Known Issues
-[**Fixed**] Microsoft Defender Antivirus is skipping files when running a scan.
-
-<br/>
-</details>
-
-<details>
-
-<summary> February-2020 (Platform: - | Engine: 1.1.16800.2)</summary>
-  
-
-  Security intelligence update version: **1.311.4.0**   
-  Released: **February 25, 2020**  
-  Platform/Client: **-**  
-  Engine: **1.1.16800.2**  
-  Support phase: **N/A**
-     
-### What's new
-
-  
-### Known Issues
-No known issues
-<br/>
-</details>
-
-<details>
-<summary> January-2020 (Platform: 4.18.2001.10 | Engine: 1.1.16700.2)</summary>
-  
-
-Security intelligence update version: **1.309.32.0**  
-Released: **January 30, 2020**  
-Platform/Client: **4.18.2001.10**  
-Engine: **1.1.16700.2**  
-Support phase: **Technical upgrade Support (Only)**
-     
-### What's new
-
-* Fixed BSOD on WS2016 with Exchange
-* Support platform updates when TMP is redirected to network path
-* Platform and engine versions are added to [WDSI](https://www.microsoft.com/wdsi/defenderupdates)
-* extend Emergency signature update to [passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility)
-* Fix 4.18.1911.3 hang
-   
-### Known Issues
-[**Fixed**] devices utilizing [modern standby mode](https://docs.microsoft.com/windows-hardware/design/device-experiences/modern-standby) may experience a hang with the Windows Defender filter driver that results in a gap of protection.  Affected machines appear to the customer as having not updated to the latest antimalware platform.  
-<br/>
-> [!IMPORTANT]
-> This updates is needed by RS1 devices running lower version of the platform to support SHA2. <br/>This update has reboot flag for systems that are experiencing the hang issue.<br/> the This update is re-released in April 2020 and will not be superseded by newer updates to keep future availability.
-<br/>
-> [!IMPORTANT]
-> This update is categorized as an "update" due to its reboot requirement and will only be offered with a [Windows Update](https://support.microsoft.com/help/4027667/windows-10-update)
-<br/>
-</details>
-
-<details>
-<summary> November-2019 (Platform: 4.18.1911.3 | Engine: 1.1.16600.7)</summary>
-
-Security intelligence update version: **1.307.13.0**  
-Released: **December 7, 2019**  
-Platform: **4.18.1911.3**  
-Engine: **1.1.17000.7**  
-Support phase: **No support**  
-     
-### What's new
-
-* Fixed MpCmdRun tracing level
-* Fixed WDFilter version info
-* Improve notifications (PUA)
-* add MRT logs to support files
-   
-### Known Issues
-When this update is installed, the device needs the jump package 4.10.2001.10 to be able to update to the latest platform version.
-<br/>
-</details>
 
 ### Previous version updates: Technical upgrade support only
 

From 416714f3047acf819fdd17f7a1af61e609ccba4a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 09:57:33 -0800
Subject: [PATCH 286/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

set the previous versions section right
---
 ...-baselines-microsoft-defender-antivirus.md | 58 -------------------
 1 file changed, 58 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 369b94de5a..51619b0baa 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -141,64 +141,6 @@ No known issues
 <br/>
 
 
-<details>
-<summary> November-2020 (Platform: 4.18.2011.6 | Engine: 1.1.17700.4)</summary>
-
-&ensp;Security intelligence update version: **1.327.1854.0**  
-&ensp;Released: **December 03, 2020**  
-&ensp;Platform: **4.18.2011.6**  
-&ensp;Engine: **1.1.17700.4**  
-&ensp;Support phase: **Security and Critical Updates**
-    
-### What's new
-- Improved SmartScreen status support logging
-- Apply CPU throttling policy to manually initiated scans
-
-### Known Issues
-No known issues  
-<br/>
-</details><details>
-<summary> October-2020 (Platform: 4.18.2010.7 | Engine: 1.1.17600.5)</summary>
-
-&ensp;Security intelligence update version: **1.327.7.0**  
-&ensp;Released: **October 29, 2020**  
-&ensp;Platform: **4.18.2010.7**  
-&ensp;Engine: **1.1.17600.5**  
-&ensp;Support phase: **Security and Critical Updates**
-    
-### What's new
-- New descriptions for special threat categories
-- Improved emulation capabilities
-- Improved host address allow/block capabilities
-- New option in Defender CSP to Ignore merging of local user exclusions
-
-### Known Issues
-No known issues  
-<br/>
-</details><details>
-<summary> September-2020 (Platform: 4.18.2009.7 | Engine: 1.1.17500.4)</summary>
-
-&ensp;Security intelligence update version: **1.325.10.0**  
-&ensp;Released: **October 01, 2020**  
-&ensp;Platform: **4.18.2009.7**  
-&ensp;Engine: **1.1.17500.4**  
-&ensp;Support phase: **Security and Critical Updates**
-    
-### What's new
-- Admin permissions are required to restore files in quarantine
-- XML formatted events are now supported
-- CSP support for ignoring exclusion merges
-- New management interfaces for:
-   - UDP Inspection
-   - Network Protection on Server 2019
-   - IP Address exclusions for Network Protection
-- Improved visibility into TPM measurements
-- Improved Office VBA module scanning
-
-### Known Issues
-No known issues  
-<br/>
-</details>
 <details>
 <summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>
 

From 73a985f3c311e4c1d5ca49669d34a88560c1a6ed Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:04:11 -0800
Subject: [PATCH 287/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md   | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 51619b0baa..44ab2eeb3b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -138,8 +138,7 @@ No known issues
 
 ### Previous version updates: Technical upgrade support only
 
-<br/>
-
+Previous version updates are listed below, and are provided for technical upgrade support only. 
 
 <details>
 <summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>

From cc317b344eb1ab1b72f9447bee04657ef53ea525 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:06:27 -0800
Subject: [PATCH 288/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...s-baselines-microsoft-defender-antivirus.md | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 44ab2eeb3b..fcdf912ecb 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -174,8 +174,9 @@ No known issues
 &ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
-* Improved telemetry for BITS
-* Improved Authenticode code signing certificate validation
+
+- Improved telemetry for BITS
+- Improved Authenticode code signing certificate validation
 
 ### Known Issues
 No known issues  
@@ -192,12 +193,13 @@ No known issues
 &ensp;Support phase: **Technical upgrade Support (Only)**
     
 ### What's new
-* Possibility to specify the [location of the support logs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data)
-* Skipping aggressive catchup scan in Passive mode.
-* Allow Defender to update on metered connections
-* Fixed performance tuning when caching is disabled 
-* Fixed registry query 
-* Fixed scantime randomization in ADMX
+
+- Possibility to specify the [location of the support logs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data)
+- Skipping aggressive catchup scan in Passive mode.
+- Allow Defender to update on metered connections
+- Fixed performance tuning when caching is disabled 
+- Fixed registry query 
+- Fixed scantime randomization in ADMX
 
 ### Known Issues
 No known issues  

From b8b63496d4d95ade904771ceebe2963fa6b155b0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:08:53 -0800
Subject: [PATCH 289/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index fcdf912ecb..e03dbc86af 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -138,7 +138,7 @@ No known issues
 
 ### Previous version updates: Technical upgrade support only
 
-Previous version updates are listed below, and are provided for technical upgrade support only. 
+Previous version updates are listed below, and are provided for technical upgrade support only. <br/>
 
 <details>
 <summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>

From 826a1a8811b502b5ea1919939cbd17e6d907a624 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:15:42 -0800
Subject: [PATCH 290/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index e03dbc86af..1a71bfa5e6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -68,7 +68,7 @@ For more information, see [Manage the sources for Microsoft Defender Antivirus p
 
 ## Monthly platform and engine versions
 
-For information how to update or how to install the platform update, see [Update for Windows Defender antimalware platform](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform).
+For information how to update or install the platform update, see [Update for Windows Defender antimalware platform](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform).
 
 All our updates contain 
 - performance improvements;
@@ -138,7 +138,8 @@ No known issues
 
 ### Previous version updates: Technical upgrade support only
 
-Previous version updates are listed below, and are provided for technical upgrade support only. <br/>
+Previous version updates are listed below, and are provided for technical upgrade support only. 
+<br/>
 
 <details>
 <summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>

From fca8929adac3fdb1f6b1477f674cab953066fdab Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:20:10 -0800
Subject: [PATCH 291/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...-baselines-microsoft-defender-antivirus.md | 26 +++++++++----------
 1 file changed, 12 insertions(+), 14 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 1a71bfa5e6..ced116a6ed 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -148,7 +148,6 @@ Previous version updates are listed below, and are provided for technical upgrad
 &ensp;Released: **August 27, 2020**  
 &ensp;Platform: **4.18.2008.9**  
 &ensp;Engine: **1.1.17400.5**  
-&ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
 
@@ -172,7 +171,7 @@ No known issues
 &ensp;Released: **July 28, 2020**  
 &ensp;Platform: **4.18.2007.8**  
 &ensp;Engine: **1.1.17300.4**  
-&ensp;Support phase: **Security and Critical Updates**
+&ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
 
@@ -191,7 +190,7 @@ No known issues
 &ensp;Released: **June 22, 2020**  
 &ensp;Platform: **4.18.2006.10**  
 &ensp;Engine: **1.1.17200.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
+&ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
 
@@ -214,7 +213,7 @@ No known issues
 &ensp;Released: **May 26, 2020**  
 &ensp;Platform: **4.18.2005.4**  
 &ensp;Engine: **1.1.17100.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
+&ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
 * Improved logging for scan events
@@ -236,7 +235,7 @@ No known issues
 &ensp;Released: **April 30, 2020**  
 &ensp;Platform: **4.18.2004.6**  
 &ensp;Engine: **1.1.17000.2**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
+&ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
 * WDfilter improvements
@@ -259,7 +258,7 @@ No known issues
 &ensp;Released: **March 24, 2020**  
 &ensp;Platform: **4.18.2003.8**  
 &ensp;Engine: **1.1.16900.4**  
-&ensp;Support phase: **Technical upgrade Support (Only)**
+&ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
 
@@ -280,11 +279,11 @@ No known issues
 <summary> February-2020 (Platform: - | Engine: 1.1.16800.2)</summary>
   
 
-  Security intelligence update version: **1.311.4.0**   
-  Released: **February 25, 2020**  
-  Platform/Client: **-**  
-  Engine: **1.1.16800.2**  
-  Support phase: **N/A**
+&ensp;Security intelligence update version: **1.311.4.0**   
+&ensp;Released: **February 25, 2020**  
+&ensp;Platform/Client: **-**  
+&ensp;Engine: **1.1.16800.2**  
+&ensp;Support phase: **Technical upgrade support (only)**
      
 ### What's new
 
@@ -302,7 +301,7 @@ Security intelligence update version: **1.309.32.0**
 Released: **January 30, 2020**  
 Platform/Client: **4.18.2001.10**  
 Engine: **1.1.16700.2**  
-Support phase: **Technical upgrade Support (Only)**
+&ensp;Support phase: **Technical upgrade support (only)**
      
 ### What's new
 
@@ -317,8 +316,7 @@ Support phase: **Technical upgrade Support (Only)**
 <br/>
 > [!IMPORTANT]
 > This updates is needed by RS1 devices running lower version of the platform to support SHA2. <br/>This update has reboot flag for systems that are experiencing the hang issue.<br/> the This update is re-released in April 2020 and will not be superseded by newer updates to keep future availability.
-<br/>
-> [!IMPORTANT]
+> 
 > This update is categorized as an "update" due to its reboot requirement and will only be offered with a [Windows Update](https://support.microsoft.com/help/4027667/windows-10-update)
 <br/>
 </details>

From dc492ee3d0ce928a299c4a0cfa47a44dfa6a9ded Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:21:36 -0800
Subject: [PATCH 292/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...e-updates-baselines-microsoft-defender-antivirus.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index ced116a6ed..1a06c92c1c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -305,11 +305,11 @@ Engine: **1.1.16700.2**
      
 ### What's new
 
-* Fixed BSOD on WS2016 with Exchange
-* Support platform updates when TMP is redirected to network path
-* Platform and engine versions are added to [WDSI](https://www.microsoft.com/wdsi/defenderupdates)
-* extend Emergency signature update to [passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility)
-* Fix 4.18.1911.3 hang
+- Fixed BSOD on WS2016 with Exchange
+- Support platform updates when TMP is redirected to network path
+- Platform and engine versions are added to [WDSI](https://www.microsoft.com/wdsi/defenderupdates)
+- extend Emergency signature update to [passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility)
+- Fix 4.18.1911.3 hang
    
 ### Known Issues
 [**Fixed**] devices utilizing [modern standby mode](https://docs.microsoft.com/windows-hardware/design/device-experiences/modern-standby) may experience a hang with the Windows Defender filter driver that results in a gap of protection.  Affected machines appear to the customer as having not updated to the latest antimalware platform.  

From d96c503113c007458469f126bae0d898f3ed4b14 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:44:40 -0800
Subject: [PATCH 293/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...pdates-baselines-microsoft-defender-antivirus.md | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 1a06c92c1c..5ad59164fb 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -47,7 +47,7 @@ Microsoft Defender Antivirus uses [cloud-delivered protection](utilize-microsoft
 
 Cloud-delivered protection is always on and requires an active connection to the Internet to function. Security intelligence updates occur on a scheduled cadence (configurable via policy). For more information, see [Use Microsoft cloud-provided protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). 
 
-For a list of recent security intelligence updates, please visit: [Antimalware updates change log - Microsoft Security Intelligence](https://www.microsoft.com/en-us/wdsi/definitions/antimalware-definition-release-notes).
+For a list of recent security intelligence updates, see [Antimalware updates change log - Microsoft Security Intelligence](https://www.microsoft.com/en-us/wdsi/definitions/antimalware-definition-release-notes).
 
 Engine updates are included with security intelligence updates and are released on a monthly cadence.
 
@@ -315,9 +315,12 @@ Engine: **1.1.16700.2**
 [**Fixed**] devices utilizing [modern standby mode](https://docs.microsoft.com/windows-hardware/design/device-experiences/modern-standby) may experience a hang with the Windows Defender filter driver that results in a gap of protection.  Affected machines appear to the customer as having not updated to the latest antimalware platform.  
 <br/>
 > [!IMPORTANT]
-> This updates is needed by RS1 devices running lower version of the platform to support SHA2. <br/>This update has reboot flag for systems that are experiencing the hang issue.<br/> the This update is re-released in April 2020 and will not be superseded by newer updates to keep future availability.
-> 
-> This update is categorized as an "update" due to its reboot requirement and will only be offered with a [Windows Update](https://support.microsoft.com/help/4027667/windows-10-update)
+> This update is:
+> - needed by RS1 devices running lower version of the platform to support SHA2;
+> - has a reboot flag for systems that have hanging issues;
+> - is re-released in April 2020 and will not be superseded by newer updates to keep future availability;  
+> - is categorized as an update due to the reboot requirement; and
+> - is only be offered with [Windows Update](https://support.microsoft.com/help/4027667/windows-10-update).
 <br/>
 </details>
 
@@ -439,7 +442,7 @@ We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Wind
 | Article | Description  |
 |:---|:---|
 |[Microsoft Defender update for Windows operating system installation images](https://support.microsoft.com/help/4568292/defender-update-for-windows-operating-system-installation-images)  | Review antimalware update packages for your OS installation images (WIM and VHD files). Get Microsoft Defender Antivirus updates for Windows 10 (Enterprise, Pro, and Home editions), Windows Server 2019, and Windows Server 2016 installation images.  |
-|[Manage how protection updates are downloaded and applied](manage-protection-updates-microsoft-defender-antivirus.md) | Protection updates can be delivered through a number of sources. |
+|[Manage how protection updates are downloaded and applied](manage-protection-updates-microsoft-defender-antivirus.md) | Protection updates can be delivered through many sources. |
 |[Manage when protection updates should be downloaded and applied](manage-protection-update-schedule-microsoft-defender-antivirus.md) | You can schedule when protection updates should be downloaded. |
 |[Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md) | If an endpoint misses an update or scheduled scan, you can force an update or scan the next time a user signs in. |
 |[Manage event-based forced updates](manage-event-based-updates-microsoft-defender-antivirus.md) | You can set protection updates to be downloaded at startup or after certain cloud-delivered protection events. |

From 8dcc321629d71e40ba144d416f16a58282dd616d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 10:53:25 -0800
Subject: [PATCH 294/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 5ad59164fb..5f8677d0a2 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -74,7 +74,7 @@ All our updates contain
 - performance improvements;
 - serviceability improvements; and 
 - integration improvements (Cloud, Microsoft 365 Defender).
-<br/>
+<br/><br/>
 
 
 <details>

From a7c9d594764abfdcf662c3209e6f38b5de726d38 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:47:02 -0800
Subject: [PATCH 295/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 5f8677d0a2..0eca49c841 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -139,7 +139,7 @@ No known issues
 ### Previous version updates: Technical upgrade support only
 
 Previous version updates are listed below, and are provided for technical upgrade support only. 
-<br/>
+<br/><br/>
 
 <details>
 <summary> August-2020 (Platform: 4.18.2008.9 | Engine: 1.1.17400.5)</summary>

From e09403ba403f4b2eef8e5ffc73e38487695d0fdd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:49:31 -0800
Subject: [PATCH 296/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...-baselines-microsoft-defender-antivirus.md | 52 +++++++++----------
 1 file changed, 26 insertions(+), 26 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 0eca49c841..8c2cf4a503 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -216,12 +216,13 @@ No known issues
 &ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
-* Improved logging for scan events
-* Improved user mode crash handling.
-* Added event tracing for Tamper protection
-* Fixed AMSI Sample submission
-* Fixed AMSI Cloud blocking
-* Fixed Security update install log
+
+- Improved logging for scan events
+- Improved user mode crash handling.
+- Added event tracing for Tamper protection
+- Fixed AMSI Sample submission
+- Fixed AMSI Cloud blocking
+- Fixed Security update install log
 
 ### Known Issues
 No known issues  
@@ -238,13 +239,13 @@ No known issues
 &ensp;Support phase: **Technical upgrade support (only)**
     
 ### What's new
-* WDfilter improvements
-* Add more actionable event data to attack surface reduction detection events
-* Fixed version information in diagnostic data and WMI
-* Fixed incorrect platform version in UI after platform update
-* Dynamic URL intel for Fileless threat protection
-* UEFI scan capability
-* Extend logging for updates
+- WDfilter improvements
+- Add more actionable event data to attack surface reduction detection events
+- Fixed version information in diagnostic data and WMI
+- Fixed incorrect platform version in UI after platform update
+- Dynamic URL intel for Fileless threat protection
+- UEFI scan capability
+- Extend logging for updates
 
 ### Known Issues
 No known issues  
@@ -262,11 +263,11 @@ No known issues
     
 ### What's new
 
-* CPU Throttling option added to [MpCmdRun](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus)
-* Improve diagnostic capability
-* reduce Security intelligence timeout (5 min)
-* Extend AMSI engine internal log capability
-* Improve notification for process blocking
+- CPU Throttling option added to [MpCmdRun](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus)
+- Improve diagnostic capability
+- reduce Security intelligence timeout (5 min)
+- Extend AMSI engine internal log capability
+- Improve notification for process blocking
    
 ### Known Issues
 [**Fixed**] Microsoft Defender Antivirus is skipping files when running a scan.
@@ -335,10 +336,10 @@ Support phase: **No support**
      
 ### What's new
 
-* Fixed MpCmdRun tracing level
-* Fixed WDFilter version info
-* Improve notifications (PUA)
-* add MRT logs to support files
+- Fixed MpCmdRun tracing level
+- Fixed WDFilter version info
+- Improve notifications (PUA)
+- add MRT logs to support files
    
 ### Known Issues
 When this update is installed, the device needs the jump package 4.10.2001.10 to be able to update to the latest platform version.
@@ -350,10 +351,9 @@ When this update is installed, the device needs the jump package 4.10.2001.10 to
 Platform and engine updates are provided on a monthly cadence. To be fully supported, keep current with the latest platform updates. Our support structure is dynamic, evolving into two phases depending on the availability of the latest platform version:
 
 
-* **Security and Critical Updates servicing phase** - When running the latest platform version, you will be eligible to receive both Security and Critical updates to the anti-malware platform.
+- **Security and Critical Updates servicing phase** - When running the latest platform version, you will be eligible to receive both Security and Critical updates to the anti-malware platform.
  
-
-* **Technical Support (Only) phase** - After a new platform version is released, support for older versions (N-2) will reduce to technical support only. Platform versions older than N-2 will no longer be supported.*
+- **Technical Support (Only) phase** - After a new platform version is released, support for older versions (N-2) will reduce to technical support only. Platform versions older than N-2 will no longer be supported.*
 
 \* Technical support will continue to be provided for upgrades from the Windows 10 release version (see [Platform version included with Windows 10 releases](#platform-version-included-with-windows-10-releases)) to the latest platform version.
 
@@ -437,7 +437,7 @@ We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Wind
 <br/>
 </details>
 
-## See also
+## Additional resources
 
 | Article | Description  |
 |:---|:---|

From e70b00fdb317a77d4af5e179e4a46a255763c772 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:51:23 -0800
Subject: [PATCH 297/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 8c2cf4a503..ab98ec1db1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-ms.date: 12/05/2020
+ms.date: 01/06/2021
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines

From 3d534fd878ebe46062e47359c39ad3adc08c1334 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:52:38 -0800
Subject: [PATCH 298/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md  | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index ab98ec1db1..05f8205f31 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -377,7 +377,9 @@ Windows 10 release info: [Windows lifecycle fact sheet](https://support.microsof
 
 ## Updates for Deployment Image Servicing and Management (DISM)
 
-We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Windows Server 2019, and Windows Server 2016 OS installation images with the latest antivirus and antimalware updates. Keeping your OS installation images up to date helps avoid a gap in protection. For more information, see [Microsoft Defender update for Windows operating system installation images](https://support.microsoft.com/help/4568292/defender-update-for-windows-operating-system-installation-images).
+We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Windows Server 2019, and Windows Server 2016 OS installation images with the latest antivirus and antimalware updates. Keeping your OS installation images up to date helps avoid a gap in protection. 
+
+For more information, see [Microsoft Defender update for Windows operating system installation images](https://support.microsoft.com/help/4568292/defender-update-for-windows-operating-system-installation-images).
 
 <details>
 <summary>1.1.2012.01</summary>

From 626b657efce0437d1b286550b1a9d53c40f6f678 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:56:43 -0800
Subject: [PATCH 299/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...updates-mobile-devices-vms-microsoft-defender-antivirus.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index fbbf677933..dd49d3b0d9 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -1,6 +1,6 @@
 ---
-title: Define how mobile devices are updated by Microsoft Defender AV
-description: Manage how mobile devices, such as laptops, should be updated with Microsoft Defender AV protection updates.
+title: Define how mobile devices are updated by Microsoft Defender Antivirus
+description: Manage how mobile devices, such as laptops, should be updated with Microsoft Defender Antivirus protection updates.
 keywords: updates, protection, schedule updates, battery, mobile device, laptop, notebook, opt-in, microsoft update, wsus, override
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10

From f0bac1eec4ef42ca874ba877510e85e8ef7f63b9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 12:56:56 -0800
Subject: [PATCH 300/825] added ms.reviewer

---
 ...e-protection-update-schedule-microsoft-defender-antivirus.md | 2 +-
 .../manage-protection-updates-microsoft-defender-antivirus.md   | 2 +-
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
index add2af0433..acbc359a64 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
@@ -12,7 +12,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.reviewer: 
+ms.reviewer: pahuijbr
 manager: dansimp
 ---
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index 7dcee83d5a..9cfcd64a5d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -10,7 +10,7 @@ ms.pagetype: security
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.reviewer: 
+ms.reviewer: pahuijbr
 manager: dansimp
 ms.custom: nextgen
 ---
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 05f8205f31..943036f62c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.reviewer: 
+ms.reviewer: pahuijbr
 manager: dansimp
 ms.date: 01/06/2021
 ---

From f11d7c5bb46be69cdab41a8e9041a45dcd272e46 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:04:22 -0800
Subject: [PATCH 301/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...es-mobile-devices-vms-microsoft-defender-antivirus.md | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index dd49d3b0d9..788464ca9c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -11,7 +11,6 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
 ---
@@ -25,14 +24,14 @@ manager: dansimp
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Mobile devices and VMs may require additional configuration to ensure performance is not impacted by updates.
+Mobile devices and VMs may require more configuration to ensure performance is not impacted by updates.
 
-There are two settings that are particularly useful for these devices:
+There are two settings that are useful for these devices:
 
-- Opt-in to Microsoft Update on mobile computers without a WSUS connection
+- Opt in to Microsoft Update on mobile computers without a WSUS connection
 - Prevent Security intelligence updates when running on battery power
 
-The following topics may also be useful in these situations:
+The following articles may also be useful in these situations:
 - [Configuring scheduled and catch-up scans](scheduled-catch-up-scans-microsoft-defender-antivirus.md)
 - [Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md)
 - [Deployment guide for Microsoft Defender Antivirus in a virtual desktop infrastructure (VDI) environment](deployment-vdi-microsoft-defender-antivirus.md)

From c3db2e4504e7aef50e2875f930c91906f16fbd3c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:05:03 -0800
Subject: [PATCH 302/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...-mobile-devices-vms-microsoft-defender-antivirus.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index 788464ca9c..d4f2648721 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -36,21 +36,21 @@ The following articles may also be useful in these situations:
 - [Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md)
 - [Deployment guide for Microsoft Defender Antivirus in a virtual desktop infrastructure (VDI) environment](deployment-vdi-microsoft-defender-antivirus.md)
 
-## Opt-in to Microsoft Update on mobile computers without a WSUS connection
+## Opt in to Microsoft Update on mobile computers without a WSUS connection
 
 You can use Microsoft Update to keep Security intelligence on mobile devices running Microsoft Defender Antivirus up to date when they are not connected to the corporate network or don't otherwise have a WSUS connection. 
 
 This means that protection updates can be delivered to devices (via Microsoft Update) even if you have set WSUS to override Microsoft Update.
 
-You can opt-in to Microsoft Update on the mobile device in one of the following ways:
+You can opt in to Microsoft Update on the mobile device in one of the following ways:
 
 1. Change the setting with Group Policy
 2. Use a VBScript to create a script, then run it on each computer in your network.
-3. Manually opt-in every computer on your network through the **Settings** menu.
+3. Manually opt in every computer on your network through the **Settings** menu.
 
-### Use Group Policy to opt-in to Microsoft Update
+### Use Group Policy to opt in to Microsoft Update
 
-1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
+1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
 
 3.  In the **Group Policy Management Editor** go to **Computer configuration**.
 

From fc6aa4c6fbc44a975595272f6b3b6f2d8a54b7a8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:06:10 -0800
Subject: [PATCH 303/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...e-devices-vms-microsoft-defender-antivirus.md | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index d4f2648721..0aebecaa24 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -44,21 +44,21 @@ This means that protection updates can be delivered to devices (via Microsoft Up
 
 You can opt in to Microsoft Update on the mobile device in one of the following ways:
 
-1. Change the setting with Group Policy
-2. Use a VBScript to create a script, then run it on each computer in your network.
-3. Manually opt in every computer on your network through the **Settings** menu.
+- Change the setting with Group Policy.
+- Use a VBScript to create a script, then run it on each computer in your network.
+- Manually opt in every computer on your network through the **Settings** menu.
 
 ### Use Group Policy to opt in to Microsoft Update
 
-1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
+1. On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
 
-3.  In the **Group Policy Management Editor** go to **Computer configuration**.
+2. In the **Group Policy Management Editor** go to **Computer configuration**.
 
-4.  Click **Policies** then **Administrative templates**.
+3. Click **Policies** then **Administrative templates**.
 
-5.  Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Signature Updates**.
+4. Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Signature Updates**.
 
-6.  Double-click the **Allow security intelligence updates from Microsoft Update** setting and set the option to **Enabled**. Click **OK**.
+5. Double-click the **Allow security intelligence updates from Microsoft Update** setting and set the option to **Enabled**. Click **OK**.
 
 
 ### Use a VBScript to opt-in to Microsoft Update

From 46347c664d31c280299be5b2b46bcb6fe27722b8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:07:11 -0800
Subject: [PATCH 304/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...evices-vms-microsoft-defender-antivirus.md | 24 ++++++++++---------
 1 file changed, 13 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index 0aebecaa24..e9c2d12071 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -63,14 +63,17 @@ You can opt in to Microsoft Update on the mobile device in one of the following
 
 ### Use a VBScript to opt-in to Microsoft Update
 
-1.  Use the instructions in the MSDN article [Opt-In to Microsoft Update](https://msdn.microsoft.com/library/windows/desktop/aa826676.aspx) to create the VBScript.
-2.  Run the VBScript you created on each computer in your network.
+1. Use the instructions in the MSDN article [Opt-In to Microsoft Update](https://msdn.microsoft.com/library/windows/desktop/aa826676.aspx) to create the VBScript.
+
+2. Run the VBScript you created on each computer in your network.
 
 ### Manually opt-in to Microsoft Update
 
-1.  Open **Windows Update** in **Update & security** settings on the computer you want to opt-in.
-2.  Click **Advanced** options.
-3.  Select the checkbox for **Give me updates for other Microsoft products when I update Windows**.
+1. Open **Windows Update** in **Update & security** settings on the computer you want to opt-in.
+
+2. Click **Advanced** options.
+
+3. Select the checkbox for **Give me updates for other Microsoft products when I update Windows**.
 
 ## Prevent Security intelligence updates when running on battery power
 
@@ -80,15 +83,14 @@ You can configure Microsoft Defender Antivirus to only download protection updat
 
 1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
 
-3.  In the **Group Policy Management Editor** go to **Computer configuration**.
+2.  In the **Group Policy Management Editor** go to **Computer configuration**.
 
-4.  Click **Policies** then **Administrative templates**.
+3.  Click **Policies** then **Administrative templates**.
 
-5.  Expand the tree to **Windows components > Microsoft Defender Antivirus > Signature Updates** and configure the following setting:
-
-    1. Double-click the **Allow security intelligence updates when running on battery power** setting and set the option to **Disabled**. 
-    2. Click **OK**. This will prevent protection updates from downloading when the PC is on battery power.
+4.  Expand the tree to **Windows components > Microsoft Defender Antivirus > Signature Updates** and configure the following setting:
 
+   - Double-click the **Allow security intelligence updates when running on battery power** setting and set the option to **Disabled**. 
+   - Click **OK**. This will prevent protection updates from downloading when the PC is on battery power.
 
 ## Related articles
 

From ba0e74fc8109ec3be756de9b64ce3e118ee8f255 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:09:57 -0800
Subject: [PATCH 305/825] Update
 manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md

---
 ...-devices-vms-microsoft-defender-antivirus.md | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index e9c2d12071..816025ec14 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -54,24 +54,24 @@ You can opt in to Microsoft Update on the mobile device in one of the following
 
 2. In the **Group Policy Management Editor** go to **Computer configuration**.
 
-3. Click **Policies** then **Administrative templates**.
+3. Select **Policies** then **Administrative templates**.
 
 4. Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Signature Updates**.
 
-5. Double-click the **Allow security intelligence updates from Microsoft Update** setting and set the option to **Enabled**. Click **OK**.
+5. Set **Allow security intelligence updates from Microsoft Update** to **Enabled**, and then select  **OK**.
 
 
-### Use a VBScript to opt-in to Microsoft Update
+### Use a VBScript to opt in to Microsoft Update
 
 1. Use the instructions in the MSDN article [Opt-In to Microsoft Update](https://msdn.microsoft.com/library/windows/desktop/aa826676.aspx) to create the VBScript.
 
 2. Run the VBScript you created on each computer in your network.
 
-### Manually opt-in to Microsoft Update
+### Manually opt in to Microsoft Update
 
-1. Open **Windows Update** in **Update & security** settings on the computer you want to opt-in.
+1. Open **Windows Update** in **Update & security** settings on the computer you want to opt in.
 
-2. Click **Advanced** options.
+2. Select **Advanced** options.
 
 3. Select the checkbox for **Give me updates for other Microsoft products when I update Windows**.
 
@@ -87,10 +87,9 @@ You can configure Microsoft Defender Antivirus to only download protection updat
 
 3.  Click **Policies** then **Administrative templates**.
 
-4.  Expand the tree to **Windows components > Microsoft Defender Antivirus > Signature Updates** and configure the following setting:
+4.  Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Signature Updates**, and then set **Allow security intelligence updates when running on battery power** to **Disabled**. Then select **OK**. 
 
-   - Double-click the **Allow security intelligence updates when running on battery power** setting and set the option to **Disabled**. 
-   - Click **OK**. This will prevent protection updates from downloading when the PC is on battery power.
+This action prevents protection updates from downloading when the PC is on battery power.
 
 ## Related articles
 

From 8780dfa7a688808075a706f2327abc00fb41acdd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 13:11:02 -0800
Subject: [PATCH 306/825] acrolinx fixes

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md | 5 +++++
 ...pdates-mobile-devices-vms-microsoft-defender-antivirus.md | 4 ++--
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 943036f62c..4f60e5d308 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -87,6 +87,7 @@ All our updates contain
 &ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
+
 - Improved SmartScreen status support logging
 - Apply CPU throttling policy to manually initiated scans
 
@@ -103,12 +104,14 @@ No known issues
 &ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
+
 - New descriptions for special threat categories
 - Improved emulation capabilities
 - Improved host address allow/block capabilities
 - New option in Defender CSP to Ignore merging of local user exclusions
 
 ### Known Issues
+
 No known issues  
 <br/>
 </details><details>
@@ -121,6 +124,7 @@ No known issues
 &ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
+
 - Admin permissions are required to restore files in quarantine
 - XML formatted events are now supported
 - CSP support for ignoring exclusion merges
@@ -132,6 +136,7 @@ No known issues
 - Improved Office VBA module scanning
 
 ### Known Issues
+
 No known issues  
 <br/>
 </details>
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index 816025ec14..e2fb5173d8 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -81,11 +81,11 @@ You can configure Microsoft Defender Antivirus to only download protection updat
 
 ### Use Group Policy to prevent security intelligence updates on battery power
 
-1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
+1.  On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), choose the Group Policy Object you want to configure, and open it for editing.
 
 2.  In the **Group Policy Management Editor** go to **Computer configuration**.
 
-3.  Click **Policies** then **Administrative templates**.
+3.  Select **Policies** then **Administrative templates**.
 
 4.  Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Signature Updates**, and then set **Allow security intelligence updates when running on battery power** to **Disabled**. Then select **OK**. 
 

From fe649b4c7c31cb96b839b1239afa9629c24a3c37 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 6 Jan 2021 13:48:15 -0800
Subject: [PATCH 307/825] Removed "en-us" from a Microsoft URL (and verified
 that it works)

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 4f60e5d308..7835dd3bfa 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -47,7 +47,7 @@ Microsoft Defender Antivirus uses [cloud-delivered protection](utilize-microsoft
 
 Cloud-delivered protection is always on and requires an active connection to the Internet to function. Security intelligence updates occur on a scheduled cadence (configurable via policy). For more information, see [Use Microsoft cloud-provided protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). 
 
-For a list of recent security intelligence updates, see [Antimalware updates change log - Microsoft Security Intelligence](https://www.microsoft.com/en-us/wdsi/definitions/antimalware-definition-release-notes).
+For a list of recent security intelligence updates, see [Antimalware updates change log - Microsoft Security Intelligence](https://www.microsoft.com/wdsi/definitions/antimalware-definition-release-notes).
 
 Engine updates are included with security intelligence updates and are released on a monthly cadence.
 

From 42cd42a769e77b375de26bac0b2d699e431202ea Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 6 Jan 2021 13:52:15 -0800
Subject: [PATCH 308/825] Acrolinx: "Powershell"

---
 .../manage-protection-updates-microsoft-defender-antivirus.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index 9cfcd64a5d..42af3da160 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -170,7 +170,7 @@ Set up a network file share (UNC/mapped drive) to download security intelligence
     MD C:\Temp\TempSigs\x86
     ```
 
-3. Download the Powershell script from [www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4](https://www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4).
+3. Download the PowerShell script from [www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4](https://www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4).
 
 4. Click **Manual Download**.
 

From e8871be545839500d584cf5fee416289e1db85ae Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 00:53:32 +0200
Subject: [PATCH 309/825] Update gov.md

Updating GCC-H items.
---
 .../microsoft-defender-atp/gov.md             | 40 +++++++++----------
 1 file changed, 20 insertions(+), 20 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 71d6de5b4d..115eb14cc6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -49,13 +49,13 @@ Windows 10, version 1803 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes
 Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
 Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows 8 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows 8 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Mac OS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Linux | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
@@ -106,24 +106,24 @@ These are the known gaps as of January 2021:
 
 Feature name | GCC | GCC High
 :---|:---|:---
-Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg)
-Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 7be16fb46bf696a82e35d4f6f6adf57f65a07190 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 00:57:28 +0200
Subject: [PATCH 310/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 115eb14cc6..84f767e39e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -123,7 +123,7 @@ Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) |
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From e45c64a19d9b466f61c5d51741343251be314cd1 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 01:09:45 +0200
Subject: [PATCH 311/825] Update gov.md

---
 .../microsoft-defender-atp/gov.md                  | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 84f767e39e..3d962dd0a1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -106,16 +106,16 @@ These are the known gaps as of January 2021:
 
 Feature name | GCC | GCC High
 :---|:---|:---
-Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 4e3f511b6407affadd31bfdf5ee41438c05f9bad Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 03:47:56 +0200
Subject: [PATCH 312/825] Update gov.md

---
 .../threat-protection/microsoft-defender-atp/gov.md         | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 3d962dd0a1..b4e6a21755 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -56,8 +56,8 @@ Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](.
 Windows 8 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Mac OS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Linux | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
+Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 
@@ -116,7 +116,7 @@ Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming so
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Web content filtering | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Web content filtering | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 57756ccc29977a9c507ee80efac23862981764a6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 17:56:22 -0800
Subject: [PATCH 313/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...-baselines-microsoft-defender-antivirus.md | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 7835dd3bfa..1b9cc2aad0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -64,7 +64,7 @@ You can manage the distribution of updates through one of the following methods:
 For more information, see [Manage the sources for Microsoft Defender Antivirus protection updates](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-definitions-wsus#to-synchronize-endpoint-protection-definition-updates-in-standalone-wsus).
 
 > [!NOTE]
-> We release these monthly updates in phases. This results in multiple packages visible in your WSUS server.
+> Monthly updates are released in phases, resulting in multiple packages visible in your [Window Server Update Services](https://docs.microsoft.com/windows-server/administration/windows-server-update-services/get-started/windows-server-update-services-wsus).
 
 ## Monthly platform and engine versions
 
@@ -143,7 +143,7 @@ No known issues
 
 ### Previous version updates: Technical upgrade support only
 
-Previous version updates are listed below, and are provided for technical upgrade support only. 
+After a new package version is released, support for the previous two versions is reduced to technical support only. Versions older than that are listed in this section, and are provided for technical upgrade support only. 
 <br/><br/>
 
 <details>
@@ -369,16 +369,16 @@ The below table provides the Microsoft Defender Antivirus platform and engine ve
 
 |Windows 10 release  |Platform version  |Engine version |Support phase |
 |:---|:---|:---|:---|
-|2004  (20H1) |4.18.2004.6 |1.1.17000.2 | Technical upgrade Support (Only) |
-|1909  (19H2) |4.18.1902.5 |1.1.16700.3 | Technical upgrade Support (Only) |
-|1903  (19H1) |4.18.1902.5 |1.1.15600.4 | Technical upgrade Support (Only) |
-|1809  (RS5) |4.18.1807.18075 |1.1.15000.2 | Technical upgrade Support (Only) |
-|1803  (RS4) |4.13.17134.1 |1.1.14600.4 | Technical upgrade Support (Only) |
-|1709  (RS3) |4.12.16299.15 |1.1.14104.0 | Technical upgrade Support (Only) |
-|1703  (RS2) |4.11.15603.2 |1.1.13504.0 | Technical upgrade Support (Only) |
-|1607 (RS1) |4.10.14393.3683 |1.1.12805.0 | Technical upgrade Support (Only) |  
+|2004  (20H1) |4.18.2004.6 |1.1.17000.2 | Technical upgrade support (only) |
+|1909  (19H2) |4.18.1902.5 |1.1.16700.3 | Technical upgrade support (only) |
+|1903  (19H1) |4.18.1902.5 |1.1.15600.4 | Technical upgrade support (only) |
+|1809  (RS5) |4.18.1807.18075 |1.1.15000.2 | Technical upgrade support (only) |
+|1803  (RS4) |4.13.17134.1 |1.1.14600.4 | Technical upgrade support (only) |
+|1709  (RS3) |4.12.16299.15 |1.1.14104.0 | Technical upgrade support (only) |
+|1703  (RS2) |4.11.15603.2 |1.1.13504.0 | Technical upgrade support (only) |
+|1607 (RS1) |4.10.14393.3683 |1.1.12805.0 | Technical upgrade support (only) |  
 
-Windows 10 release info: [Windows lifecycle fact sheet](https://support.microsoft.com/help/13853/windows-lifecycle-fact-sheet).
+For Windows 10 release information, see the [Windows lifecycle fact sheet](https://support.microsoft.com/help/13853/windows-lifecycle-fact-sheet).
 
 ## Updates for Deployment Image Servicing and Management (DISM)
 

From 0644be036d2aa5048fa318d3975c1c15da9d0a5a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:04:16 -0800
Subject: [PATCH 314/825] Update
 introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md

---
 ...-and-windows-defender-application-control.md | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md b/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
index f60748b37b..9483ca4022 100644
--- a/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
+++ b/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
@@ -1,13 +1,12 @@
 ---
-title: WDAC and virtualization-based code integrity (Windows 10)
-description: Hardware and software system integrity-hardening capabilites that can be deployed separately or in combination with Windows Defender Application Control (WDAC).
+title: Windows Defender Application Control and virtualization-based code integrity (Windows 10)
+description: Hardware and software system integrity-hardening capabilities that can be deployed separately or in combination with Windows Defender Application Control (WDAC).
 keywords: virtualization, security, malware, device guard
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 07/01/2019
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
@@ -19,24 +18,24 @@ ms.custom: asr
 -   Windows 10
 -   Windows Server 2016
 
-Windows 10 includes a set of hardware and OS technologies that, when configured together, allow enterprises to "lock down" Windows 10 systems so they operate with many of the properties of mobile devices. In this configuration, specific technologies work together to restrict devices to only run authorized apps by using a feature called configurable code integrity, while simultaneously hardening the OS against kernel memory attacks through the use of virtualization-based protection of code integrity (more specifically, HVCI). 
+Windows 10 includes a set of hardware and OS technologies that, when configured together, allow enterprises to "lock down" Windows 10 systems so they operate with many of the properties of mobile devices. In this configuration, specific technologies work together to restrict devices to only run authorized apps by using a feature called configurable code integrity, while simultaneously hardening the OS against kernel memory attacks by using virtualization-based protection of code integrity (more specifically, HVCI). 
 
-Configurable code integrity policies and HVCI are very powerful protections that can be used separately. However, when these two technologies are configured to work together, they present a very strong protection capability for Windows 10 devices.  
+Configurable code integrity policies and HVCI are powerful protections that can be used separately. However, when these two technologies are configured to work together, they present a strong protection capability for Windows 10 devices.  
 
 Using configurable code integrity to restrict devices to only authorized apps has these advantages over other solutions:
 
 1. Configurable code integrity policy is enforced by the Windows kernel itself. As such, the policy takes effect early in the boot sequence before nearly all other OS code and before traditional antivirus solutions run. 
 2. Configurable code integrity allows customers to set application control policy not only over code running in user mode, but also kernel mode hardware and software drivers and even code that runs as part of Windows. 
-3. Customers can protect the configurable code integrity policy even from local administrator tampering by digitally signing the policy. This would mean that changing the policy would require both administrative privilege and access to the organization’s digital signing process, making it extremely difficult for an attacker with administrative privilege, or malicious software that managed to gain administrative privilege, to alter the application control policy. 
-4. The entire configurable code integrity enforcement mechanism can be protected by HVCI, where even if a vulnerability exists in kernel mode code, the likelihood that an attacker could successfully exploit it is significantly diminished. Why is this relevant? That’s because an attacker that compromises the kernel would otherwise have enough privilege to disable most system defenses and override the application control policies enforced by configurable code integrity or any other application control solution.
+3. Customers can protect the configurable code integrity policy even from local administrator tampering by digitally signing the policy. This would mean that changing the policy would require both administrative privilege and access to the organization’s digital signing process, making it difficult for an attacker with administrative privilege, or malicious software that managed to gain administrative privilege, to alter the application control policy. 
+4. The entire configurable code integrity enforcement mechanism can be protected by HVCI, where even if a vulnerability exists in kernel mode code, the likelihood that an attacker could successfully exploit it is diminished. Why is this relevant? That’s because an attacker that compromises the kernel would otherwise have enough privilege to disable most system defenses and override the application control policies enforced by configurable code integrity or any other application control solution.
 
 ## Windows Defender Application Control
 
-When we originally designed this configuration state, we did so with a specific security promise in mind. Although there were no direct dependencies between configurable code integrity and HVCI, we intentionally focused our discussion around the lockdown state you achieve when deploying them together. However, given that HVCI relies on Windows virtualization-based security, it comes with additional hardware, firmware, and kernel driver compatibility requirements that some older systems can’t meet. As a result, many IT Professionals assumed that because some systems couldn't use HVCI, they couldn’t use configurable code integrity either. 
+When we originally designed this configuration state, we did so with a specific security promise in mind. Although there were no direct dependencies between configurable code integrity and HVCI, we intentionally focused our discussion around the lockdown state you achieve when deploying them together. However, given that HVCI relies on Windows virtualization-based security, it comes with more hardware, firmware, and kernel driver compatibility requirements that some older systems can’t meet. As a result, many IT Professionals assumed that because some systems couldn't use HVCI, they couldn’t use configurable code integrity either. 
 
 Configurable code integrity carries no specific hardware or software requirements other than running Windows 10, which means many IT professionals were wrongly denied the benefits of this powerful application control capability.
 
-Since the initial release of Windows 10, the world has witnessed numerous hacking and malware attacks where application control alone could have prevented the attack altogether. With this in mind, we are discussing and documenting configurable code integrity as a independent technology within our security stack and giving it a name of its own: [Windows Defender Application Control](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-application-control). 
+Since the initial release of Windows 10, the world has witnessed numerous hacking and malware attacks where application control alone could have prevented the attack altogether. With this in mind, we are discussing and documenting configurable code integrity as an independent technology within our security stack and giving it a name of its own: [Windows Defender Application Control](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-application-control). 
 We hope this change will help us better communicate options for adopting application control within an organization.
 
 ## Related articles

From 0033e3f269e1d40daebd3fc293dd1a039f3c4462 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:07:50 -0800
Subject: [PATCH 315/825] Update network-protection.md

---
 .../microsoft-defender-atp/network-protection.md         | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index 0b6737027d..ce1b2006f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -11,7 +11,6 @@ ms.localizationpriority: medium
 audience: ITPro
 author: denisebmsft
 ms.author: deniseb
-ms.date: 04/30/2019
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
@@ -33,7 +32,7 @@ Network protection expands the scope of [Microsoft Defender SmartScreen](../micr
 
 Network protection is supported beginning with Windows 10, version 1709. 
 
-For more details about how to enable network protection, see [Enable network protection](enable-network-protection.md). Use Group Policy, PowerShell, or MDM CSPs to enable and manage network protection in your network.
+For more information about how to enable network protection, see [Enable network protection](enable-network-protection.md). Use Group Policy, PowerShell, or MDM CSPs to enable and manage network protection in your network.
 
 > [!TIP]
 > You can visit the Windows Defender Testground website at [demo.wd.microsoft.com](https://demo.wd.microsoft.com?ocid=cx-wddocs-testground) to confirm the feature is working and see how it works.
@@ -46,7 +45,7 @@ You can also use [audit mode](audit-windows-defender.md) to evaluate how Network
 
 ## Requirements
 
-Network protection requires Windows 10 Pro, Enterprise E3, E5 and Microsoft Defender AV real-time protection.
+Network protection requires Windows 10 Pro, Enterprise E3, E5, and Microsoft Defender AV real-time protection.
 
 Windows 10 version | Microsoft Defender Antivirus
 -|-
@@ -76,7 +75,7 @@ You can review the Windows event log to see events that are created when network
 
 1. [Copy the XML directly](event-views.md).
 
-2. Click **OK**.
+2. Select **OK**.
 
 3. This will create a custom view that filters to only show the following events related to network protection:
 
@@ -88,6 +87,6 @@ You can review the Windows event log to see events that are created when network
 
 ## Related articles
 
-- [Evaluate network protection](evaluate-network-protection.md) | Undertake a quick scenario that demonstrate how the feature works, and what events would typically be created.
+- [Evaluate network protection](evaluate-network-protection.md) | Undertake a quick scenario that demonstrates how the feature works, and what events would typically be created.
 
 - [Enable network protection](enable-network-protection.md) | Use Group Policy, PowerShell, or MDM CSPs to enable and manage network protection in your network.

From 91c990c82656292d74841b1619ea33d2a8739057 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:10:38 -0800
Subject: [PATCH 316/825] Update customize-controlled-folders.md

---
 .../customize-controlled-folders.md                    | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
index 629775a962..8c2ab186eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
@@ -1,6 +1,6 @@
 ---
 title: Customize controlled folder access
-description: Add additional folders that should be protected by controlled folder access, or allow apps that are incorrectly blocking changes to important files.
+description: Add other folders that should be protected by controlled folder access, or allow apps that are incorrectly blocking changes to important files.
 keywords: Controlled folder access, windows 10, windows defender, ransomware, protect, files, folders, customize, add folder, add app, allow, add executable
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -12,7 +12,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.reviewer: jcedola, dbodorin, vladiso, nixanm, anvascon
 manager: dansimp
-ms.date: 12/16/2020
+ms.date: 01/06/2021
 ---
 
 # Customize controlled folder access
@@ -38,7 +38,7 @@ This article describes how to customize controlled folder access capabilities, a
 
 ## Protect additional folders
 
-Controlled folder access applies to a number of system folders and default locations, including folders such as **Documents**, **Pictures**, and **Movies**. You can add additional folders to be protected, but you cannot remove the default folders in the default list.
+Controlled folder access applies to many system folders and default locations, including folders such as **Documents**, **Pictures**, and **Movies**. You can add additional folders to be protected, but you cannot remove the default folders in the default list.
 
 Adding other folders to controlled folder access can be helpful for cases when you don't store files in the default Windows libraries, or you've changed the default location of your libraries.
 
@@ -72,7 +72,7 @@ You can use the Windows Security app, Group Policy, PowerShell cmdlets, or mobil
 
 ### Use PowerShell to protect additional folders
 
-1. Type **powershell** in the Start menu, right-click **Windows PowerShell** and select **Run as administrator**
+1. Type **PowerShell** in the Start menu, right-click **Windows PowerShell** and select **Run as administrator**
 
 2. Enter the following cmdlet:
 
@@ -125,7 +125,7 @@ An allowed application or service only has write access to a controlled folder a
 
 ### Use PowerShell to allow specific apps
 
-1. Type **powershell** in the Start menu, right-click **Windows PowerShell** and select **Run as administrator**
+1. Type **PowerShell** in the Start menu, right-click **Windows PowerShell** and select **Run as administrator**
 2. Enter the following cmdlet:
 
     ```PowerShell

From bca7802e363b4a98f84ff922bf4250e6e444a1a1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:13:59 -0800
Subject: [PATCH 317/825] Update
 configure-remediation-microsoft-defender-antivirus.md

---
 ...emediation-microsoft-defender-antivirus.md | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
index cc8fa8dec9..b080c70faa 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 09/03/2018
+ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
 ---
@@ -39,20 +39,20 @@ To configure these settings:
 
 1. On your Group Policy management computer, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
 
-2. In the **Group Policy Management Editor** go to **Computer configuration** and click **Administrative templates**.
+2. In the **Group Policy Management Editor** go to **Computer configuration** and select **Administrative templates**.
 
 3. Expand the tree to **Windows components > Microsoft Defender Antivirus** and then the **Location** specified in the table below.
 
-4. Double-click the policy **Setting** as specified in the table below, and set the option to your desired configuration. Click **OK**, and repeat for any other settings.
+4. Select the policy **Setting** as specified in the table below, and set the option to your desired configuration. Select **OK**, and repeat for any other settings.
 
-Location | Setting | Description | Default setting (if not configured)
----|---|---|---
-Scan | Create a system restore point | A system restore point will be created each day before cleaning or scanning is attempted | Disabled
-Scan | Turn on removal of items from scan history folder | Specify how many days items should be kept in the scan history | 30 days
-Root | Turn off routine remediation | You can specify whether Microsoft Defender Antivirus automatically remediates threats, or if it should ask the endpoint user what to do. | Disabled (threats are remediated automatically)
-Quarantine | Configure removal of items from Quarantine folder | Specify how many days items should be kept in quarantine before being removed | Never removed
-Threats | Specify threat alert levels at which default action should not be taken when detected | Every threat that is detected by Microsoft Defender Antivirus is assigned a threat level (low, medium, high, or severe). You can use this setting to define how all threats for each of the threat levels should be remediated (quarantined, removed, or ignored) | Not applicable
-Threats | Specify threats upon which default action should not be taken when detected | Specify how specific threats (using their threat ID) should be remediated. You can specify whether the specific threat should be quarantined, removed, or ignored | Not applicable
+|Location | Setting | Description | Default setting (if not configured) |
+|:---|:---|:---|:---|
+|Scan | Create a system restore point | A system restore point will be created each day before cleaning or scanning is attempted | Disabled|
+|Scan | Turn on removal of items from scan history folder | Specify how many days items should be kept in the scan history | 30 days |
+|Root | Turn off routine remediation | You can specify whether Microsoft Defender Antivirus automatically remediates threats, or if it should ask the endpoint user what to do. | Disabled (threats are remediated automatically) |
+|Quarantine | Configure removal of items from Quarantine folder | Specify how many days items should be kept in quarantine before being removed | Never removed |
+|Threats | Specify threat alert levels at which default action should not be taken when detected | Every threat that is detected by Microsoft Defender Antivirus is assigned a threat level (low, medium, high, or severe). You can use this setting to define how all threats for each of the threat levels should be remediated (quarantined, removed, or ignored) | Not applicable |
+|Threats | Specify threats upon which default action should not be taken when detected | Specify how specific threats (using their threat ID) should be remediated. You can specify whether the specific threat should be quarantined, removed, or ignored | Not applicable |
 
 > [!IMPORTANT]
 > Microsoft Defender Antivirus detects and remediates files based on many factors. Sometimes, completing a remediation requires a reboot. Even if the detection is later determined to be a false positive, the reboot must be completed to ensure all additional remediation steps have been completed.

From 94e5652bdd38b7899b06f768ef34a901700d2fdc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:16:46 -0800
Subject: [PATCH 318/825] Update
 common-exclusion-mistakes-microsoft-defender-antivirus.md

---
 ...n-mistakes-microsoft-defender-antivirus.md | 80 +++++++++----------
 1 file changed, 40 insertions(+), 40 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
index 58cd36777d..8e12b6b966 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
@@ -21,12 +21,12 @@ manager: dansimp
 
 You can define an exclusion list for items that you don't want Microsoft Defender Antivirus to scan. Such excluded items could contain threats that make your device vulnerable. 
 
-This topic describes some common mistake that you should avoid when defining exclusions. 
+This article describes some common mistake that you should avoid when defining exclusions. 
 
 Before defining your exclusion lists, see [Recommendations for defining exclusions](configure-exclusions-microsoft-defender-antivirus.md#recommendations-for-defining-exclusions).
 
 ## Excluding certain trusted items
-There are certain files, file types, folders, or processes that you should not exclude from scanning even though you trust them to be not malicious. Refer to the following section for items that you should not exclude from scanning.
+Certain files, file types, folders, or processes should not be excluded from scanning even though you trust them to be not malicious. Refer to the following section for items that you should not exclude from scanning.
 
 **Do not add exclusions for the following folder locations:**
 
@@ -61,44 +61,44 @@ There are certain files, file types, folders, or processes that you should not e
 - C:\Windows\Temp\*
 
 **Do not add exclusions for the following file extensions:**  
-- .7zip
-- .bat
-- .bin
-- .cab
-- .cmd
-- .com
-- .cpl
-- .dll
-- .exe
-- .fla
-- .gif
-- .gz
-- .hta
-- .inf
-- .java
-- .jar
-- .job
-- .jpeg
-- .jpg
-- .js
-- .ko
-- .ko.gz
-- .msi
-- .ocx
-- .png
-- .ps1
-- .py
-- .rar
-- .reg
-- .scr
-- .sys
-- .tar
-- .tmp
-- .url
-- .vbe
-- .vbs
-- .wsf
-- .zip
+- `.7zip`
+- `.bat`
+- `.bin`
+- `.cab`
+- `.cmd`
+- `.com`
+- `.cpl`
+- `.dll`
+- `.exe`
+- `.fla`
+- `.gif`
+- `.gz`
+- `.hta`
+- `.inf`
+- `.java`
+- `.jar`
+- `.job`
+- `.jpeg`
+- `.jpg`
+- `.js`
+- `.ko`
+- `.ko.gz`
+- `.msi`
+- `.ocx`
+- `.png`
+- `.ps1`
+- `.py`
+- `.rar`
+- `.reg`
+- `.scr`
+- `.sys`
+- `.tar`
+- `.tmp`
+- `.url`
+- `.vbe`
+- `.vbs`
+- `.wsf`
+- `.zip`
 
 >[!NOTE]
 > You can chose to exclude file types, such as .gif, .jpg, .jpeg, .png if your environment has a modern, up-to-date software with a strict update policy to handle any vulnerabilities.

From 95caab5d1850238686ae630d70e10d65379a7dcd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:17:50 -0800
Subject: [PATCH 319/825] Update
 common-exclusion-mistakes-microsoft-defender-antivirus.md

---
 .../common-exclusion-mistakes-microsoft-defender-antivirus.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
index 8e12b6b966..d33ce3552f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
@@ -150,7 +150,7 @@ Do not use a single exclusion list to define exclusions for multiple server work
 Microsoft Defender Antivirus Service runs in system context using the LocalSystem account, which means it gets information from the system environment variable, and not from the user environment variable. Use of environment variables as a wildcard in exclusion lists is limited to system variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account. Therefore, do not use user environment variables as wildcards when adding Microsoft Defender Antivirus folder and process exclusions. See the table under [System environment variables](configure-extension-file-exclusions-microsoft-defender-antivirus.md#system-environment-variables) for a complete list of system environment variables.
 See [Use wildcards in the file name and folder path or extension exclusion lists](configure-extension-file-exclusions-microsoft-defender-antivirus.md#use-wildcards-in-the-file-name-and-folder-path-or-extension-exclusion-lists) for information on how to use wildcards in exclusion lists.
 
-## Related topics
+## Related articles
 
 - [Configure and validate exclusions in Microsoft Defender Antivirus scans](configure-exclusions-microsoft-defender-antivirus.md)
 - [Configure and validate exclusions based on file extension and folder location](configure-extension-file-exclusions-microsoft-defender-antivirus.md)

From 77e349339171392fe1520fde896011843551c35e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:22:32 -0800
Subject: [PATCH 320/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md                | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index 99f4521685..8219039c09 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 audience: ITPro
 author: denisebmsft
 ms.author: deniseb
-ms.date: 07/20/2020
+ms.date: 01/06/2021
 ms.reviewer: cjacks
 manager: dansimp
 ms.custom: asr
@@ -223,7 +223,7 @@ Block low integrity images will prevent the application from loading files that
 
 ### Description
 
-Block remote images will prevent the application from loading files that are hosted on a remote device, such as a UNC share. This helps protect against loading binaries into memory that are on an external device controlled by the attacker.
+Blocking remote images helps to prevent the application from loading files that are hosted on a remote device, such as a UNC share. Blocking remote images helps protect against loading binaries into memory that are on an external device controlled by the attacker.
 
 This mitigation will block image loads if the image is determined to be on a remote device. It is implemented by the memory manager, which blocks the file from being mapped into memory. If an application attempts to map a remote file, it will trigger a STATUS_ACCESS_DENIED error.
 
@@ -257,7 +257,7 @@ The most common use of fonts outside of the system fonts directory is with [web
 
 ### Description
 
-Code integrity guard ensures that all binaries loaded into a process are digitally signed by Microsoft. This includes [WHQL](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature) (Windows Hardware Quality Labs) signatures, which will allow WHQL-approved drivers to run within the process.
+Code integrity guard ensures that all binaries loaded into a process are digitally signed by Microsoft. Code integrity guard includes [WHQL](https://docs.microsoft.com/windows-hardware/drivers/install/whql-release-signature) (Windows Hardware Quality Labs) signatures, which will allow WHQL-approved drivers to run within the process.
 
 This mitigation is implemented within the memory manager, which blocks the binary from being mapped into memory. If you attempt to load a binary that is not signed by Microsoft, the memory manger will return the error STATUS_INVALID_IMAGE_HASH. By blocking at the memory manager level, this prevents both binaries loaded by the process and binaries injected into the process.
 
@@ -275,9 +275,9 @@ This mitigation specifically blocks any binary that is not signed by Microsoft.
 
 ### Description
 
-Control flow guard (CFG) mitigates the risk of attackers leveraging memory corruption vulnerabilities by protecting indirect function calls. For example, an attacker may user a buffer overflow vulnerability to overwrite memory containing a function pointer, and replace that function pointer with a pointer to executable code of their choice (which may also have been injected into the program).
+Control flow guard (CFG) mitigates the risk of attackers using memory corruption vulnerabilities by protecting indirect function calls. For example, an attacker may user a buffer overflow vulnerability to overwrite memory containing a function pointer, and replace that function pointer with a pointer to executable code of their choice (which may also have been injected into the program).
 
-This mitigation is provided by injecting an additional check at compile time. Before each indirect function call, additional instructions are added which verify that the target is a valid call target before it is called. If the target is not a valid call target, then the application is terminated. As such, only applications that are compiled with CFG support can benefit from this mitigation.
+This mitigation is provided by injecting another check at compile time. Before each indirect function call, another instructions are added which verify that the target is a valid call target before it is called. If the target is not a valid call target, then the application is terminated. As such, only applications that are compiled with CFG support can benefit from this mitigation.
 
 The check for a valid target is provided by the Windows kernel. When executable files are loaded, the metadata for indirect call targets is extracted at load time and marked as valid call targets. Additionally, when memory is allocated and marked as executable (such as for generated code), these memory locations are also marked as valid call targets, to support mechanisms such as JIT compilation.
 
@@ -296,7 +296,7 @@ Since applications must be compiled to support CFG, they implicitly declare thei
 
 ### Description
 
-Data execution prevention (DEP) prevents memory that was not explicitly allocated as executable from being executed. This helps protect against an attacker injecting malicious code into the process, such as through a buffer overflow, and then executing that code.
+Data execution prevention (DEP) prevents memory that was not explicitly allocated as executable from being executed. DEP helps protect against an attacker injecting malicious code into the process, such as through a buffer overflow, and then executing that code.
 
 If you attempt to set the instruction pointer to a memory address not marked as executable, the processor will throw an exception (general-protection violation), causing the application to crash.
 
@@ -304,7 +304,7 @@ If you attempt to set the instruction pointer to a memory address not marked as
 
 All x64, ARM, and ARM-64 executables have DEP enabled by default, and it cannot be disabled. Since an application will have never been executed without DEP, compatibility is assumed.
 
-All x86 (32-bit) binaries will have DEP enabled by default, but it can be disabled per process. Some old legacy applications, typically applications developed prior to Windows XP SP2, may not be compatible with DEP. These are typically applications that dynamically generate code (for example, JIT compiling) or link to older libraries (such as older versions of ATL) which dynamically generate code.
+All x86 (32-bit) binaries have DEP enabled by default, but DEP can be disabled per process. Some old legacy applications, typically applications developed prior to Windows XP SP2, might not be compatible with DEP. Such applications typically generate code dynamically (for example, JIT compiling) or link to older libraries (such as older versions of ATL) which dynamically generate code.
 
 ### Configuration options
 

From c299ce4d7580d99d6c07722d5ea5cc85c849816a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:23:39 -0800
Subject: [PATCH 321/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md           | 26 +++++++++----------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index 8219039c09..fbbb9f9107 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -324,7 +324,7 @@ This includes:
 
 ### Compatibility considerations
 
-Most of these extension points are relatively infrequently used, so compatibility impact is typically small, particularly at an individual application level. The one consideration is if users are using third party Legacy IMEs that will not work with the protected application.
+Most of these extension points are relatively infrequently used, so compatibility impact is typically small, particularly at an individual application level. The one consideration is if users are using third-party Legacy IMEs that will not work with the protected application.
 
 ### Configuration options
 
@@ -341,7 +341,7 @@ Win32k.sys provides a broad attack surface for an attacker. As a kernel-mode com
 
 ### Compatibility considerations
 
-This mitigation is designed for processes that are dedicated non-UI processes. For example, many modern browsers will leverage process isolation and incorporate non-UI processes. Any application that displays a GUI using a single process will be impacted by this mitigation.
+This mitigation is designed for processes that are dedicated non-UI processes. For example, many modern browsers will use process isolation and incorporate non-UI processes. Any application that displays a GUI using a single process will be impacted by this mitigation.
 
 ### Configuration options
 
@@ -379,18 +379,18 @@ This mitigation is primarily an issue for applications such as debuggers, sandbo
 
 ### Configuration options
 
-**Validate access for modules that are commonly abused by exploits** - This option, also known as EAF+, adds protections for additional commonly attacked modules:
+**Validate access for modules that are commonly abused by exploits** - This option, also known as EAF+, adds protections for other commonly attacked modules:
 
-- mshtml.dll
-- flash*.ocx
-- jscript*.ocx
-- vbscript.dll
-- vgx.dll
-- mozjs.dll
-- xul.dll
-- acrord32.dll
-- acrofx32.dll
-- acroform.api
+- `mshtml.dll`
+- `flash*.ocx`
+- `jscript*.ocx`
+- `vbscript.dll`
+- `vgx.dll`
+- `mozjs.dll`
+- `xul.dll`
+- `acrord32.dll`
+- `acrofx32.dll`
+- `acroform.api`
 
 Additionally, by enabling EAF+, this mitigation adds the PAGE_GUARD protection to the page containing the "MZ" header, the first two bytes of the [DOS header in a PE file](https://docs.microsoft.com/windows/win32/debug/pe-format#ms-dos-stub-image-only), which is another aspect of known memory content which shellcode can look for to identify modules potentially of interest in memory.
 

From 15da08b047ded1955d26389dd8f62cb9d275c03c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:24:51 -0800
Subject: [PATCH 322/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md           | 50 +++++++++----------
 1 file changed, 25 insertions(+), 25 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index fbbb9f9107..68401d1360 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -427,31 +427,31 @@ The memory pages for all protected APIs will have the [PAGE_GUARD](https://docs.
 
 This mitigation protects the following Windows APIs:
 
-- GetProcAddress
-- GetProcAddressForCaller
-- LoadLibraryA
-- LoadLibraryExA
-- LoadLibraryW
-- LoadLibraryExW
-- LdrGetProcedureAddress
-- LdrGetProcedureAddressEx
-- LdrGetProcedureAddressForCaller
-- LdrLoadDll
-- VirtualProtect
-- VirtualProtectEx
-- VirtualAlloc
-- VirtualAllocEx
-- NtAllocateVirtualMemory
-- NtProtectVirtualMemory
-- CreateProcessA
-- CreateProcessW
-- WinExec
-- CreateProcessAsUserA
-- CreateProcessAsUserW
-- GetModuleHandleA
-- GetModuleHandleW
-- RtlDecodePointer
-- DecodePointer
+- `GetProcAddress`
+- `GetProcAddressForCaller`
+- `LoadLibraryA`
+- `LoadLibraryExA`
+- `LoadLibraryW`
+- `LoadLibraryExW`
+- `LdrGetProcedureAddress`
+- `LdrGetProcedureAddressEx`
+- `LdrGetProcedureAddressForCaller`
+- `LdrLoadDll`
+- `VirtualProtect`
+- `VirtualProtectEx`
+- `VirtualAlloc`
+- `VirtualAllocEx`
+- `NtAllocateVirtualMemory`
+- `NtProtectVirtualMemory`
+- `CreateProcessA`
+- `CreateProcessW`
+- `WinExec`
+- `CreateProcessAsUserA`
+- `CreateProcessAsUserW`
+- `GetModuleHandleA`
+- `GetModuleHandleW`
+- `RtlDecodePointer`
+- `DecodePointer`
 
 ### Compatibility considerations
 

From 13afd5971a6fa8f0a729e7b19a9e171226cda9e8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:27:05 -0800
Subject: [PATCH 323/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md           | 136 +++++++++---------
 1 file changed, 68 insertions(+), 68 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index 68401d1360..57e45c13c2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -488,40 +488,40 @@ Simulate execution (SimExec) is a mitigation for 32-bit applications only. This
 
 The APIs intercepted by this mitigation are:
 
-- LoadLibraryA
-- LoadLibraryW
-- LoadLibraryExA
-- LoadLibraryExW
-- LdrLoadDll
-- VirtualAlloc
-- VirtualAllocEx
-- NtAllocateVirtualMemory
-- VirtualProtect
-- VirtualProtectEx
-- NtProtectVirtualMemory
-- HeapCreate
-- RtlCreateHeap
-- CreateProcessA
-- CreateProcessW
-- CreateProcessInternalA
-- CreateProcessInternalW
-- NtCreateUserProcess
-- NtCreateProcess
-- NtCreateProcessEx
-- CreateRemoteThread
-- CreateRemoteThreadEx
-- NtCreateThreadEx
-- WriteProcessMemory
-- NtWriteVirtualMemory
-- WinExec
-- CreateFileMappingA
-- CreateFileMappingW
-- CreateFileMappingNumaW
-- NtCreateSection
-- MapViewOfFile
-- MapViewOfFileEx
-- MapViewOfFileFromApp
-- LdrGetProcedureAddressForCaller
+- `LoadLibraryA`
+- `LoadLibraryW`
+- `LoadLibraryExA`
+- `LoadLibraryExW`
+- `LdrLoadDll`
+- `VirtualAlloc`
+- `VirtualAllocEx`
+- `NtAllocateVirtualMemory`
+- `VirtualProtect`
+- `VirtualProtectEx`
+- `NtProtectVirtualMemory`
+- `HeapCreate`
+- `RtlCreateHeap`
+- `CreateProcessA`
+- `CreateProcessW`
+- `CreateProcessInternalA`
+- `CreateProcessInternalW`
+- `NtCreateUserProcess`
+- `NtCreateProcess`
+- `NtCreateProcessEx`
+- `CreateRemoteThread`
+- `CreateRemoteThreadEx`
+- `NtCreateThreadEx`
+- `WriteProcessMemory`
+- `NtWriteVirtualMemory`
+- `WinExec`
+- `CreateFileMappingA`
+- `CreateFileMappingW`
+- `CreateFileMappingNumaW`
+- `NtCreateSection`
+- `MapViewOfFile`
+- `MapViewOfFileEx`
+- `MapViewOfFileFromApp`
+- `LdrGetProcedureAddressForCaller`
 
 If a ROP gadget is detected, the process is terminated.
 
@@ -543,40 +543,40 @@ Validate API invocation (CallerCheck) is a mitigation for return-oriented progra
 
 The APIs intercepted by this mitigation are:
 
-- LoadLibraryA
-- LoadLibraryW
-- LoadLibraryExA
-- LoadLibraryExW
-- LdrLoadDll
-- VirtualAlloc
-- VirtualAllocEx
-- NtAllocateVirtualMemory
-- VirtualProtect
-- VirtualProtectEx
-- NtProtectVirtualMemory
-- HeapCreate
-- RtlCreateHeap
-- CreateProcessA
-- CreateProcessW
-- CreateProcessInternalA
-- CreateProcessInternalW
-- NtCreateUserProcess
-- NtCreateProcess
-- NtCreateProcessEx
-- CreateRemoteThread
-- CreateRemoteThreadEx
-- NtCreateThreadEx
-- WriteProcessMemory
-- NtWriteVirtualMemory
-- WinExec
-- CreateFileMappingA
-- CreateFileMappingW
-- CreateFileMappingNumaW
-- NtCreateSection
-- MapViewOfFile
-- MapViewOfFileEx
-- MapViewOfFileFromApp
-- LdrGetProcedureAddressForCaller
+- `LoadLibraryA`
+- `LoadLibraryW`
+- `LoadLibraryExA`
+- `LoadLibraryExW`
+- `LdrLoadDll`
+- `VirtualAlloc`
+- `VirtualAllocEx`
+- `NtAllocateVirtualMemory`
+- `VirtualProtect`
+- `VirtualProtectEx`
+- `NtProtectVirtualMemory`
+- `HeapCreate`
+- `RtlCreateHeap`
+- `CreateProcessA`
+- `CreateProcessW`
+- `CreateProcessInternalA`
+- `CreateProcessInternalW`
+- `NtCreateUserProcess`
+- `NtCreateProcess`
+- `NtCreateProcessEx`
+- `CreateRemoteThread`
+- `CreateRemoteThreadEx`
+- `NtCreateThreadEx`
+- `WriteProcessMemory`
+- `NtWriteVirtualMemory`
+- `WinExec`
+- `CreateFileMappingA`
+- `CreateFileMappingW`
+- `CreateFileMappingNumaW`
+- `NtCreateSection`
+- `MapViewOfFile`
+- `MapViewOfFileEx`
+- `MapViewOfFileFromApp`
+- `LdrGetProcedureAddressForCaller`
 
 If a ROP gadget is detected, the process is terminated.
 

From 18627d1a1ee38d1838c808471c2f1f11d62ebf2c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:29:47 -0800
Subject: [PATCH 324/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md           | 68 +++++++++----------
 1 file changed, 34 insertions(+), 34 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index 57e45c13c2..e7ee3c6454 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -676,40 +676,40 @@ This mitigation intercepts a number of Windows APIs, and inspects the value of t
 
 The APIs intercepted by this mitigation are:
 
-- LoadLibraryA
-- LoadLibraryW
-- LoadLibraryExA
-- LoadLibraryExW
-- LdrLoadDll
-- VirtualAlloc
-- VirtualAllocEx
-- NtAllocateVirtualMemory
-- VirtualProtect
-- VirtualProtectEx
-- NtProtectVirtualMemory
-- HeapCreate
-- RtlCreateHeap
-- CreateProcessA
-- CreateProcessW
-- CreateProcessInternalA
-- CreateProcessInternalW
-- NtCreateUserProcess
-- NtCreateProcess
-- NtCreateProcessEx
-- CreateRemoteThread
-- CreateRemoteThreadEx
-- NtCreateThreadEx
-- WriteProcessMemory
-- NtWriteVirtualMemory
-- WinExec
-- CreateFileMappingA
-- CreateFileMappingW
-- CreateFileMappingNumaW
-- NtCreateSection
-- MapViewOfFile
-- MapViewOfFileEx
-- MapViewOfFileFromApp
-- LdrGetProcedureAddressForCaller
+- `LoadLibraryA`
+- `LoadLibraryW`
+- `LoadLibraryExA`
+- `LoadLibraryExW`
+- `LdrLoadDll`
+- `VirtualAlloc`
+- `VirtualAllocEx`
+- `NtAllocateVirtualMemory`
+- `VirtualProtect`
+- `VirtualProtectEx`
+- `NtProtectVirtualMemory`
+- `HeapCreate`
+- `RtlCreateHeap`
+- `CreateProcessA`
+- `CreateProcessW`
+- `CreateProcessInternalA`
+- `CreateProcessInternalW`
+- `NtCreateUserProcess`
+- `NtCreateProcess`
+- `NtCreateProcessEx`
+- `CreateRemoteThread`
+- `CreateRemoteThreadEx`
+- `NtCreateThreadEx`
+- `WriteProcessMemory`
+- `NtWriteVirtualMemory`
+- `WinExec`
+- `CreateFileMappingA`
+- `CreateFileMappingW`
+- `CreateFileMappingNumaW`
+- `NtCreateSection`
+- `MapViewOfFile`
+- `MapViewOfFileEx`
+- `MapViewOfFileFromApp`
+- `LdrGetProcedureAddressForCaller`
 
 ### Compatibility considerations
 

From c255d102968b539afcb363ef7429d8e287f50fec Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:32:55 -0800
Subject: [PATCH 325/825] Update exploit-protection-reference.md

---
 .../exploit-protection-reference.md                | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index e7ee3c6454..f1867fadcb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -400,7 +400,7 @@ Additionally, by enabling EAF+, this mitigation adds the PAGE_GUARD protection t
 
 ### Description
 
-Address Space Layout Randomization (ASLR) mitigates the risk of an attacker using their knowledge of the memory layout of the system in order to execute code that is already present in process memory and already marked as executable. This can mitigate the risk of an attacker leveraging techniques such as return-to-libc attacks, where the adversary sets the context and then modifies the return address to execute existing code with context that suits the adversary's purpose.
+Address Space Layout Randomization (ASLR) mitigates the risk of an attacker using their knowledge of the memory layout of the system in order to execute code that is already present in process memory and already marked as executable. This can mitigate the risk of an attacker using techniques such as return-to-libc attacks, where the adversary sets the context and then modifies the return address to execute existing code with context that suits the adversary's purpose.
 
 Mandatory ASLR forces a rebase of all DLLs within the process. A developer can enable ASLR using the [/DYNAMICBASE](https://docs.microsoft.com/cpp/build/reference/dynamicbase-use-address-space-layout-randomization?view=vs-2019&preserve-view=true) linker option, and this mitigation has the same effect.
 
@@ -471,7 +471,7 @@ The size of the 32-bit address space places practical constraints on the entropy
 
 ### Compatibility considerations
 
-Most applications that are compatible with Mandatory ASLR (rebasing) will also be compatible with the additional entropy of Bottom-up ASLR. Some applications may have pointer-truncation issues if they are saving local pointers in 32-bit variables (expecting a base address below 4 GB), and thus will be incompatible with the high entropy option (which can be disabled).
+Most applications that are compatible with Mandatory ASLR (rebasing) are also compatible with the other entropy of Bottom-up ASLR. Some applications may have pointer-truncation issues if they are saving local pointers in 32-bit variables (expecting a base address below 4 GB), and thus will be incompatible with the high entropy option (which can be disabled).
 
 ### Configuration options
 
@@ -594,7 +594,7 @@ This mitigation is incompatible with the Arbitrary Code Guard mitigation.
 
 ### Description
 
-Validate exception chains (SEHOP) is a mitigation against the *Structured Exception Handler (SEH) overwrite* exploitation technique. [Structured exception handling](https://docs.microsoft.com/windows/win32/debug/structured-exception-handling) is the process by which an application can ask to handle a particular exception. Exception handlers are chained together, so that if one exception handler chooses not to handle a particular exception, it can be passed on to the next exception handler in the chain until one decides to handle it. Because the list of handler is dynamic, it is stored on the stack. An attacker can leverage a stack overflow vulnerability to then overwrite the exception handler with a pointer to the code of the attacker's choice.
+Validate exception chains (SEHOP) is a mitigation against the *Structured Exception Handler (SEH) overwrite* exploitation technique. [Structured exception handling](https://docs.microsoft.com/windows/win32/debug/structured-exception-handling) is the process by which an application can ask to handle a particular exception. Exception handlers are chained together, so that if one exception handler chooses not to handle a particular exception, it can be passed on to the next exception handler in the chain until one decides to handle it. Because the list of handler is dynamic, it is stored on the stack. An attacker can use a stack overflow vulnerability to then overwrite the exception handler with a pointer to the code of the attacker's choice.
 
 This mitigation relies on the design of SEH, where each SEH entry contains both a pointer to the exception handler, as well as a pointer to the next handler in the exception chain. This mitigation is called by the exception dispatcher, which validates the SEH chain when an exception is invoked. It verifies that:
 
@@ -619,7 +619,7 @@ Compatibility issues with SEHOP are relatively rare. It's uncommon for an applic
 
 ### Description
 
-*Validate handle usage* is a mitigation that helps protect against an attacker leveraging an existing handle to access a protected object. A [handle](https://docs.microsoft.com/windows/win32/sysinfo/handles-and-objects) is a reference to a protected object. If application code is referencing an invalid handle, that could indicate that an adversary is attempting to use a handle it has previously recorded (but which application reference counting wouldn't be aware of). If the application attempts to use an invalid object, instead of simply returning null, the application will raise an exception (STATUS_INVALID_HANDLE).
+*Validate handle usage* is a mitigation that helps protect against an attacker using an existing handle to access a protected object. A [handle](https://docs.microsoft.com/windows/win32/sysinfo/handles-and-objects) is a reference to a protected object. If application code is referencing an invalid handle, that could indicate that an adversary is attempting to use a handle it has previously recorded (but which application reference counting wouldn't be aware of). If the application attempts to use an invalid object, instead of simply returning null, the application will raise an exception (STATUS_INVALID_HANDLE).
 
 This mitigation is automatically applied to Windows Store applications.
 
@@ -639,7 +639,7 @@ Applications that were not accurately tracking handle references, and which were
 The *validate heap integrity* mitigation increases the protection level of heap mitigations in Windows, by causing the application to terminate if a heap corruption is detected. The mitigations include:
 
 - Preventing a HEAP handle from being freed
-- Performing additional validation on extended block headers for heap allocations
+- Performing another validation on extended block headers for heap allocations
 - Verifying that heap allocations are not already flagged as in-use
 - Adding guard pages to large allocations, heap segments, and subsegments above a minimum size
 
@@ -672,7 +672,7 @@ Compatibility issues are uncommon. Applications that depend on replacing Windows
 
 The *validate stack integrity (StackPivot)* mitigation helps protect against the Stack Pivot attack, a ROP attack where an attacker creates a fake stack in heap memory, and then tricks the application into returning into the fake stack that controls the flow of execution.
 
-This mitigation intercepts a number of Windows APIs, and inspects the value of the stack pointer. If the address of the stack pointer does not fall between the bottom and the top of the stack, then an event is recorded and, if not in audit mode, the process will be terminated.
+This mitigation intercepts many Windows APIs, and inspects the value of the stack pointer. If the address of the stack pointer does not fall between the bottom and the top of the stack, then an event is recorded and, if not in audit mode, the process will be terminated.
 
 The APIs intercepted by this mitigation are:
 
@@ -713,7 +713,7 @@ The APIs intercepted by this mitigation are:
 
 ### Compatibility considerations
 
-Applications that are leveraging fake stacks will be impacted, and there is also a small risk of revealing subtle timing bugs in multi-threaded applications.
+Applications that are using fake stacks will be impacted, and there is also a small risk of revealing subtle timing bugs in multi-threaded applications.
 Applications that perform API interception, particularly security software, can cause compatibility problems with this mitigation.
 
 This mitigation is incompatible with the Arbitrary Code Guard mitigation.

From 37799450e22422f557a80fc57a3cb55e1fe80a9c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:38:11 -0800
Subject: [PATCH 326/825] Update evaluate-exploit-protection.md

---
 .../evaluate-exploit-protection.md                   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
index a6dcacc047..3885e8407c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 audience: ITPro
 author: denisebmsft
 ms.author: deniseb
-ms.date: 08/28/2020
+ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
 ---
@@ -38,20 +38,20 @@ You can set mitigation in audit mode for specific programs either by using the W
 
 ### Windows Security app
 
-1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
+1. Open the Windows Security app by selecting the shield icon in the task bar or searching the start menu for **Defender**.
 
-2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then click **Exploit protection**.
+2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then select **Exploit protection**.
 
 3. Go to **Program settings** and choose the app you want to apply protection to:
 
-    1. If the app you want to configure is already listed, click it and then click **Edit**
-    2. If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app.
+    1. If the app you want to configure is already listed, select it and then select **Edit**
+    2. If the app is not listed, at the top of the list select **Add program to customize** and then choose how you want to add the app.
         - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
         - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You will be notified if you need to restart the process or app, or if you need to restart Windows.
 
-5. Repeat this for all the apps and mitigations you want to configure. Click **Apply** when you're done setting up your configuration.
+5. Repeat this for all the apps and mitigations you want to configure. Select **Apply** when you're done setting up your configuration.
 
 ### PowerShell
 

From f602e4fb0735f676c481496759b03fe0f76a867a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:39:35 -0800
Subject: [PATCH 327/825] Update evaluate-exploit-protection.md

---
 .../microsoft-defender-atp/evaluate-exploit-protection.md   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
index 3885e8407c..a7d1eb5399 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
@@ -40,18 +40,18 @@ You can set mitigation in audit mode for specific programs either by using the W
 
 1. Open the Windows Security app by selecting the shield icon in the task bar or searching the start menu for **Defender**.
 
-2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then select **Exploit protection**.
+2. Select the **App & browser control** tile (or the app icon on the left menu bar) and then select **Exploit protection**.
 
 3. Go to **Program settings** and choose the app you want to apply protection to:
 
     1. If the app you want to configure is already listed, select it and then select **Edit**
     2. If the app is not listed, at the top of the list select **Add program to customize** and then choose how you want to add the app.
-        - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
+        - Use **Add by program name** to have the mitigation applied to any running process with that name. Specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
         - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You will be notified if you need to restart the process or app, or if you need to restart Windows.
 
-5. Repeat this for all the apps and mitigations you want to configure. Select **Apply** when you're done setting up your configuration.
+5. Repeat this procedure for all the apps and mitigations you want to configure. Select **Apply** when you're done setting up your configuration.
 
 ### PowerShell
 

From 195de92fda8a67c2a9ec2992ca1e7bed4fb7d10b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 6 Jan 2021 18:41:59 -0800
Subject: [PATCH 328/825] Update deploy-microsoft-defender-antivirus.md

---
 .../deploy-microsoft-defender-antivirus.md                | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
index 97eeac6ba1..56d70bda19 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 09/03/2018
+ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
 ---
@@ -29,11 +29,11 @@ Depending on the management tool you are using, you may need to specifically ena
 
 See the table in [Deploy, manage, and report on Microsoft Defender Antivirus](deploy-manage-report-microsoft-defender-antivirus.md#ref2) for instructions on how to enable protection with Microsoft Intune, Microsoft Endpoint Configuration Manager, Group Policy, Active Directory, Microsoft Azure, PowerShell cmdlets, and Windows Management Instruction (WMI).
 
-Some scenarios require additional guidance on how to successfully deploy or configure Microsoft Defender Antivirus protection, such as Virtual Desktop Infrastructure (VDI) environments.
+Some scenarios require more guidance on how to successfully deploy or configure Microsoft Defender Antivirus protection, such as Virtual Desktop Infrastructure (VDI) environments.
 
-The remaining topic in this section provides end-to-end advice and best practices for [setting up Microsoft Defender Antivirus on virtual machines (VMs) in a VDI or Remote Desktop Services (RDS) environment](deployment-vdi-microsoft-defender-antivirus.md).
+The remaining article in this section provides end-to-end advice and best practices for [setting up Microsoft Defender Antivirus on virtual machines (VMs) in a VDI or Remote Desktop Services (RDS) environment](deployment-vdi-microsoft-defender-antivirus.md).
 
-## Related topics
+## Related articles
 
 - [Microsoft Defender Antivirus in Windows 10](microsoft-defender-antivirus-in-windows-10.md)
 - [Deploy, manage updates, and report on Microsoft Defender Antivirus](deploy-manage-report-microsoft-defender-antivirus.md)

From fee4a005f198eca3a96b7d8bbd892f16b40829f6 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Thu, 7 Jan 2021 10:51:47 +0500
Subject: [PATCH 329/825] Updated the broken link

A link was pointing to a point where there was no information for Bluetooth pairing. Link updated to point to the correct information.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8905
---
 windows/whats-new/whats-new-windows-10-version-2004.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/whats-new/whats-new-windows-10-version-2004.md b/windows/whats-new/whats-new-windows-10-version-2004.md
index 38d51da399..562b8ec51b 100644
--- a/windows/whats-new/whats-new-windows-10-version-2004.md
+++ b/windows/whats-new/whats-new-windows-10-version-2004.md
@@ -212,7 +212,7 @@ You can now [rename your virtual desktops](https://docs.microsoft.com/windows-in
 
 ### Bluetooth pairing
 
-Pairing Bluetooth devices with your computer will occur through notifications, so you won't need to go to the Settings app to finish pairing. Other improvements include faster pairing and device name display. For more information, see [Improving your Bluetooth pairing experience](https://docs.microsoft.com/windows-insider/at-home/Whats-new-wip-at-home-20h1#improving-your-bluetooth-pairing-experience-build-18985).
+Pairing Bluetooth devices with your computer will occur through notifications, so you won't need to go to the Settings app to finish pairing. Other improvements include faster pairing and device name display. For more information, see [Improving your Bluetooth pairing experience](https://docs.microsoft.com/windows-insider/archive/new-in-20h1#improving-your-bluetooth-pairing-experience-build-18985).
 
 ### Reset this PC
 

From 065e76a50ab560b1c7166d8dec640cd6bef03db9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?=
 <konstruktoid@users.noreply.github.com>
Date: Thu, 7 Jan 2021 12:37:27 +0100
Subject: [PATCH 330/825] mention systemd as a prerequisite
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
---
 .../microsoft-defender-atp-linux.md                 | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
index 87dd24a90d..18f7835e25 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
@@ -14,9 +14,9 @@ author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+ms.collection:
+- m365-security-compliance
+- m365initiative-defender-endpoint
 ms.topic: conceptual
 ---
 
@@ -24,7 +24,6 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 This topic describes how to install, configure, update, and use Microsoft Defender for Endpoint for Linux.
 
 > [!CAUTION]
@@ -35,6 +34,7 @@ This topic describes how to install, configure, update, and use Microsoft Defend
 ### Prerequisites
 
 - Access to the Microsoft Defender Security Center portal
+- Linux distribution using the [systemd](https://systemd.io/) system manager
 - Beginner-level experience in Linux and BASH scripting
 - Administrative privileges on the device (in case of manual deployment)
 
@@ -100,12 +100,9 @@ After you've enabled the service, you may need to configure your network or fire
 
 The following downloadable spreadsheet lists the services and their associated URLs that your network must be able to connect to. You should ensure that there are no firewall or network filtering rules that would deny access to these URLs. If there are, you may need to create an *allow* rule specifically for them.
 
-
 |**Spreadsheet of domains list**|**Description**|
 |:-----|:-----|
-|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
-
-
+|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx)
 
 > [!NOTE]
 > For a more specific URL list, see [Configure proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).

From de8b12ba6ffa680009b12d2665fad81240a67dc0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 08:00:54 -0800
Subject: [PATCH 331/825] Update
 windows/security/threat-protection/security-compliance-toolkit-10.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../threat-protection/security-compliance-toolkit-10.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/security-compliance-toolkit-10.md b/windows/security/threat-protection/security-compliance-toolkit-10.md
index e8972cbc75..9aa1555aa0 100644
--- a/windows/security/threat-protection/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/security-compliance-toolkit-10.md
@@ -48,7 +48,7 @@ The Security Compliance Toolkit consists of:
 - Microsoft Edge security baseline
     - Version 85
     
- - Windows Update security baseline
+- Windows Update security baseline
     - Windows 10 20H2 and below (October 2020 Update)
 
 - Tools

From d36ef29c53ac6d9a49967862ed1937ea10d93541 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 18:02:05 +0200
Subject: [PATCH 332/825] Update gov.md

---
 .../microsoft-defender-atp/gov.md             | 32 +++++++++----------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index b4e6a21755..397955688f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -45,17 +45,17 @@ Windows 10, version 2004 (with [KB4586853](https://support.microsoft.com/help/44
 Windows 10, version 1909 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1903 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
-Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: Will be deprecated, please upgrade
+Windows 10, version 1803 | ![No](../images/svg/check-no.svg) Rolling out | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
 Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows 8 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
-Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Windows Server 2016 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows 8 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
@@ -69,9 +69,9 @@ The following OS versions are supported when using [Azure Defender for Servers](
 
 OS version | GCC | GCC High
 :---|:---|:---
-Windows Server 2016 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Coming soon | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2016 | ![No](../images/svg/check-no.svg) Rolling out | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Rolling out | ![Yes](../images/svg/check-yes.svg)
+Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Rolling out | ![Yes](../images/svg/check-yes.svg)
 
 <br>
 
@@ -108,22 +108,22 @@ Feature name | GCC | GCC High
 :---|:---|:---
 Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Email notifications | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Email notifications | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Web content filtering | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
-Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Coming soon | ![No](../images/svg/check-no.svg) In development
+Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)

From 41abac616fa79f7872c48a628aadd81692ed292c Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 18:09:49 +0200
Subject: [PATCH 333/825] Update gov.md

---
 .../microsoft-defender-atp/gov.md                | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 397955688f..99fced566c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -58,8 +58,8 @@ Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No]
 Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
-iOS | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Android | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Android | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 
 > [!NOTE]
 > A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
@@ -107,7 +107,7 @@ These are the known gaps as of January 2021:
 Feature name | GCC | GCC High
 :---|:---|:---
 Automated investigation and remediation: Live response | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Automated investigation and remediation: Response to Office 365 alerts | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Email notifications | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
@@ -118,11 +118,11 @@ Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Web content filtering | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
-Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development

From e93e2506ceb785ce1b599693af512ae0953c98f7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 08:34:56 -0800
Subject: [PATCH 334/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index f519113f0c..a5a0fd9fb0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -15,7 +15,7 @@ ms.localizationpriority: medium
 ms.custom: 
 - next-gen
 - edr
-ms.date: 12/14/2020
+ms.date: 01/07/2021
 ms.collection: 
 - m365-security-compliance 
 - m365initiative-defender-endpoint 
@@ -71,7 +71,7 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. <br/><br/>See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. You can use Microsoft Defender Antivirus alongside another antivirus solution. <br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 

From cc2e9c09d23fbefc08e6dc675efa95258e30ca08 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 18:49:14 +0200
Subject: [PATCH 335/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 99fced566c..42f48c7a27 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -56,10 +56,10 @@ Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](.
 Windows 8 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
-iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Android | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
+iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 
 > [!NOTE]
 > A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.

From 7ed424f85a07cb639ef44d74510e0b78fc19e086 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:22:34 -0800
Subject: [PATCH 336/825] Update edr-in-block-mode.md

---
 .../edr-in-block-mode.md                      | 31 ++++++++++++++++++-
 1 file changed, 30 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index a5a0fd9fb0..a2071821fe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -71,7 +71,7 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. You can use Microsoft Defender Antivirus alongside another antivirus solution. <br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (If you are using a non-Microsoft antivirus solution, you can still use Microsoft Defender Antivirus. See [How do I confirm Microsoft Defender Antivirus is in active or passive mode?](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).)<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 
@@ -97,6 +97,35 @@ Because Microsoft Defender Antivirus detects and remediates malicious items, it'
 
 Cloud protection is needed to turn on the feature on the device. Cloud protection allows [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) to deliver the latest and greatest protection based on our breadth and depth of security intelligence, along with behavioral and device learning models.
 
+### How do I set Microsoft Defender Antivirus to passive mode?
+
+See [Enable Microsoft Defender Antivirus and confirm it's in passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup#enable-microsoft-defender-antivirus-and-confirm-its-in-passive-mode).
+
+### How do I confirm Microsoft Defender Antivirus is in active or passive mode?
+
+To confirm whether Microsoft Defender Antivirus is running in active or passive mode, you can use Command Prompt or PowerShell on a device running Windows.
+
+#### Use PowerShell
+
+1. Select the Start menu, begin typing `PowerShell`, and then open Windows PowerShell in the results.
+
+2. Type `Get-MpComputerStatus`.
+
+3. In the list of results, look for one of the following:   
+   - `AMRunningMode: Normal`
+   - `AMRunningMode: Passive Mode`  
+   - `AMRunningMode: SxS Passive Mode`
+
+To learn more, see [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps).
+
+#### Use Command Prompt
+
+1. Select the Start menu, begin typing `Command Prompt`, and then open Windows Command Prompt in the results.
+
+2. Type `sc query windefend`.
+
+3. In the list of results, in the `STATE` row, confirm that the service is running.
+
 ## See also
 
 - [Tech Community blog: Introducing EDR in block mode: Stopping attacks in their tracks](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/introducing-edr-in-block-mode-stopping-attacks-in-their-tracks/ba-p/1596617)

From 2409e91582f8f7b45a60d6f469e2cff43b5e6e4d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:24:52 -0800
Subject: [PATCH 337/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index a2071821fe..023c3aad47 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -71,7 +71,7 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (If you are using a non-Microsoft antivirus solution, you can still use Microsoft Defender Antivirus. See [How do I confirm Microsoft Defender Antivirus is in active or passive mode?](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).)<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) See [How do I confirm Microsoft Defender Antivirus is in active or passive mode?](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).)<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 

From a3d29f03306322f9a4f4012e1d72a3d0840cb3b2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:26:48 -0800
Subject: [PATCH 338/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 023c3aad47..a85f4dfe14 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -83,7 +83,7 @@ The following image shows an instance of unwanted software that was detected and
 
 ### Do I need to turn EDR in block mode on even when I have Microsoft Defender Antivirus running on devices?
 
-We recommend keeping EDR in block mode on, whether Microsoft Defender Antivirus is running in passive mode or in active mode. EDR in block mode gives you an added layer of defense with Microsoft Defender for Endpoint. It allows Defender for Endpoint to take actions based on post-breach behavioral EDR detections. 
+We recommend keeping EDR in block mode on, whether Microsoft Defender Antivirus is running in passive mode or in active mode. EDR in block mode provides an additional layer of defense with Microsoft Defender for Endpoint. It allows Defender for Endpoint to take actions based on post-breach behavioral EDR detections. 
 
 ### Will EDR in block mode have any impact on a user's antivirus protection? 
 

From ab4b15a77dead9e2ac42c54cab88e265a914762e Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 7 Jan 2021 09:32:52 -0800
Subject: [PATCH 339/825] Update use.md

---
 .../security/threat-protection/microsoft-defender-atp/use.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/use.md b/windows/security/threat-protection/microsoft-defender-atp/use.md
index 3b37769671..94a305a5eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/use.md
@@ -36,6 +36,11 @@ Use the **Threat & Vulnerability Management** dashboard to expand your visibilit
 
 Use the **Threat analytics** dashboard to continually assess and control risk exposure to Spectre and Meltdown.
 
+## Microsoft Defender for Endpoint interactive guide
+In this interactive guide, you'll learn how to investigate threads to your organization with Microsoft Defender for Endpoint. You'll see how Microsoft Defender for Endpoint can help you identify suspicious activities, investigate risks to your organization, and remediate threats.
+
+[!VIDEO https://aka.ms/MSDE-IG]
+
 ### In this section
 
 Topic | Description

From b386e6d9848b0d91e02bcc5cc81514fb84fb9e4a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:33:19 -0800
Subject: [PATCH 340/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md           | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index a85f4dfe14..def71f7250 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -32,7 +32,7 @@ ms.collection:
 
 ## What is EDR in block mode?
 
-When [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR) in block mode is turned on, Defender for Endpoint blocks malicious artifacts or behaviors that are observed through post-breach protection. EDR in block mode works behind the scenes to remediate malicious artifacts that are detected, post breach. 
+[Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR) in block mode provides protection from malicious artifacts, even when Microsoft Defender Antivirus is running in passive mode. When turned on, EDR in block mode blocks malicious artifacts or behaviors that are detected on a device. EDR in block mode works behind the scenes to remediate malicious artifacts that are detected post breach. 
 
 EDR in block mode is also integrated with [threat & vulnerability management](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt). Your organization's security team will get a [security recommendation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation) to turn EDR in block mode on if it isn't already enabled. 
 
@@ -83,15 +83,15 @@ The following image shows an instance of unwanted software that was detected and
 
 ### Do I need to turn EDR in block mode on even when I have Microsoft Defender Antivirus running on devices?
 
-We recommend keeping EDR in block mode on, whether Microsoft Defender Antivirus is running in passive mode or in active mode. EDR in block mode provides an additional layer of defense with Microsoft Defender for Endpoint. It allows Defender for Endpoint to take actions based on post-breach behavioral EDR detections. 
+We recommend keeping EDR in block mode on, whether Microsoft Defender Antivirus is running in passive mode or in active mode. EDR in block mode provides another layer of defense with Microsoft Defender for Endpoint. It allows Defender for Endpoint to take actions based on post-breach behavioral EDR detections. 
 
 ### Will EDR in block mode have any impact on a user's antivirus protection? 
 
-EDR in block mode does not affect third-party antivirus protection running on users' devices. EDR in block mode works if the primary antivirus solution misses something, or if there is a post-breach detection. EDR in block mode works just like [Microsoft Defender Antivirus in passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state), with the additional steps of blocking and remediating malicious artifacts or behaviors that are detected. 
+EDR in block mode does not affect third-party antivirus protection running on users' devices. EDR in block mode works if the primary antivirus solution misses something, or if there is a post-breach detection. EDR in block mode works just like [Microsoft Defender Antivirus in passive mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state), except it also blocks and remediates malicious artifacts or behaviors that are detected. 
 
 ### Why do I need to keep Microsoft Defender Antivirus up to date? 
 
-Because Microsoft Defender Antivirus detects and remediates malicious items, it's important to keep it up to date to leverage the latest device learning models, behavioral detections, and heuristics for EDR in block mode to be most effective. The [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) stack of capabilities works in an integrated manner, and to get best protection value, you should keep Microsoft Defender Antivirus up to date.  
+Because Microsoft Defender Antivirus detects and remediates malicious items, it's important to keep it up to date to use the latest device learning models, behavioral detections, and heuristics for EDR in block mode to be most effective. The [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) stack of capabilities works in an integrated manner, and to get best protection value, you should keep Microsoft Defender Antivirus up to date.  
 
 ### Why do we need cloud protection on? 
 

From 898eb448d332fca090a9d76cfef7919bdc1c8d3d Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 7 Jan 2021 09:34:04 -0800
Subject: [PATCH 341/825] Update use.md

---
 .../security/threat-protection/microsoft-defender-atp/use.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/use.md b/windows/security/threat-protection/microsoft-defender-atp/use.md
index 94a305a5eb..081596f1aa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/use.md
@@ -37,7 +37,7 @@ Use the **Threat & Vulnerability Management** dashboard to expand your visibilit
 Use the **Threat analytics** dashboard to continually assess and control risk exposure to Spectre and Meltdown.
 
 ## Microsoft Defender for Endpoint interactive guide
-In this interactive guide, you'll learn how to investigate threads to your organization with Microsoft Defender for Endpoint. You'll see how Microsoft Defender for Endpoint can help you identify suspicious activities, investigate risks to your organization, and remediate threats.
+In this interactive guide, you'll learn how to investigate threats to your organization with Microsoft Defender for Endpoint. You'll see how Microsoft Defender for Endpoint can help you identify suspicious activities, investigate risks to your organization, and remediate threats.
 
 [!VIDEO https://aka.ms/MSDE-IG]
 

From ee3f82a8654f8fa713a7f012af54b21f1c575532 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:35:40 -0800
Subject: [PATCH 342/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md        | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index def71f7250..07e482586e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -43,7 +43,7 @@ EDR in block mode is also integrated with [threat & vulnerability management](ht
 
 ## What happens when something is detected?
 
-When EDR in block mode is turned on, and a malicious artifact is detected, blocking and remediation actions are taken. You'll see detection status as **Blocked** or **Prevented** as completed actions in the [Action center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts#check-activity-details-in-action-center).
+When EDR in block mode is turned on, and a malicious artifact is detected, Microsoft Defender for Endpoint blocks and remediates that artifact. You'll see detection status as **Blocked** or **Prevented** as completed actions in the [Action center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts#check-activity-details-in-action-center).
 
 The following image shows an instance of unwanted software that was detected and blocked through EDR in block mode:
 
@@ -111,10 +111,10 @@ To confirm whether Microsoft Defender Antivirus is running in active or passive
 
 2. Type `Get-MpComputerStatus`.
 
-3. In the list of results, look for one of the following:   
-   - `AMRunningMode: Normal`
-   - `AMRunningMode: Passive Mode`  
-   - `AMRunningMode: SxS Passive Mode`
+3. In the list of results, in the `AMRunningMode` row, look for one of the following values:   
+   - `Normal`
+   - `Passive Mode`  
+   - `SxS Passive Mode`
 
 To learn more, see [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps).
 

From d8959ac9eb6c8fa7ea36ef2f422bb5cb2411dced Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:43:06 -0800
Subject: [PATCH 343/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 07e482586e..9c53fcc49a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -116,7 +116,7 @@ To confirm whether Microsoft Defender Antivirus is running in active or passive
    - `Passive Mode`  
    - `SxS Passive Mode`
 
-To learn more, see [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps).
+To learn more, see [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus).
 
 #### Use Command Prompt
 

From 47fc5b95cbd10bd19059e8ed65b896e53e2b4537 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:48:24 -0800
Subject: [PATCH 344/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 9c53fcc49a..79a5673036 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -71,7 +71,7 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) See [How do I confirm Microsoft Defender Antivirus is in active or passive mode?](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).)<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 

From a0a5572da3848dd5bfbfeb11aa85cfb77db8391e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:49:24 -0800
Subject: [PATCH 345/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 79a5673036..6344d50b9a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -71,7 +71,7 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that cloud-delivered protection is enabled. See [Enable cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that [cloud-delivered protection is enabled](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 

From aa303399ccb7ffb9b9e7445d4f98d9070dfa30f3 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 09:51:01 -0800
Subject: [PATCH 346/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 6344d50b9a..b53e114acc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -76,8 +76,7 @@ The following image shows an instance of unwanted software that was detected and
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 
 > [!IMPORTANT]
-> To get the best protection value, make sure your antivirus solution is configured to receive regular updates and essential features, and that your exclusions are defined. 
-
+> To get the best protection value, make sure your antivirus solution is configured to receive regular updates and essential features, and that your [exclusions](../microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md) are defined. EDR in block mode respects exclusions that are defined for Microsoft Defender Antivirus.
 
 ## Frequently asked questions 
 

From 29a4ef88256a2ace31d71724ddae949ca09919f9 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 7 Jan 2021 09:57:51 -0800
Subject: [PATCH 347/825] Update use.md

---
 .../security/threat-protection/microsoft-defender-atp/use.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/use.md b/windows/security/threat-protection/microsoft-defender-atp/use.md
index 081596f1aa..eeeba70ccd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/use.md
@@ -39,7 +39,7 @@ Use the **Threat analytics** dashboard to continually assess and control risk ex
 ## Microsoft Defender for Endpoint interactive guide
 In this interactive guide, you'll learn how to investigate threats to your organization with Microsoft Defender for Endpoint. You'll see how Microsoft Defender for Endpoint can help you identify suspicious activities, investigate risks to your organization, and remediate threats.
 
-[!VIDEO https://aka.ms/MSDE-IG]
+> [!VIDEO https://aka.ms/MSDE-IG]
 
 ### In this section
 

From 47dac969b5512a26efdf3578cdee4ed0a982ed54 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 10:00:11 -0800
Subject: [PATCH 348/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index b53e114acc..5300626bd2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -71,7 +71,8 @@ The following image shows an instance of unwanted software that was detected and
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
 |Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
-|Cloud-delivered protection |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode).<br/><br/>In addition, make sure Microsoft Defender Antivirus is configured such that [cloud-delivered protection is enabled](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
+|Microsoft Defender Antivirus  |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode). |
+|Cloud-delivered protection |Make sure Microsoft Defender Antivirus is configured such that [cloud-delivered protection is enabled](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
 |Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 

From 40762f3bbd912ef4cc766dd2c6130295b4f578d8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 10:06:13 -0800
Subject: [PATCH 349/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 5300626bd2..8f97a4b56f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -77,7 +77,7 @@ The following image shows an instance of unwanted software that was detected and
 |Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 
 > [!IMPORTANT]
-> To get the best protection value, make sure your antivirus solution is configured to receive regular updates and essential features, and that your [exclusions](../microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md) are defined. EDR in block mode respects exclusions that are defined for Microsoft Defender Antivirus.
+> To get the best protection value, make sure your antivirus solution is configured to receive regular updates and essential features, and that your [exclusions are configured](../microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md). EDR in block mode respects exclusions that are defined for Microsoft Defender Antivirus.
 
 ## Frequently asked questions 
 

From cd12eb005a60ba0d937d257dcb450b3eae560049 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Thu, 7 Jan 2021 20:54:26 +0100
Subject: [PATCH 350/825] Missing verb "is" in line 36

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/mdm/filesystem-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/filesystem-csp.md b/windows/client-management/mdm/filesystem-csp.md
index 39061b8c6d..9a50b99317 100644
--- a/windows/client-management/mdm/filesystem-csp.md
+++ b/windows/client-management/mdm/filesystem-csp.md
@@ -60,7 +60,7 @@ The following properties are supported for file directories:
 
 - `Name`: The file directory name. The Get command is the only supported command.
 
-- `Type`: The MIME type of the file, which an empty string for directories that are not the root node. The Get command is the only supported command.
+- `Type`: The MIME type of the file, which is an empty string for directories that are not the root node. The Get command is the only supported command.
 
 - `Format`: The format, which is `node`. The Get command is the only supported command.
 

From 655e9bd4d318470d7eba59d6c605c8d0449e5574 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Thu, 7 Jan 2021 20:55:07 +0100
Subject: [PATCH 351/825] Missing capitalization for WBXML in line 90

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/mdm/filesystem-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/filesystem-csp.md b/windows/client-management/mdm/filesystem-csp.md
index 9a50b99317..12547591ba 100644
--- a/windows/client-management/mdm/filesystem-csp.md
+++ b/windows/client-management/mdm/filesystem-csp.md
@@ -87,7 +87,7 @@ The following properties are supported for files:
 
 - `Type`: The MIME type of the file. This value is always set to the generic MIME type: `application/octet-stream`. The Get command is the only supported command.
 
-- `Format`: The format, which is b64 encoded for binary data is sent over XML, and bin format for binary data sent over wbxml. The Get command is the only supported command.
+- `Format`: The format, which is b64 encoded for binary data is sent over XML, and bin format for binary data sent over WBXML. The Get command is the only supported command.
 
 - `TStamp`: A standard OMA property that indicates the last time the file was changed. The value is represented by a string containing a UTC based, ISO 8601 basic format, complete representation of a date and time value, e.g. 20010711T163817Z means July 11, 2001 at 16 hours, 38 minutes and 17 seconds. The Get command is the only supported command.
 

From afaf7b099df4b8a2387318097aeb79d53dcade08 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 22:13:32 +0200
Subject: [PATCH 352/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 42f48c7a27..a8904d84f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -126,4 +126,4 @@ Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) On engi
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Microsoft Threat Experts | ![No](../images/svg/check-no.svg) | ![No](../images/svg/check-no.svg)
+Microsoft Threat Experts | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development

From c8969b6e4f8fc3b2357972e7ba054c4bbfd52792 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 7 Jan 2021 22:13:52 +0200
Subject: [PATCH 353/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index a8904d84f6..9f89eda253 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -126,4 +126,4 @@ Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) On engi
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Microsoft Threat Experts | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
+Microsoft Threat Experts | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog

From 7953f7477d523a50d9cf944001e95b7dfe93c407 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 14:41:29 -0800
Subject: [PATCH 354/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md             | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 8f97a4b56f..640feefc2f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -91,7 +91,7 @@ EDR in block mode does not affect third-party antivirus protection running on us
 
 ### Why do I need to keep Microsoft Defender Antivirus up to date? 
 
-Because Microsoft Defender Antivirus detects and remediates malicious items, it's important to keep it up to date to use the latest device learning models, behavioral detections, and heuristics for EDR in block mode to be most effective. The [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) stack of capabilities works in an integrated manner, and to get best protection value, you should keep Microsoft Defender Antivirus up to date.  
+Because Microsoft Defender Antivirus detects and remediates malicious items, it's important to keep it up to date. For EDR in block mode to be effective, it uses the latest device learning models, behavioral detections, and heuristics. The [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) stack of capabilities works in an integrated manner. To get best protection value, you should keep Microsoft Defender Antivirus up to date.  
 
 ### Why do we need cloud protection on? 
 
@@ -111,7 +111,7 @@ To confirm whether Microsoft Defender Antivirus is running in active or passive
 
 2. Type `Get-MpComputerStatus`.
 
-3. In the list of results, in the `AMRunningMode` row, look for one of the following values:   
+3. In the list of results, in the **AMRunningMode** row, look for one of the following values:   
    - `Normal`
    - `Passive Mode`  
    - `SxS Passive Mode`
@@ -124,7 +124,7 @@ To learn more, see [Get-MpComputerStatus](https://docs.microsoft.com/powershell/
 
 2. Type `sc query windefend`.
 
-3. In the list of results, in the `STATE` row, confirm that the service is running.
+3. In the list of results, in the **STATE** row, confirm that the service is running.
 
 ## See also
 

From 6dd2bf3e0ed3102e1c2750d31c5688b85354f2db Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 14:47:56 -0800
Subject: [PATCH 355/825] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

---
 ...ecurity-settings-with-tamper-protection.md | 24 +++++++++++--------
 1 file changed, 14 insertions(+), 10 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 567fc845b6..02e271f7a0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -14,7 +14,7 @@ audience: ITPro
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 11/19/2020
+ms.date: 01/07/2021
 ---
 
 # Protect security settings with tamper protection
@@ -24,8 +24,12 @@ ms.date: 11/19/2020
 
 **Applies to:**
 
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+Tamper protection is available on devices running the following versions of Windows:   
+ 
 - Windows 10
-- Windows Server 2019 (if using tenant attach with [Configuration Manager, version 2006](#manage-tamper-protection-with-configuration-manager-version-2006))
+- Windows Server 2016 and 2019 (if using tenant attach with [Configuration Manager, version 2006](#manage-tamper-protection-with-configuration-manager-version-2006))
 
 ## Overview
 
@@ -74,7 +78,7 @@ Tamper protection doesn't prevent you from viewing your security settings. And,
 
 If you are a home user, or you are not subject to settings managed by a security team, you can use the Windows Security app to turn tamper protection on or off. You must have appropriate admin permissions on your machine to do change security settings, such as tamper protection.
 
-1. Click **Start**, and start typing *Defender*. In the search results, select **Windows Security**.
+1. Click **Start**, and start typing *Security*. In the search results, select **Windows Security**.
 
 2. Select **Virus & threat protection** > **Virus & threat protection settings**.
 
@@ -101,15 +105,15 @@ You must have appropriate [permissions](../microsoft-defender-atp/assign-portal-
 
 3. Select **Devices** > **Configuration Profiles**.
 
-4. Create a profile as follows:
+4. Create a profile that includes the following settings:
 
-    - Platform: **Windows 10 and later**
+    - **Platform: Windows 10 and later**
 
-    - Profile type: **Endpoint protection**
+    - **Profile type: Endpoint protection**
 
-    - Category: **Microsoft Defender Security Center**
+    - **Category: Microsoft Defender Security Center**
 
-    - Tamper Protection: **Enabled**
+    - **Tamper Protection: Enabled**
 
     ![Turn tamper protection on with Intune](images/turnontamperprotect-MEM.png)
 
@@ -132,7 +136,7 @@ If you are using Windows 10 OS [1709](https://docs.microsoft.com/windows/release
 > [!IMPORTANT]
 > The procedure can be used to extend tamper protection to devices running Windows 10 and Windows Server 2019. Make sure to review the prerequisites and other information in the resources mentioned in this procedure.
 
-If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10 and Windows Server 2019 by using a method called *tenant attach*. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
+If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10, Windows Server 2016, and Windows Server 2019 by using a method called *tenant attach*. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
 
 1. Set up tenant attach. See [Microsoft Endpoint Manager tenant attach: Device sync and device actions](https://docs.microsoft.com/mem/configmgr/tenant-attach/device-sync-actions).
 
@@ -209,7 +213,7 @@ Your regular group policy doesn’t apply to tamper protection, and changes to M
 
 ### For Microsoft Defender for Endpoint, is configuring tamper protection in Intune targeted to the entire organization only?
 
-Configuring tamper protection in Intune or Microsoft Endpoint Manager can be targeted to your entire organization as well as to specific devices and user groups.
+Configuring tamper protection in Intune or Microsoft Endpoint Manager can be targeted to your entire organization and to specific devices and user groups.
 
 ### Can I configure Tamper Protection in Microsoft Endpoint Configuration Manager?
 

From b4ee3e3c0eb2f87a273b57c0b3c688ff389997b9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 14:49:33 -0800
Subject: [PATCH 356/825] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

---
 ...event-changes-to-security-settings-with-tamper-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 02e271f7a0..ad05cd6b37 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -94,7 +94,7 @@ If you are part of your organization's security team, and your subscription incl
 
 You must have appropriate [permissions](../microsoft-defender-atp/assign-portal-access.md), such as global admin, security admin, or security operations, to perform the following task.
 
-1. Make sure your organization meets all of the following requirements to manage tamper protection using Intune:
+1. Make sure your organization meets all of the following requirements to use Intune to manage tamper protection:
 
     - Your organization uses [Intune to manage devices](https://docs.microsoft.com/intune/fundamentals/what-is-device-management). ([Intune licenses](https://docs.microsoft.com/intune/fundamentals/licenses) are required; Intune is included in Microsoft 365 E5.)
     - Your Windows machines must be running Windows 10 OS [1709](https://docs.microsoft.com/windows/release-information/status-windows-10-1709), [1803](https://docs.microsoft.com/windows/release-information/status-windows-10-1803), [1809](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019) or later. (For more information about releases, see [Windows 10 release information](https://docs.microsoft.com/windows/release-information/).)

From 5d6b341c0bb2e780ab14f67652d6ba00b0f9ca64 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 14:51:48 -0800
Subject: [PATCH 357/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 640feefc2f..0c01e2faf7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -73,8 +73,8 @@ The following image shows an instance of unwanted software that was detected and
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
 |Microsoft Defender Antivirus  |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode). |
 |Cloud-delivered protection |Make sure Microsoft Defender Antivirus is configured such that [cloud-delivered protection is enabled](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |
-|Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/>In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
-|Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. <br/> In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
+|Microsoft Defender Antivirus antimalware client |Make sure your client is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. In the **AMProductVersion** line, you should see **4.18.2001.10** or above. |
+|Microsoft Defender Antivirus engine |Make sure your engine is up to date. Using PowerShell, run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/get-mpcomputerstatus?view=win10-ps&preserve-view=true) cmdlet as an administrator. In the **AMEngineVersion** line, you should see **1.1.16700.2** or above. |
 
 > [!IMPORTANT]
 > To get the best protection value, make sure your antivirus solution is configured to receive regular updates and essential features, and that your [exclusions are configured](../microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md). EDR in block mode respects exclusions that are defined for Microsoft Defender Antivirus.

From 3dba1bbb77367ad88111e6c6043b8afcc49adaa9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 14:58:56 -0800
Subject: [PATCH 358/825] fixing applies to

---
 ...igure-block-at-first-sight-microsoft-defender-antivirus.md | 2 +-
 ...cloud-block-timeout-period-microsoft-defender-antivirus.md | 2 +-
 ...figure-network-connections-microsoft-defender-antivirus.md | 2 +-
 ...onfigure-server-exclusions-microsoft-defender-antivirus.md | 4 ++++
 4 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
index 43aa53b445..c3ec759d81 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
@@ -22,7 +22,7 @@ ms.date: 10/22/2020
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Block at first sight provides a way to detect and block new malware within seconds. This protection is enabled by default when certain prerequisite settings are enabled. These settings include cloud-delivered protection, a specified sample submission timeout (such as 50 seconds), and a file-blocking level of high. In most enterprise organizations, these settings are enabled by default with Microsoft Defender Antivirus deployments. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
index 4be673460a..2555377694 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
@@ -23,7 +23,7 @@ manager: dansimp
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 When Microsoft Defender Antivirus finds a suspicious file, it can prevent the file from running while it queries the [Microsoft Defender Antivirus cloud service](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md).
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
index 1485e83d0a..e4896f9709 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
@@ -23,7 +23,7 @@ manager: dansimp
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 To ensure Microsoft Defender Antivirus cloud-delivered protection works properly, you need to configure your network to allow connections between your endpoints and certain Microsoft servers.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
index 1fa6c1665b..7c834bd8e4 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
@@ -19,6 +19,10 @@ ms.custom: nextgen
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
+**Applies to:**
+
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
 
 Microsoft Defender Antivirus on Windows Server 2016 and 2019 automatically enrolls you in certain exclusions, as defined by your specified server role. See the [list of automatic exclusions](#list-of-automatic-exclusions) (in this article). These exclusions do not appear in the standard exclusion lists that are shown in the [Windows Security app](microsoft-defender-security-center-antivirus.md#exclusions).
 

From d6bf4b4138ecceaf7681002939deb5b2877ea4d0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 15:02:00 -0800
Subject: [PATCH 359/825] fixing applies to

---
 .../enable-cloud-protection-microsoft-defender-antivirus.md   | 2 +-
 .../office-365-microsoft-defender-antivirus.md                | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index 2dfddb6de2..69956ae919 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -21,7 +21,7 @@ ms.custom: nextgen
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 > [!NOTE]
 > The Microsoft Defender Antivirus cloud service is a mechanism for delivering updated protection to your network and endpoints. Although it is called a cloud service, it is not simply protection for files stored in the cloud; rather, it uses distributed resources and machine learning to deliver protection to your endpoints at a rate that is far faster than traditional Security intelligence updates.
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
index eb9a31fb16..3ca4e0239b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
@@ -24,9 +24,9 @@ manager: dansimp
 
 
 **Applies to:**
-
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - Microsoft Defender Antivirus
-- Office 365
+- Microsoft 365
 
 You might already know that:
 

From 25d41dd409ac343ca06c27d94e8a888a95691867 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 15:02:37 -0800
Subject: [PATCH 360/825] Update
 specify-cloud-protection-level-microsoft-defender-antivirus.md

---
 ...ecify-cloud-protection-level-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
index 433c59bb6f..79cb4f70cc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
@@ -23,7 +23,7 @@ ms.custom: nextgen
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 You can specify your level of cloud-delivered protection offered by Microsoft Defender Antivirus by using Microsoft Endpoint Manager (recommended) or Group Policy.
 

From 92028eaf0c6845828c9a60a013570fde6b1ba9b6 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 7 Jan 2021 15:02:45 -0800
Subject: [PATCH 361/825] Acrolinx: "Mac OS"

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 9f89eda253..2942c525e6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -57,7 +57,7 @@ Windows 8 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/
 Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
-Mac OS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
+macOS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Android | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 

From ea93ea5f97bada546a57ad649b80bfa2b1c7347e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 15:03:07 -0800
Subject: [PATCH 362/825] Update
 utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md

---
 ...e-microsoft-cloud-protection-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
index da103c7192..b0a598436f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
@@ -21,7 +21,7 @@ ms.custom: nextgen
 
 **Applies to:**
 
-- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Microsoft next-generation technologies in Microsoft Defender Antivirus provide near-instant, automated protection against new and emerging threats. To dynamically identify new threats, these technologies work with large sets of interconnected data in the Microsoft Intelligent Security Graph and powerful artificial intelligence (AI) systems driven by advanced machine learning models.  
 

From 1d2dcd86fa81c9e180615e1233a5ddb222ebda77 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 15:28:08 -0800
Subject: [PATCH 363/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...tes-baselines-microsoft-defender-antivirus.md | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 1b9cc2aad0..cd30c7318d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: pahuijbr
 manager: dansimp
-ms.date: 01/06/2021
+ms.date: 01/07/2021
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines
@@ -387,6 +387,20 @@ We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Wind
 For more information, see [Microsoft Defender update for Windows operating system installation images](https://support.microsoft.com/help/4568292/defender-update-for-windows-operating-system-installation-images).
 
 <details>
+<summary>1.1.2101.02</summary>
+
+&ensp;Package version: **1.1.2101.02**    
+&ensp;Platform version: **4.18.2011.6**   
+&ensp;Engine version: **1.17700.4**  
+&ensp;Signature version: **1.329.1796.0**    
+    
+### Fixes
+- None
+
+### Additional information
+- None  
+<br/>
+</details><details>
 <summary>1.1.2012.01</summary>
 
 &ensp;Package version: **1.1.2012.01**    

From 382f6671f37e1b372ddf193b163026e6cfe81d52 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 7 Jan 2021 15:29:02 -0800
Subject: [PATCH 364/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md     | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index cd30c7318d..b0d94c4785 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -355,7 +355,6 @@ When this update is installed, the device needs the jump package 4.10.2001.10 to
 ## Microsoft Defender Antivirus platform support
 Platform and engine updates are provided on a monthly cadence. To be fully supported, keep current with the latest platform updates. Our support structure is dynamic, evolving into two phases depending on the availability of the latest platform version:
 
-
 - **Security and Critical Updates servicing phase** - When running the latest platform version, you will be eligible to receive both Security and Critical updates to the anti-malware platform.
  
 - **Technical Support (Only) phase** - After a new platform version is released, support for older versions (N-2) will reduce to technical support only. Platform versions older than N-2 will no longer be supported.*

From 1dc25a2dc52b8d2d932ad3a83b8cd97d06a739c0 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 7 Jan 2021 15:51:47 -0800
Subject: [PATCH 365/825] add link to onboarding video

---
 .../microsoft-defender-atp/onboarding.md                 | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
index 5cbe6e5c30..bdcafd18a1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
@@ -43,6 +43,15 @@ These are the steps you need to take to deploy Defender for Endpoint:
 ## Step 1: Onboard endpoints using any of the supported management tools
 The [Plan deployment](deployment-strategy.md) topic outlines the general steps you need to take to deploy Defender for Endpoint.  
 
+
+Watch this video for a quick overview of the onboarding process and learn about the available tools and methods.
+<br />
+<br />
+
+> [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4bGqr]
+
+
+
 After identifying your architecture, you'll need to decide which deployment method to use. The deployment tool you choose influences how you onboard endpoints to the service. 
 
 ### Onboarding tool options

From 6c9cf28542a96b25c59d2d1571ff7371553ac46d Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Fri, 8 Jan 2021 01:27:31 +0100
Subject: [PATCH 366/825] Update enable-exploit-protection.md

From issue ticket #8927 (**No such property as TerminateOnHeapError**):

> In the list of properties used for different security exploit settings for the cmdlets, the properties to be set for 'Validate heap integrity' is labeled wrong.
>
> | Validate heap integrity | System and app-level | TerminateOnHeapError | Audit not available |
>
> **The property 'TerminateOnHeapError' doesn't exist for Heap. It should be TerminateOnError.**

Thanks to dennisl68-castra for noticing and reporting this incorrect term variant.

Changes proposed:
- Change "TerminateOnHeapError" to 'TerminateOnError'

Whitespace changes:
- Add recommended minimum cell divider spacing to the MarkDown table cells
- Align table dividing row cell dividers with the table title row cell dividers
- Add editorial line between footnote mark [2] and second last H2 (##) heading

Closes #8927

Ref. old PR #4351 from July 5, 2019 (before Windows Defender Exploit Guard was changed or retired)
---
 .../enable-exploit-protection.md              | 53 ++++++++++---------
 1 file changed, 27 insertions(+), 26 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 7b1c044a64..cb9f2e13d1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -54,8 +54,8 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 3. Go to **Program settings** and choose the app you want to apply mitigations to. <br/>
     - If the app you want to configure is already listed, click it and then click **Edit**.
     - If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app. <br/>
-     - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
-     - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
+    - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
+    - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You are notified if you need to restart the process or app, or if you need to restart Windows.
 
@@ -114,7 +114,7 @@ The result will be that DEP will be enabled for *test.exe*. DEP will not be enab
 3. Name the profile, choose **Windows 10 and later** and **Endpoint protection**.<br/>
    ![Create endpoint protection profile](../images/create-endpoint-protection-profile.png)<br/>
 
-4. Click **Configure** > **Windows Defender Exploit Guard** > **Exploit protection**.  
+4. Click **Configure** > **Windows Defender Exploit Guard** > **Exploit protection**.
 
 5. Upload an [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) with the exploit protection settings:<br/>![Enable network protection in Intune](../images/enable-ep-intune.png)<br/>
 
@@ -209,29 +209,29 @@ Set-Processmitigation -Name test.exe -Remove -Disable DEP
 
 This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that can be used to configure each mitigation.
 
-|Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet |
-|:---|:---|:---|:---|
-|Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available |
-|Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available |
-|Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available |
-|Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   BottomUp,   HighEntropy  | Audit not available
-|Validate exception chains (SEHOP) | System and app-level |   SEHOP,   SEHOPTelemetry  | Audit not available
-|Validate heap integrity | System and app-level |   TerminateOnHeapError  | Audit not available
-|Arbitrary code guard (ACG) | App-level only |   DynamicCode  |   AuditDynamicCode
-|Block low integrity images | App-level only |   BlockLowLabel  |   AuditImageLoad
-|Block remote images | App-level only |   BlockRemoteImages  | Audit not available
-|Block untrusted fonts | App-level only |   DisableNonSystemFonts  |   AuditFont,   FontAuditOnly
-|Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreSigned  |   AuditMicrosoftSigned,   AuditStoreSigned
-|Disable extension points | App-level only |   ExtensionPoint  | Audit not available
-|Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall
-|Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess
-|Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-|Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-|Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-|Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-|Validate handle usage | App-level only |   StrictHandle  | Audit not available |
-|Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available |
-|Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet |
+| :--------- | :--------- | :----------------- | :---------------- |
+| Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available |
+| Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available |
+| Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available |
+| Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   BottomUp,   HighEntropy  | Audit not available
+| Validate exception chains (SEHOP) | System and app-level |   SEHOP,   SEHOPTelemetry  | Audit not available |
+| Validate heap integrity | System and app-level |   TerminateOnError  | Audit not available |
+| Arbitrary code guard (ACG) | App-level only |   DynamicCode  |   AuditDynamicCode |
+| Block low integrity images | App-level only |   BlockLowLabel  |   AuditImageLoad |
+| Block remote images | App-level only |   BlockRemoteImages  | Audit not available |
+| Block untrusted fonts | App-level only |   DisableNonSystemFonts  |   AuditFont,   FontAuditOnly |
+| Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreSigned  |   AuditMicrosoftSigned,   AuditStoreSigned |
+| Disable extension points | App-level only |   ExtensionPoint  | Audit not available |
+| Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall |
+| Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess |
+| Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Validate handle usage | App-level only |   StrictHandle  | Audit not available |
+| Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available |
+| Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
 
 <a href="#t1" id="r1">\[1\]</a>: Use the following format to enable EAF modules for DLLs for a process:
 
@@ -239,6 +239,7 @@ This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that
 Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlus -EAFModules dllName1.dll,dllName2.dll
 ```
 <a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via Powershell cmdlets.
+
 ## Customize the notification
 
 See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) topic for more information about customizing the notification when a rule is triggered and blocks an app or file.

From 22a2aaed3a53254cad33114b48768ac2a43003f3 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Fri, 8 Jan 2021 01:59:20 +0100
Subject: [PATCH 367/825] Ticket #8926 (Table of PowerShell cmdlets isn't)

> "This table lists the PowerShell cmdlets" doesn't list the cmdlets (there are only three).
> The column marked PowerShell cmdlets seems to refer to property names.

Current table description text:
"This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that can be used to configure each mitigation."

**Suggested description:**
This table lists the individual **Mitigations** (and **Audits**, when available) to be used with the `-Enable` or `-Disable` cmdlet parameters.

Closes #8926
---
 .../microsoft-defender-atp/enable-exploit-protection.md     | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index cb9f2e13d1..8fe52a9432 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -207,10 +207,10 @@ If you need to restore the mitigation back to the system default, you need to in
 Set-Processmitigation -Name test.exe -Remove -Disable DEP
 ```
 
-This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that can be used to configure each mitigation.
+This table lists the individual **Mitigations** (and **Audits**, when available) to be used with the `-Enable` or `-Disable` cmdlet parameters.
 
-| Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet |
-| :--------- | :--------- | :----------------- | :---------------- |
+| Mitigation type | Applies to | Mitigation cmdlet parameter keyword | Audit mode cmdlet parameter |
+| :-------------- | :--------- | :---------------------------------- | :-------------------------- |
 | Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available |
 | Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available |
 | Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available |

From a6b6fb7504436fdb26503baadf99034da0e358de Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Fri, 8 Jan 2021 07:15:27 +0530
Subject: [PATCH 368/825] added  admx templates link for windows 10 20h2

as per user report #8922 , so i added admx templates link for windows 10 20h2
---
 ...unwanted-apps-microsoft-defender-antivirus.md | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index cb05c08abe..73b0e26503 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -110,19 +110,21 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 
 #### Use Group Policy to configure PUA protection
 
-1. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure, and select **Edit**.
+1. First download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)
 
-2. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
+2. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure, and select **Edit**.
 
-3. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
+3. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
 
-4. Double-click **Configure detection for potentially unwanted applications**.
+4. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
 
-5. Select **Enabled** to enable PUA protection.
+5. Double-click **Configure detection for potentially unwanted applications**.
 
-6. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+6. Select **Enabled** to enable PUA protection.
 
-7. Deploy your Group Policy object as you usually do.
+7. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+
+8. Deploy your Group Policy object as you usually do.
 
 #### Use PowerShell cmdlets to configure PUA protection
 

From 4e744a03176f3b387f71d98005fe7bd3d25f7319 Mon Sep 17 00:00:00 2001
From: Benny Shilpa <v-bshilpa@microsoft.com>
Date: Fri, 8 Jan 2021 12:48:00 +0530
Subject: [PATCH 369/825] Update symantec-to-microsoft-defender-atp-setup.md

---
 .../symantec-to-microsoft-defender-atp-setup.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
index 72385ecf92..d251f87b7a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
@@ -117,7 +117,7 @@ Microsoft Defender Antivirus can run alongside Symantec if you set Microsoft Def
 |Method  |What to do  |
 |---------|---------|
 |Command Prompt     |1. On a Windows device, open Command Prompt as an administrator. <br/><br/>2. Type `sc query windefend`, and then press Enter.<br/><br/>3. Review the results to confirm that Microsoft Defender Antivirus is running in passive mode.         |
-|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for **AntivirusEnabled: True**.          |
+|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for either **AMRunningMode: Passive Mode** or **AMRunningMode: SxS Passive Mode**.|
 
 > [!NOTE]
 > You might see *Windows Defender Antivirus* instead of *Microsoft Defender Antivirus* in some versions of Windows.

From 8910a420b285c848ad75714291673b1f4493b864 Mon Sep 17 00:00:00 2001
From: Benny Shilpa <v-bshilpa@microsoft.com>
Date: Fri, 8 Jan 2021 12:58:17 +0530
Subject: [PATCH 370/825] Update mcafee-to-microsoft-defender-setup.md

---
 .../mcafee-to-microsoft-defender-setup.md                       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
index 432aed7160..8b4ea42244 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
@@ -142,7 +142,7 @@ Microsoft Defender Antivirus can run alongside McAfee if you set Microsoft Defen
 |Method  |What to do  |
 |---------|---------|
 |Command Prompt     |1. On a Windows device, open Command Prompt as an administrator. <br/><br/>2. Type `sc query windefend`, and then press Enter.<br/><br/>3. Review the results to confirm that Microsoft Defender Antivirus is running in passive mode.         |
-|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for **AntivirusEnabled: True**.          |
+|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for either **AMRunningMode: Passive Mode** or **AMRunningMode: SxS Passive Mode**.|
 
 > [!NOTE]
 > You might see *Windows Defender Antivirus* instead of *Microsoft Defender Antivirus* in some versions of Windows.

From abc9f48f50788ec2ffa57a803e9f745ba3ceb7fe Mon Sep 17 00:00:00 2001
From: Benny Shilpa <v-bshilpa@microsoft.com>
Date: Fri, 8 Jan 2021 13:02:40 +0530
Subject: [PATCH 371/825] Update switch-to-microsoft-defender-setup.md

---
 .../switch-to-microsoft-defender-setup.md                       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
index c1ad46027c..cce6dd54eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
@@ -138,7 +138,7 @@ Microsoft Defender Antivirus can run alongside your existing endpoint protection
 |Method  |What to do  |
 |---------|---------|
 |Command Prompt     |1. On a Windows device, open Command Prompt as an administrator. <br/><br/>2. Type `sc query windefend`, and then press Enter.<br/><br/>3. Review the results to confirm that Microsoft Defender Antivirus is running in passive mode.         |
-|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for **AntivirusEnabled: True**.          |
+|PowerShell     |1. On a Windows device, open Windows PowerShell as an administrator.<br/><br/>2. Run the [Get-MpComputerStatus](https://docs.microsoft.com/powershell/module/defender/Get-MpComputerStatus) cmdlet. <br/><br/>3. In the list of results, look for either **AMRunningMode: Passive Mode** or **AMRunningMode: SxS Passive Mode**.          |
 
 > [!NOTE]
 > You might see *Windows Defender Antivirus* instead of *Microsoft Defender Antivirus* in some versions of Windows.

From 1bac573680eca1f8f8856b85e0aedb5eb942a1b8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 09:39:32 -0800
Subject: [PATCH 372/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

---
 ...ck-potentially-unwanted-apps-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 73b0e26503..2e9a3babb4 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 audience: ITPro
-ms.date: 11/30/2020
+ms.date: 01/08/2021
 ms.reviewer: 
 manager: dansimp
 ---

From 9841d91419757ca722fdd55cdb356b6d9c91384f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 09:41:20 -0800
Subject: [PATCH 373/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

---
 ...wanted-apps-microsoft-defender-antivirus.md | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 2e9a3babb4..9be1ca37a3 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -110,21 +110,23 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 
 #### Use Group Policy to configure PUA protection
 
-1. First download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)
+1. Download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)
 
-2. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure, and select **Edit**.
+2. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)).
 
-3. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
+3. Select the Group Policy Object you want to configure, and then choose **Edit**.
 
-4. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
+4. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
 
-5. Double-click **Configure detection for potentially unwanted applications**.
+5. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
 
-6. Select **Enabled** to enable PUA protection.
+6. Double-click **Configure detection for potentially unwanted applications**.
 
-7. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+7. Select **Enabled** to enable PUA protection.
 
-8. Deploy your Group Policy object as you usually do.
+8. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+
+9. Deploy your Group Policy object as you usually do.
 
 #### Use PowerShell cmdlets to configure PUA protection
 

From 2e7e01b0ae18ed40d1c6b0a5506e51e258197957 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 09:43:28 -0800
Subject: [PATCH 374/825] Update enable-exploit-protection.md

---
 .../microsoft-defender-atp/enable-exploit-protection.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 8fe52a9432..6af9be7d68 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -47,7 +47,7 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 
 ## Windows Security app
 
-1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
+1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Security**.
 
 2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then click **Exploit protection settings**.
 

From f556d65b446200c395df9087b5e3a12645fb3513 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 09:46:11 -0800
Subject: [PATCH 375/825] Update enable-exploit-protection.md

---
 .../enable-exploit-protection.md              | 22 ++++++++-----------
 1 file changed, 9 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 6af9be7d68..c015175767 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -30,14 +30,13 @@ manager: dansimp
 
 Many features from the Enhanced Mitigation Experience Toolkit (EMET) are included in exploit protection.
 
-You can enable each mitigation separately by using any of these methods:
-
-* [Windows Security app](#windows-security-app)
-* [Microsoft Intune](#intune)
-* [Mobile Device Management (MDM)](#mdm)
-* [Microsoft Endpoint Configuration Manager](#microsoft-endpoint-configuration-manager)
-* [Group Policy](#group-policy)
-* [PowerShell](#powershell)
+You can enable each mitigation separately by using any of these methods:   
+- [Windows Security app](#windows-security-app)
+- [Microsoft Intune](#intune)
+- [Mobile Device Management (MDM)](#mdm)
+- [Microsoft Endpoint Configuration Manager](#microsoft-endpoint-configuration-manager)
+- [Group Policy](#group-policy)
+- [PowerShell](#powershell)
 
 Exploit protection is configured by default in Windows 10. You can set each mitigation to on, off, or to its default value. Some mitigations have additional options.
 
@@ -160,11 +159,8 @@ Get-ProcessMitigation -Name processName.exe
 
 > [!IMPORTANT]
 > System-level mitigations that have not been configured will show a status of `NOTSET`.
->
-> For system-level settings, `NOTSET` indicates the default setting for that mitigation has been applied.
->
-> For app-level settings, `NOTSET` indicates the system-level setting for the mitigation will be applied.
->
+> - For system-level settings, `NOTSET` indicates the default setting for that mitigation has been applied.
+> - For app-level settings, `NOTSET` indicates the system-level setting for the mitigation will be applied.
 > The default setting for each system-level mitigation can be seen in the Windows Security.
 
 Use `Set` to configure each mitigation in the following format:

From e1b5c852b3ad22d351b96c9be83f1a63278f8e0c Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Fri, 8 Jan 2021 09:59:09 -0800
Subject: [PATCH 376/825] added file name extension lines 66 74  131

---
 windows/privacy/manage-windows-20H2-endpoints.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/privacy/manage-windows-20H2-endpoints.md b/windows/privacy/manage-windows-20H2-endpoints.md
index 57c2ce989d..d449b47b4c 100644
--- a/windows/privacy/manage-windows-20H2-endpoints.md
+++ b/windows/privacy/manage-windows-20H2-endpoints.md
@@ -63,7 +63,7 @@ The following methodology was used to derive these network endpoints:
 |||HTTPS|s-ring.msedge.net|
 |Device authentication|||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-priv-feedback)|
 ||The following endpoint is used to authenticate a device. If you  turn off traffic for this endpoint, the device will not be authenticated.|HTTPS|login.live.com*|
-|Device metadata|The following endpoint is used to retrieve device metadata. If you turn off traffic for this endpoint, metadata will not be updated for the device.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#4-device-metadata-retrieval)|
+|Device metadata|The following endpoint is used to retrieve device metadata. If you turn off traffic for this endpoint, metadata will not be updated for the device.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#4-device-metadata-retrieval)|
 |||HTTP|dmd.metaservices.microsoft.com|
 |Diagnostic Data|The following endpoints are used by the Connected User Experiences and Telemetry component and connects to the Microsoft Data Management service. If you turn off traffic for this endpoint, diagnostic and usage information, which helps Microsoft find and fix problems and improve our products and services, will not be sent back to Microsoft. ||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#bkmk-priv-feedback)|
 |||TLSv1.2/HTTPS/HTTP|v10.events.data.microsoft.com|
@@ -71,7 +71,7 @@ The following methodology was used to derive these network endpoints:
 |||HTTP|www.microsoft.com|
 ||The following endpoints are used by Windows Error Reporting. To turn off traffic for these endpoints, enable the following Group Policy: Administrative Templates > Windows Components > Windows Error Reporting > Disable Windows Error Reporting. This means error reporting information will not be sent back to Microsoft.|TLSv1.2|telecommand.telemetry.microsoft.com|
 |||TLS v1.2/HTTPS/HTTP|watson.*.microsoft.com|
-|Font Streaming|The following endpoints are used to download fonts on demand. If you turn off traffic for these endpoints, you will not be able to download fonts on demand.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#6-font-streaming)|
+|Font Streaming|The following endpoints are used to download fonts on demand. If you turn off traffic for these endpoints, you will not be able to download fonts on demand.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#6-font-streaming)|
 |||HTTPS|fs.microsoft.com|
 |Licensing|The following endpoint is used for online activation and some app licensing. To turn off traffic for this endpoint, disable the Windows License Manager Service. This will also block online activation and app licensing may not work.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#9-license-manager)|
 |||TLSv1.2/HTTPS/HTTP|licensing.mp.microsoft.com|
@@ -128,7 +128,7 @@ The following methodology was used to derive these network endpoints:
 |||TLSv1.2/HTTPS/HTTP|*.update.microsoft.com|
 ||The following endpoint is used for compatibility database updates for Windows.|HTTPS|adl.windows.com|
 ||The following endpoint is used for content regulation. If you turn off traffic for this endpoint, the Windows Update Agent will be unable to contact the endpoint and fallback behavior will be used. This may result in content being either incorrectly downloaded or not downloaded at all.|TLSv1.2/HTTPS/HTTP|tsfe.trafficshaping.dsp.mp.microsoft.com|
-|Xbox Live|The following endpoint is used for Xbox Live.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services#26-microsoft-store)|
+|Xbox Live|The following endpoint is used for Xbox Live.||[Learn how to turn off traffic to all of the following endpoint(s).](manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
 |||HTTPS|dlassets-ssl.xboxlive.com|
 
 

From 3feb98073f1dd6cb03f646e9f623a95715a0a316 Mon Sep 17 00:00:00 2001
From: Thomas <v-thraya@microsoft.com>
Date: Fri, 8 Jan 2021 10:19:23 -0800
Subject: [PATCH 377/825] Update customize-exploit-protection.md

update links
---
 .../customize-exploit-protection.md           | 50 +++++++++----------
 1 file changed, 25 insertions(+), 25 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
index 964158b256..3c72846e6a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
@@ -48,27 +48,27 @@ For the associated PowerShell cmdlets for each mitigation, see the [PowerShell r
 
 | Mitigation | Description | Can be applied to | Audit mode available |
 | ---------- | ----------- | ----------------- | -------------------- |
-| Control flow guard (CFG) | Ensures control flow integrity for indirect calls. Can optionally suppress exports and use strict CFG. | System and app-level | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Data Execution Prevention (DEP) | Prevents code from being run from data-only memory pages such as the heap and stacks. Only configurable for 32-bit (x86) apps, permanently enabled for all other architectures. Can optionally enable ATL thunk emulation. | System and app-level  | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Force randomization for images (Mandatory ASLR) | Forcibly relocates images not compiled with /DYNAMICBASE. Can optionally fail loading images that don't have relocation information. | System and app-level  | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Randomize memory allocations (Bottom-Up ASLR) | Randomizes locations for virtual memory allocations. It includes system structure heaps, stacks, TEBs, and PEBs. Can optionally use a wider randomization variance for 64-bit processes. | System and app-level | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Validate exception chains (SEHOP) | Ensures the integrity of an exception chain during exception dispatch. Only configurable for 32-bit (x86) applications. | System and app-level  | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Validate heap integrity | Terminates a process when heap corruption is detected. | System and app-level  | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Arbitrary code guard (ACG) | Prevents the introduction of non-image-backed executable code and prevents code pages from being modified. Can optionally allow thread opt-out and allow remote downgrade (configurable only with PowerShell). | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Block low integrity images | Prevents the loading of images marked with Low Integrity. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Block remote images | Prevents loading of images from remote devices. | App-level only | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Block untrusted fonts | Prevents loading any GDI-based fonts not installed in the system fonts directory, notably fonts from the web. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Code integrity guard | Restricts loading of images signed by Microsoft, WHQL, or higher. Can optionally allow Microsoft Store signed images. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Disable extension points | Disables various extensibility mechanisms that allow DLL injection into all processes, such as AppInit DLLs, window hooks, and Winsock service providers. | App-level only | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Disable Win32k system calls | Prevents an app from using the Win32k system call table. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Don't allow child processes | Prevents an app from creating child processes. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Export address filtering (EAF) | Detects dangerous operations being resolved by malicious code. Can optionally validate access by modules commonly used by exploits. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Import address filtering (IAF) | Detects dangerous operations being resolved by malicious code. | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Simulate execution (SimExec) | Ensures that calls to sensitive APIs return to legitimate callers. Only configurable for 32-bit (x86) applications. Not compatible with ACG | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Validate API invocation (CallerCheck) | Ensures that sensitive APIs are invoked by legitimate callers. Only configurable for 32-bit (x86) applications. Not compatible with ACG | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
-| Validate handle usage | Causes an exception to be raised on any invalid handle references. | App-level only | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Validate image dependency integrity | Enforces code signing for Windows image dependency loading. | App-level only | [!include[Check mark no](../images/svg/check-no.svg)] |
-| Validate stack integrity (StackPivot) | Ensures that the stack hasn't been redirected for sensitive APIs. Not compatible with ACG | App-level only | [!include[Check mark yes](../images/svg/check-yes.svg)] |
+| Control flow guard (CFG) | Ensures control flow integrity for indirect calls. Can optionally suppress exports and use strict CFG. | System and app-level | ![Check mark no](../images/svg/check-no.svg) |
+| Data Execution Prevention (DEP) | Prevents code from being run from data-only memory pages such as the heap and stacks. Only configurable for 32-bit (x86) apps, permanently enabled for all other architectures. Can optionally enable ATL thunk emulation. | System and app-level  | ![Check mark no](../images/svg/check-no.svg) |
+| Force randomization for images (Mandatory ASLR) | Forcibly relocates images not compiled with /DYNAMICBASE. Can optionally fail loading images that don't have relocation information. | System and app-level  | ![Check mark no](../images/svg/check-no.svg) |
+| Randomize memory allocations (Bottom-Up ASLR) | Randomizes locations for virtual memory allocations. It includes system structure heaps, stacks, TEBs, and PEBs. Can optionally use a wider randomization variance for 64-bit processes. | System and app-level | ![Check mark no](../images/svg/check-no.svg) |
+| Validate exception chains (SEHOP) | Ensures the integrity of an exception chain during exception dispatch. Only configurable for 32-bit (x86) applications. | System and app-level  | ![Check mark no](../images/svg/check-no.svg) |
+| Validate heap integrity | Terminates a process when heap corruption is detected. | System and app-level  | ![Check mark no](../images/svg/check-no.svg) |
+| Arbitrary code guard (ACG) | Prevents the introduction of non-image-backed executable code and prevents code pages from being modified. Can optionally allow thread opt-out and allow remote downgrade (configurable only with PowerShell). | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Block low integrity images | Prevents the loading of images marked with Low Integrity. | App-level only | ![Check mark yes](../images/svg/check-yes.svg)|
+| Block remote images | Prevents loading of images from remote devices. | App-level only | ![Check mark no](../images/svg/check-no.svg |
+| Block untrusted fonts | Prevents loading any GDI-based fonts not installed in the system fonts directory, notably fonts from the web. | App-level only | !include[Check mark yes](../images/svg/check-yes.svg) |
+| Code integrity guard | Restricts loading of images signed by Microsoft, WHQL, or higher. Can optionally allow Microsoft Store signed images. | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Disable extension points | Disables various extensibility mechanisms that allow DLL injection into all processes, such as AppInit DLLs, window hooks, and Winsock service providers. | App-level only | ![Check mark no](../images/svg/check-no.svg) |
+| Disable Win32k system calls | Prevents an app from using the Win32k system call table. | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Don't allow child processes | Prevents an app from creating child processes. | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Export address filtering (EAF) | Detects dangerous operations being resolved by malicious code. Can optionally validate access by modules commonly used by exploits. | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Import address filtering (IAF) | Detects dangerous operations being resolved by malicious code. | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Simulate execution (SimExec) | Ensures that calls to sensitive APIs return to legitimate callers. Only configurable for 32-bit (x86) applications. Not compatible with ACG | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Validate API invocation (CallerCheck) | Ensures that sensitive APIs are invoked by legitimate callers. Only configurable for 32-bit (x86) applications. Not compatible with ACG | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
+| Validate handle usage | Causes an exception to be raised on any invalid handle references. | App-level only | ![Check mark no](../images/svg/check-no.svg) |
+| Validate image dependency integrity | Enforces code signing for Windows image dependency loading. | App-level only | ![Check mark no](../images/svg/check-no.svg) |
+| Validate stack integrity (StackPivot) | Ensures that the stack hasn't been redirected for sensitive APIs. Not compatible with ACG | App-level only | ![Check mark yes](../images/svg/check-yes.svg) |
 
 > [!IMPORTANT]
 > If you add an app to the **Program settings** section and configure individual mitigation settings there, they will be honored above the configuration for the same mitigations specified in the **System settings** section. The following matrix and examples help to illustrate how defaults work:
@@ -76,10 +76,10 @@ For the associated PowerShell cmdlets for each mitigation, see the [PowerShell r
 >
 > | Enabled in **Program settings** | Enabled in **System settings** | Behavior |
 > | ------------------------------- | ------------------------------ | -------- |
-> | [!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark no](../images/svg/check-no.svg)] | As defined in **Program settings** |
-> | [!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **Program settings** |
-> | [!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **System settings** |
-> | [!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | Default as defined in **Use default** option |
+> | ![Check mark yes](../images/svg/check-yes.svg) | ![Check mark no](../images/svg/check-no.svg) | As defined in **Program settings** |
+> | ![Check mark yes](../images/svg/check-yes.svg) | ![Check mark yes](../images/svg/check-yes.svg) | As defined in **Program settings** |
+> | ![Check mark no](../images/svg/check-no.svg) | ![Check mark yes](../images/svg/check-yes.svg) | As defined in **System settings** |
+> | ![Check mark no](../images/svg/check-no.svg) | ![Check mark yes](../images/svg/check-yes.svg) | Default as defined in **Use default** option |
 >
 >
 >

From ad73f161db7095f445502d8f7bbb1dc1e058b961 Mon Sep 17 00:00:00 2001
From: Thomas <v-thraya@microsoft.com>
Date: Fri, 8 Jan 2021 10:21:55 -0800
Subject: [PATCH 378/825] Update enable-exploit-protection.md

update links
---
 .../microsoft-defender-atp/enable-exploit-protection.md   | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index c015175767..91a6dc887a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -71,10 +71,10 @@ If you add an app to the **Program settings** section and configure individual m
 
 |Enabled in **Program settings** | Enabled in **System settings** | Behavior |
 |:---|:---|:---|
-|[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark no](../images/svg/check-no.svg)] | As defined in **Program settings** |
-|[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **Program settings** |
-|[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **System settings** |
-|[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | Default as defined in **Use default** option |
+|![Check mark yes](../images/svg/check-yes.svg) | ![Check mark no](../images/svg/check-no.svg) | As defined in **Program settings** |
+|![Check mark yes](../images/svg/check-yes.svg) | ![Check mark yes](../images/svg/check-yes.svg) | As defined in **Program settings** |
+|![Check mark no](../images/svg/check-no.svg) | ![Check mark yes](../images/svg/check-yes.svg) | As defined in **System settings** |
+|![Check mark no](../images/svg/check-no.svg) | ![Check mark yes](../images/svg/check-yes.svg) | Default as defined in **Use default** option |
 
 ### Example 1: Mikael configures Data Execution Prevention in system settings section to be off by default
 

From da5b55e02a6238dae3042b348ec186ffe45932ad Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 10:36:11 -0800
Subject: [PATCH 379/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 6224bb44dc..822248f510 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -14,7 +14,7 @@ ms.author: deniseb
 ms.reviewer: sugamar, jcedola
 manager: dansimp
 ms.custom: asr
-ms.date: 12/10/2020
+ms.date: 01/08/2021
 ---
 
 # Use attack surface reduction rules to prevent malware infection

From 34939f9bc55c5f9880bd01b93d3d635137b1508c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 8 Jan 2021 10:36:45 -0800
Subject: [PATCH 380/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 822248f510..bc606abd44 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -468,4 +468,4 @@ GUID: `c1db55ab-c21a-4637-bb3f-a12568109d35`
 
 - [Evaluate attack surface reduction rules](evaluate-attack-surface-reduction.md)
 
-- [Compatibility of Microsoft Defender with other antivirus/antimalware](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md)
+- [Compatibility of Microsoft Defender Antivirus with other antivirus/antimalware solutions](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md)

From a9eac9ce2c51bbfd633bfea56ed3114b1d5dc45a Mon Sep 17 00:00:00 2001
From: MatthewMWR <MatthewMWR@users.noreply.github.com>
Date: Fri, 8 Jan 2021 10:37:46 -0800
Subject: [PATCH 381/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 53237c0460..2886684560 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -225,7 +225,7 @@ The `results.xml` file is the authoritative map to the output. It includes a sta
 </Collection>
 ```
 
-Administrators can apply automation to 'results.xml' to create their own preferred views of the data. For example, the following PowerShell one-liner extracts from the xml an ordered list of the directives with status code and details.
+Administrators can apply automation to 'results.xml' to create their own preferred views of the data. For example, the following PowerShell one-liner extracts from the XML an ordered list of the directives with status code and details.
 ```powershell
 Select-XML -Path results.xml -XPath '//RegistryKey | //Command | //Events | //FoldersFiles' | Foreach-Object -Begin {$i=1} -Process { [pscustomobject]@{DirectiveNumber=$i; DirectiveHRESULT=$_.Node.HRESULT; DirectiveInput=$_.Node.('#text')} ; $i++}
 ```

From 64cd49d15cc44b6041550671592b071a864ce992 Mon Sep 17 00:00:00 2001
From: MatthewMWR <MatthewMWR@users.noreply.github.com>
Date: Fri, 8 Jan 2021 10:38:09 -0800
Subject: [PATCH 382/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 2886684560..88bc21ea43 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -229,7 +229,7 @@ Administrators can apply automation to 'results.xml' to create their own preferr
 ```powershell
 Select-XML -Path results.xml -XPath '//RegistryKey | //Command | //Events | //FoldersFiles' | Foreach-Object -Begin {$i=1} -Process { [pscustomobject]@{DirectiveNumber=$i; DirectiveHRESULT=$_.Node.HRESULT; DirectiveInput=$_.Node.('#text')} ; $i++}
 ```
-This example produces output similar to the following.
+This example produces output similar to the following:
 ```
 DirectiveNumber DirectiveHRESULT DirectiveInput
 --------------- ---------------- --------------

From 03d2a6bd4f8252c49934d275cbf3c41bef2e88d2 Mon Sep 17 00:00:00 2001
From: MatthewMWR <MatthewMWR@users.noreply.github.com>
Date: Fri, 8 Jan 2021 10:38:29 -0800
Subject: [PATCH 383/825] Update
 windows/client-management/mdm/diagnosticlog-csp.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/mdm/diagnosticlog-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/diagnosticlog-csp.md b/windows/client-management/mdm/diagnosticlog-csp.md
index 88bc21ea43..fb9c1a57d8 100644
--- a/windows/client-management/mdm/diagnosticlog-csp.md
+++ b/windows/client-management/mdm/diagnosticlog-csp.md
@@ -286,7 +286,7 @@ foreach( $element in $resultElements )
 #endregion 
 Remove-Item -Path $diagnosticArchiveTempUnzippedPath -Force -Recurse
 ```
-That example script produces a set of files similar to the following, which can be a useful view for an administrator interactively browsing the results without needing to navigate any sub-folders or refer to `results.xml` repeatedly. 
+That example script produces a set of files similar to the following, which can be a useful view for an administrator interactively browsing the results without needing to navigate any sub-folders or refer to `results.xml` repeatedly:
 
 ```powershell
 PS C:\> dir C:\DiagArchiveExamples\DiagLogs-MYDEVICE-20201202T182748Z.zip_formatted | format-table Length,Name

From 28fcf74b43190e649ce3140c622765482be83a32 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Sat, 9 Jan 2021 17:33:49 +0100
Subject: [PATCH 384/825] Credential Guard: Windows 10 Enterprise required

From issue ticket #8935 (**clarify enterprise sku**):
> based on the discussion here #4025, the following confirmation from MSRC 61355 and the resulting PR #8435 -
>
> could this page also be updated to specifically list "Windows 10 Enterprise" in the requirements list, to avoid confusion from Windows 10 Pro/Home?

Thanks to @rrsit for noticing and reporting the lack of clarity in this document.

Changes proposed:

- State _specifically_ that Credential Guard _supports_ and _requires_ Windows 10 **Enterprise**
- Dictionary correction: "writeable" => 'writable' (2 occurrences; the 2017 table Description text, ending Note blob)

Closes #8935
---
 .../credential-guard/credential-guard-requirements.md       | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/credential-guard-requirements.md b/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
index 2e56e0803c..6768635d8f 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
@@ -20,7 +20,7 @@ ms.reviewer:
 
 ## Applies to
 
-- Windows 10
+- Windows 10 Enterprise
 - Windows Server 2016
 
 For Windows Defender Credential Guard to provide protection, the computers you are protecting must meet certain baseline hardware, firmware, and software requirements, which we will refer to as [Hardware and software requirements](#hardware-and-software-requirements). Additionally, Windows Defender Credential Guard blocks specific authentication capabilities, so applications that require such capabilities will break. We will refer to these requirements as [Application requirements](#application-requirements). Beyond these requirements, computers can meet additional hardware and firmware qualifications, and receive additional protections. Those computers will be more hardened against certain threats. For detailed information on baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, 2016, and 2017, refer to the tables in [Security Considerations](#security-considerations).
@@ -135,7 +135,7 @@ The following table lists qualifications for Windows 10, version 1703, which are
 
 |Protections for Improved Security|Description|Security Benefits
 |---|---|---|
-|Firmware: **VBS enablement of No-Execute (NX) protection for UEFI runtime services**|**Requirements**: </br> - VBS will enable NX protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be executable. UEFI runtime service must meet these requirements: </br> - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table. </br> - PE sections must be page-aligned in memory (not required for in non-volatile storage). </br> - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS: </br> - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both. </br> - No entries may be left with neither of the above attributes, indicating memory that is both executable and writable. Memory must be either readable and executable or writeable and non-executable. </br> (**SEE IMPORTANT INFORMATION AFTER THIS TABLE**)|Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable) </br> - Reduces the attack surface to VBS from system firmware.|
+|Firmware: **VBS enablement of No-Execute (NX) protection for UEFI runtime services**|**Requirements**: </br> - VBS will enable NX protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be executable. UEFI runtime service must meet these requirements: </br> - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table. </br> - PE sections must be page-aligned in memory (not required for in non-volatile storage). </br> - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS: </br> - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both. </br> - No entries may be left with neither of the above attributes, indicating memory that is both executable and writable. Memory must be either readable and executable or writable and non-executable. </br> (**SEE IMPORTANT INFORMATION AFTER THIS TABLE**)|Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable) </br> - Reduces the attack surface to VBS from system firmware.|
 |Firmware: **Firmware support for SMM protection**|**Requirements**: </br> - The [Windows SMM Security Mitigations Table (WSMT) specification](https://download.microsoft.com/download/1/8/A/18A21244-EB67-4538-BAA2-1A54E0E490B6/WSMT.docx) contains details of an ACPI table that was created for use with Windows operating systems that support Windows virtualization-based security (VBS) features.|- Protects against potential vulnerabilities in UEFI runtime services, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable) </br> - Reduces the attack surface to VBS from system firmware. </br> - Blocks additional security attacks against SMM.|
 
 > [!IMPORTANT]
@@ -148,7 +148,7 @@ The following table lists qualifications for Windows 10, version 1703, which are
 >
 >   Please also note the following:
 >
->   - Do not use sections that are both writeable and executable
+>   - Do not use sections that are both writable and executable
 >
 >   - Do not attempt to directly modify executable system memory
 >

From 821c2ac0c367f9eba6f3c51bb5b494816c942d8e Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 11 Jan 2021 14:31:09 +0200
Subject: [PATCH 385/825] change log level to debug

---
 .../microsoft-defender-atp/linux-resources.md             | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index 3b12f36855..2fc939ef09 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -36,20 +36,23 @@ If you can reproduce a problem, first increase the logging level, run the system
 1. Increase logging level:
 
    ```bash
-   mdatp log level set --level verbose
+   mdatp log level set --level debug
    ```
+
    ```Output
    Log level configured successfully
    ```
 
 2. Reproduce the problem.
 
-3. Run the following command to back up Defender for Endpoint's logs. The files will be stored inside of a .zip archive. 
+3. Run the following command to back up Defender for Endpoint's logs. The files will be stored inside of a .zip archive.
 
    ```bash
    sudo mdatp diagnostic create
    ```
+
     This command will also print out the file path to the backup after the operation succeeds:
+
    ```Output
    Diagnostic file created: <path to file>
    ```
@@ -59,6 +62,7 @@ If you can reproduce a problem, first increase the logging level, run the system
    ```bash
    mdatp log level set --level info
    ```
+
    ```Output
    Log level configured successfully
    ```

From f0f90ce9d474af605fc0786ecfab269ce0b6ec63 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Mon, 11 Jan 2021 14:45:52 +0200
Subject: [PATCH 386/825] adding edr cli documentation

---
 .../microsoft-defender-atp/linux-resources.md                 | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index 2fc939ef09..fa1b975d62 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -128,6 +128,10 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Quarantine management |Add a file detected as a threat to the quarantine       |`mdatp threat quarantine add --id [threat-id]`                         |
 |Quarantine management |Remove a file detected as a threat from the quarantine  |`mdatp threat quarantine remove --id [threat-id]`                      |
 |Quarantine management |Restore a file from the quarantine                      |`mdatp threat quarantine restore --id [threat-id]`                     |
+|Endpoint Detection and Response |Set early preview (unused)                    |`mdatp edr early-preview [enable|disable]`                             |
+|Endpoint Detection and Response |Set group-id                                  |`mdatp edr group-ids --group-id [group-id]`                            |
+|Endpoint Detection and Response |Set/Remove tag, only `GROUP` supported        |`mdatp edr tag set --name GROUP --value [tag]`                         |
+|Endpoint Detection and Response |list exclusions (root)                        |`mdatp edr exclusion list [processes|paths|extensions|all]`            |
 
 ## Microsoft Defender for Endpoint portal information
 

From 3609c8cf1b6aaeef7aa98a2d4eb95f261ede0a55 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Mon, 11 Jan 2021 08:59:37 -0800
Subject: [PATCH 387/825] Update bitlocker-group-policy-settings.md

Updated supported operating systems to include the ones from the previous file we redirected due to formatting issues.
---
 .../bitlocker/bitlocker-group-policy-settings.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md b/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
index f6f72e035f..1fa0d3b9e3 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
@@ -22,7 +22,7 @@ ms.custom: bitlocker
 
 **Applies to**
 
-- Windows 10
+- Windows 10, Windows Server 2019, Windows Server 2016, Windows 8.1, and Windows Server 2012 R2
 
 This topic for IT professionals describes the function, location, and effect of each Group Policy setting that is used to manage BitLocker Drive Encryption.
 

From 330baaf27cdc43db275c1154478d92b6a96addcf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 11 Jan 2021 09:01:06 -0800
Subject: [PATCH 388/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index e2f17d8448..a487a3c18c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: pahuijbr, shwjha
 manager: dansimp
-ms.date: 01/04/2021
+ms.date: 01/11/2021
 ---
 
 # Microsoft Defender Antivirus compatibility
@@ -71,7 +71,7 @@ The following table summarizes the functionality and features that are available
 |State |[Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) |
 |--|--|--|--|--|--|
 |Active mode <br/><br/>  |Yes |No |Yes |Yes |Yes |
-|Passive mode  |Yes |No |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
+|Passive mode  |No |No |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
 |[EDR in block mode enabled](../microsoft-defender-atp/edr-in-block-mode.md)  |No |No |Yes |Yes |Yes |
 |Automatic disabled mode  |No |Yes |No |No |No |
 

From 2c6833a08516d06aa067d0bb27ac08125d2c742e Mon Sep 17 00:00:00 2001
From: Ben Watt <13239035+wattbt@users.noreply.github.com>
Date: Mon, 11 Jan 2021 17:09:53 +0000
Subject: [PATCH 389/825] Title text change to new naming

The web page title was left still referring to Defender ATP, so updated for Defender for Endpoint. Not sure if other pages also are missing this change when the rest of the page was updated.
---
 .../microsoft-defender-atp/onboard-offline-machines.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
index e3aea210fc..0d267cf0ea 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
@@ -1,5 +1,5 @@
 ---
-title: Onboard devices without Internet access to Microsoft Defender ATP
+title: Onboard devices without Internet access to Microsoft Defender for Endpoint
 ms.reviewer: 
 description: Onboard devices without Internet access so that they can send sensor data to the Microsoft Defender ATP sensor
 keywords: onboard, servers, vm, on-premise, oms gateway, log analytics, azure log analytics, mma

From 8b0eada3f567ea5f00ae70bf40252b3b1045bc3c Mon Sep 17 00:00:00 2001
From: Caroline Gitonga <v-cagito@microsoft.com>
Date: Mon, 11 Jan 2021 20:23:32 +0300
Subject: [PATCH 390/825] Update diagnostic data level taxonomy

Sections changed: Insider Preview builds and Feedback & diagnostics
---
 ...ndows-operating-system-components-to-microsoft-services.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
index 4c6e0b8880..b40f5823e6 100644
--- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
+++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
@@ -390,7 +390,7 @@ Windows Insider Preview builds only apply to Windows 10 and are not available fo
 
 
 > [!NOTE]
-> If you upgrade a device that is configured to minimize connections from Windows to Microsoft services (that is, a device configured for Restricted Traffic) to a Windows Insider Preview build, the Feedback & Diagnostic setting will automatically be set to **Full**. Although the diagnostic data level may initially appear as **Basic**, a few hours after the UI is refreshed or the machine is rebooted, the setting will become **Full**.
+> If you upgrade a device that is configured to minimize connections from Windows to Microsoft services (that is, a device configured for Restricted Traffic) to a Windows Insider Preview build, the Feedback & Diagnostic setting will automatically be set to **Optional (Full)**. Although the diagnostic data level may initially appear as **Required (Basic)**, a few hours after the UI is refreshed or the machine is rebooted, the setting will become **Optional (Full)**.
 
 To turn off Insider Preview builds for a released version of Windows 10:
 
@@ -1302,7 +1302,7 @@ To change how frequently **Windows should ask for my feedback**:
 
 To change the level of diagnostic and usage data sent when you **Send your device data to Microsoft**:
 
-- Click either the **Basic** or **Full** options.
+- Click either the **Required (Basic)** or **Optional (Full)** options.
 
   -or-
 

From 650539f1d34c0dbb1a6800fd6279b293c4f7cb15 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 11 Jan 2021 10:23:49 -0800
Subject: [PATCH 391/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md          | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index a487a3c18c..9f5add4dfe 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -66,7 +66,10 @@ See [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-def
 
 ## Functionality and features available in each state
 
-The following table summarizes the functionality and features that are available in each state:
+The table in this section summarizes the functionality and features that are available in each state. 
+
+> [!IMPORTANT]
+> The following table is informational, and it is designed to describe the features & capabilities that are turned on or off according to whether Microsoft Defender Antivirus is in Active mode, in Passive mode, or disabled/uninstalled. Do not turn off capabilities, such as real-time protection, if you are using Microsoft Defender Antivirus in passive mode or are using EDR in block mode. 
 
 |State |[Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) |
 |--|--|--|--|--|--|
@@ -78,7 +81,7 @@ The following table summarizes the functionality and features that are available
 - In Active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
 - In Passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
 - When [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md) is turned on and Microsoft Defender Antivirus is not the primary antivirus solution, it can still detect and remediate malicious items.
-- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated.
+- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended.
 
 ## Keep the following points in mind
 

From 678b19d2f03169a6448b97193e61492404788766 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 11 Jan 2021 10:30:27 -0800
Subject: [PATCH 392/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 9f5add4dfe..066b363f5e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -87,7 +87,7 @@ The table in this section summarizes the functionality and features that are ava
 
 If you are enrolled in Microsoft Defender for Endpoint and you are using a third-party antimalware product, then passive mode is enabled. [The service requires common information sharing from Microsoft Defender Antivirus service](../microsoft-defender-atp/defender-compatibility.md) in order to properly monitor your devices and network for intrusion attempts and attacks.
 
-When Microsoft Defender Antivirus is automatically disabled, it can automatically re-enabled if the protection offered by a third-party antivirus product expires or otherwise stops providing real-time protection from viruses, malware, or other threats. This is to ensure antivirus protection is maintained on the endpoint. It also allows you to enable [limited periodic scanning](limited-periodic-scanning-microsoft-defender-antivirus.md), which uses the Microsoft Defender Antivirus engine to periodically check for threats in addition to your main antivirus app.
+When Microsoft Defender Antivirus is disabled automatically, it can be re-enabled automatically if the protection offered by a non-Microsoft antivirus product expires or otherwise stops providing real-time protection from viruses, malware, or other threats. Automatic re-enabling helps to ensure that antivirus protection is maintained on your devices. It also allows you to enable [limited periodic scanning](limited-periodic-scanning-microsoft-defender-antivirus.md), which uses the Microsoft Defender Antivirus engine to periodically check for threats in addition to your main antivirus app.
 
 In passive mode, you can still [manage updates for Microsoft Defender Antivirus](manage-updates-baselines-microsoft-defender-antivirus.md); however, you can't move Microsoft Defender Antivirus into the normal active mode if your endpoints have an up-to-date third-party product providing real-time protection from malware.
 

From a9613ad0aabbe85b8bc9c35ea8fdfe75d916b4eb Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 11 Jan 2021 10:32:31 -0800
Subject: [PATCH 393/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md           | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 066b363f5e..f58cdac130 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -1,7 +1,7 @@
 ---
 title: Microsoft Defender Antivirus compatibility with other security products
-description: Microsoft Defender Antivirus operates in different ways depending on what other security products you have installed, and the operating system you are using.
-keywords: windows defender, atp, advanced threat protection, compatibility, passive mode
+description: Get an overview of what to expect from Microsoft Defender Antivirus with other security products and the operating systems you are using.
+keywords: windows defender, next-generation, atp, advanced threat protection, compatibility, passive mode
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
 ms.prod: w10
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.reviewer: pahuijbr, shwjha
+ms.reviewer: tewchen, pahuijbr, shwjha
 manager: dansimp
 ms.date: 01/11/2021
 ---

From 0a7615b67d1bd7d6659205fd033bed456b33639a Mon Sep 17 00:00:00 2001
From: Rafal Sosnowski <51166236+rafals2@users.noreply.github.com>
Date: Mon, 11 Jan 2021 10:51:49 -0800
Subject: [PATCH 394/825] Update
 bitlocker-deployment-and-administration-faq.yml

---
 .../bitlocker/bitlocker-deployment-and-administration-faq.yml   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
index f873294bba..c0c6eee28c 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
+++ b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
@@ -35,7 +35,7 @@ sections:
         answer: Yes.
 
       - question: Is there a noticeable performance impact when BitLocker is enabled on a computer?
-        answer: Generally it imposes a single-digit percentage performance overhead.
+        answer: Generally it imposes low, often in single-digit, and relative to the throughput of the storage operations on which it needs to operate.
 
       - question: How long will initial encryption take when BitLocker is turned on?
         answer: |

From 41aa1b595f3897f3695d45f1ad0572b1fa3f022e Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Mon, 11 Jan 2021 11:19:46 -0800
Subject: [PATCH 395/825] Release notes for 101.18.53

---
 .../microsoft-defender-atp/linux-resources.md          |  4 ++--
 .../microsoft-defender-atp/linux-whatsnew.md           | 10 ++++++++++
 2 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index fa1b975d62..b8e1e244b8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -114,9 +114,9 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Configuration         |Turn off PUA protection                                 |`mdatp threat policy set --type potentially_unwanted_application --action off` |
 |Configuration         |Turn on audit mode for PUA protection                   |`mdatp threat policy set --type potentially_unwanted_application --action audit` |
 |Diagnostics           |Change the log level                                    |`mdatp log level set --level verbose [error|warning|info|verbose]`     |
-|Diagnostics           |Generate diagnostic logs                                |`mdatp diagnostic create`                                              |
+|Diagnostics           |Generate diagnostic logs                                |`mdatp diagnostic create --path [directory]`                           |
 |Health                |Check the product's health                              |`mdatp health`                                                         |
-|Protection            |Scan a path                                             |`mdatp scan custom --path [path]`                                      |
+|Protection            |Scan a path                                             |`mdatp scan custom --path [path] [--ignore-exclusions]`                |
 |Protection            |Do a quick scan                                         |`mdatp scan quick`                                                     |
 |Protection            |Do a full scan                                          |`mdatp scan full`                                                      |
 |Protection            |Cancel an ongoing on-demand scan                        |`mdatp scan cancel`                                                    |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
index 85ee3ab500..d769c548fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
@@ -23,6 +23,16 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
+## 101.18.53
+
+- EDR for Linux is now [generally available](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/edr-for-linux-is-now-is-generally-available/ba-p/2048539)
+- Added a new command-line switch (`--ignore-exclusions`) to ignore AV exclusions during custom scans (`mdatp scan custom`)
+- Extended `mdatp diagnostic create` with a new parameter (`--path [directory]`) that allows the diagnostic logs to be saved to a different directory
+- Performance improvements & bug fixes
+
+## 101.12.99
+
+- Performance improvements & bug fixes
 
 ## 101.04.76
 

From 1478980db53529a8d8ae98ccaef2ab31e13faa2d Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Mon, 11 Jan 2021 11:34:53 -0800
Subject: [PATCH 396/825] Removed Lockdown as a setting for VPNv2CSP

Lockdown has been removed from the VPNv2CSP code; removing it also from the docs
---
 windows/client-management/mdm/vpnv2-csp.md | 19 -------------------
 1 file changed, 19 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 0325decbfc..dc6cd495a9 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -281,25 +281,6 @@ Valid values:
 
 Value type is bool. Supported operations include Get, Add, Replace, and Delete.
 
-<a href="" id="vpnv2-profilename-lockdown"></a>**VPNv2/**<em>ProfileName</em>**/LockDown**  (./Device only profile)  
-Lockdown profile.
-
-Valid values:
-
-- False (default) - this is not a LockDown profile.
-- True - this is a LockDown profile.
-
-When the LockDown profile is turned on, it does the following things:
-
-- First, it automatically becomes an "always on" profile.
-- Second, it can never be disconnected.
-- Third, if the profile is not connected, then the user has no network.
-- Fourth, no other profiles may be connected or modified.
-
-A Lockdown profile must be deleted before you can add, remove, or connect other profiles.
-
-Value type is bool. Supported operations include Get, Add, Replace, and Delete.
-
 <a href="" id="vpnv2-profilename-devicetunnel"></a>**VPNv2/**<em>ProfileName</em>**/DeviceTunnel**  (./Device only profile)  
 Device tunnel profile.
 

From 8e59e45f291825c2eed5c019b36dfedde0a8d7a1 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Mon, 11 Jan 2021 12:38:46 -0800
Subject: [PATCH 397/825] Add note on versions out of support

---
 .../threat-protection/microsoft-defender-atp/linux-whatsnew.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
index d769c548fd..db4c18a233 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
@@ -23,6 +23,9 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
+> [!IMPORTANT]
+> Product versions 101.04.76 and older are nearing end of support. Customers running on version 101.04.76 or older must upgrade to a newer version of Microsoft Defender for Endpoint for Linux by February 1st, 2021.
+
 ## 101.18.53
 
 - EDR for Linux is now [generally available](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/edr-for-linux-is-now-is-generally-available/ba-p/2048539)

From db5a79e110ef77e18da095687b054ef75552df0f Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Mon, 11 Jan 2021 12:56:01 -0800
Subject: [PATCH 398/825] Update
 windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../bitlocker/bitlocker-group-policy-settings.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md b/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
index 1fa0d3b9e3..2bda9b48ce 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings.md
@@ -20,7 +20,7 @@ ms.custom: bitlocker
 
 # BitLocker Group Policy settings
 
-**Applies to**
+**Applies to:**
 
 - Windows 10, Windows Server 2019, Windows Server 2016, Windows 8.1, and Windows Server 2012 R2
 

From 89b2ef370b1929801d7a1645dd8d9096e496377c Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 11 Jan 2021 13:04:37 -0800
Subject: [PATCH 399/825] add windows virtual desktop support

---
 .../microsoft-defender-atp/minimum-requirements.md           | 1 +
 .../whats-new-in-microsoft-defender-atp.md                   | 5 +++++
 2 files changed, 6 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 96515f8a95..714f80adb2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -95,6 +95,7 @@ Access to Defender for Endpoint is done through a browser, supporting the follow
   - Windows Server 2016
   - Windows Server, version 1803 or later
   - Windows Server 2019
+- Windows Virtual Desktop
 
 Devices on your network must be running one of these editions.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
index 9a8ae62bdb..43382105c2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
@@ -40,6 +40,11 @@ For more information preview features, see [Preview features](https://docs.micro
 > https://docs.microsoft.com/api/search/rss?search=%22Microsoft+Defender+ATP+as+well+as+security+features+in+Windows+10+and+Windows+Server.%22&locale=en-us
 > ```
 
+
+## January 2021
+
+- [Windows Virtual Desktop](https://azure.microsoft.com/services/virtual-desktop/) <br> Microsoft Defender for Endpoint now adds support for Windows Virtual Desktop.
+
 ## December 2020
 - [Microsoft Defender for Endpoint for iOS](microsoft-defender-atp-ios.md) <br> Microsoft Defender for Endpoint now adds support for iOS. Learn how to install, configure, update, and use Microsoft Defender for Endpoint for iOS.
 

From 4d670199bb53eff8180f0af844126af53b28b4be Mon Sep 17 00:00:00 2001
From: julihooper <65675989+julihooper@users.noreply.github.com>
Date: Mon, 11 Jan 2021 13:50:05 -0800
Subject: [PATCH 400/825] Update defender-csp.md

adding CSP description for DisableLocalAdminMerge config.
---
 windows/client-management/mdm/defender-csp.md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/windows/client-management/mdm/defender-csp.md b/windows/client-management/mdm/defender-csp.md
index da9959c0a2..21e9063233 100644
--- a/windows/client-management/mdm/defender-csp.md
+++ b/windows/client-management/mdm/defender-csp.md
@@ -390,6 +390,25 @@ Intune tamper protection setting UX supports three states:
 
 When enabled or disabled exists on the client and admin moves the setting to not configured, it will not have any impact on the device state. To change the state to either enabled or disabled would require to be set explicitly.
 
+<a href="" id="configuration-disablelocaladminmerge"></a>**Configuration/DisableLocalAdminMerge**<br>
+This policy setting controls whether or not complex list settings configured by a local administrator are merged with managed settings. This setting applies to lists such as threats and exclusions.
+
+If you disable or do not configure this setting, unique items defined in preference settings configured by the local administrator will be merged into the resulting effective policy. In the case of conflicts, management settings will override preference settings.
+
+If you enable this setting, only items defined by management will be used in the resulting effective policy. Managed settings will override preference settings configured by the local administrator.
+
+**Note:** Applying this setting will not remove exclusions from the device registry, it will only prevent them from being applied/used. This is reflected in Get-MpPreference.
+
+Supported OS versions:  Windows 10
+
+The data type is integer.
+
+Supported operations are Add, Delete, Get, Replace.
+
+Valid values are:  
+- 1 – Enable.
+- 0 (default) – Disable.
+
 <a href="" id="configuration-enablefilehashcomputation"></a>**Configuration/EnableFileHashComputation**  
 Enables or disables file hash computation feature.
 When this feature is enabled Windows defender will compute hashes for files it scans.

From e09556520a05b088fcd23f619c8ac8794a58d3b3 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Mon, 11 Jan 2021 14:17:10 -0800
Subject: [PATCH 401/825] Revert notice pending further discussion with PM

---
 .../threat-protection/microsoft-defender-atp/linux-whatsnew.md | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
index db4c18a233..d769c548fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
@@ -23,9 +23,6 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-> [!IMPORTANT]
-> Product versions 101.04.76 and older are nearing end of support. Customers running on version 101.04.76 or older must upgrade to a newer version of Microsoft Defender for Endpoint for Linux by February 1st, 2021.
-
 ## 101.18.53
 
 - EDR for Linux is now [generally available](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/edr-for-linux-is-now-is-generally-available/ba-p/2048539)

From 1c80371f586cc218260256c79a76499a42100f92 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 11 Jan 2021 14:46:02 -0800
Subject: [PATCH 402/825] Corrected note style

---
 windows/client-management/mdm/defender-csp.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/defender-csp.md b/windows/client-management/mdm/defender-csp.md
index 21e9063233..37205534c5 100644
--- a/windows/client-management/mdm/defender-csp.md
+++ b/windows/client-management/mdm/defender-csp.md
@@ -397,7 +397,8 @@ If you disable or do not configure this setting, unique items defined in prefere
 
 If you enable this setting, only items defined by management will be used in the resulting effective policy. Managed settings will override preference settings configured by the local administrator.
 
-**Note:** Applying this setting will not remove exclusions from the device registry, it will only prevent them from being applied/used. This is reflected in Get-MpPreference.
+> [!NOTE]
+> Applying this setting will not remove exclusions from the device registry, it will only prevent them from being applied/used. This is reflected in **Get-MpPreference**.
 
 Supported OS versions:  Windows 10
 

From 708e8a2e60fc4af35a494852c7a17546fbc8ab9f Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 11 Jan 2021 15:10:26 -0800
Subject: [PATCH 403/825] last seen updates

---
 .../threat-protection/microsoft-defender-atp/machine.md         | 2 +-
 .../microsoft-defender-atp/machines-view-overview.md            | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index ab02cb5c21..53bdfe131c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -54,7 +54,7 @@ Property |   Type   |   Description
 id | String | [machine](machine.md) identity.
 computerDnsName | String | [machine](machine.md) fully qualified name.
 firstSeen | DateTimeOffset | First date and time where the [machine](machine.md) was observed by Microsoft Defender for Endpoint.
-lastSeen | DateTimeOffset | Last date and time where the [machine](machine.md) was observed by Microsoft Defender for Endpoint.
+lastSeen | DateTimeOffset |Time and date of the last received full device report. A device typically sends a full report every 24 hours.
 osPlatform | String | Operating system platform.
 version | String | Operating system Version.
 osBuild | Nullable long | Operating system build number.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
index fae0dfc00e..efae39c258 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
@@ -28,7 +28,7 @@ ms.topic: article
 
 >Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-machinesview-abovefoldlink)
 
-The **Devices list** shows a list of the devices in your network where alerts were generated. By default, the queue displays devices with alerts seen in the last 30 days.  
+The **Devices list** shows a list of the devices in your network where alerts were generated. By default, the queue displays devices seen in the last 30 days.  
 
 At a glance you'll see information such as domain, risk level, OS platform, and other details for easy identification of devices most at risk.
 

From b6e9b39ce408c7638c5c91cd60a4e7be45102886 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 12 Jan 2021 00:26:51 +0100
Subject: [PATCH 404/825] Update distribute-offline-apps.md

From issue ticket #8942 (**Broken link - Distribute offline apps**):

> Hi all.
>
> In Distribute offline apps (https://docs.microsoft.com/en-us/microsoft-store/distribute-offline-apps) the link Manage apps from Microsoft Store for Business with Microsoft Intune that points to [docs.microsoft.com/en-us/intune/deploy-use/manage-apps-you-purchased-from-the-windows-store-for-business-with-microsoft-intune](https://docs.microsoft.com/en-us/intune/deploy-use/manage-apps-you-purchased-from-the-windows-store-for-business-with-microsoft-intune) rports error 404. Probably the destination has changed URL. I believe that it should point to the doc How to manage volume purchased apps from the Microsoft Store for Business with Microsoft Intune - [docs.microsoft.com/en-us/mem/intune/apps/windows-store-for-business](https://docs.microsoft.com/en-us/mem/intune/apps/windows-store-for-business).
>
> Can you double check this and fix it please?

Thanks to @joaonltome for noticing and reporting this broken link and also suggesting a likely solution.

Changes proposed:
- Replace the broken link /microsoft-store/distribute-offline-apps with the working page link /mem/intune/apps/windows-store-for-business .
- Change the paragraph title "To download an offline-licensed app" from **bold** formatting to a H3 heading, as well as including the HTML anchor in that heading.
  (This heading level might possibly need to be a H4 heading size to remain the same size as its current **bold**-only format.)

Whitespace changes:
- Remove 13 redundant blank lines at the end of the document page.
- By removing these 13 blank lines, we also remove that redundant empty command copy box (created by indents).
- Reduce 12 occurrences of 3 blank spaces after bullet point list indicators to 1 space.
- Reduce 6 occurrences of double blank space after numbered list indicators to 1 space.
- Add missing colon in **Applies to:** .

Closes #8942
---
 store-for-business/distribute-offline-apps.md | 56 +++++++------------
 1 file changed, 21 insertions(+), 35 deletions(-)

diff --git a/store-for-business/distribute-offline-apps.md b/store-for-business/distribute-offline-apps.md
index 33b58da4ab..e3dbdb3592 100644
--- a/store-for-business/distribute-offline-apps.md
+++ b/store-for-business/distribute-offline-apps.md
@@ -18,10 +18,10 @@ ms.date: 10/17/2017
 # Distribute offline apps
 
 
-**Applies to**
+**Applies to:**
 
--   Windows 10
--   Windows 10 Mobile
+- Windows 10
+- Windows 10 Mobile
 
 Offline licensing is a new licensing option for Windows 10 with Microsoft Store for Business and Microsoft Store for Education. With offline licenses, organizations can download apps and their licenses to deploy within their network, or on devices that are not connected to the Internet. ISVs or devs can opt-in their apps for offline licensing when they submit them to the Windows Dev Center. Only apps that are opted in to offline licensing will show that they are available for offline licensing in Microsoft Store for Business and Microsoft Store for Education. This model allows organizations to deploy apps when users or devices do not have connectivity to the Store.
 
@@ -29,23 +29,23 @@ Offline licensing is a new licensing option for Windows 10 with Microsoft Store
 
 Offline-licensed apps offer an alternative to online apps, and provide additional deployment options. Some reasons to use offline-licensed apps:
 
--   **You don't have access to Microsoft Store services** - If your employees don't have access to the internet and Microsoft Store services, downloading offline-licensed apps and deploying them with imaging is an alternative to online-licensed apps.
+- **You don't have access to Microsoft Store services** - If your employees don't have access to the internet and Microsoft Store services, downloading offline-licensed apps and deploying them with imaging is an alternative to online-licensed apps.
 
--   **You use imaging to manage devices in your organization** - Offline-licensed apps can be added to images and deployed with Deployment Image Servicing and Management (DISM), or Windows Imaging and Configuration Designer (ICD).
+- **You use imaging to manage devices in your organization** - Offline-licensed apps can be added to images and deployed with Deployment Image Servicing and Management (DISM), or Windows Imaging and Configuration Designer (ICD).
 
--   **Your employees do not have Azure Active Directory (AD) accounts** - Azure AD accounts are required for employees that install apps assigned to them from Microsoft Store or that claim apps from a private store.
+- **Your employees do not have Azure Active Directory (AD) accounts** - Azure AD accounts are required for employees that install apps assigned to them from Microsoft Store or that claim apps from a private store.
 
 ## Distribution options for offline-licensed apps
 
 You can't distribute offline-licensed apps directly from Microsoft Store. Once you download the items for the offline-licensed app, you have options for distributing the apps:
 
--   **Deployment Image Servicing and Management**. DISM is a command-line tool that is used to mount and service Microsoft Windows images before deployment. You can also use DISM to install, uninstall, configure, and update Windows features, packages, drivers, and international settings in a .wim file or VHD using the DISM servicing commands. DISM commands are used on offline images. For more information, see [Deployment Image Servicing and Management](https://msdn.microsoft.com/windows/hardware/commercialize/manufacture/desktop/dism---deployment-image-servicing-and-management-technical-reference-for-windows).
+- **Deployment Image Servicing and Management**. DISM is a command-line tool that is used to mount and service Microsoft Windows images before deployment. You can also use DISM to install, uninstall, configure, and update Windows features, packages, drivers, and international settings in a .wim file or VHD using the DISM servicing commands. DISM commands are used on offline images. For more information, see [Deployment Image Servicing and Management](https://msdn.microsoft.com/windows/hardware/commercialize/manufacture/desktop/dism---deployment-image-servicing-and-management-technical-reference-for-windows).
 
--   **Create provisioning package**. You can use Windows Imaging and Configuration Designer (ICD) to create a provisioning package for your offline app. Once you have the package, there are options to [apply the provisioning package](https://docs.microsoft.com/windows/configuration/provisioning-packages/provisioning-apply-package). For more information, see [Provisioning Packages for Windows 10](https://docs.microsoft.com/windows/configuration/provisioning-packages/provisioning-packages).
+- **Create provisioning package**. You can use Windows Imaging and Configuration Designer (ICD) to create a provisioning package for your offline app. Once you have the package, there are options to [apply the provisioning package](https://docs.microsoft.com/windows/configuration/provisioning-packages/provisioning-apply-package). For more information, see [Provisioning Packages for Windows 10](https://docs.microsoft.com/windows/configuration/provisioning-packages/provisioning-packages).
 
--   **Mobile device management provider or management server.** You can use a mobile device management (MDM) provider or management server to distribute offline apps. For more information, see these topics:
+- **Mobile device management provider or management server.** You can use a mobile device management (MDM) provider or management server to distribute offline apps. For more information, see these topics:
     - [Manage apps from Microsoft Store for Business with Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr/apps/deploy-use/manage-apps-from-the-windows-store-for-business)
-    - [Manage apps from Microsoft Store for Business with Microsoft Intune](https://docs.microsoft.com/intune/deploy-use/manage-apps-you-purchased-from-the-windows-store-for-business-with-microsoft-intune)<br>
+    - [Manage apps from Microsoft Store for Business with Microsoft Intune](https://docs.microsoft.com/mem/intune/apps/windows-store-for-business)<br>
 
 For third-party MDM providers or management servers, check your product documentation.
 
@@ -53,23 +53,22 @@ For third-party MDM providers or management servers, check your product document
 
 There are several items to download or create for offline-licensed apps. The app package and app license are required; app metadata and app frameworks are optional. This section includes more info on each item, and tells you how to download an offline-licensed app.
 
--   **App metadata** - App metadata is optional. The metadata includes app details, links to icons, product id, localized product ids, and other items. Devs who plan to use an app as part of another app or tool, might want the app metadata.
+- **App metadata** - App metadata is optional. The metadata includes app details, links to icons, product id, localized product ids, and other items. Devs who plan to use an app as part of another app or tool, might want the app metadata.
 
--   **App package** - App packages are required for distributing offline apps. There are app packages for different combinations of app platform and device architecture. You'll need to know what device architectures you have in your organization to know if there are app packages to support your devices.
+- **App package** - App packages are required for distributing offline apps. There are app packages for different combinations of app platform and device architecture. You'll need to know what device architectures you have in your organization to know if there are app packages to support your devices.
 
--   **App license** - App licenses are required for distributing offline apps. Use encoded licenses when you distribute offline-licensed apps using a management tool or ICD. Use unencoded licenses when you distribute offline-licensed apps using DISM.
+- **App license** - App licenses are required for distributing offline apps. Use encoded licenses when you distribute offline-licensed apps using a management tool or ICD. Use unencoded licenses when you distribute offline-licensed apps using DISM.
 
--   **App frameworks** - App frameworks are optional. If you already have the required framework, you don't need to download another copy. The Store for Business will select the app framework needed for the app platform and architecture that you selected.
+- **App frameworks** - App frameworks are optional. If you already have the required framework, you don't need to download another copy. The Store for Business will select the app framework needed for the app platform and architecture that you selected.
 
-<a href="" id="download-offline-licensed-app"></a>
-**To download an offline-licensed app**
+### <a href="" id="download-offline-licensed-app"></a> To download an offline-licensed app
 
-1.  Sign in to the [Microsoft Store for Business](https://businessstore.microsoft.com/) or [Microsoft Store for Education](https://educationstore.microsoft.com).
-2.  Click **Manage**.
-3.  Click **Settings**.
-4.  Click **Shop**. Search for the **Shopping experience** section, change the License type to **Offline**, and click  **Get the app**, which will add the app to your inventory.
-5.  Click **Manage**. You now have access to download the appx bundle package metadata and license file.
-6.  Go to **Products & services**, and select **Apps & software**. (The list may be empty, but it will auto-populate after some time.)
+1. Sign in to the [Microsoft Store for Business](https://businessstore.microsoft.com/) or [Microsoft Store for Education](https://educationstore.microsoft.com).
+2. Click **Manage**.
+3. Click **Settings**.
+4. Click **Shop**. Search for the **Shopping experience** section, change the License type to **Offline**, and click  **Get the app**, which will add the app to your inventory.
+5. Click **Manage**. You now have access to download the appx bundle package metadata and license file.
+6. Go to **Products & services**, and select **Apps & software**. (The list may be empty, but it will auto-populate after some time.)
 
     - **To download app metadata**: Choose the language for the app metadata, and then click **Download**. Save the downloaded app metadata. This is optional.
     - **To download app package**: Click to expand the package details information, choose the Platform and Architecture combination that you need for your organization, and then click **Download**. Save the downloaded app package. This is required.
@@ -78,16 +77,3 @@ There are several items to download or create for offline-licensed apps. The app
 
 > [!NOTE]
 > You need the framework to support your app package, but if you already have a copy, you don't need to download it again. Frameworks are backward compatible.
-
-
-
-     
-
- 
-
- 
-
-
-
-
-

From 7a7450e0f652a6f5ee5a6246139b4612e03dd664 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 11 Jan 2021 15:39:05 -0800
Subject: [PATCH 405/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md     | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index f58cdac130..d1fbec7602 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -85,16 +85,16 @@ The table in this section summarizes the functionality and features that are ava
 
 ## Keep the following points in mind
 
-If you are enrolled in Microsoft Defender for Endpoint and you are using a third-party antimalware product, then passive mode is enabled. [The service requires common information sharing from Microsoft Defender Antivirus service](../microsoft-defender-atp/defender-compatibility.md) in order to properly monitor your devices and network for intrusion attempts and attacks.
+- If you are enrolled in Microsoft Defender for Endpoint and you are using a third-party antimalware product, then passive mode is enabled. [The service requires common information sharing from Microsoft Defender Antivirus service](../microsoft-defender-atp/defender-compatibility.md) in order to properly monitor your devices and network for intrusion attempts and attacks.
 
-When Microsoft Defender Antivirus is disabled automatically, it can be re-enabled automatically if the protection offered by a non-Microsoft antivirus product expires or otherwise stops providing real-time protection from viruses, malware, or other threats. Automatic re-enabling helps to ensure that antivirus protection is maintained on your devices. It also allows you to enable [limited periodic scanning](limited-periodic-scanning-microsoft-defender-antivirus.md), which uses the Microsoft Defender Antivirus engine to periodically check for threats in addition to your main antivirus app.
+- When Microsoft Defender Antivirus is disabled automatically, it can be re-enabled automatically if the protection offered by a non-Microsoft antivirus product expires or otherwise stops providing real-time protection from viruses, malware, or other threats. Automatic re-enabling helps to ensure that antivirus protection is maintained on your devices. It also allows you to enable [limited periodic scanning](limited-periodic-scanning-microsoft-defender-antivirus.md), which uses the Microsoft Defender Antivirus engine to periodically check for threats in addition to your main antivirus app.
 
-In passive mode, you can still [manage updates for Microsoft Defender Antivirus](manage-updates-baselines-microsoft-defender-antivirus.md); however, you can't move Microsoft Defender Antivirus into the normal active mode if your endpoints have an up-to-date third-party product providing real-time protection from malware.
+- When Microsoft Defender Antivirus is in passive mode, you can still [manage updates for Microsoft Defender Antivirus](manage-updates-baselines-microsoft-defender-antivirus.md); however, you can't move Microsoft Defender Antivirus into active mode if your devices have an up-to-date, non-Microsoft antivirus product providing real-time protection from malware.
 
-If you uninstall the other product, and choose to use Microsoft Defender Antivirus to provide protection to your endpoints, Microsoft Defender Antivirus will automatically return to its normal active mode.
+   If you uninstall the non-Microsoft antivirus product, and use Microsoft Defender Antivirus to provide protection to your devices, Microsoft Defender Antivirus will return to its normal active mode automatically.
 
 > [!WARNING]
-> You should not attempt to disable, stop, or modify any of the associated services used by Microsoft Defender Antivirus, Microsoft Defender for Endpoint, or the Windows Security app. This includes the *wscsvc*, *SecurityHealthService*, *MsSense*, *Sense*, *WinDefend*, or *MsMpEng* services and process. Manually modifying these services can cause severe instability on your endpoints and open your network to infections and attacks. It can also cause problems when using third-party antivirus apps and how their information is displayed in the [Windows Security app](microsoft-defender-security-center-antivirus.md).
+> Do not disable, stop, or modify any of the associated services that are used by Microsoft Defender Antivirus, Microsoft Defender for Endpoint, or the Windows Security app. This includes the *wscsvc*, *SecurityHealthService*, *MsSense*, *Sense*, *WinDefend*, or *MsMpEng* services and processes. Manually modifying these services can cause severe instability on your devices and can make your network vulnerable. Disabling, stopping, or modifying those services can also cause problems when using non-Microsoft antivirus solutions and how their information is displayed in the [Windows Security app](microsoft-defender-security-center-antivirus.md).
 
 
 ## See also
@@ -103,5 +103,4 @@ If you uninstall the other product, and choose to use Microsoft Defender Antivir
 - [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-defender-antivirus-on-windows-server-2016.md)
 - [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md)
 - [Configure Endpoint Protection](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure)
-- [Configure Endpoint Protection on a standalone client](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure-standalone-client)
 - [Learn about Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about)

From bd675d72c5f6b59b8699f473ca28cd1a60a2b9a8 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 11 Jan 2021 15:51:45 -0800
Subject: [PATCH 406/825] delete page

---
 .openpublishing.redirection.json              |  5 ++
 .../get-machinegroups-collection.md           | 89 -------------------
 2 files changed, 5 insertions(+), 89 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 9e3480430e..0cf060785e 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -1534,6 +1534,11 @@
       "source_path": "windows/security/threat-protection/windows-defender-atp/get-machinegroups-collection.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection",
       "redirect_document_id": true
+    },
+	{
+      "source_path": "windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list",
+      "redirect_document_id": false
     },
     {
       "source_path": "windows/security/threat-protection/windows-defender-atp/get-machinesecuritystates-collection-windows-defender-advanced-threat-protection.md",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
deleted file mode 100644
index 925103b0d1..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinegroups-collection.md
+++ /dev/null
@@ -1,89 +0,0 @@
----
-title: Get RBAC machine groups collection API
-description: Learn how to use the Get KB collection API to retrieve a collection of RBAC device groups in Microsoft Defender Advanced Threat Protection.
-keywords: apis, graph api, supported apis, get, RBAC, group
-search.product: eADQiWindows 10XVcnh
-search.appverid: met150
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: leonidzh
-author: mjcaparas
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: article
-ms.date: 10/07/2018
----
-
-# Get KB collection API
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-
-Retrieves a collection of RBAC device groups.
-
-## Permissions
-User needs read permissions.
-
-## HTTP request
-```
-GET /testwdatppreview/machinegroups
-```
-
-## Request headers
-
-Header | Value 
-:---|:---
-Authorization | Bearer {token}. **Required**.
-Content type | application/json
-
-## Request body
-Empty
-
-## Response
-If successful - 200 OK.
-
-## Example
-
-**Request**
-
-Here is an example of the request.
-
-```
-GET https://graph.microsoft.com/testwdatppreview/machinegroups
-Content-type: application/json
-```
-
-**Response**
-
-Here is an example of the response.
-Field id contains device group **id** and equal to field **rbacGroupId** in devices info. 
-Field **ungrouped** is true only for one group for all devices that have not been assigned to any group. This group as usual has name "UnassignedGroup".
-
-```
-HTTP/1.1 200 OK
-Content-type: application/json
-{
-    "@odata.context":"https://graph.microsoft.com/testwdatppreview/$metadata#MachineGroups",
-    "@odata.count":7,
-    "value":[
-        {
-            "id":86,
-            "name":"UnassignedGroup",
-            "description":"",
-            "ungrouped":true},
-        …
-}
-```

From 07cea59b739073115448fd5b8314477925e9c54b Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Mon, 11 Jan 2021 15:54:28 -0800
Subject: [PATCH 407/825] Removed lockdown from the schema

The LockDown element has been removed from the code and should be removed from this schema
---
 windows/client-management/mdm/vpnv2-profile-xsd.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-profile-xsd.md b/windows/client-management/mdm/vpnv2-profile-xsd.md
index c0e32c95b7..ee3e5cfb4c 100644
--- a/windows/client-management/mdm/vpnv2-profile-xsd.md
+++ b/windows/client-management/mdm/vpnv2-profile-xsd.md
@@ -31,7 +31,6 @@ Here's the XSD for the ProfileXML node in the VPNv2 CSP and VpnManagementAgent::
         <xs:element name="AlwaysOn" type="xs:boolean" minOccurs="0" maxOccurs="1" />
         <xs:element name="DnsSuffix" type="xs:string" minOccurs="0" maxOccurs="1"/>
         <xs:element name="TrustedNetworkDetection" type="xs:string" minOccurs="0" maxOccurs="1"/>
-        <xs:element name="LockDown" type="xs:boolean" minOccurs="0" maxOccurs="1"/>
         <xs:element name="DeviceTunnel" type="xs:boolean" minOccurs="0" maxOccurs="1"/>
         <xs:element name="RegisterDNS" type="xs:boolean" minOccurs="0" maxOccurs="1"/>
         <xs:element name="ByPassForLocal" type="xs:boolean" minOccurs="0" maxOccurs="1"/>
@@ -442,4 +441,4 @@ Here's the XSD for the ProfileXML node in the VPNv2 CSP and VpnManagementAgent::
     <PrefixSize>16</PrefixSize>
   </Route>
 </VPNProfile>
-```
\ No newline at end of file
+```

From 799286b74cfbace1cfb86634890c20b8268d0def Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 12 Jan 2021 01:01:35 +0100
Subject: [PATCH 408/825] Revert HTML anchor link heading format

- change "To download an offline-licensed app" heading format back to **bold**
- remove the line separation (NewLine/Line break) to enable the anchor link again
---
 store-for-business/distribute-offline-apps.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/store-for-business/distribute-offline-apps.md b/store-for-business/distribute-offline-apps.md
index e3dbdb3592..c22a4358d7 100644
--- a/store-for-business/distribute-offline-apps.md
+++ b/store-for-business/distribute-offline-apps.md
@@ -61,7 +61,7 @@ There are several items to download or create for offline-licensed apps. The app
 
 - **App frameworks** - App frameworks are optional. If you already have the required framework, you don't need to download another copy. The Store for Business will select the app framework needed for the app platform and architecture that you selected.
 
-### <a href="" id="download-offline-licensed-app"></a> To download an offline-licensed app
+<a href="" id="download-offline-licensed-app"></a>**To download an offline-licensed app**
 
 1. Sign in to the [Microsoft Store for Business](https://businessstore.microsoft.com/) or [Microsoft Store for Education](https://educationstore.microsoft.com).
 2. Click **Manage**.

From 70bfcd4ce48432ceba03373a03ad7a47dcc45714 Mon Sep 17 00:00:00 2001
From: schmurky <maccruz@microsoft.com>
Date: Tue, 12 Jan 2021 13:19:27 +0800
Subject: [PATCH 409/825] changed ATP to Endpoint

---
 .../microsoft-defender-atp/investigate-files.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
index a9e415015a..940312a02f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
@@ -20,7 +20,7 @@ ms.topic: article
 ms.date: 04/24/2018
 ---
 
-# Investigate a file associated with a Microsoft Defender ATP alert
+# Investigate a file associated with a Microsoft Defender for Endpoint alert
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 

From 500fd2c72ee5fa5d5ce00dbe699dabac111a77e3 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 12 Jan 2021 10:50:21 +0500
Subject: [PATCH 410/825] Update use-vamt-in-windows-powershell.md

---
 .../volume-activation/use-vamt-in-windows-powershell.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/volume-activation/use-vamt-in-windows-powershell.md b/windows/deployment/volume-activation/use-vamt-in-windows-powershell.md
index 7389bcd273..0fcb1ad99c 100644
--- a/windows/deployment/volume-activation/use-vamt-in-windows-powershell.md
+++ b/windows/deployment/volume-activation/use-vamt-in-windows-powershell.md
@@ -57,7 +57,7 @@ get-help get-VamtProduct -all
 ```
 
 **Warning**  
-The update-help cmdlet is not supported for VAMT PowerShell cmdlets. To view online help for VAMT cmdlets, you can use the -online option with the get-help cmdlet. For more information, see [Volume Activation Management Tool (VAMT) Cmdlets in Windows PowerShell](https://go.microsoft.com/fwlink/p/?LinkId=242278).
+The update-help cmdlet is not supported for VAMT PowerShell cmdlets. To view online help for VAMT cmdlets, you can use the -online option with the get-help cmdlet. For more information, see [Volume Activation Management Tool (VAMT) Cmdlets in Windows PowerShell](https://docs.microsoft.com/powershell/module/vamt).
 
 **To view VAMT PowerShell Help sections**
 

From c4fa84e1dc3620c144718bc29780aa8bcdf697b9 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Mon, 11 Jan 2021 21:58:03 -0800
Subject: [PATCH 411/825] Add release notes for MDEP for Mac 101.19.21

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md  | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 692a50914e..4f5d0daced 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -29,6 +29,10 @@ ms.topic: conceptual
 > [!IMPORTANT]
 > Support for macOS 10.13 (High Sierra) will be discontinued on February 15th, 2021.
 
+## 101.19.21
+
+- Bug fixes
+
 ## 101.15.26
 
 - Improved the reliability of the agent when running on macOS 11 Big Sur

From eb8843f637a817ceb46c8c58d9eb75c116ab8655 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 12 Jan 2021 11:59:56 +0500
Subject: [PATCH 412/825] Update hello-planning-guide.md

---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 265aa7219d..fc57328704 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet.  You can deploy Windows Hello for Business using the free Azure Active Directory account (additional costs needed for multi-factor authentication).
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet.  You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to have another subscription that includes Azure AD Multi-Factor Authentication license (like Microsoft 365), or use third-party Multi-Factor Authentication provider.
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 9b96e5b576a5830076ee72163564d6f933d7073e Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 00:15:32 -0800
Subject: [PATCH 413/825] Update connect-to-remote-aadj-pc.md

Updated supported configs to be more readable, added details on adding AAD users and groups to Remote Desktop Users group via policy, removed the Windows account picker text which is not supported for AAD users
---
 .../connect-to-remote-aadj-pc.md              | 79 ++++++++-----------
 1 file changed, 34 insertions(+), 45 deletions(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index 13ee43e312..ad3532576c 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -22,14 +22,15 @@ ms.topic: article
 
 - Windows 10
 
-From its release, Windows 10 has supported remote connections to PCs joined to Active Directory. Starting in Windows 10, version 1607, you can also connect to a remote PC that is [joined to Azure Active Directory (Azure AD)](https://docs.microsoft.com/azure/active-directory/user-help/device-management-azuread-joined-devices-setup). Starting in Windows 10, version 1809, you can [use biometrics to authenticate to a remote desktop session](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809#remote-desktop-with-biometrics).
+From its release, Windows 10 has supported remote connections to PCs joined to Active Directory. Starting in Windows 10, version 1607, you can also connect to a remote PC that is [joined to Azure Active Directory (Azure AD)](hhttps://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-join). Starting in Windows 10, version 1809, you can [use biometrics to authenticate to a remote desktop session](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809#remote-desktop-with-biometrics).
 
 ![Remote Desktop Connection client](images/rdp.png)
 
 ## Set up
 
 - Both PCs (local and remote) must be running Windows 10, version 1607 or later. Remote connections to an Azure AD-joined PC running earlier versions of Windows 10 are not supported.
-- Your local PC (where you are connecting from) must be either Azure AD joined or Hybrid Azure AD joined if using Windows 10 version 1607 and above, or Azure AD registered if using Windows 10 version 2004 and above. Remote connections to an Azure AD joined PC from an unjoined device or a non-Windows 10 device are not supported. 
+- Your local PC (where you are connecting from) must be either Azure AD joined or Hybrid Azure AD joined if using Windows 10 version 1607 and above, or [Azure AD registered](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register) if using Windows 10 version 2004 and above. Remote connections to an Azure AD joined PC from an unjoined device or a non-Windows 10 device are not supported. 
+- The local PC and remote PC must be in the same Azure AD tenant. Azure AD B2B guests are not supported for Remote desktop. 
 
 Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-guard), a new feature in Windows 10, version 1607, is turned off on the client PC you are using to connect to the remote PC.
 
@@ -41,57 +42,45 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
 
      ![Allow remote connections to this computer](images/allow-rdp.png)
 
-  3. If the user who joined the PC to Azure AD is the only one who is going to connect remotely, no additional configuration is needed. To allow additional users or groups to connect to the PC, you must allow remote connections for the specified users or groups. Click **Select Users -> Add** and enter the name of the user or group.
-
-     > [!NOTE]
-     > You can specify individual Azure AD accounts for remote connections by having the user sign in to the remote device at least once, and then running the following PowerShell cmdlet:
-     > ```powershell
-     > net localgroup "Remote Desktop Users" /add "AzureAD\the-UPN-attribute-of-your-user"
-     > ```
-     > where *the-UPN-attribute-of-your-user* is the name of the user profile in C:\Users\, which is created based on the DisplayName attribute in Azure AD.
-     >
-     > This command only works for AADJ device users already added to any of the local groups (administrators).
-     > Otherwise this command throws the below error. For example:
-     > - for cloud only user: "There is no such global user or group : *name*"
-     > - for synced user: "There is no such global user or group : *name*" </br>
-    
-     > [!NOTE]
-     > In Windows 10, version 1709, the user does not have to sign in to the remote device first.
-     >
-     > In Windows 10, version 1709, you can add other Azure AD users to the **Administrators** group on a device in **Settings** and restrict remote credentials to **Administrators**. If there is a problem connecting remotely, make sure that both devices are joined to Azure AD and that TPM is functioning properly on both devices.
+  3. If the user who joined the PC to Azure AD is the only one who is going to connect remotely, no additional configuration is needed. To allow additional users or groups to connect to the PC, you must allow remote connections for the specified users or groups. Users can be added either manually or through MDM policies:
+     
+      - Adding users manually
    
-  4. Click **Check Names**. If the **Name Not Found** window opens, click **Locations** and select this PC.
+        You can specify individual Azure AD accounts for remote connections by running the following PowerShell cmdlet:
+        ```powershell
+        net localgroup "Remote Desktop Users" /add "AzureAD\the-UPN-attribute-of-your-user"
+        ```
+        where *the-UPN-attribute-of-your-user* is the name of the user profile in C:\Users\, which is created based on the DisplayName attribute in Azure AD.
 
-     > [!TIP]
-     > When you connect to the remote PC, enter your account name in this format: AzureAD\yourloginid@domain.com. The local PC must either be domain-joined or Azure AD-joined. The local PC and remote PC must be in the same Azure AD tenant.
+        This command only works for AADJ device users already added to any of the local groups (administrators).
+        Otherwise this command throws the below error. For example:
+        - for cloud only user: "There is no such global user or group : *name*"
+        - for synced user: "There is no such global user or group : *name*" </br>
 
-     > [!Note]
-     > If you cannot connect using Remote Desktop Connection 6.0, you must turn off the new features of RDP 6.0 and revert back to RDP 5.0 by making a few changes in the RDP file. See the details in the [support article](https://support.microsoft.com/help/941641/remote-desktop-connection-6-0-prompts-you-for-credentials-before-you-e).
+         > [!NOTE]
+         > For devices running Windows 10, version 1703 or earlier, the user must to sign in to the remote device first before attempting remote connections.
+         >
+         > Starting Windows 10, version 1709, you can add other Azure AD users to the **Administrators** group on a device in **Settings** and restrict remote credentials to **Administrators**. If there is a problem connecting remotely, make sure that both devices are joined to Azure AD and that TPM is functioning properly on both devices.
+
+      - Adding users using policy
+     
+         Starting Windows 10 version 2004, you can add users or Azure AD groups to the Remote Desktop Users using MDM policies as described [in this article](https://docs.microsoft.com/azure/active-directory/devices/assign-local-admin#manage-administrator-privileges-using-azure-ad-groups-preview)
+
+         > [!TIP]
+         > When you connect to the remote PC, enter your account name in this format: AzureAD\yourloginid@domain.com.
+
+         > [!Note]
+         > If you cannot connect using Remote Desktop Connection 6.0, you must turn off the new features of RDP 6.0 and revert back to RDP 5.0 by making a few changes in the RDP file. See the details in the [support article](https://support.microsoft.com/help/941641/remote-desktop-connection-6-0-prompts-you-for-credentials-before-you-e).
 
 ## Supported configurations
 
-In organizations using integrated Active Directory and Azure AD, you can connect from a Hybrid-joined PC to an Azure AD-joined PC by using any of the following:
+The table below lists out the supported configurations for remotely connecting to an Azure AD-joined PC:
 
-- Password
-- Smartcards
-- Windows Hello for Business, if the domain is managed by Microsoft Endpoint Configuration Manager.
+| Criteria | RDP from Azure AD registered device| RDP from Azure AD joined device| RDP from Hybrid Azure AD joined device |
+| - | - | - | - |
+| **Client operating systems**| Windows 10 2004 and above| Windows 10 1607 and above | Windows 10 1607 and above |
+| **Supported credentials**| Password, smartcard| Password, smartcard, Windows Hello for Business certificate trust | Password, smartcard, Windows Hello for Business certificate trust |
 
-In organizations using integrated Active Directory and Azure AD, you can connect from an Azure AD-joined PC to an AD-joined PC when the Azure AD-joined PC is on the corporate network by using any of the following:
-
-- Password
-- Smartcards
-- Windows Hello for Business, if the organization has a mobile device management (MDM) subscription.
-
-In organizations using integrated Active Directory and Azure AD, you can connect from an Azure AD-joined PC to another Azure AD-joined PC by using any of the following:
-
-- Password
-- Smartcards
-- Windows Hello for Business, with or without an MDM subscription.
-
-In organizations using only Azure AD, you can connect from an Azure AD-joined PC to another Azure AD-joined PC by using any of the following:
-
-- Password
-- Windows Hello for Business, with or without an MDM subscription.
 
 > [!NOTE]
 > If the RDP client is running Windows Server 2016 or Windows Server 2019, to be able to connect to Azure Active Directory-joined PCs, it must [allow Public Key Cryptography Based User-to-User (PKU2U) authentication requests to use online identities](https://docs.microsoft.com/windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities).

From 7c7a13348fa00a44133e085964b25260ba80d04e Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 12 Jan 2021 14:37:28 +0500
Subject: [PATCH 414/825] Update
 windows/security/identity-protection/hello-for-business/hello-planning-guide.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index fc57328704..d99d54226f 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet.  You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to have another subscription that includes Azure AD Multi-Factor Authentication license (like Microsoft 365), or use third-party Multi-Factor Authentication provider.
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet.  You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to have another subscription that includes an Azure AD Multi-Factor Authentication license (like Microsoft 365) or to use a third-party Multi-Factor Authentication provider.
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 7073288e7ecb0c5b166e4dacf48db018e8ae861f Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Tue, 12 Jan 2021 14:51:51 +0200
Subject: [PATCH 415/825] Update live-response.md

fixed missing command in the example
---
 .../threat-protection/microsoft-defender-atp/live-response.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/live-response.md b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
index 193c067a32..df1251aaec 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/live-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
@@ -186,7 +186,7 @@ Here are some examples:
 
 |Command  |What it does  |
 |---------|---------|
-|`"C:\windows\some_file.exe" &`     |Starts downloading a file named *some_file.exe* in the background.         |
+|`Download "C:\windows\some_file.exe" &`     |Starts downloading a file named *some_file.exe* in the background.         |
 |`fg 1234`     |Returns a download with command ID *1234* to the foreground.         |
 
 

From 4228e205afdb313a4c91bcc1a72d3cf56a9eae1b Mon Sep 17 00:00:00 2001
From: Jeff Borsecnik <36546697+jborsecnik@users.noreply.github.com>
Date: Tue, 12 Jan 2021 08:44:55 -0800
Subject: [PATCH 416/825] fix pre-existing typo "behaviours"

---
 .../microsoft-defender-atp/investigate-files.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
index 940312a02f..3ac5eb62bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
@@ -1,6 +1,6 @@
 ---
 title: Investigate Microsoft Defender Advanced Threat Protection files
-description: Use the investigation options to get details on files associated with alerts, behaviours, or events.
+description: Use the investigation options to get details on files associated with alerts, behaviors, or events.
 keywords: investigate, investigation, file, malicious activity, attack motivation, deep analysis, deep analysis report
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150

From e89aa7b54a4b532f16bcc9baf35ebd3df4d1a2b2 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Tue, 12 Jan 2021 10:07:54 -0800
Subject: [PATCH 417/825] update face authentication areas for masks

---
 .../hello-for-business/hello-biometrics-in-enterprise.md  | 6 +++++-
 .../identity-protection/hello-for-business/hello-faq.yml  | 8 ++++++--
 2 files changed, 11 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md b/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
index 01dffaef6d..c7680c8fe3 100644
--- a/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
+++ b/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
@@ -15,7 +15,7 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 03/05/2020
+ms.date: 01/12/2021
 ---
 
 # Windows Hello biometrics in the enterprise
@@ -81,6 +81,10 @@ To allow facial recognition, you must have devices with integrated special infra
 
 -   Effective, real world FRR with Anti-spoofing or liveness detection: &lt;10%
 
+> [!NOTE]
+>Windows Hello face authentication does not currently support wearing a mask during enrollment or authentication. Wearing a mask to enroll is a security concern because other users wearing a similar mask may be able to unlock you device. The product group is aware of this behavior and is investigating this topic further. Please remove a mask if you are wearing one when you enroll or unlock with Windows Hello face authentication. If your working environment doesn’t allow you to remove a mask temporarily, please consider unenrolling from face authentication and only using PIN or fingerprint.
+
+
 ## Related topics
 - [Windows Hello for Business](hello-identity-verification.md)
 - [How Windows Hello for Business works](hello-how-it-works.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.yml b/windows/security/identity-protection/hello-for-business/hello-faq.yml
index aae7b07f4a..d7a41ce150 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.yml
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.yml
@@ -14,7 +14,7 @@ metadata:
   ms.collection: M365-identity-device-management
   ms.topic: article
   localizationpriority: medium
-  ms.date: 08/19/2018
+  ms.date: 01/12/2021
   ms.reviewer: 
     
 title: Windows Hello for Business Frequently Asked Questions (FAQ)
@@ -137,7 +137,11 @@ sections:
       - question: Can I use both a PIN and biometrics to unlock my device?
         answer: |
           Starting in Windows 10, version 1709, you can use multi-factor unlock to require users to provide an additional factor to unlock their device. Authentication remains two-factor, but another factor is required before Windows allows the user to reach the desktop. To learn more, see [Multifactor Unlock](feature-multifactor-unlock.md).
-          
+
+      - question: Can I wear a mask to enroll or unlock using Windows Hello face authentication?
+        answer: |
+          Wearing a mask to enroll is a security concern because other users wearing a similar mask may be able to unlock you device. The product group is aware of this behavior and is investigating this topic further. Please remove a mask if you are wearing one when you enroll or unlock with Windows Hello face authentication. If your working environment doesn’t allow you to remove a mask temporarily, please consider unenrolling from face authentication and only using PIN or fingerprint.
+
       - question: What's the difference between Windows Hello and Windows Hello for Business?
         answer: |
           Windows Hello represents the biometric framework provided in Windows 10. Windows Hello lets users use biometrics to sign in to their devices by securely storing their user name and password and releasing it for authentication when the user successfully identifies themselves using biometrics. Windows Hello for Business uses asymmetric keys protected by the device's security module that requires a user gesture (PIN or biometrics) to authenticate.

From 92c77fa38c443d7c33dd647ba2700ebbc85e1921 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Tue, 12 Jan 2021 19:33:47 +0100
Subject: [PATCH 418/825] correct casing for "the internet" to 'the Internet'

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 store-for-business/distribute-offline-apps.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/store-for-business/distribute-offline-apps.md b/store-for-business/distribute-offline-apps.md
index c22a4358d7..8a5ead4fe6 100644
--- a/store-for-business/distribute-offline-apps.md
+++ b/store-for-business/distribute-offline-apps.md
@@ -29,7 +29,7 @@ Offline licensing is a new licensing option for Windows 10 with Microsoft Store
 
 Offline-licensed apps offer an alternative to online apps, and provide additional deployment options. Some reasons to use offline-licensed apps:
 
-- **You don't have access to Microsoft Store services** - If your employees don't have access to the internet and Microsoft Store services, downloading offline-licensed apps and deploying them with imaging is an alternative to online-licensed apps.
+- **You don't have access to Microsoft Store services** - If your employees don't have access to the Internet and Microsoft Store services, downloading offline-licensed apps and deploying them with imaging is an alternative to online-licensed apps.
 
 - **You use imaging to manage devices in your organization** - Offline-licensed apps can be added to images and deployed with Deployment Image Servicing and Management (DISM), or Windows Imaging and Configuration Designer (ICD).
 

From 86bed88682697c4f85e3fa2f4daa8f3dede89f31 Mon Sep 17 00:00:00 2001
From: Jeff Borsecnik <36546697+jborsecnik@users.noreply.github.com>
Date: Tue, 12 Jan 2021 10:45:02 -0800
Subject: [PATCH 419/825] Update hello-biometrics-in-enterprise.md

regards --> regard per Acrolinx
---
 .../hello-for-business/hello-biometrics-in-enterprise.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md b/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
index c7680c8fe3..d0857ccd72 100644
--- a/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
+++ b/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md
@@ -53,7 +53,7 @@ The biometric data used to support Windows Hello is stored on the local device o
 ## Has Microsoft set any device requirements for Windows Hello?
 We've been working with the device manufacturers to help ensure a high-level of performance and protection is met by each sensor and device, based on these requirements:
 
--   **False Accept Rate (FAR).** Represents the instance a biometric identification solution verifies an unauthorized person. This is normally represented as a ratio of number of instances in a given population size, for example 1 in 100 000. This can also be represented as a percentage of occurrence, for example, 0.001%. This measurement is heavily considered the most important with regards to the security of the biometric algorithm.
+-   **False Accept Rate (FAR).** Represents the instance a biometric identification solution verifies an unauthorized person. This is normally represented as a ratio of number of instances in a given population size, for example 1 in 100 000. This can also be represented as a percentage of occurrence, for example, 0.001%. This measurement is heavily considered the most important with regard to the security of the biometric algorithm.
 
 -   **False Reject Rate (FRR).** Represents the instances a biometric identification solution fails to verify an authorized person correctly. Usually represented as a percentage, the sum of the True Accept Rate and False Reject Rate is 1. Can be with or without anti-spoofing or liveness detection.
 

From a88fc360e88d4663857949ff7bf93c36932e35ed Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Tue, 12 Jan 2021 12:04:19 -0800
Subject: [PATCH 420/825] update hybrid cert trust adfs scope note

---
 .../hello-hybrid-cert-whfb-settings-adfs.md           | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
index 8a9763ebcd..f301ec009c 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
@@ -65,14 +65,17 @@ Sign-in a domain controller or management workstation with _Domain Admin_ equiva
 7. Restart the AD FS server.
 
 > [!NOTE] 
->For AD FS 2019, if Windows Hello for Business with a Hybrid Certificate trust is performed, a known PRT issue exists. You may encounter this error in ADFS Admin event logs: Received invalid Oauth request. The client 'NAME' is forbidden to access the resource with scope 'ugs'. To remediate this error:
+> For AD FS 2019, if Windows Hello for Business with a Hybrid Certificate trust is performed, a known PRT issue exists. You may encounter this error in ADFS Admin event logs: Received invalid Oauth request. The client 'NAME' is forbidden to access the resource with scope 'ugs'. To remediate this error:
 >
 > 1. Launch AD FS management console. Browse to "Services > Scope Descriptions".
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".
 > 3. Under name type "ugs" and Click Apply > OK.
-> 4. Launch Powershell as Administrator.
-> 5. Execute the command "Get-AdfsApplicationPermission". Look for the ScopeNames :{openid, aza} that has the ClientRoleIdentifier is equal to 38aa3b87-a06d-4817-b275-7a316988d93b and make a note of the ObjectIdentifier.
-> 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.
+> 4. Launch PowerShell as an administrator.
+> 5. Get the ObjectIdentifier of the application permission with the ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
+> ```PowerShell
+> (Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
+> ```
+> 6. Execute the command `Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'`.
 > 7. Restart the ADFS service.
 > 8. On the client: Restart the client. User should be prompted to provision WHFB.
 > 9. If the provisioning window does not pop up then need to collect NGC trace logs and further troubleshoot.

From 2d90cf77adb4692b4bced43250955389a0cb0a3d Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:19:18 -0800
Subject: [PATCH 421/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index ad3532576c..149f0759fe 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -22,7 +22,7 @@ ms.topic: article
 
 - Windows 10
 
-From its release, Windows 10 has supported remote connections to PCs joined to Active Directory. Starting in Windows 10, version 1607, you can also connect to a remote PC that is [joined to Azure Active Directory (Azure AD)](hhttps://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-join). Starting in Windows 10, version 1809, you can [use biometrics to authenticate to a remote desktop session](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809#remote-desktop-with-biometrics).
+From its release, Windows 10 has supported remote connections to PCs joined to Active Directory. Starting in Windows 10, version 1607, you can also connect to a remote PC that is [joined to Azure Active Directory (Azure AD)](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-join). Starting in Windows 10, version 1809, you can [use biometrics to authenticate to a remote desktop session](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809#remote-desktop-with-biometrics).
 
 ![Remote Desktop Connection client](images/rdp.png)
 

From 631a16f00a2a655c90dd850b90b96153229e43ae Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:21:01 -0800
Subject: [PATCH 422/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index 149f0759fe..b0d82b4ca2 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -58,7 +58,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
         - for synced user: "There is no such global user or group : *name*" </br>
 
          > [!NOTE]
-         > For devices running Windows 10, version 1703 or earlier, the user must to sign in to the remote device first before attempting remote connections.
+         > For devices running Windows 10, version 1703 or earlier, the user must sign in to the remote device first before attempting remote connections.
          >
          > Starting Windows 10, version 1709, you can add other Azure AD users to the **Administrators** group on a device in **Settings** and restrict remote credentials to **Administrators**. If there is a problem connecting remotely, make sure that both devices are joined to Azure AD and that TPM is functioning properly on both devices.
 

From c4e378dc7d630262d3fc890e0de97c0b597d461c Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:21:24 -0800
Subject: [PATCH 423/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index b0d82b4ca2..e5004eafc1 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -60,7 +60,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
          > [!NOTE]
          > For devices running Windows 10, version 1703 or earlier, the user must sign in to the remote device first before attempting remote connections.
          >
-         > Starting Windows 10, version 1709, you can add other Azure AD users to the **Administrators** group on a device in **Settings** and restrict remote credentials to **Administrators**. If there is a problem connecting remotely, make sure that both devices are joined to Azure AD and that TPM is functioning properly on both devices.
+         > Starting in Windows 10, version 1709, you can add other Azure AD users to the **Administrators** group on a device in **Settings** and restrict remote credentials to **Administrators**. If there is a problem connecting remotely, make sure that both devices are joined to Azure AD and that TPM is functioning properly on both devices.
 
       - Adding users using policy
      

From 7ef70763252e33769638450a1dbf4a249d548f86 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:21:55 -0800
Subject: [PATCH 424/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index e5004eafc1..ba1a79e318 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -64,7 +64,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
 
       - Adding users using policy
      
-         Starting Windows 10 version 2004, you can add users or Azure AD groups to the Remote Desktop Users using MDM policies as described [in this article](https://docs.microsoft.com/azure/active-directory/devices/assign-local-admin#manage-administrator-privileges-using-azure-ad-groups-preview)
+         Starting in Windows 10, version 2004, you can add users or Azure AD groups to the Remote Desktop Users using MDM policies as described in [How to manage the local administrators group on Azure AD joined devices](https://docs.microsoft.com/azure/active-directory/devices/assign-local-admin#manage-administrator-privileges-using-azure-ad-groups-preview).
 
          > [!TIP]
          > When you connect to the remote PC, enter your account name in this format: AzureAD\yourloginid@domain.com.

From eecdfa446f1fdc2f5f6d17d155315c7eaf0b5d13 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:22:04 -0800
Subject: [PATCH 425/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index ba1a79e318..62c073d64e 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -69,7 +69,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
          > [!TIP]
          > When you connect to the remote PC, enter your account name in this format: AzureAD\yourloginid@domain.com.
 
-         > [!Note]
+         > [!NOTE]
          > If you cannot connect using Remote Desktop Connection 6.0, you must turn off the new features of RDP 6.0 and revert back to RDP 5.0 by making a few changes in the RDP file. See the details in the [support article](https://support.microsoft.com/help/941641/remote-desktop-connection-6-0-prompts-you-for-credentials-before-you-e).
 
 ## Supported configurations

From 552e6e081782e2b020afb085bcfcb223f99ac089 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:22:28 -0800
Subject: [PATCH 426/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index 62c073d64e..5025fb0934 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -70,7 +70,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
          > When you connect to the remote PC, enter your account name in this format: AzureAD\yourloginid@domain.com.
 
          > [!NOTE]
-         > If you cannot connect using Remote Desktop Connection 6.0, you must turn off the new features of RDP 6.0 and revert back to RDP 5.0 by making a few changes in the RDP file. See the details in the [support article](https://support.microsoft.com/help/941641/remote-desktop-connection-6-0-prompts-you-for-credentials-before-you-e).
+         > If you cannot connect using Remote Desktop Connection 6.0, you must turn off the new features of RDP 6.0 and revert back to RDP 5.0 by making a few changes in the RDP file. See the details in this [support article](https://support.microsoft.com/help/941641/remote-desktop-connection-6-0-prompts-you-for-credentials-before-you-e).
 
 ## Supported configurations
 

From 3602e35079968d6b0692633835e5efedba62e212 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:22:40 -0800
Subject: [PATCH 427/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index 5025fb0934..e39a986cde 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -74,7 +74,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
 
 ## Supported configurations
 
-The table below lists out the supported configurations for remotely connecting to an Azure AD-joined PC:
+The table below lists the supported configurations for remotely connecting to an Azure AD-joined PC:
 
 | Criteria | RDP from Azure AD registered device| RDP from Azure AD joined device| RDP from Hybrid Azure AD joined device |
 | - | - | - | - |

From f68b3dd03651c855ba01dfc3f002018f5d8c6363 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 12:23:08 -0800
Subject: [PATCH 428/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index e39a986cde..c9aefb4d2b 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -78,7 +78,7 @@ The table below lists the supported configurations for remotely connecting to an
 
 | Criteria | RDP from Azure AD registered device| RDP from Azure AD joined device| RDP from Hybrid Azure AD joined device |
 | - | - | - | - |
-| **Client operating systems**| Windows 10 2004 and above| Windows 10 1607 and above | Windows 10 1607 and above |
+| **Client operating systems**| Windows 10, version 2004 and above| Windows 10, version 1607 and above | Windows 10, version 1607 and above |
 | **Supported credentials**| Password, smartcard| Password, smartcard, Windows Hello for Business certificate trust | Password, smartcard, Windows Hello for Business certificate trust |
 
 

From c27c8d67503bb45cc8139081c0afad99ffc0f5e7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 12:23:39 -0800
Subject: [PATCH 429/825] Update
 common-exclusion-mistakes-microsoft-defender-antivirus.md

---
 ...n-mistakes-microsoft-defender-antivirus.md | 120 ++----------------
 1 file changed, 11 insertions(+), 109 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
index d33ce3552f..c4401ca56a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
@@ -26,128 +26,30 @@ This article describes some common mistake that you should avoid when defining e
 Before defining your exclusion lists, see [Recommendations for defining exclusions](configure-exclusions-microsoft-defender-antivirus.md#recommendations-for-defining-exclusions).
 
 ## Excluding certain trusted items
-Certain files, file types, folders, or processes should not be excluded from scanning even though you trust them to be not malicious. Refer to the following section for items that you should not exclude from scanning.
 
-**Do not add exclusions for the following folder locations:**
+Certain files, file types, folders, or processes should not be excluded from scanning even though you trust them to be not malicious. 
 
-- %systemdrive%
-- C:
-- C:\
-- C:\*
-- %ProgramFiles%\Java
-- C:\Program Files\Java
-- %ProgramFiles%\Contoso\
-- C:\Program Files\Contoso\
-- %ProgramFiles(x86)%\Contoso\
-- C:\Program Files (x86)\Contoso\
-- C:\Temp
-- C:\Temp\
-- C:\Temp\*
-- C:\Users\
-- C:\Users\*
-- C:\Users\<UserProfileName>\AppData\Local\Temp\
-- C:\Users\<UserProfileName>\AppData\LocalLow\Temp\
-- C:\Users\<UserProfileName>\AppData\Roaming\Temp\
-- %Windir%\Prefetch
-- C:\Windows\Prefetch
-- C:\Windows\Prefetch\
-- C:\Windows\Prefetch\*
-- %Windir%\System32\Spool
-- C:\Windows\System32\Spool
-- C:\Windows\System32\CatRoot2
-- %Windir%\Temp
-- C:\Windows\Temp
-- C:\Windows\Temp\
-- C:\Windows\Temp\*
+Do not define exclusions for the folder locations, file extensions, and processes that are listed in the following table:
 
-**Do not add exclusions for the following file extensions:**  
-- `.7zip`
-- `.bat`
-- `.bin`
-- `.cab`
-- `.cmd`
-- `.com`
-- `.cpl`
-- `.dll`
-- `.exe`
-- `.fla`
-- `.gif`
-- `.gz`
-- `.hta`
-- `.inf`
-- `.java`
-- `.jar`
-- `.job`
-- `.jpeg`
-- `.jpg`
-- `.js`
-- `.ko`
-- `.ko.gz`
-- `.msi`
-- `.ocx`
-- `.png`
-- `.ps1`
-- `.py`
-- `.rar`
-- `.reg`
-- `.scr`
-- `.sys`
-- `.tar`
-- `.tmp`
-- `.url`
-- `.vbe`
-- `.vbs`
-- `.wsf`
-- `.zip`
+| Folder locations | File extensions | Processes |
+|:--|:--|:--|
+| `%systemdrive%` <br/> `C:`<br/> `C:\` <br/> `C:\*` <br/> `%ProgramFiles%\Java` <br/> `C:\Program Files\Java` <br/> `%ProgramFiles%\Contoso\` <br/> `C:\Program Files\Contoso\` <br/> `%ProgramFiles(x86)%\Contoso\` <br/> `C:\Program Files (x86)\Contoso\` <br/> `C:\Temp` <br/> `C:\Temp\` <br/> `C:\Temp\*` <br/> `C:\Users\` <br/> `C:\Users\*` <br/> `C:\Users\<UserProfileName>\AppData\Local\Temp\` <br/> `C:\Users\<UserProfileName>\AppData\LocalLow\Temp\` <br/> `C:\Users\<UserProfileName>\AppData\Roaming\Temp\` <br/> `%Windir%\Prefetch` <br/> `C:\Windows\Prefetch` <br/> `C:\Windows\Prefetch\` <br/> `C:\Windows\Prefetch\*` <br/> `%Windir%\System32\Spool` <br/> `C:\Windows\System32\Spool` <br/> `C:\Windows\System32\CatRoot2` <br/> `%Windir%\Temp` <br/> `C:\Windows\Temp` <br/> `C:\Windows\Temp\` <br/> `C:\Windows\Temp\*` | `.7zip` <br/> `.bat` <br/> `.bin` <br/> `.cab` <br/> `.cmd` <br/> `.com` <br/> `.cpl` <br/> `.dll` <br/> `.exe` <br/> `.fla` <br/> `.gif` <br/> `.gz` <br/> `.hta` <br/> `.inf` <br/> `.java` <br/> `.jar` <br/> `.job` <br/> `.jpeg` <br/> `.jpg` <br/> `.js` <br/> `.ko` <br/> `.ko.gz` <br/> `.msi` <br/> `.ocx` <br/> `.png` <br/> `.ps1` <br/> `.py` <br/> `.rar` <br/> `.reg` <br/> `.scr` <br/> `.sys` <br/> `.tar` <br/> `.tmp` <br/> `.url` <br/> `.vbe` <br/> `.vbs` <br/> `.wsf` <br/> `.zip` | `AcroRd32.exe` <br/> `bitsadmin.exe` <br/> `excel.exe` <br/> `iexplore.exe` <br/> `java.exe` <br/> `outlook.exe` <br/> `psexec.exe` <br/> `powerpnt.exe` <br/> `powershell.exe` <br/> `schtasks.exe`  <br/> `svchost.exe` <br/>`wmic.exe` <br/> `winword.exe` <br/> `wuauclt.exe` <br/> `addinprocess.exe` <br/> `addinprocess32.exe` <br/> `addinutil.exe` <br/> `bash.exe` <br/> `bginfo.exe`[1] <br/>`cdb.exe` <br/> `csi.exe` <br/> `dbghost.exe` <br/> `dbgsvc.exe` <br/> `dnx.exe` <br/> `fsi.exe` <br/> `fsiAnyCpu.exe` <br/> `kd.exe` <br/> `ntkd.exe` <br/> `lxssmanager.dll` <br/> `msbuild.exe`[2] <br/> `mshta.exe` <br/> `ntsd.exe` <br/> `rcsi.exe` <br/> `system.management.automation.dll` <br/> `windbg.exe` |
 
 >[!NOTE]
-> You can chose to exclude file types, such as .gif, .jpg, .jpeg, .png if your environment has a modern, up-to-date software with a strict update policy to handle any vulnerabilities.
-
-**Do not add exclusions for the following processes:**  
-- AcroRd32.exe
-- bitsadmin.exe
-- excel.exe
-- iexplore.exe
-- java.exe
-- outlook.exe
-- psexec.exe
-- powerpnt.exe
-- powershell.exe
-- schtasks.exe
-- svchost.exe
-- wmic.exe
-- winword.exe
-- wuauclt.exe
-- addinprocess.exe
-- addinprocess32.exe
-- addinutil.exe
-- bash.exe
-- bginfo.exe[1]
-- cdb.exe
-- csi.exe
-- dbghost.exe
-- dbgsvc.exe
-- dnx.exe
-- fsi.exe
-- fsiAnyCpu.exe
-- kd.exe
-- ntkd.exe
-- lxssmanager.dll
-- msbuild.exe[2]
-- mshta.exe
-- ntsd.exe
-- rcsi.exe
-- system.management.automation.dll
-- windbg.exe
+> You can chose to exclude file types, such as `.gif`, `.jpg`, `.jpeg`, or `.png` if your environment has a modern, up-to-date software with a strict update policy to handle any vulnerabilities.
 
 ## Using just the file name in the exclusion list
-A malware may have the same name as that of the file that you trust and want to exclude from scanning. Therefore, to avoid excluding a potential malware from scanning, use a fully qualified path to the file that you want to exclude instead of using just the file name. For example, if you want to exclude **Filename.exe** from scanning, use the complete path to the file, such as **C:\program files\contoso\Filename.exe**.
+
+A malware may have the same name as that of the file that you trust and want to exclude from scanning. Therefore, to avoid excluding a potential malware from scanning, use a fully qualified path to the file that you want to exclude instead of using just the file name. For example, if you want to exclude `Filename.exe` from scanning, use the complete path to the file, such as `C:\program files\contoso\Filename.exe`.
 
 ## Using a single exclusion list for multiple server workloads
+
 Do not use a single exclusion list to define exclusions for multiple server workloads. Split the exclusions for different application or service workloads into multiple exclusion lists. For example, the exclusion list for your IIS Server workload must be different from the exclusion list for your SQL Server workload.
 
 ## Using incorrect environment variables as wildcards in the file name and folder path or extension exclusion lists
+
 Microsoft Defender Antivirus Service runs in system context using the LocalSystem account, which means it gets information from the system environment variable, and not from the user environment variable. Use of environment variables as a wildcard in exclusion lists is limited to system variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account. Therefore, do not use user environment variables as wildcards when adding Microsoft Defender Antivirus folder and process exclusions. See the table under [System environment variables](configure-extension-file-exclusions-microsoft-defender-antivirus.md#system-environment-variables) for a complete list of system environment variables.
+
 See [Use wildcards in the file name and folder path or extension exclusion lists](configure-extension-file-exclusions-microsoft-defender-antivirus.md#use-wildcards-in-the-file-name-and-folder-path-or-extension-exclusion-lists) for information on how to use wildcards in exclusion lists.
 
 ## Related articles

From 38c178a46b614dfdcf63f215d2d83dcaf758abdf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 12:25:20 -0800
Subject: [PATCH 430/825] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 25a5417d95..99c0b4887e 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -195,8 +195,7 @@
 ##### [Customize, initiate, and review the results of scans and remediation]()
 ###### [Configuration overview](microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md)
    
-###### [Configure and validate exclusions in antivirus scans]()
-###### [Exclusions overview](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
+###### [Configure and validate exclusions in antivirus scans](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
 ###### [Configure and validate exclusions based on file name, extension, and folder location](microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md)
 ###### [Configure and validate exclusions for files opened by processes](microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md)
 ###### [Configure antivirus exclusions Windows Server](microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md)

From e5a5466ec95e154c7c4c774cea0b2e2a4ea38db2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 12:38:23 -0800
Subject: [PATCH 431/825] AV content fixes

---
 ...exclusions-microsoft-defender-antivirus.md |  2 -
 ...exclusions-microsoft-defender-antivirus.md | 40 ++-----------------
 2 files changed, 4 insertions(+), 38 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 725634e323..4943302a17 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -77,8 +77,6 @@ See [How to create and deploy antimalware policies: Exclusion settings](https://
 
 5. Click **OK**.
 
-![The Group Policy setting for specifying process exclusions](images/defender/wdav-process-exclusions.png)
-
 ### Use PowerShell cmdlets to exclude files that have been opened by specified processes from scans
 
 Using PowerShell to add or remove exclusions for files that have been opened by processes requires using a combination of three cmdlets with the `-ExclusionProcess` parameter. The cmdlets are all in the [Defender module](https://technet.microsoft.com/itpro/powershell/windows/defender/defender).
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
index 7c834bd8e4..3ac64a1e57 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
@@ -204,43 +204,11 @@ This section lists the default exclusions for all Windows Server 2016 and 2019 r
 
 #### Hyper-V exclusions
 
-This section lists the file type exclusions, folder exclusions, and process exclusions that are delivered automatically when you install the Hyper-V role
+The following table lists the file type exclusions, folder exclusions, and process exclusions that are delivered automatically when you install the Hyper-V role.
 
-- File type exclusions:
-
-  - `*.vhd`
-
-  - `*.vhdx`
-
-  - `*.avhd`
-
-  - `*.avhdx`
-
-  - `*.vsv`
-
-  - `*.iso`
-
-  - `*.rct`
-
-  - `*.vmcx`
-
-  - `*.vmrs`
-
-- Folder exclusions:
-
-  - `%ProgramData%\Microsoft\Windows\Hyper-V`
-
-  - `%ProgramFiles%\Hyper-V`
-
-  - `%SystemDrive%\ProgramData\Microsoft\Windows\Hyper-V\Snapshots`
-
-  - `%Public%\Documents\Hyper-V\Virtual Hard Disks`
-
-- Process exclusions:
-
-  - `%systemroot%\System32\Vmms.exe`
-
-  - `%systemroot%\System32\Vmwp.exe`
+|File type exclusions |Folder exclusions  | Process exclusions |
+|:--|:--|:--|
+| `*.vhd` <br/> `*.vhdx` <br/> `*.avhd` <br/> `*.avhdx` <br/> `*.vsv` <br/> `*.iso` <br/> `*.rct` <br/> `*.vmcx` <br/> `*.vmrs` | `%ProgramData%\Microsoft\Windows\Hyper-V` <br/> `%ProgramFiles%\Hyper-V` <br/> `%SystemDrive%\ProgramData\Microsoft\Windows\Hyper-V\Snapshots` <br/> `%Public%\Documents\Hyper-V\Virtual Hard Disks` | `%systemroot%\System32\Vmms.exe` <br/> `%systemroot%\System32\Vmwp.exe` |
 
 #### SYSVOL files
 

From 6325beafe40f41a4d79f250ef22b4a650fdf39e0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 12:39:54 -0800
Subject: [PATCH 432/825] Update
 configure-extension-file-exclusions-microsoft-defender-antivirus.md

---
 ...n-file-exclusions-microsoft-defender-antivirus.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 88a2e71534..37b5c8ad0a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -36,12 +36,12 @@ You can exclude certain files from Microsoft Defender Antivirus scans by modifyi
 
 This article  describes how to configure exclusion lists for the files and folders. See [Recommendations for defining exclusions](configure-exclusions-microsoft-defender-antivirus.md#recommendations-for-defining-exclusions) before defining your exclusion lists.
 
-Exclusion | Examples | Exclusion list
----|---|---
-Any file with a specific extension | All files with the specified extension, anywhere on the machine.<br/>Valid syntax: `.test` and `test`  | Extension exclusions
-Any file under a specific folder | All files under the `c:\test\sample` folder | File and folder exclusions
-A specific file in a specific folder | The file `c:\sample\sample.test` only | File and folder exclusions
-A specific process | The executable file `c:\test\process.exe` | File and folder exclusions
+| Exclusion | Examples | Exclusion list |
+|:---|:---|:---|
+|Any file with a specific extension | All files with the specified extension, anywhere on the machine.<br/>Valid syntax: `.test` and `test`  | Extension exclusions |
+|Any file under a specific folder | All files under the `c:\test\sample` folder | File and folder exclusions |
+| A specific file in a specific folder | The file `c:\sample\sample.test` only | File and folder exclusions |
+| A specific process | The executable file `c:\test\process.exe` | File and folder exclusions |
 
 Exclusion lists have the following characteristics:
 

From 80ced9e5f49884b8fdff4ff41d5aa245c5390963 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 12:42:50 -0800
Subject: [PATCH 433/825] Update
 configure-extension-file-exclusions-microsoft-defender-antivirus.md

---
 ...exclusions-microsoft-defender-antivirus.md | 52 ++++++++-----------
 1 file changed, 23 insertions(+), 29 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 37b5c8ad0a..2643fbb1a0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -48,21 +48,18 @@ Exclusion lists have the following characteristics:
 - Folder exclusions apply to all files and folders under that folder, unless the subfolder is a reparse point. Reparse point subfolders must be excluded separately.
 - File extensions apply to any file name with the defined extension if a path or folder is not defined.
 
->[!IMPORTANT]
->Using wildcards such as the asterisk (\*) will alter how the exclusion rules are interpreted. See the [Use wildcards in the file name and folder path or extension exclusion lists](#use-wildcards-in-the-file-name-and-folder-path-or-extension-exclusion-lists) section for important information about how wildcards work.
->
->You cannot exclude mapped network drives. You must specify the actual network path.
->
->Folders that are reparse points that are created after the Microsoft Defender Antivirus service starts and that have been added to the exclusion list will not be included. You must restart the service (by restarting Windows) for new reparse points to be recognized as a valid exclusion target.
+> [!IMPORTANT]
+> - Using wildcards such as the asterisk (\*) will alter how the exclusion rules are interpreted. See the [Use wildcards in the file name and folder path or extension exclusion lists](#use-wildcards-in-the-file-name-and-folder-path-or-extension-exclusion-lists) section for important information about how wildcards work.
+> - You cannot exclude mapped network drives. You must specify the actual network path.
+> - Folders that are reparse points that are created after the Microsoft Defender Antivirus service starts and that have been added to the exclusion list will not be included. You must restart the service (by restarting Windows) for new reparse points to be recognized as a valid exclusion target.
 
 To exclude files opened by a specific process, see [Configure and validate exclusions for files opened by processes](configure-process-opened-file-exclusions-microsoft-defender-antivirus.md).
 
 The exclusions apply to [scheduled scans](scheduled-catch-up-scans-microsoft-defender-antivirus.md), [on-demand scans](run-scan-microsoft-defender-antivirus.md), and [real-time protection](configure-real-time-protection-microsoft-defender-antivirus.md).
 
->[!IMPORTANT]
->Exclusion list changes made with Group Policy **will show** in the lists in the [Windows Security app](microsoft-defender-security-center-antivirus.md#exclusions).
->
->Changes made in the Windows Security app **will not show** in the Group Policy lists.
+> [!IMPORTANT]
+> Exclusion list changes made with Group Policy **will show** in the lists in the [Windows Security app](microsoft-defender-security-center-antivirus.md#exclusions).
+> Changes made in the Windows Security app **will not show** in the Group Policy lists.
 
 By default, local changes made to the lists (by users with administrator privileges, including changes made with PowerShell and WMI) will be merged with the lists as defined (and deployed) by Group Policy, Configuration Manager, or Intune. The Group Policy lists take precedence when there are conflicts.
 
@@ -134,13 +131,13 @@ Remove item from the list | `Remove-MpPreference`
 
 The following are allowed as the `<exclusion list>`:
 
-Exclusion type | PowerShell parameter
----|---
-All files with a specified file extension | `-ExclusionExtension`
-All files under a folder (including files in subdirectories), or a specific file | `-ExclusionPath`
+| Exclusion type | PowerShell parameter |
+|:---|:---|
+| All files with a specified file extension | `-ExclusionExtension` |
+| All files under a folder (including files in subdirectories), or a specific file | `-ExclusionPath` |
 
->[!IMPORTANT]
->If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list.
+> [!IMPORTANT]
+> If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list.
 
 For example, the following code snippet would cause Microsoft Defender AV scans to exclude any file with the `.test` file extension:
 
@@ -175,29 +172,26 @@ See [Add exclusions in the Windows Security app](microsoft-defender-security-cen
 
 You can use the asterisk `*`, question mark `?`, or environment variables (such as `%ALLUSERSPROFILE%`) as wildcards when defining items in the file name or folder path exclusion list. The way in which these wildcards are interpreted differs from their usual usage in other apps and languages. Make sure to read this section to understand their specific limitations.
 
->[!IMPORTANT]
->There are key limitations and usage scenarios for these wildcards:
->
->- Environment variable usage is limited to machine variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account.
->- You cannot use a wildcard in place of a drive letter.
->- An asterisk `*` in a folder exclusion stands in place for a single folder. Use multiple instances of `\*\` to indicate multiple nested folders with unspecified names.
+> [!IMPORTANT]
+> There are key limitations and usage scenarios for these wildcards:
+> - Environment variable usage is limited to machine variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account.
+> - You cannot use a wildcard in place of a drive letter.
+> - An asterisk `*` in a folder exclusion stands in place for a single folder. Use multiple instances of `\*\` to indicate multiple nested folders with unspecified names.
 
 The following table describes how the wildcards can be used and provides some examples.
 
 
 |Wildcard  |Examples  |
-|---------|---------|
+|:---------|:---------|
 |`*` (asterisk) <br/><br/>In **file name and file extension inclusions**, the asterisk replaces any number of characters, and only applies to files in the last folder defined in the argument. <br/><br/>In **folder exclusions**, the asterisk replaces a single folder. Use multiple `*` with folder slashes `\` to indicate multiple nested folders. After matching the number of wild carded and named folders, all subfolders are also included.   | `C:\MyData\*.txt` would include `C:\MyData\notes.txt`<br/><br/>`C:\somepath\*\Data` would include any file in `C:\somepath\Archives\Data and its subfolders` and `C:\somepath\Authorized\Data and its subfolders` <br/><br/>`C:\Serv\*\*\Backup` would include any file in `C:\Serv\Primary\Denied\Backup and its subfolders` and `C:\Serv\Secondary\Allowed\Backup and its subfolders`     |
 |`?` (question mark)  <br/><br/>In **file name and file extension inclusions**, the question mark replaces a single character, and only applies to files in the last folder defined in the argument. <br/><br/>In **folder exclusions**, the question mark replaces a single character in a folder name. After matching the number of wild carded and named folders, all subfolders are also included.   |`C:\MyData\my?` would include `C:\MyData\my1.zip` <br/><br/>`C:\somepath\?\Data` would include any file in `C:\somepath\P\Data` and its subfolders <br/><br/>`C:\somepath\test0?\Data` would include any file in `C:\somepath\test01\Data` and its subfolders          |
 |Environment variables <br/><br/>The defined variable is populated as a path when the exclusion is evaluated.          |`%ALLUSERSPROFILE%\CustomLogFiles` would include `C:\ProgramData\CustomLogFiles\Folder1\file1.txt`         |
         
 
->[!IMPORTANT]
->If you mix a file exclusion argument with a folder exclusion argument, the rules will stop at the file argument match in the matched folder, and will not look for file matches in any subfolders.
->
->For example, you can exclude all files that start with "date" in the folders `c:\data\final\marked` and `c:\data\review\marked` by using the rule argument `c:\data\*\marked\date*`.
->
->This argument, however, will not match any files in subfolders under `c:\data\final\marked` or `c:\data\review\marked`.
+> [!IMPORTANT]
+> If you mix a file exclusion argument with a folder exclusion argument, the rules will stop at the file argument match in the matched folder, and will not look for file matches in any subfolders.
+> For example, you can exclude all files that start with "date" in the folders `c:\data\final\marked` and `c:\data\review\marked` by using the rule argument `c:\data\*\marked\date*`.
+> This argument, however, will not match any files in subfolders under `c:\data\final\marked` or `c:\data\review\marked`.
 
 <a id="review"></a>
 

From b25fa3e84517722d7da5c09172084dfbacf199fb Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:12:44 -0800
Subject: [PATCH 434/825] Update
 configure-extension-file-exclusions-microsoft-defender-antivirus.md

---
 ...exclusions-microsoft-defender-antivirus.md | 329 ++++--------------
 1 file changed, 62 insertions(+), 267 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 2643fbb1a0..6715d17298 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -199,273 +199,68 @@ The following table describes how the wildcards can be used and provides some ex
 
 The following table lists and describes the system account environment variables. 
 
-<table border="0" cellspacing="0" cellpadding="20">
-<thead>
-<tr>
-<th valign="top">System environment variables</th>
-<th valign="top">Will redirect to:</th>
-</tr>
-</thead><tbody>
-<tr>
-<td valign="top">%APPDATA%</td>
-<td valign="top">C:\Users\UserName.DomainName\AppData\Roaming</td>
-</tr>
-<tr>
-<td valign="top">%APPDATA%\Microsoft\Internet Explorer\Quick Launch</td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch</td>
-</tr>
-<tr>
-<td valign="top">%APPDATA%\Microsoft\Windows\Start Menu</td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu</td>
-</tr>
-<tr>
-<td valign="top">%APPDATA%\Microsoft\Windows\Start Menu\Programs</td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs</td>
-</tr>
-<tr>
-<td valign="top">%LOCALAPPDATA% </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Local</td>
-</tr>
-<tr>
-<td valign="top">%ProgramData%</td>
-<td valign="top">C:\ProgramData</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles%</td>
-<td valign="top">C:\Program Files</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles%\Common Files </td>
-<td valign="top">C:\Program Files\Common Files</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles%\Windows Sidebar\Gadgets </td>
-<td valign="top">C:\Program Files\Windows Sidebar\Gadgets</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles%\Common Files</td>
-<td valign="top">C:\Program Files\Common Files</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles(x86)% </td>
-<td valign="top">C:\Program Files (x86)</td>
-</tr>
-<tr>
-<td valign="top">%ProgramFiles(x86)%\Common Files </td>
-<td valign="top">C:\Program Files (x86)\Common Files</td>
-</tr>
-<tr>
-<td valign="top">%SystemDrive%</td>
-<td valign="top">C:</td>
-</tr>
-<tr>
-<td valign="top">%SystemDrive%\Program Files</td>
-<td valign="top">C:\Program Files</td>
-</tr>
-<tr>
-<td valign="top">%SystemDrive%\Program Files (x86) </td>
-<td valign="top">C:\Program Files (x86)</td>
-</tr>
-<tr>
-<td valign="top">%SystemDrive%\Users </td>
-<td valign="top">C:\Users</td>
-</tr>
-<tr>
-<td valign="top">%SystemDrive%\Users\Public</td>
-<td valign="top">C:\Users\Public</td>
-</tr>
-<tr>
-<td valign="top">%SystemRoot%</td>
-<td valign="top"> C:\Windows</td>
-</tr>
-<tr>
-<td valign="top">%windir%</td>
-<td valign="top">C:\Windows</td>
-</tr>
-<tr>
-<td valign="top">%windir%\Fonts</td>
-<td valign="top">C:\Windows\Fonts</td>
-</tr>
-<tr>
-<td valign="top">%windir%\Resources </td>
-<td valign="top">C:\Windows\Resources</td>
-</tr>
-<tr>
-<td valign="top">%windir%\resources\0409</td>
-<td valign="top">C:\Windows\resources\0409</td>
-</tr>
-<tr>
-<td valign="top">%windir%\system32</td>
-<td valign="top">C:\Windows\System32</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%</td>
-<td valign="top">C:\ProgramData</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Application Data</td>
-<td valign="top">C:\ProgramData\Application Data</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents</td>
-<td valign="top">C:\ProgramData\Documents</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents\My Music\Sample Music</td>
-<td valign="top">
-<p>C:\ProgramData\Documents\My Music\Sample Music</p>
-<p>.</p>
-</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents\My Music </td>
-<td valign="top">C:\ProgramData\Documents\My Music</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents\My Pictures </td>
-<td valign="top">
-<p>C:\ProgramData\Documents\My Pictures
-</p>
-</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents\My Pictures\Sample Pictures </td>
-<td valign="top">C:\ProgramData\Documents\My Pictures\Sample Pictures</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Documents\My Videos </td>
-<td valign="top">C:\ProgramData\Documents\My Videos</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\DeviceMetadataStore </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\DeviceMetadataStore</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\GameExplorer </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\GameExplorer</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Ringtones </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Ringtones</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Start Menu</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Start Menu\Programs </td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Administrative Tools</td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\StartUp </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Microsoft\Windows\Templates </td>
-<td valign="top">C:\ProgramData\Microsoft\Windows\Templates</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Start Menu </td>
-<td valign="top">C:\ProgramData\Start Menu</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Start Menu\Programs </td>
-<td valign="top">C:\ProgramData\Start Menu\Programs</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Start Menu\Programs\Administrative Tools </td>
-<td valign="top">C:\ProgramData\Start Menu\Programs\Administrative Tools</td>
-</tr>
-<tr>
-<td valign="top">%ALLUSERSPROFILE%\Templates </td>
-<td valign="top">C:\ProgramData\Templates</td>
-</tr>
-<tr>
-<td valign="top">%LOCALAPPDATA%\Microsoft\Windows\ConnectedSearch\Templates </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates</td>
-</tr>
-<tr>
-<td valign="top">%LOCALAPPDATA%\Microsoft\Windows\History </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History</td>
-</tr>
-<tr>
-<td valign="top">
-<p>
-%PUBLIC% </p>
-</td>
-<td valign="top">C:\Users\Public</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\AccountPictures </td>
-<td valign="top">C:\Users\Public\AccountPictures</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Desktop </td>
-<td valign="top">C:\Users\Public\Desktop</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Documents </td>
-<td valign="top">C:\Users\Public\Documents</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Downloads </td>
-<td valign="top">C:\Users\Public\Downloads</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Music\Sample Music </td>
-<td valign="top">
-<p>C:\Users\Public\Music\Sample Music</p>
-<p>.</p>
-</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Music\Sample Playlists </td>
-<td valign="top">
-<p>C:\Users\Public\Music\Sample Playlists</p>
-<p>.</p>
-</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Pictures\Sample Pictures </td>
-<td valign="top">C:\Users\Public\Pictures\Sample Pictures</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\RecordedTV.library-ms</td>
-<td valign="top">C:\Users\Public\RecordedTV.library-ms</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Videos</td>
-<td valign="top">C:\Users\Public\Videos</td>
-</tr>
-<tr>
-<td valign="top">%PUBLIC%\Videos\Sample Videos</td>
-<td valign="top">
-<p>C:\Users\Public\Videos\Sample Videos</p>
-<p>.</p>
-</td>
-</tr>
-<tr>
-<td valign="top">%USERPROFILE% </td>
-<td valign="top">C:\Windows\System32\config\systemprofile</td>
-</tr>
-<tr>
-<td valign="top">%USERPROFILE%\AppData\Local </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Local</td>
-</tr>
-<tr>
-<td valign="top">%USERPROFILE%\AppData\LocalLow </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\LocalLow</td>
-</tr>
-<tr>
-<td valign="top">%USERPROFILE%\AppData\Roaming </td>
-<td valign="top">C:\Windows\System32\config\systemprofile\AppData\Roaming</td>
-</tr>
-</tbody>
-</table>
+| This system environment variable... | Redirects to this |
+|:--|:--|
+| `%APPDATA%`| `C:\Users\UserName.DomainName\AppData\Roaming` |
+| `%APPDATA%\Microsoft\Internet Explorer\Quick Launch` | `C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch` |
+| `%APPDATA%\Microsoft\Windows\Start Menu` | `C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu` |
+| `%APPDATA%\Microsoft\Windows\Start Menu\Programs` | `C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs` |
+| `%LOCALAPPDATA%` | `C:\Windows\System32\config\systemprofile\AppData\Local` |
+| `%ProgramData%` | `C:\ProgramData` |
+| `%ProgramFiles%` | `C:\Program Files` |
+| `%ProgramFiles%\Common Files` | `C:\Program Files\Common Files` |
+| `%ProgramFiles%\Windows Sidebar\Gadgets` | `C:\Program Files\Windows Sidebar\Gadgets` |
+| `%ProgramFiles%\Common Files` | `C:\Program Files\Common Files` |
+| `%ProgramFiles(x86)%` | `C:\Program Files (x86)` |
+| `%ProgramFiles(x86)%\Common Files` | `C:\Program Files (x86)\Common Files` |
+| `%SystemDrive%` | `C:` |
+| `%SystemDrive%\Program Files` | `C:\Program Files` |
+| `%SystemDrive%\Program Files (x86)` | `C:\Program Files (x86)` |
+| `%SystemDrive%\Users` | `C:\Users` |
+| `%SystemDrive%\Users\Public` | `C:\Users\Public` |
+| `%SystemRoot%` | `C:\Windows` |
+| `%windir%` | `C:\Windows` |
+| `%windir%\Fonts` | `C:\Windows\Fonts` |
+| `%windir%\Resources` | `C:\Windows\Resources` |
+| `%windir%\resources\0409` | `C:\Windows\resources\0409` |
+| `%windir%\system32` | `C:\Windows\System32` |
+| `%ALLUSERSPROFILE%` | `C:\ProgramData` |
+| `%ALLUSERSPROFILE%\Application Data` | `C:\ProgramData\Application Data` |
+| `%ALLUSERSPROFILE%\Documents` | `C:\ProgramData\Documents` |
+| `%ALLUSERSPROFILE%\Documents\My Music\Sample Music` | `C:\ProgramData\Documents\My Music\Sample Music` |
+| `%ALLUSERSPROFILE%\Documents\My Music` | `C:\ProgramData\Documents\My Music` |
+| `%ALLUSERSPROFILE%\Documents\My Pictures` | `C:\ProgramData\Documents\My Pictures` |
+| `%ALLUSERSPROFILE%\Documents\My Pictures\Sample Pictures` | `C:\ProgramData\Documents\My Pictures\Sample Pictures` |
+| `%ALLUSERSPROFILE%\Documents\My Videos` | `C:\ProgramData\Documents\My Videos` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\DeviceMetadataStore` | `C:\ProgramData\Microsoft\Windows\DeviceMetadataStore` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\GameExplorer` | `C:\ProgramData\Microsoft\Windows\GameExplorer` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Ringtones` | `C:\ProgramData\Microsoft\Windows\Ringtones` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu` | `C:\ProgramData\Microsoft\Windows\Start Menu` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs` | `C:\ProgramData\Microsoft\Windows\Start Menu\Programs` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Administrative Tools` | `C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\StartUp` | `C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp` |
+| `%ALLUSERSPROFILE%\Microsoft\Windows\Templates` | `C:\ProgramData\Microsoft\Windows\Templates` |
+| `%ALLUSERSPROFILE%\Start Menu` | `C:\ProgramData\Start Menu` |
+| `%ALLUSERSPROFILE%\Start Menu\Programs` | C:\ProgramData\Start Menu\Programs |
+| `%ALLUSERSPROFILE%\Start Menu\Programs\Administrative Tools` | `C:\ProgramData\Start Menu\Programs\Administrative Tools` | 
+| `%ALLUSERSPROFILE%\Templates` | `C:\ProgramData\Templates` |
+| `%LOCALAPPDATA%\Microsoft\Windows\ConnectedSearch\Templates` | `C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates` |
+| `%LOCALAPPDATA%\Microsoft\Windows\History` | `C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History` |
+| `%PUBLIC%` | `C:\Users\Public` |
+| `%PUBLIC%\AccountPictures` | `C:\Users\Public\AccountPictures` |
+| `%PUBLIC%\Desktop` | `C:\Users\Public\Desktop` |
+| `%PUBLIC%\Documents` | `C:\Users\Public\Documents` |
+| `%PUBLIC%\Downloads` | `C:\Users\Public\Downloads` |
+| `%PUBLIC%\Music\Sample Music` | `C:\Users\Public\Music\Sample Music` |
+| `%PUBLIC%\Music\Sample Playlists` | `C:\Users\Public\Music\Sample Playlists` |
+| `%PUBLIC%\Pictures\Sample Pictures` | `C:\Users\Public\Pictures\Sample Pictures` |
+| `%PUBLIC%\RecordedTV.library-ms` | `C:\Users\Public\RecordedTV.library-ms` |
+| `%PUBLIC%\Videos` | `C:\Users\Public\Videos` |
+| `%PUBLIC%\Videos\Sample Videos` | `C:\Users\Public\Videos\Sample Videos` | 
+| `%USERPROFILE%` | `C:\Windows\System32\config\systemprofile` |
+| `%USERPROFILE%\AppData\Local` | `C:\Windows\System32\config\systemprofile\AppData\Local` |
+| `%USERPROFILE%\AppData\LocalLow` | `C:\Windows\System32\config\systemprofile\AppData\LocalLow` |
+| `%USERPROFILE%\AppData\Roaming` | `C:\Windows\System32\config\systemprofile\AppData\Roaming` |
 
 
 ## Review the list of exclusions

From 88dbf9fdaddb2dbd1ef54532128c81cbb41bdffc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:14:48 -0800
Subject: [PATCH 435/825] Update
 configure-extension-file-exclusions-microsoft-defender-antivirus.md

---
 ...n-file-exclusions-microsoft-defender-antivirus.md | 12 +++++-------
 1 file changed, 5 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 6715d17298..a969dcf58a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -12,7 +12,6 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-ms.date: 10/21/2020
 ---
 
 # Configure and validate exclusions based on file extension and folder location
@@ -107,7 +106,6 @@ See [How to create and deploy antimalware policies: Exclusion settings](https://
 
 7. Click **OK**.
 
-    ![The Group Policy setting for extension exclusions](images/defender/wdav-extension-exclusions.png)
 
 <a id="ps"></a>
 
@@ -123,11 +121,11 @@ The format for the cmdlets is as follows:
 
 The following are allowed as the `<cmdlet>`:
 
-Configuration action | PowerShell cmdlet
----|---
-Create or overwrite the list | `Set-MpPreference`
-Add to the list | `Add-MpPreference`
-Remove item from the list | `Remove-MpPreference`
+| Configuration action | PowerShell cmdlet |
+|:---|:---|
+|Create or overwrite the list | `Set-MpPreference` |
+|Add to the list | `Add-MpPreference` |
+|Remove item from the list | `Remove-MpPreference` |
 
 The following are allowed as the `<exclusion list>`:
 

From d536a77139a0cc30d5069ca781cc11292500cd4b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:16:03 -0800
Subject: [PATCH 436/825] Update
 configure-exclusions-microsoft-defender-antivirus.md

---
 .../configure-exclusions-microsoft-defender-antivirus.md      | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
index 4d3ba69753..55b286bcf0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
@@ -10,7 +10,6 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 03/12/2020
 ms.reviewer: 
 manager: dansimp
 ---
@@ -41,8 +40,11 @@ Defining exclusions lowers the protection offered by Microsoft Defender Antiviru
 The following is a list of recommendations that you should keep in mind when defining exclusions:  
 
 - Exclusions are technically a protection gap—always consider additional mitigations when defining exclusions. Additional mitigations could be as simple as making sure the excluded location has the appropriate access-control lists (ACLs), audit policy, is processed by an up-to-date software, etc.
+
 - Review the exclusions periodically. Re-check and re-enforce the mitigations as part of the review process.
+
 - Ideally, avoid defining proactive exclusions. For instance, don't exclude something just because you think it might be a problem in the future. Use exclusions only for specific issues—mostly around performance, or sometimes around application compatibility that exclusions could mitigate.
+
 - Audit the exclusion list changes. The security admin should preserve enough context around why a certain exclusion was added. You should be able to provide answer with specific reasoning as to why a certain path was excluded.
 
 ## Related articles

From a6e292c1822bd0b912fe5fa4c871cb9e5388935c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:20:50 -0800
Subject: [PATCH 437/825] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ocess-opened-file-exclusions-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 4943302a17..db2519b9ab 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -104,7 +104,7 @@ For example, the following code snippet would cause Microsoft Defender AV scans
 Add-MpPreference -ExclusionProcess "c:\internal\test.exe"
 ```
 
-For more information on how to use PowerShell with Microsoft Defender Antivirus, see Manage antivirus with PowerShell cmdlets and [Microsoft Defender Antivirus cmdlets](https://docs.microsoft.com/powershell/module/defender/?view=win10-ps&preserve=true).
+For more information on how to use PowerShell with Microsoft Defender Antivirus, see Manage antivirus with PowerShell cmdlets and [Microsoft Defender Antivirus cmdlets](https://docs.microsoft.com/powershell/module/defender).
 
 ### Use Windows Management Instruction (WMI) to exclude files that have been opened by specified processes from scans
 

From 006f0e658ee935411581f4ef272b3495b89ec7c0 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 12 Jan 2021 13:21:20 -0800
Subject: [PATCH 438/825] Update .openpublishing.redirection.json

---
 .openpublishing.redirection.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 0cf060785e..edaafad269 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -16510,6 +16510,11 @@
       "redirect_url": "https://docs.microsoft.com/mem/autopilot/windows-autopilot",
       "redirect_document_id": true
     },
+    {
+      "source_path": "windows/security/threat-protection/mbsa-removal-and-guidance.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection",
+      "redirect_document_id": true
+    },
     {
       "source_path": "windows/hub/windows-10.yml",
       "redirect_url": "https://docs.microsoft.com/windows/windows-10",

From 308a4437c19903e4eba7b154e92ad991db15676d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:21:29 -0800
Subject: [PATCH 439/825] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ocess-opened-file-exclusions-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index db2519b9ab..4d432355f1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -108,7 +108,7 @@ For more information on how to use PowerShell with Microsoft Defender Antivirus,
 
 ### Use Windows Management Instruction (WMI) to exclude files that have been opened by specified processes from scans
 
-Use the [**Set**, **Add**, and **Remove** methods of the **MSFT_MpPreference**](https://msdn.microsoft.com/library/dn455323(v=vs.85).aspx) class for the following properties:
+Use the [**Set**, **Add**, and **Remove** methods of the **MSFT_MpPreference**](https://docs.microsoft.com/previous-versions/windows/desktop/legacy/dn455323(v=vs.85)) class for the following properties:
 
 ```WMI
 ExclusionProcess

From 1ccca48e53b4bef374612464b0fbcba1280732af Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:22:04 -0800
Subject: [PATCH 440/825] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ocess-opened-file-exclusions-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 4d432355f1..14b6cea060 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -116,7 +116,7 @@ ExclusionProcess
 
 The use of **Set**, **Add**, and **Remove** is analogous to their counterparts in PowerShell: `Set-MpPreference`, `Add-MpPreference`, and `Remove-MpPreference`.
 
-For more information and allowed parameters, see  [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx).
+For more information and allowed parameters, see  [Windows Defender WMIv2 APIs](https://docs.microsoft.com/previous-versions/windows/desktop/defender/windows-defender-wmiv2-apis-portal).
 
 ### Use the Windows Security app to exclude files that have been opened by specified processes from scans
 

From 659fbcd62042f39f0e2eb33e9b8426b8a3e3bb7c Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 12 Jan 2021 13:22:08 -0800
Subject: [PATCH 441/825] Delete mbsa-removal-and-guidance.md

---
 .../mbsa-removal-and-guidance.md              | 44 -------------------
 1 file changed, 44 deletions(-)
 delete mode 100644 windows/security/threat-protection/mbsa-removal-and-guidance.md

diff --git a/windows/security/threat-protection/mbsa-removal-and-guidance.md b/windows/security/threat-protection/mbsa-removal-and-guidance.md
deleted file mode 100644
index 59f32f84e6..0000000000
--- a/windows/security/threat-protection/mbsa-removal-and-guidance.md
+++ /dev/null
@@ -1,44 +0,0 @@
----
-title: Guide to removing Microsoft Baseline Security Analyzer (MBSA)
-description: This article documents the removal of Microsoft Baseline Security Analyzer (MBSA) and provides alternative solutions.
-keywords: MBSA, security, removal
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.localizationpriority: medium
-ms.author: dansimp
-author: dulcemontemayor
-ms.date: 10/05/2018
-ms.reviewer: 
-manager: dansimp
----
- 
-# What is Microsoft Baseline Security Analyzer and its uses?
- 
-Microsoft Baseline Security Analyzer (MBSA) is used to verify patch compliance. MBSA also performed several other security checks for Windows, IIS, and SQL Server. Unfortunately, the logic behind these additional checks had not been actively maintained since Windows XP and Windows Server 2003. Changes in the products since then rendered many of these security checks obsolete and some of their recommendations counterproductive. 
- 
-MBSA was largely used in situations where neither Microsoft Update nor a local WSUS or Configuration Manager server was available, or as a compliance tool to ensure that all security updates were deployed to a managed environment. While MBSA version 2.3 introduced support for Windows Server 2012 R2 and Windows 8.1, it has since been deprecated and no longer developed. MBSA 2.3 is not updated to fully support Windows 10 and Windows Server 2016.
-
-> [!NOTE]
-> In accordance with our [SHA-1 deprecation initiative](https://aka.ms/sha1deprecation), the Wsusscn2.cab file is no longer dual-signed using both SHA-1 and the SHA-2 suite of hash algorithms (specifically SHA-256). This file is now signed using only SHA-256. Administrators who verify digital signatures on this file should now expect only single SHA-256 signatures. Starting with the August 2020 Wsusscn2.cab file, MBSA will return the following error "The catalog file is damaged or an invalid catalog." when attempting to scan using the offline scan file. 
- 
-## The Solution 
-A script can help you with an alternative to MBSA’s patch-compliance checking:
- 
-- [Using WUA to Scan for Updates Offline](https://docs.microsoft.com/windows/desktop/wua_sdk/using-wua-to-scan-for-updates-offline), which includes a sample .vbs script. 
-For a PowerShell alternative, see [Using WUA to Scan for Updates Offline with PowerShell](https://gallery.technet.microsoft.com/Using-WUA-to-Scan-for-f7e5e0be).
- 
-For example:
- 
-[![VBS script](images/vbs-example.png)](https://docs.microsoft.com/windows/desktop/wua_sdk/using-wua-to-scan-for-updates-offline) 
-[![PowerShell script](images/powershell-example.png)](https://gallery.technet.microsoft.com/Using-WUA-to-Scan-for-f7e5e0be) 
-  
-The preceding scripts leverage the [WSUS offline scan file](https://support.microsoft.com/help/927745/detailed-information-for-developers-who-use-the-windows-update-offline) (wsusscn2.cab) to perform a scan and get the same information on missing updates as MBSA supplied. MBSA also relied on the wsusscn2.cab to determine which updates were missing from a given system without connecting to any online service or server. The wsusscn2.cab file is still available and there are currently no plans to remove or replace it.
-The wsusscn2.cab file contains the metadata of only security updates, update rollups and service packs available from Microsoft Update; it does not contain any information on non-security updates, tools or drivers.
- 
-## More Information  
-
-For security compliance and for desktop/server hardening, we recommend the Microsoft Security Baselines and the Security Compliance Toolkit.
-
-- [Windows security baselines](windows-security-baselines.md) 
-- [Download Microsoft Security Compliance Toolkit 1.0](https://www.microsoft.com/download/details.aspx?id=55319) 
-- [Microsoft Security Guidance blog](https://blogs.technet.microsoft.com/secguide/)  

From d173252d051e82c185b9393208f4c8f2cbee3ae9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:23:06 -0800
Subject: [PATCH 442/825] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ess-opened-file-exclusions-microsoft-defender-antivirus.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 14b6cea060..51ae6f0011 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -164,7 +164,7 @@ Use the following cmdlet:
 Get-MpPreference
 ```
 
-See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
+See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/en-us/powershell/module/defender) for more information on how to use PowerShell with Microsoft Defender Antivirus.
 
 ### Retrieve a specific exclusions list by using PowerShell
 
@@ -175,7 +175,7 @@ $WDAVprefs = Get-MpPreference
 $WDAVprefs.ExclusionProcess
 ```
 
-See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
+See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/powershell/module/defender) for more information on how to use PowerShell with Microsoft Defender Antivirus.
 
 ## Related articles
 

From 32e33487a5d384ee2b7611c7d6824fd64ec63bb2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:31:38 -0800
Subject: [PATCH 443/825] antivirus

---
 ...exclusions-microsoft-defender-antivirus.md | 21 +++++++++----------
 ...exclusions-microsoft-defender-antivirus.md |  2 +-
 2 files changed, 11 insertions(+), 12 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index a969dcf58a..dcf0ef8305 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -28,7 +28,7 @@ manager: dansimp
 
 ## Exclusion lists
 
-You can exclude certain files from Microsoft Defender Antivirus scans by modifying exclusion lists. **Generally, you shouldn't need to apply exclusions**. Microsoft Defender Antivirus includes a number of automatic exclusions based on known operating system behaviors and typical management files, such as those used in enterprise management, database management, and other enterprise scenarios and situations.
+You can exclude certain files from Microsoft Defender Antivirus scans by modifying exclusion lists. **Generally, you shouldn't need to apply exclusions**. Microsoft Defender Antivirus includes many automatic exclusions based on known operating system behaviors and typical management files, such as those used in enterprise management, database management, and other enterprise scenarios and situations.
 
 > [!NOTE]
 > Automatic exclusions apply only to Windows Server 2016 and above. These exclusions are not visible in the Windows Security app and in PowerShell.
@@ -81,31 +81,30 @@ See [How to create and deploy antimalware policies: Exclusion settings](https://
 >[!NOTE]
 >If you specify a fully qualified path to a file, then only that file is excluded. If a folder is defined in the exclusion, then all files and subdirectories under that folder are excluded.
 
-1. On your Group Policy management computer, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
+1. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure and click **Edit**.
 
-2. In the **Group Policy Management Editor** go to **Computer configuration** and click **Administrative templates**.
+2. In the **Group Policy Management Editor** go to **Computer configuration** and select **Administrative templates**.
 
-3. Expand the tree to **Windows components > Microsoft Defender Antivirus > Exclusions**.
+3. Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Exclusions**.
 
-4. Double-click the **Path Exclusions** setting and add the exclusions.
+4. Open the **Path Exclusions** setting for editing, and add your exclusions.
 
     - Set the option to **Enabled**.
     - Under the **Options** section, click **Show...**.
     - Specify each folder on its own line under the **Value name** column.
     - If you are specifying a file, ensure you enter a fully qualified path to the file, including the drive letter, folder path, filename, and extension. Enter **0** in the **Value** column.
 
-5. Click **OK**.
+5. Choose **OK**.
 
     ![The Group Policy setting for file and folder exclusions](images/defender/wdav-path-exclusions.png)
 
-6. Double-click the **Extension Exclusions** setting and add the exclusions.
+6. Open the **Extension Exclusions** setting for editing and add your exclusions.
 
     - Set the option to **Enabled**.
-    - Under the **Options** section, click **Show...**.
+    - Under the **Options** section, select **Show...**.
     - Enter each file extension on its own line under the **Value name** column.  Enter **0** in the **Value** column.
 
-7. Click **OK**.
-
+7. Choose **OK**.
 
 <a id="ps"></a>
 
@@ -277,7 +276,7 @@ You can retrieve the items in the exclusion list using one of the following meth
 
 If you use PowerShell, you can retrieve the list in two ways:
 
-- Retrieve the status of all Microsoft Defender Antivirus preferences. Each of the lists are displayed on separate lines, but the items within each list are combined into the same line.
+- Retrieve the status of all Microsoft Defender Antivirus preferences. Each list is displayed on separate lines, but the items within each list are combined into the same line.
 - Write the status of all preferences to a variable, and use that variable to only call the specific list you are interested in. Each use of `Add-MpPreference` is written to a new line.
 
 ### Validate the exclusion list by using MpCmdRun
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 51ae6f0011..968b2a6975 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -164,7 +164,7 @@ Use the following cmdlet:
 Get-MpPreference
 ```
 
-See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/en-us/powershell/module/defender) for more information on how to use PowerShell with Microsoft Defender Antivirus.
+See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/powershell/module/defender) for more information on how to use PowerShell with Microsoft Defender Antivirus.
 
 ### Retrieve a specific exclusions list by using PowerShell
 

From 2fde0b93007535aa84cce056c82774709f95c9a9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 12 Jan 2021 13:32:35 -0800
Subject: [PATCH 444/825] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ess-opened-file-exclusions-microsoft-defender-antivirus.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 968b2a6975..466126fe0d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -152,8 +152,8 @@ To check exclusions with the dedicated [command-line tool mpcmdrun.exe](https://
 MpCmdRun.exe -CheckExclusion -path <path>
 ```
 
->[!NOTE]
->Checking exclusions with MpCmdRun requires Microsoft Defender Antivirus CAMP version 4.18.1812.3 (released in December 2018) or later.
+> [!NOTE]
+> Checking exclusions with MpCmdRun requires Microsoft Defender Antivirus CAMP version 4.18.1812.3 (released in December 2018) or later.
 
 
 ### Review the list of exclusions alongside all other Microsoft Defender Antivirus preferences by using PowerShell

From 01d866018e9f61aa59e4b27d9822c6100eba9e1d Mon Sep 17 00:00:00 2001
From: Thomas Raya <v-thraya@microsoft.com>
Date: Tue, 12 Jan 2021 14:29:21 -0800
Subject: [PATCH 445/825] remove mbsa-removal-and-guidance from TOC

---
 windows/security/threat-protection/TOC.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 25a5417d95..90d6dfa378 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -1334,7 +1334,6 @@
 #### [Windows security baselines](windows-security-configuration-framework/windows-security-baselines.md)
 ##### [Security Compliance Toolkit](windows-security-configuration-framework/security-compliance-toolkit-10.md)
 ##### [Get support](windows-security-configuration-framework/get-support-for-security-baselines.md)
-### [MBSA removal and alternatives](mbsa-removal-and-guidance.md)
 
 ### [Windows 10 Mobile security guide](windows-10-mobile-security-guide.md)
 

From 5580f5bff5905892f13fab1e596bd342eb04ae6c Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 12 Jan 2021 15:33:32 -0800
Subject: [PATCH 446/825] add images

---
 .../images/cloud-native-architecture.png      | Bin 0 -> 136597 bytes
 .../images/intune-onboarding.png              | Bin 0 -> 121629 bytes
 .../onboarding-endpoint-manager.md            |  25 ++++++++++++++----
 3 files changed, 20 insertions(+), 5 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/cloud-native-architecture.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/intune-onboarding.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/cloud-native-architecture.png b/windows/security/threat-protection/microsoft-defender-atp/images/cloud-native-architecture.png
new file mode 100644
index 0000000000000000000000000000000000000000..c19f2aef54a5138b83c169a130ab91c6379ea284
GIT binary patch
literal 136597
zcmcG$Wmr{F*EYHV>28pcMj8~PK|oqiS{ecAlJ4&AZcsX;rMo1hQyS^+ICJ~F@AI8s
z=bS%hU0#BFub6YhJ?;_9kPq^b=qS%oAP@+;w3N6a1Oi_Kfxvx3LI9tv3J}wRAILUR
zpX?wI0`NNlEsV4x%`x~8(O&xfJH$;GG(vLLeS8jg2;>DsTKuiDbNc?0i@K8WJi;+Q
zWvPUtkuA*lXMDA>wa`Bk@8K=)BFZ$Uh%Kk;=BIamDK|NN(fU$cTQ+}bS3h56Rj9HT
z$iO)GEh{&h%8GfgRqVyhBN8uNw3N61vu3ZEo&q{!mr>r6bb8FAyJo5Y(Hsc&e~%dC
z;P*=qs{bCYt{l?u#s7QIb<uGB_gw50w7ALtekE?mDW{10-!EeZ*#93c4A0MDV#Grc
ztMdy6N8z|QRZLNu$iI7C<U7S`B*af&&_nMPQ&brH`{yIgzXhGqD(=J>sWRY+a%!+9
ziJf<%N>~#?&-y6F5J~Ez&io}e_22zc3ajaB8Q-!b4N)cyeN<6_FZpId{O?4#enU=m
zb@lenPTvqS=uLCKh#ZCBsvw)C$bI>Bi3L50D^!k7OhpBM<14T1Z|DcuTyU-z`Kk&Z
zk`fYf66Wt_RLgutbH;WuIx`ueYc^!wwaY798?iduLOufLARmQ@Q|Y_(7XI7NmUKl3
zE<Q?tM68DP+qXWwNf2*c2y~hK&dQrR_7}0NOiX_2%z@%m*k($vglM6w;?z};Q!Md<
zi5}W4EG-p(_b#B96CWQRD?}VCtfvzbx~3S8!mC`>;S{Q*A+E%j0Ym6{V9_)<Ew_gM
zwh@E;H{qk|MgDYRzN!au;mxM^zlV+~3+C?aig*0{kLrelbhwJ9+>~a}PHAzFnORu$
zjf~)BWo3bokh&N{pqHS%Yaw(nGNLu)Okpop$YA_p^z}btb{TWK&vVVy$S5eFwXn3*
zx3okzH#d)%_xiW*!2D2Ym6n2@&$eZTHLmoibjAPf_A6@{m%eyXPDu09r;hpg=XG^;
zl~q+f;#58X0r3B^CqtWJoe7+fXJE&o15v5T>2y$;m<c@>j0*>kDlIG1H!y(H)YQz`
zK>VL8Op0SXigD~zR8*n|48K_sKqZ9DC7KsENkBjlEkz@0X+~EBeSW{XvS88X*T(45
zy2?s+hid2sgA1{DGxEz*+zG;Zpz<YrHih}W_oa$KLJ1JvkuI}j#fy>ZR-g2yDo;rM
ziTqFRkdCE&xus_r&zIsfE@(v-{-YSmqR(=@8SkmrG>}DGf12-pfvO`0CS7ZB+yZwh
zLjFHq@^R>L81K#b$q#OaSO3-kgL4?a{=ky*&8ipof1OTYvTtbK!fgq9hmU9U+zxR6
z*8A_Toxer|f<+3poCH8PxdaA8Zi_h3U4Ilz7LfMX)j;;;B}Rq*I}E$3ff{$}pHlMQ
z#L*YwPkB8WbJ817LZv!_bC|g5$ATGf9r^FJQWSIwiY4b4TZYWgD~3~~40j3s8PrF+
z?hxF6I{bHHzhQFzKgB?mLq!#*AN$WL{<A>2K<R((^`GxJiT@+~|9toV<Apfqy0IwZ
z`Fr225Flq}VXXR3tx?ln@)F8li;B`dzs{AO8TXPd))^8)-~JEsG|m#GV1f&r-8=$y
zhF)dTQz^wJ|AY~reBHVj7jWD_)tw)2+Ppm4hd|hN&iy{`-wuA^ts4W8e*<9n5w)JJ
z4hgkhSp2Iiyt`m2yJ@9hKKI~TJZV#WDVYj(Thw9Q*|wv+Y~{$fFn+V<)}yXVI<pv;
z2}dDriLLdl)wyfULey{YyhIL9Kg*%;`O$;j^V@Bx3~SHYlaQ#I0#j+ms@3k+Yoc`*
zDo$D;M~%w(AWpeQN_0r&Dhp;FB0h_XvljO4&1~{d;^B##v;rxsT(+;x@<4f$>fu>M
zlvakyFMuunbk#`t`4XYeIWssF1(-L>?42g(M`gOcWz2bMW)ZX9t$$ih;p!a)mwxMj
zZVo>|D-;Mp?zzRv4upR*2kppupt~oYGk;qJ_QUjAn!qf~nT|b9;sQ}h)Ze{{+DpE_
zZ8Z2CFO5D}xYeoh6FyyG19yQyppr4p$9*pP`Y#_?soo~un+Qt;r|Pczq;&I)peRq5
zVDOk6WABQfgkJW#`Wa)rr4s>&h@4CcdraQ$^<<Q(t_61Q!?q9|dR^Z%Z)WZM7Vj0E
z#zJUJO{b*u!I0pm+2<-R_JteL$XaieNYE~8%g)r*$VPgWlSNmF1W9R=U(b>c(bwT8
ze$<Ytm*9bg)V;&cE|e>`MF)B?P%><-BrA#_ibGhKdHzlPjPK&Cs$<Qz{P}jx7ME()
z_1D{<_Hw#OIwgSy!w)mf2#hZ=jno}qkgQg{>ogvl=|b5vcF`M3x#z3E_137Ro*IqX
zb-v&=j%c(3qBLxMjw{^OA_PZ|EBktFF#6E(g7qOg)R-{Ju1C$S8Y@om8+O(~7z>UL
zqW1@{m#ryl2w8QB&lifAMpSBDfE+BGhv3wXk_<GJVJ6NPS63O{nt0c!E?o5x=zEBh
z%hM!+jbMP)>%%CzpJ=3M-03>-5DJqHO$8@ywQYpkJ~dX<eybNcNno6AzIbok+(wJL
zYWwc_HpIJkZ+=ZB+fl1%kLUcsD#wfvQp%r6-(A4fb~R~O=-j&1cxDr?H?B??ab#L-
z`S40WQ(b<+_&eoEb8D5YQqNiO=*8emD<0cg^_`3|4Yid$1@ZS$(q_2?yWLZtA?^L-
zWzTCfJb;j*`zj$XZ|`Q;JR{M-vy;IR;0sjLIhSk47d*}VsS)g}da9Uu)SJ(+HPmJv
zN-BI6d3Cg0F~OFgyYDN<`?vd3MlM)om1CS;ww{fSO9qAngM$-+=BAgpqYaw+l@%=C
z&}`eiS?iKpS+$Y&VP5QfYSOqvM~&_T8lo>xG!Yy*Z<hH*ese7l@Ng&8xgLrIZj>G)
z-;hP!RaXex+;C3L`cVBF7cM^{<_5aP2X~7~y_#41mOa3{yzvq3#+K)PsERx%*YtlB
z;;yZ`+stHkKh-1v_6<F6o?mlKLxXq1j>$aZ_tU2fNY}&u>yf|v7sN=YJGs>vB+IAm
znPCA)QB0k_<0HrB*680=32HA_0KDine-n5El}sxu8N{FMBQP*$(>Xz!?`nDzdTy()
zlGAm3NQm(-e#+lYIE*~ETLMVb-^@khsT!rEY+LYElUChH0P}BS!bN6ZK0uqfy;o2y
z5`8FuuH2#TY;0a4yteNQi{J$i9mXt)5(ACl)K!i`ddcBkUgMxgq%xhT%H7_UX&JU!
z<lU$TWz78W@8@m?C{--QB8`z6^yroxTOlPq$t^-+dneOxT2m`;VSc)*>jPh2C9SE$
zU;ivaEI>x9&f9}ds3cR{TT;B2kXUkW#r{K*iL^;E9GC$>#KMGUQ`=2Fz_)nflzo9j
zp(?n3EZb}D4Gi5@*=B7>%Q&8sm8ocdAWiAL1u!~GpyFLG$&=esT`)2#|K6eJ>{f?g
zsryX!%GdyiCc@v-qe2*)iv<deg@{ujy}i@pcV^ZE5TidunH$<dRV=q`(mnKTM*0o9
zB?uQ(Dwdjp-YEndFV1DGf;Y}lO4HZqo;en;uYl(OwRg5@E(DvSuUi~hgxqLyR=xR#
z<>z4;kOkmP-<qlXOe^qKwrWi;vey%$=OM1+fJwAzPC|VaAfnLny}QA)jAP@B|9Ycd
zQp3%l<Zg{iEkYMV?)kp=$k9sYa&o7}Tb2*}*Wm!&!Gb6o(zG*h<A9D$_7!G$%S<(*
z;YL=N;UU+x_0#I|bAFWHryrBTodUKO)2@x3>niU7V#lQGoOJ8gUo^_!7Q2j~+5R&G
zcVGxQjxU;2OP@hxdxhl*yc+3CbTas2e>1(7ppysBU-oK>0MdT#8b0DSj;u|X|3^Ic
z3q7*OnwA56!Pkg!&*Fx!=E|)STEx3-Q^8TncPoUNG|k^aPk?E^uH!v=NAG?<Bv#6k
zoL6-e*sTVWVexw8?GtSgR6CwR+-9}~Kb979Q7YN$q<9F6_X<2cK~O^qxljqR<BI&0
zbwmI>d4oU=1|pD7<Lc%4oMaR%QFgEKH{F(FO79i#RIL(iv4e}EfNqw#aj0`^Th#lq
zGsS;^QlhVoAF@+~1!7ThJf}arR4oE-TuEGcu?{`@lH>3)wm!@Rf<iLD#Ugz5Lf0;>
z7G2inI`_{D8hx*)b#IP3IbHlN1)F}#4FKPJUXdlm+;M#9*lBy%sE$+=(V#l^dUl2Y
zc=~QSho?rgSQ#6ikR{9No_;{?>AWSyp;{AS=Z}Xui1$;*=EuH|FGo#>ABskb7){D5
zEI-~bFvb}?%8t}7qoPNnbit#4s{1BXlTqEP^9E2KGnY<-us?hH1zgB2HsL?s6c*$8
zw?YLPYY!fAVsYW`UTj(HZ(lF=F=Dp1)waACvHbQC1js+Gsb4Je%K9w5C`ck6N<Ir%
zZr;_<Dw5#nP6;3a*%wENy{ak-RZ~GW6me<sZJL|n6E5C!Vky&FckpP_oJ^uzyW#3P
z1&>xS_I(ZsbgJ<9MY)u)ut=1moAnL#yv6Zb*tU68aN*GfeeSoOOuz=xT}ORxf5zmX
zG25fNq+jLYZdniDxn{gJTzK#}Kk_Nl!F^xw<zdfp<fpYcm)|My6dtc?ysG*HUDDk<
z_*^;=vXCy4%+9~ud{rO_9o$I9-e+h|OjHZW<!qc@hsjp+6=H0}(;V5Lepv?lZu6^_
zLW#)76s^6ViYx_66Q_(o;00<fq4XKQ0~I~K?Cx@`M3070?(i8$wEPRAkGr_S-?vq$
zUblbTb1OEq)>vLw|CHrCy{zh_%jqE-Hbp;j@F&+JjVo>i8l081jrmwAa4^3z2F!Od
z785BX;8n<qtubkDw|A5u3OWCE8RXuZ*L{C+WA#xtB4YdZ86(HyXzTReyfY86Q0C0l
zd<tXc%%#i!NC--XxU$1orpZRTQu1-CGgGv(^c0P{G;7@+xNGE7iak@!6iGzp?mj;z
z{z9-+Flx|c^6$e(7VDAMV)3a6QYkaf)-f-myWq2)FAU6c;gMlq9K}#1srpb+DU^8*
zUsz<)^lg4}+wQa6|B!~|R4PwyLxGYojy0`|M#Dg-dNC1tl4nl1)VwXC<^#dEzkZKT
zo=nB<N(ir8867{E8WcL~XrBIjIki2XA}e5xF_RTsV-TBK7?4V^;obIhi)0?Pt$!)?
z9pU}XHx%Yb?U&OUgceh)S`d+@=WQu%Nh~F`rRA1cZJ&xA7T^nN-ROvlrz^{EO@TB)
z&N2#610e1?i0k1ONmOeZA?z=+Lnk%D_e}B8g~+vQ^Y?HkWy*Sj8&rJ(KaG>S{GLkm
zyC|Utx9!>V1@YvJU;6FUWkpfdOazErzcj_xi~(bz$2C_-M`th?f;x8b1tYg3seUQX
zRY}Vy6HDse6or=8BVmlTWo2YsQCyq)2S-Tn$#kVHyFuVj6UcleCGg}ws-rXpbfqF-
zO$XiZt0-L~?3j<t&-Z+DIeB$795Fu*TvU*i7NfTSWHJ!NODOwz^Bfnp*z?SNt@ul2
z4O?B|G*%ZNCjz9jNKq`s_?4ajmkOmV<PI{p+MJpBqstt4bupRBr0ui=@8&24%8`aJ
z49(LiF0R4`H?DV*f-bD>Yg5HA-$-oD?4=j&&bO@e=eukFbkTr=oXWl)U1{(fTt;QW
z+?>>q%-FTd-FsCiKjUy}AOAwI;>YxD+U_T>QLO(FipTo4wBG?hcptVa!zot<e9hh6
zT2r~(-o}gZdDYUGY<U-k5`5j3NzIh#83JR|F#a^Y*5}Jh7}zs1yWvcGvQs3jUqa&P
zP3;9%mgKjMN2BfkMa$~Y?Fjpakbd^rxYR=UG~nDQG9||Y)}M$@Z^)iGRg0;O_K79O
zPB2Et>-f|hHSH|+f&iU-FZP`7DLU}~FgNfRz*YkjlotK<RJf!ix@&R#0g(#4tL=Os
zB?gSTJ&&*QL%m5UDgck}=+Pr6cd2oz>ju1mC#H}&M!!_NmNBK(-i!NiyWjs|S4P~8
zPX^1j?3s1Ns0cqjva3Ul%jct&IqHl`mSPBqC$H(`ls|DU;{#@-Zp)51@E3n)+W^i@
z6IDx=Nm5Y*ei`kn^P2UQ%G>1)ii!Va8euPujxWZ%oabXt%7dj}ib2yOHtBaZZ}_2W
z>4{gwOB}3~5C4s|Y#HD8*u`N~ad*ed$(%Jy03!X#G?FBg1n;j@v~YoF{La;?pqGZ-
z{7ZxR16nW02Gg0eXH4CnrlBkjFgu>O{QLBSh?kRvm_<jt=D!@M0q~!xtz5gT5)r1$
zF?T=%JzarZVOL3LHOOA9C$6&r(zgPt1lCrJzkaosAO4`y37Zd1QNWhRK!!RNrll#3
zmHl_U#QIyqs`%#+39U~bGy)JC6L?b8ee>~!(C5n)G-ahMyJrbC{eiKpzO|yA9<iBe
zYzD{=y~fowV0tvO6_;^WOzmGxWj$%GDi_8kMu4V%i$F3&hchTcm&Sm$rAT1?1>vsT
z;h89i(xf_*FyM0okZ=KwikMMLw8?YN-o3rk7?{^xu?)JZH>46MmnsanibA$Lei&cW
zkT#o=n*;eqPpID@c`c}k*f@U-l1N%|j_qiz1AOrPY{jHRI4~oS+5`e3R9t(n=4Ivw
zWmkvJ<oVp6Ei%?WZC|QLJ6<5;PCeXO@dLMuIG&}VG`YH{6!oG=<J-e2Pg#vj2>R+T
z?hN!;nzi}y$gU0~)7K!{)JfnYZLiF9$rwnP83e#fRRJnKO+MOn&yw<dL5IJK>>!=y
z`Q4RGe0EzDdZ2yn@7cie(QMZx9-v4-xlUy_)PD+VuDeF<&HP;6F6H>=jj2Jm-J>8%
z+nVSHX`H+jrXYb5#qOr}1yJollQalVjCwBiIutQ&0U6vQRRH<`7}5zej%<0oR?Dri
zFcyE3prARVVN09ctP>I8qt^B}5MZ%XAy<oI;Gq#Z_NegRYUBRpJB85gix$T%oKcdq
zTilQ9A$XwbG?RuB0Q;Yk7Q@SzZ*6TkP*71%_T7$<hqRt9HEXPvo|kFV`etO1LF;z<
z`Y<t4`D$<=;eN4E(!|r)K<(Rff+_^9DcDWn*=A_528rf~xVZ2R4i0`$R}c2}g|*KT
z)>YrStzQvkOaOm6r>6;2RaGxS75;Mc?ur{qfr1J4E*sZup&%92go0i0U-h{EE%JoR
zaQ$`lkkP=x9{=t4-(nAEDgghSZ&hZnmcR`hO8;8}Mpy;;IsnkOW@ilwTFw^OAd@}m
zF)t_DH#hH`2KBMV&;P9-p?z-1B4hm)Ps!T?3-L!jedNeN2W&FA!2u-G<^QMZ<TuOL
z_j~gF3sA%jmNql1jE%+F*xEu7zPWL!tTqo&EsGbvyu93*t;#D(lLn=%XIV@j9S4U3
zJzbHs_0{2$n7g~c+WLA-ygiwbk&#2Wfss*wd<I{R(s%jevpt{ob`dF>`&l4BgDfVY
zopG@nt*XjO6W{57g*NP%Dt1jN1^e}0ba4p@Dj^|qQ&UX;nF7U^^Yup%dU{D7Ufzy@
z0c1?_{2V2EYdk{2yoLs%xw*Lpk2~(z*x2a!c>k^-OfjmM7wqg<qk@FNIbuPn`wbwm
zd;R=OYhbYWMvM0u6BE-j1OzH@h93et_na+ICpbQKffAv{QiCnr>gsB6C?9q6bfcZ|
z`N0CA$K7q7X1$fGHItwqSr8_LgpLk5t5&dtvNB$7Zf>RBwtP6b;B&U-V_yyo9}tOy
zDYKYNO-*^+udz-~PqE0zB7T2YSU>;!`}kxog2SMfiic+wNm4}o+`j0O?@Kl|LSS+@
zgY0t)3tdA)LzBaxG!Mtf%1Ur}GbnuKeDodKA}}pX5w~%0=$Wm`A!65q%-5Ly&bD-Q
zcGkN+{|kXMYDJ<F=GyMha&-6f=r8@Oovk*0Lnr4<MoCGDz>fi{-<ZA5<<73IpL@fF
z;UJ7mOxR=|<dTu39SKZo#|QN#l}<-Gaw(kfFfcIC^K%nf1qIP<ZBK&3!n$hBLtK;e
zPA@MdzRL?8pPh;6>Ae8nk(ONxYzN8dX!#vbIS$U6?Zd4@d{WX(BgWB#A+wxfoL*n#
z!S#{X6RJpxI1)N~PcnxA`cKR%^>7$CgwO5XJ`JuHj2Pqs!Dri}`WL&_*tmAsO5a<N
z-@JL_cNiBOESL8(lL^$U{SYxb{&a|85fTPH++D3t6g+c(xKJY!bbb9zAq%ET-D1oG
z2fG&U@87>Xj{6L2Yil;!BV?-%MarQVWPI)8<I)Tr@rkO{&y)zPR$3!AHVkR#>DT+Q
zjZE9NGf~C${@4-mz3w;cdnYdb6RQ31@)@F{q5=~W6Tt8$rcD;=%4}Ag>^EAnQVHTF
z{UxKw^$+H2gQKGS#Hl(ai>yEYO6HJQsmRKrxWB*0A|VMIPJ6Su*k~6V64Fun$y&cV
z7+YdR7#o{7s3?=^@$vEa>Z)%bj=oC2%av5X84DR1+4-o&#d#~mIK0)1DtBvbJTGXr
z$%zdto~C(ga}(an%j^7LFN$2yb*H85{M??D_p3TXhyA4m-bkhj+rd@tKdak)$;(T8
zcNIj<$SC7nCY!{%vrx|lj6?J2M|tyATn>lyLp;CRCG&KdW>{yZsQunFx^>G1H=pDF
zY`!HD5|W6B2&B$p&R5XQasBS7t*a|2#d$p<<o!Ib9y0+u=W>64|7?XUq1j4(!I5-c
zKLw#rzL>&V-kuM)T&DcM>fg)DV_Y6AgaIAFK|n(Rn}8eR?c2A<=jRq<+=2oE?3SrN
zYO(-a+S}KR@w+YkbeL_?{4{TUeZ2b5L??8IH)_868xSF&5kb_{W)Ljnt~@yr=!&vF
z-(4Q`e0!e;ff)2f_MHEHB{!e>Qt8{D6yu+In}Z3njdt|pLhivXXIp7CptF`QZ0A}I
zfMV4TQ^-Fk2+{FyF~sYB-Msm1gr7(#o!TLI=db<NFXGZqXK*sIvH<0MDl2V?-dK_5
zD;9NJQsRWL>$OABh}a<^At5}@$B>Z>{-C2)&4}b=qUIYq**nk%DL7cDH`tapx@qCI
zoY&i*{oog6<37<M%*`EWq%CbNrzl+D`SjpK8FSo$NTJssokM38GvN&bcM|2*puah2
zZL>T1GCm=}U_AHTzt+lBhgKGobu$O{<t4`T%F_e!ipLe1h2;Ue%^wk^H(|kr(nS)?
zup%ZVM7<Fth?0_$d56_*SBE>xE&RaXD_zd$(uKV+s;W4Wxy%V9!ih{LJ#euF51?Xk
z*qep|X<}kxGM@vZL=?B@O-t(4W1o?>%hC6rwsbk)$Hwy{PtHb#VITyoT87-9OGH6I
z;eLPe+5YbY{P_5G)z?iKr8l5Wk=eeO#gr!*)tk<12LoAgKcfJyl-2+|=lwdk$Mss+
zXqEA()$IKI8jyWEz^L%dY}M_fqbL9~s|jj4K5}$jS1Vpox}G-$1D6Wo=QX@;+$g97
z?!njB&QOyaN~$o4eOAl2d{;!7obNf9&gXz)K79{?Bnv-z0F|_NvrLQ(52J?>Jm8b@
z*^3x%ye$1x-8=anghrOsAv>du{+ML;RR?8N)wMM1N5AxR3+T%G3l)`=s%%z8X=rG&
zf!x&VEE=V~LU>$G@tCz5kfx`nuMg@o)EiGp;%Wne3k&9f|EZR$`{d?Q`3DBB?NvOD
zZ=7`%rU|&9I36wgEj3-~t#yYqU;W0dTI^HW*cwh#ua%i&av4c)L_$F+u9ed<rB!_=
zWD<MH?9xizO%*e8rLCn^X)>;R(nFZFzB4X7*6P6@PDWDfFc%t%VrXdif|?o*lS0V9
zx*9h<L;KHK?mc$c%^eXHmDum?#?SI}a>?HN`^=>Lj%Xxrthx~?+zajI78kV)jf^On
z_OO3c+x=NvLsL^zYiMZboSSPz)_gCn>_tpWtp4*{w|{iB3t%t1L2uUkB^pROu*0#s
z1K~=uDH#xDbDNt<fjFlohk>JG1FL<(ZLONHa)%`rh{j<XX13mvmFX|N`@KI9odf~_
zVZ5h5X5Jj;{o+^jpz_Vv(r%8rp8g(QhcMR0BpE{>#;h$lt#rlGh5>{_us>WRUTV6d
z<mX4Ns;UZ(i0A>16O)i|(e1&@&)?P41MlNA`1uh%qa{5!m>jxQt7T6&ZX8@(Ti~JR
zdovUOLi&e>#I&?X0jsdtn`Qx9&iU~}ahsb42U$y7d-Y%m8HDlfb{{`Ief@EN$+zP9
znmRhHiL4KVoUdMSm`yTNOMfW2zMiAudjG$(0M~jaYdz|%?(n&JdBD2gK&|Van|)GB
zT)89m{&An#7-_XXu}QpqCk>cQ77oADVK)ebJ9E{9zym8BQm*gbO(C0MzldXadQA`}
zqb1MO8?)EwY#!Z*OL%d1)&-2e%61)rS+fq!%F3$2c0I6{6Z~T1<P_A@g!rSn8nBGW
z{e6pwtn_r!MG$uY!|<u7V1tE&!zSwY=K>x0oii;C$<I|pASi}-J?v$v*ITgw{pgiF
zpTfYv0BoS_(bVtPFS&-sMoK0o)VaA&{ey!z5=T%dn4VrS_|yKD=(P#f?ZuvPE;Th3
zEC9PI`@f1HHX(`yVf5_J*~u-@lmRLc*7kT&aeaR_icL(64EoL0mP~*>h6M*>4IZ^T
zwcaGIz_q&x3u4DjD)<2N)4Ovt^11!{`}>|2>%EzShkQ!G35g0VOgDZ%L+P0L$=KM3
z#h(tS-xVZtv$G+Ghll?YUR*Et3)C>{z(y(gZUsiNq9ne4<&2Gst1=oQ0EFywr~l0A
z!NF3$9~G4=-_D(uX<=wFqt*aJPr><D0p?h-9Eg@?$k^|t=PiN<deo*`6`R|cZWwtI
z5uE^hV$##Y0T#EftWZFM?Aaa+KY!ED1@(_U*VjDhf^HbwBN^|+y8&rU2Tt~iPCh+&
zwM+7KafG-ydX?*i84WFMj@Q$p^V0*SSxc6tMu@e-l67pI+~HB+2x}eRij$)wK`cIq
z{_j9EGEcZ18X1vLRV4s2{h+8A3V3pSVj@Z&jkZ?$>i&M`IJ5Zq<WH9~gw_W~e2CuR
zq7%D)q5j~Jin7Y;lYRHP$8+qcvt<Q^PMQlPy>*ExoBcOg>A@-t@m`@NkTAw|?&3jF
zyDV4dy|ParfQq+yK8!WmZMz=*u-hKlS!{$Z-yg_v?f%9@Trx}2-u^YPWDcuE9=YUW
zJ`jBOS}dt@zlSW3Cb$;I4pnW-kgLAiT<d&5QI2QwmVtbL5O{aXgbQURIvYn*>l__C
z+moOvp_fm8W^BB@Yb=xGT44=%dwV+!5*n#Dc=Fo*Ts4o=Av3E^bMR5?9mdCxACq}(
z75y^RfcQ@OC?stj?|GeFT>h3`@Y<enk+v?sE_e{)|B6_R=(ZL#lR4fP4kGcg+mRr%
z&OHaW#Vmv(YXnd$mdhi|J`fzDQ&Wp)TGP|h|LpEEhR0jXlxO%v`hs>$QPK(tNA5`m
zP4ULpebul&Bd#@D)LQ5J2!!5sKx<g#6zgpWS+&}0&1c5)Bo)F*-jwU?Avig<SF%Qe
zqG9*2K>E*wm28KDeGUCie`Ewx$?XwsAWK5I)Yr&OPDh=QWc*O_3k@_CZI65s5w6QG
z?kK6uOhLXdULcbra_>jQ9M<2PDNE~(w6ks$p=Ygm-Jt%K8R2ki(B{?=nKeJr;Fc}r
z`a+TNkzmc&N2iPud!|hw!Oss4Fz}@p2lYRGh}zh&`}+CCL`Qq;dd>xcVAtK(XRz3C
z0)$9KgA=GFZYYqFk|LV>`SzR`^o63Dbo1ptFo}CF_Q!>WL4r#v=@`)|0&BcJN9`Ui
zH5mY22Y4796yrieL;bJjYt0ea*sN#g<~m14FzV_Y8$9^ot*j2GHt)%kE{BGP%UBQU
z@ka&D<Sw*c`y8JePWT3Ee9Pc}3NxQ6&rz%BO<E~YWWf4P5EUjaqDyw-Y#-t5{sC^y
z7Qi2gr-9jOB>4jz<oNz9Z@0zDhEUS|Hn;xm!r9I0Bm#X=#3qRB?>>yN-{0<GkP3T}
znopO$744*DR<DFm#bED!#l_|li*PCLFE0L20AVcg#z`Sfd56#A^!?dg1^((r1ScNh
z(0EfEz7WY@-|;0<y_a>67Zp01;fw*W^w#))s`Eba*cUvbkCnxq>_ISSs_l%HFZ(k$
z|J+gav$_W4Gq#?QFQvD~?fKg*A&*My6&;I(I&=`^-&$BO147fkOeSvlnuNPl66EOs
zyQ6ekTursVJmJ@d^hOAp;e4R$dWT}slKg4gDYVKUq2PgvnwpXz3^<c>_;W54fZ47`
zthAen?24!0>Q1fKqk>nYI$jSB&TdX-8!*_|DVTr;9zeWJf1k6psl6f}EyRvW!W$Zw
zWFb$Q4DQ=BJGs_pIdN`s?FJUB^d4BOUcL2-1X$hT(h`SZ|A)K-W6gcB{b09X1)X!z
zCycU)ItqiYAlX}NJbJ-kLIhwf82J6?fmmAgN<A1-GW3PC^x(oqvtM=v%BlhH+E)5D
z!x`gM7^8L618TI08I2&!-d5x|zud=(mEh7>KO2WsJDpZh=U~-;HH>ERj>N!eo-W~%
z5L^$2A=A`%6J?zi-(ENQN*t-f5-`h&N*;;hJg?b4B7<fv$)OrlD`vh&mu&nt49b#U
zo3PheE`;{?OS#|vrN7?E3)q>jEs>rV6K9zLxwg$}C%pacBr>20Wp40|M3sf2HpYn0
zNSr5WvPpS~ZJBguqguZVyP_s0swTfSRrFi420(Cp@;5vLmmbA#TwGFey)yu{!Dbb<
zv$ON~cF(%9h61}5DQd`lN7u6g>^4AS?WB0uxw%P0;LyT2gn{hj`iyJs#9+XP$FUZV
zisj_m$pI?pI6k@}O?DOQHwFpi*FzQ3vjk^YMhSx}#bi>yB%UJ6Y*#&=eyR}+?dkMB
z1A!@ot?eF#NtIdB-Mu-w@bdJO)8RKrLCZNt6Mz|RAF2NNT#Tm3kG*(6OSEMklxdYn
zG*^Hx%D2!pG68D}Z=`PX0#{gvK~z74^h1QnM}|t?awMgD)JpaS^e;j)2ug5T04pdX
zml--Y&rudfio_?ViBUp*_{%>lE2lWVmP_NdWcPZ!GntYJ6$|q0`<~_L8-PmKxgy-2
ze*n_)&32y$NW78IZWmD=9SkH$DM5PI6_AK75X{jho?SGW0A3oQ>$T+Lad)Ybbm;~+
zDm*&jDL(10-CzSVQ=uz1nt8$0rdIIb#ZL(Vaz$$L`m)GA;nK*yFc6Kxd>8((0lCJf
z%h0Ixtvg)=_qiO=I{-`l@b29^9@ldQW@ct~Gv$XM!#xA@Ut;lUgA_A0xI?xlR+L*u
zjqvpR2NWzhlR;9H_jhO1PBpCj#U;21E(;{hOAb}FwLP)4S$`I+)xdBRtZX84uP;2s
zUs68lZ`iNx2(?HpDvf(gB4&~-BfETl*H`TfL&C||BC=DODsS`jcMkUE^AAYc{=E2c
zHpKqLgq}IQ_>S<++gDDMr{C4mDviX^4WhS0)t@1{abU=sN0D1`M{8)di_(Y|XhoI~
z7tFfwQfT6$*wSlas0Tx2FH(!B;#FXTGuR}qYjK*#OSqPI45G5-%h-Q}!EK<xqcCkq
z4ZrMT(xk|iDfe!~vq<H&qsv!(>3De0)_S|k^egL0$k!L`)fpeQ;1WnVqBAoiK?0lu
zXu&tD$WN{S3E3@X+4pCw;QFE{x&SQO{8fY{V7?A6cnB{1WTqU{z3Y7MRO_szMHZ#|
zF|6-sH@I)8#5>EpdtHpbwlkO&<3nN3`uclPzz$XfIHZ?EwHr^p3X6+7gR!Y!B*>t*
zK9q5!MBz>vISvw*4Z?(=l~5h+wPeJ-IkP$ak~w{)Dk;=H+%wuSKK+{F_tkP5A|j&X
z{z5(B({<mB`cHdeH{~>9LPQc$fw<6dvF3o85pDS(>%P7&f4LY)YkYb^jEHUxABuKM
zIy-fZn_peMg&iqGfMf2xp+%r`IRivWoXXz5(l?`ksIAwSa?1y8{7S}_ODymnhgXjh
zfrbxO5*reNloHTB*bjT}oC8@}V!@tWMtGQC_>+){v9n_W&xDFCvk{6wQNq!D(n}I8
zqp9B&hz`xXc=-6T)hd>u=`fdF5XJ)r#QCHrDZDNUY<L#?2}?HfN;F&Tx6=!bXM}`=
zzcTm<y8?@3?lPdM#>r|B>K{<q+1<j%{`<cAemUB;q9U}9pGUo8S~2_p-~+7S`bkhg
zJ0rk{5<#-D4moISOQQf7QJ9}k0}+`iAAN3g*VZds`j|E!QPTMwi?}d6NXlm)hZrPs
z?cdpwSvl^v(yTitCUDvw>Trecj|CH1wZHtR`(Wwk>h^;3(I+}zhawY6mrc@eI{|qp
zT-OFGYZyh`T30P6i3@V=Xx}|5E1`Gq>t|zI`Sx^4p!Cs%2=ZrX^Sl3rN=qeXrgYE5
z`znaHPs?J}`BDcYUNA?6poQ4`(z2lQ7T9}7eI9k}(bnqXCfa^fvv$dL{m&CrjLw-M
z>}^(K$OpRFsRj2x=a%A+=Zuf1o3`PYf5U--ZC~=DW<3x^2r@|+csNu2I34ugoLXoU
z62K<8(k;2*i)lqW(ZYU9Ocd55V%CZlS8pupvpb+{b}{)uses^5=sR!q8)Io&EIYNp
zWPZ+Iynvkz!+_QU%N+KK`x<E7Ly9Kx`tNs&sxQOOnRQ!96;035hkSzN*y!jG-dHWR
zSC0yzdU<s{QQeL5$5yh`xo*&S`-SlC%;a#fdS-98{;F)&1(mJi9zxx<l_wpah6Wz@
z(*Yd!>s8p6y+$1D6b*x+pJriw<H63&H8{a7Ok(?F#Mun~QN&RC_l5!rQBiToy(!s$
zvkcsAUT`2{sljj;3^t`p={M-r6yMUBA~@B7*s?Z~p{&*Hj17tj-gDL4$v>r)EhS8x
zB4|$LWd9OTOc1-tFBjMD7i=(74wSI+x1kyM@vUytQbQPUdx{k)_quQco*ie#)%(w=
zK*cLZvVi_dv<X#uzduW-C-)6p<@N@Pe%kG2{>TWMUzlInSCW#vN(;Mmi6c`FS49dQ
z4^633#NovN*?~`;jUUPGa;HAlx@O}}^}HCx4>+}j3E&hV_!OL7XwZ<6K!kK&7nmUa
zEPymvp+dwe#0>5O!fyy@U;NO@Tsyg6-`Xii(h-%BL5ZXg4&*YQ{*xC)kor?vd{PdS
zM3B5sTtA{Bo7GNua$KQscwN2ED0qNuc85UxPd%~UoOyQ@)h6y88AT;E@sj+UbNB)9
zd96pb()FSqltc2POLvyi@-zYS2BX5OQNoYj0Riv2_LydZ`+5kd`axts1OR2rw`QAc
zD=^~bb=FSffU2yb5&*ntc3~k8B$g6$l9*AdNQY~|O7*ANSi+gL3ldbll3n~Fi|shV
zU<u?iW!%(uTfcfb11MH^#`BI(PkV>h+AMbIKGs6bA6O^MXx%$UPhttolj+p_$d*Se
zIJZXgr9eiPQkk9N*m|hwTcSK#(ktzinCI&gP%g^ij<%3PKtG}R<ZQX5ll!?$Lh#}4
zrhh(v<Asiw9-C8+M=Keb?UOz>r=3i+`x^!7oTD|pAsVi~!&syERY;XJSZ`HdN)~9r
zgs9&foid6TSMjC58n`ZeKHDSHGk@9nRDf^LJ&I}1T<Tpb{wzhy2jvrfDa{&!a9FtI
z<^G(MbYlSEX!<kdE62Mf6)8}4{My*wrWO*yu$-^qkcn_BD|lcYf{`Uw&6swem}Xs5
zZ5;{0!~C`HGrpw#d|?s6<!b5b&!0cuEpC8>CbDRbfcR}VU9NQ_+`suXoQMMlv<Zr@
zZqXz9`igtjlhRy({M%d%Vt)n{78Z&~NFZ=>a@yRS(lX$o<R#pG;N?}jA^EQI{cv4M
zkyU4RE1Y9Vdu*WRTgSrvy-o2ax*{@CQg-7JE%(P8<LjI4tUm__5r<18s=CQ&Ooi6`
z`@AlwpInTHW{0{=?mqEMQJ{XmMWy9U)oesdyw1MmJh$snWcH2AfDauk{y-Ji)gup!
zsL4T2@K^mU%<O#V@u41l%@5_s@;Mw$?|o6;7e#_-;~J&jC6hR`oV=%l_|6iHzTLSU
z!(5D@Apks5Z?!Y3(sF_O`uaNCT6a2~p6WsSr#&)ctjUQY&qCMSR5+zpU)EV&nR3f2
zXCQVG!tPM~qh@6!gZV&Ge5<00nuG*5YC)xMJxx;tDwvzku|HD=M@Rck*88w2D1ySn
z(F~1^XEb`%3xv#4-;@e&p_}U-T|62aP;J52c41K<Qr8R~yIvhenEw8zzup@$+u}wT
zH~B?$%I}lPmMGyHWBweq8rBvM?U)Q*y7*3Yip)X|WNL^zHxm{>SacCy+x6RH@tnmV
zGm<L@p-uFzo^b><rLXL+!EYkd+cdXNZ%O$-f*QGerht#X|Fb*+HD;D>lbLzgLI^ot
z|DSb>fXK*1XZ07jgMUm5mG$f~HJ{xvm~;1i$JaNo7y5t<K^Y#<+VF0Qdp1&svp8HL
z;;BzNe>dAHG2_qnB^wm{o$n6j)SDd99S`Pvz&j;VLj|(P5WO1xLD{}(h66+hyQrz~
ztK(i0+?dp2=7Xy)Okuqd(!@(@s<X)*8V9(w6AnQO4mlR`l}S-(a2&>sn;iZ%Rib8d
ze+_2y(<hymmX^psQVB{}l8%ntuII;M3w2g>W=2b*t!@6nX)f0X6V%PurLQnrra%vI
zLKal3<<ogW0H#CBt_l?E=Q=sJ#Ir+ib2kN|DX5mfyCn?o;c_+t%+|V7p~0>o?Q?)M
zj*3Hi9~)2bzWb(s`0rjvxNJG~wx;{|XvlN|4d(6whU}Z3X<pl0RyMSqV5g)k95XWo
z_neYrYi(M&$q2w5OJ4HU(zzHmV#0cZXQvCe;C%dO{94D!$%!zNCD5fjcx-M82P?$p
zWeXm4(`?twJKyBVubXIVyLjGZ5wJ&SUwyx-5@Z+4L^=iX<|HH#)!PkK3VnOFnLuSk
zFWd;Ly`a%GFbyjiI|Lyfo14SIsfrBI{nZT$=uzu^QIs4U*o3U&>y6v6px8=fMu&qF
zFIW_TALi&}9T3eL325N_sA70P7k_q+(+rRrpR8B%1SqIinT(5q`Yzt`vX1l3=53$3
zvKKV$_jG(ybuUfj(Za7l7+$3P)i@EaeDai>laa~uMsDnvcI{RRCFg6E8$m?GAc=Sf
zOLu`sD+hth3D|!+1TS3-i`$>O?9bPtzOi0@md$)C^tl@ejY0^PjNj3J7U}7P+G-O{
z@{q{A2@;*EM0fvid_g+PB2ZRpWEtN=tg5a~q+0Pv0BT-FvGe|ua2=^{^IT6q3GPg(
z9)cHrcwK|*r#H&#HogL$QwC!?Y`HW4W%!}wN!uf~C-rW;b|n?}RdE)gN+S+cLZ0MP
z`{M(m&C{bGL}YKe3>$}&v@0kmTP!FNYl_21M(o_a8lkj@CrJYZ4IY+%b}i{Tb{<vr
z<#B9Q#+W%A<kq25vJK->ijBFi=4n~dg?3URhY4$J<heJJu~iZzk!rKmo?zw`MNW?X
z^;MhN3ju+2&_$mp0tN1rltCOhwF;egR#q6GP4`?mPFa_}SoW?==m8Q`vHhpOID?~i
z6n=RGo$Vl~tLRHgzG}kd-F~$Kv@Zg>vLv2h`qFAz39621|K)Ag@8;oOUcZCAR{WYM
z0js?dGUo89ju*q*6E_F9sBq<uO<OT><?O<8G5F@Tdz}qTITgb90mcGloM}FwL#ThW
z+ya5<>gqyO0b15U;-43X2yI^-o$N14s4~W_hfzEIF)@Fn7>JI>BIT*1NMh9%1tkMm
zSXfZBrJ`!t+}P0T3cLso4TXiA?~LPuPA?KNGRJM}!$Pg-f+|(FK%t1LG_TG+V}PF}
z#_7-rkEaTxj+@Gz=NEk8Ny(6#i&1j(It-PyiU7GzA*8gl+qtm>Pvw*`y-^8;Uy~#A
z?8mFy6Qa&P9e!0_UOb>8j}02x?IPfvBP39e?+U@~!zLt*0<gNVG0ECtSn4{-)xuvx
zwoEo(zPzW>znNTf!zV;Oh3zpf9Wln)wL4Wp2zq#t5hQQ)Ml+Y>lwZfZZ4tyGeiD&V
ztiV+8uSlZ)aYpWB_8jDTLTUKH%dO?2Z03JX`um|Yx2FSP!0F6CCgO-yn6|WHH^Adq
zu9#gz(W5mnH4l9OFn~S4uHaW9Bc)o?g6xuB?UE7~rM7JWwhS43*5sO|LQVbj|A7{N
zB<dKr`JzGRariJQw9r7~;IVds2{Pn3M}hXg1UMiov)1_~Onr^lWVemsd2dTruHA&7
zsmcE<l?$~i@NapeIs50vM~Afyu0$mgjKY;xJZ~us261mGpXQ0d+cIk^&}~$2{7MTN
zrF{USxk$j^fqL7c*GFY#f6(yN1MPW|vdkiGD@EDx9gDC7jsTuG4PV=(4EEeGbVps*
zsX|kF0vHO4!Dk!9&cgk~Ii9QyNxFdp{D;)1U*PqM2$<DgV(l0OP%f9*($!)mO&B2^
z8lvl}?a}d<_o9Fvd?-E>7I`c5g@W&kpzdn3)@=)>H%yw#89UA!YIHH}_jim^C3gP?
zP_R<3sS0^E-6Lg%pLTAuxupG+c7Wai^sd$CE0Bkg4$5O_gxp?|t&8y)j1FklCbq<<
z)6%$18Eq%&TYR9`$6LLIM-2GCac8rH=DVS!J`PKZH~Nt&0PC@DewV19e}P=4H`7`u
ztz=Hl-57!FNX5#)0WZ-q^7oElnSz4ZlomgTy3k?)E3Gl|wuHlen5yK|u8;h%8c-7;
zSC*5lySPzLEqvrpA}r)tHS0q1^_9-)SDt4bG_@(W>rukT>rs0zl7_~=E9gQsb$IA7
zlW7@VkLdQ<>odmZBYao_SGu%K0`FfkH%>z+4>Kjw`49-tyiDr5Ts}~MyF6NnVp4m=
z92gilzPR9W0K*CPu>*$Jt3ebtyUNcXdgnVFpuraSQN~pu1*zhqrth+W$|7XAui;QW
zd3*)tt|CE{F6hTqAQD44gesP4Z242TCs{re$ntd$SI=2ezKE1UUa0Eb+F?M%XJbA<
z;s;K?FJD$-aRtFD%7FG(V1+dgFtxzFnTqu}<1FYB3PUo4y~vxKgjo-ajg5mqGefT%
z$;edLV6lSQY6~Vv3B6StKc_hh_IfRfKUi)+(#H5Ki(QbJ8EwULXu|WoDImqAm<r<U
z)s}$K1Onz<OIKu2Aw0=T5%&MavrVS__lqrG$1`FtO${MSJAK`2d2H7?6uooj=UaR1
zqB7iye{o}#DIvPj(~&5>`(*_0%Jah6-OfSa(HIo$ik_cbcY}?GM>@MpI0&@1q(HN|
zG(@_h;W5xws&YJd4r%vCt}p-<`}aR|>!($Dc&ZVn#S5ky_j^%O8san&hHpg&+nN?M
zSId0JYo~b~m~<H^6kicr8occFjmC%$_8tvaMqC&}z#xV8NhpPcGC?Td)Z|P-)Af45
zXVq;*19ae5@`*9%F^(D@5TAtOd6KL0*tFn{JE3yiev%Y;l4Hf7OB6nAp@e-wu-cL%
zj}_*Fta-F<FB9QS1S!TN+OZ6H<I2A(;rOynm(|x;6S-Gl;pepH@KU=E9JCwd@9zv=
zpvdF|rM=Epk0{x@qOFXo$}u}b1GsmKgVqzbV;~o@InmLNJE+L<^%JY~5|+K=D#&g<
zfF_fMn+f`Q74s|9=<m2B!-{Dn?U<4}a41;9iVh#z*PZY6fGkg|Bb`@Mv`EKrqDD(1
z`<`kpghm7?$-RIltc=U8LrI+2*-dS)5*5b@W9!Y9FvJ@SNpOAg)#xd!#TRlLZyL#B
z4EVAA3eSv5?Wv`*RA!HFSCF36l6=KE>uA@1!bt4I=oJxcVY&56E5sXY2)EupSc>1s
z_tspi)ty+-?XvT9lSwW$8v%kyB74s}MvmX3qV7OP;*At0S?A-&0&%$zRS{8hLiY8r
z;4sy62*H#-Anq$;@rep*YM1!zbCmZZCQdt`=&@|PqY69DHAN~*XwX>3-Q71tQ&jvt
zEf*KQ*VElf6{zZi=7#>`{nbf@7fVm!$5E0u(m9L=-$$c<$(%{9Tqp~N?ixxuyzE#z
zMTq=q@mXJg9U>z2BE}X<2>0EM$hHU(>?a%3)2cH*?0rfC(WQTct*hfz5v15$tK@wr
z5(HYTIVCgNehJEBz%QOb^vP7%z8HM9t?8JGCxx`foH^}j>0}vv-|8^D^5nwcPP~={
zw)+FvaB>t2omC0zNe(r+E-37IsgXss&Ha=A`zXPpVJVQCJ)Th*`MREN3=nZM&(@$9
z6P!NK_7`sy7An3dQ4b9FMTsBW@D@c=))3OEoWQA!&uPd-Nu-eI?CL<VEKseC3Dz^E
zoR(5-yGiF~{Z440^T7?x9HHy6=I>+??&9Jibnp#~1AwU)ka<pqmtiV&gStkijaY7P
zacOC({0Cjp(ae@((5dSJql%Nmu#o1zNB$8U@Uxyp&nhl|b(9EZR55fTdp!vvVuitQ
zu;*6eCz6hIhLCL5x>-O(jPSo8E*RLqkxZ8v=$qdWwYN{w8xcwRCj0^pWbeLBP5f4i
zQW7A$NzcfD(q7J7;YS`{FnaPf=R-Cyo@A~)7SN_9cF3~EyzKVrChbnnt<k-3Eh}aD
zhp`Muh#33OMj!|+A!z%XKKu6*^mM_J|8E(B5pk-iK@-dey3!SGPZ<W}+*IePZ%_}i
zSF*^!rQbd6^p13Px_O!N?XsKjC(6^bN~ieJ4&|1fv-AJX0xUPA#wwY|N+#Z!=*Za~
z%@`H8;c|E5=}7_y(@-$J=K@kG!H!}RN)L!r2=3c{wy?fw6&Wlw(D!rK+1>F~1gMq2
z5u_`6FU6Wf&CgE)rV*XbcPKq?HVHR2HvWK8O)pbLv&I!ds!0D;l0OdFb3CeSnNl>>
zsevAEbsw2V*sHHYwrurU&a#EFh@1T}OTW{eN{c{0t0#s!C?*;!Dmr@gn-vDvE07K#
zzdZ{dJ9Lom7FA9Ha|0lwrF``Y7do8K;&%0m^({JN#8LIyFdtQCA=amjY*19hjh`9C
zDy;k0SBr?3ff*S{UNlK-UkGXtyTL5~p;b_Y?y-n`2pR>Mv;Qe4?<2vkF9ybN#Y~{g
zN~?$M&KM;PO}D|d&0}Y1VF8~99}Z|2!b6%LZ}+Z$XQh_ctoWn|R;or#c#^PwS(BHa
zThAQxK6aW>1#RVE<1z;-t1aYBF<*ZE7hK=bip*BveVcfw8mh&rUmm>CYZqB;c8M!^
z2$%AJ?M}r-DW=bwitC&o)SgV2vOUMLE*sFa9M}YoT01>chpxR)+URxBR?>ILb(Lq{
z#?^*d_%Ew4%an6Cn(3JvLCK1=?<ko%ac;YGR97d9vL1g$PEkfn{^a&53aTOSGF#dQ
zX=&t<Ea9k~owEioGWFHYTp<^Wh$uMam2qme10Mt4ye{EOh_oO*&tz@cmr`q8qgXx=
zICi(z*mTJyPqjDMbb8Sa`~#F8sz6;FBfS+}q*^ktSSQ2GB;(d%o)x36ldqV#L*=L_
zQO&Dm%Tr|!q-+5kV*DMWeV+^vY%LE2oayjmPB5e0=`jJ<;d6@``@IgBF%KBb1LG~x
z2?+s%GQ)RYD|Dc~8m4b*T4aFw?JP74cMF5L_X-<6xt<M<pU$D(X<gvs2TzJsH5uD#
zt!E}ACk#q2c8JaIuT$wQXb7B*N8z-ZwIiR9O#+A?!i5E9l5fvH(iY)@L0_|+a-Eh?
z>((0t2)p&NI~vKimYHu=4YhTh-`QMe8W%^$H3m@_;-y0uCuEvuhlzc3E>n*v<UP{!
zK|v3st5U-(K><?!QIZbbfE2FVQOi%7n1H5J4;U;2smjU*Em26J5ywS~ZqkXTytA<$
zM{5{EyW1V-afyaNYXv|{bq4_}ma6u2K};;WCQ>gHlYqa&0_58*D>cda+?*+Lfz`%&
z#c{vKJNLl<6i{AXZeweU?K$!L)$w7|QA%ZPZHD`IOy9Owavr}xIxRXH60CXSov4HN
zJ=NxvKx_x38ITveymQ?wlpck<!$nsbJV53kVMDEW*c@6{2U!}ZWKn|(FHl$T{a+Pk
z4Kmth3=#G1KPk%h%~y<H{2lv1AxGauBxOUjMaQlUoNj)euR7HZ=WUd>{%6g^ub+1C
z%J<8mZ&sAuh36~(9FKKE(ryq-NVl%yrQg5rnXCQ?)#$_o`Bk8uy}f@)iTOo!4?gJd
zUmtg24s*UmXUOu)5?UchdNqWd`5_#Wl>E;^rQ_`J_e<wKM)ZaCP?(tOllx{ANW$0V
zePh2Yoil%9b6IBI*huv4u(6Un+QbM)zl3*ZnPz#$qnVIvIZCr4Q2q07G^SI?{LC#K
z`sWDeMTw#S>w%iO52t0pLou_r4016|0#PL=xm8)&pU?C@842(jpF*%F-c=tS#qhSU
zo1Qti3lvk|*2Hn2eB>erV~#PD$$KpnW8r;Q^mywYL5S*Q1W`}9)Z`S}WKnK4b=_;!
ze`jZXp>>A$VbW&Qe4h72b=E79>7<+fNQy;xa0qB3dVjpXa4DH|^LwEEAiK!K1&pUA
z3ET9Gg@uKlwRJ_Unm|exDA5v4YTET4gSyT0>R`;>1D|~UsEY55F9ErfUcab%n*m`6
zdMw&qqFoy3X&fRJWiu5?ai6YRp_gur3p=6A2=Kz(-;Df~j?=)q0Qw|((ealTU&X)3
zhb%7?Y?bBb69Ed?v)UCDFavUbc9StZG;#qVFvqT-z93LrRoy#U;j&iy{;G=m2iE6&
z{W%i_i)$rBd-JrA0&EwC@^U;QOXOeRCHd`9w{{7t&RA;V>)j|V=SG?1vnS{Fg@NfB
zL<5NXH>_HL!3ob#{r&w|t%S|@r$f%59VoZ-8Y0r~ggnn5!XQ4#>B%K~_p*Cx^I@Z(
zxm4uK>iX4DVZtRGgsF;%|2x-_;+NtH&y$lAFs7PE7gA^i-c;xZb4K#=+?=l{KKEgq
zHC>h1fyS-wl0C&<@%jmLwxG?dd;LhcZyij~6HpAa&rF?MKRrevHfx9oU@*8TQ3(BV
zYkSEqZTU=ET6z{t9RlwA41$DA90{hdv%$m@omEOobXbB<g;Y+ucJtPr_txH*k@0bC
zczAdQMn+%d`C}a_BhH(rYN!8;vA2$@a*O&#w~2^=fPj+H4Wgu!(hbs*5{i-n64Hv4
zG)M?YNOx{v(;WiRA>EylQr@{e@B4lCpF757jB^f0wwq@^Ydv$#Ie#&?ZJrJN`CD(0
z$vESkGolu1xJxpnB6dkZ&O#yriKX>*-Hc^p%rdCseC*ZgMOpIL<nTw0PIdDZSxr^O
zBJpc?#3YgjX|G@6NV<%Z?l<!1oHL>6E9tEVk4&%Y_p~)hamMfQThpJ$H@QqD9$^q_
zTG7;x*qpSg49MuX-gp?25Wz%JTppesw=$G>WkUYI()>eU;N<Z}Nl#MW>)t#aUU7+T
zC>rMbs>*GYluZdX)<5(t?KcdN_Ruix-TXN+(I7&(?mv>T-%2ZCT3rP4m&yLQAYZrL
z^$+?LP6tFp)_L`nUUm1Aq+D`CR)aX*s(zdsYXy~;m#c3viPMGv_n3--0prh~Hs$Bf
z{i_@g65q51k@{Z4BFjW3^0R9vom&ocR*&CKMkZPnAn2L>+DCzuv~zxhVY4&yG;_$T
z#8Qv^{np>e0*nin?e~IzruL3cLk^lB67<Z6Ou10}Z5qCrTX!T_OO?(`@miv1o<?#d
zd@%lW6N+_~(}jqTu&Ai(h#NQ*exsvW&^6Ls$|P&La=xvgy@cO;y}+f)u^x-ybc`=M
zY7eOT&!69eg`UX$Bs!T_b<9|TpZ$$+6zoox%IOT09Ld@_M&zhZ-=hqrUb!vqeK`9~
zuP(&P<1SVZN8Z+n{Z*>RpKyTx8et3p|7}waeM=2p6A}CJEu;EGk59JR9IT&r%x#J*
zzkk1+==vKon2i4x0?jQ>a6h^CZgb3;;_{{YshY$V3FE|AJc(^(#v?oPEe~lg#&An~
z{>;Qp+c$ix(srsSYjYGa-!WUGBV(!YpS?uB+d)vnIffY>%G=!8iItX?)?J%%JM8=$
z^l$n3F+w9Eyt1>IckQjMty6g9gGa}<saTMQakQ43nyHuM_Y)n;BEMJw7LX2U#h$*-
z$aYwq&h#)+ugU>f(p97VLv3xugoME(!$V(A>3Zf3WD?p^;J;h>o4cDe%e!a&ad&OD
z-@B@@xKJ!la6q3fZvpr|PRrlK7Zw*AnwqWvfi*^0NOr4`?8iP;?P$@9yEut|TE5Ry
z-dn-8c5M60vbLDEUY7xzvA{qipob-^(w`$lw>4UdeO|ePTb^_b+sm1Mo4w-aeZwtA
zaSj===0-Ne8ZWJ&y7O~aHm=m@mJSouc@C{29Wt!mgJd4Z$=*<XXHtfnY5@!@<RaFs
zFK*!;8i$Wz-dbDq!8@PW{Y`9I$XQOJ6nNN5kWv$e6#br>dX;%-9L=5q8tHD=qn;Pd
zeqlU*W1P44_v-&9Y=(?D>eaVlcr*|s>NgWK6;K<7Q%>lO&u)K>9DRGtY&9`V{mR0W
zR&jfAP{22C9zKuD$e_zjyk7>epHx(M);0wm*)B+b@(GrD{hIMH5CV<gMU5K=47;z9
z*bqpVw(`gi-Z3vvtp9LkYh^L@!|iC&QCj8~<4-KWa$0~B?gz}}+rZci=dX;yj1mkf
zcr)|<Y{`<%Xj>@c$kMxKKK^uZ{`lS#24y|HAjc`0<}B5W2PW;e&n}Jvjsw!}Jri@o
z;~v!9dXOvoI<=rri|4~V`iyJ1xDK`M#Xn!KR}BQ|tFk4$_^q`n>D%9ooZao8?-Kf=
zZL7C>-7h^jk%B16F%VTDqmPTb<@2qrU<MY3j2Yzv>ttnHd@`7&3Lr}PGu4y^nh?Q{
z6%|gTQk!=x9k={&DXMUB|H^tTPHPwqB<DyAJr4kwWmdM^lF`|*{;$GrLp)yX%3uSE
z_a$fBxX$rR1a6CXux!o{H67ixI9?A-#L9G?2*rC7W>GP*+4=c__FtBsy*-u5!|saB
z+Ii<(NJr)O2Rt90-xV9Zqvc(dT-h_ldE-!o^<1g1g>+}V|B^n%@TMkEtCWt$Dv1yX
zdZl5cz1z%(;i2K79=L~g9ec+dM+t4wlP(n7qq2!@mwukx8Ui*5<=)Ou0e>KGlC=ht
z2WT27JUKnItbQMNOILS|(y64l_%;#It8#NJb?e6KUzcL!6tP6Fd`lVg@gw2UPyTy*
zV9><==~Lk;_fyNkp&=?}v+GMeiPr0(ajcAtH_VVEh|uuxkD!dm37SmS6A%>c!oa&y
z`JySzEVrZPW1ORBbdzi0+j!iq^;dNm)e3PuR6IOHh$Ll3Wi>UEJ#%emB`WIoP{yDU
zH-Irc0|Ky&jE#4X=at&Yqr`6OoT6TTICKoeebDz?NwDn$vJ{z^euy*GQ{m~cRqH1v
zhcSM?vCOpL^CTnd05TX)gOT2<oq(4EcWaxDC>Z^a71j~k-eg7$5=S#?Zu%BvR5=B|
zGq|^yeLlC_KZ0Gr0@~AiDEkoY>ar}pfnvGP_xofw<+wAmvjzepb2A)8FA+%`&nkuN
ziyLf5ZU5Pa3VMFMz}`|11BVO(F~5<V-*Bc|l|u~MdkO=$?e}L&un4E4yYF?`VJkPF
z!Ep@@qd&iS;gH(t6~q07><Qf`HjR|^1`M#Ijh>!fG)wJruhL9wTN@3ety?mB=Fl)A
z0TN;n2+N-5b1bygoo)#T9*(l6Z1YCN6Yc+ghgA0yH<5Cyk^fs~Aya&^oaoUSXI+b#
z2mDw{4>G$Y!O7gase83wxbgFLcPq24@-)W3+mH;T*h#VauXv+U+}@sU>FuwYO{aZo
zX=wpgKGGS#ma|ca4)krfB4>UBrC9gPu=@K|b~_jn5eQ)7ahm=l+g}@!gEOZMf}gY=
z-!0!xR`boHCx7!}gqwFYwRp<02X^;Hiuku5)(U=afN${#=Q?B`vuIVFUqzfp2EO@4
z*UrR9Y@kzU#EZ|nKm|ciZD_DzWPtpu`71G$S>5qt#BO})2EJ?cCf`yI*+=9!l-pM-
zY0GyiXYC1=g8Oq)6+7AS>Y^*Cl*)U$)+@IqSSP5<jyjn#J%6M6Vkn3_SLohIce3~C
zu*t9y45koJP)rd1op8fr@@1!SP9=7K)QA;w>&?lJMN;0i(3oSKU<$&q%AXDUtF0{h
zIyqb41m={&mv^Te+$o|7mfhb!keR&v_u@#Z_ca%2?mQ<+XTgci|8K4H!5T<@`^6#8
zH?<^*t|25Qrhz-h94T9NH(fDE+{%g_m>I$4(-)-rE|yG)&WHiT%+eT+&Tp=_meZwl
zp&SaUeKSYgNXJ6<jO+$uviE0|I@%Se$J52V!;QcGUbJ)95_x90xD4v@K9lhAi2xAx
zFR6AO5shTvYln{{y$2=N5lHPI&{FOmBqiMk%?H=X>?<*#(gP$jvN0N)Ewvn_S;y4|
z!jwyB(G+ssp3?mo4=o=7s#=SVbq!|PZ|*YO`?iQUp0t?&j#>nQRloW!t`OJrB|owO
zSYpL6C###u*b!+pGHFA0v12EuA6AcC#%OEHmef{XrYQUjA=aefO1(htHo45Jy*c;b
zpkfm0oz~etxQBNIv7)_}HB5=u*29!}J16y$-tS+7_M|FW&iDFonVJj4#GGeE?b)19
zobFfDMaO)>IXr6gUegX}qwAEfn<mJ*#$EAtkw|#V5tDMW>eF+Y>YWTJXKL2=;_OjK
z0jl>DsX?{N`EEs-Rr`+b=~h)wYnVX#)<dC?PJg>P!I)I5^d6DvPc%}&FJ|gL9FI>=
zMX?2=QD_DR<AHPqdKR>3E7dVxO+^JCM57z{8R#VxOI9vr#52wUv8v%}zsP)E`IIQE
zByiUCx)P2qQ#fzmk<GT!=8}YjN_w<^ANO{(;Fz&~<{yKrWsBxJa2Ur5=BEVy9q@h}
zxUxRAv77ZW{(L(mC4_@EC*n}QIY9)w*->XiEKkF@E2apzcyCJDETx}4!-K*<S&f;~
z{mdytS7IPvPXI(YAYQ5s6SxxxSbH0&kFNRqGlN)ASzhgE%kmFLtGJ0?4zRX=ew$8$
z)zvCqP#4^(zhdh<xHMYat!4~@HC#kyzSXgpb<-NZ7|n_ED6Md@@S6bKr%Qcy4<*F9
z4cGpbTefkHI>>vigz5WH%zCecO|A5Iyi<B<`g)x?HxT399}1Tx2SDt6KynyYkb8B_
zPT+DAHJQ%r1P3nkQf7B%o6wSxzFIdIR&A3yvxllnU0=O`gqN#R{&S&etkQn{_Pu+c
z8oQA~Yi|zvfcGdd1i}d<tE>HKAZ#cv^!V#uQCT?`uuSY1IT%EjGpRdnXc)sWR$fwV
zHrkmY^a}gPY$xV<Q%%zQVoKQ@D=oo%njn!()A8qu3x4Q(8$a(+Tz9i>@N0f5(bZ#z
zJ1kk9!IaG-1|HZ-N=lG2^ziaerAy1oih|BWBVYH|0*?&DJD$%!Y_;=-*>Rgixhr)6
zo(Ii`hY|F<;G%eU$IRtsx3@XW<;5-gAX)K*8Ur-1Kr$>q%XZmEx}hF(a^mxBjlk{a
z@$A29W&UQ<w17u-=@u!^9bcS9qmg_)r{h_vK<5aasHEG4$VB^N=gRpf?kIiyUp<}J
z0uR?&5^)!zd9&6~MZ2WVlN)^cR_%h$in%dAnKJ9++duHR?3$I#eNTV0^0z!sihI;q
z%}c7bpw(K^i3)<4vqO%E{@AcRw33hKDT#SmuCEGOWv2NLqt8}2K&&uz_!YiA9@>&|
zN^;+tu5sag)%}_0M0nYK{6%=BznQuDZl6@8$@X^%8=PIN6lFRPrseWJ#msx4qM{<7
zz_8EC9Y30y*p4}mMey-$utp9cFAG=vgVeaYmmmD%7<=2uqrPi#7b8jJD^}vvrOGIJ
z*);sHurR>DDrZq;Gpnmi^w}T-#{zhTmfe*Cl2a?L=X#Fo>{0TY-WS5ddXn>teYJg2
z*MbFwb==xJ|Ao7YKe0Mm$mQ@~d#N3(oR_{mgY1u3<1Z;%a!}_R60#XBBPA*Mc`x-#
zsS5UkZyShrY$6ctf}C}Eff|!2{VWFzmO_Y)AB?b!?+D)~uVN~?5;a+em^Z_oolcvV
zArOr^%LPulw|1V@?+Z+h+GBhWzJ9W<oAl<L)(x)vdrrCY+w8cBfVwzga8S*}WJ40&
zf;(CFC|dt~{Y^kEbaJnI@Eep_d_CUokMhj(t{IoV=M2jnnwS_;T`jmPCI*_x0D?P+
znXNIL#ErU7I0}r?mppmDpKu+!B_C*YAB-!Ij67?#4*rBnxm`nxjfYi^$ea${fnd6e
zghZc+AwnUj?nR504eOH;-?0gM2$HLo@r=rB2}zD;)%UzO1xI_VWY%iD>t3k5Z6b|$
zd^(-z(^}`IiRC!rP~qO`)TGf+&X7MdPN2E7dNg#zoKusuGKER$mTJEK*v<Kl`%%?2
zH;Y4(I|Z++WMD`LI2XL`tJMY`h8KKyfVl=@G^kPm4IVuo3kw@~3*Fzd<M|MXpBMD`
z?~p?i)&YO|?*S)ST)<)DiM>5H2+Mq#RLP8q^^;?r_m;Yy{q>U*U&+e{jvl6Prbk&`
zy><<Re>w%1LFd<!$t-r<GNso4n2}Lh{>cqYvsDxFJ9j=o!ZN{li7iMhrptSMYXYT8
z*7=~rvd4i^1sE3)B$@PG6#UWMN?gGQ*Nr8En`1nG2GQqqnp-^=l9?pAQDr`Ex4eFh
z#ewF8%DbEQfy_iGMw0tLq<Vp3^Ue#AIQ<f;!xNNFm0h&;+)urEGmfT(())laA(2Q>
zYKp#oovCMZXGwe2H;$d1-7heZD>kR|$B$4D>HwjU^?7mgf}nNB9~E$oU}9pL^Fl#>
z3NbPLD9K9e((4#Ot1YC$WZkW4(mV|o{pp=6id4VY$i<|kdG||r9N##DYVq@D_g26(
zcULn=H)=7iKhrq?Jo?3^_9VUk?yg5@-eRzFV0cW->)&5Bj<40`ArG&-+d~OuuY)$E
z$l}+!w7h(CgBQQkUN`UV{&&sY!Hl4Ss5`oK_QWg$%(1SP9@C0EmO}JL$KA*Sz4@SZ
zs1;)bH7fg(xoj+*s`vTq>g=?j`mrm`n$PgPwnA>qz7;j5=|o7U&Z~1Uofs9&!IxC~
z`N~?(v55!W9LCwF>S~(1d~cNl@CUJFAaaU}Uxj?U`{yQY9Vn&dkRwq>EuYKZt|+rl
zxgF^VUW^mpK6o0|z2r`x{WaApJdW3zn%f=&G5Jte3Xh2By0@rd>4)zsSr#foPaPb}
zI)0d|4p}ls{#YS)rSi8pPKtq!_s-7SBI~jp|L^Y}F|TsN(fkQc98h_#21Nj>1@$|(
zxqqe50dN!TmW6#GKSh9;r>#AV22z{LkB#M@m{$LmR?2kHm`Ul99h4FNbv`>`A4uB!
zYogFn!!S#7JGlsHh9zRG6Xv1um%yHP#6j!MEXHD~{>qSo2WkY8E9k7;L?|;Gl;{M4
z0fMsumRwevojFjSKwF)p#!TwwWVQCkM@A=7_8M4G(02y}1OULB>sWw!>(-rZ1~yb#
z)@gLw=YRk>$Aely`2Y0PtMra_*!9Q?$F=E;Lmqu6Lr!3cdKDSB8BJ7R=x|Zsac@K$
zxHtGxy5B&Hn;q}+Sj1Qq!PEBw4v<&8veOkdG(h>)D(xTR6OChfDk^$;%HyxwKQ8~D
z5!u{}$s9iAS@UPy-{Q;#Sig>?$V3h%Y>~5C2@S`~s!QEXv|zA(T`sA^@PFb&fTN?{
z;Hleq{O)IV^ogH@V_G=t)zh0ShQX>`n%Tk0D<Lm`3)=XmeRgF`>9$;XVeiz#$OHui
zo5c@4TsfUx8@rU{aaPk3IT+P-?xLjEGSz61OI|quOiN6#5%>V$kl~LnzT{S#BT$l1
z$fl{}IuS8vEO&i1-n|R;5+W&4kY^bxC|+kaA)!eV72RVAVSukVIXUN!Z+bVHU<HGk
zwPr6hUGdx69o!k!bomD8+CmF$+IYV8uhGx=jF#<#wWZG<g1>O>T2EHgH9XG6u!%l(
zXiBX6eUDB}&Q8aHxavn5!>Uz8>iv=ganQNZ|6frDMc~Z(>MJ$meKq4Nm5UytEu#D3
zTvtzB{HG)6KR*gdAaMK>WtCuL#kv|^?=vSm5z4SdL_yMzRhzJ7#M+riiGk2McrT1d
zDwIz-+RL4Ezr5}cf2Y7$OV0`d{6ig-nTV^<WXrm&2gU69{=qx10tOdPou&~HV5%DM
zvqeTleTFXdY@d_|wt>NT`JdZ&4|S%H=Fy|<GP2UINXsG~4i4@C&2IdKD++}|cmi#8
zy~b*-ws+7xuF~WA4_#eEa}DJ!O$zQsVGG5!U~+VOXKvfW12@tAgsC;~9yBE6t@lBP
z75!zOie0zDvm+woKA1sly$wv*OZ$YoFV8tLrsSk|U(eP`CWl&1`}AJEJE!{YgqFF8
zon?Az9qx^SD}{2~o5TjLc;6n|Hv``!G`tjlyXMGIQ20kx-zN!lD{=DE){UK)<|4%*
z7;KF0wuf~h*g*y=_9cBchqJ^g{Vjzn9V+~Z^?SSN;8dlqDz%6H-NXKYfuN;BpRodx
zvUq|eV>`Qy**{Ot&*GtVP+a`5=JZ3>S>P;pH!=dbFxF_+mYd6(tBb-1M~_$I7cx43
zT3TDFd3ZFe1yyrcNl%_Xdi1DeG`6_yLq<kMOy*R%HRZ&l&`#@KkB-fjNDnRYsz*~%
z?>7O*X6Chfk6yKt1#!+sZvpS@a_084!7muxRB!s?Yb8Y^y$tOWm_B^?FlUmY%n17V
zkIl{EHAP))s}A(&NCRtO45u1spSVsg;MkFlpCsllz;2XNb)Jcv*L-_e{IXMW>?Rd|
z9O@Mhx?pX_eqX5|J=`U^6#GlM`*9G|vWUuVX^oo4eT+|Q98NLS-mEp-L3iO_Nt^_m
z74}xU?jzD<s+#6Q(vMx-CCRQ<r4@K`V#b&Sm^PTHHfb-T?`I_GZo8`9?Bu#DQqB8t
zq|2uuBhD$vUO>@kD2JeB1Us7gXCl8inafmQ!)T1VEWQ+~uZPA>Bw9p7QT{@8?^}&4
z!8BRj$LRF^CqK=-Liwr+eqBXc*$3x;e$4#Ci9eGK)2{4YEo98T5Z9(CSH;YYwVj1~
z&${2{*;vZmsL?;&FZ!!e4c^}1rZIo^XAgSrN}KL(-^-{uIB=(dGH`Z&zUwP;_H^ql
z;;zUt)~D}Z(p`^<C@DGU^V3NCNXo9OG2TJ5-b%IeVm#rTCDO6Dv22FaPR+=mfpkDn
zbId`BFa19!pE*t_(Zp<Ri>LT(Y;2Sn@66c%a51-itC2h4^Jm~W(6+J#wdlu*u|w?#
z5XO^~z8O%NwDbyZIniX}3LEetI!*Um;eY9SaxzgbqmTWhM`Q=$q0AZG8An(=Pp$v%
zKiO9j$KtRdT{AL_#8t<B@xNSvy2-IhAbU}Ix+4p-P@LeX0vB^7DW`te3<;Nlz8cQ{
zvMlUx9E4!>0;2ET3Q$6(2nL2GMg3gvjADC)Dpyd=C#RqY2AW*JUL_Og=Zr)Jp$Vv+
zrvWFGsVV8C>7bdtmk3Mm8TRP;+1U;h9DRUZY)t&Y4yF+Lftr?#NiFLgF~~?xPrn{P
zuYk`$AcYSgHT)u*D=ly|3jRIY>n6#e>s-5)v)6^^?0z#MStV=Gh0p4>9jj@w`6(wc
zq7b|nO4=|Zhcf<7KX{!#U8L!xm{qv{kXmxMz~~0{syEgU67f#GCH;gyk+~+fyvp&l
zw6&VqT5|z3S}r4Q?H@_1E1WYVHQIklu=(R1i5;A#i=>3ux}vT|+G?L%Nz`zm@4Os0
zx4ufR@fhROWxa(ZP+eWs_pDJi#m@U~D&Y{~0gaL8@gDSeCQ0WXUq5jPn7@9s9Nrbx
zuUqFe@Ynk8#jc4+$}ojb?Zt_?jlJUb)S-fNto9%Ld-t-Al$p+rJA9+rgzD%v+%}i!
z2XxlHnkGnqHxF7P0F>_HT>`(%j@lD5Qp8MA+pBx(w>l+G;yI8OzaB#QtS#6hqr)WA
z^9yB{@l1zWHSaTt*=B}DPK)V#!{9IZkI{dwPw8Qocm8RiBE{v@lF)g7<pa=}W`ORB
z=zZNtUA_=YmW+>-@%dY4zdDH1BfJvumrZ5HBjAqH;ZuWmtEqCnU=}3CDy_!6IYK%1
z_GK~(#Ysmeky~LUt=hwz`<RGlHgf6Zr_;bvI{&OxTh#(fzE`S1{Ox%i2z{H9kw^C1
zX3XbjKb?2&f1VGw&?3Em@7Z^5XUM<TT9WR9Jc<J0m*~!Y;Nfi8re?@*rwR@UqRGnW
z>_BpwfS%t@p!jBlw{kMi``;#r2mF`};KZUkyqWo`E5_fjX{!zRxi&j56usIG;lMO}
zCG1Ai78RvOefYENrS%&FC0<TUazf#HMy3K-*Jra=nq|$3>kQo{NEH;ZZr=QK`q_<l
zme83`Zd_R&ib)fRPiflDwN$godauRk9@rZc9wJGpX?1VSUw+3DgBW0w$xQ>rwbS7*
z(|^7&$nJcxL5;<wr8&rNJVlf1Q)MC+aHK+Z;yDC0u}JA}7U+CWj*{?^M>5MQDYZf0
zJxD*g>@dO|o*XONDXUy$V$ITi6j)pkF3&58oZoTW9zLq!jxIbtTp)aIL}wOITXpnT
zr^hN^i>pYWj8)}Dll7I`Lj4tt43OKyEouUFL!hwR2B1BK)5R#%GbeVdToF6f9%~Ci
zS8#nBG(*NDhCS@+;5rynKsj>Lu_q&QXG@&zu=ubQ5(KZ!w+i_||MTpq?(fhk#j^YQ
zi}10_j$0E?-Q9%&_6P*2^AGai=a9J=eXL|6r6)<?*yO#s5@pGCm_?32A6^jN<UJ9U
zn6%LEhWgluyA>Qk_JzMaa(zJ*zU~uejM>S<`sb>ACQe6t`|Euz9fG;3D#wEA52crD
z|7!@GJ<dqFoPxnUvD^hsQjFi7bjx3iUneQ0jNs?floH&d*ch475*0C>by9^++6wYG
zwCvg&c~FJ83a#sWyFobPb5{M%CZ4%wVkHI+nmHTjz*-y`N|jqpiavdMsnTKd^HZ<u
zzcwoyA69?)a;L_(olY*wZ#o(bK_WWn?0jIslOgEaL<SXBO05{0uAA$SMDN$eK(S&w
zZ>Zz6-)GPSijdQz?Y4t;Z0lj*>y=o><$rb_&VBw+%1GWRm`M0Gfwl+NOXK0FQdTor
zbCIOlX;WyP=<4bQx{JKV&O4`<??oCibBKf}iEvvr(bBRO8<6`gK60k1T4DaoJ{3x(
z^1Uo=We(fb@i%cbR~iP+-}kq}m-pKSsV3zqSS;5`2wzT@<u}G#Xg#wWZTva7XDtSo
zeOuG6bbl=Bw#It<&@7m5pk7bc3YA%KP7X)fd33&=7smo+);x5{00w7wWDLUR(Ri~Z
zsQ|GWYQlb<sZ5nD*6dpZJQ8qjId|fzGe_#HAHmCK=jMzCT@9SEq0<g3q16_uecfW{
z??)ZKU=3vQg_NzStqlXxw+g3SYUll#C7SLuZNW=@a{bLwBzv!JwL(Q2U*j~i!H;Pt
zWeA|f96$QeBcj0GJ$Ogl^GukxvahIY>sdfS+_>jkXDtMv-U9&!V?R=;n!L`N6=<*h
zSe9HrXSJioFxnM3EwpNrf!@+8l8BQIy6L;;x3;#u(XE6QQ8rEG&=9b<pa%XH{XCY;
z)h1fcUZSSZ-jC20`a)q{aW9IAO=$WHWJyM_-p(RkZ><XtkfZ@DoSc0t$>W2PkIK*)
z(e6CMi=(aWw=?zbzWTEg3-Y#hcDn;g44mLgB_H!5ajI1TTBi(UhjNOFRvOQ4CY@fZ
zL+wST<(+$;m|7ds<av4`b{#(s_m1Hr65Jfv(SLnNbNqqBhSn_#i|X)hX!A|^t$7hM
z9EpQ4^`SVEh~d0VlR};48@N4w?$U;Rb{=v!pzqv8?(OHT(;U>fXjG6m-WSQ>Q{S25
zmeMv<ZtvE<CDQ{!gosl=B$qXn=2X+vh?UI48oGCuA_+|%7bQgKg7HVB2lsoj<%?JS
zJTu^-F$UTA8}Pb8Mn*=C!K1zjTF1;9q4&kd%g~b;1iLIV@Ck%A0rKA~L9Q|0Tj+ck
zUy<GtA2BAxkpJ8@xF%1pN`sVKNG>iR0rt^Cs_^-~s^z<V*3IQa>u`ZPwklcAGmw~n
ze-PDOEac2P8${UsS%^?7?dvNkt#a5zzd}?hWa&*xis>70(^5c*aT<jzR|1{yHE<^L
zY8*CW%d)d&byQTovoSJ0a294`V(J4oNwWgIs^NuY)$HY4J!`|E@$soa!3k;I?W1gt
zjF4yKD9Fh4UG7a!P4z1P55_l_{5&Au^&P1(M;^z@ru7T_9OPWekBf|axi18>iqskJ
z5Ve@y@Z@1<SL9$<9YG`o1qR-!)5sZeUXCSIRRk-;v6YqQV~*2qnp?_b!?_}9W9PAT
zF6#o8X2Wmd45W}3ej4ykcY!gJ%lSkeXbi0XeI$>wU8$Uq$=(S@SEa|4yj*`t9&%Ia
zIM+TXAeq9FpQO39YyuYW@4lyv5asvvo{RpNaCyzn-gFv(N*p4&_#HihMBgaD{<XP&
z{w7~8b-E~Y_!DfW@wrRT)G6J#3K#3fd8RL}<C(0Pt-Pp#SlL<9QY@fAjVeJ?t$x`p
z1PeF;u`(-CmN~L!W|QEGhAAQ<f|giCMz)e>;y)W$TwKkjk_sYWv!h+YWb;LEy=f9}
z+Dps(g3wDVDJ4wgk19J12nmrgGWzZm*h?WZn%GK`caDge#BH0RaNB=YQB^fxf2qvy
zA)T{KYz4{N%|imj{e1aAtqO@;aWq!NOC6#g{)#L3U4$(lj?VLO<Mp~)4U9Do=meje
zNOR6daF=hjbsZu^sDYM0Bu`Md>YVYXiS&$ZGVJG<KtHf12D^^K;!D0R(qOx?Ke27l
zKGVh)X|EtJFAjPj=uqry#A9u0VlTHsbPC}4ZMpg<JyVSta_jX;8u_4?0p>dR(X%y@
zS!&em>_5|8nr~3k{2Cr2f-JKh0IZq$d9MT^mmlOe`Lk->PL05>5OCOfsJj<&eB%d)
z9Ww%ivMf<gX?{(?tKS<W6WtThKcX6fh5#vlxF5+L2&7Vqi}ArN3|)^+%yLPOT4bZ*
z6gMYO1aR;{&g^U%&bn$zPC#%4Kq~+Uc6Gf)FGb3xjp##94HJNj;dPm8m8|{z<RLR~
zpvoGlD$UHi0WJEug;OX(lOS)~OY?Vhv9+;j_=HK2G-OufA+l^DrZfEw2Z64i04skA
zw{lYW(NTh_YKdZiOXb2HwHN5}$nGl85uQY*D+*>5s?pHD$uV1lHb5|xT6iS=a`Nn0
z=z<E+!_lz!5PMU5e)ZQF|Nkqy#uK~#KgzCPmoBcS?iZZk&C&L%#ZR;VXmVOLD8(!_
z(VU^!vnTnPneDHwEM&(Aq7tkbsi-aia=2{@-d!JM(~AF~gD|*xLHA@^KO#KbXcyxf
zTblX$noB|6`n4+E61EpgYm&Ms+iT#wX@88NVe1M-LL)SmLgP+_D4b?4p_-_uzYY!#
z?$nC1@fbEbSxjFLLhsJ!>m$kt0W#_ghy6@t2}@^HBmU;*<`{XhI2RCwbTQ&V(=$mk
zjp22sK^<!MTB9%`h>4lmY(FM_<9%<q)`lU-K##WsCiO4jigeXnCixG|8`|cD8;M1n
zZQeJ~cBSFGM*h%FSl#*Fyzfy|{D6+N0kNUj?uUyh=Qv-fz-nAiD~Y+b@nD*|!s3Ra
zPgB2qQf>4y^M}Td=(tkL`*uC8LSp|s@?H6PbTk~Gc{c}2WGFr)MM_Gkbt_G~0{t${
z^`vNfEKJ=U;RLLajJLw0$)#Ue$grh4?~vjVH-}DRII1X_zpQAlyZhVH9Jf6OCKi_Y
z@AI@|^O%8Np^oq(3%5itp25F3s$)aDY$mw=W{T6xU^Aq%r{N-*WC+vOkKf38>2s@(
zjjDJd`J10M$CPF}$;lxIXe-{WhIfVC<`+pGg7#x@L@NFALwH_XEMtO;up=U5JK3Ka
zX0<M{5V;9WHb;@e(H@9D_(S~^k5KqYZYuq_p^l~*Q<*(dm_CcN!Q}Gufd4#0!9VO{
zWo2cn(*5rmS?NAUgl7Bzo&b?55+o}uj4Ui-U|q%umXs(lDh3|IkNMaHI__LuBmeQV
z43=T1?<Y}UC(f@1U-`2bZuf(et2d+19CHM3%pVv-=5JXc-LIKfSY4e@9+?vxBTD6j
zo4Rw5Yi&=h=1KZ{ufK&V?<Q~C$bg<8J6qMKP2pJ2&7;h;{qahQaDjM@4>D_#H)PC|
zl;{aE7e9Xdh(G{0>!DQt2^+*JYcaem=yRkf$og$aq-0&HKfQ^JPc(1@5|*l~2G#fU
zoV+{<Jw5X3nwmu%@A&va%_s0=e5J9mfcU)6b0v}2xUhqWQbqKkCLaS=DsQ^)H7;j1
zps0znPFx;3q0xF^{@TkJa~`t|3)5U|py~4MjqNnzx-=h*Q~x;Wn;y3a=Fr*DWN?I^
zRz-_Nop~1EE6qoC>l8?Rm)j4we-M^U)2zpEtx_SLSXt$Fg_YuL$V}cyo`djY7eppA
zSYb8!j<*2}DJ7PqwMCi~q{ki`65O*RBsCGKE(k@w+nyrNP$CA`S-IRU2D9|eXnR6G
zc@<ST%(zq=?*PuG!+SoYG?#nj?!*~w{nCG2)_X<UxjM_#z|Q!q^Q4+Cd`kHQj&oG%
zU-stED7}v_JUDjGfZ1?=Z-u{R*B9gTs|Bx-lfo)z`jnDcj51f_GJ{zbmDsyIobgI+
z7{wNJn|X4psvx8*Oxe5_X|9QoR~i4G#w8V$2apfaz&k;`-g@>`Y@g>T<dE9i)zFDz
zWUaB-S7x3pq-A#X)E~N*q=Qp&Fu96uJq>U2WjX3Xp+HnuqO{HTM01jjwL#}#O&oU1
zBNC<m>13vP!JE&|TedxevL3R^xhrPc4*nH}vTr>&INeuI5i1lg2zVF#=hI$&D|?eD
zWEQ_;7`fBQ`pnLLJ3mJ-C%5{O!TFlzLn*O^c;KCz8<NtS1r~lt*+04^9Np<<sn?->
zYrL`&^;O^dX%sM(@ETKF(n?LRA!9*!=4gIRExQKWVE3ug%F}2AEhejv)VHIC@+RFI
zO@IO6@d6InYmh}#*@z|RH<BP6OcIC)etulcsUz+&fX@gF6aSj6)cIHv+}?xMPB<js
z9Pl(d$74(+4O%t41iM9I;?fy>yp|$(tsxxUF(P(1vY`cX^c3y@{Ml+ykF41r%+8zU
zW@aYApW-K50*EgmA|urwN{KF1qd(Fb*sr3y{(Y}w&Zr}_4mR$N4oBuP0Wk`aN=7!e
z7EppM;<RNIG1${o*Vso4FLuJ#={#5;!9~Dg@_wax^NpHv!+Jk9RFG%msh(DP0}$s*
zI?uo490t_PT@}0H78+}>T`*!_SQo9ujlB{+*RO8}eP?mQ)tB<PSWgVUUWfQXN`{Mg
zCBDLAwYEC{Vdg@A4!<7$4KOk@^uG7=!{9BfjR~pnfSy6B&OOpyXGj}xLTf)>TL8o>
zv<D~n+}iril|mcu5(0>NVf^^i%V~WpTZzj(iP8M{X4q$El~-PL;!;bs9lDq(Sge}~
z$*b@-cFJk0Qwi2TE`eI8p`}G)>%mwli{>Zn0Z1(}^0pPF_Qh`2bjy4^T^IJmcjlIZ
zW~SfJNdJ#zxc}&5J42R(##x30q32P7K97su2Jl6_8`*;ITg089hkAEqn@vMJj-*Eg
z&XxUq!+c%}ehR6AROlf3K&!Gt1e$XZ0@d`8qCx8t3+%8Kaaz_uc*BfHGS>v{U2IM*
za@q}+EAQ#iRwb?dOFD4s4-SN_7dtvU<P1a+ap)EF0RU2VdOxSacJZd?iPBiRI|QNo
z%&v%FV$Fa8x3iNwsjt3Cx*MkT?KTEa`3P8DIUtRe?ok!yCGk#+Zqch!_=d5<^9~cb
zYBVBx7H_M4_BZ>k0s0US!q7IiB4d^utDL6tG-qh-9Nl;7>I?hQ`#4)JI{)838XXJC
zU7c&eLX7(OxA)m>F_;_aXs#P7nPDBDoXmk2T4sK}Pe@3}#B4h~Y%H)tl~*Z!;uano
zIe17t`Qmo3`Xf1lc6d~cp&|@qPA}hjwr**5<B9c^)_?R-%A3ZRf7S9tsP%c_Bb`-G
zG-IRBrzCB`h6N|m0VVE}N7%TBO#m<-j0JYZacWsh*@=bW9=6Rn9@@-{V}Mbu3m7}j
zLIA9AKYt9c<RVU%x*R}*z!xa#akQ~{3gvu2YawB>wpixW{qN}n&d*Aal+VS$v=Xf#
zdbi&C{uc>R?r0D&h2mUW6*}1)hK0;Z@=pCo8c}r#uyR0l`?~z*12}2T_9p8tz0dWO
zF~bTZ<NxQnT4XH6`Tn8x$3a&*I=Yp?4h7wt(!<6TnEs{b-n|3QPmnvY`_pOiLOZc$
zS%%EB=2r4e7#6DY_gdM=rAP)KD#{BN%FTzldpH$RMhxJ96~$E$VlXl?)`KbQ0y@V9
z`47VL=+1Yd%z|{gi(xbYUs_SoM>|jQ#fzkg*-{x%bCLYmQXKlE1I)Z@C_Lv*{-z1a
zJ9n-kwJm?UK%V-uue1wLVKD#3`j6O$YASjRUA-m;N}{`*Mzn~Tl|Ex=iMYXrMH|Bg
zI)}>g7R$=Ze}WG`XvPijNQ*H5pR~b-*&_$=g4=iQ(7LnfqS;DwF^!3k*r)6%97u56
z$CvQguiaT&TLV(;3&;nkzXFdCfp9-gezGJT%ONbRA3vYA_YO?#I_AATerz^QJ-Xh+
z>0LV#MKL|<CR#BqZGa1~H~hTfeaftx!ebr;u%ZIm_++iufB&{ci#lP4q5b_QW^ePe
zl^xQU&t-Q+`Rj+%Tj?i6>0O30X72iYzd|?m_!^y6`=c>ha!;q~ciVSY*BcWaK#YCx
zn7yvBf92n)Qq5jE^+-_hf5K@C>3_6`70d7NPSg}MK?WznH*$F35TW8;=Ta$AT+drb
zU9#~(8RTiuJbc)nd7e;0mpOhJeJ5#=*Cd0<{L!RaxHwy1BLYB&(Ea#N(c$5j0hPTd
zP6!P}<Y{0*MawJG+T6^w?hK4=nDT(v<{udN38u>m(1Sb=hCmcBWXq<(xY@TcSD&hW
z6U=g{ClMTVmAg)DM!HpJ5S_}-_;!kxJITd~NVpjaXGqL}KvX=1@$HElo!^7R0_g66
zc`tn%E65{Y0Rb^(peWGD3Bn(O_4)^0TyfFWjc+;fhhhg>xk}p<1f--a32^{kT;PL`
zJp%<X5z%mb`HwaC3)F4IZ89=eJ6iFdJtHHy+}zyoz+0WoXaK*qor$;Io>pG1G`=81
z01B019fcSJt*r7a)V>S4tbtP?LVcuPp%rSLE4_3sDUBHS?Yb>&=$3-J2DIQnH_89X
zroqHva9-oI1<A8CfSUAe-XrL=1I`TFn?J(P&{g-{TmNNRjPN@o6`y*?Ok6mP+t}p3
z@UZ5jGEi4#sKo_{Dzt(M7k%PFKH<b>#{cvDkN`?L;FfMMn>AgQmTE#xLr5+2%*kOv
zFBPD{ppSPC6(EZXbtfT)mwJnS07dAp1#O=ip=dUp>j-B;3jo-}OiWUzXro~D-~}K7
z9iwH}5qPgM65_P;LPLcBX+K%z=v!AO@-smQ5TKhVnA4D@rd=8<QJE_UYIdkGwQ8J^
z$LBzRdI}qdg+<Pl4eZB&Ww2oHZJgHe0$_WjHXD5??|;;S8qQ04M!)(`VM{!D_AKle
z`L^y?g^h8_^5c(<jfs~Kbti=AfiB#(3pWt2k=K|^L^6~Ted0)UPLbjZUgtsjq!b$%
z2+5&-2=O4K;2kGwE+n~!@VS0+pL@MD=Js_@Nb+iG^nYWqK<dPhPz7zeJ5l<r`-O-*
zQE&FMlNEw65Ra%~j`jZ%Ahm$5>|H`!K+RSqzD)u>Bb)5f+JjG_tduL;LD{kEOVba`
zcz&Lnu*IL|`9f&KWD|k835<5M!=_p-7UsZNz;>?#_zdXS5e!N^C;H0Dq53Kf&(T$)
zFAn*~xHwXuTZVMt2~>X8-rXI^k3W#g^8AxXx^q0w@DUe4@Q6U>P;e}?J|weiqu_g+
z)WCV^#oAz&w33qb19}9GUXY=GwcuoHE|f85s4yDuVfQ?aXNEz;?xLqOO}NZymSI;L
zM}fE8UzLC&WcQ);dA$Bv1_7~(0j#aPt}*cxL+%OfyyTHBnu@yog2K{B-}~@s3r@7b
zk^lh=;CUcI6$$y8?OugVn>Vu6G%}!2fUhI{$u$3K5EPI`Rk*72&zXTQI>jx&sVP=A
zK(gd+n9l}i;&>rXntDRk<vWI5=@i!a-V}(UmIOodnpSO$o5s+S2w>sE-Zr$IpRm@G
zSJ7bv7fOJ)8+oT)gCOKVsK#<(@B-4$el3rBi>b_91KvxM72$(K0GT>2CdCI2Klw@_
z5GtyU?PUH3U&j~HP+-5Ca%68~Q`9Z|!rrF_7p8nDKYR88bh;~(Rpsc&S%XLO3GR{g
z-+T2JdFNkb)ATz5-{b=Tb-lYlv|o2jkqIzCh$505*rqmfpR9&xu~aNfq2>F%5o5;5
z#?8ei#31qGVD5ks7B&;qZ-@tLhS-DF8tg(!e<og|w-fY|0bBbjh}&zah~_CsxmS+P
zIAO1jr(gkAOhl<PJQBO)4$*L=RWVP46lsmmGtv$I;302T-UA8i2J9M1OYJnf_eMt4
zK=Ene^hOEt@C<(!w>8eY;>|<Vi1aq+>t70hJqPMOEc?wd!VsZDuq@0eDC-~#GA<h0
znoZ9>2258~LuGr4jW!D<#*McMq%Y_c?85BqX1K#_j(j+q02w1ZFV5Ga5jp~RTk@Y|
ze*-D>D-D$y`RG_r<^M3<ch>=ZKp=Rmr&wzNI>tp`_~i%i9HYS#mM5l7=cX1?l?^YT
z<yb`M^8{`}jRQHN`H%!a$tTc#j46yNLtp}t81BoiIm9#AZB)To+8*N8ViK#@1H98n
zpkLFx;1qS2V#D|SqwDB=sd*1u$LH>6*Fq6q#Zqe1nA5Zzoi25zD^Fx)KTlx<Fh|~m
zQ^rUX1<w|Ee<)|E&B-<cdY3Z%UZqFmZ?*nIt(Z7(R5kn<+BMelPk5u-T3Vh$blQK!
zGyJ$0(z)_{99xVTc?uT`BJ>CX^AUFWL<(=nbUMhx#R#%_VwqtK4Y13=svqY7^SK?l
zu<H#d_klv@*NuN7z7YTY`zs(ZUy%k`X-de2_SRbq(bv0QzJ1F(La>x>J!qML&QCB@
zcah-<30CjOlE!ay!qKTcD-aI>7;NDQz`z)$$UpA`15ulWc04k{7%!ObVX*Z!_s3M;
zIqUl=1tldZIIcSEzS%6MN~WMGH?vz?Kk25~?oT@1_S8ScT7Bi;IMQg|?-BiQC}&Jf
z4qKHJFP7BqLjGL*OV;kK`KVx;pf?v?RFaT&(VSnv3RuOyei<x$MC!g`stC+l(zDuL
z{ocY!eKFFHaRM6c12Looy@V=|dc?VE@Gf-m<HH%>Cc8$D<~zec2SjPN*%~n0BXEPj
zC-4%YW|54|@(p?p1++Cu+3@^BLL4(M#G-BszcC@?#=A!XHuq?C3p~%RAmFj}H702E
z4T7_Uz(7u3-lDLQT2N4TLylSP4S>U+af=#ZwB@YxGG-@9TI74SG-bv@SeTrk5hk|2
zOaIFSPyycwqSr`mpkyV9VGNVpe%{&aFKS+At*q~^zx8&baVm!Z(%}7CMUZD^-<DTY
zEHjrMrp}FxfB5pI&M6*$*s$;sRt{dC#0iYp$R8?XOXTM3{49h1q_p+~LLlfsPrQJI
zhXmt`09h5jaKodCQCe13`3*}3R}L1IP80i2X+}myAPavv82$ME{rarz9931vq{716
zR8&pRcO}K?B_z6G7WCn-41k=BXr#syc9Pzh8F(&P@i6Y!5VQie*sJ4gwRQ|7JCF%H
zNmjlOP2kMW;wwrFK?Tr<+_)an4KhXcn$g9L=Wd4^&n+e^31LP<8?Y3qbjZZ>o`Lby
z?x=C4(HG0{+Hii7w*Jxd<!-u7Da+%wUmH{B<cJr*`Fa`r$uIV!oyUN*j@^yiZ#Nw2
zA#8-u@hL2<t$p^!N^Eo4t_i>uK1RTF7~eV%&k4il&4Ul|?Bt}n)HPyUUI+U7bB^h@
zynQYODR;+SQ)6T7eq{*=FQjE;E-4#WDvF!D2FG*1&#@l{2gxBjZzQ#5jpnAXvqL5W
zQ8R+Db7_kuz14#C+2mchC=q&E+PiKQzrMJ{r)~QRxx&y5geOCS6TZ89)Il{Zbtl|>
zV`(|Lmh$N>QMEfdr`+juIr0#Q$ju^U<<L`k!2I$qzb!3P#Lxxzi_K)~Iu{iPy@G+W
zviRmxqnK(JIm?}COiSTgAy@8iz3<h^!8L6~P4j5UOx_}(m#-&K67)y2y+HBS4B5*f
zjz3wiX`<U_u<wESJU1H}8f<;V#BnSx&i>qe{EqSW-X5AC3dIPSGI(e}A=_JGsw4<l
z5xi`W8C6wPz8ciujXZQY+ikmq00aK~sUo)L!8O2k0Lm_S$*<QW04%#7n{o;>SS}TY
z2e&^*dZP?RLm_5;&beGtQWB)SEW;EjTceR9x-Oi|_v~>x*RO9eF@8WODSFXE0(!w@
zjhvTyeXsrO>MTL|A`i*)UEVDau1cUq>u?*$x<F0>(fGqujSCG=l=`6fV1-1$+|1Ti
zaGp-N(cg=6xLTal+}v9^8s}Juok3Nl4l?X#>u|42fENx)_$`xH#YoB|IUF>*^B`0o
zC_!q>>Lmq)z!ZgAYB0JoHMKeW^ycW;QnvwG%xK&i$c=h`7mpu9D*lx4<~1~rY;2pm
z{Con?SoE+80206q7>?C|%{}=JNYo`IeVi2PorY%N1;C1F=5d2=fiiQXa?X$>%cc%B
z01i+A1fnZ34bm!pzN2xRaktWX%D=}L@%*YjLN4$A&R@Wko-YElwg|BD7_Hc?0|SBv
zERO0M(3M4rQByO#h2cDgec$=c<|#e?ZS3)KYs0x_8Cze8hiG3gjXZ7d%F4%QOS~nV
zZ~Db-eZ>c}QI(ZO4IjN>)RW`xtS{IEm92GHSf-CXc%FkyMDe)#Y<`LD=jjL=W8!Xu
zc?*R$^OA`A0VNSOJ1+4-{9wK#onlm8R#}ecs)OT`0quI8!<yE7x|eGd{e#0F4yQIo
z$bO!ewaBg!!E^{L{r8K6Fm4Rv-o2_KqZXYCz!4`5!vfs_k2_m8*uH|$cbb*BMaHMR
z1cTAO!re2Ts-C`#K=Vso57fuU>gkx6I<g3e%3wqcGi(6#Y@~$uOZNa-FoW$K<H?XX
zh&()nZ2{d2`I8=xiz^7H-yIBnbsipHQ>ea2%}ppp%}iM9pzV2IBwc3F$ZZCism=b%
zGgh5L4?er4K)9Y;wzfDkLA)0q;r7jEWf(oMnG^qaf4S_I<g1V8<Pe_FDFb`xgNIV$
zwot5Jzc?9*Z10-zMdMVvbHocc{+SBUyFv>~ZveCe)ZiyuZ`&JO_xq&UI|V*Acwx}c
z(`#(K^=p^qJ5m*c#iocD)Ib}Z60&Gev$B#wBOA>z2l6Vrqn3#j9QL61bp(KEcYi>s
z#FP;a+1~6=06x{$Nnq|eT4qT)<-D$N20w(gcCcOTr#oBZD1c#NlVUr+7p)tcn#8sW
z{l?-&&Spba1~PEblwVw7EjmZO1(>RHfnVj2mV)NVtfoby<4SIzoygZl)U+^^P2V;3
z-(P$5s!QB*llyF0<ZlC*#stFXvmfL{zd#I2u2G;L1Xf5ih{~XzS3T~a{`Sk{zANl{
z73LJdWAFj8fY}}o{m%;vv|z{EK~D0kH$ezJ{)hVvR66JtoN_k5=IZJSplGJT8q5%Z
zU7~cPefn|+lunJnf?mW4Fxdxi9=-SAte9DhHjo4*2Lvy_+}ymLb0E9)njvpsVMPes
z@ohj&yTer%1G%|eTHX}{S8xX*D=Qlsli3J=#7p-0o%B|3`ww7u7CG%wf|QXL<^-_d
z<KsWDUsFRhQGeH<y?-CEUA@On#H!_IHCZ`3Ze1s#J3-BAaB&^pXaOfA7o54T!rU8!
zBG`p$nws-rQt6^uuGnxoMGJ6!=V5#BU`OA)&JaEIP2a=q9@J;gVDv=8$w4KNF51rj
zIyMQb9n7d>i9eO8M@`p0ZYO_Yeg{McB7gt<4UMovBzj!%<B<PoNftxBbv%N8kTK`0
zF0DXvfv7sC$64p6CFp1e^R6x<(&fK?G)?>#02kUpb`KA!fu5Md3Dhe%Tb9xL;^xhp
zJ3m-BQVi<c?>+*iN8mlL4_7cc$mzM8(9qo1ul``rgXle1;WGU>aF^TcOIH|P*prbl
z>uV5g>Y!-Fl8dhOVMuhn`N;I=7XhwfFK~1<?2a9RDS{7R)pq*jI1EP%PhpY#ECTI3
z##>Pa6o3UNzg}?yId&Vw<S@YhfL~Dr(@ZudtBAolWoLI6JyHn%I-tDh+W8jwW3{cq
zj=&sEkEakRD+VuWPfv`tCQQ+v`zsC2_p*8zu7xJQ`clNg?z2OSK<<DMbl2BMFqZ5B
z0~Z(9$;AcDa+#W%+BrOY3NtmfS#Z|C=^nBeari$({m>AhlJK89uX+;L>`cT>euB00
zWf1LKOxKdH51(VW9Gc8zWh69u;rjf5U0M(4<1TEqId~cRd(PLr_t6hOOj^pANX82z
zx7o7R;XCSt8bkmM+|et<egbyf%;~nh`VhFVUqMryv547M$m8NpYviAWr=b%;U|$+<
zjM~`xii%q*qo?P9Bwuj1If9XcqYXW#;&_J&hDXi=1_Z+B_^I9M0=}}-ZQQ3IcK};|
z^bi_HKJh^qDd!GTFW#aT8NCkp1O#xS?#h4t{h&4Y<*cYVRDHqVcufP62X?*6tBB)n
zYj-c0-EbWaorh8owPq%!Pi(dvZ^24EYYYB%8;GHhi6QFYz(gzDLCpvoJEd|A#oKg}
z^&Q8{8P!4VqY!lO5fN;cD1lql)QBfQJ>i6iX!FZZZ_-{()1Y;+b7)Sa1Dwsy5nzcU
zjB2|7oj%)oGujJuO=M8-H^L`GpUSZDrcNIP=bgv5D~Wt-hVXblUj<)WT)sI%N!VZ5
z?WFxKIUYZ>*Yf1vyupMWtgNZohMNBHK!%M5Mv3ji%pY}DQm02qvd)lr-^1w?K=AxB
zyJ3$>B?@olEq%zI`@y!q*1BdyZ7ZLgoQ$6F2%))o*d2K6P4FFBS^$2|jUyvc7Q1c3
z?!k*o-8y_Wb63F@I2Z;=`4t>(j%!YAe;_phvzedgKQ}>AbbN8TZF92!re=iyNC3wF
zb;y<?Jb6`n=7Tba!^mKU#Glt@+cU{WH*MbidQpKYLu1<1CFprhXq$IPQJ}*CHm~f^
z6Gaen=-0Od_~f12zWf~Ch4xB=&XhNmn9qyB%x7p#?*tWI7{ScM_5^z9AO{Br*lb^J
z@|o;GO+S6`Z_p~v@_8WEF)R(`OO3fSCLzet{4$?`cdj_dLqHgfK)@`QVe@rOz0C=>
z7{xCmhSJ-^Lu1>T&_!Zd^2?OaKAo5*fhKMJw8)dK2kln@mViSy`OJ0qdKr1nB}8sd
zR^$Gu&~6UJH<RGcewl9`zgy{D(>|@i8^Y)`ed|F)O>L(=Fj0_I<7LmU9z(o_#esV`
zMn67(@*H-mEu#SiD$v-}>=L5w=ipo?P4vrPKfg>%JDa|9)tsRpq&M*Jesx#IGgqIr
z+{^9E0?LsY&41%weRua-NF`-f(H<2&#MUwVUVeTSd6PA?2YO4H{(fVDvFqgr7cwU1
zP(8vh*``p9XINSa3gWZ{4o9+C+r|H8%UXQ;H>cM2MtXMUwcK=i>Tq0^e;;u8e}2h}
z?9bZuW@fNz|J~2BR<J$A!|TXTW;VN&120`@aG-<|>wkaE21)jJqQcl%KWPf+HBp<n
zfHMLD0m2qQ;KpwLyLr+YQELBPiiroiX!uEfwasn3u=5)-W*i}hfT>tsgZ7=cIBiZ4
zN<9cJI`~_b#279&58N2P)UipHwBh1O47i40H_Q)VEu?v3#{`a-w*u}Cw~;G_>@|3O
z_=Yz#j=65fT;wXnAJwxGv@CkAtYUxVmxSi-^mb12*z*q(c<yiQ7EL$B#SiPz*KZlJ
zbW$U0=BS|(;r8DLE#}Wb`3n_XH5M1aEolRFs<@}Ml>E)D&oAq?f|}Bhd@g^8&~^{T
zsqnXnc@@Dbx@vUGYs35B4Gr%u6y8!0UcTh9hY4eUi-n;PiiZ>u6@YIdYTkZhh3ki}
zuV|z1XXD^ca-vZTs$BRu@YT)=a2DJ;kSkyAMNZKagR$oS{^Z~Lu*GUmru$=Wl8TvF
z=Kf-UeFR@6x}RvdOW@8~evFoKu?SKv{2aUS`QO#RPaoz?)~J{{px;;ERnShjz*RG2
zxZHog&#w!bbMTsC?*IFHtm36%4gP1f|6QppYyx=6A*|}ZuM*fH#kdNa<ghJ8K_2N)
zv$a!8u^}QaUTplobBq7I@wk9PI#FMT*%!6RFN-HMC+}bMur%!ae$CN&;P3bUx&}J#
zu+4J^w=4@xvnSECl&IgIEJhfp|IZBME?d0t!7deoU(IF4BxC}rERJ^>!J-8oDqG*D
z5BmqF8afT)XQ!`(|F?bM>P<ANT+#+N4xgHk+G;41GUruNIo_a60R`qvVim{S`6Mv}
z#IgJT_d~;NFJ^PG{vvJi^TdU4utd`72N@<(;@<-V_aN-~1Yek6=D`5`E|5;mEcQ|K
zctaxy2ML%SJY)Y}@^9Cl4=<`cRdvCL_*g|<Uk+G|GHLU_=LTN#-<q!<4RK;4W>Cro
zUulxdvb`oQDX%}^tYDe)>pus3TKLk&{kIDyFHon{heQ`25!1mj&DA&^@Wd8>mTA!A
z4@3V#Jf!Hq-&h0B+0Mll7KGYY`yXHfe1&A-|E_+ggtW>dIRz75xFVzedUl?g)+trZ
zqVgT$IDIcN7@0^64+sJJhZH()p@EPYegrQDaM2*B`>FeA{JUM0hzL%Tmt~c4w(XER
zny#?&RH*Ryn;TKfD{J5-E9Z$^MmW8z78x`(-`QPP-EeRNq-p2iomAt*GlwdA^p%E{
zyml=35<4mEw_ysG0BVnrpaNU4=i|vwU86^TOvFsky_%Q7K4a+FPmBO9i;6i1VEzO)
zgr9!64<ORf{14rLNlOL}Y>2ji98U1mK{o~2N96tkB{}i(0T*Q-p+oObTS<$fr{aT;
zYan!@j~s~pqm7X!(7eG)eHo4L)W2p07l(dlAi$s@-yGo{40MYh2xjTg)l)I<Hv^`B
zVIY(NC<fvR0)eHmA!+#4N^>Z4=aO`cfNa5-ma{AH*3^b{r4*lDgNuENbh-@KKMgQD
z5VwJ!CdgnkO9cIJw3Nt%LddsK1sfO&w<o6M<VV5iL=2jtyJUv)cB$$MqThe1odK_h
zej01_0B0c@t%r?y@{=R?&NSsy0MoU=cH=vx$_r>Q129qKdT=zS)qg~7wBRPWeGjpV
z1afVXs}&bu-s|U%K(1(6IKA~GQ2iM7-)5@1<o>PDRg!Z5XqD0N|6%GXz^dAs_C_R>
z?oJg{q(o9mLPU}7E&=J3E@^2I2?-GukOm3q#sC4O<j_b+H%R_-yx+b4=ixpVgtO1y
zYt5Q?XXc&DGIr?g$4IMc<<BiV0Nn{h0+^tEALWj)Thk}>b2|RhA#%GIT0_uO4+pyo
zk6W%2K&mMUjcY@{t{GHZn6{Vvli2EjYR3{FVNnP@@cO{A<z_J80^~^4v<pE{Dqu>g
zmwT47f$Q2pxW>2tRr4K*z`}qS2|VG=c`2pPbT?rU(kAUL*-5YYlV2*1#)YACFlJrt
z4y*OB)aRk>0Sd;@g@Pnxr%1`-mJjbnA-bdG!kW!?W5jkn^si@}`{ePf5l`M)at|ZW
z@%~g0h6(;uJ;~Gge-5XL-sIYM5(gP48liZx70#oOLZOcqXsI(inZ^eyh#83<EXQ&g
zXI$|0lA%TG53R-RH*Xu<-5_g(fxu@s*D$bSAW$?wavUcm%68*56_@(ZnciYuLZGV=
zetQyFs;U-dEU&7oE6+)R-sA>&u7(VIBmgQy>%~!TsXIoLk6MQ3#_?PrcZ4ACZn#Y!
z_7eZ{#z^+>>AG_5d-$g%Sh0P`-u<M~JkzV8gjq9q1+MUsyWqX2lG8t$mzCAV*~Knw
zmhWJ)l*Ev_Z^!^bWCSoDRxw{uN9M-Sg&h#IIT^zDixsamzDQ}5R6vP<w8s7P;Z;-U
zGSh6lt+wy=;a0^7uKH3eP<Uu1cx$3&#4f<)Uk%ESv=AcD^H$n-2J4}oh#skcTqac3
zuu|HWUKa39s9g1iW9}SlRI=0{HcFoklV)T|V%&O|&jdUIq`V7iFQCOT2u=P{3<>5S
zSV>u;h+jBgfK$X3SEJ#7%@Lw(a7MCmc6xn#)b@Toe=iooBEemC+B06?DXWunjCqRB
z%zi6WIs?o6wgLz5r7a$2T|8Sx&F|;!hPv*18xM&+P|(|zk?4-@8xhbOF4He#57hXs
z@i1iYdh!jt``7p*Xl|*H+`^WX#G2dd^qBaH&(|8zgum~(_9e-=$9Mm_{mgpGQUe!x
z67)IM@sfL~p)SZ7JdroUX7z6s{ppZAWO3QHVX$&=!cb}{=7?acZP8+iw#9{6G)!~I
zs?)`yrZH!K@5*~dr%J&iFf}s$6&X4eL+cH@bKZUJ<+m$R6Q{3j3U;}C-pdd3D`@M=
zo%%SzL*(x#QuYONk>2eJ{I%ARh}&;+Y_zW<hRc!Xpmq`pdamZa?U0E$eJQ8Zz~;ex
z&KaJ%l+;?*&ey5JtfIIiQ@7wR2x{>ZS$ccaY`>V;e_HMvHgaX`yI1w+UsOzDX`U#*
z_Vf5??)b8#Xx66j#;=`g1^iyW1QIHA^%{GxXN$E+L+KMqC<Rv(T?G6=+v;OAO;idJ
zdMo^S247Zm7>`h&_UAI3QlFKi>4}{6W7KrP0LPza^pkDZxGY{sW?6t#jhi`)deYCV
ztva{}d7Zdhw%;0SDIjawbadUiHPv!L=g!#qsf?ChNSB3BxJrQDcl8PV>ucV`NI_9P
zUugCVBMEr+{MJ6fRZ*^nOmW9;QPt;SmkDp;DBvVwhVG3nl}BD9loRylno~@08*$u@
zz8RZ+cj&UXpq&`EjLaZzaeT{Cq@+jsTG0^I6h9waETPsu-0Mtee|nQ>9feFVPD-5#
z|H(z8Vf$a-eQj8(-YjX0j8`uXf7|Ggrp5^8eg=0)HNk@!Dp>x(D6>P%1Vi&sSWh?M
z%?`?oE6ON0ddNcbtcpkW)wD0;^DQG2(Hpu^nRwnkob*QO`VZV^MbRcrxN-BdNaUJt
zwB@^D+89FW@u0cfdmAS)X4==i-*-<f%&obHY{44ztxhdGALKt-J*g6-A3Hj5(fS!a
zU%9J~+mlG#f%j~wk<@=q*-j*i`5|iUO>`#S%dN0%JS=wDRi{;a5;tv+67t^@>HMFl
zog2mNhJ3EEn%=p8J2>N!)TKb>a~oan>a|Z~WU7ig>z<C(E&iaf{VEn=IX619@PHU@
zQbn+gpIG$ZgauIub41a`*z23v`Bc4js(4@D+6SX%ABAOSUdwO(8Lo%<nLV1u+<A4E
zP>$#+?Vy?gs&}p-bScHJF<qG6_giwH>177SYqFjX7^JOP7vnyW1hv)PISbNgvQeNS
z<XO&{|2v(t1;??cU?g&#*nfjJi&d}U7f*m*h)aiik9G}NC+Wc3*4!dHVhJDf5Po5f
z(0=n4Rf^Jz&&x%FWcC$H=WH&rE=If!J)BNV37v=tule44B2F2ke-GvglUiiKxwLei
zH@0-HnOg8O{5b4(hNf0=^xBh$6Ne88<=9y*1s--uZp1tVVW~QZ<MiwkN~j&uctIFx
zM3pqa3<uj5L>AT9J51kV<3m;bJ6&jQnhpEK(V?pT+t!xq_^K^CQnz!2;LEeJ=8%!C
zMn2OCB593F4X;U2mgP_{#t=jq^b3sO<DYFIcA8-s6$s0oD7Y%VZ3YZWB0fSjnN+(}
z>4Lhao}*-x#(T6;6iEZd$6IRgjV2lLc;aw}uf~~SAEuXPPhM?JkMTc#HGS2oGRaAn
zAK3`%-EiM?*earGQubx2ch!3l<a?ndh<IT>0<?v5{~KGKyNZ!4=-3N9srZ#8$SU@2
zna0JHE(MRZ_F*2^5!buYsY-}mtPHtlAdc1kKxD(G#c|_Oxm+a5eKxbqOOZu826V@j
zH3r)~$8AhGjy4-S-=vVO6e1xd1MznAQ&_bZ_)JmoHwhj1WgI0{7e(8cz6|+Y$+-97
zgac`U1sXPRJP$(o!xr;tomE=(L|}H+<1J7)rKbA0uduFsVU+18BAcFwbj+{ge4ata
z`l=GQSXOvZHIm7`sE4a%S|>ZM(ZsOU@Jlz%L`3<??>xIz31L&>&BmLNW+V65R$hds
zokRJ8(5h6CzRko7#?bBX)rqcxLpt3db`r&OfpzixpwvS>%;pdQ&lQ>&`-in}tSxOg
z_oHH~-gDWs_F-rjzAdl9dRaK%vftBj$ROl3{_{wRj?@OTi&Km$ogWV0Xv^NmsRdW|
zr(U(JY@<{p()A4W&{6d*`PQA|^|%3IFUf!@VJ@zG-V{M&`M7?yf-cI(4uN9s)3_ZI
zW2bXrSt7L(u9p_=@$=S*zxGobS#28`>V)mN)7uQ;{p8EvHFa)d&e<1-D1N4Zz?~$t
z4XJvJ$Fh)o!{Vh79y2K7w)^-N0g^KP*l@pzOO4JSk#(>;Dfn{kuCccFgy_>(&#F3T
zMKLT!8$~6;E#jDk@usa_b0P~Wt(|<<PIPTvF@a^LRT_P}pGx#?o_8@u8~hHfm1_xl
zGtGO?BDQ0cLKw_MchMFur$l%fjkL9MGR>1-0SB_t>MbF~=L6wc!P%igq$DbPYU2Ei
zYimLl8>Q>US3YwrQ9~T_qZy85Hg*6V5rK;)eT-s#N<WGsk{xS0Pd*U;?ala&rO@AF
zbR8iygU-Y=1+7P1i8135W+%Fomv`De3S6y<ppRg2BZ|-Fl3ff7Yby@9%V+X3QkllY
zha+=irGJj>L5RzozdI#PjAl3mMaR%NqUTSzpMgeX7L~cWdf1ib-F6(6KOW^UATTcO
zE=%~%hK_{s8bvX;!ppG+``h`b>LCdU3NWhVRkGY;p*uZF?Q^3Erm`L?PKloa0^ny^
z84qI6sZuX9llIfJ^9RAN>HIY8Cgl@NW!Tu=tsI<sgkryZwMc5?p+VST7Ac&lv4{@B
ztqzII^Cm*RIHaMgo6<tg7WjGIxHC#9IDEq=A-9jb+?%g}24WAb{1n+i!xpzh+pe_s
zD#^ZlKjKGVHU-;M)8WmSh|XLAhK`Q(&QkMTEA=4(*4`ex-*j_RDH`7G#{yvNiey0}
zvdQ6JKUZmaSt?8al!7gqCiti9jBd!vWAtggwTXVW@ZRhF>4*CA_3({{!e?)sc4nWM
zuQR5TcKZ$Z^{a4C9{!!Yq2N3yzP-T2d_JfS8RlmWMLYZWb5V)YnMxs2i!0V{nKd??
zxw-X$&SP#j#(T4;HwpUr1+ovU$<7?sG<SZdz&zXuv}8ILdUuSsx0uLBRA0omu;#!*
zeSrVg_(b;i9^ag@!55hyQ+Qsl-U_xhN7yJnN%8q*bt<bkQM_}FW+T|=)KJBnCplxC
zb*|AVR%m7>`231wUXBpKuI84n^!L*-ERlpK3!v!KmuN|RPl=JxlChCO)L@ZK1kXb~
z+{L6WMmy&*oxaxgPR@{N8JV9)@N8`LTfrIq@9u}eI$YF4D+G{A<y&JSFS&|85W2}T
z5N6ao@ojh8pR&bF)!lxSIn*ut*gMRF1x^bQ;Tm4ZD2}un4({5&wE)LsH|rD)eECjx
ze`D2ERFO`c{P=w^K&CQedS^@;Hte=XIC<We9H22XXs&LTlcTQMw;FN+v#ghh>kDAo
z!q;6e>TraW^H*T=S>P0tQ)uz#vc0;Q+I!GL<0UFlZp{s@3XJy6CKFC+6c>kq$tP3#
zn1&~N!pq{is3PSNeYHqNxv%{*A5*-L&|a@OYKek_cH_~T!(Udn=x+`M6o%Q9%*GLR
ze&siY-)X9RXE3p@=2o?k=iwji?7Qc59^^4jQld5Th<D|Uz#hR<FH`?MPo&C=r~-_e
zl|K`C=Ahet*okBwJ1A7t)z^g2yrz?PpAJ8l&c&{JZ-G3*>IVlB%&$yLjk;*DlbbMj
zFoH7~{Zb(}5T_Ag<JwCf!BIuSfX-5I@PF#Vp}4J3UA(`e=gqNkG`NX6pHukIy3eeW
zgy9iWVY?9%(~}9sB?lM(na>Xme9NnSJAD1p8w6M_$;no2HYeuOV?YzIs7J4G357^X
zC?%jWId!gk-vBEqxBblycYBLm@9{7x31cw0%qjR6Y?XR?`)Ad7++|~iE2XJBl52dP
zRPTav)WuJr>WFUJtT19V8#;IPz>^hpg&z}`qKF`}=qs7D4x|<(jiAtajO~mg3*%aj
zCRi<VX)m(Y7|aDVh3t)kvnQ8Wq(Xnz{>UW5`a6tlkz$G55FWCm%Bra(8K{V6E4K;I
zTkFF(49lh?G8a7gElHhff3zj9MIcwj&yx{eKzDO{&_>2YN9<(3n9snk`z@u|bIbJR
zHXbIK(D#hrtPF+i?3a~0@gI>t-u$*`bGfjA&_J5cb*DSm&Z=cChp6O74~lYT@NK|O
z)|8C9NNB%U_#5KEqv(_kJ2yLxi`ws;c^HkYRz^Ceq+~qeKJgch4O((aQtnm_v`u)_
zZs2{WxJt0K9yImG0}#G2v)3e5%~3}+Vc>Wd|9UW`+-#!Tbbw<M@pUEI?+4EhroW3M
z#0k&V2Tk+BvxmVWU*x8>9Qxx(M;_u1>BBatzaXSreeL6Em~X7p`=hmwlOT$n6%`ev
z;U;fTWvFMMYDubEMWKj?eX#Ruy8>4ORpTYSel55+v@^9$awIiQlIU6n`S8?|yCoM1
zI3F&=?8Zk~*BzHIEoX@Q&{jJ|w8Lc}im8^2=YOD~GjSFzjby$_sZ`)?@M+<ms~z(U
z>t=dOl$IKfTRejUYI3XJ4LG{a+@u3f)vv4o8_Y!V(Mvn(>T%{uvM5}lvJtOhzOZaP
zTIwEa8E5SKoL=ff{8<Oqu+;af2VZyYu!$83E;$wEwXa*^8BJIX&iGsEo~%`uQ-}4t
zbli=v$vH!j<ly>?AH&$VQ9PM%aJ|OZL5Kh`^wnRVv!rlzix1B#bqcU$yhe928nqH}
zeZ%XyIeqT!&qZ4T#hjvAS%HkW1g>HIUnsyx%iwQyq=kRA<9-Kv{LFD(T%8p?tZH^m
z<*mA#2Gy-tJcTs^eq#J5JW3wvgkb1SGi12OI&Lba1ynR*&eT4gEBYAde5_?kZ70fM
z4<S-%_ey%eA1_ZhojbDF*vN^&w8fVv(RU;~H)#Z{HxfS33@+UA(<RVR3%K_<ku5mu
zb53wv#dKUE8FSth&8YA2r@gC*c~`>*YCNl^=$wWYK_i}jrA8p?`3B{PiECo7q&vOG
zl)Y%W3TRQSnq?89*u^k{#`CwVUf#T$Uu-sa^AZTK{ZJ`^pl-=YWaLUsMn9^eTa(`3
zV?op3Hm@q5T8ggW5gF#MBG$8AQplC}ve7T7uZ>?igTPs$rkRd~WBhW&RXeSD6QYx8
zn^I*vj<ZSVy;N5$e_CTHue1BIy*3^JoBsqaX|dK*HU{lyhli(qZJ6e`^TUntN;x*~
zYqnR0oa=Mz>(UaMl^@mu5Qowh8lLx!RyMm)zneB575DVu9Y%hwI-dvrZ(FahoWWJi
zwUil0S7(cP8;41F`m}cq_WSjB_m5M@vaTZ4HFt=IhbV4|+pq6E3aWi^cGaHLqxwVB
zn1<<&jl0%4i_!V8ma=?<eS`7M)(_aDV!dQWqEs=kL~$TCr(#ZT)Iu-Ue7Li|e%a{q
z3=Z0T1o=C1EW+3$+-+H%_`Fi|dUtu|u|_#gYqth#Xh#P|nP-XZe!1^dnUnI^*tL)j
zzU)x5-y__m9)p(?R$7+qM%#=xTED<)Ev<PJ%1REt7~8n-w?TueKZPK!ig0J8shYZO
z;o~0n0X+5+9(!{w?(YwIfMKioi69ycdbJA*^}UcsU19S=088@6)71j)_$s)%`Y&3P
z=vSXf4{v)6CBqwp5R=(BzwiW%;f~=AMSX9Nl77=WEmI3W6%-AvWcpID>8}*a!T-n;
zhh_@CK0-x;jNlV(Hmx%g;V;aGHZ|DeZt@<CbrJ-^EVte&OBoIn;gE4>yso)8A3g6>
zL-@J9klks1AK%5R4TFa57<LTjzbqGz_%OfcW+PmSj4%nEXkFbzkR$EBaICe=mb6m8
zYWEVV)epaIPJ~VcS{FO$IFlvDnX&>`(>KNT&hFO5sP**6Kj&!Aahq=Z@HwYrLdCAo
ztApc;u$X2YItn7G$b2I}Kd14f1G5iB`_f!|n7%~ZaddoYVGz4a&xYk2MQfiOsI=>Q
z$3L*q_x0p!e|ByihU_ds^|#@gOJU&FUO4bJ^@wAMBE;Kla^y{Z6qX;^hLOLfi?-7z
z1MKTzVFxo2cl@Im=Auh#MN1r|5ai{mF5bJvRApV?`?gNbQ=0_%3qv@!#6um$Z}eiK
zMQg+Hq1)<m3oY8wh!)i4u`I~^G_xBzKv5y+<$K3KUH=kc3&n^ZZgB`2BzgKHJN|Iz
z;YMpc7)U4Ym>TkcsfzCzwT>S@oGZV;+7hH}sKZ_v%*$x%lVg16J{pICm)Kz6Cic%$
zSFGO>16h+fB9TEDL71Z?y#07)VV)OEbE#NEy`;w{S~2q7>R@3#e3h^aC)5H<TkCio
z(#T=E&};vC94ZVPt2izW4hYVKxeyF%`Cy?4mmGga`DzT?g$ztQGi+}wX<#@xNsIs8
z+qz<8#ltbuTlCPP-?5;Fi&TPGR7dl|D!0!|_H9ne&`+roA*Qwf640j&2f^>lJOsbN
z!<BNJlH;(WeQfkgIQ!KmHu)(2n=Su$tytyCA{Uz&R4(`s^Y+t`wBiT4`WtmHJ*O8|
zb0Fm++Hvn3&N2k46E(s-K4>bBJsT~!otw)q+N0riUr2R4V3YRn@R6P=XTiyG+k+$f
znwbMRcY%BE&#1#<=5Cd}xoJ@_mSXBRA6+r?i8sny6_4T@f)1DW1A_{Q$Sh=u8nfT!
z{l5C|k}BG*#cGut<`UM%3`)6dq<%7E30wu9y~qU;@o?Iypm@xY)eXhxi9`C0E9)QX
zgG&zfzT-?fWEwSrbEKl`xe`<8nlsJ<phM(Tc_9%=m!2VKirC0B4oN))z$JfPW$*H2
zV~4~G1M<&m3!BAdCrP`9zqJs1<ZBc;CTCN+luJled?O+j3#Z!5x|-!#4C7RgW9YZ~
z#~`W2UGz~CN=yOoYTi~7ErbYNd%kLp|8H9G9i>=Y*%JMz!6p2>yf3~!>!gq9`%H#Z
z7>f9RwXdL+Qx~saGJgkA!UJ(aeHJ(VyebaZ{TM@R5;s0{5P^P~Cq}lddq<A%`pGct
zRP0_AKba#H7uSwXJ+N>(G*5|TNp9#N+9TX>o;)8Bo|_Na`Jac%*S{G0tVXuyS*l1+
zJI8%f9s})1HjWeKI!4#hh{JWvj)>_eSDPqEN!$uSldeB-VgP`LnQe5a?~9Yre;-c4
zk(bA}BK(Mk<}g3bK>LC{9mFFUX~Y5SO!!UJ#tt||FnagUN5=>2O6}JR4+fb-`~N!*
zc8>AXQj3(wg}te{V&Vriw7-lD+b~u%oKW1XuRS)K5mABhi9n7E)|r-?E3z98)Ax4(
zT4iMw&FwY=r`;r!_5Hn}w_w6=hwhsJqWULzt{@S{`|s`&B4r*^)-!T?)eoNp<#K{q
zj60c?eZ5kP+ud%11h9M)zmw)gMS1^x8;^hG*2|1pi1$b?@5r2d*+LNXF-N<u06^gs
z7w}u^lf`rXw{>j5da*0y`>Tdp(a8P=K8z6VqKi;lYbm>|>89GFuC5;f#)0=Gb^yeN
zX5jCmAuK>$V|RYYA_4F#aE46}YiOn$03bvM+z1kB8QlU04<lLAq9=+r20}|^xC$V>
z<gpaH6aOFp03MwW#sR4E3(+kAcL1WqK+p(<M;BlRcXW1{5p9Dca2l7ngf21i0jl<z
zEAyLt54Fl+wU8IaKl1W(G<f<K<=cL9>74;K(Z)i07XK5*;<db{*$#^%TXhMar<YsZ
zIpla>zGW<|D<hn0{-%j)l|E8=V{_IRH;`QpUkZ#7!~ks&@7~|-26!BlyqQ)53$>=5
zh;44yI1dp-&L-%nJNF(53FAe3z0)IgCx1l9@%<TeOnsch)B^8SDYPNqqiC^qc|NEC
z4?2dG(`JTwEJ~xCAYJ-zBHGs3DIV#S?ukmhR^3<7x#WEnZPB%gs}O`z5m$1$zxHL^
zp^%50%osZW>jiNFgvA(Ws16ALbgQm$COPYRZ2`7R&ZjnC2-m~GWr5|@#yRjzUA~a}
zjh|JtZDQJNx8R<T13E6Yq2pw{*KdFZQ_!#Y`;dqnJhF4RWY|+EDZ4^|gqnnNw-L30
zawRmRQJJS5ndmf)vthj9j-7SpCWr|Hmn`7Br+fJ!;kZOnZgv*{XTUVJx+3-S&R@wf
z(KZF9(_e4>SBpE~iIjbsiAV0!{feZT#$kQrDgm<Q4pv#V>m#aIDwB2<buOQ!iFol$
zC?x~LuoyhSpTJj3&cc-i;G}y7+{j3HR#@uxEv&m@?JEIUiJbuX32mEQI`by<>OA;h
zx?+}b{bb;AVe+U;GYRPi#@|jHsD!ut2ue*m|DTeJNbJA3zp5anxhfQ<<e!U$$b@=G
z(?}3+b^f4=iuX0WeK47r62wrCf4$sy48O}D{(>eGW~jBLH^_2CCq#2Z$Q?i=fBJwV
zLoh@PMzC$Aqfor-To7HzvBhnIszdJ-xNnelg@z;md?;EyUafZg@gKp3v;}Y+S^pMO
zuD!+7YFv5JVDDk~l~^>}_@%7-a{x}YM;S>N%{P;k?Ff*y#v|o?JG=CrZ;!Hy-}6q5
zR>oAlF9Iag42&GKp}cMVczkdJ05t0VQ~?>vcl1Xk{k!ISH@{Bje1_9M(KZ?~G>0FU
znUo)-bz6p^0-zso^Fu)r5$e#(x_Dg?HJJZ@b==>Mgj)P$XpEYfr`z}$6i7X{78AC*
zD|_c<ZFbV&(#lO8oXJtUOiKv=O^1_G3reaq&Z)Tnr|tyg?ceruD&(zQ_A@N<uod;b
zf3pR=W-#Bgl|2d9@jyay<s6;1&!EvDC@1-FF0sEp4;7}*6(++<;{U@tN;7|DIuQeS
z8PTLAn)wypc4PN}6RT$oia4X8;>*6?54iQAw!6v@iV<oE|I`GbFZFhOa8;Ts$?Qkj
z11RFhMu4d1<E-<uXU~K@9=wHes+aEHl(5m`c7X^MI(4D56<Dj?e(gY$EV=*|82S+8
z+qZ8u+g>r0fUhUVi&yz(<Q2SPd&T%T@n1Wn=0Ka4tC^1>iJu#NTA-Parj=o0irwG$
zxO0&dJ}zNq2wFBZiSg#oFt2jQ-)TE<G-GWxbF6Wd0>%L_$KL^#$+O7x&|Kp8mLce=
zgXc8Gs&<+!yZh$)hZsjio2dMcFgK;3Xkx?#YRrKlxYW4$3{>F*w}0dk$-Bnx{Qi*R
zVBe^o2S@taUSHwnU%h%2_u>VIy;`0+TVnrUhULusTXqe@&ZzBX4nCZTUGB;QM?*Bo
z0I&u+LkG|m8rnl7LAip)9&OIQu;};S$$dMnE^lCH7&AOPtcfx+GgC1%1R|X7?)K^S
z$gH6ymZUH3%v1<Wnt>nUq4X4rdog)}v!n*f4U5B6^MZ8?L#48at0>6H!w)ef4GkH$
zy~JQu+Xfk18lVQ6awsDsBL>R#7k0d0Yr?Z?V47QO;wN)~{3uu>bhFqo87b+X=SL5^
z1=>_|3yUX--H)La1HO|g9=gEGiyk0mcalymK?P|+C{TX<_)Hr#M->mjpoL_5U`yvV
zEPweDQBhHuHfwRo?z4h*MCs$HxC`rOV$Q0~K-PotDOI%e;^vhYL(+KZ|NMm)UTSyj
zh*A{TDq$XzuZUu%IH$OP|A`MG2^`5#oQUzKu9uQa|MF@=a`I*DajAhaC&%*$&~uWV
z`aor&LZ<lGPmg;*ozxaED5ReB$sEC__)Ht!F}G)d&e=LFeJHV5=*^n;3f>wvJ<>-8
zGx;E6?$XYGmHhli^XsMV9@f@Z5$PrJnH8Cs*RW57^o5dWu=?}EtfwQ|pbxd}!~lf)
zw9&Fl@AgozC@puXg#Dk~3(1fE7bCt<h}&<foRX9j29@Zpixt7|X5YWRQJUjyiHC<5
zbUT{_Wep4Y=zxEumXSq2CNh$&)y&(i(`Ars`S0N_9^Pync;g-B_-Jp(>nTLc>kum^
z-@G3RdN_YYOm+NbIAop?>X9HcL<x~1dD5@86`6Xh|8z;7poS_3`T3u7bF9!di?1Bg
z903E$?KDTA&Y1!_-q5Yjz+sL^^VE87S(JVjhA}5l%-;lr<|MSV=bK=bUh3qevAMZ9
zj9jFF2_+ys;W06lONYS757g!Fz2jc~*0n2agl<TN=S8(J@!>N0d1x^jm=j+1{2KMi
z{QAb4nw1(Uv_m(9+)M%guB3SXvt8yq5fOhR%gz|4n8TsZO5fPflHHRh`N{^U@P#+1
zHoK{2Re+;#5D$w1!@AQ==@?x`l^nBwqZ@&9<wv?+(sv0YLD*R1jhi21A^0qo^70X5
zop?~sU=xjAYgsJgTnj=xJZRXyev$Otv%8nfuj}NqL_LPVJn%r0tnrd;2@#xEm$Q^F
zLqE`iZ=Jf@NeXN>6x2Cy-rQo14?ncDu+TN|m(w+C>*z?u_gA=oUlu)RqCguXMFIPb
z>cfikb4Y$q3bYx++|i4q^7-OJo}Qj@pUkHxEcG~*kk*N;+u6T1Odjb0W)kVoDA+}J
z{sU3}B{u`VvCAKbI<UOmf4h0rLR@ESB$z$03$}+DiVR={Uiw&zT3nW@^>>m<kNRIy
zkL1Ts=kjMYRIZ1_I`4L|@F}W00^Oi*ec#fgc0*vRbNNHeo0)DL;#8($<;x1YBv*4l
zhqW<N^Qeb7z-~k1FeOL*iq8KM*c?@mz}A;91l0*lx6sG##FH(2uP3CUk#43US?e*%
z#eT{Iy6saG2A43c5w?M06L(MJ0d8!w!JC(IYX`qQ7~0-&Y)<_kO-%W-@4-+t8Kl(F
zSSdQ2$FhwtdpYJI_f+yOskHSX#a~CKK5tCUAt5e~S(6d7>Rrps%*={C#<!F%j=b*t
zjPz!hDH0bSKeh0{6%Ww(>xAlN8?Pl1Nrh_eldW2k{eccOHjTmbOE-EMm^f(&Lq>BT
z0l}^cIjTG+MyWr}E#N0J870Vu4YGXyem(a8I|&4e%hA^~Nc8f%R;_{Zj__P3s`bav
z&=12gH%0tB3`v%~<_N8|=9(U^$yUsP%XxK=P(yKhdrfKyXG*6nF(-d?g7tJ~=UHX1
z2m8IzgU$!|XJkQRitPP<)V~NO>kDo9`~5D7nns<Yt^}3rpWEy*eDzB<<8OKVnh#oU
zmv4>h;8rwzsMTl<Nr>;a4_GZ;bH5EaY{?DC2+tk+yHa2bYQFY68olmXJXl&-e6f-E
zmXL3Ci>yliV$*i5FYmFv5h6KOL5YU&-XGAS5eJQ-V7w#;W64Hw+)XFxxL7(VOfll0
zGuTW-nhInp^CthDpVBcLm7xf5{S>Mll8h{Oa^^QS8+)d}>598<Q_}7WX`acMshD2L
zJuV|6l6YRfW!ZmRdI4~lbLY2q9I=oE+Ej)*Qm6;|d&{I*PgAeBRY7-$6mVu{Ct)CQ
zUuL1D1bVaJn-viOaq;no4Y4;<`VTGc81#TYmPYg^oBPKH<`Vq!Vt6Hp{5%$1z;-nO
zCI=iH`MiGf1_OaMo9_(wvIXwc!-vIhnL?-gpVyDJM@$Uan)xhX<Bia>%3gxChNiF;
zAY2n=yK+T-)P5zcMO;d@e8UZ<@U;8RI)C`o&~bRq1_M9w>+{MlvzwapzyLAr21iAq
zK?2M>P?KNNE<r%gO$*FCaRl~*Me3<T0Y61;&#~XZcNg)r?1elo$;cG`HCIAHrDkx~
zU}ND6s_aX=cC0se->9CeHzbO_jS1g05g!0u>_#&5;ziCwJ8l>l0FG2BUcbi3=X>DF
zJ2_x=1B&ZIz<TR*QSE){>LMS4p$ZByMs*&%h_qE5^Z|mcM$^vHM!y{pfi|1And^Lf
zrS@YY;6*V*gFm!M^)Br|^A4Xd8!*y>ZJy?Z4!>zLpm)#M*DuunP!`l9qQmznSrD02
z)~OHDl9K7C{qJ~yOU}TqenC!FHpN!y{(USYI3(m2TLO^UOhcm?nBkggC16Qxcj;(v
zkC-Y32Lt^Gafx>?L2qNbZ$d&s`x0*RHn8`#1snonVCQ2jytWyBT7vhwobUxxYw??i
zE5DdukF+6)(JL{&^`a+4nZHo^GD0l{rB-^{nNnFL)K9*zY-~BV=LTk=gE03T8g;UG
zm%n1m`+Aic_*Z~zuT-QuADoQ{if*rZ!(}Wx?yNGM{Rf7}w)ep;g+A=|cUI1RGg9`N
zYJ7k~u>S)cgMVskS{oaKM?ipuEKf8xcKZee1#SGE&xCM=LC<E-#CCnM8Qd(2{AVZ*
zV4i?Bl*(!YZ5I&cfzNYb2N9mU@k%$&=-U@|>%aano%&&e_Zi48?O`CxLa$ub?}mpf
z{1pu77Ue~^m0wMayK@mb1NTNoC4dbuAS>jyt!=?DY1?z4-$naVYzb~w3&y&-v_Le_
zW)_ka4*F?&WNT}SGxQUfV`9A!7*Uzx!_)!EEO6@3tpBzoWtKgRwL^ES98Ns^5y`K6
z6}i=27*Aw=ijLCPBmW>T&i14%uPyG5*?Zv)%u8ij1@<!0O1{V{gn2L(N>WmfsU7ud
zE1mG-;5HI$Xiq;BR?w|6!L&d(CYvG3Q2A6o2NlzmI#+MV1)F@;zJkV#zGTr}%N(5O
zy9X=_O@B(h;iIgBzI3Zv&xOi}O_&Mh=MDKA{+diACK+q_8*<eWy&5;03Py)|GY}N*
zA2vkB7!s0@Apgcq{n&(xt_58V+*1Q%^Bb{8S8t43Ic+=VQfZUiBt}ZOiqE(W?Vny@
zbr${i9p+>lc?|Qj{+X>UdrDLFk0U)6?2SBjreZf-4>Q8IJKx7QK$0TH^0c_C?+XjM
zB<dd}R>}MNQIs7dQxCoaZvkXAn!`^R2@Oeh*w#+2pKZt}8b0d2bhOh*MPE<PTGRS>
zKZjSd4-?f5TffEPQxw_E;WuB{I}rAe?MFo|tOdIJ)8Hff-=8~^AF0nzQjqlhKf~R2
zcX739I~yiI2+nNW@jv=KkI7I^zxakylsG^_OcX)ZmpdOUdn(Eh{*~0HxGel?i}o8~
z{^`vSyip4`k<s~4OfSsFQE=C9lb$(q1_BvkCZ@H8S=V8@SOVE?T&6UkiSSEIWfJ@(
z!hbE_r&)_D{I$NW^-;$I`>64|NT_)Ku_!S1vCeNnd(m_t4r71}Yao2-bIHN+0rvW;
zBIr!xPv$W>180dP@h%2(?%X+$VVD<ey(e6uTS)EoW!4!wo2qP1Q5&n=(!{+(1UeIj
zEi-Em9hUTEWEiIA7O>D+c>p(D%xYs-H^x%Dt{qEAUs^()YbEAy>1^h3<{B74Pj!+r
zF<~*kP6MBWfhHbAyQE%TBHLrz@}FTs0|vt6f5Z#j%Qt7!(7Xxv?-L;CkpR$kDGAQc
zz_G;sBqoqyf-iR~yKi)`VvTVjB5l^W>%{vUItZ`xw<=ljH?MM2gj9&}U&GNHVW3ou
z^W0ZG6!2BQnylpW|JDMCUBdm6v*W(~H0>+8jjE+Z>LME(x>*^HGQ_mE;g~`%Sa4TY
zm%ZLSaQu+>=X1e)yc}ABr|p|^0fva?i3ujO-t9hyhGrPq=Z@0oe;m<z$U0x;jK4gD
zlj)Pwn)V)r*8pueLI1gTASFd;DItG8VCEApc&Mxg%&74%UVsl43Jz`LA*gy+l$U*#
z^9N3}y0^Nq4~?pv;u&BmQ&VYSzF)Ok@u8%Z(a&p1X5sINP7GeR7BnVJ-sU@PWq(!F
z`S&p18LRlVYtV*cq|rPe`xs6D3691$PEdE)NP%Jf$f_BrY>1TG8oEg%&cfDHdTVvU
z_)2kcMqnRa=HOg*7&X!b$}`h#s*B4oGx5P@wWkua)?<Cp=UR0*S{ieou&c-bnq_*V
z<l%R=$O#mkLmh^{zyFKoBj}#9{#J|HPug&Tivt6Pj*bp4E^gC)T!Xf_RFDbA>ag#7
zN?r%@?7F#{fhA%RH|+mfN?yPTTsl(sB=8?`#zxjpilrP+c^q(xKMMN-D+Cgtl70I}
zg};gl33{v@ED3BJ>x~=g%LeJ`>Cv!ZnivkSVZZ}GLQEV0bHM1ueW;-a943H}qr4R|
zL}~K!@<3Z7%)9LZMngbV)FzRye)V$VU9dGK0BHc_pDf5GdK^Xz9=GvyTSOrYK_m%;
z(G9?~X9i~mZGeA|!}P*-8@*SW`MhQw_@(adc6OW~2r6o7LFm~lF!qM`hd)HCrW_Qo
zCc*pq(yME7%qBsUhx~5gp4rqo_gaZ*T2B2*RfhgzI;Br*mPD&&@d2^l_=1C3;^91x
zKe-eQABEAhYS;r)+JIWBuw?;g2q>XfSQgmZ^5b-~`<QuoOEqrB!|*SkgI_rwKjY<K
zI4gX$#f=OaOE)hSHxhz;0q_!zLIVowSJ7Rs`4it=dc<J%H6?oXMl1ZsVNZ3n80Z2W
zc2c3Kmk?p*=2pV5_CMLmL=zssEHCtx6?VC=U2Bs#*&s?-LYf-pZ?nQfd3JJNuo#m!
z=frF6Iy@RV$^fB{T!H#G^y?#AR_!f3wME5>lgPWvBD#@iG;V9dB*sv&7+@Wc{z#a&
zu6fH98aFdMrq97i*S0-0VN~YUeUFPkgSv#PhZsD#$8-d{LM1T!(;$w^!@T*O$IF%y
zK|m@sSY*IqpI=mT8}<!-frLeC7m;*AX#8b6gisYh6CvxZFwxNbxcU+s@psVrdE$4L
z@;-jsz!GQjj^ep-EiIjTE)o^Fzh*$+{<&&7N^V{lI9DW&^XZZGxtUhSBq9gbN?Eo9
z44$*ScET`?7hwjr9q>9kqA`(YNl8_nMZgO4qgEy##3w!}$+Bz(+LVcq$qet+QZIdD
zV`lK`V2Es+q%VwYL+nH52k*R5C8wl(Ra2uo%7$-3-r&Dw^J8=BdzOdzBLr!U>k&Nl
zZk~g}-j(*hN4qxm>s}7$td(`&43y(}I7<a&C(Uew$p4w!5FMoT%@1@3NW6@XkEr?|
zK&-@~n-)!*GSEGEO~0DBsjxX7sAWPR6dovQO(Ql14I2bB6X>S)^)E&zq$ejQ0;u5O
zSE+*J?>wb3kRH1$or`H(3?dLJKz`|eooH-?ip%;AD}`-268)xeMoe|Thn3~HbL5iw
zEJ1oMT*&VBg%`$4jh!+{D|eGM;trI_XhwET4K0W==mbC)Zv0ZQi<Zg?P+*gW-75nf
z+h<i``=d-C)*FsH&_hJP!GqHYgfiIR>+VlSa@$s(d-!Fm6mxwqq!|fFa?fbZtjdIR
zTzGiY-wg!6%rhp_p)K>o4YbIdnKVgnlAZW+JTR2OQ5YT72h=k15I8I_c(&7@e=>*F
zvK?@*0nTbr77*S)A~LCCU{_3&1Y?BOG!Bi&lwS3WK%^q2tE>BhQ{XI+2Z<ugz(o<T
z5*YCqt_Y|STn`P70d~g0k+0S;|2of|#mwn4GPxs0v2QS#f)ZyZA^Gc&v$)Owo@x9l
zNo4%#8S_QaCIP0EQW%Z0e|RVjJkwlB(r;8FR``B83qyZB^XlO)$^jEWqmaNsw<-wq
z`|yWms7kxBvN_O-XoGaRC2@)wA;Ws|^vf)IW+ni0FXs1u^!Q;<4kEX`uV&3mPsgRF
z+c|dwr$3mQ@cKN5PIU0Qqthxf=&uqnVaW#tZK&2*+kdyX@^FFP!RHYM9C5Q;C^PYK
zm4tKZckqk7?)Th_k6*urs^*<FrhZ2a?0CBl*a32ko<JXkh2~(0%g7*X;%VXm91%R+
z66)=P!$ZCL%FN8nvBNV}x-m!-#1iY>f)kS=REES=K%1m(JEfwn9S*+g26djgwQ~`C
z2QA-Z@G%_@{)c*zLwrU(`x`T8odIfAMc@13!z&;(@J!KZY4iyVgL6agJL{ZI_IuWD
zPtH4>23JWG2On_}UCSJA9GhohJ@aoQt3szO?|T@NZqxLna2CP06F;icXQ+FXaRsQH
zitBf24ZT+?1onVdANUDP>4^0TcEU6-llSWFJI(=%Cgq+IcnN4=W(Sx9(RTx!%9_%o
z53bX|;EW*PnP7p~0(=F^Vk~Oi6zxOtt|3Ep^<aLRK^R;(V9tr~KsR_-GA|}{zXwsP
z>eap#n_l}BMnoAhIrQT5dhIe_+|FJT_?{KM%p~zN=q|uNuNN1kE`iHP=>2PA9zl98
zKVBd9KxtI>d!sw^5gw2ANzK@YH&VGiSU~qQ!Ym|IJz!?})zwcg=91du_4!Pqvxw+U
zk1Dy5)$+CtvC3NKzwUh*xR9P?;6iqFPUyEZ#x6|G&pzRI2^I1Z?vJMAHjDxR2L-|k
zu?=*IBLSRxm1qhh81GbgwZLHr=)u6Opds|-;ZjVrJ~X!CeVU$50LJg=V5o7m-=-*q
z?`$eW1w#;B99Ul2<yfO!Yhq?C!})t2R>VbCy~-K6SA_5obiQVE_6t+%+C}hA5SZbL
zUn(eopa%olcJ|Rgo}tZe6reZ|4Qyj8ZWzB9u92_F!oySYz4#Cm=;aR{1UN9?j;X9?
zawXU#-H(8Ev3|e!0@`1NO47FG2!=h#4_(f0h{>C3*uURp0I`ZNz|W7VHQlMQnB3hr
zp^7JoktW#lwAc8UDsjKH^_Yb6r-{=9l>L3Sv1h)~Tdy~CN9HSV>;H3Da1muyPl8K{
zL%McV8uE54)Mpy5)IV|aq(YG5?uTOu$+=aY+kRIlm9DElY~1*P6?urRNLlsX5lT({
zokjKkVkrcHA`*{DZg%2|-HRvj{v=R~BCR!HORBoG_`>O@f*AVWRBV){0~^yM<A@x-
zRhZ8bwwAO>i1st7nTrz|5~%EXaDfG3wwsVmAS#JT%afb#%;EjD!!-4y6KnJ2d455}
z!q+x;U=l#T&LVMMwbMjIJ91FsrkvCtff75UUVNcBn?`lWfv0Lg0M!Q-dP6_RY%k}w
zSh91OmAog?bkSzrF@>j9)_z3cPP83d*T}xgupAOXcBbU_i+lSs&-tit_S5NvBq^L(
z@|<~1sLx9xeBs}~?qaIMS0+8eUyjTALDhvDw<ABTJ@&@-Hi0@IdjlgSWwnW@q!V8o
zZBrxn@iv8eElDG-<&y?Vym5(v#Zq*g#G#d4{>pjbwQJ0*YDY;=|8X^B_V9OG%w|^d
zoqcTU$l-^@X^I_Dj#FPssHvEWKRjwXsgtSKkTep60GA1>gl&dS{;6A9nbsgtQTi`5
zQ|MxvpRm~Px@!Gp)Bm0HNJAtNFyz;465(p;;pkz6em90Ms=-9U;$nVoL@xiok7eGH
zVQsCcqPM$f58DArSkq;+^BS6aDEiwN@e@2Q64-n3`KmQ***_J2Ac_^H`KhTI{m&mP
z7kA7{7&a^WyT9%-rQjd)e6F+<3zZKg2SQN(9M4bxryU!1s}OgfzXOvTtKgM=A=HvQ
zGYGx9_$(!8a*EAq{YiLDW^ZQA>rGlHj~-ccsywigm|Bg>SWHYgYKmD#KcLqo18K6|
z#06!qygn!?_HtRpld=lP$xZ_13>ihM6Cr<F;n#fU-s#BN{m8HVn!WtZO@Uyqy_n(_
zoRIid+~Yj|ccMY}v|cDMn&rpF$p3H~@4L4U2YoX1^=B7vfreEnE-#h|%i&YH{<88r
zle<+MDb-`GX=#Rfa!_K<*Pp-3(~%t;`Ggm(eVoT4b2sIaa_GV*986{B(!PuO58#?h
z4^7q@65Jr0+1~f%C1WVWPdis{HWasfPhropv9k8IBz^PqIg4pH(cEa~J0`g5^#}U*
zyJ5G2neD-rwndra%AK9G;NRf~+7(iy@?ar1;|JFay|lHpAnaAY4M3agoeZ=I0lJH`
zq3vYYB90ngZ94Zf*aqg5EHlji;0T4(T59D_YAPUqEjw71)Z3}?ZRQ<AM2#xQPr(Zb
za&IO5TkW%S;DEi%PJ*RFqxd_t&%KmSU7GJ;7i%85#o)JUF_35S!Gd3J$TQAWLhs&@
z-vMF{n+*lQj@znfG0L*(*KK%0f7jmh;FtOO04h@Vt>iDC)E!^@c`Sy;C!9^WVhj-y
z6-!>C-1$+ewtyOfxgI5&Lk~3~7e#kW&~mbN(&gDnfcE9f*BflKyIf$|dE^Gy{*21h
znnr!gr{?b^<334a+9uQ4T+j6z-YfvPgqf8ct^ODJt-BAD!>~O>tS*U#^(RPJJ#`UQ
z*Nh#VNh;lmBScDys|iWuT$A}UudXIQ!NeM+`c&7OCGb8YQ904uvZD)r9<FH;w@XyR
z!o8|}FNx3#>kTa)6Qnr*REP#CK^G+<(iHsh<-PnjBHU9p`P(XU*zkY$M9U~XMz5GI
zzHtQoT39*3{z1P6y{H?7VCoLkW`^{m2rzxd;?^YtwBz?C$dXDSZhod|go8xUPewp3
z;{N7OishT0SY)jSrurp<n=wYW<!AZf;Kl~u@yFj<3;Ghx2}OQUJ&O9xc&MIfZYcOD
z73#k@%*MJXZ#bs*<k{$TIqvLE>YHsisHD;FE4S1@`{m|2bQJLVd5Au3z4%FZnWJy&
zS64#e>h()sRGq*4735bp8UNTV>m*3yqpLqTy<WbNCHi5&NNqhBw8edz*ECXhzQ3Oi
z`WE-xf~soqpbWfs%(gqe`u7dMgpgu!Qrl6ZXm1?v>0=}8nJJZHo|1{es>?434O=Gm
z3}is%B(rWcPcYJjW=8Mwf5?zI^SX;R7<0s{Ze3n@?yXJS!2<Ec&W%AE)<vE1gR(RX
zx0?*YdgxO(9XTQ6isC1N{)inT^)tp4{KBye6I$p8VGH`1XLsep1HyWapm6*@&QQF;
zI7e=a(Wy6vgy#FAu3t-2kA=<NptB2K`*fe_*M)lS-6IkFOhpvzalt2`*H8KkBIH`b
zs7JU|GFw6jb=1bqm?w9Pi1B;GNfWm2UTjh$!(8uglcX0{i`{4*FJu%vIG@mRz<T;S
z-orwT=2>Q%?9PD2YjKg+WSLm3uZps5tXd{Edqliw#Gdw!ysUkf7b3vq@8yAXq#UDU
ze&W`IvK={vg<`njh^2czW#Nwx0x$m+mm65YU5X*M1J5_(McSfQO1}5plPP@Q>wON&
zk0ez*G2h0lH=FGdH62UW!^u4(hTI=;Ll>SZ#q>{`8jwN$V|}#scw-S?nqsSvS%=k+
zfo3}TBeBEluMAPrIdsG{({_|XRpMX0BsqBxX+8W^aL@RTzWiK>AlL&k{TFa=<r^;(
zGqrtuV{2j|+fhZOkWq|YWFob&N59=9#68Y=#~9r9Hxh(h>z^IEP!{%k38!f&uCgxC
zUlV`Fjo|*r{kLZ#+1I&5S>@39x53-@2O@9lb@0c!QO7q?Os8(x6NU8Akf5n_XM08H
zc_hY(2D{*KN*=24`0;iWYb1+uj+RVCdrFsB^kDgTEngqscepe+u@=TFU1xknM!?5z
zcwI90c*@0_QLCHo{5eF!9_!>o<N4U}wb;a1eA|K4;P8(+)Hn)R7#aK1f+TTX8*&0R
zh7m;V>l!%i^M$q8ZS~IOPYwojf~LN#$EF2)N_N8&{GxraF_<(vJ@jCC=KfD*p9<Dj
zT;((2Uo9jVpq>NjOKmgEplBVOj;j6Sq6Qi!#@rSTzS>42V~9sJi}Zo&tZ!wAZIO%H
zULuk+%zAxa=!(EKdJBGYf$<a5BcyJ73*)i~Dgd5BPt1Nr=zH<aHK&22tnl-D?d)MT
zaixvtz5R0A<?e-EunvyhaYzgQcq>YJP<RiESHG-v8VB3ehG^}X!Td{b0l^#E&&+do
zL%Btan4Yi@7)g(GoOfZJpPmNrQe|yGlmFhs9sWD@1|*~lCOcY6Z#DCw&SVX`X5BtY
z>}k!Ql?FLQ@LuK(g4|1_pSq2BP+UHox7vsu@M5cc^)0dcA47HHdQW@S<vR^@8LM33
z{)g=9h96AU)NaZAB*s@tQv#(_S92(elyu_=i#3E2gPRdM5T2{2ou3Ltw^b^3D?!PQ
z-=E0o4GhFECw+m5;nyMHMFN1v6<7ozZH?7L+yyBCV_;`Q0w9gMQC(Ljns(Ej5YW8a
zQ2B9#mH_G?N+4H&1Zd_%P>+c~EDBX0u6tE-?k|}*XiI;#s<y@MwlBFT_~Wj5P`K`C
zDCv=bychO_PBm!7nrSFv4YK2xH}C<Nn<C*Lh+m;EdW9G|0_G<Nh)Gl&Ts7S>Ev<`Y
zRs%EQyvB5x1kh*Do`mmP&i4^#c)B#TkbXp2SNA;R!ytVF6yYqKoCFXDqG`RUh45G^
zE<w5t2>W4>WB}A4{i$A&gxOb+PD7Z1ISsOT_#Yx_K8NAF!$7XYj?&V9PiTE;hW6)}
zm>2^ZSL&P40Lb#LKMuFa(iAPs%ro7gC!Dzi{iPJo2QKVsbH-%YH5rIQiMo??o3cY!
zy^(d9(Jgs~(8hhSul=KvE|G?#;&!jOP387lAws0?YqXqrXitRp+|rF<-WdYJmf2?@
zujR0}0bz}){}Lpj0MwDrACSuK3unnJVS+rjH3)M@8m>eX<If*9EpUT`8&Z+uJfn$0
zS`oRNhfj(pKc<8#GJW3bf6d&0y+f=8XQhQbbjrH8hv6}lh(ZnmDxg)Nhe%QLMoZ^+
zEOAD30d{jx>*15w)4jF_qFX97pWhW@BDaY)Wi$-PAnDut3I|<2pBcRx25IF$EhegE
zF(<6p*uBmKGEtuX2?qEO6;$sZLkCbuyV0&XGoTK0F^Rf*s>SGa`xsH$j^mb-Kcwrp
zu&t3+TpuV8pLd)c{ew<XnsvD^!^~mL$@?L<AtsX6&<1a?^>*76e!VO*acSPq#^F+f
zo^Wchv{)0`j25h7!xBoX;)h)#CD{?EL7TrywE2@Q4!iadv-OO^sqeV5a!4$p<_zka
z*Nt(jhi)-}#|Orm!Az-o0ntVpQw`0A`;$q{9v<ovU>wQ(AN^jKyi`}d#;Q3>J#M6c
zzZ7}uYYseXvo_A+5p6uDlL3{C+_n;ta^Lwqj{8`YI|yzxx)wLXedfM6i-U9F!Uarp
z4laKH@N$7YqJOGy^!$n45}|Inu6pL$^<Ay3jnJvxG8IfQZ;hSzrK4sQ)J)USP}Xg?
zrXb^9z#!);fN2dC(UeN(gZojB8b4O;YU-vnX5~9{#9R<Ln#ww<s@Gf;K?9u-QXx%C
zv1Q#ja4<IQPh^kW94^6bR(cf_*W&r{YM!S$r>s66u+}4Bd{^7(n%Y^`>%(-IJ_da~
zUnty$wyPa~V>|m*M=d+pIDROl!DCvNJ9undU0cC*pmT#4iDbiOKF!HT0`e^Qs=NGm
zQ?4yV9#Kqr%w=D%TmPhkzvbT9at<T?SX~GUExQIXS;{Y8zm}m-OOA^R06bfYH6HkZ
z73ssR?%lc-C=@^fwC8F+R)a(aN?iy%j_TEf{2DNnl+HK3cQiWtyP8$kZ>d|=;am;|
zGk?{YkOw;+0;!3PGUj@}y7gQO&k<}}@j>BnsdRm5@&1$cPLbLWT(<@)abEm;J`d)Y
zM<u#Y&G{^^#ux9%b3XeeVf<T^#zJxR<nE8)XAV4muO%{!cwQNFu8bQ6?x1emxnD<R
zHtT2bzUFJvZ^*wrP{L}EKm{Z_GKo5!O2W19eDyKJknZ-S{f!p>qa{ZIE(5!cCO_Zx
zjqfb`?bH(a64|0&<vrU|d<4`?%VTpr0(K$a=Q{mME}xbALI=HDRA`r`kF$kG24Pzf
zB0nE8(0R?5fcom&=veuC_xOY}d4%F~ISPh#W1f5&+IXm{o&VYNp2M?B+fSjo1_6!7
zE9qQ#IV)p17sQ1NfVPA~{HEUr7sWd=^_qGZoAG=*giJqeMXOjL84sWYq5l0L5IVM?
z+}iK?wLLSnd^^-oxqYQv#1avTFaKs;!6tj7MR_j<odE+p2B-%C6b=I<BY&Q>h>nVC
zXt8k%%I$y;TN*(8Yu5^-ZGI`zxqOa0_WZE#HayvI$KSpHQ%mM~m%mmdWHWjElBrJC
z@`$?_zxVufijaAnOcI(YF(@WN-FUK(UxsJHjOX0=n=fLeB^?}@@|Ee#YmAmX;w?k|
zJ|2i)#RmDRR}pUPICuNKSbQl*$+d@c=z`f1bzNTu%)<}O<*||IAR^sr;uFWP%kp*2
z9!7Ig<rj_e*T>j=><$T@h1Jp(891zNE<S`j5b|iuWF6gAqvu7zVTs=Y@bJFB@cc$2
zA9jT&J&6hw^qAg$WElC<mwl-~Qww#EE9u4A@6I3Uv_ku1Hh1#!p~H(Xz(ku>#eqHH
zlfvVNAN0qkeh9&Un3b#VN#@ppwmX4Ggqypks8%Vxd88|IeWK-V!jtJX!5HR^=nMGo
z(m$e=U1cl(9cu1&Z@jP+Q471uuQ*DCtxP#sQw=PJj@#*Pl*FkK32rT)O#=b}U*B`5
z&|JVI#_%L>>g{oX_f<CFq)wXRJ_$gdc6wq-8L@=Q&peXreWg|Q-R0Z2KkauvmD$fc
z>#@~c;V~0kvA*pXloLib?qkM@oD&@-$PDzZt~DL2sXzk!k2&a8ef9e~yD31799ZI!
z!$#Gas>a_0qxuFs*L}`jBxUw#!#$c4Yz)kgJX^%|cI}(~MbZr_W87RL<*OTyRj=5W
z&%#{`ZEji}HU0?V6(6Px`%JHgAul5)*L8=f?z)R(&T-9H(@nsZH7;`o%j*{I&Q0pI
zau;gaY|uM@poeK0<`Ppq0IVbU8eJXps`&#5esN<*=XoY-UDSln{T8CF4iwbKR13^(
z*^bx!uFS}f(arE2SwDP#5?-5QMCVPmV+-lJ)69DB*x3A{Es2wi_rH#xR(^cLX_ris
zi+hK>;Qhrn>K|pADc*3%*UJtXxwDTO2ZkmVwWJ!PBOLkPjNPfSmx|Bn`jwrrVK2$L
zk!5v@Q=2QKEAIJtZv6ze{M?@0ftau**QcLeY@e2X!vJFQxvrG8QN^#GJ@Y;d&Bnbd
zE4GzaHZpCp3kteQ8F)|xv7Om>E}Gh5K6&z_!0wigPKud<1&T!;xK#%h2l5%rbZcDm
z%+fyD8|mrU7y!!J58!NShOcK;gI{@1-{z~u7*Sbw`T?~icloEQI=@pX^l?@_ZUx>n
zEGgnM9DP4j!?izoyVGs2z=w0zZO(bCXL#6E8GhY+%<rH#WM?aq?D*n1OzGy}-okgi
zr$yW+HB4gTzeVq*{FE>n&R#42@urwdh~t6eN(5eRcWLhfz7BcIm_Yi@+k=O^C(c{7
z?CmRFe#g;FX$5kP&+<bbxZE&teg4F6__YB}dhvv@>>Yxa_da~Toj2KXuI4yt&AJ)W
z;nzvcUd{4%T;{EM_uOOk-O?XA50@{e3-fGzES-PUQ+0BSU8!QByW3$&Z{h&QQ}kQj
z_Z70>bdj-lwW~Gvy4PfOwla?ua`Z;}zm2fPzNY$0Um&`9Cvn`~`kS7EpuDw2?x*f<
z4ZUk`jd`pX>U`>Q@7#|MANfD_-ZQGnu4x;NqGCZ&5e1~EGzICsqbNms@1WAVl+Z#5
zDi%aQK<QO_3B86UDj*#K1nCM=L&!x*fP}!i<8|N9`o6#4THkvAJm(VA&N_Sc?3rVZ
zJ^QH$(#?6uw6~`QxS(*QE9hO7o3(l7$nExIJ8liJ{P$=g#k~tcrvu8Ok9~d^8E0c^
zW>)z6^{I}hB4eYYg#fHy3{FW+Wt6LKA?$~|>v-zw>^!u!*vk#AVG~O<H8L`*7Z4IM
zy?fP=>#{z;ZVP%rV!0?kzY|ps&f-?;xDV>vx~1Cc>1C;N&0F+VPlfK6+06QAaimD-
zDBV?T!(NBHwDR?>2KkT=JF?_ukt=6qUi<=s9*?^eU~|?gRKA&wii#>ODXFfz{#^Ns
zH_tSnQ`dqu2f9#zij{`Jl@u3WiR{Q@ndSH|7r@Hp99Q?*lz2iMQHP^ks?IM>hGE9r
zNUBfH^fzre25OptEU=ya^epwCm!|v&zsBBeNEfSR&fY3gU<wV|K8BSoQm9Foe7RzI
zwZEn;Ra9gOH4xgiM3O(UKgls&$iMtY+S3jpA2a4<cssD@E4>X8d}Wrs*O~t^xHL2s
z=%_CBGUHzCte-Z@@$%W_2O*J)-rZbqydj&D0a4zbeeap<EMs-&swo0H5;5XI+BnM1
zSP2ronS1I(!e=o?E+Gkyv8t~6)oT8n@Ubs9b}J*NbkA9miI)h@v|8x4gWg^4pg)A*
zMFMGOKu*6)G_K}%UZRodH51~GyHTvMd1~xMXwtQDP4*(;iyy|ZzIVMYNT0oWcPL@W
zQNuu*HDPYqFrh04IP*ZR*fG1z*m$G|?Q7MJV-Ti%*U1wq9UUF-9^AUap8&GPIvNIG
ziN^ccAD~m}xjCW(_}$)xO=%vV1bYEIxP|TgQnF6%0VqX`6!Dy@(;jvnEw0-Ml;^v1
zM;{Jv8Oy|^ZME5V$F&CeppD3AMatCCMgkWlDU9Wtm7QJA@#kTLAgkuU%AAvL_iyoq
zHpRZ1I0P97&g@Tb$FZO0@TOoVmh0CScgYMSy#f?mm}$K|2P@aKo2eBvGa4}=`>bIh
zX+jR(%;>0_D*lK}FBem=Y%SYQ+V7E(dFQTlOCxx-pMu)xsYYTwlLCP9g($~;T+S@D
z^h)xu4(Ld`GkMLF8UC#~8UnW)xkt4twn8b%etklolO@!KHU7OVn4Z59ofDVqWHX5i
zq<h&hXgkfXfx^EgdhZ5FBU`<2v7Hg0Nne8O{JIFsg|0YT@hkaNx2TP|H({r3rhq4V
zp--J)%3WHD9)B~yQLxxHQDpr_hj&8%Q6&xIuHmwr8BWd{u^Vu&wx-V1puP@plt0JU
zU(v`DxLSSKlKxrk>Bz<??HPaUtYVyS(HRKc)oRCngY9IYP4sU<F!J5v#!eElw6vx;
zU7O&mo3I<)!gu?2#bH^JBzOKK`r!Hs-w&yP^k)aHn=^K#t-;BXtNdOWMf<I-Sd|O*
zRUi@M0Y*Gqyd79V=j@wrm_#!`@;TG{5v;a7R%~oh3rHfGnoV$6eVT%UUk{eZrie_7
zDB`V)^s0W6DCYf<Q4+5d@@RyIyR55bqoV$J5OHxPJvv}&V<GO3v-V}Br9>$Xb?4Q}
z%GIn3tcrO>b;a2Bc_*QbF(<*yQkmuVI`H=+4sWNsai<D{Ws^1YV~n*7wr6*uUy3r{
zlnASN-#vhSxcpwDA!Iyzq~_SMQ<aFLukJYcK#OyTf9eiH3H}<ZMpxBE#oql4$dbnh
zrrYf&i#e{vsujoK!}4TwG6$Uqvg>^hj~X;MiUU=2kM<w;IM~eiTb1La%XCA9_oHPX
z_9(ENo3XL6OkE^caDFSe1?a!Y(fH(~#mVE(ZDveC7vOTCkO&GkvuU5b=sz!XxhC~$
zJJhvwsM}I){90w=u6Y}W(o8;j%`sgXyzGzonf{ic__QhWSOER*>Fs69?E3uq7C)0@
zW*3<I5iohbQ0%&-J4i=X)tw}o+;}}v2X25{>qP1RZsuw6y9KhQCeA}L?p5z<1?^Wu
zo@n%}N<`OW&|x>KZOKE8|01jdDk?VU>4k7Qz7c51>nLaO{3l59zua#B^`l!73By+S
zv&kZ3Y=lFH>WC{^8#TmTQ<ag}jXCLW@BLs9CJT(G;w=~Fov-&kCtyaGW12@pjHs5U
z{IJ3n0q?j%Aut-AdS*|_DJ)d~{mcx|b-jztL3adfS>T7W!bhi#Oic0t-Gpns@0fMt
zQ=+s2Vj0w8QhyL5zCKJ^(Vvk;q|72Vm;{;&TVC946`c$+KNv7lTip3^$(%I1+cq~V
zM<UOSzb%c%caG=j$2wgrD~X?59*K*)tbr?lDmFiT1rn8a+Xf4odV9yNM!Jld3J#%<
zCO_*QHfZRE_LpB5)TH~|MoDFh%LVONU}*;l(|Ss3O-P#%#Eg!r$FZ=mup%XcN5+Ey
z4`>S*B_W~2!DZi?v#SGJuU@?}Ihn%c#=#d_y0is&NBbd)SZ@Nf;}5Pa#FU<b_k`mn
zqi-yqi;={B^5~Knl(SKy7<gvRa(q~Aw(<J9T$!DH&!&8QGiYZ&WJdP-H_wgfMqu?S
zgMVsv*Xshmhg4O<TOZI%9d9@k*oXV7yDS)c+G(YFfVIkDR6|KhvW@np(wiw{Ds3I!
zp^hCJe2sc>J3En0ev4_*aC7|5CT1{SLX8i!d5Wlr<zRD-C3rje({D(BSOJfAAq_8F
z0`AO8;9cW@KdbW-421RGCM0&9QYY4ZXon<W%ImQO*xeO-O)~jU+;(TK^y}4oi+%<5
z*jYk%!s-RzsR=_E(LtT(X0B?c1sU@M3FjA+GGJojDLs5b@f0}x=NEl3&GRrY%L{ip
z#}sKXhArm05r2Rc!@KPMzG{uwd_e7n^%U1suGK#=+wPjRc*?X-uK;Q>!IDcOU^Xbx
zj@NB_sUA6pIQZuqY4aPsW!qeBsa1dgzwXatWRK~h8RD6XVA)WlkPQ$jy8F_CkkH`|
zBSvdc^KBI`z8Xi<`|8$pt|g({J;x|r*PPsf2Y$&JUxLt$eC5nYZm!@bX5Bf|3?Sp;
zk^G@SWK^7h7hh2xF=G@ouSK1^c~9kJ{n65HtIwRF+|E#P#z=w1<kT3v2xT5~<lQ!q
z{1KU%utc1IAA6~R%2cxhs8RG>zekHrxn1hxfsDe^QX_5csM<2HV!{{(Q{2$-voho$
zxF4E6qsVX;N^PzYo+yK$F&?ZaXslusXL-COH?>ttS~@|ydl<XS1%GpYSjVCNEBaa~
z^k^HcSxS~f%Jf04_d|Z)rL1herTVq`T7CXnX@Ls|zO}F;jV?Qp=X+7xgJY4YM2qn}
zUt1cFk>~}KgM$&(o3LEg9;x-^St;G*H2S4$5*9CigS{{eCH1>zGu3pGe}25#Uwzz4
zymFV{@6t^P()R$*G)1nInjBx<)?huvba3g2gFO4{IaBSCYl^bQLJv+It?~c{r$uW>
zBUJcml&Z0*X+fT5qDAjV;K>yiKZ>hHeZlX#t)lZV^_2Wua${Ry8Qtifu*brMV3w4$
zV7;l=)c8nZ{Hy8RD^4nOyu%8-1Z))T719nJ+;^DFr6EV3fhkkTPr2pm{{{U?%rjgu
zxIK`v-qBJ#QK1{(89fv^oI~os6J4>bhNObFl(M!)Qt9*S7a?@Mo1aEkcj`Cj^IuH<
zMBzWST2vb=A-v0Z-VdP5Un=%%pl2^A;{|M*e|i(uZd_D9olD*(()`9;cMPzQ@VLKd
z-@CleOZD*5%ajg@{zaatt}RjnO7$b%^m4Gf=~0{v)3w2={%o$pUTtfJ&*zvw^UA3<
z?!?IiZxu<Pe!Vz%%2--JgCBGFkY1_Y(n*`CsLN)y91jmxoh$vx9X`4uwj1h$no?0#
zBG1UBXG&gau#ao~XV`@_tv1DL&U*GHf$A2S=L1f7Etp=QrYum4nDX-fus*k<X#kww
zr<F;3{QQJ3H1uY@okB_h8&;nZ6D=7}hql=QdW{}1wY3+DT26LTJ>DnZPCd-g$NGTS
z30T}6(q?NdIoG76qJA9P{>x|fk2`-BF)(*kW+Ej+tcNrs2(VVUkyM=T(S9^^!b$OC
z&KpHot0Lv*WC-MoauuH3&|!1WLtLC~IA#2TM%<z8P(jdaU&-kcuiqItA?QYNBGSkh
z*5UM$fVGa5n+`$pq?MBl#sR6i463}DPrYzU-z>H#ZyJYe$*U=+4~V>9m19FRaw+V6
zp^3|t!=w0D3Gg8IkBggJ3NOWHvloygi++=tkBK>hwi4Qr91$y-8M8%RbI)wX1LCqz
z7ahy>z_$L0zqOREq+`3cVgx@dc9Dh64^5RO{VP4-?*o^_g|Ie;A>^yoKB15N>zSef
zOU2mMc5Zbmf80`>#h42n`fePoR)FkQd4K-8q%+{;S=2bkLd|WB4Q&00&hX{VcKExC
zsAXUj*Jz>--IIqck@cZR1N!}GqL13F*2W4iv8T()Sc*C0k3qhn;kvk?7G0i<JN`TN
zshu%BXaMi5k|KE<g+(FCd{|C3Kj@;PMq^xvYh=*QQ@>1}&;{M#4ZINgt4u@}67&Ra
zjm&*LSZ~`7Nhd(dV()q6@(K!DKHifle@jC)sMwfZ@mX6d0olZ@F-OA8$U;%Z>@i?1
zl85gyWIPdABu^0B20p*QkvNVW<BTzK0p8do3R=Pyv(ef_>07~14ZJTaEghX%9O$hc
zpcC$0@V=Ycms`m>N{r_(ohwh0&_Vn}?<eDvJy-HHAf$(ymRerx^1mD0?Gx1M;p^@*
z+Y#FzL66kr#3F#t4@R%yIBv~9yJWWb+mCQJ{Z&+6f|(-5CMK9g60od}RZ<1llDlKL
zxYM&L0ZFT#o}YW*9g|JyVG}$Uw%aY%=73psQ>X=A=3niYm5(o$hA=J7TZVkM+!`+8
zLxqR2KuF&v`_;H`E5jb&%Gr!z$_oAdtKu46guJx?D0VEuNlmhOCRB2_LEqd(_r3GA
zDAkX0WPTv5hjV+R@tt2ZyY;5JndYN?-P^V0aN`(7lA$#m+BzG=TU-t&l#nv#4l$@E
zOr4|#`;4u5Q4`)X^OpikR1bdJ1vmk&?(U-?3MzR@T5uXj@{H_2m*qxF!Fz6dD1B(I
zcvf+P>a|ZM5-pXc$U3%CTE#jq+OvSe!}_~&W@i=G?rCjpZQ&s`pXlZ8UK6Z01=z#A
z!wgfQK~QLIf`Dbdvv@Js6kT?o|6WGz>W-ElHrVFB_~KddYNYe!U~|DGb9Oj)X6pz<
zIE~wF^ODy$IknpT7KWYAr@|C>FfiOhVYfNi(poRJjgAySb)SjGNfcgThWuyqV|}pa
z_9Zy+-JLjtHzP&S9vcnSl%GvmkDs%!V4zlB0t>@pgYr3<02P=AvrIL*FPnFnWDxmW
ziduyGm$&bLDM<2mvaL7D<Q)IlWAg+pY8++nyFy%o*7M+TxtawrWAuu0zCXi9I)Mg&
zNdk#}ODiCDFEM_z-zL_bFgQ493c%-u7$XqqgEck*Np5*BVcg2b+FBr{i!*buU?^EB
zL^%M?C!}^X+n`1-zn!tcC$DDU_<AI!rP-GIh~0R5S8$}XD91o>cOvsaEh&af7;+jM
z|9CUxH7z8|x5y&oJIrCqo3gb?A$8rG{>HGP>FDF{yHs!~N)?2eaaS=79ck8+=9(v@
zfzMO8Rjf@S^|$Kq>Z~Ip2bcvkECPog2&9Q+t6@QrP)cyX(LEXdB5s!gM{Ty$nmCI%
z6Up^q1rT|;38rNE@<MCKnv6ODRv3-8wdlFhxw+sb4V!YQ)k=NYE;Z}g?GL$1UP^*^
zvZ~ub;U9$t9Hs?oX1WxOB}I!dfuKYXC+lY+<Rz0|JlKym-5NyyD5blTxb6g&I;spE
z0Kzgfj3+cvVl+VF3H{GxYe;BlYi+B2?>Gh{I~ff8W>;X#{yHe#uh$o7g4bU6@?gEd
zc@&OXRAA9{g<E1`SK3|@yO3Qwzs(m|6VLk*cG?aGb>Lh9Aw6J0bjz4kIo*vR!*cdf
z&dk)jHtT;{pEEN-ZY=nX&2!GSDUvf<Lva%-C^*{?8^BFc;=8DcI}mP1=CCMcShQ&>
z1<TJjxc7W_ADfjM&$~pJ{wl+;lYSkB(b)nPE`3!)K*Mk}^q^7~?MW#W2QvjUNPlR3
z#dl#|uI(?qundXX=r#&rKTejvIW{icICyD3w|;Z~AoyT&tj_97y!+-y$NrQ&gqBaI
zUvux#DpUh)Yn_qv##3f4g;jC3WGWg<Nax+@k4cYTIxT8At}h?<1pgyKvc-Fjo78j?
ze_iqzL787r&?G2mKbiTJf(2NXj`0|i@X_Y036%f91In+7nVz;I0foIjSaI;75DH(E
zz9lr5+c*a^lsah8xL(gTlFTrJF1{G(V7X@a4{9OW)?*~Io@0ELQ-Cz<6|nm1$0f=}
zdQNcTej!ygUXZ1*?+~FXx-G$aV|k4yMj^uQTN<(97g*iKzDDxo%O}MI{4y(1v}V-T
zwA_V-9aqtJaVc7$)71b`g(-MTfH^qiLD!!uVXMIsj^5Uw1VF*x_7)TZQ@<Lf74b1}
zh5r72%0DY&YX3ow00M=5Cu4Y}Vd11gZK!EECK(_T;LBY%MyPEvJ~iuFLjSNlUQq*K
zkg%*vQr}QSws1m~1vEG^By<Mnf?{=QJ8P<*lq<4Kma4H3S7a=wVrvFiYl}-1P(hnd
zDc_W)k+GbUcB6A;`^dxJ8%+|o_%%7Js&*n`u0cxz3mO{CfTP^A6<CTGb~ZAAl?>mF
zQ3L+nS;Y2zIJtBCN+>Q%@Tg#XY$q{ZV|+K}sKq*Nr<-0!2XT@4?ITx+^;V|BB<?2N
zxk`4eXvoedQd^t4($S2~%=Y&SGZZWivnaK=Sh#}jCXMxyp^HjwMPBfEdFq+PT^}sN
zo?M?($fq}L&K4R-&0j-Lv&Udpl{iM}GvI^8e_EF#aA$h0WMFBBxP)!OtCIZTc^b&;
z#@$RgRi!9$(@68~$CTX+qwQJ4$*SGll-)ERE1ue2ZHf=H`Vfn;r|3Ta&C5hrTvulT
z#<pT4(pZ?u&#Da|p<U)#;2AM^0)YS^P3kWXAHD)K-*}&W5PCkmbt$ODW}gy@G_O_#
zQUQ(!W>X)a)QtXMk#RI?`d@FDW-FutR~C1UTSK?4q4$z7fS}t+`w0)lpxE=(1OO}>
z?V@4PJy^2atchQjzVS?K!520m=}EXeY3HhfNn5{#<dtS45YCynUHlfB3NvZVr@|z`
z*0w32-3g1={K@|Gqb&t9Z!C@Wo<~duWj(AvDyD3vA9&9ubIX2Rm6B?6nAz~tEP+x4
z>iyD=;RwNF=*gwi^_Ejl&$RD&Ee!Za3(3Q#{Obtc_)S)Rb2({s*@jZUvNHgeCXIf(
zG;{c~DR|2*v}>#VsL7Zb9vtm=Ovrlq_#dpDVg!Q&<c0=m-gsoEqa=Uz`>G_H+*rPu
zR*Gac+%$W>JRfVR>po63Nv|+~P<Tyu6#P+N(Gv`6d{^V2zFVE46cE<x7S6W$>rHUV
zllCKFV;COF0cP4Wh8MM*>q#-Mrb1%)jnFpv4C2M?T5VU4$f8<-{BAon=hkv3_yz<5
z*6yp(Pd721qQL?PYluAPaQWfm?l|t^!orHBujU|Xsq?^|7S)b%{idikK!v6?09m^>
zbi+MJ%p9a+^u<}mUZ1~y<-!{_#_`6+#uN#+1Tg&u+51{k*~986w%XXHR^xi=1-?Ng
z^NwB5A!@YV^hmJAB0MBeC)%^+NgaF1Tz&y2;KU^2XR~dlP}--8fdUL3ZAX|YeM~AM
zH0^Zt(^3INFd#+$BCExy`GGi&ssL9eyo~@7T!*QIA-2xiN*&-+-w?ic(i9)`(ZLrc
ziDGx><U%Y!cx0lxJnaqpx);-eh}+oz9)tp#A3U#1EAA7nCZrm(a;<HyAYeBg9dP7|
z@@xtIN0&uc{X7K1+G+3PqE%PT`LpH>Cn0`t5aU#yRxDA@Hd^h)im@)K&og`J_j@9T
z5O8j`fGRwp&^FTrHK)}#9n1Vpk!Rg=h<R`nzB^quv{*YP)TOSLv*Dl5qXoockRb-^
zS3kczvtRn-;_hw)#xklKNX^FB0>lSkC5+duSu!yB^NejNW)7asQOW+$Y*Q}j{_}(1
z3so|OK0p^amj^N|mW&t>Z<)3gPPv}!Gacw21`+LA=l-&V!2LL5*|r9k^0Kt}9006$
ziN+|lJT&BS#Dd^WGmdjFA(whM_D2ooCV*mKDH70+jCwG6bYpxKbR$<EgZEEn*Sp@O
zTdxtPxUH_%ww0<R|4^xUF$4q|A(y+`Uw>eMKyq<*_{_qXmNtdkp#gJu6v#_Y(mkW@
z^p1#Z6V!aVuvN@<$f=Os)pQck%YOwFE76<V|KkVWUvs&`%Q*4Rfd0(xs1C({<X-=F
z^myCM{0R3*SH2lIF@)j(;$eWXJ~L97>Q9p~G=RZk9!6e;Hn#39<_s4egtpmz4XU;R
zc;0<=1u!uH*bwu!#Kgn`)+s$FzC;{Ok;?_2O}wfKuw_T>*1h@s7Sz*$kGa^1fW4aL
zkuF}V*4?2yIHeHTClmm6k0Pb|Fq&Q)0ai}M#bWInDgvlK%_1!qGR3&lByBtui<1pi
zS4}lrSR~LnzPt`pki-*zDdq#qmoT%Y{kJ?Z+K2?gfO|;27mppykleB^Tb|HhCT7v+
zDDYblYUy(XX#fa-U&#w2#W7VJV=HTZElt7#f3TQ4kRfgWLWXQ9|BRtBl>+EMt~=69
zRI}YJ333Sn`63W`O$dz8LFh9xi9)tzpqh*ZZfwZ<)o3>rgm!gx^{F8^J3H$E@8^ED
z9=aFQQ9<^)xw_T>K9P;mK>K`hqJJ-d!?q6MYdr$UBHqQ%ej1siVpszZp^oUqe4Reb
z^KS*01v4dGK2kxFo!Yt*6z3pG1|;}qs<$L408l}ZKae_XqidY!hOeIg^vuFF6YtdT
z_Qoh^Tg!S;`@rByA#m!2Z(v%XW^NwUtH+sau3Aao8=Ucu%{bh?M{V9$wo17LwhDy{
z1ykZ4U)ABinng%PHqnBLUhfZ=)~Z2v&t#ncBm|<IS!F5&Yq9D2v(eGP#?ZaEyv&=v
z2aocYmu9$MV9{DxsSid|3><^OP=WKF!NCBn8YZRIy|dWgzYbICspuTzSsT70&hS<M
z;g&3R<>-3Fa+N&nV)V^lsU&%rRHVNzYLJANX(L=lW*3GF>dmlCU{7m#*yq`wK4#Yj
zGgh3pW5q;#EqJU0HXl&d=*dkSz>EFl!(1;9JRz3Y#o;-t8R+w&$Exb*zd+9kr4%-A
zrx$FO!?ABATVZ{9myWFnNm)snOIcwm<C}M#BlDx20!~06j~lvy*9zR2oTswp|0q~}
zGWDnm%@7rl%XUQ(XB*E>Z@$QYH!i$)Ad8M8{<tfUw>;s0DBYHDb=;HP>y{VfHhNF|
z&i<9hS3a5BwN`I#C;WUbhCRj%_W-D~WunsyUEuv8yg+(YzR_?Oz9p}bY_5<_s7DM<
z$}Ky$ze?9Ve)K<Kfxxoc+C?Q#mdTh4U$R7Clg?fE#u1%M1~lIw$0UH-{lhpH!-8w~
zM#W$9$DETLRFYXGY$nba`#eE^kQu`@i784=Kbx?hAy!rsS|pnM{@9naR<5`&W^`Yt
zI!x3o$jV8afY`Jvu5ts%X)U-7{A@pbyxh)c2`%Brvg4}PH9CsPTUO@d&)AU4pu>a4
zx7}+8;YtxEDRgJrb|+`~@YWoN4hCbdvdPXCCr!RwCwpaN%PiMr4ySucw}5N($RVuC
zyLK@!UM>yIBe%#_X|EKj>Ty=dvm|p<T(BaP`CanpPrnE38o=Wup_{X3mc9XH9r9`w
z$KM4}-$1A(VxZv?wTDvbLjT@|@SePtsAhl-0@P9VjH%<0&co5_VEOQYY>LDAnPqc1
zns}J?C#k{FIa`E|1$Jt0Lj>M1e;)2KD^95q2P=rn`cxUu9pc$gek8Lf_SNAn-a6j9
z+p*J|q~8L|*lmCde)Q%H4zYcC9)vle@p2v?4{HvdQg-=i{eGFbWtPE+HN&VoLTZg8
zvOLbx&%Oq6xN*`-?C*QPgWFX4JK5CO+NAJGt7vry<cF1;6h~}LPRuwh1VS1)=@f<8
zRTAU;z14Jf5I{@ys{><GI|xLZ?l}B$Tv=P-=dz|i12o|PbV&*c41YXwno2P5asXEj
z3oR0zwKB;u0X5hm7mDo4i1F-Z@FDV>t4F+rok(q+MtrBeOKbVI;+P5}^}as^95yJ*
zu;ug9E3|3Tcbr7KrCxCM7<nGrhR@Co{w8R>kXnjvOrEl%gM>X-brXd^UPqf7s;wq!
zwvZ+wVYR@UP%x|4+<g<^GF^Cg5#Un1mXm(P-1&w`5u6<Qa~rFRK4=*W(SYK*b-BDX
z0t`z0zMgw5kdGWwyY}wg_!#g`4;Lb<p`Yqoge0Bb1W=98ipO;5gWXs44GQmXF7!&I
zev*T}ze@6*W(V`wnT7BN-XMlOvG_ebn*6=<rPgsUY5o)$-RuH1!$o%D@`zYD2U^UF
z6}_~p<2?EH5{rbWW{z4gRZIxzzCC<xD|%sJ>!{xP({Jmzk0yGQ-o)LKgH4agD*Q*V
zFs{>@SD9kT9Qz2>G(6UuYM{I=gYPl2Nzcv`^<IB;;|P6-Ky9C0>}Sd-U<OrS%3fX5
z9->!-g`%+lp@aMg0oU?dpykDO0{`D_e<=AeO0-$CL~?y(834(qL0wpoVQ>Y~N_Te|
zx!$BxxKXPTyhKn52F2asff(tr1CH{g^r9@)Tfnt^X|mnQK-$SEzofStPrdXYoZ#~U
zxSX>3l=<0kzBQUI3&M9*i|AtzPzp&=Ol7-yfe<+d%2M^0eeAWCbNakN0Yf#h=MIfD
zsyzaXbXk7C0wWbED{ijmSF;lS%LSMX_=?Mx{_~z~0v9^aPu5w9P{OYkTq2|eMIZSs
zGxjj|W}XA~WUK$-a_(5w!k0=DYPa(&S8|#@P0~9K5q?WWEmOCA{PrG{*h~f8FUL!l
zVa#9-#J)Q@;`kSvEOLCkxF;7_axXwmrPFj-?kuMCPXf_Ssc1Z#dcjQ6(f6$P+67-0
z&we0HnbwQr<(||Y0(&dn%`9~vVG&xH@iS1l+#O4<W6MOz^FHxerQx+eW{#^~c;uEs
zJ_vo2QXBgcGuThoMM+=&Vok)o`7X)D_V?w4f|PgPX=`YEpf&UuQa<=4RSdplhS>L|
z@&oCzs&mbbjxnC(kvJJ}N9wAl@cH;%U)z>xTs8zE{7dVT5dyZd?-30CF!;aygF!$A
zmGf`!n8sC4hP4ZZl5bX?Up-TIGpwmlhE}+6`tSi4Cx3JvF{@F^LnIWA<%UbAwAR+G
zhEYZDNlydHrmki$*RK+JZ+X(&sqgvpJHC*i<G)_dF%17L0KWS1`1<jNHz0O=sY-Zl
zeTMOP@~wciB*miefmD&3oFzrvtDuR784$BMse*F7e{a?PqTa5;Nb&pbOp(!KG4^Ej
zR<FwQ$ENQAH6Hr$Cp~-#&MW-|jA1kPm1huIB~@Cph!ep%L33x|q~Y<?h2%3+7a#u`
z-k|xC6)R=;!V~*s&}qkJ_Wc=)75q^~8U#W|J9gdQ`(3D#?6c-q5PFq_AcPcN?l<Ta
zck6C``H~X{#Jcq|H6%sBLEKo4#ywj}4WPDhHiYR@5C~4vQ|a?m=39HKJ?{|*r#oJx
zJ@y%Yk3Ww)3Emz+{bW5jnD{QRdJQMKNjlj_e#!7ukpzSj-oxes4%JaPca^Z`4<{jy
zhZ=Dy$tdtwJX@h@NlYJl&Vcl!cliOXSp!UjbpLrsm||R!g8jCm*2);y(4742=R0%3
z*)eKku%-RbjgrJBg)3RQf7^#<X4X?hapwz%sA!<m_2YD`e>>djwC@Z%SnyDJQtPCB
z{>f1pJGC`hsr_JRr_sRA*q(G*9?mKHQV-cIT_sWqwPii&Pp*6dPgV#tqW(>6mQdYI
z@Yt8F|CyQF{ar}90HpeOD4yyLLry7!wq!QHlOzY#%IuS)3WCt?OzHy77#}-Upo}V(
zT1Tr4dilbbGzcA%TmfrLK(fMW++Z{Z@(-IXvYTeVZ$Q<OH|%>aJyCuZG2`C99`GN#
zFcc%&NU^bXS4r8;v<DC48$L=sMi}CWTEDy4pY$PiY!n>V{llB^shOF9lxxBIOcOLN
zRhG<_+WnFzl)ZrG01o*A2?Anra<`qxcKx3w>^&*kPVc$pLi{+4qC|jh%WN_|`+9nJ
z^n&R|y%ffi9c62lb@Y$vzmKU7Bt>%RW`+B<(;<PVUNTEY%<G8;t*Z;{EZh5~p2%wQ
zY;w$}{!yPefiA7k?{;^t$B!1>4L{gv<u=Y-pfZrKV+m4r_f=1DKu#5)8<$ZEC+M<Z
zN<kS@Di9Le&A&2%Kt4Qg^<D6*e*>X=d$%48p#N@6tyE+D?^Xr~L$7bN&6NXM0cap^
zdG;8PPa@k}1I84{b^~Ao=hp~Qm;01M#YSDJJxXYhJUiCbGzQFH1zT3r>7wU!hUVsX
zKvKzBJmpz>*MbI%V(OO~FfZS>6M&Q$7iE_+siR<q6RBNFX)6BUQULZ3?{#x?V;l5!
z8Z<m`L&rax0F)s7F8|fYJK*1yvqgXay9yIy=uo0fZ;@I^q>3H_p?MR*@SIKz1X&tr
z5RU`)60%qO2h)W&44&1Ylwb`55F&7aN*+bJotOXOy|UK%fOnv+tqmZWxJjCAYHWe7
za_B|DGx<%+jBZ@ilV&v$XMxJoCUYq%%?0<-WdF-kIDh^;274E3Bs<k*0HRf}ns=82
z$fyBSK%2b(UNr|WJE-7+pcuX%tQc*-j(wVxHF3zAwCfA_N&p2~Fq34Wa|M~;xXHP1
zfD97t@b>|fkFw)fehBk~S=D={FKmGT#{9W=h_O33==gKx%$U523ccsb%CYKPs{|l_
zz@sTHE2|Ui1zxo<(`e5p{w6pAd{5<-NH+u%*4U$9g+)lDHjADno2~j!{&MWv+7-G}
z3<+4B3ipKCHhPe5=hir5_d|TC@$J#&b}XS75DtDn`$?ipuBK18YyMOqF*8$F82|xP
z)dqAUQ9WTMBWvsQg(?(ER=^r%q?jpm^UH-d-}nRsYC{1C=~MF@WVAod;p-<~Bq6M8
zX<b}h*ThRB%YR7%{vBZGp>cH=OH7beU&oB@1?cO?_Vo0W*4-$Y6#HJ^sZKPbgth_w
zGBz^$I3&wy?smQjC{0b&YxussfLt)O;sv;%gETAMDG>KAHrzd=j4)*Dse=z7>jJK7
z3f}by-JMTf9+cPJELU+ts?U4HuM?sWLQ|PokTwbbF#BV0kjl^qsk{Yk2BqkzkM;%h
z8Bx8EA8r;xeVIzOAi|1<pihK=_Qd(6$ErU7$!inDZ@_!3U0f+zT3XU6pR2S}tH*%L
z<$+YG`dZ)xz@eeug{Nm7dn7pfi9XN}RDv2cx35*)Wnp7e2BLSMzUI$E0Ei1p*^Lej
z{R(U~Ae@x~u{=P{q1VMQvml-|0F^j<u)e;&+}$je05!Z7t6t74YgOl-9HN*B@<gSx
zqca}czqj`<&-${*bOn1ZkgZY^SeGO#&9t5?-}p@s0H8s0D}WWjEntHC$hVo>=Dduv
zmY0|LFP<)JZcelLYu+FY;U8FjC<EX!PIl7T{b$8J16Wp_efMRxFptTwTn6?@m~krc
zR7<+Mi22}JvY3-UOo2yBB4*~m%R=kt$>YaL5EWcN2S$fWU?3FT+7H3V=6=V}6QLcu
z1A+jszJ0~VNHCSGIridv4IdRoTaYZ`3vS9OSz9!(c9aPf5)`as2ZeVuV!pZ>_Pc-I
zmC+4ICswBJrnPub6Vlw!=B^e%gK?{M9=_E@0aVc27f(yu%z=Ukx0RHXkV2~SO8g)j
zLX|P0;WSuN9c)Zy;iJm0&z?A5Twb0y%Kjj=Vk8{Kb63Jc8RZ7JXK}e6Q*{K_wC>}h
z8Ku=giL=Z7t0b>>Cw;)2*o8u&=_c$`9kdCKY@6-nqwGHlirIC?NcJ~C<x+{&MdG7v
zQ2ogB<QPy8@VL~r0_Y#t<=8oV;^-zT;ZN^dzwh;1w}pfPng>x+wsJOAu7M2eQsUz3
zm+whH8h+HgU&CEnRf%$eVoa&b<ThMUuB(@%+4p)c?AqpW|0S{UnX9j91X|C3rqF#q
zw6CKFATqqFwbklc7}W#)p%-~opsM&K=*O(Mb6Q~@UNrNkMjUT3GK2?kvqbT+Uf^fF
zAm?A9rL15^|DN>d#>ExC<puyrj<}NY^Ye4zNroc$5|DG#z};(AC=C7eoR*8AdjpW5
zQ-^vuubj<;!^HB9+FM40$R9zCMgBte4ZIv=rO0SoH0cJn`5voMrmC&zy+_4iqUntn
zQJgc4O0W6I%~v)LLJ?nm)7OLEA+&=p3xW(3PmNdPgIjP(Cv}7-u~myO`=0*J8Iml$
zUT;s2EIfud4*P!PY3?MZ15p$=APF+PXucI;{N^+1Gz{#<*fnFvv~JAsxNXAuQ%jUM
zS4B1m{0;T-^UvS+@IV6AZq9PenF=ZQpF^wR!Ib{+g-zOPGcNaTL5*HbkuOe_gpHgB
zOV`Y0R*WQjo(yO9t@<E#IU<*CX`!UC3D%Y_QXWtR1zZQvWAlu)=VsRI$i9#1iviEK
zl*k1406G0LNQ-%H7#s)eE?Pq>FM2TEMFE|BSbT*xEL-s6X|D7y<L;^P+9ua8yrF8R
z2Afm;PRF4(pwXi-_NstZ0s87f@38WXp@ob2AU&X%sS7NZOK+7{706kI``b`D!fhO*
z&uy3I=c@viY_xD+pYElzuSysB`1nw4tSJ<IGP$rs=uqsTgM-6Y-^ZDp9j$ma4ueiW
zn;svhpAyobD<9_vyu<WlSEsX2w3=kTU2#pC&vNKZAUNwJ*aP*FO{f3S7h#8B`}X@;
z;yvi!Q6x-4b-SS{MNZvSsZ(8YqGiIL8@AC$NhX6K@C=gSO&l1@fmCD^-}EL5aa@_Y
z^jMf`_CHRv-v(tfPlsrSSsNI{`CCRFe#p!e0y$YU+5lSxIE>&RbK?es@q!*uQc~0b
zzXa-|skN>80fr|~OS#s?jdh5G4H!Lwf*S3b9ce|zbdt^(<7oB3<DIdSqIH?sKQ*iM
zcm<fX3>Du-=0x*0Yw**3;nd<DZC3<7x%&ie*NLx?TZTt&T@!FqeYBD$e*P@n+VbfV
z?Y5Z%{s~qRP+FeV@QU<>rvPr8>|+5?+c=ON5KFBoTeOf<P4?|?&LBb*ZNFZNa3s%+
zJH1YZ$Gv|2`XiaSdr3xkTW=@Vq6`c%)JX!MUJKcN>reLQni?Z&ZZmiCHb@i#i?;5Y
z^lNAxpR%~V9h=K3B_;LbmJd1cW-=d3l*M+=cYHvZ8CaxB`Aa3Wu^zGcLg@m!qdEJC
zJmxpw2jQU-H{k(*>_F|Qmm|1pq{RE&JP~XFt~9t>%tWR7G4;#Kq-)>uO!DvyF|#!_
z<;@&S+-ar#=2R#I5MJ&B%8Cc}9;67ko6LPiU7fVUJYNz%VlJrbCL4<O!;>}k0P`pH
zEUPamUItlJ{m4wNn)6d})tJ?6I?Y4hFLs^S&A?Kc1;0{omtf!o&^iikXlU5eeeJw&
zaC)P*r>AGVg|T0LQIQ4^p$HFf+w^Y#DSQEdMpNJ@p)&?%WXyo|*8WNXw<BZmY%io$
zQE3JVvV852^?)J+r_cl&v*!SeBWrp2IJTBO6TbD3ysZcL`GBwAb#LPxBY#|mfxO-)
z2Z->M4&8TdM~$HIZho<83vF5Gy|?|Uq~-ExNV_HQ0f<HatQy(#p0nx;#efpP=#cL?
zt<$K$&8J<=-u_FK9Y;6~e~XqD3Dv4DSNu$RDO5GYEozT^8?^i0eW_ND2eJ&813K2R
z6EBVBwyipJb=Wx4powP!fe|V_yZcx;$$zW>I1OMtUNAyz%l^zPu*Y4VpQ7OcJs<A?
z6L}NFzJ9aCnwo??2iKSpTwxN7)4t+WC$-5?u8AAlC4NzAg=z;Vw)tBd+ZT{N4}>p*
zmF+jEjCLHpv8U$|n1Kt5iRD4>I-ZSQpF-``A&6wjg_<_01r9{jpmx=udWc)R(Wj%$
zOa_>@Miu6M(b*U43-1vWlx&8EzoTCBUY&e*r~RBsYGqejKwLk~&=~Q%{PI#GOJT+z
z<+iub&q$<zKN#13R@!wvg%Q^yJSM8R>s&_i&3ZpS#I$LrN_Nz_Ph6g=cG3luce~1w
z0^P33$w^sD<Tu}PjwqMz>y^tkN-0DS2%R8s9<H7~G0m>3divG<N<qmMN?CUHO`ba#
z;Ha!gL+BJ}Ds2H>nZ?b;C4x;MSiCL(KWhg3l=U%FTkW4p9-f}jxQS|B|DBa#PkiQQ
z6<u4y%)x8tPQAq7+aC*qQ$GcsE6*Jhkn8c8utyYd$#^<p7|y;zv*-#ly$9UbE{AmF
zx8-dpY>peu(b(XeknOXJzXHaQO0&CHOMprSHdA|+VD-`Cxi`Y~nsv4}yS?X@Dm&YF
zh~&2%ZyL1^uw#tX8GBt$p}IVw?!e;m-1#km6(swP&QRFJPHi7nC~**%B`3CB5xU$k
zrLMMCsw*!W-(rgEBlWpGMd;>{gP3&YGZU3>Tm*N1r(TTcurSxO8X77Wzus_rOcp&e
zFi}sR4j+iqsAYTG5$DylFqgWy5P3A6<PhhvfSdYckAFh#vxoCa2;x-u{hL^c=r*P8
zX|ASBqxGo|_EYWlh><?*@C2FXs^($HWag3C-Azi|x<c%_3~d}U-9G=PQ3%Nx3?W~C
zKdaXrW-SK1ZZa~{7X?NJRskUhWW{Y0C%Cq@Rs#l}lDv;a(~<aNQ_L`Embq?KM$wGJ
z(x(b+_X9WxVf^|oJ>ipxPcNPu8hUJOoYG|<3{8FK4#U=fVIognu2*Z%Es0MK=61e(
zyhQKzsLQ#ywKZ4Z+I1ysfVLvg=omW1Ghg3yY67M7K-_iba>P#H{C6-$lz3!t0Z*zQ
zMdhs`p_BaO{V>5+4-Jt2HnIRF@T)%3BSY8s$Z_uHtm`chJXtuI;zs9rc>v3&e#!fe
zkdV{-cWGc^hM(SMz2F8awVN<j?oUGtaC%OebF*&|9wRPy^o@*ifqloqJ(bAWrKP34
z#gp8c3DSJq+7gYUt>>%T>VYGKc9md8blyL3vIkD+8Q-Dr^8;oQ+dsaWigeX0M;yuN
z+1i#b_9pVSv<>hi>vp8YazfLL-OGKb&d+5F)#NUAgg=M@qwMH52U|v4*(7lf<Ji<-
zEwkafH9_pJeY~F0aR5Ak1kPS^nN)J#w6?bPjGPEfKkMEWC_$a2G{I{sd9Oz1VaV|3
zhi4cP34gqD#<93~qE`3)(T%e4nwkn)tD;FWF1yT?(k8g~!b>EGAaVr;479i08z$T&
z&6zwcxIq0vu5`E0V)-0F;9kZ=k-53w&nAL-QLrl^1^lfKpO0=TiamiIU=zxW1kAMD
zWW~x)--9-R;KNMdwHA|eofI`_Ib#iz<<&qjF#2;J*5cOAog2ZTKtu-&H*kol^EKF=
z#944#Onve;3{~SGVTcS`0;L;Y6*|gg4E$Nx)ItPurdLdb*vxl%@kmMyeo8Lsbar*E
zVvi3x1PaG$dm}}0FTIvI;+ovZ)=(d_Lml_hPrlX}HPOxZsxE~7ty-@){l4yXjGH+2
zc=*JRO3Bw}0Wd`2YfZ72222~BBw^>Q39<wYWXN{Cy$b~Ctj6v{$dpa3)DTLx5I=D5
z2uPW$JH@bFu|O@PW9pfm4c_Q?@tHUS<B`<H+w=Sv<f=h!Yqh*3Fp89Bp{lA3fa5{A
z`XjYbK&x<Uh9W4o>CDH|@QA?O3DWRa0NIp69;n!bQU@11m>qou7K^n`{h+AW{62Br
zoxaEptySG3Q4R;hGsedSz6tM&R6%0~4b0as5PL;m?Y{@UETDH_g3p7zB4F6Ag$rrq
zMGJjd-~N>gEYh7P=zirJzxJ9_5v!~;LLe9-m8Q(@Zw`8cvj1jM+sls&f%^o)lA&cl
z@>|1VYpHj?XGgENZVdBO$B5?238=pZ_`$3D+2J>`n|>F6G`r)RYgxo>TkD)#tR)_2
z{F2!5Jz|L<c`vk?mOW6}Ab4zNrbsawaY0MZ!-8|i^wKLhy3yXCrS<h0f}!?OUC6#q
z*Pqa$9jCm#$4|XPjBIW3dp=*;A5Za{(OQH^RL2gOGj2Y~J5$`-+dHE8a>R(U3z2;r
z>dpz)MscdmUJ(FpvmQ755v*8DDK0(YvCSO7A?`>?nHrF<T?BL%4UYKAryXbA<c4Ru
zfAy1sVXA{5RznIsqVn|$_cmNDkI_B+7eFITgKFP^76F>*)5X1%iXofY<x>m;KWW~9
zN^IewMeH$Zz{S%Tf8yy@J}TB{ht+Ab@IBk0&@469wko_(5mOJ+or{Z$cgPl+Z1C?m
z<Z%%GUQXcW<6HBGSQr}SPy_nqA$dV^2pd3A&LH_fSk2n*4#snNcHJKT(>(4qbGG6v
zwHe>kx#G46>&QL6-o1=3z+LR@RCQ}SI5-F=auK0`j#J_R$i3Qu?5=KZj2GSjf01`2
z>8c8VLWbkIPW%M(i{qw|mnEkjY+I=2=zse7@ir4({=t2!cL?UJYzB$I-{%oAmsV@w
zB2z^mMhtiLsgBaBW5XBOPtELIedtKOe#ERpOatC9fNXR?poziC0Wx;UZj-`ZEdrAp
zEp$B2xLQh5lE=v0)Wk$~G9#%Ky*U+ce=kIINdbU4u0V(~htWwM4-fnss;c7r6`893
zh3R%=U_Y*NfIv5=y1O*E1Ssq9w-K$cPIwhp3yq{Rm3>_BnWFb%3>SD{tUO^Wp4eCU
z`8-{Lsi~<W8G#cuL?FZ}PwMo^l#~>mk~fJ0mP^u<8BomMJhB4JSOUW7N&>JS7=;)k
zJ6Q3bK=|#v*z+lR@kRUNdW(E&hI%@4aM=*pE#pNSW8*QQu}<)S(d@M#SbZcblFQYF
zwaXN;2XNOJye2~enE0v2=mdDbIZhs6X$~-f#wwkLd*nMU!au(Xr8IRRS;!b%@9Xc1
z1<I2bT867$Hku&N0K?O&yeL2`!2Hk(5`XHh0XPMqw}W61+*(tb{IGjL?)N%5qDO!&
zJlo95suVb`fe5u*vEhReE^beb=y+i|O9Sa8>Rg|}MA4+ZF+f>my};Xi_;-d4fCV*3
zCm#Zc5O}Va>&%H{jXLBeKsZ5jk-aQ|3uwI0j<`PJHr=|hwB$JH^7O~nciD;Uw_w7m
zhsPLL7zGOI%L2E^=nXvwhTOJ!-Yr=Qv8SS)Cau5F6*J!8z3?$T9eIgUH5Wu4xa(bh
z9vvnM^&tsYZRE>#V@?AbQO5L^f~u>N1OiHz4>ACSM2A2TTIkBqP57_6sZxj8gWvQL
zPrjbeP7=NcD*28T>gS+p5$`Unm(-h%B>&<aAyuN<7dC;z*~k)?G}Mo4R0Md)-BaHb
zXVm|L?j{$1{(Qgv@rN)A9Ah?RVi2S+)9*ROpF0i-YX<=~6+nr5tC|ClML34|w8FB{
zCogBN>beQiA`i&l%i}2kmgW9cyBlXl=9qCPP{g3k50eAnUOF4CH0onew`U-;`|mr*
z7m0t30rlhf#lI*y^{tf(m0$FC``?}a|CELp8uu3%`{91QJ`E%YfXG*}+be|B{>neg
zu>NQq=1EW8MFp^q!An>!P)VIZfy_msF!(q`3qB6uZstDtd%%r6EyX0T_m`m$A~y;A
zmO4EP#2eJz?8@n0*aU!g5K-OE@X`9=<qOmgV0+CruCn&(T8tq@VW$y5^-O%uf3KG%
zXGITkag+4VZu|@211g?=!qk7?L+EV(FKUi<xyqW^T}O)7AyqV#2)GV-dA!0jag9Gh
zN&Q#W-*4M(uH1_SSwV=fxSw2Zw9;v3H#b87rde28j!jM$mzEOe-DA2&q&TVj3;<Js
zX)Tzb=l<&voT|4mHL&#|<KQAxL1k&O*Y1{FzvI%JTcnYYjiUBNCaWZAK!N(Z{Yt61
z?+U|SC^i5eKdj2L)8jxfS4h~s&z3mFzJWu08`(Nt7W$|_CmsDGmQ%uY^tOYOliO&a
zK8wiH@UcYd`BpUZKdEVIMuK9*eruz5s7A(s+`0zhLW$uzd4N!YGw-A5inN8(KYhw8
zExjAXB=Ys_X9e~c=!eHVl_I^=hlcm3jXCk)B+1#12<V?5u`Dt^xpoLf@QbpeW>ehc
ziBV3qXd{3Bx`nK)+S;*V*WaU$z>hn;hOAEx6YX&YDPfcB2Gw4Gj{vc+(@}ASF%sTh
z;-nf!P!+up93p#BnD&&Tx$ng<?O-1WDWxb^^5o^Efa-EtP`@~eSxgm_TLw>c;;*_2
zpUySbzyVZ)?Pxeh4Wx+78OJ<4JfgGyKCu^1nj|^Xan26}rO_WIYqIT>sJHsV%7u_C
z`DxUEeC!@r#X~iUB`+c2D%MDIWR0qRD_)y7Yh5;DLDgeQ&I~m%CM@k&5;wX2CsmSz
z7&ggz8+-+!>6rBqoOqx=@sHtuxd3xoD^#my-&(_0gcHk8J<?VdhyW8(fN`&)9U~s~
zL#YRfCh}sU!etac@}vRZP?;yf3xDr#lEuE&^VR6(c5&)H9KWeA!hyMC@srVP|1xvH
z&bCi@n5pLgTbSGbJ5TrTw~&Uv#KgZJez5@W``_(<cZU35m4;*P6pb*Z)w>UO6EsLx
z%-!a|G%&4?19li?_pVWaYL<5*w5Dta-+l=Gk9Sc22K2Wu#jWWrbLRSm$PDVP7C#PU
zf${yIj~KjbO@7`tK|Nq{ul?G9{_OfNl^g+qDAaiOYRnwk;u{s{cH$9~uM?!9b&>!4
zw$qakj}oBS9T(%v9Y|G3d3PNgaYJRXpXJ-%Gv8S9hC%KKd*1?IQ@8&ezW={CGhdFJ
z@B<5<%ZN(RZLhT@CmsqLo%lL^ZCYfy*5}9}uOYY2bz%+O;^G+O^}Nm^MZmSOCdg2~
z*IGs2O8Jhdk(Gh6J@YgBH~SQkz8?d0Q;^V%7_}ImB$>IvT{*kv!Q^cPwbM7lFWv|L
z4ga`N`}fU%|I3NJ=lY-D{{2do^W`XY&;Ral^S$b+qF4X(34G5KMQ3pC|FJ{3Fbi|;
z)%$Nn-6Qmd_mZ7?1Y#uo@2KV^1!ioVD_bK>4|B|9ZHf(tKXe*(*Z+HN)vd$)2Ui#d
zw<n^n*d-d+VZ!r2gWa#0c3f}zC<?WG#@O+FTNU{`bnosJ#~%`Hb7fH%KL;l<H$iSb
z=sy=Z@VF!6N_3a~WwylgVNEZYXIkzi%b}SOw)~u?xBuSxgR$neJFy?s8F`<IM#{JD
zpQl$PPp}m6QEz)i1w4@Rui3ee>i^W)8zt}Wc-i%b)nOpt^Zr!f-DPja^37gf{`#U)
zP_?XPgBj=4n~o2OvQ}-WT-1)a9D_Wgz4-D2*P%pDa?vrOMDPK4yc+_XnUrnI(G_p%
z)%AC4GT2o7tRyK@X4_wH(9SGeG8NTmOf~iBG8e8}YiyL<jx9vVT)%9_k)XPssQ8e*
zJbLiHit%La8SrR_LiH{)eJ{%Mo5of)dxHnVFG5p+z=y*;BJ?%~Iv<402%OINW%2Zs
zhSvQHF{h5c$z5lttQK7yQ)7)XDsnFTD&(-@h##*34?oj<*KN^^D)B-&>f?f2s(vF^
z$u%_gbJ3{q?_JO=qazHLSeo7k<DZ5|(hlT}ppqX(acItp-CW}}kGFVx%6)U`fxCdV
z8KD_gR4*Oen6lk9z0@F=bg4$7`!wU(zlxwQA!R83QlIc7%z~;qdGX1k_r>)rZ;4|!
zTZDgPPfHZESoJ5bcy*z1-KA%=$7XyAL34ZBB!tK|-q}Vp_CNPsg;1NpEk>5Prp$Kt
zq^ZoM_=sSNN^=8W#)s34-aS^+Y<*0NPL}ijLbyua{V9eTi3n*2!4lhN<70I^;-By;
zhER!pl;y_;>#Yvs&C=--d&0SmaNC~8a5I+Tz7SN9xhUfOxg3gnkhgL3hIat1*iw|A
zplE7{wlm*|N$2L*8*gq&w1Ue~oJOExk88$@{()i&RN+&6{Z4WQKSSoD%i!Q39?}%!
zY8qo1$546+xIYJsi<`^W2Z*N2_y{6V9=CngRt@<TUrmIMrqqc>yYMfpEID*<?kYfI
z+JHtvpSYm5@pGLi9lDZtybndr$ei%fM8o}S#{I^&H%b*g_Vlzog6Mp=UyClG^f^m~
z-VK?aA6J95P7d}L#HUu_`>bcy-EnS_<4?e4os}$SuaBP)GTlbc-K93fXklkUN~5W-
zB-e_Bp0!QcKfASjQuJ2_k|wR3)G=ec9G@HqUZ1#s%NW&Xq<^U3%Na>{;<D)I>CrT~
zJYkU{T!ECJnVK*PJb$j__U;9<kaVCPjRz3{5zRZG!_H15{Qx(y=F_0KY{8-;%3+jN
zP+LBNZVj09e?-0;wzN$kO<J<XbdSPYYv8H#0c9p?nQofl?~G|buFIuH^NF?fg;?lw
z@ZXhv`3tFm@~?qjv3(@ObMsAr<gBA+cyV8-(WYAtMecZoPq{(jOfNR^<8JFUyo$41
zMZM%OR)L=?jDmlb3qHH$d)ca<&gKAy=ks$}zkA!gEs44vZ8xTZ#E*;DvtPY%%!PSh
z{_+kzXm4}M3ptq1+*m0tuMau8B$lIux>qWi$ox{`Wj=Wzx7w#XuHobKWi0cY)_}u)
z#+6Vw;rXq$KehMjQWLrHQ6r_kS1%W#U&YSfT<V><^HWmv$tHugG<yznX$INucpJO+
zLZB9pubOmhLhPU^>{D|c@ha$ez2_O@6S}Gt??y!&`X9J`6#JbhdOAYSTSU=vR~GIz
zT7X1Td%~D3tbxJbgs1eJrrj#hUOuf)GkgvxJTPeyq%7mutYYNI_{@umZ|VO$6J54)
zzv_MGp;we<?~mn(K~K?&bZG2g`+MWf_e6eJdi|JCL-pz&8))A?_KgQ}F{;v&No%2s
zq@3&F4~m(_#uC7K*p0Di-$)hW>}N;?>c~k4m(L4Tpkt~92=RMzEnj3y?C;of=h>|-
zNQ_|wy<+w2UF9z-7zd0=Y!*^OYp0(7^5a_Q_k3r?qnA@t70Wx;bq@*~E+$$(SvH{d
zd<nbG$7+~s_StgD`+aP`t(FqI7#H7tWiG9e*JFoQc|P1P6rX%vt8eX*{Ku=Hx2(Fg
zt>dNVRc@b!#3n=a-XG&*m4bJpKEXcKxL^v^bw(X44?RkugXbfRnEl@5DK-XZ)pxQ=
zCk~J*MlWNp;N{|@n_ecD391a%R_%0;9HV!s!qeW=c+llgO*$C>VfW*QHNF$L#0Q3?
zlj7tlXC+%;+-)pjku~p|FOO#x!^=cC=7!E!)VpBb_VaF3DBe9E1{F(X4DvLGmwtun
z?$qZ1Ie?aX+hE|wU=ZfiifOKo%yj-5^@p{Eq`%$O@NDJ2tY$s0SaFGfU6YjHmahsa
z@Rd@1`~eOE#L^G;Q}u_6?<th1n~!VFwZ6Z2A0etP@PGzd@N3EoE@_v{^4RvzbtmLX
z!}_gimKqNvy(a(v;p{Ktvf7`vaTrChND+|+Q9wGRqy#}41f^5y?oJ6oI;2ZLx&%bJ
zySqE2yPIdu{k!hZ|NZmA?Uq>QTHiHs%*-(}%p1xYAihE<`%eRgyK?V;|5W%=K<<TC
z^DC>fqv1#)4|m-Wam(*!hqwVY$>ZWtr=%~khGMsQMzK`HvE{er9>;~Lyx_Lyh&h;;
zP%-AU$e7x#1UW>U<X1C8cODJN(IH*^K%5e}#DzFDsl(FNi=$4&&kdC{`@22Be40=X
zK1Do%NJiCK)i!i-?SeBJUsL)t4fXATkjVTBc)($so`=2m_=9;&F1Tuo34x_HqyLUd
zN_~Smbq@%Lbx>^FG`dMk5+X!PjNcATcNR5C<j$FhzFddv6g(PE+7b!1nMQyL@?A^T
zmA-~Z?vhOkniFc9a3nE;+!0Cz{fNkW9jVeIbPOaBX@zN`-yJ(U^WjWX71z@)irFah
zABhj^;Fvt6;jOf<SHwl3t;rvCtT|tvQ6RC<zAh+z@ck1`d%@>^JP;Oj?No6P5Nhg<
zLG}D)`|^o{f7?&q*18Tabboi(H80!cq<vtWcHxmzRm>Fnb<5Z<URdrzHML^mY5REr
z?}Et2I1?b72zyfl7g~3`oCO18gN9^pIvY2=jyL)6h@p!Hvq>dBvYpOu05aCu7;Wrc
z(=Z*V&R!2*#61?@diO+k)k!{dAU}r81&_?@T3gbPOfcqQuVEkll)BZ$Yz%=CN@?k7
zJH<<4r!5)ExtT6AI*pSsmX{+wX(=6Dqt)rZWnBNJnZ9LduhnPl@1Z5x(o^|0n8G8y
zHRq}XZV?1cQqlT-XlscHo~)LTNraA}yUTaHXYjPA6)HbFsFiN&Y+vd<xrf^oa<=Vo
zVi}y4SA4qnCkfevvhzb+&}{w4z%RkF!;_K}uz0u+^FJzDqky7-tCKT4cGZcnjWZJQ
z(rtOa_vX*&vTE+U8|8m6ho?%loAbJc5`6GVvhGuGxxaQ&jD%3uQM+-z(K~$>8DVV-
zs|zFe8N8W&W@Rug$5r_W<|f61-;WQjj(W#VREu0Uh1K&?{pL?1veUPvnSR&5@xJY}
zVNUExeM5}pJJpMLj`<Nf`iUdLa7%#Y0F9}vuZT}FjN2`nhPLKRtWfjf-F>a`J5#J&
zJ?*FvfpX%Rqa4UPYmk$Fmy`Ru>i#K-V%tzA`Q{uXzbUh@VJefe(HmvkeYn+mpA40p
z1px*9dOy&2$M$`in{jki#^8v!s`YIkE8NA`Qf}7MK}vHi&d<xUU;R@|eMS^(`!ODD
z232wX!e*ZM4Sml@k>zZEH^ExhrH0v{T|eu2X`wC{DItM0GFJH^d54A+7DXqjh)0Fv
znMM1YByo8vR+VJ~J*@IE{sooZ>imDIdiiylsjXymmT{G$3K_Q?R0BruRBfx5ROYJ~
zB*g*7vFMm$HhPMHaeI<zzx6<ajRZcPo%ELC9qge^cd5R!5>nzUqWz|=_6}5&uIN%=
zZxa@dt_&Qg&GU=DE7DX#ZLgkqsr0b-+sKTZ;$;P%Wxm{Jk;D<7<AXFJP5Nzsjt(YU
zbkjD21Esxkk<ng+@|&V$Z|LI`b?Di{tvcf$XsDBjU+BCQ%66*OdB-aZa17;dan7#8
zaMqvyx#G{y{&U6a|FoI`!Cd=h+lMG$pt;PBM5r{{T|dK}-cnIM&%a3P9eCPoF#43`
z8$waF6;$AZJ_A52$g6Iy`2EQ>@#t-6NP%?V`CqwsTZadLx8QSHMh3jVV<;*7K8~*u
zd!$;DwR_&*jH40P-zW7&@|6i1PhNJe4MHY;*I8NX67NmZu2!z%CtZiCzQ7pO&Ciq=
zp_8gS&MT<Ai#%btfBwSF34B0~*p|G)(;>=}^9$wq4O4!RUw$vY<{Q5nQ?*ntR4Qk+
z$#0fZNM!rlU?hrRY!s+LBYs}WggBItwy;i@AFX3XR2!46Ih)$4>$)QU9~g<n*X*rz
ztH~Ru`t8xJ1uER%-B~oy`D*o|BHAndv5hg^eQ691`O8}JEeSJWf<a}q^JESN1*^zA
z6-6)lA`nqQ1y2l)ldR(7RYUW@e<gB}MI&KsFFsAOG0)ePAIi>#PiRiIc^wpv<K$y!
zpxFbo$s35ZWDloNS15e`H<IF)&XPjsgzbN@-(f;!r=*kplR`d~xLmQRL5K1M8wFX0
z7;@<Ztzztu^_8v*L97$NX+&fJqI!Cyul!wyK6_F1sM~osG{Zk<_26h6z57jj#1-ui
z-M!_e$3~*a6<>{9^k;>&whF$qt+c`0xzeMlwGNU8BNU<QwJ{lmCGafW)cNj9uS~2P
zm+S`szlqVVGny(|f1drj)ZgW6dS&HcAkuv=Y|cc;?qRTK+h@RC5M)HJYV0wbGEKi`
zQRKTKFMq#2D7-h$IDwQ`jnf-~Ph*(F-E8(q6+2dWJ$6c`KmX&EBWthNt9;4g_ix*K
zdg^RPGMNuzipi3vMuU%wo2Tmo=&-V7+1*}s0fhP!5H^}0<B12_^tj-rMl*)M1<lw9
z5qaQ@Ah5IV#1TZJ)B85w5NKIErwG?YkDbyM$<IV}DK=F)%j71O61rFGPty4Tj*i>k
zz-YuLd0f>A4I#mRab<K+MdXiF(Yl?_m)AzNV=Mnr$Kvo!^hScU({ZgC@lIQx-eD5d
zq6vSFJOsEO#igcXXK|nB)iCoxEiE7yUaRKO4z?w$*8sx%Eyf{!Eu313I7&3ACGE@i
z$(NH!`Xxx@c&y`v`7IO?UTJ<r-aMmx1=yKl0PN0to08`0Iot#9F=MGGxd+EH98t<=
zPwj8Ut>3#@dxBdl3ypsVGQL`74AE`MsIfYP%j(aT>Ofs97|O(M*hc;w=nI0AUy!vl
z(!matx~V_}7!^)R0Bl=pSYplgO9+_p|8p=xljX60xFhSgOvbFv>07m!_iRSp%D>;$
zQscl17Zv#>rjX$i&Iw;H3lG&;N1=_F9~V5RG34T653>Tf?ts`D5Gg{?;dUT0`=Y1Q
zQ9edX-=uqBUGEr%M3Y|0WZ*yx0D3)t6fhJ7L{A;mS?;l*$BVB(bjLlX|GxEUY$bAw
zt(gQo6nJG$>w0tyN-MUcvUj<}l_R*v?Mvwpbg2Id`V+uyn!Z$YWBdj;(owFH6&s-$
zpL?2h3jz6K2!vUS3;ti^56UA1)A`sHK7FfED$RBNgui9^g<mBcj?NRF=b~qd?#SQa
z9qqG?hKk>>)t(NHRPoYE?p%qWb}xgo4OlnqjJ%JN-F5k#fI_|%>S|}G?StEQH7vOg
zY~oGdmgM5K0%ZJge)h(kJ^`C42BKesl9}eQuKECMrtIfQl@N_t8|f%5OPnoSy5!lL
z#dlWorY6x<JLlf7{UMWwH`+N&2pA7Ax4qlP=j<OX&kQT#_>)qlDcJuxtFrAFODqXW
zq?>N7VBg(IICjvf*2BKqdN32&1#t=JoPX8HH^yHK<X(MAh>SuV9Xv>#E!!P4$pw4(
zHEcAnw*X<7wSH@rn7PVC@-4Hi0IIVt-8idI*<D*oN12vC9=2vDHh(?nZP*ttZpY9m
zR*+@l`_&|G{BiOZm-;++$aw(vK6y?iIE#N|kn<W|<=z@edoG6fpb1Cux`Umk+1b>7
z`n?@9F<RLSFv+QhQ?G?cAWn<nnfhLEObwnW@43kh_r@)c(wA6|lLzu*R=_;lF^Eq~
zJTf8RT4trRHwxQ!gm|?tFG45O<|i)SxYy{&%$I-aFX0X5#*L%)IV*+7CQA2>yofZF
zMz{|E76EG`V?T|S{~4;Mp!XRE$R><RAR?A;F<b&H_p3oV0Ds<+JjNdzi7h8j@Yhyz
zu@cf*jkD?O6mCAdP~L;br=1O#ebMU7T>fgNKqEiW@gzZ#@`bE7WT4=f^;i0RA>2PS
zZ0s}U{hfeD77C_EB6t1&#6bMEnvD@R3B)c=i>e*D$yESCkbBn;K}?Y<PWr$=-S7^3
z?TX_$V#s=?_l`}C$3sd(sa&BQ6m<GRF(Hy?`iI+%vq~xPslp&@@Wut_K49nI@^0}%
zGEkwX<Lv3VCtU!qAb=^fxBBw^qz2F!N`imQf2i{b?2b3td=3hvSGTaSnKbKhZL-8r
zjEN@s|0P>m=!Nc+38ICojxt_3&?j8`7ZmSoJ*|kz7PybrUIA*e9$pc<fxxc_{P+L<
z^Z!@IkVOlZ)Jy*~sCLI-^YQ<#mWdT+12KVbcKH8Nl0y%GG6-afyJ^g6bF*T`#>T(@
z{;h9mLE+-!f=NXNo6Lv^qTd~c+lPmRrCbPSNrYa)O}!`mUj~!WZ)3E;YJW*oD&bB0
z*}+PCM@RN9>(i%C{}>MYL6N#YU(Lx8NRTlxO#sUwFGxvG9|XHVr4j>{Hph!$rMmnn
zzLnL%<Fm%8sj8>hI0C*GK8Ndwo0T!5SFdVIa=UKN`bhabFmRa1)M)aVf`S4e5s`(p
zbyIzPD6ID2=HY=^ES=MpcA^pzOVDwnT4w(B5ib32tyc7|?(VhmVqDmm+cY~n>#Iir
zm-VfnhC6^SVdCMnml!G71W!&(3{*K-5fT#G;JsiwrpQw+S=d%HxfWS~s|gAVV-pc|
z_atyJv9hM=^(I2qD%{;2X)z%hQ{XizgqetI;^V^4jO3Add3&!BAMEWV17X>Ed&-;5
zWMXw%UR9Nl%XX9W<xB5W;YLpDRZ<^xqNUQ=>sF`=uFbl=m5ld5yy^9r$x^dohXdW~
z(?z>!Em+O?OFSyydTSyAmTPbP?=p7VZ?isG0<8g^gtrT*2;*gY3g0kDdVYTn9%_1Z
zpRCCRk#|KLo|YemRApHiqv4P~aHPEb{l(KJtnKXdCjJ;8EiErw9<IvRZcVh$y4`fI
zB)Ro0cgMxNHejBHL34i(5O*VZ6&e=S0AC)jV7=2vi_50l_3ZZT^M2UiDps<#z1=gE
z6?>U1pTp^Rs9(Ric^?)6wZnGRmXFebdUJJOhi!=k?pyHvU*dbn7gmFZYPen9b*GSw
zWwczPdLQsiCa;x|g{2Ypox*lWkOyrb`NzMp@w>S`;p09YGe_)e&B`(;A^wQa0viRz
zF*5mFMSj>XOF=;qfX5Qar1f6QXtHb~DER}`>TnKjwd2tO$dvJHO#-<v`av^pCx^uX
z$H#Q;z_>V-5+dpQWZU=t?}ZsggoM;}L}*xm<bssMFzY;Q^ikNEvo@%(UK4}$u;aCE
zd^rjQ3n#Os*f=(RO2z8+qobuQ!3+q=TvRSKrK`O<CO}GkANb{Pm5Jlcn~_x}*x@P;
zf4&C<EcuYQl5%s$V^d1)ULG(Y7JB0I`~`t|@&7*G>eT$1hRYESb%Y-X$u8`u9)MBo
z%6Xsb+;4&8#K5dztJOaK83(;v#d^J=|M(DMhC<D>$JQBDFgKJHuBfcctkohx?0Pz{
zoR@5*(EVl<&TkPRR{Q@n!a~gb>*~IjDEmOZQh}m{{w?AR(Hh}>Dpgp&f=`82vwKN5
zm!%{3GD|?A92NuF5u2F-;VswRTwyq!Y_p2dA?!~kr$T|c4ve{lcN6y4WU@%ReL$Jy
zC%y5&FVU_9$bSXm7g{X7=RI4(P91*kg?aS73knq=KoM8h7q)PFPDnHMi<0NZTSiNM
zuPG#=-K(pKW?e7nG+fW_j*Q43Zcn$4={$hjOTlkyZN(-e^pefeKHbIQKImd;p?~16
zUhO!)ey+iLvH20581*F$jeqHkV<+NQ1QRGAv_wez%SyYQ<w>*JyPDfm4mP^(${U5P
z-&m}c#gUvZ_gV#oH5e_0{(BheG+EIPA29d!_E3qrfAye#FoHoQd&iRp4!iaDIBhpG
zyE385^6>vEIMiEpUy*^BPv}0X;g$e5f>)k0fJV$6y|>sJ9u?IJd($PL`Jzz#G2($=
z>geh|esV}Qny;2-HtQ3^X_a0mP92exL&MKs55xGwJny|jG+iNn-1m)m<OL?HKulum
z*Htc6$qouu@>2QW>GsB0rUW9xqiBTofGj=-`-g|bP<_aZ!AGdM<kxYs6fPYa9o>}3
zQ+alM!CJM~5~st<&dC|m)FcR-NkqlO8pg-*aB*=}RaMO`Ewh`m|2v?mBAq0w`G&g{
zb~`<=;r;WbCG~5&ZSEN-Gc4e!w=_0-f<Q!^S8Z<6!XoVN!NDsdd3WOD<IQbt5!a)n
z)RT~uG%B|QdEfyV&Q4(F3BE-lY_*<bojN?XW?Ua}W6L<P=Z(4G`WvWmNa+$W4L|uk
z15^WDb-SYL$BXqitXDC?ypWUrBzg7fRXjJIsJ8YCCMKq-8ke}Lsw(D5Mpjnfl6fPX
zMx`AIFzCq>-Xo+Ua&w}@9~caMDMF8yyK_i3xGO6wS&T+#x{_|#pxLZtaxxA~861iT
ztUwJ7#cFD5`edIGm6}T4(?g$)y$)0lQY2A9{!fSN!{LcMPJ1wWb!Y$&-dHzyL76Q!
z;a7og-lCbazKWARq1c@uRY*kyD`>+7wbu=>yK5CD(`&T^u-bAuex!QBeRVkK48oGD
zS{}AF>9(@ay!yPiu+;9SC^qhN*P2S{WBrLCIric=OibTl!-B=e2wg*C<Jo>E!|GrL
zMzzyPGU(R(H!O%pn->=m(L7q0Lz0MNBf<_pFZM710}{h#@&;_ra}JJZuz{9q1I^ES
zEv&2tufl))@QRD$g8sZ0l$4=Aew|T*PXSj`1Qb?c=Uskqv_id!JUVsC_hok4NlP+q
zI}VHVl7`bK)O7{H`r*Rzge8#KJDTf52E#M1w(7)gt$LU^Q9>TnBqjK&#!sxxjRaS8
zM-*e_OhznEwt1d0Yu`tx)<Uzss+!u`L<x;rg>~9HA9OH3@?-C%q!8=b2{|pJ8+|aW
z=IU;t6LPr2xqtnNz0utT!h)H?t5ofX15H?9u)hIDkaN0VP2hhYMA!}t@CRsD;aqkD
z=2ljXy#)lYncjMHOs0VUBs%(85HT7h_aznLhJnkPt5O<C%;UH_^l=d}4mHB?iNJj=
z@GUZ1+UAP)$?*R=bvkngW@PA<l*C0P^_pcwI6sYSC?ptP(#|5oeT$Z^Y4}-SMR&Ps
zs`cxG1VV#P-a%h9=LF*u67~)@zLl1i))zqEPzJ)iZ;ppYsXKme^a(aU-TfRy!q*a|
z;mWV5`0VS~ucxP{pDGYCDKJ$G@FIwq$1g*VCSAgzLV2>MvsdpUKMJR^6pBMuF!EQq
zE>gs5@$Kzx>zx@i28Ko!->4{Db#--#XiO1_E}e$PV9P^&j@BTeMPT~`5c9-lB;ps0
zMs0&Ni~2wFb7%{mz9)%K7y!dF7F~&wKQS5d*bX0scE7%06G}_{@HQ$kaCOJPJF56D
z1%)}!OCMMo&*{kOZ$MzWXEj80%~}`3OGluko5FY+eGHYev!##2vbE*qcVVb~sz$A=
zpish>t8+AjW&fBV#f)(A$dq4nDMG~&hTjj`32rmGI37(mr*)HxqrcdTBgWHqOh#SM
zXh;2GV$%IlT22~eZ-2j~voo%)?k$_id0>+3`FB7ru%p_I+4a)?8#<9ZT`LyE{iHk;
zh=W@-IoVc2Ld9bqnj2kS`WKq<ZHil@x1CZwqC3=R&6p?S%T2Syz|QhudBoivbX#3}
z0;etsiLaL)uz|EdzWBxxe`i}tyLHX_SV#|ZPOH6*jqT7xrx7`j;IqkRkMdX1RCNva
z<M3?Phhjk5igh}lvKcG(g4=`L&YC^(<@WaWLykNMYyA%H@t$vBU~_M8@bMPcvr9)8
zmbQlao&YLJPuhuuww}SY%>qw6?ai?pgw5i+xx@xbIiFKdvoMrJrQ4gRRxq;tRA8!B
zI|S;nsISeGo(W(3>CFtfqV8;DIdN0J2~`rm{$(f3?xA}&YEP6S&|^8T{E)x+GNzO^
zV1$k+hBw<JkVIjsHea<|04x_YdL3>}j{Y3gU0Px~IU%^jNfOr0k1gYJXi8rSi9(JR
zP_bi4bZYwk%2kR(DGu9~E+R>4dfw6!{mfARvsp`7P$1s<PvmOlvE9Y2C-Q`nI?~n@
zPCeQ`8Ks*bOQUO>uBZ|{x2D;En@aN2g8U%1{29(OXd1e{z6SjY>g(fEDl;d84(l|a
zm%q<K&>1p&0gGZF5xX2Rd1}OkhPPJDnqkU;gdby3CXTRpUj7nBQDQs4wHXk?56Tq7
zdGHc2;@;JX(R~cQ2B4Zp^Ej~u1qGF;2Lq)+00B)?9y_aWU^?#WhVri`%#ZGw%xhMq
zcx8T;ixEo5kheN?WNR&0)-=ki>+T7-RWo9(Z`h+rLV#jF`B}$Q%vhPi%(Sw3wDnWw
zzyZIEIYFLsHwNU;?Ig9-Zz#AYQy+Z1jOVofhhE8$eM&<g7rmsKVzv@ui<@5=9g?7T
zN>?`A4lZU?-3d)ag~0XZ%I+z>vk#}$^1{lB-cSVsW1YWvzHq0%zyFWvbZov_CH|$O
z2?}SrFiK4I)>E3!Hq!8i%xx?@v5e*MsFr!?+980=53Vo#0aZN!Q&{nJeSJzCY;87z
zP5_YLaBZn4HgCm``|s8qPI{1Wqqos3q&qj5?SDNLtobmmmMxGHUECOI=!k6i27B7*
zxmlDistS>-_RLFkM#A`Pwj_wg)4T8n>-hx3e#9mlz0+0nUr&+E8Y?lvh5lhwBEwTs
zRwRmtn_Cj6F4_0C;*`Hkwmrf2_L#bKmTJ}8-O$L&<+AbF5Ixh(MmlIHO{Z?_@HA`O
zd2C6a@PLSbCApXgqqOLANHC9KNi5g+nW|*Zm(7Z}rGGh0rYF0JdPy$mDk>_jXa8`o
z50aXzjwg)n+&N^iRYGV`wYk~TqtpnqU!<PKN$dPRvdnEQwX#Yo{3vJim-H&VX)HBb
zTDRfMZc4W)%57eFA~37l_3cQyi}<UHlVZ(!XHcVez>f@2i^UZ9A%>DAln3*zqp$N!
zjB>A#aX%6I)_m03dL$D&Lo}_3V;Q-YI#EQuL|e^Ofpc~?^-3*<ONeEX{M1Lp!_9Z-
zit}9gVe%|@Pj*PL@q}A>TfpYRo3n~ll(N(mY=@JLR2}p;7#qVLcD20O7gmR?FTXZw
zJKU17$&kL0bamzRL_uq5X-Stg$-Kql?Xi6PR52!Qcd=biYN~5~l@BledoLLs4~c|i
zU2Z^r!fnQnA?EjZA4x85Xc_#mVadqwc{$BZ>rmy%(@jMCn^7(#u^|7je8g*Sky2Aj
zs}nX{ogNNK155~!N<jeDuYdl$eojtq03bS|W-hM>b>BfBfA&W>zva3jN(}1;&gK@;
zSd|0z&DD<E{f7@D@rD61ivD*%vlEft<gvqZSYLEPl!q$Z=`nsA+~}kS8+OiTa<riD
zF3Ve1Y_CkPW|zF@o)SBm)w*YoJa-a8qw;R28%9$U@9exhuXv24=hVrZG}=CTSI<fO
zFG)qVlPRSJu4j+9?*K&5w|<HlQPcEUKbDl3Gc-gGcdfen#F+Neml0Vq2k$pd6b~8u
zFS*EZpXaY&TF~7avfH)%^V8o4XT4&WeF%@!@&)kmov)5Y0XoM+f7n2og_c&-OHi*N
zB^j9vr0mOP(>+w?vsRVN945~{@ViDtJ)|GgCF-Z9;vq`({?}Rig2Vp%e?a-Mw!Z>c
zqF?haJfdRV+84<=FVb`)qtU82SExXt-mS6+<Kq2f8-lm)u3H|WV?~|FKadg5l}u@7
zNkI|An=nP=qDuBKCy3v0C>H&>p`>1a)2HN^LhbaQxffsPBuMKju{>2&m{<A53G;C7
z2L5yi%n$TPBOeaYID2R`MIOxEF<0*?3P7#d?_Uf3e`awoB_+i@8$(tc<?91%ioR4~
z40^SSCWyQ6D+$TGsQ7hd{go}|JRbVy%^!Pbx`4c5AG!#}c=kyq<lgGuC$6FEoRz7}
z3NJC0xA|n9V!Hg=z1UOt*t+S=>!DEvJC{m(dRpTVCmLA?>;`D{euVqGv^2xvU^&9D
zQSjDs`a?_0gZ6F(@atz*^29o}=<PBrMd3Jn0cJrF<sP+Pc9>Tu<8-){B*|I2>Hdy$
zIw(fRXv*R~^`dPC7*_7g`E7UCoXvEq4O$=q)WQ(*NSW{^EkSg;e8A*K1phvD8!7oi
zX5SLH7=Z{1!mQ`3S9bt()*l}TpKnYnAO*4$_`M-N<bFGCPV|0KG*B#)dj+c_vGm59
zNM;^2!KAAfzLrs|efTq@;gS~&*t=6V=6_3@O1+Vh28By>HaE8_T4_?$_TTwtw{>(p
z=jBaQDP8#P=O>USzqp}trZlun@sKc25=wTViQ&P;C3wg36fb@p5vAhi=054#w`-bE
zwc^^wz%qC--F~k)jNOBkS!VHzk(8qpZwD<a#soDZOP+N(t61^}Myq91*iP5@4Q&I!
zN{Z2F*bN327_e;!n>Z06CoXPl3`>TnlvFw(p0NpeSGUv!yrwi#Pwn+ke&dHaA%Z+C
zzIGs@wzjri@n?^BYAQo^YA&8iOG{6b80l>md12lTLFCgI75ix2rrmI7hA^p$lIM48
z64Ok5Pq#eyh150d|60u_;mA(}tTwb#t77Zxs+Z<#F8{^!hU^>cHsS@iBINAM4I5Bj
zCLZ*?lY91yjdlKOOL_<z`=I5nWzkP>PtFGhoE17*{%vwBDb+YvRj-ZMl7N?T)&HsO
z?g!lIF)ETN!fx{-=EVx;xFIgUI!d3FMwW$b+)GO_7-~2?3u=_>Ax9(qUy5idYRHha
z(spa1Ewr(zx!LN%w!IQ1huI%rOc!&<1JyDo9+kQ30}7`cKZ=2J2*2r2IO+h5Sb>P7
z1+3ZGR_P5y7?>$N|2??AW=aY+=e~mT_pe4|V%U&cyS}=(58aMD=^v;7-?w(>y#jpm
z;^oW!8W*S7*A{sVp-=29qdf)qKdGX4x@_*+uq`$X(=yVr(TJkSM;fYcFZ$YE1XNWy
z>mFG(wKRA||B#SR5TT?g)g)?nX3bM0nAg|o=vkF$yJbdc)g`fhJVF3riOy_Ibv%z#
zWU6rR05n)@MZG{69Y2V}3Y|{qZFgq66Sz*c%b*#md3u_No!xF~dKz{yLEmnQpD;}<
z|F<XFA&WTLm_qz0?cJR#Iy}s6+p7{oM=v}B2s!;+E{+iiBdJ7gQAiQ}r#b&2_1CYP
z_3Xe)sa4t*noP=@PL<u#H@zWb)I>r?LHz}KOZ8-!4>|MQ;QPKdFLDKzxzDTPQ+{Za
zgW|kQ(%o8HxeutK>+kgCl@m?JPGZ?n`e)Tnk<vs7Y=~s<IsL@?IoB6q&8VOsB)2RO
zZqo`)Mv9QbAtNLEFPW55FD@$jxjS~4klX&liDIqm6$EWmH8nNSF~eP$LO$t%AAW@K
z4>c!6XDs(yGPnI<X7)`{M3EWtL}hk7e8zio$pZc8&mo=b`-cBN$?&}pv9x5)k#}i@
z4CAfUzGP&?W4PU1v$}5PV~ouirp`5W8$TW_w*OT^cP!ujOV^^HI0J=7{I1!d)q5^~
z<qZ-Y3T(HE_WI886VnnoPjBxB!6koRGVlez8)g3empNHjd;^~^X}vEan6IXWES`(9
z7?H+#Z7dv2{BNT`0owIEs;hb4eM8l03n6<APO>F<8q`s6s%zQS@o6KNrlJ7U6snh=
z66b3a$!JubhdZ-Lpu78{8Zv@{@pZigaR}crwX%N9Lj{`dmC1H-va<qR@$<X$jqtWT
zydTZ#^rxH{>bT?o%*x~Rtja5k4CzkJSvzGb)C~!KxrCF@s-5EQc4OgxO+)|KlH!58
zn=DJr=^z@qdIxpIQ|-jqMB?ScBjc{n4ZH7toyk5vcWdYa4gbYwH^K|Lb^pQmmnAU-
zpo}dvomTen;04+D7AA4|F`P4s`Rth@4f2qtB8o#LV5e6<_$jWeJ^N&tMS?w0AFGG(
zSBw_J%lSj$2`>gu@cw7#|D_FIn}fk}J|54YRXOH_yuD77FP8K9njW-{WJS`*Fy?y_
zMN^%UJ;!m^tC-X>MX$Ip!7*nixDM!9wzMP$*?J7JRfl$CzAMWXjq68mSSQ$hNPO(>
zK_Z>TugfcKTh#bT#_hRO60ghdkx4hCJ~-U2;|n_x#xh$Hj1%l%K}Y00BO@cL_B(R8
zPo@suX9|Y%Ke>x17)ar%xEjh&VS4J*X9*%k>Y4e7*;k3DgA_7X?!mzr8PZA14c?Cs
zF4Q6^hwtVDf_O5odP_^o(_Xiy2M{qXKw24+c-@C<z0dLz`7tI2dZs<LR#-S3uh4^e
zmg;`rBfv>$|Ai#+r0V=PIR(Y;&^ZC2U;C>G&O2=%2P?hrE^={NGQILlx|Z$l8V<n1
zU`?-Co36w~qLfZ#wtNX6CwL?xCbrOs!8dofR=Wn04cU{tlFCvsmfxhFmvHjLbd;V|
z`@hN4DHvU^(9k18`5jrKQ3nXzAwI@0e@xbNCG}qvLrlQs#3j@Jy@meWkj%ub_1f!m
z{~#i+BI`BT)B<*WGlQODo~^c;xYi7xFr>Q&_t@)a9=0*q%M$;wWl2qn!uh&krmy=U
z4#%I?P+uGU;NBZ81KkeX&yd*pw`V=t^4jiq?!V&fik<{kf~TVQWDxOcNMvLS<dy4=
zHbx)ZUu{hh+Ud_7M}D7|Wsf3*tBncpTf~ilh9bW<Ifh?N3Z;;l<zMIT7hz%h(X!Gk
zzP5u+;gl~u?~?_Hvq?P>@HPAcK-%c9q3P((bbsJarE3UEL}d+8AU;(Bq}?cE;asVS
zsikL@VJB?&m#FG?T~)@_vzbxsK2%=HG~L^bHrfOT%z6Ay;Q^0BIJsN%qH)24I?=3{
zF6I4<ZAAfn9Fm`|7h7l1ad8Bdv`FdJHrhwuU%UE=t?Z$<2W-qWsUQ=cjqbE-ez{G-
z*f!~L#`SpIjVWho^QHR~x9)N2Vj&wkp|7aUzkaSi<}6z8%~mG(k`4Qcbi}8orpoO1
zo`a|4;N--se1S+a$ucuDpU!z=lsTU<Lym2}WK^BSR`gByBj&c=yLe0A1@HvbXgxP+
zC_TG?A-&6neyK$3NhQWx*>iAcEHs!d`8_Bo67{(kBXx`@lyrt)K==-4;N^P20U-r?
z9Xw_XR~k+K=nrE)>xjH$h3KPC{Wk9JY8~RU$R`m19BG;EQ7W930DMWu>by{QgLB$=
z4bG+5Sc;F0j;IG9oyFf$?eTb5=C^c6B2rQmZ{Eau-os#aI*zlkbjPo2pYZSozHIx=
zIeBQ#tC+5>9ascR(AM5MA<&(_ifSvQ7d6A#)vjl+Vsy>Ym9TV3xNKZ0DX+_WL%b?t
zb#cz_DJsqtE~@(x8V54Xz=-+=)zsB{-izU~L&v3$&w#umtfp!mOT$U-CVluCZ%Isy
z!V0yEG#ICoG$!Wk(&#5S-3yQq!H6~q!~QuA#khg-##kxh5hz(s={@hE#B@;;t+Tor
z<XJX0YX)!=fT}OlcY+mQUxt(5tY*zeGLmx_0q%yo>w;?1m!?-#kozFOn0<;qCGz3c
z++;&?+eY)%R#(iRmp9S!Qo9HwtlK*~Y4#5)INs*5{!JifIH~Exy*FU5BhJkyZQO&a
z6&o69<4KpnQuZSaX;4-@IyHUPGw{?=l?6X0hS_RRQcAUbL6nam-6m(&js1<?b^{ce
z>f6IJo^hCm{LgT8AR6m}2ss5l4ZVUh5z`KVV&1`s$_=xu%|C*VA^edz9i*KQ)h|C}
z7J18$QuvzX-#<xqPS=<Il=yE^VC4HFsNT&jwTFlCL){ZPH&SK>(Z%?tTVr~N<*iNW
zJqH`?sg-TXU$Le>&A~$Jhds6&&Zmq%7(Q6IxEW4U_4T*@OUK8~Ei5$Tsg%MNYW9sK
zBvyBUWX<^x3fC18%_AS}9Hy@+I^XlvtyA*Yk3Ww@3$^3_?6F;=#2OOUyK5Wi%#x3{
z9oQXH%M!#oPyOaEBc;9lM_P%E6SOZxZ>*8#AVEv60M!?PA5cBwgvV_NCHH}1zyQzo
z>Z-55|076+-&Jag`P@j%pPU)zuK_*DGq2i6Cjs5cNjqw4VRfD}Gq-8o#rvhCW%YD3
zK+C4g4;}s`Q{78Sbj$aD%0UeLv!lq2;=2Xth8;sQJsgTr$8x2ZB{_&thRxc-=x-wV
zVO%R7*v3f=wc$LTYL?44AQ}+6KLsg3;+RxfCl2<LdU0M62Jzgu>#8AL!uL%7?V0LM
zm?kt<ZsoIG2pN?@00u7ShxI)@J-)+oLH;)6HAJHUt+loF9erHUn4Mws-HKP*Rug42
z3ysKP+lG<48KIn2Q?o%r@1_m3(>1Sq?5~Syyd&v#olm^D=!o(HoS28}1_mBORa;h8
zHbBh}VxDBHt8*LI%ROPpHIMR)q>1A?o@`6*%((n6EM)p(6S4SZ+SjawRcq>m{j}l(
zijrIiKQC1zzd8g*k-87zi1aKV6*~Tw*|)m7S{swhO9qj0w<FAzRN_cc^7b6e&UIe+
zXjPWnMZqF0>8y;N-NhZYy}V$o^(`;$RbtOm#n`yHdCef7RH4A39Eo0XnF#-2qf~qY
zjUl4O3r7fE%iAnT4ib;a50@k%lz-?RdMoeL_5g31)JE3u+xA)K@*(ov<XzAE_S<ek
zY@cYwcY?NyEEZfecV?;)8S|l`Pn(;Y5RTt*IX_+8-ZtGF$lm0KZAJIkv=+W8%6p|_
z#l^PjrN%M4g>YR}n<$oTu-RD+(GqTUrREWdeE7FJkZxatQR|tJ^NKIPE+bA@ODpMp
z3Dn+S(9xkqh<WGb<^88)7D*R-t!S6$8wE%RY(@6&TVJJJ5=vqDjAzeC?jz%tUucES
za#WsGJZ%ZCGi+6r8*JHxtUIVMFv<g!+2|v;5vbqE;`G{#JF~B+Co**YPk|`31QPT(
zJRn=gKuDdRXUVIaq+@LfJ)g&Xm7!tX$>P*O>gAnZ^>H%HbVK3_*fO_jX8s-?79}gt
z5S*WneNmdw#dDNRU)dY4QE{$d|GIc%_;Jlv@QT?^Okr7SO?ioF%l)<fNMa&ycHVaH
z*GA>2H)Xlg_J#Ib-jmcD_9^qAHd@2kJHEcY&}Q8CSt9mzRy~@!t$DG|;uDO->1Umh
zAMH33%oFBXRi91HeCJCne952@7*YPJl7Tv=c#BPDv}kS9px#cpZ1CvoHyb)&7?jy=
z;Y0NcZQBJ(q%v-VZ>)V`WgR9-fs(RugV)<c`-KPO3UXI(%EtFM;4>zliMM4{#*3Co
z^=Z*xYB*84GW_5_h8X1|__RsNsXZfeyrxj2(fs63>4-?AfeI0n(-fdt(lNbtdBf&;
zSLMt2u|hV#=RotT!Gp15JL<`6sk^UXwDfu9?s8vx+4x#*`bNwcD%<<?T_dkBmO{LM
zRegryOm9q-O2;E=64%pP4<0<QcW_`a7<d8p)p)bWFrdJnwN}!!-b1bQl;RRyI#+V;
zyA<{Ev0Z(~lvnUO?6Y|<zfDzEY{xN7?kO}3CvmMPwJmt~TOX(+UYpHKwG9LAD<d(1
zIz1wacCT@{VE!zi=~?EKLt8^Xa%pDyXlC5Tzo2nvcWL5Ii;XN(0ja0+<Jh*7yLj5p
z5RT3uvG}H@rY9wYr9gD`^nLz&D3*pnImpcZjmqwNUAhqQg|*pjE4G=;fjMiXA8QV@
z(=PsIjgQZCEyZCHM(*y}M9g5vp;M&_#*U`OR>}8op9cr#Tj=?RWLA2UD5+N8$$tEZ
z2VoS8ZWp7iXh}nJiw6T3=ec_kRh3+!Nx?Z|w)8~U*x1{@mKU~6TQ2#f?%3M4G~~LP
zefSjVL?oz$4V@Z-TNi5?BxnDkG?47i{wbjna`d&~45Q-`JVLmfT0(`wYKQ=wLa?z3
z%u&iugdB#MMNDgAu}23iel!0gEB(eE%>d<hw1b=c6#n&{$+9;5A<F!;gL8(Pp*AF&
z&mD){6wX%OgN1l$*OwB;DE@z&2khGK&P?MgXhT?2>|+x+Lg}Tin35v3H{;|FBb9WZ
zI~<_KL~H9kZ-K7@$#WS=uGu4hB_$>7tE#at5>K?(6!nOIvp0_`*H<<s+)tQqA2O9R
z%(FTjl;&IO8EkFMkPiZe3N2E5yJ(3eH=?4m5ocDj3^lU)h6WF}n~PZ+Q}>E=H-@;_
z=v}w1gt3b%N)mY5M*zhBD0h*v#*}nCCUC-b|MjAgrS0rgqUK?B_ZUu;!M^Sj>D+*<
zLY^e3yhZ_q;OPCH<YNpq+2M&otApW9PCK9D?(MB9RcEE(qO$Rg+E2ci3)i-L3qnun
zl<(A)Sx6(Isw`U%PtO>3GxhJSV3f-NjYk;9b6Qa#8QOHa@{cvOc(5Z+MK7!fn!56C
z2O8N?NJ&VbVpB-WK~+@y@^r7nb_(2&#pNjzRFs?N>fdRrA$V9N3!MzL2(!w;#l_-u
zObGlBwJh5w4~4RV6^>2}Os>^Uzi8DH+%lD5lSRqO%av1w#0saaL^%I9R6J!<6i%YJ
z`n{Yr!b;01Erp%O4m@fnEZ(<yT~j#!25L+F!farK0B=2T!E?yP#js$}R5wM_oS=Id
z>l|GQ8Iguo8#C#W5W_G^LwJ^QK85s^!ex=iS$O4+rLVRWG%nEEfkbeL=hFIf^cmp5
zrDNP6{gzRUf;&GUzKJ0IiPG&jf&{x-pin1%Qf4bJ1r!J<^yGb-g!zn_!{gJE#sMsk
z^cGtJk$~TnDj&>czl#YuPG6w1RG&QE1GLo8-kt?ZtAGn;4wmGD?ozTu?>|FXHiht_
zy>^b4nQA8}QESzE*ilzsTf?Cuf$C_U?f<K2bvs|91lmWP*8^;7o?XL$+0K>@Xj>`y
z180K(Wojrf>^pQ&KDzZm=bzPTm|ykEz?juFdd9UVLvccX0%7z>Yx&=fr~ji{t>>B2
z<()0HFSGuoD2W88Fe_mydZ8;16bjuY+^DkHA9<rjESCF9RXj647fY;7n}%j|Ze(W(
z)0U26TNL*H9~VI5nkiG#p!R&CKx7vq6sap=pk%;gRZFf-iC$HlOh1wjLZ6j!rY#70
z27j_$2gvVjk8pUZYi(}KhD_F;+i_$?F$_ZDcgAr;BO*VU8xlfaAj#Mj#~#e<a^6>J
zHjB?GB`Hhw1eJg-07gzftNelgSx2Y&^6b%lbaV>t%lj~kXCbe2#;}h-9@sCLO7~KB
zcF!5uKcufbMg4%Qme{w`^FSGKjJct+>@ct<1F|FbPEH4H<iSIov-1;`L+HfZiVO$g
zytH(5F??>f#3S!mEwy1GI2~UZx;|g$OQ5UChQ@>!C~z?xnaMUrJS4-XM)=YRBTrSl
zsdT1Cf18T73Wf}ca&3RJ{ZoRxCE>&qcCPL)B0wj`PUFHmF|aq2qKkMv`$WRfiH4=c
z+LG#oQ|k@qPv;_sG+jrr3puk|`s_`VfGcMc2fJU_M4=VtR|JL^qJ^VnMF$G1n_CXo
zXSk@mf5{>lG<sk{m?CUNuTK!%Le0APYRgtp2n?dAUfzoUD3$+=>t0%0GZ>0Rr0n>N
zf?hD0bjwXA5#>tmS^ur8pFqWM!ZuAnOEVa`n=YLs1vPQQTyzEo1`iL9Xm&GV_&2lt
z&(X2kC?j#THf5{ju73x;e2WMI&$TntI}#^P#k9M6i_A36CPwVyZ`u<j1boH*a~cWf
zltj`i@Bf(THmBpwOo_BF_r1gsE|~iF_K)8nI}0lQA2^=0f>Ju3YU9=6j&C)*e-&em
zM*0C;Sg^kG@9EAn813@2?aqA$oplZM>s|5AiF;-q8CFNr)XSPC9dOz?c{~QS&QQcF
zf-)cyR6utjDU1}5P@MpkEgL=+whR)0$w(q%-K2BnH@EsKQwbmtr!l5^#ai5U0QD=S
zW2+|+TSMvN@p<=R?nBN_s480b4muuRRR<8wbwf0!Gg5NZCkL7LzUr3onJ`IlpTXHu
zixM@OOt&2~HGMwd2q~za-L|r!0Ahkz9_<#R@ff4+_LS0s1qlfWy+%#$h1I+biC#~9
zJG>~QZj($f4pfCLHVy?oPNf&>HO?_Ga(dm6$|!HMq4kd69}|%+b2F45%6TJsQA(G#
z+I`mOV03NVMy~DVkN>R5C_1dXv0nWES2o^7-Br+ViFhAKizr;~RG0d~3fE`C!ot-W
z2u5AN+S1!0QU&EV>|Z4G?h)on*mP2%+`EV6N)!JT`5yC^rZ)V7H0dN>Btl;2vNlqi
zz1bXZD}EhUhNwsyXJ_YUZ>*_+p1}><#w%LIRTe8wne@7%WtMT9&k0p3hwy(+viv#?
zGyYJXD>t!6?68D|1T*#uxD?)v?z{erP$>MZ-;}S$)jn}Z_DDmqOTlNS=tkg7{I0rK
z+n4G77wRNapLVoBMI&>y8P@aYWW<!Kuh_xahGlj%H}-q%O(&d!J&KQ?{q{qe%WCiH
zc++h#icj4kWcVYG5?c-DPLQ?U_~~+P;(Gfvy9?+3$h*sf&-Y|`*SbccT%vEHxjZMw
zJ{y=e4F57#zxhWJTYH47lJY|+Xf{6v=aKO1#g!H1y=@V@37m;fg}+aS;wQ=oQ&13T
z2uLnqfixhJ6y|1}7=5Vkec*q|iA|foCE!{I3u}B_SGQU!u!r1yr->0DoQl@ef>+=D
zq=x=jskIktO(1?-P>8Y!k*hce`=QgTO_i5##-8*USPY1(*3c2!pPVHQI~5A1L3%at
z@X#8LdlksGd4wM)Ur}?b2q%A-TU_*1&U>FHZ?!we4~G7&xjEy{n6G(TPr9R-kV}-+
zetrDZzwzkc_*fV6locx=NJ^v00|T}Q`<3Y=HIJ_K`5U21@`u$4THd#L)oehbE`7QL
z{2-Z};ff$NxEy%sz7imtp6#`gbn=Wg`{Sm{=g`<V9r!c!{FKX)r;0$#x-;6{fGqOV
zEJR=k2T{e=R-%bgqU(MRvAdU#&mi!}bbFk$<P8l*B#P~X=au@?uGELOlW#>_RI8pI
zdFLq>riffawe?Gb*8_m&A}54fNJqavH(K{1i%o}2glP4Gb%!FrTB3rpJ3eZ!^2CG~
z*9@c+98TwbY<hFLbi)~HPM-tG=T|!QcfP-&XuW^4%{4NsoLS8-9X)Hr>CJajI_9(<
zl5LwI96qa#Bk_)DU}}4u%;EJeH;9xaxIaNT`oDn^yA~#bZnG`i13f`m)d>y`?lcHd
z_;)K`VrxqRzHw-%<LQ%nch7(`KB!ys;MGf(5si%Q29`hPC$kXk+>(<Y-!PMVt?073
zJ{?<wn({6FyJ)&yt5fG^pd?7iu2(A^d~JMPnOJ&YNzJUUdddn#N-PWB<f*?<OMd}I
z2nz~!)-2ilER#x=J%@pJa6lORs%mI;hX29%#|SV+Qz9XKiny7dsQ;SHqSRG6m<>-@
z`1hg=Y(Lkq$1E|Mt?7zpN*$6?viMe0b84LU^Cu}-n=FFY!Qa1shS76(?%rL~RR;Q{
z#qL}^HA$s;+&4e?&P<iV%ZX=vuFf&7alr6Rd-KiP<@7UVet!PuY;Dr+?k;r+qLPec
zJYIz74)cjLzsPbm-fq69+j(A{ef7Bf4})9I{`o?2P)VGK8H~_B8H35uUsKAz02l#Z
zoZC^NphLGku#a8`^o|a0b%XNu4<ydJWH6ZbA2<tD9w(2aL?gLvHJ_az<M$iskzQ)D
zSicW%lU#lty9S?e5l4GMh99s?WA~ueQlS(p9xw>6B>rAVT$-t*zBF!k5dpibrLS~1
znM{PZvvSZ30a;{5uFhNAB=N<FudJoc?wK$e8++V#*U!}UXl#7aXo;ieI1;j^lt1w}
z*sa5bWLSV^i{RFQjf^%uIh^?5tkw#(rHEDM`s(`4=;&x!y~|I>N5sU$|3>V9A~rW;
zQm>qbMo-|lX|dQ6;k4N?bQcp7vkuI-SZ*;M;NrDKgP6ED7KeRp-t$%Rk$g4rU}7Fa
zlehd3rA((w^uCJ;)$7~$XbmP=L69DSQF(oJZ%ETd2uH)LJa;x{Vs;WI@14o&hKsW^
zb#7s<DwFwK-E;9YJV)a#iQNwB9M~?vP*q($UTT(P+DG&nd4IUDKDE4@Gn_(lIW;)4
z$aYIPl5V3ttd&RKP_Jh|tyH8!#X2d1@{&-Aqane~tfu{*ThqZ#H+y?q`%1M;cebiO
z&?AAK*{=z3^VIElo0~rSVv6L{NAB%?WKSx3clX6eBtz8?b#xEX-TPyoNfNwN@2*ZC
zWi$EYIJwl)bUgDYmVz$t8b42F@RQ^_CTdX$)zD_NyN{Wq?%cw{R6<d@``OhkV1)yj
zg_ijd%Yj3!dW{#$O8gEBxn++-k5%GM^8$q`tts<*nLyDw?!mW(U`o?P&&7x`bq5Uo
z8P5Rxdq+u8O%HqqO?_wemLu&{>S^0LXcR6gZZil43LT$Byg7MkV|V+fm|~8CY!1QN
z)<cK(#z+?U`M1lX7ox=8H6yRh|NQ;yCpQEv*!M&#Wg?%XXMpASX=5>^dU$s0)=wC)
zJE>hp*18=C8)}g-NEF!8m5LiIt}h)Rra^&BClj#l4Gy3A`s!=G$~JBOHTw@4$#529
z>&W&VMs{{)l9OpD|H1&w4MTl9N?9@FB*^D?Z91FO{_uj!*6e|mYIFn8`OW7W9Db#x
z%`XO@eEHYGap_pk$j#e;*J<~}klTiE_b1h++ta|hXJ(YS6Cb_0v;OHDZq<#fR5Hkt
zKK~LH+xGSay{$c$E{7|V8C5p^_DR((G>)97QgtN@%7LPo3Uu*(i?*NZc^BB2uu`#}
z9|-t%iLcaXyFRuk5Ba@KE4b_(?c2ZLXi>OmkyrM2bVq1?`-Lfu@oe0Qz&D`qXXzUo
zH(j0`%r6cebYr-@fo_8+zr-4;^-(3a(j5$~;H%8`!)wR0e>hO8;)Y@-DWYuv=-C83
zD9@kcKYJp%rC3#s<d<$s`*6!;9_mjk7DtA>EkQ&%QDT!dZCzb=`i`>FS@e1iX(Hil
zNLmOh`4CsMN8jg6mrD2s{0`FP2X=(^tVk-gHFQ#$il3(aEE+$JvJ`avXc(_Y>9m`v
zbDEucZ>4hYx@c-td*`b!3NJ<0cT|ameRC8OX1)g-x&~^AMXbt~Z{AF47$+54G;0Ue
zIu#ep1dwfhoOHFTVXd7k^ZNeGTWo#k@cFNJTFtPDCQGXWB&35CKAj;8@5FEGCRB+I
z%Xk)SXTtrnTU^)^U!ilxQ1vuR+E_cYu#%j6V3Ly_X{_3b9chbB^su?J^ASUB)omDP
zT8FFQT>pX<D>Op(b;)7`k5F6rxL2PH{i%MMTR~~H^%^tM+*(GUN(9ZJd61vqW3xl4
zI5sr*<3&TWLpvuE0N1Z49PdlTb9~+{ti;B_Nn_0i6!7H9lR2oSvaX)WW<6o3y<`Ta
z>R0&tHa10OKDp~*85hMx#hiET)8|)?$YMq$6j`@4$3IDPa7}#a|9jh*%jO>cJCyk-
zX*5>-TtV%cvAz)Bwg&IEDx|mZ@l2nk*+#0LeObuN1?m|AjGLZcU-tvUhG#Mb)0H(Z
zj<?3Z%(UDcK0n%M9v$AAt*z~3HaV|!(VL&2_XP%tvvZXq>yO05{G(81m*DBivLWo{
z@87?3I37|#be}Q0_s8LQTyK7JGoY&r^))*?$Sf9?QoO?P6G+G2PEJ)d-&ZK&#c5Kl
z_<@EL&0TIZ@0kn@P~?n^m;f{JrFrk(x#NqCVON7i^yJB}qvbyp*QN#CkOz4%H!tb(
z)+VT*li%34&<R^%#VXF%_x>Fe6vM+*wjX*)S6D#H4+#zZnx5`M$Lhng>>h5`hKWnj
ze1fB<g3F8hyq@xg4IgPY$1U=CsylWWcBpOcFN)_yx7UY9v>jn>2&B;NKVa(WzMVX(
zrK$O|Wj`~MiYlUme&gPqJJ1@`08?~RORdZ%^${<x=6s!oR`K`SMIOYD;Oc#QR+&)-
zHJ8d4U5_3<3>diG1dU#>xS;_?)gx{yBazwkB`+3M%t$@qUG!xtQj5YyVVbM+A3tkc
zuiiilh$kr4yXR{z{vk7ugFK;KX=ndOc>dpKKw9^#t#yk6p+S7|MGr9EEtb3R1O)|s
zcYvsH%dF;1H;U<y$5z_HfNNH%(v}WfT>5BX1@vgp5^^1*F|)7$yIb17bIZhJS0<j%
zFI%O=^km?*bUcG$6G^bbmo3VdZP#1&9AkK{yjahf8Q8>36ms6%t{Y-6U+3SUoIPxg
z-=j}Q_c>onAlDhQE~{F>xzPWZi!l@Az@Ze8+_JWHDkvCiIGSHO4{cY9mB*|IB0rDW
z+g}uvl=mPHi7xQ&-QMiY)!(efHIEgW$hE^^imo%Y2U3?KxK@<Avk`4iz?eL{nlww+
zH*CES7oI;ln{k=AhRj$qkX?4elP>RwM{>^|pa>>FgVkJu-3-5o2-S>h<<1Hz3wDjL
z{AcoOlSo|K{9Tr}UV=je$VXK{TfC564v<(CHpvt-EHX|`PTt+$7Xa4}BY-7{(6O-a
z+PQ=~e!>S5#;7D=4<VVa4ZK9ETWbG!NQAHSJtX7<P^s^LpDnXmkxGK*A8fv{@rgMz
zJUNaZIgIcz+C9-AKhK$qR7%C>*VZ1G?bK*!KE73#tCamffrXh_g75)+NaHI99$P)R
zcMD&9PNIUGf4NLmDcy#m70}X^d;3FKV>mzBpohhbpIC*2g!Y`yHj^VE-JHmIt1mu(
ze$Wcm1uGN_mQN(7rXmC3JssV<E86@k6n?c9M0|bQp3QKoq6>ZGT4?xnpJ@0*xEKZ<
z_fJisVqjn(3kr{DkL1Q6ecEazZvLkC?RlLMX3;}}!V}{X-go5BS^n?hubyNJ6QD7D
z#!?CnC6|-44&KkC138WI<a`((HrlAMe%fZWG&C}D8!3Ef$c+5`;SJ%^=%a79kgj*c
z<v(Kgzmt%~hUb(~BZBX{L0JhnNm^mCzHJXT+hyhATDpG-EPOc;xv-D^bv&e^s-19X
zfnG$>@F?6x&AcS#uG<@#tkzZEws<B{NkKtvL4lVgm0WNoKA@=Z8yV%CvIq$ZMpCZm
zV*j7kFf60NqFlHkB+ZwsYpo$<@A^hYC}uA0p9ruXkp#2AWvCIigjb*c?#x#;JfMxW
zU1ZAX!JcUL_xB6o%)d82)O=4R*UHYxK}MRYu<2|H4Jkj^$G`1P$LH%yt0ZGXgG5Td
z*`Jg7)rY+umS-G3##JgMd-rLD6sA%KR|Vsy+iNbE>phX5Zd@s^nwJuEug*dy-Cz`6
z{>G`Lc2N>M&dkmu^iJD()Xxa3*79LW<CP@Q!<aFx;4BJ>Cyo!Xd9r<QeeD>bB>-Fa
zouJ^i-&CJGew2KT9_%$Dn}3iGQ<GQ8X^SiyINK7quDI?gF*RcE-Bfs2D-GMzdr9Lx
zR^p<_YNuKbuyI)u<@N1SbCyLZ+NTbQQ26?%vy^e97a2Y{^tWkbi(~mdb?&4kJ`$;o
zoj}Kke&E(E#(tAqQ`2&yhRN)#{i)fxRcJ_=+1YFsFW~G&`~@zOs<4+EK2Q-?^B{-*
zERr2gN#%nL4ZoQs{7&7b8*1rkKBx{p<dYV5@e&r)^+V_wD(&ZK+BWBxz8aiq;$M`f
z(=mF<Oj;lR+EVlwYwJgxJlsW_KhA<BMP~PG;|rUF@8nE*;ONH2#z>i%`iGLE>0rSX
zl6#KPP2#8L&!2amFp74^Ej@Zl>kd1;vKkqU&fna_JC8<=l$MiRE@$^=pZ=apL<2`4
zrDlZGS9`5jtYdoR+7+n(vm-(w`Txh%TfkM_1zW=h5J8a^kZw@AI|b=(DJc~xK|l~G
z1xYCp2`T9gN$Cy+>F!jzBqYB%KKI`D^Y;YcIfwn<d-lwlHEZ^+DMF93{m}lH=g|#;
zqPSZKgZjThFB|yhbQYqhu>UZ)nw!(2qM=nZ5EBu-D{eUb-i3eIXIoq!ur*b+1T}n2
zTwFm{ArIY0b8xWpKSK_xVOEI~ii{p^;Wi?777fSxrM>FDJxmVA!y^!aRhN%aiZP=t
z=H8KQ_U3gM4M<$fQsc*SB9}<5d&5b|bgtOTE(AS#*lJ+d$TLTIf-DT6h-{JKlUiIX
zu73Dfe<i2`jaNIR2d978=Htr=&o3$x6Cl9XJch=gh532k$;mfU+vz1Gc!*RT7FCKH
zhq5Vx-$_(FZ@qy?f131K$Y?x>6vgkXUY(9d-R@XgmJi|IRi|Mx_7;9qVX=JR89kE)
zU(xN+JAzz;P^T4DU?6}hAVzO*Zx&AHBG3=mN}2mn`NhzqygO-Iye7<Y(f^bPw)I1a
zT%8c;QcBATuqV33PD6wE_re^g&zM_U(lc#ika^AB^*M6V#qW%r!|tKOq2s{;gcfu?
z=p;rvvV@r&)&l<<6KU{k&S0Wp_{M3u2fOqFBfe^W-V7mSYMLBOPwV{hU{w_XQpzg$
zhK|me3kqV0rj;MUOyT}LNez9{$zJE&h^AQm?e)h#vR299chlqOom;aEQoJwXd-bTT
zI$(t#*$tK2EL?L!ZTELAD}k>Nc{b0?;W{=-<r1g%WsV<RJO=kaoPvBs1~__zZbj*?
zy#9!jhDKy{cu7*F7l%Pfs`^HLL}B5gf)S$@yvFqP7QfTJ+(I7&q1sJy1SI1eMbXL0
zvp>|kO5hxJO(Ubw)KqRqpix|fWMwm+0v4{{;pNj&(0Vj_))0og!cgo9R;RlOoL*ew
zbLE}XdHVBAMO}So=u|xE%Egppvld>GSXX-RD!gRp<is5zWoAYLtI&3k{w6go4Ha%8
z0n+4cdV0F)(cev3w`!ru#rvA{A^Ap!UtzH&Hx*UoxStlV&W4jZtaAkgUH4~B)?mzS
zycqS29!9`5L<n+nazK<cuySi_YY-8A8yg$tBsYLDfFB2mGac{DMF5T}JgWm70>7D$
zNr8Z4zUWaSM^TkoGb#lnP3g~9kQ=0_smWBesNC!9B~pLBcm%M|putlZ8qR`2^K1u3
zgv2UgVc3uZhk{LsPX=1iNS@PRAiAt9{{_RfDNf1yVBB#1#f~d66rWu055B&6A0~hP
z#1R%={hUF}_NajZDy~EkOR)K2CQ>_IHN(`G!YvPBuLS&^3G5da7x8Z29$uM7AU?4h
zT}Lc_3qO^3r$_+zRlFXVMWRT6u!LhoANrvKIA)v)x*+kPA$3uBREjP(|EF}v`=~Yh
z6aj&}Pt@J9HhU{EBIokUc=cPKgL*Jn!EA%x+kq@{_uxS0*|U3a1&s=2xE{P;T<;!Q
zf3^EfTwHk_o!b)UyE1!+&}NaInu-8U7awjBsJsPx*szmmR9BscnSmiSHC3v>Vir1`
zp_47IR9$MsM+64fcs8@+;pu}!x{A*i?jKNJoybQ_;am%-mSUhwdjk-;h32fHs;V<X
zF}i<vm@oDD$Kx!eZwJ`Rf^(jP2tJmSInM)C*#{4vO$+Hu9=Q<%Mvk%~uAHiWT~*D-
z!BO->0u2?l<oTQgtXsLhx-mF4brlb^yn{rL?c$7I4keMU%l$1Qq%J={35R%BK=i+U
zRAaQ*tLM`<a~vaYyr_3jN0D=KLN>@nfJ8n)B#~p7)xTy)+g07rkPP9HYnKcixIgV(
z3O~okBUeA^?3(Y><X6{`xRu+%gk83$JySUr4t6Gu9)|GE0O1>8=K`neuq{yq4WA1E
zoIem$P*AoQZGsl&!C%e+ol-LmrUnK<a4l)w>3Y72X=q4D3!HIX%a#H)$EuB&Ref;L
z6N<Zg(O^;(z5L6wQ>oabLJ^FC<FI{nTqbp~J#qL|qalhmJR#cq9spgAZK*$7e2L1S
zvU)y^f%0CQ3jbjx9FG7z_Z|6g3aUuO^~?UlJ6q{w62@gFA9oE3Y2##whG5tlnwoDS
zBk`amF;0Ynj&3kLaqtO3>i1m|zfDOV9s+8gIufuhMhgpz8Vbu^6S&sF^f=p_x1m5q
z*JWj6BY%v0_*k;v@U_d!zx$8jVlR3jA%h)BQF;cPNNm@)=P$81V))Fz7Mow<;te#l
z7m&w?C4TNDo9n~8V^>}ZAiZS1c}ZSY_7tkF{!kY9l9zY$k>}pK+*Z>5a+BNZqWBJK
z{!07sD1`FR+;;l%G$F5q+2v!I^wADvb8zt{3IekAROyZqhDnF_8_3rW4yvIc=;)u4
zTV3(W<rnSs&06zyT?Sj50aEMffRrR;_{nJ!xYUh<`Y@iOPru~J3KHG~73d?&jq@O5
zX9{m~^zU>MJ+|)Y=^6eOR^<9l{@J@ur;0-_=rR_Cf+m&l?3<#}Qv7GnvKN+@txB+D
z0UJ{;tPMp*1=Jq7Z-0AmN6ek8;qNMWsA~01qHehH;rD(*r5^Q6;aLxFAHse7iOQ5m
ziq{dT@Ag!Dyy%Fq!la)wUhDK-lA8lRiFg!Mt-`?Zm+gPwrVHDddn9txD4F^OGe+zA
z-H1PqZLyNnmgQDL_zz<toi&G}7;<uQnqb%1uRGql|J#<5goK%c@JYcKBOTp+6)6&8
zVrYw?($v&kM9(hi0|ywk1y{Br5M+e+4)wtYH(YwmpHD$AFq(!g7o5NzFGL2G!2CeF
z*5IRM*Ee_Q-!4c?FpP`T@Zxy@J~nBC8a$;~EP_UD{A5s>({<vhg+*F5o47b7_z#2H
zm-axXyjFJi*aXJKV<JW3eB)6!WSme2_OGuu7wJ@c%E%w3i(HQH_g;C$${wC(2QCKo
z67Eq)$;_|hrT9Gt1FUOwx$QkJ7G*CH)RhYMhk`)L0-Vl{><Q%$O0JwiM~rmgmtyNy
zeoC1Ha6{dqH}DGsTNw)QEj~Uz=&z*V>5v{8uut9(5tsq8J(EUnN~KJ#;tLAU+S-PV
zt4@^Fl$YPez|Cp`-wY+Ky6#09I=a@bd-kZQHN;WXcaG$io%`6|*4B!GV*g&HBNzX|
z$;{vLR>+a*2d0h41s!DX-$#YQB**qI096VK3jH<S@Du13WiG0P5CXx+nju-xVLAx-
zA?rkD0QqKf4PGAgiVb!XJOw7TdhbmX;yx>Z8wORG8C;Ou?;P3Pz~M+~h4pufSZBC`
z)Q*CVEY9v@eZ0t6lbVTr%k*5#{PO39INoG-qMjMZ?Ml`hze#tF-`?=6vaC@X));c9
zUK=Bi^sYyFS|m7c$4O1N|FTTpJ(9J>&zPIFi)iRPY-}eX=y!U=OQe<^^Tv(lsprpm
zT!okp02G-+WSL<qDV(6b+@%^E8bU^;y4@Bn?Z9-xz74jawS3jMgIa>blS0l_wfRQY
zC|Xa)I)cXYKTM`6J7JLf@tnBF$H$M?xMFQ?Z9z*trq9*Db!ulCf>Sk!7(wc`QCY`x
zS7<*Ih5g{dGRrls)?`1i!v>1Z#$x&JlTvIqWA3=H(b@8A^ljWacz^w21>_laA^hh;
zfI6&h^U<8%aC3_PW%iowR+O1}(7M^EV=<a8_OYgp7cTODBaYNnJC)}CZTPLzl=CY#
z5#|xXO^?>CPke)eT-;Y;bnmjU$vQZ2NL;#entH!_mn)No!o<r<2(ST)fWLj!Gzjqr
z(nZ;UZ5cEcf>mo9%;a1gQpcU|^SQ(#ARri53aNp1qn7x|OHzo>|D6lK`;-gnlzz-P
zC}w$AW)xQqRNpdtAw7FY%9N|Pv)VO%Yf?rP7D{+lSnK-AqwL?tovxAW#u&mpH&kWO
zW+y9(&07Nw6%-Yle-EH|Y&=s~EzZce<8$dufS7M5iT$@Nd2T}njF4KitCQV>3#~P@
zwBD9IE!&N4JV%$j`r8*KAb{-&oj?jor-TTzwLy|Fp4DsA%m^v(S7n+V^l5MW#B;mt
zZbbMsezqAOrIVHI;PO0i1QR6o%`0rp)y`HS$HT_l+S&qr`+a3)EVwHAE%dd<i7<eJ
zi%eU8jnEO#4O^4EI(T{q?rDH#qhPqPJ3U+#E%sEnE5hg85-RaycbC+5ovtI6W2^2w
z7Na8*ip!`p`yr4dKTJ*<<Ux;Cs}-tB89wVOX8q76|MlA^baZ6|R8(*DO<$oScC#ff
z@Kb!e``hqI$AH`!kEn^x$dLR3=wm3muSwl|Ut2p663OdYz@MhA>zycvUER(J{b6>#
zAKTah*G)L?FW;y;+ZMI9w&t?Am312r50R<W?LC}y{<lx@?%nEexX@=QTheR7dMPAk
z_;K(2Ls~fLxfT~~3XY?ts5Qtf-E4nFU&=Dsm%4O$)XIwRP2cHVCs2OW+4s#f@MLQa
z1%VoX+i@g#-?iv9Lm8@KH#)*MJNZvXz=|am<GJaYdt_Hhh54t1AU1is&HL50%5ccT
zjwPI@pmBG-<i(1TcHjfK(ZRvD$Fox*o11pf5JUhcuJF3TsS{RG_lYVRT_P1ba4|8P
zR(l&;k^2ui8+KPeH?|jhA71zL@&Ywe{7=xPm$+^a?@=sEUJX_MqWKwKiAlzTIkqz`
z<Nc7A3CB%f{Y2JEL`93d|EuaRO{2N2sJq0U^ylpPtx=B``O%Xp@>3MAE3r}^y=7su
zmHl}r;(z^{t%)Fi{{3@9&AGhTJy&x^e*A}d5P7R>YnSSeD;E#?aMP-*F_mK*f*|a~
zi}3Nhg^MuZ0%fAH;wxXE^eo{F07oZMp)v<T{HV(t7dbNW@f@_wQ3|`;wV(Gc&vqc^
z<U3y#ym|+~!(yT3mkKc<=~$Ae8}d=kcl{i3zEXjZUBH8aFhDf_!|)0_a`WIb<zg>a
zQJW4Vq+a*E_?#6_Lub~y&wZivUQ$@^ZRptTlV8DFg^KHm8?JZRY;TY8@<C44_2Her
z|NM-b;1Z|LUo4ox$mnRl>|_rz5Hh`sjg8H1rAHHXTD*3-7oo19t?joq^wbOvGbkzJ
zoxNrV3qj^=<$!diG3Hs49amslQ252bp**F4{IH`tnz__vEfo6FcwMcnq@XLLi8%%H
z7tK(q_r>+-BtIy+wtO)@%4GT~01F@mlWSa;)ugTN@!8H(CbC+X&g{f2>BjHp966H-
zbzILgqCN~G6WLF_aE6glrCl?q;NGZ9Ufk{s_wtKoRySL03kD6TU*navcA$cXmW~Tr
zis$}~uVrN@h(57{TbE0cqX|MRutAA~Ln;5uj%1yjoFLG5zClY_Tx`c0|H_E3E+I^$
zE`E4BOO;o3fQVF1QxhK!+u2zZ?gHwOUTxK$<^H2}TO#C?6T*~BDU606J8v8cXg;^H
z_AD+uc81;SzOMLOf!ew44PoZuzN<1SKCkl~gf4njBu#_6>YE%vp817U<Qkdl+i>F~
z-W@TZMvOMZ`n7!R;NTXA)tYM*(X^ZxcA|onYAYIE<nSsiD;{|{Wg%Pt$o1(BTWWdh
zNYPLBA`wjse)vKyx}Fh9OGKE?w%qcnvY)mmp8EJhGtmN)DsA?=*Y)E^E9?nY*g-d;
zt)_iAS9{`So65?vu^a$*a82k4Oiau+a2bT4x$Q201N7nu)~#DD&%F=GtsXyy&%p)3
zI~Fv7pn`0S+kTP{&QHOHkMgS*AG*1kvmva|<Oh*B3;UMuoZswbJAZ&Zt&%JnRs_>^
znm-m)YctL}4CY!bKW{9+qnFqX{pBc>4mT-~ZQ5<NAdi~!c1H*AaA$4neLs!c`Q=Ek
z$Z>A(<nap)qdAssbp@-91Y;-Na%z~U_IEqB{HBs09=@4874R457!e7NOx2s)fxV03
zV(;@}F98+(ahRb|W{zboF5OoqH8nMZQVVoI7@?3@ARhn@NW%E|X;xP0d*l4(<}GL`
zg(E7OT3ZQ|ld0g^^3Jy48ET9!J~DFhs862)LT-*2<G_Im1~q>koS$?`3OHE-$DRO}
z_u&x}2f$UbOXq)`k(Ds$;R=IqTW4pfl9RO*GLv`z{PEXed6%92@trK%I8t1psX4Gl
zVRg^@e2I}Me3KUVGKAEg-;D>sT_RkHa5*~@iO%s@-}9zckXrM+n)x8bz)0efYp`u>
z&R#xxvU>k<afdeZpGa?~Sp}!~NPmv%kyK~VFTcu9uZ843B-(X!mg?y-H=GKy^3un~
z6~qWT=6PIz0kb?Tg1=PkBU0IUGO_I!R4~vLl@8}$A^+t>vI!&{#!ZmUIWEc3I?U9(
zgVxPw1wK&nBz&M$k557I9vmAya!Ye_^Y8*5KK>ft>m$3KWN~s3qaz<2nGHgZD{)Lr
zmFB}&Q^O0I)aV!(^mKFtQBi0+6m9D3m`3FDpVF}Hx0Hm&_YzXN$dFGv`Jp)J1|jxK
zV%QiTK48@_go@9o`0Qf7HqMK>L-JwfbiJ99%hR!#V4IRMuhHKAkcSOFYJyb2?v90}
zB|bSh7Q*`3GiiH!cDSof0~i;$lsCQ8rLyIQPtRc!=Y1P)%eco!_;wCk$Xa0sxjOE<
zvZZute<t<hw@50Ln+G_>R%aI%S$B6KD4w7ofbx)6Rprmiw*@yBmO!?Y;-fJa*D4&8
z;)3U(Gb7{V%KEkrBOY=;9#rJ6U(E90%Pjx;ZOSTN!-=h6j{1IRR0AgV3wf~VlhYRa
z(w0|08mJLcPp5FCVx+Fl#u&RA^swg5aksOx*VVMJg6$8#JAQFhe8k#>jx0G1E-x=%
z16>$0!DI_imjB-GUP=)z5kdbFp^C^<-=VnI`s%T85zaoTMzk@2_IPB+W?g+?%hc<f
zTp3!d#b0YVN?K!FkP)%RWeE80c{>QbEG5tn-KbDI8JkFFh&y}`$EE4DC}%=Qlt*aj
zO3_^)byP7)72ON3K|x@seGDO_v-wQ%m2*5g0XUB>rH8zi@r4PgCn*y*#Uv-t2m_DB
zFwo&w;~yrc=+tvoe17IfOP3DCQ-r_Lk|haisrlbKNgMC3e`{^+MM1|UXkUMsNsNX-
zm9HjaQ!{^`%yf5nbuD)mIjnzRAVp$nYU^}j%w}&mdUnQ}%Bvk&*&v;I8f)W}SwQN`
zVtz4^X^12aa~{2L5crZ)Llk<yw(<?bSG|Uo<zW6S)^&QiC5sP}Qr;Isr9pF-lxeeF
zzdu|vty~k!dVkmiKx4OO_=}KZ+U>@R-4LNy77$@5gfv5Z7yS5{$oOs_ve-zsOm@~5
zzQ@6SLBgzYn@MG}yEHTgMyO>u5pBt6!W6d2zT)?iS^yb$WaUy#AF!M8!ypgGAeC_9
zl79o`L@xP`5KX#y^AD$b_MeelrKLFx>Av5z)1Uf>24|*fu?)MR2XZ0ZzjOz@<HYpn
zn99*li$q4BfJ?jSz)$1opD)LA4uM<x{AkC+?u_<Nd@|2ydM5<Qq0*Da#z(D}szYs$
zg~vAV8ZSf(yf}YFO?sC=F~xfRUY?e2?TI3Lv0JJKQHAda&?>`^0QqYNO7YFR*X9oD
z#vCH!6c$))fnc{j?Uxxs`wi<Uy|GKZ2WQV1(yKPlP{3iDu*5%#6C@xhzSovK*^=_p
zg?&uG8%DFcSQlk7N|;xQzOJ~L47LS0IIS?mu*t@Tj&3~y33CxXSar?He{$+(C=iI4
z!((8g@kv7qq4+U$Z+H-k9HGRjt7|dXNpZ;YGpgriQt`-eRr6AFb9S)^Rry)TV{p@H
zC^7>DdDo+brs9PNE(Y};u;b++X}2H+$vSH75uMqFA4)cKw#^I`L<cU;Qubb-h2Esi
z?>ve{_|Bf1NBq&#{p97fP}#9>lG_gPa#Ob!&)xvW%D0Od!KQ4?#;iDFLR2viW}KvG
zM@N^oeOou*@bO>eLv03Gs~hl2E3fhG){qMbJmW}g3l@ULtkk}O(u#4MyCtXYe?$$j
z-DRzBMtg2!+eNHPYl=r1KHdyI-bf2XC%VI^M_EjCY4Xk2_@iDH`Pp&1N3xUcxTZE_
zQaY%8a&}OZo#a-uUlCxVw%olzhF-r`J41q7<K;U8rIPDZ!J&^6E&gP|w9X<IP(Or8
zHzp^OLNNHxvz*UpH+N=a9$$FDHYh+$c|}fGAZP3i<NuLo<#8cg_PWC@PT2>0f%VAE
zQq1PcfkEfB`%-(R&in^1-A2<?g;k}H6CM6Q)BbMMiZoNWtR&P{Pv+ejA<Ny1UQ3SS
z_TUQmCOTjI%ng}$U5a*KTu}*MBXYGDdYz7+l9=C&(aE|8#{{$IF$=;T4R_pJcJj+%
zEyhq>&%2Hs8w%7iD*w%T2`0(pmvpxDnFqS9UdAWIdzky9NiNh!acBWhe@99oBD!di
zsvbx{<LzkZ(j)*uYwA1r>0EKH8%_Q*AT;EsAuFk51}~lqpdjwceTxIz_{||)*k=zV
zPLF#DU_JA_s%ae4i8_=v<lC<B_jEikly1Ay84To;8s}US&g_Mf0I%y^h+t2?6g`X+
zic+*m`)T|T)?63K8?}RBrM-EqnR6}lK4TV+AAGdkZQWeM$KON`1`~65^<eXmP~GUZ
z6Th2r9V=Jy(YC;xy!V93@?2i$%&I{8d*Q($(mpYX+Yx&${$R0PHl-gDK*x)G+mi=f
zcCKP~Gb<n8<6mo@Sv?ysxia#+Fv%R~ob}x)c|5V??!Atg9s!$5RyK>CAzRpqPE#LZ
z!B-9yt!U&r4`%yZ{pR^eJRE0tj(yhH`d&)?{T~;BhqsXLurhw$c}u?QE=lDNy1|x_
z;20n}+eU{`@Wffv5*1GO58YyzR5kKD!EedRjv`CV)m*u`tu$nj)7Nvg^pI`=<KJw3
zNcfXko;5K{i|`#dHG}#N{K0m)&&WUJh4<e}pbC51vds1GZw8uLV9qvL82ID=pJ%ip
zcra2Jca}_%y?hAOXqbo~wp&1*7hwIbRahAoZ*sIi*;@@+i-kWP9sl<+NDr^_3zQ)6
z?#Sx#1rUEFAURe#y02XSrsF6J$M?4;q`}ALKVDK>N%5kJbBp)O6rYLdYlN1e^LxxN
zM{yJBRxN_u2H`vQ>oq*>(@9_CFuE4OQ+CyW>w1#E)ZD9MB!Me+olm?Utyms?%{7IZ
zqW&lHNq{RboiMrfU(p=YRn@sNJT?EQl!|7%_<RVkbacFKN~XB*3gUN4DwH<|d@Y~a
zqLIiO@m0J`-803wj=R_{8O4a?>WGm=gZIh<!{PczIj0(D%9MMTgPK`5-3&l&Kt=co
zvMAGq$~J3?Kp5O6vw@=hbtXY(QRF9GnnImhmN*<3Yoq)puV`)3L_NhRp;Y{^#2LNf
zWd65n{Z4e(^xcHXy&vk&7h%!}NJKLVu&qAhf@kyA;H!`s82-6*PgBqsV`5RjH{cV_
zJhwJflmpt}ISWS?OtWy_6f{k|C97Pe$!BKBar;k(5TSQU@A5G;x0NTPeM4K*WQ@+6
z`oA(Y6zU#Yikk}~+L#~HuomCnu!Yq_eNdLySJW1-XhUa0v8AJ~R#n0JZ{w0h4?kgZ
z+F_&+c9uDp;CLyfhZLj<AfVW0<p=jTnfiZ>Mj!t>>RB-BNx>`Q>G8hzw*Rt>N}Dyj
z15J_q3BBx-#AP=d5B!%@b#Ffw4#<&41pU^;WS8*2xekLgGMQ5`=?sAK9U{j&g?Y34
zI)a;&og(_(95T>>g&rnd_%R$_AnT26AU=4)0)w$yi3ug?`k%VDjJV15>36$7t5!dY
zTq}IBq8nKw8mwp`!@P~6tK~VAKZF#`xl~{Io>kG&X~CLD=)WXEVvkELd6?+(gq!OP
zK{&^qF)d^nCJiGi#~v=#jd4vN`p{wq{Z7{Sf+Lc(Rl`A=E}4qf=iGw27X_w#n&%S#
zBfdl5U+?XtJvhK)EgYfdFDkMnrq;&6q6&ZtB?3{4vtoI?kdH`>s?+ruerO=6Z~86+
z?ORTft+cBN*5FIFfgA=bEGniB;*^hXO1-HJDjZRXi`5?(ltkQ#)ktDum>7ZnLHptS
zuEz}oo1V4}KTj&Wi0SK1+V|+j80eq1+S#4%CdNsbLIr%8@upK<_4pp#quE}u_^ZO>
zz=<uHJSb|m$V39mJ|(`yZsyYvCX6gLt;1p{@K>AA2sQ4`xiFe<o$Qyr1}O8dfk4y!
zmjWq76HLk#q+nq;*6<evqGd0wcCMKaO)Lry()qD(61Y!$P*L>V8Bhada2e#@d)%&f
zWYH4pxBQfBkV{3CEyu4t;>vE4SHX1MJ<V{h<at(IHSsgiPc$4a>pI?*)fv2jMUSks
zyn&Q8fE^aq-K@oZL=^ku9B9(-2t<Zm7;)^6P@=9F{oEt%w5Ih3gzZ)@T9WM;?Biza
zUpypw%?q<94VHGk^qU_cHTcH3tvy_RGMo|lgix4vaY$h;Zi(U*Y>R`!apM$n-e`F^
z+lmuW<BPAsNUX&=>Nhkb5V{}4yjO1fqvLLr>MH)~yFc~x(^q~nEjMQPP3%lHBb^0$
z<<@reZM2-4W>11};kUjSo>4Sb12IMR${}pgB~UU6{bh|GVah=X>a1*-W|;OmVS(jY
za-0l9Ig>>?+5su%@-u5>78}~hP=RhFCWwdNdYo9*k)aOiPMb%#G9Y>Fx@^!&KNWs4
zh{?T>RDDc<T;Uh0Upu@rw$&`sjIEPs8D7&fhxL<=DQjAyxTxmg9_onSH!ZYo-b!Ff
znsN)*o#Ht>sXb$JiBd{LAgXK=_>R(@y(;=p`!C|xUKCan^U4fgnRsd(ni=QTM#nM4
z{(TknBRJ^Ry~p-69F4+MJDim0!C2HX+ug7o_Qp}9>h`{W4waQ%WtO;y28I2o1k;RC
zF)(4!+mN+$1(bu%Mo15|DG|(8G5#;9k$c1w_Q*Z>bb|r5YApk__>@4?&Nbr-HdnXx
zSLyOJF+#NF>XqXGZ6BlAa1LFh^-R&>F_C-3;MhVTrBZP8shq5p^`_*EXv>b5y`VKo
zA9mY9Ik{maIK($9tE|$KD@J5L!jsv}v6$)T%X}g$YUa!*g@U?v$D=1zy3ZLDL?T%w
z?z0)wFoUHmRX%*RV)ICUJ~OBEZlN9CnJ}6Ze1JuZk;2#2@A)oz=z;&KD2!hb-M2C|
zJbUp{-dcK)9NY?@#Ym-!_+>+lmVqDaDieYg_+gu@Oi`Uu`cv1Z^?!T##@ytdID8X&
z@+)}>BDl!9GgA&VwLf`&Q>!qsNGQ&+{P%9uO_7h!2gyqS2?~OPtTA>*ddC0sy2QS#
zV#4rRSC?MgkFegpfrOP<(RpY!5&TJv+x7nIHBU;tQcuq%Wj_TGG7~(+Wy<Z<X{mX*
zXleZxEWF&5#*LVGliq=Zkedul8}uNKnI&?@90xH$%o043!PRxOdGj#z#co~WO?Ru+
zPaDQnyocQW)gYRAKk_-k@<~uchoZhqwd5ej++dLFFQWt3jyZkgJ}+Ue{lW15ej4oy
zRUWWDk^H+bJ0g;0C1%uN!G!27uXV57f^m*_wAhO|z&5npp6)Tk2IUBX9A@uTII6JV
z=RM8DM&09tZEO>-oZ8yb$-gJ9$$*Df@3FbZxko#VeL3e~#}F)vV@nQYhG%W7k8Rs|
zC+zf+@;l7hTaJSpxmZ!Jf;(eiVFbL~)t(Lt+XQeTzdAQHE$FW<qWQ{q1ZkWVKcvT&
zGmPdVoIx^Hri%|M9S1YmOF?%q^4Uq`QFXDQko1z3(utwh>qC2xX|+f5A1c`_wB6EB
z#S?y<=vHhoNYq%=ci+qNaQxEgPlCY~B8P=mYbX?ta=Vy!p#N`K|6#mqxTcq={h3~b
z{<x_|q4iqju^@ib{Kq;fZ~#Ja+JT9m^OCP1a^KdSL(1ZU6au>x=_6l!MSzl9>WPCe
zaUb?@oG7!tX{II$B_X%rxuKU@;%vE>Vg29glZ+>B@1$Y*6lRjzyeHNVQ1KtqVHg4E
zLuUS2C|{fzUC+PY!_6b|eD6I-B>e0e!I2d`h<t&7eBc&?n-!U0dM&r@SyTH1Sv0@2
zTuR|gRTF|CUlw6X5XOGzy7yWQ0;wy#$TYPmuBkMH;=Bz*<il~lG6$zw${*POeMuAZ
zOl7K6Hr-4<Hl9{Oq1F=%Ry3@8ESL=+iTg03hxus4Y;194ejA&M<HgIom$edOw^!1c
zwwGz25%7F8@HV7IV7j*Wnwj5&F9dZb85sBFztOmS<YoAI<oKe5+qLV7s&4$O?*xy2
zPt-Rg?Lx<s3bw?s**%)`K~Hd4+qG5S)OczsQOJ~lxs)+2@`PA{F>ifsbBFcy`!#dd
z%KJ}^Sm=~NiXC-mhMeNA9%12esBK~T<kCNRPi436$Ts`zmAC*UM`xA+2&RLB*o=p7
zJwgH(TchT7XS8-^u3FmxT4aF5$)1r~POt(&+oAwcYrlAyyErW<j&JCV_Yke}jOHs9
z5`4g&GL<+VM=NQ&UPt~zjC5p?!zueZDZ_YDu{UNa#AkAB)hMKn{p%(_<wuPC?bgn1
zyJ7h{XPW8jHKZe?ssx-1%*)cwFB`7aLe|CLWd3p2yVT%ED~^JV>m-Om$Fj*7!;N3X
z2#q3jjOyRHzE=Ypvw8(Ert5otzk&tfLl(FzaK?O5DyVB7nT}a4{G7FJ<HVhAn;;K^
zWXP{^cwm^8G^R)YE#Q){$GK|{002Gv^A-wMbUYYI`L)4p6D@ddC)J{61kC45U)^D7
zeoCsGEdW|nDX$}F08o`Cyx2R{$;cu(^q7L!j?r^QvtHQq_IkmE{EcMqN8x3HWGD#b
zl=6no`<VpHV5fYSec6d@O+9$jduRU%-H5L+H*Pix`meO?ME-1?`cH!?fd~?3q#t8&
zGvZEy$f4QYd(#$~2hgcXdQ4M3?>sTflLUDD3E=TprF%x{6-N=;B!ExPJw{q?kkzjQ
zUH=M8Q0JU+>tOB*<!a{-CExVx6T4|F?E+3kYy`N|$d`YK5hL_p0cynY{50|u2P;Q{
z3=k(mpnnVCbkSD+=d={S0)<H~a`^JMQvtxx#fIhfo6Fzx%Zr%LaR^Ks^^AYaen93i
zF#9p%+kPJ9?p}E(3Z4eLTnq)D-+>SMfU}H>0EC6yrQH(XA3*qKWc+AM;;}b@)ru|+
zKnU5uGu!vk<>mt5Dq%5whi4wD+-iqmBw-Y%))YN>kFKFhvn}DNOD`v-i+<0JoLKA@
zY%@d?EJdli0}Xg5{tpAt=Yec-aC!(9+9vzHqYa@BJq>t-Bl&{VfdJG>RbdN*zkUl4
zYQ2USj9A4kT9bczqiL>BZ)wSyzl+WK_kK-8EgE!|Fa`De0mx2s*(l*rc@2<;$*ATP
zB?APAAC`1-Xd2>%tgdc@@h-$USF>x11|_%<SEYk`upYi5GGTh~Z>_#st^b-ww4M8&
zy4IY&kUG3=sb~6bbS$XL6Y@xLt(0dTU_0E>^qiUi?Zg0TQNutx!Jd&j4P2EiL%eHL
zjc927Fw!VI24rEHLT@<IHh+%M4@c_u0D~c4Mp5o>z~lUb|A<j6kJFB|jf!}4ni1#F
z+X40qazc<|Q-B?dw(It&1jnXtbr${0t3CxysodK2<Vt=rD9&FWgrUq6^6|$_PtPK<
zd$B|!V|#}#{`H0C%&Izk6_V#Q54Se5&KAcANM1+(X-7hIF!m@Ig=(?dm^(Xcgf2i2
z27*|yiO6Dxy`or)30R9!{s?hff+qo-O##d9GCK@xIOMWc_b*d<4>z2?;HgzNgojc_
z=wdO`@YiF4lU;BXj6w%5<&lxkq5%y#Kku?197x5ap+nAsv>!B;<qUk0XmL$m&-UV#
z_M5sy3w~%3HRB4pL`xd#BuKy1EDuQM*<&<^F+OS2wEpTL7FV|b=$GPY3>=A^WMO_&
z<YxYwj<cwJ@!K1lGs=J|epQpDgXsB}s@lcJ%75<iV3F<aeIq-+u&a<W!nI%DsaOJG
ze?qWTlH%hLm;q6cndnq0u7Co(?rXM!<)fL2+oBZDJFTy-tQDf7<!B(lSTzs;q^Qx6
z#ZoskzE`m3^az=EWZy%KV6%MD4IG}i(bQT=H-rEE?P$>dY5~0Uvl7|*PwGLmBzrB#
z!Tq_1Yt862s;G+pUyj8{N(teIKSD}&HBixJUGGso>Y2>g%+RdH^F3NTChiS2uyEL)
zdl#<W89~-Gtk9eF;YvR!q}IOPP_nTA{qy(lXJS9?;>kgEQF!1Q9GWDjWn{cva8&W5
zwKXi|MqUoe$c@dPe)@0(;5z|H*!8d%6;=2)2p|`PExqR!pn*<Fcks4HosMJYnPi^5
zmm^44^?aZp5|3hUf1U8y^uDVJFTrSU3m9@&4|^x%m$v0X*Z7LvhK(pNiM~Kyw`AzV
z4#^A6K@4nebnrk1RV(GA8<cd)r4B!yA^NT9C*%9ymX(2#@f#lENBxC%FOT7|yry*#
z-3P8gJ^5o1J<4DW4Fz8O!$S|mG&k$c9Vc6F?$SSX2&#W98i8$H`RBKQUT|~=<#a*a
z&AQwC#F;TBuMvcY59H-BV1hpC3tDz8&E8oa_qwu%I2eBM;+90MPN>flR>#bOZ&Qcz
z9ztfW)g;qN)R*gHNjjB;vG2myy_vRzc?9oXiDXW>syuL?lu7j-B&RzVJTa|5j4)dY
z=@zLPbN!NI`>n+OS6m%~n%yCAPFB|;CK*oMaxmt8Xm{u)v=uO}R{)P~c_G#&3zx#1
z5*pD3pr0Y%4jG#{B$|u<Kf#NT{bGQCW4n77-4@cj_U%^vT2(v3s8{A65^4_b>b?OW
z+%EbB{u>oP<-D>A(;TY%9&yUImb&{p!h@*1pG0J9pWW#d;8&e{hBbDdUwoC?I3vts
zcn2sHTEoo2`Gj2rbkzY=^45HLH_H2nc=lw+WqiVgM$F}I!}(B|<IDBSu|I7KKjVa^
zN&D1~ese#Z`EqUcJPLR7)^u#b>8j%-HYD@|!{)I3nz&yZi-#wla6up`jY<a`Ob!m2
z|AT!??=y3%n^Gg|jzjsDC}P#K9{nA7{o;FKQ5Ch2=HxCf9M<e!dwY6rAZs-XgP}Uq
zA;PrQBQHYYPsEokvoBj}*_AAEho$M@=BWbp)h(VIbAMBAw{$Dbf1b}uI{V7#u(YCm
zPFO-BT)sZ*+V+fndviI#t-}``{tyD5#x5L6S}hbe2LB%6@V7dI7KwIh_2~{Ea%=wt
zacGx+sm!G`Ejk~Oj4atl5}%%bhF_-F6rC|o1?BAc3uNrE)=JcWgD?Y34A6a1=q3EF
z2%r+xCI(O*II$<1Q0!iwI%e3tB6BG6E4j)?O*||5s($tX7`&~x1%){-;?EXdTu#+x
z9UE6Q1^uOr$h6k=X-;<N&l_WI)D0ov%V{|EtjqCluXYQ2RLUj}n^?PI=6ra*Pk{a_
zizdGkb_Gb{<shzwearNJyiu7bHyAKsc$ESXL1uk>IA1syIx#JUDe<Fj+>24-(-TOm
zXh17t#%?ZPmR~rx7u`JH5q7^k<ixwmb{0A`w@W$B&;NRwGEw2q|5h9uSz<U<(*N8H
z9TIKdo?Fn%TmEWhwcyz@gx1K0-DT@vdV!O9GUyNm6NRGK5{j~KR){}i|9$TBrK<4$
z|L7z~YvsRxxwflUjyrA<+oRigfpa%xV}9K#(9K%_ZBB0@Jq;y}il)8i9=+qjl+roB
zF!fc#@&MH%LYDlI=n<ezcVk7?|0aPYfvz4r$w<DaXqCipjKSz9-=WbWDSaau2p-C<
zz<XAL94bIH@P`WJ^#OYAmv=QEd5~CFwPUGcwEUPtV|2~CfrFKRv7}D^^h@qHY@d@e
zH(-s{UIotJeHan+zPh$u#d`P$2g!;e|C~l3IYvs{eY=7*rh|;Oi&cT)nSxflU^MUg
zQ^jSyiRRJk8Z2+}m{QxD(Tf`?-Y*)t?VUBQ{C=zh>ItZYu04K)gg+TZZd*5la@^ER
z^E;s^7Ih@!hXlW9NG6nkaM)`5<CfG+Z>^(?V_VH*_0+818zE0d`pUz?)}Pju4BW7N
z<cS)gm{@WaNijz>oFHPi9(a;*OYJu@9>@-3Fc*(l4lVE`ej58Ma+{8a>j+5u;V(Lm
zbM5WpGMRWYt{HC6%2?`>Q&DdP=qginexcT391g=S1Qlh8Te)9h7@Cq%;+|x&YI|d&
zGeL1<>>JA|3l+-x_WyA@2t;lzp;o0F{eOX28X98u4v`=OxUjBsv9=rGix!=sUi3@R
zJkU#nf>_LugP6=f+4TU}IAmS~kPN&QfbS;Y97LFdfG7suA<&=ITY!xL$!$bGv|!|q
zFAG1yxqH)gVKcSu`KU^J42x0u%#M`zCHuMkoN)Q*2)#?dEmqUG00MFhSux?8UkK}*
z7N%Iv4-9Bc-C3H3pEuJXX}gm<+Ynxm?K9;1Dsn(eAio@O?F|a0<Scq*GWH%u4&F8I
z9U&4V<q@$jdILAu4(|c5OAgy=QC|(8Svy4idy|1AZecVXa!cYz5%)kb02}g{vOlSj
zWNaBs&cp86`1ZX@J;`FX@YTaxMnt7F2Po~X{ty@vpJP(m>d{rrQ2I=HktrF?8>VAj
z?tfO8wyzEpyn2CBXiu5tjrD{RI3EC;|FeBJB|M4tEp$a=fJj{IiYLzjf{fuKFjEKw
z_gW&bZqU5kb88QO>;~46bj*GJ?o1?M7W<!_h6_Wz0rI%`%y5j%;Yv1G_95>biQ9s=
z9i1!NcYL@BNm%R#24=(iw44XHAM?zwqLxpkdG*|xuG0+8%6h3Ih$8Uwr@`N8p=q|-
z&|cB6suu!mZvl(|?ho=o_J}MU!cYkx$brQLRKmhTVzcJec$(;EG4=&XR2y@i!J?A=
z2AtnR05!PM9?U;&f245hH}mUFf;k%+!uN5E&i}|umr!p8glLWQl@8IoPAyc`r87fI
zO{c7US*gJy>iFnc;NohtyYr!yr$+&v&jlN`<llii?+;>sGjiD82A}~J1$ePWN0b@N
z3o>|%sfaLECNu<KcOax2-K8PuwhWXp0=yt$EdtGRDS%_k1|k^SR}Dx@f9rlO0rI|d
zZDb8I>J=$13*FM!SGy<WTHS^=bjr}#7taVJK?l!&)sMs1k|6(uJ!i2r#mwayMDAVh
zL8cZn*)n>)q_nCvEvHlSk0w)sc!n>#nOoVluY2_KBIB^UQeLbYgPZ<We<yV8rW1mz
zsvb4H@y|Zo#VOQ>F)NHmhxv==eg6Yp=DQz+P&6w3fUYOR)kuxrCZM=l6@0mq5n{aB
zf=BPU1P4b%@SU*Vjy{lB)x0P9kEw881dVtaii%JcT7R681%&Ipd#vU^LuLYtLpGR@
zT<!-0pk}_YiR>KwAD}YZo0fv4rwQNyJ-~7V9<viMlP&QP0IM~QAH$t=Jo>=AK<Ojs
zy+61;Wq=sY&c&+1y`r2T*+FSMea5A<zSZBKcS>4WTH4(Ig=&{-_)SeQPTHOWZ@~L~
zxi;mp{>#*hKNmQu<r64<J!D}KI3}%Q4<Db51(Tob)eU5MSw3NdeskMC>n|4fWLGnt
z%>O;mXz%)0?_UD6EtN@x12r9x3Z%U;KU`gcE&IO-z>U{m@hP_>fY72jh;|Xi#rsJL
zq*f<jq@nnXS=YObKaM7kzQKkD@Yr?`@pDVz>;CulF(lawy9|<3$UP=I=y;w+SsFX-
z8`c|Wf(R@W`Iz8+N)uUg+A-vdq45Eh`|p^|?nJki%BNTJnd3Kv7^;YTyhTMs9RI$c
zt*d8r-)oOoQ0;9_`^B`Bl9JR({=5yL;fi=xkNa`jxp~J&02|9^kMZ(2{l|%BHFY9|
za6JOtho(=r^6kamU$BmwV(!S4r7P4H(o?h8!;$==*0+Ic(>ouXX2-ow^5n?5P0ltQ
zBq5@bZ9MjQG{MMSWY0$D%*6M1K2tJk1sO9w^l$sQX?OQS*>m1bTD9?Lz^M^!CDx&}
zT{E~>^7ES?M3ujrS_unl-9E$N@I>dEPc`qd7Y2l3&u<7`o1KlI<vk#yqwie2^h!0k
z@lkMmeh=T&ppphNFnq4*HTAFgs;dqxJeeUqc4QfHlohzh|4E>Mca4BLh{zaG@=qo3
ztB^)wPrhx9v&1L$>kmnYy_EeFvEpX+=_As3zFZ??A?x=pM$_b#vskP)zpEprqES^b
z(^>j_pNrn^R>oj6gdq6G(Xm8YrN_$CdDCcEu)L*1uA=t>XMR=ush#Izf{!mNPYy13
zG+xv;f82=#ch^M+=^oN|Bdk?EvH|tIwO`1wf#v+rB{o&B3X)n#^%PV&2fy`gLs2W=
z%jC_yrMlPr#8JX9bzL4%>-^`SzE#h8P={EcPn%HgH8#ctmpv9JA$g9=qUn);{lNpb
zl9SG%fzd2s%Ze$>pP0DRfii&{i<v9D1G6|T2n{|Iw;AKz{1l0B|D@QxM~c7px_4Gd
z&kB*DBA);7#>XXnwdO4SY|DR`JqT)c`J+aHSTJ4fM^pgJ_q2u$oJ=6B!l4sMOAOof
z3~KIofj~IWahZLp4nGX*PI#wB4K@IJO)a-y9G3X;ynFX-1kP!`x+CKy0gg^(U6K-7
z+*g_4nh&)lYbEUo50?6^H~iP-nzp4s)MTzmgj1g3s7q3!%F9o2DB57W7WMDF<0pB!
zhV}8&sKv4ZZg~}&y;5q%V>~^!L|-rY=kpsqJc)JgSk5UF=5O5;Vd<^BT`KkmN2p|`
zUfBOAS2d`H*)6>I^4g|-;ML&c+}g5Hdy$=#`kd|$nEDEA8ub6g^7Y>u7xq5__^r(T
zD?+FDO#$-!_=$fW_o))MM>W=HBM*`MO}hoNVv%N>9gW4Q9f!1vOroKdbI0O`hnSxW
z3w!+<bt5X_WckH!@3i+Oo<7|>NRh-66&<<UnZdY8mb5E*B~0`~z&mX2{IA&0^DW`=
zsXfVev}~p+A;3GxLyrGHrBM%ROK>CxVuB^g?b?g8%7FGpJqDEF*<`J{Ay##HAj{q$
z46tGwLKENh(9uY#vTYa(Z{KJPsISKsC`$Ct*Ol7vO3gauAS2(A&ed5wDHSVt$V*+w
zo)=w|)uE@O%b)tKlxRe^*U{BAASns^?c2Jjm=*s5HetE2k1eyaI1!4*8qa<O&8L1j
z(afM$dpgqsdyH0sV;GTwdP78?kF+&iPbM>qgm%RWh1m-@#;=Hia3)(&di|qidk9`@
z4M}C`pysYIo}AjDx4aFU|BJq~+vhp&A&o8}c`1I=Vbmfr8ZBVbRf@&cPwNIB|7>fi
z_FthWqwv?qb|q&iB=|)4S`8*NgoK1>=w49Fp3UF23vj=G8pr!Yav|*RL9)~U4M|<u
zOR^`)s?9$??v%2z;CV|pWL;u<+=db=<jH$y5Uk?v%m+grfCPE}Awo-t{iU24CAazu
zM1Des3iZ!ODDy$jDvIxTC^wtCLF~=t?a=}LWGOE;TAWwG_dRi;bYxI(ofg*>ZX7+m
zQaZie0nE7aW*8}nC>4@71|U|gXUy7B?e4__;1QAI@%ZM&-FH+mh}}&UNzeF)Y#b4f
zgwYXgUbbh(|Ip8MvM)0joEO1t)S#sJ<SrQVe#KatT|&sCUVVy>ziPqHe!`I|qpj99
zdufwBwV{F3=R$}utU3A(Grd!B7BSJUuaVKtXtcDKLMdKoxx#L~q`WAC`ktS!#BC&c
zTWX)Px743e-mTU|KRLZG{2V8bWoJIrnS`rtgZoyp0GaAfztYPUv-5>?3Wn|8)<=sN
zFZa0tDeqgLBWtNpf>p$L@sDeR6^5FuN*$EQO3rq5xx2|>Zcj4aQ$^>)q$~=6cR;dZ
zgx_Wg(NfiywnRSSN|mKpfz?9I&ksTeU@qy^eBofN=d;>K@)ZbY;A4;-yJ1@ZzS|h8
zcPF+yZ6$yc#DjuJ`ga!h_px$}hd_lQ`{|iAkhq(!j8-kNE7S*BGX=B*h}KfrNW%{#
zB3_enn#O@O39sGPCZyiu>~_SWOTBu<Zn(Airu0&Z9FdE$jd7h;u=uvR*h1j@O}hDD
zW<)NW48~=CYumJ2+ESbKBc)Vw9l^=f=8TWAj%$PD?pXZ7F)ryfe0-}!QcZ0_pH*DG
zifcSGBO|JRW^12K8EV+O@;m;hpLk+#@o7Zx+qc(YQ!mkbzq7Na>T2TuD8I{#W=?^8
z_sPZQzn9!SPS*ocP+Pf*e=RNe#XC!+IL~VE_Pjcf*iqNOGvh=Fc%5$gr3IH{-?2|T
z-KoAAA78m+p*4eoLS?|rH3#(|`~7df6uF(feMexONpwSWn|-~BJY??wJ?DH7=T%i)
z{rvJ{)X5)rwd~GhuVc*g&IX|?WzEkF72mi6I!(kMJ#o0Vsv>Y99N0_tuJCmON@{V4
zLw#e}&a=zg7mKmD0bP5?G9>NG-=y`5h@X11-DXV-t9m}eRXJmTLUXsDaO&z<?A&X5
z@?7jcv!$clNn`p-3hrDNgiK^PWVU3QS@-<11JO+1Ck8(+#wsC12nsSQxb#ZtqRm_3
z@}a)f3pIb?hKb5$mqT7;Q_++Yb^3ZDZ+(9GHv*c|`2+-{SGN&5x+q$R!`?_e-PWN_
zQV~iGO^n+jLQ8!SYR#6MnTwpS8)Wutm1!tbIq`g`1+7d*LbmSRD!hB$uUmR{ci)j9
zzx^yNGr%b{Vms(^Mo0F_fkn?w<ZY@HDQKM_ybbtv*5(A;LG{Wi23bl|#IWW!#6%>U
z^4^$aVxG=J$v~Z#93<54JejZUQO<Eb^zH9Qys9U5e$wYBOV|9holxV&E(PDiB432i
z#~8C!aTXzAMGbvsvw=izjjIC;YZGJI-28WSm&Es1XZ<>uQooVjEvRfAR;0%l5yX4i
zP#Z3uVtju&uT}(mg5c+s)^Ha8JK@&AnxOj6C|-|WXrwYDnv_==Dn}G9PxHF#cqL5*
zJ&c1Y%<Wm<_l9+I=Gh&4uDZVxqQ3~-us3{h4c%jLXh|6J=EsWop@Cy7cL!@C)Zfvw
z0W8ligp(rA4@U$P*N-Ycm$|lzTT}=hh7AeF2qiy!vlLHsl37CBI<vLF+lB-G!-vBr
za8>?rk^1OqzZ1_6aVjjQ5@aQFD*K8rLdm7S5`Y&&zRF^PPcd)tWhVd$V_txUxa%c^
zAHCo$32T}>_F|cpFtYdLTW^?0)ta;8Q8U=DLT|pk)@US(<&feTYAZb9_`<0LEr0t>
zY!z!l0-`aBN38Az3l3A3bpP7CpvN`6qG}9mY+oG~sa%SHlC|{R*0HAx>)UV9zi7{k
zwoqbYpW@n8gh@%KlP6zY+-5rwp?-e3BwtXY{>D66jrbxyj@LdBH+j<OzHv34)aQ0|
z6t5qlq3cE#?XLYfQzMPGtsNnqTn;HH2<bOGPCo}<rS~#9^oGS#EYEEJ?cvs8B&TLR
zb<@Tdu)U3wQuEd|y3=jrHR_+>op6?(tIJ<!Tvxc%p^~+!nmp$hea8#ABhjkfSpl;{
zK9Vk)#zK2LfgB-)x})s2<m45c#pP6_ulO}c#+rMj-=^HOK_DIwg)uEPjOZ)``-^$z
z=b|EdFkPhQH89+3C%)vQ;miBvHeo!9H7gp#J`STs4Nh%c+hp-{&81K~B2YPU3n&g0
zX9{zXlPSYl6V_EY*PC<rT{R@Ocgo`Po@~9paZU_OI|_Xbxh79AMOs;B-)eE{S}s)P
z3pG5xP5l08CZ6lImO1;j#~xkBnaIMgSSAAzimxwfKa}n1DgCMs7frLZkz0rmOwD(=
zfBuNLg`Nvf|9d8r&mPIOrf&R5g~Ps$bzix3ir6H|`QJG{)595a&(CqTe&<l951||$
zW;weeC^DoXZLuXp{)it@)dk7>h*CY551bx29wD)iJi(deVJ<}#UQHUhL;iari|$)?
z=k<Q`n3wt;)46|rPR8vP>zR+dk9c{Ul_!$ZW2f_MWJkk9ZtL^6NV7CGt2K$In=III
za+AjHI}6XM)(4mA=V=(s_HXaK4G^XEY{47m7g(x~Zr_bv%g?+zXjr(j&caX1irF;#
zhhS4e^F7v>P21mypNB2!w6l(GJZ+9=Niy16fqmY0W&SXa&0BHKAL?GZdtR2z{x$!D
z?_ETmsAink@z!47Y4e??fjh}nEgZ{n<^IHnYF0$g-y|Px_YWPla-a;~-CM(bu8=L{
z4^I#7$e1<alF_W^Z)oaIynjeoSIVUGhH%Wc+u?$`6OZ|+owqxI#K|HLPRjSzADXVv
z&artVC4vX`hBR8c*Z6!&0rJUYafON=bVq(WlR9q4Iz6J<POF_Q(j!$<1cS~jd)>!|
zo~QN1>x&{~miKiWss+0!MUrr`IrJBGUNWAGZQ^^!if$jdb<EHw;Ry}H-qo1tf1g+L
zB(c#jte8XBtS{GMSb)!RM2Ga{#VGZxLl$+h1IZ<(yH&WLx8xW(Gp9Z(Vl~3ambc^N
zuk~|zG3Q3yPby?@e@7J4?q3xxDmjT)UOlnmyhJKtgRW<-ek%TeBac5|*2KX7kg;f2
z8BNt$hBtMn`DqT;<*R*`P4pkr8Co2eLdAuFb6jr2I%8?&Y2HnYxy%@^jtyg+Y)x{*
zw}0GRpOuiv&)(^IXUp&Yx69SjrQtTB#AOig-1|r)CqTH#El7O*vrA5atz1pb&Fm3f
z_Z2L!;up-XZ+N>!FfWc?E2mgH;v`=ZRn5L8w1i7*YCVcFXHwXF>)SJ;`x|X#dzC*w
z3>6-uW4m>Hxl1JA<AGh;{SM(9>$8G^A$my%kTtD26pNW)0wjgqEKUou>#AisGCL=C
zR)}0r<X6;%JPiGoGk%DR1nAI7O_E<}D_^UACAuUSN)#F4*m$sn|M1I|B5OzbRoA=d
z`fFDeRzjCtomeu78Babmp>9+E!jVSUkSFYQlzu+hw-A;%$+{iUcigcY#UW>D)Hl)>
ztJMGOZB6>$nTh8)so|;|Z5#LA83>J1vSxeG?a#iMK}Ak>4)g!>w^+<t&l55!LLPn>
zRo5xTB7NtRwVIZfl}nOV!%JV6v^Uj$Q#nxD3ZIj*A-ph!gyx*Xt?n$c;UeJMa`~FG
z7y2RALhIiB6UTGMLgHw7kz>Ob-|8<4J6!~*`<e4d!dyG|dTwSs(W9}M)1^4eM6K1s
zFw5v^*t&*<U#v(y^%QV*4;l3U*YkZJqf~#OQtom`R$wc7r(*o{6$&^Q^DFxOmmk_F
zt40yNW<I|JIt8ePW|m!^TGsH)8I1eWVt(ejhS>dCN+(t(iHrUiTZmG;aw!;@*66kM
z%SJ&W?nnK)4}b+y)?t`m^t>aT+L}vw`)#pc*t6(sqjO9w<zfP}IKMf)CX2lV-s4|u
z?s2M>Xk`Ai)1w{g={V1gj@&JS3mY?^Rp3+keD@|({x4d=Y*x(V3Thh8_}l-GD_26T
zQpF)Zsu1HLv#n{YUv_c(b-a8&Q~Dy0nJL_*!$|)5pG~NW$jYK=SVmt?&V@g;Ns|U@
z{j1WZGW4$(ZV9^*ep#B~*4`duk)FO-c6wSUUc=j1`)emR=XKzh@|qj)gl^tkFnehz
zsaao05%bGUe~1RmI`xGgGS2QJTX-c+@|zpIIXYL;MEviX)J_|=8owCl6P|Ihjrh3=
zqj6hI&`U}Dc`t9H-Va<+O0IqXLT2k2zE4)$;1@h>g8+t#GVvjOSwBh=HHQ4Qm(;Sd
z<%b8T6he<el*eq_?W5&uQe6+r)`~-p&g96Csv3)J4~%wpzMs$Tw!h<1!F6e_<94X`
zaRl|ItJ)DN)0wEu_KMk>M$q+w$?F#tjb-A+7s1z&2T-x_Z(POQym1w$Bx~gy!a|0>
zC&(ZERF7tp!%epLphY1bEpdx6F8c*P>6GSv^`W<O@X~hAPWR>P{(1J;u9qqQXy4)b
zXF@!92m>m%G8ar)G(%M{<yu@&)MI=6LzB>L8@1)Zv%mtMJHK;9>^m}K^}E_*!t;gu
zqJOE7C&LXm)kLmyWGIO-r8i=&c$p7T=Uj(b%t&P6A1F@H_sQbN2Yd~8(f^OHw~VT?
zi`qsvf`UkjbO|CTB}%tScZhUIcS%Z1BM2e_N=gdS-64%gcS}oybboXEyze<@d_T?}
zj>qAC?!EWD*1gt@YhLS`htoIz6@YF+=r@j2|Fe^^h=CKEZeopogHO|Fl`YunxrOR=
zAwIo#E6st12OJ7h8nfn(V=ith>jj1@J(L#%F4f<>9a*xiS_VVjsPhgJBnzha;xx8J
z{B?&T`AD2EbL2z%a#M(?AC=zHzku>B-KFf!B*72uqMS;?m8#$MDC`b6dYwNuKb08n
z%_HbQ*o__+xt>NSG<EjlgyT5(F=V;?K3U;jI1#oE^s7@z5Vq0A+t^GmtcaTbNyv$Y
zqW-rL)%9;D!z+g9SKbD+&MjMw;bZEO_pj0U`izaKKMsWdNTLmH2BJBw7wOC`nFK8#
zWzMCw-}y}R$G3f(GH@vOoed>a|ANiFem7s0+H3*JogWo4{&i&86hbRM`-;+7IM#iW
zJ}~%H+uryd;wgG!WnS7(lV&fG*VRr-9Ehx8UJNWOQ5{bLD)$Zhjj1Zs_#}6ng3ANW
z+SAd|zP>TEXNV+^zfv31XF_CT@sUov<O)K&Et`Ya%q&Lqod`3OYyOuD&_ebU!DSo%
ztVBL&BZ0yyJOl*+La8)rX~=g>5^>riC_(v}NK2h_-7z>kygn^CVqg*lp4gPt2`>_!
z(qKoDu_!&F!8jn-iM1y0%Z5gkd0uO7E%(pc{MKXT_AfZlP(Z(4=rw2DB=mvzJa~yo
zG{sMS=zJUPy%Np+`x*%iCf%A*3w7n5pdXN;2r7@zBK00<cEC|#gZoa<s<8(;vwjo4
zO%TlzdMn#@<Y3JnxssSu%9DT(uk{1Dap|+o?`q&J;vo7y4QcV*PW{n4JBXrmD{!vt
z6M3-ki+A~@his!R)k{k4d$z&^$)-9z;x8N=x`cIV_9pix4maV4V9fBXIPH4Xx|3z7
z6&;VPeM;)kUPx3qT2di%m8V8o=^z)D`s1Iq3Din+ukO2}Wc#s7a(7t-#npZlLni3C
z5y6ZOJ0_E_v8#bMmFmSN=Da*n=oz2oX8-u!<QvOp9yTOtD&KcH+tJ_OD3>>Ju^P%!
zI-X1t)S<}Z)?XLHI$1b6zCf?avdN}f>u8^iHds<2-N-n<kQ6n-e)9KwRsKySbS%N_
zDm&W#-~TKY((dp5@)Y{FeZlT8L`mK+znH-NR?Jki8fE$Ua8$PTO({nE6Q+K9OWeKT
z!DS*{?J5hx%hEUO8|k+(uI(5P#6l-#_Vn8~({H25P+@GV{(|9RU}F<bdP<_9Sd@_=
z@JLC`o#$Gb6|#3~#&un<93N-ap0i_ikxd9*M%`3XQXlb&ej!*xNDND&M<%FXVI1{M
z?Y)SOuv2=<xHzZ6Sj@tOR^k4yrlzZiV7Jt&`!XzZkKkZ<eDt{kFXMXLZlgcVgKUeI
zTgf`;h@pA{=5X^wS1y68`|L6lgMDLk;Tm;(&#iu>C_d;LnzDK_YsU~#^eF11Y*K~p
z`Oa$qb&sc~Yj(GwA|KvAb9kRXu+S(KohnY~&Mn>Emcg^VLT|s+?n*i8B}11rx!Qdu
z;maRk!5#0+at<2&IPN>m8%&9&w|fnVmIojmNgxGE4Wy^znGG3)3qwoN0(E92x>`cF
zeGw1|Kd)ES3mM_#wXV)PaM+6;PVC-R*lVxUU!}uEMoJB5MOZyJw>=y(Fx8~jc2<ux
zKdErdpP+l}>fsh|B6D7BoDB&%BP}=$^`B=bw{};iAwsLtKYJHBU!Ib$jOFCC#dczK
zT5Ed7VjMU{81(3q{&-CVQ;Bhpa_(o^X4_0xgVkv&qOkDbV7KSXwAbxwQsaVc422;S
z0N#Mcebxk6Et58%xL=(Z4W?U-M)fYYV+}2qKI`e`bLElQJ&9tJM7!8-9LH3X2?C$#
z@^pFXV|qR?KC(DP{vAUaN1p3qgrilttujHk@ct|XJC)Qi!y%ln{X@AT#yafvy*Vg-
zWs9#}G~KaE!Qv-$<+VY^^n3TDnN4BIWYrG5dMu#hS)L${_CJG#TSK*WA}IID*X!8K
zOA~WF6{4ok32}R?Li<}S%DB=l?=)P~#Zgs5P*MAl<<ny=jUD@n<{a@&IoOuLH`t*R
zUCeUsa7P1)Gg;nsh@2mkyuYZ6)6tRBcIt|qX;tGNi$nbMg|hAHPH^r-^|)@OvUY?V
zwI1r-r+5?eUk`e(UkJ0GX;FPioQ*w9W(rs=+UsE2JomiIQgfT8=*xow>o%<%)ZgRE
z_8|P^=a=%aIybYwDH0D`;NKvC-KmNMcUfZ4y9x!=19c=qcSicj;pfH0bvetuyeMz^
zP8Ge%CEvn+-R^tWMJ7nv=%uP`<Xpi0dpkdgN0roPf+dz+=j!cGM<eed2+QOu)fIy@
zFh@~FCl;dbjY7!s4xtd_+|I$dzB9*NQ7EMAS5z+#(HIf?(uOb`fE<J569r*ZT3Se(
zI%zQu>18G|<<HLe;P!MTM$V{*{pjTPmopE$2O>Z*GJ|*o4Nj^{c7I2FwY^ykxBMGn
zisr^^@azNsqV6U`VKBznp`~yozw}O9gU#=>y$s}p@6a56kVZ3Fe2I!!&Ys$7`iQUY
z5j%(b%=b8hso^=;Ab=ePK={BrAp&w~wuwo6TS}Iu;!dg$?!2i*QbFW|*gQ^Ex0A2F
zwwemZq-55U%Fw_0?RW6nwd(IZa@YXlL?Q);H1f3|3QDx|E+|*oLFQqZf5woJF;?{O
zc0tsFVjvMiG2@50mmy)b78F1G=HU&*-J{oy(P|7%uFTCrT%@*F4CF)vTcMxr^fm-_
z!W^oGE0tz^s>LZ)<#$Ci<OqaLbVGM49vOCHDbyCW;4Vn;IGx}okiHrIT)lbw(sM-7
zqtI)gvi)?XGu~Bj=>{^wV#MFscq<^_ez%~zvM~k6)iIwtM((h2eph7cxE6v|JJNTz
zvAnhKr%t}h*|)Z<o&H=+TYTLk<3GR+3+txk(_}mO?(dDbC&PVrMh#yRGje~kIvY=~
zD4Xg+c|y$Jk&r<jV)><{e<5ZQxA$<Zl#hcm=NgO@fuQQqIdjtI5n}q0-5~g6lsw{>
zb&Y2`qj&A!R;OBzMZVkhEUo8{Z7@g|!rw4*`)5u4UK=|+?ElrInSQPvUceeH!iXYt
zeo7P<_x9?{vzK64g7wp!Fz%uV?=O4?uJ-{!C3o7rvY&3{xtU3?{WfEGTN8!$;+i&I
z>T5U*0Ps<DM;!$UVj_<Imc(<8ojYnsoiCYVX@;DZ00Q&E$SO&>k0UxocRMJ9y!ze|
z4#$0T`x<)dNv6rm`7@RUeu@%1Q`J~Qa~7V)jOGQ)ocKaoR`j@!eDI|-4w287nFFRK
zQQqo?!vZN(;68{WjtOf#t(tK?QwN%?+WhdN{Lr&I&HH&=WbsaBRs$(1Qb7YTqeE!I
zrUGSs=&_jVAM6f^AdYq2qw%hES%?{AYIPbr8OGj_uL~i4t>#hs3?(8)n1Y3@{i;1A
z*eY=j_dKxILDW&}CUBRz0ty_9r2!PUHlxSTe#R0}HZ0dS!tqRNdhGAPVL-UOak&1O
z@7EqC&RLHKPqoeKbBN^w?T^AY1x{inlr!>H>5A$F)amI9t2*coJ|zbU>S{f{jZhry
z3oG4_PN>$tDJLbkk#TK<&L>gDr%v=~pB)2py(LE5G0(fb3I;-hJ&3a*s6QVq##a|^
zCl7btyt@69CA*zmZ@Q7cJrvG!YcKk##YFhWfB9(*<r?cJ#Mzf6+D-(MmH4D^P&d+g
zjwvzsHjE_Gh?Rv!$gQZg4Yv9IM3H7xm1K&$Eg8rCQ&sdpI(Hi>N{-e8h<`$*tVEJ+
z1U;{Be2e^P^D>cu)S*1~)$TFP^x6>xY#MjJsoj-cOuPecwcVEb9AtJ28>HDKm=f*T
zQ)eZX;?Om_sw^DtpX3OH0_*;dw$|qHOMn?C?jOAt6?ft+<plOUDLY+u9XPS#o5(FN
zP*!?|hb)18@2sQXlbtb_UW<(U)?jv)Vr(x3Gvw7#VDd5UbecJUsou>5>(X$W(Brt9
z#fWHRKIoimS9M59gp#eT9ly)ZcwTLZtzAA`T2!=r>mmph#mBpk&LRL#+m`?DlPt!j
zm)d|ZWG@9VgDFGw&B7e@Z_t|=SNm*g045;H{V|@D2e^3F8K2g#xDHjIK^tkga*C;j
zK)5(L9F68Au3I+7>Yr7>D|wwh3mHqgAte(3`+;tV!|9On117n_U2ikfslcl5Uh?tU
zCWC4nJRn+QPB}BPfgjUS6LSW`q8zS;8%P^ga+%|Qg-#Gj`iON86_IZ8^3~7sWQ~{q
z&fXe{{gna9hkM3{MB)Cyr?*~s7)2w`3Q%frPu{9N%G7^Thy_tK^VF9Ba4O7{L|`R>
zy7z30#q*=vkm3x!lo8Xvcma}yA;M&F#v-S23`AoI`d_5Ux&__}`AY0$>1W7B9WRgQ
zF!>+1faDgX_S9Am;lhVd5H;aM`g1+Z|N8;T$12L`#ZbrocR2vZ!CCy^+jcHuc0W`}
zM#jB-d$1el+|I?d{y|4&)Ei15_>tXR|9M*umf<wf@*YL0Zpd!S{iH0&`e51oq7UV>
zIO?CFfOY%>h4t90O9$a|%zmHeQ;IeF@;cMY&-(+t514KLZ12FNcLZjbyrhK;?ea*r
zC_{vX3@@LIF}sd}1tbj)i1}sEpAO;Ma`T6I&0V8E<z1NFB7LU;$m6=c?Z<RhX4|Lw
z8mRU4$^lnr%S2v`SwEuH=ry?P;0y@F1jii8A%yn4>Q@b9Xy{Ydt71{XaqZ4@8k`?>
z#@ji3dKJ?&Jdgrne396Z75mfO9XUmIbfTytHX-#pVK5QMk_5-sPVIEpWg%*-i*vq#
zVy4#3K+Lt#kC?k_u>tfB<*ei=UqVZTo9R+f7;Ca{R$k|P{cGREqsLImD_sbtGPJE~
zVeAp1dObh+%Y$xu7d>W-*FltO#;}S~y-MK%1b8_8Imuw=f_kYS%ZVEp*8nXjzAvjh
z=u=_wok57NptaR^^5ykFX^Unxznfk?>YT$R)M=oV_G`46ih)(lpnJC9^YoR7*Q7;8
zfZ_BRA2JK3C3r&o(1=ypEGPbJo{d32_IPQ|eQl1&4kBc_?MiT-usdm9%=-RflY^B0
znD@vYiq|Yt6!*tUU3pYxS0~&t5Wgru%@-Eb(3S6n4gx`XG7QVMqqx|%y!7-HM49o(
zC^O*Y3qgK4p^|rT!M~Jn99lA4n;%Q8j;xM#UiN&ZF-1Z}!KZq5K9_DQXj)z$-q+a4
zc~>l?M>0RXha6+n%RkbboH<z`S%MCqY>+?xshKao?ejyIfHcZ8B{&eJbX8N4@raXH
zfldpGi;>oVKIMu_3=aW&GPMU82g5JUEstFm)RX=rK#LMJwGxEvBTbSVeE;yDthl(B
z$o&#A%a0ZRJScv8#f;$<y%w_Y6d6GBC@ITagD1RW<c}S{lqdH;PXWO{<MQ`x4KX><
z=_320M^p_i>hYWGOZlHSdU2azMvQm^TM0De<jU8cdtpOjgF&{1Hj1<5Lzns^sKE9A
z{qWrKgCB5vMF#Iy-ER`h0;WkTqs6A$(6<*N3z0RK&VyGuxU^cv$aJXMa#%&d!%;Uh
z^g1VUY*ha<oAzn7_^Z6p2%j$-64Un|QL+{~Vz?}}W_ZN_t1384N8u3};E8&`z$|s0
z9r%H#fq-cnXN9j{Bl({Fh-jz~9*vt-_yD$T9!_IZ;+HHyseVXN#o%;Wz>2QU5cw0C
z*Cnpb2S{Qn4lH$W&k#K0g0+SX6oV6zrH3?}HAus=zYpDF6(0Q<4E^=UM;zvK5LIWV
z;tHdsCYyV%Ey+d4#JY24=$G{2Aq+JK87S<UN+Y9C)2+QCM;_6OwVIq^1oF{{As;=Y
z%=R7&>K)qYF(6)$tKAZo@;Sq<#F0d`nQzkg4j3<h9v4>6JYa{s{f(es?I=J0pa*JQ
zHz1?{H_<;Zho>YA44i6Ft-;_SD;ACl3nkS-vsJqrr9q~r&xM9M2lN4l%O2M>(#~0Q
zmtvrgaBTi7H4}qWoCrSEu=BZ<U(1KQ=%9vxMeO>~jVb^QXp7P4v$J2or*aiK{Fhbp
zGDM0nwW1t~IGOPt1$MC@MF{qkKi+`1SSSOBKk!b@U2qzH$%UinwEr+j+R3&X2}3C&
z#P5m>w#DePYRoNPv*PGHC<j0m^=Cf8iL9baRCy*o)1mI-8T2K9WY8^J10Jz^dm$lp
zBnvF@iHtn+mXe^?Uzb=;1dD}e1_x;Hut_H3#A}`Y#$_}YYI+DG8Lz27HnijjZC-L3
zghkxD(>xXt2m5;(y{xOxZ$f=XlABqv^RC0ZZ@}^f-y1pEHA_n}eD89+b(2#~&|~Ye
zyzpu|`WW8o?cTh&(t1PyUr0;#OP=I=*7%xVhY39PO^d{@F}O}myA1Rq%fGIyC(`n)
zn_vL*d)nnvG}m68dJT+j-}k*69MRm=^x@N|A%>Mz8JMHTr%Sf7UN--GlkYCTyKV|)
z=@{otcrYg~cB45ls1r&XCGDO`>D9$%4O?LN`hc$4vu}g&N54N+Oj1^M<G|q{$ca5r
z3%N3p#xjzTK6@NSh;-ySZD`E+2Z8l&kKTa(brFb|`uqC_Po}1&!EB-+6th*JL5lBP
z3`rRo)UO5AT<7doGP1IwAOP$d1`^2tZ#@HWNkD)CTB*z<H7`=@%h$~!KR4bZ3&Tlx
zBnG*y$$MuppKpE{%`~*PASZ^@^Lm-)dk~v+<Pm3$75O$uLq~@O9|t{EANg-cZAv!V
znOgbY$b^J2(4c+_7l1%<QBhGHA@mx-S0V@34rv80)BI~lp_P((?egy+cKRF@AlMd-
z0htI`27H0<%%9=OPI%^OmPvbnt}U~wMv%Y%e^{7{t9FL+Lsg3cP{V8wr(E~@gA7^r
z!N|jQ03-kW{L5`9e+{im=fv;8(HXh}#ap02@jqXUi5YMW<U<iY(A6$<xCa?2jBK<T
zdx6w@IFSZGWiu|nr&th;s04y+$|kmRX2BgFp%yQsuiZ*QMK!aq0CN`7{^o46f?qHu
zMa^p6LbBQ3)l#VccbWMheM?JAa9sv}nhIkpqh&Kiz;hIDZ}0T<bVOeTo|L>i(F(|H
z1sfi1P6mM_^1*V&Q>0&M``h^hZv8`~+ItaFP2{cT;3U{)rzW+5-zo3u89?d#O#qr>
zWt!ND@(e->va)w<bGE~wT>%|vv^rdYFq|_V12Z!gIxdx{qho0$v|9EA)x-6}laLNK
z===^p3R4$nHCt*PHNFcCseu@%USfic@VrLWS8)le1P={GI%8n5P9$5!02I?D<>dpF
zvqhbqovA&!kyGRbUNouRmIuJ&AXD5$h|qow&>Y;dmb<51Qr0*1T}(qREd#WmsghQ2
zohUNM1oc}(84y{ZIaGeOA(5E$A_U6%$m+gKKpDxF4Q?`xGyD}1Oq%5SDmAF{agW9K
z!WEUr`OzZ_CSvz&RJopiLtXwp1u0pxb_SC#sy6fPCcY9kEcrTCdU|o$Lj;=?QBY7&
z=*y7F3R?+BM~;Dk0i?({O!i&q@S?A;kCaBWvSJ2FVgv&8j>n3PZ-G#0An2fG4X<&9
zJP=X#n67q$w?kcZVMTxXbjJ$%$5F(`#F!LI#?g$YD`(@8k-e*|<VoOjlHL%M5gmD!
zq8Pk=J+DmufeQ!M!-v`3T+NhZ%ZEtQb&vs=5E1}^jN={zaU<P_#g3AmjGS7b2RFaK
z6qPwXP}K(mSRQzNzSXWOL&W@E!@o*=$HRQTct5oK@Y@h7J)W3ENxo9Q@l;RjV(&mx
zplF*BrUrpvzox_Xa}cF@YEx0AKRB&H<+opf44c|&pxD9`O*95i;){?1FV>)_I<%;Z
zM2HC^r0ym5_vMPX$rIjg7_PW|vdN)PTmO?fEs#%rW96x6BDf2;Xqq><iVr3>Lf^mV
zl)}8}>jS$Q;UlH2o}o+wE#Le5`}@o|J_~ybfnkufnTvpaQB1jMsi}p~-pxK4MEhOC
zK$Dz8z_pL=8TKE7@xZ-+pdiDet?7B8D(xAY`FF4{!8bP`14sKW)FbVd5TMsSOH3DX
zOd(k(c#>j#;8<ZL*VDQfX`?RGS<~BNpYt7GgL_R;dl&;f8-dP`auntqP*P{kFb-M$
z!t?_7Zg(`}ofz&?cL8pRi`x0`;=f!EZj1liDBAU+wyK>)7txU$eCdnWkbCrFi=Y)*
zuthxm5OL4IoBeh~plkDVC!XKkp8iim3nkQL!I#Hm^~c#*1qJ)<3r9HX0m*3i2iL*p
z%~J3?V}ZgaezJtPIIXZSH7LQuej><;5fKrIOirF%-95j!K>0(kkk?+IRe=L4%p#JK
z7>66<ez1y=^I;U0oa}}25p-jb9SuSbplRj7c|2X}Gno{{!a8(VFB-o9k#k+$^L?fx
zmj_Nxrn5>`@u=_A|Cg?U^0yV0`N8e7V>*#r2i^Zw(?1KhVI%AqYi>h5y{WgEYR;u<
zVJoty(mkEvS`goJ^sm(^q%WPidA!TW^e&X&eoF3&^eCcW`qr^CB67LoY#E<m^Tr?W
zwuK{yI{Uw`?<0a&IH(NIJ%Fj2RMm@)E5G09K&>aTSf2yT5E|zU??)GoppSsua6kJ9
z%7uFj%|`Kwh(<DJo#3S8NUnxondRv74CS)y4OK82H6K8zvHajJt;KzVbq!ha^^ld3
zu+<}nhQbwEo0lASZ4B)yRsyXB-VcYK?{@gT^~58ExYM}qL=mCdvV=8Zu?BI=ll+%)
zR=22D1FtiZ8i7cm7^j`_9hJGh0E68sh!b{AZxz{OZc|d9HI<PeaUdZJjWN5`7MkOW
z+!RG@2cK;`_aW|8MUBxgM<+u0oSYp<O%Mnu#a}K^DV!h0`NZ6t&bO*hl)aJpUoF0G
z)n`x5l1;>Bg1g#je%w{dv~zXjtPRVhDdoZa%l%c(7W(ytsl)Y1yF&K3r=mm<c^_26
zKtW|T)KiOqfB@D&SKyk-)7g2$!A!Xa4<7tE<OOYTKI=|=Qqqt&d&|%bE2X<0)<OCH
z-PC6+_iC^n+Y5iOl9}NheclhDw~{SXDnuXvLndU9z1E&6K3$2*m0YJ9`kNxpbJ=3l
zk?^J3tQTUS!u6I-{!j<^l!&9N1Xd_IFE(}RHhQy=h714NZNg)KcEN={XYExYcs>(1
zC}#vz{U5Q$EKtvWn%{jhgK_Bcm~7H5->Y8KSDs*qvU|Jda@33cHUckRJ2(-*m!_hv
z<8BoN(W2`Z{XTbBJusAxNKW~0`68a-;Zai~+i`5n)RBYlm_PLQM=PnzsiEcIP!R~f
zixK?(y*0bZ=0q8I73=T0D4zGrc0ELB6NAmzcoKAjKUXFfx<v|qbm<ZM+f!BPU5(qs
zl~nF%242N6XvSOJyP_{YO$<=kLOTvm%M&_V`Yitb>LzWiNk@tHv#z;y*L^>2|JkMR
zWL=V=_n{uY=REkIv0$89UX0v)#o&(88-yz{(e_w!_KyE6@7S243TW9{<yBv`_<H?<
zvYT7TTWuNjRP-R$o5D{nr9LamvW?&@-(c9?LVK`$mOnoD6n%CxTLFSSE%wn~PCB|4
zquO2Cz_y6@?WEAiaoEB?Fp!pyZ(@-L9wq%sXm~hLJ1XAFw~P#ZaFk%)UNvaYlHCbU
zc-V3==qanID^OvAHFW*uSfm|kZyu>%oy6;+D|Ml*<Sjq%M5b$qDdFk%^tzz()ET-W
zYwZy0&$c#ti#=Fbx4yTmDCDUatWsQ9e+%TI4Rj#WbSO<q+i@VIuE@va7D}pmXOE0@
znRyzoYsJ2A9O*4E6w}7ZuYGd!32}K-;Y+Hz&n;Jr?ku|JwTOj4egh=Uf$<Z+O&$v3
z2TG51xV1oLO>}?a`_-QwhWZ47cdeT65P-S8+xhiY;EvgPBo%u;&>V)oA%XqQ%8#1a
zD$tIgzRLl7crx&0Z@HUYDv%)ZKw3tIy-J3bk@5Q=FJm+&l*7!;%^`xgz%!nGL9C+h
z@zp(k6H{0%O0@79Ja1Qv3}smg^2IwUA<<*-b}iTggr|Y)Rgs548ANgB5>|qiuc?}A
zR}GDi*_OU{+Fv>4OHN&Zi9pU^2H^p{Ll~)AK!NUJgo{vp-Qf>QYLofPRiSxpa7tP`
z^UA_VAfdeaCZt%*lsMSeII+8rn}uK7M@(Ix6(Basd|qYk^x8DKJFoqZa9aHAX!MC7
zueWKE=As`e`5m6L{HBrKn%Q@sg57YDWoPH@8Dx-kxxUpDBqb$9zvn*T>>qq1sj!f3
zw=D7FN8i%YQr2!u&!d2{pB=20F3F>K=$}-F;;q<K<j>A{D!vF?=YBhOZR1f`ETyY#
zI4#G3K^MiHRB;+AYWDjyuLjV!qxp;z)G2D}yPYi}mrPP}FSFR6usIXM8FxD3q^(1P
zmz8ttbNkOJ<R6Kei}{HWxj-6OT&i#{daT+C4In8#YT2O>Ac-Ko<z&ozw#kWR?e+ID
z65@t(M-{ONTU+Nz2@U+J@&_#~kv*>K>PjnqAz8iu@<=~bGqVSO_YPPdf{<-1=K9Xg
z4wvDuMVZunCs)@>saf}EY2%MOL~f@KD<iJw2uw_?DeK}YxCG&>tPl@>p59tmeLx>y
zMtDH7W;1Idt7J|I50lqw!Q9_kz*_lWDrw-|jbm57a&iZ_aaRG6v&hr|zB|z)KL%wf
zV8fR`U8ZdfmASZkw07*mucWrY`!cL`VG5pA#!KJIv(AMc=ul$n<<dL*0*ciDO1I2_
z8Xb}pAj)CZ+S;lQRt8d;W+;HS=<Y+(0k((GeYnCzU3Qpl<}MV;VUxlIBI@euvp2la
z?|9``e$t{*<s*mv^@~2Xriq7!*};WvlB=bC5I<<}R;%h=nU&*tJ2(ArAr`53Z`}A_
zE`WlI`{N(eaqx6qt0(W-um9pY!vfG1UPJ7{ghRjGG*F9ehURB8yQ-&Ls!QtoW48FG
zb*{5?t|r7gkvufSM~l1<1wY7^qM`9f(KSBkiio^71%>uNZ1R@JASLf7o@RbT0;=RK
z)lTcO<$0QAnC^!gD2R>8ih}OTw~If<>yJmPXg35uGTBVRURd*GtS#1m9ufZK?<TaX
zYM&<+QY2Oh*%Wl9(+>PrQzxZ7wR5a&BlfLb^|We!Qct>dg;)IMjsz7JtRj*4?Ik<6
z6jz*PArXOp!zcpw)vKnFP$UM4G3`W(u&ZcbpV&Ub0;0)ke)o3giF<S8E#uEzKd(bU
z_u%qJNR|u|r4{v)R#ykn<d1F_m6!p~txh68ethzkSX+m$o%m9yCphHn=2^s2=wwYz
z;qQhX!jRC1jOW^|Grd0;aqUq=M50UQ#*kCq@#T3DOHfm9+29_G%2$dhV#J|bLZ0J9
zS73UxRbBPb-}XzxlQD1R2ALJu>9obh+)U&}ZV_bd>`ZuEGnA2gwQS1E2nPO}%kS+2
z>@O>rI*pqzw^YTC+JMf}lwx^&X~8+ty^EytD8<6s_oRoA7R;E4k&#inkvs@5e~gNn
zoRYSc^1X|d<r<uI6h_90iH!Ot-CNq*UDR)~#CGBT=lY^HLy1_LAbWs>U?O(z@ZGCu
zi6E&}nA$tUG#uPB+V1bep@+;Q$<$WuVfds{E~V!q%GQ6<mzhaZE`)H;I~8Rp!Jk=0
z6f`Ym6WEA?BIxw@|MdTnvcw%+xtN`39=qb#^>6Uf2*#&6l;m;0r4<wA^ZN5inR0NJ
zEkGFu*<gWMT3f$Zy~r6RdKVaM^%BA`=waE)br&-rRqon^I^;m0H7`dbkG9Vu3}br?
zGTN7zi8nrf80$Lj()ZMg1R|iAn|ww9QV_&qJ)`-$I({tFprbNGQcxB}Rj)(F-@433
zEh>8?dX~qzZ_WM6MCtjU(QEfSL9`8z3nyULq(z}Qx36rkr3QbbGAWYzPPW_LB5-a3
z_^kW$o7tj`-d>+(Pef_g2xOICB!`BD!Tg~5jOuyU$z4yQfujmo;6Fs5UzG|YAyijD
z`#fj?CD;)A3bMBeD{lFZ<mF;wVh61i@}d{abad&{s??z5A1MFLPyQQwRn0wqesaj)
z;SaRGp`XNFz$P4ne<1i|?FN5;iqk-uE862pWWUp0{Sc9Pw_u3a!I1q+7D(fwFx)G+
z5%i=~{aBocV3@9Yq?qSbi%Kuo%~uY?U3psGrSf-C8+8`i=U0V=ZZb&l^YD#5Oa40Z
zb|rZ>Y~`wy6z5Rc{<6~k88DxkX5`;7sSV+wz3N28{oTos43#e5i;$2p{2Ek#14Bs0
zK9p9^M7)0=Aj&pvBdJ(HHA$$O?`-B}ONJwq*;x8iO~7lLE#1VaJ_!^50FFI>6{>)I
z3VM|RG6hdqAMz(i&foL2Rdxs7#V~mOfRz>Jn|$JPNy*@`TU-#JY#alv3c?ZtxDo)O
zmf;*V{M)yEp*1Y5+k1e<fKvv!cVzwxs~ozZK%Ds&kO?lrSzrXVw!vA=Cj$feintjj
zs@ER;>7Rmh5_JdV)t{FSf+M&oYs2?HKd!^0f#7u8^-7<Y<Gu!xQ}BnF^*1mKfSRGj
z$6Q=E|5F_Cw4}e><{-c(y7C61j1T?o+lbWs`kUS!Yd8Oghb2#OJmt`f^8XO9mV2;&
zL^D|koU{-e&v!j)wU_HYwLGWfHz?wzztPP{Ib^}9B7GmwE2Q|n_WK*%ELA?}P0d9X
z!;Bp3jvp|5D=*|91o5WUX5NHy9Gn`ypoGx08mY?S0M@mmrzcP|uWh`<w42^FH8u4Y
zeF)%jc(-p~LjZqA%*)FwXkqC!FXH#wa1La)2p`DSN(@U%N*+68)^l5kiuy|pBm{R*
zG*kC=R2xla{VQBe={x;0VxJVS6VI#iGlUw+fzX%GJMCBO7`JATl+>+XO(Vwlkb#Iy
zkT_8(5Hpizl7kW@LJLi;pLUHLo(Z{>vZdPJKWvlhheb0}d&1+iwz&CNJfi-T@%r|K
zi*~#rqA`xsQZD=om{*8>m&c6J(trgbTM)Cd_AE|ZZj6`ACx+Lhe3wtIS0f$;30or+
z*k27}h5D#CR06?<?cw@eF)Z|Fu!}x?{79=RaVv2@%EI<MODV0;q?-($J%TN-r>C=X
zby!aqTo^xXc~Wa>QIe~T-0VwQbnMYbUL}B1-)gHq_(QV&%`#H!HRaQ%IfBNY^GIHs
zq96wi)tx)DwxkijDS5TNGFo)7x6boPDG-7Z0Ls<*1d4qkpSYi!yu-S3DZf)9QDbmn
zb)lnA`BK4U<VAJeN!v|}=DpmmaYaT#@jWf-62k)P*_pi5NF*Gzy*{+G`zGVSu9Sey
z>61+C3ZBw7AdRQ3-(TiHbIB9{(|(#6La>Qwp&Ceh%ze4o8D(JkVZ;!ZN?>d`_6r;=
zzWO^cJp&f8oX%=tm1`0liD==^=4<`?Q@%wug86rAT*CN?>LRaGQhc>NOF>n{eCju<
z_I|VV0YHatqY#notam<v0%w24mFwld(l})2i3*v|Ru<Z$kGs8Bes^A+@cezjO9TvL
zf+IK7KRiHrnmzx&NNl^>jvRgRv+LnVSK>WWoS`MPcJq<0e@+@2uH0VBBz_t&6?TiQ
zsJ+$R0YhxgY_ueRB;-$z9niXo!H@xJHCAq|74I3CUVIk=Xo6Iqq>Y2x;YmV=uE(}B
z0``wZo1ce5U>Y0}VqP-cM?9$*GClqV%KYPNVwaLLyu_XSEA!dW(k(3){**Ukw~s4B
zv`i1p37u>;*hV1hlWYFfzw`lP7WJ5_gs{Sn&y9KcfxBuVxb-1DK-uh;hNTP)+&pV<
ztS@l>;|>-l$;ikM6l`Kayoe6RpTK0t-m0ozh-!~^H9nC{_?h40kgVNY+F&yOK23}#
zM&oTba2*ShxODuLu3jyDe|bE(++7$YeHWuKR!YwR9PkHeI$+c=ziHfW&@ly11U{9K
zHQ@n18mxK5QzN7F@c@DdfsCeRz|*|kZvLazX%dBVtYo)9o<d$|@!hmyo;G!+S=wTa
z9T`(eOW#f=7rr4oX<s^HYIC_YUBgcStqg1jMnp1{0pAu$QT&|H_4UB{Fz!CtG1@bq
zf6!)m=OLI;*czYf;+vGA2}2QdxI!UNu+@Y>2Ke9Yy!1DhI}%AD#zH}4Mnum=V-tLc
z)Cq)qR+g~<_Z#tiVuZtoS_f8I7n7%RD~wd_Y%{M8XuSpgzPgL>wEQrDdC}Sm@qG)g
zd&Hsv<U97^yY(}N-OF#26&b+)_MWXTex~^C3ven8;Dz(OpO9Rooqf+{_q^+pUgm;R
z6d6!=c3*NG;{Nz3CZ#x^6jzqS_v3eQtCI~r#Mi^bSN5{*p^TRwzuXTuH?z9ko~ug<
zr7#S{>H22ovPsm*G7<NA@o<^v`ug84@#M4F={oXlvZd>Mlb4O6xB_hbs5#$oTk8r;
z=f7OM;n`82<oX(qvkV}c*jV*1T&B#9i4BI-%OBDfWE>-TTIfj3UDkH2@U3T7$PJok
z>EX;&Bj}a{xLApzXu0_+g&su8hTD<ah{jv)tk-<htvy*^ghKj@pZnLRsh3dCQ;V)g
zaPP%UNQDg#E0HjWiuH<i4%$}*AEpcKNSI03wk;4c&e^%qJSpxfgtQsnxwB%%lv}|V
z20&tgphGfl{p=In-0w3^r5I_+4L%~I6S}<hi7Jih4d-DE-w4x+s;rfZ8=xH}4HuVc
zt&ps&EE<B2o<7bBJhB)B9%#?-CZ(^P`udHyEL=P7O%2>_TYp%_J>#1DN@dfsb{a2!
z*FMZ})!JKusjags+SRR}&ExOqYYf~sQht|79n*`?HvQ5zb~GIxZgb$vsok>OYpc{B
zpQhqD)_I6?r5<Pq&}@Mo(R>lE!(*!jT-Svh^5Ykkk94*9nqEJ<jSqEnR|vnMDiU&~
zPAbR2llLEfNRZ4xPY;O7kWm<zGvR#+F)<VbxI<W%-CjEtnW69Au4!iy;r1L7CM!@g
z5fJ=hZ+kQEVUpcB*2+FXpM6Bt82~weIxqIq+%{EWmAQ)0bCjpD9(q6X@Y<Ikb^8T%
zved)t=#{@OoL)y6Ioa+~8bpM6$s=>+#|y)HP+ROjNf#<M?WOwT$Onk`zficMy`=>S
zr^9h^usCnES%V-HL*C#dG%pJojcMFG_yAp-T6QBNBj;B{92N%ud7x{F@<9m+6#fAL
zG<<wy(3Exlu_Iq1iI$aBu4}ukv@|A!r)P^Re>Ih9wkQ_@H<_S4#R70WfzW4D!j@{@
zRK2iRs(-b4l1DHT!!D9<+k2SfQeuA<ui-k^$4SAX_D*kl^KEaE;@mLdJr)WYe1IvT
zMhaYlYrvA8--E8T&?{}kNY)w1uqnd#?~84y#X>#GX??_LmDcF1t_qeY>9{dse^VI1
zDDknjL7v#`*1VVziU<LcV8~%1^=_HDSEYDd6{q7^lwM1fv}J9}$wl|oaNg^7L;-7-
zZ+R*eWHd-LXK@M=$+Mjr_;oS?tWJw*_rXGe%A*O2^GU(e78f8x5<!e$JNx2ZO;-MB
z`0UF-&dBG_pF^jsdo~f!YVmmr-gYhL9Ud0VQVg{M-RoZ;`Lo@*UwWx+N+Rri>0!nZ
zhtp2}ju;aYvn9p}(nSsp?uYP50CxEwblzujo$nwZ^_{pZ`I13#9#iK^`1c(Ccw6&v
zZp*nj=GM-YHd+=p<^jXDXEjVD?$j}c<I^K$Bs~4ET9KKxkrVB`d(itY82WnB^7Gfo
z&6<ittc`q<&KP4TI1uZA(4@sau*Jchm=GqHzJ0qF79*t0G}26Dvfq=EHM8%Wy{zE!
z%*8VGVuXXcxm@j*!G2P$Wp5iI*b$%i%eW4w;vO5|u7N+=)&Du{ya0V0Q<FM7asq#~
z=F8OOd@Gmsp*qjMGpn85<o%26op<t5z;3;~C!tA!1_Z*D%S!9l$!hp!dV6s@J39@u
zK0t{yWP#xJ?Uvq*8*MJP4x=+oC>br{cRal~eR?L{9Jw-?_E<KxZ8(K^Uih}J;5G{o
z64%m`W&KNERZRgz2#$zo|KW#Tq~Cla$`iun$B!QyWRxgpZ|u7UhGGH$L?8S95hL_%
z3WB9%@A3S(uatYrk4hc`39MVx`8MVaD1V~*K&LPNRZj;i!I=tb<3@-sat&3<=1Cb$
zeomR6=vyJ{JF4a?Jv#0%vu^?52k<P7bBkZvoLm6^Pk#xpHPYYTBQCTvB|=u!!fMx?
z+rxJXgVGYs%b&m*%>u{;XE*D7D<TNtm`--$xDJfi7r=z5GHIx3u|bnxe!l$2A{kC<
z+aD|ikwM~Ey{CJ8Z`kXqsl}2E*sSf)0S)C(=-t!#9s$VB3K+WVGAiq1Pvt9wz3*1)
zj`$SnXpjiCB(Vqv-{65GF3@)iItD*;cIJZpDQ7dy!A6$}*wFaJGKrpw)p)U3ZI;>e
z?2MgKfA!y1J0%zfjjjsGkx;2KWc-E=N*^noUhXlG)8Bn<dIR<qQH5aH-$QDQn4aC%
zpoeNH`wp8s0)TNM9cPOJ>FqgtazFf{gWS$t?8mix_BfYLTZc_y5WpPn)Bxg@dYBu(
ziDZBwX%9oWm>YcGucn!fUOxr2+!r<B@%Zd@AXP#1*$Difs{7W&>_V|x?}7U&c~V7j
z^|<R+&bRo6=I=~kpJXv13%c!==lTjtH3rum)!tG4dY{beKo4~c!`J9Z`WNXCLw{ke
zH5;>0*SZg-RIq1tf9p!iUw_BCI)4`W9=$++h0(jDb2Uc7q+ElG*YmgbL)y#Cz~zD{
zHVd=%fScyy(XPjy*hu#Nj|rt6$H>DMpG1cs4Tf2LIRSw>2ig12+FXhc?m#L+SxQV8
z(>I)MJJt3Z=ZL{3aeOr)!@*<HdRX7a%Vi#^(v##4d_JfKAaIP$>}hkZ0Wkuyus|T-
z0o@c>z;R&}QH}{!0<TlBknGmqZxqg*S|zhQC~7F9K=RlDfK2PZQ*5lXv`y(_jjr|f
z_Rk$19peoGMi$;j7~6P&DVEZTfSeJWBLrdBAf_}~;41xGL!c%6s4))?wS2c|$z!}2
zy`9#6<Lc1?J!TjAZin`xDd8SUAE7yIrOB|+>t(=Gp=9ec_p{d1ZpW&!47#}nTT$qI
znFwlqY(1kl&HD`>znHO4LBrR8Q$1j7I45d?5wHF}^M>5jnpGAth<lN!<FCG!>I+c1
z*<CFvW_Asu$M*`zNKZIBSh7VdOzy*p1c*e_ipD+uR+jnAM$ZFr?s)CXV^6~3R^SI<
zLYG+WGdgDGUmK=FGwD_1J|Zinl;Nan7U+-E9s*BRvPvZ!KGxJejnf=72E^tTRaP2C
zZYz!X&{h|0^DpN0#npnqg~q_KTlIKFY<;;%=2flg2Z~;<>t^^sdiI&>!hbKvH<e}9
znB5h9e2&f{1jiaU54zQ#bfQw{#x{3FXFsB~Y*b@}k``%9Wfs^s+G4I#Rq9jG#ZZ}p
zNhC4l*g-h8D0@NF>DZq}-K_$vYwNHvD+NdL=f=9(nVLlOjHj5;FRDqeO>`HAhqc<9
zY(p>KrQ|z9FrM|re{*KAl?N6#*myW0yTJY8Tv2z@U!h@?_I%Sy^w&;H4EhDz%xHGk
z@SyPW=&QAInd2k(z<ECj@!8#@gNhg2_)z5mCR$+>rt9HTDzG=BCfZ+PQK=Hw-|GRZ
z`(h#JGw*GDY!&2k#s8uo5{d~!Nd57(u(oI#?SPG&pSf-lwQDOzA5K~n#^N*%ALdTo
zk`Z^bJiq5qw;TLr%bZ{JbRqgt{=(9|(a2-#hj30;q=Uo-xY=+3;)a@pR6OsOfHLHx
zK$fXht|95J99*bpRGV*7PeYS`LSfhgGJ9I5e>^B;8Zq_p|I5xs)rN!qBMW<Yk;eag
zJrcqcty>POF77U`xkzkn+0X6Yz_nu0Rey3V;@3gjWcxd0v9!R;UT5kXNv3UC|5&bw
zVH6Iw9N#BZZWP28*_{73qSN2X`jodD>aLr*qrgeh#_8<!P-5MO`OV~4j7>G|p=^SE
z*Qo_F{d0|Xo5c*L-H*uc(}qIj99h<ems@uO>&xH>t&07->+DU<RNgxOe_ZIs&vWt^
zb-;xtVezjLtip>It_pnQ#n>JyBk}4&+m>gdOz)ZZfvVul@!E|UAyqVlt3?WKIm=P=
z2OGM|kd9NpFgFKAxV{J|bU#G>$Psh1O*(z~(-(o!Pa_%+Zl}I&J-+bYzOU2#kHAzc
z9<YQBJk!?i*-6NgCH{pMO<(7&9{m6Ue_<v0MUr8YhrR6w{>$^;YoePq?-*|98_cP@
zgdI8g!f}2$zSkvI*1`H+#94_FHa-xanMnfQhXxszRv0pv-c9}C1NvT;qahv}e37=r
zEI@J?+6Y&>N&f<BwDtu9s7PuR2quP_|D#qV&HbZyY54t|FwypUbM0JEgHx`en{4x4
zK@zE7dgzj5cWz_RFHE{5CNU{E<o9Yw5gjbq?)ocIAdb(EMj0!fu<-&1ABZ?yP$Ztu
zSk#sYdTfT|rFmo#5M>zwaV~3ilP@yD6n9CTFYKA$HUq2=j=sl5l9V@-+0f<)Y}E8e
zxmWv!()~(ACdEiXI?8u+d}M(S*V5$T?NgrFKahgOcx(0og>-a+mFhXi=f}^cxsSd6
z=|K7g_^G_|jSB|OiJUl)>;9v&ona8jz%6~<()y3zh1@Wp?sg4fW=V#;!pvq^lkd~B
zt{wJeY811=P+_f(m}j10|LzQVbDs+tIG+Jw59lGN#f-L4`9wRba(34he?|x-xh=oo
zt*~WP7NYvI<}2H6FOh}HZGmv_qaHh{Ud4)0biv6=1Jkdib+==EsXs^0|M}4)ROyE%
z+ke_$j*C|Erf(5Lw-R&0H)#W!RH)o?`+$i#k%3`R>Hc*b-BO}v1>ILUNSh3kKh%IC
zdAnmtTXNuz+b==8hJ`QVUoP(DaWJi3T#Ga-<KK(-7Vb<w={{m;@LZ@d=f2K!=ScWm
zRJUQXN87b}wq8_pG5;*+OTwSXOEd($?3D48MUem3=&Sollg5eI?)vMklZ(X6*{Xy1
zFIY2WTStj%dXhB{8&$e3<j(vK?+c$VBrnNa{oQ_HGwj%xjQkRW{I#E+39k!gosA8T
z>?gWO?6ywW|1Nj6)r;K6kJP*Rt@XmH-*I|VFj8&C?a`(Q;zgQ*(J#%Xg751Wr}j*Z
zwz_)die3(id0#_*8P66*wnEYS>Gr=R71Wv2Vd@TgUh?^0R&Z*=VjC`^AC{S&+BBT?
z%Z9%~KQuHv+LaZmVtWq*GpT-rpCXKc{0a)&PiH)>ta?20&IGrouXYGddh%vFx~_Iy
z&UD*mt}a9RZt&2S@C~?<d3HwiUTv%I-$y59!9jlXY1}dK=0j(gi#MCCq3rx|r<Xy=
zzZN@wnOAwtZK#O5UMu;%Wa}*kU(O#jx*@d<0$RH6yR;WKk)QrOMw>3QG~+S;p}=$1
zb`f03gdFcnxcS9V;bWqE)b^=UZw>;!<T-dNC%RvTosXTy)gI2bmd3-#?Ou5Y|FV5u
zaU|+hT^B2F7#?yKA%yMOaJ0MfunY}>6X=iicOsN{sf_s1&$cbY6CXXZptaE6<Vefq
zsxPc%*EUA0R(d-gz0-@OX4U>sQ^$aM)zRqax%tTHsA~K=JS5-bx(h|Gc@I3dO%4Hk
zZtIHK3rQ|#YMIraYJ)bI2w8vc@uv1ij}e1*FnXI77|tsz<l^xnyO~ww4H_L@76iel
zjY>4>P<AssTWt`OuDMB2bLKAo3I)NIv*mppQoFzBvUpQrPHtF6*jvKutj&c~;M(u8
zyU0%voOCu^noh{U_cAojv?q5l+15!s^_0{-J>h@7GE9u|9fjhS{}B8tt?<dW289}!
z(chol|F#PwuWT3f4w5|DwVgd?-TRFA{AOPnd3(Z_?R)0n9uO1`3YW*GCteFj?7R=>
zyJj!nX$xId5O{B0rYS5P)=*PE55+OrUg*6TphmEDVPyYXCXJDAF3S0%-fm6BCP(Sr
zX{g^;YX862J>tWkf&m-kvxSvO2|ESmexWoTfBh~>S#U>z_fFo!a+B(<!=w(l$yjH0
z#9e$E&i}4<B(I5BGPM<!tsyOf<-#=j%K=@p4f$IG(FO9^VuLPc(-9`G(fAR;id(4v
zK11=gi?}Cq+F$g4Hto-<l}oqTuF4DQEB2@*A;fQ<e^Uw925tQfC_%0VQ)iBY+;U6J
z%*UD(2%KAR5%Sd->AGhu0t->HhV)wx=UxJG-JuRo-SBA^-FEc1D2s!Nj=hdr@wnAQ
zw^aJ3N{n&m;o)IQLB;HLs6L5up6U{0Q|P+7^if|XihUNoYO~7J=@R$u4cPotoRBx3
zEYHo$qdax1na=;!+bfgS{~;qI1C>SQEXSPr7Cg67<nBS<9$17TkDc8WbM6(<v-v&K
z#ke;%nKF3@9}Jp<vB2wDWR)!ey_x3HLdn9P5aOt@>3CJ+R?<c4`wi3#R^c~RtEbB}
zt&PUC9^6SEU6(2t4Yf9%svkV)cFW?D>-P!&aErDXb?AA@-SCALU521H?BWHz=}Qu}
zX735OB>Wtww*mqJB1hkv#~H*eKNZgO)S0ShitQS(D7$f*5hdG8JiO{i7u%IFMvFlB
zxRwZX-bMU2Q`$0=9k)`&YX0C{Be=tkP2u9=B2sX4<_YsfL_`E86sBhW&5Vk;5;5lW
zFUiRY=Wp^<qYR23<gdS5c{Beei6{JCz;pdSuO~Ol)nk?_lq%e9ZEcO>iHM0?ope@@
z&QeCXxw$Wl8S)fHm)^{TP@Pa<{n@uPHa32hJh$JEXK!lCu<zC|dxY9<Q$c?E#moC(
z?Ilpqw6x+Uu#;u!2{6B={ah;c_UqgefO}dysQ%Qol+tBgrU_)wt2&z_==LpM{xG>W
zs7bA?sECHv?@WF)ws+;i=}nSLsx9Vfchf6s_6-*>3h*lN`QUcV9wj7DG*JKeS;#=&
z>Cb4U7uFJass!!!ElxVZzuyn^NBnqN+iw=Uz$1d%Z^cDE(FQk$IT6(Vm6>d$LX+h&
z);;Ix@P&@~`S}jx<U9R7@}ls#x*bo5DJZ*&(}yhrbO+Zv*|4qxBdT4tlY%>jBsz&O
zufxY4?`$2NDHn`p^qU<Q7?)^dtLCJ9L!1AcNjlMHQu2_t_cTJkl=@xZLHI(jJ_+i2
z_{;+VY>M{CrKP1l%WtbvgvcQ@?((eO4M!mEI7*2=QxTOEd`r%46D-Mdw+eoYB#@@7
zs|yw7u%}1fOyzaS_$OKV1@y9Mo6#$wsLo?OSYKxR;_o}c!}C?hVkATszXG}_BAOKb
zF?ZO)>r1%3IMwoNUbt0`I3<zP;o;%8PL})ydJS6*MAKe_92u%PQdQcAM-k?6sOux1
zIePtgGK81`eP_ODLTT+1lb<_{&hN71C-yH8d)lgS_=gc_>ng|ZH&pjjI!H_sS-r5+
zYx5L8s@lp?O51)cn4xU`+Z=6E;_u0MW7VKdg$TDGY*wQuq*rIZc?COptD%o?set$Z
zHqWNR$9!S@$mnR;$D<ATWwPx&&uR`u$a>I6GdyMOrYGbtw5JZf&Z3_MRyyb&<#`FZ
z?LR1gpJ`67tJlA9@9zf5^+`%=(;ZFfk%sKbZ>qkjE6s&mtG(U_IeM*0{68)w#m>en
zFH6R)PR}fc{<!~}=uQbqK@@ByUlggD=@<_oYVw|;^@Aeuo8*CWu}fwgWXjnp;(>V0
z0v^Y9e|m!iRjDbkv&*s>9yZ`(5BSn3aWu|MP2Fi`6A!1&S7Cg@%}vb6gonjhJ)KYO
zi0xiG&C&g~{rCDoHMOMqhqAJ=CGX{#I(GvN)vW1$I~~ht^ez`V4ILfAQ6~bw=hzXx
zlVGP>*}~o`{n^{wyL?kpT1r=L-F15E_D8V)L%!kz$%a|n%`WMTCwMAqjD#B6+IM>Q
z!i@%G1qfa4We;0)&d;YZGc)^NvtmJg((^!{k}z-OMUlFIV#pVz4Bo(lXI0wrR+BN(
z8S}CAU((M5jWts6RBi9HT^}PSCl67GM<Was13Ax2&N&|WKXGPU@i6-I!PVpKkafd-
zdd>aQflKMLu-|0`+%&$MIJy-VUb6)+^SfB0r9=MRxqU(lTg~L=JAIPNa@Qn=a%)_)
zVOoVV63^bF`Xj+2X3O6pG}Bk7XZ;*<4USPOZw6K!)76=A_FY;HlvLH!TK8)2ec>QL
zJ{Pu0jBJKGK&GM_P--FLpnGo;KDg?5{*{Z>Y`kD^r8lUa`dhkaisA?94B9~b;9!68
zTQOZrk!cpTQ<XIN>!*_iD4;0t_wVZmjW{FkDBH?66%}nJoy~a3oYDRA|14~Fo4n8-
zr6dU<V|jZUyK!Q(JU2JDCI6ARHxBvR>eAB1iafY6|KSRo>Dyh!&nHtSsjzy>Hh*x5
z9@TXWevp@#aIVp@r(n2)VO%mkW;a=!OQ1vUp$h*{#LH5k)vj|J7G~gROh`}ouwH$6
zWvR%w5%NxIg8a^=1DJw`2X52bhQ9i5QWQyezn4Rw^n8svr3ZgYZ83Bk7Gel6g;-MC
z?^aS^*Kh`Ro0Oz@GSYfwQPyS?u)Iy>y!7L))69$c?|wTAg_gm1drdB{te`io4G+I8
zvgYS_t&{vU<VGjJi2I(7v!TJc1qEkIVx`I0hmWhYS-Galt<OY9Z=fS5S~l>5+w&j&
zVW+s>7eUTK$w$rgfBqCph4CxRJ?L-mmw2Brq&b=>FX2{~q#ko0xhkCx&n_aLxj2@-
z$r=7DaiIf4#Z}_;7`)9G^*KKN)^*VZ|7pIz>=T!v#E;%}lz3*)gsmO8U2?5nT9#?1
z#1#x%ykw02sU9)ML}_eBB5w96B|Mz+@PSw9CZk)L=%Tsgw=;E#3bH_aO=oRveG8*+
zruO#z!stk!bs@>N5gJ247F+L~5P~TYa`;f{KATFFHqodP(hnWD8IXwodH7bhfWg7R
zK_nKR(wa)3otTK|9FH?Up|28Rg9jK?3>!0(lY4$gUu9xhL*V`hYc)o<k6Jn8I+tFj
zc(vP8G|Uc>OS!$UOu*my5&4Vu_FB7pT@qLYMQXfJo5&yWIQ``JCnDB`MjRL?yj$g*
zdDnRU1v~P@&)05VN4?E*J;fKr+0JoRDKs!vi7ZaEY;v;?S`Kbn3ulcW+!F?_@nI^V
zVojU=Kxm1Cn=2eUE0Q&F#LJm;#e)v!%3g6<87JP)V1XQbo5^w@5^9qTU6&x$j3H!{
zO4VBkv(nYoJ+%GA5#K#VeqWQ8?wHfch(27k(6JBvK^FDR8)KR`=&+?cgQeH}9Oo6W
zfBHRh%2VBwc#lg!@jmxQPSQgE<(q`p&m}fb57sZctMl?$u1GXv?suCw{9gVR+%Yi`
z2YWZhI7FYM$mt}?Op!9daj<-IOvof5vKv;;#qh|8>c;zzmBuf)F#hdTESdxVeWjhm
zL`w6D$&?QdNIsxR98s24PK?toM56}>Mw5ZHihld#jubG2!mnZ9AR&9Ty|Lj>@4=5T
z$bl|SEZz_iZlc0h&BJ4$7_r^c6D~YqtFQlTV$*qpD;s9R+y5vlWHr_CO+S7@)BqxP
zcDoDd`&wKahj>h0*ok`N3}a4{3?S6H7&lBm?Qqb^HGTK&DU4U>w^a0719PbuNE;F^
z4z3pK#@MDazvCsf=+q!f|N4Vd|Dbn5ttr;E;8#m0ts87LwY5JbCMLeM#+;a$i2>4&
z;)p55L~QFpY*eNFLZEkA`m{~Znjymh^eTl{*mKD`+|bZaaQLnE34K|@*oC33sln;|
z(&`NKx8#denTbTwNYbP;K33+F$Fa$-lZ19O8W~7&G%^x}qNa6nHs+768@~TZ6~xL;
zf+az%H)<!SzRhKx{7L%0d6_1}b>|E2OFs$iDI~bKxSsz|tC++dULEOUwV{K#ru;w6
zo%=u2?H|W=6S)iB9o)Dnji{W8!i^}mxEG1^C1a#o<{UX>HCAeoLrin3oX^ZqbC_m{
zLW{BG)GX)7GC7;w<9kirf5Z3t`DxqZvpuf8ulM!7UeDKceLf#K1R>9A35)H;C-hDz
z8C+uAyy4?x4TjsHmXF`{j7D4tj(>3KMyJLX!Xrl+!{-j3#J;_9tjGRMccbn2R~{Uc
zcNjq}!aqDbd>GdA8b1E@+KaKl;cmuhqbAQ_r9i>L=_%c)g2%aiNp3#fQ25w#`}}-0
z2vneAt63vhEW$gM9prF0Im5LBzSxu!gI`9cBMqK*+_mrRhW<gK#<?wwnQqCQ%r=FC
zCpyS$qWAhW=NoW0Lst}MAj<uR>u}!x)hwIGF7h%!XjX7gkkPj@jozf`m}pPu-q&=6
zc&s`klS9s&40kJH&RMi@f{k)k<gp_IHP7oJ;8ugF+N=c=dd*B1y|ib#&5x<SmHHA*
zW(Trl5zZ;<5VySUZIpe3VNErqNaL~P2mTwC=uvWor`)^O`hQ@L1!bu!xeI(>vbzO}
z>@UhEC2$GO!Gi9q!{P0d=Yo}>t<cBu5ocCrix*@bo_|~g1e+OiL5nMQh8T~`%ClUO
z=)P$|&7Fy94Ct@l@8>XhBAa!xlULMtb<t?svWGp&Z!1f_R>zmMufKOHq#`Tc|7I|2
zbQ#K+JLer1Y^Dz9Xa2syKj0;R3hWr+yWv)hK!qN90-wLFwJ(t0AU#&kPaXRd@p$Z4
zfYZ-9riVi0>3r*^_j}mr4ZU!$rMrX9^{Rc1a}QoV1tkcB9-Sp8f1Oz|OZF*~$rt2V
z&od1Eta$CAvFBF?XDQ8C4U*jcHwmWX)0k-wB+3uak%RSC0~jjnF{){ObG*aOnQYJ6
zK0N-khsrs$@&hZMfQ8`pYr0hvYr5$+#je>51}3@F_*g|yy=J<NT9sJpx+_)sg0x+&
znZNP*?O;fsHGE{EMVB3<H!nLZrhO~AlOY6_LbLP`5)6N(>Xz@9oiW@fkICzcXpw|0
zJuidJjKCzDPrmJEv!yx?<Q~ZD<n7+`9D}-j`}Pq(fEc0+OBP>?{m^YND=>x{Ej5Wm
zVl2XW)G%R@FZlSyUjASzt=-=AlG~v@ErE((L6-2!Y?weA@AkH?cTGW2_MtkCpQ{g=
zc;C-|0ho|Ot|pVGsfCkY!2Qy$FV`KC%825hqECi4D3L97)8qPUw0wMgAoIT5VlTLr
zNP@V^55`X0C8Zn|8fs1i6>RlxVDLrX2DU7%y6`hlk2)!c2k%dcg*3n;@7==FCR%Fz
zoZa2CZlT%!POg1R%}oRX0ZroPgGyfoXnPf5aZiQlLP+VaIr+U2dJlmP_---?^yF{y
z$ma5H^ly}y#E$C)%&+&=uJ#ql_z%{NP<6nbP&?7qoj;k};To&vC5+JJLvXZCNlg`M
zM-f(_qEN)GOawXGFc+y{!Udssm$jf;;w8Ww`ByV}YMVc)vQoK%W9uq=<>pPMj8pPG
zE?~}ypaGrjxQm$wU<xY!F6Wp}Kyd)vmmO^B>J^_ILEZ0Ssj|9Whg0H%%P9|FJyfyH
zHGTl2Whk;IBbW1FgtHX4RR3BHfWH*C^RGO9E8w4Baac6mp>bxHz-DkRK9kmjh7<cF
z%u&MV9F6OW-<#w)sf!tlO;ix30Os%`>?;^*1niH)(I@}fk}rP8slrvBY||G~aPbIl
z>46_>nHKb|@AK!+U0G(RMP%+o4=2R=(xshAo_u9(S5Qo=YilP10P*Kw>RB^@yPsI*
zjZoFSTr}{HG_|z>&PFJ^m-PVIdA5itIYZ2cjl4g8u1b@(5m&R64OGtf0<R^D-q8^g
zz3S((Da}{lu`u?la0kH8JYG0ee<>efx}#ana1vw*H6Smff~5K|;@yIYP~Waj=i}Eh
zBd9un#@rJ!tpY(0SY=NJ{aK}H4K|RGitk=c`1h~EV6a_Do)g-kVPR*+y|P2c-o@Kt
z2#8bfBxO#d?GAVRJe-}Z^{%J9@z&gE3$6R;e`?_yWe3&nY0~C760y;mIyw)%LjwH$
zg>qZhLfqO+EOjs8`Hz~8wbbUU;m#%^OK^BRzRMG5xoCUk<J1JuJP#V(VX*ny+Dn>T
zjq={^4@YisqucsvJ8Izc`pW}2P9HJ0?Zr)#rybIYWnjyD*P0Vh=GEn0b8Ijnx@sHr
z#wSgYswot$c+2J??Kj@Tw;)0{47gYCHEFoe1}(_>D5R9}i9u%NMH<Ft8tfc{K<2-X
zG>ek-v`?|=x(53C;?v%(_^Rl<0|fCEf}_t=+gLX8atSS3oC-NF%FFK_gBF0t?f~k)
z;x3bLTt_x`_tqZX9XHSeK-&RRf<umwlxJJ<>*bFnAP+wV8$yieY6POvUIPWUD1mK}
z3dGz_O7SnD`34S~0l-COMs<MN-~W!pC~1n~#I^L2ETX>KuL&A~w~;V*{|!{CSmr|Y
zsA{FA4>CQ8LZRg3eZ5U_^HutyigF`VR6J^9Dx1k&93qEUTS%)X2IxN(EieI7PJdRP
z{=uy)kY-xZc+j6_#ilcpN;d{~Uf7g`M-edboB?0Z-kc035ItP3^mDt}N-x8GTJpM3
zNznayZ=yn?qw+AVQcidP+&SF3WJB+#W9GI(B;-vYxzIl2xP7yAh$TL{L?{&svw{}`
zZ|oO~nnqE$sjX=>;G)|dPrPFu88@CzLA<pkAD;h)VlY&i6?^{<6nPl+Z?@5{zlcc3
zB8SVigjQWrY$$*0(KZouMGgyu#s&!(697r}KhT&DhP?4emaZTY)qDLrCl_*1%&|lG
zv!jN#NL63gnQs6`tqU$llAP4JvAsk`h0+unVuKV^Z_*X2g*euJ2>$$a7pOt#Vxmt&
zFz+<5B9zlQuIc8~hyyDmQnzV%Em({ceP7M^S)ni$)joU+Z2*vIJ{x1)_`tkr<HM&<
zuws)KhU5t_(gVH$8|bb8T-J4g!V|q5`P1bz6f-i?SFrHGXhCvxm6_Kw3W1vt2{)3=
z60d>K)jl$JDFL1|dfwTURC(HH<T9hp5sk*#g?V{FOM6O(KHI3NRB#fME)od@C<(T=
z`RG6N6%?hV{dYX*Cfq@Q4!iNCa)o`I7(Z5yK0;SsXyHJ&-mHHHmeBh%I+O2Luvjcn
zju2;dDPlcrD5~!m3>=s+03P9hJHpuCy#h|{ngi^%zPwf4eFyg;s2svM32M;S+xrg`
zvP1*UKn!HdhsHRA(p1x5!iF|%++b+sFh}inQox-9Ghc)QDr>cYdkw`G(8oVbi+XKL
z;a)ACOVGIS30VyC^Ldap!wFQf3ng(oUdcGrvX(?$EVqlMeJo#xhpEkM4oMNrz{i=;
zw}Fa*aD$n`5BJX&1R<B6wUWqWg(KlxMAWzZoJOKa_4S8)yhBEzeA`@*3@M0s_^%U3
z7lB2nsNRz_C~`yYXYfyzUlt58{k^;n_h4YEu0(ke+g)n5n@caC#rfDD=>}dVDwu;i
zdv6}6ynlWfyeru>+c!V{KRh`DND<|!b%{u@5CGa}D6*buJis+ub=6IO=>oJ6Mu76P
z+;Gb(NnBfUUw7K{{zVdpvm$vzo36cxx*eDZbY?80qX*F&FJ3+cKY}@2zZ|cV&la;8
zV9iFV>CMRq!CSGvTtG3^`x$>=FfV$HT5N^|EZO`o<CU=?(P_BPLb@!sR@fZq8C#1A
I^UL@C3pg|r2mk;8

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/intune-onboarding.png b/windows/security/threat-protection/microsoft-defender-atp/images/intune-onboarding.png
new file mode 100644
index 0000000000000000000000000000000000000000..216b92846710935fcb6d751ce8b08c0437538b46
GIT binary patch
literal 121629
zcmeGEWl)vv8$JpzLPAPHKtxcGl9q0i?(PQZ?rtSTM39n3kY03mN{4iZba%tPme1q!
z|IMD+`@=i)&b%MqHDIj8b>CN<aU92a-h|4_ieWq?dI*6)FeJo<6(NuZ!4L?19tsk8
z$KcsgDEJH2PF%wg0>P(%eZxs8zB~YLB0EXQh#;@Rp%XwJBC2gUKp@W{62fnk-I8|Z
zeBG3cQ#kH8P%2^$$m!t=IVFX#KRXjkOeL7dK?PPWR6?rvL<0<+Q=gSMlT^GaE3@2H
zolQ2C=c#7EKKDQ(e`}$pioWp*`?Il<X*R~k6|(0qM3BwQvt+{43$t2}#j3H^Us4Ik
zCYEQpHx=bijIpoJuJfOBQ3>#0CJpi}&(=7u3kv`DGB^IM@9G!w-wTN(u<gGOh0Q}+
z49NbzGFaOenXv!96o?G%;{O{)jS&%c(kzBih%klq_vgvTB-6FfsA%s#5fUT$5iA^K
zm$UqzOUHP~&1pS4YszUcfLwH^%C*dHt|*PX_@BYa-eR&#Z3|U7{P--KyslRl#ZE^5
z=i^#V;fI)xZ@K?_=l^|r%$(By-8&|TkeKqnagsvln7Dseg`M>RDLC}MWsN-g|8O_{
z|F?tf=>IQlri9_bTqw2_Rz~r1Z_A#fB%Z1l?7yvzb&led1d%_U6%v-5JdcI)Fze5}
zT<l!Ge{b*Wh{EW*LAq0f9=5tI`y9H%Bud8@@-+4Sm%b~N0r;qEOpeX4eI$_ZoFf>i
zj^`nHEJ=Gv7BX_(Qz4I!NF(xYd{$O`f%T<rKWTYB)(Xu9jz=m>R;`aa%`C{btya7b
z2})52oP#4H%TO-e-)mnBvK<<l3|#xf4-wpJSE%OZK)|Al_xthy7pW##Sg7~Nnd)Hr
z6DFkD@m%_C$FfA?1W%Q{YR{Ex33HPZy4D#I6AK4I_?nDx+PYQK%tt)L$Ai|LH`2Tg
z;Ut&QV&|S(tv&rzhdbHPKa)8hN`-f>xOwW0Op`DKjSzM`jA^>FW6-;&&brY2qTTI7
zUjil+2xV)FPYn(Fsz&i6TG(m$kEaJ^b&j(X*E<lWbdo??(n6U9a3OZ}4On%UP6iYH
z4D}^-xJ{SlHj07NtWFL3$sY*{qQQnFCg^boDb1N49<nSv9on_Y;dwlPd<CvFsqXq}
zc?Dr^KRu)56uoi><GJfHwb!Ac&*aK2U(qs`%x8hB!ntAp$F3$_&pwA5w_UDWpBcqv
znytluFXx&??_hq&Cx&=CDTP!`g}~^0WX4*U5LJG*Q^#}IOK*MAk&*NQSG`F+Me9;?
zL?G9PULpt_gxlIeQ|Flb6ZPw%(Kp-3*c3sq_(tSHq&2vBrXpsaQ$xVw$Wm<4{Vsle
z6R$S}%N?w)<*3KrL}uu7rLpaE!_QP-G1<<6^{|*c|2?+rgXl5vHje8xO+raq$6lZg
z#ILt(Y{B9DygHB1cI??!=eIrC`pQg%K^tyVhy>~*Qj5I@elKuOh{J-G2@fmi-F;lE
zwYWRKW9Ug;QH?<<x)=F|!*!5r?VNQx)6N1zaM}_<IA+}`@PJ|jCwkhq?a;yYNL`;0
zB8e~EOu)DX4hmJy2rI><9P_PQXi(8p6H_?Id`KqcNoTDR?7+(|((Q&G_Y((JV99hi
zo+Bc(=FeM-8Eq%L*?WwgMcWwr2phw@4+O*vgDh|ox--LYI&0!LYd>n3<Mh1m@$l5V
zKSVhHz*|KU?yn2BO$oUUr_vuAXWyA!_#il_@mrSoLn>omi;=*vn6>9+E$(C~)$=j#
zMgtdok|sVaHgycdvV?`nIn==@5*njUU{)d%+hitpg|l8bz;wSKJ*n-Bsy3I!_wl}u
zDOP-vfwWo^QC93VhiX;81G_=J7Qf8!58#N4E4Mm|K`|Sy893%pFjLir3Cf662FI5l
zf3Y0i=;=`!uYw&HwI5Rh%YL<7*v7$sPqo86M6sKBQ=K<=mcyRXxtU;4WikG23zLV+
zrj`<IaL!R<vO0JV4bs=wAF@6E&V5c^&M5MvN;9Ha+*_`^@(dUYikBxoFoX0xdDnKU
zpI^VpWz=M1$<0MYfOArgqbaz+N$E@pah5fTsH<l;+#O`-!nLi`@12J@C6FKX+nPx3
zhOCf5nfZZ}atw60hVeKm_jZMB%bw_H3k^{H=$IQEV#dFH{JU#!=^K^gDXS2vl*w*a
zSV#1t`A$o016+OW9I2`-MT#Xl3RLH5E;N0G6Xx$l6CbQOPSk_W49tfwLaJVJRHn3m
z8;f_T-FXqn)K6H}uWRJEb%}3Z(lps{*9|PIY0Z4Mq)%A2zjBmL@`P8veN%T*`<2HY
z55ND{QZUPCD&z0L7TUeOf389?y&ac!>Mna%8@F-SW4Q?545EV6gez~wx3R0Vae|8V
z6Ab4c-zQ`hdNqA^$oZ;zs-8>_WNbTQcd2U|S#-4@yk}hY5oVExQUGVZ^ASplTz2aj
zY?^6;wjJ-My#G;x%+WWXSU>RN*fMl{o4h;{y1ViDielcfBhQw2vq2+co%xZ^E#WbX
zf=j;7&zScwh%8`fJHx=(NQa4~gIA6~?b%XBf{`8Y32@2})>8!47ukm#@dYl&6n<|8
zlJ+#3J)CDhzxYNEdBiMe<+DlXvbWzV<5>DRpY%iIIr6rj$EOp0A#>eHmv&*%WrS96
z)@Ent2J3eWZbX5kx^D&aLpXlb;EEXxpK|}+5;GW#(r4PxcZ6E#a6{ZKg_@QTKHQ(U
zLSj}q+k@pHlb7xUdu40}+S!#)KjB!*HKu?F8NRmp-TuBC`bly{jnxs|WX)tz-VwT0
zVhQpCFdq=O$qfbhHT9em$cK0Kh1xE$Yy%wSAm>wwk2bhyBd)uy>xxVE@Q8>!4_d-#
zzdOp!?_rdc6`Q5Vau+r6%sx97>S^PUL-a%Iy1enxE>dg!fQvi!bMOJP39#5DvzdhV
zl4x|by2v0xs9IYq-TI*+T1sra7F&+eI>8ng63Z~2{b0)B9YODj07<LfRrk?ucgNk}
z3QtaTU8;EY?841AZg~>2gd4I6#=!jV+Cj6kTHgYRq|u!$@z$GQoXdCT_nR{Hu8Jm-
zS_3i=$KOATbAvJqx?}d-$DXU)-B2_Q=y^5qxp|9ny3#?3yAIFzXPsp58#npGldl82
zUV#&PDtV08+Y<?m|16;`RR!fHvPUo1hB`zIu&^C|R3KabVOPEjb9aW*m2Y_SHqh1h
zkQGeCrjt5uMg%?9Q^{*wnY48}8$D;d1*g=n0~KKQ5>P!0qo}a;8n-hw?K00#C(XYm
z$*rHF=x*mePxab?dD?o|_`3R`$N{hj`S{da!j++Ol=O+o2*=Xp+Ro*ut%)x~jp3FD
z;n})g!{2ouz7vtj$Kyoz>Yc!0JJcpk_hwx)HJm@`E9O57jy)!n|5UOuGjOZpc2KeQ
zegO*`!xaWAhl?F%N&60}jrS(2Cu+cSVfo}%L{0sXz0q85F<l|RA8v=YE|ZnlDuHbv
zvw}F(OzO*}bGY=T;QXeJ>hTOLA(wrVH8in78oy;#i&7yE-~@rQ*x^{B<LR`00=bGQ
zgkY*Py%()%dOADNowCOsoH)VRl1%;ZIN9(SY|qoz=8L^?6R3_3>!4=5DRWLZw)c0+
zlO>+cb)<p^LgsY7$F}|0*RLifJ&=IyK?K=WuE6oDpXz>#xjfo(5db+a$heIagqVBc
zTXvJCc5dLU&8t(H%4O#OJNX0q$<tt67TN<dUCy@bv?%(ZS>lGHJ2&s2d|fv*=|M@S
zZUlgsP=ABECM$os#Iu!Wu1jv7q?qidLB<i?k>Q%637iWlZe=1R$twF5LUCL;dp)#m
zuf<o(Kb2g-_8_*wzu1WCieR^zGLTaMD+p1nT-)f#QU0#V>)GMWV<IM4BnBI!Y#9+|
z#pgcW1pLTVg|rQ%K?9A3!6r`}|CBNVZ~Vb1i*jA)+waG8U(}6aHZE!EYa7T-M6F+&
zaZ$F=^)H^{UVZpcO_?#J?kag&O90hN@1l4-=y<qi+kI&@0P+y9q`;03D~gHU8?(5d
z1FX_DV$%m@O01@E<?9K|fnzV{LG1vNVD!!L!ixUMh7VP4jD>9-`L=A%8Q&LrPk2HO
z%8OajtCVmk#hXK2U`t6Hd@P$#bIk#xOTykr1*7dJUiSoI#aj(7bo7bMp*f*%i`M}6
z!l3p1lw<m|Q;7blrHPHG`lHha+wVXIe(Y?R=q%8W;kj}d;QSgy8Q2^F-Wj={@WMkk
zyfajgoeZA7>CP<K^K$=)@q)#zNk6&Z>cxitF)6-q8t-U^`%;xh_>)!;hg58bUHG{$
zYH(NXWx0l7fGVr6V91+Rg9#26us<%0WGpuB-SG1EiX*0y)=+p{Vy&m>n`AKyu$cHc
zjCoq4oFsLG@wD{@7I>Sz0y(h6c<@7773U9=b)7tQcHg6o_^G}_lxOS3(sl0K1=TF-
ztwM;s6&}B1^~b04&Zk>RaM@lOMU)WHuQ0H>o-BPu&VKK$Ptav-KI}G@7QwjyVhr`x
zK9a`(nVi5YtJ${*gSjLt%F(8c77d+-*n@f&gYJW~kF9(i+c@&JgJSQP2Y*TEt%ab*
z|Mq5IGYvY`xFdcdxqbRdn0pZCD>#4c6uyTb4^!av0Vbe7DQD0ThaDGr9{=;4#>r}R
zLii;}0lB*8hSx_cUwSN==5L>gFWaQ#JGPa5sYr<y(95Co|199nN>W1+ui}}u*-8*I
zz~}$Ih?!pTR1@Yqi9A;a2mQD!11PuI>va6;_9By>42`kW7+<%^=a1DtmP{W@-TfX`
z_u)s=n>7{}CSZbbRlE)mh?MUcO+KpjE+-^>!)A7rC|~EZe^E^LI)dDLBRWnFWem70
zjE(?;V7GGY`xeYRY}(dhj}dcWU@x%cDqy(BUO16LOD1FYcF&IKx$`f!t%L<bd@E)j
zKnzxbrZmj<HUgFKrE_>j>5ad4KFskt=vwqRd`B40NGdGPJz7wYp3DEjZfRV0#-(ZP
zBh;;(Wgr8pCw%#uJTXfIS2@tkIk>iDTaW->2l^{13f=6f>k9zm$F_xu;~u-N32UEc
zTLw&|+#nQQd@%*s5Sz;SX$UikxF)njz5O_Dn(KK$kj%3sJ>@6IEGk_}vqg+oH21fS
zC=)v0kLAD-oxW&wkIfMtlzY?5hSL+D`s6GV-wCg`(^J}T_t#^t;Z)a-yP%#_ULrtu
zI_xFJ*m8`0k-t!@EY0H98|4U$?%CjUiQXC4y77;DM3_hAP2ea5yxnb(dCAe=t;l!g
zMPH*&twVa4(q;IOoUcinh5kas`}=Ry45!Xg900ouw7mgp!%m+{4kZ$xJadI+%om^#
zc4~_8GC&KjkAi)8kIyE;y0@L;KD7hnqaY=i<9%^;qt0~v_D4yP-OJEQs`=jncP8P=
z6I`)%A6JUE1>-Wx+v`&FvkkvP;*)a32x;Tt1i7o)+j&cr=~CV^CVG~DbWh?{_@rre
zB<MP<ld5n&`N9t0I;kVLZfFGl5Vlwtg#*z!OpzkL5~-{SpWu^Jjt=k^;j4hR#BpYN
zh#|~4>y(iCt084xhsJup9MfvU^w)vD&pSECOnL(RL$!^fLe`-m78^vDQbcpAQNA<x
z<RA8Ec&OQk@@oXEaQ#QxDiP|}0#r<)P)ELDt+Ew&>qo2NL2Ya~BEx;mZhI*bAT{v7
z@(9#szd6IbHUu}FLMUS*9zWNE9=l6hN}r44t&DDCtoCd>p)J7i5ieY4uoayCNr_~V
zkF6G5x%c`Q57RgDdXb9m)P1SYa(PB0Oy}>2AjMaAG+_k~70zYC-^tmHE}Z?wy~~M`
zgFl&+J8@gvg+9)rXcvANMTs60Ehmi2$UG&(%O10~1ika(9pBw*28emH?JgfnMn=*+
z)Zfnc5V5|JeDWUPX^@6Q^FkBMf{e*lQmoe8xo@T(s~H;UQ0dN*%r=1(21`v=M}^_T
zy`)ICGAUVKX!2Hx!bSM8za-xAFPxrh4?8p{dKt=$#G&UV?(7=MgA`{|YeF~g<Z5U%
zM?<qwy*#iJBc07AKiEa%PXENukvVqhPSc?zN-pdNr3UUQHU`zds36XsSl6rR*#IBh
zn1tNh(3vNWRG)}G3+fzSYE21KP6lYSXf4P(i{0Cilf;>Jf?&6t%TwA0pO&mMEkI2{
zYgya08`@`Eh<i87N`(fp-r_87^LP6=aoicRDHGlm${tU%WGeuYk&k(w!PspmhgLD*
zuU3Yw!Xfsb&X&|?m$_*f4+W*bc`Az5db|FJN&b~OGgtA^lWw_MxNfb3Fmy)p14tPP
zC7hh0QQodpK4+q6?BmI;^p0H_?^@o&JzY_rv}-KN;3a1qwv>)=yOUh~?jgAB`u?Ry
z1ErSlz+n0-#oWwyobx1J$#@!Z1jlSBhzKg7Nlk_sP{2jMQkKh%z0-6jTEp9jRIZP0
zcl4$xD|GUr--H6?!!VXt3W>QhHy$t2tlFp_#?n>Wks|>g<i%cz-2?)H+r~nGt*UP$
zlY=)`A%GEi<4G`74d6yvFEPyn<0GobSpJWkDwLw|45Nb$24^3LEXY_~HC--(<C0TT
z$7fBAe3;taT02k<yV8@|;9AR#w$3)n&G3gTPRuk3eBhXyrmV!C!ONn~z<v@>My`|(
zHX{qw8i(GOtm@zfc?+OSkpf3*O5Lbbfl#-NApNsdpyU)A%Q3Ok2|TgV?Bt7WJzm!;
zm+*4&DXKpkjiHNwE`#zi03U&?v-_RTW<2Xmy;mx3L+9vkITHHh-l$H>C&H=ZGFAke
z9y|M|iFDoE0>L=Ul~ESUo!m`iG9;D&Kmn1cqr#~~H!yuvcV(q;<|@Fs^kkm$F|L2V
z^Z}8SaH*bDdrkaDiCG}$Xh!uIpP0Tj=Q^A}UbziqNq9Nj@$nzQ1CVVz7}NyL0u#h)
zg_cMgL8iCA&dVJ6ZhRO+8lv{S`2<EM%k+D{reGNs<(Ok^=kxmA`t1aURLk(N7N3Fm
z*H1y=r!TJ~4G)&1u1*RNxRc<tmL@A4j5Ps|7)uKTmbG;+g^xI4X|~e>=!|~f;K#Z<
zeIR4SCw%h<9O$4tlWphl+Dc|*e_3dk#n!j*>dn2mSpM=oS)fi4;Q5W4T=_L5Wz)g0
z6xvE))VqEPr;>g>1p*iWrq0^W_a^>vEQ7yVfV2R77-Y0)lZSFKvG$RxfaDAre`=q8
z_AC$g9wtPseQGSWl(W`gR_L!j?xGqqO4^zJayFMt{SS16(J`yaOJQh<czgVO<5tdA
zP0=c+=zQm8Xu(;K+|Vk(dy+fvM?4y`B{SC7<tZCKYn|$PP7)T)dc8Jjkdrf#n=FAz
ze|k2k<EdYp<}rRBYx9n7y%i&GoQ3i2<$IXJ+vo9&7G5=qNbls3dWL52b_peAMirIl
zB}37Y(18S}QNl#Ed<skMy%WhHb@Yv~Ckq7FSImI*!yqj5oR%Y1x+iW`@StHGut9(|
zId&ST9@STtCt(S1zBi@_2{D`O28n{Spc+0_?Nb{7g8-9))d?kz?z(xVvf_HY+G^?V
z>lYL<!aC}~lwzUWzo|#-f94I&1luKl28cOE>+3&CjBOzuDtb!*C{zRP(tpRlGfSG}
zep%y5NmHsEi!aj*@ER=r7y0C2!?X<onTAQ{G&GQ)s93SPSX^aVy(=lLrk;MDMhBp9
zV6cwKrcb=Ts*`d=7a$(D)AZcx!SVN|9LeoLwMru%7!iD&qq9#-d^Thz-bq~F&hkx{
zepaPV_z0{6u%xracduV`$t013(9P>Q_>#A7^W|P1e>SHo7zoZ?Y1ZPZg%kl?5^?23
zT01%J#cmU4_F*lMqFkPBz|c`V2Oln21!roKi;o_o5Li6`llp-0!=h--mBPp+h#jFA
zS?&@w7&SYpe6U0e<f)N@ty}E<>Mlh<;Z<i7BEW=WDDR?EZNZMIJ2f!uOyl<AubBcN
zP?4xCq2@^#)_N|{idh#M$%n^!ukQFKM``Cu>o+`}{n5DiPuGc*jsZ>wq{<M;M2+|1
z<Y6U;#G7wm`faMwF$i3r_F<H7eO)JPUHq6gdCM_ne49-Lhfg5-#R)NX(Ln#kgguQ0
z(~J1a8jcHM0uPyXk7uxT!bozm@6kkEmdHw5>1*U8cZM%8#l@0`yVykx83sjV&Znw-
z%E0~^+wGxJ>q5WXdQX;eq;dNfoC`C81#2j9oC2ml5;v7g?f-RyEjH&}W2|s(qwqpS
zjG6ev#Fux}fC>nBW<G#%*_#pOk55@}fWI#RDgtR{#9v)(nMgcbzTQ1xJzLzWN8jNZ
z2@I5JP`r;`;t=TX*v<b07VUS!uMH^Pzr5U-05=K;R%v0STa_b;0J^im>e^y3F^~+2
zEijQ}9H>6E0(>QrTa#;Y6CZV<-|^UOxgUSCO&Q4LZWn8z*a9~^sYyuJKx_pvG?<qJ
zDGp2(Yz{y*xa|X;02GGet3Z9f3wcLIK#%lKZ<Ux{SiXBpy4-i{baAk*_E*uIaB&jH
zl_{)dK?aV4CGKgl4c9XBAhnj9$56DNylMl$Gv&9W?EPTW3geHJDVdhg-S!IrU)xF(
zU*XHOKIY0)i5w%Zl2#_pCmkRR<P-B~jlDMQHBKC8Sh!&&fDvt&ivX%GGOh@m;9|MM
zt6-KG{UlT{kaJMTRC+%Wq`!mn3O%D?ULC~%CXh$)nf;@u-H(6L<Eq$d={hxF0(&2E
zF$H20&@l`<lDWcerN#)wc!~~DZXG&69L#rQIZ*TE=eK~+3|rFStVjP+?pn*{(g^eD
zx=nYP1D^kxawF^{>Bp*vOqTG#;5%_u(G;SJ6(69b)!*4MY4J^O4*@yM?dHsi_kK^p
zoDOVS+6jKcRx&TbB`-nfMd{MmZcFzPIGHb{zcNElJ)RK}GsGwQ1Nphdkw5+c;$Zap
zUP4UiF{1d*KWPcJI~5DP?X^13MouYwv9c-(ojmC!Vu81*EBp!rp&P{N7)eV=i_!d)
zGk)c+&*lxxq+!@DPyp!*J~2Kj8IZ2q@HJfS`exDT=!pcLyAnLo`6!yi<GPnLjX=s)
zzT8n&@3u7$KdZ^<o^~zrPsy+C=RXycPdR$ABSWl)n{R-sI9z;`*RuBz8=K;}W>Os6
z-=d%R*Bl|bEh?bg9JKzeb}A5sv-|Jood-m39>#i+Wh{mM_v0h+UhoU8$I&jK60iIh
zg`v4c+km?T2L3IZX0V=Jwbi&8xl-|pdEiBFVvfG|1!nH{w*Z+Dqjf!`EGx_*{Po|8
zPu)}SIf}aD|JGLjzfetNwJ7FcA_TC>aG}K3zBrdaiAp!Xd@9p^?rWUk*86f|%>OBn
zn&V>Zayeq&Zyl|0)N$Jt=c+j;Y!}tz!KzfN9NSS`9_^6x&;M0T%@)6l*j?C3G2U&h
zu3Vht+h#JHZ>lXU|KiX(1fZe*s2Oke5@8N<`aeVTF|HHa{*VcR$PRS$Uhm7(Cv=__
zPwszPwN;r8WEH#qSH2YvG*UOkRJ-kxxLM($!quGcz2f0L-q%~1<yuUrbNDjL^54`m
zTG*^uf(34Nocfv%^t6*dI6gHM(aB!kg&xk6!gucw{a5!LPJ0@g(AIV9tzN_Bp?^`O
zqP85&(%C*XFTgW%aJ#P)M(ZF-mFf9Eldw@o3SPLorSWpe(K=<Oe`8?&%$DOWbLlDX
zUGz@%M2Ti$Skp61WJp>@20WzLVO3JbJ7iZm^vmB~fZ$)7!q(RGd3kyA^75Zg&TtK?
zW`^hIKOG$%eXrC~Q1CxHb1Bd$qs-ks6Wd_sAVjC(8i?XdmUZJzft$*n*cLH1&T`Vl
zdRaAt@vR>TQhmKwcR0YapH^Ou*U`~|Fi-IBE@XsH71Pm{7|Wf!el(BU0IPQTxT^E{
z6_{+#Ur0%*7plg@#<nimHG?n1lIC3(1QetXN{{PVzV+L25~Csq<>%*vsa=l+mzKUZ
z*Hh})KFw%ocm`2yq%Zv4^{o29STF<0ke892jg75XoeqqtUQh8{wBsZs{99y~Y%WH_
z+y{9;u0ATTQ6TT;Axo;&=xot-xXtLbhauy-ix6~zHbBLsETJX;WnO;1kb%LAhiGUD
zdU^trbD?HarN#%BUV(EF23`B-<W#}Y!Z`mP-04IyEv<c8F2O<ySKNt<=k>tSP^fMn
z$2(CSo1Pe&gX>$ny16{KrJ>ho%V%CKV126&600~pJw3(mx^XtyJs{Y<qVMOo^b{1}
zGKW#(dLJ|`U_r2Ln;2<nqhsxBv_~A$Z^M;ey=hG9Hwo-FQHmkXDJlx;T7iSaOH;<g
z#N_aUqcDmMGcz-5{z4(eWZZ)%vhem?2<${Wi>a*o6U4eX%+$f)ue55Cw^izNIfaEE
zhRuZC-D@)5zbQWq7b_?!*DM@4V{E!{AQtc;7QArl=~XkM(Ro2?D(FrUYUO&_7!>>Q
zv+aaoN&Bp>h{y*#;y6+@g*)NTsaQ5uPr;@$B}k9FHY61qEJ;ix0v3a$ny*sAcy!B3
z6am)HL=?gFtv}CL7OYwSbpl@G^{vl^7yqW4C7;;eMh6C@HU`J)l@nJQ%NbI!nFkLZ
zD1N3dM=B)3{*0G}qRpT-`I?Mr!;Vv*m8it$_Nw|?TT3gvi`17GGZ=v~8WqeTueT7~
zSTqxxGFqZmMh|i2trUf_np*x|RojxEE;KHdfR_Xd9SMOL6IoJ9YRREy@zeuO8)Yc$
z3<D|9;yQr3L|$9_V?Y2rAvzMU@eZGmN@>byJiL!_8&dA>T=lw)R_x!(1=3r7sjEVD
zF~Ctl>?5<fR{YzRn$Z~R)3{S)e<%%$dV1Cw-Wx?l%51nRD=Fa~a)v<i+_XvFsVb?e
zA~onT((9?KQ=c|fR;pe#ajvgkKZh?{woe^I{_%?@*+`H{9EzW&!joEVV(ZCEGV3y9
zJ>r~pN=)&uBh{*-H!a#tOvO~pJu#gDKBfp6u&5A4f60|B3#Kh{;L!br!l1XijCFl5
zm2qq)BDnkAm)Ebt!@^oiEi$KSooPRcW|Aqn0BdGO2u%Ndt*)(&-k=*98;cKVp)<bZ
zXVk7{vS5NXHtIfP4XYfxT5+ix9vVt>C#(N}Mj+V~yyt6g&y0>FG)mOGECrW87S`JO
z*8KYL)2emV9DapwI)x<oaJEYs^vjs^q3}fh?t1fX7XCAQ)sfY{ac`{1>?cCf%d_@c
zhB#Wf?McIu_Yr|!I_`Rg*cz(=Q&vGO`XQD&E&5E<o$A|MlK)0JrxHRJV+z2fWi@8h
zbg~O~zkI;~X5Va4(YomrWL$i8>$7os6~Fs_Tx|?zQN?m$`?QnKT*t+wa@n>dC6;~k
zYG{0%@|K~8vRw!fTZpAV=$ibsPsPJIs>m+fSU84#&m1#js^urWG)md+JDK&`2oM?`
zuGk?5%=EWa^jIXpXMBm3m6bWY!6}1WTwGz+xyg)&J};KfuUClL%tkArtN(jGb&Ch5
zY9dh7S<(p|ck{Q~=G|T&@!g2g)8B9@V3N%@+wqc($z!fMajR@Ms46R`6&1-^WP<oi
z8BIeI4G9_-+lzen(O5&{2?#z}+---k9K|!cz_ma3yna8fI4=3lM+}EP{;9{Ou7{N8
zak0|Z;>-WzMU-tt1;Q<(!|F`5w41wkzGY?l@k!W@Tt9w2QAHSEIm|I3$AA2|W#y2%
z2T!<nhZyBZaQf!*xb3P6I8}T?o+f}T7SzD>L?lq%pJHHOKt`pWLs}pOy3pV`o4C6l
zstX!6cQ=<|S3hr~Hq_yJ4o|Lc<C%?uPF(9L_@`%P9<M&$+TLE##6pQRdF1T-LA)Zr
z<H)B;k9mCgytTEp*il;=5|5s~9zAEH=Ecln)QRrKOR^cyojee)H)~dSEb~8yp3oNe
zk=Xy++B<{umZI;Kp6ggngwf1oYYvWUeQ!YOA%mEds4G*6&{9+Tbr>qlmg;J160se`
zN}>@k2pbzy6sYEB@CMZTie@rfJkyKrem^~}X+Bb--qYKwprDXWJ(m_+xb0H6bbP67
zIhWXPGCDqPI9KaD+33v!$*HUY(RtE}orc=#bwbAYCwc}3Q7x^fuV`tr?sJV9y2ztS
z@VsLpO*bxaY~?HJ>$USf6d3cpk?y1#*jA4|<|4)fY0bQ#<E-8OD`~3ugcup@wyLU>
z6}BJ*zByc8HXNOpkm?#WW9_8d#o7NKbAMvL2U_GTu)Icx!a&d3a;_(uo#oPR|2?%P
z;>#=a9$f){tUEXEEr+JUS{#8SW+c%3^Rad|SzriOsW2<zN<#VZ3pKKf{42)uj5``y
z+BT3Dz9^c!{}&!@7~;|o@a*(RLYhx{MOT1CQBB6<VR#bxswwOVAq+x`$y~vqqI)*X
zf1fv$i`f&FF+mFY8>w3{>Pm51TeqDjU8N(NptrSpySx@7E0vaAl(}k>x==NRQi%8-
z{h9D)c5SVuLNM3x>*s$l%clM$QZU@&CQm8z)fem>w`<FjB!$8h?6C#<zLxt&dJn#l
zJ8Ej`kbDM4><%hb4AZ|bs#ae;_Uj{2o!9WNu7{v?XsffDF44IMZkedzG48K}UQb3T
zgZ=;DUkK7*F(xLO;}4xMz~o@GurK}#wtY=L!_x@gdQY5B^}GnKPn;1Zh5p`vEW@9z
zpjYx|DBbdpy`Mp#H6U2a!@hbIoid^h5!?j^#n69#cl^5&VPT;+n(r`!U$2=i&yz*~
zp<z}3vLDxeKeCgBiP-<w=KC>=4-?zZc8Y{oPdyAOG_#ui0Wru>A?E5i8}-8R@1F|6
z&&=$~N^0e*g5>|>7uV$6^M5BKX=(n1n4|}ZC&#>MMnOl1{??lP+man80BTHT-nEnM
zj_8&a7WyUXNY++Dft!D)72^Y7JrSZ$6Df#PfpZvtmnUgtuH@+Ud}`OFTAN{We`G`v
zkAMIHW&TP}MTNpRoI6<-ybnv<#>U1VV?!Wuy%dG(rydF#8Z;HAOoTA-xM>UGJs1g`
z0^;`%fFNTTU9xN6(GwAQ;KiRhn%!a8lEmdGuc48vzOd<(0g{~a{qMJN(fh7usjJ?2
z*On#f@>*K7yK)8gA?>>^nc3M$AX{%mb{M{qmHkwHJ5)JqQ<Y(R<W2XF(c(phdxtxr
zKe*%vHys@v)$dPaQ>-)8xpWKZ623q6XegI`Df<JLBoY}Z@D2C4A@OQghed_tHN%<I
ziP}g14KXmWkD}z-3~{4_L$}fUfs?wdM~(yUUZ;QmE^IG@lJ5Pt+cV?NXwB|nc@+Q)
z|H9C;>}<-S)A0fg1d!^ZyAgxi(oxXkVq+z(;pJm|AOXe?0g?dFdGXLq9~|#0KoN$Q
z;<s8g4iwUqxZtkf<31Bdb<$lI9t%s$tWzl|DV6gMu<FW6d=(Xy5f=a>3a3pg_~HEq
z*8|&@<Pn36B7|OoU}+(Tm|SH&Ls_wUeEFTIS{F*d{!M0D)$GwzKfD|#PGSJ4)SG<x
zAg4yuYVz{WPaDe1m9YsK=;&gmSreqGX=#-TwgJAe<1|DHT3taFwATd|7vFE9tfC?j
z*@3H10OoUeu@Wie9g{lq`0-;VLi9W%qTIq6n>v}T)ZW#AUz;%lJnpx@udY1erL(KA
zCH~r12{UIB{E<~Rm*X0B>6?n_e-XvcYOAT&Adq)BL<-z-`sp7GgB%WTE}E$@9DH{I
zO;3M={fL2qLA9S~zS8<BfK@Rxbnre$-4n5N8aO49kYc-~x0~l~T`zC|LfWm`=ml^h
zyY_a-`Y{1P8@N=!SNw31D{qi^%xrBV^GPj)Ar;^RuTn2`8f6Mw6u_to@_}%WrQcuE
zTs{9}uAmUbY67q+f2y3lO@cHfjo`Cfdge|5E5laN{-AnB`t3tEd1d8MXyf13+bEn~
z$?t+@67bIn@noEqOLlgwIu<gLg=co;?r(eqvZWJnCR~6mWq3V+l$V!_&!AdUu{IM;
zr<$#Nwj#UMlqFHeC?uFoWrX-0c;nuOSN01}@7M~QdU#LX|6U>GHUUPer1cieP1&by
z)2UUT$xcz2EaOFX)~%LwccW8r-J3uAeA~Qe_a)S$DE-v&nw-__Re*gcV(*t>0e3$R
zqVSFk%|tSV;m#LRaE1!^E@?T&Bvn;addkt`9ZG0iiGZ=uq|v`l7TJB5IUHYLgL68w
zq`EjK0G~>V{K*;8btAZDrvC*qo*nz*?r}5U1i~*e-}^UC!`C_Kk1dnM4t_U0xHz0W
zU?l$&?l+d3OK~LD&aWR&eQ|bn4(q}|La4Nvdv*IPQ3H({;luIzV4OwA!|e&E9H%;d
zzOP||H~^R#0|hg?swXmyNnWpO?<CJS+oxlDSGUxfHKY<y%cjr)zp0yJxRtvpQY|G<
z_<d~#;*0eR`=;&Xeo2T=&-n}d%gZH~x;9BM!U$176fV3Pzx#9x#)LGMH8=U7<K3~y
z%fs<DpcdcbPx?SO-QX`y%nn?yZT+e4o>edJ`;qcu70hF6$C+^+vL$zFu45zCUdx|e
z!CfTEV!6cqNfOj=`iNyqVL<ZhSBa{LU?j#kdaa<I9?4C6fD?j(kTwrtfHxB6?{7H1
z^;3Qg08SS+UDUm!Cn14aph^qA=<w0j`VunT>g(%?$HvCOj^N19G-MHZS9_nJBgsUk
zc2jr~8(QZV7Rp2^6jIQ#1D&!HL>CaC^zctO&^TgYWFtaUSyffCD+?e9?lZxi#Flgr
zaxy28AqwXUh9%Skks#uVh}HsdJZ7;f?8Lgkz6<B0gzR-uQ+dkIM|5NF^H6;q*|+lu
z)2sGpMY(Ty-UQb3p*gBs+Yi>H^B2MHLlF}FGd)JT-Z0G%i1(bA{jTv}<NRxWF?1Bv
ze~ht;gzX4*@<&eBy;-gbWPS^?j&NJ|!_kHZ)fIL}g6H8OD6097LBuNHkPciU_~w6q
zY~V0myUo4W9}Ibh(C!rV(BvU$yJ_P<aTmI~k%8w??RV?^^**kGxuq^!{=N1_qlG*M
z79&X{5_KjxSpM!CCjU}t4a-d#OO!zR0_6fT@zR;yq>xW!++cba2W7u5n(DX@ZtAQj
zmG5QRA&O)k11~w4&>{O^x%Z64JeQ7UI9b|hby$oIt11}i2rY`Zax-TX##;Lx@bP!?
zunG;)X)XWkNO)LPljstQ-tsS~$CuK7ZtBzqYU`}uK~S8us*H&nPYah@a9xL~)AJYm
zvTj6U2ye=cULSC9NVjKFdN;jBrA=xMC#9(O5Y`evxU<7EyYSTCy7*ls7xU_=w%B2J
z<HqTUz_GL8@g60e?&r7zm%O``mv@KB(TU?zt~*+wy!Am(lc7z?)y{$UPe!H(SvuoI
zR&_P!D(>NMhv{|WFSmC(XqZ(eqB?u}N{pbD7FHCtAZg%DPyEh?(VVD*>cWcIb<-lT
z?Q=VU{^(bS0l1mf{2bmyDR5gR3Lad6lzcw%>#Z})o9Hr`V-LZD-b~QhwQ;>id}pH|
z`_}r=pLTfi*ssq)$l2{UpRsQ$<TBA$-}?n^?8u1wwDi^5Cr52uZNd@BZI3VQS{nY@
z*kU2lqM8Jq#+#T|K-n}5+|J2%&eIiu=>0O6*#-r4B53ur{aW1t+SzZ*2b@**u_r5D
z4w~&Q<9i#;$iAchp0QIWOvc2}uyl1=G#8_lbviTGo$$;cxcBr%yK6k#uAb0nK;U$H
zdz_6^>VbTaTN(d!*zf4C>sILb(pp_F>+bhL2N(4!FYOoIE(iqI*#`nZu>jT;4_fJ$
zOHS!Q6$BFiV#SI=sBB70{>&}s-o*SL0GZ+R=cy44iJ9}{&cS)JO;?_KQ_H9Gr-+6O
zu2(bqGK>BvN1y!XNEGTdr<+8^wvllj0*gZ3QElgXGnaj3TkH(IV!MJe2>2*pemyyF
zvN|>bMH3%RBlNrFExIx1$~}y<wP>Yjo<Hm*CP>}!f{dJU8{V&OzwzmQ{V^sG9F$Zu
zD+&tGkpkgXS66Aw1!CrG#5_Gc6)V@BxD@~<y4|(oY^_{%sDTJFUnY!Ms8};PB>~8|
zbm#_wfKjw+MapzAjR<H35D<&<u3ug~s%<pm8S&^|`vcT+FH)!ZG1!OY!aLy0re^nD
z01T0ol>9RBMl!Lo+4W*<+~p*9){tZioR!;Na`Z)<^<7A>a>FrOQ9`VLKyH-fBMz?z
zUdvKBb*N?c_-;EUi?y^!E_K4gAbuV!Yw4Dk`_4dJykveHmRpnRQYSyPPnd6Xycm=t
z_jS)adoY|T+gWs7YAgpauG(UzBtHzL`IAIO;8=ngU;p2wIYn;wi9|L_MWQ5t^#TD3
z*0^>60?MJQkWgUusWtmkpuwq-9$$JLcr=VG09x@79n0CKiieJgSNSm>9*_!8XhA#x
zSqY$*#6dVBPOWpKVsE{Z+H@!{(*s~1Z$IsQiQo0U8mn>>kc2#h%wGsA5kymdjb6Z}
zSk9`dzv!Dth^gd1b{0+UgB5xC=NG=lSa;u^6X;yrsNV<7{7J@}el1Jk9~bt;WHC*b
z#@|9G5d30R(GU?b08aCemN7S{0XPqQfs-8-HDl5$S5Q-<0=bQ(@HRc8v5`cONlAUj
z)-3ka?$^+eAJ9PHn*F@F-b`EBTu?3>kx}2|NX(o*-ex~WKv1^ij9I5mqrIy+3sJNv
zJVxQ4n&8*B-s2j{tZASSAi>%X)x9|<7!K@7B{lu$$tP<3*stQ)?h<hB-2p?2$VW5N
z$+A>`bgn?<J;9jApBK(-%ckU&lmgi-$3f=F$jf^OKoBG*3lktz0BXRWeI{iV-9bQE
z1#)7?3ZM@BsaRQASvgRsn2QTLu%JbkIt3*qgy`;<yFzB0aPCuR5TGp{xbYgSqP{)v
zGAW~h|8jJT(r~J$iwTdyNPyj=&(sVghS%;`r2GYLbg@8r%mB6zE`54>8fIl(an`Ya
zSV<Z=<Up`o9US}qb6m!w^>iRrmA>n!p?+s-D&_4`H#gGQ9jURw{(IeN<M6Wpr2r`a
z+uzxL_r7O9eoyLH113zTQHlseun{h_=gXHkl8Aw54<E{_tLJd0q~AUw#uR%yA!l!2
zvaF3cXRGMC=*Bo3Tx-O@0g5j`|BtB-Y(H%zVP!o_V-jH5DT!5TCb(s^P5LYs3Gd9m
zI6f6v=1m5IY<7-DV}MN`wYDW;B+XQUnfZPwZM-%>6O$?Rm_hX=VfUn$+%BOgHA0N5
z<YKO<_-dq)H9N!XvXWvj`@utF306u2i}z^I?P;c?qeHZN!9+JW;8dd>=73C=10+p(
z7zN7<o7wc&7tPo7>$a(CTR)~L)v1VO2YXz-TRB4(oBzn4u>>P^km?kuTdiQnU)!wu
z+i{f$fXiy?&Lc;4XliOc1f=b&l^u7oU5&QlHBdzXv}Zo=HDi_BMri4Sfn;OEF7lC5
z5KX|aSM)C=B}1$!g)}r0w(iF)9(eMm6dw^V#G&~#dGL*AWRPvT0#!eMEbnJ_gsMvh
zAoJLSNCE31n!aj)xTuQ~b5!^h0I~p-oH>&mv-R*qKo>R>>0Z53MBEP#4}U!IgHvGT
zvBzzWPIQ!H^w0ynisUz*i*+H9_d5~zAJsjW(ks2`w`gj`ZUx1T_N^jkQlN&6LNSv6
zq#ConRU7)Gj~sUfB(F%5B39QnbG+=>D;t#Gcc2{^7S**@GFk=H^>%hJpphrdaH2g>
zVkus%5$Nb6Lh=jM@cJh8&-O2{Q6-?{b(f)u;Aeu#0-cDC@wMfHKT52;JS4Ei53q*n
z$~oYi6jHI`zTf&yWLo5&6K;G|X;W{sCF6O55~~Qqey2j`9P|7kiKW2ehPF@5%u%yX
zK72BekdV-ZI~Xc`1meN*Wcx249i3!lMY4q5-YRnV2;ggzfFt=W+CS2xhM+vfJv9C>
z9rut-o^c;q-*{AMJ=0oAKaIU!loLoFaO2Y?P|$e{#2P@|zOPVSQBQLuNGtlOS(9c&
zNPIsQiRfC1f?o#L1ot=aeh}cl59C)Fwgw?6X<TnsH6;Oqw%hP%28pzudEd*?<=-4z
zZ`PZiFL>W|JpWq$96kWItI(MQ6>T=CcERaEN^KRSmU)RIg`PvM%i;JWXB)Zpy12Dc
z?y!lL@#(WN-;5Y(twkQ#ITbZCL8M0>x&0}oNUG7%M!mDPwjQy*vUt1wVEy-R@v064
zc^wYL&L7hbO4-t(Wk0qI$9}4KYM(SUH1KUTp8vo)g1Cbr>Y}9++g~LubC|#N!^#kY
z>(P>ueW?Nhd(Av{FCOJpMgm5GMN4nM{w+F|;+3R3K>xY*@7tC>4`4)gWm5BCdklm~
zPniinK~+EkDrWQcsbm)iE3RfrGLPv1@#eYslWj7yS9<u>c6UI~5Wz3KsSTkVza*my
zXttOdKa$u>lBEJl#acJv*cDk%w)~B()Av2qgG!W^rC))>#QZ5qHBBL`Xin$pTc-%j
z2yFr>-y*JUu60L^@fm-%0f?JpO!<EjAR6RCcYs=&*b|joHec@>=-`DtrvaKx{4TSM
zn9oGJnYe_09sQF=LRyyaLhwf)VrX_er2J9Ji11>*xe`AkHeVH#EP#Lk{LZ6+1lU&I
zlT3@>#yG!?3E#ss!qHLjH^XjHl6~>a2n=yj3i}ga&HiRl{g&+CvKF&Y;AeJSXb5Sb
zECnjg&TRM$+SCswMAEc=4h#e>?5iQl@4D1w6z$*LUT2+l5We@pCOczvD&-&cDbQ@`
z2GT`qCAp+y2qPgVZ@@$fx}Cc(6No=9q?6-o<Fb=b65bmz%1lwNEI<41(G@cfKj-bX
zNzbS`ZRE>?L(4?R>uw9j@4j}f5O>)(5!zq(t=R1i$(ptgP1wWE#alT9gWlVYF%3|_
zTbCJpuaMQq`KM+^Q&J%OC86Ks;?_r`LHW?rz`#Jg(-LM;7QcuhL<{tqbW3#H?OZxP
zK2c<+e$@9#+T_3mCOUgSb)g&uB!xuuQ*|Fce8|bom8kYTaxug{buCoQXO+bdr!Y*D
zo6q*r8V-4la<tn`WgU(Dz9Vv)KeW%_5Z87{E2p3!X8f^65eR|6jYckMN@HOoYm(gx
zfLJvwfbA8BdrdWf%B-7#0bFVl*?n&1-J^;$p}^}5uW%GiD45$RCzZqPd);WfR5u$I
zIXqhys#^WRV{z^1?k7i`K{781LT&nTs$;*}UKhPh-g+%J_vGeC+Y&r3hkqv+j7`o8
z6@^(uj7vOM5<F(G5H=!i3u9CvHP(R!9e&5|&aHy3?kAAka=oLwzvqx^fua<Mt27s8
ztVBk!Q9~Kk)r7%Vq^gJ<LYA+BaaM8Kg}qBaIV7#2L5Df$(4-%qfI!NB@Cl1ayEeaa
z!Cfeweo3JltTYC)L6{<dDQ{jKr%|$AR|puRfnv=h^B3C%D|T`!DzOrbs9jxMUCg?<
zq6?hoiVO7k;U}vh!)7s8j05-L(FBye<AqvTey-G+!_?Lb>&Go1O<gIesC*qdRRVJk
z3wzjc$^Gcb2tl2CRl>R0_nAIMrAQeJ!nx<B3`$p1^>wHqvUgTk-K`!z2>M`YD(wf|
zbn07$5sI1UiKT&UCs4LPtHT04()@r+Y~43dc`zS$cNX94vFs|&9<Q&ko+kVut2z<?
zk7V`BcaUtQV(BDu(1l)4?z#X;k4pQ<kHN;KO6%dPF5DX`oIS6l_$}+TbX|A-ha_y9
zhm%+MH@%e`3A4x9rWppSD%fSH>#A_6926rnch?I12i=3nrZX`<?E5yYn(I;3aeDR7
z8Q0!9Iy|ksMYXN{)LBsg@In0{)^YK+J{JD{73Wo>lDAe~_cqo#tV`9WN(gq~tlGli
z$E5}BOq7&DPYaqsRVS!-HLR{39y{vMCj0SSi1WA0lcb-KS(=|J+odz!d#`P`2XP`)
zA-oux3w~VbU44wqU2u~xaci^hJI55|5BgET3qxJikTAEXNHqo-Bn9;{lYT#Iy%dU9
zFS*@`v9qecL0E!Eao0NY{m$>GXuka_5ckY_O4bizn8NARp#lr|{Q>{{UVt|M<g*r@
zcQ>-jB((XSB#+EOe^_51%-+``d3&!PEc;ewmTebgvu7Jewq{cDk+4xfweex@tiY{r
z=SKKsX9NQTFLcCc_(4?3(b3S%gOlW`i}smkr|ie64Z{K88>g%RXzQJ9zcL8Ubkg`I
ze*0aN^&;EO#E`(^N^WO97XbA1y9>+F-n&4A+KKP=DTO{uz2s)IU18Cq;=j>hNzq6O
zu2Flp90eXX$Y5z~9EktopD1<=Iyy(|bzu9E;nek~Z~i65iS-(XE=C{Wdz|ZpO#g3V
z>oa7MVS=utx*okxCtliH>~ZK|s{ya{;pO1jGZq4wv4!e-+CEMpn4IzH!S*%PN-Zt9
zZ?5B*apqy44%bDSfL=%QpI<(p5D?D=T5N>IjjD{XHmujqiTu~^l`I*r*L97U1f^qM
zk!|FC1tvkqA*Uv-Zogp$VS%DRQSTC<xD!MHdacU*oKLeDy%Xh`YC)DM=5v1rWRt@S
zxza!1s}rV+{G$<|%{b|1ji;}tw;4PF(HCLQ0r?X=J39Mdoyet~?>;uOgj2QL*^y++
zhTLEGJyCjHd>LwfaoI}zv4Qn2uC}S3B>r2RxE!wQU_BtW7)5RL4I4ujB4WNkH+UaO
zq{#;T@s#DETu|S;`f+!}rr86LNtl>$0N9<2w};}@Lf%LXP><-44L(?>X54hB#6@&^
zi>#E~tcAL*6%o&}_!1+4jydp>XkD~>2x`!v<W)Vl=Tl)+p$YmmqJQNc3opF&t=EMb
z!r(fn##1>1R;7tCYP~k01IK%?a(ANqjZ_wS@1o3qh6DqnCQFz1&_rsM%^A1C-4%D7
zJJL*74l!tT^#%B+K2SVZlXqIKoA_Sb-rp{yG_TFcK>Wt;eF%d;A$@08{W>6%v*5qS
zUr@X&W%kD!$VP&UDHMMKprFr`*4W6uCs6|u9jM`fO3L^9ZeKY{Q2YkWNZhw>&Iagk
zt$!*5h!DI;s_2<rQ5hMTo@uI#B`U|05V)HDo5OGZ9Q<%+Y!vCg6h0E6)|bAlm`O`F
z?TkU6y)rc_xe^k%yFFjfFR>@yV;~OxR@5!I1*6L)EzZiv9<|Jw@|TNrxx$DLtI0De
z8VEY%PN^ZU$<_DznXY#gwr`ys_nI~vj8nL!J29llJ|Eh)<c@$j;oAT>6PR(6g<%0U
z(f&{OOK&WFVAsl%oxOITBM}0^22j7jlXhU260dAoNZD{MPW2E3s>x{jMNWPf`W^O+
z+5`q=Yps2H0AannE?y%S*wgh!$GX*GnZFi#PP2QRC>#9MBqaESEgg8|=);4ch0#av
z=I>WICd;=u6K6aikO?A6{lkEEiwdu`ZDqu)KjfbJ5~MM*e^@xE-1)WW`+?fml$9!-
z(mz_o^Y{+S*9oBNgZ5lq5=h?qt36+Ha&lk=Bw1NZ&{9Db4Wcydof@cdJ;)Sd30zSC
z8P9sA(%}B?7F<yfpqkRMG6h9NGUID}eEe3>J@cd!C<R*_5KzxZPfHWLs{4mrLiCvk
z!PlZg&39Pm2{j`l*3;;rN?|=BBBI6fYx~R9xRpf9qNviOj@OXyXCWat_Pth%dV3FS
zyihl!-ndU{DEXW2iTl(!*%#k|YKGPV+3g(Y1BBkIQR&`8WoMaq(7yU|p>p)e(nWKE
zs2pcekNO~p7O)eVDT2m#!$gGmTX#P&uIw`ptI(itO*$#mZBjnPo~68}?9kfg4FLQx
z42R&4$Hedg0Xhl@%>ez9LO@qbTWN4_Pfyy!HZV;9{{f9fDVzG3m-h<NqKE?%e+rbe
zwdo!te)v<9p@jI&*#ralJk3gojyi@mzJ035#1V7R1fVi}XGKLtPF`LB=z9SLxvjDM
ztkptQTF_7M*!vX?%^P#`-17UQ=3*~tAYcPucs%1;qwRKc*ahya&;AY8@8LGPa;U%5
z`XTW=A%t4_5M6&ev-zct!%Q;U<BJOk!LG~l5!Fw7IMT^Ecegi12s+h=mjVXE;avw;
zzRnp+ZNHs?7uKJ|5;SK2O1yF`G=PWsrlh{Q+kP}IFsHZUwyS|<20x#Elh;y#k`C3&
z{n-;dQlwxdL1{s%E%d<z7GzMnc{TPNJbO~rQ>K@Riopun67U{BhC@M;jialPZ*~9^
z45OQU7j^DDQ)vxakQ7~@KR=y$Gyn#y$fRzq!v*@%QU`w!;+9Pj<D+vBMT}IoUxXdv
z%|x5h<6@t7$rZs7-SNAxlCG^iKxk9yqWZyC%Naok_gfSN6HV*>QM1tf_{Tam(ze9N
z8?&vDWK<9)g&ke?BG*kak6JW_B5H<G?~sB%R0;5ZI_Ixpa-RbMGi=u^N<0DmA9sxa
z(FepG5}<s5j;O=?+FEWrJiN5RLX4@Y&^Z!w_HRJ?LxWC)-(H^wKM(?{mleBK)73sG
z`xUIqdo=Lx_yWxT3ikylH#P5{=QEIoPM4-@^rf$;f-WMNi*-<YWF=aeC&5<WE$V^0
zyEfO~wOLHP!{toS*O(NuMf9nu_I=U@I{vK+wx#Rgh+fOKWA8lh1J8{ZfX?p8Mg9+U
zXk7;O>6k3p@7~i_ftU;A|FO|vK(XyoH^X8OgW%GBoby;sI}-z|RyZ-`8j5)GK_$yk
z;cDc^$ZHVO><SHdv)`GD((_?&?6p0d;Rm`11C2L1Yy&c$g98Oh5NHTg?y-6hpiu}`
z)01RvJE7|;2RQX)ldpgmzn(f1Yxz7>l}t)){#>07UrL?N7{cjwVb^|yXE7Rk3L3}=
z(Xl6JUcGt?nmR!Ih7F;?B+GdBlNf{7heiH~d{NI8&h`eMlUR({X7s22?Q)k5rpb%*
ziR^{c)|saJ?0bx1k#*PLy2HA*xnk?{l@;F$lA>Cx@{>vM`-0TBd2yV*h33_N>+$1*
z6{YpoBPx}$*jp~W>v-Lbj*ixE&9{!w{v_UUjFa%FbNRzajoWl3Ru#T%r^B(6h#fbG
z1fb}$%%XP@_Z(O}>_f(w0T~O@f8@_6fo&3NPTc7e+id~)WGfT9E>cY}(xy&#{|qJ8
zI0Wx^vVbo?kOJ^kgIdg34R5bbQIW+#)fki-mCrdz06zo{o!7DiBpE<zJKlL6-NqmX
z0)+*ra)Dc07Uro*vZj50(D(z}?eW4sBFc=IZ}AU!kMEIvF{|MB@31d!IPD6^;}vGl
zpE1dh-qd)!vV$^Tc$UH-^`Z4b&2KjGz|LC{j>MHd5+py+Gfr-d*^AHy)}nyW28;Ta
zI=_s@uVqB^)hGW=2zM?^DnI+X+be=lVcDvPO&Uc@mBR#2mortTK-KgD;58UtUVh+C
zvq}30Ce|9*advAn5P&$OLdpUTA5?<F!oy)f2b9kp(8-E5fF6@M90ICvpqFi|IS1u?
zSm?(4qaz1pWo7Cf4N!>=arP0C(t|bV5o5|+0|u-zqXFve4}t8bqVfR@1T8$0x7gRP
zaw5PYptu$j7iR>T24FSu^2c(%!hV`k^4~%>7DE>Y8?*IugC)3u$Q|J9zw&>P^%hW7
zZr|7NK_nC;q+1aMB?Xi&DFFqMMndV5?gpjf2!e<RD5xNfbT>$YbazO1$F~mN-+#Pg
zd<@1N_j*0&iM{vQYt1$1-1qf4H+nOFuIe*^T&-<8Qc#@sTCmIchM`u?6zt^ubi}j)
z<?r|#AU~DLY%u>#MWw2s-VV7)#INd{XZs?ryO302Roc!ZoLp>**Kk`^AjxYzYfe5I
zga+i3=8k&g!X4G5kc;jk8#yq1`1**yK@zqJz`CG=mDu2G@YxB1y|ZcNmCP0T;8p=I
zgc+sxQ@36^-DikV521}1k;j((>=9ZzLsO|WQ+^^{uWY7xN40tJh<?>B;FCUZ?)zo#
z^AdCITz~y+CN6FL)TfHPiWOTX!jVMGjq)(e+q6oQYki)(?~2s^jK5K^gVTUa>FO`~
zU)Sv98b|$Q1MDtmk7#X3%dYRLU1q%2_WILOzmy?1_7610mElK3?^I_4_Ku}bsXLq3
z^Y5CrE+0B?sJnG6xTAjg&?j6LPKWZBTE3Bb%RMkZP@TD5{M|sWDExGa=k_Rv2+z+#
zxwYM|x1I0Jdp2ziUExalmp*uY=Gm%x7<fd1Y^saAE)n(Y`0kgT{c0ZCa2j$<@0io-
zUzA@q$g0;XDg=JSucKEDV+s}#@gAG5Cxje@?;%CPD9F#YdT};l-0n;tmfe}$^P(c+
z;wZPw6ET9^-bjY*4hgyNz$3Z@`O;NiiXof*rq)jvFjms+PQ|&|4cX@^DkSd0bfHrE
zy`P#SBx);-Cg;Pn&*L)Y@qNzSshzjzsvE7)l_KRFpU58Hoy6+%-Y)1YA_>KMs98#y
zlkBsatJWKm8CEihb8uv=QH!&{z(%$8cEO{(RN$<(kZ+h!h*Dpd!>oR?_*il;U;l8$
zj{9P7Nb(7&d9_p&6|zZ4*swL=<SkjXdiA&C{sEr|mZv+-hOU|utLy+#JKd#$v(ohb
z+~@kt)~8n9OXrs>`HGAezEr+GexXfK<?`ufvBm@maiy!PExziPpXi;Hqft59avL+W
zVYxiGXSFw;9O-Qt-uNUQq&qCCgr&;sIODk-nt&UInu&|$4HwnY%T@C=jhE^N2e>(|
zI2;An)z25QCdy{kv3&T<>Cx+IhZKDNOrR-Lbf4xvpV(WA;2JDUM{mvQncQ__Z?I~$
zjl{!6*A8jBO@uv0a=`Idc$=Np@0Gage&XBhAEuiVMG7@BMh)yFUx~BFbN*yiZ@!J~
z{kP-OTu5$iJn+KSDyv-Znc5Kc+Nr80TgSApoE$5h4HuvWnh49r_v6x|z=f5R>P(~~
zMx^N^-?1s<*<9DuK+*gSrziWB)eqz-(P3KIm|rbQ6bxZBn~+PZ!r;n3n2YbRIW4Eg
zeQNiP_qg^|ai8-Q&jZ#ga98hz*}8gtw0&l-jD%70U3Oyae^nDYd;D*1bY93E&^v|{
z%4E5z@pk3Un}jcUo-t1TO1z|7O6UC2&EVli+3V^$b|>%|T1nBy>AYRGIND_F9Y+&{
z-rRdmJd0a5$Q07{UACpQ_J@kvqm~fuA5%7+$5+rZ=w}=o4axL|imv7)DF-C|{6vey
zUu+>gn<`=$ea=ZZM27dih>=q1xH-@Hprk%AJQQxPH94d3pL<;MKP9R)?FK?%LWE~w
z>!IVR#-_6C@$0jk^iHgH?}vw+nfA044{WiiTaD|^nu_#4sHjg3hP?=jnfwqLl(x!R
zqvSlgO<Ty5uh;wgW^s=_MHVYH(ko5~FV8_gr_SlJfO{ryS8v2t@h^62|LpeGn%!+X
z6|t$k_r{w!$2Z_}k6KzE&8;d$B-3Q^tLDoPi-tQ0UKFR_|Cw1m!wc|sJCFLS_^pZP
z9FbLgxp;Z_3G(gHua=RN>7e2Ljbg?lMtY>%c+*V6zRl|?=UFrVWIp?=*{gU-r?VOe
zZL}e*hsT>Mtxt;&(*(6%@X}5k6bZI<ht=TeGCLlGPdZE6`V}rb?U_D0<RiSzaOo*c
z&iUr+l5lHS01#$gec;CY)1X2AK+n3qSWkmPJY+7!!KT&hq6MyKdys7g74)-vMc;}#
ztbe>dWZX#3zVt=|J9rvG7QGQkXwB88wU4jiK^s?Zb@krF3SzcO3_dAm8MT=){FqD?
zvRbKn@_M2BV^d=bDd~d8pa+Lpmy_D0^Ya2fzqss{I@U(H|C9%^L}#s^0s}EaGt0cC
zmpO%kcU*_?%k$}q9nF47Kk|rIPnD1TIzmIA4yF^E#eKYleo7CRKBv|A#tu2}_&MDg
zmUGci*GUUW^%{kBkg!pXG}g5Y=DnlR^5?%gLij?>?VY=u`2_jJ>BO(*m26~G42E=r
z#pvo_m?+N@2J>qxlZHKi)lqj9+BI%%fA&t=09YH&RlDCt8?767qjcP^V0yiJw=@VN
zoQsN_th362ehZ{+U3V=1O}e{NG0H)KCZf(WLN8mho*<K)%JcCL7VUpXi=FzZr>@PX
zZ~gf*k;l&S)xd?u5hGlG@Ev<9=UevniW~GC<;>R9{b}*0S8zjK^85!FRJ@4=<beCe
zi78K)JxfpWBF#B3_R10Bqmu@_m(%9>AFZgE`4Ok@yIu`0>sDQhlmt<BrF9xi)d`1d
z8SEGL)oXqM#Gu#GmB-SGtsfoxJVAONCBKlpGYv70cHeGW#YG0gbep|HR_^7+mSmnA
z{tq}y(zzfd?7CfBzqDRx=t^8+zFx&CbZIHO{*eRU@YEQ;CtTM^MnBSwdCpLh<w;Di
z;;n$mtOkBqqq!p<|EAJbN2`5kGNZ81`eYL?wcwk1{lu5D;~Y<#sr)I3O84o24-lnM
zDUP~1w>Sv*Xo_V6XH6c1B)kcKa$#?{TcFD!K9bq6VVhrPGoYva$H(Mib66_bzQgOj
z_g-G`WI=y$r^V&~&z-uUJ*xcG0g@frupdSlO3u$@MnzA*<kk^0Y26wi+Tj;Vdu3NG
zSqiV_w4cIx(1QTA6YSWq)-0Y|27l+Xzt{H_wJspgIS7<pz^H+x3+32&>w{xH-;sr1
za&MnKUk4CC-!Gj+p`S*2cb~lxF1TRwRzjke$jg<v=hmXfYntj~u&4aFfSO3u?bd=T
z!XK57wSDm4ua%w74n=Xjx2n8{UqsIS%Hsl`Ou{AKco0D6d^7L`&ABW&x$3aXBC(~G
z6FGjLf7j4Z$eUaANwg5;KfOn4@0y2Y#?qo)Bj(YKj@fzSu*%qp3Ko%OWffmZSZiiE
z1Ej;KeFdJzOv(2c;^JPg_6&b}<Kc<GOH!XQlic3yRcqhlNo>TYGp|uF58tW%4a6pG
zO?d;?%L^R>xOhsGL4He-8lr2cK+NUqgb_Y-rSn)O-VNfQdZl^*tX;V@p^Hei8;(Xr
zJ)T>JE;87A-C?5py!-2R^W81F{jDqaj}QAkJQQ3oU(bAXolp_KAYS^M%;R06+Vf8`
zE*iz1{I`BePQpGb-F|~KwqZ|XP5ijIp6+*u9oxsRtNkDU<vkvlvrY%Y!y+}qtYV)}
z8GhZ7Sa`3rvETTfTy3bpwHsfK+u2$MPbW{I_M~NznQ|zR&-X8pzgSEwWxa%i$J3l!
zJ-2wB9BDgtuuX2r8h$Np5?Y^urz$SA7PNg(*L}9h=<MM1;?H*mn8MFoj)^}+Tri85
zZebeCZ+zex&eeC?F{!Z<x~W2Nz*BHj@LWn@o+PwB=8i7G?#K85`6<8npD8~|fT+wu
z>Rd4%g$(OQPOPshisYg|7wE*R9m(@R;R@L~!h2#pph3@PWVK@>_3`6@yiZw9DLjD-
z9e?fjQt6<D9M}FKK`eeDJV83P4pIvAHrgLL^h@V=^xednY4<Nenk+wuJ1o}!Ms@c-
z`j+lO=fiq7QHspodN=7#hLyadKK$I3(%#Cm#qGlzGS@+6@QQ={IlpSN0cVW?r^E4q
zeL7$ss_Bv%8X8hfUwi%n4#dgtpI}=y2Ffi!#-IKOh$Q{%s@k)=w&M?#_~S?*`uRtV
z`@l1R{;Xwy>)D!%F2{`C%iW|W$mvnOQ<)#qqUb~IYICntYsev-#zPP^KyAnW&jc4X
zsm1^i-XwSV`sXKZRl7dOZtF>X;(6rbv<hI2aFEykGHeA#bnM<H!8K)%(=k(!X~7@m
zc%Hh#ixnm-7pC(#+{zM>h@yS2LrP7O_v(CR1e<#|!!ktOIegdeV!j;xKqI3T?sdeh
z+3Wq2CQGJ;?X_)M{_8xsc=Zx%%6mM#kd;UA@>nvFz|~Nphz7DAJoDB%J^I68$Epb=
zR7NTvGTM#AZxA35P!(}=bN|)|0_JqhO9I4fB_zLpG{Q+kFo5TW7jR3@9VklJevc3c
zWD`1YzM(-LxS|FFDHHh&1PsPavXPhJ{~(~@07%}u5rKGlm&7giptr{Qz$@r0Za2yk
zTnEDLc-Cip_*8`sK4=ki<NC~^kL}CGplcU_R9RE%2-x~mFBIY^Eas98ou;&~UlY#T
zgsVe<-e6z8v~?P|o8gC4<Wtj=uXiZZ$_jKdC>nuLoepR09+e_mAG<<_j({Nq^!E3{
z_16vR^}Na2L<GmQQny;P7VY_oNlB&JE%3Z_D$jPaXJU;L&=62G!mo?)o0=Q<?%kVp
zk{^n(ec_zgJ)Z#dM~J{v>f<CgJRO{JUU)oq(MT=#xCejOBlyqXS2hMs&F-KpqW(60
z)VM|raz*jYCLNNS(ZX#<VoPiRkUSJNwRn~H?i)KG9{Y$QprZ@FAU;{!vrZDuF~Jfg
zd3;&;T(c5r2tfRAnvwa5XW`&bFj~bRv&F|_F^GUSb)f)^w(tLjZBVAg2FNIM!1=o7
zL8Y?ktUNFlubBZ~4w^T|GHqexGaVf^<j|Zgbiz}YhWddY55lgkLtu@e*<+A{K44ZD
zx|{By*xn(+=sw<B=gxpFprm+i#91IYGRo6f69>Tu3yX4lKx*D-JYUf66BSj}7XAE@
zRTw5kp<BS(+Oh%il>-u}?0@tF9~9-*yE%c5Z}xuRah$9R=G+6c&GlE@!0TZGZVLib
z1?i2L_88gG3ptvZzuVjW;9;ebefrG8js#)if#jvN3b6Lak(b}pAhHM2T`}8@xcako
z6L%f}Bqsq`Wtj?|9_&;58pa$P|91JNYsHfr5yY2@;}zt6*qq3-j)vT><oTmb4oWB9
z>C49E53c^3Z`wnEeR;O}1<1bcePs6a%`FT7@|gNBgP^o{;Gq{pFvxU#0kE{ogxkb4
zD5Hp44sg(uJe_PLws4AUa`*3nTbz$ZhKCXMhBuhsgn<simV=K3s8H~hI#PT8+5^C7
zo1?&&2yjeTSXkObgAMe%wswPG>#adkl{yFK@})EuC1{NzU!?clabT~Lq)I<15eUg^
zaQ*RFK4pob`>#E$n87lq>`_&U#~sbhXoy3Khp|s&jI$a)jhI}o5Re5TwHn6qdzz3f
zt<AMp+;DZc2BLKSNpg3pZ!^fT((VT>+>Y1~%>%`NPBs<-@Q$?kXR#DdCG6QoO-pg3
zixi%g3XvsTz;8<;n4?w0>@+;wui^qMTWcU~$S?5nwV99;uI3br8@2Bn7`R1z^=At?
zLR&Xx03MMX*TmfX{eDPxc++qe!=*<-m+Yo$^bocj4=L!$nF2XU#=iGS^;0TiUV+J_
ztQ&__n)M($y94Wu7?8H4$H-Pa11G5nJSyuC0lxazW}$Bpf4hHI=DK&5MLz^ufYnP@
z#C|2UN2{hk{d;z0GvTM`4TAfgb0yJsNj-l73Yz02Zn;hzR3A5D9W+h@Ta9c-##71s
z-1^dhDG37Ja=c#vdoR!vUzIEuXnyvgivZ1Lj%#MqnZCsoP|}?I%Y^Y<I7TK@>cRqR
zj~uj|!%>B9>N$mV&D2m#<M~mN+u`L=UMJ!NuVk7Z4gpF_ZjEneD=GhOAJShcOS1RH
zX8H8w4p8Ar*vvqa^7$`ir4WTs`$~JhgoDX@5@zpDX5OkYDLp@zdd#>f;jzV&yI<D%
zU%QVaI)-f#a43?Z51G&NMcvD*o#=BDeoE{*)ZNW{$x4a?ZH%5u@)w-z;Y`tlR%`F0
z7is;GtS5D7_fuM4Iyt>5gy`9!sp@Hs_Kh@@k$#C4_JfBY@p2Mylx9(G@>@VXN#Icm
znwsh(N)g=ihr7P1$CccNzLr3+SeDYW9nX2YI%>(oP5D%!s|}1wh_BWFTWr-)+5l0M
zpI<+k#lVRxdF>@4EwPit5TRti9~_C8UOsBR$HMYNJ>cPxXVg#=(3o`ESQJ@@)FtSA
znaFOgW%v9Ib^UDX<{T7c-BLo_8MNiRX_qgW!SwozMRprU*zS`cPR!;HX~5G=E2Iqj
z@glZulVN)ekvPDCm!h>nfGD&Wy1wrowDvU;_QM+l@8o2$r#&*#)6u&~dR2s5r?yG0
zI)JJQAPg{bwCpr?C=yf@B%<y@D(j<vXrV#?f<514y@&sm4yRq-t<<!976han6n<3|
zG#cUuS$^8*-H~Ph_*6c0BbGuwrk2}x7Toexnc8s`0$K||uPVAvp#cCB9K_g)MF9h(
z+IdFTSV%)o9GrnGn@L$QR$$Uik7@zx<^I-4fJF{L7Jefc8cxhSxgi{2W4=kt-cR||
zckc+T*YHw(l3^0}Th8A`(C2K~Q2tQ<jzLDa)BhS3XtI>iWbV_UR_kgm>36Q!CqUx^
z!lbQgTI<~N-8iPQ0uaap^TU!(hlgjF>vrS4HH{>jOV0}WmUm4%4W7=A{mjh7_)>Z2
zz6e|wrTtv@%D|wBo*onb&ibNIH1b<&X9)KAhv?|95XE7yPcwej_7iv-iQm<?S(e<G
zJK23_T7=yquP8vX@rCZ|MsWqFQ|(uku9qt9>b^yVXT#RE;^j`Y$|&-`Jl)ffPNwaD
zTmXw_#_*F*GeV`gS#2b;rkPP!;5XB`TkJYJcFTC<%~RIFBcn32GN!wPAytRmY`UH|
z^p1Dc3~FrL*w`wVY=mZ><f^mCU<p9(vUpOs6d`15irv2WYOvVdvBe|*vcgUC*_Zz*
z3Xh7NZN||Kvk&FiDTCLk9t@sm_iXSaekgKc)IYesO2ASf)suo=_b`stNc9#Wp+n-u
z)+wg1udjJDQtrY9)M`a-?XZRrvXt)%No&~L4wEg-l+*$?l$EDVIeDABMr5HfKate0
zZO!lhE7~R=+;~%mc*e<$Gr?oFp^GeFu%vGKWBx#$m~n)c2s)B!7Kkc6c?seXhXL&X
z(2SOEwJ@9NN<^fJ3?G?sJ!0&5x%90YftWbc9~|$ZB&60UwPeJ5%PNSK+WIVtC0pE6
zM^$1zm$%SyY@uLS?!$nXhzrYn=kIWhKYE)>u5aZ(M|f39iO@339!~LGK;u>vIjAED
zUIk%dy-?6UEgTH-Y2Y;2xN-8wop7!6>pE*zttbbfqAeaZuQ%KeO8h)$YbeND?!2jI
zgsaq8QCMbf)8>a`i-y1#qN!d!zIC2S%sd%q=Ari;FhBQW<WJv51nOm|T8>^joy{%Y
z5C4l0&JJ;3sW)|@`Ul;pO_TH=mFP}<db6~?@M;C4S$8S)N?mu3(ep%9TCTX2;JS1d
zMKpqDD;1Ar+m3bM(PelCzdKtay*fKvA1&5XtXK%rZhy?oemDb{&FbE_pb72@;^NR1
zx~X@3UX1^U%Qf{LcDc0}+s^x@7DM)nc*b;!>23|=sLm<^EIO9zrEFx#3xR__A^v*p
zMQo4iI@udmWNvj#VFv}K@?>b0Tu1H9g=_Qear%V?nwjL>ChtxbDv#GfOlEdn@0)bp
zuoy4rORD%X>Nw^w&>*N&yjHr5a<|w}PqGI{MI7N>dzaEB?!d)O+`MfD5EZQU#jiqa
zo9_~1NFHn-z<o1FR%^avTf4XFP`qn^?6}~ON_1aa{B>PcpZ(y{y{h|o(G%nWPRP$b
z`|<Bh&JUERg*LBTwe?TBVNAYrh>J}`c#W7I!F;JsE{3f^Xn&NbAmdG{-008{Meftc
zZ-IMyihKceXkVC9Up#x}Eqdd|z(Zl{Nd$uoWQEZq4cD<RbHHO9p8TYiiwgGl(4M<B
zFHg&C6(``rVy44SU66mdi{x2&^ky6$J@a7EIl1hIf!!9qfA6w%o8FFh^gG$L2G$0$
z>5lC11|c3p{mm1c9!hdHc6KP!6i<Jqr9CgODH}s^xQ|aw1=dAh<qbjIz$Fx_)A!yy
zf5;+d$U=y}3gW)=9i;~2V${AiY0r;lZy5O@CdR2Odwa^`FI!4a5a_24okALXMQ@-|
zIkO^{Z6lW&{_oJdZ&-2r`{#SwjqTwAb3*LPIgYEEC0RC}p28p4v_IMN;mjRwZ*S+q
zpMI$Ql0Q7;OpW!4{|kkXa>2pqitqidP+HWy89XwxtG9W;PUCO1(?#1yDc|_uXfst?
zjd~ZEiu?ym{dE{Oz)LhY%A)`s>Dic3-amg0Gz4f2&Aj-BEFOY2fX;H_^O^l)l$Lek
zIAMty=lb3}*OOi)y_==bJ#&cz&H{rBAx;kvSRO|bJLHyrmy4;L*_5!TT1rb-u2T5S
zONhvMS#zmxPmaApnO4Em)3a?;N}y_yt2<Ys`MTjP2nqFVT^_HU;_eZ+c{vPVc^8p0
z?j0S3$McRYFZ`4A7Ho6c@e-lrq%x7NpEE&G86>pZtArp>d^8;{uon2c@wJ7;+inv<
zV|_UlB_*XF0ix({nWzYv1;`fft$xX`8vq0{<6~@@Hbv9Ymn`*iHjO--#v3B+%+sS6
zSbFdAM?QDF=%}dQ8WvMS-{?n*KwXQNUA?H~O3(D=vj@Ou;L%#=s$=UaTB?~6<|Q;>
zmsVRAiKp~Ho{+YrdhhtUK8l(9^Jk4=jJE$9Ec`T1ZAq%`#OKZvup`3CLzGquXZM-G
zkV3YNkT6nFQ&9mLVDpTu#E{OvL}-f_lpC+ODd$`u<&HK5$uIqU^<R5>(3s8_f>I8?
z2*zrh?y4Vr1>}2B#p{KO%eWw+^IPv6wXe3r3}RoGj;N-)O;n!iwTTfXGmx}Hd7->Y
zc8Wbs8-&jl<q`Zkgp@V-cc3GGd>TuudS~L6raldkJm19BD(vclSbAA{+Da@f#<!x4
zdHc)K%e^+Um_IqMd!((m9xg>l)1o2z9@)so@mPgxx_vbH@?T&V%}#wlEf3)uLgrLA
z8Qzot&y(6T={*FZ(zujm{=S-g|I2`E6=5Ue85_YJ`x{2b>Xsi9Ljn@;Uj8kOhwZJf
z{1iS`)6?bKo*wdi?fu27ysmG3K;6>Z9Dy#}4R1X45=gnPMKUz|e1(J<L}+|3|86?Z
z?j`yE074)W^UX_kEtAS%IRaG!H3Gf#QcFwq2VOEnZ(pBS_JH&?OGw*Wn}WQxK-(}1
zo({ijL<zqUpMr+F&!yo^T`YTJ4{`z^fJ81lzHHs#8PY(n8vwpB7^f2L0|p?b4D>cC
zx4{N|K+lh-A)2a>D9WAq<H1wr!!a3}`rIjYm9A_{?%Qq1=j?*qzJ1mwd<j*`)|qL~
zk7l&VjS^rk5-vax2`-Ki9pHlg?d%~@XYzr@AvI%KJo7NDBEh{u{WQ_C&IP4*u?+Lz
zJ=_p{^!gJ`7E&NT{NBGc&V?)C<@A6uY^gMol{Ip)LSfE>PuB&YgIen;=;cDJnVYm0
z6GMajj-Vi0eI)28Zosh!4T0K3hm6ibEe`hR#Oo>vAe&*}d+#*YIF{yk)U0o_PSb;i
zV3u{@b)4pgP#O9u1`i$4&lc}<?)KMOHntjvY*uf|R}1!NrRZ`9GA;k{`PlWWi}4jb
zGc_*rMAa}r31>|IkeeIiGA+kR7@{cK2q;}uo@GGV20G8QmorI{A+w3Qu0oKoQX|Yw
zOhiphO?%Ix(G&rL36pvQb}EPNkj&F2HXA&8`t%y;Z0z~tsqKj%D%}&{)^a|U3?Y35
zwfOy}<bmZm?{cYRF%I&m{f4XgQbaoV+_5$cN#%@C`q}PfOspfZt3SZDTUhweNVmm}
zjP2xX*`6P6$c0U!Ld7QAfu9Dl+`Y9i91y9?M9xlr17<0MjO{y(yY6jCRlp$X;{sL`
zih%`q-RIBLho2nywMW}@<~&$|UIlV1vnt!ET;~B|T53`>)46S6lynacG9mfKxmbpA
zy2rIQwU|Y$gYI;@B`zJ?RvsO8deP?jb9AX_>H(Jv(tgOQi;tGlb8Y8Z0*5P;EOQxT
z7R(kUDx@yk%@Cq#ibZ`|l%Ht9SbzSPeaP;@Hc8QygV!Bzb*zlX@|{?6w}gd~XCIBX
zyE_wcB)WMs_PT&3X&$G^4_t4^lo5e+-gtDzFJ8o*<f*2InPlVArr6RTfFq@R`)X8D
z`&VpV@KO1VgWh-#olq{{b0#dg%;O$<))Ylq_b^US3rW2I>0*l@URA(!<y{dbz{M2v
zlpBim!$4&t=^+J<K;RSNp1CP2@-{~C3fUQTL)j1Oug{p0GPn4NgzBcYsa{t;pnN)N
zg~!z3y6)3E5wjhJy~w6r%54;9<+&ZFUSj*boMUXvX(9}CPAzm-u_GDo|3fY$B+x0}
z)GfRNsK>NBSpw~eq4m9pjW5dJ1W@b!RVQ0oTbstW=A}fKrkK07u7>T`@^ZnS_ZyPh
z*23;Y4`)tAIk-WnNMjL8bL9*-U{Lb?QdYabtD31dxs89-JImX=oKMN9=iXhphi|#a
zakujHbJgF)$J1<zy#-@07}&H>*`#Xsa`UTXIyj{%Nf<ujU!OhqX;c;|e!Nrp*^1VA
z5)Bc7=J@^O#2pg5motrF#miY`?-CP{9UbzpR#VN0t04CUVqw~+!HZ1>o~W6OQ^<SU
zPd$`nT&*QKs^E2U_ww%6w4<n6&XZmm%-)*27l2=Ki)?0ARyf55NpNuRtYmR;NU~Qu
zmtgwf^6s5@n!Ak<B9P5h0`VQiO#wv;ezt7Ux9_0V{`TSQAtWbPvcC$<V6)c|gvh77
zf!RDZmGGSH1E&4hEyKIMpo;)ltZ$nr6JN2FfBa*#-82AXu)`}W6K|f}ZAuc%2FS-S
z9;fEzGZOX8>}(`ozd^PPAUJ?5URkDLY<<Zg3XsZL;>fDh4T8r9XN=q9DO;7Fks##b
z7Z8~7gg63(9DjHXDilGDjZ*fGjxAmn=1~Fn;s$|CnwQ6=cfSm(4r!rv82U_ph5Q+?
zZ1}-1og{pL*aimv@r$ji`1a$66v;a!qy9VQ01`mTm6q|KTLEk-Ag59uvY}7^_3hhb
zs53zU0+1fw<GZcI^{unSa4FbD=P2`Xhf$E(%sYm=ucUrGhtGkF%-l?vl>X?7tf6V3
zau!A)3)hXMnP78*ZHOgAI^y?c2zD)*!8@$u8PvF8W;)&nx5=gnYZT^$p7&Gt|Fs8T
zj?j=ZDz;TpQgSQFf3q>;Gf|in$onqG%LhP|>Dx|e3s*@{D|wfMx*%+)qfSW}gOMe7
zZkLUP1C-n+F!H`_;~LdNiP0(pt{S3>{h#IR|4k2xP28oGm6g!K3vhpMrAa%)0h$sg
zCA4I_gpi6bv9cP@|DWfbq6jg2N9(Wa#P1J23H?{!qrM0ozg70x<=o%YU1cFj7v;%C
zoiq=&^n~{OG;eDEcQpxg>Q>o{vhLz<#RvS))ezN2<H!H!TG)#(cvO26qJAB0<p!=y
zS6Fqlk&$x_gG0`OJ>nM*AW6Lc><*c(K{kzsfbwK|T;PXOS>pF)$7!eu%mzqO%uR%B
zy$a}{JFd8YI!Se%l<l`r(=AyGsOb>Z^L>&Ov{x?fa^j-12#p~jxGF-_Q->6?3CPe<
zyOsNbzf8p+C(c^*ntiq7&8{9a!6_GZdhFIOEEk_W2fqc>vk4I&e4#mX(O~+Vgtp<5
z<9y?VVp<)3<;|P+)3_h9Mq>X?{i|hpI4)coQv*;53+1UZ>ibh&{&G<6`RN%Q`p1}}
zQfWv<HWqOLo^Ahm<x<9^6p<L?7uIU5zntFgy!aQ9)s1WlejY!HJY2d$xN!YAYN%3x
z3aNjwsS2^;<U+NkGctyWs&<de@<!G2|B&BqUH+0NNV;uoF!MD99YJt^uOWSzkl#k?
zOk2ymSOu_gLz57`tBE7(--T-zC<8y^+@F|FXZ*5S*JE2{9@A0X5>_^MOqylj5-&)L
z8mXkp@ETOVFo~8xqgIJA46}<QRS@VI@nKE(%U*`2Wn!CUY4eMZ7Xg%@zWbYY)UC-L
z^{6rf)RoZjay-x^JoqA{H?e#y4i9_}OF)uCnIe?L@TR7CimP(gqf%#L)C*b_XS|O2
z3H>R}#;ORZ&1-t=Ox)?<$(3B96cwK_lkGhFG5JwlIQQr|jcU}=bU!s|6Z4xIJ+^US
zdwP2ERZ|lmqaBXELzo;=m+O5x6EPyh<WYmwJCK`k8HP_0pL+!d&6}E`t+VwKqMT6G
z%^BXYt$!}3i94hwWd+`2P~0e*Q?FYHhC_W*Y`e99)&fb2xQI&z)Wu24s9JP`JO7)z
z<@b{JO_vZ*K*Z;~hQj(|b^<}}sn;mhS16Jm;6ozQA~pzb2XKB}d~OGcom`v4l~jtx
zsVKPRQb>WIDi1E*(1DM-ciP9Ajhs*nA-s$5<Db1I^ErCb?|;E_k;OpKZzLqf@&Ova
z<8}}|*YGA@Y+1w*#;3%gf5)_!@&;SN%A-JI{EqJ*`u7?u@7ZWcY|5izzTcba8rj<Z
zm4qn|R~J26(TuA9h+mX&xodkeo!2vK+Ve{8l4JnZwog`dfzi&h@=9F~q{lI`dH=$L
zDplmA#ue0XTMmzRMVqGKmUpm`qr<Zke!neY^xFALE~A8L5Tty~u{qa{dvD){VFX+r
zKVV>J6-Pof$LjokiIg=<4UsX_jQJxA*PEovux1|ADJ?An_Or54(DMDZ`g31Y@_lsc
z-(iZSG6v!P#!0e?(QW|ReCmH`&8w(M59AIj0hnjzI}t<8LfY<Zq!B*_9d~kQcZtk5
zODgXPa<FqYX#Dq0ME`x$E7YLM_(xMYNxvr2aYTsr`YpL8SqEc6rP|ohIAi<eq2}MK
z5n`V$la$33S`8VL^2kMztuO2Ob=nkuQPk6mYxTP0v9mwAm^*Zziyj0Z6AmtqI66%3
zdkJA4_egIZSJBoLYSWkqdp_(D2P{9ybFyIUHKLT$)_j0O`lR_hBf-kKT~{%fUR&bF
z5^y^%3!6xL>U_9&z_J%GAS#cQ`#ZsNYtRy_T%R?AEG%__N{5VBBX{X4dc+)W<W17k
z7qEyBiR{W38s%Qy&uTSOd5QMZMF|8~U$0Lm37i&tt{xwBPCU@x<&xe^tTJ!hHJ@lA
z%MAOt-SbAhiZu|~X>a8E8#Vc*5BKOosGbn}JSLPl>$vtFfD}KPO4X7MHUuoDm^UG!
zJCgI)yA^0d{#$qj^Q%zD1H;JYIQ=wjHJx@SncwLit;ZArtt-Dbie}^1v}3t@bCjdX
z94{togu*5q!pq!*TGSE@H+Pcb7KHKCtfwsbDW8qMEYk+gL?5dP{lWqW!8*i7Pj-fM
z=uc1r#=p3-RDPEkdfiwbgok|_Kh*1Li~<3{QFuHUtH^Jo>ouP`i1{3>;P3K#1+^(f
z@KLrqS$=#AYcicvkB2QW4B~%U%QF)x{04~dTkELe0&W}%zDbCDT?({u90&Kb1+P|i
zUivY$i<C@+;00(aR!-f%%e*b82acYgECjsAazUX0&!J)|>@Pn_zvCoQAqLA!u|w1b
z(ue)9Qr9c=`AM_0Viq(sI-R$d=rddm6eRAx8+K^8i+o`qL}#+(y`%9g5jCSzMJRd!
zN_rsVh-#nz+hK*WZpN76mlM>NlKGC^qxjlP8Cqu9rFS@xPcCf#j6L+C2Xd4S?|X2{
ze6;}M9Q8$kuJ?34J5?LwWxL%BB*|JE*u!yf_f<J}yPW8FX@9hy-xf7NcS;8KQ*_cV
zyns`)$-5o|IIXNzBhACVeP<szr>W`Z8R_{$hT6P#y#Q*KTC9&Po|C-z{-a-LaeSlw
zXIJ_yuS~BnMyPOkswdUFk+W4E`LFqMYxv%2?U+CF9lWO7L*hOBs;EI*@~YQ+1Mjh8
z<MGAUlp0rK1{9Tdhtre^B&{)PTi--A0G$obr4iojPb(4Z=lc@nMu~3^qXYEz4nLhU
zBv|tL7!H^cC4hlWswapW5C~{PBTy88=K~Q}i$=o0r4(ALi}t1Y`x7+(+Tfs$6k2PA
zb_qE2m~ew#0gG82l;<V|nkZW|An->=M?>ora!4UzFMcSn0rn7!{PryYqgzMjAM$ZG
z9(rg19N8}qO4PfD7z@!@Jfynh(@7@sOEVLSB-3RP3XrI-alxuv$TlF`{@0~T$F#6M
z81g5&zwd|Ttvhs1h<Z6Z9W>E76RcMGa9YO;7E%?0)>X$kxVx7eJF?HzQFn3GS5-wt
zEWK}!30oD^mw*2J(ZQKC<)#F4-c)_)v!_i!nWu>!{daoT6=iX#pQp}p<;@Y4r6dMW
z?-O=v3c^#-B2yGRoC%O9e4z8xQ)Fprsl&yZ_k==rUI#U(sGnUd^k4HEBXpnr0q?B%
zQ{;3m(~Bh>UNN!k2Wd7&&XYSmeE25U3?dmMFZ-fZ!+S}8`nfOO6coK(CayYhIe-`g
z>I0>-Oo5fDDVnz@Q7`W0OH6ERAH3j=wT=JJ-c&XjEtbzcbrsilHSwE$+W`(%GHZ~&
zeBx@oKzoWJLs(#`2qPob*JqDAi1EmDjKthYbYV!KyRxNrCV3|dv@av|Et<IJnpNPG
z3yzgdGh$4{mk5r{4<Ylkr2-a05e}Vh1}Aol<3)EzJlf_bO9;UkiN{=}#2ntEuLNL+
zAxMk7CpWyj3xHLv33plx`&(nqkUzw}Onk3$)j=Nvr2FJjDMOcc8@WN(ula6OGA$4t
z2p%iDgo4<nEtYGu|AiGA0-B#nZ2Lf$zyzj5)dYLu3qGU!14*-igY3WF)h&o0x(8+$
z%$=EN<b&^NIC<hPmbbP#4Q>P%s92J43}qN5h^p?t8EP@VL_dKuSJF@})f%p5q#JSy
zjU^yw01D&0lG_A=p@{f+)=s}-HBdxDd6VV@4Zrm93-%Q(rld+UQ6oG$e%m|W_txf!
zII>?dSY{pF___Brd{E2)%tEkwYnSn)Z<$S(YO#U3KqW_!z(*BKh(Q?FMC-=#)8>*W
zAQ&H5Utq?xlJK<JLlpyEY!Gjts>13VfUG<5?J?|<wTmt~{ShNLNrhP#42S49v7&14
zI0&$RpUOoN7kJ$!BnENLRv`$OfSl1N)B!UZ78}@I0E5A@D19&FIetrZ&er(jNQQw>
z_^YUa6*hdC51=7D+m<kB17JlWv}?4$L<}mHm{z~UlUc?st)bODOAKNFls=Pa0VQHW
zd{Yq6B<SIS1^~#U<Dg6itvPT%4n6&_e9^uD`Dec3iin!?Q-f~R!xeD*?Q@R-;I#8a
zF;q1mSOFL6)U^j)56+V+3qPLkE)S$P-kBeqv%T&9Fbd|!Ne9!LcFZ?7r*$AG+=K`0
z%qwOCyS1Iei+~0H;4~D)42VO<KOLNpcQ{;hx4p`r_}TZTOC87J$nh-3()B9|fr+nJ
zd>_NQfRJF6)3fR*9?77BX#q%*gn;2>ZfYtv7~#U}*N#o5uU660%4jiqY5<}?c>8J9
zV_*_N@9Q1JlnqXMslKtaNNI<5Kt!LjijvBKb2T(Q0j_5~cCUPU8w)zC;PE0z2MFPV
z{oA*1Z*|J2a7~Ycs^Yg#H3|?K6;-R&OzCN!V~f%!6bZoM?O`1*36r`-Nkx@hh+kC&
zYWYZppN&7uc_4atdM3r2gU#?(=X3&75#Y_KYnco(S6VZf-t^N~;~`L572_A9j4<hu
zx*Cam(YC}OWcvPx3hWJFN^c#a`-mpKKt%las+c~ZX{gdWSxmQ<x*wt)F3^22={lSx
z{zp{UZsJP|aom~w)(Fn2D2p0kqk+IQ&|8s-ST=3X!qL&O-ljRYzv|azG5V<o?hQ6S
zcL-nOLg3lzOv07CS6?11*|Ov6QL7IyOTE^;An$B~*Q4|~uR$mXOoQi?NrD&ze8zfl
zTc3Iwz}FiZ=3rg3>InZLX^_zrN0rz~)~&<WvB9V4$r16y!`M*fx~Nb}bHDaOa$Jb$
z&?rIStZyo5k&N^`mEXT(z@>%KgyNTSp|}P}RSL*xe>&;^#Zf{<T@GkHzGtKS^!#|D
z*MDQaEM;TMOQBx8Xl@cKPIJ0&z~D9+HE9$@Owf)LBA2l?FG})<1wYw?5EXGg!iZde
ziRon}>LXiDq{@sT4B~wZ{&KrZ#rM(Wgk(cU#;Z@9Vt${I==Hq~zg>Q2rx0ji{e6S7
zK?v3U)>v-wE{_D8rMqR7DgV%gsa;pl`Vl-hzDO%zI8xau-x=P%V}xHbNQ_>b^sT<$
zW)r<t9238Gt|WH^fa*i$ecw*-dAY3tw$Y%hJEE+z^~rql46_d~9{NT`(uH8gXoN-D
zgQ#dyR!tN~OeQk&DjOLoY1;h2`o8oi^H-3n`iP1a04ymh90T{&9s<}W`04@y;L+E2
zX@yw_e2Q26Olta^>wV4X-}f7EN`~?!fbvP@bU|4{Am&#>fqaTwnx{Prn59gs&$)dA
z@AFFL%{3nenKTQ1!#L%)6Y1cJ0;mc4WB0`WpqRj;VAxp%SEr|#`orpR0KX8PmwV5S
zK$JUipXoU^#2_UixH<PqQl5%~ukbx<66QKZXo^@oOmDddPOTq98g~l;vi<t&*YyjQ
zoC==p-KG?{{Q|8z3Sc$$_M+TEe`a(;q=Dvzis>7JJPk?2a}8!*+U}Gstz6D<fN578
z%a(NfjpzJ3LyDV#8U_?Oyhmo-pWfoM!<RsK0)cds1(nVv*mtB1t^^=8EJ8>H!FC@=
zIZDx<kBu^XQ!!XNNGiXKfpZp+zp^OpGMsKgn*exy&uG%!_aqSNCAuzNwd+0yqICwG
zKj(7=aGE5`)KE;N=}1&Mhx$2f_|gGCCIY~4pZ00@94$}}Fvn?1T(;RATt9ckJ*OBc
zko+GP;IM2ya8>t{JKCAGbXM9t2f|*M594gUhj66s^r(MR-BEjgIra_;f7?EMe(##7
zMC{x}t1Y&llk(r?BqaV4uy+XD;0i!{Iklo#Y}SI|>@p#pwwk?ijy<gSrW=-f-`<4l
zqbugumbax}c8_+O(xro77k1jZ74am`JLP*^|64&`953J0mFNe&Y<R?~vzu5yq|n>k
zJyRLu8m59!KYPIXZSyCqBN_7dLuJ`L^L>dZ7of`liR~`?<;VZsO)nYl;3Nlv<uljS
zbZF)7pR7mF?mKio9a0xOujLM1vg3~r*A-`6YJw>#(sqFkp$af_QLF&8FVn89{35IM
z=w4T+52O=+xSs@mePcavO_QbSW*M2(MKyJCnJ5Z$VO~Mo!5gD?+q`YX2A84!2%VoX
zelPscsg2+SUYu#?|D8=hPv4TyZs3YoXnA_1$b0bRt?mRrZ64z_<cMSA+o^-y%o&>v
zv7gdDuON$sX3n_{fBe{5x(KR;J7f_{EA<ErVj;ny5b(P2skhQRlASyJHDqD4t^j%J
zpY6yF^F{OP?MnRDW?dLi88#{{Fo(pSIgFei8)Q6sLk^ndZnL;RVU;*;N=%v?)R+yW
z@m0K4iKv^qW%E~3=!LyJ3%4;hrAi3Ue^qvOt|RO*GNJ8Y9-kmSo#0p`l@F&ufKvOR
z#o)X72nQKMttp%oKM@7Us!eHLq=C?Q#ZkbXUt6lF24nue$ZzsRAltW2Hb#d#ze#LT
z9Y}!qAk-x+Z@2Hd5GMs<7J7hq{&?f=3h3ZRbKl$-6Cj4yBE9x;dr#yPzJ&?z4CiKh
zy;>cS;cn@eB`m|=Rm@zsfocWroNzKgxvqgfbe#~uFoPr}%v~$#tj&na%*^bD%=6yR
z$8qic@PBNCBQ}A_HFs8bjG{2*erlgD9>BBr2or`)U<dk}7+||qly{NABM{K_e#wE2
zu%!Yh6w(Nwvt4*01HU(|LNz^lzp3=hWaiHWG4@$|CbZjkzkV)K_W+9Q;R&qwH8p~L
zWi2G9zG{hr%j>DAp(>c4K=Xrc;DSnmQkxuX8@&sr>*EzD{%!$N6MpKtj9_;H&ZZ92
zdY)8r4G@f!R{`CfTb+t+rw@722E##;ugU6L^JUcdfEovi8Hlfy4{bU&_9X??^b%?l
z<>vTmvz1&D>jyyx4+-Y%Hd7)MWGmKesOUI-c<_YLbNR{?zL$_cyzk_~SRqqh%Q7?E
zwUac=TmE?bO}AjuBvmez|KxMe;(qw>QRKJc*Wl?u9cWjg1^G8v5m%%=g~11LC;T$V
zM9Mu6oB&!U{09vA^V36j;bN_<)EYT3euW0r_TODsl`EmonBD^SVIBYSC7@(&<w8OZ
z66x`5+~?BJ#z48al?s1hen$%TyGk#*wtuWLaI-OOU>ViL?+m#h0R@?`?*T~`n4}-)
zgn+kWMqBRy+&!r5O6Ux4ycpu~PId4CQ9W$+U%O3!4z4UF2QJQ^_93x-GOh+rH_+-^
z2d0?Jz;_ZKX-Il64$2_g9W?1wDhAtOB<ujmFv>sgGbQ5O_o`k%8{SwLdCBp6+oWhj
z>0S+rle^ymZKMh^h_Gq+VvsPQA>8)YFuHcXh5@Hw`x*GmyRt!M>Q1-3ygUcCc0$t>
zJI;dYg%+`bRow|xn?4uFVH)KNd412hGLSKVq7l;@#lV+F7U?YoqXX6In2-7<stz;6
z#WNO#16#mjm)iTek;GMSec0-R?8<V3DfSGU`t)dlt*1=!6DqOK3KU(+;l}?Zj8FbJ
z$JWsw{1DWIlLeq12`M31FVkDW<^uU-YI?d-{0l8`myB>PH_7fc>H700sg!iC1jtn?
zHDW*xpeMji&FX<|={3%cC2*sX)hk3w@~OdWwKdAeu4HbqgcbDCh#u^lgjG{|#3C8;
z3ktq-KNRC*geJ2b|2v?k&Dt&5^B-2a2-5a#SD17sMJ=#uIbXAcHD91`pN#(5I2aF@
zQDI-c?pZuz&6@*`(uYoSCs3pZ8b8Y(Xk9nTU-$u)Bqj95T2U3_C4|MO4K9zcHMszO
zyzJ3OAmr3UhMm{4kG|%0_>o5@jS9!7XyEA_E0rvBuWJrQOSccp8@jW6fl=?@Cl53F
z`u|;G*K+=gFwD89IVsCWo2g1wWcB?S6EP0~X+rMZ77Tl}G%+4S3M|AGbU%8#lCp)?
zjt<q+EZlPcM_&Usfn4(KD9llzG%lV}=OM7aZSQDuSpIAD0E;4sX&c&<^hYZ}$_ZjX
zp4ZhyLb?r*!jrg%Pd)e0eGrf)5pS!<wf{J}A%$I~&?4%dpKIuvD@31^!0U0u4HaoP
zjlkZ}xj(^Gnz~&5CJr-Y(qF%%UiGGCi4ZZ$*T20&#3^Kugw}kvqnP12Z&DO~?f=Da
zqT&w_^!$wSiNZ8<>jPQm*Ukm@rbE~pzsbCZkI_>i$f@PI!0;IG5YQqNJ7^@cst*te
z{Z-KDKwE6lyoS%6La#``IexbBB{`MiGaF>L_m7DlSSsC|&){K5L%OpCy0%X9OIA!6
z1kC{00jbF6c50m$d}Grd*owez0)7q97MgD}zzH*-pHiD^B|Y)ujC;`*@C(n*#l@wl
zQBI;aW_5U1q5N=Oer5FV4jv7E)Sq0)n%^;8iB$G3v0KnP+WA|-Et|C61c>Mu9xn6H
z**dn70%f?Loz(YN$`ZXaZhI>=aaNT<JQMCjSopM${|-*o1wb`5yRe|&pTQg{4`BCm
zJ&hn8sNPX@g+B=2)CUksi2CQAN>DsmGWCL7I{GG6<%X&t%;+@AbjU3&UuyKat8|2c
z6?)ZLc1Fqa1&RVk#C&d<OMN>qOrnu76%{hxa4SnGlt=Y++T{5a#3xXwyDUA;Z6rOj
zV3KoZNct=XRg|%Jz<_G_opSELt=QpThH?_eCY@iH1g^`EE`w^|a43@D3P2;kZwYk`
zUE~r}XK%cFwBuS~vu>Baa3|UrD3n^JR#r{nG$S_Wr~5M_6NN8#m-?*B5|uFg;c-K4
zW*Wf-1py^;@xgS+eXp}iZJ+sY4i68D7n4E|2pSri!2)x#1dlz6L5uxrGwonFHb?O9
za~X+mdt!?${eo0N94k7)Xh5zHI@s<gJ^6Tw!sPZxI(GW4gP5Ke8#C&79$GnX)a)`b
zmtA`}BIG<D3k{R0nm1Ut1j?4z)hjBO*9S3hNMH76WL4=mA?ffDybepmKuHM6d{Hz_
zR#i+^G**b}a$1#dO8sC%1|Hos!rQ+D6Aw5gkW@b>$p<Rm*4aiR+E0TZAUmKAf`TgC
zvS`1!3S1e#z+b_u{tJsujt|8Dum`maeFKEVD38y`TLThxKo8~{O}H;1Q2Z)bO{L)p
zMjw}UU4b6oavK-qEp52wikM;)fy5MFp$gVPD73BqFNL<sz_kPyNFaHrvwR4=j+6Vg
z^Znq5wa}4`1(}~28BZL-e!5@JWN}DpYspGY4J_^i%&X%!gmgG&3M#xt*pUI|0VNS;
zNrkgc6d*{D$*^M?wHw)uwt2`zqGSmrEMScTXcYYP?&<k7nXIdOcvO^YM}B+zT@rQA
zkk-)=r3-TsD&7IZvYEq$#HJ6doin|69j^5-XBA({Gwy^F67YUJjq``IhB#iqjKu~O
z0^mJ^MOJi<t4EBV;^H<}@;WDnj1z03)s}2#!g%z+oxH+9MgqO#{B%aV{HUY(<M9Yc
z&WhI$_1EzC{|_nszCPkAK|BWLZomS()&C||*n=NF8ZtVn1+IfMWIDWeUg^TH0(raI
z2OX<xa4_)b$ZN7bh-ffZU%+u?FkFr;HW2*Mr-#k6S2J60CZXw}7{t9Q*#Ex@gK+mF
za1%JlpWGvmJB8#5a+l1sQFKDW?{_qx@d^k~*)4Q5tPI(4fSqF~`TeA(1wPwZY#p~%
zmGYw{bLWNl(=A8LprA;n-HP=ob~lmW()9<&3<gNb(AJogy}q6F6kTtTb9+60e`yKD
za##<rPQ=a4nZ2`Y3AX3k>)?0__-d_CTA|XWg@eUp<i>tgm4DUw>3W($CcEcmh<Y*L
z%T;IQLc&;tySkgx<!#icUKu~KM2k)EyqqdUArZQh#5(zlQlri@VWuJjl4RO%sjRrC
z8mXQ-FK22ypB*l29xZ3j><)N1pE}TiC1c>PUn84->^WN$irm?BC*;{j`o`CsV*cT%
zQW3q|_&$M)b|Xbr0VAi>pFVv;AjJJ~eVPq?o9&6D!ep&7*Kyd25o)@pDq0@9YTcuw
zp{RAG;N^;Tel$?EQ8sak2ZwiYeqbrNrj#Q8blD{+^<4kLAb3%5XWVUlYAS$7Z=%uz
zfyh)n)|h;FDmG<e)bZIbmdki5vuON?<?%`#jQ-|)oE6HaS52o`(jl<6V$7a0r9<L$
znh|lst@kA$GLg1bDV>hf@$)?(I{w~Whi|1E&B7gP>Dz2j3sb@EbhM<T<Y3LIDg?qY
z#fu_KKX{(K^$Da(x@T~<*C|!;+=myg9=H;{UeL)$CvC<3OsD?vZ6K3_*I}#f#zq~L
z&HR%AdSyeyqQtx}*2Qpts5$Js*+7<S`ksi+eFJT+VqeF7J8t4_!`5nOXi#c4e?Otf
zMmo&{^3u^)fU^acuR;^cGw0{+4n^%pSB~x^%~JE*V?*rmJQqNC1HA=r;-HZSFjJ3?
zrpWmCFgWu9PVPX9d&rmTwr?r8-PUukAmXGq^owo^c1qy|eMo)5sR30pZU0{PI(Iwy
zs{p{k9r@3J0_$4AaAp((Z`!`L*Xb@Cwublcwe2+B`2iM+D^1O3d-;4<x0MrmR>H}v
z5+?}DgGcrN!ftpZV;-Fle$;hgTFb4u>_Mcc=XE@yi`ts-b=S-7OnWg3Iv>bHZsa9q
zf~vCd$5Z*sm(Vgaca=^SrA2B<)Y>|BHUgRI)Gz9!MZt}!0J>>Lk;7bS^0OATO5fvk
zuP@-5<_GIHL+eog<hTkRebUP7m`XKM(=S;XY2<7m;UT`aSaY|4CsQDFVZx-T+&ALj
z&n(V#Vc(BI9>SkOdxLib4<_I6+Rfvl9#!|$>~$hGE;AgZaRLFo{$O)v6RuioS)>me
zQ!Fhhp&|LdUNZV9j2iHLvva)8JrUJTRma*VlUO44U0=ny1b;1(va?A-m5P{LE!u}q
z&-{+KML|oVI3Lz7E98B=Fh+y$=8M5Yj>z|fRR*QDDk%v0!BKvA2<twTbALErkS<2o
z)5Tw!WGw2glJ$B;RrSta;OgKtVM3@ka#ogzl0oU=!EN5!eBkV=Rn_T3#AJfoTFpSE
zqqx6x)Sz0G>owKvLjBp_5%73*2YuO|K{HKAV^?(viU$v@$o=tXqxL)laB1JR+8xga
zNJ@B&g|Js*$1KYrs;}{kq71xW4d%R}pjB}n8X8j1n_nmfk}v{szAb_e{h5nfxclEN
zyj<=V^5z+LMn~khA8LOT*l)o_GP!_7V=dC_gb0^{^D=DT_3U1Ua-RiVID6{oTRwvG
zuFqj<#9f;0J_-#G*7o}A72d6MX9)h*dvu$AaxUiFf8unF5K$ddbz*qZ<mJv&cT2YY
zm!U{)w3_2-*_SjknsN8-c3e2qfz#*TtVJ_}d=xT#bcA~59Q0f|HUgjX*v&sVIcO3=
zLzHiKc#b+v48tdw@+{e?NgR$r1MEGp@?Lplw3TtPu_Srpg~AFL0FQn{jx!QA%x@o}
zq^k(gSFZ>?59-caHUdkH`_kNIcd^#0&V{*oc#NGTB<!=UHSZu$g+9}1g6EOx$zdn>
zgN%9}J6X3s7%*^_7~^qT(;D^ImxYUKo@^(cqbO^T_VpH~$j8@qCrfwt_e0+6c$(2?
z77;Im2QM2eZ5xYihRFFi&n{_8cyvEi3-?c76X&Kr;MJRe`Mc=;yyExl7pwJ<kwjsy
z%cSiz@%{I&U$cj#^<Xy}#;7Mnp$WKJ@l%AmZNVf?bw*`a;P7`)N9PFvYAtAJ4<=*c
zscA#REotkWMMV>CO_PG*&a<q(N9pa2eq=h%c-h{8uD<`h*7=Hkys2i!L<9m()?v}i
zXEGY8;-;;Wvg#?J{M7Q4t7$4uEwnD@W>8hzL#uH?)LDLm`OuW~8V{3se`ktW_wXu&
z`W&Zqot3dNEGQZ!&CSjKEOfTC)IwIzVKwgF7RQ4R$2bX<P$$_<gCJr$<%do2;Xr`O
z2y_V*YelWOTdRKfaVPBh2R+{$)Q_{?nw6QIoqgF5Tz22t`dp_=F}ZsZHU~D(y}ZP!
z-2vSuyH25iILp#2@Jdj51BB)PkK;Y)V4(PHKZOJEXoBI;8!eabw2%jX<g+tk*To=o
z82HjbZnXz21HqgjWEttQ_3NnvJ0Ug*iS$c963^YQjXTd=n_ZA|p7g=eD?FB)xzBPk
z_Tpf1CuPCf-i+u$-R3N-(yQNe@0E`yPUgi<cC)=2zKFf~(rrS3i<w+lHtCD=4u%-$
zhp<!Q*xK3(x8AW7mzH+x)&HT881Aw?|7yJa5Qcwk?*U;vj>wSv<*MO7{mH^>C3mUJ
zD;*R+NlDmyI?qL`&1OuIFt0VjiFRCqNjomnL5v%1Tngxj#xSY?h<j46dF&UTh0=-8
zl4;u$hEwzTLWs;Sz#zmeoT|eYf&3ff<BHwq;);rdMx6;`<^!S<-3=kY+()&)O%Owc
zuj9%QsNTzT;n?EqBSDT)zSN=sQqyOQ<2doPRyt=l{!UuE9PZmJcHN{Fbbf}1i-e0o
z1>6Ms)Gs}MIV?wc4Gaw%R%T|K-vg>E4#@Yo>oV)f>3a6ppFgjlDwzZ!w+%Qi77Z0A
ziYj;4KMH%eYO+N$jd|{6+7vI=);Rwrsx6c5_-4QIf8e7JoiD-nY4}dm3`0yZ>z25R
zVt_#Q!wXCJzOq~h#e5usMs4Iz5(Fv0p}S_bS?OI|98Q=NQ67@ZxZ?)71>6e3dW94A
z`GK_1*<oiq$lV4DS0yb*_UOTf`3*!VX25#L@9Wi{8?U#`B;DH=Iin>-lYE76(vtq2
zUvHTIMC%Wgda#@(lSB00TbAq+<^9NreN{G>7kw?kE11tU=!X^Vwi6dbDUXuaOsHdB
zHdr`0``BS)^zj-wdG)qu#eBnOyM#Hn1iOz5f{EK6l?vkV38A5(R}5^_rT+c=h<*3|
zecf=uu-GzeKz|3a6CEfpFqksp?wBc=DP|`p-^w$R+~`pd=}u9gJK9?nZwik$Q}&OG
zqpGZ|JUBYKPC!sSgB0obsl+%`w(sP5?!g`#8%r(h{;@6qpNN{eZRhVR+ZBmesers>
z-x7S6`=wTLv@YlOj5%8}S_W$Bg3iw>XnOox_VYuZJUv`W&jx|>SBK??P;cdpFEiiG
zo>e!xFVI11GwXUc*6)(<jme(pVu^cfp-V%N-tw0D_J!IeA7i=dWMpNNoYu#8*2dzp
zw9EScKbpQWpsMfbnh=pzQUO7_Te?L$r5kCak-nr-($d}C-QCjN-QC^q=J$V}`$Z%!
zhjaGcGqcv3HIyx2_Z`kVrn=puf^g<nrcX%9&!58obmIkfr_D-h3aDfw{+9mw$nC&r
zp-$P>rf*@?5)>pg7}llx;eW3<qxQKf9pIAr<^JkpEK|mom$Hs5j;}+3N1Ms951!@_
zO_BYRb`#_jBsFs*#I@_FMWTvMP8=Y5>jNP=$dUenoU+_(njTDPblOR?VJlJ)>Bhb|
z-s)?ssjnbq^0RkAk_zZ_ysbZ(cqHKA7x6Es_-KUq@84$|Ak!C+A5(?`Ddo3e1{ApJ
z#J+8>#X8cgC^@y)Z#>)t?)8+udABpgtnzBbx}{Jk99?}$%e{ZDrbL`aM?*vV{rmSD
zM8x#eRL_kKgSGYPu#}V@iWJv&0DZhcNh0@4_#0M+QO-e2^72xE9WrS5RpfAhqu*{b
zM5*QS3gy0md=bEj<$CKXJzO0TmWRX4%=}XFrhcsC;+%Y7vNEY*bH!WgnaWmLAB|mi
zjfqh@zMP0|cDo;|vC?sWwCA?5u>qaDV8`J)97-4gz+uY8p#R_Jw@1aOwC<U7frLN$
zdkYNln>72tKR1;Qor{yd1U%U5Yoc(Hz%NANe@=X5qQ4zNz?-eT_x9B<7S1l$QtpJ3
zXIkPGf!3yASU1<C+MemCq2wV-&w+NtD;?@pYY|Rv*_iTUd2)XWL}zDjG`IPN)t&Fo
zX(}$G_4Z~2t|x*b!MI)Z_WNQ|3;*&Ia-7ZwO+-TQd%+^DG@~eSv2P#=t;5Au!;cPo
zd6fwWV--H3G|wSX;n0#UAwAz<-#Pw@6I%7TZ_7L7OX>eiQf;-2>RD34aJ@9&sP}0u
z@cx)k`umDCkW<f=>cWD+yAjNeeL5z|!1Qy2(j|d{L_cyVNqwY20m&tSh-AF5*7cUz
z<KYw@3j8`YdaX|txsm+zm=%|HMEjwbHoP^66vn?09<^Tnm|u$;>#2;cshAwrRe!D>
zHct-Ih^L-xB7%DuPENFrcxL94(zF(LHdcTC?!NuBx3$%cA<NU2`z_;7s7?=fGB<}c
z%N*_x91JZyXdWIOE(w(5t^f4t?}-9Cz|#dUqnjt$8&`I7PUQ+$Kl&g12!5Z;|6Gmt
zWx1P2hW*l5JJ}h{I5ZbOZ=aow17_&x?>Q1<V;MLh7nH{!P4V#&4#K1Gi~9@ylDdy?
zn|#5^+v^DpYo;|+h1X@ynItQi_dA{WR{=XUN0O3AefDpfTct=$<+Yvsm7`*rfe*z7
z5Knf?A;j{4K91;beY1(^)CH*p<#3N&^-QG-G*eO*y`ZT)`YF0UMTPo?xX!Z#4SRI9
zBa9$fW?{4#E{PZa$NJizf(U`X9%l748guzS_M}1ycwd6pY=a|1irW<x$c7r9Aef+P
z6)GYyw>me#ed9b}sPlivVfU+&r#Hvuc^V(MWz6{bKl+rUymGwN70xD@Y2uDc#6Qem
zyJVf5{M#6gs6B5Nk`l7boEyj;ieft4@#u=1Y3VXjVJy4kL=q2D+S4Awmh;<fGXO%7
ze*QeMl->Ieye3FM$JfKd`7jjENh_>9H4Sf0VqL<|UK%;i6BQ_3ADG<qBER2$ud58c
z5IT}yeOuez`s%ENWp-tF`b2;tTB7W^14pYkI^GkeCd3<OUxF5Kd`3RA?3E(3xZ<bp
z^WbnrzRl9lk@BsrBqtCWj)T(rC;H9PF@3NEKK2JLJ4&s3yVXU<7~9o$xR)SFOrrCB
zAlBEpIIN8DEVlpY-&!dM58wq&w)wUx?+A^m-kjr=uGx3(w?QWrT6N6K*8OHq6S?>M
z&cE>KV56UV(`bCguHd8*`0<BC7PDCIx2IY&B#2aH#{XDbTfg|-x&jwm5b=;sPxmQ-
zLkP(3%4>cwGec+}tl3@Abl|^l8!H@`2M0-wZ*8YUP*PE~EiNX(6THb+P(wvcwYF>R
z#S*bI6O=8%zPNB8PmMrwthUXtH8WP{;FQ<Y?!97hE}V(#m>SPgROIr^$dC~aNgVXK
zO|YGHYWy1`3OQw0!pmMd?CNYL&}5+8wo^ucFNyp~UXzGamqn^WnUjf*Z(eGm<+i%N
z-=APbZ*+UM35v{EFmv$_9{X7w&#kUY0=WX(KmFqF4ht&OefqJHw()m5490hkwrO5H
z7PI*OZJpO&$y(1+EOac_bUB<5u3BDy+|y}^sFSXBIwb}b$tzs)%+BC&L|)zZf@zN&
zieW$VJX_IF$MS-m9fO;2EEVV7KX28JR(|AFXY7{k^=@d~H*YBV6BN|B*o1|EfM7mX
z=?@y~&f1YG4lSaCg4OD;pb{LC^i5h&Y2$bc=T6@Z7s6Zmmqct^bhjkrj8>uyE_F=b
zT0e=wJX9?`kR+=Ox5s(C$C+tTpBwDmRy&(aQTG4GDo#T(t~qjv>rmSE#Y#zOq&n-j
zY|c&k+0-#Z$wo}+rXoE;4?sQbn8-E}t?i&hN#Ho4e#15lMOSP;*o#~Z=*urh^Gr0b
z@-}IVb#+8BHC2jN1oVBl?-EAUq$;X-yp#s!ss14$MqL4p;xaN@`z0+~pvxHavaMgS
zNq2Yu@2+O}Mn@vKMrN*_e{@c4R5$u8{cK4;fWO*yt{+*;#lG~iT)^v6biw_`N%S$w
zLoGv#XSF4?4~>SodKE->D7(E0|AwRbf~9>I`|&yrJoZH^H^(LfRHXwx#|#KL5(w3s
z4UM!BJ<|{FNkZqZSEr|nx(%msSd4wwkB)`_$lY;uIR7mVa=PM$HaAcE0WUm4C&)uZ
zwii|<hJlTsr=@@*hhZxW!j%B!LFlfz#GxmblRV`c`_2a>3vqL{hjXm-+Kq1n1Oz-1
zqG;ZHdcacF8~4X|NMRt`{E5)R+}}%Em|hNZxThYCi3j(JcxmhZv;Zr)sp#<4IZ<c(
zv*_5*@uF6Q6cf$G$cKB~kqx}>Uj3q8ExC~PuCvwY?&$CuOkl47g(Bo)r`PRz(b%fO
zz}%Z>%T#j#d+j7Hh#BNnh<^039+D0_U#R?=hc+JRaQPBvlTTq62D4-S3utJwa8a3w
zG^;-?Ij7I5v!Z5?&x$mx^TK~R*<xVE%>R?aD4Z{G6T3amxYP(8I2453eSlJ=R`Qy-
z9{1Ng#A*BPt+t9h)UDGxjo{NdST6BYcZ<L5dtK&sYyZ73G7k*YaKGE7;JZIifLzM2
zZc~&LFD0H_*>w@hHqSUEQcx_^KVM~PuQz*!BsRxV9J)YG*&Z6G)EM<sE9nT((CQ*6
zC@yqYfvfP9wf;E$p(OTbg9>{QcoI`z7X!+uAe69>r53Qt$thZ137lDC^SX4orhB54
zZWQnro!uqzSg{b1K;A|;eHl&$&n@Q4->}3Vw`0RO!5Jd2(@VeTpbB;l=WW-<MwFPt
z4&?LxoSBo9NH&x8L#=~-p~K<aXo(L0JXYbj&y$%XTOJNgn_5~hf1zBgifKM_^+%{z
z*7Bd;AeJM3+85z$kco+yIU+~9smn0wOd}mQolua?7&V!xFh(m-F3L0>PPW?_X<IU4
zHM8qcQ~61~b8u*IK6`Z*TX6dAn)6+7qEgESlkTlyV0$V3c12%Y*&gn*_`kHuMu)N!
zkTG8H5rdK1UxkGy^Q9z7NlD)V_a!iqswq+jPft%zwM@@Px=%tzh8&O_v9a$Xeh`z8
zWL-&1N|Jz2czeG}n6Q#mE>sm%RgImz{vE4*tzZ0+_T7gM;-DBTI^WmZzn5vW+&W6g
z&7}lCX(68?HJ+9(&kbu}J>fjZm(uMeNq;(EJner+A1J!i(!Pi^Y_t7PLA#tNDNg6n
zusr{oqJaC)B+{|PcyS>OiGs@5_&Bs&9)wlQO#$`^-4YXqL)oN-TUj7b{*X_@16g=S
zq#INbUM(%kZ?&sTS(TK0GaTZwhuok)&PG6_=av#(lM^4%Utd}pGY_|;Il|8U#o*>o
z__8*nL2&(Y)U6H(9z2*MLO=1Tx6O<zNfab_fOYbLztPW5O2zZzTuDad^MwyjbTMyh
zZR?RMhexL3b$l*UP2WR-jM*P?9-D%LK<99dX6vm_P31+p$E*7bIH^_k-~@GjpMq$@
zn;7GInPZ^h^e?ILbeB*$ii%`h4xhgm#d!iGv<cBP50}u^c6Lw{a2(W?h{17|vP5qx
zt=0u7&<=Af%)B}gD-AhJ;f#DDI&|7g*Glei9aBt$)GCN~M$%wG;a{j;HMX?%SyC#v
zV(Eq`!I-aM2;AUNrZr?(ZSEcy4O9Lp^spYy;83GOPW&dm1a|j-#Y)=J-^iZt*pLK0
zJ*4y1f*MLo838`<1{wKP<(k^hpUl60{i4-wtW~~J?Eu6<9EXiw(Rqn#84LphLwiSu
znU;uw0Vx1zVulu{D5E68!^4B-OekUQZ*Sk>;b|~9O!$D>Kwe({!W@k6CE?=2<>w!N
zH$G{~3itwxHyCDLrH>oHLIU4G`^1o$lM@jgtz0A>9ud(yI9L=_#4H`76N1gOABa3;
z5PL1b<6ISVTNdY9!JSfz!!-^P+yW5rC%bb@#g>*|>-e&pCovBOf>yVWHnqAuelgN=
zr_0O5a%yBIaJmv%KAV`W6Q0#<dB*=$R%Q=n@1T=C+_Ayzs`ZCk+d}Q8fIn|;;f!q8
zdJ){f(<Jf<opC-v6uP(noUjcZdvda!q|_J+CsU;keA7&ep6mCp-s=L@3c>xNox|1c
zT_oJ5as^pq+dIAFWDY#$biZUzEtPhmqlpT3?vl(Y!&}G8$i`w(<Q>|i`4kG4)8jp=
zDj!{LP_VoX`8d8*;&wM<v=xy1sH}|mfTaXO0Z#)rFY$h4)_)Ssv9(KF5QzdV<+$JQ
zcIXS^H(#$Wt>4m8%Oz6N(-Gl)dNYH;eNzVjY8!}uLjVc;<9{1|azb%np<K~6XM;Us
zRNVwl@x;#>HctJk#0B1~-Z5@*j3Y^*;hzVds59nHbC1h+mIu4`68JbdKV-@0QG`qh
zmqz7<NMsQc5v8d&WM^isY;GD-6ckbbF?W{y4=Wa2Uh1fT#Rf+e48QBcdB2#L7}~eX
zB4GRWHze5BCF|(gCkx?7#GM=&8o^UJ6N&k=vg}^zc=GPrGge}E9{9v`3p~@KXp~5u
z6Y=tD1*px)tueO#zHd0WstydNM4nSCr6JFaW$BwHx97pNT`<RA>;8IuwCH?Px2;xp
zrtf~ciKCdW{R$p_{w16;gU3?+<Q@j)kz%S>%=Gh2^2EZ}`QbY)U#S(hBb8?7?+>uf
zAQm(+qQ<Zwfx~~2CZ|b7l1f&A=)Ob_qh6QAzyKFxx>$>Zg$2Wt&&_<D^I)nS8pjyk
za-lG_@(cHPW^h3iM*YY9Sl)qzHlWc@rJ^^!_8HTl|0iN?|JG!4P3&rr8L=<l+UC_X
zc`ghvGFkNY;}?_~h%sNN4I|)%F#pWFUDo~3KVg&zS7S6kjJMs@kLJ88@5S1%!KAXD
ziSR_Lx)qT9yNh3an~6s^b<?l92L0!ooxLwOR>pxp0MisIk`cz^gW~V+PsGlyas~y?
zV*Sx{;jz<^5jn8=ZoqW#UmD4^G%8E+e7b!dinNj!V!;6cUy76?A|t&;GA=nrE={J$
zn3?4zz$ZwvSSn?+<Ud^AOi0&&QSr*fnt9tF8uYpl!G?qa#r@d%!z6FEB6XH6yRS$F
z5hdlH%uG^V8`TSP6hy@EKJ;P9=?DOIs+G_Q2?>G2ff&pL1MZCIgoGuIA@xLp$QFU%
zN~x&C=cbzI>kkpcEYcDvK<oemRuf1>L!e55c~juF6|z~et)gP&h8l1h$OLnmD4H4@
zN#~JEDs&rmAxzU7&Eri|;GHLr;ItH}u})7<AwA<`V`AdsK<4)wOyg~OtiR4Hc3ZoJ
z7C9EQb?$noKTKDozT`PTnHQ-!1n2_-A|f##U$gSG@@r+QetmayqoT8HEr#{3st=lz
ziYHf}`;&uo4)c^)?YGuHp3E*ED%41gr)Oq*CnlPgSJ-B@0EiVP6)<D9V4Naln?oaO
zGknGa&#l3*5~?P>K~PILTt>sn@*nIVGn1#QnwGF+ci$IW#^F#U2%ocDu*6^Lkr>iQ
zujS&I_Q>^i<(LGaq5I^@dh@4InlPH`X>D;$VcHE1<PCq56Q1NW!Ka(0;z{q7poN6V
zSL@v&p*dz%H+{^^SEStB2?GOC<>lr7`uf7}W?qtsvW(kVn5nhZJ<o=U-$84LmXS&@
zBXz+T-*vO4;E;Ehej~W?W@_z+Zj@c?)%{TU4(+PWncDg*y<Fm_mGW4=4@t76G)w&s
z0I$JtF4~sItAvT+zKLW<_U$Q1BHY~U)$;>eU_S0pbqt6d5!tr|-+vuH)wU&%cVUl{
zH6BRH=w@}<xr_&>wY0S6*FQcy0L=AeS`4H;oeJn=zM7a&mX(!tc6aaj2NS1{0IgM^
zdXdrLT$S=H%v(ajVL<Kv2@WQsq!g2t8{Y&tpGc811}5fLbMwMvM*Mg0h$hkA2gA|$
zTFX&K$wR^-BQe1m0PhG?LVv*$?#c-UOAMSJ)H+%6YC+#<1KR7EY{7Zdv(n}@xFsnj
z_Hr>_MMW|2@FeZ*Dwk}SCcKIn3tcP}siQDSI5;`uz?$AwH8IImlmWpExTi#ifFX0@
zr#2lO9SA5W!g-45czFE<CC$`TO5hFDP8rF_gc-I<ErWDyr`6157tL~MGy@Iyvq8*?
zI`d!4nXv?y2ZC8bu(NqzGSI@H<Kj{;qHTSN1%-s@89L5vlMB0PRlWKgI6U`fW5UDJ
z9X(<j;0HIQ#l%J$hT7WNAPj_{Ge{M96xa<1KHt~>xi!?S-Fo<0`EMsEB>qfB4;4=y
zkuIBiRKTVLS-cL4eP0)aAud}MxNm?}3P^(tKm)wi)g6!HbzvJFwK^FUB`mYl!l#fm
z#ql%Eb?T^pwU}n`h~dVGV~=L`<<X1`x##0Q((h`BR_2^mF0hBKAdwPEU?Tv|kP)%5
zCRVlv=6~MbeIGBj4FVxa5Atl8{BW~RH=Ub<W5tqGT|iN$AuB%5{}gY@W-jd6g0@6Z
zOsnN0Fc(vMj(-goJG6edDj{+t9q6F(<-&IgtGkI;a~1?wC>?X2;u^6OPLP!K>;^g;
z2|Ij<yW0T$IGvrYy@hJSEI^U+qJaT!pdM#W_s8$>?t?4eC(*5=)L0z`jY&f*g=mhL
z5JKHon(1<4mU^`oy6~L*9QT##r=?zR;r^MLiP%SzCZDVA4Rd6YBb}n8D6XrECBZH_
zS7lny_gj|#5t*Kz9@G?UmJ8sojHhkEr(271njaVn09mOtJY8tj*Z<CDwSW%1=So+7
z)Rqh~jMw!THQT;QhU5gLPey3S$dO-}Y>~{!NJ&%W^DcP41F?ZNT~hH0hrz$UxY9Xj
z;H+#^^FzT?md5-ns;5V6TBSY=YY*^w$XYDxPO|>@@1G>H!h?{DR=}a0={Q70L=^5<
z!1)@DU;yy@zciLIqxHygGBe+TbyVe-l9Hl5zc2F~<nN#7V6ionMAOw~vE1CG$Zi4$
z5G8)`e-l;0(;b!cxs#^inL)w9ljj8N_DNmUaZLKY$-KV0bYSHt558n=#V`7S%RZdY
z<K>p+%p&``W8`7AYaelWd310MlVd)9e*3dI@_GMydq?Nl?9t-;X_i=sK~4x+t6Y5+
z1J_L*C2_2d2Qlqe6_wE?lSH@8%dKpj5p3^oezSbB)e(0no$dcb6j-^Ro${L5vNf-M
zf23+{gluN9RiVHDm%YL9*a$dI0VLi_mhaXZkUjEp*861kpt#wYtD=F0N6iG8BF~Ay
zTZ{QQ@*yjsichDsekIuNnl52@pC93Sjn5A)<dZ<wOiF6N1C_u=Ca<kM+;83gnG)n}
zo%0<^4BDks(E|h`GVTa35XB$ksRS&`>94`7Afuxys>z{2GD3d!{j70t><QEcKb}MT
zdw%%rwS=G?PJav7H|x8K?ZmK0T?J>h7bp>p81ALf8;$*5mtLRPi||w=^X5&zpDXd2
zG^9)9{4?9{9x<d3-pjsRR-_vps4C1CVq1U1ovW38=L6<zq$DIl>QbN$G)^XoYqZ6~
zBQNxDswiP_&(Zd0cAy_DB_@7daS}AJsi1jdgw0Zf`F>$G%<uRr(g8s!s_}DsplnXf
zdO@iJ4{N6qB8xrJFTv(HoEi#diBt)}hG;}CXVn&RQT+_10%dP+DX33O-?076ys~Vf
zPo%AyhIbuZ)M?L)yz%KbRo%B<3W1pH`@Vm#Jd$a2W#bJ?RtdKqwys&aT<=|=8D6P{
zJjc7{$GYv3A%9cj*P`L!Njy2R1|?%q_rFP#&&plNmseAcqb2?$Muo2Wfv$1wjJ_qY
zCFF+hD+E<)F*@WXUX^KqAT0%nzzt7G&?us_e+Q@YPTwIgT@Nf9kg3XZz%cQ^DO$1E
zq#SY1<0?$6b&ge)+Y#at;B@3nOc0nIe+cu(pa_qQ{0iz2kY(g5Qa?OAkm{=7bjT6Z
zm$B0=dS#!f*Bh@yi`L|o({08u$*leQ;?AjVprmfr4*RiQu5U}oXW)Yw5B)6}%Eshk
zTK?37Gc-Z%_)o65E#M<d#l)oZLY-JHHQKX)g$yKN-2hAm`9<6Od;;j5n@afT!mzLc
z$cIbiW+G1En%C&tKPBEjtr8J5jt8bBH#M}Gm$I(+_?7B*yap~PFEm~Rg=}?=ICGUj
z?}094KAn*UedV}gXgFJJ-got#9ZnjHQg&VC))g$oKA{4svKnuWftkLvA$i3@H79M*
zcl$>n-y&pi(y*3}L_sH!+cD(k#{OWwM%Ky$h|3X>@j*VG4vgAR%6$h@hl(F!)%%Wd
z0-%2_S!nGR+HLfq<h#5@O0|Cbr&d-RFGfR`e!j+Geb%L_{kU0@-N{ANvdXoX?z>ow
zGSmT|4swXKBfK#_R>-B}PZR+$u{Q_^cwndN0^$>ptxHSftW*QR6#(67o`Y!4rrd-*
z`V;aEXMGri1<7jyu9^P}wkBDD;U}v}mr=RUn4<=^y;B4CTEz}b$8o8pr;;*}^&Lbl
zxKsCCmAXY$szwToo(1EDJT_cUe1Pi~BbLxCx@lEBh=SnUQ>6RqO=UXP++7TGzhPfD
zT3ZEr^*;lPQ*`KHX9o=uW;W93qaGl{ZGtE1xB&DSN_FlMi1D+45#Qb272(}qRetmK
zTPjY6hpLeDIp_^&s%FArSIfS7FfpVgWa9Z-)3E8cP|M3M#aD`{{^neHIk9~Ff;z6d
z4Nwa*AWI)hXP1!~LdIhY((Uk7yF43@2B2QmJ+bw(BXLYLl7o#(kFrBmMs;m%Eu*{Z
z8-O;?R8oZjRX|#)k&@I4p%({PowsT+T&&m7y#^L~qJX9GMMKNfs5wHhl>Lt8Xgy+0
zTo8U9k6uregm7>q^3ayBVlbkkh!}LR*%#^F-J|V7k9necpfqIm%6g(#1L6A0E-k?r
zDWH#L#<A`dCL)Xr+hDU&3^=th(3yV`x~t0St%<1N7ZYuDt95_5Yq}L;J03O}4s4U)
zn=w@v7329n_fGUHfi0_cyq2neBk?(tw+^y0vu-LkLs3y3LqqqM*;Ev)G&~Zl%4DBz
z?@I88D+LDQ5)$g@H<<eumvVv#W_ncw*v>V9DsmWeX?@ClbaeDD^77#u(x(1EOS)fW
z1rVbuGcsoL8AbrmT!sL6;7dNuOI4s1DM1D{t`u<M3l_=12~~NpG$#_!3Ucn4!s6#|
zF||ny_Tgl5APksRLq1I1_s7S<F=pzn;50?YCF9}IL^RYZL=kQPydH^#21a~md?QHC
zrUI7}|Nc#Nbp7|2XmU;@`zWziUZfn$X59>zz(fava6gQz)7$iK2#s1L{z?iGr!KFl
zIgqbJqgHQ+09fNn)5!oP{ip8dr)z#~$ZnP|mM<2}n}B$?eEhVr-Km_uvMs|m^{}%o
zeNX}Y1sq|zqSN7A%<d0PROD+w#(7{70+@>di(XJ-$MSn5lOn%B9avahdy^?Ap!k{>
ze*e0*pb4*Ojw}3|ocP!-3?>Itvm*_D(ksRbTU*cSBSf~8#<uPI3eG6|0;>gQ`jpaI
zn#5t&x4zJrN<4O=H0li;WxR*4an9g)7Kln+#&P@v3*b1oxWc2Ny1?{I*(<i3-tUJT
z1#EvR4hM+<lgKbQWXo}!9jD6Mde1UfaVn5D%TAE}uSSl|L^vCCzwP?}t=IOizX8{Y
zi<^(53~HwKjdYt!kZZmHt*6AG9Q*U<jrgDOD%m1s79j75Fnk3E_l}TI*44FfDcvqR
zmfMjYpoEa|v!csROdr`r)wZp-{S!s~kv(N8DTJe=qmXI&EP3(3Nx@5pcO^FF=Cq(#
zlP}Z+Ab|~2d1~q>P*;ir1$J+x?<x|l7E&1SUy=-*`E}*~8B-QuK_Fv|8lnIN02kqD
z$@?!tJlYyoYD|h>Utq;eki;}GzWeX;F)>MJa}=qivx|N#fnWp{TUNC~!6Zaa8blPZ
z&L9^0gO|}v!#;@sepIEc%wGKkHOA8Sexc$H`L8lPE8BQ><}B4!bkHNfPuZE6m<)`~
zaP$z7@rN*Ey)zW2p6!&iu!DBn9rHY#5ou_9Zl*FMptHE1W$DRQ<T{w`Y;s|IuGIQR
z1=~Izs-JC>?Hj%O%%)yt+I4eERH*aJ3$hQ~;24Jg=x%;6!R-8U+U!z$$j67bdm>Na
z&}5RXQG@Gj<YUpzN*{_lmve-*Jr<E0Pi=+;eGg0ig^(l%<qiEM`SKw{XHL~`?;O`O
z3rPo^e-y5Ztn?<{drRF)BeUZmA2@^hKHf{*he#8bYAKvEH7Epgc5?EG)BpyL?crZ{
zus=`$3SF_~iGyV#iPM5Q_kI$7I6=jsD9(c6WxXJ#K_-4exi6*kp4tBxNZ9Iu^_pj`
z)T$zP7)BwuzsVofe>v+lRQ;d(jkDZ3j!k-prW=$43-p3YNVraKO4-<|rvLsAw7d8!
z2GVs>a&ljw$SLqP`d~4Guowf)T)iD(;mq^wbIZw(z;OR^+ywN<Ozk*6fP^p@v6ow>
z<MDW^_ke435pSr;u;tDWHyZE`FH|O!$#^!(>gs9`u6@hmfm+ix^}Ou1S`y!?Dykut
zlH4k?A(!keokUw6KD#k|_jMkD#E<{byav|N6F_L^<R-5De2h6>DoUKadsw8s-3(W*
z#l}p1>qMGLx9ppsZCy|nmXOd7svEf0v8?``$%2?9x^Tc-{CHZZwehN1b`JzvTxiDc
ztpY{^vAW~Jo91m-m9FIOZc*hDGpFXpz7A#`F1^#YqF+!sJ|M&>6TRgeND3vl*WIpj
zHR{&cbfur<^@Z*$aB@~Oiw-?*&nqMrDQp%q(#0wppJ!=mk!?!R5CS^Z!HQu%*w%*Q
z;#AR40*C6{Q~f~>$rv23s7C$_2)>?zD`N$3#URJw3wy37vu#085^VQ=X7NTN0L{3%
zXMXXWm7}P)6-0&m>C4}6oZpc_PUpl8G9Oa9XIeBKo43RONYBTYJTfu@DH0VC$#&@M
z?EIUYOyAO&XI#9k6w9j}b0WYA*S#EBQ`MNQ)wE{0U9-cC0(2!U6745IQHOwr*3;23
z{-yYC^Y)(W^uaBuP-b~6%AjxHAp!BbVy7D*6SaBP(-!9xF@o;xe^S^#eJZf{G2rCv
zoF<<qCM&yrva0w$kwcy_-~*iQ4{JDFl=qRZfZUzQ;XsvJ!!U7`+R@kHN850Z<n2bN
zCb+disvZnePin1g1yOg<0&pkhSu0rrR!_Bx0!|OC<L%Z_0*+Sj$qhAhP-bWw5qa+b
zWEofHI8l<JA+)}}E(EA}0Ak?h<>i%gn8QVPt6BFWh<-ht5ijT;W@Y*x{2gONfqHLm
zZS?gx`hX{o;biEEx??8+)r@yYWN8*%sR5g<ij|H|+KP)S7FCdlgk<~#+&ZyU!LNk~
zF~kb&Tu$-F@q6e5{~D@JefIAh#@s_bq&UeRR~Fx@=P*nE1=63>Hh4lPMj%<!hWrRg
zqRZz@(@9EAy(ocyruNFBd77iAD$(1$lB9jV*yTjz;S7U!X7cRNIc%;iDR#Y&BLIPL
z<>mP~->gzyv4KY?l0EzL@y>q9dD{Z;e}8~ls-*c27gR=-HEQHG4%Vb=d}RDNTHAgZ
z?9O^}1SCqy4`x9)x@8|CmAMws|IolC<1WM(rvGeTE4Cr>+e;$_1e3t`B{7BvS5403
zZ=E<)>;llk$fp9kMjE^sOd};ao}{R<@t=DEmjIy+u7DzMc2Tp^uq*z&Ek?BlLNXcg
ze^EyU-@y)y!j`qSsVxp7TnW)YnlJu*xV=q*B+cxQQ(fj|1rHd4&8srl#W}77o@kIf
z{+RC1=dDx?42^@2CRn<1kvp{{F!TBsy9!k3v>Mfzp6-u#FO4wV8V1SJY)R|;{4BYJ
z=()M*wQ9=3HqKZ|dY{Xw;Vo1Vw5Suo34ouk8tWA8Vaey0PyuT>gv!B1`H!afsOap-
zJGt?)pNv4I#(3$m8O7QNMN&Wj3J9}cMMLnjfgLCg&a9y@xV7C=n$50pVACg<O&722
z?ezhar*F~mx}ru68{x{Tqn6LvoKLge!(oFlSCWRHxj&G?53|hFk%)ss0L$+5XQtoS
zubk%ol`q9%?>mU2l%)2y`zo%T6uv3-a&wp0CTn!991ThBTP@z<O9y*;LZPFx{f&o!
zz5-_TN)vaOS~@27A!eVovIql@wVtukYGf_DHgk1Dn)5Zrm)u$c<krweK_@Gr7kW<&
zRsYC0g9%rLCWwkG<fH$SP&n5^xL0TU!WxMme~4GVK{K#?{imMWoJ*c!+-#81x!Sp6
z1I!WDto!*Q9|vgJS1^f{Ix2q@sRK&qIW7(7ND!?Jx=;FnA*#j`+b}gZJzXL-wel=F
zr|ccU$B__G_|HjIbfyw5?vJ4H4-UvmfG;Am!N0dI38W+$JuehmslgQ^6dOf~aj%L;
zIpDpz;T&o*44Ij?dIttJ&Nln;`4anpB_oh!v;)nBijG?__pv!{h1^17lGC9(;gx1>
zAK3kBbrgPZ8C<0txv&&0^k-)3A2>Ku?F!bKHeiMf;@<hv<nK(+`fsjtuN~}ks(2Wk
zUZ$|y*ejjPnOHT(r%f}Obm@Y|72vTbE-h_%veE{k-#2~JL_`0Dc8SKtL8KO$5X1*=
zRqT|_7nmJDIlOaREc;dxA==cN^2N8Y)D1F=pYepcN`#QK-^h<OVOyyhyu3_hQikY}
z&u#V3)4nu4+JnZrTtAw<<m_$q;FE%;LHo_4p{oLoZZ<GOCM+>=V6`Lf<z9oa&vI&c
z&nt^*Lh#tMs$vDo(gPNPH)h%eP^lxnKGyjo?m^!+p%8u8yf}Q76hFwi;JpPB$EU}8
zPFGcIKSNypb(n_!^irt|QZhq+m+PmY&Hk7d5f|uIh4e&8kd-u^QM<c4xTY4sUE7;=
zB<lLm&V>(ibD!-@k4BX_I-TuC%J7`E(BRjr5Bbx=qpW1V`#&u}9}V32o^+OHU(c`M
z9EWtjv0#1%oD+yVz2cXf5oM{pd7dVai6X*5Lqlg~W?J8r(xPg#PjK|3YafMVYB8`R
z7{#{W2`O4)_lLj0!A4Z5u-?da+dGD2C0)j9GUmP@6ur7O)AQnZDTm01GTV+=-A&5A
z{)2KX(l!J=4xZYFD^l6g1yz3vSc3A7-q4MI1$i^Sn2e0k^^rkF&wS+%q3xlh-Gw?9
zLBY04Q0xAptAtK3HJjg2KWMV{64eh$;9bJsnU<wN&B@N5o5%dX&FH*j1o$4Pi$)v!
zYqY~@!Lx-&y>%O)0_d0@k81KO+254pO&UBfY<WlUlY+^g0_r_~BRl|pKC7qH=_47V
zuJ!1QbGk91c>;|K1<!`e3mOT&`*igo?A6VEY?b})9PGvhPDF$Xaa2ZvtVnioB1rzV
z8XR8W127+?;G@-KKGuI~Rfp9yKLXQor0~IyOVRxFOB*>Eh66JHRvLPec9wgStg`Jl
zPHzhE8&wgqzi37y<<3#x?2U%xx-Hhls<hkkYi{c)lkE}6G@c5$m@oZeXZ~uVdSqPG
zvA{udkHPPnEIB^!c(<7RQf2ECWp<KQ*%u7<f}=vb0?QA2D-`JFz6nk^szpYs=-hOo
zmv}p!>sddx82*oatyi|<1lj4gJjH<|?ivDGv*wAcK{KH*Utj>{fue3KRQf;a=i-XB
zn`5rGxA(=k-z4#>SJBwj!!aW;a4NdFnO>@?=ciNZ57V1#S+=|})9kz|Ad->x0}6Cd
z8H&j)3A?*DS1to738>)f9S*4x+6f4f9V#oY9^B+ynxDoiDcmjoQBmjAK19QxZZ^s{
z_ZQ4dK4g1JWWjtQ>8L)W8oznr=^h%K%faCyFKc|R>q-rF#QDXV1u{V8&@Cy3=Lg2B
z;4=@$an9c_7r_G(za9KvwPH0knf*9<!VIwZ0hlnvfJFh1Z)Xx-y{*PdmLX3@NMq`2
za2~cY@nvN*lyUDASQ;1vKXVkLRf~h9v}Vc;k+>b7x_cw;SX=?))0gCU)iymH15ATg
z4i7CTkSqcl0$B)U4mu})_v3Tvv?(lW86H;3TpX?pp|R96?)w#(^C|_btXNBKV`0jv
z^^On>xiV*AI69hiMLp;xKU`6JBs1i=aEmJQE`(hj4f0PlNn{0MS%dJ-tugkQk$p&_
zL0g&5b@|vh;FO(Zo<Lx6JnHYSDL=ia|9E>kRBle{SoWd7GU%e4`@RDF`tQUJ$<WDk
zA8*d;WRzQOODPCF9?F`eb49>2rJ|w&)cwp-_Gets3-k}r_ZG_9|D)?E7#T~IZ!L&I
z{Cs@k76^d{rrEr?Ah6*DK+2#@P)pLz%5LYwsrG?5O?LX&LqD%1D5bW7&(ljvHvQJA
zV0Al)IOaS9Nu@qcSljnbBn9JP+<-1LN(P3QD`3SG1fDz~X|=i4jWm{Um%VDb=ci!z
z|I_fsXQ3#3%UbW+kV8OBdbSmWR^qZb#Dt+V#l|aP0(n2Q0PwE$@qw#t=-*depa%+`
z9=|ja=r<?Vy3!Nx!D9H2UiZXhPKS4qFA<*yJVW>muB(*_+aXtu%F)3HlmH%#-k`6(
z<`6Au>#}GG-w5QEfIFcd2sT74%Dh>t?;I~T0KpISo+*{Zj19k{*v7yh=%oikPrqdq
zs87fE0EX_1MmTh`N|L!ez9lAm9PN5$4WI2{8wI=FA4lL4#Xz{*`ANrdjc~t@o1590
zpED&PYwl^hw=5v%$d=;n*HxvX<EoSlldQX=k5*3q$*J{9hPcHy$7bF;yhr!yw~p7{
zCF?U7w(GQ#NJDXJn|_UQRTbLK|M!ps7dH3XpSl*Etpa^zt2b@PJDdt5k1Uc92#?w%
z(IBg{V`;yNBEx=g6#}H?u9&73WHRZaCVv70D-t*oqoYM2kb14X=rX!>_}Yq_cZAwn
zD(u7UIik+!eC_pZU!Un2&-r4X-IDSv<6T@@Ya8&gi$S|y5VNZ~_oUf!QhdCG`2l-o
z){mSy`-7P<1Pt=G?>QQGyWUo_2T&JnD@1K#6=hvWzn2}>SXy^>zGcJmJGWF0*8&#y
z4ui`qg?U7f6<lA{+C;TKHGb|7_gC6<S*0lUMOIhk%NJLngi9TnbkVsC8iw)M#>|qZ
zHjeETSy3&sRjGh)otd!$AZkQqiLope&~=9!=`5fk?~eJF<fxo()O^6NQ*E0lDJiu}
zWDmVKUn?s6c$=Ujxil9osq2h|Bua%)H;zOB57&~|Ykbr#6{1O<6H)V939Uw7(~7|*
zMaC;_et2tpdsYg6s6kEGK@hHKj=iPpp&QM5JD7^^VSm1Uc;#-I)G8arLLr0aMMPzz
z@u$POKhSB3gF${M+L}Bgh~>lPi;}z|3-<czXT@x~Ex-{-$;ia#eYGRgJzoQgCO^ip
zD*y}BL1CcYLeK<UAY}X+@Z)3*icD@myAQ0wK;IEyN#FcHY?9CWyst&O_3nkC=HbB~
zxkjE`v>Ff@CD-EaXm2-FTmo6aC@^qn;vKBY+YzQoW|1pGwzaVQlXcel_8oEkHtLSg
z&D(1qZ|@f_z3K1kdW$UO0`L<6H`$%ro1@hhUEHtwAGc2x^<ze)yPaakS4FkbBy8zX
zH&*AGkLByN_JoCT+2Uth6maB+C+Xn@RO2nhWY1w*F1`%9>Fnwfx6nJ_8|CFc#aE)n
z0`%k<-y)l0o+5<cDEi6K5H~sIcT;ZeTh%88`dfB0^0&7T&eQ*@Qd4XKlcD!Frm~MM
zy$(M;(Q>A(KGtCHYIAiYmT9wjv}q_RcB<%fo%A!bh}~z)BuS{w=(829JFN1rLrQO*
zP}#di&_l?vD;3^MhSYI#pQPAGvqWct#t^{Sf!UAYDJgy>C00rOjqVwVWE#a45Mwq`
z?PGmd8bkA7%FgWMp(zYQxA{613>6kYc4O$8X{6M}w)j@7rZ<~M{eakMTE}jS-jrIK
z!*f-Z9X1{u&exm{vM-Ab-#9M2v4`?ry?=UgoT*ICZg*Scxg{S6GoIF2Z>{@jRM>Cu
zyorvzupB)~O(xV(o!uy(8eG8QlZEA4OOas6{n^A)pd=)uFnJ-F$z7TyQ^{iV(D?l9
z45T%dkLF8*)JxATnoINH{ZAf_HNj!Qf9ud7M2eG^iEt}>g_ASd1S$<D^k4zn*l5)E
z<h#@}TbSTIvGyix_c*<Ln1Ij$1=uA(ssn0T5-{wb6JiW_&rt$q&u$^sPahC?;4y)(
zr_1NPK|+c+1FDQYf0OQ+diw%JJ`*?weNqYvNxgDQ$OvKtXm1~T0wlQj0ZZk#>Fobc
zSkKZRwoXN|gNANBef?lxXvXPmPtx#i@RrI2Y7Gt+!E+05Z8x)WawL0zVl2}Z4FMq!
z+k>5q%;)dlzowf#ot-;T8GsHw00P1(GoTk^0FuI!^K%k5HtZ~UDlPVrfC6!Garrv{
z5T>W6=TG9je^0pyl)O_IzSqag44a`LA>@2~+Q+!NbL3+=p--NQDq@3xh~&Nkz0u;!
zpq1YsC5;goXb5D#eEGe^r=|OTq=B4O@Y+xe9Ds_U;A?aDt*UtcKI2=`VLq6ZqcIKJ
zr+fKb9<#VqS+#{epBU=?VK34&otot2Z1o`Yfz~oLwHS1|g_d(HSmv_Cfq?HiS)y}Z
z_cMpdV0a58bNVqwNMwcp0!GHBgJ_}qPVTimT(>+&`K+q1O-}{aesFWL`D#pnU}AQ;
z-SsX>jXeX+-GZ*fb5ZqOQ~cT48C~Y*;j0L^#<z}Pg3o+yF7wPER=4S0P}ubz8X)Km
zmywl^Ajtta%gW(u-%Ez`=+8ZDqaz@iFi~@P9jH7H1HK?4lWZfqa#yL8y*pBngoL&*
z8-HDG$h@;m;Y4&qJTHqqlX);Rqsn);LjtxmkfCe=UjhoQyTN(o_t+mM>RA0{?F{Eu
zq7@aXRj<sTGx+QN)lc9H{3@s*Nsu*t^R&kE{2=bNmEAhipk8|GPhXS7NK1TGaeM1r
zMZZ3?DW5)VmO{1+6oy1i3-MXgrD7I6YEU0}5<w0U0@`jYijtUL81uF2Q+!J?J6_Ry
zfZrqNyc{i`aucQ)9n8R3C(`n~Nz<RUwqy)_fa3#tAz5|x_+Hg~7Ndc`&1eKXu>eoZ
z*ad>=92Fb^C#PD{X#e(NlX1|ad~tx@qEX&EcQ(-F%Q~4&T))%`y6(d|_08rN-YRT<
zm_vX6{$F1dO_r@no+6O6GTN+t1$n7lo+3cN#mD~&gYL=Ui`^P+9qB}lZ?dXv7s^U`
zisU6ECSCSg2|)5emz<&d^l~`Q4-bcewFxf5m}OXvNu-?eb)a4?<-dTXcHbUhK+a3O
zT-X|}Stv+%=4z}M5L(k6%ZgiRAh3Zp{=#i)l|nr9QyDHPeKVorrjFgOb5)z9J5;#O
zrMv$gFHObu_*LnG1$b0k<?(!5!@cVD!}_^F?i(7*oQtEUM{tE(T@8yzLjjgQJR+w<
zU8H`D<gKL+bSUzV!3h_24J@m<zZVxQ05%B%iXi-tADvfyW`Wpf?5D_w3aQ%u1O!Lc
zP&jYX-+q4ZpcJbjsI=rt97cm@eXwQ>eOS{tjS;<W=3NtKQvxZmZYRtBhtmNF6!y@>
zYn}(2TMoc&YX^|=xI3XySz2lBC-7KRD5j`xgDi^N;+;NjsFM-zDv={|t|NC7^M1c_
zTz1#;k-5;?s%!C9%=u{u?bEd=JsR4{#wxT#_jQ35{>o&5N<?HOmM1)clV{7bn=d|%
zvY$+m*6mtYG4gTPU`ve|$IrCHIGgDYqckbeL#Pj~XXIUEFnw%@+5~9^4yo)Gn(-xn
ze;|~l6b(wwyxfeZP?+X<mDFub076M>#Lt+NIRL%V-y+$?<NwL}X{53%u$>1co&I*M
zLRzg&xj*@PNf-`hvroSk3R9Y%AG2=BdoKfKAI8__Di>rOYim#Hzc(~6h{bd=Q%I)I
zo>MFww$4&tv@MoSNT3;J#Drhqa;#F9mXHV_z1joI#2Lg3b~7)_8H857#-f{>8`Jc<
zx|lb<@8>cUse>VE``O&?54GC2^~ANhcmXg4X*Fdt)xKAFOEpc9%kYDIr1Xz^oZuXX
zI0UY8eI4*WV@3%qsQAsP-xSL-6?m?;Nt!~RU78ti@LK}nXexLtLswgXO`J*v<080*
zbaKt`sbR#ZYpenG;f{IXb)YCarS5grYF5>Uv1&^6mKw5}?$sA#9x%yRl8T=GMcjXT
zj-z;g7#@~~P<4sFWK-|C(`k0VVX+`-rPq46OEeWZb2}S}d+71=3nA|*D@dOu3huQw
zdN$VwEH(1SRpX+og*%1MzXFiQSo6DM#AW|yt#)6hQ~3w7AKWdq;SARsC!5LmBDXb0
z-^4^kZZ)pU!MuzBfL@&5AGg3V8unolxE!29${O<4w+_TQN3Mc)C*!fWD{h~5qyce{
z{QLKm1%52sOcWeR(+BGWS{~z&IVaS8-_U<7=*qflsq;Bn(!mwXXVfOgyWR~2u)m(F
zk-G8&fwC1Jv=s%vYa$SqRnq^GPVY;Qg%V7)I>U%<rj;k@%xa+^2})hzFm?8&qT(Go
z$Tu%G13~E_H5Kn5ppMK_-1B)|hKZU{d}@Qz<p#!dDE`6X%^V*e_YVa|%PD;Fd`x!U
z@_D3;jB>;J>_9RGcD%#!5?$82XTUR8Foo>nEuKfOBeSE_*Vq@w_+bcjU->+iw2`C;
zNE~7xPp%isoSgHg3Jp$~|1E<7$UT=6mkqBhzp}+kDsV$IZz{V6gwo1|PB>6HIyzg!
zDYBsI+@HMiC8nV81CCMF+ewbfF2AN1RO{`ijvLQIE{J)ksQf|G@!ViCz?-0~Z_f+^
zf1C%>+^&8n;3t^)>oijtyHM@}o5ZvC>?rqwb<QvPqY?~h4l|TEnD^|$I5cVqi1DM5
zqsg6}K*{nf1Tkm>1#b_)>|Pr9z-LY~N8h>zN2R#m`QzxghFx6P0Xp~je)$>nnfmQD
zEpg9PZ$waOy-~p_z4}hT-v7!7^}--CpEU&WUKkN{=o^C0Ec3<uODLUk0|X>&+R{Ke
zJ${$n@J;ur$edDoIt`8yac7r4LloAbF<}DR*_8Qn%MwxKCL3WQ<Vu1-kkY&W??l+9
zc<htdAe~)XU;n^n9!nbHU+vGNV@5Nzi<p%DU48y+pem2dd~pjffIx!Y)U}KJtzZ)L
zG{jxtVviSUH7KKp>g(xUc;A7T()4hDeO$7oRfIS02yjA>+D?j1OkjCUnpSB)fjP9M
zY2<cljZS5x0eBdD+XHb57Aa|>M?hte)dF&rNglsoIu2u$dgmZIF=NEh{rM3YeWd%|
z1#P=)U#)Z9OPQNt*(#5W$M(mQtBv}mCK(<%v3~-N*&cRS6!6w|iYCuopj%FEW#`XT
z2`qN?^W1i>?SQpLiFrr;o_0;qH_FtEcQ&e>@zxj=vdNL&t4mETEFMq4U&o#52TV*T
z-d!J~nRsM?$*g+cCLXu>pL;c|n&3?It7L&O85cHaya1G~7Q7Wo8)!d$al`@oY!z*1
zAE0noko%r+6I+!fo6`IOQ34`8HgVFHwIz`dZR@l{Fj(o7ha18%-t7(bLSO1jVw!l^
z2Kjdo`}>`X^CS*GKbZ`6z(z_Dtf(ErO@Yl!fzZLw^tp$8H6F0yMt0K4D=Xj0Ws?U0
z(P?q^<>FwrA_$KiHA}wNtfc96YcL-Bo@VhS<@>oJlxsVi97Jde`1|K4**In&u&j&*
z<As5)yLY%mL-VozyEMO9FeUBSw_P#3n!9&PG}Lg^`Kjf5B`x*yQ7}<Ta^HX@LegP?
z1XHMhVU`ST$DxEE_52N!jYf@BhyLq%F19D$5wE|$s?ngwW4kqLNB|Y2510u5prA-^
z7NK9(Ly4TA{t{zo&eN^+_WgosYTw2C4LJz3kO3ui75Y8^OT<9_3^?o;9-M$cJLin{
zWrfXd>D9imtp)}lU(e{-x)$neFNdgJWUEjqz<CL5!pJ$vBISMm9*|Fm$5PWj#3UpX
zY<CqZ7hJB9?4x61c7n9TKQM3|z@0`%3w1BmJ3|W@+8jvMs4PqVaH82P`XGUoNIDhh
zfr8^zfCS!%m0s2ywnG@s&;Uv^sfuRL7tJTsp;g6YRVsVaRR(oVRh=PtwE0~L&GM7G
z7s9dn)gO}sN=z=|3NIK6(GClibo;79joT7aDKvFqDgRCY;e$32L{ILc9cjCZ1P<=`
zX&MF0&j3>fXpt-MDdV|buq7W);dN0)_l2g{p3sSvI54hvupmet$p!{0u&HjRrZb_z
zAGxCe(Z%ZYFBN1+@(O5SadEwCT~=V~REb2I#E?OhMEc3GabO{RMQLU@h2GF~U$Xxr
zZ`{Q4Pq6@@7|Za#@jbT(<?55;Gy4soc0;u=INr~eux;VT({NLR>(*(;Eq^qC2D$7>
z3;$2juv!%joaTo!BzXk|=okBRbL<{|23b6j@4(P{tQjnCpdacyALbt}H|z(#mb?JH
zw$I<*PVsoX5~ZSDwvVI?4-bE^P2(B}b`j7GAfTdFCnTo@*11=cr<eZ8&JD2Xr&qxc
zvG1CY!1!G>S{e15w4TjgGZFKW7*%NfgY9An<txFrK_73NJ;?i~vzV;n3DJ-(jcLK6
z3PO2VS=bh4^gG=F(Y)4%@p#6}x<b_W4KOk1l~y%0)NLwxj|-#F04QCy5C#&pW|<-O
zHN({N@20zhEx$y6mBDMR%f23r01(gZWr~*gAFW=imcv#c69hfJ?1<2;Am9LNJQlMl
z+7~AviL5oCk0l=u)b0Q^p7~;Z)vU{#1igcqGVn2$erWAh$RxW;vF2)$<I)yba+M~l
z?SR+%?Po=J<Z+F;ZM#SQG!c2UM8|PGwTL|~Y*pWf=RX~9;l?e4qxz9TDf@JE;dnS(
zJ*DjK+183}xyKbs!084<DweU$XfxqnO9zA?Bpmv$d5YnnTZaNouM8Zr4y^H~@i&QY
zfg1x5&K<}*>O-a&=Y}2j`X8U`{@v2{qrMu1%cy{|$7ez|zEE-;V@#yV^(buS@srjK
zWm2*2N*tnbK?S`qFrc9fdc=g_vw?vnyo~m=dx-X=4ELFh-;-7)Q+{EZ3U}<az~h_=
zI9IP<JHIa|EdMzdzf>KTXG2~y7&uc^bRR<^tU0Q>Jqx^~h0pN$&hD|@?=9e=fXBpV
zL|xUGqs0cv3I?!}q#^wNFlPYq%ewJk4)z;L;>N(b<O0E!ZF@Ln8^8b?lPWr!+a4DM
zQQM`CG!(w~lSkLzGoya*45aaGEEX14I4!E~?=Np&sron9je&dCt-QQcA#AWvs{Os8
z#+ZhHAk`pMg@CXn3(FUf{1ytjGw2`=t^hZ-&Ym6&EUZaN9!<kNG=;~5Z0ASQ1I~rw
zU=p+|M|SSOqWV}<S}DBOYx(v>Gl}?ggQ+Y8SA)IZz6}>?+QzTN?pJ?h6dY?tCNi-s
z|69q>p@<IH7WK2EhGWDRT`wPiZ2$+RJyT^CV;92A9PD!m|4Mg{;&*FBH$O=<Lc7cS
zt5x~pCc3CRDp(zEink8!2RX;TE86jvjS)l{qTc-e^aflp7C6yKf%k~`4d^C6bbWny
zFjplB<qfR;-hk)~^JyTSwckYj^agN@KH!sLw|4KYkLRii)SrNw0|}^{p<W5d6->5+
zuNTagLoQ8;=;>vEj34F`2)s%aoS#1{Qj6v(A_Alj9VDuXMMEGO=mKLsc{PbF`8Oyi
zRk5gVzX%EWfVacr<?oOMBK=-{iL9{;xLgWQJ^H{QZAo4)0;?1_!MENt&W7!xEk=kL
zDv9V$Y+Y-jm%}6|mJL9zb=VKe`<lI)9~S`%|9y+fS)cdVn7r;#VvKih1O>wRRue54
zB0jfJ48mAjP$AKadjFw`eF|+bo>dZ9*hG*0c}&TA>L`6y$WxrW(_K7MF43lYxgF&?
z2kZ9xQ-;9X@i!20?`fAC_$w-d#`L10!4U%6#|HZDIoOf?{i4GLGczwvsmqF&`)lQz
zLUy5LJ+*e8zDKxQm9Mdd{Q@`Y%4|pR`WYG=c;>0L4hDlPa~4lMdsI#pao81Q|0+SY
zhDG|`dHebM=~t(E0;^S_nD6~eJB!fW*W=y&;d#8%QnVuQcggMbNTZ;6*U{5~C;~Wg
zlrLEn(g9H?m|OB2Txyxq>6)p6KFEonV!7<8Q#_uWgZr>^`tlX2sf^YE@YMrOQd!_T
zcj?|UU8p7`A%RF8g%~A~g){B6SZ^<t!l$KP2(%$yK!Z?fI!O)0h&?4OPt?x5+Z!8i
zK?hIG-@)7SZM7Q9q+|;q#aQroel+<UZ@LQ-xJ&Fs(ED?*3Nk{FS5g7GVXSTe%<Bd|
zJKZ}>XlS9hRZ(<cg@hZApRV_)RhxeR?r}tbSo<1c+P{A7blTCz<Ia;ybXvOG<yO2*
znUk6sK2?0B6PcUGvKDs<1^A&~WEFn1UA|dnXx4YXeObTh<2D}kp0k}_WHtvO9W1Tb
zYe??xngbzsa8inNSq)VU-ShysYj4Mfy?S9Id3aheLR+x=gFu{a_dx>Ih8Q1iVNg*~
zo>Rwx@xqVQU67~e$+Aqfm@hXc0j2eeNzadWGeFQ?X3&cctU89k{m81UfAlMRItDVM
zmn;~Ng-f|T<ufU-;o&7WOVq0ZfH9;p(mNvGVD$T45WXZItC<RU+4Zm9?=Pdgvrw%v
zeL-1)+ac~tIS_G~u=jt9$IZ=ccYnYA1p&AqZBAAZ6tuxA+W+ybek%x6LFp4B-~MMS
z@<SrAmi$eV4*TQQ+=B7MPYZVqc{$=Yt2%qr<NG?lPtI-Tr);^u$!Y$WIPW;$Rrqh`
z$EWWtNx-Ax|810zN#xLlFBr_&=cIk}n-N5wjO5ShDv>)%ni#{nOeGRo`CHOJMnQ2n
zewoO;)szUJZjgKn{y(O^0;;OD>-rEPD2+;kNJ<JKAgOdCC@BpBDlOe2b?A^10SN`A
zrMp2uMNqm+x;xLm&VAqae*YMHhvRzW?EUO#KWnYI=9=^K6RllR(5rF2*UM5;H)QDf
z!<sr|@_W#t7f360k#+yFePw8#Ao`sOhSf-C=ut_G{~Ry9z85z9KZ<f}akCOq4w%Fp
z3aVZg*!p;-*(<xP{4iRx2|`a_uUm9xCko=hq;6aT&(X~hZkMFFU!OTmj($&#jfIaT
z_{S>7HA-bAq?7uHIcMpmfj{O9%)OAHPciG^;*3e_(!Z_-%2{J5<awA$I`ct%O{t~R
zA@$D&l2Zw@^IV-GTiTlQ&n8nW9yrv{!&u#fLy5_Kn9752Xnve?fAiBFFIir##&U00
z8=K;Qk3L$DpWLq7_D+~S-n*UE8_fzC;P-^FO8_}k@#gGydsL%I8p@>>ozE%G5(EY{
zZFY%{1f}i#>r$L67f%Q%P6*r92Bv&j$mq@x4HAzIg>B^qH~J5Y*Wd|L6P-ra<x+=z
zI+`B&dcuh2`6AFgH4n&?Z@LWrBd_NNFRQj)<I-)K8#lD(_!?0co?y0{ZuBF}YP9V6
zzyV-vS#*yiP-ms{4CWMM$JL8zi5aH^|KkEkebgv%Ue$X3(F0xF#Z`R#^a&n|zg|J%
zUz2M<NB{>VaB%Lw&wo!}Umxa)SP+mTT2JVC^Jb`D6ddnA^Ce~U+-~!pj1^4#_LuRK
zSlF|CMv)?HyI#<m+L%jW-$ZRUK2Vo_`{~(D{ES$fkCXOhdI303l5U6UBv+M<h$l_e
z*?bvWqtUF$ccFd3p_P-hZ|iew%Ddl!`pqMCY8h4)nNi$p*UK0dWUFsSXS3aOOq`-0
zaduGM_{}0_bK)aT=PmlJy87qo`)qx&P5ni0f&}4kL$iUe?y(VREcHX71l)bACgiEX
zC_7oIl`y`o89P?&)M1DH6-~6#Ej0Ne>+0&#uH0kK_l1@ThW8-6@)!shJ_-H8HHf;j
zDhKut2<+6$A7Cu{gPkV`r6CY7g-KrCTR~nS@w}f26u^9=#;OBXrpyLX8$=9w@5G#p
zyk)>r_ek8dYiIQp*55OyMC4C+@!OW{U3Tgns8rX*lf-3ESna`TI%_<kvs;NI%kg7f
zeVr(QsrVO@=m#baQD}XtnhWODFW$cS*so4FA8k?joxToyTzlQI@o{altNP<0{5HG4
zpJs<DKjEn0-YqD2TKuf%2BL}9_4{TFMeWP}Y=!8a1#lX&0{vl7+?sK$K9Y7axIMRv
zCZ-_@8%|boD;hzS@eMa>tCa`?Q90@H^4GrNM^ccXpYlGWMHr1ReAK`z9SH{~)w31t
z#ul5(36{~tI5lxRPi2?ip7ZikD$%O%_$hb)PDGZ!oN7VqIIk9In;vb=V2n-pOxziV
z-)E+yu1AL!L|Qf*Z4Hb$#Tz}FTVqdU6^Y#)+1x+lQCFO7m|9LWk}@CaN4bA->f0$Z
zc~kOYL=@4aH^yDpaB@|dBGI4VDbe&nvbOQ|t!>}Imo~MJw*TfVMs80DU`#jcI4AKw
zzZSkfhBa!j!C@3!A(o19`t|FTaN7&%vz<ugi+AxITT^y}=Nt~F-#NCl=2Vp_Qv8Pq
zUTt-}vk?ti9x}LLe}*?_u2W~l&aQ3kzxwUa-Z^cWw|=jdn)i9jmfvb8Hpl5rQP!Dz
zVNPNJ>r>*pp?)q3z3z6kMNzb3*2FiI6`Iv@zTG+f@{4SuT0gi1avVfcsw?+W424<q
zNg^yCq!liCu$js$Dsalmfo2wc3O$oxeOAt#riLd3gN<kwIz~^8hi%5msE%{aW~4U$
z?3~PoWf9#glV6Txs|`XyQ$Lj=Je9jbHmXm=6$x4W?B^rFfXMstioMVyJ-u!t5V?lo
z7?4;NO8x1#?imN>(V(V}c)fT%wB7Xeh&7=OcU%{US?(l7^3=H)j7U(e(Znl0(_h8B
zTuTT87``dvaXOri)ihv7;b1dnQF_U1EG1-)m^1=w3bV5A*SUno*_hWJeS=*YeFI*V
z_ND9`nQ?+CH@^iGMuM)lZ+HM~(=7=*gqe90ffEl+yaDLo?-uzs#Yxc8@!tNPultw?
zf!2X+Lnf0{Y>4?B)=r^mGA&aV2ZEdiHE*MIJWiH#m?QE)QElx6M6+=A-awkb4URWp
z`v4?XM74e-8iZm+GBSH-saPGlK%Gh?e*PyCk`Pc%6jawg8;c(M*|0+T9e$sgOtL+x
z^F;6zNrcm0_I=P1a#d<WN;1!lDVX)ah}B5<^_1xq(dM}K%slsIU>nulC|>=BhiH!b
zP+$|R4m(WrbvJ3dnJoSSo~GHkOM_3d*-Q0mQ!=%LiuL6H*j;H&-roD<qFtxoO6j+=
zd6ce2DbxDH9v;_jh^$<0q(@i}*BD(ZD)AAq>v6rv2zIv__VDX`vZFy}$XB^@H0t7N
zdj8UN+s*J~A_C)7yKp#wGER2Jxs|5DV1vMn(J-pK!eF>~9}#s5R~Iw&D3-WZpLKhK
zd}>zkmFx%ejb~MB{oj(`Y36w$XZo__E_-dW27=5S0>NF~miWu!TnYNkztrmy(GX@e
z$MR8mpi)?^;<_?cSy|ax<}KP=z~NywMQbC`6Wi9<aPPXWduIgsq_de^r-FHS-G^Yt
zji*a#9QPmTBC*Z7o_zZJ`Sy|vSY9Bex7|qT9&1xXbojl(@Ir1u<1T4z*G=@-i*hhE
zQQu@#{&L7Ho5gG8ug|`Aw?q7uAJ1*N)zg_G*ph`&7?*wz^gd+*-Cnex-a6^>d+}9I
z{iPJ_^TbhinxoyZrt3<6$-S68lUU+YtdkarSKZvjia&HzPTbv;y<iNy@4$XmIU&8a
zr_1AV!OUoWjO%OUwS7sz?m$dQ!1sa{Nyt+;%$Tvp@-{xnxW_ZkI4cLHXdf9EM1W9W
zR%Rw9+ydxwh1Kw!09$32<|F@436$5xaNZA#Ryq1})>-jH17X}=)SBa3Q5|=4-@XKO
z#YU%pO0UXJ_K*75D3527@dj2$=0u;2Tq)JOem?$a)-rs}>tx|!!;kg5MboP}MuJxg
z8K-ug$vQr5^))rtF_INBvi=%%p|Hyz3Bogb?AGGiA25^TGx6*wbK<ZPq~!0{{fPN2
z<%XG3z4`N1SCZhMwbW>Fb6r7u*r!`II!j-vT9PbOj(P1)?HBRjJZza$pcbH*qQUpV
z_T0|=?B#nS%f9x}klFd)`b_m7QC4kHopEWePQuAgIf`0$C2B>#v=#R(w2avmUHT;=
zOHf%+(X#9$$r87%p2w;CR9zjTXoz~R)7SscBc06hk`i9?r}>;uv|;>9{L}iJyDjpj
z%oOcQiJoqiwKFAIBI%*ZJ~8c`4>7HHOmSV)PQoC5{NWKB0>Q<_72Rcyp)f5S?jOOL
zAb%|~H-b5tg=U$9216gzG6&3x34`CDYV-5Mjd~kCd~6p~$+6Ea{$VjUWqin=s!D#x
z^uErl#Elzaft527D>cwIcxrPs>Y;oYoG+#Q2iRkTQ@xwB`UiVWl??)@ObiX4NV~Bv
zmO&EQHIg6Szke4OJmKf!BKSvLo)WDKZc;ghwL;usdayQPWo6X_hezMXuh;r2%*ypJ
zj$~tw!OXpNwml5ZL<h_CX~5)y6hF3vQ{DyFNr6i|S1LgS3DE?^<XRe6J6@Ynf~32P
ztU8q&-e7r<0#kC$$BS~RE!p_@iEc~%46C9=rojmkPRaYW(E`~sSkbD!b}H5%WWc1C
zkibU~ETR@L%qW^*PoPD9-)2}wG-k!9`_?;`+LvzK#&A^7`)!UM83{6&bcN|087bY0
z&`DP|Mp+Wki_=IPcd3z*XefhC2m%3;VM0b7Cl`;-l{kmvcqi87q)ZlAb*9+%)+=9A
z7PzH7)!rLysO31f?v8#fPbrxd)SBU0IRCI~2HVsb1B}jb0wpnmTQR`m3uGUn!#UX5
z{X6GK;$MO>;F-mhEoSmpz|=R5pP>1gZC2cWi6st+8fz3YAyw1i^KbvDh*3O@Fd_wb
z{g#Lb^^YGv5I-X@BP*2sB{TdCi{!vdMwE^S{3JG)0+{dX;9o3iLUb}a<oV4Y%BuB6
zsz9rC-Q_YDl7aKh&A6_ciRsk0TaM_{*Lg%MP@W8L-@Us6*OfQWJ@okryZYh=YO>go
zF?>r5;f1$za&qEFO0jlQaz66%M!Lpl=@&29!7OOr@jgflFxB{g6GLu6!6n3n?mj9U
zo1>b9ofrS+O?A$*_a)L2wH<uP_%PCcCT5b3F|)sostY{D$Mr3ejPExd`Uc*g)&jdp
zXG-R6wSRCG-rI>b^;dq3yd{3oK$7Hie`}aaLoQZd@2Pir5Ua{NP6sA~QefJEc(CaH
zpT~$A0TSA{l$0<yXGKrfN&$4wVCy<N7_*!El2;h|;t%P|MI>t)uGJ#okTV}kO(`)z
zTLtbOJT0~%_X;~{9~{&I2c!oqahH_c$OyDbs|6uV_k@Yk&ZV`rfPoXkBDZU`5~g^%
zsO+t5yw*37;nz1kW2~6&AgYAbrn?=!a<{jT7Se9aS&gl4KXv6MF@X40r!1Y1oZYae
zz28jMSaVEve2=WA$SXDXr@b~=d-kTWLi6p%*<AA@larAE+-!Z7Ih^$5F@j0&n~6Op
zaA|F1YS_x-7NsNhUCfEtoJ1B-#WI|#BS4V4m8){Re}TtA7j*(ss<XhwSXeKsr~rBK
zBblayZPCg?dGo0WgFn3;<P)!$$=Nw#9)Joo;wSS@9R<7!(f1Gu)W6=LFlpg?0!^q^
zs}dc_3d=hbn6U$ped4@fFnw=ueeJ0xDrHQb_lWfp##H$M{pZpC{#(KlE~#g6zTnw6
zEsU*HmGa}SpL+gGw=C417k1zPW1n_`G-*oAeij87`lxLpHL^Tk1_Tih+aaa`S!ZX*
zugL^UoSS1;!+lLDwwO->vsy4hCdqPsQ@XU-m!-e9U$o;(hWiK8A!EK|Y2*yh^udf0
zeu2{@M7-$r=*g@y@rHXv*;-Rq-XnMV*hqE3W&`DGxijBzoU{W;GEOpxy{xQAJK=+c
z?y{39lwrB~`O-kU2h9!;hZcodULHqAl#L}I*I<+hmNiG{5&|@ffRam2B(_I9?^wNb
z`?d>yMJiaK!Y}YMi~nYPw*-VT$UN%P>_psm%)goQL2<_NX*U(*9S~EApTN*EcKm%1
z9}Jz0JBDo*&etEdpa|qiEnBLt<)8fOGD@LpxRO-H^)|0F$Fy}2OEjZyu;QwXr?3oJ
zXW;LO95RScI8EAlf;Pj(%J1&b3>n?Sgug9;5Bc$!)SIkg%un7)pbv`}HE49V8#X(t
z)ZEc{{D3ml%By?~YvK&4gBmqJ|7PgzbDqZzLb?9AD^h8te_u7IlFD^wNUfoU_b-J)
z@2*FEo%QcOpT$yW(qOC*1%j2+crZMOjOWnCVX}m1E`w+SL1fU9<yk?2GHn;DR+#zO
z(KZ?}daue#kFBYzi=2Y#O%S?#0R53l#oO4cIl2-QUx>nns+~3KPB+{#d;}UGd#V2Q
zZ3bK8^Am9U_zTA3?idxK*MeI~9A^bhZm9?<#t)e68~xpOGv=o{R$;nH7Z2IAn`so6
zC7xi;Z#*y=gSPc$+I#FY>mw6iDL9u|Xhxu(o^cXZ2isntT%=)}Gm7Y9{_?%XD?-n5
z@80#EL>_YHH?)M8>5n-@S*UHk7iV*M(huJU6ESm(v{Oc*@!aLQI??%s1!QcCUO_@-
zS7dXcgwl=8;S#AQ9+E;=M73HDRg$Kkuw4VAU<}4c45Kb0I1$6z{maVu!Lsbz!VY)*
z9<k4-z)gB;Fq{^pYe@6<5u+n=5~fAr=pDI-9o!{e&2|H)SwLMgUvaUqf$dZQQygyW
zQhoV#H%7PThvF~mv5uxWrW25Gs?iMR&VZf@+ch$#$WN<uzGn_^-@b(+mkw8_bA>=w
z1Va^$bZD1s!;8MtY4_^YtL>d0p3b*!hR^~itUu60cZ<B9l<ISLg19!A>~PlbHvWD0
zatrFrt#xxg%0DmerMb=G^@U8L{Tjge<Y?6h)xFBuW6lR&va|59aQFG&^@o#T&_T%f
z^a;nMmKOLByzA*!mE)N~;LHnX{qdARwxy<M?3>f>p>2{vbZXVLbSpVWQ7-sYh|c|h
zv4L}#$tFX&af8omyoSExWIfZHRfQrl*0WHqJtcidy%`G3Ub&S?@!cyv-{p~O3S>c2
zg1)!xR?&53%kVI3&KEbP%cUDeU1raC@mO21y!InGCeN<HPm-q=5Lz)ihguT$dF#|=
zmy2vym{1^7O%p|er^<njW75Fcb=3xzxGuCXHzYEAuRX?WDowz^%MD5zlXAUdW6}uO
zH&E$R@_M^hIW22|*86ljxzV+KO)&d`#994NGvmZ=P)%a@`(4l`eXY+e2WDYAySred
zNOq@LADyhvPPlfG?U!ypJk;+Bj%~&3P?YDtcW=9Mk8ycvX&QBdCFp!%{(TDmn+VPy
z--NXJQ{&5x*TF^?_6WFBf*BeWpz&p5wHUCu9<JW%jI-xof+0Wm%)w<Robdd8dfo1$
z#F{OmpT&LoAk2hc(`a9ocL&Km-eD~eCYydjFLh)X&=OnAx%|9bPX^E8py5sn-dxSt
zbD6t(6X|*df06bH)&$otpVl3*KBJtm9QDmE>YSSyGJs4ofRm$>L=_I$LVXETZwq{_
z=XyZQ{QFArIAQ;`qhfkg2C3cCilY^R!@yWlfSL`91ea=HM%Zk7w*BFd7#Kc0WNpN&
zRI751F(v5+R@Ta=-HI{WuoDMWt<c+}cutc5c1N!cGr1wt9+c<FM$ttq|IRT3{{$;*
zeKo-XF~4{b;w$m^X*r5S@;)c03$)1$a(yS29HK78LYZO*voepRHX1L=Yinq-d{bH|
z&U$3(N-U@ijm~8rgwM<px{CQVAyKysJa36<X_&73`Aosj<~XtE2ElN32m56li%O`+
zl>E7Q*|}cT1^*Ki?Z#2YXz0Os=K7S`1W!UkZ62@FrT_2YC8VYj)K2`A3zm(`CS&2{
zx)GL(<B-e5r1W!rxa1A1yKZJAbM>&5k^mnBvd~epa$j8=bCk|(yG7}?GzT>j{0F*?
zE>q7?az6b2GcT{)c;uob;FGUooPjoqWIV(4N{8{Cke|0XIKq7C0vI2kui|4Z${t_o
z;RPFBa|?@|mmQONR&&T3r;^~nwEOb<O3xJ+Re1BjA&I|c(D;rq^uf=Zi}5bi3XkZ!
zN?^?#vHFV$3uBUYWV?=(UCy0icfN+)Zcc34jzj!F_IWSDllu`%%5<!fE{;VlVBM6H
z-p{7c?}^tVgV<7eM;?sake}*MRFpTcONzFKSLS4-5S^AvLs|;$l(TKGWaS$JbIDf%
zF&(Slt3|hyetuCdJTK09ztblGSd;#P<@*u|DEW8t%-F+o8GXv~ofX@iv7dnOQLI;h
z!5G|H-bK23ktO?v+3}4DW8RwxEsJ62efs<QT3R<sygMN2w2|Q8xY|_Rw{S5uWzM&~
ziW%~fFEKtI89O$S9F8lLh;2#MU&2E=d@M(`U-)|&jPzRMq_0Z6Tzl0fZrKvkTJn|&
z@4$U^!}5WA622BY+EN~BfSE=tuuVP_W32x@mX38Q3|S+uzy@~3#wFV-$rbsN3UFD;
zDE)oNkbEa&GvV#cu5~aNx{RQa@S%BHVch|0{!Eb}(GOZ2NtBD#yR%VfP!d$x!J0y-
zB%QFH(Yxi(=RdtJmm!a0eHUGLx%lg)8J5)@ut21X4!<h+0?ck7X7yoP(-*38Jtbe$
zQT)hf8lfdX_CgzSB6aI4fww*daELS*7H#%#V;J@8C)sPW$72jV%=rzvo^p)C_efdl
z!@|O(SPXSlrj2`mpDb<Tx~LZ*EN5aW-k*Djj(}oBH_Y7K-4i8v9&GhKh25ZRYs(F(
zH<(w_5MG9-1AY)_5Q>%Ldv|xHM{E7~l(mLjv`%`N679pOPSREc=E^Qf|5JUZKA9xG
zcGoP$tatKu_taqGKg&!a+c!%*VedLHI5T`IsL_xE!B!C4#*SgnL(aTc(<NS)Y`duX
zemjszdSD35iVosU;4VMss`XpTfweB#NXM%?x%xS4X{^HL6w?<hLF}6^k$))sN#lN5
zlIbhx!c#<`t_DiJ4h>cO+{zFT9WpvP3Nj7M6hihlK~XARBUnma2UeJ1;?=&*%ud}C
zEq`Lt4`6cqWU;F9$6wVDiBsFpjPiBsrynCfY_6_}V*1JQ$4uJ6s5rt8LY4wGE<=Dc
zGTtidzOcN}gLCVlUr-)rekBcvF6O6Fc~brrFGj=nSnA{4Q}k61GZww2VW~HO315T}
zK`%7T^hS;4D>>b)xh8c=RaWlcDhMeO#x(@|_XUw*48~)?2n`GSNccKBsqQ@a4+&G+
zD#cd$WeWGte`59w<RXt^TU&$F9h3IZ_JvY<dQ{-v3Cy$zVASicM9UKcz?EU+%Bsbc
z!s^WC-JgG|ojISj%BvR7?aanRC@kXLHS_iweCK4;|Nor<d(Q#g!#bZIo1nc6w{9om
z*ru%oUR3p@a+31q(9}ct0Y0ZXD=*J>J!<}uX;L)GRBdr>s!?rL9v4ZtUs{5G!DZ3c
z4?m0cd}*_~!sjShQMAO7G)p!jL5NiHRxQ|kVIaVuEKZ0N6M+UuqMmvO;*K3SNkVic
zbWM9OW=mu!_#I=KgJDM45fkwtMS=t%mB)W%7eZBri=BOc1vtW=-0~b)5fI0(P5uSk
z_(|RI?I~LT*Dw(OfrJ~(#{rvZf<qoFK@D<*C!(=r6{*I&Q`!xLcUdC*OMGhC(sU1t
z@I#2UB0fwO?>}g&iA{VLEwFYAD)V%DGx%8<<?DCQnFitkBovvmKh)esvo|wg=iY-d
zCupNOmYO*jX%3)8G!(I^szd7)V4Vw|wZOkdpI^3F11~b5rUm=$;MUgwNfnPNwS!~%
zveS-E)`X!vcVZSKhM(rXDlFA}wPO-UA%J5=r@_m8d^CJtIA(r9nB5s$%yN<8Gb3!G
ztirWEZAp((1}QJWg3ic3m6vvXkil2>*7>taaA;f4t^$_b65w!KlyY@5;@%kG-akJm
z`~pPLp7z-AZLzo64*@hf4hVagU;owopc3DwuuYH&axYl*zeCdFw(KfsiiWA2QHtMd
zd_OMj!@7Qd{4vY1ouzDj;~H}T`dhkI(3$<*BrGF(lg-A^<om93L%C<38^!ER@V_na
zj2Rc!0v|_e*apyC&KpXVk+2$o8`TWR3PD}2m3MDR7z|zC(LBs})MU=LU(;3$p!L{#
zP?!0vf;H524ie>h1aVz$zUF+o%0qxoL(~G7>~=BU_qZ2B$UVCapS{EJ1iNh5r)KAf
z6#n4oN$bN61B4$Oze?1&GyOpXe-+exTOZ?O*|=K%ayD8&XwqpEn_n6R#8%y30BRnZ
z4bf)QxlHZTvh#0$7`&W{AB}COa#rd7G*WA{z1A?gjyIxOm1LLheu+heg0M-DY8d4l
ze0t;?wcLEBtG#t@p-dH6F|l|Nl?u?F=&^`dKU>v>ry<kvBYLG1sufE!DM;KRVq2M>
z7r%QbkiunbprmxwXez~BG_9%)ZOaZN&~*+i>GJxXg_Xy5uXe7&W4EuO_YONRr?%P*
zo-*$YQ~v8YA3q?&lr2at;=+lTj#Ua$q`^aW@N9l-gQtytT5ysSSWN^KT#gp7wjVy<
z<S^=#Te?ElSVaAIx}YN!{Sk2u_cV4|^k%W^t%`h)-q1S>`N}f6E-mdecuIz~k?;Kg
zww7Swka>7QKiH|^C?o)RD#aaRgx=Gqo_kf`fDRj!J26i#YAhw3axNuc1FR=vgkl?B
zqhEyhczNQPtP8&6a0%7kZu&dWUP#m|*5N!W@e#n(I{N07z3*oikZ-@2-(^nPt_cG`
zBG%RVgvrV{;NsgP_*I*Ns8zNQ+#Ug8c^e;(-V_$488tQU?8sNPeP&$1J2!K6#<$?C
zN3>Yu^2HD@MdesTem*BZKmUV|8rutC^bW@p^uO$Ddn1xy?pzWefT=;07rcvnckj9%
zLtBgHQG)+APy5YqYT`zsmYAlNSEL)TDIGwu)dbY!&z$oY=%A0v6WS+X;ZhKo4hd}&
zs<eC36<w2)8}Q8B#}P@8n6Xqp8ZlWw3uXf>F5OAsk~-`ja5`c7j0=i=a4&x2^HX8U
z`A5`i)<q>+ncn;EvMabJ+y~!QVT{3k{u>D>O)1ZYkak*>n!x;BZf<T90FoaGgPodP
zr;ayTf(SpR3^w>jTyVL6MkcBuyvn^KY$tg1SlVLCTl(=Ot&ia}pIzDhoRp*33CCNB
zTi=r>&`E$Y3EfG^CZG;K-KY~bPYyC(4+y=l_q-Ly>>{57bA==BB6z<9w8Lcpy(oG(
zt_?mlVH?b6HX~mzp_AEDhY|8YF|pfv;HUK6;#K2?2&h_lm*yEjr;1drUl3xPW7fPq
zCQQ9Q<WAf*PwunAw&&(uOJ{rAWiHC_k6kclGk`~Kn0LoL!rC$O2H1rQn~kUOWKi>9
zQ#`Nmpmu_eZ`+D5+4v5{hbQdr?>S@GmB+z#d|Mz8)IH%>nV!vq%-$E}l0`$iM_@`V
z5!7b|USso%k2N&|;h-&kh7DCOPfk;$S>+g<t*t&`KO%q3z7nDtuCSpt;t79a;Ce%F
zTFJh2nDa)MmFK}l>EVMU1oR<hH`N^+cqJ?k42#W<S&y@tf2JE;HHmmOXlr4?g8rFZ
z&7=bYDJo84aBdm8&0JD<Y^bP6=wuf4MPTf|4+{;IE}_K7`L^KL;0+4|ADWtcQI6xK
zm1I10``r}R!G-IBUhL%hC%guF$y+4i3}81MD}0|u4TKD3UcD+^x~diHCKq)=dWqjr
z=zcNYgbsl*!%)m-Ou{U+?l`mx0C(Xv(O*+@Qi1m8e#+s26~PoVDUYh0eG_9_;VJI!
zT+7}hJ1Ftyz5hM73|8&oP!#3ePpqv9Le=Bi{y}0N`!xX&f?85RXGb)q;WRR~wd4aj
z9(T<MnK2Ut;3+3?f^%y;A>Eb#aRD$G+3ryhfZMy8ahEw?Lp>n6kV%NGkl5Dyo^q;R
zIf}J(tk!>9wf^&47kH)u9b0{;5bSFqQ1O=M!6Wp)$HPNpQJTzpS9dlkS;AKwmM$=N
zG{2}w4wf50;c;6*dIsvy3EN=VteM5EM{I7fNwg`Si;BqG2@oJeHOu%6^a7=kRwjIg
z+=*ebvgG9Cmzhe*no+}07(jCxlDw-P`lv%e_#*Hezh;Sku?;^z+3Blm{u$>DIM`;$
z9e2VbD0Nr|9<#^u8bn$7RQhdr|HWhQo&x8xJEm>8VDCk2V`GFCj9rO7!S_(ES}ajF
z=Xb2Kt3u<WG}6T<E$Du9sGvmqzIMd)z9+_1h?xm81e(P-O^Iwi^CMA5F8MxoT}qIG
z0Jr_3f75n;y?Eyuy6LR%I}q|=U7G9_Qy965416Th3{Z#A=<?*iPtY2I*lM!M8`mH;
z-08EgIkj$f+QT;bQ7O?BBrqLb7Ujr^cVb1*u*}ma5_Tr{EL?ed6_jYWrpxV_RExa>
z1<hjy(V%Ci2_)X4bZX--yH6?w9p}F#+0ng8Rg;sutcI_ptsSOFE-j^_no(U%sjI6?
za_CSyfw378?VH&zVLQWS5U+SCv8SDEw}qsmc@hhZA%z#+N=B@qdjnXc)r%MYznAfo
z#<|BWq4va4-eL`Z1)htU&MmzT{OR{lI>VJiF|${g`!}_WzI;{&xE!1`KV)QJfOANY
zUMh#PP(XmwUT#r7b_C4^t&h8$Mbnaw3Fe-2>-!I<1$qKeD9<!@G1IPKtAt>Vb7J;L
zIGRQWeciK%GG@1pHhc+mpX0}heo{^j4GMBCao=T`|Eoc-<WU5q#@+cX=EO&iNyP7>
zxiMPAT$YWt#5DNsYkAbuvBW9twZ^({)9ueq8Oq7Yjg#2}(HUcr43ApfhMx*rL0NQM
zR7$))sKca)J2xWB?j<X;ad1chx@APaCI&bx26E61+C;?69ncqVD#v$)f2PuO(9+jm
zvej6@m(2NLU1#OC+^cXmlr4#5Y%7#*&?ka>9$JkTdY7iHtJ}re@HsC}N>&yJ2cN<Z
zXvWa^$C;>rr9pt06r!O3CD6?BhCrYz5}J*mGPwm*X^3nlKm@Nds5hkl%2P37U008R
zg>w@K_%|ob`vIG$_c_97s>XYT%aC1}!ndGL4}M3w$Sj5TFr#@3AV-MB@S@ABs4RH@
z2H`<kr}TpZ7j+2%*NyS$xL+j={SZ3K%Qef4e0+R{&jZFjefk6k>g5S>9Tcq+{f`Q+
z+qW?gAif%BH}*Sj)w%s(eUYV?M$q<sKn!ue$RkIgpOC(ygBvscaAWD$ub8s?Ulo4N
zG61w7QM1VdLhyjuLofFx_f0R!6cQEzAd>UkZ7RlVYyn&<#EoW#7wEhs`v;PM>Orlp
zZuAs&*fC=tQW*cp#YJGvr8bw*pv3f&L_)hMp8O40Cns!gA~@Xvg=dVUx?#9zRZP{$
zd7Kg#M@IZg2+G^F0Q?zjk%VHd1Y<(&zl>VQi-}tSOi{22jhp;l3%TzwfoUVBvrud`
zlqZiKJwlZ0f&BRukgWkVZ|S%8sk~-5?Ck7EakOx3q9ZOa^k@foTU5U8LTPRWVYqGr
z#zdeYGY#Vv?oAcW&dzA&6BN7&oVqQm55eU+q+5+SuA)K!(a?5BY(o)unFA)5LwA3Q
z5TQLVVH_fxkTnAuVW7+#W|`)W0}kJ4^cv1T@TDQQ?;V(&{JB|l<?2-s)kAy3O+znQ
z7O>TCX3%N?IvizcYHD2(f69+4=rm$AC=(27e;Igzz9jfy<ZTmb6?!p`J*x&nghWwj
zXsEb)dNOk`tLpbQIO3QhgNT>ap=%EaGC+%GF<uEDOp(Gfb9*fcwKYoMxxMZZHVP;J
zIEn^IW<1c<rBqZ>awk<O(83Y|2Nd5H;S9KczzlbhEjr)xy|7;LjLScPRYY6D4-SU1
z2weSGRYigG=An~#Ok^|APSF4N#id}fwR%9Du8s)Y<aTc^ygTP>Ff4wt31B9Xh-tzA
z4mUJsYYTkwa8bSS|8xt9*nX3|U=lcum2wli)y^)O0E`w|rJ|v*hAOChs+U{?Y<>^K
zbp7`Mqm7i&28f?j(oLa*pCnxFE8f56BrFrx$*EsO4Ahlg(Ovwa%5N-h&%s{@I@5D{
z!F{%sSrrvGAbUl4-J`q9#|K0bKWMknX?uE#?0JYm_YhQ{zbWBz8P-vtqqB+%0r<By
ziwokZG7$#z+!r;${Bb6UyDWmH2`DG?T>_8{UiytVtb6`q@n7v{B+-rXr2}YfAF2S^
zkqb0nw}u)oG@Xn}tw;FK;OmnoTMbTtWByv*&jk(!r4oFHq0jL%v`ep7IxrL=&3&S&
zx&5v=zX-CYBj^drc+Ud)JUp1r1DBbZ*$sHSSv5F)dwt+{ySUg7T$lo_u?5fjx8Exf
zs=b9m+5^uHcknM^QO)q*ask(X(Ewr~m}U36uNG9+UA-~B%*D<gEBrR#xwZ8k=9boz
zCm{*iPoB78xPfme)&Xdi?_+KWr~drV^TuTTo`67*wOUnVyQYo~#aAv9Yw)N3O73^K
zkZ43W3|WxC(tVaU!Svia+&cC-l^GciS03RqFtLDNZ-r~Kzes&xAdv#CqOwl<^|j8%
zsH+1;9`%Mih$6@&xZ=9Z4H1*T!?<i+^n_jNAf76M#rTx#X$4#foEp&8?uJezwwPeG
z{>G*036Nqjx{;5HERP}_P&N9{clN#3xH)xFO`=?h_6ma-i+)<7EFl^CMvYAFk$~KL
zSOm31bJ=r2c^dWJtB2nf!HiBaGCDL762Q%o(qPmnIE7*(pizkv{uiWKwQotrjl+0V
z2^hH|_#vtQ?Na;znE4O_B~?|I@UD3>+Trh#1gvnRs<NV7VaLEL4V?2gs(y5~8hgfS
zf+gzBF14vVX5I^6#!Xd53yeAFC6;}Ee5dcA&pUp?wiBr37)RZT#FDxB*bMMkPLhGE
zV+Q<o^o$CW!i~y=hu8CM9jZEQK^=VX@yuRGl=ulQ;*PDp$1t@M?7Rr>+BLp$uU%`e
zqnXRaI$DR-^Y(Qxb;>i-Y3%)s4WtU!cf9zzmfjEzVj$42t6|(V^0QXB%d}RK!mv6_
z*!6}{Ktio5*Vfh!hT!s{u#nr<CbqD8j?hSD2OcjewSX6=13wdVey$-Nn3*xw8QT4#
z*9zm+_1f$6MIgWkIjih7v7|itgnLd=)I^EdWmHREBbAs(*&ha`^*8|oGy~der;8OV
zpkMu!ry($b1N;$a$y6RdZVWIX-01kIvI`(z0mQL?(5E6?2ljUwm6J-~c+Y)GvBgB3
zwDJ-*z;WmI?Becc*Grz+2Vmd4<nq+};j3L)v=cbO{<jMHC+vYEjQEYp@!6EKaZ_C`
z2mXH3kE~QwRQ`oTL)th>D-{(Lm|H3oz2DQss2?mf#HwIUQj-p7JgxjG_`+>%*da-H
z-va_DH*k=k1qXyWHbwL{QqWspUxx(X0f3vzEOCEkZc0ed8x|$@UMOd`%Mw+VmuGxN
zUPMP^*Vl^~j{qwKSfbitb{G2|^|^GW+FWo3A+|u+5U2iiVP0OC5@}84QLnET;~FR*
zM#tWY6QY8LDJ<aO2L2+V3`0iG`Kb_197T1v^yoep<-@_?HoCT)la7Pn)G7AkF+<L>
zrn%kvpyma>f^e2WN19YP{XsDg(lZ4zA+w2^LyTX!Gj34r*bApZt!rg#n;=XBoyBHz
zJ_a5hwUtLF_+RcT!}EWB4jng1xGSh^;B*2m6qmDnHo1bDS|`ltp_K}!p_?iQTj%v_
ztYyzvzQ9bEm6F1OYI&pK)D~?DH<dr>*uw?i0-!fg657!J4jO_j>n>7ReNMF<Ge9v#
zbKlW?2*@G7_4djEzzH_Jn5855Ilqzcjt8Xv$|(Xu>d|~00m6^ku1;ap7+&2JaLSB;
z5k>;^(2Z8XiJ)!O4356ncDqLK^%&HA&Uc{W*1p&G218&dr?-De5kWR{9fk(f_hB4?
z6et~N-pXb?6eMWCTj3*UF(Xg9TUsR1BF=U^i9IDidgN}W>q7H-jz}jUeQE~l)-4DT
zJIGy+I5bg6$Z;N*yJqRu**vR6jPU#H{y%@P0gwPe+x>!5wi+x&zs$^AR^@tqYTChr
zA~b|xE?w1b!A~_eYN&>W7c@2F|CqqL{Q)Q-OHRV#8iM)-M)20bCf`ao7Q8Hw5;25-
zFqKBaog(6D`|Ug#a<`qDj+p~yq(djII~t01*%%+$Y!o%#_vWddC+*wu+^i>utN|7b
zYB&-VFK|T)f(E%{Rv$XmhM)iw67ZLGOaZ>08O6wjGuEW1(2*T1GzbF~F31!>N(cMi
zy?f9Fwz9Tfix>Q0psuZb6#<^aIByj{w)Mg5d^q85Nf(4q=?`;!88yPZU0rS_-o`NG
z`YYXvH33fR=&m+3ALV!ac#woLz`^G(@kuL>@gN?pi~=SeKq`Kuq2d4cuLZi33;x^$
z!!A(901GD&+QDc8cvugZNyAb~;A{pX=h}1T7rEkkA2l+7hX-^g-Gaf~)AO`Fn6WbX
zL1jc)l8!nf=O;0EuUnu64->tNT@`4qNa1%YejIBvKofo#qt+>B_}(-VJNiP4YYV-I
z>y>p3Iw>M`E2b$!qvIqm$VmMSiw+A7>xH>(pf+{CdgaP&zm_(-Q9TLr$*B0XqX6Q5
zP53KA6G3eqou&Amg@=_uW!gV+MOr7@r+0M7@*sE+cF=+~`dNWBZ3AHwqFB-IWr&_P
zZrs3G;~7t+m2*2YK8<a2hl$C0bc{79o>qm)Cp!gN!sTEX4f-MR#>lr`Zp9v6L0jn8
z9ii+jUZwt-*~44gY=?yOvy=iAPAmOC@%bLb#Z6~61xuJ9%7mHRUa`f2)%}N+=dJV?
z#L-ixJprfu0s<azBXzLhGsmgMpzijYdR6j%1U^e%+-Ps)LNl}dW<BM5%Yys!`8&|(
z$TsJvl8JMMU5jP}v)*4>SwZJMaBqD(##wwx@P?>QOv7~mvjtKV0M0PB#0ZUabVA@-
zb7!vu72s$a(&G>hqkgehf4?`QsVxY%^ZlU`?^72f<E`^9&?P#~oe8{3Zu&i`hdDBY
zSaQ}994(GUdVO%34h4r`?&y|-bata|?E#n9#qlD-D=SFBYh>L8fRhVhppT(>JZU|q
zC4hoMO%j#>!{@=)Plc!`5x^RNSPTDcT-0E@cJ{g43OB0g5!(^l#YN-`!oy-9o%+=z
zLWKvX%~`p9t|*6LFOZ)vnq7rc5nhcqg;OK#%t~~moecw4Z3L)aynN~YBg1|h;Hu`i
zZN!!s%ZH)WW1bJucMJh_1s7dN<ndD|uOrg&yJze_l$E_5(ym$glD7p}PiP_5*r)t_
z{QdoXsIso7n&p~N;p6xi%saXdqpWZly24bXwVyuiNd(Fo+!!SAeW+)U$vRexE}`t;
z9nM5`Ch3-1APq|us&yvrv51MKc9IpU8Whi!3NWrK&CWHPZgj%vA$nb(X!CTI_HwtP
z$IS`Dn5rSV&m1r2K}slL+!jLet(PZSm`M^BS$lSdxi(o(4UQ7h&ijt&L2Kx##0qov
z6Il;$@uCfgFt*}JYhfCfIg+iq7`YVS&JnK|I6A7wFDMwcVFxe|VCla+xnVwgS4grY
z`!2%pYhe7m8B9gGi?)ovYc%e(w2>VZ9O(lJ4R6Yix*)u~mn~2g0PYSU2F83$LE_5G
z0Prt(Oi)8p<HN836b`Te0NOUcDBsaz=j8o<AegM2x!)WRY6+gFaA=9988@~;?Qo6f
z^kbP0Csc%9)p`YlxeK#S!X|vlTb&XYByg~Ucz~AykRRScEzZN5*PP#Hg&EnkLRz|j
z@E<H<2w-aTg|LRWNi}g5K?LR?O;+PjM?EOeI@GZ)39aa$U2bTR6a$5p@Osa~S%|AG
zkav9~L^4&A8@kbnxU3-%XD36A8F(ak3<^p`JT1=>4T3-+bvD^D4Q=F}js7U)MzM>y
za9mmyQzD5HT1g@|F8Sr>=lkg=jI9&O9~`jI($Z=K-@JWtmH%Ntml7)ZVc^sk@S_Hj
zBh*r5Pmj_EGiAasM-S*Fi?s5ND><RnVO&-sn}sK$EdE5a4<MJ!b=|cKhb5;PKRbUk
z;4EwlZ2{kj{(k?pwKc!FlI)T#3Hnsk%Rt$zo#3u9gev-Bqc>E%ji97@-OtUx5}ne)
zVgKL=xh#*m2UhXdZk*8F114hcBfS$j8lhsN*<AUrd{iiMXv`xJq9;pPNkR^pZ6qX;
z^0WGmUCh5$!|u3k8GD`Y)17Tc;dmX4SZV|haKL_ct2YGwKpn^>@<A?O7Ivcj-|v)A
z@zAxmH^vKRXSX>Dwct%chUdG(H-1y5zxI(X9^O&!wQfa0#9~lu@SMcy^Xvlv^;%fG
zTHDDK00)E?5PaU8FPV+RRv<-YfeSJ9%}7>=JxR>tX1)@cb@o?STh9onNo9%{4LBs_
zcL1A$90$S}{s~GR(3NmmMtaTnF)^<X4h}xp1nQ~A4#6}uFWds>(*sV3q(~U-1ozj?
zlYKJ_rVB&Qb<H}c%@KY^XS3u`%4-FPLFTbp3pAxiK;#0dB_T|_J$SxMzrB>z4j=gR
zCnJWbfAHWs0GK>NPD{k#g|-EM^@N=h17J)5-oEW*f!!hmU@v1M7*F`7|CsYWTPy{D
zh>2kqR<*t@e-<2(gSGmFxv@VDGz|?2<GKQ%L!rKm3)K+29c=WLNqx&_&rCpV8&b*3
z&@GU(CFky2_Z3B{j|D`}9|HDp-<-gtNn0;7BjdF%<vq^>YiMv_Gx_UInD(R0pFPWf
zLkYTPpi<cqr<Q=Oi8X>{Vw)g12TP!;-?IiS{zwT<zu4nOX59*iPGd~8oL2K?Uo1CD
z_ieahSHGXorXFM7H#{5yMHdVtpHqNwGo5!Cg~Y{n)JH;&+xPhS1M(U0k1o<~sN!%Z
z_5klq1`Fr)E9Wp|8QcBwFm$fD>=YU_d6o6CX+V|(oU?GMK(>oG^1(QlTYdM#f-SzA
zyYo6XB}e`;2Pbb#eEfC(1AF)ckSqKX5^ng2Ux0EdU~@8z;SsWopg9Zmc+qWX+~sr~
zNkM%AbZo&C5>#OEH1GALuhyT;TQ!YogM%5#22!Zpjc1N%y#h8K6d7y@;A7o(w#tq=
zfl0zQ%t~oZ0K*^<jc349-K;-Upt%lh=sK98pF=OgGwdn1IXkz%$vGvj7FCgqjNT*N
z@u-&FUhNskZ6VQhTlt*huwFi-NDF))yb1e5Mb4bx<Ky_#`gr|tf;=oU0P`5J?TM@C
z`G{?v&p?5|40XDkHMFX3VDRJcSy3RQ&t-ZAR`de563<)khU7fgjN$!`f~^VZ<A<oL
z5O@1Zy1TpGXlyH=mZ^Szk_k3;^Chqda0D~NbxB6vvFI!U;^I)?fB-iSj~rk{<3CfO
zN(I3ue7_^q17Cmx<RGty4Y)OI7G(kfd&{F9SdmQtE*`l6*Un2rtzRO7@-EJ^XTB{U
zj8JSdMy^xZ;s1$+x@<Ik4#1=YVbOlMstMb(-E@?+RBJ85k3lME8UPHH;hb#9Tt*0}
z_;G=Aj*b43Nlz_^9$5e@104jC{LVmf4N3%QD$HiLS_@<qtaBim_LlE%LA^mmu5bUk
zErz-1<irDkE39^{6=w?~zYq-}+qEl6%Afq+M*v;?)vLP^bP2<VqM=oSirM;vH#%C2
zO=ibe#$)eg=FHt<pui9E!y5sD1#zqn6bOVbUaAOz4?Myc7+Akv_(nqUs6<1#TmX6=
zZy-CKg#_|4{22@J?fdsOEF#g660=T48d`YrbilTGXkb9Aw(&7L`=&(W&9yk=fVGKQ
za@0{UC3>YsKq>(#6Sfg^hh5U6$ll$M3SB$}5R*1TX&(xnGk*r(p%W;T6aln5P8DPa
zcg#BQVHBFt*k8LJ1s--dKYmb`IAm=u2Gjc>5aCq!u3RObRAKyy$G{W<IDpyCe3u)D
z_&frD9;U+T&KwDpKcQLyu$T^_{$v8a#u~v29<M>_2R(|=5kx>g2hij~PmW401`IWz
z2c<8`$<xbrnLt$^5Y46!y*Rh6=HTeKI4n3`(7_5-x7|UVB<g+zj0+;e@h_pr8#APW
z6>0gFF+laEmE6d>)iT|t9g=Yw=g;669v*mgvqR1I<S`y2Q$TdX%-~bI_6WhrkeV9d
zx_vFNhVz4`b%$x!H|s6ifsTF$W*{hdO|jw43IaYVKArMM)>ztAGa$S+pe}^OFOJOK
zi+Ls#HO_`|zzY$bDyGuHhPQnBU+hDk93DS9JrS@T_KS>+^xG#la3VopBl@+RZkB?l
z_V%V?EE^g`t*|kghAb#^;SCN!3(SVY4<mqeZ$%@Vq0vxm6+&y@WUfQ4*kMi<WP7kD
zEWiX8JP*(e7-3;T4T%(K$^8<)O>avz8<ltb3jRyD%PG0}(!{}yB3P$C$&Na_uXq~d
zY|oYL^0GJ+vqaSrClahyCI+IhGj+&1A+^*gTcSgU!{Oo?Gc>*dwJ$aTedZhiRJ;u$
zG+2m(jdR&<dj-r03SP|QWNoR>b#x;mzwIxM_bQnf0-QR5<{3Uxx@df`b|1Fxl5fwx
zmp>?4qbp{FA3EUx^@(9H14OJ?#tnp!FxrF4|J=Kmh0SkoKelfr5R|7SWl+d5I$!XB
zi5{M!)wYxfIb%Bs635!EIqo*G(x91)`+WFx{5R)a{z3f^_Hb&=j=n5vNAG`h{<t;M
z>Ypwp<TcFf9D-LmwvRPRl-_nULvE};8mJNcI}1*n!Ukb7G$%*+8X5<Y3MOoa?R*Dx
z9}x}e?a*Pct-Q)je(In^!;BPMF~eKFf6j9M>|(L=(UI(B7pM2(RqF{862?6!k&wo^
z)n=u`@V52GxfVCkfLG>St6w+K@4`R%>07$(Qth$r-XgIo&j9>h(L09d`Y3>@8n7M;
z7|`MEh@|CkW)rhWTxIJ2%^fX_FDV~O#pa9<Ga1nnyvXtJeS$Q}fZ0M5^&dW>&m3lg
zA3s#Oiv|Jzx%mL5w%2xQGk+HwT9A(|8SUT=Hi+KqnpqsI*%tZzkVeR{M(NZuGPQXV
z<$&8;__6cJ|NbFy|10)MF+YRCI5+omlh0CcO`o&5Ikw>@x2ldGHSHv86E>en;P_%c
z8%#g=u$?!D(L;a|4S<J`O-lBkFNckzP{p#So<F{pvNUMzI%la!DN97n<nSaQ+B~kT
z%VenUZf>sY++Ompg_}P0nOHmmZke{bx5KW+br^>9{9ckU`@b7eH3++GRO`LKEAd<+
zNHax5-RXA}Q)DP{taWTfzV!L0EH~7y*~1|fg~K1&_3lGNyyex++hST3UPJ4{|K60O
zq`Tc|Wv&fLV&xf3;YND-%4UW@$-@3Tt~HPJZCk;V6F<W`>A&9!kGr)nYqmO0{Afqy
z?6mP23xoi}Sibvp-kS=;qYXsWh7Kc_5X5B__DmH;4RWQs(urn_|K2^`GnJRDD`&C<
zck={1?b(%&m7!G8)L;pAtyOLI=HJV@VHSM)0>=}z$$s(sVEia|RNQ?utOAR5j+FJk
z50F?g<dIF-<xaIUf|^2~RT3&OWn5%l_WNkt!;Hr!LyKaE5lj2uIf9MP={s9aeYH)R
zdK<%s8x|=Bj{f}#@?HbwRZ@{u7Fsq353=6wKaz&^PkhT5Oyo`ebf*HIUDAGz7y{8_
z*C{=I@ojs0YMSKVC2(rrj<ZxBn?+VlGzz+A`mDy#g@h3I(=$DD6ap1>M$^8d0f(x{
zwB`_{-mvkDC{w$1^nvlu8Zf=Bxgj`MCd*Cfuo6z5Cm^SKi%e3UAJ$Lw{&`DVg#>rW
z`oDWM8)Z)`7E!|ntA&~zM-nxhaleL?{3I+}nXpGr-;bJ=5cxbEw%x<gU%Tix-lZ1)
z*K4n~OA~le|9)jao{hs?{rZ$_{dvr0@AMSEM-nmVWrbv#h9!TDD(~)J(W_%=)I1(P
zSh8Qy2qEPr*MMEO{y1nh^D0gov+Dn@JYdhxXw`Jq@_$@_TD1=T7fHJ1)nw^q^hyt4
z0WapgK4Zzh4ID|F&RXx>9{ij2a0vY%`&JwE#MGIC$SsUWD=C2M_n%AaZ!8!eN3!Jb
zxbp6`yry8Rg~4F*n_}yjUgJLaV+Y<*96?67$5GsEf@yI_9j{2`e1*ci<y4#DtqIyD
zSMtJvXv7J-bXkHbAb5b!s~p8db6GWXQ02(R^ZWX3?pg#<-ZOqm2<`t}irLKFBT7zh
zPYK(1_IMk~F+qWkpHX<sR0r4j9=s5#SU;ufc97bNy6mO)FkQ&`25R&VvT=lPZec%I
z-Q&~>hWOOJJiZyQ=b(^6gX1^83R;OTD1GX0orO$WiRLFT915QZME<+#+YU!d&&xQI
zL-xv+76qt8t#118a$RpsN(hAmM96E8pBY$>1_^(<Ob|z!h4>;wX>C_GUFsj5&h7r*
z%G1~VGe!=SjRGx39-g9}&TD)W_)r-;JnyyQZ~2Gs0<sL3@?C{!*toa?^$LPibKd+j
z#4QWGx@%WtDx>Jtp!$HGwdkNcuw<IPS{<(cbTBjFr<!r81&Sd}rNDXb81Ul?)~$xE
z1)yjTKKt$*k8*FX_5SY@S11c7A$NI+(uwVc97kD0Reo{v7)6O34VGhkCU2dS!e@R{
zOH3F?Z4t%xFy@k@5Y5B5q-~h^gdB+2$-vuN%>3&s<Q8xiA(=Bwq!6Hr0CXg<%iJF>
z_J@TOB&%)b&|rhnB^0P#BVRN=>Rexkgm~#akW8!vo<?<mQ7Q~sxy=fU9<pBxYbUig
zWQoHA7|sEy4T3>4_H7@zd?&<Q|J|a|ZY$)lpx@GcZo}v=mfD4rTU$*tdV_$-0*weN
z_O(d7lqXvYR66Kd<qb;{lp~N!Gl#GXK#KjgZQ~2DnX$H*y*+oT#DJXi5M~=?fB#)r
z*kA4|hX!7h`JqIVTVw?^DgOJV%S5pa`2mk$l9H|drI6w#RV0L-=D`E8$TXp_$e+I{
zk{!i0K#GBYlDyry|2|9%0l)&p80hFB8s@DbOKz&j55StHu3u`T<*-Cxi%at8gMV2o
zOE<t<pryF7x+*h98G#;P>#NBB9#DJ@gF~em@RN+JEHtqkJf8grUMw(^>nLD!NC>=X
zM!;ZFlVD~t^UDzj%9(QFe@JWSh!0*;b484)jcBGMOcofOc787`M>&i*qE?#=HTgH|
zx5N^=%;D#ew*U2|h2n&Vr=>fh`24&_1|(xi>7oFo<}#P80<q5Y+O3njE$VA)H83%v
zo=ox&eXINM*)vVxv)aY2|Nir*t?0UE5!?bys#!6)Xlh>fYYMRY4_wn0vzGCbW8CwW
z*Axuc%A5wi=mmt&wo-~E4p^IElk~nVy~wRsqXVm-hgN0Mf2VPi|KB5SC^BLW4(#{k
zXDd{gwudi(fiJa505Nqq6a1LK*p&_ld|0t12x(_us2I_>UQ4g>od>`{lLoGu`mcjP
zG>D=ojQIdy6zF!eh^HB8YBCFxhqd1lR(tTCrl7F!26F>6&0**(<M;BBl|hA==MU1%
z7VN5K;|Fjjz_o_)F1lz@a|H?1yahjSb*Eiwk4pmg9Y(-_^vj3NXGqbR`+zp4AqWpA
z$E*eVPP>0TP5QvY#kGJZS0R4)Zk&-CFbw%_=K{kCvjlQ!V-cXYh8Dou8kxCpntZ)G
z+BblZ9+H;N`3?3`QhSCahpI_56#(`_|9p4~26DV!&+v@9W6VsE#VcNq&X4$$_Inx3
z+mT0s(#5Z$w2D`C(U2pauf+ew`pf~lZbf;Oq%xB%X0r^fJom5cpd7ksS2_ayBboKQ
zffwQ}_pZV8Z?*nUGN1pDBuSJAK_=qtuVCX$5t{p-B@~F)0KF9TaRg8&{Gdihzz8ho
zZI1EEh6XxN<hs@afR=QYCs{jc80K^U<TOt;%p158A=_%S3Lw@?`jz^_Msc8P0qfK5
zB|jBIVvoC{R>q?T02l&&%ZqyEpt;zi@kKcmG~ZY&b=S~Sx%+3wyY6e&0fk#vgLGbS
z%7ykw$Rf_Do^swm54;Uk6S^8Ib2diBj6zewA;pXDt?|%fipSa)YX2VpxXYD{!JZn$
zROKz%R@!64gZKyOZK~Xfa@KbR1rwu&%f{A8<jlX$1uBkS3hVQw<Zy;&P!C;Ha3?oS
z!Lrd|5*Hk|4(T*@0LWynK7+~e!W^JqRX2`U|7E^H;Zks`{xD{RTm-Omoq!>h(UVT$
zR6^lYZsR|~)S5J$9UFhrRF#y%o}Z$5sDgrUfCrv)cAJ0Ajs1}EGpu}ur+?F|>cAsY
z*0p%`zT>=n->MGk|GWB(d3#b^Ee-)HSW|fIp{HeEJE0!s6VCi_HT~P_(h@QAqE0_>
zd63=Dk63GNF@LIU{SPy8DBsYr><nzO0E*=8ob{b78B~jG^9}fXhk^cff^>IR*F!)m
zfG+l4)$-T7aYS@#DiAqVLN?W^c2`2(D&_v&K>gH!Wf&?7u?x{8ybb?ImmdwGXW#`v
z5-t~oR_H%yZ!&OnDDyNv2MoNpUSJtFc-;A2_MtEhAsX_8cU$p32wL8n{q|RfJ`a`?
z*eB3_Iuo|Aw7lF#qY9Ha@V=S}b2GkICfthGBu)S#VHaK%VF_@9GvEC}9L+ypJ8C)9
zU>o*qn&bhw55Nu@^o1ym%Fd=Z4n|C$iAjQQ4Ma-#!5Et)9LXdbb(ze{Yn`KM&BnM@
z8<H1`bWy7c|93;z(RiGR^D{VyU>izBez>OB;B_B@5ZmW#FZlBs(b4P2-(0zF=sdJS
zH%a4i{^W~d^{>`UU+rf_Q0mn!v3O8<UkUV&`gKjboBla=f#OFHqXPibX4vMu2kR&b
z7nH;8tMxOJS|h&0ARRol%-s-|GCM=Vv|Q@|eePfwjAL{;XMJlXsq$bkO2w8<`N37z
zBo1!w8}*4z)rY~}E&-hu<?-ZPdT2Si2J|4Eb9NTVO1){<jxkvu-gR>FR?`w}<=k(D
zN>#g|L3#zUz*$Qd;vPI`iSQzH*_fzL`!`-O7~E?DC73q_Zbb_>69(>Y=`>(gnnx@x
zSK%_8heHlAVH>q_HD<CKNMY60_X|Hh03fvTbR=*6XfcOw+`Aqh<z`&>X9gYr6ar6l
zCFMl}dUpH2nMlePLHiXBm5+p3PoJ=BK4CogH`SB$z(P0BnKU&uF9CtOT#t4?JLLZ^
zDf^TSkd&Bf@y0g;q6?2Zys1zlJ~VP_?`7l`pNA{or@t+QBk8<A9Io(DV*9_(E~YOP
z3;k-#(>u(*g{pUV+K!&Cd2#BD*s=Cyhkl5s9bHiH-*0!^e)$D-I34cu>5HA*GLNKs
z|7-4l>0nfB>p$1v-SpyA{aS+q;&SBs$f|Yt8Gdr8sfSPU9p=hUd0HVA?r`GlEIc3f
z{r2WOSa^G)WRuYrWrmO&eLXa0CX5dx`!JrCKi@g-tjO`<*C&yF|Ie-MG5y0D0BFha
z83)l^moI&!dn1;ds@cU?yRCV(;H<sE8IsDWG8<OIJB5K}Ll=dh?~*}I)Zy*g+gwMT
zqoI-XpG!sJzZFK1ia_oFO|7c(j{`4`qgrQ(3o7BI*jI-33ZUhXFX_+9W8W|<-o5hi
z%a<#91vfxprKC9~#MFD!gA9Vpi8nw(8@d0FuJ3?qGK;zmsEE>00V$%4l@8LYB8npd
z7J9FOK<GU*MVcs#IuxmbBUK1U?_E?%KuUnni$Ovt1_+&Zf;0d6-&*gnvUCO^`M&$z
zd(S?5?{lti{RwrU0;kfVzA2T??G%f0vHD%H=c)d+P=!UaYtlU;bqG;7U;9V`xpiDE
zCgt`<(Z7!of6uLgDLXfJzR23<;lnp`rK3(vRVi)LREP@W(P{&YlOc@_R@VA_HK4~X
zw)NVVx~dP7)j-Gjo0je3Gbj!G=eWRS016?EXAOVs%jfp~1Z?LgBd&5=+z%2}pRe<u
zbFPm4h2svqNwu_Z(i$XK&vT-%Gv}&ljkV|WE+*y((ux=)HF;zjq;;OiA7!T#pf+z5
z#dL1J2Y-Jv@koqfF*V(pKsJq}y7?lR-}B_>5->|t2q=XIpA~RG*Rp!4mM_c!W-z<d
zhdW_LX;(wxq2l9@BC^qFtuIAjL{S+giVWiK-cG-_x`p9@Jb$?0M%J=r$Wa_QmA-0E
zuTp%+rswv@A&-;3n1Dlw1m9U^1uv9+H?e$4F_N82;R}Z^6#$gmC0#q~Z7U2)FDMVS
zCMk339f9`wH`DMu(q%L6)xl#5o8OfSp=I&=2mjIos|aY^bo>7OSC`ZI?|OiL96%q`
z=hguc8h+=)aa?r2eW)oKPXNmd;4B1S8cIpfoE!o`L5NB^?P+KG+@)LJr&k&#U9P3y
zGlytegWP9nS$O4ZF+zC~Grfd0*o(lU0lE?(y(v5eVuSe=Dv;MfDWFuRn_RL$HL0Ta
z*L3pwyJ5dN$T4Qy!CnvkMvC@l1O_+5e5n~pc1!I2i*M4w;0>KMb`s$*+o&!OPj~hg
zMgu&!XH!HrM0_Qmy)Y3vdi^!kjU1kP7iEgn6GiQlueSdw;C|ghU-)NsF?Mxw`0d+8
zpU-ONTx`kf#MQYG#iJ@);@J0fSD)B$5i{j^2BaUqu+@vTz#ld|hqad%yBhJ%YeniU
z)sudkahb+rUw!twm15Fz3+CBthrg5E881E1>j!Uv&hf8$%Dcyl^yw#EIM)1lAR>iX
zm|I)7xOes~MYU$soLMu4lWKf5*W`A6Mnmph?kg0Ym-1AEwUXPP%Y9>^*PiE@qZGkM
zcLbAC-LJy;%Ej1BE+wphK<Sv8jFt<7#(Eee2MzU;;2M$6feuBp758~lk(Gs<?I@I@
zq~z@8RYO6xSyJ-di#&t@dt^q>Wza1Txn+1R?#u05<yP<;_TCQK;FXqtYJu?C3N@Sf
z$sRa~>S%nQRYV$AcOiG;sb_}U(fPLpj#&`m1YBB=mV}w>%j}Y_W^?ZzQ*xhf({t2R
zrF;=i;qC~ASc^y2)hPj62d`(%lVNetz~$KXI`It-ZWpg_Wo0Ewe+UL6RONb@ZyB=r
zlb|nS`zPxo4j&$XS_=(-ppfR81ZQgqlhUBuSU^AkqN_BH`J8@GP>>OJp<qvYsEkPa
zw0P*_G^!{@KMTf2-c*pyA=_F?!+preIlD2nYAoslO*2ANNr~~D7za(FS=P8B*gqK>
zMMZ-Y7gKvOAIp7S_7mP6XyhrOCRsp74rusd<iRxNwN!0m5N+Eop@FGuopl>pxq6Z@
zoQDK0%s>r*<qInTvL=qxr>{$Jh87Uun-Oi(b;|FZDvdQ$+ePVp)1GXiE=7x+JYGjM
zj<DO^=tpCwoC6nl>6hw@xlH2gdRgep3C@B3!#$ankB)>`AS$K~aoUU2hrP$t&QxQx
z%#@XJy3i4qg(Y8-Q0BJLf(Z<nSGQg6-NJ2TRhmuTFj;B}KeY6@4eci)JYKPE!*czt
zVGc)3o0y~|bX(>NdG8`4m`8JzhKBR$cdv-&+6Ynl8#J~jPMnBd`Qudt{g*@?Ci3cP
zgM`Li4Gjx(b3~lYb?jOk>2iE~st(#R>78!w^WgjWG;EV;@*X;Qm->-Y?)Urc6Ehdq
za&?=Yuk?R=;7J^|z?IcViNRT!aQEF38oK?@@APPHagx{8&Yg*A=eO=*g^sP%4VB;Y
zSlCcU8afxBBt#j`3Jk!hI!!E(=BuJ#y<(}%TofH}<^l9gFVX7d8vXO<V_92oPZ@-V
zx3{$RF;p$b{pISVT$S{R>^*Q9BYoDZtE#xMmp*^Nle#@kl%yNYnPDNp@i{*+S^_<G
z+JU3v<02v6EZuq7ce<J<dbU=lxSXe#GIs@nkD`Nk1ATV#kG$OV?yV1&+?FcXoj@TF
zSwTG;tQADwTF$h&TEFYlbjpc=U#}wSR$nu0OvWVDJC-=~ZnJwj!J$EXeD;{C<KaQO
zNyQs^m$asOvb55-GWKzW%7OhTSA5sYjrU0sjy~j@JZWkrb}m7gbu}8jC1C-Eq2>JO
z>6_WK9eV0jhiuWocTXJ;wLX=XeMXA@{j9NSLnfhWX(KW7EAs<}JwFs`7F$)&&g^Pu
z_hkjY-QZvGF}2;{#camo#G0~eXS<mbg>PwT#VCZ|8POuwYA+RcFP!nof2)_r?3o5`
zNlfKde#q8$8Sm^X)YcQmo_<+!l}nasy2|S5_h`YkohtM|u-!h}V|}Y~@fk{^KVDAQ
z%aP9z6<ss4U;hws)@Kv7ywlTrIcT%F!gKq>FL&>x$VbyrE*rMW&h&4Udr*>I<E{_G
zi@p3diZ0bQPm+-hBIAKLas`vuQI}3<Z;|<tgMFYc)$;`7K2dpxJ80*NU^K?BzVGJR
zv|eB&?>?{dgvcH**Y?uFXQ8x;l36i+^m2hIdYi_n{d#@^@!1@mVAGe|=f8LRHE29b
zjI;R~Ts<UaZ<nQO_1wH7FRy(?MZ8DN+tN}65dYf8xt9y463}d=;a3ruG8*Cw3!GQG
zQu8$u>YdYxzB^+dx<>;R_gheF<!t@!^K?w4P5*WRYfXX0l||Hf*6Zh4U+H|Fl4E;d
zQulXXVM@e6R{Yp1lUArvx!H5xGeLCh0h5;yUA6BP-*)I!oZJ1D@p->zRow^f9hX*!
z;Rq}XTIC!^8kHMAL1Ilyv)xZn*6n@Nz)hK*hIF~Q!0c$O)^64NY12Rwa$!pZJ-L{4
zXyaG?@rhcbHj5e`3-Bsx%NP7I%KSDBu9`k6=4}>*q=D@uW1f)ka1JL;m&w(MkDNMY
zsd&jY=&tY}XU4}hHCxoHUcZxIy!fpPP6OgAB+i6-5Si2Kw^ZaLJB;nnCe5PO`^Kei
zgAQYzi`RpK>ixeaqlAg8Z=BRbIsT3vpWnR6bxiDN(Jd8)Gv0^4&eQ$eDM0sbFJ>7F
zzb`LmZ#2KxW#Q$;cIeO{Ncy9tM4bZb5r(v`$XPdoy^gK5vzIc~rVlLz*|rDRqxZkD
zQ19c9aY^rXZMzWG)m^96gdcBNR=tdu2qL!h;A@Oj1Y?P{dRE(fI9+DS==4nGZ?b<6
z*uBSNcBQ7rRa9_Ld7oh~-nl*!&10{;apmN3QH>K2E8+F<;X{T1UHNl{f-ROsaXK{(
z{)4a?&u&^3aX_aWBm8li5b;6Btnot7zc~42`t2W-!?w~!*U+-LGw>%dp5R$vCo%l#
zc<CsAzh<aPdRXamRlaCU;*r@vzE=_NwU7dV<g+J_gMuxwkoMI&?mRd9Ej6`(w9{zW
zY<Ev(I#V{k@uWYqdVkrT=Vk=WA4FchSGS?uLpCt%aH(3^Mypm9?EI0c)Zo8Nb@1`=
zX~e3kIyCF>`gpeor0(NC*N6H2;tga(Y_!CYr4)5hW`yOpaF$*~#6VqC7kGCD9Gc0Q
zV-1JKb0-%uM^}E<wd?wss!uuZPvSR1wu7FV?SCe*QXy>Xee<Wc>m`s20e#zARZL^M
zlhH<ZnOQt@ALP8#7Zje4zoY75k+hd(W_gyxuerA)or=?frWomN95PtLDXli!m9$GW
z+tc-g6m|>ofD2n|QB)mdn!WKe+d(|rf_S>0dqkf7=8WyrFoE;g)3!fH`7A`dl=rgR
zSZCkGiL<as_6p)niesDIvw}jl83zJFCU?EPrWd5qt!9Z*!dp#RE<NmlPnCI`$MB>e
zA<QH%-jIwq&u93;Sh#$`>$GZ#)N0^dEeEaXLUn-K523>%L0Zjt%A`RwNORBxKgnlr
zH&6IIGUbvu_l=33-VNOTzLr3(|CNuD+Q+1~l^-CM?-GT$6ShvT2V5+)CY|SVBj0zz
zUwEckvK~;j^niP7<uL~N3cY{w(w<zzTeMk7zF8nkgMa^WK28KKvvZ%^Vf%6*=t${^
zVt6Fwv*vaRA2m-d-QDf*Hrj0G{XFt>e4{MJ?gxB0eR!nZpRiB&r&6<|ggb3+d>Hg4
zUhtW}G$s;<+X<IU-XOete^a;EixpvRTugNXH(o#Eet{AsGU$2}>BH0Zv&_=PNpVZ-
zaBEhdzOFyw7pVzt9yq;9;9`?gr2Jf*@c62*|7;v0@E)qYTw~ye@<&gJAMyJ-h%K9Z
zGq3XG|GCPdizvo=akA8WR;}5D8?3PF*bhrBd6&jMUwxbBvYv$f7PLM-H0risw!0<x
z$kf?iUWT&J9#qesh@Z+UcQ$=pw6|+py}Zd4=<w%f%0=>Jlv-%$GS>fkM2P<!aOLCV
z%KI!=c!JdCdq+IYjyqJik*ZlXx3rSZIBeI*Cc{|S<-FXvj<DUI6+E+%B&WGMWhSQ-
z*jz2rG%9^`c{ZtfSSjq^>m3M}Jk40YSv)XFWQwVurF}wHlB1hWWT@~&5#mb(XZ8~)
z+kj9@>ry4{{$5$<M#}hDuyWvxXHDQd7Rig+{OmocyqnanFLw7Jl%x(=%hcGo6HNX3
z*)cwW>t9o&D7#E!uZU0m&JjeJ|GTvf$`7jlEdKmqqeF@(XzibuYH4zzy!F4-#{+`!
z%}cHIySx7@JV*WSD-H5*M+KBec9XwJQCp9%pnvhEQEs=A63GY2ZxJxrg5$^ixnkdz
zyKHsTo3BGraP3c%3Xf)a=3zgvpjR5IswKBZif%NkDf@`|p$7|xAD+vQwATo0-m+P0
z%qplpJRUSwy+sah8*lRD^@n-?S&~cCdrMj)FHG5U^g_3YgF+nTBQGE~8>-`l4nM+J
zzyl&R^T?M_reD76l0Na6V0hHHJB!oiv!JC3uJ7oBKz;WI|K`x1eDw+p$qIgdO|`ek
zd9&q1#fD<azVAiKC?9<FY+A#!KGaaZ7^Gaczaz5T5~GQ7s-L4%ZX9wpjVd0m(G4sk
zVa$+*lK$<Ngj?a~_FrRSDGS8EDYY4fwjF<O)@Fn}$I@miZ5$-Kh?5UiJCk;6Z-Nw!
zEFbZaTpTJj39Lu0{@GFE_aLx-?VE;=jA!pJ&BTa-kCI%B&TwBV9}2_RO}9@`LWX-<
zRNeBMvNk%?y)&@9i^Abd--9oq;fGA4i<`dK&kP$~hosw=yccDI-|9K4AwJSTU)2Cw
zatyEM;V-JHM8o1qQ3So|z7qWYB<yeOiUaXYoHXd5an_FKlq=u)d~oIXm|e5Ylk0)R
zZ5eIf)6(H(5{~tgTLPlq^ZBu994z_A96sR-=e1}g7q&a5I4kz6(}j1wo=s{v2;{Ja
zz73aoUM(}NJcg;&Cy(rP6r<A}rdtIR1o#XE20Ug9m(%t%qyx+GmOCqdpr>a<_C64&
zrA&S??kojuT=ySX4yxpVJL@ql{wuY4fij`{-lm`!zo5xMvkwQ$Jl%0^N-F>;rhaY)
zEsde@jF{(^d>LLJqg*%;N<q!elUH%Vt!6vpo-=7mp)d<^-s3{NKGIXtPAzGB*AYp=
z2Bg;hgH-~PuxZDSaeJudambG0DtBGb&gC<Ei|&+-tZ_g?hQ33OI?H+d#VRpr<yVsP
zdvOw*X4)ouN9vAbm2@p#lCbYlr6G4QGdVSQI|3()5k??IIl42sp(F27k#tqQ1x~TL
z%nF}+$Y*Bd@rb9x5`RZ@gs=yJpIetQZ%<SIH)OuVyzvd^ipj0^0G#HC+jRd%V-c2v
z@kGzlk2sg#dpu0`(rm@>au`>pEGVeyNRgW!yl8lP<Mhr<EDT1xi{lSfwScI|2t*iV
z{;3j%*JDhJ1*d-<@r3^yb7DlU5Lx`O`L#j<!8aoW9dT8a(|fI|s?^P}boeqn=jLEg
zoqq7Hw3qLifz`7-V9R@@NqxU&W}1~U(|W#J%GA)m{(8P?Qk3u2m)9@i?|d-l_zZtz
z@D_;|StAdtq~B{^2Ugib?xl;&3m=7Ox5^j5Cf~gnVlG-SM-us9Eq)AFHfwAY*=os<
zCbU`wboldDJ~(kyPH8}0Dk;>)KwT=e!nwz;k6Z~q0|_rw%Bs6{(cM%^Q>!&K>-J2;
zC^NxSPL%iM+@BPwD|OVV4O&+#pX|c~M)U4vmkCZE3~A4I3mN}ZmPyC-d-`SWc8Ot;
zk;gDD8{jyC#4C_DQZ-I+#`Mmn|CuM(u7%|g!%73wH|z-#*^YR2n#9aTNMr+kZPrXH
zJw$b3(~k0GXbReja*wzj3G_B%hL-m`dOKUv^(!Oz`u&A`8(GR3x-2Z7i#&OXREEA)
z1(2Kf*}puc2&Bc6Yv!jO^}qG2?Q$tT;>rsq?dCG*UO_jdbOHu+tFebYu9RuH6zfmh
zTN>2TSKJmr_ATBUk0<WHGjr&)QggIU^<jwNDbhpn!<Jd(=JPi4`2dXWgPg<WO39!K
zAP4n!zRHR2U)o>XRpmPJu83N9bRbtJ7>R@70}q(T0_FK|gjt!P?>y>BRDpav0j2H{
z_MaCZCFLeK>CMb|@Am$kf962+Nglx}mTU7LY5#=i(5rg>&CJ#Gx(VG{g1%r_Ou&NG
z#&-QaYI9e`@Is5F*m>4tZN~i$UYJXqFXf`OF23P7bLLi&{@>)r(eI75PV?(92kcAv
z(M3c4swn#QPl;tR*;v9Hf#8tM3gtVrhpD?gdDi?!S1Nt>Mo1^HSzT(1&c#+#ctyJK
z=7hw=rsd_r<aiXarSy3kFWG%Ivy9$#e<a(zSAqdJ4!5KV^t@qsvjsgp{g-Xxn(^~Z
zn_`2*)KvO$7tm+}0VckT{`D9%Mu@Nx@43rniXvI}21wQIzqUy^MA>3~4YF{-;JUUk
zGI%eTKRL-Fq^Qe?M&QaU4A?;Af|p>sN~N*Wpa^Ru^mIieFtzmsLo);mI6MVt4BGJK
z%WP3@M*Oi)3kX7OdeE0K-7sHHDJd~g1$dX<=}$v~P?0@T+4q<Bvy4!cMizQo@zZT1
zzcv*RU-nPpRPC~8yeyMsq!Dm9S(7L|N7xf6omJj0R=&aaDme2oe1t~GB*+Xf^6=8;
zpB>Z%Qfkw~Bp!b#7?zox1b=zn^-Q_43bo&eT9^2P<l9zd1E1n05=dehkJ^+V1aQT)
zapksvMA$4sg^)?TFBU{zizEUM0H?|2TlM=!p{}H!GFPgR)OhH`6y6+-nhq=&`8NA$
z+5kk{Uz<?QDSi#unZa`BG<<DRLc(9}(i$h2ls4X3)lC_!SteeDV^3x=A*j)ah^|Y#
z^QL3<oNr-;jwVS<j^d|ljp95RDLayCpHf(}fGUF^L$k{>D<X`Z_+f4ij=$RU_)qD_
z&2lJnGq&^JQU;0wviWXx?KfrfZASUJMb6_&n*rxpU7x+N_mLJ8n@o^K&@(Yv+1np)
z@V}X9Sjiu)=(Bv5zS*V22CDBEEY?-B&t+8mp?rMw1M|n;`ztY-V0rrA&DW_&aK>Ue
zkB6Fb&_wg5?H3#NO7OHD4!QoU*@9cif6%)iko5EKY}TVc(&GJU7Y&ATm2OxP`|lY*
zn?Ohjr^h7a%M9}^;WOM&kOr0<7SrezE2AyZ=`@w$h*agqJTD-)<&R+A>3d7B2tHFe
zXP5Y6Fbj>wxaK>}7xNGF=h@J)^lVOq#W=T?IiL;8R?LEWKdTk&oqZAWGZm*?wsz+*
zy2^5>OY2~?QY?%jPfhf5l^YE9Eppf+KI|DNit_$dDlQ`vVObR6qp)bCG4H8Ve@6!`
zTcu1`T#RcpInVk8iE~@DPonl#HeT_~*L5(wQq3_sIvTyykLuG5nl30Pi2jU~$bTF$
z?x>W)!O8hrh?S97X~8b<om+VqB6w)XpmJ=H@UYpw-YQg={85`<QhVe%K0l>Y52uT8
zQD|=;O&ZSgF0OJ?RmH#Yt|Rem#QY()Q;ptD+Xx?47T(-=802iRID`4?1;bQO7u(8k
z5`NFb)c||z{C*bZTK%W$ue1kuSMr*J5lv;U)u#yqbu#Ma49R!g{((r!;gUsrEL??}
zK6^}?4c+n5_&j-9<f*&plFG^fMJ^=H>)GmJLw6bRly6R|;RVxtU7p&%kCYyXNO-@^
z&KSt%_Hnz?h1|{77d)f|O@7VH(mw9#;GXyx*nQDdEz$KrR-Fu5!<)4*#q=*v<rQzt
z;+#c(ZUBXKEN$0Axo&e!xsfSIAtbHNv@KkO>D`i*V#R6zSKO-c@2i%f563(t(iGY^
z;1;x&b|ctleRp$elW0%3wYAwW>j}sA;BbV>dJ7I9Jvm@*WBE*lX&S_A?_V$iN`8Di
z239jLj)$68R#xI-JL!<s-Oqhw-^xMD>ptcMwy2wxwZ_5_Kq@uEEM&^C_L2#ik*a(}
z6TY5qwILxPl%_NeGSbpVHF~*45*+l3ty-_X>3n2EIOgqx!(#FJNt#1tFH=*`Y}Ohc
z5lOwi5)}idY3ar)z-CA8@~%5{2&eq?36a-efV8uBDah8K?b1PN(@Ke#$7n(zX8iQv
ztSXRRZCw+GT5)~BA3i;CW*0JzfceSMwwKpG!^3kEj&F)hPs}{W8tJ3!^Zc47QkoeE
zU;G1syEieWEaE@hWWni=Ae}QSX73DDId}K&-Lq^_lB0S&C+wV4o;IG%=*gZQROOrW
zx$>?;YR#{u{m7He)S4m3fuh<`)XdFiwLmrVd+kP;@zFCd_&UX?^1<=FZh<M!vht%L
z<i(0m9saRYJWS1ZCg!~<T7Dq2e^<A1>80P^?eo;_pJoQD3jW|`EcQ!?usf#c)$)1O
z!L}RKN>g_;1yF9p9JPDT5EQ}sAvebQxO^szBu92P&nk_258c5;%{_g6_oA4BLd`^>
zcP&5=WazM}s>j~;h_q=71Y=6dQeN-VX|ELycuZrm-Zs+iibT8bc+nkqfKdE!KoZuI
z<^X<Crc2%n<b?=312_y_jVsa%_u+udp+Ko$mNIus4g>JfMIFZr(KH^+E%*a}={I&O
zG522RUhZKseK95=^>JOBa@`TxHvpKz-*%0QgX#I}Cl9`9_hdsw?f}0n?ybBZRNR`$
zP2Mi6W}3V=JFD{>ne_Ozxg-q4LI5$$FUuAK1ovrZfwj}l=KPyKA%f44Hc3u<fQ5?m
z9ZRz&1=29>Yy9!;>c8kA;|$+!i?IX%`zx*gIEsCm^2TGkZ}Jow4rYyK2=apPS!nYG
zr)txNs^lrg9ubIdhiApUs{T#5Bpx$M@`Ye5yX2!#mrMHks2IY%+nE&~|9*U5!R_-;
zZ=e4(+<TVK-eqYI(jYfhEk%#&9Y^xqn+oFM4N5kHp6ZZuKi5ggt0L@#%wf<z_Y*wr
zIJd8}vgGTuJ<^<bYiriFhxY%rve}%IROpVO;?Avkk#xhT5HhQsu`+?bls6O*?;NJX
z!bH8`jT3y=&Lbwq<h>_;bhG(J*P3nDjfg0D@GMr9>IK%ruWy$6jdUp<b!mU8HyxQ}
z)-)g>JvrH@K>_fx;ammvHIq9==<hC=0%8SZ3qLe#Lo46d&Lpq@&P_-=zUx|0WM<~g
zjSibWc&dGz&675-0V*4?A+GgG7?i%Hz~#&lsCPslegj|t)SxXPu3<d^24v{wolDU?
zgn*70&?{A;px*~@4$ym(E)_POk3j4Zj(;<*_Wr&q9}7G@)%W*-55>slY*Ul^8>cw?
zkVB4afIA!fQAa&B?Twy1a`(g(^?P1;^XFih5PmYV>(7x(u1ILc22mEloyMc!(|vz)
zUMWWZkA_X|?6h)s<a}Z-;k}a9)CfG(Xsgzdep1^3%%em|u^=?*`Mi_s=u{>3k2G0W
zYo$Jlyl|QW=|1+Wga&{?#I+)Q592p-&TBqJouc#!nOEBGoM){&wFcbe+q<7vYO2WI
z7_75G{o1`C8gJ-h3Dp#XVzy#2kAR#q%>F~!_mByf^p|e!Qc6a=*jh#JKsuThPenj_
z^ET~HtGU9+BOt%k;#2ZSp?BehbnRCK<uTF++`Ko!Q=uBxWqFtEidcrUQ&t7H(}<td
zCs7q%ozPJvEfCx^$%|<%d*8)mmG55>`Z3Mec0g)nONKSKpM85*1?#C6OxF>f3Hy(d
z)`th;*2PFJVAF|k@w0BHU)??ojA(kks{AyS%VC2+)pr8a`H=5`2vb=LxbHLYp5iqp
zpBOkhi#%<7H_fTK46r~{TzqOsm+$Resl%;`ii)Y{hM^u}c5tc&$l_>b&D$Ry00M?Q
z2hrVatM@F~vIZJ5!wXnhfP-JZ{wcdSGjpE4d08PwevXZ7l&tk4?aqh4FnGo0g+~OD
zCOwvuw#5c*0W=dEq0o4+bz?&Y2w9tZbk_=+DIeqtjzO@5u^4`~6q~CW6K#7mf(iE<
z-Sju@vUPO)2zT@0fh#xUa_=4|D%2SZOCSC;ZwTuaJe!&6d4B$t#<zsyZ-BZ4`!>K?
zN1T(-qt^9DpFl`F4co*9aeR*$h6f(}#=*{4;#ei+Wam(C<WyrA_63-aBd|s;lp|~1
z-h8B~BMg|%Fe$}YUA^QobIIA95SwH@QH>-#8gbd3754~~@qEMmUf$){56u+UWOuTy
zGJky_EIbe7$l10kTdbD?X~Ch6q=PRZo#1V19uHtdxJ=EQcC593ldMJIKYns$DIRj8
zY)yQ>+StDfiLrP@o@JE5PWMY_sIA!pX46)yin$8fUXAJSY4oUR0W1{|!NLq0&AWSy
zJY8Jw1*Tx|>4d70GxRi&G|^w}cVM<i7^kcGHtW``&^##`&8xgvSuf`$%JD4oaRMl8
zgXjl24W9(t_U5q-J6jA)OzlhIVPP{{Yh*GY)H_bUbAfvNj;D!thcW~#-8{$<C?N6|
z361~^+x}xCzaEv}>In!~|KXbK+|m-Hx@3izB-+~k?(ca`Rj1ZAncYwN`S}f}#$W@Y
zRQV`Eo<PISRlWgxbMtpUF~<-F=^vw|6%~oTX)5V|(R&-^=;l$ty48ZY=-~2>cAgGL
zSdW_mUq-0g(NDRZNyBu}qpA~rFm@i5pXY{sis<8*bWGz!8mpIj{y@I0)=!c~HgpJ(
z@-I@zjFFtH8_PEF!hXgFoBmo@Y_qzflM~~UYYpD09BsD}V?@`HEYkoBqfq;lXnd9_
z`aMWa-Y9SH@@Z82C+>Vk#1{f^vj^aEoc}JajO(*K+dq}$l%yom2s(wpj+7fwNoRiE
zn(;ojKX1ObjF^dcMTd;nbq<UZI9Q%XNqX|)_yu(^xCLKi{Pw0xIor=?<7>ItnNqEM
zT~fg35t6$*FFWmF!@Y&bw5w?MT#Occ_<M$<K<J+6uYx!sq21M0<Hw46k7JW4pf$E7
z)WiLiIpB=o?!^!jb!stRq*%iFMaoYxi-cA_w6#W0Z*+Tp<h)3^WkX<8+TR&u&tTpA
z^0rEO)MZo6zRb6Zz6iTxJTa0sleeooYEfX6XIk@=Hl^P|^WqyMW+=~ZXp~*IAB(*t
zkg&bA<==*6Ybopfeq-4v2)%;DIi2<q)~;^+l;*D#1B5`B6hoA3Jrc)LUS;>0=W}()
ztfq>4{k<x%wXAzT>KA1Z%7UP_oKjzGt!z3;3BzFo5odXc6o_YMeEm7SM~9;zRLgB~
z;F**}%p9}o5KDs{#}I$%RBP?dr6s0XwUx%pey;M~x9-igRTinSl&(1$bATY^+R9kf
z1z95-%8*0eY%<u8GBld0)zbC;bRLyu)->ePZ8h2ugQD+Xz`eF{HL$;-0RjE0ZlLwW
zlmUj;>W=m;E5Pr65*&BWQJoNaItd3Db6GzR=p*p(@_H{=aolRQ&3*EOiXxsv(gyop
z-F5{&4TEQ)r%5OH-AJ=i4kRo|1_A>FY4rAF+57r>-pt3}CTeu^WK9b$8hU3FvYp5e
z&{&@91;f+&qiyP!Pd?3j9PJ5cqfoHD$MF5b`2aR7>+#T;fCuG}O~Q;HM+y7z7zxME
z8a_wa8pPSEv+`wpIIm*SGiCvJX3($y;z)V<W>9>NQ^lU!&cvX@U?m=r>a%she=Vw>
z&b%&bsn&b3At2^VBfx=~_Mc_Q(HBS~>FGEw^ye{jfSK-!R59#aE#U=ktUQr597gDo
zzLmAHa&N?D2u8ku4EQU$?cBliS<;uSp$9I(vM7PRN44Kv;S8*BZ|(0}Ium}!!ka(6
zR87A(=cCa6NmN2&rcxu|bTT-66vzxTA-B)7G6<c9U*&s6OYya|nTVZ^R5ee`oW9@$
zG5n{;FiW(b&T5#-If%~s(fI_w-Z(}ujogq+i6dX{FrauY_+#CSi?=K*p=JEFvlFz{
zwF6Cx`z|u{2o6B<;%_}(pzHKCXUq3Yr^}5Vk4E3S{0s_D+t=9v-*djqFwFlJ5EdT(
zs(p4wF09#NeC%t(P8Ecbaa(gc=tAVdS)||5L#NNd#pR%1uE}3m%MmsyKQ=dK*X-W?
zF~fLPNw-%*O~mPbKnHsdOV6Eqd11JrK#1X~W~fTplACp^UBpxqTtH0Fd^(OxsTu;r
z_;WMQ=tZ%9*@ZI!tiY6)j^JOlWvwiGr;$?rpb%{=zSVP3#%o(E<?lStps<|Jxwz-g
zoVHl)_yK=Y9ZqAn@b^y+(8~D$OUtizY+XdC%ezSbBeBps2aq^NSW$MaEf^C#aHHX(
zB_#XP;^WGJC$FLhg(#sTgRT=_x59Tu-f}vchqG?C)j<~}r|R*<K92Os%_oJHCWJmL
z=fj;3)V&gl0)9DHq3eQ3#vgo!7ps-G?^Ec0h;Jgwq}&GwJ4eP3AaV1pOhuwdsITWr
zwMyPDJ9Mh3sz&vG>^yRCFQqY)qCIjzHVybQ*9-=>vVW63fF!Uq<<_G6QxOM0b?`^N
z!tdnZcd|fW#@#u{C%hJA5eN!(>^eU7L?@Nu_s<><YsN?ZZ~m1J4-Qdvuet*cmI?t*
zq7|Q-Nn@ZyZbE7YrTV3YYa{#q=YG&8CwU8)iuj&j`yQohQaw9olXO7vdYH7$&CR`z
zt~GYoYdghub$?d>&<Zzjt3^dc7f!zc`A6Z`h6IK8Kj5b+PY*Fe7NFz{h_fL-Z^XvC
zj=xuPSxS-L_$7M~No<<RSn-jN2dJbMIyQp0?G}HmVO-HDP-dK6#GB8)uK5KF;Y*kS
ztI#y(LjGbcUinVUswiQ}&&OcSx9ceTuaWqskrD1-cZ_c}8_6FMmcGb0w%w(`=kEb(
z7vQ9)%(5epSICD@SZ=-yo0e}Dh7W+_Eki;RTA&^fe^KQPUKI3<oqup5z0`sOmJHPd
zugCWNJe!-P4v_NZQJ<D!7re-NtTL7Td2GV=W{vQx+y4-^1wFR>S$eiSA$I{>LO=uq
z<l!VQ4391Ur^OsfKsN<!RAXSTMmL<$sy~c~U@{4>b|QLm7elHs0@{Vb+WR1CmxAZs
zzjKp+6zVxp@ShvCNWF;yBh>6>t80vc(o0@$6azw(H2<fslBb}U_gXOsB4;6O@iIo8
zrU*5I`>|RUxPeYYFm6%l8N@Gy49;u>rnP(4SkuVYt8UzDGL+lr`}NtyC$isO@}J(v
zYL^q>xf;aL-*}jFQm~yGv3Uu<IQ<~!Bz<%6<HWjiNyFb@1K2A2aL?!u$TZZr!hw~6
z->XE+Ig4FNPboWIRq)<0e+o)n-3ks2QDMg|iWujC=LO3cJ!I}*eIp1b+k8r0?qRQ$
z(A{f0aUG3H+QRS84?}lXc*|8Xc^b-B5kEq-$cAOFzgo|D{@rd<8D}4LxM!dtzyz8!
zfd%W=>0ff6Ycqi(F1`@9T^9!4xXP-f5WgCk@(T9(MCzAF$;8f4#WEjVhGt;B3kCD0
zy-unZ(abA=x6fa5glx1sM4e1l`Izog(6<yG9zM$%Y1M~!J%?du$>#-ithGbn(n{Zr
z@<RzscU$r9moQ&2OQXt>qwlr89iM=)1mR0aVXd1;$pI<o6&_$~0P3i91%Hz+3uBZk
z)kIFXQ+)mz)wz*xApE#O>ewzz8T|Tk;&FxKs$+mZ%$KlrF^yWLk>L-eB}-yuq}-dt
z1{QlRxi+uqeL1^B3Fwf%|Jt@q4d7WxC(P(?tGDUaZXFmO=KLW-3karR-~uh^LaE`X
zG=H*C>>WUOybu~7dj#Y(5(fyLP{pnGtkd+?ty|15Z_V!64{8Hj%mHjjQs*}$?A1MX
zlmZb59AGVk_P{^a0HhuQw}Xnd3TIf)s*HIcvhUjWs4AeKQ0wa&S-oJ}1CLwuvR-WG
zBd)Tcvf7V9UAz#qA16*<^}c6spxeIAOXR)^c1c>H)~d=I_Yn+)3C6J2mBrivUGlel
zC{tNKzRp<<meYVtXdCsL$i5g<_N?{e6LW(&tE9(?ZUs5ox#`5)@?@<JBgL>&&8mHo
zpkLAxYYYQLo({u^FqH4s2`k4i1h(8K(k0WG-u!@;4_*_8#{$rQZ`>@S^@e;K73tJx
zzM3P!C@*9@o=vA#IbhnO-SuBFj>n3DSi^Z0oxC0OPrjbhYpbQ5mT>D(v4g#G(@LhM
zNkYS2yIU&nIP~xTMD1m6eogn&fW0JO^6UZa`o$JdA$AP49jHmy^9u-{zC%eL(Diq<
zw4`~^)z!EjLzQQ?wY9ZE_zYd!=MBRFCYDADXX356!X{}es3?W*(bKGv&#V+m6ScYN
zI*ztLG6{xG@ou*1C0scZJeG!?0FR@@6jqB&&R>T}78aLJx@mX7o?~D#@BM<GnHJ7q
zJp1bQ7wDJGdGXRE9ulze42`uFOqR$N$!g5Gf!2VSoga&yPWOulr@C^n<;+nAhtR$e
zw(Xw;H?LkU(AuHCN$JX1Hx29{=y59PXM+sPaZ*z&8?TkjR7<=%Q{+Mx8!n`#1#Ns%
zpC$A8Bc;Er^_H$!o^CpmTeHA{ItO9q?EYh{*0{{ef|p#}X`V-gEf5E8gOb~h0!2;W
z4%&I+ibzGCJ?tHOMU>a6v#ZO`$tYrR(W#AW?}9YYz45{JEVG^LqXVs}Wo5d}Mm<tj
zWcZ=LYcO8=lOL8xRzC06^cPa8zI~n#=LQraynvc-<FL2OKU2-kAN!ns9PErUl{EvE
zFtZBYRy?Y=I$U%ykgR8Nm8^KmT`=}e^t?Gas$VtMr@E$Vw6}NqG=2HQ$BYt7vNZ{k
zE-~lo*vO7vUb=z8T_XI=Mzz73y%N68hn`$(6Z!ZD-~4a|Rq>jcPvBm!w5Ig4CR~}5
zQ=VKo)ctFH6D0#_B<Pb2yMmnG`Eo91%0O{Fofz5@;iR@Y*jwl6n<sUcfwZnS_70i~
zweMfFI5$#jjgu4=Mf6J8%waXVvuM)aym<rV#eo(@v;%$D^!$aIlzMLHuewWW^xl6d
ztEec1xe!f+R;&a$c{qj9T7XKUm-%?8%g%-?qD!eXKY}nn!-1Zz9k|O(Wh<|k$&PX=
zq9N{lw~)n8lGUl!+<W*hFw@FV+phd-HO#*lG6uun(b*}qIRd({IYEb$QEBb9WBS=G
zXc1$7qK@Pp=eT<>!G{VG_00^7H0k+E)Y8bgHXTpoa4;q4Q1S|h+$+GQNGswY6CA90
ztkfMa<BB)?Bj?mNCm5nzka<U+X+E0f_qE3~<lmG6qD<s`qrZ~KjoWbRM>4i5X%pla
zylxz1c~&1O<ab-887;O0a*6LhOX%z5AQ#}`_rY0k&_Hg1Yy4!vQ7EWhC)%YLM5e>n
zbj=n-pK8qKW#KO0ZW2YGsirui-6b@N(~nmSCD6&<y1?(*Kkq4hf0JmM^hjrs$m~v*
z^RA9<a?0T2cB#8p_||LS+VZfixp~9Ni#&J4S%F!jQuCGXKS?)L3B44R9-{82`Smz1
z{GspL>x?o=<9@T57ktm*#^$6Jc8AFn>@s7!UH|I}2<NBCM4rEd_<-qX5Rx{1S^3a;
zGrDxUm={*znd{*2n1hJ~`M~*dhQMEU6u_)N$t|XCU@a&~SoAIsn+K)<5bb9?qk<_`
zp@;~!u*qd{ig+p<@4nitBf#8Wc!l#N9|ye`H#23E_~~Jo`p2u=K6S|&%tCC#49UPS
zaX;iKALX}YNzMt18~^s@%k3NQa33=ySR>!%<>gIQwQ}EdHb5gy@%CAq(kG8wfRXq*
z@zTij(U9xVpeZc=y=3uUR@%Q!uHvixo;+0r@&ng*KYV@wE<w;987v%%2bkN_QzV&H
zd7Vn@3u(VV@9kHek9b5r7}=H9%9V#wHjlcE(7M31aqi*o_cpg7j<%!w*=worrp8AR
zX1kw*Zurm1oo*R}cnC2Kq)=CFm{d6CF~80m6gNk+etsP}DX5tA+vzCF4ksS2f5e6@
zY1BSBTBp-In#MHM8xZeHRKdRj{@PlIKVm?hWlLCU;R2r_9qdXIb^@+Tdz)r;xl~}f
zV-bqM1Weyl0NS5NUc!Gn3j1;0133SFLA=fEGUp03h7{h=B2h3lgn)u(cw(=R7bs8C
z`%HyztnJMMbglkma`_1V+q>W5&8VXG-MuL5Tf~%j?%+w;A<bp{pV;GDjZ{lScW%-h
z1QGB69;JAW{-gMT<o{+R^V^L@dCL+;F>Xpqka0vFOf~XkZhhk8-*-%1h+h`}-CeF*
zg5k+EFqg}kazc^xUz%C};&g7rJ>mHK{ITyIbAo0t6NNu8TXaADalk9bO)KR6*`ap8
z9{V|+fO@tinZ@{D#~`e{x@~>mU3&>+`Rk$_#(h3SR?JK6@W+!y1%Us-DhkY_RhHiB
ze_jA!A;Ituk~X__y~B!o|AOxWGQ{w_vOQH*_D}x{!MnKIwI668Fd&BJv&-UF*rE_W
z%($}%atIj}3=pE5rCXI7KwmH+tT$w(rORthm{J{R3>~huxsFn}LZP>Jz5G+b9-_@(
z`cBp>!&vwawy1My7?Gg_n2~VpaW+CfD~R9lBoGaLmkdCXY4ke27#cdBs=O2kl)3oZ
zj@*>A2)o*f{~P4f9R|)FhRkO60%CP_6*{qe>la|wC9||0)K`Sw)N4xBqHng_fMgNK
zIO+s+->K`VNF3a}MqAXa_iiaIgK;+L#=;^i9VspT@rEF)W<D0xa5wnuoN0=_(OYs#
zdC3hft=lu8HMc%8LRcG~Xu}^dT9kE7S?pdhN<RndK!X@ZHWj@+LHQOy5tkPNd$LmQ
z)YWQfEx=`SMIZ138L@!x+OIte<C|azRRM($@dHN#naOEdLKT#Fa4NA2owqFFKzu1<
zohP?i-Vgg~PdK!4Y1PtS1SB&Sr(7g`i)>4RrCASK^XOKCVw~Cbb1>h4K5W1uz@H<j
z@dkTt;0M5TWO*NCH?Q)q0F^-BKkBZHZ6E!{2T6W;IaaJ-_z^%F@J(RHBs3B-hYC%f
zR+U*2Tew>iGG0db-Gx&DD~;E8T7&HZ%sIkpu=5<2b?}tH#XBayCO6{#5PJ@u->cgb
zfau|g)e&#^4V<yZos6vlVd-vJ9;p4%4(bPFH?ZI^$6&9Eb2uVV#=(NQGO^!5^_P%I
z-zKO<eFRTgk^0JVxp<V~u3=k6%tLHTz*1y{Zf|3jX%m>;7!eeC=wC~f$Ra@X0u8QZ
zZTmnR1yDmeHd5~W?xzpM`}VKVjt7{%_o6G*fzG&7G8=vBZfTLcb<Y6^8rDS}gl;~w
zkKCp-i^1$N?BCD8;cdW~Ly3(jeH%VQWk94`C#O*q@ggSXkPA(-rSPII0|l|p_XD=F
z-JjawD?HT}wXYDkBNM!N7GS!_pGWd5;;x-Nt88R<BoDPaVj+Zpyb1a!VszO|TeixM
zvl!*)&qHV4zs+!E#KE?_Q;|s(<r(&J%(N28YL0p#ld62@VyJ##k0OA|hlohu3>9H^
zr@usr>b;oN%U2W^e+teI^2@eq%BXrmz=T*CmQ{v?0+OctECpp8e_nh8|KwH;iQK6l
zaW<0Ac0tnk0b+Ro&PPHX3yK1q-($sHM1-sG&@QFh^dEB_2U`g_7;I+5y#=*dEQPx_
z^|9F-$6yq;<t#&ZU*Vj#19$*LJIW2foKBGUq=9so(Y$W91=1lGaF$WN1w(xZ@yN7j
z1%)fnpAz^z!@WegO)oB*KYSLj=4TRCka34KfvHf{Y|^V~@^{hGP*sL0`cUwD)(6kD
z=8aWpk6sG{!%RrFxvtUGh_gn$5`$$g0ncD&8AnuadnwhdYPyu?-80h44oIWgXFCI+
zs!)&)>Osu)i5G;P-arUpbtM%PUVxj%PGVk$4N+B9WoVit$BTgSFTEQH3KA0M>y>_+
zMxNDGdl3!qRhZ>yLq;;a143K=JDvpRlyj*f=7BFqiMRULn_j+n@ddASxO?864czo1
zLc<^qOe;kxVVv^2PQ|qG5cy&7l-qz3U!mg`3wxYMncZnj3=E~UV3ZJeOv+?PkoUb+
z76Bozcw~LDUAPs%lt#=xNESV%t|9m`&=$GDFxf^KSs-;mki@zxA52a|Q^40M!2bj9
z_s8LRBJrjuhbpLmlkW%1Q&xgMGaDW*w{Q3urd?cI{L7t%6^aE<?>+aWB3XQ(y$6y7
zY?PT<S&->3OhRi@8)swKJ9_L&rq6se)oHRX9Ei-xxgwkCS394!5w!x^1-B4W@TPfr
zb+ysrr2?&*^W9qV4tcEG6*tzsa&!g)M*_S?+aidihRExRzWrWw*HHC?%=FC-FsDEw
z0`7+U$>Y3SS77<Oi2d!u@XOf6%Dw^4hDyobjN{)r-|Pod+Gn|iu7Y1k?UH8db!;Ys
z_(>%xca^|V!HrXiN504_ubflZ8O0a+_R^I7eU>r~hBxWM<0IwiPX>e|adFoRtIG@Y
z<ezIso*i5Y^|qh8vc(-WZ(d}=AaRpfkh;UZ^f<1J=X%a?>N~^yCW+4IW{dk*@^s%k
z_bopWN0+00$5fqS>GA7VYUURU>T!qS7;2aYuW>iWO?xH8L`5gKGRlg}?1Kf@-zFy?
zo}gE~x%T)H)Vdpm<xa&PeX36gJ=`2cjKzVa!?I{@u9K*if?r+rxG`9zpCLD<UhLj#
zDb^-(V+5(#vSnRt055~bM6w|0)@9-K+uUHsq(V@jAy7g`5rclS7f)U^{cCdBd#|gB
z0W0l%qzK4m5Wa$e)t>@})Yb9F;o~PnChBSrk%TUuQG7~KHf4X~k=dgB7IEg-5Wa3!
z)zWk%F8a9oO6fMKH5u}5J}_QrE5MYf)B+h#knPQ>(hSZ)#pn%VsIzL20%Cw9m`QfI
zeDd|Av0RE*M~;rZDSzw?cgqg&3Lqv;`}O`T8PQrrYkYXX&{nm!zWxoBwSJ6^1YWTM
zcX<bah=3aYH~s8vTdw2{IOtR(FKK&wn@7?0$)@SI6z!4YQ>hzkKi8%hGg~>rnRuNN
z;Eej{qJH1!aVJf8U)F*m*{#wdp|MFa$m=&xytuW!%@vLG5_YZGXpJ2Hbi}3LrD3fz
zN7#aehN?$hCD@QD8vnwGI|8<+N=Ndt%lt)f4m@xo43}JAXLb6KXSQSVAL6DkW6^c3
z@RPEL!ViZjIIV}@63_~`TtL-Te#;JvmMWKXD>ClHB8L69o1~o-p;TyZCn+a4y!={<
z95tZ&*X1Ah)Os`X>ID1mMMYw5X>%eaa(yPTvT}0#c~6a4@E%9E0XapqS{5R?zzhMI
zeRSN(dFXqaf0qAstCGE$kr?*TslkjX<HNm+Vk0ez4~;lW{2EQKQhw5fE5Z5e<eDSs
z`KL3$$ta6~9Wf#Er;i1fi?EO04R6oX-%S6?ubcJu#zmUB;Ql<y>wizlf#Q>W>*Q4c
z#fw2yAm2{oz3uJ46-iBTs@=LZBXXf{Gg+&)D$;IuYfh4Cyqhe~G_tU{*_kf%Y1jwI
zLLZ>qXQjyG+=7?v#s3Y@|DRg-Y&>x;OMW$DE&oBz7xRIoAz+5U<fL(^`M}~?^-umO
z-5Uo!UGKy7a0n4aLJ|@fp@<$H#Y2MBPY})ee0=f1TvGfOU*36Fj(U;L0nL*bOEJu7
z_%CvaOcnhh1?HAXoLSAI(ySY*?AecGMW8zN#EP3xPhD^}54<mMSBaVVQOn=aDa{W6
ztTBk3KMyufcUT~x8#hKf7zAHCK-`Igx|VOBsifbm)sG&?TKhE;A;sG{EGzf{3guSR
zStBC`xa!xL+S3iHkNw_fWx-#g+x;N4p51S7=p)Z(x1%$3#3I1(V;~1uZIxb~tF=6I
z;JxuUSa{io90jgZK8kJ~e57WI8yKhns)bSp%G+i93-}M-n$IvC+-`^9=%LP94w1Ka
z`O+}*O5n$YIRlt88Uy14g8B#?i^c9g2I$yjtY2F={?(liY?8O&%sb=qQt%J(C3P08
zOB{SM{Lv-9AnShyFeun*=@wr?J60Cj!@xeoTPx*g9}lxg)>Cu>-H{T~ior#IXaK^6
zN6|s3T}6ib76cG*M)&xd(hh8?FaP!-QEr6tg}<Q7*n1==D=X_9cbOm^<b+CS02s*a
zn&V~vNfQxWM=5{_Y!P5Pg(}{_9|ig^TP=S%X!KfpT7f-m@{u6hjo;D&lnH|x)fRyn
z1?Q0?YA;kY^D&f!eSzAz)9@@2?+9{$a%QF0YUcf072x`QS2K%pcqBj6<~NGF(B^^>
zNy9XQDSI>O&SM1Fix9ysG9x9wWKSMXhc*f@9dq^CKY?b(O^{GjWB{`#;VJ}wC<-6&
z?e_%`t>Io5TKgbJX0h0U<I|Lp!cogW7$blSMEg)5siatU1ZNt1J?ZBAp0I#ETXkbC
zrL=IUXhs!4ADvci@&G|0KlR4iCiO&x7kTHP68yD4qmknHJn1xJIMfhdSbDGbp{8nm
ze*Mmer(n%ISix7YZHnG#{D^~aLnZ1$!S&rCy`cXYz%FSRzl*JwEWpRY3kKOQ^|{O4
zQQ@u6&^nWkn-Rb#<SM8C`q2B>7tX7olz4-gQ)X#!kOR;lJi_#Qe@!M+=x+7Y-cN!<
zsB+yr@SatI=SJ2{Oxe{51a1ipdPc^KdzZgVXhHcen5kb+M{VXQI_34}CQ}T?j}ud|
zS>HW*;DpwrqP&y}V{=hjjoz8TjKo2$Vp3eY4cK?^iZU{Dv@SP;6Di}%@5jm&b`F2(
zM@HCl$R8<Yg-T<ukt7$H1z9XuVSwTV>`K<bo=#w@Z><HI60A$GXjgo=A*~(o0QnbO
zj12fIz$z2IS&O?Rjl1jT_0NbfwHQi0%-6kt`J}b}=)$IM+D(?0=Vrlz&t%Hr1{(BJ
zP`_*2=X@QD(@p`E(Ikc?<)}&in|!}|4(!Qkz+7f<d53a-TYhz3!M4oMnDQ;)F4#3J
zI1*A*7wt6dnXEiD!S8Y3Gl$^UHko9>As)d-I*GMP%(PMj1Osu8Vu+Q=k`X?6{CclM
zM^~4WVpahG#*Z37ky*nU?Cl&4*Z`0vMo)SJTHuMTgp@VR;>*&dix;g$tSrEI+?7*b
zZx+@F^`BvNe0NKcT<{YnCMMBq>v;(PJl|QRP}$BF(r))pH%}HC(?R*E*&~)zl+HRx
zBVg+CH35GX$V@-oFR!0+z~;sjao&;Uf@l1%cO-hvRnNuyj>#Y701xH*T(3agzRLBr
zwXgFYzxNxcg<^nx^UZJe_1erS$H;r%(c;)of@;+W1mtH(OdBD2K6wPmE5|Ti^CQDF
z2Bk>hz<c~soWa|H;4~DDP~Kc35@SzgLMjY`e1pHaEjYbtXsi*0tRY`2;F#LU`snHE
z>S`N(j^m-wR+*cWhb4&jv0rz;d=hlI<eK_GB1iB5d87<1LaNDG@GdarVJ-j?xCPE!
zJhXNgC08XWhG%?G6OMNnVr$t|DDkV?4HRZ;BBUlk6x^fQ*i$ImGH~TBPT&XG_TVdH
zw#CKgluzi*GNkn3NBpJn#0Tw<iVKlOd#7vcvI_qmxt@f?A&+(kVtFVI133z1e$EAC
z&K&KgnVEmyfA_vJ2;C5bM#*koUIVTsRRvalew_XGI;P>-3A#8Fh{bAJ<BN-nWz_e{
zo1?Y==wxUW)8+v-_HWZU<fc=M7v-S;W_uYNW4$G1W{2mb3(O>U9~><RRIC}*ow5!6
zcaygJP?+CxoQs3QWp(?=k3*MwMD*@8qrnLQ{sgs{F<rUMhh7wv`oZu6K{8GAbl4Ni
zqRaKL+lp#D)ZG#evlE(ReA0^V++ryI4(8s3@;L@UaPo9>8PqIv)W#TIFwWNnTt9u&
z$&%h1MWaJOwEmVnp%CDf9equD!3zc&nDfR6{PLWQab7=gB1uZ&mb~YfX-jrHB)If;
zsIL(TgvAvB{?<@U)DEaX-PJ={^2!3gV*$`U$Dtsi&|LKL{*LM42aEO?U>5WRFPa&%
zN2>mH`#d~!c+CW6`1K(F^8<XGjcN?uJd*>AC5<Dvn44xB8?OVE51WaRoQI{g^<khb
zdZgYN5T0oQJJTT18OE%S1^-j%*x1;S7$MWCi$9PYVShZ+HDkM6fx8khz&^iIL+wE3
zFm(WSi^7FhqB9>yK<F2ehV9z_;^Gj{$ai}kw~Qk;^T_HidKP3UQh;rhfzdIYJXats
zXEBFF&1Un$R>8vu&)JELN>59p6wF6Aqp7R=F~|SiM|whMGQb<0x;DIAn<Ks4P;Otb
zO}g%1we%@Am7V1k8oG2$PEKCfJObq-LS6q4rvOy#9N$+|S5;3p=xQ%x{cjkd9E<s&
z&g$O@>=^;|lygt7N=cOsKRifp;2)|ciroGy_5!~v5154i=lB2P4}bqY1x|<*L9hW)
z{LY6@8F-D0Z+;~Mzc%FPb$uGF^icf$A$j;Y1z+^r=PACVnGY~%2W|J;?5|HR>l1AK
z#NtSM&_D%RJ|5vs>wNSIgO7ItW5U5#$s(ldmat(#WCGsd{xqnv|2)XKkQl4%-EcCd
z4L0ex-5Q4;%VwqWSU;NKB2$&$%^m>ttUa3){dX(@ZOg3|^rto$f|n4YGc!F6aL0gB
zzzR#zn_-)Sg@z#YX99va!}anO6x~ovE&@<EekSIRgOFe8%=gMJPX&4}ep^9&sXVZ;
zf)cKA0&oZ7o*<i;l+;BsI5piC=T|Hj9%1ou2lnk3u#PbKi)IHT>g?V@>loF*rBc&H
z_t<tDaLiUZ1!6_AkrKay`FlUZ+CUSm7+`)ElX;5on}MW@Nl!KF=nqhwPwuz927SQb
z(^w$)=K#_RHgdO@eVfmB`%wahk`a};m}kEm%hW&{d&WxRg2y(MRl19^)oJ68rn3nd
zk2yiJ<y^my)dsoA1fU1hx47d;zF>&@N}QMbhvG`1>Xn%Fl-{m%Qx00(Uf46ZkM7xZ
zR0Bk^(!b^%lV6ZlK<Jj}bdUaTMi3#9p#)b5r@)Si`=12EFwnvv2tzNR;LUf!oG-!7
zO2H6rV3~%$Wi`Rzjbfatfc#-)#TC);ACy=}h62*0<PSCW4gK?5HLz9}KyiSl|GTKD
zOfVriS@q(ZSNJ@z;Ts(|Lf_z8{c^y*e89rK_#<JpD$rc%#R;rPR~GAJ&LCq$F~$LW
zPJFNaa`+JD$9GQ%kN|zNYam#LrHa^s_peSo!j*B~__*8B@{GIp)5kIt71&sP>r~Pa
zCRosdV2;5R`D^aN!`kGw7C#NU2gXD=9<0;TN*kpe_m(W+;Al7ljyqjkl$Rb1(QU@9
zKCs(R8@7Lf=1B{G25c-_s0|uJGE3rM3=aq@P!;{Clm>Yp9vYp=4q!y-)zW4><cJBy
z+li{#M9-xWg0zgx;PS_VYDbvEo`5OfqHoZk?L!4c%~mL77YHx_)txFwa6hqfc1C{`
zb-bxqkd<{5P6^AOhS3mgcjJcYLJ;EraB=hsFoi;gkI6vlLc;kQWPQrjsfCBX1_sS&
zt5Jd^2!74-p7iwu_Vi-Tn#JK#^*|HYrlF`Mje(I-?rED>_Nk2B-QDOlJ^aOi!Z+-M
z$B7r)m>tAqWG<I;h4rkvv(g^s-rhR$J+NuAuqF&lUXTr9ze#Ac$+b+oj(a92Bmi3U
z8o|T2%VEmRRV`MK0TuyW1|;XJ+p5t*1K$s%Y;YGuq5S-~No;sd4vu9L5poT}+{cF^
z6S$?$C;qGwZu^x;q6p!`1l#<ft;jU4-<uI%MyokgDlyX@=2S|8azas#7MNPVSVKd}
z=CoJUmHYqj02=Ho{1#R1dHqt&o`(r|!h#1DwrV_}*_~q6R@PdB{}-ALJxytO-ICWX
zY1pML{Er_B_{ARue=n|LHb>oc(Ve6A2)jD3_CHG|n2DTn0b&+;o>yY;FpwLUHj$EX
z<L*}mG<T1L*#UsFLPYcXqKk%8^e7h8z$zo#?Co;WNOr#X{~_xyprUNsHc)uzM=1rR
zO9Z4r1f)Sh5d;;GPH7~Sln&`qQo5w1q`Rb~rAwp)q|2dWpM&4~|7)+!0t1Gbxv%?*
zGmdEe>8m1s|9?v;NngN~=GrZoA`it<4)Vuupk<GbvAz6De_Rl>P=~%`T=#_;#Wzw3
z&J4RVi4}15spA@&!lQM@$WFSXXOgg%U9-o;g@vcK)w6Gz)eiGx(FfT1`>@HMzD2b&
z;^c&mi5<THLFL<lgNxxwXy&d9CqzqVJ^o+PlUiqI=>YT!IS~}+NRjI`{ldb+Y?3n;
z{J6l8-J{odaQH^N`}NFkhvmUOuKWK>`%WREU{yL9dmX>@U-NL$wAcFY--enCV{7&u
zZy>7L|M@>`WJ50GS5W!2^cV=598#u!{?Z-{RnR{XHjRv8px~TcLmCC6Kc3%@>^${Y
zpLTJjR86`Mg4fHFWyQaLPG*^{7CT@0iyl3V)m@KCcEW<s`GQqb<oS<pMEr_gda~#i
zzVm#Q@9B0i@+BrrR558-Sl1OT)dG|!{T{RE<$X|emN62H%`!`DR~*ceiBE9%_;fFB
zV7kKMX!l*Cj(a_OFL<Q)Q8Dg<&kYW+aNmiI9R=@VtcndA5R>Pu?)7K?AR=gzuz685
zW^VN?_R9|<I$w}J13+Zg8>tDr2lXUuY-~e)jH-Gxo=cN}5`d#*cw_{PtjfW6^gDl?
z9Qg?m2w@HuCgjBCa}t8eE#$`0o@Jl{%Y5UZrKRPAh3~wDFPJ~GoXj1ZL?5^177YyF
z&090Um^>mf=y};s@gzljr{*%1hiOhhU`!CJ#(YDu1a~CP2keXBYy@+o4@Ttt3HSv5
zlAY`vWxq_#&Dru*%ty~+xO53(yRkqxwRSqW!b4ixf2pcz`<|JR`sm*~R_u3PcL#--
zg5}tiiolRnxs$8lCk47}Akqub3D^`0_Uo42^b*=pGqtvUF6?1%TpB-N@ffV!;mLmy
z-D+y$3zMQ(?}#zO$BV5p)26%TsZ%sYb&n?8yici~#!y{lzuV!AgXHPtIlY>B>BQi1
zKfg4+Dc7WI1g3gSv_v%^-b-5B>?0Yjz>CS!&R4A>Z<hr6$JetLRtp*Ex@m)@FIsGO
zW?eFb6~;ZFB})@7t*+}(t4+LplhJs1qMd$9W7t%s=;r8UPZP!`eQpp|g<%$cxIJxi
zdx3(;xJ4_@>!tAhDpPMzmo_ysBY*2@_1U-O)#2Ist7ufn6EC;vQAOJ5#N-t|{iWkJ
zTb`^a6+F=u--~`Cg}c9l_Db?GKL&LyD0E@||C*}uhU{z)A~ja=XM>a*y#BW)O!EzF
zK0O{$V;kfCdEEKG)h)Gfv-=-H@-iNge~5?T=l|b_{6l!6%SZA`bv#RI*;IY5caV3-
z=5)APk<jGfk<`XRaJOPca>Hvd@nZW+2eiyd(0?RTx-S5pjBq(#6BaZMx?ql6tj2EM
z`|A>1ivWF0a6|;Jvlq;~Oy;LS34`kFB)ou*vViCY{PYHsxeRCKs2sn7RWKg5<iMzo
z0F@tHA<ff>_pmtA|7tTAXH8B{f~sHeph?!6de6Ck*BUatw$`O*<PWNSTtF?_vF$5u
zFn+cgs7Pq^P-Co`c8#LYFYk>^u0O<Yysz#Gh@jW$aKY2dU<gB(*S*n0sssGc=8(?!
zu;~DR0cLl*<Hn_-adg%3QyYGrh7V!ddU_!Y8HhS559RRbU|aBp8T7MQ4%2VM%dK)s
zbaeqtQwK2zaO+hj0tnfM$9O10Q4EF_0)pVwy%*wm;Nb+KX6m}SFr+V?e-*YIe#^K^
z)g8^@+CU|sN|4Bgk)?&`>cd!E#&*y4&R_c(Zjjx-;Bp|FNduAh!28ztmfLhNf6+6D
zqZwrWY;Hbt5u+lA)#H_ne8Ql|P3AWp-oFghYe{Z0s*!~-KOi`Q5m~S8!mXU7rvg+e
zJQE{cdKm)(#@@vsgDA~>gZ1*xG5bsxC4Z+Od$#HsS?YP-<(0Bv>se`xVXcErHH0C(
zjJDI|#V<4chtQpB^6!a{)8FchOd9OVH`FsnPrOLt>1Cl<I~@ihVIT+%5^Dg!V2%p{
z;Ym0+Csd>K5ZEOY3p)Y`W=pthU(Lrj8TFzH41K=`+%S03`{L#zo>WRM`PYXH5hy?9
zD*<2bfiIr$t?m-0uhA@#g2+=hv6Kk>FJo)h1Er!OaMM3aR21iS6o}0Xzx{93GX1YK
zTrp(Q;6xH0tK%%QV*Qoz0W9xAQO~lw!PU=13!QZ89fpl4TN9r|eC{z@<x|$Rm5CS>
zOMH@qgVcbD3i}fP3Y_c3IHt6U#+LCFjVXmc=+r!jF@n7^(`XcY4*`d11ab1!;5KiG
z7l}dy|HA^%A!H)H>bG4rqD4+#ANx{UOIgBhKAH|X)eJIbW5s!SxFzh%BH3EY(JM%n
z(ct46U~2ce9~~2~J=CHFcT5`rttdrq)O-+$LvL|ZQPt~AeERh)eEH3x6ptg$a+eoz
zY&v@E+-7`kmBV#ghhYa=XEqM9)9`cAs)P1wMhaM|1FdbdHXq9?E7^3bNt<hdyIfXO
zR6A`2JTpcCCT~Yv680C9AmI-a7*-UR5F4ud^)D+;j={ybVf_LbTu|pWP`_gT4pBK3
z3O1$8Xsp*6Zg}zLjRe8rkm$vt9)lWsPc2>wWpvkS^dMN!h^S&PMl%9+YNbBPDl$W5
z9HIghHW0f9=R}a&=35|f3lvoBuWgxo(ePzvVBjN(2-UM(blA=@&mjiO60?E;2t0It
zz>jvS^m_wr?SzuzBhaB(8o|)KyvNe4a-A0s+b7<+Z@%u)_C1QwZwoujXwt>nZrZjZ
zK2~5)4CPT=yQ|ghoMF+&&C+QAtsAt4cbE*GmGZSJ^BBHz=6980Zoo0tXRut$v^ti3
zj2s^xexLa?HVdl}cjdY0^Ck&Ib#}IY^DEd>@BSWG4%3(JzuRjIn??KS?$y)Odtohs
z->hXF*QJOWH-y3+dlG!OepxpC&Fx_zIUi`mfkoW4V36I{JY`Q-G3m=lbrW?zTEcUr
z13L`|hxtOK=+%n#eM_b-_`x&q73>D_Zc?dFF-xTAWDIXYEeiiN70{WF>MJT#I^Az9
zUK=KlDPhmZ&c0*f0p}-Vrm`%7V3o7j`@QEznG&rkrkgJu$K;g)gddARb|8B1#Q`JF
zr;+Bpn3$N5Ozt2K<oK$m(HFV3G_a+P^vy>-1ooj13|AmNMhq@X=QD!Bq9ypE%X$u2
z@JmK8$RCBfj`bLqvOJK7l4pLbs{tu_&FbuuUP&<}1;te>w$b!Y3)-~~nb9rGFK>-W
zMKCPZEV+o1Ow#%^!NfI~X*e|NU2w5Z#I56_+`kYAAtg*AxAO?B>|4;Kc}G2Sl;U*W
z9{HW<>~Gofes+)OfRy8(adoP9wzC-7wxlH<x93*IuejbB_76X2_B-&{G8*<UA<Vz1
zAe}kvHFq+;=p3NnydJ95Lq)?Fx7wX$d<yMZ`46@XFI7}t)7&At(z~^~i-)*+wXm}!
z1hycs9e^OGth{{DVrFbCwv@>>t6G-Y(a0#1N421!08I2``HO`#g^&WUE`B81-VI#W
zxpm`erqOedm^7-Nh^zUFo=WYKC8&@hy?Xi?bluFxR4`+4Cv+jsP%SZx<<yRMTo06b
zc<+u+xn8sPgK|>ZuVkT*Vc*Nh%w#kW_GwNPys&ty9Vurnpqt{ef#MIfCoixpGT519
z8BBYaJ*BHVon|E?ebzlG{db#O>!eMm*S1f$E=;p9In3o3U#*i5WBQwHml@5&5#6x4
zV$vB2shi_x@bBhr-|54scbpABtFA@IMj7Z{ke8huU#oj=enAkYktJERjER^{o4r++
zy-JjS@tuB{@@Nb9dZvL*)qBXXm|lRE=Tqm%5;;bUtG8A=U|W;-v*Yx^|B;0~4J}1J
z+swl0RXd^Rj@*t;(oZz3AIZNEgakWx`gW;|zG7CicDg@)+*u6+e0b*m7l~wPp3*X)
z&DC>d0=4$-le3({LTu0cxGHe4NPEG&g=AUcBM&@>tIuiWlzZ?y6W8o{HnzJjt*bs7
z%?IS+E9SkE3~TI@H+%CdRbSq|R`8dR%Cy~lNEBYbjZNdSBcE9NK`M^mQ~J=Wt{bxz
zjIpzul*@XfWnNtN;&pq>VtadM2v0L3A>M`so~RX1U)!wtAH}8PE`Ra({f@sL9TY88
zm~%FViCWJ;B&uo=pk!NHo`+}A`}m3?>yPKznaOsn>a%Y%Nlir#v@IKy2TcarA<B+D
zY>Rf+2FO}Vh#2X*&@CoP9=+p)N(+DmVP7@vAeVdb%#~3$3YQEoV;~1}YIo!f7N<Lw
z?yw%#+p)BQ+}wem<M;?DCq|6q|5DY~e;6X8-POExkdc+ew0wx2P)|+Z4<U{oXumX7
zbsEZ2+Vbm*<}4d<gSFf&MA#jmk*HLd3KsL0G}z#vX}*u|-vZ&htlPSlLBAb7#4KR*
z2f@kG<YMiLHdF4HET#{jec$RV!z+MQT$#nHDespMYk@JTX<F{T=2XFLQ4%QWozMr_
zCbQ9FLq07NWpxKUr^U-R8fM~-+>U9}v$s>Gtx3%7q+UK0cisI@?68HV$9a~k>I6sh
z@YmMyw$Gg~y`cr^*>i1L7~1V(f0w%_wjRx*;_J;xGj8N5M@Q~|Orl>|wxIv@ICy-z
zdT(qtmM!ncfa^_nWWVzG*$<@6j3Xmwf`Z>29cSWT{Gn~@i{;nv#jIO9tVRspEK2B+
zAqoo<{RkWL(8KfVup2cPUu~|x9e2ao_PmfVyW<zoo+y(f=*sO*Agm)2NSw`;x-~Ay
zp2IBNme0bidmlF#@3t@>DoSU;eBicFHpg@6&<z6p;Kib7wHfnNQ<GAQGnOew{m&<m
z-~af8;c8*r<iG%$e@j}TN8upGD&_AhtNA~{V1qxrsZFSHwP<&_JJk{n8KBUOyzZUg
zFBg$`{W#~C$?9QY&-(tpL$B-SWCKqA1o?Y7Op!851g+rx2fd7YOT)XA)lVX#92!>b
zKbo({6@uJ64)=?T2{^qTKoy$r!G>#zb{?FPiTB5eC#R+$;^bRU>F>5F3_NTC$UDoJ
z+t)Mbu|25ILM<K4zRzQAy-PSLYMxyaMu%Uwkck@=XGfSS_hUAv-b+PIdmWOC9IUcX
z3AvLP38h*D5maj1UMbWSkTl!NuD71+zCf}%)QN0A=;sJF)}OGCop&4SZ9je5{pQvc
zttaRn!gdrV^CmxzPALylmcuX*zclTy(3~GCe^`>oN%i4u5oM)z>}xTxN(t`J74q`S
zj75{s5Z*AL-mHE@kgVfEEp}FV_Gf%Yh%-*d4@p~H5^zsaY9Wp@PR=<0^|{)?b&H=M
zw%q&JHP!gsG~B#3Q7oY~oaXuLh1feP58*?HQHL!pUh0$@bAt0DH|L&NZJ)q)d`JzP
zM09@O&>O@-=-sTxtRZ-fKK<j{i<bJswtH7x*HuJm)YX+&=dOiTfvM5gLR)bgE7lJ`
zFgm}Ts|Xw$+)nrJpA{`U6P%J~8+)}pR`|Gp_qIuG;IlZBXnTCsmXWH@ycp>+Yl{s-
zhes*%haMh583(3IWZ#sJ&8p5OC;oV>iBw!z(*3BN=f_xgd^w*K+y4^F9LHS-e~Bg_
zrFqjQ`-k0LV!ov!Mg#ej*3YQ&-hvsY>-{t$z8#G=95LD+W-+Bq>48kDiH?d!1mYBe
zUdk8lWd7kP-BbJ4I5X{}?hcr17s6pFuFkit@gDG^#9bJL-_`9p*9S<^=PN)#JF0C{
z^_hN0_nkp20#%C?r+zK=+@7}v)wV`hIDU^tw;RRI9{;K^>0{j4ox2w)CLqU4a@w6y
zG@sBYiifDOYro<8dr45u`3O(zo+AaP7UEfQy(b(g-wMYy;d&{U->LFH@;{l;Mti=O
zUY5%JLGX`@{UWcHwjh37i7)PztL7=))LOp|i}SX<w(3Jhb?dw>312R-y6q>J5Don1
zHuG+=ym-gE!THTs!1a_W##$u6o;D75OnN!2>3cv98OYB=X^WktyNat#uXN%QN}w*P
zt>OG$RreWBSdxhNe1}Hm2H*PGQfM4TYv(uXnL(Q&#sC_z$nsH}FRhxlJ*;4EC&LZe
zULw<R-QW$`%U%fXUYa|1R86g87yW+HdGHb)kzUjoYVEi`w<Bu(jaDXg;-%Mtt_RCi
z{67SYvkAHKuWN@lx(jP>m{XAGOD?}+Ki{?GR_$*;t6bfgFd|;2T#(`wh@=;&J96yU
z4%NH(dVKi!EA8HLl)=aeTM#cRJ!_T)G7-A@ruy&f4vG`K=7fvtZ#e3x9#)<^tP7?M
zWB2~f_7J!_CaU_`y6T16sLh#ush*YqzBt}Z_tHNLcW@g!sjuH0OCd~b^}pX?L+6fN
z(7n`bfAEc6y=u~Pqa3bj=AvIeQ81;oFPYfs0vWf4W}d>v&YYN=;!56DUEy(ZTXlZ5
z%WQmq{jP<_IsSW>XR~cB*>lC5&uH<k%R3Q^37pn8*89@FpBHdB*Ed@{UNfG{Em}O6
z-ttew6gwFbTilu0lR2fk;s0jtW!*(mY{<CNB|L$-)-{vCfmTE?XLh^ceEr~7XKw!2
z^<Ow!<W<#)$JW8FF+B-FpKo0s*iIBqX$`s<_s7_|cX%usyI|{R)+n0D!kj;iEytA-
z!N;v-y5g^8i9PmwUrc5CE@9s0C;w#~QQr|S)yq>@;uO#QOv2vTfIj{Qlbwyz%$mv0
zSs$j3D>7v1D9Pp7!-Jhzp3S{o$2`4H+A%x5Q^7?9t~c|Yn|T{v-A2_;DSTkUgxgQ)
zP#$5(bL9VeGhKdfrz2U(XZ1KHFPqQ^@_9Kz3pcEOS|MMYnftoLWGXnmTw>48>bKcv
z^rJs~C%w@(8a^4S+Sj^JF!pWtfU-wyR}TGP=1YG)@pXA-Vj+Rk?!x=U8~t~#T3u9Q
zi-zE4&+TcJczkJuZ`qt6OSfln@Y~4fFRLQ>1A0%N++fws1rd)4LA_P-S&RJy!4Wux
zqD#AHw?wtKi?^y?k$gU?dvIgG^rRbDa|_uz{^~WDy0tE7o<Ez%(+rQoT(#$Zp8eh}
zcj4^dN|s5roVtbWAIKDUg_26lmNRf>ol}Gx4?+0-*xTyHPQvt^?W4z{Suyy#x|*l~
zp=XU3E=owMrrG{V-9-ylZD!RzEe97ZnFvqmb2SNF56AvmV}m8$^P~s7lkR^{#?TNK
zTH+t>YCX9UsE_SyOM7RpIOzHfl3#Dy<W9Gy@KBqe6Qet}D*559n*)Xlha3(aaldYx
z?EJ>PgKNcA;)h$U&>G2=D3!mpZsUiNag>r;m<}1@)`>fN&Z;zm_cui#JjvziN$u}s
z$KH0g@>o<b!TX=r6ZD~Od()Z~o<DX%0jXB6x%c&d2)N7&sOkyWyByn+PH9_2zGJVh
zAZ+8a#gU!-OGB;C;XqFj%Vc457+3G>VUJ7ponlk`jhOZ5_KTB$8cbKR)<xvTVis5>
zm$(cYI?8En#fdp`*cQH-IZ2Ez*Hy}ZtcaZuHOQUgt}21G6cqvKaEvLB^NAMG#nCcm
z19GZGz<pJOy>j&<hva=-3042$RGX!yuV3s(Q*8<ncDK-0)12qZy#zYW5935Q0!``T
zz8W#^H|RJSTf_3c+DAbndvQ4gymz%LO|M!disR_w*NNr3Lr`m4wGu%e8WiwW@ZA!+
zSS|AA>3aB?fQwkJh{xKzdWNE^fRcEIf~r7lWk2K2c(An|ggI(*bsa<lkR0CgU)I)8
zv6+H3c<8@XD&FgUyXK{>vHW=M<uXWra5#vAe;8&jW-Ldo@p-Acn{B7suXzU1WmRd=
z;)f66_qj{VeACV&zq^Rxu`#yB;QeoY_>@1!$NxhB%o%<Te!7%V4HZ_?Uj&n##D@6O
zcjk{Ivu$ioa1Rf(rQfuCTRD_%LAO&QnY%;Vcs0d&t1b1<ixOAdUUV8emEHfMK0F!O
zjnt`ovnpa$_m(Luwscbv^~P@}sxBW2seGw1H<=F?&Bh*SJdgP1)BkUf-bBZ)pw`cy
z^JAi)Z;^k!5Ar_oVKp9qqj$}F_v=G=J-~{gk^m}8;Oq?+X&GSc()nA0|94-KaP-U`
zbQw_$PG|s}x{GUQXhd0p6Ng%(yC{4IP8j&kRZi;%yfLmz%Q!!5e_NhDT|i$yo-aRq
z-Gc5qPm5=I7vEJPk|XsbjnM6y)j@j{KgNclPkDFj4E}**V}`}^8JsSdh`)>8Xgzu1
z)OD?^v+R7Hj%L~o?_Tz^=17-ct-3lar|0rgyx;~syFK6a_T`OhO=ns@G^pk7aUAM>
z!pSu>H|gt(lXAJSn$Ei{r?336()Hd_Th4H9F3aD5tuzQu$Kd)4UA|4eUYgOnss$QY
zPy<DLov>&j7<U$-K}diNw5J#Q?_a-AwWfUaQf$NvWo2KmA%pG@{+gOpMsMkY{d!PR
zllWMFTkIlMyx!Uis~h)e)~;qBPs2<a+B$yW(#v?b<X;5#yo;(uVLi<OrgHIL`TS#b
z1gY)Y;|^1%@4T&WnGwcWb-w9*TS$*?s7fVXFn{NAUz6t-mHyTKb7C>)6W^Og-#aA%
zw5O?PAAb$~SrPV0ZYcfaVn)ttEZ;2tvcKouP<1gF4ND?Yqq47oFVB_7lDu}!CgErZ
zjhXvg(i48{_P$(JZCoId-CuEfW9+5!+#K!2e~9hY$VO=}pawAsp}+g>+iJ}3i`<dj
zPH#K56jV*x+e2rXRU3DW5E9W0ulkd{5|qVuzpI=MpC}<Dn1`>V^!sDr5a`XEpZx)J
zcTOoW;s<eX8cdfa3Gz=<YirTP$X0!X=W7{sgwd2QdIR6~IVER{FYU}15qIMY&C5`4
zEic<<C_2RDnmjf!zbzSJv!L^W<rH64PV(>e>}IPVSRY*8MW#IS^F={aat&vX?rK_y
z0Bm!-jmtbDcGip#s@^np?>AcDgiTsi>kSqHRFPi0OF7&faI*Q^D)?T<38NC?jGMOD
zI{v;<mfuw_4vIS-RvoYA?d-?d9)i=HugCH59kf5&^G~@XV~kw)G-ul5N|#ZCaN7&f
za2(CGuwK0<;IfG>wv9%f;?|V*_vTf5{fUxVoAYm2YVn$gKie6-39m{gY;MK1eo@Yw
z{W^t)XSg?`qZ^*>u-WQsNF>%si(e7~PDPAl>=pQJwIu!Mh;`B9{SW(h(sxWA;`nb>
z8}VB;x~uf@xBCul&!>I!Y03IRu6Dlp)L)nvb;_j6WILbR4a0@hSQa&(CW)G!Aa99y
znA#kir+$-(c<+Nl$QmBYuI>%uRAfyOo@N`9<yc51aKMs@a3U6>7~@R3yB+GAYgFUi
z#c#-Z4^27Y3+ojS#AHM?NsBqtI=dLC`*aJpJfG8?Ip&u_Oim7ZchKOnXv;>t=PFRo
z6MQBq>9dO_7d#RKm28BBswyc31x3_b9`MJ6!q}rcH22=0UNtK&;RKw4VFB$$SE#9U
z)D*(FrVS+CsqfE=)Py&_&)TBtsSzC^-Qt&s7e5!<xI9ECaDREU7$H2D36s8|u5CB6
z9*-#e1GuNBXJ$TP!MXJsd(BShNd#u&jINC?5OHL6=l$=0&e$<@t|ox|^=px?VJk^x
zp$#iFCwA(={$`tM!>*AWM~e4u2}{*N*p%{_*3aq>lzr3!HV7~nff@#jc-zbK1LgrS
zV*+A%3J5vy5C?VU{G)DmRtm??e}2ir<SI%3dr7S0C094ckME#=!p;+TN3uE)=J=O~
zJaI2q!(gXa#D3c(fjzgsF%{imKANu}EAbz^!T6GE>Gc2@D#J(>jB(08SFpZKL1?AJ
zOI(~`G8<0S?UGRy^5B&r!Jn-Cv}uFc@{<B<56a~}-KHa43~?^$48fC5<DL07Q&ZC>
zUqi*c$PHxG+0p&&<3L+qdxF%1E%KK8CBL`_KHr`5X+iurZp1TfwB}sup_p9h`}Czn
z@<3%im^Pn%_dBGl&<cv}npjj5xO0}^)bT9Yr1}ayg#zW4=KEb1Ay+=9|2*6m=Ns?l
zGBWUByDB}EqjS+ajAsQCpDoqng2sB9i~YzH!#)8T!+9v=azHDf)Oa(myR%itgVNDM
zJP1qIl_bXB<<0TBZ{69&QZ+b;*IFmutMa-&P{qgM-EuE`W&4N!^0$*Xwy!qNj#Brv
z1+u9wcH+7R&WqpWkm=j}vq`}IgV0L8CBXjmC+79gD09-DCdW<9_qVN+ecml}f3+0!
z{O%Pg@OGZ6<{+g@=^^?HD~;H}qGx*v1fww|r-#xB3Of8)wclQW&EdjO$~kXWmfX=v
zI02!+x}=alEIN^L+dE$vWmwo=<rk_{csMW0s%dI)Kg#yuwHD%6FZ^aXrsb_G64|5;
z^%FPi#NNpR$aVgM!dK5osqMM2ycBWwEPdv}&-$zh(>nEUsFXSTId#Y8*@XF@I@<v|
z*VRJ7!{vjOy9Te{m>;4#fAYK@f81~n#Cwi2UVdunD8;$+9yPu9{GZK{_EWWVSQRw6
zZH+Eat8Sb3N%4y0&D^I|w#}YfxNzj6dB@}>oh)Noaq+6R+-Xd?bkOSYf%wIqW@hgh
z3GQa48gJY;lYV@|#Z^0rq=^vQWiC_nZe5L168PfhIQ;qZXZ}y8XKJO!p^CSu$e2%v
z&Q9=GS{HCxjPy!2PO6RecHpacNt{sMAcyeccx~**EA7OJ8OrSbmgC5Jgl7ze<fH?A
zd=-<j4H+5p_2QZV&yi5<b(b^tZ(J$g0*6R{IIdHXyo@r~4}o%zF!9r+9VH&r2KA6y
zF0q*_c`m6p_fYD?_=%l(^69*NCJn)LdBoJYGu5464W6s-hIX1Mxmuq3&$J_Pvkg`j
z@9k{1m7f24ZDa3iJ5yG;9sljNQHwO`D@e946P5?>&<f*(wI@ao+SOfmvrl%QPB@=d
z%jJL8_l}W@<$7p^3@Me0CXY4iWdU5OWqU`%m~>#)7m~Ab^b&uxS!&gumpuNlFP~A)
zeH>8RADkOH^+U&>3asRst@IEMbL2|)&2F?S*mb>yrn_OgaGN>5;xtPzVBH1xf<!Ec
zvM4by+vS;_$0=ULnSE;CcJ}I0di_ceQFuha<EhUC1mT$eEnZUeAK!rF4CUg0sd|CR
z_Y%B>UTjpD*EJnFb=e#B|5<riJ$Z3VV|Ll$qy<q>gNh4N-mB1chej5Vkm$q0N{TfK
zT6DT0i4u^ne3`lu6QoG!(;lbUxTF7T_Nx$c&s!o)1Q(T9Xyc|^-f&Cmm3cH}2a8*1
z)5H9^8@raYxcgLM_=v+%YeMtnqN3!`@VLK+>)Lxy@3Pag-o^G0mZO%VGWYs2JX<!i
zMf-NP<kK>fcTTnUat5_4Cw9hw+Abj`YR_m-*YbLW?R&=$Sp5(Vf+b}-vf6GAPs>Da
zUjV<K)_LYzb1S*)tRFbq{#oi~=Hy*)V*lf^M}^Q^a0`BMw-j$VvWdEVqRMJ6geW{D
zKsK;>PKN#Clhl%ulHnE<b}(J$ck2`>54Jy>ar7(X$<o4JH%Y3#iu#quD$bxv0UZ*=
zhaQ_!7U*R5Cfsk?I>?@Gdd*YiK8IID5gX-9#@lz+QmOm!w7~Y0hnXOghW4CR&3?Ua
zhpsDzqm~Ox!=V=zYUYLB!Xt?F1Xo{xLC~0V{{qkx99Gaf=s!-Z34wy-Wg|H_t^(wS
zp|A^Gxt16XO)v`lYPX_TrNxQx>{#%c*}_45FUcqOzicGNTWH&}pl%v;&pKlqgp%M1
z&6XKUe6a40{%fi0(NU^LF!UZ}B^yA&a@tC@BKP3=w5q6z-fXX3MUU_Bjyiix8Gqc8
z&<x){pn*bIf)Epu3Z~BDJNqL-q~MZJ_^`ujL(;Q50HiO`Hsm$Y6whrvhZb&i!|GjB
z3v}TPbQDpI(2(lUn(+=myINw~;!_jg7^**}yY@uWKd$g8P$s}Jr&y5zg8!GFI6VH0
zi5O>XKk_G_Mn^z=ueUZ@V1_me<C~F|hK55x#oV?X!1Nw9<Ha}Ja8cFBtvdas_jzoI
zy^ZI`d<Z@8ZW)wgK_Zwap(+SC?L${F_=NTjfOF}n2(rt|p{d@c4=~p*TNqI|zz{Zf
zo!E|p+Vla0COZW}T_bs_Ez5gmUE(?2)L`^$XJ;o7V+1{-OnIPQfEgm&f*!CN++fx4
zdI607J;dDb5^C%u@~Lm3VF!0eshuKF3dDN{pm_+Tc?1Sp_iz(8_lqyk(}ONCJepB}
z8U15ipZH~)60#V0K`?qY_YTRGveX-h6-tdWFWl3<T@KWN@Q#cg9|7xG{Zu8lQ$QJ-
z@&-xJrLJcXgk&rB`%YVp^@t;Y;A`YkXxqhf?LX$R%7Oy?v=>i?#E1f!ryl7E%xI9B
zKPwCDSOB9{#MN3qfS`({aB<8gtkl3&eJ@Ewp2C7MwL7d`Kw$Iuj&U?n&2eetK$S}F
zxaliUV0^~bMno#@*HrQ~%2^8vrmg(Jul!l|P@SrUg+=RVfo3!+$->&e0lbmD3n2KG
z-XTwfki~E7O&D3rrwXev5!<EWZTGO<aFT~^X<iA`nv(8@^ULS8_1<QSb+T|+c!Os6
z;{9IoG==K}PHnT>%(%V}0S=;o!moZuwdo2&HsqOz9X2Mh5M2per4u1A5NhmMoqwZ@
z)H_#ioRDY`SLNo)5X()Ko0G~h4W;(=8uGAsY1+4Qb8lm-ijv4gfJ}7CuTHw${u%g*
z`d4Ub4uy1}I+~wD9yk?^;mSntst>K2M_Ct^YG=Fz%n<Zh<8U$t0-#aC*z|><wYww)
z;>t`*fY=XOSFD?W*$bt;%}Z)B4#Tt05k~4Os`;AsF7Px4Y=#Bd##xnRWz23QZ}Dxh
zTt>zoxsEqeVi36+JVyH;7U25z=uxO}9!{kxsa2l7T|a9NwVAeU`^<6c<5S4)Ad&&q
z>pYQzACiP-4QAMQn1-m}8L-mu2`j?<7hB+gO1e}VB<Z`GW8>oi$h9$m$LXIPBVk&<
z5KE0^xZ>VO3*0$j$4x0WxB4YD)IWIQS|b>rzHKOCV9oU4>2E`Y7V_b=&Cu4uNF_K%
zUrjA?;+)wZaA+Az?&!Zz8=o1XJyXEbJpU1%mB4oG@GswO5gvMqa5a^5Oz4QZhe{TW
znYit})YQanoFN2DR%ogY4-cDGWH&sx!PkXo(&NT^twsOIn3rN;db;4s`c3+w9YF3z
zA+l@UKUh`se^@k@Eef*a(K7%9nLIVbePXi8rd(0o=NLL{(5<o{2#gIRm-im@<w4DC
z+esu|ksw#`sR3g0sNXKEdi41hSKBBvmxl7>qJGygZq;53q&<0;KQ(Ggab51aQ+z;q
zpNCG%Q#ns%F1GQMaWr2&k`L`x`8r@O1b{TM>jWbPHm>N1e64CCkU;6K)qVb)kjDAX
zEku*c%!!W3>2?bOI|7$MMsZ)+!^UHK_JMqQQ#_w})ES&Zv=!`+d++PMU%cb86W#86
zI4O#&AZA48_$(V^{~)Eg6zBQ8<bBnUY9b<fX4idJXYIG;cMj?Tt<Uzk-4Es|4`(XL
zw@aV%aLY->-4)P6U-hKszDCwV!f-F47n-E9OAEV;-O-l0_A35QF^5`J`-0w?yviGi
zSHW=nym<BVQY3{`AKzGYp+bYZuUvTymOc43{}!}*os<|fw%2<V<>f5qY<xNKudCLi
zhjIIixXr1_KGE8zv{d`e*Sv3;yX7{HLTt6Eih4Nb`g2=>x$3wDKdPP}mO{v;TG%sQ
zSX1NtM7?HWKMx8*L(j$WVfAIFxN96up(L1KFa2Q@7?K%NKu6Inr`qp*ky6+UIntcw
z6k*GWzdJj>T#K@w*|_6hOR4=7Ohlc_4!i5td7fTjGQQrn*Bq&?a402bio$U5)`|-y
zV*9A+!RebV&99&E)D#8rv-@-;P7C(N$=!&bZ@wcAZ~V)I&>NxNn=R(#TqT1#`z!T8
z1!JDLD9R=@jEQ8}*`T$oegM*+&8R~XOy(pK{`;9VN>52JU{biQ%BQeON2@TYw=$U7
zwIF9LHNtp}N5KSZSxHk9&}C7T&k;F!c}lP8a95q{eS7S)%%gHcYi3}_)#J{I`uqLm
zmTDQGsC}4DG=QV!uT!KNmXzmUleQcsE4mLm5{T{rB|d)xSA8vRN!##{V2Q#QfW8?~
z#mq~W^HJ)ye4XP&jXfK`^{)^<^U=@c#Zwy}jMP~O75?1c+uf*y;uh3C^R;V9rYfy*
z5bPRd|3xscoCMG|bfoWmsc!d-Jx5ZTTGyc8yw|<`GcS9)+k|M`ZTm*d3@^@B;~dZF
zQIpKi;x~j1=LuteQFl+n?E4p{rU*$bd;060uc8nVIiHmMRu+X$4VM+_E?l@Wj?)_F
z+ABzHI@(2@n4SJZ4Y8P=EmpE=eT>&D`mW%(mW=%J@|#wbnvo-Bl~cA2xnJ_~06!&L
zTP!IpjRRUAOG{=)$6eW3S&yqbRXI!8Tfl91>tMN8>}I*~qfQJ6Lf&D#21i|<xY@VW
zCB{EEbsMNSV{ujT%2O$|0385=b>>~{hTTzo6rtd14hvjXl&^NW@QTG!!kWd{6M4g?
zFGclLEJ@7NX#`C{mY2BJ^2bF#hKE11G{1Oq#kaYTHn=UK!pe4}jMK0nL5|7J!GU#;
zv%4hXrsya0Px9K@NpDLZpklfm<HfFMI9WQKpq@30{iZvH1H)z~naKBhxvq&xwqk}_
zuLVC!G6h0~dfohjf=6IbU(#z;S-Qj>N=Z2FCP-6r@)ptb@qT}rzA<@LG@+EY$KKC3
zuIC?BXOFieopv+t?>tA^7DIeqW%u}eP{2Cn={Fl0!G^P`7E`wi^vwP=A-8?>^#%-t
zC#}cnYu7(Zg4>RFz7}0ru5XF^Oblg9i04t==ZFuig+`RE$-SSFQoaL>_s;qWXNxy)
zk5};p;Ut6}O7xx%(2zz4K-?%oGxjql<ok-<H$$GANI$EL;!!E;C0AMp$npjb2lm$_
z)u3~RXsTI^ZL#manc*DruLs(=>!jT>V#CMD()9-P3|65aHfsUJa0Z!gs8Xt@g@M6s
zSVVp>O_`^BQJd%fl(n?2ZD|%Yx6Qp8x08KvHvaw78bY-Aw^|VlY1!G*_h|U;svzCh
z#)>+KpNn|;(>R-c4`j>T!@J>F7<kowbsfu9Z2PKv$zIOxPtp6m&ASP#+sR*^a+hoQ
z12RL7EyWxD5}9^E4{tmK0kU~Yr<H9pM3cCd?G*>t6?g!phUej_FGIXYv6mjQ<Y?Tm
z`U~^&W2s2#LIEyuS^7}di6W_mPH=;T`wRD*;ywVCn9M67!{!K9je7UJLR3i@5npm+
zVt);4f={2~0+IUd?b`PC#}?yX(V#xk`L1qh$+$OklP9{Fjw0OnS(3N^#lZ+FMJe7W
z>e!j-r)ep=aHeWJU)xDMQSM=FL1oF-kTr+9%y^&H$L^dhwN;r7^gN)x0GtvElQ8C!
zy&ZV)61BrW>X_w5Bm0gAtX`Pu`IL_rbRYtzyY~HE#-%F7ppf04YY1kqSBO6=E9ATQ
z-hoUJs9+cMRdinD`^W9f^7KGA++b^<^3A?05%hE4EWuy>civ2UuQ<)%$EKZc-7m)Q
z?6-2mLSZwk%skLiH2G<DU#kVMv1KiZ{KEBrw%{)uHY?reL5<j6gad2TzldtUmLa_}
zu=y1_0{aJZ_D40^+egxmVe3+Os)w3J<7Eb*hwcA3XQmTECWDbL%0F^9>&jn`u*yH?
zzK*86mt}xFxysde<g=7#Q~QShd~rZ^=j=|{?8$SgW}Fxuzp2pDTfGTkd2HDWy+g}8
z?JIkL)RH;fY`eeRa~_HCbkq?f-k_~PKlr71R}m=ckyJka{2q8YH=K^-*PV`f6$uR<
zD$IP23kX^^fQD?bCi1X3QhHn0L(H!O3aEerdOW(nv^wE5TX^*K)87mMS^D@8vVTzO
z^eZbddB$^n<|Y}C!A(}6;+^8i<)_@N^zl7nE@Q5)`-Mm2V;<OC)MBCIYt{=R1|~Ku
zAv{|A8F=kSLkiZ3p>aytQO-G1yfWMZBG`gd1Yn&WRkmMrnKF~@s$Kw^@&7Q!!e8;)
zzq#Va46R@`y`^c|9@8impdxq@@qTo4G$IV8<rcII?*xFlCJpa~;B6GI?A*=}f!zu1
zDQosCnZ+{5r~?9;U!@NKG7`4UD4{C6tAz4*F*<W;^&lO=tL<;5vd(E=@V^B|cjo+=
zq(^)HoSSri(~18%Q3xtMHnn*5e-3Bup$VkDtW_JR*Rh&1ZxQ-65<TQ!E)FH20k!to
z?f>2gP@(Yu1}Xj7r<^5EB-1_&wp&$Z8=-$WfjKHW%7TFW8UP22Z&n?U4UpJ%27#O-
z3cr<``v9^>_HO7(#Gf<Bc<U5#IMWjN^WD#SLT$aOW-GJtGz6{c6FCLY1cKXmk`snj
zURHFLB<`uDH$rNL!kgMEP5U#*$TAgOZe;#IAnx%O8oCc@5g=Q_l_~-L3W*h@Hvq+@
zx&!+%h&Doc1DYaW8LKKwh6-0U9D3_=#^hG-a**JHS=xh%!rTQjQ&Z2Gt+DkrhgviQ
z!1%f-KB7RobPIyULXRtsp70HqXXzL~mh?_+X40;98ekOh8|n4ki;6n5x$2$Og{9+J
zn@`V#x*fz;7c#>*>^+c2P-ec#roy~%{eF-_(RH|8o%4O>T-4<TunSO*ETFm~q5J@9
z_XJS8ynHB;A;2@hD?Yv{{68X!(8n-}fP<5l=muoZ)FYeRk`f~0QgWRlQb<E(^`2mU
zX@w9152ys5Um%MgTT^bojs8sk0upuraEg$05POY5DJHxlk|cz9!5+Y`AVc!wlf0^`
z>g4#^>S|QcR33&0@SEXy6eJy}9G_W3zV_Y*sfJs<V@FCSPm+L{i4IS{LEw)8SZf%R
z_|(+n(>4b%oH0C=kVxz()UF+DUpYA8Gf+HOd0Wl<;H`hl$Gt?Q+zw&_|GkRm3`7v^
zb&09u-2~Jb@n=%d$}<K)xpZHJq_+74dezY=Q>r!>T$FLCph+CW^|o-N8Ykt9ef+TD
z1i{k14u~RFW&ow8qXgFt{0y;_a3e;Tt%G?Gl{AXjVR-k`Q0^G;O>2ErA^tmVwjsan
z&>Ds@br5=}#*{!^ykOS9@w86c`y*^h@)mdmr0U#cm<V~#?*K{$EcKj?+Lb?02f+*k
z95SzZQ<H>o&bSqS!obLgFACh=Ys~1x3fRlbl#-M2S|*bW(fm%;k|6RBL|K@oRH>ei
zS6EU)L1VD!k{gmuWcU)N%F}CI$)3rK)!wGplozs<4A74k)I}BpC=2LWAPS3yhbf3E
z2P{K^lY~@D7awrsrI24k)hwWz-(>(f;oi{TAbR6W${S9EDUZ;I8-WT07REjF8N6h8
z4*^vBRarFaA)b-Q>Kcd$mSE2*`7}i^7+DG@mdCJ=#pj)QW8n^t8mE;9;nw%DspP+K
zFM@Q}C229@SV*VARgm9u5)&c2f2!93CZN3PKi`h9|9q=Fx5yY|G_*yi4_~j7rv_~C
zgq<IYy^!~;T;tySu+*ed`*m0n$T;yp0H8s`_PMoSdv-=@?fmgr*;$XyhQ<3+bab>}
zc(GnHdanVBS;Lg+9<3AcIkBV9vF-^&1j+UWNEH|v8MUA9b`HmWFgr)(b+$C?`1L%<
zSc>0DDUuC)G8@mSok$w9by6OF-n@+-8Yrdz#5OT+%aw<kOLbOBI}3yCKPHoV!{z)@
z`z>*mT4RDp!CSf{F02YP^dOMyGqs`87rb~IHZ|ET09>aR*m~sp-(5M&@F0vKGoI~R
zg#si{!%ZLR**IYuUQKUX*r|I^tOd%jOig)xWjCiD(e<p@!EG~dkS!wkdDB_M-bPNF
zRE<L^5Z!*8eW+r%XpOK!>S0zf!Kj|MCBUBJtDn?2%)8=HmeGW1H4hFjb>##&*Bx~Q
zeP*>QFp4y{Brvl4ue#8-kWY+kqDuoodau%_Sx-Zq0u^y+*XoLTdHmgKE>>EW6}^FO
zquNn=*zHp}AH!x6>&y%r_QJ0yMMAxFvr9-iRQ{Bci5m&C9_Q2;N<c6G0QrUnYo0jX
zsf+<;pt1q}5T;l8u-9)_BT_(p^3Xibfv}YMMi<#N;^og`GXTIh6jgzugmGgt<~E=`
z8Ds`AX>lk6dWNOHJYh(`;*5ii#z<U&!ib(gK=;<T>#8LF%h8b$BdSQ4ytXkrPmK5z
z0OS}&#GF3d{(_O{%1c#Mws2b{Ut&2^j!(tWD9H1TX_+I1us91lUba;CRp*48z%*@8
z8D7ZG&zI8_HdtvvgB>x@3PtyUE5^eMzw2l(5)4d{e{`RAQDcH|L`pvnV8(~9kFFto
z`i>)w)QPv1#=hUYpRZ`GYBFC@R@Q_9?YC+n^}W1`zJfzerg&uM=PTZE|FQ(xyE*-4
z$kh=j19TltZtREXMw7bP+uO5rL@=1W&^@!Zw)O`e`hKMvyH8(`75uMd?nh6`v9UE^
zj8Q95FvoiH&XSroL6aem+3KG0;Ex{&sIUE`vgU??V<!n-`UHHeD<uuv-*9~hG&C-c
z9yopeAdg>Ri7Iu(<Q2^omM?b4wk*DF1_MTOG1Zf>FoNE46%SMTZXOXD!c%vT$u--Y
zF~Qj3h4PAuZ!31MN7KH0hjlEN6<OO;zS&T-@`lN3NG)t1M&4pD46_6^UgK+Z_&4tz
znQ*|V{9*+}yLpEEI%>l87DkzAEcoX!`1Yh-w4@jT{CPdR!~Z5G75=4?1&Y@ORXvyx
z)Gv*NP$$r$!}_qG>)}ia?fv@+d7sn^fuO1Xc;dtH_}}5Y1<q>?t=t$cNkA|sgPCZc
zfeM@T87WNC2be)hh@Au%5ppEK56?5;beqSo<0&9*Rc727wL+izjdUc&Edm3{=R`#(
zcOy8ZU7NapUZ$h>AK9p?b(VX8?2grZb{414B?qhx35=?L<e$gQR@HC$#XLIFUmcVl
zhdnwpbDXKlTdd7kCc|ij_aO<t{4uE4m<@St5Vq&h7?giC1*5JLFShmAoFZX{9;CZF
z^)8v|BhzOicV@iICof(`H9Q^)OEx%^zMwgk?uIT7it|*(lR1p>kNHo5Tc_<`ymEl^
zR5av)y8b6G;XJmW$(j25eH<Dd8J$!1PFhB;z+DT)>iIvu9ePlVn{d2Cqci%}<RRXs
zn~9Oa@l>pnix!Sr#}qyiwF6n6)}O$JiF$izz`jY<H$JMu<=%8hwpQg4ix9CI$B^;`
z$HNWg(Nhn6!wiZub2iWm@R_#}fO@d>Srt%Wn)Pgk!}Cb+u;=WA{Od0CmJ7+2*Bxr5
z-9jO(bgKWQAZncZu3o2Vdh;?43^*^;Hx_h9b~>V(3Yh8pyF@J^|F%4>S4-OhvktYd
zxXIdo_YRuszqYib9$A22eiG5j_Y6js(b2>n>wI^%;BdQ9Jlt((2wDy|Vb8qkdcM!r
zVOd}Zi&jw|LPc4SWq}HG?B%?W0@?k-#L)V_sjqO0_S>Eti2Jk}3???leym#Tn)tt=
zhC1#4D|p<z3|2u`If@^6m#7#(JQuC(U&8?b?Gl))<dtX=fUORBY@l)Rug6rvZn6Q=
z1W+?z4sTQY*Bnq%BKGvcTb80vTc^as1}f2DI~bs&m_MV9&SArsSW&fh+w1Bhpn+*-
z0ND7uMymjekoSANs+DQ=T(p7AgqOm%d(pd1{{iqgFMBBFldh<qhHZ&P0T%W1n8gs=
z^d*N{cya`SDU!v~rJ`J~Tw`c7$*HihQG8=Ew<8m%Fy?<?!CmzoT*CQLI5TX|2#i?R
z3d)d0$+z!T<}Tx!>Iy?31JWyqD1InUf(&9T&ts%3VTIeOVD56-hp~ub4R{JvIkZo3
ziV9|%g4tJhSmf8`?eYah(5VP;P(c2@Blx82eyeddDnaK7{Rg(GGk1^n1|cCKX!Ou^
z^SFwo5Me(37k}M_lvUA$A4mrOVqvJ$0hcs^-?B^SmzLY33<W0<8i<LZ$pC*cZmUE6
z=}P<;jIt()uN-`8EZ!BX6g42Vpzf0ja}mOM@`N^hukOXcvMW$?hq`e^9!6SIlUDEs
zToCYayN&|&lK#v<L!<)a03ZyvxECj9#;4!*6SlXkUa-M^N*Vs&m%Q*hOOk&%DgxIc
zL!n)uB@8jo7~Pl#aOL2|WT&8!Arn#J{v@q|fIf%C`)swGbCnH9XT3jVBBFMvK=y}s
z3O1p96*ky~ONt=CJeGs3WKUo8afX7?1)O74V^FtWdsGGr3X)c+G-Iq!kK1&WfpE#b
z+8Oy;{)P76NTCjx^OqmDeVc)6=tXCrm3F92eJvW=1nvc(twWCJd8|!33Qy$*MWWZo
zq-g5)68S$Gpk#mzM-3)kukk$w8I+nA6pe@iAk+E4ATt5QcX<?%$00vHo<jZw&n3Ns
zvp^dj#!fO60z8f@Z~|FXWzpzn*}`j0Sn*N-A(3Yjii$B4<}gFq6@mXz9TUNjshtPs
z2U}xyU+kaf-^;|H83x5>xO6b10fumzMd^gak2R#3?QMwMA<6vQ8~(wZ1BiuYJT~{R
z_Pm1ERNSar50#etfr4dg&P~Q^t86Md2ZXC;IMYfRE%`OukM1V)0%Hp`9d{F*XC@~#
zdW+$@fNclyncpyIp_#Wc%0xuGW501+bHiK#UN62u&Ep@^At2x}MYn7S;^X3{V=d6W
z*%eS~;-UyOW<UENlXW)Yl?mxcr!1ytLqkKz+4342QJ`tVJRt(&CRqe86#?5s3g}w^
z!~}tjZW0#;=}ESsNsz^e#d4CF1xz<$yB^+|RomX1T3DW4U0r1zt9#Em5<X1ou8!Xe
zmF9q2e{Z%Bv*sU)Yb5MyA8cV=(xIQhVfQqa6Pj<`YWtv?B)%+&h3-|h{s$5wXk%AS
z6(pKhl-$al-*M_&FpA$AMr=Hh<uFepXkT{WSkwpxW?X#v$ATN+y?FVdPz*^tIuF(t
z_yvt?ZyAif)C#}M<x?GjI}bObrna^iW)z|cqNOOyI5?3Qnd3M#mA^+RB!Ri&zIMRy
zY=)327mW$40YZyCgPSaO`9s0JRYlKcvvG8GVWXBg+zXbthU!Ae!ddeQ=ZU5^_DNU)
z{w)eN_|sY)PtUF~>T*|q8a8_78Eho#$BGoO<fpXYrv#NOEl$;DH2cdV2KMGOI7aA+
zCp<vTWd6Vct?VHl)4f4Mo=l^+1j?{JH9|*+Hz0om;UsQ~Q1}GCFz|f))L0*iK32#O
z(419t&D7OixKD<+^z#leQVTXPdGcULTtfJQ9;Nc~T`TA#>t(QSK+(NE{e*&Qu4EpQ
z_tNT~e1UZ$D2cH&JL%~a<oa|TjXs2J8RjU^CKVNLDJ58#*Fa;;yxzk81a4#ggH33}
z%X`9}KmsjbCBL>cB<o%VaBkNG2O-5W76rZ=X`S_I`85O5;XTHZX4`1*e+MZXrJVo&
z*boy7>}i_GBjecrS0%pbP%CPEGF+66F;S|#2QwQ=?_)nPpSg)arU?{!+dcL-N@ZHQ
zf!42IqqsMKR7}grzySFGTTY+etTHwB__Ga%S|0w7*9(3X_LXTD>tg}A=PidklTx1q
zfS_Rgh4bjb)KqE#I0-2fsd>E~Dm+ZBucrptF!Jy={m!^JsO@}-qXj-rbN9nh@0{R-
zwU*#vJ`V3?P%7AQ(i&>~ze8qkVzf|AlK!?@2<k|?FMh*5bP7m2z;HbaGd}W-i6MdQ
zd2uq={Oa;;F|un0(4#{!fR$E-4AuV$Cc=2g)Ibv0Q#SYiDfr5xtK>!7D_?1n7_~sv
zeS1Pt#U9j$AD3!ktPx`lL!FLwALYQnZ~f8<D7x@w-u(A-RLohNj~NO&mw4eF_tq6D
zd3S6?Q9vNnM<^$@zuC*U-lbR5pZ@ump?)jK2bG-v?}G^iIY<4c{TeXxlb-n(XjYPx
z&%mEyPa35n<)K_`C#0S0|4{+tN1#U_{n`4>uQ?k5Yt5Z4HEZjwfDp*if-b4EFtJ|^
zuGpz#@X#|)jgNn_751r^@NJn(w9T=~I4AE*ToTgBGFTK&{x3f;<>S@aXhjI}Cli0y
z7*q0FJTVtn@ClqhU3YM~B<Fu_p4}E$bf|^cICxYS&V8V9jlAag6FK`4PW0=ck4vrC
zmX3s|!qStnr#AWoQB@XTD#LO_Y&+M3+{7b6hvGm!x^@jy7i9m7!pN36=3_n*V9x!t
zavV5;P*hQ~{Pj)!Vzu_BQKjdiScpIC>pfLP<2umsL_oLV2~(u0l@(3eKo}RqJxC-{
zaLQsD`~{K7|HB;v^mw#LHyjwZ={VDrl#~j(x`d50MO18Ya^HaJhhl+pm(|ozK!y^(
z4?VX;Zm)+sXwvrf<x5nNoea<jhSvFpgYamfc5srgBdew3=FcnYF;DGCZcFDk1N^|^
zS6y{$26@fKR3$WkcWHQ}q=@l+S}+mgB}TZH>}|@(i-{A62rMdYZBPQG&_*CgIQ52e
zJq@(MyQ>OHOHq*khyYGNAoAEwL~;&-O6b?@9YK@jJq%U$P@JPU+;&uv5LPnb>xO!i
z8bZt0!n+XD<W9SvfPbj&`EIP)6jV}nU9t$XCDX3KcB-sA@*UqM5$^VQ-Mf2`9rZbI
zaBx7JaoImzhF&ZNwB`o~70Y%|6?hl|s4SW_pFj~Fs%3CQ>jPB1YfrP%3U>dNW8@m&
z#u)rgc!yG1akMO84R|h~Q}%o+S&j)!g7`1Qm~BhF2?IZVq#jMR0LLyn+vGQnXjiiH
zDhuFAn78bYI3Q7_cnXDKgaj-hOl~t9c$*AFGA?3Z3_%jytj8Ut_tFOx5`uX8Ah$y>
z3*de-heg4J{t<c7O8ne38T9*5Zw6qr2*h*ovod3s%Q&E=E1E5Oxm9&z#LG~jk@yMM
z^AA8SD9Vy=z*8RZsBkZhZuq`m$6T9A5RpZ5d#17iOWz)WptvC;_26ZdRF)Z>ZgGz|
zjywO}D*ZI3?`B{D_*fXI??TBi7*IYgHy_Kg)U0!QqtH&bBmxbpXrpVkF~_b<ak4^&
zk$J9who(fMGf8!Ub~Xy}v-WwMHsEuZQvJDSa8WQmCI9DWY#B?o&wWELMh9V#iY+F1
zjHV5pQ$(VQGaIr>qJLkzz|J|5uP4c6e86MWWRiEAebn%7SM{~)1Ao}K08_)7Jrt<M
zj;%+R_Y$*bco7o@&c#I-K}Uv1PZTH-!N6GCYRHpTUe34t=BHI9QIwn|*cyQ}SyTs{
zRd70)xdq(CLPvvynlVq=jUe|#IO!QEPJosN8rgr|HCmjRq2n~5dH93@fmavz!UP-Y
z=0*^ncD_qqUBEXktkWqPY=2#zRj#BPK76DQUi88ImJAVmcZo0(Nbdlx=><185JPb{
zl1EIg{fB2L8@xBXhJ@-al(M^y@{01<yW<VMbQI_qK&@~uOWW<4ehR3)0g7j>sF8-N
z{%-`2bZ*CYX?Uh1L(Sk-KI3wYXukAhLgZTZ2lFDa7@Z<%sO=hC=oeho*J%@hN+N)9
z1UX?5h$$;8!|i&)Mh)dgEQHf`GY+H<+uJRK<|Uesz8=<ZxmiEx7+A4Gb@lzS4p|$8
zrg*3bG8!6mB0DEw7eubD(=#*kh&*zE%@x-9Hw%8Y=B?~xXIWyhn~ZlAQ%INXXWS0Z
z$ed`a-t8F!vWk%|XK01DLk?a!+SX;Yn1n+kszM&qkdQ{?Q)P;))C-%55+lJWAi4uy
z1kAf(L9i{nHZx;+o%`YV*csqFvT?VQp5ed>gas2<D`);0q?j$;AL%_m)B4v6gh?KC
z@NvExV#t@u$~U8qI7chh?xb(P{CQQb;eXcqsCa2)%^Vh~><68*cnoasQ)pN(vrcmA
z)T!Bqw$|K?o1g!QBZ(>7Mit<32WU3;`qa}5%q=XWpg6os0d(cAah}k-V5G9Q)N5A6
zf@~yR<%=*AHKcE^bU$-8O72+gJq`$9zK4ntE|CpIuDv>#*-(65VmpMRS7}Nav(r_K
z7Eb7Efl_bXc{qLr1fD~fvddxz>yqvoD&vHoLvaJDq*2ARP=u=2Aq;Lyzk-+7->hG3
zivHRcv^&-6o%!HlhU%lP)IXqX(_ToBOp^Yix@5xQ>(oY9b&gK}L>qz)ord2~RkScJ
zUFu&bx`m^oc{13?0&t+aI%Q}DaF#E^GS9oTp^(>}Mu3;sEdYVMkp+~#?^*4%zrgfs
zbH29BF!~gl=Kv^?4R+ly*YyDdien0kYX7b-S-{OLj!%s0!^(m}v|=AjgO)WU>`Z2T
z547(IjFmqZ9bFyC<I`QlLd14w<|Co72P;ax{?7|$%#{9)rvInCD}RT24g1q6EvH44
zC1nYvL$<P2m?KLloTH2yTT+TFA;vZ+6(u9eI+o)^q?jyYjAf)SN|x*lO-z|A)5K(E
zn1=UO=lv7j-`?+axvuY+=bG>LdG6<4p8L6<&qqs4Y-`p=nG*U#!-c-n)*nwro`2q1
z8!>TLMZwCxsj0j#aJ{0^Y3w^fv~ULT&*Hrms0{~$`CuTg?SL&-b3a!C3lqxAI9sAw
z@V<}P5_b2aBNQjzOgp~!2K_i-*lGIX;b6rUfq~-29L=?%Z&LOlG}ae%cvhwy$z`wi
zjm_US^xI!=Q7~T$jq++Os{QG?X;W%kyN<IPs?Iej7CXZi7h9Qi<PQ>#&T9}^M9pQr
zVgf-vL<<lm)I7w^{yC(JmzUm{Te3F)-_oOx9UoE761`LBv!0cd$b6@(|7$lVBeh~1
zFN(W!s2a*HIy-HjyEVE_4Z_wWvoq%$RZOr#tBW4g>%k^5+}yq*6*kx|-S00*8#`+&
zX7E_G_>ob|zbI5?{63nQG(*Srrj^Go`@8DOyKR+v%z|pqo-?R!H<h^*Stla@LWC!u
z;lz*1!+PqZSXB71E!a|fEWdk9W@es<c$7rpU~ejv8=WLOOHu>wpl^Puws25aD}6#*
z%MZg=uR(~$UJLE~-u_7Txc3XxK}jXIAF@<!iCjgJ18!*q`if(;L732n9Zs!NBuPA2
zx>QJG-J7X>B0f;|%_eAz$#ydwU@_lg7(A6y-I3h3JUBSmQNG_d+TOu$w2G;E*QK-`
z0`5(R8H@zSmHqFpUez>AZ~rX*jF?)T(>?8){6#%E^VI&pL@Zstq(URr`pMgnu&^VC
zimp4&Eh+>$HHeE=vR_vPz2^xn{a-o~T+KU$HCN^7j(YgSTdWSx(|f4e9<aBP0$`-D
zr$4DnXDA*(#Kh&N-Uyl5NauB|kgm90IJUEAg>8LOE!4sOk`IYyv*qT)s99OZg>z5O
zoVxwE%{O8FvC)C^-yk?K&Bp*@Ox4?Ns>K+0x#6mgOfq{4-4P*mH1AR8?Z1=kN^<3N
z({+Y&NgW+Fn_hSCJbcPKQ7a*|yClUpXl`(tsS{<qpm9S-LsK)ZGauEP<lU6!>GSxj
z0RS;8so@`v<bSzr;FVWfDk^WR>}Pi|QdfxW*o}Dk<2~v^XBmM&<@zR)ynzd5vdfBH
z8B3|L61uMr%|s1EU%OEy1#&OoAo^@*kB{lvraEp$4%c~K*!-tALp++gidl+(*S+45
z-$7M7ySh{~Vgez~<vJ_NUXC0MN%bQ;r^UvuJsc7-UdNBhHO3xYIC63ZLX%{UF3Z_R
zM@C67U{lL|IEmW6&UA3#gXfPQzabu^$v&x%5{|6Xl+p0@^LslmkVYoD#-@hyuS>~1
zFJyi8=9%Jpe?MDj(l<PuX&Avh)!EtE9Iz+Id8tM&UDjC_Zv&1)i!S;d#WxrCU-(CY
z6g?m^bX}u`*;GF@cNM>m8lcG9E0=)6s}R+!PD&M5AsOh~$TDKHGFqJ=F<iMM<k90=
zFXMHP3vsu?7JAns47a@+kNC&L#Tgu5f4{@&ecp6cq-boDg82R6hBKFkQ9T~L+#zc<
z8*`3n7Lo1)xs8VpcX;XHE9&dBr{#@$*H_K`KE)RmN6(E;T`xeFW-;Q~m+iH%QWW+H
zNlIpj25vgZD1pz^wpqD?KzJ4kJvB8oZL}^r3M2te^XSnOi^uLIE0e=<Tw^bO={T3!
zm1oo9UTCkKv;qYvrlp6zSFbP_9>XIeGShb>rMzCXhuw0lO|(*1)u~Bv45Pi$(h>S3
zB_+vU+V*9ceLS|qY7Obm1IChW^wRe??~*X=4~Z@xHQp3Qz2q&h({-w*^^B#yH||*B
zQ;~O;_O3;I>%O9<eHo+-;8LIT_6j+W!5lUA)Ev^?Oy}7YkFa?yJS?Y0DZSlX5`nic
z&PzYFf5#@mu^ikwlk>k(LjB1}@<>}EHu+2GnUF@hK+6V!*P(dTl&Qf0l)R#{)S}9$
zEDWq@zSQPsXJ=rC+1U9{Ru@f-A}H~r+^_`A0ZIMoINaY$Ldv<9wq1;>Angw;VKQ^T
z^3u@8^Z}H?3!452#Mf7TvSREyHF4I-A3#apM=B~R6l6^f{P>&D|Dac{F{(?9EYv8W
z3MN`MbNH*+(A96dQNIC?L=WtkUvR-_m-*gYPiEX4sk*+~%E-spOY+K&O#c>s6$*uV
z_uCD3X=~{_cZFBX_w%kpa@f?@e4<CA-e4y9sIjr$X6Dq~kh+>@z+lT3qC-v_t1+j_
zx3#AyWz%OW(MS43^!E4N!ZHit$2m~@a+Y0HNw}O*!x}_V+}rVpZf{~U$B-j(F18N9
zbIC5oHlYT%ncDefVZ;tZn)SXNZC;kXbYr%GZ2^g80NkSXr6?sf$!RAb<{m*J^}Fn7
zMGI8<=tns@vO&0N5~-+co26P_*GUphqKjkim?#H?Z)N#7ZJT}HmX>O>^YV(y9wp|@
z1h`!wI{t%onJpQ`<MC}l=!R!qv;=^SJr<Hr25egj8~*~+ca@>8FyYYH+qp{hw-9bL
zzhvb><Xs{qcAIl`K6QFldX^1)R5SGu2#h-{eWwRY#xpdw?Pj+hgUqB!?bz3DhX059
zUE$B|pJrGyLo=Qx1Pr^@hwcTu<o)~}EjXmqaWFis@6{iExupCV>8y^)zeK)*c<e=p
zUZCRdvI(w)bbiCPbhoHo<Zq6nh9i>ij?;2x+3X}E&5`9l)y7VQaV8U?Xd$_ulAfOK
z`M$!6UZ^{pU7gwjx?*lNxy0U-<A@d`T-UC#`Y!lfEU7wT;nC+TL;dRS*U01ZhYnuJ
zv8b28*&y3%4}31>C5$egztHF=#aWB^VSY=Af7vnLY3BCwaDQ<+0<QQ!fDs`6mZErW
zZtgZCwgE28c;n4{CXdI9`{4BSjJO-!k7O#giN>l9oBjS>XJ_&Y`=@5D1p=bm?sX;y
z6!RGdcRf!1ORx)1lB=_!dYlX&Q&toQZsum@_v~Tn6XwCFt*x?7S;EBH>Z9ug^>O2@
z@>bI0LG|U4f~#Wb*E@=^h7|b*3$Mu(3OzR=yo^EUU6er5!^=`!cO#>6)U5JS`P|v^
z8Nn=T%6NjY<+WCTEtUDesMRXyN)PdV*9|YKBvLcHG{yDU*UE=FQo#r3c*;V|fvHg%
z^U7%OT7+SCz!6Q~ebCjIBNc*@{SND<WgR&sR}$NqoWSsKRgm1I9ycA}C)Ky99jdp?
zTK2zmsl`yP$amcY21hPa8}q{yJFHp)SpN@4k!Z4HY;aiEuCSzdOA<{tdgXJv+q<i7
zjZx~Ld=*ekNe)JCc}>=glv<8<x}TVs*v5}qUc9{N^|j(~2Z1V$Fg7xh5>kit$8_3=
zue$+erM0rWT<n~V)4q;E$QD2uW-^&}MMoLLFn9!~#0rV{f}UBp*H~@;^j+1Tba2&$
zAcC@$Rn$I>>I~H5_YbTKFO(5A()6EBxX}vlN93TCy3p=|sa_Qj?vqO`t*v)%xf?9V
z=73_D4t56Y8K%?i`ga&kRbs-!k5*4eBfc>!cH;ObZWm{zt&TzYQI(n6NLXg&Q$<$i
zNKj!ynuBWUiOrrTrWV30%FFjcR}b2Io<pOvXcM;)h=V0C#;LDY+e*Hw!?2qJvXL%Y
z2NmbJEGKw{b+08$x2Z_4M|@m<p&$#5V%V_d{P6K(C1CHw&gO49Vr-n|N5T({xc@zM
zJj6?qw-$k@RNAv1ntmGtIqeYaL8d{}&>JgBnvEJlzz>13TYVf{lG{^X^O`yJZFHy7
zf!ME&gELkzB#<j0mv!$!mWBDR5MFW&16&*d$lF8ov+eXkEub|6`(6;uv#2*2c(B?$
zdOMRL;Z9*EFbpb4Bz;nO$MGbUhi}@($MY8jhSbTh+(*`hWY-Np9~h%kyoa(Om-&Xv
zt*%0=dlAw0s;LEoGe%#e=NIeYKRe!nWdXS2!~TTcsV%a=OPB&YQ{?-D978C;2^t=7
zIrFT)jX2E{+%;KoGm@r=LR$2Iw4|7qj!ch_o_y4wJg9Dtk8gvst)tcCx;lL5ho4VI
zeBGV;ItcdH0fXF3b>GUg#0_DTo2{+wMGVFfmNK7!K!<Dj_*I@&QLpyq;vt6@8#ZhR
z3<%guVYkEPK=+TuXTTy6wBoLS@300sEYHd}Nq}Am*GChvZCy~GYIjLX+LAE1J4~(N
zgC1c*U1ip~-&sS2h_(TkaUWk_bJZKW6Yqri6VVcb!Ahi;5xFV=&kIHDQkBRqj&geY
zoAX-RAue(6Yiha?zhwi(jS`vctf8+x)T{89**od$&sia~`*vpUd>6w3x)h)tlX*5H
zAEu{E_>{b%iF`V{y|WXySSQRXV2uy}!LR3vPQe+~%(?K~%dI{n52&AB?GKKT5%hfU
z)bJoJU=M7kLv-TP3RD<2=F`O?BGBh#-j|H3OQw~>I{nYXedah9<S`oQyGKsc@4F@R
zh^aP~?zeCHP$u-SEJYpWEP^Jbba-~qNhDI?m>=H5ZfUMb?sQ}$cTU+zp1`lpg90{C
zRdDi5CR0(-GisO}<f31Z7}~yBz$QC)-q$tWFzY+Qu|_uH7-qPiI)nJQw;SS8ps0be
z+mnyqOaESE=J#3yf()nigTaNagoHME^)1$gDPd6%v@cMC>tq6-29gg#J{bxG3i`dR
zN>LAw=bt~W9Sr>?xHia)_-$V|VbD2*)yLaxy7}@xbbW_j!srK_KT>|(4M4f*T|WLv
zZ%<!&(Qt0t7fDezy)h}9YQ=ye*&c5q%$SUUT@d($U@#p~77H2u_l8l=_JQzVJl)Z!
zn+cfwzv6Gjz~D_7*j_ZO?0Hbz@4Y(3`4oS2u(B)(=k!VM+Tipx-`n8J1^KL`qoTE?
z1#>eVbEqvLtI7^Z7K_|QGWqVUev|DP+?}hF`qb8&3iIczWjyK|ZnFi++ReyHZju3`
znd;qjBlK8$fuwj>9x};U^yeguiTl$aQdH;Lbr(m&u7q1z6!yudXAVVcrnm3k+4H+g
z-F#pc?H$7b_plZA)3)~pWM}#dcvv?metAcCg9ZN1km1xv=!VF2R^l=J_V)H<*38vj
z9}GJ4RI3jX-vKMFKrB{Wk+e4-+rU|jEbzwk8C)JWz-1m=jC2KZKW7)0yKUbBq!L;z
zAJAAKEx|59!r)^eZRi6#J>{HIAYkSk5!<ybX+!LdO_dATA|?vLD7y3Et@FCgqBs8x
zZ^+#wU{UBx^)}I3?^`Ax2^lsr+_U`)3q*iuv%K_Ohqmr#H*5T>Qfp3(<n@6$xPEm1
zwPQz)>?)C)<p~1eV30%Mwb6$vc2B~EpcC0SIac6!5)u-cQEL@RYes4m9KDX+`I{Dx
zuPPp_qE&*Gvm&Ass}PozW9O7z4o8ev1Pm5BYqW#*Jw2O9lFqc~Ir9Di`cw7iHwF~8
zsKZ-V7njVJp`(IeoU#ZjJcq&bf(oxsHRk_1w1v<_w$__3^OJ%5++xzJzO?NCaN<sO
zg<KUC)bzwRo*)%6p<*Y4Q&UlqQmeS@XJ<Ydi)};3gr+{{-nBXOhgMF}!b0%y@UV7j
z#^aIwP+||ZIOA-8R^MT+#@AY-I?UYan>pw542pCiv1sxX_pEoyl8Bb|-W=#Q5!B&o
z>4zR!S)7<qoHuQQrkR47nVG{$U0=m~<N8Kub#yjfXoy|vt19m9Lf0b$#JApL#R$qA
zJ}<q7qeu^;8iC&v1rYZkMZUlM!@JGC`zD`5=El!XioCU2Clu}Ck{VK%!~Xz>Nh}HW
zV%kRbveaZao+n3I$wt*LIXWps0$s+%{ugcXrP~d=c29pUQ9m3=9{sCp$ZJ?4A2XIa
z<}~0p_Q10)gji}l?T)wj5so>UWBKt)66eiB6(zMQmI!--eNriE6t-n6G$XW$=ODH{
zZ4?n0sF=&V%M9E90I29sZ<vp5dg*hb3)VVWnIy#v;SpC;uhr|`GtToYCqb--M^dRs
zHNlC0AP}B2)GYVrgX_mk>u>!z?pm8w<CwFH9A*Wi_cx8q-g^heLtkG%`8FYtoDIa8
zJCuigMXMaW!NT20ZS##D_bQR$EY@GIbD1;jnziGVZca`-{j9$LJk(eT!FRhiF$<EZ
zZ2{ymd~ICWOzo=S9rJ4k>W&-|CMrs9(|8ZAH`t|@`xtB!9FYXC0M^@-^+!*4Zcl9^
zAjxi;U<A2CVk_Vnm>CTX4aLD|nV*is`;#z48epAmq@O)8`q0o|1Pe;japv>VLwl&n
ztLv+bg~O|E_smwGt{M3#{$6ou>gxq%?u8UZQfl*2`L7o+82x$jdn_zUdJZma{51gn
zCxKAX%I*i}2Xg*vjV999^E3Ndbi|i{@l|6;uBpj5`n`E}dSR*iRqWY4P&u|9)Rs;}
z&butxKzsq${X-he!obj`MG7)lLe&#8OjItWl~?3SP(dw9{VpO#_SJ8?y!~fe!}YJm
zMG8ru>dH=v%ot@|#*0KEXOFy${P`s!>Griy6EA<%=<49t+8v_Uow@t-88OIbE8(+n
zD)84OCpWJ3-|az#SMLAap8fOI&)5k*zKGcv_h0MtYs9wwdQZg5-xPlaL(m{b#0=0P
zeqEd6uSx%RE4lsufB64qD84kRG<>A5a2iFme}zg2#LMi&c8toM*Llmq``}M^aLxY;
zSZ;9W8o#Jx)->@y$sxYQqya~;e8jI=1oDeph#t)~(LPsM61e)pR_3;5WyjCo{2yGL
BL0$j=

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 1c87de1aa1..5d42a25212 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -1,6 +1,6 @@
 ---
-title: Onboarding using Microsoft Endpoint Manager 
-description: Learn how to onboard to Microsoft Defender ATP using Microsoft Endpoint  Manager
+title: Onboarding using Microsoft Intune
+description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Intune
 keywords: onboarding, configuration, deploy, deployment, endpoint manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: article
 ---
 
-# Onboarding using Microsoft Endpoint Manager 
+# Onboarding using Microsoft Intune
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -29,7 +29,22 @@ ms.topic: article
 
 
 
-This article is part of the Deployment guide and acts as an example onboarding method that guides users in:
+This article is part of the Deployment guide and acts as an example onboarding method. 
+
+There are several ways and tools you can use to onboard devices as metioned in the [Planning](deployment-strategy.md) topic. This topic covers the cloud-native architecture. 
+
+![Image of cloud-native architecture](images/cloud-native-architecture.png)
+
+ For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
+
+## Overview
+As a general overview, the following diagram shows how to onboard devices using Intune. 
+
+![Image of onboarding using Microsoft Intune](images/intune-onboarding.png)
+
+
+
+This topic guides users in:
 - Step 1: Onboarding devices to the service by creating a group in Microsoft Endpoint Manager (MEM) to assign configurations on
 - Step 2: Configuring Defender for Endpoint capabilities using Microsoft Endpoint Manager
 
@@ -45,7 +60,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 
 While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. 
 
-For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
+
 
 ## Resources
 

From 1adf8966c7d559515ac7be469b379bbf50257920 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 15:41:59 -0800
Subject: [PATCH 447/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index c9aefb4d2b..24110d064c 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -29,7 +29,7 @@ From its release, Windows 10 has supported remote connections to PCs joined to A
 ## Set up
 
 - Both PCs (local and remote) must be running Windows 10, version 1607 or later. Remote connections to an Azure AD-joined PC running earlier versions of Windows 10 are not supported.
-- Your local PC (where you are connecting from) must be either Azure AD joined or Hybrid Azure AD joined if using Windows 10 version 1607 and above, or [Azure AD registered](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register) if using Windows 10 version 2004 and above. Remote connections to an Azure AD joined PC from an unjoined device or a non-Windows 10 device are not supported. 
+- Your local PC (where you are connecting from) must be either Azure AD-joined or Hybrid Azure AD-joined if using Windows 10, version 1607 and above, or [Azure AD registered](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register) if using Windows 10, version 2004 and above. Remote connections to an Azure AD-joined PC from an unjoined device or a non-Windows 10 device are not supported. 
 - The local PC and remote PC must be in the same Azure AD tenant. Azure AD B2B guests are not supported for Remote desktop. 
 
 Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-guard), a new feature in Windows 10, version 1607, is turned off on the client PC you are using to connect to the remote PC.

From 9b1b09bd6d2268390478073a8721157b33b5a9f0 Mon Sep 17 00:00:00 2001
From: RavennMSFT <37601656+RavennMSFT@users.noreply.github.com>
Date: Tue, 12 Jan 2021 15:42:12 -0800
Subject: [PATCH 448/825] Update
 windows/client-management/connect-to-remote-aadj-pc.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/connect-to-remote-aadj-pc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/connect-to-remote-aadj-pc.md b/windows/client-management/connect-to-remote-aadj-pc.md
index 24110d064c..3e360929de 100644
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@@ -76,7 +76,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
 
 The table below lists the supported configurations for remotely connecting to an Azure AD-joined PC:
 
-| Criteria | RDP from Azure AD registered device| RDP from Azure AD joined device| RDP from Hybrid Azure AD joined device |
+| Criteria | RDP from Azure AD registered device| RDP from Azure AD joined device| RDP from hybrid Azure AD joined device |
 | - | - | - | - |
 | **Client operating systems**| Windows 10, version 2004 and above| Windows 10, version 1607 and above | Windows 10, version 1607 and above |
 | **Supported credentials**| Password, smartcard| Password, smartcard, Windows Hello for Business certificate trust | Password, smartcard, Windows Hello for Business certificate trust |

From 6a996a03768a170cca821eee1012999a9fa3e787 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 12 Jan 2021 15:57:03 -0800
Subject: [PATCH 449/825] add co-mgt image

---
 .../images/co-management-architecture.png     | Bin 0 -> 136585 bytes
 ...boarding-endpoint-configuration-manager.md |  18 +++++++++++++++---
 .../onboarding-endpoint-manager.md            |  12 +++++-------
 3 files changed, 20 insertions(+), 10 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/co-management-architecture.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/co-management-architecture.png b/windows/security/threat-protection/microsoft-defender-atp/images/co-management-architecture.png
new file mode 100644
index 0000000000000000000000000000000000000000..4ce41c73a709ceb162be2aa03305ba66d645aa8d
GIT binary patch
literal 136585
zcmcG#Wmr{F*EYJ5kd*F{mM$qNMWm#=8$pnkPNg>8T_Q+#cXxx7q=0lw_nF)0dEf84
z&Y$o6Ir~!N+OD<coFngXkFkOk<s~stNl+mW2!^zjxH1HSSO9^*=OQD4Z&rnf>A*iI
zc2Zi75C{SIoq!HbTAB73eEIaVwA{O=8*u1^Jd6l%TD1_!bBMI~8&%h|{UtX|74vzd
zV?nB731>5VxCvu?jq$aR-;;8P*0<p$I@83~)3x(6yThtYE+2G16xNi?UpUsySJ>pM
z?FGJI8qCf7{*Bs(Ww7<_^Xms>0s1H@Uw?#VpV^)t^yY430w-w<m`AtG)B$2y5bXc`
zM593EmLSys`*C;Yl$I0!-w%BkEzkd6i=7<SJ%#c7-?jJlGQ_Z7xcI1}^Og3v|8tXR
zud4J%Js%v{Ey*EF0wsG2Ep^$3pWnkCXqteB8W0thFtmZya{M(|=ieeZ>1+Mi(4I9U
zy24+vDNyj~M=!vca%dm}f7H~}%DJ4fVc$YOM-7;kmzVnn1iWj(olfJAhJD!|2Cn5w
z9-fk;f^B9}nm#tGun^Uup?Ueo&fNb#&t0hqXUfdX%;LwzLycO|H^mn(-Sb{Lcap$v
zqSl+*l2GbNU)mhOU1n!y#$Cn@7VrFf)15D?jQj5(j6h`3IqDjUir-G?Acisjwiza=
z79p>}zEfGr1?@4GqQ%MLt!X`BjGg*-tPc|RXui5^l4fRfOiWBK6AJS4eWhr>YO)Y`
z!}bjgd(%Q#V>yb~pj%oICQJVoTvu3F_&j=w{a{!s0d_^dY=OJ7)qCZlR)ncLhu8lE
zXi-Qp;pFt)!a~pTB8MKfcdoZQ9xAiwf9Y^gSXfz&%*+tqzkjc(sfpah6byR``nwiF
zC-87nu4Ilvg><G5B}X~IkpJ1FoUl^K=;S0$ZEbCNZEavpO^w8XDD1J+Z<Tv;3YRC1
zE9%v`v|D1|dErj~uQbkow|@BhYj6;CW@e_mrY0af9D^1t&%%=QpFR1hoW~?c(dOsp
zW65|=O-1QX{m+6UF+YCL6_=D4nV7)q=;&nqdHSE7m|7G@dllk10(}E5BQ1#hcY`BQ
z0Rf1#IKhgkDbkj(ZE+E(DOfh>ve6c?vaq1ndeImBJ7vn3lmYV!P4o&)7SA_|_Z<H*
z#z1<UV4!OMjH&reG3;P*jEHy1|Jk8spsK->>U%7hc8Oz{dS9w9GV;#-6FW?3;IkY2
zp9Nuyf@O&lZvSKU>C~n1NsTD~v;pZ@+Lv8INdND#sY}5BJ^xeGlxu_Z@4@W@J>(<2
zN+bXEAmIr<mBsPCq4}v1*t5PPN!6=FT-KSUG!iRx|Ial_l<Zbj2TpHc3ye@Q$kYB?
z|KE>T&d`jhJbq#{@NlJ2&M;w{e`n99kj=;uaVkORNDB)9JJ0WdYA!|x{}UJWWa>cd
zRLHLABX@Fa1?;#y<|r;h#~lelVxE$)HN<l;V;Kt6ZrmNY2w<Dql%?fzLi;Cze1Wy@
z;D6Wr`(euUUju-h4Lf?^ze4`c1^=%wf&O3p{r`O<$_=}8fW@Sf3Lm_$Tg|(~a-S8+
zJy8Z4riQ60IZl#^oW1QfTD3B>%)rw(u)R#_ehM270yi|bh`cS^ARfbwW|Wo%;m?x9
z;BY|9RTtY>dGMwF(Uyr{sDXQGuF}5)d<Z$=1|t7y6qAx4ut2EeAFx14Ezt6$l|nt~
z<s5}F>BjSroN83s9~w#Z0h{dmE0;=&OnpH4Jo+n_Mjp5|{X!oFDM@KgPsWZv-LXy~
z{`^W7*65=*3)5e|2$86Y*E_mI;}ajstfD;pnNd4FCr6U76Cvzm93V$l&B3?C^p8<U
zkh$Z8pb5W_1SX+U<a^IgvP)qfcJ4-$Y567y1@sw!_AFU?$EL9OxR|i)OAz#gOJtYu
z{7i%t#N`5{Ex!}&-?JvaV2U+4dU}9O@SMlV@t>B5N!HE5tv^9j%MS>VVS5LJK#x&t
z``I`BuVNrD&oyHi;>lAcxEEF@auoZ%ZtSm6hOEPe`_7zpv^~<#3}Ql(;<#Sa3hNZ5
zhd$mSW6#P!ATY^rPoiK@rF<p_J1utzN$utJYx-sM@P4#rv`ey0NZeI7dYrp`woAr@
zXklTGyZq3V0`i>xhip>6l9T6dUp0Fz^7?}#Wh~Ny$sXC5w)JV62X2XVkCgT*P4mS@
z2Fs^#Caep}#gS(Q_XQY8xAQY@#YNAyjBRDJ?7}D_aAZk7MQ-3Opbq7i_UX`&!9f<j
zqbjP>&(<RWJybAq8O%jYNrXxJ9av$g6uYJ0T+bPv@N0xSYM+u6DR>Ha>AlJ=dtav3
zRk8VCr4Jt;7sSOP7!`gzN4?6uy=N3~UL{n%A?uw!i}Jc;K6-ac(y93-t*Td-4~UY>
zAUrs8ML+XPY%m>(y_u9tlY64KVoz0QU&C5aixyOx@h5cbqK5#b4E}X~8{Ueny`O^4
z`|yJ){H?<IW*`UN=8Z2!mqQh-g^(S$_+z`c=PzGt7aiOhhn9;_V=~~p2L}lPyDx_@
zwz`(cmE4!TN(-fo*s$z=e`?^+TmQH?tNl|a^GXKaYWXIYdwC@$__&@r+!6A6-O2id
zNl~zL%8Bg8yH2qN4KhPMhPyVIvf^RMr7C1_y6DC)Q*Kcl+I#tOy7qxMgOw%kpz3Fo
ztNzMdeZiXB^p^Vu9$#9$Hp|(ldP&jIIm7qdK3X0nG^aI7PKcptq<Z-LXzLucQNM|%
zFW$Y^Cwo!JK(O{O*uvLICKlqO`EBbqo=$A|#<{h*cw?63Yvhumy@zRyHw9$uY%M|H
zNU+nJXoSE{|Isa;1g?<D73Dn9_^+V{Uff{Cg)7DKQe3e4VhP9GEP+ZOzu{{_9a)1!
zHiQcZ)>*M$$$cQA)GE*ruEzUn3UhaTx(|__o*A7FUX-i$?~uWRMx_`Q$D)mNRN?e>
z-7ym%e(eOqP4@PC!uIGb!mG(KPkd2p49u%N#81HD=#v)nbBst<F(1lQ?S*>>1p<+4
zRy1JWu<H)eS?yU%$aWgyYesh-i`{)!y`4$6K409R`y+my_%(`Q>t;CCBj(?SZ`5I7
zepOQ!sKOkoeG3aO?D{GhsX#Jd>(3yaiTS|5nydFIVtz7nd@OG{CYF^iYYz_#ao1z;
z+IeLj-e3bFk?ArCj%ZOIV`05=LkUi?U`Ei{;-LGOi86>b`{%^4Sd{gk4BL6*x|@YH
zP4E1=8!}oH5Z%-La7H|w%H7*>hEcW4`w86*5lJT8tipSz)9M*0bKm_|Yn0T%=Ev|B
z&VV@rwQstTC9#3EM5o=;#>4uVS?8{Mqy}=D_YghdVwf-6J=0zYvFH4Oo)LjloVFGi
z%J@TjU2XbYW=PGOkLXu6euN%lFE9fT5vOFn?w&3g1K&!MX6gVEg{i>vamGpC<ZaJs
zp(Ekqi2T()-4Bi5-Vw4U_aKaZ3T0|vpdp)B{-wNSo|oIW=H^wF&bW5{<F<+uh(<!J
zt#vjNnnC~zjZ=QR;wC10+g>$%Xue#>stSMEGUo{H6LZ#LS1LIc%hdebqYG<GDB5Mw
z9I)K!_{1ID5!L1Gai0iIpV)$RfZA7AO02tU0_|&EYP;`PljlfPpdGEXons)pmDl0V
zy0N{z|DkEmA!#BC0p3^E_%!TqO?dRR*tfi86=U7D8KS?}<eq;QXi8ctroB#5ih9|f
z(qlNk-nz6kvXwO|`9_dW?kPc+2-^_W;z;Reur$!|%Zt3dw3(Nz{cu~h2~Qw*^Ey^6
zdHWqvDprs0dz(5P59RK-g>*C@K*W}kFLPZhU%1g_@R}Af53K)Z2(7>n*af5XnAM;7
z(ydc6gtjfls+Gx;5A5KR(BLwF^^e+?dV#b_geA6Gw*5=dl<laMs$%^`>`NQJDmV06
zh^px}@Gu$Bl%k&}T6Rko-XDds;^?dNxB}BASxCG5jw^DrL8VSMJTd3;cCE-)o|k0n
z+hdF>(9Ua7O46Eo<zI)^N{DlWI<#qM)91>fq9CdHci$9tHIVcbkGX^bPj(0`f<P$b
zaau%0!^5}07Jr;Ce#CWbl3l+|+nq1KnQjzf%qSbH;eIEyveK73<5uu5piGyShKQf3
zLP0K)l_BnYlB4YxJTNV-p;i_fXw&rJ2wD#L=*KV&;^Gu4i)xEe=`uT^zK%$Rb%_bd
zUfG?CQF8N}+YCLuTvOnC;j;>~35KpNf~)+Ox-9-v61vP5B>PsOz|);Zi9}iZvt|g%
zGiwu$&&$P>+zx6nFN>Dojeb3Rg0w%5{>@*{kK3x=d{Es|#jl>3t<Cquiyz>8q}$Ry
z3P6$ySp6EvqN74NKdNO?MhZYtjnHbvJMg5*6n}kwiC?6uYN%ocFo8<H0!z5ox{HZS
z^Qwt8E@b6P>}#*^YfQsyc=><?X(uelT{|(eUfUKK-us}&nNj=KYaXWnBe={m!w<-Q
zx-TnvPPM0~5P|Dkvp#^Gmg$t!=S>Ofr6-N8E3CUiSSNQWCT?KqLhd&hkgld#k<F;X
zL2H|^;WCAvh&TFzKYLDVB*mvLZ*Y}<8Y=)aAm6g}+H0v_5s9ENP-xU+0_C*M6tzX3
zr1IcF<mR$ny(~Cax$415(0r+`CgsgF@RYPRt&q8eLH1|o_fM2!LCW&KdC%is<=Mc1
z_Rh><7}*(5|NT&rxKgt2-U(!!`3+^fZV0RS-{?5?FW(&mO7qmd<;#{j=@leQGJ?Pk
z6H}2;PweQ&w*?~HPUlIs{af8wpVO;)_5USNpY!0%pQlXNB){{|h1DwgSdZ+Bixq^d
zY>S%MlUslE?BZ@Y+fB5NqzoK^*jZdq%AKB|5&TpjUd-AEUo9+8CS>*p)k%D*<8MO^
z7s}={A+uDcgR<Nk&$|4w-riG?ScwkJ4fdR@h0@R|$M!r9WbwzWZiW6UAs84U8Sf$3
zi`ZI~RSwn~lPy)?D5zX5nQ!qX)y|Vu6P4pB!1%WB#p(0@gI{eP*J2rd=X!{LmN7$V
z0zfr|GdzlAHR`eM>3r6zT@ylNbYQio1>u_c8k&>}H&3QitMyc@cTWX4bN>q(Y~`>;
zNx3qndx-2yZ*;l3nii<O#bSJI3XV?G&#EyM_uAaC*uC17cFNAQuj9IUsOD4^Dr0q9
ziraNO7^chM3))i<p9iJ;l$acvL;H%4mw!#)DThaniXZ)F6-0u*Qaq~?wAx)eHpn-<
z@Ri|}p@eB|_1W676_)A7gRhhG!no*aR+<|3)p0?U5)1{fr~x9bJ;>|5H}A3SOT?4#
z6yI60_MTUVAW=q^YEPb{SpJwX7T0BdGx#=Hn*LTrE^KFNa4p#2$=(h6?%o^udym`M
zskuD~khwNXs7|T?Vu=l|VHib<t1ttOEjI0rPbwI}p`La-z06Wwi@iRar%$r=F1~(d
zCL*OT<!||gi+^rJSq`r;Nc?gXW5l!>KAq-ejN2Xu!%P``v9JRt_mx#b`(F@*JH1g#
zCSzx93d;X;Gy6<^I&hg#Cx??NWN;?mGaLm@t<6ouUX5FGo=`{C3Tgzv3BZW{eFW2}
znjkLGP0{k^UW}#~2qlpB&ori$1;x+gG_ZBu?_*JD_?tbg<Qa{;xdle<c{bE_!`G-i
zk`)AC<et;0s?));t*LS=+mcWT9ORlVWy@Aq)a)oAKFGncBwPMmVB(xuHE-{g+bfx<
z3=J)-d%5%CHgo8Ih0=O*n$vLsB7A$IN2O&;UI?qx`TR?Iul2<n3v1>XDaAaYxap8G
z{oNATeyh-`>Yj8tas!Mbn;@taol|f8`Hx);gDUaC*q5&|j%@NytIVbTlP$G+P9+*2
z#7&9zfjxX30nUy1L+$EM9Si#P-LtPvzp{$9)~RHrKjKTtl)aw6)cb5>0ur?B0~JQB
zkJQ`$gWSL}0IhZnGTMlh7pBnCtZAdbfK=DL_NsRTIzZIFmB=;obzaUOg5Y7?zvTk3
zi}1Xl&KkfCX;P{Q{T%Awwc}+C8bwJj9ZfsEo#?&`lhZ-#)xXxwntw}=MQC|7FH~`P
zv>z=GP=_zbCnUJ^g#aan0Ay6mpXB%F4E5}^;!8^jV(E`~8pe_*wnzd(Cv~@l&u#x=
ze*7P#(G$mY<-RQ{WIf=j(VY`V1uKsdbExZ6$zgjjmSIGFzoE_0`w{twchKZ<HK}s;
z{+^6DLE%#<$n>sO{xmQUd~r0pOaihowQ!xX2~H9Z_hOAVk_o5=N8?NPUbgyJ!B8AP
zc4^Ye-lG@2c$QN^Q<rHxn~kty_`1mUuGuaOO`bmCH!RV|D$`G`s`Y4r>V@y4ry_{-
z1^_B`=ip6;oZLDo_dYNg!70N^6mVo%g}VK&w1gIU{On{JPy}|=72-6dEH6qr{T5}?
zWLe%!qGlpl&*qiT0aw@$W$gsUa{Rmw$I85ZPj?wae%L+2En<7-3M(l1=UL4Ea%!UM
zvL?Vu=zg%$&jv^a{n9GH40tr>4_O-M8Ax}tubyOqEd7jq*B5+W0SYdl(dRYT*#-=x
z`}g0xN=y&Rj%vGZb-1u8G-#(fZ~OdtuO2LHN@!~=bN4~LVche^EOP$0jWd69{@d&!
z8=(P1108?|>Gw4(X(WIdfzswJ07BE+4@IIi9ROWvx(Hz^lXBLMo)kOY7ScA|_y_NL
zd)1Kxx07)F6pdAV>#mvA7AcqRgfcs9*Ejf9K#W=l=y7K3Z~mpg0w|_o*+wTD)&KNp
z&*%pyZA}Hh2QVmZ6}e^fkRTgwU6#HY;Vh36e(%9AGrrP?^tN&S<EOW?=87#gX+V(x
za$VCouq<Vk*thhZTj?D+&LsWw#*w#PYvv$J^H-O@ExG!Z8HoV{ifc=`$}sJLlfXmL
zq*x}PC$Nag55S;P1Ow0qh#{*$<Nmy!C)%VX))s?TgLx%pCG|Lp`XJ4;7p;8m0<oBO
zDn(!L?PX;kbSv}h7q{urJwwka$jXkvTj6f^!TBfRr~zU|gGjJw+OOea?_e*9;IdBW
z`Hztau}@!pfrqN9ruGJ~n>jfMJv}`ySXjENj#?O49PbxwCmNlssx7Bcot>S_tE>G1
zWhPD?-7()`B_ke43o39>6!?YD(@<026H({J4s9sDz<a^YE~%wOjEaV)q^Rh7c)Eo)
zr2BZGBlSZW{F$4d?;ISIIl7AD`47DY$jE%v*wWd&97JqvVd4MbyQrzNrQKfOT9Ope
zj{`DNxi95E+$X41ureHNjq5YXb9f_fy94?NsD#UK44OAXfWy&$A_v?s^M9E;@aX4(
zx4%{a$pCOM<aN^XBTC$PL+vQPU>!hEZHD|W4aWs7aTJnULI5;JU{X#l5;G&?8ylO_
z<Jip1r-DuD7Sl4<CbqVb5#)j?jmd!Okv(n@`$ylLeKw9sIdeW*7VhrrqY)9Ikd~fR
zQdd{sdIf%LPZi+4a@s`@ZKFU&NB0-+j0C&mxoBAPqY#c8!$(64rMF;(5ng~OM5_uo
z6X&y8d~Iq<ySBa_opABmRgWqDyVvbAI|m2<*jU`Ow6x>jZ%AG_{gtq{=L`uAjZRMw
zU#PRCVPr&+mX_xCyy5^%=@WSPlSRibM6W*Q4@87Qp|aVWWAVksDP!?(%PT9z3=N-y
zD>yC24P(g(|Fbj?S?pBKbT}y=76nB_em-}nRl1;y#7e8zL|vI^qtjmQW$on8pY~VB
zMt?RoRyzYM#NWN6Vq!uSbUEzap2$AwL}Mpf#{#krBl_DAlaLVD6@*E}&W<@TF~RS3
z^HM%j1cNejiHQ3H%U3_Ya61HXafQSbx}?8<9VQCZn6uDhTUvyho10~qWC6YLZEekX
zHKXi~JMz-o5|Dzifhp1m8X6j5<fI{R@JQd}Qh71vbAy7O<|<@9gG3E&)Z0;!^hJ=r
z)zu}NDbWcP_HZ`o^q<AX!7(mh2TbUxVc1qkULM1T;VW*)x5`SKiHR-yKmFLc4GxGa
z-c6_;mxn!Zj4D`IScb6cEqB0Cu?Ptx>+AV-n-cO}Q0Q%KZ9nh+ffp4OML<I8oSdvg
z(FP5NK)cIBJ($X=s3>O33?$v$+|u`smlb+DX?akb_va!WA1>P<ank<d<BDO#+%w;9
zu|j)@I1Ha7p%X!iG|JX~clh!9JdmlEJrHnm5^_52rrJ3=a&L<SL;GK*tTj+aOL4d!
zW1&+BA=um7&$ao8vgygR&l>myOk_)%+?)}E$002-U@N_k&d7)`>5HIdV|(UuxQMNv
zDDz``JPV$TJl!8h_TxvM_Z()c7Y7Sc^70Z64qOprN(mPphYhb0kVJyA-ulTp>jIi~
z0chWDcZ!jgwws2PRSp=Qb$G4y0_vrgq~!8#!AAi7T+g<#XG--#udet(J3==7hQ2q9
z*yQZ~=K8v0Yz(uaqGGPu4R<tMFeoXBXgKAZKq8FD=<FUBJK8>Jw_)w*2-C;MCr!u=
zhm^Otufy+YbX1h@<#K9}d4^l>_ALXoB^!mXJG8~)a&0{8ZKsvKzW(v$rQ}NM12D0m
z<pmi9g}!K-pa2|M^D&9leXa9JZ*~%x)#Ycz#Ku<m`0#)K{@s7J@$=5tR<GOd3Yo3v
zY<q(qqQoSzQwj}L=3~Z7jWr;!iPzaI9na|4W&@GQ%?JAWLJ$xT42Kd}=c>&4S|1+-
zg*=mj`IeLBat@wTfA8fE+LDoyLcTfM@xvgUSsza3zWNhOcXix_xDB)(Tk8kyU;Oju
zkKsyd3rt6l_W5}dBcpXJJUj#ig)t=SpIu$>KXV!1-!kH%ic3nOwN%ZP=mae_#s9bu
z#H6(OXQKDhvhvK5{DDU8zHoL<PS)eRZbu9zhA}scwYDqzpXRGkARNy7nzET9T{#EI
zTxO^lZn<dcrMkhuP1jbtf|B@bTcsC3G`iu=+X?}JLgecATUS?C!>!Tut3J`zUcsYg
zztt`Q<sfK=y!mKaM+%SVx9Vy<0s;bLG}0jZ_1-s3@g$!psiTqMk<h^=;G>d~pngv=
ze=jyTUL7_~LxY1mQf(`%DY2DQ=3Bi4oexzLR;+&JV)RB}@LVDHF)ZDhn3!nJ#Gm!j
zo~!I$uJ{n*pip`q!v&%fTdol>Vi0j)JzfQos+Zm&<;kauX=w=%uxgv`egM2T`S5we
z-(FH&Bike2$NQDclO>mxj+vQf@K2w;bgF_vQ{pVUsUiM>fkun<_I95?zuXmRayg1P
zTxy~L2A|4j+j)Jug+)s0r&aaAs2dtBvBZZx@$(RfMYGO^6$DbFj~{~zRPv0^EY=fO
zirkKTbZ6o(y$earaokbKh28N)AMbD>hO3?LKEz5Xo}8R?^ii@)B(mvYk$X`vYm~lp
ziiJYAQHJjuxZKYyfc^;~$0K}?ZyX#dVLisFm%wWM*;}v3JTCSFOG;RQ?BQioc}KQU
zES(-69yA*q@b%p`@cT`<JRk2buQn15Qa(L`2$))Bo?UL(5d@8llmsSO?s*+TFRfU#
z-jYf3ReCpX7;L%x!w4qC_xg0D52!?Tk@{e9ak1QD!eAon?Nf1yjLsAuE7>K`!kPTu
zAfzD?K^BaHs}E}lwq9?F_74p3!ge0U#KVJ+M#v^ECibKe$jxjhA@wW~8q1*2(HRhG
zXl)(7;=K?Y&)mkTr2~a(7Xtq??g_zv!NeqHVez8%;f7L9L^P~%AU4nN@=$oL#RHRG
zKCRzFR2X~6OX!`=a&xd+QCv&R)^Kv@w{PFHhyKK?8>{{CqyIP-vn43Tg0thf($j+&
zN^p;F;CUhtL2(a%uu#`ESCOTiSdyRrT0#Pei;L^{c=av6pkT+ZUx;jMgOn9XZIM*e
zTra&cm^V#3{ZaZyM>{J_`pWIsB|MKif?g$#jEuZfS0|{fq@WTMe9Fc)3cMyDG?Y0l
zJw3I2T3q}*F*^FokN1xOcXvV{_9AhAxcfCF_XL7Y!~wBhcz`cbFA)b>c5rB@0*F&?
ziG}(*!RqA-rt#?qwd)p4PSbuY+`4?;<=Y+Uq#W;%PjlsP5DuqZ)iAPx7J~6^)>*r4
zZTZ-0^UDp%xyvnzW9Qn5hA@z0mc1^8S+pvNNO?cK2EI4Z(nMKVRRxSQbZ$;_vDJ%I
zOG`^(F|n$OTUS>XizuIEb7lP3P%w0x6L!?igF15>PEKs#p>Nu}@3Hal{F|GFx_f%4
zL`0qe6A=SPW@2V`vUy7#-99~yzr38zVKM$1os1tDc(R-;p1649#>R&6&ZG|&H#cs!
zL^xL}LQP0yBqjm7o(}rN|I7mDhiwdLJb(3ygjvJe4_Fu9KR4qsyKc#ZdogsBytm!U
zrkAnWk_nK_4P%AlmOMy=&<tS@;DIOFiNS3Ks_EYd;JAYSDwtH{cW+c1lQm?7)*-nG
z*(-r035=hdl+UKU(roDW=4K%H)q-Vxa}&wM#ihQ<<GG+9DFwwLQ0dIoz`#HU$UEgu
zdjwZEH`E*)SYN)#YT{z^_=}9;JJJ$_!jj_EY}-Sy)85P)(9cYv(!uZF5Dksl-Avy8
z;bH&ORMN`I%Bb}8fZ}2nqq9*E3Jk69g^`|-`M>c)$}(v4rhmmnO$`fn?-SX2K)mGm
zysbE#A>215H(4l`T6?u;@E9^C`bZWX9SwTaybHBB*vU;$D00@_^6gQo?X@tZ`SK?&
zr}RBuz5O~;t*r(@ex`_5<LE|bnfmNjoEAx&k{Zry-7jICs4WDT7#KYzI(2q8pJ`E1
zQGXvEM*Jted@~=@cRx350tfw`J+^*#Z9&VxKqDYPtW*2x4FF{HvaaOI%gf<HFQ~ug
z`L&M42NvcRcE*P(>&meAbx{l8p|;n=BMUE;Of39-#v9XnuI+u;u*G3H^@0opFd#+?
z5R32b?^i*R1yHlRs;a0d93LNqmabn_TXu(wTH@kq;^N)Xz{yNN+m%SfQ#^ZKN_+|n
z01*jgWt^MKqsYsZ$8R&Y4L{<qE~f73KMwtQu-V=>E;{uxH#eu!vOn8as<vHeRsYzw
zzyHb9%q*+A8i9`P#|wayKYlFWkeTf1As!uNBO4JDS118t`S*gY1{`E_)a&WnAd=iW
z{da2k4+@e(%X!!*{73g^w6e;gh`ctc7=7NS1HqaBV%K@~sO9-wHra(NFE0y%>XuUw
z6%-WC_GU4G)=Dqg0N4xz-~w!4y54Dzel#;u;`5msNU1cylGl5~yZlkgy5{E_mlx=%
z-BY&jbqn&C8pu3K{}`#Mvav0ey?)p5Bp(5SXb2}&+`Ya2G1vu3VC{TazT8H<(j7e1
z&e^%tJNI+J<qg2?$mnFg?d@<$f-Y>M8N#8CTcc}hJ)s~K9%13*2L$6X@NB!i1LE_!
zvq#t(%k)c3OdQqD#N{*STHTXVnLnzcapCYNXYh7CAWk0wnfQ0h<#N|r52Z<0Aja{@
zP8fhz#*YtnFbrByP~d(rG%$ctT3XsEHQ;<OPrUsC3LQ>$ziz>%Az6|BF2mMmQ{$?u
zPD4?r7}~dDVF(CS(Vb3OCp4GUPDI@%XAEKYvu<FXyEQg;=1<Z0)-1*^#21IV3Usb9
zv}Z?4@#$rg45OSsA1)#SS$5<|$Ci6svhB}Rz{9{VNHoVcdu1k5`CAy3l+@o7ayiHF
z^$PJ&yG37gRzg4RH>f^=`ikh!AYar5M26yb8~?T`MbEQM{4HiFkoy=DY`~7cW=q9J
zv^`CNV}C!SBEZjY2oN~Nq&G7&Gs4rSH2nNTC@3f(^;yG`ou{WzZ#Zcr5TY39<h>K`
zjZIEwq-6qdKFewHxc>ItAVQ58LVvhWK|Qi>J*w6B$zvm_TZW7L!{ru1a8(2bDX$@j
zaasBKQm$osP0q)E{|2U~v+nQj8(LWfE!3%iu%oXxdSw5x4J6FnNpGE#VeT>2v3I!0
z3JUbB(0sG`hSRos=K~V=b4$<b7N&qF_Le90QV3_$*pZU6(7vZU&ndQAGOJhlatRK%
zCqyBTF;UUN<vk=9`|dn;chYL%OiFocyO?=RklED`5HY&S+78=K*83_xjF8aM>UMrb
zM0<`yT*1bNt;9W*v=vfZh^mJAtrGP`^gy(h>K8{Bnes<%Z29FEZ|y6{S_HLLtD@P6
zmPX(bjL{%}cWZj`m0#HXRfiK1ObK|aA!A3~fcHl46GyEMGy2XHY6ci^F{casf%u#N
zPMx0U$y}ZS<=M{9r?(deJ;1KYU5+TadwY#RowmR9MqHxGsLMSrG0_CX?(ONK#2K>-
z1Eo}p#kp*HI5RHYoc5W}WGC-DB0+Vnd3G)?9ODWi;7on_O4&e)xtE8^$~Gu8bheB2
zRKxF17ahk|&u0yS>Rj?9D6jxArI@g?@C=f~EBE-<gJ=CDjO4^sx`NDWYRz6c+*P-f
zAd+$hC$g?c5@xZ}-N0g<Z!fID?mCy2$lnH{^UQnK_K0*x)CXPtdB=WsG(K-}%SjK4
zz2WrRXJ5Yt8vV=-=XW_|Nnp_eA|+^_m?&=<2!?_-n2?5ynVRO=t(Wd-zL?gJCp!UZ
zQbX}s%1G@`wl}Fdh6&R-dD@BDoD=vx7$^mCQ0<u|ks6+CZ$Iy_YSA{C;*KC1ufVTm
z_+u>hStNo!admrI8OmDqd-cVaycWd$;_hQ-JQF8P!RlI@uWkg@Fq91PiOE832{bIM
zJ1^7wYov%av{bJtB}Z6%%7OgVXJkS)-PZuy0+=w>s1X$k7s`a-;{3Y&i=^C>!RT1*
zy1xPU+g3Bhb%q~521v)!^SpStIN3p`%p6VPxBt#TC<l-&n{K@?fNIad>`__U1Je6j
zFo<(pKOFS1aS1zZJ{?6_VMJe3QP29Qa{_b{J5tnuhC(z!H_$}mJ=G*mq>siwK^K_B
zG$N{;J9De=gtXnI_*-*gDybLTmCS$X{&aRUM?$!KS>|C@(R^qo3ldYt)!(7Aa^oHc
zP|KnPTe7pWtMG+G`~Q%f>J|Vqe6T@e%N=}PgWIvB|JA6~d3)zWaI~H_RZf-gJ_~D<
zx?&*WQ?8Ts0BXF1ez<8ULBNyL^$?DpHVB&Eg5jp4H3v^SVxBGG+IBd#E?}Y$(qw3b
zW3s*x)vq&2yo>)R*;W1VC(`LwTcmnP4*%zE7tfm=22D`X-`&H@&a+WlYCR*H!+fo^
znJp5=X^8`|<5x@0DP<586dX<$oP92*m>K%v@^I<ue3pE!&ep)`V;kS`-6_j~r1;2e
z02-m){SD9AzE;~`4>eT8?^fOGR6J|;3%jm&UAwN$Qj$WgFX}NKzSB`C3>1hvI0<=c
zM7pM3dMoz<OI1@<_0N`!?Ck7(k}WaqBULL>+bbmQ_T$c8POyTE@QA?pAw$Qm^5??@
zj*J%+ud_{5)IoBuGQ07WQB++^$ATUq7(rvv`is(f?~D(awsO+}V;0Th=+UfLQ<68_
zE*(7`NFM58Gp=60Hu=f;y+}is(c8DFmXT8$(27J!0+(A$<>p&Y(4J8XwxOE@I(K#!
zH2T=%zH}s{_HnO4(UF+qKyoXEzOySQT>o8tvAy~MzMuw?MVwl7aHBp&DI`7dw1OuK
z%cXL|HvqX@wJe!QObh?`=e4oF0dogwi}rfB$OZE56e>*<|Lao4Z{=bUQ)v#(mFIAU
ze^8U&cjP8>n~O2U8*hz1t`(KFcHUhd(Y)yA;4Z_R_{mC5{bXln2Nb}R?q}OZyPHWr
zH1ypNL2l~;{FvR{6=$(t6H+1@ongn<NX_|3Xvz->C#m9yJ|B(HzMkomEBqSQyV3~P
z=4RBZ1_>dNY8B?N?KMb%wvfnjHw+z&;Koj|PQ^1n1{D@Eg%NQ+Q7)MJy|6+Od(Hnw
z??ayFL?KyJe>v0N*5w5OH*QP@+s%(&woZTG7j^H*$gJf~IlYcr-0bY^x?8<GP9l9g
z!+*R_tdOipwzn_u=-@6O67JS<Jy_iMeC6yZB-@XN^85XO775DPyQ1vz=^+$uu_itX
zk0IVZxOUvwCGp-5(5;XszT&iEl24iEv_ej-JPC{``mwyq@HDth``M%635;KVr?JC>
zi-JaJAs2_Sv_}%6jxR0Yd^xZlFKfZj-`Vkvh)^%D#L5ycwK%RI=_0jlhAXJX=lwM2
z3o5TK+1c>!=eyRR99H6X*&aWF_!1g;4p`jIk;Dd*pI}z}abrht=ka=q^VZJZz5~?c
zoS%{kt5*bIr3R&UJw#q!KG%i<J9_!$&=CdzFomwoet!6$SbOI5X(-soxhZ@!k&8im
zXq*2DM?Opoa$DQAQA}fijEu|^$mfHbVx`(gE8r4s1xxiz#c<JI23?_e{cO=jYJcE8
zZ@%u}blJ9E(}MxflLcGBlP=5^lbuO3dMmVP-u$|!)a#VU(!1xY!N=zg;?DZX<-=Eq
zPfvaozdpNg!gtq#_qCOjylXZ^=w;_eCVWatyE4+X8yN@(S=RHG(KMJwyZxQ4%Cdxq
z1|gaoB7eU^j{f==uD01kDxAfNI#V$vuy;?vSJc-w6r*~h?GOD6HSXR;q;0>Sd$y3-
zA37jG%)aWij69WJk@%xfw#IHi(RUR!3KUG57*lopD{^A4%J}6>5Cb)HnXIOMOZr|H
zZiW40jdmIC&JflZK6cy}FxQ#0ImF@SL64W8A^SsJ0fR@)60TGe0UGa<p!$T<#SGd&
z<0qvAm6uoFURWkTJsng)1H4CoxN&f%_YF3P=^cMJhN$9s#~R3>{b$C;#&+wy7(%!E
zRmYcnckGpq%`_+r#zm6yPxzCP{JhDv*Vmr99}b}p-JWkxz=Nuo?&1Cj9~v6k#gNI;
z5k$#0-ju<N9bLdvTU=D@N)`_7d(Zr3u8FIAIT|iR>?+9!BvYT$4iKWw`I8OPP*NTQ
zdY?YUafI088>$pG4+Y}|qDd4L+QxjaGf(BWr#@Vi?&%371lR;KN!TNzAXR+&gTM2v
z6i#MKT*L`gdd1eC673;<nNggW=H1HEAr9VrTyK4@C%#-t#Z35>B0@@1kRt)N_pW*y
zF!5GbEOF3OH$`<v-0i5bxN}21<d<=33v3m3_wTss`RADGDqf)i=lOV+F_Xt|{^e&~
zK)3t&uwH#!8eJOcbOpOMxmwZFS4w*5e|42!P!cM>fH#c}Kn{5oxS$pM<+ZJqrnI<X
z|Cg&X)ISONybv=EjMrI;FNQW4DaJ%?BJ|yN=yGy$eqWuKXjXl|5V^6)0tXTwnaX+_
z1R*LTtcm)j&U`@VScY}#vNEMLkEtl1hWz@)5urUdCV!f?Rl|e+g=<4<RaUAV11vu4
zHzO2j_=EyF1a%-}xkaEc06MIrq=fx&wT=nqoL@G#IshQ^iR!Cvq^qZ|wh%=g4Mh-f
z-+J>UAEvBw-D@yXEF~lJ6%g33K5rYwd7T|w1pH=;;CEuiL_Jy8YO<y^_I%k4-;Kd?
zf@{xxWWQv|&1F8S%c6UQ9YG<C%Fb@veD`-K*9J$86qrA-PVD1PI;LBRMrT;ICDOZd
zdzhT%iA^)s`7wQk{-sQAf<W}+w{x>YDDU}tzI*8uD6YJ^w#kTsQUH?|J!)b4l%1s-
zyj`j<FVz^Ub9Dan!hvvpYheQWl9GUmI}c&N<@6=a4coI?K&&sLpXg$TLf)fco5nk+
z4&p~a;~&||o_r=Kie==;tz+eFTZXGmpuRKE=9IX*d)?QGs`*|#Y5+e!O07eN+UB^b
zf9}IrMtEGD4!~$+&IdObWvw?U|I{Jt?JWYRxA9y#((I}FS?&3;O0x1eqv?-&mqrKF
zHXD0sQYY=h6huo)KPpD7qg+<JFrPhpHrJ$~HE;W?as!sXKO79kKl<si^+B;|K%1b*
zy=-ON)w5Vz$h#pKCjV4E`T`wjNC>K_sp)eX8u&zZgRf#)9NGn#@v)BaZT8wuyCM;^
z8*4voMu~ndA*SnoB558O!^}%Di<$4}fOFg&?%B%p3C#3)Kmn!q_Hv8SdB8yV*PGg|
zjM%!Uc#Xg>Eka?nnE@*I6?TPfiZR&@@k55en1$?bMKxG@sQG_seakOKrQ;IN-KVuH
z$6q&!j=;zBEh#}hdgd&~{C;CQg|z~)pDhkPX1)unqzAQLhE<6=mZnVii+K*U6bs3s
zZZ=M65Aeum1Z;Q63$@mMfT+2-FdK2Bo?HR>3IYLC9OvLgO~OU27HO@2&^vtNLxL0*
zX$*);9@G2VgT;YKZ*kKH62Zy}&XamQC!y8`#BP{i*y#&W3-0bb$wa-$PEPFm`}<#m
z-d%}VnA&c3u3Oi<$#VI{x&Dz4FTJt8q9FQ-J%?BkdYQ}7auTmK39ro}bg9XOQ`(wd
zRX9n_jP0|%V=b=xyS>SUS^QtuW@3zCAl8$_ay)4_uX=I<A}k~hm#-940dLSNzt-Mh
zOJ$ium(1FZhwf>1kn4K?b(0fY*;obc#-BgG{|w+tNl9@GI`&M8g*lh7`l9}R^95aG
zRDFBfA~*<<D+@g%PzF)rvix0nWaS4(Pi<^oi7ohe$hYyd;djsK1*Ly~V(wUKM*Tym
z{=FrV_0wm$D`O-W;a|6s5nf|8YdBk~2d2oCT67!ZAP@=C+~&`p!Y92U5Sq9PZg|^f
zPV9n$!AWn?yJPsxVWW?t)LaVT^2&VADJXw-5p+$hoyf7mlH-aHr}WaWZi_o&Uu5QM
zz?y{5E-fvsZf-sU6qc#EdA1~`Xtnj;hwth$tbcCbL+g`+R@j6)L&sjNkLw7_Ez!0B
zwtBTYI2Oe8w}5uNIpdT+!Y|AO1{IZVz!cXo{sDNmc&{jyjD9}7eDOz+>@*u0)stwI
z)cV}+zWVi#YRLEVTYut%4Emop4Jn|Y80ty?{nmO={#oTyIxfTR-%j5MSC?zXtlW!k
z!ba4`8MRLFC4e34Q({!CVkE)a1Q1w08Hi=T#&?ofcLMuf{bdXaQRH+zR=8;7#L4%Z
zm7&6(dbCh!R*li;rSfod^DmA^pEJBLH-jrI{Nrk#gsZI;Y%f@czGot%sL!bE{5O_)
zyrzUF?GvjVZ3B7~9H_Xdu=kR#dSrzj?@sx>?}%`4aqU;dUS@c(jZeu@fB!&D_2yUX
zyk>=k%cVN<&KjWdf84Y5X!1A1leoKt*C*#yodq$D075;KfVI2AL~`}uARy78)TdeE
zoDigaU9wM>J$;42U1}$mAb)hGG0REgKSmPI?*uz`A&e}lSuK-Nzg3A}akR6u5Z9XR
z?OQ)m?^|bNg%$5BcO247vf`4NeV|CQJKdCn41PbNkqB!)UZoiaYeB=0DMi=RMeP1W
zbkw0i3IxnLS1=96zASbA9MqnX_?2oD5D;K=zH3_nIxzGFa#F%r#l$ZQ88WB+^sP78
zERo`Xbz8|TTfS$zyl|Q(iJDmqEVZ6lY`a;RX3#2bpwzo95#Y?eaZ`+ErcxGgKf~N#
z@qt_(t-wR7ZI(!=sJb{kU6Db~Kvp8h&3`Gbz-QI29p+f@qh0ZNxgV={Fnd9ZVf+*J
z>t84>ypV4OPd(1|3?t7v9b|8hyy7&(tnnJ3z#SCBLG3o3Q4ATC58s>H3!h?>kOcZX
zdLVXob-`XmNe2XXbaDYp$LI51wLhDi?PFtQZ+N87oxV3#uk8NBw7YVDrtdyOY;vdj
z`(W{S(wjfcGC|r>?PJ@R$Stfd!VS8zt6N*<yB~z{Vd{|E_BwQE?6r_kq4i~_Gyh0C
zex8o3muQx{4%z0zeia>Z)ABe;XLc=Yu+kfzRHh*GP?<^oRof0AmVbzo7}g=YI9x)5
z9G{=}099~!UfD^}_O^Ip^PN(Rjar-j;1X!%cX%36yZIQ6j)Kzh1^(84XOa$32Gq}=
zw*#}Hp45?-f5!VsGcrH_1>|)kg)r#!evOL4%060X(_^l-rV|_XLp6<$Tkk1V=AYYq
z-bNO=u7PN1MbjD7rRz)5*4Uh=5jY@7@%*oP&-!WrYWtu}SYnfm5?xtmvfz*MD*SZ;
zcEN1QNGi~ICAz%~f-&--k&TRQ`aK2e3kdl%etR-|`x97Lm6t!jk?k#%)ce`=c42iX
z>tMG<KR`D^I<;(lU5R`mFMSG`mAhEK#ocJWdS|ZQ9{ytg*NFH#T;iz(_~;W%f7<h#
zWAQ6@0cyb``@CFG>#bF3ec3+PV>+uuqKFJ5127keJ<5|$f#}!O;a`=`n?n7$r(-#&
z*>uxeRs{m{<p2Scdjsz{KG=r-X>#Lt5y&2mjxM~m0%#fXO}4zKPK$@@@BbHA9Dtpc
zW}9m^xwZVbUlsmdd6t3V@wKFo$j3hTG#e^dRkqo4$Ng2I0uZsk`zU8u=WDFM>sejJ
zT2&mMk`7avkZ2P23>f6~O$2IIeQyrl!$JS}iXnhPg1Mx4<%S-IfFLlQS;H8N6~JP2
z6&OAEa=!OS`0m|1ShpIq=c^`mlP%ZjYr3JMwR03IQ0@XcqS+-Bn#MW9%MIo56lY`X
z<C84e*BM_f{nD^^x4wE@n<X``i%{FDLlP`I9O9pR(N`y0TOu)6Mzd$s3;ZoVbL>=O
zQ@L(g40`azniWr0S8u^|iTj`);9VKy$-o4NfA3x)j%?)n+w<3b5&F3wb29X=R=EH|
zS+5(4JRW$#?)eZ?SCFcj2c7_W*I$3!r;LY<ACgF~RV7YxisW!#q&2Hq{Q~u)Sd50A
zvo~=sk`s;uc7%bQ;*0--or}~5n%X?w$bR-Z<8CHtH8K)Ji?)Qkvqdr-8_?<GJwK36
zPd7j!e5$j-t1f8-_<-=`pEqYY>LWEjLDmIi!K$)Df}M?OU#o?aY6->ml;`x;@=C7U
zg2X|Q$jQ}8(fSD{NMF)|hwGowLi^l~_$XzSQwu~NuHZ!<>YssE9ldVOdVr>WAL_dt
z{OWZD-1G&*=JN}ED#I-EN-Z0>{^B^Fy5e!4mK1SRh;MdDjuvg9A0Xf!AMWcNHXftW
z($EbI3{?1np;8RVvVoM|S8#dq??94`r0^r={y_92r!O}6SX;s4QzUa|!klN=-l0G7
zJvpE`8BHBtc-TUH*HE8RH#|8=@7bPx69NllHyaf4D={CDx=|s<h`FL$kk|g?D2T6<
z$$WOLG0~J9Up)Wu5=^OF-2|=!Q>*vBf0f~Np#|GQ${gtPRCrvjPkIAj1DY8K5@Cu7
z7u>z~uhu?L*zr&QUQojxyk+!df2jBCkMl%u;eAB;+11&3d{D=7FdK(-;m`*h4?$>w
z03aF|8(<al>f+{Y`f0`g6=$o<^_R{|ye+_)&}&JH`pi(byob5J!B#z1mrZjh$|Ckb
z9wp{z^CRt<9@(el9Ggv9`y-9WK0b}Ub)OmR$jn0QNQJu%iqUOopSfz^`a<eQSZs7N
zjG0GI7x5yonk|Kc$R-`X0*w7Q?X8oQb$}nYhoPLRcKVP_b5yWkgV}g7d(K@`Qw#nw
z$+nVJx(Xl`|5EY9PVgoevmoz4f|0L=rJTw!tbez^0eunzfWl#^po%Vb;22Q1tDsc1
zb8+blBleL1Jx1A?4D2zf)h(j{_}TZ^UUgX6nNHoOV}I5Rjjz{1dW9HcFO%*fR1hVV
zpNq)nO(8?!zR7&~vaIf!U59I9nrM8xLG4-_Z#Z04Vs$XPh(X4W1-emEQc&}llx@bU
zk3Z@67cT3oGcA{i(a?k?d3hDPOYZ1PFv&qVMtFqJ`|E*(iJu?g_OhzlKm~Po;Tb3<
z#nknQkuD1Fg(nqN9jo(Y9A4Hr5VM?2R3_~%V+uv|VS*&jF1iOL%oyl_V?DWQ26Uc+
z&e8fX?%K&L@C5Ram;XTA%S;0+Avzq~vb9v(2Y3h=lF*N(%U4^})>*A0Y}va5?52mv
z+pJoL^A)tA!s^oOWyj8m&6DuU>r(j_dc1fByna-^yEhjHXb^B9KKu7jXtfG`ep~Ox
zP~t?DIXjC%YiACMCB&}0qB|4*KuJkAK+U`o4qEPNO3FX?Buax_74frE;`6yag4kNM
z#H*;O4Ex1-oGaIQv`@4IS0YTL0>9Lfc2`Kq$w)a15`)invOROV`xuhy>BOg0l~q(u
zF54c-0jnR7o=(0w=0o{-Gpig%a^7qoi&r@5eRJ1e{L<%4PvJZ}U*1_Y5r>7%_ILge
zJplplGl)L|4)H7igaAp-7<n7LmP{XN5LiH|$#B{^*b4!LI+;)`>bJ(;nt9qV$T1*m
zXjhb+GaLXt2K)koHKTNH%u7!wNvbP100$ux@TnW!I2UlXq>yz!(pWb%32p<n%e)8e
z3%Z^&UaQ^3p?tM=0weZZz~9vW$p36Ec0LT$X1_%rmFV*s6f(k$y1vRSe6yrlG5A_6
z6A{9MSQ%p0|04f&f$Xyv-LHRatRphB!o4RBVJ<YhHlh_GD;`(3L?jJHP9QK2r#(*{
zYgl)1=iEfB=_~)hv9FLSpZ=<2WCQ~YzV(lc1jNS1g35Db4(vazC5{c9kJhqyaBy%J
z;hgSl{}&pi&mCuRak1<Y3#2{uL4J-%#rGgl=GbzKta<(?aj00@@#Tsmq=E<wp5~Q~
z(ZDK8TD_8fQy&sURo%$BTv)=zvAZD7vpAehT+#()6aDkY8+a}V;L7Wpnn1h66ifiM
z|M~@H45+DTZq_4dz~~7%9x5U*o=~l-<*%u!sY;jE7lsOCQp0b;7-eqN%4P@WzyFJ|
zU+sRkdxJ(`07xzU?fMk`qwHSBUtRyN6+%K*GH)#@#H{mXX(P`+=6PW-p%u)70532j
zVE>(s9eo?>l9-8OX{q3uRdj5tM<+WKPO%nV#HcY>1ouC)00K4iZl(>9n>~1!-g>z=
zf<|v;;hceT%g#Ud8oW(At|K|QTI<r{zxH?alrI<7Kiq^ufgFk=`po%$!npFECNcB=
ze;fqBoC9ncQ8JQZEz!XH4ZvuCsxfQ+J6Pmo`whk4(?|NnMAjRsCxzXEhHB}$=urIp
zIA%NcI<iZLp@2I7#?OioWWR)4uE$d5^Arro1ROxi@B|r!*k*TAksGkyiC8bkkPq~?
z#973hK!|zc>`cJL%?%q)SZs0`+sB!L{QhJfpdiusyM~qcY9WgSp}MZ?`|nz*VV1s`
zB;&bX!N-ygj5Z(Mc)VtbUEer#zPdrg{1exIJn=>H1$*qeZ5G@1@9{f#>-@8W1;U_b
z<YHoCLV=iD?8RUx=4T#Fh4X<nq<ycfEkg9ZU`OVbJn0v_)%lBqx>aNP!#{DthbS1x
zJ}%Z~!7hQWGujMmA2Jk0XzQ!sl^qA83NQ4Y*N4)46%>4#I_V8Ythz^1`LyQ8pi>O5
ziv_a2x&PG?W-KmQd^Zw|Cy9A7lhQn$pnG_*r)}kBy)a%gl5(r@*yR4nz)`gELg)0>
z_g__!wK<>)be48de7qw?*sM(+d1+-E6aXBMKzRLRLVN9`jqmiIhKyqxQR3s`e&1c6
zLL)>XL2sU#ukL~t^~;wpNdk_!DB5{`Vp;c2(NChL9KXKRTd?fCxlp4ofF%wawuiqP
z_OvT%4{K(_<MNvP)0BYPTW#N2fV}iD&EK6a2%ISx%RN{#WG>E5!PY&`uyi}0wK~+O
zu>qizh`Sp1&NGeY1J>-!sGqqqHt{25z~wI}f^(}bk%fgz^;<%~U>-FXZvlfb`NdPs
z?3cUKz*n1z5)u+#)f&DkyAm)uY&Z6#RPuGZ<tjH(e(K3Lii@~$iS7LZk8kLmZ!LBt
z7vk59ir&aFw@wM;FD@5C?L7+{SDC)*NfTpNU5?=e3Y2OwufD+M)OUBMi>@|PZ6T1;
z&5^!xqj?W&l29EhX3v}NF6l$}WF<d}eZ`V<`dLf5LzmL9x6R6~A6BROq<7gOU`77a
zqJt(>{K{2T5`aQJ5xzC?@W2_+bo#W^hzN{TPXB8(RGUC$<<^P#Xv^OPiD116`lPvz
z9louwXZ>~;L`${4^%)$r;a{f^&bpzKJg~>*;dT4vTe(naOPbgLQ+^NL!dC+1tj%mV
z!M}HRQ3(kNR~dwb;g4ExGf;GN76x2yo?i)eP4%Jgti3o(gVx7mTI{^DFGOLm<@5(-
z1{?&8Ldq@TOa>J$r@5B}0GR`hyzzM6pj9XWRB7dQg`$Ar{k>)w+MlW4^L<*Wa}VP0
z^ejWVXUwC_Si-`k7!WxLPvfL*ruTR*n*i}8p<t<oAq3H^6?n!L!3)*>?#XVk$#!+k
zuW`ipmS~>OyW<VWC4)xZ3dvJbs%gTc0WgiS9@yLROG--CH#Vw^>gYx%CkJDS-i@>1
zPWk>7xY{|jwil=(TSe))YF~wG#jpy(@Ue_^DV{7BE+xVWrW_k9f+#Zf4SDlk?eHkL
z*4B2%(Cp0FwIa8?(l-8O!KbP9@~D8<{bC=*cMR`)0uv3*+a!+<fB!Ikh|NKMV1uh<
z>H*L&0RP2L_4%^FC;4&TWR!#9nAcZl=26+4apttNzQxBAQR%(hd!R`Ei5AOi(ASs!
z>brvAM_fv^^$IZNNc^>7`4(=()ze3ebJ@k!ciQsgiXG&*iRqJiNvroPA~6x+tS?|N
zqdF;v_xpNZq!CEe{R2w!(C6_ooQCZX1f*vc>f8Ym%|H8|FDM-eVB2#mco0W_=<V%A
zy12N|_UMVdmTrs<ebd5Yj^36Mlg$}=^=+9#s`2#7y)b4HfXkQql%!KAz7E@&h0A)A
z>AGo6X;f!1NO1$^*0)|Ue*_zdC?~b9F5C4F`-d67q*jrGJ_)MyM+0_A)6KZ;7Cp;l
z8JUm@r#*Et5l>Cm5ip|bhlJ4!rjCtlZ6Ez>MpQ@zt?uqp81xrDQ(DoWQAv;_gkN+A
ziaNcnt4-D<i4I!Zl~I~WXkRq+@O)@~`iYjBMIh!&*+YLoViAJqW8~B3^iOgg97yfv
zs7gcGEC-1JVPWX29vwsMZDF7t*fS*u5ApX*{MHf+70Y2+*Qlz_6w}pPR)`qxL^UN4
z@qUcZ{s>-lzzMAYuf?;O<uV-*Qc^~OF;&YL=&rh&S^$_c`t!$>hWnJtd7q=rqwUo!
zKzh@1mldV2C=9@C!DEqx(1W~_kPR!g(MdGAryhCa<I$sQdl8^PeJlCSSGxci`XqKr
zA}TJ<A50yt|J`^G@r{aF1yk4%F!5x&mXM6nph<icf;af9$Ex+2MXSvw896!ZorUk;
zsil5k9MLJ$$I`4n{%X3c&)>cC`F}Y3%cv^bs0$d~fJ%dafU*fmgGLdMl8{EEOF+V)
zr8^X90RbsNQo1FiK^p09kdp51Z*8CV{oeEEjB&<cjOQ5$o4xP*y02Jkt~uxW!>)2;
ztA5b*ertgvzGY^TXBuPatak}sPKR9ysr`Cs^Srxxk*&x0^K}bTk?e)65`)z2dtWq?
z(F2l_pPLYSd6GXz!&GiuJ-fKsz1@L-Ejs1_M*ia5Ov=r!<2ashx2_q%&F)j1g-7VF
zROyy1-0{UtzPERm_+pZ2U6?Z~{Hb-ues!u$m%eUo9SH)A29F}>nofnSh|0jjPe>jz
zK^Ka{D|U~5)leUqJ!2QB-WCYs%KziqNp)r;;ZP-%d57ul<JlmcsCVm;WR?OefqI9B
z^-bA73mi?a4pE(5MVlNmaFbK`v@)r=LDOJTRb8EHtw2lXM9FWD$H&Ll+AZt@x{ZnI
z>`OWR*Bv)mH2yrvJ@2sUMK`yM)%`mefR%f0>vEMtQAE5MKsTSwT45B2STt8H)_irP
z)#ftaRd8$CrF*XJFur9vp_i&%P9Q|sebecTP@B2nVruuuCpz9S<Emf?Au>%?$!6oH
zFjHpkTDXFcgq9Ws;x=!Yuz{f=C-C=TQmpX^_p5n~V`QHot2WlB2-rVun$Kl??H(UT
zf)7ub>#=n>F^=8OjoFkAnGAcim)!{?(bJKxf|FLaYhSSYuPrY4P{kZFClJm@@no%(
zCvC5~Os?_jTC@r{Kg)^kx|dNG*LuP0vTYJROLv-CX-9s3aYp||+4-g7N4=u(K~hpu
zV1X;Vn{U-e)XlerZ}0VYC)zAV?q0`2&<Z}*-<_D!C^!}<rK<FyVUMKU9(IrBYs8#B
z%OlyC7_4t7VXZmU^io%5pV3&B$HRXcq7c94ANs89W0erF-tV%qn(qjD`>k!lJGZv+
zdB(+2f;z`P-^IlRS)y;<IOHCpky$c*#n`l#4*zBHWpPpNcOz3kvlsq$#vYDUxQ9$k
zoSN&57aM!Qa|mG7adUN5RGe`%*O7O6z9VoEG4CXxwIi^xF-A5$<wD)fUhS_Bk3_P#
zV9~1Ud`CZQOvYlO?7hR3w79M=wSa&CiolwwoH9?)o+L*#A4rAk^JgnYkLB@2;l<RJ
zy~9~;vaW8$g$qnZfEfyps=~5jk9JyLxjM~r5k$Ob`0`7KBhhzv<HIT*@!#Mldtnd7
zStii`T=;xUmthag_x9N<;EgdeIlIbiA83eHAvEwe4@uD{W;rMR-ejA%dTvo3>6i4&
zT~3MrJ(}PIM@|U8?!_$LqrYl%ZJ|?+*54h%)ug_B`SK*y8Hpm{0G~46>F+H(<fDme
ziu^to?$k%qMQ+<CdALVMf7l&&`U4%UmsA<#w!A7$k!ONM#7F|Yrl4`H#!nl5jhTXR
z&WrDCs;X?=HYr?S_MZZWO-$yuM77%+;OhtX^b}&@<39zx$*WIY)-GnfV+uO-7RgH;
zBR>8VhU*6;yr1>Df;zR!;K(MpcMsX*l%$;A<#;sXyS>#wXxQjS#3eZ_@GER_n|og%
zWV$N%>00&T_7v-uQ=CmLRBSMou4H9rZ+G$g^V+T4xQ0*har)Ao$fNKfy-5Lk^0m|7
zR6eTML3`X3?MxgE^TmI9-**iw4Baw!bI9s7g)l>ont5{R`PZ^X0=mv|<-SU?dCZfD
z-hpl92K2pPPI8{M)!z3y1-nP2l=sVh#2AOS7DC&Do~b1~w!^WkJ%40k^3ZXuum$ul
zmU9_YV#C4f+rK_xZY||M)VMHbd_+|dFc4mXBAez7O!y?f;Xj*Zpy{~vH;`aG&PAEb
zrmEVTQ0Vx%+<Zo{7ORqyQi0QM6v7ka7_)^fO!N;Q-VhQJ!jGH8!8*@bHC<m6&lwz3
zP<FwLP`9Md(8gqzkhBiB_$cIYlE_3}`Fa0_P8C}1v-Lj<`jhTY)1RH&=I5HCAzsdk
z>u3-AQk!U+>zw1ow+KfGgj`y0I=PO*KpwE}IZ^(ZU?)eFz;bf%Hmkz@fV`={x76#n
zKX|3seEfIp&$hazg$oQzU{eFRXU*O`X+?hIc0Z*}o3Y5-L>ray>x$>i_xETFC}MNi
z?zXm!Th<0uR6G`cD&GJRv^kY^%GIk^MRL_J5O9arNk|M!3dc*pGQj8PcCy|bGhU@2
z?sD~ay98U-(S&5d+rKb$)($;?0u%xuHaY^b!hnDPGk1B}&3obuA!}<aW)o#Zu%Q68
zL&VICCEjsXy1c;}%fM8aoVDj5cpHsL>%xDLx8QH-LI1$iuhU!PTiui7R&SS|AjL;c
zSTqWe-mfZ#IO}nm8u6WG|1SJ;t8T0hU1BuGIye-4CUVvDw2ASz>gmktGFv?Tq`E}8
zNv&hmo?XK#&Z3OEgvDeES-$!GuHrRfBWgk4dL{fUla)OK#?|GR=blfA+>iPVCws>$
zk6nb^&bC{QPE29!FV0WtAK3?w5GOO5jHlthmX2>xpLU_X?1u-SYwt=Og}dnP1mzdJ
zh=>S{nlt>j4=Dt8TIucAA26IZX{IXC($fA~EA;pGe||p#u}4w{nhVe-mAWVmkEO}Q
zd}wWzTAL_Wj$Fk(-bSsW2d_IGp16y_(;-w)*Y=hYw;vd9-@9y&WXSfoIDS)g{5Q78
zq{MO7{|?8Su73Fdk;j{|n)JOCH2K*pLnbAi6zQ~+k4sy^{HUY(`!IiQPCd=<I?$2P
zc=6&Bu=2C-%pmC|ltJ{hy_6EdCtrz39=grSN}AxhgN*<t9wiitMWD)H6#Ux?wfPNr
zi@huB_%Y;8xWE1>(~Hu>`<3!I2bHh~RqQU?Tsu7lC48$$8=v#N=tIf40-{H+Ejm)?
zL)-`J?Go7F=&i)4QJbKuJQbWqq2;g1zGNQ+=3`v%mTqVJ)iNGzc(Es<QF;E+Q6N#)
z8aE%Q%cH-6RV}ju4`|!PAGu?D+EJBvs@qu4YT!~E_W|c_0@6QIAI(oU%m-dlJs371
zATs$F_JwcTFik?Om$;IBU1oS1s<uWFoAY1PSfvp7`)~ePQcTKSrIh<-QZ-wWx-wQM
zc){RAy=lC-XvJr>5e2?!om-n89#?`Syxh-EMyrY3H8o?7Hi0dk$0N-u4{^TBP@2`K
zHpmcR<dT#!jRN&|=B1#<G<&o?=XknaJ5w?oiC!SUhmWwxGcRCNz!)wK(nde-`);xC
zt_N#=)jDfMusO6PzcST3HhY&9*Zf}G`DVzAIa4&pil0wA?MPIOGK4j&o%d^#22D6Y
zg28kr15HQR6!AQJ5VVvx^aycqJ_H8JdeK-6-2o~+h~(sha|<i%%-r{7mCdHAZXq~8
zuv4jf*eglX0P>M{z+kW1ABuf`U(fIqL5Epjtc+80G>eO<18VnnD?Q1p;8sp~s`=F$
z{)^4m$2c^{VpX&R(=)3tSvdAZ6k;2P$Kvi+n-#YmZ_k>1^qKH5U+anIRdv3sjr#m$
zV{<e2@TAz!9bwD5ud*8AH@A30#ZR@*lkM1SrDFdcOZBHE$s4o7Nwk9Rk}Ak1-2|>r
z49m*NV4k|nh}z{g&4s;66I${g_(1WZ%o>+wz4BwoflhsgzAkD35|J5cs+y^)l1@3@
zA%eQ(O#w#^GS+|w3_^jIbFEa$>M`*x3ytM^)N)EZy^9H!^`Z2VJ+&SlXX}=h?PQW5
zjD)nX5O$#O2;JC6=6(Fn?*FG4wfFCz0vRdrYraPK6{-O0QDD2Aunp=sS{@$q&FVw8
z*PSkCAyp1IjH*1W6e$}+It*sUXP8*J)aIP*183~$<2&4r$AJ%msD~AsFPBBBeD>`v
zca8=Gx-Je|dRxfD2Blrt4Z0If<|=bnlhm>~O$Oew=u{N9%?+hzWMIL{hdtmXzkQB!
zUa~P9D|Gbq+nqeqtyBT>C}eGa`0_)eI4J?Oz+I*+mxJOnaznZwd4t*NhKpU6JwWaQ
ze&u~?=Ox;5F%vtp(brkDpt`|CsHhKL{`#rEAD5(GEoeqeqnYsk#?eV>9Q&8!rG^w{
z{AnV4@7To&cSZN!fxh!)Mf#5i#df4>%@`G~A%Zsi%4u>U&dwE`>T2kRHvH%fbd=gN
z6YPX=u>9GYX*fFD?d~l#*JjZ&sx{$K{@W4b1-VL&_Rp^QhB1)LUcYq<?ANeT80=)<
zU7R_Uiy;swLEds-s^e<z&jOE2cSwzA0~g8tA_njovnOASztoRrA1f`aG8t)4VSP=o
zpLG}=BUYUlGl`k1%ELlE9NJ9NQ@zh}$66f5R<dhbcvR0@Z$(aB2^ZaUJTPM5RSV%P
zz*9aTLvp`7T|`n@8Zt04(!$CB5u2H9?03-BBA>qE%T+Ut!Zb*t&|$;ImZ`eD5QYl3
z5NcgGu9u{O;xdYxDS2qgi%{r^M6<=w@v(kem^u+9rCHSK>o;%c1q3LcG_+wFBcB+f
z|4c1DC{mBTX9Fs~Ph!5-g{H%70w+s`64la3ndev|W8IJc|BASin=>~rf96VZk2tG%
zwbbM{TlzTBI+u}GIFx%-73Z!t`jc$82(wuz;q^I9Jhvgqg*hz>a=c06QtPh*PCq8Y
zx9ZNzJ%AP*&G%qz=``-t+)H{zA}cqyNs?wctU8daiLa6UlW2skl~v)?6~^LvDQRg=
zr}&<tfp-Ss?sRuPvCCoA^J(R(P2}{vtN(0afK_Ky`?djlT&1Z<pVITfh|Sd*b4ly#
z-3S?R2?=!1-c_H)u@C9#>CqWel@9C^larxkTTTLeeU-nA>?U(7HMq(#Pfj!(ZUse2
zj$hLz<J~zj+oxrJb9qWXe6(n4p+6We`?@=vDP8iat+<^Xx30#yC8BP(`;uBns8o-M
z>ej7$UExZ7GTe2xKQMYq&fv6sv|^<*eOz}g9-x&g;p$p-)2m!})aMXwc_hf6s$lKn
z>P>Z1tV=d3g|F9t%)j|2;KVgxVwZBL;JDos1q%n$^>m#LPEPBy^UX`oDD`ui`0Jtj
z-_z3Q=nZ**)BAo{?=nzF{h^fh9^;)m!>8@Xpyq1yh$_8ec5iL+_3xgP5FsC+7=a$#
zpN8V(=tv_j5rJ?RespAX$yjVEE`o!oA{xw|+QiLmG0B^@7$^(oa#v>Ppn4C1iJwN<
z)w*+hY=sD2GCf@UWqm8I(SajewKcL9bX&KKP92_y-+iZ={m}<!t(;rBV;@}?^EzLP
z{63|9gv)egxRx`s=<+<%@@(9p<eh`L*XqwtJZ7Y>F0(i_f>u`(-1Xe@e~jS<<WX()
zN>-HSDW^-!IMkl%gd1RPbkF&8`=K_SyEi(=)J-QV?BF|AA(3z2zTuZ>1;K)?)Z^!}
z#v!13{1GY!L>{N((~S{%rC(3YIrSdXGi4%;A@a}2%aceDa^o-#GhC}@R#CQ`s?ucd
zW!~%m<nK>3?*6cG;73qm;%#6Gt*X8(D=WLH`U<OdBvwWX^XgT9Y%E$4)^9mpA3kg~
zk|^9{OiZ=H3NL>*3BsHJ!&^+{>!TZDzX7X3$<<8r@1b_XKS{n4`U6`tH%WU6VL~}|
zvS#1O)JE5LFn8H-t$x{LAugO;aD0skq65UlwC$_G>^aVdBi(7kIU&{V8<86m3$bN3
z!)0Ub9DJ-&^72p3%~?Nu_;8(q!X)aZce&chOj=+dF6_KPe^<b5mVtrcHk=N!ku02i
z-P+bQUqq9h0FZR_a$|P(!#(A+CBY1&8iIl;B-Ytn`H;QgP$GLUV3_C3Q(4Mhw&gl;
z-~M@yyv|o@a&q6~<OHjeJ!7EsU#r}FFEXHYj$&0-s{NEUa6O|jGA*aSk;1^l^wl+u
z)cw7sdG0x4($ykl<uTBeShNowqxeKyFA1hxcjX1DmsADzjT^EVuMS&IHvKLRkkA{S
z{^=#J9nvP~u59i$>^S!rrVCR@goW*0`4>oPcEPTRP0Gj@>L--uD@PC^Ik!XyR+b--
z>OPeo>?AusOfR3qCCJF1^*p&RG^*!+<StChzKL~mNYj&Z#m+4(EDZci-$Q^{WW(Q<
z?{<2C+8#9uXIUv9e+dM>BDuoZ!Bug$=SD^43H~N9Gf>I5l>8*xlb?9Qir|tVlJxwh
zd18jjeWa=#2o%kK?2M_{#mb~|om|zEqC*PZef{bct$@IbwOCfy<hzrfWSoP*+JIJ2
zkP5JH=Q-HB^?}YNua#_}An0<?I8oj`(?BR(=Yzk>38WcBU4~~cObDWUfg!4_Z=^?e
zi-_&Q6zn~C9jFXX>>l!%Wvgmr^}4(@%hYP<9?_al7`zmp>@2}2dwL|omx}3Z+pD)>
z2ehE?sj29QFTaP^$PAx6@thj2S29_ipa8B0_#fPj_<fBg9_dn}-=~(UB$BBTAiWEx
z2xu2qCr!abqUluHCeM83;#DU66gI;YP9Q&jj)^heafWEDbK~2|&)VuBa$Sv2a0f3T
z2fO*;@678UN%8$tkU?+F_|l*w{&rtd!TCX_%>smwkrLCW(V#vs!NBqsr6tQPei+>I
zTIMs#C}7%y1|@LvxF{jc_BgyxpmL<8BER@|?3yf-gQ*H*NxBPvpmqp%s?s1)^PO>j
z%8ArpL;i45rq^s+P7lsb>X7fdPd|E-lT4EA>qMI|dCTnR&x2yqVFDnZnb>v&5s{F1
zfyz{KFU~w5lTu!mK}VGVlaP>*Q_&6Tb7d8!Vk<NrmR5`<j5e23%Ibwbx5!O>Hvs*$
z_(;WX{|6Wf(GQmuea8p)j~5esl`?NI$9w-?=Ck>$A<+CD0~4`yC#2H}a+FWHvI+`3
zF*nHFL%TaV#O35Z@zwxsb@T)Mg9pl+0-3<s<8Q(^0*&6gqb*vLWPGG-yEgj4qVcwi
zU`5$1P0{JguD3MRzgO}-GJbvFIL>-Yr3jFU%HRO4!3>!dMmS^{DFt#Ee=fKx|0k=1
zG~vj(;+85a*5HVz#c{&(!t2!x_`fc6XAi&o&vv9NHtN)*#->LjWh)p8YRZUt=KU+Z
zeSP*k^V2JDw(l&qAP{P9@q~!GEd5L80;WF`>ME%2G_BrLi$c2VWpt?JjS=c8IBZw+
zB}h67y9rMIS#6{KGqkl&$c^Ywe<qunnmP;49FAw(dJV(F2j)Uoe9j{s*2fr2Wy6TW
zMt#=5<8dFHO;x)LBlRpS*bpy4ndqD!TfzSDU@UDzFOrL#9AUMI*$^QaR8AP%4`H9c
zZb#A4>GX61D6s+*QzTO4k^RW?>x#RKjBb9Qpn3^<PM`*d@l&QOy55_?5LE6cIUvy`
zmx_wh?#pTo8*=x_){|2e;29X}ei3_bc@qQbAZvXtr%mK~;=Tmys7U5JLvEwX<~fzZ
zr!5N(eMN^=Hg}#pW^~ulv5>VnecXTqNLLix=Au+4%?du)?If}p#D;XOTg-Zs+uF2k
zdepYEnd{tn7U#FOXPZ)9U2~A_!@BtKcw}P2*iq=6hx;>WX%Wb&rq1hB+?%(){vB)6
zvNqQ*F$7cs<?H}|Rb+noJ@*VCPa-5Tn<qX~H4=8#n3xza4;`JW>+e^VQ`sE<Nw~2=
z?KpS5n9F;Z@Fq;_L+y;l63Ao?NcTZlWfa^Ty(N1Ha!a&{O~rv|Om14^-Y+#0q7h#D
zcJcS1061%u^8D@}*x4H!#j6WDSeNaYY!-!lQTkM<k%3*t!;=fxX{6!?k$n01b+X|V
zGqH2(?+zdwkkG=V<%@+3_OAlXN5CE`<fVo>ME`!(l<IsO1Tzm&(J7@?{dnrGNVWYb
zwu<peqYaKMH{`Zg5Q$l71U2y+tuG$nLPFGdfc((GU6kl*@x6>l*3A$*AKME1yH)C|
zsN3m@FE(A3aoQi=<S)L%HQezbKRwnl$d3P+0UUBo!}w8jT?s-`lrB@n??<BDWr!uq
zd%Nk~grkIoCFCxY`@dDYl1x+9eu!eS6YDa?_{^LAbM#7yg<Wu7z~lSB9r-d?v299i
zYd~l08yFZkMYAksD)!YysAsS9U9Oe6ELOFy%l?l`rK*Agj*q^+pxfR(S}RgmcXvx3
zq62@MX^%@mP+f2P3ZIE=yhGd+Uc~*F{H59Th>V7YohdIB*-KG+P37(l@PJ?}*2<0c
zWMg9^(>B9eG%3;go}NyB_pX$H`k1`}ZyE#%Kp&XpL?s;%$xiXY{t2N8$S9?yXE*Wc
zxdQ_Npo+oJ%o^0B8!N`9b;B3(a*>qYKSkX_O@DMZ9O<*jh4e-U+tc?O;h#+1*%{@p
zqK^EehGqKWmS%KEw#E@=n&0b^w{?1}1DWmDq^gI9O7bV)B8NQwmkTgf0WLA*p6(?D
zndO|2H^9Z9C1%$Fh60y@x*E>D(#-vD?4$q(hlLSumjP0fBJk;RVr17M_@_K5|0!>n
zM+Fu_Angs<t+)rwJ_At!M#ifUNy|L}6*+S94Md^U!puE;_#@|MXIo>Yvc0LY<ZBbh
z_@IXPT|O-l{k^njST8*(E$tc!lic+?B$C88Z~DOpSz$E6nm|#F<teiH+E?(hcRPrj
z-EqPJd>C-y&9k&&d6Q&%%1MqW&~La_)Pfx`n0`5Z{cYZKp}OO<%z`~GI-hC1rt1`a
z801-|XiHfE^7}SIs?M604x2rn<1+>Z{Ppg1P@y4~HaCN^zMdv{;tUfxH!qN@4e>`>
z54r<novf~CeskD+MeE9`%knqN0GNv!%am)Ix#amAY5?f$;4%kwks5qfQ^BYMBw)5%
zSykD=^3y83BWo~nB1)DkR@Ua6;Mrv@?NQ5`kVLK^p4<8U@a#%lyx@B5-oug|MlLR;
z%_OChmM}v0SQmGjk<&4G`81y42i*dJ5R<+Hl>o2Pj#0y%>xwCE`-6`Vb>MChbl+!z
z&aEp-tJLfkL~*R~i{Ep<d|w0%tv`b`G*j*Ae#wDy_TX$$6^EpZ`ZpA|mLF1EKIATH
zJ<(fzUWx-@a09qIyaR73#9I#iP;G1Z;OG8Yj18C5kL})iy`ed1x+J@|Rr?f2;Ix4K
zv0YDU1Jnm-$r$cO9IO(Wm;LCOn1~Jwqf>h^oL;zyRHMR;-ICems&|tZ3u{zSDlZ&<
zL|Ie_;nACi5-(pSj;_X3IB-Y0yT7SEdc5eqY7jOidVE~5a2U=cc;AKrUdKa-XjG`B
zI2EogFw825E9Zn*12BpL*p*W@vBTrasWiRYL^GbF)J=%!IIzYFmuFkGSLsiaZ~071
z2nGjpyp9~{Q-&_KR!!F*B-Df&%C@r+xx5+w@v|77TJ*<YoXt01zNqJog=B2G8!&Q@
zPJh<jz-LMaWVha}sU~&{M=&nc{4SG1yx9-BdZkXm>Cam|Y{f~$(G~0(r(^p>#B4rR
zXceS#p39L8LwzNt>L|Sz!V`3IW3Pv4O>(VmY(OX{4ALc#!ed+erbs$=k;i9y<CAy~
zvnuMf(}|^Nk*21n8}7`vN#x6FpGwyf5EAn6S)z_4T^nZ`fCmD0w^8RCxZNC9b4L{%
z9n6zz8Zep!)l?o{Y9F%YX*{f9E@e@A*<gurU2vl8?j3M?fsnBQa<c&4>b2pa!Gh@@
z<>iWwY!(^9Hiq4nZ%JJNup2NbiB1UR>S%-GHK^Qyn~5!{Bxk0`Ss9lXUp|f(+pt;S
zQ(vFb8L-a=PpRPn0XY#JjHN_C)AQJV%@3@b+NpvyIXO8EK2&fbnJD7f*LkiiMVdd{
z%cMf&yeKDz?M==TQGw0y=n)zCY8Y@ggTdCG(6<M!FUi7IePRu<+aIwUUy;ioXlreK
zyQQH`G7EWge%1S8M9qISxU<LUiRkp01JjEg!~Im4JMD~%Uku+RDtHYO=g}9F+@e@h
z-_#Hlelz2!Tyg5SRC4sW^s2FxyFR0<;O5WAMEC3PkDZoh0h}xU#R&lk&;fqPj%+jp
zTTE7XfB1k7P6)SvhEp(Z=l#m@-o1OygrSh{5Y@7mpg=O&zj)k-u44N7`m^_u`gS2b
z4P8USr4QMb-Qb>k=bIZ!w~pp&eJU&Y4>qSmR)<%obG-d1-i$xeA>9XmpjW|-(OZ<P
zuD6+rFWz=E=X4rt4nz;R*PXj3%*@OH%+Gmpp2%2yfaG~L?2}n_CLnY^P=+7=xuDg(
zL^x7m)qgEH`)-A!n2(gdR#b8z&(>s{-WK4dyl0DOQt|!d;h1)uPC3Q7rYc|D#w&1a
ze&|0f(Z}Ui?ylW8-Z&P0A>TV;sx7LKORw(hRc^DGY(8E(@}tRCTfOVNvmuCt^>ac(
z2ynP>GZ<w|Bt4WG(MZiiazg=v7LFrJrxcmg9~oS7BR3S2o-eUVs${A-t4_kpKf(d2
zxa+pe4V4{0>66KQdu-a2AXS<5D&$C`Y!0TvrJ<og0l<K!E)506hCGab>YX^dG>NuJ
z$A3BeyMtNPqD2%6fGYJZihCcDXgdzH4EO5@NFGnLUTYbvkYuf~u)wH?d<|8KWp_7b
z4mrWYKOo@=y#Yvf=3!BX|5`}X=2`<ppit6C8`f(4^0A!0@$f-eKDnrvv&IcvZaonZ
zA@GU_1W`cjCw2xRyl{l5HlCO$F4N3=CFiP{*BWUL4_%e*Hzxd1`RqAfef6)QVT-$Y
z5Cf(7S|}qsM*vs`jVBfObk#P11cA!gn>_SETW4pJg77zS;6!s;#JM>mdDLFKh#MJW
z=i@7vetOSygZwP5OFgpm0AoYg1s7?2^~x2$T9V?AL+*&JwIZ9)*x11QnlT@gecPWW
za}j0$qHas5uvhUG^54&&ilmh}#zux9El$j30Sl4XqsIx1KaCX|>1Top031Jb7BASy
zUCt+h^8`4rz~3STHr%y`CD-EjI$B#f%0o14cFC+41lQcw|1$K)iVYvk@trLSn-+rq
zL(Yq1_3##}4NJP*j)S<ew5GW5F~K`|ZBzl8z&IY1knA2vOHXg7!r{wQ5I$EyQVA-b
z9xuku6L`m|m<$=4*Vq1N$`?LfDVrLee<5@{PhxJnC$|p8Wz;KrdQ+UnmX>11c&1&I
zH=cjuZLs-PROWJ+cK|{E*w~ns`Kwo{rNzZ6r*k2~CYB0ucQ1~&TWCrkEf@nnfw{SP
z?!Q;UKBvVUJhU_YkdIFqbqTSdh1wg>A#hTQ4GT-YnkX+VO{CZU`*$Du^~;Pwla$R&
zmHXS=5i+R`ahZl4Iy}tG?Mp7;beaA9E=$1Rb%Z%Q9o-jcd1z0NfS|eOs%7tYar30b
z_4V}?_x3(0f#Oo$L=taKjE79gDYwVrki*zOPXD9YV3TvAT=*|muSMzLq+C0IlzFNT
zHAWx`4N;@1tSMJKinkTYv%KIoG7&1>bJf@7t|E`Fki6N|);FBGEH0bR`XZ&~)cZ^M
zVb6;fK8NHs!r9zs3+(x(DJgGEY^(_$n#L{gcNuS=>96llE#};aaT;<=tF&1RK7a^p
z3?7Mbc2-s~BO~J&Y*s0Y{Sa-T2Jry0%phl>SCxdgSmznO1a@aKCf0JIdSaz#iD_Rc
z$UN(nf~K1NpbR`u5cpMUNzy!9#>8aQ2OmiQzDz*lxDgT2jLaZboLg8}&Z3q4bn_mZ
zx7e({h=(Q(;tjj0xnB@EsYS)434Ab%1Hr4sz#!T2QxCQDNJ29Oz%$X4ge_ClV0wcB
z=j+f)^|=_GrN5R@yo16w;&z_gCylbFIpWXYtmUB#(G7e3FxWQSdLirFc`kOm?uEv$
zyVdrn@SgjI`mB$@Ht%xtYOieHXFU!7vw9h*WNM%Br3!bCt>4+pD*{-nIvT&0-Rw)=
zixRy}$Sqq2>@xJNOYG$3<iw#+Iy*bNrxu61u8zOh4DdtXqaE{&<21lqAhKSaq?ZeN
z6=<qW95qudk*NaKh+SzejaYQ_qeFva5M$Pj7QOj1H|GT|a{p#MB%g*O1^Uoas1A(d
z76^Rf28JBc0|Yb8%SGr%r{L92dP%Qu@v9xu4#Iwb<PGzq*xBtCP60njU{#^8--($4
z*%7m>%-Cn^6Xhgu>_NorY#zq4Y)(Z&f&u6v)Caa-c#ERJgdNs}LkAnGX+x{hSxT9E
zc~Igax^*jaxUv|kB3ijav-790x)Rm0n|4$E9bBwI_7DC(iGwDE9>R-8V%pQ+a1f~M
zX*Zov6oztA=)qz98|9*Bfi4yEH&kAtk|Ucdkf=Y2NP8xbUZ6tHWSniX@@I897!oar
zfyLz5a8c>hPI>4^s8hwS!tdRqebt8lza?Gc2_64mk}e;Yj)$V|7o1>G(DJ&;Pc(lS
z0JQ4zXPGLZ*@Iutp5$d@w7#`4lN;~<8*h1+mKN=Pgv{of*5AKBz^QXwf(!t%1+Gl0
z(xz^BSeU^!=C{sN)72H1{M^;6l`o38Un;CzLs=$)RMqYXQ_b2HQiM9F?0t?s75rBP
zYM`Y97UIBGjc6z6ST)S1FG#_V!e_bvO)C{as4~B^N=EXd>U)KhfK$ma1$S0claamt
zf(4?~p6ou7f#Lk=i6eA<8c&}aq@>)Aa)t*2Z=bOofcGM=>)|(xd{0T51zoiNDduf#
z@(}%(O!Q8+U_jMf?f{if+%oh%_!8HzY^g`CFSdPgG36ZVD~acU@U(b33*}w<+JYZb
zg&(IzeZE`iWaJHwA2L4tp5D9dX%X`ExF2)5>+o<WQ2k~$B*@3!5fZ{h#dI$!-gNv+
zCsMRL=BI8B_fAi1Q}UEqp1bt*xYY+ZX|D^uHqkBp$Y^8eW@9F{7#qvq*<`w+3xcbm
zrBhkAVUF|~moP@d(Gwv~{rW3sn;zQW5v1D@fBvO2um5X7SOpqI&_=ivJNvVP0RgXT
z%aPYLcY2<QvyyKz8{vZp84dBG!dCjPlwVvz&x+yEyB2AsaGP6TUQzu>u4TlhO&T)w
z!~zw=UDCjscngE}V2G(DuuWjy`{8WfQBw+EFUV!)CLgcRq6r_sf64VerwIUVcXxM`
zcbJZj4l11qR8ej?#o<nXpz5*1Mh63TDCw7oh$Qgn1ecM7iKNdY|H37IR^gS!)de3E
zW|eP)bDzWd$<LGSZQGXjXVz_e3pXj3`u~)CT*X=!_qldD$R7#8{?vAw?csKh={Bu7
zZr^9vXpWqxEbZu2Jdr!QeND8vI6VIX5H{AzkLyAd@7E7A%J;@AsKfZ<$lgn@T*Hz!
z0n;dwjAMYz5ePW5xFq{_SYfZS6eG$6lp{r6#&7LuN+wzz>hcrx)F-N(lwH+mlbf@1
zbD!$yPyvl@0Zz%d0`(`bGGgeh%wT`sdxVj|W1iSXMx!LkrOtcj;rBafK35+)vI33<
zM?L!B3B3k~&AVzt>^bZfTx?S@;O|^t+e{^|O@$ltkCnplz$2Npp*uC43=W5SN|RZw
zY39E;$YzzgMAzjy*XD21(rNnDXpR{o#1k+w?g%Z$Ta%tdB+bJ1WP?vBJy5`=W6SeP
z&;9u6Unwo226-thetnW#Hl#=+;i~-4CARBhr0ELebA73@IURRQlG~%~Nd4rLlx?tM
zzgu|+ayA^?@<Gz0_sHIeHP{%{eO%guq2*ka`9{yiFvfXO<pqk26wiKM{{51z@iQ<W
zUV5-^p8+ER#b>PE_Pur*W5#3PD8I~^Hl>i2@cd!@;vJJb5ii?a0+=X3K)}C#f0EiU
zF{&f<xol6l%^QTA(zqx9osfLfLUQnXQGyQMY47l``E1#1?~#b25RcMk72r^JS*p$U
zp5LD=V7OnEpgVXqQJbJ_e=-vVJPob$W;(opG=Z$PNMV!riTWff%P;Ny6-Nj$A5bWi
zn+QX}vMJRI-h6h>yhTw}*|+C2^(=;omc4(OzRWv4c24)@Q^XSWOA^3H=TcvPD>Y6K
zG>P8QkJxHwQB<~D&&n3a&Z+vScfO*|B`G!^2XaGGeI%2KU%~s7y+b^qsCF-Noi;7J
z@rsJ_7+r6XNbq4ntN-4VT5N<5%teG}wtCF>(yJ&qRYYM)BuY=?p2Y{c>yd-GlkW9K
zA1Hb}Ucw=J728Jgwv|}CZaoFU-YA}or0c^%b}f0g9^4}ey{+E(KKGS^uxG!y9S#XN
z2RtF1`Cq08oY50#XK;H>h45N^IJ%>S-L3=er}0n(MgV@c9Mmmia*W-MV`^ez6#Ox6
z66{0J5D^ioT#};mRj6B987pB%5eItTMxW7zYwWMx92ttpxp((27I1!m!1xqm<OPD3
z%)&c%7**AF;X@1UFm-nK!KMrW50gBG-Z+MiX2W#v>t}&SYa%)tX}@3v7qy?G*f7<z
zSG+LXK7X~-${)5XsEyL##$O7X?bEecwT~0mUw$QrkNZSF<{FTiR;dUPX-}6PS*&c#
zz5i3AJ4;*#{|DaYeaQFr@<QP)EDcF%i6*C~k*eIoowfQ5fv3_dLvDI)U0ps9<3ovQ
zfuPCw`1BM50Y2RfHVoojvMIfj!rckN>^2Mo#7D<=SL-5a#Djy^4_m*E3=KL1;_n$1
zm6s*z=xO&FAhP$67)|IGo2chuA=AJ%K>-fu0N{E!$A(`y9CSl4?wLf&Ktz<CpBm8(
z%lI=Orq3dDC15HeDlXo|n7;mp+p{d^O~Uv7{#$TD_rMmP<M)U=KJ~+?^RiCE3rhiO
zfnZ%}ofj|gKobz|0T~#bgJTfjjD+xSs5G`y1q`0=w5uY(cNFBc+=J)9P->;bF1eyp
zxe_)I5dlBs<0`ddG&RsxUqwwiC^$+~+OLmnc;(Fgj$lS?c=SmeJm6+QD9)U}t18oS
zU7s7iL(9GT5Cv-mliTk-ny^Ba)mr)Q2`t#qD{44vPLzxfIC)x#MZp^3-RW;~Zpl{I
zwD|U1Bdzer(V8VV{ySL~w(5OSh~TFZ;NyN%Qb}XyrocF}pvE~c_q_Ehn{E}t(>&Ub
zl4{ZY2UDqC3H8DEQqTN+c9a*|%8JR+(NQZ^uo<dedE-VS!_x;73Q9#`W4hmwc<2=-
zuZ__)k0+#9+}|W9Hth`wnpDf<qb-@&-TX%%71L*#NyyrlY+RM_KJ-e6iY@z<oS%+V
z32cd>v@|@)yylSxw9;tUhjn8^o%*k>tiQFmyE9Xxan>bd5x0aGD>cUji5DDx*kJYS
zTUl8-L0j?`5Ls}1G1)l=Fc(Y~Oowik(y5qY4I;${97WkpN)PBwm-^G$Q6*$H9bR_r
zh7Y8boc3=O!n@0iM;S*dB+X0hXcXOe52qIab_ZnhuhZ8gg#;m9+q+Rt)XXTb1?<yX
z0K>Oh8&Q;tYmL3lts^as{n+*$Nfdh6{!I%}I&%-&J=;ik)+(lRhkMF|RcTr#(K1J0
zk^Ng};{%R9R<bRj%?~|JZif@D^*Mf@rlDACnJ>lw4@QyKubIG^lmqD7<qfoV?EZG#
zLi`c*&bYOq-p}V@T6=Wl2-Q8YTs3+Qj^`Wiv>200Xw>DkFiCn&J`R1Dz^Xou)89Z5
zue5R>9SZ`LWby6SHvqf&1qFG_q=IDX!^DgRJjzvl$WefSONjv16&!knHIQk){Qc#g
zgrHO^Qj?L1sUBQ`O-d-hMr@W7_#4D69D}RQ@B%Cx9O7ECJQQ2WN^V907#h9DX(!2F
zA9rcS0ZG-)&hF;Jw}}%;*F!tt;}8hpv*)*M800}Zz}~gp=k!=eXlj02L_`F@Y8S7W
zXwhj?*$~SmA=(Mc@A*)F2P<9OiK^bM8YU_vN-Wc4NSXT6&dG_7O|Rw?6z##{RCnW@
zUmThCX(+eVpwTW0z~Et5XlHv5Ah4B})pFWjAM<_KByX9A5j+vlt#J6XXQ!_a4JX@8
zD%h@#Z7CD8H^_9!wKi{2r@ttnfvWu8Y!J}%{JgdI9x1{*5ru>{v%ArJRE>q-!8S*c
zshPg7X06oE+c1%@mJNx3@ql~xDDglp8fql}n-G#PNbg`ml#3OjibK$`!Kz+XTKYXy
z8a*@>q@+C6vZ0M^Pb`C>fx%bXYKXgm674q!{1j0Da;U<A;Q+rMCQ*e#ZqjpJxetkj
z&*BFJU*c1~tzpC<Dj^^g%8*qezrkx6M$scEfJ<WlC?43n0)a?#)9cwEcSb*sgnR(^
z0K;NxVYz=F1(864e}@__If!`he=8RlE|7IM9r{DI(-F&~ut`mVL^8+6Lha&$7-+?J
zsL3HL{qpnoiu*<Rb;NZ_%71%7_wX<wH#avhD=d!wkg?po+j@_u)s8_<<zYg8IzMD8
zecJNTdK#HOGt2i}P<ag;1L3N}ee%ta^kDQbx}?;f(%N*gSTX($?&#Nm6Wu5;hEeSv
zyWV-V;|4^}QWKx=FtvCOqv8%qLWDKWZxr|PuRId#zfg+<J_FdY-q8~mj^kEVIWIjd
zIcfD&mG9ILLWSyc87(2|$c2Eyk<~<~>->NOa=Ki#@%j5E4d_ym4dv5tE|hv^XEUQn
z;*h{YZQK1bKV|G^cM5WNski8RC@zoAYxz_QMzLyNLpYO~L48fk$mshNL*(br2zUXQ
zBaAVyY4bZN4Tm`Xd7`F7QeqG8rrx!+!YB_~a5^e);FQi((JKD>v?50UOd=u4)TnkY
zIXVa801%StnVDr>S(%uw-H-S^Z|7~8+V(O+=4y!+E7NBl^RbUGYpOZXbPPuOPCo*t
zLs2pGsN`MkXqlCv*W%+3_4Ns8h}siU=zG`64UHraZws&9GZIc$Nbre8YM*jT&NsLP
z=^`oCFcA`iecrDqC|lWi#>pBBC~hIHVV>OPUM-Hke$5l2yy|LQI5Hr1x)Wb%(IR~#
zQnz`a0C6MIcrPnSJ_r-hPj`Zb0Mzz&S$<Ts2I0o4cM*9$9c!idCTbyAW$n4IV$*6)
z{l7={fKl9On-=e(HevVx8L^f-rGVq}zfw8f1p%W&=;-Jx=kEVNZEo--f4f%=Yq<LR
zhaxa7K(TnP@bK{9Q8db!&{a(D(DU%9|CN#p&od&rh+eT8dp_OY(IJQ6$a+Ez48&2J
z4l0*Fb?=>9u6RNbo?cL}dMX;hYs>A!xU*x6EcyXWyN-Pb$+b>Ps>HpywNA0uL-2$%
zzLY*C#xk@VE0*4L{;O7Y)BWa34l@(lpMlH-lnor&_mNgW66j8dymc!>{?t^|)c2`T
ze?U=nS4@AwxWGL1R!)s-I-rDr8DfJ--AX8?^Hj^2(GtbO6g@e030xPF3wo0Yk&W{(
zM~NQ(=rh^qQ}6Q9vN8>`hOuZhr!<`BA32dORpn&Ph(<COpWJ;46RNwPzQxD0<^6eB
z<=YlyQ)>sINfHp8Y?pe_rd@Zr!5RhvG`6*Gcx=qf{ikCpqzR1vn37*YlTHUbpn}45
z>Oi8nN<vMIh5%LztqsG_8;kI$G*D1RO$|efm`A6cgSQTZTHD*jo<6-QDhg_V?s#io
zvH3k8d=k_coxeex{yb2=AK}az3s?=b7RlqO#gVo#=1=|d<pz{fk&HZXP5vYms^KhB
zh2KydW}Hpmxu(PM2d-x)4BuaWBh!8>b?jV$=BY?%`sd>HLf`I}?jTeE2+_Kjs{FUM
zUBu+yc@(2|K0R<hSUq8C@^MmuoZ<GiksGV=hB^v=S%Yea;wh89%_JCvZ%3cRrvvi}
z)$3y*P4#iq9VRBaM~~Dfm809Ce*vou1JA(Y=Wj{qUTBy3(3{t^mQPo}vVIPvQclBW
zJVc$ko_RPQMT<f9WP`lwwsDD8dd~N$YHcYc8($N;K5QJE`jJ9IMNLhAr~_$jyrUcg
zp9(aD+v$`Zy4kvT*#n~cZO|tNLh6iHFHMD41Helb&iSVNC>Bk01bE{V9ch6(GPE(*
z#jS%T8nAf><RZS|A0`x1EnoA3)zPGO6CI+j{V_Yl^>Nex$rKIhwZ_mHMy7FrCfAs+
zx*BpDW*cuBg#6X`q^U?2vPcsSR4_27Y4Emy2KGEZ0MJRgdCYDZpu(LA-rfK>)uZw(
zIMq|}5U6qp4NKNP94!!g;Xl5QSgMjgGZ6*`Mv&H`v>+5=o!egOTaf+T`H%Pm`^w}C
zV0>YwDjD~7k33&}BH03CH`Yew`5=bVkO|BTP?QR}Zxr4_ZYQl&VPYg%k0_YI@Eyk+
z{no8p1pC;U%2YzGSTNFJV7Aand?G#{mz<n7Q}-SNC~Hk~A(t?oW}<JmzkK_adx&5z
z-r#7OC<K4jYl+$sVe#=6aO{p>=j7t*)0*LrgAJG#I;~q+SU}jT*$Wk6RL2)efoLyG
z8dr#Ga(++cp0hYj$tx%TJ36k-=9|^RcZrl=fc?#EY;-YBcix_KyzZ%ciVJSH^~3e1
zeI8L<gV|#$viQnKqOVAs3)^$?FPYnTbCJRHLB>GYmzcZNOn-jS^HSL2>)ThsLWfBA
zr8mzur>a-aYkG8h3MO^kkRM|C)mr<bkt98&N)Tnmx~lQackmH+oe#ChtVp0-IiPxk
zR@`N>0-IPkVGt+}&=A!Nl%3|rh1Lr)fNLUIiTp!C95OD%BCiV>8<BDo-J$?3BbcxR
zK{FlTbpEvVH6*F`4T7_UL{C;uF6U<j9g1Tndtb#EHJb<v>!aZScV5J9r$~)(>P-Ew
zs+t`%{NnO-mtW!hf4KnDWN%Bfprc5l4*w9vb<OspZBf%&%jdf85FM@6Pi2$H%E;{1
zfbr;~tm|?h-Y}ILqRaUj_t2PF`;>?;G*ajgH=8K;=}A(0Pu^ewYXUcKdw?|RP8saz
zJEJ*CP^v}f{Q!JJ*oE>wDs18LJi^AsC2<+Yo(71YOOr}J6IK8OAh-5Y39zu<Wv#3X
z3{au^w@9@<SF0ill~z>jM<5d14(>q?F;drCdPm^x*D><M%vgLJx6O}M&{kqEGCuaP
z5KxvOR0lK`qV)$^bVMip(sRuB?{iiDGE`n4E0JZl=W|g@5Og8a{%P?PD(u_9%lu7-
zsVF;;sr;rRI*D0gv~-<0CdG;c-`sghrO$o9$0M$DV{#e|!6fgj0=QTPC+{Ioa51-U
z-I)KoH}&PyCmJ96rNGZ!18Bfihf|eDf4m5LKq-E7irGpP`BaXTg!89u<BM0`<-W~u
zmnog9cu{uHT<EKSFbhkLVm?1E2rpolL>y*!`upMG-{QIgcl-Hk1x8z&wBuaR!jEP{
zi@Zk=;Tiof7@cry8i>Yc%t9Kp?X-OScqN692Wb;hw0B<M3w=q@5nJ=&MKg<UG`nT#
zeoO#i;B#bTfMxBZcgEe)15+s*wHTNgj|c8Y{N;7rx_$rteUvHJ(dlVB6#)^qk|`WD
z_O~$!D0|xbvAliLqWRVC){u<3-lWESGO?SOq(;;A$)?sEP(*B?8TsBxhzo*ooB{rL
zBiINo5cpH}yh(5iSRKx%hmKLde*J<oLY%<t;_MiuV%XW;-Cj;d&J*}jJ_pMPFp=n~
zc5#6I4B8NcYcV*0b6mAz1#lG<1h%gr{y=M(LH<&{_Ciz)1&}(VE7ijgiUsM~*y=%h
z5rkSF5nuKY$006~7@%b<)tC16rHZQp_fnNIhfP%9PTsk3N2cWqQziTjbWLI-ThkN+
zxgeYoIm{IJRvSO@f!==?s@6~g$1AD80-K|xiJ8w{qg751U_SK}y-{dv{t@uikD~Og
zA|>#=QS$1w=~}&wcdhRMuhbvR@<2nxJFnb}Nuf0veccg_4csD>LFI#RD4*z9--Zw^
z-**r4ZJ@1ub<G805vr0^GXS+7wMq55p+}Y%#PI!1Zj<7+&IZ3$KHk}h{O5N+!wxs#
zo}anCh^ksb(g^WCFpF=)+BQpgBLk!{xV%PF^yX|-3n=Ue8OG9O8!Icw4n9Jrre!=$
z327@V0fRM2BYupH$p0#zwjbF@xpe{kf&O&FaIKA|oYEYIc$}q7(1v0_caG-fpi5|}
zf~)H|^AxH*?Nr1>eD5)-9TC8upP{)t;-7Na)Pa^JxN|KEpZQtBMj^p3Fd4i*FgQ5F
zQyb%rO+p>Y&yY;k35`l{$yk6&R~<+wJWz5_q^j`R^ueG{n-++NOJ*LJr4K}xN(T=-
z%e)6?p)d3UK}W>9pBTdkCjWicSUw%rX)a%)b5-tVB?iSXdTG)ow=L^E<-^a-r3A%?
zuWSFl+xW?<ro<!G68vrJH*<cXdcH179t}midhmpVN|@0e6dq^wE}dx*ThOX3+2itp
z3#`Ao7+`1E{d-P^*t$5~oXgJF8otH`!}RQ1L4mhwwwg#TTYWUA;TH4`fa-x_HiyLo
zZ$~`%934V%Ur<65vzKsrhKb;CIWPmu5cR)r{W8jV55pOG567W<bmxtm8Ff%O<aFG6
ziE7f(9(hjF6~{;Kpuyl37l#3hxb_be`y5v?Z+@Z?*4_B**NQElAVdW#mKgE!{KO8*
zQPmwpp_C{oZtaB~BiDn&Bq)4nR2^L{7o#&#g%SozQVO~H91u+)*RbZGaoZ!>*$I9L
zQ7m+9ir}ZD`vIqm3QgB}X$wOMsiTXFVN*Z^7A~%&vGKh~Hk|+}{?c|TvQb56=f_h{
zi&U`X3!LxuuicUn@8ohnbFA8KMlOvM(gPdN=jW6&iSYSe_=JAwHxwe`aooPjYb}0w
zy~_1Cc57=3=0LLABB93-Jy=<L1K$_6Jhe6|0zSXa*xJTCo#iEf3{jRafIHAJ&rK+#
z!E*yOP3}^Jy6!LFDk^Hb;9nkhd%!bfp97ZyYu~4jRMgddLG3d)eR+Z9X)#x%Srq@7
z?>?OgwhsZ74=J-6q_%$`;yT(*h@#`;!v-^6YhQ^+#cvd@MY6f!qYMn8MVZ&nDJ?YM
zCX_eOnM9xnEb6+){nbP6w@^x)cR+!LU)(~msZc^pI4K;D7ovKB(F3DQ$85T8;~^)9
z2c!qkip~=>>BCjipk(PkYtLDUNv3~^5ej~U@+<>W))xE-A0$*^{11Qp0IMMu-7`rP
zvkmGQpI}#(ix<$`DDca;ij9R;2MxIbp`k%Cu>6k>#x04+e`2*q)xL)}DsP}?26fgi
zy~`8z9IX<Z!NEaL<hFrmO$^Sa1%jXqRa`v0s^Kw9EGTUS4D0DN54q<KKr5&M_v*Z>
z!{EN~0ovsKrX(U7#aVPGhU?9@x5n%t25Qqxx5tI>{5)kH7~ckiV8?3dIorgfAfQ2S
zKT&W~Ks5E2J^q==<%Jo_w+Y&=Av~c|!OZBJMbw3INlJ*b4(5BDo65!U5}~$R)VzQK
zHJJRg1LQ?05k%n)WZWc=OEha=X?Z{^IE`MvHh|8E2;15loiV!)p(7lvjgdG*PsxGy
zdyliZO(^}<_oe3RAFQQwxSiORi_!C!*)9_g<!A;02-eWjg2`UJN9=>=^c;q+wVC(u
zr$yZ9!Y_srd~cuNr*D@u)+Q^-%gd)BwIfIMGJ!ho4EUzN(}spZ_3-CHLN%zOF3hI|
zg4m8S=Y4XxH9y&P8plMQzg=!*&?G66kBiO(A3B9_IBeKB&WHK~cMKC{00cJBuwuO~
z&o@0_f_wh_$>Zwk`e%I|-_nu>I%@3J%qBvS)(0Ln{0jr|LPv+w<v=-_+cdHxlqi&s
zz4i<Tia&*Jr}jD8hcs)W;qTMqopA_-DepVHHNt?k+yqWZ{_rw%)c4ThYil-;Jqd0D
zCb77EV|lF|2+r7<GS^WQvS<!{bm+GAezSI1RrL}Ue%ZSjbO1>c9n35?4!NF6M^Xqn
zKZG3EuQ#Qol?sQbL=?pMBA`=29si2Dy70gWW}wg3T{gC6panrwAinB3Cp{}OLZO=<
zATfks51LA;!nvD)hT0YN^=FP|1G`aOA3>vGFp!~$BDjB|?yUEYOiWIugb|W3Ss_5}
z1&FQK>9cFV9KnOORz|_We)DzZwF`3-n>QhQN;z2PhjWS&!cK%Iga%0!6%?>gQ6d_<
z5*tgOedVWA*Y@6p^W()*aGN{?SC@MZH^s#fo<K=7fVO+HKN>13Rx|QyKD9?>H+h83
zQSj~13T)M3So?~I2iew^=n;U5(}ogSaKI&ffC3_f!)}}1H%kv}=!DO0iNWsIt4v1v
zIuR!|Skp-4>sA|m3ihK!TfB%&g&sz*E;6#S;bNaee~%0W1P8jLP0>Z-SH)-rFGzNY
zoo<F&`-+MWn3R{7r>L_ZlI=cGwOSx^w$-=eB;rd0U&xO>J}6g91JhcNiRi<3Z-?`!
zV5-cluF{tt8JY^WSnvL21=~<`@SJRc1Fmrx9y063VI4knm%hH}zGx5oJ&NiN-7<@(
zR^v{oFv16n7{PBUHggduLhVw)&}_x^VTr?5tBW^ph1u<i7vpdy5rt}k^GpjUZmq!K
z7Pwb*unYhY^$a9u|1<lvVaUB4CdOY>%HQA{QkN*=#bMBh1uc~n{v9{(HXJO@PxhgC
z5jjvqd}zg}=O;FALwN_fRrv0@H(xzdQS=SrV%`Sw87gWUNQ4869&jgM#vweR@91jD
zes-Sy2ASNQ->V!MZ`w`P53}{o14wPe2Uu9$HZ1)Cq5ZQ-bKBvj5!kT61e<^EUgL-{
z9z2LZ3@xhYuXx2Dss1G3l7v=Dyby|;TIHTk`K@>_^p^?a!U}>Uei$V06>;}FaQD5V
zFkQ^U*R9S`LJ__%>>)3j3m=pqJPqHNY=emb>O>!?C@)*O$Q(3T!2jsyxAt1+87ays
zVrW67jS8oP7;-^qrrdCJJd2<5eJ@IqZEi7;rz1{8T)cGXuWr~0n+;rJu0-elxbr2$
z5AJ_0WLx#6vNNvcq%qNjsmHpc4mfB^%fpR4f+nA+%ebPfI)JXGOhVM=8-cn(Bh&vr
zM2tiADeFsaZg^_{ji<I@*jGP4KO=QL(h|=>c<Ii|N<tXt|M?gx`+ZeKTn%}7aRx#F
z{)kG1zK-!D5DJI(P;$$?`fu<Um}Rs6yObZo<h0Um>QlVXa@GAKLrIjRb_{*e(1(A`
zY{LedC$g@=MYnVf(5?GYAYov{mCQFHluSoAyx<zlK60PJj~I~h>tGCX_!Mt>AvnF|
z=+8`DFxJ+(=RO~Z_ERWPL~@%X_q&-D?}3kaw0SuAd_AWw8B4gVe5c5sj?M*j{mDa;
zHs`vGCH%~pZ9@Ou=xE&FL}R@A2hN-j-%&%5rqb8_6lA*M(ELO1uyLkOE3VoV7X<1f
zoJ#Q5fyg_=L?yarhaw064QShIDfUB&gx$}z#~&XN5oyveLyKT7nj|XtrcJl(StMLP
ze04y}UB8U|ot>9%%%e~%hTDNJBeHR~>o9bnRYqIV+9Vo<RrJ5V`S(8L^0^lMjVA{|
zv_BpVt-)k~uTV`k(Xg+YCUnVazd(3f+I&yrsl0vDzsC!|jv4%`dyl&k^}f^(e4W~;
z&`Y@Ba{qhV*M*aq@S0KRF#5lr!}ARKG1C3d)Bbm*jHrn+O5uW<eDD>j2{UBWH|>A`
zre)IK6Z1-4hqso52Q*A{qtIma|K2!sor+&MaLI^UCd=Zt^|`*AK*3_fOGl^Th=mhz
z@&Au&2>aT4;9gmyQhJ3uQ8tWF&q=g&m4xX3-m4ra46if&%?!pl@q@o*M)2c(QJHLn
zMOEH#`<AiE=AQ-juB}b9w*RINTs>EIXSI@v{psx=_<YP6_z`N8pZTwZ^-k66p`0hS
zFE#>UL(IMYe>V-oJ{nogBg4S;=DZqbC8j~(Rq#hGkV}FD8opXtEaITo+zx!!OUoJd
zt(~`li=yX{^J&rk-%I|@dRK4-NX)GE!v6J*=+8Jn4H=}UC;jj1zh}O1x)Oa2vGpP&
zA9w+#gU>b)8Lw{AOx&^*U%rt3H+Za=|7L;N<%AoN3$BNVr=^SBOI=?hm|&VsAOCd4
zwf=iMt=s=T@dd0iM~}m+h&p7yGfaTo4kAU<|9koibPSm>sZ2j&;fgquJnqEm8g6E0
zk7yqS%IAv&Z=Qd`g$3e|`ejJ2kd%a+lD5cyS}cFPH+eCydimNDXuOhsl}>W1LTMea
zT*G-!3sikE(4goifWR3;G-wC`p&^=;BJQK3eQEp38YnY?Sc@JwpOre$zY~T}v$$Mc
zrqhB({NMpx0_bYno7MTc8SI$VmF!4Rw~5$lE{+GfK`s?4?*M5RV4_V|-T*NSs#gsF
zKmVqTsew`_K}_N`&$*^SD0$un(T-8nDlm6m0%0T?OP!VaP1GteYKHRBm!3i&<QUY}
zi8^v%_cxo7`2kI(Zb4NY@gyG|Wk~_=ET(0T?d-7nQ8i%^0|6SHt$o{mSzSvxVQ;_}
zF%bX5H$Zs)CrJC5ZKC2R4CLP=b#oR$A@IS-GRdO{CI?(>qLu&wl=DNCpQ9nL@Rw=h
zNebVg_-Uf>30xuZV)~iaRJrZ2HdYy#%z$|TRq0~KV2(7tzWdg+y=M0>fYlSe>AmL+
zL~){XKT)~ci{xqnn<2NMB7`zX=?%Hd0flWKRB6<lxLC0)yAW}np`{$+c^+wjk;Zc&
z9^#h3?EMRV36=?i9k*+@o9~}NQ)KvJ)e){G&=ATcKRGFm;=hrshI;&nuJIWP5VOMG
z2`&QfVfW=%StsHCB)#&w?72=Llt5C3z0RvqJ`dHE{|{4F0T$)9wFgj8I+Sh@ln#*&
z0R;slC8ZIS4v{YDRuKU~kdp514y8n5kZzDhI{nvp?>*<AhvPwEzWKhr_o{cT^)4rA
zC{@_~g4fnrsN4dn;9}^7DmEE~s&>fsqlzyeBh1Mn<5@rP=D4O{RTz5saPjw0nE~Dq
zP7QP%L$VJRZEU|Fz4-Z|I;$5AEDRhYs`fZ_6$Tcgj0gKrvN~4{Wt6K*Dy%kLGEgru
z#k({ocxZsCv(EX5>OP5p%Ce9UZ-n-~YeU=-wChC$&l21|nwC8=0FI1)f3v#1=>TSd
z&!;|8RbRH7eRu-5r>=Z;{Eu*E32Yy}h!RY#!cFW-Iv~Ah(WExxN1ZxuZ+lEs33Ku?
zdX)~N@FkXPYbe%N`papNrsmk_>;x$zGz63=wm`8q8X_Pg7PUEIEVt9KxHORH-wSo|
zVMm3RE-*|pzTh{%OD`*Xr^|-Q3VFn^3`5yI0<~pso)t>G;pGiS0mZ%bWJ^%Xg+QR1
z$qrK_ejK9n{7H&e*Zx8jjfB#Q?VXDGF7CWbpL3HiU*@YrEf3U|zSvEg`@5I$$H)RS
zjDlrr2{$$%9~svNXBPoPH5@?4VMpIMv9b^RH%qbym8<3HkGrKG7nS4vC(|&xX#yQ)
znvM5OkKC&7mS0=}h7U+zX{EVqj?aq&qz_XQAB?r&BcR`{p&9-13q27%;yZH5P*=l9
zYEyjkj(c>)rn^U;q(hWp(OQG}1ofxjuDW|fkxu>e=stHGux5Io{Ofa(q95#YaN!M`
zE<dPTyGIc63#%KkqWkj7<A(n>Mu@S1#4usK9Q5p0Km7HfOgw-=l3Ng!WBc=LYid3<
zZ}7s`8}m&xeJevhIv>-Qn7DVY<b?T`?-1m^2&k}J`XXMmmc;jk(>*nLspGkI0;iP@
z*U#vtoL@O*(v}p89|KrEd~6H<oE1#($M_k2_tdn`_E})Ov6K<!S>55HLiMtQ2Sug*
zQIC@$nURa>&Al%ba*;LHqC0S9F9Kb=rg;i`RYpDXt@9h}{YPkysg^>9ds_tjm!(|r
z^9u$dmwR4%EAMQnKNp{~vOPjshb&9+Qj5Y_&yC*0)Uam}76R<;It#XO%kQ_e2+p-b
z;#FJUHX74joV_%Q#TpV`RTG2XK5|<9eG4}W-tI=IsW$!P3~!gP{$;{wL92(5iJpJX
z;(ovKWg{1U0q1*>4+I=#T?iRl{NOjJUXdkAe@@OE{m?q`?q^zY<BC{ntc?unUs79W
z`LCtOpKrhUIwNJQ-;MNo@ncO#+j8%RHH&3=g;&bc`|kch@=7C&xa?2J1&QGoLMAU~
z=2h^c;rbDBia(R4A~3c~Eq?!$z~p$0yS-6)_O!BHCszxlz_ZRnLvvL;bXohf(QN8F
zr>b^^I;JP5m+bb=w)#T-Y65gveHLd|mi$@*&ILEcBBP%Q2-%fMQ#;sL3!O|{7navK
zphsxyYdyo26KwQ?XV(l$vz>5#;vwldv*Mc0;jTjc3O^2?4GVXx8u^S&hdR>c;z`dZ
zmbJ3k6)I<1xtIb~51TPJgW%viA_JxXB$@BF$h3YTcZ;PtT#Utel5qbLZnmhes|$PZ
z6#_ojR*SO-4MmebGEYaOZ4{8jFYD}wi!<gUf_Tsg4R697ay1xZ;@X-!HcCXex1i@8
zI98OgD6CcPKOt{ap(^Zkxstkl|FKYPeSbiCBh`F4xg^;^lAcgQR@Jx7Z>}ILj1FFl
zF;1k@r<DB~#RAkcJat&Ts<CtDG@V6e2hS5)2YRQsu$P7H%2Fp=2RQRB&nC}p-Gyq7
z_m>O0i2AKJstJ?W8N$hKBE4^1^rVcvB)|KkVp@Spl1yruK#mOi5$x*x1O?-2(YDd8
z-;JV{?|2uyJjV)-wPoAhd<?%LzTy86J%xBK{;_-USxB&rVU+8Qa@XNf{?SBt;{KlM
z&Vg=vlt|l{S<<`goy#EN@MkLos3)sh#*S<r%v-#04@%S1LvG;9N$P0&eI=^Ie6LK&
z-?cEYK@&;KERdI3Q<2i^iHGDr_Y!p!I!WinXjc&t(+>UpO(bwgc8DRG2{Xj`?G-qU
zEps|)cE8Q_G<QYy{0U}~bjrzQ87}5brSDZ(3>qUUv6sWQl8RrlM&8I#3R2Y{r}sMQ
z!nSnK#LfQdpTTBg8S_&=pLN0lNiqWd6^RnwVLLlNULy&SQ)bG!CkJNrhnDg28$Hrr
zr+NAp`kMO|UbYUL*S#rTyTteEQ<cuO!G^;@>c~g3eO5o>eCKFxz+ti7XVCkdYR}?a
zn0tqYw2_M|_bv$bC>+@e@04O;f8-ID-L9y8PrDNCo#VrdD#f4xdnViEapqNGYH;#o
zWgoG!Opx6w#bgR(5Fm2mPYKn`GQhB@sLir2qaeTH&oI{^Q)P`W*QoQ@W2N(9?()kc
zyO)yO>)ax?Wf!|utQ<|70_5ymxy>ibnT+18V$q}?s5`8`3;WQ9>^{G@++J&W>0bNe
zIV<k@Pz%HyR?7U==Jb+2w@=E6h}*A<J6Nap{jnIn_mhCOSjbZNS@J%SRK@~z>VTVj
z9NF9Co3`9e&tQtYS{syxbpp&XzwV@axyW1L#MXFVhjzc5JNBQQQ!tMrt=#%1`E)-~
zx`-NdhuW0r=;rJSR-|SylJtZNXPKYQE~&;N^y>wznjnP)Is6Vw1cjNFk?jMQV95`K
z=W1fH4(D13A6TH`+L>!`C`*50GP@24**9Xy*<M}-g=5lQMJS7-_CY*2T%WbAk!)7e
zRgXhlP*&EO$RNyND1%gT;z_c;e|zbD2JhCoSM?tf_!~%`o$soTPk1}D(Jy#AlXjNH
zDvk*f36r3lHaN346eY>7V3dWQmQdPa;o7!ExSvr--j^M^o)_?=0`oPF_3tr$>d7Ck
z6o&gobhjz!Y+vY)1g2pW=_)<5#gWqM57<eLI25(ptNVH!aEEyWGfvNqOT-d{uR37s
zZR^0VN6h=L?kQGrGX}bey4@0=O6T=^b27`2%dqEzXmxz@MAMYdw&@*xcBXbb=cQ?M
z_suq<@W$Fdy#z8&ue?_t4o#A)O*15B^EP~6X{;;3-`WxyDIn{5rn%9+5PbL14g^}N
zojO#TjJP3aHkZkyzw^H6k+LV10!190K;DD!4bH-Y`(;OZFTO#W0lULT5xKcS`}2dH
zkjUiK^r-@J(IKiva(1{yf)0FBp-G)N7EDv;=38NO+I^o`WLATMP`4XxTs^`OFHTwe
z8_zk)A4{R#^g|DAL^Znu%8=+U6X|*p3iAgJE%3l5Sx>Q4*)Q8Ca^w=pT$RJKXJ$;@
z%=EAjo0_)onKPYjR(r2C!V92Di64lh93DcDmU1aii29Qoe|9B1sWNt(dNewPqBG+>
z5^uLwFdT<JZ;`%3C+Jw8ji#QY^Q@dhWi{ljwT2CeFtN-kEu)-%=nw%xh#^jld5aWT
z3SY~Sro{Ysb}#EU?B$+6n;iJm`Go9j;e{l$9M=tRf=0aS609+C7%zMnd`h8JPcfZi
zUFW$OO09vs!ziZBW?&d6RqHt!u32ec=<UUZe+~u3VFopLYstx>z16Jkq1&l*Y|&_F
zsJ{nq(}PY8kdoxy5iZuu2jCzwx_Hh1h?2X`D<L7}iokKDvWmu&fVsgM{6m==AW$_V
z5j0B?-V)ba>`w5RaVHmp>=t^+)eZ?ek}DRo6pGJrB98VqU#o*>pp0uBO%}ngNRJc<
zO`f{PJ!!r}Qi>tRuGr#x=uAx#rD`n_9w8cK`gMIEtH4_Jb28a)!JbzB+=I|lYcO_C
z!ayS`Mv|KmTlK5>OIKg8D^l`b`5M+yjy--EC9Qr7sCPSVKG<m=ta|5$`X=uEA%5uH
zqmECV?M>s`o)m7Aa8ElIk*2s1nI<aANl0D8bVVz&l)^>DJrq3@?Cp}t*a1W1!>bZb
zNL>|GcZ|iFwdZvya_x&$S(aA!_lH?79XR<#WwK))tYP#^5aY(wn0_{-gP9I5PjsF3
zd$V#ZU)MFtWhS3KdYUgN`Ig^Ue$wyCa2G<6?OlNRnRHYNthUB4N+rr|y_|H?KBh}U
z(j;E<wDujHSFexxswvx3uIDeE27dWdi}RA@`T!`ptPugmlM4m}u5oR-US+;MlGyl1
z1>q2Py!hBcO=)USSd<=idq{BCF+7_RB=*I#A1C0W)}i7AWyMPTQeM|MN$DFn(yYD{
zp%!zxej2*A-TD*rcKOPNL}5bMr9=E3X^<9L>M1hpYJ$L%T4$F}HGh;S&Hh&laAJP8
zv5VtkX?vsLymWUzmo>GZ{Y_1f3T)Um;VrdTWg_<M+Sm4BQIR}0I|BvtBi=VE*oaP4
zNQeeLZGchddC~J(a~w8b2Bi2VTY-s+lC1OXl>KD>Jr^(YVFPegFcA21tPXtMo*r2b
zq|RHbG3(B@97jFND)dvzs=ttmM<!->zUALX;HK>N@Oo+Qhc#C@7sXC43%@Er(<49{
zbu-XJezI(WpXH@~5p5Z=GfeM!XJk<ol@>d94bCIIuU8=1vFVtC^(Gbbe%nRrF2ZJ?
z)&h*%_X~-e68US}1n02&pinCw%hTN4Z{yv#QOp^nf@kxh7qO0=#nj@bqCXx??Ue0e
zFu&>m9*j+gcy<8x3&dQRW78{zH{hu10D8CJ4}#xS9S%YfXJ@#xR(YT~cbvaidHs>z
z;81F3B$LRxgl<@)gv7PRPb1Sy7acK!H7Dlwr{Sk(BA(W=eK%PqkPD6dqBNihq_Zf;
z_3f~Iy^>feCG|?cGXg6awURMTxUzh!;!^PqMzJg4GV@W~A5BV1$?ncH0;w;y4&n*t
zbvnLgzX8gzjGTo#oGN6|vJohmNv`be%7U&qlK@jhg2hUyE+H_*++*Z@gE2L!d8~<4
zk0Ic=@m`;bfV}L>+8!)loUMA4JIbb?CUj-us8wwEODoHGfHdj6V?jTcw39VcjwO|n
zITBGhm4<OZASX!MWplRc%X543XgRuoGSbG<NQ_8F@YPB_GPtG04cK3v)tr4);&kKa
z7x4=*mI%guA)Y=^=P))gni5H|e)G~|#xPPv*OR6u(0pYzL3RAQ|FkllQE74|XGgvg
z+L}yj$mUDjY<EHhhP-1c{`v9Mu^jm#jYT7|rtf3r5v>8BzM?I4YxDbceK^)_b3+<;
zUd@v^SU#p)n#F3hMA?6b`yE@p0d`t0+zque@5#-sa7KP(Uu#2~^<gkey8UIJbH6>)
ziG{)On>$v!>77k6e0XGegWG)te;sMEL!yFe*oLe-G<PN*9RIG<Y%cj+3cesExw32p
z1y=6ryBeGNikkF3=5!nOL{i+nwZUJOL^%~s`++k$S5okz1VVhv1Q>j2wZ(1~wIa9r
zo-l&*u|)r<=}6}3%m`Lr2i+OUYV*5>FXvE5zG5|!{|_LzKrb!8=cCzb5`Z27J}um{
z-K<)@OJ|C4@`&eY!0r_^Csq5$xw9)B&Ue65JvY<A12e&Me0QA3uKunSD>)IZS^2)f
zGkm$q+dN6b!3($_b@#FgET#8{QA=%?{~&5j$?b{l$h@w4*la&(L&HE`=byf^vuXQh
zy!hG6;W3O(%9q)=rdNJgqBk{pdGb8Vn{{fQvZF-Qom9>A_Os2bG7`y{&Le(`Y2P`k
zrWhxAI=9d9RY)b`z5cSbfu2i&G=?}K<qCdwEISzKVDhC1VWLmt1{$EpFM$sRUJ<P7
zeJ5)_7v~zgARHrIC+jmei!<Y-Z4nwUbbrJ{3~C~r6NS($y|Fr+Z}jTF#aKKkY~vYo
z(VTz~$s}Q16z#8<=OAK8YS`Q`C(`DBYQ%P0Mx@GJ4%Qn%nCqtwF5C?yFX$+u54wmY
zkoDeql$|bFA{Br1SiduS)l%rO6U}2MB~atiPWmJ{1(aT77go9Gm7MdOWvwf0DZZOR
z+bxqWB5Bu7LknO2bfTplCZO`V{`$L=^LtIh&K~E7aDXQZOsQ<jjLyl(#+}5oD=ic9
zg)X+g=U<Gf*=q6n-|^UB!Th0r?@C+%LhX4Nr68|%ox&vq$PzDK8y$$TRQazWA-_e4
zPTG+sDPx*fxCme`vlGp4IQ73PS-%_R%!DQd1DeUWhMjjqse{1J2GH)4XS>#$k~J|k
zb379`HTAkPy|c4HUU^oI(`aZ@CIS3L&%Fmm)+u&<=Qj+JlgSRqKG|MZ1OGQ9#WAu*
zBX5eob9QB+rw=*Rl$`_X;5oVN9<zNaP%HBoVdwOgzNnD>wa3KF)&{1t;MIvq=50Gi
z-`d=^Rpe#?aZgo0LBLb3+U?r9#UMw#D)-N<4K7^NutfB5Y%bjA9%kaIzI1#$GppL5
z(m@~#?jxMPquD1In>6bIlZ`Rs`VTgKc3#dkCkRZ)mBo#Sz%bi2`nmn=wB_mi=bBm_
z?1*Rg@j8E(8=CCose%qdj#q^=&jrPTw3;|=;NH6lzL;X&X?lLGMwdOrRm5Aed^W95
zdyY2g9l>KaGM?xvF!(YE;`HhDb=$va&_*dpvi-J;p5FkP4A0v?lRCwWws7^V9|9Gw
ziN{Sl2NUQ?b<e3GCPOaV*#(T@P2Kavs)KE#?DjYQtpi`<6YIVQr}E<osToAU|8BAs
zcItfEs33zgLQcEjJA0Rw{Chv1ujeG;g6Upu6czeu4dZ9q{$R}tnu6v?rt&Tib0L!!
zPa={{oQ-zNqm!Y>9{Kg57-J&WKKwK+KbCrKs0bFBq!qU@XmSw^aa5d2gfk@>AZ&VW
zw`IgV;kb)Dv%jzo9F7pw<?*hQl*X78U3A~Py6#GonUu}MsTHcc*5>UPqa4wgHm18D
zuBGPSmgj<ksu(RK6|9ANaz8|1rB(_^ef203Hu9XQs&5_0$1|%Okxpk1OdAK4X0~}+
ziif(dYoD^^R9!Jbzfsv`6gw&4gIjxl@33u~UWS~86rR+CX9Hi0ECfSyx*TPv&vTV$
z2nhB&N#0(Ni}p|%JG&aq`XdlhljWou!vZN~Cm%=W7Frgm$iEj7y!ODI^?3dn3w5;S
zXMe0t{0tC4IU1C<Wk!A4lF^+Tc)9ErwtFXUYO<;xQv0))of8`1psdo3QaPr>wZXX{
zcQBB12h>it5UrM(;?A>g97)XOWc{&H>PjA2T{RVJJ9^ao=D#_FV7I)qMZB&*zp#IM
z=g2fGJCR~xU}9A<nPic5;P2jVQ{k4y-4Cp548qV{bAg53K1sr^Ysf@54RSS|61oN3
zWe;mFU#~wqKWn2UpO<UfL9k3&RCt74K{GPjMRA%_G>)Cyc&k1%#Mo2x>|B^>HzjDi
z@w<^`S&IH(Pu8q<vOcpHy-P{n{RzV(DdiPC4%}#gMx6Fh011SJim`N(_04u{(&6Du
zwJvVq|4k<S$8g<S#JgEV@o@Q%Mi7p9%1e14(bW4#^d?z?jDZyBzb+cWB{_s0zDzMc
zp<UgIES9N<Q|Hovd9v^OjP5F>?TV_ZrAt!o>PNfuI<!TBgTsxAHeK!WpCR2xlP^2>
zqc*KRY~JL>r|I=GQ*iFluH|n(>!Y&lj5Z}dOebYaN27;uc?SbakB+4$l-5h`vHI@g
z|1D|a*c4r%(V;5ME1LX(r8$A<PHFT>BJmco0VWSZffg(#tg^}ZPaN!p)n4PXj_y~D
z_qQ?$nx-WheZV<NP5(Vcqxb7ky$pa3q^-~N=osTF>vZ|t%i0MT-Pi#x`TH_^tR6;N
z=&6gQb+yQ$gI<n1Xp>N>*KPfzfwVSi#005I!)5S-m<|Wuu5-vv<|d7J3)U=dhWlkW
zsRr@F<c-M^2+-=*bl-98wK*oglK(Fk_n6a-{wY$ps`eqdntJT%(aeo?q14ubG?6Ek
zKf=bhKsm*mp7B_Q)3J1WP*+K>T7U+J-KVL?Wn48!1rexM7aLi~>>+9W#(A*Fs^!LG
zkF(wz9v(%M0{gvl2VeQ<WOzK2={9NR7MrdU6RB#M{@13<YF5kR-f{{{x+UP06sGmD
z&8VhmePpKLYe|E)5CdUp#}R{2)1)suGvlf*XwsSPIT1y?!@G)Ag=w+#cK?33rkeV*
zF~@a2z5^|W+M@dtcOV`S6J|gtOOX56H&5X|p&^3VV<kt}YOg-YeapLxoBfYCjLk6e
z`VVoQ=%om#x_j(73H)fR3&t4BovSdEmET$LLvyjJYsApHKP1tgHx@QGD6+E#(CR%|
z7nOugaN1jO?>&z#Py!Pkj=R$dh$;~(c(!D6ApPg=Sja*yak`1??zt78W2x#<+LY0s
zcZbQ3I}?2jLn06|>7H+d_PIDdUJEw9uv)$=-VN~{BgDgJu~0V;4p=10bp-$l-$2K*
zuZo3H@1LzxvO2!IVSn<&i8rxf;yJm$(5pB>;>@Xlr>c3Y=}FmHRoE!wAccp3*sufq
zeH4TRs4LxCX&3?lKLTgC?ZAn@&2zU=Gz<c6Gz4isWdH~s22XxZ5`_RYgqA6A6+n7#
z(Xy{M{s#eQ_D#Efh2X>7c`V&)0CxbUMMpq*BefF;*ufhx&WNHKE^r!0_3a*tnFFdO
zuP>1ioy41ZU~j*N{`a^9cU50)ALLZb{u;QNtK{OPCoFw&CT=jT?%N&Fd-OBQ>xfx3
za7#1NL`q3q*Yzn)i(f{5MNrUD+C$`(CPH-ONOFG^;JvaO0`YFbdIG@X@0BAu3p`|a
z^2T0{s>IhD)1o40RMf2+%g87uKT&aUoIQ7eu$y^)8TFG>Zb^T5Z<;Rh<|e!U@DfLU
zE<9*0&ZCe{%oA6>&n!W}h=q!XA#c4f$B6bh2-ZW#E=?y2d8mQ1=miG0Xb6r(LZ7y5
z=erDt_S>t$HOc^^Ycp6=8(>JGAX5YYCobNdyfRN;>EJCriViu2aGelb7FgaQ{Jq`V
zKjl<1EFm0eZ0}sxiM5+T#l^@wx?&%)YI*)vpn%#-KsBcxk54_UOVaZV9iu|vwh|f!
z(*=WarK#gf?Gq?#jB2Mxiap=NmA?E6jtK;p(%`#`?w=tDiD>;-$L`B=PhvKGSM%?B
z`|rtVDQYAApf;%VXTmT7p6K(@YlgCfJ3q*{+X!UWSG?e?Z4r`ehQ+<DGz^dsn5ZPt
zl<{F0x{S*y@{TM5!{|zMF8FFPM4@oY37yM;!NIe_Qim?%ymt#7N0VWX0?5xE(9KH^
z@gDbq4_4;ZN1x3K9v7BTR-go&8KwxfT<fo@u_agn!q@*%awP2854I=c-SQ^v@slr9
za1g<`JAr&&^h;5t+~iEBZQ*;(?EF}wZWLzbr!^FDwTyCk5}3HdeFt!siK8HzqeZ+y
zA(F?alMKNS7{QS72tCg@5==qt)824Oo5MpsxNkV^@gCd&_^<`;$WBK5^&e4t4d6Ip
zCWGc#@sea<v(-6xfMbaaF87<I!ZtYoI4!CYXB6vN;7u8$L`-=fr)Z9ki6m!iNE^N|
zZK<}V0U!~O&`vONb4Wm|-=6NjKmlm~s)CBss#0rV4Zqk|iS5cUApMOY)i{N{6zG!N
zT3ChQ!6Fs_{R9Iv1t$@W2UoR>G>*gx>;JFLmSQ<xZ<nYSMQ6X@+*d3N-kxb1g2|1r
zH&V`W-1*3H=Mwy;>T!vF2>;uPxCL~KZF7lJH=F)v{jJ_jC}!)$sZFb%)jio6bvgL>
z${)ODFyG&-lUbjV!U<80nweX<49vgqdh1BSmhG-yNl^U+KSY-CqU4YqI{w<(F@PKR
zO-#&X=zfJ^I|;h^q{+3F(_U1-D?RCUo}SK}rIBM(&q74xM1v|Z_<Jd(`uxeDCtRIC
zn~55wi%`kdc+<TI{1^7y-xPt-|L#_LGA<O7(*eIHu#q4TXPeHAYd_YYmI=m3Q@S6l
zqalE)*Xh?jH7DTfyiA@pr()_l_mpJCFQH0X{@S50Q@4dwVJ?XexeC=EoqSE1++i54
zM+^7$MxGfyj-|6uukukIJ!#)%sR={Ix53vNI)*zsPIEQbfNl6L<69K(Gor1qmpwC}
zaM(fsp0f?xZvNZTn1@dtXl4^f$hF=+d-_yIzp;E-`Y#`_N%QN=!BJ5`um(sb4etc4
zY@E}pr{u}qN7Y4piE#6>_wK<Y0j-HIYT1fx+4<uA9sNqmIdzc~zx=e!@f$V_t@dZ@
zP<kE(YXE|-k$^7)_5|Sr$`v$rm7kW}(D}cTTc7=|rml{<xVSjKqO+qT6~0Hj0a`8K
zCy*&b%5cSo-Q_|+Ii7SO66kbEfM5sH=!#50&a-+0f(*5*<+{)V%V5KP^CsaT7HX9D
z%Dx+{YDm7gzvtlKAZLL%urEV9()YD}*cu`krwldF{n1~oG$~+>V0=sHDJwIxHtPAI
z+?WC;m~{2@Tw_nT3{~UsoxedL5GFA~fA!dzD6bb6hxjvSZ-V+lXgu*VC=3FcUtt)4
zV^C*)_bys$YHC}j|MLB`0jX?_ifYo-O^1>^%x{?;Opx_p=B5l9T2!a5XJ!mSMRR{&
zclN)$8KdQkSF|$ag<9D}2~S-QR38Px2dayq_zxW+@#oBu<4Kju1S>DEDsEjs&eQps
zYlsh=dMp>md%p(bBs^=r?tEx#Zx2Dsx6k5={)!-HdoMs4(Yw`)%GpkjI2!kUPmyWg
zzp`B1epHRflY9ml^QBNr;4ppj)y!mT8%F#g0!MCj0KxJD*e7ZsU0)Pf9Wy9>qr4dO
zVeyz7fKbu%0UN@rKWv@|t0Ik+|C@U$$rda>B^P;_)&7|exKr6R^Hzo|uRiX6@#2Mv
z@?sw;DJf>eeWr?GSjhD~%Q9zi=_+dI7Y^(^SdCoHV;%i}!d<)=l&f%vKfAuUw$BU^
z^9;nwyv`qSK@V$=yQkMV6GG-0ji(F?g(*X%c#~@|WIV(T=O107Zkv;?dGi{~jlHL-
z`GNd1wjT*hhaSr-11d~*=n8)u6B7XZ*N8x)SI|ji65|L3@|t<tzJr;{s3}H1#@{~+
zKr0Js1iXU-9~6hf5ELRB8f)ZXnr80XxVYzs^mlj5$8^2ruH=hy=sN=&1~gxc);Q(%
zI*#rpQoyLkx#`UBUznlW#}mhy5BxhL!<`sVU39b-q%y0uSZ-4X$75-=g~;)1*R@h=
zDu@OYDnrJ>7XUa4AF<t&Q}6O;F^IZcEcH?6Kl+W>{J4BC@I9pu95z`-kWCx}xpW^C
zmDfg*<$MSjp+v297<Q9NFEtQ+Lx;9JGcnM1cbS!F%8<hd%d7A}KC+CyiYz308ly5P
zD$ot|Ej_Bdh$~)kgpKEsf`XqcBhex7R+rUWM3!|x*S`S8Mcl`ap{UsxFkhW79`|9!
z4+~Kegk~~7v^2v<%QL^z^eou@{hL1eYg=P~g>Dieuu&%B{@{G;dIex6WPikL;smcb
z&}AvC)|}O-I?#pV9Blqx+j|9Z-Drc&{oD<(JyK9)04s3!c*vzk#sAfxxnL2B|0VTG
zzAl>Ia^hY&U?|bpz#(U|i@;bzac%XtyqdROiu&nDqtKZ^K!01(AVno^ok`;n=&+Ex
zJVsgA)3Dn>@yVg-HeUMQ1h$q9B(SUA>4NHnHXs-@J7;v?@k0`hrMF;*C2!%S%H@fc
z9Z+|C@p(wBA%tR1aqH&qrW`}ujy%AAobxlf3x3Vdz7}u{qUY#J>n^Zog_Jr9D@A4V
zWL79bRj3CIS^!-R92#Q(*U@oPuZ@~wVPLqMCx&VBIH0q$b9@p#oj+bnEkR3M6h%zV
zz{J!#(7i$maIqP6R>#}}UxW`p%xBBaOxw8;nTk1iq6*JHi%RJ7QDavtqY@D5kfTzQ
z6!ZV<+?oS^B5sT}heV7fe00P6f096%I7+3H!&spiKRFD{c+|v^l|iM2g{Ad1Yl-A)
z7(UXQek6rceoo2yO+i>Ws%owq6@?62TfUhrmrdIHF`G)Gx~-G99vMw2yMg_lOIC+`
zz#lOgB8&3Sk6D$*|7fpb=$~F@%WsIR{zYk}{61t{?6k^gk;!lSM?cnVSacvmgkfUc
zj{>h@NJ4yx*t^#wZ>WfK7@&$KPNZ6k%CG%>C4ez-`jkD}ARj-xj~o~loM%^}F`rmw
zwTYJZ`Q?0Sax&R~@TsxnL_v5j_61OgLr%d}GOp<+A1_bBh50~wIzfL-H~OwlJPF#o
zIF{7D)_>&3q?RDHfCT0G*-djb_N^-S&o6o>w}R8f@N~o|>=e>GO`WYYfbi%y&@wWb
zo{fh6$ECLdhgr3Md2JRO@m=7ysLKtgBmVc6nWb+CsIS_<2ws0^LYCvkK+wl_1LGUa
z!(oW+9(S^W`5l8Ebk2O)hrMrVlE5Dmru&=CMLluC6Ppi$#p77Fu3<yF-{=G@Fr*zH
zAImE!U?A3imS&26xNrT&4fSEm?a=1__f-<IAt7=f900KKjYAd!2r01E(7`+Ym@URd
zQBCb#)#R9PfTw?``TSa2XJ^>yw?&6&&xk{k5p;64Pn_1V-HZ8sV7=SdU`9c_hc}#e
zAo|oUGC~7A*KXZ$eO5QWVwkt((E2Q~=y%QT)tDi&f(g6rhrz+R|Ae=9?CnfCp-l~J
zEPP$NcFkyib$HJ7VFs~VJuQq1gl~Kp_J%FW=XikxgtR{)DG478faYy(gF0<7bEy0`
zY04dV4r3~?!FpFe;o6LikH1xLFGDS!y3u9F1QGb%<!8xLu+=Df?c0<}xlS;;BDnJ@
zw48t%2QNwr$WDOZCk44i1T=3Bia;6&wz<s|DAn6Lp?yt!r&_n#;VD+KQ;GRH4@_K1
zDRILp^bgJw_(wdzB^P~^bw4sRl<#NK$B)<uXrA&@Wbp%HzF&ixC^KxI46LDH%i&>R
zB&~+vV4xm>o;~K_!t!$1DGMuW7?SAqud5_1!Dxr5t{Z6j3GTGKO$n`5@C7|V6g~`A
zv0u$dk&M)pM$ND9B;%x5=%%P3c>E_iW-E&%0;G+3uVs$UFE56wVu;&A5VrM*KMQud
z<=<l~Kgr7$gAHDhiIbgH2;2$#$9=c@QJgUY>8GXJ-E}8FKZ08d(_KOz4=kK@1We?8
zF$cMPgeuYa`}*1TijIa1RvIx1W1|vIF|n}bf!z?o6_JXO&DK$9p8@t#cFkLrTH4y=
zcWkGu>}!jb;4tUL^nx8k7^&4;ujx`o++TP9^w)G&;pZoausqzvK#bbUF3-de62<@P
z#}vP-F$E)=qQS=SR(=~cqP*H$S{fZ8gA)O?CB-*_IibM-<xeTHtbPC9Tvm1)HD;z0
zTZU-x$B(x1<>h5P+-R*lZH5Z$uif4J#}eU?%mSxQN<-uQD5F__lK88_7@O&{oeP9d
z;+CbVeLTjskS^CMVK=n@cv1@!%+m6`?`tOaNOSrFBnHq^ByaoNk<kl~9<WFTXNq^G
z;+6G0DLvc<3-b1bqn@SU6g1}ctV)a&aN<Vaem0fbHs<>40CK^tiN$It%;<xR0F;R~
zrp3z2Uh?_d3IHE9gc+NVG1P+>;?~e<qp4o_r|w5HI|E})!2e%&+4|0wt7s7FbwE(G
zedtL>Q%}vvi1=UJl!Zr~xS}0DZP1ci+doft{P=m*z}(8B3U?9XD|&>HzQN_yf}KC=
zvI{Q%dq)?GrkZG9_aBL%fUV>f_se8E-zOWkS6k`ke;tSu{fc_Q<f#f-w*Cvl__SCV
zR7uo-m6)mg2KhKX(r7;uz!y|jgXmnGx{h&GY3lsx6%TR!;^PE`qcv}CAva;!mqGsu
zdhw*(A$xXRU<Mrp+Y@9D#cR3EeaG$4tV)W3X^gE4K61o%Cg<YKqwKzBcE(iEe+_p?
z%+RFmFS(~#*|r_?Z!eB^`>{magohM3UFZ?sZY~JK%+IK9@Rx$A|2?V9MA8;th9>6-
z{)qTN@W$id!+Ph8t!<#20o7f2<I<%|QV_@h3(!FKuOdNOs?Zf82_gFiA_WOEZwp2T
z+<!zny1N%u<i6rYahkhRSs#PI^~^eTtr2m#*S8FP#_cd%4G|)X4qw$zB2iJ@@T!e|
zEA-j%0Er^Vk~CWkI)a#(nEtK2iiXC}rX%p>@a}!+UWCpj8{|dh{G?$Z{pUiel7@Q!
z&gsFak?P=Jk(S;898^{wUdtV?=qBfD`S-O?yaOMORFVWTSolZzX)Qc~0iZ-M3Av?3
zy333YJ_#N1P(cCZk^+OvO6{-c_b|&C10iv7WC|_guf7TQL)+}fkCX@>U@!oF10QgH
za!<Xto3XO8v%#11yPsB_Z#gagokX~MG4A}3*b0Jh*FWEl#{YELtR>3IZZ!XEIQ&Rz
zlMDzrPP1?UUp;esNC<?~Umd$4BBe(>kiDz1wQ@uF6Kk>uF$AshK*S2fR49KrF)<v(
z6x9m`0qkVO2XOol&#$Y1r*#)XF{n#wU5<nx2&imOdN<(|n9rHGxHc=GO@$=r@Lr$o
zBKc?`j1GMiB>bY1%mW%=u>NuH;FRd2PRUJ<+|DCH+k=z}Dd4(+PABj-!J#ERd>}8s
zQn5c_v*@6QQuhPTw|`|O>w1WRr36kP?K&6xOoKz;?+sl#T%Ck3=+0{8gLJ&Pn<LCG
zf|O<Tqy81fH#L?S8@0g%4LPrK!!CgYFyiN=>w&t%MWA?gCObi8L!=zynQ(*nDr`N+
zK|v&t<N{>}P@Iiw>5fiUHI_Zhc-^+bEkDW)bi@nxyGhVkkL^(XWMcXVS-aIRZXq5e
zc_D-_0@5tf#!A5{7mSOGi#vYD&^<Sl?p(RUJwMM(d{u+(dPzwM@Ra!MFnAVw_+z%B
zPZXa%=QNqRdEd3yDHqAWxC(TR|BDPk0+GkrzbP-u7I6_X=Y|0@7sgZg25%itpt%$c
z0Zoo2mVaQRwPL~@JXjLc#yx+YHCihoDoO<#mXAIK8wM-@jP&$~?CfkI;QxVEd{u4j
zn-zy~FgpzRJ3w2bNv(%jHx$4)xnOV2Yz>&)2Z3!XKpHB#x}k73fiqw}fXtu?=CkSL
zOENN|13wX}lN@A*5Df6|`s<{mp~wo^d`(km%Qe~B1a4>`wMc_m5770@2%L5%C4V4V
zZPR3fHMz1=9XK%^CDnq-d0@FpxO<<s<U=3>pZ}jf%&7(cK-l1UIU!wbx+ws$pN}QL
zG}>9{qi8}>!AGI{Ox7nsC%lD)g>JwAOv~l~M(?on^mI*z^80Cbp?^B}6(daDINBRj
zhVhS4z|{|5!3^d3&4I6xhTb%Az5sY3stf=?AzQ-)nEEvvGnbRx@u8o+2}lhB;Xlm@
zE)4@93!GjRn1&8&gp`3n61m+UAl{bK(71L6GcMrDaqEWK+QHE8O2>jk^YQGDkcEf(
z9cg&KrzW~fmozZ`@VNX~91cAhs&(Z*fRVJbAL*B&PZsB7F{4gpq$o6QX}*=ZKG6UL
z>%i%U#m#@c0*#wuKv)5iUOalxD)!l+>^Tu)2FRyYw%y>tQ8UKktP)@g5vWFK&8X9#
z{a%>f-rjlowVD%}`uY*DZ>S5f3=c286rq9n5lRQDH?JXlp#8RTOp=eU<S}6A7gGgY
z=jT^AK9UFLBK3IIJ`vXy7L>T@Gp0uVYu2kLI5NyDqxu|6Qi;4zw1g2ey`4d`Ty#?_
zR$+=PfSZ0EcYvl-gp`$4UVA6>L1H0pa&z16K7k&@Qs)p&AYo+U=I%Ee_rBPrLo|sW
zPMGdjH8n|rS0|M=5bS#bY-4B>*!}r$A7-F<K%AV)tCYxFZhHJ#LY6GHX3Fe%tRoPC
z49T_^hp&6jLxRV`{uS+4bf31A^}Y>25e}5&?JW2s<hVP3-Gk|Uh=$`ODy+ivbI=`d
z;)8)x0!XAm%#C|L3IvCTU&~F%*Qv5&@X_;Qg6Rr45DMq$2MIH@d4Yxn7KiO03f!}?
zjb}Gt5{z}l)#7^swl_6)1A)X~TrF}~cv<u%gbE7(Vp!CPqt#PmdLhc*S?%<V5-z*N
zDUk+`qF{C{HA3qC{rd^0CnqQ9Qn{;7eZOzEOfiI4wpNMD!BoKa4{v}@cmwFdkF+sL
zAd-$(420bSiWHawV+5|SHSHmYI};xtF`NyMPVG{t1u!+;fuTmDRwO?@ESqA@Y~lE!
zA-K21f+TGvAsq)*Z~xDZzpL4$mYfcjJYNGX(%Tux_?dg$W0VPann4tx{S{D4(!;Oc
zzM&hfh;l}MRngWS&DnaXs!9aPf+70rI&F)K=%Yj-Uob`}O*8Fv%DLwz&ZS@DUshIj
z2L|6Hd0)69q}0@i5#tynm*I+lDxuh)0j~h;OjA=c)1&`^`j&LZoC>08&7Ez#Hjls3
z^ARKCKUSMWX0>m()BBSzZPUA3cjaAttR==wp)no?SHjRO|0i5Q5Lb*p>soZ+&@Pgi
zINYe5#zde{$XmA_OxVI;Dfq=s=v%LO+6!9oH5jCeW$z0t;t<)h8?oJQAw&aU?oR(s
zY4SO4Q$AYwfrfNvdpm=u==j1%G&D4bDhS=xrz26p?^<b~Q{JCc;>Lb+C}^t;qWk%`
zeTwL<lGWjW@YK;dI*53O3Y3`~ulRtRo`Ifm+3gj43signMmF(i@B;VL`ZO*gO6)h#
z9%66ziEhyY0_kJyV+=SV08YldEBl9sm2TER-(Guo*`}Nt%?DzMnFQO0W*qK1dK*!X
zqoUE4w4x$H@Kxt{VHD276Zj4_3>jw5MND5DRFW1xYe?Fe??hQlP_wC32Qb_NMeGN<
zUsza}#WTOR@I{pC{Mk<ObVO7C^u<+MZ-cAH`n1{-_1?ApGP0Nc2UDcpDSCHuKqHFu
zxvtlZMn2|o<XR2xlDIlhs2I3!2-F>nSz2!b`~GK@n{9XKE40@L^5HL)+p|3x3b7oU
z$>1fRfSI*?y-Jh@17tKmkolV#U!G1WCW`q9VheDLI1F%j%J_;8JmU)MfeqbqB=4?;
zMb1}Ugb_?x1wsx?ucKKk-t>xBO73mbg9LOO*v*B4F|*D;pV6;v`GW6hc`C)o$p24=
z<edlp55Z-mIr!1o59BPWmu8E1Dst_z4@Vn3MG;2ZGtK$5gU@g4JM>OWJV8j=+1cfG
z_9gy0tDsi+a%r|-lI{w^Wi>hDX2bW<Ur74Ysi^<C_h#Ti{$>FeG7iS+_<Pe0H1~I3
zw_L)t-*d>K;xwouhXW1@L>6KjX&D(bgkFW!U1MVgAVbrAtUX--++Z?bRsg00&5Q-)
zIap2KO_*U<!1x{Q7kW=-BcJd;yK)<%f<lNc_WIS<wWc_yeDBJd5&SC;<DM@k_RYl&
z#_WN|1oAai-LaB^(+|KqK_CFiHnFurz&(_WMyBz@P{NS&DuCkPXy7${H(=)FCCb&z
zmo_po$}~I#1*+<>Ly4bM6Dnzz+&q4@RpgvfcF29lQ0}k4%2*QOM<Tij`5{$JPa5@B
z&z*$0TIzag2Ne9wo43g&ExEb5098EP;(S+jFH)LMxY>4sf=-z@x?1NNpzQBGazg6)
zXZOm2x50^I|7(XOLVQmDP5F?muzbuW_ubeS?<Eg)x9e-axey40guxnCURB%Om2)+Y
zB(tm^Uh}0mq=&~)kuq_(YJXc`SBCrl#ZqVpC?eTzGJHgDvGL%H=?^2+q68H*{A5la
z0hFjK-VOC{sUt~k7~aCZ^mJ3{mS4Zo1R95UyJSgz>GGhiqfFi0c>)$hYOEoQh0cgZ
zSUsvOO4;<snq*696wbmqr<M-Mz^9Nc=Kq9CR}l33uiEKoSEHcBErlzaq|*I>cStb*
zn=to*7HN79<s~Tnsw^mF9aT{Y=zsL2!{`NF-cph5YCAk_O3^yoChf{qS8wGB(NP>6
z)=Ngag0b73oX>b(WeJvGbH`sA+3k2hQ)L1*i~kGk<ZpW?N>)(+m>sRgwAY)DAdQ~B
ze29C{0(C%>H4RChzcf&ApP!BtwKZ(kg~YoR`ZN@bo_lhV)_La)o1*F@4hP0G$FDm~
z=}5_bIpV(YpV&WSlVUxfvtwLq@o3cL7W`$noqg3+^Wu~PYARZo4v$05T|?Y*eHv^a
zz?Fn5VPwI%>EF7g@%CJ(9Q`LWi;t7+YwX>Qe?0VI5vo+mJb^R1@ceZv@vpw^ne7JD
zyU|Z7JX^hb<TX`ER4xDaSY7_&!$Wzg73;&3upN+uZ5u^7uXw75uD_cRXErDL)|-Mc
zkB4N<{!`%xr_rKaQ$Qd$i?e&wFrweP?sdw=rhI%mn?=noNAd_AR6ZE(+oQ^#Ero>M
z{%5yziE^?dux?^&-<yOIN7`GpxQ~Z!@nbc&D$UJYCvuWZk#u^nC;;Wr<-_w<`vYDr
zlN92^?EJ^RG(S-VcKZ)&0$JAC2U7Ob(x9YxZ)t+e|2slijvLibpZFbiVAMhW8L>ub
z=vaxC^C!8V8EbKrn_-6RuR%f>gNRPl|7f^k#unU(7wgcZqlqqAt4oXh&H#Nf!fscG
z{6NE|8ay)$!B>8kWF}>uDY^Nb{sz~j!nPn0w_5-tESPaTRxb^$DUT+jEIv_}34YHP
zoq{_MO@R4%!6fZL)i<~%a<FB}lXVTUnW1U1cg1lbep-F}%EK@qlV4dH`F-f1kNM$O
zPMJ1Bx}NH&$C7YWvu{-&Kf-QZy*mN6G??NmVdRyjUW--BBPfJHz$&PUm+E&215#}R
zdzFO*Xmd77^fn7x`A|1r7%T3}nVdvq<W{a?PH%Fb*w?=}f-Y~t7xU{*mXN;=%d_Q9
ziONmyd@M@rlz}=wg5Ea|lB!;Zb_;GV_)E!gLlHhX>NW*9_CH@NzkZ8rkbksBO%Yfq
za#P|NEV!A6db3J0tg!C!`5syqY&H}G&#Yt!(WHcm03wUK>+HO35uDf!6{*_;?^MoQ
zPj$LZ-BI|&LfaGSdIV!?p9!r>e>Hb7niEw|ax&k+&KKIH#7#_;mKzH+m*Wly&eDo@
ztA$D2_oY`iR^i$)m6C;Rl^I&R7N1!S&V(gbSW6aWRnLnSbpS58EBh!C)c=s>(8v80
ze7x<K-ygc+XR~^LXI^&5%A>9B<ThPnpg|ZJ+S4#bu0WNn#sn)AOiXcRwZtnR!TThu
zRHphBRyA<Gy&~itZj^yfv~PF%@THJLMZxeX72jf4JSChG1}I8G1hQE$!brR4#9Mre
zmciD_O5|P1R3V9%P%BnW-b5@sMevMjdp|o@$Yqty=Jwj`)&_QVB^BmT4a2N2qL^{3
zk(J976*uQM;3LR|n@FG*aeMJA`>6A8Y?i?N_9`RW1)9e2ci${QaOti>wcgS+RxFhs
z6!}pkf2w*-R*~Fpc%VUVYM=F>NJ(}mx~?Yk+O6uRkp}mpcwYq*RB%^kj{AK9?Wd|f
z9j;?~w(Y_k^x&Q2s8(w0U_7hd<kN>AG8R5C{Ckj{#s1o@AudScqpCl3_oNiUXiI9v
zc!u(@mJKh|eal_1XJrdQ-{RI9rmZs>)F!9Y{`|;fzx#p%Fd+j^=FzG~%0v8vw$n!3
zj@GmjW1~hrTh%)>b^eW8wZWirc<(LwHHzQCm89CRbPx}@Bp)wu1*>e|Wj5NOM+r&4
zKfoX#IiHV|9V)Hce=3Zz`bxy10wr~AWQ`#!6_&KnAF<Y$b*YKX!hu$_p|AxWL<#e&
z`nZ}yH?^A<CK1JdoT1t}EtP=Ai$ip;yyyDygUHs)jvWt)AiI#5R(`YE1#fpVmeJ-t
zH|>?3`$veB^T108yOo#X71Sff-NrOfN8R)q>+Ed<J$aHRGs|*}yiX<z=1g{ouaL(V
z+IhcvJ#m}8>ns8L_bzssc6z?>-INp#Tg~m2_k1bODuE*_t1pNA?%%kW?6k+{#+*`q
z*ZHwJj<v+a-Zmnf|Fklsi|8eu($PFV9>yxZo5(IR92hK=m#@DHR&brYU~O;rVZDB_
zi<(hpa%`|}_sIb<s{APRH>M)ZtY7CQozH2I8%XXYH^j%BHB{kgGIe%)dkqWZKW3_f
zPUnXy0@;@I?v}`&iSV^iy=9n^|0GHt^hl7NuWg*e&c-uw-$&QvKw$eKmGII@)!i69
zGz4x=NR}MoYt80S28rOe3O`$VLc?vj<HQV6i%j<gf8+O>m&Z2o0d;NoMS~6OT2^<V
zoEgC`lE9~s!P=GmPagT|8s*0~J4%;Hm1p!_WFt}dca7qUeJ4ftQu3OF%2VeG$%{4I
z20dX)NYGesDaz9PK62MZfnD%8#)GLwXC~o>xje4ARmQDUyMac%NjOJ)qfhI0rXTh+
zP7|00x-_c=TOExR&HAdGwk{ut6?_!DMvTarz&>;IzD`>|O~+10F`6TAmFR6L4}P39
zhS*NKEhGK@T$I&F9Wh<#Y%YFizn(K*u=}F<_5IvZ%+}ahI^nCkJ|E!;1_kcS=W}<r
z7j}<!CUm77S=^J=H}53+)axSx^&C)N`cteEiq@%x)opip^*#9|#8d*b%wKuaH9<Uz
znyH5!kUCzdG^B4Z;YF&4KRmNzuV$q!)ML?QRd?Qggy!;V8AIh|1sXg>rQ5`q{TD;$
zsrj5^8KUc(VaoVOdQ<P~2WKi_Q6F&ShOW@9O$!md^&=0;bKJx+sWJ;{C%|19p`E%_
z+jrM-hZ4M@ZAta5)rvLZ^7b<s%7(zQi0ezTeeLZ4UZzgv=39LDv1<9ot(KAbd+Tap
zk|Mxye*ste)i>Uog&ioRaf|KBmgEac6$R#Z35`Y-`bWC2gBhksX>Cud`f#%@Lv`b9
za+r+j8xKLTNqxdU2g+G>4y{v}uY<c7$diPUK`FU79l9cn5(pgJJn$I6&7jLAQmrh~
z6v)rDwMiQr!{VL&ay_adCzs|fSF9;SzYy>u5I~#hxZKA8Op`tgagY*dx;Q^YL!i>Q
z_O7n3Le87ifaZlm<;U~elu!p@47maXB3~1NdQ1ewqEPkmYtuGrQ%X|vw#nC^j9|Kr
zFywOF1>w{V+sbBcQUwc~cfDl1R?kA(&YVQ-JY{lo&u8F}@Ow|$kXux{sL?}5K!0;C
z17qscO5P@B-_VoJNepp@{hCq<D-={R$!MOgoLRmIPbZv-osIUntn3=(!vG^(8_Ac^
z)un_uu*hxSg4d2z+Cl-+ZK^6NKn{)uHAsJ}S5OnlA)SVh0?J1Xwit2;5~mmf0u2m=
z8f~?J&==OA!48x^Cn+I@@E&*fMFAi`H~!!ow2ZV006$0jsxWnj0`!-%bL7fx7VA=r
zkNebmOrY|j!6{R5?u|ocjj!K{;Ck=4CuUdsE|Jz(d5*~&wnc6RL4?Sg>fPTkI6;f@
z+(epz+z^3?W>xNhyw=p_{QTTp+r<bZp#ang0y6shX+$y-#**MY48viDb`LLd@vc&&
zKinYATmWgkaTPmOA+f67!F9vtxBPgYB;IdjKe+3Gx5`j(`_6oTGH&azL9*y2C=rDm
z1hnp?Ll046-gEz`OdJofCs2U>8Y}4VI^CbGkZzZyG`{zb4Y3g6v<o3QH7uy4?>z!k
z`Mf06BmtzA(F-NGM&0MIY3a72SXo_+vKmF<L((cz{u(-fLc$u?v!wua=%HaRuShpQ
zt=n4?(=dY7M_PsDGv9yZ3K_a%L<b&TKb4~@6-*429ZeJOoSK?H_+e0oi4gJ(fj9g-
zSlx7#|LN4A06e!-4?QX!ZW{)<`Jl|G&Lkdc3De2(6`-8g`X$QzS)t5dm;r&#8?3;~
zaTlj`DW9?FX!1HLGxnd?4g6T8#yH(?&buOcyAnawnA76vSHIoN?YFa?<psu(<zoH!
zK(m6&v*~+z-+1d9<H$$I{+xCJ&)PTSf(LPk@kKM5wYb5k7irWN%k7gina|-=&%J&b
z_`!Xu3SPy>2cQWPm4nmF1-#s9lkUIOHy8A)Y*4rCV&AD_wq7VbkJq~KG!4`3AZPW3
zX?3RsuS6Raly#3y#RqR{i$<<kVGcn>G)L04E7_GBUT<wT^2>z0WwfTlY2;oWwaP%(
ze*TaX3h0E83gLsKdzt{8QBw<(XJJQcQx9P`t@gDIoypEj@~&|af6l5yn@+ZFdSBF_
z{pE_RS&<;PGO5Y2?5hR8>}P-DEu7g={G1+{aWLg4m6(azyWDK&Y^lFj`rHITs)Q?b
zp{#|5Q13Oji~qCEuQNh+%-*uoBli?6e<}IWR%8GPy2xp^9X9Ih)&v9p{euS~LPETN
zZ2_L`FUxorc%X#{2R;Cwp*?~L0cn?#Ni3%v(`Cx-Blk?ZGY^cUq-#DeW*e^jw!c?)
zHj<DrMf?au%EIO{cK7Oz)ou3K;I4`v36(3lB$O)y<^Y<S2DzCU?pzOxa(abBwCcg_
zVM6}l=v&X-D(|>TKP?&A`r)_lbZ-uNH~n_y>q(qAk14r&Yue~c-dn8ENVYa|yuJ~A
zt@6d2k1pID-_C2EJALBbh5TE061InT1sd<Hgv;E8FI<c4qzWAjbr^DIKEUz_IZOGZ
zW-Q$I{A6Z6Q)WAi*Gtp;zU!WO@~_rslsponwY|yKW7wI!QGbk7uS9+jgx)PKluMJU
z=WiU0P#m*|jD2pD&Iu)th9VVR^oI}T4id(8jH+7N#pTr3V+-d8(~C4?+CNO)wEp=H
zue=7~eL60xPx@%QR$0!&K^x0ZS<B<qnZt78n_##63iJi0XR9<4T|ZrH?xB+L#KhE9
z9}D2nDPgKQXKFbocRD{?<%P;^HFKvvgdO9vjA09<(C7Xsn>45l7~nBLJ&2mL4M>J&
z|BWYtTwDdi-pf#KCl4dL0mRqV)(#r^@#)Uedxq0phn=;eX3w`56WUk>!5r~_3P@4e
z%rhSDvuSmPIPovZU+0NKF7YzqN_ywHzvS^c-=Q!g8<8Si@Y;PwJRTqlj*R(uyQGd-
zUy`SP;h&>z#F@qXt%?07M6~sWp|P|S{xd#PgLlF~hRU<cPDC&d9AP*z87hbn8EA;s
zDq0?WnwKQr#r*k>ceGiJ($Uxf)lC9t!6&s-6N|%xpyLtiHLWwKu9}KHHqAbAe}IQ~
z{y6l_dq2aq*cD<-g@T^8@bx;<yQhyvbn*)-VxMpcUj4G@;97{AO|!VBuJyKLjT+Hf
zB%3<*h$TAy(x5|iU2CcR!-o&Y9zSR5nH{hwXEA;WDF}V%WD&pec*)tufEbqR?IE_*
zcju_&$TdXYqLiI=kmVa5gU~}#e16xSF{@7mNz{Rok8oN%W$I>DL=}=fco1F&1xE|D
zlvXDv#23(9AmJu*O}$m=ROe7bF)_G{tJUxf?XR@c`vkkOSjQOq%%qvxPJVp$E8^Ww
z!i|t^$*bE-36{VgYdQOC7E_r(u<p1+7eVY&MJ0i8Xy@Es<7A130E*K)6Q@<FQ3>o`
zr{mMojA#em86CFXyHr)xHAZGfSLB(cj)IAfdTqThw8*YL(N~<#sFr7*<8C5UY5c4)
zcR53C!n_;q+HPTS;K;ia%haPt5I;t^0{vaETV&i@374l!GmlQ4YJHsnTh3L{y%Jrf
zyV2WR8EA-_u_(OYAPhG2t5-{MX-Nr!JSQ%qKSMJYjoiRHBI>#XPgzCd@kf8UrHIPz
zMF)H9j%A>M-nACjqA3^KEt@@jaZco{+<51JW%Vbd>mYlel=CS7`TkG;RDEaXW8^WN
zxANGY*8{zUA0O`Y;A&iA#@5t*r^aTMIurUMCVh%=t+1BFwn(b=p_XxP!6ToT$1jR%
z!v^+|mpCPLe9K8jRX(beeJ16Il{S}GupOG(ie=tCWjaqv<c~FT5RYEi_YgaI&IcUv
z&Ni&eb<2(t(?|W~s+yWhqxf+fft~ZJ%*4eNXfT6)q~dd4UQaPs>BgIMz+o+*3@4J8
zQ@>`2x6iDyFh9SXi<^yY^^}!WslTC4&#>|5@^e>JC%L3l(a6>8{aWS+hj|{o*aaBQ
zb)TDPxV4cK+%{vD`eYt<Y4bJinhhU*i#S#vKeMtD$$}rRTzss|U%PXMMzN~*qBWCd
z&3*3|=K~~}_hc09mPb;C;_qbc^?^g=`VTF##2CKM2W^*!mb6z&DCX1oJEbB`nbyw9
zy{nHWqvu|UH(qoQJQ_(e{PwuDMEE0*h{8Qds~-h^eMs9P#&pc@851wkH0)+CO<r_6
zm(TcCzVx1S*FSi1>CN$!=#UrN>F9di?N{&nsN-A~MjdOH_5OU0&eYvoTB_X7w>|e0
zqy07X>)>k3qfa)&`p%OXOU|h$$NgSk205)QURX!V{lIyKuSx5g{?JxX;8%WS0&_Xt
z5Y)ovaFVL?keA^bNEm3Of0389E{+=!xV@75^eK#Ak8hyE{&kx2X6#4a$ni{1@w;>i
z_4_YQz5b8A?~ZDs``V2a3yOk>QdN*DARxV4C`ysui-7cAr3Ca<K}5Rr5_*S7jkLrD
zNbfa-2uKYODM^43xF^2f@80|OUH7ha|M+HsjFXwn%-Q?wv-h)~vrmI9<a99ry`2a1
z9;w3x?%dIT@Zhygbt*{E=^GoTddv6r_P)=WoY@aiXtNO!zjx1ZZ)+hzW-2DF8x*Rq
zKqsf92waWgqmL|UX=xc=0QK?p_4I5pM&Mh-4QoRlJ$hT;E6mILl#AZ0a$(X96=Edp
zAzeh*%UsNH6^12Tc&S{~*k}T>mTEy+l<jNh-m)tH0VT*88d&1heoSRgJixcNtAIko
zCg^CT8^5F&+&Aai05hu476S^2YT<~WT<iNbo2t4~33eJ{!Z-iJ1vu5)8KfRu96Qcp
zCexQ0xgk}?vY1u==d}^8NuYmhSa{>{XU*NO<&2?!oF4_Sj^=B7#E-DkqFVM|`elu<
zn?6}r-VuzlHyzhZOLenwKw0@fv%_lsp>rQe^6_RxR4Zn8tRncXwCK;$z{kL$il-sA
z!^-l8C{3WF#njv2B<W%vlg0zG2aH0Ik6@qe5|E_Q7%{$Jc2T+zDK`9jllh%;6k+AZ
ziUgDtrmMXpmwHL}gxZtAv~vk5>9Nj}^XQ$)B%N>0)^X&Cw)Nt-l~D4#pt=*>D^`aK
z<OI2`pw_J*XwXttiS2duDUj$ZD?cv~Y?rJO^K*zZR^N#dg}WWAf9=dq96>r+l7<zK
zyBweR)N=8$UhKwi^L5V;0&fDeD`B;||7Yh|!-)s^a}Wrvp19jTxnSXpN4MfXGIj^d
z1Qv7g0g`;~)1OUlTthn7mq_G=%@?c;(obrVN#GIoLdKxQrlBDFF?J2%hAwiv=WJjW
zB*zX2g(XPj%&NAF)}B?3ojO)d+Nlic1Up<03wV+cs-YD9tg5<N=atfzeL3nH34_Of
zgj{AsVbt1O!~EAK;s+l8z!AFeq;halbaeC<nQ|6dqK8qqMoauPNXWvFwToKZSAV#&
zNlkn8tYs<8oU1L?WG<vcWOWR03uW0;LKZSvA2o2qbG7a)hFSzHOpf_U_Q(R|Q@Ekt
zwXHo?DcRFd)ojyuWj(6=1M-=r>PuwxN)FYoz?phAWEPnu*GH*>E&CIgqNV5Cp`$(|
zCcN%17yfl_Nq8fP3ls2w{FyA5X^2G-)#e}SK!3G}G|lh(=+_g4na}B&T&4>1V6B?F
zBAY~!bUJaIR@cX;1NUGlc6bZBHd6JVIB|`)aN^Z_a_Kf(1u^S0irk!IYKj&pHA7GJ
zogC~mdtWegHOk~@Mr)9>+9_c5^~q*G4-WOzk&}?qQ6{zarF%UoFIN5pwHmg02L$zi
zLBw>luV}xKr#raSlJUwF<1izQ40=5`r^5@rjK4FQwWLC^yBi|VJ%@FJs3gh$kq|2^
z;U<l!iMxAMgF9vlPNGr<-+q6Fds4Bwy87lhAokRQqWP7k^^d{Qq8MbWSzorO%z_{J
zBFwPw#|Q(u4KewtJ58$VTn33lq0lLje%#hHV8ZN`9C>R)tE1VC<fZOi#~sPB-JL<l
zRkt%S;ro>4B5X+CY?NTVS<6IP6-&_`%k)txR%l-leYo-4|AfALR?qF>4u0;^K#!mf
z<+KlR%u1&1b`C3fKJ8rQNZf$a)Jw=~zyo~N;Lk2s`Bw3TSr{s)xxknIJXhNFM{BZA
z*<Dilst<auixGZu8gvGH8DcH&U#bma^Iyyhn=YU;Xvr-;3c0%=3U`;S8uw=%=TS@z
z>0pJ3T7bpe%F4=E(QSZ=64+|_=+@=(BNsQf%Hyw;;2Q#<3nbKqQuf(}J+uZ9G=rPA
z;ynvRqUaf$0%59+CroscE3mOJcReS+TCGfXy_Ex}rt&|Tp^a8I7(lwscwu27rr#E<
zYsE;L(LWDXDw1`(Ig)mPMFRM=Cg|hA0++tKqQL{ubN{2cM06K1XxpR|77`^`I=?OW
zPMnzKV^DR%=l-x=mpih<SZz1tGrnt`lSxZ+Kp;?J#{ybP8EV-omDb$uuYKLK_WW&^
zG1ls5+<Y->OjY=rqN7=`FL!_`nOvT`qDJz_e5TSQ51|!wk>rTKcQ0u6hRze0)ooQv
zXN59gc~*_WCg3Qf&HKas_k1U$Y7TYu^$R?uDu8bzHCh3>BS?*ch0J3VoZb1s>P&#h
zPw&6@vdUZ}I5QjN6XPDrm8Z%~bcF7dxMwM9;uQlvT(umrRK99;eZ2)NhFF&G9rXL%
z9VniR^}w@HD0r8Lh8+R(xS^7twdco2JMr62Ao?jF4$E*@R^JCUJ{h|-j9FN4j%ur0
z6<~5)33D6d0ixtVEskGExqW&Nd)RwXeF(^LxKae7#4Q4~deZ001Xc&-QonHFLX06x
z>k6*Lby74C7^Rey?xk&M)3?43dw{`Keq1x5o{mw`&?it+Gde^8M)<tnWV1!ILY7Ay
z1|X3BZmMzHZ&fo0T@CZ;OKfmhC?7%_PxsT;5-vHrJuxtF13r%1mD>+Nx@Sc{lML7}
z2UgEmey#8~y4d=zBXn{!5#78%9dBaUV;vVKZ7a_${Cdr@0Ib#Edrk|MjEk!ay)+fs
z{TzWuSEyr0K$1DHdeDBGMU%Hy2eKky{{_xrIGr;I$Q+DAl@69um0;J+Rc5(lIXhtG
z9%Xs+9dKuS<&w)}w|qC(B7=wvm@z+MC_2sVsM-*U8%Gm{3BkTKg%qfFXP~Vv>-U`;
z@1|k2AAaAi+c%<deXUfUEXtL5NjG1+5{mmYhD=Ih;iIKxFg*Gcinto~;t$Q}D<vf`
zSIPg)AV|lq`Wev2sUH&3NOfe-s4CQpJZd*Yht_K*_-=IsHWW^gLfsn|u425q1rrLu
zLIT~@iS>co=rO!v=<YMh?rcOQ7H?`;)tsEfv-XlAu`%LKKKTx;*fqu^3>tOi_q)v$
zrZBs*_d;nEd%2Q~rnLe$3xv$-4N!p#FAwLVYQ^Op{$!P%frLBFUhdbhoL~$dxN=n3
zOd)oTF``<a7M;nGNh7+!+N(gkf@TeO7L3=?VcWr0jrdZwpk<Bz6+OZA^;M)k29yx_
zY_+7(HKzT<hrEV-`IQUPpI>d$cCG`z*kB1CuhzWlpsjCcSXNZjZfay=lIHB<Vqk8*
zW~>m}y4cj`4m<l+28gS~DN&`g#W~S04G7Bs6F=TrNl%r^sO3D6dqY{BN9(hOTj*F`
z&yMqBO-F$%x5uCvW2}o!RUt^v<j|cL52=2w9=E+Lw^obSVdGTmQNet5s?tIG-qLED
zW^g5Ls1g3E!KuRwQzKeN^(HE}i&mzj8GOffFZ2K55%{9ceu++B36tSDwc9JO&baAf
zDO=zols-XbY<d^R44spe)Z(DmoEmK8v63%QbeA7n5oM3vd0Sqza-JirjOo_vBi}?o
zx)8KNPRm@2QppDd&tb5va^>?b;K>;n-0n27_(dYu`>yEX(4l(qS<ZW1U5{0tE8V>|
z0zfv_6m&Ua9k<fmd4D7LeeKQg#O3V7eM0+*bI_o0WaBb4p&*M!+hzQwo@TtXto2IQ
zb;<i2t=27}#5v1R*NI|vTh-;ZWgW^~KybYumX9)Qr8$l@hmL)@0A$>_`*_uN-;6|~
zr|jm633zN(IavlneKulHaab8whAnbAdC=sLt_oYONs&1(o#8q;L<uCn^2A-Jm90#d
z$n~yS*gi-E9^R_fI7e7;vpzzzeuiZUhF<v{ktLtp*B*a%!?abi`C|Pt!irG(1rL&z
zZ29IvoviYEBg___Ur)W}&rB|01nk5J7`n2S`@@K>Fn*k*AfNAHxJG~9c_%GcQ5v&;
zGY3Z5$m-K(IcF}aZne9754w@Ro_Oct+qfXATXbg_Oo=cB6iv>Y<SEp;q^ugzW9N1$
zaC)naHNc9*LBC$nR6L(gfyo9`fralX&z(eJ;b8rclIrR~(}<Cof9!zAJN4<=>%74d
zzs3&Wx1Bm4M0tUog6fuAPM~oFYfotp?*_)F!E!@8nXa1s*Pm0|Q#xnsvQ~PDjYlCJ
zO>1HtU4su`@>a0JOKu7f>l>3K=(G(yM}j#$#<ABWf=m5KczIaPW6|K`@duB}Y86kf
z60c>Bsm3h#jmi>icH(N}*r7ZBM3y!87N5;e)UHPOZ$GOHT#w^d2+Zcp(OSCJzLOP$
zGEZO+`E^WvC@TPyw6l+tljz!dk&vy-j33xEgjU*@yLWXDF2U1_+F~E>Xlvs~5FS!+
zoNVXQHzSat20yDU^~>9R9L2&RzGVtwqxZ7py_Ve!d;V=b;O_&Mqz+)uxS-+usZSAY
ze?3ztFvGA64#)cj4&wxwqxtEb6x&<?V{h#D&33SAKpj{BNzk<JXHx~7zf@QzxDM$v
z|4ZS~8O$~?iiBgTVGTXYm1Ab8u%!}vt?PwWLImfLGqHVHnU&Y;NRXG$R*=R1%QHL-
z{a0jzYBc9npF0t-d%l#mMDuIcAvcl;@tjRf-n9kh>I(I3azP?Z+6<^o9(fXp$!Rw8
z$NU)R2?+)LAtkK~Rzc8WS#H6DFKs@)7{a*Af;M|RSC-sp84bs0EA0LlCZWIsigVAB
z!SKhbri(4zdeqN~KoJZRTNL05o13xSIKpbYYFQod#@sMX1_`PGSWKw>4#~|y#mLZb
zb;EmU!NlQo>cXZ}vZnpe#ARo4C*v62sE4^&(RJmZhom97GsFd<<P{1QN&07dnoEdw
z=c5(;8#eZS1cDy<tuUT|0zN+&y&O9eZUbLCM*T`5@ltbct}@VFFv{b+p}?|=O=b*7
z_54;%NYENEHZhq*M<mfZJfam=Ji;inwvvCRVMTE}_1ROv%lxYy9@**!tPonCO+ke@
z!M$aDMvMCZdZavCU*t^i-&t;$9giuK&&jrL_DwIC-`6EHHxX8U)N-=SxGQD^PnT5G
z@u<{Asc?2>Q5ZpE<#~iqT!Q|*BBRTT`|mg}{@$A!N0zB_P)e(iGFJE&hS724z5%7*
zBg_S3;bNA-6}thi7{LS}wEwV2t1OWA>VOj<E+OFzq96ki%BGlu2BOWz$w;>&L*e<y
z1`ah#V=3dmA=vs8awTjXS`265HsJYc{S-JnF@Gl9_jicah^i`~$_AFrZb=CVQ~8p0
z``+}0<w!SFOH-3+ce0?~J?ioy2CzEvmp?ujG7s>jriJyCttBVEIn94{m>GU|Cl;BY
zjdg-t>r1HLeTSIM%AY!zIUA&NLWv^?*GjyVTJOO&HifuIve9JXYFsmS!;rE!pj$7x
z%;XV!?-YXDuBexOU(xT72$-G>U9))lN$J7`oJ<uWd2>0<A$w4pJ&<dY$X;4t7g=E|
zpdFl4H)5H(xV?8JT178ggw5*GIGdPv4MCSl&{T}=rufS`IpUCl`cUC;$0`jhOWO6D
zlP%ByFa|u4@$m(*`)Jws18kaIH<;H_o|E%sQ<WbC`e1EOkPz|->2?u<S5+l<%*XdH
z=`HtgDC9INB&Fnsc}(ZiWCv;oFlKY|iG5$`u$+M>gvFNa1*bTTjp*>Dkk_>HOer0d
zpyk>nm##|+-%o&b*Y$ytwAQSD4&B=drOe;hm_565TTHrHdVBbtN<IiP)z7<3+w=*o
zSKL0H349*?z)@}}#onrzfrmKuXz4>Tmtc!y-qpUefqcIMhxyRf=A)d<q>+R=z1pG}
zO;dG2bpaOQayE#(#F;b)8WUxvD23;WWrc7BR(>5GV|b5N3>SPnV`qXlYd*hfDo||*
zhTupcLG#5!^|#ok{c$rg6#_mTe$bBV)Sx8ApG~GR1;MH}x@5m1u;<`pXBhtR39(k(
zWz1NS+E}Hfo%@)>jsh@K*Xf0um4c!o*3_zI!NtXe%}pNksCr<_{yHdj4~Uz`<o&)s
zPb5h0Ijm$K&E(3fn(6PQU4M^NCeM%A?*FOqis?Sx6tr)3=uoVXAgl0PiBeqIv6ICU
zuv}_Hw;JEyJA@T_f&D^D3yJe;a^Ad*w}L^ntx&|Zn;7K9<rt+K*1es!V6MI?2)EmG
zE^ug9VhcIs*}cpqp4&7y<Fjx>?}FTCGtch#Ma#SJ1Of}!w^NW@z~`)ZIKktD2sKP^
z;i>0>ZoQUHC$~!0|N4p`M0RtpU=R00)Uz08)H?h4<$b({(7Pd_@`t<5W<tNz8(uuF
zweKBL<d(LTnOQj6Y2sRe3-u2^KxBGoUgW@!x^)ot`xy2YJNndpPNtROc-g;v3i$mn
zW9BoSo`U&@bRpwqP!1y#Q+Z3vLC=S8?3Lz?3GX4asYkotTrFfB@<RWtxi4UklG#HR
z<qhPIm@uRft-TbFp=o?;DNE>dK{PsMr6<ze$>2;&jUa*V1;(ob-mub-j&;GuUxnfk
z%{%vhzY8Vx>9kIV=mXVo{7T92Yg0t!7F)`ftPYtUcZOVRpPBZ%PZLw`Jo|`2kG-cu
z*0aI@R`tH5u#zmV^eVTcu5QFDyqF6_73E-ezqO`jNXEY!MljLW|NR-D8`Z;q<(<OB
z$ave_9Y*RvW-l%-hQ8QI<NOynG6V>eUt1>Mx#`V+vQ1ItM!24BZR$aC{re_(4@q<2
zeD|Vbb^xqEk*|B32g(%y8=Hxj$w@At>t`-r!ndduo7$RAelp^?;5Np2A$TXVa$U{T
zA;xrclpWLZqWW-_V`J>+<#mx&kMRS;BTo{BIX<cIvWdz5kB+D&gBCq=^9tZ7KM#}}
zLpk2#FKr!lOzy}B{@q(tU@j6mA9xPs|1{-j80Wm--C2MmcO1<Ksqg=$;VD*pNBi)$
z_)DR^e)e_ZrSP}Lblj?t{l^rnRRQeC9ljB06R~kf@W*XsY<cVZuGmpl7bs0zFzg6I
z!7H2k&CKF?+pV9X@$AD90y6_lOPYFqPVTWCgdG^&DosDq!N3~}YT&$iUX>}Yb>!c@
zxBtyx*m3h1<oh(apDiEOPQf_M1V8Q#)-DUg^SMn1>-Gj~Ned-Tk&8kbn@o=UTxt%B
zzx-jKJ#AoSRu0Ct(Xlc9YqT;|Rsac|zcT>d5l7nJ4+4-T_@pc^?>?aNsyBv!&=br{
zZLx$OgrdMgU-^#rz}lY9xZM(fQlD!!sxo)7*!b%W4;>3snD#g7e49{EY&E@bCKW)?
z)|8O$ytF1l_+$_Omdk=y<W(046mbuMrumYxjh}kIVwhOh71*IcQS9YddqI|SmSrHE
zD;IzF4Am<yU^PsINm{Ffdx6~dx6U_1n`u^OhBv+o@*jM8xGp!4hYlM(+|@di!uQa#
z&F*AmU~Ak1nhHmo4wC`K`H~pa3cz8XH|R>Y>NnQ=2rmcO4yNo@H(B)lETh1VXM$MK
zyfEtUL?RWJhOW-Oa}QgyklzzW+3x*1!jw_NgQJ5v*DOhC*-*dN=WdEaAaPvK%`&I`
zIfG%}Ip2(!EN8tt+?p8!$nvL~M#F?ko(3G%B;9xMUulZsSp~n;zbk8zoQzTGB5gYx
zhr>aBXs@?cvL$Pm*(nEYt<Elqp`kABhz<sfk1pb{!h{Nm1q7h1*tLV-4NP&@H?)mR
zT^;^i&3O+yUaJrQc{zJCV5&r`ylnjy0YF&GlqJ!~Tc7MY=?(PtjeTbCSRu{P4Spxn
zid5^L!8jeL&~yP<K+IGzprIx0ju3q$FLSi>_wWnnBEHAG$AO$3m^bkROb;7-{{422
zMAgyHNq+cLL9`}K(h{s<E?9Dz8m(L0W-=ALuOP>xikP`;7CY)OtcR05zOLvx1Mg?*
zdu+U<hYMJ#-gh&+OBva>*q>iK0RTlqFd(V^q2zaPHi0;fssQiTq{;viY=)a?RSbL!
zXE`MGeh;#lKV}eWACB~LBVSL(vnf=9@Tk1lXXCT{vxANqMRiihoE&ERhrj%0@d;+>
zZ~095syk6w{BSc_Yo$3%+yY@KzsnQNQ*asrxoBHcdygAEdD(U9P5gf6k^`>RNNY5G
z{Nn1Q<V9T7C|b8dx#`c^;C}Nd{4llgm{8dA&HUP(?{nKpm`A4?bjU*r7}9SoHpS5*
zRn$H7)MfJ*I;(nQ2xK|3>b|SBl&H_vJqd}j(o%Kc29|+rOcj_orU$T+_fb)mXK7^<
zodaS04sQo@pQ>5HjaVdH)nt_ODTfiw#bfv(kYTAjhXe6exz&hU{qaSCrQgdSqV=0U
z@Tt6dvy(r|YP!zIsIOB80PD7Cs<4?nK89L95WL;)yd3i6@8y1WrntC>Ly~-Nx=h!(
z5_$HOY4u5&fFWL7K(hv2N%VX%noAuPSdeeE*UOQe$1&rLbnkki5c%8sf!YNKWQbTz
z(jMuU!LnaLHRC^KL$^O^A=*DKtfcPkb2iTVO@62zb3>AMw4h{3*&W3&g%W&-cM~#%
zQ1>zMz3Ypml8s>J;?U-moW;Nn9M*kvC1J%@?+*ClmxnbV9tIezR9W`AeP1SDX=`go
z-lM1{bE|``K}Y>i6jo%m#iXjNjQ?gqwzN+X2wp0%-QC@KF>WPdN!>($j)XeW)8O;@
z09&r*whHkYwzLp&csxW{lMOMQS(#@L!UivYByuQZeL4hC_v#pnJ+4raBwHnBFq&pf
z%DrmgJ(Fq~(Vs@I#Ud=pG1|kIzf)dl8O^*h*qB%YKoU;`>7A<D1#6`WOvuB;jv~eG
zAO{H~S~9Wv*mBl(am-N4k~Yq}F|1`)&cbK#A#@2eKoU$6ml5kW+98}(alVhaGT_i#
z*Fl@P6od=|EV9~;<GI5!4!RA7chU-fiEF$(1E#<xgW@(|gqB-*v(cR*Y^1FGs(|Rc
zTy=ldjtWA9*?iJdLHF+6<5g6&%6-bavOw*53*hh+NU_2>maI2>o-_kE%rfw>bE=`4
zk}72&<;q{K=@Qeds3^ALt;b`J`!cI{Hbpz*-eW3AvTuq8Ad3Tq6(smJO!m?b0ic3`
zs!`^IRZZ*gj#1%{r3CByNwtgh56W5si>kJ`Lrd@K1E>DlB^RtrMSa7h?=f28^Fo<9
zOB<inw2$_3sN($w=NKA>vyW^JyQND!D^T#9xd!DIR%L=os)YFvOh9(890%spLUObx
z%Trn{;kMqSxw)9g-(Z2@M6Cm4yM$Nf*<3wA?8HO~7)@~sz{#Tm=L<_qvfQR0IIKe6
z5<ES_deKyL?%XNiq>;<_u>isy-I^aPMyMr>=FPvC*4r_rNC-@5wd<Q_D2x}O>YVVK
z%fn_B1S;4olr690;VNAb<)H0bxA!wGRa!8ys`*7;C?SG^p(~cHdffQIjOqzR|J+*k
zsM=^!a=gn~aQau%TP98YnZ3T@y>X=9Ll&(3;?O(DP6~@qMg@xyZbE$~xbD$#d#x;Z
zx4YAzC;-)s(GkhIv&&x9RW4zosGXLY^;Fy<7;k=R<AriRa@woC2AYOb^lr$81|k%;
z4u4lF6c9g=qXi?_NYDTI^Yo8yl9AhxEdgC20x&GqSk(&uTR@#FyT!g11Md$dxi%P(
zJzYu$xIsZrMRwmlTG4Sm%ct(ww?3X%NB=V{NZuCrd&ePpVO^ERdLUKat!|z)?NofG
z^wqPMFPR|_>)rQw)o9``DNN@XS=_0tC0ORp{%-dMf8$-JpP8#f%yk%x`)Ai0ck;yK
z{!F@sjCYLz*4VefyZ`qE;4o3+QvhcWldrqi6OBp4c%hU%;Ac0HI@y9&M_&j1_Nm=L
zoDUBbco;)_>~oCa4G4A15kB};yM)ts(NGN95Z)j335&-=^Xr$?qAs#|7-+036DgAY
z1DQVP{$(x6%o%Wxg)GIY@%dm}D?>s-;Zgk~t4v8vs_I=fVUO-fIIJV2hHjFf&aN`I
zVhe!B33ZwoaNm9glyzCsDm@^11M2O7s#J8CJ_CB_k5DtkzmIV(gk31DP!_HT*7rcD
zqUkb+h$o8uk^)*T!W@US$MJ)Oq}Hmg42M-bT#=`e;1)tkRWRQSN8a;D4>e6k&wH^+
zPnLNckuF-uKr2*YcO3T^&<x3YY8x*of0DNed*ww=U7s(@BjI1eL70Q;%#wH<W*S<3
zNKQH-<5^L!JuV+S<%s#1l0WUl#&C~SYPKb|KK^z3!9jyUD>m1DJ|;f~n?Zv4I&ncD
zc2)Hmv1(I;9k>$^2xaA;S`{1_mKN{1XYqCkKuc)frB%0m6bf66Q@E=>ZY8HPZXw6F
z5=8Bip%gIuC1w@ET0a{BxN<qgJNRBvKcz!<%5S+Ylx=5)AOAxBXzW>igL-9kswuia
z-L?j}41uuK-1pSy?vf2Nhh<(IPKwCJ7Ddb*U#ZumscTqKLSacybz7gMRBdV+u1xo=
zi=2jhQOXy;4$3`tRFvlLbQfAu*4kQ4fj7Zkfi5I}Z@%ZQpS%TdsYF3HnNj-T(y>$`
zo713GOdT(fj9{9qff+GNm$2U|6Kvx@1d&UkbeQ@*YQs4L@APQ1ZL+BgJ;Rhy`(2i5
zgmxs{74yj7%%<7f<2D!4d%Ln^RL)bR-RVw2UVcakIFtf0>_6UfS{+cEd1dZbry)09
z1Fg76{mpWXTuB?JTS=3==(HWobI<L^nP}#;!a+`XYBQmlLTVKJ0y{Rn_Kwh1U4Mks
z9}AQmE_9O(4tFKoCIcQH?T?EQB#mIB9<feT({Q)MZ94SfxWd8vi>w}A!MqQ;>giB<
zikQH+TlTd5!yh0JwefFJ+{-jDdBqh!fY3qgkl<cTo39i7=7IlTAF`}**W&t2p#ckV
z#RmY%<t_7mAj2RIT1%^;ZYA1+N1rrxQ+|8@W-C~wK|#(X)A=ygXuD7UDd%N?J1Cb2
zV$VYN2glEpkUOcjUP1;*D+8A^t0dIR<31zdm2G8^4X0oS1W;e@!_smCXEyiS@Fc!E
zd!w#}sw^=bQmA*6Lh!=JW2~5855Y+HRK~OA5iE2^TpTYuOMLpdS7YoyTmV+@_Lwz)
z#id0k&(04RX=nIdP@h~!Skv~og%1n;ry$lZ_7?MehMXt8ei@fjyB%U2Cgy$;%6klQ
z?FSXL)C`oC3CS~nugm3*2e2BsRJ4i)FMiZX5BT~bnk{L8c$emaE)C>$->Z4SeeYg-
z(6m3+bGbgdeWisK^CHj)GB{}9p+;FRH%ljFeKHLL_BQkP2bNq#L6ot!t6Yvz0|APT
z(YDA=yxX|*ilK6>--VN=P`no!ih9sH^-~$Qv`FExU_JXwh)jH7!;*0E@1K9NGo<X_
zR5e+*R5iUcWN%dl%`nhNiBwZDWM9%^%lEJpt5ro%oH|*-6LE3A4j3kp8{w84#HXND
zJ&PWfq2zZCB&feQ(%=3OnS2wY^Kb9iAey*+v1US1;wHj(PNFY;u^7obaZTSn>{dcN
zV~1|=z;s5#H58JNpunn$HAVX>QJWqSaSZY$Zf9T{?Mr63jEE573Td<#`^p-g6pfBu
zM*g`94%vOWaBTVkh#i&lgT7b2IrmB<Ue-?orhk8_H#IJPbR>Z)qUA_M{Get^*23RM
z6$MI??PSpYyZ_p1&-GXhE-Ydq9I|l(sIjBnme&1kBm=AUamY*en>ibbMFu9^c*Wzb
zgDv<s3Y2A+lOvQjZfEZPaU>nH9{8CdqKqJXS`rHq_GmvTxI+rl)&kSAU$0(hmU@KZ
zV3V4;|1#occMB?ml;sI}#Z~kr>t8zRK)d$7YAW<*i>8<5A8QzZ<y&Ec)ZszyCm=8V
zSr8n9>)H=Rg$_Qi)YN{IgoebrH%oZmo!|c~ftP)j)j&tfNE3rt?iSAwt9fLtjkw7I
z2qz3-GsAS8t85K7zkIpn2D!UD?cb|`0lx+w6NQ3gt>rI~hKPuJcHo|-z(iy&o`xuK
zbdIps1d4I*IMXkCuzL)C^k^OE$X}J;4pAhHc4OGj4e<Px&ntHi#7&N%Ux1m|QhVXp
z>5G3mobN`XJKZtRC)|pTiw+-O&8+4myv_(|m9gb_SW{cjVoQu)rx}xA8z|<0Y68j9
zBO;FPbb&Y12O5F?t~S7gjsve9DYUzRCwuBcBS5R(T~-I~Fa&ZU2gve6#g(2cnIi4Q
zENVmSTi>J112J~~T-Cc_G0Nh<lDmXxl>bn$5A;{oj~29SYJLJ3%^{G}N*g00?sPXx
zsao=Y?m$`6LZ-3<C*_%!1ff}0O`8sd3pd>CC2QAQI2JB_-<f*NHHf5zfAW^S#?PP5
ztKd4j-=Fs%&wMxw)fK$>`8E(PXv>}tl|}X}$8!*8O2K<WtY6B3W)f?FuRX2*j|le{
zj;H;ik=(l%+~tTld<eQNt$@471K{{a2$0Y$E|PQ@;X4Ciy8{2dCKqTaN}XK{ve7!6
z+Eia@Gah>JrpfsiT;2B(ZPGkGV1cj@)1&@^H+Fh*T1#K%qur3i?-`zeCi#;&SilMa
zPx1xQogs3Q^B+3MYrU0e9}N5P(*vzAx&HN=5K2tk-!_3jekx%by_(PuAg3QDqp4T@
z-Ds_-#`xcD9E>Rs;;?ulKr29h|0%^Ds|xZ-(3&d1m;%{u0Bra-nS<2jL1-9kx|jt(
z8glHh1bBJJ`M=i>SiBig3NNjw_y`Djphnf_zWGhA3ouRVsfmdRVOuKfe=q0Wct%+3
z*?)THIr?rkgIj@GTi+Jy>+55d8f%yM4#ij0Kd%8w5Q)qf)piB^oO`PeYIyCmrbW)d
zUiZypY<5$d9`f?l_aBi;;c1FtNG>N3j|2A7*aEj5ZN&Gp2oqFjD;FOK5fVng#$y}#
z7w^py(gVDMq9Sep(WtM#3IwqQmlK#ufkE~s2^jHTI>XC)QGhvGCi}HU0u1IMzxWDN
zx}owE!oyGF{E}t(v(|0-K(uOLkTfp}GHL)7D58X@<m&)t2NgU>Nh2+SMe0R~ej*wJ
zu3;B@$c<nfLx2K#-C?0UT@NzB>g)JfKnCd${o7hOM^Du+*j-~#sxm|LdF?g%;VQmJ
zA^97?MX!`{`a5)ujZ2hn<baZbJNuyh0guMO$jB@O1OWoqXq^|jk}yaVI1cVEz-rza
z<QLm6KQb~l#(klrFh-bbEot1(&+pvn*Jr!^c#I{wr?3$q-JVeJM#PSJ+x$mZ<S#<d
z=)gdZr<5x+yl0Z;N%EcQ<nI1{o*V!K0M&*7#k$UWjkc_+s?W>B!XhhK$bui%pK{4M
z;`_6t<YZG603oHPlt4xskgCkwlzUKBQ?Kudi~BK;wHbM`0RA0d=&kshy)!5`G?{fS
z%V{ntQG5RUxuIE{{`&PfGh43Uicpjl&@X;|{>P44@fG#q7C>pHRK6oaYLeOHbu26d
z!3{-OFP?r4cr4!LSC0-?BA@aWfFKxTU8qzpu(!Z;b+c#NA-i~YJh#@6YZIYP+;2yv
ztoQqYw8?!n4-kY<85&6Ac$t~*zwK`Q>+h>6{1&fdTI`3xL4>6WaXO9!^7L=&Q{&15
z$?I~IC*VC!dGF}^`1ll$<0q=~&2Zp$Lm*Yk<tIl2I5gC!kd!owZ3Ewad=UtON>HQb
z_PIxG1%-vjLG%vPw?YY7Q=@zP_HAcJM^8Dc(xA62;H3d--V}Y^#RCMcrJp|CT_AwD
z^9gp*l>jx2S1TB2U=uQH&`^MBgFKO;$LdDI-k-gYvv}#)4qJJ|CbUZP$wi+G<2yx4
zH{$;6Uj?9nB^JPn;1OKp7oi_NVDSk4f$i;W#xp1NEiJW#|C%?5`F*tub~ymJRA*Zk
zl5m~4Q7Zowtg{oz`9;D_Y3MB7dTW_x@aq|^hSUlNLQk4lb1OSTQF@2_p`;-9+VNK}
zM-`0|fDWuKkG6tPbT34~g-zE6M?-F!3wB5Wl+7#Wr1?{NDTU6;Hl|4cMw|A^&}VGL
z3>px&K*a-A6cZDZSu6q+q)~lVUurKgN6sv6)*?^z2KUW0P!rM#GBfj38ce-uon!p`
zA)ta@IdhT~jtBL0KEhzIF(%GUSQ5yFP}?}j{0&%C9c;9B?mORjaO(K6(ed#o&UAU2
z6Hedc8Isc_ZeYX#_e^~V6u$@(@3TARtUX3m;sGOB6P74D4K<g4$W2X6S^}}_b0?nE
z#_awwa;E#OXAoQL3>Ccu$ZP34-ob@|fO?Pkhsyi_uM1=aIH|n!kw5XIC#x@Fg0`MN
zl$kRN{Fss=JL7;^hqDQrh_{?2vM@7qMdmO=%<W872*jwJ-1a&doB)-Xj3w&p)=RS7
znL{J|2rrJwZl~eg&wqb)6?=Lx^t4TwC^`Z#Bos`ntg6m`p?aWpC6A)6nv8x0{Wykr
ziu+3g;+WTKC$aeVXTLSmN2@Sii~v7uvc}vw>=iUB(A$^J_%``WgUv}Cs;8$nq|j5E
zN-_XBw*uk~EW5tqpD!m8_Ics}30l)};qtk+L&(<adS$;XS6iTuLqm~_`g9}`8)Qen
zEbzKUT*94@7?^gxaN3RA21;pt=4UYR8`B&QlAxCFUxcC*XB)MMa&0JX`LihioM4zj
z0D7lFhFAgWcCb}ZkVkvO$CJ=3niA08vyiG}oV?9B5nVUj97<o^Ap>N3ofv&nNiU>W
zwQ%xrt5N)7eRjBIoN)K)6WgKc;;@S^kpOP9;~hSo+t6SLSi6HhQzs_?8o2CxzxB}m
z+ve`;sExWC@iJxK)}im#4Zf^|mxp8V+7l}ph~wWrNSpk;9{EuB^!DcHG^Q2XmpU#x
z*#x)_z=#Z$72(|p)fDMZG^4;i7zTepHh^-YZwv)D6Izk}uas`A6lCajEOpkguV{oB
zyg%{fDbtyg30l8g8hSgq%P&NHr)p<GOs(0z%~2633Fzb^nhzLk3b6jo1;-ngmc7pC
znVAW|`gwrms(Wt24QQ2`_hsRSHur_aI^OOX>FMPImaOVE`^DljZ|{$JGcqz_E?(?C
zETKS0MwyP%@@i^CXQe;&$J<~@F?4*k)v2pET*P_`SNJ$C3Gfd4H0s6P-YvppK07C_
z;WYrtQ3c)Oc_IqbE31#jZt+JoDrVO6b9YYD-%;cXbAI5oMK2qmbK7!dtj)MKC&&jZ
z9`-=nY^vXkMLtjmV>xIQR@nE2?i9NB>u2s>quR!<HEU3Plj|gs`->2$B-32^DC}o{
ze+tOSIysg4nE(zWxTu2PycDOmU|40IRuka!>{)I;)>j5FJgGW~^$zfV$t(;;kCv8c
z5zE@wsm?q-Z_0=#N<dAYH`N)h>o!78cyQm{0cNc~w{iMIcLlZzy!p*kO@jsQdK9V0
z?jIsqjBzA^HIa>22pUnEyT{elRX;GW(KgKv?g9K0zYIWWk(x@pW`DmIaO2oMB_}1_
zmZJm2(yGwC6Oh*yHNU>UQB;5l&qh70rEK8DzV|4oKX~w<i}Jy4n>96%H%M2|$ikwM
zI!Rz<s1Pa|xb;-W)U*ubHZ^tKt}roCEgDf;!_$!%(CbayQyT(BAv5k?ZlrX_X)s2s
zRPO1_kz_$(#$3Q6pP&k>Fs4x^yxFefvVCx3#ijNZQd4>yvKe?i)Sepokba7Vc~KmJ
zilJJP^9Hnl>i6P<eRgIa_hrc*2}y+tczJnZ|I(8n?CV*vkraUN(jSKIG!SmQ905QT
zt$ms8{A))B>nD$0XbOsZ_|g`UJzODx`J;I%Mw-%@X*g+eyCQ2c{;|QNvk<=TRi5-O
zk$J)kxv^JX)N0NEE#(5xItE!<%D3=4DqOm?Z<<?D5@A-!FEczcQeb^|`C1}y+jy^d
z>nj5vqZ~L&PTETwtQEj|bI%@v$6*ze3Q@3v!8Qy*me2Zb2~cF<6qXZI4@AK$#f*>R
z2&S?93VV5!KwiMl2Ymhc8v$+a8P&D<*h{)ZA=lo|@wC++nFHZnvW8osW;Pdc_P&i;
zo^?k45(GW~S%24;zb5gNkiDV{sA=k?Fz3&G(gI{1=RZivZcoe|5xHb5XJ(i=CvEFV
z8(L#BoXC2W1L#K}_mEr`ti-LXvysg<M8ewFvaG<WIiBJey1u6FlPy%I<8AQWYZ}d~
z!@y|(NmZ{hR3O`0zg~_1+0FH1pyv}wHLa=N<>-iUGgSbx+<c2HaA)$RW$NU9FNx0B
zjT|o|t_BDH;=nc)$-=CftN3g5pgIoUw)zy#Q+Y!LM3VXQ=Y?Q4D{xnbWUh*xQYE@s
zgrF74&<w9BY{q7+;^Y$dqyrbSUcIdAXtzJI^)r`=ORoMYWujL*D%66lpG#JZ*D}N`
z+s?Meqr7)w9xL0qcx>4@*e2U&+x&vQws(%z4|C!)PSw_QOJ%KbJhn;x3WUOS>C6u>
zHUnS%3=r@lu?Ufydy|`QY+&HmsuYA)er=qP)zHu|0m`@9c7S?t>yx!S4bQuiCyF#P
zYy`pRawOq4bp>7X{D~`=99#{~Y14u!umO{f8}{1S5hv`0RD;e%VW&N93ykB{$cHuw
zHdOsh(If^uPMG(%mk0N)+&uaEYij?JkNMc73{VjS$>M%)+`K|U<##y=^=eReI|>+_
z^z`&M9V}o>$BB~Zh|n`W&30tQ1Xhw8yUT%#4JvlmD;50%1=1F{$gq$_lHFVfpqbbt
z&|B7S)F`TAFnAH$yLdYC_OmeeM0q%oq+dhwIl!R@2COT^CWA-&D*9Wv!O<pI#4Oig
z;MtSM!IP(Y%i3B=9JXd`EFr`?W1@5`IWg;*Q1Za!(w#JY^ef{#d;W5Vt=AQiyZzB7
z+>;VBNDFl$I}xx$@WO}N4k%6DD>at$yJWF`%^I?L8}fpB1Dgg>vbTjjtJTA%`geaZ
zWiPgk9xL2A!_b-Sb0ZBoq3z-37F}Og_alZ~o*CU7;8D@oC{0`~hjXvNBqSv}h-;G!
zvOznJ2%>f=nAihnW?=yaq8a*r@u`8O<%|a<bJ##fXVx+B7(~e`$|FF>$f%g=2nZHx
zELeunP4rEapXd!rAZV-$iNW7kXmhWcQD?8joY5;yThph2Xr;VtNRE5B9IbDMHY@(i
z37Isp|7P`Fe{#~y<wdLI+xxj%zza7r61a3ms!!wn!&{{sp6N0fJrnN~(Ul-M2hwlA
z5A9&!0XEgdZJWyp)Epc01FpJL<*;R-+l<eq+mnC3=Hw4~gYF&U?6w_}PL?FM6Ac+a
zT5n9I*}3?tqDUa{Da2!+1O`eo@U)*j{W|9AgIP~w5EpzZd)K>ECF>R;Lp~s?9Jpj?
zJ&6Qi5nw%-;eE)HbfCXl7>){=)cnv%^C;^qB)X+iS}lx>QVh#Gcg3#GDRP2H=5gw4
z?yCXqWofG1$oJC7Q;!d@uR!`8uukPxD1H*1A^eLUSWD+CY=V=vL2=W#0nsiw;%@B&
zFbj#*_FdRUA#wealW@YC)D(`u-BR4UefMMVYujA_0S&+nD@~IItlU0>1f}Lg<aNiz
zFDb$xT&Hv@G}fHW>*bq^x+?fM^>YPJ7)z_A2dvKF@zp&4fYzeIxAMOpkG9{sPJRd+
z!YCFFR}dlaxOpWzCpdiXwXE&@<~e*T7Z}zRbA~Jt%1=NkuSj+R!GYoD5#YAv|B|)X
z6g*cDLrObaK5vEaEp+~BV>+A`_~=X-TG05@7iST>Z%VbTe0T2nYAjC;O9N(P$tQtL
zxSNrcajNAwAg6=3)4g%&DF|%|Qu%|9DIL~}o9S__Ack}96$?8I5qKz$-t^_>h;`Wi
z&a(0bv$##K7%EoX7+BR~F0P`dmq<wM*)}pVTG~B6xbqcX(W}-nk(L}`-^W`kDAHlL
zxvr293HvC27)4(Sm37Uwt*w0LK}ucgR*9(>p=QOFjW$QQzMFV?d3}4Me4=*-ejTJX
zZRiw0yz#5Vrj}-cSl0S#Y*ZN<aB<(L()70aSmrsRwEUdFOgPJSQ1Lk<&A5+c=`%f#
zE?ap`qyf)NnqM3YvCmG80_6iv$0|Z;rpN8s{mPAvfV4<eJ&~^lWx^s<UWL+)yKC5h
z@K*TtJ^{yuW(j_2VP%D%db6`R`@F@@Ay|zq(LQ}0un5neJ68db&8pSc5T^>$=PHT~
zVU^6+<In<pO@Kp;xqxZ5C8Om=JR$1*ej&%~VKh7znwpwt6WvcAKi08?Ie4;k?FH}{
z#vDd>`eMUkIOEm6HKi%iJYb|U93U?hm;gt_$_h?>`fnV;f1bgod>+&QAk<0O2JoLj
zY4h7B&tfhZ75;dv%!zs2yIb~%)8Khtd<AozFt^q{IO6Qqygb!cA1W`xYZ1H-e60U*
z9%jx(z2{v^?7N+~N)Xp5fjNsJfX^n&O?pzOD9}d35FC{Y)W0Kzfe1lcew7)RD^H8|
z?JIjnC!qP%0?d&mUe7FImOecHsMMCF(H$dGe&LbF9_8>2|K=`MFKaJ;P2=SDK0qS0
zsG;Z->SYNWuDzf70r*(P=*SJN(;j2vXt5wbjdq3V)PU<%+X9Tx=d5|b+(huw14~!$
z7y~S!0?6pim+?1miDmMVsh;iZPp@3P%DwXh_#wa#deU^!$1J!o`x(1g!2W2u-k0^+
z*3v`Gi0cv17BD4?Uszasa@=%vnbX~a@#)j2ai4&zpo2Iu04gj3XZ^NZ#G=>a5{{P&
z7Z~X1>du|97Z4BtlgD%$9^8EfXac~;C$Or3d1i12k2WKdcG5{L;=TmnRdxf1hNq6F
z8ZJN|Y3zp18+81({S?r6Jf+rFQxwzM>#kAh9LaKj{oVNA?n$2}xzoo*nWM`J3Lbv7
zzPrFg5By4CCu91fR&4LoBVyEw*P|x2K*-OfpP1ohSF`>?`!;%`9l<M#1~XGVYnBS?
z>hwY228fTfmRKr*q!qjV6;7$;_6xZjSCQUYT`iK^)dYNzLE?{{q!?^A*ZH|b5&T!6
zcmQYU+6?&NDlmum4%EJG`)k}ID*FJE(?9uOX7|R_8@4P>`%yD0XvUsxPp=Tnp*#He
zo5s86+$%V(=b34qcPHoX9(x#ICJgWx>2~z=bSCjfcTv3&fUf+=)LD8XBfh5c)Hy62
zD|iJMyx;T<V8(&Qk!t_F`2v6jRmOJ~U%-LqrvmB)_}&2;-8?EP2<kG<9)ejdz{*tc
zlYpp0OC_qx%YAlAEb1I}h9Ym?mbT;|huj3Kov6LAO8<1{YLs-D6bOh}<z1dUemp|;
zN?3W*xD|G5#gaxTlm0(LO6N9TTmcaSo{qsT{c+f~DVP;X9iEor`GkZFfeSfmHQAEF
z%*;%M0wW)SN1Ivr9ceFn`*s7S+M}7gdcF-n8epB94zetLBv*)*hS_<tgVdytD40A0
zpfT{%@dFN^lvz)ySpt|}7}Ng*bmk#pUXW`y00!?<Zw*$v#w{ASzCc`4VQ3J-RCbYe
z(W#d6L_bMM$zd&q2gy8(-abS19<0OljAn%CEfdohn^KYyAj|#I(i&BT|6wCi-_WoM
zR-KXYUrPn!ei<kzi=$w7!|Qu86c2K_wK7XUQA(HT&t6@9ePiz~b2g1y)e5u}t&jS0
z?{?OOR=EFpAqVC_RfThL`}zb|(E$uQ3OP{>95KB+SBE<jdHm*noMlr8F^;&%Hbmpz
z+-thn%W?RWfm>tX%~^(f{%gk3%;Nm(l;L=JW=5bY5ZV(Uv;^?q$q{Gxnf3nAzLmS{
zv@#jym%v8~|02F|4*|JYigly5f$22{%#dZHBx61SYzMS|s0#xCh^ImRhx%RWsfT@z
z<5`v%N?|Q~D*y-o*vvhoegL+YF8^ZT)cvZPe~kfk_cKWLQvZVO7xTXWJJ|j2lmB0~
zMtZzE&>K+F(H{MIp#b3gV3+PfIP|{~99c~i)QnFsVA(*fefw8vT=jqEyn@{K?ojh=
zVC4D){tMD3xBnFw-}9}nwBYRU@DFE8ttP#7*%36<)7XQbU)pJ+CJ^ERMY#)*(STO>
z?{;_XGrO*E%Ztoad~QD*NJ~6b{(C<NW;RF-OpFhGc>*NH|8Cb}YNpx$Yaj40{vAfB
z|Np<IIWLuYsncCEKynnK6t)V7_Qg|b45{~^2p!&d1u#0W_to;sAjc#6zdhp1jZ0yd
z2FAvU8X6=(e=e)9H!v|-=TQ%mW0wr40dIa2STqxIw!PxVzuJ9mQK*sPkB9)@^YYoZ
zd?H9_-;PeXC*CRAT3S`aL-huz+ZXY_->wv1gV@Ny-UCNOvpVKibjZ?EQ0nK``_|Tu
z4x6!~rFzA_t0R2TtkSxmT(7Rbe}hUibKzx96=Nth-}Dk`XBr4<3zrlYJ}TDA8Uj|~
zc0Ilv<Qxnc+`0oKOSu1bKhe0eMWDh12#fz-s$ADGUwx6jhfBg<8r&=go>sfxQ-HBo
z99e_MfID%j#`vzm{b~L>FL7Trl;pjCt37vckiB@$)Xc21EIB*d^enir;QJNT)T7%b
z<WlaOhKLc&q~z^?Z}*|~ebA40m#Kyg)T<qtnsR0X<kb_k71C#JlmO>I$x19~q)6%8
zfjiLv#GvIOw(Y#KvSyqrAAqwBzBv3Gz_r(RW7*|RtBrfgO59ysd`?o~U8OLw*}BQ2
zd*q^g)mZ;GBSjZ1n#iU9w&m#>Bi$$KG$%p!h*{kEqp7KBg`S{hIaU92P;C(-MQy5}
z`3SN89N@^8OE&zay;?}8?Pqi)y{~}ThTMI+Cb*QKxr4!+Z9V(9acRNG$0}Boaipmv
z7)d1sL8@wKMu|tgeok<n_H03LAZ~E(fs_C2F$h!J&w~GO0U&YebLe1S1RI$BK>gw~
zpU@Y9tTe`l8+Ad77#yNKt`P%z-OJpvV73bC0qVB=;9nz5-KVDAsDHs`{+DO?ch~d6
z-!G)@|Ca{+J^bG%|9{>ZVngf4uDM{P7Kvc2g$$@(wUp}vQ~F}%kJ?4rrrA$|gZmGQ
z*5M8h)mn+swoMH-<>>F=pb|%*`(DKd^yZ^}>ZyWuVZee~|13c{Bv(<C7T2g3xE=gD
zzr^c7bo|#~vrhp-?|uX)O|zfg??i>px<Va^*Z%9Xpy%D{nB-Sv+;v9XrCxT;HtJX&
zm%C*j{p{~IU)ugG|ME(z)Map(y8ZV!{eL?4d^vK!_s!>35fx)l;hGYYkM8Q9{5H)r
zEizs2ee}HWb3udi<mynXlYOAas|M3_LFdN0Ks}vqiw8R9N_<B8=DJFD*FEhb_9!Af
zKl^CWkkIT{)mZOTX>319*0!ZTZChUTOn$tw^UXJx?w|S3KPsHBNB-CUz}^Ry)1`0!
zw-fGPi>B2*|DV&Tr`~10UU2n)zvkIJQ8mFgm!411=jLsS4QiOOyR7McP!ZXb!!VhT
z;u`Z6o0R7r^3F!}l}zUSz4?dV6wOFp?(C&nHokVD!uE=@nvcNg!d34j{rR4+B7gC}
zk6em2{Z9E~!rK$)5{j~5x%rTASIqy|{deh1SF^spm*-=R?c|aXVu1wEh&2V9hz1mh
z9U=`?s-FIRwRdHKVS2Z2#`A0au)7)<vdzN&0Zf9@HK0EBKm>T9!7r^SzW85moh72%
zE7<n*V{Vnl-aYAjj-B+qf6JgnvhVFFTZ<3oP8hMN{$yF~9&_`DAlvQ?_S@`c4C!4o
zH`NbZK8op`SaaFgrM{l2iUN5FQ8GABy?fq<le}#B@@Ln5MD^lZ<%>-noK<!S-jeXC
zm|APsQ6C?-MNS<*9|^8c3U{I>grV={EZJah!^`Si7{IF?Sh){3rJb_U3@9I*Pa$NV
zy}2p@8a(e9nm%_fD>`zw$?THc*ZLo{38`;b*)JSM1W0h(I6UtvkCkFB)g65L)~ag&
zKqgM$<(mRc#=5GhEv^&L0$vw9l0993je1Ubb$990zfVEaSIAJ@Bkq5lFw?f{dNK1!
zv7cBJvtn|K!~GHM8t(c_7bfO<BPUGLKdlCmbUi?scJZay#$K<0yPS?L377e={8fZJ
zXZIq<)A_64A@x+%dCVhL`qnY0;i2Q$eDJfl2aPUT!Hwx+gV>ltbfO7EdRg<rQ>u2f
z+}ZQ>)>}OC&N#6&bZi-jVVvDh)X@U9alXp?7B>T7KjMX#f!xi@{Bs{0Kg*_yboDp<
zSht+A)!stzIJ(e#b(tHYepQvbX*%*_BZ^j?xBL*iUd_Lw%I8cPjXGDErq7~2e%=3c
zPd{zXce}>!@EVf}d2(y6>;-0i<Dz{J%Zj<3#9sP<eo^Izc_64q&LQA-<o+U@{TD~L
z-Yl*{J9@vtAidwe;M3j@HVZPiNMi>fFeEKtu9zch1fH*}Vt8!mP2{2f?HPvk^}wkm
zMr4fXTdc!6xkTLUIqR@t`(ST(!aP2Bl|2k-B<|ag?-CXjEgl7P)tx)ArT0EFlUzVv
zbA+#yEn!T8d6SZYlOUPzI!D-y$Z3P_2gbXf+u*Upka}2#Hjm_UY+7^E<mA-&Rrq&s
z+riL=7Rjo!mQ{;|C=;q6N_3(H#eLw5u4)4=IZZ9*vv?N+cXr-Pk^08IxQcRZ1^(X5
z3uoUvEb~n(%{vHQRJn@#KGfAaJ>_5DUt53gnYEeA>4w_UKg?GRbvD>O?aBc4@Y!R)
z(+94A4%<>I5)U3?biotaSAQ?uPN76f+r_H55Q?u`|41}}^e*8D^$02U#8PsI6Ir4S
zZ(bRrFrIvdvHT+MWPk*lfqiJ&UR|Dop|S7juV#t9>y9{H<VQ=5`xo)9ExpNS4ALki
zbK@%HfRok>mW4viDdWO?c&PA9#K4%fhg;rwupzZEv}eI`>f;(%<cCZ56@lS-c*1Y_
zpT(45Vc7dH<%Vs?laB84cUX@PiEagQEpq^Q*X*APAZ8-VP0&x$%u0J5RKk2;8$TBk
zJMD5>la!_IuwZ%Hi?8wam>4oGvwKUP?_huR#G}wom)EY6!cS&cicOa8aOoDF=WKh>
zlhUmB$<6ND98bEZoQjySJgMVksC;_+W~#<wjOQ&uP8giXALzC&2s&Oe3qQAD>~p9w
zGXrIPcbwPZoAC2Xpa<K8G;H|okCkYf6;gXbxgXJ!XRSiRm?^n^Xub1=R9eaz6i|3z
z(&!1w<+qd#%!=X7r)nc)XJ_sD8Yk||>As&~PDzgMXMkbstYvYxV6U&2&s|?PBFcD_
zTX{MRZ^{Dsrpix8`m;xS)`^T#LUvRo&qV5rl$8sDm9V`zr6UN>oaE?twBt?dyN4cj
zJg0Wd4NJpmwZ5A&LK#t;lNuW?+QJ+HpjQmPHF^0mqN2N^@|Ln$V(PMo5!V-I+&j&|
zkV6^-;#vPnvuos2ubV>6-}(xvJ>R+g!`GM!;h*;dM7Psqzcuy<#|m^Yz7;ce3e1t)
zx5K>O(s8Og;ga7pCEAJAO0jT&hDFg}?mYh8E*wxCmmCi-x3w^479jCE4Oi&IXO{HZ
zP|(J>Y!>=b(dCOzpx*dY_h@NPp)A6)(%WNvGXdOe!2DZSglD@vUr8)J!9HY%rMsW-
zE~eX_aDD?Kw`@rCW;DB{4~C@kjzq*@D3WU28;Dn(t_R+(QZ^u)+bSS)S*$&VD=uef
zPd@|Fg5c~W1h%GY_Kn}-vX?znK|4?-=T*4OT>$A1sSNaBQXG84(kUH8$X|^0njLuS
zo9wP_uWw}5?(bp#dntTp^IVua&mQ`i=S`suaNdWtRmVTUhVeC3X-Mexn{N*7;!NM2
zUe)@F!0x-Yi;90i{*>%99rT)fWH0WBHswe*v>U5O0`-le{VjN{Jk8`XeW}fpH)U#P
zqVyKGaOHwgCy(`3r2MAGE(>4#ADsPVTvp%HHV&f*sGxv~N|%6=0@5WViiC87N=kQ^
zAWBGgOLupRba!`mcRzD}f7ku_zkgn+2q$~*wf3x;<CxqKC<>?F<9{!m!7}BLOI{jA
znLU~Hf|a7|z3r|k(@IH6*{I{ZM8%v9tPHV}w`T^C9BQL-GrD^5X!NtVo7k#iR!#g*
zHp0i?a~TFc&u$)(&~mziO$p=VN-SS3-y~}pII(!m@;7exBd+VRPr$z(uz;BxF*tF1
zZ&Fn>&*>|hx$sRkayvE*Ot1;VyO!Cw+cDO!Yoqw}xoCp*$6V8^!nM6373(L0L<bpJ
z{;EIA<eLa2+o(i<ig&Y1`rQd0bawh<;_};a>y)=bSQT?5b9<@jFhfM*vsKi2sXuCd
z41RPJ7OpnHv|o`w`0+&7NJ8~lSY`+HIIX;+^`2V+J%*yATHcZ4QCCeK?|kc}hRNec
z8Pq`<4T;R`rt~$f@4`Vq<YYtAYE--S%u7}}re3)^Uu8B$Kfcv9YdUA4_-Ix11VzD4
zSCb5RV(bZrf97$;JF619pd$^Z#=zksO+Yr(dz1a=ib%}zO#`F-KLpWL)~~xmtW;r%
zutBwa2AC;fXV(BShKxS1Z|li_U9PCTN;_er2pj+Pva|Ojn=D0*S@4`m;O<ph)S!ST
z6HeUFAC~f(<>NYLwn7YJlf7VZQSRgMB#FN@ku%D*+Z4K@*_a=NLnHGX#J?n68h)H|
z)d_Ox`<xi7#5>+o`aVtAA#S|>su0W~oWJP&)!$_P1`|xl&EDhG9fL?0kC<Oq!)mR{
z-iFE*UVq;b?SA=?K7#aM>R@|`=%b46-oiINv~h{B1XjX2_neduUZ!h12Ew56=%1*j
z<*#DEK><^jHMn`zPQArC5^%Tcx9_}_US3y)V#AHZe=x`1wj#>n(n%6*aJOI=tzw13
zhZ*4!Z;V0QC>jj4<9`9!2A&k(DcIf;kI5aZ^cQAXTW5rYXK{et=OA`q_+`xLjOJQF
z9`mvK`Wp}0F-BWW(v=|xcCgZm6Jy?lj4$Rh4lT@wsx%$F+&TX6NPy*-VCjQB;iVdd
zJDpQx{t6{Ma*j;*^=dy$g__rhZfGJv9lJLD!MiXgG=VP`B2TY6^$Zw{hD&%c&Iocw
zlNv{+66HtY8MdO<Cc?1=p1;#UKtY`N1l1^(gp9v6N0-G!rqmZM*dBsk=UAGHy?fe`
zM6YzzR8;nQzv;^DbG_M0We1%hrK8p~rV@Uw7L%jBRGSpd)*pFRH=VkZXmDtv*#%0<
z=ZC1Ees+4!{tsc@{Nqp5&%PE(X)jsuvZ|CVTbrfC8e}s))38CWanrMlcW?KWTTX26
zWGJN9{4#z}{yguV?Np7vjapehFB@PS06*Hpv<Mit5RLb_2Tt(tkJSC0coXL31^mj$
zil58gh2~mH7;Tk5l^;hbYn^$_kHM(X?v$0Pf9_#FwdxC>2RW2{EPN98Ag3lP|I~_k
zQ8nvd0Cx`N*2+h&zp9e}9rwq_RVp`9Q%vHsXc_NuWRC_5SgNuXw5u9Zu7q(suC3+`
zJMM7xmOZiW`03~ePlREpt1x$vDf8`rrug6M|4i{vM~gQgm`iNAJ(7}R{PWrznzEle
zmyGn46J^DRY9}A#Q|P=0a_Mw15C^q2w-j#l4*;6Fii3~UmyAp9jqhZn8u55XMp^7z
z`;P!`!F_ylQtpApD9ru5#o-kCv|L|i?kLHJrj|7+A+|9}dK}MQSx#x=Kbagd(0Ap*
ztW@f?>0{x&BCmK)l-s2$6`8FPW4)yU`;A&Ww0QL4`WS40eCT*iE^WHx_R&enzmX}o
zfcH2bZ>x<-=T|INe=RaMSXcGQ%H=jP^cV>u8Xd-~lMjPei`W#>K#K5-m;MDKpN7l)
z6~@}$4Rr<le_(_KG^NXpqe_v~XO!p`IKoNM;o2$TGQB5Ou&)&BqsmxuM5fuNE+XTR
z(|)X}C6$MQW`N*m?^$Yp_(OwW1(ps>G{?#LFM5Y&@j48$Xti@FjNYf00`T~5v6fOx
zRZ?FXcyC3sh(?u40)H2vjY<m3k};)1b?#STLpt&I9j$p`C0qZ&{)6JOX@hW+^juY`
zuuPq){*aPmBQXJqP*md*rTjM;Yv*0(tZz;v_RAK4S%9eSZuAvD>QI$!saTIb%Osb4
zrqH*tQA8MJ6-0BP^s)=60L5?+swMKsd2g+M^SDM+Ku;jNor@lM=QV;HP(svQcSp(?
z$bY;Rn>xKOdRL14`a<?Gz;AB6OGz&)fBu7xv%XmuPq1YD0a2JQ>L<LnpAZEHGyv`b
zlJUB)ZeC+ov+|oxzVo?=x$j__|9sJx;#<lNG%(^>eo)@dd**35<(ra0mWqx<wY2ji
z{kTwR)o2}G*Pz(g?_1eY+RMzkf&vwJ#9O*PRqnW8`%{dsr6T}BeZ!^5Q)5PB2HB-h
zzj3N(Vmrqh9gYI#L6a?r&}SvE&{vg98}|`JOGu2ei{MQ~TY#z*?zzrX;l7j|cZ~N#
z=VyFj3B^kJwoeC!voQsWDvt3G5)2qOsr`9C_GSfM)Y)OzK+Y74O^4hY8t3A8I?#3<
zmyS8;ABU=DG(DT;DTPtf0rz8^I~vTiEICMLYA?Ge-6raHT=vcjHELba0}!6LPze0>
zYef&u2G4*q{~t9>wX8(m4_=&yn;myaF~|}0>TfFQ=z*j(U}v#p&^y1^^?e-b8J5ut
z#$sM7u58tq(U<Jg?OqqH{k~pB1+!)fzz<{`fCjKz;k>bGpv%>-Tff6`wbU>Ty*A4J
zw$kSbM!qp+ak!llFZSBX0|<uYNg)7Re<$5HGm8dnT5tX{Fg~RgEZ^*C-6tmUR}R(u
zTD0aja&OEZqc>NYl2HZ+ybsNlz@)N(@0(JQ*9|^Uq;4qkT6P+;wl;pT0&*P++!_#R
z0SG!g4luLE?)DIi0wq<?uH`kiqZha2#cVYD_Z0y^52@t=h5|xFyI-yIP=|m$yc^h^
z-QT|7espha(0*@CN5G=MDqF0&5fVu(8}gd{QslADVb~0A69>{!^PUi}-lSNY_RW|j
zJ?&9um;oi?WHiM1bbSTnPyFM>TA1hmF@HEb-iC*%Cb{VtPDRE_XX$Uomm1wlDb2_^
z&|p2su@x%o&klYnz8?0l`tq%kHZ{l2Nik~rBJg=s7eEW#p`kE3Y-*5pVOFthKMR%@
z2e?6LQ|Psew#ysrQ?B|-%zi8WX0MJ8tY%d?slGA+`yJ4)@hOOO$EErzE6i&HY;1M7
zy|6QKzv=8kd2gCM+`;J`pNjpNBDV9ZBxUAYu%3YN0CVqMrwSRTF76Lmvbpn$#ETiX
zpOqU<k43b4MTkv}_fXxR=Gr=Fx9_1mpLkqN7YV$?OJ@10-OhtA?={}tP2fX#6uzs#
zLcVVq-kpwW1PU`ni3j=?AdGhN=NA2$%S2k2PNQx>b!)~W2UcaX18w3DDswio){MDl
z^-|G?{&0kEtA~ZE%S>P)Pbe2r2sE9$soc6KD?ngxVFAxtmh}PoZ}2J?2Ka)Mh{IAR
zOm&71wozyHE0)ADr)NSGlO;eUzgw&L=FJN{jme?>vBs7h!V(FOU)v2M-!b_}_Cg><
zg}DdRGu)~&^65CMb*F*E?(mDLqr#Fm2`V%lWE*c8oD1*e<<vB_*NDO!RAei{{c~1G
z$-)!=C+7q0RNQZb`M5H~9mpx*AL;BEsum*rGxj`%GcOXsSTLAve&}G?gLDA?ydAa4
zlApt3A;S5rt@3=?yS<lfBP`tC`{1Nx9+t0EOO^88?@Y^Frdp#;mF{SpD_Y`x@_nEn
zu+4qlN!UR5*M@#3j5&Vh!Uq7AVjQ73^nYRyey4JM*p?T#%Sm%Zh?1ZkfDqKUp*0ZG
zTb4TsprCG?GVjfWGaV8oql(8DR1|T5OQX;{F9;53<w*f2okQiTo9nYuW1ii-R0E=s
z6N^Q_&cqhc;j4mhglG#*#FTa-K|p}OXzndHKH6~tG={<X%;^GwI$sUymyC}JBMy*j
z)5sWK9m>^2tA-9KUey2RZ27I`jV0iTM_G~k<@`XE^Xi#~?#u+8C9|9d7G97Qcm)Tk
ztXM`6_!Xfq|KDH#e|Zdbn(5!(?b{`EnHd<R_}|r}$X{&ShwI8w{m&(t{&;)31_J)~
zMYToi>q4RU=d+QKyRYv9Yin!hnbkk4jrerptq+otR1_4#C;rlrWM`nsf4}{o2lLC5
zkvxr+#kSxWPOG4Um7d_xP`Nn+T3TAYp-dd;9-F9Eb$kd}bj-|N%!sx0N~)?7z!cCJ
zZrrx9BHgym&g@+lXpBR#|Er?Hj!u^52i6JZ+R#13O@~#hZ3FpkE`w##Bp%`8XE{s`
zmonz&=CX5g&abX|y1SD@n;lzw`=B`I@G6^~pooZ8s17POoxA;vUiCA?uOgzO2a0qV
z?2k9S>gwvCXCz_|te}%40gTTjWnv047|C5HDk~{Tu{&61XJ=n$dT+QXu3VzuG*vZz
z8Q2I{^Yrth<m8Ns<+AyzuP+LTmur1VR4{L|nTwJ1hu&MDnTTt$(8FhPR0Qv$qYv;b
zFDwX#)2ppcR-hY=7xz`=KpQCNYRnItEaLyuVzrn5At7h0N!^uyAh}3?-HmG$I|^Jw
zV34`YWJc#;x$APTWv8+Q+ID|{%dCx;(7;&jk^fz0d-A(<#v+VmB;a+7fW(C&vxPhi
zV&0f94MZ7UG9XtMKmX@QPHcWc9Aj-}_GK`=?{Iwx{n@i{(UP_8?e5}l14yl1T}!Kd
zNt@#(!F4y+(LH=OF<sGY%-{O8pt4EcXa(^!p6BEg6dv&HA}fQtf0XDAJ0lqH+&N5w
z1n*G&fvKt33>lU)!5n#u!__{wu`z5I1r!8xRejUq@Ou7!N6y;f{(&{`O!j|LhRt_<
zN?vz;j*cWA_2$cBtJLr3jETzrUvzYSA|{<)UnArJ#^`cbtv|WB+HtYnESN(~YL$^0
z(C0}-oPzb-{CvS|#R4~&EGs4^_MBOV7KSx950{#i5DF%I>djJMus>RF0+||v>6s#a
z1j{}QVP^A<W~pL!c#u4;&lQIyFp2qpFKmdKl=OQjP2D_5E=UQpcKef`n0eFnYyFmM
z{h=@zw$SCqSw2s_X{XMFihBJ?kxq?UUY?0Bu?FIGH<uVsDLY?mu^~aww`sLc)6~*3
zyH67eSi<1XBV61zOuoyvwzlk45;3!9D;kJVo-Fo;ATaO$-~E?&=U&&IuhT$-eh`v5
zm`<GxiK8XT4X(G4L2{U(>*{iEf_wEr_ide?IPwk`#C;#gew{Z8W6-G2kfAClF4k)P
z9m##U+fbq`IFcJ>l{=E7(t;4HrH;B6q;pTde}8OH@(}!$d1AlSToHSS_Y?6xp?eA3
z6{6Pjd^cw%IhdaeI5;`?oAFH$GnoP5b-CPJ5Fc+(8H6Y!^pBK9u6j-TWQ7I1n-@kC
zrP^&lDJ8sb)kc#)1V?b$5J57_*M(+Z$Ne^{cUi*lq8>+nfIx+SC-ueE$re1`2~zc5
zbM)cX#7Ha7H?fG<w;UX}YOjt}YA^TEvvYD*r>gu5Iv&B}39)$k`%|&A-%XKj+npn~
zU5?cKt@a41#{THv&{3V^@mLxG_j6I0FJw}46o&W}Pfl^5mas92qSiapU1c-Q=zk|G
z4%R!7N`^K4ALuT3h9jMxF8F)-)qY;|{%<jIqA5Xt{*cTsEZ}n6zK_NIGrYgQKfhJB
zaxm+TX}&os6)6P|j}!2}2#)OdcVslhg0CD%d3D#E@E}a)!YTONwyzgj{HYii{9$5x
zL~`;A&F~k91&g+KcD{JIDwwNQB|1}!$!xJKrWr0v4LO=_Zf;P%NP&j=v(WL({J)P|
zh0&gn>i=Nk@kj2nDUS*f*MDc6LsS*~i$#-@YjB;>15OXfqA>5xB{Pz`{hBtBGyC6G
zoY0*%s(3O+MlT)*>w~Kk1KR~(whl*Qb8{vyFE5x$5(I;Si;9@(>FLYM%V!rCWqsuS
z+n{po4&If29_W@k)3Gqyy<v1oR&RUKuKHw}43eCEfBixOfuKIJ8yiz<Y-xE+Ox%;B
za*v&ZV{UU3aXkr%?ue+UVe=)B2M3U0SuSmRB4l2_<w3r+cUkoVV{SAzTc3*;&`BGw
zKEoUbB(X>)4}N!4+zPxaP#o?>x;>_=y`-RC-o1UxCoL__ZpReV+WH=5otHaZu)+u|
z?b0v$`p{Yk9bq(Vc6cE{ON7%GAr*9EB?iynKqtTf>5Nw38@98yvC$pQR*2xcF@k(j
z-?B2ct??3aMn)K^c^3wSdwO|g>`E|*h=|0*s;v%XQSmq&&wocFN{_b9xB7p%04dDy
z#-hLqCXO5VN#j|$;?3$yv&L_W&zA7#zRLj<hnK10a^(S2yZQ<=MPM$x!KV3P>Zg~s
z=WA(aAS{X%<`ffUH{DG>eZp~?COdC~Dd{UC2g-~odW$o%jCHKOetlGCJT(tm?Z>ZQ
z2TS1^y=juf_9xqdC)-oLmO6-~HG~HQ{DpqtND-_?oRpMDx+nvnK$wiiEkXAPo0`5B
zk7ix!Pw^3sTUcIBy`Xya>K+@LO;AwKdkG1$S04@}!KQ$X(1H>S?$cR!Ftk2#JPz%y
zC0L2m!TkDCTOn)OJ-k`sB{iL%p#2!2*?ud??A^bE83UO$SDV$`*M2=D)bu`g<aqU2
z%12+W&JKHacV!p6$r{gI+MaTFt<{Q!I9jmC^2*Bo5(9-w%QaC*Y|Ae$&d&FZi6Maf
z<}hD;{R@+L8Pq-jyD1Xv`)y>Z;pj*Z7E&RnLi;0XC?x`gjS<Ufm3e$@!0G;*fFlTc
z20g|*r?S~jo?Bl28Lz<xGwD~McvIbdn~{-`fCo>)_EZY-z|dw$smz#;$Nq3OBdvKL
zQ!a~o=p`s&uq}z>ZL|4U0&fgY!p>~*Bqe+F4cHj?;%6ji&S+^pG}#K<+N1^PUGc=~
z2mk%(?&`Fw@JD{k$<d#FpRnogUoUnpu7#D62PP&a?iwb>#u5ng4pkQnHHVL2J#)Kr
z4Fr77zZvQ--JtUGHZt<w-d=_!LMDHd>jJzW;IV%q*&{C&xo=rg8XF$plj??HUL1q5
zFHMYgJ1c@8F;skVYHDq|247wMr!E!)0|Si7h<Hs3qtZKm{2~S$Yzi4c%}~qnoX7r+
zBoB*v9>bIeRwDiX1&~*_z|zO?x%dHKc&*bJq5q9pGKX?M)q58CgQ2&mNP;Up9e&@;
zz<mZ?bTP46d(nq5F5co$|LFkh<orrH*QJ3gvy(DwbEnXkUB)elob9)zWu`b=SfE4V
zwMd=wm8Umn)A<oTJ7{*uQqn@0cvOkTPBF4@gyP46QUa9E=ZEW6J|Cm`!wBBbv+*#s
z9tz+#)&=1<j*myB#bw4}%r7nZhKI9#|Nh-@{1Bh->hLj)lZNTkH(Hmcdl-bA*~)(8
z!29{_#Sk0UJFz`gh4h?BE4@CitF41v@<D}NKwPk7HFY%kNdK6<MANlTWb#Z`ngtE|
zG~s6FF6(hbWW?<=lsr~ajU1hur8m=4v8{dsYnwjZB!63i0*wq;C)$6a;j#T2|98hi
z=Czco2R1A7=3oXhNSh9{Wi=elj{~#!7#q7jhQnfScQ^gW9-*y&&i3$OV&UWa#K#kF
zP1w9XJv!G3@NkdCm6AYJD&`7|O&b`~Kx1wlEw~W@o#lLeMg^L(K|#Z*DMLo8GmfW9
zJ!gvUN4ZNI3B+Tc>rEHF_PfOCsZP6kK0P9HVk>J&Rup#mVaLz-PS<|k9;duV%+kM-
zCvG}t%qB|Db5uB)oMb2P_;Sl#)GEw9KyyJ^!Rka=9)Dg}Yn$fw4%;aWuRo;vo7wDp
zinoz6puP4e-PYkg@q8?E8Dm<=O0}s>%@<qQu(U|9Kh*ng`nMS&KJy_znte(BT#L-B
zZ1$-3xK**^n6|fH;yl4i)3qs9Q2M%lp#BHLJHEFI@0M9C7^z=Fam(e^6`U`^gansD
z(>a0V?%0pe;MG^!A0YzqS9>kQNZjYEny7WG<W&B4bu%QHAmN+j65KhusAnJiF$xV2
zkw<Y!-Qh5S#rp^tap7WT1dGV|2TUD#?Qm>JKuBm%Lj)-eKM>GVh~l)=l;m)+3yv>W
zL*Bx~zj|BYdr}RVOg@~FIm@d@hJG4d^~1{FqhoQA9dp)t2V?4aSuu7?8`>vBMvKL!
zC#`+*{4+kKthgu6vMQHE5rYqXJF2<*THLl&<Z<dLhsAC?p|ytWo`NbXV_SvLOgHHk
zy{Zi(DOb;~ifL9bn3%kpV?4+kyu7~Hp;bM72&0OcdU|@&tq`o^=z~z>y~L!XZ&Q^l
zYE{-Or$^%$=3@RBOb!!t@?nAelsH-ey7q6rm~-GRDigMn05)H_I(Y`D>Jg|yE99Y}
zig3`ivTTU_4NuY4fwou{l^z^B!-;wtF~YH*=p)idcdto<jL`B{or%u77Ld3vuA!QY
zbKN;LHc-u0r})@T6U}yEPQN3Y!exCtlCw}ek~!7g#q-507QvC9o%v6Pgj1vo3`Xe1
z#Kmzr2Y31Pk;I;iPDJir$YPGOl{A(HzM{O3QgL<`<JU7gQYWosv;J@-c)wou*0P6*
zxLiOe+RV=xibYk<$DFJ>0=is8#@Y=e#14b{EH;G)6;UxwqgHHf9SWM0+jBfUycYye
zly<q_!Em|4=VP~3GIICss_teX;sn{xP1CN6(9FE&M;+rGa(|ej72xZVQdsJSv9ETj
zRvPzF*RiGf4(!>r$&|SH#(Pu*X1%^dp;bBNxH#F-t#><vWAsZRmJ_$?4e5`Up%~IW
z%6&6sj8`fX!-^MZ^y%zaPHD~K&l2C%a8(viFVYT(lxWMfD%smu((E5p$W$`fc<Ypk
z>|zGqxxvb~usAGvB2Z@+BS)$`R(xX~h&$F~wQtq;z*Iz-YJYn~q=UecXgCXH$Jt5t
zWM$Pr^!Bf|{o9G_67kp3mzR#H5Ac5b`iiHFe?r!|kJ7b8m(RpD*Ana%Qy$sS=fcGP
zI9^cMo;M=ORS8#(3*~bv$=pN7r%}x#E&X~MIueqYA1mz?_ifP}qPP@4f5{}_(NJ5n
z$ho)BBKfzuISfh#_SVwkznbij#0nt*>+Nsfz6rg1*AF0?+NoY87I*QW_f739D)+^~
z0t_aDVVcniu6(-#%Ik}n8>}Z!XqhuTu&jdq+n~A<I&_gYS@q<N?Ib1XR=3oMJ`Y@X
zh!GEkHAtELCY<fcS+tz$DKU^W@U<-u-L7kSxQqIChg6~T=XA7@TA1$4%*R733Z(Ai
zFm2wv;5>Br!jR8W?qpJ;mL4@W94n;)81&oFVOjY<YcHZA{tgWiP+r-hzZ_LeZ_G{+
z*uQUeEcWDc;+f4mdLh*w(s|{F={vJadi>8YX$GybOwySlDYdh!>-2mhPYIwibgM`)
zTWD^k{|M?oy(lqJ;+E{0&(u7w*1mt)Ck0K^Z}7V#oH6{VVv%l8eurR*9pNq?Om`ps
z2b3vVpXPxk`p|G;9~2VRb}XpyL9~mO5#N5SM+$MEdQFHJnBE$t!&|@AWlq|$EX(bl
zEJ<Y}AUVA#CdTB%S)p)VF7QO2(0wqSg-~cPsyopuLx5ScO^jdZq)9pAt*Z?=YFVjP
zuX`A~GR=KF{sTNUe3XwOnWT05IK$;4M0O$d?r6aP)Vy&zeAWCAYB3FpxNpf3Cx>C&
zhP3`aBK}0Gm6l$>yWUuHz>nQJlb@E%|3$&UQfb&im%0FXrCPo4WI{`b=2SwCTH<k3
z39C!8mZ373%3e=j6`Jb&hNO$uwYlbba1UqL(!{znNc`ik4GTPh5E@_^=+Edso0v#~
zXMkqtr`PRHah%1)<>2T%u<Hja+1%}$1VKqUT2wU7&u0i|EKppUrnP&^*g9+rqu%L6
zsTdYn?B~B`u1}_?y{qJn%dBI5W{xp8H)l9m9tiIRx9SB#9wj)fM7e@1Em9_4(zq|m
z1@OOnqJ?Du7h?;+fLU%Ip=(Jf!06t>6sm?_A2s+P*{Kzz4+kxAr`4Pwksl8Z*2F{g
zz8n^{(a~Gecbtg%drz>J==%~_s`IF#k2NS~D{kftO}tFd(U4O8^*ct#CanAwgsK*Q
zVaWxCh6+16a+eu5J;uTDP|j%{Dcdhf?-GB)t{e>^J8~W>VqF8~%^b1!FE_Z}u_!9N
zidfq5EU8$wo+Kvge_t7lsY79M$3QEwxoJ4&Fvc-NNuQ`#?z4{anz=!UK*HzcPF(1c
z@#_Kp@WRrP@JKGj4KW!gut^hhb8`gcq^I{|)|Cj3i4g<DQ&5s~dHt@5+4CbmYTF>W
z`{<K)5-)oltQ`>1&CSgSjsuEmCmYfkrxUukxVU12k?v9Ld!%<r5T1@N`G1tID{ttl
zGe|#a2{z0*@qC=Z+M7Ue_pYwpHC*|}N0VKQ+vnjgS5Dd6S#7LV-)Tg8AG~j0Z?2ud
zf#wY(m0|YjNA8t`UzxAp8|nW;_7x|^H%?ueUDD!5N3(d;Z*JKk{VXs`N63NZ-0s`3
zAur^mTqI=#p#Pz-gx&__98q&x+RawltQj`ud%K1I3bVWX*O5$2h}9j<P&J%N+`vZ@
z|DTJfoFQXK-+F7jDUke^mygfN@m7${19|PIEFqmF(<r!$@*KEYwh0*KnQj>U#U$>N
z=~TGMP;?Al8DG$52NNbYz%WRKVo4DT@B1qxOl7{9clro<L?DC`Tx(YsC)iJ)raFiv
ze41Te_KQ}L0etgbR5a1);`q(Cd1VjsSG(4XXdZ6q<rt_JqjMXE&0bkbpOp>egYdFx
zhpH!Au(ytJ?d;Av*H=7!J?=5Sip=H=l#n;B=L|a2SFU3H*Vi5r+ZP#tJT0*t5jnV(
z!}jwbVSBBU1Bb&gEu6>{-JZB+`VR=Dg9AM5>&dp-=5$Rom(BK+*~a?1cU2XavGI0!
zRTWf4>%sgx9Dn&Y?ijCHNm^)HNxa=Kf}+EFI_$Lqrurh&H$I@^a+p84INn-7xH`G*
zg1|-e9C32~a}?<5dG~BTO?*>jz4djXGzUtDkb5VuIX?eILdAIg9?q@Q%S;#4Prp)q
z{{-F>$<_JW&|6f2gD;U9?)Wt>s%2d1@u%1B_x`9@a8<IDk#9>pm2s)ym#6m_4wPLu
zc}xDbK7nTKb8as|R;LH$hM!c@y8`gx2nY!L=S&iE4-X3Z7sZmrVY~Zhy8z}?F>1Ab
za&&THWX_5t^?oRhpYW2xJ>7?oQL-y(Nh{!+wicFf0Y+jv8m`viDx>2yj7S_S6h^pn
zt=#_SJUj_pT-1`!Irjq(BXVzoAR1yBH`iANm!oRL`SnBZ>b;`JUZm>oy*E(V%nAC?
zHLtEK`9MDG{`Bg~Z|kQe!+h;xl-HKQ?%_o{Q~Ft`=;)7$42(XiI}`oN)&6XxE#MzE
z%;L;Dlpsm$;^-vEZX=;116~TfQ7Ff1AJNErK|z7y;Nb8R1GhbZR8S9$q%Uz597nJ6
z$gZtJ+MhUDSlYO_LQ<lrk%t4~0{EX$*JkSY;Os8t)g^j*vVR9QiLf2zJwsa#pWvk5
zl`=Zsnd!;OtNl0E@atP&A`1Gm+KxowouPIlmbWr07N~YAW^|;{f(iqBMqj%~h(ET{
zaQe3i-MYD6czUIv`eIS+5z<Yv4%1#5K0$SeoF!c=HwzC>=i0_t1o_C$Bb;zSOiXk~
zHN2sA4!K|Of{?Ku6*jeog79InXiim@+(B^y*}w14d;StUd!(;l=gXs}*XLvGTLX5I
ze(5fDzJ{6r_=yMw_eC{{yJem(yc|7oRCqB=o>>1*|K~Q;n+1h+x>+QtRJv&ae)|rn
zPCGpu=vf`ikfBpZ{H%(`^;&9IP>33-$Fi(tlECt0f_m1N^%6I>YiW@iWQzi1>pTAS
z+-!>BYlbIkgRWjtYdo8`Q263R-8&uQHno0bBwh=}@H(B(ZcIdh>%;8&l0!2b_?v)i
zG$^NOyA?u&-;<V(&Tc7G!EU=^#rKmJrTfeKOrCh+s0F>`?qZX>m<dZDV*IF5&$O_L
z>_hm$bA?1qObp!$x;)UI{RR^{&#T~az4Hq3X55z+7kA@tXqSO8HiBCjoOsb|1M!T?
zJnlrrDX~>36Fs`7hv$Su4z1t6V6swk27kB}@zVC_iwH2@j3YMoC&4ns7Iy>EQf<)D
zn{CV&ze=O>U8N*OX5o?(>5DlHRM{{fNyKq$FN(tLJl6w5LK=S&JO5o9a2Wu}hBisc
z1~w+4I-mJb&uU2Axs@eQ?Uvx;;-4?i@d;?j-4FF&<0i8q0Y83YP5}<~*#B4z53BXD
zbz<UUU$vj<NyW&6E>}m-2)V4apxF4GhDq;qe~hlfc%T!Tza%Ebt^3QE#%?t@0UEo>
z+<IF&@Aw#KZja3LcK%_dd8#zn+e)yEY1!Q08N%=n96Rj`Yq`GPwm&O%=*n5eav8AF
z20ctf@Kq8zI$!WByKao+J;v(w7xtM3XFS?(WtlyUMEX_|1pK~MmlsoY5oC6+jKTP-
zt<xU<<--e#CB~FE9jvWXFDgk<R7l4OH;e)I$&elZ>0!g6$=sQ$Bz*p&%X>gdk_Rz>
zpB4eq{*^R;YF$s#+&wL^<F{?dWsBl!CwajLw)_vSql9SJozLs7tO(4x^(*(0{XV70
zwRg*y`eWB%Y39h1MaijxAHCGPZ?BFg4j7>@(^?5hY;C=D{qeWUC!yU7gh99?^<HJD
z?E85$!S#)I#6Aa<p&Zz}D7^V9-!}FUslu*v)1*byh=3g{xV=5eMsH51`S)~piHpF{
zALxitUQuDTH!lp9(hU5b)*ldVrW7qLt=)PwV$-vIZSb)*806LHYzA3UKGO<_M`vn%
z?7`$&sfaqJAb}bQiI{Un1gAxcs8S)0*0C#VW8TnW;}Ibt9j?&bFS1O*5Yox~0Q4R9
z;O^D38BhuWS6C*Kji^Fm-m5X^RcaN%yw@8Ui5p12oDbM#L`uH^07vRndHN3a>IZzQ
zWBE|CYuKW4tRMD8cPz%)P?<9ZAl-tYNn0Vum6oeAQUIV0OUpNCm_%B~n`|44NGz_w
zB`D}<2B^U|M<QejGE9*ZGcW>}H6Yl(#3M?r4|mhMo4&>(BDiO_bof#?f~#$fqjStU
zI=j>Hnx{8#`S{2LH8{+gGPpAp3J0WSK#5`#I(>IX!-V=;0(w<;N$@*HGVA&ke54VG
z=6|Bc)EXKhw){MTpNJ-mpNaY4Y~-zo@_UdFPwK$P!NhvAeAbkrUo5fQ*}iJt<vl_%
zk|gJqL9Q#;X%3xZ)7}7XaB+LR|Ll-I-!rA*JgZ!F=FL_>M}WJm=<kG1;%!wuWvG9E
zVARqPln4H~{kP0RFmS}@Vj_|`?H)Q;XIpR}!eJdAuCTabW#+1EV8|t+zU>sw@GyC=
zJ<QfQZZw9W`3*VU2C9mLuIa0fw^CE8UyF#>q2ccxmFv7=V%A<xjgBb~Y6^B{72A-n
zyD_%hp7ek~lY20gB%|pp$^R5r$Qo!z0uJ*Z>FF}CC!wt*5X@W7DZAEAUT<ehC2^;v
z3E>X|R^J7GT-`9fe$#31h&DFA6n!fB#uWp`p*@4>T|J_L&;5Uu8^SedgdxtA{>-sF
z*{hSPsA(R1vc;S4r1js?$&=$HLK(K{>F$?@#1F~o=_O9e-QAJ@bH~4_Z));TDKp+%
zjy4%?yQPohAyEG>A@|aX#wRCjd%yBZJj~bGbx6{Fw@{cCpKQnN-<>I^B7G9J__;0G
zGaXgtN&IML7hM8_e{z<FUnF*SQxzkIckmlIEmx8Lf`j&5t`OLpmunEJK`fVC<Y90~
zNV3CZUmrF!bOTrT{X$RXhMzoc0#a<x>OQ@EQY{m}Uy9RCk`;IOx0x*LNLwqQ<v!E<
zqUL4VQQVewQyfD0Uy^-1Kj&?%{~Zo)$Uj@Blhj35CmamPsEIYpr{BslCe>F!P#MG3
z`C&sIkySQ-X3&kL#Fd#U4)(gIRv;Srpiw{ykW5R<26>2ZV&4M+1wL1J)jOoj`B>`N
zRE<M8^k68kSa~?52_6-2l)IcCuDQp?#$sn>5j@*?=g5_d>+j;?9-3hDnly}}A-dqa
zZMoR2rs)@2$m9@hmjt<mZABfS&(F$%R<Zia*u6_#h5K}Bou}LPY?L{baZj`|zo(>7
zKvWyr+C8s&0)|;&1-zh_5FP?wbFM@7$8h???WySLnv2hxnwpL4)GbYw*fYNkn#*@g
zcC8XH3NuOE9Y4{!SIY+Q({??9E$W#ES7_09EiAw)Z6pGBlY+qIzQe8<U1%y)bRR8E
zPU);MZP`>XQe4L`>a>_ZHq!3JR9DkjGlt4X8SYrR{5Nd%4fO<=B0hK-3XyRliPX=C
zN8YjY*QRs*JUIgLY96@6yUepCvf38?+qN7Bi5yvZZ)=&kl7Af(_0&Ol*BaX2GIUhz
z-N_qo!*s>4X~HS(g~p4&(=`qVk9kH$#^~4>(DA$HhkGqkQ&XcUa%1k@kW*#Y-1wj%
z`>r@SD~o^6J2vfW5}R{}iG0%$qwVE%CHB!s5f!e0KkaiV;(Lz7&S;VfGS1I;B-s3$
zn|Xcp7gkr_D=Xu{)OZyYmH*DzJnzYZKmO^_h{i2I(kOyIF%lqx^WdvR4O(oD(zDUu
zAMn4PWqv}na|qzNsy4E<88MRO(4WTL?9@cT)f!H<9e$z}u+vgCP;*Ng3k?lTT1E!i
zFg*0dXNx&_Brr&fkUAVR0~vX~t+t5nhZN4%<P_0@;j#oZ=HbYF)DknDBy1W+pC+7Y
zjMmn)1@q)t5046(3X8j#4wJ=t7K)t8PAyGtx7-Y+_HTKfYj20-cE<LXv}%su`qrDx
z!{a2YG8K>ftAyUlRH<t3>z?)fGP&VBp$0fMEtzsN*x1;&{`Mv`M7;SX?T%l)Ijhsr
z{ECRXiZP5XZQGo4j<eps;&o}wV;64CkLtB}G!`=8ePq&|FiOnT9vB;N+lezx+dzJ>
zp$r)Yrd#7I5dFfNyns~G#A|lTRV?V0N5ZRKR6P3Q-goZ3#>ek+GtaF|i<U;<9%YPS
z0Wvlm!KSf)T2xQ#jwLSDU%GDsM@hTS)LJH4zA!S&<Vik~t0tHs_Fv3E3PH*h)bSUU
zzq+1V8ls|?HWqH>$-1Ma_{gNL6m0FtmR`l)*F(*TKeCzYN)R_I8gLOGVJ^Tm{4F*&
za+gB)EA#WdK6M=_bW#lKqjfpn%U$G0j~?yr@9O{x2mLxWsy*~v<C%eT^rRa~mGPeV
zDPf#q^xwy^vYlHyZlM+Th<{P;H{8P+tI(%B%qO)i$0s@tYo@On=U`{Q{YRGi+jMnB
zU>3H(T{FIMh|?ojG!igE?SDW1qMDt^D><rVpUo^jtuESls_|=PuC3(W?~UZI>HyAO
zyb0U^OMVJ;wEC6~mWYTr9~Xu2hl6Fh->SY4EPVmtpy^%9(%GT!;y&ERYtwg@4XdS6
z>emWi4jd>}UOb)oNwMFx81{Q(U2*Q9ggGsA?Zmo_Xu7_3+~DzphSZb>Up2S%r0#e=
z$xpq%p!qBl&?pGHeAx`r_weyW(fIA`T8~L>XJbRgN32k=r3wK%%E=F1O%qeU&)j3~
zZf^eeP`aA_lTLfW=~+mb43KU7WI&P+T&HzNyZaqQ&)H4?1kz*@(z8BAm>g%0+^-G=
z82iU0RFtf<80I@Z`<dDSla4G@xhV^uwc7=aADFz>fbcus@{O9X``}EOSs+Wgr0U0&
zBaQ2fz+3D8Le}iWPM7beX)=pmokfmfJT>x3*$G0gu42h;1zMwvxq+7>dABcLNH})B
z=HzK$R8)IwAUQyd5`TZp`yRK!{z&p&$>tbEM@8(~I#3<+?6mb4baQ_;@h&QHv-!n^
z&Dju~F%>nayt11X@7y1o=I<|=LjZhM5edMT{*o;sqBG1k<Jg6Wk$HHa++3g3ZA>Cr
ziQlNRvM|owjB^#7*g-*52>;Wkz&uML`1P3#LMd2}DUm*W_^BIkuovlwV;@~WLqD+C
z^)gNoS4Pu;_Z}%8J){t<`_4zdAgWBxEYVz9&Kk4Wez+AqHBnJ<T1cdARy5+0fd#SV
zt@$P&TIJ%qu4W5yB*3bqx9*^!F`G<RKk^5qYyoJTdWaq3@JNH}QCDvHUcM+MsO5}J
zJzkTSj+6K!+hQ>h5zi^bBK|^DwDojv!C<Q#%+JE<o+c#6_|&`qYOO@%Vd*!8YdF_~
zS~at_);ZqfC^nv|l-_#z#9Nv;Z+&NA{IX`UvDuC7_GE-%GKRE@QdT)QRxCCnDBUq|
znTjVd%sE-z7Ze6Kte5Cpa;GWw?JKu+@1r<g3RxK9x5d0C{qY3|-XMMxTE@lspnA(x
zr%?SYYg8BcAz=(E!VO)OKM@fbLNqK|1eV3zC0DFRvn%k0G_(1UvCMd0?J<53BoUl4
zpZoFWF#-;3-C`i<`<+*(e(x<rhpBnqK8QNXzD2K5`y0ByZkugo$3O}M1bS35N}*$u
zR8~<{^yqWlr`^rI__rW0NF;~IW_OlUNLUyfQdt~!=;i?}c?1W`<P4L5)|!(}T}kL{
z6^xAQ7)mzGrPN*sHv3)Ua5BHV-0X(3BWr)P2AhfmN2h*&sl&?u=5Rm~(muZ5drT>7
zKRfiiF5EX1%2o`%J-}r`fU-&qCX;Cu2p=K;X>VWYrND9MNhw&lB$T)cR@dQ5;^KIn
z<8NUUO838Xt3j11W#xmm;4TA0aeX>43bm1wLC0O$kV4Vr$v|($@=7IdL}zia$kw5n
zzr|o}(leu`<2t35L$qz9?o#tpbieaaiALb;`z12v|Cb9uOm-`RE5#sXqPHb8ph&em
zOrV$61*lJVk>)s1o-}@=OWd6KsT?!Zn&#1wI?^(iqa9Oe28~p3GgTiA*HNnp+JQr;
z5uA*XY$ilb=Z6U<Gqo({F;U5%UOs0ve9mRP`P%vw%fI$^@3VtvSOf%Owx`%n>69B)
zOlpSyuw_H`i&W7=p_#cO4dXvzJ#^2(o5!6n6Z^Orv5iXPbtcXJ#FEf<VfXlWIZ%Ws
zBfPGm#3qA~+csZ)naW8~S((Y@`gR!Yy=6Gyh@6hw8W9bbYLNt$$z;q_8hO_0>odte
zX>bJI$RccM$p~r%Q@Ob2Q$sK935|>)PQ|UyM(st{^wk{2uZ*puD7XNfj2;*IPcvuG
zb%{st49e|94j#+v{9ar9v~AIBY5w+1>p-;YFyuIE+F4C@?7{Pkv+@1y_g7qGR&(cU
zgU7*N^USnY^2$di4lWNEo;w-}LYv_j=unk!yZ6<d%WE80`UH8)&{8v!%Z5JQ=@=J6
z<!{-d+Xe;((pex3m+mr5@ZsxtR8}P)mtyq%n&Ef%5?rEV%1KUq(SdAqv3TBCh=~s>
z5~{1K-$6lPG@0gx|7-2O%`0$W7zwKkD1qs_9V_uJ&4>h^tFx~^d5=*GMA5sOwdGI8
zhmFH5gLoo;V1@o?G&qkWIpey0^=3M~#hJl81$8BSr1n#<==iROlV+mx{EZ%LkEn);
zioN|<Z&v67Cnv*#HzV0eDS$2XrJu$|s|@5u;%r4JG3I7zdbkfoa-4B5%-oS&S+A1o
ztRD}7-IiBz=yyJIbMe%IFdz~{Kxe@zjP#t#feRvA8_uPM5_|xYkpe=Z`2SkmApfxu
zVFMzrFe)#tuM@Ze@vFkkm6t)%%n<r`aTwjAgkv5CQN^{mw4==n2VAbd(ZI$!vJEa0
zvcU76;NV+SLlGVJFs;sHLBC4=)6MiuWv?@E<-F>Bl;w3XNK6P-RvP~@n*U{UvZAPQ
zftQz8wboJTWaZxmZ+8qwFuW+FsEJPq<?z*aV_zNf#Q3Df@r;RCw|j8t)3EZGhyT4N
z-zEaa=cX}UmMG__Fch6`wf<Qnuy=6SxX!-X`M340Cn<lw+iJBp0j@kYi#wZFdrs|(
zr<4zY%V`G_Y+|QFMn6A4`#N>7A<qZezNho&7F!xO0={Ecj9d?s!g%<Q>{6Z`8SSA~
zqh}zC`p0-)CnR>qQ`12H_4zsl^cA=EOLclWh11j1*OsfFAU(qlMvPnehnF^6?P+#L
zFeY^}cpq_;T4%7lEz^C!M=|!tTq&z~foH#!9H}#&Ps1knXYSHfJ5Ao#FMXa6>J2Jc
z6MR~mACdQPM*GHNKm2}mNI+9%(uZo^@{H*gIHGh)ZR&$6Dv2S*_7^5#Y$>EdeSRgO
zEL3srfj;8ksC)1#-g<fdVr%RsmBFQYpCl{IzR=LoVw!NRyKt{diDxMI%H-U9G3VFm
zO2fls$NtD1hKtuXj5erc1r7a^Ke9eRy+8-w8<!1+QlVEq1a)f6G*A8XntOUm=Aor?
zF->vC*Dre+93^HPLJvm44FS#ta*&35;G~$HHYfUn`}-k$`Hp+i`vDijDv^I}>R`=s
ztHvJq=EEk20pVEri)hF^!ii1)wo)0S+ft19Z7**LErhRPh2m95T-zsQwHagH2FPMS
zxIP?J*mt)Nc(P8udWnL26@P7Q4Ys=%l5LeaQcGoIZA<+G68^Tdpp_{5D(5WE*1IDV
z{p{@Lx6H^Y6R)BeHBt3TD&ME2CyqQ@-rDK{CT`UOf>f9*n3A%U4*KiUNz6aO=6@I*
zr2+}PB}$I2$__@5L~Tsh3i&}v@>y1dRd6}5(0>dd+4Nw+pD)ZI*XJ3-yBv9i_2cDd
z8ZrFPVe%7oXtqk(@azb9k<05i6r=ayh1eMd7}R6vcOe}CcfW^;iRjGP8FMC`GuWRU
zsk7tvuPE{3MNQ_EATsrdL&fd}x=O)U;lNAmCr=uoPZvP*fNhTPTkBsMey+u#g;bK3
zkha8uc84Iq08id263g?rlH!t3>uPW(?C&;UZp0}>cELEeJz+@lc`q*a$i<KxKh8*Q
zuJ)7Nnf~<Y5vo(T>g=p=Xno5Qfyo(!!8d3><er|w6A5NZTD_XH1Cd$+^XHYRYKR{>
zyD;u~UF&O?97`zUz;&>Xq<|2G4rJBH@rg+I!P-zeDy9hf{D3(-VRZenjHpg_okX;U
zuHMm3-5Ic*%<RIEnM}R>^U<Ly7AIVx2ON)s#diEo!Ws}M3CV*FMa#&)zFG5_tSrfD
z^_K4%K#-Dr-cg{!2;~Or11KSK2-vOZ$hzy47Foxx;oqYMVR&Naq|~0-(IEGj8XSEU
zfg}k9^q(?h4QFZ}xY`{|XO=8Hjen3lC0x5pqCZpX6v?RhE+e*Z9>d9LZ;YFtpC7c1
z44WR&<Hrp!KK}0g`~6+Ti1bU48#!L<Io1a_@RMr01JPne=gU(je>TYQ6}7@Zzu0Xc
zQB_kLt8?Llz@?l%B9e?WTByy81RtnxOt$`s;*HrEcH|&;L1F$)<63^{s7aU5fGuzu
zCZ}%~K-=is!WK;cMsQgT6+;d3+Lb3$mIz(p%!k@l_nQYN@Se^JMzI>TgRv;LKfc4q
zGm<%3^>Bu8?Dw!Z-My-0vd?QMyr&KMS70+v*p#*f-#njF*nZ@^lxs}R4j9BS>dibU
z+sCP>-Z=UwZ8qcNMXdNJ!9?nCVEr|00<@A!9j=?a;mtJ22F7PdQgy<h(6?rBrZ(3L
zipoY>&0@Cb5MI-_%%;Yxls<_%h7+ZT+&UP%&N#KbR+4a9=?AeT>b^5K2lp|^j!Wr2
z&Dh-F;pT47fq4g-e`_Y(N<{HhSr11c6PM;>G&BR9goMNu)Od)ZE;Hcb{+0nIHa6Y;
z#Wu&oK9Ov-sxTrR`@wNnH()81;*oK`n8<tnETQ-l^K~PV9wDRh>H;&pe%+h8cG_I2
zPNAf(j7Is_c<;!?>8Y%urc%Y%*}va~!$g@6N5>;)L*?Y5Z>74egF}(Y4DZw*E<M!6
zEKPS27|1{=9@QyAOs5SAnzSmz!4&=uy@TB`DOJXSmSwBFG?J$rg{D8aZl)cBF|R#W
zW};1k0)u-TlA`1)o<e#gB0aMn;HKHUGAGcYk#(~Y_o2LpmoCTK-1M0jlf<XL<lf#z
zc7I9l>bekyq_6tvFWtRV*S@Id;`kKmT{WpAtVXi-6N}A_$J6Lhlyo`QcsWu7vf_e_
z)E~rD1DhV8JYtl%a|;_w2~`Q@i?hq`6?SB1S|)Vn1G_r)+8@j-F+0rU=G}JP7I8bD
zF83OZ98IeqjnM3nwmJkzE&RDY2x6Zz9e=QQ(K)$qOcQ~kWVfWRp)i}0UeJ17E4@;i
zye)wwd(YrVRNsocMvaugZq$4kKHqw2&)1gJI}(NJH#{s~;0;W&Ib9R|nb&&T1oY3+
zcTz1bJFntFg1%r@(HLxtqczY%^Y-lALVNQY19^6!sQzGyXF(Y@LoYyIB4ljr2eiUN
zIT43dj!18}E)r^{w`cj~aE>f`=$PKCR>E~|t)2^o+xxGI^v!HtFe`m=Y1yXx;)gC1
z!D8?fe8c|5#cv!h_tdjhaerwrJpb7u!mfGdC*YgrhfMUu<EkeS`}xAw4><?#e2x+V
z@f^a@bH@|m`$9ru(vNXH8=D@Qv|zL_EI$yIYq*MI`*TZo=-<6^dDSe&d-ItdkL@Sv
zX-7pSDJj3c5ztb<8)&yS8Qv*LM*r;5aI8mbHP&NBWmN`xYwlc}k>m54_fxTrMjl%Z
z2kNb+wWnk_&}}pV#&bG4+Si^XNCM*ClI|NA`EbR#v2%R&WwU^oC30GWp|1M&N>6;t
zN<48RR5-kLzO+qhc`GD@?4FoG=u`IWZQr1ua6%1(DpZGX=c;$Lz^OTs{x<O}GBOgW
zl6S}w;G%O=KkQ9IgysnqToJQ}pSK0lWM6;zcc+ni&JQ^c_4CF^S<^inpG*}-<A`<p
z<<LlJcCOLSXWjU=JJAz*#v6Y%!Y-mVd9eEaw!B~o{Qg0esQZujGS!zU+MEuV(sw=@
zBEK$twwPISBeM5wOpb@58GktGPwaG;E!*ISzs64b^dUA%{YOYJikNh?qOma%(&y{T
zwBMY$y#t?W9yBrcaFcga-n=}oa?%yx3h3+<^F`-7^76%Cv9|dkV$aorf&_*c^-m3j
zSFNp`-P}^R!snH4!qa&lhKOWJvO;O^RO{-(w7VQ^(O8`AD8xC3J4dC!4^ff0uZqpG
z%sq&@p@-|d@AS8U)LXsIs$0I-#(Cn<+x49aX1&*ADhyt0o5aM#;^xq}I6vr2T7ABr
zg-WPF9Xh`huF(vMth?~<=YMyGtQ!4^Y+AH5o>lLT2qbHmy#2P-@PY-2HhTS@u80cl
zxV)=T+BS(^E6L@4MgppDsAuOhe7r~4O66FQ&yYNWnJG8hnk%0PiV=ibK~qgZb#;1B
z{*1<x>`A^=pX+afwIM_p;qpJqFg)nAvJz4aY?M;PUCMT7xw#2o4Up6EEbC|gz(5JF
zbk<IR1Ae&uKW;`wY!IHNTBnOc&Nx;`Y@>~djSY;9{0`Meacm@HWIhM&abyIYQY4lk
z=n~hW!)b02AHxf8Aq7*}&^f*ifx44BsHkMGUw>L?OLKKaGMk_4W=nK;b1R;Xksq1a
zDzQ80V!Op%oq?I&&B#gR`GC>dWPaVz7!psv|NZ;c*Lm>g{$>%M8{{7{F){TH9_FVk
z=eH1;?mxht|CfAPn`p4{Z$;q6>Eg^gWF+UK9%-#7rnha#`u#!&g@oka){IAqF|e^c
z6HR$UO8T=xiR9280|R4Fkq8F|B}IBn`wAZEWvD0=aOoXdZyVtwUS1a@t9n2drd~A~
zd}L|96HD{ti2~%@hyOr~RFYD5Mbvvi3O&>(J%@+d9h7O#X`~_}8{mvc`dd$c@`B#_
zR4+v%{?Q;*d9?u0K^(02FKSG%`&Is#nZjF8i!<*Zda4QFaQEb7$6R&mzdO$;LGcR^
z33o_q-Q#)j;>Bzi+sr1@&)SylSM)|JTu^t_1c~m4obom>LDxgGrIueu2Q|)q{hL`u
zP0j;e?*kDjtE}NI^{8d917Y9Og+0;itK>Ulb%dB`Tn#-`0z%78?=rUZhgv1njQ&l|
zgw8HT*G4c;Hx15x;;XSp#)y6xep3CF*vR{+eu5E`DvN25y@oK}b5&|<{D=*rBX<l&
zYJY-Ht8(Rm=iuVv;_Q^o48NY<%j=7}8CENHwcYA&rr6r?9~^Zw^<FdQU$^gES3Qb!
z17(urazXb*e9P8l?PWFZOqJw>3)BOQ*0~Tn?+3?!ZVOs*n08GMo}46r(jBh5_wF@K
zn4DY@XzBbrX{9!7tn1qU*Nx+h>KWi^ulXl#q+kjS8#^%Y-c|YoxewxDbZ_1~0Ylo_
z*2WM0e={0L$;im<R^H>n4I{`cHZ0umkigGy2PuNv&bwBSoCf>RBX3f{pCoK-Xg1rE
zYX`>@F7s$yD)^UlN%w!5;~;L+i5m>^BlOOCL;e*v56|4z)Csy68BzqxN0vGLckh0B
zk;6?i*(vf`wzKu$t8VUI_XqkH`$w~VoSmO{182|%2WKHAvu<WL#0W2(A3kF0$Gxet
zy@ND+Q=8dqpem#VB`}m^WK4;bm7JEAmVY76Fqja4`<NaJ%)c1HJ#1{;2CiQn33~b>
zsu52TlFqO7tSu~<qoSh$%YAWOZH?-TVtMSEc{Q3ey4(5bj_m^h`7h+haXG`fdO}*u
z|GPMuhrp3u5-BAu*#@I|a;EpT6j2EU8QFpPYmx6V`}U_F35o6eV#ddnkv<1Sof|cJ
zUdOv%+Sk8E`g`Nlrms(C@A*NW3^p?}OA~(HGd6~6Y-|k13tQ<sk5Z=oKzXDztexl^
zF=p^!oV|}vb}(-@|FDqlm%=>sT>0WzNh<22=Y-gi%#;~ko}Rzorzcz6=)#qBTLVb-
zjErzxQawFe_ZKG(|NY;oX{t`}uZ|xd$3x0aro4iD_q*fc<Bie8{sQT#*9&HFnfD%u
zM<O4!dPy7zO};89alITENO?c7^u2eKMztnvXEU?Z5`#v^NUjhxjAVbrWTUPwh?KvC
zh8;*jlWB~C)ab!ukHfONOKAtQVbtfzHdwVh*9l<e)_UN{-oGc9Vg%d2|7ALya)+}`
zdfm-uvqI7$TyC9wt($F7cg(1=oSLTR`Fls%jBZ{*g5R>dE<=#?vBM_g&<`&G$uEf_
zN4vN89zxxV=DZ#(4(q9hXh0z=mc_Xp-3#t|mamO>oqh<*OR%F=SfshEkkIJZl3i<*
z<+Eks^?2;Q5+pMK8;IK!Q;_S=-G&xe;Un4pR$d*YaGyHB`s``*x!o+>_|b4zzaoQz
zx`&mD1Tqq!rT1faIR!jOl$CU@RaMj<=nhjU?PWtl%Wfgb$qiBZ{qXd}_$H-y6KwNO
z_4)m#q%vKSN3!yn%9e*|FilYY=LhVYJeAWCZ4_?<<++u$bpKt?Rx!jG3;a%z9gPy1
zcV~|#&GLg-*2Li)NAi}UTQT8BEPM_;#Lg?Iqu3P)sCM5eIdh0e&Sf@xkqU<HAwE7n
zM5&`VpA<o3ax^4UtF4(}Q6V9%Ga||iyI{w9H<Wzn4{r5bM_gltM3C6x?|w#R8~2IM
zUMg2$i6#YXL59Htr1Oy*!_v;28UG6G2eK9W)UqQbB<A9U<zmY;_02fJw~(^fh+6;$
zL{oG3Cw-5DTuoY`&!7JckAT759a7N1<@o<G^%r1OZ_WESyb%Nu0SQ4GK|rOHkS-+!
zq@)ETRHQ>fy1To(8<g%wK@jO~kp@Z0cedyG{(rC6IhTNYZ$4|SSu^+CbI)2Cmq_t-
zne&+~bTOdA*2%$<C|%zmLm>V$WQAi$S~095G`Qax>zj33E;xN7A4qn{Y-*xJ%>Np_
z+StFNtGHP&@7bt6V$V34J9kD)v)_qaqKBUZUVhy;s|=Mbht0#3;1Gyw^H4K09H2-K
z=U0<sT@-YO2#q-ThxhKGka3xDSaJ*}`=F0lj*LWii__4orxX@4l9Q9mYw}r4Il~$9
z*AP)Jvi)h(Q-1G@|Ml<>y=T!w{kqv2_dOQb6WTWx&Bs!rzx=lZ{ru3~AmA5lXoMwb
zXB{5?ws7qb4eE++BV9rlcX<E)J%+!i2dMSZYHKHk7t|V{^-v`Lm7vvOG;}9xJ8p3b
zNMuu;7U{vZ?q!I6VF~)a;o-7kkM!$kXu`-B-hmD*8n}t5qvJw2bBAnYK(OS|;>n+S
zcl8bt(XQ6}oOpu>yk@JL_(uk`R<dj~WA|w-cj(GJc;TCnq}qE`SJeAN<m9&yJ-xkP
z4F>&YvkjOCU|^qG-UkD~fz$>KQRBqZ-4PyEJ9Ny`^Ep%q9dYvKn^xmys9zsJ<gfvu
zwSn0<;l@y@(C3MD&%SY3;XqSf73L)BmuYcjW<>B6LRguZStcy5N*@z&;q+S)b#!S-
z#pa_)W5|!Mr4>9Sy8K<hi*xfP{uo}>P}Km0^Meo0hvk*Z<R1z};ToGZkh;*noPBT(
z>9K39GiuAx)>NkrfFH-dm?SE2rH7HRF&-fYIt~s_4vw#%-+|2FaLKW=kIzl1^<Ia$
z>T+1JfNqn8yQLfC2n5LFO83>~KBWTH<E+t~yPw+M>+MVoFNx%`6&%1jqM)L}MclY`
z%L{P1y$i?fSFc{B<>a74at}?g!@Yv3$-i-kB{W|@FcP)2DbzlK#r74*|N7upkWJ^*
zlXh7Obi6?~=rk?3e^@=2U=G_B#sC#}08-b`(9oy_1Sp{33SeUF_j?LLLNEAndH3?=
z#TooG-6j=qh%fx+E;OmO>(hrDW1WX^n}HiLX*wu&f(>%}?%naiuhCWJb0N^OsWB}G
zun(A|Zs5i7C@Dk0h;#v~z?N;DtTZl%ZzaycZY}##Eh7-|CPDv#q4U{FF4tb`-izsz
zREBxh5jp(Z^2&-+6BG9sx}742J>V_}eMn~)Es>iaW@4C|72>}T^yQX38St@qnIQ`e
z=Fst3mqdnWfm^>2!u(?jbGeVD^mKLMf(b`Jk$OOmEY>~4KLtf1{*)Iu7#cxAZT@aj
z$z`h%o}RcTY>it(UE(8uX#XlQH#I2wUipz{R67%d|9wNpi3AK#Ize-Bae2VZ3`%tG
z{Pw{|f`U!mkKQ6kiRHjI_yq*CfynJaQxmi?6A}{6LuFzS9wp}9y?Y`XHEnh4Qop>s
z(BNPEl>49+qZ{Hp=MiS!sT>A6`l4O)nO5iyD<ECkHRjibmrGPvzb&WSTW%BkiHdSO
z28evup!w+N2nyo(a8nTaLGYj1R}bx)+|NPTa?MSAWk1op$v-deK``0sdiP~N%mqh8
zUz;stCq%KGot-ul?}ddCV5YvXZb$3>g-`(YmogW&NkKM~qfEKhu|J=A;A*?*8ACN!
zzJd{6srP?=^xJ7==mZ;ApKdQMO~vij*476sEM0&1SIePuNy&G}+reAj&Y@siN?ID#
zjV1a!lCQ1}F0o-}XNT1<u}($o_OTDV0o*FkRb1%pS6c&ZI|yNV00n+M5fHwgDcCTc
zXNNcxXApV$yljKk!|-Su6{ia0G=);1(ayQK=BY6(EGz|ic{jk;mA%H0ZE!;mRqP5>
zMK^3`wvTvBCpi$f1Il%vyXY~~q556%S$UQEv`L|9zIEB3p$Sk!kH!-zS#ir3+M!B+
zPF=S2m6$jphCMff&#2wXyJ=~9iAYHNL3z8>6W)%>CN)D<N15sTs@>PPDiEKtkQ2>1
zPY;?f@!=}Y+xYm`Kv=2d`&?AiAxdfT7UBlQieA`-gt++PQt0s_SeGdD%E#&#)iOSO
zIJj{+Y~B?cogYvF>fl3OpVLbW4dc*$WL+>IzzPbd8yD~2dv%~xq`wTCGi%L`pqDw~
z?7KptA+3qCq5T|g{aJnKj0D9q_-Pe@bRvHHb3Z>xs%xm8kF9?(!F4GMfvioBZMabr
zssf)mGqip8mzSa>A^ET<2``&_siSn~$ScI^Y0ssWmR7mpAPu4gvUQH0yD_3u!IsF^
zOKD7gKnNQwn|N-zb{URvUQUn&qfZFoVVlS(Mow_YWeSH+$~1#ZwRdi+R_L1jb1vzr
z%ziukFu>m*1p%mjyd(T>$S$|pDrGR_^}N-Cl_k3mig&q7s+vNls?8-{y&9(N=KBFR
zlF~45aU>-r-LiF;6cx>(<##4!`)M&oIUrDd0|awjP}0^f$5c(H`P<=7prt)Dx}I5Y
zlltiw2?BR2=!53Y=K(>~AI{M4mdlGF<!FJU7e}`8?A~PUGr)C4c;NU|v?sK(_Abt(
zC3JiDX&08?#8It;Q-+-US=A4Uxy3-U!3OCp@_+-l`QhYOVyP@eh{z4+;-$sKj<;<=
zhjoD1{V;#SZI;lCO$(Q(G|Uqok$?j%pMhIV5yJX3*_StO-Rc<A!A){a1hF=v;3hpE
zA0L4PSi)(Rp%HPQ)h!<4(8$P0<yT5r1o#DVIfnZBnbsGu;{sOk5gnLhIu2{uEN5UI
zgt6JVxwL|Ul#rEel~dW6W6Fgl3%P2uo(=iBUNDkC#t8>@lvQ)dtd6e%nyoN`<xuCL
zE8U66)4n>8KQH@4b4hD;qv7?Tb=fV76_4ZCkT%>zhKlbPcqFf6WS9{1JFZuJW^+xZ
zi-wd(t|6hJ|6F*gM6wBx#~Ep9!qWr5FVrOyO69+TaDEN$fdRkT0Umk}u#b&81Iz$z
z6X;%_=f7I7OkEn&aV^HHf9R+Z8xsTMF(Ig&7XGfLa;cL;T)xYbEsJ<HMuSh>KI`YS
zT`Oi`XV(oCfKDQu9D4F*zEoFaj(k7C(HOW=NlD2T;DtLcke~_^6H{YM4t@d@bcYQb
z#(`uxf;;x1EN%%cB*FVxkj`#SRm+ufeT`+-^r<u+3n<6Jv{rfuZWz?vCZ?v?4mfNR
zW7kVOP3|?%cm&iv^$dP4iW(VQ!KJiHI-XxB8+TTZpX4+|Y~A%a+oRSIa=WJ#EL^|u
zCh9rw+RBXilNyok&|Wy8{w(F1?>j_K+FH?nHfwft1J_E-K8*3*^;*4z=Dkxb0zBt~
zK^8a!<Sux0`?D?C9Gq?gBq#!Mq;U$Ziu0_UYWBH<1206S5MpgLqjigqi=UF;@;X;y
zTDz!v5HuflPGg?i(Xn~qhNv#arp|V3>^JUR{!~DxVr6G1fQ-Yvu~7h@fM8)qXmVa3
zNA%g;8bpk}56nLgF3((BKuB6<GGWD}Wi)ObmOC4}baH$ssZQo6mX7ZkB4$vGzWym$
zH)W8z@Tul6AK7vrDhXiVf;`Ygg%(&?_Q_2`z3<^O-BO_FBi*)1D_9T=DA-AdzY0jV
zmyTwh28D6!#nq!Wyxw}U`2+*9J8Y`Qc;Psu4HY-Ny}jZ1lFn|boz7m?(#JNE94!X#
z-q8STcn)ppKQJMua`>3*?J_K$fCUFY#H-aEh&i3Ep`8C6a20v>?3$*O0x{e~0HTmv
z&@W=Ni^hqNnctuL`hQx0L#m*qxiQ-6FY%C`F#>P3HbWktDB_rh2@BQDC-E)qe1kA~
zqXwtKdxKhnKHcB2MYH~h6S|BkA3l6|SAbX8Tmbv)d2|%v(tzvBYlw!EMYez2(kH{v
z2m>LR6de0NyUK**#fujfM<zs<e`1^GSB0)>2fK3IOS7`jq@-N0A(*sIGZea#=9kbA
zJ*?(WzuAj&Sd=kv#xpNi?%F9~Pic7h_1yKrr3wKPye4010}b3!A5b$;(i<Bo;38bZ
z4<A}1=%gRN?<ZIC1y_Qu_{tgAt$?BO$;GPc<t@0*p#@G50VTY_aQTOMMIns8d!epD
zAh{!bJB=yWk8nHxLzEdLA&QC-IZR|Sk+bjTK#QtiZtzCcs2s3HeFz4#w5g5U4;fJd
zm9}=;U8tcV5SItJLW}zYxCz`eOOsG5JX5fXh&o^Zi~%j=Bqv|xT)+q+krWOn&{TLe
zbJI0{FZG&@B}tIZ<sa3%PxR10r0;Gw=Zpb&qlpK%MqRsx)Qe4o)<p_k@nBxRKK2A|
z2|ho_WhFCxT^><aM8eN_zk&tQlQ)`27jF8*jGQrz+~)UH#Lh@QPS3g6Uq@IRG^%Uq
zt!<p}jBVU*zTiU$x9ql#UyA4T+k_gZP(Q3iAa;i%XUEH&`ZB%d7%6b^NvfXqDH4RQ
z_yud-u(QL2vXJxU#Al3~Via(9>WB5Ro*oSijon#C&G6*pU^u-;4-Q_)!2w3#mSkSW
zQ7jJI*AqA!XuRRC-3fC4y?lu?>$G2eGEzG0R$5vrwRmr+)^3Lq?kuKB@jPF3B|RqZ
zm>47yd5*qtn(WxaYTVVa&@T==m5i^H5voSj8o$xT6bF81+n@FNVszPg?S`C|Nc}_h
zufiWz+O_4q-v;;8YWx16wkzJqd8h2B!?><_$kxOHKAJ}Q4hadSot+(sK~$i{M+7cO
z)m{5ZjAT)je8t7()z$rrHLDj-52=upUXe~S3JVMB`%zOGnx8`HR5rgK4ACv$$H#<D
zH}+ZAD`(II_{^REYA%DuBWRgU`l?5>R0k4G7>Wm#%WdFF^x=#f@lgFXi}%VAbqz>v
zgR$*?rTh6&JEI1{Frv(Lh=V{B%|uNwN5_AUq5Fl!Uc$92euV-~sbuR$92m-?gHIRa
zWa<@RVYeI3w%?tvu)2!C3_{Bb@RD-+pydJ?BAbo90W}<}(;{@ahY6QkJ$6351y4_D
zYulA59O&mKqaV_T4bHTTt?!`w1WYS-cXziX{duZBsNcCi{kb2*;*1A4JO?NE*6-!7
z1SiV`3*-j8qos3iDy+jW1z&PU^)?NQj{3j?ASX9)jL?2v$~-dI{02Uk1lldCB6gIE
z@7I+zBZ+?nb0|h6KqA{y@%QXZAC4M00j=LIwD~TMmz!JsS;mw};>Lsf^>&Y`OxJHq
z$pr+M%}2@!irCsdMa;*)Pib{M@75rY5EB*cqOmM*|Cb&40HDRe!&~6Cm{)@1uTV6r
z?k|32$X(3OO=<h`A?INoO*>qw*2a)}uEme>>2&RV$JYi~vES0p#U3!_#xUh5H@;5p
zxtKN1(ys^K3f`$abP0joD<`mqy`~?+ZISWnb(5JCwca}%)U<+mBK!{G(ucPX#nJhv
z$&qWc`GUF2ogkZZ1GQ!H*h*e)bet{+R%`c6mBEN9k+&ZeR%$#N>ZhePN0pOinn8KT
zh1*QJTT3^vt-32@SMj)=9$%BF3D_yOZn&mv#{4VKzvrjG*=FctyKR2(!@1n{kFUdV
zFR&+EykQ6Ft`FzO@!CAnbdSqVO6rxAmTrfubr1*?6nCV{@Q{k6kAM1@hNi;7-CgA5
zySa-e+~kb(=g7$+X4Q6s!)c&<!v|^>@KGPis^4q0lG_MiVA@+iB>v)#vg`OGv9YGB
zj9Jv*@Xf+t2f|CckG9cqJNdrMi*cTN<S_IYQ{K63&YtqX=o@zh)l6vrOyQOyy#sAy
zG9Kx2$Xqk8!m41U`k6M4(S~N{1*X4=RwQFdz)?F)RL!n)ao2_f8>77DoKIPIwnjG|
z{_y&l7VKTOk}WwFZKbrdA_e0@LK~A~5z*0(uU|3Y$~8b3){s~b!2nv2Ej>SfCQ3^E
z1&x04!rB^06>#nC?c0WiP*+w~;<(GtmJspc`uem#fBuwLNKfc(1x3GfY?B|=)k!yf
zND!cFB{j9XZEbB9rw1RBgj{iul`yzQ))KxQpPFhPQo5NxOaRTQVK1_G527l<3=#Dp
z=79u)H`$Y^Gt{-Aqa$2kd3Egu;(^QK^aptA81(trl4Hvr>zAj0vF&SkK1$J-YU2B4
zEqk!s=}l%V@*X9fd!4sAV!!T1`IEJu>>&$5#E<LMq#w-~4w6(-g`aR1UZXU_@r&n?
zF|H3U+9_CA_?5P&ofCA}0<)~apm%;K*L`$XXv+C^I43D|R%+Yp!v71`flZi)Q;Lvh
zxS35q=l~aGu`$XVd^nIQWS$|J&*kCi37SN3xRM~Ij^iZ<w3rO%V+F&pUzwGacaQ^z
zY;bR@dM=~l&(lYY=83%g>zSY+fhb7BW;LJec_KxjYm7Rr_$9qq3loD+d!IlZ6**eX
zKb7pd8Lj=WF`g@0iNqR|=O(V<QtF0EbK);OtI*UDs6q9?-BxaE%zS=WU0kf~Lr25L
z*Y1P;+{A=QPhTGe!OYB@S6nP6D~k<`ivmdF590b&xEDfeDNn>C;V|CMeS#j}iz$$`
zLi?q)bPHRj1J57JUzHvMl`0@E4$##e1W`9|aV4O5f|v)&BQHN++{OlO3N27j(m&tF
zT_>~V#@LI*X$vlJd{AO07IsXH%>Be$VAo4dzY5KXQh92ZXmaOKi1*>ybHgV;iPJ^4
z!KUx(=+rQ)aGOsYqauErOrhlA|8~8qLz@^gLgC+Ry*PL^BV}~2yjYur<qON2@%0)v
zWXUN3@}v2sB~(Z-BRehDBuPkFW7-E-Ejw`1Fw+j!l4;*^mojyahzOz@MKHoTD3w)L
z`&J*z+dJZN+B`52Ip?QPmRcu8W<=K`htVI;4q$h)s4N;;HjZLm@j6DKeQvrzKwls?
zooAf!%;s5P2yOhGo+gzk{ffUvmI8?R7Jo&{XQHN&&yTJ<0#P4cuJzEkOX#yQ0pS(9
zru!;`<D13Zl+`pS+|gvr?nf3JXWO!yJ{C0~lu;yelmFnfsYmyei7L~&5#l45aN4{`
zhT2TYupUBq{)Vb&=fj}EAvEtvet{7(cr2QKU|{IIQ@xhZnFe!;!_WGufy~l>#RvVf
zO-1ICC{9#)x+0<aSG^FV@D8Q>zta;cSL-Pljy(+%9sQ;n$6wy{QOsG?;5GdIo>Es{
zqP?l+=fh+qS`jV1Pm{Z&$|(V8+)9b(CB%3cwOCE1jmIF@2N4F9;RW7fr?M_lPoE5J
zF=k1%GyCf3L0Gs&w174*e*qrba(s9~BPK_yqO9Jm@WyPXAKUFdNCLIz#&BWY^`abl
znv6?_RY@M4Uk{Mw#9uvXPhOz$%P7tjm;!MrYQO}KBxxAN7t+LqWjxor7J=qsIV<_(
zZ^NTW+{o@19bQ$!bIRS5MFB_8TZ_@rLM%okeXbyI`^{Zyg_;U^2@WZBIUI10B1d&~
zd~7`4{2`%+Y1M&ZvD($Qa%Y8KaSB%j)(D$lOu4{_SSWwx5a(5C22oi;f}h{1^x&}B
z`fWdSa&s=_x`K)nWSnXRXmCjX_tE_?jv1yDrc>*apj8qIHaLiJ76OM^E={+OwJ*N7
z$mu<<q<JzFU$QdU6*_lGp`FB4(d+Pxvr1UNe}({AjOkJPqO5?WCMzo{dZ7R?7cp<{
z&SmdU8C{)-ib$)tY(jE+`sJKZ{NVN0aL`2+{*YbpLgq9sQ@e{NLOp%IGU4>8JwNx!
zfpWK}EmalLO>?|?kf1#B2LC-I)EPRH1$oz>al)eG;jQ@|>lY+^o3c}vk~LtC%c{~#
zF~i9#HYZ?^Cp^E{z(@Sh6xs}*E%;VZ$~rx&*2GwO7vg235pf1KBRnfQ<wE#d|G<^|
z`SpbvMCa_9>FoaS+{4KkM#_auuK6wjUVcm{@X8|GDQC5E2t0U5Yzr1*IWL-D!~f=F
zUa)fJxBrhz+V$WdmWx`)b;p_H5DaxA&3DL;zXcyJU68e15}?sC3tRZ$L0lUB&wiUQ
zW^~*Nv86_w;p#8#-@jV*Gy6;O(dQRW`>g2S5){cy<8rP(TNJ6rEt|r?8*HJqEDur&
znti2!HJ*rEz!!sA1^AUwOZ4G_*f!R}3yqF>Ma=`CaJciP9+yq?-;9<0Kk|%72`{HO
zK!bbxqu^y37jm;iXZNoNXW`D86(n+*{1q{vu&<BlBVu@YpN3S8Qm}%*rz8BgFVt44
z$V){b%XML!Az&BB?Rsp7an8AggUq{JyHDolXnoT%O0eIXb1X($bDqrG)44n`&l5Xb
zhU#NGUPv;(*=?JZLux6lkrsG1PN-${5&fHWqJ?LCAEVxWsn0X23B|hNq!gL0i`;If
zv~Gd=J5ma9g~x*isvcwl8i@_-!2k$){hMjn`jwcobp1aA`uAzbN-C=K_IG-OaL)r`
zunnpiy4=HBY&<-5R<R+lo`zbfVeiDqg6F2~jW`4n&qTZ6QR11a&ZuFeDOl0exnD?t
zzskXZ^PYN`hB>ha7}%s_hvONMYkm`WqbfBiSy7HMrkl}k6!JQTb#LS0#Rq3R0_(7Q
zubn_()Ahm#uD7AR7hjCwJ^bb#=UVT~ud^Q3`oMF|!<wn-cTrCy9C(-FyL}g*Xve{u
z@zj}NW7>57dt1?s_~H<Z?BOb=Y<hv3DJLqjBiF#v=0c9sak5>CDkewr0XYiYgK`M3
zemx((mN{UB)&n3Gi~^khx6Y>rJ5*X-6CR|I!Ogl?c5!&W{lioG=>y&29ezO@TX73F
zNLJcx)kQUGc*}w4Oc+n#MPx{H`V&a$G+mbb%)&G}<VL=>#{tT%w~6UFZSIPqModvF
ze+vM&u<>uUR1_ndqDDCqdC?G$HK<I$zk`Q&f0>u{t{(S)FQLzu(upI7b%#HsYA|O8
zTHvZb|3A+tlaW_<$9gVuDXL+1I2}0=;oiD*oZ&XQ|7R648__dj$g=kbq!$4|G4TI=
z3{=JN!q<T2o{wsv#3$xE*PE69$FYiv68RvfqjPo`<+eaU2*#G6$;7tjEkp4%h8zrs
z-!`eMH;pW-(!@*8?z81&tg9g9Hi+F*CvzCB3>oq<@YKm+LDY%q^S_$d@Ylo}^{%4y
zxWSv}5A&!SxA#3W$KsJAF*NFCtPf24uV@bHDlQvIajt(<%F{SzYY4Ca7k)w64$A7?
z8S?&6x+S&PG%=lDGz`oc#o?IUXqgvjIAN$TKvJhbpW}sFK1`V0`$nluW#pPqJFCO{
zZTMb%2YEahRD@-qD1)c&);WcRKm<N}E=!I%*s}b~z!yGgc+MEfShoRV{myuViB(kg
zqi<<$Cj34u+mbXQD)L6CCE>@Di7D~9{9TiUNfTbw^Np%>H`y0~orDXTqX!9-pZMw4
zeKx2yr_q1>_=&>*Zr#wYCk(k_mAuov!}r4OaBIr9kCGc4dZ8WuPlhn~!WG!!CpK#0
z<@U~xpi0=Wv-Gb_Ed+%+<01wo47Zc4TLvr2hR(sTdTE9#hZE7<>{7B>ftktcU)QQ^
zp$2)6=DB{vWDwnUqZjRaGrzg+&XDeZf;4ml6x&RGj4KWWhFMi0_~sHqM-oHz-}%Xf
zmdAU9Ir;hD4Tg76e`q)H>IsTGe<{n_*6*nrR>3*>U<nUT;AVQKue`_wJY?ZUV*bW>
z7?kf2BRl(E0uu;o`b=;Airso-paaWo`s^B()iek7#_()-7#ZZl6g61wUE}$$?yaAf
z+v`?;d-m_Blag<ma!JEYMLUKkQYODU1kzpvm^;|;f@sbU=a|akN<~z39oBsB+cphg
zk2alkKbUA0C6O88!G+5jMK#Yaz14N++Mzhd#02Ajc-KL{Gfv1yz778D=T~<yT@_C$
zBlhTM)sT@u`hYp#|HO9<!rG00xeZ(>^|C8ZGrLA?zAx&3(`{`Jg9;_$%~-nArl8Xu
z1V=>mdMGc}#_G4iu#eQlBR0%=CB`C?A#|kC2JqsJ@x@5C$D;$Ng+wn~77z1pU>)Ht
z;TH^f-LL1phf*5saHqCU)g#&b`xr@c)qq}Bbs@L*a)QBq)3{(+suTi(9;kr(Hi+H}
zAtvUdL|7EpsGK*bm<xt<TBAPsIaS&FK7EUwAf|ZAiWGj?uHvwo$?0y=-Q3fqg=C@k
zh_KiP9J9oD;rE<Dpt(c-5Gngh&wPy(EL<vXB%um(YkxfEv)6NDP<%=BQN3wHUeKUv
zRQc0OQPD<P%PPpd1#@sb4TV2fJIhObho$OV8qRxHP*;*IT{+r;kbA{QdGtMsc#Ouh
z8^5D7WUR&_hL{n#=s#_lL_pSHwW8b;t*U#xP`GFnpNh68MS^gPDjr<4`c!@m%KalQ
zF9_8d4Kw0oUXDiwXJLP?mt`r`GZ%;1Lt2_Ec_TVPk~b`{W_(X_svHeQc)QsupnuDH
zMVZ^`m(Sgye-c5MHyY7j-Y3yY)ceuY@Fc<AHFgx=Fw$N`beAT1l+Ei3R6SZdS2sNC
zQ>+qyzP{}Rzo}ES`ZR7NfGF71i+h>wX5Xzn<eG)m@%i`q``udm(m;un1q#lQF}Tuw
zo&+{@Z+tX1(W@R;M+}yS{AK-<H>nT)`PtuIwp6AN><#t+_`C^RMZbo~3ECfxJ9r4{
z&aDkyki6ng%&8i^5|VgHdXK(=;8^<^e1vF;)aZEV@Qjp96jm|2mx1|m79Q`C!$Tt`
zw-Twt^ppaLp29oKHCjVi)@S|YMw&U4u6C*3EQ<aFh<RJt$S#+UC8cohS)CBO76?T3
z-uaz22jUh`1~J;$;YTjB3E^7uz`AD_VRx)>buV3HXHr`(==TWJDyq>^@*(`Vv?0~@
z>pAaWcngXPHrVhSF<`>CYw6W9?{<ZO&W5-<K<?Z8o>x)Ck8MxbBQc?{N9f?w856Fn
z-ZZA(-~X|}om?1`z5P<a{NP3wKEwUZuS8Q}aaIwX=_xEd-wK6cn8-b{p?zy@=&0+o
z4+z2Fi(E&Elg835^sU8OckU$H=e@9fIl{g=(Mi@jN$XDxex@^75H&D3!mUs_=93|V
zVhN?AV&X$EA1Ms0P6<D6tYug~$LXhxrLVU(ZZ;5d5@knY>w&c+KS0JFOKSA>r|ABI
z`TwaX7)zh|^+_A+^l#r_mUIBO5-46Y8I#{VrwXIEP0ZIMo#6yOj57pF{cupUUBs0d
z|Le5Br;nMqdvn@43CJ@E=YF)qB~J_eJNDe&&)$Pqk>pW#)AIcz>wpRuIGnx%2N`P|
zg7l34>2<IDNMgXS=gti&`Rk5<tbJ|QqRm!U(MI^VJm+&qW30T^7*iGQtJEvs9(>D1
zQJM|F{qZl<xTKwK$s#R$6l=M^&BM84OOHmJ7EBvPQbIWD*ZZ~!f3HL07Xx0bo$4KO
zVm@vD+JHcc(7tJ_<PF;#L7&@WAet$6*tZ089^_sNz&VzfT+t*g-*z%?>OVO%f_)CE
z4!d|S1xXIDKOeBZ_jkl#c2?gL5p8BZvCI&*FI~T4fdOh2tc-LrycJ&GW=dJc$2;r-
zIgH?d0`=-Uc90=fuWJuArWfMc*m0@wQMrysLY<i3`#LUxIomdG)Liz;JUmFJ^&X5h
ztmZi4r13FBf64Q|Fl#^F3f{B1$Hux>6Tw*8mV-O6Cc`W7eYX?7@}KJsyhA#6M>M7@
z1=6@8^vL0NMfLZKPOn?SBR2F9y-fH*_jE+A!h!weD%P<w7K34u45m(@d1;d@$h7P$
za<rwGlj2YcFllmw_P3Q~>K4Zi)$>A2DW`-&v<V6+5Xy9-Mh<ux?H4xmq`a;~b%LM!
zpA?wqn$E57-JHTIxWhbibV*NxpA<2+1P%bhdOgfqX=GmqB6r5RBT^QJw|1N70~+|s
zH=yJO3+V<MCbeE&{#MBGC{3RRq|Ai_{zHjXa^SUzQ-?Q89zPKMbv?g6a-3DuS(}<h
zdihPSKf%AupM&~iNmhss&x%N;N9dqj9SuXUa9fHA>>>2Dg0$Zye_9D)Q&LBBW7pL9
z8NQL{sHDyPk}s`CDo>ZY)Rv`2LjQK)1H@4?QQtHD)mBDHS=MJZT39eRPI^`u-Y~|h
zU$-?r@!!-<{lFJvNVxf%jlBcoL#(;T`gYNizr5jefPTUc0l%YrNtk}uy#e$U2932}
zxL;6iwyb|Zy=h*}l+O;MhP=X<kK=JP!ldlMD-Yt-1L5Bfhyj84bWBjb#Ce*7Gf|ZP
zXo&2w=C1%AHm-kg5S@@{(-R^-sq)WtABO_7lW&2>j!6XF(u?=2L<#ZduH}m=3nX7S
zzYTpNP}HyT+eBK-;31%%3d(;|9M8jmK?b$01y-Ampg~V40eA8-mv-m0uYhC-3Qqu8
z0}~bkVY3;UGS=9erJbO?vt#B(Lk8G|FJykNBX7l*icY_S6;f*uR8Bg}VR#0z2;&x8
zD$!Ah^E5P!KYxz8|D1e^_6e5_i5MY!i8xhCS&t;W_M0uezABf@=DR=Y@02jrDXYVB
zUZGEqqPcZVaHFS0V~`ZkX!|JOTtJTJ7q79q8f?V)2S20N<E(&Ms$x_yJa8;mZ}0R~
zW=A+<DSr1P=olgFiIc<vm}Zg#7^D8_4ylw0jr0oj{d_(d@*8+0<j8c4X&TD<CoArW
z+>V)ekPPj{@+R=!&y4u{A}m_9q@0Pf@df~(VC^vE^ZrV+w&4n=)4aQgLuH2{v*<M^
zN)#GBY#^V%CZ^W-w<aHMW4^!Lcwa?{MLRWM_#i{uynaLe((MzKXk)bc54Xyz2dzUp
zy_QGfw1_urk)y|Id9N1Hz)ria{({avj%1P6CG|g{+ai^&*21w*+3OREpMUK%|I=V%
zAj)$MmJ^oE7;}^$ay+V4*M)>#R5WW%BD8*K>n@edArc<{1bD3S@U8Ke(M!v9z^8#a
zr5fBKnbqWj!lSSRb|F!^muEurSIJGDK90Dl!H&8ChjjTUZ{GRg{$!cEmgXQ@RabId
zsq0f<DYOXCLTE>d6Cuz8I2Cr<>WL>q!U8F>cT4c4KuB~2r^a+_gPJ?||ItIQIgz%F
zu>j)<%?M;_<>yy~KjkbRN>nO$hsqxpi_*u-=5rVXhoA1R5pE5lC@^~N2?_8I;35Mz
zHYRiX<UEQRZgv2K01aNSWyI4yalbw+SWG|(f&S_67-jqOcR;e}R}MOZjv3!lqmCPS
z1=QZA?H<0c&2AxJDY%ISutmW;iL>!Sp9i38CYHe0kwI~OgK>A~{b8>4G8_(nEg^wg
zl@x4Y@Yi9)j1VBM#g}^do3a)7I8vOPO&B>jm7vF8$JWw5wzPBW=<G)ekDmp|-f=Z1
zF%Uz|G@jebyWZ?+(1dUKNv6XPQ6OOqahW%=|Jvakp8zJ-Q7gn%Xfe6RSentB1>z3)
z6C-m$PVN>*CExr~RR<?8MX&E$;g3^Nym(gn{CtUZc3D>K)JOD&fQ|s#Ayt_A@SsRt
zF6=a<s|vpVnMKj=eR-?~7=;RJf*(xN6BL&F_MiWJ3kM7c7(xR1GS8UX((lY_yPCWt
z4!upi$J;%U>pRkC2bckOz=Q-L#ijr|oManig%@X~!(JqX9gX5!Ci<hK;C2nk)aB+7
z@4b-{54Tcx4;@gZU8#7s%G;C@QdZ5mndKjlbL6YTRp>nPQRiG^QO`W0X&hi;835Ue
zKi|sNM%GA6A+taO^nkhX?jC2OWM)JiE5K5{6;3xwhIc{WNdRX*H*yH?PjvX-wDeGY
z%yAK5A#B4O8?!85DmPj{%gQ0v1t;6EO<#eKQB(^3sC@keG~|$EzjdL^Q~W{=Dp{}}
zdpG|ij%V*H7>s;MPbwSK(hF#uEanx6$?^;I$k*3kNk#cjdYtGU6q~ecCD8Xs6O!6#
zWN-KHMsSP#IxZts)Lgm$<B-KfZn?8kjh{>2w7K1)J}2MU$pwG9<iq-*i$A5<I}ubt
zK~>M@)Z$UYjda<IM%xDKEE)FjBKG{EQ<wo?keRGM&36I?xatw%hs{F1L_J^Fl3Q0)
z*bl9K-hcq(0~yEdc-7bd!v(28MsH4mZDYtgPB^Zo)rru3SqJk*u^(5-;%nRa1_nyn
ztO}dQ`u9ca|7ijI5F^+-vZXJ_5?W|0i2na_toxan?H855@BmjnmXe)WH&%Y*`n%3?
zl5Cw>5UuV0yBV->j|R1SP0jtGgm~Bn(3_?9=jx_{Wp%OY#%gTk8zuEmson9+*6pCW
zuxVnkEFY3I3hYfDX|nxfU$e(9a)&dG*L~*GZosHP*^ghVu<MbC-T$2yvVjVVlK!&)
zc0t;61MRTCQXMOBLQrKfE=X2e*Kq-<v!@k*e*^Xf>6v(2ojTHx<7-#OA-@bJ@^$-l
z7~&9!nojc(^19cIC1Q}gz-EHYodzCgqbh0Cq4BxF!%<TnYy_#PC?A1_g>BV_e3N*g
zAPt)i(jrbZ?x<<y7UbcCe>yx3|AdVBv6ZDh4t0JE0m-pcFCEoTT$cN=%d1UR%Td0^
zP|kEcviw=&nHa6=9-GmX@uk8T_f1CA@87@Oz=8c)f7fR}P3B2nzeBYJaj;w`r1gEQ
z(cXZ`bzt1>>Mtd6F^X`GJ?i({buQ{6zu7KU{7{$~$P$qFg}$Pb`>{SG|Aw67jbS+l
zm<-an!s<&rlh;qwSC8sg2yK{&tG37^V>|qdfh+gx6E10ZVVu|+%t#+te2J4gb9*X4
zd93nHQL1lT&t><Zv7U5C*&8Z&I|*cLMN?K9Nk4eNZ7wBwLBPSL%zk4E>D{>ViBYw`
zDGeJd%tbY2_M^uvwhi_S8~}&etQ||Hr(v4Q1Mq}X=_v>)FBD2Wh)$p7YBkZZgaUqj
zBqkkes`Qe`(Ao7_bk<|b3~Fc%W71A7D4zr58#z48`VEKf=fG?m*;O(QUm}i|FHUEy
zs{>L0%bBZ$6z*vf0$;wRzh5Z@=nMIxS`vl+xF@@xDJsoDmgWu#eFE<-SpId9qvL3e
zsaxU@NS<18Al1$EdSApVWNUbs`<|oZX;7Fs*f6<ajA`Od-n~}Gkit-5i%fH(`5Ux}
zQ-tMHsRI4_$lzfzQwpx3d^c)G;!kqwFBD8)X4ZyPI`af=!OeFq?XF90!d%+r+i$Yi
z9-6{|UVP?-f>l)~eBIsMdwF9~EsgcX+;J)%>Dv8qx99y2HrX03eVNV=x$qh%y~Bzw
zp+(|k$$tun+_$lmgKq<#4nM7I?~QIg#lTl_K@y*#DU)We#%!(($nXx6fB0~?ydBHs
zA|Al*044?rqYza&IBtGDlMnfL(;k#~e-1>Q)u9TBVwP+FZgcy{RoTsYPWkAA4lsBP
z6zt?{WL<hnMY!}hcBA$eI<a?ntL`J|neAJL9|w6BPPf}tk-mJn^Jef<k2ZcDh&Fza
zby&qXD9V3iwKL|Y2@OVIR|JD39*|ejlj^84lbM(y$;ro>8&{DK5uk6;fs^45s1=!V
zX=&K*Wh?r3eG~sOYWL<S>t5X9@`I#iQ{Ut(0gQp>%j=6*A8~R8gSPfvY?M{5*z1W(
z#mjQ<0X?Xovu4B|XZtsX`&iaw*>IEJUQ8xOixDzk;uP|&>2-Ncn>>huz61;rVnc_o
z(yJJXuP0xz9#knm_@7SF;aHL<3NagSgrd0_QM+C<hazT4@j7{Pw}0T>{L~}IR~(2T
z)T}t3w`eR*n*Po7t4njS{F6(@&)!x#RMY`&dZ{QO&`f|#`FnGVzo$9ayk8ylt;6q~
z#J8B7yz|@07^14dhw*LCzEO}vm91IC=eJWk7=Y=nOYdCUs<K~L6Sn{4n3naDvsG7Q
z|IPV_B_<Be>IGcaD;!{r1a`{Eo>iQ7?WDF`*k-59q99pO_@i)z<QNN=L{fs4hYeDq
zYUZYW>Jn}4(pa{XstWl}KjIsoM7*GrA3^)VT{C|e>#5+h!QygNP2L#v$g=!7)Iu9K
zK>*_C_i>{{3kC16|Euw#Jru=$x)?qN@N4h}san+YNa#zhpvbHLL>z(>qE@|$IsAo3
zWU%NozN%c|B8d1YukKc$-24-N0$ZwxrFstyC12T#+o@5lm|Dn>_B)+lu5>WreeE;!
z$3e;WnJ9W!%CJEUZ&U$OWij^WVFRBi;occX!y=>hrOcT!qpwTc2c899b>-=IKt*{J
zVp~>eDf}Uj{c^Q3|K!;2<>KKnn}vyHP=03h-T#~pDT3O@?%B6d!~X?hXoz8MN&&+J
zE(|9=)t9?f;q|6{xw!#A5$L5s2qz6c03I<5wHC?7L0;76;S1R38h~#k=dg<Q<X@~m
z2(#!M@bUh~ZLmoL9cVo|IEx~t%bY|Jb@DwSzee$GVAUB#&p@+x^A?})Xq|&sf0%A3
z){wm3lA9lc#J!ImTwpHVu9S=&SaR3nPMOubkhC3D`wWB^XrIwt3it}N1QvXmUROc_
zXrlA5a3cY>lz&{0cBRENBuJ{v5StzVZV(xg0PH^3&JaHT_HfbQ1z^p)8>{IyipVVq
z5+o0GBbvfiTPlMXN<u|X?_q-w(jAVBVs-zCNZ)&lUlnQ`FdjUr^V~|+e%9+jm9GE&
z#d1~sl6k${^AA|BjX$>PxDfc)V;}GS(qT!fEN&k*Z{1w^RtR9z<G<}21Q_<2c9Bu;
zA0QIRd8|>91euo=FjK(ZCIjmR&C7xD_XHPtbz24V6!Yk7qagfl;QzDJxhE2`1_DU-
zdU!7_YBDB!*x=pd&W!J(&o#6Ds*?-WcZ<)wnRzFt_SB77cynaXr(e6-YJLeN@l51;
zG&npQvQFR9H9^9dO6HsR)~@`ML{<Krj~K-Fdw~1*1^|B=H)v~(>1FhQ!S(z=lAyx}
zG>to|sn+tFyirJ^dgHAQEGsI-lyjK69@OAsNZeE6D1WENI#*UR?sblhDa`5yrd~d{
zapXB8uTXHxV@qm)`=v7f1)2%s<Cpf)exes|F}4}E<fr-XnwO*m$%WooEKOZmVh|$r
zw7kS`?06dtKm%z}Mh*(GMyp_6emXp2CTHcAodyVD!0tdu6SEpZ(B*chLIZfA*J-1o
z%>&@ru&??VJR6Y_q@|5U1XV!ZKW*ft049W1RLtP@Q(Veal}GB*vIc9&83cLtSGE7D
zA89T-68WzdVb7U3ouT>QTDF&}%C+Y!YQnaEdSt6cc*q?f_)YY)FJamBO|ux`r!Hu4
z-f>zbcAok57YWI`LPCiF!J6!QM@LxPVY^=_XVVV@ba<{~I#z_2Nhrrt5<DT*#%Dkj
z#85&jez{ri2hs1lcdGqgM>3gVA;?r^y4JsUcdk6a%fzGD4t@PeId<=VOvTG2aCjVU
znB5-{q}I|9t{(}$rR!5KKigHdocYJ);sZ4!7%R5wto{E1Dy9@NKfsho)CKt|8e;K&
zf1APgHbDp>GjHQh)kJ@-e}U4}z1!j8fFR%b1H>@fu6$VjY4t7K{4lR7ge@-BNI|Nh
zEYuEa=)1hbsI#8D^2Z}09J8ifVG6T;_8*8QslKE(&B0~veDm?@nR|oj#wWamx2||C
zQH4^tCcl{X1&R5d8E=s=zhZ(mdk&V(e*>yh*BafKrWYNrvZm1(vxl|fcw98=ME?I0
zfP1=fPk~+uuQ|pyaEV}9MQP({2U6<<FcNR%Fc1KC6WUXPz&uN+XnWgV4%Sjgsc6@p
zXaEZe1QFCoG%_PJreKInRzZv}wF`+E3;cVmklx)N>WDGc*DFuve;>MRfts7<N&{Pv
zPd(r(8*T$3AByjC)#8A;gaihQ4vSZHH5zLZH$i?rkJ`bs!TJ8@eYouGE}{U3y7<^V
z!ja|VVjxF%fwigQ%H<=8(9L7dNZMRtq#R_O^^^azhQH*nj>#CM$du)iB{QU_n-xtC
zBQ|QgkCV@m+4{+V;vO-i%`r}$*<t_&TfcF0hq3;CS7or6LBAJ0Rl@;8g%dJn;7>a5
znmr<!gtBK6bKcsRAn&$a+WAk@8tzBsf8VoP)V2{(*xP5=9GkJfOlj~)y<obTojp=k
zj^cFT(=v7T#NeIwbAx5I>1Nz7jP8HX$@m4^uzHEm7Jlr(xdBV$=SOq)D0+sI1=&!B
z>~R1tlKQ^{ItX}IOQ?ga*0l|(BRdp<b`jCExNFTsqkmgNVgF}p&!6)1kiLirFdmjD
z;pbwglRGxlMqQFJ<XpGB1AH;ptE$epk7Oy|c?G+_;=KzY2>!#tdFtmMA7mcl9C+%Z
zGCrPHRXc|=-LM)ITq@)7v!BRy_KM<#8CTpN3Z%PJ2eO0!d^ZLn*gqm0pCL=DY2>Z5
zE=%Ax$lM^Q1quocxES8!iDW2hRhBY7ew$=h+C{_m9yl&_P=!Fu1qVfZthw`Cp~$Vi
zkoNMJnBB6f5B+FyON8!)`AAycZycg4d)~=Oj`u~jj(sEx3rlcUoLIvbC;G`LcN|0j
z{d`FxmdoK#cX-)8+a==~zu?~)e*I=nWT^O@Bj|1gL1g@3{o_B(e)|d3>_!|Q2Zrey
zpQQz0t{p(iSOVn&k3P8!>m;CRJ1}v9VYW;O=s(-^haWys|NLW}7HlAiTVZ{B`YjWU
zHNBwNcONPso4{hF+uXm!R4aWzDA_(xP_-g{N>Qcu*^r#nG+BP;#<+l_V)d8l?sEOP
zg|*!0^S=$J=%lvZnERHI=<jw5IlKS-sS!lJ=6+<GCW{&M<yKpOH$mCXZ)~Szb)QIL
zbKUJoTA5uIWCgk}v_wU_Zc^V+v&1yM3KNS9j)|xg`Y2b-%_~>OWMem4C%by_nV3@@
zf8nP8b))~qatexqX48o>pIavX6`>D4@d5JuS%H4OAoEZh*RJ(cHD^)Motb=7nL%xf
z;)T=MjO>@HFM1krRNI_|l)9fQD?ja4uMa+DV36Riws<6Xw#npjx&L1GeeUE{<C(BX
zCc)*ZP_EuYSLt4&5G1Y50vL{bm${F<IyaP%yaO`F|F1Nvv7?W4Bv2W$&9{Fs?T87L
zL=9F4<k<X}NI>hSjtgaPCJ+V$y>&>#&<?%1zHj^ec(UC7VhqG%tzFTP7L_**8*ztU
z&57wR3BYj%<U%pNoW{R0E5&Snjtq|n6cnIya8+g06_Ava^p}19EFvGqRZ)=?7ERZk
z7p@3m$Au^USdX^I@yIy{g#r%R*NQY@kMVbOdy~#9QH!hw(Cga|8|6Vf%}QdL&k99G
zDz}kAgW~_uvS6)pMx;GaFQ_>i(R5Oah1GU%^EbaCzl_Iy&6?M;+TASC`d#Cel~s#;
zJ&t6ynfxR7oGwRh+ecIkR=t)xDcH7G`!pFeZ|^da-GqZ|MMXo}9jVB@zu%UVq_XbX
zWN3KeI!o|?blJmh^ksYB=ZE9*e*|L0uD1<ze;=k23560Wkf8Tms32Gopz?=9r!;`P
z{~<z%{j5jcgfS=y%H04Kq5eq@Wj<ujD&n@|6QAq28;b7JGrV<O1bLx!9rsuj{B{5d
zk{1%o5)w>6i+MeN%+$<XV8;C$pDgKh>qCG>0x@6?JMR*g%83DZL@1Zaq*G=8$izpa
zB(M3hvIlmqK*uz~t;XCm6$^=e28C(AoXuwog|9%*Tp#{UPDFVUV_qkQMCtK|#GGGG
zoywTW`aPrU?Y2H9HC`Vc<60`EdY|#co^99Q{`Sal#^P%tD=RbV`yEuPpUtT`S8*Qe
z)6f43FyC*M_@1k7e_Sk9W7mv&ovQ$$qw`?(yNL1%g_Gs>H6MEcpVlGq%&(swk2aGB
z2{}c1b~JuEkv?yEDVUQ(ETUZ`3{_1iY~5QEW<hdou)?4X@be#g{ppS^RnsH-PfL+(
z0OSYttvI2cHcbzl9FiTQsjjy{9DHa1UyEXR6e$B%i>#JG=zve?fx}o8*1tQx0P+=_
z-1w*6o6xbFR_^Si=o5!VELacaYzYA3P`xsKrG7nh?`K{XvXl<}^b2UvBo2AfQ$RSM
z_T-Q?Q$Ra_Xqnz)8Cg`N<;YDv2-uKUwZ>%?AoCkUnLVjMJYX#qD@+!6JW6GVN`2UJ
z(L%laD|*qN;XEu{3ypsdjXFB-+jaV&))__~LlYzK3e=uR)oW}d^KY<j9kyM)-??1M
zDA>PnZ|=X<?Ak-^=a;tB=a-Oh!tR=uPZzdUQeu{IJc~Uw>S0t^=&rdv^3<5%b5YaR
z?=!~JRg8uzW*<<B0|L}?q~b|#EWx{}J<l(B=7fBB`dfCD-rW6l=)~{z*t&n!x}VI*
zhsS(&^&(#>Z@1l>f7)*D!Rt~x(UZmUlLrss^kxpVI~gqvU)voPatEy&_>&NbzhZav
zlpm+*c+ZB(3m!}3y_?x!+)m{B#4X4dGqh0teul5_cR6eSh2rodDO0nc1<UsXvGJM#
z6Ol5m{psuyZ+f@QQGOR@Xm0QPc1++>Z$4RRZ?!tVm=}BU$t*0ouyc(Ht24lGX-ji7
z_yfBN;s*Jezv-1D&ZVGPu?r<~9Yim}L+lg?CT@WPdISdo9I9fEU_Tg&Y8`4vNu+&0
zU%zo}6RqX@cT9XO0(o^@?g><Ex3m#GziA2&#4VCdpF$1h$9grF+Ew2)xOsS6`ulOP
zv4g{E`4G|3ZiK>G1X<C_y9bs&FEOIVu6g71pX@J1?sfF$pY(3;grCpqNuI4?b<A~R
ztE*P(Io^EE7~uX!F^vnRro(7&)-YdpdNGqR!<Fm$U~{6!3K<TqMOF|}-|6R<H@BoU
zELsKCoQfAfI5lUXej#N>LkyIp+%U}~FjGcVMA@a<_J5e^yzBgnZn(}tIIq;V;bq{&
z=U>lg!r!cA>^<PIAWC3T6-JPMd+~Tl@J>?F{k-BkWfn(<c~^f?zp#{q4UY<I+hMg@
zZ$E!d`(qf5P-Q~*TgSqUcy|2U=H`$Y$g!5cIr83`z(=l60jD?5bBubw#zYk7w^s9#
zatOEBJ}HyJ@bmA=k)Lv18_W)BZW}+-RK1%>7OC@U@YmnIy+0P>r?_L9mCML=83<XS
zw#X_PNjhp`Xt#b|cw0F2;OVPR8v|=z%jP9jFBGdQXOfsVwh0Ow^X-zp<+qggS&{cL
zb+dYN-d#7tO%<_)ze0D{QtS;qe7~NsC%o7cR1Y%Fwy9B{bxXX1{bS9I=MfiL;q+sP
zwSY7PF_tqIa{Xi4Q~qxrLBepM@O?|;)pTChxB{iU(RTx<n1{lX=goQ4lDqYs><dS0
zb~Q1P*bKxB{9pbE+JCCgD976+V`<N1%$XO~BSlNbamn=2?fi2luY)U@eJ$$Sy&K6-
zuL(I>qnB*6#8I)4G__AF=#*Zys0<+pIcgR<=j6K1&HwC;3b}NA!yvr7xMnbz>d&Lp
zeL5e%)!pfhh4Mw?_3a<k4K;a9bSkegLTZ#Q>ghiQ+22|^B0=2dR;2G&XS0i%=qRpz
z5_zq0ia(Xdr@&xoN%YF>=Ck)9E$NY}0DE4?HZcgNo|u)ko$t81AoeeJ{ZBq)k>6{d
zyE;dtsB?Z@esA<!;NsYmxYL{9%4IiWT!T*U!^U`?>8EU)o}NOVx*8%g9Q^ZF^4N$6
zkIWyF94F`C%h4?_@X694-keGj2a#_g%(?goqq*jLSXWMV6Y={L>K5EBJ*n|Naz|_V
z!{wzuk&S4P=gA8jx}pB<$qI8>&mCUU;WrOelbvq8l4~gcNkxm!cd*4J2TNig!g~ZP
z9*IZ)Za{U~u(YyT+2NxQQ&RW8OKJ~ADe7OTc{)DT>EPC3I6wbmFYWtW#q7P+)7h76
zHDi{JAA@BdobRE3R1WsL>b+(kMDEX6olWn$M~v3;6)#NkaKPBu9X*pgHko4ncb@C?
zc;1}(InLJaJgUqg6dRiyYa0Z4mT;Oer=Xxcr6bPkj-_S_U%L#?o%OSI>~bm>T=V!y
zHFxs;?T0}mYZC=Dwe{WTKg^<S-*-(He{wzPFj;KmJ94^YXS0@`NXhh_E-(=u4b~u3
zecB@OsHOE~i*x4d1rydMB(Z<?O&ekz2;P^x%GkAaPVB}aU-v58^OT?Z;dLxW*shaP
z8gn^-;iFepIBZZvjd1)aUAAHWgynT1(W;POH&!TyWBbh4+wIAAII>dAf>-Ic22-^?
zBOBegR8E(^etPck%Xd)vq}J>WuS@>T{c7#b!C3J(tpeve5Ph7NYMnpXpBduWmfURl
zjOENkfivj#Lq})~09cWtl65n#`-Na$YF;78RmBM2g&cRS-@YEAgGyg}=uGaJlvKVq
z=zp@?+splt4YyQuq^<pX`3~v_iQj#A_V3Ot%eTblZ-8PY$F+)nEo2<G*<5*MM(fE=
zN*g$1j8}7J(vk!DExD_eCz}mK>x&wn^*xl$YJ`4J@FwFhu&T}**j_*9-^8;G<=Z~A
z>uPLIer#1n`;j-Tpb0a&QkL7U@}`c?qwej<&b)l{wr>yFHqVQN8fIjKv}Yck<L!={
zn4i0ZaJ_t8f<W|<ZH*cQ?d>bfhS+b5P%))&-xy4N{e1aKt226$*W~Q`F6B9#LIgTw
zIoa<zbXy^yCUrwP)Yl8Kr-?bI^uoEG18<1W_dArwv0`eaR;sAyld5oBo=+=iDSQ6>
zQ|A(!l|uM?Mqjy$*(Qg#j*BtR@${r9rHPNYM0qK?eQa;9RuRz>;qSS7rtX<ex`>z)
zIm$C0PS2>qTw8yUq^P<$!g|>FEqRmfWX3tgPm|(@Qx;#dNze{QGWmRv5SnAU6o!*)
zCF#&gj`9s=f`P6n-WM;cr-`|TNiZ^Bjh{?#cF+@FLumhvrXt@w2@Hd{fX>2_Bx%40
zprWwDn;@Uz`z!3G4gG1B(oUgAE^XmTr1u%Lwnv|2;iLRaIZ4%^Y56`y(yX54<`j1}
zLlxR{^FmJJ3FVapOA<U&Y3K7j-wExz%lA1W(TH~E)$DFulUJJa;tHMZP$f2BYB!hO
zTjn>HA>G#Fs9Je_;gpX?L7z93I2V24b8~%s`B_7_qThA>>2kdQ2AZ9nIc8yG<f`)&
z$oDsa22z9Q8Vj1ktoU!Oarq5rqBf$tH_q8PiK9n?1#XYbko?*TnqyH^gVIHy{ofxp
zCVw*!y2mw3jS}D``si|HQ#Tm%bZ(Lb#J2e?`Wkb_aZJ~CNA#L*ne*gi{&f>nXtW68
z3wawu%lVmH!LfAlH|xrH?IT3{+oNKJfBNT#Ah(^s`4{%#yrxXNrfqwACy(rQ>WUAk
zDPwxQ#MkexZg@F|ew~uUub$IDMR=SiYf?<v%cw>UQ3S8`Iq9b_Vch$8PK{`(mk8XQ
zZsI458d-XE5O>7zFF(e6P9UazN`URODIli;{00q;QGP)QW~ggkt4u9c)5POCWqdW)
z#JnHp<Mw=M%?BUqPbVIW-$rBa-a0?uPHLtdU^-~MWFSQDmR{cyJ5x5WR0W|fV^^9f
z(2T0nA;sevF}B&Wq92rLt5_&TX)vdGc}&K~&U*}t)-J0ehP0CBlK1U810JTtJ)R~p
zr>Y%nL`9DM@Huwysj({`^ah~w|C<5UJ9v1NU(S|gy@IT}Z`Dc%qFIhbc2iUy{r+}d
zlG0qCu}$Uivp^h1ICs&CT*XuO^;3F;TO{g`D$tEOD+bZ_y|{3q*ZId{(yP<IPg#gZ
zXw=pw*G5TyMYQL9T|3fr{K(PFx7tiL_T_Z><4Xn80g5O;KL=UaMjTeEx{#A0x)>bq
zyg9b}`N>=HO*Evx!8ramMrIwtH&?Zauj{mF%@R4LuQL~>%DO6lnc<o&Yu<8BPMouH
zegEs&i<LD>cT$qLk78?dAA^A=gL2h?^-V-G`?5C9zmG1+AJaMGo7$gDHB5sXrARUI
zGBiJIH#A>V^l5Hh1ImJ{(vsRco@YCj62q@qZ^iPoOlW)5K2nV=-=YiE+~$hq-u`yJ
zy}9#{)x{Qjb-$p@HbiwN$qfe4SwS72{hWGztY9Ny%DF5e!LSAS3-FPu7L&0dOjS#!
z&*ZLG)rg{mN6*hjdVfW>6Lf{PrngJo<uoFkEKS*d@YlpeMu#pJWqw9q%w8b>c02!O
zxP1;`A`z}<+f@1SOQc|7SORJ*J+`~bFID^n^7DlTRXFul!)c^_MGOcO|9@<~by(J0
z6E6H9DhdKp(jXxy4bmV;C?P1KbcaZHw{#;SAqYq*NK1E@ba!`yNY^)y`#s<J=WyxX
z*M(24wSKc^?wPq~rtmjX+f)(p<7a($p5H!wnL1T7ATaHSDqwHA6InAbb&+Z!^$ayp
zwzCoB;rRR!fh}U#<LgY0-aie<!{tZIMfj4IWcQeXKC6kA>wtdm$BW(bOF_Dyfv0uF
z@)z@-@WCY!WH-mN+|9o{z3J)F5?WvA;Y#u{%-+&A-&;tenw+(!42Sj7h=y!4eg3>a
z4^_v4-nTjdUnw_(>Q>#nKScwKy|^KedHoC*ui%NjKuK$hC<D%Yoa;?3EkW$?A5rR9
za~|3ZwXm%_tULmo)xrdn!pU`m5iE{>E~zBD7<T&E{|R5#`f}pn%S|a+&RHbEMrveo
zTMSB0*3s?+Pm#UX4agWFP~t=&Y<mMI#<NVhH+g7(s42cg^;AvphSJiMl3biuf_t<u
zy(tWnwaRnk@|0imY-1zC!qDeF0w!N@9&Vl>4lrfgD!zvPNOE59HbUX#Udv~2<+_g`
z<!SjQm0GN!{C~IrKg8^T2G-JqKtLJh$E?0@Qa{8ZU;67wgp1}V1~X^J+474^NX!iN
zNUUuk%oJ$Mxvzjx31l2(;A0G{<~R5q$SyP7Ik72P+6;TyCBZpQI*$^#P1S0tNW2i8
z2?E&VBwY#Y&%<jj`ETs+Bte+v_BDyDkDop<b!$~Shqmu&&XiyxzR5j=y7*+ptO#hs
zSyskd@QI&~kNAD}*YXL<z`&s8X5T>`6PLeb|4^^o8)PTaoY}0e*|?C>P3pw9MMD@$
zuQMSj{wq6co*5@%yUxEco03?by;pUK-4K{M&$u{oNDS;LWO<)jkePXsl-qS;=HxcP
z4Mq2`XQ)iATwvA6Tbuk4zZ5gv2$$y(jd}%VIP5h;nB%Q{;S}1x{--Jr8gu%lGz^0>
z=-buP95*5mrkWg`{mFO7e2x^u>;Bv)P8^T%kMgMWD#L4@uL)CivHg4ga$5Cn5^2lB
zC<fQlc9hf)%#mYTq|h7Svc$!KUScD3#u~@_(vhO}ij7dAD@uIpWbsTsJC@qJ`g1L1
zU_iFWb4`K~E-GXHWcq(ne*90$rH$7u5?$)hI=u9wvAo+1TuCyUhPBS-0D^G4I%B@M
ziVG|a!=E!WxG`?ArBmZPKG_h=sF>T7#BJ`A@b;PrqDJ}@9Xg-+yrur|mRfsHOh+S#
z4?2xP>kWu)2Ht;~qlk)t;on^>UmaJ83EX))Fetw=v@9yQKi5$K%;&*B$AI3k4)*bV
z%sj*_JDkAK3DydSJ1pXSc|DRLrWc8ID34+f^%^9*n@r@0*AARq?=v5qKYJ#wU--$R
zCNyZAPLR|6t~3MbZvV;%3W96rW}u!bT_R?WM|&r3>mUzjke*@=I-#27Lws~jZmut#
zJd^Eun^|eJkt@uE!c|`rn1$ReMp&v!O_Z|qii+L#u46ML&VG>ij@fd~!?CwnBe<#d
z!;s6ovGrs$${COK>UX#Y8x8d@>T!mPo%^y<Ib}pVIBU>rH^K}mXtF<1Nz|EBii?-5
zSr|3*I+b7RVIlJxiNW;0k0@mzjmR5PN-36k8E<ZKGU@uxPGbM8zpBq%nWGPtGKsNy
z$DPT$(EIv~W@b~=CskK_&EQW#H>-|6vR-cJl#s*uq<r{rkr8N$fy54=3Ip0o%w8}w
zoj>I<RTEO5<Q`QBs?Y7-qDzuZa<HgPmx-yI@Ac(ia@%?NuB1~XXesjDahLuprt*<S
zuRbuP4sGgbi0!v;@%qR&A#tbnKg<Lwdm?n=K$*Lp^U=h~V&Mt<1s9*$N1MWX6y5T!
zdqwEDB3A;I(G5fWIuP~J_{hgYpP2=vImYc!AOH-@k`G7-37J%ry+6s<LjGEdH!-ok
z@E7IO1|1^zdctSlX$Zj|qrNR|5`G!|^`>WGxdPH<66CYEwfu7uz&IG_y8up#Ly<t~
z-)3QHCf{<5o1$6&Vw6|ArQPZgnr+nQdX4>2`ue%?r#pZ*rxZ5A!Wgp7f;ZkB+;S1X
z5ZbnP?8>M{;@iHbkc<{D@%0F!&O%0-F!fpFUGHW3Om?6UJ1HoW=G8Ce#O%Uik@ugR
zB0?cJcFC8q*=}^VoeOd8da~U$)hqShtH*`4ClO;O)kZU8@{)<X{#E^9Gid$481ItB
z2TpLwI=Uzz1mhXE1Awc`_EtVdfk&AaH{}v~yul_Ik<k^953rQP(Kp)j_a$+rg{)EG
z>%qTlh-S^zbN?o=9B$Qk@nJiba@BlIE-?G|pLUL_B1a<4i$DD67Cf^BW15cI*_U>-
zx1Ku5(y-hc)cxL2JX3t=c(7~N`LU9^ZXmgfJye$8_3svQcIb$9NFLtHXW{jC_|9HI
z1uAFcxdsA3+{K(7uo^~!^e-Pl4oAV5C2c#V^c~)p{Yg|I$88i!vd-T5Bw|(2dm_e)
zd|*~lR@J<iFg{T|tRtqWCSwOj#X7G9PZ?TPTohAIl0R_V*W%d)(|cStp|g75Me@Nl
zjz2#U2pa`+N25J9ri#{G|NA26{a>`GV7Ir>E!PTSQ-#}GU)>lYTG|RI4ae76qs4Bk
zChP0XXbk=1{IyE`1FL)Q{61v|q@{hD@t*9?sq$5+pF}`4Q-Eo3veMao`e~`>`WTMQ
zVv3oW<)2j><c)uE`27Zs*CKCha`Rrcb((>~eVROUw8us8iyH{|bjzjUz%7c7-DKI8
ziK}+MW}g#kx=uoumjnx@<^<-Gxe{jHSd4UM$=MY+fPSer6FQWiOyRLIA2ychyiB-6
zeGdxsyJ@wLM-m?qWiGkhNI{LqJl(Wp`3I@XZjeIITG%~1Jtkb{i`r;{Lan4P=$*9t
z%0wL8G$HR+d*|70KjB>5KJw<MQ*PdAa~Tbsv1>K`|3Yq<*Zq9BzP;l8VGy<8f6ibS
zw855%7Zo2_dTH7}p}M_<_!3O6-z^{6RNOhXYPEkT@!rW!nLI8|A#6cq34y>~>At97
zBTI^!9UP&EUkGhoE}E`!OBY6pjV7Nf`R$n~-DyLf>*4mT>QSWNYg*cwx}6ys=wQmb
z*MuTN6K}7%{_SGs<VLwVI@_lIiLLdp(PO*E-#UOM%z_9N`~9P^OZl)#HM`!=gAIKz
zuQ|})rb8>cue>z8wGSj{y9gJ)Ylxzu(0gG%8CQ>Tfl%HSy&DA>4THY_DUD4;9BqyO
zQoOM)zY#G0<a%KDl%7yurt4?jiR{8Sd7-w1;txHeM-S`Lrxr}IND2g5(BeL+!Xu-y
zi4a|8@|~PO0lA|(ver&AUuS1!rtmAasoLxAqfXPvtuxWmBs_ZLx2k5w$+_0sn<3_w
zik04#m$~QO?P%};n}uMQdaje1cjCqFFwLdqP6P7~r67}ng$+`qG9OsVJ$6jEM$zTL
ztI8XF6^@59#@|SJjG43oR|FTTA5GD<*7T#G{PDW$U8+{JuJB@o&|XCzQMIAo^Mh{R
zFspZAI%nr~VT@ce&a_X}jcN)BU;0@cg|G3RM31Yd=d9f?s9}<%qsuREqqU1k@_(YK
zB}9gh)0puo+C&FIN0F5x-%P)@N$Z*L*0Wmt>8u<*Q^otc&(C<Fz~TXc?!x<#-6da+
z^O1fXWq}FOFnhBr+~3TZjqzGDb(O6_2!x0Fs<#qYm-sKgp+U_rGY-Pc%R+Spnu#(T
zVq{gP*&Jg665oh_*JtTs7IMySZn42W{ySQr`l(zp*~No_^TDYinjfu;xfC;JGx7lk
zN|}l!nLly6vH3pYH;Y079<fbH3{sFa){n^WmV?hwr}kEQFzz0BDD4eSXDPF_kT3Z0
zH9CAGzb^9B{x#;WU}LNDjC(xhBdCZ(%~|h*V834%PzPKrwY?M&@{_?3X(~7jB;{QI
zxa#8_OVekinV26@<xinSC`7vO6~$K#d>*8tdF9b}D7HWUDee>h`A01%JUuA?g0AFx
zF==?-n#g#(I-%CalwFT~GBlr)0g*H9qHr3}t4(>oslv#~qCinhp@oNCM_h_TX52tJ
zy7&HFHV{qjSlWX3PIEaD*Blv{RKET!$84iqcGla+6&~bT?;TC^E_|ZqbQkCKh+R=E
z07PAQOUbTr(7#hG$$ETyJ*0}EK;zbH3!9JVGICH5f^)!z6cr4lsKkN$BZ;)koyrt3
zsPJ@`(JB_aZ}C|qK~H9QK-BMsLNhD|>!+l~w{?e*y{k6;A>tHyndNhZh8IB`A9IR=
z0G-PYVc+bZ|H^oOQJ<tkr{g&e7YrzycJqBC^v}4a9Ex}T@!Gz~RK7>+UGftL!(LzK
zpDzSWbKoc8qsxn=Gz#`u2XWjn^nWfcJr|B$%limvQx*O@2&7{JDyydf>HGi|kg$I7
zS86@NbV5S^F%kz1s!L+tlgE24!OgnY2ya5vb<;dk&Zp`4KW}ik6E#SKEcXBRa<Ho6
zg9HF0d25Zxz`CXxMCqATeeWv3l;zha96Hpngf;2!gJH<$)<l)HId~Y6^Y|Ykj@SZy
zaaz2YqFUIVayaf*#N{7gswU@&(QQ$IhPdldaUGO+PK&EeIxe2pC9!Ym#u>jL@+fsO
zRR{uvHN38#Xqc|a1)Tb3`AHkIO8h&d=I(x!yTz>&U0A7_6`r@<yN^rHZt5*RR62GZ
zji=4Tuoy|r&!(7B&uqGKbHNZMc)RdB3y+zU7rIwiv!VesX!=t|mVKdx>2+=U!+$8j
z@k*Ti@~jECqS9<{=8VBU11G_+Egt$YEh?xX4Lwz<xRzrJ5&%I`VtoWoLGZ{EyTsLs
z+-Qto-d^m+!G@Ht<5revB%d0f?apW8F*>-fg`+gy1{an`$(``(War^cl05+PALgq!
zW%W14nrR{`^mheaWF;%eQDa!vF9@u>ri`Op#X^8HSZYZt9<4Nz(a2@?<oX8;dfYM4
zS(!6xe9d^2Ndxn`^$9<(i9INu%c^%2exLnye$2lQ=e5T&M4%U981qkelsdPssA}zs
z`@Pt=tI6+y7)0Fu5{%D5_^1e}=D2>X`k9Uo;j+X@>IXx8*J(8<)#I(VDnD8-?SI}`
zxcKVA2hZW2c^Iy#GADiqy~FmC>j;Ao-7F;6dfi3jk_F)za?SuxL|<i$Ctl4hA5gL^
z5+y^}GLf7vN#&WW`0_)4Ufsr&<k%eB4a-ehkM}Y$P^t{l;>P;$sYkWVS7zb17LBs+
zwG&qJmiNBlAotkLVEY}+-=O$l^q4dc^2>iyZ7Jyi25RUF1Aq+v*3Q(-WK3Kz{ihrV
zM6_`uo#fPNV`IhFAkxvVqIKXKEp1HClxA#8PLa$QjJf$hac5v=jM2g88y6|bb}<-J
zuZPg@P<mlfiFIw;6ydRX|D#K{iG~oq8suaplh8M@EsIR6iGkQwd;>(J2yBK1vs36&
za+Pb_2wzPLrwttvTPw-@SwYi5N-SC9d?2(WQM03}B>|Xr9m~$kM8M%GZeLxalHmV+
zv!%^vZCIYN(AeK<9}GHp<Pqszl&M;)CysOg{Nq{h^M}wPa()%sBE&U{t%K-=gnl$P
zd;Qy6>Hki%%&HP)jgJ7~NxUgB^@x>{A>a0v!#mJ%FZ^Nl$Kdz(gjmf0Iu~ZKRb92$
zv;&wtk$wdbt@Z8h3=I-u{6s#QDQ>kjzfz?e+Vx>FgM%BpyW-d{{Pnp&qNn<)Y&)XU
z8=1(jfk0M*sDruw_9)Z)dm0v8pcnq)gFirv{L(-oOlSK!xuzd6vtz!?gimSUOpRzX
zc1y2_0*~Y^8bY7!@OO=Ws?PjEu(>4#;~bDcVg6OjthV31o+q<<YnB10gGWkP2;hS0
z2O~8Ttxd%I=qdZha!F=#bR3oP-8FCaH**GSY}tNxB^?hzn?Puxr4al0K35i*2#QR9
zgxLukxbM4zk1l**CQ{QIsZxZXp_*M#Nd-#gn5v=q(6{W0`u@4U(DHTH*EK&9Vxa4#
z@`c51Ws3DjpRgdl>-P??ni<&(0Oz0pQfKN;W+})Q*|f$7qi<u|B5$JpZAe4<!@HE@
zKi=-jA$j4iOHe|)qWfZ1(iAIFjUPY7ePxLj6Mm)2e<zE|rlb)qtCdaVU(pmQ1(@iP
zP)y!T4K!AKy_3XX899f(=tXt1Dml|Nwt&;9gx38p-?pjE>`<e3%G-|qk&sDt<qH`Q
zh@)@=Mj>i72w4?NsZDvVU@t%IQ2SH)&P?<>GA74UG=%AR*2ML~U#Ixk9mzlxM;&vB
zlZMPpogt;fLqFuLWCnNLI5HWnxZvBId2HS%k>#cv7+qsd^Kr3*BZ@rtFJ-8x4UScL
z8K^r<PTU)gJ{>lDI5aM<H2-fUZDFK8GoX=on*rQ3GvhDcqOt883VzUuEO%a+ji=-o
zHFYnX%<rq0NKswWK6US(*m>Y}KOkI8ObmK04l=H+$;LM>5*_?5r4#0<NkWEb`<^zt
z4~m0b8T|h1o|#az>|X<~3e;@$2OK@e7ip!_F9wadu8Y(``_klrwQmD!`OxPWx<wxz
zm!FC@{Y{R>`qz0Q<5e28&p1q_`=tO+=Lb8=3-Kq(@aAd91xy$vg$aF<=Sx;s4SoFm
zQ4wz$2vSl~?%%owaV*4YRxak%oeAjki9<l}fP#jJ>5h?+kzCf$Ees4XW#w32Xc!)l
zQMx54PfNEOa5Lp%Mfx@PwqH`!ac0-FL2TPZL0YL(P(*SR^$s`3w!$JhmU`E0Z((6Q
zS5_v1(ZR52XoV*Q;jPj}8(MmLy@Btt@PdGl5OL_u{>m4b2^<Up(++M$BiJKwp$AP4
zlbCNH1Ub3}8Y1pSJb=T7rx}*4t9ti(q&+3fSI4KMr>75A7>13(=r>sI7KKvg+n}g%
zli}=o=w<Cf<qWEb`U&WHxTuC%Bsd-wP5pCs56U3A?fR#hO6tjIL*M`Z(O#m-PoY;T
z^g77Z&@Fz9G!a}ARfE{j>^*`S6#L-*VN&%C1Z14i{5m$7$uMzLkkK^8kSwCchK35a
zuP{Ank9VhP|D}H`$KN0`6-*;uEQ>CBk}_`7QBN3#T2N{$0Zs9h-<idx$~~Oj*$Myr
z86R<akGj3ReIEL3ky&lRa9L<#-H>>G4^BKlRfSvXW_b)MKnY7WF%vjw=fO*xE``B2
zNbwsUQ{hLDI6~Jk2m^v(G_3>%2F{xuXdpv^(52OC8`&BTYsJUUZ@%sWYCu@nz0$3z
zO2XviWDOx<92IO|(GT#Yz^{tjg7MRA0zwZS+yH7|mQvo$Z?B%Bo(@yObZ@Ww&_+M5
z$^l+xI#odcONFy;>+ar8-|>SbO1@gAZZ5>W)4YGSkHlHvJge}h2_@&4KQ%777pKPc
zFv~pOmiJ;j^|31z<);1`TZN2<dT?s(=SEG2fQyU)8wN{=m$!0sSY_tl6r0+bd)$Tv
z|HBcQ!o!x`W#elhmVIEK#MDyU&p*jzQP&l8bJezv?4NHJn`-+^&NKKy%@gW%YCr?6
z%}q@K?Gy;Q_WAsLwgLt#=<yD_ehy>G54Wd+;jm%G%Y7KG0?knaLPMX)$lO8PhmObb
z+-42KIcjh_uNSLMG2pzD43ZER*9H-tcN#KAPU_A#pW?SNRaK2^r#AA_kCaXqm6W_S
zKR=I@>4GCBXqD$HN>xKxG{})WIXw!q<rOFHI2guGz{iLW##0+O&27=}fXxs)U&93`
z`^#3cnt@9#xcK&$-pQW@wht9`URbk~_=Ghrvz4cd89k^i!XkDWYI~IH8}EHRHw+hm
z82j%D6s>dRn@_c#UF;u_2o@hPbQ?0DAO<8Vw0(Y{`jt&2Ls~<^{ZXs`%xCSeeoTzk
z3NZ#8ONJlUw60u9UmoJh{BiKh^M3-RFVEc~vDWyaB+p;YNH3PYd9v3c?GZw>sa=qS
zienc7fbO;5Vu5I~VKFN=_b}}v+FRG4yB;QjPD&?A+83l8Lfm4hecIDiPSB^0r`%T<
zIx}bIhe5mfI4+YWx68}Rd3Na0XEj@g5_uiGeSOkym>u8;llB777OkD)1CgELAi`He
zXA_~jFE0!MoY|8LCsckZw_Q>8VLE-$j`cN`u}@!vr5dO5O;a555*8HSq5d)-Oey<?
zf+dfFWq)m(bP4^v%fQQDT3QvMM`2S<rAiF19V=_P7Rve7R|u52wNFiA*whWe53o<Q
zFT90_HjU$Qaj$E?a)wGx))q$pJXFLrH!_^F_&G<xQPS;~eni);!oa2{U1dD`OAo&2
zt9OoizQT!B9+KGSv;i4BV3pmLVKDM&kx}HaAO{ET$;k;!D3CBT%up^S!^QPFKR?F`
zU)kBgewsvN!6yVQtX+<_pIKV6+3!q;g7lH`TGr`@Bqh0{eA?VJMYi1!JcwdcvcHO_
zO+k5)ESFymV}Ni}WFUlCb^fg0Gxz(jBG2s7qB>nhrIDGaK{$OTT$kN3CuX6pUQxHg
z;mug>DAMIndsM{N&fL284uakNe2LK~+hq=AkGILUeImTclTqaqW_*5+(|xT}_098m
zB=NhaG{SX{TTv!@ZcE~PZflsIZ|eM3c-LXe&Whtg(-J!3ZjX^*%kjxW3p6CAr+@%4
zp-{PBTeVU$OYXBx^ec+fwY#rhfv@QNIho#6>uYOoE)6GVkwPt?Cd+KiY7$VtAEeWb
z6~=PpGn?$Gpl!J6hKTr}=yCMpSpF6~)@+KYl@)iRqi2&0c@mSS-&lGuH9XL>?wu|a
z_)8p$>cgdpJ{YD!0k`t8c2?$_f8a#t7qej*>2j9-M?NWLe1)s1*K&d0gh9<K<Lft@
zk{*dS-I=KrI`lOea$MTAbDgZppZjzhQt@B@->LZGJaiNU+==s6x5VR}A(SqOiZ^4f
z^k44CU|F_MdR2cLKv~IE)T@{*vas!FD%>jx`!v9O6iTt~<NaFte67$VKz6vb{9vSU
zPWwIQhXAH9xHML<Q81WzXC*Ka{#q}6H0Ds3XH9dfA10}soLujc4d?~i(N8oWIW{ZZ
z&qPH<v)snU#!S~l#8FkB+Y{@~yK{_1SLucMrob?!l*D`{Nk70}`ily4a5*4#;u%J-
z5)u6*W63+gax+uvBj01YzG#3z+ADhk4)<0LpHl8z@hOC~3U~SfH{?oH5Z@zq%U9$j
z3=Gyr!49*7xIEVZf0bR)EiKKeP!CtNAo>+&nzor{L(`7((-Yj={4#Q-JhhBxT320`
zh^MC3RQ9fJs2D9}3p{TGahmVl7r*dITc8rx&|BSMx^)d=Ag->04ULTjFw7VB7BGQ_
zi`#jayBz|(d-r&~?%(I;E*XN+g2P}zN`C&j`8R5?Wgj!p7DD^8a?Vt+--e&Qmy*-$
zXzc<pHP%SzmWIdg{$wN|(m0)ceK92}5ROm9l{MMW_cs?nDS*PK9q2Y@vI`pIJFNb>
z3wzi$Na~2Yvk}uU>)#Ll`w7>J@2}<^sL^>QY~H9M;>I`Hkf3oByYF?b5!X7+cbKqp
zdb0efgZZeGXXf}k;S2UE-jLRX6(_gPaY|Lm?N?jXK~XzdR<aZJJEqj@q^_kuG<7mk
z%-hw4M`mZWBllW@iAaRGDc-9~<tS#s*ex%BQ;`cWGa>#fD?h&~8TQk!Nzu`M(6E$R
zQ1I)8L7?GNUe}7d*f00ljhyxx*8AiL-|D(FysOH0<~$_pZmvl^akPxXzO*ZW24S<D
zl#z!N<A3-gn@X%6l<3ryyG00ad}GPLPZBN^4SY~|P?|t89zfJ>WZ2bb9oEpJ;5zw>
zVe;5<nV|*Tz?;87Sdj4!wVJZ9B`dzNKkMRc>Z9n5icWvEajypURZTBb5PJUnx-)vv
z6!r6jMGgu=1f@GC%uMimR#e~ri{@}Ch;O*@k>YX5MWFa#7Q_Y>+si(wLcs>i85yv_
z9GdVu0a50X^23Wbkbd#varp~s28N%Fe1IE_i%F0eGV`t5-FG{0VB3?DM~V{!?zwb<
z+TM%gHoKkZ>9M@rZI3eW84KXoj-U?^r%k)aBQfxm&+f;Xv2Ixu^m7_$Y1@7MTOo4c
za>F#D><Ux_@&rFek9_H5H&7?2F-{hqzF6!YN6Yj09EkSgB)|p^!?b?+fja~jupkEu
z9+omc842R&M*Ob7$Kt#Y5Hj4TdS!gAH`W)!7~<8!`aGWV)aE_jue7-g6D;gSI~#dq
zsj3mktYuqG@CfIC4C#f#tQQRagqP<dL%!INpFYVfJCttS!Z{EIG&OG`0LTe;n-Dkh
zXB)#LDnes;Stw5g>mhUA<1vGbuZKrg=3E}@M6dSt{uU&*8NIahxX{4CchA-3+Q-O}
zNQLez{{0xTVYd;5bdJeIlYbA}VI#4E!Z9jAAJ@dXTB=qoSp=uHntxh0j)<-K@_yC~
z=>Ov!%(VTl2s7y!L&3W>Hh^Asg0UH>mGTzzU@d_pVo*}-Up`FQ6&}(Ow{5}5H#KxJ
z#pj`v9XlU*yD?$!urDPH4exaxL@7Xgvf<V)u575uBlGhF!_XZ&r{(96aisJ*fT_ru
zBZjEov~$e1M{g`yG31?!%JUZO$pxp##}ksY-kRB0hW|*7H64x~(aEoL%VK|)UX1t~
zxYT>_<8H;}XQ?3@HR+CxxrMb+gU<A&gZaHXTM|LiCa>SBV!V261uoFoH2~@HF~=g?
zLzg@DDcz%PzlefcDi(zPAMBK6><=YBBdRk4nF1i)6ku2v6dc?Lz~dv_ys1iu;ObR?
z<9A6(84rJ2wCBhE)Tt5ySPyt40$$MD+dGYU$@1`A-Re=PdbTY$+{idt76(5oQRU@r
zZ2*knKWMPh34?N;Mt2@IC;x50!W&B5KGgN9d;m{$Cz#RV|8N0zZA&HQqlt44i5dR&
z4$N?IXUJ$d_~ooWl~G?S8);XuV=Lj7$~@&zk%b-?Il#wb!mi#zeT(|Vzwteo4*^T-
z-mryf1jw}kX1CiI4%7o&^sUcuT(AXZVZg!Y{4!hm9W`3*!h_J>nXb+`Jfg?$`O{q6
zeNU%nPTgwa(5C}-Fh69sP-)lsdB;3pOZcAb(T9p}@}@flPv$s4YGgmn`?bbccL)fU
z^!E_VT*xyB^{`8O3LoxD!YwL2)kJQ0g>Cb36O0WJ7vGxr^9-fMqC6mw^(y3JLJSJx
z=u{wetEQ)J>L6iz63JGgC##Y3%cN0fvnW#Qq5K-a?+blm#5uo#r$PPbQD$p+mfXXp
zXiAubaN%4(^q|mfZf7ARwk#=s$FQcXItv5i-&KxH0Ts4+L6-LCE+HG|TPf18YW)&c
ztRxov32S&h0)jnR8!hoge+>EFt1VuS+-V+|(hPYwB<is#5Et$yu`gi9f<%#O_Jt`Z
zS@u~-+D-DpBo5yQM&mmy%U_Y&+lER+D;@%o>fD<<#_w!jA=y0SRet+QS$EkdvK(GM
z6;FUj)<GN~T5wDW!F=a@;sd#teEHJcj<Nc|ZLi+Ed8(Ae$IzPDbi7E)bO(o$a>o2Y
zkvfaSf0j?S1ZK(Jg)te=V1$T;-vo`<TZ%2ZbV?V;w6a^t<$KHHCPh3m%7AgWSBmW>
z4|UCUT#Q(;kjv&c_&c4&8?6#nn{)f=F(+}wfT~`@F*~m<@9os*p`s2z!w}jz8>VQv
zoGG9_Kgbfj1K6(Ni`pn8Nk5Bq=0%B$R|jtiWhnW=p|h}b>&L6+l*n<4>t}&Q2Gc}c
zg7W$yehzMLOG;`g3@R}DWl8<b;w0kh*AS=u<pYJ)!Jg}_nk`ybYZF1|uT&rP+b}SZ
zf$4p10ui)2aKXV}hM>~{O>5!rf-Ch$+<vF`UE}D-&2y41Dp4K><HpfNP8e@dX}6ME
zXt#!Kk<;c+2z$IIeD>M)aj=H`n5Qt^@*LoXy^}Z6k`Jz3?k}8&(c`|(gP4`GhQ2<W
z4>6)@uZ1*+fe173{(`<7cxe!k_$HqTK?&$$K2DDPl+5H9X1fd<S6Y3V%x4D6!c${M
zy{-rTzFEoXXt4>QEkC&}e?t2dIp8R{hxqUZJX7v5b0Uk3I>m?hh+cEA_?zDcJFRcM
z`r4TJwcfB__9h##Q+iD-UVOVavMH?q_*uw2suxdTYzAFl@p3at;}6FYX+(UMruo=u
z>bq;ih;3q?n?09%M!bCE^?mhNr`HdFq%r@z>i9>fWqwT1erp(}4-lUY?d8?WQ~d5D
zf+?ME0kH^wGYxn1g-p}o=+-C&DMqHaXIk@tJM;;s^;)wR^Qu@H?cTL678^KwV>NsG
z#`iGW=Ex&#$V0boWZr$fgJd|_Ap;rUnKq}rgkfU#TjRb%SxUirArq#zyzbNa{LcXe
z_z_&K?d|Q|6&4O&EqJELS2i_?t5-V{z*)f<Fi{X!P%;oFfB=tgS{kj7uP^XcP+&-y
zq>PNI!k(=7pggP$=qnKUvwLG~aKqEfyz9xI7X%1OgrBCb*Rf;chYiVa;we-d2+|&e
zU{geiz4_z|`JoW!wQEAbZ*|?jRi-ymV=(3#A`qO!W*hQatM>v;5OP^IY}Shl8963R
zlu1tLKu~M-Bh<W$R<qlHf$)Ukt0XRmuAY20URFy%B(H=I@N3T38LiayA}>ii&JLAL
zLjpx2U!oPOVn)da0@_MTPp48!6?tRBGMk*wmaSfnE6Yz#>vi9}mK3sKWg1ffq@^3|
zwjVDvD8mCPV1C289UK8jg`a9p3yiDjq;mu*>!b^Wa2yVDtRD<#6@eLQl?zMOe2Cfg
zp{!m*PUzbB8NX1ku&|I_&##8Z*wL{}s{d<18(AY|Z(9YZ_ZtXE`pmqu>!f`=A!w<Z
zQy#2`JQYDOVy%~t?_x|3(*GpfY-@n9alTVvQo0xohAMkAUe9(%V;Ie|(Q3MHP9_s>
zNfT;BePy^V7k-Aft|2EQd=+$>?<Pu>(DF#|I=T|b9b!jlAFOlHwR!;Y3UOLV6eaxt
zLV+;V4~LNOy|tMK%p=-+*_tS)lJ#mPD|iDLhDJaj<W;s>DHa+QSsety3XBHmBHaL-
zNJ>fJWTpCIok|sRxi<yiC|5gk!4P0Xtm6BX#l^p?tgMj8Af8j})&`(bm0xkh5P|By
zPFVW|QZy%elNEL$*!{(A%;i}3zcnXvbjshUs6+tLa{kcyENDNzWo}9A#^|4BpzhA|
zV;Ov&E0lcjkBb@3q+QlYQTv6d@hag_bN1_8Wq}tSO3E%n1LOyv%}r{oyvBD0H>|lo
zOZ)bnN4J{JY)q8cWg0HZ>tME=@Y^}NY8sJ~ZC#fkp6g%Z6CbpRP5UlXV7(*_@hJFH
zz%d>xoqi2b;BPC@87gcw?=wo0wls>0hE;U>?mM`jwN>`T4g@$6%(pc>eh!tGMc~~{
z`;-5abBf0!M6HyuZJTl{%-6y|1PyI<!hIF-`C9L6Xq28an>5k`D|QN`bblh{2Wa~A
zkP@aepy60U_-5Ua1CuvNFtf?xQULAMPDkrplDXa-k%ORJEsy76<iPi{F5%k9(tAxS
ze(cie=t=I@2v%_kRI|U;<~;#8G`lOZ@fDxbC~8lr)qzo>|C4_DHYJKu>tW2hvwuXk
z`P&ke+ssXp;tu{8^zuod)ox*8HiI5e+j>kJbwi|XvfL*5EyKhUMYV;Mu6TbK*%K5@
zMRHG7Mp{}FMtNmz`PGd2NpFUAzYy2&P-Olq@h6NA>1Oq0%Td#9)0@63a~)}wo#aSW
z%F1y0ea^mZ=<LB@5K@5|Xh~7$)G0sNkh#hpo3p8D#|;KS>o&S&ebfkDP~cke9tp&1
zp1zTPKi5{l%FHZVRq_}jY2<P@B*AVbuq>_zy-ET!@~+W}qw*T-|7dkQ;YeB?-~VWJ
zwm8o(ya^bU=3kNWG`wW^a37)dz|A+5lt+{y;wb}8{xQ|Sl|4C(zmSlW3@Ecq5x@IQ
zF$)C&*4cpYrQmr8dU*Gr2DG&YvFE>g9vW)$_J4hkyD#@Grxo&S8bQGU&RC3@nIoVS
zX&yb2ay36EVl!*)vrZ~MskGlRc5rodt&&p1j*`9sD#ce+$C|}EdSc8ZI^zoOItm0o
z!I02R=;`U<;Nj^VnxntCje*e!lSNKt1)mtTn`#05J83bNHkQUg|EY%DZA2{hb3dh#
zP>KJ!@0nFX0L>kQ+eP5S112L-e3P;q$r>HK6)-OLMjL5>UgZ5bdV`gP;_EU^_m~YY
z;aS*nuuaI(L6HT|;gt_R9JiWKz(+lKPmIKwB!3`EBh$Vs6ub2hW8EsacOUZOkTVlq
zrrwHJc)cT8qwM#8S%LX$`x^+)I0x@0b~EOm$1e<`dB4{rza}d*R^SCtfU=rbN*W(0
zvmCEBxtn!w<d8Y9gO${6+XG1neE*qn)$mLVPjI*QI(Bv(H_=gTMBvKdlFk)g&V;8q
z@5k_?Fan(pd10m`CX?c%fYY0dnMQRG0QQv6#Ap0IlB3otG$@V=vqg**UjK4AG6yWE
z`jC2}2p}C`&;oE^5VPr1geXt5ON8Pxn-d$$Z^=77om&aYt7XJpNxaOwj`WgUCIKeO
z{4BA_RY3I8*G0MKBIS01ntoR6eX!-j>bt~a??xRsDd9H(HbqOrY6LJbV{ih=>s;Xp
z#moBXK=G&{gOC+cY9$h37W4#cd#u6>J4VfhhQ<k>HyL42BgiX39yT5x9tr~D<^Mfw
zn4T_jx2fclXU*)lrKvK{%fbwusy%0EvrrxiMk0kX5(}Ot16Q&IW#{pkfgr1S>l=w0
zyw{V2lIsEwK0I`Eqpk_<D`k7EL_GD{u6XZj7(?FK_#|*0o%7JJT(yG4grn!6B;j~N
z$=7i{RsD|273%c)>CH?0<>0Otekv@I)DTU(83y6ARa^c&O2*W{n=ncG*5*{Dl51jY
zYyfy>k?agn(&xRDuu?Fo$i&R!v-+7h7KYQT!Y`_Vf*ne(LS`W{GHkCXHv(<Gq|@mU
z%336(O@oLby_Y3UL;;DKhFstb%U?7E`<@#(KV&iBxN#s;JLC88XT5+>M%TWcI4{sf
zfp`8D=_%`;n$$vKv1&o8S|8>nLB0k#I*HqCoYp)%Fz|m<neO7@p_Z#-CA>rf<K$lQ
zLRuO(kNJbZ2G!EyV!#3o4NY^8|8mO@Fx%iGL)8x-A0KG5XSTMSkZx+$gAKEnjE*Yr
zh0TD?h0M^=@1CWDG|@@nam<NmY{JM^Z;kZW#hpoG9q|DlyR&wq#!G>HHM%P1_Z8|h
ziCaoL?-uGyf9>|yn~Zvt;MZ1+pe6~YH<)zztMQ5=j};Q6(lAK{uu{{?-rk;ap+RVS
zEQDY8#5|;>gGTdMfHn=VH=*LzS{@<6#cR092)DEF|2$XxZUbYhta7eaJ?wCCBc~_e
zDd~dS1>Q*)ONFv^C062gjs+Jt?Ki!7ciiwimJFYgDl8EOY(d_x*2PKi>0S0Jfeb^!
zd#Bxa>g-JcQ^v|T+4+RqX_Es`?Ct?Vu$WPzsmv&84VzK%<BC8!f{~Fl=HVeBKBCEY
zcdEGXd6~h(P|DN1@r~7o4gW#Wx%zt|VT)-&L(Vw+R?;9sn48-aZ3nZk*i?8P(bJ=W
zr3VBP%VR;|DX_tR;Ft2}rVRO<?ysE3?JI{rvjpNSjK+9OX6Kli0|{I1Gdthu*J}~2
ze0<A=B1&(qdbpT~7qXGSAQjiQ12h-`(ntK*;J$!BrNYd6vGDb1NMMc9=Pf;J1E|z&
z<=14RMo0kDt>{{JI)Z~P=OL~Kp1$nQ#3Yqu{4<48PP33ZKRg&vzU5_ex0-zPmTE5k
zP#gXj5&O58`w#+Ry4dSmw`2BR{~qFA0B%Ccc6(cvS7&qXo9e6|MUtKr$2Is!im*o~
zS%^o{ny*#O%W49HaFuH3;<Dw}9XCh>1g3j>u#uj$+Q&%xS3wI9gKX+azuDq|aTwh~
zNB-M{#7d|Z{b{S&6Mm9`FDKFV+@<K0i7fSz`+nNFK^U5N2TDNSrKZj*H0UCMIhzZR
zDpM{sPiPk^Rt-fa?fO+R-`YD0Ha_!x`2#PqqlJ(F8NCHF!Yf2YRi9Sf`&6B*;EA6v
zwh~wA4C1fUYU7Wcw`}kAV*=fNqG%6aXZ_kWIB)uWn6|*IQ_jk4)dq9bMT2zQ#nrTk
zcRu;AC|F}AcP@iml6bg@+uh)Zu&p;^0R0F9a-m|+H5KCZ{GCP{`?@*Rz9^~skJK<U
z?HsDt3rGaZsSb^{Y<Ay<EUUHkuXfc3?Ck8ZPh1W)$VXz6`zs0^+KS1L5D}8UIYaNC
zm#drq8S8(_60-o+=!n11?p9m9Pkc)~I})j1Ca*ps=JsPEafVWzHA`Z(o9Pa@eor)o
z_{G0wt!?W_b1EP}3g=8$YED9gJ78QqzUgig!peYD2byn-HZ3g5G7MEtbjvazCq&4~
z5aL3qS_xiyLC-^}$zMNDAVPstPJ^1f@hWg4QN?Nn`}zxmv-#A|S#qc4B`%5Y6(8<x
z)AP-j-wE6;I}o{r4E`Pa5lvsvqQRJ;_c|>QGORe!KyrfAAfJY$e*pxi0osE=_^QXz
z?`pEUpu@f)-b0p41Q=C-J$DcCCCsHZnnQY)73YBXie!LZ#jg1(40O)u3=xAOqPqdZ
zK5su!6wEh+!iH-VkDp;LxAeraqe2RlyBxJA-@P9YwCp`iPE(%j99$BTptiO)iW5y$
zRrY6o9+%&mPf<tm_0ns{7H#)w9#1gEf1L&$1f@k{`y+uw>}3}XNbaNH>4%#H#j?ki
zUAG)7B+nj7Q?ElM8qBO=fH*N0N$7JK7E&PW`}p|W84X5%v1;1SW9}wbd4^ZoxoX+{
zX{^SqWStGd@_R_{{HXds5;5&ei$KzS6BWV+v(X_zAo4~Y4G4Hx28O`+l^X9+r+@%W
zBjIn$*{}4M6|TH*g~Bw#+Vd#__y7cPIGGa>Qc#%7n`#Trl<`vW^H(Soh<5C?v~utW
zLBcOB2S()LBgp_TDjR&oLMu|$&Z$r+%$ik%iWUX#S;h2AlfXVb?<=Tj^(`gc9VKHG
z<Q*pW6q-}l9PkOg!4;cnxy93N<ej6X*=k#EQh9qFuA<QC;l1G&6Sm=z+eUqQY+}>y
z$=7jIkZcffeXj9}0EG4*5f8|{=dj2i2Cy&4HGGuUQ@r3(WC*L>qkXKR&kihS;*+5^
z=FDf{pmIJa1`20#a=YuFvUJp$nE80dsN++pdL#JNjPwho)8*CAXgN6tH{TB?rj@IN
zd%rK<3M1Y$Mq^ca^mXfjWVtOVS`DjjcqO?X)-V6J)B!o_Ko}k^8YK+gCLR<VfSLt0
z$h?DG_3zca96w&;Le{&bR*~-kAAl)g5v4qahJ?hf?6qciWDMhOGti4J^@yP=EZ;E&
zO-P;5KZfy*miVw|9&(!PV<xNDFbYFl-|TOW(BHtet`~nN;3&0MF@#f+3ogX%Mvq05
zt@G}@*g2>RsK=80y}4z0rsxtiUHwd`i9*d|3(bN45llj5`&aj1udC~v|HWr3@l7*t
zyqYiQ_`yM*IiAQ1=%0#{lz^mkoBF&uYWnVf!PY&JIWROJysV`6d-%oi(b>&~#@6Rk
z2S*2`kvur@>H$FM&W}WQboZbD#5rO-Darbe(p?+3_yMgIlf#CVdi}o%SR9SGgapV4
zA*#sSmLE6XpxESQ{-P!}Q?-)cgCplU&2em{i9%~2Ef1&fg?H_>=owV}Fw>d~SE{WF
zQ^L}cn0H8z<r&AUPo2Wawr&J|Hn=}I%lh|*?=SV6xnAs>Nj|8Pn3)z8!^=McW$?51
zJo66dKqNO?ek2^}XQqBxf~OD6t9xPgxMc!TY!B*g*t|8L62it&xrY>_e?NnIFS8g`
z%_>J`RAgj&$eJ(fhUe3p8$nDhs%(mG(HAoAj>n8Ny9H65Dv|<elaq5@ZYDzv3M&z_
zi8?R;50`qcQq8i2FyBT2F`2+$>o^xRuUd7IM_uKReQV%(#q0w8=Z{>h?q!xCE<Nt4
z;`&zq+Ihnr#d#fmGLmk+XVno+q3`DBG`f)20gM|+KYWbV_yD4UB#%|U^-Q=9=bj&P
zi|EPVZK|U?4Th<{Y^4tfbr*ghlh36EPVH>j2@9AKl_iX;dDB1t5urirBM?1IyY<8G
z+=&K#uk+xjP=doRJ0ABuawU`R-P2Dk9QDe9gI_r!SK|6rF`kJI))Lhw?N+DR{KtnH
z&e*ko0(znVxO9nbb!hdbwQS#jGM;ZZd7o)rw00#{PHPf8e&MS^1hSGg)8{|hvunca
zh7MFY&07DXJx2hMvti-@0yxXq^{3CofSpj_{rGO*Q{?QP;(bRUdx{>OvFNy*XU6tt
zS=S>ok01M%X{~(-Ag+P(%r;%s8swT>{<o%YDc^6$Xc1$3yi$}MAb%`TKEJW@oMvs_
zEX^Q#0X#?Cp6Hac6chxTZaylgvSYiCcT(NR_BNzAGF)T7(*1e>d?!ZY5r$oB>)iB4
zA~qz0Kxp*#z5)l5N3;TKY28P&VIptwtpCU1THlFPPCN7orGz4UhoAWyBzA_TgY{#{
z2h<_r`fA54Pw6;v6}0PJgrBNSX|KuM{Cs2Q!ZXAqhY*{Jq%HQ_Ho2=XWN0Cc*&xEe
zCL$}2fWQk4a9xyZR;cj?t9=3=z>?&SSpH*oA^BYpXGVdt0Zim8I7^M0$bWmjJ0{)_
zM{xEwCq2^d_@>$NAG-{|q9pK7zvY<Mjr(-Et3;KWrto;3t5*uLrhdZ(!rYOlxPydE
z)=iA*Gn5q`nPS_A;?>j(s?ApxJMLl&Wjlgl9!K4lQay5|BWTs5WxDUb6;<QLcu~ei
zZLZdL3zeaw$@HD}m0({lbn0EarCEkP?v=QyE1C2b!}%jR`gr;+<1&|TV`wH4l`Cjo
z^8V^1=mNpIWLn#8OX`yS_|BbAENd6OjD5MF$>C&NySNr%SS+v~?;+ftbkcQ1pEqUo
z9uid+TGZ6mJr|8KFaJuy9Ao(5eRM063i+=bz16mt+2<+8c6>+YmoEo)CNH~WZtkc;
zF$N>+_bGhsp9aO>FGS8hQC{x#{7LsXIeJuT%)j~y`5_2;lqI2;<s;i=zY5ND#=D3t
zw@)7bX|dCrN&XZ7!}fM_9+enYY#$`Hby(EI+duZq?4#!}VE&f)T+13>$#Jx_@_qE@
zT8c0V^25j+d<K7vwru<VDTEHbQz6PWTJA4%zpP+Yg>1}R{{F1W>E<wfVn`>Ek9t;6
za5g6+RL&M!BQ9=G!HSdozmKr^e8$_%k{}#!kB9r@coy%Zduyicz~i{mja3h(or@cy
zl0~SH8wrNiEVi#)IWV1m@(#I&hWz&Xvgg5v_?2)LRn7+uonhbIckAgN^Ksay!p8|j
z;Uv~Em0fP-wWaUBfBz@$$(kGBg)Al3-X!Fk5n;@t>u<J0H~d_;UU<;Jxel2B&b00l
zq_4fKFC{t&z*~aT>^4m}i(H@Ff4|r|JhC{HMc8kSjzH9XxS-;wZLgljJ6Su_<PYVe
zqY%90{ChFon)G837r{$}%Ypo&e}9pOBUIaqHAI*sOf%AH^H{_9#%P{RPf~;yel3fz
zIxp*y^Q)Ve5g*o0$F<hCZ3<y>)Yt36E*lZ&O-{mp$Bi7R&BwQ^_9IL;-5;iRXvtPS
zLa^anzQdrbZ9>R2!rsbpP!R~vf`4acMEkAf(yeyyEK~MA7DB@JBMAZ#vi0NYkavqt
zW^;On_`?lEUA8lv)1UsHnP_@JUmgY4i*vJ+t&N#?ySF^`ypivaS){)@O)}zvXZ#i6
zLg~T6T6@BRazN#@wqnsSrKCxlanq9Nt~@HjGw^&d=~8Hm4i=!d-A;MMgnT951v&Lp
zYpvTwWvAXX?d84~D6qVXV@fT_%G(IUY^=+lR^g5#(%PhUDV#iyGe+w*-`a#@8*B;>
z29TE3yQ;Qq@TJ=^mk3Xl=aQKJJ*`d?hsiH@Y*%W|zk=i+xP|jyf}nKj@8;Uo?$rFz
z9hXJ%6!(Y%9uM-TZf$p*T#4IWSf-M=01H<xIN<ygZ6;3F<okx^PGHsfa-|UuDgqY=
z_5eSgVx<LV$>*Cn5=J~U!*HZaaZW&!h&}sbBVTbo^r+bI6rMnzOqezr0_V3I@+}BY
z8q2lwv7-2otMzC}Z6*%td`FX7J1)cymkS;Szb4TTWN1Ev|6V!UtHJM~s9Ei-V<7RS
z$GGzQJCf99l-Yc_?f=$F7RZxJ3RjS3%it?NNQm`O6e0Fo8&U)oUiAPDq>tq@-!|E4
zv>Ox}@z6(<yitjMFflRVUo-7q%j%~iS*#ib$un|Cr!O)F#vRwfysgWb4xBXvdtOvN
z5;GErGMo5SQewZlv1MP$AuP-q`dlnJIvT5pX)Eu00Tb+FU>U?3DcbsaM`BJ_3q1qo
z-GPVAD?M#o`;#&;swfB?(e(mM3^^{#K#U~WfzPf&9uHAMZn8*GSr?9d)-71|5PmsI
zhS_gdX;M7imR~COP%>{MQZtWmqPxuP$42~toLO873ON;_xF1@Euc!!FYhd+DtbKzJ
z%_OOg@abL>deg9*YZX%%7#K8pr~{nMoLwK>WzH(f+>}^i(ua&O|GuFAlF0gVU`>)G
z=0(9XIMh7@r%xh?y1taj*4STT*+hO+TlOxq?@4&Kx3~Q?caF~HD{`5bn4sbU+=Hh5
zs?3lS7JPKre$w&2Y7Skq?rZfCf}Z`ReL*WS33T6v-ldWWvjV0Li&XQY>FMb<Ze|vi
zppA<Dog=Y43v=_+j+d%QxgGmecu)TD5%sQ({QmvBPN;D$m1@4b`z18stldEin=<G5
z`}pGWcN7rw;KaF$Nrk@1(BVIoi0XKEbu)6s3Dz{YVfQGeLo8;(xVWhV`f5#W`@`sY
z(>Fp%*uHtjdU|5wH;)o>S(AFsHvS0ih|l2n$NSa`8I10L(t#fX6sm*k^Ve`O1Mf8M
zdgG=iA1rmm{1^{|Erl%vY*e_{k*23odVg?C?YrA*<##h>%#^z*6c&bGgq<p)!kKMR
ztg1`&e6xbQHKMt>Iif@8Q3^^z06ebvwLh%9{L$~EvWC#BzmG)f5M5$Y+Ff0`;Y4JH
ze`3Z*hqvj@PVF3}Yv#R3?c3GrFesGIQ51W1yNO-)aZzZO!5i_!1Ik82VSLOD@>ZNi
zwwuG`)vp~%c*AHqIy#a^UJgV8^&G@)A@HN~H6Dv;{0PgZ)>j5P`JD&^zM+)3$lFUd
z_B&$HF)?V@HWLyOdNURc3LkxuX~8zGoXWj&ql?_D1&6uUK7=HKoLnQ5lPTP<O(d`O
zvLZl`{DDf=&^ZVBLWp4Jk~J*VkTca!JS!^;bz|6my3DH4gSq13yODH`Vx)EX<__fm
zC)#k%nPP1URWt)Wdh*c?3Ag9r;U(;m?Z+aj>H?{)tf$i%hPR06%c|12*F5YJtX9HG
zm`A_Q)`XmeY}-sJr9Pk0bCyo;uN$~E9=^DL^1<fEl)1mTGbEPU^*Jt&>TR4q+1R?c
zxEMNxq>);Vuh43Ezz`WmMvwsy4U;cnR$lg7{+wU2b6=dr&Q=sBoR*huh}2>qVp^?K
zZL3{4pC4P9lFAOqRMn)kN-U1Cqn8Mbch43JWqZ7_dX;niS&zStS%1>ix>9Y>69=!0
zh@itltBd!AV}Fl^GWw4G9du+k95hMFb<|JxmCPruLfl_7M>h0Aak=j_vUc<ta;C{=
zhTNg@bNaj5*PDdxk}bqbB5(5MmApF*N!ksu6hqJI^72Q1Iw54w)HC1eo13$|RlHAR
zYzt$3S4j>XD~;k%!|O*j?1Vq|-#0Na>A32=I6G?ol`U79I#)5wfE~Rf`KzLWA$NoB
zrY{M_jnZ`0oFE+{)YRUUm6eNq10y3T(~0PVgM(g|6e^8mxsUF(l;bf`((mqP<i2J2
zRaW*eafQ4+?TaJB_H+5Hp-;`t&s3C^Z`~MGy{Z58bpt<xYR?bd0>^K-k5i>>?reb4
z`#M^}93|b%>h@Ub1heCpC{_0K!w`&o9&T>jB<|Y`_k!gaqRvektiJYg^_g;~%V$dd
z7}%S^8);pYEm}QDzlb^{t~b%L5WPM@US)oEQKOZm9;3z(h5K*i3%r3k_N5a9jcn&;
zdxEb_Cn#?He3p2~eww)Bw&S9!GF*ozR&jN3lxh^`zDC!xp9adRK$&cHC#X3kJ2y9I
z#Yuw02&^Omp<RL_|LP&hbz{l2)Br9+Ns=zI9|LR0B4+BnzqDAZc12gutfZy!(QjnF
zWzZ$^3y?G{(k@r0;QM*F+!YVvQ+q)IDFY@}R{v|8+Bu^-rW05<mP*Y0qf>Pp*j9st
zrl(E0o9(7PL}c{gKI}tePnmc8{w=+E`sr{bA1C9*ix=(_LCy0|mEFz`LE|wNF;{HW
z@2XEwn2OoX1PfxW*`}GnK3lCsKge;%hhmm8ckuTW*S}Zbj>o+5;gq%k$hPM;qNtrx
zzi*f4Zd}#gOm9rgh)t^&=@X(4Gm4YX8@UjoBZ?+O_l-z3evvM}8aG7hOa1E1Z}vdI
zoG*EHfZF+vS4UsIn)j$FH|h8f>Usb1`gnd=tm=ZW<3QGsar=Mky|bZbK2@<)Y6h9*
z``MZr8Uzz1Vl*QMx8n>yPOjOC&PW_p2eh4@R%mI8pN(l#Ms_UeHkwV8ys|a3L>_dV
z{;f=Ue6p^LtKAU~!<Bs};mzPMmiVSJJc2M>H!`=uHmMxDDcJAGM&LUYunjvF?`vl$
ziESk$;!9PTJqBlxTfM8$$itk>5m;VcF87r4<!BC#aOzgA<(yZ5;Di!MLxyJFibdph
ztzs6z&lA-gMG&iy1EQM#*M5FFKF^8QS4VZi=Ord`Q+TAs6a8!}!tHFcbcmAQwGQ3=
z{@mXA9wFg{jirMF&tUlV#u`JuWUIBa)-M^BpAC~fy}c#|mcvRzNqr<rGmjoVFA;b3
zz?p-GhsTz<uWz~D##KkB9{cse@7tk_@m+pivsMk;)zwdg9kDAM_fnAStB<$4aMzL<
z_^i%Cxb8sKx_2g99g)UU+(Hax`|V8B$?jDn8&cJp*as+9Tla{o*6vonPPr)C)_d|J
z<w9vvKPENoG4d#9ZK=`{<=F1`$=_ul(ngawA}=;{Bu-D3dRsY#6?$)Sdiv1Y7&E{1
z5%agyyIgg>Zujowb1lXm`dFZ)Q^^2GFeqH3Y;+Z3RZ~+#O%7=*B$+EQJEI|NO&8Iy
z{G9wwCHWKWDOY#f^3u|~tLIXMV<E7P2clkDjn56{4R5?a+uGdpIgQZv%z5{;|Kp&4
zMw*Z$J=V}SL87-K##|nQ$87a|Z6sCed=y(rt&iw!2hAtT=4P@d#>fAJ!>9L~a-*5M
z2L)v3<OHrb>8eB%`QfO=2nXIAs+Zz1n+V&|Yat$k0Pl>JnVDJh^us_k?swkEeIpw0
z%0s)^8#7~L5%!hj=z(4+QkJ$euY<D^m^n0^JPnmIMeNe$i64qZh)d9HJnYr>Oh!2b
zNMP7d>dhu=qiw76_iWYhd3tKFH_gq1<L%AO<J60L_wJ=lnYWrps;a5&OE`wd#j;4p
z5R%vPJ;JOzy{OrQy*_u9kO<Y|z9G?6s+!XqN`+}zoZaC5{Pruce%kEul{=Lu_|-SL
zkeU+p-NR3-hKsAA4ceYl=A~jQS0YVMrf{pnQeHV`tiB-|Z#g^Kc~Loac=jDsC}d`d
zN56mD+A>?S<wt$z){^X|qVB;L7|&yI$|F6#We+1s<b}Zlf$Q_oXYec^^e|vavew(7
zrvr#eWu_p>ic}vv-Cwh`Ce6C+oI&hA-!cSlR3zVSED9?KxFbUsEsmP4TfoZ}r;fVm
zTrD)5v1zr+;azX}ch3%U#QVTJ@=z-C?I*>o2RVuz!Zk6hTK8J5^!4;;@LlaHr{ogM
zF}LQQgTb2m@Oqfv`K^Va;s4j%ng2t*{c(J{b*Zl5GKw-2xumWvx5nDVP4?_$nKDY*
zmy68U!nG8x8d;(tq^x1AGeTnt*^=F4X6%MRC~>EZ<$DJA`!9UI=cjpm=JWZ?`JB%=
z@AvEZI_Gi5Zr;Ui%qLP(jk}se%0ZV#YZ^i|Uc%~!+=%5kX`Hco7E4MNI%e5_+vfan
z3xp(mX;CXPbNq>cHc-w}a~wTExCW(bXBsPB`T#v8gUEs1)1mNFG(@9hFWPLJ4MNNl
zk7o=jcx8c@3K|O3XLCB3(Rs|3h^nZsKXo)Tz1ztJAM}eDVcWlQ1TO4|$fz=7cQF+-
zmSJK+ybA*gO(LmH{nmYohC$Q3oTl^c47fP4yrRB7GaEcMIv$dSwRi_2x0E=VzFcHg
zlo=C{;t1U=?sEwcp8_#7Fmn#0iZIc71Lj78vTg}ydeUMSDVUa!`3kk3uOPl}6{AXU
zbVW~#&sS;rG(@$hS&Czz_>{uQN4<+pAwnKSf0HhH*)#v)qe&4KgC5-C@u<8d{0mFJ
z|I1L14h=Ed)91<Ce^+e&sWwGajVm+t-k268!SC7HN2ayk4o-E)``enZ$b;WLUsM~P
z!kMj6WByTbvkd!LO?OS2n#p88$YA#=w%Q%69i4s_7Nn+A8hKOncrL}NEW?NWmb4V^
z`3OC?F~U^Tt(Ni1l0b~-V0Bq{`-v-oUm8RchqDIxBr}xyFcOG-v#n3B8{)n1A*ve|
z<uilBR0vD{Dq!0|NZUy9wq5F%Hw}WthJ9p~dQz&DXy@pYINv1^z>F&3jE_>=giH9b
zpp}a?qzzN5M(tU-kfiCOaFS-W7#SU3b6flZ{-I^jQ2FfQiCo%J=jP@c<jF_bjxt@0
ziYipe?cno<13XW1MTlgGalP$U9nM#j^QIt%U=ezf;ThO<f?QHZROgSs%0QLp-@vAS
zP3=nTxFc}Yd%kCVQH%k>u%}61tH6+c9`&+)VAZ2(>vs<g?f8z+&U}2{xjfg6BwOpE
zYv+!~wK?%7Fx7>zUOMC46W>&l_IXtKoFDq(=;&xKT>RvPg=ZR<`;HV;S6Aovr-U|W
z$lIGF<EX>Y#h9q_m{0C4t01Y_q)6hX^%}-aJWo9_1L6kGh-B=tQv&EEX$_r7BOo-h
zNy%M~K-FbaK#cE7m5V290O9hQAPuDNwtJA5dgx|=Q+!<ibCuV8YxlgWY1!@)NgXk}
zM0iHLXBL+>j5##nBA*DDA4v0aeGp$~XQ{P~4<B%%!n(SxyHMo5;Mp<v)xp-PfPTfa
znzk+#V_kE@cu%~=QYcH<R*annoKB@ut?NwEoGMR<0NS?Kkx*W(9de8Hq#ayIm#`UT
zarHEJcN_61ge$&33I1g{{qTr~6<7=IaseB%F#)8_Hruxben7#SXP?RCwZUFR92yyR
zBi;!NwB>0QK3oR4#k_DP%w9IN6=}4?2HXRh-tqF9yJg^Gbg2@uI1V>q1vql5cDcpz
zw4##Imbbz=CO|)P+0?BHF@45~7rDPpk%o{)g#fG13UV1Zw>%j>yuf0YJ0c@i;-yE*
zMMXqJIIyD(62jo(darxmS7(h^L$3h3&135v((=H;7Lns-wL5;G12mVJOZ4@$AjX+B
za5`l@C`2rW(>grOhevJr1F^CPmFo`|?pkF}U%0dv<q8pQ)QAHyF8GIAqyP6+Ms}B<
zowY%3qP_h`l4ryDw$P=eCFs`o>9%+&6q<}qy?_5l{y-An)LTXnSr+ibHVNdeqfY@5
z3C3x=B2R7yCz6Qfh3!*QF9I^>xL1iNBcM3Jdd}W$gIC80h693K6`MUS*ZE$7M6aG@
zviY4(2b-yllZJ+_`Pli76AOkoge=d4&&px}^^clumVX$2R~C>ETM;#fy6Vex{=Em*
zRl$WTHAWS#%(K}2OV}+2Gf=P%X%u!SNH!IG2~ff`?xgbUe;+kBSCT)_YT3cx-&!k^
z%MIWj&z^GsY#OPO;LL#Xs*X6^=wA3qNY?NT9BP4~tv8??#M>**H-whOw6CuE7Fe-n
zXY+&~Ov+ukQ?_=++qRE7vKP}`W-17Bg@<BOezmo=JrZ)pRcl2;=MlO-;EMy34SqN*
zI1X%r_SOy2T^uooi+M<Xf0MTU?57l&8lUM0F~47Gs~q{%SdO}JgQp}6gSmFT>nLIz
zB*YGe@9k0HShO_oR{C9#n@i%wTsSFBH_pg_<h`#r?^;b0Uq!|YmsvEcL9Y^d+H=qW
zlRxtFa{wxwdP3;=vNIm^or4(Sbf-;A-(#ytwpEdW-;9qbvTV>%E7Cq8Km1-l^Gi;@
zl<wqYb98wrw{DtHTx)E^0#HW4$SI}3C>Su98loO9zuclf6xOXu*3C6PlHr^*Ou_vv
z0xfL{%^%?BKV86uJN<9PJbZlmL=kj1q9)@fWFv3N0sY7nyxxn;-_8Q%2XEsCLVhxb
zYmob#t&f0BibB=<cHnRH_N|f8awOin0&1mJ*4ElHu8&1|Ui~><FC!ieYgbC|4mUqF
z<c9gw<DQ-v5u7l|umBNA)H3Uzue{1$|Gwl4GLgNzsA1ae3N7>Z_m4I%@c)Q}$EWb%
za}LF}SDH;WskStkHBLV$>I9aKsXtvGPVDwMoxfNc+jP$l$;w$o=*0WeD}d+$gQ{F-
zz(jRJ`88j}Wege3>bh-6YmVmQHXv%XBF4qKDjcLn1p~2auJZ}Ec-?c9|7yOxXAL$c
zJ675@7+yhs9^xnzoZax0{EV*(@Djkd+Cc&J8AM)=e|s!Ym4C8KpPNFVz}%JQzJ50)
z&-)}BNczB~kOGPXELMO<0_r`AS_EThFIr1OuYuIDg97N~QkPQk^iDFt_@;~SyGHdv
z3em21^Es+S@#ptW7x1RnBY^{@fxqb;q8fqH(o8}a546S!U4c1a>+Ar-WwStZ(9E6)
zbMo|*vCPz(k4gjDR|(t6SZxdit1k=3HV>3(>|2HK9}ox;=nI9$;|ZoG9=l#NvH)qV
zK{g}G<lyxLXV`*kEY6|)Y=*HjQ}3f#hPS-youYbm{errxDv2Stp+EmTlf+NKwDG>8
z3=ik*^7i&zFd02H6W56uHSI_Q5EE-~jb{KvFw&A~`d-TH&4~aJ3rwMV7|rQxQa}I-
zUninUOpow3%jcm5Zts!$_wRuq;e^h|GlRjY%x_MWwqfjuBsnftGsv}^fRmFBY=CWv
zgbl~E*+#7dh?D(0k)f-i;lV2*XXHxMlk22~7*wVD$Jo1IK$V$n+WB7~uaAKhxa-+f
zVSZ-ljWcb>ls%Dypnn?INX`Qg1iq&Z*I0BRZD}K1=H>kZhHh3ngiHUX)JBg5Y~7SH
z?lmDDYvH7sYpzli^kEuhX9s=q2JEx?7stp3rG-kTC%X|<zvP5SnN^N}c=%5CzOOLo
zbIQ1+1wAi_GS7bFi&>RzueerMRVBOqAtOMb@Ia)Fz@&DkUci0Kuk1U~5QrZ1w8HMa
z!4!nT{>31D4ssmvz4Cu}ayPz8<ma`CEsfmKL!gpyNLWvX2j8hsS-c^&1RQ7#C9Ay*
zEA6q=+oH<tNOLTG@T8x68a7v|(!s~SU}vWTGgGm@XlX5zS+-Oo&Naz5*zdrU$Pam+
zN`Pv^e*;sr5D2fw@HRRNzu*2q4sXc&h=b#t@;_~_?wx~Ed8hOQb&<WCy69^gYY{YW
GM*IiuQqI%>

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
index 87b9afcb05..aa7afd643d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
@@ -26,7 +26,21 @@ ms.topic: article
 **Applies to:**
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-This article is part of the Deployment guide and acts as an example onboarding method that guides users in:
+
+
+This article is part of the Deployment guide and acts as an example onboarding method. 
+
+In the [Planning](deployment-strategy.md) topic, there were several methods provided to onboard devices to the service. This topic covers the co-management architecture. 
+
+![Image of cloud-native architecture](images/co-management-architecture.png)
+*Diagram of environment architectures*
+
+
+While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
+
+
+
+This topic guides users in:
 - Step 1: Onboarding Windows devices to the service 
 - Step 2: Configuring Defender for Endpoint capabilities
 
@@ -37,9 +51,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 >[!NOTE]
 >Only Windows devices are covered in this example deployment. 
 
-While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. 
 
-For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
 
 
 ## Step 1: Onboard Windows devices using Microsoft Endpoint Configuration Manager
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 5d42a25212..5c1abff92d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -31,17 +31,15 @@ ms.topic: article
 
 This article is part of the Deployment guide and acts as an example onboarding method. 
 
-There are several ways and tools you can use to onboard devices as metioned in the [Planning](deployment-strategy.md) topic. This topic covers the cloud-native architecture. 
+In the [Planning](deployment-strategy.md) topic, there were several methods provided to onboard devices to the service. This topic covers the cloud-native architecture. 
 
 ![Image of cloud-native architecture](images/cloud-native-architecture.png)
+*Diagram of environment architectures*
 
- For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
+While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
 
-## Overview
-As a general overview, the following diagram shows how to onboard devices using Intune. 
-
-![Image of onboarding using Microsoft Intune](images/intune-onboarding.png)
 
+[Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview) is a solution platform that unifies several services. It includes [Microsoft Intune](https://docs.microsoft.com/mem/intune/fundamentals/what-is-intune) for cloud-based device management.
 
 
 This topic guides users in:
@@ -58,7 +56,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 
     -   In Microsoft Endpoint Manager, we'll guide you in creating a separate policy for each capability.
 
-While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. 
+
 
 
 

From b4bbcfefa942343ea8f11d5621a5e85d588f7edd Mon Sep 17 00:00:00 2001
From: dstrome <dstrome@microsoft.com>
Date: Wed, 13 Jan 2021 00:29:22 +0000
Subject: [PATCH 450/825] Initialize Docs repository:
 https://github.com/MicrosoftDocs/windows-docs-pr of branch master

---
 .openpublishing.publish.config.json | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/.openpublishing.publish.config.json b/.openpublishing.publish.config.json
index 3e1c1d1d11..f9ebdac192 100644
--- a/.openpublishing.publish.config.json
+++ b/.openpublishing.publish.config.json
@@ -390,7 +390,7 @@
     "elizapo@microsoft.com"
   ],
   "sync_notification_subscribers": [
-    "daniha@microsoft.com"
+    "dstrome@microsoft.com"
   ],
   "branches_to_filter": [
     ""
@@ -431,9 +431,9 @@
       "template_folder": "_themes.pdf"
     }
   },
-  "need_generate_pdf": false,
-  "need_generate_intellisense": false,
   "docs_build_engine": {
     "name": "docfx_v3"
-  }
-}
+  },
+  "need_generate_pdf": false,
+  "need_generate_intellisense": false
+}
\ No newline at end of file

From 61f1f92e4240818b08c64114b468f98d50bc0453 Mon Sep 17 00:00:00 2001
From: dstrome <dstrome@microsoft.com>
Date: Wed, 13 Jan 2021 00:29:22 +0000
Subject: [PATCH 451/825] Initialize Docs repository:
 https://github.com/MicrosoftDocs/windows-docs-pr of branch live

---
 .openpublishing.publish.config.json | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/.openpublishing.publish.config.json b/.openpublishing.publish.config.json
index 3e1c1d1d11..f9ebdac192 100644
--- a/.openpublishing.publish.config.json
+++ b/.openpublishing.publish.config.json
@@ -390,7 +390,7 @@
     "elizapo@microsoft.com"
   ],
   "sync_notification_subscribers": [
-    "daniha@microsoft.com"
+    "dstrome@microsoft.com"
   ],
   "branches_to_filter": [
     ""
@@ -431,9 +431,9 @@
       "template_folder": "_themes.pdf"
     }
   },
-  "need_generate_pdf": false,
-  "need_generate_intellisense": false,
   "docs_build_engine": {
     "name": "docfx_v3"
-  }
-}
+  },
+  "need_generate_pdf": false,
+  "need_generate_intellisense": false
+}
\ No newline at end of file

From 7ced57c6927538be4219721a78fa1d09b0eb879a Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 13 Jan 2021 07:23:37 +0500
Subject: [PATCH 452/825] Update hello-planning-guide.md

---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index d99d54226f..ba1692b00e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet.  You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to have another subscription that includes an Azure AD Multi-Factor Authentication license (like Microsoft 365) or to use a third-party Multi-Factor Authentication provider.
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to use a third-party Multi-Factor Authentication provider.
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 9d726047980cc19578ad51ca1f12251d74fe0727 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 12 Jan 2021 21:47:01 -0800
Subject: [PATCH 453/825] returning MBSA topic

---
 .openpublishing.redirection.json              |  5 ---
 .../mbsa-removal-and-guidance.md              | 44 +++++++++++++++++++
 2 files changed, 44 insertions(+), 5 deletions(-)
 create mode 100644 windows/security/threat-protection/mbsa-removal-and-guidance.md

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index edaafad269..0cf060785e 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -16510,11 +16510,6 @@
       "redirect_url": "https://docs.microsoft.com/mem/autopilot/windows-autopilot",
       "redirect_document_id": true
     },
-    {
-      "source_path": "windows/security/threat-protection/mbsa-removal-and-guidance.md",
-      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection",
-      "redirect_document_id": true
-    },
     {
       "source_path": "windows/hub/windows-10.yml",
       "redirect_url": "https://docs.microsoft.com/windows/windows-10",
diff --git a/windows/security/threat-protection/mbsa-removal-and-guidance.md b/windows/security/threat-protection/mbsa-removal-and-guidance.md
new file mode 100644
index 0000000000..59f32f84e6
--- /dev/null
+++ b/windows/security/threat-protection/mbsa-removal-and-guidance.md
@@ -0,0 +1,44 @@
+---
+title: Guide to removing Microsoft Baseline Security Analyzer (MBSA)
+description: This article documents the removal of Microsoft Baseline Security Analyzer (MBSA) and provides alternative solutions.
+keywords: MBSA, security, removal
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.localizationpriority: medium
+ms.author: dansimp
+author: dulcemontemayor
+ms.date: 10/05/2018
+ms.reviewer: 
+manager: dansimp
+---
+ 
+# What is Microsoft Baseline Security Analyzer and its uses?
+ 
+Microsoft Baseline Security Analyzer (MBSA) is used to verify patch compliance. MBSA also performed several other security checks for Windows, IIS, and SQL Server. Unfortunately, the logic behind these additional checks had not been actively maintained since Windows XP and Windows Server 2003. Changes in the products since then rendered many of these security checks obsolete and some of their recommendations counterproductive. 
+ 
+MBSA was largely used in situations where neither Microsoft Update nor a local WSUS or Configuration Manager server was available, or as a compliance tool to ensure that all security updates were deployed to a managed environment. While MBSA version 2.3 introduced support for Windows Server 2012 R2 and Windows 8.1, it has since been deprecated and no longer developed. MBSA 2.3 is not updated to fully support Windows 10 and Windows Server 2016.
+
+> [!NOTE]
+> In accordance with our [SHA-1 deprecation initiative](https://aka.ms/sha1deprecation), the Wsusscn2.cab file is no longer dual-signed using both SHA-1 and the SHA-2 suite of hash algorithms (specifically SHA-256). This file is now signed using only SHA-256. Administrators who verify digital signatures on this file should now expect only single SHA-256 signatures. Starting with the August 2020 Wsusscn2.cab file, MBSA will return the following error "The catalog file is damaged or an invalid catalog." when attempting to scan using the offline scan file. 
+ 
+## The Solution 
+A script can help you with an alternative to MBSA’s patch-compliance checking:
+ 
+- [Using WUA to Scan for Updates Offline](https://docs.microsoft.com/windows/desktop/wua_sdk/using-wua-to-scan-for-updates-offline), which includes a sample .vbs script. 
+For a PowerShell alternative, see [Using WUA to Scan for Updates Offline with PowerShell](https://gallery.technet.microsoft.com/Using-WUA-to-Scan-for-f7e5e0be).
+ 
+For example:
+ 
+[![VBS script](images/vbs-example.png)](https://docs.microsoft.com/windows/desktop/wua_sdk/using-wua-to-scan-for-updates-offline) 
+[![PowerShell script](images/powershell-example.png)](https://gallery.technet.microsoft.com/Using-WUA-to-Scan-for-f7e5e0be) 
+  
+The preceding scripts leverage the [WSUS offline scan file](https://support.microsoft.com/help/927745/detailed-information-for-developers-who-use-the-windows-update-offline) (wsusscn2.cab) to perform a scan and get the same information on missing updates as MBSA supplied. MBSA also relied on the wsusscn2.cab to determine which updates were missing from a given system without connecting to any online service or server. The wsusscn2.cab file is still available and there are currently no plans to remove or replace it.
+The wsusscn2.cab file contains the metadata of only security updates, update rollups and service packs available from Microsoft Update; it does not contain any information on non-security updates, tools or drivers.
+ 
+## More Information  
+
+For security compliance and for desktop/server hardening, we recommend the Microsoft Security Baselines and the Security Compliance Toolkit.
+
+- [Windows security baselines](windows-security-baselines.md) 
+- [Download Microsoft Security Compliance Toolkit 1.0](https://www.microsoft.com/download/details.aspx?id=55319) 
+- [Microsoft Security Guidance blog](https://blogs.technet.microsoft.com/secguide/)  

From 515a89a3428c3e4df151440f197f7bad073fb13e Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 12 Jan 2021 21:52:14 -0800
Subject: [PATCH 454/825] Update mbsa-removal-and-guidance.md

---
 .../security/threat-protection/mbsa-removal-and-guidance.md    | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/mbsa-removal-and-guidance.md b/windows/security/threat-protection/mbsa-removal-and-guidance.md
index 59f32f84e6..24bcf88c2d 100644
--- a/windows/security/threat-protection/mbsa-removal-and-guidance.md
+++ b/windows/security/threat-protection/mbsa-removal-and-guidance.md
@@ -6,8 +6,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
-author: dulcemontemayor
-ms.date: 10/05/2018
+author: dansimp
 ms.reviewer: 
 manager: dansimp
 ---

From d5d0eea52c9b5bc15a8bb089d02194ce609faf19 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 13 Jan 2021 09:29:14 +0200
Subject: [PATCH 455/825] Update gov.md

Update Windows 10 version 1803 required KB and marking as supported for GCC.
---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 2942c525e6..165f8e65d7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -45,7 +45,7 @@ Windows 10, version 2004 (with [KB4586853](https://support.microsoft.com/help/44
 Windows 10, version 1909 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1903 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 | ![No](../images/svg/check-no.svg) Rolling out | ![Yes](../images/svg/check-yes.svg) With [KB4499183](https://support.microsoft.com/help/4499183)
+Windows 10, version 1803 (with [KB4586839](https://support.microsoft.com/help/4598245)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
 Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)

From 42f360182c1ec8164c1f6babeca0eee677565cf5 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 13 Jan 2021 09:45:49 +0200
Subject: [PATCH 456/825] Update gov.md

Some Acrolinx fixes.
---
 .../threat-protection/microsoft-defender-atp/gov.md         | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 165f8e65d7..58e711d459 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -46,8 +46,8 @@ Windows 10, version 1909 (with [KB4586819](https://support.microsoft.com/help/45
 Windows 10, version 1903 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1803 (with [KB4586839](https://support.microsoft.com/help/4598245)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
-Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported | ![No](../images/svg/check-no.svg)<br>Note: Will not be supported
+Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
+Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows Server 2016 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
 Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
@@ -100,7 +100,7 @@ GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.
 
 
 ## Feature parity with commercial
-Defender for Endpoint do not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
+Defender for Endpoint does not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
 
 These are the known gaps as of January 2021:
 

From 6d92e929b3db2fbda09bf768a044cfde76468b19 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 13 Jan 2021 09:56:09 +0200
Subject: [PATCH 457/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 58e711d459..488bdb73d9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -100,7 +100,7 @@ GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.
 
 
 ## Feature parity with commercial
-Defender for Endpoint does not have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
+Defender for Endpoint doesn't have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
 
 These are the known gaps as of January 2021:
 

From 51d1901e26dd0da78cfcbbc426b88d1a9ee594c0 Mon Sep 17 00:00:00 2001
From: Jasper Metselaar <jasper@formmailer.net>
Date: Wed, 13 Jan 2021 09:58:38 +0100
Subject: [PATCH 458/825] Update live-response-command-examples.md

Missing backslash in the command to view a registry value.
---
 .../microsoft-defender-atp/live-response-command-examples.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md b/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
index 7c5bb16771..8c0898ffc7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
@@ -158,7 +158,7 @@ registry HKEY_CURRENT_USER\Console
 
 ```
 # Show information about a specific registry value
-registry HKEY_CURRENT_USER\Console\ScreenBufferSize
+registry HKEY_CURRENT_USER\Console\\ScreenBufferSize
 ```
 
 

From c35d9dc74070e02efc8a0dc1fe5b15e587b26f38 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 13 Jan 2021 12:22:17 +0200
Subject: [PATCH 459/825] Update gov.md

---
 .../threat-protection/microsoft-defender-atp/gov.md         | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 488bdb73d9..6f872b82ce 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -40,12 +40,12 @@ The following OS versions are supported:
 
 OS version | GCC | GCC High
 :---|:---|:---
-Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 2004 (with [KB4586853](https://support.microsoft.com/help/4490481)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 20H2 (with [KB4586853](https://support.microsoft.com/help/4586853)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 2004 (with [KB4586853](https://support.microsoft.com/help/4586853)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1909 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1903 (with [KB4586819](https://support.microsoft.com/help/4586819)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1809 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows 10, version 1803 (with [KB4586839](https://support.microsoft.com/help/4598245)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
+Windows 10, version 1803 (with [KB4598245](https://support.microsoft.com/help/4598245)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
 Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
 Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)

From 3d7ffbbae51324aaf435cb54b17da9a890114f7a Mon Sep 17 00:00:00 2001
From: Christos Ventouris <ventouris@gmail.com>
Date: Wed, 13 Jan 2021 16:20:07 +0400
Subject: [PATCH 460/825] Update data-storage-privacy.md

Changed "Microsoft Defender ATP" to "Microsoft Defender for Endpoint"
---
 .../microsoft-defender-atp/data-storage-privacy.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
index 953b74c139..5a6456d107 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
@@ -1,7 +1,7 @@
 ---
-title: Microsoft Defender ATP data storage and privacy
-description: Learn about how Microsoft Defender ATP handles privacy and data that it collects.
-keywords: Microsoft Defender ATP data storage and privacy, storage, privacy, licensing, geolocation, data retention, data
+title: Microsoft Defender for Endpoint data storage and privacy
+description: Learn about how Microsoft Defender for Endpoint handles privacy and data that it collects.
+keywords: Microsoft Defender for Endpoint , Microsoft Defender ATP , data storage and privacy, storage, privacy, licensing, geolocation, data retention, data
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10
@@ -84,7 +84,7 @@ No. Customer data is isolated from other customers and is not shared. However, i
 
 ## How long will Microsoft store my data? What is Microsoft’s data retention policy?
 **At service onboarding**<br>
-You can choose the data retention policy for your data. This determines how long Window Defender ATP will store your data. There’s a flexibility of choosing in the range of one month to six months to meet your company’s regulatory compliance needs.
+You can choose the data retention policy for your data. This determines how long Window Defender for Endpoint will store your data. There’s a flexibility of choosing in the range of one month to six months to meet your company’s regulatory compliance needs.
 
 **At contract termination or expiration**<br>
 Your data will be kept and will be available to you while the license is under grace period or suspended mode. At the end of this period, that data will be erased from Microsoft’s systems to make it unrecoverable, no later than 180 days from contract termination or expiration.

From 5a9860f011d43863f05dd243b29ad109d3c4186a Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 13 Jan 2021 11:07:18 -0800
Subject: [PATCH 461/825] Update
 windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../bitlocker/bitlocker-deployment-and-administration-faq.yml  | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
index c0c6eee28c..25f4fbfc30 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
+++ b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
@@ -35,7 +35,7 @@ sections:
         answer: Yes.
 
       - question: Is there a noticeable performance impact when BitLocker is enabled on a computer?
-        answer: Generally it imposes low, often in single-digit, and relative to the throughput of the storage operations on which it needs to operate.
+        answer: Generally speaking, it imposes a low performance reduction, often in single-digit percentages, which is relative to the throughput of the storage operations on which it needs to operate.
 
       - question: How long will initial encryption take when BitLocker is turned on?
         answer: |
@@ -94,4 +94,3 @@ sections:
 
       - question: What type of disk configurations are supported by BitLocker?
         answer: Any number of internal, fixed data drives can be protected with BitLocker. On some versions ATA and SATA-based, direct-attached storage devices are also supported.
-

From 7fccdd7c48a9fcc39a9e99fe6be36afa09f0f403 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 13 Jan 2021 11:08:33 -0800
Subject: [PATCH 462/825] Update
 bitlocker-deployment-and-administration-faq.yml

---
 .../bitlocker/bitlocker-deployment-and-administration-faq.yml   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
index 25f4fbfc30..8b59d31999 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
+++ b/windows/security/information-protection/bitlocker/bitlocker-deployment-and-administration-faq.yml
@@ -35,7 +35,7 @@ sections:
         answer: Yes.
 
       - question: Is there a noticeable performance impact when BitLocker is enabled on a computer?
-        answer: Generally speaking, it imposes a low performance reduction, often in single-digit percentages, which is relative to the throughput of the storage operations on which it needs to operate.
+        answer: Typically, there's a small performance overhead, often in single-digit percentages, which is relative to the throughput of the storage operations on which it needs to operate.
 
       - question: How long will initial encryption take when BitLocker is turned on?
         answer: |

From bcd0ea8622f7858720b7f9d28bf8f718567be1d6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:49:14 -0800
Subject: [PATCH 463/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 33 ++++++++++++-------
 1 file changed, 21 insertions(+), 12 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 2d4e5efdb5..c43654ba5e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 12/15/2020
+ms.date: 01/15/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
@@ -31,20 +31,29 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-Did Microsoft Defender for Endpoint identify an artifact as malicious, even though it wasn't? Are files or processes that are not a threat being stopped in their tracks by Defender for Endpoint? Or, did Defender for Endpoint miss something? Use this article as a guide for addressing false positives or false negatives in Defender for Endpoint.
+In Microsoft Defender for Endpoint, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. If you’re seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
 
-| Step | Description |
-|:---|:---|
-| 1. [Identify a false positive/negative](#identify-a-false-positivenegative) | A false positive is something that was detected and identified as malicious, when in fact it does not pose a threat. <br/>A false negative is something that was not detected as a threat even though it is, in fact, malicious. <br/>Both false positives and false negatives can be problematic for your organization.    |
-| 2. [Review/define exclusions for Defender for Endpoint](#review-or-define-exclusions)  |  |
-| 3. [Review/define indicators for Defender for Endpoint](#review-or-define-indicators) |  |
-| 4. [Classify a false positive/negative in Defender for Endpoint](#classify-a-false-positive-or-false-negative) |  |
-| 5. [Submit a file for analysis](#submit-a-file-for-analysis) |  |
-| 6. [Confirm your software uses EV code signing](#confirm-your-software-uses-ev-code-signing)  |  |
+Review your threat protection settings
+Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
-## Identify a false positive/negative
+- Cloud-delivered protection
+- Remediation for potentially unwanted apps (PUA)
+
+### Cloud-delivered protection
+
+Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, this is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
+
+See [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
+
+### Remediation for potentially unwanted applications (PUA)
+
+Potentially unwanted applications (PUA) are a category of software that can cause devices to run slowly, display unexpected ads, or install other software that might be unexpected or unwanted. Examples of PUA include advertising software, bundling software, and evasion software that behaves differently with security products. Although PUA is not considered malware, some kinds of software are PUA based on their behavior and reputation.
+ 
+Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If this is happening, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
+
+> [!TIP]
+> To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
 
-*How do we know something is a false positive or negative? What do we want customers to look for?*
 
 ## Review or define exclusions
 

From a41ed13796f6238a069151684485c15296665174 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:50:25 -0800
Subject: [PATCH 464/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index c43654ba5e..7e2224fc74 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -54,6 +54,16 @@ Depending on the apps your organization is using, you might be getting false pos
 > [!TIP]
 > To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
 
+#### Use Microsoft Endpoint Manager to edit PUA protection for existing configuration profiles
+
+1.	Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2.	Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+3.	Under **Manage**, choose **Properties**, and then, next to **Configuration settings**, choose **Edit**.
+4.	On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
+5.	Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)
+6.	Choose **Review + save**, and then choose **Save**.
+
+
 
 ## Review or define exclusions
 

From 0509296bac40162a4aefbfe21aecf284507843ac Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:50:48 -0800
Subject: [PATCH 465/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 7e2224fc74..703de9a4ef 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -56,12 +56,12 @@ Depending on the apps your organization is using, you might be getting false pos
 
 #### Use Microsoft Endpoint Manager to edit PUA protection for existing configuration profiles
 
-1.	Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2.	Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
-3.	Under **Manage**, choose **Properties**, and then, next to **Configuration settings**, choose **Edit**.
-4.	On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
-5.	Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)
-6.	Choose **Review + save**, and then choose **Save**.
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+3. Under **Manage**, choose **Properties**, and then, next to **Configuration settings**, choose **Edit**.
+4. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
+5. Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)
+6. Choose **Review + save**, and then choose **Save**.
 
 
 

From 1c60d9b448e225a8707e85cbc1d7c0292741de68 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:52:02 -0800
Subject: [PATCH 466/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md  | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 703de9a4ef..4fc988374f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -57,12 +57,23 @@ Depending on the apps your organization is using, you might be getting false pos
 #### Use Microsoft Endpoint Manager to edit PUA protection for existing configuration profiles
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-pua-protection-for-a-new-configuration-profile)).
 3. Under **Manage**, choose **Properties**, and then, next to **Configuration settings**, choose **Edit**.
 4. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
 5. Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)
 6. Choose **Review + save**, and then choose **Save**.
 
+#### Use Microsoft Endpoint Manager to set PUA protection for a new configuration profile
+
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Devices** > **Configuration profiles** > **+ Create profile**.
+3. For the **Platform**, choose **Windows 10 and later**, and for **Profile**, select **Device restrictions**.
+4. On the **Basics** tab, specify a name and description for your policy. Then choose **Next**.
+5. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
+6. Set **Detect potentially unwanted applications** to **Audit**, and then choose **Next**. (You can turn PUA protection off, but by using audit mode, you will be able to see detections.)
+7. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
+8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
+9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
 
 ## Review or define exclusions

From 47a5ddb4b59892d07f31a4ef6dc08737e27e7a14 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:54:35 -0800
Subject: [PATCH 467/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md   | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4fc988374f..d120882e6a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -76,9 +76,17 @@ Depending on the apps your organization is using, you might be getting false pos
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
 
-## Review or define exclusions
+## Review or define exclusions for Microsoft Defender for Endpoint
+
+An exclusion is an entity that you specify as an exception to remediation. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
+
+To define exclusions across Microsoft Defender for Endpoint, you must perform at least two kinds of tasks:
+
+- Define exclusions for Microsoft Defender Antivirus (you do this by editing an existing antivirus policy or by creating a new policy)
+- Create “allow” indicators for Microsoft Defender for Endpoint ()
+
+You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), attack surface reduction (ASR) rules, and controlled folder access. Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use custom indicators.
 
-*Exclusions are defined for AutoIR and for MDAV, yes?*
 
 ## Review or define indicators
 

From ba8ffab39c6b33c5d8b74f831c6adb308218a1fd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:55:40 -0800
Subject: [PATCH 468/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d120882e6a..4cfd1708d9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -85,7 +85,7 @@ To define exclusions across Microsoft Defender for Endpoint, you must perform at
 - Define exclusions for Microsoft Defender Antivirus (you do this by editing an existing antivirus policy or by creating a new policy)
 - Create “allow” indicators for Microsoft Defender for Endpoint ()
 
-You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), attack surface reduction (ASR) rules, and controlled folder access. Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use custom indicators.
+You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use custom indicators.
 
 
 ## Review or define indicators

From f1e6f6f4ff42ca4086b58915cf99051c152af1e2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 12:56:39 -0800
Subject: [PATCH 469/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4cfd1708d9..61db33647d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -75,17 +75,15 @@ Depending on the apps your organization is using, you might be getting false pos
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
-
 ## Review or define exclusions for Microsoft Defender for Endpoint
 
 An exclusion is an entity that you specify as an exception to remediation. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
 To define exclusions across Microsoft Defender for Endpoint, you must perform at least two kinds of tasks:
-
 - Define exclusions for Microsoft Defender Antivirus (you do this by editing an existing antivirus policy or by creating a new policy)
 - Create “allow” indicators for Microsoft Defender for Endpoint ()
 
-You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use custom indicators.
+You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators).
 
 
 ## Review or define indicators

From 04e2d46c5b0994aefda58e659b99e89164de1dad Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 13:06:18 -0800
Subject: [PATCH 470/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 27 +++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 61db33647d..f9216bbfe8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -85,6 +85,33 @@ To define exclusions across Microsoft Defender for Endpoint, you must perform at
 
 You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators).
 
+### Exclusions for Microsoft Defender Antivirus
+
+In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions.
+
+> [!TIP]
+> Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
+
+#### Use Microsoft Endpoint Manager to manage antivirus exclusions for existing policies
+
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+3. Choose **Properties**, and next to **Configuration settings**, choose **Edit**.
+4. Expand **Microsoft Defender Antivirus Exclusions** and then specify your exclusions.
+5. Choose **Review + save**, and then choose **Save**.
+
+#### Use Microsoft Endpoint Manager to create an antivirus policy with exclusions
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
+3. Select a platform (such as Windows 10 and later, macOS, or Windows 10 and Windows Server).
+4. For **Profile**, select **Microsoft Defender Antivirus exclusions**, and then choose **Create**.
+5. Specify a name and description for the profile, and then choose **Next**.
+6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.
+7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags]( Use role-based access control (RBAC) and scope tags for distributed IT in Intune | Microsoft Docs).)
+8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
+9. On the **Review + create** tab, review the settings, and then choose **Create**.
+
+
 
 ## Review or define indicators
 

From 3d1407fd3a22033c4ba167208dc03f379cc85de2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 13:06:54 -0800
Subject: [PATCH 471/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f9216bbfe8..4fd508750d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -90,7 +90,7 @@ You must perform both kinds of tasks because Microsoft Defender Antivirus exclus
 In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions.
 
 > [!TIP]
-> Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
+> Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
 
 #### Use Microsoft Endpoint Manager to manage antivirus exclusions for existing policies
 
@@ -101,6 +101,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 5. Choose **Review + save**, and then choose **Save**.
 
 #### Use Microsoft Endpoint Manager to create an antivirus policy with exclusions
+
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
 3. Select a platform (such as Windows 10 and later, macOS, or Windows 10 and Windows Server).

From 3c5d2a3d2429851c32762559e667f20c91f60cc7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 13:09:06 -0800
Subject: [PATCH 472/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4fd508750d..b43e1e658d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -95,7 +95,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 #### Use Microsoft Endpoint Manager to manage antivirus exclusions for existing policies
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-create-an-antivirus-policy-with-exclusions)).
 3. Choose **Properties**, and next to **Configuration settings**, choose **Edit**.
 4. Expand **Microsoft Defender Antivirus Exclusions** and then specify your exclusions.
 5. Choose **Review + save**, and then choose **Save**.
@@ -108,7 +108,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 4. For **Profile**, select **Microsoft Defender Antivirus exclusions**, and then choose **Create**.
 5. Specify a name and description for the profile, and then choose **Next**.
 6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.
-7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags]( Use role-based access control (RBAC) and scope tags for distributed IT in Intune | Microsoft Docs).)
+7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.
 

From 480e2a5a36204a7a1aa754c651f18631efbc55e7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 13:10:06 -0800
Subject: [PATCH 473/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 --
 1 file changed, 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index b43e1e658d..41af0bb20a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -112,8 +112,6 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.
 
-
-
 ## Review or define indicators
 
 *Allow indicators for false positives; block indicators for false negatives.  https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators*

From c3dde2a0d79f332eb65c71ee2d8894363def7ce2 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 13 Jan 2021 13:54:08 -0800
Subject: [PATCH 474/825] add intro

---
 .../threat-protection/microsoft-defender-atp/onboarding.md      | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
index bdcafd18a1..e4a6a6708b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
@@ -27,6 +27,8 @@ ms.topic: article
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
+Learn about the various phases of deploying Microsoft Defender for Endpoint and how to configure the capabilities within the solution. 
+
 Deploying Defender for Endpoint is a three-phase process:
 
 | [![deployment phase - prepare](images/phase-diagrams/prepare.png)](prepare-deployment.md)<br>[Phase 1: Prepare](prepare-deployment.md) | [![deployment phase - setup](images/phase-diagrams/setup.png)](production-deployment.md)<br>[Phase 2: Setup](production-deployment.md) | ![deployment phase - onboard](images/phase-diagrams/onboard.png)<br>Phase 3: Onboard |

From 514985aeb75c4975f24cb75ae6bc930a61ee32fc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 14:02:08 -0800
Subject: [PATCH 475/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md  | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 41af0bb20a..684eb83488 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,7 +33,8 @@ ms.custom: FPFN
 
 In Microsoft Defender for Endpoint, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. If you’re seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
 
-Review your threat protection settings
+## Review your threat protection settings
+
 Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
 - Cloud-delivered protection
@@ -112,13 +113,17 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.
 
-## Review or define indicators
+### Indicators for Microsoft Defender for Endpoint
 
 *Allow indicators for false positives; block indicators for false negatives.  https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators*
 
-## Classify a false positive or false negative
+To specify files, IP addresses, URLs, domains, and certificates as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. "Allow" indicators prevent the following capabilities of Microsoft Defender for Endpoint from taking action on entities:
+
+- [Next-generation protection](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
+- [Endpoint detection and response](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
+- [Automated investigation & remediation](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
+
 
-*Need to figure out where/how this is done*
 
 ## Submit a file for analysis
 

From 7312853d028e81efbab426af3f5c28d1240c8d34 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 13 Jan 2021 14:02:28 -0800
Subject: [PATCH 476/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 684eb83488..ae042deaee 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -53,7 +53,7 @@ Potentially unwanted applications (PUA) are a category of software that can caus
 Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If this is happening, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
 
 > [!TIP]
-> To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
+> To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
 
 #### Use Microsoft Endpoint Manager to edit PUA protection for existing configuration profiles
 
@@ -119,9 +119,9 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 To specify files, IP addresses, URLs, domains, and certificates as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. "Allow" indicators prevent the following capabilities of Microsoft Defender for Endpoint from taking action on entities:
 
-- [Next-generation protection](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
-- [Endpoint detection and response](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
-- [Automated investigation & remediation](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
+- [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
+- [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
+- [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
 
 

From 75743a260bf36daabe741191ecbbb28883d00ecb Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 13 Jan 2021 15:09:24 -0800
Subject: [PATCH 477/825] Update
 windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/data-storage-privacy.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
index 5a6456d107..4a5639583d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
@@ -1,7 +1,7 @@
 ---
 title: Microsoft Defender for Endpoint data storage and privacy
 description: Learn about how Microsoft Defender for Endpoint handles privacy and data that it collects.
-keywords: Microsoft Defender for Endpoint , Microsoft Defender ATP , data storage and privacy, storage, privacy, licensing, geolocation, data retention, data
+keywords: Microsoft Defender for Endpoint, Microsoft Defender ATP, data storage and privacy, storage, privacy, licensing, geolocation, data retention, data
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10

From 84a804e1145bc10976e0ba97557d307311fe664b Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 13 Jan 2021 18:27:50 -0800
Subject: [PATCH 478/825] Fix for commit
 d8aee78ad6a711b7f5e55740d446a4bfe070a308

This updates the name of a section and the link to it following a change to the targeted heading.
---
 ...for-windows-embedded-8-1-handheld-devices-to-windows-10.md | 2 +-
 windows/deployment/update/waas-optimize-windows-10-updates.md | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md b/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
index 7ef806784f..04f04adeba 100644
--- a/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
+++ b/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
@@ -141,7 +141,7 @@ There are two ways to retrieve this file from the device; one pre-GDR1 and one p
 3.  After the report XML is sent to the device, Microsoft Endpoint Configuration Manager displays a compliance log that contains the report information. The log can contain significant amount of data.
 4.  Parse this log for the report XML content.
 
-For a step-by-step walkthrough, see [Retrieve a device update report using Microsoft Endpoint Configuration Manager logs](#retrieve-a-device-update-report-using-microsoft-endpoint-configuration-manager-logs).
+For a step-by-step walkthrough, see [Retrieve a device update report using Microsoft Endpoint Manager logs](#retrieve-a-device-update-report-using-microsoft-endpoint-manager-logs).
 
 **Post-GDR1: Retrieve the report xml file using an SD card**
 
diff --git a/windows/deployment/update/waas-optimize-windows-10-updates.md b/windows/deployment/update/waas-optimize-windows-10-updates.md
index 1e0f4be7b7..45e497444f 100644
--- a/windows/deployment/update/waas-optimize-windows-10-updates.md
+++ b/windows/deployment/update/waas-optimize-windows-10-updates.md
@@ -35,7 +35,7 @@ Two methods of peer-to-peer content distribution are available in Windows 10.
 
     Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager can use BranchCache to allow peers to source content from each other versus always having to contact a server. Using BranchCache, files are cached on each individual client, and other clients can retrieve them as needed. This approach distributes the cache rather than having a single point of retrieval, saving a significant amount of bandwidth while drastically reducing the time that it takes for clients to receive the requested content.
 
-</br></br>
+<br/><br/>
 
 | Method | Windows Update | Windows Update for Business | WSUS | Configuration Manager |
 | --- | --- | --- | --- | --- |
@@ -93,7 +93,7 @@ At this point, the download is complete and the update is ready to be installed.
 | ![done](images/checklistdone.png) | [Build deployment rings for Windows 10 updates](waas-deployment-rings-windows-10-updates.md) |
 | ![done](images/checklistdone.png) | [Assign devices to servicing channels for Windows 10 updates](waas-servicing-channels-windows-10-updates.md) |
 | ![done](images/checklistdone.png) | Optimize update delivery for Windows 10 updates (this topic) |
-| ![to do](images/checklistbox.gif) | [Deploy updates using Windows Update for Business](waas-manage-updates-wufb.md)</br>or [Deploy Windows 10 updates using Windows Server Update Services](waas-manage-updates-wsus.md)</br>or [Deploy Windows 10 updates using Microsoft Endpoint Configuration Manager](waas-manage-updates-configuration-manager.md) |
+| ![to do](images/checklistbox.gif) | [Deploy updates using Windows Update for Business](waas-manage-updates-wufb.md)<br/>or [Deploy Windows 10 updates using Windows Server Update Services](waas-manage-updates-wsus.md)<br/>or [Deploy Windows 10 updates using Microsoft Endpoint Configuration Manager](waas-manage-updates-configuration-manager.md) |
 
 
 ## Related topics

From de79b9ea07983c59e37f0d18c6cddea8e4f4a39a Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 13 Jan 2021 18:29:16 -0800
Subject: [PATCH 479/825] Fixes for commit
 e30c32a323701be2f092458b0c603803676df2f2

This updates the name of a section and the link to it following a change to the targeted heading.
---
 .../microsoft-defender-atp/configure-server-endpoints.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 6c6a1ea7cc..9340bc1bb3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -48,7 +48,7 @@ You can onboard Windows Server 2008 R2 SP1, Windows Server 2012 R2, and Windows
 
 - **Option 1**: [Onboard by installing and configuring Microsoft Monitoring Agent (MMA)](#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)
 - **Option 2**: [Onboard through Azure Security Center](#option-2-onboard-windows-servers-through-azure-security-center)
-- **Option 3**: [Onboard through Microsoft Endpoint Configuration Manager version 2002 and later](#option-3-onboard-windows-servers-through-microsoft-endpoint-configuration-manager-version-2002-and-later)
+- **Option 3**: [Onboard through Microsoft Endpoint Manager version 2002 and later](#option-3-onboard-windows-servers-through-microsoft-endpoint-manager-version-2002-and-later)
 
 
 After completing the onboarding steps using any of the provided options, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).

From 7c5956b1042be489edae1df096f4ac0d1171fdee Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Wed, 13 Jan 2021 18:40:39 -0800
Subject: [PATCH 480/825] new article

---
 windows/security/threat-protection/TOC.md     |  1 +
 ...igure-vulnerability-email-notifications.md | 93 +++++++++++++++++++
 2 files changed, 94 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 0af4c22a60..ae036e54a1 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -478,6 +478,7 @@
 #### [General]()
 ##### [Verify data storage location and  update data retention settings](microsoft-defender-atp/data-retention-settings.md)
 ##### [Configure alert notifications](microsoft-defender-atp/configure-email-notifications.md)
+##### [Configure vulnerability notifications](microsoft-defender-atp/configure-vulnerability-email-notifications.md)
 ##### [Configure advanced features](microsoft-defender-atp/advanced-features.md)
 
 #### [Permissions]()
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md b/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md
new file mode 100644
index 0000000000..ba7b6f4bd7
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md
@@ -0,0 +1,93 @@
+---
+title: Configure vulnerability email notifications in Microsoft Defender for Endpoint
+description: You can use Microsoft Defender Advanced Threat Protection to configure email notification settings for security alerts, based on severity and other criteria.
+keywords: email notifications, configure alert notifications, microsoft defender atp notifications, microsoft defender atp alerts, windows 10 enterprise, windows 10 education
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: ellevin
+author: levinec
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: article
+---
+
+# Configure vulnerability email notifications in Microsoft Defender for Endpoint
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+**Applies to:**
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-emailconfig-abovefoldlink)
+
+Configure Microsoft Defender for Endpoint to send email notifications to specified recipients for new vulnerability events. This feature enables you to identify a group of individuals who will immediately be informed and can act on the notifications based on the event. The vulnerability information comes from Defender for Endpoint's [threat and vulnerability management](next-gen-threat-and-vuln-mgt.md) capability.
+
+> [!NOTE]
+> Only users with 'Manage security settings' permissions can configure email notifications. If you've chosen to use basic permissions management, users with Security Administrator or Global Administrator roles can configure email notifications. [Learn more about permission options](user-roles.md)
+
+The notification rules allow you to set the vulnerability events that trigger notifications, and add or remove email notification recipients. New recipients get notified about vulnerabilities after they are added.
+
+If you're using role-based access control (RBAC), recipients will only receive notifications based on the device groups that were configured in the notification rule.
+Users with the proper permission can only create, edit, or delete notifications that are limited to their device group management scope. Only users assigned to the Global administrator role can manage notification rules that are configured for all device groups.
+
+The email notification includes basic information about the vulnerability event. There are also links to filtered views in the threat and vulnerability management [Security recommendations](tvm-security-recommendation.md) and [Weaknesses](tvm-weaknesses.md) pages in the portal so you can do further investigation.
+
+## Create rules for alert notifications
+
+Create a notification rule to send an email when there are certain exploit or vulnerability events, such as a new public exploit. For each rule, multiple event types can be selected.
+
+1. In the navigation pane, go to **Settings** > **Email notifications** > **Vulnerabilities**.
+
+2. Select **Add notification rule**.
+
+3. Name the email notification rule and include a description.
+
+4. Check **Notification enabled** to activate the notification. Select **Next**
+
+5. Fill in the notification settings. Then select **Next**
+
+    - Choose device groups to get notifications for.
+    - Choose the vulnerability event(s) that you want to be notified about when they affect your organization.
+        - Options: new vulnerability found (including severity threshold), new public exploit, exploit added to an exploit kit, exploit was verified.
+    - Include organization name if you want the organization name in the email
+
+6. Enter the recipient email address then select **Add**. You can add multiple email addresses.
+
+7. Review the settings for the new email notification rule and select **Create rule** when you're ready to create it.
+
+## Edit a notification rule
+
+1. Select the notification rule you'd like to edit.
+
+2. Select the **Edit rule** button next to the pencil icon in the flyout. Make sure you have permission to edit or delete the rule.
+
+## Delete notification rule
+
+1. Select the notification rule you'd like to delete.
+
+2. Select the **Delete** button next to the trash can icon in the flyout. Make sure you have permission to edit or delete the rule.
+
+## Troubleshoot email notifications for alerts
+
+This section lists various issues that you may encounter when using email notifications for alerts.
+
+**Problem:** Intended recipients report they are not getting the notifications.
+
+**Solution:** Make sure that the notifications are not blocked by email filters:
+
+1. Check that the Defender for Endpoint email notifications are not sent to the Junk Email folder. Mark them as Not junk.
+2. Check that your email security product is not blocking the email notifications from Defender for Endpoint.
+3. Check your email application rules that might be catching and moving your Defender for Endpoint email notifications.
+
+## Related topics
+
+- [Threat and vulnerability management overview](next-gen-threat-and-vuln-mgt.md)
+- [Security recommendations](tvm-security-recommendation.md)
+- [Weaknesses](tvm-weaknesses.md)
+- [Event timeline](threat-and-vuln-mgt-event-timeline.md)

From 6d2e2364d691d270c5744a3c581d4dad02d62052 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 13 Jan 2021 18:54:37 -0800
Subject: [PATCH 481/825] Update waas-optimize-windows-10-updates.md

---
 windows/deployment/update/waas-optimize-windows-10-updates.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/update/waas-optimize-windows-10-updates.md b/windows/deployment/update/waas-optimize-windows-10-updates.md
index 3844c31338..0a81369222 100644
--- a/windows/deployment/update/waas-optimize-windows-10-updates.md
+++ b/windows/deployment/update/waas-optimize-windows-10-updates.md
@@ -24,7 +24,7 @@ When considering your content distribution strategy for Windows 10, think about
 
 Two methods of peer-to-peer content distribution are available in Windows 10.
 
-- [Delivery Optimization](waas-delivery-optimization.md) is a new peer-to-peer distribution method in Windows 10. Windows 10 clients can source content from other devices on their local network that have already downloaded the updates or from peers over the internet. Using the settings available for Delivery Optimization, clients can be configured into groups, allowing organizations to identify devices that are possibly the best candidates to fulfil peer-to-peer requests.
+- [Delivery Optimization](waas-delivery-optimization.md) is a new peer-to-peer distribution method in Windows 10. Windows 10 clients can source content from other devices on their local network that have already downloaded the updates or from peers over the internet. Using the settings available for Delivery Optimization, clients can be configured into groups, allowing organizations to identify devices that are possibly the best candidates to fulfill peer-to-peer requests.
 
     Windows Update, Windows Update for Business, and Windows Server Update Services (WSUS) can use Delivery Optimization. Delivery Optimization can significantly reduce the amount of network traffic to external Windows Update sources as well as the time it takes for clients to retrieve the updates.
 

From 851c458c5ff99dd87e853f72c128eef189c27e89 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Wed, 13 Jan 2021 19:00:10 -0800
Subject: [PATCH 482/825] new tip

---
 .../threat-and-vuln-mgt-event-timeline.md                 | 3 +++
 .../microsoft-defender-atp/tvm-security-recommendation.md | 3 +++
 .../microsoft-defender-atp/tvm-weaknesses.md              | 8 ++------
 3 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
index 32cb4825cb..571585c5e1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
@@ -32,6 +32,9 @@ Event timeline is a risk news feed that helps you interpret how risk is introduc
 
 Event timeline also tells the story of your [exposure score](tvm-exposure-score.md) and [Microsoft Secure Score for Devices](tvm-microsoft-secure-score-devices.md) so you can determine the cause of large changes. Events can impact your devices or your score for devices. Reduce you exposure by addressing what needs to be remediated based on the prioritized [security recommendations](tvm-security-recommendation.md).
 
+>[!TIP]
+>To get emails about new vulnerability events, see [Configure vulnerability email notifications in Microsoft Defender for Endpoint](configure-vulnerability-email-notifications.md)
+
 ## Navigate to the Event timeline page
 
 There are also three entry points from the [threat and vulnerability management dashboard](tvm-dashboard-insights.md):
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 1a7f20a55c..87e6e68dfe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -33,6 +33,9 @@ Cybersecurity weaknesses identified in your organization are mapped to actionabl
 
 Each security recommendation includes actionable remediation steps. To help with task management, the recommendation can also be sent using Microsoft Intune and Microsoft Endpoint Configuration Manager. When the threat landscape changes, the recommendation also changes as it continuously collects information from your environment.
 
+>[!TIP]
+>To get emails about new vulnerability events, see [Configure vulnerability email notifications in Microsoft Defender for Endpoint](configure-vulnerability-email-notifications.md)
+
 ## How it works
 
 Each device in the organization is scored based on three important factors to help customers to focus on the right things at the right time.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
index e9ead66986..71ba98489d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
@@ -35,12 +35,8 @@ The **Weaknesses** page lists the software vulnerabilities your devices are expo
 >[!NOTE]
 >If there is no official CVE-ID assigned to a vulnerability, the vulnerability name is assigned by threat and vulnerability management.
 
->[!IMPORTANT]
->To boost your vulnerability assessment detection rates, you can download the following mandatory security updates and deploy them in your network:
->- 19H1 customers | [KB 4512941](https://support.microsoft.com/help/4512941/windows-10-update-kb4512941)
->- RS5 customers | [KB 4516077](https://support.microsoft.com/help/4516077/windows-10-update-kb4516077)
->- RS4 customers | [KB 4516045](https://support.microsoft.com/help/4516045/windows-10-update-kb4516045)
->- RS3 customers | [KB 4516071](https://support.microsoft.com/help/4516071/windows-10-update-kb4516071)
+>[!TIP]
+>To get emails about new vulnerability events, see [Configure vulnerability email notifications in Microsoft Defender for Endpoint](configure-vulnerability-email-notifications.md)
 
 ## Navigate to the Weaknesses page
 

From d8aa09089101a2b3c2a1a5a7026225b6b39454d2 Mon Sep 17 00:00:00 2001
From: Adam Haynes <adam.haynes@outlook.com>
Date: Thu, 14 Jan 2021 10:53:40 +0100
Subject: [PATCH 483/825] Update alerts.md

Update alert and return type links were incorrect.
---
 .../security/threat-protection/microsoft-defender-atp/alerts.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index 0668c313a5..9c311bdd80 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -36,7 +36,7 @@ Method |Return Type |Description
 :---|:---|:---
 [Get alert](get-alert-info-by-id.md) | [Alert](alerts.md) | Get a single [alert](alerts.md) object.
 [List alerts](get-alerts.md) | [Alert](alerts.md) collection | List [alert](alerts.md) collection.
-[Update alert](get-alerts.md) | [Alert](update-alert.md) | Update specific [alert](alerts.md).
+[Update alert](update-alert.md) | [Alert](alerts.md) | Update specific [alert](alerts.md).
 [Create alert](create-alert-by-reference.md)|[Alert](alerts.md)|Create an alert based on event data obtained from [Advanced Hunting](run-advanced-query-api.md).
 [List related domains](get-alert-related-domain-info.md)|Domain collection| List URLs associated with the alert.
 [List related files](get-alert-related-files-info.md) | [File](files.md) collection |  List the [file](files.md) entities that are associated with the [alert](alerts.md).

From b715fa6f3ca99c63b1220ae15b33cb4de971f1c5 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Thu, 14 Jan 2021 16:29:09 +0200
Subject: [PATCH 484/825] Update troubleshoot-collect-support-log.md

A few adjustments for rebranding purposes
---
 .../troubleshoot-collect-support-log.md       | 24 +++++++++----------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
index 6ef738803e..8a53dd2388 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
@@ -1,6 +1,6 @@
 ---
-title: Collect support logs in Microsoft Defender ATP using live response
-description: Learn how to collect logs using live response to troubleshoot Microsoft Defender ATP issues
+title: Collect support logs in Microsoft Defender for Endpoints using live response
+description: Learn how to collect logs using live response to troubleshoot Microsoft Defender for Endpoints issues
 keywords: support, log, collect, troubleshoot, live response, liveanalyzer, analyzer, live, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -28,9 +28,9 @@ When contacting support, you may be asked to provide the output package of the M
 This topic provides instructions on how to run the tool via Live Response.
 
 1. Download the appropriate script
-    * Microsoft Defender for Endpoint client sensor logs only: [LiveAnalyzer.ps1 script](https://aka.ms/MDATPLiveAnalyzer).
+    * Microsoft Defender for Endpoint client sensor logs only: [LiveAnalyzer.ps1 script](https://aka.ms/MDELiveAnalyzer).
       - Result package approximate size: ~100Kb 
-    *  Microsoft Defender for Endpoint client sensor and Antivirus logs: [LiveAnalyzer+MDAV.ps1 script](https://aka.ms/MDATPLiveAnalyzerAV).
+    *  Microsoft Defender for Endpoint client sensor and Antivirus logs: [LiveAnalyzer+MDAV.ps1 script](https://aka.ms/MDELiveAnalyzerAV).
        - Result package approximate size: ~10Mb 
  
 2.	Initiate a [Live Response session](live-response.md#initiate-a-live-response-session-on-a-device) on the machine you need to investigate.
@@ -43,7 +43,7 @@ This topic provides instructions on how to run the tool via Live Response.
 
     ![Image of choose file button](images/choose-file.png)
 
-5. Select the downloaded file named MDATPLiveAnalyzer.ps1 and then click on **Confirm**
+5. Select the downloaded file named MDELiveAnalyzer.ps1 and then click on **Confirm**
 
 
    ![Image of choose file button](images/analyzer-file.png)
@@ -52,24 +52,24 @@ This topic provides instructions on how to run the tool via Live Response.
 6. While still in the LiveResponse session, use the commands below to run the analyzer and collect the result file:
 
     ```console
-    Run MDATPLiveAnalyzer.ps1
-    GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto
+    Run MDELiveAnalyzer.ps1
+    GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDEClientAnalyzerResult.zip" -auto
     ```
 
     ![Image of commands](images/analyzer-commands.png)
 
 
 >[!NOTE]
-> - The latest preview version of MDATPClientAnalyzer can be downloaded here: [https://aka.ms/Betamdatpanalyzer](https://aka.ms/Betamdatpanalyzer).
+> - The latest preview version of MDEClientAnalyzer can be downloaded here: [https://aka.ms/Betamdeanalyzer](https://aka.ms/Betamdeanalyzer).
 > 
 > - The LiveAnalyzer script downloads the troubleshooting package on the destination machine from: https://mdatpclientanalyzer.blob.core.windows.net.
 > 
->   If you cannot allow the machine to reach the above URL, then upload MDATPClientAnalyzerPreview.zip file to the library before running the LiveAnalyzer script:
+>   If you cannot allow the machine to reach the above URL, then upload MDEClientAnalyzerPreview.zip file to the library before running the LiveAnalyzer script:
 >
 >   ```console
->   PutFile MDATPClientAnalyzerPreview.zip -overwrite
->   Run MDATPLiveAnalyzer.ps1
->   GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto
+>   PutFile MDEClientAnalyzerPreview.zip -overwrite
+>   Run MDELiveAnalyzer.ps1
+>   GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDEClientAnalyzerResult.zip" -auto
 >   ```
 > 
 > - For more information on gathering data locally on a machine in case the machine isn't communicating with Microsoft Defender for Endpoint cloud services, or does not appear in Microsoft Defender for Endpoint portal as expected, see [Verify client connectivity to Microsoft Defender for Endpoint service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls).

From 7e4a8edc1594bada0cacf60b131faf97db47c883 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 14 Jan 2021 16:40:46 +0200
Subject: [PATCH 485/825] Update gov.md

Marking down-level as available for GCC.
---
 .../microsoft-defender-atp/gov.md                  | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 6f872b82ce..85e190979f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -49,13 +49,13 @@ Windows 10, version 1803 (with [KB4598245](https://support.microsoft.com/help/45
 Windows 10, version 1709 | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![Yes](../images/svg/check-yes.svg) With [KB4499147](https://support.microsoft.com/help/4499147)<br>Note: [Deprecated](https://docs.microsoft.com/lifecycle/announcements/revised-end-of-service-windows-10-1709), please upgrade
 Windows 10, version 1703 and earlier | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported | ![No](../images/svg/check-no.svg)<br>Note: Won't be supported
 Windows Server 2019 (with [KB4586839](https://support.microsoft.com/help/4586839)) | ![Yes](../images/svg/check-yes.svg) | ![Yes](../images/svg/check-yes.svg)
-Windows Server 2016 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows Server 2012 R2 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows Server 2008 R2 SP1 | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows 8.1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows 8 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows 7 SP1 Enterprise | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
-Windows 7 SP1 Pro | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Windows Server 2016 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows Server 2012 R2 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows Server 2008 R2 SP1 | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows 8.1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows 8 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Enterprise | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
+Windows 7 SP1 Pro | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Linux | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 macOS | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
 Android | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog

From 74f3eae5657a8edabd5f5c7db6bf69f9b81313cb Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 14 Jan 2021 17:17:02 +0200
Subject: [PATCH 486/825] Update TOC.md

Fix rebranding of MDATP to MDE.
---
 windows/security/threat-protection/TOC.md | 54 +++++++++++------------
 1 file changed, 27 insertions(+), 27 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index cb7bae5c97..40c6901518 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -1,15 +1,15 @@
 # [Threat protection](index.md)
 
 ## [Overview]()
-### [What is Microsoft Defender Advanced Threat Protection?](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md)
+### [What is Microsoft Defender for Endpoint?](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md)
 ### [Minimum requirements](microsoft-defender-atp/minimum-requirements.md)
-### [What's new in Microsoft Defender ATP](microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md)
+### [What's new in Microsoft Defender for Endpoint](microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md)
 ### [Preview features](microsoft-defender-atp/preview.md)
 ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
 ### [Overview of Microsoft Defender Security Center](microsoft-defender-atp/use.md)
 ### [Portal overview](microsoft-defender-atp/portal-overview.md)
 ### [Microsoft Defender for Endpoint for US Government customers](microsoft-defender-atp/gov.md)
-### [Microsoft Defender ATP for non-Windows platforms](microsoft-defender-atp/non-windows.md)
+### [Microsoft Defender for Endpoint for non-Windows platforms](microsoft-defender-atp/non-windows.md)
 
 ## [Evaluate capabilities](microsoft-defender-atp/evaluation-lab.md)
 
@@ -239,7 +239,7 @@
 #### [Deploy]()
 ##### [Microsoft Intune-based deployment](microsoft-defender-atp/mac-install-with-intune.md)
 ##### [JAMF Pro-based deployment]()
-###### [Deploying Microsoft Defender ATP for macOS using Jamf Pro](microsoft-defender-atp/mac-install-with-jamf.md)
+###### [Deploying Microsoft Defender for Endpoint for macOS using Jamf Pro](microsoft-defender-atp/mac-install-with-jamf.md)
 ###### [Login to Jamf Pro](microsoft-defender-atp/mac-install-jamfpro-login.md)
 ###### [Set up device groups](microsoft-defender-atp/mac-jamfpro-device-groups.md)
 ###### [Set up policies](microsoft-defender-atp/mac-jamfpro-policies.md)
@@ -267,8 +267,8 @@
 
 
 
-### [Microsoft Defender Advanced Threat Protection for iOS]()
-#### [Overview of Microsoft Defender Advanced Threat Protection for iOS](microsoft-defender-atp/microsoft-defender-atp-ios.md)
+### [Microsoft Defender for Endpoint for iOS]()
+#### [Overview of Microsoft Defender for Endpoint for iOS](microsoft-defender-atp/microsoft-defender-atp-ios.md)
 
 #### [Deploy]()
 ##### [Deploy Microsoft Defender for Endpoint for iOS via Intune](microsoft-defender-atp/ios-install.md)
@@ -278,8 +278,8 @@
 #### [Privacy](microsoft-defender-atp/ios-privacy.md)
 
 
-### [Microsoft Defender Advanced Threat Protection for Linux]()
-#### [Overview of Microsoft Defender ATP for Linux](microsoft-defender-atp/microsoft-defender-atp-linux.md)
+### [Microsoft Defender for Endpoint for Linux]()
+#### [Overview of Microsoft Defender for Endpoint for Linux](microsoft-defender-atp/microsoft-defender-atp-linux.md)
 #### [What's New](microsoft-defender-atp/linux-whatsnew.md)
 #### [Deploy]()
 ##### [Manual deployment](microsoft-defender-atp/linux-install-manually.md)
@@ -294,7 +294,7 @@
 ##### [Static proxy configuration](microsoft-defender-atp/linux-static-proxy-configuration.md)
 ##### [Set preferences](microsoft-defender-atp/linux-preferences.md)
 ##### [Detect and block Potentially Unwanted Applications](microsoft-defender-atp/linux-pua.md)
-##### [Schedule scans with Microsoft Defender ATP for Linux](microsoft-defender-atp/linux-schedule-scan-atp.md)
+##### [Schedule scans with Microsoft Defender for Endpoint for Linux](microsoft-defender-atp/linux-schedule-scan-atp.md)
 ##### [Schedule an update of the Microsoft Defender for Endpoint (Linux)](microsoft-defender-atp/linux-update-MDE-Linux.md)
 
 #### [Troubleshoot]()
@@ -308,17 +308,17 @@
 #### [Resources](microsoft-defender-atp/linux-resources.md)
 
 
-### [Microsoft Defender Advanced Threat Protection for Android]()
-#### [Overview of Microsoft Defender ATP for Android](microsoft-defender-atp/microsoft-defender-atp-android.md)
+### [Microsoft Defender for Endpoint for Android]()
+#### [Overview of Microsoft Defender for Endpoint for Android](microsoft-defender-atp/microsoft-defender-atp-android.md)
 
 #### [Deploy]()
-##### [Deploy Microsoft Defender ATP for Android with Microsoft Intune](microsoft-defender-atp/android-intune.md)
+##### [Deploy Microsoft Defender for Endpoint for Android with Microsoft Intune](microsoft-defender-atp/android-intune.md)
 
 #### [Configure]()
-##### [Configure Microsoft Defender ATP for Android features](microsoft-defender-atp/android-configure.md)
+##### [Configure Microsoft Defender for Endpoint for Android features](microsoft-defender-atp/android-configure.md)
 
 #### [Privacy]()
-##### [Microsoft Defender ATP for Android - Privacy information](microsoft-defender-atp/android-privacy.md)
+##### [Microsoft Defender for Endpoint for Android - Privacy information](microsoft-defender-atp/android-privacy.md)
 
 #### [Troubleshoot]()
 ##### [Troubleshoot issues](microsoft-defender-atp/android-support-signin.md)
@@ -444,7 +444,7 @@
 
 ## [How-to]()
 ### [Onboard devices to the service]()
-#### [Onboard devices to Microsoft Defender ATP](microsoft-defender-atp/onboard-configure.md)
+#### [Onboard devices to Microsoft Defender for Endpoint](microsoft-defender-atp/onboard-configure.md)
 #### [Onboard previous versions of Windows](microsoft-defender-atp/onboard-downlevel.md)
 #### [Onboard Windows 10 devices]()
 ##### [Onboarding tools and methods](microsoft-defender-atp/configure-endpoints.md)
@@ -513,17 +513,17 @@
 ## Reference
 ### [Management and APIs]()
 #### [Overview of management and APIs](microsoft-defender-atp/management-apis.md)
-#### [Microsoft Defender ATP API]()
+#### [Microsoft Defender for Endpoint API]()
 ##### [Get started]()
-###### [Microsoft Defender ATP API license and terms](microsoft-defender-atp/api-terms-of-use.md)
-###### [Access the Microsoft Defender ATP APIs](microsoft-defender-atp/apis-intro.md)
+###### [Microsoft Defender for Endpoint API license and terms](microsoft-defender-atp/api-terms-of-use.md)
+###### [Access the Microsoft Defender for Endpoint APIs](microsoft-defender-atp/apis-intro.md)
 ###### [Hello World](microsoft-defender-atp/api-hello-world.md)
 ###### [Get access with application context](microsoft-defender-atp/exposed-apis-create-app-webapp.md)
 ###### [Get access with user context](microsoft-defender-atp/exposed-apis-create-app-nativeapp.md)
 ###### [Get partner application access](microsoft-defender-atp/exposed-apis-create-app-partners.md)
 
-##### [Microsoft Defender ATP APIs Schema]()
-###### [Supported Microsoft Defender ATP APIs](microsoft-defender-atp/exposed-apis-list.md)
+##### [Microsoft Defender for Endpoint APIs Schema]()
+###### [Supported Microsoft Defender for Endpoint APIs](microsoft-defender-atp/exposed-apis-list.md)
 ###### [Common REST API error codes](microsoft-defender-atp/common-errors.md)
 ###### [Advanced Hunting](microsoft-defender-atp/run-advanced-query-api.md)
 
@@ -647,7 +647,7 @@
 ##### [Learn about different ways to pull detections](microsoft-defender-atp/configure-siem.md)
 ##### [Enable SIEM integration](microsoft-defender-atp/enable-siem-integration.md)
 ##### [Configure Micro Focus ArcSight to pull detections](microsoft-defender-atp/configure-arcsight.md)
-##### [Microsoft Defender ATP detection fields](microsoft-defender-atp/api-portal-mapping.md)
+##### [Microsoft Defender for Endpoint detection fields](microsoft-defender-atp/api-portal-mapping.md)
 ##### [Pull detections using SIEM REST API](microsoft-defender-atp/pull-alerts-using-rest-api.md)
 ##### [Fetch alerts from customer tenant](microsoft-defender-atp/fetch-alerts-mssp.md)
 ##### [Troubleshoot SIEM tool integration issues](microsoft-defender-atp/troubleshoot-siem.md)
@@ -675,11 +675,11 @@
 ### [Partner integration scenarios]()
 #### [Technical partner opportunities](microsoft-defender-atp/partner-integration.md)
 #### [Managed security service provider opportunity](microsoft-defender-atp/mssp-support.md)
-#### [Become a Microsoft Defender ATP partner](microsoft-defender-atp/get-started-partner-integration.md)
+#### [Become a Microsoft Defender for Endpoint partner](microsoft-defender-atp/get-started-partner-integration.md)
 
 
 ### [Integrations]()
-#### [Microsoft Defender ATP integrations](microsoft-defender-atp/threat-protection-integration.md)
+#### [Microsoft Defender for Endpoint integrations](microsoft-defender-atp/threat-protection-integration.md)
 #### [Protect users, data, and devices with conditional access](microsoft-defender-atp/conditional-access.md)
 #### [Microsoft Cloud App Security integration overview](microsoft-defender-atp/microsoft-cloud-app-security-integration.md)
 
@@ -687,13 +687,13 @@
 ### [Information protection in Windows overview]()
 #### [Windows integration](microsoft-defender-atp/information-protection-in-windows-overview.md)
 
-### [Access the Microsoft Defender ATP Community Center](microsoft-defender-atp/community.md)
+### [Access the Microsoft Defender for Endpoint Community Center](microsoft-defender-atp/community.md)
 
 ### [Helpful resources](microsoft-defender-atp/helpful-resources.md)
 
 
 
-### [Troubleshoot Microsoft Defender ATP]()
+### [Troubleshoot Microsoft Defender for Endpoint]()
 #### [Troubleshoot sensor state]()
 ##### [Check sensor state](microsoft-defender-atp/check-sensor-status.md)
 ##### [Fix unhealthy sensors](microsoft-defender-atp/fix-unhealthy-sensors.md)
@@ -701,10 +701,10 @@
 ##### [Misconfigured devices](microsoft-defender-atp/fix-unhealthy-sensors.md#misconfigured-devices)
 ##### [Review sensor events and errors on machines with Event Viewer](microsoft-defender-atp/event-error-codes.md)
   
-#### [Troubleshoot Microsoft Defender ATP service issues]()
+#### [Troubleshoot Microsoft Defender for Endpoint service issues]()
 ##### [Troubleshoot service issues](microsoft-defender-atp/troubleshoot-mdatp.md)
 ##### [Check service health](microsoft-defender-atp/service-status.md)
-##### [Contact Microsoft Defender ATP support](microsoft-defender-atp/contact-support.md)
+##### [Contact Microsoft Defender for Endpoint support](microsoft-defender-atp/contact-support.md)
 
 
 #### [Troubleshoot live response issues](microsoft-defender-atp/troubleshoot-live-response.md)

From 1c5313b004ca1cdd0224e721afde6a9f92488b8a Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Thu, 14 Jan 2021 17:29:44 +0200
Subject: [PATCH 487/825] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 40c6901518..4fd85c48d2 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -232,8 +232,8 @@
 #### [Better together: Microsoft Defender Antivirus and Office 365](microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md)
 
 
-### [Microsoft Defender Advanced Threat Protection for Mac]()
-#### [Overview of Microsoft Defender ATP for Mac](microsoft-defender-atp/microsoft-defender-atp-mac.md)
+### [Microsoft Defender for Endpoint for Mac]()
+#### [Overview of Microsoft Defender for Endpoint for Mac](microsoft-defender-atp/microsoft-defender-atp-mac.md)
 #### [What's New](microsoft-defender-atp/mac-whatsnew.md)
 
 #### [Deploy]()

From b83175dcb1eafe83648d424b07efa4bc40665622 Mon Sep 17 00:00:00 2001
From: msft-cjeich <cj.eichholz@microsoft.com>
Date: Thu, 14 Jan 2021 12:17:20 -0800
Subject: [PATCH 488/825] Update web-content-filtering.md

Text update to account for changes to our data provider.
Also - 15 min for policy sync is incorrect.  SLA should be 2hrs.
Include other 3rd party browsers which NP supports.  This is a server-side change which requires no client side changes.
---
 .../microsoft-defender-atp/web-content-filtering.md  | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
index d8daf9644c..b6d259a0f2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
@@ -32,7 +32,7 @@ Web content filtering is part of [Web protection](web-protection-overview.md) ca
 
 Configure policies across your device groups to block certain categories. Blocking a category prevents users within specified device groups from accessing URLs associated with the category. For any category that's not blocked, the URLs are automatically audited. Your users can access the URLs without disruption, and you'll gather access statistics to help create a more custom policy decision. Your users will see a block notification if an element on the page they're viewing is making calls to a blocked resource.
 
-Web content filtering is available on the major web browsers, with blocks performed by Windows Defender SmartScreen (Microsoft Edge) and Network Protection (Chrome and Firefox). For more information about browser support, see the prerequisites section.
+Web content filtering is available on the major web browsers, with blocks performed by Windows Defender SmartScreen (Microsoft Edge) and Network Protection (Chrome, Firefox, Brave and Opera). For more information about browser support, see the prerequisites section.
 
 Summarizing the benefits:
 
@@ -42,7 +42,7 @@ Summarizing the benefits:
 
 ## User experience
 
-The blocking experience for Chrome/Firefox is provided by Network Protection, which provides a system-level toast notifying the user of a blocked connection. 
+The blocking experience for 3rd party supported browsers is provided by Network Protection, which provides a system-level toast notifying the user of a blocked connection. 
 
 For a more user-friendly in-browser experience, consider using Microsoft Edge.
 
@@ -54,11 +54,11 @@ Before trying out this feature, make sure you have the following requirements:
 - Access to Microsoft Defender Security Center portal
 - Devices running Windows 10 Anniversary Update (version 1607) or later with the latest MoCAMP update.
 
-If Windows Defender SmartScreen isn't turned on, Network Protection will take over the blocking. It requires [enabling Network Protection](enable-network-protection.md) on the device.
+If Windows Defender SmartScreen isn't turned on, Network Protection will take over the blocking. It requires [enabling Network Protection](enable-network-protection.md) on the device.  Chrome, Firefox, Brave and Opera are currently 3rd party browsers in which the feature is enabled. 
 
 ## Data handling
 
-We will follow whichever region you have elected to use as part of your [Microsoft Defender for Endpoint data handling settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy). Your data will not leave the data center in that region. In addition, your data will not be shared with any third-parties, including our data providers. However, we may send them aggregate data (across users and organizations) to help them improve their feeds.
+We will follow whichever region you have elected to use as part of your [Microsoft Defender for Endpoint data handling settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy). Your data will not leave the data center in that region. In addition, your data will not be shared with any third-parties, including our data providers.
 
 ## Turn on web content filtering
 
@@ -78,7 +78,7 @@ To add a new policy:
 2. Specify a name.
 3. Select the categories to block. Use the expand icon to fully expand each parent category and select specific web content categories.
 4. Specify the policy scope. Select the device groups to specify where to apply the policy. Only devices in the selected device groups will be prevented from accessing websites in the selected categories.
-5. Review the summary and save the policy. The policy may take up to 15 minutes to apply to your selected devices.
+5. Review the summary and save the policy. The policy refresh may take up to 2 hours to apply to your selected devices.
 
 Tip: You can deploy a policy without selecting any category on a device group. This action will create an audit only policy, to help you understand user behavior before creating a block policy.
 
@@ -138,7 +138,7 @@ Use the time range filter at the top left of the page to select a time period. Y
 
 ### Limitations and known issues in this preview
 
-- Only Microsoft Edge is supported if your device's OS configuration is Server (cmd > Systeminfo > OS Configuration). Network Protection is only supported in Inspect mode on Server devices, which is responsible for securing traffic across Chrome/Firefox.
+- Only Microsoft Edge is supported if your device's OS configuration is Server (cmd > Systeminfo > OS Configuration). Network Protection is only supported in Inspect mode on Server devices, which is responsible for securing traffic across supported 3rd party browsers.
 
 - Unassigned devices will have incorrect data shown within the report. In the Report details > Device groups pivot, you may see a row with a blank Device Group field. This group contains your unassigned devices before they get put into your specified group. The report for this row may not contain an accurate count of devices or access counts.
 

From 44c4fbf6396ca58b9b8ac058e1a73fe8902b9e9f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 13:42:27 -0800
Subject: [PATCH 489/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index ae042deaee..ffdbda504e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -80,11 +80,13 @@ Depending on the apps your organization is using, you might be getting false pos
 
 An exclusion is an entity that you specify as an exception to remediation. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
-To define exclusions across Microsoft Defender for Endpoint, you must perform at least two kinds of tasks:
-- Define exclusions for Microsoft Defender Antivirus (you do this by editing an existing antivirus policy or by creating a new policy)
-- Create “allow” indicators for Microsoft Defender for Endpoint ()
+To define exclusions across Microsoft Defender for Endpoint, you perform these two tasks:
+- Define exclusions for Microsoft Defender Antivirus
+- Create “allow” indicators for Microsoft Defender for Endpoint
 
-You must perform both kinds of tasks because Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators).
+Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indcators for Microsoft Defender for Endpoint.
+
+The procedures in this section describe how to define exclusions and indicators.
 
 ### Exclusions for Microsoft Defender Antivirus
 

From 2a62143a863c9cac8d8a0ed1092bcd69b5bee3c9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 13:43:08 -0800
Subject: [PATCH 490/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index ffdbda504e..e6f69698aa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -90,7 +90,7 @@ The procedures in this section describe how to define exclusions and indicators.
 
 ### Exclusions for Microsoft Defender Antivirus
 
-In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions.
+In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions; however, you can use other methods, such as Group Policy as well.
 
 > [!TIP]
 > Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).

From b02a689fcabe64b16fef1247e8ccc188bf8654b6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 13:51:31 -0800
Subject: [PATCH 491/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index e6f69698aa..06cebc920f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -117,9 +117,9 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 ### Indicators for Microsoft Defender for Endpoint
 
-*Allow indicators for false positives; block indicators for false negatives.  https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators*
+Indicators enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
 
-To specify files, IP addresses, URLs, domains, and certificates as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. "Allow" indicators prevent the following capabilities of Microsoft Defender for Endpoint from taking action on entities:
+To specify entities, such as files, IP addresses, URLs, domains, and certificates as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)

From 49b4a9cf0bf746ff8518710c2898c518af0caf3a Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 14 Jan 2021 13:57:38 -0800
Subject: [PATCH 492/825] updated details

---
 .../configure-vulnerability-email-notifications.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md b/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md
index ba7b6f4bd7..5c24aa1ae7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-vulnerability-email-notifications.md
@@ -1,6 +1,6 @@
 ---
 title: Configure vulnerability email notifications in Microsoft Defender for Endpoint
-description: You can use Microsoft Defender Advanced Threat Protection to configure email notification settings for security alerts, based on severity and other criteria.
+description: Use Microsoft Defender for Endpoint to configure email notification settings for vulnerability events.
 keywords: email notifications, configure alert notifications, microsoft defender atp notifications, microsoft defender atp alerts, windows 10 enterprise, windows 10 education
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -36,7 +36,7 @@ The notification rules allow you to set the vulnerability events that trigger no
 If you're using role-based access control (RBAC), recipients will only receive notifications based on the device groups that were configured in the notification rule.
 Users with the proper permission can only create, edit, or delete notifications that are limited to their device group management scope. Only users assigned to the Global administrator role can manage notification rules that are configured for all device groups.
 
-The email notification includes basic information about the vulnerability event. There are also links to filtered views in the threat and vulnerability management [Security recommendations](tvm-security-recommendation.md) and [Weaknesses](tvm-weaknesses.md) pages in the portal so you can do further investigation.
+The email notification includes basic information about the vulnerability event. There are also links to filtered views in the threat and vulnerability management [Security recommendations](tvm-security-recommendation.md) and [Weaknesses](tvm-weaknesses.md) pages in the portal so you can further investigate. For example, you could get a list of all exposed devices or get additional details about the vulnerability.
 
 ## Create rules for alert notifications
 

From 558c597ae5ad9918710b3508881b980bc409a785 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 14 Jan 2021 14:11:31 -0800
Subject: [PATCH 493/825] new support

---
 .../microsoft-defender-atp/tvm-supported-os.md              | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
index d466083c34..3b2d975822 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
@@ -37,9 +37,9 @@ Before you begin, ensure that you meet the following operating system or platfor
 Operating system | Security assessment support
 :---|:---
 Windows 7 | Operating System (OS) vulnerabilities
-Windows 8.1 | Not supported
-Windows 10 1607-1703 | Operating System (OS) vulnerabilities
-Windows 10 1709+ |Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment
+Windows 8.1 | Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment |
+Windows 10, versions 1607-1703 | Operating System (OS) vulnerabilities
+Windows 10, version 1709 or later |Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment
 Windows Server 2008 R2 | Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment
 Windows Server 2012 R2 | Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment
 Windows Server 2016 | Operating System (OS) vulnerabilities<br/>Software product vulnerabilities<br/>Operating System (OS) configuration assessment<br/>Security controls configuration assessment<br/>Software product configuration assessment

From 8dcc9193719eca758c78c4a28af7ed1b7508ebff Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 14:13:59 -0800
Subject: [PATCH 494/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md         | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 06cebc920f..7b10b4055e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -119,13 +119,18 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 Indicators enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
 
-To specify entities, such as files, IP addresses, URLs, domains, and certificates as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
+To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
+You can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
 
+- [Learn more about indicators](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
+- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
+- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
+- [Create an indicator for an application certificate](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
 
 ## Submit a file for analysis
 

From 686d53ec8af732d9193d252fbcdd800446163efa Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 14:21:59 -0800
Subject: [PATCH 495/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 7b10b4055e..870ce280d6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -132,6 +132,9 @@ You can create indicators for files, IP addresses, URLs, domains, and certificat
 - [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
 - [Create an indicator for an application certificate](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
 
+> [!TIP]
+> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information.
+
 ## Submit a file for analysis
 
 *https://www.microsoft.com/wdsi/filesubmission/*

From e371bbcd198bee71ae509467d145686035ea23f8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 15:21:53 -0800
Subject: [PATCH 496/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 23 +++++++++++++------
 1 file changed, 16 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 870ce280d6..21a9dffad4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -119,21 +119,30 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 Indicators enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
+To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-You can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
+Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
 
-- [Learn more about indicators](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
-- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
-- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
-- [Create an indicator for an application certificate](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
+- [Learn more about indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
+- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
+- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
+- [Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
 
 > [!TIP]
-> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information.
+> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the information, including prerequisites, 
+
+## Classify a false positive or false negative
+
+### Suppress alerts for a false positive
+
+To suppress an alert, you create an alert suppression rule. 
+
+1. Go to the Microsoft Defender Security Center ()
+
 
 ## Submit a file for analysis
 

From 1858c844aab05d925453104f86058282244e39b0 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 15 Jan 2021 01:22:14 +0200
Subject: [PATCH 497/825] Update minimum-requirements.md

Add MDE standalone license to the list of licenses.
---
 .../microsoft-defender-atp/minimum-requirements.md             | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 7e1c5f470f..70807007bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -1,5 +1,5 @@
 ---
-title: Minimum requirements for Microsoft Defender ATP
+title: Minimum requirements for Microsoft Defender for Endpoint
 description: Understand the licensing requirements and requirements for onboarding devices to the service
 keywords: minimum requirements, licensing, comparison table
 search.product: eADQiWindows 10XVcnh
@@ -42,6 +42,7 @@ Microsoft Defender for Endpoint requires one of the following Microsoft volume l
 - Microsoft 365 A5 (M365 A5)
 - Microsoft 365 E5 Security
 - Microsoft 365 A5 Security
+- Microsoft Defender for Endpoint
 
 > [!NOTE]
 > Eligible licensed users may use Microsoft Defender for Endpoint on up to five concurrent devices.

From 6ac48d71c14e1fcb5fe7ba5a3e704915bf0ca669 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 15 Jan 2021 01:28:10 +0200
Subject: [PATCH 498/825] Update minimum-requirements.md

---
 .../microsoft-defender-atp/minimum-requirements.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 70807007bb..be00d43191 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -48,10 +48,10 @@ Microsoft Defender for Endpoint requires one of the following Microsoft volume l
 > Eligible licensed users may use Microsoft Defender for Endpoint on up to five concurrent devices.
 > Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP).
 
-Microsoft Defender for Endpoint, on Windows Server, requires one of the following licensing options:
+Microsoft Defender for Endpoint for servers requires one of the following licensing options:
 
 - [Azure Security Center with Azure Defender enabled](https://docs.microsoft.com/azure/security-center/security-center-pricing)
-- Defender for Endpoint for Servers (one per covered server)
+- Microsoft Defender for Endpoint for Server (one per covered server)
 
 > [!NOTE]
 > Customers may acquire server licenses (one per covered server Operating System Environment (OSE)) for Microsoft Defender for Endpoint for Servers if they have a combined minimum of 50 licenses for one or more of the following user licenses:

From 01dad13ff1e40ac9cb8654af190cd522972f2f0f Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 15 Jan 2021 01:31:33 +0200
Subject: [PATCH 499/825] Update pull-alerts-using-rest-api.md

Adding reference to the Gov URIs.
Also referenced in here: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8311
---
 .../microsoft-defender-atp/pull-alerts-using-rest-api.md    | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index 9587df251a..ad55a65531 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -1,6 +1,6 @@
 ---
-title: Pull Microsoft Defender ATP detections using REST API
-description: Learn how call an Microsoft Defender ATP endpoint to pull detections in JSON format using the SIEM REST API.
+title: Pull Microsoft Defender for Endpoint detections using REST API
+description: Learn how call an Microsoft Defender for Endpoint API endpoint to pull detections in JSON format using the SIEM REST API.
 keywords: detections, pull detections, rest api, request, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -26,6 +26,8 @@ ms.topic: article
 
 - Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
 >[!Note]
 >- [Microsoft Defender for Endpoint Alert](alerts.md) is composed from one or more detections.
 >- [Microsoft Defender for Endpoint Detection](api-portal-mapping.md) is composed from the suspicious event occurred on the Device and its related Alert details.

From 593e88abae3a0d4d650d43d98d09f6e9d9d2fdb5 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 14 Jan 2021 15:32:05 -0800
Subject: [PATCH 500/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md    | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 21a9dffad4..ee2d488676 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -137,12 +137,17 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 ## Classify a false positive or false negative
 
-### Suppress alerts for a false positive
+### Classify an alert as a false positive
 
-To suppress an alert, you create an alert suppression rule. 
+Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the Alerts queue. 
 
-1. Go to the Microsoft Defender Security Center ()
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2. Select **Alerts queue**, and then select an alert that is a false positive.
+3. For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
+4. In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
 
+> [!TIP]
+> For more details about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
 
 ## Submit a file for analysis
 

From 4b695dfb590acfbfd2287dccf3e0afbcd5d1229e Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 15 Jan 2021 01:34:49 +0200
Subject: [PATCH 501/825] Update gov.md

Add SIEM API endpoint.
Also referenced in here: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8311
---
 .../threat-protection/microsoft-defender-atp/gov.md         | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 85e190979f..eeacc23eda 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -91,10 +91,10 @@ Defender for Endpoint GCC High specific | `winatp-gw-usgt.microsoft.com`<br>`win
 ## API
 Instead of the public URIs listed in our [API documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro), you'll need to use the following URIs:
 
-Environment | Login endpoint | Defender for Endpoint API endpoint
+Environment | Login endpoint | Defender for Endpoint API endpoint | SIEM API endpoint
 :---|:---|:---
-GCC | `https://login.microsoftonline.com` | `https://api-gcc.securitycenter.microsoft.us`
-GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.microsoft.us`
+GCC | `https://login.microsoftonline.com` | `https://api-gcc.securitycenter.microsoft.us` | Rolling out
+GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.microsoft.us` | `https://wdatp-alertexporter-us.securitycenter.windows.us`
 
 <br>
 

From 4429cf13dfd6777a5898042c3d03455da2d0df08 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 15 Jan 2021 01:43:20 +0200
Subject: [PATCH 502/825] Update gov.md

---
 .../threat-protection/microsoft-defender-atp/gov.md        | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index eeacc23eda..c7bc773f92 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -91,10 +91,11 @@ Defender for Endpoint GCC High specific | `winatp-gw-usgt.microsoft.com`<br>`win
 ## API
 Instead of the public URIs listed in our [API documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro), you'll need to use the following URIs:
 
-Environment | Login endpoint | Defender for Endpoint API endpoint | SIEM API endpoint
+Endpoint type | GCC | GCC High
 :---|:---|:---
-GCC | `https://login.microsoftonline.com` | `https://api-gcc.securitycenter.microsoft.us` | Rolling out
-GCC High | `https://login.microsoftonline.us` | `https://api-gov.securitycenter.microsoft.us` | `https://wdatp-alertexporter-us.securitycenter.windows.us`
+Login | `https://login.microsoftonline.com` | `https://login.microsoftonline.us`
+Defender for Endpoint API | `https://api-gcc.securitycenter.microsoft.us` | `https://api-gov.securitycenter.microsoft.us`
+SIEM | Rolling out | `https://wdatp-alertexporter-us.securitycenter.windows.us`
 
 <br>
 

From 97da4680d370085c8624f577aa74e802f7fecbc8 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Thu, 14 Jan 2021 17:48:53 -0800
Subject: [PATCH 503/825] adding troubleshooting docs, fixing related ad fs
 notes, updating faq, and adding note about KDC auth EKU

---
 .../hello-cert-trust-adfs.md                  |  63 ++++----
 .../hello-deployment-issues.md                | 145 ++++++++++++++++++
 .../hello-for-business/hello-faq.yml          |  10 +-
 .../hello-hybrid-aadj-sso-base.md             |  10 +-
 .../hello-hybrid-cert-whfb-settings-adfs.md   |   7 +-
 .../hello-hybrid-cert-whfb-settings-pki.md    |  39 +++--
 .../hello-hybrid-key-whfb-settings-pki.md     |  23 +--
 .../hello-for-business/toc.md                 |   6 +-
 8 files changed, 234 insertions(+), 69 deletions(-)
 create mode 100644 windows/security/identity-protection/hello-for-business/hello-deployment-issues.md

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 18abc2bc44..22d05b8312 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -13,7 +13,7 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/19/2018
+ms.date: 01/14/2021
 ms.reviewer: 
 ---
 # Prepare and Deploy Windows Server 2016 Active Directory Federation Services
@@ -50,9 +50,8 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > (Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
 > ```
 > 6. Execute the command `Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'`.
-> 7. Restart the ADFS service.
-> 8. On the client: Restart the client. User should be prompted to provision WHFB.
-> 9. If the provisioning window does not pop up then need to collect NGC trace logs and further troubleshoot.
+> 7. Restart the AD FS service.
+> 8. On the client: Restart the client. User should be prompted to provision Windows Hello for Business.
 
 ## Update Windows Server 2016
 
@@ -104,7 +103,7 @@ A server authentication certificate should appear in the computer’s Personal c
 The Active Directory Federation Service (AD FS) role provides the following services to support Windows Hello for Business on-premises deployments:
 
 - Device registration
-- Key registration 
+- Key registration
 - Certificate registration authority (certificate trust deployments)
 
 >[!IMPORTANT]
@@ -218,7 +217,6 @@ Sign-in the federation server with _domain administrator_ equivalent credentials
 12. When the process completes, click **Close**.
 13. Do not restart the AD FS server. You will do this later.
 
-
 ### Add the AD FS Service account to the KeyCredential Admin group and the Windows Hello for Business Users group
 
 > [!NOTE]
@@ -227,6 +225,7 @@ Sign-in the federation server with _domain administrator_ equivalent credentials
 The **KeyCredential Administrators** global group provides the AD FS service with the permissions needed to perform key registration.  The Windows Hello for Business group provides the AD FS service with the permissions needed to enroll a Windows Hello for Business authentication certificate on behalf of the provisioning user.
 
 Sign-in a domain controller or management workstation with _Domain Admin_ equivalent credentials.
+
 1. Open **Active Directory Users and Computers**.
 2. Click the **Users** container in the navigation pane.
 3. Right-click **KeyCredential Admins** in the details pane and click **Properties**.
@@ -243,9 +242,10 @@ Sign-in a domain controller or management workstation with _Domain Admin_ equiva
 
 Key Registration stores the Windows Hello for Business public key in Active Directory.  With on-premises deployments, the Windows Server 2016 AD FS server registers the public key with the on-premises Active Directory.
 
-The key-trust model needs Windows Server 2016 domain controllers, which configures the key registration permissions automatically; however, the certificate-trust model does not and requires you to add the permissions manually. 
+The key-trust model needs Windows Server 2016 domain controllers, which configures the key registration permissions automatically; however, the certificate-trust model does not and requires you to add the permissions manually.
 
 Sign-in a domain controller or management workstations with _Domain Admin_ equivalent credentials.
+
 1. Open **Active Directory Users and Computers**.
 2. Right-click your domain name from the navigation pane and click **Properties**.
 3. Click **Security** (if the Security tab is missing, turn on Advanced Features from the View menu).
@@ -254,11 +254,12 @@ Sign-in a domain controller or management workstations with _Domain Admin_ equiv
 6. In the **Applies to** list box, select **Descendant User objects**.
 7. Using the scroll bar, scroll to the bottom of the page and click **Clear all**.
 8. In the **Properties** section, select **Read msDS-KeyCredentialLink** and **Write msDS-KeyCrendentialLink**.
-9. Click **OK** three times to complete the task. 
+9. Click **OK** three times to complete the task.
 
 ## Configure the Device Registration Service
 
 Sign-in the federation server with _Enterprise Admin_ equivalent credentials. These instructions assume you are configuring the first federation server in a federation server farm.
+
 1. Open the **AD FS management** console.
 2. In the navigation pane, expand **Service**. Click **Device Registration**.
 3. In the details pane, click **Configure Device Registration**.
@@ -299,6 +300,7 @@ The registration authority template you configure depends on the AD FS service c
 >Follow the procedures below based on the domain controllers deployed in your environment. If the domain controller is not listed below, then it is not supported for Windows Hello for Business.
 
 #### Windows 2012 or later domain controllers
+
 Sign-in a certificate authority or management workstations with _domain administrator_ equivalent credentials.
 
 1. Open the **Certificate Authority Management** console.
@@ -321,6 +323,7 @@ Sign-in a certificate authority or management workstations with _domain administ
 #### Windows 2008 or 2008R2 domain controllers
 
 Sign-in a certificate authority or management workstations with _Domain Admin_ equivalent credentials.
+
 1. Open the **Certificate Authority** management console.
 2. Right-click **Certificate Templates** and click **Manage**.
 3. In the **Certificate Template** console, right-click the **Exchange Enrollment Agent** template in the details pane and click **Duplicate Template**.
@@ -329,7 +332,7 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 6. On the **Subject** tab, select the **Build from this Active Directory information** button if it is not already selected. Select **Fully distinguished name** from the **Subject name format** list if **Fully distinguished name** is not already selected.  Select the **User Principal Name (UPN)** check box under **Include this information in alternative subject name**.
 7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 8. On the **Security** tab, click **Add**. Type **adfssvc** in the **Enter the object names to select text box** and click **OK**.
-9. Click the **adfssvc** from the **Group or users names** list. In the **Permissions for adfssvc** section, select the **Allow** check box for the **Enroll** permission. Excluding the **adfssvc** user, clear the **Allow** check boxes for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**. 
+9. Click the **adfssvc** from the **Group or users names** list. In the **Permissions for adfssvc** section, select the **Allow** check box for the **Enroll** permission. Excluding the **adfssvc** user, clear the **Allow** check boxes for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**.
 10. Close the console.
 
 ### Configure the Windows Hello for Business Authentication Certificate template
@@ -337,27 +340,29 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 During Windows Hello for Business provisioning, the Windows 10, version 1703 client requests an authentication certificate from the Active Directory Federation Service, which requests the authentication certificate on behalf of the user.  This task configures the Windows Hello for Business authentication certificate template.  You use the name of the certificate template when configuring.
 
 Sign-in a certificate authority or management workstations with _domain administrator equivalent_ credentials.
+
 1. Open the **Certificate Authority** management console.
 2. Right-click **Certificate Templates** and click **Manage**.
 3. Right-click the **Smartcard Logon** template and choose **Duplicate Template**.
 4. On the **Compatibility** tab, clear the **Show resulting changes** check box.  Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Authority** list. Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Recipient** list.
-5. On the **General** tab, type **WHFB Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise’s needs.   
+5. On the **General** tab, type **WHFB Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise’s needs.
    > [!NOTE]
    > If you use different template names, you’ll need to remember and substitute these names in different portions of the deployment.
 6. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  
 7. On the **Extensions** tab, verify the **Application Policies** extension includes **Smart Card Logon**.
-8. On the **Issuance Requirements** tab, select the T**his number of authorized signatures** check box.  Type **1** in the text box.   
+8. On the **Issuance Requirements** tab, select the T**his number of authorized signatures** check box.  Type **1** in the text box.
    Select **Application policy** from the **Policy type required in signature**. Select **Certificate Request Agent** from in the **Application policy** list. Select the **Valid existing certificate** option.
 9. On the **Subject** tab, select the **Build from this Active Directory information** button if it is not already selected. Select **Fully distinguished name** from the **Subject name format** list if **Fully distinguished name** is not already selected. Select the **User Principal Name (UPN)** check box under **Include this information in alternative subject name**.
 10. On the **Request Handling** tab, select the **Renew with same key** check box.
 11. On the **Security** tab, click **Add**. Type **Window Hello for Business Users** in the **Enter the object names to select** text box and click **OK**.
-12. Click the **Windows Hello for Business Users** from the **Group or users names** list. In the **Permissions for Windows Hello for Business Users** section, select the **Allow** check box for the **Enroll** permission. Excluding the **Windows Hello for Business Users** group, clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**. 
+12. Click the **Windows Hello for Business Users** from the **Group or users names** list. In the **Permissions for Windows Hello for Business Users** section, select the **Allow** check box for the **Enroll** permission. Excluding the **Windows Hello for Business Users** group, clear the **Allow** check box for the **Enroll** and **Autoenroll** permissions for all other entries in the **Group or users names** section if the check boxes are not already cleared. Click **OK**.
 13. If you previously issued Windows Hello for Business sign-in certificates using Configuration Manger and are switching to an AD FS registration authority, then on the **Superseded Templates** tab, add the previously used **Windows Hello for Business Authentication** template(s), so they will be superseded by this template for the users that have Enroll permission for this template.
 14. Click on the **Apply** to save changes and close the console.
 
 #### Mark the template as the Windows Hello Sign-in template 
 
 Sign-in to an **AD FS Windows Server 2016** computer with _enterprise administrator_ equivalent credentials.
+
 1. Open an elevated command prompt.
 2. Run `certutil –dsTemplate WHFBAuthentication msPKI-Private-Key-Flag +CTPRIVATEKEY_FLAG_HELLO_LOGON_KEY`.
 
@@ -367,20 +372,21 @@ Sign-in to an **AD FS Windows Server 2016** computer with _enterprise administra
 ### Publish Enrollment Agent and Windows Hello For Business Authentication templates to the Certificate Authority
 
 Sign-in a certificate authority or management workstations with _Enterprise Admin_ equivalent credentials.
+
 1. Open the **Certificate Authority** management console.
 2. Expand the parent node from the navigation pane.
 3. Click **Certificate Templates** in the navigation pane.
 4. Right-click the **Certificate Templates** node.  Click **New**, and click **Certificate Template to issue**.
 5. In the **Enable Certificates Templates** window, select the **WHFB Enrollment Agent** template you created in the previous steps.  Click **OK** to publish the selected certificate templates to the certificate authority.
-6. Publish the **WHFB Authentication** certificate template using step 5. 
+6. Publish the **WHFB Authentication** certificate template using step 5.
 7. Close the console.
 
 ### Configure the Registration Authority
 
-Sign-in the AD FS server with domain administrator equivalent credentials. 
+Sign-in the AD FS server with domain administrator equivalent credentials.
 
 1. Open a **Windows PowerShell** prompt.
-2. Type the following command   
+2. Type the following command
   
    ```PowerShell
    Set-AdfsCertificateAuthority -EnrollmentAgent -EnrollmentAgentCertificateTemplate WHFBEnrollmentAgent -WindowsHelloCertificateTemplate WHFBAuthentication
@@ -395,6 +401,7 @@ Active Directory Federation Server used for Windows Hello for Business certifica
 Approximately 60 days prior to enrollment agent certificate’s expiration, the AD FS service attempts to renew the certificate until it is successful.  If the certificate fails to renew, and the certificate expires, the AD FS server will request a new enrollment agent certificate.  You can view the AD FS event logs to determine the status of the enrollment agent certificate.
 
 ### Service Connection Point (SCP) in Active Directory for ADFS Device Registration Service
+
 > [!NOTE]
 > Normally this script is not needed, as enabling Device Registration via the ADFS Management console already creates the objects. You can validate the SCP using the script below. For detailed information about the Device Registration Service, see [Configuring Device Registration](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/dn614658(v=ws.11)?redirectedfrom=MSDN).
 
@@ -431,7 +438,7 @@ Each server you add to the AD FS farm must have a proper server authentication c
 
 ### Install Additional Servers
 
-Adding federation servers to the existing AD FS farm begins with ensuring the server are fully patched, to include Windows Server 2016 Update needed to support Windows Hello for Business deployments (https://aka.ms/whfbadfs1703). Next, install the Active Directory Federation Service role on the additional servers and then configure the server as an additional server in an existing farm. 
+Adding federation servers to the existing AD FS farm begins with ensuring the server are fully patched, to include Windows Server 2016 Update needed to support Windows Hello for Business deployments (https://aka.ms/whfbadfs1703). Next, install the Active Directory Federation Service role on the additional servers and then configure the server as an additional server in an existing farm.
 
 ## Load Balance AD FS Federation Servers
 
@@ -440,6 +447,7 @@ Many environments load balance using hardware devices.  Environments without har
 ### Install Network Load Balancing Feature on AD FS Servers
 
 Sign-in the federation server with _Enterprise Admin_ equivalent credentials.
+
 1. Start **Server Manager**.  Click **Local Server** in the navigation pane.
 2. Click **Manage** and then click **Add Roles and Features**.
 3. Click **Next** On the **Before you begin** page.
@@ -447,7 +455,7 @@ Sign-in the federation server with _Enterprise Admin_ equivalent credentials.
 5. On the **Select destination server** page, choose **Select a server from the server pool**.  Select the federation server from the **Server Pool** list.  Click **Next**.
 6. On the **Select server roles** page, click **Next**.
 7. Select **Network Load Balancing** on the **Select features** page.
-8. Click **Install** to start the feature installation. 
+8. Click **Install** to start the feature installation.
    ![Feature selection screen with NLB selected](images/hello-nlb-feature-install.png)
 
 ### Configure Network Load Balancing for AD FS
@@ -455,44 +463,47 @@ Sign-in the federation server with _Enterprise Admin_ equivalent credentials.
 Before you can load balance all the nodes in the AD FS farm, you must first create a new load balance cluster.  Once you have created the cluster, then you can add new nodes to that cluster.
 
 Sign-in a node of the federation farm with _Admin_ equivalent credentials.
-1. Open **Network Load Balancing Manager** from **Administrative Tools**.   
+
+1. Open **Network Load Balancing Manager** from **Administrative Tools**.
     ![NLB Manager user interface](images/hello-nlb-manager.png)
 2. Right-click **Network Load Balancing Clusters**, and then click **New Cluster**.
-3. To connect to the host that is to be a part of the new cluster, in the **Host** text box, type the name of the host, and then click **Connect**.   
+3. To connect to the host that is to be a part of the new cluster, in the **Host** text box, type the name of the host, and then click **Connect**.
     ![NLB Manager - Connect to new Cluster screen](images/hello-nlb-connect.png)
 4. Select the interface that you want to use with the cluster, and then click **Next**. (The interface hosts the virtual IP address and receives the client traffic to load balance.)
 5. In **Host Parameters**, select a value in **Priority (Unique host identifier)**. This parameter specifies a unique ID for each host. The host with the lowest numerical priority among the current members of the cluster handles all of the cluster's network traffic that is not covered by a port rule. Click **Next**.
-6. In **Cluster IP Addresses**, click **Add** and type the cluster IP address that is shared by every host in the cluster. NLB adds this IP address to the TCP/IP stack on the selected interface of all hosts that are chosen to be part of the cluster. Click **Next**.   
+6. In **Cluster IP Addresses**, click **Add** and type the cluster IP address that is shared by every host in the cluster. NLB adds this IP address to the TCP/IP stack on the selected interface of all hosts that are chosen to be part of the cluster. Click **Next**.
     ![NLB Manager - Add IP to New Cluster screen](images/hello-nlb-add-ip.png)
-7. In **Cluster Parameters**, select values in **IP Address** and **Subnet mask** (for IPv6 addresses, a subnet mask value is not needed). Type the full Internet name that users will use to access this NLB cluster.   
+7. In **Cluster Parameters**, select values in **IP Address** and **Subnet mask** (for IPv6 addresses, a subnet mask value is not needed). Type the full Internet name that users will use to access this NLB cluster.
     ![NLB Manager - Cluster IP Configuration screen](images/hello-nlb-cluster-ip-config.png)
 8. In **Cluster operation mode**, click **Unicast** to specify that a unicast media access control (MAC) address should be used for cluster operations. In unicast mode, the MAC address of the cluster is assigned to the network adapter of the computer, and the built-in MAC address of the network adapter is not used. We recommend that you accept the unicast default settings. Click **Next**.
-9. In Port Rules, click Edit to modify the default port rules to use port 443.   
+9. In Port Rules, click Edit to modify the default port rules to use port 443.
     ![NLB Manager - Add\Edit Port Rule screen](images/hello-nlb-cluster-port-rule.png)
 
 ### Additional AD FS Servers
 
 1. To add more hosts to the cluster, right-click the new cluster, and then click **Add Host to Cluster**.
-2. Configure the host parameters (including host priority, dedicated IP addresses, and load weight) for the additional hosts by following the same instructions that you used to configure the initial host. Because you are adding hosts to an already configured cluster, all the cluster-wide parameters remain the same.   
+2. Configure the host parameters (including host priority, dedicated IP addresses, and load weight) for the additional hosts by following the same instructions that you used to configure the initial host. Because you are adding hosts to an already configured cluster, all the cluster-wide parameters remain the same.
     ![NLB Manager - Cluster with nodes](images/hello-nlb-cluster.png)
 
 ## Configure DNS for Device Registration
 
 Sign-in the domain controller or administrative workstation with domain administrator equivalent credentials.  You’ll need the Federation service name to complete this task.  You can view the federation service name by clicking **Edit Federation Service Properties** from the **Action** pan of the **AD FS** management console, or by using `(Get-AdfsProperties).Hostname.` (PowerShell) on the AD FS server.
+
 1. Open the **DNS Management** console.
 2. In the navigation pane, expand the domain controller name node and **Forward Lookup Zones**.
 3. In the navigation pane, select the node that has the name of your internal Active Directory domain name.
 4. In the navigation pane, right-click the domain name node and click **New Host (A or AAAA)**.
-5. In the **name** box, type the name of the federation service. In the **IP address** box, type the IP address of your federation server. Click **Add Host**. 
+5. In the **name** box, type the name of the federation service. In the **IP address** box, type the IP address of your federation server. Click **Add Host**.
 6. Close the DNS Management console.
 
 ## Configure the Intranet Zone to include the federation service
 
-The Windows Hello provisioning presents web pages from the federation service.  Configuring the intranet zone to include the federation service enables the user to authenticate to the federation service using integrated authentication.  Without this setting, the connection to the federation service during Windows Hello provisioning prompts the user for authentication. 
+The Windows Hello provisioning presents web pages from the federation service.  Configuring the intranet zone to include the federation service enables the user to authenticate to the federation service using integrated authentication.  Without this setting, the connection to the federation service during Windows Hello provisioning prompts the user for authentication.
 
 ### Create an Intranet Zone Group Policy
 
 Sign-in the domain controller or administrative workstation with _Domain Admin_ equivalent credentials:
+
 1. Start the **Group Policy Management Console** (gpmc.msc).
 2. Expand the domain and select the **Group Policy Object** node in the navigation pane.
 3. Right-click **Group Policy object** and select **New**.
@@ -559,8 +570,8 @@ Each file in this folder represents a certificate in the service account’s Per
 
 For detailed information about the certificate, use `Certutil -q -v <certificateThumbprintFileName>` .
 
-
 ## Follow the Windows Hello for Business on premises certificate trust deployment guide
+
 1. [Validate Active Directory prerequisites](hello-cert-trust-validate-ad-prereq.md)
 2. [Validate and Configure Public Key Infrastructure](hello-cert-trust-validate-pki.md)
 3. Prepare and Deploy Windows Server 2016 Active Directory Federation Services (*You are here*)
diff --git a/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
new file mode 100644
index 0000000000..4dece74866
--- /dev/null
+++ b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
@@ -0,0 +1,145 @@
+---
+title: Windows Hello for Business Deployment Known Issues
+description: A Troubleshooting Guide for Known Windows Hello for Business Deployment Issues
+keywords: identity, PIN, biometric, Hello, passport
+params: siblings_only
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security, mobile
+audience: ITPro
+author: mapalko
+ms.author: mapalko
+manager: dansimp
+ms.collection: M365-identity-device-management
+ms.topic: article
+localizationpriority: medium
+ms.date: 01/14/2021
+ms.reviewer: 
+---
+# Windows Hello for Business Known Deployment Issues
+
+The content of this article is to help troubleshoot and workaround known deployment issues for Windows Hello for Business. Each issue below will describe the applicable deployment type Windows versions.
+
+## Hybrid Key Trust Logon Broken Due to User Public Key Deletion
+
+Applies to:
+
+- Hybrid key trust deployments
+- Windows Server 2016, builds 14393.3930 to 14393.4048
+- Windows Server 2019, builds 17763.1457 to 17763.1613
+
+In Hybrid key trust deployments with domain controllers running certain builds of Windows Server 2016 and Windows Server 2019, the user's Windows Hello for Business key is deleted after they sign-in. Subsequent sign-ins will fail until the user's key is synced during the next Azure AD Connect delta sync cycle.
+
+### Identifying User Public Key Deletion Issue
+
+After the user provisions a Windows Hello for Business credential in a hybrid key trust environment, the key must sync from Azure AD to AD during an Azure AD Connect sync cycle. The user's public key will be written to the msDS-KeyCredentialLink attribute of the user object.
+
+Before the user's Windows Hello for Business key is synced, sign-in's with Windows Hello for Business will fail with the error message, *"That option is temporarily unavailable. For now, please use a different method to sign in."* After the sync is successful, the user should be able to login and unlock with their PIN or enrolled biometrics.
+
+In environments impacted with this issue, after the first sign-in with Windows Hello for Business after provisioning is completed, the next sign-in attempt will fail. In environments where domain controllers are running a mix of builds, only some may be impacted by this issue and subsequent logon attempts may be sent different domain controllers. This may result in the sign-in failures appearing to be intermittent.
+
+After the initial logon attempt, the user's Windows Hello for Business public key is being deleted from the msDS-KeyCredentialLink attribute. This can be verified by querying a user's msDS-KeyCredentialLink attribute before and after sign-in. The msDS-KeyCredentialLink can be queried in AD using [Get-ADUser](https://docs.microsoft.com/powershell/module/addsadministration/get-aduser) and specifying *msds-keycredentiallink* for the *-Properties* parameter.
+
+### Resolving User Public Key Deletion Issue
+
+To resolve this behavior, upgrade Windows Server 2016 and 2019 domain controllers to with the latest patches. For Windows Server 2016, this behavior is fixed in build 14393.4104 ([KB4593226](https://support.microsoft.com/help/4593226)) and later. For Windows Server 2019, this behavior is fixed in build 17763.1637 ([KB4592440](https://support.microsoft.com/help/4592440)).
+
+## Key Trust Authentication Broken for Windows Server 2019
+
+Applies to:
+
+- Windows Server 2019
+- Hybrid key trust deployments
+- On-premises key trust deployments
+
+Domain controllers running early versions of Windows Server 2019 have an issue that prevents key trust authentication from working properly. Networks traces report KDC_ERR_CLIENT_NAME_MISMATCH.
+
+### Identifying Server 2019 Key Trust Authentication Issue
+
+On the client, authentication with Windows Hello for Business will fail with the error message, *"That option is temporarily unavailable. For now, please use a different method to sign in."*
+
+This error is usually presented on hybrid Azure AD joined devices in key trust deployments after Windows Hello for Business has been provisioned but before a user's key has synced from Azure AD to AD. If a user's key has been synced from Azure AD and the msDS-keycredentiallink attribute on the user object in AD has been populated for NGC, then it is possible that this error case is occurring.
+
+The other indicator of this failure case can be identified using network traces. If network traces are captured for a key trust sign-in event, the traces will show kerberos failing with the error KDC_ERR_CLIENT_NAME_MISMATCH.
+
+### Resolving Server 2019 Key Trust Authentication Issue
+
+This issue was fixed in Windows Server 2019, build 17763.316 ([KB4487044](https://support.microsoft.com/help/4487044/windows-10-update-kb4487044)). Upgrade all Windows Server 2019 domain controllers to Windows Server 2019, build 17763.316 or newer to resolve this behavior.
+
+## Certificate Trust Provisioning with AD FS Broken on Windows Server 2019
+
+Applies to:
+
+- Windows Server 2019
+- Hybrid certificate trust deployments
+- On-premises certificate trust deployments
+
+AD FS running on Windows Server 2019 fails to complete device authentication properly due to an invalid check of incoming scopes in the request. Device authentication to AD FS is a requirement for Windows Hello for Business to enroll a certificate using AD FS. The client will block Windows Hello for Business provisioning until this authentication is successful.
+
+### Identifying Certificate Trust with AD FS 2019 Enrollment Issue
+
+The provisioning experience for Windows Hello for Business will launch if a set of prerequisite checks done by the client are successful. The result of the provisioningAdmin checks is available in event logs under Microsoft-Windows-User Device Registration. If provisioning is blocked because device authentication has not successfully occurred, there will be an event ID 362 in the logs that states that *User has successfully authenticated to the enterprise STS: No*.
+
+    Log Name:      Microsoft-Windows-User Device Registration/Admin
+    Source:        Microsoft-Windows-User Device Registration
+    Date:          <Date and time>
+    Event ID:      362
+    Task Category: None
+    Level:         Warning
+    Keywords:     
+    User:          <User SID>
+    Computer:      <Computer name>
+    Description:
+    Windows Hello for Business provisioning will not be launched.
+    Device is AAD joined ( AADJ or DJ++ ): Yes
+    User has logged on with AAD credentials: Yes
+    Windows Hello for Business policy is enabled: Yes
+    Windows Hello for Business post-logon provisioning is enabled: Yes
+    Local computer meets Windows hello for business hardware requirements: Yes
+    User is not connected to the machine via Remote Desktop: Yes
+    User certificate for on premise auth policy is enabled: Yes
+    Enterprise user logon certificate enrollment endpoint is ready: Not Tested
+    Enterprise user logon certificate template is : No ( 1 : StateNoPolicy ) 
+    User has successfully authenticated to the enterprise STS: No
+    Certificate enrollment method: enrollment authority
+    See https://go.microsoft.com/fwlink/?linkid=832647 for more details.
+
+If a device has recently been joined to a domain, then there may be a delay before the device authentication occurs. If the failing state of this prerequisite check persists, then it can indicate an issue with the AD FS configuration.
+
+If this AD FS scope issue is present, event logs on the AD FS server will indicate an authentication failure from the client. This error will be logged in event logs under AD FS/Admin as event ID 1021 and the event will specify that the client is forbidden access to resource 'http<span>://schemas.microsoft.com/ws/2009/12/identityserver/selfscope</span>' with scope 'ugs':
+
+    Log Name:      AD FS/Admin
+    Source:        AD FS
+    Date:          <Date and time>
+    Event ID:      1021
+    Task Category: None
+    Level:         Error
+    Keywords:      AD FS
+    User:          <ADFS service Account>
+    Computer:      <Date and time>
+    Description:
+    Encountered error during OAuth token request.
+    Additional Data
+    Exception details:
+    Microsoft.IdentityServer.Web.Protocols.OAuth.Exceptions.OAuthUnauthorizedClientException: MSIS9368: Received invalid OAuth request. The client '38aa3b87-a06d-4817-b275-7a316988d93b' is forbidden to access the resource 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' with scope 'ugs'.
+       at Microsoft.IdentityServer.Web.Protocols.OAuth.OAuthProtocolContext.ValidateScopes(String scopeParameter, String clientId, String relyingPartyId)
+       at Microsoft.IdentityServer.Web.Protocols.OAuth.OAuthToken.OAuthJWTBearerRequestContext.ValidateCore()
+
+### Resolving Certificate Trust with AD FS 2019 Enrollment Issue
+
+This issue is fixed in Windows Server, version 1903 and later. For Windows Server 2019, this issue can be remediated by adding the ugs scope manually.
+
+1. Launch AD FS management console. Browse to "Services > Scope Descriptions".
+2. Right click "Scope Descriptions" and select "Add Scope Description".
+3. Under name type "ugs" and Click Apply > OK.
+4. Launch PowerShell as an administrator.
+5. Get the ObjectIdentifier of the application permission with the ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
+
+``` PowerShell
+(Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
+```
+
+6. Execute the command `Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'`.
+7. Restart the AD FS service.
+8. On the client: Restart the client. User should be prompted to provision Windows Hello for Business.
diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.yml b/windows/security/identity-protection/hello-for-business/hello-faq.yml
index d7a41ce150..4a1e132499 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.yml
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.yml
@@ -14,7 +14,7 @@ metadata:
   ms.collection: M365-identity-device-management
   ms.topic: article
   localizationpriority: medium
-  ms.date: 01/12/2021
+  ms.date: 01/14/2021
   ms.reviewer: 
     
 title: Windows Hello for Business Frequently Asked Questions (FAQ)
@@ -51,6 +51,12 @@ sections:
           
           The statement "PIN is stronger than Password" is not directed at the strength of the entropy used by the PIN. It's about the difference between providing entropy versus continuing the use of a symmetric key (the password). The TPM has anti-hammering features that thwart brute-force PIN attacks (an attacker's continuous attempt to try all combination of PINs). Some organizations may worry about shoulder surfing. For those organizations, rather than increase the complexity of the PIN, implement the [Multifactor Unlock](feature-multifactor-unlock.md) feature.
           
+      - question: How does Windows Hello for Business work with Azure AD workplace registered devices?
+        answer: |
+          On Azure AD workplace registered devices, a user will be asked to provision a Windows Hello for Business key if the feature is enabled by mobile device management policy. If the user has an existing Windows Hello container for use with their local or Microsoft connected account, the Windows Hello for Business key will be enrolled in their existing container and will be protected using their exiting gestures.
+
+          If a user has signed into their Azure AD workplace registered device with Windows Hello, their Windows Hello for Business key will be used to authenticate the user's work identity when they try to use Azure AD resources. The Windows Hello for Business key meets Azure AD multi-factor authentication (MFA) requirements and reduces the number of MFA prompts users will see when accessing resources. 
+
       - question: I have Windows Server 2016 domain controller(s), so why is the Key Admins group missing?
         answer: |
           The **Key Admins** and **Enterprise Key Admins** groups are created when you install the first Windows Server 2016 domain controller into a domain. Domain controllers running previous versions of Windows Server cannot translate the security identifier (SID) to a name. To resolve this, transfer the PDC emulator domain role to a domain controller running Windows Server 2016.
@@ -126,7 +132,7 @@ sections:
         answer: |
           Review [Azure AD Connect sync: Attributes synchronized to Azure Active Directory](https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnectsync-attributes-synchronized) for a list of attributes that sync based on scenarios. The base scenarios that include Windows Hello for Business are the [Windows 10](https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnectsync-attributes-synchronized#windows-10) scenario and the [Device writeback](https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnectsync-attributes-synchronized#device-writeback) scenario. Your environment may include additional attributes.
           
-      - question: Is Windows Hello for Business multifactor authentication?
+      - question: Is Windows Hello for Business multi-factor authentication?
         answer: |
           Windows Hello for Business is two-factor authentication based on the observed authentication factors of: something you have, something you know, and something that's part of you. Windows Hello for Business incorporates two of these factors: something you have (the user's private key protected by the device's security module) and something you know (your PIN). With the proper hardware, you can enhance the user experience by introducing biometrics. By using biometrics, you can replace the "something you know" authentication factor with the "something that is part of you" factor, with the assurances that users can fall back to the "something you know factor".
           
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-base.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-base.md
index cd9f264b8a..d9ccb2db53 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-base.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-aadj-sso-base.md
@@ -13,12 +13,13 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/19/2018
+ms.date: 01/14/2021
 ms.reviewer: 
 ---
 # Configure Azure AD joined devices for On-premises Single-Sign On using Windows Hello for Business
 
 **Applies to**
+
 - Windows 10
 - Azure Active Directory joined
 - Hybrid Deployment
@@ -63,6 +64,7 @@ If your CRL distribution point does not list an HTTP distribution point, then yo
 > If your CA has published both the Base and the Delta CRL, please make sure you have included publishing the Delta CRL in the HTTP path. Include web server to fetch the Delta CRL by allowing double escaping in the (IIS) web server.
 
 ### Windows Server 2016 Domain Controllers
+
 If you are interested in configuring your environment to use the Windows Hello for Business key rather than a certificate, then your environment must have an adequate number of Windows Server 2016 domain controllers.  Only Windows Server 2016 domain controllers are capable of authenticating user with a Windows Hello for Business key.  What do we mean by adequate?  We are glad you asked.  Read [Planning an adequate number of Windows Server 2016 Domain Controllers for Windows Hello for Business deployments](hello-adequate-domain-controllers.md) to learn more.
 
 If you are interested in configuring your environment to use the Windows Hello for Business certificate rather than key, then you are the right place.  The same certificate configuration on the domain controllers is needed, whether you are using Windows Server 2016 domain controllers or domain controllers running earlier versions of Windows Server.  You can simply ignore the Windows Server 2016 domain controller requirement.  
@@ -73,20 +75,20 @@ Certificate authorities write CRL distribution points in certificates as they ar
 
 #### Why does Windows need to validate the domain controller certificate?
 
-Windows Hello for Business enforces the strict KDC validation security feature, which imposes more restrictive criteria that must be met by the Key Distribution Center (KDC). When authenticating using Windows Hello for Business, the Windows 10 client validates the reply from the domain controller by ensuring all of the following are met:
+Windows Hello for Business enforces the strict KDC validation security feature when authenticating from an Azure AD joined device to a domain. This enforcement imposes more restrictive criteria that must be met by the Key Distribution Center (KDC). When authenticating using Windows Hello for Business on an Azure AD joined device, the Windows 10 client validates the reply from the domain controller by ensuring all of the following are met:
 
 - The domain controller has the private key for the certificate provided.
 - The root CA that issued the domain controller's certificate is in the device's **Trusted Root Certificate Authorities**.
 - Use the **Kerberos Authentication certificate template** instead of any other older template.
-- The domain controller's certificate has the **KDC Authentication** enhanced key usage.
+- The domain controller's certificate has the **KDC Authentication** enhanced key usage (EKU).
 - The domain controller's certificate's subject alternate name has a DNS Name that matches the name of the domain.
 - The domain controller's certificate's signature hash algorithm is **sha256**.
 - The domain controller's certificate's public key is **RSA (2048 Bits)**.
 
+Authenticating from a Hybrid Azure AD joined device to a domain using Windows Hello for Business does not enforce that the domain controller certificate includes the **KDC Authentication** EKU. If you are adding Azure AD joined devices to an existing domain environment, make sure to verify that your domain controller certificate has been updated to include the **KDC Authentication** EKU. If you need to update your domain controller certificate to include the **KDC Authentication** EKU, follow the instructions in [Configure Hybrid Windows Hello for Business: Public Key Infrastructure](hello-hybrid-key-whfb-settings-pki.md)
 
 > [!Tip]
 > If you are using Windows Server 2008, **Kerberos Authentication** is not the default template, so make sure to use the correct template when issuing or re-issuing the certificate.
- 
 
 ## Configuring a CRL Distribution Point for an issuing certificate authority
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
index f301ec009c..cfb8b164f0 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-adfs.md
@@ -13,7 +13,7 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/20/2018
+ms.date: 01/14/2021
 ms.reviewer: 
 ---
 # Configure Windows Hello for Business: Active Directory Federation Services
@@ -76,9 +76,8 @@ Sign-in a domain controller or management workstation with _Domain Admin_ equiva
 > (Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
 > ```
 > 6. Execute the command `Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'`.
-> 7. Restart the ADFS service.
-> 8. On the client: Restart the client. User should be prompted to provision WHFB.
-> 9. If the provisioning window does not pop up then need to collect NGC trace logs and further troubleshoot.
+> 7. Restart the AD FS service.
+> 8. On the client: Restart the client. User should be prompted to provision Windows Hello for Business.
 
 ### Section Review
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
index 8bd8f3e995..ec12645e1d 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
@@ -13,31 +13,31 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/19/2018
+ms.date: 01/14/2021
 ms.reviewer: 
 ---
 
 # Configure Hybrid Windows Hello for Business: Public Key Infrastructure
 
 **Applies to**
--   Windows 10, version 1703 or later
--   Hybrid Deployment
--   Certificate Trust
 
+- Windows 10, version 1703 or later
+- Hybrid Deployment
+- Certificate Trust
 
 Windows Hello for Business deployments rely on certificates.  Hybrid deployments uses publicly issued server authentication certificates to validate the name of the server to which they are connecting and to encrypt the data that flows them and the client computer.
 
-All deployments use enterprise issued certificates for domain controllers as a root of trust.  Hybrid certificate trust deployments issue users sign-in certificate that enables them to authenticate using Windows Hello for Business credentials to non-Windows Server 2016 domain controllers.  Additionally, hybrid certificate trust deployments issue certificate to registration authorities to provide defense-in-depth security for issuing user authentication certificates. 
+All deployments use enterprise issued certificates for domain controllers as a root of trust.  Hybrid certificate trust deployments issue users sign-in certificate that enables them to authenticate using Windows Hello for Business credentials to non-Windows Server 2016 domain controllers.  Additionally, hybrid certificate trust deployments issue certificate to registration authorities to provide defense-in-depth security for issuing user authentication certificates.
 
 ## Certificate Templates
 
-This section has you configure certificate templates on your Windows Server 2012 or later issuing certificate authority. 
+This section has you configure certificate templates on your Windows Server 2012 or later issuing certificate authority.
 
 ### Domain Controller certificate template
 
 Clients need to trust domain controllers and the best way to do this is to ensure each domain controller has a Kerberos Authentication certificate.  Installing a certificate on the domain controller enables the Key Distribution Center (KDC) to prove its identity to other members of the domain.  This provides clients a root of trust external to the domain - namely the enterprise certificate authority.
 
-Domain controllers automatically request a domain controller certificate (if published) when they discover an enterprise certificate authority is added to Active Directory.  However, certificates based on the *Domain Controller* and *Domain Controller Authentication* certificate templates do not include the **KDC Authentication** object identifier (OID), which was later added to the Kerberos RFC.  Therefore, domain controllers need to request a certificate based on the Kerberos Authentication certificate template.
+Domain controllers automatically request a domain controller certificate (if published) when they discover an enterprise certificate authority is added to Active Directory.  However, certificates based on the *Domain Controller* and *Domain Controller Authentication* certificate templates do not include the **KDC Authentication** object identifier (OID), which was later added to the Kerberos RFC. Inclusion of the **KDC Authentication** OID in domain controller certificate is not required for key trust authentication from Hybrid Azure AD joined devices. The OID is required for enabling authentication with Windows Hello for Business to on-premises resources by Azure AD joined devices. The steps below to *Create a Domain Controller Authentication (Kerberos) Certificate Template* and *Configure Certificate Superseding for the Domain Controller Authentication (Kerberos) Certificate Template* to include the **KDC Authentication** OID in the domain controller certificate may be skipped if you only have Hybrid Azure AD Joined devices in your environment, but we recommend completing these steps if you are considering adding Azure AD joined devices to your environment in the future.
 
 By default, the Active Directory Certificate Authority provides and publishes the Kerberos Authentication certificate template.  However, the cryptography configuration included in the provided template is based on older and less performant cryptography APIs.  To ensure domain controllers request the proper certificate with the best available cryptography, use the **Kerberos Authentication** certificate template as a baseline to create an updated domain controller certificate template.
 
@@ -53,14 +53,14 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 
 4. On the **Compatibility** tab, clear the **Show resulting changes** check box.  Select **Windows Server 2008 R2** from the **Certification Authority** list. Select **Windows 7.Server 2008 R2** from the **Certification Recipient** list.
 
-5. On the **General** tab, type **Domain Controller Authentication (Kerberos)** in Template display name.  Adjust the validity and renewal period to meet your enterprise's needs.   
+5. On the **General** tab, type **Domain Controller Authentication (Kerberos)** in Template display name.  Adjust the validity and renewal period to meet your enterprise's needs.
 
    > [!NOTE]
    > If you use different template names, you'll need to remember and substitute these names in different portions of the lab.
-   
+
 6. On the **Subject** tab, select the **Build from this Active Directory information** button if it is not already selected.  Select **None** from the **Subject name format** list.  Select **DNS name** from the **Include this information in alternate subject** list. Clear all other items.
 
-7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  Click **OK**. 
+7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  Click **OK**.
 
 8. Close the console.
 
@@ -70,7 +70,7 @@ Many domain controllers may have an existing domain controller certificate.  The
 
 The Kerberos Authentication certificate template is the most current certificate template designated for domain controllers and should be the one you deploy to all your domain controllers (2008 or later).
 
-The auto-enrollment feature in Windows enables you to effortlessly replace these domain controller certificates.  You can use the following configuration to replace older domain controller certificates with a new certificate using the Kerberos Authentication certificate template. 
+The auto-enrollment feature in Windows enables you to effortlessly replace these domain controller certificates.  You can use the following configuration to replace older domain controller certificates with a new certificate using the Kerberos Authentication certificate template.
 
 Sign-in a certificate authority or management workstations with _Enterprise Admin_ equivalent credentials.
 
@@ -86,7 +86,7 @@ Sign-in a certificate authority or management workstations with _Enterprise Admi
 
 6. From the **Add Superseded Template** dialog, select the **Domain Controller Authentication** certificate template and click **OK**.
 
-7. From the **Add Superseded Template dialog**, select the **Kerberos Authentication** certificate template and click **OK**. 
+7. From the **Add Superseded Template dialog**, select the **Kerberos Authentication** certificate template and click **OK**.
 
 8. Add any other enterprise certificate templates that were previously configured for domain controllers to the **Superseded Templates** tab.
 
@@ -104,7 +104,7 @@ Active Directory Federation Server used for Windows Hello for Business certifica
 Approximately 60 days prior to enrollment agent certificate's expiration, the AD FS service attempts to renew the certificate until it is successful.  If the certificate fails to renew, and the certificate expires, the AD FS server will request a new enrollment agent certificate.  You can view the AD FS event logs to determine the status of the enrollment agent certificate.
 
 > [!IMPORTANT]
-> Follow the procedures below based on the AD FS service account used in your  environment. 
+> Follow the procedures below based on the AD FS service account used in your  environment.
 
 #### Creating an Enrollment Agent certificate for Group Managed Service Accounts
 
@@ -127,7 +127,7 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 
 7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 
-8. On the **Security** tab, click **Add**. 
+8. On the **Security** tab, click **Add**.
 
 9. Click **Object Types**.  Select the **Service Accounts** check box and click **OK**.
 
@@ -157,7 +157,7 @@ Sign-in a certificate authority or management workstations with *Domain Admin* e
 
 8. On the **Security** tab, click **Add**. Type **adfssvc** in the **Enter the object names to select text box** and click **OK**.
 
-9. Click the **adfssvc** from the **Group or users names** list. In the **Permissions for adfssvc** section, select the **Allow** check box for the **Enroll** permission. Excluding the **adfssvc** user, clear the **Allow** check boxes for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**. 
+9. Click the **adfssvc** from the **Group or users names** list. In the **Permissions for adfssvc** section, select the **Allow** check box for the **Enroll** permission. Excluding the **adfssvc** user, clear the **Allow** check boxes for the **Enroll** and **Autoenroll** permissions for all other items in the **Group or users names** list if the check boxes are not already cleared. Click **OK**.
 
 10. Close the console.
 
@@ -179,7 +179,7 @@ Sign-in a certificate authority or management workstations with _Domain Admin eq
 
    > [!NOTE]
    > If you use different template names, you'll need to remember and substitute these names in different portions of the deployment.
-   
+
 6. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 
 7. On the **Extensions** tab, verify the **Application Policies** extension includes **Smart Card Logon**.
@@ -187,7 +187,7 @@ Sign-in a certificate authority or management workstations with _Domain Admin eq
 8. On the **Issuance Requirements** tab, select the **This number of authorized signatures** check box.  Type **1** in the text box.   
 
    Select **Application policy** from the **Policy type required in signature**. Select **Certificate Request Agent** from in the **Application policy** list. Select the **Valid existing certificate** option.
-   
+
 9. On the **Subject** tab, select the **Build from this Active Directory information** button if it is not already selected. Select **Fully distinguished name** from the **Subject name format** list if **Fully distinguished name** is not already selected. Select the **User Principal Name (UPN)** check box under **Include this information in alternative subject name**.
 
 10. On the **Request Handling** tab, select the **Renew with same key** check box.
@@ -255,7 +255,6 @@ Sign-in to the certificate authority or management workstations with an _Enterpr
 
 6. Close the console.
 
-
 #### Unpublish Superseded Certificate Templates
 
 The certificate authority only issues certificates based on published certificate templates.  For defense in depth security, it is a good practice to unpublish certificate templates that the certificate authority is not configured to issue.  This includes the pre-published certificate template from the role installation and any superseded certificate templates.
@@ -274,8 +273,8 @@ Sign-in to the certificate authority or management workstation with _Enterprise
 
 5. Repeat step 4 for the **Domain Controller Authentication** and **Kerberos Authentication** certificate templates.
 
-
 ### Section Review
+
 > [!div class="checklist"]
 > * Domain Controller certificate template
 > * Configure superseded domain controller certificate templates
@@ -285,7 +284,6 @@ Sign-in to the certificate authority or management workstation with _Enterprise
 > * Publish Certificate templates to certificate authorities
 > * Unpublish superseded certificate templates
 > 
-> 
 > [!div class="step-by-step"]
 > [< Configure Azure AD Connect](hello-hybrid-cert-whfb-settings-dir-sync.md)
 > [Configure AD FS >](hello-hybrid-cert-whfb-settings-adfs.md)
@@ -295,6 +293,7 @@ Sign-in to the certificate authority or management workstation with _Enterprise
 <hr>
 
 ## Follow the Windows Hello for Business hybrid certificate trust deployment guide
+
 1. [Overview](hello-hybrid-cert-trust.md)
 2. [Prerequisites](hello-hybrid-cert-trust-prereqs.md)
 3. [New Installation Baseline](hello-hybrid-cert-new-install.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-pki.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-pki.md
index 87b70bbd2c..c05de0195e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-pki.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-pki.md
@@ -13,31 +13,31 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/19/2018
+ms.date: 01/14/2021
 ms.reviewer: 
 ---
 
 # Configure Hybrid Windows Hello for Business: Public Key Infrastructure
 
 **Applies to**
--   Windows 10, version 1703 or later
--   Hybrid Deployment
--   Key trust
 
+- Windows 10, version 1703 or later
+- Hybrid Deployment
+- Key trust
 
 Windows Hello for Business deployments rely on certificates.  Hybrid deployments uses publicly issued server authentication certificates to validate the name of the server to which they are connecting and to encrypt the data that flows them and the client computer.
 
-All deployments use enterprise issued certificates for domain controllers as a root of trust. 
+All deployments use enterprise issued certificates for domain controllers as a root of trust.
 
 ## Certificate Templates
 
-This section has you configure certificate templates on your Windows Server 2012 or later issuing certificate authority. 
+This section has you configure certificate templates on your Windows Server 2012 or later issuing certificate authority.
 
 ### Domain Controller certificate template
 
 Clients need to trust domain controllers and the best way to do this is to ensure each domain controller has a Kerberos Authentication certificate.  Installing a certificate on the domain controller enables the Key Distribution Center (KDC) to prove its identity to other members of the domain.  This provides clients a root of trust external to the domain - namely the enterprise certificate authority.
 
-Domain controllers automatically request a domain controller certificate (if published) when they discover an enterprise certificate authority is added to Active Directory.  However, certificates based on the *Domain Controller* and *Domain Controller Authentication* certificate templates do not include the **KDC Authentication** object identifier (OID), which was later added to the Kerberos RFC.  Therefore, domain controllers need to request a certificate based on the Kerberos Authentication certificate template.
+Domain controllers automatically request a domain controller certificate (if published) when they discover an enterprise certificate authority is added to Active Directory.  However, certificates based on the *Domain Controller* and *Domain Controller Authentication* certificate templates do not include the **KDC Authentication** object identifier (OID), which was later added to the Kerberos RFC. Inclusion of the **KDC Authentication** OID in domain controller certificate is not required for key trust authentication from Hybrid Azure AD joined devices. The OID is required for enabling authentication with Windows Hello for Business to on-premises resources by Azure AD joined devices. The steps below to update the domain controller certificate to include the **KDC Authentication** OID may be skipped if you only have Hybrid Azure AD Joined devices in your environment, but we recommend completing these steps if you are considering adding Azure AD joined devices to your environment in the future.
 
 By default, the Active Directory Certificate Authority provides and publishes the Kerberos Authentication certificate template.  However, the cryptography configuration included in the provided template is based on older and less performant cryptography APIs.  To ensure domain controllers request the proper certificate with the best available cryptography, use the **Kerberos Authentication** certificate template a baseline to create an updated domain controller certificate template.
 
@@ -49,10 +49,10 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 2. Right-click **Certificate Templates** and click **Manage**.
 3. In the **Certificate Template Console**, right-click the **Kerberos Authentication** template in the details pane and click **Duplicate Template**.
 4. On the **Compatibility** tab, clear the **Show resulting changes** check box.  Select **Windows Server 2008 R2** from the **Certification Authority** list. Select **Windows 7.Server 2008 R2** from the **Certification Recipient** list.
-5. On the **General** tab, type **Domain Controller Authentication (Kerberos)** in Template display name.  Adjust the validity and renewal period to meet your enterprise's needs.   
+5. On the **General** tab, type **Domain Controller Authentication (Kerberos)** in Template display name.  Adjust the validity and renewal period to meet your enterprise's needs.
     **Note**If you use different template names, you'll need to remember and substitute these names in different portions of the lab.
 6. On the **Subject Name** tab, select the **Build from this Active Directory information** button if it is not already selected.  Select **None** from the **Subject name format** list.  Select **DNS name** from the **Include this information in alternate subject** list. Clear all other items.
-7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  Click **OK**. 
+7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.  Click **OK**.
 8. Close the console.
 
 >[!NOTE]
@@ -113,13 +113,13 @@ Sign-in to the certificate authority or management workstation with _Enterprise
 5. Repeat step 4 for the **Domain Controller Authentication** and **Kerberos Authentication** certificate templates.
 
 ### Section Review
+
 > [!div class="checklist"]
 > * Domain Controller certificate template
 > * Configure superseded domain controller certificate templates
 > * Publish Certificate templates to certificate authorities
 > * Unpublish superseded certificate templates
-> 
-> 
+> s
 > [!div class="step-by-step"]
 > [< Configure Azure AD Connect](hello-hybrid-key-whfb-settings-dir-sync.md)
 > [Configure policy settings >](hello-hybrid-key-whfb-settings-policy.md)
@@ -129,6 +129,7 @@ Sign-in to the certificate authority or management workstation with _Enterprise
 <hr>
 
 ## Follow the Windows Hello for Business hybrid key trust deployment guide
+
 1. [Overview](hello-hybrid-cert-trust.md)
 2. [Prerequisites](hello-hybrid-key-trust-prereqs.md)
 3. [New Installation Baseline](hello-hybrid-key-new-install.md)
diff --git a/windows/security/identity-protection/hello-for-business/toc.md b/windows/security/identity-protection/hello-for-business/toc.md
index 3913ea8734..7e761cb8c4 100644
--- a/windows/security/identity-protection/hello-for-business/toc.md
+++ b/windows/security/identity-protection/hello-for-business/toc.md
@@ -66,5 +66,7 @@
 ## [Windows Hello for Business Frequently Asked Questions (FAQ)](hello-faq.yml)
 ### [Windows Hello for Business Videos](hello-videos.md)
 
-## [Windows Hello errors during PIN creation](hello-errors-during-pin-creation.md)
-## [Event ID 300 - Windows Hello successfully created](hello-event-300.md)
+## [Windows Hello for Business Troubleshooting]
+### [Known Deployment Issues](hello-deployment-issues.md)
+### [Errors during PIN creation](hello-errors-during-pin-creation.md)
+### [Event ID 300 - Windows Hello successfully created](hello-event-300.md)

From 609fec09382052826fc6f8ea1f0ee9524a2b57ca Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Fri, 15 Jan 2021 09:04:09 -0800
Subject: [PATCH 504/825] pencil edit

---
 windows/security/identity-protection/hello-for-business/toc.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/toc.md b/windows/security/identity-protection/hello-for-business/toc.md
index 7e761cb8c4..b046ac97ee 100644
--- a/windows/security/identity-protection/hello-for-business/toc.md
+++ b/windows/security/identity-protection/hello-for-business/toc.md
@@ -66,7 +66,7 @@
 ## [Windows Hello for Business Frequently Asked Questions (FAQ)](hello-faq.yml)
 ### [Windows Hello for Business Videos](hello-videos.md)
 
-## [Windows Hello for Business Troubleshooting]
+## Windows Hello for Business Troubleshooting
 ### [Known Deployment Issues](hello-deployment-issues.md)
 ### [Errors during PIN creation](hello-errors-during-pin-creation.md)
 ### [Event ID 300 - Windows Hello successfully created](hello-event-300.md)

From b4a2125bc097ea67e3ba0aa56316323feb1c81a4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 11:38:36 -0800
Subject: [PATCH 505/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index ee2d488676..5f0e8172e9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -137,6 +137,12 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 ## Classify a false positive or false negative
 
+As alerts are triggered, if you see something that was detected as malicious or suspicious that should not be, you can suppress alerts for that entity and classify alerts as false positives. Managing your alerts and classifying false positives helps to train your threat protection solution. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
+
+### Suppress an alert
+
+
+
 ### Classify an alert as a false positive
 
 Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the Alerts queue. 

From 33bdd42057de9d1c7d326fedfbf3c1ed59ab24f2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 11:43:57 -0800
Subject: [PATCH 506/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5f0e8172e9..2a143eeeca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In Microsoft Defender for Endpoint, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. If you’re seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
+In the area of endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. If you’re using Microsoft Defender for Endpoint, and you're seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
 
 ## Review your threat protection settings
 

From 03455cece21ba363366bd6962c0a8b62a5251de8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 11:53:37 -0800
Subject: [PATCH 507/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 2a143eeeca..5e214daece 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,11 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In the area of endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. If you’re using Microsoft Defender for Endpoint, and you're seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
+In the area of endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. The process of addressing false positives/negatives can include:
+- Reviewing your threat protection settings and making adjustments where needed
+- 
+
+If you’re using Microsoft Defender for Endpoint, and you're seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
 
 ## Review your threat protection settings
 

From 5eddcebd712edab6b9dd9822886e3e4571db2c3d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:06:56 -0800
Subject: [PATCH 508/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md    | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5e214daece..7e8b9fe917 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,11 +31,14 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In the area of endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. The process of addressing false positives/negatives can include:
-- Reviewing your threat protection settings and making adjustments where needed
-- 
+In endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. The process of addressing false positives/negatives can include:
+- [Reviewing your threat protection settings and making adjustments where needed](#review-your-threat-protection-settings);
+- [Defining exclusions, such as for antivirus and other endpoint protection features](#review-or-define-exclusions-for-microsoft-defender-for-endpoint);
+- [Classifying false positives in your endpoint protection solution](#classify-a-false-positive-or-false-negative);
+- [Submitting files for further analysis](#submit-a-file-for-analysis); and
+- [Verifying that the applications your organization is using are properly signed](#confirm-your-software-uses-ev-code-signing).
 
-If you’re using Microsoft Defender for Endpoint, and you're seeing false positives or negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
+If you’re using Microsoft Defender for Endpoint, and you're seeing false positives/negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
 
 ## Review your threat protection settings
 

From 19182cc41478da89fd15c381c01a4c9f80ff1cdd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:15:08 -0800
Subject: [PATCH 509/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 7e8b9fe917..a77c24e5c2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -38,7 +38,7 @@ In endpoint protection, a false positive is an entity, such as a file or process
 - [Submitting files for further analysis](#submit-a-file-for-analysis); and
 - [Verifying that the applications your organization is using are properly signed](#confirm-your-software-uses-ev-code-signing).
 
-If you’re using Microsoft Defender for Endpoint, and you're seeing false positives/negatives in your Microsoft Defender Security Center, use this article as a guide to take action. 
+If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 
 ## Review your threat protection settings
 
@@ -168,4 +168,6 @@ Your security team can classify an alert as a false positive in the Microsoft De
 
 ## Confirm your software uses EV code signing
 
-*Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
\ No newline at end of file
+*Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
+
+## Still need help?
\ No newline at end of file

From b76685aa6938c547cafd7b397aa2e606759fc87d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:22:20 -0800
Subject: [PATCH 510/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index a77c24e5c2..1881a1f688 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -42,7 +42,7 @@ If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/w
 
 ## Review your threat protection settings
 
-Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
+Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
 - Cloud-delivered protection
 - Remediation for potentially unwanted apps (PUA)
@@ -85,13 +85,13 @@ Depending on the apps your organization is using, you might be getting false pos
 
 ## Review or define exclusions for Microsoft Defender for Endpoint
 
-An exclusion is an entity that you specify as an exception to remediation. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
+An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
-To define exclusions across Microsoft Defender for Endpoint, you perform these two tasks:
+To define exclusions across Microsoft Defender for Endpoint, perform the following tasks:
 - Define exclusions for Microsoft Defender Antivirus
 - Create “allow” indicators for Microsoft Defender for Endpoint
 
-Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR), [attack surface reduction (ASR) rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger EDR alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indcators for Microsoft Defender for Endpoint.
+Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indcators for Microsoft Defender for Endpoint.
 
 The procedures in this section describe how to define exclusions and indicators.
 

From 04ec92cf634ec8ddfb09c0ba1692039b10f1ff4a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:41:26 -0800
Subject: [PATCH 511/825] Update defender-endpoint-false-positives-negatives.md

---
 ...defender-endpoint-false-positives-negatives.md | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 1881a1f688..8db2bfbd67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -51,7 +51,20 @@ Microsoft Defender for Endpoint offers a wide variety of options, including the
 
 Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, this is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
 
-See [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
+We recommend using Microsoft Endpoint Manager to edit your cloud-delivered protection settings.
+
+#### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings
+
+1.	Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2.	Choose Endpoint security > Antivirus and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+3.	Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
+4.	Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
+5.	Choose **Review + save**, and then **Save**.
+
+
+
+> [!TIP]
+> To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
 
 ### Remediation for potentially unwanted applications (PUA)
 

From 05b7341aee7a6b1c2d39f90f5eebe8fc9adc5f9c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:42:15 -0800
Subject: [PATCH 512/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8db2bfbd67..1a74f33fa5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -56,12 +56,12 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 #### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings
 
 1.	Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2.	Choose Endpoint security > Antivirus and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to the next procedure).
+2.	Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-antivirus-policy)).
 3.	Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
 4.	Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
 5.	Choose **Review + save**, and then **Save**.
 
-
+#### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
 
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)

From cdd241e8d99345b9797dfc7a4175c2b2b0236976 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:49:22 -0800
Subject: [PATCH 513/825] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 4fd85c48d2..d64cf954ff 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -508,6 +508,8 @@
 #### [Configure conditional access](microsoft-defender-atp/configure-conditional-access.md)
 #### [Configure Microsoft Cloud App Security integration](microsoft-defender-atp/microsoft-cloud-app-security-config.md)
 
+### [Address false positives/negatives in Microsoft Defender for Endpoint](microsoft-defender-atp/defender-endpoint-false-positives-negatives.md)
+
 ### [Use audit mode](microsoft-defender-atp/audit-windows-defender.md)
 
 ## Reference

From cdde314ed51395c2fc9aee94d6fcdbff2fbedbb2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:49:34 -0800
Subject: [PATCH 514/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 1a74f33fa5..22e7b90793 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -63,6 +63,8 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 
 #### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
 
+
+
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
 

From 940675c5886c87374be99d82d3e3fe8881944d6a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 12:58:25 -0800
Subject: [PATCH 515/825] Update
 utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md

---
 ...ft-cloud-protection-microsoft-defender-antivirus.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
index c79e1ae87f..f732c5f89d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
@@ -45,11 +45,11 @@ src="https://videoplayercdn.osi.office.net/embed/c2f20f59-ca56-4a7b-ba23-44c60bc
 
 Read the following blog posts for detailed protection stories involving cloud-protection and Microsoft AI: 
 
-- [Why Microsoft Defender Antivirus is the most deployed in the enterprise](https://cloudblogs.microsoft.com/microsoftsecure/2018/03/22/why-microsoft-defender-antivirus-is-the-most-deployed-in-the-enterprise/) 
-- [Behavior monitoring combined with machine learning spoils a massive Dofoil coin mining campaign](https://cloudblogs.microsoft.com/microsoftsecure/2018/03/07/behavior-monitoring-combined-with-machine-learning-spoils-a-massive-dofoil-coin-mining-campaign/)
-- [How artificial intelligence stopped an Emotet outbreak](https://cloudblogs.microsoft.com/microsoftsecure/2018/02/14/how-artificial-intelligence-stopped-an-emotet-outbreak/)
-- [Detonating a bad rabbit: Microsoft Defender Antivirus and layered machine learning defenses](https://cloudblogs.microsoft.com/microsoftsecure/2017/12/11/detonating-a-bad-rabbit-microsoft-defender-antivirus-and-layered-machine-learning-defenses/)
-- [Microsoft Defender Antivirus cloud protection service: Advanced real-time defense against never-before-seen malware](https://cloudblogs.microsoft.com/microsoftsecure/2017/07/18/microsoft-defender-antivirus-cloud-protection-service-advanced-real-time-defense-against-never-before-seen-malware/) 
+- [Why Microsoft Defender Antivirus is the most deployed in the enterprise](https://www.microsoft.com/security/blog/2018/03/22/why-windows-defender-antivirus-is-the-most-deployed-in-the-enterprise) 
+- [Behavior monitoring combined with machine learning spoils a massive Dofoil coin mining campaign](https://www.microsoft.com/security/blog/2018/03/07/behavior-monitoring-combined-with-machine-learning-spoils-a-massive-dofoil-coin-mining-campaign)
+- [How artificial intelligence stopped an Emotet outbreak](https://www.microsoft.com/security/blog/2018/02/14/how-artificial-intelligence-stopped-an-emotet-outbreak)
+- [Detonating a bad rabbit: Microsoft Defender Antivirus and layered machine learning defenses](https://www.microsoft.com/security/blog/2017/12/11/detonating-a-bad-rabbit-windows-defender-antivirus-and-layered-machine-learning-defenses)
+- [Microsoft Defender Antivirus cloud protection service: Advanced real-time defense against never-before-seen malware](https://www.microsoft.com/security/blog/2017/07/18/windows-defender-antivirus-cloud-protection-service-advanced-real-time-defense-against-never-before-seen-malware) 
  
 ## Get cloud-delivered protection 
 

From 68ea7ac163b7f95c072adcbad71e11f583111b3e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 13:28:26 -0800
Subject: [PATCH 516/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 22e7b90793..1ef9284ac9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -44,8 +44,8 @@ If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/w
 
 Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
-- Cloud-delivered protection
-- Remediation for potentially unwanted apps (PUA)
+- [Cloud-delivered protection](#cloud-delivered-protection)
+- [Remediation for potentially unwanted apps](#remediation-for-potentially-unwanted-applications-pua) (PUA)
 
 ### Cloud-delivered protection
 
@@ -55,11 +55,11 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 
 #### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings
 
-1.	Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2.	Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-antivirus-policy)).
-3.	Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
-4.	Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
-5.	Choose **Review + save**, and then **Save**.
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-antivirus-policy)).
+3. Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
+4. Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
+5. Choose **Review + save**, and then **Save**.
 
 #### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
 

From 9422afe00f6e835c8fbc33b7259acc60f144d893 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 13:43:24 -0800
Subject: [PATCH 517/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md           | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 1ef9284ac9..cfe7df33b6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -38,7 +38,7 @@ In endpoint protection, a false positive is an entity, such as a file or process
 - [Submitting files for further analysis](#submit-a-file-for-analysis); and
 - [Verifying that the applications your organization is using are properly signed](#confirm-your-software-uses-ev-code-signing).
 
-If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
+If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 
 ## Review your threat protection settings
 
@@ -63,7 +63,8 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 
 #### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
 
-
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus** and then select an existing policy.
 
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)

From a25292e549f421e316dc663adfa53259a74c9e1a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 13:59:55 -0800
Subject: [PATCH 518/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md    | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index cfe7df33b6..c0b9058440 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -64,7 +64,14 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 #### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus** and then select an existing policy.
+2. Choose **Endpoint security** > **Antivirus** > **+ Create policy**.
+3. For **Platform**, select an option, and then for **Profile**, select **Antivirus** or **Microsoft Defender Antivirus** (the specific option depends on what you selected for **Platform**.) Then choose **Create**.
+4. On the **Basics** tab, specify a name and description for the policy. Then choose **Next**.
+5. On the **Configuration settings** tab, expand **Cloud protection**, and specify the following settings:
+   - Set **Turn on cloud-delivered protection** to **Yes**.
+   - Set **Cloud-delivered protection level** to **Not configured**. (This level provides a strong level of protection by default while reducing the chances of getting false positives.)
+6. On the **Scope tags** tab,  
+
 
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
@@ -135,7 +142,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 5. Specify a name and description for the profile, and then choose **Next**.
 6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.
 7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
-8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
+8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.
 
 ### Indicators for Microsoft Defender for Endpoint

From 07713c98772ee3af4565a1b149553e519daf4dd1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:02:25 -0800
Subject: [PATCH 519/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index c0b9058440..41a001d354 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -51,6 +51,9 @@ Microsoft Defender for Endpoint offers a wide variety of options, including the
 
 Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, this is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
 
+> [!TIP]
+> To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
+
 We recommend using Microsoft Endpoint Manager to edit your cloud-delivered protection settings.
 
 #### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings
@@ -70,11 +73,12 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 5. On the **Configuration settings** tab, expand **Cloud protection**, and specify the following settings:
    - Set **Turn on cloud-delivered protection** to **Yes**.
    - Set **Cloud-delivered protection level** to **Not configured**. (This level provides a strong level of protection by default while reducing the chances of getting false positives.)
-6. On the **Scope tags** tab,  
+6. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
+8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
+9. On the **Review + create** tab, review the settings, and then choose **Create**.  
+
 
 
-> [!TIP]
-> To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
 
 ### Remediation for potentially unwanted applications (PUA)
 

From 70896026c3c8aede5837401ed9e3ef30efdd2c84 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:08:28 -0800
Subject: [PATCH 520/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md           | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 41a001d354..60b333fb5f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -77,9 +77,6 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.  
 
-
-
-
 ### Remediation for potentially unwanted applications (PUA)
 
 Potentially unwanted applications (PUA) are a category of software that can cause devices to run slowly, display unexpected ads, or install other software that might be unexpected or unwanted. Examples of PUA include advertising software, bundling software, and evasion software that behaves differently with security products. Although PUA is not considered malware, some kinds of software are PUA based on their behavior and reputation.
@@ -175,6 +172,8 @@ As alerts are triggered, if you see something that was detected as malicious or
 
 ### Suppress an alert
 
+You can suppress an alert in the Microsoft Defender Security Center.
+
 
 
 ### Classify an alert as a false positive

From c89b09bdf3e1c53a30105dd41db70db9dfc2d9d2 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:13:56 -0800
Subject: [PATCH 521/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 60b333fb5f..b9a77466b5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -103,7 +103,7 @@ Depending on the apps your organization is using, you might be getting false pos
 4. On the **Basics** tab, specify a name and description for your policy. Then choose **Next**.
 5. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
 6. Set **Detect potentially unwanted applications** to **Audit**, and then choose **Next**. (You can turn PUA protection off, but by using audit mode, you will be able to see detections.)
-7. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](Assign device profiles in Microsoft Intune - Azure | Microsoft Docs).)
+7. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 

From 04b09667e6a2174745db3d5891431b0466f6844a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:22:26 -0800
Subject: [PATCH 522/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index b9a77466b5..1ea52853e9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -42,7 +42,7 @@ If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/w
 
 ## Review your threat protection settings
 
-Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine tune settings for various features and capabilities. If you’re getting a lot of false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
+Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
 - [Cloud-delivered protection](#cloud-delivered-protection)
 - [Remediation for potentially unwanted apps](#remediation-for-potentially-unwanted-applications-pua) (PUA)
@@ -73,7 +73,7 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 5. On the **Configuration settings** tab, expand **Cloud protection**, and specify the following settings:
    - Set **Turn on cloud-delivered protection** to **Yes**.
    - Set **Cloud-delivered protection level** to **Not configured**. (This level provides a strong level of protection by default while reducing the chances of getting false positives.)
-6. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
+6. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.  
 
@@ -138,7 +138,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
-3. Select a platform (such as Windows 10 and later, macOS, or Windows 10 and Windows Server).
+3. Select a platform (such as **Windows 10 and later**, **macOS**, or **Windows 10 and Windows Server**).
 4. For **Profile**, select **Microsoft Defender Antivirus exclusions**, and then choose **Create**.
 5. Specify a name and description for the profile, and then choose **Next**.
 6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.

From e3b8b22f857727ef5deb18bd5f8ad38e72aaa5c8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:23:04 -0800
Subject: [PATCH 523/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 1ea52853e9..4e7efcd55a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -102,7 +102,7 @@ Depending on the apps your organization is using, you might be getting false pos
 3. For the **Platform**, choose **Windows 10 and later**, and for **Profile**, select **Device restrictions**.
 4. On the **Basics** tab, specify a name and description for your policy. Then choose **Next**.
 5. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
-6. Set **Detect potentially unwanted applications** to **Audit**, and then choose **Next**. (You can turn PUA protection off, but by using audit mode, you will be able to see detections.)
+6. Set **Detect potentially unwanted applications** to **Audit**, and then choose **Next**. (You can turn off PUA protection, but by using audit mode, you will be able to see detections.)
 7. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
@@ -115,7 +115,7 @@ To define exclusions across Microsoft Defender for Endpoint, perform the followi
 - Define exclusions for Microsoft Defender Antivirus
 - Create “allow” indicators for Microsoft Defender for Endpoint
 
-Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indcators for Microsoft Defender for Endpoint.
+Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
 
 The procedures in this section describe how to define exclusions and indicators.
 
@@ -186,7 +186,7 @@ Your security team can classify an alert as a false positive in the Microsoft De
 4. In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
 
 > [!TIP]
-> For more details about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
+> For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
 
 ## Submit a file for analysis
 

From a0d3c8e46811e7101948011a7789634861d87425 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:33:09 -0800
Subject: [PATCH 524/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4e7efcd55a..e022ecd644 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -156,7 +156,7 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
+Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
 
 - [Learn more about indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
 - [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)

From 85f16c130ea0dc4a512631922c48d838936c6249 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:34:27 -0800
Subject: [PATCH 525/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index e022ecd644..e6352c7739 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or process, that was detected and identified as malicious, when, in fact, the entity does not pose a threat. A false negative is an entity that was not detected as a threat even though it is, in fact, malicious. The process of addressing false positives/negatives can include:
+In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity is not actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
 - [Reviewing your threat protection settings and making adjustments where needed](#review-your-threat-protection-settings);
 - [Defining exclusions, such as for antivirus and other endpoint protection features](#review-or-define-exclusions-for-microsoft-defender-for-endpoint);
 - [Classifying false positives in your endpoint protection solution](#classify-a-false-positive-or-false-negative);

From 829d15f748361815e2953a10f2b33726c5a13c5b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:36:34 -0800
Subject: [PATCH 526/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index e6352c7739..d1a1651c05 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity is not actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
+In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
 - [Reviewing your threat protection settings and making adjustments where needed](#review-your-threat-protection-settings);
 - [Defining exclusions, such as for antivirus and other endpoint protection features](#review-or-define-exclusions-for-microsoft-defender-for-endpoint);
 - [Classifying false positives in your endpoint protection solution](#classify-a-false-positive-or-false-negative);

From 13ea23be0e54cf823514a89cb1e7aae5e518520b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:37:49 -0800
Subject: [PATCH 527/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d1a1651c05..692b8001f3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -54,9 +54,9 @@ Check your cloud-delivered protection level for Microsoft Defender Antivirus. By
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
 
-We recommend using Microsoft Endpoint Manager to edit your cloud-delivered protection settings.
+We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivered protection settings.
 
-#### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings
+#### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings (for existing policies)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-antivirus-policy)).
@@ -64,7 +64,7 @@ We recommend using Microsoft Endpoint Manager to edit your cloud-delivered prote
 4. Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
 5. Choose **Review + save**, and then **Save**.
 
-#### Use Microsoft Endpoint Manager to set cloud-delivered protection settings for a new antivirus policy
+#### Use Microsoft Endpoint Manager to set cloud-delivered protection settings (for a new policy)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** > **+ Create policy**.

From d1f235b8097193002b28a4845aca1a6684d95a19 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:39:35 -0800
Subject: [PATCH 528/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 692b8001f3..79bd50bdb6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -77,16 +77,18 @@ We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivere
 8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
 9. On the **Review + create** tab, review the settings, and then choose **Create**.  
 
-### Remediation for potentially unwanted applications (PUA)
+### Remediation for potentially unwanted applications
 
 Potentially unwanted applications (PUA) are a category of software that can cause devices to run slowly, display unexpected ads, or install other software that might be unexpected or unwanted. Examples of PUA include advertising software, bundling software, and evasion software that behaves differently with security products. Although PUA is not considered malware, some kinds of software are PUA based on their behavior and reputation.
  
 Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If this is happening, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
 
+We recommend using Microsoft Endpoint Manager to edit or set PUA protection settings. 
+
 > [!TIP]
 > To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
 
-#### Use Microsoft Endpoint Manager to edit PUA protection for existing configuration profiles
+#### Use Microsoft Endpoint Manager to edit PUA protection (for existing configuration profiles)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-pua-protection-for-a-new-configuration-profile)).
@@ -95,7 +97,7 @@ Depending on the apps your organization is using, you might be getting false pos
 5. Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)
 6. Choose **Review + save**, and then choose **Save**.
 
-#### Use Microsoft Endpoint Manager to set PUA protection for a new configuration profile
+#### Use Microsoft Endpoint Manager to set PUA protection (for a new configuration profile)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Devices** > **Configuration profiles** > **+ Create profile**.

From f4e06d3edda8d7e7463982471adf3c7d6758f10c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 14:43:30 -0800
Subject: [PATCH 529/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 79bd50bdb6..945fa7046e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -59,7 +59,7 @@ We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivere
 #### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings (for existing policies)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-antivirus-policy)).
+2. Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-policy)).
 3. Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
 4. Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
 5. Choose **Review + save**, and then **Save**.
@@ -91,7 +91,7 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 #### Use Microsoft Endpoint Manager to edit PUA protection (for existing configuration profiles)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-pua-protection-for-a-new-configuration-profile)).
+2. Choose **Devices** > **Configuration profiles**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-pua-protection-for-a-new-configuration-profile).)
 3. Under **Manage**, choose **Properties**, and then, next to **Configuration settings**, choose **Edit**.
 4. On the **Configuration settings** tab, scroll down and expand **Microsoft Defender Antivirus**.
 5. Set **Detect potentially unwanted applications** to **Audit**. (You can turn it off, but by using audit mode, you will be able to see detections.)

From 491246ff122991f20713e366ac4ec1f680b9c3fd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:06:40 -0800
Subject: [PATCH 530/825] Update defender-endpoint-false-positives-negatives.md

---
 ...fender-endpoint-false-positives-negatives.md | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 945fa7046e..5bdb3bdb43 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -114,8 +114,8 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
 To define exclusions across Microsoft Defender for Endpoint, perform the following tasks:
-- Define exclusions for Microsoft Defender Antivirus
-- Create “allow” indicators for Microsoft Defender for Endpoint
+- [Define exclusions for Microsoft Defender Antivirus](#exclusions-for-microsoft-defender-antivirus)
+- [Create “allow” indicators for Microsoft Defender for Endpoint](#indicators-for-microsoft-defender-for-endpoint)
 
 Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
 
@@ -128,15 +128,15 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 > [!TIP]
 > Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
 
-#### Use Microsoft Endpoint Manager to manage antivirus exclusions for existing policies
+#### Use Microsoft Endpoint Manager to manage antivirus exclusions (for existing policies)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-create-an-antivirus-policy-with-exclusions)).
+2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-create-a-new-antivirus-policy-with-exclusions)).
 3. Choose **Properties**, and next to **Configuration settings**, choose **Edit**.
 4. Expand **Microsoft Defender Antivirus Exclusions** and then specify your exclusions.
 5. Choose **Review + save**, and then choose **Save**.
 
-#### Use Microsoft Endpoint Manager to create an antivirus policy with exclusions
+#### Use Microsoft Endpoint Manager to create a new antivirus policy with exclusions
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
@@ -150,7 +150,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 ### Indicators for Microsoft Defender for Endpoint
 
-Indicators enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
+[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
 
 To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
 
@@ -176,7 +176,10 @@ As alerts are triggered, if you see something that was detected as malicious or
 
 You can suppress an alert in the Microsoft Defender Security Center.
 
-
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2. In the navigation pane, select **Alerts queue**. 
+3. Select an alert that you want to suppress to open its **Details** pane.
+4. 
 
 ### Classify an alert as a false positive
 

From 212169b3961958a332cc25fb70c2bcd29574198e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:14:08 -0800
Subject: [PATCH 531/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5bdb3bdb43..573573fee3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -179,7 +179,11 @@ You can suppress an alert in the Microsoft Defender Security Center.
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2. In the navigation pane, select **Alerts queue**. 
 3. Select an alert that you want to suppress to open its **Details** pane.
-4. 
+4. In the **Details** pane, choose the ellipsis (`...`), and then choose **Create a suppression rule**.
+5. Specify all the settings for your suppression rule, and then choose **Save**. 
+
+> [!TIP]
+> Need help with suppression rules? See [Suppress an alert and create a new suppression rule](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts#suppress-an-alert-and-create-a-new-suppression-rule).
 
 ### Classify an alert as a false positive
 

From 9e0135d6f6a59131cb024d703f52e3a92b8f46bb Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:25:45 -0800
Subject: [PATCH 532/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md       | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 573573fee3..eb27f493c0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -195,11 +195,16 @@ Your security team can classify an alert as a false positive in the Microsoft De
 4. In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
 
 > [!TIP]
-> For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
+> - For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
+> - If your organization is using a security information and event management (SIEM) server, make sure to define a suppression rule there, too. 
 
 ## Submit a file for analysis
 
-*https://www.microsoft.com/wdsi/filesubmission/*
+You can submit files, such as false positives or false negatives, to Microsoft for analysis. Microsoft security researchers analyze all submissions. 
+
+1. Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
+
+2. Visit the Microsoft Security Intelligence submission site at [https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission), and submit your file(s).
 
 ## Confirm your software uses EV code signing
 

From 6492201cda1c123429423f82730c684011c90521 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:34:23 -0800
Subject: [PATCH 533/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index eb27f493c0..d6efaf4c7c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -208,6 +208,8 @@ You can submit files, such as false positives or false negatives, to Microsoft f
 
 ## Confirm your software uses EV code signing
 
+As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity.
+
 *Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
 
 ## Still need help?
\ No newline at end of file

From 0d77afe588ae2158bf2495fc44e7e9a10c0ba20f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:36:11 -0800
Subject: [PATCH 534/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d6efaf4c7c..9894246277 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -200,7 +200,7 @@ Your security team can classify an alert as a false positive in the Microsoft De
 
 ## Submit a file for analysis
 
-You can submit files, such as false positives or false negatives, to Microsoft for analysis. Microsoft security researchers analyze all submissions. 
+You can submit files, such as false positives or false negatives, to Microsoft for analysis. Microsoft security researchers analyze all submissions. After you sign in at the submission site, you can track your submissions.
 
 1. Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
 

From 6e94b9e5ea0af085ae814ffae0b05de0f714418e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:41:02 -0800
Subject: [PATCH 535/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9894246277..566483d5ad 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -208,7 +208,7 @@ You can submit files, such as false positives or false negatives, to Microsoft f
 
 ## Confirm your software uses EV code signing
 
-As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity.
+As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity. The reputation of digital certificates also plays a role in whether software is considered suspicious or not a threat. By using a reputable certificate, developers can reduce the chances of their software being detected as malware.
 
 *Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
 

From 1f7a3c6aed3a8baddd7a7949e51c9779f114e90a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:45:25 -0800
Subject: [PATCH 536/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 566483d5ad..8ccb2a1464 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -208,7 +208,7 @@ You can submit files, such as false positives or false negatives, to Microsoft f
 
 ## Confirm your software uses EV code signing
 
-As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity. The reputation of digital certificates also plays a role in whether software is considered suspicious or not a threat. By using a reputable certificate, developers can reduce the chances of their software being detected as malware.
+As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity. The reputation of digital certificates also plays a role in whether software is considered suspicious or not a threat. By using a reputable certificate, developers can reduce the chances of their software being detected as malware. Extended validation (EV) code signing is a more advanced version of digital certificates and requires a more rigorous vetting and authentication process.
 
 *Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
 

From 8e578d849a19ec35472d887e21d229914248975a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 15:49:01 -0800
Subject: [PATCH 537/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md           | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8ccb2a1464..5fd958105a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -210,6 +210,9 @@ You can submit files, such as false positives or false negatives, to Microsoft f
 
 As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity. The reputation of digital certificates also plays a role in whether software is considered suspicious or not a threat. By using a reputable certificate, developers can reduce the chances of their software being detected as malware. Extended validation (EV) code signing is a more advanced version of digital certificates and requires a more rigorous vetting and authentication process.
 
-*Some info is available here: https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate*
+Want to learn more? See the following resources:
+
+- [Microsoft Security Blog: Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives/)
+- [Get a code signing certificate](https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate)
 
 ## Still need help?
\ No newline at end of file

From 1850364615dcad85b73c3acc1695fe72e86a6711 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 16:01:55 -0800
Subject: [PATCH 538/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5fd958105a..20d9296951 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -215,4 +215,10 @@ Want to learn more? See the following resources:
 - [Microsoft Security Blog: Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives/)
 - [Get a code signing certificate](https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate)
 
-## Still need help?
\ No newline at end of file
+## Still need help?
+
+If you still need help after working through all the steps in this article, your best bet is to contact technical support.
+
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2. In the upper right corner, select the question mark (**?**), and then select **Microsoft support**.
+3. In the Support Assistant window, describe your issue, and then send your message. From there, you can open a service request.  
\ No newline at end of file

From 55266f36a6982d43f1fb1942165eb0d78873efae Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 16:03:50 -0800
Subject: [PATCH 539/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 20d9296951..c0cf213302 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
+In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
 - [Reviewing your threat protection settings and making adjustments where needed](#review-your-threat-protection-settings);
 - [Defining exclusions, such as for antivirus and other endpoint protection features](#review-or-define-exclusions-for-microsoft-defender-for-endpoint);
 - [Classifying false positives in your endpoint protection solution](#classify-a-false-positive-or-false-negative);

From ce22afb841af4e3c5fbd31bf252c12c22eb5ecb4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 15 Jan 2021 16:04:36 -0800
Subject: [PATCH 540/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index c0cf213302..372f40c539 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -204,7 +204,7 @@ You can submit files, such as false positives or false negatives, to Microsoft f
 
 1. Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
 
-2. Visit the Microsoft Security Intelligence submission site at [https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission), and submit your file(s).
+2. Visit the Microsoft Security Intelligence submission ([https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission)), and submit your file(s).
 
 ## Confirm your software uses EV code signing
 

From ec9a88a0a568529121b2be66ff5c32abd81c305b Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Fri, 15 Jan 2021 20:04:54 -0800
Subject: [PATCH 541/825] Update faq-md-app-guard.md

---
 .../faq-md-app-guard.md                       | 24 ++++++++++++++++++-
 1 file changed, 23 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index ab42d2eb12..042ec80a0c 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -159,6 +159,28 @@ ICS is enabled by default in Windows, and ICS must be enabled in order for Appli
 
 5. Reboot the device.
 
+### Why doesn't the container not fully load when Device Control Policies are enabled?
+The whitelisting of these items are required to be allowed in the GPO to ensure AppGuard works properly. 
+
+Policy: Allow installation of devices that match any of these device IDs 
+•	SCSI\DiskMsft____Virtual_Disk____ 
+•	{8e7bd593-6e6c-4c52-86a6-77175494dd8e}\msvhdhba 
+•	VMS_VSF 
+•	root\Vpcivsp 
+•	root\VMBus 
+•	vms_mp 
+•	VMS_VSP 
+•	ROOT\VKRNLINTVSP 
+•	ROOT\VID 
+•	root\storvsp 
+•	vms_vsmp 
+•	VMS_PP 
+
+Policy: Allow installation of devices using drivers that match these device setup classes 
+•	{71a27cdd-812a-11d0-bec7-08002be2092f}
+
+
+
 ## See also
 
-[Configure Microsoft Defender Application Guard policy settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard)
\ No newline at end of file
+[Configure Microsoft Defender Application Guard policy settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard)

From 46c55ca4682b1e26d0426ab80a27c529402fb1da Mon Sep 17 00:00:00 2001
From: Office Content Publishing
 <34616516+officedocspr@users.noreply.github.com>
Date: Sat, 16 Jan 2021 23:34:17 -0800
Subject: [PATCH 542/825] Uploaded file: education-content-updates.md -
 2021-01-16 23:34:16.3060

---
 education/includes/education-content-updates.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/education/includes/education-content-updates.md b/education/includes/education-content-updates.md
index 36578af4bf..156feee1de 100644
--- a/education/includes/education-content-updates.md
+++ b/education/includes/education-content-updates.md
@@ -2,9 +2,10 @@
 

 
 
-## Week of November 30, 2020
+## Week of January 11, 2021
 
 
 | Published On |Topic title | Change |
 |------|------------|--------|
-| 12/4/2020 | [Deploy Windows 10 in a school district (Windows 10)](/education/windows/deploy-windows-10-in-a-school-district) | modified |
+| 1/14/2021 | [Chromebook migration guide (Windows 10)](/education/windows/chromebook-migration-guide) | modified |
+| 1/14/2021 | [Deploy Windows 10 in a school district (Windows 10)](/education/windows/deploy-windows-10-in-a-school-district) | modified |

From 4c5b6a6b1db9e23c6ade3235278149759fe41738 Mon Sep 17 00:00:00 2001
From: Office Content Publishing
 <34616516+officedocspr@users.noreply.github.com>
Date: Sat, 16 Jan 2021 23:34:22 -0800
Subject: [PATCH 543/825] Uploaded file: store-for-business-content-updates.md
 - 2021-01-16 23:34:21.7131

---
 .../store-for-business-content-updates.md         | 15 ++-------------
 1 file changed, 2 insertions(+), 13 deletions(-)

diff --git a/store-for-business/includes/store-for-business-content-updates.md b/store-for-business/includes/store-for-business-content-updates.md
index a69df6d2ff..42f33e8015 100644
--- a/store-for-business/includes/store-for-business-content-updates.md
+++ b/store-for-business/includes/store-for-business-content-updates.md
@@ -2,20 +2,9 @@
 

 
 
-## Week of November 23, 2020
+## Week of January 11, 2021
 
 
 | Published On |Topic title | Change |
 |------|------------|--------|
-| 11/23/2020 | [Microsoft Store for Business and Microsoft Store for Education overview (Windows 10)](/microsoft-store/microsoft-store-for-business-overview) | modified |
-| 11/23/2020 | [Prerequisites for Microsoft Store for Business and Education (Windows 10)](/microsoft-store/prerequisites-microsoft-store-for-business) | modified |
-
-
-## Week of October 26, 2020
-
-
-| Published On |Topic title | Change |
-|------|------------|--------|
-| 10/27/2020 | [Add unsigned app to code integrity policy (Windows 10)](/microsoft-store/add-unsigned-app-to-code-integrity-policy) | modified |
-| 10/27/2020 | [Device Guard signing (Windows 10)](/microsoft-store/device-guard-signing-portal) | modified |
-| 10/27/2020 | [Sign code integrity policy with Device Guard signing (Windows 10)](/microsoft-store/sign-code-integrity-policy-with-device-guard-signing) | modified |
+| 1/14/2021 | [Add unsigned app to code integrity policy (Windows 10)](/microsoft-store/add-unsigned-app-to-code-integrity-policy) | modified |

From 5893f5768835f358ad7dae1824a2cbaa12a1975c Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sun, 17 Jan 2021 14:42:06 +0500
Subject: [PATCH 544/825] Update
 windows/security/identity-protection/hello-for-business/hello-planning-guide.md

Co-authored-by: mapalko <mapalko@microsoft.com>
---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index ba1692b00e..8570ec4a63 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory account. In this case, you need to use a third-party Multi-Factor Authentication provider.
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multifactor Authentication through the use of security defaults. Some Azure AD Multifactor Authentication features require a license. For more details see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing)
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 97136cf8c9ec2eba91ce0020b387d55baaeb0532 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sun, 17 Jan 2021 14:47:53 +0500
Subject: [PATCH 545/825] Update hello-planning-guide.md

---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 8570ec4a63..449642dfe7 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multifactor Authentication through the use of security defaults. Some Azure AD Multifactor Authentication features require a license. For more details see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing)
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multi-Factor Authentication through the use of security defaults. Some Azure AD Multi-Factor Authentication features require a license. For more details see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing)
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 88daa94899d47a817b9e8fb0e9c13586a6c08e52 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Sun, 17 Jan 2021 18:01:34 +0200
Subject: [PATCH 546/825] Update gov.md

Update SIEM API URI for GCC.
---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index c7bc773f92..7576cf0006 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -95,7 +95,7 @@ Endpoint type | GCC | GCC High
 :---|:---|:---
 Login | `https://login.microsoftonline.com` | `https://login.microsoftonline.us`
 Defender for Endpoint API | `https://api-gcc.securitycenter.microsoft.us` | `https://api-gov.securitycenter.microsoft.us`
-SIEM | Rolling out | `https://wdatp-alertexporter-us.securitycenter.windows.us`
+SIEM | `https://wdatp-alertexporter-us.gcc.securitycenter.windows.us` | `https://wdatp-alertexporter-us.securitycenter.windows.us`
 
 <br>
 

From 97f1d8c92876ceb5ec0f1bad282bdcdcec89971f Mon Sep 17 00:00:00 2001
From: Ananta Gupta <anagupt@microsoft.com>
Date: Mon, 18 Jan 2021 10:21:26 +0530
Subject: [PATCH 551/825] Minor update in puppet documentation

---
 .../microsoft-defender-atp/linux-install-with-puppet.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
index 46100ac983..457f22019b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
@@ -157,7 +157,7 @@ $version = undef
             }
 
             file { '/etc/opt/microsoft/mdatp/mdatp_onboard.json':
-                source  => 'puppet:///modules/mdatp/mdatp_onboard.json',
+                source  => 'puppet:///modules/install_mdatp/mdatp_onboard.json',
                 owner   => root,
                 group   => root,
                 mode    => '0600',

From c0f3c0714e2f540f9f56e237c7a264f147180f00 Mon Sep 17 00:00:00 2001
From: SujudAbuAtta <50595959+SujudAbuAtta@users.noreply.github.com>
Date: Mon, 18 Jan 2021 11:08:32 +0200
Subject: [PATCH 552/825] Update exposed-apis-odata-samples.md

Added an example of Get devices with computerDnsName starting with
---
 .../exposed-apis-odata-samples.md             | 39 +++++++++++++++++++
 1 file changed, 39 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index 8cea855481..e9735e3e07 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -368,5 +368,44 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines/123321d0c675eaa4
 4
 ```
 
+### Example 8
+
+Get all the devices with 'computerDnsName' starting with 'mymachine':
+
+```http
+HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=startswith(computerDnsName,'mymachine')
+```
+
+**Response:**
+
+```json
+json{
+    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
+    "value": [
+        {
+            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+	    "computerDnsName": "mymachine1.contoso.com",
+	    "firstSeen": "2018-08-02T14:55:03.7791856Z",
+	    "lastSeen": "2018-08-02T14:55:03.7791856Z",
+	    "osPlatform": "Windows10",
+	    "version": "1709",
+	    "osProcessor": "x64",
+	    "lastIpAddress": "172.17.230.209",
+	    "lastExternalIpAddress": "167.220.196.71",
+	    "osBuild": 18209,
+	    "healthStatus": "ImpairedCommunication",
+	    "rbacGroupId": 140,
+	    "rbacGroupName": "The-A-Team",
+	    "riskScore": "Low",
+	    "exposureLevel": "Medium",
+	    "isAadJoined": true,
+	    "aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
+	    "machineTags": [ "test tag 1", "ExampleTag" ]
+        },
+        ...
+    ]
+}
+```
+
 ## See also
 - [Microsoft Defender for Endpoint APIs](apis-intro.md)

From 898d1005ef168322558437b967c02905287c6e12 Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Mon, 18 Jan 2021 14:50:05 +0200
Subject: [PATCH 553/825] add information about Endpoint Manager

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8906
---
 .../enable-exploit-protection.md                  | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 91a6dc887a..2e681ebc9a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -125,6 +125,21 @@ The result will be that DEP will be enabled for *test.exe*. DEP will not be enab
 
 Use the [./Vendor/MSFT/Policy/Config/ExploitGuard/ExploitProtectionSettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) configuration service provider (CSP) to enable or disable exploit protection mitigations or to use audit mode.
 
+## Microsoft Endpoint Manager
+
+1. In Microsoft Endpoint Manager, click **Endpoint Security** > **Attack surface reduction** 
+
+2. Click **Create Policy**, select **Platform** and under **Profile** choose **Exploit Protection**. Click **Create**.
+
+3. Enter a name and a description and click **Next**.
+
+4. Click **Select XML File** and browse to the location of the exploit protection XML file, select it, and click **Next**.
+
+5. Configure **Scope tags** and **Assignments** if necessary. 
+
+6. Under **Review + create**, review the configuration and click **Create** if everything is ok.
+
+
 ## Microsoft Endpoint Configuration Manager
 
 1. In Microsoft Endpoint Configuration Manager, click **Assets and Compliance** > **Endpoint Protection** > **Windows Defender Exploit Guard**.

From e7491730ab4ee920cd8c6f29d27754a4d9edf369 Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Mon, 18 Jan 2021 11:11:10 -0800
Subject: [PATCH 554/825] Update
 windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-application-guard/faq-md-app-guard.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index 042ec80a0c..aa8e4b49ee 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -159,7 +159,7 @@ ICS is enabled by default in Windows, and ICS must be enabled in order for Appli
 
 5. Reboot the device.
 
-### Why doesn't the container not fully load when Device Control Policies are enabled?
+### Why doesn't the container fully load when device control policies are enabled?
 The whitelisting of these items are required to be allowed in the GPO to ensure AppGuard works properly. 
 
 Policy: Allow installation of devices that match any of these device IDs 

From ab2e1f5f7b6e84b0349ffe9d3009cb714d8f045c Mon Sep 17 00:00:00 2001
From: Ananta Gupta <anagupt@microsoft.com>
Date: Tue, 19 Jan 2021 14:15:14 +0530
Subject: [PATCH 555/825] Minor change in linux preferences document

---
 .../microsoft-defender-atp/linux-preferences.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
index 2ec4ae0d08..9de10e2397 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
@@ -200,7 +200,7 @@ Type of threat for which the behavior is configured.
 Action to take when coming across a threat of the type specified in the preceding section. Can be:
 
 - **Audit**: The device is not protected against this type of threat, but an entry about the threat is logged.
-- **Block**: The device is protected against this type of threat and you are notified in the user interface and the security console.
+- **Block**: The device is protected against this type of threat and you are notified in the security console.
 - **Off**: The device is not protected against this type of threat and nothing is logged.
 
 |||

From dc9cff975c793b19001079ad603529c9daac4b0a Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Tue, 19 Jan 2021 11:22:40 +0200
Subject: [PATCH 556/825] Update
 windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/enable-exploit-protection.md   | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 2e681ebc9a..a3dacf2086 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -127,13 +127,13 @@ Use the [./Vendor/MSFT/Policy/Config/ExploitGuard/ExploitProtectionSettings](htt
 
 ## Microsoft Endpoint Manager
 
-1. In Microsoft Endpoint Manager, click **Endpoint Security** > **Attack surface reduction** 
+1. In Microsoft Endpoint Manager, click **Endpoint Security** > **Attack surface reduction**. 
 
-2. Click **Create Policy**, select **Platform** and under **Profile** choose **Exploit Protection**. Click **Create**.
+2. Click **Create Policy**, select **Platform**, and under **Profile** choose **Exploit Protection**. Click **Create**.
 
-3. Enter a name and a description and click **Next**.
+3. Enter a name and a description, and click **Next**.
 
-4. Click **Select XML File** and browse to the location of the exploit protection XML file, select it, and click **Next**.
+4. Click **Select XML File** and browse to the location of the exploit protection XML file, then select it and click **Next**.
 
 5. Configure **Scope tags** and **Assignments** if necessary. 
 

From a058d12a2cbb1e710546baec3741cdff9a50b78f Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Tue, 19 Jan 2021 14:13:56 +0200
Subject: [PATCH 557/825] Update onboarding-endpoint-manager.md

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8980
---
 .../microsoft-defender-atp/onboarding-endpoint-manager.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 5c1abff92d..353ba8213d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -1,7 +1,7 @@
 ---
-title: Onboarding using Microsoft Intune
-description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Intune
-keywords: onboarding, configuration, deploy, deployment, endpoint manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction
+title: Onboarding using Microsoft Endpoint Manager
+description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Endpoint Manager
+keywords: onboarding, configuration, deploy, deployment, endpoint manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction, microsoft endpoint manager
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
 ms.mktglfcycl: deploy
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: article
 ---
 
-# Onboarding using Microsoft Intune
+# Onboarding using Microsoft Endpoint Manager
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 

From 0da343a3156bfde6c9966d9f0fcae01debded843 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Tue, 19 Jan 2021 14:19:07 +0200
Subject: [PATCH 558/825] Update onboarding-endpoint-configuration-manager.md

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8981
---
 ...boarding-endpoint-configuration-manager.md | 74 +++++++++----------
 1 file changed, 37 insertions(+), 37 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
index 8ea05b21af..8458613991 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
@@ -1,7 +1,7 @@
 ---
-title: Onboarding using Microsoft Endpoint Manager 
-description: Learn how to onboard to Microsoft Defender ATP using Microsoft Endpoint Configuration Manager
-keywords: onboarding, configuration, deploy, deployment, endpoint configuration manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction
+title: Onboarding using Microsoft Endpoint Configuration Manager
+description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Endpoint Configuration Manager
+keywords: onboarding, configuration, deploy, deployment, endpoint configuration manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction, microsoft endpoint configuration manager
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
 ms.mktglfcycl: deploy
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: article
 ---
 
-# Onboarding using Microsoft Endpoint Manager 
+# Onboarding using Microsoft Endpoint Configuration Manager
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -63,7 +63,7 @@ created for testing.
 
 Onboarding using tools such as Group policy or manual method does not install any agent on the system. 
 
-Within the Microsoft Endpoint Manager console
+Within the Microsoft Endpoint Configuration Manager console
 the onboarding process will be configured as part of the compliance settings
 within the console.
 
@@ -73,47 +73,47 @@ continues to receive this policy from the management point.
 
 Follow the steps below to onboard endpoints using Microsoft Endpoint Configuration Manager.
 
-1. In Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Device Collections**.            
+1. In Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Device Collections**.            
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-device-collections.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-device-collections.png)
 
 2. Right Click **Device Collection** and select **Create Device Collection**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-create-device-collection.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-create-device-collection.png)
 
 3. Provide a **Name** and **Limiting Collection**, then select **Next**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-limiting-collection.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-limiting-collection.png)
 
 4. Select **Add Rule** and choose **Query Rule**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-query-rule.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-query-rule.png)
 
 5.  Click **Next** on the **Direct Membership Wizard** and click on **Edit Query Statement**.
 
-     ![Image of Microsoft Endpoint Manager wizard](images/configmgr-direct-membership.png)
+     ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-direct-membership.png)
 
 6. Select **Criteria** and then choose the star icon.
 
-     ![Image of Microsoft Endpoint Manager wizard](images/configmgr-criteria.png)
+     ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-criteria.png)
 
 7. Keep criterion type as **simple value**, choose where as **Operating System - build number**, operator as **is greater than or equal to** and value **14393** and click on **OK**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-simple-value.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-simple-value.png)
 
 8. Select **Next** and **Close**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-membership-rules.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-membership-rules.png)
 
 9. Select **Next**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-confirm.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-confirm.png)
 
 After completing this task, you now have a device collection with all the Windows 10 endpoints in the environment. 
 
 
 ## Step 2: Configure Microsoft Defender for Endpoint capabilities 
-This section guides you in configuring the following capabilities using Microsoft Endpoint Manager on Windows devices:
+This section guides you in configuring the following capabilities using Microsoft Endpoint Configuration Manager on Windows devices:
 
 - [**Endpoint detection and response**](#endpoint-detection-and-response)
 - [**Next-generation protection**](#next-generation-protection)
@@ -143,11 +143,11 @@ Manager and deploy that policy to Windows 10 devices.
 
 6. Right-click **Microsoft Defender ATP Policies** and select **Create Microsoft Defender ATP Policy**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-create-policy.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-create-policy.png)
 
 7. Enter the name and description, verify **Onboarding** is selected, then select **Next**.
 
-    ![Image of Microsoft Endpoint Manager wizard](images/configmgr-policy-name.png)
+    ![Image of Microsoft Endpoint Configuration Manager wizard](images/configmgr-policy-name.png)
 
 8. Click **Browse**.
 
@@ -168,7 +168,7 @@ Manager and deploy that policy to Windows 10 devices.
 
 15. Click **Close** when the Wizard completes.
 
-16.  In the Microsoft Endpoint Manager console, right-click the Defender for Endpoint policy you just created and select **Deploy**.
+16.  In the Microsoft Endpoint Configuration Manager console, right-click the Defender for Endpoint policy you just created and select **Deploy**.
 
      ![Image of configuration settings](images/configmgr-deploy.png)
 
@@ -231,7 +231,7 @@ Once completed, you should see onboarded endpoints in the portal within an hour.
 ### Next generation protection 
 Microsoft Defender Antivirus is a built-in antimalware solution that provides next generation protection for desktops, portable computers, and servers.
 
-1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Antimalware Polices** and choose **Create Antimalware Policy**.
+1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Antimalware Polices** and choose **Create Antimalware Policy**.
 
     ![Image of antimalware policy](images/9736e0358e86bc778ce1bd4c516adb8b.png)
 
@@ -283,9 +283,9 @@ All these features provide an audit mode and a block mode. In audit mode there i
 
 To set ASR rules in Audit mode:
 
-1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
-   ![Image of Microsoft Endpoint Manager console](images/728c10ef26042bbdbcd270b6343f1a8a.png)
+   ![Image of Microsoft Endpoint Configuration Manager console](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
 
 2.  Select **Attack Surface Reduction**.
@@ -293,26 +293,26 @@ To set ASR rules in Audit mode:
 
 3. Set rules to **Audit** and click **Next**.
 
-    ![Image of Microsoft Endpoint Manager console](images/d18e40c9e60aecf1f9a93065cb7567bd.png)
+    ![Image of Microsoft Endpoint Configuration Manager console](images/d18e40c9e60aecf1f9a93065cb7567bd.png)
 
 4. Confirm the new Exploit Guard policy by clicking on **Next**.
 
-    ![Image of Microsoft Endpoint Manager console](images/0a6536f2c4024c08709cac8fcf800060.png)
+    ![Image of Microsoft Endpoint Configuration Manager console](images/0a6536f2c4024c08709cac8fcf800060.png)
 
     
 5. Once the policy is created click **Close**.
 
-    ![Image of Microsoft Endpoint Manager console](images/95d23a07c2c8bc79176788f28cef7557.png)
+    ![Image of Microsoft Endpoint Configuration Manager console](images/95d23a07c2c8bc79176788f28cef7557.png)
 
     
 
 6.  Right-click on the newly created policy and choose **Deploy**.
     
-    ![Image of Microsoft Endpoint Manager console](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![Image of Microsoft Endpoint Configuration Manager console](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7. Target the policy to the newly created Windows 10 collection and click **OK**.
 
-    ![Image of Microsoft Endpoint Manager console](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![Image of Microsoft Endpoint Configuration Manager console](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 After completing this task, you now have successfully configured ASR rules in audit mode.  
   
@@ -341,7 +341,7 @@ detections](https://docs.microsoft.com/windows/security/threat-protection/micros
 
 
 #### Set Network Protection rules in Audit mode:
-1. In the Microsoft Endpoint Manager console, navigate to **Assets and  Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and  Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
     ![A screenshot System Center Configuration Manager](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
@@ -361,42 +361,42 @@ detections](https://docs.microsoft.com/windows/security/threat-protection/micros
 
 6. Right-click on the newly created policy and choose **Deploy**.
 
-    ![A screenshot Microsoft Endpoint Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![A screenshot Microsoft Endpoint Configuration Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7. Select the policy to the newly created Windows 10 collection and choose **OK**.
 
-    ![A screenshot Microsoft Endpoint Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![A screenshot Microsoft Endpoint Configuration Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 After completing this task, you now have successfully configured Network
 Protection in audit mode.
 
 #### To set Controlled Folder Access rules in Audit mode:
 
-1. In the Microsoft Endpoint Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
+1. In the Microsoft Endpoint Configuration Manager console, navigate to **Assets and Compliance \> Overview \> Endpoint Protection \> Windows Defender Exploit Guard** and choose **Create Exploit Guard Policy**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/728c10ef26042bbdbcd270b6343f1a8a.png)
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/728c10ef26042bbdbcd270b6343f1a8a.png)
 
 2. Select **Controlled folder access**.
     
 3. Set the configuration to **Audit** and click **Next**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/a8b934dab2dbba289cf64fe30e0e8aa4.png)    
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/a8b934dab2dbba289cf64fe30e0e8aa4.png)    
     
 4. Confirm the new Exploit Guard Policy by clicking on **Next**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/0a6536f2c4024c08709cac8fcf800060.png)
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/0a6536f2c4024c08709cac8fcf800060.png)
 
 5. Once the policy is created click on **Close**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/95d23a07c2c8bc79176788f28cef7557.png)
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/95d23a07c2c8bc79176788f28cef7557.png)
 
 6. Right-click on the newly created policy and choose **Deploy**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/8999dd697e3b495c04eb911f8b68a1ef.png)
 
 7.  Target the policy to the newly created Windows 10 collection and click **OK**.
 
-    ![A screenshot of Microsoft Endpoint Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
+    ![A screenshot of Microsoft Endpoint Configuration Manager ](images/0ccfe3e803be4b56c668b220b51da7f7.png)
 
 You have now successfully configured Controlled folder access in audit mode.
 

From a000c63a559273bb537cab48c9b29396640984a0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 19 Jan 2021 11:32:59 -0800
Subject: [PATCH 559/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 372f40c539..7b7d214f5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/15/2021
+ms.date: 01/19/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
@@ -52,7 +52,7 @@ Microsoft Defender for Endpoint offers a wide variety of options, including the
 Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, this is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
 
 > [!TIP]
-> To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus)
+> To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus).
 
 We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivered protection settings.
 

From 590d25d31b798511becfa79d2b5a3d675cfbfc90 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 19 Jan 2021 12:07:38 -0800
Subject: [PATCH 560/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 7b7d214f5c..ec326b2612 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -150,7 +150,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 ### Indicators for Microsoft Defender for Endpoint
 
-[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain IP addresses or URLs.
+[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
 To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
 

From 273dd4589a029b55cba7ce0795732b721f4c50fc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 19 Jan 2021 12:09:11 -0800
Subject: [PATCH 561/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index ec326b2612..aa6c823ab6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -152,7 +152,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 [Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators. Such "allow" indicators apply to the following capabilities in Microsoft Defender for Endpoint:
+To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)

From a8f869749b47abae45adbce4b57ea2a267b3c570 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 12:18:20 +0200
Subject: [PATCH 562/825] Update attack-surface-reduction.md

Added note to avoid customer questions and support cases on ASR running in passive mode (which can't work)
---
 .../microsoft-defender-atp/attack-surface-reduction.md           | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index c0c77ae782..8d36dbefc9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,6 +63,7 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
+- Microsoft Defender antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From 4e31151f7502a9e6014ffbf244b6c9d9d915e1be Mon Sep 17 00:00:00 2001
From: Sunayana Singh <57405155+sunasing@users.noreply.github.com>
Date: Wed, 20 Jan 2021 15:53:13 +0530
Subject: [PATCH 563/825] Minor change

---
 .../threat-protection/microsoft-defender-atp/ios-privacy.md   | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
index 361ee24da1..bc3acd8fcc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
@@ -41,9 +41,7 @@ Here is a list of the types of data being collected:
 
 ### Web page or Network information 
 
-- Connection information only when a malicious connection or web page is detected. 
-
-- Protocol type (such as HTTP, HTTPS, etc.) only when a malicious connection or web page is detected. 
+- Domain name of the website only when a malicious connection or web page is detected. 
 
 ### Device and account information 
 

From a5401ac9b5dd57fc5035d576a6932cf5be74c753 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 14:42:24 +0200
Subject: [PATCH 564/825] Update attack-surface-reduction.md

Removed en-us to not break localization
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 8d36dbefc9..49da59cd29 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,7 +63,7 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
-- Microsoft Defender antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+- Microsoft Defender antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From ee27514dbf3fc1cd9c4503cda2356959f8a774b9 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 14:48:31 +0200
Subject: [PATCH 565/825] Update attack-surface-reduction.md

changed to Antivirus with capital A
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 49da59cd29..bd4aac0ddc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,7 +63,7 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
-- Microsoft Defender antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+- Microsoft Defender Antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From 75cafe24fec496d12d4e8caf0bb986df565d1a0f Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 14:53:56 +0200
Subject: [PATCH 566/825] Update attack-surface-reduction.md

minor change to note to make it more logical as we are describing 'supported on devices running the following versions of Windows'
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index bd4aac0ddc..02d23be40a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,7 +63,7 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
-- Microsoft Defender Antivirus with Real-time protection running in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From ad1767c4ef0e5ab96d9d1f71b5e242cc673041b3 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 14:54:54 +0200
Subject: [PATCH 567/825] Update attack-surface-reduction.md

missing -
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 02d23be40a..70e2fcf02b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,7 +63,7 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
-Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+- Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From 2ec659de3431aa0f79af1eefcf05905205f6fe74 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 15:04:34 +0200
Subject: [PATCH 568/825] Update attack-surface-reduction.md

remove '-' and lowered one line to avoid coloring in purple
---
 .../microsoft-defender-atp/attack-surface-reduction.md         | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 70e2fcf02b..1378e9274d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -63,7 +63,8 @@ Warn mode helps your organization have attack surface reduction rules in place w
 Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
-- Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+ 
+Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From 2614a6dcebeef0d92a5c8245e4b797048e11cc14 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 20 Jan 2021 18:33:17 +0500
Subject: [PATCH 569/825] Update
 windows/security/identity-protection/hello-for-business/hello-planning-guide.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 449642dfe7..0c252830e7 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multi-Factor Authentication through the use of security defaults. Some Azure AD Multi-Factor Authentication features require a license. For more details see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing)
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multi-Factor Authentication through the use of security defaults. Some Azure AD Multi-Factor Authentication features require a license. For more details, see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing).
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From 576057ec5bce89bcafe9d656d7ba013088bbf163 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 20 Jan 2021 18:36:10 +0500
Subject: [PATCH 570/825] Update hello-planning-guide.md

---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 0c252830e7..cb3a0081f2 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -332,7 +332,7 @@ Windows Hello for Business does not require an Azure AD premium subscription.  H
 
 If box **1a** on your planning worksheet reads **on-premises**, write **No** in box **6c** on your planning worksheet.
 
-If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the free Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multi-Factor Authentication through the use of security defaults. Some Azure AD Multi-Factor Authentication features require a license. For more details, see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing).
+If box **1a** on your planning worksheet reads **hybrid** and box **1b** reads **key trust**, write **No** in box **6c** on your planning worksheet. You can deploy Windows Hello for Business using the Azure Active Directory free tier. All Azure Active Directory free accounts can use Azure AD Multi-Factor Authentication through the use of security defaults. Some Azure AD Multi-Factor Authentication features require a license. For more details, see [Features and licenses for Azure AD Multi-Factor Authentication](https://docs.microsoft.com/azure/active-directory/authentication/concept-mfa-licensing).
 
 If box **5b** on your planning worksheet reads **AD FS RA**, write **Yes** in box **6c** on your planning worksheet.  Enrolling a certificate using the AD FS registration authority requires devices to authenticate to the AD FS server, which requires device write-back, an Azure AD Premium feature.
 

From ac57c10f4fbc62cc000c46bfd6ad9a4e5e28ec5a Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 20:06:19 +0200
Subject: [PATCH 571/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 1378e9274d..febb1d419b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -64,7 +64,7 @@ Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
  
-Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state) 
+Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state).
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
 - Minimum platform release requirement: `4.18.2008.9`  

From 0728cd56c66fca2f393a26fca18a1cfc27ef6fc7 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 20 Jan 2021 20:06:39 +0200
Subject: [PATCH 572/825] Update
 windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index febb1d419b..52f0a3ddf6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -66,7 +66,7 @@ Warn mode is supported on devices running the following versions of Windows:
  
 Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state).
 
-In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed   
+In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed.
 - Minimum platform release requirement: `4.18.2008.9`  
 - Minimum engine release requirement: `1.1.17400.5`
 

From c466bf04c640455788b97a07d5a031617adb1a85 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 10:47:46 -0800
Subject: [PATCH 573/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index aa6c823ab6..473172524a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -166,7 +166,15 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 - [Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
 
 > [!TIP]
-> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the information, including prerequisites, 
+> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
+
+| Indicator type | Prerequisites | Notes  |
+|----|----|---|
+|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Your organization is using Microsoft Defender Antivirus with cloud-based protection enabled. <p>Your antimalware client version is must be 4.18.1901.x or later. <p>Your devices are must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 | Make sure the [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on files if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted signed files, in some cases, may have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
+
+
+
+
 
 ## Classify a false positive or false negative
 

From 5eb90ebe273a332b300d734c429c492da1382cb3 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 10:51:21 -0800
Subject: [PATCH 574/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 473172524a..b8a979b127 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -171,6 +171,12 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 | Indicator type | Prerequisites | Notes  |
 |----|----|---|
 |Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Your organization is using Microsoft Defender Antivirus with cloud-based protection enabled. <p>Your antimalware client version is must be 4.18.1901.x or later. <p>Your devices are must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 | Make sure the [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on files if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted signed files, in some cases, may have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
+| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
+
+
+
+
+
 
 
 

From e8f163965b5dbb0b5d731d0be21fe66ffd47d26e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 10:58:24 -0800
Subject: [PATCH 575/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index b8a979b127..8122abd1da 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -170,8 +170,12 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 | Indicator type | Prerequisites | Notes  |
 |----|----|---|
-|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Your organization is using Microsoft Defender Antivirus with cloud-based protection enabled. <p>Your antimalware client version is must be 4.18.1901.x or later. <p>Your devices are must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 | Make sure the [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on files if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted signed files, in some cases, may have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
+|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version  must be 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
 | IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
+| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | 
+
+
+
 
 
 

From 66c7569f3377716bba0b8e5e9afad6a8308ddb6c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 10:59:26 -0800
Subject: [PATCH 576/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8122abd1da..f5ce4cceed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -172,7 +172,8 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 |----|----|---|
 |Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version  must be 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
 | IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
-| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | 
+| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
+
 
 
 

From 08442412663eeb9785fb3a9a1d189c1f0b2dd354 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 10:59:58 -0800
Subject: [PATCH 577/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md  | 13 -------------
 1 file changed, 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f5ce4cceed..5d51a6f36d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -174,19 +174,6 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 | IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
 | Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
 
-
-
-
-
-
-
-
-
-
-
-
-
-
 ## Classify a false positive or false negative
 
 As alerts are triggered, if you see something that was detected as malicious or suspicious that should not be, you can suppress alerts for that entity and classify alerts as false positives. Managing your alerts and classifying false positives helps to train your threat protection solution. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.

From 6941245d72b580c81b69e8a5879427d40d81225d Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Wed, 20 Jan 2021 12:11:11 -0800
Subject: [PATCH 578/825] Update
 windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../faq-md-app-guard.md                       | 26 +++++++++----------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index aa8e4b49ee..1848ca38b2 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -163,21 +163,21 @@ ICS is enabled by default in Windows, and ICS must be enabled in order for Appli
 The whitelisting of these items are required to be allowed in the GPO to ensure AppGuard works properly. 
 
 Policy: Allow installation of devices that match any of these device IDs 
-•	SCSI\DiskMsft____Virtual_Disk____ 
-•	{8e7bd593-6e6c-4c52-86a6-77175494dd8e}\msvhdhba 
-•	VMS_VSF 
-•	root\Vpcivsp 
-•	root\VMBus 
-•	vms_mp 
-•	VMS_VSP 
-•	ROOT\VKRNLINTVSP 
-•	ROOT\VID 
-•	root\storvsp 
-•	vms_vsmp 
-•	VMS_PP 
+- SCSI\DiskMsft____Virtual_Disk____ 
+- {8e7bd593-6e6c-4c52-86a6-77175494dd8e}\msvhdhba 
+- VMS_VSF 
+- root\Vpcivsp 
+- root\VMBus 
+- vms_mp 
+- VMS_VSP 
+- ROOT\VKRNLINTVSP 
+- ROOT\VID 
+- root\storvsp 
+- vms_vsmp 
+- VMS_PP 
 
 Policy: Allow installation of devices using drivers that match these device setup classes 
-•	{71a27cdd-812a-11d0-bec7-08002be2092f}
+- {71a27cdd-812a-11d0-bec7-08002be2092f}
 
 
 

From 8c804c84cab3debcc8943263ce00288b2d360edd Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 20 Jan 2021 15:20:59 -0800
Subject: [PATCH 579/825] big metadata fixes

---
 .../app-v/appv-connect-to-the-management-console.md    |  2 +-
 .../app-v/appv-connection-group-virtual-environment.md |  2 +-
 ...-a-package-created-in-a-previous-version-of-appv.md |  2 +-
 ...h-user-published-and-globally-published-packages.md |  2 +-
 .../app-v/appv-create-a-connection-group.md            |  2 +-
 ...m-configuration-file-with-the-management-console.md |  2 +-
 ...ppv-create-a-package-accelerator-with-powershell.md |  2 +-
 .../app-v/appv-create-a-package-accelerator.md         |  2 +-
 ...-virtual-application-package-package-accelerator.md |  2 +-
 .../app-v/appv-create-and-use-a-project-template.md    |  2 +-
 ...v-creating-and-managing-virtualized-applications.md |  2 +-
 ...plication-extensions-with-the-management-console.md |  2 +-
 .../app-v/appv-delete-a-connection-group.md            |  2 +-
 ...ppv-delete-a-package-with-the-management-console.md |  2 +-
 .../appv-deploy-appv-databases-with-sql-scripts.md     |  2 +-
 ...-with-electronic-software-distribution-solutions.md |  2 +-
 .../app-v/appv-deploy-the-appv-server-with-a-script.md |  2 +-
 .../app-v/appv-deploy-the-appv-server.md               |  2 +-
 .../app-v/appv-deploying-appv.md                       |  2 +-
 .../appv-deploying-microsoft-office-2010-wth-appv.md   |  2 +-
 .../appv-deploying-microsoft-office-2013-with-appv.md  |  2 +-
 .../appv-deploying-microsoft-office-2016-with-appv.md  |  2 +-
 ...-with-electronic-software-distribution-solutions.md |  2 +-
 .../appv-deploying-the-appv-sequencer-and-client.md    |  2 +-
 .../app-v/appv-deploying-the-appv-server.md            |  2 +-
 .../app-v/appv-deployment-checklist.md                 |  2 +-
 .../app-v/appv-dynamic-configuration.md                |  2 +-
 ...-with-electronic-software-distribution-solutions.md |  2 +-
 ...ble-reporting-on-the-appv-client-with-powershell.md |  2 +-
 .../app-v/appv-enable-the-app-v-desktop-client.md      |  2 +-
 .../app-v/appv-evaluating-appv.md                      |  2 +-
 .../application-management/app-v/appv-for-windows.md   |  2 +-
 .../app-v/appv-getting-started.md                      |  2 +-
 .../app-v/appv-high-level-architecture.md              |  2 +-
 ...-associated-security-identifiers-with-powershell.md |  2 +-
 ...nt-and-reporting-databases-on-separate-computers.md |  2 +-
 ...l-the-management-server-on-a-standalone-computer.md |  2 +-
 ...stall-the-publishing-server-on-a-remote-computer.md |  2 +-
 ...ll-the-reporting-server-on-a-standalone-computer.md |  2 +-
 .../app-v/appv-install-the-sequencer.md                |  2 +-
 ...-load-the-powershell-cmdlets-and-get-cmdlet-help.md |  2 +-
 .../app-v/appv-maintaining-appv.md                     |  2 +-
 ...unning-on-a-stand-alone-computer-with-powershell.md |  2 +-
 ...groups-on-a-stand-alone-computer-with-powershell.md |  2 +-
 .../app-v/appv-managing-connection-groups.md           |  2 +-
 .../appv-migrating-to-appv-from-a-previous-version.md  |  2 +-
 ...v-modify-an-existing-virtual-application-package.md |  2 +-
 ...appv-modify-client-configuration-with-powershell.md |  2 +-
 .../appv-move-the-appv-server-to-another-computer.md   |  2 +-
 .../application-management/app-v/appv-operations.md    |  2 +-
 .../app-v/appv-performance-guidance.md                 |  2 +-
 .../app-v/appv-planning-checklist.md                   |  2 +-
 .../appv-planning-folder-redirection-with-appv.md      |  2 +-
 .../app-v/appv-planning-for-appv-server-deployment.md  |  2 +-
 .../app-v/appv-planning-for-appv.md                    |  2 +-
 .../appv-planning-for-high-availability-with-appv.md   |  2 +-
 ...ppv-planning-for-sequencer-and-client-deployment.md |  2 +-
 .../app-v/appv-planning-for-using-appv-with-office.md  |  2 +-
 ...-with-electronic-software-distribution-solutions.md |  2 +-
 .../app-v/appv-planning-to-deploy-appv.md              |  2 +-
 .../set-up-and-test-cortana-in-windows-10.md           |  2 +-
 ...dministering-uev-with-windows-powershell-and-wmi.md |  2 +-
 windows/configuration/ue-v/uev-administering-uev.md    |  2 +-
 .../ue-v/uev-application-template-schema-reference.md  |  2 +-
 .../uev-changing-the-frequency-of-scheduled-tasks.md   |  2 +-
 .../uev-configuring-uev-with-group-policy-objects.md   |  2 +-
 .../access-control/access-control.md                   |  2 +-
 .../access-control/active-directory-accounts.md        |  2 +-
 .../access-control/active-directory-security-groups.md |  2 +-
 .../access-control/dynamic-access-control.md           |  2 +-
 .../access-control/local-accounts.md                   |  2 +-
 .../access-control/microsoft-accounts.md               |  2 +-
 .../access-control/security-identifiers.md             |  2 +-
 .../access-control/security-principals.md              |  2 +-
 .../access-control/service-accounts.md                 |  2 +-
 .../access-control/special-identities.md               |  2 +-
 .../change-history-for-access-protection.md            |  2 +-
 .../security/identity-protection/configure-s-mime.md   |  2 +-
 .../credential-guard/additional-mitigations.md         |  2 +-
 .../credential-guard-considerations.md                 |  2 +-
 .../credential-guard/credential-guard-how-it-works.md  |  2 +-
 .../credential-guard/credential-guard-known-issues.md  |  2 +-
 .../credential-guard/credential-guard-manage.md        |  6 +++---
 .../credential-guard-not-protected-scenarios.md        |  2 +-
 .../credential-guard-protection-limits.md              |  2 +-
 .../credential-guard/credential-guard-requirements.md  |  2 +-
 .../credential-guard/credential-guard.md               |  2 +-
 .../hello-key-trust-validate-ad-prereq.md              |  4 ++--
 windows/security/identity-protection/index.md          |  2 +-
 ...alling-digital-certificates-on-windows-10-mobile.md |  2 +-
 .../identity-protection/remote-credential-guard.md     |  2 +-
 .../smart-card-and-remote-desktop-services.md          |  2 +-
 .../smart-cards/smart-card-architecture.md             |  2 +-
 .../smart-card-certificate-propagation-service.md      |  2 +-
 ...rt-card-certificate-requirements-and-enumeration.md |  2 +-
 .../smart-cards/smart-card-events.md                   |  2 +-
 .../smart-card-group-policy-and-registry-settings.md   |  2 +-
 ...art-card-how-smart-card-sign-in-works-in-windows.md |  2 +-
 .../smart-cards/smart-card-removal-policy-service.md   |  2 +-
 .../smart-card-smart-cards-for-windows-service.md      |  2 +-
 .../smart-cards/smart-card-tools-and-settings.md       |  2 +-
 ...mart-card-windows-smart-card-technical-reference.md |  2 +-
 .../how-user-account-control-works.md                  |  2 +-
 ...t-control-group-policy-and-registry-key-settings.md |  2 +-
 .../user-account-control-overview.md                   |  2 +-
 .../user-account-control-security-policy-settings.md   |  2 +-
 .../virtual-smart-card-deploy-virtual-smart-cards.md   |  2 +-
 .../virtual-smart-card-evaluate-security.md            |  2 +-
 .../virtual-smart-card-get-started.md                  |  2 +-
 .../virtual-smart-cards/virtual-smart-card-overview.md |  2 +-
 .../virtual-smart-card-tpmvscmgr.md                    |  2 +-
 .../virtual-smart-card-understanding-and-evaluating.md |  2 +-
 .../virtual-smart-card-use-virtual-smart-cards.md      |  2 +-
 ...ffie-hellman-protocol-over-ikev2-vpn-connections.md |  2 +-
 ...ingle-sign-on-sso-over-vpn-and-wi-fi-connections.md |  2 +-
 .../identity-protection/vpn/vpn-authentication.md      |  2 +-
 .../vpn/vpn-auto-trigger-profile.md                    |  2 +-
 .../identity-protection/vpn/vpn-conditional-access.md  |  2 +-
 .../identity-protection/vpn/vpn-connection-type.md     |  2 +-
 windows/security/identity-protection/vpn/vpn-guide.md  |  4 ++--
 .../identity-protection/vpn/vpn-name-resolution.md     |  2 +-
 .../identity-protection/vpn/vpn-profile-options.md     |  2 +-
 .../security/identity-protection/vpn/vpn-routing.md    |  2 +-
 .../identity-protection/vpn/vpn-security-features.md   |  2 +-
 ...ndows-credential-theft-mitigation-guide-abstract.md |  2 +-
 .../bitlocker/bitlocker-recovery-loop-break.md         |  2 +-
 .../kernel-dma-protection-for-thunderbolt.md           |  2 +-
 .../secure-the-windows-10-boot-process.md              |  2 +-
 .../tpm/backup-tpm-recovery-information-to-ad-ds.md    |  2 +-
 .../tpm/change-the-tpm-owner-password.md               |  2 +-
 .../tpm/how-windows-uses-the-tpm.md                    |  2 +-
 .../initialize-and-configure-ownership-of-the-tpm.md   |  2 +-
 .../tpm/switch-pcr-banks-on-tpm-2-0-devices.md         |  2 +-
 .../information-protection/tpm/tpm-fundamentals.md     |  2 +-
 .../information-protection/tpm/tpm-recommendations.md  |  2 +-
 .../tpm/trusted-platform-module-overview.md            |  2 +-
 ...d-platform-module-services-group-policy-settings.md |  2 +-
 .../tpm/trusted-platform-module-top-node.md            |  2 +-
 .../app-behavior-with-wip.md                           |  2 +-
 .../collect-wip-audit-event-logs.md                    |  2 +-
 .../create-and-verify-an-efs-dra-certificate.md        |  2 +-
 .../create-vpn-and-wip-policy-using-intune-azure.md    |  2 +-
 .../create-wip-policy-using-configmgr.md               |  2 +-
 .../create-wip-policy-using-intune-azure.md            |  4 ++--
 .../deploy-wip-policy-using-intune-azure.md            |  2 +-
 .../enlightened-microsoft-apps-and-wip.md              |  2 +-
 .../guidance-and-best-practices-wip.md                 |  2 +-
 .../mandatory-settings-for-wip.md                      |  2 +-
 .../overview-create-wip-policy-configmgr.md            |  2 +-
 .../overview-create-wip-policy.md                      |  2 +-
 .../protect-enterprise-data-using-wip.md               |  2 +-
 .../recommended-network-definitions-for-wip.md         |  2 +-
 .../testing-scenarios-for-wip.md                       |  2 +-
 .../using-owa-with-wip.md                              |  2 +-
 .../wip-app-enterprise-context.md                      |  2 +-
 .../block-untrusted-fonts-in-enterprise.md             |  4 ++--
 .../microsoft-defender-atp/review-alerts.md            | 10 +++++-----
 .../overview-of-threat-mitigations-in-windows-10.md    |  2 +-
 .../applocker/working-with-applocker-rules.md          |  2 +-
 .../windows-platform-common-criteria.md                |  2 +-
 160 files changed, 170 insertions(+), 170 deletions(-)

diff --git a/windows/application-management/app-v/appv-connect-to-the-management-console.md b/windows/application-management/app-v/appv-connect-to-the-management-console.md
index 009019e015..dd38c101dd 100644
--- a/windows/application-management/app-v/appv-connect-to-the-management-console.md
+++ b/windows/application-management/app-v/appv-connect-to-the-management-console.md
@@ -1,7 +1,7 @@
 ---
 title: How to connect to the Management Console (Windows 10)
 description: In this article, learn the procedure for connecting to the App-V Management Console through your web browser.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-connection-group-virtual-environment.md b/windows/application-management/app-v/appv-connection-group-virtual-environment.md
index a16ae77ec8..743c824815 100644
--- a/windows/application-management/app-v/appv-connection-group-virtual-environment.md
+++ b/windows/application-management/app-v/appv-connection-group-virtual-environment.md
@@ -1,7 +1,7 @@
 ---
 title: About the connection group virtual environment (Windows 10)
 description: Learn how the connection group virtual environment works and how package priority is determined.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-convert-a-package-created-in-a-previous-version-of-appv.md b/windows/application-management/app-v/appv-convert-a-package-created-in-a-previous-version-of-appv.md
index 60c1c72c77..36691ab472 100644
--- a/windows/application-management/app-v/appv-convert-a-package-created-in-a-previous-version-of-appv.md
+++ b/windows/application-management/app-v/appv-convert-a-package-created-in-a-previous-version-of-appv.md
@@ -1,7 +1,7 @@
 ---
 title: How to convert a package created in a previous version of App-V (Windows 10)
 description: Use the package converter utility to convert a virtual application package created in a previous version of App-V.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-connection-group-with-user-published-and-globally-published-packages.md b/windows/application-management/app-v/appv-create-a-connection-group-with-user-published-and-globally-published-packages.md
index 312adeb09b..62787b9a7c 100644
--- a/windows/application-management/app-v/appv-create-a-connection-group-with-user-published-and-globally-published-packages.md
+++ b/windows/application-management/app-v/appv-create-a-connection-group-with-user-published-and-globally-published-packages.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a connection croup with user-published and globally published packages (Windows 10)
 description: How to create a connection croup with user-published and globally published packages.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-connection-group.md b/windows/application-management/app-v/appv-create-a-connection-group.md
index 829708fe4f..509167b5f4 100644
--- a/windows/application-management/app-v/appv-create-a-connection-group.md
+++ b/windows/application-management/app-v/appv-create-a-connection-group.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a connection group (Windows 10)
 description: Learn how to create a connection group with the App-V Management Console and where to find information about managing connection groups.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-custom-configuration-file-with-the-management-console.md b/windows/application-management/app-v/appv-create-a-custom-configuration-file-with-the-management-console.md
index 273b520a59..42081976ef 100644
--- a/windows/application-management/app-v/appv-create-a-custom-configuration-file-with-the-management-console.md
+++ b/windows/application-management/app-v/appv-create-a-custom-configuration-file-with-the-management-console.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a custom configuration file by using the App-V Management Console (Windows 10)
 description: How to create a custom configuration file by using the App-V Management Console.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-package-accelerator-with-powershell.md b/windows/application-management/app-v/appv-create-a-package-accelerator-with-powershell.md
index 600df5f713..d6a62ddf52 100644
--- a/windows/application-management/app-v/appv-create-a-package-accelerator-with-powershell.md
+++ b/windows/application-management/app-v/appv-create-a-package-accelerator-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a package accelerator by using Windows PowerShell (Windows 10)
 description: Learn how to create an App-v Package Accelerator by using Windows PowerShell. App-V Package Accelerators automatically sequence large, complex applications.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-package-accelerator.md b/windows/application-management/app-v/appv-create-a-package-accelerator.md
index db4fe23b68..d2c69c8afb 100644
--- a/windows/application-management/app-v/appv-create-a-package-accelerator.md
+++ b/windows/application-management/app-v/appv-create-a-package-accelerator.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a package accelerator (Windows 10)
 description: Learn how to create App-V Package Accelerators to automatically generate new virtual application packages.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-a-virtual-application-package-package-accelerator.md b/windows/application-management/app-v/appv-create-a-virtual-application-package-package-accelerator.md
index c6983aab02..200f0481e4 100644
--- a/windows/application-management/app-v/appv-create-a-virtual-application-package-package-accelerator.md
+++ b/windows/application-management/app-v/appv-create-a-virtual-application-package-package-accelerator.md
@@ -1,7 +1,7 @@
 ---
 title: How to create a virtual application package using an App-V Package Accelerator (Windows 10)
 description: How to create a virtual application package using an App-V Package Accelerator.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-create-and-use-a-project-template.md b/windows/application-management/app-v/appv-create-and-use-a-project-template.md
index 54aa412604..0af67b340d 100644
--- a/windows/application-management/app-v/appv-create-and-use-a-project-template.md
+++ b/windows/application-management/app-v/appv-create-and-use-a-project-template.md
@@ -1,7 +1,7 @@
 ---
 title: Create and apply an App-V project template to a sequenced App-V package (Windows 10)
 description: Steps for how to create and apply an App-V project template (.appvt) to a sequenced App-V package.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-creating-and-managing-virtualized-applications.md b/windows/application-management/app-v/appv-creating-and-managing-virtualized-applications.md
index b7ee707a61..30debd58c4 100644
--- a/windows/application-management/app-v/appv-creating-and-managing-virtualized-applications.md
+++ b/windows/application-management/app-v/appv-creating-and-managing-virtualized-applications.md
@@ -1,7 +1,7 @@
 ---
 title: Creating and managing App-V virtualized applications (Windows 10)
 description: Create and manage App-V virtualized applications to monitor and record the installation process for an application to be run as a virtualized application.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-customize-virtual-application-extensions-with-the-management-console.md b/windows/application-management/app-v/appv-customize-virtual-application-extensions-with-the-management-console.md
index aae5ad7d4c..ebbdf508c3 100644
--- a/windows/application-management/app-v/appv-customize-virtual-application-extensions-with-the-management-console.md
+++ b/windows/application-management/app-v/appv-customize-virtual-application-extensions-with-the-management-console.md
@@ -1,7 +1,7 @@
 ---
 title: How to customize virtual application extensions for a specific AD group by using the Management Console (Windows 10)
 description: How to customize virtual application extensions for a specific AD group by using the Management Console.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-delete-a-connection-group.md b/windows/application-management/app-v/appv-delete-a-connection-group.md
index 20c62b4398..60a5518fe9 100644
--- a/windows/application-management/app-v/appv-delete-a-connection-group.md
+++ b/windows/application-management/app-v/appv-delete-a-connection-group.md
@@ -1,7 +1,7 @@
 ---
 title: How to delete a connection group (Windows 10)
 description: Learn how to delete an existing App-V connection group in the App-V Management Console and where to find information about managing connection groups.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-delete-a-package-with-the-management-console.md b/windows/application-management/app-v/appv-delete-a-package-with-the-management-console.md
index 16a77e0287..27a1adeb35 100644
--- a/windows/application-management/app-v/appv-delete-a-package-with-the-management-console.md
+++ b/windows/application-management/app-v/appv-delete-a-package-with-the-management-console.md
@@ -1,7 +1,7 @@
 ---
 title: How to delete a package in the Management Console (Windows 10)
 description: Learn how to delete a package in the App-V Management Console and where to find information about operations for App-V.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploy-appv-databases-with-sql-scripts.md b/windows/application-management/app-v/appv-deploy-appv-databases-with-sql-scripts.md
index 4717b5e4ef..f7ccc22f58 100644
--- a/windows/application-management/app-v/appv-deploy-appv-databases-with-sql-scripts.md
+++ b/windows/application-management/app-v/appv-deploy-appv-databases-with-sql-scripts.md
@@ -1,7 +1,7 @@
 ---
 title: How to Deploy the App-V Databases by Using SQL Scripts (Windows 10)
 description: Learn how to use SQL scripts to install the App-V databases and upgrade the App-V databases to a later version.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploy-appv-packages-with-electronic-software-distribution-solutions.md b/windows/application-management/app-v/appv-deploy-appv-packages-with-electronic-software-distribution-solutions.md
index 3c47fd5076..29719a0f8c 100644
--- a/windows/application-management/app-v/appv-deploy-appv-packages-with-electronic-software-distribution-solutions.md
+++ b/windows/application-management/app-v/appv-deploy-appv-packages-with-electronic-software-distribution-solutions.md
@@ -1,7 +1,7 @@
 ---
 title: How to deploy App-V packages using electronic software distribution (Windows 10)
 description: Learn how use an electronic software distribution (ESD) system to deploy App-V virtual applications to App-V clients.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploy-the-appv-server-with-a-script.md b/windows/application-management/app-v/appv-deploy-the-appv-server-with-a-script.md
index 07407291fe..f2c8cc0af3 100644
--- a/windows/application-management/app-v/appv-deploy-the-appv-server-with-a-script.md
+++ b/windows/application-management/app-v/appv-deploy-the-appv-server-with-a-script.md
@@ -1,7 +1,7 @@
 ---
 title: How to Deploy the App-V Server Using a Script (Windows 10)
 description: 'Learn how to deploy the App-V server by using a script (appv_server_setup.exe) from the command line.'
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploy-the-appv-server.md b/windows/application-management/app-v/appv-deploy-the-appv-server.md
index 9284a9bfc6..ec7bcac622 100644
--- a/windows/application-management/app-v/appv-deploy-the-appv-server.md
+++ b/windows/application-management/app-v/appv-deploy-the-appv-server.md
@@ -1,7 +1,7 @@
 ---
 title: How to Deploy the App-V Server (Windows 10)
 description: Use these instructions to deploy the Application Virtualization (App-V) Server in App-V for Windows 10.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-appv.md b/windows/application-management/app-v/appv-deploying-appv.md
index 14493f0b25..5061447ca8 100644
--- a/windows/application-management/app-v/appv-deploying-appv.md
+++ b/windows/application-management/app-v/appv-deploying-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying App-V (Windows 10)
 description: App-V supports several different deployment options. Learn how to complete App-V deployment at different stages in your App-V deployment.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-microsoft-office-2010-wth-appv.md b/windows/application-management/app-v/appv-deploying-microsoft-office-2010-wth-appv.md
index 736d772dfc..143b808f76 100644
--- a/windows/application-management/app-v/appv-deploying-microsoft-office-2010-wth-appv.md
+++ b/windows/application-management/app-v/appv-deploying-microsoft-office-2010-wth-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying Microsoft Office 2010 by Using App-V (Windows 10)
 description: Create Office 2010 packages for Microsoft Application Virtualization (App-V) using the App-V Sequencer or the App-V Package Accelerator.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-microsoft-office-2013-with-appv.md b/windows/application-management/app-v/appv-deploying-microsoft-office-2013-with-appv.md
index fee5c296a1..d4567acef0 100644
--- a/windows/application-management/app-v/appv-deploying-microsoft-office-2013-with-appv.md
+++ b/windows/application-management/app-v/appv-deploying-microsoft-office-2013-with-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying Microsoft Office 2013 by Using App-V (Windows 10)
 description: Use Application Virtualization (App-V) to deliver Microsoft Office 2013 as a virtualized application to computers in your organization.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-microsoft-office-2016-with-appv.md b/windows/application-management/app-v/appv-deploying-microsoft-office-2016-with-appv.md
index ba7107286e..5a7bb4a95a 100644
--- a/windows/application-management/app-v/appv-deploying-microsoft-office-2016-with-appv.md
+++ b/windows/application-management/app-v/appv-deploying-microsoft-office-2016-with-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying Microsoft Office 2016 by using App-V (Windows 10)
 description: Use Application Virtualization (App-V) to deliver Microsoft Office 2016 as a virtualized application to computers in your organization.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-packages-with-electronic-software-distribution-solutions.md b/windows/application-management/app-v/appv-deploying-packages-with-electronic-software-distribution-solutions.md
index 37adcaae5e..5e3c484a69 100644
--- a/windows/application-management/app-v/appv-deploying-packages-with-electronic-software-distribution-solutions.md
+++ b/windows/application-management/app-v/appv-deploying-packages-with-electronic-software-distribution-solutions.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying App-V packages by using electronic software distribution (ESD)
 description: Deploying App-V packages by using electronic software distribution (ESD)
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-the-appv-sequencer-and-client.md b/windows/application-management/app-v/appv-deploying-the-appv-sequencer-and-client.md
index 8cb954168b..15f8f520d4 100644
--- a/windows/application-management/app-v/appv-deploying-the-appv-sequencer-and-client.md
+++ b/windows/application-management/app-v/appv-deploying-the-appv-sequencer-and-client.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying the App-V Sequencer and configuring the client (Windows 10)
 description: Learn how to deploy the App-V Sequencer and configure the client by using the ADMX template and Group Policy.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deploying-the-appv-server.md b/windows/application-management/app-v/appv-deploying-the-appv-server.md
index 97f97275be..fad40ca584 100644
--- a/windows/application-management/app-v/appv-deploying-the-appv-server.md
+++ b/windows/application-management/app-v/appv-deploying-the-appv-server.md
@@ -1,7 +1,7 @@
 ---
 title: Deploying the App-V Server (Windows 10)
 description: Learn how to deploy the Application Virtualization (App-V) Server in App-V for Windows 10 by using different deployment configurations described in this article.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-deployment-checklist.md b/windows/application-management/app-v/appv-deployment-checklist.md
index d09d0141d8..e64dfcb45c 100644
--- a/windows/application-management/app-v/appv-deployment-checklist.md
+++ b/windows/application-management/app-v/appv-deployment-checklist.md
@@ -1,7 +1,7 @@
 ---
 title: App-V Deployment Checklist (Windows 10)
 description: Use the App-V deployment checklist to understand the recommended steps and items to consider when deploying App-V features.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-dynamic-configuration.md b/windows/application-management/app-v/appv-dynamic-configuration.md
index 196cb62ece..fac027c816 100644
--- a/windows/application-management/app-v/appv-dynamic-configuration.md
+++ b/windows/application-management/app-v/appv-dynamic-configuration.md
@@ -1,7 +1,7 @@
 ---
 title: About App-V Dynamic Configuration (Windows 10)
 description: Learn how to create or edit an existing Application Virtualization (App-V) dynamic configuration file.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-enable-administrators-to-publish-packages-with-electronic-software-distribution-solutions.md b/windows/application-management/app-v/appv-enable-administrators-to-publish-packages-with-electronic-software-distribution-solutions.md
index 601bfd8297..013c9bf60d 100644
--- a/windows/application-management/app-v/appv-enable-administrators-to-publish-packages-with-electronic-software-distribution-solutions.md
+++ b/windows/application-management/app-v/appv-enable-administrators-to-publish-packages-with-electronic-software-distribution-solutions.md
@@ -1,7 +1,7 @@
 ---
 title: How to Enable Only Administrators to Publish Packages by Using an ESD (Windows 10)
 description: Learn how to enable only administrators to publish packages by bsing an electronic software delivery (ESD).
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-enable-reporting-on-the-appv-client-with-powershell.md b/windows/application-management/app-v/appv-enable-reporting-on-the-appv-client-with-powershell.md
index 39a072c558..ba86d9400f 100644
--- a/windows/application-management/app-v/appv-enable-reporting-on-the-appv-client-with-powershell.md
+++ b/windows/application-management/app-v/appv-enable-reporting-on-the-appv-client-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to Enable Reporting on the App-V Client by Using Windows PowerShell (Windows 10)
 description: How to Enable Reporting on the App-V Client by Using Windows PowerShell
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-enable-the-app-v-desktop-client.md b/windows/application-management/app-v/appv-enable-the-app-v-desktop-client.md
index c7985565d4..e9352f15ee 100644
--- a/windows/application-management/app-v/appv-enable-the-app-v-desktop-client.md
+++ b/windows/application-management/app-v/appv-enable-the-app-v-desktop-client.md
@@ -1,7 +1,7 @@
 ---
 title: Enable the App-V in-box client (Windows 10)
 description: Learn how to enable the Microsoft Application Virtualization (App-V) in-box client installed with Windows 10.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-evaluating-appv.md b/windows/application-management/app-v/appv-evaluating-appv.md
index 9eb57e8521..c5d8ac6964 100644
--- a/windows/application-management/app-v/appv-evaluating-appv.md
+++ b/windows/application-management/app-v/appv-evaluating-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Evaluating App-V (Windows 10)
 description: Learn how to evaluate App-V for Windows 10 in a lab environment before deploying into a production environment.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-for-windows.md b/windows/application-management/app-v/appv-for-windows.md
index bec88a55bf..d089cb3371 100644
--- a/windows/application-management/app-v/appv-for-windows.md
+++ b/windows/application-management/app-v/appv-for-windows.md
@@ -1,7 +1,7 @@
 ---
 title: Application Virtualization (App-V) (Windows 10)
 description: See various topics that can help you administer Application Virtualization (App-V) and its components.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-getting-started.md b/windows/application-management/app-v/appv-getting-started.md
index 03f116312a..8fc9117868 100644
--- a/windows/application-management/app-v/appv-getting-started.md
+++ b/windows/application-management/app-v/appv-getting-started.md
@@ -1,7 +1,7 @@
 ---
 title: Getting Started with App-V (Windows 10)
 description: Get started with Microsoft Application Virtualization (App-V) for Windows 10. App-V for Windows 10 delivers Win32 applications to users as virtual applications.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-high-level-architecture.md b/windows/application-management/app-v/appv-high-level-architecture.md
index 941e4f58e7..cf81569563 100644
--- a/windows/application-management/app-v/appv-high-level-architecture.md
+++ b/windows/application-management/app-v/appv-high-level-architecture.md
@@ -1,7 +1,7 @@
 ---
 title: High-level architecture for App-V (Windows 10)
 description: Use the information in this article to simplify your Microsoft Application Virtualization (App-V) deployment.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-appv-databases-and-convert-the-associated-security-identifiers-with-powershell.md b/windows/application-management/app-v/appv-install-the-appv-databases-and-convert-the-associated-security-identifiers-with-powershell.md
index 82b6545be6..fed3c5c9ec 100644
--- a/windows/application-management/app-v/appv-install-the-appv-databases-and-convert-the-associated-security-identifiers-with-powershell.md
+++ b/windows/application-management/app-v/appv-install-the-appv-databases-and-convert-the-associated-security-identifiers-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to Install the App-V Databases and Convert the Associated Security Identifiers by Using Windows PowerShell (Windows 10)
 description: How to Install the App-V Databases and Convert the Associated Security Identifiers by Using Windows PowerShell
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-management-and-reporting-databases-on-separate-computers.md b/windows/application-management/app-v/appv-install-the-management-and-reporting-databases-on-separate-computers.md
index ffffedff20..2b99c85da9 100644
--- a/windows/application-management/app-v/appv-install-the-management-and-reporting-databases-on-separate-computers.md
+++ b/windows/application-management/app-v/appv-install-the-management-and-reporting-databases-on-separate-computers.md
@@ -1,7 +1,7 @@
 ---
 title: How to Install the Management and Reporting Databases on separate computers from the Management and Reporting Services (Windows 10)
 description: How to install the Management and Reporting Databases on separate computers from the Management and Reporting Services.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-management-server-on-a-standalone-computer.md b/windows/application-management/app-v/appv-install-the-management-server-on-a-standalone-computer.md
index 44e1be2801..f8c387ecb8 100644
--- a/windows/application-management/app-v/appv-install-the-management-server-on-a-standalone-computer.md
+++ b/windows/application-management/app-v/appv-install-the-management-server-on-a-standalone-computer.md
@@ -1,7 +1,7 @@
 ---
 title: How to install the Management Server on a Standalone Computer and Connect it to the Database (Windows 10)
 description: How to install the Management Server on a Standalone Computer and Connect it to the Database
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-publishing-server-on-a-remote-computer.md b/windows/application-management/app-v/appv-install-the-publishing-server-on-a-remote-computer.md
index f08f5dfe4d..df6dc6c726 100644
--- a/windows/application-management/app-v/appv-install-the-publishing-server-on-a-remote-computer.md
+++ b/windows/application-management/app-v/appv-install-the-publishing-server-on-a-remote-computer.md
@@ -1,7 +1,7 @@
 ---
 title: Install the Publishing Server on a Remote Computer (Windows 10)
 description: Use the procedures in this article to install the Microsoft Application Virtualization (App-V) publishing server on a separate computer.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-reporting-server-on-a-standalone-computer.md b/windows/application-management/app-v/appv-install-the-reporting-server-on-a-standalone-computer.md
index d476fda616..17251170f3 100644
--- a/windows/application-management/app-v/appv-install-the-reporting-server-on-a-standalone-computer.md
+++ b/windows/application-management/app-v/appv-install-the-reporting-server-on-a-standalone-computer.md
@@ -1,7 +1,7 @@
 ---
 title: How to install the Reporting Server on a standalone computer and connect it to the database (Windows 10)
 description: How to install the App-V Reporting Server on a Standalone Computer and Connect it to the Database
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-install-the-sequencer.md b/windows/application-management/app-v/appv-install-the-sequencer.md
index 7a13e789c6..0c3ae2e9a0 100644
--- a/windows/application-management/app-v/appv-install-the-sequencer.md
+++ b/windows/application-management/app-v/appv-install-the-sequencer.md
@@ -1,7 +1,7 @@
 ---
 title: Install the App-V Sequencer (Windows 10)
 description: Learn how to install the App-V Sequencer to convert Win32 applications into virtual packages for deployment to user devices.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-load-the-powershell-cmdlets-and-get-cmdlet-help.md b/windows/application-management/app-v/appv-load-the-powershell-cmdlets-and-get-cmdlet-help.md
index bc8cd9361e..4c3530ae6b 100644
--- a/windows/application-management/app-v/appv-load-the-powershell-cmdlets-and-get-cmdlet-help.md
+++ b/windows/application-management/app-v/appv-load-the-powershell-cmdlets-and-get-cmdlet-help.md
@@ -1,7 +1,7 @@
 ---
 title: How to Load the Windows PowerShell Cmdlets for App-V and Get Cmdlet Help (Windows 10)
 description: How to Load the Windows PowerShell Cmdlets for App-V and Get Cmdlet Help
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-maintaining-appv.md b/windows/application-management/app-v/appv-maintaining-appv.md
index e03e524b5a..ca2c8811c9 100644
--- a/windows/application-management/app-v/appv-maintaining-appv.md
+++ b/windows/application-management/app-v/appv-maintaining-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Maintaining App-V (Windows 10)
 description: After you have deployed App-V for Windows 10, you can use the following information to maintain the App-V infrastructure.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-manage-appv-packages-running-on-a-stand-alone-computer-with-powershell.md b/windows/application-management/app-v/appv-manage-appv-packages-running-on-a-stand-alone-computer-with-powershell.md
index c7f1214405..78190c4689 100644
--- a/windows/application-management/app-v/appv-manage-appv-packages-running-on-a-stand-alone-computer-with-powershell.md
+++ b/windows/application-management/app-v/appv-manage-appv-packages-running-on-a-stand-alone-computer-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to manage App-V packages running on a stand-alone computer by using Windows PowerShell (Windows 10)
 description: How to manage App-V packages running on a stand-alone computer by using Windows PowerShell.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-manage-connection-groups-on-a-stand-alone-computer-with-powershell.md b/windows/application-management/app-v/appv-manage-connection-groups-on-a-stand-alone-computer-with-powershell.md
index d4e01266f8..d6e03d17a6 100644
--- a/windows/application-management/app-v/appv-manage-connection-groups-on-a-stand-alone-computer-with-powershell.md
+++ b/windows/application-management/app-v/appv-manage-connection-groups-on-a-stand-alone-computer-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to Manage Connection Groups on a Stand-alone Computer by Using Windows PowerShell (Windows 10)
 description: How to Manage Connection Groups on a Stand-alone Computer by Using Windows PowerShell
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-managing-connection-groups.md b/windows/application-management/app-v/appv-managing-connection-groups.md
index 9b5aa14320..f308ee42da 100644
--- a/windows/application-management/app-v/appv-managing-connection-groups.md
+++ b/windows/application-management/app-v/appv-managing-connection-groups.md
@@ -1,7 +1,7 @@
 ---
 title: Managing Connection Groups (Windows 10)
 description: Connection groups can allow administrators to manage packages independently and avoid having to add the same application multiple times to a client computer.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-migrating-to-appv-from-a-previous-version.md b/windows/application-management/app-v/appv-migrating-to-appv-from-a-previous-version.md
index a3600bfa4c..63e362cc4c 100644
--- a/windows/application-management/app-v/appv-migrating-to-appv-from-a-previous-version.md
+++ b/windows/application-management/app-v/appv-migrating-to-appv-from-a-previous-version.md
@@ -1,7 +1,7 @@
 ---
 title: Migrating to App-V from a Previous Version (Windows 10)
 description: Learn how to migrate to Microsoft Application Virtualization (App-V) for Windows 10 from a previous version.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-modify-an-existing-virtual-application-package.md b/windows/application-management/app-v/appv-modify-an-existing-virtual-application-package.md
index c065c9a2a5..6a6da20d55 100644
--- a/windows/application-management/app-v/appv-modify-an-existing-virtual-application-package.md
+++ b/windows/application-management/app-v/appv-modify-an-existing-virtual-application-package.md
@@ -1,7 +1,7 @@
 ---
 title: How to Modify an Existing Virtual Application Package (Windows 10)
 description: Learn how to modify an existing virtual application package and add a new application to an existing virtual application package.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-modify-client-configuration-with-powershell.md b/windows/application-management/app-v/appv-modify-client-configuration-with-powershell.md
index 816015f740..9b7fa5dc90 100644
--- a/windows/application-management/app-v/appv-modify-client-configuration-with-powershell.md
+++ b/windows/application-management/app-v/appv-modify-client-configuration-with-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: How to Modify Client Configuration by Using Windows PowerShell (Windows 10)
 description: Learn how to modify the Application Virtualization (App-V) client configuration by using Windows PowerShell.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-move-the-appv-server-to-another-computer.md b/windows/application-management/app-v/appv-move-the-appv-server-to-another-computer.md
index e34dd4f7dc..8d46833f6d 100644
--- a/windows/application-management/app-v/appv-move-the-appv-server-to-another-computer.md
+++ b/windows/application-management/app-v/appv-move-the-appv-server-to-another-computer.md
@@ -1,7 +1,7 @@
 ---
 title: How to Move the App-V Server to Another Computer (Windows 10)
 description: Learn how to create a new management server console in your environment and learn how to connect it to the App-V database.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-operations.md b/windows/application-management/app-v/appv-operations.md
index b68da536ab..a916d38776 100644
--- a/windows/application-management/app-v/appv-operations.md
+++ b/windows/application-management/app-v/appv-operations.md
@@ -1,7 +1,7 @@
 ---
 title: Operations for App-V (Windows 10)
 description: Learn about the various types of App-V administration and operating tasks that are typically performed by an administrator.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-performance-guidance.md b/windows/application-management/app-v/appv-performance-guidance.md
index ea4f11a42b..d7c8078b33 100644
--- a/windows/application-management/app-v/appv-performance-guidance.md
+++ b/windows/application-management/app-v/appv-performance-guidance.md
@@ -1,7 +1,7 @@
 ---
 title: Performance Guidance for Application Virtualization (Windows 10)
 description: Learn how to configure App-V for optimal performance, optimize virtual app packages, and provide a better user experience with RDS and VDI.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-checklist.md b/windows/application-management/app-v/appv-planning-checklist.md
index 4c098ba090..e2d9776c2c 100644
--- a/windows/application-management/app-v/appv-planning-checklist.md
+++ b/windows/application-management/app-v/appv-planning-checklist.md
@@ -1,7 +1,7 @@
 ---
 title: App-V Planning Checklist (Windows 10)
 description: Learn about the recommended steps and items to consider when planning an Application Virtualization (App-V) deployment.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-folder-redirection-with-appv.md b/windows/application-management/app-v/appv-planning-folder-redirection-with-appv.md
index 2a6724419a..0b9b995319 100644
--- a/windows/application-management/app-v/appv-planning-folder-redirection-with-appv.md
+++ b/windows/application-management/app-v/appv-planning-folder-redirection-with-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Planning to Use Folder Redirection with App-V (Windows 10)
 description: Learn about folder redirection with App-V. Folder redirection enables users and administrators to redirect the path of a folder to a new location.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-for-appv-server-deployment.md b/windows/application-management/app-v/appv-planning-for-appv-server-deployment.md
index 8aa07c226e..94b436fd53 100644
--- a/windows/application-management/app-v/appv-planning-for-appv-server-deployment.md
+++ b/windows/application-management/app-v/appv-planning-for-appv-server-deployment.md
@@ -1,7 +1,7 @@
 ---
 title: Planning for the App-V Server Deployment (Windows 10)
 description: Learn what you need to know so you can plan for the Microsoft Application Virtualization (App-V) 5.1 server deployment.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-for-appv.md b/windows/application-management/app-v/appv-planning-for-appv.md
index 0ebf3ccaf3..39d5199ea8 100644
--- a/windows/application-management/app-v/appv-planning-for-appv.md
+++ b/windows/application-management/app-v/appv-planning-for-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Planning for App-V (Windows 10)
 description: Use the information in this article to plan to deploy App-V without disrupting your existing network or user experience.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-for-high-availability-with-appv.md b/windows/application-management/app-v/appv-planning-for-high-availability-with-appv.md
index 29d772054e..9f01735aab 100644
--- a/windows/application-management/app-v/appv-planning-for-high-availability-with-appv.md
+++ b/windows/application-management/app-v/appv-planning-for-high-availability-with-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Planning for High Availability with App-V Server
 description: Learn what you need to know so you can plan for high availability with Application Virtualization (App-V) server.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-for-sequencer-and-client-deployment.md b/windows/application-management/app-v/appv-planning-for-sequencer-and-client-deployment.md
index 0f797ad9d7..52019b0496 100644
--- a/windows/application-management/app-v/appv-planning-for-sequencer-and-client-deployment.md
+++ b/windows/application-management/app-v/appv-planning-for-sequencer-and-client-deployment.md
@@ -1,7 +1,7 @@
 ---
 title: Planning for the App-V Sequencer and Client Deployment (Windows 10)
 description: Learn what you need to do to plan for the App-V Sequencer and Client deployment, and where to find additional information about the deployment process.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-for-using-appv-with-office.md b/windows/application-management/app-v/appv-planning-for-using-appv-with-office.md
index 91ade82d46..32b20fa1e6 100644
--- a/windows/application-management/app-v/appv-planning-for-using-appv-with-office.md
+++ b/windows/application-management/app-v/appv-planning-for-using-appv-with-office.md
@@ -1,7 +1,7 @@
 ---
 title: Planning for Deploying App-V with Office (Windows 10)
 description: Use the information in this article to plan how to deploy Office within Microsoft Application Virtualization (App-V).
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-to-deploy-appv-with-electronic-software-distribution-solutions.md b/windows/application-management/app-v/appv-planning-to-deploy-appv-with-electronic-software-distribution-solutions.md
index 49e7266314..10fd13f4cc 100644
--- a/windows/application-management/app-v/appv-planning-to-deploy-appv-with-electronic-software-distribution-solutions.md
+++ b/windows/application-management/app-v/appv-planning-to-deploy-appv-with-electronic-software-distribution-solutions.md
@@ -1,7 +1,7 @@
 ---
 title: Planning to Deploy App-V with an Electronic Software Distribution System (Windows 10)
 description: Planning to Deploy App-V with an Electronic Software Distribution System
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/application-management/app-v/appv-planning-to-deploy-appv.md b/windows/application-management/app-v/appv-planning-to-deploy-appv.md
index be621c72e2..f08a2b2b44 100644
--- a/windows/application-management/app-v/appv-planning-to-deploy-appv.md
+++ b/windows/application-management/app-v/appv-planning-to-deploy-appv.md
@@ -1,7 +1,7 @@
 ---
 title: Planning to Deploy App-V (Windows 10)
 description: Learn about the different deployment configurations and requirements to consider before you deploy App-V for Windows 10.
-author: lomayor
+author: dansimp
 ms.pagetype: mdop, appcompat, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/configuration/cortana-at-work/set-up-and-test-cortana-in-windows-10.md b/windows/configuration/cortana-at-work/set-up-and-test-cortana-in-windows-10.md
index 14dfdcd3da..da23d57297 100644
--- a/windows/configuration/cortana-at-work/set-up-and-test-cortana-in-windows-10.md
+++ b/windows/configuration/cortana-at-work/set-up-and-test-cortana-in-windows-10.md
@@ -6,7 +6,7 @@ description: Cortana includes powerful configuration options specifically to opt
 ms.prod: w10
 ms.mktglfcycl: manage
 ms.sitesec: library
-author: kwekua
+author: dansimp
 ms.localizationpriority: medium
 ms.author: dansimp
 ---
diff --git a/windows/configuration/ue-v/uev-administering-uev-with-windows-powershell-and-wmi.md b/windows/configuration/ue-v/uev-administering-uev-with-windows-powershell-and-wmi.md
index 110c062f57..159d0b1376 100644
--- a/windows/configuration/ue-v/uev-administering-uev-with-windows-powershell-and-wmi.md
+++ b/windows/configuration/ue-v/uev-administering-uev-with-windows-powershell-and-wmi.md
@@ -1,7 +1,7 @@
 ---
 title: Administering UE-V with Windows PowerShell and WMI
 description: Learn how User Experience Virtualization (UE-V) provides Windows PowerShell cmdlets to help administrators perform various UE-V tasks.
-author: trudyha
+author: dansimp
 ms.pagetype: mdop, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/configuration/ue-v/uev-administering-uev.md b/windows/configuration/ue-v/uev-administering-uev.md
index 1b5004453a..ae0c0dc0e4 100644
--- a/windows/configuration/ue-v/uev-administering-uev.md
+++ b/windows/configuration/ue-v/uev-administering-uev.md
@@ -1,7 +1,7 @@
 ---
 title: Administering UE-V
 description: Learn how to perform administrative tasks for User Experience Virtualization (UE-V). These tasks include configuring the UE-V service and recovering lost settings.
-author: trudyha
+author: dansimp
 ms.pagetype: mdop, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/configuration/ue-v/uev-application-template-schema-reference.md b/windows/configuration/ue-v/uev-application-template-schema-reference.md
index 6ca0f295e0..9fb9d1704d 100644
--- a/windows/configuration/ue-v/uev-application-template-schema-reference.md
+++ b/windows/configuration/ue-v/uev-application-template-schema-reference.md
@@ -1,7 +1,7 @@
 ---
 title: Application Template Schema Reference for UE-V
 description: Learn details about the XML structure of the UE-V settings location templates and learn how to edit these files.
-author: trudyha
+author: dansimp
 ms.pagetype: mdop, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/configuration/ue-v/uev-changing-the-frequency-of-scheduled-tasks.md b/windows/configuration/ue-v/uev-changing-the-frequency-of-scheduled-tasks.md
index 508ec913ff..a4d2addc34 100644
--- a/windows/configuration/ue-v/uev-changing-the-frequency-of-scheduled-tasks.md
+++ b/windows/configuration/ue-v/uev-changing-the-frequency-of-scheduled-tasks.md
@@ -1,7 +1,7 @@
 ---
 title: Changing the Frequency of UE-V Scheduled Tasks
 description: Learn how to create a script that uses the Schtasks.exe command-line options so you can change the frequency of UE-V scheduled tasks.
-author: trudyha
+author: dansimp
 ms.pagetype: mdop, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/configuration/ue-v/uev-configuring-uev-with-group-policy-objects.md b/windows/configuration/ue-v/uev-configuring-uev-with-group-policy-objects.md
index 169e31075f..2a85dc79f2 100644
--- a/windows/configuration/ue-v/uev-configuring-uev-with-group-policy-objects.md
+++ b/windows/configuration/ue-v/uev-configuring-uev-with-group-policy-objects.md
@@ -1,7 +1,7 @@
 ---
 title: Configuring UE-V with Group Policy Objects
 description: In this article, learn how to configure User Experience Virtualization (UE-V) with Group Policy objects.
-author: trudyha
+author: dansimp
 ms.pagetype: mdop, virtualization
 ms.mktglfcycl: deploy
 ms.sitesec: library
diff --git a/windows/security/identity-protection/access-control/access-control.md b/windows/security/identity-protection/access-control/access-control.md
index 8e6cf74f38..61288f4b01 100644
--- a/windows/security/identity-protection/access-control/access-control.md
+++ b/windows/security/identity-protection/access-control/access-control.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/active-directory-accounts.md b/windows/security/identity-protection/access-control/active-directory-accounts.md
index 2ae163cea6..f207928d15 100644
--- a/windows/security/identity-protection/access-control/active-directory-accounts.md
+++ b/windows/security/identity-protection/access-control/active-directory-accounts.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/active-directory-security-groups.md b/windows/security/identity-protection/access-control/active-directory-security-groups.md
index d703f10851..e408ad9ba8 100644
--- a/windows/security/identity-protection/access-control/active-directory-security-groups.md
+++ b/windows/security/identity-protection/access-control/active-directory-security-groups.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/dynamic-access-control.md b/windows/security/identity-protection/access-control/dynamic-access-control.md
index 3ad985610a..ea1bce53c3 100644
--- a/windows/security/identity-protection/access-control/dynamic-access-control.md
+++ b/windows/security/identity-protection/access-control/dynamic-access-control.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/local-accounts.md b/windows/security/identity-protection/access-control/local-accounts.md
index 56e4f2edf2..e988e6da9f 100644
--- a/windows/security/identity-protection/access-control/local-accounts.md
+++ b/windows/security/identity-protection/access-control/local-accounts.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/microsoft-accounts.md b/windows/security/identity-protection/access-control/microsoft-accounts.md
index d1f2624bf6..7abb98e730 100644
--- a/windows/security/identity-protection/access-control/microsoft-accounts.md
+++ b/windows/security/identity-protection/access-control/microsoft-accounts.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/security-identifiers.md b/windows/security/identity-protection/access-control/security-identifiers.md
index c8bdc813a2..b21bd85fd4 100644
--- a/windows/security/identity-protection/access-control/security-identifiers.md
+++ b/windows/security/identity-protection/access-control/security-identifiers.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/security-principals.md b/windows/security/identity-protection/access-control/security-principals.md
index 111f5d902d..26564af45a 100644
--- a/windows/security/identity-protection/access-control/security-principals.md
+++ b/windows/security/identity-protection/access-control/security-principals.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/service-accounts.md b/windows/security/identity-protection/access-control/service-accounts.md
index 7a95b60584..3e5a325d0a 100644
--- a/windows/security/identity-protection/access-control/service-accounts.md
+++ b/windows/security/identity-protection/access-control/service-accounts.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/access-control/special-identities.md b/windows/security/identity-protection/access-control/special-identities.md
index b14254b22a..0dc6406a6d 100644
--- a/windows/security/identity-protection/access-control/special-identities.md
+++ b/windows/security/identity-protection/access-control/special-identities.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/change-history-for-access-protection.md b/windows/security/identity-protection/change-history-for-access-protection.md
index 954dd6020d..d76e6bc56d 100644
--- a/windows/security/identity-protection/change-history-for-access-protection.md
+++ b/windows/security/identity-protection/change-history-for-access-protection.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/configure-s-mime.md b/windows/security/identity-protection/configure-s-mime.md
index 0dd5d09a40..cab91d6db4 100644
--- a/windows/security/identity-protection/configure-s-mime.md
+++ b/windows/security/identity-protection/configure-s-mime.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/additional-mitigations.md b/windows/security/identity-protection/credential-guard/additional-mitigations.md
index 5a88c7b645..885c697548 100644
--- a/windows/security/identity-protection/credential-guard/additional-mitigations.md
+++ b/windows/security/identity-protection/credential-guard/additional-mitigations.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-considerations.md b/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
index 6d52746433..90a4a08397 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-how-it-works.md b/windows/security/identity-protection/credential-guard/credential-guard-how-it-works.md
index 4eaf65890c..8d0219c5dd 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-how-it-works.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-how-it-works.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-known-issues.md b/windows/security/identity-protection/credential-guard/credential-guard-known-issues.md
index 52e6cf8f15..0780c5d0c4 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-known-issues.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-known-issues.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-manage.md b/windows/security/identity-protection/credential-guard/credential-guard-manage.md
index 1d0b90717a..27f4be1157 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-manage.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-manage.md
@@ -7,15 +7,15 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: v-tea
 manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 ms.reviewer: 
 ms.custom: 
-- CI 120967
-- CSSTroubleshooting
+  - CI 120967
+  - CSSTroubleshooting
 ---
 
 # Manage Windows Defender Credential Guard
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-not-protected-scenarios.md b/windows/security/identity-protection/credential-guard/credential-guard-not-protected-scenarios.md
index 0083c4e274..dcda95a96c 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-not-protected-scenarios.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-not-protected-scenarios.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-protection-limits.md b/windows/security/identity-protection/credential-guard/credential-guard-protection-limits.md
index 792587963f..845101f5a0 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-protection-limits.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-protection-limits.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-requirements.md b/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
index 6768635d8f..3fae5bee58 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-requirements.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/credential-guard/credential-guard.md b/windows/security/identity-protection/credential-guard/credential-guard.md
index 7f2c136802..a2583e1181 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard.md
@@ -9,7 +9,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-ad-prereq.md b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-ad-prereq.md
index 51d246f3f4..1a4dcd1e37 100644
--- a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-ad-prereq.md
+++ b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-ad-prereq.md
@@ -1,12 +1,12 @@
 ---
-title: Key registration for on-premises deployment of Windows Hello for Business 
+title: Key registration for on-premises deployment of Windows Hello for Business
 description: How to Validate Active Directory prerequisites for Windows Hello for Business when deploying with the key trust model.
 keywords: identity, PIN, biometric, Hello, passport
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, mobile
-author: DaniHalfin
+author: dansimp
 audience: ITPro
 ms.author: dolmont
 manager: dansimp
diff --git a/windows/security/identity-protection/index.md b/windows/security/identity-protection/index.md
index 98e0bb9835..f57abc302f 100644
--- a/windows/security/identity-protection/index.md
+++ b/windows/security/identity-protection/index.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: danihalfin
+author: dansimp
 ms.author: daniha
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/installing-digital-certificates-on-windows-10-mobile.md b/windows/security/identity-protection/installing-digital-certificates-on-windows-10-mobile.md
index 65e353cb81..fc906d9e08 100644
--- a/windows/security/identity-protection/installing-digital-certificates-on-windows-10-mobile.md
+++ b/windows/security/identity-protection/installing-digital-certificates-on-windows-10-mobile.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/remote-credential-guard.md b/windows/security/identity-protection/remote-credential-guard.md
index 60dc685e1e..0637c997cc 100644
--- a/windows/security/identity-protection/remote-credential-guard.md
+++ b/windows/security/identity-protection/remote-credential-guard.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-and-remote-desktop-services.md b/windows/security/identity-protection/smart-cards/smart-card-and-remote-desktop-services.md
index 5e5003aa9f..f8baa1b11c 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-and-remote-desktop-services.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-and-remote-desktop-services.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-architecture.md b/windows/security/identity-protection/smart-cards/smart-card-architecture.md
index 89ddb7fa8a..bb2559ccf0 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-architecture.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-architecture.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-certificate-propagation-service.md b/windows/security/identity-protection/smart-cards/smart-card-certificate-propagation-service.md
index 997384b9e0..ae671b4ace 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-certificate-propagation-service.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-certificate-propagation-service.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-certificate-requirements-and-enumeration.md b/windows/security/identity-protection/smart-cards/smart-card-certificate-requirements-and-enumeration.md
index 17564fc13b..3d76ae2b17 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-certificate-requirements-and-enumeration.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-certificate-requirements-and-enumeration.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-events.md b/windows/security/identity-protection/smart-cards/smart-card-events.md
index d905fbf992..dbaa8112f7 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-events.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-events.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-group-policy-and-registry-settings.md b/windows/security/identity-protection/smart-cards/smart-card-group-policy-and-registry-settings.md
index 04e43174e8..50d2b45bb2 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-group-policy-and-registry-settings.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-group-policy-and-registry-settings.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-how-smart-card-sign-in-works-in-windows.md b/windows/security/identity-protection/smart-cards/smart-card-how-smart-card-sign-in-works-in-windows.md
index 56228dff85..9939c9ec73 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-how-smart-card-sign-in-works-in-windows.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-how-smart-card-sign-in-works-in-windows.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-removal-policy-service.md b/windows/security/identity-protection/smart-cards/smart-card-removal-policy-service.md
index dd8812970c..fa36cf563f 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-removal-policy-service.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-removal-policy-service.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-smart-cards-for-windows-service.md b/windows/security/identity-protection/smart-cards/smart-card-smart-cards-for-windows-service.md
index a913f4c769..e4548fc317 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-smart-cards-for-windows-service.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-smart-cards-for-windows-service.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-tools-and-settings.md b/windows/security/identity-protection/smart-cards/smart-card-tools-and-settings.md
index 794b8e096c..74fdcc3e8f 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-tools-and-settings.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-tools-and-settings.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/smart-cards/smart-card-windows-smart-card-technical-reference.md b/windows/security/identity-protection/smart-cards/smart-card-windows-smart-card-technical-reference.md
index 53ebc5b4f6..99defcec30 100644
--- a/windows/security/identity-protection/smart-cards/smart-card-windows-smart-card-technical-reference.md
+++ b/windows/security/identity-protection/smart-cards/smart-card-windows-smart-card-technical-reference.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/user-account-control/how-user-account-control-works.md b/windows/security/identity-protection/user-account-control/how-user-account-control-works.md
index 254e57e0e9..10ffd31a84 100644
--- a/windows/security/identity-protection/user-account-control/how-user-account-control-works.md
+++ b/windows/security/identity-protection/user-account-control/how-user-account-control-works.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: operate
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/user-account-control/user-account-control-group-policy-and-registry-key-settings.md b/windows/security/identity-protection/user-account-control/user-account-control-group-policy-and-registry-key-settings.md
index e8d50dc97f..130688534d 100644
--- a/windows/security/identity-protection/user-account-control/user-account-control-group-policy-and-registry-key-settings.md
+++ b/windows/security/identity-protection/user-account-control/user-account-control-group-policy-and-registry-key-settings.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/user-account-control/user-account-control-overview.md b/windows/security/identity-protection/user-account-control/user-account-control-overview.md
index 9c9011d7ad..a95145abaa 100644
--- a/windows/security/identity-protection/user-account-control/user-account-control-overview.md
+++ b/windows/security/identity-protection/user-account-control/user-account-control-overview.md
@@ -9,7 +9,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md b/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
index e366385a91..793fe303aa 100644
--- a/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
+++ b/windows/security/identity-protection/user-account-control/user-account-control-security-policy-settings.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-deploy-virtual-smart-cards.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-deploy-virtual-smart-cards.md
index 5e643f7d75..a168874b63 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-deploy-virtual-smart-cards.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-deploy-virtual-smart-cards.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-evaluate-security.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-evaluate-security.md
index f0b0220678..6fb462eb81 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-evaluate-security.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-evaluate-security.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-get-started.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-get-started.md
index 34daf7a11e..6810a79d95 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-get-started.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-get-started.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-overview.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-overview.md
index aa61d00b97..29bb2adede 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-overview.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-overview.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-tpmvscmgr.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-tpmvscmgr.md
index a979d2b781..c37a9a9b29 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-tpmvscmgr.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-tpmvscmgr.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-understanding-and-evaluating.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-understanding-and-evaluating.md
index 0194ee2c80..d7c394285f 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-understanding-and-evaluating.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-understanding-and-evaluating.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-use-virtual-smart-cards.md b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-use-virtual-smart-cards.md
index 0737f18fec..30671f6e4a 100644
--- a/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-use-virtual-smart-cards.md
+++ b/windows/security/identity-protection/virtual-smart-cards/virtual-smart-card-use-virtual-smart-cards.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/identity-protection/vpn/how-to-configure-diffie-hellman-protocol-over-ikev2-vpn-connections.md b/windows/security/identity-protection/vpn/how-to-configure-diffie-hellman-protocol-over-ikev2-vpn-connections.md
index 6b9868b0f0..97ee24eb64 100644
--- a/windows/security/identity-protection/vpn/how-to-configure-diffie-hellman-protocol-over-ikev2-vpn-connections.md
+++ b/windows/security/identity-protection/vpn/how-to-configure-diffie-hellman-protocol-over-ikev2-vpn-connections.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 ms.localizationpriority: medium
 ms.date: 02/08/2018
diff --git a/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md b/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
index 0b6ff85b21..24a4378ebe 100644
--- a/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
+++ b/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
diff --git a/windows/security/identity-protection/vpn/vpn-authentication.md b/windows/security/identity-protection/vpn/vpn-authentication.md
index 3fe2c08d57..5f4cf0a2b1 100644
--- a/windows/security/identity-protection/vpn/vpn-authentication.md
+++ b/windows/security/identity-protection/vpn/vpn-authentication.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 07/27/2017
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-auto-trigger-profile.md b/windows/security/identity-protection/vpn/vpn-auto-trigger-profile.md
index 29c8f5e474..59ffc5f231 100644
--- a/windows/security/identity-protection/vpn/vpn-auto-trigger-profile.md
+++ b/windows/security/identity-protection/vpn/vpn-auto-trigger-profile.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 07/27/2017
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index aa6ca89ce6..0d608b647c 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-connection-type.md b/windows/security/identity-protection/vpn/vpn-connection-type.md
index d825487b05..a0330b3425 100644
--- a/windows/security/identity-protection/vpn/vpn-connection-type.md
+++ b/windows/security/identity-protection/vpn/vpn-connection-type.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 11/13/2020
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-guide.md b/windows/security/identity-protection/vpn/vpn-guide.md
index ae26cfc95a..1ec959d53e 100644
--- a/windows/security/identity-protection/vpn/vpn-guide.md
+++ b/windows/security/identity-protection/vpn/vpn-guide.md
@@ -1,10 +1,10 @@
 ---
 title: Windows 10 VPN technical guide (Windows 10)
-description: Learn about decisions to make for Windows 10 clients in your enterprise VPN solution and how to configure your deployment. 
+description: Learn about decisions to make for Windows 10 clients in your enterprise VPN solution and how to configure your deployment.
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 11/13/2020
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-name-resolution.md b/windows/security/identity-protection/vpn/vpn-name-resolution.md
index 3b6a776b1e..2076d89817 100644
--- a/windows/security/identity-protection/vpn/vpn-name-resolution.md
+++ b/windows/security/identity-protection/vpn/vpn-name-resolution.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 07/27/2017
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-profile-options.md b/windows/security/identity-protection/vpn/vpn-profile-options.md
index 077c2d4c8f..d47c757946 100644
--- a/windows/security/identity-protection/vpn/vpn-profile-options.md
+++ b/windows/security/identity-protection/vpn/vpn-profile-options.md
@@ -8,7 +8,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 ms.localizationpriority: medium
 ms.date: 05/17/2018
diff --git a/windows/security/identity-protection/vpn/vpn-routing.md b/windows/security/identity-protection/vpn/vpn-routing.md
index 416bc57d04..fd26221328 100644
--- a/windows/security/identity-protection/vpn/vpn-routing.md
+++ b/windows/security/identity-protection/vpn/vpn-routing.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 07/27/2017
 ms.reviewer: 
diff --git a/windows/security/identity-protection/vpn/vpn-security-features.md b/windows/security/identity-protection/vpn/vpn-security-features.md
index 19a298bef8..96964c7d9b 100644
--- a/windows/security/identity-protection/vpn/vpn-security-features.md
+++ b/windows/security/identity-protection/vpn/vpn-security-features.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security, networking
-author: dulcemontemayor
+author: dansimp
 ms.localizationpriority: medium
 ms.date: 07/27/2017
 ms.reviewer: 
diff --git a/windows/security/identity-protection/windows-credential-theft-mitigation-guide-abstract.md b/windows/security/identity-protection/windows-credential-theft-mitigation-guide-abstract.md
index 26db02bc64..2c1a02b8db 100644
--- a/windows/security/identity-protection/windows-credential-theft-mitigation-guide-abstract.md
+++ b/windows/security/identity-protection/windows-credential-theft-mitigation-guide-abstract.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
diff --git a/windows/security/information-protection/bitlocker/bitlocker-recovery-loop-break.md b/windows/security/information-protection/bitlocker/bitlocker-recovery-loop-break.md
index 9ed6f0f984..4ae0e5d8e8 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-recovery-loop-break.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-recovery-loop-break.md
@@ -8,7 +8,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 ms.author: v-maave
-author: martyav
+author: dansimp
 manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
diff --git a/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md b/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
index 74e8c2d67c..2c39161d3c 100644
--- a/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
+++ b/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
@@ -5,7 +5,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/secure-the-windows-10-boot-process.md b/windows/security/information-protection/secure-the-windows-10-boot-process.md
index d3ff0fb615..76cd4b50a5 100644
--- a/windows/security/information-protection/secure-the-windows-10-boot-process.md
+++ b/windows/security/information-protection/secure-the-windows-10-boot-process.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: Explore
 ms.pagetype: security
 ms.sitesec: library
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
diff --git a/windows/security/information-protection/tpm/backup-tpm-recovery-information-to-ad-ds.md b/windows/security/information-protection/tpm/backup-tpm-recovery-information-to-ad-ds.md
index 3e3fdfd9b5..596d94cff0 100644
--- a/windows/security/information-protection/tpm/backup-tpm-recovery-information-to-ad-ds.md
+++ b/windows/security/information-protection/tpm/backup-tpm-recovery-information-to-ad-ds.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/change-the-tpm-owner-password.md b/windows/security/information-protection/tpm/change-the-tpm-owner-password.md
index 1cb7f1c281..7854157fed 100644
--- a/windows/security/information-protection/tpm/change-the-tpm-owner-password.md
+++ b/windows/security/information-protection/tpm/change-the-tpm-owner-password.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/how-windows-uses-the-tpm.md b/windows/security/information-protection/tpm/how-windows-uses-the-tpm.md
index c802bfae51..06d8c54066 100644
--- a/windows/security/information-protection/tpm/how-windows-uses-the-tpm.md
+++ b/windows/security/information-protection/tpm/how-windows-uses-the-tpm.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/initialize-and-configure-ownership-of-the-tpm.md b/windows/security/information-protection/tpm/initialize-and-configure-ownership-of-the-tpm.md
index cf6d045df3..27d47eebbc 100644
--- a/windows/security/information-protection/tpm/initialize-and-configure-ownership-of-the-tpm.md
+++ b/windows/security/information-protection/tpm/initialize-and-configure-ownership-of-the-tpm.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/switch-pcr-banks-on-tpm-2-0-devices.md b/windows/security/information-protection/tpm/switch-pcr-banks-on-tpm-2-0-devices.md
index d9e1befbcd..fed9817bba 100644
--- a/windows/security/information-protection/tpm/switch-pcr-banks-on-tpm-2-0-devices.md
+++ b/windows/security/information-protection/tpm/switch-pcr-banks-on-tpm-2-0-devices.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/tpm-fundamentals.md b/windows/security/information-protection/tpm/tpm-fundamentals.md
index 462656a2ad..06382dc117 100644
--- a/windows/security/information-protection/tpm/tpm-fundamentals.md
+++ b/windows/security/information-protection/tpm/tpm-fundamentals.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/tpm-recommendations.md b/windows/security/information-protection/tpm/tpm-recommendations.md
index fb2784e2d5..997c6add77 100644
--- a/windows/security/information-protection/tpm/tpm-recommendations.md
+++ b/windows/security/information-protection/tpm/tpm-recommendations.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/trusted-platform-module-overview.md b/windows/security/information-protection/tpm/trusted-platform-module-overview.md
index a6c748fa89..d573495c4e 100644
--- a/windows/security/information-protection/tpm/trusted-platform-module-overview.md
+++ b/windows/security/information-protection/tpm/trusted-platform-module-overview.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/trusted-platform-module-services-group-policy-settings.md b/windows/security/information-protection/tpm/trusted-platform-module-services-group-policy-settings.md
index d94485704c..f6df5436b6 100644
--- a/windows/security/information-protection/tpm/trusted-platform-module-services-group-policy-settings.md
+++ b/windows/security/information-protection/tpm/trusted-platform-module-services-group-policy-settings.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/tpm/trusted-platform-module-top-node.md b/windows/security/information-protection/tpm/trusted-platform-module-top-node.md
index 45c32cd7da..124caf74f2 100644
--- a/windows/security/information-protection/tpm/trusted-platform-module-top-node.md
+++ b/windows/security/information-protection/tpm/trusted-platform-module-top-node.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/app-behavior-with-wip.md b/windows/security/information-protection/windows-information-protection/app-behavior-with-wip.md
index 97733a4dd7..f7aad3051d 100644
--- a/windows/security/information-protection/windows-information-protection/app-behavior-with-wip.md
+++ b/windows/security/information-protection/windows-information-protection/app-behavior-with-wip.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/collect-wip-audit-event-logs.md b/windows/security/information-protection/windows-information-protection/collect-wip-audit-event-logs.md
index 78edc9a59e..c84d5cbc1a 100644
--- a/windows/security/information-protection/windows-information-protection/collect-wip-audit-event-logs.md
+++ b/windows/security/information-protection/windows-information-protection/collect-wip-audit-event-logs.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/create-and-verify-an-efs-dra-certificate.md b/windows/security/information-protection/windows-information-protection/create-and-verify-an-efs-dra-certificate.md
index 2bcfcf6622..629994e90f 100644
--- a/windows/security/information-protection/windows-information-protection/create-and-verify-an-efs-dra-certificate.md
+++ b/windows/security/information-protection/windows-information-protection/create-and-verify-an-efs-dra-certificate.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/create-vpn-and-wip-policy-using-intune-azure.md b/windows/security/information-protection/windows-information-protection/create-vpn-and-wip-policy-using-intune-azure.md
index 6c672171ac..a124fbdd24 100644
--- a/windows/security/information-protection/windows-information-protection/create-vpn-and-wip-policy-using-intune-azure.md
+++ b/windows/security/information-protection/windows-information-protection/create-vpn-and-wip-policy-using-intune-azure.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
index 1f7a0cbc20..ac44e2f1bd 100644
--- a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
+++ b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
index 7f89a245b5..f36275b6ba 100644
--- a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
+++ b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
@@ -1,11 +1,11 @@
 ---
 title: Create a Windows Information Protection (WIP) policy with MDM using the Azure portal for Microsoft Intune (Windows 10)
-description: Learn how to use the Azure portal for Microsoft Intune to create and deploy your Windows Information Protection (WIP) policy to protect data on your network. 
+description: Learn how to use the Azure portal for Microsoft Intune to create and deploy your Windows Information Protection (WIP) policy to protect data on your network.
 ms.prod: w10
 ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/deploy-wip-policy-using-intune-azure.md b/windows/security/information-protection/windows-information-protection/deploy-wip-policy-using-intune-azure.md
index 42caa212cd..524199cf73 100644
--- a/windows/security/information-protection/windows-information-protection/deploy-wip-policy-using-intune-azure.md
+++ b/windows/security/information-protection/windows-information-protection/deploy-wip-policy-using-intune-azure.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/enlightened-microsoft-apps-and-wip.md b/windows/security/information-protection/windows-information-protection/enlightened-microsoft-apps-and-wip.md
index ebe3c59220..557fa276cb 100644
--- a/windows/security/information-protection/windows-information-protection/enlightened-microsoft-apps-and-wip.md
+++ b/windows/security/information-protection/windows-information-protection/enlightened-microsoft-apps-and-wip.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/guidance-and-best-practices-wip.md b/windows/security/information-protection/windows-information-protection/guidance-and-best-practices-wip.md
index 576fe7cf71..bbfa13516c 100644
--- a/windows/security/information-protection/windows-information-protection/guidance-and-best-practices-wip.md
+++ b/windows/security/information-protection/windows-information-protection/guidance-and-best-practices-wip.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md b/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
index 27d3f1d9c9..eb25f0556d 100644
--- a/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
+++ b/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
index 503c15a18d..419f25c61c 100644
--- a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
+++ b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy-configmgr.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
index 76c595ade1..42f746faba 100644
--- a/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
+++ b/windows/security/information-protection/windows-information-protection/overview-create-wip-policy.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md b/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
index 3d11ab50ae..336a37f408 100644
--- a/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
+++ b/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/recommended-network-definitions-for-wip.md b/windows/security/information-protection/windows-information-protection/recommended-network-definitions-for-wip.md
index fee621245c..d2ff6e2a2f 100644
--- a/windows/security/information-protection/windows-information-protection/recommended-network-definitions-for-wip.md
+++ b/windows/security/information-protection/windows-information-protection/recommended-network-definitions-for-wip.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/testing-scenarios-for-wip.md b/windows/security/information-protection/windows-information-protection/testing-scenarios-for-wip.md
index 7353daae25..2eefdaf76e 100644
--- a/windows/security/information-protection/windows-information-protection/testing-scenarios-for-wip.md
+++ b/windows/security/information-protection/windows-information-protection/testing-scenarios-for-wip.md
@@ -9,7 +9,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/using-owa-with-wip.md b/windows/security/information-protection/windows-information-protection/using-owa-with-wip.md
index 94df767962..c7caa873dc 100644
--- a/windows/security/information-protection/windows-information-protection/using-owa-with-wip.md
+++ b/windows/security/information-protection/windows-information-protection/using-owa-with-wip.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/information-protection/windows-information-protection/wip-app-enterprise-context.md b/windows/security/information-protection/windows-information-protection/wip-app-enterprise-context.md
index 5a8333cab2..b54cc7cbe1 100644
--- a/windows/security/information-protection/windows-information-protection/wip-app-enterprise-context.md
+++ b/windows/security/information-protection/windows-information-protection/wip-app-enterprise-context.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 audience: ITPro
diff --git a/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md b/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
index 9c201ba4ac..4f91deefd6 100644
--- a/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
+++ b/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
@@ -2,14 +2,14 @@
 title: Block untrusted fonts in an enterprise (Windows 10)
 description: To help protect your company from attacks which may originate from untrusted or attacker controlled font files, we've created the Blocking Untrusted Fonts feature.
 ms.assetid: a3354c8e-4208-4be6-bc19-56a572c361b4
-ms.reviewer:
+ms.reviewer: 
 manager: dansimp
 keywords: font blocking, untrusted font blocking, block fonts, untrusted fonts
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.pagetype: security
 ms.sitesec: library
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 ms.date: 08/14/2017
 ms.localizationpriority: medium
diff --git a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
index ebe2923713..f9911e0643 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
@@ -4,16 +4,16 @@ description: Review alert information, including a visualized alert story and de
 keywords: incident, incidents, machines, devices, users, alerts, alert, investigation, graph, evidence
 ms.prod: microsoft-365-enterprise
 ms.pagetype: security
-f1.keywords:
-- NOCSH
+f1.keywords: 
+  - NOCSH
 ms.author: daniha
-author: danihalfin
+author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ms.date: 5/1/2020
 ---
diff --git a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
index ca627315b9..7c5371ee9f 100644
--- a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
+++ b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-author: dulcemontemayor
+author: dansimp
 ms.date: 10/13/2017
 ms.reviewer: 
 manager: dansimp
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
index 1b92efcccf..0ddb19159b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
@@ -9,7 +9,7 @@ ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-author: mjcaparas
+author: dansimp
 ms.localizationpriority: medium
 msauthor: v-anbic
 ms.date: 08/27/2018
diff --git a/windows/security/threat-protection/windows-platform-common-criteria.md b/windows/security/threat-protection/windows-platform-common-criteria.md
index 3dece2757f..d5041fcb44 100644
--- a/windows/security/threat-protection/windows-platform-common-criteria.md
+++ b/windows/security/threat-protection/windows-platform-common-criteria.md
@@ -3,7 +3,7 @@ title: Common Criteria Certifications
 description: This topic details how Microsoft supports the Common Criteria certification program.
 ms.prod: w10
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management

From 0b2d7ab3e403ea122bd6e5aa85b23cc645cdb053 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:08:22 -0800
Subject: [PATCH 580/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5d51a6f36d..2242561c26 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/19/2021
+ms.date: 01/21/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro

From 5ed21322d0b66b4c73b15eaf3e3104299d645813 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:33:35 -0800
Subject: [PATCH 581/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 52f0a3ddf6..72473b65c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -14,7 +14,7 @@ ms.author: deniseb
 ms.reviewer: sugamar, jcedola
 manager: dansimp
 ms.custom: asr
-ms.date: 01/08/2021
+ms.date: 01/20/2021
 ---
 
 # Use attack surface reduction rules to prevent malware infection
@@ -24,7 +24,7 @@ ms.date: 01/08/2021
 
 **Applies to:**
 
-* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 ## Why attack surface reduction rules are important
 

From 2650f302b61b16b5037656a2360d00a652c7e20c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:35:51 -0800
Subject: [PATCH 582/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md   | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 72473b65c6..cf10e80626 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -64,7 +64,7 @@ Warn mode is supported on devices running the following versions of Windows:
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809) or later
 - [Windows Server, version 1809](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1809) or later
  
-Note that Microsoft Defender Antivirus must be running with Real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state).
+Microsoft Defender Antivirus must be running with real-time protection in [Active mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility#functionality-and-features-available-in-each-state).
 
 In addition, make sure [Microsoft Defender Antivirus and antimalware updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus#monthly-platform-and-engine-versions) are installed.
 - Minimum platform release requirement: `4.18.2008.9`  
@@ -126,13 +126,9 @@ DeviceEvents
 You can review the Windows event log to view events generated by attack surface reduction rules:
 
 1. Download the [Evaluation Package](https://aka.ms/mp7z2w) and extract the file *cfa-events.xml* to an easily accessible location on the device.
-
 2. Enter the words, *Event Viewer*, into the Start menu to open the Windows Event Viewer.
-
 3. Under **Actions**, select **Import custom view...**.
-
 4. Select the file *cfa-events.xml* from where it was extracted. Alternatively, [copy the XML directly](event-views.md).
-
 5. Select **OK**.
 
 You can create a custom view that filters events to only show the following events, all of which are related to controlled folder access:
@@ -465,9 +461,6 @@ GUID: `c1db55ab-c21a-4637-bb3f-a12568109d35`
 ## See also
 
 - [Attack surface reduction FAQ](attack-surface-reduction-faq.md)
-
 - [Enable attack surface reduction rules](enable-attack-surface-reduction.md)
-
 - [Evaluate attack surface reduction rules](evaluate-attack-surface-reduction.md)
-
 - [Compatibility of Microsoft Defender Antivirus with other antivirus/antimalware solutions](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md)

From e4f4593dff80eedc07f0af77aa5b8df6dbd04868 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:49:07 -0800
Subject: [PATCH 583/825] Update enable-exploit-protection.md

---
 .../enable-exploit-protection.md              | 110 +++++++++---------
 1 file changed, 55 insertions(+), 55 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index a3dacf2086..aafa081de2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -46,13 +46,13 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 
 ## Windows Security app
 
-1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Security**.
+1. Open the Windows Security app by selecting the shield icon in the task bar or by searching the start menu for **Security**.
 
-2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then click **Exploit protection settings**.
+2. Select the **App & browser control** tile (or the app icon on the left menu bar) and then select **Exploit protection settings**.
 
 3. Go to **Program settings** and choose the app you want to apply mitigations to. <br/>
-    - If the app you want to configure is already listed, click it and then click **Edit**.
-    - If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app. <br/>
+    - If the app you want to configure is already listed, select it, and then select **Edit**.
+    - If the app is not listed, at the top of the list select **Add program to customize** and then choose how you want to add the app. <br/>
     - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
     - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
@@ -60,12 +60,12 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 
 5. Repeat steps 3-4 for all the apps and mitigations you want to configure.
 
-6. Under the **System settings** section, find the mitigation you want to configure and select one of the following. Apps that aren't configured individually in the **Program settings** section will use the settings configured here:<br/>
+6. Under the **System settings** section, find the mitigation you want to configure and then specify one of the following settings. Apps that aren't configured individually in the **Program settings** section use the settings that are configured here.<br/>
     - **On by default**: The mitigation is *enabled* for apps that don't have this mitigation set in the app-specific **Program settings** section
     - **Off by default**: The mitigation is *disabled* for apps that don't have this mitigation set in the app-specific **Program settings** section
     - **Use default**: The mitigation is either enabled or disabled, depending on the default configuration that is set up by Windows 10 installation; the default value (**On** or **Off**) is always specified next to the **Use default** label for each mitigation
 
-7. Repeat step 6 for all the system-level mitigations you want to configure. Click **Apply** when you're done setting up your configuration.
+7. Repeat step 6 for all the system-level mitigations you want to configure. Select **Apply** when you're done setting up your configuration.
 
 If you add an app to the **Program settings** section and configure individual mitigation settings there, they will be honored above the configuration for the same mitigations specified in the **System settings** section. The following matrix and examples help to illustrate how defaults work:
 
@@ -80,7 +80,7 @@ If you add an app to the **Program settings** section and configure individual m
 
 Mikael adds the app *test.exe* to the **Program settings** section. In the options for that app, under **Data Execution Prevention (DEP)**, Mikael enables the **Override system settings** option and sets the switch to **On**. There are no other apps listed in the **Program settings** section.
 
-The result will be that DEP only will be enabled for *test.exe*. All other apps will not have DEP applied.
+The result is that DEP is enabled only for *test.exe*. All other apps will not have DEP applied.
 
 ### Example 2: Josie configures Data Execution Prevention in system settings to be off by default
 
@@ -88,38 +88,38 @@ Josie adds the app *test.exe* to the **Program settings** section. In the option
 
 Josie also adds the app *miles.exe* to the **Program settings** section and configures **Control flow guard (CFG)** to **On**. Josie doesn't enable the **Override system settings** option for DEP or any other mitigations for that app.
 
-The result will be that DEP will be enabled for *test.exe*. DEP will not be enabled for any other app, including *miles.exe*. CFG will be enabled for *miles.exe*.
+The result is that DEP is enabled for *test.exe*. DEP will not be enabled for any other app, including *miles.exe*. CFG will be enabled for *miles.exe*.
 
-1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
+1. Open the Windows Security app by selecting the shield icon in the task bar or searching the start menu for **Defender**.
 
-2. Click the **App & browser control** tile (or the app icon on the left menu bar) and then click **Exploit protection**.
+2. Select the **App & browser control** tile (or the app icon on the left menu bar) and then select **Exploit protection**.
 
 3. Go to **Program settings** and choose the app you want to apply mitigations to.<br/>
-    - If the app you want to configure is already listed, click it and then click **Edit**.
-    - If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app.<br/>
+    - If the app you want to configure is already listed, select it, and then select **Edit**.
+    - If the app is not listed, at the top of the list se;ect **Add program to customize** and then choose how you want to add the app.<br/>
      - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
      - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You will be notified if you need to restart the process or app, or if you need to restart Windows.
 
-5. Repeat steps 3-4 for all the apps and mitigations you want to configure. Click **Apply** when you're done setting up your configuration.
+5. Repeat steps 3-4 for all the apps and mitigations you want to configure. Select **Apply** when you're done setting up your configuration.
 
 ## Intune
 
 1. Sign in to the [Azure portal](https://portal.azure.com) and open Intune.
 
-2. Click **Device configuration** > **Profiles** > **Create profile**.
+2. Go to **Device configuration** > **Profiles** > **Create profile**.
 
 3. Name the profile, choose **Windows 10 and later** and **Endpoint protection**.<br/>
    ![Create endpoint protection profile](../images/create-endpoint-protection-profile.png)<br/>
 
-4. Click **Configure** > **Windows Defender Exploit Guard** > **Exploit protection**.
+4. Select **Configure** > **Windows Defender Exploit Guard** > **Exploit protection**.
 
 5. Upload an [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) with the exploit protection settings:<br/>![Enable network protection in Intune](../images/enable-ep-intune.png)<br/>
 
-6. Click **OK** to save each open blade and click **Create**.
+6. Select **OK** to save each open blade, and then choose **Create**.
 
-7. Click the profile **Assignments**, assign to **All Users & All Devices**, and click **Save**.
+7. Select the profile **Assignments** tab, assign the policy to **All Users & All Devices**, and then select **Save**.
 
 ## MDM
 
@@ -127,42 +127,42 @@ Use the [./Vendor/MSFT/Policy/Config/ExploitGuard/ExploitProtectionSettings](htt
 
 ## Microsoft Endpoint Manager
 
-1. In Microsoft Endpoint Manager, click **Endpoint Security** > **Attack surface reduction**. 
+1. In Microsoft Endpoint Manager, go to **Endpoint Security** > **Attack surface reduction**. 
 
-2. Click **Create Policy**, select **Platform**, and under **Profile** choose **Exploit Protection**. Click **Create**.
+2. Select **Create Policy** > **Platform**, and for **Profile**, choose **Exploit Protection**. Then select **Create**.
 
-3. Enter a name and a description, and click **Next**.
+3. Specify a name and a description, and then choose **Next**.
 
-4. Click **Select XML File** and browse to the location of the exploit protection XML file, then select it and click **Next**.
+4. Select **Select XML File** and browse to the location of the exploit protection XML file. Select the file, and then choose **Next**.
 
 5. Configure **Scope tags** and **Assignments** if necessary. 
 
-6. Under **Review + create**, review the configuration and click **Create** if everything is ok.
+6. Under **Review + create**, review the configuration and then choose **Create**.
 
 
 ## Microsoft Endpoint Configuration Manager
 
-1. In Microsoft Endpoint Configuration Manager, click **Assets and Compliance** > **Endpoint Protection** > **Windows Defender Exploit Guard**.
+1. In Microsoft Endpoint Configuration Manager, go to **Assets and Compliance** > **Endpoint Protection** > **Windows Defender Exploit Guard**.
 
-2. Click **Home** > **Create Exploit Guard Policy**.
+2. Select **Home** > **Create Exploit Guard Policy**.
 
-3. Enter a name and a description, click **Exploit protection**, and click **Next**.
+3. Specify a name and a description, select **Exploit protection**, and then choose **Next**.
 
-4. Browse to the location of the exploit protection XML file and click **Next**.
+4. Browse to the location of the exploit protection XML file and select **Next**.
 
-5. Review the settings and click **Next** to create the policy.
+5. Review the settings, and then choose **Next** to create the policy.
 
-6. After the policy is created, click **Close**.
+6. After the policy is created, select **Close**.
 
 ## Group Policy
 
 1. On your Group Policy management device, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
 
-2. In the **Group Policy Management Editor** go to **Computer configuration** and click **Administrative templates**.
+2. In the **Group Policy Management Editor** go to **Computer configuration** and select **Administrative templates**.
 
 3. Expand the tree to **Windows components** > **Windows Defender Exploit Guard** > **Exploit Protection** > **Use a common set of exploit protection settings**.
 
-4. Click **Enabled** and type the location of the [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) and click **OK**.
+4. Select **Enabled** and type the location of the [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard), and then choose **OK**.
 
 ## PowerShell
 
@@ -222,27 +222,27 @@ This table lists the individual **Mitigations** (and **Audits**, when available)
 
 | Mitigation type | Applies to | Mitigation cmdlet parameter keyword | Audit mode cmdlet parameter |
 | :-------------- | :--------- | :---------------------------------- | :-------------------------- |
-| Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available |
-| Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available |
-| Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available |
-| Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   BottomUp,   HighEntropy  | Audit not available
-| Validate exception chains (SEHOP) | System and app-level |   SEHOP,   SEHOPTelemetry  | Audit not available |
-| Validate heap integrity | System and app-level |   TerminateOnError  | Audit not available |
-| Arbitrary code guard (ACG) | App-level only |   DynamicCode  |   AuditDynamicCode |
-| Block low integrity images | App-level only |   BlockLowLabel  |   AuditImageLoad |
-| Block remote images | App-level only |   BlockRemoteImages  | Audit not available |
-| Block untrusted fonts | App-level only |   DisableNonSystemFonts  |   AuditFont,   FontAuditOnly |
-| Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreSigned  |   AuditMicrosoftSigned,   AuditStoreSigned |
-| Disable extension points | App-level only |   ExtensionPoint  | Audit not available |
-| Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall |
-| Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess |
-| Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-| Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-| Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-| Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
-| Validate handle usage | App-level only |   StrictHandle  | Audit not available |
-| Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available |
-| Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Control flow guard (CFG) | System and app-level |   `CFG`,   `StrictCFG`,   `SuppressExports`  | Audit not available |
+| Data Execution Prevention (DEP) | System and app-level |   `DEP`,   `EmulateAtlThunks`  | Audit not available |
+| Force randomization for images (Mandatory ASLR) | System and app-level |   `ForceRelocateImages`  | Audit not available |
+| Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   `BottomUp`,   `HighEntropy`  | Audit not available
+| Validate exception chains (SEHOP) | System and app-level |   `SEHOP`,   `SEHOPTelemetry`  | Audit not available |
+| Validate heap integrity | System and app-level |   `TerminateOnError`  | Audit not available |
+| Arbitrary code guard (ACG) | App-level only |   `DynamicCode`  |   `AuditDynamicCode` |
+| Block low integrity images | App-level only |   `BlockLowLabel`  |   `AuditImageLoad` |
+| Block remote images | App-level only |   `BlockRemoteImages`  | Audit not available |
+| Block untrusted fonts | App-level only |   `DisableNonSystemFonts`  |   `AuditFont`,   `FontAuditOnly` |
+| Code integrity guard | App-level only |   `BlockNonMicrosoftSigned`,   `AllowStoreSigned`  |   AuditMicrosoftSigned,   AuditStoreSigned |
+| Disable extension points | App-level only |   `ExtensionPoint`  | Audit not available |
+| Disable Win32k system calls | App-level only |   `DisableWin32kSystemCalls`  |   `AuditSystemCall` |
+| Do not allow child processes | App-level only |   `DisallowChildProcessCreation`  |   `AuditChildProcess` |
+| Export address filtering (EAF) | App-level only |   `EnableExportAddressFilterPlus`,   `EnableExportAddressFilter`  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Import address filtering (IAF) | App-level only |   `EnableImportAddressFilter`  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Simulate execution (SimExec) | App-level only |   `EnableRopSimExec`  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Validate API invocation (CallerCheck) | App-level only |   `EnableRopCallerCheck`  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+| Validate handle usage | App-level only |   `StrictHandle`  | Audit not available |
+| Validate image dependency integrity | App-level only |   `EnforceModuleDepencySigning`  | Audit not available |
+| Validate stack integrity (StackPivot) | App-level only |   `EnableRopStackPivot`  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
 
 <a href="#t1" id="r1">\[1\]</a>: Use the following format to enable EAF modules for DLLs for a process:
 
@@ -253,10 +253,10 @@ Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlu
 
 ## Customize the notification
 
-See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) topic for more information about customizing the notification when a rule is triggered and blocks an app or file.
+See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) article for more information about customizing the notification when a rule is triggered and blocks an app or file.
 
 ## See also
 
-* [Evaluate exploit protection](evaluate-exploit-protection.md)
-* [Configure and audit exploit protection mitigations](customize-exploit-protection.md)
-* [Import, export, and deploy exploit protection configurations](import-export-exploit-protection-emet-xml.md)
+- [Evaluate exploit protection](evaluate-exploit-protection.md)
+- [Configure and audit exploit protection mitigations](customize-exploit-protection.md)
+- [Import, export, and deploy exploit protection configurations](import-export-exploit-protection-emet-xml.md)

From eee81169e423a772145ed9ed0b340cb62779f1fd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:54:30 -0800
Subject: [PATCH 584/825] Update faq-md-app-guard.md

---
 .../faq-md-app-guard.md                       | 32 +++++++++----------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index 1848ca38b2..fa3402a679 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -8,7 +8,7 @@ ms.pagetype: security
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 11/03/2020
+ms.date: 01/21/2021
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
@@ -146,7 +146,7 @@ There is a known issue such that if you change the Exploit Protection settings f
 
 ICS is enabled by default in Windows, and ICS must be enabled in order for Application Guard to function correctly. We do not recommend disabling ICS; however, you can disable ICS in part by using a Group Policy and editing registry keys.
 
-1. In the Group Policy setting called, *Prohibit use of Internet Connection Sharing on your DNS domain network*, set it to **Disabled**. 
+1. In the Group Policy setting, **Prohibit use of Internet Connection Sharing on your DNS domain network**, set it to **Disabled**. 
 
 2. Disable IpNat.sys from ICS load as follows: <br/> 
 `System\CurrentControlSet\Services\SharedAccess\Parameters\DisableIpNat = 1`
@@ -160,24 +160,24 @@ ICS is enabled by default in Windows, and ICS must be enabled in order for Appli
 5. Reboot the device.
 
 ### Why doesn't the container fully load when device control policies are enabled?
-The whitelisting of these items are required to be allowed in the GPO to ensure AppGuard works properly. 
+Allow-listed items must be configured as "allowed" in the Group Policy Object ensure AppGuard works properly. 
 
 Policy: Allow installation of devices that match any of these device IDs 
-- SCSI\DiskMsft____Virtual_Disk____ 
-- {8e7bd593-6e6c-4c52-86a6-77175494dd8e}\msvhdhba 
-- VMS_VSF 
-- root\Vpcivsp 
-- root\VMBus 
-- vms_mp 
-- VMS_VSP 
-- ROOT\VKRNLINTVSP 
-- ROOT\VID 
-- root\storvsp 
-- vms_vsmp 
-- VMS_PP 
+- `SCSI\DiskMsft____Virtual_Disk____` 
+- `{8e7bd593-6e6c-4c52-86a6-77175494dd8e}\msvhdhba` 
+- `VMS_VSF` 
+- `root\Vpcivsp` 
+- `root\VMBus` 
+- `vms_mp` 
+- `VMS_VSP` 
+- `ROOT\VKRNLINTVSP`
+- `ROOT\VID` 
+- `root\storvsp` 
+- `vms_vsmp` 
+- `VMS_PP` 
 
 Policy: Allow installation of devices using drivers that match these device setup classes 
-- {71a27cdd-812a-11d0-bec7-08002be2092f}
+- `{71a27cdd-812a-11d0-bec7-08002be2092f}`
 
 
 

From 8447db3932bab19ae311d31c2f4b71518046b009 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 16:59:28 -0800
Subject: [PATCH 585/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index d1fbec7602..cfe3a3b543 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: tewchen, pahuijbr, shwjha
 manager: dansimp
-ms.date: 01/11/2021
+ms.date: 01/21/2021
 ---
 
 # Microsoft Defender Antivirus compatibility

From 8d61742e2b7149360bbd336c1ae6570b8897bba1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:03:31 -0800
Subject: [PATCH 586/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md          | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index cfe3a3b543..7b5e23bd1d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -47,14 +47,17 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       Yes                       |            Active mode            |
 | Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       No                        |            Active mode            |
 
-(<a id="fn1">1</a>)  On Windows Server 2016 or 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
+(<a id="fn1">1</a>)  On Windows Server, version 1803 or newer, or Windows Server 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 
-If you are using Windows Server, version 1803 or Windows Server 2019, you set Microsoft Defender Antivirus to passive mode by setting this registry key:
+If you are using Windows Server, version 1803 or newer, or Windows Server 2019, set Microsoft Defender Antivirus to passive mode by setting this registry key:
 - Path: `HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection`
 - Name: `ForceDefenderPassiveMode`
 - Type: `REG_DWORD`
 - Value: `1`
 
+> [!NOTE]
+> The `ForceDefenderPassiveMode` registry key is not supported on Windows Server 2016.
+
 See [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-defender-antivirus-on-windows-server-2016.md) for key differences and management options for Windows Server installations.
 
 > [!IMPORTANT]

From e2c503e9ee71bb8a38959667b3b79793da2e03be Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:14:57 -0800
Subject: [PATCH 587/825] Update microsoft-defender-antivirus-compatibility.md

---
 ...icrosoft-defender-antivirus-compatibility.md | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 7b5e23bd1d..46b7cc2375 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -38,14 +38,15 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 
 | Windows version   | Antimalware protection  | Microsoft Defender for Endpoint enrollment | Microsoft Defender Antivirus state     |
 |------|------|-------|-------|
-| Windows 10      | A third-party product that is not offered or developed by Microsoft |                       Yes                       |           Passive mode            |
-| Windows 10      | A third-party product that is not offered or developed by Microsoft |                       No                        |      Automatic disabled mode     |
-| Windows 10      |                         Microsoft Defender Antivirus                         |                       Yes                       |            Active mode            |
-| Windows 10      |                         Microsoft Defender Antivirus                         |                       No                        |            Active mode            |
-| Windows Server 2016 or 2019 | A third-party product that is not offered or developed by Microsoft |                       Yes                       | Active mode<sup>[[1](#fn1)]</sup> |
-| Windows Server 2016 or 2019 | A third-party product that is not offered or developed by Microsoft |                       No                        | Active mode<sup>[[1](#fn1)]<sup>  |
-| Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       Yes                       |            Active mode            |
-| Windows Server 2016 or 2019 |                         Microsoft Defender Antivirus                         |                       No                        |            Active mode            |
+| Windows 10  | A third-party product that is not offered or developed by Microsoft | Yes  | Passive mode  |
+| Windows 10  | A third-party product that is not offered or developed by Microsoft | No   | Automatic disabled mode     |
+| Windows 10  | Microsoft Defender Antivirus | Yes  | Active mode | 
+| Windows 10  | Microsoft Defender Antivirus | No   | Active mode |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | Yes  | Active mode<sup>[[1](#fn1)]</sup> |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | No  | Must be set to passive mode (manually)<sup>[[1](#fn1)]<sup>  |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus  | Yes |         Active mode  |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus | No  | Active mode |
+| Windows Server 2016 |
 
 (<a id="fn1">1</a>)  On Windows Server, version 1803 or newer, or Windows Server 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 

From d10b40afc256e861288a93668c30574429bb9f58 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:18:31 -0800
Subject: [PATCH 588/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md          | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 46b7cc2375..c45faf38d2 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -46,11 +46,14 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | No  | Must be set to passive mode (manually)<sup>[[1](#fn1)]<sup>  |
 | Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus  | Yes |         Active mode  |
 | Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus | No  | Active mode |
-| Windows Server 2016 |
+| Windows Server 2016 | Microsoft Defender Antivirus | Yes | Active mode |
+| Windows Server 2016 | Microsoft Defender Antivirus | No | Active mode |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | Yes | Must be disabled (manually) |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | No | Must be disabled (manually) |
 
 (<a id="fn1">1</a>)  On Windows Server, version 1803 or newer, or Windows Server 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 
-If you are using Windows Server, version 1803 or newer, or Windows Server 2019, set Microsoft Defender Antivirus to passive mode by setting this registry key:
+If you are using Windows Server, version 1803 or newer, or Windows Server 2019, you can set Microsoft Defender Antivirus to passive mode by setting the following registry key:
 - Path: `HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection`
 - Name: `ForceDefenderPassiveMode`
 - Type: `REG_DWORD`

From 41bfb6b812a58807aeb91015fc2a91ffd8b60a7f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:19:25 -0800
Subject: [PATCH 589/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index c45faf38d2..0692acb1cc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -65,7 +65,7 @@ If you are using Windows Server, version 1803 or newer, or Windows Server 2019,
 See [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-defender-antivirus-on-windows-server-2016.md) for key differences and management options for Windows Server installations.
 
 > [!IMPORTANT]
-> Microsoft Defender Antivirus is only available on endpoints running Windows 10, Windows Server 2016, and Windows Server 2019.
+> Microsoft Defender Antivirus is only available on devices running Windows 10, Windows Server 2016, Windows Server, version 1803 or later, and Windows Server 2019.
 >
 > In Windows 8.1 and Windows Server 2012, enterprise-level endpoint antivirus protection is offered as [System Center Endpoint Protection](https://technet.microsoft.com/library/hh508760.aspx), which is managed through Microsoft Endpoint Configuration Manager.
 >

From ef0d62339eb41daa0eea559148041bdbca9848fd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:21:35 -0800
Subject: [PATCH 590/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 0692acb1cc..a6bc15c92a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -88,7 +88,7 @@ The table in this section summarizes the functionality and features that are ava
 - In Active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
 - In Passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
 - When [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md) is turned on and Microsoft Defender Antivirus is not the primary antivirus solution, it can still detect and remediate malicious items.
-- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended.
+- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended in general; if possible, keep Microsoft Defender Antivirus in passive mode if you are using a non-Microsoft antimalware/antivirus solution.
 
 ## Keep the following points in mind
 

From 42556272847a811b535fac7e4f3c6a5d1bcd5a04 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:35:48 -0800
Subject: [PATCH 591/825] Update
 microsoft-defender-antivirus-on-windows-server-2016.md

---
 ...fender-antivirus-on-windows-server-2016.md | 45 ++++++++++++-------
 1 file changed, 30 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index c16f2a4930..353bfe7752 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -10,7 +10,7 @@ ms.sitesec: library
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 01/04/2021
+ms.date: 01/21/2021
 ms.reviewer: pahuijbr, shwjha
 manager: dansimp
 ---
@@ -23,9 +23,12 @@ manager: dansimp
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Microsoft Defender Antivirus is available on Windows Server 2016 and 2019. In some instances, Microsoft Defender Antivirus is referred to as *Endpoint Protection*; however, the protection engine is the same.
+Microsoft Defender Antivirus is available on the following editions/versions of Windows Server:
+- Windows Server 2019
+- Windows Server, version  1803 or later
+- Windows Server 2016. 
 
-While the functionality, configuration, and management are largely the same for [Microsoft Defender Antivirus on Windows 10](microsoft-defender-antivirus-in-windows-10.md), there are a few key differences on Windows Server 2016 and 2019:
+In some instances, Microsoft Defender Antivirus is referred to as *Endpoint Protection*; however, the protection engine is the same. Although the functionality, configuration, and management are largely the same for [Microsoft Defender Antivirus on Windows 10](microsoft-defender-antivirus-in-windows-10.md), there are a few key differences on Windows Server:
 
 - In Windows Server, [automatic exclusions](configure-server-exclusions-microsoft-defender-antivirus.md) are applied based on your defined Server Role.
 - In Windows Server, Microsoft Defender Antivirus does not automatically disable itself if you are running another antivirus product.
@@ -34,29 +37,29 @@ While the functionality, configuration, and management are largely the same for
 
 The process of setting up and running Microsoft Defender Antivirus on a server platform includes several steps:
 
-1. [Enable the interface](#enable-the-user-interface-on-windows-server-2016-or-2019).
-2. [Install Microsoft Defender Antivirus](#install-microsoft-defender-antivirus-on-windows-server-2016-or-2019).
+1. [Enable the interface](#enable-the-user-interface-on-windows-server).
+2. [Install Microsoft Defender Antivirus](#install-microsoft-defender-antivirus-on-windows-server).
 3. [Verify Microsoft Defender Antivirus is running](#verify-microsoft-defender-antivirus-is-running).
 4. [Update your antimalware Security intelligence](#update-antimalware-security-intelligence).
 5. (As needed) [Submit samples](#submit-samples).
 6. (As needed) [Configure automatic exclusions](#configure-automatic-exclusions).
 7. (Only if necessary) [Set Microsoft Defender Antivirus to passive mode](#need-to-set-microsoft-defender-antivirus-to-passive-mode).
 
-## Enable the user interface on Windows Server 2016 or 2019
+## Enable the user interface on Windows Server
 
-By default, Microsoft Defender Antivirus is installed and functional on Windows Server 2016 and 2019. The user interface (GUI) is installed by default on some SKUs, but is not required because you can use PowerShell or other methods to manage Microsoft Defender Antivirus. And if the GUI is not installed on your server, you can add it by using the Add Roles and Features Wizard or by using PowerShell.
+By default, Microsoft Defender Antivirus is installed and functional on Windows Server. The user interface (GUI) is installed by default on some SKUs, but is not required because you can use PowerShell or other methods to manage Microsoft Defender Antivirus. If the GUI is not installed on your server, you can add it by using the **Add Roles and Features** wizard, or by using PowerShell cmdlets.
 
 ### Turn on the GUI using the Add Roles and Features Wizard
 
-1. Refer to [this article](https://docs.microsoft.com/windows-server/administration/server-manager/install-or-uninstall-roles-role-services-or-features#install-roles-role-services-and-features-by-using-the-add-roles-and-features-wizard), and use the **Add Roles and Features Wizard**.
+1. See [Install roles, role services, and features by using the add Roles and Features Wizard](https://docs.microsoft.com/windows-server/administration/server-manager/install-or-uninstall-roles-role-services-or-features#install-roles-role-services-and-features-by-using-the-add-roles-and-features-wizard), and use the **Add Roles and Features Wizard**.
 
 2. When you get to the **Features** step of the wizard, under **Windows Defender Features**, select the **GUI for Windows Defender** option.
 
-In Windows Server 2016, the **Add Roles and Features Wizard** looks like this:
+   In Windows Server 2016, the **Add Roles and Features Wizard** looks like this:
 
-![Add roles and feature wizard showing the GUI for Windows Defender option](images/server-add-gui.png)
+   ![Add roles and feature wizard showing the GUI for Windows Defender option](images/server-add-gui.png)
 
-In Windows Server 2019, the **Add Roles and Feature Wizard** looks much the same.
+   In Windows Server 2019, the **Add Roles and Feature Wizard** is similar.
 
 ### Turn on the GUI using PowerShell
 
@@ -66,7 +69,7 @@ The following PowerShell cmdlet will enable the interface:
 Install-WindowsFeature -Name Windows-Defender-GUI
 ```
 
-## Install Microsoft Defender Antivirus on Windows Server 2016 or 2019
+## Install Microsoft Defender Antivirus on Windows Server
 
 You can use either the **Add Roles and Features Wizard** or PowerShell to install Microsoft Defender Antivirus.
 
@@ -111,7 +114,7 @@ The `sc query` command returns information about the Microsoft Defender Antiviru
 
 ## Update antimalware Security intelligence 
 
-In order to get updated antimalware Security intelligence, you must have the Windows Update service running. If you use an update management service, like Windows Server Update Services (WSUS), make sure that updates for Microsoft Defender Antivirus Security intelligence are approved for the computers you manage.
+To get updated antimalware security intelligence, you must have the Windows Update service running. If you use an update management service, like Windows Server Update Services (WSUS), make sure that updates for Microsoft Defender Antivirus Security intelligence are approved for the computers you manage.
 
 By default, Windows Update does not download and install updates automatically on Windows Server 2019 or Windows Server 2016. You can change this configuration by using one of the following methods:
 
@@ -195,10 +198,22 @@ To turn off the Microsoft Defender Antivirus GUI, use the following PowerShell c
 Uninstall-WindowsFeature -Name Windows-Defender-GUI
 ```
 
+### Are you using Windows Server 2016?
+
+If you are using Windows Server 2016 and a third-party antimalware/antivirus product that is not offered or developed by Microsoft, you'll need to disable/uninstall Microsoft Defender Antivirus. 
+
+> [!NOTE]
+> You can't uninstall the Windows Security app, but you can disable the interface with these instructions.
+
+The following PowerShell cmdlet uninstalls Microsoft Defender Antivirus on Windows Server 2016:
+
+```PowerShell
+Uninstall-WindowsFeature -Name Windows-Defender
+```
+
 ## See also
 
 - [Microsoft Defender Antivirus in Windows 10](microsoft-defender-antivirus-in-windows-10.md)
-
-- [Configure exclusions in Microsoft Defender AV on Windows Server](configure-server-exclusions-microsoft-defender-antivirus.md) 
+- [Microsoft Defender Antivirus compatibility](microsoft-defender-antivirus-compatibility.md)
 
 

From e72cde14b8c06a9e8261c1e1ea7ee71c4afa0ea6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:38:51 -0800
Subject: [PATCH 592/825] Update
 microsoft-defender-antivirus-on-windows-server-2016.md

---
 .../microsoft-defender-antivirus-on-windows-server-2016.md    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index 353bfe7752..abb618c7a2 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -1,5 +1,5 @@
 ---
-title: Microsoft Defender Antivirus on Windows Server 2016 and 2019
+title: Microsoft Defender Antivirus on Windows Server
 description: Learn how to enable and configure Microsoft Defender Antivirus on Windows Server 2016 and Windows Server 2019.
 keywords: windows defender, server, scep, system center endpoint protection, server 2016, current branch, server 2012
 search.product: eADQiWindows 10XVcnh
@@ -15,7 +15,7 @@ ms.reviewer: pahuijbr, shwjha
 manager: dansimp
 ---
 
-# Microsoft Defender Antivirus on Windows Server 2016 and Windows Server 2019
+# Microsoft Defender Antivirus on Windows Server
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 

From 400c3845e5e3d30912695c0762f6cfa43480681a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 20 Jan 2021 17:43:58 -0800
Subject: [PATCH 593/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md         | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index a6bc15c92a..48a74184e5 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -48,8 +48,8 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus | No  | Active mode |
 | Windows Server 2016 | Microsoft Defender Antivirus | Yes | Active mode |
 | Windows Server 2016 | Microsoft Defender Antivirus | No | Active mode |
-| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | Yes | Must be disabled (manually) |
-| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | No | Must be disabled (manually) |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | Yes | Must be disabled (manually)<sup>[[2](#fn2)]<sup> |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | No | Must be disabled (manually)<sup>[[2](#fn2)]<sup> |
 
 (<a id="fn1">1</a>)  On Windows Server, version 1803 or newer, or Windows Server 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 
@@ -62,7 +62,9 @@ If you are using Windows Server, version 1803 or newer, or Windows Server 2019,
 > [!NOTE]
 > The `ForceDefenderPassiveMode` registry key is not supported on Windows Server 2016.
 
-See [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-defender-antivirus-on-windows-server-2016.md) for key differences and management options for Windows Server installations.
+(<a id="fn2">2</a>) On Windows Server 2016, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In addition, Microsoft Defender Antivirus is not supported in passive mode. In those cases, [disable/uninstall Microsoft Defender Antivirus manually](microsoft-defender-antivirus-on-windows-server-2016.md#are-you-using-windows-server-2016) to prevent problems caused by having multiple antivirus products installed on a server.
+
+See [Microsoft Defender Antivirus on Windows Server](microsoft-defender-antivirus-on-windows-server-2016.md) for key differences and management options for Windows Server installations.
 
 > [!IMPORTANT]
 > Microsoft Defender Antivirus is only available on devices running Windows 10, Windows Server 2016, Windows Server, version 1803 or later, and Windows Server 2019.

From 335d1e5f9d55d815a9568d45ffa5a8f55d34fc37 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Wed, 20 Jan 2021 18:15:27 -0800
Subject: [PATCH 594/825] fixing policy conflict description

---
 .../hello-manage-in-organization.md              | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-manage-in-organization.md b/windows/security/identity-protection/hello-for-business/hello-manage-in-organization.md
index 18f6f3dbf0..c21280812b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-manage-in-organization.md
+++ b/windows/security/identity-protection/hello-for-business/hello-manage-in-organization.md
@@ -15,7 +15,7 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 ms.localizationpriority: medium
-ms.date: 4/16/2017
+ms.date: 1/20/2021
 ---
 
 # Manage Windows Hello for Business in your organization
@@ -369,9 +369,11 @@ For more information about using the PIN recovery service for PIN reset see [Win
 
 Windows Hello for Business is designed to be managed by Group Policy or MDM but not a combination of both. If policies are set from both sources it can result in a mixed result of what is actually enforced for a user or device.
 
-Policies for Windows Hello for Business are enforced using the following hierarchy: User Group Policy > Computer Group Policy > User MDM > Device MDM > Device Lock policy. All PIN complexity policies are grouped together and enforced from a single policy source.
+Policies for Windows Hello for Business are enforced using the following hierarchy: User Group Policy > Computer Group Policy > User MDM > Device MDM > Device Lock policy. 
 
-Use a hardware security device and RequireSecurityDevice enforcement are also grouped together with PIN complexity policy. Conflict resolution for other Windows Hello for Business policies is enforced on a per policy basis.  
+Feature enablement policy and certificate trust policy are grouped together and enforced from the same source (either GP or MDM), based on the rule above. The Use Passport for Work policy is used to determine the winning policy source.
+
+All PIN complexity policies, are grouped separately from feature enablement and are enforced from a single policy source. Use a hardware security device and RequireSecurityDevice enforcement are also grouped together with PIN complexity policy. Conflict resolution for other Windows Hello for Business policies are enforced on a per policy basis.  
 
 >[!NOTE]
 > Windows Hello for Business policy conflict resolution logic does not respect the ControlPolicyConflict/MDMWinsOverGP policy in the Policy CSP.
@@ -382,8 +384,6 @@ Use a hardware security device and RequireSecurityDevice enforcement are also gr
 >
 >- Use Windows Hello for Business - Enabled
 >- User certificate for on-premises authentication - Enabled
->- Require digits - Enabled
->- Minimum PIN length - 6
 >
 >The following are configured using device MDM Policy:
 >
@@ -398,8 +398,10 @@ Use a hardware security device and RequireSecurityDevice enforcement are also gr
 >
 >- Use Windows Hello for Business - Enabled
 >- Use certificate for on-premises authentication - Enabled
->- Require digits - Enabled
->- Minimum PIN length - 6d
+>- MinimumPINLength - 8
+>- Digits - 1
+>- LowercaseLetters - 1
+>- SpecialCharacters - 1
 
 ## How to use Windows Hello for Business with Azure Active Directory
 

From f58a1d313db4131878d90d90a046a0bf8977b0d2 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Thu, 21 Jan 2021 19:07:44 +0530
Subject: [PATCH 595/825] changed minutes to seconds

as per user report #8995 , so i changed minutes to seconds
i took help from below site
**https://docs.microsoft.com/en-us/openspecs/exchange_server_protocols/ms-asprov/7dcdd2c3-43ca-4425-b8d4-443b1d2c0638**
---
 windows/client-management/mdm/policy-csp-devicelock.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-devicelock.md b/windows/client-management/mdm/policy-csp-devicelock.md
index f68a71f820..b106637736 100644
--- a/windows/client-management/mdm/policy-csp-devicelock.md
+++ b/windows/client-management/mdm/policy-csp-devicelock.md
@@ -677,7 +677,7 @@ The following list shows the supported values:
 
 <!--/Scope-->
 <!--Description-->
-Specifies the maximum amount of time (in minutes) allowed after the device is idle that will cause the device to become PIN or password locked. Users can select any existing timeout value less than the specified maximum time in the Settings app.
+Specifies the maximum amount of time (in seconds) allowed after the device is idle that will cause the device to become PIN or password locked. Users can select any existing timeout value less than the specified maximum time in the Settings app.
 
 * On Mobile, the Lumia 950 and 950XL have a maximum timeout value of 5 minutes, regardless of the value set by this policy.
 * On HoloLens, this timeout is controlled by the device's system sleep timeout, regardless of the value set by this policy.

From dcfe63e86640629e005d2ac01d4ef8389d3059b6 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 21 Jan 2021 09:51:09 -0800
Subject: [PATCH 596/825] Acrolinx: "se;ect", "Powershell"

---
 .../enable-exploit-protection.md                      | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index aafa081de2..2ff87af1ae 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -96,7 +96,7 @@ The result is that DEP is enabled for *test.exe*. DEP will not be enabled for an
 
 3. Go to **Program settings** and choose the app you want to apply mitigations to.<br/>
     - If the app you want to configure is already listed, select it, and then select **Edit**.
-    - If the app is not listed, at the top of the list se;ect **Add program to customize** and then choose how you want to add the app.<br/>
+    - If the app is not listed, at the top of the list select **Add program to customize** and then choose how you want to add the app.<br/>
      - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
      - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
@@ -110,12 +110,15 @@ The result is that DEP is enabled for *test.exe*. DEP will not be enabled for an
 
 2. Go to **Device configuration** > **Profiles** > **Create profile**.
 
-3. Name the profile, choose **Windows 10 and later** and **Endpoint protection**.<br/>
+3. Name the profile, choose **Windows 10 and later** and **Endpoint protection**.
+
    ![Create endpoint protection profile](../images/create-endpoint-protection-profile.png)<br/>
 
 4. Select **Configure** > **Windows Defender Exploit Guard** > **Exploit protection**.
 
-5. Upload an [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) with the exploit protection settings:<br/>![Enable network protection in Intune](../images/enable-ep-intune.png)<br/>
+5. Upload an [XML file](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-exploitguard) with the exploit protection settings:
+
+   ![Enable network protection in Intune](../images/enable-ep-intune.png)<br/>
 
 6. Select **OK** to save each open blade, and then choose **Create**.
 
@@ -249,7 +252,7 @@ This table lists the individual **Mitigations** (and **Audits**, when available)
 ```PowerShell
 Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlus -EAFModules dllName1.dll,dllName2.dll
 ```
-<a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via Powershell cmdlets.
+<a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via PowerShell cmdlets.
 
 ## Customize the notification
 

From c93d7f2b6c92de90d27d9a8f396bc4228707d38e Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 21 Jan 2021 10:21:50 -0800
Subject: [PATCH 597/825] massive prod & technology metadata update

---
 .../advanced-security-audit-policy-settings.md    |  3 ++-
 .../auditing/advanced-security-auditing-faq.md    |  3 ++-
 .../auditing/advanced-security-auditing.md        |  3 ++-
 ...oring-recommendations-for-many-audit-events.md |  3 ++-
 ...ly-a-basic-audit-policy-on-a-file-or-folder.md |  3 ++-
 .../auditing/audit-account-lockout.md             |  3 ++-
 .../auditing/audit-application-generated.md       |  3 ++-
 .../audit-application-group-management.md         |  3 ++-
 .../auditing/audit-audit-policy-change.md         |  3 ++-
 .../audit-authentication-policy-change.md         |  3 ++-
 .../auditing/audit-authorization-policy-change.md |  3 ++-
 .../audit-central-access-policy-staging.md        |  3 ++-
 .../auditing/audit-certification-services.md      |  3 ++-
 .../auditing/audit-computer-account-management.md |  3 ++-
 .../auditing/audit-credential-validation.md       |  3 ++-
 ...udit-detailed-directory-service-replication.md |  3 ++-
 .../auditing/audit-detailed-file-share.md         |  3 ++-
 .../auditing/audit-directory-service-access.md    |  3 ++-
 .../auditing/audit-directory-service-changes.md   |  3 ++-
 .../audit-directory-service-replication.md        |  3 ++-
 .../audit-distribution-group-management.md        |  3 ++-
 .../auditing/audit-dpapi-activity.md              |  3 ++-
 .../auditing/audit-file-share.md                  |  3 ++-
 .../auditing/audit-file-system.md                 |  3 ++-
 .../audit-filtering-platform-connection.md        |  3 ++-
 .../audit-filtering-platform-packet-drop.md       |  3 ++-
 .../audit-filtering-platform-policy-change.md     |  3 ++-
 .../auditing/audit-group-membership.md            |  3 ++-
 .../auditing/audit-handle-manipulation.md         |  3 ++-
 .../auditing/audit-ipsec-driver.md                |  3 ++-
 .../auditing/audit-ipsec-extended-mode.md         |  3 ++-
 .../auditing/audit-ipsec-main-mode.md             |  3 ++-
 .../auditing/audit-ipsec-quick-mode.md            |  3 ++-
 .../audit-kerberos-authentication-service.md      |  3 ++-
 .../audit-kerberos-service-ticket-operations.md   |  3 ++-
 .../auditing/audit-kernel-object.md               |  3 ++-
 .../threat-protection/auditing/audit-logoff.md    |  3 ++-
 .../threat-protection/auditing/audit-logon.md     |  3 ++-
 .../audit-mpssvc-rule-level-policy-change.md      |  3 ++-
 .../auditing/audit-network-policy-server.md       |  3 ++-
 .../auditing/audit-non-sensitive-privilege-use.md |  3 ++-
 .../auditing/audit-other-account-logon-events.md  |  3 ++-
 .../audit-other-account-management-events.md      |  3 ++-
 .../auditing/audit-other-logonlogoff-events.md    |  3 ++-
 .../auditing/audit-other-object-access-events.md  |  3 ++-
 .../auditing/audit-other-policy-change-events.md  |  3 ++-
 .../auditing/audit-other-privilege-use-events.md  |  5 +++--
 .../auditing/audit-other-system-events.md         |  3 ++-
 .../auditing/audit-pnp-activity.md                |  3 ++-
 .../auditing/audit-process-creation.md            |  3 ++-
 .../auditing/audit-process-termination.md         |  3 ++-
 .../threat-protection/auditing/audit-registry.md  |  3 ++-
 .../auditing/audit-removable-storage.md           |  3 ++-
 .../auditing/audit-rpc-events.md                  |  3 ++-
 .../threat-protection/auditing/audit-sam.md       |  3 ++-
 .../auditing/audit-security-group-management.md   |  3 ++-
 .../auditing/audit-security-state-change.md       |  3 ++-
 .../auditing/audit-security-system-extension.md   |  3 ++-
 .../auditing/audit-sensitive-privilege-use.md     |  3 ++-
 .../auditing/audit-special-logon.md               |  3 ++-
 .../auditing/audit-system-integrity.md            |  3 ++-
 .../auditing/audit-token-right-adjusted.md        |  3 ++-
 .../auditing/audit-user-account-management.md     |  3 ++-
 .../auditing/audit-user-device-claims.md          |  3 ++-
 .../auditing/basic-audit-account-logon-events.md  |  3 ++-
 .../auditing/basic-audit-account-management.md    |  3 ++-
 .../basic-audit-directory-service-access.md       |  3 ++-
 .../auditing/basic-audit-logon-events.md          |  3 ++-
 .../auditing/basic-audit-object-access.md         |  3 ++-
 .../auditing/basic-audit-policy-change.md         |  3 ++-
 .../auditing/basic-audit-privilege-use.md         |  3 ++-
 .../auditing/basic-audit-process-tracking.md      |  3 ++-
 .../auditing/basic-audit-system-events.md         |  3 ++-
 .../auditing/basic-security-audit-policies.md     |  3 ++-
 .../basic-security-audit-policy-settings.md       |  3 ++-
 ...audit-policy-settings-for-an-event-category.md |  3 ++-
 .../threat-protection/auditing/event-1100.md      |  3 ++-
 .../threat-protection/auditing/event-1102.md      |  3 ++-
 .../threat-protection/auditing/event-1104.md      |  5 +++--
 .../threat-protection/auditing/event-1105.md      |  3 ++-
 .../threat-protection/auditing/event-1108.md      |  3 ++-
 .../threat-protection/auditing/event-4608.md      |  3 ++-
 .../threat-protection/auditing/event-4610.md      |  3 ++-
 .../threat-protection/auditing/event-4611.md      |  3 ++-
 .../threat-protection/auditing/event-4612.md      |  3 ++-
 .../threat-protection/auditing/event-4614.md      |  3 ++-
 .../threat-protection/auditing/event-4615.md      |  3 ++-
 .../threat-protection/auditing/event-4616.md      |  3 ++-
 .../threat-protection/auditing/event-4618.md      |  3 ++-
 .../threat-protection/auditing/event-4621.md      |  3 ++-
 .../threat-protection/auditing/event-4622.md      |  3 ++-
 .../threat-protection/auditing/event-4624.md      |  3 ++-
 .../threat-protection/auditing/event-4625.md      |  3 ++-
 .../threat-protection/auditing/event-4626.md      |  3 ++-
 .../threat-protection/auditing/event-4627.md      |  3 ++-
 .../threat-protection/auditing/event-4634.md      |  3 ++-
 .../threat-protection/auditing/event-4647.md      |  3 ++-
 .../threat-protection/auditing/event-4648.md      |  3 ++-
 .../threat-protection/auditing/event-4649.md      |  3 ++-
 .../threat-protection/auditing/event-4656.md      |  3 ++-
 .../threat-protection/auditing/event-4657.md      |  3 ++-
 .../threat-protection/auditing/event-4658.md      |  3 ++-
 .../threat-protection/auditing/event-4660.md      |  3 ++-
 .../threat-protection/auditing/event-4661.md      |  3 ++-
 .../threat-protection/auditing/event-4662.md      |  3 ++-
 .../threat-protection/auditing/event-4663.md      |  3 ++-
 .../threat-protection/auditing/event-4664.md      |  3 ++-
 .../threat-protection/auditing/event-4670.md      |  3 ++-
 .../threat-protection/auditing/event-4671.md      |  3 ++-
 .../threat-protection/auditing/event-4672.md      |  3 ++-
 .../threat-protection/auditing/event-4673.md      |  3 ++-
 .../threat-protection/auditing/event-4674.md      |  3 ++-
 .../threat-protection/auditing/event-4675.md      |  3 ++-
 .../threat-protection/auditing/event-4688.md      |  3 ++-
 .../threat-protection/auditing/event-4689.md      |  3 ++-
 .../threat-protection/auditing/event-4690.md      |  3 ++-
 .../threat-protection/auditing/event-4691.md      |  3 ++-
 .../threat-protection/auditing/event-4692.md      |  3 ++-
 .../threat-protection/auditing/event-4693.md      |  3 ++-
 .../threat-protection/auditing/event-4694.md      |  3 ++-
 .../threat-protection/auditing/event-4695.md      |  3 ++-
 .../threat-protection/auditing/event-4696.md      |  3 ++-
 .../threat-protection/auditing/event-4697.md      |  3 ++-
 .../threat-protection/auditing/event-4698.md      |  3 ++-
 .../threat-protection/auditing/event-4699.md      |  3 ++-
 .../threat-protection/auditing/event-4700.md      |  3 ++-
 .../threat-protection/auditing/event-4701.md      |  3 ++-
 .../threat-protection/auditing/event-4702.md      |  3 ++-
 .../threat-protection/auditing/event-4703.md      |  3 ++-
 .../threat-protection/auditing/event-4704.md      |  3 ++-
 .../threat-protection/auditing/event-4705.md      |  3 ++-
 .../threat-protection/auditing/event-4706.md      |  3 ++-
 .../threat-protection/auditing/event-4707.md      |  3 ++-
 .../threat-protection/auditing/event-4713.md      |  3 ++-
 .../threat-protection/auditing/event-4714.md      |  3 ++-
 .../threat-protection/auditing/event-4715.md      |  3 ++-
 .../threat-protection/auditing/event-4716.md      |  3 ++-
 .../threat-protection/auditing/event-4717.md      |  3 ++-
 .../threat-protection/auditing/event-4718.md      |  3 ++-
 .../threat-protection/auditing/event-4719.md      |  3 ++-
 .../threat-protection/auditing/event-4720.md      |  3 ++-
 .../threat-protection/auditing/event-4722.md      |  3 ++-
 .../threat-protection/auditing/event-4723.md      |  3 ++-
 .../threat-protection/auditing/event-4724.md      |  3 ++-
 .../threat-protection/auditing/event-4725.md      |  3 ++-
 .../threat-protection/auditing/event-4726.md      |  3 ++-
 .../threat-protection/auditing/event-4731.md      |  3 ++-
 .../threat-protection/auditing/event-4732.md      |  3 ++-
 .../threat-protection/auditing/event-4733.md      |  3 ++-
 .../threat-protection/auditing/event-4734.md      |  3 ++-
 .../threat-protection/auditing/event-4735.md      |  3 ++-
 .../threat-protection/auditing/event-4738.md      |  3 ++-
 .../threat-protection/auditing/event-4739.md      |  3 ++-
 .../threat-protection/auditing/event-4740.md      |  3 ++-
 .../threat-protection/auditing/event-4741.md      |  3 ++-
 .../threat-protection/auditing/event-4742.md      |  3 ++-
 .../threat-protection/auditing/event-4743.md      |  3 ++-
 .../threat-protection/auditing/event-4749.md      |  3 ++-
 .../threat-protection/auditing/event-4750.md      |  3 ++-
 .../threat-protection/auditing/event-4751.md      |  3 ++-
 .../threat-protection/auditing/event-4752.md      |  3 ++-
 .../threat-protection/auditing/event-4753.md      |  3 ++-
 .../threat-protection/auditing/event-4764.md      |  5 +++--
 .../threat-protection/auditing/event-4765.md      |  3 ++-
 .../threat-protection/auditing/event-4766.md      |  3 ++-
 .../threat-protection/auditing/event-4767.md      |  3 ++-
 .../threat-protection/auditing/event-4768.md      |  3 ++-
 .../threat-protection/auditing/event-4769.md      |  3 ++-
 .../threat-protection/auditing/event-4770.md      |  3 ++-
 .../threat-protection/auditing/event-4771.md      |  3 ++-
 .../threat-protection/auditing/event-4772.md      |  3 ++-
 .../threat-protection/auditing/event-4773.md      |  3 ++-
 .../threat-protection/auditing/event-4774.md      |  3 ++-
 .../threat-protection/auditing/event-4775.md      |  3 ++-
 .../threat-protection/auditing/event-4776.md      |  3 ++-
 .../threat-protection/auditing/event-4777.md      |  3 ++-
 .../threat-protection/auditing/event-4778.md      |  3 ++-
 .../threat-protection/auditing/event-4779.md      |  3 ++-
 .../threat-protection/auditing/event-4780.md      |  3 ++-
 .../threat-protection/auditing/event-4781.md      |  3 ++-
 .../threat-protection/auditing/event-4782.md      |  3 ++-
 .../threat-protection/auditing/event-4793.md      |  3 ++-
 .../threat-protection/auditing/event-4794.md      |  3 ++-
 .../threat-protection/auditing/event-4798.md      |  3 ++-
 .../threat-protection/auditing/event-4799.md      |  3 ++-
 .../threat-protection/auditing/event-4800.md      |  3 ++-
 .../threat-protection/auditing/event-4801.md      |  3 ++-
 .../threat-protection/auditing/event-4802.md      |  3 ++-
 .../threat-protection/auditing/event-4803.md      |  3 ++-
 .../threat-protection/auditing/event-4816.md      |  3 ++-
 .../threat-protection/auditing/event-4817.md      |  3 ++-
 .../threat-protection/auditing/event-4818.md      |  3 ++-
 .../threat-protection/auditing/event-4819.md      |  3 ++-
 .../threat-protection/auditing/event-4826.md      |  3 ++-
 .../threat-protection/auditing/event-4864.md      |  3 ++-
 .../threat-protection/auditing/event-4865.md      |  3 ++-
 .../threat-protection/auditing/event-4866.md      |  3 ++-
 .../threat-protection/auditing/event-4867.md      |  3 ++-
 .../threat-protection/auditing/event-4902.md      |  3 ++-
 .../threat-protection/auditing/event-4904.md      |  3 ++-
 .../threat-protection/auditing/event-4905.md      |  3 ++-
 .../threat-protection/auditing/event-4906.md      |  3 ++-
 .../threat-protection/auditing/event-4907.md      |  3 ++-
 .../threat-protection/auditing/event-4908.md      |  3 ++-
 .../threat-protection/auditing/event-4909.md      |  3 ++-
 .../threat-protection/auditing/event-4910.md      |  3 ++-
 .../threat-protection/auditing/event-4911.md      |  3 ++-
 .../threat-protection/auditing/event-4912.md      |  3 ++-
 .../threat-protection/auditing/event-4913.md      |  3 ++-
 .../threat-protection/auditing/event-4928.md      |  3 ++-
 .../threat-protection/auditing/event-4929.md      |  3 ++-
 .../threat-protection/auditing/event-4930.md      |  3 ++-
 .../threat-protection/auditing/event-4931.md      |  3 ++-
 .../threat-protection/auditing/event-4932.md      |  3 ++-
 .../threat-protection/auditing/event-4933.md      |  3 ++-
 .../threat-protection/auditing/event-4934.md      |  3 ++-
 .../threat-protection/auditing/event-4935.md      |  3 ++-
 .../threat-protection/auditing/event-4936.md      |  3 ++-
 .../threat-protection/auditing/event-4937.md      |  3 ++-
 .../threat-protection/auditing/event-4944.md      |  3 ++-
 .../threat-protection/auditing/event-4945.md      |  3 ++-
 .../threat-protection/auditing/event-4946.md      |  3 ++-
 .../threat-protection/auditing/event-4947.md      |  3 ++-
 .../threat-protection/auditing/event-4948.md      |  3 ++-
 .../threat-protection/auditing/event-4949.md      |  3 ++-
 .../threat-protection/auditing/event-4950.md      |  3 ++-
 .../threat-protection/auditing/event-4951.md      |  3 ++-
 .../threat-protection/auditing/event-4952.md      |  3 ++-
 .../threat-protection/auditing/event-4953.md      |  3 ++-
 .../threat-protection/auditing/event-4954.md      |  3 ++-
 .../threat-protection/auditing/event-4956.md      |  3 ++-
 .../threat-protection/auditing/event-4957.md      |  3 ++-
 .../threat-protection/auditing/event-4958.md      |  3 ++-
 .../threat-protection/auditing/event-4964.md      |  3 ++-
 .../threat-protection/auditing/event-4985.md      |  3 ++-
 .../threat-protection/auditing/event-5024.md      |  3 ++-
 .../threat-protection/auditing/event-5025.md      |  3 ++-
 .../threat-protection/auditing/event-5027.md      |  5 +++--
 .../threat-protection/auditing/event-5028.md      |  3 ++-
 .../threat-protection/auditing/event-5029.md      |  3 ++-
 .../threat-protection/auditing/event-5030.md      |  3 ++-
 .../threat-protection/auditing/event-5031.md      |  3 ++-
 .../threat-protection/auditing/event-5032.md      |  3 ++-
 .../threat-protection/auditing/event-5033.md      |  3 ++-
 .../threat-protection/auditing/event-5034.md      |  3 ++-
 .../threat-protection/auditing/event-5035.md      |  3 ++-
 .../threat-protection/auditing/event-5037.md      |  3 ++-
 .../threat-protection/auditing/event-5038.md      |  3 ++-
 .../threat-protection/auditing/event-5039.md      |  3 ++-
 .../threat-protection/auditing/event-5051.md      |  3 ++-
 .../threat-protection/auditing/event-5056.md      |  3 ++-
 .../threat-protection/auditing/event-5057.md      |  3 ++-
 .../threat-protection/auditing/event-5058.md      |  3 ++-
 .../threat-protection/auditing/event-5059.md      |  3 ++-
 .../threat-protection/auditing/event-5060.md      |  3 ++-
 .../threat-protection/auditing/event-5061.md      |  3 ++-
 .../threat-protection/auditing/event-5062.md      |  3 ++-
 .../threat-protection/auditing/event-5063.md      |  3 ++-
 .../threat-protection/auditing/event-5064.md      |  3 ++-
 .../threat-protection/auditing/event-5065.md      |  3 ++-
 .../threat-protection/auditing/event-5066.md      |  3 ++-
 .../threat-protection/auditing/event-5067.md      |  3 ++-
 .../threat-protection/auditing/event-5068.md      |  3 ++-
 .../threat-protection/auditing/event-5069.md      |  3 ++-
 .../threat-protection/auditing/event-5070.md      |  3 ++-
 .../threat-protection/auditing/event-5136.md      |  3 ++-
 .../threat-protection/auditing/event-5137.md      |  3 ++-
 .../threat-protection/auditing/event-5138.md      |  3 ++-
 .../threat-protection/auditing/event-5139.md      |  3 ++-
 .../threat-protection/auditing/event-5140.md      |  3 ++-
 .../threat-protection/auditing/event-5141.md      |  3 ++-
 .../threat-protection/auditing/event-5142.md      |  3 ++-
 .../threat-protection/auditing/event-5143.md      |  3 ++-
 .../threat-protection/auditing/event-5144.md      |  3 ++-
 .../threat-protection/auditing/event-5145.md      |  3 ++-
 .../threat-protection/auditing/event-5148.md      |  3 ++-
 .../threat-protection/auditing/event-5149.md      |  3 ++-
 .../threat-protection/auditing/event-5150.md      |  3 ++-
 .../threat-protection/auditing/event-5151.md      |  3 ++-
 .../threat-protection/auditing/event-5152.md      |  3 ++-
 .../threat-protection/auditing/event-5153.md      |  3 ++-
 .../threat-protection/auditing/event-5154.md      |  3 ++-
 .../threat-protection/auditing/event-5155.md      |  3 ++-
 .../threat-protection/auditing/event-5156.md      |  3 ++-
 .../threat-protection/auditing/event-5157.md      |  3 ++-
 .../threat-protection/auditing/event-5158.md      |  3 ++-
 .../threat-protection/auditing/event-5159.md      |  3 ++-
 .../threat-protection/auditing/event-5168.md      |  3 ++-
 .../threat-protection/auditing/event-5376.md      |  3 ++-
 .../threat-protection/auditing/event-5377.md      |  3 ++-
 .../threat-protection/auditing/event-5378.md      |  3 ++-
 .../threat-protection/auditing/event-5447.md      |  3 ++-
 .../threat-protection/auditing/event-5632.md      |  3 ++-
 .../threat-protection/auditing/event-5633.md      |  3 ++-
 .../threat-protection/auditing/event-5712.md      |  3 ++-
 .../threat-protection/auditing/event-5888.md      |  3 ++-
 .../threat-protection/auditing/event-5889.md      |  3 ++-
 .../threat-protection/auditing/event-5890.md      |  3 ++-
 .../threat-protection/auditing/event-6144.md      |  3 ++-
 .../threat-protection/auditing/event-6145.md      |  3 ++-
 .../threat-protection/auditing/event-6281.md      |  3 ++-
 .../threat-protection/auditing/event-6400.md      |  3 ++-
 .../threat-protection/auditing/event-6401.md      |  3 ++-
 .../threat-protection/auditing/event-6402.md      |  3 ++-
 .../threat-protection/auditing/event-6403.md      |  3 ++-
 .../threat-protection/auditing/event-6404.md      |  3 ++-
 .../threat-protection/auditing/event-6405.md      |  3 ++-
 .../threat-protection/auditing/event-6406.md      |  3 ++-
 .../threat-protection/auditing/event-6407.md      |  3 ++-
 .../threat-protection/auditing/event-6408.md      |  3 ++-
 .../threat-protection/auditing/event-6409.md      |  3 ++-
 .../threat-protection/auditing/event-6410.md      |  3 ++-
 .../threat-protection/auditing/event-6416.md      |  3 ++-
 .../threat-protection/auditing/event-6419.md      |  3 ++-
 .../threat-protection/auditing/event-6420.md      |  3 ++-
 .../threat-protection/auditing/event-6421.md      |  3 ++-
 .../threat-protection/auditing/event-6422.md      |  3 ++-
 .../threat-protection/auditing/event-6423.md      |  3 ++-
 .../threat-protection/auditing/event-6424.md      |  3 ++-
 .../file-system-global-object-access-auditing.md  |  3 ++-
 .../how-to-list-xml-elements-in-eventdata.md      |  3 ++-
 ...-central-access-policy-and-rule-definitions.md |  3 ++-
 .../auditing/monitor-claim-types.md               |  3 ++-
 .../monitor-resource-attribute-definitions.md     |  3 ++-
 ...-policies-associated-with-files-and-folders.md |  3 ++-
 ...access-policies-that-apply-on-a-file-server.md |  3 ++-
 ...he-resource-attributes-on-files-and-folders.md |  3 ++-
 ...onitor-the-use-of-removable-storage-devices.md |  5 +++--
 ...nitor-user-and-device-claims-during-sign-in.md |  3 ++-
 .../threat-protection/auditing/other-events.md    |  3 ++-
 ...-deploying-advanced-security-audit-policies.md |  3 ++-
 .../registry-global-object-access-auditing.md     |  3 ++-
 .../auditing/security-auditing-overview.md        |  3 ++-
 ...s-to-monitor-dynamic-access-control-objects.md |  3 ++-
 .../auditing/view-the-security-event-log.md       |  3 ++-
 ...support-advanced-audit-policy-configuration.md |  3 ++-
 .../block-untrusted-fonts-in-enterprise.md        |  3 ++-
 .../change-history-for-threat-protection.md       |  5 +++--
 .../control-usb-devices-using-intune.md           |  3 ++-
 .../device-control/device-control-report.md       |  3 ++-
 ...lization-based-protection-of-code-integrity.md |  3 ++-
 ...ty-and-windows-defender-application-control.md |  3 ++-
 .../device-guard/memory-integrity.md              |  3 ++-
 ...lization-based-protection-of-code-integrity.md |  3 ++-
 .../threat-protection/fips-140-validation.md      |  3 ++-
 .../get-support-for-security-baselines.md         |  3 ++-
 windows/security/threat-protection/index.md       |  3 ++-
 .../intelligence/coinminer-malware.md             |  5 +++--
 .../coordinated-malware-eradication.md            |  5 +++--
 .../threat-protection/intelligence/criteria.md    |  5 +++--
 .../cybersecurity-industry-partners.md            |  5 +++--
 .../intelligence/developer-faq.md                 |  5 +++--
 .../intelligence/developer-resources.md           |  5 +++--
 .../intelligence/exploits-malware.md              |  5 +++--
 .../intelligence/fileless-threats.md              |  7 ++++---
 .../threat-protection/intelligence/index.md       |  5 +++--
 .../intelligence/macro-malware.md                 |  5 +++--
 .../intelligence/malware-naming.md                |  5 +++--
 .../intelligence/phishing-trends.md               |  5 +++--
 .../threat-protection/intelligence/phishing.md    |  5 +++--
 .../portal-submission-troubleshooting.md          |  5 +++--
 .../intelligence/prevent-malware-infection.md     |  5 +++--
 .../intelligence/ransomware-malware.md            |  5 +++--
 .../intelligence/rootkits-malware.md              |  5 +++--
 .../intelligence/safety-scanner-download.md       |  5 +++--
 .../intelligence/submission-guide.md              |  5 +++--
 .../intelligence/supply-chain-malware.md          |  5 +++--
 .../intelligence/support-scams.md                 |  5 +++--
 .../intelligence/trojans-malware.md               |  5 +++--
 .../intelligence/understanding-malware.md         |  5 +++--
 .../intelligence/unwanted-software.md             |  5 +++--
 .../virus-information-alliance-criteria.md        |  5 +++--
 .../intelligence/virus-initiative-criteria.md     |  5 +++--
 .../intelligence/worms-malware.md                 |  5 +++--
 .../mbsa-removal-and-guidance.md                  |  3 ++-
 .../antivirus-false-positives-negatives.md        |  5 +++--
 .../collect-diagnostic-data-update-compliance.md  |  3 ++-
 .../collect-diagnostic-data.md                    |  3 ++-
 ...line-arguments-microsoft-defender-antivirus.md |  5 +++--
 ...usion-mistakes-microsoft-defender-antivirus.md |  3 ++-
 ...ment-reference-microsoft-defender-antivirus.md |  3 ++-
 ...ced-scan-types-microsoft-defender-antivirus.md |  4 ++--
 ...at-first-sight-microsoft-defender-antivirus.md |  3 ++-
 ...timeout-period-microsoft-defender-antivirus.md |  3 ++-
 ...er-interaction-microsoft-defender-antivirus.md |  3 ++-
 ...ure-exclusions-microsoft-defender-antivirus.md |  3 ++-
 ...ile-exclusions-microsoft-defender-antivirus.md |  3 ++-
 ...licy-overrides-microsoft-defender-antivirus.md |  3 ++-
 ...igure-microsoft-defender-antivirus-features.md |  3 ++-
 ...rk-connections-microsoft-defender-antivirus.md |  3 ++-
 ...-notifications-microsoft-defender-antivirus.md |  3 ++-
 ...ile-exclusions-microsoft-defender-antivirus.md |  3 ++-
 ...ction-features-microsoft-defender-antivirus.md |  3 ++-
 ...ime-protection-microsoft-defender-antivirus.md |  3 ++-
 ...re-remediation-microsoft-defender-antivirus.md |  3 ++-
 ...ver-exclusions-microsoft-defender-antivirus.md |  3 ++-
 ...emediate-scans-microsoft-defender-antivirus.md |  3 ++-
 ...-remediate-scans-windows-defender-antivirus.md |  3 ++-
 ...-manage-report-microsoft-defender-antivirus.md |  3 ++-
 .../deploy-microsoft-defender-antivirus.md        |  5 +++--
 ...deployment-vdi-microsoft-defender-antivirus.md |  3 ++-
 ...-unwanted-apps-microsoft-defender-antivirus.md |  3 ++-
 ...oud-protection-microsoft-defender-antivirus.md |  3 ++-
 .../evaluate-microsoft-defender-antivirus.md      |  3 ++-
 ...iodic-scanning-microsoft-defender-antivirus.md |  3 ++-
 ...-based-updates-microsoft-defender-antivirus.md |  3 ++-
 ...ated-endpoints-microsoft-defender-antivirus.md |  3 ++-
 ...pdate-schedule-microsoft-defender-antivirus.md |  5 +++--
 ...ection-updates-microsoft-defender-antivirus.md |  3 ++-
 ...ates-baselines-microsoft-defender-antivirus.md |  3 ++-
 ...le-devices-vms-microsoft-defender-antivirus.md |  3 ++-
 .../microsoft-defender-antivirus-compatibility.md |  3 ++-
 .../microsoft-defender-antivirus-in-windows-10.md |  3 ++-
 ...t-defender-antivirus-on-windows-server-2016.md |  3 ++-
 .../microsoft-defender-offline.md                 |  3 ++-
 ...icrosoft-defender-security-center-antivirus.md |  3 ++-
 .../office-365-microsoft-defender-antivirus.md    | 11 ++++++-----
 ...to-security-settings-with-tamper-protection.md |  3 ++-
 ...er-interaction-microsoft-defender-antivirus.md |  3 ++-
 ...report-monitor-microsoft-defender-antivirus.md |  3 ++-
 ...rantined-files-microsoft-defender-antivirus.md |  3 ++-
 ...w-scan-results-microsoft-defender-antivirus.md |  5 +++--
 .../run-scan-microsoft-defender-antivirus.md      |  3 ++-
 ...catch-up-scans-microsoft-defender-antivirus.md |  3 ++-
 ...otection-level-microsoft-defender-antivirus.md |  3 ++-
 ...microsoft-defender-antivirus-when-migrating.md |  3 ++-
 .../troubleshoot-microsoft-defender-antivirus.md  |  3 ++-
 .../troubleshoot-reporting.md                     |  3 ++-
 ...e-group-policy-microsoft-defender-antivirus.md |  3 ++-
 ...config-manager-microsoft-defender-antivirus.md |  3 ++-
 ...rshell-cmdlets-microsoft-defender-antivirus.md |  3 ++-
 .../use-wmi-microsoft-defender-antivirus.md       |  3 ++-
 ...oud-protection-microsoft-defender-antivirus.md |  3 ++-
 .../why-use-microsoft-defender-antivirus.md       | 11 ++++++-----
 .../configure-md-app-guard.md                     |  3 ++-
 .../faq-md-app-guard.md                           |  3 ++-
 .../install-md-app-guard.md                       |  3 ++-
 .../md-app-guard-browser-extension.md             |  3 ++-
 .../md-app-guard-overview.md                      |  3 ++-
 .../reqs-md-app-guard.md                          |  3 ++-
 .../test-scenarios-md-app-guard.md                |  3 ++-
 .../Onboard-Windows-10-multi-session-device.md    | 11 ++++++-----
 .../microsoft-defender-atp/access-mssp-portal.md  |  5 +++--
 .../add-or-remove-machine-tags.md                 |  5 +++--
 .../microsoft-defender-atp/advanced-features.md   |  5 +++--
 ...advanced-hunting-assignedipaddress-function.md |  7 ++++---
 .../advanced-hunting-best-practices.md            |  5 +++--
 .../advanced-hunting-devicealertevents-table.md   |  5 +++--
 .../advanced-hunting-deviceevents-table.md        |  5 +++--
 ...ced-hunting-devicefilecertificateinfo-table.md |  5 +++--
 .../advanced-hunting-devicefileevents-table.md    |  7 ++++---
 ...dvanced-hunting-deviceimageloadevents-table.md |  5 +++--
 .../advanced-hunting-deviceinfo-table.md          |  7 ++++---
 .../advanced-hunting-devicelogonevents-table.md   |  5 +++--
 .../advanced-hunting-devicenetworkevents-table.md |  5 +++--
 .../advanced-hunting-devicenetworkinfo-table.md   |  5 +++--
 .../advanced-hunting-deviceprocessevents-table.md |  5 +++--
 ...advanced-hunting-deviceregistryevents-table.md |  5 +++--
 ...evicetvmsecureconfigurationassessment-table.md |  9 +++++----
 ...icetvmsecureconfigurationassessmentkb-table.md |  7 ++++---
 ...cetvmsoftwareinventoryvulnerabilities-table.md |  5 +++--
 ...ng-devicetvmsoftwarevulnerabilitieskb-table.md |  9 +++++----
 .../advanced-hunting-errors.md                    |  5 +++--
 .../advanced-hunting-extend-data.md               | 11 ++++++-----
 .../advanced-hunting-fileprofile-function.md      |  7 ++++---
 .../advanced-hunting-go-hunt.md                   | 13 +++++++------
 .../advanced-hunting-limits.md                    |  5 +++--
 .../advanced-hunting-overview.md                  |  5 +++--
 .../advanced-hunting-query-language.md            |  5 +++--
 .../advanced-hunting-query-results.md             |  5 +++--
 .../advanced-hunting-schema-reference.md          |  5 +++--
 .../advanced-hunting-shared-queries.md            |  5 +++--
 .../advanced-hunting-take-action.md               |  5 +++--
 .../alerts-queue-endpoint-detection-response.md   |  5 +++--
 .../microsoft-defender-atp/alerts-queue.md        |  5 +++--
 .../microsoft-defender-atp/alerts.md              |  3 ++-
 .../microsoft-defender-atp/android-configure.md   | 11 ++++++-----
 .../microsoft-defender-atp/android-intune.md      |  9 +++++----
 .../microsoft-defender-atp/android-privacy.md     |  5 +++--
 .../android-support-signin.md                     |  9 +++++----
 .../microsoft-defender-atp/android-terms.md       |  7 ++++---
 .../microsoft-defender-atp/api-explorer.md        |  9 +++++----
 .../microsoft-defender-atp/api-hello-world.md     |  5 +++--
 .../microsoft-defender-atp/api-microsoft-flow.md  |  5 +++--
 .../microsoft-defender-atp/api-portal-mapping.md  |  5 +++--
 .../microsoft-defender-atp/api-power-bi.md        |  5 +++--
 .../microsoft-defender-atp/api-terms-of-use.md    |  5 +++--
 .../microsoft-defender-atp/apis-intro.md          |  7 ++++---
 .../assign-portal-access.md                       |  5 +++--
 .../microsoft-defender-atp/attack-simulations.md  |  5 +++--
 .../attack-surface-reduction-faq.md               |  3 ++-
 .../attack-surface-reduction.md                   |  3 ++-
 .../audit-windows-defender.md                     |  3 ++-
 .../auto-investigation-action-center.md           |  7 ++++---
 .../automated-investigations.md                   |  6 +++---
 .../microsoft-defender-atp/automation-levels.md   |  6 +++---
 .../microsoft-defender-atp/basic-permissions.md   |  3 ++-
 .../behavioral-blocking-containment.md            | 15 ++++++++-------
 .../microsoft-defender-atp/check-sensor-status.md |  5 +++--
 .../client-behavioral-blocking.md                 | 15 ++++++++-------
 .../collect-investigation-package.md              |  6 +++---
 .../microsoft-defender-atp/common-errors.md       |  7 ++++---
 .../microsoft-defender-atp/community.md           |  5 +++--
 .../microsoft-defender-atp/conditional-access.md  |  5 +++--
 .../microsoft-defender-atp/configure-arcsight.md  |  5 +++--
 .../configure-attack-surface-reduction.md         |  5 +++--
 ...figure-automated-investigations-remediation.md |  4 ++--
 .../configure-conditional-access.md               |  5 +++--
 .../configure-email-notifications.md              |  5 +++--
 .../configure-endpoints-gp.md                     |  5 +++--
 .../configure-endpoints-mdm.md                    |  5 +++--
 .../configure-endpoints-non-windows.md            |  5 +++--
 .../configure-endpoints-sccm.md                   |  5 +++--
 .../configure-endpoints-script.md                 |  5 +++--
 .../configure-endpoints-vdi.md                    |  5 +++--
 .../microsoft-defender-atp/configure-endpoints.md |  5 +++--
 .../configure-machines-asr.md                     |  7 ++++---
 .../configure-machines-onboarding.md              |  5 +++--
 .../configure-machines-security-baseline.md       |  5 +++--
 .../microsoft-defender-atp/configure-machines.md  |  5 +++--
 .../configure-microsoft-threat-experts.md         |  7 ++++---
 .../configure-mssp-notifications.md               |  7 ++++---
 .../configure-mssp-support.md                     |  7 ++++---
 .../configure-proxy-internet.md                   |  7 ++++---
 .../configure-server-endpoints.md                 |  3 ++-
 .../microsoft-defender-atp/configure-siem.md      |  5 +++--
 .../connected-applications.md                     |  7 ++++---
 .../contact-support-usgov.md                      |  5 +++--
 .../microsoft-defender-atp/contact-support.md     |  5 +++--
 .../microsoft-defender-atp/controlled-folders.md  |  3 ++-
 .../create-alert-by-reference.md                  |  5 +++--
 .../custom-detection-rules.md                     |  5 +++--
 .../custom-detections-manage.md                   |  5 +++--
 .../customize-attack-surface-reduction.md         |  3 ++-
 .../customize-controlled-folders.md               |  3 ++-
 .../customize-exploit-protection.md               |  5 +++--
 .../data-retention-settings.md                    |  7 ++++---
 .../data-storage-privacy.md                       |  5 +++--
 .../defender-compatibility.md                     |  7 ++++---
 .../delete-ti-indicator-by-id.md                  |  5 +++--
 .../microsoft-defender-atp/deployment-phases.md   |  9 +++++----
 .../microsoft-defender-atp/deployment-rings.md    |  9 +++++----
 .../microsoft-defender-atp/deployment-strategy.md |  7 ++++---
 .../device-timeline-event-flag.md                 |  7 ++++---
 .../microsoft-defender-atp/edr-in-block-mode.md   | 15 ++++++++-------
 .../enable-attack-surface-reduction.md            |  3 ++-
 .../enable-controlled-folders.md                  |  3 ++-
 .../enable-exploit-protection.md                  |  3 ++-
 .../enable-network-protection.md                  |  3 ++-
 .../enable-siem-integration.md                    |  5 +++--
 .../microsoft-defender-atp/evaluate-atp.md        |  7 ++++---
 .../evaluate-attack-surface-reduction.md          |  3 ++-
 .../evaluate-controlled-folder-access.md          |  3 ++-
 .../evaluate-exploit-protection.md                |  3 ++-
 .../evaluate-network-protection.md                |  3 ++-
 .../microsoft-defender-atp/evaluation-lab.md      |  7 ++++---
 .../microsoft-defender-atp/event-error-codes.md   |  5 +++--
 .../microsoft-defender-atp/event-views.md         |  3 ++-
 .../exploit-protection-reference.md               |  3 ++-
 .../microsoft-defender-atp/exploit-protection.md  |  3 ++-
 .../exposed-apis-create-app-nativeapp.md          |  7 ++++---
 .../exposed-apis-create-app-partners.md           |  5 +++--
 .../exposed-apis-create-app-webapp.md             |  5 +++--
 .../exposed-apis-full-sample-powershell.md        |  7 ++++---
 .../microsoft-defender-atp/exposed-apis-list.md   |  9 +++++----
 .../exposed-apis-odata-samples.md                 |  5 +++--
 .../feedback-loop-blocking.md                     | 11 ++++++-----
 .../microsoft-defender-atp/fetch-alerts-mssp.md   |  5 +++--
 .../microsoft-defender-atp/files.md               |  5 +++--
 .../find-machine-info-by-ip.md                    |  5 +++--
 .../microsoft-defender-atp/find-machines-by-ip.md |  7 ++++---
 .../fix-unhealthy-sensors.md                      |  5 +++--
 .../get-alert-info-by-id.md                       |  5 +++--
 .../get-alert-related-domain-info.md              |  7 ++++---
 .../get-alert-related-files-info.md               |  7 ++++---
 .../get-alert-related-ip-info.md                  |  7 ++++---
 .../get-alert-related-machine-info.md             |  7 ++++---
 .../get-alert-related-user-info.md                |  7 ++++---
 .../microsoft-defender-atp/get-alerts.md          |  5 +++--
 .../get-all-recommendations.md                    |  7 ++++---
 .../get-all-vulnerabilities-by-machines.md        |  5 +++--
 .../get-all-vulnerabilities.md                    |  5 +++--
 .../get-cvekbmap-collection.md                    |  5 +++--
 .../get-device-secure-score.md                    |  5 +++--
 .../get-discovered-vulnerabilities.md             |  5 +++--
 .../get-domain-related-alerts.md                  |  5 +++--
 .../get-domain-related-machines.md                |  5 +++--
 .../get-domain-statistics.md                      |  5 +++--
 .../microsoft-defender-atp/get-exposure-score.md  |  5 +++--
 .../get-file-information.md                       |  5 +++--
 .../get-file-related-alerts.md                    |  5 +++--
 .../get-file-related-machines.md                  |  5 +++--
 .../microsoft-defender-atp/get-file-statistics.md |  5 +++--
 .../get-installed-software.md                     |  3 ++-
 .../get-investigation-collection.md               |  5 +++--
 .../get-investigation-object.md                   |  5 +++--
 .../get-ip-related-alerts.md                      |  5 +++--
 .../microsoft-defender-atp/get-ip-statistics.md   |  5 +++--
 .../get-kbinfo-collection.md                      |  5 +++--
 .../microsoft-defender-atp/get-machine-by-id.md   |  5 +++--
 .../get-machine-group-exposure-score.md           |  5 +++--
 .../get-machine-log-on-users.md                   |  5 +++--
 .../get-machine-related-alerts.md                 |  5 +++--
 .../get-machineaction-object.md                   |  5 +++--
 .../get-machineactions-collection.md              |  5 +++--
 .../get-machines-by-software.md                   |  5 +++--
 .../get-machines-by-vulnerability.md              |  5 +++--
 .../microsoft-defender-atp/get-machines.md        |  5 +++--
 .../get-machinesecuritystates-collection.md       |  7 ++++---
 .../get-missing-kbs-machine.md                    |  5 +++--
 .../get-missing-kbs-software.md                   |  5 +++--
 .../microsoft-defender-atp/get-package-sas-uri.md |  5 +++--
 .../get-recommendation-by-id.md                   |  7 ++++---
 .../get-recommendation-machines.md                |  9 +++++----
 .../get-recommendation-software.md                |  7 ++++---
 .../get-recommendation-vulnerabilities.md         |  7 ++++---
 .../get-security-recommendations.md               |  5 +++--
 .../microsoft-defender-atp/get-software-by-id.md  |  5 +++--
 .../get-software-ver-distribution.md              |  9 +++++----
 .../microsoft-defender-atp/get-software.md        |  5 +++--
 .../get-started-partner-integration.md            |  7 ++++---
 .../get-ti-indicators-collection.md               |  5 +++--
 .../get-user-information.md                       |  5 +++--
 .../get-user-related-alerts.md                    |  5 +++--
 .../get-user-related-machines.md                  |  5 +++--
 .../get-vuln-by-software.md                       |  7 ++++---
 .../get-vulnerability-by-id.md                    |  5 +++--
 .../microsoft-defender-atp/gov.md                 |  7 ++++---
 .../microsoft-defender-atp/grant-mssp-access.md   |  7 ++++---
 .../microsoft-defender-atp/helpful-resources.md   |  7 ++++---
 .../import-export-exploit-protection-emet-xml.md  |  3 ++-
 .../indicator-certificates.md                     |  7 ++++---
 .../microsoft-defender-atp/indicator-file.md      |  7 ++++---
 .../microsoft-defender-atp/indicator-ip-domain.md |  7 ++++---
 .../microsoft-defender-atp/indicator-manage.md    |  5 +++--
 .../information-protection-in-windows-overview.md |  5 +++--
 .../information-protection-investigation.md       |  5 +++--
 .../initiate-autoir-investigation.md              |  5 +++--
 .../microsoft-defender-atp/investigate-alerts.md  |  7 ++++---
 .../investigate-behind-proxy.md                   |  7 ++++---
 .../microsoft-defender-atp/investigate-domain.md  |  7 ++++---
 .../microsoft-defender-atp/investigate-files.md   |  7 ++++---
 .../investigate-incidents.md                      |  9 +++++----
 .../microsoft-defender-atp/investigate-ip.md      |  7 ++++---
 .../investigate-machines.md                       |  7 ++++---
 .../microsoft-defender-atp/investigate-user.md    |  7 ++++---
 .../microsoft-defender-atp/investigation.md       |  7 ++++---
 .../ios-configure-features.md                     |  9 +++++----
 .../microsoft-defender-atp/ios-install.md         |  9 +++++----
 .../microsoft-defender-atp/ios-privacy.md         |  9 +++++----
 .../microsoft-defender-atp/ios-terms.md           | 11 ++++++-----
 .../microsoft-defender-atp/isolate-machine.md     |  5 +++--
 .../microsoft-defender-atp/linux-exclusions.md    |  7 ++++---
 .../linux-install-manually.md                     |  9 +++++----
 .../linux-install-with-ansible.md                 |  9 +++++----
 .../linux-install-with-puppet.md                  |  9 +++++----
 .../microsoft-defender-atp/linux-preferences.md   |  7 ++++---
 .../microsoft-defender-atp/linux-privacy.md       |  3 ++-
 .../microsoft-defender-atp/linux-pua.md           |  7 ++++---
 .../microsoft-defender-atp/linux-resources.md     |  7 ++++---
 .../linux-schedule-scan-atp.md                    |  3 ++-
 .../linux-static-proxy-configuration.md           |  7 ++++---
 .../linux-support-connectivity.md                 |  9 +++++----
 .../linux-support-events.md                       |  7 ++++---
 .../linux-support-install.md                      |  9 +++++----
 .../microsoft-defender-atp/linux-support-perf.md  |  7 ++++---
 .../linux-update-MDE-Linux.md                     |  3 ++-
 .../microsoft-defender-atp/linux-updates.md       |  7 ++++---
 .../microsoft-defender-atp/linux-whatsnew.md      |  7 ++++---
 .../live-response-command-examples.md             |  7 ++++---
 .../microsoft-defender-atp/live-response.md       |  7 ++++---
 .../microsoft-defender-atp/mac-exclusions.md      |  7 ++++---
 .../mac-install-jamfpro-login.md                  |  7 ++++---
 .../mac-install-manually.md                       |  7 ++++---
 .../mac-install-with-intune.md                    |  7 ++++---
 .../mac-install-with-jamf.md                      |  7 ++++---
 .../mac-install-with-other-mdm.md                 |  7 ++++---
 .../mac-jamfpro-device-groups.md                  |  7 ++++---
 .../mac-jamfpro-enroll-devices.md                 | 11 ++++++-----
 .../mac-jamfpro-policies.md                       |  7 ++++---
 .../microsoft-defender-atp/mac-preferences.md     |  7 ++++---
 .../microsoft-defender-atp/mac-privacy.md         |  7 ++++---
 .../microsoft-defender-atp/mac-pua.md             |  7 ++++---
 .../microsoft-defender-atp/mac-resources.md       |  9 +++++----
 .../mac-schedule-scan-atp.md                      |  7 ++++---
 .../microsoft-defender-atp/mac-support-install.md |  7 ++++---
 .../microsoft-defender-atp/mac-support-kext.md    |  7 ++++---
 .../microsoft-defender-atp/mac-support-license.md |  7 ++++---
 .../microsoft-defender-atp/mac-support-perf.md    |  7 ++++---
 .../microsoft-defender-atp/mac-sysext-policies.md |  7 ++++---
 .../microsoft-defender-atp/mac-sysext-preview.md  |  7 ++++---
 .../microsoft-defender-atp/mac-updates.md         |  7 ++++---
 .../microsoft-defender-atp/mac-whatsnew.md        |  7 ++++---
 .../microsoft-defender-atp/machine-groups.md      |  5 +++--
 .../microsoft-defender-atp/machine-reports.md     |  5 +++--
 .../microsoft-defender-atp/machine-tags.md        |  5 +++--
 .../microsoft-defender-atp/machine.md             |  5 +++--
 .../microsoft-defender-atp/machineaction.md       |  5 +++--
 .../machines-view-overview.md                     |  5 +++--
 .../microsoft-defender-atp/manage-alerts.md       |  5 +++--
 ...ge-atp-post-migration-configuration-manager.md |  6 +++---
 ...age-atp-post-migration-group-policy-objects.md |  6 +++---
 .../manage-atp-post-migration-intune.md           |  6 +++---
 .../manage-atp-post-migration-other-tools.md      |  6 +++---
 .../manage-atp-post-migration.md                  |  6 +++---
 .../manage-auto-investigation.md                  |  7 ++++---
 .../manage-automation-file-uploads.md             |  5 +++--
 .../manage-automation-folder-exclusions.md        |  7 ++++---
 .../microsoft-defender-atp/manage-edr.md          |  7 ++++---
 .../microsoft-defender-atp/manage-incidents.md    |  9 +++++----
 .../microsoft-defender-atp/manage-indicators.md   |  5 +++--
 .../manage-suppression-rules.md                   |  5 +++--
 .../microsoft-defender-atp/management-apis.md     |  7 ++++---
 .../mcafee-to-microsoft-defender-migration.md     |  8 ++++----
 .../mcafee-to-microsoft-defender-onboard.md       |  8 ++++----
 .../mcafee-to-microsoft-defender-prepare.md       |  8 ++++----
 .../mcafee-to-microsoft-defender-setup.md         |  8 ++++----
 .../microsoft-cloud-app-security-config.md        |  7 ++++---
 .../microsoft-cloud-app-security-integration.md   |  5 +++--
 ...crosoft-defender-advanced-threat-protection.md |  5 +++--
 .../microsoft-defender-atp-android.md             |  9 +++++----
 .../microsoft-defender-atp-ios.md                 |  9 +++++----
 .../microsoft-defender-atp-linux.md               | 11 ++++++-----
 .../microsoft-defender-atp-mac.md                 |  9 +++++----
 .../microsoft-defender-security-center.md         |  7 ++++---
 .../microsoft-threat-experts.md                   |  9 +++++----
 .../microsoft-defender-atp/migration-guides.md    | 11 ++++++-----
 .../minimum-requirements.md                       |  3 ++-
 .../microsoft-defender-atp/mssp-list.md           |  7 ++++---
 .../microsoft-defender-atp/mssp-support.md        |  5 +++--
 .../microsoft-defender-atp/network-protection.md  |  4 ++--
 .../next-gen-threat-and-vuln-mgt.md               |  5 +++--
 .../microsoft-defender-atp/non-windows.md         |  7 ++++---
 .../offboard-machine-api.md                       |  5 +++--
 .../microsoft-defender-atp/offboard-machines.md   |  5 +++--
 .../microsoft-defender-atp/onboard-configure.md   |  5 +++--
 .../microsoft-defender-atp/onboard-downlevel.md   |  5 +++--
 .../onboard-offline-machines.md                   |  5 +++--
 .../microsoft-defender-atp/onboard.md             |  5 +++--
 .../onboarding-endpoint-configuration-manager.md  |  9 +++++----
 .../onboarding-endpoint-manager.md                |  9 +++++----
 .../onboarding-notification.md                    |  7 ++++---
 .../microsoft-defender-atp/onboarding.md          |  9 +++++----
 .../overview-attack-surface-reduction.md          |  5 +++--
 .../overview-custom-detections.md                 |  5 +++--
 .../overview-endpoint-detection-response.md       |  5 +++--
 .../overview-hardware-based-isolation.md          |  5 +++--
 .../partner-applications.md                       |  7 ++++---
 .../microsoft-defender-atp/partner-integration.md |  7 ++++---
 .../microsoft-defender-atp/portal-overview.md     |  7 ++++---
 .../microsoft-defender-atp/post-ti-indicator.md   |  5 +++--
 .../microsoft-defender-atp/preferences-setup.md   |  5 +++--
 .../microsoft-defender-atp/prepare-deployment.md  | 11 ++++++-----
 .../microsoft-defender-atp/preview-settings.md    |  5 +++--
 .../microsoft-defender-atp/preview.md             |  7 ++++---
 .../production-deployment.md                      | 11 ++++++-----
 .../pull-alerts-using-rest-api.md                 |  5 +++--
 .../raw-data-export-event-hub.md                  |  7 ++++---
 .../raw-data-export-storage.md                    |  5 +++--
 .../microsoft-defender-atp/raw-data-export.md     |  7 ++++---
 .../microsoft-defender-atp/rbac.md                |  5 +++--
 .../microsoft-defender-atp/recommendation.md      |  5 +++--
 .../microsoft-defender-atp/respond-file-alerts.md |  3 ++-
 .../respond-machine-alerts.md                     |  5 +++--
 .../restrict-code-execution.md                    |  5 +++--
 .../microsoft-defender-atp/review-alerts.md       |  3 ++-
 .../run-advanced-query-api.md                     |  5 +++--
 .../run-advanced-query-sample-powershell.md       |  5 +++--
 .../run-advanced-query-sample-python.md           |  5 +++--
 .../microsoft-defender-atp/run-av-scan.md         |  5 +++--
 .../microsoft-defender-atp/run-detection-test.md  |  7 ++++---
 .../microsoft-defender-atp/score.md               |  5 +++--
 .../security-operations-dashboard.md              |  5 +++--
 .../microsoft-defender-atp/service-status.md      |  5 +++--
 .../microsoft-defender-atp/set-device-value.md    |  5 +++--
 .../microsoft-defender-atp/software.md            |  5 +++--
 .../stop-and-quarantine-file.md                   |  5 +++--
 .../supported-response-apis.md                    |  9 +++++----
 .../switch-to-microsoft-defender-migration.md     |  9 +++++----
 .../switch-to-microsoft-defender-onboard.md       |  6 +++---
 .../switch-to-microsoft-defender-prepare.md       |  6 +++---
 .../switch-to-microsoft-defender-setup.md         |  6 +++---
 ...ymantec-to-microsoft-defender-atp-migration.md |  8 ++++----
 .../symantec-to-microsoft-defender-atp-onboard.md |  6 +++---
 .../symantec-to-microsoft-defender-atp-prepare.md |  6 +++---
 .../symantec-to-microsoft-defender-atp-setup.md   |  6 +++---
 .../threat-analytics-analyst-reports.md           |  7 ++++---
 .../microsoft-defender-atp/threat-analytics.md    |  9 +++++----
 .../threat-and-vuln-mgt-event-timeline.md         |  9 +++++----
 .../threat-indicator-concepts.md                  |  5 +++--
 .../threat-protection-integration.md              |  5 +++--
 .../threat-protection-reports.md                  |  5 +++--
 .../microsoft-defender-atp/ti-indicator.md        |  5 +++--
 .../microsoft-defender-atp/time-settings.md       |  5 +++--
 .../microsoft-defender-atp/troubleshoot-asr.md    |  3 ++-
 .../troubleshoot-collect-support-log.md           |  5 +++--
 ...troubleshoot-exploit-protection-mitigations.md |  3 ++-
 .../troubleshoot-live-response.md                 |  7 ++++---
 .../microsoft-defender-atp/troubleshoot-mdatp.md  |  7 ++++---
 .../microsoft-defender-atp/troubleshoot-np.md     |  3 ++-
 .../troubleshoot-onboarding-error-messages.md     |  5 +++--
 .../troubleshoot-onboarding.md                    |  3 ++-
 .../microsoft-defender-atp/troubleshoot-siem.md   |  5 +++--
 .../tvm-assign-device-value.md                    |  7 ++++---
 .../tvm-dashboard-insights.md                     |  9 +++++----
 .../tvm-end-of-support-software.md                |  7 ++++---
 .../microsoft-defender-atp/tvm-exception.md       |  9 +++++----
 .../microsoft-defender-atp/tvm-exposure-score.md  |  7 ++++---
 .../tvm-hunt-exposed-devices.md                   | 11 ++++++-----
 .../tvm-microsoft-secure-score-devices.md         |  7 ++++---
 .../microsoft-defender-atp/tvm-prerequisites.md   |  5 +++--
 .../microsoft-defender-atp/tvm-remediation.md     |  9 +++++----
 .../tvm-security-recommendation.md                |  7 ++++---
 .../tvm-software-inventory.md                     |  7 ++++---
 .../microsoft-defender-atp/tvm-supported-os.md    |  7 ++++---
 .../tvm-vulnerable-devices-report.md              |  7 ++++---
 .../microsoft-defender-atp/tvm-weaknesses.md      | 11 ++++++-----
 .../tvm-zero-day-vulnerabilities.md               |  7 ++++---
 .../microsoft-defender-atp/unisolate-machine.md   |  6 +++---
 .../unrestrict-code-execution.md                  |  5 +++--
 .../microsoft-defender-atp/update-alert.md        |  5 +++--
 .../microsoft-defender-atp/use.md                 |  5 +++--
 .../microsoft-defender-atp/user-roles.md          |  5 +++--
 .../microsoft-defender-atp/user.md                |  5 +++--
 .../view-incidents-queue.md                       |  5 +++--
 .../microsoft-defender-atp/vulnerability.md       |  5 +++--
 .../web-content-filtering.md                      |  7 ++++---
 .../web-protection-monitoring.md                  |  7 ++++---
 .../web-protection-overview.md                    |  7 ++++---
 .../web-protection-response.md                    |  5 +++--
 .../web-threat-protection.md                      |  7 ++++---
 .../whats-new-in-microsoft-defender-atp.md        |  7 ++++---
 ...oft-defender-smartscreen-available-settings.md |  3 ++-
 .../microsoft-defender-smartscreen-overview.md    |  3 ++-
 ...-defender-smartscreen-set-individual-device.md |  3 ++-
 ...n-options-for-app-related-security-policies.md |  3 ++-
 ...verview-of-threat-mitigations-in-windows-10.md |  3 ++-
 ...ling-the-health-of-windows-10-based-devices.md |  3 ++-
 .../security-compliance-toolkit-10.md             |  3 ++-
 ...cess-credential-manager-as-a-trusted-caller.md |  3 ++-
 .../access-this-computer-from-the-network.md      |  3 ++-
 .../account-lockout-duration.md                   |  3 ++-
 .../account-lockout-policy.md                     |  3 ++-
 .../account-lockout-threshold.md                  |  3 ++-
 .../security-policy-settings/account-policies.md  |  3 ++-
 .../accounts-administrator-account-status.md      |  3 ++-
 .../accounts-block-microsoft-accounts.md          |  3 ++-
 .../accounts-guest-account-status.md              |  3 ++-
 ...se-of-blank-passwords-to-console-logon-only.md |  3 ++-
 .../accounts-rename-administrator-account.md      |  3 ++-
 .../accounts-rename-guest-account.md              |  3 ++-
 .../act-as-part-of-the-operating-system.md        |  3 ++-
 .../add-workstations-to-domain.md                 |  3 ++-
 .../adjust-memory-quotas-for-a-process.md         |  3 ++-
 .../administer-security-policy-settings.md        |  3 ++-
 .../allow-log-on-locally.md                       |  3 ++-
 ...llow-log-on-through-remote-desktop-services.md |  3 ++-
 ...t-audit-the-access-of-global-system-objects.md |  3 ++-
 ...dit-the-use-of-backup-and-restore-privilege.md |  3 ++-
 ...dit-policy-subcategory-settings-to-override.md |  3 ++-
 .../security-policy-settings/audit-policy.md      |  3 ++-
 ...mmediately-if-unable-to-log-security-audits.md |  3 ++-
 .../back-up-files-and-directories.md              |  3 ++-
 .../bypass-traverse-checking.md                   |  3 ++-
 .../change-the-system-time.md                     |  3 ++-
 .../change-the-time-zone.md                       |  3 ++-
 .../security-policy-settings/create-a-pagefile.md |  3 ++-
 .../create-a-token-object.md                      |  3 ++-
 .../create-global-objects.md                      |  3 ++-
 .../create-permanent-shared-objects.md            |  3 ++-
 .../create-symbolic-links.md                      |  3 ++-
 ...-descriptor-definition-language-sddl-syntax.md |  3 ++-
 ...-descriptor-definition-language-sddl-syntax.md |  3 ++-
 .../security-policy-settings/debug-programs.md    |  3 ++-
 ...ny-access-to-this-computer-from-the-network.md |  3 ++-
 .../deny-log-on-as-a-batch-job.md                 |  3 ++-
 .../deny-log-on-as-a-service.md                   |  3 ++-
 .../deny-log-on-locally.md                        |  3 ++-
 ...deny-log-on-through-remote-desktop-services.md |  3 ++-
 ...vices-allow-undock-without-having-to-log-on.md |  3 ++-
 ...allowed-to-format-and-eject-removable-media.md |  3 ++-
 ...event-users-from-installing-printer-drivers.md |  3 ++-
 ...d-rom-access-to-locally-logged-on-user-only.md |  3 ++-
 ...loppy-access-to-locally-logged-on-user-only.md |  3 ++-
 ...er-allow-server-operators-to-schedule-tasks.md |  3 ++-
 ...controller-ldap-server-signing-requirements.md |  3 ++-
 ...ler-refuse-machine-account-password-changes.md |  3 ++-
 ...-encrypt-or-sign-secure-channel-data-always.md |  3 ++-
 ...y-encrypt-secure-channel-data-when-possible.md |  3 ++-
 ...ally-sign-secure-channel-data-when-possible.md |  3 ++-
 ...er-disable-machine-account-password-changes.md |  3 ++-
 ...member-maximum-machine-account-password-age.md |  3 ++-
 ...re-strong-windows-2000-or-later-session-key.md |  3 ++-
 ...-user-accounts-to-be-trusted-for-delegation.md |  3 ++-
 .../enforce-password-history.md                   |  3 ++-
 .../enforce-user-logon-restrictions.md            |  3 ++-
 .../force-shutdown-from-a-remote-system.md        |  3 ++-
 .../generate-security-audits.md                   |  3 ++-
 .../how-to-configure-security-policy-settings.md  |  4 ++--
 .../impersonate-a-client-after-authentication.md  |  3 ++-
 .../increase-a-process-working-set.md             |  3 ++-
 .../increase-scheduling-priority.md               |  3 ++-
 ...user-information-when-the-session-is-locked.md |  3 ++-
 ...ractive-logon-do-not-display-last-user-name.md |  3 ++-
 ...teractive-logon-do-not-require-ctrl-alt-del.md |  3 ++-
 ...tive-logon-dont-display-username-at-sign-in.md |  5 +++--
 ...ive-logon-machine-account-lockout-threshold.md |  3 ++-
 .../interactive-logon-machine-inactivity-limit.md |  3 ++-
 ...message-text-for-users-attempting-to-log-on.md |  3 ++-
 ...essage-title-for-users-attempting-to-log-on.md |  3 ++-
 ...-in-case-domain-controller-is-not-available.md |  3 ++-
 ...t-user-to-change-password-before-expiration.md |  5 +++--
 ...roller-authentication-to-unlock-workstation.md |  3 ++-
 .../interactive-logon-require-smart-card.md       |  3 ++-
 ...teractive-logon-smart-card-removal-behavior.md |  3 ++-
 .../security-policy-settings/kerberos-policy.md   |  3 ++-
 .../load-and-unload-device-drivers.md             |  3 ++-
 .../lock-pages-in-memory.md                       |  3 ++-
 .../log-on-as-a-batch-job.md                      |  3 ++-
 .../log-on-as-a-service.md                        |  3 ++-
 .../manage-auditing-and-security-log.md           |  3 ++-
 .../maximum-lifetime-for-service-ticket.md        |  3 ++-
 .../maximum-lifetime-for-user-ticket-renewal.md   |  3 ++-
 .../maximum-lifetime-for-user-ticket.md           |  3 ++-
 .../maximum-password-age.md                       |  3 ++-
 ...olerance-for-computer-clock-synchronization.md |  3 ++-
 ...client-digitally-sign-communications-always.md |  3 ++-
 ...crypted-password-to-third-party-smb-servers.md |  3 ++-
 ...dle-time-required-before-suspending-session.md |  3 ++-
 ...ttempt-s4u2self-to-obtain-claim-information.md |  3 ++-
 ...server-digitally-sign-communications-always.md |  3 ++-
 ...-disconnect-clients-when-logon-hours-expire.md |  3 ++-
 ...ver-server-spn-target-name-validation-level.md |  3 ++-
 .../minimum-password-age.md                       |  3 ++-
 .../minimum-password-length.md                    |  3 ++-
 .../modify-an-object-label.md                     |  3 ++-
 .../modify-firmware-environment-values.md         |  3 ++-
 ...-access-allow-anonymous-sidname-translation.md |  3 ++-
 ...mous-enumeration-of-sam-accounts-and-shares.md |  3 ++-
 ...allow-anonymous-enumeration-of-sam-accounts.md |  3 ++-
 ...-and-credentials-for-network-authentication.md |  3 ++-
 ...eryone-permissions-apply-to-anonymous-users.md |  3 ++-
 ...amed-pipes-that-can-be-accessed-anonymously.md |  3 ++-
 ...tely-accessible-registry-paths-and-subpaths.md |  3 ++-
 ...k-access-remotely-accessible-registry-paths.md |  3 ++-
 ...-anonymous-access-to-named-pipes-and-shares.md |  3 ++-
 ...ct-clients-allowed-to-make-remote-sam-calls.md |  3 ++-
 ...ess-shares-that-can-be-accessed-anonymously.md |  3 ++-
 ...aring-and-security-model-for-local-accounts.md |  3 ++-
 .../network-list-manager-policies.md              |  3 ++-
 ...al-system-to-use-computer-identity-for-ntlm.md |  3 ++-
 ...ity-allow-localsystem-null-session-fallback.md |  3 ++-
 ...s-to-this-computer-to-use-online-identities.md |  3 ++-
 ...igure-encryption-types-allowed-for-kerberos.md |  3 ++-
 ...-manager-hash-value-on-next-password-change.md |  3 ++-
 ...curity-force-logoff-when-logon-hours-expire.md |  3 ++-
 ...k-security-lan-manager-authentication-level.md |  3 ++-
 ...k-security-ldap-client-signing-requirements.md |  3 ++-
 ...ntlm-ssp-based-including-secure-rpc-clients.md |  3 ++-
 ...ntlm-ssp-based-including-secure-rpc-servers.md |  3 ++-
 ...e-server-exceptions-for-ntlm-authentication.md |  3 ++-
 ...t-ntlm-add-server-exceptions-in-this-domain.md |  3 ++-
 ...y-restrict-ntlm-audit-incoming-ntlm-traffic.md |  3 ++-
 ...lm-audit-ntlm-authentication-in-this-domain.md |  3 ++-
 ...ecurity-restrict-ntlm-incoming-ntlm-traffic.md |  3 ++-
 ...ict-ntlm-ntlm-authentication-in-this-domain.md |  3 ++-
 ...tlm-outgoing-ntlm-traffic-to-remote-servers.md |  3 ++-
 .../password-must-meet-complexity-requirements.md |  3 ++-
 .../security-policy-settings/password-policy.md   |  3 ++-
 .../perform-volume-maintenance-tasks.md           |  3 ++-
 .../profile-single-process.md                     |  3 ++-
 .../profile-system-performance.md                 |  3 ++-
 ...onsole-allow-automatic-administrative-logon.md |  3 ++-
 ...y-copy-and-access-to-all-drives-and-folders.md |  3 ++-
 .../remove-computer-from-docking-station.md       |  3 ++-
 .../replace-a-process-level-token.md              |  3 ++-
 .../reset-account-lockout-counter-after.md        |  3 ++-
 .../restore-files-and-directories.md              |  3 ++-
 ...pol-advanced-security-audit-policy-settings.md |  3 ++-
 .../security-policy-settings/security-options.md  |  3 ++-
 .../security-policy-settings-reference.md         |  3 ++-
 .../security-policy-settings.md                   |  3 ++-
 .../shut-down-the-system.md                       |  3 ++-
 ...em-to-be-shut-down-without-having-to-log-on.md |  3 ++-
 .../shutdown-clear-virtual-memory-pagefile.md     |  3 ++-
 ...client-digitally-sign-communications-always.md |  3 ++-
 ...itally-sign-communications-if-server-agrees.md |  3 ++-
 ...server-digitally-sign-communications-always.md |  3 ++-
 ...itally-sign-communications-if-client-agrees.md |  3 ++-
 ...store-passwords-using-reversible-encryption.md |  3 ++-
 .../synchronize-directory-service-data.md         |  3 ++-
 ...ection-for-user-keys-stored-on-the-computer.md |  3 ++-
 ...gorithms-for-encryption-hashing-and-signing.md |  3 ++-
 ...se-insensitivity-for-non-windows-subsystems.md |  3 ++-
 ...ault-permissions-of-internal-system-objects.md |  3 ++-
 .../system-settings-optional-subsystems.md        |  3 ++-
 ...ecutables-for-software-restriction-policies.md |  3 ++-
 .../take-ownership-of-files-or-other-objects.md   |  3 ++-
 ...mode-for-the-built-in-administrator-account.md |  3 ++-
 ...-elevation-without-using-the-secure-desktop.md |  3 ++-
 ...t-for-administrators-in-admin-approval-mode.md |  3 ++-
 ...-of-the-elevation-prompt-for-standard-users.md |  3 ++-
 ...tion-installations-and-prompt-for-elevation.md |  3 ++-
 ...e-executables-that-are-signed-and-validated.md |  3 ++-
 ...ions-that-are-installed-in-secure-locations.md |  3 ++-
 ...n-all-administrators-in-admin-approval-mode.md |  3 ++-
 ...secure-desktop-when-prompting-for-elevation.md |  3 ++-
 ...gistry-write-failures-to-per-user-locations.md |  3 ++-
 .../user-rights-assignment.md                     |  3 ++-
 ...forwarding-to-assist-in-intrusion-detection.md |  3 ++-
 .../windows-10-mobile-security-guide.md           |  3 ++-
 .../LOB-win32-apps-on-s.md                        |  5 +++--
 ...windows-defender-application-control-policy.md |  5 +++--
 ...ackaged-apps-to-existing-applocker-rule-set.md |  3 ++-
 .../applocker/administer-applocker.md             |  3 ++-
 .../applocker-architecture-and-components.md      |  3 ++-
 .../applocker/applocker-functions.md              |  3 ++-
 .../applocker/applocker-overview.md               |  3 ++-
 .../applocker-policies-deployment-guide.md        |  3 ++-
 .../applocker/applocker-policies-design-guide.md  |  3 ++-
 .../applocker/applocker-policy-use-scenarios.md   |  3 ++-
 .../applocker-processes-and-interactions.md       |  3 ++-
 .../applocker/applocker-settings.md               |  3 ++-
 .../applocker/applocker-technical-reference.md    |  3 ++-
 ...onfigure-an-applocker-policy-for-audit-only.md |  3 ++-
 ...igure-an-applocker-policy-for-enforce-rules.md |  3 ++-
 .../configure-exceptions-for-an-applocker-rule.md |  3 ++-
 .../configure-the-appLocker-reference-device.md   |  3 ++-
 .../configure-the-application-identity-service.md |  3 ++-
 .../applocker/create-a-rule-for-packaged-apps.md  |  3 ++-
 ...eate-a-rule-that-uses-a-file-hash-condition.md |  3 ++-
 .../create-a-rule-that-uses-a-path-condition.md   |  3 ++-
 ...eate-a-rule-that-uses-a-publisher-condition.md |  3 ++-
 .../applocker/create-applocker-default-rules.md   |  3 ++-
 ...pplications-deployed-to-each-business-group.md |  3 ++-
 .../applocker/create-your-applocker-policies.md   |  3 ++-
 .../applocker/create-your-applocker-rules.md      |  3 ++-
 .../applocker/delete-an-applocker-rule.md         |  3 ++-
 ...policies-by-using-the-enforce-rules-setting.md |  3 ++-
 ...deploy-the-applocker-policy-into-production.md |  3 ++-
 ...group-policy-structure-and-rule-enforcement.md |  3 ++-
 ...re-digitally-signed-on-a-reference-computer.md |  3 ++-
 ...termine-your-application-control-objectives.md |  3 ++-
 ...when-users-try-to-run-a-blocked-application.md |  3 ++-
 .../applocker/dll-rules-in-applocker.md           |  3 ++-
 ...cy-structure-and-applocker-rule-enforcement.md |  3 ++-
 .../applocker/document-your-application-list.md   |  3 ++-
 .../applocker/document-your-applocker-rules.md    |  3 ++-
 .../applocker/edit-an-applocker-policy.md         |  3 ++-
 .../applocker/edit-applocker-rules.md             |  3 ++-
 .../applocker/enable-the-dll-rule-collection.md   |  3 ++-
 .../applocker/enforce-applocker-rules.md          |  3 ++-
 .../applocker/executable-rules-in-applocker.md    |  3 ++-
 .../export-an-applocker-policy-from-a-gpo.md      |  3 ++-
 .../export-an-applocker-policy-to-an-xml-file.md  |  3 ++-
 .../applocker/how-applocker-works-techref.md      |  3 ++-
 ...t-an-applocker-policy-from-another-computer.md |  3 ++-
 .../import-an-applocker-policy-into-a-gpo.md      |  3 ++-
 .../applocker/maintain-applocker-policies.md      |  3 ++-
 .../manage-packaged-apps-with-applocker.md        |  3 ++-
 ...ocker-policies-by-using-set-applockerpolicy.md |  3 ++-
 .../merge-applocker-policies-manually.md          |  3 ++-
 .../monitor-application-usage-with-applocker.md   |  3 ++-
 .../applocker/optimize-applocker-performance.md   |  3 ++-
 ...d-packaged-app-installer-rules-in-applocker.md |  3 ++-
 .../plan-for-applocker-policy-management.md       |  3 ++-
 .../applocker/refresh-an-applocker-policy.md      |  3 ++-
 ...quirements-for-deploying-applocker-policies.md |  3 ++-
 .../applocker/requirements-to-use-applocker.md    |  3 ++-
 ...run-the-automatically-generate-rules-wizard.md |  3 ++-
 .../applocker/script-rules-in-applocker.md        |  3 ++-
 .../security-considerations-for-applocker.md      |  3 ++-
 .../applocker/select-types-of-rules-to-create.md  |  3 ++-
 ...locker-policy-by-using-test-applockerpolicy.md |  3 ++-
 .../test-and-update-an-applocker-policy.md        |  3 ++-
 .../applocker/tools-to-use-with-applocker.md      |  3 ++-
 .../understand-applocker-enforcement-settings.md  |  3 ++-
 ...nderstand-applocker-policy-design-decisions.md |  3 ++-
 ...rcement-setting-inheritance-in-group-policy.md |  3 ++-
 ...and-the-applocker-policy-deployment-process.md |  3 ++-
 ...g-applocker-allow-and-deny-actions-on-rules.md |  3 ++-
 .../understanding-applocker-default-rules.md      |  3 ++-
 .../understanding-applocker-rule-behavior.md      |  3 ++-
 .../understanding-applocker-rule-collections.md   |  3 ++-
 ...nderstanding-applocker-rule-condition-types.md |  3 ++-
 .../understanding-applocker-rule-exceptions.md    |  3 ++-
 ...g-the-file-hash-rule-condition-in-applocker.md |  3 ++-
 ...anding-the-path-rule-condition-in-applocker.md |  3 ++-
 ...g-the-publisher-rule-condition-in-applocker.md |  3 ++-
 ...r-to-create-and-maintain-applocker-policies.md |  5 +++--
 ...are-restriction-policies-in-the-same-domain.md |  3 ++-
 ...se-the-applocker-windows-powershell-cmdlets.md |  3 ++-
 .../using-event-viewer-with-applocker.md          |  3 ++-
 ...restriction-policies-and-applocker-policies.md |  3 ++-
 .../applocker/what-is-applocker.md                |  3 ++-
 .../windows-installer-rules-in-applocker.md       |  3 ++-
 .../applocker/working-with-applocker-policies.md  |  3 ++-
 .../applocker/working-with-applocker-rules.md     |  3 ++-
 ...ndows-defender-application-control-policies.md |  5 +++--
 .../configure-wdac-managed-installer.md           |  5 +++--
 ...rt-for-windows-defender-application-control.md |  5 +++--
 .../create-initial-default-policy.md              |  5 +++--
 ...reate-wdac-policy-for-fully-managed-devices.md |  5 +++--
 ...ate-wdac-policy-for-lightly-managed-devices.md |  5 +++--
 ...upport-windows-defender-application-control.md |  5 +++--
 ...ndows-defender-application-control-policies.md |  5 +++--
 ...ication-control-policies-using-group-policy.md |  5 +++--
 ...r-application-control-policies-using-intune.md |  5 +++--
 ...ndows-defender-application-control-policies.md |  5 +++--
 ...ndows-defender-application-control-policies.md |  5 +++--
 .../event-id-explanations.md                      |  5 +++--
 .../event-tag-explanations.md                     |  5 +++--
 .../example-wdac-base-policies.md                 |  5 +++--
 .../feature-availability.md                       |  5 +++--
 ...s-with-windows-defender-application-control.md |  5 +++--
 ...ndows-defender-application-control-policies.md |  5 +++--
 .../microsoft-recommended-block-rules.md          |  7 ++++---
 .../microsoft-recommended-driver-block-rules.md   |  7 ++++---
 ...ows-defender-application-control-management.md |  5 +++--
 ...rol-events-centrally-using-advanced-hunting.md |  5 +++--
 .../select-types-of-rules-to-create.md            |  5 +++--
 .../types-of-devices.md                           |  3 ++-
 ...application-control-policy-design-decisions.md |  7 ++++---
 ...on-control-for-classic-windows-applications.md |  5 +++--
 ...ning-portal-in-microsoft-store-for-business.md |  3 ++-
 ...ender-application-control-against-tampering.md |  7 ++++---
 ...ntrol-specific-plug-ins-add-ins-and-modules.md |  3 ++-
 ...lication-control-with-dynamic-code-security.md |  5 +++--
 ...ion-control-with-intelligent-security-graph.md |  3 ++-
 ...-application-control-with-managed-installer.md |  7 ++++---
 .../wdac-and-applocker-overview.md                |  3 ++-
 .../wdac-wizard-create-base-policy.md             |  3 ++-
 .../wdac-wizard-create-supplemental-policy.md     |  3 ++-
 .../wdac-wizard-editing-policy.md                 |  3 ++-
 .../wdac-wizard-merging-policies.md               |  3 ++-
 .../wdac-wizard.md                                |  3 ++-
 ...fender-application-control-deployment-guide.md |  5 +++--
 ...s-defender-application-control-design-guide.md |  3 ++-
 ...ender-application-control-operational-guide.md |  3 ++-
 .../windows-defender-application-control.md       |  3 ++-
 .../wdsc-account-protection.md                    |  3 ++-
 .../wdsc-app-browser-control.md                   |  3 ++-
 .../wdsc-customize-contact-information.md         |  3 ++-
 .../wdsc-device-performance-health.md             |  3 ++-
 .../wdsc-device-security.md                       |  3 ++-
 .../wdsc-family-options.md                        |  3 ++-
 .../wdsc-firewall-network-protection.md           |  3 ++-
 .../wdsc-hide-notifications.md                    |  3 ++-
 .../wdsc-virus-threat-protection.md               |  3 ++-
 .../wdsc-windows-10-in-s-mode.md                  |  3 ++-
 .../windows-defender-security-center.md           |  3 ++-
 ...e-based-root-of-trust-helps-protect-windows.md |  3 ++-
 ...e-based-root-of-trust-helps-protect-windows.md |  3 ++-
 ...stem-guard-secure-launch-and-smm-protection.md |  3 ++-
 ...-devices-to-the-membership-group-for-a-zone.md |  3 ++-
 ...-devices-to-the-membership-group-for-a-zone.md |  3 ++-
 ...plate-files-for-settings-used-in-this-guide.md |  3 ++-
 .../assign-security-group-filters-to-the-gpo.md   |  3 ++-
 .../basic-firewall-policy-design.md               |  3 ++-
 .../best-practices-configuring.md                 |  8 +++-----
 .../windows-firewall/boundary-zone-gpos.md        |  3 ++-
 .../windows-firewall/boundary-zone.md             |  3 ++-
 ...icate-based-isolation-policy-design-example.md |  3 ++-
 .../certificate-based-isolation-policy-design.md  |  3 ++-
 .../change-rules-from-request-to-require-mode.md  |  3 ++-
 ...ecklist-configuring-basic-firewall-settings.md |  5 +++--
 ...nfiguring-rules-for-an-isolated-server-zone.md |  3 ++-
 ...ervers-in-a-standalone-isolated-server-zone.md |  3 ++-
 ...ist-configuring-rules-for-the-boundary-zone.md |  3 ++-
 ...t-configuring-rules-for-the-encryption-zone.md |  3 ++-
 ...t-configuring-rules-for-the-isolated-domain.md |  3 ++-
 .../checklist-creating-group-policy-objects.md    |  3 ++-
 .../checklist-creating-inbound-firewall-rules.md  |  3 ++-
 .../checklist-creating-outbound-firewall-rules.md |  3 ++-
 ...lients-of-a-standalone-isolated-server-zone.md |  3 ++-
 ...implementing-a-basic-firewall-policy-design.md |  5 +++--
 ...a-certificate-based-isolation-policy-design.md |  3 ++-
 ...plementing-a-domain-isolation-policy-design.md |  3 ++-
 ...a-standalone-server-isolation-policy-design.md |  3 ++-
 .../configure-authentication-methods.md           |  3 ++-
 ...nfigure-data-protection-quick-mode-settings.md |  3 ++-
 ...olicy-to-autoenroll-and-deploy-certificates.md |  3 ++-
 .../configure-key-exchange-main-mode-settings.md  |  3 ++-
 .../configure-the-rules-to-require-encryption.md  |  3 ++-
 .../configure-the-windows-firewall-log.md         |  3 ++-
 ...station-authentication-certificate-template.md |  3 ++-
 ...ess-notifications-when-a-program-is-blocked.md |  3 ++-
 ...rm-that-certificates-are-deployed-correctly.md |  3 ++-
 .../copy-a-gpo-to-create-a-new-gpo.md             |  3 ++-
 .../create-a-group-account-in-active-directory.md |  3 ++-
 .../create-a-group-policy-object.md               |  3 ++-
 ...reate-an-authentication-exemption-list-rule.md |  3 ++-
 .../create-an-authentication-request-rule.md      |  3 ++-
 .../create-an-inbound-icmp-rule.md                |  3 ++-
 .../create-an-inbound-port-rule.md                |  3 ++-
 .../create-an-inbound-program-or-service-rule.md  |  3 ++-
 .../create-an-outbound-port-rule.md               |  3 ++-
 .../create-an-outbound-program-or-service-rule.md |  3 ++-
 .../create-inbound-rules-to-support-rpc.md        |  3 ++-
 .../create-windows-firewall-rules-in-intune.md    |  3 ++-
 .../create-wmi-filters-for-the-gpo.md             |  3 ++-
 ...ws-firewall-with-advanced-security-strategy.md |  3 ++-
 ...termining-the-trusted-state-of-your-devices.md |  3 ++-
 .../windows-firewall/documenting-the-zones.md     |  3 ++-
 .../domain-isolation-policy-design-example.md     |  3 ++-
 .../domain-isolation-policy-design.md             |  3 ++-
 .../enable-predefined-inbound-rules.md            |  3 ++-
 .../enable-predefined-outbound-rules.md           |  3 ++-
 .../windows-firewall/encryption-zone-gpos.md      |  3 ++-
 .../windows-firewall/encryption-zone.md           |  3 ++-
 ...wall-with-advanced-security-design-examples.md |  3 ++-
 .../exempt-icmp-from-authentication.md            |  3 ++-
 .../windows-firewall/exemption-list.md            |  3 ++-
 .../filter-origin-documentation.md                |  7 ++++---
 .../windows-firewall/firewall-gpos.md             |  3 ++-
 .../firewall-policy-design-example.md             |  3 ++-
 .../firewall-settings-lost-on-upgrade.md          |  7 ++++---
 ...tion-about-your-active-directory-deployment.md |  3 ++-
 ...n-about-your-current-network-infrastructure.md |  3 ++-
 .../gathering-information-about-your-devices.md   |  3 ++-
 .../gathering-other-relevant-information.md       |  3 ++-
 .../gathering-the-information-you-need.md         |  3 ++-
 .../windows-firewall/gpo-domiso-boundary.md       |  3 ++-
 .../windows-firewall/gpo-domiso-encryption.md     |  3 ++-
 .../windows-firewall/gpo-domiso-firewall.md       |  3 ++-
 .../gpo-domiso-isolateddomain-clients.md          |  3 ++-
 .../gpo-domiso-isolateddomain-servers.md          |  3 ++-
 ...all-with-advanced-security-deployment-goals.md |  3 ++-
 ...firewall-with-advanced-security-design-plan.md |  3 ++-
 .../windows-firewall/isolated-domain-gpos.md      |  3 ++-
 .../windows-firewall/isolated-domain.md           |  3 ++-
 .../isolating-apps-on-your-network.md             |  3 ++-
 .../link-the-gpo-to-the-domain.md                 |  3 ++-
 ...dows-firewall-with-advanced-security-design.md |  5 +++--
 ...y-to-a-different-zone-or-version-of-windows.md |  3 ++-
 ...-management-console-to-ip-security-policies.md |  3 ++-
 ...-to-windows-firewall-with-advanced-security.md |  3 ++-
 ...licy-management-console-to-windows-firewall.md |  3 ++-
 ...pen-windows-firewall-with-advanced-security.md |  3 ++-
 .../planning-certificate-based-authentication.md  |  3 ++-
 .../planning-domain-isolation-zones.md            |  3 ++-
 .../windows-firewall/planning-gpo-deployment.md   |  3 ++-
 ...-policy-deployment-for-your-isolation-zones.md |  3 ++-
 .../planning-isolation-groups-for-the-zones.md    |  3 ++-
 .../planning-network-access-groups.md             |  3 ++-
 .../planning-server-isolation-zones.md            |  3 ++-
 ...anning-settings-for-a-basic-firewall-policy.md |  3 ++-
 .../windows-firewall/planning-the-gpos.md         |  3 ++-
 ...loy-windows-firewall-with-advanced-security.md |  3 ++-
 ...dows-firewall-with-advanced-security-design.md |  3 ++-
 .../procedures-used-in-this-guide.md              |  3 ++-
 ...otect-devices-from-unwanted-network-traffic.md |  3 ++-
 .../windows-firewall/quarantine.md                |  3 ++-
 ...-when-accessing-sensitive-network-resources.md |  3 ++-
 ...t-access-to-only-specified-users-or-devices.md |  3 ++-
 .../restrict-access-to-only-trusted-devices.md    |  3 ++-
 ...ct-server-access-to-members-of-a-group-only.md |  3 ++-
 ...end-to-end-ipsec-connections-by-using-ikev2.md |  3 ++-
 .../windows-firewall/server-isolation-gpos.md     |  3 ++-
 .../server-isolation-policy-design-example.md     |  3 ++-
 .../server-isolation-policy-design.md             |  3 ++-
 .../troubleshooting-uwp-firewall.md               |  8 ++++----
 ...ows-firewall-and-configure-default-behavior.md |  3 ++-
 ...ewall-with-advanced-security-design-process.md |  3 ++-
 ...erify-that-network-traffic-is-authenticated.md |  3 ++-
 ...rity-administration-with-windows-powershell.md |  3 ++-
 ...all-with-advanced-security-deployment-guide.md |  3 ++-
 ...irewall-with-advanced-security-design-guide.md |  3 ++-
 .../windows-firewall-with-advanced-security.md    |  3 ++-
 .../windows-platform-common-criteria.md           |  3 ++-
 .../windows-sandbox-architecture.md               |  3 ++-
 .../windows-sandbox-configure-using-wsb-file.md   |  3 ++-
 .../windows-sandbox/windows-sandbox-overview.md   |  5 +++--
 .../windows-security-baselines.md                 |  3 ++-
 .../get-support-for-security-baselines.md         |  3 ++-
 .../security-compliance-toolkit-10.md             |  3 ++-
 .../windows-security-baselines.md                 |  3 ++-
 1277 files changed, 3252 insertions(+), 2003 deletions(-)

diff --git a/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md b/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
index 2893cf7ece..6df69c3b35 100644
--- a/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
@@ -4,7 +4,7 @@ description: This reference for IT professionals provides information about the
 ms.assetid: 93b28b92-796f-4036-a53b-8b9e80f9f171
 ms.reviewer: This reference for IT professionals provides information about the advanced audit policy settings that are available in Windows and the audit events that they generate.
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Advanced security audit policy settings
diff --git a/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md b/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
index 99b8a989c4..86a39fc1b7 100644
--- a/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
+++ b/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional lists questions and answers abou
 ms.assetid: 80f8f187-0916-43c2-a7e8-ea712b115a06
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Advanced security auditing FAQ
diff --git a/windows/security/threat-protection/auditing/advanced-security-auditing.md b/windows/security/threat-protection/auditing/advanced-security-auditing.md
index 7c55d51d21..4a3608816f 100644
--- a/windows/security/threat-protection/auditing/advanced-security-auditing.md
+++ b/windows/security/threat-protection/auditing/advanced-security-auditing.md
@@ -4,7 +4,7 @@ description: Advanced security audit policy settings may appear to overlap with
 ms.assetid: 6FE8AC10-F48E-4BBF-979B-43A5DFDC5DFC
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Advanced security audit policies
diff --git a/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md b/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md
index 505da9bbb0..c892db7b11 100644
--- a/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md
+++ b/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md
@@ -2,7 +2,7 @@
 title: Appendix A, Security monitoring recommendations for many audit events (Windows 10)
 description: Learn about recommendations for the type of monitoring required for certain classes of security audit events.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Appendix A: Security monitoring recommendations for many audit events
diff --git a/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md b/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md
index a18783d92c..2d63b25eb8 100644
--- a/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md
+++ b/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md
@@ -4,7 +4,7 @@ description: Apply audit policies to individual files and folders on your comput
 ms.assetid: 565E7249-5CD0-4B2E-B2C0-B3A0793A51E2
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 07/25/2018
+ms.technology: mde
 ---
 
 # Apply a basic audit policy on a file or folder
diff --git a/windows/security/threat-protection/auditing/audit-account-lockout.md b/windows/security/threat-protection/auditing/audit-account-lockout.md
index 1ea3e878e6..77f8126a98 100644
--- a/windows/security/threat-protection/auditing/audit-account-lockout.md
+++ b/windows/security/threat-protection/auditing/audit-account-lockout.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 07/16/2018
+ms.technology: mde
 ---
 
 # Audit Account Lockout
diff --git a/windows/security/threat-protection/auditing/audit-application-generated.md b/windows/security/threat-protection/auditing/audit-application-generated.md
index b594ba40ca..9215959064 100644
--- a/windows/security/threat-protection/auditing/audit-application-generated.md
+++ b/windows/security/threat-protection/auditing/audit-application-generated.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Application Generated
diff --git a/windows/security/threat-protection/auditing/audit-application-group-management.md b/windows/security/threat-protection/auditing/audit-application-group-management.md
index 8dce282dfa..a06d67b8d9 100644
--- a/windows/security/threat-protection/auditing/audit-application-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-application-group-management.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Application Group Management
diff --git a/windows/security/threat-protection/auditing/audit-audit-policy-change.md b/windows/security/threat-protection/auditing/audit-audit-policy-change.md
index 376cab2bcf..81422c0d3f 100644
--- a/windows/security/threat-protection/auditing/audit-audit-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-audit-policy-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Audit Policy Change
diff --git a/windows/security/threat-protection/auditing/audit-authentication-policy-change.md b/windows/security/threat-protection/auditing/audit-authentication-policy-change.md
index 4a6f754c01..8bf74ed78f 100644
--- a/windows/security/threat-protection/auditing/audit-authentication-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-authentication-policy-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Authentication Policy Change
diff --git a/windows/security/threat-protection/auditing/audit-authorization-policy-change.md b/windows/security/threat-protection/auditing/audit-authorization-policy-change.md
index b13bec6cbc..c00445582a 100644
--- a/windows/security/threat-protection/auditing/audit-authorization-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-authorization-policy-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Authorization Policy Change
diff --git a/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md b/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md
index f655b5d8c6..e607b7c276 100644
--- a/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md
+++ b/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Central Access Policy Staging
diff --git a/windows/security/threat-protection/auditing/audit-certification-services.md b/windows/security/threat-protection/auditing/audit-certification-services.md
index a1e50c1538..24af233cc3 100644
--- a/windows/security/threat-protection/auditing/audit-certification-services.md
+++ b/windows/security/threat-protection/auditing/audit-certification-services.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Certification Services
diff --git a/windows/security/threat-protection/auditing/audit-computer-account-management.md b/windows/security/threat-protection/auditing/audit-computer-account-management.md
index ab838fd042..677244f857 100644
--- a/windows/security/threat-protection/auditing/audit-computer-account-management.md
+++ b/windows/security/threat-protection/auditing/audit-computer-account-management.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Computer Account Management
diff --git a/windows/security/threat-protection/auditing/audit-credential-validation.md b/windows/security/threat-protection/auditing/audit-credential-validation.md
index 9ce3b5aa5b..4fdf9060db 100644
--- a/windows/security/threat-protection/auditing/audit-credential-validation.md
+++ b/windows/security/threat-protection/auditing/audit-credential-validation.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Credential Validation
diff --git a/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md b/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md
index 859859fc2b..a6f472d018 100644
--- a/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md
+++ b/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Detailed Directory Service Replication
diff --git a/windows/security/threat-protection/auditing/audit-detailed-file-share.md b/windows/security/threat-protection/auditing/audit-detailed-file-share.md
index 3b223b9331..4428aad464 100644
--- a/windows/security/threat-protection/auditing/audit-detailed-file-share.md
+++ b/windows/security/threat-protection/auditing/audit-detailed-file-share.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Detailed File Share
diff --git a/windows/security/threat-protection/auditing/audit-directory-service-access.md b/windows/security/threat-protection/auditing/audit-directory-service-access.md
index 0a13f90a87..db603d8330 100644
--- a/windows/security/threat-protection/auditing/audit-directory-service-access.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-access.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Directory Service Access
diff --git a/windows/security/threat-protection/auditing/audit-directory-service-changes.md b/windows/security/threat-protection/auditing/audit-directory-service-changes.md
index 1a962ee86f..f81b20e2a5 100644
--- a/windows/security/threat-protection/auditing/audit-directory-service-changes.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-changes.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Directory Service Changes
diff --git a/windows/security/threat-protection/auditing/audit-directory-service-replication.md b/windows/security/threat-protection/auditing/audit-directory-service-replication.md
index dffea817d4..df8ddc7f12 100644
--- a/windows/security/threat-protection/auditing/audit-directory-service-replication.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-replication.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Directory Service Replication
diff --git a/windows/security/threat-protection/auditing/audit-distribution-group-management.md b/windows/security/threat-protection/auditing/audit-distribution-group-management.md
index 2bacdbe3a1..352eea4cfe 100644
--- a/windows/security/threat-protection/auditing/audit-distribution-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-distribution-group-management.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Distribution Group Management
diff --git a/windows/security/threat-protection/auditing/audit-dpapi-activity.md b/windows/security/threat-protection/auditing/audit-dpapi-activity.md
index fc94d79d95..7c346e1e52 100644
--- a/windows/security/threat-protection/auditing/audit-dpapi-activity.md
+++ b/windows/security/threat-protection/auditing/audit-dpapi-activity.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit DPAPI Activity
diff --git a/windows/security/threat-protection/auditing/audit-file-share.md b/windows/security/threat-protection/auditing/audit-file-share.md
index ccab879b4f..88b51b6a3f 100644
--- a/windows/security/threat-protection/auditing/audit-file-share.md
+++ b/windows/security/threat-protection/auditing/audit-file-share.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit File Share
diff --git a/windows/security/threat-protection/auditing/audit-file-system.md b/windows/security/threat-protection/auditing/audit-file-system.md
index 57ea7bc917..7da7e7d670 100644
--- a/windows/security/threat-protection/auditing/audit-file-system.md
+++ b/windows/security/threat-protection/auditing/audit-file-system.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit File System
diff --git a/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md b/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md
index 52475e4276..e45f321af3 100644
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Filtering Platform Connection
diff --git a/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md b/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md
index bdaff33b06..fabd2a6b86 100644
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Filtering Platform Packet Drop
diff --git a/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md b/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md
index 204a9b6320..72b892151f 100644
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Filtering Platform Policy Change
diff --git a/windows/security/threat-protection/auditing/audit-group-membership.md b/windows/security/threat-protection/auditing/audit-group-membership.md
index 5775f97220..37a86a6424 100644
--- a/windows/security/threat-protection/auditing/audit-group-membership.md
+++ b/windows/security/threat-protection/auditing/audit-group-membership.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Group Membership
diff --git a/windows/security/threat-protection/auditing/audit-handle-manipulation.md b/windows/security/threat-protection/auditing/audit-handle-manipulation.md
index 64fd2edce2..e82188ac78 100644
--- a/windows/security/threat-protection/auditing/audit-handle-manipulation.md
+++ b/windows/security/threat-protection/auditing/audit-handle-manipulation.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Handle Manipulation
diff --git a/windows/security/threat-protection/auditing/audit-ipsec-driver.md b/windows/security/threat-protection/auditing/audit-ipsec-driver.md
index d396f0ed40..606acf77a3 100644
--- a/windows/security/threat-protection/auditing/audit-ipsec-driver.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-driver.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 10/02/2018
+ms.technology: mde
 ---
 
 # Audit IPsec Driver
diff --git a/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md b/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md
index 37421d3b3e..179c4e5e22 100644
--- a/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 10/02/2018
+ms.technology: mde
 ---
 
 # Audit IPsec Extended Mode
diff --git a/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md b/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md
index bf2db28b53..092717cc70 100644
--- a/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 10/02/2018
+ms.technology: mde
 ---
 
 # Audit IPsec Main Mode
diff --git a/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md b/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md
index 290c41687a..fefab72132 100644
--- a/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 10/02/2018
+ms.technology: mde
 ---
 
 # Audit IPsec Quick Mode
diff --git a/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md b/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md
index 529003459d..14495b2794 100644
--- a/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md
+++ b/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Kerberos Authentication Service
diff --git a/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md b/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
index 0c95144cb1..555de3229e 100644
--- a/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
+++ b/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Kerberos Service Ticket Operations
diff --git a/windows/security/threat-protection/auditing/audit-kernel-object.md b/windows/security/threat-protection/auditing/audit-kernel-object.md
index 60f0a374d8..35d10b40fa 100644
--- a/windows/security/threat-protection/auditing/audit-kernel-object.md
+++ b/windows/security/threat-protection/auditing/audit-kernel-object.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Kernel Object
diff --git a/windows/security/threat-protection/auditing/audit-logoff.md b/windows/security/threat-protection/auditing/audit-logoff.md
index 011a5d397c..a07a10fd9a 100644
--- a/windows/security/threat-protection/auditing/audit-logoff.md
+++ b/windows/security/threat-protection/auditing/audit-logoff.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 07/16/2018
+ms.technology: mde
 ---
 
 # Audit Logoff
diff --git a/windows/security/threat-protection/auditing/audit-logon.md b/windows/security/threat-protection/auditing/audit-logon.md
index 711c16301c..e87dd6ad1d 100644
--- a/windows/security/threat-protection/auditing/audit-logon.md
+++ b/windows/security/threat-protection/auditing/audit-logon.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Logon
diff --git a/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md b/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md
index d58bafa0de..5107277a3d 100644
--- a/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit MPSSVC Rule-Level Policy Change
diff --git a/windows/security/threat-protection/auditing/audit-network-policy-server.md b/windows/security/threat-protection/auditing/audit-network-policy-server.md
index 697ae99b16..78f17fb1a1 100644
--- a/windows/security/threat-protection/auditing/audit-network-policy-server.md
+++ b/windows/security/threat-protection/auditing/audit-network-policy-server.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Network Policy Server
diff --git a/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md b/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
index b75e993891..8cf59016dd 100644
--- a/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
+++ b/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Non-Sensitive Privilege Use
diff --git a/windows/security/threat-protection/auditing/audit-other-account-logon-events.md b/windows/security/threat-protection/auditing/audit-other-account-logon-events.md
index 959a951636..39fa1e83de 100644
--- a/windows/security/threat-protection/auditing/audit-other-account-logon-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-account-logon-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other Account Logon Events
diff --git a/windows/security/threat-protection/auditing/audit-other-account-management-events.md b/windows/security/threat-protection/auditing/audit-other-account-management-events.md
index 2795a0bb73..bb5d7120a3 100644
--- a/windows/security/threat-protection/auditing/audit-other-account-management-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-account-management-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other Account Management Events
diff --git a/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md b/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md
index 9265129828..d50fe53957 100644
--- a/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other Logon/Logoff Events
diff --git a/windows/security/threat-protection/auditing/audit-other-object-access-events.md b/windows/security/threat-protection/auditing/audit-other-object-access-events.md
index 54b132e114..a485aa2d07 100644
--- a/windows/security/threat-protection/auditing/audit-other-object-access-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-object-access-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 05/29/2017
+ms.technology: mde
 ---
 
 # Audit Other Object Access Events
diff --git a/windows/security/threat-protection/auditing/audit-other-policy-change-events.md b/windows/security/threat-protection/auditing/audit-other-policy-change-events.md
index 2ceacf7bd7..5f55e34285 100644
--- a/windows/security/threat-protection/auditing/audit-other-policy-change-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-policy-change-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other Policy Change Events
diff --git a/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md b/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md
index 9adb4cfd74..87c74a4998 100644
--- a/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md
@@ -2,16 +2,17 @@
 title: Audit Other Privilege Use Events (Windows 10)
 description: Learn about the audit other privilege use events, an auditing subcategory that should not have any events in it but enables generation of event 4985(S).
 ms.assetid: 5f7f5b25-42a6-499f-8aa2-01ac79a2a63c
-ms.reviewer:
+ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other Privilege Use Events
diff --git a/windows/security/threat-protection/auditing/audit-other-system-events.md b/windows/security/threat-protection/auditing/audit-other-system-events.md
index 314723a738..7554066d42 100644
--- a/windows/security/threat-protection/auditing/audit-other-system-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-system-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Other System Events
diff --git a/windows/security/threat-protection/auditing/audit-pnp-activity.md b/windows/security/threat-protection/auditing/audit-pnp-activity.md
index 2d1298584a..16b696e3a2 100644
--- a/windows/security/threat-protection/auditing/audit-pnp-activity.md
+++ b/windows/security/threat-protection/auditing/audit-pnp-activity.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit PNP Activity
diff --git a/windows/security/threat-protection/auditing/audit-process-creation.md b/windows/security/threat-protection/auditing/audit-process-creation.md
index 2eb2aa20f8..456c7082b1 100644
--- a/windows/security/threat-protection/auditing/audit-process-creation.md
+++ b/windows/security/threat-protection/auditing/audit-process-creation.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Process Creation
diff --git a/windows/security/threat-protection/auditing/audit-process-termination.md b/windows/security/threat-protection/auditing/audit-process-termination.md
index 7ba49fbd59..97b0a91741 100644
--- a/windows/security/threat-protection/auditing/audit-process-termination.md
+++ b/windows/security/threat-protection/auditing/audit-process-termination.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Process Termination
diff --git a/windows/security/threat-protection/auditing/audit-registry.md b/windows/security/threat-protection/auditing/audit-registry.md
index 4b0d88838f..8b5fa48820 100644
--- a/windows/security/threat-protection/auditing/audit-registry.md
+++ b/windows/security/threat-protection/auditing/audit-registry.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Registry
diff --git a/windows/security/threat-protection/auditing/audit-removable-storage.md b/windows/security/threat-protection/auditing/audit-removable-storage.md
index 82d5170b7c..d09d98cb1d 100644
--- a/windows/security/threat-protection/auditing/audit-removable-storage.md
+++ b/windows/security/threat-protection/auditing/audit-removable-storage.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Removable Storage
diff --git a/windows/security/threat-protection/auditing/audit-rpc-events.md b/windows/security/threat-protection/auditing/audit-rpc-events.md
index b35eacaf51..59202d82fa 100644
--- a/windows/security/threat-protection/auditing/audit-rpc-events.md
+++ b/windows/security/threat-protection/auditing/audit-rpc-events.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit RPC Events
diff --git a/windows/security/threat-protection/auditing/audit-sam.md b/windows/security/threat-protection/auditing/audit-sam.md
index 6e60284ead..2d23fcdcce 100644
--- a/windows/security/threat-protection/auditing/audit-sam.md
+++ b/windows/security/threat-protection/auditing/audit-sam.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit SAM
diff --git a/windows/security/threat-protection/auditing/audit-security-group-management.md b/windows/security/threat-protection/auditing/audit-security-group-management.md
index d75b85e522..c80fe834a9 100644
--- a/windows/security/threat-protection/auditing/audit-security-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-security-group-management.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 02/28/2019
+ms.technology: mde
 ---
 
 # Audit Security Group Management
diff --git a/windows/security/threat-protection/auditing/audit-security-state-change.md b/windows/security/threat-protection/auditing/audit-security-state-change.md
index c10e8072f7..19614087bb 100644
--- a/windows/security/threat-protection/auditing/audit-security-state-change.md
+++ b/windows/security/threat-protection/auditing/audit-security-state-change.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Security State Change
diff --git a/windows/security/threat-protection/auditing/audit-security-system-extension.md b/windows/security/threat-protection/auditing/audit-security-system-extension.md
index 8c764f65c4..b787507ef4 100644
--- a/windows/security/threat-protection/auditing/audit-security-system-extension.md
+++ b/windows/security/threat-protection/auditing/audit-security-system-extension.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Security System Extension
diff --git a/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md b/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md
index 3bdb900b00..2f23c9cbcc 100644
--- a/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md
+++ b/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Sensitive Privilege Use
diff --git a/windows/security/threat-protection/auditing/audit-special-logon.md b/windows/security/threat-protection/auditing/audit-special-logon.md
index ec7e84c990..b17dccbcb1 100644
--- a/windows/security/threat-protection/auditing/audit-special-logon.md
+++ b/windows/security/threat-protection/auditing/audit-special-logon.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Special Logon
diff --git a/windows/security/threat-protection/auditing/audit-system-integrity.md b/windows/security/threat-protection/auditing/audit-system-integrity.md
index 89d27ff3cb..b461299ea0 100644
--- a/windows/security/threat-protection/auditing/audit-system-integrity.md
+++ b/windows/security/threat-protection/auditing/audit-system-integrity.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit System Integrity
diff --git a/windows/security/threat-protection/auditing/audit-token-right-adjusted.md b/windows/security/threat-protection/auditing/audit-token-right-adjusted.md
index bb9d974920..266ab2e3c9 100644
--- a/windows/security/threat-protection/auditing/audit-token-right-adjusted.md
+++ b/windows/security/threat-protection/auditing/audit-token-right-adjusted.md
@@ -5,7 +5,8 @@ manager: dansimp
 author: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
+ms.technology: mde
 ---
 
 # Audit Token Right Adjusted
diff --git a/windows/security/threat-protection/auditing/audit-user-account-management.md b/windows/security/threat-protection/auditing/audit-user-account-management.md
index 5b2d45cc98..145e04e477 100644
--- a/windows/security/threat-protection/auditing/audit-user-account-management.md
+++ b/windows/security/threat-protection/auditing/audit-user-account-management.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit User Account Management
diff --git a/windows/security/threat-protection/auditing/audit-user-device-claims.md b/windows/security/threat-protection/auditing/audit-user-device-claims.md
index bea0be45b0..6051e50d2f 100644
--- a/windows/security/threat-protection/auditing/audit-user-device-claims.md
+++ b/windows/security/threat-protection/auditing/audit-user-device-claims.md
@@ -6,12 +6,13 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit User/Device Claims
diff --git a/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md b/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md
index f345a84336..7e9d098f5d 100644
--- a/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md
@@ -4,7 +4,7 @@ description: Determines whether to audit each instance of a user logging on to o
 ms.assetid: 84B44181-E325-49A1-8398-AECC3CE0A516
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit account logon events
diff --git a/windows/security/threat-protection/auditing/basic-audit-account-management.md b/windows/security/threat-protection/auditing/basic-audit-account-management.md
index e699a88ac1..10a7cb1c8c 100644
--- a/windows/security/threat-protection/auditing/basic-audit-account-management.md
+++ b/windows/security/threat-protection/auditing/basic-audit-account-management.md
@@ -4,7 +4,7 @@ description: Determines whether to audit each event of account management on a d
 ms.assetid: 369197E1-7E0E-45A4-89EA-16D91EF01689
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit account management
diff --git a/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md b/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md
index 530a4255bc..e52e2e7382 100644
--- a/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md
+++ b/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md
@@ -4,7 +4,7 @@ description: Determines whether to audit the event of a user accessing an Active
 ms.assetid: 52F02EED-3CFE-4307-8D06-CF1E27693D09
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit directory service access
diff --git a/windows/security/threat-protection/auditing/basic-audit-logon-events.md b/windows/security/threat-protection/auditing/basic-audit-logon-events.md
index 66c1906086..c730790cfa 100644
--- a/windows/security/threat-protection/auditing/basic-audit-logon-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-logon-events.md
@@ -4,7 +4,7 @@ description: Determines whether to audit each instance of a user logging on to o
 ms.assetid: 78B5AFCB-0BBD-4C38-9FE9-6B4571B94A35
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit logon events
diff --git a/windows/security/threat-protection/auditing/basic-audit-object-access.md b/windows/security/threat-protection/auditing/basic-audit-object-access.md
index c3bada3ea8..7bb1357af3 100644
--- a/windows/security/threat-protection/auditing/basic-audit-object-access.md
+++ b/windows/security/threat-protection/auditing/basic-audit-object-access.md
@@ -4,7 +4,7 @@ description: The policy setting, Audit object access, determines whether to audi
 ms.assetid: D15B6D67-7886-44C2-9972-3F192D5407EA
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit object access
diff --git a/windows/security/threat-protection/auditing/basic-audit-policy-change.md b/windows/security/threat-protection/auditing/basic-audit-policy-change.md
index b80e5788af..a04167e8c2 100644
--- a/windows/security/threat-protection/auditing/basic-audit-policy-change.md
+++ b/windows/security/threat-protection/auditing/basic-audit-policy-change.md
@@ -4,7 +4,7 @@ description: Determines whether to audit every incident of a change to user righ
 ms.assetid: 1025A648-6B22-4C85-9F47-FE0897F1FA31
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit policy change
diff --git a/windows/security/threat-protection/auditing/basic-audit-privilege-use.md b/windows/security/threat-protection/auditing/basic-audit-privilege-use.md
index a3e7893fe6..4b6a28a415 100644
--- a/windows/security/threat-protection/auditing/basic-audit-privilege-use.md
+++ b/windows/security/threat-protection/auditing/basic-audit-privilege-use.md
@@ -4,7 +4,7 @@ description: Determines whether to audit each instance of a user exercising a us
 ms.assetid: C5C6DAAF-8B58-4DFB-B1CE-F0675AE0E9F8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit privilege use
diff --git a/windows/security/threat-protection/auditing/basic-audit-process-tracking.md b/windows/security/threat-protection/auditing/basic-audit-process-tracking.md
index 4f02eab9a3..c2e1ff94ca 100644
--- a/windows/security/threat-protection/auditing/basic-audit-process-tracking.md
+++ b/windows/security/threat-protection/auditing/basic-audit-process-tracking.md
@@ -4,7 +4,7 @@ description: Determines whether to audit detailed tracking information for event
 ms.assetid: 91AC5C1E-F4DA-4B16-BEE2-C92D66E4CEEA
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit process tracking
diff --git a/windows/security/threat-protection/auditing/basic-audit-system-events.md b/windows/security/threat-protection/auditing/basic-audit-system-events.md
index 7811de4253..8c5e33028e 100644
--- a/windows/security/threat-protection/auditing/basic-audit-system-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-system-events.md
@@ -4,7 +4,7 @@ description: Determines whether to audit when a user restarts or shuts down the
 ms.assetid: BF27588C-2AA7-4365-A4BF-3BB377916447
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit system events
diff --git a/windows/security/threat-protection/auditing/basic-security-audit-policies.md b/windows/security/threat-protection/auditing/basic-security-audit-policies.md
index 3856637432..fd291c792a 100644
--- a/windows/security/threat-protection/auditing/basic-security-audit-policies.md
+++ b/windows/security/threat-protection/auditing/basic-security-audit-policies.md
@@ -4,7 +4,7 @@ description: Learn about basic security audit policies that specify the categori
 ms.assetid: 3B678568-7AD7-4734-9BB4-53CF5E04E1D3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Basic security audit policies
diff --git a/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md b/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
index 686cdfdc71..0ddb0a6152 100644
--- a/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
@@ -4,7 +4,7 @@ description: Basic security audit policy settings are found under Computer Confi
 ms.assetid: 31C2C453-2CFC-4D9E-BC88-8CE1C1A8F900
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Basic security audit policy settings
diff --git a/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md b/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md
index 745c787671..526946d4b5 100644
--- a/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md
+++ b/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md
@@ -4,7 +4,7 @@ description: By defining auditing settings for specific event categories, you ca
 ms.assetid: C9F52751-B40D-482E-BE9D-2C61098249D3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create a basic audit policy for an event category
diff --git a/windows/security/threat-protection/auditing/event-1100.md b/windows/security/threat-protection/auditing/event-1100.md
index 251aa8834c..f3fbd46308 100644
--- a/windows/security/threat-protection/auditing/event-1100.md
+++ b/windows/security/threat-protection/auditing/event-1100.md
@@ -2,7 +2,7 @@
 title: 1100(S) The event logging service has shut down. (Windows 10)
 description: Describes security event 1100(S) The event logging service has shut down.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 1100(S): The event logging service has shut down.
diff --git a/windows/security/threat-protection/auditing/event-1102.md b/windows/security/threat-protection/auditing/event-1102.md
index 4a9b1e8b3a..fecf1badde 100644
--- a/windows/security/threat-protection/auditing/event-1102.md
+++ b/windows/security/threat-protection/auditing/event-1102.md
@@ -2,7 +2,7 @@
 title: 1102(S) The audit log was cleared. (Windows 10)
 description: Though you shouldn't normally see it, this event generates every time Windows Security audit log is cleared. This is for event 1102(S).
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 1102(S): The audit log was cleared.
diff --git a/windows/security/threat-protection/auditing/event-1104.md b/windows/security/threat-protection/auditing/event-1104.md
index fbcbb7dad9..8dbb841dce 100644
--- a/windows/security/threat-protection/auditing/event-1104.md
+++ b/windows/security/threat-protection/auditing/event-1104.md
@@ -1,8 +1,8 @@
 ---
 title: 1104(S) The security log is now full. (Windows 10)
-description: This event generates every time Windows security log becomes full and the event log retention method is set to "Do not overwrite events."
+description: This event generates every time Windows security log becomes full and the event log retention method is set to Do not overwrite events.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 1104(S): The security log is now full.
diff --git a/windows/security/threat-protection/auditing/event-1105.md b/windows/security/threat-protection/auditing/event-1105.md
index bd4e2bb72a..c08fa7be61 100644
--- a/windows/security/threat-protection/auditing/event-1105.md
+++ b/windows/security/threat-protection/auditing/event-1105.md
@@ -2,7 +2,7 @@
 title: 1105(S) Event log automatic backup. (Windows 10)
 description: This event generates every time Windows security log becomes full and new event log file was created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 1105(S): Event log automatic backup
diff --git a/windows/security/threat-protection/auditing/event-1108.md b/windows/security/threat-protection/auditing/event-1108.md
index 0aaa3b6a99..cd3bf45ca4 100644
--- a/windows/security/threat-protection/auditing/event-1108.md
+++ b/windows/security/threat-protection/auditing/event-1108.md
@@ -2,7 +2,7 @@
 title: The event logging service encountered an error (Windows 10)
 description: Describes security event 1108(S) The event logging service encountered an error while processing an incoming event published from %1.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 1108(S): The event logging service encountered an error while processing an incoming event published from %1.
diff --git a/windows/security/threat-protection/auditing/event-4608.md b/windows/security/threat-protection/auditing/event-4608.md
index 5f0730407d..6372e6acc2 100644
--- a/windows/security/threat-protection/auditing/event-4608.md
+++ b/windows/security/threat-protection/auditing/event-4608.md
@@ -2,7 +2,7 @@
 title: 4608(S) Windows is starting up. (Windows 10)
 description: Describes security event 4608(S) Windows is starting up. This event is logged when the LSASS.EXE process starts and the auditing subsystem is initialized.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4608(S): Windows is starting up.
diff --git a/windows/security/threat-protection/auditing/event-4610.md b/windows/security/threat-protection/auditing/event-4610.md
index c9be68814f..b85a2d5918 100644
--- a/windows/security/threat-protection/auditing/event-4610.md
+++ b/windows/security/threat-protection/auditing/event-4610.md
@@ -2,7 +2,7 @@
 title: 4610(S) An authentication package has been loaded by the Local Security Authority. (Windows 10)
 description: Describes security event 4610(S) An authentication package has been loaded by the Local Security Authority.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4610(S): An authentication package has been loaded by the Local Security Authority.
diff --git a/windows/security/threat-protection/auditing/event-4611.md b/windows/security/threat-protection/auditing/event-4611.md
index 6862a8d6a8..c3174b766e 100644
--- a/windows/security/threat-protection/auditing/event-4611.md
+++ b/windows/security/threat-protection/auditing/event-4611.md
@@ -2,7 +2,7 @@
 title: 4611(S) A trusted logon process has been registered with the Local Security Authority. (Windows 10)
 description: Describes security event 4611(S) A trusted logon process has been registered with the Local Security Authority.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4611(S): A trusted logon process has been registered with the Local Security Authority.
diff --git a/windows/security/threat-protection/auditing/event-4612.md b/windows/security/threat-protection/auditing/event-4612.md
index 2ca7cca35a..c4561550d5 100644
--- a/windows/security/threat-protection/auditing/event-4612.md
+++ b/windows/security/threat-protection/auditing/event-4612.md
@@ -2,7 +2,7 @@
 title: 4612(S) Internal resources allocated for the queuing of audit messages have been exhausted, leading to the loss of some audits. (Windows 10)
 description: Describes security event 4612(S) Internal resources allocated for the queuing of audit messages have been exhausted, leading to the loss of some audits.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4612(S): Internal resources allocated for the queuing of audit messages have been exhausted, leading to the loss of some audits.
diff --git a/windows/security/threat-protection/auditing/event-4614.md b/windows/security/threat-protection/auditing/event-4614.md
index f86b22408c..5bc966978c 100644
--- a/windows/security/threat-protection/auditing/event-4614.md
+++ b/windows/security/threat-protection/auditing/event-4614.md
@@ -2,7 +2,7 @@
 title: 4614(S) A notification package has been loaded by the Security Account Manager. (Windows 10)
 description: Describes security event 4614(S) A notification package has been loaded by the Security Account Manager.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4614(S): A notification package has been loaded by the Security Account Manager.
diff --git a/windows/security/threat-protection/auditing/event-4615.md b/windows/security/threat-protection/auditing/event-4615.md
index 0490e0ae3e..6c8f9cd7ac 100644
--- a/windows/security/threat-protection/auditing/event-4615.md
+++ b/windows/security/threat-protection/auditing/event-4615.md
@@ -2,7 +2,7 @@
 title: 4615(S) Invalid use of LPC port. (Windows 10)
 description: Describes security event 4615(S) Invalid use of LPC port. It appears that the Invalid use of LPC port event never occurs.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4615(S): Invalid use of LPC port.
diff --git a/windows/security/threat-protection/auditing/event-4616.md b/windows/security/threat-protection/auditing/event-4616.md
index 3f700f0719..690bde945f 100644
--- a/windows/security/threat-protection/auditing/event-4616.md
+++ b/windows/security/threat-protection/auditing/event-4616.md
@@ -2,7 +2,7 @@
 title: 4616(S) The system time was changed. (Windows 10)
 description: Describes security event 4616(S) The system time was changed. This event is generated every time system time is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4616(S): The system time was changed.
diff --git a/windows/security/threat-protection/auditing/event-4618.md b/windows/security/threat-protection/auditing/event-4618.md
index 4155868172..c1bc41f942 100644
--- a/windows/security/threat-protection/auditing/event-4618.md
+++ b/windows/security/threat-protection/auditing/event-4618.md
@@ -2,7 +2,7 @@
 title: 4618(S) A monitored security event pattern has occurred. (Windows 10)
 description: Describes security event 4618(S) A monitored security event pattern has occurred.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4618(S): A monitored security event pattern has occurred.
diff --git a/windows/security/threat-protection/auditing/event-4621.md b/windows/security/threat-protection/auditing/event-4621.md
index f3365acf99..8868b9b584 100644
--- a/windows/security/threat-protection/auditing/event-4621.md
+++ b/windows/security/threat-protection/auditing/event-4621.md
@@ -2,7 +2,7 @@
 title: 4621(S) Administrator recovered system from CrashOnAuditFail. (Windows 10)
 description: Describes security event 4621(S) Administrator recovered system from CrashOnAuditFail.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4621(S): Administrator recovered system from CrashOnAuditFail.
diff --git a/windows/security/threat-protection/auditing/event-4622.md b/windows/security/threat-protection/auditing/event-4622.md
index 385f508b09..3579709147 100644
--- a/windows/security/threat-protection/auditing/event-4622.md
+++ b/windows/security/threat-protection/auditing/event-4622.md
@@ -2,7 +2,7 @@
 title: 4622(S) A security package has been loaded by the Local Security Authority. (Windows 10)
 description: Describes security event 4622(S) A security package has been loaded by the Local Security Authority.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4622(S): A security package has been loaded by the Local Security Authority.
diff --git a/windows/security/threat-protection/auditing/event-4624.md b/windows/security/threat-protection/auditing/event-4624.md
index 637a86a151..49f1a0d83c 100644
--- a/windows/security/threat-protection/auditing/event-4624.md
+++ b/windows/security/threat-protection/auditing/event-4624.md
@@ -2,7 +2,7 @@
 title: 4624(S) An account was successfully logged on. (Windows 10)
 description: Describes security event 4624(S) An account was successfully logged on.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4624(S): An account was successfully logged on.
diff --git a/windows/security/threat-protection/auditing/event-4625.md b/windows/security/threat-protection/auditing/event-4625.md
index 293e52c57f..9dcf332398 100644
--- a/windows/security/threat-protection/auditing/event-4625.md
+++ b/windows/security/threat-protection/auditing/event-4625.md
@@ -2,7 +2,7 @@
 title: 4625(F) An account failed to log on. (Windows 10)
 description: Describes security event 4625(F) An account failed to log on. This event is generated if an account logon attempt failed for a locked out account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4625(F): An account failed to log on.
diff --git a/windows/security/threat-protection/auditing/event-4626.md b/windows/security/threat-protection/auditing/event-4626.md
index 2adc4b2f1b..667de4c561 100644
--- a/windows/security/threat-protection/auditing/event-4626.md
+++ b/windows/security/threat-protection/auditing/event-4626.md
@@ -2,7 +2,7 @@
 title: 4626(S) User/Device claims information. (Windows 10)
 description: Describes security event 4626(S) User/Device claims information. This event is generated for new account logons.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4626(S): User/Device claims information.
diff --git a/windows/security/threat-protection/auditing/event-4627.md b/windows/security/threat-protection/auditing/event-4627.md
index fb47564ea9..ff63c0c122 100644
--- a/windows/security/threat-protection/auditing/event-4627.md
+++ b/windows/security/threat-protection/auditing/event-4627.md
@@ -2,7 +2,7 @@
 title: 4627(S) Group membership information. (Windows 10)
 description: Describes security event 4627(S) Group membership information. This event is generated with event 4624(S) An account was successfully logged on.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4627(S): Group membership information.
diff --git a/windows/security/threat-protection/auditing/event-4634.md b/windows/security/threat-protection/auditing/event-4634.md
index d76dc2df61..b0541e2dbb 100644
--- a/windows/security/threat-protection/auditing/event-4634.md
+++ b/windows/security/threat-protection/auditing/event-4634.md
@@ -2,7 +2,7 @@
 title: 4634(S) An account was logged off. (Windows 10)
 description: Describes security event 4634(S) An account was logged off. This event is generated when a logon session is terminated and no longer exists.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 11/20/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4634(S): An account was logged off.
diff --git a/windows/security/threat-protection/auditing/event-4647.md b/windows/security/threat-protection/auditing/event-4647.md
index 26bbcd86f8..14dc2a7083 100644
--- a/windows/security/threat-protection/auditing/event-4647.md
+++ b/windows/security/threat-protection/auditing/event-4647.md
@@ -2,7 +2,7 @@
 title: 4647(S) User initiated logoff. (Windows 10)
 description: Describes security event 4647(S) User initiated logoff. This event is generated when a logoff is initiated. No further user-initiated activity can occur.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4647(S): User initiated logoff.
diff --git a/windows/security/threat-protection/auditing/event-4648.md b/windows/security/threat-protection/auditing/event-4648.md
index 5a44bd38f1..8483ee08ac 100644
--- a/windows/security/threat-protection/auditing/event-4648.md
+++ b/windows/security/threat-protection/auditing/event-4648.md
@@ -2,7 +2,7 @@
 title: 4648(S) A logon was attempted using explicit credentials. (Windows 10)
 description: Describes security event 4648(S) A logon was attempted using explicit credentials.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4648(S): A logon was attempted using explicit credentials.
diff --git a/windows/security/threat-protection/auditing/event-4649.md b/windows/security/threat-protection/auditing/event-4649.md
index dce0305250..06ae9ca1aa 100644
--- a/windows/security/threat-protection/auditing/event-4649.md
+++ b/windows/security/threat-protection/auditing/event-4649.md
@@ -2,7 +2,7 @@
 title: 4649(S) A replay attack was detected. (Windows 10)
 description: Describes security event 4649(S) A replay attack was detected. This event is generated when a KRB_AP_ERR_REPEAT Kerberos response is sent to the client.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4649(S): A replay attack was detected.
diff --git a/windows/security/threat-protection/auditing/event-4656.md b/windows/security/threat-protection/auditing/event-4656.md
index 918d665121..f0ce074332 100644
--- a/windows/security/threat-protection/auditing/event-4656.md
+++ b/windows/security/threat-protection/auditing/event-4656.md
@@ -2,7 +2,7 @@
 title: 4656(S, F) A handle to an object was requested. (Windows 10)
 description: Describes security event 4656(S, F) A handle to an object was requested.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4656(S, F): A handle to an object was requested.
diff --git a/windows/security/threat-protection/auditing/event-4657.md b/windows/security/threat-protection/auditing/event-4657.md
index cb009c97df..f7ebcac31c 100644
--- a/windows/security/threat-protection/auditing/event-4657.md
+++ b/windows/security/threat-protection/auditing/event-4657.md
@@ -2,7 +2,7 @@
 title: 4657(S) A registry value was modified. (Windows 10)
 description: Describes security event 4657(S) A registry value was modified. This event is generated when a registry key value is modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4657(S): A registry value was modified.
diff --git a/windows/security/threat-protection/auditing/event-4658.md b/windows/security/threat-protection/auditing/event-4658.md
index c461aa3d20..85b56fb6d0 100644
--- a/windows/security/threat-protection/auditing/event-4658.md
+++ b/windows/security/threat-protection/auditing/event-4658.md
@@ -2,7 +2,7 @@
 title: 4658(S) The handle to an object was closed. (Windows 10)
 description: Describes security event 4658(S) The handle to an object was closed. This event is generated when the handle to an object is closed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4658(S): The handle to an object was closed.
diff --git a/windows/security/threat-protection/auditing/event-4660.md b/windows/security/threat-protection/auditing/event-4660.md
index 0823b6ae3e..db4a9fd649 100644
--- a/windows/security/threat-protection/auditing/event-4660.md
+++ b/windows/security/threat-protection/auditing/event-4660.md
@@ -2,7 +2,7 @@
 title: 4660(S) An object was deleted. (Windows 10)
 description: Describes security event 4660(S) An object was deleted. This event is generated when an object is deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4660(S): An object was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4661.md b/windows/security/threat-protection/auditing/event-4661.md
index 13513c1eb8..1fd43e2292 100644
--- a/windows/security/threat-protection/auditing/event-4661.md
+++ b/windows/security/threat-protection/auditing/event-4661.md
@@ -2,7 +2,7 @@
 title: 4661(S, F) A handle to an object was requested. (Windows 10)
 description: Describes security event 4661(S, F) A handle to an object was requested.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4661(S, F): A handle to an object was requested.
diff --git a/windows/security/threat-protection/auditing/event-4662.md b/windows/security/threat-protection/auditing/event-4662.md
index 31fd7fd716..8998dbb81a 100644
--- a/windows/security/threat-protection/auditing/event-4662.md
+++ b/windows/security/threat-protection/auditing/event-4662.md
@@ -2,7 +2,7 @@
 title: 4662(S, F) An operation was performed on an object. (Windows 10)
 description: Describes security event 4662(S, F) An operation was performed on an object.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4662(S, F): An operation was performed on an object.
diff --git a/windows/security/threat-protection/auditing/event-4663.md b/windows/security/threat-protection/auditing/event-4663.md
index 44da729457..367e5eb029 100644
--- a/windows/security/threat-protection/auditing/event-4663.md
+++ b/windows/security/threat-protection/auditing/event-4663.md
@@ -2,7 +2,7 @@
 title: 4663(S) An attempt was made to access an object. (Windows 10)
 description: Describes security event 4663(S) An attempt was made to access an object.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4663(S): An attempt was made to access an object.
diff --git a/windows/security/threat-protection/auditing/event-4664.md b/windows/security/threat-protection/auditing/event-4664.md
index 6f60cce3a7..9c99e5f2bc 100644
--- a/windows/security/threat-protection/auditing/event-4664.md
+++ b/windows/security/threat-protection/auditing/event-4664.md
@@ -2,7 +2,7 @@
 title: 4664(S) An attempt was made to create a hard link. (Windows 10)
 description: Describes security event 4664(S) An attempt was made to create a hard link.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4664(S): An attempt was made to create a hard link.
diff --git a/windows/security/threat-protection/auditing/event-4670.md b/windows/security/threat-protection/auditing/event-4670.md
index bc6d20907b..c52b274d4f 100644
--- a/windows/security/threat-protection/auditing/event-4670.md
+++ b/windows/security/threat-protection/auditing/event-4670.md
@@ -2,7 +2,7 @@
 title: 4670(S) Permissions on an object were changed. (Windows 10)
 description: Describes security event 4670(S) Permissions on an object were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4670(S): Permissions on an object were changed.
diff --git a/windows/security/threat-protection/auditing/event-4671.md b/windows/security/threat-protection/auditing/event-4671.md
index 3e81e5f2f6..fb46f1fb5a 100644
--- a/windows/security/threat-protection/auditing/event-4671.md
+++ b/windows/security/threat-protection/auditing/event-4671.md
@@ -2,7 +2,7 @@
 title: 4671(-) An application attempted to access a blocked ordinal through the TBS. (Windows 10)
 description: Describes security event 4671(-) An application attempted to access a blocked ordinal through the TBS.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4671(-): An application attempted to access a blocked ordinal through the TBS.
diff --git a/windows/security/threat-protection/auditing/event-4672.md b/windows/security/threat-protection/auditing/event-4672.md
index 81b9fd94a0..60e95bde44 100644
--- a/windows/security/threat-protection/auditing/event-4672.md
+++ b/windows/security/threat-protection/auditing/event-4672.md
@@ -2,7 +2,7 @@
 title: 4672(S) Special privileges assigned to new logon. (Windows 10)
 description: Describes security event 4672(S) Special privileges assigned to new logon.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 12/20/2018
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4672(S): Special privileges assigned to new logon.
diff --git a/windows/security/threat-protection/auditing/event-4673.md b/windows/security/threat-protection/auditing/event-4673.md
index c647485d66..579be30565 100644
--- a/windows/security/threat-protection/auditing/event-4673.md
+++ b/windows/security/threat-protection/auditing/event-4673.md
@@ -2,7 +2,7 @@
 title: 4673(S, F) A privileged service was called. (Windows 10)
 description: Describes security event 4673(S, F) A privileged service was called. This event is generated for an attempt to perform privileged system service operations.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4673(S, F): A privileged service was called.
diff --git a/windows/security/threat-protection/auditing/event-4674.md b/windows/security/threat-protection/auditing/event-4674.md
index 5781254277..5eecd1f2b5 100644
--- a/windows/security/threat-protection/auditing/event-4674.md
+++ b/windows/security/threat-protection/auditing/event-4674.md
@@ -2,7 +2,7 @@
 title: 4674(S, F) An operation was attempted on a privileged object. (Windows 10)
 description: Describes security event 4674(S, F) An operation was attempted on a privileged object.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4674(S, F): An operation was attempted on a privileged object.
diff --git a/windows/security/threat-protection/auditing/event-4675.md b/windows/security/threat-protection/auditing/event-4675.md
index 978d25bf39..0af7742f2c 100644
--- a/windows/security/threat-protection/auditing/event-4675.md
+++ b/windows/security/threat-protection/auditing/event-4675.md
@@ -2,7 +2,7 @@
 title: 4675(S) SIDs were filtered. (Windows 10)
 description: Describes security event 4675(S) SIDs were filtered. This event is generated when SIDs were filtered for a specific Active Directory trust.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4675(S): SIDs were filtered.
diff --git a/windows/security/threat-protection/auditing/event-4688.md b/windows/security/threat-protection/auditing/event-4688.md
index 4c48e4623a..31baef1ba5 100644
--- a/windows/security/threat-protection/auditing/event-4688.md
+++ b/windows/security/threat-protection/auditing/event-4688.md
@@ -2,7 +2,7 @@
 title: 4688(S) A new process has been created. (Windows 10)
 description: Describes security event 4688(S) A new process has been created. This event is generated when a new process starts.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4688(S): A new process has been created.
diff --git a/windows/security/threat-protection/auditing/event-4689.md b/windows/security/threat-protection/auditing/event-4689.md
index 81c27d0423..99bee451d9 100644
--- a/windows/security/threat-protection/auditing/event-4689.md
+++ b/windows/security/threat-protection/auditing/event-4689.md
@@ -2,7 +2,7 @@
 title: 4689(S) A process has exited. (Windows 10)
 description: Describes security event 4689(S) A process has exited. This event is generates when a process exits.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4689(S): A process has exited.
diff --git a/windows/security/threat-protection/auditing/event-4690.md b/windows/security/threat-protection/auditing/event-4690.md
index be4ce4de7c..d7a23d1da4 100644
--- a/windows/security/threat-protection/auditing/event-4690.md
+++ b/windows/security/threat-protection/auditing/event-4690.md
@@ -2,7 +2,7 @@
 title: 4690(S) An attempt was made to duplicate a handle to an object. (Windows 10)
 description: Describes security event 4690(S) An attempt was made to duplicate a handle to an object.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4690(S): An attempt was made to duplicate a handle to an object.
diff --git a/windows/security/threat-protection/auditing/event-4691.md b/windows/security/threat-protection/auditing/event-4691.md
index 001cce1266..cadefa2220 100644
--- a/windows/security/threat-protection/auditing/event-4691.md
+++ b/windows/security/threat-protection/auditing/event-4691.md
@@ -2,7 +2,7 @@
 title: 4691(S) Indirect access to an object was requested. (Windows 10)
 description: Describes security event 4691(S) Indirect access to an object was requested.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4691(S): Indirect access to an object was requested.
diff --git a/windows/security/threat-protection/auditing/event-4692.md b/windows/security/threat-protection/auditing/event-4692.md
index dc84c4c3d6..5d421a4e9f 100644
--- a/windows/security/threat-protection/auditing/event-4692.md
+++ b/windows/security/threat-protection/auditing/event-4692.md
@@ -2,7 +2,7 @@
 title: 4692(S, F) Backup of data protection master key was attempted. (Windows 10)
 description: Describes security event 4692(S, F) Backup of data protection master key was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4692(S, F): Backup of data protection master key was attempted.
diff --git a/windows/security/threat-protection/auditing/event-4693.md b/windows/security/threat-protection/auditing/event-4693.md
index 72c5473fe1..705ede7a61 100644
--- a/windows/security/threat-protection/auditing/event-4693.md
+++ b/windows/security/threat-protection/auditing/event-4693.md
@@ -2,7 +2,7 @@
 title: 4693(S, F) Recovery of data protection master key was attempted. (Windows 10)
 description: Describes security event 4693(S, F) Recovery of data protection master key was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4693(S, F): Recovery of data protection master key was attempted.
diff --git a/windows/security/threat-protection/auditing/event-4694.md b/windows/security/threat-protection/auditing/event-4694.md
index 9d96a529ac..3d9e4f51cf 100644
--- a/windows/security/threat-protection/auditing/event-4694.md
+++ b/windows/security/threat-protection/auditing/event-4694.md
@@ -2,7 +2,7 @@
 title: 4694(S, F) Protection of auditable protected data was attempted. (Windows 10)
 description: Describes security event 4694(S, F) Protection of auditable protected data was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4694(S, F): Protection of auditable protected data was attempted.
diff --git a/windows/security/threat-protection/auditing/event-4695.md b/windows/security/threat-protection/auditing/event-4695.md
index 675ba33601..cbca831957 100644
--- a/windows/security/threat-protection/auditing/event-4695.md
+++ b/windows/security/threat-protection/auditing/event-4695.md
@@ -2,7 +2,7 @@
 title: 4695(S, F) Unprotection of auditable protected data was attempted. (Windows 10)
 description: Describes security event 4695(S, F) Unprotection of auditable protected data was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4695(S, F): Unprotection of auditable protected data was attempted.
diff --git a/windows/security/threat-protection/auditing/event-4696.md b/windows/security/threat-protection/auditing/event-4696.md
index 0268cd25a8..520d0d5d1e 100644
--- a/windows/security/threat-protection/auditing/event-4696.md
+++ b/windows/security/threat-protection/auditing/event-4696.md
@@ -2,7 +2,7 @@
 title: 4696(S) A primary token was assigned to process. (Windows 10)
 description: Describes security event 4696(S) A primary token was assigned to process.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4696(S): A primary token was assigned to process.
diff --git a/windows/security/threat-protection/auditing/event-4697.md b/windows/security/threat-protection/auditing/event-4697.md
index d454c05905..090b2436e1 100644
--- a/windows/security/threat-protection/auditing/event-4697.md
+++ b/windows/security/threat-protection/auditing/event-4697.md
@@ -2,7 +2,7 @@
 title: 4697(S) A service was installed in the system. (Windows 10)
 description: Describes security event 4697(S) A service was installed in the system.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4697(S): A service was installed in the system.
diff --git a/windows/security/threat-protection/auditing/event-4698.md b/windows/security/threat-protection/auditing/event-4698.md
index a6f3256c16..567815e3b8 100644
--- a/windows/security/threat-protection/auditing/event-4698.md
+++ b/windows/security/threat-protection/auditing/event-4698.md
@@ -2,7 +2,7 @@
 title: 4698(S) A scheduled task was created. (Windows 10)
 description: Describes security event 4698(S) A scheduled task was created. This event is generated when a scheduled task is created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4698(S): A scheduled task was created.
diff --git a/windows/security/threat-protection/auditing/event-4699.md b/windows/security/threat-protection/auditing/event-4699.md
index 48148e6246..5b2861c4d1 100644
--- a/windows/security/threat-protection/auditing/event-4699.md
+++ b/windows/security/threat-protection/auditing/event-4699.md
@@ -2,7 +2,7 @@
 title: 4699(S) A scheduled task was deleted. (Windows 10)
 description: Describes security event 4699(S) A scheduled task was deleted. This event is generated every time a scheduled task is deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4699(S): A scheduled task was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4700.md b/windows/security/threat-protection/auditing/event-4700.md
index 8d39b0e38d..90e9f7b574 100644
--- a/windows/security/threat-protection/auditing/event-4700.md
+++ b/windows/security/threat-protection/auditing/event-4700.md
@@ -2,7 +2,7 @@
 title: 4700(S) A scheduled task was enabled. (Windows 10)
 description: Describes security event 4700(S) A scheduled task was enabled. This event is generated every time a scheduled task is enabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4700(S): A scheduled task was enabled.
diff --git a/windows/security/threat-protection/auditing/event-4701.md b/windows/security/threat-protection/auditing/event-4701.md
index ef24c397fc..bc81734079 100644
--- a/windows/security/threat-protection/auditing/event-4701.md
+++ b/windows/security/threat-protection/auditing/event-4701.md
@@ -2,7 +2,7 @@
 title: 4701(S) A scheduled task was disabled. (Windows 10)
 description: Describes security event 4701(S) A scheduled task was disabled. This event is generated every time a scheduled task is disabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4701(S): A scheduled task was disabled.
diff --git a/windows/security/threat-protection/auditing/event-4702.md b/windows/security/threat-protection/auditing/event-4702.md
index 393a0619d6..f6d5b753e4 100644
--- a/windows/security/threat-protection/auditing/event-4702.md
+++ b/windows/security/threat-protection/auditing/event-4702.md
@@ -2,7 +2,7 @@
 title: 4702(S) A scheduled task was updated. (Windows 10)
 description: Describes security event 4702(S) A scheduled task was updated. This event is generated when a scheduled task is updated/changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4702(S): A scheduled task was updated.
diff --git a/windows/security/threat-protection/auditing/event-4703.md b/windows/security/threat-protection/auditing/event-4703.md
index 7483483ea2..e0a624d4fb 100644
--- a/windows/security/threat-protection/auditing/event-4703.md
+++ b/windows/security/threat-protection/auditing/event-4703.md
@@ -2,7 +2,7 @@
 title: 4703(S) A user right was adjusted. (Windows 10)
 description: Describes security event 4703(S) A user right was adjusted. This event is generated when token privileges are enabled or disabled for a specific account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4703(S): A user right was adjusted.
diff --git a/windows/security/threat-protection/auditing/event-4704.md b/windows/security/threat-protection/auditing/event-4704.md
index bc3e9d5c3a..d1d045bb0d 100644
--- a/windows/security/threat-protection/auditing/event-4704.md
+++ b/windows/security/threat-protection/auditing/event-4704.md
@@ -2,7 +2,7 @@
 title: 4704(S) A user right was assigned. (Windows 10)
 description: Describes security event 4704(S) A user right was assigned. This event is generated when a user right is assigned to an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4704(S): A user right was assigned.
diff --git a/windows/security/threat-protection/auditing/event-4705.md b/windows/security/threat-protection/auditing/event-4705.md
index 5b337c9941..317b3b23fb 100644
--- a/windows/security/threat-protection/auditing/event-4705.md
+++ b/windows/security/threat-protection/auditing/event-4705.md
@@ -2,7 +2,7 @@
 title: 4705(S) A user right was removed. (Windows 10)
 description: Describes security event 4705(S) A user right was removed. This event is generated when a user right is removed from an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4705(S): A user right was removed.
diff --git a/windows/security/threat-protection/auditing/event-4706.md b/windows/security/threat-protection/auditing/event-4706.md
index 2a57c47db5..d39473364c 100644
--- a/windows/security/threat-protection/auditing/event-4706.md
+++ b/windows/security/threat-protection/auditing/event-4706.md
@@ -2,7 +2,7 @@
 title: 4706(S) A new trust was created to a domain. (Windows 10)
 description: Describes security event 4706(S) A new trust was created to a domain. This event is generated when a new trust is created for a domain.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4706(S): A new trust was created to a domain.
diff --git a/windows/security/threat-protection/auditing/event-4707.md b/windows/security/threat-protection/auditing/event-4707.md
index dc7e2f5419..f16f66bdcd 100644
--- a/windows/security/threat-protection/auditing/event-4707.md
+++ b/windows/security/threat-protection/auditing/event-4707.md
@@ -2,7 +2,7 @@
 title: 4707(S) A trust to a domain was removed. (Windows 10)
 description: Describes security event 4707(S) A trust to a domain was removed. This event is generated when a domain trust is removed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4707(S): A trust to a domain was removed.
diff --git a/windows/security/threat-protection/auditing/event-4713.md b/windows/security/threat-protection/auditing/event-4713.md
index 69c6f2f153..3c7ada997e 100644
--- a/windows/security/threat-protection/auditing/event-4713.md
+++ b/windows/security/threat-protection/auditing/event-4713.md
@@ -2,7 +2,7 @@
 title: 4713(S) Kerberos policy was changed. (Windows 10)
 description: Describes security event 4713(S) Kerberos policy was changed. This event is generated when Kerberos policy is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4713(S): Kerberos policy was changed.
diff --git a/windows/security/threat-protection/auditing/event-4714.md b/windows/security/threat-protection/auditing/event-4714.md
index c81891ffc9..36dec3a969 100644
--- a/windows/security/threat-protection/auditing/event-4714.md
+++ b/windows/security/threat-protection/auditing/event-4714.md
@@ -2,7 +2,7 @@
 title: 4714(S) Encrypted data recovery policy was changed. (Windows 10)
 description: Describes security event 4714(S) Encrypted data recovery policy was changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4714(S): Encrypted data recovery policy was changed.
diff --git a/windows/security/threat-protection/auditing/event-4715.md b/windows/security/threat-protection/auditing/event-4715.md
index c51f51c999..d4e9d14839 100644
--- a/windows/security/threat-protection/auditing/event-4715.md
+++ b/windows/security/threat-protection/auditing/event-4715.md
@@ -2,7 +2,7 @@
 title: 4715(S) The audit policy (SACL) on an object was changed. (Windows 10)
 description: Describes security event 4715(S) The audit policy (SACL) on an object was changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4715(S): The audit policy (SACL) on an object was changed.
diff --git a/windows/security/threat-protection/auditing/event-4716.md b/windows/security/threat-protection/auditing/event-4716.md
index 4ab122d7f1..35b1bfc9d2 100644
--- a/windows/security/threat-protection/auditing/event-4716.md
+++ b/windows/security/threat-protection/auditing/event-4716.md
@@ -2,7 +2,7 @@
 title: 4716(S) Trusted domain information was modified. (Windows 10)
 description: Describes security event 4716(S) Trusted domain information was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/04/2019
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4716(S): Trusted domain information was modified.
diff --git a/windows/security/threat-protection/auditing/event-4717.md b/windows/security/threat-protection/auditing/event-4717.md
index ffe87e87e0..ddbd9f66db 100644
--- a/windows/security/threat-protection/auditing/event-4717.md
+++ b/windows/security/threat-protection/auditing/event-4717.md
@@ -2,7 +2,7 @@
 title: 4717(S) System security access was granted to an account. (Windows 10)
 description: Describes security event 4717(S) System security access was granted to an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4717(S): System security access was granted to an account.
diff --git a/windows/security/threat-protection/auditing/event-4718.md b/windows/security/threat-protection/auditing/event-4718.md
index ecef74c71a..0e7892c9c8 100644
--- a/windows/security/threat-protection/auditing/event-4718.md
+++ b/windows/security/threat-protection/auditing/event-4718.md
@@ -2,7 +2,7 @@
 title: 4718(S) System security access was removed from an account. (Windows 10)
 description: Describes security event 4718(S) System security access was removed from an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4718(S): System security access was removed from an account.
diff --git a/windows/security/threat-protection/auditing/event-4719.md b/windows/security/threat-protection/auditing/event-4719.md
index e634cf0bbf..98469b6945 100644
--- a/windows/security/threat-protection/auditing/event-4719.md
+++ b/windows/security/threat-protection/auditing/event-4719.md
@@ -2,7 +2,7 @@
 title: 4719(S) System audit policy was changed. (Windows 10)
 description: Describes security event 4719(S) System audit policy was changed. This event is generated when the computer audit policy changes.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4719(S): System audit policy was changed.
diff --git a/windows/security/threat-protection/auditing/event-4720.md b/windows/security/threat-protection/auditing/event-4720.md
index d18fd86200..1569aebb53 100644
--- a/windows/security/threat-protection/auditing/event-4720.md
+++ b/windows/security/threat-protection/auditing/event-4720.md
@@ -2,7 +2,7 @@
 title: 4720(S) A user account was created. (Windows 10)
 description: Describes security event 4720(S) A user account was created. This event is generated a user object is created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4720(S): A user account was created.
diff --git a/windows/security/threat-protection/auditing/event-4722.md b/windows/security/threat-protection/auditing/event-4722.md
index 97a958aba9..e156a9bedf 100644
--- a/windows/security/threat-protection/auditing/event-4722.md
+++ b/windows/security/threat-protection/auditing/event-4722.md
@@ -2,7 +2,7 @@
 title: 4722(S) A user account was enabled. (Windows 10)
 description: Describes security event 4722(S) A user account was enabled. This event is generated when a user or computer object is enabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4722(S): A user account was enabled.
diff --git a/windows/security/threat-protection/auditing/event-4723.md b/windows/security/threat-protection/auditing/event-4723.md
index 4622d802a2..8a2eb1aa9b 100644
--- a/windows/security/threat-protection/auditing/event-4723.md
+++ b/windows/security/threat-protection/auditing/event-4723.md
@@ -2,7 +2,7 @@
 title: 4723(S, F) An attempt was made to change an account's password. (Windows 10)
 description: Describes security event 4723(S, F) An attempt was made to change an account's password.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4723(S, F): An attempt was made to change an account's password.
diff --git a/windows/security/threat-protection/auditing/event-4724.md b/windows/security/threat-protection/auditing/event-4724.md
index 3d9bbc1a0d..f360a13828 100644
--- a/windows/security/threat-protection/auditing/event-4724.md
+++ b/windows/security/threat-protection/auditing/event-4724.md
@@ -2,7 +2,7 @@
 title: 4724(S, F) An attempt was made to reset an account's password. (Windows 10)
 description: Describes security event 4724(S, F) An attempt was made to reset an account's password.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4724(S, F): An attempt was made to reset an account's password.
diff --git a/windows/security/threat-protection/auditing/event-4725.md b/windows/security/threat-protection/auditing/event-4725.md
index c1bdc4c1f4..5be795b261 100644
--- a/windows/security/threat-protection/auditing/event-4725.md
+++ b/windows/security/threat-protection/auditing/event-4725.md
@@ -2,7 +2,7 @@
 title: 4725(S) A user account was disabled. (Windows 10)
 description: Describes security event 4725(S) A user account was disabled. This event is generated when a user or computer object is disabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4725(S): A user account was disabled.
diff --git a/windows/security/threat-protection/auditing/event-4726.md b/windows/security/threat-protection/auditing/event-4726.md
index ae0997e85e..f8f7ffba8c 100644
--- a/windows/security/threat-protection/auditing/event-4726.md
+++ b/windows/security/threat-protection/auditing/event-4726.md
@@ -2,7 +2,7 @@
 title: 4726(S) A user account was deleted. (Windows 10)
 description: Describes security event 4726(S) A user account was deleted. This event is generated when a user object is deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4726(S): A user account was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4731.md b/windows/security/threat-protection/auditing/event-4731.md
index 5fcdcba641..78d8e0e0c8 100644
--- a/windows/security/threat-protection/auditing/event-4731.md
+++ b/windows/security/threat-protection/auditing/event-4731.md
@@ -2,7 +2,7 @@
 title: 4731(S) A security-enabled local group was created. (Windows 10)
 description: Describes security event 4731(S) A security-enabled local group was created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4731(S): A security-enabled local group was created.
diff --git a/windows/security/threat-protection/auditing/event-4732.md b/windows/security/threat-protection/auditing/event-4732.md
index 65ba0ae840..94a84c0054 100644
--- a/windows/security/threat-protection/auditing/event-4732.md
+++ b/windows/security/threat-protection/auditing/event-4732.md
@@ -2,7 +2,7 @@
 title: 4732(S) A member was added to a security-enabled local group. (Windows 10)
 description: Describes security event 4732(S) A member was added to a security-enabled local group.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4732(S): A member was added to a security-enabled local group.
diff --git a/windows/security/threat-protection/auditing/event-4733.md b/windows/security/threat-protection/auditing/event-4733.md
index b970a918bc..b23bf184d3 100644
--- a/windows/security/threat-protection/auditing/event-4733.md
+++ b/windows/security/threat-protection/auditing/event-4733.md
@@ -2,7 +2,7 @@
 title: 4733(S) A member was removed from a security-enabled local group. (Windows 10)
 description: Describes security event 4733(S) A member was removed from a security-enabled local group.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4733(S): A member was removed from a security-enabled local group.
diff --git a/windows/security/threat-protection/auditing/event-4734.md b/windows/security/threat-protection/auditing/event-4734.md
index 5e439c5e46..144c20c935 100644
--- a/windows/security/threat-protection/auditing/event-4734.md
+++ b/windows/security/threat-protection/auditing/event-4734.md
@@ -2,7 +2,7 @@
 title: 4734(S) A security-enabled local group was deleted. (Windows 10)
 description: Describes security event 4734(S) A security-enabled local group was deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4734(S): A security-enabled local group was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4735.md b/windows/security/threat-protection/auditing/event-4735.md
index 07ff8c48cf..98843abaa0 100644
--- a/windows/security/threat-protection/auditing/event-4735.md
+++ b/windows/security/threat-protection/auditing/event-4735.md
@@ -2,7 +2,7 @@
 title: 4735(S) A security-enabled local group was changed. (Windows 10)
 description: Describes security event 4735(S) A security-enabled local group was changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4735(S): A security-enabled local group was changed.
diff --git a/windows/security/threat-protection/auditing/event-4738.md b/windows/security/threat-protection/auditing/event-4738.md
index 3ad4e0bb93..6262726e51 100644
--- a/windows/security/threat-protection/auditing/event-4738.md
+++ b/windows/security/threat-protection/auditing/event-4738.md
@@ -2,7 +2,7 @@
 title: 4738(S) A user account was changed. (Windows 10)
 description: Describes security event 4738(S) A user account was changed. This event is generated when a user object is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4738(S): A user account was changed.
diff --git a/windows/security/threat-protection/auditing/event-4739.md b/windows/security/threat-protection/auditing/event-4739.md
index 644aa94187..900d034c18 100644
--- a/windows/security/threat-protection/auditing/event-4739.md
+++ b/windows/security/threat-protection/auditing/event-4739.md
@@ -2,7 +2,7 @@
 title: 4739(S) Domain Policy was changed. (Windows 10)
 description: Describes security event 4739(S) Domain Policy was changed. This event is generated when certain changes are made to the local computer security policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4739(S): Domain Policy was changed.
diff --git a/windows/security/threat-protection/auditing/event-4740.md b/windows/security/threat-protection/auditing/event-4740.md
index 68838caedf..db7139e935 100644
--- a/windows/security/threat-protection/auditing/event-4740.md
+++ b/windows/security/threat-protection/auditing/event-4740.md
@@ -2,7 +2,7 @@
 title: 4740(S) A user account was locked out. (Windows 10)
 description: Describes security event 4740(S) A user account was locked out. This event is generated every time a user account is locked out.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4740(S): A user account was locked out.
diff --git a/windows/security/threat-protection/auditing/event-4741.md b/windows/security/threat-protection/auditing/event-4741.md
index 22809b4f8f..466e46e06b 100644
--- a/windows/security/threat-protection/auditing/event-4741.md
+++ b/windows/security/threat-protection/auditing/event-4741.md
@@ -2,7 +2,7 @@
 title: 4741(S) A computer account was created. (Windows 10)
 description: Describes security event 4741(S) A computer account was created. This event is generated every time a computer object is created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4741(S): A computer account was created.
diff --git a/windows/security/threat-protection/auditing/event-4742.md b/windows/security/threat-protection/auditing/event-4742.md
index 0d9f50526b..c692aef6e1 100644
--- a/windows/security/threat-protection/auditing/event-4742.md
+++ b/windows/security/threat-protection/auditing/event-4742.md
@@ -2,7 +2,7 @@
 title: 4742(S) A computer account was changed. (Windows 10)
 description: Describes security event 4742(S) A computer account was changed. This event is generated every time a computer object is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4742(S): A computer account was changed.
diff --git a/windows/security/threat-protection/auditing/event-4743.md b/windows/security/threat-protection/auditing/event-4743.md
index 3cc90698fb..3402a5e1d7 100644
--- a/windows/security/threat-protection/auditing/event-4743.md
+++ b/windows/security/threat-protection/auditing/event-4743.md
@@ -2,7 +2,7 @@
 title: 4743(S) A computer account was deleted. (Windows 10)
 description: Describes security event 4743(S) A computer account was deleted. This event is generated every time a computer object is deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4743(S): A computer account was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4749.md b/windows/security/threat-protection/auditing/event-4749.md
index cb2cbe96a6..478ae9e021 100644
--- a/windows/security/threat-protection/auditing/event-4749.md
+++ b/windows/security/threat-protection/auditing/event-4749.md
@@ -2,7 +2,7 @@
 title: 4749(S) A security-disabled global group was created. (Windows 10)
 description: Describes security event 4749(S) A security-disabled global group was created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4749(S): A security-disabled global group was created.
diff --git a/windows/security/threat-protection/auditing/event-4750.md b/windows/security/threat-protection/auditing/event-4750.md
index 7d5ba9d12e..4bdfe79f69 100644
--- a/windows/security/threat-protection/auditing/event-4750.md
+++ b/windows/security/threat-protection/auditing/event-4750.md
@@ -2,7 +2,7 @@
 title: 4750(S) A security-disabled global group was changed. (Windows 10)
 description: Describes security event 4750(S) A security-disabled global group was changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4750(S): A security-disabled global group was changed.
diff --git a/windows/security/threat-protection/auditing/event-4751.md b/windows/security/threat-protection/auditing/event-4751.md
index e72bc3b3a0..c86b86e123 100644
--- a/windows/security/threat-protection/auditing/event-4751.md
+++ b/windows/security/threat-protection/auditing/event-4751.md
@@ -2,7 +2,7 @@
 title: 4751(S) A member was added to a security-disabled global group. (Windows 10)
 description: Describes security event 4751(S) A member was added to a security-disabled global group.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4751(S): A member was added to a security-disabled global group.
diff --git a/windows/security/threat-protection/auditing/event-4752.md b/windows/security/threat-protection/auditing/event-4752.md
index b1fc1df98f..791b2886aa 100644
--- a/windows/security/threat-protection/auditing/event-4752.md
+++ b/windows/security/threat-protection/auditing/event-4752.md
@@ -2,7 +2,7 @@
 title: 4752(S) A member was removed from a security-disabled global group. (Windows 10)
 description: Describes security event 4752(S) A member was removed from a security-disabled global group.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4752(S): A member was removed from a security-disabled global group.
diff --git a/windows/security/threat-protection/auditing/event-4753.md b/windows/security/threat-protection/auditing/event-4753.md
index 0eef2ab038..501018ce26 100644
--- a/windows/security/threat-protection/auditing/event-4753.md
+++ b/windows/security/threat-protection/auditing/event-4753.md
@@ -2,7 +2,7 @@
 title: 4753(S) A security-disabled global group was deleted. (Windows 10)
 description: Describes security event 4753(S) A security-disabled global group was deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4753(S): A security-disabled global group was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4764.md b/windows/security/threat-protection/auditing/event-4764.md
index 86df9d9645..1697b853f9 100644
--- a/windows/security/threat-protection/auditing/event-4764.md
+++ b/windows/security/threat-protection/auditing/event-4764.md
@@ -1,8 +1,8 @@
 ---
 title: 4764(S) A group's type was changed. (Windows 10)
-description: "Describes security event 4764(S) A group's type was changed. This event is generated when the type of a group is changed."
+description: Describes security event 4764(S) A group's type was changed. This event is generated when the type of a group is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4764(S): A group’s type was changed.
diff --git a/windows/security/threat-protection/auditing/event-4765.md b/windows/security/threat-protection/auditing/event-4765.md
index 3ea2c4e756..3a23558650 100644
--- a/windows/security/threat-protection/auditing/event-4765.md
+++ b/windows/security/threat-protection/auditing/event-4765.md
@@ -2,7 +2,7 @@
 title: 4765(S) SID History was added to an account. (Windows 10)
 description: Describes security event 4765(S) SID History was added to an account. This event is generated when SID History is added to an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4765(S): SID History was added to an account.
diff --git a/windows/security/threat-protection/auditing/event-4766.md b/windows/security/threat-protection/auditing/event-4766.md
index d8dab9d004..afac5f0fe1 100644
--- a/windows/security/threat-protection/auditing/event-4766.md
+++ b/windows/security/threat-protection/auditing/event-4766.md
@@ -2,7 +2,7 @@
 title: 4766(F) An attempt to add SID History to an account failed. (Windows 10)
 description: Describes security event 4766(F) An attempt to add SID History to an account failed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4766(F): An attempt to add SID History to an account failed.
diff --git a/windows/security/threat-protection/auditing/event-4767.md b/windows/security/threat-protection/auditing/event-4767.md
index 87baefbc54..cf7b13e4f0 100644
--- a/windows/security/threat-protection/auditing/event-4767.md
+++ b/windows/security/threat-protection/auditing/event-4767.md
@@ -2,7 +2,7 @@
 title: 4767(S) A user account was unlocked. (Windows 10)
 description: Describes security event 4767(S) A user account was unlocked. This event is generated every time a user account is unlocked.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4767(S): A user account was unlocked.
diff --git a/windows/security/threat-protection/auditing/event-4768.md b/windows/security/threat-protection/auditing/event-4768.md
index 1da086eb93..22df11d465 100644
--- a/windows/security/threat-protection/auditing/event-4768.md
+++ b/windows/security/threat-protection/auditing/event-4768.md
@@ -2,7 +2,7 @@
 title: 4768(S, F) A Kerberos authentication ticket (TGT) was requested. (Windows 10)
 description: Describes security event 4768(S, F) A Kerberos authentication ticket (TGT) was requested.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4768(S, F): A Kerberos authentication ticket (TGT) was requested.
diff --git a/windows/security/threat-protection/auditing/event-4769.md b/windows/security/threat-protection/auditing/event-4769.md
index 64f7bf4503..522068cbbb 100644
--- a/windows/security/threat-protection/auditing/event-4769.md
+++ b/windows/security/threat-protection/auditing/event-4769.md
@@ -2,7 +2,7 @@
 title: 4769(S, F) A Kerberos service ticket was requested. (Windows 10)
 description: Describes security event 4769(S, F) A Kerberos service ticket was requested.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4769(S, F): A Kerberos service ticket was requested.
diff --git a/windows/security/threat-protection/auditing/event-4770.md b/windows/security/threat-protection/auditing/event-4770.md
index 0085dcf3ff..8ec543b090 100644
--- a/windows/security/threat-protection/auditing/event-4770.md
+++ b/windows/security/threat-protection/auditing/event-4770.md
@@ -2,7 +2,7 @@
 title: 4770(S) A Kerberos service ticket was renewed. (Windows 10)
 description: Describes security event 4770(S) A Kerberos service ticket was renewed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4770(S): A Kerberos service ticket was renewed.
diff --git a/windows/security/threat-protection/auditing/event-4771.md b/windows/security/threat-protection/auditing/event-4771.md
index 9c6cb7f55a..840d05eefb 100644
--- a/windows/security/threat-protection/auditing/event-4771.md
+++ b/windows/security/threat-protection/auditing/event-4771.md
@@ -2,7 +2,7 @@
 title: 4771(F) Kerberos pre-authentication failed. (Windows 10)
 description: Describes security event 4771(F) Kerberos pre-authentication failed. This event is generated when the Key Distribution Center fails to issue a Kerberos TGT.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 07/23/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4771(F): Kerberos pre-authentication failed.
diff --git a/windows/security/threat-protection/auditing/event-4772.md b/windows/security/threat-protection/auditing/event-4772.md
index 1119135008..2124b16bb1 100644
--- a/windows/security/threat-protection/auditing/event-4772.md
+++ b/windows/security/threat-protection/auditing/event-4772.md
@@ -2,7 +2,7 @@
 title: 4772(F) A Kerberos authentication ticket request failed. (Windows 10)
 description: Describes security event 4772(F) A Kerberos authentication ticket request failed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4772(F): A Kerberos authentication ticket request failed.
diff --git a/windows/security/threat-protection/auditing/event-4773.md b/windows/security/threat-protection/auditing/event-4773.md
index 7a307bbea1..ba672478d8 100644
--- a/windows/security/threat-protection/auditing/event-4773.md
+++ b/windows/security/threat-protection/auditing/event-4773.md
@@ -2,7 +2,7 @@
 title: 4773(F) A Kerberos service ticket request failed. (Windows 10)
 description: Describes security event 4773(F) A Kerberos service ticket request failed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4773(F): A Kerberos service ticket request failed.
diff --git a/windows/security/threat-protection/auditing/event-4774.md b/windows/security/threat-protection/auditing/event-4774.md
index 21a33e20a2..08eb0fe72f 100644
--- a/windows/security/threat-protection/auditing/event-4774.md
+++ b/windows/security/threat-protection/auditing/event-4774.md
@@ -2,7 +2,7 @@
 title: 4774(S, F) An account was mapped for logon. (Windows 10)
 description: Describes security event 4774(S, F) An account was mapped for logon. This event is generated when an account is mapped for logon.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4774(S, F): An account was mapped for logon.
diff --git a/windows/security/threat-protection/auditing/event-4775.md b/windows/security/threat-protection/auditing/event-4775.md
index e444e1c1bd..cf27ccdf2a 100644
--- a/windows/security/threat-protection/auditing/event-4775.md
+++ b/windows/security/threat-protection/auditing/event-4775.md
@@ -2,7 +2,7 @@
 title: 4775(F) An account could not be mapped for logon. (Windows 10)
 description: Describes security event 4775(F) An account could not be mapped for logon.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4775(F): An account could not be mapped for logon.
diff --git a/windows/security/threat-protection/auditing/event-4776.md b/windows/security/threat-protection/auditing/event-4776.md
index 2e759dcb4e..18bd592d00 100644
--- a/windows/security/threat-protection/auditing/event-4776.md
+++ b/windows/security/threat-protection/auditing/event-4776.md
@@ -2,7 +2,7 @@
 title: 4776(S, F) The computer attempted to validate the credentials for an account. (Windows 10)
 description: Describes security event 4776(S, F) The computer attempted to validate the credentials for an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4776(S, F): The computer attempted to validate the credentials for an account.
diff --git a/windows/security/threat-protection/auditing/event-4777.md b/windows/security/threat-protection/auditing/event-4777.md
index 4cdf40b163..28a4b42d08 100644
--- a/windows/security/threat-protection/auditing/event-4777.md
+++ b/windows/security/threat-protection/auditing/event-4777.md
@@ -2,7 +2,7 @@
 title: 4777(F) The domain controller failed to validate the credentials for an account. (Windows 10)
 description: Describes security event 4777(F) The domain controller failed to validate the credentials for an account.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4777(F): The domain controller failed to validate the credentials for an account.
diff --git a/windows/security/threat-protection/auditing/event-4778.md b/windows/security/threat-protection/auditing/event-4778.md
index 265b39dbcf..53c1eac2d8 100644
--- a/windows/security/threat-protection/auditing/event-4778.md
+++ b/windows/security/threat-protection/auditing/event-4778.md
@@ -2,7 +2,7 @@
 title: 4778(S) A session was reconnected to a Window Station. (Windows 10)
 description: Describes security event 4778(S) A session was reconnected to a Window Station.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4778(S): A session was reconnected to a Window Station.
diff --git a/windows/security/threat-protection/auditing/event-4779.md b/windows/security/threat-protection/auditing/event-4779.md
index bd733289bb..76337cfdf8 100644
--- a/windows/security/threat-protection/auditing/event-4779.md
+++ b/windows/security/threat-protection/auditing/event-4779.md
@@ -2,7 +2,7 @@
 title: 4779(S) A session was disconnected from a Window Station. (Windows 10)
 description: Describes security event 4779(S) A session was disconnected from a Window Station.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4779(S): A session was disconnected from a Window Station.
diff --git a/windows/security/threat-protection/auditing/event-4780.md b/windows/security/threat-protection/auditing/event-4780.md
index 4a521896e8..dafa5d3ff1 100644
--- a/windows/security/threat-protection/auditing/event-4780.md
+++ b/windows/security/threat-protection/auditing/event-4780.md
@@ -2,7 +2,7 @@
 title: 4780(S) The ACL was set on accounts which are members of administrators groups. (Windows 10)
 description: Describes security event 4780(S) The ACL was set on accounts which are members of administrators groups.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4780(S): The ACL was set on accounts which are members of administrators groups.
diff --git a/windows/security/threat-protection/auditing/event-4781.md b/windows/security/threat-protection/auditing/event-4781.md
index a48651e686..2adb3bcac5 100644
--- a/windows/security/threat-protection/auditing/event-4781.md
+++ b/windows/security/threat-protection/auditing/event-4781.md
@@ -2,7 +2,7 @@
 title: 4781(S) The name of an account was changed. (Windows 10)
 description: Describes security event 4781(S) The name of an account was changed. This event is generated every time a user or computer account name is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4781(S): The name of an account was changed.
diff --git a/windows/security/threat-protection/auditing/event-4782.md b/windows/security/threat-protection/auditing/event-4782.md
index 571fdf3a93..a7907aed15 100644
--- a/windows/security/threat-protection/auditing/event-4782.md
+++ b/windows/security/threat-protection/auditing/event-4782.md
@@ -2,7 +2,7 @@
 title: 4782(S) The password hash of an account was accessed. (Windows 10)
 description: Describes security event 4782(S) The password hash of an account was accessed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4782(S): The password hash of an account was accessed.
diff --git a/windows/security/threat-protection/auditing/event-4793.md b/windows/security/threat-protection/auditing/event-4793.md
index f2bdc2b09f..d6fecbdbdf 100644
--- a/windows/security/threat-protection/auditing/event-4793.md
+++ b/windows/security/threat-protection/auditing/event-4793.md
@@ -2,7 +2,7 @@
 title: 4793(S) The Password Policy Checking API was called. (Windows 10)
 description: Describes security event 4793(S) The Password Policy Checking API was called.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4793(S): The Password Policy Checking API was called.
diff --git a/windows/security/threat-protection/auditing/event-4794.md b/windows/security/threat-protection/auditing/event-4794.md
index 9ecf3cfcb7..6e585048c1 100644
--- a/windows/security/threat-protection/auditing/event-4794.md
+++ b/windows/security/threat-protection/auditing/event-4794.md
@@ -2,7 +2,7 @@
 title: 4794(S, F) An attempt was made to set the Directory Services Restore Mode administrator password. (Windows 10)
 description: Describes security event 4794(S, F) An attempt was made to set the Directory Services Restore Mode administrator password.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4794(S, F): An attempt was made to set the Directory Services Restore Mode administrator password.
diff --git a/windows/security/threat-protection/auditing/event-4798.md b/windows/security/threat-protection/auditing/event-4798.md
index 76e806ffcf..3fddfd9b65 100644
--- a/windows/security/threat-protection/auditing/event-4798.md
+++ b/windows/security/threat-protection/auditing/event-4798.md
@@ -2,7 +2,7 @@
 title: 4798(S) A user's local group membership was enumerated. (Windows 10)
 description: Describes security event 4798(S) A user's local group membership was enumerated.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4798(S): A user's local group membership was enumerated.
diff --git a/windows/security/threat-protection/auditing/event-4799.md b/windows/security/threat-protection/auditing/event-4799.md
index c9963afbb0..18b337fcdc 100644
--- a/windows/security/threat-protection/auditing/event-4799.md
+++ b/windows/security/threat-protection/auditing/event-4799.md
@@ -2,7 +2,7 @@
 title: 4799(S) A security-enabled local group membership was enumerated. (Windows 10)
 description: Describes security event 4799(S) A security-enabled local group membership was enumerated.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4799(S): A security-enabled local group membership was enumerated.
diff --git a/windows/security/threat-protection/auditing/event-4800.md b/windows/security/threat-protection/auditing/event-4800.md
index b0be9a0f3a..92c543f8b0 100644
--- a/windows/security/threat-protection/auditing/event-4800.md
+++ b/windows/security/threat-protection/auditing/event-4800.md
@@ -2,7 +2,7 @@
 title: 4800(S) The workstation was locked. (Windows 10)
 description: Describes security event 4800(S) The workstation was locked. This event is generated when a workstation is locked.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4800(S): The workstation was locked.
diff --git a/windows/security/threat-protection/auditing/event-4801.md b/windows/security/threat-protection/auditing/event-4801.md
index 61e2682379..ed7c8ec85c 100644
--- a/windows/security/threat-protection/auditing/event-4801.md
+++ b/windows/security/threat-protection/auditing/event-4801.md
@@ -2,7 +2,7 @@
 title: 4801(S) The workstation was unlocked. (Windows 10)
 description: Describes security event 4801(S) The workstation was unlocked. This event is generated when workstation is unlocked.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4801(S): The workstation was unlocked.
diff --git a/windows/security/threat-protection/auditing/event-4802.md b/windows/security/threat-protection/auditing/event-4802.md
index a00ead7497..9f5fa2b8e3 100644
--- a/windows/security/threat-protection/auditing/event-4802.md
+++ b/windows/security/threat-protection/auditing/event-4802.md
@@ -2,7 +2,7 @@
 title: 4802(S) The screen saver was invoked. (Windows 10)
 description: Describes security event 4802(S) The screen saver was invoked. This event is generated when screen saver is invoked.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4802(S): The screen saver was invoked.
diff --git a/windows/security/threat-protection/auditing/event-4803.md b/windows/security/threat-protection/auditing/event-4803.md
index 0354849e13..20304e4527 100644
--- a/windows/security/threat-protection/auditing/event-4803.md
+++ b/windows/security/threat-protection/auditing/event-4803.md
@@ -2,7 +2,7 @@
 title: 4803(S) The screen saver was dismissed. (Windows 10)
 description: Describes security event 4803(S) The screen saver was dismissed. This event is generated when screen saver is dismissed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4803(S): The screen saver was dismissed.
diff --git a/windows/security/threat-protection/auditing/event-4816.md b/windows/security/threat-protection/auditing/event-4816.md
index 1efa9756ec..9e36c52bb1 100644
--- a/windows/security/threat-protection/auditing/event-4816.md
+++ b/windows/security/threat-protection/auditing/event-4816.md
@@ -2,7 +2,7 @@
 title: 4816(S) RPC detected an integrity violation while decrypting an incoming message. (Windows 10)
 description: Describes security event 4816(S) RPC detected an integrity violation while decrypting an incoming message.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4816(S): RPC detected an integrity violation while decrypting an incoming message.
diff --git a/windows/security/threat-protection/auditing/event-4817.md b/windows/security/threat-protection/auditing/event-4817.md
index efdf01da8a..48757706f8 100644
--- a/windows/security/threat-protection/auditing/event-4817.md
+++ b/windows/security/threat-protection/auditing/event-4817.md
@@ -2,7 +2,7 @@
 title: 4817(S) Auditing settings on object were changed. (Windows 10)
 description: Describes security event 4817(S) Auditing settings on object were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4817(S): Auditing settings on object were changed.
diff --git a/windows/security/threat-protection/auditing/event-4818.md b/windows/security/threat-protection/auditing/event-4818.md
index 1134b02c0b..7da8723ef4 100644
--- a/windows/security/threat-protection/auditing/event-4818.md
+++ b/windows/security/threat-protection/auditing/event-4818.md
@@ -2,7 +2,7 @@
 title: 4818(S) Proposed Central Access Policy does not grant the same access permissions as the current Central Access Policy. (Windows 10)
 description: Describes security event 4818(S) Proposed Central Access Policy does not grant the same access permissions as the current Central Access Policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4818(S): Proposed Central Access Policy does not grant the same access permissions as the current Central Access Policy.
diff --git a/windows/security/threat-protection/auditing/event-4819.md b/windows/security/threat-protection/auditing/event-4819.md
index c2de9d1e36..58fa2fcf24 100644
--- a/windows/security/threat-protection/auditing/event-4819.md
+++ b/windows/security/threat-protection/auditing/event-4819.md
@@ -2,7 +2,7 @@
 title: 4819(S) Central Access Policies on the machine have been changed. (Windows 10)
 description: Describes security event 4819(S) Central Access Policies on the machine have been changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4819(S): Central Access Policies on the machine have been changed.
diff --git a/windows/security/threat-protection/auditing/event-4826.md b/windows/security/threat-protection/auditing/event-4826.md
index 3729924d93..29f4675931 100644
--- a/windows/security/threat-protection/auditing/event-4826.md
+++ b/windows/security/threat-protection/auditing/event-4826.md
@@ -2,7 +2,7 @@
 title: 4826(S) Boot Configuration Data loaded. (Windows 10)
 description: Describes security event 4826(S) Boot Configuration Data loaded. This event is generated every time system starts and loads Boot Configuration Data settings.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4826(S): Boot Configuration Data loaded.
diff --git a/windows/security/threat-protection/auditing/event-4864.md b/windows/security/threat-protection/auditing/event-4864.md
index 5556b207b5..ca1995291e 100644
--- a/windows/security/threat-protection/auditing/event-4864.md
+++ b/windows/security/threat-protection/auditing/event-4864.md
@@ -2,7 +2,7 @@
 title: 4864(S) A namespace collision was detected. (Windows 10)
 description: Describes security event 4864(S) A namespace collision was detected. This event is generated when a namespace collision is detected.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4864(S): A namespace collision was detected.
diff --git a/windows/security/threat-protection/auditing/event-4865.md b/windows/security/threat-protection/auditing/event-4865.md
index 15e738f7be..e1ff8e242a 100644
--- a/windows/security/threat-protection/auditing/event-4865.md
+++ b/windows/security/threat-protection/auditing/event-4865.md
@@ -2,7 +2,7 @@
 title: 4865(S) A trusted forest information entry was added. (Windows 10)
 description: Describes security event 4865(S) A trusted forest information entry was added.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4865(S): A trusted forest information entry was added.
diff --git a/windows/security/threat-protection/auditing/event-4866.md b/windows/security/threat-protection/auditing/event-4866.md
index e0f05fbf3e..f189e60e01 100644
--- a/windows/security/threat-protection/auditing/event-4866.md
+++ b/windows/security/threat-protection/auditing/event-4866.md
@@ -2,7 +2,7 @@
 title: 4866(S) A trusted forest information entry was removed. (Windows 10)
 description: Describes security event 4866(S) A trusted forest information entry was removed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4866(S): A trusted forest information entry was removed.
diff --git a/windows/security/threat-protection/auditing/event-4867.md b/windows/security/threat-protection/auditing/event-4867.md
index ae2bf03bb6..9635b1cd74 100644
--- a/windows/security/threat-protection/auditing/event-4867.md
+++ b/windows/security/threat-protection/auditing/event-4867.md
@@ -2,7 +2,7 @@
 title: 4867(S) A trusted forest information entry was modified. (Windows 10)
 description: Describes security event 4867(S) A trusted forest information entry was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4867(S): A trusted forest information entry was modified.
diff --git a/windows/security/threat-protection/auditing/event-4902.md b/windows/security/threat-protection/auditing/event-4902.md
index c8b89b375c..d5a7640b84 100644
--- a/windows/security/threat-protection/auditing/event-4902.md
+++ b/windows/security/threat-protection/auditing/event-4902.md
@@ -2,7 +2,7 @@
 title: 4902(S) The Per-user audit policy table was created. (Windows 10)
 description: Describes security event 4902(S) The Per-user audit policy table was created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4902(S): The Per-user audit policy table was created.
diff --git a/windows/security/threat-protection/auditing/event-4904.md b/windows/security/threat-protection/auditing/event-4904.md
index cfd3f1c0fe..d22ff00643 100644
--- a/windows/security/threat-protection/auditing/event-4904.md
+++ b/windows/security/threat-protection/auditing/event-4904.md
@@ -2,7 +2,7 @@
 title: 4904(S) An attempt was made to register a security event source. (Windows 10)
 description: Describes security event 4904(S) An attempt was made to register a security event source.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4904(S): An attempt was made to register a security event source.
diff --git a/windows/security/threat-protection/auditing/event-4905.md b/windows/security/threat-protection/auditing/event-4905.md
index bfc9d5bbb9..aa98ea5517 100644
--- a/windows/security/threat-protection/auditing/event-4905.md
+++ b/windows/security/threat-protection/auditing/event-4905.md
@@ -2,7 +2,7 @@
 title: 4905(S) An attempt was made to unregister a security event source. (Windows 10)
 description: Describes security event 4905(S) An attempt was made to unregister a security event source.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4905(S): An attempt was made to unregister a security event source.
diff --git a/windows/security/threat-protection/auditing/event-4906.md b/windows/security/threat-protection/auditing/event-4906.md
index 7782a6571d..617b7a2597 100644
--- a/windows/security/threat-protection/auditing/event-4906.md
+++ b/windows/security/threat-protection/auditing/event-4906.md
@@ -2,7 +2,7 @@
 title: 4906(S) The CrashOnAuditFail value has changed. (Windows 10)
 description: Describes security event 4906(S) The CrashOnAuditFail value has changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4906(S): The CrashOnAuditFail value has changed.
diff --git a/windows/security/threat-protection/auditing/event-4907.md b/windows/security/threat-protection/auditing/event-4907.md
index 6610d670eb..74edaaa9a3 100644
--- a/windows/security/threat-protection/auditing/event-4907.md
+++ b/windows/security/threat-protection/auditing/event-4907.md
@@ -2,7 +2,7 @@
 title: 4907(S) Auditing settings on object were changed. (Windows 10)
 description: Describes security event 4907(S) Auditing settings on object were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4907(S): Auditing settings on object were changed.
diff --git a/windows/security/threat-protection/auditing/event-4908.md b/windows/security/threat-protection/auditing/event-4908.md
index 7573adb5f7..3a12a949e0 100644
--- a/windows/security/threat-protection/auditing/event-4908.md
+++ b/windows/security/threat-protection/auditing/event-4908.md
@@ -2,7 +2,7 @@
 title: 4908(S) Special Groups Logon table modified. (Windows 10)
 description: Describes security event 4908(S) Special Groups Logon table modified. This event is generated when the Special Groups Logon table is modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4908(S): Special Groups Logon table modified.
diff --git a/windows/security/threat-protection/auditing/event-4909.md b/windows/security/threat-protection/auditing/event-4909.md
index 2acda55983..9c3b067418 100644
--- a/windows/security/threat-protection/auditing/event-4909.md
+++ b/windows/security/threat-protection/auditing/event-4909.md
@@ -2,7 +2,7 @@
 title: 4909(-) The local policy settings for the TBS were changed. (Windows 10)
 description: Describes security event 4909(-) The local policy settings for the TBS were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4909(-): The local policy settings for the TBS were changed.
diff --git a/windows/security/threat-protection/auditing/event-4910.md b/windows/security/threat-protection/auditing/event-4910.md
index 8b90247c65..948c3a6dab 100644
--- a/windows/security/threat-protection/auditing/event-4910.md
+++ b/windows/security/threat-protection/auditing/event-4910.md
@@ -2,7 +2,7 @@
 title: 4910(-) The group policy settings for the TBS were changed. (Windows 10)
 description: Describes security event 4910(-) The group policy settings for the TBS were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4910(-): The group policy settings for the TBS were changed.
diff --git a/windows/security/threat-protection/auditing/event-4911.md b/windows/security/threat-protection/auditing/event-4911.md
index bbd17b1660..cf47c889e0 100644
--- a/windows/security/threat-protection/auditing/event-4911.md
+++ b/windows/security/threat-protection/auditing/event-4911.md
@@ -2,7 +2,7 @@
 title: 4911(S) Resource attributes of the object were changed. (Windows 10)
 description: Describes security event 4911(S) Resource attributes of the object were changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4911(S): Resource attributes of the object were changed.
diff --git a/windows/security/threat-protection/auditing/event-4912.md b/windows/security/threat-protection/auditing/event-4912.md
index cf141b9a2d..e4bc6d9d43 100644
--- a/windows/security/threat-protection/auditing/event-4912.md
+++ b/windows/security/threat-protection/auditing/event-4912.md
@@ -2,7 +2,7 @@
 title: 4912(S) Per User Audit Policy was changed. (Windows 10)
 description: Describes security event 4912(S) Per User Audit Policy was changed. This event is generated every time Per User Audit Policy is changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4912(S): Per User Audit Policy was changed.
diff --git a/windows/security/threat-protection/auditing/event-4913.md b/windows/security/threat-protection/auditing/event-4913.md
index 3be7e9bec3..95f0aa8b70 100644
--- a/windows/security/threat-protection/auditing/event-4913.md
+++ b/windows/security/threat-protection/auditing/event-4913.md
@@ -2,7 +2,7 @@
 title: 4913(S) Central Access Policy on the object was changed. (Windows 10)
 description: Describes security event 4913(S) Central Access Policy on the object was changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4913(S): Central Access Policy on the object was changed.
diff --git a/windows/security/threat-protection/auditing/event-4928.md b/windows/security/threat-protection/auditing/event-4928.md
index 664b36c1ca..45fa768785 100644
--- a/windows/security/threat-protection/auditing/event-4928.md
+++ b/windows/security/threat-protection/auditing/event-4928.md
@@ -2,7 +2,7 @@
 title: 4928(S, F) An Active Directory replica source naming context was established. (Windows 10)
 description: Describes security event 4928(S, F) An Active Directory replica source naming context was established.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4928(S, F): An Active Directory replica source naming context was established.
diff --git a/windows/security/threat-protection/auditing/event-4929.md b/windows/security/threat-protection/auditing/event-4929.md
index b5a1ba430e..9e126439a2 100644
--- a/windows/security/threat-protection/auditing/event-4929.md
+++ b/windows/security/threat-protection/auditing/event-4929.md
@@ -2,7 +2,7 @@
 title: 4929(S, F) An Active Directory replica source naming context was removed. (Windows 10)
 description: Describes security event 4929(S, F) An Active Directory replica source naming context was removed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4929(S, F): An Active Directory replica source naming context was removed.
diff --git a/windows/security/threat-protection/auditing/event-4930.md b/windows/security/threat-protection/auditing/event-4930.md
index f7b993d3a9..42d488915d 100644
--- a/windows/security/threat-protection/auditing/event-4930.md
+++ b/windows/security/threat-protection/auditing/event-4930.md
@@ -2,7 +2,7 @@
 title: 4930(S, F) An Active Directory replica source naming context was modified. (Windows 10)
 description: Describes security event 4930(S, F) An Active Directory replica source naming context was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4930(S, F): An Active Directory replica source naming context was modified.
diff --git a/windows/security/threat-protection/auditing/event-4931.md b/windows/security/threat-protection/auditing/event-4931.md
index 3f02d54421..fc3a7fc61f 100644
--- a/windows/security/threat-protection/auditing/event-4931.md
+++ b/windows/security/threat-protection/auditing/event-4931.md
@@ -2,7 +2,7 @@
 title: 4931(S, F) An Active Directory replica destination naming context was modified. (Windows 10)
 description: Describes security event 4931(S, F) An Active Directory replica destination naming context was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4931(S, F): An Active Directory replica destination naming context was modified.
diff --git a/windows/security/threat-protection/auditing/event-4932.md b/windows/security/threat-protection/auditing/event-4932.md
index 615a83328d..4450fb0acc 100644
--- a/windows/security/threat-protection/auditing/event-4932.md
+++ b/windows/security/threat-protection/auditing/event-4932.md
@@ -2,7 +2,7 @@
 title: 4932(S) Synchronization of a replica of an Active Directory naming context has begun. (Windows 10)
 description: Describes security event 4932(S) Synchronization of a replica of an Active Directory naming context has begun.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4932(S): Synchronization of a replica of an Active Directory naming context has begun.
diff --git a/windows/security/threat-protection/auditing/event-4933.md b/windows/security/threat-protection/auditing/event-4933.md
index b5fbe33942..1143269597 100644
--- a/windows/security/threat-protection/auditing/event-4933.md
+++ b/windows/security/threat-protection/auditing/event-4933.md
@@ -2,7 +2,7 @@
 title: 4933(S, F) Synchronization of a replica of an Active Directory naming context has ended. (Windows 10)
 description: Describes security event 4933(S, F) Synchronization of a replica of an Active Directory naming context has ended.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4933(S, F): Synchronization of a replica of an Active Directory naming context has ended.
diff --git a/windows/security/threat-protection/auditing/event-4934.md b/windows/security/threat-protection/auditing/event-4934.md
index 4a5890af24..ffc4b9b4a3 100644
--- a/windows/security/threat-protection/auditing/event-4934.md
+++ b/windows/security/threat-protection/auditing/event-4934.md
@@ -2,7 +2,7 @@
 title: 4934(S) Attributes of an Active Directory object were replicated. (Windows 10)
 description: Describes security event 4934(S) Attributes of an Active Directory object were replicated.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4934(S): Attributes of an Active Directory object were replicated.
diff --git a/windows/security/threat-protection/auditing/event-4935.md b/windows/security/threat-protection/auditing/event-4935.md
index c9e2159bc0..f2910784e6 100644
--- a/windows/security/threat-protection/auditing/event-4935.md
+++ b/windows/security/threat-protection/auditing/event-4935.md
@@ -2,7 +2,7 @@
 title: 4935(F) Replication failure begins. (Windows 10)
 description: Describes security event 4935(F) Replication failure begins. This event is generated when Active Directory replication failure begins.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4935(F): Replication failure begins.
diff --git a/windows/security/threat-protection/auditing/event-4936.md b/windows/security/threat-protection/auditing/event-4936.md
index d9d60e43be..3f808bf11d 100644
--- a/windows/security/threat-protection/auditing/event-4936.md
+++ b/windows/security/threat-protection/auditing/event-4936.md
@@ -2,7 +2,7 @@
 title: 4936(S) Replication failure ends. (Windows 10)
 description: Describes security event 4936(S) Replication failure ends. This event is generated when Active Directory replication failure ends.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4936(S): Replication failure ends.
diff --git a/windows/security/threat-protection/auditing/event-4937.md b/windows/security/threat-protection/auditing/event-4937.md
index 8fb915289b..2775be1c5d 100644
--- a/windows/security/threat-protection/auditing/event-4937.md
+++ b/windows/security/threat-protection/auditing/event-4937.md
@@ -2,7 +2,7 @@
 title: 4937(S) A lingering object was removed from a replica. (Windows 10)
 description: Describes security event 4937(S) A lingering object was removed from a replica.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4937(S): A lingering object was removed from a replica.
diff --git a/windows/security/threat-protection/auditing/event-4944.md b/windows/security/threat-protection/auditing/event-4944.md
index ca2c97045e..1b6522a256 100644
--- a/windows/security/threat-protection/auditing/event-4944.md
+++ b/windows/security/threat-protection/auditing/event-4944.md
@@ -2,7 +2,7 @@
 title: 4944(S) The following policy was active when the Windows Firewall started. (Windows 10)
 description: Describes security event 4944(S) The following policy was active when the Windows Firewall started.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4944(S): The following policy was active when the Windows Firewall started.
diff --git a/windows/security/threat-protection/auditing/event-4945.md b/windows/security/threat-protection/auditing/event-4945.md
index 74d3f7c688..da8105bffc 100644
--- a/windows/security/threat-protection/auditing/event-4945.md
+++ b/windows/security/threat-protection/auditing/event-4945.md
@@ -2,7 +2,7 @@
 title: 4945(S) A rule was listed when the Windows Firewall started. (Windows 10)
 description: Describes security event 4945(S) A rule was listed when the Windows Firewall started.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4945(S): A rule was listed when the Windows Firewall started.
diff --git a/windows/security/threat-protection/auditing/event-4946.md b/windows/security/threat-protection/auditing/event-4946.md
index 4ff3dd9f1d..30ae25fd28 100644
--- a/windows/security/threat-protection/auditing/event-4946.md
+++ b/windows/security/threat-protection/auditing/event-4946.md
@@ -2,7 +2,7 @@
 title: 4946(S) A change has been made to Windows Firewall exception list. A rule was added. (Windows 10)
 description: Describes security event 4946(S) A change has been made to Windows Firewall exception list. A rule was added.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4946(S): A change has been made to Windows Firewall exception list. A rule was added.
diff --git a/windows/security/threat-protection/auditing/event-4947.md b/windows/security/threat-protection/auditing/event-4947.md
index a4906d1dbc..b38eef6371 100644
--- a/windows/security/threat-protection/auditing/event-4947.md
+++ b/windows/security/threat-protection/auditing/event-4947.md
@@ -2,7 +2,7 @@
 title: 4947(S) A change has been made to Windows Firewall exception list. A rule was modified. (Windows 10)
 description: Describes security event 4947(S) A change has been made to Windows Firewall exception list. A rule was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4947(S): A change has been made to Windows Firewall exception list. A rule was modified.
diff --git a/windows/security/threat-protection/auditing/event-4948.md b/windows/security/threat-protection/auditing/event-4948.md
index 5c86cb55c9..5f92a37c6a 100644
--- a/windows/security/threat-protection/auditing/event-4948.md
+++ b/windows/security/threat-protection/auditing/event-4948.md
@@ -2,7 +2,7 @@
 title: 4948(S) A change has been made to Windows Firewall exception list. A rule was deleted. (Windows 10)
 description: Describes security event 4948(S) A change has been made to Windows Firewall exception list. A rule was deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4948(S): A change has been made to Windows Firewall exception list. A rule was deleted.
diff --git a/windows/security/threat-protection/auditing/event-4949.md b/windows/security/threat-protection/auditing/event-4949.md
index 983159d9e8..e304844bc8 100644
--- a/windows/security/threat-protection/auditing/event-4949.md
+++ b/windows/security/threat-protection/auditing/event-4949.md
@@ -2,7 +2,7 @@
 title: 4949(S) Windows Firewall settings were restored to the default values. (Windows 10)
 description: Describes security event 4949(S) Windows Firewall settings were restored to the default values.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4949(S): Windows Firewall settings were restored to the default values.
diff --git a/windows/security/threat-protection/auditing/event-4950.md b/windows/security/threat-protection/auditing/event-4950.md
index eb6c3770c9..54ead99c65 100644
--- a/windows/security/threat-protection/auditing/event-4950.md
+++ b/windows/security/threat-protection/auditing/event-4950.md
@@ -2,7 +2,7 @@
 title: 4950(S) A Windows Firewall setting has changed. (Windows 10)
 description: Describes security event 4950(S) A Windows Firewall setting has changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4950(S): A Windows Firewall setting has changed.
diff --git a/windows/security/threat-protection/auditing/event-4951.md b/windows/security/threat-protection/auditing/event-4951.md
index ff8ed88bdb..4a2c32b9e2 100644
--- a/windows/security/threat-protection/auditing/event-4951.md
+++ b/windows/security/threat-protection/auditing/event-4951.md
@@ -2,7 +2,7 @@
 title: 4951(F) A rule has been ignored because its major version number was not recognized by Windows Firewall. (Windows 10)
 description: Describes security event 4951(F) A rule has been ignored because its major version number was not recognized by Windows Firewall.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4951(F): A rule has been ignored because its major version number was not recognized by Windows Firewall.
diff --git a/windows/security/threat-protection/auditing/event-4952.md b/windows/security/threat-protection/auditing/event-4952.md
index 0bd8a3b9b6..150a0ac97d 100644
--- a/windows/security/threat-protection/auditing/event-4952.md
+++ b/windows/security/threat-protection/auditing/event-4952.md
@@ -2,7 +2,7 @@
 title: 4952(F) Parts of a rule have been ignored because its minor version number was not recognized by Windows Firewall. The other parts of the rule will be enforced. (Windows 10)
 description: Security event 4952(F) Parts of a rule have been ignored because its minor version number was not recognized by Windows Firewall.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4952(F): Parts of a rule have been ignored because its minor version number was not recognized by Windows Firewall. The other parts of the rule will be enforced.
diff --git a/windows/security/threat-protection/auditing/event-4953.md b/windows/security/threat-protection/auditing/event-4953.md
index 1e9dcd7898..38d9aa6a3d 100644
--- a/windows/security/threat-protection/auditing/event-4953.md
+++ b/windows/security/threat-protection/auditing/event-4953.md
@@ -2,7 +2,7 @@
 title: 4953(F) Windows Firewall ignored a rule because it could not be parsed. (Windows 10)
 description: Describes security event 4953(F) Windows Firewall ignored a rule because it could not be parsed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4953(F): Windows Firewall ignored a rule because it could not be parsed.
diff --git a/windows/security/threat-protection/auditing/event-4954.md b/windows/security/threat-protection/auditing/event-4954.md
index b58926388b..99bb6457e2 100644
--- a/windows/security/threat-protection/auditing/event-4954.md
+++ b/windows/security/threat-protection/auditing/event-4954.md
@@ -2,7 +2,7 @@
 title: 4954(S) Windows Firewall Group Policy settings have changed. The new settings have been applied. (Windows 10)
 description: Describes security event 4954(S) Windows Firewall Group Policy settings have changed. The new settings have been applied.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4954(S): Windows Firewall Group Policy settings have changed. The new settings have been applied.
diff --git a/windows/security/threat-protection/auditing/event-4956.md b/windows/security/threat-protection/auditing/event-4956.md
index 6af6a50864..34d36fa5d0 100644
--- a/windows/security/threat-protection/auditing/event-4956.md
+++ b/windows/security/threat-protection/auditing/event-4956.md
@@ -2,7 +2,7 @@
 title: 4956(S) Windows Firewall has changed the active profile. (Windows 10)
 description: Describes security event 4956(S) Windows Firewall has changed the active profile.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4956(S): Windows Firewall has changed the active profile.
diff --git a/windows/security/threat-protection/auditing/event-4957.md b/windows/security/threat-protection/auditing/event-4957.md
index 396a5b587d..8b822ee84c 100644
--- a/windows/security/threat-protection/auditing/event-4957.md
+++ b/windows/security/threat-protection/auditing/event-4957.md
@@ -2,7 +2,7 @@
 title: 4957(F) Windows Firewall did not apply the following rule. (Windows 10)
 description: Describes security event 4957(F) Windows Firewall did not apply the following rule.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4957(F): Windows Firewall did not apply the following rule.
diff --git a/windows/security/threat-protection/auditing/event-4958.md b/windows/security/threat-protection/auditing/event-4958.md
index 14d3b2ad4b..05922fd7a7 100644
--- a/windows/security/threat-protection/auditing/event-4958.md
+++ b/windows/security/threat-protection/auditing/event-4958.md
@@ -2,7 +2,7 @@
 title: 4958(F) Windows Firewall did not apply the following rule because the rule referred to items not configured on this computer. (Windows 10)
 description: Describes security event 4958(F) Windows Firewall did not apply the following rule because the rule referred to items not configured on this computer.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4958(F): Windows Firewall did not apply the following rule because the rule referred to items not configured on this computer.
diff --git a/windows/security/threat-protection/auditing/event-4964.md b/windows/security/threat-protection/auditing/event-4964.md
index 4cd9707147..0ee97ac194 100644
--- a/windows/security/threat-protection/auditing/event-4964.md
+++ b/windows/security/threat-protection/auditing/event-4964.md
@@ -2,7 +2,7 @@
 title: 4964(S) Special groups have been assigned to a new logon. (Windows 10)
 description: Describes security event 4964(S) Special groups have been assigned to a new logon.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4964(S): Special groups have been assigned to a new logon.
diff --git a/windows/security/threat-protection/auditing/event-4985.md b/windows/security/threat-protection/auditing/event-4985.md
index 2a98d42db6..9b3680639b 100644
--- a/windows/security/threat-protection/auditing/event-4985.md
+++ b/windows/security/threat-protection/auditing/event-4985.md
@@ -2,7 +2,7 @@
 title: 4985(S) The state of a transaction has changed. (Windows 10)
 description: Describes security event 4985(S) The state of a transaction has changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 4985(S): The state of a transaction has changed.
diff --git a/windows/security/threat-protection/auditing/event-5024.md b/windows/security/threat-protection/auditing/event-5024.md
index 9dede9c866..b24cd95e31 100644
--- a/windows/security/threat-protection/auditing/event-5024.md
+++ b/windows/security/threat-protection/auditing/event-5024.md
@@ -2,7 +2,7 @@
 title: 5024(S) The Windows Firewall Service has started successfully. (Windows 10)
 description: Describes security event 5024(S) The Windows Firewall Service has started successfully.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5024(S): The Windows Firewall Service has started successfully.
diff --git a/windows/security/threat-protection/auditing/event-5025.md b/windows/security/threat-protection/auditing/event-5025.md
index d6a60c5da2..a9a3c5e14b 100644
--- a/windows/security/threat-protection/auditing/event-5025.md
+++ b/windows/security/threat-protection/auditing/event-5025.md
@@ -2,7 +2,7 @@
 title: 5025(S) The Windows Firewall Service has been stopped. (Windows 10)
 description: Describes security event 5025(S) The Windows Firewall Service has been stopped.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5025(S): The Windows Firewall Service has been stopped.
diff --git a/windows/security/threat-protection/auditing/event-5027.md b/windows/security/threat-protection/auditing/event-5027.md
index 23bf6e5c30..4ea2177c6b 100644
--- a/windows/security/threat-protection/auditing/event-5027.md
+++ b/windows/security/threat-protection/auditing/event-5027.md
@@ -1,8 +1,8 @@
 ---
 title: 5027(F) The Windows Firewall Service was unable to retrieve the security policy from the local storage. The service will continue enforcing the current policy. (Windows 10)
-description: Details on security event 5027(F) The Windows Firewall Service was unable to retrieve the security policy from the local storage. 
+description: Details on security event 5027(F) The Windows Firewall Service was unable to retrieve the security policy from the local storage.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5027(F): The Windows Firewall Service was unable to retrieve the security policy from the local storage. The service will continue enforcing the current policy.
diff --git a/windows/security/threat-protection/auditing/event-5028.md b/windows/security/threat-protection/auditing/event-5028.md
index 8929b86d33..9ab51ca985 100644
--- a/windows/security/threat-protection/auditing/event-5028.md
+++ b/windows/security/threat-protection/auditing/event-5028.md
@@ -2,7 +2,7 @@
 title: 5028(F) The Windows Firewall Service was unable to parse the new security policy. The service will continue with currently enforced policy. (Windows 10)
 description: Describes security event 5028(F) The Windows Firewall Service was unable to parse the new security policy. The service will continue with currently enforced policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5028(F): The Windows Firewall Service was unable to parse the new security policy. The service will continue with currently enforced policy.
diff --git a/windows/security/threat-protection/auditing/event-5029.md b/windows/security/threat-protection/auditing/event-5029.md
index dcdda6a60f..46d9b7b3e7 100644
--- a/windows/security/threat-protection/auditing/event-5029.md
+++ b/windows/security/threat-protection/auditing/event-5029.md
@@ -2,7 +2,7 @@
 title: 5029(F) The Windows Firewall Service failed to initialize the driver. The service will continue to enforce the current policy. (Windows 10)
 description: Describes security event 5029(F) The Windows Firewall Service failed to initialize the driver. The service will continue to enforce the current policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5029(F): The Windows Firewall Service failed to initialize the driver. The service will continue to enforce the current policy.
diff --git a/windows/security/threat-protection/auditing/event-5030.md b/windows/security/threat-protection/auditing/event-5030.md
index 37d3844e1f..de68bc30db 100644
--- a/windows/security/threat-protection/auditing/event-5030.md
+++ b/windows/security/threat-protection/auditing/event-5030.md
@@ -2,7 +2,7 @@
 title: 5030(F) The Windows Firewall Service failed to start. (Windows 10)
 description: Describes security event 5030(F) The Windows Firewall Service failed to start.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5030(F): The Windows Firewall Service failed to start.
diff --git a/windows/security/threat-protection/auditing/event-5031.md b/windows/security/threat-protection/auditing/event-5031.md
index e6bcd4a68c..7453df6988 100644
--- a/windows/security/threat-protection/auditing/event-5031.md
+++ b/windows/security/threat-protection/auditing/event-5031.md
@@ -5,11 +5,12 @@ manager: dansimp
 ms.author: dansimp
 description: Describes security event 5031(F) The Windows Firewall Service blocked an application from accepting incoming connections on the network.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
+ms.technology: mde
 ---
 
 # 5031(F): The Windows Firewall Service blocked an application from accepting incoming connections on the network.
diff --git a/windows/security/threat-protection/auditing/event-5032.md b/windows/security/threat-protection/auditing/event-5032.md
index 02b5e5768f..a356c6ba72 100644
--- a/windows/security/threat-protection/auditing/event-5032.md
+++ b/windows/security/threat-protection/auditing/event-5032.md
@@ -2,7 +2,7 @@
 title: 5032(F) Windows Firewall was unable to notify the user that it blocked an application from accepting incoming connections on the network. (Windows 10)
 description: Describes security event 5032(F) Windows Firewall was unable to notify the user that it blocked an application from accepting incoming connections on the network.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5032(F): Windows Firewall was unable to notify the user that it blocked an application from accepting incoming connections on the network.
diff --git a/windows/security/threat-protection/auditing/event-5033.md b/windows/security/threat-protection/auditing/event-5033.md
index 834f4c95b8..05552da629 100644
--- a/windows/security/threat-protection/auditing/event-5033.md
+++ b/windows/security/threat-protection/auditing/event-5033.md
@@ -2,7 +2,7 @@
 title: 5033(S) The Windows Firewall Driver has started successfully. (Windows 10)
 description: Describes security event 5033(S) The Windows Firewall Driver has started successfully.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5033(S): The Windows Firewall Driver has started successfully.
diff --git a/windows/security/threat-protection/auditing/event-5034.md b/windows/security/threat-protection/auditing/event-5034.md
index c3f04488fa..7cef4c54e0 100644
--- a/windows/security/threat-protection/auditing/event-5034.md
+++ b/windows/security/threat-protection/auditing/event-5034.md
@@ -2,7 +2,7 @@
 title: 5034(S) The Windows Firewall Driver was stopped. (Windows 10)
 description: Describes security event 5034(S) The Windows Firewall Driver was stopped.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5034(S): The Windows Firewall Driver was stopped.
diff --git a/windows/security/threat-protection/auditing/event-5035.md b/windows/security/threat-protection/auditing/event-5035.md
index 2815638be4..6b9d8a9488 100644
--- a/windows/security/threat-protection/auditing/event-5035.md
+++ b/windows/security/threat-protection/auditing/event-5035.md
@@ -2,7 +2,7 @@
 title: 5035(F) The Windows Firewall Driver failed to start. (Windows 10)
 description: Describes security event 5035(F) The Windows Firewall Driver failed to start.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5035(F): The Windows Firewall Driver failed to start.
diff --git a/windows/security/threat-protection/auditing/event-5037.md b/windows/security/threat-protection/auditing/event-5037.md
index 026d2c2985..a189ce3f21 100644
--- a/windows/security/threat-protection/auditing/event-5037.md
+++ b/windows/security/threat-protection/auditing/event-5037.md
@@ -2,7 +2,7 @@
 title: 5037(F) The Windows Firewall Driver detected critical runtime error. Terminating. (Windows 10)
 description: Describes security event 5037(F) The Windows Firewall Driver detected critical runtime error. Terminating.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5037(F): The Windows Firewall Driver detected critical runtime error. Terminating.
diff --git a/windows/security/threat-protection/auditing/event-5038.md b/windows/security/threat-protection/auditing/event-5038.md
index 15bd4ad7e1..eac7f9eea0 100644
--- a/windows/security/threat-protection/auditing/event-5038.md
+++ b/windows/security/threat-protection/auditing/event-5038.md
@@ -2,7 +2,7 @@
 title: 5038(F) Code integrity determined that the image hash of a file is not valid. (Windows 10)
 description: Describes security event 5038(F) Code integrity determined that the image hash of a file is not valid.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5038(F): Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.
diff --git a/windows/security/threat-protection/auditing/event-5039.md b/windows/security/threat-protection/auditing/event-5039.md
index 1f6c100b8d..fda19e5f16 100644
--- a/windows/security/threat-protection/auditing/event-5039.md
+++ b/windows/security/threat-protection/auditing/event-5039.md
@@ -2,7 +2,7 @@
 title: 5039(-) A registry key was virtualized. (Windows 10)
 description: Describes security event 5039(-) A registry key was virtualized. This event is generated when a registry key is virtualized using LUAFV.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5039(-): A registry key was virtualized.
diff --git a/windows/security/threat-protection/auditing/event-5051.md b/windows/security/threat-protection/auditing/event-5051.md
index 0bf8362113..3ac07671d2 100644
--- a/windows/security/threat-protection/auditing/event-5051.md
+++ b/windows/security/threat-protection/auditing/event-5051.md
@@ -2,7 +2,7 @@
 title: 5051(-) A file was virtualized. (Windows 10)
 description: Describes security event 5051(-) A file was virtualized. This event is generated when a file is virtualized using LUAFV.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5051(-): A file was virtualized.
diff --git a/windows/security/threat-protection/auditing/event-5056.md b/windows/security/threat-protection/auditing/event-5056.md
index 96e278db56..a717d05e4a 100644
--- a/windows/security/threat-protection/auditing/event-5056.md
+++ b/windows/security/threat-protection/auditing/event-5056.md
@@ -2,7 +2,7 @@
 title: 5056(S) A cryptographic self-test was performed. (Windows 10)
 description: Describes security event 5056(S) A cryptographic self-test was performed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5056(S): A cryptographic self-test was performed.
diff --git a/windows/security/threat-protection/auditing/event-5057.md b/windows/security/threat-protection/auditing/event-5057.md
index eb3cc568ab..c83ca8bd2e 100644
--- a/windows/security/threat-protection/auditing/event-5057.md
+++ b/windows/security/threat-protection/auditing/event-5057.md
@@ -2,7 +2,7 @@
 title: 5057(F) A cryptographic primitive operation failed. (Windows 10)
 description: Describes security event 5057(F) A cryptographic primitive operation failed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5057(F): A cryptographic primitive operation failed.
diff --git a/windows/security/threat-protection/auditing/event-5058.md b/windows/security/threat-protection/auditing/event-5058.md
index 008ecb3292..5f999b36d1 100644
--- a/windows/security/threat-protection/auditing/event-5058.md
+++ b/windows/security/threat-protection/auditing/event-5058.md
@@ -2,7 +2,7 @@
 title: 5058(S, F) Key file operation. (Windows 10)
 description: Describes security event 5058(S, F) Key file operation. This event is generated when an operation is performed on a file that contains a KSP key.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5058(S, F): Key file operation.
diff --git a/windows/security/threat-protection/auditing/event-5059.md b/windows/security/threat-protection/auditing/event-5059.md
index 096fcfe2c9..e7c0a1264b 100644
--- a/windows/security/threat-protection/auditing/event-5059.md
+++ b/windows/security/threat-protection/auditing/event-5059.md
@@ -2,7 +2,7 @@
 title: 5059(S, F) Key migration operation. (Windows 10)
 description: Describes security event 5059(S, F) Key migration operation. This event is generated when a cryptographic key is exported/imported using a Key Storage Provider.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5059(S, F): Key migration operation.
diff --git a/windows/security/threat-protection/auditing/event-5060.md b/windows/security/threat-protection/auditing/event-5060.md
index e24e71d924..11b9903d5d 100644
--- a/windows/security/threat-protection/auditing/event-5060.md
+++ b/windows/security/threat-protection/auditing/event-5060.md
@@ -2,7 +2,7 @@
 title: 5060(F) Verification operation failed. (Windows 10)
 description: Describes security event 5060(F) Verification operation failed. This event is generated when the CNG verification operation fails.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5060(F): Verification operation failed.
diff --git a/windows/security/threat-protection/auditing/event-5061.md b/windows/security/threat-protection/auditing/event-5061.md
index d283324906..a7f832d34b 100644
--- a/windows/security/threat-protection/auditing/event-5061.md
+++ b/windows/security/threat-protection/auditing/event-5061.md
@@ -2,7 +2,7 @@
 title: 5061(S, F) Cryptographic operation. (Windows 10)
 description: Describes security event 5061(S, F) Cryptographic operation. This event is generated when a cryptographic operation is performed using a Key Storage Provider.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5061(S, F): Cryptographic operation.
diff --git a/windows/security/threat-protection/auditing/event-5062.md b/windows/security/threat-protection/auditing/event-5062.md
index 0d9e37b259..e397844d41 100644
--- a/windows/security/threat-protection/auditing/event-5062.md
+++ b/windows/security/threat-protection/auditing/event-5062.md
@@ -2,7 +2,7 @@
 title: 5062(S) A kernel-mode cryptographic self-test was performed. (Windows 10)
 description: Describes security event 5062(S) A kernel-mode cryptographic self-test was performed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5062(S): A kernel-mode cryptographic self-test was performed.
diff --git a/windows/security/threat-protection/auditing/event-5063.md b/windows/security/threat-protection/auditing/event-5063.md
index 159cda1e2b..e06e3118a6 100644
--- a/windows/security/threat-protection/auditing/event-5063.md
+++ b/windows/security/threat-protection/auditing/event-5063.md
@@ -2,7 +2,7 @@
 title: 5063(S, F) A cryptographic provider operation was attempted. (Windows 10)
 description: Describes security event 5063(S, F) A cryptographic provider operation was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5063(S, F): A cryptographic provider operation was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5064.md b/windows/security/threat-protection/auditing/event-5064.md
index a5c3c577e0..77da8c5596 100644
--- a/windows/security/threat-protection/auditing/event-5064.md
+++ b/windows/security/threat-protection/auditing/event-5064.md
@@ -2,7 +2,7 @@
 title: 5064(S, F) A cryptographic context operation was attempted. (Windows 10)
 description: Describes security event 5064(S, F) A cryptographic context operation was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5064(S, F): A cryptographic context operation was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5065.md b/windows/security/threat-protection/auditing/event-5065.md
index 0f5d4dd997..7c46971bc8 100644
--- a/windows/security/threat-protection/auditing/event-5065.md
+++ b/windows/security/threat-protection/auditing/event-5065.md
@@ -2,7 +2,7 @@
 title: 5065(S, F) A cryptographic context modification was attempted. (Windows 10)
 description: Describes security event 5065(S, F) A cryptographic context modification was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5065(S, F): A cryptographic context modification was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5066.md b/windows/security/threat-protection/auditing/event-5066.md
index 9c5f389dcf..c78b0bd513 100644
--- a/windows/security/threat-protection/auditing/event-5066.md
+++ b/windows/security/threat-protection/auditing/event-5066.md
@@ -2,7 +2,7 @@
 title: 5066(S, F) A cryptographic function operation was attempted. (Windows 10)
 description: Describes security event 5066(S, F) A cryptographic function operation was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5066(S, F): A cryptographic function operation was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5067.md b/windows/security/threat-protection/auditing/event-5067.md
index 6ab1f5a7c1..eae3eb2038 100644
--- a/windows/security/threat-protection/auditing/event-5067.md
+++ b/windows/security/threat-protection/auditing/event-5067.md
@@ -2,7 +2,7 @@
 title: 5067(S, F) A cryptographic function modification was attempted. (Windows 10)
 description: Describes security event 5067(S, F) A cryptographic function modification was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5067(S, F): A cryptographic function modification was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5068.md b/windows/security/threat-protection/auditing/event-5068.md
index fb084fd8dd..1cb02be991 100644
--- a/windows/security/threat-protection/auditing/event-5068.md
+++ b/windows/security/threat-protection/auditing/event-5068.md
@@ -2,7 +2,7 @@
 title: 5068(S, F) A cryptographic function provider operation was attempted. (Windows 10)
 description: Describes security event 5068(S, F) A cryptographic function provider operation was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5068(S, F): A cryptographic function provider operation was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5069.md b/windows/security/threat-protection/auditing/event-5069.md
index 64dbd91086..104d55f067 100644
--- a/windows/security/threat-protection/auditing/event-5069.md
+++ b/windows/security/threat-protection/auditing/event-5069.md
@@ -2,7 +2,7 @@
 title: 5069(S, F) A cryptographic function property operation was attempted. (Windows 10)
 description: Describes security event 5069(S, F) A cryptographic function property operation was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5069(S, F): A cryptographic function property operation was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5070.md b/windows/security/threat-protection/auditing/event-5070.md
index ce069a495c..0cb592e4d4 100644
--- a/windows/security/threat-protection/auditing/event-5070.md
+++ b/windows/security/threat-protection/auditing/event-5070.md
@@ -2,7 +2,7 @@
 title: 5070(S, F) A cryptographic function property modification was attempted. (Windows 10)
 description: Describes security event 5070(S, F) A cryptographic function property modification was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5070(S, F): A cryptographic function property modification was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5136.md b/windows/security/threat-protection/auditing/event-5136.md
index a5708a86f6..58301baf30 100644
--- a/windows/security/threat-protection/auditing/event-5136.md
+++ b/windows/security/threat-protection/auditing/event-5136.md
@@ -2,7 +2,7 @@
 title: 5136(S) A directory service object was modified. (Windows 10)
 description: Describes security event 5136(S) A directory service object was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5136(S): A directory service object was modified.
diff --git a/windows/security/threat-protection/auditing/event-5137.md b/windows/security/threat-protection/auditing/event-5137.md
index 8d1d729333..959ae8dbd8 100644
--- a/windows/security/threat-protection/auditing/event-5137.md
+++ b/windows/security/threat-protection/auditing/event-5137.md
@@ -2,7 +2,7 @@
 title: 5137(S) A directory service object was created. (Windows 10)
 description: Describes security event 5137(S) A directory service object was created.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5137(S): A directory service object was created.
diff --git a/windows/security/threat-protection/auditing/event-5138.md b/windows/security/threat-protection/auditing/event-5138.md
index 75cebe45a7..54582252c1 100644
--- a/windows/security/threat-protection/auditing/event-5138.md
+++ b/windows/security/threat-protection/auditing/event-5138.md
@@ -2,7 +2,7 @@
 title: 5138(S) A directory service object was undeleted. (Windows 10)
 description: Describes security event 5138(S) A directory service object was undeleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5138(S): A directory service object was undeleted.
diff --git a/windows/security/threat-protection/auditing/event-5139.md b/windows/security/threat-protection/auditing/event-5139.md
index fe3921db6f..2860791322 100644
--- a/windows/security/threat-protection/auditing/event-5139.md
+++ b/windows/security/threat-protection/auditing/event-5139.md
@@ -2,7 +2,7 @@
 title: 5139(S) A directory service object was moved. (Windows 10)
 description: Describes security event 5139(S) A directory service object was moved.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5139(S): A directory service object was moved.
diff --git a/windows/security/threat-protection/auditing/event-5140.md b/windows/security/threat-protection/auditing/event-5140.md
index 3d3d5152cc..199e5a4cd7 100644
--- a/windows/security/threat-protection/auditing/event-5140.md
+++ b/windows/security/threat-protection/auditing/event-5140.md
@@ -2,7 +2,7 @@
 title: 5140(S, F) A network share object was accessed. (Windows 10)
 description: Describes security event 5140(S, F) A network share object was accessed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5140(S, F): A network share object was accessed.
diff --git a/windows/security/threat-protection/auditing/event-5141.md b/windows/security/threat-protection/auditing/event-5141.md
index 221a5c56cf..09e46f5b1b 100644
--- a/windows/security/threat-protection/auditing/event-5141.md
+++ b/windows/security/threat-protection/auditing/event-5141.md
@@ -2,7 +2,7 @@
 title: 5141(S) A directory service object was deleted. (Windows 10)
 description: Describes security event 5141(S) A directory service object was deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5141(S): A directory service object was deleted.
diff --git a/windows/security/threat-protection/auditing/event-5142.md b/windows/security/threat-protection/auditing/event-5142.md
index fdb2fe2741..d29c26ddc4 100644
--- a/windows/security/threat-protection/auditing/event-5142.md
+++ b/windows/security/threat-protection/auditing/event-5142.md
@@ -2,7 +2,7 @@
 title: 5142(S) A network share object was added. (Windows 10)
 description: Describes security event 5142(S) A network share object was added. This event is generated when a network share object is added.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5142(S): A network share object was added.
diff --git a/windows/security/threat-protection/auditing/event-5143.md b/windows/security/threat-protection/auditing/event-5143.md
index a62699a745..bc8f827e03 100644
--- a/windows/security/threat-protection/auditing/event-5143.md
+++ b/windows/security/threat-protection/auditing/event-5143.md
@@ -2,7 +2,7 @@
 title: 5143(S) A network share object was modified. (Windows 10)
 description: Describes security event 5143(S) A network share object was modified. This event is generated when a network share object is modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5143(S): A network share object was modified.
diff --git a/windows/security/threat-protection/auditing/event-5144.md b/windows/security/threat-protection/auditing/event-5144.md
index 581c19e3c9..886dc70759 100644
--- a/windows/security/threat-protection/auditing/event-5144.md
+++ b/windows/security/threat-protection/auditing/event-5144.md
@@ -2,7 +2,7 @@
 title: 5144(S) A network share object was deleted. (Windows 10)
 description: Describes security event 5144(S) A network share object was deleted. This event is generated when a network share object is deleted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5144(S): A network share object was deleted.
diff --git a/windows/security/threat-protection/auditing/event-5145.md b/windows/security/threat-protection/auditing/event-5145.md
index f5ec73669e..dee8d57794 100644
--- a/windows/security/threat-protection/auditing/event-5145.md
+++ b/windows/security/threat-protection/auditing/event-5145.md
@@ -2,7 +2,7 @@
 title: 5145(S, F) A network share object was checked to see whether client can be granted desired access. (Windows 10)
 description: Describes security event 5145(S, F) A network share object was checked to see whether client can be granted desired access.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5145(S, F): A network share object was checked to see whether client can be granted desired access.
diff --git a/windows/security/threat-protection/auditing/event-5148.md b/windows/security/threat-protection/auditing/event-5148.md
index 6787ac6329..23a31eb1a6 100644
--- a/windows/security/threat-protection/auditing/event-5148.md
+++ b/windows/security/threat-protection/auditing/event-5148.md
@@ -2,7 +2,7 @@
 title: 5148(F) The Windows Filtering Platform has detected a DoS attack and entered a defensive mode; packets associated with this attack will be discarded. (Windows 10)
 description: Details on Security event 5148(F), The Windows Filtering Platform has detected a DoS attack and entered a defensive mode.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 05/29/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5148(F): The Windows Filtering Platform has detected a DoS attack and entered a defensive mode; packets associated with this attack will be discarded.
diff --git a/windows/security/threat-protection/auditing/event-5149.md b/windows/security/threat-protection/auditing/event-5149.md
index 59386a8ef4..04f6c8747a 100644
--- a/windows/security/threat-protection/auditing/event-5149.md
+++ b/windows/security/threat-protection/auditing/event-5149.md
@@ -2,7 +2,7 @@
 title: 5149(F) The DoS attack has subsided and normal processing is being resumed. (Windows 10)
 description: Describes security event 5149(F) The DoS attack has subsided and normal processing is being resumed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 05/29/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5149(F): The DoS attack has subsided and normal processing is being resumed.
diff --git a/windows/security/threat-protection/auditing/event-5150.md b/windows/security/threat-protection/auditing/event-5150.md
index c1f8d98680..018894b1cf 100644
--- a/windows/security/threat-protection/auditing/event-5150.md
+++ b/windows/security/threat-protection/auditing/event-5150.md
@@ -2,7 +2,7 @@
 title: 5150(-) The Windows Filtering Platform blocked a packet. (Windows 10)
 description: Describes security event 5150(-) The Windows Filtering Platform blocked a packet.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5150(-): The Windows Filtering Platform blocked a packet.
diff --git a/windows/security/threat-protection/auditing/event-5151.md b/windows/security/threat-protection/auditing/event-5151.md
index 699a093def..1b55b64d41 100644
--- a/windows/security/threat-protection/auditing/event-5151.md
+++ b/windows/security/threat-protection/auditing/event-5151.md
@@ -2,7 +2,7 @@
 title: 5151(-) A more restrictive Windows Filtering Platform filter has blocked a packet. (Windows 10)
 description: Describes security event 5151(-) A more restrictive Windows Filtering Platform filter has blocked a packet.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5151(-): A more restrictive Windows Filtering Platform filter has blocked a packet.
diff --git a/windows/security/threat-protection/auditing/event-5152.md b/windows/security/threat-protection/auditing/event-5152.md
index ece1e4566d..d89a240a64 100644
--- a/windows/security/threat-protection/auditing/event-5152.md
+++ b/windows/security/threat-protection/auditing/event-5152.md
@@ -2,7 +2,7 @@
 title: 5152(F) The Windows Filtering Platform blocked a packet. (Windows 10)
 description: Describes security event 5152(F) The Windows Filtering Platform blocked a packet.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5152(F): The Windows Filtering Platform blocked a packet.
diff --git a/windows/security/threat-protection/auditing/event-5153.md b/windows/security/threat-protection/auditing/event-5153.md
index 8751b40002..ce3f53f60d 100644
--- a/windows/security/threat-protection/auditing/event-5153.md
+++ b/windows/security/threat-protection/auditing/event-5153.md
@@ -2,7 +2,7 @@
 title: 5153(S) A more restrictive Windows Filtering Platform filter has blocked a packet. (Windows 10)
 description: Describes security event 5153(S) A more restrictive Windows Filtering Platform filter has blocked a packet.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5153(S): A more restrictive Windows Filtering Platform filter has blocked a packet.
diff --git a/windows/security/threat-protection/auditing/event-5154.md b/windows/security/threat-protection/auditing/event-5154.md
index b464c877d6..5083012650 100644
--- a/windows/security/threat-protection/auditing/event-5154.md
+++ b/windows/security/threat-protection/auditing/event-5154.md
@@ -2,7 +2,7 @@
 title: 5154(S) The Windows Filtering Platform has permitted an application or service to listen on a port for incoming connections. (Windows 10)
 description: Describes security event 5154(S) The Windows Filtering Platform has permitted an application or service to listen on a port for incoming connections.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5154(S): The Windows Filtering Platform has permitted an application or service to listen on a port for incoming connections.
diff --git a/windows/security/threat-protection/auditing/event-5155.md b/windows/security/threat-protection/auditing/event-5155.md
index 9964b6f390..7d6eac1919 100644
--- a/windows/security/threat-protection/auditing/event-5155.md
+++ b/windows/security/threat-protection/auditing/event-5155.md
@@ -2,7 +2,7 @@
 title: 5155(F) The Windows Filtering Platform has blocked an application or service from listening on a port for incoming connections. (Windows 10)
 description: Describes security event 5155(F) The Windows Filtering Platform has blocked an application or service from listening on a port for incoming connections.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5155(F): The Windows Filtering Platform has blocked an application or service from listening on a port for incoming connections.
diff --git a/windows/security/threat-protection/auditing/event-5156.md b/windows/security/threat-protection/auditing/event-5156.md
index d44b9a921f..8c1116cba5 100644
--- a/windows/security/threat-protection/auditing/event-5156.md
+++ b/windows/security/threat-protection/auditing/event-5156.md
@@ -2,7 +2,7 @@
 title: 5156(S) The Windows Filtering Platform has permitted a connection. (Windows 10)
 description: Describes security event 5156(S) The Windows Filtering Platform has permitted a connection.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5156(S): The Windows Filtering Platform has permitted a connection.
diff --git a/windows/security/threat-protection/auditing/event-5157.md b/windows/security/threat-protection/auditing/event-5157.md
index 88bc5b1315..2f2b2cd8fd 100644
--- a/windows/security/threat-protection/auditing/event-5157.md
+++ b/windows/security/threat-protection/auditing/event-5157.md
@@ -2,7 +2,7 @@
 title: 5157(F) The Windows Filtering Platform has blocked a connection. (Windows 10)
 description: Describes security event 5157(F) The Windows Filtering Platform has blocked a connection.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5157(F): The Windows Filtering Platform has blocked a connection.
diff --git a/windows/security/threat-protection/auditing/event-5158.md b/windows/security/threat-protection/auditing/event-5158.md
index 76bb82efef..63753bbc2b 100644
--- a/windows/security/threat-protection/auditing/event-5158.md
+++ b/windows/security/threat-protection/auditing/event-5158.md
@@ -2,7 +2,7 @@
 title: 5158(S) The Windows Filtering Platform has permitted a bind to a local port. (Windows 10)
 description: Describes security event 5158(S) The Windows Filtering Platform has permitted a bind to a local port.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5158(S): The Windows Filtering Platform has permitted a bind to a local port.
diff --git a/windows/security/threat-protection/auditing/event-5159.md b/windows/security/threat-protection/auditing/event-5159.md
index 460e244dd8..b5b867bc47 100644
--- a/windows/security/threat-protection/auditing/event-5159.md
+++ b/windows/security/threat-protection/auditing/event-5159.md
@@ -2,7 +2,7 @@
 title: 5159(F) The Windows Filtering Platform has blocked a bind to a local port. (Windows 10)
 description: Describes security event 5159(F) The Windows Filtering Platform has blocked a bind to a local port.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5159(F): The Windows Filtering Platform has blocked a bind to a local port.
diff --git a/windows/security/threat-protection/auditing/event-5168.md b/windows/security/threat-protection/auditing/event-5168.md
index fcc35ba385..819d9f191e 100644
--- a/windows/security/threat-protection/auditing/event-5168.md
+++ b/windows/security/threat-protection/auditing/event-5168.md
@@ -2,7 +2,7 @@
 title: 5168(F) SPN check for SMB/SMB2 failed. (Windows 10)
 description: Describes security event 5168(F) SPN check for SMB/SMB2 failed. This event is generated when an SMB SPN check fails.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5168(F): SPN check for SMB/SMB2 failed.
diff --git a/windows/security/threat-protection/auditing/event-5376.md b/windows/security/threat-protection/auditing/event-5376.md
index f888db6fb2..3d7cc2e623 100644
--- a/windows/security/threat-protection/auditing/event-5376.md
+++ b/windows/security/threat-protection/auditing/event-5376.md
@@ -2,7 +2,7 @@
 title: 5376(S) Credential Manager credentials were backed up. (Windows 10)
 description: Describes security event 5376(S) Credential Manager credentials were backed up.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5376(S): Credential Manager credentials were backed up.
diff --git a/windows/security/threat-protection/auditing/event-5377.md b/windows/security/threat-protection/auditing/event-5377.md
index 1ed830b074..98ccff769a 100644
--- a/windows/security/threat-protection/auditing/event-5377.md
+++ b/windows/security/threat-protection/auditing/event-5377.md
@@ -2,7 +2,7 @@
 title: 5377(S) Credential Manager credentials were restored from a backup. (Windows 10)
 description: Describes security event 5377(S) Credential Manager credentials were restored from a backup.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5377(S): Credential Manager credentials were restored from a backup.
diff --git a/windows/security/threat-protection/auditing/event-5378.md b/windows/security/threat-protection/auditing/event-5378.md
index bb48a36562..04395a702b 100644
--- a/windows/security/threat-protection/auditing/event-5378.md
+++ b/windows/security/threat-protection/auditing/event-5378.md
@@ -2,7 +2,7 @@
 title: 5378(F) The requested credentials delegation was disallowed by policy. (Windows 10)
 description: Describes security event 5378(F) The requested credentials delegation was disallowed by policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5378(F): The requested credentials delegation was disallowed by policy.
diff --git a/windows/security/threat-protection/auditing/event-5447.md b/windows/security/threat-protection/auditing/event-5447.md
index 89dd2b5bf0..a647b4c565 100644
--- a/windows/security/threat-protection/auditing/event-5447.md
+++ b/windows/security/threat-protection/auditing/event-5447.md
@@ -2,7 +2,7 @@
 title: 5447(S) A Windows Filtering Platform filter has been changed. (Windows 10)
 description: Describes security event 5447(S) A Windows Filtering Platform filter has been changed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5447(S): A Windows Filtering Platform filter has been changed.
diff --git a/windows/security/threat-protection/auditing/event-5632.md b/windows/security/threat-protection/auditing/event-5632.md
index 756db4ebbf..0870e6a7fc 100644
--- a/windows/security/threat-protection/auditing/event-5632.md
+++ b/windows/security/threat-protection/auditing/event-5632.md
@@ -2,7 +2,7 @@
 title: 5632(S, F) A request was made to authenticate to a wireless network. (Windows 10)
 description: Describes security event 5632(S, F) A request was made to authenticate to a wireless network.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5632(S, F): A request was made to authenticate to a wireless network.
diff --git a/windows/security/threat-protection/auditing/event-5633.md b/windows/security/threat-protection/auditing/event-5633.md
index d85599c157..1bb8d2d300 100644
--- a/windows/security/threat-protection/auditing/event-5633.md
+++ b/windows/security/threat-protection/auditing/event-5633.md
@@ -2,7 +2,7 @@
 title: 5633(S, F) A request was made to authenticate to a wired network. (Windows 10)
 description: Describes security event 5633(S, F) A request was made to authenticate to a wired network.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5633(S, F): A request was made to authenticate to a wired network.
diff --git a/windows/security/threat-protection/auditing/event-5712.md b/windows/security/threat-protection/auditing/event-5712.md
index 2fae83e65f..5bb81e6f09 100644
--- a/windows/security/threat-protection/auditing/event-5712.md
+++ b/windows/security/threat-protection/auditing/event-5712.md
@@ -2,7 +2,7 @@
 title: 5712(S) A Remote Procedure Call (RPC) was attempted. (Windows 10)
 description: Describes security event 5712(S) A Remote Procedure Call (RPC) was attempted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5712(S): A Remote Procedure Call (RPC) was attempted.
diff --git a/windows/security/threat-protection/auditing/event-5888.md b/windows/security/threat-protection/auditing/event-5888.md
index 43f79ed55d..8531945a54 100644
--- a/windows/security/threat-protection/auditing/event-5888.md
+++ b/windows/security/threat-protection/auditing/event-5888.md
@@ -2,7 +2,7 @@
 title: 5888(S) An object in the COM+ Catalog was modified. (Windows 10)
 description: Describes security event 5888(S) An object in the COM+ Catalog was modified.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5888(S): An object in the COM+ Catalog was modified.
diff --git a/windows/security/threat-protection/auditing/event-5889.md b/windows/security/threat-protection/auditing/event-5889.md
index 5daae37ce0..3fe376f85c 100644
--- a/windows/security/threat-protection/auditing/event-5889.md
+++ b/windows/security/threat-protection/auditing/event-5889.md
@@ -2,7 +2,7 @@
 title: 5889(S) An object was deleted from the COM+ Catalog. (Windows 10)
 description: Describes security event 5889(S) An object was deleted from the COM+ Catalog.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5889(S): An object was deleted from the COM+ Catalog.
diff --git a/windows/security/threat-protection/auditing/event-5890.md b/windows/security/threat-protection/auditing/event-5890.md
index f5f0c81561..9a90b1a6a3 100644
--- a/windows/security/threat-protection/auditing/event-5890.md
+++ b/windows/security/threat-protection/auditing/event-5890.md
@@ -2,7 +2,7 @@
 title: 5890(S) An object was added to the COM+ Catalog. (Windows 10)
 description: Describes security event 5890(S) An object was added to the COM+ Catalog.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 5890(S): An object was added to the COM+ Catalog.
diff --git a/windows/security/threat-protection/auditing/event-6144.md b/windows/security/threat-protection/auditing/event-6144.md
index 7f0df8a521..7565e8f794 100644
--- a/windows/security/threat-protection/auditing/event-6144.md
+++ b/windows/security/threat-protection/auditing/event-6144.md
@@ -2,7 +2,7 @@
 title: 6144(S) Security policy in the group policy objects has been applied successfully. (Windows 10)
 description: Describes security event 6144(S) Security policy in the group policy objects has been applied successfully.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6144(S): Security policy in the group policy objects has been applied successfully.
diff --git a/windows/security/threat-protection/auditing/event-6145.md b/windows/security/threat-protection/auditing/event-6145.md
index c9a27526cd..8b541749d6 100644
--- a/windows/security/threat-protection/auditing/event-6145.md
+++ b/windows/security/threat-protection/auditing/event-6145.md
@@ -2,7 +2,7 @@
 title: 6145(F) One or more errors occurred while processing security policy in the group policy objects. (Windows 10)
 description: Describes security event 6145(F) One or more errors occurred while processing security policy in the group policy objects.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6145(F): One or more errors occurred while processing security policy in the group policy objects.
diff --git a/windows/security/threat-protection/auditing/event-6281.md b/windows/security/threat-protection/auditing/event-6281.md
index e8dfb2d7cf..b4d79cbbdb 100644
--- a/windows/security/threat-protection/auditing/event-6281.md
+++ b/windows/security/threat-protection/auditing/event-6281.md
@@ -2,7 +2,7 @@
 title: 6281(F) Code Integrity determined that the page hashes of an image file are not valid. (Windows 10)
 description: Describes security event 6281(F) Code Integrity determined that the page hashes of an image file are not valid.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6281(F): Code Integrity determined that the page hashes of an image file are not valid. The file could be improperly signed without page hashes or corrupt due to unauthorized modification. The invalid hashes could indicate a potential disk device error.
diff --git a/windows/security/threat-protection/auditing/event-6400.md b/windows/security/threat-protection/auditing/event-6400.md
index 7a379132bc..acefc262d9 100644
--- a/windows/security/threat-protection/auditing/event-6400.md
+++ b/windows/security/threat-protection/auditing/event-6400.md
@@ -2,7 +2,7 @@
 title: 6400(-) BranchCache Received an incorrectly formatted response while discovering availability of content. (Windows 10)
 description: Describes security event 6400(-) BranchCache Received an incorrectly formatted response while discovering availability of content.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6400(-): BranchCache: Received an incorrectly formatted response while discovering availability of content.
diff --git a/windows/security/threat-protection/auditing/event-6401.md b/windows/security/threat-protection/auditing/event-6401.md
index 1ce4c083dd..1b442d10d9 100644
--- a/windows/security/threat-protection/auditing/event-6401.md
+++ b/windows/security/threat-protection/auditing/event-6401.md
@@ -2,7 +2,7 @@
 title: 6401(-) BranchCache Received invalid data from a peer. Data discarded. (Windows 10)
 description: Describes security event 6401(-) BranchCache Received invalid data from a peer. Data discarded.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6401(-): BranchCache: Received invalid data from a peer. Data discarded.
diff --git a/windows/security/threat-protection/auditing/event-6402.md b/windows/security/threat-protection/auditing/event-6402.md
index dde20455d3..77a10ac4dc 100644
--- a/windows/security/threat-protection/auditing/event-6402.md
+++ b/windows/security/threat-protection/auditing/event-6402.md
@@ -2,7 +2,7 @@
 title: 6402(-) BranchCache The message to the hosted cache offering it data is incorrectly formatted. (Windows 10)
 description: Describes security event 6402(-) BranchCache The message to the hosted cache offering it data is incorrectly formatted.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6402(-): BranchCache: The message to the hosted cache offering it data is incorrectly formatted.
diff --git a/windows/security/threat-protection/auditing/event-6403.md b/windows/security/threat-protection/auditing/event-6403.md
index e8020581ad..d730acb9d3 100644
--- a/windows/security/threat-protection/auditing/event-6403.md
+++ b/windows/security/threat-protection/auditing/event-6403.md
@@ -2,7 +2,7 @@
 title: 6403(-) BranchCache The hosted cache sent an incorrectly formatted response to the client. (Windows 10)
 description: Describes security event 6403(-) BranchCache The hosted cache sent an incorrectly formatted response to the client.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6403(-): BranchCache: The hosted cache sent an incorrectly formatted response to the client.
diff --git a/windows/security/threat-protection/auditing/event-6404.md b/windows/security/threat-protection/auditing/event-6404.md
index 43228f26be..808c8e4264 100644
--- a/windows/security/threat-protection/auditing/event-6404.md
+++ b/windows/security/threat-protection/auditing/event-6404.md
@@ -2,7 +2,7 @@
 title: 6404(-) BranchCache Hosted cache could not be authenticated using the provisioned SSL certificate. (Windows 10)
 description: Describes security event 6404(-) BranchCache Hosted cache could not be authenticated using the provisioned SSL certificate.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6404(-): BranchCache: Hosted cache could not be authenticated using the provisioned SSL certificate.
diff --git a/windows/security/threat-protection/auditing/event-6405.md b/windows/security/threat-protection/auditing/event-6405.md
index ea59bc3fc7..2638753673 100644
--- a/windows/security/threat-protection/auditing/event-6405.md
+++ b/windows/security/threat-protection/auditing/event-6405.md
@@ -2,7 +2,7 @@
 title: 6405(-) BranchCache %2 instance(s) of event id %1 occurred. (Windows 10)
 description: Describes security event 6405(-) BranchCache %2 instance(s) of event id %1 occurred.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6405(-): BranchCache: %2 instance(s) of event id %1 occurred.
diff --git a/windows/security/threat-protection/auditing/event-6406.md b/windows/security/threat-protection/auditing/event-6406.md
index d70fac0adb..11cef9058e 100644
--- a/windows/security/threat-protection/auditing/event-6406.md
+++ b/windows/security/threat-protection/auditing/event-6406.md
@@ -2,7 +2,7 @@
 title: 6406(-) %1 registered to Windows Firewall to control filtering for the following %2. (Windows 10)
 description: Describes security event 6406(-) %1 registered to Windows Firewall to control filtering for the following %2.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6406(-): %1 registered to Windows Firewall to control filtering for the following: %2.
diff --git a/windows/security/threat-protection/auditing/event-6407.md b/windows/security/threat-protection/auditing/event-6407.md
index ca5e8e02d6..1e3d0cbd85 100644
--- a/windows/security/threat-protection/auditing/event-6407.md
+++ b/windows/security/threat-protection/auditing/event-6407.md
@@ -2,7 +2,7 @@
 title: 6407(-) 1%. (Windows 10)
 description: Describes security event 6407(-) 1%. This is a BranchCache event, which is outside the scope of this document.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6407(-): 1%.
diff --git a/windows/security/threat-protection/auditing/event-6408.md b/windows/security/threat-protection/auditing/event-6408.md
index ffb33ccdee..d3bd29901c 100644
--- a/windows/security/threat-protection/auditing/event-6408.md
+++ b/windows/security/threat-protection/auditing/event-6408.md
@@ -2,7 +2,7 @@
 title: 6408(-) Registered product %1 failed and Windows Firewall is now controlling the filtering for %2. (Windows 10)
 description: Describes security event 6408(-) Registered product %1 failed and Windows Firewall is now controlling the filtering for %2.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6408(-): Registered product %1 failed and Windows Firewall is now controlling the filtering for %2.
diff --git a/windows/security/threat-protection/auditing/event-6409.md b/windows/security/threat-protection/auditing/event-6409.md
index e1f76dbf69..97d212be9a 100644
--- a/windows/security/threat-protection/auditing/event-6409.md
+++ b/windows/security/threat-protection/auditing/event-6409.md
@@ -2,7 +2,7 @@
 title: 6409(-) BranchCache A service connection point object could not be parsed. (Windows 10)
 description: Describes security event 6409(-) BranchCache A service connection point object could not be parsed.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6409(-): BranchCache: A service connection point object could not be parsed.
diff --git a/windows/security/threat-protection/auditing/event-6410.md b/windows/security/threat-protection/auditing/event-6410.md
index b13bbde8fc..a8980cfb49 100644
--- a/windows/security/threat-protection/auditing/event-6410.md
+++ b/windows/security/threat-protection/auditing/event-6410.md
@@ -2,7 +2,7 @@
 title: 6410(F) Code integrity determined that a file does not meet the security requirements to load into a process. (Windows 10)
 description: Describes security event 6410(F) Code integrity determined that a file does not meet the security requirements to load into a process.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6410(F): Code integrity determined that a file does not meet the security requirements to load into a process.
diff --git a/windows/security/threat-protection/auditing/event-6416.md b/windows/security/threat-protection/auditing/event-6416.md
index 6e4c4af309..4b85673aa7 100644
--- a/windows/security/threat-protection/auditing/event-6416.md
+++ b/windows/security/threat-protection/auditing/event-6416.md
@@ -2,7 +2,7 @@
 title: 6416(S) A new external device was recognized by the System. (Windows 10)
 description: Describes security event 6416(S) A new external device was recognized by the System.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6416(S): A new external device was recognized by the System.
diff --git a/windows/security/threat-protection/auditing/event-6419.md b/windows/security/threat-protection/auditing/event-6419.md
index e5c1d7fab1..90c145ff77 100644
--- a/windows/security/threat-protection/auditing/event-6419.md
+++ b/windows/security/threat-protection/auditing/event-6419.md
@@ -2,7 +2,7 @@
 title: 6419(S) A request was made to disable a device. (Windows 10)
 description: Describes security event 6419(S) A request was made to disable a device.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6419(S): A request was made to disable a device.
diff --git a/windows/security/threat-protection/auditing/event-6420.md b/windows/security/threat-protection/auditing/event-6420.md
index 2ede6f7fce..51570d3ab3 100644
--- a/windows/security/threat-protection/auditing/event-6420.md
+++ b/windows/security/threat-protection/auditing/event-6420.md
@@ -2,7 +2,7 @@
 title: 6420(S) A device was disabled. (Windows 10)
 description: Describes security event 6420(S) A device was disabled. This event is generated when a specific device is disabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6420(S): A device was disabled.
diff --git a/windows/security/threat-protection/auditing/event-6421.md b/windows/security/threat-protection/auditing/event-6421.md
index 4994eafbd7..ef4e0b856f 100644
--- a/windows/security/threat-protection/auditing/event-6421.md
+++ b/windows/security/threat-protection/auditing/event-6421.md
@@ -2,7 +2,7 @@
 title: 6421(S) A request was made to enable a device. (Windows 10)
 description: Describes security event 6421(S) A request was made to enable a device.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6421(S): A request was made to enable a device.
diff --git a/windows/security/threat-protection/auditing/event-6422.md b/windows/security/threat-protection/auditing/event-6422.md
index 606f0228a6..2b2f45d1b8 100644
--- a/windows/security/threat-protection/auditing/event-6422.md
+++ b/windows/security/threat-protection/auditing/event-6422.md
@@ -2,7 +2,7 @@
 title: 6422(S) A device was enabled. (Windows 10)
 description: Describes security event 6422(S) A device was enabled. This event is generated when a specific device is enabled.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6422(S): A device was enabled.
diff --git a/windows/security/threat-protection/auditing/event-6423.md b/windows/security/threat-protection/auditing/event-6423.md
index 67b96baef5..3332a01011 100644
--- a/windows/security/threat-protection/auditing/event-6423.md
+++ b/windows/security/threat-protection/auditing/event-6423.md
@@ -2,7 +2,7 @@
 title: 6423(S) The installation of this device is forbidden by system policy. (Windows 10)
 description: Describes security event 6423(S) The installation of this device is forbidden by system policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6423(S): The installation of this device is forbidden by system policy.
diff --git a/windows/security/threat-protection/auditing/event-6424.md b/windows/security/threat-protection/auditing/event-6424.md
index 4e21756137..8ca1ce36d6 100644
--- a/windows/security/threat-protection/auditing/event-6424.md
+++ b/windows/security/threat-protection/auditing/event-6424.md
@@ -2,7 +2,7 @@
 title: 6424(S) The installation of this device was allowed, after having previously been forbidden by policy. (Windows 10)
 description: Describes security event 6424(S) The installation of this device was allowed, after having previously been forbidden by policy.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: none
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # 6424(S): The installation of this device was allowed, after having previously been forbidden by policy.
diff --git a/windows/security/threat-protection/auditing/file-system-global-object-access-auditing.md b/windows/security/threat-protection/auditing/file-system-global-object-access-auditing.md
index c9d3a1c9ba..1093140e38 100644
--- a/windows/security/threat-protection/auditing/file-system-global-object-access-auditing.md
+++ b/windows/security/threat-protection/auditing/file-system-global-object-access-auditing.md
@@ -4,7 +4,7 @@ description: The policy setting, File System (Global Object Access Auditing), en
 ms.assetid: 4f215d61-0e23-46e4-9e58-08511105d25b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # File System (Global Object Access Auditing)
diff --git a/windows/security/threat-protection/auditing/how-to-list-xml-elements-in-eventdata.md b/windows/security/threat-protection/auditing/how-to-list-xml-elements-in-eventdata.md
index 58bd7574f2..1efc819647 100644
--- a/windows/security/threat-protection/auditing/how-to-list-xml-elements-in-eventdata.md
+++ b/windows/security/threat-protection/auditing/how-to-list-xml-elements-in-eventdata.md
@@ -1,7 +1,7 @@
 ---
 title: How to get a list of XML data name elements in <EventData> (Windows 10)
 description: This reference article for the IT professional explains how to use PowerShell to get a list of XML data name elements that can appear in <EventData>.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -11,6 +11,7 @@ ms.date: 10/22/2018
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # How to get a list of XML data name elements in EventData
diff --git a/windows/security/threat-protection/auditing/monitor-central-access-policy-and-rule-definitions.md b/windows/security/threat-protection/auditing/monitor-central-access-policy-and-rule-definitions.md
index 51cb23c22b..5331884d19 100644
--- a/windows/security/threat-protection/auditing/monitor-central-access-policy-and-rule-definitions.md
+++ b/windows/security/threat-protection/auditing/monitor-central-access-policy-and-rule-definitions.md
@@ -4,7 +4,7 @@ description: Learn how to use advanced security auditing options to monitor chan
 ms.assetid: 553f98a6-7606-4518-a3c5-347a33105130
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor central access policy and rule definitions
diff --git a/windows/security/threat-protection/auditing/monitor-claim-types.md b/windows/security/threat-protection/auditing/monitor-claim-types.md
index d2369fe778..50b89da04a 100644
--- a/windows/security/threat-protection/auditing/monitor-claim-types.md
+++ b/windows/security/threat-protection/auditing/monitor-claim-types.md
@@ -4,7 +4,7 @@ description: Learn how to monitor changes to claim types that are associated wit
 ms.assetid: 426084da-4eef-44af-aeec-e7ab4d4e2439
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor claim types
diff --git a/windows/security/threat-protection/auditing/monitor-resource-attribute-definitions.md b/windows/security/threat-protection/auditing/monitor-resource-attribute-definitions.md
index 14dccc71b4..6d433c9bcd 100644
--- a/windows/security/threat-protection/auditing/monitor-resource-attribute-definitions.md
+++ b/windows/security/threat-protection/auditing/monitor-resource-attribute-definitions.md
@@ -4,7 +4,7 @@ description: Learn how to monitor changes to resource attribute definitions when
 ms.assetid: aace34b0-123a-4b83-9e09-f269220e79de
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor resource attribute definitions
diff --git a/windows/security/threat-protection/auditing/monitor-the-central-access-policies-associated-with-files-and-folders.md b/windows/security/threat-protection/auditing/monitor-the-central-access-policies-associated-with-files-and-folders.md
index e6131584e5..d1429af0f1 100644
--- a/windows/security/threat-protection/auditing/monitor-the-central-access-policies-associated-with-files-and-folders.md
+++ b/windows/security/threat-protection/auditing/monitor-the-central-access-policies-associated-with-files-and-folders.md
@@ -4,7 +4,7 @@ description: Monitor changes to central access policies associated with files an
 ms.assetid: 2ea8fc23-b3ac-432f-87b0-6a16506e8eed
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor the central access policies associated with files and folders
diff --git a/windows/security/threat-protection/auditing/monitor-the-central-access-policies-that-apply-on-a-file-server.md b/windows/security/threat-protection/auditing/monitor-the-central-access-policies-that-apply-on-a-file-server.md
index fac29703cb..36bd40c78c 100644
--- a/windows/security/threat-protection/auditing/monitor-the-central-access-policies-that-apply-on-a-file-server.md
+++ b/windows/security/threat-protection/auditing/monitor-the-central-access-policies-that-apply-on-a-file-server.md
@@ -4,7 +4,7 @@ description: Learn how to monitor changes to the central access policies that ap
 ms.assetid: 126b051e-c20d-41f1-b42f-6cff24dcf20c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor the central access policies that apply on a file server
diff --git a/windows/security/threat-protection/auditing/monitor-the-resource-attributes-on-files-and-folders.md b/windows/security/threat-protection/auditing/monitor-the-resource-attributes-on-files-and-folders.md
index e1418e2ad9..243c686c50 100644
--- a/windows/security/threat-protection/auditing/monitor-the-resource-attributes-on-files-and-folders.md
+++ b/windows/security/threat-protection/auditing/monitor-the-resource-attributes-on-files-and-folders.md
@@ -4,7 +4,7 @@ description: Learn how to use advanced security auditing options to monitor atte
 ms.assetid: 4944097b-320f-44c7-88ed-bf55946a358b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor the resource attributes on files and folders
diff --git a/windows/security/threat-protection/auditing/monitor-the-use-of-removable-storage-devices.md b/windows/security/threat-protection/auditing/monitor-the-use-of-removable-storage-devices.md
index 30ed1af8fc..ef0df1f2a8 100644
--- a/windows/security/threat-protection/auditing/monitor-the-use-of-removable-storage-devices.md
+++ b/windows/security/threat-protection/auditing/monitor-the-use-of-removable-storage-devices.md
@@ -4,7 +4,7 @@ description: Learn how advanced security auditing options can be used to monitor
 ms.assetid: b0a9e4a5-b7ff-41c6-96ff-0228d4ba5da8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,7 +14,8 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
-ms.date:
+ms.date: 
+ms.technology: mde
 ---
 
 # Monitor the use of removable storage devices
diff --git a/windows/security/threat-protection/auditing/monitor-user-and-device-claims-during-sign-in.md b/windows/security/threat-protection/auditing/monitor-user-and-device-claims-during-sign-in.md
index 606e073432..7f14c10bd0 100644
--- a/windows/security/threat-protection/auditing/monitor-user-and-device-claims-during-sign-in.md
+++ b/windows/security/threat-protection/auditing/monitor-user-and-device-claims-during-sign-in.md
@@ -4,7 +4,7 @@ description: Learn how to monitor user and device claims that are associated wit
 ms.assetid: 71796ea9-5fe4-4183-8475-805c3c1f319f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Monitor user and device claims during sign-in
diff --git a/windows/security/threat-protection/auditing/other-events.md b/windows/security/threat-protection/auditing/other-events.md
index 42a1f36edd..e74cf80553 100644
--- a/windows/security/threat-protection/auditing/other-events.md
+++ b/windows/security/threat-protection/auditing/other-events.md
@@ -2,7 +2,7 @@
 title: Other Events (Windows 10)
 description: Describes the Other Events auditing subcategory, which includes events that are generated automatically and enabled by default.
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,6 +11,7 @@ ms.date: 04/19/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Other Events
diff --git a/windows/security/threat-protection/auditing/planning-and-deploying-advanced-security-audit-policies.md b/windows/security/threat-protection/auditing/planning-and-deploying-advanced-security-audit-policies.md
index 2bc61ffce1..78bb89bc17 100644
--- a/windows/security/threat-protection/auditing/planning-and-deploying-advanced-security-audit-policies.md
+++ b/windows/security/threat-protection/auditing/planning-and-deploying-advanced-security-audit-policies.md
@@ -4,7 +4,7 @@ description: Learn to deploy an effective security audit policy in a network tha
 ms.assetid: 7428e1db-aba8-407b-a39e-509671e5a442
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Plan and deploy advanced security audit policies
diff --git a/windows/security/threat-protection/auditing/registry-global-object-access-auditing.md b/windows/security/threat-protection/auditing/registry-global-object-access-auditing.md
index 88585f3a9a..3c5c1ece1e 100644
--- a/windows/security/threat-protection/auditing/registry-global-object-access-auditing.md
+++ b/windows/security/threat-protection/auditing/registry-global-object-access-auditing.md
@@ -4,7 +4,7 @@ description: The Advanced Security Audit policy setting, Registry (Global Object
 ms.assetid: 953bb1c1-3f76-43be-ba17-4aed2304f578
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Registry (Global Object Access Auditing)
diff --git a/windows/security/threat-protection/auditing/security-auditing-overview.md b/windows/security/threat-protection/auditing/security-auditing-overview.md
index 8859ea5f7e..ba71110680 100644
--- a/windows/security/threat-protection/auditing/security-auditing-overview.md
+++ b/windows/security/threat-protection/auditing/security-auditing-overview.md
@@ -4,7 +4,7 @@ description: Learn about security auditing features in Windows, and how your org
 ms.assetid: 2d9b8142-49bd-4a33-b246-3f0c2a5f32d4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Security auditing
diff --git a/windows/security/threat-protection/auditing/using-advanced-security-auditing-options-to-monitor-dynamic-access-control-objects.md b/windows/security/threat-protection/auditing/using-advanced-security-auditing-options-to-monitor-dynamic-access-control-objects.md
index 91e999ee6e..9f9218109c 100644
--- a/windows/security/threat-protection/auditing/using-advanced-security-auditing-options-to-monitor-dynamic-access-control-objects.md
+++ b/windows/security/threat-protection/auditing/using-advanced-security-auditing-options-to-monitor-dynamic-access-control-objects.md
@@ -4,7 +4,7 @@ description: Domain admins can set up advanced security audit options in Windows
 ms.assetid: 0d2c28ea-bdaf-47fd-bca2-a07dce5fed37
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Using advanced security auditing options to monitor dynamic access control objects
diff --git a/windows/security/threat-protection/auditing/view-the-security-event-log.md b/windows/security/threat-protection/auditing/view-the-security-event-log.md
index 7c25bfb2f8..84a296e182 100644
--- a/windows/security/threat-protection/auditing/view-the-security-event-log.md
+++ b/windows/security/threat-protection/auditing/view-the-security-event-log.md
@@ -4,7 +4,7 @@ description: The security log records each event as defined by the audit policie
 ms.assetid: 20DD2ACD-241A-45C5-A92F-4BE0D9F198B9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # View the security event log
diff --git a/windows/security/threat-protection/auditing/which-editions-of-windows-support-advanced-audit-policy-configuration.md b/windows/security/threat-protection/auditing/which-editions-of-windows-support-advanced-audit-policy-configuration.md
index 92cdd0107e..4b20841dd8 100644
--- a/windows/security/threat-protection/auditing/which-editions-of-windows-support-advanced-audit-policy-configuration.md
+++ b/windows/security/threat-protection/auditing/which-editions-of-windows-support-advanced-audit-policy-configuration.md
@@ -4,7 +4,7 @@ description: This reference topic for the IT professional describes which versio
 ms.assetid: 87c71cc5-522d-4771-ac78-34a2a0825f31
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Which editions of Windows support advanced audit policy configuration
diff --git a/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md b/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
index 4f91deefd6..fa3a798839 100644
--- a/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
+++ b/windows/security/threat-protection/block-untrusted-fonts-in-enterprise.md
@@ -5,7 +5,7 @@ ms.assetid: a3354c8e-4208-4be6-bc19-56a572c361b4
 ms.reviewer: 
 manager: dansimp
 keywords: font blocking, untrusted font blocking, block fonts, untrusted fonts
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.pagetype: security
 ms.sitesec: library
@@ -13,6 +13,7 @@ author: dansimp
 ms.author: dansimp
 ms.date: 08/14/2017
 ms.localizationpriority: medium
+ms.technology: mde
 ---
 
 # Block untrusted fonts in an enterprise
diff --git a/windows/security/threat-protection/change-history-for-threat-protection.md b/windows/security/threat-protection/change-history-for-threat-protection.md
index 53466cf41c..50746cadf8 100644
--- a/windows/security/threat-protection/change-history-for-threat-protection.md
+++ b/windows/security/threat-protection/change-history-for-threat-protection.md
@@ -1,9 +1,9 @@
 ---
-title: Change history for [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+title: "Change history for [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)"
 ms.reviewer: 
 ms.author: dansimp
 description: This topic lists new and updated topics in the Defender for Endpoint content set.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.localizationpriority: medium
+ms.technology: mde
 ---
 
 # Change history for threat protection
diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
index 8913e9025c..1c2d45ad8e 100644
--- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
+++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
@@ -1,7 +1,7 @@
 ---
 title: How to control USB devices and other removable media using Intune (Windows 10)
 description: You can configure Intune settings to reduce threats from removable storage such as USB devices.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -11,6 +11,7 @@ author: dansimp
 ms.reviewer: dansimp
 manager: dansimp
 audience: ITPro
+ms.technology: mde
 ---
 
 # How to control USB devices and other removable media using Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/device-control/device-control-report.md b/windows/security/threat-protection/device-control/device-control-report.md
index 5cf0ce8621..2c35de2163 100644
--- a/windows/security/threat-protection/device-control/device-control-report.md
+++ b/windows/security/threat-protection/device-control/device-control-report.md
@@ -1,7 +1,7 @@
 ---
 title: Protect your organization’s data with device control
 description: Monitor your organization's data security through device control reports.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -11,6 +11,7 @@ author: alluthewriter
 ms.reviewer: dansimp
 manager: dansimp
 audience: ITPro
+ms.technology: mde
 ---
 # Protect your organization’s data with device control
 
diff --git a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
index fdec65680d..1c2019f4f1 100644
--- a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -1,7 +1,7 @@
 ---
 title: Enable virtualization-based protection of code integrity
 description: This article explains the steps to opt in to using HVCI on Windows devices.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: ellevin
@@ -12,6 +12,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/01/2019
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Enable virtualization-based protection of code integrity
diff --git a/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md b/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
index 9483ca4022..5b4942082c 100644
--- a/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
+++ b/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md
@@ -2,7 +2,7 @@
 title: Windows Defender Application Control and virtualization-based code integrity (Windows 10)
 description: Hardware and software system integrity-hardening capabilities that can be deployed separately or in combination with Windows Defender Application Control (WDAC).
 keywords: virtualization, security, malware, device guard
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 author: denisebmsft
@@ -10,6 +10,7 @@ ms.author: deniseb
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Windows Defender Application Control and virtualization-based protection of code integrity
diff --git a/windows/security/threat-protection/device-guard/memory-integrity.md b/windows/security/threat-protection/device-guard/memory-integrity.md
index 2d935942a3..d743f3eae6 100644
--- a/windows/security/threat-protection/device-guard/memory-integrity.md
+++ b/windows/security/threat-protection/device-guard/memory-integrity.md
@@ -3,7 +3,7 @@ title: Memory integrity
 keywords: mitigations, vulnerabilities, vulnerability, mitigation, exploit, exploits, emet
 description: Learn about memory integrity, a feature of Windows that ensures code running in the Windows kernel is securely designed and trustworthy.
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Memory integrity
diff --git a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
index 535e713ba2..47f912cc8d 100644
--- a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
@@ -2,7 +2,7 @@
 title: Deployment guidelines for Windows Defender Device Guard (Windows 10)
 description: Plan your deployment of Windows Defender Device Guard. Learn about hardware requirements, deployment approaches, code signing and code integrity policies.
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 author: dansimp
@@ -13,6 +13,7 @@ ms.topic: conceptual
 ms.date: 10/20/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Baseline protections and additional qualifications for virtualization-based protection of code integrity
diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 98392dd180..7be719b91a 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -1,7 +1,7 @@
 ---
 title: Federal Information Processing Standard (FIPS) 140 Validation
 description: Learn how Microsoft products and cryptographic modules follow the U.S. Federal government standard FIPS 140.
-ms.prod: w10
+ms.prod: m365-security
 audience: ITPro
 author: dansimp
 ms.author: dansimp
@@ -10,6 +10,7 @@ ms.collection: M365-identity-device-management
 ms.topic: article
 ms.localizationpriority: medium
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # FIPS 140-2 Validation
diff --git a/windows/security/threat-protection/get-support-for-security-baselines.md b/windows/security/threat-protection/get-support-for-security-baselines.md
index c8b8c76461..c6c0883e58 100644
--- a/windows/security/threat-protection/get-support-for-security-baselines.md
+++ b/windows/security/threat-protection/get-support-for-security-baselines.md
@@ -2,7 +2,7 @@
 title: Get support
 description: Frequently asked question about how to get support for Windows baselines, the Security Compliance Toolkit (SCT), and related topics in your organization.
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/25/2018
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Get Support
diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md
index 88ac6667fb..fc1d481a34 100644
--- a/windows/security/threat-protection/index.md
+++ b/windows/security/threat-protection/index.md
@@ -3,7 +3,7 @@ title: Threat Protection (Windows 10)
 description: Microsoft Defender for Endpoint is a unified platform for preventative protection, post-breach detection, automated investigation, and response.
 keywords: threat protection, Microsoft Defender Advanced Threat Protection, attack surface reduction, next-generation protection, endpoint detection and response, automated investigation and response, microsoft threat experts, Microsoft Secure Score for Devices, advanced hunting, cyber threat hunting, web threat protection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Threat Protection
diff --git a/windows/security/threat-protection/intelligence/coinminer-malware.md b/windows/security/threat-protection/intelligence/coinminer-malware.md
index 2584ee9200..aa36031971 100644
--- a/windows/security/threat-protection/intelligence/coinminer-malware.md
+++ b/windows/security/threat-protection/intelligence/coinminer-malware.md
@@ -3,7 +3,7 @@ title: Coin miners
 ms.reviewer: 
 description: Learn about coin miners, how they can infect devices, and what you can do to protect yourself.
 keywords: security, malware, coin miners, protection, cryptocurrencies
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Coin miners
 
diff --git a/windows/security/threat-protection/intelligence/coordinated-malware-eradication.md b/windows/security/threat-protection/intelligence/coordinated-malware-eradication.md
index 6a3a933a3f..47e4ffb819 100644
--- a/windows/security/threat-protection/intelligence/coordinated-malware-eradication.md
+++ b/windows/security/threat-protection/intelligence/coordinated-malware-eradication.md
@@ -3,7 +3,7 @@ title: Coordinated Malware Eradication
 ms.reviewer: 
 description: The Coordinated Malware Eradication program aims to unite security organizations to disrupt the malware ecosystem.
 keywords: security, malware, malware eradication, Microsoft Malware Protection Center, MMPC
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,8 +11,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 # Coordinated Malware Eradication
 
diff --git a/windows/security/threat-protection/intelligence/criteria.md b/windows/security/threat-protection/intelligence/criteria.md
index 77a3c4e33d..869519e673 100644
--- a/windows/security/threat-protection/intelligence/criteria.md
+++ b/windows/security/threat-protection/intelligence/criteria.md
@@ -3,7 +3,7 @@ title: How Microsoft identifies malware and potentially unwanted applications
 ms.reviewer: 
 description: Learn how Microsoft reviews software for privacy violations and other negative behavior, to determine if it's malware or a potentially unwanted application.
 keywords: security, malware, virus research threats, research malware, device protection, computer infection, virus infection, descriptions, remediation, latest threats, MMdevice, Microsoft Malware Protection Center, PUA, potentially unwanted applications
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # How Microsoft identifies malware and potentially unwanted applications
diff --git a/windows/security/threat-protection/intelligence/cybersecurity-industry-partners.md b/windows/security/threat-protection/intelligence/cybersecurity-industry-partners.md
index 3cb57c45ef..fec4892d00 100644
--- a/windows/security/threat-protection/intelligence/cybersecurity-industry-partners.md
+++ b/windows/security/threat-protection/intelligence/cybersecurity-industry-partners.md
@@ -3,7 +3,7 @@ title: Industry collaboration programs
 ms.reviewer: 
 description: Microsoft industry-wide antimalware collaboration programs - Virus Information Alliance (VIA), Microsoft Virus Initiative (MVI), and Coordinated Malware Eradication (CME)
 keywords: security, malware, antivirus industry, antimalware Industry, collaboration programs, alliances, Virus Information Alliance, Microsoft Virus Initiative, Coordinated Malware Eradication, WDSI, MMPC, Microsoft Malware Protection Center, partnerships
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,8 +11,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Industry collaboration programs
 
diff --git a/windows/security/threat-protection/intelligence/developer-faq.md b/windows/security/threat-protection/intelligence/developer-faq.md
index 06734edb7a..5f91ef4a1f 100644
--- a/windows/security/threat-protection/intelligence/developer-faq.md
+++ b/windows/security/threat-protection/intelligence/developer-faq.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: This page provides answers to common questions we receive from software developers
 keywords: wdsi, software, developer, faq, dispute, false-positive, classify, installer, software, bundler, blocking
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Software developer FAQ
diff --git a/windows/security/threat-protection/intelligence/developer-resources.md b/windows/security/threat-protection/intelligence/developer-resources.md
index b413cea906..9c99065431 100644
--- a/windows/security/threat-protection/intelligence/developer-resources.md
+++ b/windows/security/threat-protection/intelligence/developer-resources.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: This page provides information for developers such as detection criteria, developer questions, and how to check your software against Security intelligence.
 keywords: wdsi, software, developer, resources, detection, criteria, questions, scan, software, definitions, cloud, protection, security intelligence
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,8 +13,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Software developer resources
diff --git a/windows/security/threat-protection/intelligence/exploits-malware.md b/windows/security/threat-protection/intelligence/exploits-malware.md
index f7895be9f2..c7a418d55c 100644
--- a/windows/security/threat-protection/intelligence/exploits-malware.md
+++ b/windows/security/threat-protection/intelligence/exploits-malware.md
@@ -3,7 +3,7 @@ title: Exploits and exploit kits
 ms.reviewer: 
 description: Learn about how exploits use vulnerabilities in common software to give attackers access to your computer and install other malware.
 keywords: security, malware, exploits, exploit kits, prevention, vulnerabilities, Microsoft, Exploit malware family, exploits, java, flash, adobe, update software, prevent exploits, exploit pack, vulnerability, 0-day, holes, weaknesses, attack, Flash, Adobe, out-of-date software, out of date software, update, update software, reinfection, Java cache, reinfected,  won't remove, won't clean, still detects, full scan, MSE, Defender, WDSI, MMPC, Microsoft Malware Protection Center
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Exploits and exploit kits
 
diff --git a/windows/security/threat-protection/intelligence/fileless-threats.md b/windows/security/threat-protection/intelligence/fileless-threats.md
index 9be24dcbe2..a120169e13 100644
--- a/windows/security/threat-protection/intelligence/fileless-threats.md
+++ b/windows/security/threat-protection/intelligence/fileless-threats.md
@@ -1,9 +1,9 @@
 ---
 title: Fileless threats
 ms.reviewer: 
-description: Learn about the categories of fileless threats and malware that "live off the land"
+description: Learn about the categories of fileless threats and malware that live off the land
 keywords: fileless, fileless malware, living off the land, lolbins, amsi, behavior monitoring, memory scanning, boot sector protection, security, malware, Windows Defender ATP, antivirus, AV, Microsoft Defender ATP, next-generation protection
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Fileless threats
diff --git a/windows/security/threat-protection/intelligence/index.md b/windows/security/threat-protection/intelligence/index.md
index 1814307aac..819ce7f08a 100644
--- a/windows/security/threat-protection/intelligence/index.md
+++ b/windows/security/threat-protection/intelligence/index.md
@@ -2,7 +2,7 @@
 title: Security intelligence
 description: Learn about different types of malware, safety tips on how you can protect your organization, and resources for industry collaboration programs.
 keywords: security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -10,8 +10,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Security intelligence
 
diff --git a/windows/security/threat-protection/intelligence/macro-malware.md b/windows/security/threat-protection/intelligence/macro-malware.md
index 45dd414624..6faec90f87 100644
--- a/windows/security/threat-protection/intelligence/macro-malware.md
+++ b/windows/security/threat-protection/intelligence/macro-malware.md
@@ -3,7 +3,7 @@ title: Macro malware
 ms.reviewer: 
 description: Learn about macro viruses and malware, which are embedded in documents and are used to drop malicious payloads and distribute other threats.
 keywords: security, malware, macro, protection, WDSI, MMPC, Microsoft Malware Protection Center, macro virus, macro malware, documents, viruses in Office, viruses in Word
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Macro malware
 
diff --git a/windows/security/threat-protection/intelligence/malware-naming.md b/windows/security/threat-protection/intelligence/malware-naming.md
index d920870809..abd3753a03 100644
--- a/windows/security/threat-protection/intelligence/malware-naming.md
+++ b/windows/security/threat-protection/intelligence/malware-naming.md
@@ -3,7 +3,7 @@ title: Malware names
 ms.reviewer: 
 description: Understand the malware naming convention used by Microsoft Defender Antivirus and other Microsoft antimalware.
 keywords: security, malware, names, Microsoft, MMPC, Microsoft Malware Protection Center, WDSI, malware name, malware prefix, malware type, virus name
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Malware names
 
diff --git a/windows/security/threat-protection/intelligence/phishing-trends.md b/windows/security/threat-protection/intelligence/phishing-trends.md
index dcb01fd998..d8cd025a74 100644
--- a/windows/security/threat-protection/intelligence/phishing-trends.md
+++ b/windows/security/threat-protection/intelligence/phishing-trends.md
@@ -3,7 +3,7 @@ title: Phishing trends and techniques
 ms.reviewer: 
 description: Learn about how to spot phishing techniques
 keywords: security, malware, phishing, information, scam, social engineering, bait, lure, protection, trends, targeted attack, spear phishing, whaling
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Phishing trends and techniques
diff --git a/windows/security/threat-protection/intelligence/phishing.md b/windows/security/threat-protection/intelligence/phishing.md
index f2cd0a919e..20bf7cc3fd 100644
--- a/windows/security/threat-protection/intelligence/phishing.md
+++ b/windows/security/threat-protection/intelligence/phishing.md
@@ -3,7 +3,7 @@ title: How to protect against phishing attacks
 ms.reviewer: 
 description: Learn about how phishing work, deliver malware do your devices, and  what you can do to protect yourself
 keywords: security, malware, phishing, information, scam, social engineering, bait, lure, protection, trends, targeted attack
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # How to protect against phishing attacks
diff --git a/windows/security/threat-protection/intelligence/portal-submission-troubleshooting.md b/windows/security/threat-protection/intelligence/portal-submission-troubleshooting.md
index bd1b4f57e7..e84f8e37a8 100644
--- a/windows/security/threat-protection/intelligence/portal-submission-troubleshooting.md
+++ b/windows/security/threat-protection/intelligence/portal-submission-troubleshooting.md
@@ -3,7 +3,7 @@ title: Troubleshoot MSI portal errors caused by admin block
 description: Troubleshoot MSI portal errors
 ms.reviewer: 
 keywords: security, sample submission help, malware file, virus file, trojan file, submit, send to Microsoft, submit a sample, virus, trojan, worm, undetected, doesn’t detect, email microsoft, email malware, I think this is malware, I think it's a virus, where can I send a virus, is this a virus, MSE, doesn’t detect, no signature, no detection, suspect file, MMPC, Microsoft Malware Protection Center, researchers, analyst, WDSI, security intelligence
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: dansimp
 author: dansimp
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Troubleshooting malware submission errors caused by administrator block
diff --git a/windows/security/threat-protection/intelligence/prevent-malware-infection.md b/windows/security/threat-protection/intelligence/prevent-malware-infection.md
index 026d1653b0..45f1877661 100644
--- a/windows/security/threat-protection/intelligence/prevent-malware-infection.md
+++ b/windows/security/threat-protection/intelligence/prevent-malware-infection.md
@@ -3,7 +3,7 @@ title: Prevent malware infection
 ms.reviewer: 
 description: Learn steps you can take to help prevent a malware or potentially unwanted software from infecting your computer.
 keywords: security, malware, prevention, infection, tips, Microsoft, MMPC, Microsoft Malware Protection Center, virus, trojan, worm, stop, prevent, full scan, infection, avoid malware, avoid trojan, avoid virus, infection, how, detection, security software, antivirus, updates, how malware works, how virus works, firewall, turn on, user privileges, limit, prevention, WDSI, MMPC, Microsoft Malware Protection Center
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Prevent malware infection
 
diff --git a/windows/security/threat-protection/intelligence/ransomware-malware.md b/windows/security/threat-protection/intelligence/ransomware-malware.md
index 2936cf36c4..851d1f8c50 100644
--- a/windows/security/threat-protection/intelligence/ransomware-malware.md
+++ b/windows/security/threat-protection/intelligence/ransomware-malware.md
@@ -3,7 +3,7 @@ title: Ransomware
 ms.reviewer: 
 description: Learn how to protect your computer and network from ransomware attacks, which can stop you from accessing your files.
 keywords: security, malware, ransomware, encryption, extortion, money, key, infection, prevention, tips, WDSI, MMPC, Microsoft Malware Protection Center, ransomware-as-a-service, ransom, ransomware downloader, protection, prevention, solution, exploit kits, backup, Cerber, Locky, WannaCry, WannaCrypt, Petya, Spora
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Ransomware
 
diff --git a/windows/security/threat-protection/intelligence/rootkits-malware.md b/windows/security/threat-protection/intelligence/rootkits-malware.md
index f5ea7e21b2..ab4fa996bd 100644
--- a/windows/security/threat-protection/intelligence/rootkits-malware.md
+++ b/windows/security/threat-protection/intelligence/rootkits-malware.md
@@ -3,7 +3,7 @@ title: Rootkits
 ms.reviewer: 
 description: Rootkits may be used by malware authors to hide malicious code on your computer and make malware or potentially unwanted software harder to remove.
 keywords: security, malware, rootkit, hide, protection, hiding, WDSI, MMPC, Microsoft Malware Protection Center, rootkits, Sirefef, Rustock, Sinowal, Cutwail, malware, virus
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Rootkits
 
diff --git a/windows/security/threat-protection/intelligence/safety-scanner-download.md b/windows/security/threat-protection/intelligence/safety-scanner-download.md
index 96e45bc39b..a9c1588361 100644
--- a/windows/security/threat-protection/intelligence/safety-scanner-download.md
+++ b/windows/security/threat-protection/intelligence/safety-scanner-download.md
@@ -3,7 +3,7 @@ title: Microsoft Safety Scanner Download
 ms.reviewer: 
 description: Get the Microsoft Safety Scanner tool to find and remove malware from Windows computers.
 keywords: security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Microsoft Safety Scanner
 
diff --git a/windows/security/threat-protection/intelligence/submission-guide.md b/windows/security/threat-protection/intelligence/submission-guide.md
index 7e771ce477..87667989e4 100644
--- a/windows/security/threat-protection/intelligence/submission-guide.md
+++ b/windows/security/threat-protection/intelligence/submission-guide.md
@@ -3,7 +3,7 @@ title: Submit files for analysis by Microsoft
 description: Learn how to submit files to Microsoft for malware analysis, how to track your submissions, and dispute detections.
 ms.reviewer: 
 keywords: security, sample submission help, malware file, virus file, trojan file, submit, send to Microsoft, submit a sample, virus, trojan, worm, undetected, doesn’t detect, email microsoft, email malware, I think this is malware, I think it's a virus, where can I send a virus, is this a virus, MSE, doesn’t detect, no signature, no detection, suspect file, MMPC, Microsoft Malware Protection Center, researchers, analyst, WDSI, security intelligence
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Submit files for analysis
diff --git a/windows/security/threat-protection/intelligence/supply-chain-malware.md b/windows/security/threat-protection/intelligence/supply-chain-malware.md
index 7530ec2c2e..fff7e3b7b3 100644
--- a/windows/security/threat-protection/intelligence/supply-chain-malware.md
+++ b/windows/security/threat-protection/intelligence/supply-chain-malware.md
@@ -3,7 +3,7 @@ title: Supply chain attacks
 ms.reviewer: 
 description: Learn about how supply chain attacks work, deliver malware do your devices, and  what you can do to protect yourself
 keywords: security, malware, protection, supply chain, hide, distribute, trust, compromised
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Supply chain attacks
diff --git a/windows/security/threat-protection/intelligence/support-scams.md b/windows/security/threat-protection/intelligence/support-scams.md
index 5ecbd9a101..0cfb94aa8f 100644
--- a/windows/security/threat-protection/intelligence/support-scams.md
+++ b/windows/security/threat-protection/intelligence/support-scams.md
@@ -3,7 +3,7 @@ title: Tech Support Scams
 ms.reviewer: 
 description: Microsoft security software can protect you from tech support scams that claims to scan for malware or viruses and then shows you fake detections and warnings.
 keywords: security, malware, tech support, scam, protection, trick, spoof, fake, error messages, report, rogue security software, fake, antivirus, fake software, rogue, threats, fee, removal fee, upgrade, pay for removal, install full version, trial, lots of threats, scanner, scan, clean, computer, security, program, XP home security, fake microsoft, activate, activate scan, activate antivirus, warnings, pop-ups, security warnings, security pop-ups tech support scams, fake Microsoft error notification, fake virus alert, fake product expiration, fake Windows activation, scam web pages, scam phone numbers, telephone numbers, MMPC, WDSI, Microsoft Malware Protection Center, tech support scam numbers
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Tech support scams
 
diff --git a/windows/security/threat-protection/intelligence/trojans-malware.md b/windows/security/threat-protection/intelligence/trojans-malware.md
index 2ed753b049..31228195f8 100644
--- a/windows/security/threat-protection/intelligence/trojans-malware.md
+++ b/windows/security/threat-protection/intelligence/trojans-malware.md
@@ -3,7 +3,7 @@ title: Trojan malware
 ms.reviewer: 
 description: Trojans are a type of threat that can infect your device. This page tells you what they are and how to remove them.
 keywords: security, malware, protection, trojan, download, file, infection, trojans, virus, protection, cleanup, removal, antimalware, antivirus, WDSI, MMPC, Microsoft Malware Protection Center, malware types
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Trojans
diff --git a/windows/security/threat-protection/intelligence/understanding-malware.md b/windows/security/threat-protection/intelligence/understanding-malware.md
index 87e0080d20..d7d82578fa 100644
--- a/windows/security/threat-protection/intelligence/understanding-malware.md
+++ b/windows/security/threat-protection/intelligence/understanding-malware.md
@@ -3,7 +3,7 @@ title: Understanding malware & other threats
 ms.reviewer: 
 description: Learn about the most prevalent viruses, malware, and other threats. Understand how they infect systems, how they behave, and how to prevent and remove them.
 keywords: security, malware, virus, malware, threat, analysis, research, encyclopedia, dictionary, glossary, ransomware, support scams, unwanted software, computer infection, virus infection, descriptions, remediation, latest threats, mmpc, microsoft malware protection center, wdsi
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 search.appverid: met150
+ms.technology: mde
 ---
 # Understanding malware & other threats
 
diff --git a/windows/security/threat-protection/intelligence/unwanted-software.md b/windows/security/threat-protection/intelligence/unwanted-software.md
index ab2471f894..31dc9dc196 100644
--- a/windows/security/threat-protection/intelligence/unwanted-software.md
+++ b/windows/security/threat-protection/intelligence/unwanted-software.md
@@ -3,7 +3,7 @@ title: Unwanted software
 ms.reviewer: 
 description: Learn about how unwanted software changes your default settings without your consent and what you can do to protect yourself.
 keywords: security, malware, protection, unwanted, software, alter, infect, unwanted software, software bundlers, browser modifiers, privacy, security, computing experience, prevent infection, solution, WDSI, MMPC, Microsoft Malware Protection Center, virus research threats, research malware, pc protection, computer infection, virus infection, descriptions, remediation, latest threats
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 # Unwanted software
 
diff --git a/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md b/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
index fa58868aa8..a70ae6fe7e 100644
--- a/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
+++ b/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
@@ -3,7 +3,7 @@ title: Virus Information Alliance
 ms.reviewer: 
 description: The Microsoft Virus Information Alliance (VIA) is a collaborative antimalware program for organizations fighting cybercrime.
 keywords: security, malware, Microsoft, MMPC, Microsoft Malware Protection Center, partners, sharing, samples, vendor exchange, CSS, alliance, WDSI
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,8 +11,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 # Virus Information Alliance
 
diff --git a/windows/security/threat-protection/intelligence/virus-initiative-criteria.md b/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
index 5f8f3c8139..8512c8d267 100644
--- a/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
+++ b/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
@@ -3,7 +3,7 @@ title: Microsoft Virus Initiative
 ms.reviewer: 
 description: The Microsoft Virus Initiative (MVI) helps organizations that make antivirus or antimalware products integrate with Windows and share telemetry with Microsoft.
 keywords: security, malware, MVI, Microsoft Malware Protection Center, MMPC, alliances, WDSI
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,8 +11,9 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Virus Initiative
diff --git a/windows/security/threat-protection/intelligence/worms-malware.md b/windows/security/threat-protection/intelligence/worms-malware.md
index ca62c08fd9..99c3fafa1a 100644
--- a/windows/security/threat-protection/intelligence/worms-malware.md
+++ b/windows/security/threat-protection/intelligence/worms-malware.md
@@ -3,7 +3,7 @@ title: Worms
 ms.reviewer: 
 description: Learn about how worms replicate and spread to other computers or networks. Read about the most popular worms and steps you can take to stop them.
 keywords: security, malware, protection, worm, vulnerabilities, infect, steal, Jenxcus, Gamarue, Bondat, WannaCrypt, WDSI, MMPC, Microsoft Malware Protection Center, worms, malware types, threat propagation, mass-mailing, IP scanning
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -11,9 +11,10 @@ ms.author: ellevin
 author: levinec
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
 search.appverid: met150
+ms.technology: mde
 ---
 
 # Worms
diff --git a/windows/security/threat-protection/mbsa-removal-and-guidance.md b/windows/security/threat-protection/mbsa-removal-and-guidance.md
index 24bcf88c2d..09dc088c59 100644
--- a/windows/security/threat-protection/mbsa-removal-and-guidance.md
+++ b/windows/security/threat-protection/mbsa-removal-and-guidance.md
@@ -2,13 +2,14 @@
 title: Guide to removing Microsoft Baseline Security Analyzer (MBSA)
 description: This article documents the removal of Microsoft Baseline Security Analyzer (MBSA) and provides alternative solutions.
 keywords: MBSA, security, removal
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
 author: dansimp
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
  
 # What is Microsoft Baseline Security Analyzer and its uses?
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
index 273298bf6c..099dbc450f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
@@ -1,9 +1,9 @@
 ---
-title: What to do with false positives/negatives in Microsoft Defender Antivirus 
+title: What to do with false positives/negatives in Microsoft Defender Antivirus
 description: Did Microsoft Defender Antivirus miss or wrongly detect something? Find out what you can do.
 keywords: Microsoft Defender Antivirus, false positives, false negatives, exclusions
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.reviewer: shwetaj
 manager: dansimp
 audience: ITPro
 ms.topic: article
+ms.technology: mde
 ---
 
 # What to do with false positives/negatives in Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data-update-compliance.md b/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data-update-compliance.md
index 586598290d..53cc0585bb 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data-update-compliance.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data-update-compliance.md
@@ -3,7 +3,7 @@ title: Collect diagnostic data for Update Compliance and Windows Defender Micros
 description: Use a tool to collect data to troubleshoot Update Compliance issues when using the Microsoft Defender Antivirus Assessment add in
 keywords: troubleshoot, error, fix, update compliance, oms, monitor, report, Microsoft Defender AV
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Collect Update Compliance diagnostic data for Microsoft Defender AV Assessment
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data.md b/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data.md
index b98d9268b6..db2a7a7f8e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/collect-diagnostic-data.md
@@ -3,7 +3,7 @@ title: Collect diagnostic data of Microsoft Defender Antivirus
 description: Use a tool to collect data to troubleshoot Microsoft Defender Antivirus
 keywords: troubleshoot, error, fix, update compliance, oms, monitor, report, Microsoft Defender av, group policy object, setting, diagnostic data
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 06/29/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Collect Microsoft Defender AV diagnostic data
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus.md
index f6c285389b..04a84573cc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus.md
@@ -3,16 +3,17 @@ title: Use the command line to manage Microsoft Defender Antivirus
 description: Run Microsoft Defender Antivirus scans and configure next-generation protection with a dedicated command-line utility.
 keywords: run windows defender scan, run antivirus scan from command line, run windows defender scan from command line, mpcmdrun, defender
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.reviewer: ksarens 
+ms.reviewer: ksarens
 manager: dansimp
 ms.date: 08/17/2020
+ms.technology: mde
 ---
 
 # Configure and manage Microsoft Defender Antivirus with the mpcmdrun.exe command-line tool
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
index c4401ca56a..3108c5ea6b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Common mistakes to avoid when defining exclusions
 description: Avoid common mistakes when defining exclusions for Microsoft Defender Antivirus scans.
 keywords: exclusions, files, extension, file type, folder name, file name, scans
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Common mistakes to avoid when defining exclusions
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configuration-management-reference-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configuration-management-reference-microsoft-defender-antivirus.md
index 756111f940..060cddd476 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configuration-management-reference-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configuration-management-reference-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Manage Windows Defender in your business
 description: Learn how to use Group Policy, Configuration Manager, PowerShell, WMI, Intune, and the command line to manage Microsoft Defender AV
 keywords: group policy, gpo, config manager, sccm, scep, powershell, wmi, intune, defender, antivirus, antimalware, security, protection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 12/16/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage Microsoft Defender Antivirus in your business
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
index 6d63b6ef5a..7782d63b95 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md
@@ -4,7 +4,7 @@ description: You can configure Microsoft Defender AV to scan email storage files
 keywords: advanced scans, scanning, email, archive, zip, rar, archive, reparse scanning
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender Antivirus scanning options
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
index c3ec759d81..801001d7ef 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Enable block at first sight to detect malware in seconds
 description: Turn on the block at first sight feature to detect and block malware within seconds.
 keywords: scan, BAFS, malware, first seen, first sight, cloud, defender
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: high
@@ -13,6 +13,7 @@ ms.reviewer:
 manager: dansimp
 ms.custom: nextgen
 ms.date: 10/22/2020
+ms.technology: mde
 ---
 
 # Turn on block at first sight
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
index 2555377694..fc9ab62d48 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-cloud-block-timeout-period-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure the Microsoft Defender AV cloud block timeout period
 description: You can configure how long Microsoft Defender Antivirus will block a file from running while waiting for a cloud determination.
 keywords: Microsoft Defender Antivirus, antimalware, security, defender, cloud, timeout, block, period, seconds
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure the cloud block timeout period
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-end-user-interaction-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-end-user-interaction-microsoft-defender-antivirus.md
index 93e3d5c543..91d207c1bc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-end-user-interaction-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-end-user-interaction-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure how users can interact with Microsoft Defender AV
 description: Configure how end-users interact with Microsoft Defender AV, what notifications they see, and if they can override settings.
 keywords: endpoint, user, interaction, notifications, ui lockdown mode, headless mode, hide interface
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure end-user interaction with Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
index 55b286bcf0..beb6882a8b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Set up exclusions for Microsoft Defender AV scans
 description: You can exclude files (including files modified by specified processes) and folders from being scanned by Microsoft Defender AV. Validate your exclusions with PowerShell.
 keywords: 
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure and validate exclusions for Microsoft Defender Antivirus scans
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
index 2d5abc1960..49091cb89b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure and validate exclusions based on extension, name, or location
 description: Exclude files from Microsoft Defender Antivirus scans based on their file extension, file name, or location.
 keywords: exclusions, files, extension, file type, folder name, file name, scans
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure and validate exclusions based on file extension and folder location
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-local-policy-overrides-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-local-policy-overrides-microsoft-defender-antivirus.md
index e9c99642d5..4b69f181b0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-local-policy-overrides-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-local-policy-overrides-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure local overrides for Microsoft Defender AV settings
 description: Enable or disable users from locally changing settings in Microsoft Defender AV.
 keywords: local override, local policy, group policy, gpo, lockdown,merge, lists
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 02/13/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Prevent or allow users to locally modify Microsoft Defender Antivirus policy settings
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
index fd9d16d4b6..6185228b0b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
@@ -3,7 +3,7 @@ title: Configure Microsoft Defender Antivirus features
 description: You can configure Microsoft Defender Antivirus features with Intune, Microsoft Endpoint Configuration Manager, Group Policy, and PowerShell.
 keywords: Microsoft Defender Antivirus, antimalware, security, defender, configure, configuration, Config Manager, Microsoft Endpoint Configuration Manager, SCCM, Intune, MDM, mobile device management, GP, group policy, PowerShell
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 11/18/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender Antivirus features
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
index e4896f9709..f00a35da1f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure and validate Microsoft Defender Antivirus network connections
 description: Configure and test your connection to the Microsoft Defender Antivirus cloud protection service.
 keywords: antivirus, Microsoft Defender Antivirus, antimalware, security, defender, cloud, aggressiveness, protection level
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 12/28/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure and validate Microsoft Defender Antivirus network connections
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
index ac51c3d326..1660b6284e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-notifications-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure Microsoft Defender Antivirus notifications
 description: Learn how to configure and customize both standard and additional Microsoft Defender Antivirus notifications on endpoints.
 keywords: notifications, defender, antivirus, endpoint, management, admin
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure the notifications that appear on endpoints
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index bbb7a6b79c..52641f673b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure exclusions for files opened by specific processes
 description: You can exclude files from scans if they have been opened by a specific process.
 keywords: Microsoft Defender Antivirus, process, exclusion, files, scans
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure exclusions for files opened by processes
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus.md
index 5e47aa185b..12fa08755b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Enable and configure Microsoft Defender Antivirus protection features
 description: Enable behavior-based, heuristic, and real-time protection in Microsoft Defender AV.
 keywords: heuristic, machine-learning, behavior monitor, real-time protection, always-on, Microsoft Defender Antivirus, antimalware, security, defender
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure behavioral, heuristic, and real-time protection
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md
index 83078c2db2..63abc5021b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Enable and configure Microsoft Defender Antivirus protection capabilities
 description: Enable and configure Microsoft Defender Antivirus real-time protection features such as behavior monitoring, heuristics, and machine-learning
 keywords: antivirus, real-time protection, rtp, machine-learning, behavior monitoring, heuristics
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.date: 12/16/2019
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Enable and configure Microsoft Defender Antivirus always-on protection in Group Policy
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
index b080c70faa..95cd08db31 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Remediate and resolve infections detected by Microsoft Defender Antivirus
 description: Configure what Microsoft Defender Antivirus should do when it detects a threat, and how long quarantined files should be retained in the quarantine folder
 keywords: remediation, fix, remove, threats, quarantine, scan, restore
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure remediation for Microsoft Defender Antivirus scans
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
index 3ac64a1e57..75911ebb62 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md
@@ -5,7 +5,7 @@ manager: dansimp
 description: Windows Servers 2016 and 2019 include automatic exclusions, based on server role. You can also add custom exclusions.
 keywords: exclusions, server, auto-exclusions, automatic, custom, scans, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender Antivirus exclusions on Windows Server
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md
index 0651cae7a7..10b6622a43 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Run and customize scheduled and on-demand scans
 description: Customize and initiate Microsoft Defender Antivirus scans on endpoints across your network.
 keywords: scan, schedule, customize, exclusions, exclude files, remediation, scan results, quarantine, remove threat, quick scan, full scan, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Customize, initiate, and review the results of Microsoft Defender Antivirus scans and remediation
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-windows-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-windows-defender-antivirus.md
index 6b950c1ad9..a2a610032c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-windows-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-windows-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Run and customize scheduled and on-demand scans
 description: Customize and initiate Microsoft Defender Antivirus scans on endpoints across your network.
 keywords: scan, schedule, customize, exclusions, exclude files, remediation, scan results, quarantine, remove threat, quick scan, full scan, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Customize, initiate, and review the results of Microsoft Defender Antivirus scans & remediation
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
index a8268af781..01a88d64d7 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Deploy, manage, and report on Microsoft Defender Antivirus
 description: You can deploy and manage Microsoft Defender Antivirus with Intune, Microsoft Endpoint Configuration Manager, Group Policy, PowerShell, or WMI
 keywords: deploy, manage, update, protection, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Deploy, manage, and report on Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
index 56d70bda19..c27135a1f6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md
@@ -1,9 +1,9 @@
 ---
-title: Deploy and enable Microsoft Defender Antivirus 
+title: Deploy and enable Microsoft Defender Antivirus
 description: Deploy Microsoft Defender Antivirus for protection of your endpoints with Microsoft Intune, Microsoft Endpoint Configuration Manager, Group Policy, PowerShell cmdlets, or WMI.
 keywords: deploy, enable, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Deploy and enable Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 172fb7952f..3849774f8b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Microsoft Defender Antivirus Virtual Desktop Infrastructure deployment gu
 description: Learn how to deploy Microsoft Defender Antivirus in a virtual desktop environment for the best balance between protection and performance.
 keywords: vdi, hyper-v, vm, virtual machine, windows defender, antivirus, av, virtual desktop, rds, remote desktop
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 12/28/2020
 ms.reviewer: jesquive
 manager: dansimp
+ms.technology: mde
 ---
 
 # Deployment guide for Microsoft Defender Antivirus in a virtual desktop infrastructure (VDI) environment
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 8d04445395..dc721c7813 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Block potentially unwanted applications with Microsoft Defender Antivirus
 description: Enable the potentially unwanted application (PUA) antivirus feature to block unwanted software such as adware.
 keywords: pua, enable, unwanted software, unwanted apps, adware, browser toolbar, detect, block, Microsoft Defender Antivirus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: detect
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -14,6 +14,7 @@ audience: ITPro
 ms.date: 01/08/2021
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Detect and block potentially unwanted applications
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index 69956ae919..483ca94393 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Turn on cloud-delivered protection in Microsoft Defender Antivirus
 description: Turn on cloud-delivered protection to benefit from fast and advanced protection features.
 keywords: Microsoft Defender Antivirus, antimalware, security, cloud, block at first sight
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Turn on cloud-delivered protection
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/evaluate-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/evaluate-microsoft-defender-antivirus.md
index 0cba7e0b50..e56c78b8f3 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/evaluate-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/evaluate-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Evaluate Microsoft Defender Antivirus
 description: Businesses of all sizes can use this guide to evaluate and test the protection offered by Microsoft Defender Antivirus in Windows 10.
 keywords: Microsoft Defender Antivirus, cloud protection, cloud, antimalware, security, defender, evaluate, test, protection, compare, real-time protection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Evaluate Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus.md
index 1edd31f232..0e6a552e4c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Enable the limited periodic Microsoft Defender Antivirus scanning feature
 description: Limited periodic scanning lets you use Microsoft Defender Antivirus in addition to your other installed AV providers
 keywords: lps, limited, periodic, scan, scanning, compatibility, 3rd party, other av, disable
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
index 6cd83a72ce..8dc17adfac 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Apply Microsoft Defender Antivirus updates after certain events
 description: Manage how Microsoft Defender Antivirus applies security intelligence updates after startup or receiving cloud-delivered detection reports.
 keywords: updates, protection, force updates, events, startup, check for latest, notifications
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/17/2018
 ms.reviewer: pahuijbr
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage event-based forced updates
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
index 204266480c..668830b824 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Apply Microsoft Defender AV protection updates to out of date endpoints
 description: Define when and how updates should be applied for endpoints that have not updated in a while.
 keywords: updates, protection, out-of-date, outdated, old, catch-up
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage Microsoft Defender Antivirus updates and scans for endpoints that are out of date
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
index 1147a164e1..494811e6e8 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md
@@ -1,9 +1,9 @@
 ---
 title: Schedule Microsoft Defender Antivirus protection updates
-description: Schedule the day, time, and interval for when protection updates should be downloaded 
+description: Schedule the day, time, and interval for when protection updates should be downloaded
 keywords: updates, security baselines, schedule updates
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 search.appverid: met150
 ms.mktglfcycl: manage
 ms.sitesec: library
@@ -14,6 +14,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: pahuijbr
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage the schedule for when protection updates should be downloaded and applied
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index d45869f99e..acd96cc68b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Manage how and where Microsoft Defender Antivirus receives updates
 description: Manage the fallback order for how Microsoft Defender Antivirus receives protection updates.
 keywords: updates, security baselines, protection, fallback order, ADL, MMPC, UNC, file path, share, wsus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.reviewer: pahuijbr
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Manage the sources for Microsoft Defender Antivirus protection updates
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index b0d94c4785..a93bfb03a8 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Manage Microsoft Defender Antivirus updates and apply baselines
 description: Manage how Microsoft Defender Antivirus receives protection and product updates.
 keywords: updates, security baselines, protection, schedule updates, force updates, mobile updates, wsus
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.reviewer: pahuijbr
 manager: dansimp
 ms.date: 01/07/2021
+ms.technology: mde
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
index e2fb5173d8..8f192cc64b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Define how mobile devices are updated by Microsoft Defender Antivirus
 description: Manage how mobile devices, such as laptops, should be updated with Microsoft Defender Antivirus protection updates.
 keywords: updates, protection, schedule updates, battery, mobile device, laptop, notebook, opt-in, microsoft update, wsus, override
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage updates for mobile devices and virtual machines (VMs)
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index d1fbec7602..3c946f7096 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -4,7 +4,7 @@ description: Get an overview of what to expect from Microsoft Defender Antivirus
 keywords: windows defender, next-generation, atp, advanced threat protection, compatibility, passive mode
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.reviewer: tewchen, pahuijbr, shwjha
 manager: dansimp
 ms.date: 01/11/2021
+ms.technology: mde
 ---
 
 # Microsoft Defender Antivirus compatibility
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index fb9db59528..63a22fd4f7 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -3,7 +3,7 @@ title: Next-generation protection in Windows 10, Windows Server 2016, and Window
 description: Learn how to manage, configure, and use Microsoft Defender Antivirus, built-in antimalware and antivirus protection.
 keywords: Microsoft Defender Antivirus, windows defender, antimalware, scep, system center endpoint protection, system center configuration manager, virus, malware, threat, detection, protection, security
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.date: 12/16/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Next-generation protection in Windows
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
index c16f2a4930..74cf899332 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md
@@ -4,7 +4,7 @@ description: Learn how to enable and configure Microsoft Defender Antivirus on W
 keywords: windows defender, server, scep, system center endpoint protection, server 2016, current branch, server 2012
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.date: 01/04/2021
 ms.reviewer: pahuijbr, shwjha
 manager: dansimp
+ms.technology: mde
 ---
 
 # Microsoft Defender Antivirus on Windows Server 2016 and Windows Server 2019
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
index fa33dd9526..b22545f7af 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-offline.md
@@ -3,7 +3,7 @@ title: Microsoft Defender Offline in Windows 10
 description: You can use Microsoft Defender Offline straight from the Windows Defender Antivirus app. You can also manage how it is deployed in your network.
 keywords: scan, defender, offline
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Run and review the results of a Microsoft Defender Offline scan
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-security-center-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-security-center-antivirus.md
index e4f4d4c952..427ebf59db 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-security-center-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-security-center-antivirus.md
@@ -3,7 +3,7 @@ title: Microsoft Defender Antivirus in the Windows Security app
 description: With Microsoft Defender AV now included in the Windows Security app, you can review, compare, and perform common tasks.
 keywords: wdav, antivirus, firewall, security, windows
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Microsoft Defender Antivirus in the Windows Security app
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
index 3ca4e0239b..7f35ddf666 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md
@@ -1,21 +1,22 @@
 ---
-title: "Better together - Microsoft Defender Antivirus and Office 365 (including OneDrive) - better protection from ransomware and cyberthreats"
-description: "Office 365, which includes OneDrive, goes together wonderfully with Microsoft Defender Antivirus. Read this article to learn more."
+title: Better together - Microsoft Defender Antivirus and Office 365 (including OneDrive) - better protection from ransomware and cyberthreats
+description: Office 365, which includes OneDrive, goes together wonderfully with Microsoft Defender Antivirus. Read this article to learn more.
 keywords: windows defender, antivirus, office 365, onedrive, restore, ransomware
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-audience: ITPro 
-ms.topic: article 
+audience: ITPro
+ms.topic: article
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 ms.date: 03/04/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Better together: Microsoft Defender Antivirus and Office 365
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index ad05cd6b37..4a620da214 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -6,7 +6,7 @@ description: Use tamper protection to prevent malicious apps from changing impor
 keywords: malware, defender, antivirus, tamper protection
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 ms.date: 01/07/2021
+ms.technology: mde
 ---
 
 # Protect security settings with tamper protection
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-end-user-interaction-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-end-user-interaction-microsoft-defender-antivirus.md
index bc77598593..93d033b274 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-end-user-interaction-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-end-user-interaction-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Hide the Microsoft Defender Antivirus interface
 description: You can hide virus and threat protection tile in the Windows Security app.
 keywords: ui lockdown, headless mode, hide app, hide settings, hide interface
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Prevent users from seeing or interacting with the Microsoft Defender Antivirus user interface
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
index 5219b4f3eb..f6c46b93b9 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Monitor and report on Microsoft Defender Antivirus protection
 description: Use Configuration Manager or security information and event management (SIEM) tools to consume reports, and monitor Microsoft Defender AV with PowerShell and WMI.
 keywords: siem, monitor, report, Microsoft Defender AV
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 12/07/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Report on Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/restore-quarantined-files-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/restore-quarantined-files-microsoft-defender-antivirus.md
index e2ce17b208..e3f5c1f0fe 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/restore-quarantined-files-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/restore-quarantined-files-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Restore quarantined files in Microsoft Defender AV
 description: You can restore files and folders that were quarantined by Microsoft Defender AV.
 keywords: 
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 05/20/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Restore quarantined files in Microsoft Defender AV
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/review-scan-results-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/review-scan-results-microsoft-defender-antivirus.md
index 44079dd62b..4168fb1d63 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/review-scan-results-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/review-scan-results-microsoft-defender-antivirus.md
@@ -1,9 +1,9 @@
 ---
-title: Review the results of Microsoft Defender AV scans 
+title: Review the results of Microsoft Defender AV scans
 description: Review the results of scans using Microsoft Endpoint Configuration Manager, Microsoft Intune, or the Windows Security app
 keywords: scan results, remediation, full scan, quick scan
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/28/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Review Microsoft Defender Antivirus scan results
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 3f93858b01..5a65b6a165 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Run and customize on-demand scans in Microsoft Defender AV
 description: Run and configure on-demand scans using PowerShell, Windows Management Instrumentation, or individually on endpoints with the Windows Security app
 keywords: scan, on-demand, dos, intune, instant scan
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure and run on-demand Microsoft Defender Antivirus scans
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus.md
index 153100cb9f..ce888c039c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Schedule regular quick and full scans with Microsoft Defender Antivirus
 description: Set up recurring (scheduled) scans, including when they should run and whether they run as full or quick scans
 keywords: quick scan, full scan, quick vs full, schedule scan, daily, weekly, time, scheduled, recurring, regular
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 11/02/2020
 ms.reviewer: pauhijbr
 manager: dansimp
+ms.technology: mde
 ---
 
 # Configure scheduled quick or full Microsoft Defender Antivirus scans
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
index 770bc4a2bb..1e4c37caba 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus.md
@@ -4,7 +4,7 @@ description: Set your level of cloud-delivered protection for Microsoft Defender
 keywords: Microsoft Defender Antivirus, antimalware, security, defender, cloud, aggressiveness, protection level
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -14,6 +14,7 @@ ms.date: 10/26/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Specify the cloud-delivered protection level
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
index 6c91515428..d0c2933ef9 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
@@ -3,7 +3,7 @@ title: Troubleshoot Microsoft Defender Antivirus while migrating from a third-pa
 description: Troubleshoot common errors when migrating to Microsoft Defender Antivirus
 keywords: event, error code, logging, troubleshooting, microsoft defender antivirus, windows defender antivirus, migration
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 09/11/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Troubleshoot Microsoft Defender Antivirus while migrating from a third-party solution
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus.md
index ba1346ed98..b65212267f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Microsoft Defender AV event IDs and error codes
 description: Look up the causes and solutions for Microsoft Defender Antivirus event IDs and errors
 keywords: event, error code, siem, logging, troubleshooting, wef, windows event forwarding
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 09/11/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Review event logs and error codes to troubleshoot issues with Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-reporting.md b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-reporting.md
index 4693016f63..0b3b787b77 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-reporting.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-reporting.md
@@ -3,7 +3,7 @@ title: Troubleshoot problems with reporting tools for Microsoft Defender AV
 description: Identify and solve common problems when attempting to report in Microsoft Defender AV protection status in Update Compliance
 keywords: troubleshoot, error, fix, update compliance, oms, monitor, report, Microsoft Defender AV
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Troubleshoot Microsoft Defender Antivirus reporting in Update Compliance
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus.md
index 87f46b0cd9..b3383fd1a6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure Microsoft Defender Antivirus with Group Policy
 description: Learn how to use a Group Policy to configure and manage Microsoft Defender Antivirus on your endpoints in Microsoft Defender for Endpoint.
 keywords: group policy, GPO, configuration, settings
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.custom: nextgen
 ms.date: 10/01/2018
 ms.reviewer: ksarens
 manager: dansimp
+ms.technology: mde
 ---
 
 # Use Group Policy settings to configure and manage Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
index 40f6f950ca..75f4f1b7cc 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/use-intune-config-manager-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure Microsoft Defender Antivirus with Configuration Manager and Int
 description: Use Microsoft Endpoint Manager and Microsoft Intune to configure Microsoft Defender AV and Endpoint Protection
 keywords: scep, intune, endpoint protection, configuration
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 10/26/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Use Microsoft Endpoint Manager and Microsoft Intune to configure and manage Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md
index ae51436faa..078fbf7fab 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Use PowerShell cmdlets to configure and run Microsoft Defender AV
 description: In Windows 10, you can use PowerShell cmdlets to run scans, update Security intelligence, and change settings in Microsoft Defender Antivirus.
 keywords: scan, command line, mpcmdrun, defender
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 07/23/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Use PowerShell cmdlets to configure and manage Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md
index 51137f3e9e..92f746d03d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Configure Microsoft Defender Antivirus with WMI
 description: Learn how to configure and manage Microsoft Defender Antivirus by using WMI scripts to retrieve, modify, and update settings in Microsoft Defender for Endpoint.
 keywords: wmi, scripts, windows management instrumentation, configuration
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.custom: nextgen
 ms.date: 09/03/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Use Windows Management Instrumentation (WMI) to configure and manage Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
index f732c5f89d..5bc184057b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md
@@ -3,7 +3,7 @@ title: Use next-generation technologies in Microsoft Defender Antivirus through
 description: next-generation technologies in cloud-delivered protection provide an advanced level of fast, robust antivirus detection.
 keywords: Microsoft Defender Antivirus, next-generation technologies, next-generation av, machine learning, antimalware, security, defender, cloud, cloud-delivered protection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ ms.author: deniseb
 ms.reviewer: shwjha
 manager: dansimp
 ms.custom: nextgen
+ms.technology: mde
 ---
 
 # Use next-generation technologies in Microsoft Defender Antivirus through cloud-delivered protection
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md
index 56c8f7668f..bf55abf1c4 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md
@@ -1,19 +1,20 @@
 ---
-title: "Why you should use Microsoft Defender Antivirus together with Microsoft Defender for Endpoint"
-description: "For best results, use Microsoft Defender Antivirus together with your other Microsoft offerings."
+title: Why you should use Microsoft Defender Antivirus together with Microsoft Defender for Endpoint
+description: For best results, use Microsoft Defender Antivirus together with your other Microsoft offerings.
 keywords: windows defender, antivirus, third party av
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
-audience: ITPro 
-ms.topic: article 
+audience: ITPro
+ms.topic: article
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Better together: Microsoft Defender Antivirus and Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard.md
index aa6d77cbd0..bbab8b350a 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/configure-md-app-guard.md
@@ -1,7 +1,7 @@
 ---
 title: Configure the Group Policy settings for Microsoft Defender Application Guard (Windows 10)
 description: Learn about the available Group Policy settings for Microsoft Defender Application Guard.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 10/17/2017
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender Application Guard policy settings
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index ab42d2eb12..fb236e3d94 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -1,7 +1,7 @@
 ---
 title: FAQ - Microsoft Defender Application Guard (Windows 10)
 description: Learn about the commonly asked questions and answers for Microsoft Defender Application Guard.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 11/03/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Frequently asked questions - Microsoft Defender Application Guard 
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
index 2ead755621..919fc5c18b 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
@@ -1,7 +1,7 @@
 ---
 title: Enable hardware-based isolation for Microsoft Edge (Windows 10)
 description: Learn about the Microsoft Defender Application Guard modes (Standalone or Enterprise-managed), and how to install Application Guard in your enterprise.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 10/21/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Prepare to install Microsoft Defender Application Guard
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
index a84686a871..2731dfe662 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-browser-extension.md
@@ -1,7 +1,7 @@
 ---
 title: Microsoft Defender Application Guard Extension
 description: Learn about the Microsoft Defender Application Guard browser extension, which extends Application Guard's protection to more web browsers.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 06/12/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Microsoft Defender Application Guard Extension
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 98150e0f15..9f31a06bdd 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -1,7 +1,7 @@
 ---
 title: Microsoft Defender Application Guard (Windows 10)
 description: Learn about Microsoft Defender Application Guard and how it helps to combat malicious content and malware out on the Internet.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 12/17/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Microsoft Defender Application Guard overview
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
index 81623005a4..4444817c21 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
@@ -1,7 +1,7 @@
 ---
 title: System requirements for Microsoft Defender Application Guard (Windows 10)
 description: Learn about the system requirements for installing and running Microsoft Defender Application Guard.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 02/11/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # System requirements for Microsoft Defender Application Guard
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/test-scenarios-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/test-scenarios-md-app-guard.md
index 6ffce8a986..0c7e53c3fb 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/test-scenarios-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/test-scenarios-md-app-guard.md
@@ -1,7 +1,7 @@
 ---
 title: Testing scenarios with Microsoft Defender Application Guard (Windows 10)
 description: Suggested testing scenarios for Microsoft Defender Application Guard, showing how it works in both Standalone and Enterprise-managed mode.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.reviewer:
 manager: dansimp
 ms.date: 09/14/2020
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Application Guard testing scenarios
diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index 72cf708d67..e63643ed0a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -1,21 +1,22 @@
 ---
-title: "Onboard Windows 10 multi-session devices in Windows Virtual Desktop"
-description: "Read more in this article about Onboarding Windows 10 multi-session devices in Windows Virtual Desktop"
+title: Onboard Windows 10 multi-session devices in Windows Virtual Desktop
+description: Read more in this article about Onboarding Windows 10 multi-session devices in Windows Virtual Desktop
 keywords: Windows Virtual Desktop, WVD, microsoft defender, endpoint, onboard
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
-audience: ITPro 
-ms.topic: article 
+audience: ITPro
+ms.topic: article
 author: dansimp
 ms.author: dansimp
 ms.custom: nextgen
 ms.date: 09/10/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Onboard Windows 10 multi-session devices in Windows Virtual Desktop 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/access-mssp-portal.md b/windows/security/threat-protection/microsoft-defender-atp/access-mssp-portal.md
index ccf8b5f19e..c2ef3ab727 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/access-mssp-portal.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/access-mssp-portal.md
@@ -4,7 +4,7 @@ description: Access the Microsoft Defender Security Center MSSP customer portal
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Access the Microsoft Defender Security Center MSSP customer portal
diff --git a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
index 2cb1370de1..c9987f3a99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
@@ -3,7 +3,7 @@ title: Add or Remove Machine Tags API
 description: Learn how to use the Add or Remove machine tags API to adds or remove a tag for a machine in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, tags, machine tags
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Add or Remove Machine Tags API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
index 50b285cef4..20f0d4f434 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md
@@ -4,7 +4,7 @@ description: Turn on advanced features such as block file in Microsoft Defender
 keywords: advanced features, settings, block file, automated investigation, auto-resolve, skype, azure atp, office 365, azure information protection, intune
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure advanced features in Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-assignedipaddress-function.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-assignedipaddress-function.md
index 46e60648d1..276a068e26 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-assignedipaddress-function.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-assignedipaddress-function.md
@@ -1,10 +1,10 @@
 ---
 title: AssignedIPAddresses() function in advanced hunting for Microsoft Defender Advanced Threat Protection
-description: Learn how to use the AssignedIPAddresses() function to get the latest IP addresses assigned to a device 
+description: Learn how to use the AssignedIPAddresses() function to get the latest IP addresses assigned to a device
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, Windows Defender, Windows Defender ATP, Windows Defender Advanced Threat Protection, search, query, telemetry, schema reference, kusto, FileProfile, file profile, function, enrichment
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 09/20/2020
+ms.technology: mde
 ---
 
 # AssignedIPAddresses()
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-best-practices.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-best-practices.md
index bd47d4a12b..a7e13d3cdf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-best-practices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-best-practices.md
@@ -4,7 +4,7 @@ description: Learn how to construct fast, efficient, and error-free threat hunti
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, custom detections, schema, kusto, avoid timeout, command lines, process id
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: m365-security-compliance 
+ms.collection: m365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Advanced hunting query best practices
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicealertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicealertevents-table.md
index 51940745aa..3c5026b44c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicealertevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicealertevents-table.md
@@ -4,7 +4,7 @@ description: Learn about alert generation events in the DeviceAlertEvents table
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, DeviceAlertEvents, alert, severity, category
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 01/22/2020
+ms.technology: mde
 ---
 
 # DeviceAlertEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceevents-table.md
index 82be65bdc4..33c2baedda 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceevents-table.md
@@ -4,7 +4,7 @@ description: Learn about antivirus, firewall, and other event types in the misce
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, security events, antivirus, firewall, exploit guard, MiscEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefilecertificateinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefilecertificateinfo-table.md
index 20c0ceb254..f939a66576 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefilecertificateinfo-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefilecertificateinfo-table.md
@@ -4,7 +4,7 @@ description: Learn about file signing information in the DeviceFileCertificateIn
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, digital signature, certificate, file signing, DeviceFileCertificateInfo
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 01/14/2020
+ms.technology: mde
 ---
 
 # DeviceFileCertificateInfo
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefileevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefileevents-table.md
index 2a453a4169..f7a83b8132 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefileevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicefileevents-table.md
@@ -1,10 +1,10 @@
 ---
-title: DeviceFileEvents table in the advanced hunting schema 
+title: DeviceFileEvents table in the advanced hunting schema
 description: Learn about file-related events in the DeviceFileEvents table of the advanced hunting schema
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, devicefileevents, files, path, hash, sha1, sha256, md5, FileCreationEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceFileEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceimageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceimageloadevents-table.md
index a00c2ef094..5d5663f9e9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceimageloadevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceimageloadevents-table.md
@@ -4,7 +4,7 @@ description: Learn about DLL loading events in the DeviceImageLoadEvents table o
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, deviceimageloadevents, DLL loading, library, file image, ImageLoadEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceImageLoadEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceinfo-table.md
index 8c806a1b38..47e3f44b7e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceinfo-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceinfo-table.md
@@ -1,10 +1,10 @@
 ---
 title: DeviceInfo table in the advanced hunting schema
 description: Learn about OS, computer name, and other device information in the DeviceInfo table of the advanced hunting schema
-keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, deviceinfo, device, OS, platform, users, DeviceInfo 
+keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, deviceinfo, device, OS, platform, users, DeviceInfo
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceInfo
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicelogonevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicelogonevents-table.md
index c04883052f..e9062bbd6b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicelogonevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicelogonevents-table.md
@@ -4,7 +4,7 @@ description: Learn about authentication or sign-in events in the DeviceLogonEven
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, devicelogonevents, authentication, logon, sign in, LogonEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceLogonEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkevents-table.md
index 467888a9d3..5bbce755a3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkevents-table.md
@@ -4,7 +4,7 @@ description: Learn about network connection events you can query from the Device
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, devicenetworkevents, network connection, remote ip, local ip, NetworkCommunicationEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceNetworkEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkinfo-table.md
index 48ae9ead1e..2b9b626fb5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkinfo-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicenetworkinfo-table.md
@@ -4,7 +4,7 @@ description: Learn about network configuration information in the DeviceNetworkI
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, description, devicenetworkinfo, device, device, mac, ip, adapter, dns, dhcp, gateway, tunnel, DeviceNetworkInfo
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceNetworkInfo
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceprocessevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceprocessevents-table.md
index 921304b30c..cf942a6f36 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceprocessevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceprocessevents-table.md
@@ -4,7 +4,7 @@ description: Learn about the process spawning or creation events in the DevicePr
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, deviceprocessevents, process id, command line, ProcessCreationEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceProcessEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceregistryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceregistryevents-table.md
index ec6f722e98..eeb92421d0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceregistryevents-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-deviceregistryevents-table.md
@@ -4,7 +4,7 @@ description: Learn about registry events you can query from the DeviceRegistryEv
 keywords: advanced hunting, threat hunting, cyber threat hunting, search, query, telemetry, schema reference, kusto, table, column, data type, deviceregistryevents, registry, key, subkey, value, RegistryEvents
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceRegistryEvents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessment-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessment-table.md
index bf6dc4404d..6dab26214e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessment-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessment-table.md
@@ -1,10 +1,10 @@
 ---
 title: DeviceTvmSecureConfigurationAssessment table in the advanced hunting schema
-description: Learn about Threat & Vulnerability Management security assessment events in the DeviceTvmSecureConfigurationAssessment table of the Advanced hunting schema. These events provide device information as well as security configuration details, impact, and compliance information. 
-keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, security configuration, DeviceTvmSecureConfigurationAssessment  
+description: Learn about Threat & Vulnerability Management security assessment events in the DeviceTvmSecureConfigurationAssessment table of the Advanced hunting schema. These events provide device information as well as security configuration details, impact, and compliance information.
+keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, security configuration, DeviceTvmSecureConfigurationAssessment
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceTvmSecureConfigurationAssessment 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table.md
index 317e6e26c6..26521cd2fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table.md
@@ -1,10 +1,10 @@
 ---
 title: DeviceTvmSecureConfigurationAssessmentKB table in the advanced hunting schema
-description: Learn about the various secure configurations assessed by Threat & Vulnerability Management in the DeviceTvmSecureConfigurationAssessmentKB table of the Advanced hunting schema. 
+description: Learn about the various secure configurations assessed by Threat & Vulnerability Management in the DeviceTvmSecureConfigurationAssessmentKB table of the Advanced hunting schema.
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, security configuration, MITRE ATT&CK framework, knowledge base, KB, DeviceTvmSecureConfigurationAssessmentKB
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceTvmSecureConfigurationAssessmentKB
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwareinventoryvulnerabilities-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwareinventoryvulnerabilities-table.md
index d61956dee5..849feba90c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwareinventoryvulnerabilities-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwareinventoryvulnerabilities-table.md
@@ -4,7 +4,7 @@ description: Learn about the inventory of software in your devices and their vul
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, software, inventory, vulnerabilities, CVE ID, OS DeviceTvmSoftwareInventoryVulnerabilities
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceTvmSoftwareInventoryVulnerabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table.md
index 0779d7d929..dd82717d64 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table.md
@@ -1,10 +1,10 @@
 ---
 title: DeviceTvmSoftwareVulnerabilitiesKB  table in the advanced hunting schema
-description: Learn about the software vulnerabilities tracked by Threat & Vulnerability Management in the DeviceTvmSoftwareVulnerabilitiesKB table of the advanced hunting schema. 
-keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, software, inventory, vulnerabilities, CVE ID, CVSS, DeviceTvmSoftwareVulnerabilitiesKB 
+description: Learn about the software vulnerabilities tracked by Threat & Vulnerability Management in the DeviceTvmSoftwareVulnerabilitiesKB table of the advanced hunting schema.
+keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, column, data type, description, threat & vulnerability management, TVM, device management, software, inventory, vulnerabilities, CVE ID, CVSS, DeviceTvmSoftwareVulnerabilitiesKB
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # DeviceTvmSoftwareVulnerabilitiesKB 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-errors.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-errors.md
index ab53ab3585..a3c2545b6b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-errors.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-errors.md
@@ -4,7 +4,7 @@ description: Understand errors displayed when using advanced hunting
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp, m365, search, query, telemetry, schema, kusto, timeout, resources, errors, unknown error
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Handle advanced hunting errors
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-extend-data.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-extend-data.md
index 60566f53f5..9fb4a8a8d4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-extend-data.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-extend-data.md
@@ -1,10 +1,10 @@
 ---
-title: Extend advanced hunting coverage with the right settings 
-description: Check auditing settings on Windows devices and other settings to help ensure that you get the most comprehensive data in advanced hunting  
-keywords: advanced hunting, incident, pivot, entity, audit settings, user account management, security group management, threat hunting, cyber threat hunting, search, query, telemetry, mdatp, Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, Windows Defender, Windows Defender ATP, Windows Defender Advanced Threat Protection 
+title: Extend advanced hunting coverage with the right settings
+description: Check auditing settings on Windows devices and other settings to help ensure that you get the most comprehensive data in advanced hunting
+keywords: advanced hunting, incident, pivot, entity, audit settings, user account management, security group management, threat hunting, cyber threat hunting, search, query, telemetry, mdatp, Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, Windows Defender, Windows Defender ATP, Windows Defender Advanced Threat Protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 10/10/2020
+ms.technology: mde
 ---
 
 # Extend advanced hunting coverage with the right settings
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-fileprofile-function.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-fileprofile-function.md
index 365f8ef6ba..66e5df0593 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-fileprofile-function.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-fileprofile-function.md
@@ -1,10 +1,10 @@
 ---
 title: FileProfile() function in advanced hunting for Microsoft Defender Advanced Threat Protection
-description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results 
+description: Learn how to use the FileProfile() to enrich information about files in your advanced hunting query results
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, Windows Defender, Windows Defender ATP, Windows Defender Advanced Threat Protection, search, query, telemetry, schema reference, kusto, FileProfile, file profile, function, enrichment
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 09/20/2020
+ms.technology: mde
 ---
 
 # FileProfile()
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-go-hunt.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-go-hunt.md
index 9b8aed20bc..c16f450428 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-go-hunt.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-go-hunt.md
@@ -1,22 +1,23 @@
 ---
-title: Get relevant info about an entity with go hunt 
-description: Learn how to use the "go hunt" tool to quickly query for relevant information about an entity or event using advanced hunting.
+title: Get relevant info about an entity with go hunt
+description: Learn how to use the go hunt tool to quickly query for relevant information about an entity or event using advanced hunting.
 keywords: advanced hunting, incident, pivot, entity, go hunt, relevant events, threat hunting, cyber threat hunting, search, query, telemetry, Microsoft Threat Protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-f1.keywords:
-- NOCSH
+f1.keywords: 
+  - NOCSH
 ms.author: v-maave
 author: martyav
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Quickly hunt for entity or event information with go hunt
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-limits.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-limits.md
index 0516afc2f2..373fc237b7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-limits.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-limits.md
@@ -4,7 +4,7 @@ description: Understand various service limits that keep the advanced hunting se
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp, search, query, telemetry, schema, kusto, CPU limit, query limit, resources, maximum results
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Advanced hunting service limits
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-overview.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-overview.md
index e42dbf4cf3..35fa634bff 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-overview.md
@@ -4,7 +4,7 @@ description: Use threat hunting capabilities in Microsoft Defender ATP to build
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp, search, query, telemetry, custom detections, schema, kusto, time zone, UTC
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Proactively hunt for threats with advanced hunting
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-language.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-language.md
index 76fd2bee7e..6bf8d2fa92 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-language.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-language.md
@@ -4,7 +4,7 @@ description: Create your first threat hunting query and learn about common opera
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, language, learn, first query, telemetry, events, telemetry, custom detections, schema, kusto, operators, data types
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Learn the advanced hunting query language
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-results.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-results.md
index 34db3e0745..08515a57eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-results.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-query-results.md
@@ -4,7 +4,7 @@ description: Make the most of the query results returned by advanced hunting in
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, custom detections, schema, kusto, visualization, chart, filters, drill down
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Work with advanced hunting query results
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-schema-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-schema-reference.md
index a0988a90d0..4d15c46f81 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-schema-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-schema-reference.md
@@ -4,7 +4,7 @@ description: Learn about the tables in the advanced hunting schema to understand
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, schema reference, kusto, table, data
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 01/14/2020
+ms.technology: mde
 ---
 
 # Understand the advanced hunting schema
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-shared-queries.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-shared-queries.md
index 0daf0cbfda..c3b430655b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-shared-queries.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-shared-queries.md
@@ -4,7 +4,7 @@ description: Start threat hunting immediately with predefined and shared queries
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, custom detections, schema, kusto, github repo, my queries, shared queries
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Use shared queries in advanced hunting
diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-take-action.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-take-action.md
index d535b139e2..a0bc9e4540 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-take-action.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-take-action.md
@@ -4,7 +4,7 @@ description: Quickly address threats and affected assets in your advanced huntin
 keywords: advanced hunting, threat hunting, cyber threat hunting, mdatp, microsoft defender atp, wdatp search, query, telemetry, custom detections, schema, kusto, avoid timeout, command lines, process id
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 09/20/2020
+ms.technology: mde
 ---
 
 # Take action on advanced hunting query results
diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts-queue-endpoint-detection-response.md b/windows/security/threat-protection/microsoft-defender-atp/alerts-queue-endpoint-detection-response.md
index 5e96430994..6c96b5ea1e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts-queue-endpoint-detection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts-queue-endpoint-detection-response.md
@@ -5,7 +5,7 @@ description: View and manage the alerts surfaced in Microsoft Defender Security
 keywords: 
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/03/2018
+ms.technology: mde
 ---
 
 # Alerts queue in Microsoft Defender Security Center
diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts-queue.md b/windows/security/threat-protection/microsoft-defender-atp/alerts-queue.md
index e403e8465c..7ac4d17fb3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts-queue.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts-queue.md
@@ -4,7 +4,7 @@ description: Learn about how the Microsoft Defender ATP alerts queues work, and
 keywords: alerts, queues, alerts queue, sort, order, filter, manage alerts, new, in progress, resolved, newest, time in queue, severity, time period, microsoft threat experts alerts
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 03/27/2020
+ms.technology: mde
 ---
 
 # View and organize the Microsoft Defender for Endpoint Alerts queue
diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index 9c311bdd80..f6b1666c6c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -3,7 +3,7 @@ title: Get alerts API
 description: Learn about the methods and properties of the Alert resource type in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Alert resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/android-configure.md b/windows/security/threat-protection/microsoft-defender-atp/android-configure.md
index f9f5d899e6..c0d3f7f4e0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/android-configure.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/android-configure.md
@@ -1,11 +1,11 @@
 ---
 title: Configure Microsoft Defender ATP for Android features
-ms.reviewer:
-description: Describes how to configure Microsoft Defender ATP for Android 
+ms.reviewer: 
+description: Describes how to configure Microsoft Defender ATP for Android
 keywords: microsoft, defender, atp, android, configuration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure Defender for Endpoint for Android features
diff --git a/windows/security/threat-protection/microsoft-defender-atp/android-intune.md b/windows/security/threat-protection/microsoft-defender-atp/android-intune.md
index 52450260ef..dcaf457b37 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/android-intune.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/android-intune.md
@@ -1,11 +1,11 @@
 ---
 title: Deploy Microsoft Defender ATP for Android with Microsoft Intune
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for Android with Microsoft Intune
 keywords: microsoft, defender, atp, android, installation, deploy, uninstallation,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender for Endpoint for Android with Microsoft Intune 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/android-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/android-privacy.md
index 66ec2fa838..d14d7b7606 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/android-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/android-privacy.md
@@ -4,7 +4,7 @@ description: Privacy controls, how to configure policy settings that impact priv
 keywords: microsoft, defender, atp, android, privacy, diagnostic
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 #  Microsoft Defender for Endpoint for Android - Privacy information
diff --git a/windows/security/threat-protection/microsoft-defender-atp/android-support-signin.md b/windows/security/threat-protection/microsoft-defender-atp/android-support-signin.md
index 34959bf022..f9fe77aefa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/android-support-signin.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/android-support-signin.md
@@ -1,11 +1,11 @@
 ---
 title: Troubleshoot issues on Microsoft Defender ATP for Android
-ms.reviewer:
+ms.reviewer: 
 description: Troubleshoot issues for Microsoft Defender ATP for Android
 keywords: microsoft, defender, atp, android, cloud, connectivity, communication
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshooting issues on Microsoft Defender for Endpoint for Android
diff --git a/windows/security/threat-protection/microsoft-defender-atp/android-terms.md b/windows/security/threat-protection/microsoft-defender-atp/android-terms.md
index d8dd335aff..05151f5a7c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/android-terms.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/android-terms.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for Android Application license terms
-ms.reviewer:
+ms.reviewer: 
 description: Describes the Microsoft Defender ATP for Android license terms
-keywords: microsoft, defender, atp, android,license, terms, application, use, installation, service, feedback, scope, 
+keywords: microsoft, defender, atp, android,license, terms, application, use, installation, service, feedback, scope,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -17,6 +17,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 hideEdit: true
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for Android application license terms
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-explorer.md b/windows/security/threat-protection/microsoft-defender-atp/api-explorer.md
index c75879bafc..f6ea5a6c0d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-explorer.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-explorer.md
@@ -1,11 +1,11 @@
 ---
-title: API Explorer in Microsoft Defender ATP  
+title: API Explorer in Microsoft Defender ATP
 ms.reviewer: 
 description: Use the API Explorer to construct and do API queries, test, and send requests for any available API
-keywords: api, explorer, send, request, get, post, 
+keywords: api, explorer, send, request, get, post,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # API Explorer
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
index 81f125ba22..bf85bfd5d2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-hello-world.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Create a practice 'Hello world'-style API call to the Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) API.
 keywords: apis, supported apis, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint API - Hello World 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md b/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
index 44003ec0b9..c789f3dcc8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-microsoft-flow.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Use Microsoft Defender ATP Flow connector to automate security and create a flow that will be triggered any time a new alert occurs on your tenant.
 keywords: flow, supported apis, api, Microsoft flow, query, automation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Power Automate (formerly Microsoft Flow), and Azure Functions
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-portal-mapping.md b/windows/security/threat-protection/microsoft-defender-atp/api-portal-mapping.md
index 2170d310c0..fcaccc4e0e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-portal-mapping.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-portal-mapping.md
@@ -4,7 +4,7 @@ description: Understand how the Detections API fields map to the values in Micro
 keywords: detections, detections fields, fields, api, fields, pull Detections, rest api, request, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint detections API fields
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
index 9bb4eb7102..c62e574323 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-power-bi.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Create a Power Business Intelligence (BI) report on top of Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) APIs.
 keywords: apis, supported apis, Power BI, reports
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create custom reports using Power BI
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-terms-of-use.md b/windows/security/threat-protection/microsoft-defender-atp/api-terms-of-use.md
index 9c8c96f2ea..b4e75388d9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-terms-of-use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-terms-of-use.md
@@ -3,7 +3,7 @@ title: Microsoft Defender ATP API license and terms of use
 description: Description of the license and terms of use for Microsoft Defender APIs
 keywords: license, terms, apis, legal, notices, code of conduct
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint API license and terms of use
diff --git a/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md b/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
index ba3e749a61..7a6ced874a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/apis-intro.md
@@ -1,10 +1,10 @@
 ---
-title: Access the Microsoft Defender Advanced Threat Protection APIs  
+title: Access the Microsoft Defender Advanced Threat Protection APIs
 ms.reviewer: 
 description: Learn how you can use APIs to automate workflows and innovate based on Microsoft Defender ATP capabilities
 keywords: apis, api, wdatp, open api, microsoft defender atp api, public api, supported apis, alerts, device, user, domain, ip, file, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Access the Microsoft Defender for Endpoint APIs 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/assign-portal-access.md b/windows/security/threat-protection/microsoft-defender-atp/assign-portal-access.md
index a8bf456da1..66d9bed2d9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/assign-portal-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/assign-portal-access.md
@@ -4,7 +4,7 @@ description: Assign read and write or read only access to the Microsoft Defender
 keywords: assign user roles, assign read and write access, assign read only access, user, user roles, roles
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 11/28/2018
+ms.technology: mde
 ---
 
 # Assign user access to Microsoft Defender Security Center
diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-simulations.md b/windows/security/threat-protection/microsoft-defender-atp/attack-simulations.md
index 74cc0538fb..4fe5d45a88 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-simulations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-simulations.md
@@ -4,7 +4,7 @@ description: Run the provided attack scenario simulations to experience how Micr
 keywords: wdatp, test, scenario, attack, simulation, simulated, diy, microsoft defender advanced threat protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 11/20/2018
+ms.technology: mde
 ---
 
 # Experience Microsoft Defender for Endpoint through simulated attacks 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
index 27c2c2db47..d2eec941c7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
@@ -4,7 +4,7 @@ description: Find answers to frequently asked questions about Microsoft Defender
 keywords: Attack surface reduction rules, asr, hips, host intrusion prevention system, protection rules, anti-exploit, antiexploit, exploit, infection prevention, Microsoft Defender Advanced Threat Protection, Microsoft Defender ATP
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -14,6 +14,7 @@ ms.author: v-maave
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Attack surface reduction frequently asked questions (FAQ)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index c0c77ae782..a4e5a71827 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -3,7 +3,7 @@ title: Use attack surface reduction rules to prevent malware infection
 description: Attack surface reduction rules can help prevent exploits from using apps and scripts to infect devices with malware.
 keywords: Attack surface reduction rules, asr, hips, host intrusion prevention system, protection rules, anti-exploit, antiexploit, exploit, infection prevention, Microsoft Defender Advanced Threat Protection, Microsoft Defender ATP
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: sugamar, jcedola
 manager: dansimp
 ms.custom: asr
 ms.date: 01/08/2021
+ms.technology: mde
 ---
 
 # Use attack surface reduction rules to prevent malware infection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender.md b/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender.md
index b442dcb82a..3ebf7ef6a5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender.md
@@ -3,7 +3,7 @@ title: Test how Microsoft Defender ATP features work in audit mode
 description: Audit mode lets you use the event log to see how Microsoft Defender ATP would protect your devices if it was enabled.
 keywords: exploit guard, audit, auditing, mode, enabled, disabled, test, demo, evaluate, lab
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Test how Microsoft Defender for Endpoint features work in audit mode
diff --git a/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md b/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
index 0a77813dd2..e929d6e210 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
@@ -3,7 +3,7 @@ title: View details and results of automated investigations
 description: Use the action center to view details and results following an automated investigation
 keywords: action, center, autoir, automated, investigation, response, remediation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,11 +13,12 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs
 ms.date: 09/24/2020
+ms.technology: mde
 ---
 
 # View details and results of automated investigations
diff --git a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
index fea480df60..781676ba34 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
@@ -4,7 +4,7 @@ description: Understand the automated investigation flow in Microsoft Defender f
 keywords: automated, investigation, detection, source, threat types, id, tags, devices, duration, filter export, defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -16,8 +16,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs
 ms.custom: AIR
diff --git a/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md b/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
index 9fa9ebd762..1a1fc25199 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
@@ -4,7 +4,7 @@ description: Get an overview of automation levels and how they work in Microsoft
 keywords: automated, investigation, level, defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -16,8 +16,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs
 ms.custom: AIR
diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index 1c8fc2eacd..9846c04523 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -4,7 +4,7 @@ description: Learn how to use basic permissions to access the Microsoft Defender
 keywords: assign user roles, assign read and write access, assign read only access, user, user roles, roles
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Use basic permissions to access the portal
diff --git a/windows/security/threat-protection/microsoft-defender-atp/behavioral-blocking-containment.md b/windows/security/threat-protection/microsoft-defender-atp/behavioral-blocking-containment.md
index 05ec75c8d0..fb60ac8f53 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/behavioral-blocking-containment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/behavioral-blocking-containment.md
@@ -8,16 +8,17 @@ author: denisebmsft
 ms.author: deniseb
 manager: dansimp
 ms.reviewer: shwetaj
-audience: ITPro 
-ms.topic: article 
-ms.prod: w10 
+audience: ITPro
+ms.topic: article
+ms.prod: m365-security
 ms.localizationpriority: medium
 ms.custom: 
-- next-gen
-- edr
+  - next-gen
+  - edr
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
+ms.technology: mde
 ---
 
 # Behavioral blocking and containment
diff --git a/windows/security/threat-protection/microsoft-defender-atp/check-sensor-status.md b/windows/security/threat-protection/microsoft-defender-atp/check-sensor-status.md
index bbff2e68b9..d7e2bcdf23 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/check-sensor-status.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/check-sensor-status.md
@@ -4,7 +4,7 @@ description: Check the sensor health on devices to identify which ones are misco
 keywords: sensor, sensor health, misconfigured, inactive, no sensor data, sensor data, impaired communications, communication
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Check sensor health state in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/client-behavioral-blocking.md b/windows/security/threat-protection/microsoft-defender-atp/client-behavioral-blocking.md
index ef5d153836..095899b2c9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/client-behavioral-blocking.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/client-behavioral-blocking.md
@@ -8,16 +8,17 @@ author: denisebmsft
 ms.author: deniseb
 manager: dansimp
 ms.reviewer: shwetaj
-audience: ITPro 
-ms.topic: article 
-ms.prod: w10 
+audience: ITPro
+ms.topic: article
+ms.prod: m365-security
 ms.localizationpriority: medium
 ms.custom: 
-- next-gen
-- edr
+  - next-gen
+  - edr
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
+ms.technology: mde
 ---
 
 # Client behavioral blocking
diff --git a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
index b3cb7a04fa..ee50396e37 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
@@ -3,7 +3,7 @@ title: Collect investigation package API
 description: Use this API to create calls related to the collecting an investigation package from a device.
 keywords: apis, graph api, supported apis, collect investigation package
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,9 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
-
+ms.technology: mde
 ---
 
 # Collect investigation package API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/common-errors.md b/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
index c43240cb86..c0c401ff5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
@@ -1,9 +1,9 @@
 ---
 title: Common Microsoft Defender ATP API errors
 description: List of common Microsoft Defender ATP API errors with descriptions.
-keywords: apis, mdatp api, errors, troubleshooting 
+keywords: apis, mdatp api, errors, troubleshooting
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Common REST API error codes
diff --git a/windows/security/threat-protection/microsoft-defender-atp/community.md b/windows/security/threat-protection/microsoft-defender-atp/community.md
index f68dcdeab3..d229d8aea0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/community.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/community.md
@@ -4,7 +4,7 @@ description: Access the Microsoft Defender ATP Community Center to share experie
 keywords: community, community center, tech community, conversation, announcements
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/conditional-access.md b/windows/security/threat-protection/microsoft-defender-atp/conditional-access.md
index a0ace30f14..96b9d372c8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/conditional-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/conditional-access.md
@@ -4,7 +4,7 @@ description: Enable Conditional Access to prevent applications from running if a
 keywords: conditional access, block applications, security level, intune,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Enable Conditional Access to better protect users, devices, and data 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-arcsight.md b/windows/security/threat-protection/microsoft-defender-atp/configure-arcsight.md
index aca0be0b19..873f96e24e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-arcsight.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-arcsight.md
@@ -4,7 +4,7 @@ description: Configure Micro Focus ArcSight to receive and pull detections from
 keywords: configure Micro Focus ArcSight, security information and events management tools, arcsight
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Micro Focus ArcSight to pull Defender for Endpoint detections
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/configure-attack-surface-reduction.md
index 736ab0b846..3db29d7045 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-attack-surface-reduction.md
@@ -4,7 +4,7 @@ description: Use Microsoft Intune, Microsoft Endpoint Configuration Manager, Pow
 keywords: asr, attack surface reduction, windows defender, microsoft defender, antivirus, av
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure attack surface reduction
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
index f8d91cd3e1..ee4a6acd7e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
@@ -4,7 +4,7 @@ description: Set up your automated investigation and remediation capabilities in
 keywords: configure, setup, automated, investigation, detection, alerts, remediation, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -14,7 +14,7 @@ author: denisebmsft
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 09/24/2020
 ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-conditional-access.md b/windows/security/threat-protection/microsoft-defender-atp/configure-conditional-access.md
index 206e5721b3..b6c75e30e5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-conditional-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-conditional-access.md
@@ -4,7 +4,7 @@ description: Learn about steps that you need to do in Intune, Microsoft Defender
 keywords: conditional access, conditional, access, device risk, risk level, integration, intune integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Conditional Access in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-email-notifications.md b/windows/security/threat-protection/microsoft-defender-atp/configure-email-notifications.md
index f7ccfe871b..834863b741 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-email-notifications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-email-notifications.md
@@ -4,7 +4,7 @@ description: You can use Microsoft Defender Advanced Threat Protection to config
 keywords: email notifications, configure alert notifications, microsoft defender atp notifications, microsoft defender atp alerts, windows 10 enterprise, windows 10 education
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure alert notifications in Microsoft Defender ATP
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp.md
index 5360517315..1aef8eda63 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp.md
@@ -4,7 +4,7 @@ description: Use Group Policy to deploy the configuration package on Windows 10
 keywords: configure devices using group policy, device management, configure Windows ATP devices, onboard Microsoft Defender Advanced Threat Protection devices, group policy
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Onboard Windows 10 devices using Group Policy 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-mdm.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-mdm.md
index 0a97fbf1e3..a4e70fd9b2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-mdm.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-mdm.md
@@ -4,7 +4,7 @@ description: Use Mobile Device Management tools to deploy the configuration pack
 keywords: onboard devices using mdm, device management, onboard Windows ATP devices, onboard Microsoft Defender Advanced Threat Protection devices, mdm
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard Windows 10 devices using Mobile Device Management tools
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-non-windows.md
index ba65815551..460d048802 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-non-windows.md
@@ -4,7 +4,7 @@ description: Configure non-Windows devices so that they can send sensor data to
 keywords: onboard non-Windows devices, macos, linux, device management, configure Windows ATP devices, configure Microsoft Defender Advanced Threat Protection devices
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard non-Windows devices
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
index 70d15daa13..32028e17ed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-sccm.md
@@ -4,7 +4,7 @@ description: Use Configuration Manager to deploy the configuration package on de
 keywords: onboard devices using sccm, device management, configure Windows ATP devices, configure Microsoft Defender Advanced Threat Protection devices
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 02/07/2020
+ms.technology: mde
 ---
 
 # Onboard Windows 10 devices using Configuration Manager
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-script.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-script.md
index acfdb668c7..4bfafb3193 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-script.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-script.md
@@ -4,7 +4,7 @@ description: Use a local script to deploy the configuration package on devices s
 keywords: configure devices using a local script, device management, configure Windows ATP devices, configure Microsoft Defender Advanced Threat Protection devices
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard Windows 10 devices using a local script
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
index fc7c7e1d3c..7eb2606edf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
@@ -4,7 +4,7 @@ description: Deploy the configuration package on virtual desktop infrastructure
 keywords: configure virtual desktop infrastructure (VDI) device, vdi, device management, configure Windows ATP endpoints, configure Microsoft Defender Advanced Threat Protection endpoints
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 04/16/2020
+ms.technology: mde
 ---
 
 # Onboard non-persistent virtual desktop infrastructure (VDI) devices
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
index d4fd6a0a02..7bf86ff101 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints.md
@@ -4,7 +4,7 @@ description: Onboard Windows 10 devices so that they can send sensor data to the
 keywords: Onboard Windows 10 devices, group policy, endpoint configuration manager, mobile device management, local script, gp, sccm, mdm, intune
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Onboarding tools and methods for Windows 10 devices
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md
index 17e8cb3039..d42925b857 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md
@@ -1,10 +1,10 @@
 ---
 title: Optimize ASR rule deployment and detections
-description: Optimize your attack surface reduction (ASR) rules to identify and prevent typical malware exploits. 
+description: Optimize your attack surface reduction (ASR) rules to identify and prevent typical malware exploits.
 keywords: onboard, Intune management, MDATP, WDATP, Microsoft Defender, Windows Defender, advanced threat protection, attack surface reduction, ASR, security baseline
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Optimize ASR rule deployment and detections
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md
index b207e1fb84..a755aece6d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md
@@ -4,7 +4,7 @@ description: Track onboarding of Intune-managed devices to Microsoft Defender AT
 keywords: onboard, Intune management, MDATP, WDATP, Microsoft Defender, Windows Defender, advanced threat protection, configuration management
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get devices onboarded to Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md
index e110a3d518..fdb402917b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md
@@ -4,7 +4,7 @@ description: The Microsoft Defender ATP security baseline sets Microsoft Defende
 keywords: Intune management, MDATP, WDATP, Microsoft Defender, advanced threat protection ASR, security baseline
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Increase compliance to the Microsoft Defender for Endpoint security baseline
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md
index 9b830a3988..b48a92f312 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md
@@ -4,7 +4,7 @@ description: Properly configure devices to boost overall resilience against thre
 keywords: onboard, Intune management, MDATP, WDATP, Microsoft Defender, Windows Defender, advanced threat protection, attack surface reduction, ASR, security baseline
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Ensure your devices are configured properly
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts.md b/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts.md
index 3ce240d781..f961d52e99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts.md
@@ -5,7 +5,7 @@ description: Register to Microsoft Threats Experts to configure, manage, and use
 keywords: Microsoft Threat Experts, managed threat hunting service, MTE, Microsoft managed hunting service
 search.product: Windows 10
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure and manage Microsoft Threat Experts capabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-notifications.md b/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-notifications.md
index e75588efda..bb8199f49c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-notifications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-notifications.md
@@ -1,10 +1,10 @@
 ---
-title: Configure alert notifications that are sent to MSSPs 
+title: Configure alert notifications that are sent to MSSPs
 description: Configure alert notifications that are sent to MSSPs
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure alert notifications that are sent to MSSPs 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-support.md b/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-support.md
index dde5d47ec5..f6521931c0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-support.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-mssp-support.md
@@ -1,10 +1,10 @@
 ---
 title: Configure managed security service provider support
-description: Take the necessary steps to configure the MSSP integration with Microsoft Defender ATP 
+description: Take the necessary steps to configure the MSSP integration with Microsoft Defender ATP
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure managed security service provider integration
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
index 48fd0bee7d..712d30276f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
@@ -4,7 +4,7 @@ description: Configure the Microsoft Defender ATP proxy and internet settings to
 keywords: configure, proxy, internet, internet connectivity, settings, proxy settings, netsh, winhttp, proxy server
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure device proxy and Internet connectivity settings
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 58d8cc748e..3e1fad5b1a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -4,7 +4,7 @@ description: Onboard Windows servers so that they can send sensor data to the Mi
 keywords: onboard server, server, 2012r2, 2016, 2019, server onboarding, device management, configure Windows ATP servers, onboard Microsoft Defender Advanced Threat Protection servers
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard Windows servers to the Microsoft Defender for Endpoint service
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md b/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
index 62e2e5f5b1..570ac8e0e5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
@@ -4,7 +4,7 @@ description: Learn how to use REST API and configure supported security informat
 keywords: configure siem, security information and events management tools, splunk, arcsight, custom indicators, rest api, alert definitions, indicators of compromise
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Pull detections to your SIEM tools
diff --git a/windows/security/threat-protection/microsoft-defender-atp/connected-applications.md b/windows/security/threat-protection/microsoft-defender-atp/connected-applications.md
index 99a86d51e7..77a5862d83 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/connected-applications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/connected-applications.md
@@ -1,11 +1,11 @@
 ---
-title: Connected applications in Microsoft Defender ATP   
+title: Connected applications in Microsoft Defender ATP
 ms.reviewer: 
 description: View connected partner applications that use standard OAuth 2.0 protocol to authenticate and provide tokens for use with Microsoft Defender ATP APIs.
 keywords: partners, applications, third-party, connections, sentinelone, lookout, bitdefender, corrata, morphisec, paloalto, ziften, better mobile
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Connected applications in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/contact-support-usgov.md b/windows/security/threat-protection/microsoft-defender-atp/contact-support-usgov.md
index a3ea45d493..d82a536e7c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/contact-support-usgov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/contact-support-usgov.md
@@ -4,7 +4,7 @@ description: Learn how to contact Microsoft Defender for Endpoint support for US
 keywords: support, contact, premier support, solutions, problems, case, government, gcc, gcc-m, gcc-h, defender, endpoint, mdatp, mde
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ROBOTS: noindex,nofollow
+ms.technology: mde
 ---
 
 # Contact Microsoft Defender for Endpoint support for US Government customers
diff --git a/windows/security/threat-protection/microsoft-defender-atp/contact-support.md b/windows/security/threat-protection/microsoft-defender-atp/contact-support.md
index b8af068443..4082593706 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/contact-support.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/contact-support.md
@@ -4,7 +4,7 @@ description: Learn how to contact Microsoft Defender ATP support
 keywords: support, contact, premier support, solutions, problems, case
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Contact Microsoft Defender for Endpoint support
diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index d01c44566e..f193b2eca8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -3,7 +3,7 @@ title: Prevent ransomware and threats from encrypting and changing files
 description: Files in default folders can be protected from being changed by malicious apps. Prevent ransomware from encrypting your files.
 keywords: controlled folder access, windows 10, windows defender, ransomware, protect, files, folders
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.date: 12/17/2020
 ms.reviewer: v-maave
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Protect important folders with controlled folder access
diff --git a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
index eefccc5624..ac6a1ed6be 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
@@ -3,7 +3,7 @@ title: Create alert from event API
 description: Learn how to use the Create alert API to create a new Alert on top of Event in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, alert, information, id
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create alert API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
index 17e23e40fc..6dd72d0e5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules.md
@@ -5,7 +5,7 @@ description: Learn how to create custom detection rules based on advanced huntin
 keywords: custom detections, create, manage, alerts, edit, run on demand, frequency, interval, detection rules, advanced hunting, hunt, query, response actions, mdatp, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 09/20/2020
+ms.technology: mde
 ---
 
 # Create custom detection rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/custom-detections-manage.md b/windows/security/threat-protection/microsoft-defender-atp/custom-detections-manage.md
index ef5088e134..8089825d75 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/custom-detections-manage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/custom-detections-manage.md
@@ -5,7 +5,7 @@ description: Learn how to view and manage custom detection rules
 keywords: custom detections, view, manage, alerts, edit, run on demand, detection rules, advanced hunting, hunt, query, response actions, mdatp, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/customize-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/customize-attack-surface-reduction.md
index 81ede44b00..1da7a9ee99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/customize-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/customize-attack-surface-reduction.md
@@ -3,7 +3,7 @@ title: Customize attack surface reduction rules
 description: Individually set rules in audit, block, or disabled modes, and add files and folders that should be excluded from attack surface reduction rules
 keywords: Attack surface reduction, hips, host intrusion prevention system, protection rules, anti-exploit, antiexploit, exploit, infection prevention, customize, configure, exclude
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Customize attack surface reduction rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
index 8c2ab186eb..3d14a162c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/customize-controlled-folders.md
@@ -3,7 +3,7 @@ title: Customize controlled folder access
 description: Add other folders that should be protected by controlled folder access, or allow apps that are incorrectly blocking changes to important files.
 keywords: Controlled folder access, windows 10, windows defender, ransomware, protect, files, folders, customize, add folder, add app, allow, add executable
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ ms.author: deniseb
 ms.reviewer: jcedola, dbodorin, vladiso, nixanm, anvascon
 manager: dansimp
 ms.date: 01/06/2021
+ms.technology: mde
 ---
 
 # Customize controlled folder access
diff --git a/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
index 3c72846e6a..fb5a2ad59a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/customize-exploit-protection.md
@@ -3,15 +3,16 @@ title: Customize exploit protection
 keywords: Exploit protection, mitigations, enable, powershell, dep, cfg, emet, aslr
 description: You can enable or disable specific mitigations used by exploit protection using the Windows Security app or PowerShell. You can also audit mitigations and export configurations.
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
 audience: ITPro
 author: levinec
 ms.author: ellevin
-ms.reviewer:
+ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Customize exploit protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/data-retention-settings.md b/windows/security/threat-protection/microsoft-defender-atp/data-retention-settings.md
index 7932cfb153..dbf2b89d69 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/data-retention-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/data-retention-settings.md
@@ -1,10 +1,10 @@
 ---
-title: Verify data storage location and update data retention settings 
+title: Verify data storage location and update data retention settings
 description: Verify data storage location and update data retention settings for Microsoft Defender Advanced Threat Protection
 keywords: data, storage, settings, retention, update
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Verify data storage location and update data retention settings for Microsoft Defender for Endpoint
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
index 4a5639583d..ec1ee3cba5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
@@ -4,7 +4,7 @@ description: Learn about how Microsoft Defender for Endpoint handles privacy and
 keywords: Microsoft Defender for Endpoint, Microsoft Defender ATP, data storage and privacy, storage, privacy, licensing, geolocation, data retention, data
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint data storage and privacy
diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-compatibility.md b/windows/security/threat-protection/microsoft-defender-atp/defender-compatibility.md
index f84762a3a0..a26df70136 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-compatibility.md
@@ -1,10 +1,10 @@
 ---
 title: Microsoft Defender Antivirus compatibility with Microsoft Defender ATP
-description: Learn about how Windows Defender works with Microsoft Defender ATP and how it functions when a third-party antimalware client is used.  
+description: Learn about how Windows Defender works with Microsoft Defender ATP and how it functions when a third-party antimalware client is used.
 keywords: windows defender compatibility, defender, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Microsoft Defender Antivirus compatibility with Microsoft Defender ATP
diff --git a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
index dfde8bf37e..c4921c50f4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
@@ -3,7 +3,7 @@ title: Delete Indicator API.
 description: Learn how to use the Delete Indicator API to delete an Indicator entity by ID in Microsoft Defender Advanced Threat Protection.
 keywords: apis, public api, supported apis, delete, ti indicator, entity, id
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Delete Indicator API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
index 8332173b94..6acca76c77 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@@ -3,7 +3,7 @@ title: Deployment phases
 description: Learn how to deploy Microsoft Defender ATP by preparing, setting up, and onboarding endpoints to that service
 keywords: deploy, prepare, setup, onboard, phase, deployment, deploying, adoption, configuring
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-overview  
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-overview
 ms.topic: article
+ms.technology: mde
 ---
 
 # Deployment phases
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 8ad96f8300..cce214bf30 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -3,7 +3,7 @@ title: Deploy Microsoft Defender ATP in rings
 description: Learn how to deploy Microsoft Defender ATP in rings
 keywords: deploy, rings, evaluate, pilot, insider fast, insider slow, setup, onboard, phase, deployment, deploying, adoption, configuring
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-overview  
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-overview
 ms.topic: article
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender ATP in rings
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-strategy.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-strategy.md
index fad489826a..3711adcf75 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-strategy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-strategy.md
@@ -1,9 +1,9 @@
 ---
-title: Plan your Microsoft Defender ATP deployment 
+title: Plan your Microsoft Defender ATP deployment
 description: Select the best Microsoft Defender ATP deployment strategy for your environment
 keywords: deploy, plan, deployment strategy, cloud native, management, on prem, evaluation, onboarding, local, group policy, gp, endpoint manager, mem
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Plan your Microsoft Defender for Endpoint deployment 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/device-timeline-event-flag.md b/windows/security/threat-protection/microsoft-defender-atp/device-timeline-event-flag.md
index 8ab3495d50..77bc0b62f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/device-timeline-event-flag.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/device-timeline-event-flag.md
@@ -1,9 +1,9 @@
 ---
 title: Microsoft Defender ATP device timeline event flags
-description: Use Microsoft Defender ATP device timeline event flags to 
+description: Use Microsoft Defender ATP device timeline event flags to
 keywords: Defender ATP device timeline, event flags
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint device timeline event flags
diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 0c01e2faf7..0304cdd397 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -8,17 +8,18 @@ author: denisebmsft
 ms.author: deniseb
 manager: dansimp
 ms.reviewer: shwetaj
-audience: ITPro 
-ms.topic: article 
-ms.prod: w10 
+audience: ITPro
+ms.topic: article
+ms.prod: m365-security
 ms.localizationpriority: medium
 ms.custom: 
-- next-gen
-- edr
+  - next-gen
+  - edr
 ms.date: 01/07/2021
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
+ms.technology: mde
 ---
 
 # Endpoint detection and response (EDR) in block mode
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
index 1356b96d9c..44d58c8d1e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
@@ -3,7 +3,7 @@ title: Enable attack surface reduction rules
 description: Enable attack surface reduction (ASR) rules to protect your devices from attacks that use macros, scripts, and common injection techniques.
 keywords: Attack surface reduction, hips, host intrusion prevention system, protection rules, anti-exploit, antiexploit, exploit, infection prevention, enable, turn on
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Enable attack surface reduction rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/enable-controlled-folders.md
index 8af897f9a0..a8bc3ae850 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-controlled-folders.md
@@ -3,7 +3,7 @@ title: Enable controlled folder access
 keywords: Controlled folder access, windows 10, windows defender, ransomware, protect, files, folders, enable, turn on, use
 description: Learn how to protect your important files by enabling Controlled folder access
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Enable controlled folder access
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 91a6dc887a..683cc19965 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -3,7 +3,7 @@ title: Turn on exploit protection to help mitigate against attacks
 keywords: exploit, mitigation, attacks, vulnerability
 description: Learn how to enable exploit protection in Windows 10. Exploit protection helps protect your device against malware.
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.reviewer: ksarens
 manager: dansimp
+ms.technology: mde
 ---
 
 # Enable exploit protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
index 4f9ad6dff7..b489a186a7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
@@ -3,7 +3,7 @@ title: Turn on network protection
 description: Enable network protection with Group Policy, PowerShell, or Mobile Device Management and Configuration Manager.
 keywords: ANetwork protection, exploits, malicious website, ip, domain, domains, enable, turn on
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Turn on network protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-siem-integration.md b/windows/security/threat-protection/microsoft-defender-atp/enable-siem-integration.md
index c4e8e36cbe..63dc623e7e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-siem-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-siem-integration.md
@@ -4,7 +4,7 @@ description: Enable SIEM integration to receive detections in your security info
 keywords: enable siem connector, siem, connector, security information and events
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Enable SIEM integration in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-atp.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-atp.md
index b80ba00b38..836dcb090d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-atp.md
@@ -2,10 +2,10 @@
 title: Evaluate Microsoft Defender for Endpoint
 ms.reviewer: 
 description: Evaluate the different security capabilities in Microsoft Defender for Endpoint.
-keywords: attack surface reduction, evaluate, next, generation, protection 
+keywords: attack surface reduction, evaluate, next, generation, protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Evaluate Microsoft Defender for Endpoint 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-attack-surface-reduction.md
index 4fdbaae9b9..e5e1491d2b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-attack-surface-reduction.md
@@ -3,7 +3,7 @@ title: Evaluate attack surface reduction rules
 description: See how attack surface reduction would block and prevent attacks with the custom demo tool.
 keywords: Attack surface reduction, hips, host intrusion prevention system, protection rules, anti-exploit, antiexploit, exploit, infection prevention, evaluate, test, demo
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Evaluate attack surface reduction rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
index cf36b1169f..e85e2cd887 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-controlled-folder-access.md
@@ -3,7 +3,7 @@ title: Evaluate controlled folder access
 description: See how controlled folder access can help protect files from being changed by malicious apps.
 keywords: Exploit protection, windows 10, windows defender, ransomware, protect, evaluate, test, demo, try
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Evaluate controlled folder access
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
index a7d1eb5399..55fb86a8b7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-exploit-protection.md
@@ -3,7 +3,7 @@ title: See how exploit protection works in a demo
 description: See how exploit protection can prevent suspicious behaviors from occurring on specific apps.
 keywords: Exploit protection, exploits, kernel, events, evaluate, demo, try, mitigation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.author: deniseb
 ms.date: 01/06/2021
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Evaluate exploit protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluate-network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/evaluate-network-protection.md
index 1da3fe309f..067bb51204 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluate-network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluate-network-protection.md
@@ -3,7 +3,7 @@ title: Evaluate network protection
 description: See how network protection works by testing common scenarios that it protects against.
 keywords: Network protection, exploits, malicious website, ip, domain, domains, evaluate, test, demo
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Evaluate network protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md
index 64a0179395..4d6f35d840 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md
@@ -3,7 +3,7 @@ title: Microsoft Defender for Endpoint evaluation lab
 description: Learn about Microsoft Defender for Endpoint capabilities, run attack simulations, and see how it prevents, detects, and remediates threats.
 keywords: evaluate mdatp, evaluation, lab, simulation, windows 10, windows server 2019, evaluation lab
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-evalutatemtp
+  - M365-security-compliance
+  - m365solution-evalutatemtp
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint evaluation lab
diff --git a/windows/security/threat-protection/microsoft-defender-atp/event-error-codes.md b/windows/security/threat-protection/microsoft-defender-atp/event-error-codes.md
index a2b75300ee..cf4a725b95 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/event-error-codes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/event-error-codes.md
@@ -4,7 +4,7 @@ description: Get descriptions and further troubleshooting steps (if required) fo
 keywords: troubleshoot, event viewer, log summary, failure code, failed, Microsoft Defender for Endpoint service, cannot start, broken, can't start
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 05/21/2018
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/event-views.md b/windows/security/threat-protection/microsoft-defender-atp/event-views.md
index 9edcad6d34..73f0cf3ba2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/event-views.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/event-views.md
@@ -3,7 +3,7 @@ title: View attack surface reduction events
 description: Import custom views to see attack surface reduction events.
 keywords: event view, exploit guard, audit, review, events
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # View attack surface reduction events
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
index f1867fadcb..28051f72bd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection-reference.md
@@ -4,7 +4,7 @@ keywords: mitigations, vulnerabilities, vulnerability, mitigation, exploit, expl
 description: Details on how the exploit protection feature works in Windows 10
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ ms.date: 01/06/2021
 ms.reviewer: cjacks
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Exploit Protection Reference
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection.md
index b2ad6f832b..9b169e43bd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exploit-protection.md
@@ -3,7 +3,7 @@ title: Apply mitigations to help prevent attacks through vulnerabilities
 keywords: mitigations, vulnerabilities, vulnerability, mitigation, exploit, exploits, emet
 description: Protect devices against exploits with Windows 10. Windows 10 has advanced exploit protection capabilities, building upon and improving the settings available in Enhanced Mitigation Experience Toolkit (EMET).
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.date: 10/21/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Protect devices from exploits
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index 9f93b7365e..9994672041 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -1,10 +1,10 @@
 ---
-title: Use Microsoft Defender for Endpoint APIs  
+title: Use Microsoft Defender for Endpoint APIs
 ms.reviewer: 
 description: Learn how to design a native Windows app to get programmatic access to Microsoft Defender for Endpoint without a user.
 keywords: apis, graph api, supported apis, actor, alerts, device, user, domain, ip, file, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Use Microsoft Defender for Endpoint APIs
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
index cfb61033a4..2e5ce37a4f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Learn how to design a web app to get programmatic access to  Microsoft Defender for Endpoint without a user.
 keywords: apis, graph api, supported apis, actor, alerts, device, user, domain, ip, file, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Partner access through Microsoft Defender for Endpoint APIs
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
index f4dc27179e..dbec1029c4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-webapp.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Learn how to design a web app to get programmatic access to Microsoft Defender for Endpoint without a user.
 keywords: apis, graph api, supported apis, actor, alerts, device, user, domain, ip, file, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create an app to access Microsoft Defender for Endpoint without a user
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
index 8100c26890..0f872dce10 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Use these code samples, querying several Microsoft Defender for Endpoint APIs.
 keywords: apis, supported apis, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: article 
+ms.collection: M365-security-compliance
+ms.topic: article
 ms.date: 09/24/2018
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint APIs using PowerShell
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
index e5f0ac91e0..631006a9c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list.md
@@ -1,10 +1,10 @@
 ---
-title: Supported Microsoft Defender for Endpoint APIs  
+title: Supported Microsoft Defender for Endpoint APIs
 ms.reviewer: 
-description: Learn about the specific supported Microsoft Defender for Endpoint entities where you can create API calls to. 
+description: Learn about the specific supported Microsoft Defender for Endpoint entities where you can create API calls to.
 keywords: apis, supported apis, actor, alerts, device, user, domain, ip, file, advanced queries, advanced hunting
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Supported Microsoft Defender for Endpoint APIs
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index e9735e3e07..ab3344e02c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Use these examples of Open Data Protocol (OData) queries to help with data access protocols in Microsoft Defender for Endpoint.
 keywords: apis, supported apis, odata, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # OData queries with Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/feedback-loop-blocking.md b/windows/security/threat-protection/microsoft-defender-atp/feedback-loop-blocking.md
index b5ac0c1ea5..709f74bc35 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/feedback-loop-blocking.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/feedback-loop-blocking.md
@@ -8,14 +8,15 @@ author: denisebmsft
 ms.author: deniseb
 manager: dansimp
 ms.reviewer: shwetaj
-audience: ITPro 
-ms.topic: article 
-ms.prod: w10 
+audience: ITPro
+ms.topic: article
+ms.prod: m365-security
 ms.localizationpriority: medium
 ms.custom: 
-- next-gen
-- edr
+  - next-gen
+  - edr
 ms.collection: 
+ms.technology: mde
 ---
 
 # Feedback-loop blocking
diff --git a/windows/security/threat-protection/microsoft-defender-atp/fetch-alerts-mssp.md b/windows/security/threat-protection/microsoft-defender-atp/fetch-alerts-mssp.md
index a4f175566c..bc70d8c0e4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/fetch-alerts-mssp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/fetch-alerts-mssp.md
@@ -4,7 +4,7 @@ description: Learn how to fetch alerts from a customer tenant
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Fetch alerts from MSSP customer tenant
diff --git a/windows/security/threat-protection/microsoft-defender-atp/files.md b/windows/security/threat-protection/microsoft-defender-atp/files.md
index 677387cad1..0fbe833f68 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/files.md
@@ -3,7 +3,7 @@ title: File resource type
 description: Retrieve recent Microsoft Defender for Endpoint alerts related to files.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # File resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
index b94742b61d..b00bf9017d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
@@ -3,7 +3,7 @@ title: Find device information by internal IP API
 description: Use this API to create calls related to finding a device entry around a specific timestamp by internal IP.
 keywords: ip, apis, graph api, supported apis, find device, device information
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Find device information by internal IP API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
index 616dfffb2e..5a461d731b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
@@ -1,9 +1,9 @@
 ---
 title: Find devices by internal IP API
-description: Find devices seen with the requested internal IP in the time range of 15 minutes prior and after a given timestamp 
+description: Find devices seen with the requested internal IP in the time range of 15 minutes prior and after a given timestamp
 keywords: apis, graph api, supported apis, get, device, IP, find, find device, by ip, ip
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Find devices by internal IP API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/fix-unhealthy-sensors.md b/windows/security/threat-protection/microsoft-defender-atp/fix-unhealthy-sensors.md
index ce92f63d99..2ab8c7db1b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/fix-unhealthy-sensors.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/fix-unhealthy-sensors.md
@@ -4,7 +4,7 @@ description: Fix device sensors that are reporting as misconfigured or inactive
 keywords: misconfigured, inactive, fix sensor, sensor health,  no sensor data, sensor data, impaired communications, communication
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ms.date: 11/06/2020
+ms.technology: mde
 ---
 
 # Fix unhealthy sensors in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
index 210a00624f..5177928062 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
@@ -3,7 +3,7 @@ title: Get alert information by ID API
 description: Learn how to use the Get alert information by ID API to retrieve a specific alert by its ID in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, alert, information, id
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert information by ID API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
index 607206740c..9347365103 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
@@ -1,9 +1,9 @@
 ---
-title: Get alert related domains information 
+title: Get alert related domains information
 description: Retrieve all domains related to a specific alert using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, graph api, supported apis, get alert information, alert information, related domain
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert related domain information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
index f95776b987..80dfa7de59 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
@@ -1,9 +1,9 @@
 ---
-title: Get alert related files information 
+title: Get alert related files information
 description: Retrieve all files related to a specific alert using Microsoft Defender Advanced Threat Protection (Microsoft Defender for Endpoint).
 keywords: apis, graph api, supported apis, get alert information, alert information, related files
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert related files information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
index dd5859b46d..b241dd2b72 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
@@ -1,9 +1,9 @@
 ---
-title: Get alert related IPs information 
+title: Get alert related IPs information
 description: Retrieve all IPs related to a specific alert using Microsoft Defender Advanced Threat Protection (Microsoft Defender for Endpoint).
 keywords: apis, graph api, supported apis, get alert information, alert information, related ip
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert related IPs information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index ab1cfd8107..e4850f8d55 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -1,9 +1,9 @@
 ---
-title: Get alert related machine information 
+title: Get alert related machine information
 description: Retrieve all devices related to a specific alert using Microsoft Defender Advanced Threat Protection (Microsoft Defender for Endpoint).
 keywords: apis, graph api, supported apis, get alert information, alert information, related device
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert related machine information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
index c5461ce794..ea89e7158c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
@@ -1,9 +1,9 @@
 ---
-title: Get alert related user information 
+title: Get alert related user information
 description: Learn how to use the Get alert related user information API to retrieve the user related to a specific alert in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, alert, information, related, user
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get alert related user information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
index 687c2dffa2..918af17cc7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
@@ -3,7 +3,7 @@ title: List alerts API
 description: Learn how to use the List alerts API to retrieve a collection of alerts in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List alerts API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
index a076a373b1..9be5af6b31 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
@@ -1,9 +1,9 @@
 ---
 title: List all recommendations
 description: Retrieves a list of all security recommendations affecting the organization.
-keywords: apis, graph api, supported apis, get, security recommendations, mdatp tvm api, threat and vulnerability management, threat and vulnerability management api 
+keywords: apis, graph api, supported apis, get, security recommendations, mdatp tvm api, threat and vulnerability management, threat and vulnerability management api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List all recommendations
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
index 8839180405..73cc542fda 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
@@ -3,7 +3,7 @@ title: Get all vulnerabilities by machine and software
 description: Retrieves a list of all the vulnerabilities affecting the organization by Machine and Software
 keywords: apis, graph api, supported apis, get, vulnerability information, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List vulnerabilities by machine and software
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
index d899f7c360..17f9e97ef1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
@@ -3,7 +3,7 @@ title: Get all vulnerabilities
 description: Retrieves a list of all the vulnerabilities affecting the organization
 keywords: apis, graph api, supported apis, get, vulnerability information, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List vulnerabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
index fb60d09e95..41df827074 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
@@ -4,7 +4,7 @@ description: Learn how to use the Get CVE-KB map API to retrieve a map of CVE's
 keywords: apis, graph api, supported apis, get, cve, kb
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ROBOTS: NOINDEX
+ms.technology: mde
 ---
 
 # Get CVE-KB map API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
index 920e2fab04..b18413a57e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
@@ -3,7 +3,7 @@ title: Get device secure score
 description: Retrieves the organizational device secure score.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ ms.author: ellevin
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get device secure score
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
index 14425d3b01..773a35d073 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
@@ -3,7 +3,7 @@ title: Get discovered vulnerabilities
 description: Retrieves a collection of discovered vulnerabilities related to a given device ID.
 keywords: apis, graph api, supported apis, get, list, file, information, discovered vulnerabilities, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ ms.author: ellevin
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get discovered vulnerabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
index 2ef6ab2307..12f8042a7e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
@@ -3,7 +3,7 @@ title: Get domain related alerts API
 description: Learn how to use the Get domain related alerts API to retrieve alerts related to a given domain address in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, domain, related, alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get domain related alerts API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
index 8c70e05df5..87af94f174 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
@@ -3,7 +3,7 @@ title: Get domain related machines API
 description: Learn how to use the Get domain related machines API to get machines that communicated to or from a domain in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, domain, related, devices
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get domain related machines API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
index a1174ffd17..dda241406d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
@@ -3,7 +3,7 @@ title: Get domain statistics API
 description: Learn how to use the Get domain statistics API to retrieve the statistics on the given domain in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, domain, domain related devices
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get domain statistics API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
index 2dc25a2049..c06627a36f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
@@ -3,7 +3,7 @@ title: Get exposure score
 description: Retrieves the organizational exposure score.
 keywords: apis, graph api, supported apis, get, exposure score, organizational exposure score
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ ms.author: ellevin
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get exposure score
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
index c69bbf38e5..736c3298e2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
@@ -3,7 +3,7 @@ title: Get file information API
 description: Learn how to use the Get file information API to get a file by Sha1, Sha256, or MD5 identifier in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, file, information, sha1, sha256, md5
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get file information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
index e9088291e8..dd23bde922 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
@@ -3,7 +3,7 @@ title: Get file related alerts API
 description: Learn how to use the Get file related alerts API to get a collection of alerts related to a given file hash in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, file, hash
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get file related alerts API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
index 99313ac5c8..981b5352e4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
@@ -3,7 +3,7 @@ title: Get file related machines API
 description: Learn how to use the Get file related machines API to get a collection of machines related to a file hash in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, devices, hash
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get file related machines API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
index d81d9b8af3..45c0c7f97f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
@@ -3,7 +3,7 @@ title: Get file statistics API
 description: Learn how to use the Get file statistics API to retrieve the statistics for the given file in Microsoft Defender for Endpoint.
 keywords: apis, graph api, supported apis, get, file, statistics
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get file statistics API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
index 09233fa7ab..1d74c52f25 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
@@ -3,7 +3,7 @@ title: Get installed software
 description: Retrieves a collection of installed software related to a given device ID.
 keywords: apis, graph api, supported apis, get, list, file, information, software inventory, installed software per device, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get installed software
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
index b58d1ddd9e..47662456ae 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
@@ -3,7 +3,7 @@ title: List Investigations API
 description: Use this API to create calls related to get Investigations collection
 keywords: apis, graph api, supported apis, Investigations collection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List Investigations API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
index 866f046908..74f3ac1b33 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-object.md
@@ -3,7 +3,7 @@ title: Get Investigation object API
 description: Use this API to create calls related to get Investigation object
 keywords: apis, graph api, supported apis, Investigation object
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get Investigation API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
index b18a482d19..ec0bd5533a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
@@ -3,7 +3,7 @@ title: Get IP related alerts API
 description: Retrieve a collection of alerts related to a given IP address using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, graph api, supported apis, get, ip, related, alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get IP related alerts API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index c34fe0e526..e720d2f338 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -3,7 +3,7 @@ title: Get IP statistics API
 description: Get the latest stats for your IP using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, graph api, supported apis, get, ip, statistics, prevalence
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get IP statistics API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
index b3e1d5574a..f108cdfbf6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
@@ -4,7 +4,7 @@ description: Retrieve a collection of knowledge bases (KB's) and KB details with
 keywords: apis, graph api, supported apis, get, kb
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
 ROBOTS: NOINDEX
+ms.technology: mde
 ---
 
 # Get KB collection API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index f46e912d8c..ceac9cc0ed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -3,7 +3,7 @@ title: Get machine by ID API
 description: Learn how to use the Get machine by ID API to retrieve a machine by its device ID or computer name in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, devices, entity, id
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get machine by ID API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
index e13a900af5..f7ea61feb1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
@@ -3,7 +3,7 @@ title: List exposure score by device group
 description: Retrieves a list of exposure scores by device group.
 keywords: apis, graph api, supported apis, get, exposure score, device group, device group exposure score
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ ms.author: ellevin
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List exposure score by device group
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
index 42ceb10f0e..f4730dce02 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
@@ -3,7 +3,7 @@ title: Get machine logon users API
 description: Learn how to use the Get machine logon users API to retrieve a collection of logged on users on a device in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, device, log on, users
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get machine logon users API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
index 86de75298d..cf6f953a00 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
@@ -3,7 +3,7 @@ title: Get machine related alerts API
 description: Learn how to use the Get machine related alerts API to retrieve all alerts related to a specific device in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, devices, related, alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get machine related alerts  API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
index da012c1b41..35d7343116 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
@@ -3,7 +3,7 @@ title: Get MachineAction object API
 description: Learn how to use the Get MachineAction API to retrieve a specific Machine Action by its ID in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, machineaction object
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get machineAction API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
index ec9d161528..11bd89fa3b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
@@ -3,7 +3,7 @@ title: List machineActions API
 description: Learn how to use the List MachineActions API to retrieve a collection of Machine Actions in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, machineaction collection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List MachineActions API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
index 8cb9e3c2d3..cbcb0e0b06 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
@@ -3,7 +3,7 @@ title: List devices by software
 description: Retrieve a list of devices that has this software installed.
 keywords: apis, graph api, supported apis, get, list devices, devices list, list devices by software, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List devices by software
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
index bc0c969c79..35a821c812 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
@@ -3,7 +3,7 @@ title: List devices by vulnerability
 description: Retrieves a list of devices affected by a vulnerability.
 keywords: apis, graph api, supported apis, get, devices list, vulnerable devices, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List devices by vulnerability
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index 6c89d74e65..ad2331e5ab 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -3,7 +3,7 @@ title: List machines API
 description: Learn how to use the List machines API to retrieve a collection of machines that have communicated with Microsoft Defender ATP cloud.
 keywords: apis, graph api, supported apis, get, devices
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List machines API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
index 4f1d4fedec..9565ba0014 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
@@ -4,7 +4,7 @@ description: Retrieve a collection of device security states using Microsoft Def
 keywords: apis, graph api, supported apis, get, device, security, state
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: article 
+ms.collection: M365-security-compliance
+ms.topic: article
+ms.technology: mde
 ---
 
 # Get Machines security states collection API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
index 089381bade..9ac01f22cf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
@@ -3,7 +3,7 @@ title: Get missing KBs by device ID
 description: Retrieves missing security updates by device ID
 keywords: apis, graph api, supported apis, get, list, file, information, device id, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get missing KBs by device ID
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
index a74bad1490..4c037b678e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
@@ -3,7 +3,7 @@ title: Get missing KBs by software ID
 description: Retrieves missing security updates by software ID
 keywords: apis, graph api, supported apis, get, list, file, information, software id, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get missing KBs by software ID
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
index 332e875e6e..ccd17fea22 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
@@ -3,7 +3,7 @@ title: Get package SAS URI API
 description: Use this API to get a URI that allows downloading an investigation package.
 keywords: apis, graph api, supported apis, get package, sas, uri
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get package SAS URI API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
index 3666ef7955..d752962405 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
@@ -1,9 +1,9 @@
 ---
 title: Get recommendation by Id
 description: Retrieves a security recommendation by its ID.
-keywords: apis, graph api, supported apis, get, security recommendation, security recommendation by ID, threat and vulnerability management, threat and vulnerability management api 
+keywords: apis, graph api, supported apis, get, security recommendation, security recommendation by ID, threat and vulnerability management, threat and vulnerability management api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get recommendation by ID
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
index dfec0fb89f..7d46d6e6fe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
@@ -1,9 +1,9 @@
 ---
 title: List devices by recommendation
-description: Retrieves a list of devices associated with the security recommendation. 
-keywords: apis, graph api, supported apis, get, security recommendation for vulnerable devices, threat and vulnerability management, threat and vulnerability management api 
+description: Retrieves a list of devices associated with the security recommendation.
+keywords: apis, graph api, supported apis, get, security recommendation for vulnerable devices, threat and vulnerability management, threat and vulnerability management api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List devices by recommendation
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
index c0adaddae0..4f144b37e3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
@@ -1,9 +1,9 @@
 ---
 title: Get recommendation by software
 description: Retrieves a security recommendation related to a specific software.
-keywords: apis, graph api, supported apis, get, security recommendation, security recommendation for software, threat and vulnerability management, threat and vulnerability management api 
+keywords: apis, graph api, supported apis, get, security recommendation, security recommendation for software, threat and vulnerability management, threat and vulnerability management api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get recommendation by software
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
index 9c06a2df8f..6c606f3bfc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
@@ -1,9 +1,9 @@
 ---
 title: List vulnerabilities by recommendation
 description: Retrieves a list of vulnerabilities associated with the security recommendation.
-keywords: apis, graph api, supported apis, get, list of vulnerabilities, security recommendation, security recommendation for vulnerabilities, threat and vulnerability management, threat and vulnerability management api 
+keywords: apis, graph api, supported apis, get, list of vulnerabilities, security recommendation, security recommendation for vulnerabilities, threat and vulnerability management, threat and vulnerability management api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List vulnerabilities by recommendation
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
index 1cf2a7793b..1d2dfe41dd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
@@ -3,7 +3,7 @@ title: Get security recommendations
 description: Retrieves a collection of security recommendations related to a given device ID.
 keywords: apis, graph api, supported apis, get, list, file, information, security recommendation per device, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get security recommendations
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
index 8c13f1d5da..da3f09fb2d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
@@ -3,7 +3,7 @@ title: Get software by Id
 description: Retrieves a list of exposure scores by device group.
 keywords: apis, graph api, supported apis, get, software, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get software by Id
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
index 2bb098203c..c707f59ef2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
@@ -1,9 +1,9 @@
 ---
-title: List software version distribution 
-description: Retrieves a list of your organization's software version distribution 
+title: List software version distribution
+description: Retrieves a list of your organization's software version distribution
 keywords: apis, graph api, supported apis, get, software version distribution, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List software version distribution 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
index 7629b66bff..95e59d134f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
@@ -3,7 +3,7 @@ title: List software
 description: Retrieves a list of software inventory
 keywords: apis, graph api, supported apis, get, list, file, information, software inventory, threat & vulnerability management api, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List software inventory API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md b/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
index f0151a49db..d126296521 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
@@ -5,7 +5,7 @@ description: Learn the steps and requirements to integrate your solution with Mi
 keywords: partner, integration, solution validation, certification, requirements, member, misa, application portal
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: conceptual 
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Become a Microsoft Defender for Endpoint partner
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
index 5cd725bebe..58cb3f78a5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
@@ -3,7 +3,7 @@ title: List Indicators API
 description: Learn how to use the List Indicators API to retrieve a collection of all active Indicators in Microsoft Defender Advanced Threat Protection.
 keywords: apis, public api, supported apis, Indicators collection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List Indicators API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
index d9af8b76ce..7a7e85e081 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
@@ -3,7 +3,7 @@ title: Get user information API
 description: Learn how to use the Get user information API to retrieve a User entity by key, or user name, in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, user, user information
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get user information API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
index d16cd4cfee..7705c00e4b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
@@ -3,7 +3,7 @@ title: Get user-related alerts API
 description: Retrieve a collection of alerts related to a given user ID using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, graph api, supported apis, get, user, related, alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get user-related alerts API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
index 88a70fd056..7cab2321b4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
@@ -3,7 +3,7 @@ title: Get user-related machines API
 description: Learn how to use the Get user-related machines API to retrieve a collection of devices related to a user ID in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, user, user related alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get user-related machines API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
index abb77af560..c60ff31fdb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
@@ -1,9 +1,9 @@
 ---
 title: List vulnerabilities by software
-description: Retrieve a list of vulnerabilities in the installed software. 
+description: Retrieve a list of vulnerabilities in the installed software.
 keywords: apis, graph api, supported apis, get, vulnerabilities list, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # List vulnerabilities by software
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
index df3bc5a56f..e8cc9c8257 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
@@ -3,7 +3,7 @@ title: Get vulnerability by Id
 description: Retrieves vulnerability information by its ID.
 keywords: apis, graph api, supported apis, get, vulnerability information, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Get vulnerability by ID
diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 7576cf0006..2bde8df0d5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -1,10 +1,10 @@
 ---
-title: Microsoft Defender for Endpoint for US Government customers 
+title: Microsoft Defender for Endpoint for US Government customers
 description: Learn about the requirements and the available Microsoft Defender for Endpoint capabilities for US Government customers
 keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp, endpoint, dod
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for US Government customers
diff --git a/windows/security/threat-protection/microsoft-defender-atp/grant-mssp-access.md b/windows/security/threat-protection/microsoft-defender-atp/grant-mssp-access.md
index f62c3b418f..f5397c26f3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/grant-mssp-access.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/grant-mssp-access.md
@@ -1,10 +1,10 @@
 ---
 title: Grant access to managed security service provider (MSSP)
-description: Take the necessary steps to configure the MSSP integration with Microsoft Defender ATP 
+description: Take the necessary steps to configure the MSSP integration with Microsoft Defender ATP
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Grant managed security service provider (MSSP) access (preview)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
index adc3dd0a3b..7d275ab90b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
@@ -4,7 +4,7 @@ description: Access helpful resources such as links to blogs and other resources
 keywords: Microsoft Defender Security Center, product brief, brief, capabilities, licensing
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: conceptual 
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Helpful Microsoft Defender for Endpoint resources
diff --git a/windows/security/threat-protection/microsoft-defender-atp/import-export-exploit-protection-emet-xml.md b/windows/security/threat-protection/microsoft-defender-atp/import-export-exploit-protection-emet-xml.md
index f496d2d153..73079133a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/import-export-exploit-protection-emet-xml.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/import-export-exploit-protection-emet-xml.md
@@ -4,7 +4,7 @@ description: Use Group Policy to deploy mitigations configuration.
 keywords: Exploit protection, mitigations, import, export, configure, convert, conversion, deploy, install
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -13,6 +13,7 @@ author: levinec
 ms.author: ellevin
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Import, export, and deploy exploit protection configurations
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates.md
index 4c34fbe26c..40baef0411 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates.md
@@ -1,11 +1,11 @@
 ---
-title: Create indicators based on certificates 
+title: Create indicators based on certificates
 ms.reviewer: 
 description: Create indicators based on certificates that define the detection, prevention, and exclusion of entities.
 keywords: ioc, certificate, certificates, manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create indicators based on certificates
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
index 3e7b8c855d..be86647e97 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
@@ -1,11 +1,11 @@
 ---
-title:  Create indicators for files
+title: Create indicators for files
 ms.reviewer: 
 description: Create indicators for a file hash that define the detection, prevention, and exclusion of entities.
 keywords: file, hash, manage, allowed, blocked, whitelist, blacklist, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create indicators for files
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 3ed8df33d8..f238e1f680 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -1,11 +1,11 @@
 ---
-title:  Create indicators for IPs and URLs/domains 
+title: Create indicators for IPs and URLs/domains
 ms.reviewer: 
 description: Create indicators for IPs and URLs/domains that define the detection, prevention, and exclusion of entities.
 keywords: ip, url, domain, manage, allowed, blocked, whitelist, blacklist, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create indicators for IPs and URLs/domains 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
index 569a727336..347e36b6a5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
@@ -5,7 +5,7 @@ description: Manage indicators for a file hash, IP address, URLs, or domains tha
 keywords: import, indicator, list, ioc, csv, manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage indicators
diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-overview.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-overview.md
index 74f53cc04c..1c11db4157 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-overview.md
@@ -1,10 +1,10 @@
 ---
 title: Information protection in Windows overview
-ms.reviewer:
+ms.reviewer: 
 description: Learn about how information protection works in Windows to identify and protect sensitive information
 keywords: information, protection, dlp, data, loss, prevention, protect
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Information protection in Windows overview
diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-investigation.md
index 30a7574c30..6299559448 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-investigation.md
@@ -3,7 +3,7 @@ title: Use sensitivity labels to prioritize incident response
 description: Learn how to use sensitivity labels to prioritize and investigate incidents
 keywords: information, protection, data, loss, prevention,labels, dlp, incident, investigate, investigation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Use sensitivity labels to prioritize incident response  
diff --git a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
index 90bd7b9256..dfb9ea34c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
@@ -3,7 +3,7 @@ title: Start Investigation API
 description: Use this API to start investigation on a device.
 keywords: apis, graph api, supported apis, investigation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Start Investigation API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-alerts.md
index 541f45d7c4..b58e9f2197 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-alerts.md
@@ -4,7 +4,7 @@ description: Use the investigation options to get details on alerts are affectin
 keywords: investigate, investigation, devices, device, alerts queue, dashboard, IP address, file, submit, submissions, deep analysis, timeline, search, domain, URL, IP
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Investigate alerts in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-behind-proxy.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-behind-proxy.md
index 42e6837413..179a53a1fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-behind-proxy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-behind-proxy.md
@@ -4,7 +4,7 @@ description: Learn how to use advanced HTTP level monitoring through network pro
 keywords: proxy, network protection, forward proxy, network events, audit, block, domain names, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Investigate connection events that occur behind forward proxies
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-domain.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-domain.md
index bee61aaabc..5297a8957a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-domain.md
@@ -4,7 +4,7 @@ description: Use the investigation options to see if devices and servers have be
 keywords: investigate domain, domain, malicious domain, microsoft defender atp, alert, URL
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 # Investigate a domain associated with a Microsoft Defender for Endpoint alert
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
index 3ac5eb62bb..0f4a60d9b5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
@@ -4,7 +4,7 @@ description: Use the investigation options to get details on files associated wi
 keywords: investigate, investigation, file, malicious activity, attack motivation, deep analysis, deep analysis report
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Investigate a file associated with a Microsoft Defender for Endpoint alert
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
index 003cb02227..7b03162e01 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
@@ -1,10 +1,10 @@
 ---
 title: Investigate incidents in Microsoft Defender ATP
-description: See associated alerts, manage the incident, and see alert metadata to help you investigate an incident 
+description: See associated alerts, manage the incident, and see alert metadata to help you investigate an incident
 keywords: investigate, incident, alerts, metadata, risk, detection source, affected devices, patterns, correlation
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Investigate incidents in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-ip.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-ip.md
index 3647ff20ed..a9f13f2327 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-ip.md
@@ -4,7 +4,7 @@ description: Use the investigation options to examine possible communication bet
 keywords: investigate, investigation, IP address, alert, microsoft defender atp, external IP
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 
 # Investigate an IP address associated with a Microsoft Defender for Endpoint alert
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-machines.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-machines.md
index 1a47eaf935..5fe4f76ffc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-machines.md
@@ -4,7 +4,7 @@ description: Investigate affected devices by reviewing alerts, network connectio
 keywords: devices, tags, groups, endpoint, alerts queue, alerts, device name, domain, last seen, internal IP, active alerts, threat category, filter, sort, review alerts, network, connection, type, password stealer, ransomware, exploit, threat, low severity, service health
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Investigate devices in the Microsoft Defender for Endpoint Devices list
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-user.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-user.md
index 292ee98eec..694b64620b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-user.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-user.md
@@ -4,7 +4,7 @@ description: Investigate a user account for potential compromised credentials or
 keywords: investigate, account, user, user entity, alert, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
 ms.date: 04/24/2018
+ms.technology: mde
 ---
 # Investigate a user account in Microsoft Defender for Endpoint
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigation.md b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
index d5a2cf97cf..6afbbec900 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
@@ -3,7 +3,7 @@ title: Investigation resource type
 description: Microsoft Defender ATP Investigation entity.
 keywords: apis, graph api, supported apis, get, alerts, investigations
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Investigation resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index 6c50645b1f..d04735e349 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -1,11 +1,11 @@
 ---
 title: Configure Microsoft Defender ATP for iOS features
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for iOS features
 keywords: microsoft, defender, atp, ios, configure, features, ios
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender for Endpoint for iOS features
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-install.md b/windows/security/threat-protection/microsoft-defender-atp/ios-install.md
index 6f0005e8b9..c58faa8d2e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-install.md
@@ -1,11 +1,11 @@
 ---
 title: App-based deployment for Microsoft Defender ATP for iOS
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for iOS using an app
 keywords: microsoft, defender, atp, ios, app, installation, deploy, uninstallation, intune
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender for Endpoint for iOS
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
index bc3acd8fcc..8bea026e5d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
@@ -1,11 +1,11 @@
 ---
 title: Privacy information - Microsoft Defender for Endpoint for iOS
-ms.reviewer:
+ms.reviewer: 
 description: Describes privacy information for Microsoft Defender for Endpoint for iOS
 keywords: microsoft, defender, atp, ios, policy, overview
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Privacy information - Microsoft Defender for Endpoint for iOS
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-terms.md b/windows/security/threat-protection/microsoft-defender-atp/ios-terms.md
index 997e5ed226..aa2cb53ec8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-terms.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-terms.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for iOS Application license terms
-ms.reviewer:
+ms.reviewer: 
 description: Describes the Microsoft Defender ATP for iOS license terms
-keywords: microsoft, defender, atp, iOS, license, terms, application, use, installation, service, feedback, scope, 
+keywords: microsoft, defender, atp, iOS, license, terms, application, use, installation, service, feedback, scope,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,10 +15,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 hideEdit: true
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for iOS application license terms
diff --git a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
index 7d5d12f3e4..00d02c3bfe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
@@ -3,7 +3,7 @@ title: Isolate machine API
 description: Learn how to use the Isolate machine API to isolate a device from accessing external network in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, isolate device
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Isolate machine API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-exclusions.md b/windows/security/threat-protection/microsoft-defender-atp/linux-exclusions.md
index e1e14ad345..34da9afb03 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-exclusions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-exclusions.md
@@ -4,7 +4,7 @@ description: Provide and validate exclusions for Microsoft Defender ATP for Linu
 keywords: microsoft, defender, atp, linux, exclusions, scans, antivirus
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure and validate exclusions for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
index cb813cf147..c45701fbed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
@@ -1,11 +1,11 @@
 ---
 title: Deploy Microsoft Defender ATP for Linux manually
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for Linux manually from the command line.
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender for Endpoint for Linux manually
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
index 35fe0795ab..b0ac68a9e6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
@@ -1,11 +1,11 @@
 ---
 title: Deploy Microsoft Defender ATP for Linux with Ansible
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for Linux using Ansible.
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender for Endpoint for Linux with Ansible
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
index 46100ac983..95fab0a842 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md
@@ -1,11 +1,11 @@
 ---
 title: Deploy Microsoft Defender ATP for Linux with Puppet
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to deploy Microsoft Defender ATP for Linux using Puppet.
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy Microsoft Defender for Endpoint for Linux with Puppet
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
index 2ec4ae0d08..09c10a6802 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-preferences.md
@@ -5,7 +5,7 @@ description: Describes how to configure Microsoft Defender ATP for Linux in ente
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Set preferences for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/linux-privacy.md
index 28afe2d32b..f389dd572e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-privacy.md
@@ -4,7 +4,7 @@ description: Privacy controls, how to configure policy settings that impact priv
 keywords: microsoft, defender, atp, linux, privacy, diagnostic
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Privacy for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-pua.md b/windows/security/threat-protection/microsoft-defender-atp/linux-pua.md
index ff2da099a2..7062258108 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-pua.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-pua.md
@@ -4,7 +4,7 @@ description: Detect and block Potentially Unwanted Applications (PUA) using Micr
 keywords: microsoft, defender, atp, linux, pua, pus
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Detect and block potentially unwanted applications with Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
index b8e1e244b8..ec804b1358 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@@ -5,7 +5,7 @@ description: Describes resources for Microsoft Defender ATP for Linux, including
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Resources
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index fe7f0dbd32..f8853d02af 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -4,7 +4,7 @@ description: Learn how to schedule an automatic scanning time for Microsoft Defe
 keywords: microsoft, defender, atp, linux, scans, antivirus, microsoft defender for endpoint (linux)
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Schedule scans with Microsoft Defender for Endpoint (Linux)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-static-proxy-configuration.md b/windows/security/threat-protection/microsoft-defender-atp/linux-static-proxy-configuration.md
index 6f0bf1667a..7aa2cb9dbe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-static-proxy-configuration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-static-proxy-configuration.md
@@ -5,7 +5,7 @@ description: Describes how to configure Microsoft Defender ATP for static proxy
 keywords: microsoft, defender, atp, linux, installation, proxy
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender for Endpoint for Linux for static proxy discovery
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
index 9e0a8a30c6..2567347f46 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-connectivity.md
@@ -1,11 +1,11 @@
 ---
 title: Troubleshoot cloud connectivity issues for Microsoft Defender ATP for Linux
-ms.reviewer:
+ms.reviewer: 
 description: Troubleshoot cloud connectivity issues for Microsoft Defender ATP for Linux
 keywords: microsoft, defender, atp, linux, cloud, connectivity, communication
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
index af7e797106..3d8a64c5c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-events.md
@@ -4,7 +4,7 @@ description: Troubleshoot missing events or alerts issues in Microsoft Defender
 keywords: microsoft, defender, atp, linux, events
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 mms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot missing events or alerts issues for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
index cf23de1bf6..f9e2cf4acd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
@@ -1,11 +1,11 @@
 ---
 title: Troubleshoot installation issues for Microsoft Defender ATP for Linux
-ms.reviewer:
+ms.reviewer: 
 description: Troubleshoot installation issues for Microsoft Defender ATP for Linux
 keywords: microsoft, defender, atp, linux, installation
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot installation issues for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
index ab5e272c34..483084d117 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
@@ -4,7 +4,7 @@ description: Troubleshoot performance issues in Microsoft Defender ATP for Linux
 keywords: microsoft, defender, atp, linux, performance
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 mms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot performance issues for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-update-MDE-Linux.md b/windows/security/threat-protection/microsoft-defender-atp/linux-update-MDE-Linux.md
index dde0bd8f3a..24da7b0066 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-update-MDE-Linux.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-update-MDE-Linux.md
@@ -4,7 +4,7 @@ description: Learn how to schedule an update of the Microsoft Defender for Endpo
 keywords: microsoft, defender, atp, linux, scans, antivirus, microsoft defender for endpoint (linux)
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Schedule an update of the Microsoft Defender for Endpoint (Linux)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-updates.md b/windows/security/threat-protection/microsoft-defender-atp/linux-updates.md
index 7c9fe1e51e..336214e71b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-updates.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-updates.md
@@ -5,7 +5,7 @@ description: Describes how to deploy updates for Microsoft Defender ATP for Linu
 keywords: microsoft, defender, atp, linux, updates, deploy
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy updates for Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
index d769c548fd..fecdb626d7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-whatsnew.md
@@ -4,7 +4,7 @@ description: List of major changes for Microsoft Defender ATP for Linux.
 keywords: microsoft, defender, atp, linux, whatsnew, release
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: security
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # What's new in Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md b/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
index 8c0898ffc7..2da23f201a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/live-response-command-examples.md
@@ -1,10 +1,10 @@
 ---
 title: Live response command examples
 description: Learn to run basic or advanced live response commands for Microsoft Defender Advanced Threat Protection (ATP) and see examples on how it's used.
-keywords: example, command, cli, remote, shell, connection, live, response, real-time, command, script, remediate, hunt, export, log, drop, download, file 
+keywords: example, command, cli, remote, shell, connection, live, response, real-time, command, script, remediate, hunt, export, log, drop, download, file
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Live response command examples
diff --git a/windows/security/threat-protection/microsoft-defender-atp/live-response.md b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
index ac2f1b09ba..e534ccd9f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/live-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/live-response.md
@@ -1,10 +1,10 @@
 ---
 title: Investigate entities on devices using live response in Microsoft Defender ATP
 description: Access a device using a secure remote shell connection to do investigative work and take immediate response actions on a device in real time.
-keywords: remote, shell, connection, live, response, real-time, command, script, remediate, hunt, export, log, drop, download, file, 
+keywords: remote, shell, connection, live, response, real-time, command, script, remediate, hunt, export, log, drop, download, file,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Investigate entities on devices using live response
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md b/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
index 2e17fbc6fd..818558bc99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
@@ -4,7 +4,7 @@ description: Provide and validate exclusions for Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, exclusions, scans, antivirus
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint  
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure and validate exclusions for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-jamfpro-login.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-jamfpro-login.md
index d1f6337306..bc0711a28e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-jamfpro-login.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-jamfpro-login.md
@@ -4,7 +4,7 @@ description: Log in to Jamf Pro
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamfpro, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Log in to Jamf Pro
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
index 7f15b5ad73..904279814f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
@@ -4,7 +4,7 @@ description: Install Microsoft Defender ATP for macOS manually, from the command
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Manual deployment for Microsoft Defender for Endpoint for macOS
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-intune.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-intune.md
index 319d2756e1..e0cb7de973 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-intune.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-intune.md
@@ -4,7 +4,7 @@ description: Install Microsoft Defender for Endpoint for Mac, using Microsoft In
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Intune-based deployment for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-jamf.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-jamf.md
index fccf7ab83a..45e4130495 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-jamf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-jamf.md
@@ -4,7 +4,7 @@ description: Deploying Microsoft Defender ATP for macOS with Jamf Pro
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamfpro, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploying Microsoft Defender for Endpoint for macOS with Jamf Pro
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-other-mdm.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-other-mdm.md
index 509a722b64..e1befe8407 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-other-mdm.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-with-other-mdm.md
@@ -4,7 +4,7 @@ description: Install Microsoft Defender ATP for Mac on other management solution
 keywords: microsoft, defender, atp, mac, installation, deploy, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deployment with a different Mobile Device Management (MDM) system for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
index d0bde6a3d1..3b011e3606 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
@@ -4,7 +4,7 @@ description: Learn how to set up device groups in Jamf Pro for Microsoft Defende
 keywords: device, group, microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamfpro, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Set up Microsoft c for macOS device groups in Jamf Pro
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-enroll-devices.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-enroll-devices.md
index d6954e0d90..ab77dc10cc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-enroll-devices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-enroll-devices.md
@@ -1,10 +1,10 @@
 ---
-title: Enroll Microsoft Defender ATP for macOS devices into Jamf Pro 
-description: Enroll Microsoft Defender ATP for macOS devices into Jamf Pro 
+title: Enroll Microsoft Defender ATP for macOS devices into Jamf Pro
+description: Enroll Microsoft Defender ATP for macOS devices into Jamf Pro
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamfpro, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Enroll Microsoft Defender for Endpoint for macOS devices into Jamf Pro 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
index 5faeec9c8d..bf4e6038cc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-policies.md
@@ -4,7 +4,7 @@ description: Learn how to set up the Microsoft Defender ATP for macOS policies i
 keywords: policies, microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamfpro, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Set up the Microsoft Defender for Endpoint for macOS policies in Jamf Pro
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md
index 615f212fd6..0c8ecdb75c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md
@@ -4,7 +4,7 @@ description: Configure Microsoft Defender ATP for Mac in enterprise organization
 keywords: microsoft, defender, atp, mac, management, preferences, enterprise, intune, jamf, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint  
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Set preferences for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/mac-privacy.md
index 2bf5eaf608..c77522dac0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-privacy.md
@@ -4,7 +4,7 @@ description: Privacy controls, how to configure policy settings that impact priv
 keywords: microsoft, defender, atp, mac, privacy, diagnostic
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Privacy for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md b/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
index 7668c4bfd0..a83bc01f7a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
@@ -4,7 +4,7 @@ description: Detect and block Potentially Unwanted Applications (PUA) using Micr
 keywords: microsoft, defender, atp, mac, pua, pus
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Detect and block potentially unwanted applications with Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
index b62abb198b..8ab4ccb54a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
@@ -4,7 +4,7 @@ description: Resources for Microsoft Defender ATP for Mac, including how to unin
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection:
-- m365-security-compliance
-- m365initiative-defender-endpoint
+ms.collection: 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Resources for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
index 98d0151efc..b7f2649c73 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
@@ -4,7 +4,7 @@ description: Learn how to schedule an automatic scanning time for Microsoft Defe
 keywords: microsoft, defender, atp, mac, scans, antivirus
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Schedule scans with Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-install.md
index 4df09099cf..a7f4720a58 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-install.md
@@ -4,7 +4,7 @@ description: Troubleshoot installation issues in Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, install
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot installation issues for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
index 9241a56fdf..3cefc80735 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
@@ -4,7 +4,7 @@ description: Troubleshoot kernel extension-related issues in Microsoft Defender
 keywords: microsoft, defender, atp, mac, kernel, extension
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot kernel extension issues in Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-license.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-license.md
index f93f41004d..569887eafb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-license.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-license.md
@@ -4,7 +4,7 @@ description: Troubleshoot license issues in Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, performance
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot license issues for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
index 40e8240cbf..96b85255e0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
@@ -4,7 +4,7 @@ description: Troubleshoot performance issues in Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, performance
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint  
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Troubleshoot performance issues for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
index 73bb94faf9..3d864fb010 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
@@ -4,7 +4,7 @@ description: This topic describes the changes that are must be made in order to
 keywords: microsoft, defender, atp, mac, kernel, system, extensions, catalina
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: security
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ROBOTS: noindex,nofollow
+ms.technology: mde
 ---
 
 # New configuration profiles for macOS Catalina and newer versions of macOS
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
index 79da63c6c7..3e8f336502 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
@@ -4,7 +4,7 @@ description: This article contains instructions for trying out the system extens
 keywords: microsoft, defender, atp, mac, kernel, system, extensions, catalina
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: security
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ROBOTS: noindex,nofollow
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-updates.md b/windows/security/threat-protection/microsoft-defender-atp/mac-updates.md
index 7db11e8873..0efff9d505 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-updates.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-updates.md
@@ -4,7 +4,7 @@ description: Control updates for Microsoft Defender ATP for Mac in enterprise en
 keywords: microsoft, defender, atp, mac, updates, deploy
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Deploy updates for Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 4f5d0daced..617e8532aa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -4,7 +4,7 @@ description: Learn about the major changes for previous versions of Microsoft De
 keywords: microsoft, defender, atp, mac, installation, macos, whatsnew
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: security
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # What's new in Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine-groups.md b/windows/security/threat-protection/microsoft-defender-atp/machine-groups.md
index 3b19a5d4f9..315170192f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine-groups.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine-groups.md
@@ -4,7 +4,7 @@ description: Create device groups and set automated remediation levels on them b
 keywords: device groups, groups, remediation, level, rules, aad group, role, assign, rank
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create and manage device groups
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine-reports.md b/windows/security/threat-protection/microsoft-defender-atp/machine-reports.md
index 45864dd1d6..29250d2e6e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine-reports.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine-reports.md
@@ -4,7 +4,7 @@ description: Track device health state detections, antivirus status, OS platform
 keywords: health state, antivirus, os platform, windows 10 version, version, health, compliance, state
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Device health and compliance report in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine-tags.md b/windows/security/threat-protection/microsoft-defender-atp/machine-tags.md
index 73940895f1..8b7dd420b1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine-tags.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine-tags.md
@@ -4,7 +4,7 @@ description: Use device tags to group devices to capture context and enable dyna
 keywords: tags, device tags, device groups, groups, remediation, level, rules, aad group, role, assign, rank
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create and manage device tags
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index 53bdfe131c..aaf741920d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -3,7 +3,7 @@ title: Machine resource type
 description: Learn about the methods and properties of the Machine resource type in Microsoft Defender Advanced Threat Protection.
 keywords: apis, supported apis, get, machines
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Machine resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
index 4f6e60ca31..8971087180 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
@@ -3,7 +3,7 @@ title: machineAction resource type
 description: Learn about the methods and properties of the MachineAction resource type in Microsoft Defender Advanced Threat Protection.
 keywords: apis, supported apis, get, machineaction, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # MachineAction resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
index efae39c258..6752d4f806 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
@@ -4,7 +4,7 @@ description: Learn about the available features that you can use from the Device
 keywords: sort, filter, export, csv, device name, domain, last seen, internal IP, health state, active alerts, active malware detections, threat category, review alerts, network, connection, malware, type, password stealer, ransomware, exploit, threat, general malware, unwanted software
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # View and organize the Microsoft Defender for Endpoint Devices list
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
index 92810d1d1f..5698863784 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
@@ -4,7 +4,7 @@ description: Change the status of alerts, create suppression rules to hide alert
 keywords: manage alerts, manage, alerts, status, new, in progress, resolved, resolve alerts, suppress, supression, rules, context, history, comments, changes
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage Microsoft Defender for Endpoint alerts
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
index a0a93f2dc7..a6b368617d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
@@ -4,7 +4,7 @@ description: Learn how to manage Microsoft Defender for Endpoint with Configurat
 keywords: post-migration, manage, operations, maintenance, utilization, Configuration Manager, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.topic: article
 ms.date: 09/22/2020
 ms.reviewer: chventou
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
index c9fe3f4c85..ea79eeab2e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
@@ -4,7 +4,7 @@ description: Learn how to manage Microsoft Defender for Endpoint with Group Poli
 keywords: post-migration, manage, operations, maintenance, utilization, PowerShell, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.topic: article
 ms.date: 09/22/2020
 ms.reviewer: chventou
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
index 94a77a1007..0acb66ee5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
@@ -4,7 +4,7 @@ description: Learn how to manage Microsoft Defender for Endpoint with Intune
 keywords: post-migration, manage, operations, maintenance, utilization, intune, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.topic: article
 ms.date: 09/22/2020
 ms.reviewer: chventou
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
index 339857a351..d719b716b1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
@@ -4,7 +4,7 @@ description: Learn how to manage Microsoft Defender for Endpoint with PowerShell
 keywords: post-migration, manage, operations, maintenance, utilization, PowerShell, WMI, MPCmdRun.exe, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.topic: article
 ms.date: 09/22/2020
 ms.reviewer: chventou
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
index 6cabea4054..5c0b3182cf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
@@ -4,7 +4,7 @@ description: Now that you've made the switch to Microsoft Defender for Endpoint,
 keywords: post-migration, manage, operations, maintenance, utilization, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.topic: conceptual
 ms.date: 09/22/2020
 ms.reviewer: chventou
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
index b0ca7217c9..eba504af82 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
@@ -4,7 +4,7 @@ description: Review and approve (or reject) remediation actions following an aut
 keywords: autoir, automated, investigation, detection, dashboard, source, threat types, id, tags, devices, duration, filter export
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
 ms.date: 12/15/2020
+ms.technology: mde
 ---
 
 # Review and approve remediation actions following an automated investigation
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
index a82c4c98cc..a01e6d0c82 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
@@ -4,7 +4,7 @@ description: Enable content analysis and configure the file extension and email
 keywords: automation, file, uploads, content, analysis, file, extension, email, attachment
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage automation file uploads
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
index c60093cd86..ad0b7534bc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
@@ -1,10 +1,10 @@
 ---
 title: Manage automation folder exclusions
-description: Add automation folder exclusions to control the files that are excluded from an automated investigation. 
+description: Add automation folder exclusions to control the files that are excluded from an automated investigation.
 keywords: manage, automation, exclusion, block, clean, malicious
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage automation folder exclusions 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-edr.md b/windows/security/threat-protection/microsoft-defender-atp/manage-edr.md
index 458c0798ce..e3078652a2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-edr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-edr.md
@@ -5,7 +5,7 @@ description:
 keywords: 
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Manage endpoint detection and response capabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md b/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
index 4fa8c2f463..8da70d0d7e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
@@ -1,10 +1,10 @@
 ---
 title: Manage Microsoft Defender ATP incidents
-description: Manage incidents by assigning it, updating its status, or setting its classification. 
+description: Manage incidents by assigning it, updating its status, or setting its classification.
 keywords: incidents, manage, assign, status, classification, true alert, false alert
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage Microsoft Defender for Endpoint incidents
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
index e13c8bff5c..b6cfdd2f4a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
@@ -1,11 +1,11 @@
 ---
 title: Create indicators
-ms.reviewer:
+ms.reviewer: 
 description: Create indicators for a file hash, IP address, URLs, or domains that define the detection, prevention, and exclusion of entities.
 keywords: manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create indicators
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md b/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
index bf6e43d5b2..4c884b71f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
@@ -4,7 +4,7 @@ description: You might need to prevent alerts from appearing in the portal by us
 keywords: manage suppression, rules, rule name, scope, action, alerts, turn on, turn off
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage suppression rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index 913d131857..7fa475efba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -5,7 +5,7 @@ description: Learn about the management tools and API categories in Microsoft De
 keywords: onboarding, api, siem, rbac, access, portal, integration, investigation, response, entities, entity, user context, application context, streaming
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: conceptual 
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Overview of management and APIs 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
index 6977f6f2c9..8ccb856a54 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
@@ -4,7 +4,7 @@ description: Make the switch from McAfee to Microsoft Defender for Endpoint. Rea
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,9 +15,9 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-mcafeemigrate
-- m365solution-overview 
+  - M365-security-compliance
+  - m365solution-mcafeemigrate
+  - m365solution-overview
 ms.topic: conceptual
 ms.custom: migrationguides
 ms.date: 09/22/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
index dd52552ec9..e003046028 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
@@ -4,7 +4,7 @@ description: This is phase 3, Onboard, for migrating from McAfee to Microsoft De
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,9 +15,9 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-McAfeemigrate
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-McAfeemigrate
+  - m365solution-scenario
 ms.custom: migrationguides
 ms.topic: article
 ms.date: 09/24/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
index 886846f36f..e877489dac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
@@ -4,7 +4,7 @@ description: This is phase 1, Prepare, for migrating from McAfee to Microsoft De
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,9 +15,9 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-mcafeemigrate
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-mcafeemigrate
+  - m365solution-scenario
 ms.topic: article
 ms.custom: migrationguides
 ms.date: 09/22/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
index 432aed7160..5801957ef9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
@@ -4,7 +4,7 @@ description: This is phase 2, Setup, for migrating from McAfee to Microsoft Defe
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,9 +15,9 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-mcafeemigrate
-- m365solution-scenario 
+  - M365-security-compliance
+  - m365solution-mcafeemigrate
+  - m365solution-scenario
 ms.topic: article
 ms.custom: migrationguides
 ms.date: 09/22/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
index 1ec715c5e8..0f3f29d7c0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
@@ -1,11 +1,11 @@
 ---
-title: Configure Microsoft Cloud App Security integration 
+title: Configure Microsoft Cloud App Security integration
 ms.reviewer: 
 description: Learn how to turn on the settings to enable the Microsoft Defender ATP integration with Microsoft Cloud App Security.
 keywords: cloud, app, security, settings, integration, discovery, report
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Microsoft Cloud App Security in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
index 87814b1b25..e3851124d6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
@@ -5,7 +5,7 @@ description: Microsoft Defender Advanced Threat Protection (Microsoft Defender A
 keywords: cloud, app, networking, visibility, usage
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/18/2018
+ms.technology: mde
 ---
 
 # Microsoft Cloud App Security in Defender for Endpoint overview
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
index fc37668b46..d3217034e2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
@@ -4,7 +4,7 @@ description: Microsoft Defender for Endpoint is an enterprise endpoint security
 keywords: introduction to Microsoft Defender for Endpoint, introduction to Microsoft Defender Advanced Threat Protection, introduction to Microsoft Defender ATP, cybersecurity, advanced persistent threat, enterprise security, machine behavioral sensor, cloud security, analytics, threat intelligence, attack surface reduction, next-generation protection, automated investigation and remediation, microsoft threat experts, secure score, advanced hunting, microsoft threat protection, cyber threat hunting
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
index 8fe16c9e8d..f6108d29ae 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for Android
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to install and use Microsoft Defender ATP for Android
 keywords: microsoft, defender, atp, android, installation, deploy, uninstallation, intune
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for Android
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
index 7aa02ac093..dcb323a464 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for iOS overview
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to install and use Microsoft Defender ATP for iOS
 keywords: microsoft, defender, atp, ios, overview, installation, deploy, uninstallation, intune
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for iOS
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
index 18f7835e25..aa76048828 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for Linux
-ms.reviewer:
+ms.reviewer: 
 description: Describes how to install and use Microsoft Defender ATP for Linux.
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection:
-- m365-security-compliance
-- m365initiative-defender-endpoint
+ms.collection: 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for Linux
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 0ec7a8050c..61c7fe0660 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -1,11 +1,11 @@
 ---
 title: Microsoft Defender ATP for Mac
-ms.reviewer:
+ms.reviewer: 
 description: Learn how to install, configure, update, and use Microsoft Defender Advanced Threat Protection for Mac.
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, catalina, mojave, high sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for Mac
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
index b9fff07022..87fcc676b4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
@@ -4,7 +4,7 @@ description: Microsoft Defender Security Center is the portal where you can acce
 keywords: windows, defender, security, center, defender, advanced, threat, protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender Security Center
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
index d73aa55b7b..12ad2b50bc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
@@ -1,11 +1,11 @@
 ---
-title: Microsoft Threat Experts 
+title: Microsoft Threat Experts
 ms.reviewer: 
 description: Microsoft Threat Experts provides an additional layer of expertise to Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: managed threat hunting service, managed threat hunting, managed detection and response (MDR) service, MTE, Microsoft Threat Experts
 search.product: Windows 10
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Threat Experts
diff --git a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
index 24527c0a89..5b18b5bad9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
@@ -1,21 +1,22 @@
 ---
 title: Migration guides to make the switch to Microsoft Defender for Endpoint
 description: Learn how to make the switch from a non-Microsoft threat protection solution to Microsoft Defender for Endpoint
-search.appverid: MET150    
+search.appverid: MET150
 author: denisebmsft
 ms.author: deniseb
 manager: dansimp
 audience: ITPro
 ms.topic: conceptual
-ms.prod: w10
+ms.prod: m365-security
 ms.localizationpriority: medium
 ms.collection: 
-- M365-security-compliance
-- m365solution-scenario
+  - M365-security-compliance
+  - m365solution-scenario
 ms.custom: migrationguides
 ms.reviewer: chriggs, depicker, yongrhee
-f1.keywords: NOCSH 
+f1.keywords: NOCSH
 ms.date: 09/24/2020
+ms.technology: mde
 ---
 
 # Make the switch to Microsoft Defender for Endpoint and Microsoft Defender Antivirus
diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index be00d43191..7d4ff91ed4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -4,7 +4,7 @@ description: Understand the licensing requirements and requirements for onboardi
 keywords: minimum requirements, licensing, comparison table
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Minimum requirements for Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
index 0bf437cb62..31f6d2de46 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
@@ -1,10 +1,10 @@
 ---
-title: Supported managed security service providers 
+title: Supported managed security service providers
 description: See the list of MSSPs that Microsoft Defender ATP integrates with
 keywords: managed security service provider, mssp, configure, integration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Supported managed security service providers
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
index e6d53ec221..a1e10a6e12 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
@@ -4,7 +4,7 @@ description: Understand how Microsoft Defender ATP integrates with managed secur
 keywords: mssp, integration, managed, security, service, provider
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Managed security service provider partnership opportunities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index ce1b2006f7..7fd98bd981 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -3,7 +3,7 @@ title: Use network protection to help prevent connections to bad sites
 description: Protect your network by preventing users from accessing known malicious and suspicious network addresses
 keywords: Network protection, exploits, malicious website, ip, domain, domains
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,7 +14,7 @@ ms.author: deniseb
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
-
+ms.technology: mde
 ---
 
 # Protect your network
diff --git a/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md b/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
index d0317cd1ba..5cf235d1a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
@@ -4,7 +4,7 @@ description: This new capability uses a game-changing risk-based approach to the
 keywords: threat & vulnerability management, threat and vulnerability management, MDATP TVM, MDATP-TVM, vulnerability management, vulnerability assessment, threat and vulnerability scanning, secure configuration assessment, microsoft defender atp, microsoft defender atp, endpoint vulnerabilities, next generation
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: overview
+ms.technology: mde
 ---
 
 # Threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
index 0cce3c728b..0b951d8070 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
@@ -3,7 +3,7 @@ title: Microsoft Defender ATP for non-Windows platforms
 description: Learn about Microsoft Defender ATP capabilities  for non-Windows platforms
 keywords: non windows, mac, macos, linux, android
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +13,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-evalutatemtp
+  - M365-security-compliance
+  - m365solution-evalutatemtp
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint for non-Windows platforms
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
index b87d77da37..8eef870362 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
@@ -3,7 +3,7 @@ title: Offboard machine API
 description: Learn how to use an API to offboard a device from Windows Defender Advanced Threat Protection (WDATP).
 keywords: apis, graph api, supported apis, collect investigation package
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Offboard machine API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
index 3eb9642bf4..b34544a337 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
@@ -4,7 +4,7 @@ description: Onboard Windows 10 devices, servers, non-Windows devices from the M
 keywords: offboarding, microsoft defender advanced threat protection offboarding, windows atp offboarding
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Offboard devices from the Microsoft Defender for Endpoint service
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
index 1a625303aa..5e9181a051 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
@@ -4,7 +4,7 @@ description: Onboard Windows 10 devices, servers, non-Windows devices and learn
 keywords: onboarding, microsoft defender advanced threat protection onboarding, windows atp onboarding, sccm, group policy, mdm, local script, detection test
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Onboard devices to the Microsoft Defender for Endpoint service
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
index f99a9fbab3..8bf4aa0e07 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
@@ -4,7 +4,7 @@ description: Onboard supported previous versions of Windows devices so that they
 keywords: onboard, windows, 7, 81, oms, sp1, enterprise, pro, down level
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard previous versions of Windows
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
index 0d267cf0ea..eefffe4525 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
@@ -5,7 +5,7 @@ description: Onboard devices without Internet access so that they can send senso
 keywords: onboard, servers, vm, on-premise, oms gateway, log analytics, azure log analytics, mma
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard devices without Internet access to Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard.md b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
index d35f1668f8..8c0015c6fc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
@@ -5,7 +5,7 @@ description: Configure and manage Microsoft Defender ATP capabilities such as at
 keywords: configure, manage, capabilities, attack surface reduction, next-generation protection, security controls, endpoint detection and response, auto investigation and remediation, security controls, controls
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Configure and manage Microsoft Defender for Endpoint capabilities
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
index 8458613991..aad57b1401 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
@@ -3,7 +3,7 @@ title: Onboarding using Microsoft Endpoint Configuration Manager
 description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Endpoint Configuration Manager
 keywords: onboarding, configuration, deploy, deployment, endpoint configuration manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction, microsoft endpoint configuration manager
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-scenario 
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-scenario
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboarding using Microsoft Endpoint Configuration Manager
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 353ba8213d..ee5f9c54a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -3,7 +3,7 @@ title: Onboarding using Microsoft Endpoint Manager
 description: Learn how to onboard to Microsoft Defender for Endpoint using Microsoft Endpoint Manager
 keywords: onboarding, configuration, deploy, deployment, endpoint manager, mdatp, advanced threat protection, collection creation, endpoint detection response, next generation protection, attack surface reduction, microsoft endpoint manager
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-scenario 
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-scenario
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboarding using Microsoft Endpoint Manager
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
index 452f25222e..7c5d617346 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
@@ -1,10 +1,10 @@
 ---
-title: Create an onboarding or offboarding notification rule 
+title: Create an onboarding or offboarding notification rule
 description: Get a notification when a local onboarding or offboarding script is used.
 keywords: onboarding, offboarding, local, script, notification, rule
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create a notification rule when a local onboarding or offboarding script is used
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
index e4a6a6708b..e990c35bcf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
@@ -3,7 +3,7 @@ title: Onboard to the Microsoft Defender ATP service
 description: Learn how to onboard endpoints to Microsoft Defender ATP service
 keywords: 
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,10 +13,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-scenario  
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-scenario
 ms.topic: article
+ms.technology: mde
 ---
 
 # Onboard to the Microsoft Defender for Endpoint service
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
index 6f7a10acf3..60083b17cd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
@@ -5,7 +5,7 @@ description: Learn about the attack surface reduction capabilities of Microsoft
 keywords: asr, attack surface reduction, microsoft defender atp, microsoft defender advanced threat protection, microsoft defender, antivirus, av, windows defender
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ author: denisebmsft
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.custom: asr
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Overview of attack surface reduction
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md b/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
index 9135f4ebe0..2a4e3f129e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
@@ -5,7 +5,7 @@ description: Understand how you can use advanced hunting to create custom detect
 keywords: custom detections, alerts, detection rules, advanced hunting, hunt, query, response actions, interval, mdatp, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Custom detections overview
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
index f79f0792f3..0441772cda 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
@@ -5,7 +5,7 @@ description: Learn about the endpoint detection and response capabilities in Mic
 keywords: 
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Overview of endpoint detection and response
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md b/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
index c1705995b8..0e43599b7f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
@@ -3,7 +3,7 @@ title: Hardware-based isolation (Windows 10)
 ms.reviewer: 
 description: Learn about how hardware-based isolation in Windows 10 helps to combat malware.
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -11,10 +11,11 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.author: macapara
 ms.date: 09/07/2018
+ms.technology: mde
 ---
 
 # Hardware-based isolation in Windows 10
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
index af671e6890..d4b17c7972 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
@@ -1,11 +1,11 @@
 ---
-title: Partner applications in Microsoft Defender ATP   
+title: Partner applications in Microsoft Defender ATP
 ms.reviewer: 
 description: View supported partner applications to enhance the detection, investigation, and threat intelligence capabilities of the platform
 keywords: partners, applications, third-party, connections, sentinelone, lookout, bitdefender, corrata, morphisec, paloalto, ziften, better mobile
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Partner applications in Microsoft Defender for Endpoint 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
index 349dc8d30d..5aae40dce1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
@@ -5,7 +5,7 @@ description: Learn how you can extend existing security offerings on top of the
 keywords: API, partner, extend, open framework, apis, extensions, integrations, detection, management, response, vulnerabilities, intelligence
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: conceptual 
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint partner opportunities and scenarios
diff --git a/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md b/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
index e4679370bb..302c9405a3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
@@ -4,7 +4,7 @@ description: Microsoft Defender Security Center can monitor your enterprise netw
 keywords: Microsoft Defender Security Center, portal, cybersecurity threat intelligence, dashboard, alerts queue, devices list, settings, device management, advanced attacks
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: conceptual 
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender Security Center portal overview
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index ac9c3929ea..237c0e1501 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -3,7 +3,7 @@ title: Submit or Update Indicator API
 description: Learn how to use the Submit or Update Indicator API to submit or update a new Indicator entity in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, submit, ti, indicator, update
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Submit or Update Indicator API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md b/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
index 335e716372..aba7dce04f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
@@ -4,7 +4,7 @@ description: Use the settings page to configure general settings, permissions, a
 keywords: settings, general settings, permissions, apis, rules
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender Security Center settings
diff --git a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
index f93867d6d6..c39bab20ac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
@@ -4,7 +4,7 @@ description: Prepare stakeholder approval, timelines, environment considerations
 keywords: deploy, prepare, stakeholder, timeline, environment, endpoint, server, management, adoption
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-scenario 
-ms.topic: article 
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-scenario
+ms.topic: article
+ms.technology: mde
 ---
 
 # Prepare Microsoft Defender for Endpoint deployment
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md b/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
index 8c1f70f474..f821f26626 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
@@ -4,7 +4,7 @@ description: Turn on the preview experience in Microsoft Defender Advanced Threa
 keywords: advanced features, settings, block file
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 # Turn on the preview experience in Microsoft Defender for Endpoint
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preview.md b/windows/security/threat-protection/microsoft-defender-atp/preview.md
index ef3c2f75b8..508d8c7ff6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preview.md
@@ -4,7 +4,7 @@ description: Learn how to access Microsoft Defender Advanced Threat Protection p
 keywords: preview, preview experience, Microsoft Defender Advanced Threat Protection, features, updates
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint preview features
diff --git a/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md b/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
index 3f5f8aabcc..b773ed3d47 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
@@ -4,7 +4,7 @@ description: Learn how to setup the deployment for Microsoft Defender ATP
 keywords: deploy, setup, licensing validation, tenant configuration, network configuration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,10 +14,11 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-endpointprotect
-- m365solution-scenario 
-ms.topic: article 
+  - M365-security-compliance
+  - m365solution-endpointprotect
+  - m365solution-scenario
+ms.topic: article
+ms.technology: mde
 ---
 
 # Set up Microsoft Defender for Endpoint deployment
diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index ad55a65531..035be361f5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -4,7 +4,7 @@ description: Learn how call an Microsoft Defender for Endpoint API endpoint to p
 keywords: detections, pull detections, rest api, request, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Pull Microsoft Defender for Endpoint detections using SIEM REST API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
index d04e995194..6fe781ca15 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
@@ -1,10 +1,10 @@
 ---
-title: Stream Microsoft Defender Advanced Threat Protection events to Azure Event Hubs 
+title: Stream Microsoft Defender Advanced Threat Protection events to Azure Event Hubs
 description: Learn how to configure Microsoft Defender ATP to stream Advanced Hunting events to your Event Hub.
 keywords: raw data export, streaming API, API, Azure Event Hubs, Azure storage, storage account, Advanced Hunting, raw data sharing
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender for Endpoint to stream Advanced Hunting events to your Azure Event Hubs
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
index 8dae2a2358..84b4d64c9c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
@@ -4,7 +4,7 @@ description: Learn how to configure Microsoft Defender ATP to stream Advanced Hu
 keywords: raw data export, streaming API, API, Event Hubs, Azure storage, storage account, Advanced Hunting, raw data sharing
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Configure Microsoft Defender for Endpoint to stream Advanced Hunting events to your Storage account
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
index d619e6803f..5498729b00 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
@@ -1,10 +1,10 @@
 ---
-title: Stream Microsoft Defender Advanced Threat Protection event 
+title: Stream Microsoft Defender Advanced Threat Protection event
 description: Learn how to configure Microsoft Defender ATP to stream Advanced Hunting events to Event Hubs or Azure storage account
 keywords: raw data export, streaming API, API, Event hubs, Azure storage, storage account, Advanced Hunting, raw data sharing
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Raw Data Streaming API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/rbac.md b/windows/security/threat-protection/microsoft-defender-atp/rbac.md
index 754b84fd55..2cbeaf06af 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/rbac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/rbac.md
@@ -4,7 +4,7 @@ description: Create roles and groups within your security operations to grant ac
 keywords: rbac, role, based, access, control, groups, control, tier, aad
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Manage portal access using role-based access control
diff --git a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
index 6a3c3ce05d..bd7d795620 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
@@ -3,7 +3,7 @@ title: Recommendation methods and properties
 description: Retrieves top recent alerts.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Recommendation resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index 05fd5e59e7..4040df0a11 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -4,7 +4,7 @@ description: Take response actions on file-related alerts by stopping and quaran
 keywords: respond, stop and quarantine, block file, deep analysis
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Take response actions on a file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
index 4bb5a90936..43c6ea2779 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
@@ -4,7 +4,7 @@ description: Take response actions on a device such as isolating devices, collec
 keywords: respond, isolate, isolate device, collect investigation package, action center, restrict, manage tags, av scan, restrict app
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Take response actions on a device
diff --git a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
index 3c91b9c04c..fb99be0444 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
@@ -3,7 +3,7 @@ title: Restrict app execution API
 description: Use this API to create calls related to restricting an application from executing.
 keywords: apis, graph api, supported apis, collect investigation package
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Restrict app execution API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
index f9911e0643..3a560a21fe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
@@ -2,7 +2,7 @@
 title: Review alerts in Microsoft Defender Advanced Threat Protection
 description: Review alert information, including a visualized alert story and details for each step of the chain.
 keywords: incident, incidents, machines, devices, users, alerts, alert, investigation, graph, evidence
-ms.prod: microsoft-365-enterprise
+ms.prod: m365-security
 ms.pagetype: security
 f1.keywords: 
   - NOCSH
@@ -16,6 +16,7 @@ ms.collection:
   - m365initiative-defender-endpoint
 ms.topic: conceptual
 ms.date: 5/1/2020
+ms.technology: mde
 ---
 
 # Review alerts in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index 50b5f9255d..88fddcc27b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Learn to use the advanced hunting API to run advanced queries on Microsoft Defender Advanced Threat Protection. Find out about limitations and see an example.
 keywords: apis, supported apis, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Advanced hunting API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index 247f300dac..3435095384 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Learn the basics of querying the Microsoft Defender Advanced Threat Protection API, using PowerShell.
 keywords: apis, supported apis, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Advanced Hunting using PowerShell
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index 7cda7c8cd9..db8dce54e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -4,7 +4,7 @@ ms.reviewer:
 description: Learn how to query using the Microsoft Defender Advanced Threat Protection API, by using Python, with examples.
 keywords: apis, supported apis, advanced hunting, query
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Advanced Hunting using Python
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index f2d979889c..dda698fd60 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -3,7 +3,7 @@ title: Run antivirus scan API
 description: Use this API to create calls related to running an antivirus scan on a device.
 keywords: apis, graph api, supported apis, remove device from isolation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Run antivirus scan API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md b/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
index 0ade180410..278c62f37e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
@@ -4,7 +4,7 @@ description: Run the detection script on a newly onboarded device to verify that
 keywords: detection test, detection, powershell, script, verify, onboarding, microsoft defender advanced threat protection onboarding, clients, servers, test
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Run a detection test on a newly onboarded Microsoft Defender for Endpoint device 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/score.md b/windows/security/threat-protection/microsoft-defender-atp/score.md
index aab54c586f..16a1f602bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/score.md
@@ -3,7 +3,7 @@ title: Score methods and properties
 description: Retrieves your organization's exposure score, device secure score, and exposure score by device group
 keywords: apis, graph api, supported apis, score, exposure score, device secure score, exposure score by device group
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Score resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
index e0b381b7f9..4215777b33 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
@@ -4,7 +4,7 @@ description: Use the dashboard to identify devices at risk, keep track of the st
 keywords: dashboard, alerts, new, in progress, resolved, risk, devices at risk, infections, reporting, statistics, charts, graphs, health, active malware detections, threat category, categories, password stealer, ransomware, exploit, threat, low severity, active malware
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender Security Center Security operations dashboard
diff --git a/windows/security/threat-protection/microsoft-defender-atp/service-status.md b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
index fb69f1e1c3..e4c2b710e3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/service-status.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
@@ -4,7 +4,7 @@ description: Check Microsoft Defender ATP service health, see if the service is
 keywords: dashboard, service, issues, service health, current status, status history, summary of impact, preliminary root cause, resolution, resolution time, expected resolution time
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Check the Microsoft Defender for Endpoint service health
diff --git a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
index 98266678c3..6f1fe23a4a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
@@ -3,7 +3,7 @@ title: Set device value API
 description: Learn how to specify the value of a device using a Microsoft Defender Advanced Threat Protection API.
 keywords: apis, graph api, supported apis, tags, machine tags
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance  
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Set device value API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/software.md b/windows/security/threat-protection/microsoft-defender-atp/software.md
index a471bd94f2..cbe9c7e0d5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/software.md
@@ -3,7 +3,7 @@ title: Software methods and properties
 description: Retrieves top recent alerts.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Software resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
index 83727872ac..26a77dc157 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
@@ -3,7 +3,7 @@ title: Stop and quarantine file API
 description: Learn how to stop running a file on a device and delete the file in Microsoft Defender Advanced Threat Protection. See an example.
 keywords: apis, graph api, supported apis, stop and quarantine file
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Stop and quarantine file API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md b/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
index 96ca537f4d..111a228fa4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
@@ -1,10 +1,10 @@
 ---
-title: Supported Microsoft Defender Advanced Threat Protection response APIs  
-description: Learn about the specific response-related Microsoft Defender Advanced Threat Protection API calls. 
+title: Supported Microsoft Defender Advanced Threat Protection response APIs
+description: Learn about the specific response-related Microsoft Defender Advanced Threat Protection API calls.
 keywords: response apis, graph api, supported apis, actor, alerts, device, user, domain, ip, file
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Supported Microsoft Defender for Endpoint query APIs 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-migration.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-migration.md
index 0a7421bb95..1780f55497 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-migration.md
@@ -4,7 +4,7 @@ description: Make the switch to Microsoft Defender for Endpoint. Read this artic
 keywords: migration, windows defender advanced endpoint protection, for Endpoint, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,13 +14,14 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-migratetomdatp
-- m365solution-overview 
+  - M365-security-compliance
+  - m365solution-migratetomdatp
+  - m365solution-overview
 ms.topic: conceptual
 ms.custom: migrationguides
 ms.date: 09/24/2020
 ms.reviewer: jesquive, chventou, jonix, chriggs, owtho
+ms.technology: mde
 ---
 
 # Make the switch from a non-Microsoft endpoint solution to Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
index 18422aba57..0f1c89ca89 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
@@ -4,7 +4,7 @@ description: This is phase 3, Onboard, for migrating from a non-Microsoft soluti
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-migratetomdatp
+  - M365-security-compliance
+  - m365solution-migratetomdatp
 ms.custom: migrationguides
 ms.topic: article
 ms.date: 09/24/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
index c55bd95f20..c54aa06438 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
@@ -4,7 +4,7 @@ description: This is phase 1, Prepare, for migrating to Microsoft Defender for E
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-migratetomdatp
+  - M365-security-compliance
+  - m365solution-migratetomdatp
 ms.topic: article
 ms.custom: migrationguides
 ms.date: 09/22/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
index c1ad46027c..1753949339 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
@@ -4,7 +4,7 @@ description: This is phase 2, Setup, for switching to Microsoft Defender for End
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-migratetomdatp
+  - M365-security-compliance
+  - m365solution-migratetomdatp
 ms.topic: article
 ms.custom: migrationguides
 ms.date: 09/22/2020
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
index 0fe3fbf828..c16c24adb2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
@@ -4,7 +4,7 @@ description: Get an overview of how to make the switch from Symantec to Microsof
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,9 +15,9 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-symantecmigrate
-- m365solution-overview 
+  - M365-security-compliance
+  - m365solution-symantecmigrate
+  - m365solution-overview
 ms.topic: conceptual
 ms.date: 09/22/2020
 ms.custom: migrationguides
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
index a80c0ae736..12fa37277d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
@@ -4,7 +4,7 @@ description: This is Phase 3, Onboarding, of migrating from Symantec to Microsof
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-symantecmigrate
+  - M365-security-compliance
+  - m365solution-symantecmigrate
 ms.topic: article
 ms.date: 09/24/2020
 ms.custom: migrationguides
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
index 10e8d99bb4..371303c14f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
@@ -4,7 +4,7 @@ description: This is Phase 1, Prepare, of migrating from Symantec to Microsoft D
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance 
-- m365solution-symantecmigrate
+  - M365-security-compliance
+  - m365solution-symantecmigrate
 ms.topic: article
 ms.date: 09/22/2020
 ms.custom: migrationguides
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
index 72385ecf92..0e99e17b94 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
@@ -4,7 +4,7 @@ description: This is Phase 2, Setup, of migrating from Symantec to Microsoft Def
 keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.technology: windows
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -15,8 +15,8 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- M365-security-compliance
-- m365solution-symantecmigrate 
+  - M365-security-compliance
+  - m365solution-symantecmigrate
 ms.topic: article
 ms.date: 11/30/2020
 ms.custom: migrationguides
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics-analyst-reports.md b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics-analyst-reports.md
index 30c8152b76..d65629d1ca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics-analyst-reports.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics-analyst-reports.md
@@ -2,10 +2,10 @@
 title: Understand the analyst report section in threat analytics
 ms.reviewer: 
 description: Learn about the analyst report section of each threat analytics report. Understand how it provides information about threats, mitigations, detections, advanced hunting queries, and more.
-keywords: analyst report, threat analytics, detections, advanced hunting queries, mitigations, 
+keywords: analyst report, threat analytics, detections, advanced hunting queries, mitigations,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: lomayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Understand the analyst report in threat analytics
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
index 5618f4c5a4..a7163a294f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
@@ -2,10 +2,10 @@
 title: Track and respond to emerging threats with Microsoft Defender ATP threat analytics
 ms.reviewer: 
 description: Learn about emerging threats and attack techniques and how to stop them. Assess their impact to your organization and evaluate your organizational resilience.
-keywords: threat analytics, risk evaluation, OS mitigation, microcode mitigation, mitigation status 
+keywords: threat analytics, risk evaluation, OS mitigation, microcode mitigation, mitigation status
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,9 +15,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Track and respond to emerging threats with threat analytics 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
index 32cb4825cb..3ab66598fc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
@@ -1,10 +1,10 @@
 ---
 title: Event timeline in threat and vulnerability management
-description: Event timeline is a "risk news feed" that helps you interpret how risk is introduced into the organization, and which mitigations happened to reduce it.
+description: Event timeline is a risk news feed that helps you interpret how risk is introduced into the organization, and which mitigations happened to reduce it.
 keywords: event timeline, mdatp event timeline, mdatp tvm event timeline, threat and vulnerability management, Microsoft Defender Advanced Threat Protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Event timeline - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md b/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
index b59077b758..6d076ba18e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
@@ -4,7 +4,7 @@ description: Create custom threat alerts for your organization and learn the con
 keywords: threat intelligence, alert definitions, indicators of compromise, ioc
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Understand threat intelligence concepts
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
index 133bcab341..f825bed722 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
@@ -3,7 +3,7 @@ title: Integrate Microsoft Defender for Endpoint with other Microsoft solutions
 description: Learn how Microsoft Defender for Endpoint integrates with other Microsoft solutions, including Microsoft Defender for Identity and Azure Security Center.
 author: mjcaparas
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 keywords: microsoft 365 defender, conditional access, office, advanced threat protection, microsoft defender for identity, microsoft defender for office, azure security center, microsoft cloud app security, azure sentinel
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -13,8 +13,9 @@ ms.pagetype: security
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Microsoft Defender for Endpoint and other Microsoft solutions
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
index 221de57589..de27be571b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
@@ -4,7 +4,7 @@ description: Track alert detections, categories, and severity using the threat p
 keywords: alert detection, source, alert by category, alert severity, alert classification, determination
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Threat protection report in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
index 39a5774d5c..8d8758f2ff 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
@@ -3,7 +3,7 @@ title: Indicator resource type
 description: Specify the entity details and define the expiration of the indicator using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, supported apis, get, TiIndicator, Indicator, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Indicator resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/time-settings.md b/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
index f8fe1639aa..efce09619a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
@@ -4,7 +4,7 @@ description: Use the info contained here to configure the Microsoft Defender Sec
 keywords: settings, Microsoft Defender, cybersecurity threat intelligence, advanced threat protection, time zone, utc, local time, license
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Microsoft Defender Security Center time zone settings
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
index f860930a0a..8a626f4670 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
@@ -4,7 +4,7 @@ description: Resources and sample code to troubleshoot issues with attack surfac
 keywords: troubleshoot, error, fix, windows defender eg, asr, rules, hips, troubleshoot, audit, exclusion, false positive, broken, blocking, microsoft defender atp, microsoft defender advanced threat protection
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ ms.date: 03/27/2019
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Troubleshoot attack surface reduction rules
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
index 8a53dd2388..a0705e4829 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
@@ -4,7 +4,7 @@ description: Learn how to collect logs using live response to troubleshoot Micro
 keywords: support, log, collect, troubleshoot, live response, liveanalyzer, analyzer, live, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Collect support logs in Microsoft Defender for Endpoint using live response 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
index 3b515a9853..6169ebd01f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
@@ -3,7 +3,7 @@ title: Troubleshoot exploit protection mitigations
 keywords: Exploit protection, mitigations, troubleshoot, import, export, configure, emet, convert, conversion, deploy, install
 description: Learn how to deal with unwanted mitigations in Windows Security, including a process to remove all mitigations and import a baseline configuration file instead.
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.author: dansimp
 ms.date: 08/09/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Troubleshoot exploit protection mitigations
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
index 01ddeadebe..222234bfb9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
@@ -1,10 +1,10 @@
 ---
 title: Troubleshoot Microsoft Defender ATP live response issues
-description: Troubleshoot issues that might arise when using live response in Microsoft Defender ATP 
+description: Troubleshoot issues that might arise when using live response in Microsoft Defender ATP
 keywords: troubleshoot live response, live, response, locked, file
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshoot Microsoft Defender for Endpoint live response issues
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
index 01836bb8c5..00e7f45c28 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
@@ -1,10 +1,10 @@
 ---
-title:  Troubleshoot Microsoft Defender Advanced Threat Protection service issues
+title: Troubleshoot Microsoft Defender Advanced Threat Protection service issues
 description: Find solutions and work arounds to known issues such as server errors when trying to access the service.
 keywords: troubleshoot Microsoft Defender Advanced Threat Protection, troubleshoot Windows ATP, server error, access denied, invalid credentials, no data, dashboard portal, allow, event viewer
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshoot service issues
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
index 522973a893..4bfdccfe50 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
@@ -3,7 +3,7 @@ title: Troubleshoot problems with Network protection
 description: Resources and sample code to troubleshoot issues with Network protection in Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: troubleshoot, error, fix, windows defender eg, asr, rules, hips, troubleshoot, audit, exclusion, false positive, broken, blocking, microsoft defender atp, microsoft defender advanced threat protection
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.author: dansimp
 ms.date: 03/27/2019
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Troubleshoot network protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
index 1ecd70b09d..995a0869a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
@@ -4,7 +4,7 @@ description: Troubleshoot onboarding issues and error message while completing s
 keywords: troubleshoot, troubleshooting, Azure Active Directory, onboarding, error message, error messages, microsoft defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshoot subscription and portal access issues
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
index ff4ab30d14..52bbe320a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
@@ -4,7 +4,7 @@ description: Troubleshoot issues that might arise during the onboarding of devic
 keywords: troubleshoot onboarding, onboarding issues, event viewer, data collection and preview builds, sensor data and diagnostics
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshoot Microsoft Defender for Endpoint onboarding issues
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
index e98e9a3f71..d1f622f732 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
@@ -4,7 +4,7 @@ description: Troubleshoot issues that might arise when using SIEM tools with Mic
 keywords: troubleshoot, siem, client secret, secret
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshoot SIEM tool integration issues
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
index 3e49cdb1c3..ba994dd266 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
@@ -4,7 +4,7 @@ description: Learn how to assign a low, normal, or high value to a device to hel
 keywords: microsoft defender atp device value, threat and vulnerability management device value, high value devices, device value exposure score
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Assign device value - threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
index c1a94e108f..5eea3a7195 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
@@ -1,10 +1,10 @@
 ---
 title: Dashboard insights - threat and vulnerability management
 description: The threat and vulnerability management dashboard can help SecOps and security admins address cybersecurity threats and build their organization's security resilience.
-keywords: mdatp-tvm, mdatp-tvm dashboard, threat & vulnerability management, threat and vulnerability management, risk-based threat & vulnerability management, security configuration, Microsoft Secure Score for Devices, exposure score    
+keywords: mdatp-tvm, mdatp-tvm dashboard, threat & vulnerability management, threat and vulnerability management, risk-based threat & vulnerability management, security configuration, Microsoft Secure Score for Devices, exposure score
 search.appverid: met150
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Dashboard insights - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
index 1b100207a8..c28f1e8ea5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
@@ -4,7 +4,7 @@ description: Discover and plan for software and software versions that are no lo
 keywords: threat and vulnerability management, mdatp tvm security recommendation, cybersecurity recommendation, actionable security recommendation
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Plan for end-of-support software and software versions with threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index 9bb2ff23bb..0a6e51b1a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -1,10 +1,10 @@
 ---
 title: Create and view exceptions for security recommendations - threat and vulnerability management
-description: Create and monitor exceptions for security recommendations in threat and vulnerability management. 
+description: Create and monitor exceptions for security recommendations in threat and vulnerability management.
 keywords: microsoft defender atp tvm remediation, mdatp tvm, threat and vulnerability management, threat & vulnerability management, threat & vulnerability management remediation, tvm remediation intune, tvm remediation sccm
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Create and view exceptions for security recommendations - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
index 45f7973943..4c7a90fef7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
@@ -4,7 +4,7 @@ description: The threat and vulnerability management exposure score reflects how
 keywords: exposure score, mdatp exposure score, mdatp tvm exposure score, organization exposure score, tvm organization exposure score, threat and vulnerability management, Microsoft Defender Advanced Threat Protection
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint  
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Exposure score - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
index 2ce01e4071..9f049bbf57 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
@@ -1,10 +1,10 @@
 ---
-title: 	Hunt for exposed devices 
+title: Hunt for exposed devices
 description: Learn how threat and vulnerability management can be used to help security admins, IT admins, and SecOps collaborate.
-keywords: mdatp-tvm scenarios, mdatp, tvm, tvm scenarios, reduce threat & vulnerability exposure, reduce threat and vulnerability, improve security configuration, increase Microsoft Secure Score for Devices, increase threat & vulnerability Microsoft Secure Score for Devices, Microsoft Secure Score for Devices, exposure score, security controls 
+keywords: mdatp-tvm scenarios, mdatp, tvm, tvm scenarios, reduce threat & vulnerability exposure, reduce threat and vulnerability, improve security configuration, increase Microsoft Secure Score for Devices, increase threat & vulnerability Microsoft Secure Score for Devices, Microsoft Secure Score for Devices, exposure score, security controls
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Hunt for exposed devices - threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
index 36959192bb..ca1b85ec5e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
@@ -4,7 +4,7 @@ description: Your score for devices shows the collective security configuration
 keywords: Microsoft Secure Score for Devices, mdatp Microsoft Secure Score for Devices, secure score, configuration score, threat and vulnerability management, security controls, improvement opportunities, security configuration score over time, security posture, baseline
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Microsoft Secure Score for Devices
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
index ef781abcdd..aabc368193 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
@@ -4,7 +4,7 @@ description: Before you begin using threat and vulnerability management, make su
 keywords: threat & vulnerability management permissions prerequisites, threat and vulnerability management permissions prerequisites, MDATP TVM permissions prerequisites, vulnerability management
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Prerequisites & permissions - threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 2c7a81ec77..baad4cc61d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -1,10 +1,10 @@
 ---
 title: Remediate vulnerabilities with threat and vulnerability management
-description: Remediate security weaknesses discovered through security recommendations, and create exceptions if needed, in threat and vulnerability management. 
+description: Remediate security weaknesses discovered through security recommendations, and create exceptions if needed, in threat and vulnerability management.
 keywords: microsoft defender atp tvm remediation, mdatp tvm, threat and vulnerability management, threat & vulnerability management, threat & vulnerability management remediation, tvm remediation intune, tvm remediation sccm
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Remediate vulnerabilities with threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 1a7f20a55c..5ec3a45841 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -4,7 +4,7 @@ description: Get actionable security recommendations prioritized by threat, like
 keywords: threat and vulnerability management, mdatp tvm security recommendation, cybersecurity recommendation, actionable security recommendation
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Security recommendations - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
index e927418779..f2a3b70362 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
@@ -4,7 +4,7 @@ description: The software inventory page for Microsoft Defender ATP's threat and
 keywords: threat and vulnerability management, microsoft defender atp, microsoft defender atp software inventory, mdatp threat & vulnerability management, mdatp threat & vulnerability management software inventory, mdatp tvm software inventory, tvm software inventory
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Software inventory - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
index d466083c34..5a407a7cb6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
@@ -4,7 +4,7 @@ description: Ensure that you meet the operating system or platform requisites fo
 keywords: threat & vulnerability management, threat and vulnerability management, operating system, platform requirements, prerequisites, mdatp-tvm supported os, mdatp-tvm,
 search.appverid: met150
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 # Supported operating systems and platforms - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
index 5ce499f8fe..9bf4ddccc7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
@@ -4,7 +4,7 @@ description: A report showing vulnerable device trends and current statistics. T
 keywords: mdatp-tvm vulnerable devices, mdatp, tvm, reduce threat & vulnerability exposure, reduce threat and vulnerability, monitor security configuration
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Vulnerable devices report - threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
index e9ead66986..28fb4d19b3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
@@ -1,10 +1,10 @@
 ---
 title: Vulnerabilities in my organization - threat and vulnerability management
-description: Lists the common vulnerabilities and exposures (CVE) ID of weaknesses found in the software running in your organization. Discovered by the Microsoft Defender ATP threat and vulnerability management capability. 
-keywords: mdatp threat & vulnerability management, threat and vulnerability management, mdatp tvm weaknesses page, finding weaknesses through tvm, tvm vulnerability list, vulnerability details in tvm 
+description: Lists the common vulnerabilities and exposures (CVE) ID of weaknesses found in the software running in your organization. Discovered by the Microsoft Defender ATP threat and vulnerability management capability.
+keywords: mdatp threat & vulnerability management, threat and vulnerability management, mdatp tvm weaknesses page, finding weaknesses through tvm, tvm vulnerability list, vulnerability details in tvm
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 # Vulnerabilities in my organization - threat and vulnerability management
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
index 6a90da4f66..2a58bec532 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
@@ -4,7 +4,7 @@ description: Learn how to find and mitigate zero-day vulnerabilities in your env
 keywords: mdatp tvm zero day vulnerabilities, tvm, threat & vulnerability management, zero day, 0-day, mitigate 0 day vulnerabilities, vulnerable CVE
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: article
+ms.technology: mde
 ---
 
 # Mitigate zero-day vulnerabilities - threat and vulnerability management
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
index 2f5e42faa5..2ddc0fa5f4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
@@ -3,7 +3,7 @@ title: Release device from isolation API
 description: Use this API to create calls related to release a device from isolation.
 keywords: apis, graph api, supported apis, remove device from isolation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,9 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
-
+ms.technology: mde
 ---
 
 # Release device from isolation API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
index ef5ea2434a..c8b9276441 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
@@ -3,7 +3,7 @@ title: Remove app restriction API
 description: Use this API to create calls related to removing a restriction from applications from executing.
 keywords: apis, graph api, supported apis, remove device from isolation
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Remove app restriction API
diff --git a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
index 9e142b87bc..4f6423b15e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
@@ -3,7 +3,7 @@ title: Update alert entity API
 description: Learn how to update a Microsoft Defender ATP alert by using this API. You can update the status, determination, classification, and assignedTo properties.
 keywords: apis, graph api, supported apis, get, alert, information, id
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Update alert
diff --git a/windows/security/threat-protection/microsoft-defender-atp/use.md b/windows/security/threat-protection/microsoft-defender-atp/use.md
index eeeba70ccd..777f2b2ae4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/use.md
@@ -4,7 +4,7 @@ description: Learn about the features on Microsoft Defender Security Center, inc
 keywords: dashboard, alerts queue, manage alerts, investigation, investigate alerts, investigate devices, submit files, deep analysis, high, medium, low, severity, ioc, ioa
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Overview of Microsoft Defender Security Center
diff --git a/windows/security/threat-protection/microsoft-defender-atp/user-roles.md b/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
index fa2af61c92..f312b2554c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
@@ -4,7 +4,7 @@ description: Create roles and define the permissions assigned to the role as par
 keywords: user roles, roles, access rbac
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Create and manage roles for role-based access control
diff --git a/windows/security/threat-protection/microsoft-defender-atp/user.md b/windows/security/threat-protection/microsoft-defender-atp/user.md
index 8d75aea649..ed14562c20 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/user.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/user.md
@@ -3,7 +3,7 @@ title: User resource type
 description: Retrieve recent Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) alerts related to users.
 keywords: apis, graph api, supported apis, get, alerts, recent
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # User resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md b/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
index df9ae6390d..887ca33b19 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
@@ -5,7 +5,7 @@ description: See the list of incidents and learn how to apply filters to limit t
 keywords: view, organize, incidents, aggregate, investigations, queue, ttp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,8 +14,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # View and organize the Microsoft Defender for Endpoint Incidents queue
diff --git a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
index 924169d5d8..fa32bd8294 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
@@ -3,7 +3,7 @@ title: Vulnerability methods and properties
 description: Retrieves vulnerability information
 keywords: apis, graph api, supported apis, get, vulnerability
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,8 +12,9 @@ author: DulceMontemayor
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Vulnerability resource type
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
index d8daf9644c..1564652fc4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
@@ -1,10 +1,10 @@
 ---
 title: Web content filtering
 description: Use web content filtering in Microsoft Defender ATP to track and regulate access to websites based on their content categories.
-keywords: web protection, web threat protection, web browsing, monitoring, reports, cards, domain list, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser 
+keywords: web protection, web threat protection, web browsing, monitoring, reports, cards, domain list, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Web content filtering
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
index 8bc1e5811a..835cbc6860 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
@@ -1,10 +1,10 @@
 ---
 title: Monitoring web browsing security in Microsoft Defender ATP
 description: Use web protection in Microsoft Defender ATP to monitor web browsing security
-keywords: web protection, web threat protection, web browsing, monitoring, reports, cards, domain list, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser 
+keywords: web protection, web threat protection, web browsing, monitoring, reports, cards, domain list, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Monitor web browsing security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
index 998d416c2a..052d013832 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
@@ -1,10 +1,10 @@
 ---
 title: Web protection
 description: Learn about web protection in Microsoft Defender ATP and how it can protect your organization
-keywords: web protection, web threat protection, web browsing, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser, malicious websites 
+keywords: web protection, web threat protection, web browsing, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser, malicious websites
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Web protection
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
index 4d52993b4d..3abe8edad9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
@@ -4,7 +4,7 @@ description: Respond to alerts related to malicious and unwanted websites. Under
 keywords: web protection, web threat protection, web browsing, alerts, response, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser, notifications, end users, Windows notifications, blocking page,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Respond to web threats
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/web-threat-protection.md
index f6b119e508..77a0809bf4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-threat-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-threat-protection.md
@@ -1,10 +1,10 @@
 ---
 title: Protect your organization against web threats
 description: Learn about web protection in Microsoft Defender ATP and how it can protect your organization
-keywords: web protection, web threat protection, web browsing, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser 
+keywords: web protection, web threat protection, web browsing, security, phishing, malware, exploit, websites, network protection, Edge, Internet Explorer, Chrome, Firefox, web browser
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,8 +13,9 @@ author: levinec
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
+ms.technology: mde
 ---
 
 # Protect your organization against web threats
diff --git a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
index 43382105c2..1eb35c6079 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
@@ -4,7 +4,7 @@ description: See what features are generally available (GA) in the latest releas
 keywords: what's new in microsoft defender atp, ga, generally available, capabilities, available, new
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: secure
 ms.sitesec: library
 ms.pagetype: security
@@ -14,9 +14,10 @@ ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
 ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
+  - m365-security-compliance
+  - m365initiative-defender-endpoint
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # What's new in Microsoft Defender for Endpoint
diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
index ef53ba233b..ace344e032 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings.md
@@ -2,7 +2,7 @@
 title: Available Microsoft Defender SmartScreen Group Policy and mobile device management (MDM) settings (Windows 10)
 description: A list of all available settings for Microsoft Defender SmartScreen using Group Policy and mobile device management (MDM) settings.
 keywords: SmartScreen Filter, Windows SmartScreen, Microsoft Defender SmartScreen
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 09/28/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 # Available Microsoft Defender SmartScreen Group Policy and mobile device management (MDM) settings
 **Applies to:**
diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
index 0c20744eee..9b7c62b617 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
@@ -2,7 +2,7 @@
 title: Microsoft Defender SmartScreen overview (Windows 10)
 description: Learn how Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.
 keywords: SmartScreen Filter, Windows SmartScreen, Microsoft Defender SmartScreen
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.localizationpriority: high
 ms.date: 11/27/2019
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Microsoft Defender SmartScreen
diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-set-individual-device.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-set-individual-device.md
index 728d759855..6b4f9fc6e2 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-set-individual-device.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-set-individual-device.md
@@ -2,7 +2,7 @@
 title: Set up and use Microsoft Defender SmartScreen on individual devices (Windows 10)
 description: Learn how employees can use Windows Security to set up Microsoft Defender SmartScreen. Microsoft Defender SmartScreen protects users from running malicious apps.
 keywords: SmartScreen Filter, Windows SmartScreen, Microsoft Defender SmartScreen
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 10/13/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: macapara
+ms.technology: mde
 ---
 
 # Set up and use Microsoft Defender SmartScreen on individual devices
diff --git a/windows/security/threat-protection/override-mitigation-options-for-app-related-security-policies.md b/windows/security/threat-protection/override-mitigation-options-for-app-related-security-policies.md
index 3e5cd564fb..c792222c8a 100644
--- a/windows/security/threat-protection/override-mitigation-options-for-app-related-security-policies.md
+++ b/windows/security/threat-protection/override-mitigation-options-for-app-related-security-policies.md
@@ -4,12 +4,13 @@ ms.author: dansimp
 title: Override Process Mitigation Options (Windows 10)
 description: How to use Group Policy to override individual Process Mitigation Options settings and to help enforce specific app-related security policies.
 keywords: Process Mitigation Options, Mitigation Options, Group Policy Mitigation Options
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.pagetype: security
 ms.sitesec: library
 author: dulcemontemayor
 ms.localizationpriority: medium
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
index 7c5371ee9f..3237437499 100644
--- a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
+++ b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
@@ -1,7 +1,7 @@
 ---
 title: Mitigate threats by using Windows 10 security features (Windows 10)
 description: An overview of software and firmware threats faced in the current security landscape, and the mitigations that Windows 10 offers in response to these threats.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -11,6 +11,7 @@ ms.date: 10/13/2017
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Mitigate threats by using Windows 10 security features
diff --git a/windows/security/threat-protection/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md b/windows/security/threat-protection/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md
index 905bf8c06a..00e7c27ee7 100644
--- a/windows/security/threat-protection/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md
+++ b/windows/security/threat-protection/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md
@@ -6,13 +6,14 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 keywords: security, BYOD, malware, device health attestation, mobile
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security, devices
 author: dulcemontemayor
 ms.date: 10/13/2017
 ms.localizationpriority: medium
+ms.technology: mde
 ---
 
 # Control the health of Windows 10-based devices
diff --git a/windows/security/threat-protection/security-compliance-toolkit-10.md b/windows/security/threat-protection/security-compliance-toolkit-10.md
index 9aa1555aa0..fd8ba1f7f9 100644
--- a/windows/security/threat-protection/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/security-compliance-toolkit-10.md
@@ -2,7 +2,7 @@
 title: Microsoft Security Compliance Toolkit 1.0
 description: This article describes how to use the Security Compliance Toolkit in your organization
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/21/2019
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Microsoft Security Compliance Toolkit 1.0
diff --git a/windows/security/threat-protection/security-policy-settings/access-credential-manager-as-a-trusted-caller.md b/windows/security/threat-protection/security-policy-settings/access-credential-manager-as-a-trusted-caller.md
index 073cfbd4cb..152f6711fe 100644
--- a/windows/security/threat-protection/security-policy-settings/access-credential-manager-as-a-trusted-caller.md
+++ b/windows/security/threat-protection/security-policy-settings/access-credential-manager-as-a-trusted-caller.md
@@ -4,7 +4,7 @@ description: Describes best practices, security considerations, and more for the
 ms.assetid: a51820d2-ca5b-47dd-8e9b-d7008603db88
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Access Credential Manager as a trusted caller
diff --git a/windows/security/threat-protection/security-policy-settings/access-this-computer-from-the-network.md b/windows/security/threat-protection/security-policy-settings/access-this-computer-from-the-network.md
index 06d067f006..d20934b1f3 100644
--- a/windows/security/threat-protection/security-policy-settings/access-this-computer-from-the-network.md
+++ b/windows/security/threat-protection/security-policy-settings/access-this-computer-from-the-network.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: f6767bc2-83d1-45f1-847c-54f5362db022
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Access this computer from the network - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md b/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
index 4394099acc..4df87c418a 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: a4167bf4-27c3-4a9b-8ef0-04e3c6ec3aa4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Account lockout duration
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md b/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
index 852449d7ce..26ba3362f0 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
@@ -4,7 +4,7 @@ description: Describes the Account Lockout Policy settings and links to informat
 ms.assetid: eb968c28-17c5-405f-b413-50728cb7b724
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/11/2018
+ms.technology: mde
 ---
 
 # Account Lockout Policy
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md b/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
index d9c2770ad4..d7dacae92e 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 4904bb40-a2bd-4fef-a102-260ba8d74e30
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/02/2018
+ms.technology: mde
 ---
 
 # Account lockout threshold
diff --git a/windows/security/threat-protection/security-policy-settings/account-policies.md b/windows/security/threat-protection/security-policy-settings/account-policies.md
index f740ced849..42f0509874 100644
--- a/windows/security/threat-protection/security-policy-settings/account-policies.md
+++ b/windows/security/threat-protection/security-policy-settings/account-policies.md
@@ -4,7 +4,7 @@ description: An overview of account policies in Windows and provides links to po
 ms.assetid: 711b3797-b87a-4cd9-a2e3-1f8ef18688fb
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Account Policies
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md b/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
index 242f47b39f..983c8abe93 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 71a3bd48-1014-49e0-a936-bfe9433af23e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/01/2017
+ms.technology: mde
 ---
 
 # Accounts: Administrator account status
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md b/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
index 44ba58b22d..999953b0f6 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, management, and sec
 ms.assetid: 94c76f45-057c-4d80-8d01-033cf28ef2f7
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/10/2017
+ms.technology: mde
 ---
 
 # Accounts: Block Microsoft accounts
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md b/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
index 0677dbe5ed..1828f74f0d 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 07e53fc5-b495-4d02-ab42-5b245d10d0ce
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Accounts: Guest account status - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md b/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
index 429a6e932a..88adc7aa01 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
@@ -4,7 +4,7 @@ description: Learn best practices, security considerations, and more for the pol
 ms.assetid: a1bfb58b-1ae8-4de9-832b-aa889a6e64bd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Accounts: Limit local account use of blank passwords to console logon only
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md b/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
index 416c761dd9..1bf1c8e328 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
@@ -4,7 +4,7 @@ description: This security policy reference topic for the IT professional descri
 ms.assetid: d21308eb-7c60-4e48-8747-62b8109844f9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Accounts: Rename administrator account
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md b/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
index 4e136d6fc7..5694b75065 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 9b8052b4-bbb9-4cc1-bfee-ce25390db707
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Accounts: Rename guest account - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/act-as-part-of-the-operating-system.md b/windows/security/threat-protection/security-policy-settings/act-as-part-of-the-operating-system.md
index b32355b82a..dfd593bde8 100644
--- a/windows/security/threat-protection/security-policy-settings/act-as-part-of-the-operating-system.md
+++ b/windows/security/threat-protection/security-policy-settings/act-as-part-of-the-operating-system.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c1b7e084-a9f7-4377-b678-07cc913c8b0c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Act as part of the operating system
diff --git a/windows/security/threat-protection/security-policy-settings/add-workstations-to-domain.md b/windows/security/threat-protection/security-policy-settings/add-workstations-to-domain.md
index e961da2395..c2cfbb9858 100644
--- a/windows/security/threat-protection/security-policy-settings/add-workstations-to-domain.md
+++ b/windows/security/threat-protection/security-policy-settings/add-workstations-to-domain.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management a
 ms.assetid: b0c21af4-c928-4344-b1f1-58ef162ad0b3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Add workstations to domain
diff --git a/windows/security/threat-protection/security-policy-settings/adjust-memory-quotas-for-a-process.md b/windows/security/threat-protection/security-policy-settings/adjust-memory-quotas-for-a-process.md
index fc90fa5e4b..154ecd7c75 100644
--- a/windows/security/threat-protection/security-policy-settings/adjust-memory-quotas-for-a-process.md
+++ b/windows/security/threat-protection/security-policy-settings/adjust-memory-quotas-for-a-process.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 6754a2c8-6d07-4567-9af3-335fd8dd7626
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Adjust memory quotas for a process
diff --git a/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md b/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
index 378bc21d36..0e4d3680f2 100644
--- a/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
@@ -4,7 +4,7 @@ description: This article discusses different methods to administer security pol
 ms.assetid: 7617d885-9d28-437a-9371-171197407599
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Administer security policy settings
diff --git a/windows/security/threat-protection/security-policy-settings/allow-log-on-locally.md b/windows/security/threat-protection/security-policy-settings/allow-log-on-locally.md
index ee0f5f1b86..3bb3d64326 100644
--- a/windows/security/threat-protection/security-policy-settings/allow-log-on-locally.md
+++ b/windows/security/threat-protection/security-policy-settings/allow-log-on-locally.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: d9e5e1f3-3bff-4da7-a9a2-4bb3e0c79055
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Allow log on locally - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/allow-log-on-through-remote-desktop-services.md b/windows/security/threat-protection/security-policy-settings/allow-log-on-through-remote-desktop-services.md
index 518c760a7e..044f3c2fe5 100644
--- a/windows/security/threat-protection/security-policy-settings/allow-log-on-through-remote-desktop-services.md
+++ b/windows/security/threat-protection/security-policy-settings/allow-log-on-through-remote-desktop-services.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: 6267c376-8199-4f2b-ae56-9c5424e76798
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Allow log on through Remote Desktop Services
diff --git a/windows/security/threat-protection/security-policy-settings/audit-audit-the-access-of-global-system-objects.md b/windows/security/threat-protection/security-policy-settings/audit-audit-the-access-of-global-system-objects.md
index ef5a46869a..4015f85f3f 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-audit-the-access-of-global-system-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-audit-the-access-of-global-system-objects.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 20d40a79-ce89-45e6-9bb4-148f83958460
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit: Audit the access of global system objects
diff --git a/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md b/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
index 4c8003e0f3..3c398b2262 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
@@ -4,7 +4,7 @@ description: "Describes the best practices, location, values, and security consi
 ms.assetid: f656a2bb-e8d6-447b-8902-53df3a7756c5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/01/2019
+ms.technology: mde
 ---
 
 # Audit: Audit the use of Backup and Restore privilege
diff --git a/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md b/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
index 023e1eac23..3c64ae947a 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
@@ -4,7 +4,7 @@ description: Learn more about the security policy setting, Audit Force audit pol
 ms.assetid: 8ddc06bc-b6d6-4bac-9051-e0d77035bd4e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings
diff --git a/windows/security/threat-protection/security-policy-settings/audit-policy.md b/windows/security/threat-protection/security-policy-settings/audit-policy.md
index 01e76f7782..351b357bb8 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-policy.md
@@ -4,7 +4,7 @@ description: Provides information about basic audit policies that are available
 ms.assetid: 2e8ea400-e555-43e5-89d6-0898cb89da90
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit Policy
diff --git a/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md b/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
index e9e6d09cf2..6b2a642f91 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 2cd23cd9-0e44-4d0b-a1f1-39fc29303826
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Audit: Shut down system immediately if unable to log security audits
diff --git a/windows/security/threat-protection/security-policy-settings/back-up-files-and-directories.md b/windows/security/threat-protection/security-policy-settings/back-up-files-and-directories.md
index a431f30baf..67a1efe7b8 100644
--- a/windows/security/threat-protection/security-policy-settings/back-up-files-and-directories.md
+++ b/windows/security/threat-protection/security-policy-settings/back-up-files-and-directories.md
@@ -4,7 +4,7 @@ description: Describes the recommended practices, location, values, policy manag
 ms.assetid: 1cd6bdd5-1501-41f4-98b9-acf29ac173ae
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Back up files and directories - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/bypass-traverse-checking.md b/windows/security/threat-protection/security-policy-settings/bypass-traverse-checking.md
index af394cc02a..b82df05bd9 100644
--- a/windows/security/threat-protection/security-policy-settings/bypass-traverse-checking.md
+++ b/windows/security/threat-protection/security-policy-settings/bypass-traverse-checking.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 1c828655-68d3-4140-aa0f-caa903a7087e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Bypass traverse checking
diff --git a/windows/security/threat-protection/security-policy-settings/change-the-system-time.md b/windows/security/threat-protection/security-policy-settings/change-the-system-time.md
index 3729af5440..611c4f29c6 100644
--- a/windows/security/threat-protection/security-policy-settings/change-the-system-time.md
+++ b/windows/security/threat-protection/security-policy-settings/change-the-system-time.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: f2f6637d-acbc-4352-8ca3-ec563f918e65
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Change the system time - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/change-the-time-zone.md b/windows/security/threat-protection/security-policy-settings/change-the-time-zone.md
index 21918a8f75..f9251b7542 100644
--- a/windows/security/threat-protection/security-policy-settings/change-the-time-zone.md
+++ b/windows/security/threat-protection/security-policy-settings/change-the-time-zone.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 3b1afae4-68bb-472f-a43e-49e300d73e50
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Change the time zone - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/create-a-pagefile.md b/windows/security/threat-protection/security-policy-settings/create-a-pagefile.md
index 55281194fb..eaca0ecfbb 100644
--- a/windows/security/threat-protection/security-policy-settings/create-a-pagefile.md
+++ b/windows/security/threat-protection/security-policy-settings/create-a-pagefile.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: dc087897-459d-414b-abe0-cd86c8dccdea
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create a pagefile - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/create-a-token-object.md b/windows/security/threat-protection/security-policy-settings/create-a-token-object.md
index 2aab29e91a..52fb6a0e53 100644
--- a/windows/security/threat-protection/security-policy-settings/create-a-token-object.md
+++ b/windows/security/threat-protection/security-policy-settings/create-a-token-object.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: bfbf52fc-6ba4-442a-9df7-bd277e55729c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create a token object
diff --git a/windows/security/threat-protection/security-policy-settings/create-global-objects.md b/windows/security/threat-protection/security-policy-settings/create-global-objects.md
index 6093dfc046..c29a2716ee 100644
--- a/windows/security/threat-protection/security-policy-settings/create-global-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/create-global-objects.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 9cb6247b-44fc-4815-86f2-cb59b6f0221e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create global objects
diff --git a/windows/security/threat-protection/security-policy-settings/create-permanent-shared-objects.md b/windows/security/threat-protection/security-policy-settings/create-permanent-shared-objects.md
index 99d3c81d18..33b84b4ddd 100644
--- a/windows/security/threat-protection/security-policy-settings/create-permanent-shared-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/create-permanent-shared-objects.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 6a58438d-65ca-4c4a-a584-450eed976649
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create permanent shared objects
diff --git a/windows/security/threat-protection/security-policy-settings/create-symbolic-links.md b/windows/security/threat-protection/security-policy-settings/create-symbolic-links.md
index 696c309ef6..70f390d16a 100644
--- a/windows/security/threat-protection/security-policy-settings/create-symbolic-links.md
+++ b/windows/security/threat-protection/security-policy-settings/create-symbolic-links.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 882922b9-0ff8-4ee9-8afc-4475515ee3fd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create symbolic links
diff --git a/windows/security/threat-protection/security-policy-settings/dcom-machine-access-restrictions-in-security-descriptor-definition-language-sddl-syntax.md b/windows/security/threat-protection/security-policy-settings/dcom-machine-access-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
index dbef4f23b0..8b5c1ba80d 100644
--- a/windows/security/threat-protection/security-policy-settings/dcom-machine-access-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
+++ b/windows/security/threat-protection/security-policy-settings/dcom-machine-access-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the syntax policy setting,
 ms.assetid: 0fe3521a-5252-44df-8a47-8d92cf936e7c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax
diff --git a/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md b/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
index 1e3fb1aac8..46bcee01d5 100644
--- a/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
+++ b/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, DCOM Machi
 ms.assetid: 4b95d45f-dd62-4c34-ba32-43954528dabe
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax
diff --git a/windows/security/threat-protection/security-policy-settings/debug-programs.md b/windows/security/threat-protection/security-policy-settings/debug-programs.md
index 8e9e1de135..ee678fa038 100644
--- a/windows/security/threat-protection/security-policy-settings/debug-programs.md
+++ b/windows/security/threat-protection/security-policy-settings/debug-programs.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 594d9f2c-8ffc-444b-9522-75615ec87786
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Debug programs
diff --git a/windows/security/threat-protection/security-policy-settings/deny-access-to-this-computer-from-the-network.md b/windows/security/threat-protection/security-policy-settings/deny-access-to-this-computer-from-the-network.md
index c7de16a3ed..426bbb78d9 100644
--- a/windows/security/threat-protection/security-policy-settings/deny-access-to-this-computer-from-the-network.md
+++ b/windows/security/threat-protection/security-policy-settings/deny-access-to-this-computer-from-the-network.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: 935e9f89-951b-4163-b186-fc325682bb0b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Deny access to this computer from the network
diff --git a/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-batch-job.md b/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-batch-job.md
index 3705d5c84b..33371b5594 100644
--- a/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-batch-job.md
+++ b/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-batch-job.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 0ac36ebd-5e28-4b6a-9b4e-8924c6ecf44b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Deny log on as a batch job
diff --git a/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-service.md b/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-service.md
index ae1ff7ad09..e93b14011b 100644
--- a/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-service.md
+++ b/windows/security/threat-protection/security-policy-settings/deny-log-on-as-a-service.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: f1114964-df86-4278-9b11-e35c66949794
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Deny log on as a service
diff --git a/windows/security/threat-protection/security-policy-settings/deny-log-on-locally.md b/windows/security/threat-protection/security-policy-settings/deny-log-on-locally.md
index c29d301d15..16aac6c38f 100644
--- a/windows/security/threat-protection/security-policy-settings/deny-log-on-locally.md
+++ b/windows/security/threat-protection/security-policy-settings/deny-log-on-locally.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 00150e88-ec9c-43e1-a70d-33bfe10434db
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Deny log on locally
diff --git a/windows/security/threat-protection/security-policy-settings/deny-log-on-through-remote-desktop-services.md b/windows/security/threat-protection/security-policy-settings/deny-log-on-through-remote-desktop-services.md
index 5ba0488e44..e618426e9d 100644
--- a/windows/security/threat-protection/security-policy-settings/deny-log-on-through-remote-desktop-services.md
+++ b/windows/security/threat-protection/security-policy-settings/deny-log-on-through-remote-desktop-services.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: 84bbb807-287c-4acc-a094-cf0ffdcbca67
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Deny log on through Remote Desktop Services
diff --git a/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md b/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
index b9c5b91f0b..1c8ec83ad6 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 1d403f5d-ad41-4bb4-9f4a-0779c1c14b8c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Devices: Allow undock without having to log on
diff --git a/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md b/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
index 63a755d174..4a2d451bd1 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: d1b42425-7244-4ab1-9d46-d68de823459c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Devices: Allowed to format and eject removable media
diff --git a/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md b/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
index 6b2c51d931..15e9f97f5d 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: ab70a122-f7f9-47e0-ad8c-541f30a27ec3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Devices: Prevent users from installing printer drivers
diff --git a/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md b/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
index 45bae7d793..14b745deaf 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 8b8f44bb-84ce-4f18-af30-ab89910e234d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Devices: Restrict CD-ROM access to locally logged-on user only
diff --git a/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md b/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
index f0de6a47fe..0b64be01ad 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 92997910-da95-4c03-ae6f-832915423898
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Devices: Restrict floppy access to locally logged-on user only
diff --git a/windows/security/threat-protection/security-policy-settings/domain-controller-allow-server-operators-to-schedule-tasks.md b/windows/security/threat-protection/security-policy-settings/domain-controller-allow-server-operators-to-schedule-tasks.md
index 42e3ec17e1..6708f52037 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-controller-allow-server-operators-to-schedule-tasks.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-controller-allow-server-operators-to-schedule-tasks.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 198b12a4-8a5d-48e8-a752-2073b8a2cb0d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain controller: Allow server operators to schedule tasks
diff --git a/windows/security/threat-protection/security-policy-settings/domain-controller-ldap-server-signing-requirements.md b/windows/security/threat-protection/security-policy-settings/domain-controller-ldap-server-signing-requirements.md
index 933e46f0a1..ba471b4b00 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-controller-ldap-server-signing-requirements.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-controller-ldap-server-signing-requirements.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: fe122179-7571-465b-98d0-b8ce0f224390
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain controller: LDAP server signing requirements
diff --git a/windows/security/threat-protection/security-policy-settings/domain-controller-refuse-machine-account-password-changes.md b/windows/security/threat-protection/security-policy-settings/domain-controller-refuse-machine-account-password-changes.md
index 0115f58fc6..7a2193fd9c 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-controller-refuse-machine-account-password-changes.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-controller-refuse-machine-account-password-changes.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 5a7fa2e2-e1a8-4833-90f7-aa83e3b456a9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain controller: Refuse machine account password changes
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
index 065ea3434c..9c02ea6441 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, and security considerations for t
 ms.assetid: 4480c7cb-adca-4f29-b4b8-06eb68d272bf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain member: Digitally encrypt or sign secure channel data (always)
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
index 0540ffa16a..cc788fbe2b 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 73e6023e-0af3-4531-8238-82f0f0e4965b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain member: Digitally encrypt secure channel data (when possible)
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
index e0127d72d7..5d0ee13652 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, and security considerations for t
 ms.assetid: a643e491-4f45-40ea-b12c-4dbe47e54f34
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain member: Digitally sign secure channel data (when possible)
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md b/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
index af37ad2e44..16e25c74bf 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 1f660300-a07a-4243-a09f-140aa1ab8867
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/27/2019
+ms.technology: mde
 ---
 
 # Domain member: Disable machine account password changes
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md b/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
index 1c74391497..ff2d29cc14 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 0ec6f7c1-4d82-4339-94c0-debb2d1ac109
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 05/29/2020
+ms.technology: mde
 ---
 
 # Domain member: Maximum machine account password age
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md b/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
index 9660f69829..544c028497 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, and security considerations for t
 ms.assetid: 5ab8993c-5086-4f09-bc88-1b27454526bd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain member: Require strong (Windows 2000 or later) session key
diff --git a/windows/security/threat-protection/security-policy-settings/enable-computer-and-user-accounts-to-be-trusted-for-delegation.md b/windows/security/threat-protection/security-policy-settings/enable-computer-and-user-accounts-to-be-trusted-for-delegation.md
index 1968ce5913..cd3439ae58 100644
--- a/windows/security/threat-protection/security-policy-settings/enable-computer-and-user-accounts-to-be-trusted-for-delegation.md
+++ b/windows/security/threat-protection/security-policy-settings/enable-computer-and-user-accounts-to-be-trusted-for-delegation.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: 524062d4-1595-41f3-8ce1-9c85fd21497b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Enable computer and user accounts to be trusted for delegation
diff --git a/windows/security/threat-protection/security-policy-settings/enforce-password-history.md b/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
index 43ed37c3fc..796779c714 100644
--- a/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
+++ b/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 8b2ab871-3e52-4dd1-9776-68bb1e935442
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Enforce password history
diff --git a/windows/security/threat-protection/security-policy-settings/enforce-user-logon-restrictions.md b/windows/security/threat-protection/security-policy-settings/enforce-user-logon-restrictions.md
index ac0af26a19..71615ceabb 100644
--- a/windows/security/threat-protection/security-policy-settings/enforce-user-logon-restrictions.md
+++ b/windows/security/threat-protection/security-policy-settings/enforce-user-logon-restrictions.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 5891cb73-f1ec-48b9-b703-39249e48a29f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Enforce user logon restrictions
diff --git a/windows/security/threat-protection/security-policy-settings/force-shutdown-from-a-remote-system.md b/windows/security/threat-protection/security-policy-settings/force-shutdown-from-a-remote-system.md
index fb56241385..e6585a09a3 100644
--- a/windows/security/threat-protection/security-policy-settings/force-shutdown-from-a-remote-system.md
+++ b/windows/security/threat-protection/security-policy-settings/force-shutdown-from-a-remote-system.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 63129243-31ea-42a4-a598-c7064f48a3df
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Force shutdown from a remote system
diff --git a/windows/security/threat-protection/security-policy-settings/generate-security-audits.md b/windows/security/threat-protection/security-policy-settings/generate-security-audits.md
index d6a7cf2241..40e5ca7ef1 100644
--- a/windows/security/threat-protection/security-policy-settings/generate-security-audits.md
+++ b/windows/security/threat-protection/security-policy-settings/generate-security-audits.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c0e1cd80-840e-4c74-917c-5c2349de885f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Generate security audits
diff --git a/windows/security/threat-protection/security-policy-settings/how-to-configure-security-policy-settings.md b/windows/security/threat-protection/security-policy-settings/how-to-configure-security-policy-settings.md
index 3f70c13716..7ad1fc41a6 100644
--- a/windows/security/threat-protection/security-policy-settings/how-to-configure-security-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/how-to-configure-security-policy-settings.md
@@ -4,8 +4,7 @@ description: Describes steps to configure a security policy setting on the local
 ms.assetid: 63b0967b-a9fe-4d92-90af-67469ee20320
 ms.reviewer: 
 ms.author: dansimp
-
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 # Configure security policy settings
 
diff --git a/windows/security/threat-protection/security-policy-settings/impersonate-a-client-after-authentication.md b/windows/security/threat-protection/security-policy-settings/impersonate-a-client-after-authentication.md
index 1d241529ee..c341629510 100644
--- a/windows/security/threat-protection/security-policy-settings/impersonate-a-client-after-authentication.md
+++ b/windows/security/threat-protection/security-policy-settings/impersonate-a-client-after-authentication.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 4cd241e2-c680-4b43-8ed0-3b391925cec5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Impersonate a client after authentication
diff --git a/windows/security/threat-protection/security-policy-settings/increase-a-process-working-set.md b/windows/security/threat-protection/security-policy-settings/increase-a-process-working-set.md
index 1225e25cd9..4473a058bb 100644
--- a/windows/security/threat-protection/security-policy-settings/increase-a-process-working-set.md
+++ b/windows/security/threat-protection/security-policy-settings/increase-a-process-working-set.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: b742ad96-37f3-4686-b8f7-f2b48367105b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Increase a process working set
diff --git a/windows/security/threat-protection/security-policy-settings/increase-scheduling-priority.md b/windows/security/threat-protection/security-policy-settings/increase-scheduling-priority.md
index 5d4835f444..1cd8ae7179 100644
--- a/windows/security/threat-protection/security-policy-settings/increase-scheduling-priority.md
+++ b/windows/security/threat-protection/security-policy-settings/increase-scheduling-priority.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: fbec5973-d35e-4797-9626-d0d56061527f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 2/6/2020
+ms.technology: mde
 ---
 
 # Increase scheduling priority
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
index c9e784c755..eb88a41772 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 9146aa3d-9b2f-47ba-ac03-ff43efb10530
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Display user information when the session is locked
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
index dbb2b2c45b..dc34342e33 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
@@ -1,7 +1,7 @@
 ---
 title: Interactive logon Don't display last signed-in (Windows 10)
 description: Describes the best practices, location, values, and security considerations for the Interactive logon Do not display last user name security policy setting.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.topic: conceptual
 ms.date: 04/19/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Interactive logon: Don't display last signed-in
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
index 47257f0e50..e209f6f824 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 04e2c000-2eb2-4d4b-8179-1e2cb4793e18
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 # Interactive logon: Do not require CTRL+ALT+DEL
 
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
index 84ae5e963d..dc75f23f03 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
@@ -2,9 +2,9 @@
 title: Interactive logon Don't display username at sign-in (Windows 10)
 description: Describes the best practices, location, values, and security considerations for the Interactive logon Don't display username at sign-in security policy setting.
 ms.assetid: 98b24b03-95fe-4edc-8e97-cbdaa8e314fd
-ms.reviewer:
+ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Don't display username at sign-in
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
index 384e9959b1..ea490bea9a 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, management, and security consider
 ms.assetid: ebbd8e22-2611-4ebe-9db9-d49344e631e4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Machine account lockout threshold
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
index 07e009dc0e..b42c080ea0 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, management, and sec
 ms.assetid: 7065b4a9-0d52-41d5-afc4-5aedfc4162b5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/18/2018
+ms.technology: mde
 ---
 
 # Interactive logon: Machine inactivity limit
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
index 61a261c4bd..554fcc6d63 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: fcfe8a6d-ca65-4403-b9e6-2fa017a31c2e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Message text for users attempting to log on
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
index bf4611c235..3f2be2aad0 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: f2596470-4cc0-4ef1-849c-bef9dc3533c6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Message title for users attempting to log on
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
index ebfbd65b83..f1248b1825 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, Interactiv
 ms.assetid: 660e925e-cc3e-4098-a41e-eb8db8062d8d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/27/2018
+ms.technology: mde
 ---
 
 # Interactive logon: Number of previous logons to cache (in case domain controller is not available)
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
index b98d74a6bb..0eada407ca 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
@@ -1,10 +1,10 @@
 ---
-title:  Interactive log-on prompt user to change password before expiration (Windows 10)
+title: Interactive log-on prompt user to change password before expiration (Windows 10)
 description: Best practices and security considerations for an interactive log-on prompt for users to change passwords before expiration.
 ms.assetid: 8fe94781-40f7-4fbe-8cfd-5e116e6833e9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive log on: Prompt the user to change passwords before expiration
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
index 216de3c43e..e08474cde8 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
@@ -4,7 +4,7 @@ description: Best practices security considerations, and more for the policy set
 ms.assetid: 97618ed3-e946-47db-a212-b5e7a4fc6ffc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Require Domain Controller authentication to unlock workstation
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-smart-card.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-smart-card.md
index 33b628cb5e..1235ce1f89 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-smart-card.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-smart-card.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c6a8c040-cbc7-472d-8bc5-579ddf3cbd6c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Require smart card - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
index 3c4204523c..822699cbe5 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: 61487820-9d49-4979-b15d-c7e735999460
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Interactive logon: Smart card removal behavior
diff --git a/windows/security/threat-protection/security-policy-settings/kerberos-policy.md b/windows/security/threat-protection/security-policy-settings/kerberos-policy.md
index b99dec5d92..4dde3dafa0 100644
--- a/windows/security/threat-protection/security-policy-settings/kerberos-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/kerberos-policy.md
@@ -4,7 +4,7 @@ description: Describes the Kerberos Policy settings and provides links to policy
 ms.assetid: 94017dd9-b1a3-4624-af9f-b29161b4bf38
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Kerberos Policy
diff --git a/windows/security/threat-protection/security-policy-settings/load-and-unload-device-drivers.md b/windows/security/threat-protection/security-policy-settings/load-and-unload-device-drivers.md
index d80474a5ab..ece23d6a1b 100644
--- a/windows/security/threat-protection/security-policy-settings/load-and-unload-device-drivers.md
+++ b/windows/security/threat-protection/security-policy-settings/load-and-unload-device-drivers.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 66262532-c610-470c-9792-35ff4389430f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Load and unload device drivers
diff --git a/windows/security/threat-protection/security-policy-settings/lock-pages-in-memory.md b/windows/security/threat-protection/security-policy-settings/lock-pages-in-memory.md
index 9c53d5bb73..9f512271e5 100644
--- a/windows/security/threat-protection/security-policy-settings/lock-pages-in-memory.md
+++ b/windows/security/threat-protection/security-policy-settings/lock-pages-in-memory.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: cc724979-aec0-496d-be4e-7009aef660a3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Lock pages in memory
diff --git a/windows/security/threat-protection/security-policy-settings/log-on-as-a-batch-job.md b/windows/security/threat-protection/security-policy-settings/log-on-as-a-batch-job.md
index 7ad5326697..e4997ab361 100644
--- a/windows/security/threat-protection/security-policy-settings/log-on-as-a-batch-job.md
+++ b/windows/security/threat-protection/security-policy-settings/log-on-as-a-batch-job.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 4eaddb51-0a18-470e-9d3d-5e7cd7970b41
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Log on as a batch job
diff --git a/windows/security/threat-protection/security-policy-settings/log-on-as-a-service.md b/windows/security/threat-protection/security-policy-settings/log-on-as-a-service.md
index 7539cb89c0..a170ea805c 100644
--- a/windows/security/threat-protection/security-policy-settings/log-on-as-a-service.md
+++ b/windows/security/threat-protection/security-policy-settings/log-on-as-a-service.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: acc9a9e0-fd88-4cda-ab54-503120ba1f42
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Log on as a service
diff --git a/windows/security/threat-protection/security-policy-settings/manage-auditing-and-security-log.md b/windows/security/threat-protection/security-policy-settings/manage-auditing-and-security-log.md
index cec2f34a4c..057b9c3219 100644
--- a/windows/security/threat-protection/security-policy-settings/manage-auditing-and-security-log.md
+++ b/windows/security/threat-protection/security-policy-settings/manage-auditing-and-security-log.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 4b946c0d-f904-43db-b2d5-7f0917575347
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Manage auditing and security log
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-service-ticket.md b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-service-ticket.md
index 2ba4e7f98c..4c5b767250 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-service-ticket.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-service-ticket.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 484bf05a-3858-47fc-bc02-6599ca860247
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Maximum lifetime for service ticket
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket-renewal.md b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket-renewal.md
index d4fc263448..4298be4ed3 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket-renewal.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket-renewal.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: f88cd819-3dd1-4e38-b560-13fe6881b609
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Maximum lifetime for user ticket renewal
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket.md b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket.md
index 46cd7ecb25..c9f03e275f 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-lifetime-for-user-ticket.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: bcb4ff59-334d-4c2f-99af-eca2b64011dc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Maximum lifetime for user ticket
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-password-age.md b/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
index 5eacf443c4..18d09c4627 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 2d6e70e7-c8b0-44fb-8113-870c6120871d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Maximum password age
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-tolerance-for-computer-clock-synchronization.md b/windows/security/threat-protection/security-policy-settings/maximum-tolerance-for-computer-clock-synchronization.md
index 880ce8d6ab..98e58336ac 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-tolerance-for-computer-clock-synchronization.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-tolerance-for-computer-clock-synchronization.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: ba2cf59e-d69d-469e-95e3-8e6a0ba643af
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Maximum tolerance for computer clock synchronization
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
index 457ba6494f..f2c0e59130 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
@@ -5,13 +5,14 @@ ms.assetid: 4b7b0298-b130-40f8-960d-60418ba85f76
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 ms.date: 06/28/2018
+ms.technology: mde
 ---
 
 # Microsoft network client: Digitally sign communications (always)
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-send-unencrypted-password-to-third-party-smb-servers.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-send-unencrypted-password-to-third-party-smb-servers.md
index 0eb20f0245..3fca806b68 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-send-unencrypted-password-to-third-party-smb-servers.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-send-unencrypted-password-to-third-party-smb-servers.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the security policy setting
 ms.assetid: 97a76b93-afa7-4dd9-bb52-7c9e289b6017
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-amount-of-idle-time-required-before-suspending-session.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-amount-of-idle-time-required-before-suspending-session.md
index 7bfb786b1e..df04135ddb 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-amount-of-idle-time-required-before-suspending-session.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-amount-of-idle-time-required-before-suspending-session.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: 8227842a-569d-480f-b43c-43450bbaa722
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Microsoft network server: Amount of idle time required before suspending session
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-attempt-s4u2self-to-obtain-claim-information.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-attempt-s4u2self-to-obtain-claim-information.md
index 473585fba5..bf80e3d066 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-attempt-s4u2self-to-obtain-claim-information.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-attempt-s4u2self-to-obtain-claim-information.md
@@ -4,7 +4,7 @@ description: Learn about the security policy setting, Microsoft network server A
 ms.assetid: e4508387-35ed-4a3f-a47c-27f8396adbba
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Microsoft network server: Attempt S4U2Self to obtain claim information
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-digitally-sign-communications-always.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-digitally-sign-communications-always.md
index 2e7b8cc704..aa8327994b 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-digitally-sign-communications-always.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-digitally-sign-communications-always.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 2007b622-7bc2-44e8-9cf1-d34b62117ea8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/21/2018
+ms.technology: mde
 ---
 
 # Microsoft network server: Digitally sign communications (always)
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-disconnect-clients-when-logon-hours-expire.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-disconnect-clients-when-logon-hours-expire.md
index d763e077ca..c63ba1fa9c 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-disconnect-clients-when-logon-hours-expire.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-disconnect-clients-when-logon-hours-expire.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, and security considerations for t
 ms.assetid: 48b5c424-9ba8-416d-be7d-ccaabb3f49af
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Microsoft network server: Disconnect clients when logon hours expire
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-server-spn-target-name-validation-level.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-server-spn-target-name-validation-level.md
index f45ef84792..934085e4f4 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-server-server-spn-target-name-validation-level.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-server-server-spn-target-name-validation-level.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 18337f78-eb45-42fd-bdbd-f8cd02c3e154
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Microsoft network server: Server SPN target name validation level
diff --git a/windows/security/threat-protection/security-policy-settings/minimum-password-age.md b/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
index 9995735537..177a7d0222 100644
--- a/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
@@ -5,13 +5,14 @@ ms.assetid: 91915cb2-1b3f-4fb7-afa0-d03df95e8161
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 ms.date: 11/13/2018
+ms.technology: mde
 ---
 
 # Minimum password age
diff --git a/windows/security/threat-protection/security-policy-settings/minimum-password-length.md b/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
index ae21ed863f..c14de4b2fc 100644
--- a/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
+++ b/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 3d22eb9a-859a-4b6f-82f5-c270c427e17e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Minimum password length
diff --git a/windows/security/threat-protection/security-policy-settings/modify-an-object-label.md b/windows/security/threat-protection/security-policy-settings/modify-an-object-label.md
index 9775374e5e..baa5e9c04b 100644
--- a/windows/security/threat-protection/security-policy-settings/modify-an-object-label.md
+++ b/windows/security/threat-protection/security-policy-settings/modify-an-object-label.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 3e5a97dd-d363-43a8-ae80-452e866ebfd5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Modify an object label
diff --git a/windows/security/threat-protection/security-policy-settings/modify-firmware-environment-values.md b/windows/security/threat-protection/security-policy-settings/modify-firmware-environment-values.md
index 7ad95e9f59..5022db6039 100644
--- a/windows/security/threat-protection/security-policy-settings/modify-firmware-environment-values.md
+++ b/windows/security/threat-protection/security-policy-settings/modify-firmware-environment-values.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 80bad5c4-d9eb-4e3a-a5dc-dcb742b83fca
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Modify firmware environment values
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-allow-anonymous-sidname-translation.md b/windows/security/threat-protection/security-policy-settings/network-access-allow-anonymous-sidname-translation.md
index 0b21eb13c9..b78e43e706 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-allow-anonymous-sidname-translation.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-allow-anonymous-sidname-translation.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management and security co
 ms.assetid: 0144477f-22a6-4d06-b70a-9c9c2196e99e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Allow anonymous SID/Name translation
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares.md b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares.md
index b679530985..23a4d0c815 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the security policy setting
 ms.assetid: 3686788d-4cc7-4222-9163-cbc7c3362d73
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Do not allow anonymous enumeration of SAM accounts and shares
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts.md b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts.md
index e957638eb9..3243d8261b 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 6ee25b33-ad43-4097-b031-7be680f64c7c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Do not allow anonymous enumeration of SAM accounts
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-storage-of-passwords-and-credentials-for-network-authentication.md b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-storage-of-passwords-and-credentials-for-network-authentication.md
index 3668aaef4c..b22b8e05fe 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-storage-of-passwords-and-credentials-for-network-authentication.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-storage-of-passwords-and-credentials-for-network-authentication.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the security policy setting
 ms.assetid: b9b64360-36ea-40fa-b795-2d6558c46563
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Do not allow storage of passwords and credentials for network authentication
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-let-everyone-permissions-apply-to-anonymous-users.md b/windows/security/threat-protection/security-policy-settings/network-access-let-everyone-permissions-apply-to-anonymous-users.md
index 6ea98c4a06..816f4d78b1 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-let-everyone-permissions-apply-to-anonymous-users.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-let-everyone-permissions-apply-to-anonymous-users.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: cdbc5159-9173-497e-b46b-7325f4256353
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Let Everyone permissions apply to anonymous users
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-named-pipes-that-can-be-accessed-anonymously.md b/windows/security/threat-protection/security-policy-settings/network-access-named-pipes-that-can-be-accessed-anonymously.md
index ca8b104079..bb01d6c117 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-named-pipes-that-can-be-accessed-anonymously.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-named-pipes-that-can-be-accessed-anonymously.md
@@ -4,7 +4,7 @@ description: Describes best practices, security considerations and more for the
 ms.assetid: 8897d2a4-813e-4d2b-8518-fcee71e1cf2c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Named Pipes that can be accessed anonymously
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths-and-subpaths.md b/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths-and-subpaths.md
index a221329ce9..078753c170 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths-and-subpaths.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths-and-subpaths.md
@@ -4,7 +4,7 @@ description: Describes best practices, location, values, and security considerat
 ms.assetid: 3fcbbf70-a002-4f85-8e86-8dabad21928e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Remotely accessible registry paths and subpaths
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths.md b/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths.md
index 62e028051b..ab9370f9dd 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-remotely-accessible-registry-paths.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management and security co
 ms.assetid: 977f86ea-864f-4f1b-9756-22220efce0bd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Remotely accessible registry paths
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-restrict-anonymous-access-to-named-pipes-and-shares.md b/windows/security/threat-protection/security-policy-settings/network-access-restrict-anonymous-access-to-named-pipes-and-shares.md
index 7f2010f35f..9fea7c3077 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-restrict-anonymous-access-to-named-pipes-and-shares.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-restrict-anonymous-access-to-named-pipes-and-shares.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: e66cd708-7322-4d49-9b57-1bf8ec7a4c10
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Restrict anonymous access to Named Pipes and Shares
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md b/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
index c93ec93b11..fdcc0c6faf 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
@@ -1,7 +1,7 @@
 ---
 title: Network access - Restrict clients allowed to make remote calls to SAM
 description: Security policy setting that controls which users can enumerate users and groups in the local Security Accounts Manager (SAM) database.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: explore
 ms.sitesec: library
 ms.pagetype: security
@@ -11,6 +11,7 @@ ms.date: 09/17/2018
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Network access: Restrict clients allowed to make remote calls to SAM
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-shares-that-can-be-accessed-anonymously.md b/windows/security/threat-protection/security-policy-settings/network-access-shares-that-can-be-accessed-anonymously.md
index 1fbdd1c98d..125d609e61 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-shares-that-can-be-accessed-anonymously.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-shares-that-can-be-accessed-anonymously.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations, and more for t
 ms.assetid: f3e4b919-8279-4972-b415-5f815e2f0a1a
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Shares that can be accessed anonymously
diff --git a/windows/security/threat-protection/security-policy-settings/network-access-sharing-and-security-model-for-local-accounts.md b/windows/security/threat-protection/security-policy-settings/network-access-sharing-and-security-model-for-local-accounts.md
index 8ae8bcfd3d..359010211d 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-sharing-and-security-model-for-local-accounts.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-sharing-and-security-model-for-local-accounts.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 0b3d703c-ea27-488f-8f59-b345af75b994
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network access: Sharing and security model for local accounts
diff --git a/windows/security/threat-protection/security-policy-settings/network-list-manager-policies.md b/windows/security/threat-protection/security-policy-settings/network-list-manager-policies.md
index 4ac7af5f3c..69ecb0c119 100644
--- a/windows/security/threat-protection/security-policy-settings/network-list-manager-policies.md
+++ b/windows/security/threat-protection/security-policy-settings/network-list-manager-policies.md
@@ -4,7 +4,7 @@ description: Network List Manager policies are security settings that configure
 ms.assetid: bd8109d4-b07c-4beb-a9a6-affae2ba2fda
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network List Manager policies
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-allow-local-system-to-use-computer-identity-for-ntlm.md b/windows/security/threat-protection/security-policy-settings/network-security-allow-local-system-to-use-computer-identity-for-ntlm.md
index 4d792d0457..40a53c2736 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-allow-local-system-to-use-computer-identity-for-ntlm.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-allow-local-system-to-use-computer-identity-for-ntlm.md
@@ -4,7 +4,7 @@ description: Location, values, policy management, and security considerations fo
 ms.assetid: c46a658d-b7a4-4139-b7ea-b9268c240053
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Allow Local System to use computer identity for NTLM
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-allow-localsystem-null-session-fallback.md b/windows/security/threat-protection/security-policy-settings/network-security-allow-localsystem-null-session-fallback.md
index 2a4db2ba09..3f67d9dfbf 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-allow-localsystem-null-session-fallback.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-allow-localsystem-null-session-fallback.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 5b72edaa-bec7-4572-b6f0-648fc38f5395
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Allow LocalSystem NULL session fallback
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md b/windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md
index 14f67ae3d2..716b1da171 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md
@@ -4,7 +4,7 @@ description: Best practices for the Network Security Allow PKU2U authentication
 ms.assetid: e04a854e-d94d-4306-9fb3-56e9bd7bb926
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Allow PKU2U authentication requests to this computer to use online identities
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-configure-encryption-types-allowed-for-kerberos.md b/windows/security/threat-protection/security-policy-settings/network-security-configure-encryption-types-allowed-for-kerberos.md
index 51a84cfb6f..d6813adc8f 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-configure-encryption-types-allowed-for-kerberos.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-configure-encryption-types-allowed-for-kerberos.md
@@ -4,7 +4,7 @@ description: Best practices, location, values and security considerations for th
 ms.assetid: 303d32cc-415b-44ba-96c0-133934046ece
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Configure encryption types allowed for Kerberos
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-do-not-store-lan-manager-hash-value-on-next-password-change.md b/windows/security/threat-protection/security-policy-settings/network-security-do-not-store-lan-manager-hash-value-on-next-password-change.md
index 32ad4fc2b7..23140d7b81 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-do-not-store-lan-manager-hash-value-on-next-password-change.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-do-not-store-lan-manager-hash-value-on-next-password-change.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 6452b268-e5ba-4889-9d38-db28f919af51
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Do not store LAN Manager hash value on next password change
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-force-logoff-when-logon-hours-expire.md b/windows/security/threat-protection/security-policy-settings/network-security-force-logoff-when-logon-hours-expire.md
index 9abafe6715..d82ba2d356 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-force-logoff-when-logon-hours-expire.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-force-logoff-when-logon-hours-expire.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: 64d5dde4-58e4-4217-b2c4-73bd554ec926
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Force logoff when logon hours expire
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level.md b/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level.md
index 8cf1d1ef2a..90ab68bf7a 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management and security co
 ms.assetid: bbe1a98c-420a-41e7-9d3c-3a2fe0f1843e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: LAN Manager authentication level
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-ldap-client-signing-requirements.md b/windows/security/threat-protection/security-policy-settings/network-security-ldap-client-signing-requirements.md
index 2e91b3b1b6..deb400f637 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-ldap-client-signing-requirements.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-ldap-client-signing-requirements.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management and security co
 ms.assetid: 38b35489-eb5b-4035-bc87-df63de50509c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: LDAP client signing requirements
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-clients.md b/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-clients.md
index 5a6ed1a602..7da3832813 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-clients.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-clients.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, Network se
 ms.assetid: 89903de8-23d0-4e0f-9bef-c00cb7aebf00
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 07/27/2017
+ms.technology: mde
 ---
 
 # Network security: Minimum session security for NTLM SSP based (including secure RPC) clients
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-servers.md b/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-servers.md
index aa05ac30a3..fd5bcf7731 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-servers.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-minimum-session-security-for-ntlm-ssp-based-including-secure-rpc-servers.md
@@ -4,7 +4,7 @@ description: Best practices and security considerations for the policy setting,
 ms.assetid: c6a60c1b-bc8d-4d02-9481-f847a411b4fc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Minimum session security for NTLM SSP based (including secure RPC) servers
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-remote-server-exceptions-for-ntlm-authentication.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-remote-server-exceptions-for-ntlm-authentication.md
index f45e969f85..4f61542115 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-remote-server-exceptions-for-ntlm-authentication.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-remote-server-exceptions-for-ntlm-authentication.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: 9b017399-0a54-4580-bfae-614c2beda3a1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-server-exceptions-in-this-domain.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-server-exceptions-in-this-domain.md
index 190741c9b6..ad33075c6d 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-server-exceptions-in-this-domain.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-add-server-exceptions-in-this-domain.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 2f981b68-6aa7-4dd9-b53d-d88551277cc0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Add server exceptions in this domain
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-incoming-ntlm-traffic.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-incoming-ntlm-traffic.md
index 573acd03e5..466fe77336 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-incoming-ntlm-traffic.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-incoming-ntlm-traffic.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations and more for the security p
 ms.assetid: 37e380c2-22e1-44cd-9993-e12815b845cf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Audit incoming NTLM traffic
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-ntlm-authentication-in-this-domain.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-ntlm-authentication-in-this-domain.md
index 872e3aaf36..595f2d660a 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-ntlm-authentication-in-this-domain.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-audit-ntlm-authentication-in-this-domain.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 33183ef9-53b5-4258-8605-73dc46335e6e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Audit NTLM authentication in this domain
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-incoming-ntlm-traffic.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-incoming-ntlm-traffic.md
index 2b0c20bc29..1c4ca789c3 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-incoming-ntlm-traffic.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-incoming-ntlm-traffic.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: c0eff7d3-ed59-4004-908a-2205295fefb8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Incoming NTLM traffic
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-ntlm-authentication-in-this-domain.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-ntlm-authentication-in-this-domain.md
index a88bb90887..947f4ab587 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-ntlm-authentication-in-this-domain.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-ntlm-authentication-in-this-domain.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: 4c7884e9-cc11-4402-96b6-89c77dc908f8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: NTLM authentication in this domain
diff --git a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-outgoing-ntlm-traffic-to-remote-servers.md b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-outgoing-ntlm-traffic-to-remote-servers.md
index 582a95f107..1a547615d6 100644
--- a/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-outgoing-ntlm-traffic-to-remote-servers.md
+++ b/windows/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-outgoing-ntlm-traffic-to-remote-servers.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: 63437a90-764b-4f06-aed8-a4a26cf81bd1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers
diff --git a/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md b/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
index c1ccd042f6..c40865f9da 100644
--- a/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
+++ b/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 94482ae3-9dda-42df-9782-2f66196e6afe
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Password must meet complexity requirements
diff --git a/windows/security/threat-protection/security-policy-settings/password-policy.md b/windows/security/threat-protection/security-policy-settings/password-policy.md
index 4e9a967608..d0a560e42b 100644
--- a/windows/security/threat-protection/security-policy-settings/password-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/password-policy.md
@@ -4,7 +4,7 @@ description: An overview of password policies for Windows and links to informati
 ms.assetid: aec1220d-a875-4575-9050-f02f9c54a3b6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Password Policy
diff --git a/windows/security/threat-protection/security-policy-settings/perform-volume-maintenance-tasks.md b/windows/security/threat-protection/security-policy-settings/perform-volume-maintenance-tasks.md
index 185ef547a9..44ce6c881a 100644
--- a/windows/security/threat-protection/security-policy-settings/perform-volume-maintenance-tasks.md
+++ b/windows/security/threat-protection/security-policy-settings/perform-volume-maintenance-tasks.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: b6990813-3898-43e2-8221-c9c06d893244
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Perform volume maintenance tasks
diff --git a/windows/security/threat-protection/security-policy-settings/profile-single-process.md b/windows/security/threat-protection/security-policy-settings/profile-single-process.md
index 3ea61190ff..fc3af3e372 100644
--- a/windows/security/threat-protection/security-policy-settings/profile-single-process.md
+++ b/windows/security/threat-protection/security-policy-settings/profile-single-process.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c0963de4-4f5e-430e-bfcd-dfd68e66a075
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Profile single process
diff --git a/windows/security/threat-protection/security-policy-settings/profile-system-performance.md b/windows/security/threat-protection/security-policy-settings/profile-system-performance.md
index c39e1de1d2..37a46be943 100644
--- a/windows/security/threat-protection/security-policy-settings/profile-system-performance.md
+++ b/windows/security/threat-protection/security-policy-settings/profile-system-performance.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: ffabc3c5-9206-4105-94ea-84f597a54b2e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Profile system performance
diff --git a/windows/security/threat-protection/security-policy-settings/recovery-console-allow-automatic-administrative-logon.md b/windows/security/threat-protection/security-policy-settings/recovery-console-allow-automatic-administrative-logon.md
index ac9b2c0104..8d560cc318 100644
--- a/windows/security/threat-protection/security-policy-settings/recovery-console-allow-automatic-administrative-logon.md
+++ b/windows/security/threat-protection/security-policy-settings/recovery-console-allow-automatic-administrative-logon.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, policy management, and security c
 ms.assetid: be2498fc-48f4-43f3-ad09-74664e45e596
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Recovery console: Allow automatic administrative logon
diff --git a/windows/security/threat-protection/security-policy-settings/recovery-console-allow-floppy-copy-and-access-to-all-drives-and-folders.md b/windows/security/threat-protection/security-policy-settings/recovery-console-allow-floppy-copy-and-access-to-all-drives-and-folders.md
index 0fb4445f92..2d90c0a80f 100644
--- a/windows/security/threat-protection/security-policy-settings/recovery-console-allow-floppy-copy-and-access-to-all-drives-and-folders.md
+++ b/windows/security/threat-protection/security-policy-settings/recovery-console-allow-floppy-copy-and-access-to-all-drives-and-folders.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: a5b4ac0c-f33d-42b5-a866-72afa7cbd0bd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Recovery console: Allow floppy copy and access to all drives and folders
diff --git a/windows/security/threat-protection/security-policy-settings/remove-computer-from-docking-station.md b/windows/security/threat-protection/security-policy-settings/remove-computer-from-docking-station.md
index a19803baed..099396d96b 100644
--- a/windows/security/threat-protection/security-policy-settings/remove-computer-from-docking-station.md
+++ b/windows/security/threat-protection/security-policy-settings/remove-computer-from-docking-station.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 229a385a-a862-4973-899a-413b1b5b6c30
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Remove computer from docking station - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/replace-a-process-level-token.md b/windows/security/threat-protection/security-policy-settings/replace-a-process-level-token.md
index 6b6b9fbf97..497b00f4d5 100644
--- a/windows/security/threat-protection/security-policy-settings/replace-a-process-level-token.md
+++ b/windows/security/threat-protection/security-policy-settings/replace-a-process-level-token.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 5add02db-6339-489e-ba21-ccc3ccbe8745
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Replace a process level token
diff --git a/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md b/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
index d4c0f55aa6..7dd3bc674f 100644
--- a/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
+++ b/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: d5ccf6dd-5ba7-44a9-8e0b-c478d8b1442c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/02/2018
+ms.technology: mde
 ---
 
 # Reset account lockout counter after
diff --git a/windows/security/threat-protection/security-policy-settings/restore-files-and-directories.md b/windows/security/threat-protection/security-policy-settings/restore-files-and-directories.md
index edb41ef508..56932252a4 100644
--- a/windows/security/threat-protection/security-policy-settings/restore-files-and-directories.md
+++ b/windows/security/threat-protection/security-policy-settings/restore-files-and-directories.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c673c0fa-6f49-4edd-8c1f-c5e8513f701d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Restore files and directories - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md b/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
index 5836257990..58e86eb700 100644
--- a/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
@@ -4,7 +4,7 @@ description: Provides information about the advanced security audit policy setti
 ms.assetid: 6BF9A642-DBC3-4101-94A3-B2316C553CE3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Advanced security audit policy settings
diff --git a/windows/security/threat-protection/security-policy-settings/security-options.md b/windows/security/threat-protection/security-policy-settings/security-options.md
index 46dbab8860..b31d7a38cd 100644
--- a/windows/security/threat-protection/security-policy-settings/security-options.md
+++ b/windows/security/threat-protection/security-policy-settings/security-options.md
@@ -5,13 +5,14 @@ ms.assetid: 405ea253-8116-4e57-b08e-14a8dcdca92b
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 ms.date: 06/28/2018
+ms.technology: mde
 ---
 
 # Security Options
diff --git a/windows/security/threat-protection/security-policy-settings/security-policy-settings-reference.md b/windows/security/threat-protection/security-policy-settings/security-policy-settings-reference.md
index a129a83f56..690b97fddb 100644
--- a/windows/security/threat-protection/security-policy-settings/security-policy-settings-reference.md
+++ b/windows/security/threat-protection/security-policy-settings/security-policy-settings-reference.md
@@ -4,7 +4,7 @@ description: This reference of security settings provides information about how
 ms.assetid: ef5a4579-15a8-4507-9a43-b7ccddcb0ed1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Security policy settings reference
diff --git a/windows/security/threat-protection/security-policy-settings/security-policy-settings.md b/windows/security/threat-protection/security-policy-settings/security-policy-settings.md
index a8bd08c42d..1e283c3673 100644
--- a/windows/security/threat-protection/security-policy-settings/security-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/security-policy-settings.md
@@ -4,7 +4,7 @@ description: This reference topic describes the common scenarios, architecture,
 ms.assetid: e7ac5204-7f6c-4708-a9f6-6af712ca43b9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Security policy settings
diff --git a/windows/security/threat-protection/security-policy-settings/shut-down-the-system.md b/windows/security/threat-protection/security-policy-settings/shut-down-the-system.md
index 368f3b722b..1b5d5a161d 100644
--- a/windows/security/threat-protection/security-policy-settings/shut-down-the-system.md
+++ b/windows/security/threat-protection/security-policy-settings/shut-down-the-system.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: c8e8f890-153a-401e-a957-ba6a130304bf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Shut down the system - security policy setting
diff --git a/windows/security/threat-protection/security-policy-settings/shutdown-allow-system-to-be-shut-down-without-having-to-log-on.md b/windows/security/threat-protection/security-policy-settings/shutdown-allow-system-to-be-shut-down-without-having-to-log-on.md
index 49cf09a6db..5f9aec2590 100644
--- a/windows/security/threat-protection/security-policy-settings/shutdown-allow-system-to-be-shut-down-without-having-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/shutdown-allow-system-to-be-shut-down-without-having-to-log-on.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: f3964767-5377-4416-8eb3-e14d553a7315
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Shutdown: Allow system to be shut down without having to log on
diff --git a/windows/security/threat-protection/security-policy-settings/shutdown-clear-virtual-memory-pagefile.md b/windows/security/threat-protection/security-policy-settings/shutdown-clear-virtual-memory-pagefile.md
index b3e5bb9c6c..b556412de2 100644
--- a/windows/security/threat-protection/security-policy-settings/shutdown-clear-virtual-memory-pagefile.md
+++ b/windows/security/threat-protection/security-policy-settings/shutdown-clear-virtual-memory-pagefile.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management a
 ms.assetid: 31400078-6c56-4891-a6df-6dfb403c4bc9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/01/2017
+ms.technology: mde
 ---
 
 # Shutdown: Clear virtual memory pagefile 
diff --git a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-always.md b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-always.md
index a8d2183e51..996a278b07 100644
--- a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-always.md
+++ b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-always.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: 4b7b0298-b130-40f8-960d-60418ba85f76
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 01/04/2019
+ms.technology: mde
 ---
 
 # SMBv1 Microsoft network client: Digitally sign communications (always)
diff --git a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-if-server-agrees.md b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-if-server-agrees.md
index 47483249d7..6b4331de2f 100644
--- a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-if-server-agrees.md
+++ b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-client-digitally-sign-communications-if-server-agrees.md
@@ -4,7 +4,7 @@ description: Best practices, location, values, and security considerations for t
 ms.assetid: e553f700-aae5-425c-8650-f251c90ba5dd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 01/04/2019
+ms.technology: mde
 ---
 # SMBv1 Microsoft network client: Digitally sign communications (if server agrees)
 
diff --git a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-always.md b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-always.md
index dffc41d41d..0c427716aa 100644
--- a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-always.md
+++ b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-always.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the  security
 ms.assetid: 2007b622-7bc2-44e8-9cf1-d34b62117ea8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 01/04/2019
+ms.technology: mde
 ---
 
 # SMB v1 Microsoft network server: Digitally sign communications (always)
diff --git a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-if-client-agrees.md b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-if-client-agrees.md
index 45e242b7fc..032bb6d057 100644
--- a/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-if-client-agrees.md
+++ b/windows/security/threat-protection/security-policy-settings/smbv1-microsoft-network-server-digitally-sign-communications-if-client-agrees.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations and more for the security p
 ms.assetid: c92b2e3d-1dbf-4337-a145-b17a585f4fc1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 01/04/2019
+ms.technology: mde
 ---
 
 # SMBv1 Microsoft network server: Digitally sign communications (if client agrees)
diff --git a/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md b/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
index 8541cc65f4..fa3693209f 100644
--- a/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
+++ b/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, and security consid
 ms.assetid: 57f958c2-f1e9-48bf-871b-0a9b3299e238
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Store passwords using reversible encryption
diff --git a/windows/security/threat-protection/security-policy-settings/synchronize-directory-service-data.md b/windows/security/threat-protection/security-policy-settings/synchronize-directory-service-data.md
index 576180c4a9..04d2c905ec 100644
--- a/windows/security/threat-protection/security-policy-settings/synchronize-directory-service-data.md
+++ b/windows/security/threat-protection/security-policy-settings/synchronize-directory-service-data.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 97b0aaa4-674f-40f4-8974-b4bfb12c232c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Synchronize directory service data
diff --git a/windows/security/threat-protection/security-policy-settings/system-cryptography-force-strong-key-protection-for-user-keys-stored-on-the-computer.md b/windows/security/threat-protection/security-policy-settings/system-cryptography-force-strong-key-protection-for-user-keys-stored-on-the-computer.md
index fd0f6851b0..0ab38e9139 100644
--- a/windows/security/threat-protection/security-policy-settings/system-cryptography-force-strong-key-protection-for-user-keys-stored-on-the-computer.md
+++ b/windows/security/threat-protection/security-policy-settings/system-cryptography-force-strong-key-protection-for-user-keys-stored-on-the-computer.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: 8cbff267-881e-4bf6-920d-b583a5ff7de0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # System cryptography: Force strong key protection for user keys stored on the computer
diff --git a/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing.md b/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing.md
index b3c9f04138..9994949948 100644
--- a/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing.md
+++ b/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: 83988865-dc0f-45eb-90d1-ee33495eb045
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/16/2018
+ms.technology: mde
 ---
 
 # System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing
diff --git a/windows/security/threat-protection/security-policy-settings/system-objects-require-case-insensitivity-for-non-windows-subsystems.md b/windows/security/threat-protection/security-policy-settings/system-objects-require-case-insensitivity-for-non-windows-subsystems.md
index f2b1daed5b..7d3fdb17cd 100644
--- a/windows/security/threat-protection/security-policy-settings/system-objects-require-case-insensitivity-for-non-windows-subsystems.md
+++ b/windows/security/threat-protection/security-policy-settings/system-objects-require-case-insensitivity-for-non-windows-subsystems.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations and more for the security p
 ms.assetid: 340d6769-8f33-4067-8470-1458978d1522
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # System objects: Require case insensitivity for non-Windows subsystems
diff --git a/windows/security/threat-protection/security-policy-settings/system-objects-strengthen-default-permissions-of-internal-system-objects.md b/windows/security/threat-protection/security-policy-settings/system-objects-strengthen-default-permissions-of-internal-system-objects.md
index 7e622b901f..731ff816b1 100644
--- a/windows/security/threat-protection/security-policy-settings/system-objects-strengthen-default-permissions-of-internal-system-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/system-objects-strengthen-default-permissions-of-internal-system-objects.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, System obj
 ms.assetid: 3a592097-9cf5-4fd0-a504-7cbfab050bb6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # System objects: Strengthen default permissions of internal system objects (for example, Symbolic Links)
diff --git a/windows/security/threat-protection/security-policy-settings/system-settings-optional-subsystems.md b/windows/security/threat-protection/security-policy-settings/system-settings-optional-subsystems.md
index af6a91841d..05dc5f7a16 100644
--- a/windows/security/threat-protection/security-policy-settings/system-settings-optional-subsystems.md
+++ b/windows/security/threat-protection/security-policy-settings/system-settings-optional-subsystems.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: 5cb6519a-4f84-4b45-8072-e2aa8a72fb78
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # System settings: Optional subsystems
diff --git a/windows/security/threat-protection/security-policy-settings/system-settings-use-certificate-rules-on-windows-executables-for-software-restriction-policies.md b/windows/security/threat-protection/security-policy-settings/system-settings-use-certificate-rules-on-windows-executables-for-software-restriction-policies.md
index d261330b49..85d1c3a9c8 100644
--- a/windows/security/threat-protection/security-policy-settings/system-settings-use-certificate-rules-on-windows-executables-for-software-restriction-policies.md
+++ b/windows/security/threat-protection/security-policy-settings/system-settings-use-certificate-rules-on-windows-executables-for-software-restriction-policies.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, System set
 ms.assetid: 2380d93b-b553-4e56-a0c0-d1ef740d089c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # System settings: Use certificate rules on Windows executables for Software Restriction Policies
diff --git a/windows/security/threat-protection/security-policy-settings/take-ownership-of-files-or-other-objects.md b/windows/security/threat-protection/security-policy-settings/take-ownership-of-files-or-other-objects.md
index be428efa89..45985b786a 100644
--- a/windows/security/threat-protection/security-policy-settings/take-ownership-of-files-or-other-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/take-ownership-of-files-or-other-objects.md
@@ -4,7 +4,7 @@ description: Describes the best practices, location, values, policy management,
 ms.assetid: cb8595d1-74cc-4176-bb15-d97663eebb2d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Take ownership of files or other objects
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-admin-approval-mode-for-the-built-in-administrator-account.md b/windows/security/threat-protection/security-policy-settings/user-account-control-admin-approval-mode-for-the-built-in-administrator-account.md
index c55c11df6a..3a71b45166 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-admin-approval-mode-for-the-built-in-administrator-account.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-admin-approval-mode-for-the-built-in-administrator-account.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: d465fc27-1cd2-498b-9cf6-7ad2276e5998
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/08/2017
+ms.technology: mde
 ---
 
 # User Account Control: Admin Approval Mode for the Built-in Administrator account
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-allow-uiaccess-applications-to-prompt-for-elevation-without-using-the-secure-desktop.md b/windows/security/threat-protection/security-policy-settings/user-account-control-allow-uiaccess-applications-to-prompt-for-elevation-without-using-the-secure-desktop.md
index 6c3bb8ace6..09f6411652 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-allow-uiaccess-applications-to-prompt-for-elevation-without-using-the-secure-desktop.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-allow-uiaccess-applications-to-prompt-for-elevation-without-using-the-secure-desktop.md
@@ -4,7 +4,7 @@ description: Best practices and more for the policy setting, User Account Contro
 ms.assetid: fce20472-3c93-449d-b520-13c4c74a9892
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-administrators-in-admin-approval-mode.md b/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-administrators-in-admin-approval-mode.md
index 5b6f5b139e..82939414e0 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-administrators-in-admin-approval-mode.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-administrators-in-admin-approval-mode.md
@@ -4,7 +4,7 @@ description: Best practices and more for the security policy setting, User Accou
 ms.assetid: 46a3c3a2-1d2e-4a6f-b5e6-29f9592f535d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/08/2017
+ms.technology: mde
 ---
 
 # User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-standard-users.md b/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-standard-users.md
index 659b235720..de0490479f 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-standard-users.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-behavior-of-the-elevation-prompt-for-standard-users.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations, and more for t
 ms.assetid: 1eae7def-8f6c-43b6-9474-23911fdc01ba
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Behavior of the elevation prompt for standard users
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-detect-application-installations-and-prompt-for-elevation.md b/windows/security/threat-protection/security-policy-settings/user-account-control-detect-application-installations-and-prompt-for-elevation.md
index 2fd36ac32f..be33709e17 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-detect-application-installations-and-prompt-for-elevation.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-detect-application-installations-and-prompt-for-elevation.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the security policy setting
 ms.assetid: 3f8cb170-ba77-4c9f-abb3-c3ed1ef264fc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Detect application installations and prompt for elevation
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-executables-that-are-signed-and-validated.md b/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-executables-that-are-signed-and-validated.md
index 014e882384..62665872ff 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-executables-that-are-signed-and-validated.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-executables-that-are-signed-and-validated.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the security
 ms.assetid: 64950a95-6985-4db6-9905-1db18557352d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Only elevate executables that are signed and validated
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-uiaccess-applications-that-are-installed-in-secure-locations.md b/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-uiaccess-applications-that-are-installed-in-secure-locations.md
index e9d0d85e91..06e3831a67 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-uiaccess-applications-that-are-installed-in-secure-locations.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-uiaccess-applications-that-are-installed-in-secure-locations.md
@@ -4,7 +4,7 @@ description: Learn about best practices and more for the policy setting, User Ac
 ms.assetid: 4333409e-a5be-4f2f-8808-618f53abd22c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Only elevate UIAccess applications that are installed in secure locations
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-run-all-administrators-in-admin-approval-mode.md b/windows/security/threat-protection/security-policy-settings/user-account-control-run-all-administrators-in-admin-approval-mode.md
index fb06a1c928..da3fbca962 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-run-all-administrators-in-admin-approval-mode.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-run-all-administrators-in-admin-approval-mode.md
@@ -4,7 +4,7 @@ description: Learn about best practices, security considerations and more for th
 ms.assetid: b838c561-7bfc-41ef-a7a5-55857259c7bf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Run all administrators in Admin Approval Mode
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-switch-to-the-secure-desktop-when-prompting-for-elevation.md b/windows/security/threat-protection/security-policy-settings/user-account-control-switch-to-the-secure-desktop-when-prompting-for-elevation.md
index 8d3f8b2d1b..6b34c92be1 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-switch-to-the-secure-desktop-when-prompting-for-elevation.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-switch-to-the-secure-desktop-when-prompting-for-elevation.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations, and more for the policy se
 ms.assetid: 77a067db-c70d-4b02-9861-027503311b8b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Switch to the secure desktop when prompting for elevation
diff --git a/windows/security/threat-protection/security-policy-settings/user-account-control-virtualize-file-and-registry-write-failures-to-per-user-locations.md b/windows/security/threat-protection/security-policy-settings/user-account-control-virtualize-file-and-registry-write-failures-to-per-user-locations.md
index 8fb6f6ead6..e8bf2f6497 100644
--- a/windows/security/threat-protection/security-policy-settings/user-account-control-virtualize-file-and-registry-write-failures-to-per-user-locations.md
+++ b/windows/security/threat-protection/security-policy-settings/user-account-control-virtualize-file-and-registry-write-failures-to-per-user-locations.md
@@ -4,7 +4,7 @@ description: Best practices, security considerations and more for the policy set
 ms.assetid: a7b47420-cc41-4b1c-b03e-f67a05221261
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Account Control: Virtualize file and registry write failures to per-user locations
diff --git a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
index 03d0a20cf4..9ac1afcf08 100644
--- a/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
+++ b/windows/security/threat-protection/security-policy-settings/user-rights-assignment.md
@@ -4,7 +4,7 @@ description: Provides an overview and links to information about the User Rights
 ms.assetid: 99340252-60be-4c79-b0a5-56fbe1a9b0c5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # User Rights Assignment
diff --git a/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md b/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
index 58051a41aa..db7887046c 100644
--- a/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
+++ b/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
@@ -5,13 +5,14 @@ ms.assetid: 733263E5-7FD1-45D2-914A-184B9E3E6A3F
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 author: dulcemontemayor
 ms.date: 02/28/2019
 ms.localizationpriority: medium
+ms.technology: mde
 ---
 
 # Use Windows Event Forwarding to help with intrusion detection
diff --git a/windows/security/threat-protection/windows-10-mobile-security-guide.md b/windows/security/threat-protection/windows-10-mobile-security-guide.md
index 5ce47adcb7..2e7e17d540 100644
--- a/windows/security/threat-protection/windows-10-mobile-security-guide.md
+++ b/windows/security/threat-protection/windows-10-mobile-security-guide.md
@@ -6,13 +6,14 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 keywords: data protection, encryption, malware resistance, smartphone, device, Microsoft Store
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security, mobile
 ms.localizationpriority: medium
 author: dulcemontemayor
 ms.date: 10/13/2017
+ms.technology: mde
 ---
 # Windows 10 Mobile security guide
 
diff --git a/windows/security/threat-protection/windows-defender-application-control/LOB-win32-apps-on-s.md b/windows/security/threat-protection/windows-defender-application-control/LOB-win32-apps-on-s.md
index 7ec755da77..9a6947372a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/LOB-win32-apps-on-s.md
+++ b/windows/security/threat-protection/windows-defender-application-control/LOB-win32-apps-on-s.md
@@ -1,9 +1,9 @@
 ---
 title: Allow LOB Win32 Apps on Intune-Managed S Mode Devices (Windows 10)
 description: Using WDAC supplemental policies, you can expand the S mode base policy on your Intune-managed devices.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 10/30/2019
+ms.technology: mde
 ---
 
 # Allow Line-of-Business Win32 Apps on Intune-Managed S Mode Devices
diff --git a/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md b/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
index fd016ed909..1a451b7545 100644
--- a/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
@@ -1,9 +1,9 @@
 ---
 title: Allow COM object registration in a WDAC policy (Windows 10)
 description: You can allow COM object registration in a Windows Defender Application Control policy.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/21/2019
+ms.technology: mde
 ---
 
 # Allow COM object registration in a Windows Defender Application Control policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/add-rules-for-packaged-apps-to-existing-applocker-rule-set.md b/windows/security/threat-protection/windows-defender-application-control/applocker/add-rules-for-packaged-apps-to-existing-applocker-rule-set.md
index f762644195..aafd72be3d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/add-rules-for-packaged-apps-to-existing-applocker-rule-set.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/add-rules-for-packaged-apps-to-existing-applocker-rule-set.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to update your existi
 ms.assetid: 758c2a9f-c2a3-418c-83bc-fd335a94097f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Add rules for packaged apps to existing AppLocker rule-set
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/administer-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/administer-applocker.md
index 8730c6c545..28e35129ba 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/administer-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/administer-applocker.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals provides links to specific procedur
 ms.assetid: 511a3b6a-175f-4d6d-a6e0-c1780c02e818
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 02/28/2019
+ms.technology: mde
 ---
 
 # Administer AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-architecture-and-components.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-architecture-and-components.md
index f7a0f16873..04a1ea12ad 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-architecture-and-components.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-architecture-and-components.md
@@ -4,7 +4,7 @@ description: This topic for IT professional describes AppLocker’s basic archit
 ms.assetid: efdd8494-553c-443f-bd5f-c8976535135a
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker architecture and components
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-functions.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-functions.md
index 277bc78753..3e9ab04bfc 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-functions.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-functions.md
@@ -4,7 +4,7 @@ description: This article for the IT professional lists the functions and securi
 ms.assetid: bf704198-9e74-4731-8c5a-ee0512df34d2
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker functions
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview.md
index b7d7885b7f..b7dcbcddd8 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview.md
@@ -4,7 +4,7 @@ description: This topic provides a description of AppLocker and can help you dec
 ms.assetid: 94b57864-2112-43b6-96fb-2863c985dc9a
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/16/2017
+ms.technology: mde
 ---
 
 # AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-deployment-guide.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-deployment-guide.md
index e92450d695..60bc44e368 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-deployment-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-deployment-guide.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals introduces the concepts and describ
 ms.assetid: 38632795-be13-46b0-a7af-487a4340bea1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-design-guide.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-design-guide.md
index d723d9a054..960362fe53 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-design-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policies-design-guide.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional introduces the design and planni
 ms.assetid: 1c8e4a7b-3164-4eb4-9277-11b1d5a09c7b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker design guide
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policy-use-scenarios.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policy-use-scenarios.md
index 3e660d6659..897753b906 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policy-use-scenarios.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-policy-use-scenarios.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional lists the various application co
 ms.assetid: 33f71578-89f0-4063-ac04-cf4f4ca5c31f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker policy use scenarios
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-processes-and-interactions.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-processes-and-interactions.md
index de1860a1a6..0ffdf6a6e0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-processes-and-interactions.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-processes-and-interactions.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the process dependenci
 ms.assetid: 0beec616-6040-4be7-8703-b6c919755d8e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker processes and interactions
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-settings.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-settings.md
index f289a40fe7..56d2fcb24d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-settings.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-settings.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional lists the settings used by AppLo
 ms.assetid: 9cb4aa19-77c0-4415-9968-bd07dab86839
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker settings
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-technical-reference.md b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-technical-reference.md
index 031ce25230..db60e0f7bc 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-technical-reference.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-technical-reference.md
@@ -4,7 +4,7 @@ description: This overview topic for IT professionals provides links to the topi
 ms.assetid: 2b2678f8-c46b-4e1d-b8c5-037c0be255ab
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # AppLocker technical reference
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-audit-only.md b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-audit-only.md
index 2dd978d52b..8995d1c8cf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-audit-only.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-audit-only.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to set AppLocker poli
 ms.assetid: 10bc87d5-cc7f-4500-b7b3-9006e50afa50
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/08/2018
+ms.technology: mde
 ---
 
 # Configure an AppLocker policy for audit only
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-enforce-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-enforce-rules.md
index 36cce5baec..1f3d8928cf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-enforce-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-enforce-rules.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to enable the A
 ms.assetid: 5dbbb290-a5ae-4f88-82b3-21e95972e66c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Configure an AppLocker policy for enforce rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-exceptions-for-an-applocker-rule.md b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-exceptions-for-an-applocker-rule.md
index dfb7c8814a..fea958441d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-exceptions-for-an-applocker-rule.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-exceptions-for-an-applocker-rule.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to specify whic
 ms.assetid: d15c9d84-c14b-488d-9f48-bf31ff7ff0c5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Add exceptions for an AppLocker rule
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-appLocker-reference-device.md b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-appLocker-reference-device.md
index a3a2d593bb..9b81e3d6fe 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-appLocker-reference-device.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-appLocker-reference-device.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the steps to create an
 ms.assetid: 034bd367-146d-4956-873c-e1e09e6fefee
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Configure the AppLocker reference device
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-application-identity-service.md b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-application-identity-service.md
index 488a8cc411..610728b4d6 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-application-identity-service.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/configure-the-application-identity-service.md
@@ -5,7 +5,7 @@ ms.assetid: dc469599-37fd-448b-b23e-5b8e4f17e561
 ms.reviewer: 
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/02/2018
+ms.technology: mde
 ---
 
 # Configure the Application Identity service
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-for-packaged-apps.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-for-packaged-apps.md
index 619e173000..e7c76c7e98 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-for-packaged-apps.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-for-packaged-apps.md
@@ -4,7 +4,7 @@ description: This article for IT professionals shows how to create an AppLocker
 ms.assetid: e4ffd400-7860-47b3-9118-0e6853c3dfa0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create a rule for packaged apps
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-file-hash-condition.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-file-hash-condition.md
index f7689c76f7..c68870383e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-file-hash-condition.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-file-hash-condition.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals shows how to create an AppLocker ru
 ms.assetid: eb3b3524-1b3b-4979-ba5a-0a0b1280c5c7
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create a rule that uses a file hash condition
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-path-condition.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-path-condition.md
index 728693dc35..fd4ebfd86a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-path-condition.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-path-condition.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals shows how to create an AppLocker ru
 ms.assetid: 9b2093f5-5976-45fa-90c3-da1e0e845d95
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create a rule that uses a path condition
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-publisher-condition.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-publisher-condition.md
index 5a875b4b84..f7f9061767 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-publisher-condition.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-a-rule-that-uses-a-publisher-condition.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals shows how to create an AppLocker ru
 ms.assetid: 345ad45f-2bc1-4c4c-946f-17804e29f55b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create a rule that uses a publisher condition
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-applocker-default-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-applocker-default-rules.md
index 4bf66b9c31..8e818f8d12 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-applocker-default-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-applocker-default-rules.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to create a sta
 ms.assetid: 21e9dc68-a6f4-4ebe-ac28-4c66a7ab6e18
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create AppLocker default rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-list-of-applications-deployed-to-each-business-group.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-list-of-applications-deployed-to-each-business-group.md
index 24ab242eb1..9d57825f8a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-list-of-applications-deployed-to-each-business-group.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-list-of-applications-deployed-to-each-business-group.md
@@ -4,7 +4,7 @@ description: This topic describes the process of gathering app usage requirement
 ms.assetid: d713aa07-d732-4bdc-8656-ba616d779321
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create a list of apps deployed to each business group
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-policies.md
index 4cb2f24434..d0a53377ec 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-policies.md
@@ -4,7 +4,7 @@ description: This overview topic for the IT professional describes the steps to
 ms.assetid: d339dee2-4da2-4d4a-b46e-f1dfb7cb4bf0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create Your AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-rules.md
index 6d75ecfc99..dd866880d3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/create-your-applocker-rules.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes what you need to know
 ms.assetid: b684a3a5-929c-4f70-8742-04088022f232
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Create Your AppLocker rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/delete-an-applocker-rule.md b/windows/security/threat-protection/windows-defender-application-control/applocker/delete-an-applocker-rule.md
index a63318645f..80c31abf85 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/delete-an-applocker-rule.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/delete-an-applocker-rule.md
@@ -4,7 +4,7 @@ description: This article for IT professionals describes the steps to delete an
 ms.assetid: 382b4be3-0df9-4308-89b2-dcf9df351eb5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/09/2020
+ms.technology: mde
 ---
 
 # Delete an AppLocker rule
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-applocker-policies-by-using-the-enforce-rules-setting.md b/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-applocker-policies-by-using-the-enforce-rules-setting.md
index 65374479fc..bd480092c0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-applocker-policies-by-using-the-enforce-rules-setting.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-applocker-policies-by-using-the-enforce-rules-setting.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to deploy AppLo
 ms.assetid: fd3a3d25-ff3b-4060-8390-6262a90749ba
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Deploy AppLocker policies by using the enforce rules setting
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-the-applocker-policy-into-production.md b/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-the-applocker-policy-into-production.md
index 058e736230..64f60860f0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-the-applocker-policy-into-production.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/deploy-the-applocker-policy-into-production.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the tasks that should
 ms.assetid: ebbb1907-92dc-499e-8cee-8e637483c9ae
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Deploy the AppLocker policy into production
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-group-policy-structure-and-rule-enforcement.md b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-group-policy-structure-and-rule-enforcement.md
index e03376d487..fdeb9db2dc 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-group-policy-structure-and-rule-enforcement.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-group-policy-structure-and-rule-enforcement.md
@@ -4,7 +4,7 @@ description: This overview topic describes the process to follow when you are pl
 ms.assetid: f435fcbe-c7ac-4ef0-9702-729aab64163f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Determine the Group Policy structure and rule enforcement
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-which-applications-are-digitally-signed-on-a-reference-computer.md b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-which-applications-are-digitally-signed-on-a-reference-computer.md
index 099c30bac7..a0770cfdb3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-which-applications-are-digitally-signed-on-a-reference-computer.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-which-applications-are-digitally-signed-on-a-reference-computer.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes how to use AppLocker l
 ms.assetid: 24609a6b-fdcb-4083-b234-73e23ff8bcb8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Determine which apps are digitally signed on a reference device
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-your-application-control-objectives.md b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-your-application-control-objectives.md
index dd86101ae7..516f7eaff2 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/determine-your-application-control-objectives.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/determine-your-application-control-objectives.md
@@ -4,7 +4,7 @@ description: Determine which applications to control and how to control them by
 ms.assetid: 0e84003e-6095-46fb-8c4e-2065869bb53b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Determine your application control objectives
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/display-a-custom-url-message-when-users-try-to-run-a-blocked-application.md b/windows/security/threat-protection/windows-defender-application-control/applocker/display-a-custom-url-message-when-users-try-to-run-a-blocked-application.md
index f87c93e451..4f89790b1c 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/display-a-custom-url-message-when-users-try-to-run-a-blocked-application.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/display-a-custom-url-message-when-users-try-to-run-a-blocked-application.md
@@ -5,7 +5,7 @@ ms.assetid: 9a2534a5-d1fa-48a9-93c6-989d4857cf85
 ms.reviewer: 
 ms.author: dansimp
 ms.pagetype: security
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Display a custom URL message when users try to run a blocked app
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/dll-rules-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/dll-rules-in-applocker.md
index be5c338598..aec41fda97 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/dll-rules-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/dll-rules-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic describes the file formats and available default rules f
 ms.assetid: a083fd08-c07e-4534-b0e7-1e15d932ce8f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # DLL rules in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/document-group-policy-structure-and-applocker-rule-enforcement.md b/windows/security/threat-protection/windows-defender-application-control/applocker/document-group-policy-structure-and-applocker-rule-enforcement.md
index 0e40237b7b..7c80353023 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/document-group-policy-structure-and-applocker-rule-enforcement.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/document-group-policy-structure-and-applocker-rule-enforcement.md
@@ -4,7 +4,7 @@ description: This planning topic describes what you need to investigate, determi
 ms.assetid: 389ffa8e-11fc-49ff-b0b1-89553e6fb6e5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -15,6 +15,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.pagetype: security
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Document the Group Policy structure and AppLocker rule enforcement
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-application-list.md b/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-application-list.md
index c43cf96fee..64318e0bd7 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-application-list.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-application-list.md
@@ -4,7 +4,7 @@ description: This planning topic describes the app information that you should d
 ms.assetid: b155284b-f75d-4405-aecf-b74221622dc0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Document your app list
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-applocker-rules.md
index 9f6e032b66..1000876fbf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/document-your-applocker-rules.md
@@ -4,7 +4,7 @@ description: Learn how to document your AppLocker rules and associate rule condi
 ms.assetid: 91a198ce-104a-45ff-b49b-487fb40cd2dd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Document your AppLocker rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/edit-an-applocker-policy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/edit-an-applocker-policy.md
index 03b04a1190..9865b4a5d9 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/edit-an-applocker-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/edit-an-applocker-policy.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps required to mod
 ms.assetid: dbc72d1f-3fe0-46c2-aeeb-96621fce7637
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Edit an AppLocker policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/edit-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/edit-applocker-rules.md
index 028a8237bc..9fba4220b8 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/edit-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/edit-applocker-rules.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to edit a publi
 ms.assetid: 80016cda-b915-46a0-83c6-5e6b0b958e32
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Edit AppLocker rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/enable-the-dll-rule-collection.md b/windows/security/threat-protection/windows-defender-application-control/applocker/enable-the-dll-rule-collection.md
index 575de45499..33f8fc5205 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/enable-the-dll-rule-collection.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/enable-the-dll-rule-collection.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to enable the D
 ms.assetid: 88ef9561-6eb2-491a-803a-b8cdbfebae27
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Enable the DLL rule collection
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/enforce-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/enforce-applocker-rules.md
index b396db1cfb..977c71d0cf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/enforce-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/enforce-applocker-rules.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to enforce applicatio
 ms.assetid: e1528b7b-77f2-4419-8e27-c9cc3721d96d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Enforce AppLocker rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/executable-rules-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/executable-rules-in-applocker.md
index ffdc7ace8c..13e0194acf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/executable-rules-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/executable-rules-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic describes the file formats and available default rules f
 ms.assetid: 65e62f90-6caa-48f8-836a-91f8ac9018ee
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Executable rules in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-from-a-gpo.md b/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-from-a-gpo.md
index 0443b67c6b..6f17980018 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-from-a-gpo.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-from-a-gpo.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to export an Ap
 ms.assetid: 7db59719-a8be-418b-bbfd-22cf2176c9c0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Export an AppLocker policy from a GPO
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-to-an-xml-file.md b/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-to-an-xml-file.md
index 6856386f4a..a2c2fda488 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-to-an-xml-file.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/export-an-applocker-policy-to-an-xml-file.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to export an Ap
 ms.assetid: 979bd23f-6815-478b-a6a4-a25239cb1080
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Export an AppLocker policy to an XML file
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/how-applocker-works-techref.md b/windows/security/threat-protection/windows-defender-application-control/applocker/how-applocker-works-techref.md
index b4adeb4b33..6e4827d32a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/how-applocker-works-techref.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/how-applocker-works-techref.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional provides links to topics about A
 ms.assetid: 24bb1d73-0ff5-4af7-8b8a-2fa44d4ddbcd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # How AppLocker works
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-from-another-computer.md b/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-from-another-computer.md
index eaa7c7aa78..572410407e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-from-another-computer.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-from-another-computer.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to import an AppLocke
 ms.assetid: b48cb2b2-8ef8-4cc0-89bd-309d0b1832f6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Import an AppLocker policy from another computer
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-into-a-gpo.md b/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-into-a-gpo.md
index ac5ac53cd5..10cdc3f2c5 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-into-a-gpo.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/import-an-applocker-policy-into-a-gpo.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to import an Ap
 ms.assetid: 0629ce44-f5e2-48a8-ba47-06544c73261f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Import an AppLocker policy into a GPO
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/maintain-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/maintain-applocker-policies.md
index 3e7f0169c7..67545f9094 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/maintain-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/maintain-applocker-policies.md
@@ -4,7 +4,7 @@ description: Learn how to maintain rules within AppLocker policies. View common
 ms.assetid: b4fbfdfe-ef3d-49e0-a390-f2dfe74602bc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Maintain AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/manage-packaged-apps-with-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/manage-packaged-apps-with-applocker.md
index e33dc7ed87..fc27d49a00 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/manage-packaged-apps-with-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/manage-packaged-apps-with-applocker.md
@@ -4,7 +4,7 @@ description: Learn concepts and lists procedures to help you manage packaged app
 ms.assetid: 6d0c99e7-0284-4547-a30a-0685a9916650
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Manage packaged apps with AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-by-using-set-applockerpolicy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-by-using-set-applockerpolicy.md
index 47c7db9884..ffe44d7fae 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-by-using-set-applockerpolicy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-by-using-set-applockerpolicy.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to merge AppLoc
 ms.assetid: f1c7d5c0-463e-4fe2-a410-844a404f18d0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Merge AppLocker policies by using Set-ApplockerPolicy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-manually.md b/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-manually.md
index f40ead0fc0..7567707461 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-manually.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/merge-applocker-policies-manually.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to manually mer
 ms.assetid: 3605f293-e5f2-481d-8efd-775f9f23c30f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Merge AppLocker policies manually
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/monitor-application-usage-with-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/monitor-application-usage-with-applocker.md
index d0aa573b21..56d201be4e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/monitor-application-usage-with-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/monitor-application-usage-with-applocker.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to monitor app usage
 ms.assetid: 0516da6e-ebe4-45b4-a97b-31daba96d1cf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Monitor app usage with AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/optimize-applocker-performance.md b/windows/security/threat-protection/windows-defender-application-control/applocker/optimize-applocker-performance.md
index d669f7c890..e050d78690 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/optimize-applocker-performance.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/optimize-applocker-performance.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how to optimize AppLocker
 ms.assetid: a20efa20-bc98-40fe-bd81-28ec4905e0f6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Optimize AppLocker performance
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/packaged-apps-and-packaged-app-installer-rules-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/packaged-apps-and-packaged-app-installer-rules-in-applocker.md
index 1057121e64..5889dda71b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/packaged-apps-and-packaged-app-installer-rules-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/packaged-apps-and-packaged-app-installer-rules-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic explains the AppLocker rule collection for packaged app
 ms.assetid: 8fd44d08-a0c2-4c5b-a91f-5cb9989f971d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/13/2017
+ms.technology: mde
 ---
 
 # Packaged apps and packaged app installer rules in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/plan-for-applocker-policy-management.md b/windows/security/threat-protection/windows-defender-application-control/applocker/plan-for-applocker-policy-management.md
index 35e51ee350..7bdb71f127 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/plan-for-applocker-policy-management.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/plan-for-applocker-policy-management.md
@@ -4,7 +4,7 @@ description: This topic for describes the decisions you need to make to establis
 ms.assetid: dccc196f-6ae0-4ae4-853a-a3312b18751b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Plan for AppLocker policy management
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/refresh-an-applocker-policy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/refresh-an-applocker-policy.md
index 9e6a10f475..462a865a4f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/refresh-an-applocker-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/refresh-an-applocker-policy.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to force an upd
 ms.assetid: 3f24fcbc-3926-46b9-a1a2-dd036edab8a9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Refresh an AppLocker policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-for-deploying-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-for-deploying-applocker-policies.md
index 1d132ac242..acabab7d69 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-for-deploying-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-for-deploying-applocker-policies.md
@@ -4,7 +4,7 @@ description: This deployment topic for the IT professional lists the requirement
 ms.assetid: 3e55bda2-3cd7-42c7-bad3-c7dfbe193d48
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Requirements for deploying AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-to-use-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-to-use-applocker.md
index 42347224a4..0b4fd786bf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-to-use-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/requirements-to-use-applocker.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional lists software requirements to u
 ms.assetid: dc380535-071e-4794-8f9d-e5d1858156f0
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Requirements to use AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/run-the-automatically-generate-rules-wizard.md b/windows/security/threat-protection/windows-defender-application-control/applocker/run-the-automatically-generate-rules-wizard.md
index a87df1bc69..da19e309e8 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/run-the-automatically-generate-rules-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/run-the-automatically-generate-rules-wizard.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes steps to run the wizard t
 ms.assetid: 8cad1e14-d5b2-437c-8f88-70cffd7b3d8e
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Run the Automatically Generate Rules wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/script-rules-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/script-rules-in-applocker.md
index 1854e961d1..db4968297c 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/script-rules-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/script-rules-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic describes the file formats and available default rules f
 ms.assetid: fee24ca4-935a-4c5e-8a92-8cf1d134d35f
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Script rules in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/security-considerations-for-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/security-considerations-for-applocker.md
index 02e8dd5393..92928f7068 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/security-considerations-for-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/security-considerations-for-applocker.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the security considera
 ms.assetid: 354a5abb-7b31-4bea-a442-aa9666117625
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Security considerations for AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/select-types-of-rules-to-create.md b/windows/security/threat-protection/windows-defender-application-control/applocker/select-types-of-rules-to-create.md
index 4daacad66d..174e5d8a77 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/select-types-of-rules-to-create.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/select-types-of-rules-to-create.md
@@ -4,7 +4,7 @@ description: This topic lists resources you can use when selecting your applicat
 ms.assetid: 14751169-0ed1-47cc-822c-8c01a7477784
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Select the types of rules to create
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/test-an-applocker-policy-by-using-test-applockerpolicy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/test-an-applocker-policy-by-using-test-applockerpolicy.md
index 00511d0f23..fd78e7c563 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/test-an-applocker-policy-by-using-test-applockerpolicy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/test-an-applocker-policy-by-using-test-applockerpolicy.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes the steps to test an AppL
 ms.assetid: 048bfa38-6825-4a9a-ab20-776cf79f402a
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Test an AppLocker policy by using Test-AppLockerPolicy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/test-and-update-an-applocker-policy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/test-and-update-an-applocker-policy.md
index 6306c10479..2027085b0e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/test-and-update-an-applocker-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/test-and-update-an-applocker-policy.md
@@ -4,7 +4,7 @@ description: This topic discusses the steps required to test an AppLocker policy
 ms.assetid: 7d53cbef-078c-4d20-8b00-e821e33b6ea1
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Test and update an AppLocker policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/tools-to-use-with-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/tools-to-use-with-applocker.md
index 974a0000cc..51d801a909 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/tools-to-use-with-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/tools-to-use-with-applocker.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the tools available to
 ms.assetid: db2b7cb3-7643-4be5-84eb-46ba551e1ad1
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Tools to use with AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-enforcement-settings.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-enforcement-settings.md
index 0cd67f03d8..cbd1b7c62e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-enforcement-settings.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-enforcement-settings.md
@@ -4,7 +4,7 @@ description: This topic describes the AppLocker enforcement settings for rule co
 ms.assetid: 48773007-a343-40bf-8961-b3ff0a450d7e
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understand AppLocker enforcement settings
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-policy-design-decisions.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-policy-design-decisions.md
index a8bfeff845..95dcad5fe6 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-policy-design-decisions.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-policy-design-decisions.md
@@ -4,7 +4,7 @@ description: Review some common considerations while you are planning to use App
 ms.assetid: 3475def8-949a-4b51-b480-dc88b5c1e6e6
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/13/2017
+ms.technology: mde
 ---
 
 # Understand AppLocker policy design decisions
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-rules-and-enforcement-setting-inheritance-in-group-policy.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-rules-and-enforcement-setting-inheritance-in-group-policy.md
index ce6f6d4292..5350f5c843 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-rules-and-enforcement-setting-inheritance-in-group-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-applocker-rules-and-enforcement-setting-inheritance-in-group-policy.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes how application contro
 ms.assetid: c1c5a3d3-540a-4698-83b5-0dab5d27d871
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understand AppLocker rules and enforcement setting inheritance in Group Policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-the-applocker-policy-deployment-process.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-the-applocker-policy-deployment-process.md
index 5e0c80b55d..0f909bdf3d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understand-the-applocker-policy-deployment-process.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understand-the-applocker-policy-deployment-process.md
@@ -4,7 +4,7 @@ description: This planning and deployment topic for the IT professional describe
 ms.assetid: 4cfd95c1-fbd3-41fa-8efc-d23c1ea6fb16
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understand the AppLocker policy deployment process
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-allow-and-deny-actions-on-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-allow-and-deny-actions-on-rules.md
index f9cdae7831..941aa4f30d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-allow-and-deny-actions-on-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-allow-and-deny-actions-on-rules.md
@@ -4,7 +4,7 @@ description: This topic explains the differences between allow and deny actions
 ms.assetid: ea0370fa-2086-46b5-a0a4-4a7ead8cbed9
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker allow and deny actions on rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-default-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-default-rules.md
index 02228d1867..e9e449b52e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-default-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-default-rules.md
@@ -4,7 +4,7 @@ description: This topic for IT professional describes the set of rules that can
 ms.assetid: bdb03d71-05b7-41fb-96e3-a289ce1866e1
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker default rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-behavior.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-behavior.md
index cbb7806a6b..041eee8f69 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-behavior.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-behavior.md
@@ -4,7 +4,7 @@ description: This topic describes how AppLocker rules are enforced by using the
 ms.assetid: 3e2738a3-8041-4095-8a84-45c1894c97d0
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker rule behavior
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-collections.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-collections.md
index 0392b51405..319c895fd9 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-collections.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-collections.md
@@ -4,7 +4,7 @@ description: This topic explains the five different types of AppLocker rules use
 ms.assetid: 03c05466-4fb3-4880-8d3c-0f6f59fc5579
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker rule collections
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-condition-types.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-condition-types.md
index 44c123c7a2..8dfb91c58e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-condition-types.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-condition-types.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes the three types of App
 ms.assetid: c21af67f-60a1-4f7d-952c-a6f769c74729
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker rule condition types
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-exceptions.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-exceptions.md
index 9420c1f20f..eb3084b691 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-exceptions.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-applocker-rule-exceptions.md
@@ -4,7 +4,7 @@ description: This topic describes the result of applying AppLocker rule exceptio
 ms.assetid: e6bb349f-ee60-4c8d-91cd-6442f2d0eb9c
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding AppLocker rule exceptions
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-file-hash-rule-condition-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-file-hash-rule-condition-in-applocker.md
index b0e028c79d..7a8bfc63d1 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-file-hash-rule-condition-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-file-hash-rule-condition-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic explains the AppLocker file hash rule condition, the adv
 ms.assetid: 4c6d9af4-2b1a-40f4-8758-1a6f9f147756
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding the file hash rule condition in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-path-rule-condition-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-path-rule-condition-in-applocker.md
index 95863340c0..057a3dabde 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-path-rule-condition-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-path-rule-condition-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic explains the AppLocker path rule condition, the advantag
 ms.assetid: 3fa54ded-4466-4f72-bea4-2612031cad43
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding the path rule condition in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-publisher-rule-condition-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-publisher-rule-condition-in-applocker.md
index 73bd0d992a..8636e3b8dd 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-publisher-rule-condition-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/understanding-the-publisher-rule-condition-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic explains the AppLocker publisher rule condition, what co
 ms.assetid: df61ed8f-a97e-4644-9d0a-2169f18c1c4f
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Understanding the publisher rule condition in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/use-a-reference-computer-to-create-and-maintain-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/use-a-reference-computer-to-create-and-maintain-applocker-policies.md
index f051177f0c..72eea2c6c1 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/use-a-reference-computer-to-create-and-maintain-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/use-a-reference-computer-to-create-and-maintain-applocker-policies.md
@@ -1,9 +1,9 @@
 ---
-title: "Use a reference device to create and maintain AppLocker policies (Windows 10)"
+title: Use a reference device to create and maintain AppLocker policies (Windows 10)
 description: This topic for the IT professional describes the steps to create and maintain AppLocker policies by using a reference computer.
 ms.assetid: 10c3597f-f44c-4c8e-8fe5-105d4ac016a6
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Use a reference device to create and maintain AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md b/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
index 4e49ccf26f..b6018803fb 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes concepts and procedures t
 ms.assetid: 2b7e0cec-df62-49d6-a2b7-6b8e30180943
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Use AppLocker and Software Restriction Policies in the same domain
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/use-the-applocker-windows-powershell-cmdlets.md b/windows/security/threat-protection/windows-defender-application-control/applocker/use-the-applocker-windows-powershell-cmdlets.md
index 58edb0059e..65ade4ae02 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/use-the-applocker-windows-powershell-cmdlets.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/use-the-applocker-windows-powershell-cmdlets.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals describes how each AppLocker Window
 ms.assetid: 374e029c-5c0a-44ab-a57a-2a9dd17dc57d
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Use the AppLocker Windows PowerShell cmdlets
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/using-event-viewer-with-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/using-event-viewer-with-applocker.md
index 78c04357c6..7895373d6e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/using-event-viewer-with-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/using-event-viewer-with-applocker.md
@@ -4,7 +4,7 @@ description: This topic lists AppLocker events and describes how to use Event Vi
 ms.assetid: 109abb10-78b1-4c29-a576-e5a17dfeb916
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Using Event Viewer with AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies.md
index 1dd5197ddd..5e34495965 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes how to use Software Re
 ms.assetid: c3366be7-e632-4add-bd10-9df088f74c6d
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Use Software Restriction Policies and AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/what-is-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/what-is-applocker.md
index eab62e36b7..5e8f5b2efb 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/what-is-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/what-is-applocker.md
@@ -4,7 +4,7 @@ description: This topic for the IT professional describes what AppLocker is and
 ms.assetid: 44a8a2bb-0f83-4f95-828e-1f364fb65869
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # What Is AppLocker?
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/windows-installer-rules-in-applocker.md b/windows/security/threat-protection/windows-defender-application-control/applocker/windows-installer-rules-in-applocker.md
index 50fff5a7b2..77b78c5a84 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/windows-installer-rules-in-applocker.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/windows-installer-rules-in-applocker.md
@@ -4,7 +4,7 @@ description: This topic describes the file formats and available default rules f
 ms.assetid: 3fecde5b-88b3-4040-81fa-a2d36d052ec9
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Windows Installer rules in AppLocker
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-policies.md b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-policies.md
index 2bde016bc2..276960c4b0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-policies.md
@@ -4,7 +4,7 @@ description: This topic for IT professionals provides links to procedural topics
 ms.assetid: 7062d2e0-9cbb-4cb8-aa8c-b24945c3771d
 ms.reviewer: 
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/21/2017
+ms.technology: mde
 ---
 
 # Working with AppLocker policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
index 0ddb19159b..67910704f3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/working-with-applocker-rules.md
@@ -5,7 +5,7 @@ ms.assetid: 3966b35b-f2da-4371-8b5f-aec031db6bc9
 ms.reviewer: 
 manager: dansimp
 ms.author: macapara
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ author: dansimp
 ms.localizationpriority: medium
 msauthor: v-anbic
 ms.date: 08/27/2018
+ms.technology: mde
 ---
 
 # Working with AppLocker rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/audit-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/audit-windows-defender-application-control-policies.md
index c5f703e0aa..c35dfc5108 100644
--- a/windows/security/threat-protection/windows-defender-application-control/audit-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/audit-windows-defender-application-control-policies.md
@@ -1,9 +1,9 @@
 ---
 title: Audit Windows Defender Application Control policies (Windows 10)
 description: Audits allow admins to discover apps that were missed during an initial policy scan and to identify new apps that were installed since the policy was created.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Audit Windows Defender Application Control policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/configure-wdac-managed-installer.md b/windows/security/threat-protection/windows-defender-application-control/configure-wdac-managed-installer.md
index b7f98f9949..91186d9798 100644
--- a/windows/security/threat-protection/windows-defender-application-control/configure-wdac-managed-installer.md
+++ b/windows/security/threat-protection/windows-defender-application-control/configure-wdac-managed-installer.md
@@ -1,9 +1,9 @@
 ---
 title: Configure a WDAC managed installer (Windows 10)
 description: Explains how to configure a custom Manged Installer.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 08/14/2020
+ms.technology: mde
 ---
 
 # Configuring a managed installer with AppLocker and Windows Defender Application Control
diff --git a/windows/security/threat-protection/windows-defender-application-control/create-code-signing-cert-for-windows-defender-application-control.md b/windows/security/threat-protection/windows-defender-application-control/create-code-signing-cert-for-windows-defender-application-control.md
index da15b10af4..f3b993cbc0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/create-code-signing-cert-for-windows-defender-application-control.md
+++ b/windows/security/threat-protection/windows-defender-application-control/create-code-signing-cert-for-windows-defender-application-control.md
@@ -1,9 +1,9 @@
 ---
 title: Create a code signing cert for Windows Defender Application Control  (Windows 10)
 description: Learn how to set up a publicly-issued code signing certificate, so you can sign catalog files or WDAC policies internally.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 02/28/2018
+ms.technology: mde
 ---
 
 # Optional: Create a code signing cert for Windows Defender Application Control  
diff --git a/windows/security/threat-protection/windows-defender-application-control/create-initial-default-policy.md b/windows/security/threat-protection/windows-defender-application-control/create-initial-default-policy.md
index d755422a84..37cb5bd513 100644
--- a/windows/security/threat-protection/windows-defender-application-control/create-initial-default-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/create-initial-default-policy.md
@@ -1,9 +1,9 @@
 ---
 title: Create a WDAC policy for fixed-workload devices using a reference computer (Windows 10)
 description: To create a Windows Defender Application Control (WDAC) policy for fixed-workload devices within your organization, follow this guide.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Create a WDAC policy for fixed-workload devices using a reference computer
diff --git a/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-fully-managed-devices.md b/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-fully-managed-devices.md
index 8b4a0fa4ff..bec0d684e1 100644
--- a/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-fully-managed-devices.md
+++ b/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-fully-managed-devices.md
@@ -1,10 +1,10 @@
 ---
 title: Create a WDAC policy for fully-managed devices (Windows 10)
 description: Windows Defender Application Control restricts which applications users are allowed to run and the code that runs in the system core.
-keywords:  security, malware
+keywords: security, malware
 ms.topic: conceptual
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 11/20/2019
+ms.technology: mde
 ---
 
 # Create a WDAC policy for fully-managed devices
diff --git a/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-lightly-managed-devices.md b/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-lightly-managed-devices.md
index 89cecfc78b..85a6d9cfdc 100644
--- a/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-lightly-managed-devices.md
+++ b/windows/security/threat-protection/windows-defender-application-control/create-wdac-policy-for-lightly-managed-devices.md
@@ -1,10 +1,10 @@
 ---
 title: Create a WDAC policy for lightly-managed devices (Windows 10)
 description: Windows Defender Application Control restricts which applications users are allowed to run and the code that runs in the system core.
-keywords:  security, malware
+keywords: security, malware
 ms.topic: conceptual
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 11/15/2019
+ms.technology: mde
 ---
 
 # Create a WDAC policy for lightly-managed devices
diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-catalog-files-to-support-windows-defender-application-control.md b/windows/security/threat-protection/windows-defender-application-control/deploy-catalog-files-to-support-windows-defender-application-control.md
index 3abf426167..9dd3b2efa3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-catalog-files-to-support-windows-defender-application-control.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-catalog-files-to-support-windows-defender-application-control.md
@@ -1,9 +1,9 @@
 ---
 title: Deploy catalog files to support Windows Defender Application Control (Windows 10)
 description: Catalog files simplify running unsigned applications in the presence of a Windows Defender Application Control (WDAC) policy.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 02/28/2018
+ms.technology: mde
 ---
 
 # Deploy catalog files to support Windows Defender Application Control
diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index 31c3deaf6b..d52c5a2d88 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -1,9 +1,9 @@
 ---
 title: Use multiple Windows Defender Application Control Policies  (Windows 10)
 description: Windows Defender Application Control supports multiple code integrity policies for one device.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 11/13/2020
+ms.technology: mde
 ---
 
 # Use multiple Windows Defender Application Control Policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-group-policy.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-group-policy.md
index 9151364753..4246d0b428 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-group-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-group-policy.md
@@ -1,9 +1,9 @@
 ---
 title: Deploy WDAC policies via Group Policy (Windows 10)
 description: Windows Defender Application Control (WDAC) policies can easily be deployed and managed with Group Policy. Learn how by following this step-by-step guide.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 02/28/2018
+ms.technology: mde
 ---
 
 # Deploy Windows Defender Application Control policies by using Group Policy
diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
index 651222522b..8eb3de7a42 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
@@ -1,9 +1,9 @@
 ---
 title: Deploy Windows Defender Application Control (WDAC) policies by using Microsoft Intune (Windows 10)
 description: You can use Microsoft Intune to configure Windows Defender Application Control (WDAC). Learn how with this step-by-step guide.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 04/29/2020
+ms.technology: mde
 ---
 
 # Deploy Windows Defender Application Control policies by using Microsoft Intune
diff --git a/windows/security/threat-protection/windows-defender-application-control/disable-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/disable-windows-defender-application-control-policies.md
index 9b387d559d..a84b17e822 100644
--- a/windows/security/threat-protection/windows-defender-application-control/disable-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/disable-windows-defender-application-control-policies.md
@@ -1,9 +1,9 @@
 ---
 title: Disable Windows Defender Application Control policies  (Windows 10)
 description: Learn how to disable both signed and unsigned Windows Defender Application Control policies, within Windows and within the BIOS.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Disable Windows Defender Application Control policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/enforce-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/enforce-windows-defender-application-control-policies.md
index 9d9abf86c3..86bf4600dd 100644
--- a/windows/security/threat-protection/windows-defender-application-control/enforce-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/enforce-windows-defender-application-control-policies.md
@@ -1,9 +1,9 @@
 ---
 title: Enforce Windows Defender Application Control (WDAC) policies (Windows 10)
 description: Learn how to test a Windows Defender Application Control (WDAC) policy in enforced mode by following these steps in an elevated Windows PowerShell session.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Enforce Windows Defender Application Control policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md b/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md
index 444430a762..b464707f61 100644
--- a/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md
+++ b/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md
@@ -1,9 +1,9 @@
 ---
 title: Understanding Application Control event IDs (Windows 10)
 description: Learn what different Windows Defender Application Control event IDs signify.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 3/17/2020
+ms.technology: mde
 ---
 
 # Understanding Application Control events
diff --git a/windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md b/windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md
index 455177e5c9..6ee1d70486 100644
--- a/windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md
+++ b/windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md
@@ -1,9 +1,9 @@
 ---
 title: Understanding Application Control event tags (Windows 10)
 description: Learn what different Windows Defender Application Control event tags signify.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 8/27/2020
+ms.technology: mde
 ---
 
 # Understanding Application Control event tags
diff --git a/windows/security/threat-protection/windows-defender-application-control/example-wdac-base-policies.md b/windows/security/threat-protection/windows-defender-application-control/example-wdac-base-policies.md
index 293ed79adc..e6ce58fcd0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/example-wdac-base-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/example-wdac-base-policies.md
@@ -1,10 +1,10 @@
 ---
 title: Example WDAC base policies (Windows 10)
 description: When creating a WDAC policy for an organization, start from one of the many available example base policies.
-keywords:  security, malware
+keywords: security, malware
 ms.topic: article
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 11/15/2019
+ms.technology: mde
 ---
 
 # Windows Defender Application Control example base policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/feature-availability.md b/windows/security/threat-protection/windows-defender-application-control/feature-availability.md
index 638d0f40cd..bf9cd09f77 100644
--- a/windows/security/threat-protection/windows-defender-application-control/feature-availability.md
+++ b/windows/security/threat-protection/windows-defender-application-control/feature-availability.md
@@ -1,9 +1,9 @@
 ---
 title: Feature Availability
 description: Compare WDAC and AppLocker feature availability.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: deniseb
 manager: dansimp
 ms.date: 04/15/2020
 ms.custom: asr
+ms.technology: mde
 ---
 
 # WDAC and AppLocker feature availability
diff --git a/windows/security/threat-protection/windows-defender-application-control/manage-packaged-apps-with-windows-defender-application-control.md b/windows/security/threat-protection/windows-defender-application-control/manage-packaged-apps-with-windows-defender-application-control.md
index 0c2cbcf366..4d5cd8178f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/manage-packaged-apps-with-windows-defender-application-control.md
+++ b/windows/security/threat-protection/windows-defender-application-control/manage-packaged-apps-with-windows-defender-application-control.md
@@ -1,9 +1,9 @@
 ---
 title: Manage packaged apps with WDAC  (Windows 10)
 description: Packaged apps, also known as Universal Windows apps, allow you to control the entire app by using a single Windows Defender Application Control (WDAC) rule.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/29/2020
+ms.technology: mde
 ---
 
 # Manage Packaged Apps with Windows Defender Application Control 
diff --git a/windows/security/threat-protection/windows-defender-application-control/merge-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/merge-windows-defender-application-control-policies.md
index 8437b48c3c..97f364c353 100644
--- a/windows/security/threat-protection/windows-defender-application-control/merge-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/merge-windows-defender-application-control-policies.md
@@ -1,9 +1,9 @@
 ---
 title: Merge Windows Defender Application Control policies (Windows 10)
 description: Because each computer running Windows 10 can have only one WDAC policy, you will occasionally need to merge two or more policies. Learn how with this guide.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Merge Windows Defender Application Control policies
diff --git a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
index 620cfbcd0b..33c5abdbce 100644
--- a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
@@ -1,9 +1,9 @@
 ---
 title: Microsoft recommended block rules (Windows 10)
-description: View a list of recommended block rules, based on knowledge shared between Microsoft and the wider security community.  
-keywords:  security, malware
+description: View a list of recommended block rules, based on knowledge shared between Microsoft and the wider security community.
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 04/09/2019
+ms.technology: mde
 ---
 
 # Microsoft recommended block rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules.md b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules.md
index 7d56cdbe9e..3c8a72ac23 100644
--- a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules.md
@@ -1,9 +1,9 @@
 ---
 title: Microsoft recommended driver block rules (Windows 10)
-description: View a list of recommended block rules to block vulnerable third-party drivers discovered by Microsoft and the security research community.  
-keywords:  security, malware, kernel mode, driver
+description: View a list of recommended block rules to block vulnerable third-party drivers discovered by Microsoft and the security research community.
+keywords: security, malware, kernel mode, driver
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 10/15/2020
+ms.technology: mde
 ---
 
 # Microsoft recommended driver block rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md b/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
index b64d307ca9..13d6752759 100644
--- a/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
+++ b/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
@@ -1,9 +1,9 @@
 ---
 title: Plan for WDAC policy management (Windows 10)
 description: Learn about the decisions you need to make to establish the processes for managing and maintaining Windows Defender Application Control policies.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 02/21/2018
+ms.technology: mde
 ---
 
 # Plan for Windows Defender Application Control lifecycle policy management
diff --git a/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md b/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
index 1e729211c5..ed001ad80e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
+++ b/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
@@ -1,9 +1,9 @@
 ---
 title: Query Application Control events with Advanced Hunting (Windows 10)
 description: Learn how to query Windows Defender Application Control events across your entire organization by using Advanced Hunting.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 12/06/2018
+ms.technology: mde
 ---
 
 # Querying Application Control events centrally using Advanced hunting  
diff --git a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md
index 134df74024..b692c51861 100644
--- a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md
+++ b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md
@@ -1,9 +1,9 @@
 ---
 title: Understand WDAC policy rules and file rules (Windows 10)
 description: Learn how Windows Defender Application Control provides control over a computer running Windows 10 by using policies that include policy rules and file rules.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 03/04/2020
+ms.technology: mde
 ---
 
 # Understand WDAC policy rules and file rules
diff --git a/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md b/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
index 91a81e3359..936314d342 100644
--- a/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
+++ b/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
@@ -3,7 +3,7 @@ title: Policy creation for common WDAC usage scenarios (Windows 10)
 description: Develop a plan for deploying Windows Defender Application Control (WDAC) in your organization based on these common scenarios.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 03/01/2018
+ms.technology: mde
 ---
 
 # Windows Defender Application Control deployment in different scenarios: types of devices
diff --git a/windows/security/threat-protection/windows-defender-application-control/understand-windows-defender-application-control-policy-design-decisions.md b/windows/security/threat-protection/windows-defender-application-control/understand-windows-defender-application-control-policy-design-decisions.md
index ae0cd53f63..9443134723 100644
--- a/windows/security/threat-protection/windows-defender-application-control/understand-windows-defender-application-control-policy-design-decisions.md
+++ b/windows/security/threat-protection/windows-defender-application-control/understand-windows-defender-application-control-policy-design-decisions.md
@@ -1,10 +1,10 @@
 ---
 title: Understand Windows Defender Application Control policy design decisions  (Windows 10)
-description: Understand Windows Defender Application Control policy design decisions. 
-keywords:  security, malware
+description: Understand Windows Defender Application Control policy design decisions.
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 manager: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ author: jsuther1974
 ms.reviewer: isbrahm
 ms.author: dansimp
 ms.date: 02/08/2018
+ms.technology: mde
 ---
 
 # Understand Windows Defender Application Control policy design decisions 
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-code-signing-to-simplify-application-control-for-classic-windows-applications.md b/windows/security/threat-protection/windows-defender-application-control/use-code-signing-to-simplify-application-control-for-classic-windows-applications.md
index f49176ee48..8e289e4bf3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-code-signing-to-simplify-application-control-for-classic-windows-applications.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-code-signing-to-simplify-application-control-for-classic-windows-applications.md
@@ -1,9 +1,9 @@
 ---
 title: Use code signing to simplify application control for classic Windows applications (Windows 10)
 description: With embedded signing, your WDAC policies typically do not have to be updated when an app is updated. To set this up, you can choose from a variety of methods.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Use code signing to simplify application control for classic Windows applications
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-device-guard-signing-portal-in-microsoft-store-for-business.md b/windows/security/threat-protection/windows-defender-application-control/use-device-guard-signing-portal-in-microsoft-store-for-business.md
index 766037be4b..4703d016ee 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-device-guard-signing-portal-in-microsoft-store-for-business.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-device-guard-signing-portal-in-microsoft-store-for-business.md
@@ -4,7 +4,7 @@ description: You can sign code integrity policies with the Device Guard signing
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ author: jsuther1974
 ms.reviewer: isbrahm
 manager: dansimp
 ms.date: 02/19/2019
+ms.technology: mde
 ---
 
 # Optional: Use the Device Guard Signing Portal in the Microsoft Store for Business
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-signed-policies-to-protect-windows-defender-application-control-against-tampering.md b/windows/security/threat-protection/windows-defender-application-control/use-signed-policies-to-protect-windows-defender-application-control-against-tampering.md
index f5a09fc5c6..c951c3b825 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-signed-policies-to-protect-windows-defender-application-control-against-tampering.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-signed-policies-to-protect-windows-defender-application-control-against-tampering.md
@@ -1,9 +1,9 @@
 ---
 title: Use signed policies to protect Windows Defender Application Control against tampering  (Windows 10)
-description: Signed WDAC policies give organizations the highest level of malware protection available in Windows 10. 
-keywords:  security, malware
+description: Signed WDAC policies give organizations the highest level of malware protection available in Windows 10.
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Use signed policies to protect Windows Defender Application Control against tampering
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
index fc7de322fe..5392e5253b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
@@ -5,7 +5,7 @@ keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.collection: M365-security-compliance
 author: jsuther1974
 ms.reviewer: isbrahm
 ms.date: 05/03/2018
+ms.technology: mde
 ---
 
 # Use a Windows Defender Application Control policy to control specific plug-ins, add-ins, and modules 
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-dynamic-code-security.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-dynamic-code-security.md
index 5490ef7a77..9670e64011 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-dynamic-code-security.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-dynamic-code-security.md
@@ -1,9 +1,9 @@
 ---
 title: Windows Defender Application Control and .NET Hardening (Windows 10)
 description: Dynamic Code Security is an application control feature that can verify code loaded by .NET at runtime.
-keywords:  security, malware
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 08/20/2018
+ms.technology: mde
 ---
 
 # Windows Defender Application Control and .NET hardening 
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
index 5b14874133..089a7ea67f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
@@ -3,7 +3,7 @@ title: Authorize reputable apps with the Intelligent Security Graph (ISG) (Windo
 description: Automatically authorize applications that Microsoft’s ISG recognizes as having known good reputation.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 03/10/2020
+ms.technology: mde
 ---
 
 # Authorize reputable apps with the Intelligent Security Graph (ISG) 
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-managed-installer.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-managed-installer.md
index d6810894b4..c3397bfba4 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-managed-installer.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-managed-installer.md
@@ -1,9 +1,9 @@
 ---
 title: Authorize apps deployed with a WDAC managed installer (Windows 10)
-description: Explains how you can use a managed installer to automatically authorize applications deployed and installed by a designated software distribution solution, such as Microsoft Endpoint Configuration Manager. 
-keywords:  security, malware
+description: Explains how you can use a managed installer to automatically authorize applications deployed and installed by a designated software distribution solution, such as Microsoft Endpoint Configuration Manager.
+keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 08/14/2020
+ms.technology: mde
 ---
 
 # Authorize apps deployed with a WDAC managed installer
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-and-applocker-overview.md b/windows/security/threat-protection/windows-defender-application-control/wdac-and-applocker-overview.md
index 9fe4c819a1..03f0eb6f0d 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-and-applocker-overview.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-and-applocker-overview.md
@@ -3,7 +3,7 @@ title: WDAC and AppLocker Overview
 description: Compare Windows application control technologies.
 keywords: security, malware, allow-list, block-list
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: deniseb
 manager: dansimp
 ms.date: 09/30/2020
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Windows Defender Application Control and AppLocker Overview
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
index f911c0979d..46ef9319e7 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-base-policy.md
@@ -3,7 +3,7 @@ title: Windows Defender Application Control Wizard Base Policy Creation
 description: Creating new base application control policies with the Microsoft Windows Defender Application (WDAC) Wizard.
 keywords: allow listing, block listing, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 10/14/2020
+ms.technology: mde
 ---
 
 # Creating a new Base Policy with the Wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
index f75e4aeaea..bca81708e6 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-create-supplemental-policy.md
@@ -3,7 +3,7 @@ title: Windows Defender Application Control Wizard Supplemental Policy Creation
 description: Creating supplemental application control policies with the WDAC Wizard.
 keywords: allowlisting, blocklisting, security, malware, supplemental policy
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 10/14/2020
+ms.technology: mde
 ---
 
 # Creating a new Supplemental Policy with the Wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
index e8e812e434..2b94c7f004 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-editing-policy.md
@@ -3,7 +3,7 @@ title: Editing Windows Defender Application Control Policies with the Wizard
 description: Editing existing base and supplemental policies with the Microsoft WDAC Wizard.
 keywords: allowlisting, blocklisting, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 10/14/2020
+ms.technology: mde
 ---
 
 # Editing existing base and supplemental WDAC policies with the Wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
index 1b7d604a49..ec6e988048 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard-merging-policies.md
@@ -3,7 +3,7 @@ title: Windows Defender Application Control Wizard Policy Merging Operation
 description: Merging multiple policies into a single application control policy with the Microsoft WDAC Wizard.
 keywords: allowlisting, blocklisting, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 10/14/2020
+ms.technology: mde
 ---
 
 # Merging existing policies with the WDAC Wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
index 0232249e8a..cf315b6c1f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
+++ b/windows/security/threat-protection/windows-defender-application-control/wdac-wizard.md
@@ -3,7 +3,7 @@ title: Windows Defender Application Control Wizard
 description: Microsoft Defender Application Control Wizard (WDAC) Wizard allows users to create, edit, and merge application control policies in a simple to use Windows application.
 keywords: allowlisting, blocklisting, security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 10/14/2020
+ms.technology: mde
 ---
 
 # Windows Defender Application Control Wizard
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
index 0484518b2a..68c0aa549e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
@@ -1,9 +1,9 @@
 ---
 title: Planning and getting started on the Windows Defender Application Control deployment process (Windows 10)
-description: Learn how to gather information, create a plan, and begin to test initial code integrity policies for a Windows Defender Application Control deployment. 
+description: Learn how to gather information, create a plan, and begin to test initial code integrity policies for a Windows Defender Application Control deployment.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 05/16/2018
+ms.technology: mde
 ---
 
 # Planning and getting started on the Windows Defender Application Control deployment process
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
index bcddc618db..0f0e3e388f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-design-guide.md
@@ -3,7 +3,7 @@ title: Windows Defender Application Control design guide (Windows 10)
 description: Microsoft Windows Defender Application Control allows organizations to control what apps and drivers will run on their managed Windows 10 devices.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: dansimp
 manager: dansimp
 ms.topic: conceptual
 ms.date: 02/20/2018
+ms.technology: mde
 ---
 
 # Windows Defender Application Control design guide
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
index b91a1efb4b..8a7fec062e 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
@@ -3,7 +3,7 @@ title: Managing and troubleshooting Windows Defender Application Control policie
 description: Gather information about how your deployed Windows Defender Application Control policies are behaving.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
 ms.date: 03/16/2020
+ms.technology: mde
 ---
 
 # Windows Defender Application Control operational guide
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control.md
index e6c525c383..5c7a82ef8a 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control.md
@@ -3,7 +3,7 @@ title: Application Control for Windows
 description: Application Control restricts which applications users are allowed to run and the code that runs in the system core.
 keywords: security, malware
 ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -16,6 +16,7 @@ ms.author: deniseb
 manager: dansimp
 ms.date: 05/26/2020
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Application Control for Windows
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-account-protection.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-account-protection.md
index 3179f10cb2..967180e8e6 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-account-protection.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-account-protection.md
@@ -3,7 +3,7 @@ title: Account protection in the Windows Security app
 description: Use the Account protection section to manage security for your account and sign in to Microsoft.
 keywords: account protection, wdav, smartscreen, antivirus, wdsc, exploit, protection, hide, Windows Defender SmartScreen, SmartScreen Filter, Windows SmartScreen
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-app-browser-control.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-app-browser-control.md
index bbfe0a7bd0..d6c1337545 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-app-browser-control.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-app-browser-control.md
@@ -3,7 +3,7 @@ title: App & browser control in the Windows Security app
 description: Use the App & browser control section to see and configure Windows Defender SmartScreen and Exploit protection settings.
 keywords: wdav, smartscreen, antivirus, wdsc, exploit, protection, hide
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # App and browser control
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
index 45a707db18..5924c85165 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
@@ -3,7 +3,7 @@ title: Customize Windows Security contact information
 description: Provide information to your employees on how to contact your IT department when a security issue occurs
 keywords: wdsc, security center, defender, notification, customize, contact, it department, help desk, call, help site
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Customize the Windows Security app for your organization
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-device-performance-health.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-device-performance-health.md
index ca606e3a6b..de163e7707 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-device-performance-health.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-device-performance-health.md
@@ -3,7 +3,7 @@ title: Device & performance health in the Windows Security app
 description: Use the Device & performance health section to see the status of the machine and note any storage, update, battery, driver, or hardware configuration issues
 keywords: wdsc, windows update, storage, driver, device, installation, battery, health, status
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-device-security.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-device-security.md
index 26a2da094f..8df410f1f3 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-device-security.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-device-security.md
@@ -3,7 +3,7 @@ title: Device security in the Windows Security app
 description: Use the Device security section to manage security built into your device, including virtualization-based security.
 keywords: device security, device guard, wdav, smartscreen, antivirus, wdsc, exploit, protection, hide
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 10/02/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Device security
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-family-options.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-family-options.md
index 4886c28f4d..e8003f20a2 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-family-options.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-family-options.md
@@ -3,7 +3,7 @@ title: Family options in the Windows Security app
 description: Learn how to hide the Family options section of Windows Security for enterprise environments. Family options are not intended for business environments.
 keywords: wdsc, family options, hide, suppress, remove, disable, uninstall, kids, parents, safety, parental, child, screen time
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-firewall-network-protection.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-firewall-network-protection.md
index 7a394abba3..5cf74d9fdf 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-firewall-network-protection.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-firewall-network-protection.md
@@ -3,7 +3,7 @@ title: Firewall and network protection in the Windows Security app
 description: Use the Firewall & network protection section to see the status of and make changes to firewalls and network connections for the machine.
 keywords: wdsc, firewall, windows defender firewall, network, connections, domain, private network, publish network, allow firewall, firewall rule, block firewall
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-hide-notifications.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-hide-notifications.md
index e4ee0c83a3..1a7d13e733 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-hide-notifications.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-hide-notifications.md
@@ -3,7 +3,7 @@ title: Hide notifications from the Windows Security app
 description: Prevent Windows Security app notifications from appearing on user endpoints
 keywords: defender, security center, app, notifications, av, alerts
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 07/23/2020
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Hide Windows Security app notifications
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection.md
index 63e2d82171..28d50127b4 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection.md
@@ -3,7 +3,7 @@ title: Virus and threat protection in the Windows Security app
 description: Use the Virus & threat protection section to see and configure Microsoft Defender Antivirus, Controlled folder access, and 3rd-party AV products.
 keywords: wdav, smartscreen, antivirus, wdsc, exploit, protection, hide
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-windows-10-in-s-mode.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-windows-10-in-s-mode.md
index b22eec75f4..7925fe31dc 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-windows-10-in-s-mode.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-windows-10-in-s-mode.md
@@ -3,7 +3,7 @@ title: Manage Windows Security in Windows 10 in S mode
 description: Learn how to manage Windows Security settings in Windows 10 in S mode. Windows 10 in S mode is streamlined for tighter security and superior performance.
 keywords: windows 10 in s mode, windows 10 s, windows 10 s mode, wdav, smartscreen, antivirus, wdsc, firewall, device health, performance, Edge, browser, family, parental options, security, windows
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.pagetype: security
@@ -13,6 +13,7 @@ ms.author: dansimp
 ms.date: 04/30/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # Manage Windows Security in Windows 10 in S mode
diff --git a/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md b/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
index 7f5c78c55f..174e3b1ec8 100644
--- a/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
+++ b/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
@@ -3,7 +3,7 @@ title: The Windows Security  app
 description: The Windows Security app brings together common Windows security features into one place
 keywords: wdav, smartscreen, antivirus, wdsc, firewall, device health, performance, Edge, browser, family, parental options, security, windows
 search.product: eADQiWindows 10XVcnh
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: manage
 ms.sitesec: library
 ms.localizationpriority: medium
@@ -12,6 +12,7 @@ ms.author: dansimp
 ms.date: 10/02/2018
 ms.reviewer: 
 manager: dansimp
+ms.technology: mde
 ---
 
 # The Windows Security app
diff --git a/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md b/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
index e389280262..8b55c05b3e 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
@@ -6,13 +6,14 @@ ms.reviewer:
 manager: dansimp
 ms.author: dansimp
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 ms.date: 03/01/2019
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
index 00caa4505d..bb47f523e4 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md
@@ -7,13 +7,14 @@ manager: dansimp
 ms.author: deniseb
 author: denisebmsft
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 ms.date: 03/01/2019
 ms.custom: asr
+ms.technology: mde
 ---
 
 
diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index 5dd9dc063d..662de15893 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -2,7 +2,7 @@
 title: System Guard Secure Launch and SMM protection (Windows 10)
 description: Explains how to configure System Guard Secure Launch and System Management Mode (SMM protection) to improve the startup security of Windows 10 devices.
 search.appverid: met150
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -12,6 +12,7 @@ ms.date: 12/28/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # System Guard Secure Launch and SMM protection
diff --git a/windows/security/threat-protection/windows-firewall/add-production-devices-to-the-membership-group-for-a-zone.md b/windows/security/threat-protection/windows-firewall/add-production-devices-to-the-membership-group-for-a-zone.md
index 32918a0147..9995f497a4 100644
--- a/windows/security/threat-protection/windows-firewall/add-production-devices-to-the-membership-group-for-a-zone.md
+++ b/windows/security/threat-protection/windows-firewall/add-production-devices-to-the-membership-group-for-a-zone.md
@@ -4,7 +4,7 @@ description: Learn how to add production devices to the membership group for a z
 ms.assetid: 7141de15-5840-4beb-aabe-21c1dd89eb23
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Add Production Devices to the Membership Group for a Zone
diff --git a/windows/security/threat-protection/windows-firewall/add-test-devices-to-the-membership-group-for-a-zone.md b/windows/security/threat-protection/windows-firewall/add-test-devices-to-the-membership-group-for-a-zone.md
index 6bfc87a6c3..30d809e60c 100644
--- a/windows/security/threat-protection/windows-firewall/add-test-devices-to-the-membership-group-for-a-zone.md
+++ b/windows/security/threat-protection/windows-firewall/add-test-devices-to-the-membership-group-for-a-zone.md
@@ -4,7 +4,7 @@ description: Learn how to add devices to the group for a zone to test whether yo
 ms.assetid: 47057d90-b053-48a3-b881-4f2458d3e431
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Add Test Devices to the Membership Group for a Zone
diff --git a/windows/security/threat-protection/windows-firewall/appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md b/windows/security/threat-protection/windows-firewall/appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md
index b9c0f35fc2..0345da06fe 100644
--- a/windows/security/threat-protection/windows-firewall/appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md
+++ b/windows/security/threat-protection/windows-firewall/appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md
@@ -4,7 +4,7 @@ description: Use sample template files import an XML file containing customized
 ms.assetid: 75930afd-ab1b-4e53-915b-a28787814b38
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Appendix A: Sample GPO Template Files for Settings Used in this Guide
diff --git a/windows/security/threat-protection/windows-firewall/assign-security-group-filters-to-the-gpo.md b/windows/security/threat-protection/windows-firewall/assign-security-group-filters-to-the-gpo.md
index 663f7ba800..08a9798526 100644
--- a/windows/security/threat-protection/windows-firewall/assign-security-group-filters-to-the-gpo.md
+++ b/windows/security/threat-protection/windows-firewall/assign-security-group-filters-to-the-gpo.md
@@ -4,7 +4,7 @@ description: Learn how to use Group Policy Management MMC to assign security gro
 ms.assetid: bcbe3299-8d87-4ec1-9e86-8e4a680fd7c8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/02/2019
+ms.technology: mde
 ---
 
 # Assign Security Group Filters to the GPO
diff --git a/windows/security/threat-protection/windows-firewall/basic-firewall-policy-design.md b/windows/security/threat-protection/windows-firewall/basic-firewall-policy-design.md
index f8bce090ea..76378c3a0f 100644
--- a/windows/security/threat-protection/windows-firewall/basic-firewall-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/basic-firewall-policy-design.md
@@ -4,7 +4,7 @@ description: Protect the devices in your organization from unwanted network traf
 ms.assetid: 6f7af99e-6850-4522-b7f5-db98e6941418
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Basic Firewall Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/best-practices-configuring.md b/windows/security/threat-protection/windows-firewall/best-practices-configuring.md
index 274baf82d2..a8e18add00 100644
--- a/windows/security/threat-protection/windows-firewall/best-practices-configuring.md
+++ b/windows/security/threat-protection/windows-firewall/best-practices-configuring.md
@@ -1,10 +1,8 @@
 ---
 title: Best practices for configuring Windows Defender Firewall
 description: Learn about best practices for configuring Windows Defender Firewall
-
 keywords: firewall, best practices, security, network security, network, rules, filters,
-
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -13,9 +11,9 @@ author: schmurky
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: article
-
+ms.technology: mde
 ---
 
 # Best practices for configuring Windows Defender Firewall
diff --git a/windows/security/threat-protection/windows-firewall/boundary-zone-gpos.md b/windows/security/threat-protection/windows-firewall/boundary-zone-gpos.md
index 81e8194d88..50e2f66e16 100644
--- a/windows/security/threat-protection/windows-firewall/boundary-zone-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/boundary-zone-gpos.md
@@ -4,7 +4,7 @@ description: Learn about GPOs to create that must align with the group you creat
 ms.assetid: 1ae66088-02c3-47e4-b7e8-74d0b8f8646e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Boundary Zone GPOs
diff --git a/windows/security/threat-protection/windows-firewall/boundary-zone.md b/windows/security/threat-protection/windows-firewall/boundary-zone.md
index 849fd51e8b..0e67454be2 100644
--- a/windows/security/threat-protection/windows-firewall/boundary-zone.md
+++ b/windows/security/threat-protection/windows-firewall/boundary-zone.md
@@ -4,7 +4,7 @@ description: Learn how a boundary zone supports devices that must receive traffi
 ms.assetid: ed98b680-fd24-44bd-a7dd-26c522e45a20
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Boundary Zone
diff --git a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design-example.md b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design-example.md
index 45b1bdfe0f..1b369d6c5e 100644
--- a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design-example.md
+++ b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design-example.md
@@ -4,7 +4,7 @@ description: This example uses a fictitious company to illustrate certificate-ba
 ms.assetid: 509b513e-dd49-4234-99f9-636fd2f749e3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Certificate-based Isolation Policy Design Example
diff --git a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
index 38ec0654bb..7c427d50e7 100644
--- a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Explore the methodology behind Certificate-based Isolation Policy D
 ms.assetid: 63e01a60-9daa-4701-9472-096c85e0f862
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Certificate-based isolation policy design
diff --git a/windows/security/threat-protection/windows-firewall/change-rules-from-request-to-require-mode.md b/windows/security/threat-protection/windows-firewall/change-rules-from-request-to-require-mode.md
index d953de0a48..cbea6cabc0 100644
--- a/windows/security/threat-protection/windows-firewall/change-rules-from-request-to-require-mode.md
+++ b/windows/security/threat-protection/windows-firewall/change-rules-from-request-to-require-mode.md
@@ -4,7 +4,7 @@ description: Learn how to convert a rule from request to require mode and apply
 ms.assetid: ad969eda-c681-48cb-a2c4-0b6cae5f4cff
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Change Rules from Request to Require Mode
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-basic-firewall-settings.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-basic-firewall-settings.md
index 8d1a5f6710..a3164b6f45 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-basic-firewall-settings.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-basic-firewall-settings.md
@@ -1,10 +1,10 @@
 ---
 title: Checklist Configuring Basic Firewall Settings (Windows 10)
-description: Configure Windows Firewall to set inbound and outbound behavior, display notifications, record log files and more of the necessary function for Firewall. 
+description: Configure Windows Firewall to set inbound and outbound behavior, display notifications, record log files and more of the necessary function for Firewall.
 ms.assetid: 0d10cdae-da3d-4a33-b8a4-6b6656b6d1f9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Basic Firewall Settings
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-an-isolated-server-zone.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-an-isolated-server-zone.md
index 9bc976625b..2ecb358ade 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-an-isolated-server-zone.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-an-isolated-server-zone.md
@@ -4,7 +4,7 @@ description: Use these tasks to configure connection security rules and IPsec se
 ms.assetid: 67c50a91-e71e-4f1e-a534-dad2582e311c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Rules for an Isolated Server Zone
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md
index bb381856b4..c07a12c977 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md
@@ -4,7 +4,7 @@ description: Checklist Configuring Rules for Servers in a Standalone Isolated Se
 ms.assetid: ccc09d06-ef75-43b0-9c77-db06f2940955
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-boundary-zone.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-boundary-zone.md
index 4a8272c0a4..e10ef7fc18 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-boundary-zone.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-boundary-zone.md
@@ -4,7 +4,7 @@ description: Use these tasks to configure connection security rules and IPsec se
 ms.assetid: 25fe0197-de5a-4b4c-bc44-c6f0620ea94b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Rules for the Boundary Zone
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-encryption-zone.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-encryption-zone.md
index b9406909c6..180c4f2168 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-encryption-zone.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-encryption-zone.md
@@ -4,7 +4,7 @@ description: Use these tasks to configure connection security rules and IPsec se
 ms.assetid: 87b1787b-0c70-47a4-ae52-700bff505ea4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Rules for the Encryption Zone
diff --git a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-isolated-domain.md b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-isolated-domain.md
index dce673dded..2bccefd09c 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-isolated-domain.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-configuring-rules-for-the-isolated-domain.md
@@ -4,7 +4,7 @@ description: Use these tasks to configure connection security rules and IPsec se
 ms.assetid: bfd2d29e-4011-40ec-a52e-a67d4af9748e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Configuring Rules for the Isolated Domain
diff --git a/windows/security/threat-protection/windows-firewall/checklist-creating-group-policy-objects.md b/windows/security/threat-protection/windows-firewall/checklist-creating-group-policy-objects.md
index 4bea4169a2..d2ba4b5a27 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-creating-group-policy-objects.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-creating-group-policy-objects.md
@@ -4,7 +4,7 @@ description: Learn to deploy firewall settings, IPsec settings, firewall rules,
 ms.assetid: e99bd6a4-34a7-47b5-9791-ae819977a559
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Creating Group Policy Objects
diff --git a/windows/security/threat-protection/windows-firewall/checklist-creating-inbound-firewall-rules.md b/windows/security/threat-protection/windows-firewall/checklist-creating-inbound-firewall-rules.md
index 4b04bec98e..834016bd7b 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-creating-inbound-firewall-rules.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-creating-inbound-firewall-rules.md
@@ -4,7 +4,7 @@ description: Use these tasks for creating inbound firewall rules in your GPOs fo
 ms.assetid: 0520e14e-5c82-48da-8fbf-87cef36ce02f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Creating Inbound Firewall Rules
diff --git a/windows/security/threat-protection/windows-firewall/checklist-creating-outbound-firewall-rules.md b/windows/security/threat-protection/windows-firewall/checklist-creating-outbound-firewall-rules.md
index 4b03a9a468..b20cb735f9 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-creating-outbound-firewall-rules.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-creating-outbound-firewall-rules.md
@@ -4,7 +4,7 @@ description: Use these tasks for creating outbound firewall rules in your GPOs f
 ms.assetid: 611bb98f-4e97-411f-82bf-7a844a4130de
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Creating Outbound Firewall Rules
diff --git a/windows/security/threat-protection/windows-firewall/checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md b/windows/security/threat-protection/windows-firewall/checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md
index 49d318d5fe..4a4c525867 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md
@@ -4,7 +4,7 @@ description: Checklist for when creating rules for clients of a Standalone Isola
 ms.assetid: 6a5e6478-add3-47e3-8221-972549e013f6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-basic-firewall-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-basic-firewall-policy-design.md
index 2fec691406..1aa6060a8c 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-basic-firewall-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-basic-firewall-policy-design.md
@@ -1,10 +1,10 @@
 ---
 title: Checklist Implementing a Basic Firewall Policy Design (Windows 10)
-description: Follow this parent checklist for implementing a basic firewall policy design to ensure successful implementation. 
+description: Follow this parent checklist for implementing a basic firewall policy design to ensure successful implementation.
 ms.assetid: 6caf0c1e-ac72-4f9d-a986-978b77fbbaa3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Implementing a Basic Firewall Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
index 6e7e1f12f2..52c11e99ed 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Use these references to learn about using certificates as an authen
 ms.assetid: 1e34b5ea-2e77-4598-a765-550418d33894
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Implementing a Certificate-based Isolation Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
index f9ac702f70..1261adcbb9 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Use these references to learn about the domain isolation policy des
 ms.assetid: 76586eb3-c13c-4d71-812f-76bff200fc20
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Implementing a Domain Isolation Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
index 5428613f80..1d53748cc1 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Use these tasks to create a server isolation policy design that is
 ms.assetid: 50a997d8-f079-408c-8ac6-ecd02078ade3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Checklist: Implementing a Standalone Server Isolation Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/configure-authentication-methods.md b/windows/security/threat-protection/windows-firewall/configure-authentication-methods.md
index 547685f707..e6fd6b4090 100644
--- a/windows/security/threat-protection/windows-firewall/configure-authentication-methods.md
+++ b/windows/security/threat-protection/windows-firewall/configure-authentication-methods.md
@@ -4,7 +4,7 @@ description: Learn how to configure authentication methods for devices in an iso
 ms.assetid: 5fcdc523-617f-4233-9213-15fe19f4cd02
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure Authentication Methods
diff --git a/windows/security/threat-protection/windows-firewall/configure-data-protection-quick-mode-settings.md b/windows/security/threat-protection/windows-firewall/configure-data-protection-quick-mode-settings.md
index 886c851257..41b2b78f6c 100644
--- a/windows/security/threat-protection/windows-firewall/configure-data-protection-quick-mode-settings.md
+++ b/windows/security/threat-protection/windows-firewall/configure-data-protection-quick-mode-settings.md
@@ -4,7 +4,7 @@ description: Learn how to configure the data protection settings for connection
 ms.assetid: fdcb1b36-e267-4be7-b842-5df9a067c9e0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure Data Protection (Quick Mode) Settings
diff --git a/windows/security/threat-protection/windows-firewall/configure-group-policy-to-autoenroll-and-deploy-certificates.md b/windows/security/threat-protection/windows-firewall/configure-group-policy-to-autoenroll-and-deploy-certificates.md
index c619cda63c..cfc3364fe7 100644
--- a/windows/security/threat-protection/windows-firewall/configure-group-policy-to-autoenroll-and-deploy-certificates.md
+++ b/windows/security/threat-protection/windows-firewall/configure-group-policy-to-autoenroll-and-deploy-certificates.md
@@ -4,7 +4,7 @@ description: Learn how to configure Group Policy to automatically enroll client
 ms.assetid: faeb62b5-2cc3-42f7-bee5-53ba45d05c09
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Configure Group Policy to Autoenroll and Deploy Certificates
diff --git a/windows/security/threat-protection/windows-firewall/configure-key-exchange-main-mode-settings.md b/windows/security/threat-protection/windows-firewall/configure-key-exchange-main-mode-settings.md
index 7666bdc174..f1b75a3291 100644
--- a/windows/security/threat-protection/windows-firewall/configure-key-exchange-main-mode-settings.md
+++ b/windows/security/threat-protection/windows-firewall/configure-key-exchange-main-mode-settings.md
@@ -4,7 +4,7 @@ description: Learn how to configure the main mode key exchange settings used to
 ms.assetid: 5c593b6b-2cd9-43de-9b4e-95943fe82f52
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure Key Exchange (Main Mode) Settings
diff --git a/windows/security/threat-protection/windows-firewall/configure-the-rules-to-require-encryption.md b/windows/security/threat-protection/windows-firewall/configure-the-rules-to-require-encryption.md
index ca7c77dfd2..561ea0f380 100644
--- a/windows/security/threat-protection/windows-firewall/configure-the-rules-to-require-encryption.md
+++ b/windows/security/threat-protection/windows-firewall/configure-the-rules-to-require-encryption.md
@@ -4,7 +4,7 @@ description: Learn how to configure rules to add encryption algorithms and delet
 ms.assetid: 07b7760f-3225-4b4b-b418-51787b0972a0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure the Rules to Require Encryption
diff --git a/windows/security/threat-protection/windows-firewall/configure-the-windows-firewall-log.md b/windows/security/threat-protection/windows-firewall/configure-the-windows-firewall-log.md
index 8cb54165e1..4c82249ccd 100644
--- a/windows/security/threat-protection/windows-firewall/configure-the-windows-firewall-log.md
+++ b/windows/security/threat-protection/windows-firewall/configure-the-windows-firewall-log.md
@@ -4,7 +4,7 @@ description: Learn how to configure Windows Defender Firewall with Advanced Secu
 ms.assetid: f037113d-506b-44d3-b9c0-0b79d03e7d18
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure the Windows Defender Firewall with Advanced Security Log
diff --git a/windows/security/threat-protection/windows-firewall/configure-the-workstation-authentication-certificate-template.md b/windows/security/threat-protection/windows-firewall/configure-the-workstation-authentication-certificate-template.md
index 927053f40c..7ff2117797 100644
--- a/windows/security/threat-protection/windows-firewall/configure-the-workstation-authentication-certificate-template.md
+++ b/windows/security/threat-protection/windows-firewall/configure-the-workstation-authentication-certificate-template.md
@@ -5,13 +5,14 @@ ms.assetid: c3ac9960-6efc-47c1-bd69-d9d4bf84f7a6
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 ms.date: 07/30/2018
+ms.technology: mde
 ---
 
 # Configure the Workstation Authentication Certificate Template
diff --git a/windows/security/threat-protection/windows-firewall/configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md b/windows/security/threat-protection/windows-firewall/configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md
index e7e888bcdb..200675b11a 100644
--- a/windows/security/threat-protection/windows-firewall/configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md
+++ b/windows/security/threat-protection/windows-firewall/configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md
@@ -4,7 +4,7 @@ description: Configure Windows Defender Firewall with Advanced Security to suppr
 ms.assetid: b7665d1d-f4d2-4b5a-befc-8b6bd940f69b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Configure Windows Defender Firewall with Advanced Security to Suppress Notifications When a Program Is Blocked
diff --git a/windows/security/threat-protection/windows-firewall/confirm-that-certificates-are-deployed-correctly.md b/windows/security/threat-protection/windows-firewall/confirm-that-certificates-are-deployed-correctly.md
index 65704e92f5..8af8ad2d89 100644
--- a/windows/security/threat-protection/windows-firewall/confirm-that-certificates-are-deployed-correctly.md
+++ b/windows/security/threat-protection/windows-firewall/confirm-that-certificates-are-deployed-correctly.md
@@ -4,7 +4,7 @@ description: Learn how to confirm that a Group Policy is being applied as expect
 ms.assetid: de0c8dfe-16b0-4d3b-8e8f-9282f6a65eee
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: securit
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Confirm That Certificates Are Deployed Correctly
diff --git a/windows/security/threat-protection/windows-firewall/copy-a-gpo-to-create-a-new-gpo.md b/windows/security/threat-protection/windows-firewall/copy-a-gpo-to-create-a-new-gpo.md
index 51ecd3fcb2..4020fab006 100644
--- a/windows/security/threat-protection/windows-firewall/copy-a-gpo-to-create-a-new-gpo.md
+++ b/windows/security/threat-protection/windows-firewall/copy-a-gpo-to-create-a-new-gpo.md
@@ -4,7 +4,7 @@ description: Learn how to make a copy of a GPO by using the Active Directory Use
 ms.assetid: 7f6a23e5-4b3f-40d6-bf6d-7895558b1406
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Copy a GPO to Create a New GPO
diff --git a/windows/security/threat-protection/windows-firewall/create-a-group-account-in-active-directory.md b/windows/security/threat-protection/windows-firewall/create-a-group-account-in-active-directory.md
index 35f885a1ee..3511ad7f7f 100644
--- a/windows/security/threat-protection/windows-firewall/create-a-group-account-in-active-directory.md
+++ b/windows/security/threat-protection/windows-firewall/create-a-group-account-in-active-directory.md
@@ -4,7 +4,7 @@ description: Learn how to create a security group for the computers that are to
 ms.assetid: c3700413-e02d-4d56-96b8-7991f97ae432
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create a Group Account in Active Directory
diff --git a/windows/security/threat-protection/windows-firewall/create-a-group-policy-object.md b/windows/security/threat-protection/windows-firewall/create-a-group-policy-object.md
index b2cef93530..e6e1e18867 100644
--- a/windows/security/threat-protection/windows-firewall/create-a-group-policy-object.md
+++ b/windows/security/threat-protection/windows-firewall/create-a-group-policy-object.md
@@ -4,7 +4,7 @@ description: Learn how to use the Active Directory Users and Computers MMC snap-
 ms.assetid: 72a50dd7-5033-4d97-a5eb-0aff8a35cced
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Create a Group Policy Object
diff --git a/windows/security/threat-protection/windows-firewall/create-an-authentication-exemption-list-rule.md b/windows/security/threat-protection/windows-firewall/create-an-authentication-exemption-list-rule.md
index bdcad85769..35cb8d066a 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-authentication-exemption-list-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-authentication-exemption-list-rule.md
@@ -4,7 +4,7 @@ description: Learn how to create rules that exempt devices that cannot communica
 ms.assetid: 8f6493f3-8527-462a-82c0-fd91a6cb5dd8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Authentication Exemption List Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-authentication-request-rule.md b/windows/security/threat-protection/windows-firewall/create-an-authentication-request-rule.md
index 38155aa557..8d9c8d6a87 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-authentication-request-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-authentication-request-rule.md
@@ -4,7 +4,7 @@ description: Create a new rule for Windows Defender Firewall with Advanced Secur
 ms.assetid: 1296e048-039f-4d1a-aaf2-8472ad05e359
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Authentication Request Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-inbound-icmp-rule.md b/windows/security/threat-protection/windows-firewall/create-an-inbound-icmp-rule.md
index 914c035aa9..c56953f28c 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-inbound-icmp-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-inbound-icmp-rule.md
@@ -4,7 +4,7 @@ description: Learn how to allow inbound ICMP traffic by using the Group Policy M
 ms.assetid: 267b940a-79d9-4322-b53b-81901e357344
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Inbound ICMP Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule.md b/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule.md
index 89db14ccae..05df6a67cc 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule.md
@@ -4,7 +4,7 @@ description: Learn to allow traffic on specific ports by using the Group Policy
 ms.assetid: a7b6c6ca-32fa-46a9-a5df-a4e43147da9f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Inbound Port Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-inbound-program-or-service-rule.md b/windows/security/threat-protection/windows-firewall/create-an-inbound-program-or-service-rule.md
index c2d887fe0d..a47d50ae43 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-inbound-program-or-service-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-inbound-program-or-service-rule.md
@@ -4,7 +4,7 @@ description: Learn how to allow inbound traffic to a program or service by using
 ms.assetid: 00b7fa60-7c64-4ba5-ba95-c542052834cf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Inbound Program or Service Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-outbound-port-rule.md b/windows/security/threat-protection/windows-firewall/create-an-outbound-port-rule.md
index db459ab562..a463162a4d 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-outbound-port-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-outbound-port-rule.md
@@ -4,7 +4,7 @@ description: Learn to block outbound traffic on a port by using the Group Policy
 ms.assetid: 59062b91-756b-42ea-8f2a-832f05d77ddf
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Outbound Port Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-an-outbound-program-or-service-rule.md b/windows/security/threat-protection/windows-firewall/create-an-outbound-program-or-service-rule.md
index d1211abf11..fe0b68eb1d 100644
--- a/windows/security/threat-protection/windows-firewall/create-an-outbound-program-or-service-rule.md
+++ b/windows/security/threat-protection/windows-firewall/create-an-outbound-program-or-service-rule.md
@@ -4,7 +4,7 @@ description: Use the Windows Defender Firewall with Advanced Security node in th
 ms.assetid: f71db4fb-0228-4df2-a95d-b9c056aa9311
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create an Outbound Program or Service Rule
diff --git a/windows/security/threat-protection/windows-firewall/create-inbound-rules-to-support-rpc.md b/windows/security/threat-protection/windows-firewall/create-inbound-rules-to-support-rpc.md
index e44f10923b..59cb4d71cb 100644
--- a/windows/security/threat-protection/windows-firewall/create-inbound-rules-to-support-rpc.md
+++ b/windows/security/threat-protection/windows-firewall/create-inbound-rules-to-support-rpc.md
@@ -4,7 +4,7 @@ description: Learn how to allow RPC network traffic by using the Group Policy Ma
 ms.assetid: 0b001c2c-12c1-4a30-bb99-0c034d7e6150
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Create Inbound Rules to Support RPC
diff --git a/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune.md b/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune.md
index 9b88cddfe3..51e3460b93 100644
--- a/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune.md
+++ b/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune.md
@@ -4,7 +4,7 @@ description: Learn how to use Intune to create rules in Windows Defender Firewal
 ms.assetid: 47057d90-b053-48a3-b881-4f2458d3e431
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
+ms.technology: mde
 ---
 
 # Create Windows Firewall rules in Intune
diff --git a/windows/security/threat-protection/windows-firewall/create-wmi-filters-for-the-gpo.md b/windows/security/threat-protection/windows-firewall/create-wmi-filters-for-the-gpo.md
index ebcd8943b9..e2a1224d61 100644
--- a/windows/security/threat-protection/windows-firewall/create-wmi-filters-for-the-gpo.md
+++ b/windows/security/threat-protection/windows-firewall/create-wmi-filters-for-the-gpo.md
@@ -4,7 +4,7 @@ description: Learn how to use WMI filters on a GPO to make sure that each GPO fo
 ms.assetid: b1a6d93d-a3c8-4e61-a388-4a3323f0e74e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 05/25/2017
+ms.technology: mde
 ---
 
 # Create WMI Filters for the GPO
diff --git a/windows/security/threat-protection/windows-firewall/designing-a-windows-firewall-with-advanced-security-strategy.md b/windows/security/threat-protection/windows-firewall/designing-a-windows-firewall-with-advanced-security-strategy.md
index 95428bb9b0..68a9281a43 100644
--- a/windows/security/threat-protection/windows-firewall/designing-a-windows-firewall-with-advanced-security-strategy.md
+++ b/windows/security/threat-protection/windows-firewall/designing-a-windows-firewall-with-advanced-security-strategy.md
@@ -4,7 +4,7 @@ description: Answer the question in this article to design an effective Windows
 ms.assetid: 6d98b184-33d6-43a5-9418-4f24905cfd71
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Designing a Windows Defender Firewall with Advanced Security Strategy
diff --git a/windows/security/threat-protection/windows-firewall/determining-the-trusted-state-of-your-devices.md b/windows/security/threat-protection/windows-firewall/determining-the-trusted-state-of-your-devices.md
index b4f3c5a658..89fca32581 100644
--- a/windows/security/threat-protection/windows-firewall/determining-the-trusted-state-of-your-devices.md
+++ b/windows/security/threat-protection/windows-firewall/determining-the-trusted-state-of-your-devices.md
@@ -4,7 +4,7 @@ description: Learn how to define the trusted state of devices in your enterprise
 ms.assetid: 3e77f0d0-43aa-47dd-8518-41ccdab2f2b2
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Determining the Trusted State of Your Devices
diff --git a/windows/security/threat-protection/windows-firewall/documenting-the-zones.md b/windows/security/threat-protection/windows-firewall/documenting-the-zones.md
index 6ed3a0bf2a..e8f37ee452 100644
--- a/windows/security/threat-protection/windows-firewall/documenting-the-zones.md
+++ b/windows/security/threat-protection/windows-firewall/documenting-the-zones.md
@@ -4,7 +4,7 @@ description: Learn how to document the zone placement of devices in your design
 ms.assetid: ebd7a650-4d36-42d4-aac0-428617f5a32d
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Documenting the Zones
diff --git a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design-example.md b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design-example.md
index bdc9a665db..0e7f47576b 100644
--- a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design-example.md
+++ b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design-example.md
@@ -4,7 +4,7 @@ description: This example uses a fictitious company to illustrate domain isolati
 ms.assetid: 704dcf58-286f-41aa-80af-c81720aa7fc5
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Domain Isolation Policy Design Example
diff --git a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
index ab6c8e4327..6c13157e59 100644
--- a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Learn how to design a domain isolation policy, based on which devic
 ms.assetid: 7475084e-f231-473a-9357-5e1d39861d66
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Domain Isolation Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/enable-predefined-inbound-rules.md b/windows/security/threat-protection/windows-firewall/enable-predefined-inbound-rules.md
index 8882aa43b5..0a1b0212b6 100644
--- a/windows/security/threat-protection/windows-firewall/enable-predefined-inbound-rules.md
+++ b/windows/security/threat-protection/windows-firewall/enable-predefined-inbound-rules.md
@@ -4,7 +4,7 @@ description: Learn the rules for Windows Defender Firewall with Advanced Securit
 ms.assetid: a4fff086-ae81-4c09-b828-18c6c9a937a7
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Enable Predefined Inbound Rules
diff --git a/windows/security/threat-protection/windows-firewall/enable-predefined-outbound-rules.md b/windows/security/threat-protection/windows-firewall/enable-predefined-outbound-rules.md
index 92491a2ab8..28e4f8649e 100644
--- a/windows/security/threat-protection/windows-firewall/enable-predefined-outbound-rules.md
+++ b/windows/security/threat-protection/windows-firewall/enable-predefined-outbound-rules.md
@@ -4,7 +4,7 @@ description: Learn to deploy predefined firewall rules that block outbound netwo
 ms.assetid: 71cc4157-a1ed-41d9-91e4-b3140c67c1be
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Enable Predefined Outbound Rules
diff --git a/windows/security/threat-protection/windows-firewall/encryption-zone-gpos.md b/windows/security/threat-protection/windows-firewall/encryption-zone-gpos.md
index 33338e8b52..9dc32a7f67 100644
--- a/windows/security/threat-protection/windows-firewall/encryption-zone-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/encryption-zone-gpos.md
@@ -4,7 +4,7 @@ description: Learn how to add a device to an encryption zone by adding the devic
 ms.assetid: eeb973dd-83a5-4381-9af9-65c43c98c29b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Encryption Zone GPOs
diff --git a/windows/security/threat-protection/windows-firewall/encryption-zone.md b/windows/security/threat-protection/windows-firewall/encryption-zone.md
index 715a2eef02..3fba99acba 100644
--- a/windows/security/threat-protection/windows-firewall/encryption-zone.md
+++ b/windows/security/threat-protection/windows-firewall/encryption-zone.md
@@ -4,7 +4,7 @@ description: Learn how to create an encryption zone to contain devices that host
 ms.assetid: 55a025ce-357f-4d1b-b2ae-6ee32c9abe13
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Encryption Zone
diff --git a/windows/security/threat-protection/windows-firewall/evaluating-windows-firewall-with-advanced-security-design-examples.md b/windows/security/threat-protection/windows-firewall/evaluating-windows-firewall-with-advanced-security-design-examples.md
index 8ac067b11e..2f7a20377f 100644
--- a/windows/security/threat-protection/windows-firewall/evaluating-windows-firewall-with-advanced-security-design-examples.md
+++ b/windows/security/threat-protection/windows-firewall/evaluating-windows-firewall-with-advanced-security-design-examples.md
@@ -4,7 +4,7 @@ description: Evaluating Windows Defender Firewall with Advanced Security Design
 ms.assetid: a591389b-18fa-4a39-ba07-b6fb61961cbd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Evaluating Windows Defender Firewall with Advanced Security Design Examples
diff --git a/windows/security/threat-protection/windows-firewall/exempt-icmp-from-authentication.md b/windows/security/threat-protection/windows-firewall/exempt-icmp-from-authentication.md
index 5b87eef36e..38c6fd67c7 100644
--- a/windows/security/threat-protection/windows-firewall/exempt-icmp-from-authentication.md
+++ b/windows/security/threat-protection/windows-firewall/exempt-icmp-from-authentication.md
@@ -4,7 +4,7 @@ description: Learn how to add exemptions for any network traffic that uses the I
 ms.assetid: c086c715-8d0c-4eb5-9ea7-2f7635a55548
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Exempt ICMP from Authentication
diff --git a/windows/security/threat-protection/windows-firewall/exemption-list.md b/windows/security/threat-protection/windows-firewall/exemption-list.md
index eb4909a401..b923df309c 100644
--- a/windows/security/threat-protection/windows-firewall/exemption-list.md
+++ b/windows/security/threat-protection/windows-firewall/exemption-list.md
@@ -4,7 +4,7 @@ description: Learn about reasons to add devices to an exemption list in Windows
 ms.assetid: a05e65b4-b48d-44b1-a7f1-3a8ea9c19ed8
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Exemption List
diff --git a/windows/security/threat-protection/windows-firewall/filter-origin-documentation.md b/windows/security/threat-protection/windows-firewall/filter-origin-documentation.md
index 7ef38e690b..e890a72528 100644
--- a/windows/security/threat-protection/windows-firewall/filter-origin-documentation.md
+++ b/windows/security/threat-protection/windows-firewall/filter-origin-documentation.md
@@ -3,16 +3,17 @@ title: Filter origin audit log improvements
 description: Filter origin documentation audit log improvements
 ms.reviewer: 
 ms.author: v-bshilpa
-ms.prod: w10
+ms.prod: m365-security
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: normal
 author: Benny-54
 manager: dansimp
 ms.collection: 
-- m365-security-compliance
-- m365-initiative-windows-security
+  - m365-security-compliance
+  - m365-initiative-windows-security
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Filter origin audit log improvements
diff --git a/windows/security/threat-protection/windows-firewall/firewall-gpos.md b/windows/security/threat-protection/windows-firewall/firewall-gpos.md
index 8a214a169f..faa8a0d788 100644
--- a/windows/security/threat-protection/windows-firewall/firewall-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/firewall-gpos.md
@@ -4,7 +4,7 @@ description: In this example, a Group Policy Object is linked to the domain cont
 ms.assetid: 720645fb-a01f-491e-8d05-c9c6d5e28033
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Firewall GPOs
diff --git a/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md b/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
index ca7bc12d6f..8c8fb36ee5 100644
--- a/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
+++ b/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
@@ -4,7 +4,7 @@ description: This example features a fictitious company and illustrates firewall
 ms.assetid: 0dc3bcfe-7a4d-4a15-93a9-64b13bd775a7
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Basic Firewall Policy Design Example
diff --git a/windows/security/threat-protection/windows-firewall/firewall-settings-lost-on-upgrade.md b/windows/security/threat-protection/windows-firewall/firewall-settings-lost-on-upgrade.md
index c5ebe7fbf7..cb36df4ddd 100644
--- a/windows/security/threat-protection/windows-firewall/firewall-settings-lost-on-upgrade.md
+++ b/windows/security/threat-protection/windows-firewall/firewall-settings-lost-on-upgrade.md
@@ -3,16 +3,17 @@ title: Troubleshooting Windows Firewall settings after a Windows upgrade
 description: Firewall settings lost on upgrade
 ms.reviewer: 
 ms.author: v-bshilpa
-ms.prod: w10
+ms.prod: m365-security
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: Benny-54
 manager: dansimp
 ms.collection: 
-- m365-security-compliance
-- m365-initiative-windows-security
+  - m365-security-compliance
+  - m365-initiative-windows-security
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshooting Windows Firewall settings after a Windows upgrade
diff --git a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-active-directory-deployment.md b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-active-directory-deployment.md
index 56c50d121a..35ed36b193 100644
--- a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-active-directory-deployment.md
+++ b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-active-directory-deployment.md
@@ -4,7 +4,7 @@ description: Learn about gathering Active Directory information, including domai
 ms.assetid: b591b85b-12ac-4329-a47e-bc1b03e66eb0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Gathering Information about Your Active Directory Deployment
diff --git a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-current-network-infrastructure.md b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-current-network-infrastructure.md
index dc11219314..97aed509bc 100644
--- a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-current-network-infrastructure.md
+++ b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-current-network-infrastructure.md
@@ -4,7 +4,7 @@ description: Learn how to gather info about your network infrastructure so that
 ms.assetid: f98d2b17-e71d-4ffc-b076-118b4d4782f9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Gathering Information about Your Current Network Infrastructure
diff --git a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-devices.md b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-devices.md
index 0d8532e07e..1e9b7fee54 100644
--- a/windows/security/threat-protection/windows-firewall/gathering-information-about-your-devices.md
+++ b/windows/security/threat-protection/windows-firewall/gathering-information-about-your-devices.md
@@ -4,7 +4,7 @@ description: Learn what information to gather about the devices in your enterpri
 ms.assetid: 7f7cd3b9-de8e-4fbf-89c6-3d1a47bc2beb
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Gathering Information about Your Devices
diff --git a/windows/security/threat-protection/windows-firewall/gathering-other-relevant-information.md b/windows/security/threat-protection/windows-firewall/gathering-other-relevant-information.md
index 44b471961b..8d8f65a0a5 100644
--- a/windows/security/threat-protection/windows-firewall/gathering-other-relevant-information.md
+++ b/windows/security/threat-protection/windows-firewall/gathering-other-relevant-information.md
@@ -4,7 +4,7 @@ description: Learn about additional information you may need to gather to deploy
 ms.assetid: 87ccca07-4346-496b-876d-cdde57d0ce17
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Gathering Other Relevant Information
diff --git a/windows/security/threat-protection/windows-firewall/gathering-the-information-you-need.md b/windows/security/threat-protection/windows-firewall/gathering-the-information-you-need.md
index 3d79b04f30..fbdf23f73f 100644
--- a/windows/security/threat-protection/windows-firewall/gathering-the-information-you-need.md
+++ b/windows/security/threat-protection/windows-firewall/gathering-the-information-you-need.md
@@ -4,7 +4,7 @@ description: Collect and analyze information about your network, directory servi
 ms.assetid: 545fef02-5725-4b1e-b67a-a32d94c27d15
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Gathering the Information You Need
diff --git a/windows/security/threat-protection/windows-firewall/gpo-domiso-boundary.md b/windows/security/threat-protection/windows-firewall/gpo-domiso-boundary.md
index ca757eeba4..4ea713f793 100644
--- a/windows/security/threat-protection/windows-firewall/gpo-domiso-boundary.md
+++ b/windows/security/threat-protection/windows-firewall/gpo-domiso-boundary.md
@@ -4,7 +4,7 @@ description: This example GPO supports devices that are not part of the isolated
 ms.assetid: ead3a510-c329-4c2a-9ad2-46a3b4975cfd
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # GPO\_DOMISO\_Boundary
diff --git a/windows/security/threat-protection/windows-firewall/gpo-domiso-encryption.md b/windows/security/threat-protection/windows-firewall/gpo-domiso-encryption.md
index 7ca03d22e7..7c81975bea 100644
--- a/windows/security/threat-protection/windows-firewall/gpo-domiso-encryption.md
+++ b/windows/security/threat-protection/windows-firewall/gpo-domiso-encryption.md
@@ -9,12 +9,13 @@ manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # GPO\_DOMISO\_Encryption\_WS2008
diff --git a/windows/security/threat-protection/windows-firewall/gpo-domiso-firewall.md b/windows/security/threat-protection/windows-firewall/gpo-domiso-firewall.md
index 3cba8b312c..7799c8484f 100644
--- a/windows/security/threat-protection/windows-firewall/gpo-domiso-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/gpo-domiso-firewall.md
@@ -4,7 +4,7 @@ description: Learn about the settings and rules in this example GPO, which is au
 ms.assetid: 318467d2-5698-4c5d-8000-7f56f5314c42
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # GPO\_DOMISO\_Firewall
diff --git a/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-clients.md b/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-clients.md
index bc1c471475..c5c16902b2 100644
--- a/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-clients.md
+++ b/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-clients.md
@@ -4,7 +4,7 @@ description: Author this GPO by using the Windows Defender Firewall with Advance
 ms.assetid: 73cd9e25-f2f1-4ef6-b0d1-d36209518cd9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # GPO\_DOMISO\_IsolatedDomain\_Clients
diff --git a/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-servers.md b/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-servers.md
index de34b9c3ad..a7e5651251 100644
--- a/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-servers.md
+++ b/windows/security/threat-protection/windows-firewall/gpo-domiso-isolateddomain-servers.md
@@ -4,7 +4,7 @@ description: Author this GPO by using the Windows Defender Firewall wit
 ms.assetid: 33aed8f3-fdc3-4f96-985c-e9d2720015d3
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # GPO\_DOMISO\_IsolatedDomain\_Servers
diff --git a/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md b/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
index 96725d8ff3..738e348ccd 100644
--- a/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
+++ b/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
@@ -4,7 +4,7 @@ description: Identifying Your Windows Defender Firewall with Advanced Security (
 ms.assetid: 598cf45e-2e1c-4947-970f-361dfa264bba
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Identifying Windows Defender Firewall with Advanced Security implementation goals 
diff --git a/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md b/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
index 841c88ae5d..7b95852c3d 100644
--- a/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
+++ b/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
@@ -4,7 +4,7 @@ description: Implementing Your Windows Defender Firewall with Advanced Security
 ms.assetid: 15f609d5-5e4e-4a71-9eff-493a2e3e40f9
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Implementing Your Windows Defender Firewall with Advanced Security Design Plan
diff --git a/windows/security/threat-protection/windows-firewall/isolated-domain-gpos.md b/windows/security/threat-protection/windows-firewall/isolated-domain-gpos.md
index a07f984898..878839f37f 100644
--- a/windows/security/threat-protection/windows-firewall/isolated-domain-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/isolated-domain-gpos.md
@@ -4,7 +4,7 @@ description: Learn about GPOs for isolated domains in this example configuration
 ms.assetid: e254ce4a-18c6-4868-8179-4078d9de215f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Isolated Domain GPOs
diff --git a/windows/security/threat-protection/windows-firewall/isolated-domain.md b/windows/security/threat-protection/windows-firewall/isolated-domain.md
index 90b121b86e..1b9d83e173 100644
--- a/windows/security/threat-protection/windows-firewall/isolated-domain.md
+++ b/windows/security/threat-protection/windows-firewall/isolated-domain.md
@@ -4,7 +4,7 @@ description: Learn about the isolated domain, which is the primary zone for trus
 ms.assetid: d6fa8d67-0078-49f6-9bcc-db1f24816c5e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Isolated Domain
diff --git a/windows/security/threat-protection/windows-firewall/isolating-apps-on-your-network.md b/windows/security/threat-protection/windows-firewall/isolating-apps-on-your-network.md
index 169d59a2df..bfd7f19f0a 100644
--- a/windows/security/threat-protection/windows-firewall/isolating-apps-on-your-network.md
+++ b/windows/security/threat-protection/windows-firewall/isolating-apps-on-your-network.md
@@ -1,7 +1,7 @@
 ---
 title: Isolating Microsoft Store Apps on Your Network (Windows 10)
 description: Learn how to customize your firewall configuration to isolate the network access of the new Microsoft Store apps that run on devices added to your network.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.topic: conceptual
 ms.date: 10/13/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Isolating Microsoft Store Apps on Your Network
diff --git a/windows/security/threat-protection/windows-firewall/link-the-gpo-to-the-domain.md b/windows/security/threat-protection/windows-firewall/link-the-gpo-to-the-domain.md
index 9f710aa000..7759669531 100644
--- a/windows/security/threat-protection/windows-firewall/link-the-gpo-to-the-domain.md
+++ b/windows/security/threat-protection/windows-firewall/link-the-gpo-to-the-domain.md
@@ -4,7 +4,7 @@ description: Learn how to link a GPO to the Active Directory container for the t
 ms.assetid: 746d4553-b1a6-4954-9770-a948926b1165
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Link the GPO to the Domain
diff --git a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
index 314389955f..ee043c54a0 100644
--- a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
+++ b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
@@ -1,10 +1,10 @@
 ---
 title: Mapping your implementation goals to a Windows Firewall with Advanced Security design (Windows 10)
-description:  Mapping your implementation goals to a Windows Firewall with Advanced Security design
+description: Mapping your implementation goals to a Windows Firewall with Advanced Security design
 ms.assetid: 7e68c59e-ba40-49c4-8e47-5de5d6b5eb22
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 #  Mapping your implementation goals to a Windows Firewall with Advanced Security design
diff --git a/windows/security/threat-protection/windows-firewall/modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md b/windows/security/threat-protection/windows-firewall/modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md
index 9a78732eb3..2f2ec6ad54 100644
--- a/windows/security/threat-protection/windows-firewall/modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md
+++ b/windows/security/threat-protection/windows-firewall/modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md
@@ -4,7 +4,7 @@ description: Learn how to modify GPO filters to apply to a different zone or ver
 ms.assetid: 24ede9ca-a501-4025-9020-1129e2cdde80
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Modify GPO Filters to Apply to a Different Zone or Version of Windows
diff --git a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-ip-security-policies.md b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-ip-security-policies.md
index 63c6cbf6d2..7046b6230b 100644
--- a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-ip-security-policies.md
+++ b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-ip-security-policies.md
@@ -4,7 +4,7 @@ description: Learn how to open the Group Policy Management Console to IP Securit
 ms.assetid: 235f73e4-37b7-40f4-a35e-3e7238bbef43
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Open the Group Policy Management Console to IP Security Policies
diff --git a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md
index ae4136db06..5c3d340ea4 100644
--- a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md
+++ b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md
@@ -4,7 +4,7 @@ description: Group Policy Management of Windows Firewall with Advanced Security
 ms.assetid: 28afab36-8768-4938-9ff2-9d6dab702e98
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Group Policy Management of Windows Firewall with Advanced Security
diff --git a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
index 134a6bb928..2c7d2f500b 100644
--- a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
@@ -4,7 +4,7 @@ description: Group Policy Management of Windows Defender Firewall with Advanced
 ms.assetid: 5090b2c8-e038-4905-b238-19ecf8227760
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/02/2017
+ms.technology: mde
 ---
 
 # Group Policy Management of Windows Defender Firewall
diff --git a/windows/security/threat-protection/windows-firewall/open-windows-firewall-with-advanced-security.md b/windows/security/threat-protection/windows-firewall/open-windows-firewall-with-advanced-security.md
index 3d67c96d9d..1b99cfae07 100644
--- a/windows/security/threat-protection/windows-firewall/open-windows-firewall-with-advanced-security.md
+++ b/windows/security/threat-protection/windows-firewall/open-windows-firewall-with-advanced-security.md
@@ -4,7 +4,7 @@ description: Learn how to open the Windows Defender Firewall with Advanced Secur
 ms.assetid: 788faff2-0f50-4e43-91f2-3e2595c0b6a1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Open Windows Defender Firewall with Advanced Security
diff --git a/windows/security/threat-protection/windows-firewall/planning-certificate-based-authentication.md b/windows/security/threat-protection/windows-firewall/planning-certificate-based-authentication.md
index b2b2a0467b..0f8b7c455f 100644
--- a/windows/security/threat-protection/windows-firewall/planning-certificate-based-authentication.md
+++ b/windows/security/threat-protection/windows-firewall/planning-certificate-based-authentication.md
@@ -4,7 +4,7 @@ description: Learn how a device unable to join an Active Directory domain can st
 ms.assetid: a55344e6-d0df-4ad5-a6f5-67ccb6397dec
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Certificate-based Authentication
diff --git a/windows/security/threat-protection/windows-firewall/planning-domain-isolation-zones.md b/windows/security/threat-protection/windows-firewall/planning-domain-isolation-zones.md
index 5a7fcb44a2..af5214261c 100644
--- a/windows/security/threat-protection/windows-firewall/planning-domain-isolation-zones.md
+++ b/windows/security/threat-protection/windows-firewall/planning-domain-isolation-zones.md
@@ -4,7 +4,7 @@ description: Learn how to use information you have gathered to make decisions ab
 ms.assetid: 70bc7c52-91f0-4a0d-a64a-69d3ea1c6d05
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Domain Isolation Zones
diff --git a/windows/security/threat-protection/windows-firewall/planning-gpo-deployment.md b/windows/security/threat-protection/windows-firewall/planning-gpo-deployment.md
index 831200cf48..0f0993409e 100644
--- a/windows/security/threat-protection/windows-firewall/planning-gpo-deployment.md
+++ b/windows/security/threat-protection/windows-firewall/planning-gpo-deployment.md
@@ -4,7 +4,7 @@ description: Learn how to use security group filtering and WMI filtering to prov
 ms.assetid: b38adfb1-1371-4227-a887-e6d118809de1
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Planning GPO Deployment
diff --git a/windows/security/threat-protection/windows-firewall/planning-group-policy-deployment-for-your-isolation-zones.md b/windows/security/threat-protection/windows-firewall/planning-group-policy-deployment-for-your-isolation-zones.md
index 22f031c902..7899c1c091 100644
--- a/windows/security/threat-protection/windows-firewall/planning-group-policy-deployment-for-your-isolation-zones.md
+++ b/windows/security/threat-protection/windows-firewall/planning-group-policy-deployment-for-your-isolation-zones.md
@@ -4,7 +4,7 @@ description: Learn how to plan a group policy deployment for your isolation zone
 ms.assetid: ea7c0acd-af28-4347-9d4a-4801b470557c
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Group Policy Deployment for Your Isolation Zones
diff --git a/windows/security/threat-protection/windows-firewall/planning-isolation-groups-for-the-zones.md b/windows/security/threat-protection/windows-firewall/planning-isolation-groups-for-the-zones.md
index cef2c16969..c4fff5ce81 100644
--- a/windows/security/threat-protection/windows-firewall/planning-isolation-groups-for-the-zones.md
+++ b/windows/security/threat-protection/windows-firewall/planning-isolation-groups-for-the-zones.md
@@ -4,7 +4,7 @@ description: Learn about planning isolation groups for the zones in Microsoft Fi
 ms.assetid: be4b662d-c1ce-441e-b462-b140469a5695
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Isolation Groups for the Zones
diff --git a/windows/security/threat-protection/windows-firewall/planning-network-access-groups.md b/windows/security/threat-protection/windows-firewall/planning-network-access-groups.md
index 5cb6ff075c..57d452edac 100644
--- a/windows/security/threat-protection/windows-firewall/planning-network-access-groups.md
+++ b/windows/security/threat-protection/windows-firewall/planning-network-access-groups.md
@@ -4,7 +4,7 @@ description: Learn how to implement a network access group for users and devices
 ms.assetid: 56ea1717-1731-4a5d-b277-5a73eb86feb0
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Network Access Groups
diff --git a/windows/security/threat-protection/windows-firewall/planning-server-isolation-zones.md b/windows/security/threat-protection/windows-firewall/planning-server-isolation-zones.md
index b1af014fa5..a89145ab4a 100644
--- a/windows/security/threat-protection/windows-firewall/planning-server-isolation-zones.md
+++ b/windows/security/threat-protection/windows-firewall/planning-server-isolation-zones.md
@@ -4,7 +4,7 @@ description: Learn how to restrict access to a server to approved users by using
 ms.assetid: 5f63c929-589e-4b64-82ea-515d62765b7b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Planning Server Isolation Zones
diff --git a/windows/security/threat-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy.md b/windows/security/threat-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy.md
index 5a8cd1a017..ce989c23c6 100644
--- a/windows/security/threat-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy.md
+++ b/windows/security/threat-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy.md
@@ -4,7 +4,7 @@ description: Learn how to design a basic policy for Windows Defender Firewall wi
 ms.assetid: 4c90df5a-3cbc-4b85-924b-537c2422d735
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Planning Settings for a Basic Firewall Policy
diff --git a/windows/security/threat-protection/windows-firewall/planning-the-gpos.md b/windows/security/threat-protection/windows-firewall/planning-the-gpos.md
index 80b776ca44..8bb1208626 100644
--- a/windows/security/threat-protection/windows-firewall/planning-the-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/planning-the-gpos.md
@@ -4,7 +4,7 @@ description: Learn about planning Group Policy Objects for your isolation zones
 ms.assetid: 11949ca3-a11c-4a16-b297-0862432eb5b4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Planning the GPOs
diff --git a/windows/security/threat-protection/windows-firewall/planning-to-deploy-windows-firewall-with-advanced-security.md b/windows/security/threat-protection/windows-firewall/planning-to-deploy-windows-firewall-with-advanced-security.md
index 74dacfe608..7dabf87126 100644
--- a/windows/security/threat-protection/windows-firewall/planning-to-deploy-windows-firewall-with-advanced-security.md
+++ b/windows/security/threat-protection/windows-firewall/planning-to-deploy-windows-firewall-with-advanced-security.md
@@ -4,7 +4,7 @@ description: Use the design information in this article to plan for the deployme
 ms.assetid: 891a30c9-dbf5-4a88-a279-00662b9da48e
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Planning to Deploy Windows Defender Firewall with Advanced Security
diff --git a/windows/security/threat-protection/windows-firewall/planning-your-windows-firewall-with-advanced-security-design.md b/windows/security/threat-protection/windows-firewall/planning-your-windows-firewall-with-advanced-security-design.md
index 29b25a7dd2..437bb3fbeb 100644
--- a/windows/security/threat-protection/windows-firewall/planning-your-windows-firewall-with-advanced-security-design.md
+++ b/windows/security/threat-protection/windows-firewall/planning-your-windows-firewall-with-advanced-security-design.md
@@ -4,7 +4,7 @@ description: After you gather the relevant information, select the design or com
 ms.assetid: f3ac3d49-ef4c-4f3c-a16c-e107284e169f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Planning Your Windows Defender Firewall with Advanced Security Design
diff --git a/windows/security/threat-protection/windows-firewall/procedures-used-in-this-guide.md b/windows/security/threat-protection/windows-firewall/procedures-used-in-this-guide.md
index 643f41ab14..e301390ef9 100644
--- a/windows/security/threat-protection/windows-firewall/procedures-used-in-this-guide.md
+++ b/windows/security/threat-protection/windows-firewall/procedures-used-in-this-guide.md
@@ -4,7 +4,7 @@ description: Refer to this summary of procedures for Windows Defender Firewall w
 ms.assetid: 45c0f549-e4d8-45a3-a600-63e2a449e178
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Procedures Used in This Guide
diff --git a/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md b/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
index a05d8eb5a3..233776996f 100644
--- a/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
+++ b/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
@@ -4,7 +4,7 @@ description: Learn how running a host-based firewall on every device in your org
 ms.assetid: 307d2b38-e8c4-4358-ae16-f2143af965dc
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Protect devices from unwanted network traffic 
diff --git a/windows/security/threat-protection/windows-firewall/quarantine.md b/windows/security/threat-protection/windows-firewall/quarantine.md
index 6cce740d60..be83308889 100644
--- a/windows/security/threat-protection/windows-firewall/quarantine.md
+++ b/windows/security/threat-protection/windows-firewall/quarantine.md
@@ -6,7 +6,7 @@ author: Benny-54
 manager: dansimp
 ms.assetid: 
 ms.reviewer: 
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/17/2020
+ms.technology: mde
 ---
 
 # Quarantine behavior
diff --git a/windows/security/threat-protection/windows-firewall/require-encryption-when-accessing-sensitive-network-resources.md b/windows/security/threat-protection/windows-firewall/require-encryption-when-accessing-sensitive-network-resources.md
index a79aedce9d..81a548b4ee 100644
--- a/windows/security/threat-protection/windows-firewall/require-encryption-when-accessing-sensitive-network-resources.md
+++ b/windows/security/threat-protection/windows-firewall/require-encryption-when-accessing-sensitive-network-resources.md
@@ -4,7 +4,7 @@ description: Windows Defender Firewall with Advanced Security allows you to requ
 ms.assetid: da980d30-a68b-4e2a-ba63-94726355ce6f
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Require Encryption When Accessing Sensitive Network Resources
diff --git a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-specified-users-or-devices.md b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-specified-users-or-devices.md
index 117070ef88..a50232fe28 100644
--- a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-specified-users-or-devices.md
+++ b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-specified-users-or-devices.md
@@ -4,7 +4,7 @@ description: Restrict access to devices and users that are members of domain gro
 ms.assetid: a6106a07-f9e5-430f-8dbd-06d3bf7406df
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Restrict Access to Only Specified Users or Computers
diff --git a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
index 27007f7718..d7de7d8963 100644
--- a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
+++ b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
@@ -4,7 +4,7 @@ description: Windows Defender Firewall with Advanced Security enables you to iso
 ms.assetid: bc1f49a4-7d54-4857-8af9-b7c79f47273b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Restrict access to only trusted devices
diff --git a/windows/security/threat-protection/windows-firewall/restrict-server-access-to-members-of-a-group-only.md b/windows/security/threat-protection/windows-firewall/restrict-server-access-to-members-of-a-group-only.md
index 92f54d794a..a9a24aa516 100644
--- a/windows/security/threat-protection/windows-firewall/restrict-server-access-to-members-of-a-group-only.md
+++ b/windows/security/threat-protection/windows-firewall/restrict-server-access-to-members-of-a-group-only.md
@@ -4,7 +4,7 @@ description: Create a firewall rule to access isolated servers running Windows S
 ms.assetid: ea51c55b-e1ed-44b4-82e3-3c4287a8628b
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Restrict Server Access to Members of a Group Only
diff --git a/windows/security/threat-protection/windows-firewall/securing-end-to-end-ipsec-connections-by-using-ikev2.md b/windows/security/threat-protection/windows-firewall/securing-end-to-end-ipsec-connections-by-using-ikev2.md
index 5ded02bd51..d074ada7fc 100644
--- a/windows/security/threat-protection/windows-firewall/securing-end-to-end-ipsec-connections-by-using-ikev2.md
+++ b/windows/security/threat-protection/windows-firewall/securing-end-to-end-ipsec-connections-by-using-ikev2.md
@@ -1,7 +1,7 @@
 ---
 title: Securing End-to-End IPsec Connections by Using IKEv2 in Windows Server 2012 (Windows 10)
 description: Securing End-to-End IPsec Connections by Using IKEv2 in Windows Server 2012
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Securing End-to-End IPsec connections by using IKEv2
diff --git a/windows/security/threat-protection/windows-firewall/server-isolation-gpos.md b/windows/security/threat-protection/windows-firewall/server-isolation-gpos.md
index 8286d47f26..bb23429112 100644
--- a/windows/security/threat-protection/windows-firewall/server-isolation-gpos.md
+++ b/windows/security/threat-protection/windows-firewall/server-isolation-gpos.md
@@ -4,7 +4,7 @@ description: Learn about required GPOs for isolation zones and how many server i
 ms.assetid: c97b1f2f-51d8-4596-b38a-8a3f6f706be4
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Server Isolation GPOs
diff --git a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design-example.md b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design-example.md
index daba2b5e2c..0e2b6ce11e 100644
--- a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design-example.md
+++ b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design-example.md
@@ -4,7 +4,7 @@ description: Learn about server isolation policy design in Windows Defender Fire
 ms.assetid: 337e5f6b-1ec5-4b83-bee5-d0aea1fa5fc6
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 04/19/2017
+ms.technology: mde
 ---
 
 # Server Isolation Policy Design Example
diff --git a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
index d5c4333424..f4d452b4cf 100644
--- a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
@@ -4,7 +4,7 @@ description: Learn about server isolation policy design, where you assign server
 ms.assetid: f93f65cd-b863-461e-ab5d-a620fd962c9a
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Server Isolation Policy Design
diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index 00bdfd5630..ca95cee02b 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -1,19 +1,19 @@
 ---
 title: Troubleshooting UWP App Connectivity Issues in Windows Firewall
 description: Troubleshooting UWP App Connectivity Issues in Windows Firewall
-
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: dansimp
 manager: dansimp
 ms.collection: 
-- m365-security-compliance
-- m365-initiative-windows-security
+  - m365-security-compliance
+  - m365-initiative-windows-security
 ms.topic: troubleshooting
+ms.technology: mde
 ---
 
 # Troubleshooting UWP App Connectivity Issues
diff --git a/windows/security/threat-protection/windows-firewall/turn-on-windows-firewall-and-configure-default-behavior.md b/windows/security/threat-protection/windows-firewall/turn-on-windows-firewall-and-configure-default-behavior.md
index 0b72885c6e..b6a468447e 100644
--- a/windows/security/threat-protection/windows-firewall/turn-on-windows-firewall-and-configure-default-behavior.md
+++ b/windows/security/threat-protection/windows-firewall/turn-on-windows-firewall-and-configure-default-behavior.md
@@ -4,7 +4,7 @@ description: Turn on Windows Defender Firewall with Advanced Security and Config
 ms.assetid: 3c3fe832-ea81-4227-98d7-857a3129db74
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Turn on Windows Defender Firewall with Advanced Security and Configure Default Behavior
diff --git a/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md b/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
index 0449d6b01f..6a77eda3f7 100644
--- a/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
+++ b/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
@@ -1,7 +1,7 @@
 ---
 title: Understand WFAS Deployment (Windows 10)
 description: Resources for helping you understand the Windows Defender Firewall with Advanced Security (WFAS) Design Process
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Understanding the Windows Defender Firewall with Advanced Security Design Process
diff --git a/windows/security/threat-protection/windows-firewall/verify-that-network-traffic-is-authenticated.md b/windows/security/threat-protection/windows-firewall/verify-that-network-traffic-is-authenticated.md
index a7178f39fe..113c3c0cc2 100644
--- a/windows/security/threat-protection/windows-firewall/verify-that-network-traffic-is-authenticated.md
+++ b/windows/security/threat-protection/windows-firewall/verify-that-network-traffic-is-authenticated.md
@@ -4,7 +4,7 @@ description: Learn how to confirm that network traffic is being protected by IPs
 ms.assetid: cc1fb973-aedf-4074-ad4a-7376b24f03d2
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Verify That Network Traffic Is Authenticated
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-administration-with-windows-powershell.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-administration-with-windows-powershell.md
index 4daaa5d367..c21749b77b 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-administration-with-windows-powershell.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-administration-with-windows-powershell.md
@@ -1,7 +1,7 @@
 ---
 title: Windows Defender Firewall with Advanced Security Administration with Windows PowerShell (Windows 10)
 description: Windows Defender Firewall with Advanced Security Administration with Windows PowerShell
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -14,6 +14,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ms.reviewer: 
 ms.author: dansimp
+ms.technology: mde
 ---
 
 # Windows Defender Firewall with Advanced Security Administration with Windows PowerShell
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
index ddb0304065..9a3954cc03 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
@@ -4,7 +4,7 @@ description: Use this guide to deploy Windows Defender Firewall with Advanced Se
 ms.assetid: 56b51b97-1c38-481e-bbda-540f1216ad56
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 08/17/2017
+ms.technology: mde
 ---
 
 # Windows Defender Firewall with Advanced Security deployment overview
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
index 98fe19379f..e1a438412f 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
@@ -4,7 +4,7 @@ description: Learn about common goals for using Windows Defender Firewall with A
 ms.assetid: 5c631389-f232-4b95-9e48-ec02b8677d51
 ms.reviewer: 
 ms.author: dansimp
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 10/05/2017
+ms.technology: mde
 ---
 
 # Windows Defender Firewall with Advanced Security design guide
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
index 00b1374150..e3becc881c 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
@@ -1,7 +1,7 @@
 ---
 title: Windows Defender Firewall with Advanced Security (Windows 10)
 description: Learn overview information about the Windows Defender Firewall with Advanced Security (WFAS) and Internet Protocol security (IPsec) features.
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
@@ -15,6 +15,7 @@ ms.topic: conceptual
 ms.date: 10/21/2020
 ms.reviewer: 
 ms.custom: asr
+ms.technology: mde
 ---
 
 # Windows Defender Firewall with Advanced Security
diff --git a/windows/security/threat-protection/windows-platform-common-criteria.md b/windows/security/threat-protection/windows-platform-common-criteria.md
index d5041fcb44..3bcba3890f 100644
--- a/windows/security/threat-protection/windows-platform-common-criteria.md
+++ b/windows/security/threat-protection/windows-platform-common-criteria.md
@@ -1,7 +1,7 @@
 ---
 title: Common Criteria Certifications
 description: This topic details how Microsoft supports the Common Criteria certification program.
-ms.prod: w10
+ms.prod: m365-security
 audience: ITPro
 author: dansimp
 ms.author: dansimp
@@ -11,6 +11,7 @@ ms.topic: article
 ms.localizationpriority: medium
 ms.date: 3/20/2019
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Common Criteria Certifications
diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-architecture.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-architecture.md
index eb25e2cf9c..1ea2225ff6 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-architecture.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-architecture.md
@@ -1,7 +1,7 @@
 ---
 title: Windows Sandbox architecture
 description: 
-ms.prod: w10
+ms.prod: m365-security
 audience: ITPro
 author: dansimp
 ms.author: dansimp
@@ -11,6 +11,7 @@ ms.topic: article
 ms.localizationpriority: 
 ms.date: 
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Windows Sandbox architecture
diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
index 637aa964d9..6eb53f8e15 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
@@ -1,7 +1,7 @@
 ---
 title: Windows Sandbox configuration
 description: 
-ms.prod: w10
+ms.prod: m365-security
 audience: ITPro
 author: dansimp
 ms.author: dansimp
@@ -11,6 +11,7 @@ ms.topic: article
 ms.localizationpriority: medium
 ms.date: 
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Windows Sandbox configuration
diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
index ce384ca8d4..81f95a98be 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
@@ -1,7 +1,7 @@
 ---
-title: Windows Sandbox 
+title: Windows Sandbox
 description: 
-ms.prod: w10
+ms.prod: m365-security
 audience: ITPro
 author: dansimp
 ms.author: dansimp
@@ -11,6 +11,7 @@ ms.topic: article
 ms.localizationpriority: 
 ms.date: 
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Windows Sandbox 
diff --git a/windows/security/threat-protection/windows-security-baselines.md b/windows/security/threat-protection/windows-security-baselines.md
index a0f657a331..1dff3c58b3 100644
--- a/windows/security/threat-protection/windows-security-baselines.md
+++ b/windows/security/threat-protection/windows-security-baselines.md
@@ -2,7 +2,7 @@
 title: Windows security baselines
 description: Learn how to use Windows security baselines in your organization. Specific to Windows 10, Windows Server, and Microsoft 365 Apps for enterprise.
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/25/2018
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Windows security baselines
diff --git a/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md b/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
index 6bb4c84d76..dc04dd3986 100644
--- a/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
+++ b/windows/security/threat-protection/windows-security-configuration-framework/get-support-for-security-baselines.md
@@ -2,7 +2,7 @@
 title: Get support for Windows security baselines
 description: Find answers to frequently asked question on how to get support for Windows baselines, the Security Compliance Toolkit (SCT), and related topics.
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/25/2018
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Get Support
diff --git a/windows/security/threat-protection/windows-security-configuration-framework/security-compliance-toolkit-10.md b/windows/security/threat-protection/windows-security-configuration-framework/security-compliance-toolkit-10.md
index 32282b709b..43cab9aa77 100644
--- a/windows/security/threat-protection/windows-security-configuration-framework/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/windows-security-configuration-framework/security-compliance-toolkit-10.md
@@ -2,7 +2,7 @@
 title: Microsoft Security Compliance Toolkit 1.0 Guide
 description: This article describes how to use the Security Compliance Toolkit in your organization
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 11/26/2018
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Microsoft Security Compliance Toolkit 1.0
diff --git a/windows/security/threat-protection/windows-security-configuration-framework/windows-security-baselines.md b/windows/security/threat-protection/windows-security-configuration-framework/windows-security-baselines.md
index c5be88f4ea..6f6dcedfad 100644
--- a/windows/security/threat-protection/windows-security-configuration-framework/windows-security-baselines.md
+++ b/windows/security/threat-protection/windows-security-configuration-framework/windows-security-baselines.md
@@ -2,7 +2,7 @@
 title: Windows security baselines guide
 description: Learn how to use Windows security baselines in your organization. Specific to Windows 10, Windows Server 2016, and Office 2016.
 keywords: virtualization, security, malware
-ms.prod: w10
+ms.prod: m365-security
 ms.mktglfcycl: deploy
 ms.localizationpriority: medium
 ms.author: dansimp
@@ -13,6 +13,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 06/25/2018
 ms.reviewer: 
+ms.technology: mde
 ---
 
 # Windows security baselines

From 6b129e368cc8e97a8680dbbed15979b112de427b Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 21 Jan 2021 20:52:24 +0200
Subject: [PATCH 598/825] 1

---
 .../find-machine-info-by-ip.md                | 95 -------------------
 .../find-machines-by-tag.md                   | 82 ++++++++++++++++
 2 files changed, 82 insertions(+), 95 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
deleted file mode 100644
index b94742b61d..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
+++ /dev/null
@@ -1,95 +0,0 @@
----
-title: Find device information by internal IP API
-description: Use this API to create calls related to finding a device entry around a specific timestamp by internal IP.
-keywords: ip, apis, graph api, supported apis, find device, device information
-search.product: eADQiWindows 10XVcnh
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: macapara
-author: mjcaparas
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: M365-security-compliance 
-ms.topic: article
----
-
-# Find device information by internal IP API
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-Find a device by internal IP.
-
->[!NOTE]
->The timestamp must be within the last 30 days.
-
-## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
-
-Permission type | Permission | Permission display name
-:---|:---|:---
-Application | Machine.Read.All | 'Read all machine profiles'
-Application | Machine.ReadWrite.All | 'Read and write all machine information'
-
-## HTTP request
-```
-GET /api/machines/find(timestamp={time},key={IP})
-```
-
-## Request headers
-
-Name | Type | Description
-:---|:---|:---
-Authorization | String | Bearer {token}. **Required**.
-
-
-## Request body
-Empty
-
-## Response
-If successful and machine exists - 200 OK.
-If no machine found - 404 Not Found.
-
-
-## Example
-
-**Request**
-
-Here is an example of the request.
-
-```
-GET https://graph.microsoft.com/testwdatppreview/machines/find(timestamp=2018-06-19T10:00:00Z,key='10.166.93.61')
-Content-type: application/json
-```
-
-**Response**
-
-Here is an example of the response.
-
-The response will return a list of all devices that reported this IP address within sixteen minutes prior and after the timestamp. 
-
-```
-HTTP/1.1 200 OK
-Content-type: application/json
-{
-    "@odata.context": "https://graph.microsoft.com/testwdatppreview/$metadata#Machines",
-    "value": [
-        {
-            "id": "04c99d46599f078f1c3da3783cf5b95f01ac61bb",
-            "computerDnsName": "",
-            "firstSeen": "2017-07-06T01:25:04.9480498Z",
-            "osPlatform": "Windows10",
-…
-}
-```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
new file mode 100644
index 0000000000..d076dc226e
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
@@ -0,0 +1,82 @@
+---
+title: Find devices by tag API
+description: Find all devices that contain specifc tag 
+keywords: apis, supported apis, get, device, find, find device, by tag, tag
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: article
+---
+
+# Find devices by tag API
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
+## API description
+Find [Machines](machine.md) by [Tag](machine-tags.md).
+
+
+## Limitations
+1. Rate limitations for this API are 100 calls per minute and 1500 calls per hour.
+
+
+## Permissions
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
+
+Permission type |	Permission	|	Permission display name
+:---|:---|:---
+Application |	Machine.Read.All |	'Read all machine profiles'
+Application |	Machine.ReadWrite.All |	'Read and write all machine information'
+Delegated (work or school account) | Machine.Read | 'Read machine information'
+Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine information'
+
+>[!Note]
+> When obtaining a token using user credentials:
+> - Response will include only devices that the user have access to based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
+> - The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
+> - Response will include only devices that the user have access to based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
+
+## HTTP request
+```
+GET /api/machines/findbytag(tag='{tag}')
+```
+
+## Request headers
+
+Name | Type | Description
+:---|:---|:---
+Authorization | String | Bearer {token}. **Required**.
+
+## Request body
+Empty
+
+## Response
+If successful - 200 OK with list of the machines in the response body.
+
+## Example
+
+**Request**
+
+Here is an example of the request.
+
+```
+GET https://api.securitycenter.microsoft.com/api/machines/findbytag(tag='testTag')
+```

From 704a3a87252a456ce34bc8242c86ddec26dbdb1c Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Thu, 21 Jan 2021 21:30:59 +0200
Subject: [PATCH 599/825] add info about network boundary

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8880
---
 .../md-app-guard-overview.md                                     | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 98150e0f15..0c47055df2 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -52,3 +52,4 @@ Application Guard has been created to target several types of devices:
 | [Microsoft Defender Application Guard Extension for web browsers](md-app-guard-browser-extension.md) | Describes the Application Guard extension for Chrome and Firefox, including known issues, and a troubleshooting guide |
 | [Microsoft Defender Application Guard for Microsoft Office](https://docs.microsoft.com/microsoft-365/security/office-365-security/install-app-guard) | Describes Application Guard for Microsoft Office, including minimum hardware requirements, configuration, and a troubleshooting guide |
 |[Frequently asked questions - Microsoft Defender Application Guard](faq-md-app-guard.md)|Provides answers to frequently asked questions about Application Guard features, integration with the Windows operating system, and general configuration.|
+|[Use a network boundary to add trusted sites on Windows devices in Microsoft Intune](https://docs.microsoft.com/en-us/mem/intune/configuration/network-boundary-windows)|Network boundary, a feature that helps you protect your environment from sites that aren't trusted by your organization.|

From ac2d63462d8d096c5e9fd0aeead6a1839214af29 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 21 Jan 2021 21:48:12 +0200
Subject: [PATCH 600/825] 1

---
 .../find-machines-by-tag.md                   |   2 +-
 .../import-ti-indicators.md                   | 141 ++++++++++++++++++
 .../post-ti-indicator.md                      |   5 +-
 3 files changed, 145 insertions(+), 3 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
index d076dc226e..c077f850b8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
@@ -79,4 +79,4 @@ Here is an example of the request.
 
 ```
 GET https://api.securitycenter.microsoft.com/api/machines/findbytag(tag='testTag')
-```
+```
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
new file mode 100644
index 0000000000..acc7328e9d
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
@@ -0,0 +1,141 @@
+---
+title: Import Indicators API
+description: Learn how to use the Import batch of Indicator API in Microsoft Defender Advanced Threat Protection.
+keywords: apis, supported apis, submit, ti, indicator, update
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: article
+---
+
+# Import Indicators API
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
+
+[!include[Improve request performance](../../includes/improve-request-performance.md)]
+
+
+## API description
+Submits or Updates batch of [Indicator](ti-indicator.md) entities.
+<br>CIDR notation for IPs is not supported.
+
+## Limitations
+1. Rate limitations for this API are 30 calls per minute.
+2. There is a limit of 15,000 active [Indicators](ti-indicator.md) per tenant. 
+
+
+## Permissions
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Get started](apis-intro.md)
+
+Permission type |	Permission	|	Permission display name
+:---|:---|:---
+Application |	Ti.ReadWrite |	'Read and write Indicators'
+Application |	Ti.ReadWrite.All |	'Read and write All Indicators'
+Delegated (work or school account) |	Ti.ReadWrite |	'Read and write Indicators'
+
+
+## HTTP request
+```
+POST https://api.securitycenter.microsoft.com/api/indicators/import
+```
+
+## Request headers
+
+Name | Type | Description
+:---|:---|:---
+Authorization | String | Bearer {token}. **Required**.
+Content-Type | string | application/json. **Required**.
+
+## Request body
+In the request body, supply a JSON object with the following parameters:
+
+Parameter |	Type	| Description
+:---|:---|:---
+Indicators | List<[Indicator](ti-indicator.md)> | List of [Indicators](ti-indicator.md). **Required**
+
+
+## Response
+- If successful, this method returns 200 - OK response code with a list of import results per indicator, see example below.
+- If not successful: this method return 400 - Bad Request. Bad request usually indicates incorrect body.
+
+## Example
+
+**Request**
+
+Here is an example of the request.
+
+```
+POST https://api.securitycenter.microsoft.com/api/indicators/import
+```
+```json
+{
+	"Indicators":
+	[
+		{
+            "indicatorValue": "220e7d15b011d7fac48f2bd61114db1022197f7f",
+            "indicatorType": "FileSha1",
+            "title": "demo",
+            "application": "demo-test",
+            "expirationTime": "2021-12-12T00:00:00Z",
+            "action": "Alert",
+            "severity": "Informational",
+            "description": "demo2",
+            "recommendedActions": "nothing",
+            "rbacGroupNames": ["group1", "group2"]
+        },
+        {
+            "indicatorValue": "2233223322332233223322332233223322332233223322332233223322332222",
+            "indicatorType": "FileSha256",
+            "title": "demo2",
+            "application": "demo-test2",
+            "expirationTime": "2021-12-12T00:00:00Z",
+            "action": "Alert",
+            "severity": "Medium",
+            "description": "demo2",
+            "recommendedActions": "nothing",
+            "rbacGroupNames": []
+        }
+	]
+}
+```
+
+**Request**
+
+Here is an example of the request.
+
+```json
+{
+    "value": [
+        {
+            "id": "2841",
+            "indicator": "220e7d15b011d7fac48f2bd61114db1022197f7f",
+            "isFailed": false,
+            "failureReason": null
+        },
+        {
+            "id": "2842",
+            "indicator": "2233223322332233223322332233223322332233223322332233223322332222",
+            "isFailed": false,
+            "failureReason": null
+        }
+    ]
+}
+```
+
+## Related topic
+- [Manage indicators](manage-indicators.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index ac9c3929ea..433f0a15eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -32,7 +32,7 @@ ms.topic: article
 
 ## API description
 Submits or Updates new [Indicator](ti-indicator.md) entity.
-<br>CIDR notation for IPs is supported.
+<br>CIDR notation for IPs is not supported.
 
 ## Limitations
 1. Rate limitations for this API are 100 calls per minute and 1500 calls per hour.
@@ -90,7 +90,8 @@ Here is an example of the request.
 
 ```
 POST https://api.securitycenter.microsoft.com/api/indicators
-Content-type: application/json
+```
+```json
 {
     "indicatorValue": "220e7d15b011d7fac48f2bd61114db1022197f7f",
     "indicatorType": "FileSha1",

From 08ff136c0d20cf3c6c98780e6f136920d362f91d Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 21 Jan 2021 21:48:50 +0200
Subject: [PATCH 601/825] 2

---
 .../microsoft-defender-atp/import-ti-indicators.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
index acc7328e9d..822e0f9985 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
@@ -114,9 +114,9 @@ POST https://api.securitycenter.microsoft.com/api/indicators/import
 }
 ```
 
-**Request**
+**Response**
 
-Here is an example of the request.
+Here is an example of the response.
 
 ```json
 {

From a15ce903b64117ad1e661ee07d142b6f2bd7d205 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Thu, 21 Jan 2021 11:50:31 -0800
Subject: [PATCH 602/825] updating azure ad registered FAQ

---
 .../identity-protection/hello-for-business/hello-faq.yml  | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.yml b/windows/security/identity-protection/hello-for-business/hello-faq.yml
index 4a1e132499..4b52f4852d 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.yml
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.yml
@@ -51,11 +51,13 @@ sections:
           
           The statement "PIN is stronger than Password" is not directed at the strength of the entropy used by the PIN. It's about the difference between providing entropy versus continuing the use of a symmetric key (the password). The TPM has anti-hammering features that thwart brute-force PIN attacks (an attacker's continuous attempt to try all combination of PINs). Some organizations may worry about shoulder surfing. For those organizations, rather than increase the complexity of the PIN, implement the [Multifactor Unlock](feature-multifactor-unlock.md) feature.
           
-      - question: How does Windows Hello for Business work with Azure AD workplace registered devices?
+      - question: How does Windows Hello for Business work with Azure AD registered devices?
         answer: |
-          On Azure AD workplace registered devices, a user will be asked to provision a Windows Hello for Business key if the feature is enabled by mobile device management policy. If the user has an existing Windows Hello container for use with their local or Microsoft connected account, the Windows Hello for Business key will be enrolled in their existing container and will be protected using their exiting gestures.
+          On Azure AD registered devices, a user will be asked to provision a Windows Hello for Business key if the feature is enabled by mobile device management policy. If the user has an existing Windows Hello container for use with their local or Microsoft connected account, the Windows Hello for Business key will be enrolled in their existing container and will be protected using their exiting gestures.
 
-          If a user has signed into their Azure AD workplace registered device with Windows Hello, their Windows Hello for Business key will be used to authenticate the user's work identity when they try to use Azure AD resources. The Windows Hello for Business key meets Azure AD multi-factor authentication (MFA) requirements and reduces the number of MFA prompts users will see when accessing resources. 
+          If a user has signed into their Azure AD registered device with Windows Hello, their Windows Hello for Business key will be used to authenticate the user's work identity when they try to use Azure AD resources. The Windows Hello for Business key meets Azure AD multi-factor authentication (MFA) requirements and reduces the number of MFA prompts users will see when accessing resources. 
+
+          For more information please read [Azure AD registered devices](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register).
 
       - question: I have Windows Server 2016 domain controller(s), so why is the Key Admins group missing?
         answer: |

From 8f1150a12f25a24568016709705f1c62e43855f1 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 21 Jan 2021 22:10:40 +0200
Subject: [PATCH 603/825] 1

---
 windows/security/threat-protection/TOC.md                      | 2 ++
 .../threat-protection/microsoft-defender-atp/machine.md        | 1 +
 .../threat-protection/microsoft-defender-atp/ti-indicator.md   | 3 ++-
 3 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 4fd85c48d2..af35c57f47 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -550,6 +550,7 @@
 ####### [Get security recommendations](microsoft-defender-atp/get-security-recommendations.md)
 ####### [Add or Remove machine tags](microsoft-defender-atp/add-or-remove-machine-tags.md)
 ####### [Find machines by IP](microsoft-defender-atp/find-machines-by-ip.md)
+####### [Find machines by tag](microsoft-defender-atp/find-machines-by-tag.md)
 ####### [Get missing KBs](microsoft-defender-atp/get-missing-kbs-machine.md)
 ####### [Set device value](microsoft-defender-atp/set-device-value.md)
 
@@ -576,6 +577,7 @@
 ###### [Indicators]()
 ####### [Indicators methods and properties](microsoft-defender-atp/ti-indicator.md)
 ####### [Submit Indicator](microsoft-defender-atp/post-ti-indicator.md)
+####### [Import Indicators](microsoft-defender-atp/import-ti-indicators.md)
 ####### [List Indicators](microsoft-defender-atp/get-ti-indicators-collection.md)
 ####### [Delete Indicator](microsoft-defender-atp/delete-ti-indicator-by-id.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index 53bdfe131c..f4952472cd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -44,6 +44,7 @@ Method|Return Type |Description
 [Get security recommendations](get-security-recommendations.md) | [recommendation](recommendation.md) collection | Retrieves a collection of security recommendations related to a given machine ID.
 [Add or Remove machine tags](add-or-remove-machine-tags.md) | [machine](machine.md) | Add or Remove tag to a specific machine.
 [Find machines by IP](find-machines-by-ip.md) | [machine](machine.md) collection | Find machines seen with IP.
+[Find machines by tag](find-machines-by-tag.md) | [machine](machine.md) collection | Find machines by [Tag](machine-tags.md).
 [Get missing KBs](get-missing-kbs-machine.md) | KB collection | Get a list of missing KBs associated with the machine ID
 [Set device value](set-device-value.md)| [machine](machine.md) collection | Set the [value of a device](tvm-assign-device-value.md).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
index 39a5774d5c..1b6bef4976 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
@@ -35,7 +35,8 @@ ms.topic: article
 Method|Return Type |Description
 :---|:---|:---
 [List Indicators](get-ti-indicators-collection.md) | [Indicator](ti-indicator.md) Collection | List [Indicator](ti-indicator.md) entities.
-[Submit Indicator](post-ti-indicator.md) | [Indicator](ti-indicator.md) | Submits [Indicator](ti-indicator.md) entity.
+[Submit Indicator](post-ti-indicator.md) | [Indicator](ti-indicator.md) | Submit or update [Indicator](ti-indicator.md) entity.
+[Import Indicators](import-ti-indicators.md) | [Indicator](ti-indicator.md) Collection | Submit or update [Indicators](ti-indicator.md) entities.
 [Delete Indicator](delete-ti-indicator-by-id.md) | No Content | Deletes [Indicator](ti-indicator.md) entity.
 
 

From 544c3c53ee7ae950290838dedfa6121e7da41a6d Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Thu, 21 Jan 2021 12:35:36 -0800
Subject: [PATCH 604/825] Update .openpublishing.redirection.json

redirect for deleted file
---
 .openpublishing.redirection.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 0cf060785e..7bcd7f8d15 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -15110,6 +15110,11 @@
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip",
       "redirect_document_id": true
     },
+    {
+      "source_path": "windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip",
+      "redirect_document_id": false
+    },
     {
       "source_path": "windows/security/threat-protection/windows-defender-atp/get-filemachineaction-object-windows-defender-advanced-threat-protection.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/use-apis",

From 4d281e31d100e182c94040de6bbde8ee1a8202b9 Mon Sep 17 00:00:00 2001
From: Carmen Forsmann <cmforsmann@live.com>
Date: Thu, 21 Jan 2021 12:54:14 -0800
Subject: [PATCH 605/825] Update waas-delivery-optimization.md

Add Edge browser support to content type table.
---
 windows/deployment/update/waas-delivery-optimization.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/deployment/update/waas-delivery-optimization.md b/windows/deployment/update/waas-delivery-optimization.md
index de5f866595..7337c717c1 100644
--- a/windows/deployment/update/waas-delivery-optimization.md
+++ b/windows/deployment/update/waas-delivery-optimization.md
@@ -65,7 +65,7 @@ For information about setting up Delivery Optimization, including tips for the b
     - Office installations and updates
     - Xbox game pass games
     - MSIX apps (HTTP downloads only)
-    - Edge browser installations and updates
+    - Edge browser installs and updates
 
 ## Requirements
 
@@ -90,7 +90,8 @@ The following table lists the minimum Windows 10 version that supports Delivery
 | Win32 apps for Intune | 1709 |
 | Xbox game pass games | 2004 |
 | MSIX apps (HTTP downloads only) | 2004 |
-| Configuration Manager Express Updates | 1709 + Configuration Manager version 1711 |
+| Configuration Manager Express updates | 1709 + Configuration Manager version 1711 |
+| Edge browser installs and updates | 1809 |
 
 > [!NOTE]
 > Starting with Configuration Manager version 1910, you can use Delivery Optimization for the distribution of all Windows update content for clients running Windows 10 version 1709 or newer, not just express installation files. For more, see [Delivery Optimization starting in version 1910](https://docs.microsoft.com/mem/configmgr/sum/deploy-use/optimize-windows-10-update-delivery#bkmk_DO-1910).

From b8078c2d2404edc569729cc56bb00dd69dc58353 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Thu, 21 Jan 2021 13:31:18 -0800
Subject: [PATCH 606/825] updating azure ad registered FAQ

---
 .../identity-protection/hello-for-business/hello-faq.yml        | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.yml b/windows/security/identity-protection/hello-for-business/hello-faq.yml
index 4b52f4852d..ae0af27fe6 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.yml
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.yml
@@ -57,6 +57,8 @@ sections:
 
           If a user has signed into their Azure AD registered device with Windows Hello, their Windows Hello for Business key will be used to authenticate the user's work identity when they try to use Azure AD resources. The Windows Hello for Business key meets Azure AD multi-factor authentication (MFA) requirements and reduces the number of MFA prompts users will see when accessing resources. 
 
+          It is possible to Azure AD register a domain joined device. If the domain joined device has a convenience PIN, login with the convenience PIN will no longer work. This configuration is not supported by Windows Hello for Business. 
+
           For more information please read [Azure AD registered devices](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register).
 
       - question: I have Windows Server 2016 domain controller(s), so why is the Key Admins group missing?

From 2d8706bf704047afbe459fe02e162cc84a557d88 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 21 Jan 2021 16:01:06 -0800
Subject: [PATCH 607/825] Corrected "ms.technology: windows" to "ms.technology:
 mde"

This update or correction resolved build errors in PR https://github.com/MicrosoftDocs/windows-docs-pr/pull/4589
---
 .../microsoft-defender-atp/automated-investigations.md          | 2 +-
 .../microsoft-defender-atp/automation-levels.md                 | 2 +-
 .../configure-automated-investigations-remediation.md           | 2 +-
 .../manage-atp-post-migration-configuration-manager.md          | 2 +-
 .../manage-atp-post-migration-group-policy-objects.md           | 2 +-
 .../microsoft-defender-atp/manage-atp-post-migration-intune.md  | 2 +-
 .../manage-atp-post-migration-other-tools.md                    | 2 +-
 .../microsoft-defender-atp/manage-atp-post-migration.md         | 2 +-
 .../mcafee-to-microsoft-defender-migration.md                   | 2 +-
 .../mcafee-to-microsoft-defender-onboard.md                     | 2 +-
 .../mcafee-to-microsoft-defender-prepare.md                     | 2 +-
 .../mcafee-to-microsoft-defender-setup.md                       | 2 +-
 .../switch-to-microsoft-defender-onboard.md                     | 2 +-
 .../switch-to-microsoft-defender-prepare.md                     | 2 +-
 .../switch-to-microsoft-defender-setup.md                       | 2 +-
 .../symantec-to-microsoft-defender-atp-migration.md             | 2 +-
 .../symantec-to-microsoft-defender-atp-onboard.md               | 2 +-
 .../symantec-to-microsoft-defender-atp-prepare.md               | 2 +-
 .../symantec-to-microsoft-defender-atp-setup.md                 | 2 +-
 19 files changed, 19 insertions(+), 19 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
index 781676ba34..4233bcca90 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
@@ -5,7 +5,7 @@ keywords: automated, investigation, detection, source, threat types, id, tags, d
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md b/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
index 1a1fc25199..e17539d14a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/automation-levels.md
@@ -5,7 +5,7 @@ keywords: automated, investigation, level, defender atp
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
index ee4a6acd7e..c7e2f8158e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
@@ -5,7 +5,7 @@ keywords: configure, setup, automated, investigation, detection, alerts, remedia
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
index a6b368617d..12ff88f1d9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-configuration-manager.md
@@ -5,7 +5,7 @@ keywords: post-migration, manage, operations, maintenance, utilization, Configur
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
index ea79eeab2e..d5af8e2cf2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-group-policy-objects.md
@@ -5,7 +5,7 @@ keywords: post-migration, manage, operations, maintenance, utilization, PowerShe
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
index 0acb66ee5a..4ac73497e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
@@ -5,7 +5,7 @@ keywords: post-migration, manage, operations, maintenance, utilization, intune,
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
index d719b716b1..9280a33aee 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-other-tools.md
@@ -5,7 +5,7 @@ keywords: post-migration, manage, operations, maintenance, utilization, PowerShe
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
index 5c0b3182cf..2cb0d3548e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
@@ -5,7 +5,7 @@ keywords: post-migration, manage, operations, maintenance, utilization, windows
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
index 8ccb856a54..9f65ae6e85 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
index e003046028..f703c93219 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-onboard.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
index e877489dac..8108d9e245 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-prepare.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
index 5801957ef9..bf07f58bcb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
index 0f1c89ca89..2a3c2f472f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-onboard.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
index c54aa06438..a49d62bf03 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
index 1753949339..639bbd689d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-setup.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
index c16c24adb2..7f20e3e024 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-migration.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
index 12fa37277d..9ba924e18a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
index 371303c14f..4d58af47fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
index 0e99e17b94..8648a57da9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-setup.md
@@ -5,7 +5,7 @@ keywords: migration, windows defender advanced threat protection, atp, edr
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
-ms.technology: windows
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security

From 63ed3c92e22d2030cf7eb4918c71a2bcf5947f23 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Thu, 21 Jan 2021 16:52:46 -0800
Subject: [PATCH 608/825] Add troubleshooting for DC certs from 3rd party CAs

---
 .../hello-deployment-issues.md                | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)

diff --git a/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
index 4dece74866..96f5181b12 100644
--- a/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
+++ b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
@@ -45,6 +45,39 @@ After the initial logon attempt, the user's Windows Hello for Business public ke
 
 To resolve this behavior, upgrade Windows Server 2016 and 2019 domain controllers to with the latest patches. For Windows Server 2016, this behavior is fixed in build 14393.4104 ([KB4593226](https://support.microsoft.com/help/4593226)) and later. For Windows Server 2019, this behavior is fixed in build 17763.1637 ([KB4592440](https://support.microsoft.com/help/4592440)).
 
+## Azure AD Joined Device Access to On-Premises Resources Using Key Trust and Third-Party Certificate Authority (CA)
+
+Applies to:
+
+- Azure AD joined key trust deployments
+- Third-party certificate authority (CA) issuing domain controller certificates
+
+Windows Hello for Business uses smart card based authentication for many operations. Smart card has special guidelines when using a third-party CA for certificate issuance, some of which apply to the domain controllers. Not all Windows Hello for Business deployment types require these configurations. Accessing on-premises resources from an Azure AD Joined device does require special configuration when using a third-party CA to issue domain controller certificates.
+
+For more information, read [Guidelines for enabling smart card logon with third-party certification authorities](
+https://support.microsoft.com/topic/a34a400a-51d5-f2a1-c8c0-7a6c9c49cb78).
+
+### Identifying On-premises Resource Access Issues with Third-Party CAs
+
+This issue can be identified using network traces or Kerberos logging from the client. In the network trace, the client will fail to place a TGS_REQ request when a user attempts to access a resource. On the client, this can be observed in Kerberos event logs:
+
+    The Kerberos client received a KDC certificate that does not have a matched domain name.
+    Expected Domain Name: ad.contoso.com
+    Error Code: 0xC000006D
+
+See [How to enable Kerberos event logging](https://docs.microsoft.com/troubleshoot/windows-server/identity/enable-kerberos-event-logging#enable-kerberos-event-logging-on-a-specific-computer) for information on enabling Kerberos logs on a client device.
+
+### Resolving On-premises Resource Access Issue with Third-Party CAs
+
+To resolve this issue, domain controller certificates need to be updated so the certificate subject contains directory path of the server object (distinguished name).
+Example Subject: CN=DC1 OU=Domain Controller, DC=ad, DC=contoso, DC=com
+
+Alternatively, you can set the subject alternative name (SAN) of the domain controller certificate to contain the server object's fully qualified domain name and the NETBIOS name of the domain.
+Example Subject Alternative Name:
+dns=dc1.ad.contoso.com
+dns=ad.contoso.com
+dns=ad
+
 ## Key Trust Authentication Broken for Windows Server 2019
 
 Applies to:

From 1e96248e32a1da6172b1b24587481405dba6c81c Mon Sep 17 00:00:00 2001
From: Carmen Forsmann <cmforsmann@live.com>
Date: Thu, 21 Jan 2021 20:01:51 -0800
Subject: [PATCH 609/825] Update waas-delivery-optimization.md

Add Dynamic updates support
---
 windows/deployment/update/waas-delivery-optimization.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/deployment/update/waas-delivery-optimization.md b/windows/deployment/update/waas-delivery-optimization.md
index 7337c717c1..599fd37ab1 100644
--- a/windows/deployment/update/waas-delivery-optimization.md
+++ b/windows/deployment/update/waas-delivery-optimization.md
@@ -62,10 +62,11 @@ For information about setting up Delivery Optimization, including tips for the b
     - DOMaxUploadBandwidth
     
 - Support for new types of downloads:
-    - Office installations and updates
+    - Office installs and updates
     - Xbox game pass games
     - MSIX apps (HTTP downloads only)
     - Edge browser installs and updates
+    - Dynamic updates
 
 ## Requirements
 
@@ -92,6 +93,7 @@ The following table lists the minimum Windows 10 version that supports Delivery
 | MSIX apps (HTTP downloads only) | 2004 |
 | Configuration Manager Express updates | 1709 + Configuration Manager version 1711 |
 | Edge browser installs and updates | 1809 |
+| Dynamic updates | 1903 |
 
 > [!NOTE]
 > Starting with Configuration Manager version 1910, you can use Delivery Optimization for the distribution of all Windows update content for clients running Windows 10 version 1709 or newer, not just express installation files. For more, see [Delivery Optimization starting in version 1910](https://docs.microsoft.com/mem/configmgr/sum/deploy-use/optimize-windows-10-update-delivery#bkmk_DO-1910).

From f7b513116952b788788b1856b6fc3ed945558a00 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:14:46 -0800
Subject: [PATCH 610/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 2242561c26..1083895ed8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/21/2021
+ms.date: 01/22/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro

From cc97ce85b1d8549daebc662e47e134c7f1df2b32 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:27:52 -0800
Subject: [PATCH 611/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 95 +++++++++++++++++--
 1 file changed, 89 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 1083895ed8..0a7de859a9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,15 +31,98 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives can include:
-- [Reviewing your threat protection settings and making adjustments where needed](#review-your-threat-protection-settings);
-- [Defining exclusions, such as for antivirus and other endpoint protection features](#review-or-define-exclusions-for-microsoft-defender-for-endpoint);
-- [Classifying false positives in your endpoint protection solution](#classify-a-false-positive-or-false-negative);
-- [Submitting files for further analysis](#submit-a-file-for-analysis); and
-- [Verifying that the applications your organization is using are properly signed](#confirm-your-software-uses-ev-code-signing).
+In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives includes:
+
+1.	Reviewing and classifying alerts
+2.	Reviewing remediation actions that were taken
+3.	Reviewing and defining exclusions
+4.	Submitting an entity for analysis
+5.	Reviewing your threat protection settings
 
 If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 
+## Review and classify alerts
+
+If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. And, you can classify alerts as false positives as needed. 
+
+Managing your alerts and classifying false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
+
+### Determine whether an alert is accurate
+
+Before you classify or suppress an alert, determine whether the alert is accurate, a false positive, or benign.
+1. Go to the Microsoft Defender Security Center (https://securitycenter.windows.com) and sign in.
+2.	In the navigation pane, choose **Alerts queue**.
+3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
+4.	Take one of the following steps:   
+   - If the alert is accurate, assign and investigate the alert further.
+   - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
+   - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
+
+### Classify an alert as a false positive
+
+Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the Alerts queue.
+
+1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2.	Select **Alerts queue**, and then select an alert that is a false positive.
+3.	For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
+4.	In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
+
+> [!TIP]
+> For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts). And, if your organization is using a security information and event management (SIEM) server, make sure to define a suppression rule there, too. 
+
+### Suppress an alert
+
+If you have alerts that are either false positives or are for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center.
+
+1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2.	In the navigation pane, select **Alerts queue**.
+3.	Select an alert that you want to suppress to open its **Details** pane.
+4.	In the **Details** pane, choose the ellipsis (**...**), and then choose **Create a suppression rule**.
+5.	Specify all the settings for your suppression rule, and then choose **Save**.
+
+> [!TIP]
+> Need help with suppression rules? See [Suppress an alert and create a new suppression rule](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts#suppress-an-alert-and-create-a-new-suppression-rule).
+
+## Review remediation actions
+
+[Remediation actions](manage-auto-investigation.md#remediation-actions), such as sending a file to quarantine or stopping a process, can be taken on entities that are detected as threats. Several types of remediation actions can occur automatically through automated investigation and Microsoft Defender Antivirus. Examples of such actions include:   
+- Quarantine a file
+- Remove a registry key
+- Kill a process
+- Stop a service
+- Disable a driver
+- Remove a scheduled task
+
+Other actions, such as starting an antivirus scan or collecting an investigation package, can occur through [Live Response](live-response.md). Those actions cannot be undone.
+
+### Review completed actions
+
+1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in. 
+2. Select the **History** tab. 
+3. Select an item to view more details about the remediation action that was taken.
+
+If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. Remediation actions that you can undo include the following:
+- Isolate device
+- Restrict code execution
+- Quarantine a file
+- Remove a registry key
+- Stop a service
+- Disable a driver
+- Remove a scheduled task
+
+### To undo an action   
+
+1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2. On the **History** tab, select an action that you want to undo.
+3.	In the flyout pane, select **Undo**. (If the action cannot be undone with this method, you will not see an **Undo** button.)
+
+### To undo multiple actions at one time
+
+1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2.	On the **History** tab, select the actions that you want to undo.
+3.	In the pane on the right side of the screen, select **Undo**.
+
+
 ## Review your threat protection settings
 
 Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:

From a5c3e6656d506074a70daafa4d2842b74139b586 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:29:36 -0800
Subject: [PATCH 612/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 130 +++++++++---------
 1 file changed, 66 insertions(+), 64 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 0a7de859a9..4f8b62add6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -122,6 +122,72 @@ If you find that a remediation action was taken automatically on an entity that
 2.	On the **History** tab, select the actions that you want to undo.
 3.	In the pane on the right side of the screen, select **Undo**.
 
+## Review or define exclusions for Microsoft Defender for Endpoint
+
+An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
+
+To define exclusions across Microsoft Defender for Endpoint, perform the following tasks:
+- [Define exclusions for Microsoft Defender Antivirus](#exclusions-for-microsoft-defender-antivirus)
+- [Create “allow” indicators for Microsoft Defender for Endpoint](#indicators-for-microsoft-defender-for-endpoint)
+
+Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
+
+The procedures in this section describe how to define exclusions and indicators.
+
+### Exclusions for Microsoft Defender Antivirus
+
+In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions; however, you can use other methods, such as Group Policy as well.
+
+> [!TIP]
+> Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
+
+#### Use Microsoft Endpoint Manager to manage antivirus exclusions (for existing policies)
+
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-create-a-new-antivirus-policy-with-exclusions)).
+3. Choose **Properties**, and next to **Configuration settings**, choose **Edit**.
+4. Expand **Microsoft Defender Antivirus Exclusions** and then specify your exclusions.
+5. Choose **Review + save**, and then choose **Save**.
+
+#### Use Microsoft Endpoint Manager to create a new antivirus policy with exclusions
+
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
+2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
+3. Select a platform (such as **Windows 10 and later**, **macOS**, or **Windows 10 and Windows Server**).
+4. For **Profile**, select **Microsoft Defender Antivirus exclusions**, and then choose **Create**.
+5. Specify a name and description for the profile, and then choose **Next**.
+6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.
+7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
+8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
+9. On the **Review + create** tab, review the settings, and then choose **Create**.
+
+### Indicators for Microsoft Defender for Endpoint
+
+[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
+
+To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
+
+- [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
+- [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
+- [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
+
+Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
+
+- [Learn more about indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
+- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
+- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
+- [Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
+
+> [!TIP]
+> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
+
+| Indicator type | Prerequisites | Notes  |
+|----|----|---|
+|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version  must be 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
+| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
+| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
+
+
 
 ## Review your threat protection settings
 
@@ -192,70 +258,6 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
-## Review or define exclusions for Microsoft Defender for Endpoint
-
-An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
-
-To define exclusions across Microsoft Defender for Endpoint, perform the following tasks:
-- [Define exclusions for Microsoft Defender Antivirus](#exclusions-for-microsoft-defender-antivirus)
-- [Create “allow” indicators for Microsoft Defender for Endpoint](#indicators-for-microsoft-defender-for-endpoint)
-
-Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
-
-The procedures in this section describe how to define exclusions and indicators.
-
-### Exclusions for Microsoft Defender Antivirus
-
-In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions; however, you can use other methods, such as Group Policy as well.
-
-> [!TIP]
-> Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
-
-#### Use Microsoft Endpoint Manager to manage antivirus exclusions (for existing policies)
-
-1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus**, and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-create-a-new-antivirus-policy-with-exclusions)).
-3. Choose **Properties**, and next to **Configuration settings**, choose **Edit**.
-4. Expand **Microsoft Defender Antivirus Exclusions** and then specify your exclusions.
-5. Choose **Review + save**, and then choose **Save**.
-
-#### Use Microsoft Endpoint Manager to create a new antivirus policy with exclusions
-
-1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-2. Choose **Endpoint security** > **Antivirus** > **+ Create Policy**. 
-3. Select a platform (such as **Windows 10 and later**, **macOS**, or **Windows 10 and Windows Server**).
-4. For **Profile**, select **Microsoft Defender Antivirus exclusions**, and then choose **Create**.
-5. Specify a name and description for the profile, and then choose **Next**.
-6. On the **Configuration settings** tab, specify your antivirus exclusions, and then choose **Next**.
-7. On the **Scope tags** tab, if you are using scope tags in your organization, specify scope tags for the policy you are creating. (See [Scope tags](https://docs.microsoft.com/mem/intune/fundamentals/scope-tags).)
-8. On the **Assignments** tab, specify the users and groups to whom your policy should be applied, and then choose **Next**. (If you need help with assignments, see [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/device-profile-assign).)
-9. On the **Review + create** tab, review the settings, and then choose **Create**.
-
-### Indicators for Microsoft Defender for Endpoint
-
-[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
-
-To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
-
-- [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
-- [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
-- [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
-
-Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
-
-- [Learn more about indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
-- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
-- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
-- [Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
-
-> [!TIP]
-> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
-
-| Indicator type | Prerequisites | Notes  |
-|----|----|---|
-|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version  must be 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
-| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
-| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
 
 ## Classify a false positive or false negative
 

From 4cb7b0ff725dc24fdb77c1f92523830eada4333f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:49:02 -0800
Subject: [PATCH 613/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 111 ++++++++----------
 1 file changed, 47 insertions(+), 64 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4f8b62add6..cb0ee4077d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,7 +33,7 @@ ms.custom: FPFN
 
 In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives includes:
 
-1.	Reviewing and classifying alerts
+1.	[Reviewing and classifying alerts](#review-and-classify-alerts)
 2.	Reviewing remediation actions that were taken
 3.	Reviewing and defining exclusions
 4.	Submitting an entity for analysis
@@ -47,10 +47,12 @@ If your security operations team see an alert that was triggered because somethi
 
 Managing your alerts and classifying false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 
+
 ### Determine whether an alert is accurate
 
 Before you classify or suppress an alert, determine whether the alert is accurate, a false positive, or benign.
-1. Go to the Microsoft Defender Security Center (https://securitycenter.windows.com) and sign in.
+
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
 4.	Take one of the following steps:   
@@ -60,7 +62,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 
 ### Classify an alert as a false positive
 
-Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the Alerts queue.
+Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the **Alerts queue**.
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	Select **Alerts queue**, and then select an alert that is a false positive.
@@ -110,13 +112,13 @@ If you find that a remediation action was taken automatically on an entity that
 - Disable a driver
 - Remove a scheduled task
 
-### To undo an action   
+### Undo an action
 
 1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select an action that you want to undo.
 3.	In the flyout pane, select **Undo**. (If the action cannot be undone with this method, you will not see an **Undo** button.)
 
-### To undo multiple actions at one time
+### Undo multiple actions at one time
 
 1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2.	On the **History** tab, select the actions that you want to undo.
@@ -163,7 +165,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 ### Indicators for Microsoft Defender for Endpoint
 
-[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
+[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
 To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
 
@@ -171,23 +173,52 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-Your security team can create indicators for files, IP addresses, URLs, domains, and certificates. Use the following resources to create or manage indicators in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)): 
+Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
-- [Learn more about indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
-- [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)
-- [Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)
-- [Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)
+| Indicator type | Prerequisites | Notes  |
+|----|----|---|
+|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
+| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
+| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
 
-| Indicator type | Prerequisites | Notes  |
-|----|----|---|
-|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version  must be 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
-| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint must be enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Your antimalware client version must be 4.18.1906.x or later. <p>Your devices must be running Windows 10, version 1709 or later <p>Custom network indicators must be turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There may be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
-| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Your antimalware client version must be 4.18.1901.x or later. <p>Your devices must be running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Your virus and threat protection definitions must be up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
+## Submit a file for analysis
 
+You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions. After you sign in at the submission site, you can track your submissions.
 
+### Submit a file for analysis
+
+If you have a file that was either wrongly detected as malicious or was missed, follow these steps to submit the file for analysis.
+
+1. Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
+2. Visit the Microsoft Security Intelligence submission site ([https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission)), and submit your file(s).
+
+### Submit a fileless detection for analysis
+
+If something was detected as malware based on behavior, and you don’t have a file, you can submit your Mpsupport.cab file for analysis. You can get the .cab file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool.
+
+1.	Go to ` C:\ProgramData\Microsoft\Windows Defender\Platform\<version>`, and then run ** MpCmdRun.exe** as an administrator.
+2.	Type `mpcmdrun.exe -GetFiles`, and then press **Enter**.
+   A .cab file is generated that contains various diagnostic logs. The location of the file is specified in the output of the command prompt. By default, the location is `C:\ProgramData\Microsoft\Microsoft Defender\Support\MpSupportFiles.cab`.
+3.	Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
+4.	Visit the Microsoft Security Intelligence submission site ([https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission)), and submit your .cab files.
+
+### What happens after a file is submitted?
+
+Your submission is immediately scanned by our systems to give you the latest determination even before an analyst starts handling your case. It’s possible that a file might have already been submitted and processed by an analyst. In those cases, a determination is made quickly.
+
+For submissions that were not already processed, they are prioritized for analysis as follows:
+
+- Prevalent files with the potential to impact large numbers of computers are given a higher priority.
+- Authenticated customers, especially enterprise customers with valid [Software Assurance IDs (SAIDs)](https://www.microsoft.com/licensing/licensing-programs/software-assurance-default.aspx), are given a higher priority.
+- Submissions flagged as high priority by SAID holders are given immediate attention.
+
+To check for updates regarding your submission, sign in at the [Microsoft Security Intelligence submission site](https://www.microsoft.com/wdsi/filesubmission). 
+
+> [!TIP]
+> To learn more, see [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide#how-does-microsoft-prioritize-submissions).
 
 ## Review your threat protection settings
 
@@ -258,54 +289,6 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
-
-## Classify a false positive or false negative
-
-As alerts are triggered, if you see something that was detected as malicious or suspicious that should not be, you can suppress alerts for that entity and classify alerts as false positives. Managing your alerts and classifying false positives helps to train your threat protection solution. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
-
-### Suppress an alert
-
-You can suppress an alert in the Microsoft Defender Security Center.
-
-1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
-2. In the navigation pane, select **Alerts queue**. 
-3. Select an alert that you want to suppress to open its **Details** pane.
-4. In the **Details** pane, choose the ellipsis (`...`), and then choose **Create a suppression rule**.
-5. Specify all the settings for your suppression rule, and then choose **Save**. 
-
-> [!TIP]
-> Need help with suppression rules? See [Suppress an alert and create a new suppression rule](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts#suppress-an-alert-and-create-a-new-suppression-rule).
-
-### Classify an alert as a false positive
-
-Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the Alerts queue. 
-
-1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
-2. Select **Alerts queue**, and then select an alert that is a false positive.
-3. For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
-4. In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
-
-> [!TIP]
-> - For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts).
-> - If your organization is using a security information and event management (SIEM) server, make sure to define a suppression rule there, too. 
-
-## Submit a file for analysis
-
-You can submit files, such as false positives or false negatives, to Microsoft for analysis. Microsoft security researchers analyze all submissions. After you sign in at the submission site, you can track your submissions.
-
-1. Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).
-
-2. Visit the Microsoft Security Intelligence submission ([https://www.microsoft.com/wdsi/filesubmission](https://www.microsoft.com/wdsi/filesubmission)), and submit your file(s).
-
-## Confirm your software uses EV code signing
-
-As explained in the blog, [Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives), digital signatures help to ensure the software integrity. The reputation of digital certificates also plays a role in whether software is considered suspicious or not a threat. By using a reputable certificate, developers can reduce the chances of their software being detected as malware. Extended validation (EV) code signing is a more advanced version of digital certificates and requires a more rigorous vetting and authentication process.
-
-Want to learn more? See the following resources:
-
-- [Microsoft Security Blog: Partnering with the industry to minimize false positives](https://www.microsoft.com/security/blog/2018/08/16/partnering-with-the-industry-to-minimize-false-positives/)
-- [Get a code signing certificate](https://docs.microsoft.com/windows-hardware/drivers/dashboard/get-a-code-signing-certificate)
-
 ## Still need help?
 
 If you still need help after working through all the steps in this article, your best bet is to contact technical support.

From 5b04617b295d16a1106326c79c481534acd475fe Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:50:56 -0800
Subject: [PATCH 614/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index cb0ee4077d..69d5634efb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -19,7 +19,7 @@ ms.collection:
 - m365-security-compliance 
 - m365initiative-defender-endpoint 
 ms.topic: conceptual
-ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs, yonghree
+ms.reviewer: ramarom, evaldm, isco, mabraitm, chriggs, yonghree, jcedola
 ms.custom: FPFN
 ---
 
@@ -34,10 +34,10 @@ ms.custom: FPFN
 In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives includes:
 
 1.	[Reviewing and classifying alerts](#review-and-classify-alerts)
-2.	Reviewing remediation actions that were taken
-3.	Reviewing and defining exclusions
-4.	Submitting an entity for analysis
-5.	Reviewing your threat protection settings
+2.	[Reviewing remediation actions that were taken](#review-remediation-actions)
+3.	[Reviewing and defining exclusions](#review-or-define-exclusions-for-microsoft-defender-for-endpoint)
+4.	[Submitting an entity for analysis](#submit-a-file-for-analysis)
+5.	[Reviewing your threat protection settings](#review-your-threat-protection-settings)
 
 If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 

From af20c1f8c8f7088cdd22e4c189ab37f64fcfc0f4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:53:42 -0800
Subject: [PATCH 615/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 69d5634efb..dd7dfd3caa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -103,7 +103,7 @@ Other actions, such as starting an antivirus scan or collecting an investigation
 2. Select the **History** tab. 
 3. Select an item to view more details about the remediation action that was taken.
 
-If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. Remediation actions that you can undo include the following:
+If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. You can undo the following remediation actions:
 - Isolate device
 - Restrict code execution
 - Quarantine a file
@@ -178,7 +178,7 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 | Indicator type | Prerequisites | Notes  |
 |----|----|---|
 |Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
-| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
+| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
 | Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
 
 > [!TIP]

From 5596fcc20ce34f2ef0ec31a0c5f2112e18140cd4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:54:20 -0800
Subject: [PATCH 616/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index dd7dfd3caa..977f0216f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -4,8 +4,8 @@ description: Learn how to handle false positives or false negatives in Microsoft
 keywords: alert, exclusion, defender atp, false positive, false negative
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
-ms.prod: w10
-ms.technology: windows
+ms.prod: m365-security
+ms.technology: mde
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security

From 384d221117fb45f3da607eb5d2c907d3284f4c6e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:58:11 -0800
Subject: [PATCH 617/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md     | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 977f0216f7..820e4412bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -175,11 +175,11 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 
 Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
-| Indicator type | Prerequisites | Notes  |
-|----|----|---|
-|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes. |
-| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).) | Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) |
-| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |
+| Indicator type | Prerequisites |
+|:----|:----|
+|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
+| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From e06f4cba036a2a9599136aff2de740050b8168ac Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:59:20 -0800
Subject: [PATCH 618/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 820e4412bb..81d6258ac3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -177,8 +177,8 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 | Indicator type | Prerequisites |
 |:----|:----|
-|Files <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> [Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file). <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
-| IP addresses and URLs <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain) <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
+| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
 | Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 
 > [!TIP]

From 5912f7dd084c88e5e4b1af9e08edbecbdb101b71 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 20:59:45 -0800
Subject: [PATCH 619/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 81d6258ac3..9e6d2a7b81 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -179,7 +179,7 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 |:----|:----|
 |**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
 | **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| Certificates <p>`.CER` or `.PEM` file extensions are supported. <p>[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates) <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
+| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From bfee91e04c29c9cb209372e135e9a521d8109666 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 21:00:49 -0800
Subject: [PATCH 620/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9e6d2a7b81..6f17620125 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -177,7 +177,7 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 | Indicator type | Prerequisites |
 |:----|:----|
-|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a couple of minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
+|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p> Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
 | **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
 | **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 

From da2f03ef717aa23a0e3a86c7f81ee598a4ba9ddf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 21:04:10 -0800
Subject: [PATCH 621/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 21 +++++++++----------
 1 file changed, 10 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 6f17620125..2896e64818 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,21 +33,20 @@ ms.custom: FPFN
 
 In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives includes:
 
-1.	[Reviewing and classifying alerts](#review-and-classify-alerts)
-2.	[Reviewing remediation actions that were taken](#review-remediation-actions)
-3.	[Reviewing and defining exclusions](#review-or-define-exclusions-for-microsoft-defender-for-endpoint)
-4.	[Submitting an entity for analysis](#submit-a-file-for-analysis)
-5.	[Reviewing your threat protection settings](#review-your-threat-protection-settings)
+1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
+2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
+3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions-for-microsoft-defender-for-endpoint)
+4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
+5.	[Reviewing your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
 
 If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 
-## Review and classify alerts
+## Part 1: Review and classify alerts
 
 If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. And, you can classify alerts as false positives as needed. 
 
 Managing your alerts and classifying false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 
-
 ### Determine whether an alert is accurate
 
 Before you classify or suppress an alert, determine whether the alert is accurate, a false positive, or benign.
@@ -85,7 +84,7 @@ If you have alerts that are either false positives or are for unimportant events
 > [!TIP]
 > Need help with suppression rules? See [Suppress an alert and create a new suppression rule](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts#suppress-an-alert-and-create-a-new-suppression-rule).
 
-## Review remediation actions
+## Part 2: Review remediation actions
 
 [Remediation actions](manage-auto-investigation.md#remediation-actions), such as sending a file to quarantine or stopping a process, can be taken on entities that are detected as threats. Several types of remediation actions can occur automatically through automated investigation and Microsoft Defender Antivirus. Examples of such actions include:   
 - Quarantine a file
@@ -124,7 +123,7 @@ If you find that a remediation action was taken automatically on an entity that
 2.	On the **History** tab, select the actions that you want to undo.
 3.	In the pane on the right side of the screen, select **Undo**.
 
-## Review or define exclusions for Microsoft Defender for Endpoint
+## Part 3: Review or define exclusions for Microsoft Defender for Endpoint
 
 An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
@@ -184,7 +183,7 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
 
-## Submit a file for analysis
+## Part 4: Submit a file for analysis
 
 You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions. After you sign in at the submission site, you can track your submissions.
 
@@ -220,7 +219,7 @@ To check for updates regarding your submission, sign in at the [Microsoft Securi
 > [!TIP]
 > To learn more, see [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide#how-does-microsoft-prioritize-submissions).
 
-## Review your threat protection settings
+## Part 5: Review and adjust your threat protection settings
 
 Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 

From 21b877a8f0c60800a12928292c28c5fb344975d0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 21:08:15 -0800
Subject: [PATCH 622/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 2896e64818..8061a0af30 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -176,9 +176,9 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 | Indicator type | Prerequisites |
 |:----|:----|
-|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled. <p> Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
-| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge)| Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. |Microsoft Defender Antivirus with cloud-based protection is enabled ([Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
+|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later. <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
+| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From 88a45ee671d150a2c6f0450362b878debfd7df74 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 21:09:24 -0800
Subject: [PATCH 623/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8061a0af30..5b2bb0e35f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -178,7 +178,7 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 |:----|:----|
 |**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later. <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
 | **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running one of the following versions of Windows:<br/>- Windows 10, version 1703 or later<br/>- Windows Server 2016<br/>- Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
+| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From 616ad2ad31e4cbb6c8c9511d36dc7a7aff9150b9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 21 Jan 2021 21:10:00 -0800
Subject: [PATCH 624/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5b2bb0e35f..b7016cc7ba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -37,7 +37,7 @@ In endpoint protection, a false positive is an entity, such as a file or a proce
 2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
 3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions-for-microsoft-defender-for-endpoint)
 4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
-5.	[Reviewing your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
+5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
 
 If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 

From 7314f0dc114c77be6ad51885a82d2bda31189ef8 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Fri, 22 Jan 2021 11:43:37 +0200
Subject: [PATCH 625/825] 1

---
 .../find-machine-info-by-ip.md                | 96 -------------------
 1 file changed, 96 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
deleted file mode 100644
index b00bf9017d..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machine-info-by-ip.md
+++ /dev/null
@@ -1,96 +0,0 @@
----
-title: Find device information by internal IP API
-description: Use this API to create calls related to finding a device entry around a specific timestamp by internal IP.
-keywords: ip, apis, graph api, supported apis, find device, device information
-search.product: eADQiWindows 10XVcnh
-ms.prod: m365-security
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: macapara
-author: mjcaparas
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: M365-security-compliance
-ms.topic: article
-ms.technology: mde
----
-
-# Find device information by internal IP API
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
-
-[!include[Microsoft Defender for Endpoint API URIs for US Government](../../includes/microsoft-defender-api-usgov.md)]
-
-[!include[Improve request performance](../../includes/improve-request-performance.md)]
-
-Find a device by internal IP.
-
->[!NOTE]
->The timestamp must be within the last 30 days.
-
-## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
-
-Permission type | Permission | Permission display name
-:---|:---|:---
-Application | Machine.Read.All | 'Read all machine profiles'
-Application | Machine.ReadWrite.All | 'Read and write all machine information'
-
-## HTTP request
-```
-GET /api/machines/find(timestamp={time},key={IP})
-```
-
-## Request headers
-
-Name | Type | Description
-:---|:---|:---
-Authorization | String | Bearer {token}. **Required**.
-
-
-## Request body
-Empty
-
-## Response
-If successful and machine exists - 200 OK.
-If no machine found - 404 Not Found.
-
-
-## Example
-
-**Request**
-
-Here is an example of the request.
-
-```
-GET https://graph.microsoft.com/testwdatppreview/machines/find(timestamp=2018-06-19T10:00:00Z,key='10.166.93.61')
-Content-type: application/json
-```
-
-**Response**
-
-Here is an example of the response.
-
-The response will return a list of all devices that reported this IP address within sixteen minutes prior and after the timestamp. 
-
-```
-HTTP/1.1 200 OK
-Content-type: application/json
-{
-    "@odata.context": "https://graph.microsoft.com/testwdatppreview/$metadata#Machines",
-    "value": [
-        {
-            "id": "04c99d46599f078f1c3da3783cf5b95f01ac61bb",
-            "computerDnsName": "",
-            "firstSeen": "2017-07-06T01:25:04.9480498Z",
-            "osPlatform": "Windows10",
-…
-}
-```

From 36c2c65cd728ce4e98098f23554b8acf27f1a4da Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Fri, 22 Jan 2021 09:57:40 -0800
Subject: [PATCH 626/825] updating logging information for 3rd party CA SSO
 issue

---
 .../hello-for-business/hello-deployment-issues.md | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
index 96f5181b12..2c22e05685 100644
--- a/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
+++ b/windows/security/identity-protection/hello-for-business/hello-deployment-issues.md
@@ -59,14 +59,23 @@ https://support.microsoft.com/topic/a34a400a-51d5-f2a1-c8c0-7a6c9c49cb78).
 
 ### Identifying On-premises Resource Access Issues with Third-Party CAs
 
-This issue can be identified using network traces or Kerberos logging from the client. In the network trace, the client will fail to place a TGS_REQ request when a user attempts to access a resource. On the client, this can be observed in Kerberos event logs:
+This issue can be identified using network traces or Kerberos logging from the client. In the network trace, the client will fail to place a TGS_REQ request when a user attempts to access a resource. On the client, this can be observed in the Kerberos operation event log under **Application and Services/Microsoft/Windows/Security-Kerberos/Operational**. These logs are default disabled. The failure event for this case will include the following information:
+
+    Log Name:      Microsoft-Windows-Kerberos/Operational
+    Source:        Microsoft-Windows-Security-Kerberos
+    Event ID:      107
+    GUID:          {98e6cfcb-ee0a-41e0-a57b-622d4e1b30b1} 
+    Task Category: None
+    Level:         Error
+    Keywords:      
+    User:          SYSTEM
+    Description:
 
     The Kerberos client received a KDC certificate that does not have a matched domain name.
+    
     Expected Domain Name: ad.contoso.com
     Error Code: 0xC000006D
 
-See [How to enable Kerberos event logging](https://docs.microsoft.com/troubleshoot/windows-server/identity/enable-kerberos-event-logging#enable-kerberos-event-logging-on-a-specific-computer) for information on enabling Kerberos logs on a client device.
-
 ### Resolving On-premises Resource Access Issue with Third-Party CAs
 
 To resolve this issue, domain controller certificates need to be updated so the certificate subject contains directory path of the server object (distinguished name).

From cce30db3faa820a68826c9c532b23c8d07ae4659 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 12:42:42 -0800
Subject: [PATCH 627/825] Update microsoft-defender-antivirus-compatibility.md

---
 ...microsoft-defender-antivirus-compatibility.md | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index bac2466090..c39700cab2 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: tewchen, pahuijbr, shwjha
 manager: dansimp
-ms.date: 01/11/2021
+ms.date: 01/22/2021
 ms.technology: mde
 ---
 
@@ -34,7 +34,7 @@ Microsoft Defender Antivirus is automatically enabled and installed on endpoints
 
 ## Antivirus and Microsoft Defender for Endpoint
 
-The following table summarizes what happens with Microsoft Defender Antivirus when third-party antivirus products are used together or without Microsoft Defender for Endpoint.
+The following table summarizes what happens with Microsoft Defender Antivirus when third-party antivirus products are used together or without Microsoft Defender for Endpoint. 
 
 
 | Windows version   | Antimalware protection  | Microsoft Defender for Endpoint enrollment | Microsoft Defender Antivirus state     |
@@ -76,20 +76,22 @@ See [Microsoft Defender Antivirus on Windows Server](microsoft-defender-antiviru
 
 ## Functionality and features available in each state
 
-The table in this section summarizes the functionality and features that are available in each state. 
+The table in this section summarizes the functionality and features that are available in each state. The table is designed to be informational only. It is intended to describe the features & capabilities that are actively working or not, according to whether Microsoft Defender Antivirus is in active mode, in passive mode, or is disabled/uninstalled. 
 
 > [!IMPORTANT]
-> The following table is informational, and it is designed to describe the features & capabilities that are turned on or off according to whether Microsoft Defender Antivirus is in Active mode, in Passive mode, or disabled/uninstalled. Do not turn off capabilities, such as real-time protection, if you are using Microsoft Defender Antivirus in passive mode or are using EDR in block mode. 
+> Do not turn off capabilities, such as real-time protection, cloud-delivered protection, or limited periodic scanning, if you are using Microsoft Defender Antivirus in passive mode or you are using EDR in block mode. 
 
 |State |[Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) |
 |--|--|--|--|--|--|
 |Active mode <br/><br/>  |Yes |No |Yes |Yes |Yes |
-|Passive mode  |No |No |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
+|Passive mode  |No |No* |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
 |[EDR in block mode enabled](../microsoft-defender-atp/edr-in-block-mode.md)  |No |No |Yes |Yes |Yes |
 |Automatic disabled mode  |No |Yes |No |No |No |
 
-- In Active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
-- In Passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
+\* When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is turned on and is in passive mode.
+
+- In active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
+- In passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
 - When [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md) is turned on and Microsoft Defender Antivirus is not the primary antivirus solution, it can still detect and remediate malicious items.
 - When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended in general; if possible, keep Microsoft Defender Antivirus in passive mode if you are using a non-Microsoft antimalware/antivirus solution.
 

From 81f83025b6d15dadd7fb8ab916da68c82fa61ed4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 12:44:33 -0800
Subject: [PATCH 628/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md           | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index c39700cab2..8c855a644e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -88,7 +88,7 @@ The table in this section summarizes the functionality and features that are ava
 |[EDR in block mode enabled](../microsoft-defender-atp/edr-in-block-mode.md)  |No |No |Yes |Yes |Yes |
 |Automatic disabled mode  |No |Yes |No |No |No |
 
-\* When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is turned on and is in passive mode.
+\* When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
 
 - In active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
 - In passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
@@ -106,13 +106,13 @@ The table in this section summarizes the functionality and features that are ava
    If you uninstall the non-Microsoft antivirus product, and use Microsoft Defender Antivirus to provide protection to your devices, Microsoft Defender Antivirus will return to its normal active mode automatically.
 
 > [!WARNING]
-> Do not disable, stop, or modify any of the associated services that are used by Microsoft Defender Antivirus, Microsoft Defender for Endpoint, or the Windows Security app. This includes the *wscsvc*, *SecurityHealthService*, *MsSense*, *Sense*, *WinDefend*, or *MsMpEng* services and processes. Manually modifying these services can cause severe instability on your devices and can make your network vulnerable. Disabling, stopping, or modifying those services can also cause problems when using non-Microsoft antivirus solutions and how their information is displayed in the [Windows Security app](microsoft-defender-security-center-antivirus.md).
+> Do not disable, stop, or modify any of the associated services that are used by Microsoft Defender Antivirus, Microsoft Defender for Endpoint, or the Windows Security app. This recommendation includes the *wscsvc*, *SecurityHealthService*, *MsSense*, *Sense*, *WinDefend*, or *MsMpEng* services and processes. Manually modifying these services can cause severe instability on your devices and can make your network vulnerable. Disabling, stopping, or modifying those services can also cause problems when using non-Microsoft antivirus solutions and how their information is displayed in the [Windows Security app](microsoft-defender-security-center-antivirus.md).
 
 
 ## See also
 
 - [Microsoft Defender Antivirus in Windows 10](microsoft-defender-antivirus-in-windows-10.md)
-- [Microsoft Defender Antivirus on Windows Server 2016 and 2019](microsoft-defender-antivirus-on-windows-server-2016.md)
+- [Microsoft Defender Antivirus on Windows Server](microsoft-defender-antivirus-on-windows-server-2016.md)
 - [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md)
 - [Configure Endpoint Protection](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure)
 - [Learn about Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about)

From d4e8437e7a5181c54ba7f8709188f6ed805b459d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 12:47:24 -0800
Subject: [PATCH 629/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md           | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 8c855a644e..6407748cb0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -1,7 +1,7 @@
 ---
 title: Microsoft Defender Antivirus compatibility with other security products
-description: Get an overview of what to expect from Microsoft Defender Antivirus with other security products and the operating systems you are using.
-keywords: windows defender, next-generation, atp, advanced threat protection, compatibility, passive mode
+description: What to expect from Microsoft Defender Antivirus with other security products and the operating systems you are using.
+keywords: windows defender, next-generation, antivirus, compatibility, passive mode
 search.product: eADQiWindows 10XVcnh
 ms.pagetype: security
 ms.prod: m365-security
@@ -40,7 +40,7 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows version   | Antimalware protection  | Microsoft Defender for Endpoint enrollment | Microsoft Defender Antivirus state     |
 |------|------|-------|-------|
 | Windows 10  | A third-party product that is not offered or developed by Microsoft | Yes  | Passive mode  |
-| Windows 10  | A third-party product that is not offered or developed by Microsoft | No   | Automatic disabled mode     |
+| Windows 10  | A third-party product that is not offered or developed by Microsoft | No   | Automatically disabled mode     |
 | Windows 10  | Microsoft Defender Antivirus | Yes  | Active mode | 
 | Windows 10  | Microsoft Defender Antivirus | No   | Active mode |
 | Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | Yes  | Active mode<sup>[[1](#fn1)]</sup> |

From 9d3b79c092795b58c610ccb6db325a0b277b0688 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 12:50:13 -0800
Subject: [PATCH 630/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 6407748cb0..6bea08e495 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -84,7 +84,7 @@ The table in this section summarizes the functionality and features that are ava
 |State |[Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) |
 |--|--|--|--|--|--|
 |Active mode <br/><br/>  |Yes |No |Yes |Yes |Yes |
-|Passive mode  |No |No* |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
+|Passive mode  |No* |No |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
 |[EDR in block mode enabled](../microsoft-defender-atp/edr-in-block-mode.md)  |No |No |Yes |Yes |Yes |
 |Automatic disabled mode  |No |Yes |No |No |No |
 

From e3c367848245ca9557b88173045e4e48905b0919 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 12:51:01 -0800
Subject: [PATCH 631/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md    | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 6bea08e495..eda61a27e0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -90,13 +90,17 @@ The table in this section summarizes the functionality and features that are ava
 
 \* When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
 
-- In active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
-- In passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
-- When [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md) is turned on and Microsoft Defender Antivirus is not the primary antivirus solution, it can still detect and remediate malicious items.
-- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended in general; if possible, keep Microsoft Defender Antivirus in passive mode if you are using a non-Microsoft antimalware/antivirus solution.
 
 ## Keep the following points in mind
 
+- In active mode, Microsoft Defender Antivirus is used as the antivirus app on the machine. All configuration made with Configuration Manager, Group Policy, Intune, or other management products will apply. Files are scanned and threats remediated, and detection information are reported in your configuration tool (such as Configuration Manager or the Microsoft Defender Antivirus app on the machine itself).
+
+- In passive mode, Microsoft Defender Antivirus is not used as the antivirus app, and threats are not remediated by Microsoft Defender Antivirus. Files are scanned and reports are provided for threat detections that are shared with the Microsoft Defender for Endpoint service. Therefore, you might encounter alerts in the Security Center console with Microsoft Defender Antivirus as a source, even when Microsoft Defender Antivirus is in Passive mode.
+
+- When [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md) is turned on and Microsoft Defender Antivirus is not the primary antivirus solution, it can still detect and remediate malicious items.
+
+- When disabled, Microsoft Defender Antivirus is not used as the antivirus app. Files are not scanned and threats are not remediated. Disabling/uninstalling Microsoft Defender Antivirus is not recommended in general; if possible, keep Microsoft Defender Antivirus in passive mode if you are using a non-Microsoft antimalware/antivirus solution.
+
 - If you are enrolled in Microsoft Defender for Endpoint and you are using a third-party antimalware product, then passive mode is enabled. [The service requires common information sharing from Microsoft Defender Antivirus service](../microsoft-defender-atp/defender-compatibility.md) in order to properly monitor your devices and network for intrusion attempts and attacks.
 
 - When Microsoft Defender Antivirus is disabled automatically, it can be re-enabled automatically if the protection offered by a non-Microsoft antivirus product expires or otherwise stops providing real-time protection from viruses, malware, or other threats. Automatic re-enabling helps to ensure that antivirus protection is maintained on your devices. It also allows you to enable [limited periodic scanning](limited-periodic-scanning-microsoft-defender-antivirus.md), which uses the Microsoft Defender Antivirus engine to periodically check for threats in addition to your main antivirus app.

From e44ab03b1935f888964e832040823e6c46a6e5ee Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:01:43 -0800
Subject: [PATCH 632/825] Update microsoft-defender-antivirus-compatibility.md

---
 ...icrosoft-defender-antivirus-compatibility.md | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index eda61a27e0..f83f0d7c2b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -81,14 +81,17 @@ The table in this section summarizes the functionality and features that are ava
 > [!IMPORTANT]
 > Do not turn off capabilities, such as real-time protection, cloud-delivered protection, or limited periodic scanning, if you are using Microsoft Defender Antivirus in passive mode or you are using EDR in block mode. 
 
-|State |[Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) |
-|--|--|--|--|--|--|
-|Active mode <br/><br/>  |Yes |No |Yes |Yes |Yes |
-|Passive mode  |No* |No |Yes |Only during [scheduled or on-demand scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus) |Yes |
-|[EDR in block mode enabled](../microsoft-defender-atp/edr-in-block-mode.md)  |No |No |Yes |Yes |Yes |
-|Automatic disabled mode  |No |Yes |No |No |No |
+| |Active mode |Passive mode |EDR in block mode |Disabled/uninstalled |
+|:---|:---|:---|:---|:---|
+| [Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | Yes | No <sup>[[3](#fn3)]<sup> | No | No |
+| [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | No | No | No | Yes |
+| [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
+|  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | Sometimes <sup>[[4](#fn4)]<sup> | Yes | No |
+| [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
 
-\* When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
+(<a id="fn3">2</a>) When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
+
+(<a id="fn4">4</a>) When Microsoft Defender Antivirus is in passive mode, threat remediation features are active only during scheduled or on-demand scans.
 
 
 ## Keep the following points in mind

From eade25b1aa6e279284484dbd59a956909da2bef0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:05:38 -0800
Subject: [PATCH 633/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index f83f0d7c2b..d9c129f8d8 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -89,7 +89,7 @@ The table in this section summarizes the functionality and features that are ava
 |  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | Sometimes <sup>[[4](#fn4)]<sup> | Yes | No |
 | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
 
-(<a id="fn3">2</a>) When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
+(<a id="fn3">3</a>) When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
 
 (<a id="fn4">4</a>) When Microsoft Defender Antivirus is in passive mode, threat remediation features are active only during scheduled or on-demand scans.
 

From 69ccbd231161f4b00dfa6d945a6bca2f9cad1e56 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:06:07 -0800
Subject: [PATCH 634/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index d9c129f8d8..4786157c84 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -81,7 +81,7 @@ The table in this section summarizes the functionality and features that are ava
 > [!IMPORTANT]
 > Do not turn off capabilities, such as real-time protection, cloud-delivered protection, or limited periodic scanning, if you are using Microsoft Defender Antivirus in passive mode or you are using EDR in block mode. 
 
-| |Active mode |Passive mode |EDR in block mode |Disabled/uninstalled |
+|Protection |Active mode |Passive mode |EDR in block mode |Disabled/uninstalled |
 |:---|:---|:---|:---|:---|
 | [Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | Yes | No <sup>[[3](#fn3)]<sup> | No | No |
 | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | No | No | No | Yes |

From a82b066840ebfe0dd73fd90f77299510156229d9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:06:42 -0800
Subject: [PATCH 635/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 4786157c84..431f0cce09 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -86,7 +86,7 @@ The table in this section summarizes the functionality and features that are ava
 | [Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | Yes | No <sup>[[3](#fn3)]<sup> | No | No |
 | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | No | No | No | Yes |
 | [File scanning and detection information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
-|  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | Sometimes <sup>[[4](#fn4)]<sup> | Yes | No |
+|  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | See note <sup>[[4](#fn4)]<sup> | Yes | No |
 | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
 
 (<a id="fn3">3</a>) When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.

From 707451815b8aadc582daed8fde478e077e2c0f68 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:08:02 -0800
Subject: [PATCH 636/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 431f0cce09..eec4d1ce3b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -81,7 +81,7 @@ The table in this section summarizes the functionality and features that are ava
 > [!IMPORTANT]
 > Do not turn off capabilities, such as real-time protection, cloud-delivered protection, or limited periodic scanning, if you are using Microsoft Defender Antivirus in passive mode or you are using EDR in block mode. 
 
-|Protection |Active mode |Passive mode |EDR in block mode |Disabled/uninstalled |
+|Protection |Active mode |Passive mode |EDR in block mode |Disabled or uninstalled |
 |:---|:---|:---|:---|:---|
 | [Real-time protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus) and [cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus) | Yes | No <sup>[[3](#fn3)]<sup> | No | No |
 | [Limited periodic scanning availability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/limited-periodic-scanning-microsoft-defender-antivirus) | No | No | No | Yes |

From 244dc8bbb5d5464dea2fe6390c906766bc36e622 Mon Sep 17 00:00:00 2001
From: Carmen Forsmann <cmforsmann@live.com>
Date: Fri, 22 Jan 2021 13:09:33 -0800
Subject: [PATCH 637/825] Update waas-delivery-optimization.md

Add link to Dynamic Updates blog post.
---
 windows/deployment/update/waas-delivery-optimization.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/deployment/update/waas-delivery-optimization.md b/windows/deployment/update/waas-delivery-optimization.md
index 599fd37ab1..bbafcf8b44 100644
--- a/windows/deployment/update/waas-delivery-optimization.md
+++ b/windows/deployment/update/waas-delivery-optimization.md
@@ -66,7 +66,7 @@ For information about setting up Delivery Optimization, including tips for the b
     - Xbox game pass games
     - MSIX apps (HTTP downloads only)
     - Edge browser installs and updates
-    - Dynamic updates
+    - [Dynamic updates](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/the-benefits-of-windows-10-dynamic-update/ba-p/467847) 
 
 ## Requirements
 
@@ -93,7 +93,7 @@ The following table lists the minimum Windows 10 version that supports Delivery
 | MSIX apps (HTTP downloads only) | 2004 |
 | Configuration Manager Express updates | 1709 + Configuration Manager version 1711 |
 | Edge browser installs and updates | 1809 |
-| Dynamic updates | 1903 |
+| [Dynamic updates](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/the-benefits-of-windows-10-dynamic-update/ba-p/467847) | 1903 |
 
 > [!NOTE]
 > Starting with Configuration Manager version 1910, you can use Delivery Optimization for the distribution of all Windows update content for clients running Windows 10 version 1709 or newer, not just express installation files. For more, see [Delivery Optimization starting in version 1910](https://docs.microsoft.com/mem/configmgr/sum/deploy-use/optimize-windows-10-update-delivery#bkmk_DO-1910).

From 62bdf47af2aaa078aef65dd8d7f8286ca2e24bc6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:23:59 -0800
Subject: [PATCH 638/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index eec4d1ce3b..91f14d18e0 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -89,7 +89,7 @@ The table in this section summarizes the functionality and features that are ava
 |  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | See note <sup>[[4](#fn4)]<sup> | Yes | No |
 | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
 
-(<a id="fn3">3</a>) When Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode.
+(<a id="fn3">3</a>) In general, when Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode. However, if [Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about) (Endpoint DLP) is configured and in effect, protective actions are enforced. Endpoint DLP works with real-time protection and behavior monitoring. 
 
 (<a id="fn4">4</a>) When Microsoft Defender Antivirus is in passive mode, threat remediation features are active only during scheduled or on-demand scans.
 

From f00f02304d0c69739960d08e511e56e7e405140d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:35:40 -0800
Subject: [PATCH 639/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md         | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 91f14d18e0..7a74769372 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -43,14 +43,14 @@ The following table summarizes what happens with Microsoft Defender Antivirus wh
 | Windows 10  | A third-party product that is not offered or developed by Microsoft | No   | Automatically disabled mode     |
 | Windows 10  | Microsoft Defender Antivirus | Yes  | Active mode | 
 | Windows 10  | Microsoft Defender Antivirus | No   | Active mode |
-| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | Yes  | Active mode<sup>[[1](#fn1)]</sup> |
-| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | No  | Must be set to passive mode (manually)<sup>[[1](#fn1)]<sup>  |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | Yes  | Active mode <sup>[[1](#fn1)]</sup> |
+| Windows Server, version 1803 or newer, or Windows Server 2019 | A third-party product that is not offered or developed by Microsoft | No  | Must be set to passive mode (manually) <sup>[[1](#fn1)]<sup>  |
 | Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus  | Yes |         Active mode  |
 | Windows Server, version 1803 or newer, or Windows Server 2019 | Microsoft Defender Antivirus | No  | Active mode |
 | Windows Server 2016 | Microsoft Defender Antivirus | Yes | Active mode |
 | Windows Server 2016 | Microsoft Defender Antivirus | No | Active mode |
-| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | Yes | Must be disabled (manually)<sup>[[2](#fn2)]<sup> |
-| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | No | Must be disabled (manually)<sup>[[2](#fn2)]<sup> |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | Yes | Must be disabled (manually) <sup>[[2](#fn2)]<sup> |
+| Windows Server 2016 | A third-party product that is not offered or developed by Microsoft | No | Must be disabled (manually) <sup>[[2](#fn2)]<sup> |
 
 (<a id="fn1">1</a>)  On Windows Server, version 1803 or newer, or Windows Server 2019, Microsoft Defender Antivirus does not enter passive mode automatically when you install a non-Microsoft antivirus product. In those cases, [set Microsoft Defender Antivirus to passive mode](microsoft-defender-antivirus-on-windows-server-2016.md#need-to-set-microsoft-defender-antivirus-to-passive-mode) to prevent problems caused by having multiple antivirus products installed on a server.
 

From 99e5ed848cfe0fd4aec8adcd57b8f85e02c0f637 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:45:39 -0800
Subject: [PATCH 640/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md    | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index b7016cc7ba..0a4832febe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -43,7 +43,7 @@ If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/w
 
 ## Part 1: Review and classify alerts
 
-If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. And, you can classify alerts as false positives as needed. 
+If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
 
 Managing your alerts and classifying false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 
@@ -54,7 +54,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Take one of the following steps:   
+4.	Take one of the following steps: <br/>   
    - If the alert is accurate, assign and investigate the alert further.
    - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
    - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
@@ -294,4 +294,9 @@ If you still need help after working through all the steps in this article, your
 
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2. In the upper right corner, select the question mark (**?**), and then select **Microsoft support**.
-3. In the Support Assistant window, describe your issue, and then send your message. From there, you can open a service request.  
\ No newline at end of file
+3. In the Support Assistant window, describe your issue, and then send your message. From there, you can open a service request.  
+
+## See also
+
+[Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)
+ 
\ No newline at end of file

From f508a1704b5862d2f228eaeef81762e2134cc59d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:47:49 -0800
Subject: [PATCH 641/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 0a4832febe..a05b00432f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -54,10 +54,10 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Take one of the following steps: <br/>   
-   - If the alert is accurate, assign and investigate the alert further.
-   - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
-   - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
+4.	Take one of the following steps:   <br/>   
+    - If the alert is accurate, assign and investigate the alert further.
+    - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
+    - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
 
 ### Classify an alert as a false positive
 

From f143d389fc4fe91e7feccc6d6986f9642b7b5443 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:56:42 -0800
Subject: [PATCH 642/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 19 +++++++++++--------
 1 file changed, 11 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index a05b00432f..e21d65054d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. The process of addressing false positives/negatives includes:
+In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives. These steps include:
 
 1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
 2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
@@ -39,7 +39,7 @@ In endpoint protection, a false positive is an entity, such as a file or a proce
 4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
 5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
 
-If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), use this article as a guide to take action. This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
+This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
 
 ## Part 1: Review and classify alerts
 
@@ -55,18 +55,21 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
 4.	Take one of the following steps:   <br/>   
-    - If the alert is accurate, assign and investigate the alert further.
-    - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
-    - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
 
-### Classify an alert as a false positive
+    | Alert status | What to do |
+    |:---|:---|
+    | The alert is accurate | Assign the alert, and then [investigate it](investigate-alerts.md) further. |
+    | The alert is a false positive | Proceed to [classify the alert](#classify-an-alert) as a false positive, and then [suppress the alert](#suppress-an-alert). <p> Also, create an indicator for Microsoft Defender for Endpoint. |
+    | The alert is accurate but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
 
-Your security team can classify an alert as a false positive in the Microsoft Defender Security Center, in the **Alerts queue**.
+### Classify an alert
+
+Your security team can classify an alert as a false positive or a true positive in the Microsoft Defender Security Center, in the **Alerts queue**.
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	Select **Alerts queue**, and then select an alert that is a false positive.
 3.	For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
-4.	In the **Manage alert** section, select **True alert** or **False alert**. Use **False alert** to classify a false positive.
+4.	In the **Manage alert** section, select either **True alert** or **False alert**. (Use **False alert** to classify a false positive.)
 
 > [!TIP]
 > For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts). And, if your organization is using a security information and event management (SIEM) server, make sure to define a suppression rule there, too. 

From 87cbe724737cf5cd54d6bb7393c150d0ef345b2e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 13:59:31 -0800
Subject: [PATCH 643/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index e21d65054d..ebf9e149f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -179,9 +179,9 @@ Your security team can create indicators for files, IP addresses, URLs, domains,
 
 | Indicator type | Prerequisites |
 |:----|:----|
-|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later. <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features). | 
-| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** | Network protection in Defender for Endpoint is enabled in block mode. ([Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later. <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later. <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date. | 
+|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
+| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From 7117e088936828f936875166dc99f7d0e6ee140b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:02:08 -0800
Subject: [PATCH 644/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index ebf9e149f7..5d5c8cd439 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -177,11 +177,11 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 
 Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
-| Indicator type | Prerequisites |
+| Indicator | Prerequisites |
 |:----|:----|
-|**Files** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes. <p> **[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
-| **IP addresses and URLs** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) <p>**[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **Certificates** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC.<p>**[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
+|**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
+| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+| **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From 313ba03c26e01250398b81e165f00a3eace1f715 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:02:39 -0800
Subject: [PATCH 645/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 5d5c8cd439..68985360e9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -178,7 +178,7 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
 | Indicator | Prerequisites |
-|:----|:----|
+|:----:|:----:|
 |**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
 | **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
 | **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 

From 5fe58051f530f67580c42bea28161217a1c1387e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:07:15 -0800
Subject: [PATCH 646/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 68985360e9..cecea25f5e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -76,7 +76,7 @@ Your security team can classify an alert as a false positive or a true positive
 
 ### Suppress an alert
 
-If you have alerts that are either false positives or are for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center.
+If you have alerts that are either false positives or that are true positives but are for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center. Suppressing alerts helps reduce noise in your security operations dashboard. 
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, select **Alerts queue**.

From 8960bc4e9c0b881a801a4e8f8ecb19e442b5494f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:07:51 -0800
Subject: [PATCH 647/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index cecea25f5e..d5976bd76c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -178,7 +178,7 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, your secu
 Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
 | Indicator | Prerequisites |
-|:----:|:----:|
+|:----|:----|
 |**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
 | **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
 | **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 

From f386ac4af4d8b6e9ae82cd3a12dd8112b92ccfb8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:10:31 -0800
Subject: [PATCH 648/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d5976bd76c..3342692fc9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -302,4 +302,5 @@ If you still need help after working through all the steps in this article, your
 ## See also
 
 [Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)
- 
\ No newline at end of file
+
+[Overview of Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use) 
\ No newline at end of file

From 28794addaf76195c266a81fbc9f42834482621b8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:17:17 -0800
Subject: [PATCH 649/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 3342692fc9..56ef4f1e45 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -59,8 +59,8 @@ Before you classify or suppress an alert, determine whether the alert is accurat
     | Alert status | What to do |
     |:---|:---|
     | The alert is accurate | Assign the alert, and then [investigate it](investigate-alerts.md) further. |
-    | The alert is a false positive | Proceed to [classify the alert](#classify-an-alert) as a false positive, and then [suppress the alert](#suppress-an-alert). <p> Also, create an indicator for Microsoft Defender for Endpoint. |
-    | The alert is accurate but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
+    | The alert is a false positive | 1. Proceed to [classify the alert](#classify-an-alert) as a false positive, and then [suppress the alert](#suppress-an-alert). <p> 2. [Create an indicator](#indicators-for-microsoft-defender-for-endpoint) for Microsoft Defender for Endpoint. <p> 3. [Submit a file to Microsoft for analysis](#part-4-submit-a-file-for-analysis). |
+    | The alert is accurate, but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
 
 ### Classify an alert
 

From aabbcc4e3710334f83029829595e8bbd8d3f0749 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:18:46 -0800
Subject: [PATCH 650/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 56ef4f1e45..4cc8fd34a3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -45,7 +45,7 @@ This article also includes information about [what to do if you still need help]
 
 If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
 
-Managing your alerts and classifying false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
+Managing your alerts and classifying true/false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 
 ### Determine whether an alert is accurate
 

From 223f0f72df48f4d2163e19aa778a881ea8767469 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:21:00 -0800
Subject: [PATCH 651/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 4cc8fd34a3..48f1a3208e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -54,7 +54,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Take one of the following steps:   <br/>   
+4.	Depending on the alert status, take the steps described in the following table:   <br/>   
 
     | Alert status | What to do |
     |:---|:---|

From e4a721f0618a51e419046ab3d179b42160e08574 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:26:14 -0800
Subject: [PATCH 652/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 48f1a3208e..20fe6f78d4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -227,7 +227,7 @@ To check for updates regarding your submission, sign in at the [Microsoft Securi
 Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
 
 - [Cloud-delivered protection](#cloud-delivered-protection)
-- [Remediation for potentially unwanted apps](#remediation-for-potentially-unwanted-applications-pua) (PUA)
+- [Remediation for potentially unwanted applications](#remediation-for-potentially-unwanted-applications)
 
 ### Cloud-delivered protection
 

From 9dafcb23f50b744dbc973442916eb7e335bbb52f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 22 Jan 2021 14:32:47 -0800
Subject: [PATCH 653/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 20fe6f78d4..195c784c4e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -201,7 +201,7 @@ If you have a file that was either wrongly detected as malicious or was missed,
 
 If something was detected as malware based on behavior, and you don’t have a file, you can submit your Mpsupport.cab file for analysis. You can get the .cab file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool.
 
-1.	Go to ` C:\ProgramData\Microsoft\Windows Defender\Platform\<version>`, and then run ** MpCmdRun.exe** as an administrator.
+1.	Go to ` C:\ProgramData\Microsoft\Windows Defender\Platform\<version>`, and then run `MpCmdRun.exe` as an administrator.
 2.	Type `mpcmdrun.exe -GetFiles`, and then press **Enter**.
    A .cab file is generated that contains various diagnostic logs. The location of the file is specified in the output of the command prompt. By default, the location is `C:\ProgramData\Microsoft\Microsoft Defender\Support\MpSupportFiles.cab`.
 3.	Review the guidelines here: [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide).

From f22675ab6af56193c9f671f3963ecee865bf57c4 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Fri, 22 Jan 2021 17:29:45 -0800
Subject: [PATCH 654/825] Restructuring Windows Hello for Business Docks

---
 windows/security/identity-protection/TOC.md   |   2 +-
 .../feature-multifactor-unlock.md             |   4 +-
 .../hello-deployment-guide.md                 |  43 ++++---
 .../hello-for-business/hello-features.md      |  57 ---------
 .../hello-how-it-works-tech-deep-dive.md      |  49 --------
 .../hello-for-business/hello-how-it-works.md  |  31 +++--
 .../hello-identity-verification.md            |  33 ++---
 .../hello-planning-guide.md                   |  28 +++--
 .../hello-for-business/index.yml              | 113 ++++++++++++++++++
 .../hello-for-business/toc.md                 |   4 +-
 .../hello-for-business/toc.yml                |  18 +++
 windows/security/identity-protection/index.md |   2 +-
 12 files changed, 213 insertions(+), 171 deletions(-)
 delete mode 100644 windows/security/identity-protection/hello-for-business/hello-features.md
 delete mode 100644 windows/security/identity-protection/hello-for-business/hello-how-it-works-tech-deep-dive.md
 create mode 100644 windows/security/identity-protection/hello-for-business/index.yml
 create mode 100644 windows/security/identity-protection/hello-for-business/toc.yml

diff --git a/windows/security/identity-protection/TOC.md b/windows/security/identity-protection/TOC.md
index 7f7f58c2b8..16e55efb95 100644
--- a/windows/security/identity-protection/TOC.md
+++ b/windows/security/identity-protection/TOC.md
@@ -18,7 +18,7 @@
 #### [User Account Control security policy settings](user-account-control\user-account-control-security-policy-settings.md)
 #### [User Account Control Group Policy and registry key settings](user-account-control\user-account-control-group-policy-and-registry-key-settings.md)
 
-## [Windows Hello for Business](hello-for-business/hello-identity-verification.md)
+## [Windows Hello for Business](hello-for-business/index.yml)
 
 ## [Protect derived domain credentials with Credential Guard](credential-guard/credential-guard.md)
 ### [How Credential Guard works](credential-guard/credential-guard-how-it-works.md)
diff --git a/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md b/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
index 215c86beea..da9b1c7c1e 100644
--- a/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
+++ b/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
@@ -1,5 +1,5 @@
 ---
-title: Multifactor Unlock
+title: Multi-factor Unlock
 description: Learn how Windows 10 offers multifactor device unlock by extending Windows Hello with trusted signals. 
 keywords: identity, PIN, biometric, Hello, passport, WHFB, hybrid, cert-trust, device, registration, unlock, multi, factor, multifactor, multi-factor
 ms.prod: w10
@@ -16,7 +16,7 @@ localizationpriority: medium
 ms.date: 03/20/2018
 ms.reviewer: 
 ---
-# Multifactor Unlock
+# Multi-factor Unlock
 
 **Applies to:**
 -   Windows 10
diff --git a/windows/security/identity-protection/hello-for-business/hello-deployment-guide.md b/windows/security/identity-protection/hello-for-business/hello-deployment-guide.md
index f3f064b1d1..95b07dfe0d 100644
--- a/windows/security/identity-protection/hello-for-business/hello-deployment-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-deployment-guide.md
@@ -1,5 +1,5 @@
 ---
-title: Windows Hello for Business Deployment Guide
+title: Windows Hello for Business Deployment Overview
 description: Use this deployment guide to successfully deploy Windows Hello for Business in an existing environment. 
 keywords: identity, PIN, biometric, Hello, passport
 ms.prod: w10
@@ -13,28 +13,35 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 08/29/2018
+ms.date: 01/21/2021
 ms.reviewer: 
 ---
-# Windows Hello for Business Deployment Guide
+# Windows Hello for Business Deployment Overview
 
 **Applies to**
--   Windows 10, version 1703 or later
+
+- Windows 10, version 1703 or later
 
 Windows Hello for Business is the springboard to a world without passwords. It replaces username and password sign-in to Windows with strong user authentication based on an asymmetric key pair.
 
-This deployment guide is to guide you through deploying Windows Hello for Business, based on the planning decisions made using the Planning a Windows Hello for Business Deployment Guide. It provides you with the information needed to successfully deploy Windows Hello for Business in an existing environment.
+This deployment overview is to guide you through deploying Windows Hello for Business. Your first step should be to use the Passwordless Wizard in the [Microsoft 365 admin center](https://admin.microsoft.com/AdminPortal/Home#/modernonboarding/passwordlesssetup) or the [Planning a Windows Hello for Business Deployment](hello-planning-guide.md) guide to determine the right deployment model for your organization.
+
+Once you've chosen a deployment model, the deployment guide for the that model will provide you with the information needed to successfully deploy Windows Hello for Business in your environment.
+
+> [!NOTE]
+> Read the [Windows Hello for Business Deployment Prerequisite Overview](hello-identity-verification.md) for a summary of the prerequisites for each different Windows Hello for Business deployment model.
 
 ## Assumptions
 
-This guide assumes that baseline infrastructure exists which meets the requirements for your deployment. For either hybrid or on-premises deployments, it is expected that you have: 
-* A well-connected, working network
-* Internet access
-* Multifactor Authentication Server to support MFA during Windows Hello for Business provisioning
-* Proper name resolution, both internal and external names
-* Active Directory and an adequate number of domain controllers per site to support authentication
-* Active Directory Certificate Services 2012 or later
-* One or more workstation computers running Windows 10, version 1703
+This guide assumes that baseline infrastructure exists which meets the requirements for your deployment. For either hybrid or on-premises deployments, it is expected that you have:
+
+- A well-connected, working network
+- Internet access
+- Multi-factor Authentication Server to support MFA during Windows Hello for Business provisioning
+- Proper name resolution, both internal and external names
+- Active Directory and an adequate number of domain controllers per site to support authentication
+- Active Directory Certificate Services 2012 or later
+- One or more workstation computers running Windows 10, version 1703
 
 If you are installing a server role for the first time, ensure the appropriate server operating system is installed, updated with the latest patches, and joined to the domain. This document provides guidance to install and configure the specific roles on that server.  
 
@@ -46,15 +53,17 @@ Windows Hello for Business has three deployment models: Cloud, hybrid, and on-pr
 
 Hybrid deployments are for enterprises that use Azure Active Directory. On-premises deployments are for enterprises who exclusively use on-premises Active Directory. Remember that the environments that use Azure Active Directory must use the hybrid deployment model for all domains in that forest.
 
-The trust model determines how you want users to authenticate to the on-premises Active Directory: 
-* The key-trust model is for enterprises who do not want to issue end-entity certificates to their users and have an adequate number of 2016 domain controllers in each site to support authentication. 
-* The certificate-trust model is for enterprise that *do* want to issue end-entity certificates to their users and have the benefits of certificate expiration and renewal, similar to how smart cards work today. 
-* The certificate trust model also supports enterprises which are not ready to deploy Windows Server 2016 Domain Controllers.
+The trust model determines how you want users to authenticate to the on-premises Active Directory:
+
+- The key-trust model is for enterprises who do not want to issue end-entity certificates to their users and have an adequate number of 2016 domain controllers in each site to support authentication.
+- The certificate-trust model is for enterprise that *do* want to issue end-entity certificates to their users and have the benefits of certificate expiration and renewal, similar to how smart cards work today.
+- The certificate trust model also supports enterprises which are not ready to deploy Windows Server 2016 Domain Controllers.
 
 > [!NOTE]
 > RDP does not support authentication with Windows Hello for Business key trust deployments as a supplied credential. RDP is only supported with certificate trust deployments as a supplied credential at this time. Windows Hello for Business key trust can be used with [Windows Defender Remote Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/remote-credential-guard).
 
 Following are the various deployment guides and models included in this topic:
+
 - [Hybrid Azure AD Joined Key Trust Deployment](hello-hybrid-key-trust.md)
 - [Hybrid Azure AD Joined Certificate Trust Deployment](hello-hybrid-cert-trust.md)
 - [Azure AD Join Single Sign-on Deployment Guides](hello-hybrid-aadj-sso.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-features.md b/windows/security/identity-protection/hello-for-business/hello-features.md
deleted file mode 100644
index d35d4dea64..0000000000
--- a/windows/security/identity-protection/hello-for-business/hello-features.md
+++ /dev/null
@@ -1,57 +0,0 @@
----
-title: Windows Hello for Business Features
-description: Consider additional features you can use after your organization deploys Windows Hello for Business. 
-ms.assetid: 5BF09642-8CF5-4FBC-AC9A-5CA51E19387E
-ms.reviewer: 
-keywords: identity, PIN, biometric, Hello, passport, WHFB, Windows Hello, PIN Reset, Dynamic Lock, Multifactor Unlock, Forgot PIN, Privileged credentials
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security, mobile
-audience: ITPro
-author: mapalko
-ms.author: mapalko
-manager: dansimp
-ms.collection: M365-identity-device-management
-ms.topic: article
-localizationpriority: medium
-ms.date: 11/27/2019
----
-# Windows Hello for Business Features
-
-**Applies to:**
-
-- Windows 10
-
-Consider these additional features you can use after your organization deploys Windows Hello for Business.
-
-## Conditional access
-
-Azure Active Directory provides a wide set of options for protecting access to corporate resources. Conditional access provides more fine grained control over who can access certain resources and under what conditions. For more information see [Conditional Access](hello-feature-conditional-access.md).
-
-## Dynamic lock
-
-Dynamic lock uses a paired Bluetooth device to determine user presence and locks the device if a user is not present. For more information and configuration steps see [Dynamic Lock](hello-feature-dynamic-lock.md). 
-
-## PIN reset
-
-Windows Hello for Business supports user self-management of their PIN. If a user forgets their PIN, they have the ability to reset it from Settings or the lock screen. The Microsoft PIN reset service can be used for completing this reset without the user needing to enroll a new Windows Hello for Business credential. For more information and configuration steps see [Pin Reset](hello-feature-pin-reset.md).
-
-## Dual Enrollment
-
-This feature enables provisioning of administrator Windows Hello for Business credentials that can be used by non-privileged accounts to perform administrative actions. These credentials can be used from the non-privileged accounts using **Run as different user** or **Run as administrator**. For more information and configuration steps see [Dual Enrollment](hello-feature-dual-enrollment.md).
-
-## Remote Desktop
-
-Users with Windows Hello for Business certificate trust can use their credential to authenticate to remote desktop sessions over RDP. When authenticating to the session, biometric gestures can be used if they are enrolled. For more information and configuration steps see [Remote Desktop](hello-feature-remote-desktop.md).
-
-## Related topics
-
-- [Windows Hello for Business](hello-identity-verification.md)
-- [Manage Windows Hello for Business in your organization](hello-manage-in-organization.md)
-- [Why a PIN is better than a password](hello-why-pin-is-better-than-password.md)
-- [Prepare people to use Windows Hello](hello-prepare-people-to-use.md)
-- [Windows Hello and password changes](hello-and-password-changes.md)
-- [Windows Hello errors during PIN creation](hello-errors-during-pin-creation.md)
-- [Event ID 300 - Windows Hello successfully created](hello-event-300.md)
-- [Windows Hello biometrics in the enterprise](hello-biometrics-in-enterprise.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-how-it-works-tech-deep-dive.md b/windows/security/identity-protection/hello-for-business/hello-how-it-works-tech-deep-dive.md
deleted file mode 100644
index 0e03beb9e3..0000000000
--- a/windows/security/identity-protection/hello-for-business/hello-how-it-works-tech-deep-dive.md
+++ /dev/null
@@ -1,49 +0,0 @@
----
-title: How Windows Hello for Business works - Technical Deep Dive
-description: Deeply explore how Windows Hello for Business works, and how it can help your users authenticate to services.
-keywords: identity, PIN, biometric, Hello, passport, WHFB, hybrid, key-trust, works 
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-audience: ITPro
-author: mapalko
-ms.author: mapalko
-manager: dansimp
-ms.collection: M365-identity-device-management
-ms.topic: article
-localizationpriority: medium
-ms.date: 08/19/2018
-ms.reviewer: 
----
-# Technical Deep Dive
-
-**Applies to:**
--   Windows 10
-
-Windows Hello for Business authentication works through collection of components and infrastructure working together.  You can group the infrastructure and components in three categories:
-- [Registration](#registration)
-- [Provisioning](#provisioning)
-- [Authentication](#authentication)
-
-## Registration
-
-Registration is a fundamental prerequisite for Windows Hello for Business.  Without registration, Windows Hello for Business provisioning cannot start.  Registration is where the device **registers** its identity with the identity provider.  For cloud and hybrid deployments, the identity provider is Azure Active Directory and the device registers with the Azure Device Registration Service (ADRS).  For on-premises deployments, the identity provider is Active Directory Federation Services (AD FS), and the device registers with the enterprise device registration service hosted on the federation servers (AD FS). 
-
-[How Device Registration Works](hello-how-it-works-device-registration.md)
-
-
-## Provisioning
-
-Provisioning is when the user uses one form of authentication to request a new Windows Hello for Business credential.  Typically the user signs in to Windows using user name and password.  The provisioning flow requires a second factor of authentication before it will create a strong, two-factor Windows Hello for Business credential.<br>
-After successfully completing the second factor of authentication, the user is asked to enroll biometrics (if available on the device) and create PIN as a backup gesture.  Windows then registers the public version of the Windows Hello for Business credential with the identity provider.<br>
-For cloud and hybrid deployments, the identity provider is Azure Active Directory and the user registers their key with the Azure Device Registration Service (ADRS).  For on-premises deployments, the identity provider is Active Directory Federation Services (AD FS), and the user registers their key with the enterprise device registration service hosted on the federation servers.<br>
-Provision can occur automatically through the out-of-box-experience (OOBE) on Azure Active Directory joined devices, or on hybrid Azure Active Directory joined devices where the user or device is influenced by Windows Hello for Business policy settings.  Users can start provisioning through **Add PIN** from Windows Settings.  Watch the [Windows Hello for Business enrollment experience](hello-videos.md#windows-hello-for-business-user-enrollment-experience) from our [Videos](hello-videos.md) page.
-
-[How Windows Hello for Business provisioning works](hello-how-it-works-provisioning.md)
-
-## Authentication
-
-Authentication using Windows Hello for Business is the goal, and the first step in getting to a passwordless environment.  With the device registered, and provisioning complete. Users can sign-in to Windows 10 using biometrics or a PIN.  PIN is the most common gesture and is available on most computers and devices.  Regardless of the gesture used, authentication occurs using the private portion of the Windows Hello for Business credential.  The PIN nor the private portion of the credential are never sent to the identity provider, and the PIN is not stored on the device.  It is user provided entropy when performing operations that use the private portion of the credential.
-
-[How Windows Hello for Business authentication works](hello-how-it-works-authentication.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-how-it-works.md b/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
index 528c1b6fe8..60d7c90219 100644
--- a/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
+++ b/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
@@ -19,7 +19,7 @@ ms.reviewer:
 
 **Applies to**
 
--   Windows 10
+- Windows 10
 
 Windows Hello for Business is a modern, two-factor credential that is the more secure alternative to passwords.  Whether you are cloud or on-premises, Windows Hello for Business has a deployment option for you.  For cloud deployments, you can use Windows Hello for Business with Azure Active Directory joined, Hybrid Azure Active Directory joined, or Azure Active Directory registered devices.  Windows Hello for Business also works for domain joined devices.
 
@@ -28,20 +28,37 @@ Watch this quick video where Pieter Wigleven gives a simple explanation of how W
 
 ## Technical Deep Dive
 
-Windows Hello for Business is a distributed system that uses several components to accomplish device registration, provisioning, and authentication. Use this section to gain a better understanding of each of the components and how they support Windows Hello for Business.
+Windows Hello for Business is a distributed system that uses several components to accomplish device registration, provisioning, and authentication. Use this section to gain a better understanding of each of the categories and how they support Windows Hello for Business.
 
-Watch Matthew Palko and Ravi Vennapusa explain how Windows Hello for Business provisioning and authentication work.
+### Device Registration
+
+Registration is a fundamental prerequisite for Windows Hello for Business.  Without registration, Windows Hello for Business provisioning cannot start. Registration is where the device **registers** its identity with the identity provider. For cloud and hybrid deployments, the identity provider is Azure Active Directory and the device registers with the Azure Device Registration Service (ADRS). For on-premises deployments, the identity provider is Active Directory Federation Services (AD FS), and the device registers with the enterprise device registration service hosted on the federation servers (AD FS).
+
+For more information read [how device registration works](hello-how-it-works-device-registration.md).
+
+### Provisioning
+
+Provisioning is when the user uses one form of authentication to request a new Windows Hello for Business credential. Typically the user signs in to Windows using user name and password. The provisioning flow requires a second factor of authentication before it will create a strong, two-factor Windows Hello for Business credential.
+
+Watch Matthew Palko and Ravi Vennapusa explain how Windows Hello for Business provisioning works.
 
 > [!VIDEO https://www.youtube.com/embed/RImGsIjSJ1s]
+
+For more information read [how provisioning works](hello-how-it-works-provisioning.md).
+
+### Authentication
+
+Authentication using Windows Hello for Business is the goal, and the first step in getting to a passwordless environment. With the device registered, and provisioning complete. Users can sign-in to Windows 10 using biometrics or a PIN. PIN is the most common gesture and is available on most computers and devices. Regardless of the gesture used, authentication occurs using the private portion of the Windows Hello for Business credential. The PIN nor the private portion of the credential are never sent to the identity provider, and the PIN is not stored on the device. It is user provided entropy when performing operations that use the private portion of the credential.
+
+Watch Matthew Palko and Ravi Vennapusa explain how Windows Hello for Business authentication works.
+
 > [!VIDEO https://www.youtube.com/embed/WPmzoP_vMek]
 
-- [Technology and Terminology](hello-how-it-works-technology.md)
-- [Device Registration](hello-how-it-works-device-registration.md)
-- [Provisioning](hello-how-it-works-provisioning.md)
-- [Authentication](hello-how-it-works-authentication.md)
+For more information read [how authentication works](hello-how-it-works-authentication.md).
 
 ## Related topics
 
+- [Technology and Terminology](hello-how-it-works-technology.md)
 - [Windows Hello for Business](hello-identity-verification.md)
 - [Manage Windows Hello for Business in your organization](hello-manage-in-organization.md)
 - [Why a PIN is better than a password](hello-why-pin-is-better-than-password.md)
diff --git a/windows/security/identity-protection/hello-for-business/hello-identity-verification.md b/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
index 4d3512719a..d53a57bff1 100644
--- a/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
+++ b/windows/security/identity-protection/hello-for-business/hello-identity-verification.md
@@ -1,6 +1,6 @@
 ---
-title: Windows Hello for Business (Windows 10)
-description: Windows Hello for Business replaces passwords with strong two-factor authentication on PCs and mobile devices. 
+title: Windows Hello for Business Deployment Prerequisite Overview
+description: Overview of all the different infrastructure requirements for Windows Hello for Business deployment models
 ms.assetid: 5BF09642-8CF5-4FBC-AC9A-5CA51E19387E
 ms.reviewer: 
 keywords: identity, PIN, biometric, Hello, passport
@@ -15,29 +15,14 @@ manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 localizationpriority: medium
-ms.date: 05/05/2018
+ms.date: 1/22/2021
 ---
 
-# Windows Hello for Business
+# Windows Hello for Business Deployment Prerequisite Overview
 
-In Windows 10, Windows Hello for Business replaces passwords with strong two-factor authentication on PCs and mobile devices. This authentication consists of a new type of user credential that is tied to a device and uses a biometric or PIN.</br>
-Windows Hello for Business lets user authenticate to an Active Directory or Azure Active Directory account.
+This article lists the infrastructure requirements for the different deployment models for Windows Hello for Business.
 
-Windows Hello addresses the following problems with passwords:
-
-- Strong passwords can be difficult to remember, and users often reuse passwords on multiple sites.
-- Server breaches can expose symmetric network credentials (passwords).
-- Passwords are subject to [replay attacks](https://go.microsoft.com/fwlink/p/?LinkId=615673).
-- Users can inadvertently expose their passwords due to [phishing attacks](https://docs.microsoft.com/windows/security/threat-protection/intelligence/phishing).
-
-> | | | |
-> | :---: | :---: | :---: |
-> | [![Overview Icon](images/hello_filter.png)](hello-overview.md)</br>[Overview](hello-overview.md) | [![Why a PIN is better than a password Icon](images/hello_lock.png)](hello-why-pin-is-better-than-password.md)</br>[Why PIN is better than a password](hello-why-pin-is-better-than-password.md) | [![Manage Hello Icon](images/hello_gear.png)](hello-manage-in-organization.md)</br>[Manage Windows Hello in your Organization](hello-manage-in-organization.md) |
- 
-
-## Prerequisites
-
-### Cloud Only Deployment
+## Cloud Only Deployment
 
 * Windows 10, version 1511 or later
 * Microsoft Azure Account
@@ -46,9 +31,9 @@ Windows Hello addresses the following problems with passwords:
 * Modern Management (Intune or supported third-party MDM), *optional*
 * Azure AD Premium subscription - *optional*, needed for automatic MDM enrollment when the device joins Azure Active Directory
 
-### Hybrid Deployments
+## Hybrid Deployments
 
-The table shows the minimum requirements for each deployment. For key trust in a multi-domain/multi-forest deployment, the following requirements are applicable for each domain/forest that hosts Windows Hello for business components or is involved in the Kerberos referral process. 
+The table shows the minimum requirements for each deployment. For key trust in a multi-domain/multi-forest deployment, the following requirements are applicable for each domain/forest that hosts Windows Hello for business components or is involved in the Kerberos referral process.
 
 | Key trust</br>Group Policy managed | Certificate trust</br>Mixed managed | Key trust</br>Modern managed | Certificate trust</br>Modern managed | 
 | --- | --- | --- | --- |
@@ -76,7 +61,7 @@ The table shows the minimum requirements for each deployment. For key trust in a
 > Reset above lock screen - Windows 10, version 1709, Professional</br>
 > Reset above lock screen (_I forgot my PIN_ link) - Windows 10, version 1903
 
-### On-premises Deployments
+## On-premises Deployments
 
 The table shows the minimum requirements for each deployment.
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 265aa7219d..22519b0b31 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -19,13 +19,15 @@ ms.reviewer:
 # Planning a Windows Hello for Business Deployment
 
 **Applies to**
--   Windows 10
+
+- Windows 10
 
 Congratulations! You are taking the first step forward in helping move your organizations away from password to a two-factor, convenience authentication for Windows — Windows Hello for Business. This planning guide helps you understand the different topologies, architectures, and components that encompass a Windows Hello for Business infrastructure.
 
 This guide explains the role of each component within Windows Hello for Business and how certain deployment decisions affect other aspects of the infrastructure. Armed with your planning worksheet, you'll use that information to select the correct deployment guide for your needs.
 
-If you have an Azure tenant, you can use our online, interactive Passwordless Wizard which walks through the same choices instead of using our manual guide below. The Passwordless Wizard is available in the [Microsoft 365 admin center](https://admin.microsoft.com/AdminPortal/Home#/modernonboarding/passwordlesssetup).
+> [!Note]
+>If you have an Azure tenant, you can use our online, interactive Passwordless Wizard which walks through the same choices instead of using our manual guide below. The Passwordless Wizard is available in the [Microsoft 365 admin center](https://admin.microsoft.com/AdminPortal/Home#/modernonboarding/passwordlesssetup).
 
 ## Using this guide
 
@@ -38,12 +40,13 @@ This guide removes the appearance of complexity by helping you make decisions on
 Read this document and record your decisions on the worksheet. When finished, your worksheet has all the necessary information for your Windows Hello for Business deployment.
 
 There are six major categories you need to consider for a Windows Hello for Business deployment.  Those categories are:
-*   Deployment Options
-*   Client
-*   Management
-*   Active Directory
-*   Public Key Infrastructure
-*   Cloud
+
+- Deployment Options
+- Client
+- Management
+- Active Directory
+-Public Key Infrastructure
+- Cloud
 
 ### Baseline Prerequisites
 
@@ -58,13 +61,16 @@ The goal of Windows Hello for Business is to enable deployments for all organiza
 There are three deployment models from which you can choose: cloud only, hybrid, and on-premises.
 
 ##### Cloud only
+
 The cloud only deployment model is for organizations who only have cloud identities and do not access on-premises resources.  These organizations typically join their devices to the cloud and exclusively use resources in the cloud such as SharePoint, OneDrive, and others.  Also, because these users do not use on-premises resources, they do not need certificates for things like VPN because everything they need is hosted in Azure.
 
 ##### Hybrid
+
 The hybrid deployment model is for organizations that: 
-* Are federated with Azure Active Directory
-* Have identities synchronized to Azure Active Directory using Azure Active Directory Connect
-* Use applications hosted in Azure Active Directory, and want a single sign-in user experience for both on-premises and Azure Active Directory resources
+
+- Are federated with Azure Active Directory
+- Have identities synchronized to Azure Active Directory using Azure Active Directory Connect
+- Use applications hosted in Azure Active Directory, and want a single sign-in user experience for both on-premises and Azure Active Directory resources
 
 > [!Important]
 > Hybrid deployments support non-destructive PIN reset that works with both the certificate trust and key trust models.</br>
diff --git a/windows/security/identity-protection/hello-for-business/index.yml b/windows/security/identity-protection/hello-for-business/index.yml
new file mode 100644
index 0000000000..98c1dc8fc0
--- /dev/null
+++ b/windows/security/identity-protection/hello-for-business/index.yml
@@ -0,0 +1,113 @@
+### YamlMime:Landing
+
+title: Windows Hello for Business documentation
+summary: Learn how to manage and deploy Windows Hello for Business.
+
+metadata:
+  title: Windows Hello for Business documentation
+  description: Learn how to manage and deploy Windows Hello for Business.
+  ms.prod: w10
+  ms.topic: landing-page
+  author: mapalko
+  manager: dansimp
+  ms.author: mapalko
+  ms.date: 01/22/2021
+  ms.collection: M365-identity-device-management
+
+# linkListType: architecture | concept | deploy | download | get-started | how-to-guide | learn | overview | quickstart | reference | tutorial | whats-new
+
+landingContent:
+# Cards and links should be based on top customer tasks or top subjects
+# Start card title with a verb
+  # Card
+  - title: About Windows Hello For Business
+    linkLists:
+      - linkListType: overview
+        links:
+          - text: Windows Hello for Business Overview
+            url: hello-overview.md
+      - linkListType: concept
+        links:
+          - text: Passwordless Strategy
+            url: passwordless-strategy.md
+          - text: Why a PIN is better than a password
+            url: hello-why-pin-is-better-than-password.md
+          - text: Windows Hello biometrics in the enterprise
+            url: hello-biometrics-in-enterprise.md
+          - text: How Windows Hello for Business works
+            url: hello-how-it-works.md
+        -linkListType: learn
+        links: 
+          - text: Technical Deep Dive - Device Registration
+            url: hello-how-it-works-device-registration.md 
+          - text: Technical Deep Dive - Provisioning
+            url: hello-how-it-works-provisioning.md
+          - text: Technical Deep Dive - Authentication
+            url: hello-how-it-works-authentication.md
+          - text: Technology and Terminology
+            url: hello-how-it-works-technology.md
+          - text: Frequently Asked Questions (FAQ)
+            url: hello-faq.yml
+
+  # Card
+  - title: Configure and manage Windows Hello for Business
+    linkLists:
+      - linkListType: concept
+        links:
+          - text: Windows Hello for Business Deployment Overview
+            url: hello-deployment-guide.md
+          - text: Planning a Windows Hello for Business Deployment
+            url: hello-planning-guide.md
+          - text: Deployment Prerequisite Overview
+            url: hello-identity-verification.md
+      - linkListType: how-to-guide
+        links:
+          - text: Hybrid Azure AD Joined Key Trust Deployment
+            url: hello-hybrid-key-trust.md
+          - text: Hybrid Azure AD Joined Certificate Trust Deployment
+            url: hello-hybrid-cert-trust.md
+          - text: On-premises SSO for Azure AD Joined Devices
+            url: hello-hybrid-aadj-sso.md
+          - text: On-premises Key Trust Deployment
+            url: hello-deployment-key-trust.md
+          - text: On-premises Certificate Trust Deployment
+            url: hello-deployment-cert-trust.md
+      - linkListType: learn
+        links:
+          - text: Manage Windows Hello for Business in your organization
+            url: hello-manage-in-organization.md
+          - text: Windows Hello and password changes
+            url: hello-and-password-changes.md
+          - text: Prepare people to use Windows Hello
+            url: hello-prepare-people-to-use.md
+
+  # Card
+  - title: Windows Hello for Business Features
+    linkLists:
+      - linkListType: how-to-guide
+        links:
+          - text: Conditional Access 
+            url: hello-feature-conditional-access.md
+          - text: PIN Reset
+            url: hello-feature-pin-reset.m
+          - text: Dual Enrollment
+            url: hello-feature-dual-enrollment.md
+          - text: Dynamic Lock
+            url: hello-feature-dynamic-lock.md
+          - text: Multi-factor Unlock
+            url: feature-multifactor-unlock.md
+          - text: Remote Desktop
+            url: hello-feature-remote-desktop.md
+
+  # Card
+  - title: Windows Hello for Business Troubleshooting
+    linkLists:
+      - linkListType: concept
+        links:
+          - text: Known Deployment Issues
+            url: hello-deployment-issues.md
+          - text: Errors During PIN Creation
+            url: hello-errors-during-pin-creation.md
+
+      
+  
\ No newline at end of file
diff --git a/windows/security/identity-protection/hello-for-business/toc.md b/windows/security/identity-protection/hello-for-business/toc.md
index b046ac97ee..77e08dfd22 100644
--- a/windows/security/identity-protection/hello-for-business/toc.md
+++ b/windows/security/identity-protection/hello-for-business/toc.md
@@ -1,6 +1,6 @@
 # [Windows Hello for Business](hello-identity-verification.md)
 
-## [Password-less Strategy](passwordless-strategy.md)
+## [Passwordless Strategy](passwordless-strategy.md)
 
 ## [Windows Hello for Business Overview](hello-overview.md)
 ## [Why a PIN is better than a password](hello-why-pin-is-better-than-password.md)
@@ -10,7 +10,7 @@
 ### [Conditional Access](hello-feature-conditional-access.md)
 ### [Dual Enrollment](hello-feature-dual-enrollment.md)
 ### [Dynamic Lock](hello-feature-dynamic-lock.md)
-### [Multifactor Unlock](feature-multifactor-unlock.md)
+### [Multi-factor Unlock](feature-multifactor-unlock.md)
 ### [PIN Reset](hello-feature-pin-reset.md)
 ### [Remote Desktop](hello-feature-remote-desktop.md)
 
diff --git a/windows/security/identity-protection/hello-for-business/toc.yml b/windows/security/identity-protection/hello-for-business/toc.yml
new file mode 100644
index 0000000000..dd48cc97b4
--- /dev/null
+++ b/windows/security/identity-protection/hello-for-business/toc.yml
@@ -0,0 +1,18 @@
+- name: Windows Hello for Business documentation
+  href: index.yml
+- name: Overview
+  items:
+  - name: Windows Hello for Business Overview
+    href: hello-overview.md
+- name: Concepts
+  items:
+  - name:
+    href: 
+- name: How-to Guides
+  items:
+  - name:
+    href: 
+- name: Reference
+  items:
+  - name:
+    href: 
\ No newline at end of file
diff --git a/windows/security/identity-protection/index.md b/windows/security/identity-protection/index.md
index f57abc302f..dd87cded73 100644
--- a/windows/security/identity-protection/index.md
+++ b/windows/security/identity-protection/index.md
@@ -31,5 +31,5 @@ Learn more about identity and access management technologies in Windows 10 and
 | [Virtual Smart Cards](virtual-smart-cards/virtual-smart-card-overview.md) | Provides information about deploying and managing virtual smart cards, which are functionally similar to physical smart cards and appear in Windows as smart cards that are always-inserted. Virtual smart cards use the Trusted Platform Module (TPM) chip that is available on computers in many organizations, rather than requiring the use of a separate physical smart card and reader. |
 | [VPN technical guide](vpn/vpn-guide.md) | Virtual private networks (VPN) let you give your users secure remote access to your company network. Windows 10 adds useful new VPN profile options to help you manage how users connect. |
 | [Smart Cards](smart-cards/smart-card-windows-smart-card-technical-reference.md) | Provides a collection of references topics about smart cards, which are tamper-resistant portable storage devices that can enhance the security of tasks such as authenticating clients, signing code, securing e-mail, and signing in with a Windows domain account. |
-| [Windows Hello for Business](hello-for-business/hello-identity-verification.md) | In Windows 10, Windows Hello replaces passwords with strong two-factor authentication on PCs and mobile devices. This authentication consists of a new type of user credential that is tied to a device and a biometric or PIN. |
+| [Windows Hello for Business](hello-for-business/index.yml) | In Windows 10, Windows Hello replaces passwords with strong two-factor authentication on PCs and mobile devices. This authentication consists of a new type of user credential that is tied to a device and a biometric or PIN. |
 | [Windows 10 Credential Theft Mitigation Guide Abstract](windows-credential-theft-mitigation-guide-abstract.md) | Learn more about credential theft mitigation in Windows 10. |

From 7a3c2bf326fd2ee9fb14527cac612e996625ad1e Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Fri, 22 Jan 2021 17:32:22 -0800
Subject: [PATCH 655/825] fixing new line

---
 .../security/identity-protection/hello-for-business/index.yml  | 3 ---
 .../security/identity-protection/hello-for-business/toc.yml    | 3 ++-
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/index.yml b/windows/security/identity-protection/hello-for-business/index.yml
index 98c1dc8fc0..c26699645a 100644
--- a/windows/security/identity-protection/hello-for-business/index.yml
+++ b/windows/security/identity-protection/hello-for-business/index.yml
@@ -108,6 +108,3 @@ landingContent:
             url: hello-deployment-issues.md
           - text: Errors During PIN Creation
             url: hello-errors-during-pin-creation.md
-
-      
-  
\ No newline at end of file
diff --git a/windows/security/identity-protection/hello-for-business/toc.yml b/windows/security/identity-protection/hello-for-business/toc.yml
index dd48cc97b4..2c20b2052d 100644
--- a/windows/security/identity-protection/hello-for-business/toc.yml
+++ b/windows/security/identity-protection/hello-for-business/toc.yml
@@ -15,4 +15,5 @@
 - name: Reference
   items:
   - name:
-    href: 
\ No newline at end of file
+    href: 
+    
\ No newline at end of file

From 56837ef515082a92bd6802b9fc828a86251c2d06 Mon Sep 17 00:00:00 2001
From: Karl Wester-Ebbinghaus <45657752+Karl-WE@users.noreply.github.com>
Date: Sat, 23 Jan 2021 19:07:52 +0100
Subject: [PATCH 656/825] Update install-vamt.md

adding link to ADK, removing specific version to ease maintenance of this page as we would have to update it at least once a year.
---
 windows/deployment/volume-activation/install-vamt.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/deployment/volume-activation/install-vamt.md b/windows/deployment/volume-activation/install-vamt.md
index 6b18acd8ae..c2737b30a4 100644
--- a/windows/deployment/volume-activation/install-vamt.md
+++ b/windows/deployment/volume-activation/install-vamt.md
@@ -49,8 +49,8 @@ You install VAMT as part of the Windows Assessment and Deployment Kit (ADK) for
 
 ### Install VAMT using the ADK
 
-1. Download and open the [Windows 10, version 1903 ADK](https://go.microsoft.com/fwlink/?linkid=2086042) package.
-Reminder: There won't be new ADK release for 1909.
+1. Download the latest version of [Windows 10 ADK](https://docs.microsoft.com/en-us/windows-hardware/get-started/adk-install)
+It is recommended to uninstall and install the latest version of ADK if you use a previous version. Existing data of VAMT is maintained in the respective VAMT database. 
 2. Enter an install location or use the default path, and then select **Next**.
 3. Select a privacy setting, and then select **Next**.
 4. Accept the license terms.

From 539a6ec83a1a5072f7482874fc5bf4a27fb51021 Mon Sep 17 00:00:00 2001
From: Karl Wester-Ebbinghaus <45657752+Karl-WE@users.noreply.github.com>
Date: Sat, 23 Jan 2021 19:29:08 +0100
Subject: [PATCH 657/825] Update install-vamt.md

spellings / corrections
---
 windows/deployment/volume-activation/install-vamt.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/deployment/volume-activation/install-vamt.md b/windows/deployment/volume-activation/install-vamt.md
index c2737b30a4..3c482e49b3 100644
--- a/windows/deployment/volume-activation/install-vamt.md
+++ b/windows/deployment/volume-activation/install-vamt.md
@@ -49,8 +49,8 @@ You install VAMT as part of the Windows Assessment and Deployment Kit (ADK) for
 
 ### Install VAMT using the ADK
 
-1. Download the latest version of [Windows 10 ADK](https://docs.microsoft.com/en-us/windows-hardware/get-started/adk-install)
-It is recommended to uninstall and install the latest version of ADK if you use a previous version. Existing data of VAMT is maintained in the respective VAMT database. 
+1. Download the latest version of [Windows 10 ADK](https://docs.microsoft.com/en-us/windows-hardware/get-started/adk-install).
+It is recommended to uninstall ADK and install the latest version, if you use a previous version. Existing data of VAMT is maintained in the respective VAMT database. 
 2. Enter an install location or use the default path, and then select **Next**.
 3. Select a privacy setting, and then select **Next**.
 4. Accept the license terms.

From b7ac564fd79b1e104204a9c2155adb1968e9e98e Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Sun, 24 Jan 2021 14:30:32 +0200
Subject: [PATCH 658/825] 1

---
 .../microsoft-defender-atp/find-machines-by-tag.md  | 13 ++++++++++---
 .../get-discovered-vulnerabilities.md               |  4 ++++
 .../microsoft-defender-atp/get-domain-statistics.md |  7 ++++++-
 .../microsoft-defender-atp/get-file-statistics.md   |  7 ++++++-
 .../microsoft-defender-atp/get-ip-statistics.md     |  7 ++++++-
 .../get-missing-kbs-machine.md                      |  6 +++++-
 .../get-security-recommendations.md                 |  4 ++++
 .../microsoft-defender-atp/import-ti-indicators.md  |  2 +-
 8 files changed, 42 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
index c077f850b8..e34e5962d8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
@@ -32,7 +32,7 @@ ms.topic: article
 
 ## API description
 Find [Machines](machine.md) by [Tag](machine-tags.md).
-
+<br>```startswith``` query is supported. 
 
 ## Limitations
 1. Rate limitations for this API are 100 calls per minute and 1500 calls per hour.
@@ -56,7 +56,7 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 
 ## HTTP request
 ```
-GET /api/machines/findbytag(tag='{tag}')
+GET /api/machines/findbytag?tag={tag}&useStartsWithFilter={true/false}
 ```
 
 ## Request headers
@@ -65,6 +65,13 @@ Name | Type | Description
 :---|:---|:---
 Authorization | String | Bearer {token}. **Required**.
 
+## Request URI parameters
+
+Name | Type | Description
+:---|:---|:---
+tag | String | The tag name. **Required**.
+useStartsWithFilter | Boolean | When set to true, the search will find all devices with tag name that starts with the given tag in the query. Defaults to false. **Optional**.
+
 ## Request body
 Empty
 
@@ -78,5 +85,5 @@ If successful - 200 OK with list of the machines in the response body.
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.microsoft.com/api/machines/findbytag(tag='testTag')
+GET https://api.securitycenter.microsoft.com/api/machines/findbytag?tag=testTag&useStartsWithFilter=true
 ```
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
index 773a35d073..258209f10d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
@@ -30,8 +30,12 @@ ms.technology: mde
 
 [!include[Improve request performance](../../includes/improve-request-performance.md)]
 
+## API description
 Retrieves a collection of discovered vulnerabilities related to a given device ID.
 
+## Limitations
+1. Rate limitations for this API are 50 calls per minute and 1500 calls per hour.
+
 ## Permissions
 
 One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
index dda241406d..3720025ad9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
@@ -62,6 +62,11 @@ Header | Value
 :---|:---
 Authorization | Bearer {token}. **Required**.
 
+## Request URI parameters
+
+Name | Type | Description
+:---|:---|:---
+lookBackHours | Int32 | Defines the hours we search back to get the statistics. Defaults to 30 days. **Optional**.
 
 ## Request body
 Empty
@@ -77,7 +82,7 @@ If successful and domain exists - 200 OK, with statistics object in the response
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.microsoft.com/api/domains/example.com/stats
+GET https://api.securitycenter.microsoft.com/api/domains/example.com/stats?lookBackHours=48
 ```
 
 **Response**
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
index 45c0c7f97f..ac9da34d73 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
@@ -62,6 +62,11 @@ Name | Type | Description
 :---|:---|:---
 Authorization | String | Bearer {token}. **Required**.
 
+## Request URI parameters
+
+Name | Type | Description
+:---|:---|:---
+lookBackHours | Int32 | Defines the hours we search back to get the statistics. Defaults to 30 days. **Optional**.
 
 ## Request body
 Empty
@@ -77,7 +82,7 @@ If successful and file exists - 200 OK with statistical data in the body. If fil
 Here is an example of the request.
 
 ```
-GET https://api.securitycenter.microsoft.com/api/files/0991a395da64e1c5fbe8732ed11e6be064081d9f/stats
+GET https://api.securitycenter.microsoft.com/api/files/0991a395da64e1c5fbe8732ed11e6be064081d9f/stats?lookBackHours=48
 ```
 
 **Response**
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index e720d2f338..5ba7c77cd7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -63,6 +63,11 @@ Name | Type | Description
 :---|:---|:---
 Authorization | String | Bearer {token}. **Required**.
 
+## Request URI parameters
+
+Name | Type | Description
+:---|:---|:---
+lookBackHours | Int32 | Defines the hours we search back to get the statistics. Defaults to 30 days. **Optional**.
 
 ## Request body
 Empty
@@ -78,7 +83,7 @@ If successful and ip exists - 200 OK with statistical data in the body. IP do no
 Here is an example of the request.
 
 ```http
-GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats
+GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats?lookBackHours=48
 ```
 
 **Response**
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
index 9ac01f22cf..abb4bd89f5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
@@ -30,7 +30,11 @@ ms.technology: mde
 
 [!include[Improve request performance](../../includes/improve-request-performance.md)]
 
-Retrieves missing KBs (security updates) by device ID
+## API description
+Retrieves missing KBs (security updates) by device ID.
+
+## Limitations
+1. Rate limitations for this API are 50 calls per minute and 1500 calls per hour.
 
 ## HTTP request
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
index 1d2dfe41dd..f08ce4f926 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
@@ -31,8 +31,12 @@ ms.technology: mde
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
+## API description
 Retrieves a collection of security recommendations related to a given device ID.
 
+## Limitations
+1. Rate limitations for this API are 50 calls per minute and 1500 calls per hour.
+
 ## Permissions
 One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
index 822e0f9985..8e33f2ae5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
@@ -37,7 +37,7 @@ Submits or Updates batch of [Indicator](ti-indicator.md) entities.
 ## Limitations
 1. Rate limitations for this API are 30 calls per minute.
 2. There is a limit of 15,000 active [Indicators](ti-indicator.md) per tenant. 
-
+3. Maximum batch size for one API call is 500.
 
 ## Permissions
 One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Get started](apis-intro.md)

From b54bd97a85d313c549533a537de4f5dcc35b61ea Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Sun, 24 Jan 2021 14:57:21 +0200
Subject: [PATCH 659/825] 2

---
 .../add-or-remove-machine-tags.md                    |  6 ++++--
 .../collect-investigation-package.md                 |  4 +++-
 .../get-alert-related-domain-info.md                 |  4 +---
 .../get-alert-related-files-info.md                  |  4 +---
 .../get-alert-related-ip-info.md                     |  4 +---
 .../get-alert-related-machine-info.md                |  4 +---
 .../get-alert-related-user-info.md                   |  4 +---
 .../microsoft-defender-atp/get-domain-statistics.md  |  4 +---
 .../microsoft-defender-atp/get-file-information.md   |  4 +---
 .../microsoft-defender-atp/get-file-statistics.md    |  4 +---
 .../get-investigation-collection.md                  |  4 +---
 .../microsoft-defender-atp/get-ip-statistics.md      |  4 +---
 .../microsoft-defender-atp/get-kbinfo-collection.md  |  7 ++-----
 .../microsoft-defender-atp/get-machine-by-id.md      |  4 +---
 .../get-machine-log-on-users.md                      |  4 +---
 .../get-machineaction-object.md                      |  6 ++----
 .../get-machineactions-collection.md                 |  6 ++----
 .../microsoft-defender-atp/get-machines.md           |  4 +---
 .../get-machinesecuritystates-collection.md          |  7 ++-----
 .../microsoft-defender-atp/get-package-sas-uri.md    |  8 ++------
 .../get-ti-indicators-collection.md                  | 12 ++++--------
 .../microsoft-defender-atp/get-user-information.md   |  7 ++-----
 .../initiate-autoir-investigation.md                 |  8 +++++---
 .../microsoft-defender-atp/isolate-machine.md        | 10 ++++++----
 .../microsoft-defender-atp/offboard-machine-api.md   |  6 ++++--
 .../restrict-code-execution.md                       |  9 +++++----
 .../microsoft-defender-atp/run-advanced-query-api.md | 12 +++++++-----
 .../microsoft-defender-atp/run-av-scan.md            |  6 ++++--
 .../stop-and-quarantine-file.md                      |  6 ++++--
 .../microsoft-defender-atp/unisolate-machine.md      |  6 ++++--
 .../unrestrict-code-execution.md                     |  6 ++++--
 .../microsoft-defender-atp/update-alert.md           |  5 +++--
 32 files changed, 82 insertions(+), 107 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
index c9987f3a99..2a992e5e4f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
@@ -90,9 +90,11 @@ If successful, this method returns 200 - Ok response code and the updated Machin
 
 Here is an example of a request that adds machine tag.
 
-```http
+```
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/tags
-Content-type: application/json
+```
+
+```json
 {
   "Value" : "test Tag 2",
   "Action": "Add"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
index ee50396e37..7c823acfd6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
@@ -83,7 +83,9 @@ Here is an example of the request.
 
 ```
 POST https://api.securitycenter.microsoft.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/collectInvestigationPackage
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Collect forensics due to alert 1234"
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
index 9347365103..aaa3ab921d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
@@ -85,9 +85,7 @@ GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_213628044
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/$metadata#Domains",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
index 80dfa7de59..705b9284db 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
@@ -86,9 +86,7 @@ GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_21362
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Files",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
index b241dd2b72..02701c84db 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
@@ -87,9 +87,7 @@ GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_213628044
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/$metadata#Ips",    
 	"value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index e4850f8d55..a5e59345c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -88,9 +88,7 @@ GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_21362
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines/$entity",
     "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
index ea89e7158c..a256a1f597 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
@@ -87,9 +87,7 @@ GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_21362
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users/$entity",
     "id": "contoso\\user1",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
index 3720025ad9..dd3331b476 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
@@ -90,9 +90,7 @@ GET https://api.securitycenter.microsoft.com/api/domains/example.com/stats?lookB
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
 	"@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgDomainStats",
 	"host": "example.com",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
index 736c3298e2..019f1385c7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
@@ -85,9 +85,7 @@ GET https://api.securitycenter.microsoft.com/api/files/4388963aaa83afe2042a46a3c
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
 	"@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Files/$entity",
 	"sha1": "4388963aaa83afe2042a46a3c017ad50bdcdafb3",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
index ac9da34d73..cf1898803a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
@@ -90,9 +90,7 @@ GET https://api.securitycenter.microsoft.com/api/files/0991a395da64e1c5fbe8732ed
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgFileStats",
     "sha1": "0991a395da64e1c5fbe8732ed11e6be064081d9f",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
index 47662456ae..cca2597b98 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-investigation-collection.md
@@ -90,9 +90,7 @@ GET https://api.securitycenter.microsoft.com/api/investigations
 
 Here is an example of the response:
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Investigations",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
index 5ba7c77cd7..bc04301ab1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
@@ -91,9 +91,7 @@ GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/stats?lookBac
 Here is an example of the response.
 
 
-```http
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#microsoft.windowsDefenderATP.api.InOrgIPStats",
     "ipAddress": "10.209.67.177",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
index f108cdfbf6..0eeced010e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-kbinfo-collection.md
@@ -61,18 +61,15 @@ If successful - 200 OK.
 
 Here is an example of the request.
 
-```
+```http
 GET https://graph.microsoft.com/testwdatppreview/KbInfo
-Content-type: application/json
 ```
 
 **Response**
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://graph.microsoft.com/testwdatppreview/$metadata#KbInfo",
     "@odata.count": 271,
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index ceac9cc0ed..0a6ff20f30 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -91,9 +91,7 @@ GET https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c29
 Here is an example of the response.
 
 
-```http
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machine",
     "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
index f4730dce02..3e9b901fac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
@@ -87,9 +87,7 @@ GET https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c29
 Here is an example of the response.
 
 
-```http
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
index 35d7343116..9520bd1379 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
@@ -77,7 +77,7 @@ If successful, this method returns 200, Ok response code with a [Machine Action]
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machineactions/2e9da30d-27f6-4208-81f2-9cd3d67893ba
 ```
 
@@ -86,9 +86,7 @@ GET https://api.securitycenter.microsoft.com/api/machineactions/2e9da30d-27f6-42
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions/$entity",
     "id": "5382f7ea-7557-4ab7-9782-d50480024a4e",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
index 11bd89fa3b..d910d3beda 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
@@ -82,7 +82,7 @@ If successful, this method returns 200, Ok response code with a collection of [m
 
 Here is an example of the request on an organization that has three MachineActions.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machineactions
 ```
 
@@ -91,9 +91,7 @@ GET https://api.securitycenter.microsoft.com/api/machineactions
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineActions",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index ad2331e5ab..42a179a64f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -92,9 +92,7 @@ GET https://api.securitycenter.microsoft.com/api/machines
 
 Here is an example of the response.
 
-```http
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
index 9565ba0014..9d1e0ef235 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machinesecuritystates-collection.md
@@ -60,9 +60,8 @@ If successful - 200 OK.
 
 Here is an example of the request.
 
-```
+```http
 GET https://graph.microsoft.com/testwdatppreview/machinesecuritystates
-Content-type: application/json
 ```
 
 **Response**
@@ -70,9 +69,7 @@ Content-type: application/json
 Here is an example of the response.
 Field *id* contains device id and equal to the field *id** in devices info. 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context":"https://graph.microsoft.com/testwdatppreview/$metadata#MachineSecurityStates",
     "@odata.count":444,
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
index ccd17fea22..2683556f81 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
@@ -73,19 +73,15 @@ If successful, this method returns 200, Ok response code with object that holds
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machineactions/7327b54fd718525cbca07dacde913b5ac3c85673/GetPackageUri
-
 ```
 
 **Response**
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
-
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Edm.String",
     "value": "\"https://userrequests-us.securitycenter.windows.com:443/safedownload/WDATP_Investigation_Package.zip?token=gbDyj7y%2fbWGAZjn2sFiZXlliBTXOCVG7yiJ6mXNaQ9pLByC2Wxeno9mENsPFP3xMk5l%2bZiJXjLvqAyNEzUNROxoM2I1er9dxzfVeBsxSmclJjPsAx%2btiNyxSz1Ax%2b5jaT5cL5bZg%2b8wgbwY9urXbTpGjAKh6FB1e%2b0ypcWkPm8UkfOwsmtC%2biZJ2%2bPqnkkeQk7SKMNoAvmh9%2fcqDIPKXGIBjMa0D9auzypOqd8bQXp7p2BnLSH136BxST8n9IHR4PILvRjAYW9kvtHkBpBitfydAsUW4g2oDZSPN3kCLBOoo1C4w4Lkc9Bc3GNU2IW6dfB7SHcp7G9p4BDkeJl3VuDs6esCaeBorpn9FKJ%2fXo7o9pdcI0hUPZ6Ds9hiPpwPUtz5J29CBE3QAopCK%2fsWlf6OW2WyXsrNRSnF1tVE5H3wXpREzuhD7S4AIA3OIEZKzC4jIPLeMu%2bazZU9xGwuc3gICOaokbwMJiZTqcUuK%2fV9YdBdjdg8wJ16NDU96Pl6%2fgew2KYuk6Wo7ZuHotgHI1abcsvdlpe4AvixDbqcRJthsg2PpLRaFLm5av44UGkeK6TJpFvxUn%2f9fg6Zk5yM1KUTHb8XGmutoCM8U9er6AzXZlY0gGc3D3bQOg41EJZkEZLyUEbk1hXJB36ku2%2bW01cG71t7MxMBYz7%2bdXobxpdo%3d%3bRWS%2bCeoDfTyDcfH5pkCg6hYDmCOPr%2fHYQuaUWUBNVnXURYkdyOzVHqp%2fe%2f1BNyPdVoVkpQHpz1pPS3b5g9h7IMmNKCk5gFq5m2nPx6kk9EYtzx8Ndoa2m9Yj%2bSaf8zIFke86YnfQL4AYewsnQNJJh4wc%2bXxGlBq7axDcoiOdX91rKzVicH3GSBkFoLFAKoegWWsF%2fEDZcVpF%2fXUA1K8HvB6dwyfy4y0sAqnNPxYTQ97mG7yHhxPt4Pe9YF2UPPAJVuEf8LNlQ%2bWHC9%2f7msF6UUI4%2fca%2ftpjFs%2fSNeRE8%2fyQj21TI8YTF1SowvaJuDc1ivEoeopNNGG%2bGI%2fX0SckaVxU9Hdkh0zbydSlT5SZwbSwescs0IpzECitBbaLUz4aT8KTs8T0lvx8D7Te3wVsKAJ1r3iFMQZrlk%2bS1WW8rvac7oHRx2HKURn1v7fDIQWgJr9aNsNlFz4fLJ50T2qSHuuepkLVbe93Va072aMGhvr09WVKoTpAf1j2bcFZZU6Za5PxI32mr0k90FgiYFJ1F%2f1vRDrGwvWVWUkR3Z33m4g0gHa52W1FMxQY0TJIwbovD6FaSNDx7xhKZSd5IJ7r6P91Gez49PaZRcAZPjd%2bfbul3JNm1VqQPTLohT7wa0ymRiXpSST74xtFzuEBzNSNATdbngj3%2fwV4JesTjZjIj5Dc%3d%3blumqauVlFuuO8MQffZgs0tLJ4Fq6fpeozPTdDf8Ll6XLegi079%2b4mSPFjTK0y6eohstxdoOdom2wAHiZwk0u4KLKmRkfYOdT1wHY79qKoBQ3ZDHFTys9V%2fcwKGl%2bl8IenWDutHygn5IcA1y7GTZj4g%3d%3d\""
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
index 58cb3f78a5..5a5ea5a354 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
@@ -78,7 +78,7 @@ If successful, this method returns 200, Ok response code with a collection of [I
 
 Here is an example of a request that gets all Indicators
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/indicators
 ```
 
@@ -86,9 +86,7 @@ GET https://api.securitycenter.microsoft.com/api/indicators
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Indicators",
     "value": [
@@ -141,7 +139,7 @@ Content-type: application/json
 
 Here is an example of a request that gets all Indicators with 'AlertAndBlock' action 
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/indicators?$filter=action+eq+'AlertAndBlock'
 ```
 
@@ -149,9 +147,7 @@ GET https://api.securitycenter.microsoft.com/api/indicators?$filter=action+eq+'A
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 Ok
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Indicators",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
index 7a7e85e081..d4d47fa618 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
@@ -64,9 +64,8 @@ If successful and user exists - 200 OK with [user](user.md) entity in the body.
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/users/user1
-Content-type: application/json
 ```
 
 **Response**
@@ -74,9 +73,7 @@ Content-type: application/json
 Here is an example of the response.
 
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Users/$entity",
     "id": "user1",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
index dfb9ea34c6..caa8fb231b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
@@ -84,9 +84,11 @@ If successful, this method returns 201 - Created response code and [Investigatio
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/startInvestigation
-Content-type: application/json
+```
+
+```json
 {
-  "Comment": "Test investigation",
+  "Comment": "Test investigation"
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
index 00d02c3bfe..67f0760774 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
@@ -90,13 +90,15 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```console
+```
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/isolate
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Isolate machine due to alert 1234",
-  “IsolationType”: “Full” 
+  "IsolationType": "Full" 
 }
 ```
 
-- To unisolate a device, see [Release device from isolation](unisolate-machine.md).
+- To release a device from isolation, see [Release device from isolation](unisolate-machine.md).
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
index 8eef870362..df8552d5a9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
@@ -87,9 +87,11 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/offboard
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Offboard machine by automation"
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
index fb99be0444..a78424ca79 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
@@ -83,14 +83,15 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/restrictCodeExecution 
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Restrict code execution due to alert 1234"
 }
 
 ```
 
-- To remove code execution restriction from a device, see [Remove app restriction](unrestrict-code-execution.md).
-
+- To remove code execution restriction from a device, see [Remove app restriction](unrestrict-code-execution.md).
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index 88fddcc27b..195101b45a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -35,10 +35,10 @@ ms.technology: mde
 1. You can only run a query on data from the last 30 days.
 2. The results will include a maximum of 100,000 rows.
 3. The number of executions is limited per tenant:
-   - API calls: Up to 15 calls per minute
-   - Execution time: 10 minutes of running time every hour and 4 hours of running time a day
+   - API calls: Up to 45 calls per minute.
+   - Execution time: 10 minutes of running time every hour and 4 hours of running time a day.
 4. The maximal execution time of a single request is 10 minutes.
-5. 429 response will represent reaching quota limit either by number of requests or by CPU. The 429 response body will also indicate the time until the quota is renewed. 
+5. 429 response will represent reaching quota limit either by number of requests or by CPU. Read response body to understand what limit has been reached. 
 
 ## Permissions
 One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
@@ -82,9 +82,11 @@ Request
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/advancedqueries/run
-Content-type: application/json
+```
+
+```json
 {
 	"Query":"DeviceProcessEvents  
     | where InitiatingProcessFileName =~ 'powershell.exe'
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index dda698fd60..aac2826f29 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -91,9 +91,11 @@ If successful, this method returns 201, Created response code and _MachineAction
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/runAntiVirusScan 
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Check machine for viruses due to alert 3212",
   “ScanType”: “Full”
diff --git a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
index 26a77dc157..6ab096b9f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
@@ -84,9 +84,11 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/StopAndQuarantineFile 
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Stop and quarantine file on machine due to alert 441688558380765161_2136280442",
   "Sha1": "87662bc3d60e4200ceaf7aae249d1c343f4b83c9"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
index 2ddc0fa5f4..9d41281585 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
@@ -84,9 +84,11 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unisolate 
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Unisolate machine since it was clean and validated"
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
index c8b9276441..41934f0380 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
@@ -82,9 +82,11 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unrestrictCodeExecution 
-Content-type: application/json
+```
+
+```json
 {
   "Comment": "Unrestrict code execution since machine was cleaned and validated"
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
index 4f6423b15e..d2f3515f96 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
@@ -91,10 +91,11 @@ If successful, this method returns 200 OK, and the [alert](alerts.md) entity in
 
 Here is an example of the request.
 
-```
+```http
 PATCH https://api.securitycenter.microsoft.com/api/alerts/121688558380765161_2136280442
-Content-Type: application/json
+```
 
+```json
 {
     "status": "Resolved",
 	"assignedTo": "secop2@contoso.com",

From f803e252caab050a81ec70c30fd0ae8fb48684ef Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Sun, 24 Jan 2021 15:46:51 +0200
Subject: [PATCH 660/825] 1

---
 .../collect-investigation-package.md                       | 2 +-
 .../microsoft-defender-atp/create-alert-by-reference.md    | 3 ++-
 .../microsoft-defender-atp/delete-ti-indicator-by-id.md    | 2 +-
 .../microsoft-defender-atp/find-machines-by-ip.md          | 2 +-
 .../microsoft-defender-atp/find-machines-by-tag.md         | 2 +-
 .../get-alert-related-domain-info.md                       | 2 +-
 .../microsoft-defender-atp/get-alert-related-files-info.md | 2 +-
 .../microsoft-defender-atp/get-alert-related-ip-info.md    | 2 +-
 .../get-alert-related-machine-info.md                      | 2 +-
 .../microsoft-defender-atp/get-alert-related-user-info.md  | 2 +-
 .../threat-protection/microsoft-defender-atp/get-alerts.md | 4 ++--
 .../microsoft-defender-atp/get-all-recommendations.md      | 2 +-
 .../get-all-vulnerabilities-by-machines.md                 | 2 +-
 .../microsoft-defender-atp/get-all-vulnerabilities.md      | 2 +-
 .../microsoft-defender-atp/get-cvekbmap-collection.md      | 7 ++-----
 .../microsoft-defender-atp/get-device-secure-score.md      | 2 +-
 .../get-discovered-vulnerabilities.md                      | 4 ++--
 .../microsoft-defender-atp/get-domain-statistics.md        | 2 +-
 .../microsoft-defender-atp/get-exposure-score.md           | 2 +-
 .../microsoft-defender-atp/get-file-information.md         | 2 +-
 .../microsoft-defender-atp/get-file-related-alerts.md      | 2 +-
 .../microsoft-defender-atp/get-file-related-machines.md    | 2 +-
 .../microsoft-defender-atp/get-file-statistics.md          | 2 +-
 .../microsoft-defender-atp/get-installed-software.md       | 2 +-
 .../microsoft-defender-atp/get-ip-related-alerts.md        | 2 +-
 .../get-machine-group-exposure-score.md                    | 2 +-
 .../microsoft-defender-atp/get-machines-by-software.md     | 3 +--
 .../get-machines-by-vulnerability.md                       | 2 +-
 .../microsoft-defender-atp/get-missing-kbs-machine.md      | 2 +-
 .../microsoft-defender-atp/get-missing-kbs-software.md     | 2 +-
 .../microsoft-defender-atp/get-recommendation-by-id.md     | 2 +-
 .../microsoft-defender-atp/get-recommendation-machines.md  | 2 +-
 .../microsoft-defender-atp/get-recommendation-software.md  | 2 +-
 .../get-recommendation-vulnerabilities.md                  | 2 +-
 .../microsoft-defender-atp/get-security-recommendations.md | 4 ++--
 .../microsoft-defender-atp/get-software-by-id.md           | 3 +--
 .../get-software-ver-distribution.md                       | 3 +--
 .../microsoft-defender-atp/get-software.md                 | 2 +-
 .../microsoft-defender-atp/get-user-related-alerts.md      | 2 +-
 .../microsoft-defender-atp/get-user-related-machines.md    | 2 +-
 .../microsoft-defender-atp/get-vuln-by-software.md         | 3 +--
 .../microsoft-defender-atp/get-vulnerability-by-id.md      | 2 +-
 .../microsoft-defender-atp/import-ti-indicators.md         | 3 ++-
 .../microsoft-defender-atp/isolate-machine.md              | 2 +-
 .../microsoft-defender-atp/post-ti-indicator.md            | 3 ++-
 .../microsoft-defender-atp/run-av-scan.md                  | 2 +-
 .../microsoft-defender-atp/update-alert.md                 | 2 +-
 47 files changed, 54 insertions(+), 58 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
index 7c823acfd6..dea6142742 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
@@ -81,7 +81,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/collectInvestigationPackage
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
index ac6a1ed6be..91a38d3f42 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
@@ -96,9 +96,10 @@ If successful, this method returns 200 OK, and a new [alert](alerts.md) object i
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/alerts/CreateAlertByReference
 ```
+
 ```json
 {
 	"machineId": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
index c4921c50f4..127f52cd7a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
@@ -73,6 +73,6 @@ If Indicator with the specified id was not found - 404 Not Found.
 
 Here is an example of the request.
 
-```
+```http
 DELETE https://api.securitycenter.microsoft.com/api/indicators/995
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
index 5a461d731b..d9ebb6559c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
@@ -80,6 +80,6 @@ If the timestamp is not in the past 30 days - 400 Bad Request.
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/findbyip(ip='10.248.240.38',timestamp=2019-09-22T08:44:05Z)
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
index e34e5962d8..5bb4e7756f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-tag.md
@@ -84,6 +84,6 @@ If successful - 200 OK with list of the machines in the response body.
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/findbytag?tag=testTag&useStartsWithFilter=true
 ```
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
index aaa3ab921d..c84308bef0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
@@ -77,7 +77,7 @@ If successful and alert and domain exist - 200 OK. If alert not found - 404 Not
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_2136280442/domains
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
index 705b9284db..015b98dba0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
@@ -77,7 +77,7 @@ If successful and alert and files exist - 200 OK. If alert not found - 404 Not F
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/files
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
index 02701c84db..602a1fd1c4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
@@ -78,7 +78,7 @@ If successful and alert and an IP exist - 200 OK. If alert not found - 404 Not F
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/alerts/636688558380765161_2136280442/ips
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index a5e59345c3..60d47669c1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -79,7 +79,7 @@ If successful and alert and device exist - 200 OK. If alert not found or device
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/machine
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
index a256a1f597..2afbe73739 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
@@ -78,7 +78,7 @@ If successful and alert and a user exists - 200 OK with user in the body. If ale
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts/636688558380765161_2136280442/user
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
index 918af17cc7..eb0067b2ba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
@@ -88,7 +88,7 @@ If successful, this method returns 200 OK, and a list of [alert](alerts.md) obje
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts
 ```
 
@@ -152,7 +152,7 @@ Here is an example of the response.
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=evidence
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
index 9be5af6b31..6548493ea9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-recommendations.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the list of security recommendati
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/recommendations
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
index 73cc542fda..0126da149d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities-by-machines.md
@@ -72,7 +72,7 @@ If successful, this method returns 200 OK with the list of vulnerabilities in th
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/vulnerabilities/machinesVulnerabilities
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
index 17f9e97ef1..00ade14700 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-all-vulnerabilities.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the list of vulnerabilities in th
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Vulnerabilities
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
index 41df827074..3264cc7d76 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-cvekbmap-collection.md
@@ -61,18 +61,15 @@ If successful and map exists - 200 OK.
 
 Here is an example of the request.
 
-```
+```http
 GET https://graph.microsoft.com/testwdatppreview/CveKbMap
-Content-type: application/json
 ```
 
 **Response**
 
 Here is an example of the response.
 
-```
-HTTP/1.1 200 OK
-Content-type: application/json
+```json
 {
     "@odata.context":"https://graph.microsoft.com/testwdatppreview/$metadata#CveKbMap",
     "@odata.count": 4168,
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
index b18413a57e..2edded89ae 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-device-secure-score.md
@@ -68,7 +68,7 @@ If successful, this method returns 200 OK, with the device secure score data in
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/configurationScore
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
index 258209f10d..760ce4ddb9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-discovered-vulnerabilities.md
@@ -71,7 +71,7 @@ If successful, this method returns 200 OK with the discovered vulnerability info
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/vulnerabilities
 ```
 
@@ -79,7 +79,7 @@ GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf4
 
 Here is an example of the response.
 
-```
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
index dd3331b476..13a3f3f28f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
@@ -81,7 +81,7 @@ If successful and domain exists - 200 OK, with statistics object in the response
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/domains/example.com/stats?lookBackHours=48
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
index c06627a36f..0288816bb4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-exposure-score.md
@@ -70,7 +70,7 @@ If successful, this method returns 200 OK, with the exposure data in the respons
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/exposureScore
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
index 019f1385c7..37b4c39da7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
@@ -76,7 +76,7 @@ If successful and file exists - 200 OK with the [file](files.md) entity in the b
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/files/4388963aaa83afe2042a46a3c017ad50bdcdafb3
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
index dd23bde922..1ef694df96 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
@@ -79,6 +79,6 @@ If successful and file exists - 200 OK with list of [alert](alerts.md) entities
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
index 981b5352e4..c0de4442c2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
@@ -79,6 +79,6 @@ If successful and file exists - 200 OK with list of [machine](machine.md) entiti
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/files/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/machines
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
index cf1898803a..ab8b12267d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
@@ -81,7 +81,7 @@ If successful and file exists - 200 OK with statistical data in the body. If fil
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/files/0991a395da64e1c5fbe8732ed11e6be064081d9f/stats?lookBackHours=48
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
index 1d74c52f25..9effa5d7a6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-installed-software.md
@@ -66,7 +66,7 @@ If successful, this method returns 200 OK with the installed software informatio
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/software
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
index ec0bd5533a..d4f66c71d6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
@@ -79,6 +79,6 @@ If successful and IP exists - 200 OK with list of [alert](alerts.md) entities in
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/ips/10.209.67.177/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
index f7ea61feb1..6f54986e33 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-group-exposure-score.md
@@ -70,7 +70,7 @@ If successful, this method returns 200 OK, with a list of exposure score per dev
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/exposureScore/ByMachineGroups
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
index cbcb0e0b06..b2f9da0734 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-software.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK and a list of devices with the softwar
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/machineReferences
 ```
 
@@ -76,7 +76,6 @@ GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/machi
 Here is an example of the response.
 
 ```json
-
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#MachineReferences",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
index 35a821c812..bf4208cd36 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines-by-vulnerability.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the vulnerability information in
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/vulnerabilities/CVE-2019-0608/machineReferences
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
index abb4bd89f5..d3c13ddae1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.md
@@ -62,7 +62,7 @@ If successful, this method returns 200 OK, with the specified device missing kb
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/2339ad14a01bd0299afb93dfa2550136057bff96/getmissingkbs 
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
index 4c037b678e..3b53dabe02 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-software.md
@@ -68,7 +68,7 @@ If successful, this method returns 200 OK, with the specified software missing k
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/getmissingkbs
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
index d752962405..5548416186 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-by-id.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the security recommendations in t
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
index 7d46d6e6fe..fa448849b7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-machines.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the list of devices associated wi
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/machineReferences
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
index 4f144b37e3..0fcdc3e55a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-software.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the software associated with the
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/software 
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
index 6c606f3bfc..e4a52ff2a7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-recommendation-vulnerabilities.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK, with the list of vulnerabilities asso
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/recommendations/va-_-google-_-chrome/vulnerabilities
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
index f08ce4f926..2581a14cb0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-security-recommendations.md
@@ -70,7 +70,7 @@ If successful, this method returns 200 OK with the security recommendations in t
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/recommendations
 ```
 
@@ -79,7 +79,7 @@ GET https://api.securitycenter.microsoft.com/api/machines/ac233fa6208e1579620bf4
 Here is an example of the response.
 
 
-```
+```json
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Recommendations",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
index da3f09fb2d..58ff771315 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the specified software data in th
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge
 ```
 
@@ -76,7 +76,6 @@ GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge
 Here is an example of the response.
 
 ```json
-
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Software/$entity",
     "id": "microsoft-_-edge",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
index c707f59ef2..897e0c91a7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-ver-distribution.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with a list of software distributions
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/distributions
 ```
 
@@ -76,7 +76,6 @@ GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/distr
 Here is an example of the response.
 
 ```json
-
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Distributions",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
index 95e59d134f..b070207ed0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software.md
@@ -66,7 +66,7 @@ If successful, this method returns 200 OK with the software inventory in the bod
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
index 7705c00e4b..341e56d35d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
@@ -81,6 +81,6 @@ If successful and user exists - 200 OK. If the user does not exist - 404 Not Fou
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/users/user1/alerts
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
index 7cab2321b4..b91c080c8e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
@@ -82,6 +82,6 @@ If successful and user exists - 200 OK with list of [machine](machine.md) entiti
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/users/user1/machines
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
index c60ff31fdb..762572746a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vuln-by-software.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with a a list of vulnerabilities expos
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/vulnerabilities 
 ```
 
@@ -76,7 +76,6 @@ GET https://api.securitycenter.microsoft.com/api/Software/microsoft-_-edge/vulne
 Here is an example of the response.
 
 ```json
-
 {
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Collection(Analytics.Contracts.PublicAPI.PublicVulnerabilityDto)",
     "value": [
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
index e8cc9c8257..441ac6bf08 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-vulnerability-by-id.md
@@ -67,7 +67,7 @@ If successful, this method returns 200 OK with the vulnerability information in
 
 Here is an example of the request.
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/Vulnerabilities/CVE-2019-0608
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
index 8e33f2ae5c..ae63ad7d4b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/import-ti-indicators.md
@@ -79,9 +79,10 @@ Indicators | List<[Indicator](ti-indicator.md)> | List of [Indicators](ti-indica
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/indicators/import
 ```
+
 ```json
 {
 	"Indicators":
diff --git a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
index 67f0760774..15f0c9b691 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
@@ -90,7 +90,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/isolate
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index c5bedda425..f019e3a9d3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -89,9 +89,10 @@ rbacGroupNames | String | Comma-separated list of RBAC group names the indicator
 
 Here is an example of the request.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/indicators
 ```
+
 ```json
 {
     "indicatorValue": "220e7d15b011d7fac48f2bd61114db1022197f7f",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index aac2826f29..68a10a5e99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -98,7 +98,7 @@ POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2
 ```json
 {
   "Comment": "Check machine for viruses due to alert 3212",
-  “ScanType”: “Full”
+  "ScanType": "Full"
 }
 ```
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
index d2f3515f96..a19d0d51e1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
@@ -103,4 +103,4 @@ PATCH https://api.securitycenter.microsoft.com/api/alerts/121688558380765161_213
     "determination": "Malware",
     "comment": "Resolve my alert and assign to secop2"
 }
-```
+```
\ No newline at end of file

From c8dde0220a6429f0e4fa375709c1b642f5ec4a98 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Sun, 24 Jan 2021 16:17:49 +0200
Subject: [PATCH 661/825] 5

---
 .../threat-protection/microsoft-defender-atp/investigation.md   | 2 +-
 .../threat-protection/microsoft-defender-atp/machine.md         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigation.md b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
index 6afbbec900..64b309d544 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigation.md
@@ -40,7 +40,7 @@ Represent an Automated Investigation entity in Defender for Endpoint.
 Method|Return Type |Description
 :---|:---|:---
 [List Investigations](get-investigation-collection.md) | Investigation collection | Get collection of Investigation
-[Get single Investigation](get-investigation-collection.md) | Investigation entity | Gets single Investigation entity.
+[Get single Investigation](get-investigation-object.md) | Investigation entity | Gets single Investigation entity.
 [Start Investigation](initiate-autoir-investigation.md) | Investigation entity | Starts Investigation on a device.
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index c0cfd906a5..896f5ca654 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -62,7 +62,7 @@ version | String | Operating system Version.
 osBuild | Nullable long | Operating system build number.
 lastIpAddress | String | Last IP on local NIC on the [machine](machine.md).
 lastExternalIpAddress | String | Last IP through which the [machine](machine.md) accessed the internet.
-healthStatus | Enum | [machine](machine.md) health status. Possible values are: "Active", "Inactive", "ImpairedCommunication", "NoSensorData" and "NoSensorDataImpairedCommunication"
+healthStatus | Enum | [machine](machine.md) health status. Possible values are: "Active", "Inactive", "ImpairedCommunication", "NoSensorData", "NoSensorDataImpairedCommunication" and "Unknown". 
 rbacGroupName | String | Machine group Name.
 rbacGroupId | Int | Machine group unique ID.
 riskScore | Nullable Enum | Risk score as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Informational', 'Low', 'Medium' and 'High'.

From 5823e24e7ac6d543273fdbf8963a454ad921f8d6 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Sun, 24 Jan 2021 16:50:27 +0200
Subject: [PATCH 662/825] 3

---
 .../microsoft-defender-atp/run-advanced-query-api.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index 195101b45a..1f52029bfe 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -36,7 +36,7 @@ ms.technology: mde
 2. The results will include a maximum of 100,000 rows.
 3. The number of executions is limited per tenant:
    - API calls: Up to 45 calls per minute.
-   - Execution time: 10 minutes of running time every hour and 4 hours of running time a day.
+   - Execution time: 10 minutes of running time every hour and 3 hours of running time a day.
 4. The maximal execution time of a single request is 10 minutes.
 5. 429 response will represent reaching quota limit either by number of requests or by CPU. Read response body to understand what limit has been reached. 
 

From 963bbb8f93de94590c0ed5948d0a965dd92d304e Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 25 Jan 2021 21:09:14 +0500
Subject: [PATCH 663/825] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index af35c57f47..122083cfeb 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -114,6 +114,7 @@
 ##### [Enable exploit protection](microsoft-defender-atp/enable-exploit-protection.md)
 ##### [Customize exploit protection](microsoft-defender-atp/customize-exploit-protection.md)
 ##### [Import, export, and deploy exploit protection configurations](microsoft-defender-atp/import-export-exploit-protection-emet-xml.md)
+##### [Troubleshoot exploit protection mitigations](microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md)
 ##### [Exploit protection reference](microsoft-defender-atp/exploit-protection-reference.md )
 
 #### [Network protection]()

From 463b8b0f8cf8d6b1066728d21cb4b34138608a98 Mon Sep 17 00:00:00 2001
From: Rick Munck <33725928+jmunck@users.noreply.github.com>
Date: Mon, 25 Jan 2021 10:13:26 -0600
Subject: [PATCH 664/825] Update security-compliance-toolkit-10.md

Removed 1709 as we dont support it any longer and pulled it from the DLC
---
 .../security/threat-protection/security-compliance-toolkit-10.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/security-compliance-toolkit-10.md b/windows/security/threat-protection/security-compliance-toolkit-10.md
index fd8ba1f7f9..509869f9e5 100644
--- a/windows/security/threat-protection/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/security-compliance-toolkit-10.md
@@ -34,7 +34,6 @@ The Security Compliance Toolkit consists of:
     - Windows 10 Version 1903 (May 2019 Update)
     - Windows 10 Version 1809 (October 2018 Update)
     - Windows 10 Version 1803 (April 2018 Update)
-    - Windows 10 Version 1709 (Fall Creators Update)
     - Windows 10 Version 1607 (Anniversary Update)
     - Windows 10 Version 1507
 

From f8e3f311ae43ba2b3c195b8c4a5c48b54c9c4869 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 25 Jan 2021 21:17:00 +0500
Subject: [PATCH 665/825] Update mandatory-settings-for-wip.md

---
 .../mandatory-settings-for-wip.md                               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md b/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
index eb25f0556d..bf2e926154 100644
--- a/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
+++ b/windows/security/information-protection/windows-information-protection/mandatory-settings-for-wip.md
@@ -28,7 +28,7 @@ This list provides all of the tasks and settings that are required for the opera
 |Task|Description|
 |----|-----------|
 |Add at least one app to the **Protected apps** list in your WIP policy.|You must have at least one app added to your **Protected apps** list. For more info about where this area is and how to add apps, see the **Add apps to your Protected apps list** section of the policy creation topics.|
-|Choose your WIP protection level.|You must choose the level of protection you want to apply to your WIP-protected content, including **Allow Overrides**, **Silent**, or **Block**. For more info about where this area is and how to decide on your protection level, see the **Manage the WIP protection mode for your enterprise data** section of the policy creation topics. For info about how to collect your audit log files, see [How to collect Windows Information Protection (WIP) audit event logs](collect-wip-audit-event-logs.md).|
+|Choose your WIP protection level.|You must choose the level of protection you want to apply to your WIP-protected content, including **Allow Overrides**, **Silent**, or **Block**. For more info about where this area is and how to decide on your protection level, see the [Manage the WIP protection mode for your enterprise data](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/create-wip-policy-using-configmgr#manage-the-wip-protection-level-for-your-enterprise-data) section of the policy creation topics. For info about how to collect your audit log files, see [How to collect Windows Information Protection (WIP) audit event logs](collect-wip-audit-event-logs.md).|
 |Specify your corporate identity.|This field is automatically filled out for you by Microsoft Intune. However, you must manually correct it if it’s incorrect or if you need to add additional domains. For more info about where this area is and what it means, see the **Define your enterprise-managed corporate identity** section of the policy creation topics.
 |Specify your network domain names.|Starting with Windows 10, version 1703, this field is optional.<br><br>Specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected. For more info about where this area is and how to add your suffixes, see the table that appears in the **Choose where apps can access enterprise data** section of the policy creation topics.|
 |Specify your enterprise IPv4 or IPv6 ranges.|Starting with Windows 10, version 1703, this field is optional.<br><br>Specify the addresses for a valid IPv4 or IPv6 value range within your intranet. These addresses, used with your Network domain names, define your corporate network boundaries. For more info about where this area is and what it means, see the table that appears in the **Define your enterprise-managed corporate identity** section of the policy creation topics.|

From b9cae92b5b8afb1f57771f5120df16ddfed3079a Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Mon, 25 Jan 2021 10:57:53 -0800
Subject: [PATCH 666/825] updating toc to toc.yml and updating nesting to match
 restructuring of documentation

---
 .../hello-for-business/index.yml              |   4 +-
 .../hello-for-business/toc.md                 |  72 ----------
 .../hello-for-business/toc.yml                | 132 +++++++++++++++++-
 3 files changed, 127 insertions(+), 81 deletions(-)
 delete mode 100644 windows/security/identity-protection/hello-for-business/toc.md

diff --git a/windows/security/identity-protection/hello-for-business/index.yml b/windows/security/identity-protection/hello-for-business/index.yml
index c26699645a..4035fa1cd7 100644
--- a/windows/security/identity-protection/hello-for-business/index.yml
+++ b/windows/security/identity-protection/hello-for-business/index.yml
@@ -89,7 +89,7 @@ landingContent:
           - text: Conditional Access 
             url: hello-feature-conditional-access.md
           - text: PIN Reset
-            url: hello-feature-pin-reset.m
+            url: hello-feature-pin-reset.md
           - text: Dual Enrollment
             url: hello-feature-dual-enrollment.md
           - text: Dynamic Lock
@@ -102,7 +102,7 @@ landingContent:
   # Card
   - title: Windows Hello for Business Troubleshooting
     linkLists:
-      - linkListType: concept
+      - linkListType: how-to-guide
         links:
           - text: Known Deployment Issues
             url: hello-deployment-issues.md
diff --git a/windows/security/identity-protection/hello-for-business/toc.md b/windows/security/identity-protection/hello-for-business/toc.md
deleted file mode 100644
index 77e08dfd22..0000000000
--- a/windows/security/identity-protection/hello-for-business/toc.md
+++ /dev/null
@@ -1,72 +0,0 @@
-# [Windows Hello for Business](hello-identity-verification.md)
-
-## [Passwordless Strategy](passwordless-strategy.md)
-
-## [Windows Hello for Business Overview](hello-overview.md)
-## [Why a PIN is better than a password](hello-why-pin-is-better-than-password.md)
-## [Windows Hello biometrics in the enterprise](hello-biometrics-in-enterprise.md)
-
-## [Windows Hello for Business Features](hello-features.md)
-### [Conditional Access](hello-feature-conditional-access.md)
-### [Dual Enrollment](hello-feature-dual-enrollment.md)
-### [Dynamic Lock](hello-feature-dynamic-lock.md)
-### [Multi-factor Unlock](feature-multifactor-unlock.md)
-### [PIN Reset](hello-feature-pin-reset.md)
-### [Remote Desktop](hello-feature-remote-desktop.md)
-
-## [How Windows Hello for Business works](hello-how-it-works.md)
-### [Technical Deep Dive](hello-how-it-works.md#technical-deep-dive)
-#### [Device Registration](hello-how-it-works-device-registration.md)
-#### [Provisioning](hello-how-it-works-provisioning.md)
-#### [Authentication](hello-how-it-works-authentication.md)
-#### [Technology and Terminology](hello-how-it-works-technology.md)
-
-## [Planning a Windows Hello for Business Deployment](hello-planning-guide.md)
-
-## [Manage Windows Hello for Business in your organization](hello-manage-in-organization.md)
-
-## [Windows Hello for Business Deployment Guide](hello-deployment-guide.md)
-
-### [Hybrid Azure AD Joined Key Trust Deployment](hello-hybrid-key-trust.md)
-#### [Prerequisites](hello-hybrid-key-trust-prereqs.md)
-#### [New Installation Baseline](hello-hybrid-key-new-install.md)
-#### [Configure Directory Synchronization](hello-hybrid-key-trust-dirsync.md)
-#### [Configure Azure Device Registration](hello-hybrid-key-trust-devreg.md)
-#### [Configure Windows Hello for Business settings](hello-hybrid-key-whfb-settings.md)
-#### [Sign-in and Provision](hello-hybrid-key-whfb-provision.md)
-
-### [Hybrid Azure AD Joined Certificate Trust Deployment](hello-hybrid-cert-trust.md)
-#### [Prerequisites](hello-hybrid-cert-trust-prereqs.md)
-#### [New Installation Baseline](hello-hybrid-cert-new-install.md)
-#### [Configure Azure Device Registration](hello-hybrid-cert-trust-devreg.md)
-#### [Configure Windows Hello for Business policy settings](hello-hybrid-cert-whfb-settings.md)
-#### [Sign-in and Provision](hello-hybrid-cert-whfb-provision.md)
-
-### [Azure AD Join Single Sign-on Deployment Guides](hello-hybrid-aadj-sso.md)
-#### [Configure Azure AD joined devices for On-premises Single-Sign On using Windows Hello for Business](hello-hybrid-aadj-sso-base.md)
-#### [Using Certificates for AADJ On-premises Single-sign On](hello-hybrid-aadj-sso-cert.md)
-
-### [On Premises Key Trust Deployment](hello-deployment-key-trust.md)
-#### [Validate Active Directory prerequisites](hello-key-trust-validate-ad-prereq.md)
-#### [Validate and Configure Public Key Infrastructure](hello-key-trust-validate-pki.md)
-#### [Prepare and Deploy Windows Server 2016 Active Directory Federation Services](hello-key-trust-adfs.md)
-##### [Validate and Deploy Multifactor Authentication Services (MFA)](hello-key-trust-validate-deploy-mfa.md)
-#### [Configure Windows Hello for Business Policy settings](hello-key-trust-policy-settings.md)
-
-### [On Premises Certificate Trust Deployment](hello-deployment-cert-trust.md)
-#### [Validate Active Directory prerequisites](hello-cert-trust-validate-ad-prereq.md)
-#### [Validate and Configure Public Key Infrastructure](hello-cert-trust-validate-pki.md)
-#### [Prepare and Deploy Windows Server 2016 Active Directory Federation Services](hello-cert-trust-adfs.md)
-#### [Validate and Deploy Multifactor Authentication Services (MFA)](hello-cert-trust-validate-deploy-mfa.md)
-#### [Configure Windows Hello for Business Policy settings](hello-cert-trust-policy-settings.md)
-
-## [Windows Hello and password changes](hello-and-password-changes.md)
-## [Prepare people to use Windows Hello](hello-prepare-people-to-use.md)
-
-## [Windows Hello for Business Frequently Asked Questions (FAQ)](hello-faq.yml)
-### [Windows Hello for Business Videos](hello-videos.md)
-
-## Windows Hello for Business Troubleshooting
-### [Known Deployment Issues](hello-deployment-issues.md)
-### [Errors during PIN creation](hello-errors-during-pin-creation.md)
-### [Event ID 300 - Windows Hello successfully created](hello-event-300.md)
diff --git a/windows/security/identity-protection/hello-for-business/toc.yml b/windows/security/identity-protection/hello-for-business/toc.yml
index 2c20b2052d..65d8c83904 100644
--- a/windows/security/identity-protection/hello-for-business/toc.yml
+++ b/windows/security/identity-protection/hello-for-business/toc.yml
@@ -5,15 +5,133 @@
   - name: Windows Hello for Business Overview
     href: hello-overview.md
 - name: Concepts
+  expanded: true
   items:
-  - name:
-    href: 
+  - name: Passwordless Strategy
+    href: passwordless-strategy.md
+  - name: Why a PIN is better than a password
+    href: hello-why-pin-is-better-than-password.md
+  - name: Windows Hello biometrics in the enterprise
+    href: hello-biometrics-in-enterprise.md
+  - name: How Windows Hello for Business works
+    href: hello-how-it-works.md
+  - name: Technical Deep Dive
+    items:
+    - name: Device Registration
+      href: hello-how-it-works-device-registration.md 
+    - name: Provisioning
+      href: hello-how-it-works-provisioning.md
+    - name: Authentication
+      href: hello-how-it-works-authentication.md
 - name: How-to Guides
   items:
-  - name:
-    href: 
+  - name: Windows Hello for Business Deployment Overview
+    href: hello-deployment-guide.md
+  - name: Planning a Windows Hello for Business Deployment
+    href: hello-planning-guide.md
+  - name: Deployment Prerequisite Overview
+    href: hello-identity-verification.md
+  - name: Prepare people to use Windows Hello
+    href: hello-prepare-people-to-use.md
+  - name: Deployment Guides
+    items:
+    - name: Hybrid Azure AD Joined Key Trust
+      items: 
+      - name: Hybrid Azure AD Joined Key Trust Deployment
+        href: hello-hybrid-key-trust.md
+      - name: Prerequisites
+        href: hello-hybrid-key-trust-prereqs.md
+      - name: New Installation Baseline
+        href: hello-hybrid-key-new-install.md
+      - name: Configure Directory Synchronization
+        href: hello-hybrid-key-trust-dirsync.md
+      - name: Configure Azure Device Registration
+        href: hello-hybrid-key-trust-devreg.md
+      - name: Configure Windows Hello for Business settings
+        href: hello-hybrid-key-whfb-settings.md
+      - name: Sign-in and Provisioning
+        href: hello-hybrid-key-whfb-provision.md
+    - name: Hybrid Azure AD Joined Certificate Trust
+      items: 
+      - name: Hybrid Azure AD Joined Certificate Trust Deployment
+        href: hello-hybrid-cert-trust.md
+      - name: Prerequisites
+        href: hello-hybrid-cert-trust-prereqs.md
+      - name: New Installation Baseline
+        href: hello-hybrid-cert-new-install.md
+      - name: Configure Azure Device Registration
+        href: hello-hybrid-cert-trust-devreg.md
+      - name: Configure Windows Hello for Business settings
+        href: hello-hybrid-cert-whfb-settings.md
+      - name: Sign-in and Provisioning
+        href: hello-hybrid-cert-whfb-provision.md
+    - name: On-premises SSO for Azure AD Joined Devices
+      items: 
+      - name: On-premises SSO for Azure AD Joined Devices Deployment 
+        href: hello-hybrid-aadj-sso.md
+      - name: Configure Azure AD joined devices for On-premises Single-Sign On using Windows Hello for Business
+        href: hello-hybrid-aadj-sso-base.md
+      - name: Using Certificates for AADJ On-premises Single-sign On
+        href: hello-hybrid-aadj-sso-cert.md
+    - name: On-premises Key Trust
+      items: 
+      - name: On-premises Key Trust Deployment
+        href: hello-deployment-key-trust.md
+      - name: Validate Active Directory Prerequisites
+        href: hello-key-trust-validate-ad-prereq.md
+      - name: Validate and Configure Public Key Infrastructure
+        href: hello-key-trust-validate-pki.md
+      - name: Prepare and Deploy Windows Server 2016 Active Directory Federation Services
+        href: hello-key-trust-adfs.md
+      - name: Validate and Deploy Multi-factor Authentication (MFA) Services
+        href: hello-key-trust-validate-deploy-mfa.md
+      - name: Configure Windows Hello for Business policy settings
+        href: hello-key-trust-policy-settings.md
+    - name: On-premises Certificate Trust
+      items: 
+      - name: On-premises Certificate Trust Deployment
+        href: hello-deployment-cert-trust.md
+      - name: Validate Active Directory Prerequisites
+        href: hello-cert-trust-validate-ad-prereq.md
+      - name: Validate and Configure Public Key Infrastructure
+        href: hello-cert-trust-validate-pki.md
+      - name: Prepare and Deploy Windows Server 2016 Active Directory Federation Services
+        href: hello-cert-trust-adfs.md
+      - name: Validate and Deploy Multi-factor Authentication (MFA) Services
+        href: hello-cert-trust-validate-deploy-mfa.md
+      - name: Configure Windows Hello for Business policy settings
+        href: hello-cert-trust-policy-settings.md
+    - name: Managing Windows Hello for Business in your organization
+       href: hello-manage-in-organization.md
+  - name: Windows Hello for Business Features
+    items:
+    - name: Conditional Access 
+      href: hello-feature-conditional-access.md
+    - name: PIN Reset
+      href: hello-feature-pin-reset.md
+    - name: Dual Enrollment
+      href: hello-feature-dual-enrollment.md  
+    - name: Dynamic Lock
+      href: hello-feature-dynamic-lock.md
+    - name: Multi-factor Unlock
+      href: feature-multifactor-unlock.md
+    - name: Remote Desktop
+      href: hello-feature-remote-desktop.md
+  - name: Troubleshooting
+    items:
+    - name: Known Deployment Issues
+      href: hello-deployment-issues.md
+    - name: Errors During PIN Creation
+      href: hello-errors-during-pin-creation.md
+    - name: Event ID 300 - Windows Hello successfully created
+      href: hello-event-300.md
+    - name: Windows Hello and password changes
+      href: hello-and-password-changes.md
 - name: Reference
   items:
-  - name:
-    href: 
-    
\ No newline at end of file
+  - name: Technology and Terminology
+    href: hello-how-it-works-technology.md
+  - name: Frequently Asked Questions (FAQ)
+    href: hello-faq.yml
+  - name: Windows Hello for Business videos
+    href: hello-videos.md

From 9d7d199078b9917f52ea02e07840f65cb861b886 Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Mon, 25 Jan 2021 11:18:44 -0800
Subject: [PATCH 667/825] fixing issues with toc.yml and index.yml

---
 .../security/identity-protection/hello-for-business/index.yml   | 2 +-
 windows/security/identity-protection/hello-for-business/toc.yml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/index.yml b/windows/security/identity-protection/hello-for-business/index.yml
index 4035fa1cd7..4282b8e701 100644
--- a/windows/security/identity-protection/hello-for-business/index.yml
+++ b/windows/security/identity-protection/hello-for-business/index.yml
@@ -36,7 +36,7 @@ landingContent:
             url: hello-biometrics-in-enterprise.md
           - text: How Windows Hello for Business works
             url: hello-how-it-works.md
-        -linkListType: learn
+      - linkListType: learn
         links: 
           - text: Technical Deep Dive - Device Registration
             url: hello-how-it-works-device-registration.md 
diff --git a/windows/security/identity-protection/hello-for-business/toc.yml b/windows/security/identity-protection/hello-for-business/toc.yml
index 65d8c83904..8a29bb7d81 100644
--- a/windows/security/identity-protection/hello-for-business/toc.yml
+++ b/windows/security/identity-protection/hello-for-business/toc.yml
@@ -102,7 +102,7 @@
       - name: Configure Windows Hello for Business policy settings
         href: hello-cert-trust-policy-settings.md
     - name: Managing Windows Hello for Business in your organization
-       href: hello-manage-in-organization.md
+      href: hello-manage-in-organization.md
   - name: Windows Hello for Business Features
     items:
     - name: Conditional Access 

From 28dedc57f594e67d556975d66849129bc3307241 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 12:35:49 -0800
Subject: [PATCH 668/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 195c784c4e..85158c1cb2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/22/2021
+ms.date: 01/25/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
@@ -38,12 +38,14 @@ In endpoint protection, a false positive is an entity, such as a file or a proce
 3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions-for-microsoft-defender-for-endpoint)
 4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
 5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
+6. [Getting help if you still have issues with false positives/negatives](#still-need-help)
 
-This article also includes information about [what to do if you still need help](#still-need-help) after taking the recommended steps to address false positives/negatives in your environment.
+> [!IMPORTANT]
+> This article is intended for security operators and administrators.
 
 ## Part 1: Review and classify alerts
 
-If your security operations team see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
+If you see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
 
 Managing your alerts and classifying true/false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 

From 4562ca67bd6db40e1773e49f74f9839efde54300 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 12:39:33 -0800
Subject: [PATCH 669/825] Update defender-endpoint-false-positives-negatives.md

---
 ...defender-endpoint-false-positives-negatives.md | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 85158c1cb2..8e5c202978 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -136,7 +136,8 @@ To define exclusions across Microsoft Defender for Endpoint, perform the followi
 - [Define exclusions for Microsoft Defender Antivirus](#exclusions-for-microsoft-defender-antivirus)
 - [Create “allow” indicators for Microsoft Defender for Endpoint](#indicators-for-microsoft-defender-for-endpoint)
 
-Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
+> [!NOTE]
+> Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
 
 The procedures in this section describe how to define exclusions and indicators.
 
@@ -169,20 +170,20 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 ### Indicators for Microsoft Defender for Endpoint
 
-[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, your security operations team can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
+[Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, you can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, your security team can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
+To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-Your security team can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
+You can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
 
-| Indicator | Prerequisites |
+| Indicator type and considerations | Prerequisites |
 |:----|:----|
-|**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action <p>Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
-| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs <p>IP is supported for all three protocols <p>Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs. For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+|**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action. Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
+| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs. IP is supported for all three protocols. Only external IPs can be added to the indicator list; indicators cannot be created for internal IPs.<p>For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
 | **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
 
 > [!TIP]

From 5928b1b0cfbd5d7b5630ea698680f7f63aeaa643 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 12:42:43 -0800
Subject: [PATCH 670/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md   | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8e5c202978..084f8103db 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -183,15 +183,15 @@ You can create indicators for files, IP addresses, URLs, domains, and certificat
 | Indicator type and considerations | Prerequisites |
 |:----|:----|
 |**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action. Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
-| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs. IP is supported for all three protocols. Only external IPs can be added to the indicator list; indicators cannot be created for internal IPs.<p>For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection).)<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. <p>A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. <p>Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
+| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs. IP is supported for all three protocols. Only external IPs can be added to the indicator list; indicators cannot be created for internal IPs.<p>For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection))<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
+| **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
 
 ## Part 4: Submit a file for analysis
 
-You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions. After you sign in at the submission site, you can track your submissions.
+You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions. When you sign in at the submission site, you can track your submissions.
 
 ### Submit a file for analysis
 
@@ -202,7 +202,7 @@ If you have a file that was either wrongly detected as malicious or was missed,
 
 ### Submit a fileless detection for analysis
 
-If something was detected as malware based on behavior, and you don’t have a file, you can submit your Mpsupport.cab file for analysis. You can get the .cab file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool.
+If something was detected as malware based on behavior, and you don’t have a file, you can submit your `Mpsupport.cab` file for analysis. You can get the .cab file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool.
 
 1.	Go to ` C:\ProgramData\Microsoft\Windows Defender\Platform\<version>`, and then run `MpCmdRun.exe` as an administrator.
 2.	Type `mpcmdrun.exe -GetFiles`, and then press **Enter**.
@@ -294,6 +294,10 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 8. On the **Applicability Rules** tab, specify the OS editions or versions to include or exclude from the policy. For example, you can set the policy to be applied to all devices certain editions of Windows 10. Then choose **Next**.
 9. On the **Review + create** tab, review your settings, and, and then choose **Create**.
 
+### Automated investigation and remediation
+
+
+
 ## Still need help?
 
 If you still need help after working through all the steps in this article, your best bet is to contact technical support.

From 2309a9407d18e11647f246145b695b5374280108 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 13:14:30 -0800
Subject: [PATCH 671/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 32 +++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 084f8103db..f8d93d2f54 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -296,7 +296,39 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 ### Automated investigation and remediation
 
+[Automated investigation and remediation](automated-investigations.md) (AIR) capabilities are designed to examine alerts and take immediate action to resolve breaches. As alerts are triggered, and an automated investigation runs, a verdict is generated for each piece of evidence investigated. Verdicts can be *Malicious*, *Suspicious*, or *No threats found*. 
 
+Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions can occur automatically or only upon approval by your security operations team. Examples of remediation actions include sending a file to quarantine, stopping a service, removing a scheduled task, and more. (See [Remediation actions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation#remediation-actions).) 
+
+All remediation actions, whether pending or completed, can be viewed in the Action Center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)). If necessary, your security operations team can undo a remediation action. And, you can set or change your level of automation.
+
+### Review actions that were taken
+
+1. Go to the Action Center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2. Select the **History** tab. 
+3. Select an item to view more details about that remediation action. 
+
+### Undo remediation actions
+
+If you’ve determined that a device or a file is not a threat, you can undo remediation actions that were taken, whether those actions were taken automatically or manually. You can undo actions, such as isolating a device, restricting code execution, quarantining a file, removing a registry key, stopping a service, and more. 
+
+1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2. Select the **History** tab.
+3. Select the actions that you want to undo.
+4. In the pane on the right side of the screen, select **Undo**.
+
+> [!TIP]
+> To learn more about remediation actions, see [Review and approve remediation actions following an automated investigation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation#remediation-actions).
+
+### Review and if needed, edit your automation level
+
+AIR capabilities in Defender for Endpoint are configured to one of several [levels of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels). 
+
+- *Full automation* (recommended) means remediation actions are taken automatically on artifacts determined to be malicious.
+- *Semi-automation* means some remediation actions are taken automatically, but other remediation actions await approval before being taken. 
+- *No automated response* (not recommended) means automated investigations do not run on your organization's devices, and no remediation actions are taken or pending as a result of automated investigation. 
+
+To review your AIR configuration and learn more about automation levels, see [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation) and the [Levels of automation table](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels#levels-of-automation).
 
 ## Still need help?
 

From 27efc5c2bc073c2823d0882dc57c7c9f1f0b8cf6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 13:16:18 -0800
Subject: [PATCH 672/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f8d93d2f54..24e9fbf78e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -328,11 +328,13 @@ AIR capabilities in Defender for Endpoint are configured to one of several [leve
 - *Semi-automation* means some remediation actions are taken automatically, but other remediation actions await approval before being taken. 
 - *No automated response* (not recommended) means automated investigations do not run on your organization's devices, and no remediation actions are taken or pending as a result of automated investigation. 
 
-To review your AIR configuration and learn more about automation levels, see [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation) and the [Levels of automation table](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels#levels-of-automation).
+To review your AIR configuration and learn more about automation levels, see:
+- [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation)
+- [Levels of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels#levels-of-automation)
 
 ## Still need help?
 
-If you still need help after working through all the steps in this article, your best bet is to contact technical support.
+If you have worked through all the steps in this article and still need help, your best bet is to contact technical support.
 
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2. In the upper right corner, select the question mark (**?**), and then select **Microsoft support**.

From 708066fb3779d7e195bc664c7dd7ee24cab311e9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 13:21:09 -0800
Subject: [PATCH 673/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md               | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 24e9fbf78e..695656e24e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -231,6 +231,7 @@ Microsoft Defender for Endpoint offers a wide variety of options, including the
 
 - [Cloud-delivered protection](#cloud-delivered-protection)
 - [Remediation for potentially unwanted applications](#remediation-for-potentially-unwanted-applications)
+- [Automated investigation and remediation](#automated-investigation-and-remediation)
 
 ### Cloud-delivered protection
 

From dd563409f25933ff6510d5d4c2a062857ced65e4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 13:29:24 -0800
Subject: [PATCH 674/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 34 ++-----------------
 1 file changed, 3 insertions(+), 31 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 695656e24e..d201884712 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -299,39 +299,11 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 [Automated investigation and remediation](automated-investigations.md) (AIR) capabilities are designed to examine alerts and take immediate action to resolve breaches. As alerts are triggered, and an automated investigation runs, a verdict is generated for each piece of evidence investigated. Verdicts can be *Malicious*, *Suspicious*, or *No threats found*. 
 
-Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions can occur automatically or only upon approval by your security operations team. Examples of remediation actions include sending a file to quarantine, stopping a service, removing a scheduled task, and more. (See [Remediation actions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation#remediation-actions).) 
+Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions can occur automatically or only upon approval by your security operations team. 
 
-All remediation actions, whether pending or completed, can be viewed in the Action Center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)). If necessary, your security operations team can undo a remediation action. And, you can set or change your level of automation.
-
-### Review actions that were taken
-
-1. Go to the Action Center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
-2. Select the **History** tab. 
-3. Select an item to view more details about that remediation action. 
-
-### Undo remediation actions
-
-If you’ve determined that a device or a file is not a threat, you can undo remediation actions that were taken, whether those actions were taken automatically or manually. You can undo actions, such as isolating a device, restricting code execution, quarantining a file, removing a registry key, stopping a service, and more. 
-
-1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
-2. Select the **History** tab.
-3. Select the actions that you want to undo.
-4. In the pane on the right side of the screen, select **Undo**.
-
-> [!TIP]
-> To learn more about remediation actions, see [Review and approve remediation actions following an automated investigation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation#remediation-actions).
-
-### Review and if needed, edit your automation level
-
-AIR capabilities in Defender for Endpoint are configured to one of several [levels of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels). 
-
-- *Full automation* (recommended) means remediation actions are taken automatically on artifacts determined to be malicious.
-- *Semi-automation* means some remediation actions are taken automatically, but other remediation actions await approval before being taken. 
-- *No automated response* (not recommended) means automated investigations do not run on your organization's devices, and no remediation actions are taken or pending as a result of automated investigation. 
-
-To review your AIR configuration and learn more about automation levels, see:
+- [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels)
 - [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation)
-- [Levels of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels#levels-of-automation)
+
 
 ## Still need help?
 

From 995a3ed9aa6c99a38ad8714908adb25b3b8e16c0 Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 25 Jan 2021 13:38:04 -0800
Subject: [PATCH 675/825] Update initiate-autoir-investigation.md

---
 .../microsoft-defender-atp/initiate-autoir-investigation.md      | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
index caa8fb231b..5617ebcae7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
@@ -92,3 +92,4 @@ POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2
 {
   "Comment": "Test investigation"
 }
+```

From 3abff941ef1a32cac37e1abe0cf9fee91dc35f7f Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 25 Jan 2021 13:39:46 -0800
Subject: [PATCH 676/825] Update get-software-by-id.md

---
 .../microsoft-defender-atp/get-software-by-id.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
index 58ff771315..43ed0055bf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-software-by-id.md
@@ -1,6 +1,6 @@
 ---
 title: Get software by Id
-description: Retrieves a list of exposure scores by device group.
+description: Retrieves a list of sofware by ID.
 keywords: apis, graph api, supported apis, get, software, mdatp tvm api
 search.product: eADQiWindows 10XVcnh
 ms.prod: m365-security

From 68d2209f6732092de9cfbad01bf0e1686feb07f3 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 13:55:09 -0800
Subject: [PATCH 677/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md         | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d201884712..9707bf3e13 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -101,6 +101,9 @@ If you have alerts that are either false positives or that are true positives bu
 
 Other actions, such as starting an antivirus scan or collecting an investigation package, can occur through [Live Response](live-response.md). Those actions cannot be undone.
 
+> [!TIP]
+> See [Review remediation actions following an automated investigation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation).
+
 ### Review completed actions
 
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in. 
@@ -301,8 +304,8 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions can occur automatically or only upon approval by your security operations team. 
 
-- [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels)
-- [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation)
+- [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels); and then 
+- [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation).
 
 
 ## Still need help?

From 2c2052341de9a76ccc675be197d8f9e4b88a4cec Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 14:01:18 -0800
Subject: [PATCH 678/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9707bf3e13..573ce0cf3f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -302,7 +302,7 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 [Automated investigation and remediation](automated-investigations.md) (AIR) capabilities are designed to examine alerts and take immediate action to resolve breaches. As alerts are triggered, and an automated investigation runs, a verdict is generated for each piece of evidence investigated. Verdicts can be *Malicious*, *Suspicious*, or *No threats found*. 
 
-Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions can occur automatically or only upon approval by your security operations team. 
+Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions are taken on artifacts deemed Malicious or Suspicious. Remediation actions can occur automatically, or only upon approval by your security operations team. 
 
 - [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels); and then 
 - [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation).

From 18bbbe6262a11c530e44a23e596395aaa921f787 Mon Sep 17 00:00:00 2001
From: Jeff Gilbert <jeffgilb@users.noreply.github.com>
Date: Mon, 25 Jan 2021 17:58:10 -0500
Subject: [PATCH 679/825] Update create-wip-policy-using-intune-azure.md

Updated per request from PM (dereka).
---
 .../create-wip-policy-using-intune-azure.md                     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
index f36275b6ba..19f213f47f 100644
--- a/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
+++ b/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure.md
@@ -444,7 +444,7 @@ To stop Windows from automatically blocking these connections, you can add the `
 For example: 
 
 ```console
-URL <,proxy>|URL <,proxy>/*AppCompat*/
+URL <,proxy>|URL <,proxy>|/*AppCompat*/
 ```
 
 When you use this string, we recommend that you also turn on [Azure Active Directory Conditional Access](https://docs.microsoft.com/azure/active-directory/active-directory-conditional-access), using the **Domain joined or marked as compliant** option, which blocks apps from accessing any enterprise cloud resources that are protected by conditional access.

From 2e2653dbb8763aa1004865b394c8bbae887b2adf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 25 Jan 2021 15:13:56 -0800
Subject: [PATCH 680/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 573ce0cf3f..9e49265a2f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -205,7 +205,7 @@ If you have a file that was either wrongly detected as malicious or was missed,
 
 ### Submit a fileless detection for analysis
 
-If something was detected as malware based on behavior, and you don’t have a file, you can submit your `Mpsupport.cab` file for analysis. You can get the .cab file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool.
+If something was detected as malware based on behavior, and you don’t have a file, you can submit your `Mpsupport.cab` file for analysis. You can get the *.cab* file by using the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) tool on Windows 10.
 
 1.	Go to ` C:\ProgramData\Microsoft\Windows Defender\Platform\<version>`, and then run `MpCmdRun.exe` as an administrator.
 2.	Type `mpcmdrun.exe -GetFiles`, and then press **Enter**.

From 285c15d89bcdbc854e1d7bd5fe8c1de59454cf6a Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Mon, 25 Jan 2021 17:12:21 -0800
Subject: [PATCH 681/825] Update
 windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/web-content-filtering.md             | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
index b6d259a0f2..87f0151c05 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
@@ -54,7 +54,7 @@ Before trying out this feature, make sure you have the following requirements:
 - Access to Microsoft Defender Security Center portal
 - Devices running Windows 10 Anniversary Update (version 1607) or later with the latest MoCAMP update.
 
-If Windows Defender SmartScreen isn't turned on, Network Protection will take over the blocking. It requires [enabling Network Protection](enable-network-protection.md) on the device.  Chrome, Firefox, Brave and Opera are currently 3rd party browsers in which the feature is enabled. 
+If Windows Defender SmartScreen isn't turned on, Network Protection will take over the blocking. It requires [enabling Network Protection](enable-network-protection.md) on the device. Chrome, Firefox, Brave, and Opera are currently 3rd party browsers in which this feature is enabled.
 
 ## Data handling
 

From a053a44b874e6005f1de3527aa9602cb8990fd0c Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Tue, 26 Jan 2021 10:31:42 +0200
Subject: [PATCH 682/825] 1

---
 windows/security/threat-protection/TOC.md     |  1 +
 .../api-release-notes.md                      | 35 +++++++++++++++++++
 2 files changed, 36 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index de8090f455..3b1c804e62 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -526,6 +526,7 @@
 
 ##### [Microsoft Defender for Endpoint APIs Schema]()
 ###### [Supported Microsoft Defender for Endpoint APIs](microsoft-defender-atp/exposed-apis-list.md)
+###### [Release Notes](microsoft-defender-atp/api-release-notes.md)
 ###### [Common REST API error codes](microsoft-defender-atp/common-errors.md)
 ###### [Advanced Hunting](microsoft-defender-atp/run-advanced-query-api.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
new file mode 100644
index 0000000000..4a650a2e4d
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -0,0 +1,35 @@
+---
+title: API release notes
+description: Release notes for anything that is new in the API.
+keywords: apis, mdatp api, updates, notes, release
+search.product: eADQiWindows 10XVcnh
+ms.prod: m365-security
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance
+ms.topic: article
+ms.technology: mde
+---
+
+# Release Notes
+
+## 2.2.4
+
+- test 1 
+
+## 2.2.3
+
+- test2
+- test3
+
+## 2.1.58
+
+- fix: test4
+- fix: test5
+- add: test6

From 3745db7676eb331faffe66aeb76d1fe77c4eb107 Mon Sep 17 00:00:00 2001
From: Guillaume Aubert <44520046+gaubert-ms@users.noreply.github.com>
Date: Tue, 26 Jan 2021 10:55:11 +0100
Subject: [PATCH 683/825] Update passwordless-strategy.md

Missing "System" in GPO path
---
 .../hello-for-business/passwordless-strategy.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/passwordless-strategy.md b/windows/security/identity-protection/hello-for-business/passwordless-strategy.md
index dd1b6b18e0..87e71bc747 100644
--- a/windows/security/identity-protection/hello-for-business/passwordless-strategy.md
+++ b/windows/security/identity-protection/hello-for-business/passwordless-strategy.md
@@ -216,7 +216,7 @@ The policy name for these operating systems is **Interactive logon: Require Wind
 When you enable this security policy setting, Windows prevents users from signing in or unlocking with a password. The password credential provider remains visible to the user. If a user tries to use a password, Windows informs the user they must use Windows Hello for Business or a smart card.
 
 #### Excluding the password credential provider
-You can use Group Policy to deploy an administrative template policy setting to the computer. This policy setting is found under **Computer Configuration > Policies > Administrative Templates > Logon**
+You can use Group Policy to deploy an administrative template policy setting to the computer. This policy setting is found under **Computer Configuration > Policies > Administrative Templates > System > Logon**
 ![HideCredProvPolicy](images/passwordless/00-hidecredprov.png)
 
 The name of the policy setting is **Exclude credential providers**. The value to enter in the policy to hide the password credential provider is **60b78e88-ead8-445c-9cfd-0b87f74ea6cd**.

From 7d9fbb1011a636246f5b8ee1eeda47b309177d71 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 26 Jan 2021 17:28:49 +0500
Subject: [PATCH 684/825] Update network-protection.md

---
 .../microsoft-defender-atp/network-protection.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index 7fd98bd981..0cf3df8758 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -45,7 +45,7 @@ You can also use [audit mode](audit-windows-defender.md) to evaluate how Network
 
 ## Requirements
 
-Network protection requires Windows 10 Pro, Enterprise E3, E5, and Microsoft Defender AV real-time protection.
+Network protection requires Windows 10 Pro or Enterprise, and Microsoft Defender AV real-time protection.
 
 Windows 10 version | Microsoft Defender Antivirus
 -|-

From 930fc4dc29b48afbc9db8b7dc0d2a7c8eb9cd62b Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 26 Jan 2021 17:32:17 +0500
Subject: [PATCH 685/825] Update troubleshoot-np.md

---
 .../threat-protection/microsoft-defender-atp/troubleshoot-np.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
index 4bfdccfe50..82fcbb7ca7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
@@ -45,7 +45,7 @@ There are four steps to troubleshooting these problems:
 Network protection will only work on devices with the following conditions:
 
 >[!div class="checklist"]
-> * Endpoints are running Windows 10 Enterprise edition, version 1709 or higher (also known as the Fall Creators Update).
+> * Endpoints are running Windows 10 Pro or Enterprise edition, version 1709 or higher.
 > * Endpoints are using Microsoft Defender Antivirus as the sole antivirus protection app. [Using any other antivirus app will cause Microsoft Defender AV to disable itself](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
 > * [Real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) is enabled.
 > * [Cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) is enabled.

From 74cb283b850d34b520e224c3427a835072f062bd Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 08:56:15 -0800
Subject: [PATCH 686/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9e49265a2f..d895dbaa84 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/25/2021
+ms.date: 01/26/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
@@ -35,7 +35,7 @@ In endpoint protection, a false positive is an entity, such as a file or a proce
 
 1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
 2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
-3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions-for-microsoft-defender-for-endpoint)
+3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions)
 4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
 5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
 6. [Getting help if you still have issues with false positives/negatives](#still-need-help)
@@ -131,7 +131,7 @@ If you find that a remediation action was taken automatically on an entity that
 2.	On the **History** tab, select the actions that you want to undo.
 3.	In the pane on the right side of the screen, select **Undo**.
 
-## Part 3: Review or define exclusions for Microsoft Defender for Endpoint
+## Part 3: Review or define exclusions
 
 An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 

From 9570f49f975fab39c28c729a2aaa0ecef3cfe3d6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:08:43 -0800
Subject: [PATCH 687/825] crosslinking

---
 .../antivirus-false-positives-negatives.md                 | 7 ++++++-
 .../microsoft-defender-antivirus-compatibility.md          | 1 +
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
index 099dbc450f..e99e915192 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 06/08/2020
+ms.date: 01/26/2021
 ms.reviewer: shwetaj
 manager: dansimp
 audience: ITPro
@@ -35,6 +35,9 @@ What if something gets detected wrongly as malware, or something is missed? We c
 - [Create an "Allow" indicator to prevent a false positive from recurring](#create-an-allow-indicator-to-prevent-a-false-positive-from-recurring)
 - [Define an exclusion on an individual Windows device to prevent an item from being scanned](#define-an-exclusion-on-an-individual-windows-device-to-prevent-an-item-from-being-scanned)
 
+> [!TIP]
+> This article focuses on false positives in Microsoft Defender Antivirus. If you want guidance for Microsoft Defender for Endpoint, which includes next-generation protection, endpoint detection and response, automated investigation and remediation, and more, see [Address false positives/negatives in Microsoft Defender for Endpoint](../microsoft-defender-atp/defender-endpoint-false-positives-negatives.md).
+
 ## Submit a file to Microsoft for analysis
 
 1. Review the [submission guidelines](../intelligence/submission-guide.md).
@@ -76,3 +79,5 @@ To learn more, see:
 [What is Microsoft Defender for Endpoint?](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection)
 
 [Microsoft 365 Defender](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)
+
+[Address false positives/negatives in Microsoft Defender for Endpoint](../microsoft-defender-atp/defender-endpoint-false-positives-negatives.md)
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index 7a74769372..ad505f776b 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -122,4 +122,5 @@ The table in this section summarizes the functionality and features that are ava
 - [Microsoft Defender Antivirus on Windows Server](microsoft-defender-antivirus-on-windows-server-2016.md)
 - [EDR in block mode](../microsoft-defender-atp/edr-in-block-mode.md)
 - [Configure Endpoint Protection](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure)
+- [Address false positives/negatives in Microsoft Defender for Endpoint](../microsoft-defender-atp/defender-endpoint-false-positives-negatives.md)
 - [Learn about Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about)

From 79733d6899e099c607c3c2cfac9b538d7ed473e0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:10:21 -0800
Subject: [PATCH 688/825] Update automated-investigations.md

---
 .../microsoft-defender-atp/automated-investigations.md           | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
index 4233bcca90..93e3809c2a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md
@@ -93,5 +93,6 @@ All remediation actions, whether pending or completed, can be viewed in the [Act
 ## See also
 
 - [PUA protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus)
+- [Address false positives/negatives in Microsoft Defender for Endpoint](defender-endpoint-false-positives-negatives.md)
 - [Automated investigation and response in Microsoft Defender for Office 365](https://docs.microsoft.com/microsoft-365/security/office-365-security/office-365-air)
 - [Automated investigation and response in Microsoft 365 Defender](https://docs.microsoft.com/microsoft-365/security/mtp/mtp-autoir)

From c067a53cca66b8ef72f63d94c56a31f155531c38 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:11:50 -0800
Subject: [PATCH 689/825] Update helpful-resources.md

---
 .../helpful-resources.md                       | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
index 7d275ab90b..fd973e1a2a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
@@ -29,31 +29,31 @@ ms.technology: mde
 Access helpful resources such as links to blogs and other resources related to  Microsoft Defender for Endpoint.
 
 ## Endpoint protection platform
--   [Top scoring in industry
+- [Top scoring in industry
     tests](https://docs.microsoft.com/windows/security/threat-protection/intelligence/top-scoring-industry-antivirus-tests)
 
--   [Inside out: Get to know the advanced technologies at the core of Defender for Endpoint next generation protection](https://www.microsoft.com/security/blog/2019/06/24/inside-out-get-to-know-the-advanced-technologies-at-the-core-of-microsoft-defender-atp-next-generation-protection/)
+- [Inside out: Get to know the advanced technologies at the core of Defender for Endpoint next generation protection](https://www.microsoft.com/security/blog/2019/06/24/inside-out-get-to-know-the-advanced-technologies-at-the-core-of-microsoft-defender-atp-next-generation-protection/)
 
--   [Protecting disconnected devices with Defender for Endpoint](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Protecting-disconnected-devices-with-Microsoft-Defender-ATP/ba-p/500341)
+- [Protecting disconnected devices with Defender for Endpoint](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Protecting-disconnected-devices-with-Microsoft-Defender-ATP/ba-p/500341)
 
--   [Tamper protection in Defender for Endpoint](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Tamper-protection-in-Microsoft-Defender-ATP/ba-p/389571)
+- [Tamper protection in Defender for Endpoint](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Tamper-protection-in-Microsoft-Defender-ATP/ba-p/389571)
 
 ## Endpoint Detection Response
 
--   [Incident response at your fingertips with Defender for Endpoint live response](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Incident-response-at-your-fingertips-with-Microsoft-Defender-ATP/ba-p/614894)
+- [Incident response at your fingertips with Defender for Endpoint live response](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Incident-response-at-your-fingertips-with-Microsoft-Defender-ATP/ba-p/614894)
 
 ## Threat Vulnerability Management
 
--   [Defender for Endpoint Threat & Vulnerability Management now publicly
+- [Defender for Endpoint Threat & Vulnerability Management now publicly
     available!](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/MDATP-Threat-amp-Vulnerability-Management-now-publicly-available/ba-p/460977)
 
 ## Operational
 
--   [The Golden Hour remake - Defining metrics for a successful security
+- [The Golden Hour remake - Defining metrics for a successful security
     operations](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/The-Golden-Hour-remake-Defining-metrics-for-a-successful/ba-p/782014)
 
--   [Defender for Endpoint Evaluation lab is now available in public preview
+- [Defender for Endpoint Evaluation lab is now available in public preview
     ](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/Microsoft-Defender-ATP-Evaluation-lab-is-now-available-in-public/ba-p/770271)
 
--   [How automation brings value to your security
+- [How automation brings value to your security
     teams](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/How-automation-brings-value-to-your-security-teams/ba-p/729297)

From 8c381211d597a1727bfdf4afcb05e1874ec85404 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:13:01 -0800
Subject: [PATCH 690/825] Update helpful-resources.md

---
 .../microsoft-defender-atp/helpful-resources.md                 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
index fd973e1a2a..88e26c2252 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/helpful-resources.md
@@ -57,3 +57,5 @@ Access helpful resources such as links to blogs and other resources related to
 
 - [How automation brings value to your security
     teams](https://techcommunity.microsoft.com/t5/Microsoft-Defender-ATP/How-automation-brings-value-to-your-security-teams/ba-p/729297)
+
+- [Address false positives/negatives in Microsoft Defender for Endpoint](defender-endpoint-false-positives-negatives.md)
\ No newline at end of file

From e3fb119c6451ff8e454050d406126460f245ef88 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:14:47 -0800
Subject: [PATCH 691/825] Update manage-atp-post-migration.md

---
 .../microsoft-defender-atp/manage-atp-post-migration.md      | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
index 2cb0d3548e..efb39aa306 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration.md
@@ -18,7 +18,7 @@ ms.collection:
   - M365-security-compliance
   - m365solution-scenario
 ms.topic: conceptual
-ms.date: 09/22/2020
+ms.date: 01/26/2021
 ms.reviewer: chventou
 ---
 
@@ -43,3 +43,6 @@ The following table lists various tools/methods you can use, with links to learn
 |**[Group Policy Objects in Azure Active Directory Domain Services](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy)** |[Azure Active Directory Domain Services](https://docs.microsoft.com/azure/active-directory-domain-services/overview) includes built-in Group Policy Objects for users and devices. You can customize the built-in Group Policy Objects as needed for your environment, as well as create custom Group Policy Objects and organizational units (OUs). <br/><br/>See [Manage Microsoft Defender for Endpoint with Group Policy Objects](manage-atp-post-migration-group-policy-objects.md). |
 |**[PowerShell, WMI, and MPCmdRun.exe](manage-atp-post-migration-other-tools.md)** |*We recommend using Microsoft Endpoint Manager (which includes Intune and Configuration Manager) to manage threat protection features on your organization's devices. However, you can configure some settings, such as Microsoft Defender Antivirus settings on individual devices (endpoints) with PowerShell, WMI, or the MPCmdRun.exe tool.*<br/><br/>You can use PowerShell to manage Microsoft Defender Antivirus, exploit protection, and your attack surface reduction rules. See [Configure Microsoft Defender for Endpoint with PowerShell](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-powershell).<br/><br/>You can use Windows Management Instrumentation (WMI) to manage Microsoft Defender Antivirus and exclusions. See [Configure Microsoft Defender for Endpoint with WMI](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-windows-management-instrumentation-wmi).<br/><br/>You can use the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) to manage Microsoft Defender Antivirus and exclusions, as well as validate connections between your network and the cloud. See [Configure Microsoft Defender for Endpoint with MPCmdRun.exe](manage-atp-post-migration-other-tools.md#configure-microsoft-defender-for-endpoint-with-microsoft-malware-protection-command-line-utility-mpcmdrunexe). |
 
+## See also
+
+- [Address false positives/negatives in Microsoft Defender for Endpoint](defender-endpoint-false-positives-negatives.md)
\ No newline at end of file

From 92f0b61c0674ae8e52cab1d67873b1ad9594da14 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:23:40 -0800
Subject: [PATCH 692/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md             | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d895dbaa84..217c0ca4ff 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -307,6 +307,9 @@ Depending on the [level of automation](https://docs.microsoft.com/windows/securi
 - [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels); and then 
 - [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation).
 
+> [!TIP]
+> We recommend using *Full automation* for automated investigation and remediation. Don't turn these capabilities off because of a false positive. Instead, use ["allow" indicators to define exceptions](#indicators-for-microsoft-defender-for-endpoint), and keep automated investigation and remediation set to take appropriate actions automatically. Following [this guidance](automation-levels.md#levels-of-automation) helps reduce the number of alerts your security operations team must handle. 
+
 
 ## Still need help?
 

From 66e207e995f7d51a6d0f8f2e0301d2c609cfc185 Mon Sep 17 00:00:00 2001
From: Peter Lewis <peter@peterlew.is>
Date: Tue, 26 Jan 2021 17:28:04 +0000
Subject: [PATCH 693/825] fix title

fix title which omitted full wording (replace "Set up Microsoft c for macOS device groups in Jamf Pro" with "Set up Microsoft Defender for Endpoint for macOS device groups in Jamf Pro")
---
 .../microsoft-defender-atp/mac-jamfpro-device-groups.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
index 3b011e3606..73dc882a2c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-jamfpro-device-groups.md
@@ -20,7 +20,7 @@ ms.topic: conceptual
 ms.technology: mde
 ---
 
-# Set up Microsoft c for macOS device groups in Jamf Pro
+# Set up Microsoft Defender for Endpoint for macOS device groups in Jamf Pro
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 

From 99ddcfab0a6114688c9433efb418c6f987d0a1c8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 09:31:20 -0800
Subject: [PATCH 694/825] Update auto-investigation-action-center.md

---
 .../microsoft-defender-atp/auto-investigation-action-center.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md b/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
index e929d6e210..0fb359840a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center.md
@@ -170,3 +170,6 @@ When you click on the pending actions link, you'll be taken to the Action center
 
 - [See the interactive guide: Investigate and remediate threats with Microsoft Defender for Endpoint](https://aka.ms/MDATP-IR-Interactive-Guide)
  
+## See also
+
+- [Address false positives/negatives in Microsoft Defender for Endpoint](defender-endpoint-false-positives-negatives.md)
\ No newline at end of file

From cf5684d08b22e3cc90316984028b006030ded975 Mon Sep 17 00:00:00 2001
From: Karl Wester-Ebbinghaus <45657752+Karl-WE@users.noreply.github.com>
Date: Tue, 26 Jan 2021 19:07:58 +0100
Subject: [PATCH 695/825] Update
 windows/deployment/volume-activation/install-vamt.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/deployment/volume-activation/install-vamt.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/volume-activation/install-vamt.md b/windows/deployment/volume-activation/install-vamt.md
index 3c482e49b3..8fc4fde224 100644
--- a/windows/deployment/volume-activation/install-vamt.md
+++ b/windows/deployment/volume-activation/install-vamt.md
@@ -50,7 +50,7 @@ You install VAMT as part of the Windows Assessment and Deployment Kit (ADK) for
 ### Install VAMT using the ADK
 
 1. Download the latest version of [Windows 10 ADK](https://docs.microsoft.com/en-us/windows-hardware/get-started/adk-install).
-It is recommended to uninstall ADK and install the latest version, if you use a previous version. Existing data of VAMT is maintained in the respective VAMT database. 
+   If an older version is already installed, it is recommended to uninstall the older ADK and install the latest version. Existing VAMT data is maintained in the VAMT database.
 2. Enter an install location or use the default path, and then select **Next**.
 3. Select a privacy setting, and then select **Next**.
 4. Accept the license terms.

From 0ee619b4fcec0cb7011e5cf4f1e882a75be2b3b0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 10:22:42 -0800
Subject: [PATCH 696/825] Update edr-in-block-mode.md

---
 .../microsoft-defender-atp/edr-in-block-mode.md               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
index 0304cdd397..75f4bba554 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/edr-in-block-mode.md
@@ -15,7 +15,7 @@ ms.localizationpriority: medium
 ms.custom: 
   - next-gen
   - edr
-ms.date: 01/07/2021
+ms.date: 01/26/2021
 ms.collection: 
   - m365-security-compliance
   - m365initiative-defender-endpoint
@@ -70,7 +70,7 @@ The following image shows an instance of unwanted software that was detected and
 |Requirement  |Details  |
 |---------|---------|
 |Permissions |Global Administrator or Security Administrator role assigned in [Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal). See [Basic permissions](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/basic-permissions). |
-|Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server 2016 or later         |
+|Operating system     |One of the following versions: <br/>- Windows 10 (all releases) <br/>- Windows Server, version 1803 or newer <br/>- Windows Server 2019         |
 |Windows E5 enrollment     |Windows E5 is included in the following subscriptions: <br/>- Microsoft 365 E5 <br/>- Microsoft 365 E3 together with the Identity & Threat Protection offering <br/><br/>See [Components](https://docs.microsoft.com/microsoft-365/enterprise/microsoft-365-overview?view=o365-worldwide&preserve-view=true#components) and [features and capabilities for each plan](https://www.microsoft.com/microsoft-365/compare-all-microsoft-365-plans).       |
 |Microsoft Defender Antivirus  |Microsoft Defender Antivirus must be installed and running in either active mode or passive mode. (You can use Microsoft Defender Antivirus alongside a non-Microsoft antivirus solution.) [Confirm Microsoft Defender Antivirus is in active or passive mode](#how-do-i-confirm-microsoft-defender-antivirus-is-in-active-or-passive-mode). |
 |Cloud-delivered protection |Make sure Microsoft Defender Antivirus is configured such that [cloud-delivered protection is enabled](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus). |

From 2b73b1d9c583dce0361b9cf4c9f953519d6b4f79 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:00:16 -0800
Subject: [PATCH 697/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md        | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 217c0ca4ff..9c411725bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,9 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives. These steps include:
+In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution. 
+
+If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives. These steps include:
 
 1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
 2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
@@ -40,8 +42,8 @@ In endpoint protection, a false positive is an entity, such as a file or a proce
 5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
 6. [Getting help if you still have issues with false positives/negatives](#still-need-help)
 
-> [!IMPORTANT]
-> This article is intended for security operators and administrators.
+> [!NOTE]
+> This article is intended as guidance for security operators and security administrators who are using [Microsoft Defender for Endpoint](microsoft-defender-advanced-threat-protection.md).
 
 ## Part 1: Review and classify alerts
 

From 17d43cfd5707c0b32a5c96b5370503a93beed655 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:10:26 -0800
Subject: [PATCH 698/825] Update network-protection.md

---
 .../microsoft-defender-atp/network-protection.md       | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index 0cf3df8758..2a2ebcab64 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -45,13 +45,13 @@ You can also use [audit mode](audit-windows-defender.md) to evaluate how Network
 
 ## Requirements
 
-Network protection requires Windows 10 Pro or Enterprise, and Microsoft Defender AV real-time protection.
+Network protection requires Windows 10 Pro or Enterprise, and Microsoft Defender Antivirus real-time protection.
 
-Windows 10 version | Microsoft Defender Antivirus
--|-
-Windows 10 version 1709 or later | [Microsoft Defender AV real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) and [cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) must be enabled
+| Windows 10 version | Microsoft Defender Antivirus |
+|:---|:---|
+| Windows 10 version 1709 or later | [Microsoft Defender AV real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) and [cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) must be enabled |
 
-After you have enabled the services, you may need to configure your network or firewall to allow the connections between the services and your endpoints.  
+After you have enabled the services, you might need to configure your network or firewall to allow the connections between the services and your endpoints.  
 
 - .smartscreen.microsoft.com
 - .smartscreen-prod.microsoft.com

From 8bfa5fd4bf9e6d15aea12d0cd09f0628b01bac3a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:14:51 -0800
Subject: [PATCH 699/825] Update troubleshoot-np.md

---
 .../microsoft-defender-atp/troubleshoot-np.md | 38 ++++++++++---------
 1 file changed, 20 insertions(+), 18 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
index 82fcbb7ca7..79cdbc3b60 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 audience: ITPro
 author: dansimp
 ms.author: dansimp
-ms.date: 03/27/2019
+ms.date: 01/26/2021
 ms.reviewer: 
 manager: dansimp
 ms.technology: mde
@@ -24,14 +24,13 @@ ms.technology: mde
 
 **Applies to:**
 
-* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-* IT administrators
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- IT administrators
 
 When you use [Network protection](network-protection.md) you may encounter issues, such as:
 
-* Network protection blocks a website that is safe (false positive)
-* Network protection fails to block a suspicious or known malicious website (false negative)
+- Network protection blocks a website that is safe (false positive)
+- Network protection fails to block a suspicious or known malicious website (false negative)
 
 There are four steps to troubleshooting these problems:
 
@@ -45,11 +44,11 @@ There are four steps to troubleshooting these problems:
 Network protection will only work on devices with the following conditions:
 
 >[!div class="checklist"]
-> * Endpoints are running Windows 10 Pro or Enterprise edition, version 1709 or higher.
-> * Endpoints are using Microsoft Defender Antivirus as the sole antivirus protection app. [Using any other antivirus app will cause Microsoft Defender AV to disable itself](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
-> * [Real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) is enabled.
-> * [Cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) is enabled.
-> * Audit mode is not enabled. Use [Group Policy](enable-network-protection.md#group-policy) to set the rule to **Disabled** (value: **0**).
+> - Endpoints are running Windows 10 Pro or Enterprise edition, version 1709 or higher.
+> - Endpoints are using Microsoft Defender Antivirus as the sole antivirus protection app. [See what happens when you are using a non-Microsoft antivirus solution](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
+> - [Real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) is enabled.
+> - [Cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) is enabled.
+> - Audit mode is not enabled. Use [Group Policy](enable-network-protection.md#group-policy) to set the rule to **Disabled** (value: **0**).
 
 ## Use audit mode
 
@@ -61,9 +60,9 @@ You can enable network protection in audit mode and then visit a website that we
    Set-MpPreference -EnableNetworkProtection AuditMode
    ```
 
-1. Perform the connection activity that is causing an issue (for example, attempt to visit the site, or connect to the IP address you do or don't want to block).
+2. Perform the connection activity that is causing an issue (for example, attempt to visit the site, or connect to the IP address you do or don't want to block).
 
-1. [Review the network protection event logs](network-protection.md#review-network-protection-events-in-windows-event-viewer) to see if the feature would have blocked the connection if it had been set to **Enabled**.
+3. [Review the network protection event logs](network-protection.md#review-network-protection-events-in-windows-event-viewer) to see if the feature would have blocked the connection if it had been set to **Enabled**.
    
    If network protection is not blocking a connection that you are expecting it should block, enable the feature.
 
@@ -75,6 +74,8 @@ You can enable network protection in audit mode and then visit a website that we
 
 If you've tested the feature with the demo site and with audit mode, and network protection is working on pre-configured scenarios, but is not working as expected for a specific connection, use the [Windows Defender Security Intelligence web-based submission form](https://www.microsoft.com/wdsi/filesubmission) to report a false negative or false positive for network protection. With an E5 subscription, you can also [provide a link to any associated alert](../microsoft-defender-atp/alerts-queue.md).
 
+See [Address false positives/negatives in Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives).
+
 ## Exclude website from network protection scope
 
 To allow the website that is being blocked (false positive), add its URL to the [list of trusted sites](https://blogs.msdn.microsoft.com/asiatech/2014/08/19/how-to-add-web-sites-to-trusted-sites-via-gpo-from-dc-installed-ie10-or-higher-ie-version/). Web resources from this list bypass the network protection check.
@@ -89,16 +90,17 @@ When you report a problem with network protection, you are asked to collect and
    cd c:\program files\windows defender
    ```
 
-1. Run this command to generate the diagnostic logs:
+2. Run this command to generate the diagnostic logs:
 
    ```PowerShell
    mpcmdrun -getfiles
    ```
 
-1. By default, they are saved to C:\ProgramData\Microsoft\Windows Defender\Support\MpSupportFiles.cab. Attach the file to the submission form.
+3. By default, they are saved to C:\ProgramData\Microsoft\Windows Defender\Support\MpSupportFiles.cab. Attach the file to the submission form.
 
 ## Related topics
 
-* [Network protection](network-protection.md)
-* [Evaluate network protection](evaluate-network-protection.md)
-* [Enable network protection](enable-network-protection.md)
+- [Network protection](network-protection.md)
+- [Evaluate network protection](evaluate-network-protection.md)
+- [Enable network protection](enable-network-protection.md)
+- [Address false positives/negatives in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives)

From 1bf91a1fd859e054e58303a537815bb4cfbe4c00 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:15:51 -0800
Subject: [PATCH 700/825] Update network-protection.md

---
 .../microsoft-defender-atp/network-protection.md       | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index 2a2ebcab64..29ed5acfbf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -79,11 +79,11 @@ You can review the Windows event log to see events that are created when network
 
 3. This will create a custom view that filters to only show the following events related to network protection:
 
-   Event ID | Description
-   -|-
-   5007 | Event when settings are changed
-   1125 | Event when network protection fires in audit mode
-   1126 | Event when network protection fires in block mode
+   | Event ID | Description |
+   |:---|:---|
+   | 5007 | Event when settings are changed |
+   | 1125 | Event when network protection fires in audit mode |
+   | 1126 | Event when network protection fires in block mode |
 
 ## Related articles
 

From e2f432e0a8799480ccf021609a4e9d178d294237 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:28:01 -0800
Subject: [PATCH 701/825] Update md-app-guard-overview.md

---
 .../md-app-guard-overview.md                                    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 0c47055df2..576fd34c27 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -8,7 +8,7 @@ ms.pagetype: security
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 12/17/2020
+ms.date: 01/27/2021
 ms.reviewer: 
 manager: dansimp
 ms.custom: asr

From e6fb1e9cee0ae3f6ba9216514805cddc6a1c70f6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 12:28:24 -0800
Subject: [PATCH 702/825] Update md-app-guard-overview.md

---
 .../md-app-guard-overview.md                                    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 576fd34c27..1187818d92 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -52,4 +52,4 @@ Application Guard has been created to target several types of devices:
 | [Microsoft Defender Application Guard Extension for web browsers](md-app-guard-browser-extension.md) | Describes the Application Guard extension for Chrome and Firefox, including known issues, and a troubleshooting guide |
 | [Microsoft Defender Application Guard for Microsoft Office](https://docs.microsoft.com/microsoft-365/security/office-365-security/install-app-guard) | Describes Application Guard for Microsoft Office, including minimum hardware requirements, configuration, and a troubleshooting guide |
 |[Frequently asked questions - Microsoft Defender Application Guard](faq-md-app-guard.md)|Provides answers to frequently asked questions about Application Guard features, integration with the Windows operating system, and general configuration.|
-|[Use a network boundary to add trusted sites on Windows devices in Microsoft Intune](https://docs.microsoft.com/en-us/mem/intune/configuration/network-boundary-windows)|Network boundary, a feature that helps you protect your environment from sites that aren't trusted by your organization.|
+|[Use a network boundary to add trusted sites on Windows devices in Microsoft Intune](https://docs.microsoft.com/mem/intune/configuration/network-boundary-windows)|Network boundary, a feature that helps you protect your environment from sites that aren't trusted by your organization.|

From 2cbc3d3d36c30cbefa068412a6d603e077350e91 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 26 Jan 2021 13:00:19 -0800
Subject: [PATCH 703/825] Update
 customize-windows-10-start-screens-by-using-group-policy.md

---
 .../customize-windows-10-start-screens-by-using-group-policy.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/configuration/customize-windows-10-start-screens-by-using-group-policy.md b/windows/configuration/customize-windows-10-start-screens-by-using-group-policy.md
index 3cd4ad2b71..ebadfd9803 100644
--- a/windows/configuration/customize-windows-10-start-screens-by-using-group-policy.md
+++ b/windows/configuration/customize-windows-10-start-screens-by-using-group-policy.md
@@ -1,5 +1,5 @@
 ---
-title: Customize Windows 10 Start and tasbkar with Group Policy (Windows 10)
+title: Customize Windows 10 Start and taskbar with Group Policy (Windows 10)
 description: In Windows 10, you can use a Group Policy Object (GPO) to deploy a customized Start layout to users in a domain.
 ms.assetid: F4A47B36-F1EF-41CD-9CBA-04C83E960545
 ms.reviewer: 

From 8128755e7ef4ff40de3ec3af2895bcdd7ec59206 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 13:08:23 -0800
Subject: [PATCH 704/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 39 ++++++++++++++++---
 1 file changed, 33 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9c411725bb..d40358edae 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -183,13 +183,40 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, you can c
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-You can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following table:
+You can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following sections:
 
-| Indicator type and considerations | Prerequisites |
-|:----|:----|
-|**[Create an indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file)** <p>Helps prevent suspected malware (or potentially malicious files) from being downloaded from the web. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. <p>The allow or block function cannot be done on a file if the file's classification exists on the device's cache prior to the allow or block action. Trusted, signed files are treated differently. Defender for Endpoint is optimized to handle malicious files. Trying to block trusted, signed files, can have performance implications. <p>Typically, file blocks are enforced within a few minutes, but can take upwards of 30 minutes.  | Microsoft Defender Antivirus with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p> Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p> [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) | 
-| **[Create an indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain)** <p>Full URL path blocks can be applied on the domain level and all unencrypted URLs. IP is supported for all three protocols. Only external IPs can be added to the indicator list; indicators cannot be created for internal IPs.<p>For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge uses [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios use Network Protection for inspection and enforcement.<p>There might be up to 2 hours of latency (usually less) between the time the action is taken, and the URL and IP being blocked. <p>Only single IP addresses are supported (no CIDR blocks or IP ranges) <p>Encrypted URLs (full path) can only be blocked on first party browsers (Internet Explorer, Edge) <p>Encrypted URLS (FQDN only) can be blocked outside of first party browsers (Internet Explorer, Edge) | Network protection in Defender for Endpoint enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection))<p>Antimalware client version: 4.18.1906.x or later <p>Devices are running Windows 10, version 1709 or later <p>Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   |
-| **[Create an indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)** <p>`.CER` or `.PEM` file extensions are supported. A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities). <p>The children or parent of the allow/block certificate IOCs are not included in the allow/block IoC functionality, only leaf certificates are supported.<p>Microsoft signed certificates cannot be blocked. <p>It can take up to 3 hours to create and remove a certificate IoC. | Microsoft Defender Antivirus with cloud-based protection is enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)<p>Antimalware client version: 4.18.1901.x or later <p>Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 <p>Virus and threat protection definitions are up to date | 
+#### Indicators for files
+
+When you [create an "allow" indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file), it helps prevent files that your organization is using from being blocked. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. 
+
+Before you create indicators for files, make sure the following requirements are met:
+- Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)
+- Antimalware client version is 4.18.1901.x or later 
+- Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 
+- The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) 
+
+#### Indicators for IP addresses, URLs, or domains
+
+When you [create an "allow" indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain), it helps prevent the sites or IP addresses your organization uses from being blocked.
+
+Before you create indicators for IP addresses, URLs, or domains, make sure the following requirements are met:
+- Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection))
+- Antimalware client version is 4.18.1906.x or later 
+- Devices are running Windows 10, version 1709, or later 
+
+Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   
+
+#### Indicators for application certificates 
+
+When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)**, it helps prevent applications, such as internally developed applications, that you organization uses from being blocked.
+
+`.CER` or `.PEM` file extensions are supported. A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities).  
+
+Before you create indicators for application certificates, make sure the following requirements are met:
+- Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)
+- Antimalware client version is 4.18.1901.x or later 
+- Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 
+- Virus and threat protection definitions are up to date  
 
 > [!TIP]
 > When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 

From 9462c60ab32a5b72766646a6d88d2259a6688024 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 13:12:57 -0800
Subject: [PATCH 705/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md            | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index d40358edae..a055c2e2f7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -208,9 +208,7 @@ Custom network indicators are turned on in the Microsoft Defender Security Cente
 
 #### Indicators for application certificates 
 
-When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)**, it helps prevent applications, such as internally developed applications, that you organization uses from being blocked.
-
-`.CER` or `.PEM` file extensions are supported. A valid leaf certificate is a signing certificate that has a valid certification path and must be chained to the Root Certificate Authority (CA) trusted by Microsoft. Alternatively, a custom (self-signed) certificate can be used as long as it's trusted by the client (Root CA certificate is installed under the Local Machine Trusted Root Certification Authorities).  
+When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)**, it helps prevent applications, such as internally developed applications, that your organization uses from being blocked. `.CER` or `.PEM` file extensions are supported.   
 
 Before you create indicators for application certificates, make sure the following requirements are met:
 - Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)

From 474099df034bf4f0f31aa59f9e6095a7d3208864 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 13:14:30 -0800
Subject: [PATCH 706/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index a055c2e2f7..f327f3bbc5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -329,7 +329,7 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 [Automated investigation and remediation](automated-investigations.md) (AIR) capabilities are designed to examine alerts and take immediate action to resolve breaches. As alerts are triggered, and an automated investigation runs, a verdict is generated for each piece of evidence investigated. Verdicts can be *Malicious*, *Suspicious*, or *No threats found*. 
 
-Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization, as well as other security settings, remediation actions are taken on artifacts deemed Malicious or Suspicious. Remediation actions can occur automatically, or only upon approval by your security operations team. 
+Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization and other security settings, remediation actions are taken on artifacts deemed Malicious or Suspicious. Remediation actions can occur automatically, or only upon approval by your security operations team. 
 
 - [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels); and then 
 - [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation).

From 2c8970880b66249c95bf2beea131184d0857517f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 13:19:51 -0800
Subject: [PATCH 707/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md           | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f327f3bbc5..f32e43f1a9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -183,7 +183,10 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, you can c
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-You can create indicators for files, IP addresses, URLs, domains, and certificates, as described in the following sections:
+You can create indicators for:
+- [Files](#indicators-for-files)
+- [IP addresses, URLs, and domains](#indicators-for-ip-addresses-urls-or-domains)
+- [Application certificates](#indicators-for-application-certificates)
 
 #### Indicators for files
 

From d572315a16f509b1a726b333916bf1bd4ef6f822 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 13:21:16 -0800
Subject: [PATCH 708/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f32e43f1a9..89da6e7ecf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -211,7 +211,7 @@ Custom network indicators are turned on in the Microsoft Defender Security Cente
 
 #### Indicators for application certificates 
 
-When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates)**, it helps prevent applications, such as internally developed applications, that your organization uses from being blocked. `.CER` or `.PEM` file extensions are supported.   
+When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates), it helps prevent applications, such as internally developed applications, that your organization uses from being blocked. `.CER` or `.PEM` file extensions are supported.   
 
 Before you create indicators for application certificates, make sure the following requirements are met:
 - Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)

From 76d679eb5918639eca7dc1cde370ef7ae0d35f22 Mon Sep 17 00:00:00 2001
From: Samantha Robertson <samanro@microsoft.com>
Date: Tue, 26 Jan 2021 14:54:57 -0800
Subject: [PATCH 709/825] Adding art for false positive/negatives for Denise

---
 ...fender-endpoint-false-positives-negatives.md |   8 ++++++++
 .../images/false-positives-indicators.png       | Bin 0 -> 14102 bytes
 .../images/false-positives-overview.png         | Bin 0 -> 27939 bytes
 .../images/false-positives-step-diagram.png     | Bin 0 -> 19014 bytes
 4 files changed, 8 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/false-positives-indicators.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/false-positives-overview.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/false-positives-step-diagram.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 89da6e7ecf..43eebf368e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,8 +33,13 @@ ms.custom: FPFN
 
 In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution. 
 
+![Definition of false positive and negatives in Windows Defender for Endpoints](images/false-positives-overview.png)
+
 If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives. These steps include:
 
+![Steps to address false positives and negatives](images/false-positives-step-diagram.png)
+
+
 1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
 2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
 3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions)
@@ -184,10 +189,13 @@ To specify entities as exclusions for Microsoft Defender for Endpoint, you can c
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
 You can create indicators for:
+
 - [Files](#indicators-for-files)
 - [IP addresses, URLs, and domains](#indicators-for-ip-addresses-urls-or-domains)
 - [Application certificates](#indicators-for-application-certificates)
 
+![Indicator types diagram](images/false-positives-indicators.png)
+
 #### Indicators for files
 
 When you [create an "allow" indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file), it helps prevent files that your organization is using from being blocked. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-indicators.png b/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-indicators.png
new file mode 100644
index 0000000000000000000000000000000000000000..733db3cb46935defdc17fb312d25c927ea95f178
GIT binary patch
literal 14102
zcmc(`X*^q7^fw+{)zZ=lEk%dhDvAzTHAQvOQq(-vaI0FOi7_H1p<JC5ZH+ZWsi-kk
zLsUp;OG;`CqJo$sQc{U2iSWdI-afDXpWpv^UgYePbM`rB?X}nXuD!o&?-zHi&G$$v
zNdo|YJ-2UNw*vsg*G1<`J9mhVgwNl^Ma8b5Tdtu1fXx2wpIF~0Y6Ac`3b=jU%poFY
zVH8}h?U>70g38aFzxVoC@atzg;+>Rp9_D;me|`FrW+r?>LgmH*XykCF*qu`yjaM?S
zr+#cd+Guv+wuFk$+AF@eUZTb1^}Duh*WELBj_x@jt2Z3-CcNHwguJt0tUZt}G!mM!
zDjnqnzni)%4e2%^izbhp7fKz=N(cE=QBhZ9xfSlUE#_J2?)&=NCsSrIa-!nZPBGy2
z<>P;Cx2XB~-f;<0dE)B-uQz{~`HZ|1Y?8@?DB?Iayoj~Q?`>x@gcB1?K5T1jdd&vO
z*uq$Dk-lZ8-xP`Cy)V5lHhPt<X1J?CSV+|W#={!>gDWyNdQENA)mHAwYKkho>PVk2
z2p#oedkQ?X*VovaD;SKF=z1p3HoUjw%S2$_E!rlRu8nM(SNedL<a>?AkNEmsV9MUi
z+Kg_CZbB!h001#>hU~;P9|jY*gqKX~ofS*8HW$ui=gErR^HZ&GPE-I+d}eB|&mW&0
zoOa*rPGRPB13xWRn@6wE+Wqv4Almbs0ys=H`p0x2v<0Mem@#Y$)XClII6<w@GUU8|
zWP=HK#~-bMB(|ksD(G(L!G)Db`1}-BZ>W<UJs~D{P-_q0HY3x%lHc9{HV~}A%8R;b
zm5(HAP(sN3Vko^;*Hhq5d*5AiuQw#X12Vbu+N>|g!~&}ZBuuq<Sv9cxId^INF5S&<
z(}K;U^!LboA%mBy5NO^7S7o2}YbvU|V?l#QuQx*Bsh{7x6}6|XA&pf~c%@tTjiLt#
z8&`^}kJ#re{np2O>{+Ziv`7Q#B~~P{VHfibL#HOkx=U6gzvmm+x#g%a5Ua&0&A97|
zO5FL7LgUrXHTQ(yS2U9so)Y1W^{=w&(R~dGYF-GxsQY7ns-4-4FF@jIvfR6Sf9AxG
zTdh4wj>}oywQYUPD6N4Tj~Gids^psO?wD-;>+bV^6^r+{1);erlC^JHPdtQ|cUn<o
zl7Whcvxo;r%-zOT*ueL}hq-U*+Ru51b@TOX8r}aHPCqnaKKuy6T)PB^ci7L&*s5*O
z0~8Osp}D6P1B=ehA{V}jEW%sMtpq^VZiMG&U@96g3bb2hc@hM>o?kc39_;SO-BEm^
zP8J^z41Z$VGoSB5?v1y|3eRmfU+B#RAZHg1&RwRS7pe%q4?-#m!;j@d+t{rDlVT>E
z`nOm4X)qr$GB$J{s{jq~Keu*imbN#8@g}~nCMtzNrm~@J!UJ4Fg}Z{N%}&*JVgz@R
z{jr{e`(>YJUzjz;3NZj2nRCDSqwkj}>#QAF(j8L?`2L0?5<QjL>(W6}jc(Z3(REnk
zkCLWL%a-5`Px?Z4D*~pU8+K(ahZFBG2J@utrA#d(Dn8~V^xSto(yhid<24BiqnpVc
zqMnv^(rhM9wG<BuJ)-XF?SK}+`8(>*4LzP;eDBR&-HPBeEFO1@)_x8S<=A$+>YEdU
z0^AI&f}9Ieln2{4dJk;{u_jot3&V!A)n^&K`e#MXtLlb(Y>Lj8LNI>a*d@~K+zta-
zg7{6Tm++o4qF_g|^bujMum#2IdeZPC0+@W%r~0pVYi!iRQTqIFiqwy#<N4tepL-Pq
zZ$&Pj5dgb%aD)^?EKzo#ZT?wp)yuf4*TIav>hZ$Z->xw`|B4sIM@dX%vZZE8acXhi
zlB2TM*G%hqQG4iT60{k-*NMUF?T0?LUAe?Ap!_Wt?vr0O^Buoy>3x4qOnM~ug2bCx
zUq*G`LBW>(3eg#`IF7F|ZTwlUUGxl7`>OAw!F<vO87)Zxujjo;TZjB)2;z746lP+~
zKD1@ihdANbfPGG{vv5BIVh*9i-~^a_NN`rhLhv8?Plol5uS<2VoRoh42p&_PlSi)*
z(99x^uuXlhJv0<rT%)PP4c|zw`$fy&^118P!Hqap?CbAh9qk3X<S#cSg5$@&agSS^
z$6W(D7maoxv+A5k&2<<B?|@t@vp{=q&nPj6592GjUK?;y1*o`@wSO<;+C$9KDz+8e
zwL=D}fHPyU-!d>VXC-;4z51U08qv%=5srVNAC*A#Dm!r}_N}ayUpu9lIdGoqZItx8
zu-OIK>Jv2Ln=AbwTgO<>W7L`>BWBu6TYfm~%4~H7!~UvSI2V+p{pX@U_vT=-6}z!h
zw_^jY5x5F#<?$Mbp@g#u-B(3gdJLuY6-DC%%N~h$^h@3>?Eju&n<ftKoC5xV>#K<>
zoS}NV|EY?I{BdzL6ivM#x&m;?F#|qGXzh)w<UPLx8ou#V%2m{<PHNigenkXsHIOE%
z6EkzX+5Cj$YUEy#vjDy|U#k-p&Ch#c|L+H_&tPh$hhS*iCYmq*e-|L6=OMTw6fGDD
z`_m#7dPYpr##9)_U%^J3td&nRN_eMUXy$0oH<H0_G1!!7Qj$t`ZKU^%b^&0#QDU!c
z7l4d=1wiW<{-=ijQ<PR%e4(CqG$rG~jKoHEAmPh;Vchg0o^8!Wt>GyQ;M$j3-pZOf
zaOs7W71!wlGQV-FMGn<dzcQ?!B?pN40TrH~hQ48)ZIw@Oc<J8up$^FxbOxeABS%@D
z89*V^CK;&a)PhMYpv1?nC+HIDFEbpSJ<?E{T(phs+i$W)XPVeZwz~|!>Rbo)o17_v
zLwV$-!KPJqvA;0#YI*!KY6*;&D><QEuC!vFByEYLhPF0ZsEPk@L$ayw&wDxK>85!{
zY-v~VOIK2_B5}R7S5>|PHbdkbGqtgxaPn`VGdO4Iq-(t^L#Jm7V|RhE^UodgIqVel
z#<WEdNFKo>dwB-rP*9#>W7E*yHBks}ryD+;b!`K^3x>O)Ub#QjNmjI=6^A-ACU&Xk
zoaNow($!RZ_`<8rUlibOi6K8+^_2V|n+lW!W|bTtc=2&V)opLguhs<SwhB|e+DZm7
z#oZa%n&WUO{=L6958#5*y1pUYDvn+Eol0}|{8ERu5Ja4AP*paF4osVWUL_g9<s=3o
ze89J*>oRin4be4$v#x9=!ahj3TVJZ)=efJZ(p8XP<WDImFj_#P0?{zwUShd^CV<%g
zc3>H9?F^OPZPz`hg-cI!)A5O!NbjnP8_@PE&WoI%9@o*<LZxFWf(Lz#{JH&u`%Dw$
z{eap!`Zm#(C6b>5$Gk(C^)TNu3m3s{?bkjKGc`^9e?MMz^o32tD`K)C4KD`E<<DaP
zfu0Vyk6l4|>&HKqbPX&^sUbeOcuhmAHz8$f0kEdY1`d4Eqs#baj~=o(730=4<V4J<
zE3;9d9qiVtz$>u&C*w0Qmy>}sKVXEig`i9W1)^=%`O5Wri*M|gRBE{D^rS?gRcUmU
zvS3Q-!p~*}D7hbXG?-UcJzF(nhc457hjJDxoMElG_1L@R1zw9Zs@Vv@Hie(>L^H?3
zi$?2I-0Egu;8?k*JO=!QOC6UWakDRka-)3=o^JhktVBaVDx}c=U9f>g;Vj5M5!9hv
zzC-N--%EHJsf91u``gYXoOyoIq6TE(nat?aN~%jRx6zf~u%ZlWK9Jf0rd`$@gH({s
z?C4JIi66dH>^thz02ZJI7q6fD!^|42Y;nlJYBc*xZ`d9Cq#;@9esbsSf4qoHt3Wq0
zzOn31Is2kbxy*nj;+JoR6$<82OuT4AZTRS5K9A=c4<eKFjiaZ->LC}mD$^14!->HO
z?8?@a(@k!9jHOl91+TqDNlULdW}tz!GmuC2k8Km6c7E@YmtwcVJxPd<or>J|3g7&i
zI=F|_{j&N>mM^vH@;APzZT@LkNG9C@MY`WJ_$zMLAMW_)fcIF5t5Q#;zrq@)R8mwv
zc4xWOA&!Ew!ar$h;O@;I?OFRNb$u-U^h;qkqIuovEs#<-XU+wU8vfDqU?s;p(ZcIv
zdW<zsuecg}(@yVc0RN7;0;23%NZ-kb-yCch#a(oo<lkXZ+b5i^3+JlsJYnt1<>_|h
zJIsv|`R^rn^Z7318O7+Lm^S%}B(-i<Y}3MIm0lAQkJM~!{0i|0xO}Lrh*Gu+bw6=s
z#HK@^EpSavtXmdbEhdMD@4@6aWso*2J3!bnjX#$0PfP3ojvd6R9mhaf>SI!sv{bnw
z?~#>!^f!A?R<$#cKfqdr(Hl+|3k&!Iis6Lyv)cCLzDP>VnczRH6@Pr{%|LT-lUs5+
zV<iHAMCv=D=X@=qRcyXvnlqRfSJdd}Ix}+`xmcWM_+25LWXQ)K)Lkzyh)*aT>baZM
zopt|^5Zj$bM?L&XTjXLDh<@&U%ZNUP7r!s#6dn4C!7WWSy>=-RV9NF>)ta~jyj@cm
zcDGIXdrMda;5H?$Mc5kFye@4^@zJX1f4KzJ2>u5<)5>Nx_s7QpDPpA(6tVch!fr$i
z4*X2k0_nwk&Rw2J-=}S^?tJEqV>>>+Up;HEB1I1pRsJ_}rhI0A(_lH~4UO0;2FZYL
zyPKWSx$E)%i+IvVWIBd~NeWguQ2Qop83~KNJ3OqTI&d}1>j&O@t-+FF_sqgpzEn#|
zY6n?KwW}g~ak8g24R!*wNZC1lbGLJi&RSz~!x3dGCM>2%FO@)5&kXreg#2AIFPkp$
z^U&osCpxAXdz0C7j@dk*C@p)7r1bB)bqcq8kC9=tC2SWILfUbW&1fXdxhu}-q2mO0
z5_v3Fw7TarvUvr~H*L_F=Dc(-k=45a=}ck{tdbTuqe;UTZW}^!pCa)1?+U<&mQ~go
zo<AgD^aa1{ZklbvKlfD|?%DAhbKEuxjQbhE0%)E_Ug%gPnwg_wPyNyYd_XJmPLO(y
z9k;uD*&@yP$P0Bjo!Y6XT{#$SL#r0#y*#bhAGoh7x8}UVislZKk;6|v56M!ronu|^
zYwx*aVT;P{QB(!PM^p8O?#T|`i<pm=@;eEZta1<ZiN{Pip<CUn2|Zm}{*o?5M)tgq
ze@j2N`_@{h`Q)HmpruEo1*O5^B`~};k=%GI5%*2y-|*TudRlS~m&Csdr(X^}xl8pq
zp;*i?d#<~mvb!Y}@7q@MQrYXs^R{OMnmF;4Cq$Z*5;r0;>!k@dwpNC6R(fDSNz(0j
zeu0gL!+!jpG(T6u9Bn6?iZFtX%w_&m)9J>Ql@O9WS}hbakoP~-xjZTyzJCZtXI9Hi
zU7C;L?H%oknn~=~F&ZCM*m+1vQEKZoSh1GyGC^q(d&=e-9qd1xbVF8d-pR)KXX%{7
zdS~dyaN_J91(FyztFE%vM6K6pFIBUqkrUMNJN<5%iefN9M={wj54l+HI9O3=wcXy*
zvk1j2jE>JwufM{5LrN8uC1T*|H)9ZJn8~G(F?IOfJ}A#4Rzp`bTSsV{{Lr@?&(PJ!
zj4EdN?7n*BR))^_@;f%aV*gqpb?N;wuhJ3h!gj=Ip0hh3#aKGFGL+wYGuYC&xUp&R
zele$yQGvRTYk04;e60>V65ot_)Zh@FMUux08s5qL20B*-!>zP^Ag;^WQ2O8iAOHB7
zR#BbB$-3jv1vEQWzfNZ$R)Bc72`R~+%M$hQA}q&n%z)-+W*lgxnCuT-J;d7V4X)%?
zUh1TSOAkWNuo?%}Ocd}0I!+EnhnVQ7)yVOIq{+_@)Ae)<_j&JBIJ};CZfCH5W<*98
z!u(|Tf!pzhZ7={Qv`W-r1)*lp6t{G4=#Pp{!$A}9pwH;ibx#;+8S){xTA}+x(z(9R
z4GM#tV^-Yb?1z+ETZ-UZ_`sQ^>ep^WodW0xX!Dr9UXo#RGLqNdH|xHDGILs3g+6ZY
zGn;w#Smk*`^do1&jWTgdR(Q0h{C+~NvfxEYehAuk%?nJE#VyVSI-Xj*#v*K#9zyhv
zOI!l}ObZpmq+FA${J>nW*CuKId$Ov?89qx}s6ARJ0uU~ARL(<sa!B%6$ClIUkKOmT
zM%H&<NdYP*TbIT4AG({0DUrD~-xD+rIU4*x1NRCS47-vmRb>~B>Q_CQNc#}d?0d_(
z8uP{G#Fdmv(oJiUMb-`|@3~&@@wgH_Ml<%oW3%URp{92amsIwmdX1Nk{HeZpE@(w1
z>0_WrD)-vw$_v7gYtp0=0glDR@cYT9p(z>zqf3<_N~p3&>f}2Yov!^SX6`qBdJ{G%
zvhfr<L!>OJ(!+|m6q1Wp{mYE&_eC?H31}LfCJpO<>enxZ%5u64iuC^emB1VfMO@KZ
zrT?ZCU#u*vGgi3*Il0_E%l7k>B)C1wSXlpI4*WbgpDuT<7|Oen94PZs>q_^OT7^58
zIlcA>)$USqCG_mH%+cIC7SwWh+&@de0L|wn7OCzpJZu?q9wp6*^5t6dl_GSl-5gS+
zGh*G*0hES&L3nv8YnhkN79gl_+W@O&_}o6{d%s#4`?J2kbcg5Q?xo#?FA*|Nb|RI;
zvcg2}Lg1FLLD5FHI`GIdhMDuq>(CiIz(@M3v7zlkE&zDyq7AU|z1mOf3100+SEMMy
zF%;;H31}($AMU=f9mV?er<Yx>EKFX7-4fcBuW#5Kne%Z{efJ~rsb?KtPo%!q1@csU
z;>Xsr@Qul56WsHdR8_hAZ<8T2!ZP0y#0xUVQv4Z&R_TFX1-D)Lcy*}C$DD-#8U)0<
zY)(fk+~!=a3q>nxTugl8;qGj81omaw?iIqd2+aPhVx=4U!%NoAJrFb!j7wdwb{nG-
z=rt8q@M`&mQM~@buj)sO?w&^M$@)$dt00a{_-52Lal&J-kqbA(;+xle#H;uaLb;xH
zv+$IAakU<*Htp$|Wx=Tt=`0&cNKMkPp4t>IqElnHd#2oBCZZ=9!#wipT2I>L%gHT?
z?u$OSSA7I7BNBCGD<BHmMQyME;W?-&WM8>(;+UkpZ*(|Z(R@DmacbXdIV>~3jGQ^O
zRB6vt(JHFJfHL&dk~LoS*;`(toP8Jk1&#vcMKCT$+b^9-_vo5#=zpK5-i;fM+JB$G
zE5HVLI9S>&m?-fC`z+|XP1JnLoW51aQynyeyPg>s^~gL!F?f~?ez}K_NLRXlsJM4e
z4019fbx&T;qv6Kw*;@r7M(**AY}=)Doznu(@5AMiOXczp><zPZR3GK07i(X1*wiSy
zE9`+#36$EI>sEV?oeT8$kTF3Pf)<B&-nI1FC?{9hT3)-eWgJ&hDdyxpPF-2=G)2Sq
ze*PtfQuFY7{41<Qu3TIk;Vq+V*P5^x)|>DBOO7MkvX}A-vh&ZA8F!}`Q$BDV@JUk^
zos<In(CqUZ)V98EMy<nN_Fzb~B`F}hC3|D#yn9bSiV@Y8*{mMIZO<wr{!g>Y|2bkf
zWUtWy5kbUTY+zL`uTLch`ZaY&jdA;!#b_W;C^}k;<{oFG_ScMyn2T2}xv;T!i(eS3
zt0#B<5wQbpliBo*Q)a;b{pa7KYX9-oC$7CF*6#c7fxTv%gEzKW>$7%$@!Su5dmtP0
zv?ua+73tE+_cUCf4e3be&*qTbE=VG;Gq5kk252y6QZ&H>lmjJsA@e20pK*0N#W%$6
z25nWNg^%s`mrCaV)G|#a*OVlpesmdg?<DQ^KDv{GQ)t*`fgg*7QGXf!CrsVW*o}%O
zI))PYI_J%g1b@f;y__F+`FhNa!y$?pi3Crz=Gpi7uJwIQdty|>21Eij8}FS?Ru&PT
zkKZ1{#j;278Ma|DPfq+$(-q&4%!WR<gtiCIw4Z&~e0dM@VD411DN52#tU1h@z)8dY
zPE(6o{e63zIxt)xk83CGJJ#&=DRFl&6M+8bycpn$vgG=`h!f{tZZp<rbws*smcG37
z{XoKtq4Iq-1=r+E!p;|@H^|5~x$paAVQnyz+U{NfE%wwUQVcLeK_=CbYb|<rQsRH_
zO|dovaW2>x?o#9h(ZIOTI%!v_#~NH6b&=LQjEj3tI;+B`-z<;E$%UhKdMW<3+dbjP
ze}wMK%lx@QbyMkOcGKF}m^S}PfgBL<isWM>4F9a{9L*MCJXG#O0)*c>ePIi5NLG@E
zjcC;xbmKh%`n7m{dZvbo;7~GdR+c1shSHI1OHW+^0XoDPHHz2Bl1szNhGG#pkmt)^
zUQ>N{hu=jveFtgUYF{pt%X{m&`A*PBP9DvxM3H6s_R-K*vtrrPWnM!6;o1P|aEI3x
zpIV$jST1V){;|>-HzJx$J*$~6R4n)|86~oUhx5wRev+qLKcHD68JN-~WSd&TfXfd2
zA!RgLHDZ|>(9#6Tirp%sZ^SP1O{2Z{|Dms|t6Rq+0c7r!+SX;{HXq_87^V(ZaI*p`
zZ!3Bsf+Jb(^ekDU-=8G<3Xg7`)P>(}5G>+<xzD{4(K%<Y%!h;yLZeN0jn5QNRZVtH
zTlRmA9&CSxiH81OU8a!o-i6V5y~|Mm1xxK!EOH@$f*)I{l!%SO&zF|<y?d1RP6z+{
z^JEy5I?>rX7pJgsa#--QZaGE0!IxK^wBb>jSh6JINFKa@0i5{vK;N-vM?UvJ0Yir*
znbLzZ;NpeA75vhoNvp3vP;xoCf%|+J4dLI2M1%zYY5u_Kl1WC$Mv1%Zg|_nM%uO30
z6OVGCgC7Eg!6X%Z(7;xQGvTdj<lOsqJud)a@&NksQM1S=@`W?`TH+fg?Si)6s~w3D
zR80FA$y#A~88aX>@8=_htT{Q<pEzc#E^6s2Rm?lw{|)g%O>-G^b5O8F|2qh4%i6qw
zHHh3lo-o@qhk4eQxK(Mq35-d!XEiMhRh{rat_(0=UFdQV+!3<r+`P3r4NSy@j8`TC
zb94(F7)5K~_0`CGjY8)Vl66Eb>h0Zy{56r1Kjw)VSzR8&qB00VHBXn(*C%A*s~>6!
zAXNaj2)MTTs~c6fezt-?S|&%h{9|hsM?_wUL1VfZp!GZXdqj4<`?>1d0h<rrTWv(z
z1^AD;7pmn0abL37@#a9-{y$|bS-BB$Zm~C#J=T;m;~6m#Kkz2x4i~ZA`(e~x*gykX
zil=lw1)%1!cU-qOL2k>6zg*UVd=P5n^{2a((jWiuO}~^{v%j5lHgUs?rG{zR_#J(Y
zckkQ%OB$WUQh@`CYRw4YFSPL2FsFY{aiSY%;G+2`v~OA9zasU}EQWa9D6d*q$SOoL
zYrY<kEt3nnz7^rkvXj{`9&PtCY`$8*0<?--(-{`|S>>Tq+h{ELUC~=i*-U2hEmVaR
zE?A93yR5XhPiH?q{8R=Ilh{ixSrmD2`*{daxH@^Q+Muaw(4u0qzkBW_Ai90IgPCYJ
zlWMQP|C&I9;KB0Mvd!Ygfr9FGCvP#mbfJL0wRzh)S4YUacxtl(H)hE5P?X}itShN*
z>p%qC%`tPnjwh8gs}m4}O1eZ(GM~a?BpEGcZp?veRb?*}R~js7*9As=Q<n8>d9-|F
zc{^t*Q2-zwoc0pVDuxX|ujGmiU2dvyYC&enX7fZqgposxOR!Wi1LRMYjhqgs+|2AK
zygxE}OSo2T-g8(?)X;^^kjWS77!kOYTwbWeFDm_Bl^CiwZJKC-Uh_pQs*s9FdHjW8
zcYn)GA<^Le`8%@-m5ng){B3h%b(5fW%b^p^v5jj@?A*qhjuw2w_?&rQEtG|VFuHQ3
z{#ut_gvV*~y$`AY4jq!5uVOcPBA|<)XZnzTJ)fo#kFs>TjPg9>&b*F|SZOj{9rB@8
zTo;ShsE;PQkG-uV@aLgurrD?n05eDb_59Cxmv;;g4a~OT*X{rXg^DU}BYQn|e{}Co
zgqc>Y{(9yay8QQ?)F&5d4smk@TdXFWGiQo$X#K+quur140gq)yei}rw2kzShCA;?C
zc+~#z@G0)|6CH8`+Se#SxqwT_f(frMif-SO2%9-i-H=X^*%d&l%x6N#+NM6J3@?jZ
zdNO0kYLM!ic|<(t5iLB-YQsCjazp@3TK;+>8o$U>TA`}flgfAg$#|Up&v~frryu{E
z6Wg5<E0!1=+Dk>9+qJhJy*bY|`MkJL<KINw_|354FR)-xvcXynByixbv!)H}C?VR^
z;7c=b%~#jT{Bg7szxSF=5ezXuwvB+d)uN`j?cksPIpNSYx<gF1;!`$P{EMh;#wIR0
z^REMu&sW<_4T3)h&lh6HH+Qx*NnJ`)eVr`VE|G90hWLPtxZT<!rFKVA**oF6kSRaS
z@SkEx0NS33>^R-vyD#N#wkTpAQWr-6t`w@H5h3Rb%n|$K0N&7TJC!~?I%<EnVq6Ij
zBN~AyKECj*e&i=qV(!tqZiZ-Vk_d=yIW#HC{AWHbYnr=gUX-B*yVbyt2HGKD@khW_
zbT<G%p>caHK<LkNdj0=A6b)WJ?FyTSo_+V|?Mk!4MDwNy`kOA@s~Efe{uo4;IFlju
zAoga9&)>#BUjjr~6z>*Q!I0WP=lo-kK$ESzpVdNF&U_a6FW``zNMO<Z>;DZ!Vnk7U
zJLP@z-|dG0hxYxyy?JLu<aQuh9XMsH(B9hMqz7yin)oh^tc^QJq}7a6b{Q~o!dfI1
zcSov&lz}THHqb0*c!jZ4n>7Q9g1}5RvpeGZLh$~Y<fqqZ`C!+YOsdEHOPxz@kGzR3
zf324ufnGHS?xX!=<$s$!y&!;33?0%}(dUj3xt^ZwJO&yqN`DaAQ_a<odMeO<TZgb_
z!0A)(7_Gd<44j`P&H>eVJiTJOuZMAg^y%oINeUZJ+;29Y)0OUjHnu<EpLa0t#@|=m
z#Rw=sIpKYVe)fx-uXrb#)#{Js9?WU}R&4aJ;TC0U)1>c4PH_`Amwg6;)wwmGxxl+m
zO+&b$5?r}?!EJ|`+kp17jBXNWt?gwvn|f2YXoSk}jATwnBTZ4dWBVNLs^IKdof(Yf
zNY!Gk_;mefPovd~M4i5=Ren+$VQOVAngP9&G0VMiC2!1*z~B|JTURpr+!{Pol@)T(
z{9XbVXdgM5i;GaV-eRrygwMbjS*w;BM1S~Ob|9l78QbU4Vr*(`bB~Z5*FS-1Zd-5U
z0!2?5%=%DBHQh^fNTuYZ;mss6H3Yi5HrK}xa&eTAu-TQ&#e^O=HMJz$D@__(INx&u
z8x_>~{9>5@RM)mK^@JIB7e-k7o3_?yBFEB=<pO-6KWTQk6THbwU+$Hr$uHHPUg$O+
zO_(?Nw7XFHPe2;DKWr~feiQ!B0Xb<KO8ak#Y6s>tQUYnGUqp0zkt&{K+{9b;Be<Mx
zCA1XrvN@K_(7lCBV3kEYCjC8g?51|%s?f!cD*ZOov%74o7Q&9JmkWr`D#;JKQtCS`
z7!-3Z3DT6@Ukg^20Miyn@st&+m+7y{4P#2h04<P+d@IKbXI)rG(5kGzf1ci{Pd9GY
zXSn8I(AC|*sL@Tr#8c%{^j}{>84t!Rb-p|RkL5rVSqki0swaMM<|L--1x~bLC6Y5^
z;N4$mSRwmY*cql%Es(m}FOKNMf;GU{!I>~tbcHi3bTa@|L1sASjos5Ardn%%BO7sk
zoRHgTmnK_e2}ffX#e>i>IHO|W0OLtI+qcek6XZ2tTxN$F;C!edt{`WMlAG*QTQ~j~
zcSK?BdHXWx;XrSnutug!=opD_312`K`n(T&G7$EPx{6B<O%oVmpt3ko$I;UiV7kH1
zX_X{63YDH-3|?BoPPu^kI4gxd?yMi=H}_~&<ujV5eKkL|XKGi?DXrz?=7>svTBCN=
zZ)&5JFVsGFA6$hn2hw!6FM0+0y`SqsGNUqzojUWy5mI(VT4ip&?skUHk+FL6n;Ke=
z!_LkdRW?r5xD^#LOZR$+&BKs`>6>;Z`@-$Qe&y+KGdN`RSed^W@w)dpSM4c|R}AKC
zkI|NqR<Qh`eh!ugofIu%0r#F)@isgS((J#kUL*5rNPJ?e*3>`V{sYL(2~2CdBDgCs
zCsk}FizRBA%sjy`T9P<UXgtTBz+a~(Z|bZ}EQc*PSJ*G(R|Dx^ah7Vf;Aav~F@tLn
z=jIhO1FN}L$t8~UhUk@CH`g?7{A=C%+^0IsPA<7(#1NQUY?!g^iYnLaMs(Hx?1L@i
zF`#G?c##u?PVdDfgSWkCKP3+%Fr$?kmloO33XOwMnYtXLm>Rd3De@)ep(Wr?@<E|W
zvdO|)J)4#!@+50Y3~j|}-sMzkm`N8t^$|ob_*z=sG0z};j)up$dxnpzDc>Yd9Sm3D
z9dX#a0eRj3Wq!S)!t-(Ig`c#t?p$@SZvZGd@|`s<*@U$3+J%n*FQac_P8vJ49qUdO
z#noF*pg(`Txy1_X#?qlNMNcivS;4Izi5Jo7l=MwP+AZn=^L(@hv1T(Ofn4!7IR4>?
zS1mh$$4BMSYlRcWD=)BDZ<%Jzel0AyYe|W1VcPMb98!!I8KRYw(}e-M`;K`n4Tb#U
zT9%)+T1BAgHFa<Bjj?xYk{zFGfh&LWe^Aq+y-4|8yB3IUMJ$=ft!c&KT3^ya-=(>s
zcD!2uccUYOnBQ;5jEVf9){<q=FQ8Xe%}k&bWzC=GNKVNi6th`5UHI2<6CS@-R&rNm
zbXG?pkYr?6r9-;~zd#21X@+uYpc)7G<yxvV5Ap?l@wW8Mdkc7E(hP=EuZ<0$4>Y9h
z0AH&pA9-HirQ^%GxyC3}c2vx*OamX3`;PfaB(H_mT9BOog$OxocnmQ>%xO3eBaR`9
z(hyLssErqt;Z%Z`=Fp=(yUPRKW0(*Prx@%^N$quz-2|;TXubhl_FeHd;aUnt^0RJ1
zLy+Y&cHT5S)L9O<gT&*2-f+AG-#v;rzL#oG4J4_t<-8tKr6aUWiF3CpdQ3b|vI<Bw
z_RP~+9u|icoxG&bUuOog-PEf+I?L3yf}y@hYAptOon?&NII1eAS$!XOFt9pf;%R~%
ztOC<`OIvVq);Yttz11jucFJ_tJZnb|<la)9HxN<YhN2KCqw%ZpYf;Q0?FGtZFHm&$
zJj*R1l43CE-~}~M=Wx#GU<WUlF=ENbkyxi_oC>*0*^{6)%rT@t)zcPmRs@iU6350=
zm=*M<qR7sq1s7~!8fs4;=!u~!K5K&vpW7Gx!A018?>IwsV6Ly)-GiZ*8N=e^^(IT-
zL-Y$UJo}SGM4686#;|nfp(AMoHc02Y9<oqK#XI%LLTXXn?ASBV(>eF~0kpb##6Bgq
zF|z=x1uL{aS}8MP7lZ9a!cKH$*pStJhbihhdM?3tj;{2r<*?rf9;CaKUnFJ}GnWKQ
zPcFiq-2TN$_4Eph@KjMW3?I=Z!(A-gvw#v)Y(tYbY;TZqnl2&W5Sksd_nt+dLkAWS
z&DtohMF}=u%oGh4&a8J8b~&o(5@?JX&1AgO4=X`Ys#mQ@tvY!fy7ZH;I2(8K@KG^n
zVnG@T#R>H!y;%b(4l4pz{YenYInQA_#<wgZCJCgX>(O-%MtUI^b<>J*ow@Ndqqtl6
zDwDAiS^HQ8?G|2fu7q6md(qVG=17|kT!jJk`3JE+Fj{CK*EHBMk1;H~?f%Pc7!7am
z*wll<-9Y&8g<;%bQxT2xi%ODrzE{QmUES@umMB`Y0jF<5x&<B~?I%-+!cgG~)dpzF
zn@(Bth+3#kp|5;NpMp2u(X})+f-T<5HnmeqGUohf59=(ZuQVYkAh+a&v8JfeNIf=k
zZ4`IOgEF}xQ0l|deIh4U=c28;GaPAo+hOoL)|8su=b24R_wvNmktwOD-f+X@<<LzY
zL+ul!(_VnevDrey#^6%F1$KD>CZ5iDHeK#WObwiHIeGQnY;VX79+udYyh6m0;ROpp
zW357WT3uxr>da*0@2D{`4A+iS({<pL#LVt9$rp|fz^WjvZD&N>XmlMD-B}MX`2Fcy
zUy_PZI>FN;tySs~KPZ56oS#%tnmDca5C>zA)jaCX`@$H1m<u}uti8-%{HyIr$c{k=
zYT3mRiAe7$1?bq!At^P$U3pTAE;K+4P@Wezqz;Htl9QA1Zp`Xh0<ue+=Z8W(!eWk%
z4;sYWD9jN{PyTP^3?Ne3AqM;Gp2?a1L*EG%7lTzz#%XJk7nO@v;Pu$`s25MG{3DSo
zjS&%AChG^N24w!lk&L>4kAbB$e`ACz`dqgdpgPzjVdC%|H3ac8raN<l>q!(hYnt{O
zR8*KDA9AA)*7e4vul(E8){#s70aTLzKE;+@@m26CmOe!&Jp%Z2$p5<S6=K>=nImN_
zHRG&&7WZZ++&*Y*&2jw;{ESaoD0#t{F3qC;p}Zt!`Bg~8%;Yz!B#VZ-OBcTuR31kO
za_D#b__V+`Kk27R2d@a%6Cb<XL=<Kb6^ofMFzO+p8vfr1Pi=d%0{q_ZAXFiku)90^
zs<Vj3p0@Cas@ZH5yh?u${!=#}U1U4uYSgJfDO*mn=B%%NG2Rkc7$YpeWXUST4VO_e
zLt03nhh}k?4U%)75x|Ft*=o8=o#|c5LiR?`m|y{Kg<Yd-<~)LLW~{;p$tKb0MqQ)=
z&!wM`G)kFt-#N7zXsDj+RCF7(eBPgA6w}&{&zZls;{F_pY71%cO<)mR9+8OI^P8B+
zVh33blcnnQa47M`U?4Pc#<~LdlH6xpYe-bMHofe6=7Nv$`<2$u27|OJ>n@hD6*V&V
z5|#=L^vs}kM3P+cW_=Cip01~_9aD0MVLQ3gul8mBoS!T>mJ`NlP4OfKxH09wxurKm
z_%*l%s(fPQ+iO)e^sM7iUlIbHnbAmRuD<~u#?Jd$mSSwWt7&(U6{tI7-xs{~NS<2&
zk^P{)^_S%Rl7tuO?-8QB)LTuf;hQsWGA1^9lGEw^R8Q7R9u~dP^^#-73g0{}N8>MP
zm<&T^lDWs|5XO7VK*L`KfBM7y4YIm<C3@@JArlMosUMaBaI6p`ET1Z@Bd)lPkcQQf
zTtc1c{m6~jw2ky&V`AU(2G~$N?IE(#Ik~K$_go2_QgdJ8lQAK5KGNMcvCAqqL-X1)
zzRNjxO*0$6Bi;%cZB=r_PDO!|fBq}TF)|fpMPX>dHbxOm5C`sOW19>^Q{AbCzKvj{
zrXV$Z=KYj1GF{hs^r+*YA$U=tWWj#Tk1exMhWR{3t61nu=G=nk(;bubTJ<y0W=REw
z5*Jt72cDD?ePZbSUe4V4aYdCJLvLiyd{l52)!8CWHWKGQzjo*-AFuO$IMy6z=MRTe
z_!)|&T1%a@zzr70o?|44;q0PlD}^A>XVwU>B|Nn5CZ)FAO%>lWxQngF`~Y#UOfO-t
zFSeD}=-w}Tse5U;@T(Os%~`=hU9xNQrCAF$=^Dco9Id5R>opZj)n^9?3a$Rr6v#;3
z1Y385M5rS%Bn7H2I=NAXQlmenBY*l5m4gtK;R{y{$km2LA-9-82{@&;`zDooUyN;C
zr*|aVnXp4n2fp?%;|kjLzKIR)RFjAhtpP58d0?h?kPbi`%F|XfQmd0p?~NJKPlqZ7
zlI2pEapeb(;9h8F5n?-`9+lSDbI)q}H5iXfri^*)X)r$OW|@%wegz+2T@lkC`KTT1
zW;pqx5?U5yH&H6?bAt6;&;~o@a0|rai-Ngv9cVW~icG3yXQpv5%tmI)TCK3xk+2ER
zOA(R2E9vb0gNs-7bMeTI1Ppty;}|YnQ0$~%I%4ZuXs8uf{&7ItgSFuXAE+_O!YtTE
zj-EVc#WjL-pONcpTN&)&SJGlymF~o-;qTT*y>$OHI`DxdQNQSn#;Cu;o`wDqgu7?$
zF!n^Zmf5dWu*)1ygA53h3lzKe;=YA)Y5}8TDBQo7+PS6-CtKLW53T{E5brqcFy1x%
zl5KR>s^Tjo{?8_5i;D<?J-@e)7Y<oKSf(M31IDPpga(IcWdn7wGidjC$K+Ncf6y@a
zlok15E|p+ep+?<<RC?0TZ&Y<e6Z#LxJ~Ca4u9{uc)s0iPVk7z+&cbVeGZ`E=Zg`0^
zJ{9ND5&5`Mgo5YBDYxHiJ)|r3EocizFaB^8o1i%uz8>u;cE7)fW=Y)%lmDIXAo&^t
zYT}PN3sB7;v_Jh2xw4GqCcyT9)U>k7Snp_VjdlmQu57`0%W~?ik<F;b@$N^$itbVN
z`S@r5A_R9?nelyCcAL~WkGmwPS9-~V3y{;+B&QjlVcyJCejSmEEN6<Gb=kEGd6zaO
zc8+YY%R6*tCDR@4p*Dwb`ZBJgRfS+uPTQBk{C!h4*EaH;_LB|4=3`Q(bXAf<bwBS-
z-`q_g<4vp7V-s{oaFMpPmWPX<X}zjn<fW35a+3d0T>!Px>hSX>c3HW}(?;vm#2P2o
z`0BN&YYg=nXm+BzceVX7%vJxiHsOps2cQ6!?>L;+Bpt*xlaHx#>xXA3-;qHfj_q3w
zrANgIe(@yzkvH#&_AnH0K-ZK3+>0NdJvM2aa#AF<plg+7R=ImWHlCCRq?6c#eoAll
zH2>Z~xgj-VF;^h*zq5pe3ETOkn6Vx5;{qnzcQ<*um?lX2`u@%J;jy8HeW+st$6Ix-
zaL<!(iIIn#L^Z1n{7%yf$M2e=pu$q6Z*#`mbX27%;E|lKZ*MR;t$aNOTf8v3(5mb8
z$5MX8*Zdo}Rq^s%(LuuL9tNML+uZwEuT!_if1Y!|YjQ6=tN7g9lniv^>dp!>ncJ`-
z9D=IrP?<W=e_k;ABPWe(!GmNiJuEY{*n>H!M{F)kCm3%D&legKbEL+ShF5RYHU<of
z1OtR!cn<Ko=J$m~CLjfaPy6ivqInYnBkm$uu^j*qm<c(b=2B4Po2RIQcl}Yq%70El
z-}fy0Kh(DQ7V3}WS4sp_I8##VhR+}Tsc98ymO&^Z)*k7^uCN4Fx{Dl|S?<#zT|!-_
zTON?wutALT6=IpHM#NOYEpEWO4)uy_AgAFbW9Yj+hTBsD%lRK_9ae*#RVObJZFG0!
zK@};!w5+^?rc2oPJoSpvoYU))MH5-biieP`_*ld<5CONbQG<=r_f;<AS7=YdL5G7)
z_;k9n;gR)AO%HC<#;X?7Hg#w@7;N^c<O|{yl;rG|(U*bsqBQO<`bAcdWcWkZJjA^2
z`sMYlUYzj&yNhzGJ)_>LpL2^{=^Ld-`?~>thy808zp(~F?ki<2s;2h!#K%TRu?WwX
z;yP-jo(N_W8YVurdXnwWVj=n-eIpmy{An4H_^ZmTm)E5a$$OVN4w=1oOZRb3b=8Qm
zqKvx`1KvTz(9n8oB;CWcf6vL)1>Mdv@DhK-s|lPf-yfi|1bITh%A^9}1#HnW&A^{h
zULWURftFcyg#XmzPZRCDidnqLEzrVQ2>!V%iRK>q+&48*Mz3#3z8o{iUNW<j!g$n^
z6VgkZ*qAp@YWApRc!~x7?jEb@bi;^06zv|NhT&#mMQo7!Xwj+JxH>b|(yHL=dypWD
zQwjP{2c2~uqLDf6RpX@N;MVmgxY#fg7bOA7hc&tFUx^_*TnIOEVPAS{#^v7OyY`NV
ztk}D-Zu(kXcBl3#rrGnG!}hK!<r^`?UB-h(qSLd1VZ9>d{?C)K27c9-W<>e&*~{XZ
z3Q$zgnAq8l!`{4fDC#jyl;Z@h>TZ8s_J8W@38{TsQqBLy7WRU6^F(h3+`eIbz4EGe
G?EeBWzMVb*

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-overview.png b/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-overview.png
new file mode 100644
index 0000000000000000000000000000000000000000..e86ad1454deefca58b80b4c04d171bff693672e6
GIT binary patch
literal 27939
zcmd42XH-*9^fnqrL_x(uQz@dNKp-FrN=K9yr1ug!BE5#*6cOnH2_U_NmJoWcDn$Z<
z^bQJy5UL~;L%j!o_g(jX_<y(`-gm7#Yq6L$nKNh3o;`c^ex5zy>Z%HtX>ZYjK%mP?
ziZ3-mAgcEu(3wvc&I2vGiP%iw-$fTi19uRJ?)vH9nZcRBLlEc=Na^KsZSS<T=72RT
z1s{SDRm`KY$1GE2g2`qqHaA{Xm|62FR(a{?u;tQms$M7$y}th7?e_=Q8?F-H1#p>#
zhkIN;ympVXq)X|7mFs(lj~CDQcd&#CHeT1?#l7|_M>f{H6<k=HziD~W`Lu>Cq&Mdo
z6cm`B-)FQ(+!zXw;wT!KA*2=iuHe(O)Fjn())n<m_HJARCJPk#uE&LL|7yXm?_@9h
zs|jkVUpVuxCQnPt`LEKZ_?+|HzZwe<H}KJ?<sNnD)qfSUysWEd|J9-x7-audg5&<T
z4(2v_wKCw>4*{rN)Balb=0U9FXUN~>lS;SGqtQLbBkqGbCrduIn?C&+ic-p=8={15
zk2$|%{O$?ZSv20M?&$X;X8VWOqd617A}Uu(=CMixrBzZ)OQN_ZHE>7aVXO3^9z6<u
zve{~+6sY^-m_z(AoBx4wElS-_xA8+kRyy!aZG63$tHlf1S3ZgoQv8O#1)ZopgxwHt
zFUrwkU8pDjnJb8t4wPmTeaP#Ml*F{KN3B@uhW?4r%XHUF)5K}Kzhm=#{Uz@3m}AOk
zP%?WjltHiibE`Nou$fQqnh-CZKj=4M9B1QDQcUYLb>bgYoS9IWdGreL<!x3U_H&n^
z`?vM3njo+$;yL%DMbEpXv4xlN|6m#x()}K^0*hrP-0Q&Ei+ozoET4CX7oZs14pY2U
zuvU;;D1MaAT!p67J9|5m&N?4RO#bdYt}^;sNdqRY!^{)QHxpruW+><!DgPsMuA$~e
zv$zLG#~B7-X8P=p!S6L^7ndwUA+^Uyz7M+B*Vz%Kl@4^-Vw^Skju9hVdc7LwnY$j;
zaIippO|a-4)BasxahgiDi7=Nx>jdXkX%c}67>X~pUiW4+tuc05j{1?|@jSfzh8gt@
z5J-g1hxa92R>qzed!YY;bblZS6g={1j5pV}$nQBzW6;v5^ik6M8)}U?6XScl(JG@~
z>eM4Jk4&QOw8{%Dy6Y^~Ff&8G>w#Zs;kVmQb`lciRGboN1tySt67(ru2?FdnNU@Sb
zC=)VuX?R)xm9lI13IoA}7t%4IErpV}NKhgc_cq{6!f*x^@*O5y+-d_Bug7q2X4G$T
z&pGlXqefImK5P3s*+BQc1?_}bi1L&g{=A!LKl6?Ws%GwHABEMKbevK%*@UW*QN|l6
zImEmV9v?5g-=~D$*w@cfZj4(?Izm^fex94^tRBbD?^<e)(WW*Y7DX9Lx6tV1s~S<p
zwlvd=94UdSL!z#=NBs-cBxJI}dAtT)b^CL^+RyQF&yozbirFoubY?{P8*g_B+D`Uu
zhf~=)8C~mI^)#@1Ncn0)nK#{Pis@OOAT%zvu2;5kxBB&q-!q<Sb^=r*i^I3_YJS$a
zPD)5aK2Fw~^iF7m?JV5Tf?%9}1s-Topxs64Q@b=r_)5K^4(^Lj#ptT=cbnZ0!FI#)
zhCjzg`6$4Av<qq=eb(LV<U0n8Y8mt$m4q~oiQ`g_Vb>o>Fq<Bm@8?4ZcR+nA-jT=i
zIC|)N&j_8NVvRo2{(2LB(Y04ryN>KrqXv)9OvEpp>?&H)!X~4!1Lc}h!;qA+9*d?;
z&APpm6-_wPP$16n52~PwlTFLN+#y4=CS#7<@`j_eOJny`!s7R-SIAzS{#+J4_6MP2
z{QO@>kp96B`_&Fh?Mp7z{0K_2dAoJA>JNr7F;D>t%;wJXzCN`;{9O5sZ2S2hDbM@U
zoMnvV@8>Zq+8x%TLsgd9*KGMQS+Vlp*h-lp%T(RyfuQJoael`lbJDew1Z$}Sgu8Bx
zG1ILHy|fDUdVgg$tU<EEZZgeS?tDTTWb+M|FO(9nrNnf@l<@pr0p{w=3Til91k%NT
zVS?*-Y94dtTEStx4URAG*M615^B(Kgi=f7;XI^sYxwY>*H)bWQj1iyl8wF=nv}cHU
zJyYqahJFc$=dBjc7mCd$LWEw@<!mxa8oio*U2KK652|oG$oTVcRyv@U*&iqT_{#V7
z>EjYlja$LX@h3I??~-3@dyaH2kZFJ|m)LJiYmURbAK-tIp{Ky<3H4~{@w~C3Uzc!g
zCN`%hE(UFRO?+C6gHhM(10rKS5-h{pByO#Ob@x1ptSHP~sB-fv{Mgr_nkDwKeCRL2
zep(BkEffiT?({hvLAp<hS(2#G`(1}|FbwRrw_fB)>I<tWjkIPJFLE5J)Vz*7M!?+`
zWMnTTcr`7UJ=cE1aeNRo3t=7!6~~gRGX4MDTarAE8BO7Bs7Xz(^@rm`(Am7E^?ufY
zu{u1)P$PU27~_+i{IL5C^$Tcs6Z&fZ-4N1hMFch;zK$vBjpuR>i~Ad;?O%^}QPKcw
z>|E-e3CsoCCmkvjXHY-5qRuUacz$Y29*?npMf|wuLGz%G!y}Bl?_RIM(5jfqhJId_
zqW7Xi?RDf*)62fV-Rb>J&jw0b-JmcRVr=}Pc1BK9y`RHe@4d!u0uB2?TTg+LY1iY>
zL*kWOl70%!$b;sz!o#|N?<;1D`Am9kDnl`jYiTR31g-p^H}#I%J^4OM29*fZiWpds
z{J2hLI$>4zjT*CQrj3tzor@c5(0PeV5pu;Vnzs6n%D<)<^)uK+=~YlB?ohBz_%8`7
z_2A0y>M2R~+Y$rSKH~OZciRn{A_)S_MUE2H{|a?`N|rWp6-#kG;1hH$D~jbeI6X)L
zeXFnfO4mFK`nkyTwT2G2n4VqS7bjLsNn?g9&M$j&xL;UEyP2yRC-zjMrnm~~0~?KB
zCF7j5^XtWvS6~~FuAE3YJXp_!B*IA{*DJfqeJl8OL{>7_%y+m|%@2=S73+e19F_L^
zx#0ixO-WI%Jq0S-E&eA%VdC{h;YR5+T$ER)$o$TIO--596$g`!H%vEEl67A9>qO(s
zs&Z1LG7NnDcrVNU6`c@1am=Ld#AiF}GEsv-Ea#i`FXRe8fT&&*H>*$m+&!aY!{zw~
zUx9xHZ|WPV01t@8_XpVy6+z(dEGQEw_iMdizjiQpvDQt(jL#R2`r3}BMBT15q!z&}
zV{N|p%AcdI<KGB-H|jf{ftCt7Zoa}l^dWt#O*@vg18)ra^*%e?R!j0+pqOPSGjG!I
z_)`4m6q{z9;vkj&!8W=%?=tdt+(|N;PxY1zzFU7pztctbbf5HppDypA)pgJ--yn&M
zF;|RBmR#6K`_4kMk>R<smUuEuGBBGjZV1qqK0S{EeYdis*glMRM|I`SGtXf5UB30q
z)U4gIOTvgqSnJr;)V14_7^!X8e#GjA4$5+y^aYyiC(dk?QqErAI7dMDEJ31c?t5@y
z<BK;XOppa)brjNmIXT0qf%N=hKYEC@#2eeEQxVw#X?VXBSzZNedOhly+c0P*Gi`B4
zSfAD1dX0D{i?A*7OLG#}CWKt^xrUfj!Q6Jf@w*~JXDQyzKGM;sf&2Tz{t3y)sipfK
zMr$cSL)&~G@%NrO1SDqv0_>;EV|SwqS|YJO3oYZkDi$QZ*2OP0E#~$PRF|$_s9M}=
zF@gJ4q&F%4=qAsTeC!>=-Ej;iP)#g%b@i>0fuuEEp?UT|jfo04qz?vVq=in^+g~fy
z*1wC(izyl^rMtmwKCm;JE68~McJZR)RAAJMe2HQrMp(te@u?d{J9(LX{DCu%y*Q=i
zQ)SJ8=B@ZK+=p5|g9j!v!Z>v|#$8!RB`ysNb1H!Mqo;idj#5qZ=32hEq|Bk?KE2BI
zlv9hSt?s=eJ{JbK8lXhAO(t2b3O59zRf_Muj`DU_OhC9n&9y?>T#wiAAiKur2Tj{N
zjbiSGGGB9#1|oiS+|4l5&TYvRqtl`Md9d)vR0Y33yizqcckGOgAu|%5`%rm4-V|Yo
z0rP4(G9`rnZmhb^b4K%STJ89N^CTS>s_{ebNqSO4O&z!1N}9ik)eX21fv!Nm2;Inx
z{`9KyQdaVK%{+T>{Thrsw{*INLEli!p@MU<g4No``zg}N`O0-&edY7bi?J<6=w)y4
zJBW}3<EEGDN^;TAW9Ke~hy>CnFNWrb*Bor<7OVa}kw{m(@;X}8ikchlk?96IJm%?2
z{prt*)WaB|(w(_J+2KYaiHfrcwPxOnh-dTFThn~&4|DuqPOeEN520odD>8d|3xx|s
z^~gC%BD-#i*yzKIOqNY+XP$(lv7A4FzFZyOL$1{O>j>%b2j?|>4B-+pDehuL?qO)_
zYC#c*^LH8+TYD;HwmKzp`GA<<QV1Jy<s|T3LojDTBX^B!_c@lcZojJ!Pz-l}lmi+D
zV!3|g&`Sdn)LgvF(;?6R^$q>uZ*&@)1ZNNQ<OqR4mie|Jl=qSMfu>6gd_d?y*Y0Q3
zS9#|W(9o7614JdsRE{O;6~{hjnE0{p8o5t9GBP27JqQ#Q9{vBHg);v`T!f3crx25t
zMfz{boit4UM`Eb|;l=;Qqq~A1DeE(hUPG@zpwXy>uGoT-k`mN~BcfW6*o^l=^pk7A
zI<wd9j2ba(M*Z(vC@}tM5c%m4%xgxN(zGO8Dk{goMy4o3>aE<?V4J>Uizi@{t%xr=
zCcUwE$N5~2qh(K)pewA;KFyL6YdxR`9Rh({_tU<f5HpW~h|;gmJ>zk>5ouScw{>ut
zsy6QL=Ym)JPVP9uSnKi5Y>$x5_dO_cVmf^_<A@q#LoHYA#$NfOr6y<I(=b`^0(-#r
zz&5y*1TOeU+8=8TbaP_+L@JJ1B}nbndkn}iqe5utRS{3%kSXr4)_ruV*u{eWz1EYX
z?c=@HAd+n)w)xLjx}ntB?R+KU)nG9sZz_Gj@{0ujJ=j?Jt1;B8Vs!(4*@4(MGS3~o
zM_hM!x_;jDHAx!SFsn|Jr%-{~u70|ECls1^15CZoZ~gov7r$)DaWKC4_z7PwLi8TB
zBNO@q!+pF_dbzXz!tERQif~w?XL|hcPuI^g?){Rv4fHy-r2*^q;-R+ot{IFYp&MVE
zgAS&^(P%YMrqB(A%R;?9VvEAgUIBQv4^*d$%W`hTs?eQb=KhfpQ?25LRKCl=`kzSC
z!}-NJSgMui(4)p+o-`PEJ>w>_W_kB>V-cRPCc^c3?bwEbz{VQ1Kp=5_d;N#K{SF*j
zX&O!jch+${qDNCqG~EUMjmFdUWO&5AL^%(tA>l3KZo>(#W8+7OBVUNb+LEiN{iyY?
z8~%_;EY=>&5n$xmadTCk*x`?~8l#M}8*@Cm61wAq@3vjssD%r4?2kMgbyiK79w>R1
zU+POf`YllpL9f&mV~gi;n~m{}4(Y60O+612Yx{`$Mf`*()sM7vTDfYw8{ByD%{-+#
zZi_@+Ny1&9K)6b;bCE>xBur;^>N{ayV}Es{vq|X`5^1~h^FlqJkq==rb?)$WuJ@Q}
z&{6w!n>`sG&2snBYkvXPnC(Vnlo+S3#2R$@8Rk>*&^@}mzHUvgSs#K5RwGP_Eq$+v
zAerF4KU&>laxyghj#wtOBnUIUn~Qp)f_#n)C-X%9Qjj9Wb;I{dg|?l$e>EL$ahz-|
zCgU_+7p=+RYW^1DO<1pjF-W1RK&?bg^a+3}ta%<@>p+*;?oUC|i#d?>#-{7Ot4+6!
z;^DKdh>x_g*q258g(`(k+f#%cBO;G<gsEef;~fj@9~*_d;1Pus&rghDGhs;PbUkr&
z?tLwcX@GI7sN-Uyzui;l3!#Z02G$Ods8y}5l$AP<O=5~B;Lnqm)1<hRJ&~+F>BQMV
zXE3{6W&G-&-`}S8GLT8do&)*OIwQ`iFi|Cuu|})C=3#`M*4}h@JHa@{%4I4XLTnjR
z-bv2y|DNyp6z#8LeX)n;6nr`#BF4!cy-NU_QlKT?D<6qsq19ir`*gIMJo?hrVk6Ms
z-sD}yk1EBQfH8!##g&C~8&yOjwpMIpYwx>3Ju&DIW!O1M>mqy*;S7GIi^y$?pM%zt
zQ8DJd&U|BvQ-7!G8gGT_OqTZzU;IHxUJ1Hg`}<j#V5`Z_hCf&eFCHo~zdGa7A1+iF
zh0rsyWmMq1edKun;m;VpuQgSHP7t33M;H-OC!Jwzwe@>Y?i0sVfiC=lM4kWrf<?D9
zsZ!DJD7Tf#PSXCmrmBWWlFC$*m(ND~;iBTP_lX#Ur=xOofse$a8sITId%4Uv`2_&b
zg*<0FFCdf?^G>`<1#4RLtx43BLtNa*$Y_c%d`(lK1ELN!y*G<;Id)c-ovW)vtEMb?
zDM;j~!fdZ-dOYPrKIf5!<A-ey;jX%&WY+E$m*)QXz3WaP8_T-Y-3>LGTw1qN7Gn~Z
zrjKf&`6BS?-C4g)zq!=ey_P){J}B)yRAG<Vb2|+iPv)mOi8D`L-0tDu^-0sg5AWO@
zksme45U&`=Q(b=%Pp?aJ3LaiMAIoaQ*-N;RSh$)e4BMRBIM+Gg7m&wLd;{g|WlZ*9
z?Z2xli>#L2l4sWE!8n%C)tp7@jydp_YSu5AFNL=%H@s%Iw$;7aP$dAbfj7gv&|mrN
zMy4Os2fU(U<&wkP2ZZZqmg5LR8#BZ*ysoE%@~jtM)&1Sn%~oFIZ{uhgKZTDoa$3c8
z<Ge6QSW3!X{XH(@h^!0_Jrf`NZe<B1+8RfLrcTlTj2DC3wdzn*v~1xOl$gcJuW|Sw
z#E^^Crs`AEx})=yCsFI+82RJ;$NCba7=gU+`4Amm_gC(Q$*(U{j}|uq`fSo(=pe_u
zqZb@Q2DNBrBj4r~g=UxjUA5Ak^jvjsh?v@V7b%Z!=se_&Mb*EF@AmOBDtnjfKR%fD
zuE*J9AU(9fbNIejlimtn-vD(zHfCzt?-3---adS#V)-MiXCc5bQeSmSB>x1`(-f%e
zs*BV@{IJ$a={K~PC8+i)(_%3?>p8{j=t-C<>5JVdWE=eacVD>J4@a>W&BQA8w@e9t
z&fYadR@zw^LSy*uSJ3*FU(0@m@%E{f3_w%iW1{)NQl(ciFmN~<M}NT<Z#+Erk1MrQ
zcMi3H1&uZl3^6STy|W_!%TdK+GNLxpDB1Y1itYVS&x|G^x|Mb$luy_sTPt0e&<u9f
z_*{c-D(*!Jl*SYuA_sLR{C4E3FNTt*wUeS@u}J0)&edKFcb`Aw1jJ3*WTXf;iZ+Mx
zkP<n>N}p)Ynru~IV^%ksHH{Nz_KefIQj_f2YcArowz}Pz^=Pnmv5u3;i=Xal7tf_N
zxM`*ZF4avpF2WNDsxbrs-T=v`^CAK&{Xg?P$HM%}3_V#z-4@&VuCL8DrxsHszkLyQ
zr37BSK2_@s(rm-9N(cJeI(cOtZx;+jKb=*CeUYE%r*GKcx{&&o!Ino#^Xinh5NP{L
zN$qUIC%5+hK=PkwN=$g^3{BndoYB4bA4o1kw|16qOuK)RTHj0Gn!&7lZKCqw`gFa!
zW8_hJ7rU}ehR+h{{uuz3LXF%vCl53|Tk8Ch|5o-wnN{AU4EU&lz0q2%1nD~{@6>Y*
zmTI#;1z~|uGS7_joW9W9{%GxJ!}p+Fn;=gRz&!xr83*t~uxgs;tp!Cvhb9`MnGfsN
zHcN#!KdeN`PqDt~e{wp^Kj3~jcsC=#ZS-}e!>MQeO<lT;*5?bI$)}7RjExTM9sB94
zy7ysTPxXSO2HeP{-W}jXlYERF;D<+oLa&;IDsmbV7!}U!%iu;DXLqpMDPv8quTRys
z9<6WtweI;PI2-(4#8K+|0{~ERsKs>CyG#55Vd%->0bn&8xk_wv-_(EPRV~nKFd^db
z!>)mAmK>>k!UCe}5q8W&V=cSY3D4$Ej`uPd2!6BVjBe*J4ex-}X}uN_Qj4^6v>6ms
zQ93a-yIZsFo#vF%5QP&f+MYy2VoTzA1l%*->zjxw&K5z!py0UR9>D*{Ajo~<&N+8r
zfP-~I?qx*p=>eJWGCuyUwF2(bN5YX2fguc0DVBF%DLlSIWlZ^6q<);3|KC50O^7Ev
zYMNj3vJ8p_Yx|U4<1aOOuBUv@l29}W4OhH4v~z`n496q&R0kzpe#z{2K5cnauNsj)
z|8t8s1&4w@NY|=gO_TDu34|uzKxm@x-a`H({YvN$#n~BUy012;ym>r7m(L+}td?MT
ze4a(9LbZF4D=&E(aJ34!;bH<E%9+lA<kTBnN@GoUe&^4JyFObJ{ed+?wGFxv>4Q~V
z{Bu@@x)L4yc!B&Qz@2PiDX{ufL0Co5bQdnfsrk>}D0mNNfo&cdup2>8O}ZL-5J#){
z_(F0Y8ll7UQJ>}vsFMnk3j$kZFp5k25a@?!oDYJA2q#C%gAX_T`Hq%s=$$hUCXZrK
zrLe8RZRH@+QzFXdM6qFm*(5o`uk&${9m{=9i@ZWbjmXim2g;^R`6XwEmV8YUN|$*e
z4QF;LcvrN<9@f;<7<P}-s0cOhHE*WZP2l9TaXAcMALto@K;y3fc1id9XPb-(QCEYb
zz=fr6#QxT1WZ+Rjrntto6=T%&(XRz!!-@Zs0GAW;Q2)^vuLq;w`cE1;R7$6YBqf98
z+>ds~oQ;a|5Q<8+jqeH=8w<Thc;X$gd%}+V)-Cd*)!E!SDni|2yh#R)1gPyxzz(uJ
ztcyB}xu$vE)a#qq16<bMU&ldlQa*%l#JG3%%kUHY_{%eh!9ud`r86HsFbeV9cXQvC
zedwsp!XsTF$jjcStjlSi%#7Z8_lROF{ln&!)@sUtFa?)W^BQ`-!(MOb3H)A3g5|)I
z?nP=>QhkWn@lI(_GZGGPA0ku?vcbZ#kgSU1aJ_XY%lRw3V*}SU&pss629by{>3oqH
z?iU0ZtZpJIP(Oa7ylt<T8|7WH8(`)U)U>L)ZlmR0ue@>#hJGTM^z#iieSUaaGJUKI
z9h_fOfwI4k?h{q5e-Ay+mM}lU#SxI}R+P}4x@8oIX9j^fyZ;52$y|g+ug&~!P;XoI
zi?A9h!0wg8&uJdcOMLM<T6G^1Xto$@C+US^LQ<r?cQ<Dn13FrLCO#)nLSX=S$HLwf
z%V9ccT%#7WKSb=j?VQI5n4aynf7Z~#>I!Gutu2n@b#iSe62BRC%8Ie|_z))w)RtI|
zk5f&a)t}NopgZq+xZ7^IjD^G&Y)Tw1D!ntQI*5|rQwxjJ{5x$U?JiWHp4pi1RB+l?
z(5dX|S<IQt6OP#YxuX?&)$7|u)YgH?$188U>>l5t{zIM%^zh@n<vMz^|CRJ1y+Far
zY2++_g$a=JFZ;cdAoq(r_7*Sc`pRr2PX`2C@hC)N%rB8s=2p-XP(S&IB?bVU0JYTt
z)={4d;yZBD{UYUC*9iq-S$~`7^r0wv07KBHdH@b#GM1R)j+peltFp)8zds(UzJB_9
zFkrW@yrJ?9aKriy(HSYt?TVc?voHg3pZ(Xy*1xqx%M<)^P1)q9;~Zv5@n(v2K&cQ_
z1#RH*+{qiU1Fy{)sm{bxTnc0c_;qCu`~hWuh)Ww-B9%^&TZd^+l%?xe5&YmXrqh`Q
zpHB3~=?)wk!+H~IG?$~7f`A=k^!e@F_`!5{{;vGk3d`weGO|EVfhwWphXUfxMm&d$
z>CzbOKN#*nDef3ry3-zJfCNS_@k89lP6EGJ1^xnTz!xjjK;64HDSbB%Pd5hkpkM8W
z=;6`R=Bw8KI9}Daa@L^HtB$uh_XbL5PW1QtzMTjfJX=aSUUVKbmHadQ^5)@T>%l;`
z@TC8-xZY7uc;i1Q%3PrZ6eRcPVl+d0n%Bvydy&cM3<}SkdRsvGfAhru_bF{K*X;My
z@x0mjD{Nv_Y|EI+zT)U#TU{J#Y7$%RSrI;SEdf-Y&c4R~-CD4<w~r(NC{pmnUf`QK
zfy47c2mR@=V5<LTeBk`*{^fQGDS=*`p#wZpp!|QPvvqG$gMvd{H|h!bLu%6LX91=^
zIe~`5--T1|<NwTlvs~gh{u4IDm1Hb*O`+9mZM^(wU@MFx&|9MVy3_y41$eFD+_+w&
zBmwI`)m#T5KxbU8Yc}+W64E?Qj`m8M%yu{DGF8)_#cechwuBq&nFj3OtWWh|{64UF
zzwYOG|F8@<I_I~$rj!KpG-v=0ydpl}=U{d~PgtG}z%`u`_7fv>KfUwV>R`_Fm|dQx
zW;PZSg+$I>emX5En!CyJ;4V7r>xBSQA3So(oFVL+V*d4p*)i^>lBj)-e$iQ}PYwgs
z!`Am8t%oG&XLKL2)@qM}KxJ1{S`^#EAdrIw5`f%;SZ)Dxr;^7-Pv56!mw4uyj-W%u
zF{(ko&o=wj&hVmwm6W#X(bxt%w~e;9R0-Z5#<=9z)f;hKs#_NVz-d<M$@Znqo^H)n
z8pax1LJhN9yby4<ZE+U6xF_F?$B;_G0t^$-plfc$)muLw0j?QBM0tXBM7h&QafHeZ
z;}qUbs4@Ye1`Fz9^Kuw_OD=Wp%63!ILe&-fpNjUwc|iYy;|A|iw?||#T(%5-1=UaC
zb=Qn>YN0GCJp%_-Xm(Fp>#6gI0MsZhDc2*9m1pBg`dGmUSLn~kuj87`Fg3>GwaWgC
z_ak1nfu`o~^Z721PPT3lhM=XfU=^ft(OPjI>Q_!mKKu^#fUY!N<3#5QuOEu7C&!+0
zx?-5?fc-yn4=;~PAPUv0{dPb_=!zRKSfhrV>*aTaP1Pe37=#4QSyER(Yeb$wj835X
z6V+T*5e@z#$hRe-$Kw&j62*L|tI#Xuh5tmZe-042awmB!k6Y2atb-@>BrzWsict~6
z+G9NOiYgHKkO<qAr8l+EP-U%17$a?|pbk3RFm3=I|79aHUhX9Kpm?a3TD?`7slBCq
zWN1{Po3Te#$S6^t2~KdcU>k-dWIFSjo@x^(VC4kO){1$azT%1XbbX}-PA$<gX_t!#
zpXPw8GF8{zi6)G8bZB@)BNZ&iw9=C*csk_ACit}~mV>ZY4RyP-?I#V-5WY~fXGzq?
z##a&_E&+=cLn>Nbr$xsyw%2h-^CzQ7Bb$YoQ&C+CWmAY@{cJlD0)U2E;lM}wowLg@
zOutU`?F&4g8lISa|EcTY->s_Z>guZPKFPglk9}f+06$>mgH`ZfXgG`&`%ce}YZWhj
z*zaIyOb|8~aCd-#W%_Ip7usCP;oaU}uIqE;T}rI!0h&Q9XHT`a6C8T_b`alLWBF61
z0nQQt8EuQ-V!A=`JZHEyXe8dw$lqMvw6(O^^V)!@i~MI~w&{URG6RX!Zp<SQIVyg5
z$Loeqx>A>^Jn-wzLE_dm+1{$vwLgnwLzLLHBSUOOCu#GEDLTLTLy9vFR0xgNY3?7$
zRP5X|Z8y4u-2I@F@@Tz<Ji^#rD3a<NseSj#S-;2v@y(`6od_rTfXkD+!l1PSmkiHa
zwcezHRjICkMTK?6bz7}}8{SaygO1#p6v|iT7D1v6@wNy({H$<kgRPnxPgH|0or@#x
zuJOvx;>Wxw?`zXua{&nfR%79s;@^?2It1mNe7TM%--&0U#Ws^p;YjR`h}`72nrO{J
zk)U5~Z<YRLXZfjfjJ(|?r86TVr72S1dt}xXeQdP|x2p7?0`};93`cP#Z>aBc-}gc>
z!#=}5QX2^OoP2GG)_Lx<9Q~^uOf!b?bW=Am?8!>gavFQoBkVKHW&8Q>`S^%d$-7P8
zHEi^Qju(OsV-qC)-WH+b0j(g22KqLfe=6UkH(wfltJ^ikW{a2Py-uN&XNzQcJ=gv;
z@<3bu#pJvKsg4agT0`4R%KCDNM@j|o{c849>ga9EVFis@SFsoACAZam=ffX%nq12L
z8j&*n`N_)Do{z~UpEUE=0*k#ReA#)T>v+=iM3GZ={@;}zG><=tC?YpNVm=bn1_u=c
z90||exC2@lgeR8<)T7^xMjtkkhZZ5{7hdW<cOFMOW8SBRX5933B8sBaMk?<bYHu6$
z(=~or3Q-gFY$SJW{WVzoQX1dUNoC@i#V2)R-APxhfRG#Om&#ed^VuRrtkiO=X<^5G
zhU$%Oa?Y!Lm?qT1yMy?=y$Pe8=nB5y{W{60yU;zx^hDX(skX04g8Zdb3>-NtYDeQ5
ztX@H6yGCXvBk5y&c|YL#;h)C5ST7;d%K6aq)n^O5cV<2OJ)aJH8PUaKB2^VAZsKG!
z?7UY~yvkN0R{0BVO+xW?Qoszzh1QX`CcELeHGn5B*A!Oe7?-QGdrvkb^`&sYHs7uu
z`p=kod5FVVTlPHCzw-9u&{KcKc*3~fQ^`W-X1wOoTeeXGsDA&Y$HWDWlfSzPCnvw?
zkALNzG^mb&SsmClGx7w99b=yC&tsm-)%HZ0WNlF=<U3u}G3R=b67z>5)_P$vV?ItF
zR$v);4a^ogP>a>j5Ac(gGA&>ZX3yJrsU4l+%V7K)ewnUMM%9V29a?9wOv$l{;CtbF
zMVsgSt)_~np@FLtR!NfdyvQZ1#)S>h-hFO%SV1gC_*UH@9PWOFZ59`?IIO@XmpN29
z#P-@W*CvmqYlW0YuGjh5|GM?znjv~2UZ;yu)#qn@!*k)xJu}$GyF!2BP0X{S^}TRL
z&sJuV$B~8)uNtI)TkVo1R}Sq6no+hpXHLhjg*W5bvs*OJbqbvB#jEU?Q?y6fLCCb?
zFqRglpE}lsVtb;Ew^xiDvo6za?&U1H>_@zyAlG8_Y{9dGaBOa}UdQ@DmJ>*Stj=U@
zKgDllF$8Dl*O%MJqr#)E0YP2ce9^6Mvl9~{{5tWlPEt{-=QY0CwoE+s#rm+1#%FF-
z{LCI%%s@fof?jWKtW*l%I3c8ViqupP5=Vi*-qPGcN~Dj$8%%yPn6xr-TuS|0@kG~+
z6c%>8dL}n)x)_;dK)`C(Z~pCAO|nj<A$&4^YxeBrYSx!iDI5ImYssMUHF@%bE2=QT
zDH6(C2M6%TraRH%O~<+l<+i_gsqww(3x$FPfkDcF(nFX#eL{Z;RT!801dKENu#zXZ
z0={{@1LYNC#Z!;>HB%$pch{ER3D>$kFO$`yJGQ8GAxFX|xq<Yv8kdS2z?qHswd3q;
zLE7dP>EryOp<fjHm3G>mN7dT?gtH@p2;J6B_Ld{R-ps&VUG&^KpT8djmGw{T+xPgG
z*r?P=VD5`Wd(%JdxIwtu*|3_zVS0OY+_BQOtdSv%rgbbJ>sF|X9IKT7vl+J@exlm(
zqS^!97J!thKd0f{k^7gSbUw`7LXWxmLN2P89?8l^R)p)V8RAu=*&X)hI*+t%<@IiK
znN!wNEGP@#U2Zdsy4K&I5~R}^l>zL)Tk)d-WNCMY#9jQopui<I3CTz+C3V8j(L9z;
zrb=G038PB?OE@p;P2sm<8;2>mmv>FPd!YujP#aoZ<)9QM_Bg(p6(lD6QAr_)s5Md)
zi@(ZWGvKDnoKHKFH2HR=ST+04!E1JjQZ?esy>_|lG_r%khO9kU-hM|c8XS9g{4r6-
zs6I?S=@8NP!}7<}`!9A3U%7I9f_>jWG;J#@c#<^vK74DZA9^;gTYD?R#CKr*p6Q1P
z@+-IPiqVki<C9yI(GwBcY^&{zV5s<qZu}Tk^(vjL0JmhYq!(zFqgS?D>`mEqr}ID#
z9W)y8u{iF4Rp3dEjp>Yg=SIMQ^^bH{`j12dSZx_Hb3hj$M;@`0y{a6RDa2K%53f(+
z%Qe+fueUVJ>lWxkah1lC>TJ6$_Qo|s&TUY^puKMlST%IL=iO@qi8_5bsb_}FrXD&w
zSu#;Zl;JMjE^G+aaSB6Nsh3>ZsD}Hji;cC|fyTEcB;mTo?4GSvk=Dq_&8A`e!%*sv
znj%><U1nY>-*WAcSyv&~gr({|0TjDgSxFm$a(mcJ$nZO_dDd)ODEywcYm8z_AN9xd
z>yn?=ayLit^9uBt#mwq~0si&F^>$G9*oajlTC_r<GD)1h-%`+ZVzaI*ODbaMx9|#f
zl}}GeewX`w+5_+%-LE@cPCnPb;*Jb-0#7t+zrQdB$)(Gn3S2TmSoVC-Mq3kD-;CTv
z(b)a<C&RyoD^*>)LLJtYbbS*KZWeDV&)#(n^sGAXgMtdASl}BXo{blJta<A3`UOmf
z>oz!w?FEK)go-!R9Vc3aLsH?y&MyPSHFqWu0*zJ0QaT@SHVA{UzX2njKS!{U5sh{x
zDMO#o1#^`H0R!vfbe|D#{9t)bpz)Ae6B(54YSi@_Y(oGK1Zke6<F;_eJHf&<Df0=k
z3(iVYb#QBKx4A_%LrpvefK78c;00xVdmA0l8uR4``iXb-=kWqT6zHzwTYMHxsyGJ-
zeu|$uG4DXq{5I-|+e2!miqjRx0l%m?-ZX8b*khHFOniy5Rv<-l_>jK~J?KLy!l|^s
zEJoX>y_b&ZEA>5Q4Zx);x<rc-5FKx@c$|IXtYu!w4m}tM)ntUZ-_yOsB`uLITN_>I
z=JZjgJ!3Xglq#P5%~%$2`s`e8!tPXjzw8>@Mv&a}A^va<boU*t%n%0Ig3LZUMD#4*
zp8fMd75muNX2y55q`3!h@5=aqhaNw%aVfmrsSH^+xBx1P@hHEN(o*u?(B*}@#%q+F
z`8k32W#2n4Ah1mE!X6`H(^sEz>U7i2iUZ(rZ}khz!MZ!fJ854Y+|S(QKL^r(TD){_
z7Cr`>%Dj$FQ)YQ8UTS$0OtfQcDsG-z`4nHQ^PVeHmuR1mDfLD(zFC%VcTlrQ_gyLj
z(LiIW&=BrsQj9nlwlFiB(eE_F<!lvK!Vj+a!F#37TTNodMZtDPI<EF3QwF=bA3EO3
zjz6B<bB1A@=MI;iP83`PjYb$?LS7@?FOJnG*j1%9GnbM^AN80GK;5)Q$yLL)JMt@)
zyn~_<?i#da%uC&|40ulN1UQ@q&E+JDto5nR%rB8$vgY2KXb1+zHa%L=8%j`<s%NTz
zs&><X${@Y=c%%17^?N(6u@%#XsF+FyS-7gjL$Qqjn?0?~p^*o(PiB@U2<fUZ^FKc}
z_4#p#7mOi3@LRd&nf_k*FtMtdUV(KF0JEeDJ`+SpILI2vH#z^wpEi0hny^`fO>OQ^
zc<>}dcKlu#Jx7NBr<<Uxpe0~6<n%9A$JO)Mtb8XXY*LEj+&29f`Gqt)W7x!Nn$6v@
zQNkUm`L}rvng$Eq1~jML_J#`_Z_(b9(=?YzDgE1QuvhUB>PG7X*N79DWtqM0HdWGh
z`|Cj(KTUlF`w&SK85c+(%Uk-3LAVSuy(PRNheVUiJ)DPYpB^VpOF<|LAAafVfN!Sf
zV|%7FwfFh8QV;VSHVR>v;EvOO#UIiyJb|?&K23T&YAPXMV8OoKh~0p?5ro<gb&>WX
z!IATB)2RA(9m>ZyF9OGE=LegY+{!UxOsm3Od$N#_`Is^A<qo_E${jm5*ruHkCbFj)
zLr$-yJelF`*)jBL&9j|?2N)%CH^ScJ9_sAf)IOC@?OdR^8x@G}V++PFz~~~1)xdT6
z9fB`9zK2U=&ZhvS(zG$$NXEx##td>BG!zf2ONb?Ix)v|=u*{Uo`XG!mdXm9qy!72`
z?vG40&gdy<oS+dq3=BT?xFrH2W<kr4m)T1OK27WCMAQ%~_6o@H%l)bdLFMkNhs{Di
zmB`bg4;SHl1|H4ilGPE)9z3GosWj%Ev%L;w;1L|FbG|RZN>9Rbpci(6Irl7T1!}tl
z)v*2a4WASHwegrC)2hNhq7u8&@I8xE+|UK3f;fdhhg=ET_}up^vhXDO3U2-p^n&K>
zJ=y}_1Y;k4BpRo@LvSX*=EOGr>YfM+_cUwE>7;tGuWlqIn>0x?^zDVwRQapAjiD}D
zt6%Vw1$$x9sLO!WxRfr13CVW`XN&2sU<%3EaeD?#e%w6zDqAb9Vzw(7q}UP}hrObQ
zeOCBQcLgLs*ZmOR8S!#WW+iR0x<iKT8+Q;kxWAG+Osu!2%KI%nip%GID*qeDxK}IV
z#S6uMXjl81__=jSZlOP+A&g#0;f$aTVokR5kwE?VB$6dQTX{;81>a@PU~*!aqO)ZX
zSIIcwqr;BUuV(xB=3YpTQkSx$q|T)}ZU_%+e5Ku^++u%(x<6NFhflSfh;wO-Ud1AQ
z-V-9qFpJN6wjCZKfqGkHJ)`WnnKXFxyF%|+>kYvU{F9C0Yeu2rh!gB5t`I=BP|oPt
zyGz%7vysKB7O(=BL;w+YE8z3|w6FLrA_wt_#d)R}iM}JCW%Tv1$nXh@p3bH!WnzD6
zVPA3;8lfR_6l1$>zOMcmNixN$jZ{Z|g*x-8jcw&D7Dm)MwaK+QYE*(>=OJRTh5UYH
z@=%z^)T<%CQMbfTXRWCPdE4Q14eb^Bqs_xRfd)vgulaz&-dNqpi~>lROGv4bkbE_;
zdD>K-s(w+Wb!`;{r>)gg6YO1{Y#;`O+b*|a-qvf@L5D9UQp=E*n;FFy;>QRLgE|I!
zG)C#$4PFJ<q7_W7Qon9mzG}tfbB`(VPEAhdmv@K8T7e$M)`lsTddM(|sKL>bLDq2z
zsQ^UglWN-hqO)dTO`acv<p$Ott8Thzu;IJVq(^iSFL3er7$4+a)Is(lZEC(bvW8JM
zV9jE38<R{hDb6YSF*YNhGgeR}?wT^1v@(UykWI<h6hjckuRiBoJ0n~LH!!H8?T*#F
z0D57iaX`~|!`UN!+h4?p3YyN}Z@tCs=j8h5`g)CgRrHuHTj-d7X1uWMR{MfV#cC5?
zyGz|YG$-;khmk;U1ky}E=vs+&yaq{*t5(IvpUHX#o8<b1x!=@n(vy=vbVrsQz6l!%
zU3uDRkP?~yL|e^slbj>%B(NV7iEMXQp=f-DeyIBsM!3JSKlqN%hh-$}_$iNNU#WF;
z-O(g!1S+F5^Mm(Ao?Tl<<Y1iyqw|!%2j^(xAYb=pl`^hkMPXf*13aRkQDQmjR}@h!
zGPe|1^ws1NmVP9GwDQa%<!A4I`~fP>b8}W@OLd?nB(<#j0By2UT;)91az^niD02Qk
z7}nkv51ju0K+=GvKNa);j(@nL$4u*TPNZRI{ZfkkAS%g3tkNH}8o?ZIuoO`a666T*
z>q#CeOri|D6H0B%U!($wgh6zhR!du3+*=r>X*r{=8Te1?M}o}AU#zQW0{?_?U;@|&
zJ*qVT4)Z5`Ba1;cXtLsCz{N8kqGq-=f7oS$1R;PaFq<LJ%V&7chyT7n1<HM`;ZEb8
zh`iEv^-s%(6n9)iH0YE11%k~G#;z{<Y}?gjYio@koZAI-`WMfD%zFRj?flZO8M$)m
zfJFVvBn*E3XtgE8QICn=9L!1A3*g7&ZKpJFh=tCm80Iw3OCCT$KxTryc5G`@OV@$S
zAC@oH9;z8Y@=i(hp(sEi-b$1K3Gyyhgik#H9w)WQK6}^?cq*fY$7uu!g6OyFz;Hle
zI!|j(?+}4>8N!@iIs$>z>4AncARov+Gwl6;)U%*i@{4h*)Eq^}2n%tMQ<S`dbrayS
zF&$Tc2g<IQajw0U^xFkQb^SkLx@}noP+WdKaz#?JLkang^(SiUe}i{YLvkfK!M~~K
zCCX|@t-!q@j$j5sIsu<<W$ve^J(4d1R;KPW18u!_E(2ioMpZr6CAlf)lA<Sv<Ra1k
z`WVamEsm513InGTP}(MgL(3FK2cRF}F4X{?eJ_1TdcA6B5Fq^OkAf1P?au>{{w=He
zQ^-w599XW`C&x#`L?b5yu#Y+1f7NJiC9MWgc1r$Eo!Eru3XFT6b~S4Tbik&{kZ`Jg
z)t_|ey30n+{d=GHb53JWMardsO5g4<`03RLklFMvp@uuNfQM9|7O<j4?0%TZn&wcD
z8R+Y~aC`3Ag!DDt9zG-aG}q3XNP>2OfcF<Vro@Lo^o;Roa;MKPGc$ap&W@o7oR9<x
zqz@{kZzD9ht<~MiFCGal`}JJliHw~7FyA<L1o<c7w)1a$me0l+<s$@m%wM$Oe*K&=
z_y;7KiJEa53u?B^0^EH*;5PRVv%}a8i&zac7_43Nzt4{{8k|8-%W?!AZhfA2pc{P-
zygT^E*-)2@-zBx&Y3YGLexrGB7FBR^x^y|0glt^A{ef(pRlbCp^g_)GnShdio<9}C
z>FvF``*~4HJX4i6{VyLGcP{NrdYFL2c~wq72o%f;go5|*ul!DC0`_Kz*v1XR@9!R`
zfW3hnM3vna?Y#f#pAG<-fp~0719#95X{V0%=A<>Q93-0-Qr<F~c>lKg=ELx1XW`^;
zDItIAWcOw6^vNp4ChtWlUnW3jObuq9P%;JhHc#^h2AxlKodx)S`&_^^90>P&@Jnba
z!?S>Y>5y$y^m&^>CkI3z|Eq*Atm2&138jCoMy$fD*SB)vrs4Kp<}LD{UK@!@()8nu
z^6}6RW;SUDc7<4WlrA9F^OtCU%l!QMxPoORAwM!?+^*31DCw*%N{vi4q5R*C#HBN#
zE?J6{gb_6WPE6&P+KJ_9E~F$LZV`^%@uDR%`&!aFT6ExtlXrpXwY>&%Fa)n+n|}S)
zeWyr7TWroYC;UTrWo{>5{ikC<e)8!CKP~dK0Dn&Pn;OuW#i4fF0-d=Uw}%0EFnBj_
z`R!)lUL(<O?tondAc{a{FJw4buTJ_}*xTFt>1dqvZ_(zOz!8iJPpL+1W)5XehYM~2
zw3k!!u!>-o)J%i^nepE63<*d<edGsN5unI`)h{GPVFCfn)~n&<_#kq$)gVr&D0+QI
zNei4Kf*EW1pie&*(t6O?stoX7in$nZuZ^@}$M7z8KfVB9Ga2d!o~l<hua-W)@0Frv
zVAM8$R!LtE$btqN_j_eo+AN0W24|DrB2-WXv3wsiFQE|^SkAlM7`0(P22u&jk(&Rw
zGr(pt_XCJ~f>Z0!u1U#TSlspESozh{c%gt!pvmQv^(h?$0`*Xbx;$4rlW@0=FVgIG
z9s<xLQ<Xg+`hNKcf&XuHI_YT5`@iGWBC?Ey!y*vFMo#tC^YXkM>S&{{D}e1WiSLs>
zIqY*=o2reSJhdsop8*4Qt>o4|N+7@%wUG_`GcO{2LYD3?&inVydy6-<eWexa_j_%m
zDn)QvaZT|??ri_<K;u($IOWvnC?w#VJ}@m?AHOlz8q^H7jJ9oDe`(r8LYA`n#htz-
zik;!B=uiLWJR!3O&NFeEXbB}AE0f<OqUF>-2?Rra35nfXsk1jvRM9veP0IDpPX70L
z2PypvHZP$GOmP!05d!$l66b(b`6Xw?G$5zPQsCb*>T`0xe|+cZfQk<AV1d6-flIky
z>^~jTy$H!=8(<GvZ3%v5git%>?SUe4gW>CyH~lT;Jc_td(&c|`sWi0a%1t@TEE+8a
zR;T&}oQpD?4&6zB;oe?MP{W2|0&@MqC;vK^8Dw3pk%1&kRt5BOpVY<tn}q`t_xsCH
z6FN_5#xy`IVgT2Y9Ru_h0|LJ`0LGOx)Ei($hTy0`W+M)cjwk{D-*m*&>>J;2w`V^=
z8kTdq3DH2F@UAo4m=COA)x6o~@9(f7fV51&w(PG=`hQQw$16jW#68y(lS~7B@bIT|
z{_YFHtMAS`9Q5`e^-M%5+o3DD{eRsIkb8r_j{Z@R1<tNtsF@v3OsMTrnN9s&QBBus
z&4U=QC2J8zdl6rE-cF4*JySa+Rc&IrE85lczNv6fG+>32j<nqGg}>kO9D{jX)@{+r
zBDF#53}5^Fg`+lUV5R~II@w8ei(QVsJKxW~;rc_x@mFR)vh{D|_OB3nCj6i)0Ey~e
zDZhgi@Qq0e*qyi`hrI%DCA;~lPAUE(*N|_;##F2yfoZO=Ci{<uYZ@%l4g-cW30pTG
zfy6_F?93M0!*3)6Waxy!p|jOvCgSzFnLUt3hn&M2jeL)2tX>_!nrL#2e9_T^3D;^v
zn3M1o8seHJDe4(x&s|?~V$Q7oDl+4G|ER*IKcib&VXjQfscEY-ocbknc59(aygPf9
zQS~<?J%(fD75YYv*XHcx^GEd44x}SrLb_Lm_W6~ot2e8QXkBjD-O$A3Iow3XPQE*T
z?Zdmp@b!wGJGlsMo{x?UUnSBx1wR~Av^QM3pL<m|7+!V@@K?%SEpAYDYg;7)wsSew
zF&CD&o8~qA>*BEVE6eB*fewXC-k#*?l{`L5Ehg0S@{WS;=j$tPx>i|Z=RZ36No5qQ
z)&)4O)#-I`PFP9)bZz`g6sJxaHFoO2*9o^}t9b-f)1gYsr}AJTQ;Q0=9e?^vH;CE3
z-90!G-BHbaaZEY6`0uoa?zsN>nq;N(0T#)Hf8_GEi(oJ9Q*ke$+LvxfIv|{SlSt^;
zK`l|S(ug7WjUJt?1`L@5ftA|BAq^76mpqzEsFif3QLCgFA{yhN>dIp>61u<-vk{%I
z*AIk*#7Ek|{GCi)+hn&IjzrU&4i^G$F4(S`tTd1%3&lP<Hu6gQ)HV1$t+9bwent;^
zwyaxMLA~$~)GvV5@#buNxo%(JPCo6b(Al^m->j80OZE2y%@58H!t{r}4RQPXt9LTj
zi{CnKXO<cHrf1v!7kclgvV|KeKpu<)Gn!1szaUsNWS|$BVcl?T;>6`bh8mT?>|5Xv
zRE;Qo#8=iL;s2EjK#y_>_!)4o=N;ek6$U+?_g>SkU5mF)66HFu?)!?*)r~2Y-`L*x
zQ7z|sWA1+^c>);)-EcU0I}foe#>2h!*(l;0ZRk(e?psCiMq?9r>>?A|#n$lkmQh#Z
z(nFQZY-oSQOGN*h@*Q{Wy`)WpMl!K=5Sf}jxZ|$Xuh1p%RA(e4a|i(7uT+x=WZKd>
zNF-~zUJI8WpJgp|QZp&{a0*WT^(ABq(yePp5-V;n@kt1s8a4JyU-rH|_Kg8!A8)!-
zxUCZ#(c`0Q+@LD7>@@<v*0Z^n_>J4&gy6Uk>6C`6g?(B-F81}JGzKmN6bVJ{#NRkz
ze=wSkyE7Z2L+M_fcKk^yOkXjuF!0|T?f6}l?kugROT<o}qcx|llN)_O;iHkfx??t|
z%oWtOFK6hRwIs0oB%pkMYD-&E;$Gli%J0%E!Qzj6>nI)hNouJ{;n;A2-_v`o5Yzk(
zxoc$Yo%zA?zk@Zb<sn%fk}3Au@&jVO`(g*tv{MMv!cN>T(~})jfjk6*0Q9$SmS11G
zpJa%KfahoFf`gywP1-ICnrZvq&u@9T9F-gxQ7Jaep)uOF#fSP*V0j%^eNHzPNj3Mq
z&Ik2qEA@ToRN`&v#s)z2jP~7z)<qi4`e(MuKgk{QWYw-6zA8Rk<TvkMeVey?v}v_M
zas7BZ>oT0A29Xy#D4`S@4y_JsyeDuoO}aT~dyXk9fAyek)3v+s+0GnQYM++s5Iit;
za=*}>HdmtVaK5pIr$q!B+w%=y>cIe+9a7n97kyv8!P>VzNYueUq$jL0JZLEDazX85
zpnfnJPQE|Oxv}|S?7nYY+%8{4#^NqAMY41Imi<MgNF%g5s73@Hht^KL(!R=OIz-i*
zei8LMCIZ0?mSw+OE!Qis)eu%H?<aZ7)MA!d?pR2mxz6~!j|BV9NOi>_1<w+m`!mpB
zIMfj*pnaO3C-Ca#lL%8{n~Up1=>{jt#OQg04R`AYdhfRV6XtVmkTg*iEc8yq+%x$G
z%eNG61NV3dv*Z<$4UE}f_~xkltA1VSsk^?3hG(`9aI_Z4PzZ0!KAZTS4!L@&ms<PC
zz^BAdjhjB8mw)&`eUq1`f{aO<V8Z{Pb;B{Gm&4J}zWmh{+`UqA4G|j;q41<<76e?f
zowYMkzd$GPr;REk!S<uNYEOZq%^hn2+vfW_!J33NCq2<hi8hIpscqShZeTVzWV-_E
zrnR0h7>V96cOJVML{beEH+0=DgRE7M8+i)(lB)kk4r=%czVgVF(^ED2Eh#wio|$Q&
zGHXNB=4s=zVC&G%5SfAbvBctM5`qN(#mJoD?)4KLrpE=gTpcHb?pS^gpA_HBaXAsg
zc5P=B_G^L6JE&I^>ErIStEBk+jWYQ7y>@GDqyYGfV`*$vK&juSubYNO{;8Nw$I?je
zIClE1&i&6^E%C2-5Un$B(dVx&p&-(#(tVd-eQB^S%{eq?ZrGmDrKUAMv(!}`;+Ar`
zA4XnumNb)i%J21}%m|^U9O*8Z!d@umyr<F33OByD24lAhEaJT^{nLWglO8$|Kc_-(
zO8DV)Gfv8sK}P_4h+>O<YCtkhj2DO*76~oE2_OcTt_8RgQAw%@^6BNF>+WOQ^Y6}9
zs#mwkWE!O*2EP-|3D`N;NtNSy=HHfx>?JTW6@m5Of9DTPQ3M?}$-O@ECuJ%-xOT^H
zie)?xB!5uesqsZ8W&T>1bJFk|jg^$lXF<llmB+gFVqmY28n1wxT(O4|vkbdeZQY)3
z%fO6(p**B{>Ert|1bGFH_6~$0S1g$ai&vGsXH7<Oga&xAPv%(-{C>An`#{$l*WuUb
z@A{>`{lAL)uBfKEw%drG4N*iXA_5{J5C|Y39aIp|AV^E72_PUM1f+!C6p$t$m{6oj
z2_+DulNgF9AVGRlsx$+H9+0a1JHFp{{xi-v7yrc><K!Y2S;^jOt-Z>#=6vRiDYf$R
zu<@U09Y@daaaX$poG%R&cEry`IbFCX$7`g3pluz&#C2D<Y%lh3VZXc0eo07`6a8NA
z?|s<E5*8nPFvF8p+u%!8o+O%an=|=cng5u}=Avr1`E2m01}nIe<EzzWWU9C>|L47B
z+ET?rMEUeO)6t2~-vuWOLk8TQnW}E898uMs>$}k%Om`K_;S-2i(TLL+_SrPG8C&qY
z*io7g$m=bv*QS#@iQetg7<@zb*iiAE0u?yaN_Frl^Cej<w2~M7!js1`@jng?&VERp
zvl*TBPJM#ywC_xPGhOXL?dqEPvmtpX{kv=RK(DOg9yb}lVXimgf1dsGXZ0{>kC?Sj
zgs&I<E<~blRo_{@;$=)5akIkotp!-}Zp(a((QkUXE@Of2^-5p^rNombrR?JPR7vlT
zNgAA#Im@q>?n0bPy3;Oe_xGU9$hlr>0lk+i302=&@orQGWMft|-8jIf<Wl$=y38Lz
zS|QQQTfV~t214SGKZci{(;_nwl+<YoRQvw5A66?h%%GT~;cKGLxI3+Hq`K%MK|S(#
z{p0<Y7vxZo>A;U0zgu(Ca>gGns{^FNz<W)d&;F$ETcb&bgq4RqlI1JLjUu6-_ssey
zWf)Kq3pDechVPNvS)0T<9WMKxuZcnZLsz}pzi#u;lSDFg-iQSRI`<~xDA|3<H~T4B
zalQ{_O?lk}z=QmhD^2dbsu3}A%u}N8`C;-RlA!rF4eZTkn2)lydzCJbY1osSwLShn
z&{4IWoDk&h4Xb0O>t2Y<z!8WMxwD8P$E_vRL8jN=CW~m^XSU*~1cz4kwGCYrs_kr;
zh7jK-iN|T=JI)P)y+_Qx^c#{V+KlP1is7N@C(N9<sz>n0|5a><G!BAmW{GY7y0fwY
z+5Vwmnmal1>eex?4YSoP&6-?NO^zJge1UW5G<)+aP2Hg}<M-zzI2#`v7;Z;rYWOXb
zz9l99z@dFwLpXmGt5bgP|L*0_2c%*ASt0>K`OlE{&oUj%fgY(`(Y)CWG~%jSmWAoa
zPwPS-)@IGpu;L0gvsuT5@A!?)hMd5<BvD|7Y~OeoG{70L=3I*Z0L$_3_3)bGlpx9~
zTrjEca!Xr-pU}8kgC(!zlO>)W-j>1qs%Zz%G#2)5(GBwXKuLGa=64@YTc-nXSGQxv
zs->u9jeXBuu@EKq{QWA&#&WZ1)Q9BcF-`Qc%Kmj1X>_QQ(s1pI@>8L{8ttF-I}Eo;
zn2&Xxug7b2LXTX!_WIEvTCxH5I+-XxYjuq!M3N6kvwJ>$;)m(>iJ4<kdeF319#JpD
zwY+(5vG73AQ1pWKfFnKW!rrguEAR&Qysy4fuVvBSUomH%2pA~e2uemx4{kBjXk;sg
z%$IR(5NW$=)8r$#x{arAy)yA|7`9r3H2;08D{YO+vq2SWYOM<BiYE8PF0|}8pV>g-
z)G{U4W=e&`3$i@+erZi6j<yK}kAcXPVjg*^VKk8gd{)8~C%5aCI)WM^R89!jJgr<-
zdDZW^Yd&GwWg5Ir=F*Se7#u|Ka6bydQ*I(>HZ8s4KFIdu$a*$vX|^W?wXjXPQqrdB
zpoei?V!XBX*o;28@`evJf@Nx#KVek3$KX&je{HEFn9E<8D3R;$jBHD4)b$VDy(7RP
z#eX&_oWB9as(TC6UnMw`Y}Y=RSA3Mc$gc;taQcpmc+kDtC@Y(-D*#yqH!T>gF|s*r
zy(G2Zw|WZG2r5=$cHBF^xv{)*5kt8mu|9!5a_-`B7<39O9{N7O)0H++U2z$(5-FfY
zn5+yCeX`nMh%J@g!(t9=BU4^DJo6wOqU3dAfZozA%3J#aSuq4<+Xg*9alo$S?wfDg
zDM|ORaP!e`N-D7AM63qT{8amAI0e1@(U*5aEMP&N54s;=pVO~>=ZHth(w`q2)L_Xa
z8NS{1Aj-xM{+nL1@@zCtN27-|k6Wzjh`4m*RvBM+3FV7y-@dxlbo-Q;-a46LdT7rp
zeg-7=s>{qPkmeUo_aB~9&{3v*8W6QaqbH3euGeU{%&3KoI(wGGc;%|)=Og+>+6ofz
zeae%&UGE}~^1QM_!f~5DUDV%s3pzbRFA~%4FM$@q-$j%w>m=-CSJP6a0ePyn+pJ_R
zX=f{BNYOjRQ_TyEiDQ?lx7@5S^h3!{|GF71*)Tuj);`4{fW_G*vOu-7$f4QNJ-*@P
zOrk_nuVB+c<lFa#^SfaQzSxg)3!fI(0)!@O%VkzS7Mn(_rzVvxKIN)6>!~!D%FWku
zTi|vOduQiFn-WMBkJ-Qlm>R6fbk3VrangRjBP){o24(t~!%VW!+@C#g;9E)(z9i3P
z4y|3ci{Zn;ZP?~YGCO=Xiq4eLR)>P}OPiVvyJ7FQtA4ZR=;*`$GB<0V6i6(G>WSH`
zlbi8N*q0j!Fc09#qVJ|4DJl}`_|nUm<1y!3O3UY8g;iLG_UWL=4z1tO;25DzRv;ap
zBm3+tK2N{hq1fwkY|6L2qT2a?2K8tq%cwq4rKI3k=M3BOC4#(*58R<<1<eu?q@W}{
z%{c7<)Od_Nr_~d`cB+J8QYTzXbc#9NVsULJDr+YSE{zor4>Ub)aB?{2;Jago#@J}t
zUH-InZG0+3QjIWqDU5>98a-#<znY@OAA_4^wnqdN6A<it<X3ZMhB<qAU}SycCZU|i
zJ0N(Wmb#h*|2DAyWfeKIZP<Rku;QW3icOr|`$vmM*u)}Xr%7M?;(kJAaPAArs`ISC
z5+h{0&DR(}4J6hsgCJsmBr>88Ofw!?E{b3ZX)2#}v)xp=ufP4YO&YEzV4V#_mo&JY
z(<DmHs!DDh7)Kao(7r7gYmWlt7Fu7A*S&1d(pz`%*AY}7{ffyOLr1Zg{*A4g9v^*z
zCqeX<5+B41wedQle6XyY=Tm4d{25s@lsf$#RTX==l5)<#>|4&|4yp49MM30)>tLUn
zF0<Vjku!mwDC~=(9dcPABn-7NP{WIUSM(c>)#1ojs*y&zS9TVpH5~x!vN*SxHs5+$
z8*~tNbl~S5Wu1e}wCs4RF@!S5%2>WsgwP{jyb|;EBwN_T#_nAy%b<0x;PPr`IP-pr
z%r_x~=^3x1o9Y+cZtHH>sr+j?VBx^b;87BXb$y1mWuZoQcHNKIKgsY{#-^)^Cff(Y
zG7l&kuPQfL=yJz?&GvY};g@b5Elv5>A(-hziKiG#e<n_49>vjgVghDujQRH_^Xe2D
zlWtDmx$U3z8FC4VmdCTO)!ytb^G@|OxRmU0|D#dhx0XTaf`x25EX%Lyb>rAXm98{G
z<^I!te=<sW(NH3v<Z2{=o<)~<H^dJzCNm?qSn-C=1BMue8T7abKU9>Pll<}z?PID1
zp8P(VdT#MfA=fLbkxc!vy6FxL$^EhL&w>l^It+n8|6`Y#VwJ<*NH7V=3@wa{3_P4s
z)7e`kMrCe0Tx-<USk`)jV-2dGRb@j;k5Zo4_tP)4M{p6=ndEP{k|yZq>J`+*k9Oa=
zeBrN}=8;&%FNQJ@_ukd#6Hi|#tJ=2@4`A~dUbNC$35aS4Z01f~A0-JSrSdo6`rT&$
zpwC*LNg`o}L&3D#AiQ^K@y@4P2O2+Fn+x^*w?UUdELoc1FhJu3YWkt?ur(aCJe+hj
zsqYSVSh@A^N8`#7VbH774EqehM+ot-qDMl#4ZSrSBMmvrFE;@Q5Dz*%#oS|gP1l*X
z`6@f$Z)9KLe{ItH`m}D-5zxy>OjRE;H1N4JKoW$gn?`ZA^t`x;f{R$lx-X=l#g0H)
z4QlV+0yVuZH&mb<2ZE!RQw;Yd5PLH;?<ACsMoI>hH=8loW`>yEgP6@6ZlVI9cD#(-
z>{pp#>ZV#NIfhKtRrT8s#RN>c>P+Ict=Y^eiYwuE`F%E<y;qMTnI`v}eGZc%|A-M}
z0r2CGPTVK|>IJ3M$@6920f_=HWA^z)&#u}SS8K;MxBj+bFB><2eAt$B4?<5=<f$X8
z=0di2j(`d^Vj7=B9a!yzTg{hT1cGOy9eW5I0Ds?~%|6HZS~^$ts~zt^;@8T$Sm+%?
zpJjo9czJ<j^}M-(Kyffqscc49=eGak6=DLk=uIN-eY8#+d&G8x%*3iL{9(p$gSUae
zfMN$;;j+VB8(ZL5i;dsNo9RlPH3@(lr%}u+er_;<Fh0F8NQ~O%J67FaEPvy1D01+s
zgA#$xNR~}+1}f9kpRQ$=9*yB~T`KhrGdw#}E_cu74f+A}Ev8HsHk%jLGS|sb>-gcI
za&|4?l4}n{=z+&EEN;4YJra@tmqY!Q?S0{x)0~3a0M?Kd5BSq%BuzH&T8&#Z4EYGq
zCRW{9$z&vD0fZ|ER2dpBr2&VC2KOE_q!_nDMeJ{!hdfde&exAlv=k|Qeg8<sV9!vU
zZ=|#cBwtkX0Vhe$H}+dI^&ue}46%5SuTW!PO{4t79>D=%|0Rakti(NE7YZkQ{Z^4L
zRgr?NdDe4tPlPP~gyhv5Gl1c2?!D3O%58tYD)H@${IXM`VTQ-+=k=J|E@$=YryHI`
zabq9!GW~_zLHJ`p?Vvg<mlk)!goJdU30zuH9XV~s>;p2`uMv$}JpxfqQ^!zbk=SwL
zSaumAW@JND2tvWr@}*jjxk3w_Ju@0mzl}24lezK}`h<1zyTm5Jw*cfr)cYU4B4n_9
z=1YR0@Z<aSPtV_SR&#%jZH{n1@jeL1YEwa>P!LU*PI{Vm8l!>t7Up|%8C;^}z5CVz
zVR~QoL^^=80#E{K+WQ2~?YTq@q#!VmtBg<n>i(W|lErfVLhnuQ|69(>pqLpiz%8@+
z`8!{~z@@<g1$M669NwxsK7K2!6KQ}jkyTU>_)17ZbIk>w7rz7s9@D?lL*?#q2aKPY
zydSRuC`j>#J0@K^jpf@!%=k%b21gOH6^athPS{^<%u;^=p9NHoo!xw`K%xS`P^$yL
z$Cq)#w6fK2<+dBW6aJ1*!}|~MWet8CrH6Z8ZW<j*HtbBdyIM)cWX$xqiJ_7$-P>m`
zd~#GiG38@x8qAKYXt5>1+dS*LXeobmj^_)o*9IxS>T?o2?aU`+-;@1UQ1^-zIQ@v(
z4kP_hN^aAi?YdP(LzMV>iS_>5xDLri6@*(0$D2du3lKB|Sid|BVBf03ooC3v;jv#=
zeq7dVy()(*$_5)Z4Zp0{v2b6Gw|@(mc6<B@uM9VU+%GxBve-FnTTMmNWBme_OBi)V
zAGv*03*$CCkod4vfy#dhu*q)@l?ao~)VzE5dr6DM_?oh<o9b{S3$}1}xm<<(c|}WX
zM*+JUf-1{C+$ldvF0E=&(7C4;PMnETz8;<Z`YJc%Im-U|R(`DXlRS3jf24xWY9e7C
zSHdaKr1C@|djm>3M$(KsS5rbb{?onnN@)i>04BPwlZDXO&x3N#$1|9~`WEz`U8+2?
zUz1x_Bpj$IXa<zr%OYyg%j6JaS#`k8`-bTvl?BT7pkEW2XW71on<REPUSJjsHzcHM
zIWFWX^c&l}!u<Sm|9HFT_W<PjqAAzh!>OCYJ#=<eZvziVs>iq3)xcH%`oOm-z&+~X
z8RLpkQEo$w-5@<j!tljrW8OLFyS_11Nohg*9zwF0^57##bS{3bGv>2TIak}NZ|EMs
zfuB47R*p1Vy9il7j$MI2w9}sNKTp(IZb{>t%-b~Kxvw67K<+@g!GJ|7z|58TkXh}e
zn$^P7j_xzYa|!>FM&0!<;YM(k51vdVFB-5P!}1w?pS7)xL8@YcW)J=NT*bmNKM4Nu
zD(227bs0v70G!rT`e%;YN8qs~J~8^oI~l@BkuYE;;Uqd#8A{W~fRr!f%rr^9Uh4PW
zLrE<gW!ftT9H34%e0v%w2B>#Hh-nkBQ9<`JVJ>9>bfql+Tfy_qBK91Xzuf|m&>$Wt
zKUCoFjBR=x3jFTl*WCXU1HA^~=@S1>u>v69zIX(IQUAM<g{(7#Q0GTP!U2Q<c+I?s
zT{xl@hEZQHI^6qYBpoY#GO*HVm{8?G)uRBlw$=mo?YEf$8|~rjf<PRcU{LYz`@FgU
z#E@*~vH!U)Ll=AR9}%p~@74+GKb2+p=!OW<6O+kyQkp^IfQ%L-%DAsJz|S*@r_#G`
zWnE<?I)vP5y3CjYjD_OA{hgk1A2XGXILo^T`53tW3w7A=XOAYFr3Q%dCvNOAz6><}
z|1MtqKd<!Pr1w9WB>!{a<o`<_V9dWGw;_N8(@g^m6lCJ~Z!xk_lCEwN5Fh%wGL-#e
zR%=FGbQo*a{kF4wDk*?|(#m%^>Vi!DwBOu|(-QYg5NH?)P!Q@x)vSzxzn9x;+kcmM
z!{bsX5V-S+UvC@WKeH(g8HHk>-i--sIJ)BPu&Cb@v9k04euZb&qEps#|Lc)r_!ve<
zrl(gL5C24^ERy$(2A^+MYuu(}&XM;P@%<Uz6GRA1MP3$e@RIe`!J3z_QK9oooOl_J
zFL$e4UGe_4GOA{~A=KgCdK<|!qDCV8=1-I8E0iCPfl&s;BDd|1i~&g;*N&hIbJQ<(
z-+=-&D*dzJBV#$RU`hrVh@tD4H~f(7F?tRYJGO`t4GaFh+dP}68P5pNyObw&q^d1i
zW7lp1bn5zSiPo<<aDgo~-J>hdHaXXWxq!Y`N*fo5b_DBrFS5s%d7JM+hE)QUODr{K
z6vGp$n?#o8lC6-U4x+rd9?@3R&C;Fz0o9(}FWvWpBHG8@bw}6synN>^Hd>xB8zmap
zJJCYp@G9vz%GIAnRLmi%3LQ%;w2Q4!*()@<r9;##9=R(DsXaPu^VK`kMIsbPbQP+`
zUTj<mCof}1tev}~mAfs5-3<_$+_ng!%7$Ops3$odakvLh-SZZw)+~z}qJxtuB;(rr
z9b5nSZKt9$vuHM2dy=-*s>2;5AFNxY#Z~c9y20@bNl~9fq1Ga)8Wu3JV?||mBxU<R
zak`>wwM``p*6nJl0?cvHdw3oFM_iYEG9rnwp`?alKG@+L+h7?NJ3EQLMx2D(2Hq*{
zFI5UpxsVoc?T3ccdv4=yZM<*ZuaM`>`AvLcmp;&QJub~9E93j2{b%1%9ot*LT^ITk
ziP1#CvcqVrw&K|msP+<|VRSF;DsuKjG3V~P>ly`+x_D*US7&rx>U@2?WrbWbad9-#
z#j<J9_Coin{Z#s#EJv;Kl;g<MV0m#BjJjw^igPzn33nqFOR&2nxyztYIhdqonqRdU
zZ+wzK0oQ15uoz$a6ZYh;qRZ3P&qwPwcxQ^9h9(Z9G1O8gqKIT-TXZfBjKdCBCOl9o
z*jJ#GRwS}05$ezx{TLP0sFB{npRNv4u?u|%>&k1gw^!!TV5Nh)QWle9Rm;k|O*EBE
zgt=iUl&RkV&y?U`4!yQ(54pTe^7H*R>p4|<0{DyhJiDZ|k3HO7_jrI(Km3hSTt99q
zU~c?43CL|I;Rj5KWK`)6yCS7(iqC#DMHTEJg+11Oe7pb%3Nq6BwTD}r;(3+5rU8Ae
zT6yr{p9_Dv&y=!Q{+0{9<!LS?$Nk8lHrcNL@m|Y|bQCESBh)=|A9LK@Qz<!YQy|p;
z8o2;Spo_4T7(EQNqC-Mi^lOy*?r!6Be=S8cS*(w};hF=CjId`1zhP*Qm60t5*qXk9
zt+N;GMcQxb5a&?&#k!b2FxE9l1vfM4tD?Sqn>u)1yb+*YiDa0g@f>Q1WH|Z?%~AA5
z^pJn`lOaO+kDT;RdjzSGUO~W*UJOp&&n}WEwsQiD<x<lr8r_K(`W><fbo%P&%}X8m
zq`o#Z^_luI<!}bQo<3`&{A#`~vqOk`{Bih7cb^A~-W($#?A!h&hA_PZ!WXz*h&~k?
z=Ja_)5J(~#j`Z$ly6M$VF-RA(TQ9fQA()`3WB26pC24VLy*Y-7l@h!bIA@d@XN}5T
z{9TU9FCzHp4sH8$5O&{@VtzAE<2aI<Hy(1sl?bbjY9N$BHS7hP($zBGfIH#|%eEhL
z%qT5$$YQ)%<hD)Ft$7)zaoG5zs2EKGEyO)CaROEJrZNnI18>h?8hfcyhUi~;`!dtE
z1~)BDQu>?lh>CJ?%J&U%9C?>uk%;)tu0;tS!!Eg)RDXFnJ#f=2*ia#md@-z<V&B1>
zp)?1OOjQywQl{5G#I)KH)6omxgp4u>eU`PCt?(+Mv4jlixzQB|39EMQ8Qp$Gl&-Y7
zn+P^-oFB$V@kan2TpqRUh8KgqMQiUN(nRv}XV&-Tar3q)`}aBG-?!H5e@MSg2HLYi
zCVnU^!c%cRFqfoHTdF$#P>yYHJ;ZqH&hJTybeB*VD*J4K<M&5tt1tSzE_<Eu8cFQ0
zm_yGvI65B5NnGOdd4GCQTv{v+Cg~;n_-`{IB4*qJQThcMxj!;P3(o41hfX8rFS*jQ
z*&O3Dsi#S^^Opiu9KP7tqYX{bukFg|m#^{mD~bxPh?w#5(pB!xco>}W6fV8yfKYN&
zn$DD*eJAA$j8ZDp*C4*mfll%Rq|fDy{|H#LS=j3fp0moh9lp)P9XA}KUzbaG29pN!
z@71Z<UNZO?4b>7w4HLQ6BIzqo8_YIgj<e|L1(@S^zZqJoc$?o7Xn)<x_-<Dt{eAhF
zn)Xrgxf~^TWeL$^zN*Q6T{Jb_4znrCTEc40a?#zOV5<ATAd0V%rW8!TjNC>bKJO#>
zEe?tofuYV7XYgHw3@Jd~)!r2`Gg5tqb5iNCR!JU?p?uy;3P4_Lla}v1wb`s4CyA>+
z*>TPIQ|l(ksa0BTZP`C`OaOIW&1=ZlcF#W7zw@+clXD@xuq#K+k5CvYzTIUuCS((+
z?|`I4u4KHEU~m4d`XDdN?~aH9w;T?LYC@_%jUMqi6?EqDI~EtYiJ;qCUyBoZII6Q6
z#xmZi78t;RD8>GpY>?V40dBs+FURBizC@$mBbb#nlM4?xJTx^$sr}l0*$d<ONP%>C
zV3y+fxxCgMS6m{-ry-NCdk&)>(};Ked~QF0@le6B7p)u<Uf|BS)K7UjuE*4IqsQzN
zyIuLzT;lLf<U);xcLeIYs`e8l@-VS@rrS3&%j7(Dq_*Xo`Wf8DMNw|UXS0v7jpRkS
z7lSv%ME=xNP+{GDo<dTtuki_ei7#Nasinz#+qlNe+pE}i@`2agVbh;|r-_}%Ybi#K
z7c3BhwX&V6YrY*>RC$+qC*KV1vN$fcfG%4jHAXZxbOeY5kJwuIiSZa5smP(in)7;m
zSB3W{#mIleERE02P$JyyKlN?&k<{XTLD&0lWL0i`#q%qjY2h(}%bG_4eg}iaap+xX
zSPaPLP_8Wcr{~P#%d<|q<g4#CRtAU3uZV6cU_nWq2@LBzzlHM$3D~X2izUPO3TMem
zzGZGH*2LlNmrAmcvsIgxn@!)z1EsIOpXjCAqz+&cRL$Ub_|d}O@zbWBfw+Yq4*jY_
z4m{yofH$9Y?0f}_M}t|p$?lu;?8ymom37<S_8!Mra2U8qK7@pqP;}8|_Xvgat({>y
zyY2E|KB!tY-(cn9NlkZjVJMk7KbMt!YrGhKKPmZcmY5CrmWKYn$l)D5DVh@X4x?vP
zHW69ZCv5$?N9iZB&j9<njuxx)s(l_;q<j`6cE~@}ly~^1+iC?a*1CSZT%I=Q=6ZLO
zGaNtiRZdrVL{HLu4TF>KPg)W(F`nz>Bz;lg8EcKLH~Mx`ne?SqF<f*>(BAihA(r*x
z*{20dj@9NvX57h3X#?ett@DCk>f;8)z8?MSEb$^Y;co1K?~G-C6<f(TPbtfS<-uf9
zai=r3fqLdA!MNt0A6xR1gjc7_=Y7-+m1xIn^-PBS?p$)chw8{|n0X<q=CEy$KiBf)
zEs~(S8`8qYWxjDGic3Md7t$-Zz1Ia1B#s(iUfBMj+i=nVW-hd$pi*~%%QpJ7TD94H
z5jfzfX;|@M`rLNC4cDU2t#2FIt93t&2FoL-6TX6}Pc)-8WFbIH39;)9MkGSn_3hz+
z8%2pai1uj5?=ZQf`lnOH;9}076#497w_1k}@BIy={QZp~?y%xX!&H%y=DIV=hZD{!
zt~_p2Qtc*lr`WjIJb>P7<wD%4uQPjF<5>HS`~c4>Y2?$$1IZeNB7f>t>IUUlq8;z<
zVjk9t4o79F?mlw9!3u5bj!2Ag?ytP+(!;-6evoSHcUH4_#rq=LNJ<b8Ei@^)Emsd`
zegop(d73kjFpG2eBhH^cD13sI57Rvn#n}1J(|CaZ;cv9y2KW-RQ;VvDGn<E__g6l+
zZdgnzlJwjzD|<P+Yq{Y|70A=7Y}5VT2y?b}t{IW3_fV^aR@(N;xc@W|C*UC;FRD>|
z9*z9`-Prk$J&B$h(Xs`AAgT~rB)vnyd|O4*_C|%LDj1QRHEY;_;NL5?6~-+rO*S50
z+vSa*+#miqYrjY`ve37TvpBR>j=bk(MWseA4juC9x$Scc62;T{qI~;;11&S7I~qBX
zXVBx+E%uJi;bFk%64SYEp*CpyK=LPSfp{P&abePm)VfvV`RF2oc36IZxK23TVuDSg
znNhL9?bJPw02kJBwb7r#$#`(=y^?+0GvC0Z5zDB)%BvIJ`Tk3HJ3YQEXRicB*sS+x
zutJssV;RT0A!dsh`&0<z<-jqsugh;s6M`ivd2F5*^ZlDj{H`%v&nTsBeC@;c$fZm*
zO0tkmW3C1lwqlY;>%yXWi-Qh^%1q1U2!Ltz=9nlAy`1lS{X)lkoate&klIg;L;Tna
zJm;G}R||E^Rb7vwG)@Ag$Red<x7W3ut-~s-&vMnc{0r73o`9cJ!qgOS&X2ljb!0&B
zis+cgYE3tvL!zmb#Ax5Ny~I)Mn`V*Kq=#F1JC6cuIv?u6F4151->5!4S6cjAR#j}|
zL4Kj%*;LX#Z!0k67*P`PqR8qO?}e|Q^@z&P&{eu(66Wj%1@H_hQA2a<oM`Y|9%_dq
z{RGUP&&y@D!NdXPCz_A8n6G2v&;s2K!^bj7(|+aZ`4yYZH#)TJ9gazzRWfaVTAXW|
zwR>n5weE9+HyFAMc_?Oew`64mJdH+iNqU%{wRkFs+AwM>Stfwf7rz-@o4#}ew_K0Z
z9`q1NF7s^s#4vmdF~~NcnOPM|iIYPTlnnMzVpeZ6JGM(@VHpOlPUlNyqx;()-^a5@
z7^FN&U4p`PNScL<U31^0VGiq+ErRB%(6$jwFyCs)X%(13b&B!Zp?XR)JpKCHe|Imm
zXi>;~hrM8SAt#`)Yh=jvsTtReE~Q5qb1{*ktTkVKd-B1hb@8QTmHEY0K4u*G(yNJC
zW~thz;{8u(lhnkZ(#EP0k4B27gSMN!-|sSj$R_itV;5%Cg`5(VRFL1ad2J-`+AY1f
zZc^UozTa!kjyTUzJ6<?~<7l5*yUORqosQ;jDqcg!=nrOyVI%q?V=#4<d|b0VH!1!L
zrg6vZrkllKUn`o7F2G{$6D`?;Eoj#L%`hQgje+*p0IbxdDumSsbFmKtWd!<FX|%nV
z8D_FhLFc|`k;Pr{p@NlUaEsX-8<+h$8Xc27n2=0d`B<}?dJNmR@!kHR_T(p*WUtg%
zPhYt4xGk((z{nfu_iyi_!YXIIfVnMuA>_=*47>WfThhHT_7gCf`sTMK?sb_g5&!X?
z{_<~>rmI?n3k@G7JU*Qk$}T8+(oe5*2H54u+c?WJ_~YW7;TZ9HBj9-0n!(f~2nY{!
zAFA!nsz-0if|)^A>0garGZmhV-2Q1XsMQ5Ryf*xyDPnEuv-0D*XsF{`Neh0HgkRvF
zwoFY+KctyK^-aZgYlpSok|MGHGGM>$|En=?Nq9763d+Z>8GJrB<Nk!=m1qv-=tv?W
zYd=o<O~PDoDzE&T@wRUoJE!ECip!oYrFIw&$;>{c?2PRyyL%j)h`D`IQh(pJReB`1
zZ>o1E1)PU)+4o<JT&$KJD=qJ>GZByxww>BEomUBVkvPnZajT`IuR>;CPQJd9lDg!O
ze2<QNdQ1Z@8_>M;BLF&^s-sDLqa6RsnCX!J`8nj34rzM4jKBC(;)sZC^_>9S`pDAU
zcWpmXXmfkj!L}*_&aTc$%3alE#hGH0M)j{LqjT=Ndwlfn#-z7De+S6=WD4K1Mdl5l
z7e&_RylNYe#<P2RH;;l8B7kbYK8H=M{ra*~2Qmzea5(kgW^Phy%{mQlt>C)rqml|-
z8m=AQJ>^m+;@x48N>{ZX1Az`yo}bf$SK7lG$kncnPVKtQhFhk*5cH^6o+=n0SYy2Z
zLHs5YNFo0ANnw08_O^*obNrVXygW+WQlk1m*47NFl=-VhUJlP!2++2LBHpN)wO(ll
z5UA^&7n5ERcfC?dJ|&XhKnIKu@L8tOq>{nY_1?}H+RtYpN==W6%ZST5FWPR)Ck0b~
zUzDS(pl|D{4t)gJld^&oKDB%5=IWy((tY(e_VgdHf>x>WF$)mDHw^RydIeCAJfZNZ
z?_5ztdv;6!{%oqLfEnR`O8zPTpS&-2Z~6VEB?G7Go_KBmd<wz+>;LC_T$26n390<_
V_oMWV`;0L4zNX$?g1YsK{{qVPsw4ma

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-step-diagram.png b/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-step-diagram.png
new file mode 100644
index 0000000000000000000000000000000000000000..85a91de789201124a2fe38b75efb5a2c7d059407
GIT binary patch
literal 19014
zcmdS>XH-*P)IN$Lf++k1L5k9%6e&^^5$UKj>D^F-D2UXElz^0gs7MEqDlO6>H0eE2
zdXe5F0YVQw^aMhZ6W{lL&bRaFez^B$jO@L}8e`9_`m8yh`Rqg*8){!=<YuIyp}DH_
zOv99hhL%7r?_a(|y&|eRXsNd=@19wC)6g)n{rg@Rn+ratp}9q)qw&Q2edbQq)sfdg
zE9|gPVxQ1;8Bmb?6(I+<msitcu87;X%L+7F3*6LutY`em^R^?n&yo|+!gRM{yQ0&J
zuS`<s=Zjncw<i)J?I|t4bgxNjMkw9V_$|bI|N8}>1BKg(kJHL2S!AUD{NeoYF51Hn
zLngtS*Rpoe_$_5pCIvd=on3RgZU2D?wPDoHe;>`9wf+@8EPnXK@UL*=+U21CskjjO
z|K$oEmp`j3S24#cM*|pq?Gg&tim&ontUQO768Cc4e2cj3Y6}R&tPlt&U=YC1|A#cL
zGU`UWS;R>JV9)GGJLvJNYCc2#6bJ|sa=RcEIxw@*rgjpuglm8v!Nz$g_*82Q#|#{$
z)q1W%Nt?$%V)4?pxwnGZ%3t@B3Y;K~dK|6dnv~`Oh6SUcCNwmHQ^Fsm83LA&s!pqr
z-*E;7XdT|J9hxa7$PrrtCw@e&l6=B<mzZQ(d2rFua<(YpFGE_=!0=q_!JeRvIpreF
zJ@#j#p#|Crj%_cSTMsLDZD)`I1Y0e++O`e0Q-<QDsld1*77Y2_eu=w@ATJG#dMJC=
zm8SFA2T`J5$!)lVo}09w#}mF<U_vhDj8^^F?6J#39`c-%o?ltQbxq^rO8)wTr2CNp
zpH+MchSXr^<$$GZ+F!SxEEq+M(c8z}mEgZ`p<$xZNjeks1YkeY99<yaq)Fj0^?A8*
z8^=$b^e>(5ntKm}DDBZh)(>y%s+aeVT71?DDH<Kw7NP9W-$g6qk(eg7?}KX577F%|
zn{7qI{SoM!S&74UpBs6eh1%V>E+Zjv9{kR>tQwff<E?Xtp~gdPhwSRnDqFs8Jlp{O
zDJ};`kZ<;bV9Zu;fLac$AF@~A*;NKg{hX2ec8#R|AvKKLE(Q<mc|X(OZu>yT5Iv!}
z(~lat-X8V^2aza>>ts}NVP~Bv1$Sb0QUNt(&5^qywMDYkT&q<|9*uF;uBz$g#STO}
z)SG^RHE@X2KH_2BledD+$g^zmwiSFIcmapmZ+5E4Y}hu&=3st~mrh(di`8Djs%CGX
zFO{y_E1k9(D<<xA^;E!BCyw#fT|(HGYFs-u*hM$6_fX|&hhXWpYP}5?Wx899X(oBp
zQ}&}DF65l+E^c)i?iK?>bGF!paDixO?lC`LC5)E%-e&w9!CN}8t`K4^4MFXiPkJ^z
zIR09068<WIPiaxr^kFTI#nwC6CFyUX5?T?G<!43D3gHX@^+d4<QLl0B8rU47r3l-A
zM(Rnq?gQ|+h{Ud-V*QZFT5Hiru&Yg^Y=g~Ay(*H)H}iR>p44kWwoK@M13-(Qs+SQg
z@fH&^p(m_p<Yv0Nw266bfxiB_d~@pAV5jfSfl{dwX2O9dDF;)wqfXg8KVQf}=IyLM
zQ8ehgw3XKBYj0(;%n;@*4L!Fjbq-{<I4Q?_5ON+wg?FuIz=y1e#RmqqB#eCVoFg#!
zLod{l9D?Vutw2UgQ*k6UOlQ=Sy*w@v5(`6AYi^6$i)8uz9d+qJqBV5UnMP)e&-hEq
z)!Pjd?r2UOeS7>)Bv@witn*aQ$0Awaj}m+mdmht2+}~+vD51tRdP*Q>zbi?l|DoiH
zx$aSF2%Ihf`<)jdZG_)CgjbT@!#4Ga{RKdCqg)hms&tbV9>Mw|E489yhfDjNA>&8y
z=M`u$cywbKB6i=(FAilS@kC(==dObK5p(|gwiaX=!wGiLm9y*-sy90xSuqKn7{}Gc
zonZGq!w!!(RhvkY{Pm@U-W8?JlU<b9XuzfMb^MJGH?~bJ(x<q&<1_RbEzJiVOVLn|
z74y8rc)mAfPP}||x!~@s4@#G`DW=yb{Pe|7dnT%u)gQAzij(RYx*g1~RCs;{AHh%h
zmj%C@X%)9^$5t+{vE1E#=7T$6XUdBcRsBj(Ja$!Dsl;u)-w)*fW++(2o@ZV~f-CxA
z?iSrR<?r;4#hdXtj-RH~y;Al-O6R1bE%RfGBe4D$K@g~kQeAZe60>C8bEM$h^7qtF
za;t<SDw*@=WC_uInq@F{34!rc+7aZMcU<T1u8&^2OD;bgsUNTYt$3%3PlcE8C<DVl
z+BGvmPAj6aKUM1CJEu#D?8s%gNEQa$p{8hx+cK<l#BWKpl%IDF>C;B8N6^r`WP9^1
z*Q~DDY0?;(>EsjDlsHYXWt0pvl#O3-19*Z&4oe@!s$yQq+dObNQY|kTI_MRDvdC+t
zT^(d+(T+}9y{K)kYpT(6f|$FKtjXfgX#{3hdI1#~4k;J#HCKFlZkXL;?Moh2ZEgFE
z3inW}hmTJ{j}(-k8rTvr5#DW@!UFQ0hk%O?eKO>SDfu7NQX(frPzKZE)47KCL9_n9
z=NpDp5c+7$OhD}u4mPWOL^`1%%rdCbh^Nef4LwRaAvVJtiR)W<Yt3oz2ye^&iU-Mr
zE-CEn6vg19c2H2cKeuJSR#>xLh|RxUeuatkcl;<`HcEU|!;?Sjoob|{;rciAhZU*k
zo%in;N%js%SEyhovjWVpE0fQcgC`Zby<<Dp_T`&K;B0xe!%hDUhpc;n6*iR*WiQud
z@zX4S)-&iI2us^dsCRiFKK5DUwf3v)c|PDuX|3hhAtV3Z`&><Kn+7)ND9TC)?me=`
zrQr!*+)&ZiZ){;{L#6JuMLP)e-<KSTD8qAGpo-}6eqedtmO|~TS?}E?${pc2a*E1h
zt(L6-5*T`c=9iF!21k|>j<gA<+(l*k$(dw!G7A`XM!Vb<5%eq-Jomheh=0+WNJLkA
z4Jr8d7*F5qDNZ@z@vfG1g}?KW+eO07tlI`%+*GAo;_8TmfDUXtSDw7Vl6qDH>Is<h
z@Hu3c%}S)yPT6!@4~9)piwsR<@mkjI%6%N0Xk&XJUvj9(kK-%B76d!t6ZsPV;Cp>k
z;feHh4=Q$#zx||`S$JJUb8XVKe|?;a&I7*b6_^-e;LaiMfvctgx?w-s<tgP6v*CCZ
zF6MVmk_t_XHwhf{zulq(F{>z=0QDm%!{JZ^sU?S*)*Fkd4s`?oFlHsof?Zqjt$sr<
zU!c`Q%UcX5cSYH^M5dawv;3V>I<4R#&z5t9-|hJ7)$1Qrnq+aa$0`ut)6VV}f7Txq
z(68o#$0FW;r}6w8z?+#`p}g?kDEpb8zd){)+~UI&<(-eYu+cYOXua#?A=7y9f_Zbj
zMpd#=Z4Aric>V881h^>1g=E+AHU8V$G}eU0%x~zd#og{HkOI`24$mUID|R(Tq<Wf*
z#(I(p`?zRm^xNAfe#a{;dwr;ig9^c7ZVWg!FGsZ7#VM{~i{dsEPU)nvAl;SXPZ1_a
zMb9brsy=!%iHF>I)O|jTxC4=~Xv$%Q)ok2lndJ~!I!%K7L9nQX2Z1jxoA6zkZcO>0
z0i4Vq_Uxsv#A!}XFhGavrp)?U*<en8#2PLScKw!j6sa4AXC5{pJ%gQ~4WS4(;#=#1
zTVXzt)e3U^f2oKeepa2OSa=+`^Kmys`OSA&^v=B@1;67EN6Y}p`+Bn!%&9hUmY;es
z{+}&lrrE=^J#o8-aDbm}dlRk9&>()cG~AMp?NlabCaPC~oU<+&hh&E9@r95dC*m45
zTj9F}aVEz<@4LXmP=(QrCfcGVa6_xg8#9M>O@<8(kqTx0+*9)AbLa~7b^hP`{@uK9
zr6&^GX`eyOAbh9$RKPnPy_8tkd77DL9F+ilaFwSlR~lX7kdB;|!j2U9297Ie6Qjc}
zG@l_S7GN0>$rI1flbg$s{~OgfwHAs@WTh(<-Cn5V!WE5nS4vIapIfC~j^ZkTvt1oB
ziklQ&@=K1MDeS;^JXHqGF|+}@`i5D`#V&rAc2COl9t3VE`&Uf%xT?>!?ZJOnjp@xi
zi$c%9lIN5vWl-9E3Oj1P^NKhb9`~pA50Gol4f{3XN`C&`p8bHe({oN?$M*a!Tv@!_
zJDnj<kp?VsAMP(Z{_}rE{?7l5d|Xj0LB>Y@dvl%Qo~hr^{p4=2Y#c>T^4$Bnzm0{8
zvriLQ>K{PAkjsA*yhi88^3rle*r}91_`+JGGO2Jla*c*&p!2Eb-UXVM`=cFB*+muM
zV^q(C496EUvC!P(XL``bN%ay#fln(kUX<3Rs!j=Bpt017Shz^@>qX8iUg|oK`shQA
ze+Fzl!}40!+75Oy#FuGk9zW2prvDdK+_;v%{_jrn-(@=0fA?P>9#bFx|Bs5l?+AN~
z*JVZjr``8%ePsDpxOeN?zvz#K<|1wA|BqJKFUv|hju#rZV285)4zPKz^d>|~@$-Dt
z0r$St8%dS?ZrkE3Nm8+W6UVQT&L6m46}kH%=v&Zr36Y*SK0OwdqY?9ptjqsz)0L*n
zj5zEYQa;po|2M_A-t~(W<;U_o;-t{(f10O5XtdFh)&?`izg*>UmbejZW~5U0Q&<5Z
zd#3gnIN_2Ve74c0CzsC^e1+ys-%Y1X6KA1Q;d55~j7WNf;#j#&1E*HTVMzx|(VUW8
zQF#Wdi*Y<JCPmU_%%v!+JL_Xrf|??6yM`%{cAe)`<QQVE5-QaTP}$Hi5_n0!)vrMd
z8Zs2lJ{LL*Bk~&%DM!x~_r3>?=L7<5>vrZn=1p3I57609nK~G~-lOZmHsh~?kK!1B
zBua~vaz@6bx@YhEQtV&r`}z#<u@n*kr`G!vu#>xf;E=)t+v7o{=k*Gn0>U3%jKj|p
z>A2hZn~gbXl8wG;DZU@>2=k~mLV53|_#8K=2-^k>aqiwfYX8y^&H}sPq|Js`^4+%V
z0}z`sSU8ptk#kChMvutrnwRT^b1HUy$R9*|une6tM;{t-N`9}D^t3Wit5IKdW-~zN
z3v*$TR)4X@X33HpU6+>+M(UUmXALz&ilsMfWm$Mbl=%o5)E*MEFWZBamM7ZPvXG=B
zM`V|trY&F4Oq}dD?Se_<PRptB?d`3`gZ7$na$5`QnO?i>)<V4So@1jCbkmIK)g33l
zRga+hQD<+VgPzE>kacx{^>N76o{%2DAZ;v3))NhGC}=<&mv3lF2bcs*mfB4c$xgp}
z)X4isCk;rbZDk2uJ(eY+I;WI^-AQg&)i#ME1tP1iy;;@*;Sj{#qlOS-L+L!R(BrJ|
z=%`4ojX1<jC;*)mEWJk_+(nxHz3Y>wlceccS^KLrgc3JJes&@JVr9UIMwXbWi|4w)
zo_A;=>t@3_EJXiN@DfZMDd>5U5<-fJ{B-SL(iO)5P*(Wnzu(2hwKKm;96vf%tekG!
zg@hr44l^*bL^4;HVki<yJW1{)d4w#%#wL*=fm@}fH1-sWmcI9vw1r}OJ-VZ#Ula2x
zmLmdRIpFMn`HCxe$xPe&*)Gx%+nJwtRI6|3LnuB5<JSPT#yw(KCr`}emx<r}%IC>G
z1H;Nr+v{6^^WT7czqTz~w|UAUfV?=bByr{OT%d~apR;+Es|D{*b99!-{g}pb8CTF3
z(<{eWHo<F4RT`?QE{(m~R<jKp&bm!s)y%Ff*{TJYU;_mMO&{M1ab^!WD+)m=KE4MA
zNrUbLP9U3*=Jy=9L%(UZC%TN^ShDL4kIhS<5y+xPh}<j~y+@E=ns;v8?2jJece6Ab
z9g&T4)hV_O+^O5R2p~N6U^RvO@G`wzO&<N)Ai@(%{7{VBCILcHRSzBve_uamUp$+~
zk>+#Nlh&v8<c?6&i28=D;Nige#N8$=zq<=#arya=M!YR-OK3M1A(#-dZjfq_RPo7(
zoB2Kl0X}o-G$B_AfP4i#D;YW-wQU$^1`a&hX!GYLC0?C>*Ku`Y)_d62-{>QVrG@d^
z(S{lqEB%vkQOTmx#`u`Lgc~NjFss)J`iVodn5GE+in8U@kcHNxFI<@!*+e&(VZ(ge
z^Ue~7N!9L1pWc^_jjorq>yJECV@mKVw^k$UWesr23V#TQ_=G$Mou8{}nbpvGs5B*R
z$Yuqbg&Us+LMrwT{U5i_%b6d4AZ%h)B-<A0vH48C*+E}}Fhy~Nsgxn?w0n{B_mh1l
zj8bszGd}0qn`je5{f$WU^o$9&0+25c-nJ9t5MX@%7BNh)OXR!CH}mb&)dRuP&fxuO
zJ-<RcxwGaunbJ*x00Ypl*_t;>r@2rD@+%3@>o41hrfaGFV>4dJl|x(E*FeUn5gBUU
z9!{PfLI=sN`)<IUw<JEyqev$7mt7Zj9`LqM&&lWnjPOLDJ_Bn0wx>FD7BJ&iS0zGW
zE);(36qbu0dRNSbZvwGxE>BErMm-}_TH7GEqFKB8(o!YD5$h6rb2(G1w;69%#x!2p
z(N>6t>KjHeYsMa(O(PN4-gIwpanoAlKR5Z}oObrA_qz+vjvi$i8>dC+xlaEh_}(-q
z1X`u0a@w`S5!;73yw5%<Nvv`qDno<{W7k{azOAEzq!d9};rQ>c(y*SgDw61u^`z%p
zHE)N-?IUAnrLj-;-|vm9o@I-Qg>zK3-N3k!h)Z0^#&_9K6WlZN@ua`;9N-+^DNKMg
zb5&{Vu~)dLdpybx%+o*_!krJ<+aR$H#Rhx|c5>%GES>ZMp0(~F&yhaZ(dCV}5K6h`
z$l_E>d;v=cIrJg=WFtDaT%*NO1D2#4e9=XS5M-ywGE<C@UMvEGDbZg-C|$EZFvz@<
zZRwD+l%qaai_jdtcX}-D5!8MVTdik+0B0mhUyxEd9YCHBn1=A-yjvS~AFVJQ;8ww0
z#OonO^*_Mw8FB4y?7G-QEdi6BKWH0VSMUHr5@p%xdlL!+`(D1lg!g=uYJOdo+0KGq
zO_1@m*bmgC^!?n+St-V50dX+>tved<>vO@~-MMDq4#@_!zpgF33YTwI{AbDB{-qG_
z_~#7Bto5a0c-u1R+wBz%!A&8@pI&br8wDq^s3P)Y)iEN=b=$d(Ldeb)Rh)*$nG+Am
z$78;Re39>OOk;E0ChKl0K=^>@-tSvImMPOs^M6lE7&R>v!#=lWWm7D)t-qY)Kn*_b
zW+}>H9MIa_kPiW%le|F5z-p+%0Xv}9J`kv4T*6lif`Y(#soRFQjR)u|{PHtk&~V-r
zDheFFnJ=tqKOLol@IbQDEt_gUwPfETi&6GQXZr}%KH5=)hBQgiX3~i@-e=<l=R-JN
z<J#6htQd$<S$5Qs?s5HX<PT!`!jl>094TkDY6YScP6@~4!^;#hlM(NM6tOWycdOoE
z6S=UZ<Vh!>O&pa|d|o>Phe~tbg}xZbWd+}G0yX!zUaxCG3B>)<Jj&kw&Ej=O^@Bwl
z=uvJlbgkzu+6j$6z&TSK|98jN4Hph`eK%x1w*)myd02NWJWYs|>-2H}n;iZ6d*!A!
z!^-Q~K2e$6h$8N>OO;=aKi^Vnrw%L3El{aYmhD}@Fs(i@CYeRzCn-BT1Rj^5Wi%J}
zb-lo0UFrU2s#Zr{T-*xw)iM`%O0@b$jc@LdTia?}9qWXQ)L(xYR}-$)5kz-Z#EP>S
zw`Q@A(VS{C_Dp|=_3px7|Gqmye|#`%gx@R`5eh8cz`C0FB8Mikql@V$f}<7CE%~z-
zx%$5Ohx>uPt^>R(R#gR@7icyA9DNn70&%uIYM3Se`YQ%fKhoL%{pgI1&y3a>TLC^t
zkC44!HP1S4Js<CwXM)w$-LP$~T)h2wNk8ubSnDRAu-}Jn7E*r?K&0&{NuyR>?L+@?
zCyhp}9x?ZCPw#UGzyIp}WvIfQdFrRiWsN``L7NH`UVxRW8Xh%YB+&cLOUX@$UZ5<a
z|7(2U4oAx!#P!z-e?n5!VfwA#z<`+XlKxwn%i>SiuTIB3g_T^4E&iSNF6F*6D9+vD
z;m;7dDBmt9>d6Ka_dx4Kod-_>CYp7L7wk7~@F-c;Mcb=Gx+NHVT?ysC>9dsyGx5<s
zC9vUf=h4yzwUy#R=02eF$LwK-+wa(+5AP3~@7#4-J~1WQd<L%eS!ecyGYKk<DfC8m
zT}BL<m0Z045$6r^-OMeEn!*sLJZw%WZu5Rl<+pf5{=WROp12tl31GK}6bH3vcCf^<
ztr#RyLQWZmq`eA-k1~t_TwK6Xb-dAaOGk!XrcArh<W|@o#gQkWI#?jMVOS1Q@WVMo
z{Wjyd&2BM5F4CXrjHPXDDYvqP%G>LW8=HNKcWa(z=1h(iEj0O|vvb$RJK@UdMUo_d
zoj#b?L}K7_gkaP`=o#W94=?=70hw~=kJsLM-I;Oxy>7A%wupi}Dv-8SVBrHH%aa@x
z<eBWpSZn+pr05W?CVpKeG!S>!+Mw#!+?ss34%MDS9Rp0w1sjcrnmPwMy7Nw%?^f2+
z!h16x%*p2TT3l9U-(_TUOnk%1T4Y}Py9pmvFAhM8>B>pP$!&m03y{hk8hwk58Rksa
zMIG&@h6Ry9FwaJ_lNHj&>LO&uJ&0v9Va}a!iWIFk(GKVskP@9A5UKgD!_OJMo|tk~
zdiJl-u5hnxvnb}M&k3rxY-?(Tsi(yhXB~NIn5h=NJ@PZz>u~<F7?%ec_yS;4v7Y04
ztswD+x@2M`_bm8c&KC7&Qk{K2;?rNFqN#Gad0#9(DXr%I=ZA28ZRA@PU8a4p7+qxN
z&s^VS?fR@_Z@jFc55tFz94i>$y&02rE^)dEM4~p=H<g8VIhsO7uWoq{d5Ln@KUebq
zn1+%Jdj_3c5rP7T1~Kso-*|UAn9JYpb8Cv!N^6@hkuzmNMYp=cDdf;xK?}HH@-Jj{
zxW%{dmBe$NcMO{jinbDOYb1KV$PVkX{;fa!gED;%y<_CmM=^XQD<TpCQiYcc7Dakz
z<^9ZrASXmXMAY^4XNY{MC`=gm;o%qft$|lnHN0m(5+^%3&?mu%Cy^rgUC`L*Jl^ca
zb>7X!uL&Y)y^kH`<&1B(iMUP}yw($B#hU+j(;<_+2#2yNsX0u{Ik*GmRpXdieLq9v
z*eW&<vh$I?aLB^MC9Cx0AxomW!F^XVlOIcy!-1~*I3CJ07YbL(@LI`BKl>dged?D7
z$JwafrEXSM7Lk6J^_s%o=B!L$<D}<NrF-A#6~AAu6nX!_1oon55)b0l$nWn9A+WQO
z$$TYRA2U-9+nuuY3yL#_N5dtr_KBSG`t0^kAD{k}KJ}BSHID{6nPUggaY6^jGP?A4
zOY_HTkrBY~Wa#@O;gphEkDneurEaj7`zK~`*+G`gi$>NGJU63O<s}QxNAA-h$j6mM
z*F_B359K${zkRf1lv%&9KS?=o=?a9n6vM+X9M!x(4jpoGf9lp5Z&a$%ArvQcQX;ur
zowe;&_mnk~jJkXCoOW+HT7tz@okg{olo~G@<^i707AdWZ{>rVIf)oz99U6aAn)dt>
z<72q_)w}B6)}n}tkofR%KT|^rD&DKm_Nl%YM<JXuSX@AOP~j)oI8dR;E~}{1H?#4&
zpg~jH-<$Ot%Ez`?V%JH8m}0Q=yL?QqPBUXywIE0+w9-O-OFUVg0VDu2nTD@J#Xnx1
z8xw`!h%(a6bJGzt0fbx}w><WrdY@EPVH9;bF7_9g+-St7_2tFtolCy%f^U^lE027K
zZc8y;+JK^8G1lLYeO9pDt2&S<Jur3+T5(WSv5#SowH4xr9*yRHiwn|m6kC5_DA|9)
z7#T!=dy|$Wksw^nJ0(+T#SE=k+*|ArY2G%AmUl<jmlKFK6m*e@b>H(@LLL_c{=u~F
zvN8O|d`y;I@}iHeyb!an#iY2D&9lPI*3uKe-LhJ%h2q^a>Vg8t@mlRHn76#>nHH*_
z^B`?Sj<?GCDC{!kL-6;L&3X4aYpXSbH&1}aRxgxG-7loWapitIL+P_$^p7+#1Q;bC
z_xx0rQSQ7Wq_OM}pYmIz;E!DfXLC9b?%uZ^x?f_XqVSQRjyro%dhpqR7FlZB<@E(3
z_f5NR>nsx91@A{ppR~bGDwI;H)F8$VCQ#I9o;J`?F8_}-6z>t_yClm;e-9<~3%}qD
zrDdHq*;i%;mhLNxi%Gzr%jK>!+z;Uw323o4DEpAtZ+&px?zU=jjOf{mG3R8z9i>Yx
z2mLCn9wIHH%8#5B)<H1s8UKRO+4x5OK{va@^yIM1S*u@hZYuKBSUq4pC%n)re~9&5
zo8Ldbc<r|K`{j5$ONo8eif3l#d2aq4iXz4*RvFdW7R0guq*#FUNt@JAsjFp;3kX~h
zGG%x~*kA5ac=qeHYt8?y1^DU~3NM`envwQ8p;QWA_4awlI2o?$Et|KcnyNE9U4`PZ
zO{zGL9X6~*lK7tU#!7rL(v{qXT=p%gm5w(ZXsBf+KoW@NmuriB6~pUS&(ebe&qFdM
zMk;U?b$%J%!=#O`LDollMEtH{VDRy{15WRPge2mT*lUF{M>{GE<$Keq#d3Q6MUY<4
zpZ^Pk#Zw(B@_LPk-?2x{v|@h%j;s$z3vG-WLV1q^9=o@Eek36UF`2$0`H!}MSeuKE
z3F}_!s1?2rhJ)FWjG8zW@_E6L_r(H<kFbETXHU6HcEo$XNQ8Iwd!@ah3y}zg$s`mC
zf3M5;Lq9`&o(YAWafOX5c|K)wj`hCu^KufTSX>joBBIt5@lMo2J7Ky)0LIX{nxm7n
zGuz}{5PVu1OgS0y{&WpLpw1I2y#izJN)16BmcqD|NLvfTAenvM2WcQU9b!a1m!EU|
zh5#smNTm#Xojh5hdt~X!V#~oMMhe_fY;atuvNI$JvYN?0IAVOJt=0aYCo;2m>=zV2
z2Ry&4^wk*ItPW49ZxjA|P2y3tuu)u+F|g-vVOeJV=rzS9elPy_3oEWY2luOsDkhU9
zMyL%MAmK5{+=Qg4vhX&!#PUjhaCBq1&P}C{9!YM#Q&vvp=O9*=a#T^6N{sI3zMrXG
zGm>bbUd2s;H&I{3&Nd4c)dG4xX+~*Ier*)LA}Y<<)9|7;vf0(#nM%RkjV|e9`5#s%
z7DhNo*Li!O8HjY$PT*0g6nsqhx-la65ms%^H#3g7NEvbUd3I93(4#|asYv|6wQ8xJ
zEA`RCzWx(oVljL?ba)oHE|kacG`Zaz;72|Q=4$<T`bNskM?kmk>j?hcMA?YDhlT&h
zpKX_==F;>e)`3nJfv7uajkSxlL+UlZExPPkbtmddtaA(}#5mXTzKhztF@d4$cJviK
zf$yk3+_AB^_#z~Pe?y>uC7enL{z>N0aq4PBh~jU<Z7@I^^+z_kf(ezFupONx{U?`I
zWV>s#p8l|X@5>6^X|@N)5xIb4CX?~4$c@s<yGon_NEI+0!kAJRY)ImJ{JH|Zo|Myn
zkvnco$JHw`#){b_!Ag5#>Y_qxqh)*Ti08_+<4V4YxDr&Sm;_noYHN}=?AgLb@L+q@
zfbWXXWP*7AtH9g36uKtcfs><<$eD^<>B>@EvM?m(_QX^w%UM4VVHy!MGf}2E;TdG|
zo#lIe`75s^`<zLg$uFDJ?8)(BwruCnczv69ffs&MlM5>mQfiz_!HVm*7Y0CNublX@
zgloim-~d*Fmi^9RI6%tI<!A!V9+PwXwok{^M`aQzU)#%eHEqtjAdVcr!DjRB*2RL8
zdWJ^6HJ-~l;}aAo6&YENXX`rW5RMhNNg1=U7U`&A%Y=pg^!62K+iSJmXUBW;!?cC{
z;W6V=BY<>F&aKbXv+^37bD@VPj++p08LvAdfb%Hymq_Cmzg`X$;=Gc^QGHSR^J>_Q
zfok@bRqGZDl_GYcc@?#Zo;_A|;5k|;3s{$9s-Wj+Ttz`abEfyr{TJR<{P8z|G0}Q|
zuviW*KWpiIY0tGt9hal8@{*yrtz$^H+qRdqLsJF8?!|XG(*_*7;(T+xG}<qV&kc4q
z%alTBK^69MLir4$-_<E#tZoO6xuJZT7^DWC*S)mfRXV620@@|*Jg+m!Sbn0!9tKhT
zLO&yW(XuM5^ejWB+XV-&4%@w(&MD_s!zlJgdg#A*#N=4+V@=hl|Hd5_=@2pMM(Lg|
zTX2h>TJi7ou>#M(KuE{amGXC1W!Ch9lvt`ZALL9fWjf(F#>PYiDpHkPw28|KE=Y?6
zvK;n>R&WLCIi~8z;c34~p#LFz%A2Y2W@903EbpNVlzBWG{WH69@bx3Rzq#<a<+dYn
ze^<3DZ!m%l2`8(#%|O>>(WR}EtdFEd(tzTh>g2OlaZu-7+5n=gD^3O-+thHXKu})t
zI^8FCfw{nRr7WmgD|ln&+dLV-62~0}n^aQDA+%0`UtcSub*rLNGkghWPQFckQ@TDj
zZ_#r=9yn7yy-%v2Ye+s8Q{NO!`Ccs%rn)Cy|L52ez^S{Sq&>-MCMnIEWfe!4_MgSw
zqQ11+*VXj3yve+oe2JeU8%B{3*lN#2(|Y)=j>-L2T^K;ahd(aZ8Q>!Hxmy7%BO$(g
zFc@Hj7nhPO$B#ejBvSf!Ak2kBCPUUkDpHGOTjedo(J{LjxYAuebYKa1!qYV)<85<E
zBS<%N6z>x<>C)U$_sav-K!LR%ECS9K7^W}dt1)4@jhlZaznmdYmTv>=N=}NrN3lZ<
zk{$JHlMHojLr?0<EhtMWKUIjgJCHYLb|uE!rmi#anyP1PkX>3DP4mZ>XYV+w<}=Pj
z)u)!vyscFu!sU8Coj%=}JMl{&uWQ?ibM(X^q+`!NYG1NfG@38^bxtTK9L39zz0gv1
zoe&nx*(U53rJpd6s*GtthTThuSoMU9H5aUYxB?6v_5wFWcY1U0KZic|<(2l6C~{_S
zODMwgX^zJC^AY5+nSu;kte-5eX!cBb9^1l@Cq)JMhZ9$`5<j<A4y!%QS{@1eu-kw$
z$_U&D#76jX&qN6Pbg30;OiiEmQ)V@+EQGeyOq{;QpyK&?&#i6_mEt>!0Bm)jnb<>d
z=y~<1)N*lFeWWk$vUjaW4nr~_BjLx0?|{H9C^8-OXVes&h>=#g)_bQvC_>ZXW_=y|
zb}!4CL67>vFu?UX>FpuLC1XK%`lLcJ#eGVSkH`qVn~@URB&rTyH+$(@3}(L<g%AM<
z58V}MLPmA6avw{cQerPMWp||Fl)^^APz=FC;B?$EhYq2n6geu_`<FLX%KO`965sc)
zht=1<{howQar)Ipd0D^QP-b5&%iYNI&fW8)k7HL1Q=Tk}6`ZP5k}25&cts-C|2EI-
zEeED!Yp5!oZ8Uo2WVCzDy)@C>GKwSJE4-4~4z|j|egCW`CMzgIE*d|Xr<ibK(pB%R
z+o^gWhB}`G!zcABSZEk|Dp1j|tZ}m5DD?OVc=<;@sw*#0ypCtQQn|?*tw5Myu*jnv
zSTKLy%q$bRh97r)B{Eb0+ho!bBBZLhsZziz-@nU#k#ucS)y*v_?gP3wYspL`C1a>5
z3f>1@)_*e^Z`a}7{ARdf`k{ngup<m#J%GqC^@Q&kw*opdH%C*)zmR*;2v-4LP#J#z
zW&OzfKrBirZlQRG^zu#B&SMwVgC+A0onju+v}gjcvEsMsjrcG&0$Y}h`IXhe+i#}v
zDYvbRQ#Bu{D3_#)e0bKoMX`WEBHwI@O{wE#cHy%`DJ<`(icTKDdoun_=DB~W;kaK`
z_M$V{*u`6V%k<72u*lVdE!7@&uA<qAMeisvp5+MQ-<!^`(dRp9kyGVbEM^8^PTW>N
zep~s!1|H4KpP2ENAL497TBHx;?!n}50jE4BVn>dC%fynUX_<ugR5}F{z(sEahhlr5
zYNOHbg?|Vbe)lZ6sRj-B2A*`X-CMC>s!$BYtYvyDKhedQY=(=>%-n9sI$!BSdd;7C
zqAobAd8)R5-Pp2=LmLL)sD%c8bi1A|nxz$ITOxo0O*((@b{{y9GF$sGxvR<$9j-{U
z)k4*O->uut0WzO>=pkEN$^=^Hdp^yK0Ry)J4UH!A&*b~$!s!2gvG#d2>Pc=9IWJWM
zDxI{+zu_2AJyY|LNc!a$_Cb00r~BBCFYxW+m7`4VL?)Q>SP4!ZgxIX97&5>l=1dz@
z>`<jA6|{-imks`2C;R7K6ROP9{z48nU8fDbq($Z$6kQs^aY&^JMTYYFQT0#gk&aq_
zg&}7fiv&bk;!W_c$<UV%!RSB1dD{p>b@$5uXGE(voI3_AY5fu+m{K(j*pH(=`7qCR
z>70Rk>x^bZf6K&?hwt(*15|_Tt+8^0$?m0`hsD-qeQ_0U?-vDuATSHb|4i5PcYM%O
zKi(>0;mbZM7=jhznNjA7QXk7<Z-Ssh$RmT9FPpnMATY-KX_@<l@6}z=sJ|bAuUB0i
zs28*OT)H_+;&HQHhYv#2K2sC2`r|3o6QiF~@NP>bc-Mu?#!Yd)dh~yDw8y~=XmZ7w
zGp-rqHrMWNfU)JQZQsv#6F6%6R=&1XVrw7iKnwzw?Wc=nU*0mYH3}Y_M!!3n!;F8*
z){f$%gK+T0-s&6;aeC?u2vDnlE&Uj;_TK(mWj}fB^7AKcNP;m3|IMa5J5m|ynNFcB
z(Z2;Q2U-5d`DCGE>7ECz8sK-rhbeXI7k`XH?t*(p{fZnn0wJ^@%%P%&3wsG(z=@M^
z`Z0Rw>ARQXg1uj4zF$5M)6l9o*T$+#Z!vzm9F)dRr+P$B3pjf{PZ!K6C~c4z$)7V=
zx=X;pClfQYqB68716oR{-(48bpQQF>3J--JwO)Ahjj9g#C7ZC;OJx#sSDFZM=uY-^
zDU6<Qfwgz~^Nla$#|uVRNSAK}Q)Sm5G=DV_I0-Ag(sD%-#H(p{A_A!yX-m2#c>RE>
zf=BPIy$b;v*CS*{BNRtRxT?h}-_0>p8_YOoZeJP*JIHr5gO>ZoVt6j;3O`>9W&HT{
zc`JeX$eml27q>a0ZS9y}n!cdVlitrK^=b9kCg0=)%$UOD!Z19{ulfID@Y=i3{W$Bp
zD_LCozLa=w)J3}vnwR_u;D0%;PoVGIQ!MB62RY&D$D!#X1GLVES7-q#oYH&A+?-*a
zR+X)?X?dV3{j^M53%btLj&#mAahvyL?rIjW4)<bL3|uqHRHwGAPb>Yzs)4!$gL5`-
zIQnvPJrcj`$rW!>?`)m#k|SGOxcg|n{wnIMAqaL#EXi%xopnmabO0sq99;Al&Q79=
zh#!-pf5D8d5q>5)o5U+qWI<83OV7|<VM>{)>$pu&TkGQp;AS*OQmX+kGth}k<bD?i
zd8vLs^MGDANY#_>!W699*Rw_EKe7JRVt?){LTw@!%IWRLiUYz>D!U!gJu68wY51F5
z@KH+MPIDo|Dt4=Sr)?~MXP{>!P|?Vvbf*GIKI5>Fs=>qELMMBfSG<?n#-Wp>N$6Yj
zCGdI1XmIU~yp!7*{g{TVi8{Bpi3E68zU%AeZKxJ47C@&eA-wsab;XxEk_}R^`R53s
zc)t>b6>f8o)x(w4Bqx@ZZf!B!U?K;?w^}x79)1_g?Hb*F3^i2L<{RcKRMh1&3Q3e!
zuyGf0F^4?e38d1@96M`r4dv@9Gbtzwn3em+0|V0|cs#VW{DdntFJ92lah>}pBVu6M
zX5_RrW(YXFKbDH9{Ru=jDh8^tYX|liqVocUVY!&rU8`24N#=Cj6W2wIfNS2YmRbEZ
z(`nx>;9v?oLCNe9%2H0o_BeRv*-Lc7diC&t*0&q<-2c;~DCL<eR-FT4ic9%%LpY`W
z^gL$cp(-iy0#beg!Mo?Cpk0+Z$L7!F{*RmHby>U_!v<M$ac@=M)jpK!sW3F#xl1%|
z(Mu~y^g1%zDZ$SsY=qv57085IRJ_AV5#6IQ2QEPjQF5r}AtM&X=D7EEn-kzeR71sJ
z*3bB@b+z0Ip5|c_^8yp%N+NIz^%&!E;GqyuY^JpJ>NojWNDJTcvnOUPo9_wm8RJJ@
zsoYvT%f&{#-wingrvg?5L%~|PW__YCca72}8O8}|Dq`ra&<L013dYC>6vTPFkXSR-
zVb^3XFYAcSdi5vNrw2Y{x4K?y8+7Bt%*(~q>QAh7<@BkF!jX=UT-OKD#c3jQ*jyP@
zYF<UPBVWzt;%~V$ru$HBY$njAPrEet@3`Ml6C&@3d1u_@g|ilZCQlk7C<Ot3wI($1
z)@7W>HUNqKbiINpU^EBlq0*+-Zn_o^-+!V!-`^_PgEzHucT&fm{d5CyPY!{TO@8!I
z!EJ0Y=&8b0O^%gy-qSQEp9-&UyN$>2{?f2xO%o#F@tZ2;Qf3|B9MMWe;7nu~LJ&OO
zd5TiZ234Cp?{e>EiDY|NEi#jkn{Rt#8d(B;EyCZXpU0{>USPX#QIqp_rDD+80e<uQ
z5T-Jarkp$S<kM5`85`cPu}^uQuEx+FUxe(v+A#LH9jj=f@I8%eFBE6`*O!-<L+6#o
zFL`T|=OsUw6`ronC{D}ycK;;*HJpgsEIR-)@@2X|p$0S9iI;)~8X1y$ZSVSH*ZkMd
zCw`~!b;zY@kF=Jbj2}PIoECes9=Na-=IVoVynCS29CB6;ESQ)W?M5aqPVhi6_EKEW
zZBZPcIx^vv9{CQaR{{W@*edscy6tCc^AK}gg%s)4mQQcrIlB>0dnJ~3qpO*3?)FC(
zJ?(6w1UALb+$6&4b5mkW3A5e3Vpm#Y{p7C~kA-Zo$_=ruinK+qfLM{jFV&g%pqWt%
zapqun{kLbPHVT7X2@hr>L^KphIe)a=0gf(LJ=1IwWQ-zW<v(uqecf#x5Vs?6*BYTM
zXPr`eTY{OYJ&NjQ3`=T9^~)k&o8$*7>;`Y1+f3qL!wgxXSZAenqAJt*z*@U&;Myui
zt<XCRp)7jgnV*4n6M92K9pl}sRz{a(JfDp!lt>v_3hzxWx&S;WsCw6fw>P~I6-vCr
z`^{Sw9Uq(`#%~=|e;y6ayy#ISWixuhMy|e)s$9Egly@>D_~K3j2-p;PvTAa1*`Fqu
zrq3i&bEe8n+LU0(6^b*ByN|kKQ)Kp53*X0LQw29gD+i2sBQ0_mv=}7pTl`#rL6h$L
zy;;H7>?62u;@&jo#GvLW%MC@AqV0SMVG(<zn2jkr2zfP2i6v_1f3;@gsMA7&jIp6C
zrJ}k(OPV-d1({JD!|^Y?B~gZjZ-4VE^aeHFPx<!1fapSXA$HqD5h=pbo~Ar9<0sk{
z;BnuaQu#%>_}S^?_|j^Oyh+U<*);kf0Kz12N@}#6YL)bw{6C&WGm;(kD;l_pZ#Ce_
z=R7fSG-ES$oa{(PL2g1Psf_EmL%fRIsOn1MO2*kO0F{hOw_Lpw)>nS&oHuRtPB8~v
zu?;;Ax3KWpoLb+bkZ86{!06Ix`(Eu(A4!y)v}D^luaa+B@h#b_*9iA4)~psf?0<^V
z0@h%f*9bM8dGZqaQ*r*+2?6p0T&2;8t^=H=iOy4(vp)ejH^lDheMf?TcWMl&0?ayC
znq1+ifQoWA&J}a&@5=7%%+W+W&3@k6du4i!Fv4~D+)LT0lgT;3bn>6Ul2<E3vauCO
zvHGcPm^Twmn=0|<{<6iJi$8Xi!)a&%oSby3`ixYcgf<k(87Zx)XN%+a#AN%k6QUnm
zDW>M0v+Y+j*GlM{E&Px6@ug0}NR)}$2NwZPT-TT~@K?fF<1Vc}GcACstBiay+Y!Jz
zP-XqM2DR_=zp}<(%?peMj+31~)c#i`__N~HcF};CIzs-RWblLI#s3d9gDI{#rSZ^h
z2k&>BbN;CD?3C=|GAButi?lKx5Td+8sma^uw!s;J8Y!iBQ@uAT23;_ReubsdnELI8
z%QT#Hr!`O<#U4fZg!x(zR!x5MX+9yAkFc%2AqgORp?tebHWr5MECVCvJcvP6S!d&I
z!~Sf(GY`sMD`9W#I(_1uOvWiEsX|r=>C0Pfz&RhI+vhCjoe#LP#`c$c##0eT1(24w
z!(p|Mxj1^7L!%=nhIn41hSq>b_KX3`BT$f}1}PNHuS=Dzwf-&tXdi%+ln!#;cy;u>
zepHXNfndqBrW+JG@$*oN?cTURN9O(12)hbdQau<Ac`t8ELIjS50@NyfTeJaC**VCx
z?Ut`3_0_cqQ7?~>!jM(WwbOfIj9wcBh@UZ}kYJDIvx6Nsx)%P+!TS{QI2?cUa_>Y<
z&AJt_#nX@vrMNnw0{0W0^R7Hz7#52l&g9f)-tqK!i`dEW8OUNOx-0!x<}dLAY22xK
zfdlyB3DXlv-2syogy9OtADgw29k}~_BepYz>l5{-YS%>^HeGMB?J$1q8xjbpWLCMi
z4k6c%Gv-tltNMiN)O%lE3a%Fw7^PQGqWR#jDPSj{cNiX{NhakbMKMV={&-*aYPmbs
zWoxRu7XQs_Z*O0Vss@@!Zg$udAS)<-iKAbBLKiahcy>6uK5k&v3k$pyC{6RybHv%6
zuRr|x(S-k)zYv8gs*>y^V$~?8{cY|u)xx&EGmc#t?Rb8JhB;pz&g$3O3Qpc<JIJ>o
zgVjyy9`E1m;}I-DRpW#9K0!g(2;Ou{!S_9#uF%}mLl7UaKvV;y4klS5#S;Kn!uD)a
z&9!qDwOJ_vrj8$_>(2pABreL^GPmgtx)=sAMY9EDP=MZ9i5faR4hm7<$`ah=;#$2z
zOCur9cA6gHHUY3&$F7tppzBSf-p~B4af52$rv{5E&{bb9(;}UOb}9I|q9Qav`5|e$
zXZUTMcPA;x(?vVH{h9!cgv^0I)r9#}Ls@NQ?y>G-<k#qb%>7_()4|6FsU$fgIx$5R
zdruE3MWS1*lJ@K{Aib)xxfT5C_g$Ja2E+4d>_oPv)s>f#L`wthc7(V}k%V>pFOZ=S
z0&SSW$CZmu4E=?Rd@&n>83!0p$ln5%sWwE|w!uzRZtGMja-pL==Ub$>Hy$0*)@(mv
z!KGI6{#RFFcu)S4szrpq=22e<fFI6`Wg7`twGYIf7?>f~RIr&<Yi;&9^-2IK_?D;|
zj4gfg)?Ofur<!u@)ABcD3~ztn>a$r~$o?Z)JK{zWEPF_)GWfp4hvUZrM(wJg*WJDI
z$KSxn)i9%1xAQ|s!W)h9bm|;MtK)wGI4isX#K#4zqF&OTm^$tu`C^vmfWUP`Pn0Xf
ze`F^`$w+-+`ok~SwNBDKlcFLHR}L{_p$<sM!<^@%|7o70wG<wC%>UV}zGqhJwG!Jf
z4=j_IDcnqao;V@Osn^5uDQF+z*$K53k5kP!7O)xtob9A0N1xD|Z-oU}*fy69jRrGL
zef$NZ=_Kv#?+N`9$cZTD*FF9K*L;Jj_`@5i*Q0mMb%tPHOwJtCIN|zl5;?7&ZCc&U
ziZ2QK6}~tEsp_%%_^a|#sM^0+Ee+URu3#I+f9=T2)oA>+VH%6jyzTBmcWRbROsDe(
zrD91nS^wvxdOlvApZsp*(?WpOhKME>?)@goQ}Xip{l~LZC3>sF{@aAgXNV1fUEu|X
zq<L?JC30^E;F8DbUTR<q^JEpi7e?RM*{ID)v=%bOmN8gbUZo8Y`m34v%;;adXnD&k
z0j3y5H2?O|d!dGfBa#0Q+}i<iKU(npQTS7XD|j(5yV|u@G&d=|@CwCtM4^XOSiWzJ
z>HNjd=}1T?>A*z3by(H>&(b6Dxq@OknqLCfG=qVjFkL!?z)yc}27f|y{8_V3-ewfa
zEl%6)YG9;iER9$*67NUx%w1N!w^`KJ1sbH<Lj!`AI4xUKBYmkxbNZCT>7TE?H#g8$
z|ET|q{)6V@TyiJ_zo>0aeWWtQjut~fF?<V05{?qGy%&05qb{N1Gx29*fU~)lJBk%U
ze4)tn0xklQOw}>NNQ9Y<69yyZoutShs_omJ81w9{mXJf^vkoex-cPSIJRXOUkDBK?
z?p8F~|AX)74yuN<eNHqSCCr}piz}51C+RqVTCnmz<aOZVnMwsaWm;SF*HCfsrpS7M
zs=1p-vHf)8`s}NR)KHuxzg2rZtQWbyEs|Tyb~rSkJu3~^tljK{YA|`uV#YOYe?a`z
zl@dSFKr|-j;YBE9-Q_2>%n@hmk_3js!QZg9pVu~)2`o@;1^jYu*m3uho=Jr*s%<^#
zJ+s)}kW=mY+q<b>Nqo7NSz_)mUifp}8ti55{7}!5e@g#n+s^M~WO6u0?$<swxp=eG
ziYAFmx+=(`$Nx=KyOB(v1!gBe|5PB$t!$0X=;x7`Vz+==;a1Rof=G4<HMQ3<$X9yV
z`H~v*rRIA(vf@`0{pyzMx1r3}|D;CNU3Uj+@8H`g(JmC0VD-Gly#Ar3AKy}}`)r|T
z1Rmg$TtD6uR9hdc=e=-3S&)jdmHqIGB`NZJ;!|S?HKRNRAdLbF)J_xCbQ<OZw$g{C
zk>>|TAGum@wXFzC>lg*FU21WTsnHevB|8(iKeK^V-RmmheM0=QN`3iPx9UFiNClbs
zJT6_{w2-ULa~1z0t`yzV$9>{dZ!KRLA6AGm98w{mn8YGyXz7Brqz*(l@c$&70r(b7
zRve$w^HXSKaNGQToL@c=age-$a;x0gkD_@wW9&psOa<Tl41_sf&f*YE4To<kI3|?`
zrvqmadV!-CXwp<KpR-9EVEmlD1128;O6KZyXYaa(3_hIpfj=q>r%|~kI!3WU9@}Uf
zI(@#g<5SY7XDH*d>Hr{Gdf>~%=d@iMpiJi^>G{bm@=HWX#!K|2g7=*hSLw+1Ij7DZ
zr|(+Aip_0ZOi`%m-3AiW#5$2ZE8rS|<JpRlz%G(PM1~kl%$LXy2cOgc=ZUje)rLC|
zZ5H|f`Nu26mlR^9+9NVwr)jgh03ng8&!gDI9kh>vn|jAxn}@b~=`*zG%w?{x@f6s*
zyw#j3*0;4WvJNM|9Pk0sFPJ|9{eE}_dTy#f1(XuKfdu*ZB|CH*Rh?oq4Bhpfb}z--
z?MDIgje-vnH>g2_O(el)1&MFNWtDE(U1C2qUnwzQ2PHx+UtC<{Kp*5EYDmr1`ESek
z{!A-AX&ZCZpI(P@4;q;!^I`Q??YpV0)s=;R{|k^9u7;UagEKxdG=3a>ryc^7r5!oG
zV9IhUFqjlqi#t^k^)aD!l<D~)hE*+G6?LtA7WBO_e%%|)g)b#Jhx|l{a{r`sVMgBT
z7aZ^sA`iLw(!GtQx9G2#JdDxVT-s`h`gXqr+_e5J1f*>TVE{ZtZu=AY9O4OLx2EK>
ziefy0qm!PHA-1!h+yVqX7kEnEl{zi-4hD&Yq{r4L_Qp36Q80n?{LM1ysD2#Pd04&Y
zn40rMvt6ob<(no__~(yaEsMdGen0+A*@jLZ+W`JG9(vx1c+#O7#XI0=RQv95U5RpG
z0(4`sQoQXc%cc9kv-87YBRmF!o4vLkt^=%|)U8eT9)0-8?rx8fA}E5U)A|~L&l&Dr
zX_|Kbp|%V4WN50N#s^cy@67~ij)tVW(s3qWBKRslZfjw2d1C|`UoeM$#K9bssb(qU
zK47a!Zm|n^D}7x4O7-2(Cjyj@Oj4q>I-s+$RNY}o*h?GE^{;@5r|R6RChT<*j2YTw
zm2X!Ldk|Qhds|c>hxMGT-~!kTD7-78@`js!_2t9-_1gSFf#>NGZb|9mNhxMwh$39-
z4%ZYQQc!_qm9PQoRFM$iJOz(IY6rE+gKrfFFR*sCnZODWl1@9Db*oLIY@h2zR-dFU
zDhH*7nBTMi=7W&c{hshLb)>SiEN{5hfcnOM)4SDMdp0A!VJOQhSa@kg`g$6?-mD%(
z^TCt4^E!{m(vvdu_;y6R)NTm<_4f4W*C3;gG7rv)qHv-AN;OjMylp?PDKEU*lADy_
z(Ykx+g2T;Q#BBF|IU2(R7{QJ$y16_-%wmdHYdP==*i7#sxZlb4%s3(I69Y@dIiH>j
zEzMDw_rXJ?5bkB&SB~qh;T=>L7Z`EoJ*?7jl0Ms`U|TduXR~UB9ktUuO7=>~JK`%)
zlp9?A!PdWR!XuuFkT$=mU5V&FPVqcmMROg#F}g_?eATv-wAc~u<dgD~-#Nm{pP=#Z
z)n#`ci|!d>W=-@fuix$WJJhdRd+!1)luW3txy7X!{C_obKK@MSaU9<%NlNl7CqIg;
zOny}2xH7UIer=gZDOAqM{HXaEljZj{Y++j{>8yp3mHaxI`H|#TPDHk%W_V<NB{M&=
z-B)+_H{AUZ@6YS?{=8n#cgDw{waO!9{zXo7Xxl+d$C7$%<lgxJvJ42K*T>i*In+n|
z@UVxL)WmuaB(NdBYvqsSHxV7$I%TF_sE%JetE8?izq(;<acZ!cG;&-%*vt9JZbKE;
z2pb__d9$NJL|XF9vX<5dgSapEo&ih1WT(CUAuzTTzH5206|iW|8kWWfvXP5^tEfFy
zEymr7@CQqh*WL_+)&VQ*<=e^9gu?3xx|wzSx9k24VxX&f^`;V;OB^j2t`HILBJG98
zo6PTwTWUTgK7g2mE@Y8a)6FGcbfvg21h_j@()NPe2Hz>kuhU$EGW@(_n)B$8u)D;x
zI$Y;$lwGsAhrlY2Bc&GklG+EXjxc?8$Uyy+ajZ_u`%3t)J(k6Ho(l~83Xwipa)Ub~
zUBY}&qMK@;{*3Z+C{cWy@6$UzylWYByM=GZJnL3t9Zh{jri_oamz1v7>my0!xA^3S
zYrDGTu=d3a8a0(RKTDTEYg?z1uPTxdg%P1nhm)~N%L$J9VrHCQ0*j!Qq8m_IuH|2T
zPsM1eX%XXv<}uc(ry&9Msy~1xGA&g02w{yn+ZSxp;tKSN1I^uTbQ#yG5;$Ypa|hM2
zE_68%@U+v-2dtUu7D5$m{kikvjENZAqm&M<KBN~(Zz-T4a<Ef6`fb8;cNs6rju%wd
ze}#~fvDr4dlW9Bfl+#WGk^o^QJl?1FxnV2|u92DOhDI?=R^~CAZ*bkI0Vz>{sa6&T
zR&ARx@?GhqN`t7jw?s91zPuS;Eo=FHpQOGbRUxM@vUFB-Edm7Uhv^Y|S))%ONAAj*
zs($h$u`#h|7$z>MN!LPnSiUwm(XuMwvuwOCf8+uH%akpNC1MWLJG|#uX3nov8hz$6
zmb64)Z;tC1B>?Nc4u&MDm8@#R%?V<j4F~LjF)GkRRd~$afUOs7@`6-5th8LJ^vQ}G
z_WOXXbM1AT{3te_?UAgn^#kpZg$N*s;cLSM1OYPsVeX+awNO7t)Q&*Nwrtj!vaew_
z`rVeVk+L8S8IQi<+&cxxxgG$@nR~qXk^9j7?7UWbkc7SZDv8B@vWyq=B#oy<+9zDh
zG|hFKjpmCDX8TLPjZUeCdb<4~`}yJfd{f&_lv+KrWBkEISEA^S0l>8pgvuUMZB%GR
zPEh#%Z$J?@6cc!Y(ygWLt-p+moUV8qt+YJ$j3PtG=Z`qt+Ymg|zfOX!+{3b0!BWFd
zdA$zCP?+hP+^i1YG`WClQ+scE_8=2HG;uHlSy=W{GPYQVSJl%{$D7(T<l+axCp;92
z+V<v7+oc@h3g(R#IFnkCiHxo{;~!aRb!3NfqkL)o5WAxCK6_+nlB<Y=;srM;P;Tmw
z4dH-61L)$spn6W|>e{6Q`cbDc1(@|S8xHpBTjEQr*e0Ho4{%qWFpi>#!>uLtxmTz#
z&oQ@3V$<>TD-t6>#rd-731><?W=p2td+x)rKD`9j1P^Bef~M@H15#I(uYXKeO|R^z
zwsJy=T0Ds@5RXaQOw*J$*bMUyxCKi=WUb`-N@=@o7!gI)BWo#hF`djv&Es5syI#R`
z{8>l>Q~{`--CB^XKKXb-DyTcI74!K@)((_TkTBUI^nGqk=m(+!sOe-8WqZFW+mgt~
z`}2VR8B&w3*_49X^c!crQNweQebJ)dxlugevJJ2F<Y|C}H`DnilN5)3r#jK8p0vD2
z4yRP!DY;<nx13LG4DOibR$HutXlZmL`BA$LKDbB-aEVtF$6;TOHkkazr7>7Zf77b_
z|6_dhax0(<r(A?#XsdBb6>bbM?SCs~`e{43{(A6MaP__<V>{oPUo1knRg2<?ycGaH
zqis}$PesU~f1atTy40HL&!IYZjgg@~&mT3r%YMgHLFK0Z6VBMx!El}MB&{NC)C>Vk
P83^PEN5d*kUQGN8TyyO3

literal 0
HcmV?d00001


From f8139e4739e10a76d053cfe274ff02aa46cdf40d Mon Sep 17 00:00:00 2001
From: Samantha Robertson <samanro@microsoft.com>
Date: Tue, 26 Jan 2021 15:04:29 -0800
Subject: [PATCH 710/825] Fixing typos and updating

---
 .../images/false-positives-indicators.png     | Bin 14102 -> 15655 bytes
 .../images/false-positives-overview.png       | Bin 27939 -> 27865 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-indicators.png b/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-indicators.png
index 733db3cb46935defdc17fb312d25c927ea95f178..e30347f04cfea0fcb937b7a1730202b307750fc9 100644
GIT binary patch
literal 15655
zcmd6Ohg(xi*Kfpviim=MQbnYfC`fNd=}ka-7diAMy@Ui5=>jTEy7VRiq?ZJw3(`v{
zfk+7fLMI^*0^D%U``&-x-uv8dKTk4y&n~lO&CDvlwI*8kr7HDJrkel&fLdKm=@kG#
zaYR1fyMB%Q5C73gK`w5*RWtPl0H|m$ewW7PAtV6cAwXT}xj{hYR+ihQo3SMZ5w0<Z
zTab^}*VLq{c>kyK*?0{1`_OuOtI*d4U%xFo_SJsXiWrK$nRs3NwMZdYpF2^_<@(Ua
z{X9qBv99QfSH4<GbL!89Y+0Sn*M-(_m$tX2sb27)#t%+UPAZ{whYOg+kf8<4f%?lK
zsS}$md@CGOfilDD1`S)wW{_zF0AAC!hW>r!;_U0~>%kXg=#6*nl>b!R`TtzuId+fk
zVCEcW32Li6?i%&M=EzH(fF}u=+3uhdP5U;5Bg%6L7$zh*&=&Gf7fdKA$HGFo8*;?y
z=Fis7xf_X-4m)!A`N|WA^`#nXrJ{>*301Gw=az0bTc-oHO@^KSp|hSV3AyMmz-aKX
zwvTf#X}B%@_GxdM>@KGNnOgo;VoK8|?FjK`l_z7Qll}Akhd`N&r|E2pubdTC&7XU_
zS|JCNHX=fNw|h=6UEC^<H1xSB0o+|Zpk2F1OA9M4XT#&`{Ry(QJJX5hyKytl5?nP5
zX{~Fs149bFht}MZ70I6N$9s&$<<{USxP$VLG(NoMz)Qa^F1unfV62s3K0ID?YSF^O
z9CG{<c^scA@A0CV^esW_jd0U?B_SLg<Dt-sQHZqkzKRPz6&E2Kcle^J3D%1vPn!f*
z+y_^<p-=waOv&av58B^@C7gBs4lZVhyosHYKWwNu0Vg1JnRriwvq(#CS0sm)quytm
zi`acZL5bO-huwPpMj98KoA#|AQc`^}e7NW&3=p!&kBS9eQh6kG^MFH5wm+%Jr|nAN
zRfziQqT^Gd8dBr;ZH}1LDALkV<31<N@CT0@FvsuxD=MC@4J%Ojy`~u3gFS_FjnOz6
zl;<csmAx&PSN5s9PaJe`*`n9ucu(H}C>!)n?cmv4`98h$hr1Vy&9*Jq@)4FfPXaH=
z(_Vc$5E1;DOOop^mnHdL&YK%th!2)v!58DCZreW12q-Z6BnsKGwZ-^s-h}?x@%hK$
zBZ@+oCC6|*lf1?R-a+K}&XXCr?$V|GO~UyOjPa)2uqWNPIpm|KHE8dmwQ1#gjXy1s
z5{yAk3*{~ow#=XVYW@gB4+%ehl+WA1zL_vBv&lwuq~IKN))Vx{<$YN#5<M=HW4bZ&
zGy|jLDJ%g_kgskqA1;AiUrXDA^Nx7?$V+JN55$m)K(+z439z6E?ebov&F{`T^9TJe
zoZJ^yu=|*kw5Q-VNdGju3lcV&%(-^wWwLL+0MdezeYNl5X-|aS&Go`~@1s)&y~ivZ
zHIjPcS|(apt~#RFf^Q%LDzXKtna_JuGiQ4&XnXhIxr@Wmd+wrHIN5{D{a6EcnaU?h
z=aQ{^;X<hELg`CK#QQWcJ3I@7ELWoo*`@os{K^?DLB3`u#4XS9o^PQ`#7!ixxcMp@
zZ3cnV5=%&nT{{-LJJ;Rq5HbK4*xyxPO!4q*ZgHlg59fnFk(Fq|<G^oP4u3;&Rm_Uv
z$6`4Ft~qnrIp1!;%b)38OrrZT`4*Jc??+!eWrPtG3}iJViP@MgNZ`s}+#>KHfxfTG
zN~>Wy!C+KK+TjX?6#UABl|{-{HE{2z!qExrGj;R{?~%E^uI2jTuChX^(X;+hs&K97
zR_9kN+Mh-c$7`zOHbO1!lCXbN?+T8(aS)MRgQ?H91?fOT2VBg{`-yrbDjXRZYqfpd
z?)RF#c;dOc)JvVH<?ub;*B;Rh#5)}G&7L=G?r^mW!8O-yBy3GI5{u9(PLnKYoa@~h
zZxpPh?~$7TsLX}|-<8_k8@Et$h8?4kpf}bDRZ7kaoI5v4di<8T<M~&*y#3~|e>AJi
zkQxR3S4uuy*?UA6HE?#k3O{F9^n{%!38gum571b0UaLzL44<(X@xO;JluQ76dFc;$
z5g~D|6Wj|IEZY>x-~5@n`yFpjV;Lqt2rAF7s?ejG4zkz8)qe<dyId00b+L}Svvb!~
zJQ1pQFq-y7J+lNAPtzDG)>xa7gOjeNQL3*>aGs@}ROxQus?<dXhM#J@1J-sr!)5c%
zfX#pBb$v(v?)I~oQSC6PU(#bC1Qva8#da%V?EJp8T@Rq}aB-Mb9_=x;<fOO>x;Io!
z3GeX+a-JZH{E@3bJ9(>^42+g1ym2Qa-um~F#dUH6p_Z6`6io~EGr;a|ihM)oC3^#|
z+zJ=h%Q+dx7bLX*6q#iUHc?1lVcJ3(i~XZ@08_oZJTo1{5hX;ha>g@>&o++)E*?Ep
zq>=Y|G<U3w5&!qq_wA9~w1?@}sV**;L)GgqN&ww^w*MhoEHa)=jwpEJ!bSi*p<es>
zf38zK$BN$X=P|-~vx4`3t#E}>@Vv}avp$(c7_o^Z$pD^Ahyo~woBJ(?dal54o-cMr
zO5g)RD;!wq0qEO+NB`V?emz+0KdR{p1^WeQuV4HtTLIkvshAovZX+5#Iu4x<dKZGp
z@@G)!e@sAygan<;p|a(PqY2xVmFMh7?Udph7)vFmZ;j`_9puMv!Nyb&WRazWoMOKc
zXucw@)%+$a$!8#`BwXhlb<`tK#7@j**I*}(L~^s!%(eFzjjo3&k$e%B#;yBB8SWa^
zq$Ng&w3WWkoa-3KHs(-CK`?R&j~my?0Y?-hFTt@}q=TGu(t@udG7`TWf$tZnL~4$c
z!pYUcI+a0_<x@+HhPeICmIXW%cZxbcoy1N&5nu;z+OlW3LUmgO&gf|ZrTDT2lt0I(
zE<Mp%t{#!_NLtc+^J3AExthA<>;!FnhOXEj7vD8+!<&P$yfrYsz1j;5r@wMYzc$<U
zfAeD{n;y(3p6E4v%(4I`brk<7_X_xVmGO7{I>>UbDhiUuZ!WaUNsGH{xL@`#Sueui
zXhem&^k&`?$n_C`fd{U2zQ}&I_}$CkszuOGqd@)3t<Jf_noA0cY|vLyzlSHKUl>R%
z1T4pa)(tfNA#ddf?&i!{#Jy|Oy>qs`v)%N#8a(2ezh6*mYS&V{&+W-Pka2bUo{y$F
znH)^Kan?z6&QUaMxjdc{Hvm!L+|`sbtyq={Do=c(b{SNOG&kC4`bg0!mt~nYDd$)j
zj23W6YgsXpO<9F`7U@VjBPO!%CUjqWrocEqc$zc5@s5Q_qRKRBXMVcuu90*prB}b)
znr$~LhqLbFH0&U2N6R1SNeMGG?@GF|P^LSVC*J9~l={smqx>L2p6FN&>zlJb-Ek(k
z<Xi2T9*cP<i6X8`7lSk)Wp%NZTOd9Q#o6hUY$v&vB46hq4kDjbzU@FySf{Q=WeQ~d
zW=QIs?cdKR+CF@USomaUQ>I!S5pnvA<d77=ezqH#A@|9d1t0x@`_N*e(e)S3oc<#c
zv6H^W*MzZAi&Wf3c?}5Fc*__4-co51VDU0XbS(y*sC(1}L4s@IY(~UJ&qn0H@UwIm
zXkd1eiqm~VcNPB?Rm<^>IHzuESIQw#VhU?v<PY=Y*E#(^5`IN7kEX~#;wuN4<Dsdl
zIY2{Fg|{X3kMQTl_l?6lD;!K8Q*R|(^bA{O0jfv0G)|NUqw{vxu?YAZek%m6iO^!|
z&5okS7XHc~3O-FK5c3t98U33|wOn_6wOy$u1xO17xc}jtTh<vi9qy)A8aDxxW}B18
zQd_fED<JEc&W&{7sw(;JduwLF@gxC4a9n4lErdfu4*zlKIb;&d9Z^##<ZQ+ho_$=x
zNJ4qCF6a7LevC|y81<&d=<%#&lK9T+ak25|9Y9hCe79FtUm8^?(A(~K1tKhbVnpn}
z(|^D0I*K^eFhr}{YbIwtq$XW_#fTG~t!YOw?~uviMVF^mtKc26r~4(IPms7KEoc5f
z2ZJY>IQfQm(tm*JDVN$l?eybNaGaig{})96ouAH!<rn98*SY#06^q`L5c=DMM;rOJ
zg^k;E5>=K-LG~KxVxzmoFTyukQxe-q$yef-&Cu-D*cccVUF`$+-T9>Q)T7Fr6@V@9
z*je}i+1|JkwO$b5Jqt{iXeRA2X2~yZ3KVS`BYNS+_}ZLFT1e^0Q$t$a!lR6`>*@!R
zo=lBy`m#w~jdRb3JM}HF(=?=ZnoZ4}TsOV=G3Bjt>rK+W%}Nn+%zM05xcUh1O)q>r
zx>zD-Jp361iSM*yy|et>y&t>|NE2y-`(j@6xf>eKupSTlZInjVKWUm8J^y00tLc3c
zXjq+}>yzc=bRUduT$=OdX7NjHONZ#0jJ3+HA9<XudJJvX^>{b&cMpGk5Z6BJriJH5
zhEqk;YNUyXKV%rMyZLxfG;FIo$%YhBa!}1^;Rh8;q%}VD0xlGPEM=r*)xT!gQ~Ql<
zJN|yqD!|g8)NFkgg}C)oj?+suT)-&Bd1YR4<9(4s`KO+$UX?MAA+JgX1bFFMJ!Nr7
zI$<Pbtt={Bz(B&$J(P1>PV=C(R2C|$XI`pKm?J%hV1oh;Xq?U-?ZnIv3ukG{F)53c
zxH}5oy6qe&NpPR-%Jl&5h(OrJZv1(9OQIG^$W#IEs|=honCvUA!#Upc<5R|_A(Pir
zuG-&=uSPU*k(~S3`x6<U5WT90S!LJv)DoA6S!MX!3iVzjZ%yZ}`V7s*UJL-VrV;4-
zrzy)<YERTcVPghbj%zhD>;A!%laHOxU_CA0?R^_qn=j6zemn)~>zr3LmmE&1eW?yy
z>6p)FwM0m<h*8rmkKn(M9Q>V$%AO_5Pf7d^W8U%R#cBPUNm>{cnP2rf-3+3iP=8+a
zu@v?QK)VuSHMxQX+npBj$7u<pauQeW(uA9<@rpL<`TX3VyB*DY63Chizxm~+B7$G}
z_(`s{Z1YkxJz4w-PFVzQ%u!S*87prt%uRpeLv5I_q~l}#7IZaVC#w|g8>&B!dbNz!
zi~H*)tbr>rd#p)5F7E)^5%39E>M4nQR0|w9GW8s3pnF)9$ZSTH3lHSv$sSgYvZfuU
zc++p6Hd@({1!Tzc9P>}zb+Pf+@6%yu(x>O}^r{%|$43mIZG`HcmX286a*EYZs>!AG
z8UTU^{`d@bmImj`rs)U|cTPI*<d>SPqrIY3HpZj}#tLm*;i8YJZSVV9!<8DAtvvIa
zpXYztu1$M^Sz6<nIn1>$Z-k=HoL3<CnTm`gr<!C-Kyvd>%5(M64gGkR)Hr4nc7|G~
zg_bEXg}m}dP%+2A<;9p8x!j@@;F2%ciY+<E(hn(sT^OCZ=ql5#1d5XHEE8X%$i3y{
z1)EL{$NEsLI4wwctVn8m-5o=m%D?G%Uzh1|ae9P$)B*IDAkG8R_3v>oj1@9UvL2M6
z#BF4P&@{)x`9^hiu!bzRQ8gjKq2<T;>D<w9A5B61+m+gz2G-5U4Z6XNp8gV^89y63
z3YuY@)22@xv)^3v1LJAMg*W-2itMKZ!63Ey&gLLU&f7-44QGQlz*p8M!N#rC{-xa8
z-V$Js(!4ch^02!4X9mS*3Yp)nOrILa56Xh|G%NID`2Fj=;SH0#{J?VL2BfkZdJ;MN
zheizRdHU_yed&a5-@!)^`KXtnPpe)oN+{obBl=ZR!$CHWc2Mb6ZrtAWzpNM{Yn8bS
z7$(F^9i)JY+ipfygeK*KX1vmZpX#~rc$4Y4Xlb#EH1BwanQTFz#frT+SVk->e$=4m
z1LnoXaZt1od>n7P?U-5Ho=_jW;dG$eBGFeyZQYwKXveSfqwY=}*uh#>sr;tqaJ^h5
z{|y@QTz_h4P;Xj)>TE2DY{@@&)^b&JF^7oVf;hd6h)ZnpvUpee)^SNAohGNBm2f8|
zN)8qyO4EQ)Qpst2H#jcAN;K#iy~6S3JXLL?+A)V21E{^fzwg*)R-p1+Pnw7B(?tGq
zyZu8?J3hike;e<=lEbEXW#pad)NH>R&@|p&AIQ6q5F>dW3w?T4>fU;(m1=aR#a}f9
z7$96l+%E)&<Z?yw>Q&bBT;4p`MW*vw$aUO(Fw1}r`0{;DYZ#=)kuwXo>^0vio###a
zl{C98={%d>FdF$KI~u?Ah>4G9BixQ;I{rjF@r#0GM81>pfPx=lZ(aG0PaM+F5{n5u
zGvxnR68Bl1iuBCm?U<}>S3g_~$HL>Nd@`6TUa@B?Mo4;x)LiRW1^HBbsLY<>VQD*x
zZEHkeQ-Dv49i;Mm=P3@ZjUbNl9k9~$5cUIZ+rpcJZ~B0L@oViP@;omucQ{RzMZq+Z
zK+*HMm_(?-V$ZcHYG3PSD>gjIF?Q$2p9RcplROZ)-HjKuWb<hoXz5q3kQhae2tXUF
zV-IM}x+2UyGYJ;SMuDDYf=d{VEPxPkHI5}ActgIhLHU*YVYT~HF@qy~cRoO$mcuHm
zq@E}ApaA+SRRY(wd2h86&52c<%VQxNt#U)Gf;$g5S+1Q(&?s66emnHaz5B`|h8}a?
z6)w-vEkM^aKH@%C;CVOhUS}#c+^)pwt3_LYNU&9J5@}gkYk#sL6Yiyn*Yp|4xDubG
zsG7hA_M@}W4SRdEyEufkkaS5lk@s#DPn3mj$^Ok*IK?zw=P((C6;2iJ?wjWihv`U~
zWk{`LgiU0doB1Q<xa5suPi9Xms_K{Q8Koek0BOI?>3&5k0e{bV`<-S-Pbr_k-p1ep
zfj6;YE&66>ua2J@^*5P2S-k`Cn4i?tLhAU0OxI4ikyPn9i84VdTbTy|a4YYd0}QL0
zD$;DYQK{sgjaMvh#2)avBfZ%NMKqi+%jpW=Ji?9b;P(85Z_$3silpzj-7oJ;zhr|C
zm((urtNfxl-cM(+1W&Of<i9MGGtz))dnZ1_^xiXCFFnq!)3W!GNB~;Wsm32<#V{^@
z!=`1*yOmV_TCS+qdGS%A4TpD&bv`TI%KyBRpxfM5Tlt(lYphN}F=zQ$Z0Nue<cFJy
z67_E=q>f<Gq^7o2XukY53Zg!<bVG5dBHcH+C9{I@2+-2U&9pE^g&s*Ysc}?pb-X;Y
z?|?;nj(RttUghuUn1*erw}9P>UAC3XSUH}$I~Rq^w|&n!@uQd^F(%-DF^efEomaln
z!qb~rc2s(t4JK5YeQ-7VLzBDHlTyJ533UU!qp9lrSh^T~wpRH3%?w>&Z~OhzTc>~h
zxy&L<$+gSl5k>>363Udf<^gMU*nWgWtS?4GE%PP8m6yLt<NjQB<skpHH|J(wk_@<A
zMtOd<K<L65Z1*95;o?N=`W5+qDn9%_t%yog(;_z$8iw)CIk6!28^eE0cn?c1f5gF1
zC$JjSg@enJ6D-1agG}xPS?`7+hc)YDM^M)3#y{wEXz4DfjR1-Y{+CXz8%py3`m@~E
z9)&bK|M#ssN@v^e{{gkX@<x&7KiG-z^mo!Iv{r{&`iv^mC0K@{k9$K%y*RSFnIO$w
zC(90SRiHgyO0Ep%Dy`#uxXaVenIQY4I+SDgQuF6V1k<$bYF#B*h>!XS?VaP6tK8BT
zypjQ|O1E78$E$v=`q#?NwXbVh_dLw00doUiwJlQSt=IwLl&jL?l<ySuzLGA`HnBU$
z<JaDiM~b5dNd+Mtc}mj)RBk^CX@0od@JTtPQ5Kz~Kh}iFZXx8@iCn7BsjkfPK0C&E
zyaNK-OSIs`$x60+?7i`<n*Zg~o+QVeBlEsTnigd|LN|j`evx7EX`#ovfqM~M{QnRM
z7{35WLWTZxPyq#lmVS#4BO5U<WwvU4#?*NRS8sis|9<^-M&rsCP5Txz1^k45&ESqf
z4=&_-`RucVNkY+8iV!MO{8*p}%GBX!GVGjN`#qotP~-+^iL}bruiu|vPEg2Z1LH;)
z5_j=0+JDr23j2rg)3ifUn9Lc~7w7LN+3q9rX+Bkv5s|OAb>t4>OikR+mV3vs9$;Qe
zP;aVzFX>X~-owx5U=#rif{_4<-zdqAcBO3ZE_SXj#R7%1&6B}aaSqvm_HOQ%|B^tU
z@c!$FZ7}~l7(XzE_df*_N7xnQTQD?dtLr|5FrDI)vs141v2#+m&w5~SK?Vxvw*Fh+
zO6@y^YZU5i3-yvL2<JgZ%nQ2_xESNsytM~|;Lp)pIj1u@qlq+OfBo^`D6cQ<l&5)}
zE{j`1jGLdGaIV)R$R$G7RpDZC<f_9i*r-(Wc?RmpZJoM}IHI+SIum6a>XHYru!P`^
zLy{q<h!8pOhJMa0;WtglQRjLy7OJUmXseJC&my%id#<+9MnVI1$Uuui=~dWIB}%~S
z4}B}E_=dAVt@c<KYwsbgzEoYBb1YC^=rs1=r8<oQ9-nqR1WtImf9>s^lHN11%0O-6
z1y+HH26>NbOAInh2kd}Q=CVL<R=@ZNj*+l7Gzo8P{WU%Wb|Sag>cOT_=j)XnuoOM>
zcb2c`Mrm;om2l&0<1bfU3w%;bHDUCCOnSp04XBXsYhso>&(CX8v(nBwS*<m!(_k#J
z&qU_~*G*9`-cx+Pk+#&j1Kyd#9AT}`iD_=9v1BmEwDOEc;rJJB+BRWu==kcN%Vfyt
zK(>JT`~A2`IC*|&nzPHwfL9#}D~$-)X06X8wjZ<IvIECO>jb}XyL7ruMm&55#Sq^I
z!GP(6pcMt?pg)r`A%w7V4{oGOiU0X5yQ~BEZa5Tn7~ea#b>7^1CJzuy2-=BT?Vk@m
z7+l{U0HS2LPfl`(r8((o>!cnJQqSgBrLznaX%&np3<Sb|`&M;F{v$3_dd%TiTv~}l
zD*Px3H=z(L3MQi9wM?Hxb-;_?8{odwfbR@5$c%*G70&KowLe-?so_<9=eS~pQ`vVp
zt5|fUw-Q^?#oB+Z<oM;g{N3o&x%2&L*Dr2V+TSO;EG!9QHCE5)NFwt#9YXCJpG_3V
ztNr)9Kl~tTGTG}R^!Ng>N^6SWHr#;-@7Mj!O~FnKZAW=Q;YZQ9!&F?=PX%noq<5-S
zkW<hvO{*XEq5ap`0k^NE&5{u3bs-{Kcw^GRjHgiSOrB2`_d-7dJHTk5lGI<h*~BB7
zDLjz~9A`<x795{$;3-Y6TsccQU@aafs-L@d{!ui$B3tHUv&MlPa9?5Loi$gEofvCq
z-JgY%XN)`GwGA}o8r8tx7cjKzCC|%(p?2iOI3RVrk~q#+>@(Nv><6J9Y_`T2A!dIa
zc16=IN9mH~`Q^Vd^yPNjFV|4cdk@QXtJg@)R!=1botkpf5#N*hH6%wsk|i&r5L!JN
z<mL+#W`i6p;`%rfwB+~z+`k?aw|@F?)#S3-z!~dKK<{sZ;siO^R9D-{c8fzB-s@9k
z_%Iar<O*3uwMUKE8*<ee*t73ri3^l~&QEeMdBOr{XET4^8OCBCujRcYT(3atR3Npo
z1se^&<G9ccDj%*u)K^gCDS@Srf+H@q?>jb_MV~yg7C#tOW!F|XKTv4%5UCLFY~Jf(
zCTRB$4hBwu&i{nbe0em&Oy(Zvc&hv=aF&#3ACb=iyMS|MO9L){6;U|ZQzZx`ACER<
z=VS-1GJ{$sQjR3f_kYibqyby@-oa`ZvyO$<bN$;gTPdozA;jX4pn9j|?iQ`LxY1TA
z!ZyajZ^mwz?ueGK`I<`cH9adJ^fN~;n;WKXZ_?b#H%Ro(>@5M*Lo5O+ol`(*!b!XL
z1E#RkdT=PG^uF!!HVRiHQJCQY4@5oHo;cl4ZPOC@`S1=oGR>(dGoqrOF}I^2E_2wN
znru8UHW2zd$i3~n9Mrpj55xRcQUH8sj3%Luvry`Ud4KDm^Aps0tKrVGT%-I=>B{K3
zdYEy7+!7nZRk|!8hfzBbVC!y2)<<Bd<xjsO#KK-7F4+P8bS~GZSEFTSqfxw%xN_QS
ze{Kg26OwQLxlc4_*FaeBajw_T38NYoV81<~ZP=YL&0%5>{8;P<LKWGWcOev%Q-4|b
zIcWo?A&;-s-W;mSA&zN1?8`n|Re%Jewre+FZD%naSu<PMhTmQb`(=<8XNvZXkpTiT
z1iwB*bx2;t^cRx-(>7=`4L3z2|A`H<fn869te8i;nLHp{454?uFH}HFC1m|K+zN&x
zo~E21Hi$mWRj+M0|LvV0_+vD+Q6bTH=aP5~cVDmiJ^%}N*M@eCoDM@yzbM}Wv>!zs
z;%JYh>hK4b0I!3{M6=AGSPQ5ZT*yfL=bnFJLys?vC!amCH8E_2i(=lp2wz;-AJY`_
zgr;G+xcnnl0DxuiA{Stoj&_n3L0(;o7g|Qp^F|ejWyOM-9F7;iP7?aSB}~TDi=tD?
zVTY8%FUitr!sp;TxV6z=IUSe?UQN@AkL<p%d|Uw)Cfx;oq4PgG&SnvrH4PROhXo_F
z4P@0w7>=cM^O|wU*9@io*JKhqm;izu_AZ$%9d4KFa1w0_TSM3Whvfj|-#ua{{h=IB
zHnwWonYQ$wPrl76JrTIWm1^<D9fqG0Bi^1;=i4&A8fdG)ufuPAw;MM0EqqDWvkA+a
zJ$096E=9*SZNdZ19O6Uz#gk((y=4SjXc&t0{Hp~X2yI$TpW(4<OI`d)$(~u53-A3v
zk}Z@~ra9}=LrbRID(w%ZPo`{t{^+M3-4^W+haB+XEb|Xw@FLavMtNoS=|Yc}PdB}B
z0r`gCs!sPW(858s&@O$u<cvWJWI(9lw|wlK)8M^s#^H_2;Lg>*{v>2Rg>fWoxv@R;
zCC|heyP$GLn~Z_aOt^ArGygnj2WI|<In-06r~b<!_~dI+J7O+BG8))M+JD2D@4a#Q
zsxqU}yT@SoYeK5l3t1A>8xpV07`*M~0h(Lb&C5=tF~=yr-mf8z?6;k6dc&=U6H)lK
ziB6N73DDS8hEY<U4_E-cqR>>lEWOj<A1>PS88Sef<$oWovIWT+_YRhoc<`$e<ASen
zkfDCV)N|zBsywk=a<X|Y>xNE=WId=QeENZ`iq;fzwN>?8KJxn-nMBvEDVtqfu`B|V
z;qIwH3U+(D3$OSjqFmPV9M+b-hcu;uZPRgI<E2+IYceS=kxz%)3Z-*XDi6GP{Uee%
z5ke5F8<xuszUXzkXuSD$(SR#X5z+K2%e-7s)6*;_$LwsozoDr~jm56CyZSU8b80s2
zM?Z@{otPCt*c8^+_zKhFLrD(?-Y2v`fB7ooyxr|54Trm)G_m+5H>s_gH9Z)Yk)ZUR
zPeCMjl}{Xg{H%8)*dgN83O18=HygB_MosP1*C?*_{mO*yKAn#2)04^*pEfAMbN-)@
z*N!2#5lu35R5xYY^HMBEP#$;dw83QLI3a|z45Ds<U`<lbx2D`0=Ec2xZFCdTNV%v$
z3;Ye89IWP^-QDwT|2B}dMdOe0hECxIA1m%_#I<Qthpfp~YmBeO-soglP$#v-?`*rD
zToS%H9R)|)2f3=`xJ9SMTWhlX2hm5hS>DB(uP@rDM*cdBTgyb2g}dGAiuv)l>z;gu
zEiaoUy+=jn+8jY92l19DaAq5{9w=ShY7pZfXYA<~()6(~aN2o24^tA%XR%+NUFxtV
zT?`xid#tr#7X1>%HXCn)5YrP(+V}uRj~oZ6N$q=ry^z<-NL{j7#SX^O%9%#-J5i_K
z6SCKdgL_L)RLwB^jnK*5I!U2!9ib3^w0ZcTuXZ{W69NlfYE-&4my~O{gMt>v*J}|@
zTC>@$rOhy2NIiyw)_#q2gf9^oGN2t^rx}Z@aKPQ_9sX4RrmxN^TjHL_%T$w|H|c!|
z<!i|4d-=3S^#>mx4e;u{8Lp(Q;=X10pxkCcwJkZ+%REj0L3Q%C{x0_we8o9@p>y0R
zyA;jSRyP|G6rWxGBKN%c<+jf;3X*a{+-9QKVa}FEq%LU=H$;63F?=v>@!Uq=W(qH6
zMi>Ck=k)pu$*~j@jYuWmu=(E5x2K2hKhtB~iZcWR4WH@l4!99?d9~-SEBkK_8%_6w
z_8SU1RR1urXjIhz>fh8a&7ACy=GUe=WpLL@if{U*niJp`mhpaiLxT~+iYZl&%(R_G
z7tNPW-uRr0uBYb~vx*6uz2ejaJfEo)R@iH*_>tOzX47a|#0^wdD=fz*WB;1N_JGVW
zuZ%EL8zW|!DNDsEZ7us1SY^a|{II;I1!sg?{|J=efzVeqUzHXd9EizAW9o*`(<m-b
zaPp;aRnL)PORWAi3+TMmc=2!L2n!d5^|bf|wQO!%ak=!Q=y=qRQ$E<~DzB(%6u-^s
zl)ZNx2LW>wH_6V(Ksa1m{{5`$TxgMnFPx`Mg0aMMF=5dc2qJZPTPAG-wfolvKDrDW
z*cHCti74PULq2TT9gq_{+)w1EXyRyie5-li2vrsLc^W$!GaPjgC*N<|tV*qvbFIR#
z$9d27-Hu8ZwGYZ?-Mpu{?_Z|ib%nJ0YrIt3gp3f%_naV7!+Qg&LdYWYF!ag9#>lJ8
zsioqi3kF<$x1XsBAr{Pis@meO#hxpn>IK6|23`%mP<jZ=qVci^tD9Ny>ZkfVAGh*g
zp>n>Sj=!(K`LWaA8r}|PM=l;%eQ|_-rUN-55A>OCk3DU&3_3ZOa|u4YbB^(`o4U_N
zuNH~wjH|%vbHPcg8HC%-JoEO_Vr^5~geJ-0w(qCSq^)a`Mb`183e5U3d?C4XzPj`!
zOFZznjiJ7Joaxc<a;xFXdy&<tg1vh#qUEn1xOCTmCX#68uL~y%TiSis2^%e=)2Q9Z
zl}Gc+H%yopFEbRBazazN;=dPsg5M5X?&hWj5210TWP!)DTr3dMuwT)^-DdX3x4XLg
zGYDL4Vl7CuMLam2aUPJ3Nm`ZLf>O2&C3mE)+PgO8AbV5^W)Q3T>~&`WXGD-v*WNwf
z4+9$$jF-QDY&W*ot8}SlcaMHT^OIk6nuYTvpcMatZ@fz#667LCPfK&q{mVo6miQ&L
z+=tZow(3DM`3J=eY?eFf1zsqMTme#GFyHTHZs@zMh*3EvwjLj@MGj4!0M~hT9x-77
zNm<#oXoEV9!Ok#9_7eA5Y6z=NMSl^!gstkL*IBi?iqLHh^y5{JZjTDe{=M&5{O?z6
zYcUQ@ZYMK#W6A^p6g&U-&zrg6Zbigca)mSpjej}YhI#xOruFn-Ni)x~W$_HBZu}3)
z?JS;0P#p{Td<Aoim$R><&`Zrd{Q(r1yf|oRw*0%R=k+RobRcfdL0`1M+bnmS2XLs>
zzxrc63%>h8@3FJtqY|xIAqdgEV=)Dw*>F;SCK5O~Q|MxAR{F6UGb7u(_jFRu;x?;X
zkPoM50ND-ya+_T~_|LH6o1nZ|U1SE*A?hu^Af0uUWN!ky4jE=K54^>u)MQ?iS@K-Z
zZcE)9VEf{|PKP5aP#ydFH(u+5->KARY&2AHDDK7$ujqs7VQo|6rU4sPazaWd*Js_@
zV+yhtsRN%6kH(ZQ6*yfXBU-OT1HQN;yt)8Y_k#itX-h^DvP4HO-M_5=K$<diD?I4h
zpFbB^z{PP*l>Z%&xp%gV)wWBZyEbJo7O`T!%YMa^>M&U5Ff+Ji+jo&(@tG&Dy!U5}
zi;3mpM$L~)-&3Ka$yDv6M8mrh-BMAk_h9trcZd__ihLEif2aInjQs$_d>f-6*2K#;
z3XbZO@1msl=gT&x<pZu}hqW)7*}?C7%e+ys4FhtlqRYkc!Cdv?&rN-N6Ohy%Aqou5
zMh_%Q9uUpAT?_?I`k=!Dpr?TjHG<7C;r?oI8BB4$lRO^&ZG-rZ=?$T;Y~X`G{IhQN
zX$B^=1Farhe0MyoQbiUj3L3%9d})d`Y^=t1iA5TRBPxp+Loz=G3hc3jU*({vVsiA(
z1?vA6ARC3V(_Aqi>YM;hE{~Tstv3`QvV(}2$==RCUYxhXj^P0><DikwI9BZ!!4*h@
z)!ixsSxjy|GEVXXI=ApufR{$6ZV*Hs$1QR1TBIRrKVKYNm7|TTBpK6cd-gp^2&uGo
z55Y=#9^8<dbMHUB4-d#W%{&?QT#>8|eAy~74D=MG?Tv%8vd4pfZW4IQEuyY~@ld%i
zJFzlh*~F7+ye=hY|HobJvQ2l{odoTPrKdYDOR&p5j{9K;F9q0}g`;eE4R?nexSOr}
zb-Xy)4tfOptw({!yDizA1Qx_?kB<k?AYijc0}FiWZAdGyd8Tan4ZII4v)s&0tcY0Z
zwTWH7=M-*D=nWXgUOg6@x>{IO_?p6`EbMh%Qom1y1=?vQnUc||!PeAe(ok3*yszfY
zkWVrc;c`Q_+}DX=MB|Z<Cq0c?<avO=y|mjNrLt4AQ%T8$lnB0VYrdfq;;$9^=UiE@
z`n?NVX|cx!qY->xFEvBPrF#91<*g*hN_u<d$Mq3+N2d7EvA<(T)1m7PL%&FQD=AvC
zK31>>;l~=h_$BA49s+--1|aCj8r5u!=w}t0D{wJXU!j<D@AKFPZL4%CYCe^%Yfw-4
zyQ`uJo%$s@+P^tTAuAfq6FzFLQrr|6mjfi2`vpNQSk8$noB}Zta&vq6lAAvgQbX>!
zcPA`!&@?RTVw}03Gx**tMvnT%>m2{=UDnM;X1~(eeT3sPcFL}-qxv>xqWG0q33@}S
z+fN*b`@N+x7v2kkwUk6^fsrkF8(*RR$G;*CTK03Zg+h3(kGbAlFC-N>^rMJCf1z5m
zH9Ii*K}Obk<FZgsV7fx34lw|umh5r-+*i>JVO1%_IuH|&FJ0cpG{ZFyhz5ifS^q^B
z*gY%tZ-|ba_}Kex)!PU$=}OSO-nuHOEFVk0xPL~eEU8@Hr>+S+=T;1=fO=(5NwK=b
zo$-I%YeoK=+aSmPq>ksBl`yWaoD<>CBzDHDXYqF%K38XZrAZX-Pdl4OCJ~@V<cF*=
z`}O&Ts!Gn%g-MuZoT)am^tLT4f5RJ9#G~T?!;fC{tah(GW-?dJIb>`zQnr$y`1(IF
z!8$Q|6dUk>p<#hzjzh_H|9g^f#45Yxk{;&Nj|s%?(w8%IBs^VMQFkix$I3a<l07RH
zW(2wH8#WUY!k9$6eOHg8I>+EsGcq}&xi_CVHm|not8swE9lYKp!(cRh7^w-X*reE>
zygYquf#^{wP0m?~Segs07x#MeoMj+)ycSR4N?cJ)rA$rC1qK$9?t!9P<;h=D8}Zk6
zM7+%;sIya17AtGz7)8FD#~p67<vLAzetrcmKH0LuX$oX&@PKhLm6y#H8&Dd+)BS`c
z3nz3lj6vK#X=RTRn`>0$g7=A)cXKz+9-6B)v*c<kb1>TWN%NBgwrCaT%4-XtW)ik<
z7-g=t&G~lg3wqRH4+7L|7BaD+ytSI>>dE@sd^;6K2Vnm4n8ay$pUJy{_cf*M9A&<&
zGL;un+p;p9wyMcnamlo4711?3j&F(bh=61au4ADh=_27GN;$tGpj|!*B04!Y^2FNu
zsO3;{k(P9tIHdAY`D%g%N&R|LuUnc!SM6R#-OUmt!XviQ@PiYAw>x#&OAS)i-NdgP
z>%H7lU^JCdxSDDNsX+4(a7W7#>WB@0mL5yWffe-EdhkZ0nFX2}^NDdS7hR1de))r?
ztG5hUx0a|Au@o={uk}kP9@JL1Y!BASSbE!&-hTt(mQW5$_H0&!+b494_dc~Sd^@z=
zA}U9t%ctu7!hhb1ZZm4y)?d}c(EMOE<z}yZKYE?y_`>Gk9^v)eM8VG6GE~vHg~^Gw
zN%*7NoyQdd&DbkrPv?%Q3zPaFoW_zTFAojg8QEL<?N?`S?e<zlFa?q@0kwa5{JQP(
z5p!RK28%9vEjSyy)37;ZUITK;f@rz37(tPoERm10;uR0{<3UZ!F{az-y;xT(6%D&G
z0rtagIse<5e5hWM0TXRPz}1S}y&tYHW6mPI?*}QR%dd=7XI;N3Ka&znds^GEBgva~
ziP){-Yq$Aai0q#v&P7fCdJVEtI(J^<A1~F_0rr!1kL@CFLtcubjhhWe_ISU)^Kh_m
zFQ-X$Yb`WkFa1RzUvkr{K-anoX+&|We|Jufc^RsCBTDvT)64Zlj0U<TLEN>vELb*)
z%o^UKd#3eI@k+N&cbI4TE!g0%-VlXeb_xf@5A!{rd}5MR_Ie{T8=G4qIa468=Oyt-
zoOLbz7Grg&nO~qP4G5H{mU{GS`CQj#-n6$g^2I^GR0yl_rP$6@&-d}!)z|miw&N00
z1RIySI4$!XKmns?(}odA0^QYHK)H#nBj)rRFIgw?mt9{@>QjI72&@P4n;%~ph6Yck
znoLdZ_8jq|dB8FuCl>wOKQ@|kHLHZocP4d-UCK8sFhZ|-l?{f_@dwXy_U&r8<s{gb
zJi<|r<fk~E0@r4Kc+~e*h7SfJ5-a^r3q!IRvxSq_Up1M1Fsz-E^6T8v$RQ4LZj0&9
z8o~9?j7+2Ok>O68$XHYzR@=%7_uKLIgK>_OUZc6$h6@g!8kD2Ve3c3c^ksRflQ3q)
z?}gOn-}%{r{ki$73GRPCU(Pi*1;xEm-VmWq7m1_Y|2E}n&103U*y-^#RWRPz%GB?^
zck)M1szAdx&Lvgm5wx@qoF(O+-xeRfk4>x2OO3X}4?O44Yc7M?6PJ>YCT^!%eV14)
z_N|6`rHZDrks3Mf%0{~F+$F@?iqa{qd#SZf8hKHu<-#eZ#gYhaDHLyYKic!mJ!9v7
z9(6h%w9Dof(H*V%t>eiOv7e2;v*6N4D`K8db=PU0y+6RVJ5j)?eDT|ZxaiyM!aql(
z0N<H69)yNb(vjgj@^Syxe^Y8dYWxAs6o*aI|JD?vwtS&ku9P(O#)^J{!zYXPckBmP
z_b0T%;PVgk06_iaNdneYp}3!aZqwK0t1qqpuBE*Msq{&@di{bltp3AT{gZIC1Q`XK
ziktO`{$<A?Z4%CGtD3GRQv-c;*7M!wSv9I<q9ZD3_td_h|ALTZ2YR_7N|?;r#Mf7(
zYR*%L3de5U-OrI9TVucaKd<=}zc9Nr<i=Fw*)!>RO4#;Y;2T$z5=zWzv^BTb*B-ds
zGr!yFl9z2qAPJ(_BVl<hhyG4#d_?`>Xv9Rv_XZP77at@fwGB2OG!PO<0`ZK<!k66h
zM>Dx;tP2?YE2=2SVdS?h?gw9{Z#ROYwgOzseXM$2+zVo6VrCy%j*n4!0X+st)+lF9
zn7Iq8evG?qN|1;e0~A&jMHE$?9K$?|1F_s8K0177c@gVlh6{lRj1M?|NOkbeJmLVk
zI(L3yIW4FzOp6i~^4|8z^(sT@SQm_l(_qVdj8xnkrjOBj*Mqk#R&6+`VF5g%Trp=Z
zZo%}@cDJ^^l-Qb~WN#W(DwZeEnj)|b4MM_pTAYM!a+DQzYe}mTvys`b32e&MdZge)
zDKlSw?xl*r9yhnu9fx;(tD2^HnmE}ZNbs>3-fy4^gTv}TgCTcmP<+|ATgRr51`yNK
zxMx!?2=6s|(^_EL%;qW}bp4Ot{3@3_Vluu&?$zAV?eb?5tfRifHMTlqF^RF@T5Gq2
zomBIMkCmFhTHO<Sp{E5E&&1iCoI+ojXd7p+?o3)q?UT3XAdeb-bp+1Lm^g`CMTR&B
z_LY>n&}HS}q&B?uwpr~!o4i%5=&^M#t4Cm_e__JTq&MzM?rsofE7xZ3nhGo?UNm3i
z8?E{c*TpiWiKnsdT$xm@&`}uia41IX-A-Ix(jT%hKie_m(Jy?3OJd0zw{?Q1aTu9e
zwY(W75$VaXb<;cDgMXRvi;3q(epM|gRlypw89{Pw7;pXZ>iKR-s5P&THeYZ>V|h4v
zTKiqDV|C6)TD9c&%B^q5x%u{Y9}aeCy+Cb&Q>`31BsA<FTDsZYOfS^DT-z}_Y0pgc
zre%xq4#C+!ye<J+R%mEF@wwP1T8=a&v@M0GS%F$T#%-~k!n<xSLUEpFRaQP0E#p3}
zn=2w|L*EtkC{C;h&w6!Iw^DcFwhMX&l%wH@vXSo88xDViojU>@TT67y-V);)8P1Ty
z;AQuZSIJrVMv5#>DOKJyE~p{)I?%SyE0EnK#3K(%#OUq1XYHS=re<9e3VLtUY-=6#
z9ha3J7t-g9@zHKOp9`&yTO6r^Uz2w-;ODrXVc+P*HM(iN_;W(7=}|oNQ25~hcTyz5
zzyxRR-b@)hik9|mqx!a>mhTp_Zq`=45x5<<cC&_GM2_?D-Wr6yfWvc%<E4T`PnZDT
zsUJCQlmKIZ8zCn<(r@~a9mgjS;&sP5PIm-OMgrv2#PPgDoHzbY!|Y2!%!w3OThz?W
z?xp5spYS>z3qD!e&ZiLE9#y=rwroxfzonhrr`4?>^{*`iYxYxj{MdjTIHG6Z6E5v$
z;`&blb19E5uOf6wNbDtCSEo+20n)23q8Je;tF>~2zal#%oa1F^bXqmNeN(B1QjTQT
zL@_02-pM^9nyu~t-TOF}NK`nSo=j<72br1U9jn5}S7ulm__C2qSM5`o8TzZYT<WsO
zbPL|tfp6)SS9}jIo=~apn5EQ7kE436W-zzCkZ5|+h2r-~*80#|5_!e<+1>a=f3(8z
zgI&CQYKOcUajiL*yH#<_fuBV>2)Cxfa7)f>MNK;RX!kLvFK_>E{=b+~V$#_CQkQ!Z
zifw!2D`ZI*+aOwWhXe5R+S5p*ajIwS?iZ?{CQ<xoE<)RZcbY68%RB1{bFRj5*Ft@t
zq-VJne?U#e@uZV)wC_)ADQ~&J3(!T+FSkD@2VenK$`^SWMhOT%)ywVB_tCe>SAh0^
zlVaN6<^QS#`+pKMTURcUDDMzJCyP7nm$}Dom%-JJ9vw2bKl&#X<@G(sK&6VP%K*2F
zP#pQ7qaf#e007L-$uY#=YDK&vu)W)bW==i5%Mnp#uU-`a&$g&@ed3IY_Fk5bTCyU<
z;FU_q;OhF8R*9G&8J-f80nopVI0<O><4OkcT!$0MmWED|f1Bb|+jaIgsNm1HRCcQo
z&MilC`dV;H{eUIBpAASgvn)>b7K}m18<&q>dj;NH16O1x?re~A9_h-5u+m#2{0bW1
zv6)apQ*by7svIp%Ut~7zleMJSYhp*4a`it%FCm#_)t_lbVQoKeWrJ_5e^E;<NwtKe
zlX1=9c_3lm#reqWn5)_L@d#Q4SDv%%kSt!d9~d3tQEy0<5s!Va?-6|MznocCTPr%2
z-g|Tyg&pS_16yyul%1lql=&Momon$o3l#b+Z^OLg5X$mTGLq{RyqP(vpTW{znzox5
zU%#$6a=M|N;CIsWOFKSjZ5*jUtiY&FlmjJ@H6Hp8EmL!1``9<4Q%~DEO{p@V$uir6
z3F1d0QqF@MfWCh+gW6R--6wp|$D0hWStH+eQrDbkzb$i#c<A364^#3Mp7w5CZB?qx
z&a(EPV>vN&U+|lA6FtXZ_I-(yGL;FgJLqDw>6LioLD%A!Uo?MN{|8Ev`VW+(_2SY!
z$^RzB<wtl?0_;;a9^k)fT4*L+cKt%m6=Mmy*w*;^huSn@y_@puzu~#B_dG3w(pvjS
zg)U!&+mqUrC|^@uU_evU_*?Bi!~UIufLj-NL*(NLIpOD`1kf!NXkSH>Bk(Jnp*OMo
z?Eia1(DUSkIPD)-FP;gV{LkzEnZf^;^1Q;6#?C2gjqr_B+|j^`cGQ($DnVboe*eD!
DUFA~h

literal 14102
zcmc(`X*^q7^fw+{)zZ=lEk%dhDvAzTHAQvOQq(-vaI0FOi7_H1p<JC5ZH+ZWsi-kk
zLsUp;OG;`CqJo$sQc{U2iSWdI-afDXpWpv^UgYePbM`rB?X}nXuD!o&?-zHi&G$$v
zNdo|YJ-2UNw*vsg*G1<`J9mhVgwNl^Ma8b5Tdtu1fXx2wpIF~0Y6Ac`3b=jU%poFY
zVH8}h?U>70g38aFzxVoC@atzg;+>Rp9_D;me|`FrW+r?>LgmH*XykCF*qu`yjaM?S
zr+#cd+Guv+wuFk$+AF@eUZTb1^}Duh*WELBj_x@jt2Z3-CcNHwguJt0tUZt}G!mM!
zDjnqnzni)%4e2%^izbhp7fKz=N(cE=QBhZ9xfSlUE#_J2?)&=NCsSrIa-!nZPBGy2
z<>P;Cx2XB~-f;<0dE)B-uQz{~`HZ|1Y?8@?DB?Iayoj~Q?`>x@gcB1?K5T1jdd&vO
z*uq$Dk-lZ8-xP`Cy)V5lHhPt<X1J?CSV+|W#={!>gDWyNdQENA)mHAwYKkho>PVk2
z2p#oedkQ?X*VovaD;SKF=z1p3HoUjw%S2$_E!rlRu8nM(SNedL<a>?AkNEmsV9MUi
z+Kg_CZbB!h001#>hU~;P9|jY*gqKX~ofS*8HW$ui=gErR^HZ&GPE-I+d}eB|&mW&0
zoOa*rPGRPB13xWRn@6wE+Wqv4Almbs0ys=H`p0x2v<0Mem@#Y$)XClII6<w@GUU8|
zWP=HK#~-bMB(|ksD(G(L!G)Db`1}-BZ>W<UJs~D{P-_q0HY3x%lHc9{HV~}A%8R;b
zm5(HAP(sN3Vko^;*Hhq5d*5AiuQw#X12Vbu+N>|g!~&}ZBuuq<Sv9cxId^INF5S&<
z(}K;U^!LboA%mBy5NO^7S7o2}YbvU|V?l#QuQx*Bsh{7x6}6|XA&pf~c%@tTjiLt#
z8&`^}kJ#re{np2O>{+Ziv`7Q#B~~P{VHfibL#HOkx=U6gzvmm+x#g%a5Ua&0&A97|
zO5FL7LgUrXHTQ(yS2U9so)Y1W^{=w&(R~dGYF-GxsQY7ns-4-4FF@jIvfR6Sf9AxG
zTdh4wj>}oywQYUPD6N4Tj~Gids^psO?wD-;>+bV^6^r+{1);erlC^JHPdtQ|cUn<o
zl7Whcvxo;r%-zOT*ueL}hq-U*+Ru51b@TOX8r}aHPCqnaKKuy6T)PB^ci7L&*s5*O
z0~8Osp}D6P1B=ehA{V}jEW%sMtpq^VZiMG&U@96g3bb2hc@hM>o?kc39_;SO-BEm^
zP8J^z41Z$VGoSB5?v1y|3eRmfU+B#RAZHg1&RwRS7pe%q4?-#m!;j@d+t{rDlVT>E
z`nOm4X)qr$GB$J{s{jq~Keu*imbN#8@g}~nCMtzNrm~@J!UJ4Fg}Z{N%}&*JVgz@R
z{jr{e`(>YJUzjz;3NZj2nRCDSqwkj}>#QAF(j8L?`2L0?5<QjL>(W6}jc(Z3(REnk
zkCLWL%a-5`Px?Z4D*~pU8+K(ahZFBG2J@utrA#d(Dn8~V^xSto(yhid<24BiqnpVc
zqMnv^(rhM9wG<BuJ)-XF?SK}+`8(>*4LzP;eDBR&-HPBeEFO1@)_x8S<=A$+>YEdU
z0^AI&f}9Ieln2{4dJk;{u_jot3&V!A)n^&K`e#MXtLlb(Y>Lj8LNI>a*d@~K+zta-
zg7{6Tm++o4qF_g|^bujMum#2IdeZPC0+@W%r~0pVYi!iRQTqIFiqwy#<N4tepL-Pq
zZ$&Pj5dgb%aD)^?EKzo#ZT?wp)yuf4*TIav>hZ$Z->xw`|B4sIM@dX%vZZE8acXhi
zlB2TM*G%hqQG4iT60{k-*NMUF?T0?LUAe?Ap!_Wt?vr0O^Buoy>3x4qOnM~ug2bCx
zUq*G`LBW>(3eg#`IF7F|ZTwlUUGxl7`>OAw!F<vO87)Zxujjo;TZjB)2;z746lP+~
zKD1@ihdANbfPGG{vv5BIVh*9i-~^a_NN`rhLhv8?Plol5uS<2VoRoh42p&_PlSi)*
z(99x^uuXlhJv0<rT%)PP4c|zw`$fy&^118P!Hqap?CbAh9qk3X<S#cSg5$@&agSS^
z$6W(D7maoxv+A5k&2<<B?|@t@vp{=q&nPj6592GjUK?;y1*o`@wSO<;+C$9KDz+8e
zwL=D}fHPyU-!d>VXC-;4z51U08qv%=5srVNAC*A#Dm!r}_N}ayUpu9lIdGoqZItx8
zu-OIK>Jv2Ln=AbwTgO<>W7L`>BWBu6TYfm~%4~H7!~UvSI2V+p{pX@U_vT=-6}z!h
zw_^jY5x5F#<?$Mbp@g#u-B(3gdJLuY6-DC%%N~h$^h@3>?Eju&n<ftKoC5xV>#K<>
zoS}NV|EY?I{BdzL6ivM#x&m;?F#|qGXzh)w<UPLx8ou#V%2m{<PHNigenkXsHIOE%
z6EkzX+5Cj$YUEy#vjDy|U#k-p&Ch#c|L+H_&tPh$hhS*iCYmq*e-|L6=OMTw6fGDD
z`_m#7dPYpr##9)_U%^J3td&nRN_eMUXy$0oH<H0_G1!!7Qj$t`ZKU^%b^&0#QDU!c
z7l4d=1wiW<{-=ijQ<PR%e4(CqG$rG~jKoHEAmPh;Vchg0o^8!Wt>GyQ;M$j3-pZOf
zaOs7W71!wlGQV-FMGn<dzcQ?!B?pN40TrH~hQ48)ZIw@Oc<J8up$^FxbOxeABS%@D
z89*V^CK;&a)PhMYpv1?nC+HIDFEbpSJ<?E{T(phs+i$W)XPVeZwz~|!>Rbo)o17_v
zLwV$-!KPJqvA;0#YI*!KY6*;&D><QEuC!vFByEYLhPF0ZsEPk@L$ayw&wDxK>85!{
zY-v~VOIK2_B5}R7S5>|PHbdkbGqtgxaPn`VGdO4Iq-(t^L#Jm7V|RhE^UodgIqVel
z#<WEdNFKo>dwB-rP*9#>W7E*yHBks}ryD+;b!`K^3x>O)Ub#QjNmjI=6^A-ACU&Xk
zoaNow($!RZ_`<8rUlibOi6K8+^_2V|n+lW!W|bTtc=2&V)opLguhs<SwhB|e+DZm7
z#oZa%n&WUO{=L6958#5*y1pUYDvn+Eol0}|{8ERu5Ja4AP*paF4osVWUL_g9<s=3o
ze89J*>oRin4be4$v#x9=!ahj3TVJZ)=efJZ(p8XP<WDImFj_#P0?{zwUShd^CV<%g
zc3>H9?F^OPZPz`hg-cI!)A5O!NbjnP8_@PE&WoI%9@o*<LZxFWf(Lz#{JH&u`%Dw$
z{eap!`Zm#(C6b>5$Gk(C^)TNu3m3s{?bkjKGc`^9e?MMz^o32tD`K)C4KD`E<<DaP
zfu0Vyk6l4|>&HKqbPX&^sUbeOcuhmAHz8$f0kEdY1`d4Eqs#baj~=o(730=4<V4J<
zE3;9d9qiVtz$>u&C*w0Qmy>}sKVXEig`i9W1)^=%`O5Wri*M|gRBE{D^rS?gRcUmU
zvS3Q-!p~*}D7hbXG?-UcJzF(nhc457hjJDxoMElG_1L@R1zw9Zs@Vv@Hie(>L^H?3
zi$?2I-0Egu;8?k*JO=!QOC6UWakDRka-)3=o^JhktVBaVDx}c=U9f>g;Vj5M5!9hv
zzC-N--%EHJsf91u``gYXoOyoIq6TE(nat?aN~%jRx6zf~u%ZlWK9Jf0rd`$@gH({s
z?C4JIi66dH>^thz02ZJI7q6fD!^|42Y;nlJYBc*xZ`d9Cq#;@9esbsSf4qoHt3Wq0
zzOn31Is2kbxy*nj;+JoR6$<82OuT4AZTRS5K9A=c4<eKFjiaZ->LC}mD$^14!->HO
z?8?@a(@k!9jHOl91+TqDNlULdW}tz!GmuC2k8Km6c7E@YmtwcVJxPd<or>J|3g7&i
zI=F|_{j&N>mM^vH@;APzZT@LkNG9C@MY`WJ_$zMLAMW_)fcIF5t5Q#;zrq@)R8mwv
zc4xWOA&!Ew!ar$h;O@;I?OFRNb$u-U^h;qkqIuovEs#<-XU+wU8vfDqU?s;p(ZcIv
zdW<zsuecg}(@yVc0RN7;0;23%NZ-kb-yCch#a(oo<lkXZ+b5i^3+JlsJYnt1<>_|h
zJIsv|`R^rn^Z7318O7+Lm^S%}B(-i<Y}3MIm0lAQkJM~!{0i|0xO}Lrh*Gu+bw6=s
z#HK@^EpSavtXmdbEhdMD@4@6aWso*2J3!bnjX#$0PfP3ojvd6R9mhaf>SI!sv{bnw
z?~#>!^f!A?R<$#cKfqdr(Hl+|3k&!Iis6Lyv)cCLzDP>VnczRH6@Pr{%|LT-lUs5+
zV<iHAMCv=D=X@=qRcyXvnlqRfSJdd}Ix}+`xmcWM_+25LWXQ)K)Lkzyh)*aT>baZM
zopt|^5Zj$bM?L&XTjXLDh<@&U%ZNUP7r!s#6dn4C!7WWSy>=-RV9NF>)ta~jyj@cm
zcDGIXdrMda;5H?$Mc5kFye@4^@zJX1f4KzJ2>u5<)5>Nx_s7QpDPpA(6tVch!fr$i
z4*X2k0_nwk&Rw2J-=}S^?tJEqV>>>+Up;HEB1I1pRsJ_}rhI0A(_lH~4UO0;2FZYL
zyPKWSx$E)%i+IvVWIBd~NeWguQ2Qop83~KNJ3OqTI&d}1>j&O@t-+FF_sqgpzEn#|
zY6n?KwW}g~ak8g24R!*wNZC1lbGLJi&RSz~!x3dGCM>2%FO@)5&kXreg#2AIFPkp$
z^U&osCpxAXdz0C7j@dk*C@p)7r1bB)bqcq8kC9=tC2SWILfUbW&1fXdxhu}-q2mO0
z5_v3Fw7TarvUvr~H*L_F=Dc(-k=45a=}ck{tdbTuqe;UTZW}^!pCa)1?+U<&mQ~go
zo<AgD^aa1{ZklbvKlfD|?%DAhbKEuxjQbhE0%)E_Ug%gPnwg_wPyNyYd_XJmPLO(y
z9k;uD*&@yP$P0Bjo!Y6XT{#$SL#r0#y*#bhAGoh7x8}UVislZKk;6|v56M!ronu|^
zYwx*aVT;P{QB(!PM^p8O?#T|`i<pm=@;eEZta1<ZiN{Pip<CUn2|Zm}{*o?5M)tgq
ze@j2N`_@{h`Q)HmpruEo1*O5^B`~};k=%GI5%*2y-|*TudRlS~m&Csdr(X^}xl8pq
zp;*i?d#<~mvb!Y}@7q@MQrYXs^R{OMnmF;4Cq$Z*5;r0;>!k@dwpNC6R(fDSNz(0j
zeu0gL!+!jpG(T6u9Bn6?iZFtX%w_&m)9J>Ql@O9WS}hbakoP~-xjZTyzJCZtXI9Hi
zU7C;L?H%oknn~=~F&ZCM*m+1vQEKZoSh1GyGC^q(d&=e-9qd1xbVF8d-pR)KXX%{7
zdS~dyaN_J91(FyztFE%vM6K6pFIBUqkrUMNJN<5%iefN9M={wj54l+HI9O3=wcXy*
zvk1j2jE>JwufM{5LrN8uC1T*|H)9ZJn8~G(F?IOfJ}A#4Rzp`bTSsV{{Lr@?&(PJ!
zj4EdN?7n*BR))^_@;f%aV*gqpb?N;wuhJ3h!gj=Ip0hh3#aKGFGL+wYGuYC&xUp&R
zele$yQGvRTYk04;e60>V65ot_)Zh@FMUux08s5qL20B*-!>zP^Ag;^WQ2O8iAOHB7
zR#BbB$-3jv1vEQWzfNZ$R)Bc72`R~+%M$hQA}q&n%z)-+W*lgxnCuT-J;d7V4X)%?
zUh1TSOAkWNuo?%}Ocd}0I!+EnhnVQ7)yVOIq{+_@)Ae)<_j&JBIJ};CZfCH5W<*98
z!u(|Tf!pzhZ7={Qv`W-r1)*lp6t{G4=#Pp{!$A}9pwH;ibx#;+8S){xTA}+x(z(9R
z4GM#tV^-Yb?1z+ETZ-UZ_`sQ^>ep^WodW0xX!Dr9UXo#RGLqNdH|xHDGILs3g+6ZY
zGn;w#Smk*`^do1&jWTgdR(Q0h{C+~NvfxEYehAuk%?nJE#VyVSI-Xj*#v*K#9zyhv
zOI!l}ObZpmq+FA${J>nW*CuKId$Ov?89qx}s6ARJ0uU~ARL(<sa!B%6$ClIUkKOmT
zM%H&<NdYP*TbIT4AG({0DUrD~-xD+rIU4*x1NRCS47-vmRb>~B>Q_CQNc#}d?0d_(
z8uP{G#Fdmv(oJiUMb-`|@3~&@@wgH_Ml<%oW3%URp{92amsIwmdX1Nk{HeZpE@(w1
z>0_WrD)-vw$_v7gYtp0=0glDR@cYT9p(z>zqf3<_N~p3&>f}2Yov!^SX6`qBdJ{G%
zvhfr<L!>OJ(!+|m6q1Wp{mYE&_eC?H31}LfCJpO<>enxZ%5u64iuC^emB1VfMO@KZ
zrT?ZCU#u*vGgi3*Il0_E%l7k>B)C1wSXlpI4*WbgpDuT<7|Oen94PZs>q_^OT7^58
zIlcA>)$USqCG_mH%+cIC7SwWh+&@de0L|wn7OCzpJZu?q9wp6*^5t6dl_GSl-5gS+
zGh*G*0hES&L3nv8YnhkN79gl_+W@O&_}o6{d%s#4`?J2kbcg5Q?xo#?FA*|Nb|RI;
zvcg2}Lg1FLLD5FHI`GIdhMDuq>(CiIz(@M3v7zlkE&zDyq7AU|z1mOf3100+SEMMy
zF%;;H31}($AMU=f9mV?er<Yx>EKFX7-4fcBuW#5Kne%Z{efJ~rsb?KtPo%!q1@csU
z;>Xsr@Qul56WsHdR8_hAZ<8T2!ZP0y#0xUVQv4Z&R_TFX1-D)Lcy*}C$DD-#8U)0<
zY)(fk+~!=a3q>nxTugl8;qGj81omaw?iIqd2+aPhVx=4U!%NoAJrFb!j7wdwb{nG-
z=rt8q@M`&mQM~@buj)sO?w&^M$@)$dt00a{_-52Lal&J-kqbA(;+xle#H;uaLb;xH
zv+$IAakU<*Htp$|Wx=Tt=`0&cNKMkPp4t>IqElnHd#2oBCZZ=9!#wipT2I>L%gHT?
z?u$OSSA7I7BNBCGD<BHmMQyME;W?-&WM8>(;+UkpZ*(|Z(R@DmacbXdIV>~3jGQ^O
zRB6vt(JHFJfHL&dk~LoS*;`(toP8Jk1&#vcMKCT$+b^9-_vo5#=zpK5-i;fM+JB$G
zE5HVLI9S>&m?-fC`z+|XP1JnLoW51aQynyeyPg>s^~gL!F?f~?ez}K_NLRXlsJM4e
z4019fbx&T;qv6Kw*;@r7M(**AY}=)Doznu(@5AMiOXczp><zPZR3GK07i(X1*wiSy
zE9`+#36$EI>sEV?oeT8$kTF3Pf)<B&-nI1FC?{9hT3)-eWgJ&hDdyxpPF-2=G)2Sq
ze*PtfQuFY7{41<Qu3TIk;Vq+V*P5^x)|>DBOO7MkvX}A-vh&ZA8F!}`Q$BDV@JUk^
zos<In(CqUZ)V98EMy<nN_Fzb~B`F}hC3|D#yn9bSiV@Y8*{mMIZO<wr{!g>Y|2bkf
zWUtWy5kbUTY+zL`uTLch`ZaY&jdA;!#b_W;C^}k;<{oFG_ScMyn2T2}xv;T!i(eS3
zt0#B<5wQbpliBo*Q)a;b{pa7KYX9-oC$7CF*6#c7fxTv%gEzKW>$7%$@!Su5dmtP0
zv?ua+73tE+_cUCf4e3be&*qTbE=VG;Gq5kk252y6QZ&H>lmjJsA@e20pK*0N#W%$6
z25nWNg^%s`mrCaV)G|#a*OVlpesmdg?<DQ^KDv{GQ)t*`fgg*7QGXf!CrsVW*o}%O
zI))PYI_J%g1b@f;y__F+`FhNa!y$?pi3Crz=Gpi7uJwIQdty|>21Eij8}FS?Ru&PT
zkKZ1{#j;278Ma|DPfq+$(-q&4%!WR<gtiCIw4Z&~e0dM@VD411DN52#tU1h@z)8dY
zPE(6o{e63zIxt)xk83CGJJ#&=DRFl&6M+8bycpn$vgG=`h!f{tZZp<rbws*smcG37
z{XoKtq4Iq-1=r+E!p;|@H^|5~x$paAVQnyz+U{NfE%wwUQVcLeK_=CbYb|<rQsRH_
zO|dovaW2>x?o#9h(ZIOTI%!v_#~NH6b&=LQjEj3tI;+B`-z<;E$%UhKdMW<3+dbjP
ze}wMK%lx@QbyMkOcGKF}m^S}PfgBL<isWM>4F9a{9L*MCJXG#O0)*c>ePIi5NLG@E
zjcC;xbmKh%`n7m{dZvbo;7~GdR+c1shSHI1OHW+^0XoDPHHz2Bl1szNhGG#pkmt)^
zUQ>N{hu=jveFtgUYF{pt%X{m&`A*PBP9DvxM3H6s_R-K*vtrrPWnM!6;o1P|aEI3x
zpIV$jST1V){;|>-HzJx$J*$~6R4n)|86~oUhx5wRev+qLKcHD68JN-~WSd&TfXfd2
zA!RgLHDZ|>(9#6Tirp%sZ^SP1O{2Z{|Dms|t6Rq+0c7r!+SX;{HXq_87^V(ZaI*p`
zZ!3Bsf+Jb(^ekDU-=8G<3Xg7`)P>(}5G>+<xzD{4(K%<Y%!h;yLZeN0jn5QNRZVtH
zTlRmA9&CSxiH81OU8a!o-i6V5y~|Mm1xxK!EOH@$f*)I{l!%SO&zF|<y?d1RP6z+{
z^JEy5I?>rX7pJgsa#--QZaGE0!IxK^wBb>jSh6JINFKa@0i5{vK;N-vM?UvJ0Yir*
znbLzZ;NpeA75vhoNvp3vP;xoCf%|+J4dLI2M1%zYY5u_Kl1WC$Mv1%Zg|_nM%uO30
z6OVGCgC7Eg!6X%Z(7;xQGvTdj<lOsqJud)a@&NksQM1S=@`W?`TH+fg?Si)6s~w3D
zR80FA$y#A~88aX>@8=_htT{Q<pEzc#E^6s2Rm?lw{|)g%O>-G^b5O8F|2qh4%i6qw
zHHh3lo-o@qhk4eQxK(Mq35-d!XEiMhRh{rat_(0=UFdQV+!3<r+`P3r4NSy@j8`TC
zb94(F7)5K~_0`CGjY8)Vl66Eb>h0Zy{56r1Kjw)VSzR8&qB00VHBXn(*C%A*s~>6!
zAXNaj2)MTTs~c6fezt-?S|&%h{9|hsM?_wUL1VfZp!GZXdqj4<`?>1d0h<rrTWv(z
z1^AD;7pmn0abL37@#a9-{y$|bS-BB$Zm~C#J=T;m;~6m#Kkz2x4i~ZA`(e~x*gykX
zil=lw1)%1!cU-qOL2k>6zg*UVd=P5n^{2a((jWiuO}~^{v%j5lHgUs?rG{zR_#J(Y
zckkQ%OB$WUQh@`CYRw4YFSPL2FsFY{aiSY%;G+2`v~OA9zasU}EQWa9D6d*q$SOoL
zYrY<kEt3nnz7^rkvXj{`9&PtCY`$8*0<?--(-{`|S>>Tq+h{ELUC~=i*-U2hEmVaR
zE?A93yR5XhPiH?q{8R=Ilh{ixSrmD2`*{daxH@^Q+Muaw(4u0qzkBW_Ai90IgPCYJ
zlWMQP|C&I9;KB0Mvd!Ygfr9FGCvP#mbfJL0wRzh)S4YUacxtl(H)hE5P?X}itShN*
z>p%qC%`tPnjwh8gs}m4}O1eZ(GM~a?BpEGcZp?veRb?*}R~js7*9As=Q<n8>d9-|F
zc{^t*Q2-zwoc0pVDuxX|ujGmiU2dvyYC&enX7fZqgposxOR!Wi1LRMYjhqgs+|2AK
zygxE}OSo2T-g8(?)X;^^kjWS77!kOYTwbWeFDm_Bl^CiwZJKC-Uh_pQs*s9FdHjW8
zcYn)GA<^Le`8%@-m5ng){B3h%b(5fW%b^p^v5jj@?A*qhjuw2w_?&rQEtG|VFuHQ3
z{#ut_gvV*~y$`AY4jq!5uVOcPBA|<)XZnzTJ)fo#kFs>TjPg9>&b*F|SZOj{9rB@8
zTo;ShsE;PQkG-uV@aLgurrD?n05eDb_59Cxmv;;g4a~OT*X{rXg^DU}BYQn|e{}Co
zgqc>Y{(9yay8QQ?)F&5d4smk@TdXFWGiQo$X#K+quur140gq)yei}rw2kzShCA;?C
zc+~#z@G0)|6CH8`+Se#SxqwT_f(frMif-SO2%9-i-H=X^*%d&l%x6N#+NM6J3@?jZ
zdNO0kYLM!ic|<(t5iLB-YQsCjazp@3TK;+>8o$U>TA`}flgfAg$#|Up&v~frryu{E
z6Wg5<E0!1=+Dk>9+qJhJy*bY|`MkJL<KINw_|354FR)-xvcXynByixbv!)H}C?VR^
z;7c=b%~#jT{Bg7szxSF=5ezXuwvB+d)uN`j?cksPIpNSYx<gF1;!`$P{EMh;#wIR0
z^REMu&sW<_4T3)h&lh6HH+Qx*NnJ`)eVr`VE|G90hWLPtxZT<!rFKVA**oF6kSRaS
z@SkEx0NS33>^R-vyD#N#wkTpAQWr-6t`w@H5h3Rb%n|$K0N&7TJC!~?I%<EnVq6Ij
zBN~AyKECj*e&i=qV(!tqZiZ-Vk_d=yIW#HC{AWHbYnr=gUX-B*yVbyt2HGKD@khW_
zbT<G%p>caHK<LkNdj0=A6b)WJ?FyTSo_+V|?Mk!4MDwNy`kOA@s~Efe{uo4;IFlju
zAoga9&)>#BUjjr~6z>*Q!I0WP=lo-kK$ESzpVdNF&U_a6FW``zNMO<Z>;DZ!Vnk7U
zJLP@z-|dG0hxYxyy?JLu<aQuh9XMsH(B9hMqz7yin)oh^tc^QJq}7a6b{Q~o!dfI1
zcSov&lz}THHqb0*c!jZ4n>7Q9g1}5RvpeGZLh$~Y<fqqZ`C!+YOsdEHOPxz@kGzR3
zf324ufnGHS?xX!=<$s$!y&!;33?0%}(dUj3xt^ZwJO&yqN`DaAQ_a<odMeO<TZgb_
z!0A)(7_Gd<44j`P&H>eVJiTJOuZMAg^y%oINeUZJ+;29Y)0OUjHnu<EpLa0t#@|=m
z#Rw=sIpKYVe)fx-uXrb#)#{Js9?WU}R&4aJ;TC0U)1>c4PH_`Amwg6;)wwmGxxl+m
zO+&b$5?r}?!EJ|`+kp17jBXNWt?gwvn|f2YXoSk}jATwnBTZ4dWBVNLs^IKdof(Yf
zNY!Gk_;mefPovd~M4i5=Ren+$VQOVAngP9&G0VMiC2!1*z~B|JTURpr+!{Pol@)T(
z{9XbVXdgM5i;GaV-eRrygwMbjS*w;BM1S~Ob|9l78QbU4Vr*(`bB~Z5*FS-1Zd-5U
z0!2?5%=%DBHQh^fNTuYZ;mss6H3Yi5HrK}xa&eTAu-TQ&#e^O=HMJz$D@__(INx&u
z8x_>~{9>5@RM)mK^@JIB7e-k7o3_?yBFEB=<pO-6KWTQk6THbwU+$Hr$uHHPUg$O+
zO_(?Nw7XFHPe2;DKWr~feiQ!B0Xb<KO8ak#Y6s>tQUYnGUqp0zkt&{K+{9b;Be<Mx
zCA1XrvN@K_(7lCBV3kEYCjC8g?51|%s?f!cD*ZOov%74o7Q&9JmkWr`D#;JKQtCS`
z7!-3Z3DT6@Ukg^20Miyn@st&+m+7y{4P#2h04<P+d@IKbXI)rG(5kGzf1ci{Pd9GY
zXSn8I(AC|*sL@Tr#8c%{^j}{>84t!Rb-p|RkL5rVSqki0swaMM<|L--1x~bLC6Y5^
z;N4$mSRwmY*cql%Es(m}FOKNMf;GU{!I>~tbcHi3bTa@|L1sASjos5Ardn%%BO7sk
zoRHgTmnK_e2}ffX#e>i>IHO|W0OLtI+qcek6XZ2tTxN$F;C!edt{`WMlAG*QTQ~j~
zcSK?BdHXWx;XrSnutug!=opD_312`K`n(T&G7$EPx{6B<O%oVmpt3ko$I;UiV7kH1
zX_X{63YDH-3|?BoPPu^kI4gxd?yMi=H}_~&<ujV5eKkL|XKGi?DXrz?=7>svTBCN=
zZ)&5JFVsGFA6$hn2hw!6FM0+0y`SqsGNUqzojUWy5mI(VT4ip&?skUHk+FL6n;Ke=
z!_LkdRW?r5xD^#LOZR$+&BKs`>6>;Z`@-$Qe&y+KGdN`RSed^W@w)dpSM4c|R}AKC
zkI|NqR<Qh`eh!ugofIu%0r#F)@isgS((J#kUL*5rNPJ?e*3>`V{sYL(2~2CdBDgCs
zCsk}FizRBA%sjy`T9P<UXgtTBz+a~(Z|bZ}EQc*PSJ*G(R|Dx^ah7Vf;Aav~F@tLn
z=jIhO1FN}L$t8~UhUk@CH`g?7{A=C%+^0IsPA<7(#1NQUY?!g^iYnLaMs(Hx?1L@i
zF`#G?c##u?PVdDfgSWkCKP3+%Fr$?kmloO33XOwMnYtXLm>Rd3De@)ep(Wr?@<E|W
zvdO|)J)4#!@+50Y3~j|}-sMzkm`N8t^$|ob_*z=sG0z};j)up$dxnpzDc>Yd9Sm3D
z9dX#a0eRj3Wq!S)!t-(Ig`c#t?p$@SZvZGd@|`s<*@U$3+J%n*FQac_P8vJ49qUdO
z#noF*pg(`Txy1_X#?qlNMNcivS;4Izi5Jo7l=MwP+AZn=^L(@hv1T(Ofn4!7IR4>?
zS1mh$$4BMSYlRcWD=)BDZ<%Jzel0AyYe|W1VcPMb98!!I8KRYw(}e-M`;K`n4Tb#U
zT9%)+T1BAgHFa<Bjj?xYk{zFGfh&LWe^Aq+y-4|8yB3IUMJ$=ft!c&KT3^ya-=(>s
zcD!2uccUYOnBQ;5jEVf9){<q=FQ8Xe%}k&bWzC=GNKVNi6th`5UHI2<6CS@-R&rNm
zbXG?pkYr?6r9-;~zd#21X@+uYpc)7G<yxvV5Ap?l@wW8Mdkc7E(hP=EuZ<0$4>Y9h
z0AH&pA9-HirQ^%GxyC3}c2vx*OamX3`;PfaB(H_mT9BOog$OxocnmQ>%xO3eBaR`9
z(hyLssErqt;Z%Z`=Fp=(yUPRKW0(*Prx@%^N$quz-2|;TXubhl_FeHd;aUnt^0RJ1
zLy+Y&cHT5S)L9O<gT&*2-f+AG-#v;rzL#oG4J4_t<-8tKr6aUWiF3CpdQ3b|vI<Bw
z_RP~+9u|icoxG&bUuOog-PEf+I?L3yf}y@hYAptOon?&NII1eAS$!XOFt9pf;%R~%
ztOC<`OIvVq);Yttz11jucFJ_tJZnb|<la)9HxN<YhN2KCqw%ZpYf;Q0?FGtZFHm&$
zJj*R1l43CE-~}~M=Wx#GU<WUlF=ENbkyxi_oC>*0*^{6)%rT@t)zcPmRs@iU6350=
zm=*M<qR7sq1s7~!8fs4;=!u~!K5K&vpW7Gx!A018?>IwsV6Ly)-GiZ*8N=e^^(IT-
zL-Y$UJo}SGM4686#;|nfp(AMoHc02Y9<oqK#XI%LLTXXn?ASBV(>eF~0kpb##6Bgq
zF|z=x1uL{aS}8MP7lZ9a!cKH$*pStJhbihhdM?3tj;{2r<*?rf9;CaKUnFJ}GnWKQ
zPcFiq-2TN$_4Eph@KjMW3?I=Z!(A-gvw#v)Y(tYbY;TZqnl2&W5Sksd_nt+dLkAWS
z&DtohMF}=u%oGh4&a8J8b~&o(5@?JX&1AgO4=X`Ys#mQ@tvY!fy7ZH;I2(8K@KG^n
zVnG@T#R>H!y;%b(4l4pz{YenYInQA_#<wgZCJCgX>(O-%MtUI^b<>J*ow@Ndqqtl6
zDwDAiS^HQ8?G|2fu7q6md(qVG=17|kT!jJk`3JE+Fj{CK*EHBMk1;H~?f%Pc7!7am
z*wll<-9Y&8g<;%bQxT2xi%ODrzE{QmUES@umMB`Y0jF<5x&<B~?I%-+!cgG~)dpzF
zn@(Bth+3#kp|5;NpMp2u(X})+f-T<5HnmeqGUohf59=(ZuQVYkAh+a&v8JfeNIf=k
zZ4`IOgEF}xQ0l|deIh4U=c28;GaPAo+hOoL)|8su=b24R_wvNmktwOD-f+X@<<LzY
zL+ul!(_VnevDrey#^6%F1$KD>CZ5iDHeK#WObwiHIeGQnY;VX79+udYyh6m0;ROpp
zW357WT3uxr>da*0@2D{`4A+iS({<pL#LVt9$rp|fz^WjvZD&N>XmlMD-B}MX`2Fcy
zUy_PZI>FN;tySs~KPZ56oS#%tnmDca5C>zA)jaCX`@$H1m<u}uti8-%{HyIr$c{k=
zYT3mRiAe7$1?bq!At^P$U3pTAE;K+4P@Wezqz;Htl9QA1Zp`Xh0<ue+=Z8W(!eWk%
z4;sYWD9jN{PyTP^3?Ne3AqM;Gp2?a1L*EG%7lTzz#%XJk7nO@v;Pu$`s25MG{3DSo
zjS&%AChG^N24w!lk&L>4kAbB$e`ACz`dqgdpgPzjVdC%|H3ac8raN<l>q!(hYnt{O
zR8*KDA9AA)*7e4vul(E8){#s70aTLzKE;+@@m26CmOe!&Jp%Z2$p5<S6=K>=nImN_
zHRG&&7WZZ++&*Y*&2jw;{ESaoD0#t{F3qC;p}Zt!`Bg~8%;Yz!B#VZ-OBcTuR31kO
za_D#b__V+`Kk27R2d@a%6Cb<XL=<Kb6^ofMFzO+p8vfr1Pi=d%0{q_ZAXFiku)90^
zs<Vj3p0@Cas@ZH5yh?u${!=#}U1U4uYSgJfDO*mn=B%%NG2Rkc7$YpeWXUST4VO_e
zLt03nhh}k?4U%)75x|Ft*=o8=o#|c5LiR?`m|y{Kg<Yd-<~)LLW~{;p$tKb0MqQ)=
z&!wM`G)kFt-#N7zXsDj+RCF7(eBPgA6w}&{&zZls;{F_pY71%cO<)mR9+8OI^P8B+
zVh33blcnnQa47M`U?4Pc#<~LdlH6xpYe-bMHofe6=7Nv$`<2$u27|OJ>n@hD6*V&V
z5|#=L^vs}kM3P+cW_=Cip01~_9aD0MVLQ3gul8mBoS!T>mJ`NlP4OfKxH09wxurKm
z_%*l%s(fPQ+iO)e^sM7iUlIbHnbAmRuD<~u#?Jd$mSSwWt7&(U6{tI7-xs{~NS<2&
zk^P{)^_S%Rl7tuO?-8QB)LTuf;hQsWGA1^9lGEw^R8Q7R9u~dP^^#-73g0{}N8>MP
zm<&T^lDWs|5XO7VK*L`KfBM7y4YIm<C3@@JArlMosUMaBaI6p`ET1Z@Bd)lPkcQQf
zTtc1c{m6~jw2ky&V`AU(2G~$N?IE(#Ik~K$_go2_QgdJ8lQAK5KGNMcvCAqqL-X1)
zzRNjxO*0$6Bi;%cZB=r_PDO!|fBq}TF)|fpMPX>dHbxOm5C`sOW19>^Q{AbCzKvj{
zrXV$Z=KYj1GF{hs^r+*YA$U=tWWj#Tk1exMhWR{3t61nu=G=nk(;bubTJ<y0W=REw
z5*Jt72cDD?ePZbSUe4V4aYdCJLvLiyd{l52)!8CWHWKGQzjo*-AFuO$IMy6z=MRTe
z_!)|&T1%a@zzr70o?|44;q0PlD}^A>XVwU>B|Nn5CZ)FAO%>lWxQngF`~Y#UOfO-t
zFSeD}=-w}Tse5U;@T(Os%~`=hU9xNQrCAF$=^Dco9Id5R>opZj)n^9?3a$Rr6v#;3
z1Y385M5rS%Bn7H2I=NAXQlmenBY*l5m4gtK;R{y{$km2LA-9-82{@&;`zDooUyN;C
zr*|aVnXp4n2fp?%;|kjLzKIR)RFjAhtpP58d0?h?kPbi`%F|XfQmd0p?~NJKPlqZ7
zlI2pEapeb(;9h8F5n?-`9+lSDbI)q}H5iXfri^*)X)r$OW|@%wegz+2T@lkC`KTT1
zW;pqx5?U5yH&H6?bAt6;&;~o@a0|rai-Ngv9cVW~icG3yXQpv5%tmI)TCK3xk+2ER
zOA(R2E9vb0gNs-7bMeTI1Ppty;}|YnQ0$~%I%4ZuXs8uf{&7ItgSFuXAE+_O!YtTE
zj-EVc#WjL-pONcpTN&)&SJGlymF~o-;qTT*y>$OHI`DxdQNQSn#;Cu;o`wDqgu7?$
zF!n^Zmf5dWu*)1ygA53h3lzKe;=YA)Y5}8TDBQo7+PS6-CtKLW53T{E5brqcFy1x%
zl5KR>s^Tjo{?8_5i;D<?J-@e)7Y<oKSf(M31IDPpga(IcWdn7wGidjC$K+Ncf6y@a
zlok15E|p+ep+?<<RC?0TZ&Y<e6Z#LxJ~Ca4u9{uc)s0iPVk7z+&cbVeGZ`E=Zg`0^
zJ{9ND5&5`Mgo5YBDYxHiJ)|r3EocizFaB^8o1i%uz8>u;cE7)fW=Y)%lmDIXAo&^t
zYT}PN3sB7;v_Jh2xw4GqCcyT9)U>k7Snp_VjdlmQu57`0%W~?ik<F;b@$N^$itbVN
z`S@r5A_R9?nelyCcAL~WkGmwPS9-~V3y{;+B&QjlVcyJCejSmEEN6<Gb=kEGd6zaO
zc8+YY%R6*tCDR@4p*Dwb`ZBJgRfS+uPTQBk{C!h4*EaH;_LB|4=3`Q(bXAf<bwBS-
z-`q_g<4vp7V-s{oaFMpPmWPX<X}zjn<fW35a+3d0T>!Px>hSX>c3HW}(?;vm#2P2o
z`0BN&YYg=nXm+BzceVX7%vJxiHsOps2cQ6!?>L;+Bpt*xlaHx#>xXA3-;qHfj_q3w
zrANgIe(@yzkvH#&_AnH0K-ZK3+>0NdJvM2aa#AF<plg+7R=ImWHlCCRq?6c#eoAll
zH2>Z~xgj-VF;^h*zq5pe3ETOkn6Vx5;{qnzcQ<*um?lX2`u@%J;jy8HeW+st$6Ix-
zaL<!(iIIn#L^Z1n{7%yf$M2e=pu$q6Z*#`mbX27%;E|lKZ*MR;t$aNOTf8v3(5mb8
z$5MX8*Zdo}Rq^s%(LuuL9tNML+uZwEuT!_if1Y!|YjQ6=tN7g9lniv^>dp!>ncJ`-
z9D=IrP?<W=e_k;ABPWe(!GmNiJuEY{*n>H!M{F)kCm3%D&legKbEL+ShF5RYHU<of
z1OtR!cn<Ko=J$m~CLjfaPy6ivqInYnBkm$uu^j*qm<c(b=2B4Po2RIQcl}Yq%70El
z-}fy0Kh(DQ7V3}WS4sp_I8##VhR+}Tsc98ymO&^Z)*k7^uCN4Fx{Dl|S?<#zT|!-_
zTON?wutALT6=IpHM#NOYEpEWO4)uy_AgAFbW9Yj+hTBsD%lRK_9ae*#RVObJZFG0!
zK@};!w5+^?rc2oPJoSpvoYU))MH5-biieP`_*ld<5CONbQG<=r_f;<AS7=YdL5G7)
z_;k9n;gR)AO%HC<#;X?7Hg#w@7;N^c<O|{yl;rG|(U*bsqBQO<`bAcdWcWkZJjA^2
z`sMYlUYzj&yNhzGJ)_>LpL2^{=^Ld-`?~>thy808zp(~F?ki<2s;2h!#K%TRu?WwX
z;yP-jo(N_W8YVurdXnwWVj=n-eIpmy{An4H_^ZmTm)E5a$$OVN4w=1oOZRb3b=8Qm
zqKvx`1KvTz(9n8oB;CWcf6vL)1>Mdv@DhK-s|lPf-yfi|1bITh%A^9}1#HnW&A^{h
zULWURftFcyg#XmzPZRCDidnqLEzrVQ2>!V%iRK>q+&48*Mz3#3z8o{iUNW<j!g$n^
z6VgkZ*qAp@YWApRc!~x7?jEb@bi;^06zv|NhT&#mMQo7!Xwj+JxH>b|(yHL=dypWD
zQwjP{2c2~uqLDf6RpX@N;MVmgxY#fg7bOA7hc&tFUx^_*TnIOEVPAS{#^v7OyY`NV
ztk}D-Zu(kXcBl3#rrGnG!}hK!<r^`?UB-h(qSLd1VZ9>d{?C)K27c9-W<>e&*~{XZ
z3Q$zgnAq8l!`{4fDC#jyl;Z@h>TZ8s_J8W@38{TsQqBLy7WRU6^F(h3+`eIbz4EGe
G?EeBWzMVb*

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-overview.png b/windows/security/threat-protection/microsoft-defender-atp/images/false-positives-overview.png
index e86ad1454deefca58b80b4c04d171bff693672e6..c2092639aff433aa2ecb5d9318ba7b030d82597d 100644
GIT binary patch
literal 27865
zcmc$`cTiN#*Di|k3JM4Yf~bHXIg3gTijrT_ki!rZ1SClqauP%(D==gjavB(N&KZUz
zAUR1G1{m^?W=Lm`zwgxjZq@zc)~R#q>?+Eh-o1PGUcGwtTF<lE5Dhhj+hh;Ph=_=8
zD=EGO5fKr8AtJi=<0c7Ea~y|&0sq|kq-fwmL_~g%@ON!=-tU}<=n0Y1+t=D2DO*jx
zTNVnQXd~jtXOqt#%$5o!m_4w%|8KdOC9h(oyM87^7CE!p&9dNo+w7lv+3(fg*$DJy
zGYbiEy?uW7DRXg;(oGAeFLvK=UGwRB5G>emPyZPC!MzOHQ2kkOWp$bU{Z+R}HC9M(
z(aqoAFE@9{=wxGO%vYMJV0<2(Qs}jbO3_l6QrFp5)Vn&le+w8aaLM;P&v*V?3UCUP
zz4^B!2-3KD?Qcn*jEwnjp;hrU^FMz}54bpik0xACZv@}@TQJK`zjOU>DV&;G_HQBJ
z=l|BuoM-M-`2HCbP}Xb2Z}sh-MM)*{pRQk3I44d-^k0s<jOtvidD`rH4yP$ftBCE0
zp$}aby)RM6S3Hhl(GIm2OV8*q!rYU|en(v~LiOAJ(sBG(V=YQlR~Ir>WbpdB4LyI?
zgR>6*BaM3e)nx;lV&i4Ll<8SZlUX!X8hKu3xhDOss-EPl*{qIxgl{J48z9RNuiTtU
zazWIc#8NtKrDun#DTkwnI{ab$m!}t%v0@<%R{9iY{#yefLJ7Go<6mdF`+?D?Y%dn_
z1jhst3sUVHz|Z^@$udYzkFTbNVixGV7F6VKhXUQVZYE4yY71b$i+AOyz3QAOEc{en
z+3J&Wv1OG>!GEnvhsOy&pM&-7*zT$Jhd&P&y6Jm|2F`4d`tlP?NmM>X?#9`xVQ!;-
zU=qz<4%jgdKt+sHmitYRO00ShA<`x>Jc(iQHYzsbHR3$Ue*)v;pE;z3y|%AHG))<1
zIT|!&jdGxzdaiIX6VF#lg_6?rK-VWnF7!P|&fZNA`vU{?2u-AsZE8fZd<^EVxrFk5
z)xEcEm}FXEN1h?B=cG2u{)1<YGpJu-`ymhC;h?xo$>C!_>Wquk**pT}50jeEsh<hD
zR?4zwX!(NsQ=Ky%P3LK5)TA7$i;SI!$c_?Zf-1N(Ux@w8opu4d5B?sZBcIdhY4Uwu
z#sverRB@^d%y)FB$Q+%rU>MMQ@Y^S`Q7gli^^LJHvnsg2)joFn&#bA}=u42A`njo$
z7;b*`L&0A3JVNamRT5L&Fvpm3s;(bf7*aKBMVxjFWc*Mp%0+-Ce%X#221@&a&34uK
z0Jbc7gW@&FdRO8Rn`hlt3OA}uDxiqn6{Z~+{g~&@=;w0}Hk&wlv1fXbuCIoK(^h^*
z6;}Tdj&+xZrnRr?N`v8*T5av-bQ<yQo#hff#&UWGCI<?OVwTr(eSYS8nDn6d*Rjz$
z<l~)fv}nE>R<3zKl?^z+7)tMC;fb8>&T<V#rpq&b>4G8GrWs5Atlg!AMFTLi6_lA~
zre^kEo4c{m1Ke5+0#z}U0cf4el%FZ?jV{A(U?}Z&D0-f@VXbBGBKrO;Z1FB2!qSIc
z6?by?qNA{+5LIaK-s%m@NWI*wNck<hSX!=MWsO=49q^TyVVe{hNIs2KpQ<i7YpjJ}
z^y|r0MCzu8QnwE?BT6&1tzNW2Fly@=RkY6jD$e8M(IC_GWr^!=%|VGUafEn^<?CBH
z{(IYK*l3)#T3ybJ%_?fM%bnGTm;AzQ!TCTG&#ISu;L~|kKY<Ly#+#OS4PbL^kNQe<
z7~*JskcoNQoDq#fX&-0NFy~aHOt)o@vhsywB{ZYZw@3Isj7>)f{%;`?VlWJ!LL7L`
z;~7v5xE85$-$wgOt2)!PnR3*|nF$#?EntNL#-GK@CNy|<Tb{1G)O2zsW##A85|J$u
zg^MRS;VxfnpIg5*%-X~EB9}dA)J++@jCd__oD63`9UiMKyx8fylnUq7+Ly{DqA!zn
z5BRuD`{Sh6+K%#1S@ZfO45`vKsarfGq;oJBNyWWb2;8VCpSRE=eByzT=w@kn&bf+w
z-)6o3s?en}X7zJS9u#J5?$RT*HXJsmIAINSTCnpK-j}wq^-a#()*eqRR_Ttz-pldq
z1Fy3L_0N(MZM?UwhSmuSO;)v7N|rd2`wUo}7uQ41cA~EkCt;g{+zr(hfXxLgg$nb(
ziBQ4%;BM@uUFQ&D$bH&DmVv}QA=5UVmPJq;F=VqvwBe(zKi{Y8<*A^*gpE|E+39?1
z@LS2*P(7j%rb$ukq8omwnaAaJPF>R9aps!nGkvVcrEasCnHwbm#`c;7uavi&;n+$f
zkm_}=(v`ko-W5a~Q;t=Rm|Lb+u4LEeFAvz`6p-SJn&v;eGy3HqccCzDYIoO$`)qQ>
zZ*{;ui^y--N3*J~-r<N${-_F=??EvmrUiLh$SSS+J}Kpa^QT86?w7`;f%~xyXdm6|
zYN6W3?PHsF^thzailT^telHVLko~?%Sc^SmCkc>%N+kuiL+oq9EI*%o+#Wml)U}6m
zh^dn00s8LR(+dc^zYF(9msL_cHR?Ei4J3D<wqF#x)|r~5I}OTg>{k16K#dxle}DFY
zaavVcW^anrM0!I5xqY%qxidygjC^n72Tne8&K%u3W`+m-?Eh$dO+*!%IQ4A8e>g<t
zHM7P=ryFk~OnLXT9W7Qs@qYFgbYAv23(9Voql{IEm}y!wmUs1?jA%pKNJP(`)cL6x
z2-H1N$QIOZ+Y4xyJdxL<pR2|kB=WR^0%wqoMQA855?3L1We<0mJa?}%)t-3vnCA&G
z5fMd@3E!6mCY~Xt7j?m<+kry3o8IH!8^qml#@rCm%<-HkF)=5<h@XM1H=ZJOp}Jfp
zzO{kX<|fmsN+B9e{o}m+c4hfKDDr?+d)b2?&v2X3OEul^qrWrnc4YrM{o<n$D19>)
zA^m-#Mf-u7Qd?*Oy5tsA)1hp?`_E>lNZtFPS+|4Nu(PO(H_vWoi6(E>@qjI@-!z&W
zP;Prd%f<2-t-oV$y>Cdi`qZsGFHpv-Y)M5h*BNx==9S&nOCcUZDO-m4!+ftDHF2I1
zDGdknNUa`>F<-+yy?HGK9@v}lw*^5D`W=6|d|ZP{v53)p6R&h){7HA-H;+1?p+GPF
z7E9nTviaRMD3Mant|yoYvNVwTHpXMq?d)Vix3R|Fj~omAGZZr56o9fhne&(CO0jS#
zH!Eyj9XkE3oW)T>&5dG37$=Qc&Dy+a{^(@5+#1rS=VISZTPjR;P@bm8RU09%9?7W(
z%|WPMHp~gsPr!?gbG8Ue>-=yzhFT)C?D_pDg)V`5%A=*PbSo-t<J_i-S&?}~%7Y9;
zKI2kaHNTYZk9g@A-elvqlA-eLcQ~2!c}CA;h}$f$!=x04f<t(~Ge}6eaTM%bai3n#
z0Nq9(DO)4MXYtbgIbLO@c(Fu|;bO_>$>^ir<6Y3DvwI83=wRX+NH!BhN9W01_T3E@
z!?RUppI^)?yFU;D*&bJYztBV!8#Ty+6@uxpSEuGxn~RNarhMr256>FB$ox!dkZoyi
zQXNQ`3(K|YJGpj@8JY@QyB0m3U!3^+8dslAjp!6?uQ#vm`#C|*?xZ!Ycl2SG4?Jz{
zLtK33ZuQgTNUzNvvNcH5Ih9oA+f9qpp*wTPx~eO$jP9GPwY-hx8d@wQzfZS2a-^FC
z%D^tjFU)zNgI{bOTY8IcX~CuNexc+(oskV!MxQls@y3R!X;78m5aQ?0n%Px;Y{2Ky
zio(zm6lejymda0NWS&LA7M42O!z(0!^|ag){wP;&0a1It+R}e<Z{<K%tzt)j;I3Yb
zGz9;Oje9J><?pM16FcNAX@Xu5=@-7PW4<=60^cUt#*XG~ZQlIYb_?Q%6|>%1_3Xe}
zqTX!txCu6ic{8XNAD>=q^DH-t`!1&_f@gEnSbKOwcgAquGf68$kQCAnv6KA7+@S6p
zY6(Y81ILfVVb&*Xh16esENA30kAJbLLxg%<M)*8|?dN;H0JmLPaUwr%cf}9zvjWCP
z!(<b76%q`&{e1_S{v8{?c!z$oPuTE_x2HUK0{Mj`X?ES!HuvCTBD;z;)Ep@0-NQPq
z=^jNd({i-;T3780G-sMtYOhq;?~(Dc{O~F{?A9__teV8mtaTxBoIF!;L7#E+3EHXC
zcGfL+{P@Fmt2aDOv0!D#o?1CH1NwgPe)&w?>WF7mNUrD4u#YEV(a&I1xZmevyF)n^
z?rq-UYvgO$g8m1q!diST%^Hyg6IkxdGj>o;f?J<|{F$6N%pr<143P61bA@_*3oKpO
zthaaB?4<Vhs2ru)&9`9&%?}6~)p}>$l9HLIRe!%xf0*OnSspv-7Plo9;7$N@0N~aM
zawI9})z~yscgZ>E0Sk#pkf&(?h#mrj(wGPVhTz*$AY2&uOf5ZVGk9|6kd{fGgy5<6
zmgZ9cw}BTZwpmjDE&ZR5EdJNSlr2%`)!tj&O#d0EkJ<mt_~?KAEB-$sH|Lq6>4he5
z5qlCMvq4e6bB~#s8N<+Du*<`|u?Ud`#rwcyt$#LhY=SU%egEGS0+xdOup<7?=OL5e
zm|<HJY?9X7k!P@$)o2y=o`oZXyXs}jGEK<?V^r6<{sOx+ek97_+djJWGw}wWqo+z<
zrRn)Hoq9XhIqY%+cAQp&mPCui)Ur9kI?s6`q(40hfq5dccZKtO{4Ox2yG^_<Uwukk
z&8Kl1Mw%De8Qw+*>wZj+-VdGS{uN}<pAiKn)s_RE7UxjT68{Sf2YTWfSIK6r-;N7R
zg%0ehDekfN=dF?!x;(=96yAb|$9%&3T%9ed@A_YzaloqAXUGK_1)DZh9g{k%DD$-n
z%5lHGNx$fGUxYC9yMmF~WYBRI>Wl9r)W5&#G3ddZDN-}g5c+LO-F}-`8DQ7H#&sQ(
zZy{C&N?!!g9?BR-N*|X+sY<`;5K>Nj4*K<>?4#mqQ1dwbS+_{@Gfn>FsVdt^t_>=N
z_-Uz=x#xvv8j!P@$>wUUglbx}fhKsJ@%*@^rD?PlANyW&-S794j>e)lCRn#gy#;eo
zg5n0ePFMRXt}voH+G6Pxwz~74jBcK?<+MvcEpoO>DegH#1$jdIbk*oiqNYul1FSCD
z&~L~=E4pvTKTdrEpMb(F-`nuH8W=twIDXbekBYl7ib#nbYq59w;e)K{?@E<0%@ciR
z@K!_+e18~P1O+b-)4VreNJ;aXCDSY%p5oscLYJ>^*0145YAp3q${b=%2K1ENQlqxp
zj_$5#=)?5VQsj61j5xH4Onu*7ti9-Cm=ArAFBDm18j8V`7e>N23%L>J%{+De6Mc7w
z8+_h*Vp1ZZGtO#SkDlus8965x@#KLPk`D~o6w(~VUHGHXdXt^!amcK~c^y<!gb#u#
zr)9@sAo(8x+(B_Y;zxfu)cvv<H|QuF>V9!Fsm|-<Mit9KBXRQZvwx4o!n3m8{QK{^
zIuKtXJID&erOIDzrtm`0sqPD_4<QM^M?8nU7oLmdIf5~mBN<h`1WL?%%CRmsAw%Uc
zZF=oQQCRs+ztyKqiN<+X+;6VpD2Do(uJ)PKBMW$G6ikF+r=1+t9T+cnukFCiL+AeY
zv!^m=)58uuOqz{k$+<1tqXl@)#QvjkM9ok`8Jhu`K_Mjn$*OYfOyJCyP5BmIlNM;&
zLDuQG+Z+jt?!;DPVL8Y*+lJJ@Y04J};ytS>#Fd4*@Z&v4$z$>keR*zKFIZ#dQ*^qk
z_3Nb}MFo*6Cus<-uAEA?sG$w5atpn_pOc9@d>7Tr8NxhuluXi%zPkpV1t00`XY_S0
z)_y}{EL@sY+!j?-JzqkGQx$!NP>Liqsq4`@-c8z3Hu!M6kM0#nJ)O8x9|EvsCYXPJ
zdBobk`2bq-J2Wpc0imVO^LW!(u1f_yhda!#6%Usu({xBZT(4^P;!hV3!*8o4H;?aQ
z>QDQ5Iel}oUZkpDxQRhEI8<@f?G|!kNFH3VtAy$1gYNTg=ZMOPmWT$prhX0s=HJv`
zK9L2NHBOHrU2bAAI=e$P%UaD^)=!%kQcqGigOG}zRZv~0&hin*n%&W5B~_s+z6SBS
zm8Q&ENOQr(#JE$kcgdH7#p+9EW9cCP&u~`e@7cg61sQYaA?$fe7Wq-smM+tkgWmCI
zwE^|W)u@w_m1vNpt<(?;Z27kWdV8J-{!I+P%LE_%Hs51;y2)AlW_A@16(2~(9+g#8
zR8>{^sxdG_w70J39KKuzlcBGwSq~#58aA`V{M<XAZvKX@J&|+o0MW-DXz8i>cAL^!
z>4*;h+#;Vm<Mk9+5?+sV&`B<`<<SwU%23*|wi%lDhg*Eq>apK#I%z&>+VI`=UhK@w
z76gUXQ_yD9LO!@VX<1IIKCdjBdk5<=&`|@!H0>=?QFTwlz|v2ivEs}igdL&PY_GSB
zrrl@9ETmq|aO~)ETg~io)1-oOhPWo)t>>kB&pz)vHf;kQYDd@4(Ds>$dNUpk8^~bp
z0XNi^@k82aL$>XjX50s8hRPYp%4l*HQo}uvsXJ&NJ=^o5RTI>yd@wOyM#?@jQH7M-
zS2T}nNRJ&wkeSmACC}YWM!HW3v)6$c>rmB*lp>!VuZ^S<PnZO#J?G{o&Itw8bC8+c
z9M#YDDK-2=e*-XH%ygPY`ZJtgHZ=;L=2Aw2Ikq!(+MVRd`(_u8tL@{ZA<j}!oRJB$
zh6OItC64apN#DavUo72VY-D(|vw-&L7Sq=8jF=Q%5ayJE{Aqfim}K|>AKIe!A;-Q(
zIuBmE&0lL>S!g>@a-g3S#-5nsUUP#-6#0#BkgN7wo^IYC-&R4@xyL(aX!$Yt2WGQ&
zu!(NPxwbkkpFb>es!DQUvidu!(*8Yuw|oFoLv5uaCO2&?oP#T3Tl3xNY|Q?HG#uwI
z+$<}cKVoAlq9q`x52$xi^2g?KS2!(|$Z4#f-4b|`sUrrL&&^rwm1Tja(>=Ny+7TMB
zH#=4%uCX&URlbbf{L^QsH@Uy>^RR@)K!l7*?@tV`;U0_ID`@lb0mSfTro%rA6L0g1
zJsN6*`?}O;UyC-)@j(_&;Tqsx&<c(Cc%AD)!#z5vO#>2+G{zllen*;e*+ZN3Otq6W
zM2A%&(^E(Ko|=!#hXz8I2lRe!v(&8Wq!!vWJ<N?|al~a{mEWMYX#{}J-&x@4vYhrE
z?(%H(tXnfr){v%w@wz)f{uCZh<wht`a>?f42Mc&Ox;CsL`<qlutUPyCJuWjxCtaR8
zU`G!r>_58u_L9OadwxDuP#a)r+nH}D5D%aibzT2uNH^Q;dq(o)#sG4Er6+#P?PNpU
zUwqzUCE_=Y9qYnDI>schlwR>?-15^KWf2_2ubAe%Fva9t3cUZptQmf7=9H%&y(GP7
z2K_J3r?Qp5)mioE+#~?<O-KG(+(4R?_vlcn#ANjpllNAc>sq1}<*R#uf3In%dQX^X
zFzmg<W4ng{2CgEH{9|C1T2<Y3+50q#;uV1wAX+CjmIvG;;F2e!l?`CS7CZXd7Kfc%
z`5#-6KDj}-ad-_tr`9`d@}5Qh)6wl+I&MG3xPNJgb;xhFt{nV){4WspuiqzVK>(%o
zt{9h<y>LH3Fgy^aI3h0kLD%@_#)iSLmu?PGdG~E|xlxF_%Z>H>d?Ht&dX4WkERltA
z0M>UCu(P_~soNnYPSojC*~U#6@UC)+=b$ZnneW-`qFT#|cZ&!vjz$fU0y~>SSJOP(
zK0AtZZ+!18t=iGD>$^LvJDMaM8W)zo?CO<+fg+667|=a{6VeC5Mvo!#-Jbbw+nP#*
zU@riVN6D!fEw!6??)D&fvS!E^#bYYQX1aKFdBSm))U<8yI2+lskz3H8UlgNUqFT2;
z!<~2_bRrhtpS*C$eym4K^x#%)IAC&=#daI9>|~>Ibl?}7Z?k)SfDKYiiIs~B<d#hl
z;<3;IQFBrhgTGOZj^#9%b8Vt7`%Y8P@r_D-NJS~;fR*iEvLq<CFQ$>2qp#F<5)ndy
z3|iGm_#P_=-raj<s%PSfVx1=@rObBpS$PzL$)4h(WGKljFfOzh6@xYmZN$U_^A=7@
zEgSF>EkSkF!AcCfI@ZPKTpczY?g(7k<Cj*hUWlzZ1~5Ox#PWh=L;C<%%Ow<)hXpkr
z;?_i3#5AK_2aOgE;`$t6bT9y_=W&7C=1g&^8jT*P=2~`X&4Di8%@EwlFehaaF7IYF
z&mZC9jJQq?X(wg<ZzD%TFjN@|gtVoBpho4{xkAKu8<h>9f!`r_h|DDa2$7Y_t{IeJ
zW85zVefO%bM0_t7TUdP$hI&RF{f_sJ>q_RY^zkz^0;(;C9R4vTUdK_{7{8_9jXEpI
zn8L5GS=i)5L#eB*Z`+n1cG=Ew3)&-2UgAR2%Jav;0`N@f9G7>tws2^;?=RLd@5Qr)
zkmO?Hw>iAZ%y!OIfQ=peC-{z8aEj+zV(R_)@m&!I>6FX!S)+|fe|+72Id$E(-gzqN
zG{o7k!Wij^jLgLxlaJLqsq^!evysDksrfNt{TGv_{uk9yW#y3A*lHdR!?LhYy;PRz
zH80b#3DBCY1^7`YXq+{sD9bsq${P_Y53B%ylIrJdeaLLN2NCfBsE<&poh!PH7<cIu
zMy}egCMTwms?@KzBE%iL?wDEYGsnoXh$slSj*<lbJa|f;wOrO<K~w(Kv+SY3gP7r?
zF`w=iRS0@;ObPEt+guBcMz@!$S|X$3VzjC;|C-$4fJx-9m|o#0jSQ>+ALaQg=702`
zu3qQHz&yrxp0n?yJ2UVxvwadO+2eriO!bwoi+v+{^E&P|m(k2)lhF9JJJoW?bXwn^
z*PqJC^Ee3y$2VjnMyiy@Ty90I&2Xs=&X0NeHj-H<aU0dkmv5%5#H!?5{CdV^0zMcK
z;f@ziY@}~N=>bTBS<2tQGQ_~S+55yHiK3O_vAC<X#4o_^87e&K5*WJgGua|7axu!|
zrpoKD(<`2j3$nV}X`0nLPmWI&OEjGdHn9A<<aB<zpEGEAc9<uV>d?3^ZwP4jE2{rk
zL;1Bk*Ng66EiFp>8|fQd`kkI!xsH~l#Hab<Eh3k8TQ-7YZ2uZD7GPl(U2~T@^}r8x
zsHd^6%QXyJyI#3I;0hl0J$}yNLUvSVyXp4V@~x1NGq*n6!(HuL<L65*|FFJ>8EUM3
z+bCi5C=w<H5y@O_E7Z_s-nB~IA2{r|+H)>s1dO5CDiD6?6F0kEU5Uj1C})?i{6mpE
z0a!pHA~NPy#X8JQhb+R6_oRUOWm~H;6Mlq0BCOIsnRKbo;(y5aoWs<`;u?MukcQS%
zGfnz{muBTc)@@xC5t;eL9HXvRZFx}_H^(Unj{<fZ6Cj*E$$_pHX)1*t+LsXC72pKW
zQKjsSXJP)y(#NKe4&?CL8v<S<6=TU)V<+6tpTPg1uP&l;EBsFuw%^-{{T0qvz^}7y
z2bA4EbAaBS|EgZ<N~L(O<uIl}ZMyur?cb3;APjT~Sb@)dw?pF{c!C$KF9|CKN`D&B
zG@NSp(b2Uy@^5dfK+7Xpo*=)2a%?rUU3~%9p?qUFbQvAAoL@>9IS~mUfx%zPLhcv4
zbpNiA`t4OS{j2*hg6DhghGg5{g;9TX{yU{((SM9wlK`j?{h`*^CNaA`QhnE%>0;(0
zDrZ;noGK>xz2AoVCHuuVag=Io+wfHbQ>t;+AiBk6yd|YJnIJ`?RbX!{dNu?5rTBWl
z^Q1*Oev`0s1t=4|EyDHRIN<-<rK6AL8{Ee}5PkUbE91@V=OJ-S(acRo|MUIB&im>V
zg$XCyvm!)XX1b9~GHKP-)to?(OO(+1ST=y>0N6Y=0FoTowS@kk{`GHOi=*I=CsYek
z6W}7k_5YV$Hiv2w5$Qibr+GVwUmT8cnE_)L^W1AAr2~BdI{w?&|C`wkXxm$&@)rd=
z_p#k~I`r;|WSC`Q@IPJpW<`5cJ?oI%Id=3Ic&wE@2*9^Em~${GE<;Kui~d(g@()*+
z7aN@+_cxl)c9MG`N8@@W#sGy$6rg$?z(&+$LnkHUYUN6;hF7E7Oa5mrK$`2cWqgjr
zZet9R@M-IJf!Y6jAIyOgE^w?9CF4@0Gxgb5LPrdNKegS6St&oA|I~3i<~csnoTZ$M
zJN(xPRL`W2LEcF;+=4p;;~UXFi_E{;Pg&U}?xO{(fQ6S2`UOg2>o!yTRNP?d1`oL<
zcyj9}P|M{dJf?)PWdQmvXqG+Kt9tOKE$IHFQk}*_gZ=C;Tfi*N7K6wVVyR&bn}u+8
zH05Ja!4QR>oN!#N^j(8x>Zo5e?MfuUb;mQd9Fr=vT{JWTSr~?r<??$;xn!GV?|Vj7
zMdn|KEp*M~+0w}Cwx{qQYTrqy_F30}ph4|iOrFx1p`3zuMU}2<xZg+ab51>O45C+f
zx5wP^FLXlTNIGD6X4ZiIQ9R({1HCG`sXQX6+nfC*r$C4UwZ4|@nD(XOfP)8G1a`Xt
zeV1ihSmYz7tbqKvtOnRuyea5r6K6OdWaLPDX;}JfOG)3iM)PLVR2Z)V86B3X#7VmN
z5MMj0T^EZ)Y#NjC7upz-g6`NKX)zv|qSDLtX3BW$;{<>qv~mOa4i5xD4%w24{4QtI
zL%N05RWWj!y5bjcwic$?8#$s%%vf1L-6wDh+n|;5qmnOBu#qf0zu!uWe#&q?syH8+
zg#?jhtlkOZ{ws1h02(c|kYrL14WuS9N;$we+7uf1&SbCDcPlF-ajO7qTSBfwq#Inj
z_C?i{PR1UYR#j3y4Lz8He(RFU;83Q%MBLYi=%~Ts_0}UJDf__~<FYN*3d;~nO?Q5d
ziP!Tlak$(A!uou09k6o5-H0UTj@Schx}FzR<<sIQIpgev-V05%g=QG}sD}gC__5ri
zzUK=!sc}!PWRRU}>bwwJ*d>}Q!xH+qKDU_W6Jv@xiqEvQ3uWf{4wy6)C#-$}QHs}p
z9UeA16==Y1dJ&1_CWuO7%4xOtXQHmu6aX4RfsbrdNM9=$=Xxgi*x1TY!-`(n`F>9n
zle&?Sk&4RhoXfCk9?TCvItp0cDQ!ldy|&<03c}vOtP+d9*6#I3&hu+J1z}mNrpSj7
zQP3I1htu(XK6;HbvuPjz#D7s{L9<2>C-8%)m8JE+gT=h`j?aENDx}j0G*!JZ9vOYq
z|H$#O*)9(1po1ece|1IBEoys%C+?cXoHLbr3+x$kE{!45uk;o!k889(JPJi?dy}Vf
zzerepT_u_jmsM<*gfO645X#@ITXb#aae7rw#cBlGmutKMvT@YUp&#3kFa`e%|5$;m
zR%Ba#Qd;9tj~$XQ%2_}DHJNU2O5EB^g|^9a3ghsv-*K5!@cSM4J588|u;8<TE%bG$
z(-Q@JmdIl$W1G#f8XOwf!sO$_*!FzeDx%3;-u4{IV(~0cC|#TH$-Kz4f?FzQRgf{x
z2-2+WXsG>fPzvL(e5{`s07tGGI%;K0+0AkWf5ehfK2G?;L{?9Fq{(0{u;{5-cN()B
z)JX9=GB#cqf_NPUAqF;+Kc^Yua8N#7wgTshVyeP?V}ZBya&CN_iM)8;-hQKr-AJ*{
zB#td_1z$20Hnh?9U?ucva5H<Pogw0M_Gx?AW60Mdw9IACm1tj3i+RP5>*;EVX~7WM
z>oQ>z)BUd)tRX)0KXn(fSboBo9(^SCqI-M8z+Tq!MK+%wYt(Fpg+2Ti57ongAIoEa
z@AuJr@yppK+6hQKIoVRu-mf=QIUH#o@3y)Gxr_4qQkAm&D#E{S+~BfA?&O8`WTAhK
zeot=qglg3lcYjN<7!6a+N)Ru>EPqcJ;^Ol?9Cc%4{Wf}{qM2pSczc}FdcL<sLPmAx
zouHZp&EeN3e7AC~!Fpl_IxbBMuPw!sDJR!*)L3e3EqxmMzDC0TaTKhJ@toVhPVx^8
zDRTMw$j*lx7cXgiZ4JG1QZ!d?0al!LSi(eRQYzp>Fc&g=ku8Vyt6mD@+kt*%OZpnw
zXgjw$Xt+4~^r%I9%?&fq|D5R@UQxcDn&ozf^d?*K!rf>7&rETD^7G#1pBs~U`u4PG
z^wIa1bDQvd3f0?H?Xhxy<6Bepq_2M6HCCYJIn^4sUk}eTwc|!Tb<x03kcHdy<ZYt7
zU%Brd6+Y6|O%#oC2vg=k(#*aM&nx!cD8h{#G1d+ZPu_M@sL|?K@>ZYZDmo}?tdA&(
zasDnV`Xu{s9#E$Z6;nJ2KVT&tBYn9a<>-HSMRoayN)2CvacydETVqBkk;Rz!*rV^R
zdT6;e46NUHXewy4Nuo)kE0n!)6IOx^d$q&G7%~nKU!yA<)qLQKc^EuibFzYkcwJk6
zy{Yzge7!)SjmBiM^bf`As_yHeFUi4a0$#bjLfPn7P}%%89&fGnnlx3nX>2;kMy*<6
zC#|C>YIy{L?={T&%mdaFLH}ARE>cwU{jGT@CM7X%e*Dr)-s@8lzq&Zg=*ETJv3EP7
zN}S&SV!RYfnhJlUjrF9OK=FS^#;3J~jxGAZ^vzGanbjwmpm_(Y&Y=gLg1Rh)8cl}G
zvAlS26&k)A5|rh1M;o#!%rdRb6sK;veNCgU!0Y=Gh6Jqhwa^7t(U8$RPBN3e=O>^{
znO7njYudNt0j*x<1Ea-5J$2@qsWwRhAQ6}@L`hwqnsk0qHCl2rWi<9W4GQ#dUph7%
zqPr`q|NcW?)NIgdg`KWRGD!ng^tW0n9W-QFd%;(xBnCnq{HaS4zn--LI8GZ{F#PYg
zePg?%j2`KlePf>BJPeK6(vi`ATWN@Z%6m2re~<MRMnSLMV#8ZWkR4^{S)^&BpFy?f
zC(1sWn_u5lQa=1EWtyEWj95BaZp^s-yZA<Res-Wy{POP}^3mE3j3b0PnFImS7@8A{
zB#S|v)U2L7A0%7m4f0p(CySTp!yms&wWwh+I^owe_ChPhMH?YVk6qP-6fCu2qE*b4
z|J2(-RHcKTAY;B2@KAx_jRlX3DRi3@ii+Y$UeT~mgv>{4JqSNc(WZLb>5)tVM!&|n
zrx~wR3+vvFoB-32y0ck5e#?2A=q#nUr8)%-nfTJ*p`1DP{p6FDq!XoiQ3C?EUsV=4
zFANAv#mQsOd!DpV^QK<sQpdM3zM8q{%T@JDi+8BmnVBS&JHdLAq3ZkGeh=8)AR}Rd
zhRAb`zL959+U{Klot@w7ZMj$WbL!9!t}mS)$1Nhb;$$KzYF?W&#7jIQs?e~!-Kktl
zUpvMG#w8gKJOxP~psg0##wrx!{((^1tA?7}J%g7o>x>-!tDOf5{VHDM)m;sK%eoxg
zQxuz%?wV^>b(m+fbhqyv+@$Z}!?94ZAJRIhczw!|caQk2Am)V{z6A{Vh)rs;7RR+V
zEIwAvRo$4?=?SZ9aaY+^;lbQmef>f2Zj`k_71Z0>wNHIxPI97A^+Az5v$0STY5uo0
z7N{^!vNKoLJJEm71tXq1K;TOoIdt>V2bKv^!>kGdwo<*@S0z6kFC4S(D9i8O%CCH%
zVC*NQ(a`+lFmRN3%7wJ_vW+*kD2Rk-=|j4j6XLgGNdCjR;eFYsUdQ87R$B{n;E6f<
zlYoS@aR|8)j^5sK+=X%FnZH8+*ECo&A~rADN~v?_(2LIF(+GbxvSqCD%=A$q?QU5=
zf<~6=6L(WCx^`K6s+re1t}7@^XEi7bvM;BnLq*nE3sv{EgKUYf&r}b3A<|~w@0b|H
zPa<5l;UobJuz4-3E|mF+N`t;`-RY1D*bk&1z-dW5<4fU|Cni~_dy8!8p5{u7ExPGs
zp&|Ay3dHR`>b+BE^@NQ`ULZy^kPiJld&4+jife?pPa1Cm=Jz|?EAYC8n(T>JNrmUG
z?&sGw=ahO`)Umd#>`Ri|kH3iYrr699WiZLwsULENT3AHM_S%$Rf5&F*zZFMURz4<Q
zwkP`(5+>PsL*w@?Z7(vk*moybO+5{4yAUm=oQBO`RC~jqCWWDPH}36raLBQ$gJmeU
ztn%GMTPfK7&?`L5<kCgJzXwGq_c*xclu!1gTIbB>y6n2^8`oxqVH}m>*2@jz9Uea}
z{zx9JiYr%vZ)#cQ`^YCkA{O=RNx|Fo`L*!19I@MVUU;cT^K|o(O+S=Eswd?D3nS%$
zxuKm@J;Z5_DV&X82GP42u!&Fxif|o6a7tR9#yw828cNz67BQGrT;)pd&!-%Q#_nVd
z?z<*M7LUF<1X^+hvYA{S#Ftns(&|%smDXXeY4ia2DcVhQx4jOXmaHaoaTwgmhgl?*
z-uv8*LDa1!xo+gd^S>ntpw<-`Bt0QA(^uR$##3Mvp$Y?yX3WNd&Uc|u2PiUK10Nk!
z%p-hXoLNwQ#_+229^klX2g%mH%J#A0U(~1${_!}PH0KV{L~4Cqkk|klkVKqM5<hZ-
zC2a1_$xWXHY+C%n`I<<cl@!K+_y-A5TwiW&c=OV2$Mse5Ecc1xnuVDLLg>|hJ$~fn
z8yAvq_2!MMqiMlJL>NUnO!~&Ga{djG7j%}og|zZ}vNyww!(VND)cjW82p!@{p)>l0
zv*c|6k`}^9gFjuf)*03rrni$luvrAKB}mpswLf6@`Kk-9GGyHsrwXiiTv;?iw+%jX
zR!qrNU?``5U;}Ly#%%<#vrY53^0V-D*|OCt{Y;~&iYV0KK<6mesq>MLOhi~x<nlf&
z5jU#YE!FGUdjBeSFf_Fyvs#CyMz<-|($P}?G3OVlEZ?h%F8uMJqhE|K*)_A`gf4Mw
zU9tF2sS*Y9{nOt2+>Q(t6tu;x3YJppDyh1T+0t;9)GSfD93nUKv~xvG#y}whJ@-<>
z<v1<RWW6(+8Ey-cug<Vya-eVQc!}RjDcov|Ei-&Iwh@p`d!uf%oc^tsAf^+}{$ia?
zQ59xwG^<<Y%7VL_%#k$Mepz)aBF%SUW0jLKq8HP6Qs&~NYBMEEtAMAGc1UR2`OSq9
zpR5TiyA?$IrmurN*0S@A#1YwK`A!O#wpl-YCTS!49C)+y>E2QwY2q~^ycHuR-QWvU
z<56P2b8cjcG%l^=A=gQ>-U!Q6%dM%h_p^_L(MWx*Mw|Md<-<G?+;n_heD3PLGr1Xp
zAXb|0EL`YfGDILOpEd7~E**`{O2kqVbItr_BXi^MwDS)h%rici7X601wBw8JycJON
zQAm$VjcBS1z5I#1ulI^$-}XwhjKfV6otEeko6Y)0KDnGlp{hQ0<XYrRm&RmwM2pLT
zpxPM9*3(7o{Y4ixnr-cM3uY6+>dyaWz)`18_jWBOe-AiG#TXj(U3k^qmxq7emY=S_
z@O_zyi;uvn5a*6Z)2N2AgO)fN&v*M@l&7_e07`VxGg*DCxZJn|a-xz{4W6vA3@M)t
z7Dk#vV6R^i<a4%N^HhYWHE_MZezFFtf&5AHjbE{El(WwG-chQ%;Y=q+tx3XkhZDsa
z5uF3)zTK7e9><s`-W)!1!5yp6hpG#&yAD72F(6HcrJ?x*p+0I+Hc)^4Gahc|r?w#~
zos;A2M5^6WY=(|w%*pba<fs?n4qpX{7g9mii~pJam|cogH|dF%o0M3rH%aw3%{$#X
z-V{Bk)`c=LXrT=)|41sib-kw>oI4s;4(P~7#C||fLrKJp`SF~M81;Q6_WnFkKuTd0
z+$DwHMKAs=3+KOJa97ijR?g?wcE>#l8wE9q^P{9PKNX7fLBHwL6*g-7U%D+E6=R#f
zsSs;b%&F*TS9zk#cKkv%y3XD#`S^Rh>PNG>gOfB!f=f9nozeA%Gl11-{k72{ZjG<L
zSNJ|>C{&#3p(o6;>|1o;ICaS-JSKO@u;9IP$=2p4RA`X6T@K}5`41nELy=-9W%iJg
zi4n!`XW<8EvQx=0=ll*kl`y(f4Z~=K^69_{+P>__VsQjnN$JkOY~VXK0lk~WFZ7+<
z6ZNlYq&PgnPh3UYe&UkRWvs8{3)b{|EWdOllWRZ&qY*Q@o2rM>4Aq(a{9Rb6HpR8^
z_k>ngK-hA0JF^&^_IV*v;Z~O(NIyl-$O3!3>A|LA!ta2NezOFo41EI=?bUjiU^vnA
z``C|bo{8TZB@^t1sJ=e`nt3avP-lDMMsYY9k)SrddXw)Re+Hdl!6xejgv=@gK*ZgV
z???-xUKDXE-wN5EC^oDkI}oa38-NwcY2iyh$-@(i9i<VA6^QHymSejK@=OzyPy?>3
zoO5k(1831;_kk;efO2G^2ZqG>aF+IE!#jCp+<NFtIjL>-Z@HSm7fn`tR=2n`bcwQL
zjcd|Xc*88`RlvLPI-VSM;()@I?OgVq>JhhUY>WZZQF*VsPIdDORNTl-1(W&j%Pw2;
z?{r~_Ia%8AUoZO~Ch!Eq-=>-w5V1xr7?nNe_w+^ZfT0jb>9|sfxBF&N;gDDIp<S2F
zCM%rbZH<(vBhSajyuHIOQ3^dexj^!;j%RNNr~QS%;OD`WF$G{RgPSFB6IHW7M|l~N
zb-pSlU!xn>^lRj1sz?{j<~7(!(BlHtGbtlVZ64~{7%~6u;m=ha4)xs0;ZB<InZE!*
ze3R<$=h^rcG=q1zvNv#uH=dEV?^3rjYP>Ouhswc!oO1>P>1VW6{(mI*<tLSfttwuo
z|DHZDrj05`(~=5|IM}|O^{^k;^cXzhGI&a@F1f(kFl3|#p?ImsS#Nz@cGO;^f9sg#
z{)izvJ)5bv^Q>#PmFC2@7d@TN{yAHoJ>4isUtm@9WI+d<@Ap0>r_NgW&5^~4v;cnP
zICHmFUrBN@mI+#5@txe?LoE{_z}Fl7P1ASXKSpTn+;HOiYzf$~_#f@@`68jWg(Sv}
zoDuz6`_+RAbnlvY2BXi_8nSuee!uw-%Rme?<KiEh;tTUXV(oY0xwpFh;5DSUN+O@;
z-WvQb{s3unvNKP;OT8^odn>uIWmBg_`RsW6Q2;AZDd&H|uyMN0{}Uv&q7>j+AZ-7-
zlk$@nVf^*^ItjLjI(D$vM$Yqo(o%#6bD|~U0XY$Nq^2fZEW#_1iI215mYuRRk(tZ-
zyRL>yJVpX-w4ZgS{lU+!yojosM8ZtQ^4@<)Wlq~>(9EiOk8Th>AOoW*m6;Fo_`;^*
z@0j&YsS1o29p55axgK0fI^lb1wi?2b_8?M_Nbn==OLsvlgAE`RYS%VjEU#$lCef|n
zPkzFKg<oemi6}lB=+cfqmi4a>fCA@nx+(tV?L=A{Z4(@jR(*3#dIE`Fu_H0%W;t@N
z`d)b}fE<P2CeXlwoVu399m+r^;(LJ80&w+?qKP(XGk#{E!Chl{^eQ2F$FLt(0g#C1
zxBdav34d~}J>b^xQt^IqIViG{vMojpdk(pzJ?H&QfRu>L%+v22x8~~K5*eKN&#|f_
zLWL(fwdUAU@xP8sWd(_Skt*d1{hiBM{eA@q_IUdD0ZymeaEs8zqieM7j8hd>!+@wV
z{sVW1Qv!<nt6fOId%Ax@oC-u@pg}liMr3CEM`-4L`90~qR$^P8tA5kVgKLV{D)yq|
z8^1XJWit|A0ak{Pfi~}Vwryi;YrAbRxeyf1G!cUxmVqVxr%kJ6rGm-DrXH|65w4=!
z`Zv8T7>d8>lj`+9jglM{yBJfG;7bJvzu7CRkSqZLr2jgOhtRf?IJng6cy|%zP=|`E
zil)=;scAkc9<oun<qeR(br=3|qWD024not3M}Q8<!y(Op`WccNRQ;eZQYF+Ah0{^D
z-*^J=`y~R8_tAI%Ti1P?KZ|@B@Q_^azw@M_X+8&iZGCR|jl4XO=KYA6i~HtP1Lc;T
z^j0aFo@x+$AYG%Gx#y@)m(Gv@;8qd^_`PN}zO$Kdbs%u%jIWS6t9Z>73?gBpOa4U_
z)Law(qrA4)p0oLEemC>4gzfIshV$R4vsA`K-xL0)h=OuHmFDj_;)rS6Z#+d|2;4pX
zAigDq(Q7>eip-#q(<J#8%<BODNmGjCJKXPKf^iL1n=uexKE<nXGd^JM`OCaLLLk53
zy$klj6Q+(G`2_G<dkEP$LqayQA>6@xfRZP0sS#fFfP?dkiYziAwp_~l_+RP{OFNSi
zRdiK!{wSeOBBEa4i-bT!l_!hy?u)5A^%z7juV_|XAdrJNVj=UkDDZD9jT>Z3WIv*h
zH}zV)GE3+EuP*MRN~3VWNlYF~!E|cEDGGOuWiF$xyd3H;9MxYSFIv+4<;4$?2X(U!
z4SW|k*cGn*;1b9mV7WMUygF`QCIz|;Kn2Ry%4Sz8eI7#-(jloN_g>*IPg-C={?{DR
znN#Ht7It-R4}VJDT_hrrmLcbVRq%{z*r)qB&#=@AeHd8OV`RT$&FOGm^CKWuv)1%G
zl>hKaJ`Kx|wy78WUi=k5;m`F$7ym-$N7FxlIT<rXjhm#Qu`&i1UjR4}R|dXH7!6Bu
z>|^rZk<m*VBg>XK(vqnvb<X4?fWvmQ1eALTNzUlN_C2<l`*>$w;xEEWRQdVV>%VgO
z?<W)i{#@{m$zCAcztXBHZiYwpJno}<&E@aZLm5wZ+*^`?>De8zAUr1g4|V&sjA9Oe
zrmEJXIl6jWBDkreVBqBXT*G%_km~QmtUsb|r(x+*_oj54_AVvcR?4S&LP$Za-~g-$
za8+Ip{?ymI>3%Zro_Ds}(qes)Ov4p3Gi3sMQN{AH!)x32`_U(<(}tF_hC_h=dV#EW
zK@Ta-$9Zg(^^6i0Q!wfTP%l%sQ1Eyr`o|1m*$woJWGSG97{@=$*0N?3Dc_A{`$Vre
zt?h;HeaG2VsvHtv{zSywcWsG~N@&Cd{W}oAX6^%syVS<<tmE$Z!zmiB47_#aB@iz_
z>i62oNey)WHY+vOxJmbgT97NSzx-zPYvm2S7W}v?kVB?M{l<XuKeN*a*tBrt%j}y-
z9hZDXr6yFI5xYY+h@z^Vttc(Nag}Z396P+r+XEQ2d?`Y&3AX?PHd2^jiXV;F-DI4(
zA>e?;%3NWKl>ZXOg0g9^b54R{;ln;_&uz0P9`^Cny__T*RRawA4Zs}MZdcE;V-F_i
z2l--oHZCvDCL4q%5~^p_4!d|vamX?{F`#AZ`fKJC;z7Dtq4lP#2?nkzWK68=8Vx^8
zx;pi5SL@gLvz}*0Hqd^UrndaWDTAa7{cEFJ*MfpS$!EW?xtpl^76-aqz)#dTSX_SX
z1af*_9<vah4WJ2>6(x4QKd%iu=#K>GZaQ-8DdCP86tKZ}x1ZJSkoQ)~;j{@S0D#)(
zfO{8ky!9wKF#DW)kx)fc>Y0A0x|1g~@-8Y_?!(_IVJhnOI3HZUshYYpZq=}NMg&=N
zKuD}7B1*nNW=_5;RG>QB6Mhhd`47SI;j`>iYXVr#<rBk=fDD(_-n*N?=9Ny&`Q`Q;
z0OMvsXa+UK@+FCgbO$FUbn)$U%|8}^?3+B1#--aEnPL1%J`1PaA`Vv*PN|cSdd7+5
zZ%lqb<TNC<u?a6h41Q}g;ICVau6*AU>54<e>zTM?2Sr3oD)_BitA`tnJyFmYb<=!l
ze7FGMBnsSKSR_!9E_hlx<4<kJyE^IBp8H*NddNpkkB$|VW{`+lNC~GgQ?2h{81@h#
zRXx@ccva3_U(Ox=WEu~i8Osfj)ekB%cL!3v%}_=+xT%W1z%Apxnd;&FejObN8PIrz
zsQAt0>P7Je=w6rE`%IPHavIj6NF@zW`}_=(o?t7~9r9&-Cc1ap3MQqwy7>d(N*wDq
za{H|AYtrYt%xlwDIR9z=+-H@_36(><0t~0`Mko(L-vGgyMIx-0BKm9^Z2-~FTLpV>
zSH;*K)oqmnM%wX_rSjyuSMVdUdJcd!F@}umxTv6<oecONRXs)J+(LOWP%BWkKP;t8
zBh!_A@YMTwE3wh_@HTv<`;lXc{;TX&1{uG`n8)=dOVlR&t@w<gN^x`VlbvD)YHaHu
z`(lavf+t$ZGM%z4O*6TWNF+m;xl0)tr-{qwv%X`_shBp!-#{Ux91<NkCC@xCMt}W%
zt$<2V|0^Lf^Bel4@HW6->3_SE=IDPmJEkCm9~lZYi)`m%?E3a-1D_t*EPe{|IV>m-
z?<-bAM*H_0T2E^DTR^!oBHbE?_BkWhtI;c-^^voa-I3lpkE2y5h#6|aV9i>eYz9%f
z#*s$EkMVC$^cpnq4;xfxEGty~Vs$BY&rxZNh4GC=ye+>Rc@UcqBuYYu87zY%EX~3a
zEq-x)4Iwjqs|=fwtE?{gH~Vdu;7Eu3Mz;@F3!YO7nuRSC1&fp!)0Fg!3+#>_)$5`&
z`?HX*dS(rOSR859^Y11!BbCwA@yj}3(S=b++|#r$6k3S0&SRnreN02jOI<Px8|&+r
zS%`m@R=tyhkXQ^V44SHjAH;lvH@Ls|o_HBo$8C?EHIawA>Nx=Z<8>Xzi8di_I%9O4
z!WJ+aiG`$vjAm&n%XHODpZvbRl#+~S?;*AH`Pq=Qr0#P~TgnG2A71ieR0b24c_<{%
zR0~?l;S+P^&&AX!`;9=26`*PJ0m|mHt8|5BLi!(*vFWE8WRs-xBIUfj_p;TTpt2r4
z4DSCT_8kqhx5V?JsQ>AL%1F$8t`-T94((A6<aGqH2$GHUMAX%lLl7~6_h5B7qD2}v
z8RCn6a!*~00qn?s{$GGPNGf<o*`bUqKG%}A1=48iH+o24c*v{r78g!yB%=WF$E8(C
zz%F^fb<<p68IdC&*K=nr9jQ~X)NchC4IY2#l0E!(dGClP%BZ|Y$j#`}G>;6j1uR0v
zC|SE5ZI{Ddl2wR-iWt<|4^~ZvMAkS-{o7X0j?;-!Ha*I(O|k0A!LSDT>4E9W&ix$4
z!rRf11>xrP?gF3L8`C=_h3@e!7?Fi|?h1VYv9ewBck=}l%ToGKSmV$<318GqK^j|J
z*NFr8vDz%|*u@gMgH%nwqZ?pkAr(99{EJwVioHqufV9XoJBRe+WuV#^9lV7>eZ1rO
z@;4aM<t9<>{j6`vrgmPqO3%dgq|<vtzE_w7%S{vNXX-iv{0w0N_WgGyZYob^)yZ2@
z7vJAG=WHr0RmBB=ETXtPGQB#IRaV;1q(+d|qvz@-pDUici^sXtQ_c6O+z{dKDu|-X
zb|RfztZ#W4kbTyKREFjvqfiy^v}wN4uzVZAzHoQ6i*8UR$tkI{uiLMH1ESY1i!0KJ
zdpI6O^Gb$F%9K}n*VTAfwm-8`G@Nwjyt(Y(96=p`vqR{Tz~}Bm5zE|zG1>|F+L#)N
zgXlKg*qOqW{k4zv%~a=%@!_FbS5l=LlBgG8^hthklz5&XGN@mm**1CEHtVof()dzY
zVQE=vo?1QS%>&HP(j0%PiH_gFr)D+t%w#VLy~5$b%E=ql?boBE@z#I``i+ER@`na4
zKgFzU{c|R1m}w#IjhK$4#)XiUN5kOT8zcKKrCR3_H6HHdD~6P_td3|Hb)MfV@jm@n
zIhnN&BpYk43SdXW`YnI-tZ15odHP|dkv~Prw&Uf%Q@Q7|FA4d1?Xj=3PN9?(bnXXP
zm^hfd{STD1-Unwk#bFUHX)j&RR?e^cf8wMcnk5AzoGO1dkh$+jmGJvdKz_=lnoIQ@
z+8tH!Wm*-`ylN>adZKHvp1BNPEORk^Y1%Mo{AwHqovc6ka`3BXPPU2a2ocR9F^o*K
z*IX!il4mzUZ&XvbYFCdyNFIngChu@>M8igLo-;i^){3id1edlFQ%MSnCVst%s`Qz0
zBLN*pPpE*XI3bi<ZqVob!~<D%ssdj)YeqHEvH}=xk#T9RrrJ%$W4GJ;9J|`JSu_e%
zn09`NmgGRBvq4x3CqoWt$J-MFS5zg<0<o5=hxuJ8^360Cw~8=geO+tGo78-M_64CG
z#4bY$&78`qbC;%;&s>spLFfKy=Toxrc?BmSV2dode~%_s?=HD(nj&N8L!|Ob`2}n?
zDUH5K$r{V+;L7jK9pe>ePwGjz&Jk5zHGLoFj_beEZR`_$EP@#<^Yq2a;$|6YKN6Xn
zY#yu}uFSPk7d0GnBZnawDvS0y>33+&{EQ_y^QQOaUaDVC5O=$bIg9+$Am>?CDLR?8
z@wpJ|#x&lq+4Hh}0rh$<zHoGpn6KOXBt4c7H-ESXS=frZyMdL{JX%JY&g^@{unk*s
z;g%KcwWbQsW$Eqjj)=sYcx}8DTO=GFdgiVwz|Sd2u0u|7Sl6Y*72%_{mwEgZbKfY9
zg>mYmi;SoF&w6K_ZvsPCI$kE@BQCp=RCO=Xbrp0Tr^&D<F2CcpU#*s~ND*LkI(Jiw
zpv^(xLa;qF&91&ayHl1EEtt~wM`+~mimEx)Pj>e=RKL4!m?)oQ9X!Ep-O4%`^=~m<
zSr&9-F0OC>g5K8Q<Gx?Kto(H7XBC~A@sGUU&9f$S`%lUz>AypyReV%YCAG2g@!Oos
zkK1!!N7SF|r_~C7witUBJXU4G^lIbO*vO}Z(pNK)K_T*SqD@RRkkxb|F!<{9v`417
z%oCIB-i%F6hGwv(lLr2e;=Vha&Gzp*-K`c?yH;^)MZ{{Ut*BCa#VCnYMXd(0Y42*P
zMX3={vqq>Oc5GFOqV`Db8nIH;YHaV7`~E%8`y9vn{_+0zUVr2`xRNvHb)DCFp5O2H
zGs3HQeP%@c0i(H+#P-Jl>o13`GnkHnZPmi*#vZYhP!0&MxWrGrRHa$yIW3+G;lt{^
z%zcBVVmw=icTb1{D@<ie%JZ^5?=)jr+tT#IODC?6l8}D0KJ|C@;aG7cQzbc-TfOn@
z49^06FPHx+owKXKcziD)nEQ9E*3cdEkxNo6d5L<V*tce*)+4EMV1$C-+Ar=kaUh2s
zTtDnt-xi5X_yW{no@~}VUHiFya=f0GaZr=t%9=42vjU@<a1AloYgQ6?s2X7U-u7Xn
z3UmF%bA@aw<uG=4cFt2T_P!m^t1m3|XJ5AZeGM%!_j{&gInm04GeK8<ftF|k9OJDv
z#1)Wh3sC%952e-(k{bV1PR+mRv;{y{8)_{HM<LV^V5x9cHTqp=+b6?xc3&Ys@q!i6
z-Uu0b#$&Qa0jNaQ@L~pl&s<@PUp`Mh2MQ^tbCl?g^%xuxm|_>5_7trJj~xw(nF62#
zy;a5i`n(kQXZOAJmE*HV*C_fskx~~y1t6evv{KQ>c~1ERcF^|2jL144qx0RO%Xi(O
z_So;ipCvut&eq(iX(qL^L0#}yL_#cY7acAqQSXNhGqGnGA7x%SEy_OWUG1EGHU0E~
z5h`r+^b6%>9sX1ePTkwNDwGic1lr8|a>E4#)_>fse-^{H1$)8jNoobig0#r}d(-SN
z{U3p|FC4Q1-Wn(5{Dw&uNXbG%+@Qu@<G&zNaRn|Nv$CeiW{4uMyfm~Tw3QN~E8Y9)
zsr0vi_m#dz1r1N{ebipiAUnafYt%gX=EbJH7^B0a_gA}jO`h>*>>z9&E8txrPaSX=
z54(nY{NF8x9(U`VyF6pR(e+gvRlFpZgPp?X2VL@b6z+7z*{)b5=gM(E-;vS&29VOd
zZ8kTiTZElo49Jyshe}Zprdz;82+eNQpmFXDuOp~8tcSEeiEv>x(i77gL=4s;W8tnJ
zfEnV;w>7Wnj=b1AQd?^!RLid9WbQE&rxSJ?IZWZMy5xzH_{-j^gM#R!Wc^{hqweCF
z0#wtQ?ro$B^g{Zn0_J~lU#|zXb$F+5rH<_NV45AR&g)g2{v>E#YmoAXD@ACE7zEf>
zn38(RJ!fy4+^x>_4uNo_NF?1&P`pwpiYnIOj2gc(>Rxw;<D=?nuo;{>YjrN*Ly-Eh
zMl)!4mPWG^4h2P{o=YG=b2$|*^|AK1&KX3cmm2@TN?Bk-@2AOl%4K?rU$G}cG&@t-
z86KKoyFdL5Xwu|?tox1LM8Jzn8hZ{<3oc9k69VdHktj~v2uN|R%VNz_7|b#<D>5Cv
zUVrI%BmeWp({8$5i-q4HlSzoE-jN&Yjw^F}r&XpNHGAy?Vm;4oXibRqW;=aTL18WO
zj5i!>l{x$KrQ_3hK5YKvlT~?2h<$;~cu$M09=4d=O^(`O?+rSI6Sjd*R>tx#RN<}X
zr1g6p7pry7K(*DWuBHiY%jVo0N4fQ2Wyat0OZ5XtE3;9sJ2R!uRbg|bMN+pT{);=#
zl!_cr&h;v-il<1`wlARE_QosjCh@T}gSKXDEq7<EcKWu@Na!g@g+5HQ*2Bx+i^X4X
zPj0+A-!>cWld{Wd#^@CS@j#<$-4$4gpf-kh0yX{K-sO+@?Dx6is^ZgY(W*eic5NNb
z4*J{95XVAjmb%!bNhPiU5kP56k#}IIKUqI5k{Vz=4C`e+Dt>fI20d)&Nbcwz&2sR&
zr(|=OI)H>M3Aq-rAQ`XvHyPOdg*A^DK9o|aVhz7=&MlzR5zsDF5lFX{JS6R_%-drb
zt6@Nee_PayQ`R63zVSojHlKx|(pL#Q1ouG&tFvVR{|~&RLDgvmKu!4LlAXp^vqVL0
z9miRjrN5Jc#f=%SB$Uju^cF<z*o=G`0F^W^r8<(T2<Eb%{ov8%71@fqY0WTmsvg<i
zKFCyY?M!v|19q!nJCmTWP}z50!Pjd<8n)8bxg%stzU-169km%(gQpCV8_&8!g=;>1
zWq6O^2;`_MXL-x`s4g0;Y?J5DqIoQZkF;TQPV)|bxag3lwybq(uuDT6f+P6~de~&|
z&PFQpV!07a#xB}7J3jhscPLyGIg@720eK%6=|~Mnui!30(CG#oAIv%3;*|>-dd)XO
zxD>W{3nNe*87_Nxf^UDyIVCPu<ws9hu<1zRHEkl1mp87XOxUwCob{Z_U{th*Yv~kU
zXG#kMt|VA=&ws}ftE%XP-^`wi%hS1KZI{3oZsdRDXAM^D(y_y2$cpy`M2+We^M_$j
zJmwz~Cc@xmrJ@Z_i!qo(9s$mR`HE|7y^#7&gp2Srt}Hgn48$6~757pq>4~!@%<f5M
zzO}AfjJ8!kqUc(9wcAkfr!ot*6B-@=)Cy2l$-{b1I@>dso_UN-I<#B6;O-+g7&ej}
z<+5)mhO%Cn^~>uN&r3jw{F=?8I4zsb`+p^kG*~>@K<8qE*Ww&T-5e9H5q?+W7-BMZ
z-)1-qnRFQc2zR`Se%A0UBaNu|wc$v6yOi^JMe^w8?A(5l>Zb|E3VI`%qiC1yQfF;~
z;RrczWlUq{OP58ukPzMgKRbM&vwpn}*-piV1|562p!FJJ4%ehZ#WA9PiyW{l@GfYb
zhvf2JEq!TG`LRoM)p<(FLj>D67<Noka!C2EZ*=)hVS~mQ`pRb42lBtg41?Qn(Q0pN
zd(<b+UMI!dWyu8>2Tf8Qb+BQYl@q=Ymz!7mwv2lXP_n}{(P{dq3L3a|fjq=d#rL8}
zrtW-wH<cK@q`??snJm=C^YXh3WbMUdV6gh_NjDh-IIND6>m?OspPp;Cy5ldFKKWq$
zn`FTiCJY+dS$ajVA9H)Q^>NlqCrT>j^P7P_O_CWnDWdlvVodGFO#}CFBlhGm0G2j2
z!aG3bgzk<9*IxS02&~I-rC#$)p92a_-R1AO^H!99U9Y*czuP)lX)@CTr}MTDNUXwV
z+uF;Sk)as|XIseZ&o|hux}M-lV&uZ$1L$GfyZ6LjF<lt)iRn_m(Sz;DU=?~|d1_=l
z;44~w`%1*+sio&Gty<`vbZ=DebETFX#jmnDy%L@#wgwDJPL8;Z+kFvl8x&`2at}Z0
z3aO`Zt;yNeHdcJo<bAM{d7>8)x#emp$a}Ve`fwsE(-ctsUPW4M9R^}Qu;Y*ci7bl4
z;c#oHcQS*vS%<ASufecz$6Wogd|k0jL;E-}Ta0XsKae3CYa-eM7Y{7pz-0c1Tg+Vk
zwE_^s;6b+M>z}5{iv+p=EV$H~%FfFL{tTJCuL8g9;#M#1L_iu9x669rT8eQVXr1L1
z`E`SZw|hd`8<fCSfX}n?<_A?}tvu%>J!L82`Gd`%J3}6KT=svGbf%bRgvyJe%w&{$
zRgwNP*TtVPZ{<>y82cjyze@e){wn#8ng&V~aGeH}flhP>ukY6LEA9RaYv?jXPq|c0
z1yTSyvxPM8D@c*sB~Z&8E#Mj#=K<g)+xvx)YQm03RiTusKx}@5%3+Jj<Kr7qbd`RL
zO{bcETjr>}=>qC}R~S%c&sRyI?qGW`Pl77PWnUg$>4K2cP1Q{_OAUdMR<$G%z-5ig
z-70exGUlNL6bwt~O0E(>-5LX5NBBk6G6M|ZH|sPvL!1Pr&T@ln-)KFAtV;i27Y+jo
zi^8uk&PG?DZ~C90%QOVB(Uw)$`s}$;I@@PJS2!W)a*rDbG%@KOCs5tK$6t6q;v-8b
zAt)dC<Ff@gm?mb&Ud9{xw|WCrJ0Q*is;&=(UpdZ;i3l0$j0c@mT=ODF1(E$3*)nmd
za|kUn5uOKpQ2U=kzZ=A(sGe_^KF?~K+%;JLJTF^so<i6<hHeD5-{Q2du0DyK{muIT
z7BnR6HgTe{F~&1o7IY%8Xub&55t-MpV(^dQ1HF*1*o{p5c7nFqMfXHx0($`3X2f0^
zxGD;W&h8ZW_E?MVh$^&0F>?G9%U@^`uh+gmvlsaOBmK$ttXbTa{8R<-K+?x?<tNC4
zUFZs`eRPrj&t>P1rXKGM1*`_Kv#O<)*GIG<AF#+Iq6tQO!Upnd!4E@Qoir-*3x!<8
z#6kDovNtSgEUWYF_dV`yqQ&D`^DwAa?i|252FS8tp!f<>>~=|L&DW~gXq!sb6edgX
zx`wgHShnZnJlxYZ(a_hnu%5C;rVzVSbQpT`HqK8PH{UTgbP?g@iTQEO#c^=NfEk)}
zQzXhoBm-DOl$~%RYnA%y+V))LR%D^XQ=ofX^J@VBDNA1&_$~<ri;K4(565k?!*Aep
zF@>*;*#!Fqa=ne|aKatv0lE(?H>~L0-=%~LhYc7f8-IPA=^9UZ0}Vc&r^64FwVFma
zaGfI(qJWlw*thcI)hAk`v8^KJV>yq>ol#ILI>AUwm&+I6*)h#sFLPbl8?^LX__=xF
z4-<_N??dvz7W>KXfrq*;axLfC_YFDvRxr9R(Wrw3`u?95OCA|syq!}qPsmI+urMym
zVF|EHs1^;hHf$q3RE<+`R3wpzY>2)#Ku4fAtR)$*lMl@>9>}V%MbJ4||IU5Y`GB-M
zKB7W?hzu~g4h|_ZU8&zJ+B5+wA71AF;uRJ=3enthUiOJY1vdeZNst|QN`?JE6dJ2-
zaAah}cz#6jb3oNwpgS)TqIs2)X;>mU;Vhfl(yPLlvP0T43><|jg;I1yvEz9Y8lwXL
z{D-Fddo}XCPJpIt0A}Uo|1IaGLCnBGbHe22NX{d*BSIq7k*7?Nq_CL0#pAUGK$v*^
zUW(QX2iQ%al;4?8&0VHfQN=kd;R|W<ciQ$hKtWowAM>1Czs(htp)>jp^bba1q4LA`
z^!1vP;{)(t&KiU(5z~ji>_h>E8(^_{7G3gU0$RDZAI+n1lW(;Fn`<U}^m%`!;MVkh
zag6otos-!}@$|z#J7quQ7<j4%d^?1&y2_HNMDMH7cVF*l&Inm4=DMPENtF8N<<E}|
zud5*`RV~5|GG$E*M#ksqwP_dCv<oC7B~retm84weTl%_xCgM+jnqx{Euk-V)J>2XX
zWHq;z+$)yoH}<0y){!B9evNt$Of&)drQ4G}gL=&D29Us54zp!pkJg!r)N~*dhZk?j
z6Hb^qgoV}t?pOTQm<1xh4RYD-JgW1fDwu|$aj^eVPvUP~FY6K;H^T#HvdUiZ+&(l|
zKO%vpsDM!W^x%<=;A31ltC5!7?Ff^I^cGl6u=dO#N?#p08NAg!u5A@n{%YPNNnx$p
zA?qR?IIjQN4>L9kn=#?A2ilpo|40P^kVj4Sg7K%q$D9yLV>aCPhkJ1t$w%{m5n&XI
z3dH-th%(r{Y<pC?!T|sH?_(MgIBsRVnDIPxP8yz|8fFXtEg%VoXPn*d%UGe$h~G52
zGWsRKFOWSSS-#wX&uesI3O)DJ>QZF@7Mn1+(<LEMIpVe+YnztKTE^q|sd3$lti{nN
zqhl6?H@%WUzc;%yDNZhYa(9Z_NE*+3YYBYE0S)D$bu@`z<Dr?7_=<p#)`<>XCW}b-
z<d(o~<MXS5E>$Mbku2HTM^p7$QS3p;!}PnKPMC1Fs7B%<%&}3;m&saxZ%O{JUNHKv
z5q;943{Vbh0*reU7a4CX0+4hArUO9cBH9lO&kO!Csg^5Y1ctt8|BLb~*O%6^j;-Z7
zx0*zjtT=To=uQD0l3`=Rd|<XbtK?}YmNIpG%9d4Bjq{G^9U6InhH3RYv_8dRJNzx8
z>Y`&GO*k2;cCjedb){^=1o*hE3?SwEaf1*vczLk+WZRyFSl;9Rgr-i$)c_5E+^z!P
zEmzwuafM<(Twmu;Kv(+lf1J?D(B|*F0lcqi0Wjn#$=uFl$@*u;y2;Q!_g(S7PXl_q
zl9}&W|2Z9X29VV-^=W|b(>5{?2P5!q!OVBYZ-5E|FpgqBl6Y<JYk^rZ_KQ^%g$9Mg
z`tH{Gu4)4{mmF)L*9-H&zP;RWE5lk#(jLf5IfZoo(+yc#n#ynVU+szmy4Wa|e?_o^
zp1(rG{_QNyBiBMoJfK78yvaPNVHthq{XdI}**RL^CU<hU1^&lsm*XtW4vTjD4<Y3_
ztkDZ0@1?%XscREep3{HUDaD^dH<!cw>gRak|3L@cWd85s#s8xv8mk33{y&>%jnY(M
z%;k?m02)#SC+LOr-0sF4jg10UTOX^0tWMOFSM7S#trC5JH7nKU7a&A*0ko7DQo5|<
zAcSBpR{is(&oIm!2Pg<<6PzhMMR7a|zNU$*QZ+NLxdy^j4rhF(L#Xul;E}hrQrw*(
zQVD;E+Ge98#r2z=9n`<iTu8je@PrnM{X3+~cEC-4QTg-uU_Ikaeoui4j7Q5x;cU(?
z%btSbM)^sAt}|}j>aFg;>bU#6h0)Vb3f=j{xpT8N7Hj7gR#0oO8Hh*_#reEud0rTa
za;6wtIE3OZW?k_(4?Jan+w*<4CK`$3nqjzz$g2(R93KEiH4qhg;FvA-a<rpM!ZWPk
zM)9IX>5|XFJC%`E`HCHW`U=(0fE*3f^eCIjwI+2ro5AdojW+<N8uUDUY(wyp_wA8e
z)Rp&@lh1o5Up!qq#RF&rXMOVYH+BQ_aMNDhgH<h^usi7{9F~`(nh~LUWQ<qhfTVoh
zE=qqoLPc-#Oj^ug>bzgl1e8=kU+jquZxph*k|!a=2_q7fm#RBkT=1gy$|(K4VjU||
zb+q<~a94JW{7!j-RSsS+VZck_8BbgA;_`wNKy<Y-wtBlkL3|rW<kPqPDXiYAM?u+#
zVF{8Wm@dKM#d^K=gC9G^o|ydS?Oq<^=>jmSUw)wu$|^#INcI1mICc-gUYhO}u)Pz?
zHcvL%`EGKUDA>m7*tZw=@|LB2DxE{u$JxqXJ@Liw0(vt9#VCiN-?uDx4qvy@G`ApE
zv;yPWlC|%s<1%eSk<+Ttd6MjFJ^Z$RBGt9H!PiTd2VdT+9CU3hH^n3QP#hJ_LgMk8
zki10ci6rbG(WGyU3M%q>Mxiz3@<n%6uLh<kS{KeL@~6cYBq?m}7w@79wR`YBUjgH@
zTcnj#AOy*ks1+yOY0aZdNX8#3PtCth3HQ@9*<5g0sU}2jh@{6wiD=ek$l2(dAnTaZ
zb9oRv1=?09LJy82?AL0-fh|~3n|T7hYeKrI?E<bRn5PVHICFXhmMZO6&BjJOKrW|t
z@-whiPeP_8)A2IG0dUQLsoKQIO@V+y*;<1AqW~qYjvVjWnCuA=NXN&y2rH7DUdJF&
ziJY*uUSC+SA`@e?H-f|!pU5vBR1TfrtbMbGI_N`YMD7S!vYO`?a!>VM$aBCM&-mzW
z`XK#akMNq)uKnd-sF^FOi=y79zZ3XW+J|m#PfsT@d%j@J(r|nN@MoI#ODij-2X8-5
zj2T#o2mCTp{qgH4sS5y@Sn9Vv)gc$+1F!!B48g4)KwryzKwVcs(s0n|y|G;*MJArQ
z<=hlv%#xpO%LD+tkI!IU57f>^KyJ3DB^LL#>_3m18*?pIDs}2je<Y`~d_O>}?pIlS
zbE<Gc#tB3@q#)I+MnG>y$IGmB9QGhnss_*?6X#&uFc*j(d|krmb(}TuY)+Zs$L@oR
zjQ1AW9psPG+69Lgd=T!<n-uxHj4mt81K8A)B1mPog?X&}hs~1>WzpfvIZr_c#0c&{
zL7Y-s`)<RphB0|1OPiQmCKcF|uedELCmC{nMPB7ZU$?l_8V?Dv_G7p;L^xDIu=hSx
zu55V|O{uYt>vuO>Iu=!G|7l7igrOUXOKEd=Y_{Jo<`K3}tNKBqQrUXH&pZFSP(z2i
zMcl2HYHWN~#QDHs-=24mP4>&y0HYQWAvwxGsbl9zqN81xdWE*BWMotszB<_Se7{<3
zUeSK6h9>zF#k*?k+E$_!EM<wZkH2HeR@SyWCzoG#xHP8BCYp@1wqC>4CZqlN7N}v$
z<s<OnqqMTJHDmL*%+-*-M0q)#ANF{!7{V9#Z(C#1s|1%NxhJk7V%Y_N>=WSRB`y)o
zk}o9X@?5VG8pY_@<ye1%cdYrsBHe`b;SSVW=)v|#RpCNwVqsst31Q3EfKqlb%(1M_
zSuwH85*rPd8eSIZMs;lfT$_QVF|bMFYUsiyCRK9kPTJteU)ikT#x<iyM&!(T65zq5
z=$9gj-tfbEMGjTIHGU+|TO8vNp*&)C9?}^H=bOGPmL2c`XZ@=ur7kkLHqax&ocu)2
zdb+$K&lLH5acI~*YWifgd0EC{`25PV<U}ZOPfXao-OkT84=M+>Lfj2aOk}$u(y{jU
zg}RSD0_C$7JNB9mfK>u;nJ?oos%aNd@^|Rg<os8Desyi=LlZV+7_Z0vSqf<Us1r@-
zZ})!9ZDw{04ZHA=O`%tHKr$^}YBoBK+%MUyen*)dbI)%;+iL_DpDVbwr^ZVckIgs%
ztV!5+-W2dA62y<pkB2Xr`isAx@o%_@R#>4k7s}qujG^4lWnwM-^f+O_H!bK?jO;pr
z<w3yuBac|Tj1eZW=x*awr&nQk?wxm(skHS&g@yc5A0X3kqWwkyBiFcXN`1Gn7+$an
zFcN!D@&>QguMJkDvi6`T`@pKIJx}!$(}YhhY}6697Pa%~hlVxk*LO-=i}C53C&(EN
z4B!RewW8sZ5ECaoe8#D^?F@aJcR<4@-9pcfMKn^>docB$c<}tL{a9p)u9~!)E@R0P
zQHL|rjd#EC4BVV?a7w$IYa>%js(*j_`)m1_715RK#R&OtUhAo?@M|L%Pz$)Ir76x8
zHU5d|miyYD*k8Sjw{r*t_CE`SdY%{9pCnth&Yw@_Rxg<L7GA#uH#%7En&cewzU~Mp
z(+ywi%`K|0J;jla?aE^>bjc4XP^rIv0tPLB!^4%-C5H@84tOO~;Y69DX2<a^((Z!i
z&4Sp2>SdIRn&0FTVmjBnLF#v#N+e<6%?5@I>^$~!gi9aG_W4bUQM+E^*5Sg;+(LD2
zTcrFv*GeF-c1mzlph@MXFvxUn@2Ps#S?}j(6zPFb>_u!G|2a($v%RhY4?zo_@|Uxo
zkRZg4sGj-ht@Ab4!BDUTDrGb<|GDQr<<d6d!}l&vO`ms;Vh!)d-JTUFVq{8(rM+|p
zC(dM49R`HXy>3h-1#GYQGqo=&%8+RRvMmo#bL5ctgR3fIV!Z(gL;&VQY1GiNlZIx>
z=Vpy_l7wIma~V;ncoAjJxtK+TXG_kiw|+l!(6AoqsF95U{0?A6D;8LBlgf)PsGeJR
zXZ^bbkEN2tUdT0(bwo&aR}xoyw$x_XjNaah<I+|l#dyadw<oYcr0b6qr9b`D){TH8
zw@>O}TKYP@8jPvkI+JuCLar+DB|e06j>bE(ZX5Z<HHbuOkerekLS-f$LWo8d&jHV<
zkvC#p5{oIUK^PUVDw5OXc4SaYkteYl#zg+JIb{3|KVgbR&qqXfOz2i8WCUl=X3n2k
zF;XgsHvG#xT>e{uq5OW+!C=u-%;SKE+cnp6H*cTSXtJul^3HO8Ac(lyq&~glGOLtJ
ztyg*u8vDl(VY}%M;z8iw{#&C1&JB0p3?t#pR591Fiz8foLFEV@>Vpb*qiTG&+h9fZ
z>UP#S1DC+t?i~m(4cL@hX5{zsFYXgR6wvQVvLoG6O_G|GjT5UNu)P;EAALL1%?cdT
zFvyO^hdi$5AM86_bkuHWRs_N=z*$1}`op1b8Fzc6^|-!_HS~AB?`b`8&ma44wj4BN
zyQb|JnZu5J%hpkSH8Ofp5LfQ;jN*eTV$a!lJw*JqtRSW}=k3b}dxVI}T_%quFj{aU
zGldxA{QnkYp1h{yRlGhS6<4R%8XL+uH6M8uhJy*jw1g=jC3CBPng9}Ld~@DwjZgR<
z%g|{q-^^%g7?g28`m!>NCsLTVqtGkbEJ4^{@HAk*KE|=GfTQd`^?KgT9xqZegego)
zggZKn7O)ZUSx@Z<!Dj+_{DO#=>)6kgS7{ClnB(@Ln77R$QR5|B>)mZzL?(8I_+VK2
zRV0&S-s-k}a6ju%WD3qD#h0tItK#W~6q;Jszgbf>@3?kneEwD^4ErF#V9zJTD{Xf)
zUc8NM>!Z(MuyD;c870W<`J)Zqu8fDcMZ=tx&~T>Acgs#dv{1-QLIkb81>)YQ#vXt#
z`y_Cochl%mh}Z9*s(ZiEs%bla=@bwk{2MLMd<lZn9~~@$gNv%y8xL-N-bu@*u(SiV
zAvc{^s>UK(AXCiz${{2iYizJ&^fiWpZHz~K==xN{En1u~b}ecqJL*=h`_##J>c93R
zEZ8pC1W<w)cg&$|s~F2CW(SFj>yWYs0A-{Yd3+~xTHe<_xd$MR8pKT_Kc)J(>mzar
z3YF(t$<;e5#IQGysi@HCPaa3pGb~jZl5t&S;IyP$N2GRge)XXhQVu~1K^T-y1c$(n
z7VeL7e<qtKwQbuYFzH<?vr-#JI9KZo?OU(=E06iQrX6Q%4TE7WHR&kC9yXYu(!TiT
zDy7^#)T;(R@aAi+CmojLl;4dJ2JU8vd2PG?kYe}*!^)Z;2OFc(c3<-piI(2k7L`<5
zB#sW)Yr)^QP7p?~?@_aKud7y}mGz3ZHi-VG@+Ja*#Rk9oIxb>cpgyQ(fSRGOW#Sc_
zQV9fDF!6o>p+x!77js7zXduqP{ms-BaJ3H!`kMtl>!7^-xf5FbR1$nd6#BX|bq8DP
zGJ{X8Mc1VA9VK#?9`1m<cl22!tpj$JYWIuOU4owe-N@rqF)><}Y*O{c!ipuF3Ivzr
zGAI<WAY~{Aj@tCtGc|}1A8{H#oHxZuddl*c)EQ3U#|#F`v${<q@Qd&B>!$5!Q;rrT
zq5s~D4#xKA{z|AjW3D+~F`K2qgnBxBDP90~?k4_|vHsZWVn|r-rqLKOR!H11b2GM}
z5?;t^ux!D;8SD%HnGYebLrg_<#JS7eOnuEjb05Png}L$(J0DImFdQ-LgBy86Q=1i=
z8edlkMFI$t?}k(!xdbOOa8m{KeQXWioFA>EAwXcV9h;({OqIgD_Oz)AG{ZL#$GPj3
z={sn;mgdVG`OLU!;wEmnCU{!gWSDb@c(Y$STQ<Zku|gZkfqt9VK`=!ZTfM@sSw}-n
zP;4qzidn<iK81RFiyJ+)O(v|c$cH$W$pTS8^_2CW+gq4`M`WQ5klN{Do#88m?nk+a
zD5kkW!4b>GH%XheU8xt~_<@LnAN%rFc<o3m%t&NQZ0`dmAmMkl-?JP_dDdU*!`{NV
zX(DTW;=vbE02BzAc&rEsRWZ}DoB1ts=#U|%KWg{e#GJiYA<!zmB8`3_Bjoryy!)eA
zMF#O%JM0%r>Zw9Ho2rYj$r|GT;dj+qZxtv=RR(x=JvN%`eD9{%cjH#k%Zk!Ql}QO*
z8XHxW3^Gt_7;TNY<DL@HTcA3=Q&~`1rgO9+FD_tWPK?vodly-rkPug^@zp+LB{bhS
z6~>D+VzV)?^0(v(_(0)xOUbY_+=FDm|M+Yx{ql9ej%s0@G=`PTcDSWbz<m$rN!F6p
z@c>c^z1ydLT%CA0qGKw~++eW)mmY)^c8G*iI-dQv_q5`Fsx;P-UPexpt51m~a$1sc
zFF!60DSCWTZwd1394>j<WN!orD;3B<ZZZJ|DS2%#^>5F|8;Ip-8DwXHZb<bio&&#F
zdExKb2y>sm(svGg4)N-A8+wt!BM$h1p1raiB&$oYz4A@acLuR+P~YW3?emm3qMTkQ
z@hEPcKmKnHu6i`zdqIUn9enS=pg5f+gmQ}x-h5$wu>%-A*`D(c)t!hUx(v=})wgjC
z<SrlbiW|Ylu2ij9&!2d%PkAw)w-<hqdth_zz>cfP1C8q!W?T}i*yX-tBz^VMzN*+<
zX?p{mr5xu4{g^Xpi__gLpBKMWTeYOF^R&@_=2w+~j7~#i7oO+Sy*9m5-@Nj3LTK~5
zaes~XVt=~!&vmAYGnb4LKQQ+ED*fbDX%sztenT3?WL1>e{xfNdd|3J1;n!87pIf45
zs;dpG!EDL|u0{5(u~wdTP(Caex<mDL{avqr+-99K6oAL<dL0lO#YDV9;oTrm5C7F>
z=D+SclA#55-udLQz8TBYCPkkdaqhvP^c+1<m6)`SKhfQI*e>_lpYvo7x$6tTy%HWE
zP-yzSi?<4f%dR)pS9-b>%-^)jU$Ef8)UML!C|x%@n9Llr!3|vm{Zu^7pIZ3R>@=L7
zDfB+CjrU;N-(9#)18-4Wjzd*dgF|`p8R=ekh3g4*#7DbJ5>7yu?0%h16@>&2C*fW*
zsbp!3xbFTQ+bZ~=LqFR<{UN-l=l$ZTZTZ9>v1s*|?f337ob()V$ZW|Ef6V1A*Z@-8
zElyoV@xS<?neIhVKI<GI9J-94lU`4TTyrTvnb4PT52!cvB`Cf6tu}!2>6(%Rfdb2D
zHHiN@^Y8iphu5L;oxl)kFCeE`YNyTGdnTv<f4*vVl?8*mO>nK?y~qEQ2p?+b-zTWq
GzWiU&pNFde

literal 27939
zcmd42XH-*9^fnqrL_x(uQz@dNKp-FrN=K9yr1ug!BE5#*6cOnH2_U_NmJoWcDn$Z<
z^bQJy5UL~;L%j!o_g(jX_<y(`-gm7#Yq6L$nKNh3o;`c^ex5zy>Z%HtX>ZYjK%mP?
ziZ3-mAgcEu(3wvc&I2vGiP%iw-$fTi19uRJ?)vH9nZcRBLlEc=Na^KsZSS<T=72RT
z1s{SDRm`KY$1GE2g2`qqHaA{Xm|62FR(a{?u;tQms$M7$y}th7?e_=Q8?F-H1#p>#
zhkIN;ympVXq)X|7mFs(lj~CDQcd&#CHeT1?#l7|_M>f{H6<k=HziD~W`Lu>Cq&Mdo
z6cm`B-)FQ(+!zXw;wT!KA*2=iuHe(O)Fjn())n<m_HJARCJPk#uE&LL|7yXm?_@9h
zs|jkVUpVuxCQnPt`LEKZ_?+|HzZwe<H}KJ?<sNnD)qfSUysWEd|J9-x7-audg5&<T
z4(2v_wKCw>4*{rN)Balb=0U9FXUN~>lS;SGqtQLbBkqGbCrduIn?C&+ic-p=8={15
zk2$|%{O$?ZSv20M?&$X;X8VWOqd617A}Uu(=CMixrBzZ)OQN_ZHE>7aVXO3^9z6<u
zve{~+6sY^-m_z(AoBx4wElS-_xA8+kRyy!aZG63$tHlf1S3ZgoQv8O#1)ZopgxwHt
zFUrwkU8pDjnJb8t4wPmTeaP#Ml*F{KN3B@uhW?4r%XHUF)5K}Kzhm=#{Uz@3m}AOk
zP%?WjltHiibE`Nou$fQqnh-CZKj=4M9B1QDQcUYLb>bgYoS9IWdGreL<!x3U_H&n^
z`?vM3njo+$;yL%DMbEpXv4xlN|6m#x()}K^0*hrP-0Q&Ei+ozoET4CX7oZs14pY2U
zuvU;;D1MaAT!p67J9|5m&N?4RO#bdYt}^;sNdqRY!^{)QHxpruW+><!DgPsMuA$~e
zv$zLG#~B7-X8P=p!S6L^7ndwUA+^Uyz7M+B*Vz%Kl@4^-Vw^Skju9hVdc7LwnY$j;
zaIippO|a-4)BasxahgiDi7=Nx>jdXkX%c}67>X~pUiW4+tuc05j{1?|@jSfzh8gt@
z5J-g1hxa92R>qzed!YY;bblZS6g={1j5pV}$nQBzW6;v5^ik6M8)}U?6XScl(JG@~
z>eM4Jk4&QOw8{%Dy6Y^~Ff&8G>w#Zs;kVmQb`lciRGboN1tySt67(ru2?FdnNU@Sb
zC=)VuX?R)xm9lI13IoA}7t%4IErpV}NKhgc_cq{6!f*x^@*O5y+-d_Bug7q2X4G$T
z&pGlXqefImK5P3s*+BQc1?_}bi1L&g{=A!LKl6?Ws%GwHABEMKbevK%*@UW*QN|l6
zImEmV9v?5g-=~D$*w@cfZj4(?Izm^fex94^tRBbD?^<e)(WW*Y7DX9Lx6tV1s~S<p
zwlvd=94UdSL!z#=NBs-cBxJI}dAtT)b^CL^+RyQF&yozbirFoubY?{P8*g_B+D`Uu
zhf~=)8C~mI^)#@1Ncn0)nK#{Pis@OOAT%zvu2;5kxBB&q-!q<Sb^=r*i^I3_YJS$a
zPD)5aK2Fw~^iF7m?JV5Tf?%9}1s-Topxs64Q@b=r_)5K^4(^Lj#ptT=cbnZ0!FI#)
zhCjzg`6$4Av<qq=eb(LV<U0n8Y8mt$m4q~oiQ`g_Vb>o>Fq<Bm@8?4ZcR+nA-jT=i
zIC|)N&j_8NVvRo2{(2LB(Y04ryN>KrqXv)9OvEpp>?&H)!X~4!1Lc}h!;qA+9*d?;
z&APpm6-_wPP$16n52~PwlTFLN+#y4=CS#7<@`j_eOJny`!s7R-SIAzS{#+J4_6MP2
z{QO@>kp96B`_&Fh?Mp7z{0K_2dAoJA>JNr7F;D>t%;wJXzCN`;{9O5sZ2S2hDbM@U
zoMnvV@8>Zq+8x%TLsgd9*KGMQS+Vlp*h-lp%T(RyfuQJoael`lbJDew1Z$}Sgu8Bx
zG1ILHy|fDUdVgg$tU<EEZZgeS?tDTTWb+M|FO(9nrNnf@l<@pr0p{w=3Til91k%NT
zVS?*-Y94dtTEStx4URAG*M615^B(Kgi=f7;XI^sYxwY>*H)bWQj1iyl8wF=nv}cHU
zJyYqahJFc$=dBjc7mCd$LWEw@<!mxa8oio*U2KK652|oG$oTVcRyv@U*&iqT_{#V7
z>EjYlja$LX@h3I??~-3@dyaH2kZFJ|m)LJiYmURbAK-tIp{Ky<3H4~{@w~C3Uzc!g
zCN`%hE(UFRO?+C6gHhM(10rKS5-h{pByO#Ob@x1ptSHP~sB-fv{Mgr_nkDwKeCRL2
zep(BkEffiT?({hvLAp<hS(2#G`(1}|FbwRrw_fB)>I<tWjkIPJFLE5J)Vz*7M!?+`
zWMnTTcr`7UJ=cE1aeNRo3t=7!6~~gRGX4MDTarAE8BO7Bs7Xz(^@rm`(Am7E^?ufY
zu{u1)P$PU27~_+i{IL5C^$Tcs6Z&fZ-4N1hMFch;zK$vBjpuR>i~Ad;?O%^}QPKcw
z>|E-e3CsoCCmkvjXHY-5qRuUacz$Y29*?npMf|wuLGz%G!y}Bl?_RIM(5jfqhJId_
zqW7Xi?RDf*)62fV-Rb>J&jw0b-JmcRVr=}Pc1BK9y`RHe@4d!u0uB2?TTg+LY1iY>
zL*kWOl70%!$b;sz!o#|N?<;1D`Am9kDnl`jYiTR31g-p^H}#I%J^4OM29*fZiWpds
z{J2hLI$>4zjT*CQrj3tzor@c5(0PeV5pu;Vnzs6n%D<)<^)uK+=~YlB?ohBz_%8`7
z_2A0y>M2R~+Y$rSKH~OZciRn{A_)S_MUE2H{|a?`N|rWp6-#kG;1hH$D~jbeI6X)L
zeXFnfO4mFK`nkyTwT2G2n4VqS7bjLsNn?g9&M$j&xL;UEyP2yRC-zjMrnm~~0~?KB
zCF7j5^XtWvS6~~FuAE3YJXp_!B*IA{*DJfqeJl8OL{>7_%y+m|%@2=S73+e19F_L^
zx#0ixO-WI%Jq0S-E&eA%VdC{h;YR5+T$ER)$o$TIO--596$g`!H%vEEl67A9>qO(s
zs&Z1LG7NnDcrVNU6`c@1am=Ld#AiF}GEsv-Ea#i`FXRe8fT&&*H>*$m+&!aY!{zw~
zUx9xHZ|WPV01t@8_XpVy6+z(dEGQEw_iMdizjiQpvDQt(jL#R2`r3}BMBT15q!z&}
zV{N|p%AcdI<KGB-H|jf{ftCt7Zoa}l^dWt#O*@vg18)ra^*%e?R!j0+pqOPSGjG!I
z_)`4m6q{z9;vkj&!8W=%?=tdt+(|N;PxY1zzFU7pztctbbf5HppDypA)pgJ--yn&M
zF;|RBmR#6K`_4kMk>R<smUuEuGBBGjZV1qqK0S{EeYdis*glMRM|I`SGtXf5UB30q
z)U4gIOTvgqSnJr;)V14_7^!X8e#GjA4$5+y^aYyiC(dk?QqErAI7dMDEJ31c?t5@y
z<BK;XOppa)brjNmIXT0qf%N=hKYEC@#2eeEQxVw#X?VXBSzZNedOhly+c0P*Gi`B4
zSfAD1dX0D{i?A*7OLG#}CWKt^xrUfj!Q6Jf@w*~JXDQyzKGM;sf&2Tz{t3y)sipfK
zMr$cSL)&~G@%NrO1SDqv0_>;EV|SwqS|YJO3oYZkDi$QZ*2OP0E#~$PRF|$_s9M}=
zF@gJ4q&F%4=qAsTeC!>=-Ej;iP)#g%b@i>0fuuEEp?UT|jfo04qz?vVq=in^+g~fy
z*1wC(izyl^rMtmwKCm;JE68~McJZR)RAAJMe2HQrMp(te@u?d{J9(LX{DCu%y*Q=i
zQ)SJ8=B@ZK+=p5|g9j!v!Z>v|#$8!RB`ysNb1H!Mqo;idj#5qZ=32hEq|Bk?KE2BI
zlv9hSt?s=eJ{JbK8lXhAO(t2b3O59zRf_Muj`DU_OhC9n&9y?>T#wiAAiKur2Tj{N
zjbiSGGGB9#1|oiS+|4l5&TYvRqtl`Md9d)vR0Y33yizqcckGOgAu|%5`%rm4-V|Yo
z0rP4(G9`rnZmhb^b4K%STJ89N^CTS>s_{ebNqSO4O&z!1N}9ik)eX21fv!Nm2;Inx
z{`9KyQdaVK%{+T>{Thrsw{*INLEli!p@MU<g4No``zg}N`O0-&edY7bi?J<6=w)y4
zJBW}3<EEGDN^;TAW9Ke~hy>CnFNWrb*Bor<7OVa}kw{m(@;X}8ikchlk?96IJm%?2
z{prt*)WaB|(w(_J+2KYaiHfrcwPxOnh-dTFThn~&4|DuqPOeEN520odD>8d|3xx|s
z^~gC%BD-#i*yzKIOqNY+XP$(lv7A4FzFZyOL$1{O>j>%b2j?|>4B-+pDehuL?qO)_
zYC#c*^LH8+TYD;HwmKzp`GA<<QV1Jy<s|T3LojDTBX^B!_c@lcZojJ!Pz-l}lmi+D
zV!3|g&`Sdn)LgvF(;?6R^$q>uZ*&@)1ZNNQ<OqR4mie|Jl=qSMfu>6gd_d?y*Y0Q3
zS9#|W(9o7614JdsRE{O;6~{hjnE0{p8o5t9GBP27JqQ#Q9{vBHg);v`T!f3crx25t
zMfz{boit4UM`Eb|;l=;Qqq~A1DeE(hUPG@zpwXy>uGoT-k`mN~BcfW6*o^l=^pk7A
zI<wd9j2ba(M*Z(vC@}tM5c%m4%xgxN(zGO8Dk{goMy4o3>aE<?V4J>Uizi@{t%xr=
zCcUwE$N5~2qh(K)pewA;KFyL6YdxR`9Rh({_tU<f5HpW~h|;gmJ>zk>5ouScw{>ut
zsy6QL=Ym)JPVP9uSnKi5Y>$x5_dO_cVmf^_<A@q#LoHYA#$NfOr6y<I(=b`^0(-#r
zz&5y*1TOeU+8=8TbaP_+L@JJ1B}nbndkn}iqe5utRS{3%kSXr4)_ruV*u{eWz1EYX
z?c=@HAd+n)w)xLjx}ntB?R+KU)nG9sZz_Gj@{0ujJ=j?Jt1;B8Vs!(4*@4(MGS3~o
zM_hM!x_;jDHAx!SFsn|Jr%-{~u70|ECls1^15CZoZ~gov7r$)DaWKC4_z7PwLi8TB
zBNO@q!+pF_dbzXz!tERQif~w?XL|hcPuI^g?){Rv4fHy-r2*^q;-R+ot{IFYp&MVE
zgAS&^(P%YMrqB(A%R;?9VvEAgUIBQv4^*d$%W`hTs?eQb=KhfpQ?25LRKCl=`kzSC
z!}-NJSgMui(4)p+o-`PEJ>w>_W_kB>V-cRPCc^c3?bwEbz{VQ1Kp=5_d;N#K{SF*j
zX&O!jch+${qDNCqG~EUMjmFdUWO&5AL^%(tA>l3KZo>(#W8+7OBVUNb+LEiN{iyY?
z8~%_;EY=>&5n$xmadTCk*x`?~8l#M}8*@Cm61wAq@3vjssD%r4?2kMgbyiK79w>R1
zU+POf`YllpL9f&mV~gi;n~m{}4(Y60O+612Yx{`$Mf`*()sM7vTDfYw8{ByD%{-+#
zZi_@+Ny1&9K)6b;bCE>xBur;^>N{ayV}Es{vq|X`5^1~h^FlqJkq==rb?)$WuJ@Q}
z&{6w!n>`sG&2snBYkvXPnC(Vnlo+S3#2R$@8Rk>*&^@}mzHUvgSs#K5RwGP_Eq$+v
zAerF4KU&>laxyghj#wtOBnUIUn~Qp)f_#n)C-X%9Qjj9Wb;I{dg|?l$e>EL$ahz-|
zCgU_+7p=+RYW^1DO<1pjF-W1RK&?bg^a+3}ta%<@>p+*;?oUC|i#d?>#-{7Ot4+6!
z;^DKdh>x_g*q258g(`(k+f#%cBO;G<gsEef;~fj@9~*_d;1Pus&rghDGhs;PbUkr&
z?tLwcX@GI7sN-Uyzui;l3!#Z02G$Ods8y}5l$AP<O=5~B;Lnqm)1<hRJ&~+F>BQMV
zXE3{6W&G-&-`}S8GLT8do&)*OIwQ`iFi|Cuu|})C=3#`M*4}h@JHa@{%4I4XLTnjR
z-bv2y|DNyp6z#8LeX)n;6nr`#BF4!cy-NU_QlKT?D<6qsq19ir`*gIMJo?hrVk6Ms
z-sD}yk1EBQfH8!##g&C~8&yOjwpMIpYwx>3Ju&DIW!O1M>mqy*;S7GIi^y$?pM%zt
zQ8DJd&U|BvQ-7!G8gGT_OqTZzU;IHxUJ1Hg`}<j#V5`Z_hCf&eFCHo~zdGa7A1+iF
zh0rsyWmMq1edKun;m;VpuQgSHP7t33M;H-OC!Jwzwe@>Y?i0sVfiC=lM4kWrf<?D9
zsZ!DJD7Tf#PSXCmrmBWWlFC$*m(ND~;iBTP_lX#Ur=xOofse$a8sITId%4Uv`2_&b
zg*<0FFCdf?^G>`<1#4RLtx43BLtNa*$Y_c%d`(lK1ELN!y*G<;Id)c-ovW)vtEMb?
zDM;j~!fdZ-dOYPrKIf5!<A-ey;jX%&WY+E$m*)QXz3WaP8_T-Y-3>LGTw1qN7Gn~Z
zrjKf&`6BS?-C4g)zq!=ey_P){J}B)yRAG<Vb2|+iPv)mOi8D`L-0tDu^-0sg5AWO@
zksme45U&`=Q(b=%Pp?aJ3LaiMAIoaQ*-N;RSh$)e4BMRBIM+Gg7m&wLd;{g|WlZ*9
z?Z2xli>#L2l4sWE!8n%C)tp7@jydp_YSu5AFNL=%H@s%Iw$;7aP$dAbfj7gv&|mrN
zMy4Os2fU(U<&wkP2ZZZqmg5LR8#BZ*ysoE%@~jtM)&1Sn%~oFIZ{uhgKZTDoa$3c8
z<Ge6QSW3!X{XH(@h^!0_Jrf`NZe<B1+8RfLrcTlTj2DC3wdzn*v~1xOl$gcJuW|Sw
z#E^^Crs`AEx})=yCsFI+82RJ;$NCba7=gU+`4Amm_gC(Q$*(U{j}|uq`fSo(=pe_u
zqZb@Q2DNBrBj4r~g=UxjUA5Ak^jvjsh?v@V7b%Z!=se_&Mb*EF@AmOBDtnjfKR%fD
zuE*J9AU(9fbNIejlimtn-vD(zHfCzt?-3---adS#V)-MiXCc5bQeSmSB>x1`(-f%e
zs*BV@{IJ$a={K~PC8+i)(_%3?>p8{j=t-C<>5JVdWE=eacVD>J4@a>W&BQA8w@e9t
z&fYadR@zw^LSy*uSJ3*FU(0@m@%E{f3_w%iW1{)NQl(ciFmN~<M}NT<Z#+Erk1MrQ
zcMi3H1&uZl3^6STy|W_!%TdK+GNLxpDB1Y1itYVS&x|G^x|Mb$luy_sTPt0e&<u9f
z_*{c-D(*!Jl*SYuA_sLR{C4E3FNTt*wUeS@u}J0)&edKFcb`Aw1jJ3*WTXf;iZ+Mx
zkP<n>N}p)Ynru~IV^%ksHH{Nz_KefIQj_f2YcArowz}Pz^=Pnmv5u3;i=Xal7tf_N
zxM`*ZF4avpF2WNDsxbrs-T=v`^CAK&{Xg?P$HM%}3_V#z-4@&VuCL8DrxsHszkLyQ
zr37BSK2_@s(rm-9N(cJeI(cOtZx;+jKb=*CeUYE%r*GKcx{&&o!Ino#^Xinh5NP{L
zN$qUIC%5+hK=PkwN=$g^3{BndoYB4bA4o1kw|16qOuK)RTHj0Gn!&7lZKCqw`gFa!
zW8_hJ7rU}ehR+h{{uuz3LXF%vCl53|Tk8Ch|5o-wnN{AU4EU&lz0q2%1nD~{@6>Y*
zmTI#;1z~|uGS7_joW9W9{%GxJ!}p+Fn;=gRz&!xr83*t~uxgs;tp!Cvhb9`MnGfsN
zHcN#!KdeN`PqDt~e{wp^Kj3~jcsC=#ZS-}e!>MQeO<lT;*5?bI$)}7RjExTM9sB94
zy7ysTPxXSO2HeP{-W}jXlYERF;D<+oLa&;IDsmbV7!}U!%iu;DXLqpMDPv8quTRys
z9<6WtweI;PI2-(4#8K+|0{~ERsKs>CyG#55Vd%->0bn&8xk_wv-_(EPRV~nKFd^db
z!>)mAmK>>k!UCe}5q8W&V=cSY3D4$Ej`uPd2!6BVjBe*J4ex-}X}uN_Qj4^6v>6ms
zQ93a-yIZsFo#vF%5QP&f+MYy2VoTzA1l%*->zjxw&K5z!py0UR9>D*{Ajo~<&N+8r
zfP-~I?qx*p=>eJWGCuyUwF2(bN5YX2fguc0DVBF%DLlSIWlZ^6q<);3|KC50O^7Ev
zYMNj3vJ8p_Yx|U4<1aOOuBUv@l29}W4OhH4v~z`n496q&R0kzpe#z{2K5cnauNsj)
z|8t8s1&4w@NY|=gO_TDu34|uzKxm@x-a`H({YvN$#n~BUy012;ym>r7m(L+}td?MT
ze4a(9LbZF4D=&E(aJ34!;bH<E%9+lA<kTBnN@GoUe&^4JyFObJ{ed+?wGFxv>4Q~V
z{Bu@@x)L4yc!B&Qz@2PiDX{ufL0Co5bQdnfsrk>}D0mNNfo&cdup2>8O}ZL-5J#){
z_(F0Y8ll7UQJ>}vsFMnk3j$kZFp5k25a@?!oDYJA2q#C%gAX_T`Hq%s=$$hUCXZrK
zrLe8RZRH@+QzFXdM6qFm*(5o`uk&${9m{=9i@ZWbjmXim2g;^R`6XwEmV8YUN|$*e
z4QF;LcvrN<9@f;<7<P}-s0cOhHE*WZP2l9TaXAcMALto@K;y3fc1id9XPb-(QCEYb
zz=fr6#QxT1WZ+Rjrntto6=T%&(XRz!!-@Zs0GAW;Q2)^vuLq;w`cE1;R7$6YBqf98
z+>ds~oQ;a|5Q<8+jqeH=8w<Thc;X$gd%}+V)-Cd*)!E!SDni|2yh#R)1gPyxzz(uJ
ztcyB}xu$vE)a#qq16<bMU&ldlQa*%l#JG3%%kUHY_{%eh!9ud`r86HsFbeV9cXQvC
zedwsp!XsTF$jjcStjlSi%#7Z8_lROF{ln&!)@sUtFa?)W^BQ`-!(MOb3H)A3g5|)I
z?nP=>QhkWn@lI(_GZGGPA0ku?vcbZ#kgSU1aJ_XY%lRw3V*}SU&pss629by{>3oqH
z?iU0ZtZpJIP(Oa7ylt<T8|7WH8(`)U)U>L)ZlmR0ue@>#hJGTM^z#iieSUaaGJUKI
z9h_fOfwI4k?h{q5e-Ay+mM}lU#SxI}R+P}4x@8oIX9j^fyZ;52$y|g+ug&~!P;XoI
zi?A9h!0wg8&uJdcOMLM<T6G^1Xto$@C+US^LQ<r?cQ<Dn13FrLCO#)nLSX=S$HLwf
z%V9ccT%#7WKSb=j?VQI5n4aynf7Z~#>I!Gutu2n@b#iSe62BRC%8Ie|_z))w)RtI|
zk5f&a)t}NopgZq+xZ7^IjD^G&Y)Tw1D!ntQI*5|rQwxjJ{5x$U?JiWHp4pi1RB+l?
z(5dX|S<IQt6OP#YxuX?&)$7|u)YgH?$188U>>l5t{zIM%^zh@n<vMz^|CRJ1y+Far
zY2++_g$a=JFZ;cdAoq(r_7*Sc`pRr2PX`2C@hC)N%rB8s=2p-XP(S&IB?bVU0JYTt
z)={4d;yZBD{UYUC*9iq-S$~`7^r0wv07KBHdH@b#GM1R)j+peltFp)8zds(UzJB_9
zFkrW@yrJ?9aKriy(HSYt?TVc?voHg3pZ(Xy*1xqx%M<)^P1)q9;~Zv5@n(v2K&cQ_
z1#RH*+{qiU1Fy{)sm{bxTnc0c_;qCu`~hWuh)Ww-B9%^&TZd^+l%?xe5&YmXrqh`Q
zpHB3~=?)wk!+H~IG?$~7f`A=k^!e@F_`!5{{;vGk3d`weGO|EVfhwWphXUfxMm&d$
z>CzbOKN#*nDef3ry3-zJfCNS_@k89lP6EGJ1^xnTz!xjjK;64HDSbB%Pd5hkpkM8W
z=;6`R=Bw8KI9}Daa@L^HtB$uh_XbL5PW1QtzMTjfJX=aSUUVKbmHadQ^5)@T>%l;`
z@TC8-xZY7uc;i1Q%3PrZ6eRcPVl+d0n%Bvydy&cM3<}SkdRsvGfAhru_bF{K*X;My
z@x0mjD{Nv_Y|EI+zT)U#TU{J#Y7$%RSrI;SEdf-Y&c4R~-CD4<w~r(NC{pmnUf`QK
zfy47c2mR@=V5<LTeBk`*{^fQGDS=*`p#wZpp!|QPvvqG$gMvd{H|h!bLu%6LX91=^
zIe~`5--T1|<NwTlvs~gh{u4IDm1Hb*O`+9mZM^(wU@MFx&|9MVy3_y41$eFD+_+w&
zBmwI`)m#T5KxbU8Yc}+W64E?Qj`m8M%yu{DGF8)_#cechwuBq&nFj3OtWWh|{64UF
zzwYOG|F8@<I_I~$rj!KpG-v=0ydpl}=U{d~PgtG}z%`u`_7fv>KfUwV>R`_Fm|dQx
zW;PZSg+$I>emX5En!CyJ;4V7r>xBSQA3So(oFVL+V*d4p*)i^>lBj)-e$iQ}PYwgs
z!`Am8t%oG&XLKL2)@qM}KxJ1{S`^#EAdrIw5`f%;SZ)Dxr;^7-Pv56!mw4uyj-W%u
zF{(ko&o=wj&hVmwm6W#X(bxt%w~e;9R0-Z5#<=9z)f;hKs#_NVz-d<M$@Znqo^H)n
z8pax1LJhN9yby4<ZE+U6xF_F?$B;_G0t^$-plfc$)muLw0j?QBM0tXBM7h&QafHeZ
z;}qUbs4@Ye1`Fz9^Kuw_OD=Wp%63!ILe&-fpNjUwc|iYy;|A|iw?||#T(%5-1=UaC
zb=Qn>YN0GCJp%_-Xm(Fp>#6gI0MsZhDc2*9m1pBg`dGmUSLn~kuj87`Fg3>GwaWgC
z_ak1nfu`o~^Z721PPT3lhM=XfU=^ft(OPjI>Q_!mKKu^#fUY!N<3#5QuOEu7C&!+0
zx?-5?fc-yn4=;~PAPUv0{dPb_=!zRKSfhrV>*aTaP1Pe37=#4QSyER(Yeb$wj835X
z6V+T*5e@z#$hRe-$Kw&j62*L|tI#Xuh5tmZe-042awmB!k6Y2atb-@>BrzWsict~6
z+G9NOiYgHKkO<qAr8l+EP-U%17$a?|pbk3RFm3=I|79aHUhX9Kpm?a3TD?`7slBCq
zWN1{Po3Te#$S6^t2~KdcU>k-dWIFSjo@x^(VC4kO){1$azT%1XbbX}-PA$<gX_t!#
zpXPw8GF8{zi6)G8bZB@)BNZ&iw9=C*csk_ACit}~mV>ZY4RyP-?I#V-5WY~fXGzq?
z##a&_E&+=cLn>Nbr$xsyw%2h-^CzQ7Bb$YoQ&C+CWmAY@{cJlD0)U2E;lM}wowLg@
zOutU`?F&4g8lISa|EcTY->s_Z>guZPKFPglk9}f+06$>mgH`ZfXgG`&`%ce}YZWhj
z*zaIyOb|8~aCd-#W%_Ip7usCP;oaU}uIqE;T}rI!0h&Q9XHT`a6C8T_b`alLWBF61
z0nQQt8EuQ-V!A=`JZHEyXe8dw$lqMvw6(O^^V)!@i~MI~w&{URG6RX!Zp<SQIVyg5
z$Loeqx>A>^Jn-wzLE_dm+1{$vwLgnwLzLLHBSUOOCu#GEDLTLTLy9vFR0xgNY3?7$
zRP5X|Z8y4u-2I@F@@Tz<Ji^#rD3a<NseSj#S-;2v@y(`6od_rTfXkD+!l1PSmkiHa
zwcezHRjICkMTK?6bz7}}8{SaygO1#p6v|iT7D1v6@wNy({H$<kgRPnxPgH|0or@#x
zuJOvx;>Wxw?`zXua{&nfR%79s;@^?2It1mNe7TM%--&0U#Ws^p;YjR`h}`72nrO{J
zk)U5~Z<YRLXZfjfjJ(|?r86TVr72S1dt}xXeQdP|x2p7?0`};93`cP#Z>aBc-}gc>
z!#=}5QX2^OoP2GG)_Lx<9Q~^uOf!b?bW=Am?8!>gavFQoBkVKHW&8Q>`S^%d$-7P8
zHEi^Qju(OsV-qC)-WH+b0j(g22KqLfe=6UkH(wfltJ^ikW{a2Py-uN&XNzQcJ=gv;
z@<3bu#pJvKsg4agT0`4R%KCDNM@j|o{c849>ga9EVFis@SFsoACAZam=ffX%nq12L
z8j&*n`N_)Do{z~UpEUE=0*k#ReA#)T>v+=iM3GZ={@;}zG><=tC?YpNVm=bn1_u=c
z90||exC2@lgeR8<)T7^xMjtkkhZZ5{7hdW<cOFMOW8SBRX5933B8sBaMk?<bYHu6$
z(=~or3Q-gFY$SJW{WVzoQX1dUNoC@i#V2)R-APxhfRG#Om&#ed^VuRrtkiO=X<^5G
zhU$%Oa?Y!Lm?qT1yMy?=y$Pe8=nB5y{W{60yU;zx^hDX(skX04g8Zdb3>-NtYDeQ5
ztX@H6yGCXvBk5y&c|YL#;h)C5ST7;d%K6aq)n^O5cV<2OJ)aJH8PUaKB2^VAZsKG!
z?7UY~yvkN0R{0BVO+xW?Qoszzh1QX`CcELeHGn5B*A!Oe7?-QGdrvkb^`&sYHs7uu
z`p=kod5FVVTlPHCzw-9u&{KcKc*3~fQ^`W-X1wOoTeeXGsDA&Y$HWDWlfSzPCnvw?
zkALNzG^mb&SsmClGx7w99b=yC&tsm-)%HZ0WNlF=<U3u}G3R=b67z>5)_P$vV?ItF
zR$v);4a^ogP>a>j5Ac(gGA&>ZX3yJrsU4l+%V7K)ewnUMM%9V29a?9wOv$l{;CtbF
zMVsgSt)_~np@FLtR!NfdyvQZ1#)S>h-hFO%SV1gC_*UH@9PWOFZ59`?IIO@XmpN29
z#P-@W*CvmqYlW0YuGjh5|GM?znjv~2UZ;yu)#qn@!*k)xJu}$GyF!2BP0X{S^}TRL
z&sJuV$B~8)uNtI)TkVo1R}Sq6no+hpXHLhjg*W5bvs*OJbqbvB#jEU?Q?y6fLCCb?
zFqRglpE}lsVtb;Ew^xiDvo6za?&U1H>_@zyAlG8_Y{9dGaBOa}UdQ@DmJ>*Stj=U@
zKgDllF$8Dl*O%MJqr#)E0YP2ce9^6Mvl9~{{5tWlPEt{-=QY0CwoE+s#rm+1#%FF-
z{LCI%%s@fof?jWKtW*l%I3c8ViqupP5=Vi*-qPGcN~Dj$8%%yPn6xr-TuS|0@kG~+
z6c%>8dL}n)x)_;dK)`C(Z~pCAO|nj<A$&4^YxeBrYSx!iDI5ImYssMUHF@%bE2=QT
zDH6(C2M6%TraRH%O~<+l<+i_gsqww(3x$FPfkDcF(nFX#eL{Z;RT!801dKENu#zXZ
z0={{@1LYNC#Z!;>HB%$pch{ER3D>$kFO$`yJGQ8GAxFX|xq<Yv8kdS2z?qHswd3q;
zLE7dP>EryOp<fjHm3G>mN7dT?gtH@p2;J6B_Ld{R-ps&VUG&^KpT8djmGw{T+xPgG
z*r?P=VD5`Wd(%JdxIwtu*|3_zVS0OY+_BQOtdSv%rgbbJ>sF|X9IKT7vl+J@exlm(
zqS^!97J!thKd0f{k^7gSbUw`7LXWxmLN2P89?8l^R)p)V8RAu=*&X)hI*+t%<@IiK
znN!wNEGP@#U2Zdsy4K&I5~R}^l>zL)Tk)d-WNCMY#9jQopui<I3CTz+C3V8j(L9z;
zrb=G038PB?OE@p;P2sm<8;2>mmv>FPd!YujP#aoZ<)9QM_Bg(p6(lD6QAr_)s5Md)
zi@(ZWGvKDnoKHKFH2HR=ST+04!E1JjQZ?esy>_|lG_r%khO9kU-hM|c8XS9g{4r6-
zs6I?S=@8NP!}7<}`!9A3U%7I9f_>jWG;J#@c#<^vK74DZA9^;gTYD?R#CKr*p6Q1P
z@+-IPiqVki<C9yI(GwBcY^&{zV5s<qZu}Tk^(vjL0JmhYq!(zFqgS?D>`mEqr}ID#
z9W)y8u{iF4Rp3dEjp>Yg=SIMQ^^bH{`j12dSZx_Hb3hj$M;@`0y{a6RDa2K%53f(+
z%Qe+fueUVJ>lWxkah1lC>TJ6$_Qo|s&TUY^puKMlST%IL=iO@qi8_5bsb_}FrXD&w
zSu#;Zl;JMjE^G+aaSB6Nsh3>ZsD}Hji;cC|fyTEcB;mTo?4GSvk=Dq_&8A`e!%*sv
znj%><U1nY>-*WAcSyv&~gr({|0TjDgSxFm$a(mcJ$nZO_dDd)ODEywcYm8z_AN9xd
z>yn?=ayLit^9uBt#mwq~0si&F^>$G9*oajlTC_r<GD)1h-%`+ZVzaI*ODbaMx9|#f
zl}}GeewX`w+5_+%-LE@cPCnPb;*Jb-0#7t+zrQdB$)(Gn3S2TmSoVC-Mq3kD-;CTv
z(b)a<C&RyoD^*>)LLJtYbbS*KZWeDV&)#(n^sGAXgMtdASl}BXo{blJta<A3`UOmf
z>oz!w?FEK)go-!R9Vc3aLsH?y&MyPSHFqWu0*zJ0QaT@SHVA{UzX2njKS!{U5sh{x
zDMO#o1#^`H0R!vfbe|D#{9t)bpz)Ae6B(54YSi@_Y(oGK1Zke6<F;_eJHf&<Df0=k
z3(iVYb#QBKx4A_%LrpvefK78c;00xVdmA0l8uR4``iXb-=kWqT6zHzwTYMHxsyGJ-
zeu|$uG4DXq{5I-|+e2!miqjRx0l%m?-ZX8b*khHFOniy5Rv<-l_>jK~J?KLy!l|^s
zEJoX>y_b&ZEA>5Q4Zx);x<rc-5FKx@c$|IXtYu!w4m}tM)ntUZ-_yOsB`uLITN_>I
z=JZjgJ!3Xglq#P5%~%$2`s`e8!tPXjzw8>@Mv&a}A^va<boU*t%n%0Ig3LZUMD#4*
zp8fMd75muNX2y55q`3!h@5=aqhaNw%aVfmrsSH^+xBx1P@hHEN(o*u?(B*}@#%q+F
z`8k32W#2n4Ah1mE!X6`H(^sEz>U7i2iUZ(rZ}khz!MZ!fJ854Y+|S(QKL^r(TD){_
z7Cr`>%Dj$FQ)YQ8UTS$0OtfQcDsG-z`4nHQ^PVeHmuR1mDfLD(zFC%VcTlrQ_gyLj
z(LiIW&=BrsQj9nlwlFiB(eE_F<!lvK!Vj+a!F#37TTNodMZtDPI<EF3QwF=bA3EO3
zjz6B<bB1A@=MI;iP83`PjYb$?LS7@?FOJnG*j1%9GnbM^AN80GK;5)Q$yLL)JMt@)
zyn~_<?i#da%uC&|40ulN1UQ@q&E+JDto5nR%rB8$vgY2KXb1+zHa%L=8%j`<s%NTz
zs&><X${@Y=c%%17^?N(6u@%#XsF+FyS-7gjL$Qqjn?0?~p^*o(PiB@U2<fUZ^FKc}
z_4#p#7mOi3@LRd&nf_k*FtMtdUV(KF0JEeDJ`+SpILI2vH#z^wpEi0hny^`fO>OQ^
zc<>}dcKlu#Jx7NBr<<Uxpe0~6<n%9A$JO)Mtb8XXY*LEj+&29f`Gqt)W7x!Nn$6v@
zQNkUm`L}rvng$Eq1~jML_J#`_Z_(b9(=?YzDgE1QuvhUB>PG7X*N79DWtqM0HdWGh
z`|Cj(KTUlF`w&SK85c+(%Uk-3LAVSuy(PRNheVUiJ)DPYpB^VpOF<|LAAafVfN!Sf
zV|%7FwfFh8QV;VSHVR>v;EvOO#UIiyJb|?&K23T&YAPXMV8OoKh~0p?5ro<gb&>WX
z!IATB)2RA(9m>ZyF9OGE=LegY+{!UxOsm3Od$N#_`Is^A<qo_E${jm5*ruHkCbFj)
zLr$-yJelF`*)jBL&9j|?2N)%CH^ScJ9_sAf)IOC@?OdR^8x@G}V++PFz~~~1)xdT6
z9fB`9zK2U=&ZhvS(zG$$NXEx##td>BG!zf2ONb?Ix)v|=u*{Uo`XG!mdXm9qy!72`
z?vG40&gdy<oS+dq3=BT?xFrH2W<kr4m)T1OK27WCMAQ%~_6o@H%l)bdLFMkNhs{Di
zmB`bg4;SHl1|H4ilGPE)9z3GosWj%Ev%L;w;1L|FbG|RZN>9Rbpci(6Irl7T1!}tl
z)v*2a4WASHwegrC)2hNhq7u8&@I8xE+|UK3f;fdhhg=ET_}up^vhXDO3U2-p^n&K>
zJ=y}_1Y;k4BpRo@LvSX*=EOGr>YfM+_cUwE>7;tGuWlqIn>0x?^zDVwRQapAjiD}D
zt6%Vw1$$x9sLO!WxRfr13CVW`XN&2sU<%3EaeD?#e%w6zDqAb9Vzw(7q}UP}hrObQ
zeOCBQcLgLs*ZmOR8S!#WW+iR0x<iKT8+Q;kxWAG+Osu!2%KI%nip%GID*qeDxK}IV
z#S6uMXjl81__=jSZlOP+A&g#0;f$aTVokR5kwE?VB$6dQTX{;81>a@PU~*!aqO)ZX
zSIIcwqr;BUuV(xB=3YpTQkSx$q|T)}ZU_%+e5Ku^++u%(x<6NFhflSfh;wO-Ud1AQ
z-V-9qFpJN6wjCZKfqGkHJ)`WnnKXFxyF%|+>kYvU{F9C0Yeu2rh!gB5t`I=BP|oPt
zyGz%7vysKB7O(=BL;w+YE8z3|w6FLrA_wt_#d)R}iM}JCW%Tv1$nXh@p3bH!WnzD6
zVPA3;8lfR_6l1$>zOMcmNixN$jZ{Z|g*x-8jcw&D7Dm)MwaK+QYE*(>=OJRTh5UYH
z@=%z^)T<%CQMbfTXRWCPdE4Q14eb^Bqs_xRfd)vgulaz&-dNqpi~>lROGv4bkbE_;
zdD>K-s(w+Wb!`;{r>)gg6YO1{Y#;`O+b*|a-qvf@L5D9UQp=E*n;FFy;>QRLgE|I!
zG)C#$4PFJ<q7_W7Qon9mzG}tfbB`(VPEAhdmv@K8T7e$M)`lsTddM(|sKL>bLDq2z
zsQ^UglWN-hqO)dTO`acv<p$Ott8Thzu;IJVq(^iSFL3er7$4+a)Is(lZEC(bvW8JM
zV9jE38<R{hDb6YSF*YNhGgeR}?wT^1v@(UykWI<h6hjckuRiBoJ0n~LH!!H8?T*#F
z0D57iaX`~|!`UN!+h4?p3YyN}Z@tCs=j8h5`g)CgRrHuHTj-d7X1uWMR{MfV#cC5?
zyGz|YG$-;khmk;U1ky}E=vs+&yaq{*t5(IvpUHX#o8<b1x!=@n(vy=vbVrsQz6l!%
zU3uDRkP?~yL|e^slbj>%B(NV7iEMXQp=f-DeyIBsM!3JSKlqN%hh-$}_$iNNU#WF;
z-O(g!1S+F5^Mm(Ao?Tl<<Y1iyqw|!%2j^(xAYb=pl`^hkMPXf*13aRkQDQmjR}@h!
zGPe|1^ws1NmVP9GwDQa%<!A4I`~fP>b8}W@OLd?nB(<#j0By2UT;)91az^niD02Qk
z7}nkv51ju0K+=GvKNa);j(@nL$4u*TPNZRI{ZfkkAS%g3tkNH}8o?ZIuoO`a666T*
z>q#CeOri|D6H0B%U!($wgh6zhR!du3+*=r>X*r{=8Te1?M}o}AU#zQW0{?_?U;@|&
zJ*qVT4)Z5`Ba1;cXtLsCz{N8kqGq-=f7oS$1R;PaFq<LJ%V&7chyT7n1<HM`;ZEb8
zh`iEv^-s%(6n9)iH0YE11%k~G#;z{<Y}?gjYio@koZAI-`WMfD%zFRj?flZO8M$)m
zfJFVvBn*E3XtgE8QICn=9L!1A3*g7&ZKpJFh=tCm80Iw3OCCT$KxTryc5G`@OV@$S
zAC@oH9;z8Y@=i(hp(sEi-b$1K3Gyyhgik#H9w)WQK6}^?cq*fY$7uu!g6OyFz;Hle
zI!|j(?+}4>8N!@iIs$>z>4AncARov+Gwl6;)U%*i@{4h*)Eq^}2n%tMQ<S`dbrayS
zF&$Tc2g<IQajw0U^xFkQb^SkLx@}noP+WdKaz#?JLkang^(SiUe}i{YLvkfK!M~~K
zCCX|@t-!q@j$j5sIsu<<W$ve^J(4d1R;KPW18u!_E(2ioMpZr6CAlf)lA<Sv<Ra1k
z`WVamEsm513InGTP}(MgL(3FK2cRF}F4X{?eJ_1TdcA6B5Fq^OkAf1P?au>{{w=He
zQ^-w599XW`C&x#`L?b5yu#Y+1f7NJiC9MWgc1r$Eo!Eru3XFT6b~S4Tbik&{kZ`Jg
z)t_|ey30n+{d=GHb53JWMardsO5g4<`03RLklFMvp@uuNfQM9|7O<j4?0%TZn&wcD
z8R+Y~aC`3Ag!DDt9zG-aG}q3XNP>2OfcF<Vro@Lo^o;Roa;MKPGc$ap&W@o7oR9<x
zqz@{kZzD9ht<~MiFCGal`}JJliHw~7FyA<L1o<c7w)1a$me0l+<s$@m%wM$Oe*K&=
z_y;7KiJEa53u?B^0^EH*;5PRVv%}a8i&zac7_43Nzt4{{8k|8-%W?!AZhfA2pc{P-
zygT^E*-)2@-zBx&Y3YGLexrGB7FBR^x^y|0glt^A{ef(pRlbCp^g_)GnShdio<9}C
z>FvF``*~4HJX4i6{VyLGcP{NrdYFL2c~wq72o%f;go5|*ul!DC0`_Kz*v1XR@9!R`
zfW3hnM3vna?Y#f#pAG<-fp~0719#95X{V0%=A<>Q93-0-Qr<F~c>lKg=ELx1XW`^;
zDItIAWcOw6^vNp4ChtWlUnW3jObuq9P%;JhHc#^h2AxlKodx)S`&_^^90>P&@Jnba
z!?S>Y>5y$y^m&^>CkI3z|Eq*Atm2&138jCoMy$fD*SB)vrs4Kp<}LD{UK@!@()8nu
z^6}6RW;SUDc7<4WlrA9F^OtCU%l!QMxPoORAwM!?+^*31DCw*%N{vi4q5R*C#HBN#
zE?J6{gb_6WPE6&P+KJ_9E~F$LZV`^%@uDR%`&!aFT6ExtlXrpXwY>&%Fa)n+n|}S)
zeWyr7TWroYC;UTrWo{>5{ikC<e)8!CKP~dK0Dn&Pn;OuW#i4fF0-d=Uw}%0EFnBj_
z`R!)lUL(<O?tondAc{a{FJw4buTJ_}*xTFt>1dqvZ_(zOz!8iJPpL+1W)5XehYM~2
zw3k!!u!>-o)J%i^nepE63<*d<edGsN5unI`)h{GPVFCfn)~n&<_#kq$)gVr&D0+QI
zNei4Kf*EW1pie&*(t6O?stoX7in$nZuZ^@}$M7z8KfVB9Ga2d!o~l<hua-W)@0Frv
zVAM8$R!LtE$btqN_j_eo+AN0W24|DrB2-WXv3wsiFQE|^SkAlM7`0(P22u&jk(&Rw
zGr(pt_XCJ~f>Z0!u1U#TSlspESozh{c%gt!pvmQv^(h?$0`*Xbx;$4rlW@0=FVgIG
z9s<xLQ<Xg+`hNKcf&XuHI_YT5`@iGWBC?Ey!y*vFMo#tC^YXkM>S&{{D}e1WiSLs>
zIqY*=o2reSJhdsop8*4Qt>o4|N+7@%wUG_`GcO{2LYD3?&inVydy6-<eWexa_j_%m
zDn)QvaZT|??ri_<K;u($IOWvnC?w#VJ}@m?AHOlz8q^H7jJ9oDe`(r8LYA`n#htz-
zik;!B=uiLWJR!3O&NFeEXbB}AE0f<OqUF>-2?Rra35nfXsk1jvRM9veP0IDpPX70L
z2PypvHZP$GOmP!05d!$l66b(b`6Xw?G$5zPQsCb*>T`0xe|+cZfQk<AV1d6-flIky
z>^~jTy$H!=8(<GvZ3%v5git%>?SUe4gW>CyH~lT;Jc_td(&c|`sWi0a%1t@TEE+8a
zR;T&}oQpD?4&6zB;oe?MP{W2|0&@MqC;vK^8Dw3pk%1&kRt5BOpVY<tn}q`t_xsCH
z6FN_5#xy`IVgT2Y9Ru_h0|LJ`0LGOx)Ei($hTy0`W+M)cjwk{D-*m*&>>J;2w`V^=
z8kTdq3DH2F@UAo4m=COA)x6o~@9(f7fV51&w(PG=`hQQw$16jW#68y(lS~7B@bIT|
z{_YFHtMAS`9Q5`e^-M%5+o3DD{eRsIkb8r_j{Z@R1<tNtsF@v3OsMTrnN9s&QBBus
z&4U=QC2J8zdl6rE-cF4*JySa+Rc&IrE85lczNv6fG+>32j<nqGg}>kO9D{jX)@{+r
zBDF#53}5^Fg`+lUV5R~II@w8ei(QVsJKxW~;rc_x@mFR)vh{D|_OB3nCj6i)0Ey~e
zDZhgi@Qq0e*qyi`hrI%DCA;~lPAUE(*N|_;##F2yfoZO=Ci{<uYZ@%l4g-cW30pTG
zfy6_F?93M0!*3)6Waxy!p|jOvCgSzFnLUt3hn&M2jeL)2tX>_!nrL#2e9_T^3D;^v
zn3M1o8seHJDe4(x&s|?~V$Q7oDl+4G|ER*IKcib&VXjQfscEY-ocbknc59(aygPf9
zQS~<?J%(fD75YYv*XHcx^GEd44x}SrLb_Lm_W6~ot2e8QXkBjD-O$A3Iow3XPQE*T
z?Zdmp@b!wGJGlsMo{x?UUnSBx1wR~Av^QM3pL<m|7+!V@@K?%SEpAYDYg;7)wsSew
zF&CD&o8~qA>*BEVE6eB*fewXC-k#*?l{`L5Ehg0S@{WS;=j$tPx>i|Z=RZ36No5qQ
z)&)4O)#-I`PFP9)bZz`g6sJxaHFoO2*9o^}t9b-f)1gYsr}AJTQ;Q0=9e?^vH;CE3
z-90!G-BHbaaZEY6`0uoa?zsN>nq;N(0T#)Hf8_GEi(oJ9Q*ke$+LvxfIv|{SlSt^;
zK`l|S(ug7WjUJt?1`L@5ftA|BAq^76mpqzEsFif3QLCgFA{yhN>dIp>61u<-vk{%I
z*AIk*#7Ek|{GCi)+hn&IjzrU&4i^G$F4(S`tTd1%3&lP<Hu6gQ)HV1$t+9bwent;^
zwyaxMLA~$~)GvV5@#buNxo%(JPCo6b(Al^m->j80OZE2y%@58H!t{r}4RQPXt9LTj
zi{CnKXO<cHrf1v!7kclgvV|KeKpu<)Gn!1szaUsNWS|$BVcl?T;>6`bh8mT?>|5Xv
zRE;Qo#8=iL;s2EjK#y_>_!)4o=N;ek6$U+?_g>SkU5mF)66HFu?)!?*)r~2Y-`L*x
zQ7z|sWA1+^c>);)-EcU0I}foe#>2h!*(l;0ZRk(e?psCiMq?9r>>?A|#n$lkmQh#Z
z(nFQZY-oSQOGN*h@*Q{Wy`)WpMl!K=5Sf}jxZ|$Xuh1p%RA(e4a|i(7uT+x=WZKd>
zNF-~zUJI8WpJgp|QZp&{a0*WT^(ABq(yePp5-V;n@kt1s8a4JyU-rH|_Kg8!A8)!-
zxUCZ#(c`0Q+@LD7>@@<v*0Z^n_>J4&gy6Uk>6C`6g?(B-F81}JGzKmN6bVJ{#NRkz
ze=wSkyE7Z2L+M_fcKk^yOkXjuF!0|T?f6}l?kugROT<o}qcx|llN)_O;iHkfx??t|
z%oWtOFK6hRwIs0oB%pkMYD-&E;$Gli%J0%E!Qzj6>nI)hNouJ{;n;A2-_v`o5Yzk(
zxoc$Yo%zA?zk@Zb<sn%fk}3Au@&jVO`(g*tv{MMv!cN>T(~})jfjk6*0Q9$SmS11G
zpJa%KfahoFf`gywP1-ICnrZvq&u@9T9F-gxQ7Jaep)uOF#fSP*V0j%^eNHzPNj3Mq
z&Ik2qEA@ToRN`&v#s)z2jP~7z)<qi4`e(MuKgk{QWYw-6zA8Rk<TvkMeVey?v}v_M
zas7BZ>oT0A29Xy#D4`S@4y_JsyeDuoO}aT~dyXk9fAyek)3v+s+0GnQYM++s5Iit;
za=*}>HdmtVaK5pIr$q!B+w%=y>cIe+9a7n97kyv8!P>VzNYueUq$jL0JZLEDazX85
zpnfnJPQE|Oxv}|S?7nYY+%8{4#^NqAMY41Imi<MgNF%g5s73@Hht^KL(!R=OIz-i*
zei8LMCIZ0?mSw+OE!Qis)eu%H?<aZ7)MA!d?pR2mxz6~!j|BV9NOi>_1<w+m`!mpB
zIMfj*pnaO3C-Ca#lL%8{n~Up1=>{jt#OQg04R`AYdhfRV6XtVmkTg*iEc8yq+%x$G
z%eNG61NV3dv*Z<$4UE}f_~xkltA1VSsk^?3hG(`9aI_Z4PzZ0!KAZTS4!L@&ms<PC
zz^BAdjhjB8mw)&`eUq1`f{aO<V8Z{Pb;B{Gm&4J}zWmh{+`UqA4G|j;q41<<76e?f
zowYMkzd$GPr;REk!S<uNYEOZq%^hn2+vfW_!J33NCq2<hi8hIpscqShZeTVzWV-_E
zrnR0h7>V96cOJVML{beEH+0=DgRE7M8+i)(lB)kk4r=%czVgVF(^ED2Eh#wio|$Q&
zGHXNB=4s=zVC&G%5SfAbvBctM5`qN(#mJoD?)4KLrpE=gTpcHb?pS^gpA_HBaXAsg
zc5P=B_G^L6JE&I^>ErIStEBk+jWYQ7y>@GDqyYGfV`*$vK&juSubYNO{;8Nw$I?je
zIClE1&i&6^E%C2-5Un$B(dVx&p&-(#(tVd-eQB^S%{eq?ZrGmDrKUAMv(!}`;+Ar`
zA4XnumNb)i%J21}%m|^U9O*8Z!d@umyr<F33OByD24lAhEaJT^{nLWglO8$|Kc_-(
zO8DV)Gfv8sK}P_4h+>O<YCtkhj2DO*76~oE2_OcTt_8RgQAw%@^6BNF>+WOQ^Y6}9
zs#mwkWE!O*2EP-|3D`N;NtNSy=HHfx>?JTW6@m5Of9DTPQ3M?}$-O@ECuJ%-xOT^H
zie)?xB!5uesqsZ8W&T>1bJFk|jg^$lXF<llmB+gFVqmY28n1wxT(O4|vkbdeZQY)3
z%fO6(p**B{>Ert|1bGFH_6~$0S1g$ai&vGsXH7<Oga&xAPv%(-{C>An`#{$l*WuUb
z@A{>`{lAL)uBfKEw%drG4N*iXA_5{J5C|Y39aIp|AV^E72_PUM1f+!C6p$t$m{6oj
z2_+DulNgF9AVGRlsx$+H9+0a1JHFp{{xi-v7yrc><K!Y2S;^jOt-Z>#=6vRiDYf$R
zu<@U09Y@daaaX$poG%R&cEry`IbFCX$7`g3pluz&#C2D<Y%lh3VZXc0eo07`6a8NA
z?|s<E5*8nPFvF8p+u%!8o+O%an=|=cng5u}=Avr1`E2m01}nIe<EzzWWU9C>|L47B
z+ET?rMEUeO)6t2~-vuWOLk8TQnW}E898uMs>$}k%Om`K_;S-2i(TLL+_SrPG8C&qY
z*io7g$m=bv*QS#@iQetg7<@zb*iiAE0u?yaN_Frl^Cej<w2~M7!js1`@jng?&VERp
zvl*TBPJM#ywC_xPGhOXL?dqEPvmtpX{kv=RK(DOg9yb}lVXimgf1dsGXZ0{>kC?Sj
zgs&I<E<~blRo_{@;$=)5akIkotp!-}Zp(a((QkUXE@Of2^-5p^rNombrR?JPR7vlT
zNgAA#Im@q>?n0bPy3;Oe_xGU9$hlr>0lk+i302=&@orQGWMft|-8jIf<Wl$=y38Lz
zS|QQQTfV~t214SGKZci{(;_nwl+<YoRQvw5A66?h%%GT~;cKGLxI3+Hq`K%MK|S(#
z{p0<Y7vxZo>A;U0zgu(Ca>gGns{^FNz<W)d&;F$ETcb&bgq4RqlI1JLjUu6-_ssey
zWf)Kq3pDechVPNvS)0T<9WMKxuZcnZLsz}pzi#u;lSDFg-iQSRI`<~xDA|3<H~T4B
zalQ{_O?lk}z=QmhD^2dbsu3}A%u}N8`C;-RlA!rF4eZTkn2)lydzCJbY1osSwLShn
z&{4IWoDk&h4Xb0O>t2Y<z!8WMxwD8P$E_vRL8jN=CW~m^XSU*~1cz4kwGCYrs_kr;
zh7jK-iN|T=JI)P)y+_Qx^c#{V+KlP1is7N@C(N9<sz>n0|5a><G!BAmW{GY7y0fwY
z+5Vwmnmal1>eex?4YSoP&6-?NO^zJge1UW5G<)+aP2Hg}<M-zzI2#`v7;Z;rYWOXb
zz9l99z@dFwLpXmGt5bgP|L*0_2c%*ASt0>K`OlE{&oUj%fgY(`(Y)CWG~%jSmWAoa
zPwPS-)@IGpu;L0gvsuT5@A!?)hMd5<BvD|7Y~OeoG{70L=3I*Z0L$_3_3)bGlpx9~
zTrjEca!Xr-pU}8kgC(!zlO>)W-j>1qs%Zz%G#2)5(GBwXKuLGa=64@YTc-nXSGQxv
zs->u9jeXBuu@EKq{QWA&#&WZ1)Q9BcF-`Qc%Kmj1X>_QQ(s1pI@>8L{8ttF-I}Eo;
zn2&Xxug7b2LXTX!_WIEvTCxH5I+-XxYjuq!M3N6kvwJ>$;)m(>iJ4<kdeF319#JpD
zwY+(5vG73AQ1pWKfFnKW!rrguEAR&Qysy4fuVvBSUomH%2pA~e2uemx4{kBjXk;sg
z%$IR(5NW$=)8r$#x{arAy)yA|7`9r3H2;08D{YO+vq2SWYOM<BiYE8PF0|}8pV>g-
z)G{U4W=e&`3$i@+erZi6j<yK}kAcXPVjg*^VKk8gd{)8~C%5aCI)WM^R89!jJgr<-
zdDZW^Yd&GwWg5Ir=F*Se7#u|Ka6bydQ*I(>HZ8s4KFIdu$a*$vX|^W?wXjXPQqrdB
zpoei?V!XBX*o;28@`evJf@Nx#KVek3$KX&je{HEFn9E<8D3R;$jBHD4)b$VDy(7RP
z#eX&_oWB9as(TC6UnMw`Y}Y=RSA3Mc$gc;taQcpmc+kDtC@Y(-D*#yqH!T>gF|s*r
zy(G2Zw|WZG2r5=$cHBF^xv{)*5kt8mu|9!5a_-`B7<39O9{N7O)0H++U2z$(5-FfY
zn5+yCeX`nMh%J@g!(t9=BU4^DJo6wOqU3dAfZozA%3J#aSuq4<+Xg*9alo$S?wfDg
zDM|ORaP!e`N-D7AM63qT{8amAI0e1@(U*5aEMP&N54s;=pVO~>=ZHth(w`q2)L_Xa
z8NS{1Aj-xM{+nL1@@zCtN27-|k6Wzjh`4m*RvBM+3FV7y-@dxlbo-Q;-a46LdT7rp
zeg-7=s>{qPkmeUo_aB~9&{3v*8W6QaqbH3euGeU{%&3KoI(wGGc;%|)=Og+>+6ofz
zeae%&UGE}~^1QM_!f~5DUDV%s3pzbRFA~%4FM$@q-$j%w>m=-CSJP6a0ePyn+pJ_R
zX=f{BNYOjRQ_TyEiDQ?lx7@5S^h3!{|GF71*)Tuj);`4{fW_G*vOu-7$f4QNJ-*@P
zOrk_nuVB+c<lFa#^SfaQzSxg)3!fI(0)!@O%VkzS7Mn(_rzVvxKIN)6>!~!D%FWku
zTi|vOduQiFn-WMBkJ-Qlm>R6fbk3VrangRjBP){o24(t~!%VW!+@C#g;9E)(z9i3P
z4y|3ci{Zn;ZP?~YGCO=Xiq4eLR)>P}OPiVvyJ7FQtA4ZR=;*`$GB<0V6i6(G>WSH`
zlbi8N*q0j!Fc09#qVJ|4DJl}`_|nUm<1y!3O3UY8g;iLG_UWL=4z1tO;25DzRv;ap
zBm3+tK2N{hq1fwkY|6L2qT2a?2K8tq%cwq4rKI3k=M3BOC4#(*58R<<1<eu?q@W}{
z%{c7<)Od_Nr_~d`cB+J8QYTzXbc#9NVsULJDr+YSE{zor4>Ub)aB?{2;Jago#@J}t
zUH-InZG0+3QjIWqDU5>98a-#<znY@OAA_4^wnqdN6A<it<X3ZMhB<qAU}SycCZU|i
zJ0N(Wmb#h*|2DAyWfeKIZP<Rku;QW3icOr|`$vmM*u)}Xr%7M?;(kJAaPAArs`ISC
z5+h{0&DR(}4J6hsgCJsmBr>88Ofw!?E{b3ZX)2#}v)xp=ufP4YO&YEzV4V#_mo&JY
z(<DmHs!DDh7)Kao(7r7gYmWlt7Fu7A*S&1d(pz`%*AY}7{ffyOLr1Zg{*A4g9v^*z
zCqeX<5+B41wedQle6XyY=Tm4d{25s@lsf$#RTX==l5)<#>|4&|4yp49MM30)>tLUn
zF0<Vjku!mwDC~=(9dcPABn-7NP{WIUSM(c>)#1ojs*y&zS9TVpH5~x!vN*SxHs5+$
z8*~tNbl~S5Wu1e}wCs4RF@!S5%2>WsgwP{jyb|;EBwN_T#_nAy%b<0x;PPr`IP-pr
z%r_x~=^3x1o9Y+cZtHH>sr+j?VBx^b;87BXb$y1mWuZoQcHNKIKgsY{#-^)^Cff(Y
zG7l&kuPQfL=yJz?&GvY};g@b5Elv5>A(-hziKiG#e<n_49>vjgVghDujQRH_^Xe2D
zlWtDmx$U3z8FC4VmdCTO)!ytb^G@|OxRmU0|D#dhx0XTaf`x25EX%Lyb>rAXm98{G
z<^I!te=<sW(NH3v<Z2{=o<)~<H^dJzCNm?qSn-C=1BMue8T7abKU9>Pll<}z?PID1
zp8P(VdT#MfA=fLbkxc!vy6FxL$^EhL&w>l^It+n8|6`Y#VwJ<*NH7V=3@wa{3_P4s
z)7e`kMrCe0Tx-<USk`)jV-2dGRb@j;k5Zo4_tP)4M{p6=ndEP{k|yZq>J`+*k9Oa=
zeBrN}=8;&%FNQJ@_ukd#6Hi|#tJ=2@4`A~dUbNC$35aS4Z01f~A0-JSrSdo6`rT&$
zpwC*LNg`o}L&3D#AiQ^K@y@4P2O2+Fn+x^*w?UUdELoc1FhJu3YWkt?ur(aCJe+hj
zsqYSVSh@A^N8`#7VbH774EqehM+ot-qDMl#4ZSrSBMmvrFE;@Q5Dz*%#oS|gP1l*X
z`6@f$Z)9KLe{ItH`m}D-5zxy>OjRE;H1N4JKoW$gn?`ZA^t`x;f{R$lx-X=l#g0H)
z4QlV+0yVuZH&mb<2ZE!RQw;Yd5PLH;?<ACsMoI>hH=8loW`>yEgP6@6ZlVI9cD#(-
z>{pp#>ZV#NIfhKtRrT8s#RN>c>P+Ict=Y^eiYwuE`F%E<y;qMTnI`v}eGZc%|A-M}
z0r2CGPTVK|>IJ3M$@6920f_=HWA^z)&#u}SS8K;MxBj+bFB><2eAt$B4?<5=<f$X8
z=0di2j(`d^Vj7=B9a!yzTg{hT1cGOy9eW5I0Ds?~%|6HZS~^$ts~zt^;@8T$Sm+%?
zpJjo9czJ<j^}M-(Kyffqscc49=eGak6=DLk=uIN-eY8#+d&G8x%*3iL{9(p$gSUae
zfMN$;;j+VB8(ZL5i;dsNo9RlPH3@(lr%}u+er_;<Fh0F8NQ~O%J67FaEPvy1D01+s
zgA#$xNR~}+1}f9kpRQ$=9*yB~T`KhrGdw#}E_cu74f+A}Ev8HsHk%jLGS|sb>-gcI
za&|4?l4}n{=z+&EEN;4YJra@tmqY!Q?S0{x)0~3a0M?Kd5BSq%BuzH&T8&#Z4EYGq
zCRW{9$z&vD0fZ|ER2dpBr2&VC2KOE_q!_nDMeJ{!hdfde&exAlv=k|Qeg8<sV9!vU
zZ=|#cBwtkX0Vhe$H}+dI^&ue}46%5SuTW!PO{4t79>D=%|0Rakti(NE7YZkQ{Z^4L
zRgr?NdDe4tPlPP~gyhv5Gl1c2?!D3O%58tYD)H@${IXM`VTQ-+=k=J|E@$=YryHI`
zabq9!GW~_zLHJ`p?Vvg<mlk)!goJdU30zuH9XV~s>;p2`uMv$}JpxfqQ^!zbk=SwL
zSaumAW@JND2tvWr@}*jjxk3w_Ju@0mzl}24lezK}`h<1zyTm5Jw*cfr)cYU4B4n_9
z=1YR0@Z<aSPtV_SR&#%jZH{n1@jeL1YEwa>P!LU*PI{Vm8l!>t7Up|%8C;^}z5CVz
zVR~QoL^^=80#E{K+WQ2~?YTq@q#!VmtBg<n>i(W|lErfVLhnuQ|69(>pqLpiz%8@+
z`8!{~z@@<g1$M669NwxsK7K2!6KQ}jkyTU>_)17ZbIk>w7rz7s9@D?lL*?#q2aKPY
zydSRuC`j>#J0@K^jpf@!%=k%b21gOH6^athPS{^<%u;^=p9NHoo!xw`K%xS`P^$yL
z$Cq)#w6fK2<+dBW6aJ1*!}|~MWet8CrH6Z8ZW<j*HtbBdyIM)cWX$xqiJ_7$-P>m`
zd~#GiG38@x8qAKYXt5>1+dS*LXeobmj^_)o*9IxS>T?o2?aU`+-;@1UQ1^-zIQ@v(
z4kP_hN^aAi?YdP(LzMV>iS_>5xDLri6@*(0$D2du3lKB|Sid|BVBf03ooC3v;jv#=
zeq7dVy()(*$_5)Z4Zp0{v2b6Gw|@(mc6<B@uM9VU+%GxBve-FnTTMmNWBme_OBi)V
zAGv*03*$CCkod4vfy#dhu*q)@l?ao~)VzE5dr6DM_?oh<o9b{S3$}1}xm<<(c|}WX
zM*+JUf-1{C+$ldvF0E=&(7C4;PMnETz8;<Z`YJc%Im-U|R(`DXlRS3jf24xWY9e7C
zSHdaKr1C@|djm>3M$(KsS5rbb{?onnN@)i>04BPwlZDXO&x3N#$1|9~`WEz`U8+2?
zUz1x_Bpj$IXa<zr%OYyg%j6JaS#`k8`-bTvl?BT7pkEW2XW71on<REPUSJjsHzcHM
zIWFWX^c&l}!u<Sm|9HFT_W<PjqAAzh!>OCYJ#=<eZvziVs>iq3)xcH%`oOm-z&+~X
z8RLpkQEo$w-5@<j!tljrW8OLFyS_11Nohg*9zwF0^57##bS{3bGv>2TIak}NZ|EMs
zfuB47R*p1Vy9il7j$MI2w9}sNKTp(IZb{>t%-b~Kxvw67K<+@g!GJ|7z|58TkXh}e
zn$^P7j_xzYa|!>FM&0!<;YM(k51vdVFB-5P!}1w?pS7)xL8@YcW)J=NT*bmNKM4Nu
zD(227bs0v70G!rT`e%;YN8qs~J~8^oI~l@BkuYE;;Uqd#8A{W~fRr!f%rr^9Uh4PW
zLrE<gW!ftT9H34%e0v%w2B>#Hh-nkBQ9<`JVJ>9>bfql+Tfy_qBK91Xzuf|m&>$Wt
zKUCoFjBR=x3jFTl*WCXU1HA^~=@S1>u>v69zIX(IQUAM<g{(7#Q0GTP!U2Q<c+I?s
zT{xl@hEZQHI^6qYBpoY#GO*HVm{8?G)uRBlw$=mo?YEf$8|~rjf<PRcU{LYz`@FgU
z#E@*~vH!U)Ll=AR9}%p~@74+GKb2+p=!OW<6O+kyQkp^IfQ%L-%DAsJz|S*@r_#G`
zWnE<?I)vP5y3CjYjD_OA{hgk1A2XGXILo^T`53tW3w7A=XOAYFr3Q%dCvNOAz6><}
z|1MtqKd<!Pr1w9WB>!{a<o`<_V9dWGw;_N8(@g^m6lCJ~Z!xk_lCEwN5Fh%wGL-#e
zR%=FGbQo*a{kF4wDk*?|(#m%^>Vi!DwBOu|(-QYg5NH?)P!Q@x)vSzxzn9x;+kcmM
z!{bsX5V-S+UvC@WKeH(g8HHk>-i--sIJ)BPu&Cb@v9k04euZb&qEps#|Lc)r_!ve<
zrl(gL5C24^ERy$(2A^+MYuu(}&XM;P@%<Uz6GRA1MP3$e@RIe`!J3z_QK9oooOl_J
zFL$e4UGe_4GOA{~A=KgCdK<|!qDCV8=1-I8E0iCPfl&s;BDd|1i~&g;*N&hIbJQ<(
z-+=-&D*dzJBV#$RU`hrVh@tD4H~f(7F?tRYJGO`t4GaFh+dP}68P5pNyObw&q^d1i
zW7lp1bn5zSiPo<<aDgo~-J>hdHaXXWxq!Y`N*fo5b_DBrFS5s%d7JM+hE)QUODr{K
z6vGp$n?#o8lC6-U4x+rd9?@3R&C;Fz0o9(}FWvWpBHG8@bw}6synN>^Hd>xB8zmap
zJJCYp@G9vz%GIAnRLmi%3LQ%;w2Q4!*()@<r9;##9=R(DsXaPu^VK`kMIsbPbQP+`
zUTj<mCof}1tev}~mAfs5-3<_$+_ng!%7$Ops3$odakvLh-SZZw)+~z}qJxtuB;(rr
z9b5nSZKt9$vuHM2dy=-*s>2;5AFNxY#Z~c9y20@bNl~9fq1Ga)8Wu3JV?||mBxU<R
zak`>wwM``p*6nJl0?cvHdw3oFM_iYEG9rnwp`?alKG@+L+h7?NJ3EQLMx2D(2Hq*{
zFI5UpxsVoc?T3ccdv4=yZM<*ZuaM`>`AvLcmp;&QJub~9E93j2{b%1%9ot*LT^ITk
ziP1#CvcqVrw&K|msP+<|VRSF;DsuKjG3V~P>ly`+x_D*US7&rx>U@2?WrbWbad9-#
z#j<J9_Coin{Z#s#EJv;Kl;g<MV0m#BjJjw^igPzn33nqFOR&2nxyztYIhdqonqRdU
zZ+wzK0oQ15uoz$a6ZYh;qRZ3P&qwPwcxQ^9h9(Z9G1O8gqKIT-TXZfBjKdCBCOl9o
z*jJ#GRwS}05$ezx{TLP0sFB{npRNv4u?u|%>&k1gw^!!TV5Nh)QWle9Rm;k|O*EBE
zgt=iUl&RkV&y?U`4!yQ(54pTe^7H*R>p4|<0{DyhJiDZ|k3HO7_jrI(Km3hSTt99q
zU~c?43CL|I;Rj5KWK`)6yCS7(iqC#DMHTEJg+11Oe7pb%3Nq6BwTD}r;(3+5rU8Ae
zT6yr{p9_Dv&y=!Q{+0{9<!LS?$Nk8lHrcNL@m|Y|bQCESBh)=|A9LK@Qz<!YQy|p;
z8o2;Spo_4T7(EQNqC-Mi^lOy*?r!6Be=S8cS*(w};hF=CjId`1zhP*Qm60t5*qXk9
zt+N;GMcQxb5a&?&#k!b2FxE9l1vfM4tD?Sqn>u)1yb+*YiDa0g@f>Q1WH|Z?%~AA5
z^pJn`lOaO+kDT;RdjzSGUO~W*UJOp&&n}WEwsQiD<x<lr8r_K(`W><fbo%P&%}X8m
zq`o#Z^_luI<!}bQo<3`&{A#`~vqOk`{Bih7cb^A~-W($#?A!h&hA_PZ!WXz*h&~k?
z=Ja_)5J(~#j`Z$ly6M$VF-RA(TQ9fQA()`3WB26pC24VLy*Y-7l@h!bIA@d@XN}5T
z{9TU9FCzHp4sH8$5O&{@VtzAE<2aI<Hy(1sl?bbjY9N$BHS7hP($zBGfIH#|%eEhL
z%qT5$$YQ)%<hD)Ft$7)zaoG5zs2EKGEyO)CaROEJrZNnI18>h?8hfcyhUi~;`!dtE
z1~)BDQu>?lh>CJ?%J&U%9C?>uk%;)tu0;tS!!Eg)RDXFnJ#f=2*ia#md@-z<V&B1>
zp)?1OOjQywQl{5G#I)KH)6omxgp4u>eU`PCt?(+Mv4jlixzQB|39EMQ8Qp$Gl&-Y7
zn+P^-oFB$V@kan2TpqRUh8KgqMQiUN(nRv}XV&-Tar3q)`}aBG-?!H5e@MSg2HLYi
zCVnU^!c%cRFqfoHTdF$#P>yYHJ;ZqH&hJTybeB*VD*J4K<M&5tt1tSzE_<Eu8cFQ0
zm_yGvI65B5NnGOdd4GCQTv{v+Cg~;n_-`{IB4*qJQThcMxj!;P3(o41hfX8rFS*jQ
z*&O3Dsi#S^^Opiu9KP7tqYX{bukFg|m#^{mD~bxPh?w#5(pB!xco>}W6fV8yfKYN&
zn$DD*eJAA$j8ZDp*C4*mfll%Rq|fDy{|H#LS=j3fp0moh9lp)P9XA}KUzbaG29pN!
z@71Z<UNZO?4b>7w4HLQ6BIzqo8_YIgj<e|L1(@S^zZqJoc$?o7Xn)<x_-<Dt{eAhF
zn)Xrgxf~^TWeL$^zN*Q6T{Jb_4znrCTEc40a?#zOV5<ATAd0V%rW8!TjNC>bKJO#>
zEe?tofuYV7XYgHw3@Jd~)!r2`Gg5tqb5iNCR!JU?p?uy;3P4_Lla}v1wb`s4CyA>+
z*>TPIQ|l(ksa0BTZP`C`OaOIW&1=ZlcF#W7zw@+clXD@xuq#K+k5CvYzTIUuCS((+
z?|`I4u4KHEU~m4d`XDdN?~aH9w;T?LYC@_%jUMqi6?EqDI~EtYiJ;qCUyBoZII6Q6
z#xmZi78t;RD8>GpY>?V40dBs+FURBizC@$mBbb#nlM4?xJTx^$sr}l0*$d<ONP%>C
zV3y+fxxCgMS6m{-ry-NCdk&)>(};Ked~QF0@le6B7p)u<Uf|BS)K7UjuE*4IqsQzN
zyIuLzT;lLf<U);xcLeIYs`e8l@-VS@rrS3&%j7(Dq_*Xo`Wf8DMNw|UXS0v7jpRkS
z7lSv%ME=xNP+{GDo<dTtuki_ei7#Nasinz#+qlNe+pE}i@`2agVbh;|r-_}%Ybi#K
z7c3BhwX&V6YrY*>RC$+qC*KV1vN$fcfG%4jHAXZxbOeY5kJwuIiSZa5smP(in)7;m
zSB3W{#mIleERE02P$JyyKlN?&k<{XTLD&0lWL0i`#q%qjY2h(}%bG_4eg}iaap+xX
zSPaPLP_8Wcr{~P#%d<|q<g4#CRtAU3uZV6cU_nWq2@LBzzlHM$3D~X2izUPO3TMem
zzGZGH*2LlNmrAmcvsIgxn@!)z1EsIOpXjCAqz+&cRL$Ub_|d}O@zbWBfw+Yq4*jY_
z4m{yofH$9Y?0f}_M}t|p$?lu;?8ymom37<S_8!Mra2U8qK7@pqP;}8|_Xvgat({>y
zyY2E|KB!tY-(cn9NlkZjVJMk7KbMt!YrGhKKPmZcmY5CrmWKYn$l)D5DVh@X4x?vP
zHW69ZCv5$?N9iZB&j9<njuxx)s(l_;q<j`6cE~@}ly~^1+iC?a*1CSZT%I=Q=6ZLO
zGaNtiRZdrVL{HLu4TF>KPg)W(F`nz>Bz;lg8EcKLH~Mx`ne?SqF<f*>(BAihA(r*x
z*{20dj@9NvX57h3X#?ett@DCk>f;8)z8?MSEb$^Y;co1K?~G-C6<f(TPbtfS<-uf9
zai=r3fqLdA!MNt0A6xR1gjc7_=Y7-+m1xIn^-PBS?p$)chw8{|n0X<q=CEy$KiBf)
zEs~(S8`8qYWxjDGic3Md7t$-Zz1Ia1B#s(iUfBMj+i=nVW-hd$pi*~%%QpJ7TD94H
z5jfzfX;|@M`rLNC4cDU2t#2FIt93t&2FoL-6TX6}Pc)-8WFbIH39;)9MkGSn_3hz+
z8%2pai1uj5?=ZQf`lnOH;9}076#497w_1k}@BIy={QZp~?y%xX!&H%y=DIV=hZD{!
zt~_p2Qtc*lr`WjIJb>P7<wD%4uQPjF<5>HS`~c4>Y2?$$1IZeNB7f>t>IUUlq8;z<
zVjk9t4o79F?mlw9!3u5bj!2Ag?ytP+(!;-6evoSHcUH4_#rq=LNJ<b8Ei@^)Emsd`
zegop(d73kjFpG2eBhH^cD13sI57Rvn#n}1J(|CaZ;cv9y2KW-RQ;VvDGn<E__g6l+
zZdgnzlJwjzD|<P+Yq{Y|70A=7Y}5VT2y?b}t{IW3_fV^aR@(N;xc@W|C*UC;FRD>|
z9*z9`-Prk$J&B$h(Xs`AAgT~rB)vnyd|O4*_C|%LDj1QRHEY;_;NL5?6~-+rO*S50
z+vSa*+#miqYrjY`ve37TvpBR>j=bk(MWseA4juC9x$Scc62;T{qI~;;11&S7I~qBX
zXVBx+E%uJi;bFk%64SYEp*CpyK=LPSfp{P&abePm)VfvV`RF2oc36IZxK23TVuDSg
znNhL9?bJPw02kJBwb7r#$#`(=y^?+0GvC0Z5zDB)%BvIJ`Tk3HJ3YQEXRicB*sS+x
zutJssV;RT0A!dsh`&0<z<-jqsugh;s6M`ivd2F5*^ZlDj{H`%v&nTsBeC@;c$fZm*
zO0tkmW3C1lwqlY;>%yXWi-Qh^%1q1U2!Ltz=9nlAy`1lS{X)lkoate&klIg;L;Tna
zJm;G}R||E^Rb7vwG)@Ag$Red<x7W3ut-~s-&vMnc{0r73o`9cJ!qgOS&X2ljb!0&B
zis+cgYE3tvL!zmb#Ax5Ny~I)Mn`V*Kq=#F1JC6cuIv?u6F4151->5!4S6cjAR#j}|
zL4Kj%*;LX#Z!0k67*P`PqR8qO?}e|Q^@z&P&{eu(66Wj%1@H_hQA2a<oM`Y|9%_dq
z{RGUP&&y@D!NdXPCz_A8n6G2v&;s2K!^bj7(|+aZ`4yYZH#)TJ9gazzRWfaVTAXW|
zwR>n5weE9+HyFAMc_?Oew`64mJdH+iNqU%{wRkFs+AwM>Stfwf7rz-@o4#}ew_K0Z
z9`q1NF7s^s#4vmdF~~NcnOPM|iIYPTlnnMzVpeZ6JGM(@VHpOlPUlNyqx;()-^a5@
z7^FN&U4p`PNScL<U31^0VGiq+ErRB%(6$jwFyCs)X%(13b&B!Zp?XR)JpKCHe|Imm
zXi>;~hrM8SAt#`)Yh=jvsTtReE~Q5qb1{*ktTkVKd-B1hb@8QTmHEY0K4u*G(yNJC
zW~thz;{8u(lhnkZ(#EP0k4B27gSMN!-|sSj$R_itV;5%Cg`5(VRFL1ad2J-`+AY1f
zZc^UozTa!kjyTUzJ6<?~<7l5*yUORqosQ;jDqcg!=nrOyVI%q?V=#4<d|b0VH!1!L
zrg6vZrkllKUn`o7F2G{$6D`?;Eoj#L%`hQgje+*p0IbxdDumSsbFmKtWd!<FX|%nV
z8D_FhLFc|`k;Pr{p@NlUaEsX-8<+h$8Xc27n2=0d`B<}?dJNmR@!kHR_T(p*WUtg%
zPhYt4xGk((z{nfu_iyi_!YXIIfVnMuA>_=*47>WfThhHT_7gCf`sTMK?sb_g5&!X?
z{_<~>rmI?n3k@G7JU*Qk$}T8+(oe5*2H54u+c?WJ_~YW7;TZ9HBj9-0n!(f~2nY{!
zAFA!nsz-0if|)^A>0garGZmhV-2Q1XsMQ5Ryf*xyDPnEuv-0D*XsF{`Neh0HgkRvF
zwoFY+KctyK^-aZgYlpSok|MGHGGM>$|En=?Nq9763d+Z>8GJrB<Nk!=m1qv-=tv?W
zYd=o<O~PDoDzE&T@wRUoJE!ECip!oYrFIw&$;>{c?2PRyyL%j)h`D`IQh(pJReB`1
zZ>o1E1)PU)+4o<JT&$KJD=qJ>GZByxww>BEomUBVkvPnZajT`IuR>;CPQJd9lDg!O
ze2<QNdQ1Z@8_>M;BLF&^s-sDLqa6RsnCX!J`8nj34rzM4jKBC(;)sZC^_>9S`pDAU
zcWpmXXmfkj!L}*_&aTc$%3alE#hGH0M)j{LqjT=Ndwlfn#-z7De+S6=WD4K1Mdl5l
z7e&_RylNYe#<P2RH;;l8B7kbYK8H=M{ra*~2Qmzea5(kgW^Phy%{mQlt>C)rqml|-
z8m=AQJ>^m+;@x48N>{ZX1Az`yo}bf$SK7lG$kncnPVKtQhFhk*5cH^6o+=n0SYy2Z
zLHs5YNFo0ANnw08_O^*obNrVXygW+WQlk1m*47NFl=-VhUJlP!2++2LBHpN)wO(ll
z5UA^&7n5ERcfC?dJ|&XhKnIKu@L8tOq>{nY_1?}H+RtYpN==W6%ZST5FWPR)Ck0b~
zUzDS(pl|D{4t)gJld^&oKDB%5=IWy((tY(e_VgdHf>x>WF$)mDHw^RydIeCAJfZNZ
z?_5ztdv;6!{%oqLfEnR`O8zPTpS&-2Z~6VEB?G7Go_KBmd<wz+>;LC_T$26n390<_
V_oMWV`;0L4zNX$?g1YsK{{qVPsw4ma


From 0fc5c1575c45368487396bb4cef1ffe83d54c36e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:09:47 -0800
Subject: [PATCH 711/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 89da6e7ecf..99428b624b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -63,7 +63,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
     | Alert status | What to do |
     |:---|:---|
     | The alert is accurate | Assign the alert, and then [investigate it](investigate-alerts.md) further. |
-    | The alert is a false positive | 1. Proceed to [classify the alert](#classify-an-alert) as a false positive, and then [suppress the alert](#suppress-an-alert). <p> 2. [Create an indicator](#indicators-for-microsoft-defender-for-endpoint) for Microsoft Defender for Endpoint. <p> 3. [Submit a file to Microsoft for analysis](#part-4-submit-a-file-for-analysis). |
+    | The alert is a false positive | 1. [Classify the alert](#classify-an-alert) as a false positive. <br/>2. [Suppress the alert](#suppress-an-alert). <br/> 3. [Create an indicator](#indicators-for-microsoft-defender-for-endpoint) for Microsoft Defender for Endpoint. <br/> 4. [Submit a file to Microsoft for analysis](#part-4-submit-a-file-for-analysis). |
     | The alert is accurate, but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
 
 ### Classify an alert

From 71ce32654daec644b5ddbd198d5fa7f167bacedf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:11:16 -0800
Subject: [PATCH 712/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 99428b624b..65a56a8421 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -85,7 +85,7 @@ If you have alerts that are either false positives or that are true positives bu
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, select **Alerts queue**.
 3.	Select an alert that you want to suppress to open its **Details** pane.
-4.	In the **Details** pane, choose the ellipsis (**...**), and then choose **Create a suppression rule**.
+4.	In the **Details** pane, choose the ellipsis (**...**), and then **Create a suppression rule**.
 5.	Specify all the settings for your suppression rule, and then choose **Save**.
 
 > [!TIP]

From 5db57d8657c4b511930d491c3010cd25ef049736 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:11:44 -0800
Subject: [PATCH 713/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 65a56a8421..3cdec79594 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -268,7 +268,7 @@ Microsoft Defender for Endpoint offers a wide variety of options, including the
 
 ### Cloud-delivered protection
 
-Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, this is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
+Check your cloud-delivered protection level for Microsoft Defender Antivirus. By default, cloud-delivered protection is set to **Not configured**, which corresponds to a normal level of protection for most organizations. If your cloud-delivered protection is set to **High**, **High +**, or **Zero tolerance**, you might experience a higher number of false positives.
 
 > [!TIP]
 > To learn more about configuring your cloud-delivered protection, see [Specify the cloud-delivered protection level](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/specify-cloud-protection-level-microsoft-defender-antivirus).

From 98147f674b436cc6716e980e2869d013fe4e21bf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:12:09 -0800
Subject: [PATCH 714/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 3cdec79594..f749263f1b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -280,7 +280,7 @@ We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivere
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 2. Choose **Endpoint security** > **Antivirus** and then select an existing policy. (If you don’t have an existing policy, or you want to create a new policy, skip to [the next procedure](#use-microsoft-endpoint-manager-to-set-cloud-delivered-protection-settings-for-a-new-policy)).
 3. Under **Manage**, select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
-4. Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting this to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
+4. Expand **Cloud protection**, and review your current setting in the **Cloud-delivered protection level** row. We recommend setting cloud-delivered protection to **Not configured**, which provides strong protection while reducing the chances of getting false positives.
 5. Choose **Review + save**, and then **Save**.
 
 #### Use Microsoft Endpoint Manager to set cloud-delivered protection settings (for a new policy)

From 4dce3eb74897b63e1b9d8093282a41702e395c25 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:12:47 -0800
Subject: [PATCH 715/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index f749263f1b..731967a11e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -300,7 +300,7 @@ We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivere
 
 Potentially unwanted applications (PUA) are a category of software that can cause devices to run slowly, display unexpected ads, or install other software that might be unexpected or unwanted. Examples of PUA include advertising software, bundling software, and evasion software that behaves differently with security products. Although PUA is not considered malware, some kinds of software are PUA based on their behavior and reputation.
  
-Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If this is happening, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
+Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If necessary, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
 
 We recommend using Microsoft Endpoint Manager to edit or set PUA protection settings. 
 

From 37c3f8535612fc56170dfa2c61bdf3befbfbb465 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:17:47 -0800
Subject: [PATCH 716/825] Update defender-endpoint-false-positives-negatives.md

---
 ...fender-endpoint-false-positives-negatives.md | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 731967a11e..251443c99e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,16 +31,17 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution. 
+In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution, includling [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection).
 
-If you’re using [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection), and you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives. These steps include:
+Fortunately, steps can be taken to address and reduce these kinds of issues. If you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives:
 
-1.	[Reviewing and classifying alerts](#part-1-review-and-classify-alerts) 
-2.	[Reviewing remediation actions that were taken](#part-2-review-remediation-actions)
-3.	[Reviewing and defining exclusions](#part-3-review-or-define-exclusions)
-4.	[Submitting an entity for analysis](#part-4-submit-a-file-for-analysis)
-5.	[Reviewing and adjusting your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
-6. [Getting help if you still have issues with false positives/negatives](#still-need-help)
+1.	[Review and classify alerts](#part-1-review-and-classify-alerts) 
+2.	[Review remediation actions that were taken](#part-2-review-remediation-actions)
+3.	[Review and define exclusions](#part-3-review-or-define-exclusions)
+4.	[Submit an entity for analysis](#part-4-submit-a-file-for-analysis)
+5.	[Review and adjust your threat protection settings](#part-5-review-and-adjust-your-threat-protection-settings)
+
+And, you can [get help if you still have issues with false positives/negatives](#still-need-help) after performing the tasks described in this article.
 
 > [!NOTE]
 > This article is intended as guidance for security operators and security administrators who are using [Microsoft Defender for Endpoint](microsoft-defender-advanced-threat-protection.md).

From 2124e871d4e374b3206bd09300c846ed9e118495 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 15:18:18 -0800
Subject: [PATCH 717/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 251443c99e..9fef03cef6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -31,7 +31,7 @@ ms.custom: FPFN
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146806)
 
-In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution, includling [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection).
+In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution, including [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection).
 
 Fortunately, steps can be taken to address and reduce these kinds of issues. If you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives:
 

From 8c5574fd668f3c09831eb4f953c3f0fa40ffe846 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Tue, 26 Jan 2021 15:23:49 -0800
Subject: [PATCH 718/825] Re-labeled code blocks

As written, the commands in the code blocks that I re-labeled work from the Windows command line, but not from the PowerShell command line.
---
 .../microsoft-defender-atp/troubleshoot-np.md                 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
index 79cdbc3b60..05563e45c4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
@@ -86,13 +86,13 @@ When you report a problem with network protection, you are asked to collect and
 
 1. Open an elevated command prompt and change to the Windows Defender directory:
 
-   ```PowerShell
+   ```console
    cd c:\program files\windows defender
    ```
 
 2. Run this command to generate the diagnostic logs:
 
-   ```PowerShell
+   ```console
    mpcmdrun -getfiles
    ```
 

From 4948f6d7dc91d0958c655165d21a17b11b80f142 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 16:16:46 -0800
Subject: [PATCH 719/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md    | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 9fef03cef6..784067032a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -33,7 +33,7 @@ ms.custom: FPFN
 
 In endpoint protection solutions, a false positive is an entity, such as a file or a process, that was detected and identified as malicious, even though the entity isn't actually a threat. A false negative is an entity that was not detected as a threat, even though it actually is malicious. False positives/negatives can occur with any threat protection solution, including [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection).
 
-Fortunately, steps can be taken to address and reduce these kinds of issues. If you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address false positives or false negatives:
+Fortunately, steps can be taken to address and reduce these kinds of issues. If you're seeing false positives/negatives in your [Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use), your security operations can take steps to address them by using the following process:
 
 1.	[Review and classify alerts](#part-1-review-and-classify-alerts) 
 2.	[Review remediation actions that were taken](#part-2-review-remediation-actions)
@@ -59,7 +59,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Depending on the alert status, take the steps described in the following table:   <br/>   
+4.	Depending on the alert status, take the steps described in the following table: 
 
     | Alert status | What to do |
     |:---|:---|
@@ -69,7 +69,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 
 ### Classify an alert
 
-Your security team can classify an alert as a false positive or a true positive in the Microsoft Defender Security Center, in the **Alerts queue**.
+You can classify an alert as a false positive or a true positive in the Microsoft Defender Security Center, in the **Alerts queue**. Classifying alerts helps train Microsoft Defender for Endpoint so that, over time, you'll see more true alerts and fewer false alerts.
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	Select **Alerts queue**, and then select an alert that is a false positive.
@@ -81,7 +81,7 @@ Your security team can classify an alert as a false positive or a true positive
 
 ### Suppress an alert
 
-If you have alerts that are either false positives or that are true positives but are for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center. Suppressing alerts helps reduce noise in your security operations dashboard. 
+If you have alerts that are either false positives or that are true positives but for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center. Suppressing alerts helps reduce noise in your security operations dashboard. 
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, select **Alerts queue**.
@@ -104,8 +104,7 @@ If you have alerts that are either false positives or that are true positives bu
 
 Other actions, such as starting an antivirus scan or collecting an investigation package, can occur through [Live Response](live-response.md). Those actions cannot be undone.
 
-> [!TIP]
-> See [Review remediation actions following an automated investigation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation).
+After you have reviewed your alerts, your next step is to [review remediation actions](manage-auto-investigation.md). If any actions were taken as a result of false positives, you can undo most kinds of remediation actions. After that, proceed to [review or define exclusions](#part-3-review-or-define-exclusions).
 
 ### Review completed actions
 

From f0b5db42db04991d4d0a921afa3a23012134e131 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 16:36:30 -0800
Subject: [PATCH 720/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 31 +++++++++++--------
 1 file changed, 18 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 784067032a..18ee9960a2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -104,28 +104,26 @@ If you have alerts that are either false positives or that are true positives bu
 
 Other actions, such as starting an antivirus scan or collecting an investigation package, can occur through [Live Response](live-response.md). Those actions cannot be undone.
 
-After you have reviewed your alerts, your next step is to [review remediation actions](manage-auto-investigation.md). If any actions were taken as a result of false positives, you can undo most kinds of remediation actions. After that, proceed to [review or define exclusions](#part-3-review-or-define-exclusions).
+After you have reviewed your alerts, your next step is to [review remediation actions](manage-auto-investigation.md). If any actions were taken as a result of false positives, you can undo most kinds of remediation actions. Specifically, you can:
+- [undo one action at a time](#undo-an-action);
+- [undo multiple actions at one time](#undo-multiple-actions-at-one-time); and 
+- [remove a file from quarantine across multiple devices](#remove-a-file-from-quarantine-across-multiple-devices). 
+
+When you're done reviewing and undoing actions that were taken as a result of false positives, proceed to [review or define exclusions](#part-3-review-or-define-exclusions).
 
 ### Review completed actions
 
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in. 
-2. Select the **History** tab. 
+2. Select the **History** tab to view a list of actions that were taken. <br/>![Action center](images/autoir-action-center-1.png) 
 3. Select an item to view more details about the remediation action that was taken.
 
-If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. You can undo the following remediation actions:
-- Isolate device
-- Restrict code execution
-- Quarantine a file
-- Remove a registry key
-- Stop a service
-- Disable a driver
-- Remove a scheduled task
-
 ### Undo an action
 
+If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. You can undo most remediation actions. 
+
 1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select an action that you want to undo.
-3.	In the flyout pane, select **Undo**. (If the action cannot be undone with this method, you will not see an **Undo** button.)
+3.	In the flyout pane, select **Undo**. If the action cannot be undone with this method, you will not see an **Undo** button. (To learn more, see [Undo completed actions](manage-auto-investigation.md#undo-completed-actions).)
 
 ### Undo multiple actions at one time
 
@@ -133,6 +131,13 @@ If you find that a remediation action was taken automatically on an entity that
 2.	On the **History** tab, select the actions that you want to undo.
 3.	In the pane on the right side of the screen, select **Undo**.
 
+### Remove a file from quarantine across multiple devices 
+
+1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2. On the **History** tab, select a file that has the Action type **Quarantine file**.
+3. In the pane on the right side of the screen, select **Apply to X more instances of this file**, and then select **Undo**. <br/>![Quarantine file](images/autoir-quarantine-file-1.png)
+
+
 ## Part 3: Review or define exclusions
 
 An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
@@ -142,7 +147,7 @@ To define exclusions across Microsoft Defender for Endpoint, perform the followi
 - [Create “allow” indicators for Microsoft Defender for Endpoint](#indicators-for-microsoft-defender-for-endpoint)
 
 > [!NOTE]
-> Microsoft Defender Antivirus exclusions don't apply to other Microsoft Defender for Endpoint capabilities, including [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), [attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction), and [controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders). Files that you exclude using the methods described in this article can still trigger alerts and other detections. To exclude files broadly, use [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators), such as "allow" indicators for Microsoft Defender for Endpoint.
+> Microsoft Defender Antivirus exclusions apply only to antivirus protection, not across other Microsoft Defender for Endpoint capabilities. To exclude files broadly, use exclusions for Microsoft Defender Antivirus and [custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) for Microsoft Defender for Endpoint.
 
 The procedures in this section describe how to define exclusions and indicators.
 

From 88c2ccb91f9599910eb8929a0bbd30971f2eda0f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 16:38:56 -0800
Subject: [PATCH 721/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 18ee9960a2..f61361d92e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -182,7 +182,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 [Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, you can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to:
+To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to the following capabilities:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)

From 5a95a0a2fcf9286ed70efb477fd1cfa21e7cae1d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 26 Jan 2021 19:12:31 -0800
Subject: [PATCH 722/825] Update defender-endpoint-false-positives-negatives.md

---
 .../defender-endpoint-false-positives-negatives.md   | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index caeb8f45d2..780fb5a960 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -117,8 +117,10 @@ When you're done reviewing and undoing actions that were taken as a result of fa
 
 ### Review completed actions
 
+![Action center](images/autoir-action-center-1.png)
+
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in. 
-2. Select the **History** tab to view a list of actions that were taken. <br/>![Action center](images/autoir-action-center-1.png) 
+2. Select the **History** tab to view a list of actions that were taken.  
 3. Select an item to view more details about the remediation action that was taken.
 
 ### Undo an action
@@ -137,10 +139,11 @@ If you find that a remediation action was taken automatically on an entity that
 
 ### Remove a file from quarantine across multiple devices 
 
+![Quarantine file](images/autoir-quarantine-file-1.png)
+
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select a file that has the Action type **Quarantine file**.
-3. In the pane on the right side of the screen, select **Apply to X more instances of this file**, and then select **Undo**. <br/>![Quarantine file](images/autoir-quarantine-file-1.png)
-
+3. In the pane on the right side of the screen, select **Apply to X more instances of this file**, and then select **Undo**. 
 
 ## Part 3: Review or define exclusions
 
@@ -352,7 +355,6 @@ Depending on the [level of automation](https://docs.microsoft.com/windows/securi
 > [!TIP]
 > We recommend using *Full automation* for automated investigation and remediation. Don't turn these capabilities off because of a false positive. Instead, use ["allow" indicators to define exceptions](#indicators-for-microsoft-defender-for-endpoint), and keep automated investigation and remediation set to take appropriate actions automatically. Following [this guidance](automation-levels.md#levels-of-automation) helps reduce the number of alerts your security operations team must handle. 
 
-
 ## Still need help?
 
 If you have worked through all the steps in this article and still need help, your best bet is to contact technical support.
@@ -365,4 +367,4 @@ If you have worked through all the steps in this article and still need help, yo
 
 [Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)
 
-[Overview of Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use) 
\ No newline at end of file
+[Overview of Microsoft Defender Security Center](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/use) 

From 95b12a62beb0830130ecb66f9d3e8155e26d8e31 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 07:37:27 -0800
Subject: [PATCH 723/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 47 ++++++++++---------
 1 file changed, 24 insertions(+), 23 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index caeb8f45d2..851be0216d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -11,7 +11,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.author: deniseb
 author: denisebmsft
-ms.date: 01/26/2021
+ms.date: 01/27/2021
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
@@ -52,7 +52,7 @@ And, you can [get help if you still have issues with false positives/negatives](
 
 ## Part 1: Review and classify alerts
 
-If you see an alert that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
+If you see an [alert](alerts.md) that was triggered because something was detected as malicious or suspicious that should not have been, you can suppress the alert for that entity. You can also suppress alerts that are not necessarily false positives, but are unimportant. We recommend that you classify alerts as well. 
 
 Managing your alerts and classifying true/false positives helps to train your threat protection solution and can reduce the number of false positives or false negatives over time. Taking these steps also helps reduce noise in your security operations dashboard so that your security team can focus on higher priority work items.
 
@@ -73,7 +73,7 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 
 ### Classify an alert
 
-You can classify an alert as a false positive or a true positive in the Microsoft Defender Security Center, in the **Alerts queue**. Classifying alerts helps train Microsoft Defender for Endpoint so that, over time, you'll see more true alerts and fewer false alerts.
+Alerts can be classified as false positives or true positives in the Microsoft Defender Security Center. Classifying alerts helps train Microsoft Defender for Endpoint so that, over time, you'll see more true alerts and fewer false alerts.
 
 1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	Select **Alerts queue**, and then select an alert that is a false positive.
@@ -98,7 +98,7 @@ If you have alerts that are either false positives or that are true positives bu
 
 ## Part 2: Review remediation actions
 
-[Remediation actions](manage-auto-investigation.md#remediation-actions), such as sending a file to quarantine or stopping a process, can be taken on entities that are detected as threats. Several types of remediation actions can occur automatically through automated investigation and Microsoft Defender Antivirus. Examples of such actions include:   
+[Remediation actions](manage-auto-investigation.md#remediation-actions), such as sending a file to quarantine or stopping a process, are taken on entities (such as files) that are detected as threats. Several types of remediation actions occur automatically through automated investigation and Microsoft Defender Antivirus:   
 - Quarantine a file
 - Remove a registry key
 - Kill a process
@@ -106,25 +106,25 @@ If you have alerts that are either false positives or that are true positives bu
 - Disable a driver
 - Remove a scheduled task
 
-Other actions, such as starting an antivirus scan or collecting an investigation package, can occur through [Live Response](live-response.md). Those actions cannot be undone.
+Other actions, such as starting an antivirus scan or collecting an investigation package, occur manually or through [Live Response](live-response.md). Actions taken through Live Response cannot be undone.
 
 After you have reviewed your alerts, your next step is to [review remediation actions](manage-auto-investigation.md). If any actions were taken as a result of false positives, you can undo most kinds of remediation actions. Specifically, you can:
-- [undo one action at a time](#undo-an-action);
-- [undo multiple actions at one time](#undo-multiple-actions-at-one-time); and 
-- [remove a file from quarantine across multiple devices](#remove-a-file-from-quarantine-across-multiple-devices). 
+- [Undo one action at a time](#undo-an-action);
+- [Undo multiple actions at one time](#undo-multiple-actions-at-one-time); and 
+- [Remove a file from quarantine across multiple devices](#remove-a-file-from-quarantine-across-multiple-devices). 
 
 When you're done reviewing and undoing actions that were taken as a result of false positives, proceed to [review or define exclusions](#part-3-review-or-define-exclusions).
 
 ### Review completed actions
 
+![Action center](images/autoir-action-center-1.png) 
+
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in. 
-2. Select the **History** tab to view a list of actions that were taken. <br/>![Action center](images/autoir-action-center-1.png) 
+2. Select the **History** tab to view a list of actions that were taken. 
 3. Select an item to view more details about the remediation action that was taken.
 
 ### Undo an action
 
-If you find that a remediation action was taken automatically on an entity that is not actually a threat, you can undo the action. You can undo most remediation actions. 
-
 1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select an action that you want to undo.
 3.	In the flyout pane, select **Undo**. If the action cannot be undone with this method, you will not see an **Undo** button. (To learn more, see [Undo completed actions](manage-auto-investigation.md#undo-completed-actions).)
@@ -137,14 +137,15 @@ If you find that a remediation action was taken automatically on an entity that
 
 ### Remove a file from quarantine across multiple devices 
 
+![Quarantine file](images/autoir-quarantine-file-1.png)
+
 1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select a file that has the Action type **Quarantine file**.
-3. In the pane on the right side of the screen, select **Apply to X more instances of this file**, and then select **Undo**. <br/>![Quarantine file](images/autoir-quarantine-file-1.png)
-
+3. In the pane on the right side of the screen, select **Apply to X more instances of this file**, and then select **Undo**.
 
 ## Part 3: Review or define exclusions
 
-An exclusion is an entity that you specify as an exception to remediation actions. The excluded entity might still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
+An exclusion is an entity, such as a file or URL, that you specify as an exception to remediation actions. The excluded entity can still get detected, but no remediation actions are taken on that entity. That is, the detected file or process won’t be stopped, sent to quarantine, removed, or otherwise changed by Microsoft Defender for Endpoint. 
 
 To define exclusions across Microsoft Defender for Endpoint, perform the following tasks:
 - [Define exclusions for Microsoft Defender Antivirus](#exclusions-for-microsoft-defender-antivirus)
@@ -157,7 +158,7 @@ The procedures in this section describe how to define exclusions and indicators.
 
 ### Exclusions for Microsoft Defender Antivirus
 
-In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using Microsoft Endpoint Manager to define or edit your antivirus exclusions; however, you can use other methods, such as Group Policy as well.
+In general, you should not need to define exclusions for Microsoft Defender Antivirus. Make sure that you define exclusions sparingly, and that you only include the files, folders, processes, and process-opened files that are resulting in false positives. In addition, make sure to review your defined exclusions regularly. We recommend using [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview) to define or edit your antivirus exclusions; however, you can use other methods, such as [Group Policy](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy) (see [Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)).
 
 > [!TIP]
 > Need help with antivirus exclusions? See [Configure and validate exclusions for Microsoft Defender Antivirus scans](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus).
@@ -186,13 +187,13 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 [Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, you can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, you can create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to the following capabilities:
+To specify entities as exclusions for Microsoft Defender for Endpoint, create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to the following capabilities:
 
 - [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
 - [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
 - [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
 
-You can create indicators for:
+"Allow" indicators can be created for:
 
 - [Files](#indicators-for-files)
 - [IP addresses, URLs, and domains](#indicators-for-ip-addresses-urls-or-domains)
@@ -205,7 +206,7 @@ You can create indicators for:
 When you [create an "allow" indicator for a file, such as an executable](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-file), it helps prevent files that your organization is using from being blocked. Files can include portable executable (PE) files, such as `.exe` and `.dll` files. 
 
 Before you create indicators for files, make sure the following requirements are met:
-- Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)
+- Microsoft Defender Antivirus is configured with cloud-based protection enabled (see [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus))
 - Antimalware client version is 4.18.1901.x or later 
 - Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 
 - The [Block or allow feature is turned on](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features) 
@@ -215,28 +216,28 @@ Before you create indicators for files, make sure the following requirements are
 When you [create an "allow" indicator for an IP address, URL, or domain](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain), it helps prevent the sites or IP addresses your organization uses from being blocked.
 
 Before you create indicators for IP addresses, URLs, or domains, make sure the following requirements are met:
-- Network protection in Defender for Endpoint is enabled in block mode (See [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection))
+- Network protection in Defender for Endpoint is enabled in block mode (see [Enable network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection))
 - Antimalware client version is 4.18.1906.x or later 
 - Devices are running Windows 10, version 1709, or later 
 
-Custom network indicators are turned on in the Microsoft Defender Security Center (See [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features).)   
+Custom network indicators are turned on in the Microsoft Defender Security Center (see [Advanced features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-features))   
 
 #### Indicators for application certificates 
 
 When you [create an "allow" indicator for an application certificate](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/indicator-certificates), it helps prevent applications, such as internally developed applications, that your organization uses from being blocked. `.CER` or `.PEM` file extensions are supported.   
 
 Before you create indicators for application certificates, make sure the following requirements are met:
-- Microsoft Defender Antivirus is configured with cloud-based protection enabled (See [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus).)
+- Microsoft Defender Antivirus is configured with cloud-based protection enabled (see [Manage cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus))
 - Antimalware client version is 4.18.1901.x or later 
 - Devices are running Windows 10, version 1703 or later; Windows Server 2016; or Windows Server 2019 
 - Virus and threat protection definitions are up to date  
 
 > [!TIP]
-> When you create indicators, you can define them one by one or import multiple items at once. Keep in mind there's a limit of 15,000 indicators you can have in a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
+> When you create indicators, you can define them one by one, or import multiple items at once. Keep in mind there's a limit of 15,000 indicators for a single tenant. And, you might need to gather certain details first, such as file hash information. Make sure to review the prerequisites before you [create indicators](manage-indicators.md). 
 
 ## Part 4: Submit a file for analysis
 
-You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions. When you sign in at the submission site, you can track your submissions.
+You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions, and . When you sign in at the submission site, you can track your submissions.
 
 ### Submit a file for analysis
 

From 592c3d4fe02ed21e25325b56985c93471c329682 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 07:51:06 -0800
Subject: [PATCH 724/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 26 +++++++++----------
 1 file changed, 12 insertions(+), 14 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 851be0216d..80c64fb69d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -187,11 +187,7 @@ In general, you should not need to define exclusions for Microsoft Defender Anti
 
 [Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) (specifically, indicators of compromise, or IoCs) enable your security operations team to define the detection, prevention, and exclusion of entities. For example, you can specify certain files to be omitted from scans and remediation actions in Microsoft Defender for Endpoint. Or, indicators can be used to generate alerts for certain files, IP addresses, or URLs.
 
-To specify entities as exclusions for Microsoft Defender for Endpoint, create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to the following capabilities:
-
-- [Next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)
-- [Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response)
-- [Automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations)
+To specify entities as exclusions for Microsoft Defender for Endpoint, create "allow" indicators for those entities. Such "allow" indicators in Microsoft Defender for Endpoint apply to [next-generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10), [endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response), and [automated investigation & remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations).
 
 "Allow" indicators can be created for:
 
@@ -237,7 +233,7 @@ Before you create indicators for application certificates, make sure the followi
 
 ## Part 4: Submit a file for analysis
 
-You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions, and . When you sign in at the submission site, you can track your submissions.
+You can submit entities, such as files and fileless detections, to Microsoft for analysis. Microsoft security researchers analyze all submissions, and their results help inform Microsoft Defender for Endpoint threat protection capabilities. When you sign in at the submission site, you can track your submissions.
 
 ### Submit a file for analysis
 
@@ -273,7 +269,7 @@ To check for updates regarding your submission, sign in at the [Microsoft Securi
 
 ## Part 5: Review and adjust your threat protection settings
 
-Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to the following settings in particular:
+Microsoft Defender for Endpoint offers a wide variety of options, including the ability to fine-tune settings for various features and capabilities. If you’re getting numerous false positives, make sure to review your organization’s threat protection settings. You might need to make some adjustments to:
 
 - [Cloud-delivered protection](#cloud-delivered-protection)
 - [Remediation for potentially unwanted applications](#remediation-for-potentially-unwanted-applications)
@@ -288,6 +284,8 @@ Check your cloud-delivered protection level for Microsoft Defender Antivirus. By
 
 We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivered protection settings.
 
+We recommend using [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview) to edit or set your cloud-delivered protection settings; however, you can use other methods, such as [Group Policy](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy) (see [Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)).
+
 #### Use Microsoft Endpoint Manager to review and edit cloud-delivered protection settings (for existing policies)
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
@@ -312,13 +310,13 @@ We recommend using Microsoft Endpoint Manager to edit or set your cloud-delivere
 ### Remediation for potentially unwanted applications
 
 Potentially unwanted applications (PUA) are a category of software that can cause devices to run slowly, display unexpected ads, or install other software that might be unexpected or unwanted. Examples of PUA include advertising software, bundling software, and evasion software that behaves differently with security products. Although PUA is not considered malware, some kinds of software are PUA based on their behavior and reputation.
- 
-Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If necessary, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus. 
-
-We recommend using Microsoft Endpoint Manager to edit or set PUA protection settings. 
 
 > [!TIP]
 > To learn more about PUA, see [Detect and block potentially unwanted applications](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
+ 
+Depending on the apps your organization is using, you might be getting false positives as a result of your PUA protection settings. If necessary, consider running PUA protection in audit mode for a while, or apply PUA protection to a subset of devices in your organization. PUA protection can be configured for the Microsoft Edge browser and for Microsoft Defender Antivirus.
+
+We recommend using [Microsoft Endpoint Manager](https://docs.microsoft.com/mem/endpoint-manager-overview) to edit or set PUA protection settings; however, you can use other methods, such as [Group Policy](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy) (see [Manage Microsoft Defender for Endpoint](manage-atp-post-migration.md)).
 
 #### Use Microsoft Endpoint Manager to edit PUA protection (for existing configuration profiles)
 
@@ -345,18 +343,18 @@ We recommend using Microsoft Endpoint Manager to edit or set PUA protection sett
 
 [Automated investigation and remediation](automated-investigations.md) (AIR) capabilities are designed to examine alerts and take immediate action to resolve breaches. As alerts are triggered, and an automated investigation runs, a verdict is generated for each piece of evidence investigated. Verdicts can be *Malicious*, *Suspicious*, or *No threats found*. 
 
-Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization and other security settings, remediation actions are taken on artifacts deemed Malicious or Suspicious. Remediation actions can occur automatically, or only upon approval by your security operations team. 
+Depending on the [level of automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels) set for your organization and other security settings, remediation actions are taken on artifacts that are considered to be *Malicious* or *Suspicious*. In some cases, remediation actions occur automatically; in other cases, remediation actions are taken manually or only upon approval by your security operations team. 
 
 - [Learn more about automation levels](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automation-levels); and then 
 - [Configure AIR capabilities in Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation).
 
-> [!TIP]
+> [!IMPORTANT]
 > We recommend using *Full automation* for automated investigation and remediation. Don't turn these capabilities off because of a false positive. Instead, use ["allow" indicators to define exceptions](#indicators-for-microsoft-defender-for-endpoint), and keep automated investigation and remediation set to take appropriate actions automatically. Following [this guidance](automation-levels.md#levels-of-automation) helps reduce the number of alerts your security operations team must handle. 
 
 
 ## Still need help?
 
-If you have worked through all the steps in this article and still need help, your best bet is to contact technical support.
+If you have worked through all the steps in this article and still need help, contact technical support.
 
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2. In the upper right corner, select the question mark (**?**), and then select **Microsoft support**.

From 37c50b4ecc433f63043aa1b2f004097c4173000b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 08:04:19 -0800
Subject: [PATCH 725/825] yanking AV false positives article

---
 windows/security/threat-protection/TOC.md     |  1 -
 .../antivirus-false-positives-negatives.md    | 83 -------------------
 2 files changed, 84 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 76bfdf55f4..0e49e0f09b 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -176,7 +176,6 @@
 ###### [Use PowerShell cmdlets to manage next-generation protection](microsoft-defender-antivirus/use-powershell-cmdlets-microsoft-defender-antivirus.md)
 ###### [Use Windows Management Instrumentation (WMI) to manage next-generation protection](microsoft-defender-antivirus/use-wmi-microsoft-defender-antivirus.md)
 ###### [Use the mpcmdrun.exe command line tool to manage next-generation protection](microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus.md)
-###### [Handle false positives/negatives in Microsoft Defender Antivirus](microsoft-defender-antivirus/antivirus-false-positives-negatives.md)
    
 ##### [Deploy, manage updates, and report on antivirus]()
 ###### [Preparing to deploy](microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md)
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
deleted file mode 100644
index e99e915192..0000000000
--- a/windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md
+++ /dev/null
@@ -1,83 +0,0 @@
----
-title: What to do with false positives/negatives in Microsoft Defender Antivirus
-description: Did Microsoft Defender Antivirus miss or wrongly detect something? Find out what you can do.
-keywords: Microsoft Defender Antivirus, false positives, false negatives, exclusions
-search.product: eADQiWindows 10XVcnh
-ms.prod: m365-security
-ms.mktglfcycl: manage
-ms.sitesec: library
-ms.pagetype: security
-ms.localizationpriority: medium
-author: denisebmsft
-ms.author: deniseb
-ms.custom: nextgen
-ms.date: 01/26/2021
-ms.reviewer: shwetaj
-manager: dansimp
-audience: ITPro
-ms.topic: article
-ms.technology: mde
----
-
-# What to do with false positives/negatives in Microsoft Defender Antivirus
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-**Applies to:**
-
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-Microsoft Defender Antivirus is designed to keep your PC safe with built-in, trusted antivirus protection. With Microsoft Defender Antivirus, you get comprehensive, ongoing, and real-time protection against software threats like viruses, malware, and spyware across email, apps, the cloud, and the web.
-
-What if something gets detected wrongly as malware, or something is missed? We call these false positives and false negatives. Fortunately, there are some steps you can take to deal with these issues. You can:
-- [Submit a file to Microsoft for analysis](#submit-a-file-to-microsoft-for-analysis)
-- [Create an "Allow" indicator to prevent a false positive from recurring](#create-an-allow-indicator-to-prevent-a-false-positive-from-recurring)
-- [Define an exclusion on an individual Windows device to prevent an item from being scanned](#define-an-exclusion-on-an-individual-windows-device-to-prevent-an-item-from-being-scanned)
-
-> [!TIP]
-> This article focuses on false positives in Microsoft Defender Antivirus. If you want guidance for Microsoft Defender for Endpoint, which includes next-generation protection, endpoint detection and response, automated investigation and remediation, and more, see [Address false positives/negatives in Microsoft Defender for Endpoint](../microsoft-defender-atp/defender-endpoint-false-positives-negatives.md).
-
-## Submit a file to Microsoft for analysis
-
-1. Review the [submission guidelines](../intelligence/submission-guide.md).
-2. [Submit your file or sample](https://www.microsoft.com/wdsi/filesubmission).
-
-> [!TIP]
-> We recommend signing in at the submission portal so you can track the results of your submissions.
-
-## Create an "Allow" indicator to prevent a false positive from recurring
-
-If a file, IP address, URL, or domain is treated as malware on a device, even though it's safe, you can create an "Allow" indicator. This indicator tells Microsoft Defender Antivirus (and Microsoft Defender for Endpoint) that the item is safe.
-
-To set up your "Allow" indicator, follow the guidance in [Manage indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators).
-
-## Define an exclusion on an individual Windows device to prevent an item from being scanned
-
-When you define an exclusion for Microsoft Defender Antivirus, you configure your antivirus to skip that item.
-
-1. On your Windows 10 device, open the Windows Security app.
-2. Select **Virus & threat protection** > **Virus & threat protection settings**.
-3. Under **Exclusions**, select **Add or remove exclusions**.
-4. Select **+ Add an exclusion**, and specify its type (**File**, **Folder**, **File type**, or **Process**).
-
-The following table summarizes exclusion types, how they're defined, and what happens when they're in effect.
-
-|Exclusion type  |Defined by  |What happens  |
-|---------|---------|---------|
-|**File** |Location <br/>Example: `c:\sample\sample.test` |The specified file is skipped by Microsoft Defender Antivirus. |
-|**Folder**    |Location <br/>Example: `c:\test\sample`       |All items in the specified folder are skipped by Microsoft Defender Antivirus.         |
-|**File type**   |File extension <br/>Example: `.test` |All files with the specified extension anywhere on your device are skipped by Microsoft Defender Antivirus.         |
-|**Process**     |Executable file path <br>Example: `c:\test\process.exe`         |The specified process and any files that are opened by that process are skipped by Microsoft Defender Antivirus.         |
-
-To learn more, see:
-- [Configure and validate exclusions based on file extension and folder location](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus)
-- [Configure exclusions for files opened by processes](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus)
-
-## Related articles
-
-[What is Microsoft Defender for Endpoint?](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection)
-
-[Microsoft 365 Defender](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)
-
-[Address false positives/negatives in Microsoft Defender for Endpoint](../microsoft-defender-atp/defender-endpoint-false-positives-negatives.md)
\ No newline at end of file

From 79c75450d4907cafbac4d82e359b16256cc089f8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 08:06:27 -0800
Subject: [PATCH 726/825] Update .openpublishing.redirection.json

---
 .openpublishing.redirection.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 7bcd7f8d15..6c6cd0335b 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -16519,6 +16519,11 @@
       "source_path": "windows/hub/windows-10.yml",
       "redirect_url": "https://docs.microsoft.com/windows/windows-10",
       "redirect_document_id": false
+    },
+    {
+      "source_path": "windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives",
+      "redirect_document_id": true
     }
   ]
 }

From cc757691fac0332d41ab38cd26ad2eb471bb0c98 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 27 Jan 2021 10:56:07 -0800
Subject: [PATCH 727/825] Release notes for MDE for Mac 101.19.48

---
 .../microsoft-defender-atp/mac-whatsnew.md                | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 617e8532aa..9053de5168 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -30,6 +30,14 @@ ms.technology: mde
 > [!IMPORTANT]
 > Support for macOS 10.13 (High Sierra) will be discontinued on February 15th, 2021.
 
+## 101.19.48
+
+> [!NOTE]
+> The old command-line tool syntax has been deprecated with this release.
+
+- Added a new command-line switch to disable the network extension: `mdatp system-extension network-filter disable`. This command can be useful to troubleshoot networking issues that could be related to Microsoft Defender for Endpoint for Mac
+- Performance improvements & bug fixes
+
 ## 101.19.21
 
 - Bug fixes

From 560702cef3489eefad29fff075b4fdae0f92ce31 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 11:32:53 -0800
Subject: [PATCH 728/825] Update defender-endpoint-false-positives-negatives.md

---
 ...nder-endpoint-false-positives-negatives.md | 44 +++++++++----------
 1 file changed, 22 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
index 8b351b1709..6a64647a0c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@@ -61,24 +61,24 @@ Managing your alerts and classifying true/false positives helps to train your th
 Before you classify or suppress an alert, determine whether the alert is accurate, a false positive, or benign.
 
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
-2.	In the navigation pane, choose **Alerts queue**.
-3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Depending on the alert status, take the steps described in the following table: 
+2. In the navigation pane, choose **Alerts queue**.
+3. Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
+4. Depending on the alert status, take the steps described in the following table: 
 
-    | Alert status | What to do |
-    |:---|:---|
-    | The alert is accurate | Assign the alert, and then [investigate it](investigate-alerts.md) further. |
-    | The alert is a false positive | 1. [Classify the alert](#classify-an-alert) as a false positive. <br/>2. [Suppress the alert](#suppress-an-alert). <br/> 3. [Create an indicator](#indicators-for-microsoft-defender-for-endpoint) for Microsoft Defender for Endpoint. <br/> 4. [Submit a file to Microsoft for analysis](#part-4-submit-a-file-for-analysis). |
-    | The alert is accurate, but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
+| Alert status | What to do |
+|:---|:---|
+| The alert is accurate | Assign the alert, and then [investigate it](investigate-alerts.md) further. |
+| The alert is a false positive | 1. [Classify the alert](#classify-an-alert) as a false positive. <br/>2. [Suppress the alert](#suppress-an-alert). <br/> 3. [Create an indicator](#indicators-for-microsoft-defender-for-endpoint) for Microsoft Defender for Endpoint. <br/> 4. [Submit a file to Microsoft for analysis](#part-4-submit-a-file-for-analysis). |
+| The alert is accurate, but benign (unimportant) | [Classify the alert](#classify-an-alert) as a true positive, and then [suppress the alert](#suppress-an-alert). |
 
 ### Classify an alert
 
 Alerts can be classified as false positives or true positives in the Microsoft Defender Security Center. Classifying alerts helps train Microsoft Defender for Endpoint so that, over time, you'll see more true alerts and fewer false alerts.
 
-1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
-2.	Select **Alerts queue**, and then select an alert that is a false positive.
-3.	For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
-4.	In the **Manage alert** section, select either **True alert** or **False alert**. (Use **False alert** to classify a false positive.)
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2. Select **Alerts queue**, and then select an alert.
+3. For the selected alert, select **Actions** > **Manage alert**. A flyout pane opens.
+4. In the **Manage alert** section, select either **True alert** or **False alert**. (Use **False alert** to classify a false positive.)
 
 > [!TIP]
 > For more information about suppressing alerts, see [Manage Microsoft Defender for Endpoint alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts). And, if your organization is using a security information and event management (SIEM) server, make sure to define a suppression rule there, too. 
@@ -87,11 +87,11 @@ Alerts can be classified as false positives or true positives in the Microsoft D
 
 If you have alerts that are either false positives or that are true positives but for unimportant events, you can suppress those alerts in the Microsoft Defender Security Center. Suppressing alerts helps reduce noise in your security operations dashboard. 
 
-1.	Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
-2.	In the navigation pane, select **Alerts queue**.
-3.	Select an alert that you want to suppress to open its **Details** pane.
-4.	In the **Details** pane, choose the ellipsis (**...**), and then **Create a suppression rule**.
-5.	Specify all the settings for your suppression rule, and then choose **Save**.
+1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
+2. In the navigation pane, select **Alerts queue**.
+3. Select an alert that you want to suppress to open its **Details** pane.
+4. In the **Details** pane, choose the ellipsis (**...**), and then **Create a suppression rule**.
+5. Specify all the settings for your suppression rule, and then choose **Save**.
 
 > [!TIP]
 > Need help with suppression rules? See [Suppress an alert and create a new suppression rule](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-alerts#suppress-an-alert-and-create-a-new-suppression-rule).
@@ -123,15 +123,15 @@ When you're done reviewing and undoing actions that were taken as a result of fa
 
 ### Undo an action
 
-1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
 2. On the **History** tab, select an action that you want to undo.
-3.	In the flyout pane, select **Undo**. If the action cannot be undone with this method, you will not see an **Undo** button. (To learn more, see [Undo completed actions](manage-auto-investigation.md#undo-completed-actions).)
+3. In the flyout pane, select **Undo**. If the action cannot be undone with this method, you will not see an **Undo** button. (To learn more, see [Undo completed actions](manage-auto-investigation.md#undo-completed-actions).)
 
 ### Undo multiple actions at one time
 
-1.	Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
-2.	On the **History** tab, select the actions that you want to undo.
-3.	In the pane on the right side of the screen, select **Undo**.
+1. Go to the Action center ([https://securitycenter.windows.com/action-center](https://securitycenter.windows.com/action-center)) and sign in.
+2. On the **History** tab, select the actions that you want to undo.
+3. In the pane on the right side of the screen, select **Undo**.
 
 ### Remove a file from quarantine across multiple devices 
 

From 87a43c486a27d80811f79d30915204bd20dbcb0a Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 27 Jan 2021 11:37:23 -0800
Subject: [PATCH 729/825] Add link to new syntax

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 9053de5168..2ae1e83837 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -33,7 +33,7 @@ ms.technology: mde
 ## 101.19.48
 
 > [!NOTE]
-> The old command-line tool syntax has been deprecated with this release.
+> The old command-line tool syntax has been deprecated with this release. For information on the new syntax, see [Resources](mac-resources.md#configuring-from-the-command-line).
 
 - Added a new command-line switch to disable the network extension: `mdatp system-extension network-filter disable`. This command can be useful to troubleshoot networking issues that could be related to Microsoft Defender for Endpoint for Mac
 - Performance improvements & bug fixes

From 5db9bdd39f5af3eb34f60c0c86b8656fe6d0032b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 27 Jan 2021 13:59:44 -0800
Subject: [PATCH 730/825] Update microsoft-defender-antivirus-compatibility.md

---
 .../microsoft-defender-antivirus-compatibility.md           | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
index ad505f776b..20419165db 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: tewchen, pahuijbr, shwjha
 manager: dansimp
-ms.date: 01/22/2021
+ms.date: 01/27/2021
 ms.technology: mde
 ---
 
@@ -89,10 +89,12 @@ The table in this section summarizes the functionality and features that are ava
 |  [Threat remediation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus) | Yes | See note <sup>[[4](#fn4)]<sup> | Yes | No |
 | [Security intelligence updates](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus) | Yes | Yes | Yes | No |
 
-(<a id="fn3">3</a>) In general, when Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode. However, if [Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about) (Endpoint DLP) is configured and in effect, protective actions are enforced. Endpoint DLP works with real-time protection and behavior monitoring. 
+(<a id="fn3">3</a>) In general, when Microsoft Defender Antivirus is in passive mode, real-time protection does not provide any blocking or enforcement, even though it is enabled and in passive mode. 
 
 (<a id="fn4">4</a>) When Microsoft Defender Antivirus is in passive mode, threat remediation features are active only during scheduled or on-demand scans.
 
+> [!NOTE]
+> [Microsoft 365 Endpoint data loss prevention](https://docs.microsoft.com/microsoft-365/compliance/endpoint-dlp-learn-about) protection continues to operate normally when Microsoft Defender Antivirus is in active or passive mode.
 
 ## Keep the following points in mind
 

From e94d376345b81166cd2e35693ba87e2de650bb94 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 18:09:28 +0200
Subject: [PATCH 731/825] 1

---
 .../microsoft-defender-atp/api-release-notes.md                | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 4a650a2e4d..5dd49affed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -23,13 +23,16 @@ ms.technology: mde
 
 - test 1 
 
+<hr> 
 ## 2.2.3
 
 - test2
 - test3
 
+<hr> 
 ## 2.1.58
 
 - fix: test4
 - fix: test5
 - add: test6
+<hr> 
\ No newline at end of file

From 1849be05e2751c3a377c9b089ac7083d54054b50 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 18:21:42 +0200
Subject: [PATCH 732/825] 2

---
 .../microsoft-defender-atp/api-release-notes.md   | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 5dd49affed..4bd5e626eb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -19,15 +19,20 @@ ms.technology: mde
 
 # Release Notes
 
-## 2.2.4
+## 25.01.2021
 
-- test 1 
+- Updated rate limitations for [Hunting API](run-advanced-query-api.md) to 45 requests per minute. 
 
 <hr> 
-## 2.2.3
+## 21.01.2021
 
-- test2
-- test3
+- Added new API: [Find devices by tag](machine-tags.md). 
+- Added new API: [Import Indicators](import-ti-indicators.md). 
+
+<hr> 
+## 01.09.2020
+
+- Added option to expand the Alert object with its related Evidence. See [List Alerts](get-alerts.md)
 
 <hr> 
 ## 2.1.58

From 9d62730beb65f306f0d14ff0c21010b23dbf3616 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 18:23:39 +0200
Subject: [PATCH 733/825] 2

---
 .../api-release-notes.md                      | 23 ++++++++-----------
 1 file changed, 9 insertions(+), 14 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 4bd5e626eb..a61531bcf0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -19,25 +19,20 @@ ms.technology: mde
 
 # Release Notes
 
-## 25.01.2021
+### 25.01.2021
+<br>
+<hr>
 
 - Updated rate limitations for [Hunting API](run-advanced-query-api.md) to 45 requests per minute. 
 
-<hr> 
-## 21.01.2021
-
+### 21.01.2021
+<br>
+<hr>
 - Added new API: [Find devices by tag](machine-tags.md). 
 - Added new API: [Import Indicators](import-ti-indicators.md). 
 
-<hr> 
-## 01.09.2020
 
+### 01.09.2020
+<br>
+<hr>
 - Added option to expand the Alert object with its related Evidence. See [List Alerts](get-alerts.md)
-
-<hr> 
-## 2.1.58
-
-- fix: test4
-- fix: test5
-- add: test6
-<hr> 
\ No newline at end of file

From 7cd95e5ac9ede0a5247190187c5d1332ad30e9b0 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 18:26:48 +0200
Subject: [PATCH 734/825] 1

---
 .../microsoft-defender-atp/api-release-notes.md                 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index a61531bcf0..496e4151c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -18,6 +18,8 @@ ms.technology: mde
 ---
 
 # Release Notes
+<br>
+<hr>
 
 ### 25.01.2021
 <br>

From 05207554978b7ca295186f41d6fcb0ebeb067930 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 18:54:48 +0200
Subject: [PATCH 735/825] 1

---
 .../exposed-apis-odata-samples.md             | 170 ++++++++++++------
 .../get-alert-related-machine-info.md         |  47 +++--
 .../get-machine-by-id.md                      |  38 ++--
 .../microsoft-defender-atp/get-machines.md    |  38 ++--
 .../microsoft-defender-atp/machine.md         |   4 +-
 5 files changed, 197 insertions(+), 100 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index ab3344e02c..589c3508f8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -221,25 +221,39 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=riskScor
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
-            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+			"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 			"computerDnsName": "mymachine1.contoso.com",
 			"firstSeen": "2018-08-02T14:55:03.7791856Z",
-			"lastSeen": "2018-08-02T14:55:03.7791856Z",
+			"lastSeen": "2021-01-25T07:27:36.052313Z",
 			"osPlatform": "Windows10",
-			"version": "1709",
 			"osProcessor": "x64",
-			"lastIpAddress": "172.17.230.209",
-			"lastExternalIpAddress": "167.220.196.71",
-			"osBuild": 18209,
+			"version": "1901",
+			"lastIpAddress": "10.166.113.46",
+			"lastExternalIpAddress": "167.220.203.175",
+			"osBuild": 19042,
 			"healthStatus": "Active",
-			"rbacGroupId": 140,
+			"deviceValue": "Normal",
 			"rbacGroupName": "The-A-Team",
 			"riskScore": "High",
-			"exposureLevel": "Medium",
-			"isAadJoined": true,
-			"aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-			"machineTags": [ "test tag 1", "ExampleTag" ]
-        },
+			"exposureLevel": "Low",
+			"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+			"machineTags": [
+				"Tag1",
+				"Tag2"
+			],
+			"ipAddresses": [
+				{
+					"ipAddress": "10.166.113.47",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				},
+				{
+					"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				}
+			]
+		},
         ...
     ]
 }
@@ -260,25 +274,39 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=healthSt
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
-            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+			"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 			"computerDnsName": "mymachine1.contoso.com",
 			"firstSeen": "2018-08-02T14:55:03.7791856Z",
-			"lastSeen": "2018-08-02T14:55:03.7791856Z",
+			"lastSeen": "2021-01-25T07:27:36.052313Z",
 			"osPlatform": "Windows10",
-			"version": "1709",
 			"osProcessor": "x64",
-			"lastIpAddress": "172.17.230.209",
-			"lastExternalIpAddress": "167.220.196.71",
-			"osBuild": 18209,
-			"healthStatus": "ImpairedCommunication",
-			"rbacGroupId": 140,
+			"version": "1901",
+			"lastIpAddress": "10.166.113.46",
+			"lastExternalIpAddress": "167.220.203.175",
+			"osBuild": 19042,
+			"healthStatus": "Active",
+			"deviceValue": "Normal",
 			"rbacGroupName": "The-A-Team",
 			"riskScore": "Low",
-			"exposureLevel": "Medium",
-			"isAadJoined": true,
-			"aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-			"machineTags": [ "test tag 1", "ExampleTag" ]
-        },
+			"exposureLevel": "Low",
+			"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+			"machineTags": [
+				"Tag1",
+				"Tag2"
+			],
+			"ipAddresses": [
+				{
+					"ipAddress": "10.166.113.47",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				},
+				{
+					"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				}
+			]
+		},
         ...
     ]
 }
@@ -299,25 +327,39 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=lastSeen
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
-            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+			"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 			"computerDnsName": "mymachine1.contoso.com",
 			"firstSeen": "2018-08-02T14:55:03.7791856Z",
-			"lastSeen": "2018-08-02T14:55:03.7791856Z",
+			"lastSeen": "2021-01-25T07:27:36.052313Z",
 			"osPlatform": "Windows10",
-			"version": "1709",
 			"osProcessor": "x64",
-			"lastIpAddress": "172.17.230.209",
-			"lastExternalIpAddress": "167.220.196.71",
-			"osBuild": 18209,
-			"healthStatus": "ImpairedCommunication",
-			"rbacGroupId": 140,
+			"version": "1901",
+			"lastIpAddress": "10.166.113.46",
+			"lastExternalIpAddress": "167.220.203.175",
+			"osBuild": 19042,
+			"healthStatus": "Active",
+			"deviceValue": "Normal",
 			"rbacGroupName": "The-A-Team",
 			"riskScore": "Low",
-			"exposureLevel": "Medium",
-			"isAadJoined": true,
-			"aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-			"machineTags": [ "test tag 1", "ExampleTag" ]
-        },
+			"exposureLevel": "Low",
+			"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+			"machineTags": [
+				"Tag1",
+				"Tag2"
+			],
+			"ipAddresses": [
+				{
+					"ipAddress": "10.166.113.47",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				},
+				{
+					"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				}
+			]
+		},
         ...
     ]
 }
@@ -384,25 +426,39 @@ json{
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
-            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
-	    "computerDnsName": "mymachine1.contoso.com",
-	    "firstSeen": "2018-08-02T14:55:03.7791856Z",
-	    "lastSeen": "2018-08-02T14:55:03.7791856Z",
-	    "osPlatform": "Windows10",
-	    "version": "1709",
-	    "osProcessor": "x64",
-	    "lastIpAddress": "172.17.230.209",
-	    "lastExternalIpAddress": "167.220.196.71",
-	    "osBuild": 18209,
-	    "healthStatus": "ImpairedCommunication",
-	    "rbacGroupId": 140,
-	    "rbacGroupName": "The-A-Team",
-	    "riskScore": "Low",
-	    "exposureLevel": "Medium",
-	    "isAadJoined": true,
-	    "aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-	    "machineTags": [ "test tag 1", "ExampleTag" ]
-        },
+			"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+			"computerDnsName": "mymachine1.contoso.com",
+			"firstSeen": "2018-08-02T14:55:03.7791856Z",
+			"lastSeen": "2021-01-25T07:27:36.052313Z",
+			"osPlatform": "Windows10",
+			"osProcessor": "x64",
+			"version": "1901",
+			"lastIpAddress": "10.166.113.46",
+			"lastExternalIpAddress": "167.220.203.175",
+			"osBuild": 19042,
+			"healthStatus": "Active",
+			"deviceValue": "Normal",
+			"rbacGroupName": "The-A-Team",
+			"riskScore": "Low",
+			"exposureLevel": "Low",
+			"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+			"machineTags": [
+				"Tag1",
+				"Tag2"
+			],
+			"ipAddresses": [
+				{
+					"ipAddress": "10.166.113.47",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				},
+				{
+					"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				}
+			]
+		},
         ...
     ]
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index 60d47669c1..1ee033457d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -90,24 +90,37 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines/$entity",
-    "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
-    "computerDnsName": "mymachine1.contoso.com",
-    "firstSeen": "2018-08-02T14:55:03.7791856Z",
-	"lastSeen": "2018-08-02T14:55:03.7791856Z",
-    "osPlatform": "Windows10",
-    "version": "1709",
+	"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+	"computerDnsName": "mymachine1.contoso.com",
+	"firstSeen": "2018-08-02T14:55:03.7791856Z",
+	"lastSeen": "2021-01-25T07:27:36.052313Z",
+	"osPlatform": "Windows10",
 	"osProcessor": "x64",
-    "lastIpAddress": "172.17.230.209",
-    "lastExternalIpAddress": "167.220.196.71",
-    "osBuild": 18209,
-    "healthStatus": "Active",
-    "rbacGroupId": 140,
+	"version": "1901",
+	"lastIpAddress": "10.166.113.46",
+	"lastExternalIpAddress": "167.220.203.175",
+	"osBuild": 19042,
+	"healthStatus": "Active",
+	"deviceValue": "Normal",
 	"rbacGroupName": "The-A-Team",
-    "riskScore": "Low",
-	"exposureLevel": "Medium",
-	"isAadJoined": true,
-    "aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-	"machineTags": [ "test tag 1", "test tag 2" ]
+	"riskScore": "Low",
+	"exposureLevel": "Low",
+	"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+	"machineTags": [
+		"Tag1",
+		"Tag2"
+	],
+	"ipAddresses": [
+		{
+			"ipAddress": "10.166.113.47",
+			"macAddress": "8CEC4B897E73",
+			"operationalStatus": "Up"
+		},
+		{
+			"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+			"macAddress": "8CEC4B897E73",
+			"operationalStatus": "Up"
+		}
+	]
 }
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index 0a6ff20f30..c754604e60 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -93,25 +93,37 @@ Here is an example of the response.
 
 ```json
 {
-    "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machine",
-    "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+	"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 	"computerDnsName": "mymachine1.contoso.com",
 	"firstSeen": "2018-08-02T14:55:03.7791856Z",
-	"lastSeen": "2018-08-02T14:55:03.7791856Z",
+	"lastSeen": "2021-01-25T07:27:36.052313Z",
 	"osPlatform": "Windows10",
-	"version": "1709",
 	"osProcessor": "x64",
-	"lastIpAddress": "172.17.230.209",
-	"lastExternalIpAddress": "167.220.196.71",
-	"osBuild": 18209,
+	"version": "1901",
+	"lastIpAddress": "10.166.113.46",
+	"lastExternalIpAddress": "167.220.203.175",
+	"osBuild": 19042,
 	"healthStatus": "Active",
-	"rbacGroupId": 140,
+	"deviceValue": "Normal",
 	"rbacGroupName": "The-A-Team",
 	"riskScore": "Low",
-	"exposureLevel": "Medium",
-	"isAadJoined": true,
-	"aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-	"machineTags": [ "test tag 1", "test tag 2" ]
+	"exposureLevel": "Low",
+	"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+	"machineTags": [
+		"Tag1",
+		"Tag2"
+	],
+	"ipAddresses": [
+		{
+			"ipAddress": "10.166.113.47",
+			"macAddress": "8CEC4B897E73",
+			"operationalStatus": "Up"
+		},
+		{
+			"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+			"macAddress": "8CEC4B897E73",
+			"operationalStatus": "Up"
+		}
+	]
 }
-
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index 42a179a64f..a36163fc75 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -97,25 +97,39 @@ Here is an example of the response.
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Machines",
     "value": [
         {
-            "id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
+			"id": "1e5bc9d7e413ddd7902c2932e418702b84d0cc07",
 			"computerDnsName": "mymachine1.contoso.com",
 			"firstSeen": "2018-08-02T14:55:03.7791856Z",
-			"lastSeen": "2018-08-02T14:55:03.7791856Z",
+			"lastSeen": "2021-01-25T07:27:36.052313Z",
 			"osPlatform": "Windows10",
-			"version": "1709",
 			"osProcessor": "x64",
-			"lastIpAddress": "172.17.230.209",
-			"lastExternalIpAddress": "167.220.196.71",
-			"osBuild": 18209,
+			"version": "1901",
+			"lastIpAddress": "10.166.113.46",
+			"lastExternalIpAddress": "167.220.203.175",
+			"osBuild": 19042,
 			"healthStatus": "Active",
-			"rbacGroupId": 140,
+			"deviceValue": "Normal",
 			"rbacGroupName": "The-A-Team",
 			"riskScore": "Low",
-			"exposureLevel": "Medium",
-			"isAadJoined": true,
-			"aadDeviceId": "80fe8ff8-2624-418e-9591-41f0491218f9",
-			"machineTags": [ "test tag 1", "test tag 2" ]
-        }
+			"exposureLevel": "Low",
+			"aadDeviceId": "fd2e4d29-7072-4195-aaa5-1af139b78028",
+			"machineTags": [
+				"Tag1",
+				"Tag2"
+			],
+			"ipAddresses": [
+				{
+					"ipAddress": "10.166.113.47",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				},
+				{
+					"ipAddress": "2a01:110:68:4:59e4:3916:3b3e:4f96",
+					"macAddress": "8CEC4B897E73",
+					"operationalStatus": "Up"
+				}
+			]
+		},
 		...
     ]
 }
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index 896f5ca654..79b6f79c97 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -58,17 +58,19 @@ computerDnsName | String | [machine](machine.md) fully qualified name.
 firstSeen | DateTimeOffset | First date and time where the [machine](machine.md) was observed by Microsoft Defender for Endpoint.
 lastSeen | DateTimeOffset |Time and date of the last received full device report. A device typically sends a full report every 24 hours.
 osPlatform | String | Operating system platform.
+osProcessor | String | Operating system processor.
 version | String | Operating system Version.
 osBuild | Nullable long | Operating system build number.
 lastIpAddress | String | Last IP on local NIC on the [machine](machine.md).
 lastExternalIpAddress | String | Last IP through which the [machine](machine.md) accessed the internet.
 healthStatus | Enum | [machine](machine.md) health status. Possible values are: "Active", "Inactive", "ImpairedCommunication", "NoSensorData", "NoSensorDataImpairedCommunication" and "Unknown". 
 rbacGroupName | String | Machine group Name.
-rbacGroupId | Int | Machine group unique ID.
 riskScore | Nullable Enum | Risk score as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Informational', 'Low', 'Medium' and 'High'.
 exposureScore | Nullable Enum | [Exposure score](tvm-exposure-score.md) as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Low', 'Medium' and 'High'.
 aadDeviceId | Nullable representation Guid | AAD Device ID (when [machine](machine.md) is AAD Joined).
 machineTags | String collection | Set of [machine](machine.md) tags.
 exposureLevel | Nullable Enum | Exposure level as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Low', 'Medium' and 'High'.
 deviceValue | Nullable Enum | The [value of the device](tvm-assign-device-value.md). Possible values are: 'Normal', 'Low' and 'High'.
+ipAddresses | IpAddress collection | Set of ***IpAddress*** object. See [Get machines API](get-machines.md).
+
 

From 374cd8e3891b666e6e350b9626725305f9928331 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 19:15:21 +0200
Subject: [PATCH 736/825] 3

---
 .../microsoft-defender-atp/api-release-notes.md        | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 496e4151c6..94884f8d28 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -22,19 +22,21 @@ ms.technology: mde
 <hr>
 
 ### 25.01.2021
-<br>
 <hr>
 
 - Updated rate limitations for [Hunting API](run-advanced-query-api.md) to 45 requests per minute. 
 
-### 21.01.2021
 <br>
+<br>
+### 21.01.2021
 <hr>
+
 - Added new API: [Find devices by tag](machine-tags.md). 
 - Added new API: [Import Indicators](import-ti-indicators.md). 
 
-
-### 01.09.2020
 <br>
+<br>
+### 01.09.2020
 <hr>
+
 - Added option to expand the Alert object with its related Evidence. See [List Alerts](get-alerts.md)

From 996ed22e654a18d0995a157e5b72eb05b56d973b Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 19:27:34 +0200
Subject: [PATCH 737/825] 1

---
 .../api-release-notes.md                      | 16 +++++++++++-
 .../set-device-value.md                       | 26 +++++++++++++++----
 2 files changed, 36 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 94884f8d28..aef1b00336 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -34,9 +34,23 @@ ms.technology: mde
 - Added new API: [Find devices by tag](machine-tags.md). 
 - Added new API: [Import Indicators](import-ti-indicators.md). 
 
+<br>
+<br>
+### 15.12.2020
+<hr>
+
+- Updated [Device](machine.md) entity with IP Interfaces. See [List devices](get-machines.md).
+
+<br>
+<br>
+### 04.12.2020
+<hr>
+
+- Added new API: [Set device value](set-device-value.md).
+
 <br>
 <br>
 ### 01.09.2020
 <hr>
 
-- Added option to expand the Alert object with its related Evidence. See [List Alerts](get-alerts.md)
+- Added option to expand the Alert entity with its related Evidence. See [List Alerts](get-alerts.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
index 6f1fe23a4a..1164cfc4a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
@@ -73,12 +73,28 @@ Content-Type | string | application/json. **Required**.
 
 ## Request body
 
-```json
-{
-  "DeviceValue": "{device value}"
-}
-```
+In the request body, supply a JSON object with the following parameters:
+
+Parameter |    Type    | Description
+:---|:---|:---
+DeviceValue |    Enum |    Device value. Allowed values are: 'Normal', 'Low' and 'High'. **Required**.
 
 ## Response
 
 If successful, this method returns 200 - Ok response code and the updated Machine in the response body.
+
+## Example
+
+**Request**
+
+Here is an example of a request that adds machine tag.
+
+```
+POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/setDeviceValue
+```
+
+```json
+{
+  "DeviceValue" : "High"
+}
+```
\ No newline at end of file

From 77288ab9c0827ae9ccca1e1a72fa46d54b374dc3 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 19:39:53 +0200
Subject: [PATCH 738/825] 1

---
 .../microsoft-defender-atp/api-release-notes.md      | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index aef1b00336..5cc2a60d8b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -28,6 +28,7 @@ ms.technology: mde
 
 <br>
 <br>
+
 ### 21.01.2021
 <hr>
 
@@ -36,6 +37,15 @@ ms.technology: mde
 
 <br>
 <br>
+
+### 03.01.2021
+<hr>
+
+- Update Alert evidence with 
+
+<br>
+<br>
+
 ### 15.12.2020
 <hr>
 
@@ -43,6 +53,7 @@ ms.technology: mde
 
 <br>
 <br>
+
 ### 04.12.2020
 <hr>
 
@@ -50,6 +61,7 @@ ms.technology: mde
 
 <br>
 <br>
+
 ### 01.09.2020
 <hr>
 

From 70290566344b75cb6e089be8a29df213ed0c672d Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 19:43:39 +0200
Subject: [PATCH 739/825] 1

---
 .../microsoft-defender-atp/api-release-notes.md                 | 2 +-
 .../threat-protection/microsoft-defender-atp/machine.md         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 5cc2a60d8b..8200dc8a47 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -41,7 +41,7 @@ ms.technology: mde
 ### 03.01.2021
 <hr>
 
-- Update Alert evidence with 
+- Update Alert evidence: added ***detectionStatus***, ***parentProcessFilePath*** and ***parentProcessFileName***.
 
 <br>
 <br>
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machine.md b/windows/security/threat-protection/microsoft-defender-atp/machine.md
index 79b6f79c97..477cebbeb7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machine.md
@@ -71,6 +71,6 @@ aadDeviceId | Nullable representation Guid | AAD Device ID (when [machine](machi
 machineTags | String collection | Set of [machine](machine.md) tags.
 exposureLevel | Nullable Enum | Exposure level as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Low', 'Medium' and 'High'.
 deviceValue | Nullable Enum | The [value of the device](tvm-assign-device-value.md). Possible values are: 'Normal', 'Low' and 'High'.
-ipAddresses | IpAddress collection | Set of ***IpAddress*** object. See [Get machines API](get-machines.md).
+ipAddresses | IpAddress collection | Set of ***IpAddress*** objects. See [Get machines API](get-machines.md).
 
 

From 2560de795908d3c9b9bad44417d9a2a7ddf7e272 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 20:12:39 +0200
Subject: [PATCH 740/825] 1

---
 .../microsoft-defender-atp/alerts.md          | 159 +++++++++++++---
 .../api-release-notes.md                      |   8 +-
 .../exposed-apis-odata-samples.md             | 171 +++++++++++-------
 .../microsoft-defender-atp/get-alerts.md      | 171 +++++++++++-------
 4 files changed, 349 insertions(+), 160 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index f6b1666c6c..165692fb02 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -69,45 +69,146 @@ determination | Nullable Enum | Specifies the determination of the alert. Possib
 category| String | Category of the alert.
 detectionSource | String | Detection source.
 threatFamilyName | String | Threat family.
+threatName | String | Threat name.
+threatName | String | Threat name.
 machineId | String | ID of a [machine](machine.md) entity that is associated with the alert.
 computerDnsName | String | [machine](machine.md) fully qualified name.
 aadTenantId | String | The Azure Active Directory ID.
-comments | List of Alert comments | Alert Comment is an object that contains: comment string, createdBy string and createTime date time.
+detectorId | String | The ID of the detector that triggered the alert.
+comments | List of Alert comments | Alert Comment object contains: comment string, createdBy string and createTime date time.
+Evidence | List of Alert evidence | Evidence related to the alert. See example below.
 
 ### Response example for getting single alert:
 
 ```
-GET https://api.securitycenter.microsoft.com/api/alerts/da637084217856368682_-292920499
+GET https://api.securitycenter.microsoft.com/api/alerts/da637472900382838869_1364969609
 ```
 
 ```json
 {
-    "id": "da637084217856368682_-292920499",
-    "incidentId": 66860,
-    "investigationId": 4416234,
-    "investigationState": "Running",
-    "assignedTo": "secop@contoso.com",
-    "severity": "Low",
-    "status": "New",
-    "classification": "TruePositive",
-    "determination": null,
-    "detectionSource": "WindowsDefenderAtp",
-    "category": "CommandAndControl",
-    "threatFamilyName": null,
-    "title": "Network connection to a risky host",
-    "description": "A network connection was made to a risky host which has exhibited malicious activity.",
-    "alertCreationTime": "2019-11-03T23:49:45.3823185Z",
-    "firstEventTime": "2019-11-03T23:47:16.2288822Z",
-    "lastEventTime": "2019-11-03T23:47:51.2966758Z",
-    "lastUpdateTime": "2019-11-03T23:55:52.6Z",
-    "resolvedTime": null,
-    "machineId": "986e5df8b73dacd43c8917d17e523e76b13c75cd",
-    "comments": [
-        {
-            "comment": "test comment for docs",
-            "createdBy": "secop@contoso.com",
-            "createdTime": "2019-11-05T14:08:37.8404534Z"
-        }
-    ]
+	"id": "da637472900382838869_1364969609",
+	"incidentId": 1126093,
+	"investigationId": null,
+	"assignedTo": null,
+	"severity": "Low",
+	"status": "New",
+	"classification": null,
+	"determination": null,
+	"investigationState": "Queued",
+	"detectionSource": "WindowsDefenderAtp",
+	"detectorId": "17e10bbc-3a68-474a-8aad-faef14d43952",
+	"category": "Execution",
+	"threatFamilyName": null,
+	"title": "Low-reputation arbitrary code executed by signed executable",
+	"description": "Binaries signed by Microsoft can be used to run low-reputation arbitrary code. This technique hides the execution of malicious code within a trusted process. As a result, the trusted process might exhibit suspicious behaviors, such as opening a listening port or connecting to a command-and-control (C&C) server.",
+	"alertCreationTime": "2021-01-26T20:33:57.7220239Z",
+	"firstEventTime": "2021-01-26T20:31:32.9562661Z",
+	"lastEventTime": "2021-01-26T20:31:33.0577322Z",
+	"lastUpdateTime": "2021-01-26T20:33:59.2Z",
+	"resolvedTime": null,
+	"machineId": "111e6dd8c833c8a052ea231ec1b19adaf497b625",
+	"computerDnsName": "temp123.middleeast.corp.microsoft.com",
+	"rbacGroupName": "A",
+    "aadTenantId": "a839b112-1253-6432-9bf6-94542403f21c",
+	"threatName": null,
+	"mitreTechniques": [
+		"T1064",
+		"T1085",
+		"T1220"
+	],
+	"relatedUser": {
+        "userName": "temp123",
+        "domainName": "MIDDLEEAST"
+    },
+	"comments": [
+		{
+			"comment": "test comment for docs",
+			"createdBy": "secop123@contoso.com",
+			"createdTime": "2021-01-26T01:00:37.8404534Z"
+		}
+	],
+	"evidence": [
+		{
+			"entityType": "User",
+			"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
+			"sha1": null,
+			"sha256": null,
+			"fileName": null,
+			"filePath": null,
+			"processId": null,
+			"processCommandLine": null,
+			"processCreationTime": null,
+			"parentProcessId": null,
+			"parentProcessCreationTime": null,
+			"parentProcessFileName": null,
+			"parentProcessFilePath": null,
+			"ipAddress": null,
+			"url": null,
+			"registryKey": null,
+			"registryHive": null,
+			"registryValueType": null,
+			"registryValue": null,
+			"accountName": "eranb",
+			"domainName": "MIDDLEEAST",
+			"userSid": "S-1-5-21-11111607-1111760036-109187956-75141",
+			"aadUserId": "11118379-2a59-1111-ac3c-a51eb4a3c627",
+			"userPrincipalName": "temp123@microsoft.com",
+			"detectionStatus": null
+		},
+		{
+			"entityType": "Process",
+			"evidenceCreationTime": "2021-01-26T20:33:58.6133333Z",
+			"sha1": "ff836cfb1af40252bd2a2ea843032e99a5b262ed",
+			"sha256": "a4752c71d81afd3d5865d24ddb11a6b0c615062fcc448d24050c2172d2cbccd6",
+			"fileName": "rundll32.exe",
+			"filePath": "C:\\Windows\\SysWOW64",
+			"processId": 3276,
+			"processCommandLine": "rundll32.exe  c:\\temp\\suspicious.dll,RepeatAfterMe",
+			"processCreationTime": "2021-01-26T20:31:32.9581596Z",
+			"parentProcessId": 8420,
+			"parentProcessCreationTime": "2021-01-26T20:31:32.9004163Z",
+			"parentProcessFileName": "rundll32.exe",
+			"parentProcessFilePath": "C:\\Windows\\System32",
+			"ipAddress": null,
+			"url": null,
+			"registryKey": null,
+			"registryHive": null,
+			"registryValueType": null,
+			"registryValue": null,
+			"accountName": null,
+			"domainName": null,
+			"userSid": null,
+			"aadUserId": null,
+			"userPrincipalName": null,
+			"detectionStatus": "Detected"
+		},
+		{
+			"entityType": "File",
+			"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
+			"sha1": "8563f95b2f8a284fc99da44500cd51a77c1ff36c",
+			"sha256": "dc0ade0c95d6db98882bc8fa6707e64353cd6f7767ff48d6a81a6c2aef21c608",
+			"fileName": "suspicious.dll",
+			"filePath": "c:\\temp",
+			"processId": null,
+			"processCommandLine": null,
+			"processCreationTime": null,
+			"parentProcessId": null,
+			"parentProcessCreationTime": null,
+			"parentProcessFileName": null,
+			"parentProcessFilePath": null,
+			"ipAddress": null,
+			"url": null,
+			"registryKey": null,
+			"registryHive": null,
+			"registryValueType": null,
+			"registryValue": null,
+			"accountName": null,
+			"domainName": null,
+			"userSid": null,
+			"aadUserId": null,
+			"userPrincipalName": null,
+			"detectionStatus": "Detected"
+		}
+	]
 }
 ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 8200dc8a47..51e3dc8790 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -41,7 +41,8 @@ ms.technology: mde
 ### 03.01.2021
 <hr>
 
-- Update Alert evidence: added ***detectionStatus***, ***parentProcessFilePath*** and ***parentProcessFileName***.
+- Updated Alert evidence: added ***detectionStatus***, ***parentProcessFilePath*** and ***parentProcessFileName*** properties.
+- Updated [Alert entity](alerts.md): added ***detectorId*** property.
 
 <br>
 <br>
@@ -49,15 +50,16 @@ ms.technology: mde
 ### 15.12.2020
 <hr>
 
-- Updated [Device](machine.md) entity with IP Interfaces. See [List devices](get-machines.md).
+- Updated [Device](machine.md) entity: added ***IpInterfaces*** list. See [List devices](get-machines.md).
 
 <br>
 <br>
 
-### 04.12.2020
+### 04.11.2020
 <hr>
 
 - Added new API: [Set device value](set-device-value.md).
+- Updated [Device](machine.md) entity: added ***deviceValue*** property.
 
 <br>
 <br>
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index 589c3508f8..504f3e3b49 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -57,75 +57,51 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=ev
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Alerts",
     "value": [
 		{
-			"id": "da637306396589640224_1753239473",
-			"incidentId": 875832,
-			"investigationId": 478434,
+			"id": "da637472900382838869_1364969609",
+			"incidentId": 1126093,
+			"investigationId": null,
 			"assignedTo": null,
 			"severity": "Low",
 			"status": "New",
 			"classification": null,
 			"determination": null,
-			"investigationState": "PendingApproval",
-			"detectionSource": "WindowsDefenderAv",
-			"category": "UnwantedSoftware",
-			"threatFamilyName": "InstallCore",
-			"title": "An active 'InstallCore' unwanted software was detected",
-			"description": "Potentially unwanted applications (PUA) often impact productivity and performance and are often unwanted in enterprise environments. This category of applications include torrent downloaders, cryptocurrency miners, browser advertising software, and evasion software.\n\nAn application is considered active if it is found running on the machine or it already has persistence mechanisms in place.\n\nBecause this PUA was active, take precautionary measures and check for residual signs of infection.",
-			"alertCreationTime": "2020-07-18T03:27:38.9483995Z",
-			"firstEventTime": "2020-07-18T03:25:39.6124549Z",
-			"lastEventTime": "2020-07-18T03:26:18.4362304Z",
-			"lastUpdateTime": "2020-07-18T03:28:19.76Z",
+			"investigationState": "Queued",
+			"detectionSource": "WindowsDefenderAtp",
+			"detectorId": "17e10bbc-3a68-474a-8aad-faef14d43952",
+			"category": "Execution",
+			"threatFamilyName": null,
+			"title": "Low-reputation arbitrary code executed by signed executable",
+			"description": "Binaries signed by Microsoft can be used to run low-reputation arbitrary code. This technique hides the execution of malicious code within a trusted process. As a result, the trusted process might exhibit suspicious behaviors, such as opening a listening port or connecting to a command-and-control (C&C) server.",
+			"alertCreationTime": "2021-01-26T20:33:57.7220239Z",
+			"firstEventTime": "2021-01-26T20:31:32.9562661Z",
+			"lastEventTime": "2021-01-26T20:31:33.0577322Z",
+			"lastUpdateTime": "2021-01-26T20:33:59.2Z",
 			"resolvedTime": null,
-			"machineId": "97868b864dc8fa09cc8726c37a1fcd8ab582f3aa",
-			"computerDnsName": "temp2.redmond.corp.microsoft.com",
-			"rbacGroupName": "Ring0",
-			"aadTenantId": "12f988bf-1234-1234-91ab-2d7cd011db47",
+			"machineId": "111e6dd8c833c8a052ea231ec1b19adaf497b625",
+			"computerDnsName": "temp123.middleeast.corp.microsoft.com",
+			"rbacGroupName": "A",
+            "aadTenantId": "a839b112-1253-6432-9bf6-94542403f21c",
+			"threatName": null,
+			"mitreTechniques": [
+				"T1064",
+				"T1085",
+				"T1220"
+			],
 			"relatedUser": {
-				"userName": "temp2",
-				"domainName": "REDMOND"
-			},
-			"comments": [],
+                "userName": "temp123",
+                "domainName": "MIDDLEEAST"
+            },
+			"comments": [
+				{
+					"comment": "test comment for docs",
+					"createdBy": "secop123@contoso.com",
+					"createdTime": "2021-01-26T01:00:37.8404534Z"
+				}
+			],
 			"evidence": [
-				{
-					"entityType": "File",
-					"sha1": "ff02786682af8a6ae2842b64c8da543c4d76823c",
-					"sha256": "16dafd771171b619a472bb23cd55bc069625be8de5ee01b37b41de1216b2bbb2",
-					"fileName": "Your File Is Ready To Download_1911150169.exe",
-					"filePath": "C:\\Users\\temp2\\Downloads",
-					"processId": null,
-					"processCommandLine": null,
-					"processCreationTime": null,
-					"parentProcessId": null,
-					"parentProcessCreationTime": null,
-					"ipAddress": null,
-					"url": null,
-					"accountName": null,
-					"domainName": null,
-					"userSid": null,
-					"aadUserId": null,
-					"userPrincipalName": null
-				},
-				{
-					"entityType": "Process",
-					"sha1": "ff02786682af8a6ae2842b64c8da543c4d76823c",
-					"sha256": "16dafd771171b619a472bb23cd55bc069625be8de5ee01b37b41de1216b2bbb2",
-					"fileName": "Your File Is Ready To Download_1911150169.exe",
-					"filePath": "C:\\Users\\temp2\\Downloads",
-					"processId": 24348,
-					"processCommandLine": "\"Your File Is Ready To Download_1911150169.exe\" ",
-					"processCreationTime": "2020-07-18T03:25:38.5269993Z",
-					"parentProcessId": 16840,
-					"parentProcessCreationTime": "2020-07-18T02:12:32.8616797Z",
-					"ipAddress": null,
-					"url": null,
-					"accountName": null,
-					"domainName": null,
-					"userSid": null,
-					"aadUserId": null,
-					"userPrincipalName": null
-				},
 				{
 					"entityType": "User",
+					"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
 					"sha1": null,
 					"sha256": null,
 					"fileName": null,
@@ -135,13 +111,74 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=ev
 					"processCreationTime": null,
 					"parentProcessId": null,
 					"parentProcessCreationTime": null,
+					"parentProcessFileName": null,
+					"parentProcessFilePath": null,
 					"ipAddress": null,
 					"url": null,
-					"accountName": "temp2",
-					"domainName": "REDMOND",
-					"userSid": "S-1-5-21-1127532184-1642412920-1887927527-75363",
-					"aadUserId": "319dc320-4ce3-4cd7-a0de-c476d146342d",
-					"userPrincipalName": "temp2@microsoft.com"
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": "eranb",
+					"domainName": "MIDDLEEAST",
+					"userSid": "S-1-5-21-11111607-1111760036-109187956-75141",
+					"aadUserId": "11118379-2a59-1111-ac3c-a51eb4a3c627",
+					"userPrincipalName": "temp123@microsoft.com",
+					"detectionStatus": null
+				},
+				{
+					"entityType": "Process",
+					"evidenceCreationTime": "2021-01-26T20:33:58.6133333Z",
+					"sha1": "ff836cfb1af40252bd2a2ea843032e99a5b262ed",
+					"sha256": "a4752c71d81afd3d5865d24ddb11a6b0c615062fcc448d24050c2172d2cbccd6",
+					"fileName": "rundll32.exe",
+					"filePath": "C:\\Windows\\SysWOW64",
+					"processId": 3276,
+					"processCommandLine": "rundll32.exe  c:\\temp\\suspicious.dll,RepeatAfterMe",
+					"processCreationTime": "2021-01-26T20:31:32.9581596Z",
+					"parentProcessId": 8420,
+					"parentProcessCreationTime": "2021-01-26T20:31:32.9004163Z",
+					"parentProcessFileName": "rundll32.exe",
+					"parentProcessFilePath": "C:\\Windows\\System32",
+					"ipAddress": null,
+					"url": null,
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": null,
+					"domainName": null,
+					"userSid": null,
+					"aadUserId": null,
+					"userPrincipalName": null,
+					"detectionStatus": "Detected"
+				},
+				{
+					"entityType": "File",
+					"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
+					"sha1": "8563f95b2f8a284fc99da44500cd51a77c1ff36c",
+					"sha256": "dc0ade0c95d6db98882bc8fa6707e64353cd6f7767ff48d6a81a6c2aef21c608",
+					"fileName": "suspicious.dll",
+					"filePath": "c:\\temp",
+					"processId": null,
+					"processCommandLine": null,
+					"processCreationTime": null,
+					"parentProcessId": null,
+					"parentProcessCreationTime": null,
+					"parentProcessFileName": null,
+					"parentProcessFilePath": null,
+					"ipAddress": null,
+					"url": null,
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": null,
+					"domainName": null,
+					"userSid": null,
+					"aadUserId": null,
+					"userPrincipalName": null,
+					"detectionStatus": "Detected"
 				}
 			]
 		},
@@ -188,6 +225,12 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$filter=lastUpdate
             "computerDnsName": "temp123.middleeast.corp.microsoft.com",
             "rbacGroupName": "MiddleEast",
             "aadTenantId": "a839b112-1253-6432-9bf6-94542403f21c",
+			"threatName": null,
+			"mitreTechniques": [
+				"T1064",
+				"T1085",
+				"T1220"
+			],
             "relatedUser": {
                 "userName": "temp123",
                 "domainName": "MIDDLEEAST"
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
index eb0067b2ba..47af279049 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
@@ -128,6 +128,12 @@ Here is an example of the response.
             "computerDnsName": "temp123.middleeast.corp.microsoft.com",
             "rbacGroupName": "MiddleEast",
             "aadTenantId": "a839b112-1253-6432-9bf6-94542403f21c",
+			"threatName": null,
+			"mitreTechniques": [
+				"T1064",
+				"T1085",
+				"T1220"
+			],
             "relatedUser": {
                 "userName": "temp123",
                 "domainName": "MIDDLEEAST"
@@ -170,75 +176,51 @@ Here is an example of the response.
     "@odata.context": "https://api.securitycenter.microsoft.com/api/$metadata#Alerts",
     "value": [
 		{
-			"id": "da637306396589640224_1753239473",
-			"incidentId": 875832,
-			"investigationId": 478434,
+			"id": "da637472900382838869_1364969609",
+			"incidentId": 1126093,
+			"investigationId": null,
 			"assignedTo": null,
 			"severity": "Low",
 			"status": "New",
 			"classification": null,
 			"determination": null,
-			"investigationState": "PendingApproval",
-			"detectionSource": "WindowsDefenderAv",
-			"category": "UnwantedSoftware",
-			"threatFamilyName": "InstallCore",
-			"title": "An active 'InstallCore' unwanted software was detected",
-			"description": "Potentially unwanted applications (PUA) often impact productivity and performance and are often unwanted in enterprise environments. This category of applications include torrent downloaders, cryptocurrency miners, browser advertising software, and evasion software.\n\nAn application is considered active if it is found running on the machine or it already has persistence mechanisms in place.\n\nBecause this PUA was active, take precautionary measures and check for residual signs of infection.",
-			"alertCreationTime": "2020-07-18T03:27:38.9483995Z",
-			"firstEventTime": "2020-07-18T03:25:39.6124549Z",
-			"lastEventTime": "2020-07-18T03:26:18.4362304Z",
-			"lastUpdateTime": "2020-07-18T03:28:19.76Z",
+			"investigationState": "Queued",
+			"detectionSource": "WindowsDefenderAtp",
+			"detectorId": "17e10bbc-3a68-474a-8aad-faef14d43952",
+			"category": "Execution",
+			"threatFamilyName": null,
+			"title": "Low-reputation arbitrary code executed by signed executable",
+			"description": "Binaries signed by Microsoft can be used to run low-reputation arbitrary code. This technique hides the execution of malicious code within a trusted process. As a result, the trusted process might exhibit suspicious behaviors, such as opening a listening port or connecting to a command-and-control (C&C) server.",
+			"alertCreationTime": "2021-01-26T20:33:57.7220239Z",
+			"firstEventTime": "2021-01-26T20:31:32.9562661Z",
+			"lastEventTime": "2021-01-26T20:31:33.0577322Z",
+			"lastUpdateTime": "2021-01-26T20:33:59.2Z",
 			"resolvedTime": null,
-			"machineId": "97868b864dc8fa09cc8726c37a1fcd8ab582f3aa",
-			"computerDnsName": "temp2.redmond.corp.microsoft.com",
-			"rbacGroupName": "Ring0",
-			"aadTenantId": "12f988bf-1234-1234-91ab-2d7cd011db47",
+			"machineId": "111e6dd8c833c8a052ea231ec1b19adaf497b625",
+			"computerDnsName": "temp123.middleeast.corp.microsoft.com",
+			"rbacGroupName": "A",
+            "aadTenantId": "a839b112-1253-6432-9bf6-94542403f21c",
+			"threatName": null,
+			"mitreTechniques": [
+				"T1064",
+				"T1085",
+				"T1220"
+			],
 			"relatedUser": {
-				"userName": "temp2",
-				"domainName": "REDMOND"
-			},
-			"comments": [],
+                "userName": "temp123",
+                "domainName": "MIDDLEEAST"
+            },
+			"comments": [
+				{
+					"comment": "test comment for docs",
+					"createdBy": "secop123@contoso.com",
+					"createdTime": "2021-01-26T01:00:37.8404534Z"
+				}
+			],
 			"evidence": [
-				{
-					"entityType": "File",
-					"sha1": "ff02786682af8a6ae2842b64c8da543c4d76823c",
-					"sha256": "16dafd771171b619a472bb23cd55bc069625be8de5ee01b37b41de1216b2bbb2",
-					"fileName": "Your File Is Ready To Download_1911150169.exe",
-					"filePath": "C:\\Users\\temp2\\Downloads",
-					"processId": null,
-					"processCommandLine": null,
-					"processCreationTime": null,
-					"parentProcessId": null,
-					"parentProcessCreationTime": null,
-					"ipAddress": null,
-					"url": null,
-					"accountName": null,
-					"domainName": null,
-					"userSid": null,
-					"aadUserId": null,
-					"userPrincipalName": null
-				},
-				{
-					"entityType": "Process",
-					"sha1": "ff02786682af8a6ae2842b64c8da543c4d76823c",
-					"sha256": "16dafd771171b619a472bb23cd55bc069625be8de5ee01b37b41de1216b2bbb2",
-					"fileName": "Your File Is Ready To Download_1911150169.exe",
-					"filePath": "C:\\Users\\temp2\\Downloads",
-					"processId": 24348,
-					"processCommandLine": "\"Your File Is Ready To Download_1911150169.exe\" ",
-					"processCreationTime": "2020-07-18T03:25:38.5269993Z",
-					"parentProcessId": 16840,
-					"parentProcessCreationTime": "2020-07-18T02:12:32.8616797Z",
-					"ipAddress": null,
-					"url": null,
-					"accountName": null,
-					"domainName": null,
-					"userSid": null,
-					"aadUserId": null,
-					"userPrincipalName": null
-				},
 				{
 					"entityType": "User",
+					"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
 					"sha1": null,
 					"sha256": null,
 					"fileName": null,
@@ -248,13 +230,74 @@ Here is an example of the response.
 					"processCreationTime": null,
 					"parentProcessId": null,
 					"parentProcessCreationTime": null,
+					"parentProcessFileName": null,
+					"parentProcessFilePath": null,
 					"ipAddress": null,
 					"url": null,
-					"accountName": "temp2",
-					"domainName": "REDMOND",
-					"userSid": "S-1-5-21-1127532184-1642412920-1887927527-75363",
-					"aadUserId": "319dc320-4ce3-4cd7-a0de-c476d146342d",
-					"userPrincipalName": "temp2@microsoft.com"
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": "eranb",
+					"domainName": "MIDDLEEAST",
+					"userSid": "S-1-5-21-11111607-1111760036-109187956-75141",
+					"aadUserId": "11118379-2a59-1111-ac3c-a51eb4a3c627",
+					"userPrincipalName": "temp123@microsoft.com",
+					"detectionStatus": null
+				},
+				{
+					"entityType": "Process",
+					"evidenceCreationTime": "2021-01-26T20:33:58.6133333Z",
+					"sha1": "ff836cfb1af40252bd2a2ea843032e99a5b262ed",
+					"sha256": "a4752c71d81afd3d5865d24ddb11a6b0c615062fcc448d24050c2172d2cbccd6",
+					"fileName": "rundll32.exe",
+					"filePath": "C:\\Windows\\SysWOW64",
+					"processId": 3276,
+					"processCommandLine": "rundll32.exe  c:\\temp\\suspicious.dll,RepeatAfterMe",
+					"processCreationTime": "2021-01-26T20:31:32.9581596Z",
+					"parentProcessId": 8420,
+					"parentProcessCreationTime": "2021-01-26T20:31:32.9004163Z",
+					"parentProcessFileName": "rundll32.exe",
+					"parentProcessFilePath": "C:\\Windows\\System32",
+					"ipAddress": null,
+					"url": null,
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": null,
+					"domainName": null,
+					"userSid": null,
+					"aadUserId": null,
+					"userPrincipalName": null,
+					"detectionStatus": "Detected"
+				},
+				{
+					"entityType": "File",
+					"evidenceCreationTime": "2021-01-26T20:33:58.42Z",
+					"sha1": "8563f95b2f8a284fc99da44500cd51a77c1ff36c",
+					"sha256": "dc0ade0c95d6db98882bc8fa6707e64353cd6f7767ff48d6a81a6c2aef21c608",
+					"fileName": "suspicious.dll",
+					"filePath": "c:\\temp",
+					"processId": null,
+					"processCommandLine": null,
+					"processCreationTime": null,
+					"parentProcessId": null,
+					"parentProcessCreationTime": null,
+					"parentProcessFileName": null,
+					"parentProcessFilePath": null,
+					"ipAddress": null,
+					"url": null,
+					"registryKey": null,
+					"registryHive": null,
+					"registryValueType": null,
+					"registryValue": null,
+					"accountName": null,
+					"domainName": null,
+					"userSid": null,
+					"aadUserId": null,
+					"userPrincipalName": null,
+					"detectionStatus": "Detected"
 				}
 			]
 		},

From 599ddc7daa6d8f72b29d51178627286f09df0972 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 20:17:00 +0200
Subject: [PATCH 741/825] 1

---
 .../microsoft-defender-atp/api-release-notes.md           | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 51e3dc8790..43a133a98d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -26,7 +26,6 @@ ms.technology: mde
 
 - Updated rate limitations for [Hunting API](run-advanced-query-api.md) to 45 requests per minute. 
 
-<br>
 <br>
 
 ### 21.01.2021
@@ -35,7 +34,6 @@ ms.technology: mde
 - Added new API: [Find devices by tag](machine-tags.md). 
 - Added new API: [Import Indicators](import-ti-indicators.md). 
 
-<br>
 <br>
 
 ### 03.01.2021
@@ -44,7 +42,6 @@ ms.technology: mde
 - Updated Alert evidence: added ***detectionStatus***, ***parentProcessFilePath*** and ***parentProcessFileName*** properties.
 - Updated [Alert entity](alerts.md): added ***detectorId*** property.
 
-<br>
 <br>
 
 ### 15.12.2020
@@ -52,7 +49,6 @@ ms.technology: mde
 
 - Updated [Device](machine.md) entity: added ***IpInterfaces*** list. See [List devices](get-machines.md).
 
-<br>
 <br>
 
 ### 04.11.2020
@@ -61,10 +57,12 @@ ms.technology: mde
 - Added new API: [Set device value](set-device-value.md).
 - Updated [Device](machine.md) entity: added ***deviceValue*** property.
 
-<br>
 <br>
 
 ### 01.09.2020
 <hr>
 
 - Added option to expand the Alert entity with its related Evidence. See [List Alerts](get-alerts.md)
+
+<br>
+<br>
\ No newline at end of file

From 8d66bba38052d0c40a29a928203e9df21f6446b9 Mon Sep 17 00:00:00 2001
From: Ben Alfasi <bealfasi@microsoft.com>
Date: Thu, 28 Jan 2021 20:28:30 +0200
Subject: [PATCH 742/825] 1

---
 .../security/threat-protection/microsoft-defender-atp/alerts.md | 1 -
 .../microsoft-defender-atp/api-release-notes.md                 | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index 165692fb02..ffa3cd11ee 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -70,7 +70,6 @@ category| String | Category of the alert.
 detectionSource | String | Detection source.
 threatFamilyName | String | Threat family.
 threatName | String | Threat name.
-threatName | String | Threat name.
 machineId | String | ID of a [machine](machine.md) entity that is associated with the alert.
 computerDnsName | String | [machine](machine.md) fully qualified name.
 aadTenantId | String | The Azure Active Directory ID.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 43a133a98d..6689e36c5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -24,7 +24,7 @@ ms.technology: mde
 ### 25.01.2021
 <hr>
 
-- Updated rate limitations for [Hunting API](run-advanced-query-api.md) to 45 requests per minute. 
+- Updated rate limitations for [Advanced Hunting API](run-advanced-query-api.md) from 15 to 45 requests per minute. 
 
 <br>
 

From 2d5030b41f663590154cdf47afb85ecce5a101db Mon Sep 17 00:00:00 2001
From: Jane Muriranja <68369324+JaneM-02@users.noreply.github.com>
Date: Thu, 28 Jan 2021 22:55:56 +0300
Subject: [PATCH 743/825] Update manage-windows-2004-endpoints.md

Adding 'adl.windows.com'
---
 windows/privacy/manage-windows-2004-endpoints.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/privacy/manage-windows-2004-endpoints.md b/windows/privacy/manage-windows-2004-endpoints.md
index c6f1fd140f..aea5913427 100644
--- a/windows/privacy/manage-windows-2004-endpoints.md
+++ b/windows/privacy/manage-windows-2004-endpoints.md
@@ -113,6 +113,7 @@ The following methodology was used to derive these network endpoints:
 |||HTTP|*.windowsupdate.com|
 ||The following endpoints enable connections to Windows Update, Microsoft Update, and the online services of the Store. If you turn off traffic for these endpoints, the device will not be able to connect to Windows Update and Microsoft Update to help keep the device secure. Also, the device will not be able to acquire and update apps from the Store. These are dependent on also enabling "Device authentication" and "Microsoft Account" endpoints.|HTTPS|*.delivery.mp.microsoft.com|
 |||TLSv1.2|*.update.microsoft.com|
+||The following endpoint is used for compatibility database updates for Windows.|HTTP|adl.windows.com|
 ||The following endpoint is used for content regulation. If you turn off traffic for this endpoint, the Windows Update Agent will be unable to contact the endpoint and fallback behavior will be used. This may result in content being either incorrectly.|TLSv1.2|tsfe.trafficshaping.dsp.mp.microsoft.com|
 |Xbox Live|The following endpoint is used for Xbox Live.||[Learn how to turn off traffic to all of the following endpoint(s).]( manage-connections-from-windows-operating-system-components-to-microsoft-services.md#26-microsoft-store)|
 |||TLSv1.2|dlassets-ssl.xboxlive.com|

From 9a3e2c4ab8c33b4a068c3bf22c6ed69cd58d090f Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 28 Jan 2021 13:13:23 -0800
Subject: [PATCH 744/825] fix warnings

---
 .../microsoft-defender-atp/enable-attack-surface-reduction.md | 2 +-
 .../microsoft-defender-atp/indicator-file.md                  | 4 ++--
 .../microsoft-defender-atp/indicator-ip-domain.md             | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
index 44d58c8d1e..c34737f912 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction.md
@@ -99,7 +99,7 @@ Example:
 
 `OMA-URI path: ./Vendor/MSFT/Policy/Config/Defender/AttackSurfaceReductionOnlyExclusions`
 
-`Value: c:\path|e:\path|c:\Whitelisted.exe`
+`Value: c:\path|e:\path|c:\Exclusions.exe`
 
 > [!NOTE]
 > Be sure to enter OMA-URI values without spaces.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
index be86647e97..78a28933b4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-file.md
@@ -2,7 +2,7 @@
 title: Create indicators for files
 ms.reviewer: 
 description: Create indicators for a file hash that define the detection, prevention, and exclusion of entities.
-keywords: file, hash, manage, allowed, blocked, whitelist, blacklist, block, clean, malicious, file hash, ip address, urls, domain
+keywords: file, hash, manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security
@@ -39,7 +39,7 @@ There are two ways you can create indicators for files:
 ### Before you begin
 It's important to understand the following prerequisites prior to creating indicators for files:
 
-- This feature is available if your organization uses Windows Defender Antivirus and Cloud-based protection is enabled. For more information, see [Manage cloud-based protection](../windows-defender-antivirus/deploy-manage-report-windows-defender-antivirus.md).
+- This feature is available if your organization uses Windows Defender Antivirus and Cloud-based protection is enabled. For more information, see [Manage cloud-based protection](../microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md).
 - The Antimalware client version must be 4.18.1901.x or later.
 - Supported on machines on Windows 10, version 1703 or later, Windows server 2016 and 2019.
 - To start blocking files, you first need to [turn the **Block or allow** feature on](advanced-features.md) in Settings.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index f238e1f680..2fd5f9cce1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -2,7 +2,7 @@
 title: Create indicators for IPs and URLs/domains
 ms.reviewer: 
 description: Create indicators for IPs and URLs/domains that define the detection, prevention, and exclusion of entities.
-keywords: ip, url, domain, manage, allowed, blocked, whitelist, blacklist, block, clean, malicious, file hash, ip address, urls, domain
+keywords: ip, url, domain, manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: m365-security

From 28e58d56b3539a1fad719b6cbf73bc373a1e8d9c Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 14:56:28 -0800
Subject: [PATCH 745/825] Added label to code block

---
 .../security/threat-protection/microsoft-defender-atp/alerts.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/alerts.md b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
index ffa3cd11ee..da475d40a4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/alerts.md
@@ -79,7 +79,7 @@ Evidence | List of Alert evidence | Evidence related to the alert. See example b
 
 ### Response example for getting single alert:
 
-```
+```http
 GET https://api.securitycenter.microsoft.com/api/alerts/da637472900382838869_1364969609
 ```
 

From 7520c0930bcd2110d525b5dca6055cc0d768fd3e Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 14:56:56 -0800
Subject: [PATCH 746/825] Added missing period

---
 .../microsoft-defender-atp/api-release-notes.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 6689e36c5c..36327643c6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -62,7 +62,7 @@ ms.technology: mde
 ### 01.09.2020
 <hr>
 
-- Added option to expand the Alert entity with its related Evidence. See [List Alerts](get-alerts.md)
+- Added option to expand the Alert entity with its related Evidence. See [List Alerts](get-alerts.md).
 
 <br>
 <br>
\ No newline at end of file

From 100c6d9bc9c72ed8b832ea791b1194b550c8d8d7 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 15:01:43 -0800
Subject: [PATCH 747/825] Added end punctuation

---
 .../exposed-apis-odata-samples.md                    | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
index 504f3e3b49..0d88d39023 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-odata-samples.md
@@ -44,7 +44,7 @@ Not all properties are filterable.
 
 ### Example 1
 
-Get 10 latest Alerts with related Evidence
+Get 10 latest Alerts with related Evidence:
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=evidence
@@ -189,7 +189,7 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$top=10&$expand=ev
 
 ### Example 2
 
-Get all the alerts last updated after 2019-11-22 00:00:00
+Get all the alerts last updated after 2019-11-22 00:00:00:
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$filter=lastUpdateTime+ge+2019-11-22T00:00:00Z
@@ -251,7 +251,7 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/alerts?$filter=lastUpdate
 
 ### Example 3
 
-Get all the devices with 'High' 'RiskScore'
+Get all the devices with 'High' 'RiskScore':
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=riskScore+eq+'High'
@@ -304,7 +304,7 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=riskScor
 
 ### Example 4
 
-Get top 100 devices with 'HealthStatus' not equals to 'Active'
+Get top 100 devices with 'HealthStatus' not equals to 'Active':
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=healthStatus+ne+'Active'&$top=100 
@@ -357,7 +357,7 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=healthSt
 
 ### Example 5
 
-Get all the devices that last seen after 2018-10-20
+Get all the devices that last seen after 2018-10-20:
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=lastSeen gt 2018-08-01Z
@@ -410,7 +410,7 @@ HTTP GET  https://api.securitycenter.microsoft.com/api/machines?$filter=lastSeen
 
 ### Example 6
 
-Get all the Anti-Virus scans that the user Analyst@examples.onmicrosoft.com created using Microsoft Defender for Endpoint
+Get all the Anti-Virus scans that the user Analyst@examples.onmicrosoft.com created using Microsoft Defender for Endpoint:
 
 ```http
 HTTP GET  https://api.securitycenter.microsoft.com/api/machineactions?$filter=requestor eq 'Analyst@contoso.com' and type eq 'RunAntiVirusScan'

From 6de7189a3606f704093641de13b30799e47bcd95 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 15:06:31 -0800
Subject: [PATCH 748/825] Labeled code block

---
 .../microsoft-defender-atp/get-alert-related-machine-info.md   | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
index 1ee033457d..4a56186c19 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
@@ -56,7 +56,8 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 >- The user needs to have access to the device associated with the alert, based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
 
 ## HTTP request
-```
+
+```http
 GET /api/alerts/{id}/machine
 ```
 

From 2524740ebb80195497b5c065a48d2d11786a8af7 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 15:09:38 -0800
Subject: [PATCH 749/825] Added missing end punctuation.

---
 .../microsoft-defender-atp/get-machine-by-id.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
index c754604e60..76dc993182 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
@@ -41,7 +41,7 @@ Retrieves specific [Machine](machine.md) by its device ID or computer name.
 
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md).
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---

From c4dcb999082992535349ecde10c7e51214654f45 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 15:14:11 -0800
Subject: [PATCH 750/825] Replaced br tags with CR/LF, added end punctuation

The block of text looked strange in preview due to the short and wrapped lines.
---
 .../microsoft-defender-atp/get-machines.md          | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
index a36163fc75..44e815ff37 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machines.md
@@ -33,9 +33,12 @@ ms.technology: mde
 
 ## API description
 Retrieves a collection of [Machines](machine.md) that have communicated with  Microsoft Defender for Endpoint cloud.
-<br>Supports [OData V4 queries](https://www.odata.org/documentation/).
-<br>The OData's `$filter` query is supported on: `computerDnsName`, `lastSeen`, `healthStatus`, `osPlatform`, `riskScore` and `rbacGroupId`.
-<br>See examples at [OData queries with Defender for Endpoint](exposed-apis-odata-samples.md)
+
+Supports [OData V4 queries](https://www.odata.org/documentation/).
+
+The OData's `$filter` query is supported on: `computerDnsName`, `lastSeen`, `healthStatus`, `osPlatform`, `riskScore` and `rbacGroupId`.
+
+See examples at [OData queries with Defender for Endpoint](exposed-apis-odata-samples.md).
 
 
 ## Limitations
@@ -55,8 +58,8 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 
 >[!Note]
 > When obtaining a token using user credentials:
->- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
->- Response will include only devices, that the user have access to, based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
+>- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information).
+>- Response will include only devices, that the user have access to, based on device group settings. For more info, see [Create and manage device groups](machine-groups.md).
 
 ## HTTP request
 

From ba506d79807f1d7ebfff3553a238d112aeea3039 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 28 Jan 2021 15:15:57 -0800
Subject: [PATCH 751/825] Labeled code block

---
 .../microsoft-defender-atp/set-device-value.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
index 1164cfc4a4..66e0dfcd99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
@@ -89,7 +89,7 @@ If successful, this method returns 200 - Ok response code and the updated Machin
 
 Here is an example of a request that adds machine tag.
 
-```
+```http
 POST https://api.securitycenter.microsoft.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/setDeviceValue
 ```
 

From 9070c026aada653a5c4953f229221656e3c9eaff Mon Sep 17 00:00:00 2001
From: Matthew Palko <mapalko@microsoft.com>
Date: Thu, 28 Jan 2021 15:17:15 -0800
Subject: [PATCH 752/825] Fixing weird phrasing and list issue

---
 .../hello-for-business/hello-how-it-works.md                  | 4 ++--
 .../hello-for-business/hello-planning-guide.md                | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-how-it-works.md b/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
index 60d7c90219..c9844c3d80 100644
--- a/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
+++ b/windows/security/identity-protection/hello-for-business/hello-how-it-works.md
@@ -21,7 +21,7 @@ ms.reviewer:
 
 - Windows 10
 
-Windows Hello for Business is a modern, two-factor credential that is the more secure alternative to passwords.  Whether you are cloud or on-premises, Windows Hello for Business has a deployment option for you.  For cloud deployments, you can use Windows Hello for Business with Azure Active Directory joined, Hybrid Azure Active Directory joined, or Azure Active Directory registered devices.  Windows Hello for Business also works for domain joined devices.
+Windows Hello for Business is a modern, two-factor credential that is the more secure alternative to passwords. Whether you are cloud or on-premises, Windows Hello for Business has a deployment option for you. For cloud deployments, you can use Windows Hello for Business with Azure Active Directory joined, Hybrid Azure Active Directory joined, or Azure Active Directory registered devices. Windows Hello for Business also works for domain joined devices.
 
 Watch this quick video where Pieter Wigleven gives a simple explanation of how Windows Hello for Business works and some of its supporting features.
 > [!VIDEO https://www.youtube.com/embed/G-GJuDWbBE8]
@@ -48,7 +48,7 @@ For more information read [how provisioning works](hello-how-it-works-provisioni
 
 ### Authentication
 
-Authentication using Windows Hello for Business is the goal, and the first step in getting to a passwordless environment. With the device registered, and provisioning complete. Users can sign-in to Windows 10 using biometrics or a PIN. PIN is the most common gesture and is available on most computers and devices. Regardless of the gesture used, authentication occurs using the private portion of the Windows Hello for Business credential. The PIN nor the private portion of the credential are never sent to the identity provider, and the PIN is not stored on the device. It is user provided entropy when performing operations that use the private portion of the credential.
+With the device registered and provisioning complete, users can sign-in to Windows 10 using biometrics or a PIN. PIN is the most common gesture and is available on all computers unless restricted by policy requiring a TPM. Regardless of the gesture used, authentication occurs using the private portion of the Windows Hello for Business credential. Neither the PIN nor the private portion of the credential are ever sent to the identity provider, and the PIN is not stored on the device. It is user provided entropy when performing operations that use the private portion of the credential.
 
 Watch Matthew Palko and Ravi Vennapusa explain how Windows Hello for Business authentication works.
 
diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 260676b71b..0d50683cf6 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -45,7 +45,7 @@ There are six major categories you need to consider for a Windows Hello for Busi
 - Client
 - Management
 - Active Directory
--Public Key Infrastructure
+- Public Key Infrastructure
 - Cloud
 
 ### Baseline Prerequisites

From b7b092458eb9f5300d4ce03928a4750192d8a85b Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 28 Jan 2021 16:41:12 -0800
Subject: [PATCH 753/825] remove config score

---
 .../microsoft-defender-atp/tvm-security-recommendation.md       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 5ec3a45841..442c78a35a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -105,7 +105,7 @@ From the flyout, you can choose any of the following options:
 
 ### Investigate changes in device exposure or impact
 
-If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and configuration score, then that security recommendation is worth investigating.
+If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and Microsoft Secure Score for Devices, then that security recommendation is worth investigating.
 
 1. Select the recommendation and **Open software page**
 2. Select the **Event timeline** tab to view all the impactful events related to that software, such as new vulnerabilities or new public exploits. [Learn more about event timeline](threat-and-vuln-mgt-event-timeline.md)

From 098fadffe74b309909c6a4de723156a405223a0e Mon Sep 17 00:00:00 2001
From: Kurt Sarens <56369685+kurtsarens@users.noreply.github.com>
Date: Fri, 29 Jan 2021 17:22:30 +0100
Subject: [PATCH 754/825] Update indicator-ip-domain.md

indicators are also supported on iOS
---
 .../microsoft-defender-atp/indicator-ip-domain.md                | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 2fd5f9cce1..bfa5bf0c44 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -46,6 +46,7 @@ It's important to understand the following prerequisites prior to creating indic
 - The Antimalware client version must be 4.18.1906.x or later. 
 - Supported on machines on Windows 10, version 1709 or later. 
 - Ensure that **Custom network indicators** is enabled in **Microsoft Defender Security Center > Settings > Advanced features**. For more information, see [Advanced features](advanced-features.md).
+- For support of indicators on iOS, please [see](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators)
 
 
 >[!IMPORTANT]

From c31f98e043441b191c772b23559fdcdfb751e3d8 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 29 Jan 2021 20:03:13 +0200
Subject: [PATCH 755/825] Update pull-alerts-using-rest-api.md

Fixing numbers that are written as strings in the example.
https://github.com/MicrosoftDocs/windows-itpro-docs/issues/9037
---
 .../microsoft-defender-atp/pull-alerts-using-rest-api.md  | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index 035be361f5..0b426b8e0d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -84,10 +84,10 @@ The response will include an access token and expiry information.
 ```json
 {
   "token_type": "Bearer",
-  "expires_in": "3599",
-  "ext_expires_in": "0",
-  "expires_on": "1488720683",
-  "not_before": "1488720683",
+  "expires_in": 3599,
+  "ext_expires_in": 0,
+  "expires_on": 1488720683,
+  "not_before": 1488720683,
   "resource": "https://graph.windows.net",
   "access_token":"eyJ0eXaioJJOIneiowiouqSuzNiZ345FYOVkaJL0625TueyaJasjhIjEnbMlWqP..."
 }

From 3d28a9ee0d231981a95413a9aa2566403ae91c17 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Fri, 29 Jan 2021 20:09:53 +0200
Subject: [PATCH 756/825] Update pull-alerts-using-rest-api.md

Acrolinx.
---
 .../microsoft-defender-atp/pull-alerts-using-rest-api.md    | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index 0b426b8e0d..49d143d897 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -1,6 +1,6 @@
 ---
 title: Pull Microsoft Defender for Endpoint detections using REST API
-description: Learn how call an Microsoft Defender for Endpoint API endpoint to pull detections in JSON format using the SIEM REST API.
+description: Learn how to call a Microsoft Defender for Endpoint API endpoint to pull detections in JSON format using the SIEM REST API.
 keywords: detections, pull detections, rest api, request, response
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -67,7 +67,7 @@ Use the following method in the Microsoft Defender for Endpoint API to pull dete
 ## Get an access token
 Before creating calls to the endpoint, you'll need to get an access token.
 
-You'll use the access token to access the protected resource, which are detections in Microsoft Defender for Endpoint.
+You'll use the access token to access the protected resource, which is detections in Microsoft Defender for Endpoint.
 
 To get an access token, you'll need to do a POST request to the token issuing endpoint. Here is a sample request:
 
@@ -115,7 +115,7 @@ Name | Value| Description
 :---|:---|:---
 sinceTimeUtc | DateTime | Defines the lower time bound alerts are retrieved from, based on field: <br> `LastProcessedTimeUtc` <br> The time range will be: from sinceTimeUtc time to current time. <br><br> **NOTE**: When not specified, all alerts generated in the last two hours are retrieved.
 untilTimeUtc | DateTime | Defines the upper time bound alerts are retrieved. <br> The time range will be: from `sinceTimeUtc` time to `untilTimeUtc` time. <br><br> **NOTE**: When not specified, the default value will be the current time.
-ago | string | Pulls alerts in the following time range: from `(current_time - ago)` time to `current_time` time. <br><br> Value should be set according to **ISO 8601** duration format <br> E.g. `ago=PT10M` will pull alerts received in the last 10 minutes.
+ago | string | Pulls alerts in the following time range: from `(current_time - ago)` time to `current_time` time. <br><br> Value should be set according to **ISO 8601** duration format <br> Example: `ago=PT10M` will pull alerts received in the last 10 minutes.
 limit | int | Defines the number of alerts to be retrieved. Most recent alerts will be retrieved based on the number defined.<br><br> **NOTE**: When not specified, all alerts available in the time range will be retrieved.
 machinegroups | string | Specifies device groups to pull alerts from. <br><br> **NOTE**: When not specified, alerts from all device groups will be retrieved. <br><br> Example: <br><br> ```https://wdatp-alertexporter-eu.securitycenter.windows.com/api/Alerts/?machinegroups=UKMachines&machinegroups=FranceMachines```
 DeviceCreatedMachineTags | string | Single device tag from the registry.

From 236497f1a20efa5048a868c70296b4951eaf78c0 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Fri, 29 Jan 2021 14:09:12 -0800
Subject: [PATCH 757/825] Labeled code blocks, added some vertical spacing

---
 .../feature-multifactor-unlock.md             | 140 +++++++++++-------
 1 file changed, 89 insertions(+), 51 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md b/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
index da9b1c7c1e..e6e5fa20c1 100644
--- a/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
+++ b/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock.md
@@ -83,15 +83,17 @@ For example, if you include the PIN and fingerprint credential providers in both
 The **Signal rules for device unlock** setting contains the rules the Trusted Signal credential provider uses to satisfy unlocking the device.
 
 ### Rule element
-You represent signal rules in XML.  Each signal rule has an starting and ending **rule** element that contains the **schemaVersion** attribute and value.  The current supported schema version is 1.0.<br>
+You represent signal rules in XML.  Each signal rule has an starting and ending **rule** element that contains the **schemaVersion** attribute and value.  The current supported schema version is 1.0.
+
 **Example**
-```
+```xml
 <rule schemaVersion="1.0">
 </rule>
 ```
 
 ### Signal element
-Each rule element has a **signal** element.  All signal elements have a **type** element and value.  Windows 10, version 1709 supports the **ipConfig** and **bluetooth** type values.<br>
+Each rule element has a **signal** element.  All signal elements have a **type** element and value.  Windows 10, version 1709 supports the **ipConfig** and **bluetooth** type values.
+
 
 |Attribute|Value|
 |---------|-----|
@@ -109,8 +111,8 @@ You define the bluetooth signal with additional attributes in the signal element
 |rssiMin|"*number*"|no|
 |rssiMaxDelta|"*number*"|no|
 
-Example:
-```
+**Example**
+```xml
 <rule schemaVersion="1.0">
     <signal type="bluetooth" scenario="Authentication" classOfDevice="512" rssiMin="-10" rssiMaxDelta="-10"/>
 </rule>
@@ -142,63 +144,76 @@ RSSI measurements are relative and lower as the bluetooth signals between the tw
 You define IP configuration signals using one or more ipConfiguration elements.  Each element has a string value.  IpConfiguration elements do not have attributes or nested elements.
 
 ##### IPv4Prefix
-The IPv4 network prefix represented in Internet standard dotted-decimal notation. A network prefix that uses the Classless Inter-Domain Routing (CIDR) notation is required as part of the network string. A network port must not be present in the network string.  A **signal** element may only contain one **ipv4Prefix** element.<br>
+The IPv4 network prefix represented in Internet standard dotted-decimal notation. A network prefix that uses the Classless Inter-Domain Routing (CIDR) notation is required as part of the network string. A network port must not be present in the network string.  A **signal** element may only contain one **ipv4Prefix** element.
+
 **Example**
-```
+```xml
 <ipv4Prefix>192.168.100.0/24</ipv4Prefix>
 ```
+
 The assigned IPv4 addresses in the range of 192.168.100.1 to 192.168.100.254 match this signal configuration.
 
 ##### IPv4Gateway
-The IPv4 network gateway represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv4Gateway** element.<br>
+The IPv4 network gateway represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv4Gateway** element.
+
 **Example**
-```
+```xml
 <ipv4Gateway>192.168.100.10</ipv4Gateway>
 ```
+
 ##### IPv4DhcpServer
-The IPv4 DHCP server represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv4DhcpServer** element.<br>
+The IPv4 DHCP server represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv4DhcpServer** element.
+
 **Example**
-```
+```xml
 <ipv4DhcpServer>192.168.100.10</ipv4DhcpServer>
 ```
+
 ##### IPv4DnsServer
-The IPv4 DNS server represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.The **signal** element may contain one or more **ipv4DnsServer** elements.<br>
+The IPv4 DNS server represented in Internet standard dotted-decimal notation. A network port or prefix must not be present in the network string.The **signal** element may contain one or more **ipv4DnsServer** elements.
+
 **Example:**
-```
+```xml
 <ipv4DnsServer>192.168.100.10</ipv4DnsServer>
 ```
 
 ##### IPv6Prefix
-The IPv6 network prefix represented in IPv6 network using Internet standard hexadecimal encoding. A network prefix in CIDR notation is required as part of the network string. A network port or scope ID must not be present in the network string.  A **signal** element may only contain one **ipv6Prefix** element.<br>
+The IPv6 network prefix represented in IPv6 network using Internet standard hexadecimal encoding. A network prefix in CIDR notation is required as part of the network string. A network port or scope ID must not be present in the network string.  A **signal** element may only contain one **ipv6Prefix** element.
+
 **Example** 
-```
+```xml
 <ipv6Prefix>21DA:D3::/48</ipv6Prefix>
 ```
 
 ##### IPv6Gateway
-The IPv6 network gateway represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv6Gateway** element.<br>
+The IPv6 network gateway represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv6Gateway** element.
+
 **Example** 
-```
+```xml
 <ipv6Gateway>21DA:00D3:0000:2F3B:02AA:00FF:FE28:9C5A%2</ipv6Gateway>
 ```
 
 ##### IPv6DhcpServer
-The IPv6 DNS server represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv6DhcpServer** element.<br>
+The IPv6 DNS server represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string.  A **signal** element may only contain one **ipv6DhcpServer** element.
+
 **Example**
-```
+```xml
 <ipv6DhcpServer>21DA:00D3:0000:2F3B:02AA:00FF:FE28:9C5A%2</ipv6DhcpServer
 ```
 
 ##### IPv6DnsServer
-The IPv6 DNS server represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string. The **signal** element may contain one or more **ipv6DnsServer** elements.<br>
+The IPv6 DNS server represented in Internet standard hexadecimal encoding. An IPv6 scope ID may be present in the network string. A network port or prefix must not be present in the network string. The **signal** element may contain one or more **ipv6DnsServer** elements.
+
 **Example**
-```
+```xml
 <ipv6DnsServer>21DA:00D3:0000:2F3B:02AA:00FF:FE28:9C5A%2</ipv6DnsServer>
 ```
+
 ##### dnsSuffix
-The fully qualified domain name of your organization's internal DNS suffix where any part of the fully qualified domain name in this setting exists in the computer's primary DNS suffix.  The **signal** element may contain one or more **dnsSuffix** elements.<br>
+The fully qualified domain name of your organization's internal DNS suffix where any part of the fully qualified domain name in this setting exists in the computer's primary DNS suffix.  The **signal** element may contain one or more **dnsSuffix** elements.
+
 **Example**
-```
+```xml
 <dnsSuffix>corp.contoso.com</dnsSuffix>
 ```
 
@@ -210,15 +225,17 @@ The fully qualified domain name of your organization's internal DNS suffix where
 You define Wi-Fi signals using one or more wifi elements.  Each element has a string value.  Wifi elements do not have attributes or nested elements.
 
 #### SSID
-Contains the service set identifier (SSID) of a wireless network.  The SSID is the name of the wireless network.  The SSID element is required.<br>
-```
+Contains the service set identifier (SSID) of a wireless network.  The SSID is the name of the wireless network.  The SSID element is required.
+
+```xml
 <ssid>corpnetwifi</ssid>
 ```
 
 #### BSSID
-Contains the basic service set identifier (BSSID) of a wireless access point.  the BSSID is the mac address of the wireless access point.  The BSSID element is optional.<br>
+Contains the basic service set identifier (BSSID) of a wireless access point.  the BSSID is the mac address of the wireless access point.  The BSSID element is optional.
+
 **Example**
-```
+```xml
 <bssid>12-ab-34-ff-e5-46</bssid>
 ```
 
@@ -235,19 +252,22 @@ Contains the type of security the client uses when connecting to the wireless ne
 |WPA2-Enterprise| The wireless network is protected using Wi-Fi Protected Access 2-Enterprise.|
 
 **Example**
-```
+```xml
 <security>WPA2-Enterprise</security> 
 ```
 #### TrustedRootCA
-Contains the thumbprint of the trusted root certificate of the wireless network. This may be any valid trusted root certificate. The value is represented as hexadecimal string where each byte in the string is separated by a single space.  This element is optional.<br>
+Contains the thumbprint of the trusted root certificate of the wireless network. This may be any valid trusted root certificate. The value is represented as hexadecimal string where each byte in the string is separated by a single space.  This element is optional.
+
 **Example**
-```
+```xml
 <trustedRootCA>a2 91 34 aa 22 3a a2 3a 4a 78 a2 aa 75 a2 34 2a 3a 11 4a aa</trustedRootCA>
 ```
+
 #### Sig_quality
-Contains numeric value ranging from 0 to 100 to represent the wireless network's signal strength needed to be considered a trusted signal.<br>
+Contains numeric value ranging from 0 to 100 to represent the wireless network's signal strength needed to be considered a trusted signal.
+
 **Example**
-```
+```xml
 <sig_quality>80</sig_quality>
 ```
  
@@ -257,7 +277,8 @@ These examples are wrapped for readability.  Once properly formatted, the entire
 
 #### Example 1
 This example configures an IPConfig signal type using Ipv4Prefix, Ipv4DnsServer, and DnsSuffix elements.
-```
+
+```xml
 <rule schemaVersion="1.0"> 
     <signal type="ipConfig"> 
         <ipv4Prefix>10.10.10.0/24</ipv4Prefix>
@@ -271,10 +292,11 @@ This example configures an IPConfig signal type using Ipv4Prefix, Ipv4DnsServer,
 
 #### Example 2
 This example configures an IpConfig signal type using a dnsSuffix element and a bluetooth signal for phones.  This configuration is wrapped for reading.  Once properly formatted, the entire XML contents must be a single line.  This example implies that either the ipconfig **or** the Bluetooth rule must evaluate to true, for the resulting signal evaluation to be true.
+
 >[!NOTE]
 >Separate each rule element using a comma.
 
-```
+```xml
 <rule schemaVersion="1.0"> 
 	<signal type="ipConfig"> 
 	    <dnsSuffix>corp.contoso.com</dnsSuffix> 
@@ -284,9 +306,11 @@ This example configures an IpConfig signal type using a dnsSuffix element and a
 	<signal type="bluetooth" scenario="Authentication" classOfDevice="512" rssiMin="-10" rssiMaxDelta="-10"/>
 </rule>
 ```
+
 #### Example 3
 This example configures the same as example 2 using compounding And elements.  This example implies that the ipconfig **and** the Bluetooth rule must evaluate to true, for the resulting signal evaluation to be true.
-```
+
+```xml
 <rule schemaVersion="1.0">
 <and>
   <signal type="ipConfig">
@@ -296,9 +320,11 @@ This example configures the same as example 2 using compounding And elements.  T
 </and>
 </rule>
 ```
+
 #### Example 4 
 This example configures Wi-Fi as a trusted signal (Windows 10, version 1803)
-```
+
+```xml
 <rule schemaVersion="1.0"> 
   <signal type="wifi"> 
     <ssid>contoso</ssid> 
@@ -332,22 +358,34 @@ The Group Policy object contains the policy settings needed to trigger Windows H
 > * You cannot use the same unlock factor to satisfy both categories. Therefore, if you include any credential provider in both categories, it means it can satisfy either category, but not both.
 > * The multifactor unlock feature is also supported via the Passport for Work CSP. See [Passport For Work CSP](https://docs.microsoft.com/windows/client-management/mdm/passportforwork-csp) for more information.
 
-1. Start the **Group Policy Management Console** (gpmc.msc)
-2. Expand the domain and select the **Group Policy Object** node in the navigation pane.
-3. Right-click **Group Policy object** and select **New**.
-4. Type *Multifactor Unlock* in the name box and click **OK**.
-5. In the content pane, right-click the **Multifactor Unlock** Group Policy object and click **Edit**.
-6. In the navigation pane, expand **Policies** under **Computer Configuration**.
-7. Expand **Administrative Templates > Windows Component**, and select **Windows Hello for Business**.<br>
-   ![Group Policy Editor](images/multifactorUnlock/gpme.png)
-8. In the content pane, double-click **Configure device unlock factors**. Click **Enable**.  The **Options** section populates the policy setting with default values.<br>
-   ![Multifactor Policy Setting](images/multifactorUnlock/gp-setting.png)
-9. Configure first and second unlock factors using the information in the [Configure Unlock Factors](#configuring-unlock-factors) section.
-10. If using trusted signals, configure the trusted signals used by the unlock factor using the information in the [Configure Signal Rules for the Trusted Signal Credential Provider](#configure-signal-rules-for-the-trusted-signal-credential-provider) section.
-11. Click **Ok** to close the **Group Policy Management Editor**. Use the **Group Policy Management Console** to deploy the newly created Group Policy object to your organization's computers.
+1. Start the **Group Policy Management Console** (gpmc.msc).
 
-    ## Troubleshooting
-    Multi-factor unlock writes events to event log under **Application and Services Logs\Microsoft\Windows\HelloForBusiness** with the category name **Device Unlock**.
+2. Expand the domain and select the **Group Policy Object** node in the navigation pane.
+
+3. Right-click **Group Policy object** and select **New**.
+
+4. Type *Multifactor Unlock* in the name box and click **OK**.
+
+5. In the content pane, right-click the **Multifactor Unlock** Group Policy object and click **Edit**.
+
+6. In the navigation pane, expand **Policies** under **Computer Configuration**.
+
+7. Expand **Administrative Templates > Windows Component**, and select **Windows Hello for Business**.
+
+   ![Group Policy Editor](images/multifactorUnlock/gpme.png)
+   
+8. In the content pane, double-click **Configure device unlock factors**. Click **Enable**.  The **Options** section populates the policy setting with default values.
+
+   ![Multifactor Policy Setting](images/multifactorUnlock/gp-setting.png)
+   
+9. Configure first and second unlock factors using the information in [Configure Unlock Factors](#configuring-unlock-factors).
+
+10. If using trusted signals, configure the trusted signals used by the unlock factor using the information in [Configure Signal Rules for the Trusted Signal Credential Provider](#configure-signal-rules-for-the-trusted-signal-credential-provider).
+
+11. Click **OK** to close the **Group Policy Management Editor**. Use the **Group Policy Management Console** to deploy the newly created Group Policy object to your organization's computers.
+
+## Troubleshooting
+Multi-factor unlock writes events to event log under **Application and Services Logs\Microsoft\Windows\HelloForBusiness** with the category name **Device Unlock**.
 
 ### Events
 

From 47bb2e611ed6cfc1c86a26baba8e2e0ea8fe4d3e Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Fri, 29 Jan 2021 14:10:42 -0800
Subject: [PATCH 758/825] Acrolinx: "the those"

---
 .../hello-for-business/hello-planning-guide.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
index 0d50683cf6..57805caf8b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
+++ b/windows/security/identity-protection/hello-for-business/hello-planning-guide.md
@@ -160,7 +160,7 @@ The Windows Hello for Business deployment depends on an enterprise public key in
 
 ### Cloud
 
-Some deployment combinations require an Azure account, and some require Azure Active Directory for user identities.  These cloud requirements may only need an Azure account while other features need an Azure Active Directory Premium subscription. The planning process identifies and differentiates the components that are needed from the those that are optional.
+Some deployment combinations require an Azure account, and some require Azure Active Directory for user identities.  These cloud requirements may only need an Azure account while other features need an Azure Active Directory Premium subscription. The planning process identifies and differentiates the components that are needed from those that are optional.
 
 ## Planning a Deployment
 

From 813366c483832642f9265d2cf6eedd7f87ac0749 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 29 Jan 2021 14:55:37 -0800
Subject: [PATCH 759/825] update section on passive uninstall

---
 .../microsoft-defender-atp/minimum-requirements.md            | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 7d4ff91ed4..f7623205a3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -199,14 +199,12 @@ When Microsoft Defender Antivirus is not the active antimalware in your organiza
 
 If your organization has turned off Microsoft Defender Antivirus through group policy or other methods, devices that are onboarded must be excluded from this group policy.
 
-If you are onboarding servers and Microsoft Defender Antivirus is not the active antimalware on your servers, you shouldn't uninstall Microsoft Defender Antivirus. You'll need to configure it to run on passive mode. For more information, see [Onboard servers](configure-server-endpoints.md).
+If you are onboarding servers and Microsoft Defender Antivirus is not the active antimalware on your servers, Microsoft Defender Antivirus will either need to be configured to go on passive mode or uninstalled. The configuration is dependent on the server version. For more information, see [Microsoft Defender Antivirus compatibility](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
 
 > [!NOTE]
 > Your regular group policy doesn't apply to Tamper Protection, and changes to Microsoft Defender Antivirus settings will be ignored when Tamper Protection is on.
 
 
-For more information, see [Microsoft Defender Antivirus compatibility](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
-
 ## Microsoft Defender Antivirus Early Launch Antimalware (ELAM) driver is enabled
 If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Defender for Endpoint agent will successfully onboard.
 

From 402d66cf2d6e71fc1f511079881b8f70f96e0e88 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Fri, 29 Jan 2021 15:01:47 -0800
Subject: [PATCH 760/825] Update MDE for Mac docs to use new command-line tool
 syntax

---
 .../mac-install-manually.md                      |  4 ++--
 .../microsoft-defender-atp/mac-pua.md            |  2 +-
 .../microsoft-defender-atp/mac-resources.md      |  2 +-
 .../mac-schedule-scan-atp.md                     |  4 ++--
 .../microsoft-defender-atp/mac-support-kext.md   | 16 ++++++++--------
 .../microsoft-defender-atp/mac-support-perf.md   |  2 +-
 .../microsoft-defender-atp/mac-whatsnew.md       |  2 +-
 .../microsoft-defender-atp-mac.md                |  2 +-
 8 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
index 904279814f..375f715a8e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-install-manually.md
@@ -116,7 +116,7 @@ To complete this process, you must have admin privileges on the device.
     The client device is not associated with orgId. Note that the *orgId* attribute is blank.
 
     ```bash
-    mdatp --health orgId
+    mdatp health --field org_id
     ```
 
 2. Run the Python script to install the configuration file:
@@ -128,7 +128,7 @@ To complete this process, you must have admin privileges on the device.
 3. Verify that the device is now associated with your organization and reports a valid *orgId*:
 
     ```bash
-    mdatp --health orgId
+    mdatp health --field org_id
     ```
 
 After installation, you'll see the Microsoft Defender icon in the macOS status bar in the top-right corner.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md b/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
index a83bc01f7a..37371fa8f2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-pua.md
@@ -59,7 +59,7 @@ You can configure how PUA files are handled from the command line or from the ma
 In Terminal, execute the following command to configure PUA protection:
 
 ```bash
-mdatp --threat --type-handling potentially_unwanted_application [off|audit|block]
+mdatp threat policy set --type potentially_unwanted_application --action [off|audit|block]
 ```
 
 ### Use the management console to configure PUA protection:
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
index 8ab4ccb54a..227df25707 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md
@@ -149,7 +149,7 @@ To enable autocompletion in zsh:
 
 ## Client Microsoft Defender for Endpoint quarantine directory
 
-`/Library/Application Support/Microsoft/Defender/quarantine/` contains the files quarantined by `mdatp`. The files are named after the threat trackingId. The current trackingIds is shown with `mdatp --threat --list --pretty`.
+`/Library/Application Support/Microsoft/Defender/quarantine/` contains the files quarantined by `mdatp`. The files are named after the threat trackingId. The current trackingIds is shown with `mdatp threat list`.
 
 ## Microsoft Defender for Endpoint portal information
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
index b7f2649c73..331b7057ff 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp.md
@@ -47,7 +47,7 @@ You can create a scanning schedule using the *launchd* daemon on a macOS device.
         <array>
             <string>sh</string>
             <string>-c</string>
-            <string>/usr/local/bin/mdatp --scan --quick</string>
+            <string>/usr/local/bin/mdatp scan quick</string>
         </array>
         <key>RunAtLoad</key>
         <true/>
@@ -73,7 +73,7 @@ You can create a scanning schedule using the *launchd* daemon on a macOS device.
 2. Save the file as *com.microsoft.wdav.schedquickscan.plist*.
 
     > [!TIP]
-    > To run a full scan instead of a quick scan, change line 12, `<string>/usr/local/bin/mdatp --scan --quick</string>`, to use the `--full` option instead of `--quick` (i.e. `<string>/usr/local/bin/mdatp --scan --full</string>`) and save the file as *com.microsoft.wdav.sched**full**scan.plist* instead of *com.microsoft.wdav.sched**quick**scan.plist*.
+    > To run a full scan instead of a quick scan, change line 12, `<string>/usr/local/bin/mdatp scan quick</string>`, to use the `full` option instead of `quick` (i.e. `<string>/usr/local/bin/mdatp scan full</string>`) and save the file as *com.microsoft.wdav.sched**full**scan.plist* instead of *com.microsoft.wdav.sched**quick**scan.plist*.
 
 3. Open **Terminal**.
 4. Enter the following commands to load your file:
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
index 3cefc80735..dae30c8c6a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
@@ -37,15 +37,15 @@ If you did not approve the kernel extension during the deployment/installation o
 
    ![RTP disabled screenshot](../microsoft-defender-antivirus/images/MDATP-32-Main-App-Fix.png)
 
-You can also run ```mdatp --health```. It reports if real-time protection is enabled but not available. This indicates that the kernel extension is not approved to run on your device.
+You can also run ```mdatp health```. It reports if real-time protection is enabled but not available. This indicates that the kernel extension is not approved to run on your device.
 
 ```bash
-mdatp --health
+mdatp health
 ```
 ```Output
 ...
-realTimeProtectionAvailable             : false
-realTimeProtectionEnabled               : true
+real_time_protection_enabled                : true
+real_time_protection_available              : true
 ...
 ```
 
@@ -90,15 +90,15 @@ In this case, you need to perform the following steps to trigger the approval fl
     sudo kextutil /Library/Extensions/wdavkext.kext
     ```
 
-    The banner should disappear from the Defender application, and ```mdatp --health``` should now report that real-time protection is both enabled and available:
+    The banner should disappear from the Defender application, and ```mdatp health``` should now report that real-time protection is both enabled and available:
 
     ```bash
-    mdatp --health
+    mdatp health
     ```
 
     ```Output
     ...
-    realTimeProtectionAvailable             : true
-    realTimeProtectionEnabled               : true
+    real_time_protection_enabled                : true
+    real_time_protection_available              : true
     ...
     ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
index 96b85255e0..9aff2517bf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
@@ -48,7 +48,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
     - From the Terminal. For security purposes, this operation requires elevation.
 
     ```bash
-    mdatp --config realTimeProtectionEnabled false
+    mdatp config real-time-protection --value disabled
     ```
 
     If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Microsoft Defender for Endpoint for Mac](mac-preferences.md).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 2ae1e83837..55c92067b1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -173,7 +173,7 @@ ms.technology: mde
 - Fixed an issue where Microsoft Defender for Endpoint for Mac was sometimes interfering with Time Machine
 - Added a new switch to the command-line utility for testing the connectivity with the backend service
   ```bash
-  mdatp --connectivity-test
+  mdatp connectivity test
   ```
 - Added ability to view the full threat history in the user interface (can be accessed from the **Protection history** view)
 - Performance improvements & bug fixes
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 61c7fe0660..9766c422da 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -132,7 +132,7 @@ The output from this command should be similar to the following:
 
 Once Microsoft Defender for Endpoint is installed, connectivity can be validated by running the following command in Terminal:
 ```bash
-mdatp --connectivity-test
+mdatp connectivity test
 ```
 
 ## How to update Microsoft Defender for Endpoint for Mac

From 5d73e88e40b16c8c285dcbe144712e9f82d9fcef Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Fri, 29 Jan 2021 15:05:01 -0800
Subject: [PATCH 761/825] One more file

---
 .../microsoft-defender-atp/mac-sysext-preview.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
index 3e8f336502..b02e640d1e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
@@ -45,7 +45,7 @@ These steps assume you already have Defender for Endpoint running on your device
 - Your device must be in the **Insider Fast update channel**. You can check the update channel by using the following command:
 
   ```bash
-  mdatp --health releaseRing
+  mdatp health --field release_ring
   ```
 
   If your device isn't already in the Insider Fast update channel, execute the following command from the Terminal. The channel update takes effect the next time the product starts (when the next product update is installed, or when the device is rebooted).

From 47bd07c3fa4979cb5e91ca1c8bda30eadccec328 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Fri, 29 Jan 2021 15:12:40 -0800
Subject: [PATCH 762/825] Typo

---
 .../microsoft-defender-atp/mac-support-kext.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
index dae30c8c6a..8d726d2f36 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-kext.md
@@ -44,7 +44,7 @@ mdatp health
 ```
 ```Output
 ...
-real_time_protection_enabled                : true
+real_time_protection_enabled                : false
 real_time_protection_available              : true
 ...
 ```

From f29f13280dc50788d2e9537221dfe79d255d7335 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Fri, 29 Jan 2021 16:13:11 -0800
Subject: [PATCH 763/825] Corrected indentation of content in list items

---
 .../microsoft-defender-atp/mac-support-perf.md            | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
index 9aff2517bf..cbfb2f15f2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-support-perf.md
@@ -43,13 +43,13 @@ The following steps can be used to troubleshoot and mitigate these issues:
 
     - From the user interface. Open Microsoft Defender for Endpoint for Mac and navigate to **Manage settings**.
 
-    ![Manage real-time protection screenshot](../microsoft-defender-antivirus/images/mdatp-36-rtp.png)
+      ![Manage real-time protection screenshot](../microsoft-defender-antivirus/images/mdatp-36-rtp.png)
 
     - From the Terminal. For security purposes, this operation requires elevation.
 
-    ```bash
-    mdatp config real-time-protection --value disabled
-    ```
+      ```bash
+      mdatp config real-time-protection --value disabled
+      ```
 
     If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Microsoft Defender for Endpoint for Mac](mac-preferences.md).
 

From f0446c8eb4ebb6e9c0598e76fee5cf30b2c76462 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Fri, 29 Jan 2021 16:15:28 -0800
Subject: [PATCH 764/825] Corrected indentation and, thereby, broken numbering
 in a procedure

---
 .../microsoft-defender-atp/mac-sysext-preview.md             | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
index b02e640d1e..3a5f837ab4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-preview.md
@@ -66,8 +66,9 @@ Follow the deployment steps that correspond to your environment and your preferr
 
 1. After all deployment prerequisites are met, restart your device to launch the system extension approval and activation process.
 
-You'll see a series of system prompts to approve the Defender for Endpoint system extensions. You must approve **all** prompts from the series, because macOS requires an explicit approval for each extension that Defender for Endpoint for Mac installs on the device.
-For each approval, select **Open Security Preferences** and then select **Allow** to allow the system extension to run.
+   You'll see a series of system prompts to approve the Defender for Endpoint system extensions. You must approve **all** prompts from the series, because macOS requires an explicit approval for each extension that Defender for Endpoint for Mac installs on the device.
+   
+   For each approval, select **Open Security Preferences** and then select **Allow** to allow the system extension to run.
 
    > [!IMPORTANT]
    > You must close and reopen the **System Preferences** > **Security & Privacy** window between subsequent approvals. Otherwise, macOS will not display the next approval.

From 73f669e1e90ef76a8a27f03a6ab43d9397c0762f Mon Sep 17 00:00:00 2001
From: Office Content Publishing
 <34616516+officedocspr@users.noreply.github.com>
Date: Sat, 30 Jan 2021 23:33:12 -0800
Subject: [PATCH 765/825] Uploaded file: store-for-business-content-updates.md
 - 2021-01-30 23:33:11.8570

---
 .../includes/store-for-business-content-updates.md        | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/store-for-business/includes/store-for-business-content-updates.md b/store-for-business/includes/store-for-business-content-updates.md
index 42f33e8015..82518ed170 100644
--- a/store-for-business/includes/store-for-business-content-updates.md
+++ b/store-for-business/includes/store-for-business-content-updates.md
@@ -2,6 +2,14 @@
 

 
 
+## Week of January 25, 2021
+
+
+| Published On |Topic title | Change |
+|------|------------|--------|
+| 1/29/2021 | [Distribute offline apps (Windows 10)](/microsoft-store/distribute-offline-apps) | modified |
+
+
 ## Week of January 11, 2021
 
 

From c795074fc1a033d438a0467e94f052fb1be7966e Mon Sep 17 00:00:00 2001
From: Sunayana Singh <57405155+sunasing@users.noreply.github.com>
Date: Sun, 31 Jan 2021 21:19:08 +0530
Subject: [PATCH 766/825] Added Conditional Access with Intune

---
 .../ios-configure-features.md                 | 47 +++++++++++--------
 1 file changed, 27 insertions(+), 20 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index d04735e349..877b61390e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -28,6 +28,33 @@ ms.technology: mde
 > [!NOTE]
 > Defender for Endpoint for iOS would use a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device.
 
+## Conditional Access with Defender for Endpoint for iOS  
+Microsoft Defender for Endpoint for iOS along with Microsoft Intune and Azure Active Directory enables enforcing Device compliance and Conditional Access policies
+based on device risk levels. Defender for Endpoint is a Mobile Threat Defense (MTD) solution that you can deploy to leverage this capability via Intune.
+
+For more information about how to set up Conditional Access with Defender for Endpoint for iOS, see [Defender for Endpoint and Intune] https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection).
+
+## Web Protection and VPN
+
+By default, Defender for Endpoint for iOS includes and enables the web protection feature. [Web protection](web-protection-overview.md) helps to secure devices against web threats and protect users from phishing attacks. Defender for Endpoint for iOS uses a VPN in order to provide this protection. Please note this is a local VPN and unlike traditional VPN, network traffic is not sent outside the device.
+
+While enabled by default, there might be some cases that require you to disable VPN. For example, you want to run some apps that do not work when a VPN is configured. In such cases, you can choose to disable VPN from the app on the device by following the steps below:
+
+1. On your iOS device, open the **Settings** app, click or tap **General** and then **VPN**.
+1. Click or tap the "i" button for Microsoft Defender ATP.
+1. Toggle off **Connect On Demand** to disable VPN.
+
+    > [!div class="mx-imgBorder"]
+    > ![VPN config connect on demand](images/ios-vpn-config.png)
+
+> [!NOTE]
+> Web Protection will not be available when VPN is disabled. To re-enable Web Protection, open the Microsoft Defender for Endpoint app on the device and click or tap **Start VPN**.
+
+## Co-existence of multiple VPN profiles
+
+Apple iOS does not support multiple device-wide VPNs to be active simultaneously. While multiple VPN profiles can exist on the device, only one VPN can be active at a time.
+
+
 ## Configure compliance policy against jailbroken devices
 
 To protect corporate data from being accessed on jailbroken iOS devices, we recommend that you set up the following compliance policy on Intune.
@@ -63,26 +90,6 @@ Defender for Endpoint for iOS enables admins to configure custom indicators on i
 > [!NOTE]
 > Defender for Endpoint for iOS supports creating custom indicators only for IP addresses and URLs/domains.
 
-## Web Protection and VPN
-
-By default, Defender for Endpoint for iOS includes and enables the web protection feature. [Web protection](web-protection-overview.md) helps to secure devices against web threats and protect users from phishing attacks. Defender for Endpoint for iOS uses a VPN in order to provide this protection. Please note this is a local VPN and unlike traditional VPN, network traffic is not sent outside the device.
-
-While enabled by default, there might be some cases that require you to disable VPN. For example, you want to run some apps that do not work when a VPN is configured. In such cases, you can choose to disable VPN from the app on the device by following the steps below:
-
-1. On your iOS device, open the **Settings** app, click or tap **General** and then **VPN**.
-1. Click or tap the "i" button for Microsoft Defender ATP.
-1. Toggle off **Connect On Demand** to disable VPN.
-
-    > [!div class="mx-imgBorder"]
-    > ![VPN config connect on demand](images/ios-vpn-config.png)
-
-> [!NOTE]
-> Web Protection will not be available when VPN is disabled. To re-enable Web Protection, open the Microsoft Defender for Endpoint app on the device and click or tap **Start VPN**.
-
-### Co-existence of multiple VPN profiles
-
-Apple iOS does not support multiple device-wide VPNs to be active simultaneously. While multiple VPN profiles can exist on the device, only one VPN can be active at a time.
-
 ## Report unsafe site
 
 Phishing websites impersonate trustworthy websites for the purpose of obtaining your personal or financial information. Visit the [Provide feedback about network protection](https://www.microsoft.com/wdsi/filesubmission/exploitguard/networkprotection) page if you want to report a website that could be a phishing site.

From b7d0e0f861f946c55978c6fecc3e044a3d2e4ca8 Mon Sep 17 00:00:00 2001
From: Thomas Lee <doctordns@gmail.com>
Date: Sun, 31 Jan 2021 16:42:08 +0000
Subject: [PATCH 767/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

Updated examples to have correct casing based on values in Microsoft.PowerShell.Cmdletization.GeneratedTypes.MpPreference.PUAProtectionType enum

Added an example for viewing PUA events

Removed future tense to improve readability.
---
 ...anted-apps-microsoft-defender-antivirus.md | 37 ++++++++++++++-----
 1 file changed, 27 insertions(+), 10 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index dc721c7813..0467981cf8 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -62,13 +62,13 @@ Although potentially unwanted application protection in Microsoft Edge (Chromium
 
 ### Blocking URLs with Microsoft Defender SmartScreen
 
-In Chromium-based Edge with PUA protection turned on, Microsoft Defender SmartScreen will protect you from PUA-associated URLs.
+In Chromium-based Edge with PUA protection turned on, Microsoft Defender SmartScreen protects you from PUA-associated URLs.
 
 Admins can [configure](https://docs.microsoft.com/DeployEdge/configure-microsoft-edge) how Microsoft Edge and Microsoft Defender SmartScreen work together to protect groups of users from PUA-associated URLs. There are several [group policy settings](https://docs.microsoft.com/DeployEdge/microsoft-edge-policies#smartscreen-settings) explicitly for Microsoft
 Defender SmartScreen available, including [one for blocking PUA](https://docs.microsoft.com/DeployEdge/microsoft-edge-policies#smartscreenpuaenabled). In addition, admins can
 [configure Microsoft Defender SmartScreen](https://docs.microsoft.com/microsoft-edge/deploy/available-policies?source=docs#configure-windows-defender-smartscreen) as a whole, using group policy settings to turn Microsoft Defender SmartScreen on or off.
 
-Although Microsoft Defender for Endpoint has its own block list based upon a data set managed by Microsoft, you can customize this list based on your own threat intelligence. If you [create and manage indicators](../microsoft-defender-atp/manage-indicators.md) in the Microsoft Defender for Endpoint portal, Microsoft Defender SmartScreen will respect the new settings.
+Although Microsoft Defender for Endpoint has its own block list based upon a data set managed by Microsoft, you can customize this list based on your own threat intelligence. If you [create and manage indicators](../microsoft-defender-atp/manage-indicators.md) in the Microsoft Defender for Endpoint portal, Microsoft Defender SmartScreen respects the new settings.
 
 ## Microsoft Defender Antivirus
 
@@ -87,7 +87,7 @@ The notification appears in the usual [quarantine list within the Windows Securi
 
 You can enable PUA protection with [Microsoft Intune](https://docs.microsoft.com/mem/intune/protect/device-protect), [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection), [Group Policy](https://docs.microsoft.com/azure/active-directory-domain-services/manage-group-policy), or via [PowerShell cmdlets](https://docs.microsoft.com/powershell/module/defender/?view=win10-ps&preserve-view=true).
 
-You can also use PUA protection in audit mode to detect potentially unwanted applications without blocking them. The detections will be captured in the Windows event log.
+You can also use PUA protection in audit mode to detect potentially unwanted applications without blocking them. The detections are captured in the Windows event log.
 
 > [!TIP]
 > Visit the Microsoft Defender for Endpoint demo website at [demo.wd.microsoft.com](https://demo.wd.microsoft.com/Page/UrlRep) to confirm that the feature is working, and see it in action.
@@ -125,7 +125,7 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 
 7. Select **Enabled** to enable PUA protection.
 
-8. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+8. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting works in your environment. Select **OK**.
 
 9. Deploy your Group Policy object as you usually do.
 
@@ -134,25 +134,25 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 ##### To enable PUA protection
 
 ```PowerShell
-Set-MpPreference -PUAProtection enable
+Set-MpPreference -PUAProtection Enabled
 ```
-Setting the value for this cmdlet to `Enabled` will turn the feature on if it has been disabled.
+Setting the value for this cmdlet to `Enabled` turns the feature on if it has been disabled.
 
 ##### To set PUA protection to audit mode
 
 ```PowerShell
-Set-MpPreference -PUAProtection auditmode
+Set-MpPreference -PUAProtection AuditMode
 ```
-Setting `AuditMode` will detect PUAs without blocking them.
+Setting `AuditMode` detects PUAs without blocking them.
 
 ##### To disable PUA protection
 
 We recommend keeping PUA protection turned on. However, you can turn it off by using the following cmdlet:
 
 ```PowerShell
-Set-MpPreference -PUAProtection disable
+Set-MpPreference -PUAProtection Disabled
 ```
-Setting the value for this cmdlet to `Disabled` will turn the feature off if it has been enabled.
+Setting the value for this cmdlet to `Disabled` turns the feature off if it has been enabled.
 
 See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/powershell/module/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
 
@@ -160,6 +160,23 @@ See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](u
 
 PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune.
 
+You can also use the ``Get-MpThreat`` cmdlet to view threats that Defender handled.
+```console
+
+CategoryID       : 27
+DidThreatExecute : False
+IsActive         : False
+Resources        : {webfile:_q:\Builds\Dalton_Download_Manager_3223905758.exe|http://d18yzm5yb8map8.cloudfront.net/
+                    fo4yue@kxqdw/Dalton_Download_Manager.exe|pid:14196,ProcessStart:132378130057195714}
+RollupStatus     : 33
+SchemaVersion    : 1.0.0.0
+SeverityID       : 1
+ThreatID         : 213927
+ThreatName       : PUA:Win32/InstallCore
+TypeID           : 0
+PSComputerName   :
+```
+
 You can turn on email notifications to receive mail about PUA detections.
 
 See [Troubleshoot event IDs](troubleshoot-microsoft-defender-antivirus.md) for details on viewing Microsoft Defender Antivirus events. PUA events are recorded under event ID **1160**.

From 40589e437f4e628d9fe18e780fbc70a721feb3a5 Mon Sep 17 00:00:00 2001
From: Thomas Lee <doctordns@gmail.com>
Date: Sun, 31 Jan 2021 22:21:20 +0000
Subject: [PATCH 768/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

Changed double-tick to single, as per suggestion.
Added blank line around codefencing
---
 ...ntially-unwanted-apps-microsoft-defender-antivirus.md | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 0467981cf8..73b795ee62 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -134,14 +134,18 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 ##### To enable PUA protection
 
 ```PowerShell
+
 Set-MpPreference -PUAProtection Enabled
+
 ```
 Setting the value for this cmdlet to `Enabled` turns the feature on if it has been disabled.
 
 ##### To set PUA protection to audit mode
 
 ```PowerShell
+
 Set-MpPreference -PUAProtection AuditMode
+
 ```
 Setting `AuditMode` detects PUAs without blocking them.
 
@@ -150,7 +154,9 @@ Setting `AuditMode` detects PUAs without blocking them.
 We recommend keeping PUA protection turned on. However, you can turn it off by using the following cmdlet:
 
 ```PowerShell
+
 Set-MpPreference -PUAProtection Disabled
+
 ```
 Setting the value for this cmdlet to `Disabled` turns the feature off if it has been enabled.
 
@@ -160,7 +166,8 @@ See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](u
 
 PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune.
 
-You can also use the ``Get-MpThreat`` cmdlet to view threats that Defender handled.
+You can also use the `Get-MpThreat` cmdlet to view threats that Defender handled.
+
 ```console
 
 CategoryID       : 27

From fd30b0a830ebbd942b4cf61181c942b7e7ab5f59 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 01:05:18 +0200
Subject: [PATCH 769/825] Update Onboard-Windows-10-multi-session-device.md

Dropping the rebranding note (was removed from all pages).
---
 .../Onboard-Windows-10-multi-session-device.md                  | 2 --
 1 file changed, 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index e63643ed0a..1f03573655 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -24,8 +24,6 @@ ms.technology: mde
 
 Applies to: 
 - Windows 10 multi-session running on Windows Virtual Desktop (WVD) 
-> [!IMPORTANT]
-> Welcome to Microsoft Defender for Endpoint, the new name for Microsoft Defender for Endpoint. Read more about this and other updates here. We'll be updating names in products and in the docs in the near future.
 
 > [!WARNING]
 > Microsoft Defender for Endpoint support for Windows Virtual Desktop multi-session scenarios is currently in Preview and limited up to 25 concurrent sessions per host/VM. However, single session scenarios on Windows Virtual Desktop are fully supported.

From ff100e743717b62e52ee29850b2e00a83770bbdb Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 01:26:56 +0200
Subject: [PATCH 770/825] Update configure-server-endpoints.md

Addressing:
https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8911
https://github.com/MicrosoftDocs/windows-itpro-docs/pull/8996/files

Also adding a note regarding US Gov customers and MMA setup.
---
 .../configure-server-endpoints.md                 | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 3e1fad5b1a..abdf7a98e7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -42,6 +42,7 @@ For a practical guidance on what needs to be in place for licensing and infrastr
 
 For guidance on how to download and use Windows Security Baselines for Windows servers, see [Windows Security Baselines](https://docs.microsoft.com/windows/device-security/windows-security-baselines).
 
+<br>
 
 ## Windows Server 2008 R2 SP1, Windows Server 2012 R2, and Windows Server 2016
 
@@ -56,7 +57,7 @@ After completing the onboarding steps using any of the provided options, you'll
 
 
 > [!NOTE]
-> Defender for Endpoint standalone server license is required, per node, in order to onboard a Windows server through Microsoft Defender Security Center (Option 1), or an Azure Security Center Standard license is required, per node, in order to onboard a Windows server through Azure Security Center (Option 2), see [Supported features available in Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-services).
+> Defender for Endpoint standalone server license is required, per node, in order to onboard a Windows server through Microsoft Monitoring Agent (Option 1), or through Microsoft Endpoint Manager (Option 3). Alternatively, an Azure Defender for Servers license is required, per node, in order to onboard a Windows server through Azure Security Center (Option 2), see [Supported features available in Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-services).
 
 
 ### Option 1: Onboard by installing and configuring Microsoft Monitoring Agent (MMA)
@@ -102,6 +103,8 @@ Perform the following steps to fulfill the onboarding requirements:
     On the **Agent Setup Options** page, choose **Connect the agent to Azure Log Analytics (OMS)**.
     - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-the-agent-using-the-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#add-a-workspace-using-a-script).
 
+> [!NOTE]
+> If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government".
 
 
 <span id="server-proxy"/>
@@ -140,6 +143,8 @@ You can onboard Windows Server 2012 R2 and Windows Server 2016 by using Microsof
 
 After completing the onboarding steps, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).
 
+<br>
+
 ## Windows Server (SAC) version 1803, Windows Server 2019, and Windows Server 2019 Core edition
 You can onboard Windows Server (SAC) version 1803, Windows Server 2019, or Windows Server 2019 Core edition by using the following deployment methods:
 
@@ -183,6 +188,8 @@ Support for Windows Server provides deeper insight into server activities, cover
     
     For information on how to use Group Policy to configure and manage Microsoft Defender Antivirus on your Windows servers, see [Use Group Policy settings to configure and manage Microsoft Defender Antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus).
 
+<br>
+
 ## Integration with Azure Security Center
 Defender for Endpoint can integrate with Azure Security Center to provide a comprehensive Windows server protection solution. With this integration, Azure Security Center can leverage the power of Defender for Endpoint to provide improved threat detection for Windows Servers.
 
@@ -202,6 +209,7 @@ Data collected by Defender for Endpoint is stored in the geo-location of the ten
 > - Once configured, you cannot change the location where your data is stored. If you need to move your data to another location, you need to contact Microsoft Support to reset the tenant. <br>
 Server endpoint monitoring utilizing this integration has been disabled for Office 365 GCC customers.
 
+<br>
 
 ## Configure and update System Center Endpoint Protection clients
 
@@ -212,7 +220,7 @@ The following steps are required to enable this integration:
 
 - Configure the SCEP client Cloud Protection Service membership to the **Advanced** setting.
 
-
+<br>
 
 ## Offboard Windows servers
 You can offboard Windows Server (SAC), Windows Server 2019, and Windows Server 2019 Core edition in the same method available for Windows 10 client devices.
@@ -264,6 +272,9 @@ To offboard the Windows server, you can use either of the following methods:
     $AgentCfg.ReloadConfiguration()
 
     ```
+
+<br>
+
 ## Related topics
 - [Onboard Windows 10 devices](configure-endpoints.md)
 - [Onboard non-Windows devices](configure-endpoints-non-windows.md)

From bd6233826f769c56fb2f12a191eae8fe0588cd9e Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 01:35:51 +0200
Subject: [PATCH 771/825] Update configure-server-endpoints.md

Some Acrolinx changes.
---
 .../microsoft-defender-atp/configure-server-endpoints.md    | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index abdf7a98e7..8ac55c19b5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -63,7 +63,7 @@ After completing the onboarding steps using any of the provided options, you'll
 ### Option 1: Onboard by installing and configuring Microsoft Monitoring Agent (MMA)
 You'll need to install and configure MMA for Windows servers to report sensor data to Defender for Endpoint. For more information, see [Collect log data with Azure Log Analytics agent](https://docs.microsoft.com/azure/azure-monitor/platform/log-analytics-agent).
 
-If you're already leveraging System Center Operations Manager (SCOM) or Azure Monitor (formerly known as Operations Management Suite (OMS)), attach the Microsoft Monitoring Agent (MMA) to report to your Defender for Endpoint workspace through Multihoming support.
+If you're already using System Center Operations Manager (SCOM) or Azure Monitor (formerly known as Operations Management Suite (OMS)), attach the Microsoft Monitoring Agent (MMA) to report to your Defender for Endpoint workspace through Multihoming support.
 
 In general, you'll need to take the following steps:
 1. Fulfill the onboarding requirements outlined in **Before you begin** section.
@@ -184,14 +184,14 @@ Support for Windows Server provides deeper insight into server activities, cover
 
    ```sc.exe query Windefend```
 
-    If the result is 'The specified service does not exist as an installed service', then you'll need to install Microsoft Defender AV. For more information, see [Microsoft Defender Antivirus in Windows 10](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10).
+    If the result is 'The specified service doesn't exist as an installed service', then you'll need to install Microsoft Defender AV. For more information, see [Microsoft Defender Antivirus in Windows 10](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10).
     
     For information on how to use Group Policy to configure and manage Microsoft Defender Antivirus on your Windows servers, see [Use Group Policy settings to configure and manage Microsoft Defender Antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/use-group-policy-microsoft-defender-antivirus).
 
 <br>
 
 ## Integration with Azure Security Center
-Defender for Endpoint can integrate with Azure Security Center to provide a comprehensive Windows server protection solution. With this integration, Azure Security Center can leverage the power of Defender for Endpoint to provide improved threat detection for Windows Servers.
+Defender for Endpoint can integrate with Azure Security Center to provide a comprehensive Windows server protection solution. With this integration, Azure Security Center can use the power of Defender for Endpoint to provide improved threat detection for Windows Servers.
 
 The following capabilities are included in this integration:
 - Automated onboarding - Defender for Endpoint sensor is automatically enabled on Windows Servers that are onboarded to Azure Security Center. For more information on Azure Security Center onboarding, see [Onboarding to Azure Security Center Standard for enhanced security](https://docs.microsoft.com/azure/security-center/security-center-onboarding).

From 0c2f8a5a264c3f5f59ad8ef0475298d80ee851e7 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 01:43:10 +0200
Subject: [PATCH 772/825] Update gov.md

Adding:
1. Portal URLs.
2. Power Automate & Logic Apps integrations are now available for GCC.
3. Clarification regarding MMA & patches.
---
 .../microsoft-defender-atp/gov.md             | 19 +++++++++++++++----
 1 file changed, 15 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 2bde8df0d5..2fd68eca5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -31,8 +31,18 @@ This offering is currently available to Microsoft 365 GCC and GCC High customers
 
 > [!NOTE]
 > If you are a "GCC on Commercial" customer, please refer to the public documentation pages.
+
 <br>
 
+## Portal URLs
+The following are the specific Microsoft Defender for Endpoint portal URLs:
+
+Customer type | Portal URL
+:---|:---
+GCC | https://gcc.securitycenter.microsoft.us
+GCC High | https://securitycenter.microsoft.us
+
+<br>
 
 ## Endpoint versions
 
@@ -63,7 +73,10 @@ Android | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../im
 iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 
 > [!NOTE]
-> A patch must be deployed before device onboarding in order to configure Defender for Endpoint to the correct environment.
+> Where a patch is specified, it must be deployed prior to device onboarding in order to configure Defender for Endpoint to the correct environment.
+
+> [!NOTE]
+> Trying to onboard Windows Server 2016/2012 R2/2008 R2 SP1 or Windows 8.1 Enterprise/8 Pro/7 SP1 Enterprise/7 SP1 Pro using [Microsoft Monitoring Agent](configure-server-endpoints.md#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)? You'll need to choose "Azure US Government" under "Azure Cloud".
 
 ### OS versions when using Azure Defender for Servers
 The following OS versions are supported when using [Azure Defender for Servers](https://docs.microsoft.com/azure/security-center/security-center-wdatp):
@@ -88,7 +101,6 @@ Defender for Endpoint GCC High specific | `winatp-gw-usgt.microsoft.com`<br>`win
 
 <br>
 
-
 ## API
 Instead of the public URIs listed in our [API documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro), you'll need to use the following URIs:
 
@@ -100,7 +112,6 @@ SIEM | `https://wdatp-alertexporter-us.gcc.securitycenter.windows.us` | `https:/
 
 <br>
 
-
 ## Feature parity with commercial
 Defender for Endpoint doesn't have complete parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government customers, there are some capabilities not yet available that we'd like to highlight.
 
@@ -126,6 +137,6 @@ Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg
 Integrations: Microsoft Defender for Office 365 | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Integrations: Microsoft Endpoint DLP | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Integrations: Microsoft Intune | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Integrations: Microsoft Power Automate & Azure Logic Apps | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Integrations: Microsoft Power Automate & Azure Logic Apps | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Skype for Business / Teams | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Microsoft Threat Experts | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog

From 807f04e1810c7b76dc6723c07cf0635bd5e710f4 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 01:51:12 +0200
Subject: [PATCH 773/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md  | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 2fd68eca5a..5223c1229a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -32,10 +32,8 @@ This offering is currently available to Microsoft 365 GCC and GCC High customers
 > [!NOTE]
 > If you are a "GCC on Commercial" customer, please refer to the public documentation pages.
 
-<br>
-
 ## Portal URLs
-The following are the specific Microsoft Defender for Endpoint portal URLs:
+The following are the Microsoft Defender for Endpoint portal URLs for US Government customers:
 
 Customer type | Portal URL
 :---|:---

From 2c2946d03a75384998f916a26260b8c8a0ca1a6c Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Mon, 1 Feb 2021 09:05:21 +0530
Subject: [PATCH 774/825] typo correction

as per the user report #9050 ,  replaced  s  to  is
---
 windows/deployment/update/waas-overview.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/update/waas-overview.md b/windows/deployment/update/waas-overview.md
index 76e17626d7..01f89be64e 100644
--- a/windows/deployment/update/waas-overview.md
+++ b/windows/deployment/update/waas-overview.md
@@ -46,7 +46,7 @@ Application compatibility testing has historically been a burden when approachin
 
 Most Windows 7–compatible desktop applications will be compatible with Windows 10 straight out of the box. Windows 10 achieved such high compatibility because the changes in the existing Win32 application programming interfaces were minimal.  Combined with valuable feedback via the Windows Insider Program and diagnostic data, this level of compatibility can be maintained through each feature update. As for websites, Windows 10 includes Internet Explorer 11 and its backward-compatibility modes for legacy websites. Finally, UWP apps follow a compatibility story similar to desktop applications, so most of them will be compatible with Windows 10. 
 
-For the most important business-critical applications, organizations should still perform testing on a regular basis to validate compatibility with new builds. For remaining applications, consider validating them as part of a pilot deployment process to reduce the time spent on compatibility testing. Desktop Analytics s a cloud-based service that integrates with Configuration Manager. The service provides insight and intelligence for you to make more informed decisions about the update readiness of your Windows endpoints, including assessment of your existing applications. For more, see [Ready for modern desktop retirement FAQ](https://docs.microsoft.com/mem/configmgr/desktop-analytics/ready-for-windows).
+For the most important business-critical applications, organizations should still perform testing on a regular basis to validate compatibility with new builds. For remaining applications, consider validating them as part of a pilot deployment process to reduce the time spent on compatibility testing. Desktop Analytics is a cloud-based service that integrates with Configuration Manager. The service provides insight and intelligence for you to make more informed decisions about the update readiness of your Windows endpoints, including assessment of your existing applications. For more, see [Ready for modern desktop retirement FAQ](https://docs.microsoft.com/mem/configmgr/desktop-analytics/ready-for-windows).
 
 ### Device compatibility
 

From 8cdd0d0ee153d5c8ec94f7fb3d1d31011f08f82d Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 18:57:44 +0200
Subject: [PATCH 775/825] Update troubleshoot-asr.md

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/9055
---
 .../microsoft-defender-atp/troubleshoot-asr.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
index 8a626f4670..e507384f99 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
@@ -100,7 +100,7 @@ When you report a problem with attack surface reduction rules, you are asked to
 1. Open an elevated command prompt and change to the Windows Defender directory:
 
    ```console
-   cd c:\program files\windows defender
+   cd "c:\program files\windows defender"
    ```
 
 2. Run this command to generate the diagnostic logs:

From f13504560a9849a630ce0b74b5fe3781e3c613b1 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 19:03:07 +0200
Subject: [PATCH 776/825] Update troubleshoot-asr.md

Acrolinx.
---
 .../troubleshoot-asr.md                       | 20 +++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
index e507384f99..dd95924a68 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
@@ -29,9 +29,9 @@ ms.technology: mde
 
 When you use [attack surface reduction rules](attack-surface-reduction.md) you may run into issues, such as:
 
-- A rule blocks a file, process, or performs some other action that it should not (false positive)
+- A rule blocks a file, process, or performs some other action that it shouldn't (false positive)
 
-- A rule does not work as described, or does not block a file or process that it should (false negative)
+- A rule doesn't work as described, or doesn't block a file or process that it should (false negative)
 
 There are four steps to troubleshooting these problems:
 
@@ -53,7 +53,7 @@ Attack surface reduction rules will only work on devices with the following cond
 
 - [Real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) is enabled.
 
-- Audit mode is not enabled. Use Group Policy to set the rule to **Disabled** (value: **0**) as described in [Enable attack surface reduction rules](enable-attack-surface-reduction.md).
+- Audit mode isn't enabled. Use Group Policy to set the rule to **Disabled** (value: **0**) as described in [Enable attack surface reduction rules](enable-attack-surface-reduction.md).
 
 If these prerequisites have all been met, proceed to the next step to test the rule in audit mode.
 
@@ -61,7 +61,7 @@ If these prerequisites have all been met, proceed to the next step to test the r
 
 You can visit the Windows Defender Test ground website at [demo.wd.microsoft.com](https://demo.wd.microsoft.com?ocid=cx-wddocs-testground) to confirm attack surface reduction rules are generally working for pre-configured scenarios and processes on a device, or you can use audit mode, which enables rules for reporting only.
 
-Follow these instructions in [Use the demo tool to see how attack surface reduction rules work](evaluate-attack-surface-reduction.md) to test the specific rule you are encountering problems with.
+Follow these instructions in [Use the demo tool to see how attack surface reduction rules work](evaluate-attack-surface-reduction.md) to test the specific rule you're encountering problems with.
 
 1. Enable audit mode for the specific rule you want to test. Use Group Policy to set the rule to **Audit mode** (value: **2**) as described in [Enable attack surface reduction rules](enable-attack-surface-reduction.md). Audit mode allows the rule to report the file or process, but will still allow it to run.
 
@@ -69,19 +69,19 @@ Follow these instructions in [Use the demo tool to see how attack surface reduct
 
 3. [Review the attack surface reduction rule event logs](attack-surface-reduction.md) to see if the rule would have blocked the file or process if the rule had been set to **Enabled**.
 
-If a rule is not blocking a file or process that you are expecting it should block, first check if audit mode is enabled.
+If a rule isn't blocking a file or process that you're expecting it should block, first check if audit mode is enabled.
 
 Audit mode may have been enabled for testing another feature, or by an automated PowerShell script, and may not have been disabled after the tests were completed.
 
-If you've tested the rule with the demo tool and with audit mode, and attack surface reduction rules are working on pre-configured scenarios, but the rule is not working as expected, proceed to either of the following sections based on your situation:
+If you've tested the rule with the demo tool and with audit mode, and attack surface reduction rules are working on pre-configured scenarios, but the rule isn't working as expected, proceed to either of the following sections based on your situation:
 
-1. If the attack surface reduction rule is blocking something that it should not block (also known as a false positive), you can [first add an attack surface reduction rule exclusion](#add-exclusions-for-a-false-positive).
+1. If the attack surface reduction rule is blocking something that it shouldn't block (also known as a false positive), you can [first add an attack surface reduction rule exclusion](#add-exclusions-for-a-false-positive).
 
-2. If the attack surface reduction rule is not blocking something that it should block (also known as a false negative), you can proceed immediately to the last step, [collecting diagnostic data and submitting the issue to us](#collect-diagnostic-data-for-file-submissions).
+2. If the attack surface reduction rule isn't blocking something that it should block (also known as a false negative), you can proceed immediately to the last step, [collecting diagnostic data and submitting the issue to us](#collect-diagnostic-data-for-file-submissions).
 
 ## Add exclusions for a false positive
 
-If the attack surface reduction rule is blocking something that it should not block (also known as a false positive), you can add exclusions to prevent attack surface reduction rules from evaluating the excluded files or folders.
+If the attack surface reduction rule is blocking something that it shouldn't block (also known as a false positive), you can add exclusions to prevent attack surface reduction rules from evaluating the excluded files or folders.
 
 To add an exclusion, see [Customize Attack surface reduction](customize-attack-surface-reduction.md).
 
@@ -95,7 +95,7 @@ Use the [Windows Defender Security Intelligence web-based submission form](https
 
 ## Collect diagnostic data for file submissions
 
-When you report a problem with attack surface reduction rules, you are asked to collect and submit diagnostic data that can be used by Microsoft support and engineering teams to help troubleshoot issues.
+When you report a problem with attack surface reduction rules, you're asked to collect and submit diagnostic data that can be used by Microsoft support and engineering teams to help troubleshoot issues.
 
 1. Open an elevated command prompt and change to the Windows Defender directory:
 

From 8d274b26124aa1bf9935770635ffc6ef49baa6cf Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Mon, 1 Feb 2021 19:06:40 +0200
Subject: [PATCH 777/825] Update troubleshoot-asr.md

---
 .../microsoft-defender-atp/troubleshoot-asr.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
index dd95924a68..c25e934d20 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
@@ -109,7 +109,7 @@ When you report a problem with attack surface reduction rules, you're asked to c
    mpcmdrun -getfiles
    ```
 
-3. By default, they are saved to `C:\ProgramData\Microsoft\Windows Defender\Support\MpSupportFiles.cab`. Attach the file to the submission form.
+3. By default, they're saved to `C:\ProgramData\Microsoft\Windows Defender\Support\MpSupportFiles.cab`. Attach the file to the submission form.
 
 ## Related articles
 

From d13ea7f085443acd43a9fa6bb706bb7612c47696 Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 1 Feb 2021 10:44:16 -0800
Subject: [PATCH 778/825] Update ios-configure-features.md

---
 .../ios-configure-features.md                    | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index 877b61390e..10354d8762 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -32,7 +32,7 @@ ms.technology: mde
 Microsoft Defender for Endpoint for iOS along with Microsoft Intune and Azure Active Directory enables enforcing Device compliance and Conditional Access policies
 based on device risk levels. Defender for Endpoint is a Mobile Threat Defense (MTD) solution that you can deploy to leverage this capability via Intune.
 
-For more information about how to set up Conditional Access with Defender for Endpoint for iOS, see [Defender for Endpoint and Intune] https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection).
+For more information about how to set up Conditional Access with Defender for Endpoint for iOS, see [Defender for Endpoint and Intune] (https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection).
 
 ## Web Protection and VPN
 
@@ -64,28 +64,28 @@ To protect corporate data from being accessed on jailbroken iOS devices, we reco
 
 Follow the steps below to create a compliance policy against jailbroken devices.
 
-1. In [Microsoft Endpoint Manager admin center](https://go.microsoft.com/fwlink/?linkid=2109431), go to **Devices** -> **Compliance policies** -> click on **Create Policy**. Select "iOS/iPadOS" as platform and click **Create**.
+1. In [Microsoft Endpoint Manager admin center](https://go.microsoft.com/fwlink/?linkid=2109431), go to **Devices** -> **Compliance policies** -> **Create Policy**. Select "iOS/iPadOS" as platform and click **Create**.
 
     > [!div class="mx-imgBorder"]
     > ![Create Policy](images/ios-jb-policy.png)
 
-1. Specify a name of the policy, example "Compliance Policy for Jailbreak".
-1. In the compliance settings page, click to expand **Device Health** section and click **Block** for **Jailbroken devices** field.
+2. Specify a name of the policy, for example "Compliance Policy for Jailbreak".
+3. In the compliance settings page, click to expand **Device Health** section and click **Block** for **Jailbroken devices** field.
 
     > [!div class="mx-imgBorder"]
     > ![Policy Settings](images/ios-jb-settings.png)
 
-1. In the *Action for noncompliance* section, select the actions as per your requirements and click **Next**.
+4. In the *Action for noncompliance* section, select the actions as per your requirements and select **Next**.
 
     > [!div class="mx-imgBorder"]
     > ![Policy Actions](images/ios-jb-actions.png)
 
-1. In the *Assignments* section, select the user groups that you want to include for this policy and then click **Next**.
-1. In the **Review+Create** section, verify that all the information entered is correct and then select **Create**.
+5. In the *Assignments* section, select the user groups that you want to include for this policy and then select **Next**.
+6. In the **Review+Create** section, verify that all the information entered is correct and then select **Create**.
 
 ## Configure custom indicators
 
-Defender for Endpoint for iOS enables admins to configure custom indicators on iOS devices as well. Refer to [Manage indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) on how to configure custom indicators.
+Defender for Endpoint for iOS enables admins to configure custom indicators on iOS devices as well. For more information on how to configure custom indicators, see [Manage indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators).
 
 > [!NOTE]
 > Defender for Endpoint for iOS supports creating custom indicators only for IP addresses and URLs/domains.

From 1adb141e2b2f459d735481a7ddbf7f10311f7322 Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Mon, 1 Feb 2021 11:32:08 -0800
Subject: [PATCH 779/825] pencil edit

---
 .../microsoft-defender-atp/ios-configure-features.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index 10354d8762..00fc73300c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -32,7 +32,7 @@ ms.technology: mde
 Microsoft Defender for Endpoint for iOS along with Microsoft Intune and Azure Active Directory enables enforcing Device compliance and Conditional Access policies
 based on device risk levels. Defender for Endpoint is a Mobile Threat Defense (MTD) solution that you can deploy to leverage this capability via Intune.
 
-For more information about how to set up Conditional Access with Defender for Endpoint for iOS, see [Defender for Endpoint and Intune] (https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection).
+For more information about how to set up Conditional Access with Defender for Endpoint for iOS, see [Defender for Endpoint and Intune](https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection).
 
 ## Web Protection and VPN
 

From 5eab1f1af72b8f6bb950f48b8d7e1acd08f53206 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 1 Feb 2021 13:08:11 -0800
Subject: [PATCH 780/825] Update .openpublishing.redirection.json

---
 .openpublishing.redirection.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 6c6cd0335b..4af39e6318 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -16524,6 +16524,11 @@
       "source_path": "windows/security/threat-protection/microsoft-defender-antivirus/antivirus-false-positives-negatives.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives",
       "redirect_document_id": true
+    },
+    {
+      "source_path": "windows/security/threat-protection/windows-defender-exploit-guard/troubleshoot-asr.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr",
+      "redirect_document_id": false
     }
   ]
 }

From 27bc25e7daf6b9cc92222580249de5bc691b6725 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 1 Feb 2021 13:47:35 -0800
Subject: [PATCH 781/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

---
 ...entially-unwanted-apps-microsoft-defender-antivirus.md | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 73b795ee62..5b962456c2 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 audience: ITPro
-ms.date: 01/08/2021
+ms.date: 02/01/2021
 ms.reviewer: 
 manager: dansimp
 ms.technology: mde
@@ -164,9 +164,7 @@ See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](u
 
 ### View PUA events
 
-PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune.
-
-You can also use the `Get-MpThreat` cmdlet to view threats that Defender handled.
+PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune. You can also use the `Get-MpThreat` cmdlet to view threats that Microsoft Defender Antivirus handled. Here's an example:
 
 ```console
 
@@ -194,7 +192,7 @@ Sometimes a file is erroneously blocked by PUA protection, or a feature of a PUA
 
 For more information, see [Recommended antivirus exclusions for Configuration Manager site servers, site systems, and clients](https://docs.microsoft.com/troubleshoot/mem/configmgr/recommended-antivirus-exclusions#exclusions).
 
-## Related articles
+## See also
 
 - [Next-generation protection](microsoft-defender-antivirus-in-windows-10.md)
 - [Configure behavioral, heuristic, and real-time protection](configure-protection-features-microsoft-defender-antivirus.md)

From 87d4839f8baf1e1f4540dc6fae82fa886c6b9968 Mon Sep 17 00:00:00 2001
From: "Trond B. Krokli" <38162891+illfated@users.noreply.github.com>
Date: Mon, 1 Feb 2021 23:26:36 +0100
Subject: [PATCH 782/825] MarkDown code blocks & whitespace (ref. #9053)

Corrections to PR #9053 / commit https://github.com/MicrosoftDocs/windows-itpro-docs/commit/9856688ff24ecbf4fe47f7446b9ef9182d2de3a4

A misunderstanding in PR #9053 caused the addition of unneeded & unwanted blank lines within the PowerShell PUA code blocks for the 3 variations of `Set-MpPreference -PUAProtection` and the console output, as well as missing the opportunity to add editorial blank lines below the code blocks, for easier future editing.

Ref. PR #9053 / commit https://github.com/MicrosoftDocs/windows-itpro-docs/commit/9856688ff24ecbf4fe47f7446b9ef9182d2de3a4
---
 ...lly-unwanted-apps-microsoft-defender-antivirus.md | 12 ++++--------
 1 file changed, 4 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 5b962456c2..15e0a33178 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -134,19 +134,17 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 ##### To enable PUA protection
 
 ```PowerShell
-
 Set-MpPreference -PUAProtection Enabled
-
 ```
+
 Setting the value for this cmdlet to `Enabled` turns the feature on if it has been disabled.
 
 ##### To set PUA protection to audit mode
 
 ```PowerShell
-
 Set-MpPreference -PUAProtection AuditMode
-
 ```
+
 Setting `AuditMode` detects PUAs without blocking them.
 
 ##### To disable PUA protection
@@ -154,10 +152,9 @@ Setting `AuditMode` detects PUAs without blocking them.
 We recommend keeping PUA protection turned on. However, you can turn it off by using the following cmdlet:
 
 ```PowerShell
-
 Set-MpPreference -PUAProtection Disabled
-
 ```
+
 Setting the value for this cmdlet to `Disabled` turns the feature off if it has been enabled.
 
 See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://docs.microsoft.com/powershell/module/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
@@ -167,7 +164,6 @@ See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](u
 PUA events are reported in the Windows Event Viewer, but not in Microsoft Endpoint Manager or in Intune. You can also use the `Get-MpThreat` cmdlet to view threats that Microsoft Defender Antivirus handled. Here's an example:
 
 ```console
-
 CategoryID       : 27
 DidThreatExecute : False
 IsActive         : False
@@ -188,7 +184,7 @@ See [Troubleshoot event IDs](troubleshoot-microsoft-defender-antivirus.md) for d
 
 ### Allow-listing apps
 
-Sometimes a file is erroneously blocked by PUA protection, or a feature of a PUA is required to complete a task. In these cases, a file can be allow-listed. 
+Sometimes a file is erroneously blocked by PUA protection, or a feature of a PUA is required to complete a task. In these cases, a file can be allow-listed.
 
 For more information, see [Recommended antivirus exclusions for Configuration Manager site servers, site systems, and clients](https://docs.microsoft.com/troubleshoot/mem/configmgr/recommended-antivirus-exclusions#exclusions).
 

From c38a104e09a6336cc2d137b81f58016861192a53 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 1 Feb 2021 14:28:43 -0800
Subject: [PATCH 783/825] delete page

---
 .openpublishing.redirection.json              |  5 ++
 .../supported-response-apis.md                | 52 -------------------
 2 files changed, 5 insertions(+), 52 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 6c6cd0335b..3e7809a16e 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -2044,6 +2044,11 @@
       "source_path": "windows/security/threat-protection/windows-defender-atp/supported-response-apis-windows-defender-advanced-threat-protection.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis",
       "redirect_document_id": true
+    },
+	{
+      "source_path": "windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-list",
+      "redirect_document_id": false
     },
     {
       "source_path": "windows/threat-protection/windows-defender-atp/threat-indicator-concepts-windows-defender-advanced-threat-protection.md",
diff --git a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md b/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
deleted file mode 100644
index 111a228fa4..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
+++ /dev/null
@@ -1,52 +0,0 @@
----
-title: Supported Microsoft Defender Advanced Threat Protection response APIs
-description: Learn about the specific response-related Microsoft Defender Advanced Threat Protection API calls.
-keywords: response apis, graph api, supported apis, actor, alerts, device, user, domain, ip, file
-search.product: eADQiWindows 10XVcnh
-search.appverid: met150
-ms.prod: m365-security
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: macapara
-author: mjcaparas
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: M365-security-compliance
-ms.topic: conceptual
-ms.technology: mde
----
-
-# Supported Microsoft Defender for Endpoint query APIs 
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-**Applies to:**
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-> [!TIP]
-> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-supported-response-apis-abovefoldlink) 
-
-Learn about the supported response-related API calls you can run and details such as the required request headers, and expected response from the calls.
-
-## In this section
-Topic | Description
-:---|:---
-Collect investigation package | Run this API to collect an investigation package from a device.
-Isolate device | Run this API to isolate a device from the network.
-Unisolate device | Remove a device from isolation. 
-Restrict code execution | Run this API to contain an attack by stopping malicious processes. You can also lock down a device and prevent subsequent attempts of potentially malicious programs from running.
-Unrestrict code execution | Run this to reverse the restriction of applications policy after you have verified that the compromised device has been remediated.
-Run antivirus scan | Remotely initiate an antivirus scan to help identify and remediate malware that might be present on a compromised device.
-Stop and quarantine file |  Run this call to stop running processes, quarantine  files, and delete persistency such as registry keys.
-Request sample | Run this call to request a sample of a file from a specific device. The file will be collected from the device and uploaded to a secure storage.
-Block file | Run this API to prevent further propagation of an attack in your organization by banning potentially malicious files or suspected malware. 
-Unblock file | Allow a file run in the organization using Microsoft Defender Antivirus.
-Get package SAS URI | Run this API to get a URI that allows downloading an investigation package.
-Get MachineAction object | Run this API to get MachineAction object.
-Get MachineActions collection | Run this to get MachineAction collection.
-Get FileActions collection | Run this API to get FileActions collection.
-Get FileMachineAction object | Run this API to get FileMachineAction object.
-Get FileMachineActions collection | Run this API to get FileMachineAction collection.

From 995bec4332dc63e7076692a99e423d99b62a6a87 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 2 Feb 2021 12:23:41 -0800
Subject: [PATCH 784/825] add unique key words

---
 .../microsoft-defender-atp/api-release-notes.md | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 36327643c6..2e50a85b73 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -1,7 +1,7 @@
 ---
-title: API release notes
-description: Release notes for anything that is new in the API.
-keywords: apis, mdatp api, updates, notes, release
+title: Microsoft Defender for Endpoint API release notes
+description: Release notes for anything that is new in the Microsoft Defender for Endpoint API.
+keywords: microsoft defender for endpoint api release notes, mde, apis, mdatp api, updates, notes, release
 search.product: eADQiWindows 10XVcnh
 ms.prod: m365-security
 ms.mktglfcycl: deploy
@@ -17,9 +17,14 @@ ms.topic: article
 ms.technology: mde
 ---
 
-# Release Notes
-<br>
-<hr>
+# Microsoft Defender for Endpoint API release notes
+
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+
+The following information lists the updates made to the Microsoft Defender for Endpoint APIs and the dates they were made.
+
 
 ### 25.01.2021
 <hr>

From 2b0b5e9648bf8c543b92c2d5d8a9dc4bb196e836 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 2 Feb 2021 12:24:30 -0800
Subject: [PATCH 785/825] update description

---
 .../microsoft-defender-atp/api-release-notes.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
index 2e50a85b73..441c3cbd30 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/api-release-notes.md
@@ -1,6 +1,6 @@
 ---
 title: Microsoft Defender for Endpoint API release notes
-description: Release notes for anything that is new in the Microsoft Defender for Endpoint API.
+description: Release notes for updates made to the Microsoft Defender for Endpoint set of APIs.
 keywords: microsoft defender for endpoint api release notes, mde, apis, mdatp api, updates, notes, release
 search.product: eADQiWindows 10XVcnh
 ms.prod: m365-security

From 541d1009d1aae85276618653480fce6502a3173c Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Tue, 2 Feb 2021 22:28:30 +0200
Subject: [PATCH 786/825] Update configure-server-endpoints.md

Fixing the MMA anchors + clarifying the note for Gov following feedback.
---
 .../microsoft-defender-atp/configure-server-endpoints.md      | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 8ac55c19b5..0ec1dfdeb6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -101,10 +101,10 @@ Perform the following steps to fulfill the onboarding requirements:
 2. Using the Workspace ID and Workspace key obtained in the previous procedure, choose any of the following installation methods to install the agent on the Windows server:
     - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-the-agent-using-setup) <br>
     On the **Agent Setup Options** page, choose **Connect the agent to Azure Log Analytics (OMS)**.
-    - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-the-agent-using-the-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#add-a-workspace-using-a-script).
+    - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
 
 > [!NOTE]
-> If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government".
+> If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
 
 
 <span id="server-proxy"/>

From eb6195222459dee2ffc2c10610a75c569c025cd9 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Tue, 2 Feb 2021 23:48:32 +0200
Subject: [PATCH 787/825] Update gov.md

Addressing feedback regarding the MMA note.
---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 5223c1229a..663f76f5c5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -74,7 +74,7 @@ iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images
 > Where a patch is specified, it must be deployed prior to device onboarding in order to configure Defender for Endpoint to the correct environment.
 
 > [!NOTE]
-> Trying to onboard Windows Server 2016/2012 R2/2008 R2 SP1 or Windows 8.1 Enterprise/8 Pro/7 SP1 Enterprise/7 SP1 Pro using [Microsoft Monitoring Agent](configure-server-endpoints.md#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)? You'll need to choose "Azure US Government" under "Azure Cloud".
+> Trying to onboard Windows Server 2016/2012 R2/2008 R2 SP1 or Windows 8.1 Enterprise/8 Pro/7 SP1 Enterprise/7 SP1 Pro using [Microsoft Monitoring Agent](configure-server-endpoints.md#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)? You'll need to choose "Azure US Government" under "Azure Cloud" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
 
 ### OS versions when using Azure Defender for Servers
 The following OS versions are supported when using [Azure Defender for Servers](https://docs.microsoft.com/azure/security-center/security-center-wdatp):

From 77a070d0ab26a071b41f91e33a1019338e744c10 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 3 Feb 2021 00:20:34 +0200
Subject: [PATCH 788/825] Update configure-server-endpoints.md

---
 .../microsoft-defender-atp/configure-server-endpoints.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 0ec1dfdeb6..870a97ecca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -99,7 +99,7 @@ Perform the following steps to fulfill the onboarding requirements:
 1. Download the agent setup file: [Windows 64-bit agent](https://go.microsoft.com/fwlink/?LinkId=828603).
 
 2. Using the Workspace ID and Workspace key obtained in the previous procedure, choose any of the following installation methods to install the agent on the Windows server:
-    - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-the-agent-using-setup) <br>
+    - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-setup-wizard) <br>
     On the **Agent Setup Options** page, choose **Connect the agent to Azure Log Analytics (OMS)**.
     - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
 

From adaa7e3c61fc32d37e0e9c6ae86b0daf3a32aec7 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 3 Feb 2021 00:29:35 +0200
Subject: [PATCH 789/825] Update configure-server-endpoints.md

---
 .../microsoft-defender-atp/configure-server-endpoints.md     | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 870a97ecca..060c2d575a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -99,9 +99,10 @@ Perform the following steps to fulfill the onboarding requirements:
 1. Download the agent setup file: [Windows 64-bit agent](https://go.microsoft.com/fwlink/?LinkId=828603).
 
 2. Using the Workspace ID and Workspace key obtained in the previous procedure, choose any of the following installation methods to install the agent on the Windows server:
-    - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-setup-wizard) <br>
+    - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-setup-wizard). <br>
     On the **Agent Setup Options** page, choose **Connect the agent to Azure Log Analytics (OMS)**.
-    - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
+    - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line).
+    - [Configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
 
 > [!NOTE]
 > If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.

From 4bc30c80528db7c70358245a23d90b55eb776943 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 3 Feb 2021 00:32:57 +0200
Subject: [PATCH 790/825] Update gov.md

---
 .../security/threat-protection/microsoft-defender-atp/gov.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 663f76f5c5..3ec12f3876 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -74,7 +74,7 @@ iOS | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images
 > Where a patch is specified, it must be deployed prior to device onboarding in order to configure Defender for Endpoint to the correct environment.
 
 > [!NOTE]
-> Trying to onboard Windows Server 2016/2012 R2/2008 R2 SP1 or Windows 8.1 Enterprise/8 Pro/7 SP1 Enterprise/7 SP1 Pro using [Microsoft Monitoring Agent](configure-server-endpoints.md#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)? You'll need to choose "Azure US Government" under "Azure Cloud" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
+> Trying to onboard Windows devices older than Windows 10 or Windows Server 2019 using [Microsoft Monitoring Agent](configure-server-endpoints.md#option-1-onboard-by-installing-and-configuring-microsoft-monitoring-agent-mma)? You'll need to choose "Azure US Government" under "Azure Cloud" if using the [setup wizard](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-setup-wizard), or if using a [command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line) or a [script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation) - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
 
 ### OS versions when using Azure Defender for Servers
 The following OS versions are supported when using [Azure Defender for Servers](https://docs.microsoft.com/azure/security-center/security-center-wdatp):

From d5114919769e1c9ff06d21444fe86603bba5ea2a Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 3 Feb 2021 00:33:10 +0200
Subject: [PATCH 791/825] Update onboard-downlevel.md

Changing MMA anchors and adding Gov note.
---
 .../microsoft-defender-atp/onboard-downlevel.md           | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
index 8bf4aa0e07..d1c3d64aac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
@@ -83,9 +83,13 @@ Review the following details to verify minimum system requirements:
    - Copy the workspace ID and workspace key
 
 3. Using the Workspace ID and Workspace key choose any of the following installation methods to install the agent:
-    - Manually install the agent using setup<br>
+    - [Manually install the agent using setup](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-setup-wizard). <br>
       On the **Agent Setup Options** page, select **Connect the agent to Azure Log Analytics (OMS)**
-    - [Install the agent using command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-agent-windows#install-the-agent-using-the-command-line) and [configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-agent-windows#add-a-workspace-using-a-script)
+    - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line).
+    - [Configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
+
+> [!NOTE]
+> If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
 
 4. If you're using a proxy to connect to the Internet see the Configure proxy settings section.
 

From 600c87a35177d6b3e6a3d7ab1a889366feaec635 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Tue, 2 Feb 2021 15:35:53 -0800
Subject: [PATCH 792/825] Indented a note in a list item

---
 .../microsoft-defender-atp/onboard-downlevel.md               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
index d1c3d64aac..bb6315accb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
@@ -88,8 +88,8 @@ Review the following details to verify minimum system requirements:
     - [Install the agent using the command line](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-command-line).
     - [Configure the agent using a script](https://docs.microsoft.com/azure/log-analytics/log-analytics-windows-agents#install-agent-using-dsc-in-azure-automation).
 
-> [!NOTE]
-> If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
+   > [!NOTE]
+   > If you are a [US Government customer](gov.md), under "Azure Cloud" you'll need to choose "Azure US Government" if using the setup wizard, or if using a command line or a script - set the "OPINSIGHTS_WORKSPACE_AZURE_CLOUD_TYPE" parameter to 1.
 
 4. If you're using a proxy to connect to the Internet see the Configure proxy settings section.
 

From 1cce4fea20d4e5be3b494a006c8887283e6f226a Mon Sep 17 00:00:00 2001
From: isbrahm <43386070+isbrahm@users.noreply.github.com>
Date: Tue, 2 Feb 2021 15:56:18 -0800
Subject: [PATCH 793/825] WDAC Intune OMA URI document 350K limit

- Document that files deployed through custom oma-uri must be less than 350K bytes in size
- Change warnings into 'removing policies' sections
- Remove line indicating support for Server 2016
---
 ...plication-control-policies-using-intune.md | 29 ++++++++++++-------
 1 file changed, 18 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
index 8eb3de7a42..1f84641636 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
@@ -23,11 +23,8 @@ ms.technology: mde
 **Applies to:**
 
 - Windows 10
-- Windows Server 2016
 
-You can use Microsoft Endpoint Manager (MEM) Intune to configure Windows Defender Application Control (WDAC). Intune includes native support for WDAC, which allows you to configure Windows 10 client computers to only run Windows components and Microsoft Store apps, or to also allow reputable apps as defined by the Intelligent Security Graph (ISG). Using the built-in policies can be a helpful starting point, but many customers may find the available circle-of-trust options to be too limited.
-
-In order to deploy a custom policy through Intune and define your own circle of trust, you can configure a profile using Custom OMA-URI. Beginning in 1903, Custom OMA-URI policy deployment leverages the [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp), which has support for multiple policies and rebootless policies. Custom OMA-URI can also be used on pre-1903 systems to deploy custom policies via the [AppLocker CSP](https://docs.microsoft.com/windows/client-management/mdm/applocker-csp).
+You can use Microsoft Endpoint Manager (MEM) Intune to configure Windows Defender Application Control (WDAC) on client machines. Intune includes native support for WDAC, which allows you to configure Windows 10 client computers to only run Windows components and Microsoft Store apps, or to also allow reputable apps as defined by the Intelligent Security Graph (ISG). Using the built-in policies can be a helpful starting point, but many customers may find the available circle-of-trust options to be too limited. In order to deploy a custom policy through Intune and define your own circle of trust, you can configure a profile using Custom OMA-URI.
 
 ## Using Intune's Built-In Policies
 
@@ -50,9 +47,15 @@ Setting "Trust apps with good reputation" to enabled is equivalent to adding [Op
 
 ## Using a Custom OMA-URI Profile
 
+> [!NOTE]
+> Policies deployed through Intune Custom OMA-URI are subject to a 350,000 byte limit. Customers whose devices are running 1903+ builds of Windows are encouraged to use [multiple policies](deploy-multiple-windows-defender-application-control-policies.md) which are more streamlined and less than 350K bytes in size.
+
 ### For 1903+ systems
 
-The steps to use Intune's Custom OMA-URI functionality to leverage the [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp) and deploy a custom WDAC policy to 1903+ systems are:
+Beginning in 1903, Custom OMA-URI policy deployment leverages the [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp), which has support for multiple policies and rebootless policies.
+
+#### Deploying policies
+The steps to use Intune's Custom OMA-URI functionality are:
 
 1. Know a generated policy's GUID, which can be found in the policy xml as `<PolicyID>`
 2. Convert the policy XML to binary format using the ConvertFrom-CIPolicy cmdlet in order to be deployed. The binary policy may be signed or unsigned.
@@ -65,11 +68,13 @@ The steps to use Intune's Custom OMA-URI functionality to leverage the [Applicat
 
     ![Configure custom WDAC](images/wdac-intune-custom-oma-uri.png)
 
-> [!NOTE]
-> Upon deletion, policies deployed through Intune via the ApplicationControl CSP are removed from the system but stay in effect until the next reboot. In order to functionally do a rebootless delete, replace the existing policy with an Allow All policy (found at C:\Windows\schemas\CodeIntegrity\ExamplePolicies\AllowAll.xml) and then delete the updated policy. This will immediately prevent anything from being blocked and fully deactive the policy on the next reboot.
+#### Removing policies
+
+Upon deletion, policies deployed through Intune via the ApplicationControl CSP are removed from the system but stay in effect until the next reboot. In order to functionally do a rebootless delete, first replace the existing policy with an Allow All policy (found at C:\Windows\schemas\CodeIntegrity\ExamplePolicies\AllowAll.xml) and then delete the updated policy. This will immediately prevent anything from being blocked and fully deactive the policy on the next reboot.
 
 ### For pre-1903 systems
 
+#### Deploying policies
 The steps to use Intune's Custom OMA-URI functionality to leverage the [AppLocker CSP](https://docs.microsoft.com/windows/client-management/mdm/applocker-csp) and deploy a custom WDAC policy to pre-1903 systems are:
 
 1. Convert the policy XML to binary format using the ConvertFrom-CIPolicy cmdlet in order to be deployed. The binary policy may be signed or unsigned.
@@ -79,9 +84,11 @@ The steps to use Intune's Custom OMA-URI functionality to leverage the [AppLocke
     - **OMA-URI**: ./Vendor/MSFT/AppLocker/ApplicationLaunchRestrictions/_Grouping_/CodeIntegrity/Policy)
     - **Data type**: Base64
     - **Certificate file**: upload your binary format policy file
-
-> [!NOTE]
-> Policies deployed through Intune via the AppLocker CSP cannot be deleted through the Intune console. In order to disable WDAC policy enforcement, either deploy an audit-mode policy and/or use a script to delete the existing policy.
-
+    
 > [!NOTE]
 > Deploying policies via the AppLocker CSP will force a reboot during OOBE.
+
+#### Removing policies
+
+Policies deployed through Intune via the AppLocker CSP cannot be deleted through the Intune console. In order to disable WDAC policy enforcement, either deploy an audit-mode policy and/or use a script to delete the existing policy.
+

From 2beb86cdd0a6358b3f0a67a9fb02f357f9f2a10c Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Wed, 3 Feb 2021 17:55:27 +0200
Subject: [PATCH 794/825] Update controlled-folders.md

Some customers opened support tickets wanting to know why CFA blocks did not create alerts in our portal... so I think we should add this note to avoid customer confusion...
---
 .../microsoft-defender-atp/controlled-folders.md               | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index f193b2eca8..34b3992bb5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -35,6 +35,9 @@ Controlled folder access helps protect your valuable data from malicious apps an
 
 Controlled folder access works best with [Microsoft Defender for Endpoint](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md), which gives you detailed reporting into controlled folder access events and blocks as part of the usual [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
 
+> [!NOTE]
+> Controlled folder access blocks do not generate alerts in the [Alert queue](../microsoft-defender-atp/alerts-queue.md). However, they do provide valuable information that will appear in the [Device Timeline](../microsoft-defender-atp/investigate-machines.md), [Advanced Hunting](../microsoft-defender-atp/advanced-hunting-overview.md) or can be used when building [Custom Detections](../microsoft-defender-atp/custom-detection-rules.md).
+
 ## How does controlled folder access work?
 
 Controlled folder access works by only allowing trusted apps to access protected folders. Protected folders are specified when controlled folder access is configured. Typically, commonly used folders, such as those used for documents, pictures, downloads, and so on, are included in the list of controlled folders. 

From 29073bd634dfcf3fb5c21fde7694689c56762e97 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 3 Feb 2021 08:39:19 -0800
Subject: [PATCH 795/825] update sheet

---
 .../downloads/mdatp-urls.xlsx                 | Bin 20092 -> 25191 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx b/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx
index de1ec91182b84f43093aeee46bb6ee02d8b3d2e2..136c11b15d47022e131bf797785eb4d226ef1590 100644
GIT binary patch
delta 18236
zcmcG#V|=B}7Cji-w$rh#j&0jX$2L!FJ007$ZFQ`U&5n&pzwf<w{xe_Z(|k#O&vWWj
zt=envwd>Tbddmbp8U)5tkOl=q1A+j80s;ae1{&UA<{btG0*ZvH!y*O&OscKht~0{<
z5Y_@1@3;r0It;NwIDJ;Yv1+CLT?u<NoM}Z;z~WC5dI+luMVSgEqp>vfX;+wMxc2j?
zW~$k<Xf7G!;k%VE4^+^P&kQQ{)lMHTmd7Afkpelk14g85;ujX*?kiR=*h$b)F3ObX
zoZd>=7U^6COv8>%OQ6dDpegH(3&^MFw2Jz2C4XG-c?*u9AF(XIzed4V;$!Nw-?*2U
z7<N&Azt}u0qXuW<)&`AK@Hv{|CrkXr+AM~8>O%30d??7ERCIqjnMu=7hGUdAJbn(6
z3zZv3tbL|DX_Pif3-=_t@B>V^=hj*6wN>9pydEObO5zQbdra33kokc+XNlZj&Wpg@
z$l4}i3c0j(_I;4SrAv-DK_k_^HQ<%|em0R(AZ=w=xG07>;*VKLl#ekst8m*Ho5S&R
z@m3#iqPLyPL$I?Rz1TyiT@jr3<P9h{y?$6s3xmi=$7f-n>16)&@~t-MK&Cm^Zj~^O
z*Nw?9<w-g+Rt{QFVQ;Q>zmXLRXGYpW5N-xzKn%7s(C13dj-+q;2Y*~2P~Zmwtn-#P
zYW6HV{zdFTy{mx9LD2L_;TaP_anE!Q%54u&VmvQe!wcvSP(T;zh@=515D>!`)reng
zyIV83**RJn+1XjqyW3b-s%qO+a3cBYTYQ4<W(BlCvhl%i*c9EBS~{(bkYdWz!eC*~
z7nV;0_>C#ZEIQVr+i}UiWnX*WP7MtlwAiehGXx<fxj5nLYP5^B2P8LY&)gGM{DyL|
zL29LO7~p0GEbEWu0y<u9V<+JEX5^#ztbl&OJ9S~?$I3WSTF&k61l$*b$_}|lf?GeY
z;d#p0b1ejgH8a^v+)QE2%WV;hyy3yAsWuW((F~_J8$tF<27>=0v|K|()zZ!cT{imQ
zeGuzgBOuB)7apnrS!`+!t6s+6dn)s<Z5f?!#_RqLc#8v%<nsVoq)?}$<HXe<rw3a5
z9shyGUoR81S!D3a1$ji=_Kku;W$CIn;#J?|fUx$B6s!J&1t(xhsS8E$raSBqzjgIx
z(Nq-orq)Uq{_)-I_qY^W`_i_c2|0RU<{7Z{YDg#QRb8z3n%|PE(8SVIg)q;SBfJ6l
zPD^GtV0#z+GN?Mau-}+e?blkOaNO(1<U`>_in#KN9r*J0r%O8+%;OU{l;Fxiw|-5Z
z@zbr1p_icF?n>H$piyfXIxdqVFR9b}%FHaugV{8L1jb`Qz>ea=D-rpjj+?3G_j21S
z*Eu2@91D-T&mR~3A>O_k-!>SqLp!GtldMCG0o?m)>)+?9O>jrm47`x0&l)-6Xivo~
z2rZ~i+b)B;ed69lkJ}-}+3SmtPU*|0?pw&RJR(I8u`JF*L(babV3R09vS@dK+5`!X
zs`E{<?UfQiTgyt8$}G2JFlD7BMcWhXFGe;{iv76BZs8C1;+@B9q{#|+*?K63Mt7#I
z0MIgtGtKrRh|T5FA4B(aX5iQmSn=YYm(U@%vjC+%TiHf(?HmnG3XJMT#*$Ik-)O&b
zZ}NmPh$ljxX&<4ZYC}q6S_<J;BMyiblmn57k4Bp?{Mnq~X#(|}2GVVUs*Q2OGuF~E
zO)N0H>d*E$V?Sc^ATU8aX794&I;|#$01<n;*qiijg%Q_4kHY9fVBIAq#tcz(kd*CQ
z<M5bMw4^aU%U5&1uR)T&rKb{(jf1J^<5A_6RYGHshV}znG{x@!{8I#J*o1nX@n^$2
z=2D3b)^+LA`HCRlZZtjgHk1YN+m@Xghgr7nkBXewHp{A>XjgUkwsHdI5*)pEh`)gd
z<FDO12K%M2hF}f9V5oorNqv?BjBp`;0=oideH;>8H?UkhsRH#{E`eq82lK-5X<f88
zeZSSZ`X}fL(L+c+ee#p7u5Y-lhsocm@Kg|m8zGrHsV_7uT{(FBxI+k5+T`JyDGJ7d
zb)0|LzJ^2}+K0<*#6wZ1pkW<eib{>cH~%DA&Vx^$dscIT@*(E|WaT&qGe_@5-vQW&
za4jN)^Lhy*(8G+kz>hwgbTyZ_E_HovXK&zPpAX)`;Yc7AFKA4_Q_;rq>LWmyM%NkT
zo%-Wu2_oGd@|K;!af(U|=7M<=<@(5A2gsBeGc-pAeNa<A>KR!Fl^<fA)|}j>++7HT
zxH1#zG#Gee@9l&k_K%H6egDxYgt<nD;c_$}prJS*AS|H7JZbbqdueb$X5xBG1|w3)
zADVmoxIckRSQ7bhs;-HpG^(nL7dvZAa<u_WO<4oYryXuYak^BhI8|U#z<^Kw0l37D
z0_v_VMzvFF;X%YW3hHVnO&jLBi!(<?k!+XBam_NC_&hVi*^RsRjxoWED!L$h0!kHj
z;b5nGEaM5-ytI24I%;=7!;%;iWXq308ym0*ZHZ(~xBxJkZ#2$ISQ*-^cb;@@X;$6J
z`HmFGq*8}O0PWGW2g`^pl9II5%TwUxa)|I`+9EGo(fE?5CkJJV0X6akAF?EeKjzy|
zJ5in)56{7g3BS!NmZu?2y~m&H-;fCmhi9Zx@3+W=DcOw}G9bDE62W%T;e%#XSE96@
z1saYRR^L;x|CnUwZQTyN(}qiMhGC2u3CxSKVnH-K`+Y-XC4OYVVVLJP=N=<>ZY>*U
zG0Mur#s=WUAZ5#~0l&}>^>u4`#Z+aBP_?2O2*o{0Tip+8QhjGb)#z^k`q7cTmb|nM
z0SJl)##+U&io$XOI5H53K(8N7ZGT!<8A3Ndoxgf+9MxJMy)|4r*8S+1^O+4r6tabZ
z9A1#$74ttsX&zWqu76%N7+$H1hD`4u5mwws+)Mj5z$!+trCG8VJC8eeO@ZP$pMd0*
z@LOyyCTJy|wKF;>N=rTrUsA~YOiH6ANj6!XMUES1H~nD%U?{Uo)~RQ;7LUZkT<Dt#
z!6>*ac&wknIJn8&RkfffE_6;OobziNP?pfmFqKcLd|E<=CHi?uX)C_V@Rj5~KmYlY
zq<azbyA|0xdEmQ1=g&XzOAx#F=hI={&;yLqp+pY$n>u>@1%~k?9a>d~IRm<73;U`k
zfs1o7*#N-%)5rV!#PVZJPWI>9bI;bt+Y=-2+rt^Z{^$GIgB^g79kJ)#{qw1|$A9bN
z_3Ztqhkonx$w$bx_cfNk`~CKI<`v-W`N4ki8f$SBi#W1A9E;dP@SX4T{^a_3KtCs&
z-y3w#$taV0_!qNYTAc;9KFVHMd7TZmS#_NiHlQY)iC0bZf$l&y4^L}cG!IXETs1FK
zYrIq;TT4oTGBA!kfJHNLk?@BD|L-@tZ(H8viJ@JWCxh=#wN(``!rv*RSZeL}$(4(Z
zcgcQyklS>=J7u?ComEZ>J>8e9Ap3Tak5>~&Jh_Y|A#xhkpkR?Bks+blySFZyoAiWB
z)C26YKU_5weDiB4b0~{%((|cv*xAP;3vRzUz{{$ULND{qPa8LrQq%(}01E&!0?~M0
z@4W=|-K`$YrYt^B&mYfbU#hno<Z?LFv>r^pNv?oXdJthUok=3;026}-gB}E{J#PVB
zr+XdLjptL8S!FRz@M%F+&ttH#D(GlU0c3gL;3^&@SHxY08=YoTiMl~Yor(5ylYfKp
zayq{Hv0Lq)NLkF0p6`{|%)U9A0VHosY6qed+$o7RpCLoFDPfQ#5GNqhdy#Wc+?+l$
zeb{WT&CoWJ5Z<vXlAk7L5^*WAw#G?(nP8R;!PTca8ZN?=HJY>=^dD^QfXvn^=?yuV
z-{=%5L(U}1&J=S?!_XdHhZb?DI>DI|X!GGRRC50r#cw2h{dDtUa8TEQL{Wx<S=5ch
z#wHV~B9}!zFms!F|DO@19EAR3DqcAm>@l06tj=9<&SLD~f)4+wCVcHSKc(XOWE#pM
z1Z<F)6M)1HnluzPG<1*%Q4`&|hyUDf))1=8vE1&Yoy&bT?Kr|S4LW7KQ@BU-nF$(e
zTkH5odsAv{4^;KjS~`pN4l0w43`ERxHd1w=;Q$py<=^W8fv9~us*4NE*Xs!Z`RP@E
zz?BEcOJ3+!6HaN@64*JK!*cD18Shn^h0@gRe*zjQK_NMt=q&EmFv6ou875LXmzgQ@
zV~ip(x-e%j#IFcAJ?w_6o{Q`;=#B6)T5hrfP@3sto}#&%=+IiiSuh6cP5D;E7Zk12
z0}5VAhU4AivPy{^PQ75)6S!cT3#aZCy9>Nv<%4H1ss}Kc(hC`$2uo)$#;{>W>dF6@
zW&!BJ3s&Y5*Gn4AZJxnnY$EYD6!Ysue^1YhtGMn$d8mF(lQ}}aR^0}6=)S+s+5yb<
z?^q;7uhu)YlV;MpE6pY`Yoj=vb`!-D*qMj);%?s61J$EpK7t2p=rE_j#%&3Y^>Qhh
zN2bbd$Kik6Zq|gNK;Psl^Ys+Wu485ZJ6;rI{4~lt!D&jNmru-g`U-8$!Af2`8qJlD
zkR+#+6w>l3gm{JonJ*@W+UK0HC{t`Qu4+kT=Y##bsujY`oFsgw3u20;6mmplhtI5Q
zlhWzzEq7$EeaIJmbv|_id{PVD=O-yM%7*%!TYp9|#d}A*E%hmPF=Jdns$$UrilOqk
zvhtTbiObn2a^UM^!W2lSw7Sc+ZA?=1AYa2AkO-6si}@QLe)Om3U=)9jt+vl9QgCu2
z;|-N&%k_R6`oZEDV4STOT)>cD_w}Xkh3duqVnrwH>N1|C89cxfX8qvCs%B`!#)45S
z<9*@Vlw$XH5bQCVK%C8ru66(*a-4$WRUUa$dBiQ$5q3+yK7B^Qv&s%`&VoQxyiBMV
zqaX6(hI_}9e#RN;9SE>y_--H%^|J*s!BhL(-X1zL@0d}h8EtxI&I`~8a$w?24JC+m
z4tK=8byJP6NR+dg>5g@!GNufeky7~VPF>pef>|#pQd!WuU_vBFLqUM->Ve@|7oZXL
zzDw?05#xaKSt?~i)Tb<9_P*;mpy6`a-0xrxAjHUFMndwjUpSb)a40-tJ=K9oEque<
zztKq_7yN#qcv=g6R^<nKy6{b5-JjDx4oZY6ucWAU$LxCH7<h!8xCI~MlI}MQ=ct=m
zQduo@ObW>9inQIT5}-Au>&D2Nj0_3IpYq!sD-wGQ1PEsnG^D5OoGnqVh|{-UmeD0b
zKKNBJ-tXv{r}4nVe<MvJ^7wv9L<D~*CHtdqc$Ob%q<QF)@C!d|RR`WXXcfZh?lEDm
zoR5G02k;kqrkRoX<<*Bq*vtJUb?r7?ffCqL+9ufAwrhYWeO^+Tg1&eKsSof-=MVJh
zw+NahSUi`1!Wh+jeV)EGaXCurd7al^!EBZ?<{8oxk;~z98oUXXQO1}P`@kGCSIz|l
znHgiSb&l&_w{Y!Snx+3T>9{Rst_W$Z4kC@RVL_{|Jy8MP1xS=CZt^2_g<pSNlolZk
z;49Qs<Y^4f%)$MPaZOu56!O_mDVHb5RZ7uw7YqyVs(==lw1E+(kGH`fDFO=8R_9?>
zxV3<{SAMKj0VSDFCfV4TQd|GP8Sdu&dW|*l#qsoU>3=;(+VISr>WeXp7Bq!?CS?dJ
zQ)+MMgA|aQ^e+a6%Ng<j3ra*^kprSAb8JCnjZX(|Z;g7M0wTrwZS)9rTxA8!*Un$o
zz7dU4%?6|iEesVZTmTK#Qwv60TpAc}9jv3s4<#C!d5T&&FC{=JR8|9!x*fpX1bw#&
z@?WR<F9d^sAP9C-=gS1kN(`(#VvO)WV*x7I{Wm552Z6{MA0Eu!5;cb8y$3C3Q)l3C
z7!0PI7yb0i+(jhD6SU;?49St)gf^@x%(c_jkK1~px&&ZPQS%=C?GbSlV?i^bXyx|`
z$$Shm`YEBgOCjBM+IwJs`lnjr3*;bl&>%0NyuR7;Kb(5+xB|Z>0JvUG0t_wn_qURA
zlFMote!FreFvPe550_VK21S80$r1gvdZvJK(0w<4yR^r$H#`{LZMzyLtXPpDPJxNN
zVzJN!t^H5b_$VpkRSJc}Ns2fTu_)8Ue}l2SM7P$d5w^E3x_%v;au$nRIGh=sJz@)Q
zn`L~KzE|TOfc@nRK3V;B)1~)yUvejQ-w5IwqxO$D(EQbgza#XEInek;J2rxRv7oYP
z#V$qS{}Az)2a>mG<ek1c*;-QGzl?4FHSIRk%r{OF-oKFxC7&rE0hXWk3w6gW1`098
zCIEj&F`r2g0`tpdK*ZhI`;Y-UOkd23y8lNGvY~pMMBM-S095Q3u{UESUvT}mU<^?4
zkO_<zzbOR$)!Dz^5`M)a9t8O%8!=auvuQ;01%Dfo@@8y@U15E3O2YeJ{)4u-NO(D$
zp&xjF{x&2ur2f*EImQR2<!c0>VZawmH=uv~Y9+`=-r!4zeK$ssR}{^tYK@(Y1K`fb
zRgMM2l|rY%>?b>Swsr6`XZ!vmbQA~j{E)3L%Ca#@vD}eA9Jv7rv5a3NrvH6zPCv`?
zt0?$i+;Ev{*-;qefYh!+1C4a@Vodil*cBO`0$6S(UB7hx*8wu#?G03n%{Ld2aXs=D
zB$R(WUFl;p{^qZRmA`*k_}8DD>#vv)A0N?ZhGw4EpU`W7PCyMq{VQE$PhF&afyNmI
z6z)mpGI7v)=`b1F5?7_h8AS8XP3LSG0?^r<|Hx>-77xl_i?{}ehXaPe(zm}bL&t!9
zVTNX|`Ty#Z&r{{}%5o}xTd_oo8I>93KR8j|HsiPd;za$&6ToV|Ji(sKeW7j!%(JHF
zoGs`7g;P1>ifs2$dIvyT8N=zpKXz3rb0GPF#K4(xQ=nldP+rmnu4$X0kDnP&4Jkwt
zx8BC_S%16N8Di&)Ww3>M`e(n1Hy!kqm-E#q)DuoQ2XBCsPP?tIcX(eVCw7M;sXAIy
z{(iZBx!!|R72#`XMQ@D2C-^C+_gbcb@L~dYN^2@?Z5tggtqCxtH<6)Ii2_!_Rz}*3
z%Igvn`kQQKLbAhr?M0mJC(qP&Xy1M?h@b5!(*H<qtA%g-Wi2eXj@_0U<MP<b&1t-|
zKmL_&2F+yTe}AWRcvY<A<quThVd0HPo|Pu1(-`pga!=xLT`-p?eQp5YNPa+oa^6b{
z17~oO5`TRU5cFp+G~3UIB60#{B75G+r-fwoA}rcpOZ1>hhdllqul~8D(v-71*SRT#
z+~nUhRsSe*8i-P+`H-0^yLzGU)p*tPNd0f)3Qbq+PzFlf33@KlfBc`sOFk_7J0&r0
zBdwR*X!7|@1_?uHqdV^56OYOkUfU-<;0&7$$8KMrvd5CFeRLGayHBs_{BAqrpA;J3
zMZr#(v@%(LBx5~p3uy+oKrPjx>s!rNdkzzBk{VmbfYp<dMc{%;@i%+cKY|?uq9lF6
z3iyIm8ubP11Q$Fr5PcOLWsF|<5`1sDety8_pGX&d$Ts)>$_NvH>>Qo1*K~`%oqy+H
zK|TQOiFLeI9Vg-XT>27lZMAyh!2aK<-0)GxHfTPGwCloF$P13;P>2-`S@H0PeIGlH
zM5$t{r^<^f<%5*#@=cPjs2TisQC;~`N3payW_2bWXT2z>rG%ehB`VLnOr2>MS58Bw
z1i;UfauKQyiVFI>9ud9IM)OipqQyTWsw&N<rYoQ3a%G5hi83ZUg9-OFg2>czNq6~g
z&k?75$oI$LrT=Y;?82bVgk>h`LO)nO!Rsk_a@sC8Dk1S#u2lX=mWm%Be=V%S8}r+<
z6qppMDBqU?`W34IjCcwsGnWdb-<M9(865ugzI;!40X|O<Y6+V1bzpQhoJG^`s+<w0
znev)0<0X{3gl9?e;s0d9MX#Ha*+h9kEk(XijV|aAoT<gY?#7b%C)aW^-DkmW4wdp)
zS8VbBA-?1TzCVWkLVRossj^`1Qep~-!ceflE{M}`lPXOU@aa?*BL7EVo&O@17Xr5s
zb>qp)7pvgeP-+U2YNsiT9&NY7s{X!tazgiCv|jQee4Zp<XxrD3(b=>%4l3Yq!fRNh
zL`*lR3i4gQIu-kGr(<88ih-BScD)GgcDX%)C;_wt=iCD8nv%1=tB!J|bQhMRCqx6=
zp9W@;Q2*OMRHW}|c&XcsmI(M527V#<Y+Vz2R<~3d!SxauiY^VAC}asrRvZoSKj9>T
z+(nU>%?piQh(3E3Bqh!*)tEnVUm#>On@rJ6#?9v`dT@Fp^dDA4a^}(jkI4th5socH
zie0KCIe7t%B%bAs&V^2uc*iV(SR>!(l7+}TcNfIlMXIr^4*%mNciG;aH~Y$QII{=h
znEC=*r!WRiPNnLEf-*BnDhY3L4Pqp#C(zUn<*_bf*#9!M>IHH-hN>WFX_}e?2V$Y<
zdeBz#<`d5Xux#9flGJBI8IyxX_gbv~ul-HF>`x&tv?!sSz^6WkTCNnxz%*{sT-Yu|
zvdB`>sjM8rz#k^?&qS6aZq>HRC~`K(jG#$-Djqe-$INhp8*|%Hf=<>W*92~){c3Q+
zO=b$F>ZSL!PLon~zJ6^E;#ipe2``}lkZ0GQ|NXQOd^H(|XVq-^$3Q(zvc$t=x@qcY
z6CC@Ol=ySjiD|8R&7DX}me6*5&5gxE(6uP!jeb`%Bl<0AtK#d`t$D*aN?Qtd!};HQ
zWL22lMUk1EWItYSMV7#qh+!h1QDQeYeWvm}RMEhWzobhe+8@}M#UBoc+HLt$GrjC)
z6g>$8Hw3rw=a=LMVvn!)=f}sv+3T|WC*=P&c~oL#VfqE&f@@G5f!3)>BuZ#F=)w9>
zW!4*6G$@3BQoDPW2)(Z!yl(ErGp}XKsd*BLVU;QeK3j$ob-PVe;cdA_Dl|}UVK|y-
zC#17O;WyC7smdO7dJ$)l)Vjl1E;=z{X{uDJgQdPDDl_8cb7)lF;_b-gcRwrFKUN8H
zHG>yxHr)%D(Qpe5C`&M4JQ?rI>&;x8Ys+65w8g|oRABzI(FrcU|KequXh=c^NZhhp
zCqf$8qPPGEbgqMaS{e<N&6zB{u*<H$$S}qz_PYBes?2{pW@UY=LMw};UhQVNdjE}&
zcl%nPX3kKVSWL$VPk|Mlk|EW+4)Xb?2%#L6X=XE&WFhLG6Fl%3Ig@h;Y3x>w+)ql>
zSlt`_s4Ew?7yWB8xEPgga$(pKaJaK<8-7-4ut+%<A(AL5#+pd?9of+fc3`1t-^j+j
zM)XV`i3aU9uE)ycXqt7(uFv9!n-8Xa0gr%nVZw(;kWrz>N2^V=DK5ARp+!F@x0XAJ
z`<_#p!y9!%%5NMqOG1$JOvi3|fY^_qYuJ<aj|@guVzu)Fd%v2}V`HjWz+HcYp5Zm5
z;VL-0b?TItCi;^+Ud^~gbD^NxW>p}W7C%@6YZka-n|GRN1yz=B_{Z*0XM%mdu<B?;
zd$07*8uOqrqwnm$7^n~~qhmvSe`7V^ej^~B21Amg><gV1fSc5-3{nE82M+xGC!YJs
zj|}rr`*V_Egy7?cBDv)f4d8PFuN$V#hF2$zY;w-OH#*?pN>mF06Z$0-U)(D$*$xJ8
zgjn{QW|GmM*HN@Dcl12wy(DCMG<PjSJ1cx5Wmm@BC#7MeIQdEgv#+}3aMI`3&i;Ql
z9Fs31`WcZ#^^5kwEm`+4>uQ%UsYH)SN>_HfKc*$rH?D`H0H1RYad@^AEOmb#UJaMw
zWYHN)a(3$-HqqbPxE?ySW^`uZJBifcHr%{cviHYS>(Fnce_fvq-@m<R$r^c78Lh^Q
zx{4fj_7U!azK2>uP5n_A`{CAArYo<oq|KYdr|KI94SN8YNB*!kT6qmU?mOY;>j%wJ
z6#4)S-DR+h3Sh+~H0qan7Np!6N&XQn|4YX^j99gREkNnnfmr(;Z0aBs>xP;itmv(E
zrOG$p@J1M}j7No(@?d1h_8yfrmC#6H3-RkyHCKK?r)T1jfR`R9spsc#-K*h4lpv%o
zXLBw!yJY7#lc1=sPaD)bsQeMXR@nj^CCL%Q!>|@O6BMZUY_d2{2U<eqXUzYZuAWLl
zM*d!wR%&LFMr~A5mZnaX`4@}266Ltej9;Df4Qy|Iu@sEtGdcNl8>60>rIC~+a+q0V
zVO&a%KFHqj`s#7&5vD1oSz&R?3h=+R1;X;sp?Yv2pmvP^))oLPe`}tZiPCljj7TG2
z#RVRX?!Z1?l>E4I$)M(zMN2}nku(Ev<0V&uMa!O71i3^tDMUqb1Bj4MyC3J*Z`Xy~
z&Pc;j8>yTKq){R>E_AOp;ee0Q04lMiy6zuYm!jeNK|`^Tp$xYL>^$o*J4i^L+Ph0_
zhGJm{RSJ_Ko&Y315gZ#drz^|mK?JedwMZ3lbF>2yrqw+b!ylK1$HnnFm26uyvmGph
zVKH2#Tg{HOm_K(Px6xQS-jVF9AOx&UC^jNPjS8R6J=U!T*zxatB9w<`$9hF~<mfHl
z9y4U591E&!b)ZZftDl?S1JHu5X-=9yI~X0LqBut#Kml6{cTVI(tI48U24fV4&*<#*
zsp%J{y1PB1dg!7lw1K9A>Vi@^3Av@_7?tX**>hv<KUGfnJJXg?T;0!MuxFE=!l%_F
z1ICOlA&*nh#9yby_jqj^H>3T{Mp1$LBjm0en2|u8kZ5LI$n}buChrL4@qGjmXl}az
zJL<k6JpgQ#$dC)3M_t06uL#7)OJkjEi0^fQ>={6%;vyhRBXqraptM>};SBGW#6uq=
z8wmSTHGlfZwGG<}W4PLdbY5Zq^EY`A`GZhxO+PQ}9_#o?D0Dc(6aW9Q=bvWyw{rBA
z4jlXf{Qb%#3WXR@L}`l37pmB20S_-(Oy7R|$WA=3nTjEJi1hGgG3nIX+_dGFZ<%*^
zbN_64<wSF->-gY%ZzF(t?4oi_#r0Xi>{vfoetx{0{zM<So*XBnErLBpOs-M+;BD_B
zoS50u$SyFCAknfU#VIt8$#<o(?C2;ZvvUh<oU4G)l!AB^ZEFutw(U?<2T*Y+F5H?L
zS>3d(dh$V3&(Z5uo-8m4C|0qD<U<gGZlG=lSL~Z2>1iE+M>Jwmt{F2pXZFIXBZ?|R
zGn^EMz{x5Ub_poPcHRAgRiA1*E)|M@01>5{Az?s+wx`!wJesS3lapAmV6ZPr;@t@*
z0q(R{&5^EYPS2$rV*Wjf4Tw;>3BnXl2l^qjnkh5>I{~Y5&b5|05bdazkUnExvMtg#
zcl^n}JW0UgJ4!!|`R@S9XOa7eB2*QRDbC7qlMx^PHbH5Q_-;Fp?&bJ^@=d%oA)_WW
zh%mXiXTu{HtyS!$1ao-3JSRQXW)AyAk@Ofm^o_m@8R2B31H9&6S%6_P&SS<TVNJ6&
zD-@&T>jryGSKJ)Kya59Q)AvclpCJkd(K*3WH_up(>BIJ}@nuG(C(axr)X`>@<3pIB
zYjiq3bE0)$2(3(Sl#RtgZ|3D9RM!yIzMiDT_z7e%SJ;h?S?Sm-C1z2n=Z*8qXM!Tk
zc2Y}@ByQPdOLiOq+&X=^eR$fPj8RSbb_)sfk6e5Rjj`Bh^z6>FGgxW|%t4Tc+|zAF
zQfzSj)O(QC$rDIFSi6W;!Y3J_%Haa9wAxw?#BSe@ps$$%b1i?-p;a(DX+~q?kIPed
zl-Bza6|nq4f0G0Ew4~%W`z7SKnpH_yIzAcRiE$IyYUvONP+3A$G0kSUgjt%w8+Y#E
zz6F^`T!{4k8HiDH13vB$Mm168cb<C`t(vUCIie)&A?dUq=TV!!bLiEy!9gI@hlnXC
zr*8v0*ghvbQod$XUcErcD6ZP!GgVbFcn<!{^d;}$|A++@g$aZJMx?joVmGwXTqL48
zKv*~=Dj;wC1}ZtBNG$q#iw;M`jwdlID?NJJkGzn`R9^0M?lg^?HN2ZvkkY9AhwW&(
z^pPZM4w$6M29JPdi|i*0fGm?qim~!GZI|ASvdz#P`&Xddn{0|_SyLmZEuHmD6G)D!
z+K&?0&>D?e_^;Cp_g>wo<mcciF6*e!yuo7@GbzJ)^c4<E<z5X0<l;q5+_9w~@t_E!
zCe%rDq>Mg|oKl=n3xM~YbCsQWUoDQBR%+`P7y$}~e>HtOb;0Zq1PF){;(waX`v27Q
z3%6Qt$XghAMTteS=;jvHrq~AK5QCxN$_w7|Mc+q!iT`Q(^AzCx`tG9?eKpW!u8}-?
zAPmJkxXh%3>STtn!ayecwzI00nJ(!L9Iq?K=bf1ktHTA}k3zy+R}%M62eh#qYi=8?
zEF^$V%+i?c@yU{7(gnkvjm%;wfpR?ku)c_*e{i#((S;72HhRUv{2kgz&>{9kmz2k?
z*unu;&Z%R=#h<ZVcu<S_L?42ZTuUaKy{gW;s`ig@rh{M%Mh)1XJDnd-zN(VahS4ld
zi1CwhKWo+*H2PXw<EmeKpi#{x`}H1hpF#jq-zlgFbT!6sY2V3cdwO3E>JzgnrCvB@
z5*L{xB8jFjCy2ac)CA+F8@8FWCJQ(v=Z$zj#LecVb`c(RkzrjV33tc5MOLl3CubO-
zAs?qH-Z`tIS0DT-Xi<s#{6S_BA$H6kYJrNR+NBhtUs(ja2;<NDz5nDqR~QEMXe$8(
zr`*Q*GX^-~GKTj&#`?XH$fNqVt|c4KXOLqM`4Jw7Xtr`OL-%GWCq~>zr3R-x3IIJ~
zp5Uo6IuFFC7gmS57{i)L6oiL$c~^k{TgR>A6%qQ0;6iGIJb^g4*|UIAq7n6sH8G9?
zr{OY}TT~mE_Wgt28n?s&f*svwZ)Mlfi+fin1;Eh#d_Ox1HVFDoQwBgwAQ&Nc;5j2G
zB0cgN#!f4XM5kDQ)xl<!A(wEu8lHap89kXK3sss;i@UyIjCztQTWDT0B(|-okcT~-
zyxH@(EyL;?UOP!|r}AJw1Hf6G7_HMED)yZmaHz*M1i^tjq#7(NLk89DacZ5SR#lK{
zTabCQyWimde_Yix%#Z^h0q&|#ZU|o|y5e+zfWAiid#cOH*~8k@>2EBY<5|UKh+TOV
zeLxPn5pIL#_|)Sc5U7zBSuE%j`VP6<*bNK>+z-huer~SnG8zPWU~&FNqT<&0W4y`I
z!E*kzG0hyTzVEqGN0IMH8VOPlZ{~loDDw8gd<HMtN7~-?OBOI9hUyT@d%bbDtUpY!
znsGdVLrl_(*35yt9Ate-KE|>%I@g737HIusdeWLAx4oz<xj8KQ(q9lrt9&|fBT(;b
z9qAq7H8IK(UevMGoRPhwft$6>#m=<a&?eHye92#FJ+gT8&97ZqWdq4|y!Qf@heIQ%
zDZA3xaKMGvOcG#gpf{#TU*|8^hc8Jg$<d!~aOlWF^^@$;xb@HP1eUUdNIfRg98P=&
z{0#Si9cvqA<WS!M=ks?YJr~rKim*9nYtG_57_e3_5hJ>0TjI?<MULy=LyhZ7Ewyb&
zQ$B0GSZ9w7jB)AgQqGdySI)d8T_{VA>bK#X8Dr;!_^N=#fN1)Z5Z%P2yXAxmvR(FI
zD`353dRM7IPm`S+&2$qlqO}!PL~gcRZgBW{CM?1L9WMxmfX}!3EkChU1B$jEwZ7P0
z>eb!qFIpeK*~Yuz!AAF3i^i&GP{mpdTfbw(3V393Eyqi1`T@nePCY!$nC77vs1CXH
zY^3H2rqcjWM|Lnbpgsj`xX^)k&x%rN7D8aKZVgc&xpR6|pmaMov6;2oJr>axUus6v
zG7!~aSfrk|J^EfgNHN_!l+pEKV^lh5gM;10pC9DYA-l&&Am6RI^$dItR@x=2oEb^D
zQQo*)ufomqz&EuR>D=H(P=qkAmq)n*`cNS$jwApGUhK!fb5)?nVX){0x|zoJ{Z3rC
zYsAG|ConJQrOO#C&9(cGprbe-mjy(O6CM&a{hb>j)foPVls#=p!@9Coy;M~&*fBM}
zd9f!(2t8iSpV&2Ct~z=-8Ri1zpxn!M(6rC|yD3H@Z<GiDLZIn~m^fYUO}ru@KDDPE
zMFs%7s&vus0zru4T+U7eyh7%G_-}~fdU};C0$H(gcqM*u;5vO;SWU(A7$5Oivn@$+
zi0rI`M(PbbK7P|%#W2D}kC(q)b%A1r;sF@VHlPi~?BNJ1FG}rDou{NjJt`xqZ4ZtR
zP6=iMYo5$P17PjpHc2_DfoL*I?UPQJaQgrdd|^y}AW$)d-5oE7;1??<tTJ14^Q-X?
z_>Ie;x@SO^=xs|ekpMqDkyVfW?Rv6G+1+svXYKg7gM2OG@1SKMG~hpxem283ZT~1Y
zM3)O>3*6u*t<(%yqov9~)n19nYB(ep&GUSk??eWJzqk=o1y-r(3RS2=DQBZ73Dg4Y
z-_=7=O?_hpvjX0Nxn#Xlaib$M{po4eyQV-X<Hk<Klh}$=6tXJ{VrQV%y%=EAm(I6%
z5Jyq!uBo4Hh(mM7COVo`JXBE3Ypm%gR3ySu-Qkz#Z%@L?DixApA!`q;0EvSso|`Su
zwscGxBf!^@poJXvOigY~s^Jec>s<iQnAZ$XK-N2Y&{vF5hqKSzy#E7fS>%R4>ox=g
z8itJO;c^!fDg930Wpv7Mk!uOw<9ntD{<JupYk@R7iNsGn1EX%>mEs<tKGR&4;Ny)0
zEl*mhL_jWqsMCxuH?c(t$wcS<rs<O#FE)mH*h5Urpq>^NAJ;b-|B&Y(<$4LYH19y3
z88Q7)FdfW@HePS}n$i(Po3`^rGP@8&4cvKXF{u$zBcLHIm<uf<p(%FLSVwz7+(Y$?
zdNKS7cOkm{TXPRMuEh3+ccd)kaUs_PG0hqRbN5G@JnMy}m}_P{u(+m*pK)E}ez-+G
z77l{wdgovUe1E)IZ0l2o{^b<Fmle-)uFD*?kUqXE49>9`3@P08dg-PAnc$@UU`8;V
zRu$e=W+3CJJ@go^a=SBK>4s4-gQA?m?=}a)Umo!o5|xO4wgH~_%JbL9;}WTR+h?iQ
zJ}J@Qi>DRl%G>TFW7PsW_zM@9x5YIi-E|>65ic(Wdcf{f4ek<?yN@HFyFu0C!fe&E
zm!lk<M<q{6=8c4Tlty0uJL(lbeXAY>Fu$hebd$<ik(2qRW_WJY-dd#yQP36Un`fl+
z7KcmsOs;FSiHA+X$~RfLN9rM)A656klDRDtn^{<A(`b0q?Kc;pYiP`a(ZG=$$44aK
zXRCqla8Zbo0;F5puL*Jh^O&AE8MV{9tPkuw|K7S)&IV_!`7w24!a>)Y<UQ@?+@-Dt
z{otOf%l(Q(2F4>Qp8E;@mcI`*a@`3t&+SiVTJrJgqhj=YCH%4nF2LWtVHRzOob>Aw
z&xv?|Be%@vM4yaSc`~_yC!Fx5C=9BQ7$xFc_?ERe?S5sYbOEj{R+BmBA(S+-DD{dc
z*=^CayI9~86n~py$~fpc$h9$hKW}8~cDJ;9+mV-b%<of|?#OGlkNl~S>5900DjqLb
zkC>~mkm(d+xfUCTiLJtA-4v=kEY7P>6P9t%q7)#<8CQYsYE9p;axP5;57x{r>Si08
z*cl1O`u;ghUjqn=aP3((dpkv99}<Df;h)20-Z_=gz#iw|_q5L=e?xDk&kp<K<^LU>
zoo)8Mso;zCu%KOdFSa(IEU!#Rn4SHDw2guP1Gnw_OTa|Is?D<fP;CCD*Eb!ei<i-t
zUI6s^H>3UFz!~a#;B(6Jf)4@T8Y)LSR~i~Vms~`zfj+jXr3?$HPmA2|yjCo9ARTHq
z2^N}4Xui5^;CdYtD@LmA4p;j5RlQ{He1Sn|_Chc<C^;XHf6t-<>WTu=hG2n!Ea-rM
zzRq3#vvM#ubTl<lc6PL|HT!1)QK@BPx6X<3p_lvVKU%_CdO)_m{==&ZGbC{nBel>!
zE0;63Hz37aJ4~dU#B}8K><_loO(f-d!aAZTPB0!q=<Um-_uDOb%!*DSx5~}@Sg@OK
zf6$#O()dXUAhBd*CaVIq7(Nv^HVG|9E=4HkZPn}jv|uU3ux24g?#D10VY}|djL2kD
z2@3IbYPgiK?Ufbx#VHv&?=Kc&89Wz;nHj*JVcsN)N%eHr9J$S$z27n+{LD<FJv!O?
zS$E%0YaeIt#7MG2yPsCrx?*)-k^ltuq{Y;_YCZg=fCZJFjZq@SJl2hp9h(C?=SW2E
zo$t1g>}&|A6kSvB=UV3c@Tj2Jb<_u+P;9au%uXv$7~=wTtR0+Yx?<``R2{rMPX$uB
zI*$Ys)t!;L06j&{9-{&2O7N<Q#ZTWF+m1co`*|D622AlV>X=~GwN=8GvN=m5`{(dD
z;IxrIK)n*Ji%C-DSEJELX`$?zUE3Qx*Xt&)LnNd!Xo|d84pU(!^(REhSM~+51_bG$
zSXvp;-Y6p{f?(jP+hs4jj~<_j>?{5q+8bFkkxddnDJ^mSU{L`t12mif%a!qufN)Gk
z@K*y~78q)R7h2Wv+DxFxVE#Sk1tylK9F=&$Px|l+i8Q(x!ARU;<=?_XlI6P!d%kf@
zv?NoFeGJBZ&LrM6sgzpvl7l76-bbEYrQ_#Db@ry!C>IfL;nTPbnq_{G>2Z^xd2181
zvf>5Wj1)yz7slHtZttP-s$gE4C?Hk1oMMZpPIJ_VBnRu~D$jInwazyUy%^m>t9mGa
z_z-(>Ar@XBFSPiuV98W9BYSa_n}NpwQCX#L%x+d2L)Ygq(%*-~D!=VjUz3?-tNiLV
zErW59Qjj_!o@a5DpODm)6o-8*Ts>)doyDa*v*Dy5UkXoHyVe>|N*v2<R;!1M*D48z
zZJ4(z?XX)hApf`&F4s$OuMM*5Vh-Z~sCs03z?MDgg1umk-)B%_2iL1z+y*1lD^noS
z!JUL(_Il&+IyuA+$n*GJOCYP(fQQ#)0fpNRbm{42efG(P767{HPJ2fzFCk!`xH=c9
z-ga?aEp_uq+c9V4J4JuV=yN1hI>-4~^m{<9lZyt4&I|wz<CoDMg9YqMAi!+_b}%b<
z<1Q_C%q+}P;QAy*6gkOV7<9tVYCuldj2s!9++l==?XzwhO&<GcRbD3LAeSEtdkPXt
z7~tJ;tf87;%t_9kWHt2~H7dR_eg~e*QguG*4flLYC#`xC2g^p2gQ-m!Q}4)<vFgFY
zqNN`-2$E-KZJkksx1$TB?C@{|kf)INSU!xpbaZhg5MIwsQl7Eo;B2f$y`3L=jzUZ@
zz1^~TET@FL;9{S4@P)u+rR!&VMem6hH;vMhRr3W}fNydt89!C1RC*g^(O;Ph#=8yf
zk@d$~M;%L3G2&t;lW3{fCFj&5t+Dch#l&Y6vgkS&jy`ZF?-2yh#_B);-br=kRQEfF
ze})bL6L>}%@3-<xiyYffnN5iBFkxz@LG`O-uu6iqTd>e^_WBS$Z=~)>NuII|aAgy`
zrs93x>5IdfhBaPc8*=!ySYcG_kjzwNiZFQD+QhBi2CHe}1_t>U&euI8^PRm5df7m%
zI+63a-k2E`l0Qa1O!8O)gx$;w+1Yq7dn9(m?qNb-wxBi?wsdgXi@Hx9UWysO?Dl?2
zZa7Q3G<ea+avs%ZX{|f?^6X}A#c&>NARl$|EXllA)}==TN}m9)Ga=I0ydE|d9VD*P
z@niQ%D2zOVBxp};JCz`*sz^0?6E21dMmsOpP|>Ig{L-Uz;mpbd)E|ACjMiEHLOE}S
z0)}CI=!O-Eyy~vlA@|kMIpoJ{v<yR`E-Htv6%R1lV(dp_6A&%D)2r-oAo>s^5H}s)
z0>>~hq*)7O{#L9aT`P(O{#_n;F*AE{gUHr3u;I-y3uQ~OzB-$eXYHi=RHQ@?s9i~U
z29i>`#h|g>r*vHkKzVQ^J@5I=-Q?jG_<Tp;-un@3|0YBEA=3l=rTO#c^WhYXONC{z
zNZOne^{S(%+?eYjdh*j;Bq9`gDi;{sE_=!Q**cCY=nW0&5TXRAmqWU*iHPMr2eqL*
zb?Za-Zn=mZ2ySKlm1?@O&sIrLnyL1Yd_PocMloMVuY}MiKn?nqcOS!Yy)+Z5o#e?e
zI^wjmy`Ie4MO9h#x>>K2|7EVG#5l2e={m}cZb0I*?Ay>Rk<;KaTd&2e%qsLAil<)J
zXCEKXIKDC^`^E4vtnyk@UCIEx;mvf+EHgnxX$sQwlLlz;)+K7v!~EjCc1An*ofFdf
zjT$hHoL`GDVEdlesLd6!cN6JRDR)3Ht)MLtN)~tII|1aPyp3Oq9=c_TL})QguVC+b
z$j*70iaGUD6woc;Ps_W^0R0s00{dhN!XNRFW+;1++)PtW`Fd7Gjq@PbmP`C0UN%y{
z&wh(tI8hM$p$DGc>vxEo3r}@flV3ET=`r9^4=+wMfMon?+dyL8nQxHwRFIHH=<UfL
zEb=JVBySLLcA(#{%Tp*p7fa6(ke(;|yF~KN&kcfUx@h_02s@@G2>b;U^2Sk@L8W+@
zF(6sX!+9&*S$Yj67E4E9Xvz&sWqwbW(}l<>rP5WWrb@Kh$*(N;X&i)jd`8C+UY;R1
z>Qm}&1DYrnTFI5NGwmpE0^9d%bxQX&h>3&mbNk-l3=~OQD8Av6pOB+_k?uGUAZ2#f
zmvy={=vQ9^3oiN|>w9`a1TC;nxwV7=#T9TJncskNG?dS;9xp3ot9`VWF!`p!?HZ&>
zB7RdTVt=~AH!HX%XqZVV@n$$l-Z+K$Znse_2tXH>ungrkgd3KMSs;$n5g$~*=dcQ-
zdfhvJdGK#f3LQJ`*cX#~RMu_UUZ%y&l3^_v>$-AKnZHg*wAaG93=9z0y5#?1v+toX
z{)p5JC#3mvWJJ8^_n}Uy_(|tI{&@GiLT){jabLHDrCVZyb774*$kalCivN8em$*7S
zJYXN&rKPM&xp5oETypcZ)>WZ7_7Q5skt+^#y~2hvuIduz1P;P5V#zVeXxK;7YczF-
zY5zhELct61pl_-M<MvT7DEq$LcvIu_c@p6z-rbYEb#=sfb8PGkE1rP-XQvjGRG#N^
zk{(29h)qYU-X#8@=7BMQc)*HmwTY+92*9#MC)A+ri;$u``Hhh~<F0#J`&0CggGTK#
z^*8;CY79ZVD`M$&7lFRH<jUn{ns4tFq;2g0N9xQ~b~FL~=F%Vr52Y%u>pAOU-*LTf
zd_?Tq3FCmAcwh!3q~MD7TSxaNQSxy0JC^Um(>4CSf+**8M0cIEcp~GBF(fzCDuDQ+
zNRtT7d3Pw5IXWE%C$d~zy7}$&a8v@tLD)RlH?j;iF7GZ%acDLCmut+*a(t+Q{|j}0
zF6M_HsiHIE<+_Ea7hbA#F{4#uw(zRs?}}$USS8PM7S2o)b46oe%9C^6wEUeYIDcaz
zv-Y{Q`(E@XVYi<Hk2@LDB*w(4;eZH*{54NF({#dcMAh_U3*+23DZyD$-INpC_*U0M
z)=VcrxTeg{xPB;6uG1nORJg)fG~j4PSH=W^S$#PkPv{`_VnbLsj@cmfk<w`5C?S@t
zAS9$^8Pj=9y=JXCkc#MIJ)#U~kW|L=lt9<M_2`%75mqD<eYyF#-zC`cT!3;UUf6w1
zoO3b@6X<IrNKnkYyaKQR;ly=HE0fOtWn@cM`uH#}Yd<O;bmNC)3wum(xa50?(6stJ
zYq;z6##$`ahHVmw(9#2ep9lo7yp(Cncd#phTmfVdp3t3noY>gWN1WIb5FM)X5ORg~
z8!At?OnZWU*s04k5xX@>8GuC@18gi_5Q?CIR6ow0or5P8*|rs)^{xE%2$wW7y2D_b
z0BI=&W}uYvU=nJPDS|$yp6#}~#c8}OddQOqF7A%`&AWj!br)36yC&wdhnK}^rRul&
zYL8~G7%*0KcvrU#fcFXnFRpB#5>-D$l5vE=d#P@e)Z@q3<<HMg(8Ls8#D+*79AKFJ
zm#zTHuhKOeNMbS%;lGtpdPh@hr^@&a+pp_sqK_c&kis2>WWtJQ4)ulL%+6GEhzh1_
z7)J2{rMz#CritAkV8?TkaT2<E**y9LdkPoCPDGW93o<I;$7Rqfi>EHPg@06sh79*0
zgi05oDpMlYGoE4Lsz)g<g?FV?;;a@^69_6zw}hRoDS-h}MMZeJ@m81Cj=pEywGCtY
z(}!C)mJWHERT)|bE-cE6KV+Dn?QAU9w+%&oF@YzNk(*mvfJJ^CAV^h3arIn1r(rWy
zoVyUtf8Nbbh<QM@zF*(e5x{nY@Md6ne=BarlAi@R#a|ch4MDJ0M({ck$Hj+{xPV4}
zqk`V}5%EIbAP@US3vF29u@9oiZJYpCS4&^mBW@njiD~<GaFCAE_wG&`H=E_Y5?PD+
z=ieh8rqAK}aSi3XWWWG#rM|ycrn?YV__5k~5-zIXg9gEy^GeXMe!=0o&Qr24T1p2D
zE=+C7H|tPfM{L|Z5fF}2*xKs7RJ#u&MK@@xRe{m`3YZ_hY&n0uY}RQYNvPLynchvo
zXR6P5c<+FBho;|d+2(~{#){lGDFEv+jTO;zB-larLRXhGL<Kx=3)N8e)gI~fC9aXy
z1h?+;CCo*j5yDINaMrIX4H%su=4HUK+Mm~oOUJ8MMC3FE<;B{u%S@)%b2#5wlz9Ah
zvV%|8Szwr@?Ki|y6K08yKdgD0>8N>}FE6SyR`aXeFpo1S9dI3xpSg<&-2xy{reelH
zL6wdM%g_=Hy#azo`oQr~o&1$zhoSo1rE*eV>0u-{$|T%QI0)fR<wwr1?C8cozGqy6
z)Nco|%A_BxDqvE9r?YsO`m*NqoZD(@M`|VQwxgZtZj6eJA`$|kGxYCb%l3u%XYK$a
z<!CNcKXqNmGpwkV%wlRFE}X+6?Emz464IKtD@vb8T*6Au8p<L4#x1&)woR;s!Dz7J
zF9C;!5FS{Z`MUbdoQNxm516nmkU$H0B)#V$dO%-(M;WpZ6pSV*5-%v!ZYaKRj2c$J
zNJ14a@O}Kg0?m%kAlAi9zx_E4u>I}5$&s<Y>gI#L<{?#W|MSTeImP9bRldi^MWRHK
zu)<Z-M(FJ5q~g!~OiRv3Yxv@0wEXr(b56+_R?BjOW{<{e@o7!}5}?K2486TL;;O~#
z=l%M$`h@R=k2O0>L|rDE>PE46@Y#=RfXL7CSGN|?$Y0hK8h{!O7jHiEBFTo<ZZAt=
z4iPr_N8S2AD;-bWuSA;*k@R<l=rsb?7-|)sJN$zZPnEYb_i;ZH(OzZgxGV*A?ok}!
ze{S5{w!Y0+kQ5GKNdl&zcZW3#;YY$WDx@!&ttB2vW!K7qo%A7NuO8|zTQW}XYsL(Z
z)Nffymmk*(CE@DU?htnl9PssWI~9Jjsr0$otDLL5`4tB$pjSNh9L4VE1)6PLBAEvX
zPnDE>>*^|VWoq?A^+}bvD&V_>2~GYrY9xf5x|BPq7>ZRKj0}*uVRqu5TfL|&vtBv>
z*({G?xGXk`3O?xX-RU4j;5CuGq=IEh*B=Bs$TdV+04}VNOg@d@pn+-pK;ZKTH<aD_
z?G*FLUoaG;i-ndPoUT#0QN^H-GB^qadsoC^7!Ea^S9MfvmOuE?1tva~NH{SDskqcJ
z9c5IC1epO^m<!;FmR!VGJ(*lrgdhEe-_8jhCJp3^Fq#aO7f=uohv%Rc5E+FDWya|Q
zC*01=4l?fA2JeDvwncDRLgWigHZ7=yDqcpV5HFb3W&(2%$VATBG|r@E>42Ps)~)Y+
z&))xwT$#E<B>8Az4jn7CO@y2n%c06CiHb^rK9h-yrWIi1UHEY_psa4Q+@lh%mtX1x
zb40zDmI~zrjYjMU=0Q%G8X!GdL829t1UPlY)_V!sHc5f&f)o~F^55aj;1;46G~AY}
zB5raVR|?^rrfUp2q}&T3O~p=^PT`@Gdw)bw?Ojlxho*Q!f!*b*V=ch0tM=;#P3=^H
zvrvK&iT=7$X_P1(#gB#8WthdQ02C<AttXg1{q|FuSir!H2`)sYFE8l|RQU%UGdrdP
zoN=#|jzQH3R<}xIcz1UxK%@1~t#uSJ2@Ml<ZE$pkS*-&dL;_W59@+yspKQO+#^nQQ
z|4=Y+#_6PgZJSb(g9!_?X3&XHZWgJKxoy^7NQB%x<N7bw?&x<gM-8lohQ;L`y8e-;
z_G`Bb>P!GKLa6>*{U#fdI3n)WqAp>q^lj~HXv6F2!0eSz7^5S>_x-qnow7aYy^}oC
z82{fNVE^o8<u<NK3Vs!XMZx~Jm*s3|^i>68_~#$<KZRlC4cm1htgf6!x7yZ{4^T*P
z7iwJVG9@-yt4E-PzW-~6vv|cOm|eV5E?>55OJup>TRy&mb3f00FRU$=Xn)`-p}keh
zp+>aPVMSQ}(p#bremgUBa;$lrb((#x3uArXp{ChqpZj0$v*%O#uzsqp!}~j1_?&Nl
zOM3Fn%irneWWU)Ht@oSmzToHfVeQ-2g2w`Cfm2$Qr*qAbxR(4|Uq#v6{+n>lSBpY*
z`KJnZ3m-Bays<97+-vsDP)0sAiy2?ce;%w+kWbCta&_+RPbmxES>5d7mrE9r`l#|e
z<KBu(|LdQeIu~<q`W-QbYQN3*&YzyIvhLERBRtbg&MG98@_yD)5}4fewB?uya4{N7
zSO2~p?K_XLutaArZ<OC3)8JOZsxjHr_Yd!KS@}2Se{1f)PQM>_|Bi0?9NAsBCpX^v
z?jljY@X|5;IQ~5cm+lr<V49u1uYA|UW?{7*7c8$IG|1e<Rc{#ae6`3T4SmIf63#J`
zOct%)^=0bbhJxZ*a;w_^uE@FYYHty%$KFGWst-+{@W^t>7t^K77N*KB7I~!OD4=TE
zsM2S+X7MT|m6eM{9u|AW_vW>36&F>n_s|!zTW;Q|u{Pk+2A(vHF2zM02ZfZmKF?CR
zWU%SfqZhtSyZ<!-2T%Ve+q69wl88?2F=ESXE9!V9`c3z^=o*e>iM1Y6%}>sp|Ef^r
zRIG=~W|tp&YQLp!?X~866ju7{?-ZQ}bMJiB`+olhzoT+*>GGQCg)=r<|6`oxeoWGm
z^Z)i*?q|`<-P6C!?LP}ybg)^-Q;(4gaY)K!FRwtx|C8r<$w{N1t^piSg@V+{SG|;^
z5j+1G7^GlQVEWT!A#Yt7)a~!c3T%0yo8cwJQ-O6D8xLr`12T}Eyue#q26c@aviuHJ
zkO7RwlMB5?WKfq)AS+v-4OV6XQa1Utw-nPJy~)qLRb|j;m=Suc%_eL3$jhJ)BqJ1*
z*iBCMabU{!nmp55b@C}60U1PFlYv1Qp%BPw^#&@E2D<W~k0dL&K{fflk0{eSpUK~R
zY?-$D1Cyu?)2+bC#lH4T=RziL@wJqJSL?v}Z_o%f0>p$)R&W)YEbk|vhh8)w6vak@
r2fa}W3b5z({iK*KL{C=mloku{W(BS<0U0mC5DHvD_y;)6&cFZw2ALap

delta 13417
zcmbumWmH_vwgrm2ySr;}m*7Dgf@|<Va3{zHf;%)4JXp}+uE8z1LvRQdq;cnweCOPA
z?j3KuKd<{oOU<giYOT3uRqb81+Y9}W2~7l2f`!9_LV!Yof`X!k(sQy%tA&Pwx<{xc
zqJ{x_wMK18xv)A2?=Ye&`dAsmG$QAP3fS=y`QtC3`=`ovbXk!{1?$&3YHM&6oqiLM
zy69C)oIn03B3G%<Zm*=^0!QVl6JF|S5h>Sk{2;yD-5A)5Dh;RBJ>`0rKc{eDdk5*+
zHqDA>DZ!X2jurBoO;-*R1Ciq*cu)8LgdG9wvk&2{pj~HDw;<N`X7A8MH=(6f7}u&o
z3U?3g6)7B(ei(vgFMqWLma4}mdLrls9}K)RiH|m07XHMaZpk^pR~Y@SM0$I5o>|27
z$Mqmvzruc2Cb1Z~e2cr5k|nlWmeR$W^3Lv8ZQd)h4abeW30Zvy7~Ic6#%+hm^ME;E
z{KL#}=Kgi8y^4+c$|qE{7Eg$h$%%_H-K3?cao5|N&;xZGsvo~ko8S5n(_e$xx2mey
zmdu++69umrrybv|Ds;rOY)iGU5n7M=E-1o#nQV)=8Fqj%QmTVm4AmTE1BKpYdL1Q<
zJr?0lNdF+WsJmu^{owBb{cKJ-(e(=a3S+M()8`(40(SZr0WsUFJ<`v)&%{eNp}ZfL
zC}8U$lH1!dOy-N2MB~$Psreu7Fl%pNKf<CUmonT4!9qbbA%gu72?2Yx<yTlw;x^A+
zXP#g|M-|$ok~bvi$P94gzM0CKps2PX=l9r4z}licO0-Ss0;u{h)#tc*cWi!|bGbz-
z&hRSF-s*Gq0uhA45q0wC`02HloK*D3zVsk1`yT6?i0hk?hx4Lo6;{gQr7LJ?$?5S^
z{SuCva&eRM^h-wj0f1DH*+7p6Udh|>GHbhhZ$7iErG{)7qdYwV;RK7u8%@q2g=W_#
z1C!5j21Dj7lKIP8rR;p%dv|{{!_n=YiG;RqA^}af$sjcZynNxfvEvNwnpTwVRSime
zdS95EB7U^7J>=Nc=2BUX<qq~)WJv>&sgup32HAa5<c1SIK>%Z@mJYxZ4nx%DzM(2x
z55R8=P`}TaWJ*dYNk;0ur%DIbf34rzFthmAvKsZa9Fvy0e`SegnJcrT#^bc|f*JAX
zS+g6=jY3rKD%nDq8JK$jjius1mv5eFM9QZ~bY*-mUZ*EzsSlc>An*3aQYJTVO`c?W
zE=)w~$SK^F1UAyeV5pH=7v>L%z0d&B*4ODOq7n?KjK~qYMdA@frjp$eIZZQ{j8`*H
z$Yw)S!v_4tm*NUBLOt24BPa5Nb|Tpz5fT~5=JVp}Gq%_>f3&qkJ;I&P8dAr;$@YX&
zT|2(Yq=VIG&~o42{*jA0hNEomoSYgZ-rAAh&Za*)5M6TOC44(I`NQf)=uOd+S+(06
z5=4C{PKLMX^u2EgAi*EOY-6H5gCAvwcrm_MS<QU5Fo`}vD{R|V>7u{$cgIlqZaC#4
zePvOQHC!8XKxL9)a_$>{x~&c~y4}t$3i<Rc-~L;I^jIkwi>zAzP|^|xuVTCEmsHK4
zN!j1*ZvgGA>){_rnXfNqY6;`b;ue(V8I1+q7517j-n7l=-GMDzqW!Y`S9J29Cyjm;
z1>nS>8=M>SlxQdJU{3t1^dhdMK$#shhhCevFqeq7CuI6aJQ^-v#2>Nsoz_47b?y|e
z-rXXq9=qgiS0lN8e>xAJ!c7A7lok0t*YXJk|A@g#e+Sws@6aC0Y|F{FXAcNTUgb?f
zYHbEBC&L<tHlh5gm`R2IPphwWPeex?q#t?tEMkN*pJAY&o}Xc%{<l0TmV7n6dl5?c
zm+T^eLV^Zw7?ISnpdv#9iKDi?uh4=|LOMQ8wmT<2frf>Bm_yndmJwf7<AkZ$nU_d-
z-=`-X^H&w5PUO?^o^$=Mx)-|GB&T&>WoD`&gKJsJ7^_DyzE;z@rV6j;X}QM0k5;Jq
z#=*%yzVJa+&7xJ3rbJNVU0TnlBuxV{UQ6*WN~!$=uU$#ZSwB@^0xhz7zizXlJNdq(
z+eBumV|o4}>Gek&x^=W)<28zj>+mO?fDoe&MWBMe#In}}**q8%=)u5yXXhG%H+lwO
z^<>1I$#m$7l$zn*KJff7<8J)W9Y2dbiaMYvE?mfCz)9~~%Yqi?cW_tD$~!7?<)Zz3
zfcjq^!u_8SWSp2}mjNFNYC9f0K~D^JKt}+Kj9iz6Q+(G-A2B)F2ly|KG&4(jQ)sal
zzLm7!L&^sg%OmZ*>FJw!-rldJ(xu}$-C@BM9jpr4@MC<Lh6@)j=)(kV&v$M&=dYZ8
z9+@~IF78~eo87l8N*o(^u3<bKN>HwjA`%Wv-(5OCwgD@v7*7pi7*A&qljohDlSg1<
z0AkZBW`u`r9M|}%XnOzXady`Eyv|RLlJnYed46-S@o~e_kLAhx#^2pn#BM%LD?fF&
zY~%9s;=r=qhr9{t1e2NTYOUjlfBF9L*Y3#G<#rHR!}#G_uBWZ(<0D;ppT&Y;A3aL{
z2VbAY#m+W->W<@V&!SGP*NB9i8P`DBN#%Xd-JvU_`T0lx;b>n@*k-3G<hl6xYj;Ue
z>dLPwiQ~>Jj;KK$haV3R#|npvxeNvz;Hlu%;>|(TV?8UpXc)<ptMo8~O8JJ+!d?y<
zzkN{hzHr-fvrilO!<IkfcG@ioeJzGyx~~;t$MsR5^U3YmLA0Gzt#&-89}I*oKBJ5K
zd;P>mNzFOfta|hixk+koJkRKw9l)GLzF2ELI?2Djj+(wZq+H%T`c=m+JcK|9teu!V
zEtD%AIYfe6Zg)FV8MkX;M_g|X{h#yE8d%be2v;b|s4N=~M{TY@_%!-)EaXJGkv-3&
zTj*kJmJ)|NUw@RroYi}t?*aO@u9ok1&-W#+I#ZWdu8ZDs)j@XLG~^b3=b(Os?DmaR
zWPa=;ZhWe}yY;#D`q)AqEth&eWFeY0&hRN}bbQO^`Ap(iA@r)klB=%N5>o4sR#;D#
zZwbL=ALyw|=?gCvkIH$UhK`!h=@3^GW^~J(Pn(_R4ym>A6UtPp83Nphp38aa*!=T$
zoP34Sj0kt%wwYE(Yr%5(&l!zPi65Zr6G$9#grzRtw0tPm`=)eDSeJ>;InXm?x5~Z5
z>Zz((H1~K{_jI#S_3Wo!jw&l0=XmInJi3~?F^p?7wcR9Ck3d*dwDN0U*RN30*(KRt
zB00tpQMMoDLN{}xQyee`n(nkR8%SS?i^wIUhbDwXi&&va_qUtly|Fcmmg)~OkCyKL
zWNy*tW*?+1HB1=7jn1qT!i~zz8p4gq+$`0M%q*8{K~qnVxj7)zxVvqPf5%UgsuYdq
z?dGbdj3aO>V!@F?7!|sfFtJyg4`+@|vof1>#+w#}>3V`e007w%QSnZ>(NYRGUu3Xx
z{GF4`^n^X>=nUtQT<F==&XeI>kcp6W5tYj>f9m8Z&@gkcB{8KCy>RRz_J@cf?>V3B
zXqyO;g>hyTswLiLupcOI@Spz+huZ#C*XdVOEc3aZ(vp&c{1Q2R`c-<~*A?=MX>mMP
zGoUM<D6;Q7FyDgvC>BS>N5y7}BhU~=4rUHI^NOZt$cD3-+{QEM{n7`;v@3{ixzzRX
z`*_dl6m~BnY3!ZAe9-DkgV*U(+eR?no><c=)v?`6c!xj@KYgP#seFX(+qZ7^KPM$g
zy|LF#(RO45^5gkqab~}M<y}&sN)1Q|0Nf=Z)~?@(v#qV20y!E$LyAd1G3d$YOJ!6h
zlbz&Y>3g+Yx_YSS1yPtcnAGWQ74w7t)vE#~bprZr?UEyIbr+E&r=(&WK3Sb^a`dG5
zRBH+Z<}P&wWcdgd^|vJSbn!~x6}}5o$wrv<<dn+{9f7*l^Au<BjF3Hf0g%-1AOcY|
zjiCH^oLC&Kysx~9|5)ZO8HrP9ub7fY<M|$1RWmv?zbvq)gN(L0P$QH(QG|&e0~tnD
zGa+<ZK}tb2oVphVVo97Oz|<v6%S!(4Kwm4N)grL)BCEm8IUKCzkkhCmNH$1QxiJiq
zJEN)SHP!p+G@vz93h>%0)d|zGN}VCtcm^;8ns;p&Y3a$nN$n%<D{icS(N0cxg$}lG
zcGkCa4ujPTR@ePP3NX<+PXbVkPEk`%0b3)RAFnMF6jtjZhcp^(cXfN!Ehfu7my^Ym
zUahX*L@g*7rk{|gj?nZsc+*uf4})}5;O=7tJJ>85BftU*fO3k1wIjBCLLqPLP!y5D
zrm}V(_dvvmhO54XbJ%08ukt(r1<FXbvllj4^<xC)`Z&SR5UHwiN{g0VgJ3L;66Kol
zSYE{up`f$g<{UXSj9%}KZ!Vf8+gLmzJ;n&lw;P;qzIuZd0-2xLkVDCx@$?jx(nJjw
z*v{>oGn?4>0C{!`%ioQbla|n`PRaSK;sd5y1%1XeHI*pDm!Y_C3mxz?*y?jQ9j9((
zSIXo3DhG{7x%f}btD{<^Gv`>vGft`%Zl#D(9D9=l-TG4feIf=s*tVDcSa^IFAWLRh
za{)Qi3ra&A$YEns`Z-1`Qx!Ti9Lb$jy`U@l-dO=ifm4bT>;PFDM3^I0OZqNzi=S9@
zFHQ|CSR;>7yjbY$7>CuthTF1v4$>uPxHeCu?^-h#eYwUdsjA(R+qETj*zR~$+|i3+
z0>~o)xe2+qp9JkkNH7qkhQtE6lOle?GC3<SIpsBUZe%(Vv|xItaHxfw;|LOv$rg);
z00FtKqv`|5s%~<8WPX@2J%OOJhIVc|f?;$4-B<hB4n|1fD>KP`LHHl9Lk?oi)3p;~
zU<4yUeu}U?!BbFz&bga~(7{N-c?Kt<NysZco|#Rc6$JkXNUzljOCXrhNf~A!C_j9$
z=nF`^d*&7`WUIHYT!_6k78M#-Z&y7O=r(g9Gp1;@f5!3a>-!xGX6)rcCPR&-vC84@
zeU*y_t!ntgix`GFD2@3#au~$mQd!(<%GDYLuha|Srw`r^CX!;qk_{G@4Ld7o8za^t
z#2bs^a}?Z^MRdarr&4lz;Tzn%im&%?4s^E3R8E*=>hM2)#>2i#A__&OM*y5QdAc~c
zPL1G$Pr(Ao%dVD8Z@p{fBYJppTXCvn$V}i$g|P;(%mSHcE=ritZnZ^cy}w69fpp0A
zE7%Q@KM%`WC*@WlA>+gMMmV-x%9_sBl?rSLQHNro%3$ZJJ-+)4l7Jc@G*wi4(|?GF
zg#80<=^F%8T%O;TfY}?gwE}QaS;#7^QehjUf3IF=s<|kkM8iEmT<^7vn8(DTi4VCl
zLcWA$#~4ZkNl20bfq8e(&S=yG3W|ExGe!EKgjNc>9b4#8f?k_4f^{dVsGqNyrE_ay
z3FL=iRNaPb1$Pk*OZ4Nh2I!pF1VsTkzfySoW+f);jQn#%XZ;YfR6wGzD4u+P(-2e-
zwE`Ce1|iSF^g@1NQhR@rA!vb%g_p-JRjYrO1Y(C`<j`!>55RgIwBw;mjDp%X8^ny9
z3}Tlw=>WNxS>aANnMt|7(D6?N`j-mGe=FbwV0D0ank}_MrIMlOF;J61$dZ}w>8bur
z4d4$qa9$}E!v)|H@)#pahD$2zU22DRo3%J>j+jf)L;YV`M0PXf=0W|Tg)B5R3|C>C
zMrgMZlMbGj6@w<;L~3WShHRkVzuYftngmjRu|ujYF90hL>Fg@_h1r2Q`tPuDSWxyx
z2m@IFlwPi2U8+bVKNghy;7AxjXY5UU_+TWNcq?sU6fL|YK{lytFx(5<WWN*<{F^(P
zcycchciN=sWko^44yU5TQxEN?X>!<{PYGtknRwxuSb`*(bU1uo_(YNaOYbNHwxV9)
z{(7$1*sJFw!;qoMAO0syz)dmdx|b!nly>koI?l2Tqo{p=Alpcj+T#}*&&N=Pc}#_u
z*wz;Q5$}~)ZoE>;_s#`u>oSLk=(`UY>6#K$u`km9hWRl1UK5qYC6&#P{hgj|thm8M
z3}@6s$XN(CUP?$A22Ub=u6{sA8+}xK+iRM0#uuGe|E0G7?kzxxPA<|)>W2iExmPpi
zq#x|E0w?umEe|ckLvJ1KJU-aPuWwgvRA`(sVtbF3;4hC}vcD95E7%tLPxjBkykvi3
zw#*+!jH91MD;5)c;RNJnzoplx_C$;pA9t{AGD%&Qz(wP-K(F_PMC!m`(O@aw5m+*@
z;pxBty2ZhYP<Lk`r3P6ciQ&201mQGNl!y|lPN(a=vf(0Le?rkAON<ir9V1&-!Rho*
z)W}5t<iP(Q;I&xtOV&OpLjh6o>+64nLC9<KUs8hMpSix?6%mEydHN@|qxpY0LoWLN
z0R&*6s9~_T$(3LF6m-bYF{|PQ1Lb#1Gl2{BmtAb#1#u=X0&Q{xUZ2M<8m-)Nq6)e=
z90u))0}(i3RxpC<oeAId=$+2sV&AOmI^l8MH$9vkLW^`3F?a3Is+N8JJ?8jN^HxD4
z@|jJaSCRv?q%uVV|IzUuQ`29yVHn1s<XNHDWl{%1r_bsQDo6pV)j`DoZajU8t_Y5}
z_1?Y$Mak(>2>ZV^lLJUx2hRTX^!BBvk|zHB(x%urhT?aTQB-1&r8e#auU*ib|LQA-
zf8u{Tg}m*>Db!tEw5o=1`(rvPWwl7#>k;OERMPnr42OuRY8c$~Nj_W>Zh!rcr;#xz
zoHuC{Iy-Fjvt;ARq{;rMW89}4IzZ6tPa2VnO2N@6AXcJ<9E-9zdo`x4uVW7^bK@rB
zn*F2Jf;Vr1J|Vtj^3N_>8LA++(-&b6hC_@KgrrHTT?%{~<M}_PLS&n;ukI^0>VC&A
zc&{m(7o+XS`J-|Q&dv|&m>504hkMpGzFryuewD$gswSYn&<V)lY85}(_*4o1`GV^b
zzj;J$F7)x?wO(pdiM+tm_F#q0@-RFC!B>yVOQ8q&TtCwmqZc2|av1-uu8{a@T3oJ^
z#?w!YjnoeZ!Fj2T8Y8TG@LM@I0nS(C86?<V+^?@`ctZ7e{`fzhm-tTi!X^liMPzJo
z;LA+m{B8Lm%V=cu1)h?N;g*u?vCLN^lesW!p8Wk~!b86JG6oeOPY*b#;kWv+dt~Rl
zK1&{|=o{OspsrWw2^DEgA@t})DoS`5lZc_~41^{FrsBI8RR7KlHx6&=;<_pZ&Ga_w
z=8qRMb~CS<`sCzI<#q}ILwfb4MT_%mT_x8xnfH#EO8-nI)u&bmG}Q2wMr|q|U3ib2
z-^Rpt*NqHUD(2PIe*0CYB=Q25I7$TL{v8`_PR#R08s7}Uuoty^3>q)(h{zpdm0WWF
zxDpuIenR4cvEM#nlz304Z&3hkoR^&A(E?HVD~|<0dz^hXOGDbUvCroFrLBHq@(|*}
z5stO_F~K90h$#+7bI!@m7yRtM@a=Kx*(`D|@YeMgxb_R&ric))3R8QkBA)4JYMbLP
zy7_<5eAz5>pQnx2ny;o+Mbd7L?A`FbW_fV`{!$w~=Mf@f1Ee;VrtYn&iL8t<{87?B
z{k~OAUS7=fkY|~bI++EXwMJl<xZCfNPP*zZrGYJLm;(KMAB#m1V>^K)&oZ6fA>=<J
zNam#;rGY_0>s1_8UoD1)!JPAg+MMB?en^j=jzW^VQ(HN14GkS*@1LoJ-pQ7kb!1eb
zD|rDBTi&YhP0yNABw<(h4mp+DyMmSOE{NFap<Jo5mFA!Lsn@Iy<c(>tu_%!1c_!%B
zjuE)icyjF((H@e8*K$1W;pDcvXT@h?{TXm9+T*0Nm>UCb4Lu8D%Lm9=gwJ>sP3pfm
zCE<snvpmj`!`$u)ubk8Wt7YJ&=`Uj%Xn&fHBh~Chs^NGn=~k~9drGQReZtFqbj^BT
z{;Rf$m*P)#zK3>267VIohxHM&QSZXB%PB6>#bRVKi1-qlWPG8AB$f-wjj$R2>8AII
zImntB0ly%&Z2+CcEZDoqKH3VjA5<E@ZGhGJMMUCcDh{X!2mj6Sq_%74;##~g6b<>+
zEew3F?zU-qE!W~C&k$Zb<7?EG^K(^C$B6&IR=;4Q{$dIKU`OPMd2uRvB4u~l!1A(o
zfFEO=;$MPox5vq66?$pL2etWB%9lHstOag+#9vIkBSW87Jz=&0;uI^@XJLlAp#-0X
zR0)y=|4!Y4!Qv<8>Z~rQvhd8=Zt?nwvH7M``^mw_1eI!e1s?(}rn(@Bs)LdL@;Tif
zpBD*g#tSDNi)ac@W78<N{FGp!Q*Ch>NJ&&}G{#;uFh=@^CyG-_o+%GYD%LwFw9XX{
zK!R4fh=%+WdC8HowL#jX2*RY=gR;&G56K54rs->>OsxMEsl?TRoUykL%nGlkc1Q_N
zByG!3)}5S6eH<mrD^O9B=}e}|6PS+N5b?h~xEi^*{2k5ckNnUMMEkx3;e9pg;6y5z
zt7E+u+nJAI!=jy$E4X+~s}3v;<^D-Xm*T%8mEzL9;EZ>q^sEA{q7V5S&tgS1W3!~L
zXr@Dyh#F(pbZgu6;|xw2s=q|`qw^|te6dQ~qB<mjbN0SGal1VxbSBZg4{17zus(MC
z0~94MPGS4;QKm;kdAi`Jbj6GGmB$6Y$c5T&q}Wc~2RcB}N5%F{D~>ta;qRsQf=7yU
ziaw)4MMgAbUu#{L=m)R{?i4;>i66UFG`&@AmCLJ}FG#6l<=R%lCR}>I?ejqK-xt`e
zQ;MaIy-av@<o9FWkgF)uBSyxi@(sI<XV?hgRQ7er*(ENjy<ny%J03kn!Q`#qAQE8Q
z=6l)Jfy-*0Vmdenau4y??-UldZ!EgMw0VT|EZ^N<t<8m<w9aq!onIM1A}TqfO57Iw
zfYN9GrB1E)&iHpN5?NQAmz~)ShXeMIr(cI7W<{6wof5OpOmas3kLEsiw;t6JzZ)ux
zE^QitcJj6(%%Yx;o+O5%_&00UeF}lQ_l-snm+B4o4KctTvuK4O0OQ2-<z8gZ0T(OS
zSs(CQeRB5`B<JM6&#COg8i`T=WX${fK<}=Mr`_vv>*R4m{&Gm-NdjC=j}Nc5edi+v
zenmqEq%6lSy}}ATVZ9`$S(DzxvWCXiCW~w#OfD@A`+$q4OXqBx(NlWR>X`|p^r?2J
zqRvir?cr98*hloEXkmowI}PUqStL)f?J70`)@*y4i>>>-Y5CYGUV}*)3pS~7<=g?t
z0A_xEyhy#JvdEYC5+wWjv9OA=O?IV{gUC!v;M9WMLXppKIHt^HXs;AW5qJK&Z9;{4
z98~fu$)30O<ES}5Aw=9VjYF1BsTkqecEr_PU1^Kog*my^Z#6<T{ZnruqoD+0-r$?9
zjcEqlL=Ie{Yh*-T4^^Be-<wO0O6KFWcIKUGJjHT%!lad{^T$)f<L`wKt$qK8Zx&AL
zfTG9xFW3%++mqVhA*~Sr`>_2jTU%tB+t5aKCCx?Ad<Og72ApSiUr!tE&AE-W<lvVr
zPKN2%f`?mAjL)1TaoS`ZRm91(i^5X4qM4?Y&0Ff~k`h89r5UaRGg}(rS>C5`ClE=g
z>fpYw++-+Wuo=~K5fd;LWS6ZVzFn$)z?jc*obxU!FSJw9x^K=cXU}o-CJi#G-4l%5
zLd}IztpFAFtU5d@6LgnbwCT0Y+8zU{obL-Hyn_>h7~3Q~v7BtVx)CFeMG6XLZz1g?
zh<opCg(@gGV<QhJS)9x&G}akL`>OJh#}x<)gM!zMc4m}qMB(bqKCkOLdbec&C_L{K
z?Cl04UT-Xk#>59LhgA!>V8-{}L@SRgczs$Ac)%Pj2YH1UI(gJviyJHXAi(=zHlAFu
zKG`Xsf*{r*cOF1|O~Vr!%G0}u_OF;ak9wcK=u}%zBisIlKRP0=WA@``Akuu$%OwFo
zO7_#%6JIYDi8M+k)6h#tDDhkX0|3E(I46d>DN%w{a~CtR{hP!m{+;puc*U48J5ZKH
zZO(fkKlG&}2~z3O^B#oRThhAgmqs2IiEuPKD$z^N!%V~GK6>-py+uInVv#x4exITF
zZJ@C({(R~AfF|4?%i9J^Rv=xkL_f}PkG3x~mn*J;;dN<NFN^zb_0KqwBqO0B(yNeR
z^zkHc6`vbQB`U6J3TgbNVN_ca>fwUM`vn8TiiWB+tBK-vj=J!AtUDLeE75uKha1X2
znN&N>0U!b*M3dMT@K8`A!cb7?FHd&7>^NQByzMMqIlS!cejC_3ZVF;O`A<ED4X)YX
zC@_^El@;RI6s|^9l)IUzYz9=mi6)!w&OYv3TX;hSVsZ?uX)T%I_xKIjf_QOLjMqtw
z=7D^uMRVCa61>f+VtOggZA4ur=U;cuN$Jx#{oVrN`+8+v6ThfsnE*D7W)z7<T+~vq
zIL@1S)mUH=BegcJ2q%{w2D(rI=q+pl&^E1Dnp4oDj7OwYy91GmSU0a6b4cspa+pH!
z?YW!Axh`*45QdFHpW&pG{`QI=abNV7DH6!~YlxV=6~DJp2E-Rj>)t9e{9`6P8<v2i
zjy3RFQtXVNB40%KDkUl4%sENfK;VGYH3ve=tS8LKsmVckPzOs8C3C*OOTb}kfuH4Z
zrsC5@%~lz4p}K5Ny_FuI1;bF1P9#rf?;IyBysgQP>Lk<St#6cyZ);lXfep_;qG*JX
zhVjz|)3OZR95Oi}``D4|Z&6u;&^GbTHW5Jnkr=uW)ShC&sp+;v6&7^bgbB~?L-B+0
z`%j_<<zc#62l+$n0oPiGlQn8n>Pz~_Nk8W|>;=dy@ZXzk1Y=!4EVD1W9S}T}&Qe&7
z+WZC+LyTtXW<H1547#r%o;koZ27IyPH~5xf&Zj)0k(fj~Xi){_W$x;S%MFh;XE6vg
zVIHs&-VvPAemkg>#zDg3SCu!vHK{^=Am^rj7v;Gm-bYKY1wwIN&0oNsp?EJyDBD{!
zjWqc6-YV;ZOT1mQm=BX^nbXzpG_y5yv7C!pXnli_#3H|&$SlI~{ShZ}vld1ZQ($NL
zu!r#K-O#v5IM)L0hqXZ?6fI8AUupaR%*wBXSH6k*dnfO5*Oes&Q0u%%E@>g~bppC}
zXQY`DK}%y4Z!J>@3KCg0lxzrxgykn^t-8zt?28YeoN!ri(Mrl2Lm9zNt6??@QFQF?
z$z~=g5@Bw5F9Dgd`IMVTP<Y8w%y>kKxr$SDVJwu5HmHmZ=E;Fy_HIBYpUD9bS7xDG
zSUh5gi`FDDB1dkm0^=+<7U_<4C1VnU?KmsQ>&Cv9`c8MN>Xs&wFH0?bCtT}Zt~%B|
z&cQz9c-_v%%E{PpiVUb_P%@+JY^`1K)l?pR&?NX$d*JgbM)5Y(L{&AzI$?U6t-xM*
zLrNF(rlEV+?Y6L`T}s<wc~u0cO0h#J14Au5g~0X?L(H5(69qYAvYkqV4!ZAlofM^=
zxa<Y>p;Q2E!E)XWO=x^nMAHLR-h$2uf^6Kbeb-<5nw(+?V<m#j+JRzfW}OoeDzXY&
zW?+kGzbpOs+$uS)5}7{{4~P=9F`cF8;CFtuMK8N}+b*gVA$`6yQ4Rp|4O(_z=itZj
zr(ei2%TrE0r7;8{oXcm1%YRO^&4?C?$w4evE9AklnYzXBf0QWbQPyU1{LJ>gne+Fd
z4Bw9^v8z%!zxia3bv=oB*;hA-@UoPd72Ab4BtzhtX5+kx06gF53Bw=wdPDPFsRGHq
zM;p82ekaMkT4(i-{CgKbYnEaM%Wdg4YG$}Z!KCq`$<c6!31;@99T20S+$8GJdAZu=
z%2Ezjj`K<rc|oyCZ6{YZ;z2~3*SN6j3K_pFHhyp6W{Mjg?U;w-5Vmzwq5GgtZ_4Ie
zq<W4;{RfA*|N3&l*30GreaOY$0?(5BNPrVDyZ^dml+#(ax&S>;Z0VVzfi$gDk7_qq
z8+PK5?)cG_ul(5OoM{$(;-e(A*y-N!P%Z!wNpzm$F_@bYZ?LYiQ*K`T+;!&H591q-
z@-_iQZ*?raApr+nol)x7Ly7LKEEB37Q4X9JNo3b%VN}X^XGt#w($J9p;~SIDAUeZ3
zU;m^<X{)#C5$|{aQHJ>6u+R0(MI3k6xju&%6nB^UBYO?D+MgEq29B?68{F59F7IO1
z1&*ItEhw_%J&SSZsiRlwjuWwJaJ~5#(H^F2#$-dJP)v3_p?}kO6s_`#FMm}(6hN!B
z;&U#Wv*rJ-zs7&q{&m)`>fQso)z88|FE_&~eV?go*)vFvk7dsa|LKb^Y7|_bCqwQo
zYc6LkNaW?Y|NqOw{}mU>px=lu5B{mZ(c+|lo`K_51CGCh<TLC>ksZ`X_4QPpiXqWh
zw%H^dWB5GM7%e*&ziGrwViM=$<)d7KoxG;q&`}SKUI<Sn@z`ZX#+uHX9|YaHCA0Qr
zq=xmMLAkL7>8lO>YtPFa4qS&#kzVD=P4?eH>>pR3_ay}8gc0;D9SwMPr%Xi1NylV>
zZu>89b5B!s>~W4yO?ZwLW{@Zr)37)qMB2;BIJ1J4X3cWPl3MNk_OJBW-k!-bgl2HA
zjL(02ib;MXou@>ujn8e`Z+cP*6So(~Y{q?SKeuzDw$yaiSjnPTuUWz4-@*A9Q+G4_
zRW#TGYkHG=@_-VjO2kx}_AMf5HTSLr5S&etJtoR!To8FNRdbAg_)6n7(Om1nlZF*2
z^PYI1;?uDYu<G2@Vl^(7317K-+{kHJgGiAgv7(gxO_cV44trQH&Nx)g;PK$gLm3D=
zc;Hh_H=CAS9SeZ2LPiIlPc`#~F>3^)!-GQ%p<D2lMY@gIhX6IkWN_(vN_b=m_z_N-
z#!F+SS_>a%DYM%x7Q^^FqI4VjjCumv+hoE>$p{<PFjLg{I998O4VChmLI78}oC<IA
z6Xb_YQxjU+<We;{Y)ZIOe{vnN>y663uG&1E2is55h^{D+e)NlpH@0px>=&P6u(26x
zF`m<qtlnb(@`%{t^NG22i#+*x3}7aQ7;&U_jJn(Uf#dc&hSKpdnlh35q~L5T$ZUj3
zR-^?BWj;$FBzX~u#<<82CezbSH0Kg(`c+d^qP)|1($1`D3&9i088yN}HQBH$(<F*;
zqhsrVtvaD0h;XvXGC<o`=<>hmz@JP^ju`D(^>h~VS&vkE9X^fs6F+U68vv24HgXu|
z4kM$midlN}Q|t>0vEJ_Si|Khl&IIqEtlLvjUCc6UE!)d44ZXNSrZd35-+UIekuvpg
zM)braCq4eL=FR=FzW-C<&m|*CU#8`AZe121W$c@L&3l1KmXy+|BLPHnrni=utYo(l
z_O!mXqUYLi(`q6zr%c$Xvp`Va^_u`?&v@h3d7aLxsNKn3%x00(2;-YR7;g+m_rSKB
zK%?!F37!=er0I9Wv*+`$jI21@l0wb#;YKbpG8a;ENXNR?>LNH6@`~?nV%y?HFm5aG
zO|1$Hc<>mp2V4}7J5=cXJ0dkfN`v{`8_Z<zJu7lw`F!vkN=7q{(0~()AwWJvdChi^
zSM-(L?WD{c#$jZeos)Ja%?+Gxqvvd43?0d-kh}pTH5`V%jo_Ul_<3g=Pk-R(JC?J0
zC>7amVHXhV;{8EaW^umSk?Ye{$ttamIwC5sgqap6Q<+E(%9>F5!|%ft9?}ZN!Ew(d
zBT|F|d6XG7c^G{0T42uzzWz|&>f2xoitRX-zWS?(OSs$Na3hTJGk6NllCxN^#QvKE
z6_8&EycKN`da0~l*(ke`snMfSJW;dK^0cKv#P9bSLMPNrXG|dz5@(kA<|lkt+-z!t
z6DHZ_16xKkijLAEyHdP7=MAX13A}S@GcpA>Vw{51k5G>*jlgaeSkoueQ%vlt)8+9-
zZ5%aO#z0VhF(&@#Ael91s7*a_&-%O{I&HL7+gb$%2Lhkxy2YBYyd~>HiLlr<L*ett
zgFFSgvvl1MYosQ(ZB~KbIWuu-Qm^kZee&#{yAa3;v)^-UXzpCBSXa^DY0j|Ua}ZKF
ziT3$8`ct@b7uX`c_7&aAR<r(jzW?(TdhL=aiz-DSq8)>1Ufq5M?wcOQ@i$MV@U+rd
zsi=bv=uzXJ<g_M3t!|;eVulg#n}WEs55m8Qm6T_Wy;?l)<i60we~(=38Vm(Xa^DOq
z6Ls2gxJ%*h=9585p?_(`v<ht|1fdYRPxKVV#Xc;QxBw0cvfWZiyO!ZS^0j8moxDAy
zRz?F>*`T%y%(UZPxpV{$mhQa*<G&h`pcE+!S+5r1Ky(Vh1w(p>inpT#rVJ4bERLGe
zNjH1;&qrmHRXFNbd1LKwytfuCtFmh5U%PY{gMQ)dA=+~wcwXZNLTT#srRP*3ywCkX
z<<b2P4GUo7pi&|E8r!ky@K6DZ{9E|<3esEuHD|@{j`nA*{_itvlY%fL$cxK-J*Y#j
zL`UyfXmlgL42f;p2!P*?(d1;ZFfgq0N@L2cA<X)og_b*i+tlm9;Udzh<0P;fYwCo-
zTj5Y#4SA1D%y|eTB2YCEq8Q{|L$2+a+U0ebO~Zgwk2teBRR-Y-3yYUEG8@)aqeuXa
zzi>l(okM9)1%msBT7>W1$P@K&1mornkYl7K65Dj>Gtwb+jr+){jW@zi;%v)p$l+6*
zJ$vEwQ6b0y5|Z<=8^<M6x<tXz-%r<K2mGzDQym!WjisW3uW5URVTq`*e&lHurM=<9
z@Yw;nb8O_11svesnRub5TPMH>4tWyC-$0;duWHNa`4>I~s)!)Ij{SB1ljWqK1vc<h
zGz_P>1t+suYe6Q|HT$a>eK(1d1G*5TROl^2g>&Eo?mb(WON4ZFeHZfD$26hI`@5(i
zacEJe+$mh0PqHU&Y!p<Q>fRogR^cO1hm%hLp1LMARv|vh!N}R&mn?1fp!+TOVe(%B
zWXq~}yohf(FzreG*fTj$(s@eTkC_}+vFz?YmHw&{ES{BdmCkTsi`#`lXTS5nsnLct
zb{gWtf!@V_z0>-6soXMlxxSg}ePXI9XBE$voLi|j+sElHht6k#m-XTQ><I+7(<9e<
zE0RFN=l{5OiK~THp@Rm3HAWm>Hruul?nxlEjm*$~gYDK1Xc%OMM(LG}T>ZS$Z%UH@
z*Braq$w@z4Lk>3>Q_CZ=Kz@91@a;pb&c$nkTC1JBcf=%BiWx`gkBf%8scfipF^S*!
znyh@#ewW_fS;DIZT;41jgk|%FvI(bAegC$In}C~%=+&(nDy#V!P!QK&dlNa~*bF|U
zX&fxeyBQOqE1`QMPV~#c!vb6wv^aI-D?-AwzF-y>3d2cAFJX)9M<{Mbl!j|rWOK5q
zI^9&Xih?6lwic8f;<v_m_mPZt%;c=IQNVMnw3%O8JD^;T8LObA&#EtO{05~p%o<K{
zhgb$iRIx@Jn<tzL=v?n;G!7Ze%w5QT6)+#Wxm(y#E2Y`UJz@VaDj#z&ATHEaDVsK+
zBW5UxLzWQ4Rm)3S%J!8?!wT_N$J6Zx*U|LS;>b4LUwu1YOJ$A1qa2?@N5}8NG&NqP
zY<EAZ%g<bzOIXx7W%Y6dDbUg(So9lncQz8AC%y7RHxqs)pcSknQ7vF97N!1tK&-7)
zYlR1<s?G_<UZ!(wFZ<i^{#oC<nVP+<?>YZ|aQ#{4XC@ms=F1WNxsxVAb<CK3P90er
z6j(xIS;n%cRjKDgmQT_j<h)tD^t_76*!6WI?;sfhb#hK_;?O~sVRZJpwFBdbn_fpy
z#kUpZu*FaR>sqH!!E`~KR%->|k$X9EF?+qAx@-b8N6f}$sjVM1n0#F(x}J}c?OeM1
zdQjQD+UR7B+wwK?w9!ZZ;(ko$(ErfS&I2{F+K^Xk<*Osg{OCbvIIq_AylI?v?xIfh
zllsZQ&BrN4u$8;t^-QQkxNRCm>-Iu5CdB;uO<ReM(OwUOao_@t9seaT3`8cJ%I@YI
z=JHxIUrE$&7sETxekkU9?=c^?apqVQ5l>)F$Hy2>YMsDOMr-zsqj{u?dU2fBrVJtR
zo_`z3vGUNrv&<OCA@lIBRpxQ=t5iwv#VRv;#xka8+<;#~9bJ(k^hK2Kb9NPwp_VL;
zoE<RnhbT}8dtGf|z_$Z|qGFc&M=I{&U9+uwtrkI)(_0lzy2vqX40z5q=)+|0;imdT
zU38p0*E~i)JJ6HSTcxM3hFHj!kgzo*GY1_7#`?@pW~b9pq`%32b_x_MBC@P|hg4S6
z+iXs7XjZ<Of0CWMI9)!}xz30{hbDb7R+WTTH-Ry!@ft;r*&+!T#A1x(vHCo?-7MV@
z`NZs2`4%br6PmQJ)aSfmOGPTy2$?oIw4DWY&6MsYZk_%V59RH+i9Y1-KlY_1#_yUF
zzr1zQ#7d+cQ&gbYg6}3CBkKWui;lUoY+Vg&iHSPFyvB{q-uh0IC8UolU&0JZc%9m8
zfwCj5ujpi(Y+gPCn5BU6I!xRz#k+^;af{PG4J*ChM~NOW%uB?IZkiJsPQqg%9Q&M!
zZ^$Js1)Oh`lwB>`L~WDF7)c505D&D;d{zoTN}y$8dEJa>D5Z`+=@R^)*LZk3#R$h3
zW${@=7b_B(?N?uagb>5$<K}b?)*?2`@U5TSn(t$|9Ryv{fP`j?=IKq*kCe*r3VwV|
zz242YWGH#f@5%Cst1AK`K9PBs5KR@}g_HDr?qx_N0u&v8pdD@p!VtO?Y~f$*(ZKN&
z!a$p}5NQk!;E~-SNmQBiQ=7X6_Etfa_rlM8jNbTApT0M(_XwW#x2xd_4KMF4{!Y-w
zKmPp#J3=CJF_4Rw8JV5B-r;~buun3M!(dEpSAl0qwx}$HZ(5D@em5K|-C(yVceAaZ
zpEt(QTp}>D+|1eZ<6|qlc>jD>=Ldm}GXp2#hlBac+(5yPryq4Z{d{Xjz=xRD*Rw_W
z8zWezE26&LxpF;k9XVr)2m^mU{jarK?VJHWG|GQYwSWnX)S-Wa-y2bo{^yhg6cpx*
zGW_SI0nRm|A^qQbz5i4Ca;^frYQ#?VpN-B?P(=S-40VPEW;Es?6nn7*0qy@5s)Fr|
zS;4~`ST802es$4<B~0ka{_nlWe-}eRNwR|jOeo3zvjY7`%>Dx~;Q_~s6M!{Mu)yAm
z|J}5o2sl@X6ioDvgzWD)^>Vg{;KeTN|5SbXmMRL)c_#*ABmrK1Ckhkv8cb#?0plS9
yHZm0=`@aJEpNep@;2Ki~Fo_un4BQ*=Zv#>SkP<w?pK`31H$NN{)GNh5zy2TfMkC<>


From c83e76a75f9034bee1fb03ec7fc0c6e29dc91cb9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 09:20:25 -0800
Subject: [PATCH 796/825] Update controlled-folders.md

---
 .../microsoft-defender-atp/controlled-folders.md | 16 +++++-----------
 1 file changed, 5 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index 34b3992bb5..5d79d2db3f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -1,5 +1,5 @@
 ---
-title: Prevent ransomware and threats from encrypting and changing files
+title: Protect important folders from ransomware from encrypting your files with controlled folder access
 description: Files in default folders can be protected from being changed by malicious apps. Prevent ransomware from encrypting your files.
 keywords: controlled folder access, windows 10, windows defender, ransomware, protect, files, folders
 search.product: eADQiWindows 10XVcnh
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 audience: ITPro
-ms.date: 12/17/2020
+ms.date: 02/03/2021
 ms.reviewer: v-maave
 manager: dansimp
 ms.custom: asr
@@ -35,8 +35,8 @@ Controlled folder access helps protect your valuable data from malicious apps an
 
 Controlled folder access works best with [Microsoft Defender for Endpoint](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md), which gives you detailed reporting into controlled folder access events and blocks as part of the usual [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
 
-> [!NOTE]
-> Controlled folder access blocks do not generate alerts in the [Alert queue](../microsoft-defender-atp/alerts-queue.md). However, they do provide valuable information that will appear in the [Device Timeline](../microsoft-defender-atp/investigate-machines.md), [Advanced Hunting](../microsoft-defender-atp/advanced-hunting-overview.md) or can be used when building [Custom Detections](../microsoft-defender-atp/custom-detection-rules.md).
+> [!TIP]
+> Controlled folder access blocks don't generate alerts in the [Alerts queue](../microsoft-defender-atp/alerts-queue.md). However, you can view information about controlled folder access blocks in the [device timeline view](../microsoft-defender-atp/investigate-machines.md), while using [advanced hunting](../microsoft-defender-atp/advanced-hunting-overview.md), or with [custom detection rules](../microsoft-defender-atp/custom-detection-rules.md).
 
 ## How does controlled folder access work?
 
@@ -46,7 +46,7 @@ Controlled folder access works with a list of trusted apps. If an app is include
 
 Apps are added to the list based upon their prevalence and reputation. Apps that are highly prevalent throughout your organization and that have never displayed any behavior deemed malicious are considered trustworthy. Those apps are added to the list automatically.
 
-Apps can also be added manually to the trusted list  by using Configuration Manager or Intune. Additional actions, such as [adding a file indicator](../microsoft-defender-atp/respond-file-alerts.md#add-indicator-to-block-or-allow-a-file) for an app, can be performed from the Security Center Console.
+Apps can also be added manually to the trusted list by using Configuration Manager or Intune. Additional actions, such as [adding a file indicator](../microsoft-defender-atp/respond-file-alerts.md#add-indicator-to-block-or-allow-a-file) for an app, can be performed from the Security Center Console.
 
 ## Why controlled folder access is important
 
@@ -120,17 +120,11 @@ The following table shows events related to controlled folder access:
 You can use the Windows Security app to view the list of folders that are protected by controlled folder access. 
 
 1. On your Windows 10 device, open the Windows Security app.
-
 2. Select **Virus & threat protection**.
-
 3. Under **Ransomware protection**, select **Manage ransomware protection**.
-
 4. If controlled folder access is turned off, you'll need to turn it on. Select **protected folders**.
-
 5. Do one of the following steps:
-
    - To add a folder, select **+ Add a protected folder**.
-   
    - To remove a folder, select it, and then select **Remove**. 
 
 > [!NOTE]

From 9d86f926aa161d959dff7efdff5a67d091eb5e4a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 09:25:53 -0800
Subject: [PATCH 797/825] Update
 detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md

---
 ...ially-unwanted-apps-microsoft-defender-antivirus.md | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index 15e0a33178..f56820cf7f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 audience: ITPro
-ms.date: 02/01/2021
+ms.date: 02/03/2021
 ms.reviewer: 
 manager: dansimp
 ms.technology: mde
@@ -112,21 +112,13 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 #### Use Group Policy to configure PUA protection
 
 1. Download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)
-
 2. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)).
-
 3. Select the Group Policy Object you want to configure, and then choose **Edit**.
-
 4. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
-
 5. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
-
 6. Double-click **Configure detection for potentially unwanted applications**.
-
 7. Select **Enabled** to enable PUA protection.
-
 8. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting works in your environment. Select **OK**.
-
 9. Deploy your Group Policy object as you usually do.
 
 #### Use PowerShell cmdlets to configure PUA protection

From f74183c3cbffbf27266ff6b666de53199f4dd8f8 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 3 Feb 2021 09:47:18 -0800
Subject: [PATCH 798/825] update

---
 .../downloads/mdatp-urls.xlsx                 | Bin 25191 -> 26000 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx b/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx
index 136c11b15d47022e131bf797785eb4d226ef1590..b5683ec66f0cb1daf7e6e7c898378ba26a12bfdb 100644
GIT binary patch
delta 15091
zcmZ8o1y~(Tvb|`~puyeU-Q8V-dkF3>LvVKw?(P-{?jGDVxCFOgkL2I?cJ~b*7nrH8
zu0H2fbu&G)-v<^u3RdIv4))7|37!)K2qc%_{SF&Y{K<vxYhdvjuzMHFHC`A-mA_Xc
z?vLXCo-bN%y8%O5m-`n~?!%eW35U&>Iop2QIi8!^Nw*HC@!e*dl^pg2e#|w<1o(HP
z^GSKzYu^6A7@Sq4a`k7;DG6t5e*>+UPQB-c!Ci@=6mw#IWRUYSBx9oXK+{?Z{QUHb
z2%Q%2j<PY9UcDyCsm(w}qTIJT)e?8bC8Nuh`t1BYaq_-lXzL#NsMt44tzuWAcy=|g
zXW#CWXTSO6{jNr}j*4Ur>Sb~vzN_GJO^9%1oq>fb1*zYwek(fL`IUioAi?df?f1!>
z2MMLgDJs`_8kiuPGb!LQn~Q_^Or+)+FW?G@<<qHSU*P7eiSNeLf_hi62_up58Yz*}
zAXnLk{GBoH;hil*M{9*gFM(TO#DU{OW)qJpq6Ffpy1qky8SHx_T8@)Up{nHJa8CQ9
z=z-{n({fSn4Qa@l@L}HJg$D1StgaGcc0G1W=t6!hNDpMOs%n>J7J?q2n9TomVF?jX
za?i0Mg0$6q^lXQY_?c}-hR{wlqGE-^owgeU>#TKPuEBD7#fJ#7;Ff2AOo!c9m_ysR
z$Xm)xxj19-;O;Ej+zacl{h>Pgb|d3?aC#DH)c#iXF?Z!5u3jEM2wBfNMLVOZ{qi|T
z2r+-b$POiQHj3M4J4sva{4-w5yCnl4auQQ$iM$G9UROlP`L&ln@^k5Z`uIWplCbjU
zb+o7CPjP~od!)3o{<XUg`o`h~QuLge6vP)jB-DJp3j)N}18~TkinD1dE%>d-W)+|G
z`pJGf01%`-y3@mct0NzAlNLTq5p$^nhPyI7LPFG$>65KYp!cmsfiL~nnds!eu~%xg
z<l{Q*z(M}Avv3=?D5tS+9+(5~$D4*=es}%pqQIj$q@UVic$mS>>%~kPIG>igr+BQ(
zZ9UDhU~~gh(I(S^6?U`~1TN|A@V?D2;(pUOGPC^^;*m_*!640l{PWdhTX+FkkU*a#
z{mx&8J)yz-i{>PMIoh)5RcgT^&~=w+y&Z#Q4vF6GkDe?^GAI+@RsU3h^*}s4y~-GE
z>H<1qocLO6(}1l`3mXP8{fY3naZwhj$CGjqbEB;rf5ZHf(n-VX;WmW(Mhz<?W{kPM
zT<6Aw?c{f_gh^k44@C_x^DBBB*Orz;1di@ExFFE$D+EYM76K9-1Py|ze}q#4hcmMh
z<vBwKfqD}Xevo4)*dn3<5LgIg%0o15(z8h#>T^FEP2`NBOe}f7T9<ct4MNt%sT5Ah
zbfxybKC@;SIl9Fr-HkP(lue-Aitb#bmx|0D<M}+c;vvMD(^bN2m!|I@1mQY!`n=lK
zX?j|5WauElG!9P<EPuj-47O=07|=wl-jXkED8R72;bDr}Yxpb<)WPL3$w5eqM@0wL
zb_C^)s4xj=T2p%1#2}B;S`q{GC{c$N@oWAGYIbhpe$-1KV{#fJ18u5HGF-tbtHQ%F
z|5l__r9FH$Jd_LvyBUE_`*?o~Gc^kzqIZKCjH855`F?e1hjlMsnNlIs1>qOEG}W$~
z673z0#j9)XqiU`JNT-#;L0;vZgF9~rL0J<##BK3btXOLlq~I-U0ir_)>5Jz`ve6Ty
zbOkstd{=dk^c3#&t&16$d_x|KcL!~oUQSK76_#1<7KHBV-Gh*L05y3hllDc7E%X-k
zd!yF1)vCm0o-WcIH2<Wn59YT1d~jQ7gv3{~<1dr*Yn9yq50^)F^&?;MX$3H?-!0o(
zeq!GE+STuA(w%;9u?-`qe$K7SPrZut&Pf8vW;LS6))9U1g-Ke9XAE_xHnUddg{#9N
zLXbLFuoBg{y04j9x;Su=I>Bl31E(vs?u6zuaoaqhv1B)j_3x;o231kM(&x{qn`BW{
z3z;r5p_weqB);)MOv(#EKgKwWLfg$;SAwH>$otk=E}3CpQ)qs9?O<fGkopGqDnFh5
zf<ASBf=Z}B!Un7%E<ER1$qag!BJYvOFf%fDZdh?JxJ@<7=boHeXp_>v)A-bAFHb#Y
z3w8jnHxI|v)r1?b4}-71k5|1j*VikP0PwspxzhRUvds5<`*R_r_!;r(HaolX<$izn
z@eIh0!#zJ9JllA=IE;A&yuDv-*6-}DCJ3{lo1+M`0AB$g@7Il($+L~;yPuD48(sH_
z*u}xjH<6m3tUU+z$J{L}t-S`)tWG=!bUw*V%E$RAKIAFA=ikj!iss)fQ&Qk3r%Fu8
zLj5p8Rv^DQHjjQ&9MW=T`=XIx*AYKFqkreT=j*=Qq#i_^%~FW_k?T^M>WbL`mGw1)
zbN%HZ6=*p>t{4-!zbR5f@%0%_)Z>jkKUSeSv+vU<M<zoik7coUZ=E|Z?F^Huv(tZZ
z{HWwxR85slU33|gN0ZIzIuen8_0}FQ(@y3?sdrK82&Rm>KDaQrGB`Cv#gmQU9hjh#
zrs*WQ>aB>f*(9#c66baX*A*Sdw#>tTIt8^CP?TDSDU+o4uO@Vlr(Le20{`12&1~be
zPyN7Yeff}~%FH}#Ktj#qCryD@QEDru%$y#$QM;6Gae<tX-Ft}jvDFWDEdAF-O3rqd
z^AorpXqy(+JMw<zv7Bkfo~l%HxUi70Vz31Wt1nu1mR|>#mew$AkI8{MEfy!uj3M-y
zFp;UuAst@IKE2Da86wISIPN&=BD5ft%vhmVp+un(zrnDT*4fj(F+B$oRXIvHaW@jX
z(~Q_=^DJoYZuOxsIp$2N#G^n+f5<#Y6=*(%RgF7a%1^(-(b9~0l&M<LJgoKuKSE`C
z;OszZ5>vADJLf5tp`ijWsG+D**ymi#=48zu+%Cg0H&Z{UMgM~4Xm+*U1(!)1(WuHv
z<S~WeDk4o%r6(psMun9Y($;B;fs%2XN!@Fq4EU`Q+?KFlE$nM;(kSOp!n&5v&sbga
ztzLY+H>uQmS6;WYw`u3_*IulPoq%r50>n2|RGMiqc?Y|Q_X^-Zh^D&JXrG<z`|wXq
z9hhT?De*_mrm|J_pJmrqmq`43uzMR+m*9-nyAG%G5b!n|ns%mibjVPT^pok$s?8Kc
z@cS|7JsGp;qc`~-F4x0#uB>+Hbo;nC>~{H~$gOqoE^uA6b*OC7DAoGv%=nimXO*qf
z0`eb82IAb~GfSuer)4kr6%{V{rk(Lq<&JzWc*USejH+Ht=ClIFd&19?7{jnhCQB-}
zbrZ>B%GTJ!r&n4HO;6y1P5sfosHT=kZ1>I0Xm}k0zf-#`Vqo_(E|xb2ZF}y1Y~ljv
zJ)&wFi<|aovj4bOPwr%`11D)?DxcA8HnWSM;FgllE3jY$XqxtQ<TxI~LEVhh>QZ}Y
zQOXWq)s^x__1*D$*bonZ`BG{qSC`bg5AL70qs3<@m7a^pm5RD~r!_N{tS*a`wmZ`4
z%s)cFx+Er;k&P-wGa)H>)z#3uW=Mwp!lB@$9Z_>NHo7R9Bi6x-BXH5qr<z5hM2#Qu
z=CL7=O%rGaBFP?yQBJ#SeQJC8Wg0q84wENUjSRRp&W120y9T|r4XCy?qg}u&W0I6Y
z6m!O<esv}+WT8$#J(7u1A|KJ|E!2Etm0<u+EIrvJ5h@jx_+qm6GUCBUKlYk{bnKt6
z;B1e|6|PL0=_emO{%HqtkT0J`(m>3_$vn|ps#-1xh#HwWtxCOCYIX)so(zN^u$-V0
z5fP7M9qE?dq>_lbhUSP~2XQqiyV`-sdGZgIcooeQkv3QdIV}0R4VVazE82Lty1T>P
zq$J7gRFGfe;Edi?J5Hw;5>y|}3+A<Spj_1R$q~PUuWJ7VexPn#w;B!4B`+YMOL+|M
zP}Ca0^MSFqW<3>vlyNpM(xszOT^jArQwbT@J;TsdDsB%{G56<+i-i<pHYzxNbB^Ct
zD__(0o@y$M$jf;|Z4uJf+)v*AJDXpvHd+aiaE6o=cwQ>gw8<iuC&K0;MFT&yZ-pOf
zCG5Lze40g$v5H=aJk~v)w444sm9Vp}L<#^I8JMyhmIbx-y%rz4=bLvbn~)$c_-63;
zmuuK&G}iw4g?>D@(>hJ)RW8+aSV)0lBB;pyfpO4115-kvV)iYeYUyP}$i#yQNbSlC
zwUX-mxwz_1{~10Oq8%BjlF-IbeLH!wH`QYw5?bRuL)csEoV<X^I5+)h9i0;V0UX8B
zN56m_HDFR55hDLp2A@ynsZ`shg1%Q{(h8JwYtDp98|W*q!49fS8r+Rb1J5+3{g{=;
zE}y<bq3f4_81@FYkz9syyG&Q+2EP8$1x`QntI!#-xx&h~99OX5Lj=lvyi@R53k9M-
z?9yibAs`aR0u!*tKLxk9&OdQ|iwS)6riSGMNB9cVJC>0thOUp5%4XHAa3y%7B{#LG
zM{jay0B?%c_$vom5V>}KwBvY%T#z=H3_i!m6r2!#{fEs>$aj=HT(EfkV{sZ?^HXr3
zL5>+)s2nl#B5N;NRU_6brrX`ADY&kWO=-t2{`tT^0!<^O530;B1V!5vt*HowO~_#v
zB$l3&C+fg?f8x=G!zzChg6x<76+&T+OT(MW<ZE=`{s<vkkxJDF?Y<p~qkBr_Eoj(T
z6(WWI;}xGC%HA67BpF=BnPP~o{4HF#w{VS~_59(F8YqAtUhsWkfn-GCu>Ti=|KAWG
zAId`Cz#v94+0el|BQva+hxDZUzYxCExUeC2S;%vRU%zT|dpaS0<wc_^x%|sN3ilB_
zm%KqpEG=;^$vnyOMJw1*4SieOOLyk?Th8=VK_VR`bLwPcC-Vq7fOkZ#1jw0-Yw|O>
zMWWfiXilFM{1biBgZpouwm8?fHhb{R@QW!uQ;L`fGrvh*i=N&v_t|Rdjq`SBfM?Qh
z8YdxB>*M-@mjM~=2tJN7|LA(au&;N;j%+`6ti4Nzl@xLq8Q(3Q21j4tb*Lc5LK9<_
zEfjRc^@R+T2}oA|hpv*ht|q1!-sl>!#eAbH5rO<Iy{LSh{3fX++dw9b=4wmjw=Oh;
zJo)p3G9~#~?9*_I+}dE9ixNwfpu~fJdcf_k1pSf1Khg<NMh$Dw{F9KVTW--XNYOU_
z_*=?(tisTkZ<z%y>CVv&plmT~Sb>YXZ~rT=U^<<|-2V^;6N8!w%hK|PTCSdY*l3uT
zw-l%9`BOdps3;=E?lVby0!+RdO1dW=$i*rOB$d{{K52lyZib#?m9u{#;d3A%h7C3D
zkqX@4CgJ01f^`j)44Z&VBlu&8x3vT*894Z{5`abD3PXFFQqj>QNS-E8wz}VBwE^}f
zLC6Of)ik)Tu_3i7t<i2Erne~DA%y-Em>!A~N$|%vE{_GGyP|nyzu>=-Z)&JnB!VQ9
z$m2}mXR?R*ZvW^%G9gj$6>sxMk)2yb;D|1L`0z<wphxYkF7l`V0!NFVs@%Y<qIv$W
zicU1FD|89GGpt7gMSFNuWCR(kkMuT}??s$IQmN*Sl5*|sqTsE_9YM~vTiOzn{ewrr
zQ#<MIA3Tb^-|)!U5d8Tz%;?0JT5B}ZqR#nt0tzVwGKD`}#Bbh3L;m3+b5l7FU=^lt
z|5N5jyYt^p$?Y$+F7!gmocH}j1ode>Zu1W!XncRN2l8#gkhdpupRJXT^?264^Gqe;
zj^p|Zvi}Az>R*uk|AM@kRQe-dvhaQNJRU58OFB6#@t4?tO7nm9&MFN2yLTUoA70Nc
z)q`pO&uJwrBZ+UP#zfCiXu@3tLd=Mo{tnWGe|@Q7_zjfQRYNn$sLfS*09uLTTh4#W
z^olWX_4TdTY9oYRj0ybB>p`!W-1UN$;ZrNhA8er*eVCS9xoT)=B2&gVc#a7q+D2(9
z-n@;v&f^P><Xde|VGfDQ0Vu1V)#%>&ut2*c*Aa8v4Ga}luwb$jVU!JkEFw!o9R_~r
z{~ghGy%AX+Asz}o-c_qQH+<*P=#-~ta)g!{gS9C2bxm%;slTq$V5^rdeuffv;hzXE
zuvt-?kz`hVF=!_hiGaolxk+QQYi()xdHc<*tlcPl_TMv7FDKa&@txfu1+QtPE(!&r
zKO~>~JTalxoS8ak8869t+Ma2Uwc*z?D^-_#Pbw#i&lKf&O>9IM#7wlEuL*<{`6GUk
zN2vk<s<?DBMvtY$wfA#aB`JEYzUrvM6Se7PDGvAk)0MzUJX+{q{Vz$1Tt5lJF6Edl
z$%@#Trfi^lh!^&+Fb!^$KI{!WyJ=09OnH#Liaf}ZPKirEZ^GYNniap>_@{WDkk&rr
z^nFThH#Jsu<>fNT(N}Igy>vPaGt-nJYx9ou>AtT#xi0zow}Qv{kWmpP=8V;)pj!hY
zwvuKDv!e<dRGWAeLshX-uGo%@Se;3k1aE7`Khmy?5&Ic{8l`o6xzn1IX<K^x)8>yo
zEw;js8L<V|AhEhp$vMo(jS+>I`hPNcNizOS*dt@S&gnXnB7SY6<89oT8Z1u@+Hrcs
zaVM8s*HAy3>t-OV-)atkik$q+6>oL6(+EW-)vTj*1;s$kD<#{kX8p@7g%&%BEXFm8
z%<NsURx_F-`9G^~^d(8h6XoGr=Z1jUVTR7)Yq;sWlMGYEx~TxvO!jMKiXgG^&-U7L
zX3OoUlz-Rj=yQ@HM^k7j!rIFGn%ZiaqDRuM4onl_N4h|$dP>-}|MWO{aIBEjpGixN
zaJWQrm-uaImDZ5gnyJjJRDO^Z?LzKzSvx`YTbLYSp5XX;Hihe-genn0RgTFDg_{mP
zaupMgQgHe9Ns|k$d;&H}y*My@`m|O7Ht8?u%06Vd1pKfc3O>xqM$WAmmQ0l?bkgMk
z_ULomN7IC9c}iXtqg<Zk|7eY>ECzBmpEAe)Ed+ce<$Tr5c_x|b9g|Gy3Z7k6gbjk@
zM8$u=o|C*hoJvr98`;`KammyM^`UE-m}0UXX;{P@Cc*;2>GetSzhXTQKvjy#@_UQ*
zm#dI?l)l>%rV=21i3z8UdZ+;Vp{;R{mt5`dJRp7-7wCCSrWUK=+>AzJdEGjSDW!&b
zSVcCwXBBlPu!pH;8RLd6Row^scR4oy%!aD`#$YI1eB~Q=<*wGhTv7o0ocMxYG}52c
zVsX}B-~Q==`8&=3BE`Ph87?8ZX&pt9_>u^?6jz&?STVMJFQ*}EZM6!La`t=*Z%>av
z_*caWeFIqWFTe*jVrEm^9~G`kg(GKpdh=-CY-LJHR>K*%|5+BGyg{7B_XpysmB5ia
z+AUSzwu?vy>nZ$6CFSDw?@B`di*DW<x(R>KB>_Bfm9(69yUnjIhM(w=elF(mX6585
z(6-9uYi|E5i+@WA@OxZROJyEh+epM>oE75H7FX)>=1I8i7H{}YNjZOsbGY_zUxts|
zf&2%)+c-bZOGvd?&!t_YUw#c#ZKwjfm`@WWQ=<%kz5!|6NupA%ChZ@zfj`r(`0X3q
zmt<;D4dhF*<n6fmvzuQ_S+E}v2RUt63OuRRHi*i-=CWUj{_3B8y1myEXSmp{?ql^R
zlArIi)TL8mby7o4D{7!y-B$T~vd*ssaZ<M|%c8Dfx>lLLWjKlBVrNO(Pe?DW3;I-(
z^@wXvf*Oe0G(=s!fySjDoV4ty!}=0lLkw|Nl~=KPjwB8$5zcj;kp(ln9;crdq{zI;
z59`X=cktE8hwX4I$f&(`)t3H6X#vKe86j*jqYPJJz8-1qN#V5riO1Cw)ZSpP-GlCS
zMYLF}RiTu7Y*P%9U;h26RqxI32_-`+mP9z`PEqp*q>bmNi|5DcNdv&=`5piz*bsL>
zaX(j>TGlg>yn+F?JxmDV28AQ=i9%z8=rqE2B<ex47SpMp`}F}=^@DTU(1(;J$>GB&
zv%wDD%;39EpUd32U(r+Auc{6@zgA~y+R<t{Log0~5WSo7C78V2DO-f|Kz9D!>c-#M
zp%L*>zx-npnqx*RyPdtL_adJNdtj4WiD`Y?`g9c~)v*omlGU!}8w$(28$y)+dfgpE
zT0cNZ^=Om*07g-fNU%&<h<W1azqc)l;IaEISIk@2V*Va-ygvj>g<VOMYHKja`UZ_H
zh0s`PgE0`*SNB9iP}u2#IM~0{0EYajWwFxNfA3NhA?`9jsmIRz?yu?R$|s`4^DFqa
z&7nP1)<ERv;~$O{>ojvFPqd__N6(61H(PR})Azub74mUZOYsa+N!MAVh{QbO4P|(f
zuhd?k5)2rupiu8aZ5!)H$zQ;LkEgaPObFgdT}Vtibw6XeVVS%bQ6ZsN5I%-b9OwfD
zbdnSvGSdb&VfEfc3WKVH$GfMew^z=*_=7QbKwFIHR>a!P+2Q1kQp=f3ZQJTWicf8u
zo^K|gc=n{}fHxWW)UD*{=d1J}vpbn@RbKnV7ro2vUj&m^$U#IY>;wt0>nP1^2$MUs
zp%o<QlMgA8v@nh&$yYS^M`>D<l>8j*D-YY)o3p}gk+D1MPj9q@fMh@FM{XFj$>9gn
zZIRK1?k-f<C6aRblJnjv*A<*Wmml4Qyrn=M5hwlcSum$VBFw6z4rlE$m|05(`@#bA
zT+DdL19(jr1D?We0QL(4W{ZkS)}}~2NVmoEcb<TUe-7DbO&lvE`7SI&G#l7ZVBMkI
z^lBbf<g_yrjS2OHk$^78nsjS~H_^zsaESo5(ye6rxh0!zt+Yp;=WZdIghfnmNu=v4
zCLgDv1=^uk!q%O(3i4c95xqji{0LTF!mlTLN2rPn1S{!CAXr~(|9jqv^(Ju`8@`X4
zT*&%ooV-NMiLDQw)7RL9&WnknT2`Jv6kwFwx9acfGB`vB;PE;3l;+KSf7rq(Cr@sV
zUwR{O%bPg4PN|xeOwHisUzc>1WO&yKxAkjg%PB{)cyDTBKf9ky<vuybizH$jxK~E{
ze!o5#>~>~e0ki`ZSdDwb$@sD5U1o^NMnl8v&qoirTRjq{E!;EGY56`gMQ#TW&xe28
zDpcHX@<eEe;iuxWUKP*wh#awidH0FXsY<GJAb@Bj!{fV#g6LxYp}!$o+67T)-CMuh
z-wb2+p7#Uq7Xyeae~_Z*vwRyfiFv<UEKQI{M|d!m26#bjly=D>?(P#baD7WxC=x_Y
z8V>u8u^r$&w~Q#V^dh9T=Y648<GrU;^lUi}m7Fje@xu0wPJb7kVUUD^o^z$Vz1n&G
zqw-;qz@Un}=eK<+1GD!WUM&w*Mb87o=ubaMx(;WWf)8l%c{FC{i@Xc-y6}|8Z_|&<
zca|cAQ=kqB>0iMT`e_c~c9ZHmx!(2>uc7~LT1?TR113alVIpPn)1SR`PRq>)5xU_9
zDo**z=6vt)bEIhtLrPF%x_>@Ao2Oo!ycAeDf{qg{97lRXQ9l<@tJRMmR%ag@%7tC!
zQH$B&3>~s^c?!NhS-7&f?$dx2V}G<{XskD@4rEja!DFUl;9MsTSiarxw@tI656wfG
zW{=3H0!*|^g5L+0wg(xFs7Qar{<iSr9?UowgW$?7$#N~NXqTRg{={|zdinqZ1y`N+
zbybvl%JFxLP2`8KIL87PYEq7M?)~nR=4rmqGSajbQLKeXabv+5)uY)puxOVetyQlS
z2#RSz0Y^CZ;o*YGsDyeSFKFo=i0In7S~tv!y#V!{YrEwBWA#2t;dpvY;or#B0n&9+
z0U@8ig}P^uC0yJSW=_Hd;r}Wl!5GQ#-I@`XSn{5qoV0_Iyc?j<xAql6oQANpmubCN
z#i~E%5ZG1;6kD)62o>>k@gtvgQNYAAUw=Ln=fNdk6#rT2Gp}<;`aB*FE>m0m?B?_Y
zX9?(dpeyuR&!QBRI`9gFX{>$gaX>95W>&w4qbG=#%xA;hh@y(~+K=+}y!hUS6t@^G
zfVwf*4WtC~Mb+J}am~ZOzWcL31^V;h9WVSofCyQ<T7*joN~|0)zTq%$foWitK^r&s
z_IIW-X-)w=>ecfVA!`7O-paC-ja4NO{3071?kF?X=8JvL16!sZu#G(z4kr;-Spw!U
z>u*Mb-6(^@rSzR5l<14I67eqaB$b80!0n{YV@v+ff^!8(m1kFmTBV6X@qX0UPsjb9
zFIw@=U6}w6;S~bG3zxl1?Aw=dXnp7!6FiDLrimBM2y%jKOz&O;1fzQK3?xw?${Jps
zFwO?W@ErOO8u^4d=2QNW8Efr0binAIZGw~Qw*D&8{|%5WN*Jz32tmA>We22zf>Jos
z9#Q4#KUBafoEgYQ;_j(q<ofF4{(2XlCebkF0;`zL-{b2RY?vWC%JADx5&73PL$yQ@
zQ=E-+AX9{UfbBu^8g<xHrLgia#fwTHJS20`(E%O1fA}}z$KP(d=-sx5pz>9pJ_1?d
z%dL0yO$-U|;8=0A$%tS;AWppmRStRJlWP`lZ}i3~ovOQdRS3Qp2@Pi*714@4#-hG_
zUo~U>x)M5H-U|Ghvo#ya-4NP_Jn(FG64xHqQGr4NE@$M0<{&?`rytK}5=FPx=D;x&
zY>*snbqJ}ymb7D|TfoT2GsIHZL5D;pJJ>X2-qIY&m+-Om(WdPXJGyZSHp>J+OW^-1
zi%$3RrFX<t*T)vTgjakH(Wn?<wWG!<K>XwJFb@WY?x0ih4)k79#x5%E0s3kjTf8%A
z2J9yW&V)Q^N5SC733~1Xnr{amW=_$He-@gcDKceL%2RCruuF|@C+sP=?YX7NW5dUd
zK5PO1q6bb=i=oque0EXt)%}+-!m>@N&f@CTo`8)ZZbB(1Jz%x~{+&keBr){nyl1zb
zW#ZPavDSjX)KbU{4yVXONdWTOErLGe>w{S*SXiB~qT{gPGmB@nu21!K;}ZnmU>`hO
z{}D6IU>Oy%T%mr)H~c6Gw{(u#L}i1ZSGm4@UpH&UAMfcYwuQ{BB!1-dWW3w4hWQ2Z
z&t<`SA3}Pgp$w=O34p_RH-&>T7WK+NECy$hS&jRH=Ha%_YKA>3P-WJPe$RW+ZJ;YW
zDwiNfBD=5A@(pBuNfDY>zf-ty!}CR97HbaOzuY9598=6qcZVKG)f^l4Q04_;xLb8M
ztTN#_!RYlFknY1kE8=BjkaC|a<-C(>exH-CSAuoA%?oHS@}<~`@-DJb>Irv%UwB?c
z(T_cJgX*9|9*1DZSO`?UGTAlfl?UZ=kJwEVI;hUz*vmwS1aFmRADYyq_WsH`1qP0?
z@KYA{C}?7j{3h6adXk?A9b}bBIxycU<bIL6g1=dR(I(*Q75IF!rc%>9KSn~>)f<wJ
zhm-LxW)oO`j9G=<VXRSGCPEybL_)nDA6NyJwVie*79Za0L^V$PQF(hAu3O!|toPBb
zh|npaJg{Z!g%AbQTv6`v%POC6RiUt{AAv9jRTt@5QGOK@Rdj{L2&M<{LDWs>qrG5k
zVttpiR|9EqDQ{8Dm~i+bdLo;EppfyTecW!w;eqAa;gYW%Iz>N|q466QAoPwwmLI;&
zM@Il4Lb2v6(}2<V8jfgM_#Zana>)^vLATgaA3jsZ1}Zh0g+ghnB1YKbRA8?>v-YI-
zmyE~PaW@4ion&w@4#Um$W`Bz6viO|BUIv$=eZ${knWR+7Er37UQ=H-<Wx<n6{1JXp
zg9#|kEo`+Srk?5Jg_sZ4HNsgc5TkHlmT~Ei;99TIdeDIH@n>b8+l{3Rb=T5K%f+E>
zU>6_Cr0CBtqBGHQ6e$#AEo$@219Kx$W0MI^vxss6Q+kJrDVakc`Ay@DDq4tNS-KLY
z&pIg{1xBMwgl&Ur-dQ8hv}NJjsb=E#2M7SK*zNg3sPek1_pu7g5X78EQXReS;99y-
zpegrUgs4`zxlp}U4(ik<WJ4rL$KEd9(fS1!XdXuCeiLYu)OTS)#&=UAqm@X+Z?DCb
zk=&{L-dg+qzTQ)kG%B9*>uYe}cU{Ats6d2I(G5s9s&!6ol3NmdgehrJJo`OLRA@kd
zlStRLbi=GvJ9=u|ta-Yt$EYEdENKt5Y@P%HIVSSX()>q?I=?%4;T#W*p$duV;aby6
zVno^>#>-*%xQWfJ6iuB_4h%Jm-VyR8yoIH6#O3rzs539Aifp{r65v0F{PIm1yJ{E3
zr<d5W5fMX{9reQ|ptpwVC3T<1t7QOlL7exEeEJQrEEPlgV$j?=;Gtq|?p8iq-Z9Qg
zm-{*CDKbnymDl+e_{Gc(T`tDezK3}1@O8ff%XoE$@g^4TJO;Uj5p=_RaR|QcY$oU)
zeU@A!B?Kd$U(ji*8E2e8nDIAO&M~m*dPfZWkWpI(jrHn%A}(QmZZ*OWSfB*<d3BOf
zN|Nbyyz}E5MQbbi78!d2z6;&%SV6zyh90jGEh=j8JJX8?9rCiBHHazMINE5F7>eA(
z|B{R_-OzOD7|-#nGW}qWx<VnZAX>J~Q$No#MD}B)@Ju1mr5NsgkoiMT6UR3M2eYmx
z#NX<&-F1&dC;k`2uqFGr-q14u^Y}$b#;{1HFOfsAMVEv1{3PA!fb-MbqFWn2uzSD5
zKs9`Jt+|CX#rtw}4?pW6Q{elcxrGn7Jk4EbUUD1k1A52QmvBo%h5OgV*n<<@A&gC}
zAeK9Mp<(DclbZWR+RPBf<aWz4lN!F}CTE0sIOqU$j}@oNpeyJ#izNUzJ6SJ`*@h@+
zu6A3!&iJQx?OdEiY~(gYn_>8IxYJ0|)@U`+>1F%et{1KJS|)|2Faj_#&F@?J=_o39
z5Yv)CuPo8`tLe6Ub{M9)hP(Az&LxI1J11gNKc08^j0o7slv0t*!SnRV??TabI+!tV
z`kP8={r7?jediBuu7dyt`ubzLz)#JP8fpsT`=>bl9av89o)M*vhp7NB&aLVimkY6{
z{f8~v>ubK_yWq>-n&NemO3rD5EYI}c_vhDaxWhgV7aK$L3z(}8;|#mOUqjJv)>*eG
ztQREb-@V8#a-fhh;(2Ruy*HFJBD{Hb=_McMRj;FUSPJ2@i2I)1wsBof^|vC#&6d_z
z3zWsicsHZb_`GwSM(Xor{%(x&>8OBLRGT1q{{>blscr?St*HH(*MwT~4{%nbho=wl
zAW#8ALZkp4aB9=mJ`dk3Z5JWC+@+v|r(`HB+dwZyq8?ZG^ZDiufqW^NYBau?Fq{pJ
z8}I%8P1?i#pekN%p_EI>PH_VK*;63wVL4Ial_Dk5UAEVmVk(C&G@pu!H;)#)&*k9e
zZbXbWZg9H_z@vqg;C*n{*on-%kR=n?XYh$8>RWd;aQMACLG4_KF_6h&wv$irwUY2k
zDT~R#Y}%X0!_C2=hXwm(tdHu|F^n-Fh6m4^Eg(!PC6`g)c6`$$TVOX^ay9gu%);E6
z8x8xM-2#i08kPL3k+<pt?%H;MLQBlb7x}2(zF|W*h&I$^#oj(4i3*tqL6LFQEIK@n
zjt~|lfOec=LMwafgV+eeB%^OND%C=JZ{6K`e}|wQRYs@zPuU8n%F*#x-*VfwUEiA-
zd8&F!$xxc;AhzWt!r!ISmY?h&(qh3<2LtL<=v+(_E8c8|B4kCfs<(YFv2HIKfjwm8
zQdslc7)~>jTD5y5=|_rLiFyLr{z*DH@vca~Se76Ntn#Ya3-6^9sLnbU+@iabM;BYC
z0ZQnI^ZE+&`4nLhgjml_F#N+PnV=pG`B>p-2!7M4kJMy<B7!<MS!S78@3Yn7(yPNx
zrBcoD0x&oui(5j%6V&>12cC&cK8mGV1Q-<gABx>;Feo>Cst=vqzn{2qRZd!(v)lzn
zbjg=LJV0b}>eZ`&X~GkyA&EAo<bPG5;51Z_*;*OwBDW23Lo0{5ts{ff=5&m-BuXw&
zClDLSu2<b{-szbho&?vqhcok%5yR=hhaEo$o#=~^U{L7kgmvRf4<T*9W3Wr74XxU`
zU=G&nFg)Pl)}}|c4J2fEs0csK7t#Q;)WXz-ZE}o@n%W8@GCbNXl;aAWK<0P<y7fR=
z72`~*Qv7Om2KKbE!zCG4N|j?a2P0QcD3?1#T${d)PT9E`9HeCXN>1pDGMY(NJ93v9
z@tm04)sC=uWh$#V0RyZp7MIH(J+WB_1Y^bhteAIPPYtA4G3d%S+OhZZu(7~_>*{g;
z<JHE}q5EaErUw4K8vU9fm|#dVPmqCkzd|Lgv)J9vLs&E1^5JoGeA0VID)|-!qqc(3
zngcVet`^cHsCJ=Pyx}ifyifk>c+-0HPjram>BL-NRB-zRzk+BTp4ExkHRL#0LW-G8
z5j43Kt!~v*lVk{&4iAoK56^&tokLmpED2u!N`dqtPhXv6P5k*X>_|mFXFD`KPy0Lq
zU`LAf1>*~4Py)EM+2yz`<&0%AL_j|jcI0_?F!UXF*;b_qve^PsRi8?M;wiy5+vaAm
zOVX@mY%`xd)qLKzxNJRxsHM;RK|lw|+47XqMr>|}4U^iz*yZJ_6+R%yQYr3A>~IPt
zM|)lrm)>JgX#5l6*!hbjZTNRI0!kELQ&lkonJ-IyCFoOmp5;%8Nk597iR~j-$=V;v
zD8=Uw)S|s$>i8UquVb9K)#I*kbO<!wxnosC$C)@KhyGYmo=6U}HD;(|LJ2J8u!x6t
zo^jQ-_j@G1Y-9Wx6+a7D1v~Na-!gK)Y;{Isj38TVk@nbv>=qbwzljm>a)$}uE-n$(
z55ia0F+jsU_7s_%(t6E~3wv2XFPV_@yIz_b7m(hS{~F`96m|Pt$idF5*(tR}aRV3f
zdjn=oWkVOIHNWHV*Y6@m$g}Nq={09bmwGRT7_R-gui7h4>v#^p#8=V@53fFMyBKy=
zK`Wc0?M)TWF59tQnYIpYo5TAZ*HOVpL$Z>e-eAL(Cg<POLuqIVwS7a6dUGUN@#hnh
zXox;DCh}x3DlJ`gvhI9j{|xJ@69|IB@mhG7C+@!SctP%~tGg$N*I*fmN>f+{TO;Xj
zyus9i&MqWgaIIefJUS4)h!9AcjTk^-m>SV82e42Ssma!;V?hZhg3V=Q&8-pHx&_of
zIkuy2DA!eGaq%u6+8&7&>w{WVR43n2$!2$dc6n54PEr~XWRyQn+l;f=gIMhSa`bQu
zHni(je8PPNcU}3A{;;<OccV2Y7sgb$uU5Bvoe_UJMoV)6G-47W(=a%}VD;H3glKYB
zm4V$S#cg*Rp)N*0B9M}*l=moyd8>@i-N$~VX-9PQ^Gcy(4|k_nzd!WFzL7*Z=ep99
zga1)}wt_^kPzynC7yl~nqOM*Z5*XN*wdR2#;rGaP${hFw^`K>VCWW{eW<#M{A{0Bf
zNQX&dUp$i>Fp6kRH;#5gB<LMZG2+MnO6&SQpYIr}Js62SEeSe}bfUW3DuQ4_|2kFZ
z@#q=p7ns1=N5fhRz$&L^(+Agz`$UztYl&HFQ1!zcYTgf2E5Fyt6|};*YnSKwCISo_
zvcTEzqF)3sm2Qx2zzJ$~+aQE|VVbFh4vEHuceDcafjASwyZobKhWm+}@N-o^amIJ4
zWLnI<OHQRfM$fUgu3v3$In#pm(#1<`oEe`_CK1-Kx>7)zqjV(0(_%)oXoaheUZ_{I
zazC7q70y1>p&Ifuje|#b{sR4~Qe6;(rss)0)bcKx8q_L1aj51+*z$1Yj<w<DLME9a
zyCL+52SO>gnuXGJ&ciet#jr~x%vAk{%rVR;;LJo}X>||H4!<<4o~FHr@$!dL&uSqU
zTuz|k{-`eBu+rCp@?JDps#5QxGNPzihr7n9^>utJnM>Pu$W0$F5!Iij3GsV2g5Vh~
z)m~EHa-F{{WGWpi$ay$+<VwjNIZiv~#;XSLVFB|29k-<Ca#8XAsn+VaiE1ZNfrB1G
zR4)TXm(j}gx^3_QLcu>eudl(oDo*Fl&g8&SBo%*5?eN-Ss2A7IP~=_LJT>ML0$(Gy
z4Kt*XDAWo$exE~_=Wh_!PbL;WQ5`19Ut$Q@t&odch=FWlaO@EVWTIz@V|B&*l<+xq
z0s!ij%afzM==A)M;iHuu?TN3Ywmh#o$q~>ro|`-R_iSYr4Z~VojEHv%-K3RYW0r6{
z2$C=PAuR%wlJ_ny^r@REv5ur$PrO6w*4QzqKKFdAVT^A**`dQfJPs2=x}#Dz>@^&o
z8WY{{6qa{6qWF;6iJ=|etXqMfsCNvVs{=4dI-2VA(L-HUl#22MJbcZ|$IlOTG?*v2
zH1kIAXiEZ<waejaeVH?UVGjR6v%z+xBg;?tK?E0FaZ+MIUTz<;;CnR6p>p1Ec~TyF
zS&HJJ8K`K{Hs-j0^&wkc;Fgl*yGHz4YXS|~buYN+<L<tYl(@^#f%WtwkKHq6+6IvK
zaf$Am&viN88tEy4a;Fb3`&3-bT05)rmo&6h!x%e;>@EDSt9sw7!suNE$~jIJiK_yp
z%pOTT5I)58BJgHLR-NH(=Aqcz`@9O%RO&r4Ke63k@b4&zb6tdY)XGXGFiDv1OTj3S
zoED;xp*wF6$FM{xzfT`1ll+|ZFt-LsCy{Lj|A2eO=_Mc%J;crrugA<?!LPMLL&^oe
zQ4f4zc><HnJ1|^r7LC8<Vpxzf>a*Z|xg2w_8}O&&II5l8v`@}ujYiBZsJ}7{7vN-p
zjONaHkg#fY(%(dqcX+=MV#gB^8KnD(MkLJgm^snRmrOv-Ort33%Ox$8IH3!mRrDyn
zy{tHGKm5!tA!NY>pMbj?nD%R&>78URJRA2?FBzmbz<qYe?zfftiH}KDJiv@U-}RFq
z+_*EUNS7si(m1Bal4U<!C|91>7i$U_-JVFj=nv4<Zbt@$qEfLw+<l^s+2(w^B_ii^
zu?C-O5(?tT`yw(Wb%TPVQ4x>;dE5MoxC^)qijt`oF_K@kD8Y|vk#Raj-FoOuYV*8!
z#w{`R)O~g{J;oj5#_2@(dC3qKJnl5-IfnW(jE3)aVdAk4$j^hfO-<RdewxzZo=A+B
z0}s1IWIu(8{E-+9GEN6Y4LS@v(Vd)`gGru{-MfpqW!FbB#ldts+8Y^wP3F`kf40&f
z<y+K}BqfEcxy0`Q^?See>fNK1H;rePDGm#U$RP|%wNLU!=1vIskfb9&Dh=S8Ln^1R
zhW5kct$joB9k(aVD&V2GzwBRkY<QaKQ0}V6lXk9JKe@GZ2k!71Y}ke5cF}Q_v*`RQ
zjc=LF1nvd@-ba0V*gxSLIbywsOaM3>S|1%+&)aDcu!KxmLV%6I-Nu^1(ahQ@Fs9qG
zmkC+yEa)j<(Tj{XL@AuyK!$jM;u$2azmj(=^SPP);qhQGP$at7WSvP5(89cl2r?mo
zue22+4q_8ar}NGfXsXWn$cN}F9f(mi^rLND_AV?UMSGk3lg6BgwGqa!-GF_n!%c;%
zM473a*^P=xnt|Ny){5e1SNVF*-D-%{OjUen_+6%k9EAnll<c+{t^vO@>Zb~+%gMlD
z@_0k;JSqMm_0!QnW8q`T+f=vTc(9SjV{1-sZ+ig$^-jav_=rKpWhq{D^6X$h6@6eI
zR8wy82dp0m_^vZl9CMbk{(ZCK8;VW3l-S{G*Y^a3LzGo^`j1ua-N;e(xEhs^v_Jf3
z27Ymz4Bj?<|0GUk)_9cBkH~9i%6U47WOa_J+jZ9MfndsnF+3~*>)V?Z`hAD52kn-o
zD!zx}aw<q)+23fe-QT=XR3F{}81^D7{6H;$lkDqYT3;C4KYb?3iT!zV(I_UFq*~*H
zpe3v*;f76WDw>(y!RCy@RZH<Y4$HR^gM6*PUZ#rRPdKFG1{c|G8^4OxWlaVvKw53{
zM8irUr|E>*hac`bUx}0$7>Q7jmEz#jJ_?0DU?T;<^HA&|6cR+C_+KOn0E~B;AL3h8
z<9<!s3E<3TBQ0%hXvaf&GyjA#?MAUkWf`r{Wl(`*F~1$)V>9TmwbRmx&`#VgLtj{F
zjf;xK%=V4?ntc;fx+5Yuc?}Gfp}SD0+qjT3G87_HM%zK3I){ea@ArHsr2E{eEPE*R
zOM1#z0eO|Ta7Nbl75t5u`Z~oHD5w;YV9oJ*J9Sww06Hs_SmWyp@przeUid`J@U~!@
z`}fh|&qwcnI3t%C-@M#C#ql|xpRC}6N7<J=T+bFXbIvh9Yue?V#l!kG4C-ywpyFuB
zQEgA-Byt}i_ck#3OY497CCSsq&yj@qRd42YnB-&`#v{*<D>jBxVc5iOX(k;`v{F3P
z{tH(z7GTz32vc6y_ss<3*m!I`|12wa5p6;28C;O*Kq<#9xUe86$Tc(>jt;9ZR+&UJ
zgK8qxh$NvHZi(i1@sD-|;!9N1&(kP9=;{or;9AmT+vG-6gVA|)=mSaLSehF0<2pq#
zi$M;sU6Wwn;)&Gk)sW*!CuHp7F2J`C%%hE@G=TvLp(TdqT-%=~E4|O?eT-lFxTUPN
zso0@tSV~w^<Z`{4iXe+MxCdnD8T{jW?jowzC9qmeWz14aE;F=S!GE%(l#oG^R=Gs8
zkVB0Gu~L{rX-3A(3i`Mom7V@hp_!6JcTw2VHN(3?HDdTeA{I?l4Y{jg59^^WHX3)S
zxCSuv%4Q>HjK$~P8A?%6e6ozv_3!D*)E2eeO)Nxk$k6$WIIcW^D9OOel0xUEo$>n&
zzs#?+x(H3-oE)Ri$=E`I)mRVA=N*GbDb{oWdMHkBY9B=k7Qn>i*~{aR1A<O*{_f9`
zX@l)V4GD8X7u+37&6SAiYd8`qI<N;GW&|L741=$@!Rk%1WS&~Uyg`D$^T~>07BeN6
zfNH97xI*Bl>K9^xVo&Vp$Sam^sa{$06=`W<GE~jvM&{5AXNk6^AdX<tgK2OQgBh=M
zT2*qu`GlK3&|I4>^d8>CwdwcoX7PJ01J0K!y`U?`o~`o;gZVb-?E|BqZLP;Y9V`e5
zTwm>74Scw8I*?E#CVE5g9NG9>ye;_n8^)MpSF-=yKB>3Tasr0}t~Gy&Cv2(Fi?T2n
zTi6;K<{&WDG1aeu;dEC_4s{K64Kqco1d>7xZJUQ08iP-x$c+h2$8`sac*Qodif|L9
z!-fi914Q<B2okl>f8DO@lz{!m>yI&d3gA%i2^)HJxc`0u3k1S?t6%><loBZPX>tEP
zL-AJUpb`H6b(aKdeOkP~4+ubkK&=@6|M~}tgnE4%ynk<&{(l1yUBY)-oCGxk<b)9h
z<TwBSd)P822pW*%{(F-M1Va4ZYkz;9CIALRc>liD1OmOiLiQgAmtaDy0LEX>9y0&w
z*+e!WR~9z`%a9G+NAB%c@&s2sWW0aRO&}2If4BjG_T>NAL;ant5*+kC;QcA?v0xw&
z#v3Fk|7CipkdST24_>33ux`i)KBt<1XCw$dtdXE+#Etj22)(sndE4^(??^Q@6Y7kF
zz%_Idu8k=0{u2M@b@lC=^1r+f>%BQ5gZit71UO?Fa8><;6CGR(C0QuwKZY1@UypAz
J00w{l`X4m;O11z1

delta 14298
zcmZ{LV{~Orw{`4vY}>YN+fF*}IO*`j_6a&2t7F@?I#$PK$HtfL=Y8&b#~tI_KhD^w
zS~Y9UwPw{mwJUxM^q?QK+65Z618qpg7#swI3Frfj18^wgM)otZeh1&q3~Yhs5P;*d
zFT5$XaakE6!;-It!^W8{D4hfdnNg8jx2?pq;!#j$UHV*44D{_a*{@nL1tTT7xeyp=
zw@S7KCfDmt-4d1kf^oA)Zl-hU<7Hhm8p#2)Jzd9*A?{2mMGM%1{6uu=z|4!2ccHeK
z+1?7g1r&fQ41A4(w0m5^_fmA^nF|hYWU(K+n!ub@+#nHu!AH>4s3)eO8%%LEh3=IJ
zg8WHjvx0=CtCs=3X!^!~C)u+?NStLQHc$pO-_RIdxk#|{P!dqxG(6jg-zoSK4;dxk
z2{uoq#lXOgr%k~Kvhpk84PB^KK6t&*_?ZX#06@}0NyVhTaM2z4Y-GMiRQ*DRUHis{
z8@Qm_fhuy<8NN@@y!<q8A%S;QZEJvd|LXB;RF<Q4VN=AM0;3?~1k`Rhv>olDCQfR_
zf5BaJY+<5IjBmpk(HL^8DWh|98{<5<GP$7Fj7;<A3Q#Qm`EC5J;4DQ-?a2Xhar51+
z6#xNu{{RUivb5J}RMlhlaBXkmE#kku^leYXw7CQWkHwjv%;j}yYMS)Ua*|0J^FBXt
zOJ(kvm||bw!$L=}^vi|&3^5(9wdc+I=QE*DA3tr%H71;}_DQ59yHGRUUCmX&nM!lK
zVNGLi<jIqIu6X)mNoyi&n&X!9;7;H8SAfJ}E7T}wZ6We8W68vA6M3d*l*B%^^=Vk>
zNlQF@5>;p>{WeI82;o6xo_Us|DiFN6q-deUW<wrJK~6@ZHPP{GXbts;KQH+;;@(bz
z>u8l6c|Jc!7uCS<)}$@0JaDSfaR{lgRPJrymcbGd2MRku>irxx^m-bgy7NV$9zda&
zt<6n^Sy|6qGz|X>{b$Zqu4p>RSm-1DJ#2J!XmM;)0pfDx9`T%75HiWZa06xlhYKQI
zkfBRontgDk8D2#CN*b2AHKup%$u4)?TU;&_7P#m1O;&un?f5|C&Nj|EqensHCCI%P
z#sEZTk+~UDGy^nsE6*q*)&xCStby<1#muiuuq4W~RHBhl2z4WTn%t6dSWL38UQp|X
zxZUr+3!zOK&`#5Tui3?(t8&1*FTA^65au}yr-faIu^~}zIB0TNW*K}g%Z_WYspyJv
z*FtP5C1fqaHGG8vs%W7DC5=DTk-!Up!Ohe|4VI#VfDFU~V@Pp;UB-~WP{dDwAQo)t
zym$?FU@@JB#{AjV3X5WOAWK7LU*mC`2XVXsjRtN7L^LSiU8oNM*p^S*(ZQ^FOe@xp
z6i-E4>7rxLdUJN-%q*VeRz9jzLYI(hX)?Wb^V&8dl3u|O>_|wh&M6k+a*J&?2A})w
z){TMoYu$n*3v|=xAbWd=F+FKOGB-jX1RW)vt15Q79{Y_KL(4bYPPIH|Diku=ePV##
z@XDP{<OXTcx8?I=(8W@yh-CUg?=KPwMGp^7YSw+46m!1hNlw45Het4+z0&U<Lx73D
ztjZQAp)GtyA8TJw2u%j3WK(Z9$i=8RO_|c6I;BG#<RbblD=sAHz4EmI&X~4>sW`vQ
zvvN1C2VUtTq`AW}M@)rhCD^f{>K^?mk=RM@*>IU=g{*i-C|sLMM%hd=b8&D0__4@Y
ziYuT`i~~KLy56xBS>iO!XvU)P_j0zk{W>&)9BA6Tbs(SH(pHieR-pjFF`(GXn6}Z_
z9?ndJ;;^d+6PxdL6(+EN#)s2queF0}yMvdyOXr%;Z8N^pVMwB1;GhTRl(r=UPEZ^B
z=GAH+myHLPYGR<%+DOGzc9C|zQTDM*5^m@e&Bx8+&0JEUdd(&xdnf*qoQVxyN?>n~
z369oP3MY^ewK|d2Zc0)})?!oS#obQ3>obwxCT};iT}eRZV=eGw%79`PSrj=mN@wn0
zXYHt%Q;`xqWf05$xd|vq>|~nABU3vrBFC0^Kd1g8wao+q>_Nf-EI@7Fo=%4Q!1ggu
zh7mhCuIn2L<(njsw&_;vXZIPD%<XC%1<lXIW&vIw-d<nF7VoRFv)*4GyEfil9+>%G
z?oNb^-d|7d8~{X|NL{aA-yf>G0yf^BPhJnY7&qP@d_})>KgS7mzFuEXJp+8a-Z;;m
z<E#(jkcL(V<B+-lgn|O^w?~(ceMZ??LO$R-E~Xi@gFjgfztvdd7@_Wzl-AheSXS29
z;#5Vj@M}ukG3+Vi;_Hq|<l^g%YUF0<jutCt>B=fo2gP#+vgrWli9S0C{d!@b-0-0Q
zhIO1D^}jw;SCqkt2~x?jRXgrdsQob8Cjb0KVc-7hlGS_xI4K_&eYh=ENAc^R7_B6f
zesCK}LgF^9LdB*)CPzkd{MtNkW!@DbUF(qb=B};mmsdrdP5t94Esr*vlXEmG|N5go
zerA;{Mu|_}w^2)36+^Imh(HKaFzv_H?sIUz?aJXS>K~_Rd81jJ3$+gYJWl&McKyj$
z$z=$tcj7Dni>V~iHV8>r2-tpz>eD9hRfgw&g9HH;`DHeXMBgSftz0H++x)iXluS=t
zJe9rVviS1|)8i}}2@lxl6Nz443Q9O{m&1$C+m&B|)IYe=^1OkKoa@8sAWCLr4q*Br
z?K0@I>GCw|(#A=`@xt=mXW4r{8q=mG_ZuDcm|CU)i4kqv;(6Z`%_GmnS5~-5&J!)O
zpm=&Th9ksTGKZ74ga3o=YesX0+?t~NFAOTw0asErSE`wXL0C`ked~BM{g4c4^w|h`
z8pZ##;y)Czdc1zt-*4bVsv=LtD&awDZ=Zo&mcynLl(9*>`?o<^CsD9`z+YeSE6U@H
z*bij3Z$onbzzNB33z%pi&};Em{ZX4tM_u>{2Q2nTdJA0+1_u^4Se&?lVbwEW<`;V?
z&G|@9XVTXBE{9$`(TO&L8vZfDz17qho!u9^gnLH|T0KuRt>bD2>((|J^R;v&tWyp$
zEz!Y1brrQ=tARmiJzD^c`8n3h)x^NOw2I%5YJC(%PYlb6$Mh?SoLr6JIgW$Ox9W|e
z-?SXR*HeQ-b2l(p->hIpL|ZV8rL-@yQsu>(MqzefO<_u15ORAu3{*T8I$|=K;-@!V
zWd))(GQ>W_@HQ}@H$|{v_SaenEKAL)*rf&LKa&n7e2vd6CUF8Bd&93L^1wG1Ox&t;
z=6k~{g-l^q_F=K46)-&z6;EM~;J^>nQv9~aWQfRLngOmB)mhm;LdM!h5v-}?)kyrB
zoElYk--hwj_~<5Uq*1k&J^a9JZ;hQ3g!`YiNDH6swyMW1<+hg^&0|-Fak(AFevIK{
z>@!Mv_*C{)0*1qVMfO%O;EqGgS`zPT6;m<}EYv&>BYt~at%yd0zbKaH87f;|#!hW{
zQ;`eNscnUPQw=+RV0AE3ZfOir_1@BMEWd{)J*K9TQ%WJiHzCY;GB?pX<&Hz0;E;FM
zOe#6;@7>lY6Kmuq6*!)gR4JxXBqrZ~WM3JVOXF<10gylUpq%y8_}26Z$j)`19;HmF
znHX_z{2s=V>K^j3F{0kaigg34h{I3`Q_4|LI`0B5W}zxVu9AyUAs^ElELOL$$TEU`
zG_yx4Tp}hJV7C9(o0g6F<9%egby|grn;Qjxpg2phn{wbYn{%L9mP$xIQ(nzSCBXu%
zAH9-*!Xr*Cd9UJhKF~4CUPv<yOLP)5k!ZHjo`_9q$=e$!&e(Mj?nV`N2M`L}{KI8F
zB?~2_4YVOn8-X4pW}=hwHeT-hAT<08m{`-#N>U~}ht&RN>1l1B;4KL}!0u|N^W{S(
zc6og~^`~C3qAk)}3@u&fU_U8BNU_uvA=NkmZb-UoChDJ&si!m2oNJ2ZEts&PWC=K3
zI`kYxGM`XoGhw$OL`jhcg0m|72B+OXhB$l9d2__g0#B!D)J)JGGC?_eE@wanOBHei
zA)LTSP{K_`mEt~duzcW9zQ=y30h67h#NWNrPa72xJX1NYhCQk9hd-X9R9+3>4gkc%
zh_mDt6;^LqUd|nY4snt+5n!G({DR{i_OMJUsfLYB0Xtrjb68ewPU*NZ^&uxmMh&2*
zykSS?jD-T@Zh(dMQkeNdoFnc+`O_w*NYt00BG%^>BjY#$l;lsQX-6I2E{Ka045Vbe
z^$bo6febYcoD+TEhp%YEe+91qd|KW<B+60r4aj=~{eaIhH8i`pd{+;DzT2Rs*J2=C
z1b<B50AJm5DZ!YVRHAGoRYv9uI@JCdWAY`Et^pq3?Qa^RS*^}8HUk%<Wgl1h1C%YN
zsbe3Zy^wgEjwc}-;F;ykxN-KZuyPdLz))B*`<rKY{s{~B9>Bsh<A+a2zhLEvlU3^@
z(W#l_Hybz-=i{G&MQh+C-_w@)_tr$~648C6y1Ejb@rf0rzZsrI6PR)y=P~u-_^5g@
zM$Vi`K7Iwr9E%?4r^&-j2xzLn{BO&%a7(<ppqopdS1Le~tj3e<9V}?=KI0B{@_*dM
z9{Zqp@~{~2Z|KOGoLJF(P-fkPuAIlB21R2*>jS%&0+yZj!N6cCQ|_E9@ki!>smLE%
z)7TL(Kswr?ou+`vvQrKpppB|8LHIcYC^*)mGi%y|HK2#1!9)n7qj~AV=}F0f;;%xq
z75bybz_L!zs^z8xs)i|O15!5wc^hB>H|t>kM$NwvjQ>Iq>7>n*4^fcrTe`;_;)BI5
z;|y4r`5y?xb_9qJjy7nqq_17*vFrMM`-2d0rTiGjCsuCav0mUs$0x|n6z25d4dL$X
zU;KIP#wv>dj#O2zF_ia6!<chAk%ddYmPls-v8))!L{@GE44dCxgL>26HGxmi{jkCP
z{6tDdmWzK$_1SU<eNN<gItnzgG1}co%1$n+X8PsMoyZjH4mwy`sS_Lx$)ZU7$Lkrw
zYQeXi1g&zOi#~`D_}8tP-0+fxCb;?Ljw(My$LJluqa{Sknk`c)?~hZ(i%UiWEav~o
z#?m5#YL|NW?wXj|RY>Y-YznamRt(O_4g5{E(P_qR?OU9WSn$p4t(h#ot@)5U$=iA`
z_gKxp+CcY58~(J=E9pe%ALCpP_Q8Vsx-F+HX~13NA09|wCQ-I}Y80x;`2R4r`Ny-H
zFjJJ=08;)xsSBf&AuJ7%_w6UzmPafMQmlO-!InxMiwG3fN6dgpedX*y*<$%%R^scw
zY5>#aBL4MH48X*F5PLOJ^no^D1I`!?ABE6to>DpZkIw#ymWT^JsbJ_2*@(TMp8iHW
zoByXE8Grg__{9gOfB;hdfB6sI;34JbZiKz#1Nl>u$b|MoU}l)_R2MHl{S_DwkiT)Y
z6zr>H{Gr2sYeOhYDwZ_WW-exd2&bd!hawTGVUrM!<Lz6U`UDx%J^v9psy!tk=;kLi
zh1jGx-l)&cynw_w<_{9nVv_)Iyp3rmnf_(@|C2a87P<~p#@S%i%dj9r?fjUNy-W^;
zCdX{oGVUKb|8oxo|N06h)}GQ0Y}AmV2^saDNLPJZPq_NyVKu=I5C8m~efg0SQlmrK
zjj*h<Mq`F`u!(5lXn&-O{Go%aC&(<_nCfei6+k{7)-Vk&eN+0P*esoR_OaoVBV8Ca
zi~FyR25#`7{_%)=pj5;lMB3&DX4qJW56G~rRsVmR|Cki;Qa`@1nMl}FDbi&{V@3TB
zPSlt6gv~!V(f&pP0HW$66dcLF&ecpocvW?sa%BG>plazC<lFahTlD3z+@3-s7sc{>
zGH=LC-04^O+77~{MIDejU($^TG7@N^MM>jVTe#k9uXox*9sID3H_(oM?>6wKfj{$e
zKbwYmA*f~J_mMH^we)lk?y6_UZE+<5Dr0n%ZWn78Ydy&{K7Gus7|lKjh`cKrK9^{J
zdNM~irneBY`x28Nr(?lrE>EK#4XTQxhP)G<+aW3XXRw(H%?kH(6nAwTKhfNxfBDQL
zb+V<x_&K?y8nNZ4otWY(PD@U#+kG=Hx7pV2Xh1wnzoop=FF|UjXO(h(p&)et9~*yU
z^0XWYgLYql_tzvY_c<#ivd20AuFM-0IQOlL7-%{-8OcY*;NLr8S^mCMQDdlMS+g#_
zO{B|b;V}Wa5_=W;6bYyJwU0&R7TldVt_`6S=Kl;+wfEx3L8v7<cNwV)%V)|Tg_kW3
zwEh$>({aZMW1=<~12FQC{f&Q8Z>8`oL244bdU|ig;pEe+bW*0``mcEV4}9ty_$}{@
zCpa9q4!cIwT{h&c!^0pxJ%$aZH=F6)AJD`TI;c2_l9tA659IAezd&0e%+bm=8TeHS
zRG-2{n5V|oFkyG4WD>feQT-V`YwscUf>4t_U<E1wmd}c#KX4u4L1qMDEMuUKFp8Z+
z?kv{M_SyeUb&0zyE1!=MVJs_K|Kl#hykGmDepplV!FpjIu2jZLyFV5`1zy@NA31UU
z+mkB+>bN?cJMmTn_%bDtk!&i-!U0=8p>V;G!zk1Wj#`@B_+kNQ#SXtDfKpji|39<p
z@~0ZAh4m5J6RCK+c@bSzf^=I6CDujS43qd$I&xKl3|TkP%HZhWKhqJ3+bnc%bya$T
z6XJ^EELw)rNgj8mIJamsq7%3XKU1g-UAHv1e+@?-3!vN{Mil>B6vd56iv`<K!i}-N
z6fnl`C31A!syHky{YS6Vf6Ek0?V)_ktRm|3S~Hbdlq;xT7Xo`#Dw*+>kEYI*iv<^s
z(wLn7iM~89C1C+CFj{H4(p69l4%~SQK@IN6;|wJox6vYM1EP~8rHH>H;k@_N(KJv=
zL{~*1OuGX%6nA1isI$H(;Q`=YN^bBd(#fS>8t0B9^*@l$1wd~PVLu=ret}k>vvMo4
zh{ja5#>tP@_K+?9ChXg;CQ9*FU|s(JRuYA@mhj-q&66zSTT^WamTjdgh#78mz^)Wr
zKRROg7p=FFxPTYw2in$E6bugCwY@R~0B%GTo2<CS8clwl`-fG@f31#uSe1k<neKQJ
z-R|&s08`Z!nehm!X-Li#)EMST=`1M4NQ?n>JPyhvrTxb~OqAboM6t(}t~lffCP4w@
zbWH<BW~b~o!pjA6R0BG43Fso!%y>GIzu6>?(m|D*#SaU>D8QIL36_=Om95VkyUiCh
zold4|B<B_IlGr=G68#S=;@LB4_sM%|k<LxTDjgc6*|~xBq+X@<t_3dT_=jvk*h7Ld
z$)e<5+jCN_;+5F8`~QiOn=Bu%t6jBt-03|jEF)pvV>n|Mmtrj<5&5Yk^~4v&I!OTO
z@)0cUU1^-#2+luLEqj9<kDw`w*jS`yBY;_}xbL+Tz4#`u+0?JY$QW^;jwr%nc+c1V
z>wohP|5GW6&P(eh3TVxsm8u3Yv5cBG7PN|z&a)M@tEq)D355&)?Z<-jwdO_%RrdOb
zDJ)r6*}V?Mh$R3oq&}w=HTY;XYDM@;&c6yb!h9-!qE>EK_c$q4|KoMDAJ^LAcSI2t
zMON+UpN9pI%gMNW%a)6u`)cWurSHbmEK-LX5IDyec>=g=Bz2d)XO3iKis;)UNtfBI
zMcfNRUl_M_(qmqdHp)J3U0c<iqPC>))}8(tk8I@%k~^p}vXUG}Yi-FB1%R05O6f%o
zGm|Ikj{{|OoCFI7bP~Nm^_fBu(c4YGt0oscOk>935C#y|e*cttL+bMLd4GG`J9%DI
zdWQxMkaR*S?LK*1)P<A2g90LZnUN)o3U?uG*mtmMsu!?mBo0Z7m$p0KCZ)C3E(fFE
zXYS(hzfiH&{JwiOSwv94U@FSqu60_+cx~aiYuBC9pGIsa)<RhG@LtN=9nq-4xRU#M
zc`|tW@}#R^>RDmB96RhTzTe(Mv<?0mW&<<vTY2QOM@NZ)lJbHce>Ols!!H~beh)gA
z;%;ZS{1SH5Z_LBbAC|2!><$*T!*~&m9gE1cSN2hadTS{8bBxkYeV=d=jeL$k)kh~1
zy;q2dy)f)6S|NzSm*%Akzrg(~F@zF6bu#L`p@A>AXzZy(rqUZoA5S&ig+yE)NkRjk
zx?p4<A0rGd2KP~ekr_K&t#~vYl3icSgQGj%?a^*v@`n7I74mUaWrmRU!<!ILVG^>)
z<Gq~diPRpkfXx)PkVK_n1GRP3ly9JbZzi$n%*Y{Cs80TY0sbY@1)@x-5_E;7a}}J^
zcTbrtl%GFm0Z*$YVhQh}Jbl>A+YQ&(zX&Nc%{sk&eQ$c^Mt7@edlPtVA%wf{pm9&d
z^IgJfTisiHyuX=z#~8XCA0?tMgg-<|u2O&FZ|xu&o7&ON%D0Ln)wLnREwG9O<hj$?
zw6ztJJ9q@u&y+#w$U@yqw6sPfe`!<EqTy1RyS6a3y=q$a5`e0lVKgj1nqv`Gso)IF
zgCYW7L)#1~+qFP8)ZK%OtjD5WF=KMg=!Vxql2C(XI{FccprBmPA*>SDaq|;iYog__
zSTx}dOoC>LlnEWykx_sCVCF-Z6s6~^nH&p~__snxLE9ZQvgN88({iW>Sbq)UM5<l|
zV@aifd=_2KkRSb(h+RJ8UQHW>eo#%sm_94h66KdO`Vdf>B<v}O+Dm8kD^TW9{5G->
zP2F>XyL{Aq$Ty%xM2;(=(*dk=F(I&Y9e+jCv_TUpTyf^n<N!{08D}98V1;Oy>td+U
z$mIwWPm9IJSnElb7fUwX!*BeVIcUj!$ebjmW4U6BYMOjm=cwb3mu-^UXZ*?HbsXt?
zsPbM+cF4rlBerweprd<2iD~hXE7uThjAi-g02cTPgTC*KM9l|6TZ=0-Gs&>4S;a_=
z6(r4%D>+FaLV2tuPE)`kI|FCA^fVgntXXd9RB)u_R%+3K^fjkK(Uvo>eosyhzFs?X
zbVHuQT;l9KkHDw;I2?3FPS@!vY|TB^VCa3`$re*t4uoFX9q7vBG33we9mGo!<IFIn
z2tgOREzQP~*RKb#mn=a!Ha{8A%UE4>VsHpXm8d+6YyF7x*?t2sUKAm{Y^a4Se~LOU
zXO<HckB&#QV_pR{+c*WOFCeK~WHFt?EllB$x_0qigN*^_qI|vwVOCv1jyi?Yj8*ub
z<{ZRmBx`dIsfu~Zxa`JzR;O+4dpE3c5sLO8VTmXj*~9m@&WH__u9%iq&QUW<X|(xH
zRFw6fLjJUP%H0DK0s&Ic9l>p;&ROn*fq+m${atEcp+^T?!y&3j&y&YAHfc1()tQAF
z4-A%{@t4l~-4jRyHD!@hD2$;(A145(mp5<47|TI!GxZcPec`B9AtmN*G)GfJWybOm
z*X<R}tPDvvkoX<hzOSqT*lliz{#4Rd1~PcR+hENU*>hUp6`&a;ZOl0CA8feB-7vp$
zkXsKVQjY@C_G=5Ndi&RVncWy5>0_3xtzKbGMV#WE49NIAepoxfE4s9;xdkw{iuLQ#
z9vMMVQ|QWPaaPp$R8;>q%Wx8j#jJw(eWU;R!B0a*&LoDd0V!cz@q5)OlXg#YbA07<
z7c83Pc(36d-b1LYAQcUvf%XU<{VO?rSNGFiEie;MF8jna1)OJ%j3S=E8YA|W*Az*Z
ztlMPK9na^MnKk8qld_zZ-TriMfCBF(L$p2OBff0MJ3hq(3w=LH^~zltvwRmoMUO_(
z696`i1hr*#R}E4q+bXLZ^UNmfO_Xrj>+?JNvCJg6OHWl~!edk@y^kwCeQ?Kfq}K<T
zBDxo_aVb-OI)xI8B=qTym~JBnD{N<)dThvpOtyd0Gat|;=>?f8uYX5^c4oV8fH|m>
zL`Ae;lY0RG0Ree`|NCQ?pz^7g7$LMu)C+`*mopO-H3rGhOb7EIXc8e~u}PzjWj7%B
zrG7(7q^<MhrQ|YZe&+%;9~8D%;Cov>V2!ZnIHeD~2#Ohc3z0jLD#|mrZsfSUP-21&
zR10ES4SE5Or|#jGzv+W{vS_*Gq?G#$=CBuqnzha)6R>4Pog)11=*5xGV-eoS<kCfM
zGnEhL5dg{V!fcmzSGMcogiAZBEdmMJCR=A6+OOq^TkR6Ptd3mWgu<uS`GN=nY@x8J
z^I-x&!+q6w@c0A+0urwegyd2Hth2SToj$BhvW95wdM(vZ<vEi@fz={f2As`{zdW&?
zAWHO*wRZee7?MPDisQdryIC|EBwS8E9K$6c?M83pLRk#9JEs_7TNs|{z_Sdpd$2fa
zPEp*PH;`E$lz8gR529B)9=j5*b+wD~3H2TuW{W6n+h|PB+S10$+~nZ|uq@ZLi1)Cb
z3zgdq%^y(ux2mbHA-j)upTYBSX$LoCm7AILx$#@dd@(j0(P69!Q0yU)A(P?iO*7ti
zW~2E|es9+N`&S}cNn(^Ci$yj!0TV&`*T5}1dsdV%zdqN~S7bvsw577}8CN^*A3Jam
z%@E?I42@q%)^}96E`JTw!>_6~Rks{W_^xzg1NFHX03o)ZhRKZXvi)A>TUR=1=HA3B
zOYBIz967v@h_fu%M1lI=P)vdEFSQ%~lFP<aEuX9Xa5}UqJGGv4-$1j>wjo1IZ?Wgi
zG|*vw=rV2mij~agQ^2zsEw1VX{MdHs;%mgR3d2Nm%Bkfbvr@L01b60y@Bryi#z6?{
zOYkZy2GFt*fkJd@OMobzGHQUNIe17;tz7T0Ni_M<GFy~@X$-<6ceU&=b_+mD8swr5
zul_JYV}Lc@+n)daMll(>eTWPuXvb@4?7O$rDpTRgOv;P;!rOciVU-KHuFK5efiQ$B
zigmd-%oEsy22FJ!{mGm25Ok&j{4g9IBi|sy3~<})!h^R$@`L9H?g^uKF`cckdKVge
z7#Hk3pO|^fQ`)|_eJ!*SGhm;(t0igBK*6?~rUDKpw#qLz?#T30mv`ekPL;R2zF~H{
zm2fFI@8S(C{iD!!imCVu^`}5l@U(p_+>X}<e(_M>>f^RTV~2_~2|?jtBq<(O7eanf
zE5L7|E8_UBZdL0bcI<3^>7QJ9F7MX16A64~2YhxM3$k3|TdUwvhJE+<l!nWgrg#_$
zO4rM7Fsv|q0MqF@^nutNToJW-*)5vWlr)%oHDt}r{vo0Xkt|T1qiI+Gyd%Oo88<Bm
zT}H8E(h&<@50pSSi$54lY(Zz+(>~<c62P2YeuH6lIRT2Gei7W@1jGiTWg#{S;Eyl9
z?Ag0nOJ1(9JqqTkmk_^~r%NITUIIo3`5pOtBSORG=TZ|4#UPHLH6gNcoxl}(nshY1
zrO3>>eF}+OuZP)o6bQt#D@hGd^|FpI<qFhN4yvLc-QAm77@7%6b_iS04Y+gm8-Th8
z1G&X_FU#%~Womg3P8vR7Gj3t%wgi}iv1aFdpnXr8!2Di3Rq<CHqcjs-x*HCO;mjWc
z`9Jv0beu&C#n~#`{Br{wN!i(DL({Dl96^<#aj~RwvV>a}4yj{>1=<pIQNkZ-Da^>U
z17N0o^0jAmA`(#y5AKXqBDD}4GXU$izoBgkJqV^f20*~WQP4cyZepY4UKu+~kGalr
zY#_V*P7EO*<_B}Ek*CLzg(#-rw2Zw|z6NSdHC810`ryJUk(H|wQb;4|Hxek0ZBRqA
zF!;Ra_~s-?j-c&#k&rNHeTz?s?-@_H%XN}<KR>r>Lzx<~_?$l(!i+vzYXf*rX^W=+
zw)H?dJr_(1+P-f+t{qt=tSu*!11m4BBY9O{Lw`onMe~z(KH>pyE~b^Tu?rGUdUMSu
zN`d;YfM<+^Zsike=i4_W_A?tv_lyKkDIIlxvzn;g2<tp-+)om#?fvP9y$P0a%@65D
z=M#SH_%<^gR%iu`2_4}G&W!*F<Oui6g{R&}!lT-~DUmdK4McbOzVw6EutS9M&Gt0a
zD`t^&s!}Td>+DYfN=S#$XvB=ub%-PvUO(UN7s$T0ycc`#k`ebmdD&tuy=;#&SIl8R
zKJh^KSYJXjToxb_^Yde31a41M;VrOy^>yy7)9^gAT=webDuv`z&y@wpzmT#H(<vzl
zqFo3vHXA~L3hC%fHmIKzx>&92MC3&8tdxrr2VY>lctyExaJh9(<+xXxd)g;1Q7S0j
z(+=2wuDA`6$!Qu}&%{2NM8~IXy*dk9L1*oc0gd81JRpTUSq^$dh(?kTCfnG2PE@pt
z?TVMzJif_%!^sWku2}|f*STWPj%b+?^}Ams@8~t=EOgWvg>+q<@0J0Xm=9?9ZpVb0
z{#;Zkb|y|ewmzKbDkW$QOEL-+2`TKkfeQM-&D#^Z7}WqziTOaIHY{f(9!!_{GI&A9
zTnJ>Tj4P0tr4yP27InEDerBe0Tv{(DbI(GlYG+a#7E*J50buBLupuU@{IbB3cQSBN
zY+?0zT+1@(Y-;s!peSjZ-K8zwQqpN1`dud95qbUaV>Ev?a;C~!zFm~<QgRe7t^$vJ
zU9^1vM{eymF?lClYGDf8QFYjk=Cn0i*Wy&j5S^UDPL7eWt)U2P!S_kVs^CcXu0_k2
zV`R<&afEE482}#Z*0H=c&M23Vmt!u)3q~VjR`@%=(65-REX&t*Wk2k@IlY2g$(24e
zB{d?VtgO#uElfghcrAiYfn)j0_KS`Kae3?Bl=>`ZPs2~$0N7PZ)7_AuDcV}lQ|i<F
zH(|dj8fOQ0IywQj93=0)o{EKZYuR_}96^3tHU_XZO^T~TYaLZ|KLZX(!#1iVQ;k-q
z3!}V>Zt|}JLBZ&bqHtBH*>BK)K5T)jDGdBJ01pCU%>Yyuq6e(5e)g`w3I(oXrWOQb
z=5Xh92c}r*g^QPxS`0m({Kk>JilSakTt$+=4Z;5ucKtN&^KwlQyQE*ht9~^*65`?4
z8+@aIJbF|FEE<~1EJOQ&m<k$~gr2RKBAWfO?EQM2zYuCtHJ7dUd61l_)!=MOe7vCu
zmE<xtLe}idg)M;h?3f&b|0f%XJiZ&#)D+<NAb%3oxK<i_w&HsB&M)~;Ay$^*F8wT{
z%p1Yu>ig*%Nz%-)&W9zAjyQv-Bmki!*$-L+%`TzhIrXl!VPchB_O+rd`#lHOC?wu3
z!7tF99G}prIwlZLb*+RD(ZF$PX!qV>I21ftU6vj&M}@^1*xR@*4J5UYY1;U^9`a>#
z^zRABD%+zB0EQ~uU8a3<<&YI)^Y4CDU)py3ZfEVO>#(H4X=6j!SC)yMN@i?K9Umir
zox+%aFIV{Pmkr+g$jBwIRJn0n7Gf+~4@ff4oO6<OpX3JO=;bB4qfK21LqIF87rpV{
zx_ryBE`+w|uN2V5*GU1z^dx!xh57tUun59z7iOOWBe0kupN;w1;Ajb-=ru;GGeDw3
zgmzfxSlAx2)f2umMx051V~7=r!W&fkB{m=fDBV`x@r!4nC!MJ8VKVD+CH0|8rPi&L
z=`T|AIq>Qz9z8X!akQvJJ&Syan8ah!De;d=iysfmT^XBJkjmF%rYgKRGuuS<cnwR?
zfbiBq1*^d0mYhd(nW04@-CI3Xe`IK>cD<_W#_SYbHbhMbb(9ii;|K9ZPY4f@N!2t3
zI7*>j_1y<bD5z4hdf2WFT%N|t2@Xh>Q|?q=l3Qk}|Ln9Vfpe2pmOUbwWph^=lhKip
zg1;|VK5BZN#-l#5=cb}qh)7(y)a_FRj$|}y)<P%f7Dd3<&Ds{XIV>4dyq$}c8m4@$
z4z}%J4d>GE%<_aUxi^4#!XCX%r^X2Z)M}nxhoCU3Q6VuP97UXW`{44sIK}lT@%dj$
zqi9q?MpR{jM11M%Fx1a{?@<iP2XxdNcMsW|L%~1rw9nJLY~#7x803<*VofQvOZ=2K
z;z}xajrX<g^@LfakO-ET>H`@hD4{=u2;7zags`!NRlXg6ZnI@+ZIy!1BO|T?;HGe6
z(vLW)0z2X`b!Kw;3MV$`n0Z}qe&0*4{xq%#y?9^Hm7iF|g!mQL4yN(RiuB|`LC3IO
zyNr@q5OgL}!}X{;!s{iCtl~imA`4v+t~zBzt1VOBwhJGdo^jYXSc#Lpc}fM*fgy;x
z&C{78h1A#PZrH7@gC~*ba%P+waKe_2yS5zta=Py|3^m5`a?Rnnm=gMghjZK}5DJ%>
zW|ZX}vm^DRVVIG;QXt40a-Cb%?4eA(+{ZYR@xn?Z!J~hNyf@A+`cRIB84o9!R9D?0
zIlC5lg<S|DHX*%$&A_!__>MPuhcJ*nP9Nr#%s^3Nw|($?*Z?S@SCrW<pjk*x{Lr4p
za!j0$1xx1}Os{%6y9{`%H5&tWw=dD-TI!ap%rQqFPZr^GD*pS8krcc|c>M*A373D9
zEoP-Y=~P9AIFt7m`}pPS5KSGtpkQB<*_yj#fs<DeZ+oa^7YYIQD@)S?iu<U$aXuR{
z532%B4nC|d=`G1yxUi=U0L+^5hCXg<Vdv4^(+?&Hhn?>-Yp!x`b>56|+y}Lpx~ndJ
zeA^itvD^o1C<pC)3-Yh!HEEGSaz~)6EJ$?r&-?X-d%#r&A)Fp*<)KHgM7^<1mm*{h
zb=d|VqWLh97}v!r8afT(pN7<K+?lzx2k+*?H8wv{Pa9!C;n?pw0r28c7oBBW6n^^p
z`$G8jHsPqWg{837Qh}x$%)RIw!V(2HhUINe#BY*>QWm2dkeKEsbSpuult0wvswJ=?
z1(iVOGqUE_h`+c8)x9`pqHd_vR%UVYtsGSzix(M!w5qC2K~u{$8P~V^7O%=u?;Xg^
zdQpBgzq<xK-4ed_0o+6EUZtzuWq3k9HNJm;+@FARE3^3_{%yvEcG=lWam0NeBl%$_
z3JC@yl?MW0o3rTkWEEEf{ECij07)9$+bPY@T-@fCi`GPmw)w7eyHwl(46nTQLL*Jh
zccUoyn}yziQZGz%`VWE7ZfVhXP1tMxT}+$R;tZHp(g)|5NWgJ>Yc08*n}(XkWusxc
z(9=v+kr}XY;WFBip-=j~gmPe-*rorGquY8~ei?QL)yuHsy+;6Klt7J|^K9@CUTvkJ
zCZ&(j<Z3c@nw7AuI0gCfK^r_|;~XvNZg&1wFTIub#szuxN)r@U(Z5M-^OoPV#T~kP
z9r<20r%&WtKA;5%qkuOgNC-WzWbdD1h+$JC9rgpRTcmq6bnCQ4-HP@h8sr-AyXjTF
zk8y&2j&nTa({HKJMi@u&oD2(YrCN3s?bBfRrgMS;ehxDK_g?F51PL(5fjhqL%U7tY
zGcPR#^PhC!X|a&9cTX;K$pn>Of=KwMD4}a<prK7MS^>##Y)Yt?q%TnM4&Z{9r76_l
z^Tns1kRQi;JH&HOPmM$9I_L%BiP|Q{2m^$bb4Sq@!DabaF`?N@Blyd{vUQtC&leBD
z(UqDM%m11zWe8PNO=YM|O_gqTP+D5-(cTO7e2<AIIzRd3Y(#Ca*+4bdOre^U;Xr*A
z)Vf=(UkupQCLsyA&FOhTFjgUJqN2p3IHJJtCfjl%M9%1}EopbFGpalb5t;WpH1hI-
z3ZCPf@MsDLiO=Ubu(|^0sw<scK3r7J(tK+zV)08w*f#zqgG8xb$oX(VV3~hOST~ha
z<im87ymkyF=&)8Pf*~et6UJ+TFen>4M-s0u)elf6;Ia*(dEPmFx(jGc3L80Y+m%$j
zS2JkXT%^a!lxNQ$>9}xGpS?^3I_lz{2L(#$o(p}p-}TfUy+>|D5Y_oUG$d8{YhS-u
z>ZtveV6<~qIj0uJtfy1j#sgUAT2LhgHZhm49&j7PBc+9ixQpY~R8pZ<zlm!lv;JJ|
zt_*05yN6kG=7|SiEwiVNuQ-Q0LVz-fTyTyy9rV@l9!}k2**(*QQuapL>zSy+yuKF+
z&blo%Th~5*9RKu`@YRd6d3nfnePrYWJAshmd%G@;Y_8X1k|9)asC`?r;W$CR&Yl^7
zq|cUoxq+|5lx>4Sv`)|OQ;OO+B{OgOO($Sd?_FY_i%#=A^%vulMl4~1J5upw2ceOb
z%+mS#H^1%+=r7fMT&YtRSuuo+>kIvueAF6v?x*bYJ%_b^36XIxN6dYSQbFm^&>~BE
zFKwOg#L0t|uh@Qf50?bH$`ag{k)1ViQb6V@GiY9zWs<W(9b$CX?SVMfm^3)ts8WEG
zT;t2}{;)KvlbBVAUsMTveC|!O%D{5OPxsiR#e^{BfG67C9IQ8gG8I?m^HpmJZ~Rob
zAI!G(Sz^o1zser*;Z?m(*|;;ztyIj!sE<zhzvXR3BLtWcTei-u+;(F;h<SYPyWdKm
zBsC*RjfhmvTk%4$NF$0s(nw3THp>CL$cju$7^ED1NoaNlvS+veB6Q@x$M?cW@EjNN
zp&=AZql3mUyE7*WPa7%ndBFyA{xE?@;F=EB8Y+$<i56wc3`Ry?l((4GF>KVW0V|6+
zG$c-k1xsZ<O$l=ES&eyG9AZZ{H&UF9|5b#e#8ZmQ55J3rdrEF?4tr?|4UPrK&CQ4C
z69cYN+nTrcE~415GbV(4+xgS*VVK<|TRUPwA|&5Jg?+2tu|v3At*^#ruiGS*4lCXh
z{{D#&o}c>L;tl+g2u~n6loxD!E;kNN%mFvf7*w0aER<q_<C^-zHOr2OKThgmRpfS6
zQu@5SF%C9A7*%jzsz3ME*4~4)x<bnm-|9x*YNXpYONRXr`#?EaWmb@s(hyQw@d?5n
zm#)p0oB2unOh)LVNFLs{+4Y;g6D>D1ubT$ele?$+N!7}i*-Fnw?^p<SEkt*ZHGt0&
z6hEFqk19<sRFYYw@oTX`wCw#G(%;Y1%}tSk5Q;d!bW^yx0y$+c2#d!Eqq=8B4p77j
z#Nd9&#@r$d?4JmDKmlbOz?UzEPnBN>kz?xgG%FzJeg@7Co;RI7pEv5)ktWvax=n7U
z5U|vy-@UdWeuZV+Y}(|9V#SWyHP46WvWOEmbSB(F@y5`SF+qFW6s@A}sXj350j`i$
zg*0yqB+f*l6CuiVan~-Z_L&|b<)$OBJDyfc$t7r&MP}Cr=f*j30_4ZjYPno*tcyH<
zxi}!E>CZ7u)AyQSYl^YOB<xo`Otn?r&z2U}m}&Z#uUW;L7x%gMDNWr(hHU_lsZ+7y
zVPJ}fL*(g+2VR1QdLRkVTmn?%24Q->%4VlNGs4NNl}LLWaS<ULD-E4qI53QW38r6y
z)ouo}%ct!vD`U|>YNoMyTlleOcb$IG(Tmbe+HOTZF<2Xx97ZAn#H1VD#Fgxd3QgSr
zhDy=hXucb`QKZ|_ELg@?L7lmVM>_uQZ6~6)YE_Xtl0KK2Hc>?Wg;#hj_vIbz4-a*n
zDn*cxP-1=aQ*}04a-e{f0vUvwl^dk3JtqRgoOb139O^wDj_Rjc9{xXqlrhTgyAI-Z
zbAv25&XKKx#U_f1C_6ez+*z8v(0o(nFY*P>;lh%C4x5Uiq%P!)tAt_y2tkp*Vs#Ok
zSw5>Nv0FO*-l&9WvM4!>2H79r)9xfo=slLTppI?B&>IZj&ocm^&W9A!PNtY7sME$W
zyCd|yM;ORzraZ=a2oMPa>tLg&fMlo_t5-Mfp$>^g#n~2j8bm-#<JTD0oE8c>cY{kv
zB^Cq5BL66MPD34*B}HL^72|P7PcCGx98az(B#3z-Xyt|smjm(pG@J~P8<-y$kME=z
z7!{2LW6AA;Al3?C<pdjbZ$Wg!v)mv&FCzAXC7%@0MUyI_QBDxaY%z!13u2+*ZWv|J
zv~fa7Lhm$kz2)rvNufsDCZ2pSH-mwl+9FOtg6&k{l0-wJ%$UK#L)UETQ}A}wr>14U
z*rgs}m{;rqcR;)IEfvNE7M;Wy!jpnJHBfH2j8ymI1E*tvJC5N~@TPeRLI<>%C`-T=
ze>$%yqln3-Vg*Tq^QdYl_asAo=sxvMC|N2_np_GWgW~J`Cynkotyx&A2UPfNo*MRi
zoSI7iPVm%rbp&fwIPn-0c~hWVv=BCahe;;CGDwgduc1iV<jZ$C5@BOY7KBjwp4_Ah
zaJA3)tejW?X#}%wS$*S*A?!}|sEE$aVt{t@?`ykg5>h%A+Uk&)bjxZd2B<`u;#~AQ
z3;~5+-?j5QwBCUb(DdW+fa(_2Bqwt=Se@V_(VR>&QL8VRJE4)Y%&R}yJ7ZoUoVBs*
z>gE@_7<z{uS}#4$XfpsPpTdk@YS%fCrI7G8<_(BQ<K(WZpTp{&kNc)Ce8ZWY2?clK
z^S4TN<aUm7En)+Hy+Qm9TXQ`ZusRdNV$lD!uME{#5$p;MXlhK4|KB|?ARyQus~G=1
z1Q3A<q!=H&U@-9iu6}>)NP|N7zl8`$KMLUj;Y^VKS>y#0nP7l5Qvg{gae>Mv$oT(V
z=lZ`jbLjq>PcUHuYi9)Znov;vcijO51o6K(KF;_!K|sFRF}b*U+F7^&LCw+e|NGYl
z2*}5do&R;X3IYX9g~4oPfzzgVAEL<)79#g?%7On!Hse7-KrlZ#g7UvAfPkFK16|An
zkQ<ahK+GM?l${+MU6@Q99se{0oHN4(TTuaCm<fSRssmZfdH#_Apo2LEn7#%u)La<M
iKnFN%P6-sVzy<rM2Q;!E`-J|1NdpoD<VF8aJO2+*uGhW*


From a49311b4f69abfd812ca801a6490f6f054546c01 Mon Sep 17 00:00:00 2001
From: adirdidi <68847945+adirdidi@users.noreply.github.com>
Date: Wed, 3 Feb 2021 20:18:20 +0200
Subject: [PATCH 799/825] Update gov.md

Streaming API & Azure Sentinel are now available for GCC.
---
 .../security/threat-protection/microsoft-defender-atp/gov.md  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/gov.md b/windows/security/threat-protection/microsoft-defender-atp/gov.md
index 3ec12f3876..972dc7f639 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/gov.md
@@ -123,12 +123,12 @@ Email notifications | ![No](../images/svg/check-no.svg) Rolling out | ![No](../i
 Evaluation lab | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Device health and compliance report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Integration with third-party products | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
-Management and APIs: Streaming API | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Management and APIs: Streaming API | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Management and APIs: Threat protection report | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat & vulnerability management | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Threat analytics | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Web content filtering | ![No](../images/svg/check-no.svg) In development | ![No](../images/svg/check-no.svg) In development
-Integrations: Azure Sentinel | ![No](../images/svg/check-no.svg) Rolling out | ![No](../images/svg/check-no.svg) In development
+Integrations: Azure Sentinel | ![Yes](../images/svg/check-yes.svg) | ![No](../images/svg/check-no.svg) In development
 Integrations: Microsoft Cloud App Security | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Integrations: Microsoft Compliance Center | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog
 Integrations: Microsoft Defender for Identity | ![No](../images/svg/check-no.svg) On engineering backlog | ![No](../images/svg/check-no.svg) On engineering backlog

From 1be537b367ca4c82a3954837ea5863b2f1340388 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 12:22:42 -0800
Subject: [PATCH 800/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 6bc883ca30..0835bbe05e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -135,7 +135,7 @@ You can review the Windows event log to view events generated by attack surface
 You can create a custom view that filters events to only show the following events, all of which are related to controlled folder access:
 
 |Event ID | Description |
-|---|---|
+|:---|:---|
 |5007 | Event when settings are changed |
 |1121 | Event when rule fires in Block-mode |
 |1122 | Event when rule fires in Audit-mode |

From 2cf9637f14c669ff72412518643b5cceb5edbcb1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 12:24:44 -0800
Subject: [PATCH 801/825] Update controlled-folders.md

---
 .../microsoft-defender-atp/controlled-folders.md              | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index 7ded77ec21..8602493f71 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -99,13 +99,9 @@ DeviceEvents
 You can review the Windows event log to see events that are created when controlled folder access blocks (or audits) an app:
 
 1. Download the [Evaluation Package](https://aka.ms/mp7z2w) and extract the file *cfa-events.xml* to an easily accessible location on the device.
-
 2. Type **Event viewer** in the Start menu to open the Windows Event Viewer.
-
 3. On the left panel, under **Actions**, select **Import custom view...**.
-
 4. Navigate to where you extracted *cfa-events.xml* and select it. Alternatively, [copy the XML directly](event-views.md).
-
 5. Select **OK**.
 
 The following table shows events related to controlled folder access:

From 7bf688acee9507e9c1222636ed3094c17f7119ea Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:04:04 -0800
Subject: [PATCH 802/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 20 +++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index ea1d8dbfb2..94438fbcf3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -27,17 +27,17 @@ ms.collection:
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-<!--ASR guidance for deploying rules (links to Antonio’s blog, recommendations for deploying rules to small set of devices first, code signing, link to ASR Power BI template, and link to M365 security center reports) and 8.	Policy conflict (details about what happens with conflicting policies, what happens when settings from different policies are merged)
--->
+Attack surface reduction rules help reduce vulnerabilities by targeting certain software behaviors. These behaviors include:
 
-The instructions to deploy attack surface reduction (ASR) rules in the most optimal way are available in [Demystifying attack surface reduction rules - Part 2](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-2/ba-p/1326565).
+- Launching executable files and scripts that attempt to download or run files;
+- Running obfuscated or otherwise suspicious scripts; and 
+- Performing behaviors that apps don't usually initiate during normal day-to-day work.
 
-It is highly recommended to test the ASR rules on a sample-like smaller set of devices. For information on the reasons for this recommendation and on how to deploy the ASR rules on a smaller set of devices, see **Use a phased approach** section, below, in this article.
+This article includes tips, best practices, and important considerations regarding attack surface reduction rules.
 
- > [!NOTE]
-> Whether you're about to enable or have already deployed ASR rules for your organization, see the information in this article. By using the tips and best practices in this article, you can employ attack surface reduction rules successfully and avoid potential issues.
 
-**Results of applying ASR rules**
+
+## Results of applying ASR rules
 
 - The process of applying ASR rules on devices provides scope to query for reports. These queries can be implemented in the form of templates.
 
@@ -49,7 +49,7 @@ It is highly recommended to test the ASR rules on a sample-like smaller set of d
 <!-- Denise, could we discuss as to why only the **Microsoft 365 security center** source is being cited here; Just for better understanding, I am putting forward this query
 -->
 
-**Applicable to rules' states**
+## Applicable to rule states
 
 This section describes the best practices with regard to the states which any ASR rule can be set to, irrespective of the method used to configure or deploy the ASR rule.
 
@@ -59,7 +59,7 @@ Prior to describing the best pratices for the ASR rules' states, it is important
 - **Block**: This is the state in which the ASR rule is enabled. YThe code for this state is 1.
 - **Audit**: This is the state in which the ASR rule is evaluated about its impactive behavior toward the organization or environment in which it is deployed.
 
-**Recommendation**
+## Recommendation
 
 The recommended practice for a deployed ASR rule is to start it in **audit** mode. The reasons for recommendation of this best pratice are:
 
@@ -77,7 +77,7 @@ Before you roll out attack surface reduction rules in your organization, select
 The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
 
 - **Better prospects for display of ASR rules impact** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
-- **Ease in determining ASR rule exclusion** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of **applicable-not applicable**  devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
+- **Ease in determining ASR rule exclusion** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of applicable/not applicable devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
 
 > [!IMPORTANT]
 > You can implement the process of applying ASR rules to a smaller device set by utilizing dynamic membership rules.

From 94c9bd9c9b3b8221838388477ef1555b9ac5e6cc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:40:53 -0800
Subject: [PATCH 803/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 ...ractices-attack-surface-reduction-rules.md | 32 +++++++------------
 1 file changed, 11 insertions(+), 21 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index 94438fbcf3..b4bf06284a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -76,7 +76,7 @@ Before you roll out attack surface reduction rules in your organization, select
 
 The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
 
-- **Better prospects for display of ASR rules impact** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
+- **Better prospects for seeing the impact of attack surface reduction rules** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
 - **Ease in determining ASR rule exclusion** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of applicable/not applicable devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
 
 > [!IMPORTANT]
@@ -139,29 +139,19 @@ Reports relating to ASR rule events can be generated for the preceding-6-months
 
 ## Avoid policy conflicts
 
-If a conflicting policy has emerged as a result of a policy being applied from Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM takes precedence. See [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
+If a conflicting policy has emerged as a result of a policy being applied from Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM takes precedence. For more information, see [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
 
-Attack surface reduction (ASR) rules for MEM-managed devices now support a new behavior for merger of settings from different policies, to create a superset of policies for each device. Only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either of the profiles would be deployed. ASR rule merge behavior is as follows: 
+You can now create a superset of policies for attack surface reduction rules that apply to [MEM-managed devices](/mem/intune/enrollment/device-management-capabilities). When you do this, only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either of the profiles would be deployed. Attack surface reduction rule merge behavior works like this:
 
-Attack surface reduction (ASR) rules for MEM (Microsoft Endpoint Manager)-managed devices support a new behavior in terms of merger of the settings of policies. This behavior is described below:
-
-- If two or more policies have multiple settings configured in each of them, the settings without a conflict are merged into the superset of the policies they are mapped to.
-- If two or more policies encounter a conflict over a single setting from the various settings they are configured with,  only that single setting with a conflict is held back from being merged into the superset of the policies. 
-- The bundle of settings as a whole are not held back from being merged into the superset because of the single conflict-affected setting.
-- The policy as a whole is not flagged as **being in conflict** because of one of its settings being conflict affected.
-  
-
-- ASR rules from the following profiles are evaluated for each device the rules apply to:  
-    - Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > [Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction).
-    - Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
-    - Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Profiles >  Profile Name > Properties > Configuration settings > Attack Surface Reduction Rules
-
-- Settings that do not have conflicts are added to a superset of policy for the device.
-
-- When two or more policies have conflicting settings, the conflicting settings are not added to the combined policy, while settings that don’t conflict are added to the superset policy that applies to a device.
-
-- Only the configurations for conflicting settings are held back.
+| Situation | What happens |
+|:---|:---|
+| Two or more policies have multiple settings configured | The settings that do not conflict are merged into the superset of the policies they are mapped to. |
+| Two or more policies have a conflict with a single setting | Only the single setting with a conflict is held back from being merged into the superset of the policies. <p>The bundle of settings as a whole is not held back from being merged into the superset because of a single conflict-affected setting. <p>The policy as a whole is not flagged as **being in conflict**. |
 
+The policy superset can include settings from the following profiles:  
+- Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > Attack Surface Reduction.
+- Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
+- Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Profiles >  Profile Name > Properties > Configuration settings > Attack Surface Reduction Rules
 
 ## See the demystifying blogs
 

From 89d32f80d3b5400d5a8147d441422d198b58c7f1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:41:22 -0800
Subject: [PATCH 804/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index b4bf06284a..fa2799337d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -77,7 +77,7 @@ Before you roll out attack surface reduction rules in your organization, select
 The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
 
 - **Better prospects for seeing the impact of attack surface reduction rules** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
-- **Ease in determining ASR rule exclusion** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of applicable/not applicable devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
+- **Ease in determining exclusions for attack surface reduction rules** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of applicable/not applicable devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
 
 > [!IMPORTANT]
 > You can implement the process of applying ASR rules to a smaller device set by utilizing dynamic membership rules.

From 368ea48c52303fe0de9e20010fb96fc97dfbc009 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:50:55 -0800
Subject: [PATCH 805/825] Update
 best-practices-attack-surface-reduction-rules.md

---
 .../best-practices-attack-surface-reduction-rules.md  | 11 ++---------
 1 file changed, 2 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
index fa2799337d..a4d1e2ca6c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
@@ -61,7 +61,7 @@ Prior to describing the best pratices for the ASR rules' states, it is important
 
 ## Recommendation
 
-The recommended practice for a deployed ASR rule is to start it in **audit** mode. The reasons for recommendation of this best pratice are:
+The recommended practice for a deployed ASR rule is to start it in **audit** mode. The reasons for recommendation of this best practice are:
 
 1. **Access to logs and reviews**: When an ASR rule is set to **audit** mode, you can get access to the logs and reviews pertaining to it. These logs and reviews are data that helps you to analyze the impact of the ASR rule.
 2. **Rule-related decision**: The analysis findings guided by the logs and reviews help you take a decision whether to deploy or exclude the ASR rule or not. For information on ASR rule exclusion see
@@ -77,14 +77,7 @@ Before you roll out attack surface reduction rules in your organization, select
 The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
 
 - **Better prospects for seeing the impact of attack surface reduction rules** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
-- **Ease in determining exclusions for attack surface reduction rules** - Testing ASR rules on a smaller device set gives you scope to implement flexibility in exclusions. The flexibility refers to the devising combinations of applicable/not applicable devices for ASR rules applicability. These combinations vary depending on the results of the ASR rules testing on the smaller device set.
-
-> [!IMPORTANT]
-> You can implement the process of applying ASR rules to a smaller device set by utilizing dynamic membership rules.
-
-**How to configure dynamic membership rules**
-
-<!--Denise, we might need Jody's help in acquiring inputs for this procedural section  of setting up dynamic membership rules.-->
+- **Ease in determining exclusions for attack surface reduction rules** - Testing attack surface reduction rules on a smaller set of devices gives you flexibility in identifying and defining exclusions. You can determine whether any devices are not applicable for attack surface reduction rules. 
 
 ## Use code signing for applications
 

From 4924722b91522b38ecd02482824b7d2734ec7fed Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:53:12 -0800
Subject: [PATCH 806/825] ASR content updates

---
 windows/security/threat-protection/TOC.md     |   1 -
 ...ractices-attack-surface-reduction-rules.md | 159 ------------------
 2 files changed, 160 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index e62fbe4434..805b02475c 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -82,7 +82,6 @@
 
 #### [Attack surface reduction controls]()
 ##### [Attack surface reduction rules](microsoft-defender-atp/attack-surface-reduction.md)
-##### [Best practices with attack surface reduction rules](microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md)
 ##### [Enable attack surface reduction rules](microsoft-defender-atp/enable-attack-surface-reduction.md)
 ##### [Customize attack surface reduction rules](microsoft-defender-atp/customize-attack-surface-reduction.md)
 ##### [View attack surface reduction events](microsoft-defender-atp/event-views.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md b/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
deleted file mode 100644
index a4d1e2ca6c..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/best-practices-attack-surface-reduction-rules.md
+++ /dev/null
@@ -1,159 +0,0 @@
----
-title: Tips and best practices for attack surface reduction rules
-description: Prevent issues from arising with your attack surface reduction rules by following these best practices
-keywords: Microsoft Defender ATP, attack surface reduction, best practices
-search.product: eADQiWindows 10XVcnh
-ms.pagetype: security
-author: denisebmsft
-ms.author: deniseb
-manager: dansimp
-ms.reviewer: jcedola
-audience: ITPro 
-ms.topic: article 
-ms.prod: w10 
-ms.localizationpriority: medium
-ms.custom: 
-- asr
-ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
----
-
-# Tips and best practices for attack surface reduction rules
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-**Applies to:**
-
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
-Attack surface reduction rules help reduce vulnerabilities by targeting certain software behaviors. These behaviors include:
-
-- Launching executable files and scripts that attempt to download or run files;
-- Running obfuscated or otherwise suspicious scripts; and 
-- Performing behaviors that apps don't usually initiate during normal day-to-day work.
-
-This article includes tips, best practices, and important considerations regarding attack surface reduction rules.
-
-
-
-## Results of applying ASR rules
-
-- The process of applying ASR rules on devices provides scope to query for reports. These queries can be implemented in the form of templates.
-
-<!--Denise, could you clarify as to whether the ASR PowerBI template is anything to do with the templates used to generate/retrieve reports as specified in Blog-3? In other words, does the link to PowerBI template have relevance in this section and context?
--->
-
-- Once applying ASR rules to devices leads to querying for reports, there are a few sources from which reports can be queried. One of such sources is the [Microsoft 365 security center](https://security.microsoft.com)
- 
-<!-- Denise, could we discuss as to why only the **Microsoft 365 security center** source is being cited here; Just for better understanding, I am putting forward this query
--->
-
-## Applicable to rule states
-
-This section describes the best practices with regard to the states which any ASR rule can be set to, irrespective of the method used to configure or deploy the ASR rule.
-
-Prior to describing the best pratices for the ASR rules' states, it is important to know the states which an ASR rule can be set to:
-
-- **Not configured**: This is the state in which the ASR rule has been disabled. The code for this state is 0.
-- **Block**: This is the state in which the ASR rule is enabled. YThe code for this state is 1.
-- **Audit**: This is the state in which the ASR rule is evaluated about its impactive behavior toward the organization or environment in which it is deployed.
-
-## Recommendation
-
-The recommended practice for a deployed ASR rule is to start it in **audit** mode. The reasons for recommendation of this best practice are:
-
-1. **Access to logs and reviews**: When an ASR rule is set to **audit** mode, you can get access to the logs and reviews pertaining to it. These logs and reviews are data that helps you to analyze the impact of the ASR rule.
-2. **Rule-related decision**: The analysis findings guided by the logs and reviews help you take a decision whether to deploy or exclude the ASR rule or not. For information on ASR rule exclusion see
-<!--To cite here the topic that describes guidance provided for the process of implementing ASR rules' exclusions-->
-<!--To cite here the topic that describes guidance provided for the process of deploying or configuring ASR rules-->
-
-<!--Denise, if we can seek information about the common built-in features across all the 5 configuration mechanisms, we can specify the best practice regarding which is the best configuration mechanism to use to deploy the ASR rules-->
-
-## Use a phased approach
-
-Before you roll out attack surface reduction rules in your organization, select a small set of managed devices to start. 
-
-The reasons for selecting a smaller set of devices as the sample object on which the ASR rules are to be applied are:
-
-- **Better prospects for seeing the impact of attack surface reduction rules** - This approach enables you to see how attack surface reduction rules work in your environment. When lesser number of devices are used, the impact becomes more apparent because the ASR rules can sometimes impact a particular device to a larger extent.
-- **Ease in determining exclusions for attack surface reduction rules** - Testing attack surface reduction rules on a smaller set of devices gives you flexibility in identifying and defining exclusions. You can determine whether any devices are not applicable for attack surface reduction rules. 
-
-## Use code signing for applications
-
-As a best practice, use code signing for all the applications and scripts that your organization is using. This includes internally developed applications. Using code signing helps avoid false positives with attack surface reduction rules. It can also help avoid issues with attack surface reduction rules for developers and other users within your organization. 
-
-## View reports from various sources in Microsoft
-
-### From the Microsoft 365 security center
-
-In the Microsoft 365 security center ([https://security.microsoft.com](https://security.microsoft.com)), go to **Reports** > **Devices** > **Attack surface reduction**. (MORE TO COME!)
-
-To retrieve and view the reports generated in ([https://security.microsoft.com](https://security.microsoft.com)), ensure that the device for which you seek a report is onboarded on to Microsoft Defender ATP.
-
-### By Microsoft Defender ATP advanced hunting
-
-Advanced hunting is a query-based threat-hunting tool of Microsoft Defender ATP. This tool generates reports based on the findings of the threat-hunting process.
-
-The **advanced hunting** tool enables the users to audit the **Of-the-last-30-days** data collected from various devices by Microsoft Defender ATP Endpoint Detection and Response (EDR). It facilitates proactive logging of any suspicious indicators and entities in the events that you explore. This tool provides flexibility in accessing data (without any restriction in category of data to be accessed). This flexibility enables the user to detect known threats and spot new threats.
-
-The reports for the ASR rules' events are generated by querying the **DeviceEvents** table.
-
-**Template of DeviceEvents table**
-
-DeviceEvents
-| where Timestamp > ago (30d)
-| where ActionType startswith "Asr" 
-| summarize EventCount=count () by ActionType
-
-**Procedure**
-
-1. Navigate to **Advanced hunting** module in the **Microsoft Defender Security Center** portal.
-2. Click **Query**.
-3. Click **+ New** to create a new query.
-4. Click **Run query**. The report based on the query parameters (specified in the **Template of DeviceEvents table** section) is generated.
-
-### By Microsoft Defender ATP machine timeline
-
-Machine timeline is another report-generating source in Microsoft Defender ATP, but with a narrower scope.
-
-Reports relating to ASR rule events can be generated for the preceding-6-months period on a specific endpoint or device. 
-
-**Summarized procedure to generate report**
-
-1. Log in to **Microsoft Defender Security Center** and navigate to the **Machines** tab.
-2. Choose a machine for which you want to view the reports of its ASR rule-related events.
-3. Click **Timeline** and choose the time range for which the report is to display data.
-
-
-## Get the Power BI report template
-
-<!--The Power BI report templates are here: https://github.com/microsoft/MDATP-PowerBI-Templates-->
-
-## Avoid policy conflicts
-
-If a conflicting policy has emerged as a result of a policy being applied from Mobile Device Management (MDM, using Intune) and Group Policy, the setting applied from MDM takes precedence. For more information, see [Attack surface reduction rules](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#attack-surface-reduction-rules).
-
-You can now create a superset of policies for attack surface reduction rules that apply to [MEM-managed devices](/mem/intune/enrollment/device-management-capabilities). When you do this, only the settings that are not in conflict are merged, while those that are in conflict are not added to the superset of rules. Previously, if two policies included conflicts for a single setting, both policies were flagged as being in conflict, and no settings from either of the profiles would be deployed. Attack surface reduction rule merge behavior works like this:
-
-| Situation | What happens |
-|:---|:---|
-| Two or more policies have multiple settings configured | The settings that do not conflict are merged into the superset of the policies they are mapped to. |
-| Two or more policies have a conflict with a single setting | Only the single setting with a conflict is held back from being merged into the superset of the policies. <p>The bundle of settings as a whole is not held back from being merged into the superset because of a single conflict-affected setting. <p>The policy as a whole is not flagged as **being in conflict**. |
-
-The policy superset can include settings from the following profiles:  
-- Devices > Configuration policy > Endpoint protection profile > Microsoft Defender Exploit Guard > Attack Surface Reduction.
-- Endpoint security > Attack surface reduction policy > Attack surface reduction rules.
-- Endpoint security > Security baselines > Microsoft Defender ATP Baseline > Profiles >  Profile Name > Properties > Configuration settings > Attack Surface Reduction Rules
-
-## See the demystifying blogs
-
-The following table lists several blog posts that you might find helpful. All of these blogs are hosted on the [Microsoft Tech Community site](https://techcommunity.microsoft.com), under [Microsoft Defender for Endpoint](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/bg-p/MicrosoftDefenderATPBlog).
-
-|Blog  |Description  |
-|---------|---------|
-|[Demystifying attack surface reduction rules - Part 1: Why and What](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-1/ba-p/1306420)     | Get a quick overview of the Why and the What through eight questions and answers.          |
-|[Demystifying attack surface reduction rules - Part 2: How](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-2/ba-p/1326565)     | See how to configure attack surface reduction rules, how exclusions work, and how to define exclusions.         |
-|[Demystifying attack surface reduction rules - Part 3: Reports and Troubleshooting](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-3/ba-p/1360968)     | Learn how to view reports and information about attack surface reduction rules and their status, and how to troubleshoot issues with rule impact and operations.         |
-|[Demystifying attack surface reduction rules - Part 4: Migrating](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/demystifying-attack-surface-reduction-rules-part-4/ba-p/1384425)     | If you're currently using a non-Microsoft host intrusion prevention system (HIPS) and are evaluating or migrating to attack surface reduction capabilities in Microsoft Defender for Endpoint, see this blog. You'll see how custom rules you were using with your HIPS solution can map to attack surface reduction rules in Microsoft Defender for Endpoint.         |
-

From 70580c16ad5f361a79660284ce0d5bbcd47d1c76 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 13:58:12 -0800
Subject: [PATCH 807/825] Update controlled-folders.md

---
 .../microsoft-defender-atp/controlled-folders.md            | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
index 8602493f71..b6ab784185 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/controlled-folders.md
@@ -42,7 +42,7 @@ Controlled folder access works best with [Microsoft Defender for Endpoint](../mi
 
 Controlled folder access works by only allowing trusted apps to access protected folders. Protected folders are specified when controlled folder access is configured. Typically, commonly used folders, such as those used for documents, pictures, downloads, and so on, are included in the list of controlled folders. 
 
-Controlled folder access works with a list of trusted apps. If an app is included in the list of trusted software, it works as expected. If not, the app is prevented from making any changes to files that are inside protected folders. 
+Controlled folder access works with a list of trusted apps. Apps that are included in the list of trusted software work as expected. Apps that are not included in the list are prevented from making any changes to files inside protected folders. 
 
 Apps are added to the list based upon their prevalence and reputation. Apps that are highly prevalent throughout your organization and that have never displayed any behavior deemed malicious are considered trustworthy. Those apps are added to the list automatically.
 
@@ -52,7 +52,7 @@ Apps can also be added manually to the trusted list by using Configuration Manag
 
 Controlled folder access is especially useful in helping to protect your documents and information from [ransomware](https://www.microsoft.com/wdsi/threats/ransomware). In a ransomware attack, your files can get encrypted and held hostage. With controlled folder access in place, a notification appears on the computer where an app attempted to make changes to a file in a protected folder. You can [customize the notification](customize-attack-surface-reduction.md#customize-the-notification) with your company details and contact information. You can also enable the rules individually to customize what techniques the feature monitors.
 
-The [protected folders](#review-controlled-folder-access-events-in-windows-event-viewer) include common system folders (including boot sectors), and you can [add additional folders](customize-controlled-folders.md#protect-additional-folders). You can also [allow apps](customize-controlled-folders.md#allow-specific-apps-to-make-changes-to-controlled-folders) to give them access to the protected folders.
+The [protected folders](#review-controlled-folder-access-events-in-windows-event-viewer) include common system folders (including boot sectors), and you can [add more folders](customize-controlled-folders.md#protect-additional-folders). You can also [allow apps](customize-controlled-folders.md#allow-specific-apps-to-make-changes-to-controlled-folders) to give them access to the protected folders.
 
 You can use [audit mode](audit-windows-defender.md) to evaluate how controlled folder access would impact your organization if it were enabled. You can also visit the Windows Defender Test ground website at [demo.wd.microsoft.com](https://demo.wd.microsoft.com?ocid=cx-wddocs-testground) to confirm the feature is working and see how it works.
 
@@ -131,4 +131,4 @@ You can use the Windows Security app to view the list of folders that are protec
 
 - [Evaluate controlled folder access](evaluate-controlled-folder-access.md)
 - [Customize controlled folder access](customize-controlled-folders.md)
-- [Protect additional folders](customize-controlled-folders.md#protect-additional-folders)
+- [Protect more folders](customize-controlled-folders.md#protect-additional-folders)

From b3579aab3320bead1ea7ef70196acda23e07aa43 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 14:00:38 -0800
Subject: [PATCH 808/825] Update attack-surface-reduction.md

---
 .../microsoft-defender-atp/attack-surface-reduction.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index 0835bbe05e..bce0f8e035 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -43,11 +43,11 @@ For more information about configuring attack surface reduction rules, see [Enab
 
 ## Assess rule impact before deployment  
 
-You can assess how an attack surface reduction rule might impact your network by opening the security recommendation for that rule in [threat and vulnerability management](https://docs.microsoft.com/windows/security/threat-protection/#tvm). 
+You can assess how an attack surface reduction rule might affect your network by opening the security recommendation for that rule in [threat and vulnerability management](https://docs.microsoft.com/windows/security/threat-protection/#tvm). 
 
 :::image type="content" source="images/asrrecommendation.png" alt-text="Security reco for attack surface reduction rule":::
 
-In the recommendation details pane, check the user impact to determine what percentage of your devices can accept a new policy enabling the rule in blocking mode without adverse impact to user productivity.
+In the recommendation details pane, check for user impact to determine what percentage of your devices can accept a new policy enabling the rule in blocking mode without adversely affecting productivity.
 
 ## Audit mode for evaluation
 

From 49b748a730aa40bc625bc3b57a406143667092bf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 3 Feb 2021 14:04:00 -0800
Subject: [PATCH 809/825] Update attack-surface-reduction.md

---
 .../attack-surface-reduction.md                  | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
index bce0f8e035..846bc4dbca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction.md
@@ -51,7 +51,7 @@ In the recommendation details pane, check for user impact to determine what perc
 
 ## Audit mode for evaluation
 
-Use [audit mode](audit-windows-defender.md) to evaluate how attack surface reduction rules would impact your organization if they were enabled. It's best to run all rules in audit mode first so you can understand their impact on your line-of-business applications. Many line-of-business applications are written with limited security concerns, and they may perform tasks in ways that seem similar to malware. By monitoring audit data and [adding exclusions](enable-attack-surface-reduction.md#exclude-files-and-folders-from-asr-rules) for necessary applications, you can deploy attack surface reduction rules without impacting productivity.
+Use [audit mode](audit-windows-defender.md) to evaluate how attack surface reduction rules would affect your organization if they were enabled. Run all rules in audit mode first so you can understand how they affect your line-of-business applications. Many line-of-business applications are written with limited security concerns, and they might perform tasks in ways that seem similar to malware. By monitoring audit data and [adding exclusions](enable-attack-surface-reduction.md#exclude-files-and-folders-from-asr-rules) for necessary applications, you can deploy attack surface reduction rules without reducing productivity.
 
 ## Warn mode for users
 
@@ -95,13 +95,13 @@ Notifications and any alerts that are generated can be viewed in the Microsoft D
 
 You can use advanced hunting to view attack surface reduction events. To streamline the volume of incoming data, only unique processes for each hour are viewable with advanced hunting. The time of an attack surface reduction event is the first time that event is seen within the hour.
 
-For example, suppose that an attack surface reduction event occurs on ten devices during the 2:00 PM hour. Suppose that the first event occurred at 2:15, and the last at 2:45. With advanced hunting, you'll see one instance of that event (even though it actually occurred on ten devices), and its timestamp will be 2:15 PM. 
+For example, suppose that an attack surface reduction event occurs on 10 devices during the 2:00 PM hour. Suppose that the first event occurred at 2:15, and the last at 2:45. With advanced hunting, you'll see one instance of that event (even though it actually occurred on 10 devices), and its timestamp will be 2:15 PM. 
 
 For more information about advanced hunting, see [Proactively hunt for threats with advanced hunting](advanced-hunting-overview.md).
 
 ## Attack surface reduction features across Windows versions
 
-You can set attack surface reduction rules for devices running any of the following editions and versions of Windows:
+You can set attack surface reduction rules for devices that are running any of the following editions and versions of Windows:
 - Windows 10 Pro, [version 1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709) or later
 - Windows 10 Enterprise, [version 1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709) or later
 - Windows Server, [version 1803 (Semi-Annual Channel)](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1803) or later
@@ -169,9 +169,9 @@ If you are configuring attack surface reduction rules by using Group Policy or P
 
 ### Block Adobe Reader from creating child processes
 
-This rule prevents attacks by blocking Adobe Reader from creating additional processes.
+This rule prevents attacks by blocking Adobe Reader from creating processes.
 
-Through social engineering or exploits, malware can download and launch additional payloads and break out of Adobe Reader. By blocking child processes from being generated by Adobe Reader, malware attempting to use it as a vector are prevented from spreading.
+Through social engineering or exploits, malware can download and launch payloads, and break out of Adobe Reader. By blocking child processes from being generated by Adobe Reader, malware attempting to use it as a vector are prevented from spreading.
 
 This rule was introduced in: 
 - [Windows 10, version 1809](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1809)
@@ -188,7 +188,7 @@ GUID: `7674ba52-37eb-4a4f-a9a1-f0f9a1619a2c`
 
 This rule blocks Office apps from creating child processes. Office apps include Word, Excel, PowerPoint, OneNote, and Access.
 
-Creating malicious child processes is a common malware strategy. Malware that abuse Office as a vector often run VBA macros and exploit code to download and attempt to run additional payloads. However, some legitimate line-of-business applications might also generate child processes for benign purposes, such as spawning a command prompt or using PowerShell to configure registry settings.
+Creating malicious child processes is a common malware strategy. Malware that abuse Office as a vector often run VBA macros and exploit code to download and attempt to run more payloads. However, some legitimate line-of-business applications might also generate child processes for benign purposes, such as spawning a command prompt or using PowerShell to configure registry settings.
 
 This rule was introduced in: 
 - [Windows 10, version 1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709)
@@ -353,7 +353,7 @@ GUID: `75668C1F-73B5-4CF0-BB93-3ECF5CB7CC84`
 
 This rule prevents Outlook from creating child processes, while still allowing legitimate Outlook functions.
 
-This rule protects against social engineering attacks and prevents exploit code from abusing vulnerabilities in Outlook. It also protects against [Outlook rules and forms exploits](https://blogs.technet.microsoft.com/office365security/defending-against-rules-and-forms-injection/) that attackers can use when a user's credentials are compromised.
+This rule protects against social engineering attacks and prevents exploiting code from abusing vulnerabilities in Outlook. It also protects against [Outlook rules and forms exploits](https://blogs.technet.microsoft.com/office365security/defending-against-rules-and-forms-injection/) that attackers can use when a user's credentials are compromised.
 
 > [!NOTE]
 > This rule applies to Outlook and Outlook.com only.
@@ -426,7 +426,7 @@ GUID: `b2b3f03d-6a65-4f7b-a9c7-1c7ef74a9ba4`
 
 This rule prevents VBA macros from calling Win32 APIs.
 
-Office VBA provides the ability to make Win32 API calls. Malware can abuse this capability, such as [calling Win32 APIs to launch malicious shellcode](https://www.microsoft.com/security/blog/2018/09/12/office-vba-amsi-parting-the-veil-on-malicious-macros/) without writing anything directly to disk. Most organizations don't rely on the ability to call Win32 APIs in their day-to-day functioning, even if they use macros in other ways.
+Office VBA enables Win32 API calls. Malware can abuse this capability, such as [calling Win32 APIs to launch malicious shellcode](https://www.microsoft.com/security/blog/2018/09/12/office-vba-amsi-parting-the-veil-on-malicious-macros/) without writing anything directly to disk. Most organizations don't rely on the ability to call Win32 APIs in their day-to-day functioning, even if they use macros in other ways.
 
 This rule was introduced in:
 - [Windows 10, version 1709](https://docs.microsoft.com/windows/whats-new/whats-new-windows-10-version-1709)

From 7ca558ba2347ccad48dd3db0e644a6c10f5b306f Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 3 Feb 2021 16:02:31 -0800
Subject: [PATCH 810/825] Added automatic image border, indented note in list
 item

---
 ...er-application-control-policies-using-intune.md | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
index 1f84641636..d44af33f24 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
@@ -58,15 +58,20 @@ Beginning in 1903, Custom OMA-URI policy deployment leverages the [ApplicationCo
 The steps to use Intune's Custom OMA-URI functionality are:
 
 1. Know a generated policy's GUID, which can be found in the policy xml as `<PolicyID>`
+
 2. Convert the policy XML to binary format using the ConvertFrom-CIPolicy cmdlet in order to be deployed. The binary policy may be signed or unsigned.
+
 3. Open the Microsoft Intune portal and click **Device configuration** > **Profiles** > **Create profile**.
+
 4. Type a name for the new profile, select **Windows 10 and later** as the **Platform** and **Custom** as the **Profile type**.
+
 5. Add a row, then give your policy a name and use the following settings:
     - **OMA-URI**: ./Vendor/MSFT/ApplicationControl/Policies/_Policy GUID_/Policy
     - **Data type**: Base64
     - **Certificate file**: upload your binary format policy file. You do not need to upload a Base64 file, as Intune will convert the uploaded .bin file to Base64 on your behalf.
 
-    ![Configure custom WDAC](images/wdac-intune-custom-oma-uri.png)
+    > [!div class="mx-imgBorder"]
+    > ![Configure custom WDAC](images/wdac-intune-custom-oma-uri.png)
 
 #### Removing policies
 
@@ -78,15 +83,18 @@ Upon deletion, policies deployed through Intune via the ApplicationControl CSP a
 The steps to use Intune's Custom OMA-URI functionality to leverage the [AppLocker CSP](https://docs.microsoft.com/windows/client-management/mdm/applocker-csp) and deploy a custom WDAC policy to pre-1903 systems are:
 
 1. Convert the policy XML to binary format using the ConvertFrom-CIPolicy cmdlet in order to be deployed. The binary policy may be signed or unsigned.
+
 2. Open the Microsoft Intune portal and click **Device configuration** > **Profiles** > **Create profile**.
+
 3. Type a name for the new profile, select **Windows 10 and later** as the **Platform** and **Custom** as the **Profile type**.
+
 4. Add a row, then give your policy a name and use the following settings:
     - **OMA-URI**: ./Vendor/MSFT/AppLocker/ApplicationLaunchRestrictions/_Grouping_/CodeIntegrity/Policy)
     - **Data type**: Base64
     - **Certificate file**: upload your binary format policy file
     
-> [!NOTE]
-> Deploying policies via the AppLocker CSP will force a reboot during OOBE.
+   > [!NOTE]
+   > Deploying policies via the AppLocker CSP will force a reboot during OOBE.
 
 #### Removing policies
 

From 68a4c1dddae4e0ab457802d54180545168b58ce9 Mon Sep 17 00:00:00 2001
From: Paul Huijbregts <30799281+pahuijbr@users.noreply.github.com>
Date: Wed, 3 Feb 2021 16:28:12 -0800
Subject: [PATCH 811/825] Update Onboard-Windows-10-multi-session-device.md

---
 .../Onboard-Windows-10-multi-session-device.md                 | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index 1f03573655..7f1df6920d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -25,9 +25,6 @@ ms.technology: mde
 Applies to: 
 - Windows 10 multi-session running on Windows Virtual Desktop (WVD) 
 
-> [!WARNING]
-> Microsoft Defender for Endpoint support for Windows Virtual Desktop multi-session scenarios is currently in Preview and limited up to 25 concurrent sessions per host/VM. However, single session scenarios on Windows Virtual Desktop are fully supported.
-
 Microsoft Defender for Endpoint supports monitoring both VDI as well as Windows Virtual Desktop sessions. Depending on your organization's needs, you might need to implement VDI or Windows Virtual Desktop sessions to help your employees access corporate data and apps from an unmanaged device, remote location, or similar scenario. With Microsoft Defender for Endpoint, you can monitor these virtual machines for anomalous activity.
 
  ## Before you begin

From b7ff50c0ecc9ad5290c8b2f796714d4b0a315b5f Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 3 Feb 2021 16:31:28 -0800
Subject: [PATCH 812/825] Default update for AutomaticMaintenanceWakeUp

---
 windows/client-management/mdm/policy-csp-update.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-update.md b/windows/client-management/mdm/policy-csp-update.md
index df70a21a7c..ac89864af8 100644
--- a/windows/client-management/mdm/policy-csp-update.md
+++ b/windows/client-management/mdm/policy-csp-update.md
@@ -1113,8 +1113,8 @@ ADMX Info:
 <!--/ADMXMapped-->
 <!--SupportedValues-->
 Supported values:  
--   0  - Disable (Default)
--   1  - Enable
+-   0  - Disable
+-   1  - Enable (Default)
 <!--/SupportedValues-->
 <!--Example-->
 

From 650ec848bbef230bfad7b9992a99daecc0c44bbe Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 3 Feb 2021 16:55:50 -0800
Subject: [PATCH 813/825] Fixed list of categories that was displayed as a
 paragraph

---
 .../mdm/policy-csp-update.md                  | 21 ++++++++++---------
 1 file changed, 11 insertions(+), 10 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-update.md b/windows/client-management/mdm/policy-csp-update.md
index ac89864af8..8698b88092 100644
--- a/windows/client-management/mdm/policy-csp-update.md
+++ b/windows/client-management/mdm/policy-csp-update.md
@@ -1733,18 +1733,19 @@ OS upgrade:
 Update:
 - Maximum deferral: 1 month
 - Deferral increment: 1 week
-- Update type/notes:
-  If a machine has Microsoft Update enabled, any Microsoft Updates in these categories will also observe Defer / Pause logic.
-      - Security Update - 0FA1201D-4330-4FA8-8AE9-B877473B6441
-      - Critical Update - E6CF1350-C01B-414D-A61F-263D14D133B4
-      - Update Rollup - 28BC880E-0592-4CBF-8F95-C79B17911D5F
-      - Service Pack - 68C5B0A3-D1A6-4553-AE49-01D3A7827828
-      - Tools - B4832BD8-E735-4761-8DAF-37F882276DAB
-      - Feature Pack - B54E7D24-7ADD-428F-8B75-90A396FA584F
-      - Update - CD5FFD1E-E932-4E3A-BF74-18BF0B1BBD83
-      - Driver - EBFC1FC5-71A4-4F7B-9ACA-3B9A503104A0
+- Update type/notes: If a machine has Microsoft Update enabled, any Microsoft Updates in these categories will also observe Defer / Pause logic:
+  
+  - Security Update - 0FA1201D-4330-4FA8-8AE9-B877473B6441
+  - Critical Update - E6CF1350-C01B-414D-A61F-263D14D133B4
+  - Update Rollup - 28BC880E-0592-4CBF-8F95-C79B17911D5F
+  - Service Pack - 68C5B0A3-D1A6-4553-AE49-01D3A7827828
+  - Tools - B4832BD8-E735-4761-8DAF-37F882276DAB
+  - Feature Pack - B54E7D24-7ADD-428F-8B75-90A396FA584F
+  - Update - CD5FFD1E-E932-4E3A-BF74-18BF0B1BBD83
+  - Driver - EBFC1FC5-71A4-4F7B-9ACA-3B9A503104A0
 
 Other/cannot defer:
+
 - Maximum deferral: No deferral
 - Deferral increment: No deferral
 - Update type/notes:

From b8132898d8b37a888292975338cca8616418d5a4 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Thu, 4 Feb 2021 16:28:24 +0200
Subject: [PATCH 814/825] change default to prod

---
 .../linux-install-manually.md                 | 36 +++++++++++++------
 1 file changed, 25 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
index c45701fbed..f41fa4b080 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
@@ -32,10 +32,18 @@ ms.technology: mde
 
 This article describes how to deploy Microsoft Defender for Endpoint for Linux manually. A successful deployment requires the completion of all of the following tasks:
 
-- [Configure the Linux software repository](#configure-the-linux-software-repository)
-- [Application installation](#application-installation)
-- [Download the onboarding package](#download-the-onboarding-package)
-- [Client configuration](#client-configuration)
+- [Deploy Microsoft Defender for Endpoint for Linux manually](#deploy-microsoft-defender-for-endpoint-for-linux-manually)
+  - [Prerequisites and system requirements](#prerequisites-and-system-requirements)
+  - [Configure the Linux software repository](#configure-the-linux-software-repository)
+    - [RHEL and variants (CentOS and Oracle Linux)](#rhel-and-variants-centos-and-oracle-linux)
+    - [SLES and variants](#sles-and-variants)
+    - [Ubuntu and Debian systems](#ubuntu-and-debian-systems)
+  - [Application installation](#application-installation)
+  - [Download the onboarding package](#download-the-onboarding-package)
+  - [Client configuration](#client-configuration)
+  - [Log installation issues](#log-installation-issues)
+  - [Operating system upgrades](#operating-system-upgrades)
+  - [Uninstallation](#uninstallation)
 
 ## Prerequisites and system requirements
 
@@ -71,7 +79,13 @@ In order to preview new features and provide early feedback, it is recommended t
     sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/[distro]/[version]/[channel].repo
     ```
 
-    For example, if you are running CentOS 7 and wish to deploy MDATP for Linux from the *insiders-fast* channel:
+    For example, if you are running CentOS 7 and wish to deploy MDE for Linux from the *prod* channel:
+
+    ```bash
+    sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/centos/7/prod.repo
+    ```
+
+    Or if you wish to explore new features on selected devices, you might want to deploy MDE for Linux to *insiders-fast* channel:
 
     ```bash
     sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/centos/7/insiders-fast.repo
@@ -99,10 +113,10 @@ In order to preview new features and provide early feedback, it is recommended t
     sudo zypper addrepo -c -f -n microsoft-[channel] https://packages.microsoft.com/config/[distro]/[version]/[channel].repo
     ```
 
-    For example, if you are running SLES 12 and wish to deploy MDATP for Linux from the *insiders-fast* channel:
+    For example, if you are running SLES 12 and wish to deploy MDE for Linux from the *prod* channel:
 
     ```bash
-    sudo zypper addrepo -c -f -n microsoft-insiders-fast https://packages.microsoft.com/config/sles/12/insiders-fast.repo
+    sudo zypper addrepo -c -f -n microsoft-prod https://packages.microsoft.com/config/sles/12/prod.repo
     ```
 
 - Install the Microsoft GPG public key:
@@ -133,10 +147,10 @@ In order to preview new features and provide early feedback, it is recommended t
     curl -o microsoft.list https://packages.microsoft.com/config/[distro]/[version]/[channel].list
     ```
 
-    For example, if you are running Ubuntu 18.04 and wish to deploy MDATP for Linux from the *insiders-fast* channel:
+    For example, if you are running Ubuntu 18.04 and wish to deploy MDE for Linux from the *prod* channel:
 
     ```bash
-    curl -o microsoft.list https://packages.microsoft.com/config/ubuntu/18.04/insiders-fast.list
+    curl -o microsoft.list https://packages.microsoft.com/config/ubuntu/18.04/prod.list
     ```
 
 - Install the repository configuration:
@@ -144,10 +158,10 @@ In order to preview new features and provide early feedback, it is recommended t
     ```bash
     sudo mv ./microsoft.list /etc/apt/sources.list.d/microsoft-[channel].list
     ```
-    For example, if you chose *insiders-fast* channel:
+    For example, if you chose *prod* channel:
     
     ```bash
-    sudo mv ./microsoft.list /etc/apt/sources.list.d/microsoft-insiders-fast.list
+    sudo mv ./microsoft.list /etc/apt/sources.list.d/microsoft-prod.list
     ```   
 
 - Install the `gpg` package if not already installed:

From 845958b66d328bfa36723e14c91065249fb96398 Mon Sep 17 00:00:00 2001
From: MatiG <matig@microsoft.com>
Date: Thu, 4 Feb 2021 17:30:24 +0200
Subject: [PATCH 815/825] "closest" meaning

---
 .../microsoft-defender-atp/linux-install-manually.md        | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
index f41fa4b080..046ec05444 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md
@@ -68,7 +68,7 @@ In order to preview new features and provide early feedback, it is recommended t
     sudo yum install yum-utils
     ```
 
-- Note your distribution and version, and identify the closest entry for it under `https://packages.microsoft.com/config/`.
+- Note your distribution and version, and identify the closest entry (by major, then minor) for it under `https://packages.microsoft.com/config/`. For instance, RHEL 7.9 is closer to 7.4 than to 8.
 
     In the below commands, replace *[distro]* and *[version]* with the information you've identified:
 
@@ -105,7 +105,7 @@ In order to preview new features and provide early feedback, it is recommended t
 
 ### SLES and variants
 
-- Note your distribution and version, and identify the closest entry for it under `https://packages.microsoft.com/config/`.
+- Note your distribution and version, and identify the closest entry(by major, then minor) for it under `https://packages.microsoft.com/config/`.
 
     In the following commands, replace *[distro]* and *[version]* with the information you've identified:
 
@@ -139,7 +139,7 @@ In order to preview new features and provide early feedback, it is recommended t
     sudo apt-get install libplist-utils
     ```
 
-- Note your distribution and version, and identify the closest entry for it under `https://packages.microsoft.com/config`.
+- Note your distribution and version, and identify the closest entry (by major, then minor) for it under `https://packages.microsoft.com/config`.
 
     In the below command, replace *[distro]* and *[version]* with the information you've identified:
 

From 5de115d5a01426ef854582bc19e44bb1430bb386 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 4 Feb 2021 07:35:49 -0800
Subject: [PATCH 816/825] Update Onboard-Windows-10-multi-session-device.md

---
 ...Onboard-Windows-10-multi-session-device.md | 35 +++++++++----------
 1 file changed, 17 insertions(+), 18 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index 7f1df6920d..a03a960bb6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -13,14 +13,13 @@ ms.topic: article
 author: dansimp
 ms.author: dansimp
 ms.custom: nextgen
-ms.date: 09/10/2020
+ms.date: 02/04/2021
 ms.reviewer: 
 manager: dansimp
 ms.technology: mde
 ---
 
 # Onboard Windows 10 multi-session devices in Windows Virtual Desktop 
-6 minutes to read 
 
 Applies to: 
 - Windows 10 multi-session running on Windows Virtual Desktop (WVD) 
@@ -28,37 +27,37 @@ Applies to:
 Microsoft Defender for Endpoint supports monitoring both VDI as well as Windows Virtual Desktop sessions. Depending on your organization's needs, you might need to implement VDI or Windows Virtual Desktop sessions to help your employees access corporate data and apps from an unmanaged device, remote location, or similar scenario. With Microsoft Defender for Endpoint, you can monitor these virtual machines for anomalous activity.
 
  ## Before you begin
-Familiarize yourself with the [considerations for non-persistent VDI](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi#onboard-non-persistent-virtual-desktop-infrastructure-vdi-devices-1). While [Windows Virtual Desktop](https://docs.microsoft.com/azure/virtual-desktop/overview) does not provide non-persistence options, it does provide ways to use a golden Windows image that can be used to provision new hosts and redeploy machines. This increases volatility in the environment and thus impacts what entries are created and maintained in the Microsoft Defender for Endpoint portal, potentially reducing visibility for your security analysts.
+Familiarize yourself with the [considerations for non-persistent VDI](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi#onboard-non-persistent-virtual-desktop-infrastructure-vdi-devices-1). Although [Windows Virtual Desktop](https://docs.microsoft.com/azure/virtual-desktop/overview) does not provide non-persistence options, it does provide ways to use a Windows image that can be used to provision new hosts and redeploy machines. This increases volatility in the environment, and thus impacts what entries are created and maintained in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)), potentially reducing visibility for your security analysts.
 
 > [!NOTE]
-> Depending on your choice of onboarding method, devices can appear in Microsoft Defender for Endpoint portal as either: 
+> Depending on your choice of onboarding method, devices can appear in MMicrosoft Defender Security Center as either: 
 > - Single entry for each virtual desktop 
 > - Multiple entries for each virtual desktop 
 
-Microsoft recommends onboarding Windows Virtual Desktop as a single entry per virtual desktop. This ensures that the investigation experience in the Microsoft Defender Endpoint portal is in the context of one device based on the machine name. Organizations that frequently delete and re-deploy WVD hosts should strongly consider using this method as it prevents multiple objects for the same machine from being created in the Microsoft Defender for Endpoint portal. This can lead to confusion when investigating incidents. For test or non-volatile environments, you may opt to choose differently. 
+Microsoft recommends onboarding Windows Virtual Desktop as a single entry per virtual desktop. This ensures that the investigation experience in the Microsoft Defender Security Center is in the context of one device based on the machine name. Organizations that frequently delete and re-deploy WVD hosts should strongly consider using this method as it prevents multiple objects for the same machine from being created in the Microsoft Defender Security Center. This can lead to confusion when investigating incidents. For test or non-volatile environments, you may opt to choose differently. 
 
-Microsoft recommends adding the Microsoft Defender for Endpoint onboarding script to the WVD golden image. This way, you can be sure that this onboarding script runs immediately at first boot. It is executed as a startup script at first boot on all the WVD machines that are provisioned from the WVD golden image. However, if you are using one of the gallery images without modification, place the script in a shared location and call it from either local or domain group policy. 
+Microsoft recommends adding the Microsoft Defender for Endpoint onboarding script to the WVD image. This way, you can be sure that this onboarding script runs immediately at first boot. It is executed as a startup script at first boot on all the WVD machines that are provisioned from the WVD golden image. However, if you are using one of the gallery images without modification, place the script in a shared location and call it from either local or domain group policy. 
 
 > [!NOTE]
 > The placement and configuration of the VDI onboarding startup script on the WVD golden image configures it as a startup script that runs when the WVD starts. It is NOT recommended to onboard the actual WVD golden image. Another consideration is the method used to run the script. It should run as early in the startup/provisioning process as possible to reduce the time between the machine being available to receive sessions and the device onboarding to the service. Below scenarios 1 & 2 take this into account.
 
-### Scenarios
+## Scenarios
 There are several ways to onboard a WVD host machine:
 
 - Run the script in the golden image (or from a shared location) during startup.
 - Use a management tool to run the script.
 
-#### *Scenario 1: Using local group policy*
+### Scenario 1: Using local group policy
 This scenario requires placing the script in a golden image and uses local group policy to run early in the boot process.
 
 Use the instructions in [Onboard non-persistent virtual desktop infrastructure VDI devices](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi#onboard-non-persistent-virtual-desktop-infrastructure-vdi-devices-1).
 
 Follow the instructions for a single entry for each device.
 
-#### *Scenario 2: Using domain group policy*
+### Scenario 2: Using domain group policy
 This scenario uses a centrally located script and runs it using a domain-based group policy. You can also place the script in the golden image and run it in the same way.
 
-**Download the WindowsDefenderATPOnboardingPackage.zip file from the Windows Defender Security Center**
+#### Download the WindowsDefenderATPOnboardingPackage.zip file from the Windows Defender Security Center
 1. Open the VDI configuration package .zip file (WindowsDefenderATPOnboardingPackage.zip)  
     - In the Microsoft Defender Security Center navigation pane, select **Settings** > **Onboarding**. 
     - Select Windows 10 as the operating system. 
@@ -66,7 +65,7 @@ This scenario uses a centrally located script and runs it using a domain-based g
     - Click **Download package** and save the .zip file. 
 2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the device. You should have a folder called **OptionalParamsPolicy** and the files **WindowsDefenderATPOnboardingScript.cmd** and **Onboard-NonPersistentMachine.ps1**.
 
-**Use Group Policy management console to run the script when the virtual machine starts**
+#### Use Group Policy management console to run the script when the virtual machine starts
 1. Open the Group Policy Management Console (GPMC), right-click the Group Policy Object (GPO) you want to configure and click **Edit**.
 1. In the Group Policy Management Editor, go to **Computer configuration** \> **Preferences** \> **Control panel settings**. 
 1. Right-click **Scheduled tasks**, click **New**, and then click **Immediate Task** (At least Windows 7). 
@@ -81,7 +80,7 @@ Enter the following:
 
 Click **OK** and close any open GPMC windows.
 
-#### *Scenario 3: Onboarding using management tools*
+### Scenario 3: Onboarding using management tools
 
 If you plan to manage your machines using a management tool, you can onboard devices with Microsoft Endpoint Configuration Manager.
 
@@ -93,18 +92,18 @@ For more information, see: [Onboard Windows 10 devices using Configuration Manag
 > [!TIP]
 > After onboarding the device, you can choose to run a detection test to verify that the device is properly onboarded to the service. For more information, see [Run a detection test on a newly onboarded Microsoft Defender for Endpoint device](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/run-detection-test). 
 
-#### Tagging your machines when building your golden image 
+## Tagging your machines when building your image 
 
 As part of your onboarding, you may want to consider setting a machine tag to be able to differentiate WVD machines more easily in the Microsoft Security Center. For more information, see 
 [Add device tags by setting a registry key value](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/machine-tags#add-device-tags-by-setting-a-registry-key-value). 
 
-#### Other recommended configuration settings 
+## Other recommended configuration settings 
 
-When building your golden image, you may want to configure initial protection settings as well. For more information, see [Other recommended configuration settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp#other-recommended-configuration-settings). 
+When building your image, you may want to configure initial protection settings as well. For more information, see [Other recommended configuration settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-gp#other-recommended-configuration-settings). 
 
 In addition, if you are using FSlogix user profiles, we recommend you exclude the following files from always-on protection: 
 
-**Exclude Files:** 
+### Exclude Files
 
 > %ProgramFiles%\FSLogix\Apps\frxdrv.sys <br>
 > %ProgramFiles%\FSLogix\Apps\frxdrvvt.sys <br>
@@ -116,12 +115,12 @@ In addition, if you are using FSlogix user profiles, we recommend you exclude th
 > \\storageaccount.file.core.windows.net\share\*\*.VHD <br>
 > \\storageaccount.file.core.windows.net\share\*\*.VHDX <br>
 
-**Exclude Processes:**
+### Exclude Processes
 
 > %ProgramFiles%\FSLogix\Apps\frxccd.exe <br>
 > %ProgramFiles%\FSLogix\Apps\frxccds.exe <br>
 > %ProgramFiles%\FSLogix\Apps\frxsvc.exe <br>
 
-#### Licensing requirements 
+## Licensing requirements 
 
 Windows 10 Multi-session is a client OS. Licensing requirements for Microsoft Defender for endpoint can be found at: [Licensing requirements](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements#licensing-requirements).

From 901da52c20e3c7874098728ee391e7a7f8deade5 Mon Sep 17 00:00:00 2001
From: JesseEsquivel <33558203+JesseEsquivel@users.noreply.github.com>
Date: Thu, 4 Feb 2021 11:26:26 -0500
Subject: [PATCH 817/825] VDI File share feature backported to 1703

Adding note that the change has been backported and works in 1703+
---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 3849774f8b..ef143bfe39 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -50,7 +50,7 @@ You can also download the whitepaper [Microsoft Defender Antivirus on Virtual De
 
 ## Set up a dedicated VDI file share
 
-In Windows 10, version 1903, we introduced the shared security intelligence feature, which offloads the unpackaging of downloaded security intelligence updates onto a host machine—thus saving previous CPU, disk, and memory resources on individual machines. You can set this feature with a Group Policy, or PowerShell.
+In Windows 10, version 1903, we introduced the shared security intelligence feature, which offloads the unpackaging of downloaded security intelligence updates onto a host machine—thus saving previous CPU, disk, and memory resources on individual machines. This feature has been backported and now works in Windows 10 version 1703 and above. You can set this feature with a Group Policy, or PowerShell.
 
 ### Use Group Policy to enable the shared security intelligence feature:
 

From 6f46373573a78e6cde7c9d40b292d4805d31e877 Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Thu, 4 Feb 2021 11:08:59 -0800
Subject: [PATCH 818/825] pencil edit

---
 .../Onboard-Windows-10-multi-session-device.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index a03a960bb6..3abe07fc71 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -30,7 +30,7 @@ Microsoft Defender for Endpoint supports monitoring both VDI as well as Windows
 Familiarize yourself with the [considerations for non-persistent VDI](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi#onboard-non-persistent-virtual-desktop-infrastructure-vdi-devices-1). Although [Windows Virtual Desktop](https://docs.microsoft.com/azure/virtual-desktop/overview) does not provide non-persistence options, it does provide ways to use a Windows image that can be used to provision new hosts and redeploy machines. This increases volatility in the environment, and thus impacts what entries are created and maintained in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)), potentially reducing visibility for your security analysts.
 
 > [!NOTE]
-> Depending on your choice of onboarding method, devices can appear in MMicrosoft Defender Security Center as either: 
+> Depending on your choice of onboarding method, devices can appear in Microsoft Defender Security Center as either: 
 > - Single entry for each virtual desktop 
 > - Multiple entries for each virtual desktop 
 

From bcf853a0c6d7be245aa5771142910694bbc0e2ab Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 4 Feb 2021 12:52:16 -0800
Subject: [PATCH 819/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...tes-baselines-microsoft-defender-antivirus.md | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index a93bfb03a8..3e94248b41 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: pahuijbr
 manager: dansimp
-ms.date: 01/07/2021
+ms.date: 02/04/2021
 ms.technology: mde
 ---
 
@@ -387,6 +387,20 @@ We recommend updating your Windows 10 (Enterprise, Pro, and Home editions), Wind
 For more information, see [Microsoft Defender update for Windows operating system installation images](https://support.microsoft.com/help/4568292/defender-update-for-windows-operating-system-installation-images).
 
 <details>
+<summary>1.1.2102.03</summary>
+
+&ensp;Package version: **1.1.2102.03**    
+&ensp;Platform version: **4.18.2011.6**   
+&ensp;Engine version: **1.17800.5**  
+&ensp;Signature version: **1.331.174.0**    
+    
+### Fixes
+- None
+
+### Additional information
+- None  
+<br/>
+</details><details>
 <summary>1.1.2101.02</summary>
 
 &ensp;Package version: **1.1.2101.02**    

From 50ae6bdaf97483e5006027f062ad773dc1244b8b Mon Sep 17 00:00:00 2001
From: Tristan Kington <TristankMS@users.noreply.github.com>
Date: Fri, 5 Feb 2021 08:28:07 +1100
Subject: [PATCH 820/825] Update hello-hybrid-cert-whfb-settings-pki.md

Certification Authority is the actual console name for Certificate Authority servers. Spelling/grammar fixes, some clarity and wording fixes. PKIView tip for NTAuth.
---
 .../hello-hybrid-cert-whfb-settings-pki.md    | 69 ++++++++++---------
 1 file changed, 35 insertions(+), 34 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
index ec12645e1d..2b5e042c13 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-whfb-settings-pki.md
@@ -25,13 +25,13 @@ ms.reviewer:
 - Hybrid Deployment
 - Certificate Trust
 
-Windows Hello for Business deployments rely on certificates.  Hybrid deployments uses publicly issued server authentication certificates to validate the name of the server to which they are connecting and to encrypt the data that flows them and the client computer.
+Windows Hello for Business deployments rely on certificates. Hybrid deployments use publicly-issued server authentication certificates to validate the name of the server to which they are connecting and to encrypt the data that flows between them and the client computer.
 
-All deployments use enterprise issued certificates for domain controllers as a root of trust.  Hybrid certificate trust deployments issue users sign-in certificate that enables them to authenticate using Windows Hello for Business credentials to non-Windows Server 2016 domain controllers.  Additionally, hybrid certificate trust deployments issue certificate to registration authorities to provide defense-in-depth security for issuing user authentication certificates.
+All deployments use enterprise issued certificates for domain controllers as a root of trust. Hybrid certificate trust deployments issue users with a sign-in certificate that enables them to authenticate using Windows Hello for Business credentials to non-Windows Server 2016 domain controllers. Additionally, hybrid certificate trust deployments issue certificates to registration authorities to provide defense-in-depth security when issuing user authentication certificates.
 
 ## Certificate Templates
 
-This section has you configure certificate templates on your Windows Server 2012 or later issuing certificate authority.
+This section has you configure certificate templates on your Windows Server 2012 (or later) Active Directory Certificate Services issuing certificate authority.
 
 ### Domain Controller certificate template
 
@@ -39,13 +39,13 @@ Clients need to trust domain controllers and the best way to do this is to ensur
 
 Domain controllers automatically request a domain controller certificate (if published) when they discover an enterprise certificate authority is added to Active Directory.  However, certificates based on the *Domain Controller* and *Domain Controller Authentication* certificate templates do not include the **KDC Authentication** object identifier (OID), which was later added to the Kerberos RFC. Inclusion of the **KDC Authentication** OID in domain controller certificate is not required for key trust authentication from Hybrid Azure AD joined devices. The OID is required for enabling authentication with Windows Hello for Business to on-premises resources by Azure AD joined devices. The steps below to *Create a Domain Controller Authentication (Kerberos) Certificate Template* and *Configure Certificate Superseding for the Domain Controller Authentication (Kerberos) Certificate Template* to include the **KDC Authentication** OID in the domain controller certificate may be skipped if you only have Hybrid Azure AD Joined devices in your environment, but we recommend completing these steps if you are considering adding Azure AD joined devices to your environment in the future.
 
-By default, the Active Directory Certificate Authority provides and publishes the Kerberos Authentication certificate template.  However, the cryptography configuration included in the provided template is based on older and less performant cryptography APIs.  To ensure domain controllers request the proper certificate with the best available cryptography, use the **Kerberos Authentication** certificate template as a baseline to create an updated domain controller certificate template.
+By default, the Active Directory Certificate Authority provides and publishes the Kerberos Authentication certificate template. However, the cryptography configuration included in the provided template is based on older and less performant cryptography APIs. To ensure domain controllers request the proper certificate with the best available cryptography, use the **Kerberos Authentication** certificate template as a baseline to create an updated domain controller certificate template.
 
 #### Create a Domain Controller Authentication (Kerberos) Certificate Template
 
 Sign-in a certificate authority or management workstations with _Domain Admin_ equivalent credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Right-click **Certificate Templates** and click **Manage**.
 
@@ -66,15 +66,15 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 
 #### Configure Certificate Superseding for the Domain Controller Authentication (Kerberos) Certificate Template
 
-Many domain controllers may have an existing domain controller certificate.  The Active Directory Certificate Services provides a default certificate template for domain controllers--the domain controller certificate template.  Later releases provided a new certificate template--the domain controller authentication certificate template.  These certificate templates were provided prior to update of the Kerberos specification that stated Key Distribution Centers (KDCs) performing certificate authentication needed to include the **KDC Authentication** extension.  
+Many domain controllers may have an existing domain controller certificate. Active Directory Certificate Services provides a default certificate template for domain controllers--the Domain Controller certificate template.  Later releases provided a new certificate template--the Domain Controller Authentication certificate template. These certificate templates were provided prior to update of the Kerberos specification that stated Key Distribution Centers (KDCs) performing certificate authentication needed to include the **KDC Authentication** extension.
 
-The Kerberos Authentication certificate template is the most current certificate template designated for domain controllers and should be the one you deploy to all your domain controllers (2008 or later).
+The Kerberos Authentication certificate template is the most current certificate template designated for domain controllers, and should be the one you deploy to all your domain controllers (2008 or later).
 
-The auto-enrollment feature in Windows enables you to effortlessly replace these domain controller certificates.  You can use the following configuration to replace older domain controller certificates with a new certificate using the Kerberos Authentication certificate template.
+The auto-enrollment feature in Windows enables you to effortlessly replace these domain controller certificates. You can use the following configuration to replace older domain controller certificates with a new certificate based on the Kerberos Authentication certificate template.
 
 Sign-in a certificate authority or management workstations with _Enterprise Admin_ equivalent credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Right-click **Certificate Templates** and click **Manage**.
 
@@ -86,31 +86,32 @@ Sign-in a certificate authority or management workstations with _Enterprise Admi
 
 6. From the **Add Superseded Template** dialog, select the **Domain Controller Authentication** certificate template and click **OK**.
 
-7. From the **Add Superseded Template dialog**, select the **Kerberos Authentication** certificate template and click **OK**.
+7. From the **Add Superseded Template dialog**, select the **Kerberos Authentication** certificate template, and click **OK**.
 
 8. Add any other enterprise certificate templates that were previously configured for domain controllers to the **Superseded Templates** tab.
 
 9. Click **OK** and close the **Certificate Templates** console.
 
-The certificate template is configured to supersede all the certificate templates provided in the certificate templates superseded templates list.  However, the certificate template and the superseding of certificate templates is not active until you publish the certificate template to one or more certificate authorities.
+The certificate template is configured to supersede all the certificate templates listed in the superseded templates list. However, the certificate template and the superseding of certificate templates is not active until you publish the certificate template to one or more certificate authorities.
 
 > [!NOTE]
-> The domain controller's certificate must chain to a root in the NTAuth store. By default, the Active Directory Certificate Authority's root certificate is added to the NTAuth store. If you are using a third-party CA, this may not be done by default. If the domain controller certificate does not chain to a root in the NTAuth store, user authentication will fail.
+> A domain controller's certificate must chain to a certificate in the NTAuth store in Active Directory. By default, online "Enterprise" Active Directory Certificate Authority certificates are added to the NTAuth store at installation time. If you are using a third-party CA, this is not done by default. If the domain controller certificate does not chain to a trusted CA in the NTAuth store, user authentication will fail. 
+> You can view an AD forest's NTAuth store (NTAuthCertificates) using PKIVIEW.MSC from an ADCS CA. Open PKIView.msc, then click the Action menu -> Manage AD Containers.
 
 ### Enrollment Agent certificate template
 
-Active Directory Federation Server used for Windows Hello for Business certificate enrollment performs its own certificate life-cycle management.  Once the registration authority is configured with the proper certificate template, the AD FS server attempts to enroll the certificate on the first certificate request or when the service first starts.
+Active Directory Federation Server used for Windows Hello for Business certificate enrollment performs its own certificate lifecycle management. Once the registration authority is configured with the proper certificate template, the AD FS server attempts to enroll the certificate on the first certificate request, or when the service first starts.
 
-Approximately 60 days prior to enrollment agent certificate's expiration, the AD FS service attempts to renew the certificate until it is successful.  If the certificate fails to renew, and the certificate expires, the AD FS server will request a new enrollment agent certificate.  You can view the AD FS event logs to determine the status of the enrollment agent certificate.
+Approximately 60 days prior to the enrollment agent certificate's expiration, the AD FS service attempts to renew the certificate until it is successful. If the certificate fails to renew and expires, the AD FS server will request a new enrollment agent certificate. You can view the AD FS event logs to determine the status of the enrollment agent certificate.
 
 > [!IMPORTANT]
-> Follow the procedures below based on the AD FS service account used in your  environment.
+> Follow the procedures below based on the AD FS service account used in your environment.
 
 #### Creating an Enrollment Agent certificate for Group Managed Service Accounts
 
-Sign-in a certificate authority or management workstations with _Domain Admin_ equivalent credentials.
+Sign-in to a certificate authority or management workstation with _Domain Admin_ equivalent credentials.
 
-1. Open the **Certificate Authority Management** console.
+1. Open the **Certification Authority Management** console.
 
 2. Right-click **Certificate Templates** and click **Manage**.
 
@@ -123,7 +124,7 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 6. On the **Subject** tab, select the **Supply in the request** button if it is not already selected.
 
    > [!NOTE]
-   > The preceding step is very important.  Group Managed Service Accounts (GMSA) do not support the Build from this Active Directory information option and will result in the AD FS server failing to enroll the enrollment agent certificate.  You must configure the certificate template with Supply in the request to ensure that AD FS servers can perform the automatic enrollment and renewal of the enrollment agent certificate.
+   > The preceding step is very important. Group Managed Service Accounts (GMSA) do not support the _Build from this Active Directory information_ option, which will result in the AD FS server failing to enroll the enrollment agent certificate. You must configure the certificate template with _Supply in the request_ to ensure that AD FS servers can perform the automatic enrollment and renewal of the enrollment agent certificate.
 
 7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 
@@ -139,9 +140,9 @@ Sign-in a certificate authority or management workstations with _Domain Admin_ e
 
 #### Creating an Enrollment Agent certificate for typical Service Accounts
 
-Sign-in a certificate authority or management workstations with *Domain Admin* equivalent credentials.
+Sign-in to a certificate authority or management workstation with *Domain Admin* equivalent credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Right-click **Certificate Templates** and click **Manage**.
 
@@ -163,11 +164,11 @@ Sign-in a certificate authority or management workstations with *Domain Admin* e
 
 ### Creating Windows Hello for Business authentication certificate template
 
-During Windows Hello for Business provisioning, the Windows 10, version 1703 client requests an authentication certificate from the Active Directory Federation Service, which requests the authentication certificate on behalf of the user.  This task configures the Windows Hello for Business authentication certificate template.  You use the name of the certificate template when configuring.
+During Windows Hello for Business provisioning, a Windows 10 client requests an authentication certificate from the Active Directory Federation Service, which requests an authentication certificate on behalf of the user. This task configures the Windows Hello for Business authentication certificate template. You set the name of the certificate template when configuring it.
 
-Sign-in a certificate authority or management workstations with _Domain Admin equivalent_ credentials.
+Sign-in to a certificate authority or management workstation with _Domain Admin equivalent_ credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Right-click **Certificate Templates** and click **Manage**.
 
@@ -175,10 +176,10 @@ Sign-in a certificate authority or management workstations with _Domain Admin eq
 
 4. On the **Compatibility** tab, clear the **Show resulting changes** check box.  Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Authority** list. Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Recipient** list.
 
-5. On the **General** tab, type **WHFB Authentication** in **Template display name**.  Adjust the validity and renewal period to meet your enterprise's needs.
+5. On the **General** tab, type **WHFB Authentication** or your choice of template name in **Template display name**. Note the short template name for later use with CertUtil. Adjust the validity and renewal period to meet your enterprise's needs.
 
    > [!NOTE]
-   > If you use different template names, you'll need to remember and substitute these names in different portions of the deployment.
+   > If you use different template names, you'll need to remember and substitute these names in the relevant portions of the deployment. 
 
 6. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list.  Select **RSA** from the **Algorithm name** list.  Type **2048** in the **Minimum key size** text box.  Select **SHA256** from the **Request hash** list.
 
@@ -231,39 +232,39 @@ CertUtil: -dsTemplate command completed successfully."
 ```
 
 > [!NOTE]
-> If you gave your Windows Hello for Business Authentication certificate template a different name, then replace **WHFBAuthentication** in the above command with the name of your certificate template. It's important that you use the template name rather than the template display name. You can view the template name on the **General** tab of the certificate template using the Certificate Template management console (certtmpl.msc).  Or, you can view the template name using the **Get-CATemplate** ADCS Administration Windows PowerShell cmdlet on our Windows Server 2012 or later certificate authority.
+> If you gave your Windows Hello for Business Authentication certificate template a different name, then replace **WHFBAuthentication** in the above command with the name of your certificate template. It's important that you use the template name rather than the template display name. You can view the template name on the **General** tab of the certificate template using the Certificate Template management console (certtmpl.msc). Or, you can view the template name using the **Get-CATemplate** ADCS Administration Windows PowerShell cmdlet on a Windows Server 2012 or later certificate authority.
 
 ## Publish Templates
 
 ### Publish Certificate Templates to a Certificate Authority
 
-The certificate authority may only issue certificates for certificate templates that are published to that certificate authority.  If you have more than one certificate authority and you want that certificate authority to issue certificates based on a specific certificate template, then you must publish the certificate template to all certificate authorities that are expected to issue the certificate.
+The certificate authority only issues certificates for certificate templates which are published by that certificate authority. If you have more than one certificate authority and you want that certificate authority to issue certificates based on a specific certificate template, then you must publish the certificate template to all certificate authorities that are expected to issue the certificate.
 
 #### Publish Certificate Templates to the Certificate Authority
 
 Sign-in to the certificate authority or management workstations with an _Enterprise Admin_ equivalent credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Expand the parent node from the navigation pane.
 
 3. Click **Certificate Templates** in the navigation pane.
 
-4. Right-click the **Certificate Templates** node.  Click **New**, and click **Certificate Template** to issue.
+4. Right-click the **Certificate Templates** node. Click **New**, and click **Certificate Template to issue**.
 
-5. In the **Enable Certificates Templates** window, select the **Domain Controller Authentication (Kerberos)**, **WHFB Enrollment Agent** and **WHFB Authentication** templates you created in the previous steps.  Click **OK** to publish the selected certificate templates to the certificate authority.
+5. In the **Enable Certificates Templates** window, Ctrl-select the **Domain Controller Authentication (Kerberos)**, **WHFB Enrollment Agent** and **WHFB Authentication** templates you created in the previous steps. Click **OK** to publish the selected certificate templates to the certificate authority.
 
 6. Close the console.
 
 #### Unpublish Superseded Certificate Templates
 
-The certificate authority only issues certificates based on published certificate templates.  For defense in depth security, it is a good practice to unpublish certificate templates that the certificate authority is not configured to issue.  This includes the pre-published certificate template from the role installation and any superseded certificate templates.
+The certificate authority only issues certificates based on published certificate templates. For defense-in-depth security, it is a good practice to unpublish certificate templates that the certificate authority is not configured to issue. This includes any pre-published certificate templates from the role installation and any superseded certificate templates.
 
-The newly created domain controller authentication certificate template supersedes previous domain controller certificate templates.  Therefore, you need to unpublish these certificate templates from all issuing certificate authorities.
+The newly-created Kerberos authentication-based Domain Controller certificate template supersedes any previous domain controller certificate templates. Therefore, you should unpublish these certificate templates from all issuing certificate authorities.
 
-Sign-in to the certificate authority or management workstation with _Enterprise Admin_ equivalent credentials.
+Sign-in to each certificate authority, or a management workstation with _Enterprise Admin_ equivalent credentials.
 
-1. Open the **Certificate Authority** management console.
+1. Open the **Certification Authority** management console.
 
 2. Expand the parent node from the navigation pane.
 

From 7f67353b01d6be65d5556b6ce8fdbd16831ab6d7 Mon Sep 17 00:00:00 2001
From: Paul Huijbregts <30799281+pahuijbr@users.noreply.github.com>
Date: Thu, 4 Feb 2021 13:49:07 -0800
Subject: [PATCH 821/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md     | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index a93bfb03a8..cc3faf4943 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -90,7 +90,6 @@ All our updates contain
 ### What's new
 
 - Improved SmartScreen status support logging
-- Apply CPU throttling policy to manually initiated scans
 
 ### Known Issues
 No known issues  

From a056b6666433d506ac2794163026df64a3c0e070 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 4 Feb 2021 13:52:11 -0800
Subject: [PATCH 822/825] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index cc3faf4943..cc8b19bee3 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: pahuijbr
 manager: dansimp
-ms.date: 01/07/2021
+ms.date: 02/04/2021
 ms.technology: mde
 ---
 

From bf4e78eb163328ce27ca5ee63c0745156ac27656 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 4 Feb 2021 15:11:26 -0800
Subject: [PATCH 823/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index bfa5bf0c44..7f68650da3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -46,7 +46,7 @@ It's important to understand the following prerequisites prior to creating indic
 - The Antimalware client version must be 4.18.1906.x or later. 
 - Supported on machines on Windows 10, version 1709 or later. 
 - Ensure that **Custom network indicators** is enabled in **Microsoft Defender Security Center > Settings > Advanced features**. For more information, see [Advanced features](advanced-features.md).
-- For support of indicators on iOS, please [see](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators)
+- For support of indicators on iOS, please see [Configure custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators).
 
 
 >[!IMPORTANT]

From f894c637829a7df259eceb508003089fd5a9522f Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 4 Feb 2021 15:11:36 -0800
Subject: [PATCH 824/825] Update
 windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/indicator-ip-domain.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 7f68650da3..988db9e418 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -49,7 +49,7 @@ It's important to understand the following prerequisites prior to creating indic
 - For support of indicators on iOS, please see [Configure custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators).
 
 
->[!IMPORTANT]
+> [!IMPORTANT]
 > Only external IPs can be added to the indicator list. Indicators cannot be created for internal IPs.
 > For web protection scenarios, we recommend using the built-in capabilities in Microsoft Edge. Microsoft Edge leverages [Network Protection](network-protection.md) to inspect network traffic and allows blocks for TCP, HTTP, and HTTPS (TLS). For all other processes, web protection scenarios leverage Network Protection for inspection and enforcement: <br>
 > NOTE:

From e8e39fe4bac27f2e3ffebac0252920d48352958f Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 4 Feb 2021 15:12:17 -0800
Subject: [PATCH 825/825] Update indicator-ip-domain.md

---
 .../microsoft-defender-atp/indicator-ip-domain.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
index 988db9e418..4491cd3549 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-ip-domain.md
@@ -46,7 +46,7 @@ It's important to understand the following prerequisites prior to creating indic
 - The Antimalware client version must be 4.18.1906.x or later. 
 - Supported on machines on Windows 10, version 1709 or later. 
 - Ensure that **Custom network indicators** is enabled in **Microsoft Defender Security Center > Settings > Advanced features**. For more information, see [Advanced features](advanced-features.md).
-- For support of indicators on iOS, please see [Configure custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators).
+- For support of indicators on iOS, see [Configure custom indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features#configure-custom-indicators).
 
 
 > [!IMPORTANT]